2022-06-29 00:04:08 +02:00
|
|
|
// Copyright 2022 Dashborg Inc
|
|
|
|
|
//
|
|
|
|
|
// This Source Code Form is subject to the terms of the Mozilla Public
|
|
|
|
|
// License, v. 2.0. If a copy of the MPL was not distributed with this
|
|
|
|
|
// file, You can obtain one at https://mozilla.org/MPL/2.0/.
|
|
|
|
|
|
|
|
|
|
package server
|
|
|
|
|
|
|
|
|
|
import (
|
2022-07-07 03:59:46 +02:00
|
|
|
"context"
|
2023-09-01 07:03:38 +02:00
|
|
|
"errors"
|
2022-06-29 00:04:08 +02:00
|
|
|
"fmt"
|
2023-09-01 07:03:38 +02:00
|
|
|
"io"
|
2023-09-06 06:21:34 +02:00
|
|
|
"io/fs"
|
2022-06-29 00:04:08 +02:00
|
|
|
"os"
|
2022-08-09 23:23:59 +02:00
|
|
|
"os/exec"
|
2023-09-01 07:03:38 +02:00
|
|
|
"path/filepath"
|
2022-08-11 19:21:11 +02:00
|
|
|
"sort"
|
2022-08-09 23:23:59 +02:00
|
|
|
"strings"
|
2022-06-29 00:04:08 +02:00
|
|
|
"sync"
|
2022-11-27 22:47:18 +01:00
|
|
|
"time"
|
2022-06-29 00:04:08 +02:00
|
|
|
|
2022-08-09 23:23:59 +02:00
|
|
|
"github.com/alessio/shellescape"
|
2023-07-26 22:00:07 +02:00
|
|
|
"github.com/commandlinedev/apishell/pkg/base"
|
|
|
|
|
"github.com/commandlinedev/apishell/pkg/packet"
|
|
|
|
|
"github.com/commandlinedev/apishell/pkg/shexec"
|
2022-06-29 00:04:08 +02:00
|
|
|
)
|
|
|
|
|
|
2023-09-01 07:03:38 +02:00
|
|
|
const MaxFileDataPacketSize = 16 * 1024
|
|
|
|
|
const WriteFileContextTimeout = 30 * time.Second
|
|
|
|
|
const cleanLoopTime = 5 * time.Second
|
|
|
|
|
const MaxWriteFileContextData = 100
|
|
|
|
|
|
2022-07-07 02:16:45 +02:00
|
|
|
// TODO create unblockable packet-sender (backed by an array) for clientproc
|
2022-06-29 00:04:08 +02:00
|
|
|
type MServer struct {
|
2023-09-01 07:03:38 +02:00
|
|
|
Lock *sync.Mutex
|
|
|
|
|
MainInput *packet.PacketParser
|
|
|
|
|
Sender *packet.PacketSender
|
|
|
|
|
ClientMap map[base.CommandKey]*shexec.ClientProc
|
|
|
|
|
Debug bool
|
|
|
|
|
StateMap map[string]*packet.ShellState // sha1->state
|
|
|
|
|
CurrentState string // sha1
|
|
|
|
|
WriteErrorCh chan bool // closed if there is a I/O write error
|
|
|
|
|
WriteErrorChOnce *sync.Once
|
|
|
|
|
WriteFileContextMap map[string]*WriteFileContext
|
|
|
|
|
Done bool
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
type WriteFileContext struct {
|
|
|
|
|
CVar *sync.Cond
|
|
|
|
|
Data []*packet.FileDataPacketType
|
|
|
|
|
LastActive time.Time
|
|
|
|
|
Err error
|
|
|
|
|
Done bool
|
2022-06-29 00:04:08 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (m *MServer) Close() {
|
|
|
|
|
m.Sender.Close()
|
|
|
|
|
m.Sender.WaitForDone()
|
2023-09-01 07:03:38 +02:00
|
|
|
m.Lock.Lock()
|
|
|
|
|
defer m.Lock.Unlock()
|
|
|
|
|
m.Done = true
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (m *MServer) checkDone() bool {
|
|
|
|
|
m.Lock.Lock()
|
|
|
|
|
defer m.Lock.Unlock()
|
|
|
|
|
return m.Done
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (m *MServer) getWriteFileContext(reqId string) *WriteFileContext {
|
|
|
|
|
m.Lock.Lock()
|
|
|
|
|
defer m.Lock.Unlock()
|
|
|
|
|
wfc := m.WriteFileContextMap[reqId]
|
|
|
|
|
if wfc == nil {
|
|
|
|
|
wfc = &WriteFileContext{
|
|
|
|
|
CVar: sync.NewCond(&sync.Mutex{}),
|
|
|
|
|
LastActive: time.Now(),
|
|
|
|
|
}
|
|
|
|
|
m.WriteFileContextMap[reqId] = wfc
|
|
|
|
|
}
|
|
|
|
|
return wfc
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (m *MServer) addFileDataPacket(pk *packet.FileDataPacketType) {
|
|
|
|
|
m.Lock.Lock()
|
|
|
|
|
wfc := m.WriteFileContextMap[pk.RespId]
|
|
|
|
|
m.Lock.Unlock()
|
|
|
|
|
if wfc == nil {
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
