2 d65a88a2 2021-09-05 stsp * Copyright (c) 2018, 2019 Ori Bernstein <ori@openbsd.org>
3 d65a88a2 2021-09-05 stsp * Copyright (c) 2021 Stefan Sperling <stsp@openbsd.org>
5 d65a88a2 2021-09-05 stsp * Permission to use, copy, modify, and distribute this software for any
6 d65a88a2 2021-09-05 stsp * purpose with or without fee is hereby granted, provided that the above
7 d65a88a2 2021-09-05 stsp * copyright notice and this permission notice appear in all copies.
9 d65a88a2 2021-09-05 stsp * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
10 d65a88a2 2021-09-05 stsp * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
11 d65a88a2 2021-09-05 stsp * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
12 d65a88a2 2021-09-05 stsp * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
13 d65a88a2 2021-09-05 stsp * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
14 d65a88a2 2021-09-05 stsp * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
15 d65a88a2 2021-09-05 stsp * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
18 5e5da8c4 2021-09-05 stsp #include <sys/queue.h>
19 d65a88a2 2021-09-05 stsp #include <sys/types.h>
20 d65a88a2 2021-09-05 stsp #include <sys/socket.h>
21 ced242c2 2024-04-14 me #include <sys/uio.h>
22 d65a88a2 2021-09-05 stsp #include <netdb.h>
24 c10270f6 2021-09-06 naddy #include <assert.h>
25 d65a88a2 2021-09-05 stsp #include <err.h>
26 6cc8a118 2023-03-10 op #include <limits.h>
27 ced242c2 2024-04-14 me #include <sha1.h>
28 ced242c2 2024-04-14 me #include <stdint.h>
29 ced242c2 2024-04-14 me #include <limits.h>
30 d65a88a2 2021-09-05 stsp #include <stdio.h>
31 d65a88a2 2021-09-05 stsp #include <stdlib.h>
32 d65a88a2 2021-09-05 stsp #include <string.h>
33 d65a88a2 2021-09-05 stsp #include <unistd.h>
34 ced242c2 2024-04-14 me #include <imsg.h>
36 d65a88a2 2021-09-05 stsp #include "got_error.h"
37 5e5da8c4 2021-09-05 stsp #include "got_path.h"
38 ced242c2 2024-04-14 me #include "got_object.h"
40 d65a88a2 2021-09-05 stsp #include "got_lib_dial.h"
41 ced242c2 2024-04-14 me #include "got_lib_delta.h"
42 ced242c2 2024-04-14 me #include "got_lib_object.h"
43 ced242c2 2024-04-14 me #include "got_lib_privsep.h"
44 336075a4 2022-06-25 op #include "got_dial.h"
46 c10270f6 2021-09-06 naddy #ifndef nitems
47 c10270f6 2021-09-06 naddy #define nitems(_a) (sizeof((_a)) / sizeof((_a)[0]))
50 d65a88a2 2021-09-05 stsp #ifndef ssizeof
51 d65a88a2 2021-09-05 stsp #define ssizeof(_x) ((ssize_t)(sizeof(_x)))
55 d65a88a2 2021-09-05 stsp #define MIN(_a,_b) ((_a) < (_b) ? (_a) : (_b))
58 d65a88a2 2021-09-05 stsp #ifndef GOT_DIAL_PATH_SSH
59 d65a88a2 2021-09-05 stsp #define GOT_DIAL_PATH_SSH "/usr/bin/ssh"
62 d65a88a2 2021-09-05 stsp /* IANA assigned */
