source: trunk/server/common/oursrc/execsys/ldapize.pl @ 1893

Last change on this file since 1893 was 1824, checked in by andersk, 15 years ago
ldapize: Give a custom error for unknown git vhosts The previous commit changed the error message on unknown git vhosts from this (caused by a mangled Perl backtrace): fatal: protocol error: bad line length character: Can' to the message provided by upstream: fatal: The remote end hung up unexpectedly This further changes the error message to the custom fatal: remote error: No such host nonexistent.scripts.mit.edu I do not personally support this commit, because this just isn’t a common problem, and using the upstream message was a good enough improvement. However, it is included by demand.
  • Property svn:executable set to *
File size: 2.4 KB
RevLine 
[825]1#!/usr/bin/perl
2
3use strict;
4use warnings;
5
6use Net::LDAP;
7use Net::LDAP::Filter;
8
9my $url = $ARGV[0];
10my ($proto, $hostname, $path) = $url =~ m|^(.*?)://([^/]*)(.*)| or die "Could not match URL";
11my $mesg;
12
[1823]13my $vhostName = $hostname;
14
15vhost:
[825]16# oh my gosh Net::LDAP::Filter SUCKS
[828]17my $filter = bless({and =>
18    [{equalityMatch => {attributeDesc  => 'objectClass',
19                        assertionValue => 'scriptsVhost'}},
20     {or =>
21         [{equalityMatch => {attributeDesc  => 'scriptsVhostName',
[1823]22                             assertionValue => $vhostName}},
[828]23          {equalityMatch => {attributeDesc  => 'scriptsVhostAlias',
[1823]24                             assertionValue => $vhostName}}]}]},
[825]25    'Net::LDAP::Filter');
26
[1818]27my $ldap = Net::LDAP->new("ldapi://%2fvar%2frun%2fslapd-scripts.socket/");
[825]28$mesg = $ldap->bind();
29$mesg->code && die $mesg->error;
30
31$mesg = $ldap->search(base => "ou=VirtualHosts,dc=scripts,dc=mit,dc=edu",
32                      filter => $filter);
33$mesg->code && die $mesg->error;
34
35my $vhostEntry = $mesg->pop_entry;
[1823]36if (!defined $vhostEntry) {
37  $vhostName ne '*' or die 'No vhost for *';
38  $vhostName =~ s/^(?:\*\.)?[^.]*/*/;  # Try next wildcard
39  goto vhost;
40}
41
[825]42my $vhostDirectory = $vhostEntry->get_value('scriptsVhostDirectory');
43
44$mesg = $ldap->search(base => $vhostEntry->get_value('scriptsVhostAccount'),
45                      scope => 'base', filter => 'objectClass=posixAccount');
46$mesg->code && die $mesg->error;
47
48my $userEntry = $mesg->pop_entry;
49my ($homeDirectory, $uidNumber, $gidNumber) =
50    map { $userEntry->get_value($_) } qw(homeDirectory uidNumber gidNumber);
[1822]51(my $scriptsdir = $homeDirectory) =~ s{(?:/Scripts)?$}{/Scripts};
[825]52
53if ($proto eq 'svn') {
54  chdir '/usr/libexec/scripts-trusted';
[1822]55  exec('/usr/sbin/suexec', $uidNumber, $gidNumber, '/usr/libexec/scripts-trusted/svn', "$scriptsdir/svn/$vhostDirectory");
[849]56} elsif ($proto eq 'git') {
[1824]57  if ($vhostEntry->get_value('scriptsVhostName') eq 'notfound.example.com') {
58    # git-daemon doesn’t report useful errors yet
59    my $msg = "ERR No such host $hostname\n";
60    printf '%04x%s', length($msg) + 4, $msg;
61    exit;
62  }
[849]63  chdir '/usr/libexec/scripts-trusted';
[1822]64  exec('/usr/sbin/suexec', $uidNumber, $gidNumber, '/usr/libexec/scripts-trusted/git', "$scriptsdir/git/$vhostDirectory");
[825]65} elsif ($proto eq 'http') {
[1822]66  print "suexec $uidNumber $gidNumber $scriptsdir/web/$vhostDirectory/$path\n";
[825]67} else {
68  die "Unknown protocol\n";
69}
Note: See TracBrowser for help on using the repository browser.