sftp/request-server.go

package sftp

import (
	"io"
	"os"
	"path/filepath"
	"strconv"
	"sync"
	"syscall"

	"github.com/pkg/errors"
)

var maxTxPacket uint32 = 1 << 15

type handleHandler func(string) string

// Handlers contains the 4 SFTP server request handlers.
type Handlers struct {
	FileGet  FileReader
	FilePut  FileWriter
	FileCmd  FileCmder
	FileInfo FileInfoer
}

// RequestServer abstracts the sftp protocol with an http request-like protocol
type RequestServer struct {
	serverConn
	Handlers        Handlers
	pktChan         chan packet
	openRequests    map[string]*Request
	openRequestLock sync.RWMutex
	handleCount     int
}

// NewRequestServer creates/allocates/returns new RequestServer.
// Normally there there will be one server per user-session.
func NewRequestServer(rwc io.ReadWriteCloser, h Handlers) *RequestServer {
	return &RequestServer{
		serverConn: serverConn{
			conn: conn{
				Reader:      rwc,
				WriteCloser: rwc,
			},
		},
		Handlers:     h,
		pktChan:      make(chan packet, sftpServerWorkerCount),
		openRequests: make(map[string]*Request),
	}
}

func (rs *RequestServer) nextRequest(r *Request) string {
	rs.openRequestLock.Lock()
	defer rs.openRequestLock.Unlock()
	rs.handleCount++
	handle := strconv.Itoa(rs.handleCount)
	rs.openRequests[handle] = r
	return handle
}

func (rs *RequestServer) getRequest(handle string) (*Request, bool) {
	rs.openRequestLock.RLock()
	defer rs.openRequestLock.RUnlock()
	r, ok := rs.openRequests[handle]
	return r, ok
}

func (rs *RequestServer) closeRequest(handle string) {
	rs.openRequestLock.Lock()
	defer rs.openRequestLock.Unlock()
	if _, ok := rs.openRequests[handle]; ok {
		delete(rs.openRequests, handle)
	}
}

// Close the read/write/closer to trigger exiting the main server loop
func (rs *RequestServer) Close() error { return rs.conn.Close() }

// Serve requests for user session
func (rs *RequestServer) Serve() error {
	var wg sync.WaitGroup
	wg.Add(sftpServerWorkerCount)
	for i := 0; i < sftpServerWorkerCount; i++ {
		go func() {
			defer wg.Done()
			if err := rs.packetWorker(); err != nil {
				rs.conn.Close() // shuts down recvPacket
			}
		}()
	}

	var err error
	var pktType uint8
	var pktBytes []byte
	for {
		pktType, pktBytes, err = rs.recvPacket()
		if err != nil {
			break
		}
		pkt, err := makePacket(rxPacket{fxp(pktType), pktBytes})
		if err != nil {
			break
		}
		rs.pktChan <- pkt
	}

	close(rs.pktChan) // shuts down sftpServerWorkers
	wg.Wait()         // wait for all workers to exit
	return err
}

func (rs *RequestServer) packetWorker() error {
	for pkt := range rs.pktChan {
		var rpkt responsePacket
		switch pkt := pkt.(type) {
		case *sshFxInitPacket:
			rpkt = sshFxVersionPacket{sftpProtocolVersion, nil}
		case *sshFxpClosePacket:
			handle := pkt.getHandle()
			rs.closeRequest(handle)
			rpkt = statusFromError(pkt, nil)
		case *sshFxpRealpathPacket:
			rpkt = cleanPath(pkt)
		case isOpener:
			handle := rs.nextRequest(newRequest(pkt.getPath()))
			rpkt = sshFxpHandlePacket{pkt.id(), handle}
		case hasHandle:
			handle := pkt.getHandle()
			request, ok := rs.getRequest(handle)
			if !ok {
				rpkt = statusFromError(pkt, syscall.EBADF)
			} else {
				rpkt = rs.handle(request, pkt)
			}
		case hasPath:
			request := newRequest(pkt.getPath())
			rpkt = rs.handle(request, pkt)
		default:
			return errors.Errorf("unexpected packet type %T", pkt)
		}

		err := rs.sendPacket(rpkt)
		if err != nil {
			return err
		}
	}
	return nil
}

func cleanPath(pkt *sshFxpRealpathPacket) responsePacket {
	path := pkt.getPath()
	if !filepath.IsAbs(path) {
		path = "/" + path
	} // all paths are absolute

	cleaned_path := filepath.Clean(path)
	return &sshFxpNamePacket{
		ID: pkt.id(),
		NameAttrs: []sshFxpNameAttr{{
			Name:     cleaned_path,
			LongName: cleaned_path,
			Attrs:    emptyFileStat,
		}},
	}
}

func (rs *RequestServer) handle(request *Request, pkt packet) responsePacket {
	// called here to keep packet handling out of request for testing
	request.populate(pkt)
	// fmt.Println("Request Method: ", request.Method)
	rpkt, err := request.handle(rs.Handlers)
	if err != nil {
		err = errorAdapter(err)
		rpkt = statusFromError(pkt, err)
	}
	return rpkt
}

