Mercurial > hg
comparison mercurial/wireproto.py @ 25708:d3d32643c060
wireproto: correctly escape batched args and responses (issue4739)
This issue appears to be as old as wireproto batching itself: I can
reproduce the failure as far back as 08ef6b5f3715 trivially by
rebasing the test changes in this patch, which was back in the 1.9
era. I didn't test before that change, because prior to that the
testfile has a different name and I'm lazy.
Note that the test thought it was checking this case, but it actually
wasn't: it put a literal ; in the arg and response for its greet
command, but the mangle/unmangle step defined in the test meant that
instead of "Fo, =;o" going over the wire, "Gp-!><p" went instead,
which doesn't contain any special characters (those being [.=;]) and
thus not exercising the escaping. The test has been updated to use
pre-unmangled special characters, so the request is now "Fo+<:o",
which mangles to "Gp,=;p". I have confirmed that the test fails
without the adjustment to the escaping rules in wireproto.py.
No existing clients of RPC batching were depending on the old behavior
in any way. The only *actual* users of batchable RPCs in core were:
1) largefiles, wherein it batches up many statlfile calls. It sends
hexlified hashes over the wire and gets a 0, 1, or 2 back as a
response. No risk of special characters.
2) setdiscovery, which was using heads() and known(), both of which
communicate via hexlified nodes. Again, no risk of special characters.
Since the escaping functionality has been completely broken since it
was introduced, we know that it has no users. As such, we can change
the escaping mechanism without having to worry about backwards
compatibility issues.
For the curious, this was detected by chance: it happens that the
lz4-compressed text of a test file for remotefilelog compressed to
something containing a ;, which then caused the failure when I moved
remotefilelog to using batching for file content fetching.
| author | Augie Fackler <augie@google.com> |
|---|---|
| date | Tue, 30 Jun 2015 19:19:17 -0400 |
| parents | 5cda0ce05c42 |
| children | 26579a91f4fb |
comparison
equal
deleted
inserted
replaced
| 25707:84518051bc3b | 25708:d3d32643c060 |
|---|---|
| 180 | 180 |
| 181 # batched call argument encoding | 181 # batched call argument encoding |
| 182 | 182 |
| 183 def escapearg(plain): | 183 def escapearg(plain): |
| 184 return (plain | 184 return (plain |
| 185 .replace(':', '::') | 185 .replace(':', ':c') |
| 186 .replace(',', ':,') | 186 .replace(',', ':o') |
| 187 .replace(';', ':;') | 187 .replace(';', ':s') |
| 188 .replace('=', ':=')) | 188 .replace('=', ':e')) |
| 189 | 189 |
| 190 def unescapearg(escaped): | 190 def unescapearg(escaped): |
| 191 return (escaped | 191 return (escaped |
| 192 .replace(':=', '=') | 192 .replace(':e', '=') |
| 193 .replace(':;', ';') | 193 .replace(':s', ';') |
| 194 .replace(':,', ',') | 194 .replace(':o', ',') |
| 195 .replace('::', ':')) | 195 .replace(':c', ':')) |
| 196 | 196 |
| 197 # mapping of options accepted by getbundle and their types | 197 # mapping of options accepted by getbundle and their types |
| 198 # | 198 # |
| 199 # Meant to be extended by extensions. It is extensions responsibility to ensure | 199 # Meant to be extended by extensions. It is extensions responsibility to ensure |
| 200 # such options are properly processed in exchange.getbundle. | 200 # such options are properly processed in exchange.getbundle. |
| 219 def batch(self): | 219 def batch(self): |
| 220 return remotebatch(self) | 220 return remotebatch(self) |
| 221 def _submitbatch(self, req): | 221 def _submitbatch(self, req): |
| 222 cmds = [] | 222 cmds = [] |
| 223 for op, argsdict in req: | 223 for op, argsdict in req: |
| 224 args = ','.join('%s=%s' % p for p in argsdict.iteritems()) | 224 args = ','.join('%s=%s' % (escapearg(k), escapearg(v)) |
| 225 for k, v in argsdict.iteritems()) | |
| 225 cmds.append('%s %s' % (op, args)) | 226 cmds.append('%s %s' % (op, args)) |
| 226 rsp = self._call("batch", cmds=';'.join(cmds)) | 227 rsp = self._call("batch", cmds=';'.join(cmds)) |
| 227 return rsp.split(';') | 228 return [unescapearg(r) for r in rsp.split(';')] |
| 228 def _submitone(self, op, args): | 229 def _submitone(self, op, args): |
| 229 return self._call(op, **args) | 230 return self._call(op, **args) |
| 230 | 231 |
| 231 @batchable | 232 @batchable |
| 232 def lookup(self, key): | 233 def lookup(self, key): |