mirrors/firefish
1
0
Fork 1
mirror of https://git.joinfirefish.org/firefish/firefish.git synced 2024-05-19 20:41:10 +02:00
Code Issues Packages Projects Releases Wiki Activity
firefish/packages/backend/src/remote/activitypub/models/note.ts
ThatOneCalculator f7564d87b0
fix: 🔒 prevent issues
2023-02-10 11:14:33 -08:00

481 lines
12 KiB
TypeScript
Raw Blame History

import promiseLimit from "promise-limit";
import config from "@/config/index.js";
import Resolver from "../resolver.js";
import post from "@/services/note/create.js";
import { resolvePerson } from "./person.js";
import { resolveImage } from "./image.js";
import type { CacheableRemoteUser } from "@/models/entities/user.js";
import { htmlToMfm } from "../misc/html-to-mfm.js";
import { extractApHashtags } from "./tag.js";
import { unique, toArray, toSingle } from "@/prelude/array.js";
import { extractPollFromQuestion } from "./question.js";
import vote from "@/services/note/polls/vote.js";
import { apLogger } from "../logger.js";
import type { DriveFile } from "@/models/entities/drive-file.js";
import { deliverQuestionUpdate } from "@/services/note/polls/update.js";
import { extractDbHost, toPuny } from "@/misc/convert-host.js";
import { Emojis, Polls, MessagingMessages } from "@/models/index.js";
import type { Note } from "@/models/entities/note.js";
import type { IObject, IPost } from "../type.js";
import {
getOneApId,
getApId,
getOneApHrefNullable,
validPost,
isEmoji,
getApType,
} from "../type.js";
import type { Emoji } from "@/models/entities/emoji.js";
import { genId } from "@/misc/gen-id.js";
import { fetchMeta } from "@/misc/fetch-meta.js";
import { getApLock } from "@/misc/app-lock.js";
import { createMessage } from "@/services/messages/create.js";
import { parseAudience } from "../audience.js";
import { extractApMentions } from "./mention.js";
import DbResolver from "../db-resolver.js";
import { StatusError } from "@/misc/fetch.js";
import { shouldBlockInstance } from "@/misc/should-block-instance.js";
const logger = apLogger;
export function validateNote(object: any, uri: string) {
const expectHost = extractDbHost(uri);
if (object == null) {
return new Error("invalid Note: object is null");
}
if (!validPost.includes(getApType(object))) {
return new Error(`invalid Note: invalid object type ${getApType(object)}`);
}
if (object.id && extractDbHost(object.id) !== expectHost) {
return new Error(
`invalid Note: id has different host. expected: ${expectHost}, actual: ${extractDbHost(
object.id,
)}`,
);
}
if (
object.attributedTo &&
extractDbHost(getOneApId(object.attributedTo)) !== expectHost
) {
return new Error(
`invalid Note: attributedTo has different host. expected: ${expectHost}, actual: ${extractDbHost(
object.attributedTo,
)}`,
);
}
return null;
}
/**
* Fetch Notes.
*
* If the target Note is registered in Calckey, it will be returned.
*/
export async function fetchNote(
object: string | IObject,
): Promise<Note | null> {
const dbResolver = new DbResolver();
return await dbResolver.getNoteFromApId(object);
}
/**
* Create a Note.
*/
export async function createNote(
value: string | IObject,
resolver?: Resolver,
silent = false,
): Promise<Note | null> {
if (resolver == null) resolver = new Resolver();
const object: any = await resolver.resolve(value);
const entryUri = getApId(value);
const err = validateNote(object, entryUri);
if (err) {
logger.error(`${err.message}`, {
resolver: {
history: resolver.getHistory(),
},
value: value,
object: object,
});
throw new Error("invalid note");
}
const note: IPost = object;
if (note.id && !note.id.startsWith('https://')) {
throw new Error(`unexpected shcema of note.id: ${note.id}`);
}
const url = getOneApHrefNullable(note.url);
if (url && !url.startsWith('https://')) {
throw new Error(`unexpected shcema of note url: ${url}`);
}
logger.debug(`Note fetched: ${JSON.stringify(note, null, 2)}`);
logger.info(`Creating the Note: ${note.id}`);
// Fetch author
const actor = (await resolvePerson(
getOneApId(note.attributedTo),
resolver,
)) as CacheableRemoteUser;
// Skip if author is suspended.
