ref: 48df9a55a8a81f67d92934210842fecb7c9500ba
dir: /s3cp.c/
#include <u.h>
#include <libc.h>
#include <mp.h>
#include <libsec.h>
typedef struct {
char *endpoint;
char *host;
char *access;
char *secret;
char *bucket;
char *region;
} S3;
typedef struct {
char method[16];
char time[128];
uchar payhash[SHA2_256dlen];
char authhdr[512];
char mime[32];
} Hreq;
static void
datetime(char *date, int ndate, char *time, int ntime)
{
Tm t;
tmnow(&t, nil);
snprint(date, ndate, "%τ", tmfmt(&t, "YYYYMMDD"));
snprint(time, ntime, "%sT%τZ", date, tmfmt(&t, "hhmmss"));
}
#define hmac(data, dlen, key, klen, digest) hmac_sha2_256(data, dlen, key, klen, digest, nil)
static void
mkkey(char *key, char *date, char *region, char *service, uchar out[SHA2_256dlen])
{
char buf[256];
snprint(buf, sizeof buf, "AWS4%s", key);
hmac((uchar*)date, strlen(date), (uchar*)buf, strlen(buf), out);
hmac((uchar*)region, strlen(region), out, SHA2_256dlen, (uchar*)buf);
hmac((uchar*)service, strlen(service), (uchar*)buf, SHA2_256dlen, out);
hmac((uchar*)"aws4_request", 12, out, SHA2_256dlen, out);
}
static void
mkhreq(Hreq *hreq, S3 *s3, char *method, char *path)
{
char date[64];
uchar key[SHA2_256dlen], sig[SHA2_256dlen];
char buf[512], req[512];
char *sgndhdr;
datetime(date, sizeof date, hreq->time, sizeof hreq->time);
if(strcmp(method, "PUT") == 0){
snprint(buf, sizeof buf, "content-type:%s\nhost:%s\nx-amz-content-sha256:%.*lH\nx-amz-date:%s\n",
hreq->mime, s3->host, SHA2_256dlen, hreq->payhash, hreq->time);
sgndhdr = "content-type;host;x-amz-content-sha256;x-amz-date";
} else if(strcmp(method, "GET") == 0 || strcmp(method, "DELETE")==0){
hreq->mime[0] = 0;
sha2_256(nil, 0, hreq->payhash, nil);
snprint(buf, sizeof buf, "host:%s\nx-amz-date:%s\n", s3->host, hreq->time);
sgndhdr = "host;x-amz-date";
} else
sysfatal("invalid method");
snprint(req, sizeof req, "%s\n/%s/%s\n%s\n%s\n%s\n%.*lH",
method, s3->bucket, path, "", buf, sgndhdr, SHA2_256dlen, hreq->payhash);
sha2_256((uchar*)req, strlen(req), key, nil);
snprint(buf, sizeof buf, "%s\n%s\n%s/%s/%s/aws4_request\n%.*lH",
"AWS4-HMAC-SHA256", hreq->time, date, s3->region, "s3", SHA2_256dlen, key);
mkkey(s3->secret, date, s3->region, "s3", key);
hmac((uchar*)buf, strlen(buf), key, SHA2_256dlen, sig);
snprint(hreq->authhdr, sizeof hreq->authhdr, "%s Credential=%s/%s/%s/%s/aws4_request, SignedHeaders=%s, Signature=%.*lH",
"AWS4-HMAC-SHA256", s3->access, date, s3->region, "s3", sgndhdr, SHA2_256dlen, sig);
snprint(hreq->method, sizeof hreq->method, "%s", method);
}
static void
prep(S3 *s3, int cfd, char *path, Hreq *hreq)
{
if(fprint(cfd, "url %s/%s/%s", s3->endpoint, s3->bucket, path) < 0)
sysfatal("url: %r");
if(fprint(cfd, "request %s", hreq->method) < 0)
sysfatal("request: %r");
if(fprint(cfd, "headers Authorization:%s", hreq->authhdr) < 0)
sysfatal("headers2: %r");
if(fprint(cfd, "headers x-amz-date:%s\nx-amz-content-sha256:%.*lH", hreq->time, SHA2_256dlen, hreq->payhash) < 0)
sysfatal("headers: %r");
if(hreq->mime[0] != 0 && fprint(cfd, "contenttype %s", hreq->mime) < 0)
sysfatal("contenttype: %r");
}
static void
download(S3 *s3, char *path, char *localpath, int cfd, char *conn)
{
int fd, bfd;
long n;
char buf[64];
char data[8192];
Hreq hreq;
fd = create(localpath, OWRITE, 0644);
if(fd < 0)
sysfatal("download create: %r");
mkhreq(&hreq, s3, "GET", path);
prep(s3, cfd, path, &hreq);
snprint(buf, sizeof buf, "/mnt/web/%s/body", conn);
bfd = open(buf, OREAD);
if(bfd < 0)
sysfatal("download body: %r");
for(;;){