63 d65a88a2 2021-09-05 stsp #define GOT_DEFAULT_GIT_PORT 9418
64 d65a88a2 2021-09-05 stsp #define GOT_DEFAULT_GIT_PORT_STR "9418"
66 d65a88a2 2021-09-05 stsp const struct got_error *
67 d65a88a2 2021-09-05 stsp got_dial_apply_unveil(const char *proto)
69 d65a88a2 2021-09-05 stsp if (strcmp(proto, "git+ssh") == 0 || strcmp(proto, "ssh") == 0) {
70 d65a88a2 2021-09-05 stsp if (unveil(GOT_DIAL_PATH_SSH, "x") != 0) {
71 d65a88a2 2021-09-05 stsp return got_error_from_errno2("unveil",
72 d65a88a2 2021-09-05 stsp GOT_DIAL_PATH_SSH);
76 ced242c2 2024-04-14 me if (strstr(proto, "http") != NULL) {
77 ad3b5b58 2024-04-14 me if (unveil(GOT_PATH_PROG_FETCH_HTTP, "x") != 0) {
78 ced242c2 2024-04-14 me return got_error_from_errno2("unveil",
79 ad3b5b58 2024-04-14 me GOT_PATH_PROG_FETCH_HTTP);
83 d65a88a2 2021-09-05 stsp return NULL;
87 58e31a80 2022-06-27 op hassuffix(const char *base, const char *suf)
91 5e5da8c4 2021-09-05 stsp nb = strlen(base);
92 5e5da8c4 2021-09-05 stsp ns = strlen(suf);
93 5e5da8c4 2021-09-05 stsp if (ns <= nb && strcmp(base + (nb - ns), suf) == 0)
98 d65a88a2 2021-09-05 stsp const struct got_error *
99 5e5da8c4 2021-09-05 stsp got_dial_parse_uri(char **proto, char **host, char **port,
100 5e5da8c4 2021-09-05 stsp char **server_path, char **repo_name, const char *uri)
102 5e5da8c4 2021-09-05 stsp const struct got_error *err = NULL;
103 5e5da8c4 2021-09-05 stsp char *s, *p, *q;
105 5e5da8c4 2021-09-05 stsp *proto = *host = *port = *server_path = *repo_name = NULL;
107 5e5da8c4 2021-09-05 stsp p = strstr(uri, "://");
109 5e5da8c4 2021-09-05 stsp /* Try parsing Git's "scp" style URL syntax. */
110 5e5da8c4 2021-09-05 stsp *proto = strdup("ssh");
111 805253d5 2022-03-07 naddy if (*proto == NULL) {
112 5e5da8c4 2021-09-05 stsp err = got_error_from_errno("strdup");
115 5e5da8c4 2021-09-05 stsp s = (char *)uri;
116 5e5da8c4 2021-09-05 stsp q = strchr(s, ':');
117 5e5da8c4 2021-09-05 stsp if (q == NULL) {
118 5e5da8c4 2021-09-05 stsp err = got_error(GOT_ERR_PARSE_URI);
121 5e5da8c4 2021-09-05 stsp /* No slashes allowed before first colon. */
122 5e5da8c4 2021-09-05 stsp p = strchr(s, '/');
123 5e5da8c4 2021-09-05 stsp if (p && q > p) {
124 5e5da8c4 2021-09-05 stsp err = got_error(GOT_ERR_PARSE_URI);
127 5e5da8c4 2021-09-05 stsp *host = strndup(s, q - s);
128 5e5da8c4 2021-09-05 stsp if (*host == NULL) {
129 5e5da8c4 2021-09-05 stsp err = got_error_from_errno("strndup");
132 3a12860c 2022-03-07 stsp if ((*host)[0] == '\0') {
133 3a12860c 2022-03-07 stsp err = got_error(GOT_ERR_PARSE_URI);
138 5e5da8c4 2021-09-05 stsp *proto = strndup(uri, p - uri);
139 805253d5 2022-03-07 naddy if (*proto == NULL) {
140 5e5da8c4 2021-09-05 stsp err = got_error_from_errno("strndup");
