Skip to content

Commit

Permalink
Refactor Bric::Util::Trans::SFTP.
Browse files Browse the repository at this point in the history 
It was a bit of a mess. Much of the code was unnecessary, dating from before
2.0 when it used Net::SFTP instead of Net::SSH2. As a result, the error
handling was all wrong.

While at it, remove the file name escaping, as with newer versions of
Net::SSH2 at least (or perhaps newer versions of libssh2), it was leaving the
backslashes in the file names on the destination server. So bump up the
minimum version of Net::SSH2.

For sanity, also add tests to make sure that Net::Util::Trans::SFTP and
Net::Util::Trans::SFTP compile and have apprpropriate interfaces.
  • Loading branch information
@theory
theory committed Jul 6, 2010
1 parent 24f2fcf commit 256e550
Show file tree
Hide file tree
Showing 5 changed files with 152 additions and 122 deletions.
2 changes: 1 addition & 1 deletion lib/Bric/Admin.pod
View file
Expand Up @@ -464,7 +464,7 @@ START MODULE LIST

=item Net::FTPServer (optional)

=item Net::SSH2 0.18 (optional)
=item Net::SSH2 0.28 (optional)

=item HTTP::DAV (optional)

Expand Down
8 changes: 7 additions & 1 deletion lib/Bric/Changes.pod
View file
Expand Up @@ -30,6 +30,12 @@ Added the "object" format for datetime values. Pass "object" as the formatting
string and a L<DateTime> object will be returned, rather than a string.
[David]

=item *

Refactored the SFTP mover to do proper error handling. Also removed the code
that "escapes" file names, as with more recent versions of Net::SSH2 it left
the backslashes in the file names. [David]

=back

=head2 Bug Fixes
Expand All @@ -51,7 +57,7 @@ permission to edit an asset [Kahil Jallad].
=item *

Fixed a bug where the SFTP mover would not properly finish moving the file,
leavingescaped tmp files on the destination server. [Matt Rolf]
leaving escaped tmp files on the destination server. [Matt Rolf]

=back

Expand Down
213 changes: 93 additions & 120 deletions lib/Bric/Util/Trans/SFTP.pm
View file
Expand Up @@ -124,34 +124,15 @@ B<Notes:> Uses Net::SFTP internally.
sub put_res {
my ($pkg, $resources, $st) = @_;

foreach my $s ($st->get_servers) {
foreach my $server ($st->get_servers) {
# Skip inactive servers.
next unless $s->is_active;
next unless $server->is_active;

# Instantiate a Net::SSH2 object and login.

my ($hn, $port) = split /:/, $s->get_host_name;
my $user = $s->get_login;
my $password = $s->get_password;

my $ssh2 = Net::SSH2->new();
my $connect = eval {
$ssh2->connect($hn, $port);
$ssh2->method('CRYPT_CS', SFTP_MOVER_CIPHER ) if SFTP_MOVER_CIPHER;
$ssh2->method('HOSTKEY', SFTP_KEY_TYPE ) if SFTP_KEY_TYPE;
$ssh2->auth( username => $user, password => $password,
publickey => SFTP_PUBLIC_KEY_FILE,
privatekey => SFTP_PRIVATE_KEY_FILE);
};
throw_gen error => "Unable to login to remote server '$hn'.",
payload => $@
if $@ || !$ssh2->auth_ok;

# Get the document root.
my $doc_root = $s->get_doc_root;

# Create a Net::SSH2::SFTP object to use later
my $sftp = $ssh2->sftp;
# Connect via SSH2 and establish SFTP channel.
my $ssh2 = _connect($server);
my $sftp = $ssh2->sftp;
my $doc_root = $server->get_doc_root;
my $hn = $server->get_host_name;

# Now, put each file on the remote server.
my %dirs;
Expand All @@ -162,68 +143,45 @@ sub put_res {
# haven't created it already.
my $dest_dir = $fs->dir_name(unescape_uri $res->get_uri);
my ($status, $dirhandle);
unless ($dirs{$dest_dir}) {
$dirhandle = eval {
local $SIG{__WARN__} = $no_warn;
$sftp->opendir($fs->cat_dir($doc_root, substr $dest_dir, 1));
};
unless (defined $dirhandle) {
# The directory doesn't exist.
# Get the list of all of the directories.
my $subdir = $doc_root;
foreach my $dir ($fs->split_dir($dest_dir)) {
# Create each one if it doesn't exist.
$subdir = $fs->cat_dir($subdir, $dir);
# Mark that we've created it, so we don't try to do it
# again.
$dirs{$subdir} = 1;
$dirhandle = eval{
local $SIG{__WARN__} = $no_warn;
$sftp->opendir($subdir);
};
unless (defined $dirhandle) {
$status = eval {
local $SIG{__WARN__} = $no_warn;
$sftp->mkdir($subdir);
};
unless (defined $status) {
my $msg = "Unable to create directory '$subdir'"
. " on remote server '$hn'";
throw_gen(error => $msg);
}
}
unless ($dirs{$dest_dir}++ or $sftp->opendir($fs->cat_dir(
$doc_root, substr $dest_dir, 1
))) {
# The directory doesn't exist. So create it.
my $subdir = $doc_root;
foreach my $dir ($fs->split_dir($dest_dir)) {
# Check for existence of subdirectory.
$subdir = $fs->cat_dir($subdir, $dir);
$dirs{$subdir} = 1;
unless ($sftp->opendir($subdir)) {
# Doesn't exist, so create it.
$sftp->mkdir($subdir) or throw_gen(
error => "Error creating directory '$subdir' on '$hn'",
payload => ($sftp->error)[1],
)
}
}
}

# Now, put the file on the server.
my $dest_file = $fs->cat_file($doc_root, unescape_uri substr $res->get_uri, 1);
# Strip the filename off end of dest and escape it
my $orig_base = $fs->base_name($dest_file);
my $escaped_base;
($escaped_base = $orig_base) =~ s/(.)/\\$1/g;
# Strip off directory destination and
# re-name file with escapes included
my $base_dir = $fs->dir_name($dest_file);
my $dest_file_esc = $fs->cat_dir($base_dir, $escaped_base);
# Create temporary destination and put file on server
my $tmp_dest = $dest_file . '.tmp';
my $tmp_dest_esc = $dest_file_esc . '.tmp';
$status = eval{
local $SIG{__WARN__} = $no_warn;
$sftp->unlink($tmp_dest) if FTP_UNLINK_BEFORE_MOVE;
my $f = $ssh2->scp_put($src, $tmp_dest_esc);
$sftp->unlink($dest_file) if FTP_UNLINK_BEFORE_MOVE;
$sftp->rename($tmp_dest_esc, $dest_file);
};
unless (defined $status) {
my $msg = "Unable to put file '$dest_file' on remote host"
. " '$hn', status '" . $sftp->error. "'";
throw_gen(error => $msg);
}
my $dest_file = $fs->cat_file(
$doc_root, unescape_uri substr $res->get_uri, 1
);
my $temp_dest = "$dest_file.tmp";

$sftp->unlink($temp_dest) if FTP_UNLINK_BEFORE_MOVE;
$ssh2->scp_put($src, $temp_dest) or throw_gen(
error => "Error putting file '$dest_file' on '$hn'",
payload => join ' ', $ssh2->error
);
$sftp->unlink($dest_file) if FTP_UNLINK_BEFORE_MOVE;
$sftp->rename($temp_dest, $dest_file) or throw_gen(
error => "Error renaming '$temp_dest' to '$dest_file' on '$hn'",
payload => join ' ', $sftp->error
);
}
# Disconnect and free memory

# Disconnect.
$ssh2->disconnect;
undef $sftp;
}
return 1;
}
Expand Down Expand Up @@ -258,44 +216,30 @@ B<Notes:> See put_res(), above.
sub del_res {
my ($pkg, $resources, $st) = @_;

foreach my $s ($st->get_servers) {
foreach my $server ($st->get_servers) {
# Skip inactive servers.
next unless $s->is_active;