wfc.CVar.L.Lock()
|
|
|
|
|
defer wfc.CVar.L.Unlock()
|
|
|
|
|
if wfc.Done || wfc.Err != nil {
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
if len(wfc.Data) > MaxWriteFileContextData {
|
|
|
|
|
wfc.Err = errors.New("write-file buffer length exceeded")
|
|
|
|
|
wfc.Data = nil
|
|
|
|
|
wfc.CVar.Broadcast()
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
wfc.LastActive = time.Now()
|
|
|
|
|
wfc.Data = append(wfc.Data, pk)
|
|
|
|
|
wfc.CVar.Signal()
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (wfc *WriteFileContext) setDone() {
|
|
|
|
|
wfc.CVar.L.Lock()
|
|
|
|
|
defer wfc.CVar.L.Unlock()
|
|
|
|
|
wfc.Done = true
|
|
|
|
|
wfc.Data = nil
|
|
|
|
|
wfc.CVar.Broadcast()
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (m *MServer) cleanWriteFileContexts() {
|
|
|
|
|
now := time.Now()
|
|
|
|
|
var staleWfcs []*WriteFileContext
|
|
|
|
|
m.Lock.Lock()
|
|
|
|
|
for reqId, wfc := range m.WriteFileContextMap {
|
|
|
|
|
if now.Sub(wfc.LastActive) > WriteFileContextTimeout {
|
|
|
|
|
staleWfcs = append(staleWfcs, wfc)
|
|
|
|
|
delete(m.WriteFileContextMap, reqId)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
m.Lock.Unlock()
|
|
|
|
|
|
|
|
|
|
// we do this outside of m.Lock just in case there is some lock contention (end of WriteFile could theoretically be slow)
|
|
|
|
|
for _, wfc := range staleWfcs {
|
|
|
|
|
wfc.setDone()
|
|
|
|
|
}
|
2022-06-29 00:04:08 +02:00
|
|
|
}
|
|
|
|
|
|
2022-06-29 04:01:33 +02:00
|
|
|
func (m *MServer) ProcessCommandPacket(pk packet.CommandPacketType) {
|
|
|
|
|
ck := pk.GetCK()
|
|
|
|
|
if ck == "" {
|
2022-11-27 22:47:18 +01:00
|
|
|
m.Sender.SendMessageFmt("received '%s' packet without ck", pk.GetType())
|
2022-06-29 04:01:33 +02:00
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
m.Lock.Lock()
|
2022-07-07 02:16:45 +02:00
|
|
|
cproc := m.ClientMap[ck]
|
2022-06-29 04:01:33 +02:00
|
|
|
m.Lock.Unlock()
|
2022-07-07 02:16:45 +02:00
|
|
|
if cproc == nil {
|
2022-07-07 22:25:42 +02:00
|
|
|
m.Sender.SendCmdError(ck, fmt.Errorf("no client proc for ck '%s', pk=%s", ck, packet.AsString(pk)))
|
2022-06-29 04:01:33 +02:00
|
|
|
return
|
|
|
|
|
}
|
2022-07-07 02:16:45 +02:00
|
|
|
cproc.Input.SendPacket(pk)
|
|
|
|
|
return
|
2022-06-29 23:29:38 +02:00
|
|
|
}
|
|
|
|
|
|
2022-08-11 19:21:11 +02:00
|
|
|
func runSingleCompGen(cwd string, compType string, prefix string) ([]string, bool, error) {
|
|
|
|
|
if !packet.IsValidCompGenType(compType) {
|
|
|
|
|
return nil, false, fmt.Errorf("invalid compgen type '%s'", compType)
|
2022-08-09 23:23:59 +02:00
|
|
|
}
|
2022-08-11 19:21:11 +02:00
|
|
|
compGenCmdStr := fmt.Sprintf("cd %s; compgen -A %s -- %s | sort | uniq | head -n %d", shellescape.Quote(cwd), shellescape.Quote(compType), shellescape.Quote(prefix), packet.MaxCompGenValues+1)
|
2022-08-09 23:23:59 +02:00
|
|
|
ecmd := exec.Command("bash", "-c", compGenCmdStr)
|
|
|
|
|
outputBytes, err := ecmd.Output()
|
|
|
|
|
if err != nil {
|
2022-08-11 19:21:11 +02:00
|
|
|
return nil, false, fmt.Errorf("compgen error: %w", err)
|
2022-08-09 23:23:59 +02:00
|
|
|
}
|
|
|
|
|
outputStr := string(outputBytes)
|
|
|
|
|
parts := strings.Split(outputStr, "\n")
|
|
|
|
|
if len(parts) > 0 && parts[len(parts)-1] == "" {
|
|
|
|
|
parts = parts[0 : len(parts)-1]
|
|
|
|
|
}
|
2022-08-11 01:07:41 +02:00
|
|
|
hasMore := false
|
|
|
|
|
if len(parts) > packet.MaxCompGenValues {
|
|
|
|
|
hasMore = true
|
|
|
|
|
parts = parts[0:packet.MaxCompGenValues]
|
|
|
|
|
}
|
2022-08-11 19:21:11 +02:00
|
|
|
return parts, hasMore, nil
