391 lines
8.3 KiB
Go
391 lines
8.3 KiB
Go
package internal
|
|
|
|
import (
|
|
"archive/tar"
|
|
"fmt"
|
|
"io"
|
|
"log"
|
|
"os"
|
|
"os/exec"
|
|
"path/filepath"
|
|
"strings"
|
|
|
|
"github.com/BurntSushi/toml"
|
|
"github.com/klauspost/compress/zstd"
|
|
lua "github.com/yuin/gopher-lua"
|
|
)
|
|
|
|
type ConfigTOML struct {
|
|
Config struct {
|
|
HttpPort int `toml:"httpPort"`
|
|
CacheDir string `toml:"cacheDir"`
|
|
AutoDeleteCacheDir bool `toml:"dayToDeleteCacheDir"`
|
|
DaysToDelete int `toml:"daysToDelete"`
|
|
DataDir string `toml:"dataDir"`
|
|
BinDir string `toml:"binDir"`
|
|
LastDataDir string `toml:"lastDataDir"`
|
|
} `toml:"Config"`
|
|
}
|
|
|
|
type Manifest struct {
|
|
Info struct {
|
|
Name string `toml:"name"`
|
|
Version string `toml:"version"`
|
|
Description string `toml:"description"`
|
|
Dependencies []string `toml:"dependencies"`
|
|
Author string `toml:"author"`
|
|
Family string `toml:"family"`
|
|
Serial uint `toml:"serial"`
|
|
} `toml:"Info"`
|
|
Hooks struct {
|
|
Install string `toml:"install"`
|
|
Remove string `toml:"remove"`
|
|
} `toml:"Hooks"`
|
|
}
|
|
|
|
func PacketsPackageDir() string {
|
|
|
|
out, _ := exec.Command("uname", "-s").Output()
|
|
|
|
if uname := strings.TrimSpace(string(out)); uname == "OpenTTY" {
|
|
return "/mnt/....."
|
|
} else {
|
|
return "/etc/packets"
|
|
}
|
|
}
|
|
|
|
func ManifestReadXZ(path string) (*Manifest, error) {
|
|
f, err := os.Open(path)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
defer f.Close()
|
|
|
|
zr, err := zstd.NewReader(f)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
defer zr.Close()
|
|
|
|
tarReader := tar.NewReader(zr)
|
|
|
|
for {
|
|
header, err := tarReader.Next()
|
|
if err == io.EOF {
|
|
break
|
|
}
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
if filepath.Base(header.Name) == "manifest.toml" {
|
|
decoder := toml.NewDecoder(tarReader)
|
|
|
|
var manifest Manifest
|
|
|
|
if _, err := decoder.Decode(&manifest); err != nil {
|
|
log.Fatal(err)
|
|
}
|
|
|
|
return &manifest, nil
|
|
}
|
|
|
|
}
|
|
return nil, fmt.Errorf("can't find manifest.toml")
|
|
}
|
|
|
|
func DefaultConfigTOML() *ConfigTOML {
|
|
|
|
var cfg ConfigTOML
|
|
out, _ := exec.Command("uname", "-s").Output()
|
|
|
|
if uname := strings.TrimSpace(string(out)); uname == "OpenTTY" {
|
|
cfg.Config.HttpPort = 9123
|
|
cfg.Config.AutoDeleteCacheDir = false
|
|
cfg.Config.CacheDir = "/mnt/... " // TODO
|
|
cfg.Config.DataDir = "/mnt/... " // TODO
|
|
cfg.Config.DaysToDelete = -1
|
|
cfg.Config.BinDir = "/home/...." // TODO
|
|
cfg.Config.LastDataDir = "/mnt/... " // TODO
|
|
return &cfg
|
|
} else {
|
|
|
|
cfg.Config.HttpPort = 9123
|
|
cfg.Config.AutoDeleteCacheDir = false
|
|
cfg.Config.CacheDir = "/var/cache/packets"
|
|
cfg.Config.DataDir = "/opt/packets"
|
|
cfg.Config.DaysToDelete = -1
|
|
cfg.Config.BinDir = "/usr/bin"
|
|
cfg.Config.LastDataDir = "/opt/packets"
|
|
|
|
return &cfg
|
|
}
|
|
|
|
}
|
|
|
|
func IsSafe(str string) bool {
|
|
s, err := filepath.EvalSymlinks(filepath.Clean(str))
|
|
if err != nil {
|
|
s = filepath.Clean(str)
|
|
}
|
|
|
|
var cfg ConfigTOML
|
|
toml.DecodeFile(filepath.Join(PacketsPackageDir(), "config.toml"), &cfg)
