# This file is part of Buildbot. Buildbot is free software: you can # redistribute it and/or modify it under the terms of the GNU General Public # License as published by the Free Software Foundation, version 2. # # This program is distributed in the hope that it will be useful, but WITHOUT # ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS # FOR A PARTICULAR PURPOSE. See the GNU General Public License for more # details. # # You should have received a copy of the GNU General Public License along with # this program; if not, write to the Free Software Foundation, Inc., 51 # Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. # # Copyright Buildbot Team Members import re from pkg_resources import parse_version from twisted.internet import defer from twisted.python import log from buildbot import config from buildbot.process import buildstep from buildbot.process import remotecommand from buildbot.process.properties import Properties from buildbot.util import bytes2unicode RC_SUCCESS = 0 def getSshArgsForKeys(keyPath, knownHostsPath): args = ['-o', 'BatchMode=yes'] if keyPath is not None: args += ['-i', keyPath] if knownHostsPath is not None: args += ['-o', f'UserKnownHostsFile={knownHostsPath}'] return args def escapeShellArgIfNeeded(arg): if re.match(r"^[a-zA-Z0-9_-]+$", arg): return arg return f'"{arg}"' def getSshCommand(keyPath, knownHostsPath): command = ['ssh'] + getSshArgsForKeys(keyPath, knownHostsPath) command = [escapeShellArgIfNeeded(arg) for arg in command] return ' '.join(command) class GitMixin: def setupGit(self, logname=None): if logname is None: logname = 'GitMixin' if self.sshHostKey is not None and self.sshPrivateKey is None: config.error(f'{logname}: sshPrivateKey must be provided in order use sshHostKey') if self.sshKnownHosts is not None and self.sshPrivateKey is None: config.error(f'{logname}: sshPrivateKey must be provided in order use sshKnownHosts') if self.sshHostKey is not None and self.sshKnownHosts is not None: config.error(f'{logname}: only one of sshKnownHosts and sshHostKey can be provided') self.gitInstalled = False self.supportsBranch = False self.supportsProgress = False self.supportsSubmoduleForce = False self.supportsSubmoduleCheckout = False self.supportsSshPrivateKeyAsEnvOption = False self.supportsSshPrivateKeyAsConfigOption = False self.supportsFilters = False def parseGitFeatures(self, version_stdout): match = re.match(r"^git version (\d+(\.\d+)*)", version_stdout) if not match: return version = parse_version(match.group(1)) self.gitInstalled = True if version >= parse_version("1.6.5"): self.supportsBranch = True if version >= parse_version("1.7.2"): self.supportsProgress = True if version >= parse_version("1.7.6"): self.supportsSubmoduleForce = True if version >= parse_version("1.7.8"): self.supportsSubmoduleCheckout = True if version >= parse_version("2.3.0"): self.supportsSshPrivateKeyAsEnvOption = True if version >= parse_version("2.10.0"): self.supportsSshPrivateKeyAsConfigOption = True if version >= parse_version("2.27.0"): self.supportsFilters = True def adjustCommandParamsForSshPrivateKey(self, command, env, keyPath, sshWrapperPath=None, knownHostsPath=None): ssh_command = getSshCommand(keyPath, knownHostsPath) if self.supportsSshPrivateKeyAsConfigOption: command.append('-c') command.append(f'core.sshCommand={ssh_command}') elif self.supportsSshPrivateKeyAsEnvOption: env['GIT_SSH_COMMAND'] = ssh_command else: if sshWrapperPath is None: raise Exception('Only SSH wrapper script is supported but path ' 'not given') env['GIT_SSH'] = sshWrapperPath def getSshWrapperScriptContents(keyPath, knownHostsPath=None): ssh_command = getSshCommand(keyPath, knownHostsPath) # note that this works on windows if using git with MINGW embedded. return f'#!/bin/sh\n{ssh_command} "$@"\n' def getSshKnownHostsContents(hostKey): host_name = '*' return f'{host_name} {hostKey}' class GitStepMixin(GitMixin): def setupGitStep(self): self.didDownloadSshPrivateKey = False self.setupGit(logname='Git') if not self.repourl: config.error("Git: must provide repourl.") def _isSshPrivateKeyNeededForGitCommand(self, command): if not command or self.sshPrivateKey is None: return False gitCommandsThatNeedSshKey = [ 'clone', 'submodule', 'fetch', 'push' ] if command[0] in gitCommandsThatNeedSshKey: return True return False def _getSshDataPath(self): # we can't use the workdir for temporary ssh-related files, because # it's needed when cloning repositories and git does not like the # destination directory being non-empty. We have to use separate # temporary directory for that data to ensure the confidentiality of it. # So instead of # '{path}/{to}/{workerbuilddir}/{workdir}/.buildbot-ssh-key' # we put the key in # '{path}/{to}/.{workerbuilddir}.