# Instantiate a Net::SSH2 object and login.
my ($hn, $port) = split /:/, $s->get_host_name;
my $user = $s->get_login;
my $password = $s->get_password;

my $ssh2 = Net::SSH2->new();
my $connect = eval {
$ssh2->connect($hn, $port);
$ssh2->method('CRYPT_CS', SFTP_MOVER_CIPHER ) if SFTP_MOVER_CIPHER;
$ssh2->method('HOSTKEY', SFTP_KEY_TYPE ) if SFTP_KEY_TYPE;
$ssh2->auth( username => $user, password => $password,
publickey => SFTP_PUBLIC_KEY_FILE,
privatekey => SFTP_PRIVATE_KEY_FILE);
};
throw_gen error => "Unable to login to remote server '$hn'.",
payload => $@
if $@ || !$ssh2->auth_ok;

# Create a Net::SSH2::SFTP object to use later
my $sftp = $ssh2->sftp;

# Get the document root.
my $doc_root = $s->get_doc_root;
next unless $server->is_active;

# Connect via SSH2 and establish SFTP channel.
my $ssh2 = _connect($server);
my $sftp = $ssh2->sftp;
my $doc_root = $server->get_doc_root;
my $hn = $server->get_host_name;

foreach my $res (@$resources) {
# Get the name of the file to be deleted.
my $file = $fs->cat_file($doc_root, unescape_uri substr $res->get_uri, 1);
my $file = $fs->cat_file(
$doc_root, unescape_uri substr $res->get_uri, 1
);
# Delete the file
$sftp->unlink($file);
$sftp->unlink($file) or throw_gen(
error => "Error deleting '$file' on '$hn'",
payload => join ' ', $sftp->error,
);
}

# Disconnect and free memory
# Disconnect.
$ssh2->disconnect;
undef $sftp;
undef $ssh2;
}
return 1;
}
Expand All @@ -316,17 +260,46 @@ NONE.
=over 4
=item local $SIG{__WARN__} = $no_warn;
=item _connect
Anonymous subroutine to prevent warning messages.
B<Throws:> NONE.
B<Notes:> NONE.
Establishes an SSH2 connection.
=cut

$no_warn = sub { };
sub _connect_to {
my $server = shift;

my $hn = $server->get_host_name;
my $ssh2 = Net::SSH2->new;

$ssh2->connect(split /:/ => $hn) or trow_gen(
error => "Error connecting to '$hn' via SSH2",
payload => join ' ', $ssh2->error,
);

$ssh2->method('CRYPT_CS', SFTP_MOVER_CIPHER ) or throw_gen(
error => "Error setting cipher for '$hn' to " . SFTP_MOVER_CIPHER,
payload => join ' ', $ssh2->error,
) if SFTP_MOVER_CIPHER;

$ssh2->method('HOSTKEY', SFTP_KEY_TYPE ) or throw_gen(
error => "Error setting key type to " . SFTP_KEY_TYPE,
payload => join ' ', $ssh2->error,
) if SFTP_KEY_TYPE;

my $ret = $ssh2->auth(
username => $server->get_login,
password => $server->get_password,
publickey => SFTP_PUBLIC_KEY_FILE,
privatekey => SFTP_PRIVATE_KEY_FILE
);
throw_gen(
error => "Error authenticating to '$hn' via SSH2",
payload => join ' ', $ssh2->error,
) unless $ret && $ssh2->auth_ok;

return $ssh2;
}

=back
Expand Down
25 changes: 25 additions & 0 deletions t/Bric/Util/Trans/FTP/Test.pm
View file
@@ -0,0 +1,25 @@
package Bric::Util::Trans::FTP::Test;
use strict;
use warnings;
use base qw(Bric::Test::Base);
use Test::More;
use Bric::Util::ApacheUtil qw(unescape_uri escape_uri);
use File::Spec::Functions qw(catdir);
use File::Spec::Unix;

##############################################################################
# Test class loading.
##############################################################################
sub _test_load : Test(3) {
use_ok('Bric::Util::Trans::FTP');
isa_ok 'Bric::Util::Trans::FTP', 'Bric';

can_ok 'Bric::Util::Trans::FTP', qw(
new
put_res
del_res
);
}

1;
__END__
26 changes: 26 additions & 0 deletions t/Bric/Util/Trans/SFTP/Test.pm
View file
@@ -0,0 +1,26 @@
package Bric::Util::Trans::SFTP::Test;
use strict;
use warnings;
use base qw(Bric::Test::Base);
use Test::More;
use Bric::Util::ApacheUtil qw(unescape_uri escape_uri);
use File::Spec::Functions qw(catdir);
use File::Spec::Unix;

