download and validator to functions

Author: ethanndickson

Coder Desktop/VPN/Manager.swift

@@ -4,7 +4,6 @@ import VPNLib
 
 actor Manager {
     let ptp: PacketTunnelProvider
-    let downloader: Downloader
 
     var tunnelHandle: TunnelHandle?
     var speaker: Speaker<Vpn_ManagerMessage, Vpn_TunnelMessage>?
@@ -16,6 +15,5 @@ actor Manager {
 
     init(with: PacketTunnelProvider) {
         ptp = with
-        downloader = Downloader()
     }
 }

Coder Desktop/VPNLib/Downloader.swift renamed to Coder Desktop/VPNLib/Download.swift

@@ -1,10 +1,6 @@
 import CryptoKit
 import Foundation
 
-public protocol Validator: Sendable {
-    func validate(path: URL) async throws
-}
-
 public enum ValidationError: Error {
     case fileNotFound
     case unableToCreateStaticCode
@@ -37,114 +33,114 @@ public enum ValidationError: Error {
     }
 }
 
-public struct SignatureValidator: Validator {
-    private let expectedName = "CoderVPN"
-    private let expectedIdentifier = "com.coder.Coder-Desktop.VPN.dylib"
-    private let expectedTeamIdentifier = "4399GN35BJ"
-    private let minDylibVersion = "2.18.1"
+public class SignatureValidator {
+    private static let expectedName = "CoderVPN"
+    private static let expectedIdentifier = "com.coder.Coder-Desktop.VPN.dylib"
+    private static let expectedTeamIdentifier = "4399GN35BJ"
+    private static let minDylibVersion = "2.18.1"
 
-    private let infoIdentifierKey = "CFBundleIdentifier"
-    private let infoNameKey = "CFBundleName"
-    private let infoShortVersionKey = "CFBundleShortVersionString"
+    private static let infoIdentifierKey = "CFBundleIdentifier"
+    private static let infoNameKey = "CFBundleName"
+    private static let infoShortVersionKey = "CFBundleShortVersionString"
 
-    private let signInfoFlags: SecCSFlags = .init(rawValue: kSecCSSigningInformation)
+    private static let signInfoFlags: SecCSFlags = .init(rawValue: kSecCSSigningInformation)
 
-    public init() {}
-
-    public func validate(path: URL) throws {
+    public static func validate(path: URL) throws(ValidationError) {
         guard FileManager.default.fileExists(atPath: path.path) else {
-            throw ValidationError.fileNotFound
+            throw .fileNotFound
         }
 
         var staticCode: SecStaticCode?
         let status = SecStaticCodeCreateWithPath(path as CFURL, SecCSFlags(), &staticCode)
         guard status == errSecSuccess, let code = staticCode else {
-            throw ValidationError.unableToCreateStaticCode
+            throw .unableToCreateStaticCode
         }
 
         let validateStatus = SecStaticCodeCheckValidity(code, SecCSFlags(), nil)
         guard validateStatus == errSecSuccess else {
-            throw ValidationError.invalidSignature
+            throw .invalidSignature
         }
 
         var information: CFDictionary?
         let infoStatus = SecCodeCopySigningInformation(code, signInfoFlags, &information)
         guard infoStatus == errSecSuccess, let info = information as? [String: Any] else {
-            throw ValidationError.unableToRetrieveInfo
+            throw .unableToRetrieveInfo
         }
 
         guard let identifier = info[kSecCodeInfoIdentifier as String] as? String,
               identifier == expectedIdentifier
         else {
-            throw ValidationError.invalidIdentifier(identifier: info[kSecCodeInfoIdentifier as String] as? String)
+            throw .invalidIdentifier(identifier: info[kSecCodeInfoIdentifier as String] as? String)
         }
 
