ec50b5a7 |
## Amazon S3 manager
## Author: Michal Ludvig <michal@logix.cz>
## http://www.logix.cz/michal
## License: GPL Version 2
|
f98a27f2 |
import sys |
f81e7fba |
import os, os.path
import base64 |
a0fc5bca |
import md5
import sha |
f81e7fba |
import hmac
import httplib
import logging |
eb31131e |
import mimetypes |
f81e7fba |
from logging import debug, info, warning, error
from stat import ST_SIZE
from Utils import *
from SortedDict import SortedDict
from BidirMap import BidirMap |
b008e471 |
from Config import Config |
6bb385f2 |
from Exceptions import * |
f81e7fba |
|
eb9c54ec |
class S3(object): |
f81e7fba |
http_methods = BidirMap(
GET = 0x01,
PUT = 0x02,
HEAD = 0x04,
DELETE = 0x08,
MASK = 0x0F,
)
targets = BidirMap(
SERVICE = 0x0100,
BUCKET = 0x0200,
OBJECT = 0x0400,
MASK = 0x0700,
)
operations = BidirMap(
UNDFINED = 0x0000,
LIST_ALL_BUCKETS = targets["SERVICE"] | http_methods["GET"],
BUCKET_CREATE = targets["BUCKET"] | http_methods["PUT"],
BUCKET_LIST = targets["BUCKET"] | http_methods["GET"],
BUCKET_DELETE = targets["BUCKET"] | http_methods["DELETE"],
OBJECT_PUT = targets["OBJECT"] | http_methods["PUT"],
OBJECT_GET = targets["OBJECT"] | http_methods["GET"],
OBJECT_HEAD = targets["OBJECT"] | http_methods["HEAD"],
OBJECT_DELETE = targets["OBJECT"] | http_methods["DELETE"],
)
codes = {
"NoSuchBucket" : "Bucket '%s' does not exist",
"AccessDenied" : "Access to bucket '%s' was denied",
"BucketAlreadyExists" : "Bucket '%s' already exists",
}
|
bb6d07ee |
## S3 sometimes sends HTTP-307 response
redir_map = {}
|
f81e7fba |
def __init__(self, config):
self.config = config
|
dc758146 |
def get_connection(self, bucket): |
afe194f8 |
if self.config.proxy_host != "":
return httplib.HTTPConnection(self.config.proxy_host, self.config.proxy_port)
else: |
dc758146 |
if self.config.use_https:
return httplib.HTTPSConnection(self.get_hostname(bucket))
else:
return httplib.HTTPConnection(self.get_hostname(bucket)) |
afe194f8 |
|
dc758146 |
def get_hostname(self, bucket):
if bucket: |
bb6d07ee |
if self.redir_map.has_key(bucket):
host = self.redir_map[bucket]
else:
host = self.config.host_bucket % { 'bucket' : bucket } |
dc758146 |
else:
host = self.config.host_base |
bb6d07ee |
debug('get_hostname(%s): %s' % (bucket, host)) |
dc758146 |
return host |
afe194f8 |
|
bb6d07ee |
def set_hostname(self, bucket, redir_hostname):
self.redir_map[bucket] = redir_hostname
|
dc758146 |
def format_uri(self, resource):
if self.config.proxy_host != "":
uri = "http://%s%s" % (self.get_hostname(resource['bucket']), resource['uri'])
else:
uri = resource['uri']
debug('format_uri(): ' + uri)
return uri |
afe194f8 |
|
ec50b5a7 |
## Commands / Actions |
f81e7fba |
def list_all_buckets(self):
request = self.create_request("LIST_ALL_BUCKETS")
response = self.send_request(request)
response["list"] = getListFromXml(response["data"], "Bucket")
return response
|
9081133d |
def bucket_list(self, bucket, prefix = None): |
d94adea9 |
def _list_truncated(data): |
ac9940ec |
## <IsTruncated> can either be "true" or "false" or be missing completely
is_truncated = getTextFromXml(data, ".//IsTruncated") or "false"
return is_truncated.lower() != "false" |
d94adea9 |
def _get_contents(data):
return getListFromXml(data, "Contents")
|
f4555c39 |
request = self.create_request("BUCKET_LIST", bucket = bucket, prefix = prefix) |
f81e7fba |
response = self.send_request(request) |
0d91ff3f |
#debug(response) |
d94adea9 |
list = _get_contents(response["data"])
while _list_truncated(response["data"]):