##############################################################################
# Test class loading.
##############################################################################
sub _test_load : Test(3) {
use_ok('Bric::Util::Trans::SFTP');
isa_ok 'Bric::Util::Trans::SFTP', 'Bric';

can_ok 'Bric::Util::Trans::SFTP', qw(
new
put_res
del_res
_connect_to
);
}

1;
__END__

2 comments on commit 256e550

@bretdawson
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Hi David,

I tried it out, but no luck, I'm afraid. That may be because of something particular to my system, but I'm not sure.

There were a couple of typos that I fixed when trying it out, but I didn't get it to work, so it feels a little pointless to file a patch. Here they are:

Line 269: method name should be "_connect", not "_connect_to" (github is hiding the initial underscores here)
Line 275: "trow_gen" should be "throw_gen".

Now, the errors:

Attempting a preview to an SFTP destination, using key authentication yields this error:

Error authenticating to 'arse.ca' via SSH2

-37 LIBSSH2_ERROR_EAGAIN Would block requesting userauth list

View Error Details
Error Details (hide)

Fault Class
Bric::Util::Fault::Exception::GEN
Description
General Exception
Timestamp
2010-07-09 07:44:22.000000
Package
Bric::Util::Trans::SFTP
Filename
/usr/local/bricolage/lib/Bric/Util/Trans/SFTP.pm
Line
298

Stack:

Trace begun at /usr/local/bricolage/lib/Bric/Util/Trans/SFTP.pm line 298
Bric::Util::Trans::SFTP::_connect('Bric::Dist::Server=HASH(0x23c86d38)') called at /usr/local/bricolage/lib/Bric/Util/Trans/SFTP.pm line 132
Bric::Util::Trans::SFTP::put_res('Bric::Util::Trans::SFTP', 'ARRAY(0x23c87248)', 'Bric::Dist::ServerType=HASH(0x23c2f580)') called at /usr/local/bricolage/lib/Bric/Dist/Action/Mover.pm line 160
Bric::Dist::Action::Mover::do_it('Bric::Dist::Action::Mover=HASH(0x23bfd0d0)', 'ARRAY(0x23c87248)', 'Bric::Dist::ServerType=HASH(0x23c2f580)') called at /usr/local/bricolage/lib/Bric/Util/Job/Dist.pm line 227
Bric::Util::Job::Dist::_do_it('Bric::Util::Job::Dist=HASH(0x23c2cd30)') called at /usr/local/bricolage/lib/Bric/Util/Job.pm line 1881
eval {...} at /usr/local/bricolage/lib/Bric/Util/Job.pm line 1879
Bric::Util::Job::execute_me('Bric::Util::Job::Dist=HASH(0x23c2cd30)') called at /usr/local/bricolage/lib/Bric/Util/Job.pm line 1800
Bric::Util::Job::save('Bric::Util::Job::Dist=HASH(0x23c2cd30)') called at /usr/local/bricolage/lib/Bric/Util/Burner.pm line 1036
eval {...} at /usr/local/bricolage/lib/Bric/Util/Burner.pm line 974
Bric::Util::Burner::preview('Bric::Util::Burner=HASH(0x23bb23b0)', 'Bric::Biz::Asset::Business::Story=HASH(0x23b86008)', 'story', 0, undef) called at /usr/local/bricolage/lib/Bric/App/Callback/Publish.pm line 117
Bric::App::Callback::Publish::preview('Bric::App::Callback::Publish=HASH(0x23a8ee08)') called at /usr/local/bricolage/comp/workflow/profile/preview/dhandler line 32
HTML::Mason::Commands::ANON('checkout', 1, 'checkout', 1) called at /usr/share/perl5/HTML/Mason/Component.pm line 135
HTML::Mason::Component::run('HTML::Mason::Component::FileBased=HASH(0x23bf90c0)', 'checkout', 1, 'checkout', 1) called at /usr/share/perl5/HTML/Mason/Request.pm line 1278
eval {...} at /usr/share/perl5/HTML/Mason/Request.pm line 1268
HTML::Mason::Request::comp(undef, undef, undef, 'checkout', 1, 'checkout', 1) called at /usr/share/perl5/HTML/Mason/Request.pm line 937
HTML::Mason::Request::call_next('HTML::Mason::Request::ApacheHandler=HASH(0x23a81408)', 'checkout', 1) called at /usr/local/bricolage/comp/autohandler line 7
HTML::Mason::Commands::ANON('checkout', 1) called at /usr/share/perl5/HTML/Mason/Component.pm line 135
HTML::Mason::Component::run('HTML::Mason::Component::FileBased=HASH(0x23a8e918)', 'checkout', 1) called at /usr/share/perl5/HTML/Mason/Request.pm line 1273
eval {...} at /usr/share/perl5/HTML/Mason/Request.pm line 1268
HTML::Mason::Request::comp(undef, undef, undef, 'checkout', 1) called at /usr/share/perl5/HTML/Mason/Request.pm line 467
eval {...} at /usr/share/perl5/HTML/Mason/Request.pm line 467
eval {...} at /usr/share/perl5/HTML/Mason/Request.pm line 419
HTML::Mason::Request::exec('HTML::Mason::Request::ApacheHandler=HASH(0x23a81408)') called at /usr/share/perl5/HTML/Mason/ApacheHandler.pm line 165
HTML::Mason::Request::ApacheHandler::exec('HTML::Mason::Request::ApacheHandler=HASH(0x23a81408)') called at /usr/share/perl5/HTML/Mason/ApacheHandler.pm line 831
HTML::Mason::ApacheHandler::handle_request('HTML::Mason::ApacheHandler=HASH(0x230c5720)', 'Apache2::RequestRec=SCALAR(0x23bbeb98)') called at /usr/local/bricolage/lib/Bric/App/Handler.pm line 307
eval {...} at /usr/local/bricolage/lib/Bric/App/Handler.pm line 296
Bric::App::Handler::handler('Apache2::RequestRec=SCALAR(0x23bbeb98)') called at -e line 0
eval {...} at -e line 0