|
|
|
|
if strings.HasPrefix(s, cfg.Config.DataDir) || strings.HasPrefix(s, cfg.Config.BinDir) {
|
|
return true
|
|
|
|
} else if strings.Contains(s, ".ssh") {
|
|
return false
|
|
|
|
} else if strings.HasPrefix(s, "/etc") {
|
|
return false
|
|
|
|
} else if strings.HasPrefix(s, "/usr") || strings.HasPrefix(s, "/bin") {
|
|
fmt.Println(s, "está dentro de usr")
|
|
return strings.HasPrefix(s, "/usr/share")
|
|
|
|
} else if strings.HasPrefix(s, "/var/mail") {
|
|
return false
|
|
|
|
} else if strings.HasPrefix(s, "/proc") {
|
|
return false
|
|
|
|
} else if strings.HasPrefix(s, "/sys") {
|
|
return false
|
|
|
|
} else if strings.HasPrefix(s, "/var/run") || strings.HasPrefix(s, "/run") {
|
|
return false
|
|
|
|
} else if strings.HasPrefix(s, "/tmp") {
|
|
return false
|
|
|
|
} else if strings.HasPrefix(s, "/dev") {
|
|
return false
|
|
|
|
} else if strings.HasPrefix(s, "/boot") {
|
|
return false
|
|
|
|
} else if strings.HasPrefix(s, "/home") {
|
|
if strings.Contains(s, "/Pictures") || strings.Contains(s, "/Videos") || strings.Contains(s, "/Documents") || strings.Contains(s, "/Downloads") {
|
|
return false
|
|
}
|
|
|
|
} else if strings.HasPrefix(s, "/lib") || strings.HasPrefix(s, "/lib64") || strings.HasPrefix(s, "/var/lib64") || strings.HasPrefix(s, "/lib") {
|
|
return false
|
|
|
|
} else if strings.HasPrefix(s, "/sbin") {
|
|
return false
|
|
|
|
} else if strings.HasPrefix(s, "/srv") {
|
|
return false
|
|
|
|
} else if strings.HasPrefix(s, "/mnt") {
|
|
return false
|
|
|
|
} else if strings.HasPrefix(s, "/media") {
|
|
return false
|
|
} else if strings.HasPrefix(s, "/snap") {
|
|
return false
|
|
}
|
|
|
|
return true
|
|
}
|
|
|
|
func SafeRemove(L *lua.LState) int {
|
|
filename := L.CheckString(1)
|
|
if !IsSafe(filename) {
|
|
L.Push(lua.LFalse)
|
|
L.Push(lua.LString("[packets] unsafe filepath"))
|
|
return 2
|
|
}
|
|
err := os.RemoveAll(filename)
|
|
if err != nil {
|
|
L.Push(lua.LFalse)
|
|
L.Push(lua.LString("[packets] remove failed\n" + err.Error()))
|
|
return 2
|
|
}
|
|
L.Push(lua.LTrue)
|
|
L.Push(lua.LNil)
|
|
return 2
|
|
}
|
|
|
|
func SafeRename(L *lua.LState) int {
|
|
oldname := L.CheckString(1)
|
|
newname := L.CheckString(2)
|
|
|
|
if !IsSafe(oldname) || !IsSafe(newname) {
|
|
L.Push(lua.LFalse)
|
|
L.Push(lua.LString("[packets] unsafe filepath"))
|
|
return 2
|
|
}
|
|
|
|
if err := os.Rename(oldname, newname); err != nil {
|
|
L.Push(lua.LFalse)
|
|
L.Push(lua.LString("[packets] rename failed\n" + err.Error()))
|
|
return 2
|
|
}
|
|
|
|
L.Push(lua.LTrue)
|
|
return 1
|
|
}
|
|
func SafeCopy(L *lua.LState) int {
|
|
oldname := L.CheckString(1)
|
|
newname := L.CheckString(2)
|
|
|
|
if !IsSafe(oldname) || !IsSafe(newname) {
|
|
L.Push(lua.LFalse)
|
|
L.Push(lua.LString("[packets] unsafe filepath"))
|
|
return 2
|
|
}
|
|
|
|
src, err := os.Open(oldname)
|
|
if err != nil {
|
|
L.Push(lua.LFalse)
|
|
L.Push(lua.LString("[packets] copy failed\n" + err.Error()))
|
|
return 2
|
|
|
|
}
|
|
defer src.Close()
|
|
|
|
status, err := src.Stat()
|
|
if err != nil {
|
|
L.Push(lua.LFalse)
|
|
L.Push(lua.LString("[packets] copy failed\n" + err.Error()))
