search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
tog: group state assignments and zap dup repo assignment
[got-portable.git] / libexec / got-read-gotconfig / got-read-gotconfig.c
blob3bca8b27e1b311fc16388b834980244e1aac67ba
1 /*
2 * Copyright (c) 2020 Stefan Sperling <stsp@openbsd.org>
3 *
4 * Permission to use, copy, modify, and distribute this software for any
5 * purpose with or without fee is hereby granted, provided that the above
6 * copyright notice and this permission notice appear in all copies.
7 *
8 * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
9 * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
10 * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
11 * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
12 * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
13 * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
14 * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
15 */
16
17 #include "got_compat.h"
18
19 #include <sys/types.h>
20 #include <sys/queue.h>
21 #include <sys/uio.h>
22 #include <sys/time.h>
23
24 #include <err.h>
25 #include <stdint.h>
26 #include <limits.h>
27 #include <signal.h>
28 #include <stdio.h>
29 #include <stdlib.h>
30 #include <string.h>
31 #include <unistd.h>
32 #include <zlib.h>
33
34 #include "got_error.h"
35 #include "got_object.h"
36 #include "got_path.h"
37 #include "got_repository.h"
38
39 #include "got_lib_delta.h"
40 #include "got_lib_hash.h"
41 #include "got_lib_object.h"
42 #include "got_lib_privsep.h"
43
44 #include "gotconfig.h"
45
46 /* parse.y */
47 static volatile sig_atomic_t sigint_received;
48
49 static void
50 catch_sigint(int signo)
51 {
52 sigint_received = 1;
53 }
54
55 static const struct got_error *
56 make_fetch_url(char **url, struct gotconfig_remote_repo *repo)
57 {
58 const struct got_error *err = NULL;
59 char *s = NULL, *p = NULL;
60 const char *protocol, *server, *repo_path;
61 int port;
62
63 *url = NULL;
64
65 if (repo->fetch_config && repo->fetch_config->protocol)
66 protocol = repo->fetch_config->protocol;
67 else
68 protocol = repo->protocol;
69 if (protocol == NULL)
70 return got_error_fmt(GOT_ERR_PARSE_CONFIG,
71 "fetch protocol required for remote repository \"%s\"",
72 repo->name);
73 if (asprintf(&s, "%s://", protocol) == -1)
74 return got_error_from_errno("asprintf");
75
76 if (repo->fetch_config && repo->fetch_config->server)
77 server = repo->fetch_config->server;
78 else
79 server = repo->server;
80 if (server == NULL)
81 return got_error_fmt(GOT_ERR_PARSE_CONFIG,
82 "fetch server required for remote repository \"%s\"",
83 repo->name);
84 p = s;
85 s = NULL;
86 if (asprintf(&s, "%s%s", p, server) == -1) {
87 err = got_error_from_errno("asprintf");
88 goto done;
89 }
90 free(p);
91 p = NULL;
92
93 if (repo->fetch_config && repo->fetch_config->server)
94 port = repo->fetch_config->port;
95 else
96 port = repo->port;
97 if (port) {
98 p = s;
99 s = NULL;
100 if (asprintf(&s, "%s:%d", p, repo->port) == -1) {
101 err = got_error_from_errno("asprintf");
102 goto done;
103 }
104 free(p);
105 p = NULL;
106 }
107
108 if (repo->fetch_config && repo->fetch_config->repository)
109 repo_path = repo->fetch_config->repository;
110 else
111 repo_path = repo->repository;
112 if (repo_path == NULL)
113 return got_error_fmt(GOT_ERR_PARSE_CONFIG,
114 "fetch repository path required for remote "
115 "repository \"%s\"", repo->name);
116
117 while (repo_path[0] == '/')
118 repo_path++;
119 p = s;
120 s = NULL;
121 if (asprintf(&s, "%s/%s", p, repo_path) == -1) {
122 err = got_error_from_errno("asprintf");
123 goto done;
124 }
125 free(p);
126 p = NULL;
127
128 got_path_strip_trailing_slashes(s);
129 done:
130 if (err) {
131 free(s);
132 free(p);
133 } else
134 *url = s;
135 return err;
136 }
137
138 static const struct got_error *
139 make_send_url(char **url, struct gotconfig_remote_repo *repo)
140 {
141 const struct got_error *err = NULL;
142 char *s = NULL, *p = NULL;
143 const char *protocol, *server, *repo_path;
144 int port;
145
146 *url = NULL;
147
148 if (repo->send_config && repo->send_config->protocol)
149 protocol = repo->send_config->protocol;
150 else
151 protocol = repo->protocol;
152 if (protocol == NULL)
153 return got_error_fmt(GOT_ERR_PARSE_CONFIG,
154 "send protocol required for remote repository \"%s\"",
155 repo->name);
156 if (asprintf(&s, "%s://", protocol) == -1)
157 return got_error_from_errno("asprintf");
158
159 if (repo->send_config && repo->send_config->server)
160 server = repo->send_config->server;
161 else
162 server = repo->server;
163 if (server == NULL)
164 return got_error_fmt(GOT_ERR_PARSE_CONFIG,
165 "send server required for remote repository \"%s\"",
166 repo->name);
167 p = s;
168 s = NULL;
169 if (asprintf(&s, "%s%s", p, server) == -1) {
170 err = got_error_from_errno("asprintf");
171 goto done;
172 }
173 free(p);
174 p = NULL;
175
176 if (repo->send_config && repo->send_config->server)
177 port = repo->send_config->port;
178 else
179 port = repo->port;
180 if (port) {
181 p = s;
182 s = NULL;
183 if (asprintf(&s, "%s:%d", p, repo->port) == -1) {
184 err = got_error_from_errno("asprintf");
185 goto done;
186 }
187 free(p);
188 p = NULL;
189 }
190
191 if (repo->send_config && repo->send_config->repository)
192 repo_path = repo->send_config->repository;
193 else
194 repo_path = repo->repository;
195 if (repo_path == NULL)
196 return got_error_fmt(GOT_ERR_PARSE_CONFIG,
197 "send repository path required for remote "
198 "repository \"%s\"", repo->name);
199
200 while (repo_path[0] == '/')
201 repo_path++;
202 p = s;
203 s = NULL;
204 if (asprintf(&s, "%s/%s", p, repo_path) == -1) {
205 err = got_error_from_errno("asprintf");
206 goto done;
207 }
208 free(p);
209 p = NULL;
210
211 got_path_strip_trailing_slashes(s);
212 done:
213 if (err) {
214 free(s);
215 free(p);
216 } else
217 *url = s;
218 return err;
219 }
220
221 static const struct got_error *
222 send_gotconfig_str(struct imsgbuf *ibuf, const char *value)
223 {
224 size_t len = value ? strlen(value) : 0;
225
226 if (imsg_compose(ibuf, GOT_IMSG_GOTCONFIG_STR_VAL, 0, 0, -1,
227 value, len) == -1)
228 return got_error_from_errno("imsg_compose GOTCONFIG_STR_VAL");
229
230 return got_privsep_flush_imsg(ibuf);
231 }
232
233 static const struct got_error *
234 send_gotconfig_remotes(struct imsgbuf *ibuf,
235 struct gotconfig_remote_repo_list *remotes, int nremotes)
236 {
237 const struct got_error *err = NULL;
238 struct got_imsg_remotes iremotes;
239 struct gotconfig_remote_repo *repo;
240 char *fetch_url = NULL, *send_url = NULL;
241
242 iremotes.nremotes = nremotes;
243 if (imsg_compose(ibuf, GOT_IMSG_GOTCONFIG_REMOTES, 0, 0, -1,
244 &iremotes, sizeof(iremotes)) == -1)
245 return got_error_from_errno("imsg_compose GOTCONFIG_REMOTES");
246
247 err = got_privsep_flush_imsg(ibuf);
248 if (err)
249 return err;
250
251 TAILQ_FOREACH(repo, remotes, entry) {
252 struct got_imsg_remote iremote;
253 size_t len = sizeof(iremote);
254 struct ibuf *wbuf;
255 struct node_branch *branch;
256 struct node_ref *ref;
257 int nfetch_branches = 0, nsend_branches = 0, nfetch_refs = 0;
258
259 if (repo->fetch_config && repo->fetch_config->branch)
260 branch = repo->fetch_config->branch;
261 else
262 branch = repo->branch;
263 while (branch) {
264 branch = branch->next;
265 nfetch_branches++;
266 }
267
268 if (repo->send_config && repo->send_config->branch)
269 branch = repo->send_config->branch;
270 else
271 branch = repo->branch;
272 while (branch) {
273 branch = branch->next;
274 nsend_branches++;
275 }
276
277 ref = repo->fetch_ref;
278 while (ref) {
279 ref = ref->next;
280 nfetch_refs++;
281 }
282
283 iremote.nfetch_branches = nfetch_branches;
284 iremote.nsend_branches = nsend_branches;
285 iremote.nfetch_refs = nfetch_refs;
286 iremote.mirror_references = repo->mirror_references;
287 iremote.fetch_all_branches = repo->fetch_all_branches;
288
289 iremote.name_len = strlen(repo->name);
290 len += iremote.name_len;
291
292 err = make_fetch_url(&fetch_url, repo);
293 if (err)
294 break;
295 iremote.fetch_url_len = strlen(fetch_url);
296 len += iremote.fetch_url_len;
297
298 err = make_send_url(&send_url, repo);
299 if (err)
300 break;
301 iremote.send_url_len = strlen(send_url);
302 len += iremote.send_url_len;
303
304 wbuf = imsg_create(ibuf, GOT_IMSG_GOTCONFIG_REMOTE, 0, 0, len);
305 if (wbuf == NULL) {
306 err = got_error_from_errno(
307 "imsg_create GOTCONFIG_REMOTE");
308 break;
309 }
310
311 if (imsg_add(wbuf, &iremote, sizeof(iremote)) == -1) {
312 err = got_error_from_errno(
313 "imsg_add GOTCONFIG_REMOTE");
314 break;
315 }
316
317 if (imsg_add(wbuf, repo->name, iremote.name_len) == -1) {
318 err = got_error_from_errno(
319 "imsg_add GOTCONFIG_REMOTE");
320 break;
321 }
322 if (imsg_add(wbuf, fetch_url, iremote.fetch_url_len) == -1) {
323 err = got_error_from_errno(
324 "imsg_add GOTCONFIG_REMOTE");
325 break;
326 }
327 if (imsg_add(wbuf, send_url, iremote.send_url_len) == -1) {
328 err = got_error_from_errno(
329 "imsg_add GOTCONFIG_REMOTE");
330 break;
331 }
332
333 imsg_close(ibuf, wbuf);
334 err = got_privsep_flush_imsg(ibuf);
335 if (err)
336 break;
337
338 free(fetch_url);
339 fetch_url = NULL;
340 free(send_url);
341 send_url = NULL;
342
343 if (repo->fetch_config && repo->fetch_config->branch)
344 branch = repo->fetch_config->branch;
345 else
346 branch = repo->branch;
347 while (branch) {
348 err = send_gotconfig_str(ibuf, branch->branch_name);
349 if (err)
350 break;
351 branch = branch->next;
352 }
353
354 if (repo->send_config && repo->send_config->branch)
355 branch = repo->send_config->branch;
356 else
357 branch = repo->branch;
358 while (branch) {
359 err = send_gotconfig_str(ibuf, branch->branch_name);
360 if (err)
361 break;
362 branch = branch->next;
363 }
364
365 ref = repo->fetch_ref;
366 while (ref) {
367 err = send_gotconfig_str(ibuf, ref->ref_name);
368 if (err)
369 break;
370 ref = ref->next;
371 }
372 }
373
374 free(fetch_url);
375 free(send_url);
376 return err;
377 }
378
379 static const struct got_error *
380 validate_protocol(const char *protocol, const char *repo_name)
381 {
382 static char msg[512];
383
384 if (strcmp(protocol, "ssh") != 0 &&
385 strcmp(protocol, "git+ssh") != 0 &&
386 strcmp(protocol, "git") != 0 &&
387 strcmp(protocol, "git+http") != 0 &&
388 strcmp(protocol, "http") != 0 &&
389 strcmp(protocol, "https") != 0 &&
390 strcmp(protocol, "git+https") != 0) {
391 snprintf(msg, sizeof(msg),"unknown protocol \"%s\" "
392 "for remote repository \"%s\"", protocol, repo_name);
393 return got_error_msg(GOT_ERR_PARSE_CONFIG, msg);
394 }
395
396 return NULL;
397 }
398
399 static const struct got_error *
400 validate_config(struct gotconfig *gotconfig)
401 {
402 const struct got_error *err;
403 struct gotconfig_remote_repo *repo, *repo2;
404 static char msg[512];
405
406 TAILQ_FOREACH(repo, &gotconfig->remotes, entry) {
407 if (repo->name == NULL) {
408 return got_error_msg(GOT_ERR_PARSE_CONFIG,
409 "name required for remote repository");
410 }
411
412 TAILQ_FOREACH(repo2, &gotconfig->remotes, entry) {
413 if (repo == repo2 ||
414 strcmp(repo->name, repo2->name) != 0)
415 continue;
416 snprintf(msg, sizeof(msg),
417 "duplicate remote repository name '%s'",
418 repo->name);
419 return got_error_msg(GOT_ERR_PARSE_CONFIG, msg);
420 }
421
422 if (repo->server == NULL &&
423 (repo->fetch_config == NULL ||
424 repo->fetch_config->server == NULL) &&
425 (repo->send_config == NULL ||
426 repo->send_config->server == NULL)) {
427 snprintf(msg, sizeof(msg),
428 "server required for remote repository \"%s\"",
429 repo->name);
430 return got_error_msg(GOT_ERR_PARSE_CONFIG, msg);
431 }
432
433 if (repo->protocol == NULL &&
434 (repo->fetch_config == NULL ||
435 repo->fetch_config->protocol == NULL) &&
436 (repo->send_config == NULL ||
437 repo->send_config->protocol == NULL)) {
438 snprintf(msg, sizeof(msg),
439 "protocol required for remote repository \"%s\"",
440 repo->name);
441 return got_error_msg(GOT_ERR_PARSE_CONFIG, msg);
442 }
443
444 if (repo->protocol) {
445 err = validate_protocol(repo->protocol, repo->name);
446 if (err)
447 return err;
448 }
449 if (repo->fetch_config && repo->fetch_config->protocol) {
450 err = validate_protocol(repo->fetch_config->protocol,
451 repo->name);
452 if (err)
453 return err;
454 }
455 if (repo->send_config && repo->send_config->protocol) {
456 err = validate_protocol(repo->send_config->protocol,
457 repo->name);
458 if (err)
459 return err;
460 }
461
462 if (repo->repository == NULL &&
463 (repo->fetch_config == NULL ||
464 repo->fetch_config->repository == NULL) &&
465 (repo->send_config == NULL ||
466 repo->send_config->repository == NULL)) {
467 snprintf(msg, sizeof(msg),
468 "repository path required for remote "
469 "repository \"%s\"", repo->name);
470 return got_error_msg(GOT_ERR_PARSE_CONFIG, msg);
471 }
472 }
473
474 return NULL;
475 }
476
477 int
478 main(int argc, char *argv[])
479 {
480 const struct got_error *err = NULL;
481 struct imsgbuf ibuf;
482 struct gotconfig *gotconfig = NULL;
483 size_t datalen;
484 const char *filename = "got.conf";
485 #if 0
486 static int attached;
487
488 while (!attached)
489 sleep(1);
490 #endif
491 signal(SIGINT, catch_sigint);
492
493 if (imsgbuf_init(&ibuf, GOT_IMSG_FD_CHILD) == -1) {
494 warn("imsgbuf_init");
495 return 1;
496 }
497 imsgbuf_allow_fdpass(&ibuf);
498
499 #ifndef PROFILE
500 /* revoke access to most system calls */
501 if (pledge("stdio recvfd", NULL) == -1) {
502 err = got_error_from_errno("pledge");
503 got_privsep_send_error(&ibuf, err);
504 return 1;
505 }
506
507 /* revoke fs access */
508 if (landlock_no_fs() == -1) {
509 err = got_error_from_errno("landlock_no_fs");
510 got_privsep_send_error(&ibuf, err);
511 return 1;
512 }
513 if (cap_enter() == -1) {
514 err = got_error_from_errno("cap_enter");
515 got_privsep_send_error(&ibuf, err);
516 return 1;
517 }
518 #endif
519
520 if (argc > 1)
521 filename = argv[1];
522
523 for (;;) {
524 struct imsg imsg;
525 int fd = -1;
526
527 memset(&imsg, 0, sizeof(imsg));
528
529 if (sigint_received) {
530 err = got_error(GOT_ERR_CANCELLED);
531 break;
532 }
533
534 err = got_privsep_recv_imsg(&imsg, &ibuf, 0);
535 if (err) {
536 if (err->code == GOT_ERR_PRIVSEP_PIPE)
537 err = NULL;
538 break;
539 }
540
541 if (imsg.hdr.type == GOT_IMSG_STOP)
542 break;
543
544 switch (imsg.hdr.type) {
545 case GOT_IMSG_GOTCONFIG_PARSE_REQUEST:
546 datalen = imsg.hdr.len - IMSG_HEADER_SIZE;
547 if (datalen != 0) {
548 err = got_error(GOT_ERR_PRIVSEP_LEN);
549 break;
550 }
551 fd = imsg_get_fd(&imsg);
552 if (fd == -1){
553 err = got_error(GOT_ERR_PRIVSEP_NO_FD);
554 break;
555 }
556
557 if (gotconfig)
558 gotconfig_free(gotconfig);
559 err = gotconfig_parse(&gotconfig, filename, &fd);
560 if (err)
561 break;
562 err = validate_config(gotconfig);
563 break;
564 case GOT_IMSG_GOTCONFIG_AUTHOR_REQUEST:
565 if (gotconfig == NULL) {
566 err = got_error(GOT_ERR_PRIVSEP_MSG);
567 break;
568 }
569 err = send_gotconfig_str(&ibuf,
570 gotconfig->author ? gotconfig->author : "");
571 break;
572 case GOT_IMSG_GOTCONFIG_ALLOWEDSIGNERS_REQUEST:
573 if (gotconfig == NULL) {
574 err = got_error(GOT_ERR_PRIVSEP_MSG);
575 break;
576 }
577 err = send_gotconfig_str(&ibuf,
578 gotconfig->allowed_signers_file ?
579 gotconfig->allowed_signers_file : "");
580 break;
581 case GOT_IMSG_GOTCONFIG_REVOKEDSIGNERS_REQUEST:
582 if (gotconfig == NULL) {
583 err = got_error(GOT_ERR_PRIVSEP_MSG);
584 break;
585 }
586 err = send_gotconfig_str(&ibuf,
587 gotconfig->revoked_signers_file ?
588 gotconfig->revoked_signers_file : "");
589 break;
590 case GOT_IMSG_GOTCONFIG_SIGNERID_REQUEST:
591 if (gotconfig == NULL) {
592 err = got_error(GOT_ERR_PRIVSEP_MSG);
593 break;
594 }
595 err = send_gotconfig_str(&ibuf,
596 gotconfig->signer_id ? gotconfig->signer_id : "");
597 break;
598 case GOT_IMSG_GOTCONFIG_REMOTES_REQUEST:
599 if (gotconfig == NULL) {
600 err = got_error(GOT_ERR_PRIVSEP_MSG);
601 break;
602 }
603 err = send_gotconfig_remotes(&ibuf,
604 &gotconfig->remotes, gotconfig->nremotes);
605 break;
606 default:
607 err = got_error(GOT_ERR_PRIVSEP_MSG);
608 break;
609 }
610
611 if (fd != -1) {
612 if (close(fd) == -1 && err == NULL)
613 err = got_error_from_errno("close");
614 }
615
616 imsg_free(&imsg);
617 if (err)
618 break;
619 }
620
621 if (err) {
622 if (!sigint_received && err->code != GOT_ERR_PRIVSEP_PIPE) {
623 fprintf(stderr, "%s: %s\n", getprogname(), err->msg);
624 got_privsep_send_error(&ibuf, err);
625 }
626 }
627 imsgbuf_clear(&ibuf);
628 if (close(GOT_IMSG_FD_CHILD) == -1 && err == NULL)
629 err = got_error_from_errno("close");
630 return err ? 1 : 0;
631 }
portable version of Game of Trees