waveterm/wavesrv/pkg/bufferedpipe/bufferedpipe.go

// Copyright 2023, Command Line Inc.
// SPDX-License-Identifier: Apache-2.0

// Provides a mechanism for writing data to a buffer and reading it later. The buffer is stored in a map of buffered pipes, which are removed after a certain amount of time. The output of a buffered pipe can be read by sending a GET request to a specific URL.
package bufferedpipe

import (
	"bytes"
	"io"
	"log"
	"net/http"
	"net/url"
	"sync"
	"sync/atomic"
	"time"

	"github.com/google/uuid"
	"github.com/wavetermdev/waveterm/waveshell/pkg/wlog"
	"github.com/wavetermdev/waveterm/wavesrv/pkg/scbase"
	"github.com/wavetermdev/waveterm/wavesrv/pkg/waveenc"
)

const (
	BufferedPipeMapTTL    = 30 * time.Second     // The time-to-live for a buffered pipe in the map of buffered pipes.
	BufferedPipeGetterUrl = "/api/buffered-pipe" // The URL for getting the output of a buffered pipe.
)

// A pipe that allows for lazy writing to a downstream writer. Data written to the pipe is buffered until WriteTo is called.
type BufferedPipe struct {
	Key            string       // a unique key for the pipe
	buffer         bytes.Buffer // buffer of data to be written to the downstream writer once it is ready
	closed         atomic.Bool  // whether the pipe has been closed
	bufferDataCond *sync.Cond   // Condition variable to signal waiting writers that there is either data to write or the pipe has been closed
	downstreamLock *sync.Mutex  // Lock to ensure that only one goroutine can read from the buffer at a time
}

// Create a new BufferedPipe with a timeout. The writer will be closed after the timeout
func NewBufferedPipe(timeout time.Duration) *BufferedPipe {
	newPipe := &BufferedPipe{
		Key:            uuid.New().String(),
		buffer:         bytes.Buffer{},
		closed:         atomic.Bool{},
		bufferDataCond: &sync.Cond{L: &sync.Mutex{}},
		downstreamLock: &sync.Mutex{},
	}
	SetBufferedPipe(newPipe)
	time.AfterFunc(timeout, func() {
		newPipe.Close()
	})
	return newPipe
}

// Get the URL for reading the output of the pipe.
func (pipe *BufferedPipe) GetOutputUrl() (string, error) {
	qvals := make(url.Values)
	qvals.Set("key", pipe.Key)
	qvals.Set("nonce", uuid.New().String())
	hmacStr, err := waveenc.ComputeUrlHmac([]byte(scbase.WaveAuthKey), BufferedPipeGetterUrl, qvals)
	if err != nil {
		return "", err
	}

	qvals.Set("hmac", hmacStr)
	return BufferedPipeGetterUrl + "?" + qvals.Encode(), nil
}

// Write data to the buffer.
func (pipe *BufferedPipe) Write(p []byte) (n int, err error) {
	if pipe.closed.Load() {
		return 0, io.ErrClosedPipe
	}

	defer func() {
		pipe.bufferDataCond.L.Unlock()
		pipe.bufferDataCond.Broadcast()
	}()
	pipe.bufferDataCond.L.Lock()

	return pipe.buffer.Write(p)
}

// Write all buffered data to a waiting writer and block, sending all subsequent data until the pipe is closed. Only one goroutine should call this method.
func (pipe *BufferedPipe) WriteTo(w io.Writer) (n int64, err error) {
	// Lock the buffer to ensure that only one downstream writer can read from it at a time.
	if !pipe.downstreamLock.TryLock() {
		return 0, io.ErrClosedPipe
	}

	defer func() {
		pipe.bufferDataCond.L.Unlock()
		pipe.downstreamLock.Unlock()
	}()
	pipe.bufferDataCond.L.Lock()
	for {
		n1, err := pipe.buffer.WriteTo(w)
		if err != nil {
			return n, err
		}
		n += n1

		// Check if the pipe has been closed. If it has, we don't need to wait for more data.
		if pipe.closed.Load() {
			break
		}

		// Wait for more data to be written to the buffer or for the pipe to be closed.
		pipe.bufferDataCond.Wait()
	}
	return n, nil
}

// Close the pipe. This will cause any blocking WriteTo calls to return.
func (pipe *BufferedPipe) Close() error {
	wlog.Logf("closing buffered pipe %s", pipe.Key)
	defer pipe.bufferDataCond.Broadcast()
	pipe.closed.Store(true)
	return nil
}