|
|
return 2
|
|
}
|
|
|
|
err = os.MkdirAll(filepath.Dir(newname), 0755)
|
|
if err != nil {
|
|
L.Push(lua.LFalse)
|
|
L.Push(lua.LString("[packets] copy failed\n" + err.Error()))
|
|
return 2
|
|
}
|
|
|
|
os.RemoveAll(newname)
|
|
|
|
dst, err := os.Create(newname)
|
|
if err != nil {
|
|
L.Push(lua.LFalse)
|
|
L.Push(lua.LString("[packets] copy failed\n" + err.Error()))
|
|
return 2
|
|
}
|
|
|
|
defer dst.Close()
|
|
if err := dst.Chmod(status.Mode()); err != nil {
|
|
L.Push(lua.LFalse)
|
|
L.Push(lua.LString("[packets] copy failed\n" + err.Error()))
|
|
return 2
|
|
}
|
|
|
|
_, err = io.Copy(dst, src)
|
|
if err != nil {
|
|
L.Push(lua.LFalse)
|
|
L.Push(lua.LString("[packets] copy failed\n" + err.Error()))
|
|
return 2
|
|
}
|
|
|
|
L.Push(lua.LTrue)
|
|
L.Push(lua.LNil)
|
|
return 2
|
|
}
|
|
|
|
func SymbolicLua(L *lua.LState) int {
|
|
fileName := L.CheckString(1)
|
|
destination := L.CheckString(2)
|
|
|
|
if !IsSafe(fileName) || !IsSafe(destination) {
|
|
L.Push(lua.LFalse)
|
|
L.Push(lua.LString("[packets] unsafe filepath"))
|
|
return 2
|
|
}
|
|
|
|
_ = os.RemoveAll(destination)
|
|
if err := os.Symlink(fileName, destination); err != nil {
|
|
L.Push(lua.LFalse)
|
|
L.Push(lua.LString("[packets] symlink failed\n" + err.Error()))
|
|
return 2
|
|
}
|
|
|
|
L.Push(lua.LTrue)
|
|
L.Push(lua.LNil)
|
|
return 2
|
|
}
|
|
|
|
func modeFlags(mode string) int {
|
|
switch mode {
|
|
case "r", "rb":
|
|
return os.O_RDONLY
|
|
case "w", "wb":
|
|
return os.O_CREATE | os.O_WRONLY | os.O_TRUNC
|
|
case "a", "ab":
|
|
return os.O_CREATE | os.O_WRONLY | os.O_APPEND
|
|
case "r+", "r+b", "rb+", "br+":
|
|
return os.O_RDWR
|
|
case "w+", "w+b", "wb+", "bw+":
|
|
return os.O_CREATE | os.O_RDWR | os.O_TRUNC
|
|
case "a+", "a+b", "ab+", "ba+":
|
|
return os.O_CREATE | os.O_RDWR | os.O_APPEND
|
|
default:
|
|
return os.O_RDONLY
|
|
}
|
|
}
|
|
|
|
func SafeOpen(L *lua.LState) int {
|
|
path := L.CheckString(1)
|
|
mode := L.OptString(2, "r")
|
|
|
|
if !IsSafe(path) {
|
|
L.Push(lua.LNil)
|
|
L.Push(lua.LString("[packets] unsafe filepath"))
|
|
return 2
|
|
}
|
|
file, err := os.OpenFile(path, modeFlags(mode), 0644)
|
|
if err != nil {
|
|
L.Push(lua.LNil)
|
|
L.Push(lua.LString("[packets] open failed\n" + err.Error()))
|
|
return 2
|
|
}
|
|
|
|
ud := L.NewUserData()
|
|
ud.Value = file
|
|
L.SetMetatable(ud, L.GetTypeMetatable("file"))
|
|
L.Push(ud)
|
|
L.Push(lua.LNil)
|
|
return 2
|
|
}
|
|
|
|
func Ljoin(L *lua.LState) int {
|
|
|
|
n := L.GetTop()
|
|
parts := make([]string, 0, n)
|
|
|
|
for i := 1; i <= n; i++ {
|
|
val := L.Get(i)
|
|
parts = append(parts, val.String())
|
|
}
|
|
|
|
result := filepath.Join(parts...)
|
|
L.Push(lua.LString(result))
|
|
return 1
|
|
}
|
|
|
|
func LMkdir(L *lua.LState) int {
|
|
path := L.CheckString(1)
|
|
perm := L.CheckInt(2)
|
|
|
|
if !IsSafe(path) {
|
|
L.Push(lua.LFalse)
|
|
L.Push(lua.LString("[packets] unsafe filepath\n"))
|
|
}
|
|
|
|
if err := os.MkdirAll(path, os.FileMode(perm)); err != nil {
|
|
L.Push(lua.LFalse)
|
|
L.Push(lua.LString("[packets] mkdir failed\n" + err.Error()))
|
|
}
|
|
|
|
L.Push(lua.LTrue)
|
|
L.Push(lua.LNil)
|
|
return 2
|
|
}
|