session: use clock for times

ellemouton · ellemouton · commit 64f79617e42f · 2025-02-11T19:22:08.000+02:00
And be consistent with UTC conversions.
diff --git a/session/interface.go b/session/interface.go
@@ -73,9 +73,10 @@ type Session struct {
 
 // buildSession creates a new session with the given user-defined parameters.
 func buildSession(id ID, localPrivKey *btcec.PrivateKey, label string, typ Type,
-	expiry time.Time, serverAddr string, devServer bool, perms []bakery.Op,
-	caveats []macaroon.Caveat, featureConfig FeaturesConfig,
-	privacy bool, linkedGroupID *ID, flags PrivacyFlags) (*Session, error) {
+	created, expiry time.Time, serverAddr string, devServer bool,
+	perms []bakery.Op, caveats []macaroon.Caveat,
+	featureConfig FeaturesConfig, privacy bool, linkedGroupID *ID,
+	flags PrivacyFlags) (*Session, error) {
 
 	_, pairingSecret, err := mailbox.NewPassphraseEntropy()
 	if err != nil {
@@ -98,8 +99,8 @@ func buildSession(id ID, localPrivKey *btcec.PrivateKey, label string, typ Type,
 		Label:             label,
 		State:             StateCreated,
 		Type:              typ,
-		Expiry:            expiry,
-		CreatedAt:         time.Now(),
+		Expiry:            expiry.UTC(),
+		CreatedAt:         created.UTC(),
 		ServerAddr:        serverAddr,
 		DevServer:         devServer,
 		MacaroonRootKey:   macRootKey,
diff --git a/session/kvdb_store.go b/session/kvdb_store.go
@@ -194,8 +194,9 @@ func (db *BoltStore) NewSession(id ID, localPrivKey *btcec.PrivateKey,
 	flags PrivacyFlags) (*Session, error) {
 
 	return buildSession(
-		id, localPrivKey, label, typ, expiry, serverAddr, devServer,
-		perms, caveats, featureConfig, privacy, linkedGroupID, flags,
+		id, localPrivKey, label, typ, db.clock.Now(), expiry,
+		serverAddr, devServer, perms, caveats, featureConfig, privacy,
+		linkedGroupID, flags,
 	)
 }
 
@@ -424,7 +425,7 @@ func (db *BoltStore) RevokeSession(key *btcec.PublicKey) error {
 		}
 
 		session.State = StateRevoked
-		session.RevokedAt = time.Now()
+		session.RevokedAt = db.clock.Now().UTC()
 
 		var buf bytes.Buffer
 		if err := SerializeSession(&buf, session); err != nil {
diff --git a/session/store_test.go b/session/store_test.go
@@ -290,6 +290,7 @@ func newSession(t *testing.T, db Store, label string,
 
 	session, err := buildSession(
 		id, priv, label, TypeMacaroonAdmin,
+		time.Now(),
 		time.Date(99999, 1, 1, 0, 0, 0, 0, time.UTC),
 		"foo.bar.baz:1234", true, nil, nil, nil, true, linkedGroupID,
 		[]PrivacyFlag{ClearPubkeys},
diff --git a/session/tlv.go b/session/tlv.go
@@ -237,8 +237,8 @@ func DeserializeSession(r io.Reader) (*Session, error) {
 	session.Label = string(label)
 	session.State = State(state)
 	session.Type = Type(typ)
-	session.Expiry = time.Unix(int64(expiry), 0)
-	session.CreatedAt = time.Unix(int64(createdAt), 0)
+	session.Expiry = time.Unix(int64(expiry), 0).UTC()
+	session.CreatedAt = time.Unix(int64(createdAt), 0).UTC()
 	session.ServerAddr = string(serverAddr)
 	session.DevServer = devServer == 1
 	session.WithPrivacyMapper = privacy == 1
@@ -248,7 +248,7 @@ func DeserializeSession(r io.Reader) (*Session, error) {
 	}
 
 	if revokedAt != 0 {
-		session.RevokedAt = time.Unix(int64(revokedAt), 0)
+		session.RevokedAt = time.Unix(int64(revokedAt), 0).UTC()
 	}
 
 	if t, ok := parsedTypes[typeMacaroonRecipe]; ok && t == nil {
diff --git a/session/tlv_test.go b/session/tlv_test.go
@@ -131,6 +131,7 @@ func TestSerializeDeserializeSession(t *testing.T) {
 
 			session, err := buildSession(
 				id, priv, test.name, test.sessType,
+				time.Now(),
 				time.Date(99999, 1, 1, 0, 0, 0, 0, time.UTC),
 				"foo.bar.baz:1234", true, test.perms,
 				test.caveats, test.featureConfig, true,
@@ -185,6 +186,7 @@ func TestGroupIDForOlderSessions(t *testing.T) {
 
 	session, err := buildSession(
 		id, priv, "test-session", TypeMacaroonAdmin,
+		time.Now(),
 		time.Date(99999, 1, 1, 0, 0, 0, 0, time.UTC),
 		"foo.bar.baz:1234", true, nil, nil, nil, false, nil,
 		PrivacyFlags{},
@@ -220,6 +222,7 @@ func TestGroupID(t *testing.T) {
 	// Create session 1 which is not linked to any previous session.
 	session1, err := buildSession(
 		id, priv, "test-session", TypeMacaroonAdmin,
+		time.Now(),
 		time.Date(99999, 1, 1, 0, 0, 0, 0, time.UTC),
 		"foo.bar.baz:1234", true, nil, nil, nil, false, nil,
 		PrivacyFlags{},
@@ -234,6 +237,7 @@ func TestGroupID(t *testing.T) {
 	require.NoError(t, err)
 	session2, err := buildSession(
 		id, priv, "test-session", TypeMacaroonAdmin,
+		time.Now(),
 		time.Date(99999, 1, 1, 0, 0, 0, 0, time.UTC),
 		"foo.bar.baz:1234", true, nil, nil, nil, false,
 		&session1.GroupID, PrivacyFlags{},

Original file line number	Diff line number	Diff line change
`@@ -194,8 +194,9 @@ func (db BoltStore) NewSession(id ID, localPrivKey btcec.PrivateKey,`
`194`	`194`	`flags PrivacyFlags) (*Session, error) {`
`195`	`195`
`196`	`196`	`return buildSession(`
`197`		`- id, localPrivKey, label, typ, expiry, serverAddr, devServer,`
`198`		`- perms, caveats, featureConfig, privacy, linkedGroupID, flags,`
	`197`	`+ id, localPrivKey, label, typ, db.clock.Now(), expiry,`
	`198`	`+ serverAddr, devServer, perms, caveats, featureConfig, privacy,`
	`199`	`+ linkedGroupID, flags,`
`199`	`200`	`)`
`200`	`201`	`}`
`201`	`202`
`@@ -424,7 +425,7 @@ func (db BoltStore) RevokeSession(key btcec.PublicKey) error {`
`424`	`425`	`}`
`425`	`426`
`426`	`427`	`session.State = StateRevoked`
`427`		`- session.RevokedAt = time.Now()`
	`428`	`+ session.RevokedAt = db.clock.Now().UTC()`
`428`	`429`
`429`	`430`	`var buf bytes.Buffer`
`430`	`431`	`if err := SerializeSession(&buf, session); err != nil {`