145 5e5da8c4 2021-09-05 stsp p = strstr(s, "/");
146 5e5da8c4 2021-09-05 stsp if (p == NULL || strlen(p) == 1) {
147 5e5da8c4 2021-09-05 stsp err = got_error(GOT_ERR_PARSE_URI);
151 5e5da8c4 2021-09-05 stsp q = memchr(s, ':', p - s);
153 5e5da8c4 2021-09-05 stsp *host = strndup(s, q - s);
154 5e5da8c4 2021-09-05 stsp if (*host == NULL) {
155 5e5da8c4 2021-09-05 stsp err = got_error_from_errno("strndup");
158 3a12860c 2022-03-07 stsp if ((*host)[0] == '\0') {
159 3a12860c 2022-03-07 stsp err = got_error(GOT_ERR_PARSE_URI);
162 5e5da8c4 2021-09-05 stsp *port = strndup(q + 1, p - (q + 1));
163 5e5da8c4 2021-09-05 stsp if (*port == NULL) {
164 5e5da8c4 2021-09-05 stsp err = got_error_from_errno("strndup");
167 3a12860c 2022-03-07 stsp if ((*port)[0] == '\0') {
168 3a12860c 2022-03-07 stsp err = got_error(GOT_ERR_PARSE_URI);
172 5e5da8c4 2021-09-05 stsp *host = strndup(s, p - s);
173 5e5da8c4 2021-09-05 stsp if (*host == NULL) {
174 5e5da8c4 2021-09-05 stsp err = got_error_from_errno("strndup");
177 3a12860c 2022-03-07 stsp if ((*host)[0] == '\0') {
178 3a12860c 2022-03-07 stsp err = got_error(GOT_ERR_PARSE_URI);
184 5e5da8c4 2021-09-05 stsp while (p[0] == '/' && p[1] == '/')
186 5e5da8c4 2021-09-05 stsp *server_path = strdup(p);
187 5e5da8c4 2021-09-05 stsp if (*server_path == NULL) {
188 5e5da8c4 2021-09-05 stsp err = got_error_from_errno("strdup");
191 5e5da8c4 2021-09-05 stsp got_path_strip_trailing_slashes(*server_path);
192 3a12860c 2022-03-07 stsp if ((*server_path)[0] == '\0') {
193 5e5da8c4 2021-09-05 stsp err = got_error(GOT_ERR_PARSE_URI);
197 3a12860c 2022-03-07 stsp err = got_path_basename(repo_name, *server_path);
200 3a12860c 2022-03-07 stsp if (hassuffix(*repo_name, ".git"))
201 3a12860c 2022-03-07 stsp (*repo_name)[strlen(*repo_name) - 4] = '\0';
202 3a12860c 2022-03-07 stsp if ((*repo_name)[0] == '\0')
203 3a12860c 2022-03-07 stsp err = got_error(GOT_ERR_PARSE_URI);
206 5e5da8c4 2021-09-05 stsp free(*proto);
207 5e5da8c4 2021-09-05 stsp *proto = NULL;
208 5e5da8c4 2021-09-05 stsp free(*host);
209 5e5da8c4 2021-09-05 stsp *host = NULL;
210 5e5da8c4 2021-09-05 stsp free(*port);
211 5e5da8c4 2021-09-05 stsp *port = NULL;
212 5e5da8c4 2021-09-05 stsp free(*server_path);
213 5e5da8c4 2021-09-05 stsp *server_path = NULL;
214 5e5da8c4 2021-09-05 stsp free(*repo_name);
215 5e5da8c4 2021-09-05 stsp *repo_name = NULL;
217 5e5da8c4 2021-09-05 stsp return err;
221 6cc8a118 2023-03-10 op * Escape a given path for the shell which will be started by sshd.
222 6cc8a118 2023-03-10 op * In particular, git-shell is known to require single-quote characters
223 6cc8a118 2023-03-10 op * around its repository path argument and will refuse to run otherwise.