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func appendSlashes(comps []string) {
|
|
|
|
|
for idx, comp := range comps {
|
|
|
|
|
comps[idx] = comp + "/"
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func strArrToMap(strs []string) map[string]bool {
|
|
|
|
|
rtn := make(map[string]bool)
|
|
|
|
|
for _, s := range strs {
|
|
|
|
|
rtn[s] = true
|
|
|
|
|
}
|
|
|
|
|
return rtn
|
|
|
|
|
}
|
|
|
|
|
|
2022-11-23 19:51:51 +01:00
|
|
|
func (m *MServer) runMixedCompGen(compPk *packet.CompGenPacketType) {
|
2022-08-11 19:21:11 +02:00
|
|
|
// get directories and files, unique them and put slashes on directories for completion
|
|
|
|
|
reqId := compPk.GetReqId()
|
|
|
|
|
compDirs, hasMoreDirs, err := runSingleCompGen(compPk.Cwd, "directory", compPk.Prefix)
|
|
|
|
|
if err != nil {
|
|
|
|
|
m.Sender.SendErrorResponse(reqId, err)
|
|
|
|
|
return
|
|
|
|
|
}
|
2022-11-23 19:51:51 +01:00
|
|
|
compFiles, hasMoreFiles, err := runSingleCompGen(compPk.Cwd, compPk.CompType, compPk.Prefix)
|
2022-08-11 19:21:11 +02:00
|
|
|
if err != nil {
|
|
|
|
|
m.Sender.SendErrorResponse(reqId, err)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
dirMap := strArrToMap(compDirs)
|
|
|
|
|
// seed comps with dirs (but append slashes)
|
|
|
|
|
comps := compDirs
|
|
|
|
|
appendSlashes(comps)
|
|
|
|
|
// add files that are not directories (look up in dirMap)
|
|
|
|
|
for _, file := range compFiles {
|
|
|
|
|
if dirMap[file] {
|
|
|
|
|
continue
|
|
|
|
|
}
|
|
|
|
|
comps = append(comps, file)
|
|
|
|
|
}
|
|
|
|
|
sort.Strings(comps) // resort
|
|
|
|
|
m.Sender.SendResponse(reqId, map[string]interface{}{"comps": comps, "hasmore": (hasMoreFiles || hasMoreDirs)})
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (m *MServer) runCompGen(compPk *packet.CompGenPacketType) {
|
|
|
|
|
reqId := compPk.GetReqId()
|
2022-11-23 19:51:51 +01:00
|
|
|
if compPk.CompType == "file" || compPk.CompType == "command" {
|
|
|
|
|
m.runMixedCompGen(compPk)
|
2022-08-11 19:21:11 +02:00
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
comps, hasMore, err := runSingleCompGen(compPk.Cwd, compPk.CompType, compPk.Prefix)
|
|
|
|
|
if err != nil {
|
|
|
|
|
m.Sender.SendErrorResponse(reqId, err)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
if compPk.CompType == "directory" {
|
|
|
|
|
appendSlashes(comps)
|
|
|
|
|
}
|
|
|
|
|
m.Sender.SendResponse(reqId, map[string]interface{}{"comps": comps, "hasmore": hasMore})
|
2022-08-09 23:23:59 +02:00
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
2022-11-27 22:47:18 +01:00
|
|
|
func (m *MServer) setCurrentState(state *packet.ShellState) {
|
|
|
|
|
if state == nil {
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
hval, _ := state.EncodeAndHash()
|
|
|
|
|
m.Lock.Lock()
|
|
|
|
|
defer m.Lock.Unlock()
|
|
|
|
|
m.StateMap[hval] = state
|
|
|
|
|
m.CurrentState = hval
|
|
|
|
|
}
|
|
|
|
|
|
2022-10-28 06:59:17 +02:00
|
|
|
func (m *MServer) reinit(reqId string) {
|
|
|
|
|
initPk, err := shexec.MakeServerInitPacket()
|
|
|
|
|
if err != nil {
|
|
|
|
|
m.Sender.SendErrorResponse(reqId, fmt.Errorf("error creating init packet: %w", err))
|
|
|
|
|
return
|
|
|
|
|
}
|
2022-11-27 22:47:18 +01:00
|
|
|
m.setCurrentState(initPk.State)
|
2022-10-28 06:59:17 +02:00
|
|
|
initPk.RespId = reqId
|
|
|
|
|
m.Sender.SendPacket(initPk)
|
|
|
|
|
}
|
|
|
|
|
|
2023-09-06 06:21:34 +02:00
|
|
|
func makeTemp(path string, mode fs.FileMode) (*os.File, error) {
|
|
|
|
|
dirName := filepath.Dir(path)
|
|
|
|
|
baseName := filepath.Base(path)
|
|
|
|
|
baseTempName := baseName + ".tmp."