         guard let teamIdentifier = info[kSecCodeInfoTeamIdentifier as String] as? String,
               teamIdentifier == expectedTeamIdentifier
         else {
-            throw ValidationError.invalidTeamIdentifier(
+            throw .invalidTeamIdentifier(
                 identifier: info[kSecCodeInfoTeamIdentifier as String] as? String
             )
         }
 
         guard let infoPlist = info[kSecCodeInfoPList as String] as? [String: AnyObject] else {
-            throw ValidationError.missingInfoPList
+            throw .missingInfoPList
         }
 
         guard let plistIdent = infoPlist[infoIdentifierKey] as? String, plistIdent == expectedIdentifier else {
-            throw ValidationError.invalidIdentifier(identifier: infoPlist[infoIdentifierKey] as? String)
+            throw .invalidIdentifier(identifier: infoPlist[infoIdentifierKey] as? String)
         }
 
         guard let plistName = infoPlist[infoNameKey] as? String, plistName == expectedName else {
-            throw ValidationError.invalidIdentifier(identifier: infoPlist[infoNameKey] as? String)
+            throw .invalidIdentifier(identifier: infoPlist[infoNameKey] as? String)
         }
 
         guard let dylibVersion = infoPlist[infoShortVersionKey] as? String,
               minDylibVersion.compare(dylibVersion, options: .numeric) != .orderedDescending
         else {
-            throw ValidationError.invalidVersion(version: infoPlist[infoShortVersionKey] as? String)
+            throw .invalidVersion(version: infoPlist[infoShortVersionKey] as? String)
         }
     }
 }
 
-public struct Downloader: Sendable {
-    let validator: Validator
-    public init(validator: Validator = SignatureValidator()) {
-        self.validator = validator
-    }
-
-    public func download(src: URL, dest: URL) async throws {
-        var req = URLRequest(url: src)
-        if FileManager.default.fileExists(atPath: dest.path) {
-            if let existingFileData = try? Data(contentsOf: dest, options: .mappedIfSafe) {
-                req.setValue(etag(data: existingFileData), forHTTPHeaderField: "If-None-Match")
-            }
+public func download(src: URL, dest: URL) async throws(DownloadError) {
+    var req = URLRequest(url: src)
+    if FileManager.default.fileExists(atPath: dest.path) {
+        if let existingFileData = try? Data(contentsOf: dest, options: .mappedIfSafe) {
+            req.setValue(etag(data: existingFileData), forHTTPHeaderField: "If-None-Match")
         }
-        // TODO: Add Content-Length headers to coderd, add download progress delegate
-        let (tempURL, response) = try await URLSession.shared.download(for: req)
-        defer {
-            if FileManager.default.fileExists(atPath: tempURL.path) {
-                do { try FileManager.default.removeItem(at: tempURL) } catch {}
-            }
+    }
+    // TODO: Add Content-Length headers to coderd, add download progress delegate
+    let tempURL: URL
+    let response: URLResponse
+    do {
+        (tempURL, response) = try await URLSession.shared.download(for: req)
+    } catch {
+        throw .networkError(error)
+    }
+    defer {
+        if FileManager.default.fileExists(atPath: tempURL.path) {
+            try? FileManager.default.removeItem(at: tempURL)
         }
+    }
 
-        guard let httpResponse = response as? HTTPURLResponse else {
-            throw DownloadError.invalidResponse
-        }
-        guard httpResponse.statusCode != 304 else {
-            // We already have the latest dylib downloaded on disk
-            return
-        }
+    guard let httpResponse = response as? HTTPURLResponse else {
+        throw .invalidResponse
+    }
+    guard httpResponse.statusCode != 304 else {
+        // We already have the latest dylib downloaded on disk
+        return
+    }
 
-        guard httpResponse.statusCode == 200 else {
-            throw DownloadError.unexpectedStatusCode(httpResponse.statusCode)
-        }
+    guard httpResponse.statusCode == 200 else {
+        throw .unexpectedStatusCode(httpResponse.statusCode)
+    }
 