// Ensure that BufferedPipe implements the io.WriteCloser and io.WriterTo interfaces.
var _ io.WriteCloser = (*BufferedPipe)(nil)
var _ io.WriterTo = (*BufferedPipe)(nil)

type BufferedPipeMap struct {
	_map map[string]*BufferedPipe
	lock sync.Mutex
}

// A global map of registered buffered pipes.
var bufferedPipes = BufferedPipeMap{_map: make(map[string]*BufferedPipe)}

// Get a buffered pipe from the map of buffered pipes, given a key.
func GetBufferedPipe(key string) (*BufferedPipe, bool) {
	bufferedPipes.lock.Lock()
	defer bufferedPipes.lock.Unlock()

	ewc, ok := bufferedPipes._map[key]
	return ewc, ok
}

// Set a buffered pipe in the map of buffered pipes.
func SetBufferedPipe(pipe *BufferedPipe) {
	bufferedPipes.lock.Lock()
	defer bufferedPipes.lock.Unlock()
	key := pipe.Key
	bufferedPipes._map[key] = pipe

	// Remove the buffered pipe after a certain amount of time
	time.AfterFunc(BufferedPipeMapTTL, func() {
		bufferedPipes.lock.Lock()
		defer bufferedPipes.lock.Unlock()
		pipe.Close()
		log.Printf("removing buffered pipe %s", key)
		delete(bufferedPipes._map, key)
	})
}

// Handle a HTTP GET request to get the output of a buffered pipe, given a key.
func HandleGetBufferedPipeOutput(w http.ResponseWriter, r *http.Request) {
	qvals := r.URL.Query()
	key := qvals.Get("key")
	pipe, ok := GetBufferedPipe(key)
	if !ok {
		http.Error(w, "buffered pipe not found", http.StatusNotFound)
		return
	}

	w.Header().Set("Content-Type", "text/plain")
	_, err := pipe.WriteTo(w)
	if err != nil {
		http.Error(w, "error writing from buffer", http.StatusInternalServerError)
		return
	}
}
Support running ephemeral commands (#543) * initial * save work, starting to add backend types * save work * save work * Add EphemeralWriteCloser * Command pipes thru, triggers infinite loop * save debugging * fix bad merge * save debug statements * fixing spaghetti * clean up code * got cwd override working * Add separate paths for stdout and stderr writers * fix stdout/stderr * env vars are now working * revert waveshell changes * Making EphemeralWriteCloser into a more generic BufferedPipe * formatting * comment * delete unused package * more naming changes * add package comment * add UsePty to EphemeralRunOpts * document UsePty * ensure only one downstream writer can read from the buffer * store pointer to syncs * remove inshellisense stuff for now * remove debugs * revert yarn * remove unnecessary debugs in main-server * more debugging removed * revert tsconfig 2024-04-03 00:46:32 +02:00			`// Copyright 2023, Command Line Inc.`
			`// SPDX-License-Identifier: Apache-2.0`

			`// Provides a mechanism for writing data to a buffer and reading it later. The buffer is stored in a map of buffered pipes, which are removed after a certain amount of time. The output of a buffered pipe can be read by sending a GET request to a specific URL.`
			`package bufferedpipe`

			`import (`
			`"bytes"`
			`"io"`
			`"log"`
			`"net/http"`
			`"net/url"`
			`"sync"`
			`"sync/atomic"`
			`"time"`