|
|
|
|
|
writeFd, err := os.CreateTemp(dirName, baseTempName)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
|
|
|
|
err = writeFd.Chmod(mode)
|
|
|
|
|
if err != nil {
|
|
|
|
|
writeFd.Close()
|
|
|
|
|
os.Remove(writeFd.Name())
|
|
|
|
|
return nil, fmt.Errorf("error setting tempfile permissions: %w", err)
|
|
|
|
|
}
|
|
|
|
|
return writeFd, nil
|
|
|
|
|
}
|
|
|
|
|
|
2023-09-01 07:03:38 +02:00
|
|
|
func (m *MServer) writeFile(pk *packet.WriteFilePacketType, wfc *WriteFileContext) {
|
|
|
|
|
defer wfc.setDone()
|
|
|
|
|
if pk.Path == "" {
|
|
|
|
|
resp := packet.MakeWriteFileReadyPacket(pk.ReqId)
|
|
|
|
|
resp.Error = "invalid write-file request, no path specified"
|
|
|
|
|
m.Sender.SendPacket(resp)
|
|
|
|
|
return
|
|
|
|
|
}
|
2023-09-06 06:21:34 +02:00
|
|
|
var finfo fs.FileInfo
|
|
|
|
|
var err error
|
|
|
|
|
if pk.UseTemp {
|
|
|
|
|
finfo, err = os.Lstat(pk.Path)
|
|
|
|
|
} else {
|
|
|
|
|
finfo, err = os.Stat(pk.Path)
|
|
|
|
|
}
|
2023-09-01 07:03:38 +02:00
|
|
|
if err == nil && finfo.IsDir() {
|
|
|
|
|
err = fmt.Errorf("invalid path, cannot write a directory")
|
|
|
|
|
}
|
2023-09-06 06:21:34 +02:00
|
|
|
if err == nil && ((finfo.Mode() & fs.ModeSymlink) != 0) {
|
|
|
|
|
err = fmt.Errorf("writefile (with usetemp) does not support symlinks")
|
|
|
|
|
}
|
|
|
|
|
if err == nil && ((finfo.Mode() & (fs.ModeNamedPipe | fs.ModeSocket | fs.ModeDevice | fs.ModeSetuid | fs.ModeSetgid)) != 0) {
|
|
|
|
|
err = fmt.Errorf("writefile does not support special files (named pipes, sockets, devices, setuid, or setgid): mode=%v", finfo.Mode())
|
|
|
|
|
}
|
2023-09-01 07:03:38 +02:00
|
|
|
if err == nil {
|
|
|
|
|
writePerm := (finfo.Mode().Perm() & 0o222)
|
|
|
|
|
if writePerm == 0 {
|
|
|
|
|
err = fmt.Errorf("file is not writable, perms: %v", finfo.Mode().Perm())
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if err != nil {
|
|
|
|
|
resp := packet.MakeWriteFileReadyPacket(pk.ReqId)
|
|
|
|
|
resp.Error = err.Error()
|
|
|
|
|
m.Sender.SendPacket(resp)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
var writeFd *os.File
|
|
|
|
|
if pk.UseTemp {
|
|
|
|
|
dirName := filepath.Dir(pk.Path)
|
|
|
|
|
dirFInfo, err := os.Stat(dirName)
|
|
|
|
|
if err == nil {
|
|
|
|
|
writePerm := (dirFInfo.Mode().Perm() & 0o222)
|
|
|
|
|
if writePerm == 0 {
|
|
|
|
|
err = fmt.Errorf("file-write tempmode is set, but parent directory is not writeable, perms: %v", dirFInfo.Mode().Perm())
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if err != nil {
|
|
|
|
|
resp := packet.MakeWriteFileReadyPacket(pk.ReqId)
|
|
|
|
|
resp.Error = err.Error()
|
|
|
|
|
m.Sender.SendPacket(resp)
|
|
|
|
|
return
|
|
|
|
|
}
|
2023-09-06 06:21:34 +02:00
|
|
|
writeFd, err = makeTemp(pk.Path, finfo.Mode().Perm())
|
2023-09-01 07:03:38 +02:00
|
|
|
if err != nil {
|
|
|
|
|
resp := packet.MakeWriteFileReadyPacket(pk.ReqId)
|
|
|
|
|
resp.Error = fmt.Sprintf("write-file could not open tempfile: %v", err)
|
|
|
|
|
m.Sender.SendPacket(resp)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
writeFd, err = os.OpenFile(pk.Path, os.O_CREATE|os.O_WRONLY|os.O_TRUNC, 0o777) // use 777 because OpenFile respects umask
|
|
|
|
|
if err != nil {
|
|
|
|
|
resp := packet.MakeWriteFileReadyPacket(pk.ReqId)
|
|
|
|
|
resp.Error = fmt.Sprintf("write-file could not open file: %v", err)
|
|
|
|
|