if (actor.isSuspended) {
logger.debug(`User ${actor.usernameLower}@${actor.host} suspended; discarding.`)
return null;
}
const noteAudience = await parseAudience(actor, note.to, note.cc);
let visibility = noteAudience.visibility;
const visibleUsers = noteAudience.visibleUsers;
// If Audience (to, cc) was not specified
if (visibility === "specified" && visibleUsers.length === 0) {
if (typeof value === "string") {
// If the input is a string, GET occurs in resolver
// Public if you can GET anonymously from here
visibility = "public";
}
}
let isTalk = note._misskey_talk && visibility === "specified";
const apMentions = await extractApMentions(note.tag);
const apHashtags = await extractApHashtags(note.tag);
// Attachments
// TODO: attachmentは必ずしもImageではない
// TODO: attachmentは必ずしも配列ではない
// Noteがsensitiveなら添付もsensitiveにする
const limit = promiseLimit(2);
note.attachment = Array.isArray(note.attachment)
? note.attachment
: note.attachment
? [note.attachment]
: [];
const files = note.attachment.map(
(attach) => (attach.sensitive = note.sensitive),
)
? (
await Promise.all(
note.attachment.map(
(x) => limit(() => resolveImage(actor, x)) as Promise<DriveFile>,
),
)
).filter((image) => image != null)
: [];
// Reply
const reply: Note | null = note.inReplyTo
? await resolveNote(note.inReplyTo, resolver)
.then((x) => {
if (x == null) {
logger.warn("Specified inReplyTo, but nout found");
throw new Error("inReplyTo not found");
} else {
return x;
}
})
.catch(async (e) => {
// トークだったらinReplyToのエラーは無視
const uri = getApId(note.inReplyTo);
if (uri.startsWith(`${config.url}/`)) {
const id = uri.split("/").pop();
const talk = await MessagingMessages.findOneBy({ id });
if (talk) {
isTalk = true;
return null;
}
}
logger.warn(
`Error in inReplyTo ${note.inReplyTo} - ${e.statusCode || e}`,
);
throw e;
})
: null;
// Quote
let quote: Note | undefined | null;
if (note._misskey_quote || note.quoteUrl || note.quoteUri) {
const tryResolveNote = async (
uri: string,
): Promise<
| {
status: "ok";
res: Note | null;
}
| {
status: "permerror" | "temperror";
}
> => {
if (typeof uri !== "string" || !uri.match(/^https?:/))
return { status: "permerror" };
try {
const res = await resolveNote(uri);
if (res) {
return {
status: "ok",
res,
};
} else {
return {
status: "permerror",
};
}
} catch (e) {
return {
status:
e instanceof StatusError && e.isClientError
? "permerror"
: "temperror",
};
}
};
const uris = unique(
[note._misskey_quote, note.quoteUrl, note.quoteUri].filter(
(x): x is string => typeof x === "string",
),
);
const results = await Promise.all(uris.map((uri) => tryResolveNote(uri)));
quote = results
.filter((x): x is { status: "ok"; res: Note | null } => x.status === "ok")
.map((x) => x.res)
.find((x) => x);
if (!quote) {
if (results.some((x) => x.status === "temperror")) {
throw new Error("quote resolve failed");
}
}
}
const cw = note.summary === "" ? null : note.summary;
// Text parsing
let text: string | null = null;
if (
note.source?.mediaType === "text/x.misskeymarkdown" &&
typeof note.source?.content === "string"
) {
text = note.source.content;
} else if (typeof note._misskey_content !== "undefined") {
text = note._misskey_content;
} else if (typeof note.content === "string") {
text = htmlToMfm(note.content, note.tag);
}
// vote
if (reply?.hasPoll) {
const poll = await Polls.findOneByOrFail({ noteId: reply.id });
const tryCreateVote = async (
name: string,
index: number,
): Promise<null> => {
if (poll.expiresAt && Date.now() > new Date(poll.expiresAt).getTime()) {
logger.warn(
`vote to expired poll from AP: actor=${actor.username}@${actor.host}, note=${note.id}, choice=${name}`,
