wings/router/router_download.go

package router

import (
	"bufio"
	"errors"
	"net/http"
	"os"
	"strconv"

	"github.com/gin-gonic/gin"
	"github.com/google/uuid"

	"github.com/pterodactyl/wings/router/middleware"
	"github.com/pterodactyl/wings/router/tokens"
	"github.com/pterodactyl/wings/server/backup"
)

// Handle a download request for a server backup.
func getDownloadBackup(c *gin.Context) {
	client := middleware.ExtractApiClient(c)
	manager := middleware.ExtractManager(c)

	// Get the payload from the token.
	token := tokens.BackupPayload{}
	if err := tokens.ParseToken([]byte(c.Query("token")), &token); err != nil {
		middleware.CaptureAndAbort(c, err)
		return
	}

	// Get the server using the UUID from the token.
	if _, ok := manager.Get(token.ServerUuid); !ok || !token.IsUniqueRequest() {
		c.AbortWithStatusJSON(http.StatusNotFound, gin.H{
			"error": "The requested resource was not found on this server.",
		})
		return
	}

	// Validate that the BackupUuid field is actually a UUID and not some random characters or a
	// file path.
	if _, err := uuid.Parse(token.BackupUuid); err != nil {
		middleware.CaptureAndAbort(c, err)
		return
	}

	// Locate the backup on the local disk.
	b, st, err := backup.LocateLocal(client, token.BackupUuid)
	if err != nil {
		if errors.Is(err, os.ErrNotExist) {
			c.AbortWithStatusJSON(http.StatusNotFound, gin.H{
				"error": "The requested backup was not found on this server.",
			})
			return
		}

		middleware.CaptureAndAbort(c, err)
		return
	}

	// The use of `os` here is safe as backups are not stored within server
	// accessible directories.
	f, err := os.Open(b.Path())
	if err != nil {
		middleware.CaptureAndAbort(c, err)
		return
	}
	defer f.Close()

	c.Header("Content-Length", strconv.Itoa(int(st.Size())))
	c.Header("Content-Disposition", "attachment; filename="+strconv.Quote(st.Name()))
	c.Header("Content-Type", "application/octet-stream")

	_, _ = bufio.NewReader(f).WriteTo(c.Writer)
}

// Handles downloading a specific file for a server.
func getDownloadFile(c *gin.Context) {
	manager := middleware.ExtractManager(c)
	token := tokens.FilePayload{}
	if err := tokens.ParseToken([]byte(c.Query("token")), &token); err != nil {
		middleware.CaptureAndAbort(c, err)
		return
	}

	s, ok := manager.Get(token.ServerUuid)
	if !ok || !token.IsUniqueRequest() {
		c.AbortWithStatusJSON(http.StatusNotFound, gin.H{
			"error": "The requested resource was not found on this server.",
		})
		return
	}

	f, st, err := s.Filesystem().File(token.FilePath)
	if err != nil {
		middleware.CaptureAndAbort(c, err)
		return
	}
	defer f.Close()
	if st.IsDir() {
		c.AbortWithStatusJSON(http.StatusNotFound, gin.H{
			"error": "The requested resource was not found on this server.",
		})
		return
	}

	c.Header("Content-Length", strconv.Itoa(int(st.Size())))
	c.Header("Content-Disposition", "attachment; filename="+strconv.Quote(st.Name()))
	c.Header("Content-Type", "application/octet-stream")

	_, _ = bufio.NewReader(f).WriteTo(c.Writer)
}
Port most of the HTTP code over to gin 2020-04-06 01:00:33 +00:00			`package router`
Add support for downloading a backup 2020-04-06 01:56:54 +00:00
			`import (`
			`"bufio"`
Don't throw a 500 error if the backup is missing; closes pterodactyl/panel#2280 2020-09-01 03:24:07 +00:00			`"errors"`
Add support for downloading a backup 2020-04-06 01:56:54 +00:00			`"net/http"`
			`"os"`
			`"strconv"`
organize imports with gopls format 2021-01-10 01:22:39 +00:00
			`"github.com/gin-gonic/gin"`
router(download): validate that backup_uuid is actually a uuid 2024-04-10 21:22:39 +00:00			`"github.com/google/uuid"`
break everything - upgrade dependencies - run gofmt and goimports to organize code - fix typos - other small tweaks 2021-08-02 21:07:00 +00:00
re-refactor code 2021-01-26 04:28:24 +00:00			`"github.com/pterodactyl/wings/router/middleware"`
organize imports with gopls format 2021-01-10 01:22:39 +00:00			`"github.com/pterodactyl/wings/router/tokens"`
			`"github.com/pterodactyl/wings/server/backup"`
Add support for downloading a backup 2020-04-06 01:56:54 +00:00			`)`