n = read(bfd, data, sizeof data);
if(n < 0)
sysfatal("download body: %r");
if(n == 0)
return;
write(fd, data, n);
}
}
static void
mimetype(char *path, char *out, int nout)
{
int p[2];
char buf[256];
int n;
pipe(p);
switch(fork()){
case 0:
close(0);
dup(p[0], 1);
close(2);
close(p[0]);
close(p[1]);
execl("/bin/file", "file", "-m", path, nil);
sysfatal("execl: %r");
default:
close(p[0]);
n = read(p[1], buf, sizeof buf - 1);
if(n <= 0)
sysfatal("no mimetype found");
buf[n - 1] = 0;
snprint(out, nout, "%s", buf);
}
}
static void
upload(S3 *s3, char *path, char *localpath, int cfd, char *conn)
{
DigestState *ds;
uchar data[8192];
long n;
int fd, bfd;
char buf[256];
Hreq hreq;
mimetype(localpath, hreq.mime, sizeof hreq.mime);
fd = open(localpath, OREAD);
if(fd < 0)
sysfatal("upload open: %r");
for(ds = nil;;){
n = read(fd, data, sizeof data);
if(n < 0)
sysfatal("file read: %r");
if(n == 0)
break;
ds = sha2_256(data, n, nil, ds);
}
sha2_256(nil, 0, hreq.payhash, ds);
seek(fd, 0, 0);
mkhreq(&hreq, s3, "PUT", path);
prep(s3, cfd, path, &hreq);
snprint(buf, sizeof buf, "/mnt/web/%s/postbody", conn);
bfd = open(buf, OWRITE);
if(bfd < 0)
sysfatal("upload postbody open: %r");
for(;;){
n = read(fd, buf, sizeof buf);
if(n < 0)
sysfatal("file read: %r");
if(n == 0)
break;
if(write(bfd, buf, n) < 0)
sysfatal("upload write: %r");
}
close(bfd);
snprint(buf, sizeof buf, "/mnt/web/%s/body", conn);
if((bfd = open(buf, OREAD)) < 0)
sysfatal("open3: %r");
close(bfd);
}
static void
delete(S3 *s3, char *path, char*, int cfd, char *conn)
{
int fd;
char buf[256];
Hreq hreq;
mkhreq(&hreq, s3, "DELETE", path);
prep(s3, cfd, path, &hreq);
snprint(buf, sizeof buf, "/mnt/web/%s/body", conn);
fd = open(buf, OREAD);
if(fd < 0)
sysfatal("delete failed: %r");
close(fd);
}
_Noreturn static void
usage(void)
{
fprint(2, "Requires $AWS_ACCESS_KEY_ID, $AWS_SECRET_ACCESS_KEY, and $AWS_ENDPOINT_URL_S3 defined\n");
fprint(2, "Usage: %s source s3://<bucket>/destination\n", argv0);
fprint(2, "Usage: %s s3://<bucket>/source destination\n", argv0);
exits("usage");
}
void
main(int argc , char **argv)
{
S3 s3;
int fd;
long n;
char buf[64];
char *p, *path, *localpath;
void (*op)(S3*,char*,char*,int,char*);
int rflag;
tmfmtinstall();
fmtinstall('H', encodefmt);
rflag = 0;
ARGBEGIN{
case 'r':
rflag++;
break;
default:
usage();
break;
}ARGEND
if(rflag && argc < 1)
usage();
else if(!rflag && argc < 2)
usage();
s3.access = getenv("AWS_ACCESS_KEY_ID");
s3.secret = getenv("AWS_SECRET_ACCESS_KEY");
s3.endpoint = getenv("AWS_ENDPOINT_URL_S3");
s3.region = getenv("AWS_DEFAULT_REGION");
if(s3.access == nil || s3.secret == nil || s3.endpoint == nil)
usage();
if(s3.region == nil)
s3.region = "auto";
s3.host = strstr(s3.endpoint, "://");
if(s3.host == nil)
sysfatal("invalid endpoint url");
s3.host += 3;
if(strstr(argv[0], "s3://")==argv[0]){
s3.bucket = strdup(argv[0]+5);
if(rflag){
op = delete;
localpath = nil;
} else {
if(strstr(argv[1], "s3://")==argv[1])
sysfatal("s3:// → s3:// not implemented");
localpath = strdup(argv[1]);
op = download;
}
} else if(!rflag && strstr(argv[1], "s3://")==argv[1]){
localpath = strdup(argv[0]);
s3.bucket = strdup(argv[1]+5);
op = upload;
} else
usage();
p = strchr(s3.bucket, '/');
if(p == nil)
sysfatal("no path provided within bucket");
*p = 0;
path = p+1;
fd = open("/mnt/web/clone", ORDWR);
if(fd < 0)
sysfatal("open: %r");
n = read(fd, buf, sizeof buf - 1);
if(n <= 0)
sysfatal("read: %r");
buf[n-1] = 0;
op(&s3, path, localpath, fd, buf);
exits(nil);
}