1 """Metadata read/write support for bup."""
3 # Copyright (C) 2010 Rob Browning
5 # This code is covered under the terms of the GNU Library General
6 # Public License as described in the bup LICENSE file.
7 import errno, os, sys, stat, pwd, grp, struct, re
8 from cStringIO import StringIO
9 from bup import vint, xstat
10 from bup.drecurse import recursive_dirlist
11 from bup.helpers import add_error, mkdirp, log
12 from bup.xstat import utime, lutime
13 import bup._helpers as _helpers
18 log('Warning: Linux xattr support missing; install python-pyxattr.\n')
23 except AttributeError:
24 log('Warning: python-xattr module is too old; '
25 'install python-pyxattr instead.\n')
30 log('Warning: POSIX ACL support missing; install python-pylibacl.\n')
33 from bup._helpers import get_linux_file_attr, set_linux_file_attr
35 # No need for a warning here; the only reason they won't exist is that we're
36 # not on Linux, in which case files don't have any linux attrs anyway, so
37 # lacking the functions isn't a problem.
38 get_linux_file_attr = set_linux_file_attr = None
41 # WARNING: the metadata encoding is *not* stable yet. Caveat emptor!
43 # Q: Consider hardlink support?
44 # Q: Is it OK to store raw linux attr (chattr) flags?
45 # Q: Can anything other than S_ISREG(x) or S_ISDIR(x) support posix1e ACLs?
46 # Q: Is the application of posix1e has_extended() correct?
47 # Q: Is one global --numeric-ids argument sufficient?
48 # Q: Do nfsv4 acls trump posix1e acls? (seems likely)
49 # Q: Add support for crtime -- ntfs, and (only internally?) ext*?
51 # FIXME: Fix relative/abs path detection/stripping wrt other platforms.
52 # FIXME: Add nfsv4 acl handling - see nfs4-acl-tools.
53 # FIXME: Consider other entries mentioned in stat(2) (S_IFDOOR, etc.).
54 # FIXME: Consider pack('vvvvsss', ...) optimization.
55 # FIXME: Consider caching users/groups.
59 # osx (varies between hfs and hfs+):
60 # type - regular dir char block fifo socket ...
61 # perms - rwxrwxrwxsgt
62 # times - ctime atime mtime
65 # hard-link-info (hfs+ only)
68 # attributes-osx see chflags
74 # type - regular dir ...
75 # times - creation, modification, posix change, access
78 # attributes - see attrib
80 # forks (alternate data streams)
84 # type - regular dir ...
85 # perms - rwxrwxrwx (maybe - see wikipedia)
86 # times - creation, modification, access
87 # attributes - see attrib
91 _have_lchmod = hasattr(os, 'lchmod')
94 def _clean_up_path_for_archive(p):
95 # Not the most efficient approach.
98 # Take everything after any '/../'.
99 pos = result.rfind('/../')
101 result = result[result.rfind('/../') + 4:]
103 # Take everything after any remaining '../'.
104 if result.startswith("../"):
107 # Remove any '/./' sequences.
108 pos = result.find('/./')
110 result = result[0:pos] + '/' + result[pos + 3:]
111 pos = result.find('/./')
113 # Remove any leading '/'s.
114 result = result.lstrip('/')
116 # Replace '//' with '/' everywhere.
117 pos = result.find('//')
119 result = result[0:pos] + '/' + result[pos + 2:]
120 pos = result.find('//')
122 # Take everything after any remaining './'.
123 if result.startswith('./'):
126 # Take everything before any remaining '/.'.
127 if result.endswith('/.'):
130 if result == '' or result.endswith('/..'):
137 if p.startswith('/'):
139 if p.find('/../') != -1:
141 if p.startswith('../'):
143 if p.endswith('/..'):
148 def _clean_up_extract_path(p):
149 result = p.lstrip('/')
152 elif _risky_path(result):
158 # These tags are currently conceptually private to Metadata, and they
159 # must be unique, and must *never* be changed.
162 _rec_tag_common = 2 # times, owner, group, type, perms, etc.
163 _rec_tag_symlink_target = 3
164 _rec_tag_posix1e_acl = 4 # getfacl(1), setfacl(1), etc.
165 _rec_tag_nfsv4_acl = 5 # intended to supplant posix1e acls?