+    do {
         if FileManager.default.fileExists(atPath: dest.path) {
             try FileManager.default.removeItem(at: dest)
         }
         try FileManager.default.moveItem(at: tempURL, to: dest)
-        try await validator.validate(path: dest)
+    } catch {
+        throw .fileOpError(error)
     }
 }
 
@@ -154,14 +150,20 @@ func etag(data: Data) -> String {
     return "\"\(etag)\""
 }
 
-enum DownloadError: Error {
+public enum DownloadError: Error {
     case unexpectedStatusCode(Int)
     case invalidResponse
+    case networkError(any Error)
+    case fileOpError(any Error)
 
     var localizedDescription: String {
         switch self {
         case let .unexpectedStatusCode(code):
-            return "Unexpected status code: \(code)"
+            return "Unexpected HTTP status code: \(code)"
+        case let .networkError(error):
+            return "Network error: \(error.localizedDescription)"
+        case let .fileOpError(error):
+            return "File operation error: \(error.localizedDescription)"
         case .invalidResponse:
             return "Received non-HTTP response"
         }

Coder Desktop/VPNLibTests/DownloaderTests.swift renamed to Coder Desktop/VPNLibTests/DownloadTests.swift

@@ -3,14 +3,8 @@ import Mocker
 import Testing
 @testable import VPNLib
 
-struct NoopValidator: Validator {
-    func validate(path _: URL) async throws {}
-}
-
-@Suite
-struct DownloaderTests {
-    let downloader = Downloader(validator: NoopValidator())
-
+@Suite(.timeLimit(.minutes(1)))
+struct DownloadTests {
     @Test
     func downloadFile() async throws {
         let destinationURL = FileManager.default.temporaryDirectory.appendingPathComponent(UUID().uuidString)
@@ -19,7 +13,7 @@ struct DownloaderTests {
         let fileURL = URL(string: "http://example.com/test1.txt")!
         Mock(url: fileURL, contentType: .html, statusCode: 200, data: [.get: testData]).register()
 
-        try await downloader.download(src: fileURL, dest: destinationURL)
+        try await download(src: fileURL, dest: destinationURL)
 
         try #require(FileManager.default.fileExists(atPath: destinationURL.path))
         defer { try? FileManager.default.removeItem(at: destinationURL) }
@@ -38,7 +32,7 @@ struct DownloaderTests {
 
         Mock(url: fileURL, contentType: .html, statusCode: 200, data: [.get: testData]).register()
 
-        try await downloader.download(src: fileURL, dest: destinationURL)
+        try await download(src: fileURL, dest: destinationURL)
         try #require(FileManager.default.fileExists(atPath: destinationURL.path))
         let downloadedData = try Data(contentsOf: destinationURL)
         #expect(downloadedData == testData)
@@ -50,7 +44,7 @@ struct DownloaderTests {
         }
         mock.register()
 
-        try await downloader.download(src: fileURL, dest: destinationURL)
+        try await download(src: fileURL, dest: destinationURL)
         let unchangedData = try Data(contentsOf: destinationURL)
         #expect(unchangedData == testData)
         #expect(etagIncluded)
@@ -67,7 +61,7 @@ struct DownloaderTests {
 
         Mock(url: fileURL, contentType: .html, statusCode: 200, data: [.get: ogData]).register()
 
-        try await downloader.download(src: fileURL, dest: destinationURL)
+        try await download(src: fileURL, dest: destinationURL)
         try #require(FileManager.default.fileExists(atPath: destinationURL.path))
         var downloadedData = try Data(contentsOf: destinationURL)
         #expect(downloadedData == ogData)
@@ -79,7 +73,7 @@ struct DownloaderTests {
         }
         mock.register()
 
-        try await downloader.download(src: fileURL, dest: destinationURL)
+        try await download(src: fileURL, dest: destinationURL)
         downloadedData = try Data(contentsOf: destinationURL)
         #expect(downloadedData == newData)
         #expect(etagIncluded)