upstream/mercurial-mirror Files · contrib/check-py3-compat.py

dispatch: protect against malicious 'hg serve --stdio' invocations (sec)...

dispatch: protect against malicious 'hg serve --stdio' invocations (sec) Some shared-ssh installations assume that 'hg serve --stdio' is a safe command to run for minimally trusted users. Unfortunately, the messy implementation of argument parsing here meant that trying to access a repo named '--debugger' would give the user a pdb prompt, thereby sidestepping any hoped-for sandboxing. Serving repositories over HTTP(S) is unaffected. We're not currently hardening any subcommands other than 'serve'. If your service exposes other commands to users with arbitrary repository names, it is imperative that you defend against repository names of '--debugger' and anything starting with '--config'. The read-only mode of hg-ssh stopped working because it provided its hook configuration to "hg serve --stdio" via --config parameter. This is banned for security reasons now. This patch switches it to directly call ui.setconfig(). If your custom hosting infrastructure relies on passing --config to "hg serve --stdio", you'll need to find a different way to get that configuration into Mercurial, either by using ui.setconfig() as hg-ssh does in this patch, or by placing an hgrc file someplace where Mercurial will read it. mitrandir@fb.com provided some extra fixes for the dispatch code and for hg-ssh in places that I overlooked.

Yuya Nishihara - - Load All Authors

File last commit:

r30117:b85fa6bf default


                r32050:77eaf953

4.1.3 stable

Download file

             check-py3-compat.py
        
                    95 lines
            
             | 3.2 KiB
            
                | text/x-python
            
             |
                PythonLexer
            
             / contrib / check-py3-compat.py
          
                    History
                
                 |
                  Source
                 | Raw
                 |Copy content
                 |Copy permalink

        Gregory Szorc
    
tests: add test for Python 3 compatibility...

              r27279
            
      #!/usr/bin/env python

      #

      # check-py3-compat - check Python 3 compatibility of Mercurial files

      #

      # Copyright 2015 Gregory Szorc <gregory.szorc@gmail.com>

      #

      # This software may be used and distributed according to the terms of the

      # GNU General Public License version 2 or any later version.

      from __future__ import absolute_import, print_function

      import ast

        Gregory Szorc
    
tests: try to import modules with Python 3...

              r28584
            
      import os

        Gregory Szorc
    
tests: add test for Python 3 compatibility...

              r27279
            
      import sys

        Gregory Szorc
    
tests: try to import modules with Python 3...

              r28584
            
      import traceback

        Gregory Szorc
    
tests: add test for Python 3 compatibility...

              r27279
            
        Gregory Szorc
    
tests: perform an ast parse with Python 3...

              r28583
            
      def check_compat_py2(f):

          """Check Python 3 compatibility for a file with Python 2"""

        Gregory Szorc
    
tests: add test for Python 3 compatibility...

              r27279
            
          with open(f, 'rb') as fh:

              content = fh.read()

        Yuya Nishihara
    
test: make check-py3-compat.py ignore empty code more reliably...

              r28475
            
          root = ast.parse(content)

        Gregory Szorc
    
tests: add test for Python 3 compatibility...

              r27279
            
        Gregory Szorc
    
contrib: ignore empty files in check-py3-compat.py

              r27331
            
          # Ignore empty files.

        Yuya Nishihara
    
test: make check-py3-compat.py ignore empty code more reliably...

              r28475
            
          if not root.body:

        Gregory Szorc
    
contrib: ignore empty files in check-py3-compat.py

              r27331
            
              return

        Gregory Szorc
    
tests: add test for Python 3 compatibility...

              r27279
            
          futures = set()

          haveprint = False

          for node in ast.walk(root):

              if isinstance(node, ast.ImportFrom):

                  if node.module == '__future__':

                      futures |= set(n.name for n in node.names)

              elif isinstance(node, ast.Print):

                  haveprint = True

          if 'absolute_import' not in futures:

              print('%s not using absolute_import' % f)

          if haveprint and 'print_function' not in futures:

              print('%s requires print_function' % f)

        Gregory Szorc
    
tests: perform an ast parse with Python 3...

              r28583
            
      def check_compat_py3(f):

          """Check Python 3 compatibility of a file with Python 3."""