m.Sender.SendPacket(resp)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// ok, so now writeFd is valid, send the "ready" response
|
|
|
|
|
resp := packet.MakeWriteFileReadyPacket(pk.ReqId)
|
|
|
|
|
m.Sender.SendPacket(resp)
|
|
|
|
|
|
|
|
|
|
// now we wait for data (cond var)
|
|
|
|
|
// this Unlock() runs first (because it is a later defer) so we can still run wfc.setDone() safely
|
|
|
|
|
wfc.CVar.L.Lock()
|
|
|
|
|
defer wfc.CVar.L.Unlock()
|
|
|
|
|
var doneErr error
|
|
|
|
|
for {
|
|
|
|
|
if wfc.Done {
|
|
|
|
|
break
|
|
|
|
|
}
|
|
|
|
|
if wfc.Err != nil {
|
|
|
|
|
doneErr = wfc.Err
|
|
|
|
|
break
|
|
|
|
|
}
|
|
|
|
|
if len(wfc.Data) == 0 {
|
|
|
|
|
wfc.CVar.Wait()
|
|
|
|
|
continue
|
|
|
|
|
}
|
|
|
|
|
dataPk := wfc.Data[0]
|
|
|
|
|
wfc.Data = wfc.Data[1:]
|
|
|
|
|
if dataPk.Error != "" {
|
|
|
|
|
doneErr = fmt.Errorf("error received from client: %v", errors.New(dataPk.Error))
|
|
|
|
|
break
|
|
|
|
|
}
|
|
|
|
|
if len(dataPk.Data) > 0 {
|
|
|
|
|
_, err := writeFd.Write(dataPk.Data)
|
|
|
|
|
if err != nil {
|
|
|
|
|
doneErr = fmt.Errorf("error writing data to file: %v", err)
|
|
|
|
|
break
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if dataPk.Eof {
|
|
|
|
|
break
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
closeErr := writeFd.Close()
|
|
|
|
|
if doneErr == nil && closeErr != nil {
|
|
|
|
|
doneErr = fmt.Errorf("error closing file: %v", closeErr)
|
|
|
|
|
}
|
|
|
|
|
if pk.UseTemp {
|
|
|
|
|
if doneErr != nil {
|
|
|
|
|
os.Remove(writeFd.Name())
|
|
|
|
|
} else {
|
|
|
|
|
renameErr := os.Rename(writeFd.Name(), pk.Path)
|
|
|
|
|
if renameErr != nil {
|
|
|
|
|
doneErr = fmt.Errorf("error renaming temp file: %v", renameErr)
|
|
|
|
|
// rename failed, try to remove temp file still
|
|
|
|
|
os.Remove(writeFd.Name())
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
donePk := packet.MakeWriteFileDonePacket(pk.ReqId)
|
|
|
|
|
if doneErr != nil {
|
|
|
|
|
donePk.Error = doneErr.Error()
|
|
|
|
|
}
|
|
|
|
|
m.Sender.SendPacket(donePk)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (m *MServer) streamFile(pk *packet.StreamFilePacketType) {
|
|
|
|
|
resp := packet.MakeStreamFileResponse(pk.ReqId)
|
|
|
|
|
finfo, err := os.Stat(pk.Path)
|
|
|
|
|
if err != nil {
|
|
|
|
|
resp.Error = fmt.Sprintf("cannot stat file %q: %v", pk.Path, err)
|
|
|
|
|
m.Sender.SendPacket(resp)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
resp.Info = &packet.FileInfo{
|
|
|
|
|
Name: pk.Path,
|
|
|
|
|
Size: finfo.Size(),
|
|
|
|
|
ModTs: finfo.ModTime().UnixMilli(),
|
|
|
|
|
IsDir: finfo.IsDir(),
|
|
|
|
|
Perm: int(finfo.Mode().Perm()),
|
|
|
|
|
}
|
|
|
|
|
if pk.StatOnly {
|
|
|
|
|
resp.Done = true
|
|
|
|
|
m.Sender.SendPacket(resp)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
// like the http Range header. range header is end inclusive. for us, endByte is non-inclusive (so we add 1)
|
|
|
|
|
var startByte, endByte int64
|
|
|
|
|
if len(pk.ByteRange) == 0 {
|
|
|
|
|
endByte = finfo.Size()
|
|
|
|
|
} else if len(pk.ByteRange) == 1 && pk.ByteRange[0] >= 0 {
|
|
|
|
|
startByte = pk.ByteRange[0]
|
|
|
|
|
endByte = finfo.Size()
|
|
|
|
|
} else if len(pk.ByteRange) == 1 && pk.ByteRange[0] < 0 {
|
|
|
|
|
startByte = finfo.Size() + pk.ByteRange[0] // "+" since ByteRange[0] is less than 0
|
|
|
|
|
endByte = finfo.Size()
|
|
|
|
|
} else if len(pk.ByteRange) == 2 {
|
|
|
|
|
startByte = pk.ByteRange[0]
|
|
|
|
|
endByte = pk.ByteRange[1] + 1