			`"github.com/google/uuid"`
Break out non-autocomplete changes from autocomplete PR (#618) This improves the ephemeral command runner to allow for honoring of timeouts and proper handling of overriding the current working directory. It also fixes some partially transparent font colors in light mode, making them solid instead. It also updates the InputModel to be auto-observable and utilize some getters to ensure the cmdinput is getting updated whenever necessary state changes take place. 2024-04-30 03:29:27 +02:00			`"github.com/wavetermdev/waveterm/waveshell/pkg/wlog"`
Support running ephemeral commands (#543) * initial * save work, starting to add backend types * save work * save work * Add EphemeralWriteCloser * Command pipes thru, triggers infinite loop * save debugging * fix bad merge * save debug statements * fixing spaghetti * clean up code * got cwd override working * Add separate paths for stdout and stderr writers * fix stdout/stderr * env vars are now working * revert waveshell changes * Making EphemeralWriteCloser into a more generic BufferedPipe * formatting * comment * delete unused package * more naming changes * add package comment * add UsePty to EphemeralRunOpts * document UsePty * ensure only one downstream writer can read from the buffer * store pointer to syncs * remove inshellisense stuff for now * remove debugs * revert yarn * remove unnecessary debugs in main-server * more debugging removed * revert tsconfig 2024-04-03 00:46:32 +02:00			`"github.com/wavetermdev/waveterm/wavesrv/pkg/scbase"`
Sudo Caching (#573) * feat: share sudo between pty sessions This is a first pass at a feature to cache the sudo password and share it between different pty sessions. This makes it possible to not require manual password entry every time sudo is used. * feat: allow error handling and canceling sudo cmds This adds the missing functionality that prevented failed sudo commands from automatically closing. * feat: restrict sudo caching to dev mode for now * modify fullCmdStr not pk.Command * refactor: condense ecdh encryptor creation This refactors the common pieces needed to create an encryptor from an ecdh key pair into a common function. * refactor: rename promptenc to waveenc * feat: add command to clear sudo password We currently do not provide use of the sudo -k and sudo -K commands to clear the sudo password. This adds a /sudo:clear command to handle it in the meantime. * feat: add kwarg to force sudo In cases where parsing for sudo doesn't work, this provides an alternate wave kwarg to use instead. It can be used with [sudo=1] at the beginning of a command. * refactor: simplify sudoArg parsing * feat: allow user to clear all sudo passwords This introduces the "all" kwarg for the sudo:clear command in order to clear all sudo passwords. * fix: handle deadline with real time Golang's time module uses monatomic time by default, but that is not desired for the password timeout since we want the timer to continue even if the computer is asleep. We now avoid this by directly comparing the unix timestamps. * fix: remove sudo restriction to dev mode This allows it to be used in regular builds as well. * fix: switch to password timeout without wait group This removes an unnecessary waiting period for sudo password entry. * fix: update deadline in sudo:clear This allows sudo:clear to cancel the goroutine for watching the password timer. * fix: pluralize sudo:clear message when all=1 This changes the output message for /sudo:clear to indicate multiple passwords cleared if the all=1 kwarg is used. * fix: use GetRemoteMap for getting remotes in clear The sudo:clear command was directly looping over the GlobalStore.Map which is not thread safe. Switched to GetRemoteMap which uses a lock internally. * fix: allow sudo metacmd to set sudo false This fixes the logic for resolving if a command is a sudo command. This change makes it possible for the sudo metacmd kwarg to force sudo to be false. 2024-04-17 01:58:17 +02:00			`"github.com/wavetermdev/waveterm/wavesrv/pkg/waveenc"`
Support running ephemeral commands (#543) * initial * save work, starting to add backend types * save work * save work * Add EphemeralWriteCloser * Command pipes thru, triggers infinite loop * save debugging * fix bad merge * save debug statements * fixing spaghetti * clean up code * got cwd override working * Add separate paths for stdout and stderr writers * fix stdout/stderr * env vars are now working * revert waveshell changes * Making EphemeralWriteCloser into a more generic BufferedPipe * formatting * comment * delete unused package * more naming changes * add package comment * add UsePty to EphemeralRunOpts * document UsePty * ensure only one downstream writer can read from the buffer * store pointer to syncs * remove inshellisense stuff for now * remove debugs * revert yarn * remove unnecessary debugs in main-server * more debugging removed * revert tsconfig 2024-04-03 00:46:32 +02:00			`)`

			`const (`
			`BufferedPipeMapTTL = 30 * time.Second // The time-to-live for a buffered pipe in the map of buffered pipes.`
			`BufferedPipeGetterUrl = "/api/buffered-pipe" // The URL for getting the output of a buffered pipe.`
			`)`

			`// A pipe that allows for lazy writing to a downstream writer. Data written to the pipe is buffered until WriteTo is called.`
			`type BufferedPipe struct {`
			`Key string // a unique key for the pipe`
			`buffer bytes.Buffer // buffer of data to be written to the downstream writer once it is ready`
			`closed atomic.Bool // whether the pipe has been closed`
			`bufferDataCond *sync.Cond // Condition variable to signal waiting writers that there is either data to write or the pipe has been closed`
			`downstreamLock *sync.Mutex // Lock to ensure that only one goroutine can read from the buffer at a time`
			`}`

			`// Create a new BufferedPipe with a timeout. The writer will be closed after the timeout`
			`func NewBufferedPipe(timeout time.Duration) *BufferedPipe {`
			`newPipe := &BufferedPipe{`
			`Key: uuid.New().String(),`
			`buffer: bytes.Buffer{},`
			`closed: atomic.Bool{},`
			`bufferDataCond: &sync.Cond{L: &sync.Mutex{}},`
			`downstreamLock: &sync.Mutex{},`
			`}`
			`SetBufferedPipe(newPipe)`
			`time.AfterFunc(timeout, func() {`
			`newPipe.Close()`
			`})`
			`return newPipe`
			`}`