166 _rec_tag_linux_attr = 6 # lsattr(1) chattr(1)
167 _rec_tag_linux_xattr = 7 # getfattr(1) setfattr(1)
170 class ApplyError(Exception):
171 # Thrown when unable to apply any given bit of metadata to a path.
176 # Metadata is stored as a sequence of tagged binary records. Each
177 # record will have some subset of add, encode, load, create, and
178 # apply methods, i.e. _add_foo...
182 # Timestamps are (sec, ns), relative to 1970-01-01 00:00:00, ns
183 # must be non-negative and < 10**9.
185 def _add_common(self, path, st):
186 self.mode = st.st_mode
189 self.rdev = st.st_rdev
190 self.atime = st.st_atime
191 self.mtime = st.st_mtime
192 self.ctime = st.st_ctime
193 self.owner = self.group = ''
195 self.owner = pwd.getpwuid(st.st_uid)[0]
197 add_error("no user name for id %s '%s'" % (st.st_gid, path))
199 self.group = grp.getgrgid(st.st_gid)[0]
201 add_error("no group name for id %s '%s'" % (st.st_gid, path))
203 def _encode_common(self):
204 atime = xstat.nsecs_to_timespec(self.atime)
205 mtime = xstat.nsecs_to_timespec(self.mtime)
206 ctime = xstat.nsecs_to_timespec(self.ctime)
207 result = vint.pack('VVsVsVvVvVvV',
222 def _load_common_rec(self, port):
223 data = vint.read_bvec(port)
235 ctime_ns) = vint.unpack('VVsVsVvVvVvV', data)
236 self.atime = xstat.timespec_to_nsecs((self.atime, atime_ns))
237 self.mtime = xstat.timespec_to_nsecs((self.mtime, mtime_ns))
238 self.ctime = xstat.timespec_to_nsecs((self.ctime, ctime_ns))
240 def _create_via_common_rec(self, path, create_symlinks=True):
241 # If the path already exists and is a dir, try rmdir.
242 # If the path already exists and is anything else, try unlink.
245 st = xstat.lstat(path)
247 if e.errno != errno.ENOENT:
250 if stat.S_ISDIR(st.st_mode):
254 if e.errno == errno.ENOTEMPTY:
255 msg = 'refusing to overwrite non-empty dir' + path
261 if stat.S_ISREG(self.mode):
262 fd = os.open(path, os.O_CREAT|os.O_WRONLY|os.O_EXCL, 0600)
264 elif stat.S_ISDIR(self.mode):
266 elif stat.S_ISCHR(self.mode):
267 os.mknod(path, 0600 | stat.S_IFCHR, self.rdev)
268 elif stat.S_ISBLK(self.mode):
269 os.mknod(path, 0600 | stat.S_IFBLK, self.rdev)
270 elif stat.S_ISFIFO(self.mode):
271 os.mknod(path, 0600 | stat.S_IFIFO)
272 elif stat.S_ISLNK(self.mode):
273 if self.symlink_target and create_symlinks:
274 # on MacOS, symlink() permissions depend on umask, and there's no
275 # way to chown a symlink after creating it, so we have to
277 oldumask = os.umask((self.mode & 0777) ^ 0777)
279 os.symlink(self.symlink_target, path)
282 # FIXME: S_ISDOOR, S_IFMPB, S_IFCMP, S_IFNWK, ... see stat(2).
283 # Otherwise, do nothing.
285 def _apply_common_rec(self, path, restore_numeric_ids=False):
286 # FIXME: S_ISDOOR, S_IFMPB, S_IFCMP, S_IFNWK, ... see stat(2).
287 # EACCES errors at this stage are fatal for the current path.
288 if stat.S_ISLNK(self.mode):
290 lutime(path, (self.atime, self.mtime))
292 if e.errno == errno.EACCES:
293 raise ApplyError('lutime: %s' % e)
298 utime(path, (self.atime, self.mtime))
300 if e.errno == errno.EACCES:
301 raise ApplyError('utime: %s' % e)
305 # Don't try to restore owner unless we're root, and even
306 # if asked, don't try to restore the owner or group if
307 # it doesn't exist in the system db.
310 if not restore_numeric_ids:
313 add_error('ignoring missing owner for "%s"\n' % path)
315 if os.geteuid() != 0:
316 uid = -1 # Not root; assume we can't change owner.