// os.ErrNotExist should convert to ssh_FX_NO_SUCH_FILE, but is not recognized
// by statusFromError. So we convert to syscall.ENOENT which it does.
func errorAdapter(err error) error {
	if err == os.ErrNotExist {
		return syscall.ENOENT
	}
	return err
}
initial request server commit builds but doesn't run 2016-07-07 02:59:55 +08:00			`package sftp`

			`import (`
			`"io"`
os.ErrorNotExist should convert to ssh_FX_NO_SUCH_FILE 2016-07-23 11:30:33 +08:00			`"os"`
move realpath handling into request-server 2016-07-15 12:11:34 +08:00			`"path/filepath"`
change back to using int as handle key Was using a filename as a placeholder for something that would allow for stateless servers but decided the amount of work wasn't worth it at this point. So I went back to the auto-inc number as it doesn't have the size issues (max handle length is 256). 2016-07-27 02:32:37 +08:00			`"strconv"`
initial request server commit builds but doesn't run 2016-07-07 02:59:55 +08:00			`"sync"`
reworked in branch and liked it 2016-07-09 03:38:35 +08:00			`"syscall"`
fix issue with leaking requests in handle cache 2016-07-30 02:22:07 +08:00
			`"github.com/pkg/errors"`
initial request server commit builds but doesn't run 2016-07-07 02:59:55 +08:00			`)`

reworked in branch and liked it 2016-07-09 03:38:35 +08:00			`var maxTxPacket uint32 = 1 << 15`
initial request server commit builds but doesn't run 2016-07-07 02:59:55 +08:00
reworked in branch and liked it 2016-07-09 03:38:35 +08:00			`type handleHandler func(string) string`
initial request server commit builds but doesn't run 2016-07-07 02:59:55 +08:00
linter fixes 2016-07-26 02:42:18 +08:00			`// Handlers contains the 4 SFTP server request handlers.`
reworked in branch and liked it 2016-07-09 03:38:35 +08:00			`type Handlers struct {`
reworked handler/interfaces to new minimal set 2016-07-09 05:13:03 +08:00			`FileGet FileReader`
			`FilePut FileWriter`
			`FileCmd FileCmder`
			`FileInfo FileInfoer`
reworked in branch and liked it 2016-07-09 03:38:35 +08:00			`}`

linter fixes 2016-07-26 02:42:18 +08:00			`// RequestServer abstracts the sftp protocol with an http request-like protocol`
initial request server commit builds but doesn't run 2016-07-07 02:59:55 +08:00			`type RequestServer struct {`
			`serverConn`
factor out request channels 2016-07-12 11:19:49 +08:00			`Handlers Handlers`
			`pktChan chan packet`
reworked in branch and liked it 2016-07-09 03:38:35 +08:00			`openRequests map[string]*Request`
			`openRequestLock sync.RWMutex`
change back to using int as handle key Was using a filename as a placeholder for something that would allow for stateless servers but decided the amount of work wasn't worth it at this point. So I went back to the auto-inc number as it doesn't have the size issues (max handle length is 256). 2016-07-27 02:32:37 +08:00			`handleCount int`
initial request server commit builds but doesn't run 2016-07-07 02:59:55 +08:00			`}`

linter fixes 2016-07-26 02:42:18 +08:00			`// NewRequestServer creates/allocates/returns new RequestServer.`
			`// Normally there there will be one server per user-session.`
			`func NewRequestServer(rwc io.ReadWriteCloser, h Handlers) *RequestServer {`
			`return &RequestServer{`
initial request server commit builds but doesn't run 2016-07-07 02:59:55 +08:00			`serverConn: serverConn{`
			`conn: conn{`
			`Reader: rwc,`
			`WriteCloser: rwc,`
			`},`
			`},`
require handlers as arg to NewRequestServer 2016-07-19 03:58:23 +08:00			`Handlers: h,`
factor out request channels 2016-07-12 11:19:49 +08:00			`pktChan: make(chan packet, sftpServerWorkerCount),`
reworked in branch and liked it 2016-07-09 03:38:35 +08:00			`openRequests: make(map[string]*Request),`
initial request server commit builds but doesn't run 2016-07-07 02:59:55 +08:00			`}`
			`}`

