upstream/mercurial-mirror Commit - r36390:b8d0761a

wireproto: document the wonky push protocol for SSH...

Gregory Szorc -

r36390:b8d0761a default

parent child

mercurial/sshpeer.py

0 +15 0

             # sshpeer.py - ssh repository proxy class for mercurial
             #
             # Copyright 2005, 2006 Matt Mackall <mpm@selenic.com>
             #
             # This software may be used and distributed according to the terms of the
             # GNU General Public License version 2 or any later version.
             from __future__ import absolute_import
             import re
             import uuid
             from .i18n import _
             from . import (
                 error,
                 pycompat,
                 util,
                 wireproto,
                 wireprotoserver,
             )
             def _serverquote(s):
                 """quote a string for the remote shell ... which we assume is sh"""
                 if not s:
                     return s
                 if re.match('[a-zA-Z0-9@%_+=:,./-]*$', s):
                     return s
                 return "'%s'" % s.replace("'", "'\\''")
             def _forwardoutput(ui, pipe):
                 """display all data currently available on pipe as remote output.
                 This is non blocking."""
                 s = util.readpipe(pipe)
                 if s:
                     for l in s.splitlines():
                         ui.status(_("remote: "), l, '\n')
             class doublepipe(object):
                 """Operate a side-channel pipe in addition of a main one
                 The side-channel pipe contains server output to be forwarded to the user
                 input. The double pipe will behave as the "main" pipe, but will ensure the
                 content of the "side" pipe is properly processed while we wait for blocking
                 call on the "main" pipe.
                 If large amounts of data are read from "main", the forward will cease after
                 the first bytes start to appear. This simplifies the implementation
                 without affecting actual output of sshpeer too much as we rarely issue
                 large read for data not yet emitted by the server.
                 The main pipe is expected to be a 'bufferedinputpipe' from the util module
                 that handle all the os specific bits. This class lives in this module
                 because it focus on behavior specific to the ssh protocol."""
                 def __init__(self, ui, main, side):
                     self._ui = ui
                     self._main = main
                     self._side = side
                 def _wait(self):
                     """wait until some data are available on main or side
                     return a pair of boolean (ismainready, issideready)
                     (This will only wait for data if the setup is supported by `util.poll`)
                     """
                     if (isinstance(self._main, util.bufferedinputpipe) and
                         self._main.hasbuffer):
                         # Main has data. Assume side is worth poking at.
                         return True, True
                     fds = [self._main.fileno(), self._side.fileno()]
                     try:
                         act = util.poll(fds)
                     except NotImplementedError:
                         # non supported yet case, assume all have data.
                         act = fds
                     return (self._main.fileno() in act, self._side.fileno() in act)
                 def write(self, data):
                     return self._call('write', data)
                 def read(self, size):
                     r = self._call('read', size)
                     if size != 0 and not r:
                         # We've observed a condition that indicates the
                         # stdout closed unexpectedly. Check stderr one
                         # more time and snag anything that's there before
                         # letting anyone know the main part of the pipe
                         # closed prematurely.
                         _forwardoutput(self._ui, self._side)
                     return r
                 def readline(self):
                     return self._call('readline')
                 def _call(self, methname, data=None):
                     """call <methname> on "main", forward output of "side" while blocking
                     """
                     # data can be '' or 0
                     if (data is not None and not data) or self._main.closed:
                         _forwardoutput(self._ui, self._side)
                         return ''
                     while True:
                         mainready, sideready = self._wait()
                         if sideready:
                             _forwardoutput(self._ui, self._side)
                         if mainready:
                             meth = getattr(self._main, methname)
                             if data is None:
                                 return meth()
                             else:
                                 return meth(data)
                 def close(self):
                     return self._main.close()
                 def flush(self):
                     return self._main.flush()
             def _cleanuppipes(ui, pipei, pipeo, pipee):
                 """Clean up pipes used by an SSH connection."""
                 if pipeo:
                     pipeo.close()
                 if pipei:
                     pipei.close()
                 if pipee:
                     # Try to read from the err descriptor until EOF.
                     try:
                         for l in pipee:
                             ui.status(_('remote: '), l)
                     except (IOError, ValueError):
                         pass
                     pipee.close()
             def _makeconnection(ui, sshcmd, args, remotecmd, path, sshenv=None):
                 """Create an SSH connection to a server.
                 Returns a tuple of (process, stdin, stdout, stderr) for the
                 spawned process.
                 """
                 cmd = '%s %s %s' % (
                     sshcmd,
                     args,
                     util.shellquote('%s -R %s serve --stdio' % (
                         _serverquote(remotecmd), _serverquote(path))))
                 ui.debug('running %s\n' % cmd)
                 cmd = util.quotecommand(cmd)
                 # no buffer allow the use of 'select'
                 # feel free to remove buffering and select usage when we ultimately
                 # move to threading.
                 stdin, stdout, stderr, proc = util.popen4(cmd, bufsize=0, env=sshenv)
                 return proc, stdin, stdout, stderr
             def _performhandshake(ui, stdin, stdout, stderr):
                 def badresponse():
                     # Flush any output on stderr.
                     _forwardoutput(ui, stderr)
                     msg = _('no suitable response from remote hg')
                     hint = ui.config('ui', 'ssherrorhint')
                     raise error.RepoError(msg, hint=hint)
                 # The handshake consists of sending wire protocol commands in reverse
                 # order of protocol implementation and then sniffing for a response
                 # to one of them.
                 #
                 # Those commands (from oldest to newest) are:
                 #
                 # ``between``
                 #   Asks for the set of revisions between a pair of revisions. Command
                 #   present in all Mercurial server implementations.
                 #
                 # ``hello``
                 #   Instructs the server to advertise its capabilities. Introduced in
                 #   Mercurial 0.9.1.
                 #
                 # ``upgrade``
                 #   Requests upgrade from default transport protocol version 1 to
                 #   a newer version. Introduced in Mercurial 4.6 as an experimental
                 #   feature.
                 #
                 # The ``between`` command is issued with a request for the null
                 # range. If the remote is a Mercurial server, this request will
                 # generate a specific response: ``1\n\n``. This represents the
                 # wire protocol encoded value for ``\n``. We look for ``1\n\n``
                 # in the output stream and know this is the response to ``between``
                 # and we're at the end of our handshake reply.
                 #
                 # The response to the ``hello`` command will be a line with the
                 # length of the value returned by that command followed by that
                 # value. If the server doesn't support ``hello`` (which should be
                 # rare), that line will be ``0\n``. Otherwise, the value will contain
                 # RFC 822 like lines. Of these, the ``capabilities:`` line contains
                 # the capabilities of the server.
                 #
                 # The ``upgrade`` command isn't really a command in the traditional
                 # sense of version 1 of the transport because it isn't using the
                 # proper mechanism for formatting insteads: instead, it just encodes
                 # arguments on the line, delimited by spaces.
                 #
                 # The ``upgrade`` line looks like ``upgrade <token> <capabilities>``.
                 # If the server doesn't support protocol upgrades, it will reply to
                 # this line with ``0\n``. Otherwise, it emits an
                 # ``upgraded <token> <protocol>`` line to both stdout and stderr.
                 # Content immediately following this line describes additional
                 # protocol and server state.
                 #
                 # In addition to the responses to our command requests, the server
                 # may emit "banner" output on stdout. SSH servers are allowed to
                 # print messages to stdout on login. Issuing commands on connection
                 # allows us to flush this banner output from the server by scanning
                 # for output to our well-known ``between`` command. Of course, if
                 # the banner contains ``1\n\n``, this will throw off our detection.
                 requestlog = ui.configbool('devel', 'debug.peer-request')
                 # Generate a random token to help identify responses to version 2
                 # upgrade request.
                 token = pycompat.sysbytes(str(uuid.uuid4()))
                 upgradecaps = [
                     ('proto', wireprotoserver.SSHV2),
                 ]
                 upgradecaps = util.urlreq.urlencode(upgradecaps)
                 try:
                     pairsarg = '%s-%s' % ('0' * 40, '0' * 40)
                     handshake = [
                         'hello\n',
                         'between\n',
                         'pairs %d\n' % len(pairsarg),
                         pairsarg,
                     ]
                     # Request upgrade to version 2 if configured.
                     if ui.configbool('experimental', 'sshpeer.advertise-v2'):
                         ui.debug('sending upgrade request: %s %s\n' % (token, upgradecaps))
                         handshake.insert(0, 'upgrade %s %s\n' % (token, upgradecaps))
                     if requestlog:
                         ui.debug('devel-peer-request: hello\n')
                     ui.debug('sending hello command\n')
                     if requestlog:
                         ui.debug('devel-peer-request: between\n')
                         ui.debug('devel-peer-request:   pairs: %d bytes\n' % len(pairsarg))
                     ui.debug('sending between command\n')
                     stdin.write(''.join(handshake))
                     stdin.flush()
                 except IOError:
                     badresponse()
                 # Assume version 1 of wire protocol by default.
                 protoname = wireprotoserver.SSHV1
                 reupgraded = re.compile(b'^upgraded %s (.*)$' % re.escape(token))
                 lines = ['', 'dummy']
                 max_noise = 500
                 while lines[-1] and max_noise:
                     try:
                         l = stdout.readline()
                         _forwardoutput(ui, stderr)
                         # Look for reply to protocol upgrade request. It has a token
                         # in it, so there should be no false positives.
                         m = reupgraded.match(l)
                         if m:
                             protoname = m.group(1)
                             ui.debug('protocol upgraded to %s\n' % protoname)
                             # If an upgrade was handled, the ``hello`` and ``between``
                             # requests are ignored. The next output belongs to the
                             # protocol, so stop scanning lines.