			`// Get the URL for reading the output of the pipe.`
			`func (pipe *BufferedPipe) GetOutputUrl() (string, error) {`
			`qvals := make(url.Values)`
			`qvals.Set("key", pipe.Key)`
			`qvals.Set("nonce", uuid.New().String())`
Sudo Caching (#573) * feat: share sudo between pty sessions This is a first pass at a feature to cache the sudo password and share it between different pty sessions. This makes it possible to not require manual password entry every time sudo is used. * feat: allow error handling and canceling sudo cmds This adds the missing functionality that prevented failed sudo commands from automatically closing. * feat: restrict sudo caching to dev mode for now * modify fullCmdStr not pk.Command * refactor: condense ecdh encryptor creation This refactors the common pieces needed to create an encryptor from an ecdh key pair into a common function. * refactor: rename promptenc to waveenc * feat: add command to clear sudo password We currently do not provide use of the sudo -k and sudo -K commands to clear the sudo password. This adds a /sudo:clear command to handle it in the meantime. * feat: add kwarg to force sudo In cases where parsing for sudo doesn't work, this provides an alternate wave kwarg to use instead. It can be used with [sudo=1] at the beginning of a command. * refactor: simplify sudoArg parsing * feat: allow user to clear all sudo passwords This introduces the "all" kwarg for the sudo:clear command in order to clear all sudo passwords. * fix: handle deadline with real time Golang's time module uses monatomic time by default, but that is not desired for the password timeout since we want the timer to continue even if the computer is asleep. We now avoid this by directly comparing the unix timestamps. * fix: remove sudo restriction to dev mode This allows it to be used in regular builds as well. * fix: switch to password timeout without wait group This removes an unnecessary waiting period for sudo password entry. * fix: update deadline in sudo:clear This allows sudo:clear to cancel the goroutine for watching the password timer. * fix: pluralize sudo:clear message when all=1 This changes the output message for /sudo:clear to indicate multiple passwords cleared if the all=1 kwarg is used. * fix: use GetRemoteMap for getting remotes in clear The sudo:clear command was directly looping over the GlobalStore.Map which is not thread safe. Switched to GetRemoteMap which uses a lock internally. * fix: allow sudo metacmd to set sudo false This fixes the logic for resolving if a command is a sudo command. This change makes it possible for the sudo metacmd kwarg to force sudo to be false. 2024-04-17 01:58:17 +02:00			`hmacStr, err := waveenc.ComputeUrlHmac([]byte(scbase.WaveAuthKey), BufferedPipeGetterUrl, qvals)`
Support running ephemeral commands (#543) * initial * save work, starting to add backend types * save work * save work * Add EphemeralWriteCloser * Command pipes thru, triggers infinite loop * save debugging * fix bad merge * save debug statements * fixing spaghetti * clean up code * got cwd override working * Add separate paths for stdout and stderr writers * fix stdout/stderr * env vars are now working * revert waveshell changes * Making EphemeralWriteCloser into a more generic BufferedPipe * formatting * comment * delete unused package * more naming changes * add package comment * add UsePty to EphemeralRunOpts * document UsePty * ensure only one downstream writer can read from the buffer * store pointer to syncs * remove inshellisense stuff for now * remove debugs * revert yarn * remove unnecessary debugs in main-server * more debugging removed * revert tsconfig 2024-04-03 00:46:32 +02:00			`if err != nil {`
			`return "", err`
			`}`

			`qvals.Set("hmac", hmacStr)`
			`return BufferedPipeGetterUrl + "?" + qvals.Encode(), nil`
			`}`

			`// Write data to the buffer.`
			`func (pipe *BufferedPipe) Write(p []byte) (n int, err error) {`
			`if pipe.closed.Load() {`
			`return 0, io.ErrClosedPipe`
			`}`

			`defer func() {`
			`pipe.bufferDataCond.L.Unlock()`
			`pipe.bufferDataCond.Broadcast()`
			`}()`
			`pipe.bufferDataCond.L.Lock()`

			`return pipe.buffer.Write(p)`
			`}`

			`// Write all buffered data to a waiting writer and block, sending all subsequent data until the pipe is closed. Only one goroutine should call this method.`
			`func (pipe *BufferedPipe) WriteTo(w io.Writer) (n int64, err error) {`
			`// Lock the buffer to ensure that only one downstream writer can read from it at a time.`
			`if !pipe.downstreamLock.TryLock() {`
			`return 0, io.ErrClosedPipe`
			`}`

