mirror of
https://github.com/facebook/sapling.git
synced 2024-10-11 09:17:30 +03:00
915ce74059
Summary: We need to get the `.py` file name from `__file__`, which could be `.pyc` and `.pyo`. Previously only `.pyc` is handled. This diff handles `.pyo` as well. Test Plan: Run existing tests Reviewers: ttung, mjpieters, #mercurial, simonfar Reviewed By: simonfar Subscribers: simonfar, mjpieters Differential Revision: https://phabricator.intern.facebook.com/D3627929 Signature: t1:3627929:1469625182:1c0f5f720fe7eb4cbe3e6abd8e9407ced617d2a0
219 lines
6.3 KiB
Python
Executable File
219 lines
6.3 KiB
Python
Executable File
#!/usr/bin/env python
|
|
|
|
# sshaskpass.py
|
|
#
|
|
# Copyright 2016 Facebook, Inc.
|
|
#
|
|
# This software may be used and distributed according to the terms of the
|
|
# GNU General Public License version 2 or any later version.
|
|
|
|
"""ssh-askpass implementation that works with chg
|
|
|
|
chg runs ssh at server side, and ssh does not have access to /dev/tty thus
|
|
unable to ask for password interactively when its output is being piped (ex.
|
|
during hg push or pull).
|
|
|
|
When ssh is unable to use /dev/tty, it will try to run SSH_ASKPASS if DISPLAY
|
|
is set, which is usually a GUI program. Here we set it to a special program
|
|
receiving fds from a simple unix socket server.
|
|
|
|
This file is both a mercurial extension to start that tty server and an
|
|
executable serving as the ssh-askpass script. Therefore its mode should
|
|
have the +x (executable) bit.
|
|
"""
|
|
|
|
import contextlib
|
|
import errno
|
|
import os
|
|
import signal
|
|
import socket
|
|
import sys
|
|
import tempfile
|
|
|
|
from multiprocessing.reduction import recv_handle, send_handle
|
|
|
|
from mercurial import (
|
|
extensions,
|
|
sshpeer,
|
|
util,
|
|
)
|
|
|
|
@contextlib.contextmanager
|
|
def _silentexception(terminate=False):
|
|
"""silent common exceptions
|
|
|
|
useful if we don't want to pollute the terminal
|
|
exit if terminal is True
|
|
"""
|
|
exitcode = 0
|
|
try:
|
|
yield
|
|
except KeyboardInterrupt:
|
|
exitcode = 1
|
|
except Exception:
|
|
exitcode = 2
|
|
if terminate:
|
|
os._exit(exitcode)
|
|
|
|
def _sockbind(sock, addr):
|
|
"""shim for util.bindunixsocket"""
|
|
sock.bind(addr)
|
|
|
|
def _isttyserverneeded():
|
|
# respect user's setting, SSH_ASKPASS is likely a gui program
|
|
if 'SSH_ASKPASS' in os.environ:
|
|
return False
|
|
|
|
# the tty server is not needed if /dev/tty can be opened
|
|
try:
|
|
with open('/dev/tty'):
|
|
return False
|
|
except Exception:
|
|
pass
|
|
|
|
# if neither stdin nor stderr are tty, give up
|
|
if not all(f.isatty() for f in [sys.stdin, sys.stderr]):
|
|
return False
|
|
|
|
# tty server is needed
|
|
return True
|
|
|
|
def _startttyserver():
|
|
"""start a tty fd server
|
|
|
|
the server will send tty read and write fds via unix socket
|
|
|
|
listens at sockpath: $TMPDIR/ttysrv$UID/$PID
|
|
returns (pid, sockpath)
|
|
"""
|
|
# socket file should live in a user-owned directory with mode 0700
|
|
sockpath = os.path.join(tempfile.gettempdir(), 'ttysrv%d' % os.getuid(),
|
|
str(os.getpid()))
|
|
util.unlinkpath(sockpath, ignoremissing=True)
|
|
try:
|
|
os.makedirs(os.path.dirname(sockpath), 0o700)
|
|
except OSError as e:
|
|
if e.errno != errno.EEXIST:
|
|
raise
|
|
|
|
pipes = os.pipe()
|
|
ppid = os.getpid()
|
|
pid = os.fork()
|
|
if pid:
|
|
# parent, wait for the child to start listening
|
|
os.close(pipes[1])
|
|
os.read(pipes[0], 1)
|
|
os.close(pipes[0])
|
|
return pid, sockpath
|
|
|
|
# child, starts the server
|
|
ttyr = sys.stdin
|
|
ttyw = sys.stderr
|
|
|
|
sock = socket.socket(socket.AF_UNIX, socket.SOCK_STREAM)
|
|
getattr(util, 'bindunixsocket', _sockbind)(sock, sockpath)
|
|
sock.listen(1)
|
|
|
|
# unblock parent
|
|
os.close(pipes[0])
|
|
os.write(pipes[1], ' ')
|
|
os.close(pipes[1])
|
|
with _silentexception(terminate=True):
|
|
while True:
|
|
conn, addr = sock.accept()
|
|
# 0: a dummy destination_pid, is ignored on posix systems
|
|
send_handle(conn, ttyr.fileno(), 0)
|
|
send_handle(conn, ttyw.fileno(), 0)
|
|
conn.close()
|
|
|
|
def _killprocess(pid):
|
|
"""kill and reap a child process"""
|
|
os.kill(pid, signal.SIGTERM)
|
|
try:
|
|
os.waitpid(pid, 0)
|
|
except KeyboardInterrupt:
|
|
pass
|
|
except Exception:
|
|
pass
|
|
|
|
def _receivefds(sockpath):
|
|
"""get fds from the tty server listening at sockpath
|
|
|
|
returns (readfd, writefd)
|
|
"""
|
|
sock = socket.socket(socket.AF_UNIX, socket.SOCK_STREAM)
|
|
# use chdir to handle long sockpath
|
|
os.chdir(os.path.dirname(sockpath) or '.')
|
|
sock.connect(os.path.basename(sockpath))
|
|
rfd = recv_handle(sock)
|
|
wfd = recv_handle(sock)
|
|
return (rfd, wfd)
|
|
|
|
def _validaterepo(orig, self, sshcmd, args, remotecmd):
|
|
if not _isttyserverneeded():
|
|
return orig(self, sshcmd, args, remotecmd)
|
|
|
|
pid = sockpath = None
|
|
with _silentexception(terminate=False):
|
|
pid, sockpath = _startttyserver()
|
|
scriptpath = os.path.abspath(__file__)
|
|
if scriptpath[-4:].lower() in ('.pyc', '.pyo'):
|
|
scriptpath = scriptpath[:-1]
|
|
parentpids = [os.getpid(), pid]
|
|
env = {
|
|
# ssh will not use SSH_ASKPASS if DISPLAY is not set
|
|
'DISPLAY': os.environ.get('DISPLAY', ''),
|
|
'SSH_ASKPASS': util.shellquote(scriptpath),
|
|
'TTYSOCK': util.shellquote(sockpath),
|
|
}
|
|
prefix = ' '.join('%s=%s' % (k, v) for k, v in env.items())
|
|
# modify sshcmd to include new environ
|
|
sshcmd = '%s %s' % (prefix, sshcmd)
|
|
|
|
try:
|
|
return orig(self, sshcmd, args, remotecmd)
|
|
finally:
|
|
if pid:
|
|
_killprocess(pid)
|
|
if sockpath and os.path.exists(sockpath):
|
|
util.unlinkpath(sockpath, ignoremissing=True)
|
|
|
|
def uisetup(ui):
|
|
# _validaterepo runs ssh and needs to be wrapped
|
|
extensions.wrapfunction(sshpeer.sshpeer, '_validaterepo', _validaterepo)
|
|
|
|
def _setecho(ttyr, enableecho):
|
|
import termios
|
|
attrs = termios.tcgetattr(ttyr)
|
|
if bool(enableecho) == bool(attrs[3] & termios.ECHO):
|
|
return
|
|
attrs[3] ^= termios.ECHO
|
|
termios.tcsetattr(ttyr, termios.TCSANOW, attrs)
|
|
|
|
def _shoulddisableecho(prompt):
|
|
# we don't have the "flag" information from openssh's
|
|
# read_passphrase(const char *prompt, int flags).
|
|
# guess from the prompt string.
|
|
return prompt.find('\'s password:') >= 0
|
|
|
|
def _sshaskpassmain(prompt):
|
|
"""the ssh-askpass client"""
|
|
rfd, wfd = _receivefds(os.environ['TTYSOCK'])
|
|
r, w = os.fdopen(rfd, 'r'), os.fdopen(wfd, 'a')
|
|
w.write('==== SSH Authenticating ====\n')
|
|
w.write(prompt)
|
|
w.flush()
|
|
_setecho(r, not _shoulddisableecho(prompt))
|
|
try:
|
|
line = r.readline()
|
|
finally:
|
|
_setecho(r, True)
|
|
sys.stdout.write(line)
|
|
sys.stdout.flush()
|
|
|
|
if __name__ == '__main__' and all(n in os.environ
|
|
for n in ['SSH_ASKPASS', 'TTYSOCK']):
|
|
# started by ssh as ssh-askpass
|
|
with _silentexception(terminate=True):
|
|
_sshaskpassmain(' '.join(sys.argv[1:]))
|