|
|
|
|
|
} else {
|
|
|
|
|
resp.Error = fmt.Sprintf("invalid byte range (%d entries)", len(pk.ByteRange))
|
|
|
|
|
m.Sender.SendPacket(resp)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
if startByte < 0 {
|
|
|
|
|
startByte = 0
|
|
|
|
|
}
|
|
|
|
|
if endByte > finfo.Size() {
|
|
|
|
|
endByte = finfo.Size()
|
|
|
|
|
}
|
|
|
|
|
if startByte >= endByte {
|
|
|
|
|
resp.Done = true
|
|
|
|
|
m.Sender.SendPacket(resp)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
fd, err := os.Open(pk.Path)
|
|
|
|
|
if err != nil {
|
|
|
|
|
resp.Error = fmt.Sprintf("opening file: %v", err)
|
|
|
|
|
m.Sender.SendPacket(resp)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
defer fd.Close()
|
|
|
|
|
m.Sender.SendPacket(resp)
|
|
|
|
|
var buffer [MaxFileDataPacketSize]byte
|
|
|
|
|
var sentDone bool
|
|
|
|
|
first := true
|
|
|
|
|
for ; startByte < endByte; startByte += MaxFileDataPacketSize {
|
|
|
|
|
if !first {
|
|
|
|
|
// throttle packet sending @ 1000 packets/s, or 16M/s
|
|
|
|
|
time.Sleep(1 * time.Millisecond)
|
|
|
|
|
}
|
|
|
|
|
first = false
|
|
|
|
|
readLen := int64Min(MaxFileDataPacketSize, endByte-startByte)
|
|
|
|
|
bufSlice := buffer[0:readLen]
|
|
|
|
|
nr, err := fd.ReadAt(bufSlice, startByte)
|
|
|
|
|
dataPk := packet.MakeFileDataPacket(pk.ReqId)
|
|
|
|
|
dataPk.Data = make([]byte, nr)
|
|
|
|
|
copy(dataPk.Data, bufSlice)
|
|
|
|
|
if err == io.EOF {
|
|
|
|
|
dataPk.Eof = true
|
|
|
|
|
} else if err != nil {
|
|
|
|
|
dataPk.Error = err.Error()
|
|
|
|
|
}
|
|
|
|
|
m.Sender.SendPacket(dataPk)
|
|
|
|
|
if dataPk.GetResponseDone() {
|
|
|
|
|
sentDone = true
|
|
|
|
|
break
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if !sentDone {
|
|
|
|
|
dataPk := packet.MakeFileDataPacket(pk.ReqId)
|
|
|
|
|
dataPk.Eof = true
|
|
|
|
|
m.Sender.SendPacket(dataPk)
|
|
|
|
|
}
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func int64Min(v1 int64, v2 int64) int64 {
|
|
|
|
|
if v1 < v2 {
|
|
|
|
|
return v1
|
|
|
|
|
}
|
|
|
|
|
return v2
|
|
|
|
|
}
|
|
|
|
|
|
2022-08-09 23:23:59 +02:00
|
|
|
func (m *MServer) ProcessRpcPacket(pk packet.RpcPacketType) {
|
|
|
|
|
reqId := pk.GetReqId()
|
|
|
|
|
if cdPk, ok := pk.(*packet.CdPacketType); ok {
|
|
|
|
|
err := os.Chdir(cdPk.Dir)
|
|
|
|
|
if err != nil {
|
|
|
|
|
m.Sender.SendErrorResponse(reqId, fmt.Errorf("cannot change directory: %w", err))
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
m.Sender.SendResponse(reqId, true)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
if compPk, ok := pk.(*packet.CompGenPacketType); ok {
|
|
|
|
|
go m.runCompGen(compPk)
|
|
|
|
|
return
|
|
|
|
|
}
|
2022-10-28 06:59:17 +02:00
|
|
|
if _, ok := pk.(*packet.ReInitPacketType); ok {
|
|
|
|
|
go m.reinit(reqId)
|
|
|
|
|
return
|
|
|
|
|
}
|
2023-09-01 07:03:38 +02:00
|
|
|
if streamPk, ok := pk.(*packet.StreamFilePacketType); ok {
|
|
|
|
|
go m.streamFile(streamPk)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
if writePk, ok := pk.(*packet.WriteFilePacketType); ok {
|
|
|
|
|
wfc := m.getWriteFileContext(writePk.ReqId)
|
|
|
|
|
go m.writeFile(writePk, wfc)
|
|
|
|
|
return
|
|
|
|
|
}
|
2022-08-09 23:23:59 +02:00
|
|
|
m.Sender.SendErrorResponse(reqId, fmt.Errorf("invalid rpc type '%s'", pk.GetType()))
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
2022-11-27 22:47:18 +01:00
|
|
|
func (m *MServer) getCurrentState() (string, *packet.ShellState) {
