Strona główna Odkrywaj Pomoc
Zarejestruj się Zaloguj się
Apq
/
sftpgo
kopia lustrzana https://github.com/drakkan/sftpgo.git
1
0
Forkuj 0
Pliki Problemy 0 Wiki
Drzewo: 3702bc8413
Gałęzie Tagi
sftpgo
/
vfs
/
vfs.go

vfs.go 8.1 KB
Historia Czysty

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256 
  1. // Package vfs provides local and remote filesystems support
    2. 

  2. package vfs
    3. 

  3. 

  4. import (
    5. 

  5. 	"errors"
    6. 

  6. 	"fmt"
    7. 

  7. 	"os"
    8. 

  8. 	"path"
    9. 

  9. 	"path/filepath"
    10. 

  10. 	"runtime"
    11. 

  11. 	"strings"
    12. 

  12. 	"time"
    13. 

  13. 

  14. 	"github.com/eikenb/pipeat"
    15. 

  15. 	"github.com/pkg/sftp"
    16. 

  16. 

  17. 	"github.com/drakkan/sftpgo/logger"
    18. 

  18. )
    19. 

  19. 

  20. // Fs defines the interface for filesystem backends
    21. 

  21. type Fs interface {
    22. 

  22. 	Name() string
    23. 

  23. 	ConnectionID() string
    24. 

  24. 	Stat(name string) (os.FileInfo, error)
    25. 

  25. 	Lstat(name string) (os.FileInfo, error)
    26. 

  26. 	Open(name string) (*os.File, *pipeat.PipeReaderAt, func(), error)
    27. 

  27. 	Create(name string, flag int) (*os.File, *PipeWriter, func(), error)
    28. 

  28. 	Rename(source, target string) error
    29. 

  29. 	Remove(name string, isDir bool) error
    30. 

  30. 	Mkdir(name string) error
    31. 

  31. 	Symlink(source, target string) error
    32. 

  32. 	Chown(name string, uid int, gid int) error
    33. 

  33. 	Chmod(name string, mode os.FileMode) error
    34. 

  34. 	Chtimes(name string, atime, mtime time.Time) error
    35. 

  35. 	ReadDir(dirname string) ([]os.FileInfo, error)
    36. 

  36. 	IsUploadResumeSupported() bool
    37. 

  37. 	IsAtomicUploadSupported() bool
    38. 

  38. 	CheckRootPath(username string, uid int, gid int) bool
    39. 

  39. 	ResolvePath(sftpPath string) (string, error)
    40. 

  40. 	IsNotExist(err error) bool
    41. 

  41. 	IsPermission(err error) bool
    42. 

  42. 	ScanRootDirContents() (int, int64, error)
    43. 

  43. 	GetDirSize(dirname string) (int, int64, error)
    44. 

  44. 	GetAtomicUploadPath(name string) string
    45. 

  45. 	GetRelativePath(name string) string
    46. 

  46. 	Walk(root string, walkFn filepath.WalkFunc) error
    47. 

  47. 	Join(elem ...string) string
    48. 

  48. }
    49. 

  49. 

  50. var errUnsupported = errors.New("Not supported")
    51. 

  51. 

  52. // QuotaCheckResult defines the result for a quota check
    53. 

  53. type QuotaCheckResult struct {
    54. 

  54. 	HasSpace     bool
    55. 

  55. 	AllowedSize  int64
    56. 

  56. 	AllowedFiles int
    57. 

  57. 	UsedSize     int64
    58. 

  58. 	UsedFiles    int
    59. 

  59. 	QuotaSize    int64
    60. 

  60. 	QuotaFiles   int
    61. 

  61. }
    62. 

  62. 

  63. // GetRemainingSize returns the remaining allowed size
    64. 

  64. func (q *QuotaCheckResult) GetRemainingSize() int64 {
    65. 

  65. 	if q.QuotaSize > 0 {
    66. 

  66. 		return q.QuotaSize - q.UsedSize
    67. 

  67. 	}
    68. 

  68. 	return 0
    69. 

  69. }
    70. 

  70. 

  71. // GetRemainingFiles returns the remaining allowed files
    72. 

  72. func (q *QuotaCheckResult) GetRemainingFiles() int {
    73. 

  73. 	if q.QuotaFiles > 0 {
    74. 

  74. 		return q.QuotaFiles - q.UsedFiles
    75. 

  75. 	}
    76. 

  76. 	return 0
    77. 

  77. }
    78. 

  78. 

  79. // S3FsConfig defines the configuration for S3 based filesystem
    80. 

  80. type S3FsConfig struct {
    81. 

  81. 	Bucket string `json:"bucket,omitempty"`
    82. 

  82. 	// KeyPrefix is similar to a chroot directory for local filesystem.
    83. 

  83. 	// If specified then the SFTP user will only see objects that starts
    84. 

  84. 	// with this prefix and so you can restrict access to a specific
    85. 

  85. 	// folder. The prefix, if not empty, must not start with "/" and must
    86. 

  86. 	// end with "/".
    87. 

  87. 	// If empty the whole bucket contents will be available
    88. 

