fix: sécuriser shutdown, config par défaut et reconnexion socket

Co-authored-by: aider (openrouter/openai/gpt-5.3-codex) <aider@aider.chat>
2026-02-25 21:44:40 +01:00
parent 617ecd2014
commit 6cd6c4c3b8
11 changed files with 394 additions and 56 deletions
--- a/cmd/ja4sentinel/main.go
+++ b/cmd/ja4sentinel/main.go
@ -6,6 +6,7 @@ import (
 	"fmt"
 	"os"
 	"os/signal"
+	"sync"
 	"syscall"
 	"time"

@ -83,23 +84,37 @@ func main() {
 	helloChan := make(chan api.TLSClientHello, 1000)
 	errorChan := make(chan error, 100)

+	var wg sync.WaitGroup
+
 	// Setup signal handling for graceful shutdown
 	sigChan := make(chan os.Signal, 1)
 	signal.Notify(sigChan, syscall.SIGINT, syscall.SIGTERM)

 	// Start capture goroutine
+	wg.Add(1)
 	go func() {
+		defer wg.Done()
+		defer close(packetChan)
+
 		logger.Info("capture", "Starting packet capture", map[string]string{
 			"interface": cfg.Core.Interface,
 		})
+
 		err := captureImpl.Run(cfg.Core, packetChan)
 		if err != nil {
-			errorChan <- fmt.Errorf("capture error: %w", err)
+			select {
+			case errorChan <- fmt.Errorf("capture error: %w", err):
+			default:
+			}
 		}
 	}()

 	// Start TLS parsing goroutine
+	wg.Add(1)
 	go func() {
+		defer wg.Done()
+		defer close(helloChan)
+
 		for pkt := range packetChan {
 			hello, err := parser.Process(pkt)
 			if err != nil {
@ -121,7 +136,10 @@ func main() {
 	}()

 	// Start fingerprinting and output goroutine
+	wg.Add(1)
 	go func() {
+		defer wg.Done()
+
 		for hello := range helloChan {
 			fingerprints, err := engine.FromClientHello(hello)
 			if err != nil {
@ -162,6 +180,21 @@ func main() {
 	// Graceful shutdown
 	logger.Info("service", "Shutting down", nil)

+	if err := captureImpl.Close(); err != nil {
+		logger.Error("capture", "Error closing capture", map[string]string{
+			"error": err.Error(),
+		})
+	}
+
+	wg.Wait()
+
+	// Close parser (stops cleanup goroutine)
+	if err := parser.Close(); err != nil {
+		logger.Error("tlsparse", "Error closing parser", map[string]string{
+			"error": err.Error(),
+		})
+	}
+
 	// Close output writer
 	if closer, ok := writer.(interface{ CloseAll() error }); ok {
 		if err := closer.CloseAll(); err != nil {
@ -171,19 +204,5 @@ func main() {
 		}
 	}

-	// Close parser (stops cleanup goroutine)
-	if err := parser.Close(); err != nil {
-		logger.Error("tlsparse", "Error closing parser", map[string]string{
-			"error": err.Error(),
-		})
-	}
-
-	// Close capture
-	if err := captureImpl.Close(); err != nil {
-		logger.Error("capture", "Error closing capture", map[string]string{
-			"error": err.Error(),
-		})
-	}
-
 	logger.Info("service", "ja4sentinel stopped", nil)
 }