reworked in branch and liked it 2016-07-09 03:38:35 +08:00			`func (rs RequestServer) nextRequest(r Request) string {`
			`rs.openRequestLock.Lock()`
			`defer rs.openRequestLock.Unlock()`
change back to using int as handle key Was using a filename as a placeholder for something that would allow for stateless servers but decided the amount of work wasn't worth it at this point. So I went back to the auto-inc number as it doesn't have the size issues (max handle length is 256). 2016-07-27 02:32:37 +08:00			`rs.handleCount++`
			`handle := strconv.Itoa(rs.handleCount)`
			`rs.openRequests[handle] = r`
			`return handle`
reworked in branch and liked it 2016-07-09 03:38:35 +08:00			`}`

			`func (rs RequestServer) getRequest(handle string) (Request, bool) {`
getRequest should use an RLock 2016-08-02 11:22:06 +08:00			`rs.openRequestLock.RLock()`
			`defer rs.openRequestLock.RUnlock()`
reworked in branch and liked it 2016-07-09 03:38:35 +08:00			`r, ok := rs.openRequests[handle]`
			`return r, ok`
			`}`

			`func (rs *RequestServer) closeRequest(handle string) {`
			`rs.openRequestLock.Lock()`
			`defer rs.openRequestLock.Unlock()`
			`if _, ok := rs.openRequests[handle]; ok {`
			`delete(rs.openRequests, handle)`
			`}`
			`}`

linter fixes 2016-07-26 02:42:18 +08:00			`// Close the read/write/closer to trigger exiting the main server loop`
gofmt tweaks 2016-07-23 07:20:00 +08:00			`func (rs *RequestServer) Close() error { return rs.conn.Close() }`
Add requestserver.Close() method 2016-07-21 07:48:31 +08:00
linter fixes 2016-07-26 02:42:18 +08:00			`// Serve requests for user session`
reworked in branch and liked it 2016-07-09 03:38:35 +08:00			`func (rs *RequestServer) Serve() error {`
initial request server commit builds but doesn't run 2016-07-07 02:59:55 +08:00			`var wg sync.WaitGroup`
			`wg.Add(sftpServerWorkerCount)`
			`for i := 0; i < sftpServerWorkerCount; i++ {`
			`go func() {`
			`defer wg.Done()`
reworked in branch and liked it 2016-07-09 03:38:35 +08:00			`if err := rs.packetWorker(); err != nil {`
			`rs.conn.Close() // shuts down recvPacket`
initial request server commit builds but doesn't run 2016-07-07 02:59:55 +08:00			`}`
			`}()`
			`}`

			`var err error`
			`var pktType uint8`
			`var pktBytes []byte`
			`for {`
reworked in branch and liked it 2016-07-09 03:38:35 +08:00			`pktType, pktBytes, err = rs.recvPacket()`
formatting fixes 2016-07-19 02:50:45 +08:00			`if err != nil {`
			`break`
			`}`
factor out request channels 2016-07-12 11:19:49 +08:00			`pkt, err := makePacket(rxPacket{fxp(pktType), pktBytes})`
formatting fixes 2016-07-19 02:50:45 +08:00			`if err != nil {`
			`break`
			`}`
factor out request channels 2016-07-12 11:19:49 +08:00			`rs.pktChan <- pkt`
initial request server commit builds but doesn't run 2016-07-07 02:59:55 +08:00			`}`

reworked in branch and liked it 2016-07-09 03:38:35 +08:00			`close(rs.pktChan) // shuts down sftpServerWorkers`
			`wg.Wait() // wait for all workers to exit`
initial request server commit builds but doesn't run 2016-07-07 02:59:55 +08:00			`return err`
			`}`

