mirrors
/
jgit
mirror of https://github.com/eclipse/jgit.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 204 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
6903 Commits
49 Branches
Tree: c0268f899e
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'c0268f899e'
${ noResults }
jgit/org.eclipse.jgit/src/org/eclipse/jgit/transport/resolver/FileResolver.java

FileResolver.java 8.0KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259 
  1. /*

  2.  * Copyright (C) 2009-2010, Google Inc.

  3.  * and other copyright owners as documented in the project's IP log.

  4.  *

  5.  * This program and the accompanying materials are made available

  6.  * under the terms of the Eclipse Distribution License v1.0 which

  7.  * accompanies this distribution, is reproduced below, and is

  8.  * available at http://www.eclipse.org/org/documents/edl-v10.php

  9.  *

  10.  * All rights reserved.

  11.  *

  12.  * Redistribution and use in source and binary forms, with or

  13.  * without modification, are permitted provided that the following

  14.  * conditions are met:

  15.  *

  16.  * - Redistributions of source code must retain the above copyright

  17.  *   notice, this list of conditions and the following disclaimer.

  18.  *

  19.  * - Redistributions in binary form must reproduce the above

  20.  *   copyright notice, this list of conditions and the following

  21.  *   disclaimer in the documentation and/or other materials provided

  22.  *   with the distribution.

  23.  *

  24.  * - Neither the name of the Eclipse Foundation, Inc. nor the

  25.  *   names of its contributors may be used to endorse or promote

  26.  *   products derived from this software without specific prior

  27.  *   written permission.

  28.  *

  29.  * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND

  30.  * CONTRIBUTORS "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES,

  31.  * INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES

  32.  * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE

  33.  * ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR

  34.  * CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,

  35.  * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT

  36.  * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;

  37.  * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER

  38.  * CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,

  39.  * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)

  40.  * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF

  41.  * ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.

  42.  */

  43. 

  44. package org.eclipse.jgit.transport.resolver;

  45. 

  46. import java.io.File;

  47. import java.io.IOException;

  48. import java.util.Collection;

  49. import java.util.Map;

  50. import java.util.concurrent.ConcurrentHashMap;

  51. import java.util.concurrent.CopyOnWriteArrayList;

  52. 

  53. import org.eclipse.jgit.errors.RepositoryNotFoundException;

  54. import org.eclipse.jgit.lib.Constants;

  55. import org.eclipse.jgit.lib.Repository;

  56. import org.eclipse.jgit.lib.RepositoryCache;

  57. import org.eclipse.jgit.lib.RepositoryCache.FileKey;

  58. import org.eclipse.jgit.util.FS;

  59. 

  60. /**

  61.  * Default resolver serving from the local filesystem.

  62.  *

  63.  * @param <C>

  64.  *            type of connection

  65.  */

  66. public class FileResolver<C> implements RepositoryResolver<C> {

  67. 	private volatile boolean exportAll;

  68. 

  69. 	private final Map<String, Repository> exports;

  70. 

  71. 	private final Collection<File> exportBase;

  72. 

  73. 	/**

  74. 	 * Initialize an empty file based resolver.

  75. 	 */

  76. 	public FileResolver() {

  77. 		exports = new ConcurrentHashMap<>();

  78. 		exportBase = new CopyOnWriteArrayList<>();

  79. 	}

  80. 

  81. 	/**

  82. 	 * Create a new resolver for the given path.

  83. 	 *

  84. 	 * @param basePath

  85. 	 *            the base path all repositories are rooted under.

  86. 	 * @param exportAll

  87. 	 *            if true, exports all repositories, ignoring the check for the

  88. 	 *            {@code git-daemon-export-ok} files.

  89. 	 */

  90. 	public FileResolver(File basePath, boolean exportAll) {

  91. 		this();

  92. 		exportDirectory(basePath);

  93. 		setExportAll(exportAll);

  94. 	}

  95. 

  96. 	/** {@inheritDoc} */

  97. 	@Override

  98. 	public Repository open(C req, String name)

  99. 			throws RepositoryNotFoundException, ServiceNotEnabledException {

  100. 		if (isUnreasonableName(name))

  101. 			throw new RepositoryNotFoundException(name);

  102. 

  103. 		Repository db = exports.get(nameWithDotGit(name));

  104. 		if (db != null) {

  105. 			db.incrementOpen();

  106. 			return db;

  107. 		}

  108. 

  109. 		for (File base : exportBase) {

  110. 			File dir = FileKey.resolve(new File(base, name), FS.DETECTED);

  111. 			if (dir == null)

  112. 				continue;

  113. 

  114. 			try {

  115. 				FileKey key = FileKey.exact(dir, FS.DETECTED);

  116. 				db = RepositoryCache.open(key, true);

  117. 			} catch (IOException e) {

  118. 				throw new RepositoryNotFoundException(name, e);

  119. 			}

  120. 

  121. 			try {

  122. 				if (isExportOk(req, name, db)) {

  123. 					// We have to leak the open count to the caller, they

  124. 					// are responsible for closing the repository if we

  125. 					// complete successfully.

  126. 					return db;

  127. 				} else

  128. 					throw new ServiceNotEnabledException();

  129. 