marker = list[-1]["Key"]
info("Listing continues after '%s'" % marker) |
7143ef4f |
request = self.create_request("BUCKET_LIST", bucket = bucket,
prefix = prefix,
marker = self.urlencode_string(marker)) |
d94adea9 |
response = self.send_request(request)
list += _get_contents(response["data"])
response['list'] = list |
f81e7fba |
return response
|
dc758146 |
def bucket_create(self, bucket, bucket_location = None): |
f81e7fba |
self.check_bucket_name(bucket) |
afe194f8 |
headers = SortedDict() |
dc758146 |
body = ""
if bucket_location and bucket_location.strip().upper() != "US":
body = "<CreateBucketConfiguration><LocationConstraint>"
body += bucket_location.strip().upper()
body += "</LocationConstraint></CreateBucketConfiguration>"
debug("bucket_location: " + body)
headers["content-length"] = len(body) |
7143ef4f |
if self.config.acl_public:
headers["x-amz-acl"] = "public-read" |
afe194f8 |
request = self.create_request("BUCKET_CREATE", bucket = bucket, headers = headers) |
dc758146 |
response = self.send_request(request, body) |
f81e7fba |
return response
def bucket_delete(self, bucket):
request = self.create_request("BUCKET_DELETE", bucket = bucket)
response = self.send_request(request)
return response
|
e5c6f6c5 |
def bucket_info(self, uri):
request = self.create_request("BUCKET_LIST", bucket = uri.bucket(), extra = "?location") |
82157846 |
response = self.send_request(request) |
dc758146 |
response['bucket-location'] = getTextFromXml(response['data'], "LocationConstraint") or "any" |
82157846 |
return response
|
8ec1807f |
def object_put(self, filename, bucket, object, extra_headers = None): |
f81e7fba |
if not os.path.isfile(filename):
raise ParameterError("%s is not a regular file" % filename)
try: |
37a8ad44 |
file = open(filename, "rb") |
f81e7fba |
size = os.stat(filename)[ST_SIZE]
except IOError, e:
raise ParameterError("%s: %s" % (filename, e.strerror))
headers = SortedDict() |
8ec1807f |
if extra_headers:
headers.update(extra_headers) |
f81e7fba |
headers["content-length"] = size |
eb31131e |
content_type = None
if self.config.guess_mime_type:
content_type = mimetypes.guess_type(filename)[0]
if not content_type:
content_type = self.config.default_mime_type
debug("Content-Type set to '%s'" % content_type)
headers["content-type"] = content_type |
9b7618ae |
if self.config.acl_public: |
9081133d |
headers["x-amz-acl"] = "public-read" |
f81e7fba |
request = self.create_request("OBJECT_PUT", bucket = bucket, object = object, headers = headers)
response = self.send_file(request, file)
return response
|
ed27a45e |
def object_get_uri(self, uri, stream):
if uri.type != "s3":
raise ValueError("Expected URI type 's3', got '%s'" % uri.type)
request = self.create_request("OBJECT_GET", bucket = uri.bucket(), object = uri.object()) |
f98a27f2 |
response = self.recv_file(request, stream) |
f81e7fba |
return response |
ed27a45e |
|
f81e7fba |
def object_delete(self, bucket, object):
request = self.create_request("OBJECT_DELETE", bucket = bucket, object = object)
response = self.send_request(request)
return response
|
8ec1807f |
def object_put_uri(self, filename, uri, extra_headers = None): |
ed27a45e |
# TODO TODO
# Make it consistent with stream-oriented object_get_uri() |
b819c70c |
if uri.type != "s3":
raise ValueError("Expected URI type 's3', got '%s'" % uri.type) |
8ec1807f |
return self.object_put(filename, uri.bucket(), uri.object(), extra_headers) |
b819c70c |
def object_delete_uri(self, uri):
if uri.type != "s3":
raise ValueError("Expected URI type 's3', got '%s'" % uri.type) |
42b24cac |
return self.object_delete(uri.bucket(), uri.object()) |
b819c70c |
|
e5c6f6c5 |
def object_info(self, uri):
request = self.create_request("OBJECT_HEAD", bucket = uri.bucket(), object = uri.object())
response = self.send_request(request)
return response
def get_acl(self, uri):
if uri.has_object():
request = self.create_request("OBJECT_GET", bucket = uri.bucket(), object = uri.object(), extra = "?acl")
else:
request = self.create_request("BUCKET_LIST", bucket = uri.bucket(), extra = "?acl")
acl = {}
response = self.send_request(request)
grants = getListFromXml(response['data'], "Grant")
for grant in grants:
if grant['Grantee'][0].has_key('DisplayName'):
user = grant['Grantee'][0]['DisplayName']
if grant['Grantee'][0].has_key('URI'):
user = grant['Grantee'][0]['URI']
if user == 'http://acs.amazonaws.com/groups/global/AllUsers':
user = "*anon*"
perm = grant['Permission']
acl[user] = perm
return acl
|
ec50b5a7 |
## Low level methods |
c0e0c042 |
def urlencode_string(self, string):
encoded = ""
## List of characters that must be escaped for S3
## Haven't found this in any official docs
## but my tests show it's more less correct.
## If you start getting InvalidSignature errors
## from S3 check the error headers returned
## from S3 to see whether the list hasn't
## changed.
for c in string: # I'm not sure how to know in what encoding
# 'object' is. Apparently "type(object)==str"
# but the contents is a string of unicode
# bytes, e.g. '\xc4\x8d\xc5\xafr\xc3\xa1k'
# Don't know what it will do on non-utf8
# systems.
# [hope that sounds reassuring ;-)]
o = ord(c)
if (o <= 32 or # Space and below
o == 0x22 or # "
o == 0x23 or # #
o == 0x25 or # %
o == 0x2B or # + (or it would become <space>)
o == 0x3C or # <
o == 0x3E or # >
o == 0x3F or # ?
o == 0x5B or # [
o == 0x5C or # \
o == 0x5D or # ]
o == 0x5E or # ^
o == 0x60 or # `
o >= 123): # { and above, including >= 128 for UTF-8
encoded += "%%%02X" % o
else:
encoded += c
debug("String '%s' encoded to '%s'" % (string, encoded))
return encoded
|
dc758146 |
def create_request(self, operation, bucket = None, object = None, headers = None, extra = None, **params):
resource = { 'bucket' : None, 'uri' : "/" } |
f81e7fba |
if bucket: |
dc758146 |
resource['bucket'] = str(bucket) |
f81e7fba |
if object: |
dc758146 |
resource['uri'] = "/" + self.urlencode_string(object)
if extra:
resource['uri'] += extra |
f81e7fba |
if not headers:
headers = SortedDict()
if headers.has_key("date"):
if not headers.has_key("x-amz-date"):
headers["x-amz-date"] = headers["date"]
del(headers["date"])
if not headers.has_key("x-amz-date"): |
c4761f22 |
headers["x-amz-date"] = time.strftime("%a, %d %b %Y %H:%M:%S +0000", time.gmtime()) |
f81e7fba |
method_string = S3.http_methods.getkey(S3.operations[operation] & S3.http_methods["MASK"])
signature = self.sign_headers(method_string, resource, headers)
headers["Authorization"] = "AWS "+self.config.access_key+":"+signature |
f4555c39 |
param_str = ""
for param in params:
if params[param] not in (None, ""):
param_str += "&%s=%s" % (param, params[param]) |
82157846 |
else:
param_str += "&%s" % param |
f4555c39 |
if param_str != "": |
dc758146 |
resource['uri'] += "?" + param_str[1:]
debug("CreateRequest: resource[uri]=" + resource['uri']) |
f81e7fba |
return (method_string, resource, headers)
|
dc758146 |
def send_request(self, request, body = None): |
f81e7fba |
method_string, resource, headers = request
info("Processing request, please wait...") |
dc758146 |
conn = self.get_connection(resource['bucket'])
conn.request(method_string, self.format_uri(resource), body, headers) |
f81e7fba |
response = {}
http_response = conn.getresponse()
response["status"] = http_response.status
response["reason"] = http_response.reason
response["headers"] = convertTupleListToDict(http_response.getheaders())
response["data"] = http_response.read() |
dc758146 |
debug("Response: " + str(response)) |
f81e7fba |
conn.close() |
bb6d07ee |
if response["status"] == 307:
## RedirectPermanent
redir_bucket = getTextFromXml(response['data'], ".//Bucket")
redir_hostname = getTextFromXml(response['data'], ".//Endpoint")
self.set_hostname(redir_bucket, redir_hostname)
info("Redirected to: %s" % (redir_hostname))
return self.send_request(request, body)
|
f81e7fba |
if response["status"] < 200 or response["status"] > 299:
raise S3Error(response)
return response
|
63ba9974 |
def send_file(self, request, file, throttle = 0, retries = 3): |
f81e7fba |
method_string, resource, headers = request
info("Sending file '%s', please wait..." % file.name) |
dc758146 |
conn = self.get_connection(resource['bucket']) |
f81e7fba |
conn.connect() |
dc758146 |
conn.putrequest(method_string, self.format_uri(resource)) |
f81e7fba |
for header in headers.keys():
conn.putheader(header, str(headers[header]))
conn.endheaders() |
bb6d07ee |
file.seek(0) |
63ba9974 |
timestamp_start = time.time() |
e7906cf0 |
md5_hash = md5.new() |
f81e7fba |
size_left = size_total = headers.get("content-length")
while (size_left > 0): |
9b7618ae |
debug("SendFile: Reading up to %d bytes from '%s'" % (self.config.send_chunk, file.name))
data = file.read(self.config.send_chunk) |
e7906cf0 |
md5_hash.update(data) |
f81e7fba |
debug("SendFile: Sending %d bytes to the server" % len(data)) |
63ba9974 |
try:
conn.send(data)
except Exception, e:
## When an exception occurs insert a
if retries:
conn.close()
warning("Upload of '%s' failed %s " % (file.name, e))
throttle = throttle and throttle * 5 or 0.01
warning("Retrying on lower speed (throttle=%0.2f)" % throttle)
return self.send_file(request, file, throttle, retries - 1)
else:
debug("Giving up on '%s' %s" % (file.name, e))
raise S3UploadError
|
f81e7fba |
size_left -= len(data) |
63ba9974 |
if throttle:
time.sleep(throttle) |
f81e7fba |
info("Sent %d bytes (%d %% of %d)" % (
(size_total - size_left),
(size_total - size_left) * 100 / size_total,
size_total)) |
63ba9974 |
timestamp_end = time.time() |
e7906cf0 |
md5_computed = md5_hash.hexdigest() |
f81e7fba |
response = {}
http_response = conn.getresponse()
response["status"] = http_response.status
response["reason"] = http_response.reason
response["headers"] = convertTupleListToDict(http_response.getheaders()) |
63ba9974 |
response["data"] = http_response.read()
response["elapsed"] = timestamp_end - timestamp_start
response["size"] = size_total
response["speed"] = float(response["size"]) / response["elapsed"] |
f81e7fba |
conn.close() |
bb6d07ee |
if response["status"] == 307:
## RedirectPermanent
redir_bucket = getTextFromXml(response['data'], ".//Bucket")
redir_hostname = getTextFromXml(response['data'], ".//Endpoint")
self.set_hostname(redir_bucket, redir_hostname)
info("Redirected to: %s" % (redir_hostname))
return self.send_file(request, file)
|
e7906cf0 |
debug("MD5 sums: computed=%s, received=%s" % (md5_computed, response["headers"]["etag"]))
if response["headers"]["etag"].strip('"\'') != md5_hash.hexdigest():
warning("MD5 Sums don't match!")
if retries:
info("Retrying upload.")
return self.send_file(request, file, throttle, retries - 1)
else:
debug("Too many failures. Giving up on '%s'" % (file.name))
raise S3UploadError
|
f81e7fba |
if response["status"] < 200 or response["status"] > 299:
raise S3Error(response)
return response
|
f98a27f2 |
def recv_file(self, request, stream): |
f81e7fba |
method_string, resource, headers = request |
f98a27f2 |
info("Receiving file '%s', please wait..." % stream.name) |
dc758146 |
conn = self.get_connection(resource['bucket']) |
f81e7fba |
conn.connect() |
dc758146 |
conn.putrequest(method_string, self.format_uri(resource)) |
f81e7fba |
for header in headers.keys():
conn.putheader(header, str(headers[header]))
conn.endheaders()
response = {}
http_response = conn.getresponse()
response["status"] = http_response.status
response["reason"] = http_response.reason
response["headers"] = convertTupleListToDict(http_response.getheaders()) |
bb6d07ee |
if response["status"] == 307:
## RedirectPermanent
response['data'] = http_response.read()
redir_bucket = getTextFromXml(response['data'], ".//Bucket")
redir_hostname = getTextFromXml(response['data'], ".//Endpoint")
self.set_hostname(redir_bucket, redir_hostname)
info("Redirected to: %s" % (redir_hostname))
return self.recv_file(request, stream)
|
f81e7fba |
if response["status"] < 200 or response["status"] > 299:
raise S3Error(response)
|
a0fc5bca |
md5_hash = md5.new() |
f81e7fba |
size_left = size_total = int(response["headers"]["content-length"]) |
f98a27f2 |
size_recvd = 0 |
63ba9974 |
timestamp_start = time.time() |
f98a27f2 |
while (size_recvd < size_total): |
9b7618ae |
this_chunk = size_left > self.config.recv_chunk and self.config.recv_chunk or size_left |
f81e7fba |
debug("ReceiveFile: Receiving up to %d bytes from the server" % this_chunk)
data = http_response.read(this_chunk) |
f98a27f2 |
debug("ReceiveFile: Writing %d bytes to file '%s'" % (len(data), stream.name))
stream.write(data) |
a0fc5bca |
md5_hash.update(data) |
f98a27f2 |
size_recvd += len(data) |
f81e7fba |
info("Received %d bytes (%d %% of %d)" % ( |
f98a27f2 |
size_recvd,
size_recvd * 100 / size_total, |
f81e7fba |
size_total))
conn.close() |
63ba9974 |
timestamp_end = time.time() |
a0fc5bca |
response["md5"] = md5_hash.hexdigest() |
f81e7fba |
response["md5match"] = response["headers"]["etag"].find(response["md5"]) >= 0 |
63ba9974 |
response["elapsed"] = timestamp_end - timestamp_start |
f98a27f2 |
response["size"] = size_recvd |
63ba9974 |
response["speed"] = float(response["size"]) / response["elapsed"] |
f98a27f2 |
if response["size"] != long(response["headers"]["content-length"]):
warning("Reported size (%s) does not match received size (%s)" % (
response["headers"]["content-length"], response["size"])) |
f81e7fba |
debug("ReceiveFile: Computed MD5 = %s" % response["md5"])
if not response["md5match"]:
warning("MD5 signatures do not match: computed=%s, received=%s" % (
response["md5"], response["headers"]["etag"]))
return response
def sign_headers(self, method, resource, headers):
h = method+"\n"
h += headers.get("content-md5", "")+"\n"
h += headers.get("content-type", "")+"\n"
h += headers.get("date", "")+"\n"
for header in headers.keys():
if header.startswith("x-amz-"):
h += header+":"+str(headers[header])+"\n" |
dc758146 |
if resource['bucket']:
h += "/" + resource['bucket']
h += resource['uri'] |
f4555c39 |
debug("SignHeaders: " + repr(h)) |
a0fc5bca |
return base64.encodestring(hmac.new(self.config.secret_key, h, sha).digest()).strip() |
f81e7fba |
def check_bucket_name(self, bucket):
if re.compile("[^A-Za-z0-9\._-]").search(bucket):
raise ParameterError("Bucket name '%s' contains unallowed characters" % bucket)
if len(bucket) < 3:
raise ParameterError("Bucket name '%s' is too short (min 3 characters)" % bucket)
if len(bucket) > 255:
raise ParameterError("Bucket name '%s' is too long (max 255 characters)" % bucket)
return True
|