reworked in branch and liked it 2016-07-09 03:38:35 +08:00			`func (rs *RequestServer) packetWorker() error {`
factor out request channels 2016-07-12 11:19:49 +08:00			`for pkt := range rs.pktChan {`
golinter suggested name fix 2016-07-26 02:52:07 +08:00			`var rpkt responsePacket`
initial request server commit builds but doesn't run 2016-07-07 02:59:55 +08:00			`switch pkt := pkt.(type) {`
			`case *sshFxInitPacket:`
clean up worker function 2016-07-13 08:36:12 +08:00			`rpkt = sshFxVersionPacket{sftpProtocolVersion, nil}`
factor out request channels 2016-07-12 11:19:49 +08:00			`case *sshFxpClosePacket:`
fix issue with leaking requests in handle cache 2016-07-30 02:22:07 +08:00			`handle := pkt.getHandle()`
factor out request channels 2016-07-12 11:19:49 +08:00			`rs.closeRequest(handle)`
clean up worker function 2016-07-13 08:36:12 +08:00			`rpkt = statusFromError(pkt, nil)`
move realpath handling into request-server 2016-07-15 12:11:34 +08:00			`case *sshFxpRealpathPacket:`
			`rpkt = cleanPath(pkt)`
isOpener interface to simplify type checking/testing 2016-07-13 10:31:46 +08:00			`case isOpener:`
fix issue with leaking requests in handle cache 2016-07-30 02:22:07 +08:00			`handle := rs.nextRequest(newRequest(pkt.getPath()))`
isOpener interface to simplify type checking/testing 2016-07-13 10:31:46 +08:00			`rpkt = sshFxpHandlePacket{pkt.id(), handle}`
clean up worker function 2016-07-13 08:36:12 +08:00			`case hasHandle:`
fix issue with leaking requests in handle cache 2016-07-30 02:22:07 +08:00			`handle := pkt.getHandle()`
			`request, ok := rs.getRequest(handle)`
			`if !ok {`
			`rpkt = statusFromError(pkt, syscall.EBADF)`
			`} else {`
			`rpkt = rs.handle(request, pkt)`
			`}`
			`case hasPath:`
			`request := newRequest(pkt.getPath())`
			`rpkt = rs.handle(request, pkt)`
			`default:`
			`return errors.Errorf("unexpected packet type %T", pkt)`
initial request server commit builds but doesn't run 2016-07-07 02:59:55 +08:00			`}`
factor out request channels 2016-07-12 11:19:49 +08:00
fix issue with leaking requests in handle cache 2016-07-30 02:22:07 +08:00			`err := rs.sendPacket(rpkt)`
formatting fixes 2016-07-19 02:50:45 +08:00			`if err != nil {`
			`return err`
			`}`
initial request server commit builds but doesn't run 2016-07-07 02:59:55 +08:00			`}`
			`return nil`
			`}`
clean up worker function 2016-07-13 08:36:12 +08:00
golinter suggested name fix 2016-07-26 02:52:07 +08:00			`func cleanPath(pkt *sshFxpRealpathPacket) responsePacket {`
all paths should be absolute 2016-07-19 03:40:41 +08:00			`path := pkt.getPath()`
			`if !filepath.IsAbs(path) {`
gofmt tweaks 2016-07-23 07:20:00 +08:00			`path = "/" + path`
			`} // all paths are absolute`

all paths should be absolute 2016-07-19 03:40:41 +08:00			`cleaned_path := filepath.Clean(path)`
move realpath handling into request-server 2016-07-15 12:11:34 +08:00			`return &sshFxpNamePacket{`
			`ID: pkt.id(),`
			`NameAttrs: []sshFxpNameAttr{{`
			`Name: cleaned_path,`
			`LongName: cleaned_path,`
			`Attrs: emptyFileStat,`
			`}},`
			`}`
			`}`

fix issue with leaking requests in handle cache 2016-07-30 02:22:07 +08:00			`func (rs RequestServer) handle(request Request, pkt packet) responsePacket {`
			`// called here to keep packet handling out of request for testing`
			`request.populate(pkt)`
			`// fmt.Println("Request Method: ", request.Method)`
			`rpkt, err := request.handle(rs.Handlers)`
			`if err != nil {`
			`err = errorAdapter(err)`
			`rpkt = statusFromError(pkt, err)`
formatting fixes 2016-07-19 02:50:45 +08:00			`}`
clean up worker function 2016-07-13 08:36:12 +08:00			`return rpkt`
			`}`
os.ErrorNotExist should convert to ssh_FX_NO_SUCH_FILE 2016-07-23 11:30:33 +08:00
			`// os.ErrNotExist should convert to ssh_FX_NO_SUCH_FILE, but is not recognized`
			`// by statusFromError. So we convert to syscall.ENOENT which it does.`
			`func errorAdapter(err error) error {`
			`if err == os.ErrNotExist {`
			`return syscall.ENOENT`
			`}`
			`return err`
			`}`