vrr/qwen-code
2
0
Fork 0
mirror of https://github.com/QwenLM/qwen-code.git synced 2026-05-04 22:51:08 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 11

fix(channels): address PR review — security, bugs, and reliability

Browse source 
- fix: sanitize remote filenames with basename() and isolate uploads
  in UUID subdirs to prevent path traversal and collision (#2-4, #27)
- fix: use crypto.randomInt() for pairing codes instead of Math.random() (#5)
- fix: pass config.sessionScope instead of hardcoded 'user' (#6);
  add per-channel scope overrides via setChannelScope() for startAll (#7)
- fix: removeSession now returns removed session IDs and persists
  when chatId is provided (#8)
- fix: /clear only removes the cleared session from instructedSessions,
  not all sessions (#9)
- fix: DingTalk @mention stripping now removes only the first mention
  instead of all mentions (#10)
- fix: remove dead TELEGRAF_COMMANDS Set and its guard (#13)
- fix: WeChat cursor saved after message processing, not before (#14)
- fix: crash recovery uses time-window counting instead of resettable
  counter to prevent infinite restart loops (#17)
- fix: call channel.disconnect() before exit on crash exhaustion (#18)
This commit is contained in:
tanzhenxin 2026-03-31 00:57:59 +00:00
parent 2ca45b72f5
commit 7bbd5e6471
9 changed files with 152 additions and 74 deletions
Download patch file Download diff file Expand all files Collapse all files

53
packages/cli/src/commands/channel/start.ts
View file

@ -19,6 +19,7 @@ import {
import { getExtensionManager } from '../extensions/utils.js';
const MAX_CRASH_RESTARTS = 3;
const CRASH_WINDOW_MS = 5 * 60 * 1000; // 5-minute window for counting crashes
const RESTART_DELAY_MS = 3000;
function sessionsPath(): string {
@ -165,13 +166,18 @@ async function startSingle(name: string): Promise<void> {
const cliEntryPath = findCliEntryPath();
let shuttingDown = false;
let crashCount = 0;
const crashTimestamps: number[] = [];
const bridgeOpts = { cliEntryPath, cwd: config.cwd, model: config.model };
let bridge = new AcpBridge(bridgeOpts);
await bridge.start();
const router = new SessionRouter(bridge, config.cwd, 'user', sessionsPath());
const router = new SessionRouter(
bridge,
config.cwd,
config.sessionScope,
sessionsPath(),
);
const channels: Map<string, ChannelBase> = new Map();
const channel = createChannel(name, config, bridge, { router });
@ -185,18 +191,25 @@ async function startSingle(name: string): Promise<void> {
bridge.on('disconnected', async () => {
if (shuttingDown) return;
crashCount++;
if (crashCount > MAX_CRASH_RESTARTS) {
const now = Date.now();
crashTimestamps.push(now);
// Only count crashes within the recent window
const recentCrashes = crashTimestamps.filter(
(ts) => now - ts < CRASH_WINDOW_MS,
);
if (recentCrashes.length > MAX_CRASH_RESTARTS) {
writeStderrLine(
`[Channel] Bridge crashed ${crashCount} times. Giving up.`,
`[Channel] Bridge crashed ${recentCrashes.length} times in ${CRASH_WINDOW_MS / 1000}s. Giving up.`,
);
channel.disconnect();
router.clearAll();
removeServiceInfo();
process.exit(1);
}
writeStderrLine(
`[Channel] Bridge crashed (${crashCount}/${MAX_CRASH_RESTARTS}). Restarting in ${RESTART_DELAY_MS / 1000}s...`,
`[Channel] Bridge crashed (${recentCrashes.length}/${MAX_CRASH_RESTARTS} in window). Restarting in ${RESTART_DELAY_MS / 1000}s...`,
);
await new Promise((r) => setTimeout(r, RESTART_DELAY_MS));
@ -211,7 +224,6 @@ async function startSingle(name: string): Promise<void> {
writeStdoutLine(
`[Channel] Bridge restarted. Sessions restored: ${result.restored}, failed: ${result.failed}`,
);
crashCount = 0;
} catch (err) {
writeStderrLine(
`[Channel] Failed to restart bridge: ${err instanceof Error ? err.message : String(err)}`,
@ -270,7 +282,7 @@ async function startAll(): Promise<void> {
const cliEntryPath = findCliEntryPath();
const defaultCwd = process.cwd();
let shuttingDown = false;
let crashCount = 0;
const crashTimestamps: number[] = [];
// All channels share one bridge process. Use the first channel's model.
const models = [
@ -291,6 +303,10 @@ async function startAll(): Promise<void> {
await bridge.start();
const router = new SessionRouter(bridge, defaultCwd, 'user', sessionsPath());
// Register per-channel scope overrides so each channel uses its own sessionScope
for (const { name, config } of parsed) {
router.setChannelScope(name, config.sessionScope);
}
const channels: Map<string, ChannelBase> = new Map();
writeStdoutLine(
@ -330,18 +346,30 @@ async function startAll(): Promise<void> {
bridge.on('disconnected', async () => {
if (shuttingDown) return;
crashCount++;
if (crashCount > MAX_CRASH_RESTARTS) {
const now = Date.now();
crashTimestamps.push(now);
const recentCrashes = crashTimestamps.filter(
(ts) => now - ts < CRASH_WINDOW_MS,
);
if (recentCrashes.length > MAX_CRASH_RESTARTS) {
writeStderrLine(
`[Channel] Bridge crashed ${crashCount} times. Giving up.`,
`[Channel] Bridge crashed ${recentCrashes.length} times in ${CRASH_WINDOW_MS / 1000}s. Giving up.`,
);
for (const channel of channels.values()) {
try {
channel.disconnect();
} catch {
// best-effort
}
}
router.clearAll();
removeServiceInfo();
process.exit(1);
}
writeStderrLine(
`[Channel] Bridge crashed (${crashCount}/${MAX_CRASH_RESTARTS}). Restarting in ${RESTART_DELAY_MS / 1000}s...`,
`[Channel] Bridge crashed (${recentCrashes.length}/${MAX_CRASH_RESTARTS} in window). Restarting in ${RESTART_DELAY_MS / 1000}s...`,
);
await new Promise((r) => setTimeout(r, RESTART_DELAY_MS));
@ -358,7 +386,6 @@ async function startAll(): Promise<void> {
writeStdoutLine(
`[Channel] Bridge restarted. Sessions restored: ${result.restored}, failed: ${result.failed}`,
);
crashCount = 0;
} catch (err) {
writeStderrLine(
`[Channel] Failed to restart bridge: ${err instanceof Error ? err.message : String(err)}`,