225 6cc8a118 2023-03-10 op static const struct got_error *
226 6cc8a118 2023-03-10 op escape_path(char *buf, size_t bufsize, const char *path)
228 6cc8a118 2023-03-10 op const char *p;
234 6cc8a118 2023-03-10 op if (bufsize > 1)
237 6cc8a118 2023-03-10 op while (*p != '\0' && (q - buf < bufsize)) {
238 6cc8a118 2023-03-10 op /* git escapes ! too */
239 6cc8a118 2023-03-10 op if (*p != '\'' && *p != '!') {
244 6cc8a118 2023-03-10 op if (q - buf + 4 >= bufsize)
252 6cc8a118 2023-03-10 op if (*p == '\0' && (q - buf + 1 < bufsize)) {
258 6cc8a118 2023-03-10 op return got_error_fmt(GOT_ERR_NO_SPACE, "overlong path: %s", path);
261 5e5da8c4 2021-09-05 stsp const struct got_error *
262 d65a88a2 2021-09-05 stsp got_dial_ssh(pid_t *newpid, int *newfd, const char *host,
263 1eb38992 2023-04-14 stsp const char *port, const char *path, const char *command, int verbosity)
265 d65a88a2 2021-09-05 stsp const struct got_error *error = NULL;
266 d65a88a2 2021-09-05 stsp int pid, pfd[2];
267 d65a88a2 2021-09-05 stsp char cmd[64];
268 6cc8a118 2023-03-10 op char escaped_path[PATH_MAX];
269 58e31a80 2022-06-27 op const char *argv[11];
270 d65a88a2 2021-09-05 stsp int i = 0, j;
272 d65a88a2 2021-09-05 stsp *newpid = -1;
273 d65a88a2 2021-09-05 stsp *newfd = -1;
275 6cc8a118 2023-03-10 op error = escape_path(escaped_path, sizeof(escaped_path), path);
277 6cc8a118 2023-03-10 op return error;
279 d65a88a2 2021-09-05 stsp argv[i++] = GOT_DIAL_PATH_SSH;
280 d65a88a2 2021-09-05 stsp if (port != NULL) {
281 d65a88a2 2021-09-05 stsp argv[i++] = "-p";
282 d65a88a2 2021-09-05 stsp argv[i++] = (char *)port;
284 d65a88a2 2021-09-05 stsp if (verbosity == -1) {
285 d65a88a2 2021-09-05 stsp argv[i++] = "-q";
287 d65a88a2 2021-09-05 stsp /* ssh(1) allows up to 3 "-v" options. */
288 d65a88a2 2021-09-05 stsp for (j = 0; j < MIN(3, verbosity); j++)
289 d65a88a2 2021-09-05 stsp argv[i++] = "-v";
291 d65a88a2 2021-09-05 stsp argv[i++] = "--";
292 d65a88a2 2021-09-05 stsp argv[i++] = (char *)host;
293 d65a88a2 2021-09-05 stsp argv[i++] = (char *)cmd;
294 6cc8a118 2023-03-10 op argv[i++] = (char *)escaped_path;
295 d65a88a2 2021-09-05 stsp argv[i++] = NULL;
296 c10270f6 2021-09-06 naddy assert(i <= nitems(argv));
298 d65a88a2 2021-09-05 stsp if (socketpair(AF_UNIX, SOCK_STREAM, PF_UNSPEC, pfd) == -1)
299 d65a88a2 2021-09-05 stsp return got_error_from_errno("socketpair");
301 d65a88a2 2021-09-05 stsp pid = fork();
302 d65a88a2 2021-09-05 stsp if (pid == -1) {
303 d65a88a2 2021-09-05 stsp error = got_error_from_errno("fork");
304 d65a88a2 2021-09-05 stsp close(pfd[0]);
305 d65a88a2 2021-09-05 stsp close(pfd[1]);
306 d65a88a2 2021-09-05 stsp return error;
307 d65a88a2 2021-09-05 stsp } else if (pid == 0) {
308 d65a88a2 2021-09-05 stsp if (close(pfd[1]) == -1)
309 d65a88a2 2021-09-05 stsp err(1, "close");
310 d65a88a2 2021-09-05 stsp if (dup2(pfd[0], 0) == -1)
311 d65a88a2 2021-09-05 stsp err(1, "dup2");
312 d65a88a2 2021-09-05 stsp if (dup2(pfd[0], 1) == -1)
313 d65a88a2 2021-09-05 stsp err(1, "dup2");
314 1eb38992 2023-04-14 stsp if (strlcpy(cmd, command, sizeof(cmd)) >= sizeof(cmd))
315 d65a88a2 2021-09-05 stsp err(1, "snprintf");
316 58e31a80 2022-06-27 op if (execv(GOT_DIAL_PATH_SSH, (char *const *)argv) == -1)
317 7a86002d 2024-02-16 op err(1, "execv %s", GOT_DIAL_PATH_SSH);
318 d65a88a2 2021-09-05 stsp abort(); /* not reached */
320 d65a88a2 2021-09-05 stsp if (close(pfd[0]) == -1)
321 d65a88a2 2021-09-05 stsp return got_error_from_errno("close");
322 d65a88a2 2021-09-05 stsp *newpid = pid;
323 d65a88a2 2021-09-05 stsp *newfd = pfd[1];
324 d65a88a2 2021-09-05 stsp return NULL;
328 d65a88a2 2021-09-05 stsp const struct got_error *
329 d65a88a2 2021-09-05 stsp got_dial_git(int *newfd, const char *host, const char *port,
330 1eb38992 2023-04-14 stsp const char *path, const char *command)
332 d65a88a2 2021-09-05 stsp const struct got_error *err = NULL;
333 d65a88a2 2021-09-05 stsp struct addrinfo hints, *servinfo, *p;
334 d65a88a2 2021-09-05 stsp char *cmd = NULL;
335 d65a88a2 2021-09-05 stsp int fd = -1, len, r, eaicode;
337 d65a88a2 2021-09-05 stsp *newfd = -1;
339 d65a88a2 2021-09-05 stsp if (port == NULL)
340 d65a88a2 2021-09-05 stsp port = GOT_DEFAULT_GIT_PORT_STR;
342 d65a88a2 2021-09-05 stsp memset(&hints, 0, sizeof hints);
343 d65a88a2 2021-09-05 stsp hints.ai_family = AF_UNSPEC;
344 d65a88a2 2021-09-05 stsp hints.ai_socktype = SOCK_STREAM;
345 d65a88a2 2021-09-05 stsp eaicode = getaddrinfo(host, port, &hints, &servinfo);
346 d65a88a2 2021-09-05 stsp if (eaicode) {
347 d65a88a2 2021-09-05 stsp char msg[512];
348 d65a88a2 2021-09-05 stsp snprintf(msg, sizeof(msg), "%s: %s", host,
349 d65a88a2 2021-09-05 stsp gai_strerror(eaicode));
350 d65a88a2 2021-09-05 stsp return got_error_msg(GOT_ERR_ADDRINFO, msg);
353 d65a88a2 2021-09-05 stsp for (p = servinfo; p != NULL; p = p->ai_next) {
354 d65a88a2 2021-09-05 stsp if ((fd = socket(p->ai_family, p->ai_socktype,
355 d65a88a2 2021-09-05 stsp p->ai_protocol)) == -1)
357 d65a88a2 2021-09-05 stsp if (connect(fd, p->ai_addr, p->ai_addrlen) == 0) {
358 d65a88a2 2021-09-05 stsp err = NULL;
361 d65a88a2 2021-09-05 stsp err = got_error_from_errno("connect");
364 9ea55f08 2022-09-05 op freeaddrinfo(servinfo);
365 d65a88a2 2021-09-05 stsp if (p == NULL)
368 1eb38992 2023-04-14 stsp if (asprintf(&cmd, "%s %s", command, path) == -1) {
369 d65a88a2 2021-09-05 stsp err = got_error_from_errno("asprintf");
372 d65a88a2 2021-09-05 stsp len = 4 + strlen(cmd) + 1 + strlen("host=") + strlen(host) + 1;
373 d65a88a2 2021-09-05 stsp r = dprintf(fd, "%04x%s%chost=%s%c", len, cmd, '\0', host, '\0');
375 d65a88a2 2021-09-05 stsp err = got_error_from_errno("dprintf");
379 d65a88a2 2021-09-05 stsp if (fd != -1)
382 d65a88a2 2021-09-05 stsp *newfd = fd;
383 d65a88a2 2021-09-05 stsp return err;
386 ced242c2 2024-04-14 me const struct got_error *
387 ced242c2 2024-04-14 me got_dial_http(pid_t *newpid, int *newfd, const char *host,
