CFE-2986: Added getdir command to cf-net, copies directory and files

[SimonThalvorsen]

Ticket: CFE-2986
Changelog: Title

[larsewi]

It would be nicer if we extended cf-net get to get both files and directories, instead of having two separate sub-commands. Please investigate how rsync does this and try to do it in a similar way here.

[olehermanse]

It would be nicer if we extended cf-net get to get both files and directories, instead of having two separate sub-commands. Please investigate how rsync does this and try to do it in a similar way here.

@larsewi on the other hand, cf-net was written mainly as a protocol testing tool, and the commands mirror their protocol command names. If the GET protocol command in CFEngine network protocol can only GET a file, it might be a bit confusing that cf-net get is something very different.

There is also some advantage to not being too dynamic with this stuff. If you make a CLI that forces the user to specify if they are copying a file or a folder, you can prevent some annoying / confusing situations.

We could for example make a new subcommand, copy;

$ cf-net copy --file promises.cf
Copying file 1.2.3.4:/var/cfengine/masterfiles/promises.cf -> ./promises.cf

$ cf-net copy --file services/
Error: 'services/' does not look like a file, did you mean --directory?

$ cf-net copy --file services/.
Error: 'services/.' does not look like a file, did you mean --directory?

$ cf-net copy --directory services/
Copying directory 1.2.3.4:/var/cfengine/masterfiles/services/ -> ./services/

$ cf-net copy services/
Copying directory 1.2.3.4:/var/cfengine/masterfiles/services/ -> ./services/

$ cf-net copy services
Warning: Ambiguous if 'services' is a file or a directory - consider adding --file or --directory.
Copying directory 1.2.3.4:/var/cfengine/masterfiles/services/ -> ./services/

[larsewi]

Please break this up a little. Maybe a recursive solution would be more elegant given that it is a recursive problem.

[larsewi]

Maybe you should use the remote file permissions (available from the ProtocolStat) instead?

[larsewi]

This does not need to be heap allocated

[larsewi]

Please check for truncation on all the calls to snprintf

[larsewi]

Unreachable break after return

[larsewi]

Suggested change

	"Warning: multiple occurences of -o in command, "\
	"Warning: multiple occurrences of -o in command, "\

[larsewi]

There should be a recursion depth limit to prevent a potential malicious or misconfigured server with symlink loops (or deeply nested dirs) to cause stack overflow.

We should probably stick to a maximum path size for the same reasons above.

[larsewi]

Here you print the truncated path and not the intended full path. This could be a bit misleading.

[larsewi]

temp is leaked here

[larsewi]

Consider using StringFormat()

[larsewi]

basename() may modify it's argument

[larsewi]

The function returns void. If all files fail to download, CFNetGetDir still returns 0 (success).

[SimonThalvorsen]

I do not see why this is an issue, failing to stat/get/mkdir will all log their respective errors. So you would rather it return -1 on any one error instead of continue?

[larsewi]

If you were to use it in a script, then it would be easier to check the exit value rather then parsing log messages. Does the other commands exit with 0 on failure?

[larsewi]

File permissions are preserved via ProtocolGet, but created directories don't get the remote directory's permissions applied.

[larsewi]

Suggested change

	static int CFNetGetDir( CFNetOptions *opts, const char *hostname, char **args)
	static int CFNetGetDir(CFNetOptions *opts, const char *hostname, char **args)

[larsewi]

Suggested change

	if (written < 0 || written >= len) {
	if (written < 0 || written >= len)
	{

[larsewi]

Try to be consistent with the braces. CONTRIBUTING.md says to put them on a new line. Look through the rest of the code, there are more cases like this.

Suggested change

	if (!ProtocolStat(conn, remote_path, &perms)) {
	if (!ProtocolStat(conn, remote_path, &perms))
	{

[larsewi]

Use Allman style, not K&R style (} else {)

[larsewi]

Make sure to check return values of functions. It's OK to do best effort. I.e., we encounter an error but continue if it's safe. But in this case we need to cache the error so that we can later exit with failure. For some errors, like if we fail to create a directory, it does not make sense to try to fetch the files that should be in that directory afterwards.

[larsewi]

Try this:

Suggested change

	assert(conn != NULL && remote_path != NULL && local_path != NULL);
	assert(conn != NULL);
	assert(remote_path != NULL);
	assert(local_path != NULL);

Maybe it will silence the CodeQL warning. It's also OK to simply dismiss it. However, by fixing it, the next time someone touches this code, the warning does not pop back up. I'm fine with either way.

[larsewi]

Personally I would just pass NULL here since you don't care if the directory was actually created or not. I get the idea that you want to improve readability with having "named" arguments. But in this case, it's more confusing than helpful.

Suggested change

	bool* created = NULL;
	bool force = false;
	MakeParentDirectoryPerms(path, force, created, perms);
	const bool force = false;
	MakeParentDirectoryPerms(path, force, NULL, perms);

The intended use of this argument is:

    const bool force = false;
    bool created;
    MakeParentDirectoryPerms(path, force, &created, perms);
    if (created)
    {
        // The directory was created
    }
    else
    {
        // The directory already existed
    }

Where, created is set to true by the function itself if the directory was created.

The MakeParentDirectoryPerms function also returns an error. Maybe you should check this error message, and not try to fetch the files that should be inside the directory if you failed to create it.

[larsewi]

Inconsistent indents

Suggested change

	static int process_dir_recursive(AgentConnection *conn,
	const char *remote_path,
	const char *local_path,
	bool has_output_path,
	bool print_stats,
	int limit)
	static int process_dir_recursive(AgentConnection *conn,
	const char *remote_path,
	const char *local_path,
	bool has_output_path,
	bool print_stats,
	int limit)

[larsewi]

It's not obvious what the has_output_path variable does. I think this function deserves a doxygen comment.

[larsewi]

Make sure to free this sequence in all the return paths

[larsewi]

This recursion limit test is confusing. Is not this the same as?

Suggested change

	if (0 > limit - 1)
	if (limit <= 0)

[larsewi]

Need to check for overflow. We have functions that do this in libntech. I would suggest using those.

[larsewi]

basename may modify its argument

[larsewi]

Default should probably be more than 10.

Suggested change

	int limit = 10;
	int limit = 32;

[larsewi]

Static checkers may complain that you are comparing singed and unsigned. Consider casting to unsigned (safe since the negative case is handled first)

Suggested change

	if (written < 0 || written >= sizeof(path))
	if (written < 0 || (size_t) written >= sizeof(path))