various fixes

mobula9 · mobula9 · commit e7582538c0fe · 2020-12-22T10:57:36.000+01:00
diff --git a/crowdsec.php b/crowdsec.php
@@ -25,6 +25,7 @@ class WordpressCrowdSecBouncerException extends \RuntimeException
 }
 
 require_once __DIR__.'/inc/constants.php';
+require_once __DIR__.'/inc/check-config.php';
 require_once __DIR__.'/inc/scheduling.php';
 require_once __DIR__.'/inc/plugin-setup.php';
 register_activation_hook(__FILE__, 'activate_crowdsec_plugin');
diff --git a/inc/admin/advanced-settings.php b/inc/admin/advanced-settings.php
@@ -60,20 +60,24 @@ function adminAdvancedSettings()
             add_settings_error('Technology', 'crowdsec_error', 'Technology: Incorrect cache technology selected.');
         }
 
-        $bouncer = getBouncerInstance();
-        $bouncer->clearCache();
-        $message = __('Cache system changed. Previous cache data has been cleared.');
-
-        // Update wp-cron schedule if stream mode is enabled
-        if ((bool) get_option('crowdsec_stream_mode')) {
-            $bouncer = getBouncerInstance($input); // Reload bouncer instance with the new cache system
-            $result = $bouncer->warmBlocklistCacheUp();
-            $message .= __(' As the stream mode is enabled, the cache has just been warmed up, '.($result > 0 ? 'there are now '.$result.' decisions' : 'there is now '.$result.' decision').' in cache.');
-            scheduleBlocklistRefresh();
+        
+        try {
+            $bouncer = getBouncerInstance();
+            $bouncer->clearCache();
+            $message = __('Cache system changed. Previous cache data has been cleared.');
+
+            // Update wp-cron schedule if stream mode is enabled
+            if ((bool) get_option('crowdsec_stream_mode')) {
+                $bouncer = getBouncerInstance($input); // Reload bouncer instance with the new cache system
+                $result = $bouncer->warmBlocklistCacheUp();
+                $message .= __(' As the stream mode is enabled, the cache has just been warmed up, '.($result > 0 ? 'there are now '.$result.' decisions' : 'there is now '.$result.' decision').' in cache.');
+                scheduleBlocklistRefresh();
+            }
+            AdminNotice::displaySuccess($message);
+        } catch (WordpressCrowdSecBouncerException $e) {
+            AdminNotice::displayError($e->getMessage());
         }
 
-        AdminNotice::displaySuccess($message);
-
         return $input;
     }, ((CROWDSEC_CACHE_SYSTEM_PHPFS === get_option('crowdsec_cache_system')) ?
         '<input style="margin-right:10px" type="button" value="Prune now" class="button button-secondary" onclick="document.getElementById(\'crowdsec_ation_prune_cache\').submit();">' : '').
diff --git a/inc/admin/init.php b/inc/admin/init.php
@@ -8,15 +8,16 @@
 add_action('admin_notices', [new AdminNotice(), 'displayAdminNotice']);
 
 if (is_admin()) {
+
     function wrapErrorMessage(string $errorMessage)
     {
-        return "There is a problem in your CrowdSec configuration. $errorMessage";
+        return "CrowdSec: $errorMessage";
     }
 
     function wrapBlockingErrorMessage(string $errorMessage)
     {
         return wrapErrorMessage($errorMessage).
-        ' <br><br>Important note: Until you fix this problem, you will not be protected against attacks.';
+    '<br>Important: Until you fix this problem, <strong>the website will not be protected against attacks</strong>.';
     }
 
     if (false) {
@@ -40,7 +41,7 @@ function clearBouncerCacheInAdminPage()
 
             AdminNotice::displaySuccess($message);
         } catch (WordpressCrowdSecBouncerException $e) {
-            getCrowdSecLoggerInstance()->error(null, [
+            getCrowdSecLoggerInstance()->error('', [
                 'type' => 'WP_EXCEPTION_WHILE_CLEARING_CACHE',
                 'messsage' => $e->getMessage(),
                 'code' => $e->getCode(),
@@ -62,11 +63,10 @@ function refreshBouncerCacheInAdminPage()
             if (get_option('crowdsec_stream_mode')) {
                 $bouncer = getBouncerInstance();
                 $result = $bouncer->refreshBlocklistCache();
-                getCrowdSecLoggerInstance()->error(var_export($result, true));
                 AdminNotice::displaySuccess(__(' The cache has just been refreshed ('.($result['new'] > 0 ? $result['new'].' new decisions' : $result['new'].' new decision').', '.$result['deleted'].' deleted).'));
             }
         } catch (WordpressCrowdSecBouncerException $e) {
-            getCrowdSecLoggerInstance()->error(null, [
+            getCrowdSecLoggerInstance()->error('', [
                 'type' => 'WP_EXCEPTION_WHILE_REFRESHING_CACHE',
                 'messsage' => $e->getMessage(),
                 'code' => $e->getCode(),
@@ -85,7 +85,7 @@ function pruneBouncerCacheInAdminPage()
 
             AdminNotice::displaySuccess(__('CrowdSec cache has just been pruned.'));
         } catch (WordpressCrowdSecBouncerException $e) {
-            getCrowdSecLoggerInstance()->error(null, [
+            getCrowdSecLoggerInstance()->error('', [
                 'type' => 'WP_EXCEPTION_WHILE_PRUNING',
                 'messsage' => $e->getMessage(),
                 'code' => $e->getCode(),
@@ -116,8 +116,8 @@ function pruneBouncerCacheInAdminPage()
     // THEME
     add_action('admin_enqueue_scripts', function () {
         // enqueue all our scripts
-        wp_enqueue_style('mypluginstyle', CROWDSEC_PLUGIN_URL.'assets/crowdsec.css');
-        wp_enqueue_script('mypluginscript', CROWDSEC_PLUGIN_URL.'assets/crowdsec.js');
+        wp_enqueue_style('mypluginstyle', CROWDSEC_PLUGIN_URL.'/inc/assets/crowdsec.css');
+        wp_enqueue_script('mypluginscript', CROWDSEC_PLUGIN_URL.'inc/assets/crowdsec.js');
     });
 
     // PLUGINS LIST
@@ -149,7 +149,7 @@ function addFieldCheckbox(string $optionName, string $label, string $optionGroup
                     if ($previousState && !$currentState) {
                         $onDeactivation();
                     }
-                    getCrowdSecLoggerInstance()->info(null, ['type' => 'WP_SETTING_UPDATE', $optionName => $currentState]);
+                    getCrowdSecLoggerInstance()->info('', ['type' => 'WP_SETTING_UPDATE', $optionName => $currentState]);
                 }
 
                 return $input;
@@ -176,7 +176,7 @@ function addFieldString(string $optionName, string $label, string $optionGroup,
 
                 if ($previousState !== $currentState) {
                     $currentState = $onChange($currentState);
-                    getCrowdSecLoggerInstance()->info(null, ['type' => 'WP_SETTING_UPDATE', $optionName => $currentState]);
+                    getCrowdSecLoggerInstance()->info('', ['type' => 'WP_SETTING_UPDATE', $optionName => $currentState]);
                 }
 
                 return $currentState;
@@ -200,7 +200,7 @@ function addFieldSelect(string $optionName, string $label, string $optionGroup,
 
                 if ($previousState !== $currentState) {
                     $currentState = $onChange($currentState);
-                    getCrowdSecLoggerInstance()->info(null, ['type' => 'WP_SETTING_UPDATE', $optionName => $currentState]);
+                    getCrowdSecLoggerInstance()->info('', ['type' => 'WP_SETTING_UPDATE', $optionName => $currentState]);
                 }
 
                 return $currentState;
diff --git a/inc/bounce-current-ip.php b/inc/bounce-current-ip.php
@@ -144,12 +144,12 @@ function safelyBounceCurrentIp()
 
         $everywhere = empty(get_option('crowdsec_public_website_only'));
         $shoudRun = ($everywhere || !is_admin());
-        if ($shoudRun) {
+        if ($shoudRun && isBouncerConfigOk()) {
             bounceCurrentIp();
         }
         restore_error_handler();
     } catch (\Exception $e) {
-        getCrowdSecLoggerInstance()->error(null, [
+        getCrowdSecLoggerInstance()->error('', [
             'type' => 'WP_EXCEPTION_WHILE_BOUNCING',
             'messsage' => $e->getMessage(),
             'code' => $e->getCode(),
diff --git a/inc/bouncer-instance.php b/inc/bouncer-instance.php
@@ -126,7 +126,11 @@ function getBouncerInstance(string $forcedCacheSystem = null): Bouncer
     $logger = getCrowdSecLoggerInstance();
 
     // Instanciate the bouncer
-    $cacheAdapter = getCacheAdapterInstance($forcedCacheSystem);
+    try {
+        $cacheAdapter = getCacheAdapterInstance($forcedCacheSystem);
+    } catch (Symfony\Component\Cache\Exception\InvalidArgumentException $e) {
+        throw new WordpressCrowdSecBouncerException($e->getMessage());
+    }
     $bouncer = new Bouncer($cacheAdapter, $logger);
     $bouncer->configure([
         'api_key' => $apiKey,
diff --git a/inc/check-config.php b/inc/check-config.php
@@ -0,0 +1,45 @@
+<?php
+
+function checkCrowdSecConfig(): array
+{
+    $issues = ['errors' => [], 'warnings' => []];
+
+    $bouncingLevel = esc_attr(get_option('crowdsec_bouncing_level'));
+    $shouldBounce = (CROWDSEC_BOUNCING_LEVEL_DISABLED !== $bouncingLevel);
+
+    if ($shouldBounce) {
+        $apiUrl = esc_attr(get_option('crowdsec_api_url'));
+        if (empty($apiUrl)) {
+            $issues['errors'][] = [
+                'type' => 'INCORRECT_API_URL',
+                'message' => 'Bouncer enabled but no API URL provided',
+            ];
+        }
+
+        $apiKey = esc_attr(get_option('crowdsec_api_key'));
+        if (empty($apiKey)) {
+            $issues['errors'][] = [
+                'type' => 'INCORRECT_API_KEY',
+                'message' => 'Bouncer enabled but no API key provided',
+            ];
+        }
+
+        try {
+            getCacheAdapterInstance();
+        } catch (WordpressCrowdSecBouncerException $e) {
+            $issues['errors'][] = [
+                'type' => 'CACHE_CONFIG_ERROR',
+                'message' => $e->getMessage(),
+            ];
+        }
+    }
+
+    return $issues;
+}
+
+function isBouncerConfigOk(): bool
+{
+    $issues = checkCrowdSecConfig();
+
+    return !count($issues['errors']) && !count($issues['warnings']);
+}
diff --git a/inc/scheduling.php b/inc/scheduling.php
@@ -22,6 +22,13 @@ function crowdSecRefreshBlocklist()
         $bouncer = getBouncerInstance();
         $bouncer->refreshBlocklistCache();
     } catch (WordpressCrowdSecBouncerException $e) {
+        getCrowdSecLoggerInstance()->error('', [
+            'type' => 'WP_EXCEPTION_WHILE_REFRESHING_CACHE',
+            'messsage' => $e->getMessage(),
+            'code' => $e->getCode(),
+            'file' => $e->getFile(),
+            'line' => $e->getLine(),
+        ]);
     }
 }
 

Original file line number	Diff line number	Diff line change
`@@ -25,6 +25,7 @@ class WordpressCrowdSecBouncerException extends \RuntimeException`
`25`	`25`	`}`
`26`	`26`
`27`	`27`	`require_once __DIR__.'/inc/constants.php';`
	`28`	`+require_once __DIR__.'/inc/check-config.php';`
`28`	`29`	`require_once __DIR__.'/inc/scheduling.php';`
`29`	`30`	`require_once __DIR__.'/inc/plugin-setup.php';`
`30`	`31`	`register_activation_hook(__FILE__, 'activate_crowdsec_plugin');`
Original file line number	Diff line number	Diff line change
`@@ -22,6 +22,13 @@ function crowdSecRefreshBlocklist()`
`22`	`22`	`$bouncer = getBouncerInstance();`
`23`	`23`	`$bouncer->refreshBlocklistCache();`
`24`	`24`	`} catch (WordpressCrowdSecBouncerException $e) {`
	`25`	`+ getCrowdSecLoggerInstance()->error('', [`
	`26`	`+ 'type' => 'WP_EXCEPTION_WHILE_REFRESHING_CACHE',`
	`27`	`+ 'messsage' => $e->getMessage(),`
	`28`	`+ 'code' => $e->getCode(),`
	`29`	`+ 'file' => $e->getFile(),`
	`30`	`+ 'line' => $e->getLine(),`
	`31`	`+ ]);`
`25`	`32`	`}`
`26`	`33`	`}`
`27`	`34`