Mercurial > evolve
view hgext/directaccess.py @ 1368:c02cdb97ebfa
directaccess: disable directaccess for push and serve
Before this patch, push and serve were subject to directaccess. This patch
makes them throw error when trying to access hidden hashes.
author | Laurent Charignon <lcharignon@fb.com> |
---|---|
date | Tue, 16 Jun 2015 10:19:17 -0700 |
parents | 0c134ca37567 |
children | 30d42079f4a2 |
line wrap: on
line source
""" This extension provides direct access It is the ability to refer and access hidden sha in commands provided that you know their value. For example hg log -r xxx where xxx is a commit has should work whether xxx is hidden or not as we assume that the user knows what he is doing when referring to xxx. """ from mercurial import extensions from mercurial import cmdutil from mercurial import repoview from mercurial import branchmap from mercurial import revset from mercurial import error from mercurial import commands from mercurial import hg from mercurial.i18n import _ cmdtable = {} command = cmdutil.command(cmdtable) # By default, all the commands have directaccess with warnings # List of commands that have no directaccess and directaccess with no warning directaccesslevel = [ # 'nowarning' or 'error', (None if core) or extension name, command name ('nowarning', None, 'update'), ('nowarning', None, 'export'), ('nowarning', 'evolve', 'prune'), ('error', None, 'push'), ('error', None, 'serve'), ] def reposetup(ui, repo): repo._explicitaccess = set() def _computehidden(repo): hidden = repoview.filterrevs(repo, 'visible') cl = repo.changelog dynamic = hidden & repo._explicitaccess if dynamic: blocked = cl.ancestors(dynamic, inclusive=True) hidden = frozenset(r for r in hidden if r not in blocked) return hidden def setupdirectaccess(): """ Add two new filtername that behave like visible to provide direct access and direct access with warning. Wraps the commands to setup direct access """ repoview.filtertable.update({'visible-directaccess-nowarn': _computehidden}) repoview.filtertable.update({'visible-directaccess-warn': _computehidden}) branchmap.subsettable['visible-directaccess-nowarn'] = 'visible' branchmap.subsettable['visible-directaccess-warn'] = 'visible' for warn, ext, cmd in directaccesslevel: try: cmdtable = extensions.find(ext).cmdtable if ext else commands.table wrapper = wrapwitherror if warn == 'error' else wrapwithoutwarning extensions.wrapcommand(cmdtable, cmd, wrapper) except (error.UnknownCommand, KeyError): pass def wrapwitherror(orig, ui, repo, *args, **kwargs): if repo and repo.filtername == 'visible-directaccess-warn': repo = repo.filtered('visible') return orig(ui, repo, *args, **kwargs) def wrapwithoutwarning(orig, ui, repo, *args, **kwargs): if repo and repo.filtername == 'visible-directaccess-warn': repo = repo.filtered("visible-directaccess-nowarn") return orig(ui, repo, *args, **kwargs) def uisetup(ui): """ Change ordering of extensions to ensure that directaccess extsetup comes after the one of the extensions in the loadsafter list """ loadsafter = ui.configlist('directaccess','loadsafter') order = list(extensions._order) directaccesidx = order.index('directaccess') # The min idx for directaccess to load after all the extensions in loadafter minidxdirectaccess = directaccesidx for ext in loadsafter: try: minidxdirectaccess = max(minidxdirectaccess, order.index(ext)) except ValueError: pass # extension not loaded if minidxdirectaccess > directaccesidx: order.insert(minidxdirectaccess + 1, 'directaccess') order.remove('directaccess') extensions._order = order def _repository(orig, *args, **kwargs): """Make visible-directaccess-warn the default filter for new repos""" repo = orig(*args, **kwargs) return repo.filtered("visible-directaccess-warn") def extsetup(ui): extensions.wrapfunction(revset, 'posttreebuilthook', _posttreebuilthook) extensions.wrapfunction(hg, 'repository', _repository) setupdirectaccess() def gethashsymbols(tree): # Returns the list of symbols of the tree that look like hashes # for example for the revset 3::abe3ff it will return ('abe3ff') if not tree: return [] if len(tree) == 2 and tree[0] == "symbol": try: int(tree[1]) return [] except ValueError as e: return [tree[1]] elif len(tree) == 3: return gethashsymbols(tree[1]) + gethashsymbols(tree[2]) else: return [] def _posttreebuilthook(orig, tree, repo): # This is use to enabled direct hash access # We extract the symbols that look like hashes and add them to the # explicitaccess set orig(tree, repo) filternm = "" if repo is not None: filternm = repo.filtername if filternm is not None and filternm.startswith('visible-directaccess'): prelength = len(repo._explicitaccess) accessbefore = set(repo._explicitaccess) repo.symbols = gethashsymbols(tree) cl = repo.unfiltered().changelog for node in repo.symbols: try: node = cl._partialmatch(node) except error.LookupError: node = None if node is not None: rev = cl.rev(node) if rev not in repo.changelog: repo._explicitaccess.add(rev) if prelength != len(repo._explicitaccess): if repo.filtername != 'visible-directaccess-nowarn': unhiddencommits = repo._explicitaccess - accessbefore repo.ui.warn( _("Warning: accessing hidden changesets %s " "for write operation\n") % (",".join([str(repo.unfiltered()[l]) for l in unhiddencommits]))) repo.invalidatevolatilesets()