-18

Cargo.lock

reviewed

··· 1165 1165 ] 1166 1166 1167 1167 [[package]] 1168 1168 - name = "git-service" 1169 1169 - version = "0.0.0" 1170 1170 - dependencies = [ 1171 1171 - "anyhow", 1172 1172 - "axum", 1173 1173 - "axum-extra", 1174 1174 - "bytes", 1175 1175 - "clap", 1176 1176 - "serde", 1177 1177 - "tokio", 1178 1178 - "tokio-stream", 1179 1179 - "tower", 1180 1180 - "tracing", 1181 1181 - "tracing-subscriber", 1182 1182 - ] 1183 1183 - 1184 1184 - [[package]] 1185 1168 name = "gix" 1186 1169 version = "0.78.0" 1187 1170 source = "registry+https://github.com/rust-lang/crates.io-index" ··· 2124 2141 "dashmap", 2125 2142 "data-encoding", 2126 2143 "futures-util", 2127 2127 - "git-service", 2128 2144 "gix", 2129 2145 "gordian-auth", 2130 2146 "gordian-identity",

+1 -2

Cargo.toml

reviewed

··· 8 8 "crates/gordian-jetstream", 9 9 "crates/gordian-knot", 10 10 "crates/gordian-lexicon", 11 11 - "crates/git-service", "crates/mock-pds", 11 11 + "crates/mock-pds", 12 12 ] 13 13 default-members = ["crates/gordian-knot"] 14 14 ··· 26 26 gordian-identity = { path = "crates/gordian-identity" } 27 27 gordian-jetstream = { path = "crates/gordian-jetstream" } 28 28 gordian-lexicon = { path = "crates/gordian-lexicon" } 29 29 - git-service = { path = "crates/git-service"} 30 29 31 30 anyhow = "1.0.100" 32 31 axum = "0.8.4"

-22

crates/git-service/Cargo.toml

reviewed

··· 1 1 - [package] 2 2 - name = "git-service" 3 3 - version.workspace = true 4 4 - authors.workspace = true 5 5 - repository.workspace = true 6 6 - license.workspace = true 7 7 - edition.workspace = true 8 8 - publish.workspace = true 9 9 - 10 10 - [dependencies] 11 11 - anyhow.workspace = true 12 12 - axum.workspace = true 13 13 - serde.workspace = true 14 14 - tracing.workspace = true 15 15 - 16 16 - axum-extra = { version = "0.12.1", features = ["async-read-body"] } 17 17 - clap = { version = "4.5.47", features = ["derive", "env", "string"] } 18 18 - tokio = { version = "1.47.1", features = ["io-util", "macros", "net", "process", "signal", "rt-multi-thread"] } 19 19 - tokio-stream = "0.1.17" 20 20 - tower = "0.5.2" 21 21 - tracing-subscriber = "0.3.20" 22 22 - bytes = "1.10.1"

-99

crates/git-service/src/commands.rs

reviewed

··· 1 1 - //! Basic command constructors 2 2 - //! 3 3 - use std::{ffi::OsStr, path::Path}; 4 4 - use tokio::process::Command; 5 5 - 6 6 - pub fn upload_archive<S, P>(git: S, path: P) -> Command 7 7 - where 8 8 - S: AsRef<OsStr>, 9 9 - P: AsRef<Path>, 10 10 - { 11 11 - let path = path.as_ref(); 12 12 - 13 13 - let mut command = Command::new(git); 14 14 - command 15 15 - .env_clear() 16 16 - .current_dir(path) 17 17 - .args(["upload-archive"]) 18 18 - .arg(path.as_os_str()); 19 19 - 20 20 - command 21 21 - } 22 22 - 23 23 - pub fn upload_pack_info_refs<S, P>(git: S, path: P) -> Command 24 24 - where 25 25 - S: AsRef<OsStr>, 26 26 - P: AsRef<Path>, 27 27 - { 28 28 - let path = path.as_ref(); 29 29 - 30 30 - let mut command = Command::new(git); 31 31 - command 32 32 - .env_clear() 33 33 - .current_dir(path) 34 34 - .args([ 35 35 - "upload-pack", 36 36 - "--http-backend-info-refs", 37 37 - "--stateless-rpc", 38 38 - "--strict", 39 39 - "--timeout=10", 40 40 - ]) 41 41 - .arg(path.as_os_str()); 42 42 - 43 43 - command 44 44 - } 45 45 - 46 46 - pub fn upload_pack<S, P>(git: S, path: P) -> Command 47 47 - where 48 48 - S: AsRef<OsStr>, 49 49 - P: AsRef<Path>, 50 50 - { 51 51 - let path = path.as_ref(); 52 52 - 53 53 - let mut command = Command::new(git); 54 54 - command 55 55 - .env_clear() 56 56 - .current_dir(path) 57 57 - .args(["upload-pack", "--strict", "--stateless-rpc"]) 58 58 - .arg(path.as_os_str()); 59 59 - 60 60 - command 61 61 - } 62 62 - 63 63 - pub fn receive_pack_info_refs<S, P>(git: S, path: P) -> Command 64 64 - where 65 65 - S: AsRef<OsStr>, 66 66 - P: AsRef<Path>, 67 67 - { 68 68 - let path = path.as_ref(); 69 69 - 70 70 - let mut command = Command::new(git); 71 71 - command 72 72 - .env_clear() 73 73 - .current_dir(path) 74 74 - .args([ 75 75 - "receive-pack", 76 76 - "--http-backend-info-refs", 77 77 - "--stateless-rpc", 78 78 - ]) 79 79 - .arg(path.as_os_str()); 80 80 - 81 81 - command 82 82 - } 83 83 - 84 84 - pub fn receive_pack<S, P>(git: S, path: P) -> Command 85 85 - where 86 86 - S: AsRef<OsStr>, 87 87 - P: AsRef<Path>, 88 88 - { 89 89 - let path = path.as_ref(); 90 90 - 91 91 - let mut command = Command::new(git); 92 92 - command 93 93 - .env_clear() 94 94 - .current_dir(path) 95 95 - .args(["receive-pack", "--stateless-rpc"]) 96 96 - .arg(path.as_os_str()); 97 97 - 98 98 - command 99 99 - }

-60

crates/git-service/src/lib.rs

reviewed

··· 1 1 - pub mod commands; 2 2 - pub mod state; 3 3 - pub mod types; 4 4 - 5 5 - mod receive_pack; 6 6 - mod upload_archive; 7 7 - mod upload_pack; 8 8 - 9 9 - pub mod util; 10 10 - 11 11 - use axum::{ 12 12 - Router, 13 13 - extract::{Query, Request, State}, 14 14 - response::{IntoResponse, Response}, 15 15 - }; 16 16 - use state::GitServiceState; 17 17 - use types::{GitProtocol, GitService}; 18 18 - 19 19 - pub fn router<S>() -> Router<S> 20 20 - where 21 21 - S: GitServiceState + Send + Sync + Clone + 'static, 22 22 - S::Rejection: From<std::io::Error>, 23 23 - S::Rejection: From<axum::Error>, 24 24 - { 25 25 - use axum::routing::{get, post}; 26 26 - Router::<S>::new() 27 27 - .route("/info/refs", get(info_refs::<S>)) 28 28 - .route( 29 29 - "/git-upload-archive", 30 30 - post(upload_archive::upload_archive::<S>), 31 31 - ) 32 32 - .route("/git-upload-pack", post(upload_pack::upload_pack::<S>)) 33 33 - .route("/git-receive-pack", post(receive_pack::receive_pack::<S>)) 34 34 - } 35 35 - 36 36 - /// Parameters for 'info/refs' 37 37 - #[derive(Debug, serde::Deserialize)] 38 38 - pub struct InfoRefsQuery { 39 39 - pub service: GitService, 40 40 - } 41 41 - 42 42 - pub async fn info_refs<S>( 43 43 - state: State<S>, 44 44 - Query(params): Query<InfoRefsQuery>, 45 45 - protocol: Option<GitProtocol>, 46 46 - req: Request, 47 47 - ) -> Response 48 48 - where 49 49 - S: GitServiceState, 50 50 - S::Rejection: From<std::io::Error>, 51 51 - { 52 52 - match params.service { 53 53 - GitService::GitUploadPack => upload_pack::advertise_upload_pack(state, protocol, req) 54 54 - .await 55 55 - .into_response(), 56 56 - GitService::GitReceivePack => receive_pack::advertise_receive_pack(state, protocol, req) 57 57 - .await 58 58 - .into_response(), 59 59 - } 60 60 - }

-32

crates/git-service/src/main.rs

reviewed

··· 1 1 - use axum::Router; 2 2 - use clap::Parser; 3 3 - use std::path::PathBuf; 4 4 - use tokio::net::TcpListener; 5 5 - 6 6 - #[derive(Parser)] 7 7 - struct Arguments { 8 8 - #[arg(long, default_value = "localhost:8000")] 9 9 - addr: String, 10 10 - 11 11 - #[arg(default_value = ".")] 12 12 - path: PathBuf, 13 13 - } 14 14 - 15 15 - #[tokio::main] 16 16 - async fn main() -> anyhow::Result<()> { 17 17 - tracing_subscriber::fmt::init(); 18 18 - 19 19 - let args = Arguments::parse(); 20 20 - 21 21 - tracing::info!("serving repositories from {:?}", args.path); 22 22 - let app = Router::new() 23 23 - .nest("/{owner}/{name}", git_service::router()) 24 24 - .with_state(args.path); 25 25 - 26 26 - let listener = TcpListener::bind(args.addr).await?; 27 27 - tracing::info!("listening on {:?}", listener.local_addr().unwrap()); 28 28 - 29 29 - axum::serve(listener, app).await?; 30 30 - 31 31 - Ok(()) 32 32 - }

-83

crates/git-service/src/receive_pack.rs

reviewed

··· 1 1 - use crate::{state::GitServiceState, types::GitProtocol, util::SetOptionEnv as _}; 2 2 - use axum::{ 3 3 - extract::{Request, State}, 4 4 - http::header::{CACHE_CONTROL, CONNECTION, CONTENT_TYPE}, 5 5 - response::IntoResponse, 6 6 - }; 7 7 - use axum_extra::body::AsyncReadBody; 8 8 - use std::process::Stdio; 9 9 - use tokio::net::unix::pipe::{Sender, pipe as async_pipe}; 10 10 - 11 11 - const RECEIVE_PACK_ADVERTISEMENT: &str = "application/x-git-receive-pack-advertisement"; 12 12 - const RECEIVE_PACK_RESULT: &str = "application/x-git-receive-pack-result"; 13 13 - 14 14 - const NO_CACHE: &str = "no-cache, max-age=0, must-revalidate"; 15 15 - const KEEP_ALIVE: &str = "keep-alive"; 16 16 - 17 17 - pub async fn advertise_receive_pack<S>( 18 18 - State(state): State<S>, 19 19 - protocol: Option<GitProtocol>, 20 20 - req: Request, 21 21 - ) -> Result<impl IntoResponse, S::Rejection> 22 22 - where 23 23 - S: GitServiceState, 24 24 - S::Rejection: From<std::io::Error>, 25 25 - { 26 26 - let (mut parts, _) = req.into_parts(); 27 27 - let mut command = state.init_receive_pack_advertisement(&mut parts).await?; 28 28 - 29 29 - let (mut stdout_tx, stdout_rx) = async_pipe()?; 30 30 - 31 31 - crate::util::pack_line(&mut stdout_tx, "# service=git-receive-pack\n").await?; 32 32 - crate::util::pack_flush(&mut stdout_tx).await?; 33 33 - 34 34 - let child = command 35 35 - .option_env("GIT_PROTOCOL", protocol.as_deref()) 36 36 - .stdout(stdout_tx.into_blocking_fd()?) 37 37 - .stderr(Stdio::piped()) 38 38 - .stdin(Stdio::null()) 39 39 - .spawn()?; 40 40 - 41 41 - tokio::task::spawn(crate::util::await_child(child)); 42 42 - 43 43 - let headers = [ 44 44 - (CONTENT_TYPE, RECEIVE_PACK_ADVERTISEMENT), 45 45 - (CONNECTION, KEEP_ALIVE), 46 46 - (CACHE_CONTROL, NO_CACHE), 47 47 - ]; 48 48 - 49 49 - Ok((headers, AsyncReadBody::new(stdout_rx))) 50 50 - } 51 51 - 52 52 - pub async fn receive_pack<S>( 53 53 - State(state): State<S>, 54 54 - protocol: Option<GitProtocol>, 55 55 - req: Request, 56 56 - ) -> Result<impl IntoResponse, S::Rejection> 57 57 - where 58 58 - S: GitServiceState, 59 59 - S::Rejection: From<std::io::Error>, 60 60 - { 61 61 - let (mut parts, body) = req.into_parts(); 62 62 - let mut command = state.init_receive_pack(&mut parts).await?; 63 63 - 64 64 - let mut child = command 65 65 - .option_env("GIT_PROTOCOL", protocol.as_deref()) 66 66 - .stdin(Stdio::piped()) 67 67 - .stdout(Stdio::piped()) 68 68 - .stderr(Stdio::piped()) 69 69 - .spawn()?; 70 70 - 71 71 - let stdin = child.stdin.take().expect("handle present"); 72 72 - let stdout = child.stdout.take().expect("handle present"); 73 73 - 74 74 - tokio::task::spawn(crate::util::stream_to_pipe( 75 75 - body.into_data_stream(), 76 76 - Sender::from_owned_fd(stdin.into_owned_fd()?)?, 77 77 - )); 78 78 - 79 79 - tokio::spawn(crate::util::await_child(child)); 80 80 - 81 81 - let headers = [(CONTENT_TYPE, RECEIVE_PACK_RESULT)]; 82 82 - Ok((headers, AsyncReadBody::new(stdout)).into_response()) 83 83 - }

-162

crates/git-service/src/state.rs

reviewed

··· 1 1 - use axum::{http::request::Parts, response::IntoResponse}; 2 2 - use tokio::process::Command; 3 3 - 4 4 - const GIT_COMMAND: &str = "/usr/bin/git"; 5 5 - 6 6 - pub trait GitServiceState: Sized + Sync { 7 7 - type Rejection: IntoResponse; 8 8 - 9 9 - /// Maximum body size in bytes for requests. 10 10 - const MAX_REQUEST_BODY_SIZE: usize = 1024 * 1024; 11 11 - 12 12 - /// Initialise the [`Command`] to use for serving "$GIT_URL/git-upload-archive" 13 13 - /// requests. 14 14 - fn init_upload_archive( 15 15 - &self, 16 16 - parts: &mut Parts, 17 17 - ) -> impl Future<Output = Result<Command, Self::Rejection>> + Send; 18 18 - 19 19 - /// Initialise the [`Command`] to use for serving "$GIT_URL/info/refs?service=git-upload-pack" 20 20 - /// requests. 21 21 - fn init_upload_pack_advertisement( 22 22 - &self, 23 23 - parts: &mut Parts, 24 24 - ) -> impl Future<Output = Result<Command, Self::Rejection>> + Send; 25 25 - 26 26 - /// Initialise the [`Command`] to use for serving "$GIT_URL/git-upload-pack" 27 27 - /// requests. 28 28 - fn init_upload_pack( 29 29 - &self, 30 30 - parts: &mut Parts, 31 31 - ) -> impl Future<Output = Result<Command, Self::Rejection>> + Send; 32 32 - 33 33 - /// Initialise the [`Command`] to use for serving "$GIT_URL/info/refs?service=git-receive-pack" 34 34 - /// requests. 35 35 - fn init_receive_pack_advertisement( 36 36 - &self, 37 37 - parts: &mut Parts, 38 38 - ) -> impl Future<Output = Result<Command, Self::Rejection>> + Send; 39 39 - 40 40 - /// Initialise the [`Command`] to use for serving "$GIT_URL/git-receive-pack" 41 41 - /// requests. 42 42 - fn init_receive_pack( 43 43 - &self, 44 44 - parts: &mut Parts, 45 45 - ) -> impl Future<Output = Result<Command, Self::Rejection>> + Send; 46 46 - } 47 47 - 48 48 - mod path_impl { 49 49 - use super::GIT_COMMAND; 50 50 - use super::GitServiceState; 51 51 - use axum::extract::rejection::PathRejection; 52 52 - use axum::http::request::Parts; 53 53 - use axum::{ 54 54 - body::Body, 55 55 - http::{StatusCode, header::CONTENT_TYPE}, 56 56 - response::{IntoResponse, Response}, 57 57 - }; 58 58 - use std::path::PathBuf; 59 59 - use tokio::process::Command; 60 60 - 61 61 - pub struct Error(StatusCode, String); 62 62 - 63 63 - impl IntoResponse for Error { 64 64 - fn into_response(self) -> Response { 65 65 - let Self(status, error) = self; 66 66 - Response::builder() 67 67 - .status(status) 68 68 - .header(CONTENT_TYPE, "text/plain; charset=utf-8") 69 69 - .body(Body::from(error)) 70 70 - .expect("Failed to build body") 71 71 - } 72 72 - } 73 73 - 74 74 - pub struct NotFound<E: std::fmt::Display>(pub E); 75 75 - 76 76 - impl<E: std::fmt::Display> From<NotFound<E>> for Error { 77 77 - fn from(value: NotFound<E>) -> Self { 78 78 - Self(StatusCode::NOT_FOUND, value.0.to_string()) 79 79 - } 80 80 - } 81 81 - 82 82 - pub struct Forbidden<E: std::fmt::Display>(pub E); 83 83 - 84 84 - impl<E: std::fmt::Display> From<Forbidden<E>> for Error { 85 85 - fn from(value: Forbidden<E>) -> Self { 86 86 - Self(StatusCode::FORBIDDEN, value.0.to_string()) 87 87 - } 88 88 - } 89 89 - 90 90 - macro_rules! internal_error { 91 91 - ($typ:ty, $status:expr) => { 92 92 - impl From<$typ> for Error { 93 93 - fn from(value: $typ) -> Self { 94 94 - Self($status, value.to_string()) 95 95 - } 96 96 - } 97 97 - }; 98 98 - ($typ:ty) => { 99 99 - internal_error!($typ, StatusCode::INTERNAL_SERVER_ERROR); 100 100 - }; 101 101 - } 102 102 - 103 103 - internal_error!(std::io::Error); 104 104 - internal_error!(axum::Error); 105 105 - internal_error!(axum::extract::rejection::PathRejection); 106 106 - 107 107 - impl<P> GitServiceState for P 108 108 - where 109 109 - P: AsRef<std::path::Path> + Sync + 'static, 110 110 - { 111 111 - type Rejection = Error; 112 112 - 113 113 - async fn init_upload_archive(&self, parts: &mut Parts) -> Result<Command, Self::Rejection> { 114 114 - let repo_path = resolve_path(self.as_ref(), parts).await?; 115 115 - let command = crate::commands::upload_archive(GIT_COMMAND, repo_path); 116 116 - Ok(command) 117 117 - } 118 118 - 119 119 - async fn init_upload_pack_advertisement( 120 120 - &self, 121 121 - parts: &mut Parts, 122 122 - ) -> Result<Command, Self::Rejection> { 123 123 - let repo_path = resolve_path(self.as_ref(), parts).await?; 124 124 - let command = crate::commands::upload_pack_info_refs(GIT_COMMAND, repo_path); 125 125 - Ok(command) 126 126 - } 127 127 - 128 128 - async fn init_upload_pack(&self, parts: &mut Parts) -> Result<Command, Self::Rejection> { 129 129 - let repo_path = resolve_path(self.as_ref(), parts).await?; 130 130 - let command = crate::commands::upload_pack(GIT_COMMAND, repo_path); 131 131 - Ok(command) 132 132 - } 133 133 - 134 134 - async fn init_receive_pack_advertisement( 135 135 - &self, 136 136 - _: &mut Parts, 137 137 - ) -> Result<Command, Self::Rejection> { 138 138 - return Err(Forbidden("Push disabled"))?; 139 139 - } 140 140 - 141 141 - async fn init_receive_pack(&self, _: &mut Parts) -> Result<Command, Self::Rejection> { 142 142 - return Err(Forbidden("Push disabled"))?; 143 143 - } 144 144 - } 145 145 - 146 146 - pub async fn resolve_path( 147 147 - base: &std::path::Path, 148 148 - parts: &mut Parts, 149 149 - ) -> Result<PathBuf, PathRejection> { 150 150 - use axum::extract::FromRequestParts as _; 151 151 - use axum::extract::Path; 152 152 - 153 153 - let Path(path_parts) = Path::<Vec<String>>::from_request_parts(parts, &()).await?; 154 154 - 155 155 - let mut path = base.to_path_buf(); 156 156 - for part in path_parts { 157 157 - path.push(part); 158 158 - } 159 159 - 160 160 - Ok(path) 161 161 - } 162 162 - }

-46

crates/git-service/src/types.rs

reviewed

··· 1 1 - use axum::{extract::OptionalFromRequestParts, http::request::Parts}; 2 2 - use serde::Deserialize; 3 3 - use std::{convert::Infallible, ops::Deref}; 4 4 - 5 5 - #[derive(Debug, Deserialize)] 6 6 - #[serde(rename_all = "kebab-case")] 7 7 - pub enum GitService { 8 8 - GitUploadPack, 9 9 - GitReceivePack, 10 10 - } 11 11 - 12 12 - /// Extract the "Git-Protocol" header from a request. 13 13 - #[derive(Debug)] 14 14 - pub struct GitProtocol(pub Box<str>); 15 15 - 16 16 - impl AsRef<str> for GitProtocol { 17 17 - #[inline] 18 18 - fn as_ref(&self) -> &str { 19 19 - &self.0 20 20 - } 21 21 - } 22 22 - 23 23 - impl Deref for GitProtocol { 24 24 - type Target = str; 25 25 - 26 26 - #[inline] 27 27 - fn deref(&self) -> &Self::Target { 28 28 - &self.0 29 29 - } 30 30 - } 31 31 - 32 32 - impl<S> OptionalFromRequestParts<S> for GitProtocol 33 33 - where 34 34 - S: Send + Sync, 35 35 - { 36 36 - type Rejection = Infallible; 37 37 - 38 38 - async fn from_request_parts(parts: &mut Parts, _: &S) -> Result<Option<Self>, Self::Rejection> { 39 39 - let header_value = parts 40 40 - .headers 41 41 - .get("Git-Protocol") 42 42 - .and_then(|header_value| header_value.to_str().ok()); 43 43 - 44 44 - Ok(header_value.map(|value| Self(value.into()))) 45 45 - } 46 46 - }

+22 -18

crates/git-service/src/upload_archive.rs crates/gordian-knot/src/public/git/upload_archive.rs

reviewed

··· 8 8 use axum_extra::body::AsyncReadBody; 9 9 use tokio::{io::AsyncWriteExt as _, net::unix::pipe::Sender}; 10 10 11 11 - use crate::{state::GitServiceState, types::GitProtocol, util::SetOptionEnv as _}; 11 11 + use crate::{ 12 12 + command::{SetOptionEnv as _, TraceProcessCompletion as _}, 13 13 + extractors::{GitProtocol, request_id::RequestId}, 14 14 + model::{Knot, repository::TangledRepository}, 15 15 + }; 12 16 13 17 const UPLOAD_ARCHIVE_RESULT: &str = "application/x-git-upload-archive-result"; 14 18 15 15 - pub async fn upload_archive<S>( 16 16 - State(state): State<S>, 19 19 + pub async fn upload_archive( 20 20 + State(knot): State<Knot>, 17 21 protocol: Option<GitProtocol>, 18 18 - req: Request, 19 19 - ) -> Result<impl IntoResponse, S::Rejection> 20 20 - where 21 21 - S: GitServiceState, 22 22 - S::Rejection: From<std::io::Error>, 23 23 - S::Rejection: From<axum::Error>, 24 24 - { 25 25 - tracing::warn!(?req); 26 26 - let (mut parts, body) = req.into_parts(); 27 27 - let mut command = state.init_upload_archive(&mut parts).await?; 22 22 + request_id: Option<RequestId>, 23 23 + request: Request, 24 24 + ) -> Result<impl IntoResponse, super::Error> { 25 25 + let (mut parts, body) = request.into_parts(); 26 26 + let repository = TangledRepository::from_git_request(&mut parts, &knot).await?; 28 27 29 28 // The request body for git-upload-pack should be quite small, so just 30 29 // buffer it. 31 31 - let mut request_body = axum::body::to_bytes(body, S::MAX_REQUEST_BODY_SIZE) 30 30 + let mut request_body = axum::body::to_bytes(body, knot.max_git_request_size) 32 31 .await 33 32 .inspect_err(|error| tracing::error!(?error))?; 34 33 35 35 - let mut child = command 34 34 + let mut command: tokio::process::Command = repository.git().into(); 35 35 + command 36 36 .option_env("GIT_PROTOCOL", protocol.as_deref()) 37 37 + .option_env("X_REQUEST_ID", request_id) 38 38 + .args(["upload-archive"]) 39 39 + .arg(repository.path()) 37 40 .stdin(Stdio::piped()) 38 41 .stdout(Stdio::piped()) 39 39 - .stderr(Stdio::piped()) 40 40 - .spawn()?; 42 42 + .stderr(Stdio::piped()); 43 43 + 44 44 + let mut child = command.spawn()?; 41 45 42 46 let stdin = child.stdin.take().expect("handle present"); 43 47 let stdout = child.stdout.take().expect("handle present"); ··· 54 50 } 55 51 }); 56 52 57 57 - tokio::spawn(crate::util::await_child(child)); 53 53 + tokio::spawn(child.wait_with_completion_trace()); 58 54 59 55 let headers = [(CONTENT_TYPE, UPLOAD_ARCHIVE_RESULT)]; 60 56 Ok((headers, AsyncReadBody::new(stdout)).into_response())

+48 -34

crates/git-service/src/upload_pack.rs crates/gordian-knot/src/public/git/upload_pack.rs

reviewed

··· 1 1 - use crate::{state::GitServiceState, types::GitProtocol, util::SetOptionEnv as _}; 2 1 use axum::{ 3 2 extract::{Request, State}, 4 3 http::header::{CACHE_CONTROL, CONNECTION, CONTENT_TYPE}, ··· 10 11 net::unix::pipe::{Sender, pipe as async_pipe}, 11 12 }; 12 13 14 14 + use crate::{ 15 15 + command::{SetOptionEnv as _, TraceProcessCompletion}, 16 16 + extractors::{GitProtocol, request_id::RequestId}, 17 17 + model::{Knot, repository::TangledRepository}, 18 18 + }; 19 19 + 13 20 const UPLOAD_PACK_ADVERTISEMENT: &str = "application/x-git-upload-pack-advertisement"; 14 21 const UPLOAD_PACK_RESULT: &str = "application/x-git-upload-pack-result"; 15 22 const NO_CACHE: &str = "no-cache, max-age=0, must-revalidate"; 16 23 const KEEP_ALIVE: &str = "keep-alive"; 17 24 18 25 /// Serve the "/info/refs?service=git-upload-pack" phase of a `git fetch` operation. 19 19 - pub async fn advertise_upload_pack<S>( 20 20 - State(state): State<S>, 26 26 + pub async fn advertise_upload_pack( 27 27 + State(knot): State<Knot>, 21 28 protocol: Option<GitProtocol>, 22 22 - req: Request, 23 23 - ) -> Result<impl IntoResponse, S::Rejection> 24 24 - where 25 25 - S: GitServiceState, 26 26 - S::Rejection: From<std::io::Error>, 27 27 - { 28 28 - let (mut parts, _) = req.into_parts(); 29 29 - let mut command = state.init_upload_pack_advertisement(&mut parts).await?; 29 29 + request_id: Option<RequestId>, 30 30 + request: Request, 31 31 + ) -> Result<impl IntoResponse, super::Error> { 32 32 + let (mut parts, _) = request.into_parts(); 33 33 + let repository = TangledRepository::from_git_request(&mut parts, &knot).await?; 30 34 31 35 let (mut stdout_tx, stdout_rx) = async_pipe()?; 32 32 - crate::util::pack_line(&mut stdout_tx, "# service=git-upload-pack\n").await?; 33 33 - crate::util::pack_flush(&mut stdout_tx).await?; 34 36 35 35 - let child = command 37 37 + super::pack_line(&mut stdout_tx, "# service=git-upload-pack\n").await?; 38 38 + super::pack_flush(&mut stdout_tx).await?; 39 39 + 40 40 + let mut command: tokio::process::Command = repository.git().into(); 41 41 + command 36 42 .option_env("GIT_PROTOCOL", protocol.as_deref()) 37 37 - .stdout(stdout_tx.into_blocking_fd()?) 38 38 - .stderr(Stdio::piped()) 43 43 + .option_env("X_REQUEST_ID", request_id) 44 44 + .args([ 45 45 + "upload-pack", 46 46 + "--http-backend-info-refs", 47 47 + "--stateless-rpc", 48 48 + "--strict", 49 49 + "--timeout=10", 50 50 + ]) 51 51 + .arg(repository.path()) 39 52 .stdin(Stdio::null()) 40 40 - .spawn()?; 53 53 + .stdout(stdout_tx.into_blocking_fd()?) 54 54 + .stderr(Stdio::piped()); 41 55 42 42 - tokio::task::spawn(crate::util::await_child(child)); 56 56 + let child = command.spawn()?; 57 57 + tokio::task::spawn(child.wait_with_completion_trace()); 43 58 44 59 let headers = [ 45 60 (CONTENT_TYPE, UPLOAD_PACK_ADVERTISEMENT), ··· 64 51 Ok((headers, AsyncReadBody::new(stdout_rx))) 65 52 } 66 53 67 67 - pub async fn upload_pack<S>( 68 68 - State(state): State<S>, 54 54 + pub async fn upload_pack( 55 55 + State(knot): State<Knot>, 69 56 protocol: Option<GitProtocol>, 70 70 - req: Request, 71 71 - ) -> Result<impl IntoResponse, S::Rejection> 72 72 - where 73 73 - S: GitServiceState, 74 74 - S::Rejection: From<std::io::Error>, 75 75 - S::Rejection: From<axum::Error>, 76 76 - { 77 77 - let (mut parts, body) = req.into_parts(); 78 78 - let mut command = state.init_upload_pack(&mut parts).await?; 57 57 + request_id: Option<RequestId>, 58 58 + request: Request, 59 59 + ) -> Result<impl IntoResponse, super::Error> { 60 60 + let (mut parts, body) = request.into_parts(); 61 61 + let repository = TangledRepository::from_git_request(&mut parts, &knot).await?; 79 62 80 63 // The request body for git-upload-pack should be quite small, so just 81 64 // buffer it. 82 82 - let mut request_body = axum::body::to_bytes(body, S::MAX_REQUEST_BODY_SIZE) 65 65 + let mut request_body = axum::body::to_bytes(body, knot.max_git_request_size) 83 66 .await 84 67 .inspect_err(|error| tracing::error!(?error))?; 85 68 86 86 - let mut child = command 69 69 + let mut command: tokio::process::Command = repository.git().into(); 70 70 + command 87 71 .option_env("GIT_PROTOCOL", protocol.as_deref()) 72 72 + .option_env("X_REQUEST_ID", request_id) 73 73 + .args(["upload-pack", "--strict", "--stateless-rpc"]) 74 74 + .arg(repository.path()) 88 75 .stdin(Stdio::piped()) 89 76 .stdout(Stdio::piped()) 90 90 - .stderr(Stdio::piped()) 91 91 - .spawn()?; 77 77 + .stderr(Stdio::piped()); 78 78 + 79 79 + let mut child = command.spawn()?; 92 80 93 81 let stdin = child.stdin.take().expect("handle present"); 94 82 let stdout = child.stdout.take().expect("handle present"); ··· 102 88 } 103 89 }); 104 90 105 105 - tokio::spawn(crate::util::await_child(child)); 91 91 + tokio::spawn(child.wait_with_completion_trace()); 106 92 107 93 let headers = [(CONTENT_TYPE, UPLOAD_PACK_RESULT)]; 108 94 Ok((headers, AsyncReadBody::new(stdout)).into_response())

+45 -60

crates/git-service/src/util.rs crates/gordian-knot/src/command.rs

reviewed

··· 1 1 use std::ffi::OsStr; 2 2 3 3 - use axum::body::{BodyDataStream, HttpBody as _}; 4 4 - use bytes::BytesMut; 5 5 - use tokio::{ 6 6 - io::{AsyncWrite, AsyncWriteExt as _}, 7 7 - net::unix::pipe::Sender, 8 8 - }; 9 9 - use tokio_stream::StreamExt as _; 10 10 - 11 3 trait SetEnv { 12 4 fn env<K, V>(&mut self, key: K, val: V) -> &mut Self 13 5 where ··· 86 94 } 87 95 } 88 96 89 89 - pub async fn pack_line(mut w: impl AsyncWrite + Unpin, s: &str) -> std::io::Result<()> { 90 90 - let buffer = format!("{:04x}{s}", s.len() + 4); 91 91 - w.write_all(buffer.as_bytes()).await?; 92 92 - Ok(()) 97 97 + pub trait TraceProcessCompletion { 98 98 + fn wait_with_completion_trace(self) -> impl Future<Output = ()>; 93 99 } 94 100 95 95 - #[allow(unused)] 96 96 - pub async fn pack_message(mut w: impl AsyncWrite + Unpin, message: &str) -> std::io::Result<()> { 97 97 - let buffer = format!("{:04x}\u{2}{message}", message.len() + 5); 98 98 - w.write_all(buffer.as_bytes()).await?; 99 99 - Ok(()) 100 100 - } 101 101 + impl TraceProcessCompletion for tokio::process::Child { 102 102 + async fn wait_with_completion_trace(self) { 103 103 + use std::process::Output; 101 104 102 102 - pub async fn pack_flush(mut w: impl AsyncWrite + Unpin) -> std::io::Result<()> { 103 103 - w.write_all(b"0000").await?; 104 104 - Ok(()) 105 105 + match self.wait_with_output().await { 106 106 + Ok(Output { 107 107 + status, 108 108 + stdout: _, 109 109 + stderr, 110 110 + }) if status.success() => { 111 111 + if !stderr.is_empty() { 112 112 + let stderr = String::from_utf8_lossy(&stderr); 113 113 + tracing::warn!("subprocess finished with errors. stderr:\n{stderr}"); 114 114 + } 115 115 + } 116 116 + Ok(Output { 117 117 + status, 118 118 + stdout: _, 119 119 + stderr, 120 120 + }) => { 121 121 + let stderr = String::from_utf8_lossy(&stderr); 122 122 + tracing::error!( 123 123 + ?status, 124 124 + "subprocess finished with errors. stderr:\n{stderr}" 125 125 + ) 126 126 + } 127 127 + Err(error) => { 128 128 + tracing::error!(?error); 129 129 + } 130 130 + } 131 131 + } 105 132 } 106 133 107 134 pub async fn await_child(child: tokio::process::Child) -> bool { ··· 134 123 } 135 124 Ok(output) => { 136 125 let status = output.status; 137 137 - if let Ok(stderr) = std::str::from_utf8(&output.stderr) { tracing::error!( 138 138 - ?status, 139 139 - "error waiting for git child process. stderr:\n{stderr}" 140 140 - ) } else { tracing::error!( 141 141 - ?status, 142 142 - "error waiting for git child process. stderr:\n{:?}\n{}", 143 143 - &output.stderr, 144 144 - String::from_utf8_lossy(&output.stderr) 145 145 - ) } 126 126 + if let Ok(stderr) = std::str::from_utf8(&output.stderr) { 127 127 + tracing::error!( 128 128 + ?status, 129 129 + "error waiting for git child process. stderr:\n{stderr}" 130 130 + ) 131 131 + } else { 132 132 + tracing::error!( 133 133 + ?status, 134 134 + "error waiting for git child process. stderr:\n{:?}\n{}", 135 135 + &output.stderr, 136 136 + String::from_utf8_lossy(&output.stderr) 137 137 + ) 138 138 + } 146 139 false 147 140 } 148 141 Err(error) => { ··· 154 139 false 155 140 } 156 141 } 157 157 - } 158 158 - 159 159 - pub async fn stream_to_pipe( 160 160 - mut body_stream: BodyDataStream, 161 161 - mut pipe: Sender, 162 162 - ) -> std::result::Result<(), anyhow::Error> { 163 163 - let mut buffer = BytesMut::new(); 164 164 - let mut bytes_len = 0; 165 165 - loop { 166 166 - if !buffer.is_empty() { 167 167 - pipe.writable().await?; 168 168 - pipe.write_buf(&mut buffer).await?; 169 169 - } 170 170 - 171 171 - match body_stream.next().await { 172 172 - None if !buffer.is_empty() => continue, 173 173 - None => break, 174 174 - Some(Ok(chunk)) => { 175 175 - bytes_len += chunk.len(); 176 176 - buffer.extend_from_slice(&chunk); 177 177 - } 178 178 - Some(Err(error)) => { 179 179 - tracing::error!(?error, "error chunk"); 180 180 - break; 181 181 - } 182 182 - } 183 183 - } 184 184 - 185 185 - tracing::trace!(end = ?body_stream.is_end_stream(), ?bytes_len, "finished reading request body"); 186 186 - Ok(()) 187 142 }

-1

crates/gordian-knot/Cargo.toml

reviewed

··· 14 14 gordian-identity.workspace = true 15 15 gordian-jetstream.workspace = true 16 16 gordian-lexicon.workspace = true 17 17 - git-service.workspace = true 18 17 19 18 anyhow.workspace = true 20 19 gix.workspace = true

+1 -3

crates/gordian-knot/src/cli/serve.rs

reviewed

··· 135 135 let instance = format!("did:web:{name}").parse()?; 136 136 137 137 Ok(KnotConfiguration { 138 138 - owner, 139 139 - instance, 140 140 - repo_path, 141 138 git_config, 142 139 readmes: config::DEFAULT_READMES 143 140 .iter() ··· 145 148 idle: Duration::from_secs(repo_cache_idle), 146 149 live: Duration::from_secs(repo_cache_live), 147 150 }, 151 151 + ..KnotConfiguration::new(owner, instance, repo_path) 148 152 }) 149 153 } 150 154

+3

crates/gordian-knot/src/extractors.rs

reviewed

··· 1 1 + mod git_protocol; 2 2 + pub use git_protocol::{GitProtocol, GitProtocolRejection}; 3 3 + 1 4 use core::fmt; 2 5 3 6 use axum::{

+48

crates/gordian-knot/src/extractors/git_protocol.rs

reviewed

··· 1 1 + use std::ops; 2 2 + 3 3 + use axum::{extract::OptionalFromRequestParts, http::request::Parts, response::IntoResponse}; 4 4 + use reqwest::header::ToStrError; 5 5 + 6 6 + /// Extract the "Git-Protocol" header from a request. 7 7 + #[derive(Debug)] 8 8 + pub struct GitProtocol(pub String); 9 9 + 10 10 + impl GitProtocol { 11 11 + pub fn as_str(&self) -> &str { 12 12 + &self.0 13 13 + } 14 14 + } 15 15 + 16 16 + impl ops::Deref for GitProtocol { 17 17 + type Target = str; 18 18 + fn deref(&self) -> &Self::Target { 19 19 + &self.0 20 20 + } 21 21 + } 22 22 + 23 23 + impl<S> OptionalFromRequestParts<S> for GitProtocol 24 24 + where 25 25 + S: Send + Sync, 26 26 + { 27 27 + type Rejection = GitProtocolRejection; 28 28 + 29 29 + async fn from_request_parts(parts: &mut Parts, _: &S) -> Result<Option<Self>, Self::Rejection> { 30 30 + let header_value = parts 31 31 + .headers 32 32 + .get("Git-Protocol") 33 33 + .map(|header_value| header_value.to_str()) 34 34 + .transpose() 35 35 + .map_err(GitProtocolRejection)?; 36 36 + 37 37 + Ok(header_value.map(|value| Self(value.to_string()))) 38 38 + } 39 39 + } 40 40 + 41 41 + #[derive(Debug)] 42 42 + pub struct GitProtocolRejection(ToStrError); 43 43 + 44 44 + impl IntoResponse for GitProtocolRejection { 45 45 + fn into_response(self) -> axum::response::Response { 46 46 + todo!() 47 47 + } 48 48 + }

+1

crates/gordian-knot/src/lib.rs

reviewed

··· 5 5 use tokio::{net::TcpListener, task::JoinSet}; 6 6 use tokio_util::sync::CancellationToken; 7 7 8 8 + pub mod command; 8 9 pub mod extractors; 9 10 pub mod model; 10 11 pub mod private;

+3 -142

crates/gordian-knot/src/model.rs

reviewed

··· 6 6 pub mod repository; 7 7 8 8 use core::ops; 9 9 - use std::{borrow::Cow, ffi::OsString, net::SocketAddr, sync::Arc}; 9 9 + use std::{borrow::Cow, net::SocketAddr, sync::Arc}; 10 10 11 11 - use axum::{ 12 12 - extract::{FromRef, FromRequestParts, OptionalFromRequestParts}, 13 13 - http::request::Parts, 14 14 - }; 11 11 + use axum::extract::FromRef; 15 12 use futures_util::future::BoxFuture; 16 16 - use git_service::{state::GitServiceState, util::SetOptionEnv as _}; 17 13 use gordian_auth::jwt; 18 14 use gordian_identity::{HttpClient, Resolver}; 19 15 use gordian_lexicon::sh_tangled::knot::Member; 20 16 use gordian_types::Tid; 21 17 use time::OffsetDateTime; 22 22 - use tokio::process::Command; 23 18 24 19 use crate::{ 25 25 - extractors::request_id::RequestId, 26 26 - model::{config::KnotConfiguration, repository::TangledRepository}, 27 27 - private, 28 28 - public::git::{Error, GitAuthorization}, 20 20 + model::config::KnotConfiguration, 29 21 services::{ 30 22 authorization::{AuthorizationClaimsStore, AuthorizationClaimsStoreError}, 31 23 database::DataStore, ··· 117 125 now: i64, 118 126 ) -> BoxFuture<'_, Result<(), AuthorizationClaimsStoreError>> { 119 127 self.inner.store_claims(claims, now) 120 120 - } 121 121 - } 122 122 - 123 123 - impl GitServiceState for Knot { 124 124 - type Rejection = Error; 125 125 - 126 126 - async fn init_upload_archive(&self, parts: &mut Parts) -> Result<Command, Self::Rejection> { 127 127 - let request_id = RequestId::from_request_parts(parts, self).await.unwrap(); 128 128 - let repository = TangledRepository::from_git_request(parts, self).await?; 129 129 - let mut command = repository.git(); 130 130 - command 131 131 - .option_env("X_REQUEST_ID", request_id) 132 132 - .args(["upload-archive"]) 133 133 - .arg(repository.path()); 134 134 - 135 135 - Ok(command.into()) 136 136 - } 137 137 - 138 138 - async fn init_upload_pack_advertisement( 139 139 - &self, 140 140 - parts: &mut Parts, 141 141 - ) -> Result<tokio::process::Command, Self::Rejection> { 142 142 - let request_id = RequestId::from_request_parts(parts, self).await.unwrap(); 143 143 - let repository = TangledRepository::from_git_request(parts, self).await?; 144 144 - let mut command = repository.git(); 145 145 - command 146 146 - .option_env("X_REQUEST_ID", request_id) 147 147 - .args([ 148 148 - "upload-pack", 149 149 - "--http-backend-info-refs", 150 150 - "--stateless-rpc", 151 151 - "--strict", 152 152 - "--timeout=10", 153 153 - ]) 154 154 - .arg(repository.path()); 155 155 - 156 156 - Ok(command.into()) 157 157 - } 158 158 - 159 159 - async fn init_upload_pack( 160 160 - &self, 161 161 - parts: &mut Parts, 162 162 - ) -> Result<tokio::process::Command, Self::Rejection> { 163 163 - let request_id = RequestId::from_request_parts(parts, self).await.unwrap(); 164 164 - let repository = TangledRepository::from_git_request(parts, self).await?; 165 165 - let mut command = repository.git(); 166 166 - command 167 167 - .option_env("X_REQUEST_ID", request_id) 168 168 - .args(["upload-pack", "--strict", "--stateless-rpc"]) 169 169 - .arg(repository.path()); 170 170 - 171 171 - Ok(command.into()) 172 172 - } 173 173 - 174 174 - async fn init_receive_pack_advertisement( 175 175 - &self, 176 176 - parts: &mut Parts, 177 177 - ) -> Result<tokio::process::Command, Self::Rejection> { 178 178 - let GitAuthorization(auth) = GitAuthorization::from_request_parts(parts, self).await?; 179 179 - let request_id = RequestId::from_request_parts(parts, self).await.unwrap(); 180 180 - let repository = TangledRepository::from_git_request(parts, self).await?; 181 181 - 182 182 - if !self.can_push(repository.repository_key(), &auth.iss).await { 183 183 - tracing::error!(did = %auth.iss, "push denied"); 184 184 - return Err(Error::forbidden( 185 185 - self, 186 186 - format!( 187 187 - "'{}' does not have permission to push to this repository", 188 188 - auth.iss 189 189 - ), 190 190 - ))?; 191 191 - } 192 192 - 193 193 - let nonce_seed = self.generate_push_seed(repository.repository_key()); 194 194 - let mut command = repository.git(); 195 195 - command 196 196 - .env(private::ENV_USER_DID, auth.iss.as_str()) 197 197 - .option_env("X_REQUEST_ID", request_id) 198 198 - .args([ 199 199 - "-c", 200 200 - &nonce_seed, 201 201 - "receive-pack", 202 202 - "--http-backend-info-refs", 203 203 - "--stateless-rpc", 204 204 - ]) 205 205 - .arg(repository.path()); 206 206 - 207 207 - Ok(command.into()) 208 208 - } 209 209 - 210 210 - async fn init_receive_pack( 211 211 - &self, 212 212 - parts: &mut Parts, 213 213 - ) -> Result<tokio::process::Command, Self::Rejection> { 214 214 - let GitAuthorization(auth) = GitAuthorization::from_request_parts(parts, self).await?; 215 215 - let request_id = RequestId::from_request_parts(parts, self).await.unwrap(); 216 216 - let repository = TangledRepository::from_git_request(parts, self).await?; 217 217 - 218 218 - if !self.can_push(repository.repository_key(), &auth.iss).await { 219 219 - tracing::error!(did = %auth.iss, "push denied"); 220 220 - return Err(Error::forbidden( 221 221 - self, 222 222 - format!( 223 223 - "'{}' does not have permission to push to this repository", 224 224 - auth.iss 225 225 - ), 226 226 - ))?; 227 227 - } 228 228 - 229 229 - let allowed_signers_path = std::env::current_dir() 230 230 - .unwrap() 231 231 - .join("allowed_signers") 232 232 - .join(auth.iss.as_str()); 233 233 - 234 234 - let mut allowed_signers_option = OsString::with_capacity( 235 235 - "gpg.ssh.allowedSignersFile=".len() + allowed_signers_path.as_os_str().len(), 236 236 - ); 237 237 - allowed_signers_option.push("gpg.ssh.allowedSignersFile="); 238 238 - allowed_signers_option.push(&allowed_signers_path); 239 239 - 240 240 - let nonce_seed = self.generate_push_seed(repository.repository_key()); 241 241 - let mut command = repository.git(); 242 242 - command 243 243 - .env(private::ENV_USER_DID, auth.iss.as_str()) 244 244 - .option_env("X_REQUEST_ID", request_id) 245 245 - .args(["-c", &nonce_seed, "-c"]) 246 246 - .arg(&allowed_signers_option) 247 247 - .args(["receive-pack", "--stateless-rpc"]) 248 248 - .arg(repository.path()); 249 249 - 250 250 - Ok(command.into()) 251 128 } 252 129 }

+2

crates/gordian-knot/src/model/config.rs

reviewed

··· 33 33 pub git_config: PathBuf, 34 34 pub readmes: FxHashSet<BString>, 35 35 pub repo_cache: RepoCacheConfig, 36 36 + pub max_git_request_size: usize, 36 37 } 37 38 38 39 #[derive(Default, Debug)] ··· 61 60 .map(|readme| BString::new(readme.to_vec())) 62 61 .collect(), 63 62 repo_cache: RepoCacheConfig::default(), 63 63 + max_git_request_size: 1024 * 1024, 64 64 } 65 65 } 66 66

+1 -1

crates/gordian-knot/src/model/repository.rs

reviewed

··· 12 12 Json, 13 13 extract::{FromRef, FromRequestParts}, 14 14 }; 15 15 - use git_service::util::{SetOptionArg, SetOptionEnv as _}; 16 15 use gix::{ 17 16 ObjectId, 18 17 bstr::{BString, ByteSlice}, ··· 24 25 use serde::Deserialize; 25 26 26 27 use crate::{ 28 28 + command::{SetOptionArg as _, SetOptionEnv as _}, 27 29 model::{convert, errors, nicediff}, 28 30 public::xrpc::{XrpcError, XrpcQuery, XrpcResponse, XrpcResult}, 29 31 types::{

+1 -1

crates/gordian-knot/src/public.rs

reviewed

··· 8 8 axum::Router::new() 9 9 .without_v07_checks() 10 10 .nest("/xrpc", xrpc::router()) 11 11 - .nest("/{owner}/{name}", git_service::router()) 11 11 + .nest("/{owner}/{name}", git::router()) 12 12 .route("/events", axum::routing::get(events::handler)) 13 13 }

+75

crates/gordian-knot/src/public/git.rs

reviewed

··· 1 1 mod authorization; 2 2 mod error; 3 3 + mod receive_pack; 4 4 + mod upload_archive; 5 5 + mod upload_pack; 3 6 4 7 pub use authorization::GitAuthorization; 5 8 pub use error::{Error, NotFound}; 9 9 + 10 10 + use axum::{ 11 11 + extract::{Query, Request, State}, 12 12 + response::{IntoResponse as _, Response}, 13 13 + }; 14 14 + use tokio::io::{AsyncWrite, AsyncWriteExt as _}; 15 15 + 16 16 + use crate::{ 17 17 + extractors::{GitProtocol, request_id::RequestId}, 18 18 + model::Knot, 19 19 + }; 20 20 + 21 21 + pub fn router() -> axum::Router<Knot> { 22 22 + use axum::routing::{get, post}; 23 23 + axum::Router::new() 24 24 + .route("/info/refs", get(info_refs)) 25 25 + .route("/git-upload-archive", post(upload_archive::upload_archive)) 26 26 + .route("/git-upload-pack", post(upload_pack::upload_pack)) 27 27 + .route("/git-receive-pack", post(receive_pack::receive_pack)) 28 28 + } 29 29 + 30 30 + #[derive(Debug, serde::Deserialize)] 31 31 + #[serde(rename_all = "kebab-case")] 32 32 + pub enum GitService { 33 33 + GitUploadPack, 34 34 + GitReceivePack, 35 35 + } 36 36 + 37 37 + #[derive(Debug, serde::Deserialize)] 38 38 + pub struct InfoRefsQuery { 39 39 + pub service: GitService, 40 40 + } 41 41 + 42 42 + pub async fn info_refs( 43 43 + state: State<Knot>, 44 44 + Query(InfoRefsQuery { service }): Query<InfoRefsQuery>, 45 45 + protocol: Option<GitProtocol>, 46 46 + request_id: Option<RequestId>, 47 47 + request: Request, 48 48 + ) -> Response { 49 49 + tracing::info!("hello"); 50 50 + match service { 51 51 + GitService::GitUploadPack => { 52 52 + upload_pack::advertise_upload_pack(state, protocol, request_id, request) 53 53 + .await 54 54 + .into_response() 55 55 + } 56 56 + GitService::GitReceivePack => { 57 57 + receive_pack::advertise_receive_pack(state, protocol, request_id, request) 58 58 + .await 59 59 + .into_response() 60 60 + } 61 61 + } 62 62 + } 63 63 + 64 64 + pub async fn pack_line(mut w: impl AsyncWrite + Unpin, s: &str) -> std::io::Result<()> { 65 65 + let buffer = format!("{:04x}{s}", s.len() + 4); 66 66 + w.write_all(buffer.as_bytes()).await?; 67 67 + Ok(()) 68 68 + } 69 69 + 70 70 + #[allow(unused)] 71 71 + pub async fn pack_message(mut w: impl AsyncWrite + Unpin, message: &str) -> std::io::Result<()> { 72 72 + let buffer = format!("{:04x}\u{2}{message}", message.len() + 5); 73 73 + w.write_all(buffer.as_bytes()).await?; 74 74 + Ok(()) 75 75 + } 76 76 + 77 77 + pub async fn pack_flush(mut w: impl AsyncWrite + Unpin) -> std::io::Result<()> { 78 78 + w.write_all(b"0000").await?; 79 79 + Ok(()) 80 80 + }

+140

crates/gordian-knot/src/public/git/receive_pack.rs

reviewed

··· 1 1 + use axum::{ 2 2 + extract::{FromRequestParts as _, Request, State}, 3 3 + http::header::{CACHE_CONTROL, CONNECTION, CONTENT_TYPE}, 4 4 + response::IntoResponse, 5 5 + }; 6 6 + use axum_extra::body::AsyncReadBody; 7 7 + use std::{ffi::OsString, process::Stdio}; 8 8 + use tokio::net::unix::pipe::{Sender, pipe as async_pipe}; 9 9 + 10 10 + use crate::{ 11 11 + command::{SetOptionEnv as _, TraceProcessCompletion as _}, 12 12 + extractors::{GitProtocol, request_id::RequestId}, 13 13 + model::{Knot, repository::TangledRepository}, 14 14 + private, 15 15 + public::git::GitAuthorization, 16 16 + services::git::stream_to_pipe, 17 17 + }; 18 18 + 19 19 + const RECEIVE_PACK_ADVERTISEMENT: &str = "application/x-git-receive-pack-advertisement"; 20 20 + const RECEIVE_PACK_RESULT: &str = "application/x-git-receive-pack-result"; 21 21 + 22 22 + const NO_CACHE: &str = "no-cache, max-age=0, must-revalidate"; 23 23 + const KEEP_ALIVE: &str = "keep-alive"; 24 24 + 25 25 + pub async fn advertise_receive_pack( 26 26 + State(knot): State<Knot>, 27 27 + protocol: Option<GitProtocol>, 28 28 + request_id: Option<RequestId>, 29 29 + request: Request, 30 30 + ) -> Result<impl IntoResponse, super::Error> { 31 31 + let (mut parts, _) = request.into_parts(); 32 32 + let repository = TangledRepository::from_git_request(&mut parts, &knot).await?; 33 33 + let GitAuthorization(auth) = GitAuthorization::from_request_parts(&mut parts, &knot).await?; 34 34 + 35 35 + if !knot.can_push(repository.repository_key(), &auth.iss).await { 36 36 + tracing::error!(did = %auth.iss, "push denied"); 37 37 + return Err(super::Error::forbidden( 38 38 + &knot, 39 39 + format!( 40 40 + "'{}' does not have permission to push to this repository", 41 41 + auth.iss 42 42 + ), 43 43 + ))?; 44 44 + } 45 45 + 46 46 + let nonce_seed = knot.generate_push_seed(repository.repository_key()); 47 47 + 48 48 + let (mut stdout_tx, stdout_rx) = async_pipe()?; 49 49 + super::pack_line(&mut stdout_tx, "# service=git-receive-pack\n").await?; 50 50 + super::pack_flush(&mut stdout_tx).await?; 51 51 + 52 52 + let mut command: tokio::process::Command = repository.git().into(); 53 53 + command 54 54 + .option_env("GIT_PROTOCOL", protocol.as_deref()) 55 55 + .option_env("X_REQUEST_ID", request_id) 56 56 + .env(private::ENV_USER_DID, auth.iss.as_str()) 57 57 + .args([ 58 58 + "-c", 59 59 + &nonce_seed, 60 60 + "receive-pack", 61 61 + "--http-backend-info-refs", 62 62 + "--stateless-rpc", 63 63 + ]) 64 64 + .arg(repository.path()) 65 65 + .stdin(Stdio::null()) 66 66 + .stdout(stdout_tx.into_blocking_fd()?) 67 67 + .stderr(Stdio::piped()); 68 68 + 69 69 + let child = command.spawn()?; 70 70 + tokio::task::spawn(child.wait_with_completion_trace()); 71 71 + 72 72 + let headers = [ 73 73 + (CONTENT_TYPE, RECEIVE_PACK_ADVERTISEMENT), 74 74 + (CONNECTION, KEEP_ALIVE), 75 75 + (CACHE_CONTROL, NO_CACHE), 76 76 + ]; 77 77 + 78 78 + Ok((headers, AsyncReadBody::new(stdout_rx))) 79 79 + } 80 80 + 81 81 + pub async fn receive_pack( 82 82 + State(knot): State<Knot>, 83 83 + protocol: Option<GitProtocol>, 84 84 + request_id: Option<RequestId>, 85 85 + request: Request, 86 86 + ) -> Result<impl IntoResponse, super::Error> { 87 87 + let (mut parts, body) = request.into_parts(); 88 88 + let repository = TangledRepository::from_git_request(&mut parts, &knot).await?; 89 89 + let GitAuthorization(auth) = GitAuthorization::from_request_parts(&mut parts, &knot).await?; 90 90 + 91 91 + if !knot.can_push(repository.repository_key(), &auth.iss).await { 92 92 + tracing::error!(did = %auth.iss, "push denied"); 93 93 + return Err(super::Error::forbidden( 94 94 + &knot, 95 95 + format!( 96 96 + "'{}' does not have permission to push to this repository", 97 97 + auth.iss 98 98 + ), 99 99 + ))?; 100 100 + } 101 101 + 102 102 + let nonce_seed = knot.generate_push_seed(repository.repository_key()); 103 103 + let allowed_signers_path = std::env::current_dir() 104 104 + .unwrap() 105 105 + .join("allowed_signers") 106 106 + .join(auth.iss.as_str()); 107 107 + 108 108 + let mut allowed_signers_option = OsString::with_capacity( 109 109 + "gpg.ssh.allowedSignersFile=".len() + allowed_signers_path.as_os_str().len(), 110 110 + ); 111 111 + allowed_signers_option.push("gpg.ssh.allowedSignersFile="); 112 112 + allowed_signers_option.push(&allowed_signers_path); 113 113 + 114 114 + let mut command: tokio::process::Command = repository.git().into(); 115 115 + command 116 116 + .option_env("GIT_PROTOCOL", protocol.as_deref()) 117 117 + .option_env("X_REQUEST_ID", request_id) 118 118 + .env(private::ENV_USER_DID, auth.iss.as_str()) 119 119 + .args(["-c", &nonce_seed, "-c"]) 120 120 + .arg(&allowed_signers_option) 121 121 + .args(["receive-pack", "--stateless-rpc"]) 122 122 + .arg(repository.path()) 123 123 + .stdin(Stdio::piped()) 124 124 + .stdout(Stdio::piped()) 125 125 + .stderr(Stdio::piped()); 126 126 + 127 127 + let mut child = command.spawn()?; 128 128 + let stdin = child.stdin.take().expect("handle present"); 129 129 + let stdout = child.stdout.take().expect("handle present"); 130 130 + 131 131 + tokio::task::spawn(stream_to_pipe( 132 132 + body.into_data_stream(), 133 133 + Sender::from_owned_fd(stdin.into_owned_fd()?)?, 134 134 + )); 135 135 + 136 136 + tokio::spawn(child.wait_with_completion_trace()); 137 137 + 138 138 + let headers = [(CONTENT_TYPE, RECEIVE_PACK_RESULT)]; 139 139 + Ok((headers, AsyncReadBody::new(stdout)).into_response()) 140 140 + }

+1 -1

crates/gordian-knot/src/public/xrpc/sh_tangled/repo/impl_archive.rs

reviewed

··· 1 1 + use crate::command::SetOptionArg as _; 1 2 use crate::model::Knot; 2 3 use crate::model::errors; 3 4 use crate::model::repository::ResolvedRevspec; ··· 12 11 use axum::http::StatusCode; 13 12 use axum::response::IntoResponse; 14 13 use axum_extra::body::AsyncReadBody; 15 15 - use git_service::util::SetOptionArg as _; 16 14 use gordian_lexicon::sh_tangled::repo::archive::Format; 17 15 use gordian_lexicon::sh_tangled::repo::archive::Input; 18 16 use std::process::Stdio;

+1

crates/gordian-knot/src/services.rs

reviewed

··· 1 1 pub mod atrepo; 2 2 pub mod authorization; 3 3 pub mod database; 4 4 + pub mod git; 4 5 pub mod jetstream; 5 6 pub mod rbac; 6 7 pub mod seed;

+34

crates/gordian-knot/src/services/git.rs

reviewed

··· 1 1 + use std::io; 2 2 + 3 3 + use axum::body::{BodyDataStream, HttpBody as _}; 4 4 + use tokio::{io::AsyncWriteExt as _, net::unix::pipe::Sender}; 5 5 + 6 6 + pub async fn stream_to_pipe(mut body_stream: BodyDataStream, mut pipe: Sender) -> io::Result<()> { 7 7 + use tokio_stream::StreamExt as _; 8 8 + 9 9 + let mut buffer = bytes::BytesMut::new(); 10 10 + let mut bytes_len = 0; 11 11 + loop { 12 12 + if !buffer.is_empty() { 13 13 + pipe.writable().await?; 14 14 + pipe.write_buf(&mut buffer).await?; 15 15 + } 16 16 + 17 17 + match body_stream.next().await { 18 18 + None if !buffer.is_empty() => continue, 19 19 + None => break, 20 20 + Some(Ok(chunk)) => { 21 21 + bytes_len += chunk.len(); 22 22 + buffer.extend_from_slice(&chunk); 23 23 + } 24 24 + Some(Err(error)) => { 25 25 + tracing::error!(?error, "error chunk"); 26 26 + return Err(io::Error::new(io::ErrorKind::BrokenPipe, error)); 27 27 + } 28 28 + } 29 29 + } 30 30 + 31 31 + tracing::trace!(end = ?body_stream.is_end_stream(), ?bytes_len, "finished reading request body"); 32 32 + 33 33 + Ok(()) 34 34 + }