Mercurial: mercurial/wireprotoserver.py comparison

comparison mercurial/wireprotoserver.py @ 37054:e7a012b60d6e

wireproto: implement basic command dispatching for HTTPv2 Now that we can ingest frames and decode them to requests to run commands, we are able to actually run those commands. So this commit starts to implement that. There are numerous shortcomings. We can't operate on commands with "*" arguments. We can only emit bytesresponse results. We don't yet issue a response in the unified framing protocol. But it's a start. Differential Revision: https://phab.mercurial-scm.org/D2857

author	Gregory Szorc <gregory.szorc@gmail.com>
date	Wed, 14 Mar 2018 13:32:31 -0700
parents	cd0ca979a8b8
children	61393f888dfe

comparison

equal deleted inserted replaced

-:cd0ca979a8b8
+:e7a012b60d6e
 res.headers[b'Content-Type'] = b'text/plain'
 res.setbodybytes(_('client MUST send Content-Type header with '
 'value: %s\n') % FRAMINGTYPE)
 return
-# We don't do anything meaningful yet.
+_processhttpv2request(ui, repo, req, res, permission, command, proto)
-res.status = b'200 OK'
-res.headers[b'Content-Type'] = b'text/plain'
-res.setbodybytes(b'/'.join(urlparts) + b'\n')
 def _processhttpv2reflectrequest(ui, repo, req, res):
 """Reads unified frame protocol request and dumps out state to client.
 This special endpoint can be used to help debug the wire protocol.
 separators=(', ', ': ')))
 res.status = b'200 OK'
 res.headers[b'Content-Type'] = b'text/plain'
 res.setbodybytes(b'\n'.join(states))
+def _processhttpv2request(ui, repo, req, res, authedperm, reqcommand, proto):
+"""Post-validation handler for HTTPv2 requests.
+Called when the HTTP request contains unified frame-based protocol
+frames for evaluation.
+"""
+reactor = wireprotoframing.serverreactor()
+seencommand = False
+while True:
+frame = wireprotoframing.readframe(req.bodyfh)
+if not frame:
+break
+action, meta = reactor.onframerecv(*frame)
+if action == 'wantframe':
+# Need more data before we can do anything.
+continue
+elif action == 'runcommand':
+# We currently only support running a single command per
+# HTTP request.
+if seencommand:
+# TODO define proper error mechanism.
+res.status = b'200 OK'
+res.headers[b'Content-Type'] = b'text/plain'
+res.setbodybytes(_('support for multiple commands per request '
+'not yet implemented'))
+return
+_httpv2runcommand(ui, repo, req, res, authedperm, reqcommand,
+reactor, meta)
+elif action == 'error':
+# TODO define proper error mechanism.
+res.status = b'200 OK'
+res.headers[b'Content-Type'] = b'text/plain'
+res.setbodybytes(meta['message'] + b'\n')
+return
+else:
+raise error.ProgrammingError(
+'unhandled action from frame processor: %s' % action)
+def _httpv2runcommand(ui, repo, req, res, authedperm, reqcommand, reactor,
+command):
+"""Dispatch a wire protocol command made from HTTPv2 requests.
+The authenticated permission (``authedperm``) along with the original
+command from the URL (``reqcommand``) are passed in.
+"""
+# We already validated that the session has permissions to perform the
+# actions in ``authedperm``. In the unified frame protocol, the canonical
+# command to run is expressed in a frame. However, the URL also requested
+# to run a specific command. We need to be careful that the command we
+# run doesn't have permissions requirements greater than what was granted
+# by ``authedperm``.
+#
+# For now, this is no big deal, as we only allow a single command per
+# request and that command must match the command in the URL. But when
+# things change, we need to watch out...
+if reqcommand != command['command']:
+# TODO define proper error mechanism
+res.status = b'200 OK'
+res.headers[b'Content-Type'] = b'text/plain'
+res.setbodybytes(_('command in frame must match command in URL'))
+return
+# TODO once we get rid of the command==URL restriction, we'll need to
+# revalidate command validity and auth here. checkperm,
+# wireproto.commands.commandavailable(), etc.
+proto = httpv2protocolhandler(req, ui, args=command['args'])
+assert wireproto.commands.commandavailable(command['command'], proto)
+wirecommand = wireproto.commands[command['command']]
+assert authedperm in (b'ro', b'rw')
+assert wirecommand.permission in ('push', 'pull')
+# We already checked this as part of the URL==command check, but
+# permissions are important, so do it again.
+if authedperm == b'ro':
+assert wirecommand.permission == 'pull'
+elif authedperm == b'rw':
+# We are allowed to access read-only commands under the rw URL.
+assert wirecommand.permission in ('push', 'pull')
+rsp = wireproto.dispatch(repo, proto, command['command'])
+# TODO use proper response format.
+res.status = b'200 OK'
+res.headers[b'Content-Type'] = b'text/plain'
+if isinstance(rsp, wireprototypes.bytesresponse):
+res.setbodybytes(rsp.data)
+else:
+res.setbodybytes(b'unhandled response type from wire proto '
+'command')
 # Maps API name to metadata so custom API can be registered.
 API_HANDLERS = {
 HTTPV2: {
 'config': ('experimental', 'web.api.http-v2'),
 'handler': _handlehttpv2request,
 },
 }
 class httpv2protocolhandler(wireprototypes.baseprotocolhandler):
-def __init__(self, req, ui):
+def __init__(self, req, ui, args=None):
 self._req = req
 self._ui = ui
+self._args = args
 @property
 def name(self):
 return HTTPV2
 def getargs(self, args):
-raise NotImplementedError
+data = {}
+for k in args.split():
+if k == '*':
+raise NotImplementedError('do not support * args')
+else:
+data[k] = self._args[k]
+return [data[k] for k in args.split()]
 def forwardpayload(self, fp):
 raise NotImplementedError
 @contextlib.contextmanager
 def client(self):
 raise NotImplementedError
 def addcapabilities(self, repo, caps):
-raise NotImplementedError
+return caps
 def checkperm(self, perm):
 raise NotImplementedError
 def _httpresponsetype(ui, req, prefer_uncompressed):

Mercurial > hg

comparison mercurial/wireprotoserver.py @ 37054:e7a012b60d6e