|
|
|
|
|
m.Lock.Lock()
|
|
|
|
|
defer m.Lock.Unlock()
|
|
|
|
|
return m.CurrentState, m.StateMap[m.CurrentState]
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (m *MServer) clientPacketCallback(pk packet.PacketType) {
|
|
|
|
|
if pk.GetType() != packet.CmdDonePacketStr {
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
donePk := pk.(*packet.CmdDonePacketType)
|
|
|
|
|
if donePk.FinalState == nil {
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
stateHash, curState := m.getCurrentState()
|
|
|
|
|
if curState == nil {
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
diff, err := shexec.MakeShellStateDiff(*curState, stateHash, *donePk.FinalState)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
donePk.FinalState = nil
|
|
|
|
|
donePk.FinalStateDiff = &diff
|
|
|
|
|
}
|
|
|
|
|
|
2022-06-29 02:20:01 +02:00
|
|
|
func (m *MServer) runCommand(runPacket *packet.RunPacketType) {
|
2022-06-29 04:01:33 +02:00
|
|
|
if err := runPacket.CK.Validate("packet"); err != nil {
|
2022-07-06 09:21:44 +02:00
|
|
|
m.Sender.SendErrorResponse(runPacket.ReqId, fmt.Errorf("server run packets require valid ck: %s", err))
|
2022-06-29 04:01:33 +02:00
|
|
|
return
|
|
|
|
|
}
|
2022-09-06 21:57:54 +02:00
|
|
|
ecmd, err := shexec.SSHOpts{}.MakeMShellSingleCmd(true)
|
2022-07-07 03:59:46 +02:00
|
|
|
if err != nil {
|
|
|
|
|
m.Sender.SendErrorResponse(runPacket.ReqId, fmt.Errorf("server run packets require valid ck: %s", err))
|
|
|
|
|
return
|
|
|
|
|
}
|
2022-09-16 21:27:14 +02:00
|
|
|
cproc, _, err := shexec.MakeClientProc(context.Background(), ecmd)
|
2022-07-07 02:16:45 +02:00
|
|
|
if err != nil {
|
|
|
|
|
m.Sender.SendErrorResponse(runPacket.ReqId, fmt.Errorf("starting mshell client: %s", err))
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
m.Lock.Lock()
|
|
|
|
|
m.ClientMap[runPacket.CK] = cproc
|
|
|
|
|
m.Lock.Unlock()
|
2022-06-29 02:20:01 +02:00
|
|
|
go func() {
|
2022-07-07 02:16:45 +02:00
|
|
|
defer func() {
|
2022-11-27 22:47:18 +01:00
|
|
|
r := recover()
|
|
|
|
|
finalPk := packet.MakeCmdFinalPacket(runPacket.CK)
|
|
|
|
|
finalPk.Ts = time.Now().UnixMilli()
|
|
|
|
|
if r != nil {
|
|
|
|
|
finalPk.Error = fmt.Sprintf("%s", r)
|
|
|
|
|
}
|
|
|
|
|
m.Sender.SendPacket(finalPk)
|
2022-07-07 02:16:45 +02:00
|
|
|
m.Lock.Lock()
|
|
|
|
|
delete(m.ClientMap, runPacket.CK)
|
|
|
|
|
m.Lock.Unlock()
|
|
|
|
|
cproc.Close()
|
|
|
|
|
}()
|
2022-07-07 03:59:46 +02:00
|
|
|
shexec.SendRunPacketAndRunData(context.Background(), cproc.Input, runPacket)
|
2022-11-27 22:47:18 +01:00
|
|
|
cproc.ProxySingleOutput(runPacket.CK, m.Sender, m.clientPacketCallback)
|
2022-06-29 02:20:01 +02:00
|
|
|
}()
|
|
|
|
|
}
|
|
|
|
|
|
2022-11-27 22:47:18 +01:00
|
|
|
func (m *MServer) packetSenderErrorHandler(sender *packet.PacketSender, pk packet.PacketType, err error) {
|
|
|
|
|
if serr, ok := err.(*packet.SendError); ok && serr.IsMarshalError {
|
|
|
|
|
msg := packet.MakeMessagePacket(err.Error())
|
|
|
|
|
if cpk, ok := pk.(packet.CommandPacketType); ok {
|
|
|
|
|
msg.CK = cpk.GetCK()
|
|
|
|
|
}
|
|
|
|
|
sender.SendPacket(msg)
|
2022-12-06 00:38:44 +01:00
|
|
|
return
|
|
|
|
|
} else {
|
|
|
|
|
// I/O error: close the WriteErrorCh to signal that we are dead (cannot continue if we can't write output)
|
|
|
|
|
m.WriteErrorChOnce.Do(func() {
|
|
|
|
|
close(m.WriteErrorCh)
|
|
|
|
|
})
|