);
} else if (index >= 0) {
logger.info(
`vote from AP: actor=${actor.username}@${actor.host}, note=${note.id}, choice=${name}`,
);
await vote(actor, reply, index);
// リモートフォロワーにUpdate配信
deliverQuestionUpdate(reply.id);
}
return null;
};
if (note.name) {
return await tryCreateVote(
note.name,
poll.choices.findIndex((x) => x === note.name),
);
}
}
const emojis = await extractEmojis(note.tag || [], actor.host).catch((e) => {
logger.info(`extractEmojis: ${e}`);
return [] as Emoji[];
});
const apEmojis = emojis.map((emoji) => emoji.name);
const poll = await extractPollFromQuestion(note, resolver).catch(
() => undefined,
);
if (isTalk) {
for (const recipient of visibleUsers) {
await createMessage(
actor,
recipient,
undefined,
text || undefined,
files && files.length > 0 ? files[0] : null,
object.id,
);
return null;
}
}
return await post(
actor,
{
createdAt: note.published ? new Date(note.published) : null,
files,
reply,
renote: quote,
name: note.name,
cw,
text,
localOnly: false,
visibility,
visibleUsers,
apMentions,
apHashtags,
apEmojis,
poll,
uri: note.id,
url: url,
},
silent,
);
}
/**
* Resolve Note.
*
* If the target Note is registered in Calckey, return it, otherwise
* Fetch from remote server, register with Calckey and return it.
*/
export async function resolveNote(
value: string | IObject,
resolver?: Resolver,
): Promise<Note | null> {
const uri = typeof value === "string" ? value : value.id;
if (uri == null) throw new Error("missing uri");
// Abort if origin host is blocked
if (await shouldBlockInstance(extractDbHost(uri)))
throw new StatusError(
"host blocked",
451,
`host ${extractDbHost(uri)} is blocked`,
);
const unlock = await getApLock(uri);
try {
//#region Returns if already registered with this server
const exist = await fetchNote(uri);
if (exist) {
return exist;
}
//#endregion
if (uri.startsWith(config.url)) {
throw new StatusError(
"cannot resolve local note",
400,
"cannot resolve local note",
);
}
// Fetch from remote server and register
// If the attached `Note` Object is specified here instead of the uri, the note will be generated without going through the server fetch.
// Since the attached Note Object may be disguised, always specify the uri and fetch it from the server.
return await createNote(uri, resolver, true);
} finally {
unlock();
}
}
export async function extractEmojis(
tags: IObject | IObject[],
host: string,
): Promise<Emoji[]> {
host = toPuny(host);
if (!tags) return [];
const eomjiTags = toArray(tags).filter(isEmoji);
return await Promise.all(
eomjiTags.map(async (tag) => {
const name = tag.name!.replace(/^:/, "").replace(/:$/, "");
tag.icon = toSingle(tag.icon);
const exists = await Emojis.findOneBy({
host,
name,
});
if (exists) {
if (
(tag.updated != null && exists.updatedAt == null) ||
(tag.id != null && exists.uri == null) ||
(tag.updated != null &&
exists.updatedAt != null &&
new Date(tag.updated) > exists.updatedAt) ||
tag.icon!.url !== exists.originalUrl
) {
await Emojis.update(
{
host,
name,
},
{
uri: tag.id,
originalUrl: tag.icon!.url,
publicUrl: tag.icon!.url,
updatedAt: new Date(),
},
);
return (await Emojis.findOneBy({
host,
name,
})) as Emoji;
}
return exists;
}
logger.info(`register emoji host=${host}, name=${name}`);
return await Emojis.insert({
id: genId(),
host,
name,
uri: tag.id,
originalUrl: tag.icon!.url,
publicUrl: tag.icon!.url,
updatedAt: new Date(),
aliases: [],
} as Partial<Emoji>).then((x) =>
Emojis.findOneByOrFail(x.identifiers[0]),
);
}),
);
}
Reference in a new issue View git blame Copy permalink