Add support for direct downloads of server files 2020-04-07 03:27:57 +00:00			`// Handle a download request for a server backup.`
Add support for downloading a backup 2020-04-06 01:56:54 +00:00			`func getDownloadBackup(c *gin.Context) {`
Get wings booting properly 2021-02-02 05:32:34 +00:00			`client := middleware.ExtractApiClient(c)`
re-refactor code 2021-01-26 04:28:24 +00:00			`manager := middleware.ExtractManager(c)`
replace servers.servers singleton with server.Manager 2021-01-08 23:14:56 +00:00
router(download): validate that backup_uuid is actually a uuid 2024-04-10 21:22:39 +00:00			`// Get the payload from the token.`
Add support for downloading a backup 2020-04-06 01:56:54 +00:00			`token := tokens.BackupPayload{}`
			`if err := tokens.ParseToken([]byte(c.Query("token")), &token); err != nil {`
Cleanup request error handling; properly handle os.ErrNotExist errors (#150) 2022-11-22 18:18:27 +00:00			`middleware.CaptureAndAbort(c, err)`
Add support for downloading a backup 2020-04-06 01:56:54 +00:00			`return`
			`}`

router(download): validate that backup_uuid is actually a uuid 2024-04-10 21:22:39 +00:00			`// Get the server using the UUID from the token.`
Cleanup request error handling; properly handle os.ErrNotExist errors (#150) 2022-11-22 18:18:27 +00:00			`if _, ok := manager.Get(token.ServerUuid); !ok \|\| !token.IsUniqueRequest() {`
Add support for downloading a backup 2020-04-06 01:56:54 +00:00			`c.AbortWithStatusJSON(http.StatusNotFound, gin.H{`
			`"error": "The requested resource was not found on this server.",`
			`})`
			`return`
			`}`

router(download): validate that backup_uuid is actually a uuid 2024-04-10 21:22:39 +00:00			`// Validate that the BackupUuid field is actually a UUID and not some random characters or a`
			`// file path.`
			`if _, err := uuid.Parse(token.BackupUuid); err != nil {`
			`middleware.CaptureAndAbort(c, err)`
			`return`
			`}`

			`// Locate the backup on the local disk.`
Get wings booting properly 2021-02-02 05:32:34 +00:00			`b, st, err := backup.LocateLocal(client, token.BackupUuid)`
Add support for downloading a backup 2020-04-06 01:56:54 +00:00			`if err != nil {`
Don't throw a 500 error if the backup is missing; closes pterodactyl/panel#2280 2020-09-01 03:24:07 +00:00			`if errors.Is(err, os.ErrNotExist) {`
Break out the backup functions of the daemon in prep for S3 support 2020-04-14 05:01:07 +00:00			`c.AbortWithStatusJSON(http.StatusNotFound, gin.H{`
			`"error": "The requested backup was not found on this server.",`
			`})`
			`return`
			`}`

Cleanup request error handling; properly handle os.ErrNotExist errors (#150) 2022-11-22 18:18:27 +00:00			`middleware.CaptureAndAbort(c, err)`
Add support for downloading a backup 2020-04-06 01:56:54 +00:00			`return`
			`}`

server(filesystem): rebuild everything imaginable This wonderfully large commit replaces basically everything under the `server/filesystem` package, re-implementing essentially everything. This is related to https://github.com/pterodactyl/wings/security/advisories/GHSA-494h-9924-xww9 If any vulnerabilities related to symlinks persist after this commit, I will be very upset. Signed-off-by: Matthew Penner <me@matthewp.io> 2024-03-13 03:44:55 +00:00			// The use of `os` here is safe as backups are not stored within server
			`// accessible directories.`
Break out the backup functions of the daemon in prep for S3 support 2020-04-14 05:01:07 +00:00			`f, err := os.Open(b.Path())`
Add support for downloading a backup 2020-04-06 01:56:54 +00:00			`if err != nil {`
Cleanup request error handling; properly handle os.ErrNotExist errors (#150) 2022-11-22 18:18:27 +00:00			`middleware.CaptureAndAbort(c, err)`
Add support for downloading a backup 2020-04-06 01:56:54 +00:00			`return`
			`}`
			`defer f.Close()`

			`c.Header("Content-Length", strconv.Itoa(int(st.Size())))`
Quote and escape Content-Disposition header 2021-02-21 06:41:50 +00:00			`c.Header("Content-Disposition", "attachment; filename="+strconv.Quote(st.Name()))`
Add support for downloading a backup 2020-04-06 01:56:54 +00:00			`c.Header("Content-Type", "application/octet-stream")`

Cleanup request error handling; properly handle os.ErrNotExist errors (#150) 2022-11-22 18:18:27 +00:00			`_, _ = bufio.NewReader(f).WriteTo(c.Writer)`
Add support for downloading a backup 2020-04-06 01:56:54 +00:00			`}`
Add support for direct downloads of server files 2020-04-07 03:27:57 +00:00
			`// Handles downloading a specific file for a server.`
			`func getDownloadFile(c *gin.Context) {`
re-refactor code 2021-01-26 04:28:24 +00:00			`manager := middleware.ExtractManager(c)`
Add support for direct downloads of server files 2020-04-07 03:27:57 +00:00			`token := tokens.FilePayload{}`
			`if err := tokens.ParseToken([]byte(c.Query("token")), &token); err != nil {`
Cleanup request error handling; properly handle os.ErrNotExist errors (#150) 2022-11-22 18:18:27 +00:00			`middleware.CaptureAndAbort(c, err)`
Add support for direct downloads of server files 2020-04-07 03:27:57 +00:00			`return`
			`}`

re-refactor code 2021-01-26 04:28:24 +00:00			`s, ok := manager.Get(token.ServerUuid)`
			`if !ok \|\| !token.IsUniqueRequest() {`
Add support for direct downloads of server files 2020-04-07 03:27:57 +00:00			`c.AbortWithStatusJSON(http.StatusNotFound, gin.H{`
			`"error": "The requested resource was not found on this server.",`
			`})`
			`return`
			`}`

server(filesystem): rebuild everything imaginable This wonderfully large commit replaces basically everything under the `server/filesystem` package, re-implementing essentially everything. This is related to https://github.com/pterodactyl/wings/security/advisories/GHSA-494h-9924-xww9 If any vulnerabilities related to symlinks persist after this commit, I will be very upset. Signed-off-by: Matthew Penner <me@matthewp.io> 2024-03-13 03:44:55 +00:00			`f, st, err := s.Filesystem().File(token.FilePath)`
Add support for direct downloads of server files 2020-04-07 03:27:57 +00:00			`if err != nil {`
Cleanup request error handling; properly handle os.ErrNotExist errors (#150) 2022-11-22 18:18:27 +00:00			`middleware.CaptureAndAbort(c, err)`
Add support for direct downloads of server files 2020-04-07 03:27:57 +00:00			`return`
server(filesystem): rebuild everything imaginable This wonderfully large commit replaces basically everything under the `server/filesystem` package, re-implementing essentially everything. This is related to https://github.com/pterodactyl/wings/security/advisories/GHSA-494h-9924-xww9 If any vulnerabilities related to symlinks persist after this commit, I will be very upset. Signed-off-by: Matthew Penner <me@matthewp.io> 2024-03-13 03:44:55 +00:00			`}`
			`defer f.Close()`
			`if st.IsDir() {`
Add support for direct downloads of server files 2020-04-07 03:27:57 +00:00			`c.AbortWithStatusJSON(http.StatusNotFound, gin.H{`
			`"error": "The requested resource was not found on this server.",`
			`})`
			`return`
			`}`

			`c.Header("Content-Length", strconv.Itoa(int(st.Size())))`
Quote and escape Content-Disposition header 2021-02-21 06:41:50 +00:00			`c.Header("Content-Disposition", "attachment; filename="+strconv.Quote(st.Name()))`
Add support for direct downloads of server files 2020-04-07 03:27:57 +00:00			`c.Header("Content-Type", "application/octet-stream")`

Cleanup request error handling; properly handle os.ErrNotExist errors (#150) 2022-11-22 18:18:27 +00:00			`_, _ = bufio.NewReader(f).WriteTo(c.Writer)`
Fix some typos and run gofmt on all .go files 2020-09-05 19:08:40 +00:00			`}`