1 //! Tools and utilities
3 //! This is a collection of small and useful tools.
5 use std
::collections
::HashMap
;
6 use std
::hash
::BuildHasher
;
8 use std
::io
::{self, BufRead, ErrorKind, Read, Seek, SeekFrom}
;
9 use std
::os
::unix
::io
::RawFd
;
12 use anyhow
::{bail, format_err, Error}
;
13 use serde_json
::Value
;
14 use openssl
::hash
::{hash, DigestBytes, MessageDigest}
;
15 use percent_encoding
::AsciiSet
;
17 use proxmox
::tools
::vec
;
19 pub use proxmox
::tools
::fd
::Fd
;
38 pub use parallel_handler
::*;
40 mod wrapped_reader_stream
;
41 pub use wrapped_reader_stream
::*;
43 mod std_channel_writer
;
44 pub use std_channel_writer
::*;
49 pub use process_locker
::*;
52 pub use file_logger
::*;
55 pub use broadcast_future
::*;
57 /// The `BufferedRead` trait provides a single function
58 /// `buffered_read`. It returns a reference to an internal buffer. The
59 /// purpose of this traid is to avoid unnecessary data copies.
60 pub trait BufferedRead
{
61 /// This functions tries to fill the internal buffers, then
62 /// returns a reference to the available data. It returns an empty
63 /// buffer if `offset` points to the end of the file.
64 fn buffered_read(&mut self, offset
: u64) -> Result
<&[u8], Error
>;
67 /// Split a file into equal sized chunks. The last chunk may be
68 /// smaller. Note: We cannot implement an `Iterator`, because iterators
69 /// cannot return a borrowed buffer ref (we want zero-copy)
70 pub fn file_chunker
<C
, R
>(mut file
: R
, chunk_size
: usize, mut chunk_cb
: C
) -> Result
<(), Error
>
72 C
: FnMut(usize, &[u8]) -> Result
<bool
, Error
>,
75 const READ_BUFFER_SIZE
: usize = 4 * 1024 * 1024; // 4M
77 if chunk_size
> READ_BUFFER_SIZE
{
78 bail
!("chunk size too large!");
81 let mut buf
= vec
::undefined(READ_BUFFER_SIZE
);
87 let mut tmp
= &mut buf
[..];
88 // try to read large portions, at least chunk_size
89 while pos
< chunk_size
{
90 match file
.read(tmp
) {
102 Err(ref e
) if e
.kind() == ErrorKind
::Interrupted
=> { /* try again */ }
103 Err(e
) => bail
!("read chunk failed - {}", e
.to_string()),
107 while start
+ chunk_size
<= pos
{
108 if !(chunk_cb
)(file_pos
, &buf
[start
..start
+ chunk_size
])?
{
111 file_pos
+= chunk_size
;
116 (chunk_cb
)(file_pos
, &buf
[start
..pos
])?
;
117 //file_pos += pos - start;
121 let rest
= pos
- start
;
123 let ptr
= buf
.as_mut_ptr();
125 std
::ptr
::copy_nonoverlapping(ptr
.add(start
), ptr
, rest
);
137 pub fn json_object_to_query(data
: Value
) -> Result
<String
, Error
> {
138 let mut query
= url
::form_urlencoded
::Serializer
::new(String
::new());
140 let object
= data
.as_object().ok_or_else(|| {
141 format_err
!("json_object_to_query: got wrong data type (expected object).")
144 for (key
, value
) in object
{
147 query
.append_pair(key
, &b
.to_string());
149 Value
::Number(n
) => {
150 query
.append_pair(key
, &n
.to_string());
152 Value
::String(s
) => {
153 query
.append_pair(key
, &s
);
155 Value
::Array(arr
) => {
159 query
.append_pair(key
, &b
.to_string());
161 Value
::Number(n
) => {
162 query
.append_pair(key
, &n
.to_string());
164 Value
::String(s
) => {
165 query
.append_pair(key
, &s
);
168 "json_object_to_query: unable to handle complex array data types."