Attempting the same preview with password does this:

Error renaming '/usr/www/users/smell/arse/2010/07/06/yes/index.html.tmp' to '/usr/www/users/smell/arse/2010/07/06/yes/index.html' on 'arse.ca'

4 SSH_FX_FAILURE

View Error Details
Error Details (hide)

Fault Class
Bric::Util::Fault::Exception::GEN
Description
General Exception
Timestamp
2010-07-09 07:45:42.000000
Package
Bric::Util::Trans::SFTP
Filename
/usr/local/bricolage/lib/Bric/Util/Trans/SFTP.pm
Line
177

Stack:

Trace begun at /usr/local/bricolage/lib/Bric/Util/Trans/SFTP.pm line 177
Bric::Util::Trans::SFTP::put_res('Bric::Util::Trans::SFTP', 'ARRAY(0x23cf7be0)', 'Bric::Dist::ServerType=HASH(0x23c4a908)') called at /usr/local/bricolage/lib/Bric/Dist/Action/Mover.pm line 160
Bric::Dist::Action::Mover::do_it('Bric::Dist::Action::Mover=HASH(0x23c3f9e8)', 'ARRAY(0x23cf7be0)', 'Bric::Dist::ServerType=HASH(0x23c4a908)') called at /usr/local/bricolage/lib/Bric/Util/Job/Dist.pm line 227
Bric::Util::Job::Dist::_do_it('Bric::Util::Job::Dist=HASH(0x23c0a480)') called at /usr/local/bricolage/lib/Bric/Util/Job.pm line 1881
eval {...} at /usr/local/bricolage/lib/Bric/Util/Job.pm line 1879
Bric::Util::Job::execute_me('Bric::Util::Job::Dist=HASH(0x23c0a480)') called at /usr/local/bricolage/lib/Bric/Util/Job.pm line 1800
Bric::Util::Job::save('Bric::Util::Job::Dist=HASH(0x23c0a480)') called at /usr/local/bricolage/lib/Bric/Util/Burner.pm line 1036
eval {...} at /usr/local/bricolage/lib/Bric/Util/Burner.pm line 974
Bric::Util::Burner::preview('Bric::Util::Burner=HASH(0x23c16258)', 'Bric::Biz::Asset::Business::Story=HASH(0x23c3fb68)', 'story', 0, undef) called at /usr/local/bricolage/lib/Bric/App/Callback/Publish.pm line 117
Bric::App::Callback::Publish::preview('Bric::App::Callback::Publish=HASH(0x23c3f788)') called at /usr/local/bricolage/comp/workflow/profile/preview/dhandler line 32
HTML::Mason::Commands::ANON('checkout', 1, 'checkout', 1) called at /usr/share/perl5/HTML/Mason/Component.pm line 135
HTML::Mason::Component::run('HTML::Mason::Component::FileBased=HASH(0x23c398c8)', 'checkout', 1, 'checkout', 1) called at /usr/share/perl5/HTML/Mason/Request.pm line 1278
eval {...} at /usr/share/perl5/HTML/Mason/Request.pm line 1268
HTML::Mason::Request::comp(undef, undef, undef, 'checkout', 1, 'checkout', 1) called at /usr/share/perl5/HTML/Mason/Request.pm line 937
HTML::Mason::Request::call_next('HTML::Mason::Request::ApacheHandler=HASH(0x22adcae8)', 'checkout', 1) called at /usr/local/bricolage/comp/autohandler line 7