319 uid = pwd.getpwnam(self.owner)[2]
322 fmt = 'ignoring unknown owner %s for "%s"\n'
323 add_error(fmt % (self.owner, path))
326 add_error('ignoring missing group for "%s"\n' % path)
329 gid = grp.getgrnam(self.group)[2]
332 add_error('ignoring unknown group %s for "%s"\n'
333 % (self.group, path))
336 os.lchown(path, uid, gid)
338 if e.errno == errno.EPERM:
339 add_error('lchown: %s' % e)
344 os.lchmod(path, stat.S_IMODE(self.mode))
345 elif not stat.S_ISLNK(self.mode):
346 os.chmod(path, stat.S_IMODE(self.mode))
351 def _encode_path(self):
353 return vint.pack('s', self.path)
357 def _load_path_rec(self, port):
358 self.path = vint.unpack('s', vint.read_bvec(port))[0]
363 def _add_symlink_target(self, path, st):
365 if stat.S_ISLNK(st.st_mode):
366 self.symlink_target = os.readlink(path)
368 add_error('readlink: %s', e)
370 def _encode_symlink_target(self):
371 return self.symlink_target
373 def _load_symlink_target_rec(self, port):
374 self.symlink_target = vint.read_bvec(port)
377 ## POSIX1e ACL records
379 # Recorded as a list:
380 # [txt_id_acl, num_id_acl]
381 # or, if a directory:
382 # [txt_id_acl, num_id_acl, txt_id_default_acl, num_id_default_acl]
383 # The numeric/text distinction only matters when reading/restoring
385 def _add_posix1e_acl(self, path, st):
386 if not posix1e: return
387 if not stat.S_ISLNK(st.st_mode):
389 if posix1e.has_extended(path):
390 acl = posix1e.ACL(file=path)
391 self.posix1e_acl = [acl, acl] # txt and num are the same
392 if stat.S_ISDIR(st.st_mode):
393 acl = posix1e.ACL(filedef=path)
394 self.posix1e_acl.extend([acl, acl])
395 except EnvironmentError, e:
396 if e.errno != errno.EOPNOTSUPP:
399 def _encode_posix1e_acl(self):
400 # Encode as two strings (w/default ACL string possibly empty).
402 acls = self.posix1e_acl
403 txt_flags = posix1e.TEXT_ABBREVIATE
404 num_flags = posix1e.TEXT_ABBREVIATE | posix1e.TEXT_NUMERIC_IDS
405 acl_reps = [acls[0].to_any_text('', '\n', txt_flags),
406 acls[1].to_any_text('', '\n', num_flags)]
410 acl_reps.append(acls[2].to_any_text('', '\n', txt_flags))
411 acl_reps.append(acls[3].to_any_text('', '\n', num_flags))
412 return vint.pack('ssss',
413 acl_reps[0], acl_reps[1], acl_reps[2], acl_reps[3])
417 def _load_posix1e_acl_rec(self, port):
418 data = vint.read_bvec(port)
419 acl_reps = vint.unpack('ssss', data)
420 if acl_reps[2] == '':
421 acl_reps = acl_reps[:2]
422 self.posix1e_acl = [posix1e.ACL(text=x) for x in acl_reps]
424 def _apply_posix1e_acl_rec(self, path, restore_numeric_ids=False):
427 add_error("%s: can't restore ACLs; posix1e support missing.\n"
431 acls = self.posix1e_acl
433 if restore_numeric_ids:
434 acls[3].applyto(path, posix1e.ACL_TYPE_DEFAULT)
436 acls[2].applyto(path, posix1e.ACL_TYPE_DEFAULT)
437 if restore_numeric_ids:
438 acls[1].applyto(path, posix1e.ACL_TYPE_ACCESS)
440 acls[0].applyto(path, posix1e.ACL_TYPE_ACCESS)
443 ## Linux attributes (lsattr(1), chattr(1))
445 def _add_linux_attr(self, path, st):
446 if not get_linux_file_attr: return
447 if stat.S_ISREG(st.st_mode) or stat.S_ISDIR(st.st_mode):
449 attr = get_linux_file_attr(path)
451 self.linux_attr = attr
453 if e.errno == errno.EACCES:
454 add_error('read Linux attr: %s' % e)
455 elif e.errno == errno.ENOTTY: # Inappropriate ioctl for device.