173 _
=> bail
!("json_object_to_query: unable to handle complex data types."),
180 pub fn required_string_param
<'a
>(param
: &'a Value
, name
: &str) -> Result
<&'a
str, Error
> {
181 match param
[name
].as_str() {
183 None
=> bail
!("missing parameter '{}'", name
),
187 pub fn required_string_property
<'a
>(param
: &'a Value
, name
: &str) -> Result
<&'a
str, Error
> {
188 match param
[name
].as_str() {
190 None
=> bail
!("missing property '{}'", name
),
194 pub fn required_integer_param
<'a
>(param
: &'a Value
, name
: &str) -> Result
<i64, Error
> {
195 match param
[name
].as_i64() {
197 None
=> bail
!("missing parameter '{}'", name
),
201 pub fn required_integer_property
<'a
>(param
: &'a Value
, name
: &str) -> Result
<i64, Error
> {
202 match param
[name
].as_i64() {
204 None
=> bail
!("missing property '{}'", name
),
208 pub fn required_array_param
<'a
>(param
: &'a Value
, name
: &str) -> Result
<Vec
<Value
>, Error
> {
209 match param
[name
].as_array() {
210 Some(s
) => Ok(s
.to_vec()),
211 None
=> bail
!("missing parameter '{}'", name
),
215 pub fn required_array_property
<'a
>(param
: &'a Value
, name
: &str) -> Result
<Vec
<Value
>, Error
> {
216 match param
[name
].as_array() {
217 Some(s
) => Ok(s
.to_vec()),
218 None
=> bail
!("missing property '{}'", name
),
222 pub fn complete_file_name
<S
: BuildHasher
>(arg
: &str, _param
: &HashMap
<String
, String
, S
>) -> Vec
<String
> {
223 let mut result
= vec
![];
225 use nix
::fcntl
::AtFlags
;
226 use nix
::fcntl
::OFlag
;
227 use nix
::sys
::stat
::Mode
;
229 let mut dirname
= std
::path
::PathBuf
::from(if arg
.is_empty() { "./" }
else { arg }
);
231 let is_dir
= match nix
::sys
::stat
::fstatat(libc
::AT_FDCWD
, &dirname
, AtFlags
::empty()) {
232 Ok(stat
) => (stat
.st_mode
& libc
::S_IFMT
) == libc
::S_IFDIR
,
237 if let Some(parent
) = dirname
.parent() {
238 dirname
= parent
.to_owned();
243 match nix
::dir
::Dir
::openat(libc
::AT_FDCWD
, &dirname
, OFlag
::O_DIRECTORY
, Mode
::empty()) {
245 Err(_
) => return result
,
248 for item
in dir
.iter() {
249 if let Ok(entry
) = item
{
250 if let Ok(name
) = entry
.file_name().to_str() {
251 if name
== "." || name
== ".." {
254 let mut newpath
= dirname
.clone();
258 nix
::sys
::stat
::fstatat(libc
::AT_FDCWD
, &newpath
, AtFlags
::empty())
260 if (stat
.st_mode
& libc
::S_IFMT
) == libc
::S_IFDIR
{
262 if let Some(newpath
) = newpath
.to_str() {
263 result
.push(newpath
.to_owned());
268 if let Some(newpath
) = newpath
.to_str() {
269 result
.push(newpath
.to_owned());
278 /// Scan directory for matching file names.
280 /// Scan through all directory entries and call `callback()` function
281 /// if the entry name matches the regular expression. This function
282 /// used unix `openat()`, so you can pass absolute or relative file
283 /// names. This function simply skips non-UTF8 encoded names.
284 pub fn scandir
<P
, F
>(
287 regex
: ®ex
::Regex
,
289 ) -> Result
<(), Error
>
291 F
: FnMut(RawFd
, &str, nix
::dir
::Type
) -> Result
<(), Error
>,
292 P
: ?Sized
+ nix
::NixPath
,
294 for entry
in self::fs
::scan_subdir(dirfd
, path
, regex
)?
{
296 let file_type
= match entry
.file_type() {
297 Some(file_type
) => file_type
,
298 None
=> bail
!("unable to detect file type"),
303 unsafe { entry.file_name_utf8_unchecked() }
,
310 /// Shortcut for md5 sums.