  130. 			} catch (RuntimeException | IOException e) {

  131. 				db.close();

  132. 				throw new RepositoryNotFoundException(name, e);

  133. 

  134. 			} catch (ServiceNotEnabledException e) {

  135. 				db.close();

  136. 				throw e;

  137. 			}

  138. 		}

  139. 

  140. 		if (exportBase.size() == 1) {

  141. 			File dir = new File(exportBase.iterator().next(), name);

  142. 			throw new RepositoryNotFoundException(name,

  143. 					new RepositoryNotFoundException(dir));

  144. 		}

  145. 

  146. 		throw new RepositoryNotFoundException(name);

  147. 	}

  148. 

  149. 	/**

  150. 	 * Whether <code>git-daemon-export-ok</code> is required to export a

  151. 	 * repository

  152. 	 *

  153. 	 * @return false if <code>git-daemon-export-ok</code> is required to export

  154. 	 *         a repository; true if <code>git-daemon-export-ok</code> is

  155. 	 *         ignored.

  156. 	 * @see #setExportAll(boolean)

  157. 	 */

  158. 	public boolean isExportAll() {

  159. 		return exportAll;

  160. 	}

  161. 

  162. 	/**

  163. 	 * Set whether or not to export all repositories.

  164. 	 * <p>

  165. 	 * If false (the default), repositories must have a

  166. 	 * <code>git-daemon-export-ok</code> file to be accessed through this

  167. 	 * daemon.

  168. 	 * <p>

  169. 	 * If true, all repositories are available through the daemon, whether or

  170. 	 * not <code>git-daemon-export-ok</code> exists.

  171. 	 *

  172. 	 * @param export a boolean.

  173. 	 */

  174. 	public void setExportAll(boolean export) {

  175. 		exportAll = export;

  176. 	}

  177. 

  178. 	/**

  179. 	 * Add a single repository to the set that is exported by this daemon.

  180. 	 * <p>

  181. 	 * The existence (or lack-thereof) of <code>git-daemon-export-ok</code> is

  182. 	 * ignored by this method. The repository is always published.

  183. 	 *

  184. 	 * @param name

  185. 	 *            name the repository will be published under.

  186. 	 * @param db

  187. 	 *            the repository instance.

  188. 	 */

  189. 	public void exportRepository(String name, Repository db) {

  190. 		exports.put(nameWithDotGit(name), db);

  191. 	}

  192. 

  193. 	/**

  194. 	 * Recursively export all Git repositories within a directory.

  195. 	 *

  196. 	 * @param dir

  197. 	 *            the directory to export. This directory must not itself be a

  198. 	 *            git repository, but any directory below it which has a file

  199. 	 *            named <code>git-daemon-export-ok</code> will be published.

  200. 	 */

  201. 	public void exportDirectory(File dir) {

  202. 		exportBase.add(dir);

  203. 	}

  204. 

  205. 	/**

  206. 	 * Check if this repository can be served.

  207. 	 * <p>

  208. 	 * The default implementation of this method returns true only if either

  209. 	 * {@link #isExportAll()} is true, or the {@code git-daemon-export-ok} file

  210. 	 * is present in the repository's directory.

  211. 	 *

  212. 	 * @param req

  213. 	 *            the current HTTP request.

  214. 	 * @param repositoryName

  215. 	 *            name of the repository, as present in the URL.

  216. 	 * @param db

  217. 	 *            the opened repository instance.

  218. 	 * @return true if the repository is accessible; false if not.

  219. 	 * @throws java.io.IOException

  220. 	 *             the repository could not be accessed, the caller will claim

  221. 	 *             the repository does not exist.

  222. 	 */

  223. 	protected boolean isExportOk(C req, String repositoryName, Repository db)

  224. 			throws IOException {

  225. 		if (isExportAll())

  226. 			return true;

  227. 		else if (db.getDirectory() != null)

  228. 			return new File(db.getDirectory(), "git-daemon-export-ok").exists(); //$NON-NLS-1$

  229. 		else

  230. 			return false;

  231. 	}

  232. 

  233. 	private static String nameWithDotGit(String name) {

  234. 		if (name.endsWith(Constants.DOT_GIT_EXT))

  235. 			return name;

  236. 		return name + Constants.DOT_GIT_EXT;

  237. 	}

  238. 

  239. 	private static boolean isUnreasonableName(String name) {

  240. 		if (name.length() == 0)

  241. 			return true; // no empty paths

  242. 

  243. 		if (name.indexOf('\\') >= 0)

  244. 			return true; // no windows/dos style paths

  245. 		if (new File(name).isAbsolute())

  246. 			return true; // no absolute paths

  247. 

  248. 		if (name.startsWith("../")) //$NON-NLS-1$

  249. 			return true; // no "l../etc/passwd"

  250. 		if (name.contains("/../")) //$NON-NLS-1$

  251. 			return true; // no "foo/../etc/passwd"

  252. 		if (name.contains("/./")) //$NON-NLS-1$

  253. 			return true; // "foo/./foo" is insane to ask

  254. 		if (name.contains("//")) //$NON-NLS-1$

  255. 			return true; // double slashes is sloppy, don't use it

  256. 

  257. 		return false; // is a reasonable name

  258. 	}

  259. }