HTML::Mason::Commands::ANON('checkout', 1) called at /usr/share/perl5/HTML/Mason/Component.pm line 135
HTML::Mason::Component::run('HTML::Mason::Component::FileBased=HASH(0x23aa4760)', 'checkout', 1) called at /usr/share/perl5/HTML/Mason/Request.pm line 1273
eval {...} at /usr/share/perl5/HTML/Mason/Request.pm line 1268
HTML::Mason::Request::comp(undef, undef, undef, 'checkout', 1) called at /usr/share/perl5/HTML/Mason/Request.pm line 467
eval {...} at /usr/share/perl5/HTML/Mason/Request.pm line 467
eval {...} at /usr/share/perl5/HTML/Mason/Request.pm line 419
HTML::Mason::Request::exec('HTML::Mason::Request::ApacheHandler=HASH(0x22adcae8)') called at /usr/share/perl5/HTML/Mason/ApacheHandler.pm line 165
HTML::Mason::Request::ApacheHandler::exec('HTML::Mason::Request::ApacheHandler=HASH(0x22adcae8)') called at /usr/share/perl5/HTML/Mason/ApacheHandler.pm line 831
HTML::Mason::ApacheHandler::handle_request('HTML::Mason::ApacheHandler=HASH(0x230c5720)', 'Apache2::RequestRec=SCALAR(0x23be5508)') called at /usr/local/bricolage/lib/Bric/App/Handler.pm line 307
eval {...} at /usr/local/bricolage/lib/Bric/App/Handler.pm line 296
Bric::App::Handler::handler('Apache2::RequestRec=SCALAR(0x23be5508)') called at -e line 0
eval {...} at -e line 0

This may be particular to my system. I haven't got SFTP working with the old SFTP.pm either.

@theory
Copy link
Member Author

@theory theory commented on 256e550 Jul 9, 2010

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks Bret. For the first error, you try this patch, please?

--- a/lib/Bric/Util/Trans/SFTP.pm
+++ b/lib/Bric/Util/Trans/SFTP.pm
@@ -288,10 +288,14 @@ sub _connect_to {
     ) if SFTP_KEY_TYPE;

     my $ret = $ssh2->auth(
-        username   => $server->get_login,
-        password   => $server->get_password,
-        publickey  => SFTP_PUBLIC_KEY_FILE,
-        privatekey => SFTP_PRIVATE_KEY_FILE
+        ($server->get_login ? (
+            username   => $server->get_login,
+            password   => $server->get_password,
+        ) : ()),
+        (SFTP_PUBLIC_KEY_FILE ? (
+            publickey  => SFTP_PUBLIC_KEY_FILE,
+            privatekey => SFTP_PRIVATE_KEY_FILE,
+        ) : ()),
     );
     throw_gen(
         error => "Error authenticating to '$hn' via SSH2",

I'm not sure about the second error. Was the file in fact renamed before the exception was thrown?

A million thanks for the testing!

David

Please sign in to comment.