hg-stable: hgext/convert/git.py comparison

comparison hgext/convert/git.py @ 28660:cdda7b96afff stable

convert: rewrite calls to Git to use the new shelling mechanism (SEC) CVE-2016-3069 (2/5) One test output changed because we were ignoring git return code in numcommits before.

author	Mateusz Kwapich <mitrandir@fb.com>
date	Tue, 22 Mar 2016 17:05:11 -0700
parents	197eed39e3d5
children	b732e7f2aba4

comparison

equal deleted inserted replaced

-:197eed39e3d5
+:cdda7b96afff
 # The default value (50) is based on the default for 'git diff'.
 similarity = ui.configint('convert', 'git.similarity', default=50)
 if similarity < 0 or similarity > 100:
 raise error.Abort(_('similarity must be between 0 and 100'))
 if similarity > 0:
-self.simopt = '-C%d%%' % similarity
+self.simopt = ['-C%d%%' % similarity]
 findcopiesharder = ui.configbool('convert', 'git.findcopiesharder',
 False)
 if findcopiesharder:
-self.simopt += ' --find-copies-harder'
+self.simopt.append('--find-copies-harder')
 else:
-self.simopt = ''
+self.simopt = []
 checktool('git', 'git')
 self.path = path
 self.submodules = []
 for f in self.catfilepipe:
 f.close()
 def getheads(self):
 if not self.revs:
-heads, ret = self.gitread('git rev-parse --branches --remotes')
+output, status = self.gitrun('rev-parse', '--branches', '--remotes')
-heads = heads.splitlines()
+heads = output.splitlines()
-if ret:
+if status:
 raise error.Abort(_('cannot retrieve git heads'))
 else:
 heads = []
 for rev in self.revs:
-rawhead, ret = self.gitread("git rev-parse --verify %s" % rev)
+rawhead, ret = self.gitrun('rev-parse', '--verify', rev)
 heads.append(rawhead[:-1])
 if ret:
 raise error.Abort(_('cannot retrieve git head "%s"') % rev)
 return heads
 s = c[sec]
 if 'url' in s and 'path' in s:
 self.submodules.append(submodule(s['path'], '', s['url']))
 def retrievegitmodules(self, version):
-modules, ret = self.gitread("git show %s:%s" % (version, '.gitmodules'))
+modules, ret = self.gitrun('show', '%s:%s' % (version, '.gitmodules'))
 if ret:
 # This can happen if a file is in the repo that has permissions
 # 160000, but there is no .gitmodules file.
 self.ui.warn(_("warning: cannot read submodules config file in "
 "%s\n") % version)
 self.ui.warn(_("warning: unable to parse .gitmodules in %s\n")
 % version)
 return
 for m in self.submodules:
-node, ret = self.gitread("git rev-parse %s:%s" % (version, m.path))
+node, ret = self.gitrun('rev-parse', '%s:%s' % (version, m.path))
 if ret:
 continue
 m.node = node.strip()
 def getchanges(self, version, full):
 if full:
 raise error.Abort(_("convert from git does not support --full"))
 self.modecache = {}
-fh = self.gitopen("git diff-tree -z --root -m -r %s %s" % (
+cmd = ['diff-tree','-z', '--root', '-m', '-r'] + self.simopt + [version]
-self.simopt, version))
+output, status = self.gitrun(*cmd)
+if status:
+raise error.Abort(_('cannot read changes in %s') % version)
 changes = []
 copies = {}
 seen = set()
 entry = None
 subexists = [False]
 subdeleted = [False]
-difftree = fh.read().split('\x00')
+difftree = output.split('\x00')
 lcount = len(difftree)
 i = 0
 skipsubmodules = self.ui.configbool('convert', 'git.skipsubmodules',
 False)
 # .gitmodules isn't imported at all, so it being copied to
 # and fro doesn't really make sense
 if f != '.gitmodules' and fdest != '.gitmodules':
 copies[fdest] = f
 entry = None
-if fh.close():
-raise error.Abort(_('cannot read changes in %s') % version)
 if subexists[0]:
 if subdeleted[0]:
 changes.append(('.hgsubstate', hex(nullid)))
 else:
 c = commit(parents=parents, date=date, author=author, desc=message,
 rev=version)
 return c
 def numcommits(self):
-return len([None for _ in self.gitopen('git rev-list --all')])
+output, ret = self.gitrunlines('rev-list', '--all')
+if ret:
+raise error.Abort(_('cannot retrieve number of commits in %s') \
+% self.path)
+return len(output)
 def gettags(self):
 tags = {}
 alltags = {}
-fh = self.gitopen('git ls-remote --tags "%s"' % self.path,
+output, status = self.gitrunlines('ls-remote', '--tags', self.path)
-err=subprocess.STDOUT)
+if status:
+raise error.Abort(_('cannot read tags from %s') % self.path)
 prefix = 'refs/tags/'
 # Build complete list of tags, both annotated and bare ones
-for line in fh:
+for line in output:
 line = line.strip()
 if line.startswith("error:") or line.startswith("fatal:"):
 raise error.Abort(_('cannot read tags from %s') % self.path)
 node, tag = line.split(None, 1)
 if not tag.startswith(prefix):
 continue
 alltags[tag[len(prefix):]] = node
-if fh.close():
-raise error.Abort(_('cannot read tags from %s') % self.path)
 # Filter out tag objects for annotated tag refs
 for tag in alltags:
 if tag.endswith('^{}'):
 tags[tag[:-3]] = alltags[tag]
 return tags
 def getchangedfiles(self, version, i):
 changes = []
 if i is None:
-fh = self.gitopen("git diff-tree --root -m -r %s" % version)
+output, status = self.gitrunlines('diff-tree', '--root', '-m',
-for l in fh:
+'-r', version)
+if status:
+raise error.Abort(_('cannot read changes in %s') % version)
+for l in output:
 if "\t" not in l:
 continue
 m, f = l[:-1].split("\t")
 changes.append(f)
 else:
-fh = self.gitopen('git diff-tree --name-only --root -r %s '
+output, status = self.gitrunlines('diff-tree', '--name-only',
-'"%s^%s" --' % (version, version, i + 1))
+'--root', '-r', version,
-changes = [f.rstrip('\n') for f in fh]
+'%s^%s' % (version, i + 1), '--')
-if fh.close():
+changes = [f.rstrip('\n') for f in output]
-raise error.Abort(_('cannot read changes in %s') % version)
 return changes
 def getbookmarks(self):
 bookmarks = {}
 exclude = set([
 'refs/remotes/origin/HEAD',
 ])
 try:
-fh = self.gitopen('git show-ref', err=subprocess.PIPE)
+output, status = self.gitrunlines('show-ref')
-for line in fh:
+for line in output:
 line = line.strip()
 rev, name = line.split(None, 1)
 # Process each type of branch
 for gitprefix, hgprefix in reftypes:
 if not name.startswith(gitprefix) or name in exclude:

Mercurial > hg-stable

comparison hgext/convert/git.py @ 28660:cdda7b96afff stable