  88. 	KeyPrefix    string `json:"key_prefix,omitempty"`
    89. 

  89. 	Region       string `json:"region,omitempty"`
    90. 

  90. 	AccessKey    string `json:"access_key,omitempty"`
    91. 

  91. 	AccessSecret string `json:"access_secret,omitempty"`
    92. 

  92. 	Endpoint     string `json:"endpoint,omitempty"`
    93. 

  93. 	StorageClass string `json:"storage_class,omitempty"`
    94. 

  94. 	// The buffer size (in MB) to use for multipart uploads. The minimum allowed part size is 5MB,
    95. 

  95. 	// and if this value is set to zero, the default value (5MB) for the AWS SDK will be used.
    96. 

  96. 	// The minimum allowed value is 5.
    97. 

  97. 	// Please note that if the upload bandwidth between the SFTP client and SFTPGo is greater than
    98. 

  98. 	// the upload bandwidth between SFTPGo and S3 then the SFTP client have to wait for the upload
    99. 

  99. 	// of the last parts to S3 after it ends the file upload to SFTPGo, and it may time out.
    100. 

  100. 	// Keep this in mind if you customize these parameters.
    101. 

  101. 	UploadPartSize int64 `json:"upload_part_size,omitempty"`
    102. 

  102. 	// How many parts are uploaded in parallel
    103. 

  103. 	UploadConcurrency int `json:"upload_concurrency,omitempty"`
    104. 

  104. }
    105. 

  105. 

  106. // GCSFsConfig defines the configuration for Google Cloud Storage based filesystem
    107. 

  107. type GCSFsConfig struct {
    108. 

  108. 	Bucket string `json:"bucket,omitempty"`
    109. 

  109. 	// KeyPrefix is similar to a chroot directory for local filesystem.
    110. 

  110. 	// If specified then the SFTP user will only see objects that starts
    111. 

  111. 	// with this prefix and so you can restrict access to a specific
    112. 

  112. 	// folder. The prefix, if not empty, must not start with "/" and must
    113. 

  113. 	// end with "/".
    114. 

  114. 	// If empty the whole bucket contents will be available
    115. 

  115. 	KeyPrefix            string `json:"key_prefix,omitempty"`
    116. 

  116. 	CredentialFile       string `json:"-"`
    117. 

  117. 	Credentials          string `json:"credentials,omitempty"`
    118. 

  118. 	AutomaticCredentials int    `json:"automatic_credentials,omitempty"`
    119. 

  119. 	StorageClass         string `json:"storage_class,omitempty"`
    120. 

  120. }
    121. 

  121. 

  122. // PipeWriter defines a wrapper for pipeat.PipeWriterAt.
    123. 

  123. type PipeWriter struct {
    124. 

  124. 	writer *pipeat.PipeWriterAt
    125. 

  125. 	err    error
    126. 

  126. 	done   chan bool
    127. 

  127. }
    128. 

  128. 

  129. // NewPipeWriter initializes a new PipeWriter
    130. 

  130. func NewPipeWriter(w *pipeat.PipeWriterAt) *PipeWriter {
    131. 

  131. 	return &PipeWriter{
    132. 

  132. 		writer: w,
    133. 

  133. 		err:    nil,
    134. 

  134. 		done:   make(chan bool),
    135. 

  135. 	}
    136. 

  136. }
    137. 

  137. 

  138. // Close waits for the upload to end, closes the pipeat.PipeWriterAt and returns an error if any.
    139. 

  139. func (p *PipeWriter) Close() error {
    140. 

  140. 	p.writer.Close() //nolint:errcheck // the returned error is always null
    141. 

  141. 	<-p.done
    142. 

  142. 	return p.err
    143. 

  143. }
    144. 

  144. 

  145. // Done unlocks other goroutines waiting on Close().
    146. 

  146. // It must be called when the upload ends
    147. 

  147. func (p *PipeWriter) Done(err error) {
    148. 

  148. 	p.err = err
    149. 

  149. 	p.done <- true
    150. 

  150. }
    151. 

  151. 

  152. // WriteAt is a wrapper for pipeat WriteAt
    153. 

  153. func (p *PipeWriter) WriteAt(data []byte, off int64) (int, error) {
    154. 

  154. 	return p.writer.WriteAt(data, off)
    155. 

  155. }
    156. 

  156. 

  157. // IsDirectory checks if a path exists and is a directory
    158. 

  158. func IsDirectory(fs Fs, path string) (bool, error) {
    159. 

  159. 	fileInfo, err := fs.Stat(path)
    160. 

  160. 	if err != nil {
    161. 

  161. 		return false, err
    162. 

  162. 	}
    163. 

  163. 	return fileInfo.IsDir(), err
    164. 

  164. }
    165. 

  165. 

  166. // GetSFTPError returns an sftp error from a filesystem error
    167. 

  167. func GetSFTPError(fs Fs, err error) error {
    168. 

  168. 	if fs.IsNotExist(err) {
    169. 

  169. 		return sftp.ErrSSHFxNoSuchFile
    170. 

  170. 	} else if fs.IsPermission(err) {
    171. 

