Merge branch 'master' into mqtt

# Conflicts: # package-lock.json # server/database.js
2025-08-02 03:26:31 -04:00 · 2022-01-13 11:09:16 +08:00 · 2022-01-13 11:09:16 +08:00 · 076d6bdbb6
commit 076d6bdbb6
parent 4118de6d53 f9751d0c01
83 changed files with 4004 additions and 1222 deletions
--- a/server/util-server.js
+++ b/server/util-server.js
@ -17,7 +17,7 @@ const mqtt = require("mqtt");
 exports.WIN = /^win/.test(process.platform);
 exports.LIN = /^linux/.test(process.platform);
 exports.MAC = /^darwin/.test(process.platform);
-exports.FBSD = /^freebsd/.test(process.platform);
+exports.BSD = /bsd$/.test(process.platform);

 /**
 * Init or reset JWT secret
@ -239,8 +239,13 @@ const getDaysRemaining = (validFrom, validTo) => {
 // param: info -  the chain obtained from getPeerCertificate()
 const parseCertificateInfo = function (info) {
    let link = info;
+    let i = 0;
+
+    const existingList = {};

    while (link) {
+        debug(`[${i}] ${link.fingerprint}`);
+
        if (!link.valid_from || !link.valid_to) {
            break;
        }
@ -248,15 +253,24 @@ const parseCertificateInfo = function (info) {
        link.validFor = link.subjectaltname?.replace(/DNS:|IP Address:/g, "").split(", ");
        link.daysRemaining = getDaysRemaining(new Date(), link.validTo);

+        existingList[link.fingerprint] = true;
+
        // Move up the chain until loop is encountered
        if (link.issuerCertificate == null) {
            break;
-        } else if (link.fingerprint == link.issuerCertificate.fingerprint) {
+        } else if (link.issuerCertificate.fingerprint in existingList) {
+            debug(`[Last] ${link.issuerCertificate.fingerprint}`);
            link.issuerCertificate = null;
            break;
        } else {
            link = link.issuerCertificate;
        }
+
+        // Should be no use, but just in case.
+        if (i > 500) {
+            throw new Error("Dead loop occurred in parseCertificateInfo");
+        }
+        i++;
    }

    return info;
@ -266,6 +280,7 @@ exports.checkCertificate = function (res) {
    const info = res.request.res.socket.getPeerCertificate(true);
    const valid = res.request.res.socket.authorized || false;

+    debug("Parsing Certificate Info");
    const parsedInfo = parseCertificateInfo(info);

    return {