456 add_error('read Linux attr: %s' % e)
460 def _encode_linux_attr(self):
462 return vint.pack('V', self.linux_attr)
466 def _load_linux_attr_rec(self, port):
467 data = vint.read_bvec(port)
468 self.linux_attr = vint.unpack('V', data)[0]
470 def _apply_linux_attr_rec(self, path, restore_numeric_ids=False):
472 if not set_linux_file_attr:
473 add_error("%s: can't restore linuxattrs: "
474 "linuxattr support missing.\n" % path)
476 set_linux_file_attr(path, self.linux_attr)
479 ## Linux extended attributes (getfattr(1), setfattr(1))
481 def _add_linux_xattr(self, path, st):
484 self.linux_xattr = xattr.get_all(path, nofollow=True)
485 except EnvironmentError, e:
486 if e.errno != errno.EOPNOTSUPP:
489 def _encode_linux_xattr(self):
491 result = vint.pack('V', len(self.linux_xattr))
492 for name, value in self.linux_xattr:
493 result += vint.pack('ss', name, value)
498 def _load_linux_xattr_rec(self, file):
499 data = vint.read_bvec(file)
500 memfile = StringIO(data)
502 for i in range(vint.read_vuint(memfile)):
503 key = vint.read_bvec(memfile)
504 value = vint.read_bvec(memfile)
505 result.append((key, value))
506 self.linux_xattr = result
508 def _apply_linux_xattr_rec(self, path, restore_numeric_ids=False):
511 add_error("%s: can't restore xattr; xattr support missing.\n"
514 existing_xattrs = set(xattr.list(path, nofollow=True))
516 for k, v in self.linux_xattr:
517 if k not in existing_xattrs \
518 or v != xattr.get(path, k, nofollow=True):
520 xattr.set(path, k, v, nofollow=True)
522 if e.errno == errno.EPERM:
523 raise ApplyError('xattr.set: %s' % e)
526 existing_xattrs -= frozenset([k])
527 for k in existing_xattrs:
529 xattr.remove(path, k, nofollow=True)
531 if e.errno == errno.EPERM:
532 raise ApplyError('xattr.remove: %s' % e)
539 self.symlink_target = None
540 self.linux_attr = None
541 self.linux_xattr = None
542 self.posix1e_acl = None
543 self.posix1e_acl_default = None
545 def write(self, port, include_path=True):
546 records = include_path and [(_rec_tag_path, self._encode_path())] or []
547 records.extend([(_rec_tag_common, self._encode_common()),
548 (_rec_tag_symlink_target, self._encode_symlink_target()),
549 (_rec_tag_posix1e_acl, self._encode_posix1e_acl()),
550 (_rec_tag_linux_attr, self._encode_linux_attr()),
551 (_rec_tag_linux_xattr, self._encode_linux_xattr())])
552 for tag, data in records:
554 vint.write_vuint(port, tag)
555 vint.write_bvec(port, data)
556 vint.write_vuint(port, _rec_tag_end)
560 # This method should either: return a valid Metadata object;
561 # throw EOFError if there was nothing at all to read; throw an
562 # Exception if a valid object could not be read completely.
563 tag = vint.read_vuint(port)
564 try: # From here on, EOF is an error.
566 while True: # only exit is error (exception) or _rec_tag_end
567 if tag == _rec_tag_path:
568 result._load_path_rec(port)
569 elif tag == _rec_tag_common:
570 result._load_common_rec(port)
571 elif tag == _rec_tag_symlink_target:
572 result._load_symlink_target_rec(port)
573 elif tag == _rec_tag_posix1e_acl:
574 result._load_posix1e_acl_rec(port)
575 elif tag ==_rec_tag_nfsv4_acl:
576 result._load_nfsv4_acl_rec(port)
577 elif tag == _rec_tag_linux_attr:
578 result._load_linux_attr_rec(port)
579 elif tag == _rec_tag_linux_xattr:
580 result._load_linux_xattr_rec(port)
581 elif tag == _rec_tag_end:
583 else: # unknown record
585 tag = vint.read_vuint(port)
587 raise Exception("EOF while reading Metadata")
590 return stat.S_ISDIR(self.mode)
592 def create_path(self, path, create_symlinks=True):
593 self._create_via_common_rec(path, create_symlinks=create_symlinks)
595 def apply_to_path(self, path=None, restore_numeric_ids=False):
596 # apply metadata to path -- file must exist
600 raise Exception('Metadata.apply_to_path() called with no path');
601 num_ids = restore_numeric_ids
603 self._apply_common_rec(path, restore_numeric_ids=num_ids)
604 self._apply_posix1e_acl_rec(path, restore_numeric_ids=num_ids)
605 self._apply_linux_attr_rec(path, restore_numeric_ids=num_ids)
606 self._apply_linux_xattr_rec(path, restore_numeric_ids=num_ids)
607 except ApplyError, e:
611 def from_path(path, statinfo=None, archive_path=None, save_symlinks=True):
613 result.path = archive_path
614 st = statinfo or xstat.lstat(path)
615 result._add_common(path, st)
617 result._add_symlink_target(path, st)
618 result._add_posix1e_acl(path, st)
619 result._add_linux_attr(path, st)
620 result._add_linux_xattr(path, st)
624 def save_tree(output_file, paths,
630 # Issue top-level rewrite warnings.