                             break
                         # Otherwise it could be a banner, ``0\n`` response if server
                         # doesn't support upgrade.
                         if lines[-1] == '1\n' and l == '\n':
                             break
                         if l:
                             ui.debug('remote: ', l)
                         lines.append(l)
                         max_noise -= 1
                     except IOError:
                         badresponse()
                 else:
                     badresponse()
                 caps = set()
                 # For version 1, we should see a ``capabilities`` line in response to the
                 # ``hello`` command.
                 if protoname == wireprotoserver.SSHV1:
                     for l in reversed(lines):
                         # Look for response to ``hello`` command. Scan from the back so
                         # we don't misinterpret banner output as the command reply.
                         if l.startswith('capabilities:'):
                             caps.update(l[:-1].split(':')[1].split())
                             break
                 elif protoname == wireprotoserver.SSHV2:
                     # We see a line with number of bytes to follow and then a value
                     # looking like ``capabilities: *``.
                     line = stdout.readline()
                     try:
                         valuelen = int(line)
                     except ValueError:
                         badresponse()
                     capsline = stdout.read(valuelen)
                     if not capsline.startswith('capabilities: '):
                         badresponse()
                     ui.debug('remote: %s\n' % capsline)
                     caps.update(capsline.split(':')[1].split())
                     # Trailing newline.
                     stdout.read(1)
                 # Error if we couldn't find capabilities, this means:
                 #
                 # 1. Remote isn't a Mercurial server
                 # 2. Remote is a <0.9.1 Mercurial server
                 # 3. Remote is a future Mercurial server that dropped ``hello``
                 #    and other attempted handshake mechanisms.
                 if not caps:
                     badresponse()
                 # Flush any output on stderr before proceeding.
                 _forwardoutput(ui, stderr)
                 return protoname, caps
             class sshv1peer(wireproto.wirepeer):
                 def __init__(self, ui, url, proc, stdin, stdout, stderr, caps):
                     """Create a peer from an existing SSH connection.
                     ``proc`` is a handle on the underlying SSH process.
                     ``stdin``, ``stdout``, and ``stderr`` are handles on the stdio
                     pipes for that process.
                     ``caps`` is a set of capabilities supported by the remote.
                     """
                     self._url = url
                     self._ui = ui
                     # self._subprocess is unused. Keeping a handle on the process
                     # holds a reference and prevents it from being garbage collected.
                     self._subprocess = proc
                     # And we hook up our "doublepipe" wrapper to allow querying
                     # stderr any time we perform I/O.
                     stdout = doublepipe(ui, util.bufferedinputpipe(stdout), stderr)
                     stdin = doublepipe(ui, stdin, stderr)
                     self._pipeo = stdin
                     self._pipei = stdout
                     self._pipee = stderr
                     self._caps = caps
                 # Commands that have a "framed" response where the first line of the
                 # response contains the length of that response.
                 _FRAMED_COMMANDS = {
                     'batch',
                 }
                 # Begin of _basepeer interface.
                 @util.propertycache
                 def ui(self):
                     return self._ui
                 def url(self):
                     return self._url
                 def local(self):
                     return None
                 def peer(self):
                     return self
                 def canpush(self):
                     return True
                 def close(self):
                     pass
                 # End of _basepeer interface.
                 # Begin of _basewirecommands interface.
                 def capabilities(self):
                     return self._caps
                 # End of _basewirecommands interface.
                 def _readerr(self):
                     _forwardoutput(self.ui, self._pipee)
                 def _abort(self, exception):
                     self._cleanup()
                     raise exception
                 def _cleanup(self):
                     _cleanuppipes(self.ui, self._pipei, self._pipeo, self._pipee)
                 __del__ = _cleanup
                 def _sendrequest(self, cmd, args, framed=False):
                     if (self.ui.debugflag
                         and self.ui.configbool('devel', 'debug.peer-request')):
                         dbg = self.ui.debug
                         line = 'devel-peer-request: %s\n'
                         dbg(line % cmd)
                         for key, value in sorted(args.items()):
                             if not isinstance(value, dict):
                                 dbg(line % '  %s: %d bytes' % (key, len(value)))
                             else:
                                 for dk, dv in sorted(value.items()):
                                     dbg(line % '  %s-%s: %d' % (key, dk, len(dv)))
                     self.ui.debug("sending %s command\n" % cmd)
                     self._pipeo.write("%s\n" % cmd)
                     _func, names = wireproto.commands[cmd]
                     keys = names.split()
                     wireargs = {}
                     for k in keys:
                         if k == '*':
                             wireargs['*'] = args
                             break
                         else:
                             wireargs[k] = args[k]
                             del args[k]
                     for k, v in sorted(wireargs.iteritems()):
                         self._pipeo.write("%s %d\n" % (k, len(v)))
                         if isinstance(v, dict):
                             for dk, dv in v.iteritems():
                                 self._pipeo.write("%s %d\n" % (dk, len(dv)))
