fortify/internal/system/tmpfiles.go

package system

import (
	"errors"
	"fmt"
	"io"
	"os"
	"strconv"

	"git.gensokyo.uk/security/fortify/acl"
	"git.gensokyo.uk/security/fortify/internal/fmsg"
)

// CopyFile registers an Op that copies path dst from src.
func (sys *I) CopyFile(dst, src string) *I {
	return sys.CopyFileType(Process, dst, src)
}

// CopyFileType registers a file copying Op labelled with type et.
func (sys *I) CopyFileType(et Enablement, dst, src string) *I {
	sys.lock.Lock()
	sys.ops = append(sys.ops, &Tmpfile{et, tmpfileCopy, dst, src})
	sys.lock.Unlock()

	sys.UpdatePermType(et, dst, acl.Read)

	return sys
}

const (
	tmpfileCopy uint8 = iota
)

type Tmpfile struct {
	et       Enablement
	method   uint8
	dst, src string
}

func (t *Tmpfile) Type() Enablement {
	return t.et
}

func (t *Tmpfile) apply(_ *I) error {
	switch t.method {
	case tmpfileCopy:
		fmsg.Verbose("publishing tmpfile", t)
		return fmsg.WrapErrorSuffix(copyFile(t.dst, t.src),
			fmt.Sprintf("cannot copy tmpfile %q:", t.dst))
	default:
		panic("invalid tmpfile method " + strconv.Itoa(int(t.method)))
	}
}

func (t *Tmpfile) revert(_ *I, ec *Criteria) error {
	if ec.hasType(t) {
		fmsg.Verbosef("removing tmpfile %q", t.dst)
		return fmsg.WrapErrorSuffix(os.Remove(t.dst),
			fmt.Sprintf("cannot remove tmpfile %q:", t.dst))
	} else {
		fmsg.Verbosef("skipping tmpfile %q", t.dst)
		return nil
	}
}

func (t *Tmpfile) Is(o Op) bool {
	t0, ok := o.(*Tmpfile)
	return ok && t0 != nil && *t == *t0
}

func (t *Tmpfile) Path() string { return t.src }

func (t *Tmpfile) String() string {
	switch t.method {
	case tmpfileCopy:
		return fmt.Sprintf("%q from %q", t.dst, t.src)
	default:
		panic("invalid tmpfile method " + strconv.Itoa(int(t.method)))
	}
}

func copyFile(dst, src string) error {
	dstD, err := os.OpenFile(dst, os.O_WRONLY|os.O_CREATE|os.O_TRUNC, 0600)
	if err != nil {
		return err
	}

	srcD, err := os.Open(src)
	if err != nil {
		return errors.Join(err, dstD.Close())
	}

	_, err = io.Copy(dstD, srcD)
	return errors.Join(err, dstD.Close(), srcD.Close())
}
system: isolate app/system into generic implementation This improves maintainability and extensibility of system operations, makes writing tests for them possible, and operations now apply and revert in order, instead of being bunched up into their own categories. Signed-off-by: Ophestra Umiker <cat@ophivana.moe> 2024-10-16 01:31:23 +09:00			`package system`

			`import (`
			`"errors"`
			`"fmt"`
			`"io"`
			`"os"`
			`"strconv"`

migrate to git.gensokyo.uk/security/fortify Signed-off-by: Ophestra Umiker <cat@ophivana.moe> 2024-12-20 00:20:02 +09:00			`"git.gensokyo.uk/security/fortify/acl"`
			`"git.gensokyo.uk/security/fortify/internal/fmsg"`
system: isolate app/system into generic implementation This improves maintainability and extensibility of system operations, makes writing tests for them possible, and operations now apply and revert in order, instead of being bunched up into their own categories. Signed-off-by: Ophestra Umiker <cat@ophivana.moe> 2024-10-16 01:31:23 +09:00			`)`

			`// CopyFile registers an Op that copies path dst from src.`
system: return sys in queueing methods This enables building an instance in a single statement. Signed-off-by: Ophestra Umiker <cat@ophivana.moe> 2024-10-23 12:34:16 +09:00			`func (sys I) CopyFile(dst, src string) I {`
			`return sys.CopyFileType(Process, dst, src)`
system: isolate app/system into generic implementation This improves maintainability and extensibility of system operations, makes writing tests for them possible, and operations now apply and revert in order, instead of being bunched up into their own categories. Signed-off-by: Ophestra Umiker <cat@ophivana.moe> 2024-10-16 01:31:23 +09:00			`}`

			`// CopyFileType registers a file copying Op labelled with type et.`
system: return sys in queueing methods This enables building an instance in a single statement. Signed-off-by: Ophestra Umiker <cat@ophivana.moe> 2024-10-23 12:34:16 +09:00			`func (sys I) CopyFileType(et Enablement, dst, src string) I {`
system: isolate app/system into generic implementation This improves maintainability and extensibility of system operations, makes writing tests for them possible, and operations now apply and revert in order, instead of being bunched up into their own categories. Signed-off-by: Ophestra Umiker <cat@ophivana.moe> 2024-10-16 01:31:23 +09:00			`sys.lock.Lock()`
			`sys.ops = append(sys.ops, &Tmpfile{et, tmpfileCopy, dst, src})`
			`sys.lock.Unlock()`

			`sys.UpdatePermType(et, dst, acl.Read)`
system: return sys in queueing methods This enables building an instance in a single statement. Signed-off-by: Ophestra Umiker <cat@ophivana.moe> 2024-10-23 12:34:16 +09:00
			`return sys`
system: isolate app/system into generic implementation This improves maintainability and extensibility of system operations, makes writing tests for them possible, and operations now apply and revert in order, instead of being bunched up into their own categories. Signed-off-by: Ophestra Umiker <cat@ophivana.moe> 2024-10-16 01:31:23 +09:00			`}`