632 safe_path = _clean_up_path_for_archive(path)
633 if safe_path != path:
634 log('archiving "%s" as "%s"\n' % (path, safe_path))
636 start_dir = os.getcwd()
638 for (p, st) in recursive_dirlist(paths, xdev=xdev):
639 dirlist_dir = os.getcwd()
641 safe_path = _clean_up_path_for_archive(p)
642 m = from_path(p, statinfo=st, archive_path=safe_path,
643 save_symlinks=save_symlinks)
645 print >> sys.stderr, m.path
646 m.write(output_file, include_path=write_paths)
647 os.chdir(dirlist_dir)
652 def _set_up_path(meta, create_symlinks=True):
653 # Allow directories to exist as a special case -- might have
654 # been created by an earlier longer path.
658 parent = os.path.dirname(meta.path)
661 meta.create_path(meta.path, create_symlinks=create_symlinks)
664 class _ArchiveIterator:
667 return Metadata.read(self._file)
669 raise StopIteration()
674 def __init__(self, file):
678 def display_archive(file):
679 for meta in _ArchiveIterator(file):
681 print meta.path # FIXME
686 def start_extract(file, create_symlinks=True):
687 for meta in _ArchiveIterator(file):
689 print >> sys.stderr, meta.path
690 xpath = _clean_up_extract_path(meta.path)
692 add_error(Exception('skipping risky path "%s"' % meta.path))
695 _set_up_path(meta, create_symlinks=create_symlinks)
698 def finish_extract(file, restore_numeric_ids=False):
700 for meta in _ArchiveIterator(file):
701 xpath = _clean_up_extract_path(meta.path)
703 add_error(Exception('skipping risky path "%s"' % dir.path))
705 if os.path.isdir(meta.path):
706 all_dirs.append(meta)
709 print >> sys.stderr, meta.path
710 meta.apply_to_path(path=xpath,
711 restore_numeric_ids=restore_numeric_ids)
712 all_dirs.sort(key = lambda x : len(x.path), reverse=True)
714 # Don't need to check xpath -- won't be in all_dirs if not OK.
715 xpath = _clean_up_extract_path(dir.path)
717 print >> sys.stderr, dir.path
718 dir.apply_to_path(path=xpath, restore_numeric_ids=restore_numeric_ids)
721 def extract(file, restore_numeric_ids=False, create_symlinks=True):
722 # For now, just store all the directories and handle them last,
725 for meta in _ArchiveIterator(file):
726 xpath = _clean_up_extract_path(meta.path)
728 add_error(Exception('skipping risky path "%s"' % meta.path))
732 print >> sys.stderr, '+', meta.path
733 _set_up_path(meta, create_symlinks=create_symlinks)
734 if os.path.isdir(meta.path):
735 all_dirs.append(meta)
738 print >> sys.stderr, '=', meta.path
739 meta.apply_to_path(restore_numeric_ids=restore_numeric_ids)
740 all_dirs.sort(key = lambda x : len(x.path), reverse=True)
742 # Don't need to check xpath -- won't be in all_dirs if not OK.
743 xpath = _clean_up_extract_path(dir.path)
745 print >> sys.stderr, '=', xpath
746 # Shouldn't have to check for risky paths here (omitted above).
747 dir.apply_to_path(path=dir.path,
748 restore_numeric_ids=restore_numeric_ids)