        Yuya Nishihara
    
py3: make check-py3-compat.py import importlib only if necessary...

              r30117
            
          import importlib  # not available on Python 2.6

        Gregory Szorc
    
tests: perform an ast parse with Python 3...

              r28583
            
          with open(f, 'rb') as fh:

              content = fh.read()

          try:

              ast.parse(content)

          except SyntaxError as e:

              print('%s: invalid syntax: %s' % (f, e))

              return

        Gregory Szorc
    
tests: try to import modules with Python 3...

              r28584
            
          # Try to import the module.

          # For now we only support mercurial.* and hgext.* modules because figuring

          # out module paths for things not in a package can be confusing.

          if f.startswith(('hgext/', 'mercurial/')) and not f.endswith('__init__.py'):

              assert f.endswith('.py')

        FUJIWARA Katsunori
    
py3: make check-py3-compat.py use correct module name at loading pure modules...

              r29751
            
              name = f.replace('/', '.')[:-3].replace('.pure.', '.')

        Yuya Nishihara
    
py3: remove superfluous indent from check-py3-compat.py

              r30095
            
              try:

                  importlib.import_module(name)

              except Exception as e:

                  exc_type, exc_value, tb = sys.exc_info()

                  # We walk the stack and ignore frames from our custom importer,

                  # import mechanisms, and stdlib modules. This kinda/sorta

                  # emulates CPython behavior in import.c while also attempting

                  # to pin blame on a Mercurial file.

                  for frame in reversed(traceback.extract_tb(tb)):

                      if frame.name == '_call_with_frames_removed':

                          continue

                      if 'importlib' in frame.filename:

                          continue

                      if 'mercurial/__init__.py' in frame.filename:

                          continue

                      if frame.filename.startswith(sys.prefix):

                          continue

                      break

        Gregory Szorc
    
tests: try to import modules with Python 3...

              r28584
            
        Yuya Nishihara
    
py3: remove superfluous indent from check-py3-compat.py

              r30095
            
                  if frame.filename:

                      filename = os.path.basename(frame.filename)

                      print('%s: error importing: <%s> %s (error at %s:%d)' % (

                            f, type(e).__name__, e, filename, frame.lineno))

                  else:

                      print('%s: error importing module: <%s> %s (line %d)' % (

                            f, type(e).__name__, e, frame.lineno))

        Gregory Szorc
    
tests: try to import modules with Python 3...

              r28584
            
        Gregory Szorc
    
tests: add test for Python 3 compatibility...

              r27279
            
      if __name__ == '__main__':

        Gregory Szorc
    
tests: perform an ast parse with Python 3...

              r28583
            
          if sys.version_info[0] == 2:

              fn = check_compat_py2

          else:

              fn = check_compat_py3

        Gregory Szorc
    
tests: add test for Python 3 compatibility...

              r27279
            
          for f in sys.argv[1:]:

        Gregory Szorc
    
tests: perform an ast parse with Python 3...

              r28583
            
              fn(f)

        Gregory Szorc
    
tests: add test for Python 3 compatibility...

              r27279
            
          sys.exit(0)

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages

Gregory Szorc tests: add test for Python 3 compatibility...	r27279	#!/usr/bin/env python
		#
		# check-py3-compat - check Python 3 compatibility of Mercurial files
		#
		# Copyright 2015 Gregory Szorc <gregory.szorc@gmail.com>
		#
		# This software may be used and distributed according to the terms of the
		# GNU General Public License version 2 or any later version.

