git
189 строк · 4.8 Кб
1// Copyright 2012 Google Inc. All Rights Reserved.
2//
3// Licensed under the Apache License, Version 2.0 (the "License");
4// you may not use this file except in compliance with the License.
5// You may obtain a copy of the License at
6//
7// http://www.apache.org/licenses/LICENSE-2.0
8//
9// Unless required by applicable law or agreed to in writing, software
10// distributed under the License is distributed on an "AS IS" BASIS,
11// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12// See the License for the specific language governing permissions and
13// limitations under the License.
14
15package main
16
17import (
18"bufio"
19"errors"
20"fmt"
21"net"
22"net/url"
23"os"
24"os/exec"
25"strings"
26"syscall"
27"time"
28)
29
30type Client struct {
31ProxyBin string
32Args []string
33
34insecure bool
35}
36
37func (c *Client) Run() error {
38if err := c.resolveArgs(); err != nil {
39return fmt.Errorf("resolveArgs() got error: %v", err)
40}
41
42// Connect to the proxy.
43uconn, hconn, addr, err := c.connect()
44if err != nil {
45return fmt.Errorf("connect() got error: %v", err)
46}
47// Keep the unix socket connection open for the duration of the request.
48defer uconn.Close()
49// Keep a connection to the HTTP server open, so no other user can
50// bind on the same address so long as the process is running.
51defer hconn.Close()
52
53// Start the git-remote-http subprocess.
54cargs := []string{"-c", fmt.Sprintf("http.proxy=%v", addr), "remote-http"}
55cargs = append(cargs, c.Args...)
56cmd := exec.Command("git", cargs...)
57
58for _, v := range os.Environ() {
59if !strings.HasPrefix(v, "GIT_PERSISTENT_HTTPS_SECURE=") {
60cmd.Env = append(cmd.Env, v)
61}
62}
63// Set the GIT_PERSISTENT_HTTPS_SECURE environment variable when
64// the proxy is using a SSL connection. This allows credential helpers
65// to identify secure proxy connections, despite being passed an HTTP
66// scheme.
67if !c.insecure {
68cmd.Env = append(cmd.Env, "GIT_PERSISTENT_HTTPS_SECURE=1")
69}
70
71cmd.Stdin = os.Stdin
72cmd.Stdout = os.Stdout
73cmd.Stderr = os.Stderr
74if err := cmd.Run(); err != nil {
75if eerr, ok := err.(*exec.ExitError); ok {
76if stat, ok := eerr.ProcessState.Sys().(syscall.WaitStatus); ok && stat.ExitStatus() != 0 {
77os.Exit(stat.ExitStatus())
78}
79}
80return fmt.Errorf("git-remote-http subprocess got error: %v", err)
81}
82return nil
83}
84
85func (c *Client) connect() (uconn net.Conn, hconn net.Conn, addr string, err error) {
86uconn, err = DefaultSocket.Dial()
87if err != nil {
88if e, ok := err.(*net.OpError); ok && (os.IsNotExist(e.Err) || e.Err == syscall.ECONNREFUSED) {
89if err = c.startProxy(); err == nil {
90uconn, err = DefaultSocket.Dial()
91}
92}
93if err != nil {
94return
95}
96}
97
98if addr, err = c.readAddr(uconn); err != nil {
99return
100}
101
102// Open a tcp connection to the proxy.
103if hconn, err = net.Dial("tcp", addr); err != nil {
104return
105}
106
107// Verify the address hasn't changed ownership.
108var addr2 string
109if addr2, err = c.readAddr(uconn); err != nil {
110return
111} else if addr != addr2 {
112err = fmt.Errorf("address changed after connect. got %q, want %q", addr2, addr)
113return
114}
115return
116}
117
118func (c *Client) readAddr(conn net.Conn) (string, error) {
119conn.SetDeadline(time.Now().Add(5 * time.Second))
120data := make([]byte, 100)
121n, err := conn.Read(data)
122if err != nil {
123return "", fmt.Errorf("error reading unix socket: %v", err)
124} else if n == 0 {
125return "", errors.New("empty data response")
126}
127conn.Write([]byte{1}) // Ack
128
129var addr string
130if addrs := strings.Split(string(data[:n]), "\n"); len(addrs) != 2 {
131return "", fmt.Errorf("got %q, wanted 2 addresses", data[:n])
132} else if c.insecure {
133addr = addrs[1]
134} else {
135addr = addrs[0]
136}
137return addr, nil
138}
139
140func (c *Client) startProxy() error {
141cmd := exec.Command(c.ProxyBin)
142cmd.SysProcAttr = &syscall.SysProcAttr{Setpgid: true}
143stdout, err := cmd.StdoutPipe()
144if err != nil {
145return err
146}
147defer stdout.Close()
148if err := cmd.Start(); err != nil {
149return err
150}
151result := make(chan error)
152go func() {
153bytes, _, err := bufio.NewReader(stdout).ReadLine()
154if line := string(bytes); err == nil && line != "OK" {
155err = fmt.Errorf("proxy returned %q, want \"OK\"", line)
156}
157result <- err
158}()
159select {
160case err := <-result:
161return err
162case <-time.After(5 * time.Second):
163return errors.New("timeout waiting for proxy to start")
164}
165panic("not reachable")
166}
167
168func (c *Client) resolveArgs() error {
169if nargs := len(c.Args); nargs == 0 {
170return errors.New("remote needed")
171} else if nargs > 2 {
172return fmt.Errorf("want at most 2 args, got %v", c.Args)
173}
174
175// Rewrite the url scheme to be http.
176idx := len(c.Args) - 1
177rawurl := c.Args[idx]
178rurl, err := url.Parse(rawurl)
179if err != nil {
180return fmt.Errorf("invalid remote: %v", err)
181}
182c.insecure = rurl.Scheme == "persistent-http"
183rurl.Scheme = "http"
184c.Args[idx] = rurl.String()
185if idx != 0 && c.Args[0] == rawurl {
186c.Args[0] = c.Args[idx]
187}
188return nil
189}
190