upstream/mercurial-mirror Files · contrib/hg-ssh

revlog: skeleton support for version 2 revlogs...

revlog: skeleton support for version 2 revlogs There are a number of improvements we want to make to revlogs that will require a new version - version 2. It is unclear what the full set of improvements will be or when we'll be done with them. What I do know is that the process will likely take longer than a single release, will require input from various stakeholders to evaluate changes, and will have many contentious debates and bikeshedding. It is unrealistic to develop revlog version 2 up front: there are just too many uncertainties that we won't know until things are implemented and experiments are run. Some changes will also be invasive and prone to bit rot, so sitting on dozens of patches is not practical. This commit introduces skeleton support for version 2 revlogs in a way that is flexible and not bound by backwards compatibility concerns. An experimental repo requirement for denoting revlog v2 has been added. The requirement string has a sub-version component to it. This will allow us to declare multiple requirements in the course of developing revlog v2. Whenever we change the in-development revlog v2 format, we can tweak the string, creating a new requirement and locking out old clients. This will allow us to make as many backwards incompatible changes and experiments to revlog v2 as we want. In other words, we can land code and make meaningful progress towards revlog v2 while still maintaining extreme format flexibility up until the point we freeze the format and remove the experimental labels. To enable the new repo requirement, you must supply an experimental and undocumented config option. But not just any boolean flag will do: you need to explicitly use a value that no sane person should ever type. This is an additional guard against enabling revlog v2 on an installation it shouldn't be enabled on. The specific scenario I'm trying to prevent is say a user with a 4.4 client with a frozen format enabling the option but then downgrading to 4.3 and accidentally creating repos with an outdated and unsupported repo format. Requiring a "challenge" string should prevent this. Because the format is not yet finalized and I don't want to take any chances, revlog v2's version is currently 0xDEAD. I figure squatting on a value we're likely never to use as an actual revlog version to mean "internal testing only" is acceptable. And "dead" is easily recognized as something meaningful. There is a bunch of cleanup that is needed before work on revlog v2 begins in earnest. I plan on doing that work once this patch is accepted and we're comfortable with the idea of starting down this path.

Augie Fackler - - Load All Authors

File last commit:

r32050:77eaf953 4.1.3 stable


                r32697:19b9fc40

default

Download file

             hg-ssh
        
                    87 lines
            
             | 3.0 KiB
            
                | text/plain
            
             |
                TextLexer

/ contrib / hg-ssh

History | Source | Raw |Copy content |Copy permalink

Thomas Arendsen Hein Added hg-ssh - a wrapper for ssh access to a limited set of mercurial repos...	r1537	#!/usr/bin/env python
		#
Thomas Arendsen Hein Adjust contrib/hg-ssh for moved dispatch() function.	r5191	# Copyright 2005-2007 by Intevation GmbH <intevation@intevation.de>
Martin Geisler add blank line after copyright notices and after header	r8228	#
Thomas Arendsen Hein Added hg-ssh - a wrapper for ssh access to a limited set of mercurial repos...	r1537	# Author(s):
		# Thomas Arendsen Hein <thomas@intevation.de>
		#
Martin Geisler updated license to be explicit about GPL version 2	r8225	# This software may be used and distributed according to the terms of the
Matt Mackall Update license to GPLv2+	r10263	# GNU General Public License version 2 or any later version.
Thomas Arendsen Hein Added hg-ssh - a wrapper for ssh access to a limited set of mercurial repos...	r1537
		"""
		hg-ssh - a wrapper for ssh access to a limited set of mercurial repos

		To be used in ~/.ssh/authorized_keys with the "command" option, see sshd(8):
		command="hg-ssh path/to/repo1 /path/to/repo2 ~/repo3 ~user/repo4" ssh-dss ...
		(probably together with these other useful options:
		no-port-forwarding,no-X11-forwarding,no-agent-forwarding)

Andreas Freimuth hg-ssh: fix duplicate word in docstring	r13996	This allows pull/push over ssh from/to the repositories given as arguments.
Thomas Arendsen Hein Added hg-ssh - a wrapper for ssh access to a limited set of mercurial repos...	r1537
		If all your repositories are subdirectories of a common directory, you can
		allow shorter paths with:
		command="cd path/to/my/repositories && hg-ssh repo1 subdir/repo2"
Thomas Arendsen Hein Added hint to hg-ssh that you can use shell pattern matching.	r1640
		You can use pattern matching of your normal shell, e.g.:
		command="cd repos && hg-ssh user/thomas/* projects/{mercurial,foo}"
David Schleimer hg-ssh: read-only flag...	r16836
		You can also add a --read-only flag to allow read-only access to a key, e.g.:
		command="hg-ssh --read-only repos/*"
Thomas Arendsen Hein Added hg-ssh - a wrapper for ssh access to a limited set of mercurial repos...	r1537	"""