                                 self._pipeo.write(dv)
                         else:
                             self._pipeo.write(v)
                     self._pipeo.flush()
                     # We know exactly how many bytes are in the response. So return a proxy
                     # around the raw output stream that allows reading exactly this many
                     # bytes. Callers then can read() without fear of overrunning the
                     # response.
                     if framed:
                         amount = self._getamount()
                         return util.cappedreader(self._pipei, amount)
                     return self._pipei
                 def _callstream(self, cmd, **args):
                     args = pycompat.byteskwargs(args)
                     return self._sendrequest(cmd, args, framed=cmd in self._FRAMED_COMMANDS)
                 def _callcompressable(self, cmd, **args):
                     args = pycompat.byteskwargs(args)
                     return self._sendrequest(cmd, args, framed=cmd in self._FRAMED_COMMANDS)
                 def _call(self, cmd, **args):
                     args = pycompat.byteskwargs(args)
                     return self._sendrequest(cmd, args, framed=True).read()
                 def _callpush(self, cmd, fp, **args):
+                    # The server responds with an empty frame if the client should
+                    # continue submitting the payload.
                     r = self._call(cmd, **args)
                     if r:
                         return '', r
+                    # The payload consists of frames with content followed by an empty
+                    # frame.
                     for d in iter(lambda: fp.read(4096), ''):
                         self._writeframed(d)
                     self._writeframed("", flush=True)
+                    # In case of success, there is an empty frame and a frame containing
+                    # the integer result (as a string).
+                    # In case of error, there is a non-empty frame containing the error.
                     r = self._readframed()
                     if r:
                         return '', r
                     return self._readframed(), ''
                 def _calltwowaystream(self, cmd, fp, **args):
+                    # The server responds with an empty frame if the client should
+                    # continue submitting the payload.
                     r = self._call(cmd, **args)
                     if r:
                         # XXX needs to be made better
                         raise error.Abort(_('unexpected remote reply: %s') % r)
+                    # The payload consists of frames with content followed by an empty
+                    # frame.
                     for d in iter(lambda: fp.read(4096), ''):
                         self._writeframed(d)
                     self._writeframed("", flush=True)
                     return self._pipei
                 def _getamount(self):
                     l = self._pipei.readline()
                     if l == '\n':
                         self._readerr()
                         msg = _('check previous remote output')
                         self._abort(error.OutOfBandError(hint=msg))
                     self._readerr()
                     try:
                         return int(l)
                     except ValueError:
                         self._abort(error.ResponseError(_("unexpected response:"), l))
                 def _readframed(self):
                     return self._pipei.read(self._getamount())
                 def _writeframed(self, data, flush=False):
                     self._pipeo.write("%d\n" % len(data))
                     if data:
                         self._pipeo.write(data)
                     if flush:
                         self._pipeo.flush()
                     self._readerr()
             class sshv2peer(sshv1peer):
                 """A peer that speakers version 2 of the transport protocol."""
                 # Currently version 2 is identical to version 1 post handshake.
                 # And handshake is performed before the peer is instantiated. So
                 # we need no custom code.
             def instance(ui, path, create):
                 """Create an SSH peer.
                 The returned object conforms to the ``wireproto.wirepeer`` interface.
                 """
                 u = util.url(path, parsequery=False, parsefragment=False)
                 if u.scheme != 'ssh' or not u.host or u.path is None:
                     raise error.RepoError(_("couldn't parse location %s") % path)
                 util.checksafessh(path)
                 if u.passwd is not None:
                     raise error.RepoError(_('password in URL not supported'))
                 sshcmd = ui.config('ui', 'ssh')
                 remotecmd = ui.config('ui', 'remotecmd')
                 sshaddenv = dict(ui.configitems('sshenv'))
                 sshenv = util.shellenviron(sshaddenv)
                 remotepath = u.path or '.'
                 args = util.sshargs(sshcmd, u.host, u.user, u.port)
                 if create:
                     cmd = '%s %s %s' % (sshcmd, args,
                         util.shellquote('%s init %s' %
                             (_serverquote(remotecmd), _serverquote(remotepath))))
                     ui.debug('running %s\n' % cmd)
                     res = ui.system(cmd, blockedtag='sshpeer', environ=sshenv)
                     if res != 0:
                         raise error.RepoError(_('could not create remote repo'))
                 proc, stdin, stdout, stderr = _makeconnection(ui, sshcmd, args, remotecmd,
                                                               remotepath, sshenv)
                 try:
                     protoname, caps = _performhandshake(ui, stdin, stdout, stderr)
                 except Exception:
                     _cleanuppipes(ui, stdout, stdin, stderr)
                     raise
                 if protoname == wireprotoserver.SSHV1:
                     return sshv1peer(ui, path, proc, stdin, stdout, stderr, caps)
                 elif protoname == wireprotoserver.SSHV2:
                     return sshv2peer(ui, path, proc, stdin, stdout, stderr, caps)
                 else:
                     _cleanuppipes(ui, stdout, stdin, stderr)
                     raise error.RepoError(_('unknown version of SSH protocol: %s') %
                                           protoname)

