1 files changed, 126 insertions, 0 deletions
diff --git a/AnonymousAccessCommand b/AnonymousAccessCommand
new file mode 100755
index 0000000..443d25e
--- /dev/null
+++ b/AnonymousAccessCommand
@@ -0,0 +1,126 @@
+#!/bin/sh
+default_msg()
+{
+    sshfpline="$(get_sshfp_authline ${SSH_CLIENT%% *})"
+    cat <<EOF >&2
+    You are:
+        $authline
+        $sshfpline
+EOF
+}
+get_sshfp_authline()
+{
+    (
+        r=${1:-.}
+        key=$(mktemp) || exit
+        trap 'rm -rf "$key"' EXIT
+        echo "$authline" > "$key"
+        get_sshfp "$key" "$r"
+    )
+}
+get_sshfp()
+{
+    (
+        key="$1"
+        r="${2:-.}"
+        dns=$(mktemp) || exit
+        trap 'rm -rf "$dns"' EXIT
+        ssh-keygen -r "$r" -f "$key" > "$dns"
+        exec < "$dns"
+        while read line
+        do
+            set -- $line
+            if [ "$3 $5" = "SSHFP 2" ]
+            then
+                echo "$line"
+                break
+            fi
+        done
+    )
+}
+ssh_client_fingerprint_base16()
+{
+    set -- $(get_sshfp_authline)
+    [ "$6" ]
+    echo $6
+}
+check_if_self_forge()
+{
+    # TODO: don't use description, but something else.
+    local dir="$1"
+    [ -d "$dir" ] || exit
+    [ -r "$dir"/description ] || exit
+    read description < "$dir"/description
+    if [ "$description" != self-forge ] && [ "$(GIT_DIR=$dir git config core.self-forge)" != true ]
+    then
+        echo 'Error: access denied.  The specified directory is not a self-forge.' >&2
+        exit
+    fi
+}
+read authtype authline < "$SSH_USER_AUTH" || exit
+[ "$authtype" = publickey ] || exit
+cmd=${SSH_ORIGINAL_COMMAND%% *}
+case "$cmd" in
+    git-send-pack | git-upload-pack)
+        GIT_NAMESPACE=
+        ;;
+    git-receive-pack)
+        export GIT_NAMESPACE="$(ssh_client_fingerprint_base16)"
+        [ "$GIT_NAMESPACE" ] || exit
+        ;;
+    *)
+        default_msg
+        exit
+        ;;
+esac
+arg=${SSH_ORIGINAL_COMMAND#* }
+arg=${arg%\'}
+arg=${arg#\'}
+case "$arg" in
+    *\'*) exit ;;
+    *.git) ;;
+    *) arg=$arg/.git ;;
+esac
+dir=$(readlink -e "$arg") || exit
+check_if_self_forge "$dir"
+with_allowCurrentBranch()
+{
+    local cmd="$1" dir="$2"
+    (
+        set -eC
+        lockfile=$GIT_DIR/index.lock
+        echo $$ > "$lockfile"
+        trap 'rm -f "$lockfile"' EXIT
+        # This doesn't seem very secure. Need to patch git probably.
+        for deny in CurrentBranch # DeleteCurrent
+        do git config receive.deny$deny false
+        done
+        "$@"
+        for deny in CurrentBranch # DeleteCurrent
+        do git config receive.deny$deny true
+        done
+    )
+}
+if [ "$GIT_NAMESPACE" ]
+then
+    GIT_DIR=$dir with_allowCurrentBranch "$cmd" "$dir"
+else
+    "$cmd" "$dir"
+fi

diff --git a/AnonymousAccessCommand b/AnonymousAccessCommand new file mode 100755 index 0000000..443d25e --- /dev/null +++ b/AnonymousAccessCommand
@@ -0,0 +1,126 @@
	1	#!/bin/sh
	2	default_msg()
	3	{
	4	sshfpline="$(get_sshfp_authline ${SSH_CLIENT%% *})"
	5	cat <<EOF >&2
	6
	7	You are:
	8
	9	$authline
	10	$sshfpline
	11
	12	EOF
	13	}
	14
	15	get_sshfp_authline()
	16	{
	17	(
	18	r=${1:-.}
	19	key=$(mktemp) \|\| exit
	20	trap 'rm -rf "$key"' EXIT
	21	echo "$authline" > "$key"
	22	get_sshfp "$key" "$r"
	23	)
	24	}
	25
	26	get_sshfp()
	27	{
	28	(
	29	key="$1"
	30	r="${2:-.}"
	31	dns=$(mktemp) \|\| exit
	32	trap 'rm -rf "$dns"' EXIT
	33
	34	ssh-keygen -r "$r" -f "$key" > "$dns"
	35	exec < "$dns"
	36	while read line
	37	do
	38	set -- $line
	39	if [ "$3 $5" = "SSHFP 2" ]
	40	then
	41	echo "$line"
	42	break
	43	fi
	44	done
	45	)
	46	}
	47
	48	ssh_client_fingerprint_base16()
	49	{
	50	set -- $(get_sshfp_authline)
	51	[ "$6" ]
	52	echo $6
	53	}
	54
	55	check_if_self_forge()
	56	{
	57	# TODO: don't use description, but something else.
	58	local dir="$1"
	59	[ -d "$dir" ] \|\| exit
	60	[ -r "$dir"/description ] \|\| exit
	61	read description < "$dir"/description
	62	if [ "$description" != self-forge ] && [ "$(GIT_DIR=$dir git config core.self-forge)" != true ]
	63	then
	64	echo 'Error: access denied. The specified directory is not a self-forge.' >&2
	65	exit
	66	fi
	67	}
	68
	69	read authtype authline < "$SSH_USER_AUTH" \|\| exit
	70	[ "$authtype" = publickey ] \|\| exit
	71
	72	cmd=${SSH_ORIGINAL_COMMAND%% *}
	73
	74	case "$cmd" in
	75	git-send-pack \| git-upload-pack)
	76	GIT_NAMESPACE=
	77	;;
	78	git-receive-pack)
	79	export GIT_NAMESPACE="$(ssh_client_fingerprint_base16)"
	80	[ "$GIT_NAMESPACE" ] \|\| exit
	81	;;
	82	*)
	83	default_msg
	84	exit
	85	;;
	86	esac
	87
	88	arg=${SSH_ORIGINAL_COMMAND#* }
	89	arg=${arg%\'}
	90	arg=${arg#\'}
	91	case "$arg" in
	92	\') exit ;;
	93	*.git) ;;
	94	*) arg=$arg/.git ;;
	95	esac
	96
	97	dir=$(readlink -e "$arg") \|\| exit
	98
	99	check_if_self_forge "$dir"
	100
	101	with_allowCurrentBranch()
	102	{
	103	local cmd="$1" dir="$2"
	104	(
	105	set -eC
	106	lockfile=$GIT_DIR/index.lock
	107	echo $$ > "$lockfile"
	108	trap 'rm -f "$lockfile"' EXIT
	109
	110	# This doesn't seem very secure. Need to patch git probably.
	111	for deny in CurrentBranch # DeleteCurrent
	112	do git config receive.deny$deny false
	113	done
	114	"$@"
	115	for deny in CurrentBranch # DeleteCurrent
	116	do git config receive.deny$deny true
	117	done
	118	)
	119	}
	120
	121	if [ "$GIT_NAMESPACE" ]
	122	then
	123	GIT_DIR=$dir with_allowCurrentBranch "$cmd" "$dir"
	124	else
	125	"$cmd" "$dir"
	126	fi