			`defer func() {`
			`pipe.bufferDataCond.L.Unlock()`
			`pipe.downstreamLock.Unlock()`
			`}()`
			`pipe.bufferDataCond.L.Lock()`
			`for {`
			`n1, err := pipe.buffer.WriteTo(w)`
			`if err != nil {`
			`return n, err`
			`}`
			`n += n1`

			`// Check if the pipe has been closed. If it has, we don't need to wait for more data.`
			`if pipe.closed.Load() {`
			`break`
			`}`

			`// Wait for more data to be written to the buffer or for the pipe to be closed.`
			`pipe.bufferDataCond.Wait()`
			`}`
			`return n, nil`
			`}`

			`// Close the pipe. This will cause any blocking WriteTo calls to return.`
			`func (pipe *BufferedPipe) Close() error {`
Break out non-autocomplete changes from autocomplete PR (#618) This improves the ephemeral command runner to allow for honoring of timeouts and proper handling of overriding the current working directory. It also fixes some partially transparent font colors in light mode, making them solid instead. It also updates the InputModel to be auto-observable and utilize some getters to ensure the cmdinput is getting updated whenever necessary state changes take place. 2024-04-30 03:29:27 +02:00			`wlog.Logf("closing buffered pipe %s", pipe.Key)`
Support running ephemeral commands (#543) * initial * save work, starting to add backend types * save work * save work * Add EphemeralWriteCloser * Command pipes thru, triggers infinite loop * save debugging * fix bad merge * save debug statements * fixing spaghetti * clean up code * got cwd override working * Add separate paths for stdout and stderr writers * fix stdout/stderr * env vars are now working * revert waveshell changes * Making EphemeralWriteCloser into a more generic BufferedPipe * formatting * comment * delete unused package * more naming changes * add package comment * add UsePty to EphemeralRunOpts * document UsePty * ensure only one downstream writer can read from the buffer * store pointer to syncs * remove inshellisense stuff for now * remove debugs * revert yarn * remove unnecessary debugs in main-server * more debugging removed * revert tsconfig 2024-04-03 00:46:32 +02:00			`defer pipe.bufferDataCond.Broadcast()`
			`pipe.closed.Store(true)`
			`return nil`
			`}`

			`// Ensure that BufferedPipe implements the io.WriteCloser and io.WriterTo interfaces.`
			`var _ io.WriteCloser = (*BufferedPipe)(nil)`
			`var _ io.WriterTo = (*BufferedPipe)(nil)`

			`type BufferedPipeMap struct {`
			`_map map[string]*BufferedPipe`
			`lock sync.Mutex`
			`}`

			`// A global map of registered buffered pipes.`
			`var bufferedPipes = BufferedPipeMap{_map: make(map[string]*BufferedPipe)}`

			`// Get a buffered pipe from the map of buffered pipes, given a key.`
			`func GetBufferedPipe(key string) (*BufferedPipe, bool) {`
			`bufferedPipes.lock.Lock()`
			`defer bufferedPipes.lock.Unlock()`

			`ewc, ok := bufferedPipes._map[key]`
			`return ewc, ok`
			`}`

			`// Set a buffered pipe in the map of buffered pipes.`
			`func SetBufferedPipe(pipe *BufferedPipe) {`
			`bufferedPipes.lock.Lock()`
			`defer bufferedPipes.lock.Unlock()`
			`key := pipe.Key`
			`bufferedPipes._map[key] = pipe`

			`// Remove the buffered pipe after a certain amount of time`
			`time.AfterFunc(BufferedPipeMapTTL, func() {`
			`bufferedPipes.lock.Lock()`
			`defer bufferedPipes.lock.Unlock()`
			`pipe.Close()`
			`log.Printf("removing buffered pipe %s", key)`
			`delete(bufferedPipes._map, key)`
			`})`
			`}`

			`// Handle a HTTP GET request to get the output of a buffered pipe, given a key.`
			`func HandleGetBufferedPipeOutput(w http.ResponseWriter, r *http.Request) {`
			`qvals := r.URL.Query()`
			`key := qvals.Get("key")`
			`pipe, ok := GetBufferedPipe(key)`
			`if !ok {`
			`http.Error(w, "buffered pipe not found", http.StatusNotFound)`
			`return`
			`}`

			`w.Header().Set("Content-Type", "text/plain")`
			`_, err := pipe.WriteTo(w)`
			`if err != nil {`
			`http.Error(w, "error writing from buffer", http.StatusInternalServerError)`
			`return`
			`}`
			`}`