  171. 		return sftp.ErrSSHFxPermissionDenied
    172. 

  172. 	} else if err != nil {
    173. 

  173. 		return sftp.ErrSSHFxFailure
    174. 

  174. 	}
    175. 

  175. 	return nil
    176. 

  176. }
    177. 

  177. 

  178. // IsLocalOsFs returns true if fs is the local filesystem implementation
    179. 

  179. func IsLocalOsFs(fs Fs) bool {
    180. 

  180. 	return fs.Name() == osFsName
    181. 

  181. }
    182. 

  182. 

  183. // ValidateS3FsConfig returns nil if the specified s3 config is valid, otherwise an error
    184. 

  184. func ValidateS3FsConfig(config *S3FsConfig) error {
    185. 

  185. 	if len(config.Bucket) == 0 {
    186. 

  186. 		return errors.New("bucket cannot be empty")
    187. 

  187. 	}
    188. 

  188. 	if len(config.Region) == 0 {
    189. 

  189. 		return errors.New("region cannot be empty")
    190. 

  190. 	}
    191. 

  191. 	if len(config.AccessKey) == 0 && len(config.AccessSecret) > 0 {
    192. 

  192. 		return errors.New("access_key cannot be empty with access_secret not empty")
    193. 

  193. 	}
    194. 

  194. 	if len(config.AccessSecret) == 0 && len(config.AccessKey) > 0 {
    195. 

  195. 		return errors.New("access_secret cannot be empty with access_key not empty")
    196. 

  196. 	}
    197. 

  197. 	if len(config.KeyPrefix) > 0 {
    198. 

  198. 		if strings.HasPrefix(config.KeyPrefix, "/") {
    199. 

  199. 			return errors.New("key_prefix cannot start with /")
    200. 

  200. 		}
    201. 

  201. 		config.KeyPrefix = path.Clean(config.KeyPrefix)
    202. 

  202. 		if !strings.HasSuffix(config.KeyPrefix, "/") {
    203. 

  203. 			config.KeyPrefix += "/"
    204. 

  204. 		}
    205. 

  205. 	}
    206. 

  206. 	if config.UploadPartSize != 0 && config.UploadPartSize < 5 {
    207. 

  207. 		return errors.New("upload_part_size cannot be != 0 and lower than 5 (MB)")
    208. 

  208. 	}
    209. 

  209. 	if config.UploadConcurrency < 0 {
    210. 

  210. 		return fmt.Errorf("invalid upload concurrency: %v", config.UploadConcurrency)
    211. 

  211. 	}
    212. 

  212. 	return nil
    213. 

  213. }
    214. 

  214. 

  215. // ValidateGCSFsConfig returns nil if the specified GCS config is valid, otherwise an error
    216. 

  216. func ValidateGCSFsConfig(config *GCSFsConfig, credentialsFilePath string) error {
    217. 

  217. 	if len(config.Bucket) == 0 {
    218. 

  218. 		return errors.New("bucket cannot be empty")
    219. 

  219. 	}
    220. 

  220. 	if len(config.KeyPrefix) > 0 {
    221. 

  221. 		if strings.HasPrefix(config.KeyPrefix, "/") {
    222. 

  222. 			return errors.New("key_prefix cannot start with /")
    223. 

  223. 		}
    224. 

  224. 		config.KeyPrefix = path.Clean(config.KeyPrefix)
    225. 

  225. 		if !strings.HasSuffix(config.KeyPrefix, "/") {
    226. 

  226. 			config.KeyPrefix += "/"
    227. 

  227. 		}
    228. 

  228. 	}
    229. 

  229. 	if len(config.Credentials) == 0 && config.AutomaticCredentials == 0 {
    230. 

  230. 		fi, err := os.Stat(credentialsFilePath)
    231. 

  231. 		if err != nil {
    232. 

  232. 			return fmt.Errorf("invalid credentials %v", err)
    233. 

  233. 		}
    234. 

  234. 		if fi.Size() == 0 {
    235. 

  235. 			return errors.New("credentials cannot be empty")
    236. 

  236. 		}
    237. 

  237. 	}
    238. 

  238. 	return nil
    239. 

  239. }
    240. 

  240. 

  241. // SetPathPermissions calls fs.Chown.
    242. 

  242. // It does nothing for local filesystem on windows
    243. 

  243. func SetPathPermissions(fs Fs, path string, uid int, gid int) {
    244. 

  244. 	if IsLocalOsFs(fs) {
    245. 

  245. 		if runtime.GOOS == "windows" {
    246. 

  246. 			return
    247. 

  247. 		}
    248. 

  248. 	}
    249. 

  249. 	if err := fs.Chown(path, uid, gid); err != nil {
    250. 

  250. 		fsLog(fs, logger.LevelWarn, "error chowning path %v: %v", path, err)
    251. 

  251. 	}
    252. 

  252. }
    253. 

  253. 

  254. func fsLog(fs Fs, level logger.LogLevel, format string, v ...interface{}) {
    255. 

  255. 	logger.Log(level, fs.Name(), fs.ConnectionID(), format, v...)
    256. 

  256. }
    257.