{workdir}.buildbot/ssh-key'. # basename and dirname interpret the last element being empty for paths # ending with a slash path_module = self.build.path_module workerbuilddir = bytes2unicode(self.build.builder.config.workerbuilddir) workdir = self._getSshDataWorkDir().rstrip('/\\') if path_module.isabs(workdir): parent_path = path_module.dirname(workdir) else: parent_path = path_module.join(self.worker.worker_basedir, path_module.dirname(workdir)) basename = f'.{workerbuilddir}.{path_module.basename(workdir)}.buildbot' return path_module.join(parent_path, basename) def _getSshPrivateKeyPath(self, ssh_data_path): return self.build.path_module.join(ssh_data_path, 'ssh-key') def _getSshHostKeyPath(self, ssh_data_path): return self.build.path_module.join(ssh_data_path, 'ssh-known-hosts') def _getSshWrapperScriptPath(self, ssh_data_path): return self.build.path_module.join(ssh_data_path, 'ssh-wrapper.sh') def _adjustCommandParamsForSshPrivateKey(self, full_command, full_env): ssh_data_path = self._getSshDataPath() key_path = self._getSshPrivateKeyPath(ssh_data_path) ssh_wrapper_path = self._getSshWrapperScriptPath(ssh_data_path) host_key_path = None if self.sshHostKey is not None or self.sshKnownHosts is not None: host_key_path = self._getSshHostKeyPath(ssh_data_path) self.adjustCommandParamsForSshPrivateKey(full_command, full_env, key_path, ssh_wrapper_path, host_key_path) @defer.inlineCallbacks def _dovccmd(self, command, abandonOnFailure=True, collectStdout=False, initialStdin=None): full_command = ['git'] full_env = self.env.copy() if self.env else {} if self.config is not None: for name, value in self.config.items(): full_command.append('-c') full_command.append(f'{name}={value}') if self._isSshPrivateKeyNeededForGitCommand(command): self._adjustCommandParamsForSshPrivateKey(full_command, full_env) full_command.extend(command) # check for the interruptSignal flag sigtermTime = None interruptSignal = None # If possible prefer to send a SIGTERM to git before we send a SIGKILL. # If we send a SIGKILL, git is prone to leaving around stale lockfiles. # By priming it with a SIGTERM first we can ensure that it has a chance to shut-down # gracefully before getting terminated if not self.workerVersionIsOlderThan("shell", "2.16"): # git should shut-down quickly on SIGTERM. If it doesn't don't let it # stick around for too long because this is on top of any timeout # we have hit. sigtermTime = 1 else: # Since sigtermTime is unavailable try to just use SIGTERM by itself instead of # killing. This should be safe. if self.workerVersionIsOlderThan("shell", "2.15"): log.msg( "NOTE: worker does not allow master to specify " "interruptSignal. This may leave a stale lockfile around " "if the command is interrupted/times out\n") else: interruptSignal = 'TERM' cmd = remotecommand.RemoteShellCommand(self.workdir, full_command, env=full_env, logEnviron=self.logEnviron, timeout=self.timeout, sigtermTime=sigtermTime, interruptSignal=interruptSignal, collectStdout=collectStdout, initialStdin=initialStdin) cmd.useLog(self.stdio_log, False) yield self.runCommand(cmd) if abandonOnFailure and cmd.didFail(): log.msg(f"Source step failed while running command {cmd}") raise buildstep.BuildStepFailed() if collectStdout: return cmd.stdout return cmd.rc @defer.inlineCallbacks def checkFeatureSupport(self): stdout = yield self._dovccmd(['--version'], collectStdout=True) self.parseGitFeatures(stdout) return self.gitInstalled @defer.inlineCallbacks def _downloadSshPrivateKeyIfNeeded(self): if self.sshPrivateKey is None: return RC_SUCCESS p = Properties() p.master = self.master private_key = yield p.render(self.sshPrivateKey) host_key = yield p.render(self.sshHostKey) known_hosts_contents = yield p.render(self.sshKnownHosts) # not using self.workdir because it may be changed depending on step # options workdir = self._getSshDataWorkDir() ssh_data_path = self._getSshDataPath() yield self.runMkdir(ssh_data_path) private_key_path = self._getSshPrivateKeyPath(ssh_data_path) yield self.downloadFileContentToWorker(private_key_path, private_key, workdir=workdir, mode=0o400) known_hosts_path = None if self.sshHostKey is not None or self.sshKnownHosts is not None: known_hosts_path = self._getSshHostKeyPath(ssh_data_path) if self.sshHostKey is not None: known_hosts_contents = getSshKnownHostsContents(host_key) yield self.downloadFileContentToWorker(known_hosts_path, known_hosts_contents, workdir=workdir, mode=0o400) if not self.supportsSshPrivateKeyAsEnvOption: script_path = self._getSshWrapperScriptPath(ssh_data_path) script_contents = getSshWrapperScriptContents(private_key_path, known_hosts_path) yield self.downloadFileContentToWorker(script_path, script_contents, workdir=workdir, mode=0o700) self.didDownloadSshPrivateKey = True return RC_SUCCESS @defer.inlineCallbacks def _removeSshPrivateKeyIfNeeded(self): if not self.didDownloadSshPrivateKey: return RC_SUCCESS yield self.runRmdir(self._getSshDataPath()) return RC_SUCCESS