1
package Gitolite::Triggers::Mirroring;
5
use Gitolite::Conf::Load;
10
my $git_commands = "git-upload-pack|git-receive-pack|git-upload-archive";
11
my $hn = $rc{HOSTNAME};
13
my ( $mode, $master, %slaves, %trusted_slaves );
15
# ----------------------------------------------------------------------
18
unless ($ARGV[0] =~ /^server-(\S+)$/) {
19
_die "'$ARGV[0]' is not a valid server name" if $ENV{SSH_ORIGINAL_COMMAND} =~ /^USER=(\S+) SOC=(git-receive-pack '(\S+)')$/;
23
# note: we treat %rc as our own internal "poor man's %ENV"
24
$rc{FROM_SERVER} = $1;
25
trace( 3, "from_server: $1" );
26
my $sender = $rc{FROM_SERVER} || '';
28
# custom peer-to-peer commands. At present the only one is 'perms -c',
29
# sent from a mirror command
30
if ($ENV{SSH_ORIGINAL_COMMAND} =~ /^CREATOR=(\S+) perms -c '(\S+)'$/) {
35
_die "$hn: '$repo' is local" if $mode eq 'local';
36
_die "$hn: '$repo' is native" if $mode eq 'master';
37
_die "$hn: '$sender' is not the master for '$repo'" if $master ne $sender;
39
# this expects valid perms content on STDIN
40
_system("gitolite perms -c $repo");
42
# we're done. Yes, really...
46
if ( $ENV{SSH_ORIGINAL_COMMAND} =~ /^USER=(\S+) SOC=(git-receive-pack '(\S+)')$/ ) {
47
# my ($user, $newsoc, $repo) = ($1, $2, $3);
48
$ENV{SSH_ORIGINAL_COMMAND} = $2;
50
$rc{REDIRECTED_PUSH} = 1;
51
trace( 3, "redirected_push for user $1" );
53
# master -> slave push, no access checks needed
54
$ENV{GL_BYPASS_ACCESS_CHECKS} = 1;
58
# ----------------------------------------------------------------------
62
# nothing, and I mean NOTHING, happens if HOSTNAME is not set
63
trace( 1, "pre_git() on $hn" );
65
my ( $repo, $user, $aa ) = @_[ 1, 2, 3 ];
67
my $sender = $rc{FROM_SERVER} || '';
68
$user = '' if $sender and not exists $rc{REDIRECTED_PUSH};
70
# ------------------------------------------------------------------
71
# now you know the repo, get its mirroring details
74
# we don't deal with any reads. Note that for pre-git this check must
75
# happen *after* getting details, to give mode() a chance to die on "known
76
# unknown" repos (repos that are in the config, but mirror settings
77
# exclude this host from both the master and slave lists)
80
trace( 1, "mirror", "pre_git", $repo, "user=$user", "sender=$sender", "mode=$mode", ( $rc{REDIRECTED_PUSH} ? ("redirected") : () ) );
82
# ------------------------------------------------------------------
83
# case 1: we're master or slave, normal user pushing to us
84
if ( $user and not $rc{REDIRECTED_PUSH} ) {
85
trace( 3, "case 1, user push" );
86
return if $mode eq 'local' or $mode eq 'master';
87
if ( $trusted_slaves{$hn} ) {
88
trace( 3, "redirecting to $master" );
89
trace( 1, "redirect to $master" );
90
exec( "ssh", $master, "USER=$user", "SOC=$ENV{SSH_ORIGINAL_COMMAND}" );
92
_die "$hn: pushing '$repo' to slave '$hn' not allowed";
96
# ------------------------------------------------------------------
97
# case 2: we're slave, master pushing to us
98
if ( $sender and not $rc{REDIRECTED_PUSH} ) {
99
trace( 3, "case 2, master push" );
100
_die "$hn: '$repo' is local" if $mode eq 'local';
101
_die "$hn: '$repo' is native" if $mode eq 'master';
102
_die "$hn: '$sender' is not the master for '$repo'" if $master ne $sender;
106
# ------------------------------------------------------------------
107
# case 3: we're master, slave sending a redirected push to us
108
if ( $sender and $rc{REDIRECTED_PUSH} ) {
109
trace( 3, "case 2, slave redirect" );
110
_die "$hn: '$repo' is local" if $mode eq 'local';
111
_die "$hn: '$repo' is not native" if $mode eq 'slave';
112
_die "$hn: '$sender' is not a valid slave for '$repo'" if not $slaves{$sender};
113
_die "$hn: redirection not allowed from '$sender'" if not $trusted_slaves{$sender};
117
_die "$hn: should not reach this line";
121
# ----------------------------------------------------------------------
125
# nothing, and I mean NOTHING, happens if HOSTNAME is not set
126
trace( 1, "post_git() on $hn" );
128
my ( $repo, $user, $aa ) = @_[ 1, 2, 3 ];
129
# we don't deal with any reads
130
return if $aa eq 'R';
132
my $sender = $rc{FROM_SERVER} || '';
133
$user = '' if $sender;
135
# ------------------------------------------------------------------
136
# now you know the repo, get its mirroring details
139
trace( 1, "mirror", "post_git", $repo, "user=$user", "sender=$sender", "mode=$mode", ( $rc{REDIRECTED_PUSH} ? ("redirected") : () ) );
141
# ------------------------------------------------------------------
142
# case 1: we're master or slave, normal user pushing to us
143
if ( $user and not $rc{REDIRECTED_PUSH} ) {
144
trace( 3, "case 1, user push" );
145
return if $mode eq 'local';
146
# slave was eliminated earlier anyway, so that leaves 'master'
148
# find all slaves and push to each of them
149
push_to_slaves($repo);
154
# ------------------------------------------------------------------
155
# case 2: we're slave, master pushing to us
156
if ( $sender and not $rc{REDIRECTED_PUSH} ) {
157
trace( 3, "case 2, master push" );
162
# ------------------------------------------------------------------
163
# case 3: we're master, slave sending a redirected push to us
164
if ( $sender and $rc{REDIRECTED_PUSH} ) {
165
trace( 3, "case 2, slave redirect" );
167
# find all slaves and push to each of them
168
push_to_slaves($repo);
179
return if $lastrepo eq $repo;
181
$master = master($repo);
182
%slaves = slaves($repo);
184
%trusted_slaves = trusted_slaves($repo);
185
trace( 3, $master, $mode, join( ",", sort keys %slaves ), join( ",", sort keys %trusted_slaves ) );
189
return option( +shift, 'mirror.master' );
193
my $ref = git_config( +shift, "^gitolite-options\\.mirror\\.slaves.*" );
194
my %out = map { $_ => 1 } map { split } values %$ref;
199
my $ref = git_config( +shift, "^gitolite-options\\.mirror\\.redirectOK.*" );
200
# the list of trusted slaves (where we accept redirected pushes from)
201
# is either explicitly given...
202
my @out = map { split } values %$ref;
203
my %out = map { $_ => 1 } @out;
204
# ...or it's all the slaves mentioned if the list is just a "all"
205
%out = %slaves if ( @out == 1 and $out[0] eq 'all' );
211
return 'local' if not $hn;
212
return 'master' if $master eq $hn;
213
return 'slave' if $slaves{$hn};
214
return 'local' if not $master and not %slaves;
215
_die "$hn: '$repo' is mirrored but not here";
222
my $u = $ENV{GL_USER};
223
delete $ENV{GL_USER}; # why? see src/commands/mirror
225
for my $s ( sort keys %slaves ) {
226
system("gitolite mirror push $s $repo &");