mercurial/wireprotoserver.py

0 +5 -1

             # Copyright 21 May 2005 - (c) 2005 Jake Edge <jake@edge2.net>
             # Copyright 2005-2007 Matt Mackall <mpm@selenic.com>
             #
             # This software may be used and distributed according to the terms of the
             # GNU General Public License version 2 or any later version.
             from __future__ import absolute_import
             import contextlib
             import struct
             import sys
             from .i18n import _
             from . import (
                 encoding,
                 error,
                 hook,
                 pycompat,
                 util,
                 wireproto,
                 wireprototypes,
             )
             stringio = util.stringio
             urlerr = util.urlerr
             urlreq = util.urlreq
             HTTP_OK = 200
             HGTYPE = 'application/mercurial-0.1'
             HGTYPE2 = 'application/mercurial-0.2'
             HGERRTYPE = 'application/hg-error'
             # Names of the SSH protocol implementations.
             SSHV1 = 'ssh-v1'
             # This is advertised over the wire. Incremental the counter at the end
             # to reflect BC breakages.
             SSHV2 = 'exp-ssh-v2-0001'
             def decodevaluefromheaders(req, headerprefix):
                 """Decode a long value from multiple HTTP request headers.
                 Returns the value as a bytes, not a str.
                 """
                 chunks = []
                 i = 1
                 prefix = headerprefix.upper().replace(r'-', r'_')
                 while True:
                     v = req.env.get(r'HTTP_%s_%d' % (prefix, i))
                     if v is None:
                         break
                     chunks.append(pycompat.bytesurl(v))
                     i += 1
                 return ''.join(chunks)
             class httpv1protocolhandler(wireprototypes.baseprotocolhandler):
                 def __init__(self, req, ui):
                     self._req = req
                     self._ui = ui
                 @property
                 def name(self):
                     return 'http-v1'
                 def getargs(self, args):
                     knownargs = self._args()
                     data = {}
                     keys = args.split()
                     for k in keys:
                         if k == '*':
                             star = {}
                             for key in knownargs.keys():
                                 if key != 'cmd' and key not in keys:
                                     star[key] = knownargs[key][0]
                             data['*'] = star
                         else:
                             data[k] = knownargs[k][0]
                     return [data[k] for k in keys]
                 def _args(self):
                     args = util.rapply(pycompat.bytesurl, self._req.form.copy())
                     postlen = int(self._req.env.get(r'HTTP_X_HGARGS_POST', 0))
                     if postlen:
                         args.update(urlreq.parseqs(
                             self._req.read(postlen), keep_blank_values=True))
                         return args
                     argvalue = decodevaluefromheaders(self._req, r'X-HgArg')
                     args.update(urlreq.parseqs(argvalue, keep_blank_values=True))
                     return args
                 def forwardpayload(self, fp):
                     if r'HTTP_CONTENT_LENGTH' in self._req.env:
                         length = int(self._req.env[r'HTTP_CONTENT_LENGTH'])
                     else:
                         length = int(self._req.env[r'CONTENT_LENGTH'])
                     # If httppostargs is used, we need to read Content-Length
                     # minus the amount that was consumed by args.
                     length -= int(self._req.env.get(r'HTTP_X_HGARGS_POST', 0))
                     for s in util.filechunkiter(self._req, limit=length):
                         fp.write(s)
                 @contextlib.contextmanager
                 def mayberedirectstdio(self):
                     oldout = self._ui.fout
                     olderr = self._ui.ferr
                     out = util.stringio()
                     try:
                         self._ui.fout = out
                         self._ui.ferr = out
                         yield out
                     finally:
                         self._ui.fout = oldout
                         self._ui.ferr = olderr
                 def client(self):
                     return 'remote:%s:%s:%s' % (
                         self._req.env.get('wsgi.url_scheme') or 'http',
                         urlreq.quote(self._req.env.get('REMOTE_HOST', '')),
                         urlreq.quote(self._req.env.get('REMOTE_USER', '')))
             # This method exists mostly so that extensions like remotefilelog can
             # disable a kludgey legacy method only over http. As of early 2018,
             # there are no other known users, so with any luck we can discard this
             # hook if remotefilelog becomes a first-party extension.
             def iscmd(cmd):
                 return cmd in wireproto.commands
             def parsehttprequest(repo, req, query):
                 """Parse the HTTP request for a wire protocol request.
                 If the current request appears to be a wire protocol request, this
                 function returns a dict with details about that request, including
                 an ``abstractprotocolserver`` instance suitable for handling the
                 request. Otherwise, ``None`` is returned.
                 ``req`` is a ``wsgirequest`` instance.
                 """
                 # HTTP version 1 wire protocol requests are denoted by a "cmd" query
                 # string parameter. If it isn't present, this isn't a wire protocol
                 # request.
                 if r'cmd' not in req.form:
                     return None
                 cmd = pycompat.sysbytes(req.form[r'cmd'][0])
                 # The "cmd" request parameter is used by both the wire protocol and hgweb.
                 # While not all wire protocol commands are available for all transports,
                 # if we see a "cmd" value that resembles a known wire protocol command, we
                 # route it to a protocol handler. This is better than routing possible
                 # wire protocol requests to hgweb because it prevents hgweb from using
                 # known wire protocol commands and it is less confusing for machine
                 # clients.
                 if not iscmd(cmd):
                     return None
                 proto = httpv1protocolhandler(req, repo.ui)
                 return {
                     'cmd': cmd,
                     'proto': proto,