311 pub fn md5sum(data
: &[u8]) -> Result
<DigestBytes
, Error
> {
312 hash(MessageDigest
::md5(), data
).map_err(Error
::from
)
315 pub fn get_hardware_address() -> Result
<String
, Error
> {
316 static FILENAME
: &str = "/etc/ssh/ssh_host_rsa_key.pub";
318 let contents
= proxmox
::tools
::fs
::file_get_contents(FILENAME
)?
;
319 let digest
= md5sum(&contents
)?
;
321 Ok(proxmox
::tools
::bin_to_hex(&digest
))
324 pub fn assert_if_modified(digest1
: &str, digest2
: &str) -> Result
<(), Error
> {
325 if digest1
!= digest2
{
326 bail
!("detected modified configuration - file changed by other user? Try again.");
331 /// Extract a specific cookie from cookie header.
332 /// We assume cookie_name is already url encoded.
333 pub fn extract_cookie(cookie
: &str, cookie_name
: &str) -> Option
<String
> {
334 for pair
in cookie
.split('
;'
) {
335 let (name
, value
) = match pair
.find('
='
) {
336 Some(i
) => (pair
[..i
].trim(), pair
[(i
+ 1)..].trim()),
337 None
=> return None
, // Cookie format error
340 if name
== cookie_name
{
341 use percent_encoding
::percent_decode
;
342 if let Ok(value
) = percent_decode(value
.as_bytes()).decode_utf8() {
343 return Some(value
.into());
345 return None
; // Cookie format error
353 pub fn join(data
: &Vec
<String
>, sep
: char) -> String
{
354 let mut list
= String
::new();
357 if !list
.is_empty() {
366 /// Detect modified configuration files
368 /// This function fails with a reasonable error message if checksums do not match.
369 pub fn detect_modified_configuration_file(digest1
: &[u8;32], digest2
: &[u8;32]) -> Result
<(), Error
> {
370 if digest1
!= digest2
{
371 bail
!("detected modified configuration - file changed by other user? Try again.");
376 /// normalize uri path
378 /// Do not allow ".", "..", or hidden files ".XXXX"
379 /// Also remove empty path components
380 pub fn normalize_uri_path(path
: &str) -> Result
<(String
, Vec
<&str>), Error
> {
381 let items
= path
.split('
/'
);
383 let mut path
= String
::new();
384 let mut components
= vec
![];
390 if name
.starts_with('
.'
) {
391 bail
!("Path contains illegal components.");
395 components
.push(name
);
398 Ok((path
, components
))
401 /// Helper to check result from std::process::Command output
403 /// The exit_code_check() function should return true if the exit code
404 /// is considered successful.
405 pub fn command_output(
406 output
: std
::process
::Output
,
407 exit_code_check
: Option
<fn(i32) -> bool
>,
408 ) -> Result
<String
, Error
> {
410 if !output
.status
.success() {
411 match output
.status
.code() {
413 let is_ok
= match exit_code_check
{
414 Some(check_fn
) => check_fn(code
),
418 let msg
= String
::from_utf8(output
.stderr
)
419 .map(|m
| if m
.is_empty() { String::from("no error message") }
else { m }
)
420 .unwrap_or_else(|_
| String
::from("non utf8 error message (suppressed)"));
422 bail
!("status code: {} - {}", code
, msg
);
425 None
=> bail
!("terminated by signal"),
429 let output
= String
::from_utf8(output
.stdout
)?
;
435 mut command
: std
::process
::Command
,
436 exit_code_check
: Option
<fn(i32) -> bool
>,
437 ) -> Result
<String
, Error
> {
439 let output
= command
.output()
440 .map_err(|err
| format_err
!("failed to execute {:?} - {}", command
, err
))?
;
442 let output
= crate::tools
::command_output(output
, exit_code_check
)
443 .map_err(|err
| format_err
!("command {:?} failed - {}", command
, err
))?
;
448 pub fn fd_change_cloexec(fd
: RawFd
, on
: bool
) -> Result
<(), Error
> {
449 use nix
::fcntl
::{fcntl, FdFlag, F_GETFD, F_SETFD}
;
450 let mut flags
= FdFlag
::from_bits(fcntl(fd
, F_GETFD
)?
)
451 .ok_or_else(|| format_err
!("unhandled file flags"))?
; // nix crate is stupid this way...
452 flags
.set(FdFlag
::FD_CLOEXEC
, on
);
453 fcntl(fd
, F_SETFD(flags
))?
;
457 static mut SHUTDOWN_REQUESTED
: bool
= false;
459 pub fn request_shutdown() {
461 SHUTDOWN_REQUESTED
= true;
463 crate::server
::server_shutdown();
467 pub fn shutdown_requested() -> bool
{
468 unsafe { SHUTDOWN_REQUESTED }
471 pub fn fail_on_shutdown() -> Result
<(), Error
> {
472 if shutdown_requested() {
473 bail
!("Server shutdown requested - aborting task");
478 /// safe wrapper for `nix::unistd::pipe2` defaulting to `O_CLOEXEC` and guarding the file
480 pub fn pipe() -> Result
<(Fd
, Fd
), Error
> {
481 let (pin
, pout
) = nix
::unistd
::pipe2(nix
::fcntl
::OFlag
::O_CLOEXEC
)?
;
482 Ok((Fd(pin
), Fd(pout
)))
485 /// safe wrapper for `nix::sys::socket::socketpair` defaulting to `O_CLOEXEC` and guarding the file
487 pub fn socketpair() -> Result
<(Fd
, Fd
), Error
> {
488 use nix
::sys
::socket
;
489 let (pa
, pb
) = socket
::socketpair(
490 socket
::AddressFamily
::Unix
,
491 socket
::SockType
::Stream
,
493 socket
::SockFlag
::SOCK_CLOEXEC
,
499 /// An easy way to convert types to Any
501 /// Mostly useful to downcast trait objects (see RpcEnvironment).
503 fn as_any(&self) -> &dyn Any
;
506 impl<T
: Any
> AsAny
for T
{
507 fn as_any(&self) -> &dyn Any
{
512 /// This used to be: `SIMPLE_ENCODE_SET` plus space, `"`, `#`, `<`, `>`, backtick, `?`, `{`, `}`
513 pub const DEFAULT_ENCODE_SET
: &AsciiSet
= &percent_encoding
::CONTROLS
// 0..1f and 7e
514 // The SIMPLE_ENCODE_SET adds space and anything >= 0x7e (7e itself is already included above)
517 // the DEFAULT_ENCODE_SET added:
528 /// Get an iterator over lines of a file, skipping empty lines and comments (lines starting with a
530 pub fn file_get_non_comment_lines<P: AsRef<Path>>(
532 ) -> Result<impl Iterator<Item = io::Result<String>>, Error> {
533 let path = path.as_ref();
535 Ok(io::BufReader::new(
536 File::open(path).map_err(|err| format_err!("error opening {:?}
: {}
", path, err))?,
539 .filter_map(|line| match line {
541 let line = line.trim();
542 if line.is_empty() || line.starts_with('#') {
545 Some(Ok(line.to_string()))
548 Err(err) => Some(Err(err)),
552 pub fn setup_safe_path_env() {
553 std::env::set_var("PATH
", "/sbin
:/bin
:/usr
/sbin
:/usr
/bin
");
554 // Make %ENV safer - as suggested by https://perldoc.perl.org/perlsec.html
555 for name in &["IFS
", "CDPATH
", "ENV
", "BASH_ENV
"] {
556 std::env::remove_var(name);
560 pub fn strip_ascii_whitespace(line: &[u8]) -> &[u8] {
561 let line = match line.iter().position(|&b| !b.is_ascii_whitespace()) {
562 Some(n) => &line[n..],
565 match line.iter().rev().position(|&b| !b.is_ascii_whitespace()) {
566 Some(n) => &line[..(line.len() - n)],
571 /// Seeks to start of file and computes the SHA256 hash
572 pub fn compute_file_csum(file: &mut File) -> Result<([u8; 32], u64), Error> {
574 file.seek(SeekFrom::Start(0))?;
576 let mut hasher = openssl::sha::Sha256::new();
577 let mut buffer = proxmox::tools::vec::undefined(256*1024);
578 let mut size: u64 = 0;
581 let count = match file.read(&mut buffer) {
583 Err(ref err) if err.kind() == std::io::ErrorKind::Interrupted => {
586 Err(err) => return Err(err.into()),
591 size += count as u64;
592 hasher.update(&buffer[..count]);
595 let csum = hasher.finish();