From a14300ec9f7d04fbbaa9f896d46626110baa2b90 Mon Sep 17 00:00:00 2001 From: Sandeep Somavarapu Date: Mon, 28 Oct 2024 11:42:14 +0100 Subject: [PATCH] move signature verification to shared process (#232402) --- src/vs/code/electron-main/app.ts | 13 ------------- .../sharedProcess/sharedProcessMain.ts | 9 +-------- 2 files changed, 1 insertion(+), 21 deletions(-) diff --git a/src/vs/code/electron-main/app.ts b/src/vs/code/electron-main/app.ts index 603edccc2c572..dd1e90bc65b3a 100644 --- a/src/vs/code/electron-main/app.ts +++ b/src/vs/code/electron-main/app.ts @@ -119,7 +119,6 @@ import { IAuxiliaryWindowsMainService } from '../../platform/auxiliaryWindow/ele import { AuxiliaryWindowsMainService } from '../../platform/auxiliaryWindow/electron-main/auxiliaryWindowsMainService.js'; import { normalizeNFC } from '../../base/common/normalization.js'; import { ICSSDevelopmentService, CSSDevelopmentService } from '../../platform/cssDev/node/cssDevService.js'; -import { ExtensionSignatureVerificationService, IExtensionSignatureVerificationService } from '../../platform/extensionManagement/node/extensionSignatureVerificationService.js'; /** * The main VS Code application. There will only ever be one instance, @@ -1115,11 +1114,6 @@ export class CodeApplication extends Disposable { // Dev Only: CSS service (for ESM) services.set(ICSSDevelopmentService, new SyncDescriptor(CSSDevelopmentService, undefined, true)); - if (this.productService.quality !== 'stable') { - // extensions signature verification service - services.set(IExtensionSignatureVerificationService, new SyncDescriptor(ExtensionSignatureVerificationService, undefined, true)); - } - // Init services that require it await Promises.settled([ backupMainService.initialize(), @@ -1161,13 +1155,6 @@ export class CodeApplication extends Disposable { mainProcessElectronServer.registerChannel('userDataProfiles', userDataProfilesService); sharedProcessClient.then(client => client.registerChannel('userDataProfiles', userDataProfilesService)); - if (this.productService.quality !== 'stable') { - // Extension signature verification service - const extensionSignatureVerificationService = accessor.get(IExtensionSignatureVerificationService); - sharedProcessClient.then(client => client.registerChannel('signatureVerificationService', - ProxyChannel.fromService(extensionSignatureVerificationService, disposables))); - } - // Update const updateChannel = new UpdateChannel(accessor.get(IUpdateService)); mainProcessElectronServer.registerChannel('update', updateChannel); diff --git a/src/vs/code/electron-utility/sharedProcess/sharedProcessMain.ts b/src/vs/code/electron-utility/sharedProcess/sharedProcessMain.ts index 80e8fdab8104c..2a99598a73de7 100644 --- a/src/vs/code/electron-utility/sharedProcess/sharedProcessMain.ts +++ b/src/vs/code/electron-utility/sharedProcess/sharedProcessMain.ts @@ -326,14 +326,7 @@ class SharedProcessMain extends Disposable implements IClientConnectionFilter { // Extension Management services.set(IExtensionsProfileScannerService, new SyncDescriptor(ExtensionsProfileScannerService, undefined, true)); services.set(IExtensionsScannerService, new SyncDescriptor(ExtensionsScannerService, undefined, true)); - - if (productService.quality === 'stable') { - services.set(IExtensionSignatureVerificationService, new SyncDescriptor(ExtensionSignatureVerificationService, undefined, true)); - } else { - // Do extension signature verification in the main process in insiders - services.set(IExtensionSignatureVerificationService, ProxyChannel.toService(mainProcessService.getChannel('signatureVerificationService'))); - } - + services.set(IExtensionSignatureVerificationService, new SyncDescriptor(ExtensionSignatureVerificationService, undefined, true)); services.set(INativeServerExtensionManagementService, new SyncDescriptor(ExtensionManagementService, undefined, true)); // Extension Gallery