2022-11-27 22:47:18 +01:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2022-12-06 00:38:44 +01:00
|
|
|
func (server *MServer) runReadLoop() {
|
2022-06-29 07:05:47 +02:00
|
|
|
builder := packet.MakeRunPacketBuilder()
|
2022-06-29 00:04:08 +02:00
|
|
|
for pk := range server.MainInput.MainCh {
|
2022-06-29 04:01:33 +02:00
|
|
|
if server.Debug {
|
|
|
|
|
fmt.Printf("PK> %s\n", packet.AsString(pk))
|
|
|
|
|
}
|
2022-06-29 07:05:47 +02:00
|
|
|
ok, runPacket := builder.ProcessPacket(pk)
|
|
|
|
|
if ok {
|
|
|
|
|
if runPacket != nil {
|
|
|
|
|
server.runCommand(runPacket)
|
|
|
|
|
continue
|
|
|
|
|
}
|
2022-06-29 02:20:01 +02:00
|
|
|
continue
|
|
|
|
|
}
|
2022-06-29 04:01:33 +02:00
|
|
|
if cmdPk, ok := pk.(packet.CommandPacketType); ok {
|
|
|
|
|
server.ProcessCommandPacket(cmdPk)
|
2022-06-29 00:04:08 +02:00
|
|
|
continue
|
|
|
|
|
}
|
2022-08-09 23:23:59 +02:00
|
|
|
if rpcPk, ok := pk.(packet.RpcPacketType); ok {
|
|
|
|
|
server.ProcessRpcPacket(rpcPk)
|
|
|
|
|
continue
|
|
|
|
|
}
|
2023-09-01 07:03:38 +02:00
|
|
|
if fileDataPk, ok := pk.(*packet.FileDataPacketType); ok {
|
|
|
|
|
server.addFileDataPacket(fileDataPk)
|
|
|
|
|
continue
|
|
|
|
|
}
|
2022-11-27 22:47:18 +01:00
|
|
|
server.Sender.SendMessageFmt("invalid packet '%s' sent to mshell server", packet.AsString(pk))
|
2022-06-29 00:04:08 +02:00
|
|
|
continue
|
|
|
|
|
}
|
2022-12-06 00:38:44 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func RunServer() (int, error) {
|
|
|
|
|
debug := false
|
|
|
|
|
if len(os.Args) >= 3 && os.Args[2] == "--debug" {
|
|
|
|
|
debug = true
|
|
|
|
|
}
|
|
|
|
|
server := &MServer{
|
2023-09-01 07:03:38 +02:00
|
|
|
Lock: &sync.Mutex{},
|
|
|
|
|
ClientMap: make(map[base.CommandKey]*shexec.ClientProc),
|
|
|
|
|
StateMap: make(map[string]*packet.ShellState),
|
|
|
|
|
Debug: debug,
|
|
|
|
|
WriteErrorCh: make(chan bool),
|
|
|
|
|
WriteErrorChOnce: &sync.Once{},
|
|
|
|
|
WriteFileContextMap: make(map[string]*WriteFileContext),
|
2022-12-06 00:38:44 +01:00
|
|
|
}
|
2023-09-01 07:03:38 +02:00
|
|
|
go func() {
|
|
|
|
|
for {
|
|
|
|
|
if server.checkDone() {
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
time.Sleep(cleanLoopTime)
|
|
|
|
|
server.cleanWriteFileContexts()
|
|
|
|
|
}
|
|
|
|
|
}()
|
2022-12-06 00:38:44 +01:00
|
|
|
if debug {
|
|
|
|
|
packet.GlobalDebug = true
|
|
|
|
|
}
|
2023-09-01 07:03:38 +02:00
|
|
|
server.MainInput = packet.MakePacketParser(os.Stdin, false)
|
2022-12-06 00:38:44 +01:00
|
|
|
server.Sender = packet.MakePacketSender(os.Stdout, server.packetSenderErrorHandler)
|
|
|
|
|
defer server.Close()
|
|
|
|
|
var err error
|
|
|
|
|
initPacket, err := shexec.MakeServerInitPacket()
|
|
|
|
|
if err != nil {
|
|
|
|
|
return 1, err
|
|
|
|
|
}
|
|
|
|
|
server.setCurrentState(initPacket.State)
|
|
|
|
|
server.Sender.SendPacket(initPacket)
|
|
|
|
|
ticker := time.NewTicker(1 * time.Minute)
|
|
|
|
|
go func() {
|
|
|
|
|
for range ticker.C {
|
|
|
|
|
server.Sender.SendPacket(packet.MakePingPacket())
|
|
|
|
|
}
|
|
|
|
|
}()
|
|
|
|
|
defer ticker.Stop()
|
|
|
|
|
readLoopDoneCh := make(chan bool)
|
|
|
|
|
go func() {
|
|
|
|
|
defer close(readLoopDoneCh)
|
|
|
|
|
server.runReadLoop()
|
|
|
|
|
}()
|
|
|
|
|
select {
|
|
|
|
|
case <-readLoopDoneCh:
|
|
|
|
|
break
|
|
|
|
|
|
|
|
|
|
case <-server.WriteErrorCh:
|
|
|
|
|
break
|
|
|
|
|
}
|
2022-06-29 00:04:08 +02:00
|
|
|
return 0, nil
|
|
|
|
|
}
|
