3 # A git daemon with an added userv security boundary.
5 # This reads the first packet-line of the protocol, checks the syntax
6 # of the pathname and hostname, then uses userv to invoke the
7 # git-upload-pack as the target user with safe arguments.
9 # This was written by Tony Finch <dot@dotat.at>
10 # You may do anything with it, at your own risk.
11 # http://creativecommons.org/publicdomain/zero/1.0/
20 use vars
qw{ $TILDE $REPO $HOSTNAME
21 %vhost_default_user %vhost_tilde_is_user %vhost_tilde_forbidden };
24 require 'git-daemon-vhosts.pl';
26 my $peer = getpeername STDIN
;
29 ($port,$addr) = sockaddr_in
$peer;
30 $addr = inet_ntoa
$addr;
31 $peer = "[$addr]:$port";
33 $peer = "[?.?.?.?]:?";
37 openlog
'userv-git-daemon', 'pid', 'daemon';
40 syslog
'err', "$peer @_";
47 local $SIG{ALRM
} = sub { fail
"timeout" };
49 while ($length > length $buffer) {
50 my $ret = sysread STDIN
, $buffer, $length, length $buffer;
51 fail
"short read: expected $length bytes, got " . length $buffer
52 if defined $ret and $ret == 0;
53 fail
"read: $!" if not defined $ret and $! != EINTR
and $! != EAGAIN
;
54 $ret = 0 if not defined $ret;
60 my $len_hex = xread
4;
61 fail
"non-hexadecimal packet length" unless $len_hex =~ m{^[0-9a-zA-Z]{4}$};
62 my $line = xread
hex $len_hex;
63 unless ($line =~ m{^git-upload-pack (?:~($TILDE)/)?($REPO[.]git)\0host=($HOSTNAME)\0$}) {
64 $line =~ s/[^ -~]+/ /g;
65 fail
"could not parse \"$line\""
67 my ($tilde,$repo,$host) = ($1,$2,$3);
68 my $url = $tilde ?
"git://$host/~$tilde/$repo" : "git://$host/$repo";
70 fail
"tilde forbidden for $url" if defined $tilde and $vhost_tilde_forbidden{$host};
71 my $user = $vhost_tilde_is_user{$host} ?
$tilde : $vhost_default_user{$host};
72 fail
"no user configured for $url" unless defined $user;
73 syslog
'info', "$peer $user $url";
75 my @opts = ("-DHOST=$host", "-DREPO=$repo");
76 push @opts, "-DTILDE=$tilde" if defined $tilde;
77 push @opts, "-DCLIENT=$addr" if defined $addr;
78 no warnings
; # suppress errors to stderr
79 exec 'userv', @opts, $user, 'git-upload-pack'
80 or fail
"exec userv: $!";