		from __future__ import absolute_import, print_function

		import ast
Gregory Szorc tests: try to import modules with Python 3...	r28584	import os
Gregory Szorc tests: add test for Python 3 compatibility...	r27279	import sys
Gregory Szorc tests: try to import modules with Python 3...	r28584	import traceback
Gregory Szorc tests: add test for Python 3 compatibility...	r27279
Gregory Szorc tests: perform an ast parse with Python 3...	r28583	def check_compat_py2(f):
		"""Check Python 3 compatibility for a file with Python 2"""
Gregory Szorc tests: add test for Python 3 compatibility...	r27279	with open(f, 'rb') as fh:
		content = fh.read()
Yuya Nishihara test: make check-py3-compat.py ignore empty code more reliably...	r28475	root = ast.parse(content)
Gregory Szorc tests: add test for Python 3 compatibility...	r27279
Gregory Szorc contrib: ignore empty files in check-py3-compat.py	r27331	# Ignore empty files.
Yuya Nishihara test: make check-py3-compat.py ignore empty code more reliably...	r28475	if not root.body:
Gregory Szorc contrib: ignore empty files in check-py3-compat.py	r27331	return

Gregory Szorc tests: add test for Python 3 compatibility...	r27279	futures = set()
		haveprint = False
		for node in ast.walk(root):
		if isinstance(node, ast.ImportFrom):
		if node.module == '__future__':
		futures \|= set(n.name for n in node.names)
		elif isinstance(node, ast.Print):
		haveprint = True

		if 'absolute_import' not in futures:
		print('%s not using absolute_import' % f)
		if haveprint and 'print_function' not in futures:
		print('%s requires print_function' % f)

Gregory Szorc tests: perform an ast parse with Python 3...	r28583	def check_compat_py3(f):
		"""Check Python 3 compatibility of a file with Python 3."""
Yuya Nishihara py3: make check-py3-compat.py import importlib only if necessary...	r30117	import importlib # not available on Python 2.6
Gregory Szorc tests: perform an ast parse with Python 3...	r28583	with open(f, 'rb') as fh:
		content = fh.read()

		try:
		ast.parse(content)
		except SyntaxError as e:
		print('%s: invalid syntax: %s' % (f, e))
		return

Gregory Szorc tests: try to import modules with Python 3...	r28584	# Try to import the module.
		# For now we only support mercurial.* and hgext.* modules because figuring
		# out module paths for things not in a package can be confusing.
		if f.startswith(('hgext/', 'mercurial/')) and not f.endswith('__init__.py'):
		assert f.endswith('.py')
FUJIWARA Katsunori py3: make check-py3-compat.py use correct module name at loading pure modules...	r29751	name = f.replace('/', '.')[:-3].replace('.pure.', '.')
Yuya Nishihara py3: remove superfluous indent from check-py3-compat.py	r30095	try:
		importlib.import_module(name)
		except Exception as e:
		exc_type, exc_value, tb = sys.exc_info()
		# We walk the stack and ignore frames from our custom importer,
		# import mechanisms, and stdlib modules. This kinda/sorta
		# emulates CPython behavior in import.c while also attempting
		# to pin blame on a Mercurial file.
		for frame in reversed(traceback.extract_tb(tb)):
		if frame.name == '_call_with_frames_removed':
		continue
		if 'importlib' in frame.filename:
		continue
		if 'mercurial/__init__.py' in frame.filename:
		continue
		if frame.filename.startswith(sys.prefix):
		continue
		break
Gregory Szorc tests: try to import modules with Python 3...	r28584
Yuya Nishihara py3: remove superfluous indent from check-py3-compat.py	r30095	if frame.filename:
		filename = os.path.basename(frame.filename)
		print('%s: error importing: <%s> %s (error at %s:%d)' % (
		f, type(e).__name__, e, filename, frame.lineno))
		else:
		print('%s: error importing module: <%s> %s (line %d)' % (
		f, type(e).__name__, e, frame.lineno))
Gregory Szorc tests: try to import modules with Python 3...	r28584
Gregory Szorc tests: add test for Python 3 compatibility...	r27279	if __name__ == '__main__':
Gregory Szorc tests: perform an ast parse with Python 3...	r28583	if sys.version_info[0] == 2:
		fn = check_compat_py2
		else:
		fn = check_compat_py3

Gregory Szorc tests: add test for Python 3 compatibility...	r27279	for f in sys.argv[1:]:
Gregory Szorc tests: perform an ast parse with Python 3...	r28583	fn(f)
Gregory Szorc tests: add test for Python 3 compatibility...	r27279
		sys.exit(0)