                     'dispatch': lambda: _callhttp(repo, req, proto, cmd),
                     'handleerror': lambda ex: _handlehttperror(ex, req, cmd),
                 }
             def _httpresponsetype(ui, req, prefer_uncompressed):
                 """Determine the appropriate response type and compression settings.
                 Returns a tuple of (mediatype, compengine, engineopts).
                 """
                 # Determine the response media type and compression engine based
                 # on the request parameters.
                 protocaps = decodevaluefromheaders(req, r'X-HgProto').split(' ')
                 if '0.2' in protocaps:
                     # All clients are expected to support uncompressed data.
                     if prefer_uncompressed:
                         return HGTYPE2, util._noopengine(), {}
                     # Default as defined by wire protocol spec.
                     compformats = ['zlib', 'none']
                     for cap in protocaps:
                         if cap.startswith('comp='):
                             compformats = cap[5:].split(',')
                             break
                     # Now find an agreed upon compression format.
                     for engine in wireproto.supportedcompengines(ui, util.SERVERROLE):
                         if engine.wireprotosupport().name in compformats:
                             opts = {}
                             level = ui.configint('server', '%slevel' % engine.name())
                             if level is not None:
                                 opts['level'] = level
                             return HGTYPE2, engine, opts
                     # No mutually supported compression format. Fall back to the
                     # legacy protocol.
                 # Don't allow untrusted settings because disabling compression or
                 # setting a very high compression level could lead to flooding
                 # the server's network or CPU.
                 opts = {'level': ui.configint('server', 'zliblevel')}
                 return HGTYPE, util.compengines['zlib'], opts
             def _callhttp(repo, req, proto, cmd):
                 def genversion2(gen, engine, engineopts):
                     # application/mercurial-0.2 always sends a payload header
                     # identifying the compression engine.
                     name = engine.wireprotosupport().name
                     assert 0 < len(name) < 256
                     yield struct.pack('B', len(name))
                     yield name
                     for chunk in gen:
                         yield chunk
                 rsp = wireproto.dispatch(repo, proto, cmd)
                 if not wireproto.commands.commandavailable(cmd, proto):
                     req.respond(HTTP_OK, HGERRTYPE,
                                 body=_('requested wire protocol command is not available '
                                        'over HTTP'))
                     return []
                 if isinstance(rsp, bytes):
                     req.respond(HTTP_OK, HGTYPE, body=rsp)
                     return []
                 elif isinstance(rsp, wireprototypes.bytesresponse):
                     req.respond(HTTP_OK, HGTYPE, body=rsp.data)
                     return []
                 elif isinstance(rsp, wireprototypes.streamreslegacy):
                     gen = rsp.gen
                     req.respond(HTTP_OK, HGTYPE)
                     return gen
                 elif isinstance(rsp, wireprototypes.streamres):
                     gen = rsp.gen
                     # This code for compression should not be streamres specific. It
                     # is here because we only compress streamres at the moment.
                     mediatype, engine, engineopts = _httpresponsetype(
                         repo.ui, req, rsp.prefer_uncompressed)
                     gen = engine.compressstream(gen, engineopts)
                     if mediatype == HGTYPE2:
                         gen = genversion2(gen, engine, engineopts)
                     req.respond(HTTP_OK, mediatype)
                     return gen
                 elif isinstance(rsp, wireprototypes.pushres):
                     rsp = '%d\n%s' % (rsp.res, rsp.output)
                     req.respond(HTTP_OK, HGTYPE, body=rsp)
                     return []
                 elif isinstance(rsp, wireprototypes.pusherr):
                     # This is the httplib workaround documented in _handlehttperror().
                     req.drain()
                     rsp = '0\n%s\n' % rsp.res
                     req.respond(HTTP_OK, HGTYPE, body=rsp)
                     return []
                 elif isinstance(rsp, wireprototypes.ooberror):
                     rsp = rsp.message
                     req.respond(HTTP_OK, HGERRTYPE, body=rsp)
                     return []
                 raise error.ProgrammingError('hgweb.protocol internal failure', rsp)
             def _handlehttperror(e, req, cmd):
                 """Called when an ErrorResponse is raised during HTTP request processing."""
                 # Clients using Python's httplib are stateful: the HTTP client
                 # won't process an HTTP response until all request data is
                 # sent to the server. The intent of this code is to ensure
                 # we always read HTTP request data from the client, thus
                 # ensuring httplib transitions to a state that allows it to read
                 # the HTTP response. In other words, it helps prevent deadlocks
                 # on clients using httplib.
                 if (req.env[r'REQUEST_METHOD'] == r'POST' and
                     # But not if Expect: 100-continue is being used.
                     (req.env.get('HTTP_EXPECT',
                                  '').lower() != '100-continue') or
                     # Or the non-httplib HTTP library is being advertised by
                     # the client.
                     req.env.get('X-HgHttp2', '')):
                     req.drain()
                 else:
                     req.headers.append((r'Connection', r'Close'))
                 # TODO This response body assumes the failed command was
                 # "unbundle." That assumption is not always valid.
                 req.respond(e, HGTYPE, body='0\n%s\n' % pycompat.bytestr(e))
                 return ''
             def _sshv1respondbytes(fout, value):
                 """Send a bytes response for protocol version 1."""
                 fout.write('%d\n' % len(value))
                 fout.write(value)
                 fout.flush()
             def _sshv1respondstream(fout, source):
                 write = fout.write
                 for chunk in source.gen:
                     write(chunk)
                 fout.flush()
             def _sshv1respondooberror(fout, ferr, rsp):
                 ferr.write(b'%s\n-\n' % rsp)
