notnite.com / moonlight
this repo has no description
fork atom

OpenAsar fixes

Cynthia Foxwell ba7c489b 28f297cb

options
unified split
Changed files
+78 -8
packages
injector
src
index.ts
+78 -8
packages/injector/src/index.ts 
···

       
4

       
4

       
 

       
  ipcMain,


     

       
5

       
5

       
 

       
  app


     

       
6

       
6

       
 

       
} from "electron";


     

       
7

       

       
-

       
import Module from "module";


     

       

       
7

       
+

       
import Module from "node:module";


     

       
8

       
8

       
 

       
import { constants } from "@moonlight-mod/types";


     

       
9

       
9

       
 

       
import { readConfig } from "@moonlight-mod/core/config";


     

       
10

       
10

       
 

       
import { getExtensions } from "@moonlight-mod/core/extension";


     
···

       
13

       
13

       
 

       
  loadExtensions,


     

       
14

       
14

       
 

       
  loadProcessedExtensions


     

       
15

       
15

       
 

       
} from "@moonlight-mod/core/extension/loader";


     

       
16

       

       
-

       
import EventEmitter from "events";


     

       

       
16

       
+

       
import EventEmitter from "node:events";


     

       

       
17

       
+

       
import { join, resolve } from "node:path";


     

       
17

       
18

       
 

       



     

       
18

       
19

       
 

       
const logger = new Logger("injector");


     

       
19

       
20

       
 

       



     

       
20

       
21

       
 

       
let oldPreloadPath: string | undefined;


     

       
21

       
22

       
 

       
let corsAllow: string[] = [];


     

       
22

       
23

       
 

       
let isMoonlightDesktop = false;


     

       

       
24

       
+

       
let hasOpenAsar = false;


     

       

       
25

       
+

       
let openAsarConfigPreload: string | undefined;


     

       
23

       
26

       
 

       



     

       
24

       
27

       
 

       
ipcMain.on(constants.ipcGetOldPreloadPath, (e) => {


     

       
25

       
28

       
 

       
  e.returnValue = oldPreloadPath;


     
···

       
74

       
77

       
 

       
  headers[csp] = [stringified];


     

       
75

       
78

       
 

       
}


     

       
76

       
79

       
 

       



     

       

       
80

       
+

       
function removeOpenAsarEventIfPresent(eventHandler: (...args: any[]) => void) {


     

       

       
81

       
+

       
  const code = eventHandler.toString();


     

       

       
82

       
+

       
  if (code.indexOf("bw.webContents.on('dom-ready'") > -1) {


     

       

       
83

       
+

       
    electron.app.off("browser-window-created", eventHandler);


     

       

       
84

       
+

       
  }


     

       

       
85

       
+

       
}


     

       

       
86

       
+

       



     

       
77

       
87

       
 

       
class BrowserWindow extends ElectronBrowserWindow {


     

       
78

       
88

       
 

       
  constructor(opts: BrowserWindowConstructorOptions) {


     

       
79

       
89

       
 

       
    oldPreloadPath = opts.webPreferences!.preload;


     

       
80

       

       
-

       
    opts.webPreferences!.preload = require.resolve("./node-preload.js");


     

       

       
90

       
+

       



     

       

       
91

       
+

       
    // Only overwrite preload if its the actual main client window


     

       

       
92

       
+

       
    if (opts.webPreferences!.preload!.indexOf("discord_desktop_core") > -1) {


     

       

       
93

       
+

       
      opts.webPreferences!.preload = require.resolve("./node-preload.js");


     

       

       
94

       
+

       
    }


     

       
81

       
95

       
 

       



     

       

       
96

       
+

       
    // Event for modifying window options


     

       
82

       
97

       
 

       
    moonlightHost.events.emit("window-options", opts);


     

       

       
98

       
+

       



     

       
83

       
99

       
 

       
    super(opts);


     

       

       
100

       
+

       



     

       

       
101

       
+

       
    // Event for when a window is created


     

       
84

       
102

       
 

       
    moonlightHost.events.emit("window-created", this);


     

       
85

       
103

       
 

       



     

       
86

       
104

       
 

       
    this.webContents.session.webRequest.onHeadersReceived((details, cb) => {


     

       
87

       
105

       
 

       
      if (details.responseHeaders != null) {


     

       

       
106

       
+

       
        // Patch CSP so things can use externally hosted assets


     

       
88

       
107

       
 

       
        if (details.resourceType === "mainFrame") {


     

       
89

       
108

       
 

       
          patchCsp(details.responseHeaders);


     

       
90

       
109

       
 

       
        }


     

       
91

       
110

       
 

       



     

       

       
111

       
+

       
        // Allow plugins to bypass CORS for specific URLs


     

       
92

       
112

       
 

       
        if (corsAllow.some((x) => details.url.startsWith(x))) {


     

       
93

       
113

       
 

       
          details.responseHeaders["access-control-allow-origin"] = ["*"];


     

       
94

       
114

       
 

       
        }


     
···

       
96

       
116

       
 

       
        cb({ cancel: false, responseHeaders: details.responseHeaders });


     

       
97

       
117

       
 

       
      }


     

       
98

       
118

       
 

       
    });


     

       

       
119

       
+

       



     

       

       
120

       
+

       
    if (hasOpenAsar) {


     

       

       
121

       
+

       
      // Remove DOM injections


     

       

       
122

       
+

       
      // Settings can still be opened via:


     

       

       
123

       
+

       
      // `DiscordNative.ipc.send("DISCORD_UPDATED_QUOTES","o")`


     

       

       
124

       
+

       
      // @ts-expect-error Electron internals


     

       

