git-serve.py 7.8 KB
Newer Older
1
2
3
4
5
6
7
8
9
10
#!/usr/bin/python3

import configparser
import mysql.connector
import os
import re
import shlex
import sys

config = configparser.RawConfigParser()
Lukas Fleischer's avatar
Lukas Fleischer committed
11
config.read(os.path.dirname(os.path.realpath(__file__)) + "/../conf/config")
12
13
14
15
16

aur_db_host = config.get('database', 'host')
aur_db_name = config.get('database', 'name')
aur_db_user = config.get('database', 'user')
aur_db_pass = config.get('database', 'password')
17
aur_db_socket = config.get('database', 'socket')
18

19
repo_path = config.get('serve', 'repo-path')
20
21
repo_regex = config.get('serve', 'repo-regex')
git_shell_cmd = config.get('serve', 'git-shell-cmd')
22
git_update_cmd = config.get('serve', 'git-update-cmd')
23
ssh_cmdline = config.get('serve', 'ssh-cmdline')
24

Lukas Fleischer's avatar
Lukas Fleischer committed
25
enable_maintenance = config.getboolean('options', 'enable-maintenance')
26
maintenance_exc = config.get('options', 'maintenance-exceptions').split()
Lukas Fleischer's avatar
Lukas Fleischer committed
27

28

29
def pkgbase_from_name(pkgbase):
30
31
32
33
    db = mysql.connector.connect(host=aur_db_host, user=aur_db_user,
                                 passwd=aur_db_pass, db=aur_db_name,
                                 unix_socket=aur_db_socket)
    cur = db.cursor()
34
35
    cur.execute("SELECT ID FROM PackageBases WHERE Name = %s", [pkgbase])
    db.close()
36

37
38
    row = cur.fetchone()
    return row[0] if row else None
39

40

41
def pkgbase_exists(pkgbase):
Mark Weiman's avatar
Mark Weiman committed
42
    return pkgbase_from_name(pkgbase) is not None
43

44

45
46
47
48
49
50
51
52
53
def list_repos(user):
    db = mysql.connector.connect(host=aur_db_host, user=aur_db_user,
                                 passwd=aur_db_pass, db=aur_db_name,
                                 unix_socket=aur_db_socket)
    cur = db.cursor()

    cur.execute("SELECT ID FROM Users WHERE Username = %s ", [user])
    userid = cur.fetchone()[0]
    if userid == 0:
54
        die('{:s}: unknown user: {:s}'.format(action, user))
55
56
57
58
59
60
61

    cur.execute("SELECT Name, PackagerUID FROM PackageBases " +
                "WHERE MaintainerUID = %s ", [userid])
    for row in cur:
        print((' ' if row[1] else '*') + row[0])
    db.close()

62

63
def create_pkgbase(pkgbase, user):
64
    if not re.match(repo_regex, pkgbase):
65
        die('{:s}: invalid repository name: {:s}'.format(action, pkgbase))
66
    if pkgbase_exists(pkgbase):
67
        die('{:s}: package base already exists: {:s}'.format(action, pkgbase))
68
69

    db = mysql.connector.connect(host=aur_db_host, user=aur_db_user,
70
71
                                 passwd=aur_db_pass, db=aur_db_name,
                                 unix_socket=aur_db_socket)
72
73
74
75
76
    cur = db.cursor()

    cur.execute("SELECT ID FROM Users WHERE Username = %s ", [user])
    userid = cur.fetchone()[0]
    if userid == 0:
77
        die('{:s}: unknown user: {:s}'.format(action, user))
78
79

    cur.execute("INSERT INTO PackageBases (Name, SubmittedTS, ModifiedTS, " +
80
                "SubmitterUID, MaintainerUID) VALUES (%s, UNIX_TIMESTAMP(), " +
81
                "UNIX_TIMESTAMP(), %s, %s)", [pkgbase, userid, userid])
82
83
    pkgbase_id = cur.lastrowid

84
    cur.execute("INSERT INTO PackageNotifications (PackageBaseID, UserID) " +
85
                "VALUES (%s, %s)", [pkgbase_id, userid])
86
87
88
89

    db.commit()
    db.close()

90

91
def pkgbase_set_keywords(pkgbase, keywords):
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
    pkgbase_id = pkgbase_from_name(pkgbase)
    if not pkgbase_id:
        die('{:s}: package base not found: {:s}'.format(action, pkgbase))

    db = mysql.connector.connect(host=aur_db_host, user=aur_db_user,
                                 passwd=aur_db_pass, db=aur_db_name,
                                 unix_socket=aur_db_socket)
    cur = db.cursor()

    cur.execute("DELETE FROM PackageKeywords WHERE PackageBaseID = %s",
                [pkgbase_id])
    for keyword in keywords:
        cur.execute("INSERT INTO PackageKeywords (PackageBaseID, Keyword) "
                    "VALUES (%s, %s)", [pkgbase_id, keyword])

    db.commit()
    db.close()

110

111
def pkgbase_has_write_access(pkgbase, user):
112
113
    db = mysql.connector.connect(host=aur_db_host, user=aur_db_user,
                                 passwd=aur_db_pass, db=aur_db_name,
114
                                 unix_socket=aur_db_socket, buffered=True)
115
116
    cur = db.cursor()

117
118
119
120
121
122
123
    cur.execute("SELECT COUNT(*) FROM PackageBases " +
                "LEFT JOIN PackageComaintainers " +
                "ON PackageComaintainers.PackageBaseID = PackageBases.ID " +
                "INNER JOIN Users ON Users.ID = PackageBases.MaintainerUID " +
                "OR PackageBases.MaintainerUID IS NULL " +
                "OR Users.ID = PackageComaintainers.UsersID " +
                "WHERE Name = %s AND Username = %s", [pkgbase, user])
124
125
    return cur.fetchone()[0] > 0

126

127
def die(msg):
128
    sys.stderr.write("{:s}\n".format(msg))
129
130
    exit(1)

131

132
def die_with_help(msg):
133
    die(msg + "\nTry `{:s} help` for a list of commands.".format(ssh_cmdline))
134

135

136
137
138
139
140
141
user = os.environ.get('AUR_USER')
privileged = (os.environ.get('AUR_PRIVILEGED', '0') == '1')
ssh_cmd = os.environ.get('SSH_ORIGINAL_COMMAND')
ssh_client = os.environ.get('SSH_CLIENT')

if not ssh_cmd:
142
    die_with_help("Interactive shell is disabled.")
143
cmdargv = shlex.split(ssh_cmd)
144
action = cmdargv[0]
145
remote_addr = ssh_client.split(' ')[0] if ssh_client else None
146

Lukas Fleischer's avatar
Lukas Fleischer committed
147
if enable_maintenance:
148
    if remote_addr not in maintenance_exc:
149
        die("The AUR is down due to maintenance. We will be back soon.")
Lukas Fleischer's avatar
Lukas Fleischer committed
150

151
if action == 'git-upload-pack' or action == 'git-receive-pack':
152
    if len(cmdargv) < 2:
153
        die_with_help("{:s}: missing path".format(action))
154
155

    path = cmdargv[1].rstrip('/')
156
157
158
159
    if not path.startswith('/'):
        path = '/' + path
    if not path.endswith('.git'):
        path = path + '.git'
160
161
    pkgbase = path[1:-4]
    if not re.match(repo_regex, pkgbase):
162
        die('{:s}: invalid repository name: {:s}'.format(action, pkgbase))
163
164

    if not pkgbase_exists(pkgbase):
165
        create_pkgbase(pkgbase, user)
166

167
    if action == 'git-receive-pack':
168
        if not privileged and not pkgbase_has_write_access(pkgbase, user):
169
            die('{:s}: permission denied: {:s}'.format(action, user))
170

171
172
    os.environ["AUR_USER"] = user
    os.environ["AUR_PKGBASE"] = pkgbase
173
174
    os.environ["GIT_NAMESPACE"] = pkgbase
    cmd = action + " '" + repo_path + "'"
175
    os.execl(git_shell_cmd, git_shell_cmd, '-c', cmd)
176
elif action == 'set-keywords':
177
178
    if len(cmdargv) < 2:
        die_with_help("{:s}: missing repository name".format(action))
179
    pkgbase_set_keywords(cmdargv[1], cmdargv[2:])
180
181
elif action == 'list-repos':
    if len(cmdargv) > 1:
182
        die_with_help("{:s}: too many arguments".format(action))
183
    list_repos(user)
184
185
elif action == 'setup-repo':
    if len(cmdargv) < 2:
186
        die_with_help("{:s}: missing repository name".format(action))
187
    if len(cmdargv) > 2:
188
        die_with_help("{:s}: too many arguments".format(action))
189
    create_pkgbase(cmdargv[1], user)
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
elif action == 'restore':
    if len(cmdargv) < 2:
        die_with_help("{:s}: missing repository name".format(action))
    if len(cmdargv) > 2:
        die_with_help("{:s}: too many arguments".format(action))

    pkgbase = cmdargv[1]
    if not re.match(repo_regex, pkgbase):
        die('{:s}: invalid repository name: {:s}'.format(action, pkgbase))

    if pkgbase_exists(pkgbase):
        die('{:s}: package base exists: {:s}'.format(action, pkgbase))
    create_pkgbase(pkgbase, user)

    os.environ["AUR_USER"] = user
    os.environ["AUR_PKGBASE"] = pkgbase
    os.execl(git_update_cmd, git_update_cmd, 'restore')
207
208
elif action == 'help':
    die("Commands:\n" +
209
210
211
212
213
214
215
        "  help                         Show this help message and exit.\n" +
        "  list-repos                   List all your repositories.\n" +
        "  restore <name>               Restore a deleted package base.\n" +
        "  set-keywords <name> [...]    Change package base keywords.\n" +
        "  setup-repo <name>            Create an empty repository.\n" +
        "  git-receive-pack             Internal command used with Git.\n" +
        "  git-upload-pack              Internal command used with Git.")
216
else:
217
    die_with_help("invalid command: {:s}".format(action))