                 ferr.flush()
                 fout.write(b'\n')
                 fout.flush()
             class sshv1protocolhandler(wireprototypes.baseprotocolhandler):
                 """Handler for requests services via version 1 of SSH protocol."""
                 def __init__(self, ui, fin, fout):
                     self._ui = ui
                     self._fin = fin
                     self._fout = fout
                 @property
                 def name(self):
                     return SSHV1
                 def getargs(self, args):
                     data = {}
                     keys = args.split()
                     for n in xrange(len(keys)):
                         argline = self._fin.readline()[:-1]
                         arg, l = argline.split()
                         if arg not in keys:
                             raise error.Abort(_("unexpected parameter %r") % arg)
                         if arg == '*':
                             star = {}
                             for k in xrange(int(l)):
                                 argline = self._fin.readline()[:-1]
                                 arg, l = argline.split()
                                 val = self._fin.read(int(l))
                                 star[arg] = val
                             data['*'] = star
                         else:
                             val = self._fin.read(int(l))
                             data[arg] = val
                     return [data[k] for k in keys]
                 def forwardpayload(self, fpout):
+                    # We initially send an empty response. This tells the client it is
+                    # OK to start sending data. If a client sees any other response, it
+                    # interprets it as an error.
+                    _sshv1respondbytes(self._fout, b'')
                     # The file is in the form:
                     #
                     # <chunk size>\n<chunk>
                     # ...
                     # 0\n
-                    _sshv1respondbytes(self._fout, b'')
                     count = int(self._fin.readline())
                     while count:
                         fpout.write(self._fin.read(count))
                         count = int(self._fin.readline())
                 @contextlib.contextmanager
                 def mayberedirectstdio(self):
                     yield None
                 def client(self):
                     client = encoding.environ.get('SSH_CLIENT', '').split(' ', 1)[0]
                     return 'remote:ssh:' + client
             class sshv2protocolhandler(sshv1protocolhandler):
                 """Protocol handler for version 2 of the SSH protocol."""
             def _runsshserver(ui, repo, fin, fout):
                 # This function operates like a state machine of sorts. The following
                 # states are defined:
                 #
                 # protov1-serving
                 #    Server is in protocol version 1 serving mode. Commands arrive on
                 #    new lines. These commands are processed in this state, one command
                 #    after the other.
                 #
                 # protov2-serving
                 #    Server is in protocol version 2 serving mode.
                 #
                 # upgrade-initial
                 #    The server is going to process an upgrade request.
                 #
                 # upgrade-v2-filter-legacy-handshake
                 #    The protocol is being upgraded to version 2. The server is expecting
                 #    the legacy handshake from version 1.
                 #
                 # upgrade-v2-finish
                 #    The upgrade to version 2 of the protocol is imminent.
                 #
                 # shutdown
                 #    The server is shutting down, possibly in reaction to a client event.
                 #
                 # And here are their transitions:
                 #
                 # protov1-serving -> shutdown
                 #    When server receives an empty request or encounters another
                 #    error.
                 #
                 # protov1-serving -> upgrade-initial
                 #    An upgrade request line was seen.
                 #
                 # upgrade-initial -> upgrade-v2-filter-legacy-handshake
                 #    Upgrade to version 2 in progress. Server is expecting to
                 #    process a legacy handshake.
                 #
                 # upgrade-v2-filter-legacy-handshake -> shutdown
                 #    Client did not fulfill upgrade handshake requirements.
                 #
                 # upgrade-v2-filter-legacy-handshake -> upgrade-v2-finish
                 #    Client fulfilled version 2 upgrade requirements. Finishing that
                 #    upgrade.
                 #
                 # upgrade-v2-finish -> protov2-serving
                 #    Protocol upgrade to version 2 complete. Server can now speak protocol
                 #    version 2.
                 #
                 # protov2-serving -> protov1-serving
                 #    Ths happens by default since protocol version 2 is the same as
                 #    version 1 except for the handshake.
                 state = 'protov1-serving'
                 proto = sshv1protocolhandler(ui, fin, fout)
                 protoswitched = False
                 while True:
                     if state == 'protov1-serving':
                         # Commands are issued on new lines.
                         request = fin.readline()[:-1]
                         # Empty lines signal to terminate the connection.
                         if not request:
                             state = 'shutdown'
                             continue
                         # It looks like a protocol upgrade request. Transition state to
                         # handle it.
                         if request.startswith(b'upgrade '):
                             if protoswitched:
                                 _sshv1respondooberror(fout, ui.ferr,
                                                       b'cannot upgrade protocols multiple '
                                                       b'times')
                                 state = 'shutdown'
                                 continue
                             state = 'upgrade-initial'
                             continue
                         available = wireproto.commands.commandavailable(request, proto)
                         # This command isn't available. Send an empty response and go
                         # back to waiting for a new command.
                         if not available:
                             _sshv1respondbytes(fout, b'')
                             continue
                         rsp = wireproto.dispatch(repo, proto, request)
                         if isinstance(rsp, bytes):
                             _sshv1respondbytes(fout, rsp)
                         elif isinstance(rsp, wireprototypes.bytesresponse):
                             _sshv1respondbytes(fout, rsp.data)
                         elif isinstance(rsp, wireprototypes.streamres):
                             _sshv1respondstream(fout, rsp)
                         elif isinstance(rsp, wireprototypes.streamreslegacy):
                             _sshv1respondstream(fout, rsp)
                         elif isinstance(rsp, wireprototypes.pushres):
                             _sshv1respondbytes(fout, b'')
                             _sshv1respondbytes(fout, b'%d' % rsp.res)
                         elif isinstance(rsp, wireprototypes.pusherr):
                             _sshv1respondbytes(fout, rsp.res)
                         elif isinstance(rsp, wireprototypes.ooberror):
                             _sshv1respondooberror(fout, ui.ferr, rsp.message)
                         else:
                             raise error.ProgrammingError('unhandled response type from '
                                                          'wire protocol command: %s' % rsp)
                     # For now, protocol version 2 serving just goes back to version 1.
                     elif state == 'protov2-serving':
                         state = 'protov1-serving'
                         continue
                     elif state == 'upgrade-initial':
                         # We should never transition into this state if we've switched
                         # protocols.
                         assert not protoswitched
                         assert proto.name == SSHV1
                         # Expected: upgrade <token> <capabilities>
                         # If we get something else, the request is malformed. It could be
                         # from a future client that has altered the upgrade line content.
                         # We treat this as an unknown command.
                         try:
                             token, caps = request.split(b' ')[1:]
                         except ValueError:
                             _sshv1respondbytes(fout, b'')
                             state = 'protov1-serving'
                             continue
                         # Send empty response if we don't support upgrading protocols.
                         if not ui.configbool('experimental', 'sshserver.support-v2'):
                             _sshv1respondbytes(fout, b'')
                             state = 'protov1-serving'
                             continue
                         try:
                             caps = urlreq.parseqs(caps)
                         except ValueError:
                             _sshv1respondbytes(fout, b'')
                             state = 'protov1-serving'
                             continue
                         # We don't see an upgrade request to protocol version 2. Ignore
                         # the upgrade request.
                         wantedprotos = caps.get(b'proto', [b''])[0]
                         if SSHV2 not in wantedprotos:
                             _sshv1respondbytes(fout, b'')
                             state = 'protov1-serving'
                             continue
                         # It looks like we can honor this upgrade request to protocol 2.
                         # Filter the rest of the handshake protocol request lines.
                         state = 'upgrade-v2-filter-legacy-handshake'
                         continue
                     elif state == 'upgrade-v2-filter-legacy-handshake':
                         # Client should have sent legacy handshake after an ``upgrade``
                         # request. Expected lines:
                         #
                         #    hello
                         #    between
                         #    pairs 81
                         #    0000...-0000...
                         ok = True
                         for line in (b'hello', b'between', b'pairs 81'):
                             request = fin.readline()[:-1]
                             if request != line:
                                 _sshv1respondooberror(fout, ui.ferr,
                                                       b'malformed handshake protocol: '
                                                       b'missing %s' % line)
                                 ok = False
                                 state = 'shutdown'
                                 break
                         if not ok:
                             continue
                         request = fin.read(81)
                         if request != b'%s-%s' % (b'0' * 40, b'0' * 40):
                             _sshv1respondooberror(fout, ui.ferr,
                                                   b'malformed handshake protocol: '
                                                   b'missing between argument value')
                             state = 'shutdown'
                             continue
                         state = 'upgrade-v2-finish'
                         continue
                     elif state == 'upgrade-v2-finish':
                         # Send the upgrade response.
                         fout.write(b'upgraded %s %s\n' % (token, SSHV2))
                         servercaps = wireproto.capabilities(repo, proto)
                         rsp = b'capabilities: %s' % servercaps.data
                         fout.write(b'%d\n%s\n' % (len(rsp), rsp))
                         fout.flush()
                         proto = sshv2protocolhandler(ui, fin, fout)
                         protoswitched = True
                         state = 'protov2-serving'
                         continue
                     elif state == 'shutdown':
                         break
                     else:
                         raise error.ProgrammingError('unhandled ssh server state: %s' %
                                                      state)
             class sshserver(object):
                 def __init__(self, ui, repo):
                     self._ui = ui
                     self._repo = repo
                     self._fin = ui.fin
                     self._fout = ui.fout
                     hook.redirect(True)
                     ui.fout = repo.ui.fout = ui.ferr
                     # Prevent insertion/deletion of CRs
                     util.setbinary(self._fin)
                     util.setbinary(self._fout)
                 def serve_forever(self):
                     _runsshserver(self._ui, self._repo, self._fin, self._fout)
                     sys.exit(0)

General Comments 0

Write
Preview

You need to be logged in to leave comments. Login now

No TODOs yet

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages