mirror of
https://github.com/facebook/sapling.git
synced 2024-10-09 00:14:35 +03:00
e75b9fc1b1
Summary: This commit moves most of the stuff in hgext3rd and related tests to hg-crew/hgext and hg-crew/test respectively. The things that are not moved are the ones which require some more complex imports. Depends on D6675309 Test Plan: - tests are failing at this commit, fixes are in the following commits Reviewers: #sourcecontrol Differential Revision: https://phabricator.intern.facebook.com/D6675329
71 lines
2.0 KiB
Python
71 lines
2.0 KiB
Python
# ownercheck.py - prevent operations on repos not owned
|
|
#
|
|
# Copyright 2016 Facebook, Inc.
|
|
#
|
|
# This software may be used and distributed according to the terms of the
|
|
# GNU General Public License version 2 or any later version.
|
|
|
|
"""prevent operations on repos not owned by the current user
|
|
|
|
This extension checks the ownership of the local repo path (or its parent if
|
|
the path does not exist) and aborts if it does not match the current user.
|
|
|
|
This prevents some common mistakes like using sudo to clone a repo.
|
|
"""
|
|
|
|
import os
|
|
from mercurial import (
|
|
error,
|
|
extensions,
|
|
localrepo,
|
|
)
|
|
from mercurial.i18n import _
|
|
|
|
try:
|
|
import pwd
|
|
except ImportError:
|
|
pwd = None
|
|
|
|
def _getowner(path):
|
|
"""find uid of a path or its parents. return (uid, path)"""
|
|
path = os.path.abspath(path or '')
|
|
while True:
|
|
try:
|
|
stat = os.stat(path)
|
|
return stat.st_uid, path
|
|
except Exception:
|
|
parent = os.path.dirname(path)
|
|
if parent == path:
|
|
break
|
|
path = parent
|
|
return None, None
|
|
|
|
def _describeuser(uid):
|
|
"""convert uid to username if possible"""
|
|
if pwd:
|
|
try:
|
|
return pwd.getpwuid(uid).pw_name
|
|
except Exception:
|
|
pass
|
|
return 'user %d' % uid
|
|
|
|
def _checkownedpath(path):
|
|
ownerid, path = _getowner(path)
|
|
uid = os.getuid()
|
|
# allow access to public places owned by root (ex. /tmp)
|
|
if ownerid in [None, 0, uid]:
|
|
return
|
|
raise error.Abort(_('%s is owned by %s, not you (%s).\n'
|
|
'you are likely doing something wrong.')
|
|
% (path, _describeuser(ownerid), _describeuser(uid)),
|
|
hint=_('you can skip the check using '
|
|
'--config extensions.ownercheck=!'))
|
|
|
|
def _localrepoinit(orig, self, baseui, path=None, create=False):
|
|
_checkownedpath(path)
|
|
return orig(self, baseui, path, create)
|
|
|
|
def uisetup(ui):
|
|
extensions.wrapfunction(localrepo.localrepository,
|
|
'__init__', _localrepoinit)
|