qusal/salt/sys-git/files/server/rpc/qusal.GitInit

#!/bin/sh

# SPDX-FileCopyrightText: 2023 - 2024 Benjamin Grande M. S. <ben.grande.b@gmail.com>
#
# SPDX-License-Identifier: AGPL-3.0-or-later

set -eu

die(){
  echo "error: ${1}" >&2
  exit 1
}

if ! command -v git >/dev/null; then
  die "Command not found: git"
fi

## TODO: subdirectory? dir+repo
untrusted_repo="${QREXEC_SERVICE_ARGUMENT}"

if test -z "${untrusted_repo}"; then
  die "Repository name is empty"
fi

if ! (echo "${untrusted_repo}" | grep -q "^[A-Za-z0-9][A-Za-z0-9_.-]\+$")
then
  msg="Forbidden characters in agent name."
  msg="${msg} Allowed chars: letters, numbers, hyphen, underscore and dot."
  msg="${msg} Name cannot begin with hyphen, underscore or dot"
  die "${msg}"
fi

## Length arbitrarily set.
if test "${#untrusted_repo}" -gt 128; then
  die "Repository name is too long: ${#untrusted_repo}"
fi

base_path="$HOME/src"
repo="${untrusted_repo}"

case "${repo}" in
  *".git") ;;
  *) repo="${repo}.git";;
esac

path="${base_path}/${repo}"
action="${0##*.Git}"

case "${action}" in
  Fetch) service=git-upload-pack;;
  Push)  service=git-receive-pack;;
  Init)  service="git init --bare";;
  *) die "Invalid RPC name: ${0##*/}";;
esac

if test "${action}" != "Init"; then
  test -d "${path}" || die "Directory doesn't exist: ${repo}"
  git -C "${path}" rev-parse >/dev/null 2>&1 ||
    die "Not a git repository: ${repo}"
  is_bare="$(git -C "${path}" rev-parse --is-bare-repository)"
  test "${is_bare}" = "true" || die "Not a bare repository: ${repo}"
fi

if ! test -d "${base_path}"; then
  # shellcheck disable=SC2174
  mkdir -m 0700 -p "${base_path}" >/dev/null 2>&1 ||
    die "Cannot create directory: ${base_path}"
fi

# shellcheck disable=SC2086
exec ${service} -- "${path}"
refactor: initial commit 2023-11-13 14:33:28 +00:00			`#!/bin/sh`

style: limit line length per file extension Editorconfig can only act based on file extension and path, not attributes, it remains a mean only for multiple collaborators to use the same configuration on their editor. When it is too restrictive, such as not considering the file syntax, use a lint tool for the specific file type instead of trusting editorconfig. Changes were made to increase readability. 2024-07-09 17:42:07 +02:00			`# SPDX-FileCopyrightText: 2023 - 2024 Benjamin Grande M. S. <ben.grande.b@gmail.com>`
refactor: initial commit 2023-11-13 14:33:28 +00:00			`#`
			`# SPDX-License-Identifier: AGPL-3.0-or-later`

			`set -eu`

			`die(){`
fix: unstrusted input marking and sanitization 2023-11-21 14:57:47 +00:00			`echo "error: ${1}" >&2`
refactor: initial commit 2023-11-13 14:33:28 +00:00			`exit 1`
			`}`

			`if ! command -v git >/dev/null; then`
			`die "Command not found: git"`
			`fi`

refactor: prefer systemd sockets over socat - Document preferred method for socket use depending on use case; - Fix Github web-flow key; - Standardize naming of services; - Use sys-ssh in ansible formula; - Start services conditionally with Qubes Service and evaluated by systemd ConditionPathExists= instead of installing on a per qube basis with rc.local scripts; - Change Qusal services to "qusal-" prefix instead of "qubes-" prefix. Fixes: https://github.com/ben-grande/qusal/issues/80 Fixes: https://github.com/ben-grande/qusal/issues/79 2024-06-25 22:16:26 +02:00			`## TODO: subdirectory? dir+repo`
fix: unstrusted input marking and sanitization 2023-11-21 14:57:47 +00:00			`untrusted_repo="${QREXEC_SERVICE_ARGUMENT}"`

			`if test -z "${untrusted_repo}"; then`
			`die "Repository name is empty"`
			`fi`

			`if ! (echo "${untrusted_repo}" \| grep -q "^[A-Za-z0-9][A-Za-z0-9_.-]\+$")`
			`then`
style: limit line length per file extension Editorconfig can only act based on file extension and path, not attributes, it remains a mean only for multiple collaborators to use the same configuration on their editor. When it is too restrictive, such as not considering the file syntax, use a lint tool for the specific file type instead of trusting editorconfig. Changes were made to increase readability. 2024-07-09 17:42:07 +02:00			`msg="Forbidden characters in agent name."`
			`msg="${msg} Allowed chars: letters, numbers, hyphen, underscore and dot."`
			`msg="${msg} Name cannot begin with hyphen, underscore or dot"`
			`die "${msg}"`
fix: unstrusted input marking and sanitization 2023-11-21 14:57:47 +00:00			`fi`

			`## Length arbitrarily set.`
			`if test "${#untrusted_repo}" -gt 128; then`
			`die "Repository name is too long: ${#untrusted_repo}"`
			`fi`

			`base_path="$HOME/src"`
			`repo="${untrusted_repo}"`

			`case "${repo}" in`
refactor: initial commit 2023-11-13 14:33:28 +00:00			`*".git") ;;`
fix: unstrusted input marking and sanitization 2023-11-21 14:57:47 +00:00			`*) repo="${repo}.git";;`
refactor: initial commit 2023-11-13 14:33:28 +00:00			`esac`

fix: unstrusted input marking and sanitization 2023-11-21 14:57:47 +00:00			`path="${base_path}/${repo}"`
refactor: initial commit 2023-11-13 14:33:28 +00:00			`action="${0##*.Git}"`

fix: unstrusted input marking and sanitization 2023-11-21 14:57:47 +00:00			`case "${action}" in`
refactor: initial commit 2023-11-13 14:33:28 +00:00			`Fetch) service=git-upload-pack;;`
			`Push) service=git-receive-pack;;`
			`Init) service="git init --bare";;`
			`) die "Invalid RPC name: ${0##/}";;`
			`esac`

fix: unstrusted input marking and sanitization 2023-11-21 14:57:47 +00:00			`if test "${action}" != "Init"; then`
			`test -d "${path}" \|\| die "Directory doesn't exist: ${repo}"`
style: limit line length per file extension Editorconfig can only act based on file extension and path, not attributes, it remains a mean only for multiple collaborators to use the same configuration on their editor. When it is too restrictive, such as not considering the file syntax, use a lint tool for the specific file type instead of trusting editorconfig. Changes were made to increase readability. 2024-07-09 17:42:07 +02:00			`git -C "${path}" rev-parse >/dev/null 2>&1 \|\|`
			`die "Not a git repository: ${repo}"`
fix: unstrusted input marking and sanitization 2023-11-21 14:57:47 +00:00			`is_bare="$(git -C "${path}" rev-parse --is-bare-repository)"`
			`test "${is_bare}" = "true" \|\| die "Not a bare repository: ${repo}"`
refactor: initial commit 2023-11-13 14:33:28 +00:00			`fi`

fix: unstrusted input marking and sanitization 2023-11-21 14:57:47 +00:00			`if ! test -d "${base_path}"; then`
refactor: initial commit 2023-11-13 14:33:28 +00:00			`# shellcheck disable=SC2174`
fix: unstrusted input marking and sanitization 2023-11-21 14:57:47 +00:00			`mkdir -m 0700 -p "${base_path}" >/dev/null 2>&1 \|\|`
			`die "Cannot create directory: ${base_path}"`
refactor: initial commit 2023-11-13 14:33:28 +00:00			`fi`

			`# shellcheck disable=SC2086`
fix: unstrusted input marking and sanitization 2023-11-21 14:57:47 +00:00			`exec ${service} -- "${path}"`