388 ced242c2 2024-04-14 me const char *port, const char *path, int verbosity, int tls)
390 ced242c2 2024-04-14 me const struct got_error *error = NULL;
391 ced242c2 2024-04-14 me int pid, pfd[2];
392 ced242c2 2024-04-14 me const char *argv[8];
395 ced242c2 2024-04-14 me *newpid = -1;
399 ced242c2 2024-04-14 me port = tls ? "443" : "80";
401 ad3b5b58 2024-04-14 me argv[i++] = GOT_PATH_PROG_FETCH_HTTP;
402 ced242c2 2024-04-14 me if (verbosity == -1)
403 ced242c2 2024-04-14 me argv[i++] = "-q";
404 ced242c2 2024-04-14 me else if (verbosity > 0)
405 ced242c2 2024-04-14 me argv[i++] = "-v";
406 ced242c2 2024-04-14 me argv[i++] = "--";
407 ced242c2 2024-04-14 me argv[i++] = tls ? "https" : "http";
408 ced242c2 2024-04-14 me argv[i++] = host;
409 ced242c2 2024-04-14 me argv[i++] = port;
410 ced242c2 2024-04-14 me argv[i++] = path;
411 ced242c2 2024-04-14 me argv[i++] = NULL;
412 ced242c2 2024-04-14 me assert(i <= nitems(argv));
414 ced242c2 2024-04-14 me if (socketpair(AF_UNIX, SOCK_STREAM, PF_UNSPEC, pfd) == -1)
415 ced242c2 2024-04-14 me return got_error_from_errno("socketpair");
417 ced242c2 2024-04-14 me pid = fork();
418 ced242c2 2024-04-14 me if (pid == -1) {
419 ced242c2 2024-04-14 me error = got_error_from_errno("fork");
420 ced242c2 2024-04-14 me close(pfd[0]);
421 ced242c2 2024-04-14 me close(pfd[1]);
422 ced242c2 2024-04-14 me return error;
423 ced242c2 2024-04-14 me } else if (pid == 0) {
424 ced242c2 2024-04-14 me if (close(pfd[1]) == -1)
425 ced242c2 2024-04-14 me err(1, "close");
426 ced242c2 2024-04-14 me if (dup2(pfd[0], 0) == -1)
427 ced242c2 2024-04-14 me err(1, "dup2");
428 ced242c2 2024-04-14 me if (dup2(pfd[0], 1) == -1)
429 ced242c2 2024-04-14 me err(1, "dup2");
430 ad3b5b58 2024-04-14 me if (execv(GOT_PATH_PROG_FETCH_HTTP, (char *const *)argv) == -1)
431 ced242c2 2024-04-14 me err(1, "execv");
432 ced242c2 2024-04-14 me abort(); /* not reached */
434 ced242c2 2024-04-14 me if (close(pfd[0]) == -1)
435 ced242c2 2024-04-14 me return got_error_from_errno("close");
436 ced242c2 2024-04-14 me *newpid = pid;
437 ced242c2 2024-04-14 me *newfd = pfd[1];
442 1eb38992 2023-04-14 stsp const struct got_error *
443 1eb38992 2023-04-14 stsp got_dial_parse_command(char **command, char **repo_path, const char *gitcmd)
445 1eb38992 2023-04-14 stsp const struct got_error *err = NULL;
446 1eb38992 2023-04-14 stsp size_t len, cmdlen, pathlen;
447 1eb38992 2023-04-14 stsp char *path0 = NULL, *path, *abspath = NULL, *canonpath = NULL;
448 1eb38992 2023-04-14 stsp const char *relpath;
450 1eb38992 2023-04-14 stsp *command = NULL;
451 1eb38992 2023-04-14 stsp *repo_path = NULL;
453 1eb38992 2023-04-14 stsp len = strlen(gitcmd);
455 1eb38992 2023-04-14 stsp if (len >= strlen(GOT_DIAL_CMD_SEND) &&
456 1eb38992 2023-04-14 stsp strncmp(gitcmd, GOT_DIAL_CMD_SEND,
457 1eb38992 2023-04-14 stsp strlen(GOT_DIAL_CMD_SEND)) == 0)
458 1eb38992 2023-04-14 stsp cmdlen = strlen(GOT_DIAL_CMD_SEND);
459 1eb38992 2023-04-14 stsp else if (len >= strlen(GOT_DIAL_CMD_FETCH) &&
460 1eb38992 2023-04-14 stsp strncmp(gitcmd, GOT_DIAL_CMD_FETCH,
461 1eb38992 2023-04-14 stsp strlen(GOT_DIAL_CMD_FETCH)) == 0)
462 1eb38992 2023-04-14 stsp cmdlen = strlen(GOT_DIAL_CMD_FETCH);
464 1eb38992 2023-04-14 stsp return got_error(GOT_ERR_BAD_PACKET);
466 1eb38992 2023-04-14 stsp if (len <= cmdlen + 1 || gitcmd[cmdlen] != ' ')
467 1eb38992 2023-04-14 stsp return got_error(GOT_ERR_BAD_PACKET);
469 1eb38992 2023-04-14 stsp if (memchr(&gitcmd[cmdlen + 1], '\0', len - cmdlen) == NULL)
470 1eb38992 2023-04-14 stsp return got_error(GOT_ERR_BAD_PATH);
472 1eb38992 2023-04-14 stsp /* Forbid linefeeds in paths, like Git does. */
473 1eb38992 2023-04-14 stsp if (memchr(&gitcmd[cmdlen + 1], '\n', len - cmdlen) != NULL)
474 1eb38992 2023-04-14 stsp return got_error(GOT_ERR_BAD_PATH);
476 1eb38992 2023-04-14 stsp path0 = strdup(&gitcmd[cmdlen + 1]);
477 1eb38992 2023-04-14 stsp if (path0 == NULL)
478 1eb38992 2023-04-14 stsp return got_error_from_errno("strdup");
479 1eb38992 2023-04-14 stsp path = path0;
480 1eb38992 2023-04-14 stsp pathlen = strlen(path);
483 1eb38992 2023-04-14 stsp * Git clients send a shell command.
484 1eb38992 2023-04-14 stsp * Trim spaces and quotes around the path.
486 1eb38992 2023-04-14 stsp while (path[0] == '\'' || path[0] == '\"' || path[0] == ' ') {
490 1eb38992 2023-04-14 stsp while (pathlen > 0 &&
491 1eb38992 2023-04-14 stsp (path[pathlen - 1] == '\'' || path[pathlen - 1] == '\"' ||
492 1eb38992 2023-04-14 stsp path[pathlen - 1] == ' ')) {
493 1eb38992 2023-04-14 stsp path[pathlen - 1] = '\0';
497 1eb38992 2023-04-14 stsp /* Deny an empty repository path. */
498 1eb38992 2023-04-14 stsp if (path[0] == '\0' || got_path_is_root_dir(path)) {
499 1eb38992 2023-04-14 stsp err = got_error(GOT_ERR_NOT_GIT_REPO);
503 1eb38992 2023-04-14 stsp if (asprintf(&abspath, "/%s", path) == -1) {
504 1eb38992 2023-04-14 stsp err = got_error_from_errno("asprintf");
507 1eb38992 2023-04-14 stsp pathlen = strlen(abspath);
508 1eb38992 2023-04-14 stsp canonpath = malloc(pathlen + 1);
509 1eb38992 2023-04-14 stsp if (canonpath == NULL) {
510 1eb38992 2023-04-14 stsp err = got_error_from_errno("malloc");
513 1eb38992 2023-04-14 stsp err = got_canonpath(abspath, canonpath, pathlen + 1);
517 1eb38992 2023-04-14 stsp relpath = canonpath;
518 1eb38992 2023-04-14 stsp while (relpath[0] == '/')
520 1eb38992 2023-04-14 stsp *repo_path = strdup(relpath);
521 1eb38992 2023-04-14 stsp if (*repo_path == NULL) {
522 1eb38992 2023-04-14 stsp err = got_error_from_errno("strdup");
525 1eb38992 2023-04-14 stsp *command = strndup(gitcmd, cmdlen);
526 1eb38992 2023-04-14 stsp if (*command == NULL)
527 1eb38992 2023-04-14 stsp err = got_error_from_errno("strndup");
529 1eb38992 2023-04-14 stsp free(path0);
530 1eb38992 2023-04-14 stsp free(abspath);
531 1eb38992 2023-04-14 stsp free(canonpath);
533 1eb38992 2023-04-14 stsp free(*repo_path);
534 1eb38992 2023-04-14 stsp *repo_path = NULL;
536 1eb38992 2023-04-14 stsp return err;