			`const (`
			`tmpfileCopy uint8 = iota`
			`)`

			`type Tmpfile struct {`
system: move enablements from state package This removes the unnecessary import of the state package. Signed-off-by: Ophestra Umiker <cat@ophivana.moe> 2024-10-16 14:38:57 +09:00			`et Enablement`
system: isolate app/system into generic implementation This improves maintainability and extensibility of system operations, makes writing tests for them possible, and operations now apply and revert in order, instead of being bunched up into their own categories. Signed-off-by: Ophestra Umiker <cat@ophivana.moe> 2024-10-16 01:31:23 +09:00			`method uint8`
			`dst, src string`
			`}`

system: move enablements from state package This removes the unnecessary import of the state package. Signed-off-by: Ophestra Umiker <cat@ophivana.moe> 2024-10-16 14:38:57 +09:00			`func (t *Tmpfile) Type() Enablement {`
system: isolate app/system into generic implementation This improves maintainability and extensibility of system operations, makes writing tests for them possible, and operations now apply and revert in order, instead of being bunched up into their own categories. Signed-off-by: Ophestra Umiker <cat@ophivana.moe> 2024-10-16 01:31:23 +09:00			`return t.et`
			`}`

			`func (t Tmpfile) apply(_ I) error {`
			`switch t.method {`
			`case tmpfileCopy:`
fmsg: implement suspend in writer This removes the requirement to call fmsg.Exit on every exit path, and enables direct use of the "log" package. However, fmsg.BeforeExit is still encouraged when possible to catch exit on suspended output. Signed-off-by: Ophestra <cat@gensokyo.uk> 2025-02-16 17:26:09 +09:00			`fmsg.Verbose("publishing tmpfile", t)`
system: isolate app/system into generic implementation This improves maintainability and extensibility of system operations, makes writing tests for them possible, and operations now apply and revert in order, instead of being bunched up into their own categories. Signed-off-by: Ophestra Umiker <cat@ophivana.moe> 2024-10-16 01:31:23 +09:00			`return fmsg.WrapErrorSuffix(copyFile(t.dst, t.src),`
			`fmt.Sprintf("cannot copy tmpfile %q:", t.dst))`
			`default:`
			`panic("invalid tmpfile method " + strconv.Itoa(int(t.method)))`
			`}`
			`}`

			`func (t Tmpfile) revert(_ I, ec *Criteria) error {`
			`if ec.hasType(t) {`
fmsg: implement suspend in writer This removes the requirement to call fmsg.Exit on every exit path, and enables direct use of the "log" package. However, fmsg.BeforeExit is still encouraged when possible to catch exit on suspended output. Signed-off-by: Ophestra <cat@gensokyo.uk> 2025-02-16 17:26:09 +09:00			`fmsg.Verbosef("removing tmpfile %q", t.dst)`
system: isolate app/system into generic implementation This improves maintainability and extensibility of system operations, makes writing tests for them possible, and operations now apply and revert in order, instead of being bunched up into their own categories. Signed-off-by: Ophestra Umiker <cat@ophivana.moe> 2024-10-16 01:31:23 +09:00			`return fmsg.WrapErrorSuffix(os.Remove(t.dst),`
			`fmt.Sprintf("cannot remove tmpfile %q:", t.dst))`
			`} else {`
fmsg: implement suspend in writer This removes the requirement to call fmsg.Exit on every exit path, and enables direct use of the "log" package. However, fmsg.BeforeExit is still encouraged when possible to catch exit on suspended output. Signed-off-by: Ophestra <cat@gensokyo.uk> 2025-02-16 17:26:09 +09:00			`fmsg.Verbosef("skipping tmpfile %q", t.dst)`
system: isolate app/system into generic implementation This improves maintainability and extensibility of system operations, makes writing tests for them possible, and operations now apply and revert in order, instead of being bunched up into their own categories. Signed-off-by: Ophestra Umiker <cat@ophivana.moe> 2024-10-16 01:31:23 +09:00			`return nil`
			`}`
			`}`

			`func (t *Tmpfile) Is(o Op) bool {`
			`t0, ok := o.(*Tmpfile)`
			`return ok && t0 != nil && t == t0`
			`}`

system: remove write mode tmpfiles This interface is ugly and bug-prone. This change removes its write mode which has been obsoleted by CopyBind. Signed-off-by: Ophestra <cat@gensokyo.uk> 2025-02-15 03:22:20 +09:00			`func (t *Tmpfile) Path() string { return t.src }`
system: isolate app/system into generic implementation This improves maintainability and extensibility of system operations, makes writing tests for them possible, and operations now apply and revert in order, instead of being bunched up into their own categories. Signed-off-by: Ophestra Umiker <cat@ophivana.moe> 2024-10-16 01:31:23 +09:00
			`func (t *Tmpfile) String() string {`
			`switch t.method {`
			`case tmpfileCopy:`
			`return fmt.Sprintf("%q from %q", t.dst, t.src)`
			`default:`
			`panic("invalid tmpfile method " + strconv.Itoa(int(t.method)))`
			`}`
			`}`

			`func copyFile(dst, src string) error {`
			`dstD, err := os.OpenFile(dst, os.O_WRONLY\|os.O_CREATE\|os.O_TRUNC, 0600)`
			`if err != nil {`
			`return err`
			`}`

			`srcD, err := os.Open(src)`
			`if err != nil {`
			`return errors.Join(err, dstD.Close())`
			`}`

			`_, err = io.Copy(dstD, srcD)`
			`return errors.Join(err, dstD.Close(), srcD.Close())`
			`}`