       
125

       
+

       
      const events = electron.app._events["browser-window-created"];


     

       

       
126

       
+

       
      if (Array.isArray(events)) {


     

       

       
127

       
+

       
        for (const event of events) {


     

       

       
128

       
+

       
          removeOpenAsarEventIfPresent(event);


     

       

       
129

       
+

       
        }


     

       

       
130

       
+

       
      } else if (events != null) {


     

       

       
131

       
+

       
        removeOpenAsarEventIfPresent(events);


     

       

       
132

       
+

       
      }


     

       

       
133

       
+

       



     

       

       
134

       
+

       
      // Config screen fails to context bridge properly


     

       

       
135

       
+

       
      // Less than ideal, but better than disabling it everywhere


     

       

       
136

       
+

       
      if (opts.webPreferences!.preload === openAsarConfigPreload) {


     

       

       
137

       
+

       
        opts.webPreferences!.sandbox = false;


     

       

       
138

       
+

       
      }


     

       

       
139

       
+

       
    }


     

       
99

       
140

       
 

       
  }


     

       
100

       
141

       
 

       
}


     

       
101

       
142

       
 

       



     
···

       
115

       
156

       
 

       
  value: "BrowserWindow",


     

       
116

       
157

       
 

       
  writable: false


     

       
117

       
158

       
 

       
});


     

       
118

       

       
-

       
// "aight i'm writing exclusively C# from now on and never touching JavaScript again"


     

       
119

       
159

       
 

       



     

       
120

       
160

       
 

       
export async function inject(asarPath: string) {


     

       
121

       
161

       
 

       
  isMoonlightDesktop = asarPath === "moonlightDesktop";


     
···

       
154

       
194

       
 

       
      }


     

       
155

       
195

       
 

       
    };


     

       
156

       
196

       
 

       



     

       

       
197

       
+

       
    // Check if we're running with OpenAsar


     

       

       
198

       
+

       
    try {


     

       

       
199

       
+

       
      require.resolve(join(asarPath, "updater", "updater.js"));


     

       

       
200

       
+

       
      hasOpenAsar = true;


     

       

       
201

       
+

       
      openAsarConfigPreload = resolve(asarPath, "config", "preload.js");


     

       

       
202

       
+

       
      // eslint-disable-next-line no-empty


     

       

       
203

       
+

       
    } catch {}


     

       

       
204

       
+

       



     

       

       
205

       
+

       
    if (hasOpenAsar) {


     

       

       
206

       
+

       
      // Disable command line switch injection


     

       

       
207

       
+

       
      // I personally think that the command line switches should be vetted by


     

       

       
208

       
+

       
      // the user and not just "trust that these are sane defaults that work


     

       

       
209

       
+

       
      // always". I'm not hating on Ducko or anything, I'm just opinionated.


     

       

       
210

       
+

       
      // Someone can always make a command line modifier plugin, thats the point


     

       

       
211

       
+

       
      // of having host modules.


     

       

       
212

       
+

       
      try {


     

       

       
213

       
+

       
        const cmdSwitchesPath = require.resolve(


     

       

       
214

       
+

       
          join(asarPath, "cmdSwitches.js")


     

       

       
215

       
+

       
        );


     

       

       
216

       
+

       
        require.cache[cmdSwitchesPath] = new Module(


     

       

       
217

       
+

       
          cmdSwitchesPath,


     

       

       
218

       
+

       
          require.cache[require.resolve(asarPath)]


     

       

       
219

       
+

       
        );


     

       

       
220

       
+

       
        require.cache[cmdSwitchesPath]!.exports = () => {};


     

       

       
221

       
+

       
      } catch (error) {


     

       

       
222

       
+

       
        logger.error("Failed to disable OpenAsar's command line flags:", error);


     

       

       
223

       
+

       
      }


     

       

       
224

       
+

       
    }


     

       

       
225

       
+

       



     

       
157

       
226

       
 

       
    patchElectron();


     

       
158

       
227

       
 

       



     

       
159

       
228

       
 

       
    global.moonlightHost.processedExtensions = await loadExtensions(extensions);


     

       
160

       
229

       
 

       
    await loadProcessedExtensions(global.moonlightHost.processedExtensions);


     

       
161

       

       
-

       
  } catch (e) {


     

       
162

       

       
-

       
    logger.error("Failed to inject", e);


     

       

       
230

       
+

       
  } catch (error) {


     

       

       
231

       
+

       
    logger.error("Failed to inject:", error);


     

       
163

       
232

       
 

       
  }


     

       
164

       
233

       
 

       



     

       
165

       
234

       
 

       
  if (isMoonlightDesktop) return;


     

       

       
235

       
+

       



     

       
166

       
236

       
 

       
  // Need to do this instead of require() or it breaks require.main


     

       
167

       

       
-

       
  // @ts-expect-error why are you not documented


     

       

       
237

       
+

       
  // @ts-expect-error Module internals


     

       
168

       
238

       
 

       
  Module._load(asarPath, Module, true);


     

       
169

       
239

       
 

       
}


     

       
170

       
240

       
 

       



     
···

       
187

       
257

       
 

       
    }


     

       
188

       
258

       
 

       
  }


     

       
189

       
259

       
 

       



     

       
190

       

       
-

       
  // exports is a getter only on Windows, let's do some cursed shit instead


     

       

       
260

       
+

       
  // exports is a getter only on Windows, recreate export cache instead


     

       
191

       
261

       
 

       
  const electronPath = require.resolve("electron");


     

       
192

       
262

       
 

       
  const cachedElectron = require.cache[electronPath]!;


     

       
193

       
263

       
 

       
  require.cache[electronPath] = new Module(cachedElectron.id, require.main);