mirrors/git-annex
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

factor out helper functions

Browse source 
These will be used by the proxy, which needs to check the ServerMode in
the same way.
This commit is contained in:
Joey Hess 2024-06-11 12:04:58 -04:00
parent 92c83a417f
commit 373ae49c87
No known key found for this signature in database
GPG key ID: DB12DB0FF05F8F38
1 changed files with 55 additions and 28 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

83
P2P/Protocol.hs
View file

@ -440,8 +440,6 @@ data ServerMode
serveAuthed :: ServerMode -> UUID -> Proto () serveAuthed :: ServerMode -> UUID -> Proto ()
serveAuthed servermode myuuid = void $ serverLoop handler serveAuthed servermode myuuid = void $ serverLoop handler
where where
readonlyerror = net $ sendMessage (ERROR "this repository is read-only; write access denied")
appendonlyerror = net $ sendMessage (ERROR "this repository is append-only; removal denied")
handler (VERSION theirversion) = do handler (VERSION theirversion) = do
let v = min theirversion maxProtocolVersion let v = min theirversion maxProtocolVersion
net $ setProtocolVersion v net $ setProtocolVersion v
@ -459,41 +457,37 @@ serveAuthed servermode myuuid = void $ serverLoop handler
handler (CHECKPRESENT key) = do handler (CHECKPRESENT key) = do
sendSuccess =<< local (checkContentPresent key) sendSuccess =<< local (checkContentPresent key)
return ServerContinue return ServerContinue
handler (REMOVE key) = case servermode of handler (REMOVE key) =
ServeReadWrite -> do checkREMOVEServerMode servermode $ \case
sendSuccess =<< local (removeContent key) Nothing -> do
return ServerContinue sendSuccess =<< local (removeContent key)
ServeAppendOnly -> do return ServerContinue
appendonlyerror Just notallowed -> do
return ServerContinue notallowed
ServeReadOnly -> do return ServerContinue
readonlyerror handler (PUT (ProtoAssociatedFile af) key) =
return ServerContinue checkPUTServerMode servermode $ \case
handler (PUT (ProtoAssociatedFile af) key) = case servermode of Nothing -> handleput af key
ServeReadWrite -> handleput af key Just notallowed -> do
ServeAppendOnly -> handleput af key notallowed
ServeReadOnly -> do return ServerContinue
readonlyerror
return ServerContinue
handler (GET offset (ProtoAssociatedFile af) key) = do handler (GET offset (ProtoAssociatedFile af) key) = do
void $ sendContent key af offset nullMeterUpdate void $ sendContent key af offset nullMeterUpdate
-- setPresent not called because the peer may have -- setPresent not called because the peer may have
-- requested the data but not permanently stored it. -- requested the data but not permanently stored it.
return ServerContinue return ServerContinue
handler (CONNECT service) = do handler (CONNECT service) = do
let goahead = net $ relayService service
case (servermode, service) of
(ServeReadWrite, _) -> goahead
(ServeAppendOnly, UploadPack) -> goahead
-- git protocol could be used to overwrite
-- refs or something, so don't allow
(ServeAppendOnly, ReceivePack) -> readonlyerror
(ServeReadOnly, UploadPack) -> goahead
(ServeReadOnly, ReceivePack) -> readonlyerror
-- After connecting to git, there may be unconsumed data -- After connecting to git, there may be unconsumed data
-- from the git processes hanging around (even if they -- from the git processes hanging around (even if they
-- exited successfully), so stop serving this connection. -- exited successfully), so stop serving this connection.
return $ ServerGot () let endit = return $ ServerGot ()
checkCONNECTServerMode service servermode $ \case
Nothing -> do
net $ relayService service
endit
Just notallowed -> do
notallowed
endit
handler NOTIFYCHANGE = do handler NOTIFYCHANGE = do
refs <- local waitRefChange refs <- local waitRefChange
net $ sendMessage (CHANGED refs) net $ sendMessage (CHANGED refs)
@ -512,6 +506,39 @@ serveAuthed servermode myuuid = void $ serverLoop handler
local $ setPresent key myuuid local $ setPresent key myuuid
return ServerContinue return ServerContinue
sendReadOnlyError :: Proto ()
sendReadOnlyError = net $ sendMessage $
ERROR "this repository is read-only; write access denied"
sendAppendOnlyError :: Proto ()
sendAppendOnlyError = net $ sendMessage $
ERROR "this repository is append-only; removal denied"
checkPUTServerMode :: Monad m => ServerMode -> (Maybe (Proto ()) -> m a) -> m a
checkPUTServerMode servermode a =
case servermode of
ServeReadWrite -> a Nothing
ServeAppendOnly -> a Nothing
ServeReadOnly -> a (Just sendReadOnlyError)
checkREMOVEServerMode :: Monad m => ServerMode -> (Maybe (Proto ()) -> m a) -> m a
checkREMOVEServerMode servermode a =
case servermode of
ServeReadWrite -> a Nothing
ServeAppendOnly -> a (Just sendAppendOnlyError)
ServeReadOnly -> a (Just sendReadOnlyError)
checkCONNECTServerMode :: Monad m => Service -> ServerMode -> (Maybe (Proto ()) -> m a) -> m a
checkCONNECTServerMode service servermode a =
case (servermode, service) of
(ServeReadWrite, _) -> a Nothing
(ServeAppendOnly, UploadPack) -> a Nothing
-- git protocol could be used to overwrite
-- refs or something, so don't allow
(ServeAppendOnly, ReceivePack) -> a (Just sendReadOnlyError)
(ServeReadOnly, UploadPack) -> a Nothing
(ServeReadOnly, ReceivePack) -> a (Just sendReadOnlyError)
sendContent :: Key -> AssociatedFile -> Offset -> MeterUpdate -> Proto Bool sendContent :: Key -> AssociatedFile -> Offset -> MeterUpdate -> Proto Bool
sendContent key af offset@(Offset n) p = go =<< local (contentSize key) sendContent key af offset@(Offset n) p = go =<< local (contentSize key)
where where