Thomas Arendsen Hein Enable demandimport only in scripts, not in importable modules (issue605)...	r5197	# enable importing on demand to reduce startup time
		from mercurial import demandimport; demandimport.enable()

Augie Fackler dispatch: protect against malicious 'hg serve --stdio' invocations (sec)...	r32050	from mercurial import dispatch, ui as uimod
Thomas Arendsen Hein Added hg-ssh - a wrapper for ssh access to a limited set of mercurial repos...	r1537
Mads Kiilerich hg-ssh: use shlex for shell-like parsing of SSH_ORIGINAL_COMMAND...	r15897	import sys, os, shlex
Thomas Arendsen Hein Added hg-ssh - a wrapper for ssh access to a limited set of mercurial repos...	r1537
David Schleimer hg-ssh: refactor to have main() method...	r16779	def main():
		cwd = os.getcwd()
David Schleimer hg-ssh: read-only flag...	r16836	readonly = False
		args = sys.argv[1:]
		while len(args):
		if args[0] == '--read-only':
		readonly = True
		args.pop(0)
		else:
		break
David Schleimer hg-ssh: refactor to have main() method...	r16779	allowed_paths = [os.path.normpath(os.path.join(cwd,
		os.path.expanduser(path)))
David Schleimer hg-ssh: read-only flag...	r16836	for path in args]
David Schleimer hg-ssh: refactor to have main() method...	r16779	orig_cmd = os.getenv('SSH_ORIGINAL_COMMAND', '?')
		try:
		cmdargv = shlex.split(orig_cmd)
FUJIWARA Katsunori misc: use modern exception syntax...	r28047	except ValueError as e:
David Schleimer hg-ssh: refactor to have main() method...	r16779	sys.stderr.write('Illegal command "%s": %s\n' % (orig_cmd, e))
		sys.exit(255)
Thomas Arendsen Hein Added hg-ssh - a wrapper for ssh access to a limited set of mercurial repos...	r1537
David Schleimer hg-ssh: refactor to have main() method...	r16779	if cmdargv[:2] == ['hg', '-R'] and cmdargv[3:] == ['serve', '--stdio']:
		path = cmdargv[2]
		repo = os.path.normpath(os.path.join(cwd, os.path.expanduser(path)))
		if repo in allowed_paths:
David Schleimer hg-ssh: read-only flag...	r16836	cmd = ['-R', repo, 'serve', '--stdio']
Augie Fackler dispatch: protect against malicious 'hg serve --stdio' invocations (sec)...	r32050	req = dispatch.request(cmd)
David Schleimer hg-ssh: read-only flag...	r16836	if readonly:
Augie Fackler dispatch: protect against malicious 'hg serve --stdio' invocations (sec)...	r32050	if not req.ui:
		req.ui = uimod.ui.load()
		req.ui.setconfig('hooks', 'pretxnopen.hg-ssh',
		'python:__main__.rejectpush', 'hg-ssh')
		req.ui.setconfig('hooks', 'prepushkey.hg-ssh',
		'python:__main__.rejectpush', 'hg-ssh')
		dispatch.dispatch(req)
David Schleimer hg-ssh: refactor to have main() method...	r16779	else:
		sys.stderr.write('Illegal repository "%s"\n' % repo)
		sys.exit(255)
Thomas Arendsen Hein Added hg-ssh - a wrapper for ssh access to a limited set of mercurial repos...	r1537	else:
David Schleimer hg-ssh: refactor to have main() method...	r16779	sys.stderr.write('Illegal command "%s"\n' % orig_cmd)
Mads Kiilerich hg-ssh: exit with 255 instead of -1 on error...	r16607	sys.exit(255)
Thomas Arendsen Hein Added hg-ssh - a wrapper for ssh access to a limited set of mercurial repos...	r1537
David Schleimer hg-ssh: read-only flag...	r16836	def rejectpush(ui, **kwargs):
FUJIWARA Katsunori hg-ssh: parenthesize non-translated message...	r28045	ui.warn(("Permission denied\n"))
David Schleimer hg-ssh: read-only flag...	r16836	# mercurial hooks use unix process conventions for hook return values
		# so a truthy return means failure
		return True

David Schleimer hg-ssh: refactor to have main() method...	r16779	if __name__ == '__main__':
		main()

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages