]> git.saurik.com Git - apt.git/blob - apt-pkg/acquire-item.cc
projects / apt.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
make --allow-insecure-repositories message an error
[apt.git] / apt-pkg / acquire-item.cc
1 // -*- mode: cpp; mode: fold -*-
2 // Description /*{{{*/
3 // $Id: acquire-item.cc,v 1.46.2.9 2004/01/16 18:51:11 mdz Exp $
4 /* ######################################################################
5
6 Acquire Item - Item to acquire
7
8 Each item can download to exactly one file at a time. This means you
9 cannot create an item that fetches two uri's to two files at the same
10 time. The pkgAcqIndex class creates a second class upon instantiation
11 to fetch the other index files because of this.
12
13 ##################################################################### */
14 /*}}}*/
15 // Include Files /*{{{*/
16 #include <config.h>
17
18 #include <apt-pkg/acquire-item.h>
19 #include <apt-pkg/configuration.h>
20 #include <apt-pkg/aptconfiguration.h>
21 #include <apt-pkg/sourcelist.h>
22 #include <apt-pkg/error.h>
23 #include <apt-pkg/strutl.h>
24 #include <apt-pkg/fileutl.h>
25 #include <apt-pkg/sha1.h>
26 #include <apt-pkg/tagfile.h>
27 #include <apt-pkg/indexrecords.h>
28 #include <apt-pkg/acquire.h>
29 #include <apt-pkg/hashes.h>
30 #include <apt-pkg/indexfile.h>
31 #include <apt-pkg/pkgcache.h>
32 #include <apt-pkg/cacheiterators.h>
33 #include <apt-pkg/pkgrecords.h>
34
35 #include <stddef.h>
36 #include <stdlib.h>
37 #include <string.h>
38 #include <iostream>
39 #include <vector>
40 #include <sys/stat.h>
41 #include <unistd.h>
42 #include <errno.h>
43 #include <string>
44 #include <sstream>
45 #include <stdio.h>
46 #include <ctime>
47 #include <sys/types.h>
48 #include <pwd.h>
49 #include <grp.h>
50
51 #include <apti18n.h>
52 /*}}}*/
53
54 using namespace std;
55
56 static void printHashSumComparision(std::string const &URI, HashStringList const &Expected, HashStringList const &Actual) /*{{{*/
57 {
58 if (_config->FindB("Debug::Acquire::HashSumMismatch", false) == false)
59 return;
60 std::cerr << std::endl << URI << ":" << std::endl << " Expected Hash: " << std::endl;
61 for (HashStringList::const_iterator hs = Expected.begin(); hs != Expected.end(); ++hs)
62 std::cerr << "\t- " << hs->toStr() << std::endl;
63 std::cerr << " Actual Hash: " << std::endl;
64 for (HashStringList::const_iterator hs = Actual.begin(); hs != Actual.end(); ++hs)
65 std::cerr << "\t- " << hs->toStr() << std::endl;
66 }
67 /*}}}*/
68 static void ChangeOwnerAndPermissionOfFile(char const * const requester, char const * const file, char const * const user, char const * const group, mode_t const mode)
69 {
70 // ensure the file is owned by root and has good permissions
71 struct passwd const * const pw = getpwnam(user);
72 struct group const * const gr = getgrnam(group);
73 if (getuid() == 0) // if we aren't root, we can't chown, so don't try it
74 {
75 if (pw != NULL && gr != NULL && chown(file, pw->pw_uid, gr->gr_gid) != 0)
76 _error->WarningE(requester, "chown to %s:%s of file %s failed", user, group, file);
77 }
78 if (chmod(file, mode) != 0)
79 _error->WarningE(requester, "chmod 0%o of file %s failed", mode, file);
80 }
81 static std::string GetPartialFileName(std::string const &file)
82 {
83 std::string DestFile = _config->FindDir("Dir::State::lists") + "partial/";
84 DestFile += file;
85 return DestFile;
86 }
87 static std::string GetPartialFileNameFromURI(std::string const &uri)
88 {
89 return GetPartialFileName(URItoFileName(uri));
90 }
91
92
93 // Acquire::Item::Item - Constructor /*{{{*/
94 #if __GNUC__ >= 4
95 #pragma GCC diagnostic push
96 #pragma GCC diagnostic ignored "-Wdeprecated-declarations"
97 #endif
98 pkgAcquire::Item::Item(pkgAcquire *Owner,
99 HashStringList const &ExpectedHashes,
100 pkgAcqMetaBase *TransactionManager)
101 : Owner(Owner), FileSize(0), PartialSize(0), Mode(0), ID(0), Complete(false),
102 Local(false), QueueCounter(0), TransactionManager(TransactionManager),
103 ExpectedAdditionalItems(0), ExpectedHashes(ExpectedHashes)
104 {
105 Owner->Add(this);
106 Status = StatIdle;
107 if(TransactionManager != NULL)
108 TransactionManager->Add(this);
109 }
110 #if __GNUC__ >= 4
111 #pragma GCC diagnostic pop
112 #endif
113 /*}}}*/
114 // Acquire::Item::~Item - Destructor /*{{{*/
115 // ---------------------------------------------------------------------
116 /* */
117 pkgAcquire::Item::~Item()
118 {
119 Owner->Remove(this);
120 }
121 /*}}}*/
122 // Acquire::Item::Failed - Item failed to download /*{{{*/
123 // ---------------------------------------------------------------------
124 /* We return to an idle state if there are still other queues that could
125 fetch this object */
126 void pkgAcquire::Item::Failed(string Message,pkgAcquire::MethodConfig *Cnf)
127 {
128 if(ErrorText == "")
129 ErrorText = LookupTag(Message,"Message");
130 UsedMirror = LookupTag(Message,"UsedMirror");
131 if (QueueCounter <= 1)
132 {
133 /* This indicates that the file is not available right now but might
134 be sometime later. If we do a retry cycle then this should be
135 retried [CDROMs] */
136 if (Cnf != NULL && Cnf->LocalOnly == true &&
137 StringToBool(LookupTag(Message,"Transient-Failure"),false) == true)
138 {
139 Status = StatIdle;
140 Dequeue();
141 return;
142 }
143
144 Status = StatError;
145 Complete = false;
146 Dequeue();
147 }
148 else
149 Status = StatIdle;
150
151 // check fail reason
152 string FailReason = LookupTag(Message, "FailReason");
153 if(FailReason == "MaximumSizeExceeded")
154 Rename(DestFile, DestFile+".FAILED");
155
156 // report mirror failure back to LP if we actually use a mirror
157 if(FailReason.size() != 0)
158 ReportMirrorFailure(FailReason);
159 else
160 ReportMirrorFailure(ErrorText);
161 }
162 /*}}}*/
163 // Acquire::Item::Start - Item has begun to download /*{{{*/
164 // ---------------------------------------------------------------------
165 /* Stash status and the file size. Note that setting Complete means
166 sub-phases of the acquire process such as decompresion are operating */
167 void pkgAcquire::Item::Start(string /*Message*/,unsigned long long Size)
168 {
169 Status = StatFetching;
170 if (FileSize == 0 && Complete == false)
171 FileSize = Size;
172 }
173 /*}}}*/
174 // Acquire::Item::Done - Item downloaded OK /*{{{*/
175 // ---------------------------------------------------------------------
176 /* */
177 void pkgAcquire::Item::Done(string Message,unsigned long long Size,HashStringList const &/*Hash*/,
178 pkgAcquire::MethodConfig * /*Cnf*/)
179 {
180 // We just downloaded something..
181 string FileName = LookupTag(Message,"Filename");
182 UsedMirror = LookupTag(Message,"UsedMirror");
183 if (Complete == false && !Local && FileName == DestFile)
184 {
185 if (Owner->Log != 0)
186 Owner->Log->Fetched(Size,atoi(LookupTag(Message,"Resume-Point","0").c_str()));
187 }
188
189 if (FileSize == 0)
190 FileSize= Size;
191 Status = StatDone;
192 ErrorText = string();
193 Owner->Dequeue(this);
194 }
195 /*}}}*/
196 // Acquire::Item::Rename - Rename a file /*{{{*/
197 // ---------------------------------------------------------------------
198 /* This helper function is used by a lot of item methods as their final
199 step */
200 bool pkgAcquire::Item::Rename(string From,string To)
201 {
202 if (rename(From.c_str(),To.c_str()) != 0)
203 {
204 char S[300];
205 snprintf(S,sizeof(S),_("rename failed, %s (%s -> %s)."),strerror(errno),
206 From.c_str(),To.c_str());
207 Status = StatError;
208 ErrorText += S;
209 return false;
210 }
211 return true;
212 }
213 /*}}}*/
214
215 void pkgAcquire::Item::QueueURI(ItemDesc &Item)
216 {
217 if (RealFileExists(DestFile))
218 ChangeOwnerAndPermissionOfFile("GetPartialFileName", DestFile.c_str(), "_apt", "root", 0600);
219 Owner->Enqueue(Item);
220 }
221 void pkgAcquire::Item::Dequeue()
222 {
223 Owner->Dequeue(this);
224 }
225
226 bool pkgAcquire::Item::RenameOnError(pkgAcquire::Item::RenameOnErrorState const error)/*{{{*/
227 {
228 if(FileExists(DestFile))
229 Rename(DestFile, DestFile + ".FAILED");
230
231 switch (error)
232 {
233 case HashSumMismatch:
234 ErrorText = _("Hash Sum mismatch");
235 Status = StatAuthError;
236 ReportMirrorFailure("HashChecksumFailure");
237 break;
238 case SizeMismatch:
239 ErrorText = _("Size mismatch");
240 Status = StatAuthError;
241 ReportMirrorFailure("SizeFailure");
242 break;
243 case InvalidFormat:
244 ErrorText = _("Invalid file format");
245 Status = StatError;
246 // do not report as usually its not the mirrors fault, but Portal/Proxy
247 break;
248 case SignatureError:
249 ErrorText = _("Signature error");
250 Status = StatError;
251 break;
252 case NotClearsigned:
253 ErrorText = _("Does not start with a cleartext signature");
254 Status = StatError;
255 break;
256 }
257 return false;
258 }
259 /*}}}*/
260 void pkgAcquire::Item::SetActiveSubprocess(const std::string &subprocess)/*{{{*/
261 {
262 ActiveSubprocess = subprocess;
263 #if __GNUC__ >= 4
264 #pragma GCC diagnostic push
265 #pragma GCC diagnostic ignored "-Wdeprecated-declarations"
266 #endif
267 Mode = ActiveSubprocess.c_str();
268 #if __GNUC__ >= 4
269 #pragma GCC diagnostic pop
270 #endif
271 }
272 /*}}}*/
273 // Acquire::Item::ReportMirrorFailure /*{{{*/
274 // ---------------------------------------------------------------------
275 void pkgAcquire::Item::ReportMirrorFailure(string FailCode)
276 {
277 // we only act if a mirror was used at all
278 if(UsedMirror.empty())
279 return;
280 #if 0
281 std::cerr << "\nReportMirrorFailure: "
282 << UsedMirror
283 << " Uri: " << DescURI()
284 << " FailCode: "
285 << FailCode << std::endl;
286 #endif
287 const char *Args[40];
288 unsigned int i = 0;
289 string report = _config->Find("Methods::Mirror::ProblemReporting",
290 "/usr/lib/apt/apt-report-mirror-failure");
291 if(!FileExists(report))
292 return;
293 Args[i++] = report.c_str();
294 Args[i++] = UsedMirror.c_str();
295 Args[i++] = DescURI().c_str();
296 Args[i++] = FailCode.c_str();
297 Args[i++] = NULL;
298 pid_t pid = ExecFork();
299 if(pid < 0)
300 {
301 _error->Error("ReportMirrorFailure Fork failed");
302 return;
303 }
304 else if(pid == 0)
305 {
306 execvp(Args[0], (char**)Args);
307 std::cerr << "Could not exec " << Args[0] << std::endl;
308 _exit(100);
309 }
310 if(!ExecWait(pid, "report-mirror-failure"))
311 {
312 _error->Warning("Couldn't report problem to '%s'",
313 _config->Find("Methods::Mirror::ProblemReporting").c_str());
314 }
315 }
316 /*}}}*/
317 // AcqDiffIndex::AcqDiffIndex - Constructor /*{{{*/
318 // ---------------------------------------------------------------------
319 /* Get the DiffIndex file first and see if there are patches available
320 * If so, create a pkgAcqIndexDiffs fetcher that will get and apply the
321 * patches. If anything goes wrong in that process, it will fall back to
322 * the original packages file
323 */
324 pkgAcqDiffIndex::pkgAcqDiffIndex(pkgAcquire *Owner,
325 pkgAcqMetaBase *TransactionManager,
326 IndexTarget const * const Target,
327 HashStringList const &ExpectedHashes,
328 indexRecords *MetaIndexParser)
329 : pkgAcqBaseIndex(Owner, TransactionManager, Target, ExpectedHashes,
330 MetaIndexParser), PackagesFileReadyInPartial(false)
331 {
332
333 Debug = _config->FindB("Debug::pkgAcquire::Diffs",false);
334
335 RealURI = Target->URI;
336 Desc.Owner = this;
337 Desc.Description = Target->Description + ".diff/Index";
338 Desc.ShortDesc = Target->ShortDesc;
339 Desc.URI = Target->URI + ".diff/Index";
340
341 DestFile = GetPartialFileNameFromURI(Desc.URI);
342
343 if(Debug)
344 std::clog << "pkgAcqDiffIndex: " << Desc.URI << std::endl;
345
346 // look for the current package file
347 CurrentPackagesFile = _config->FindDir("Dir::State::lists");
348 CurrentPackagesFile += URItoFileName(RealURI);
349
350 // FIXME: this file:/ check is a hack to prevent fetching
351 // from local sources. this is really silly, and
352 // should be fixed cleanly as soon as possible
353 if(!FileExists(CurrentPackagesFile) ||
354 Desc.URI.substr(0,strlen("file:/")) == "file:/")
355 {
356 // we don't have a pkg file or we don't want to queue
357 Failed("No index file, local or canceld by user", NULL);
358 return;
359 }
360
361 if(Debug)
362 std::clog << "pkgAcqDiffIndex::pkgAcqDiffIndex(): "
363 << CurrentPackagesFile << std::endl;
364
365 QueueURI(Desc);
366
367 }
368 /*}}}*/
369 // AcqIndex::Custom600Headers - Insert custom request headers /*{{{*/
370 // ---------------------------------------------------------------------
371 /* The only header we use is the last-modified header. */
372 string pkgAcqDiffIndex::Custom600Headers() const
373 {
374 string Final = _config->FindDir("Dir::State::lists");
375 Final += URItoFileName(Desc.URI);
376
377 if(Debug)
378 std::clog << "Custom600Header-IMS: " << Final << std::endl;
379
380 struct stat Buf;
381 if (stat(Final.c_str(),&Buf) != 0)
382 return "\nIndex-File: true";
383
384 return "\nIndex-File: true\nLast-Modified: " + TimeRFC1123(Buf.st_mtime);
385 }
386 /*}}}*/
387 bool pkgAcqDiffIndex::ParseDiffIndex(string IndexDiffFile) /*{{{*/
388 {
389 // failing here is fine: our caller will take care of trying to
390 // get the complete file if patching fails
391 if(Debug)
392 std::clog << "pkgAcqDiffIndex::ParseIndexDiff() " << IndexDiffFile
393 << std::endl;
394
395 FileFd Fd(IndexDiffFile,FileFd::ReadOnly);
396 pkgTagFile TF(&Fd);
397 if (_error->PendingError() == true)
398 return false;
399
400 pkgTagSection Tags;
401 if(unlikely(TF.Step(Tags) == false))
402 return false;
403
404 HashStringList ServerHashes;
405 unsigned long long ServerSize = 0;
406
407 for (char const * const * type = HashString::SupportedHashes(); *type != NULL; ++type)
408 {
409 std::string tagname = *type;
410 tagname.append("-Current");
411 std::string const tmp = Tags.FindS(tagname.c_str());
412 if (tmp.empty() == true)
413 continue;
414
415 string hash;
416 unsigned long long size;
417 std::stringstream ss(tmp);
418 ss >> hash >> size;
419 if (unlikely(hash.empty() == true))
420 continue;
421 if (unlikely(ServerSize != 0 && ServerSize != size))
422 continue;
423 ServerHashes.push_back(HashString(*type, hash));
424 ServerSize = size;
425 }
426
427 if (ServerHashes.usable() == false)
428 {
429 if (Debug == true)
430 std::clog << "pkgAcqDiffIndex: " << IndexDiffFile << ": Did not find a good hashsum in the index" << std::endl;
431 return false;
432 }
433
434 if (ServerHashes != HashSums())
435 {
436 if (Debug == true)
437 {
438 std::clog << "pkgAcqDiffIndex: " << IndexDiffFile << ": Index has different hashes than parser, probably older, so fail pdiffing" << std::endl;
439 printHashSumComparision(CurrentPackagesFile, ServerHashes, HashSums());
440 }
441 return false;
442 }
443
444 if (ServerHashes.VerifyFile(CurrentPackagesFile) == true)
445 {
446 // we have the same sha1 as the server so we are done here
447 if(Debug)
448 std::clog << "pkgAcqDiffIndex: Package file " << CurrentPackagesFile << " is up-to-date" << std::endl;
449
450 // list cleanup needs to know that this file as well as the already
451 // present index is ours, so we create an empty diff to save it for us
452 new pkgAcqIndexDiffs(Owner, TransactionManager, Target,
453 ExpectedHashes, MetaIndexParser);
454 return true;
455 }
456
457 FileFd fd(CurrentPackagesFile, FileFd::ReadOnly);
458 Hashes LocalHashesCalc;
459 LocalHashesCalc.AddFD(fd);
460 HashStringList const LocalHashes = LocalHashesCalc.GetHashStringList();
461
462 if(Debug)
463 std::clog << "Server-Current: " << ServerHashes.find(NULL)->toStr() << " and we start at "
464 << fd.Name() << " " << fd.FileSize() << " " << LocalHashes.find(NULL)->toStr() << std::endl;
465
466 // parse all of (provided) history
467 vector<DiffInfo> available_patches;
468 bool firstAcceptedHashes = true;
469 for (char const * const * type = HashString::SupportedHashes(); *type != NULL; ++type)
470 {
471 if (LocalHashes.find(*type) == NULL)
472 continue;
473
474 std::string tagname = *type;
475 tagname.append("-History");
476 std::string const tmp = Tags.FindS(tagname.c_str());
477 if (tmp.empty() == true)
478 continue;
479
480 string hash, filename;
481 unsigned long long size;
482 std::stringstream ss(tmp);
483
484 while (ss >> hash >> size >> filename)
485 {
486 if (unlikely(hash.empty() == true || filename.empty() == true))
487 continue;
488
489 // see if we have a record for this file already
490 std::vector<DiffInfo>::iterator cur = available_patches.begin();
491 for (; cur != available_patches.end(); ++cur)
492 {
493 if (cur->file != filename || unlikely(cur->result_size != size))
494 continue;
495 cur->result_hashes.push_back(HashString(*type, hash));
496 break;
497 }
498 if (cur != available_patches.end())
499 continue;
500 if (firstAcceptedHashes == true)
501 {
502 DiffInfo next;
503 next.file = filename;
504 next.result_hashes.push_back(HashString(*type, hash));
505 next.result_size = size;
506 next.patch_size = 0;
507 available_patches.push_back(next);
508 }
509 else
510 {
511 if (Debug == true)
512 std::clog << "pkgAcqDiffIndex: " << IndexDiffFile << ": File " << filename
513 << " wasn't in the list for the first parsed hash! (history)" << std::endl;
514 break;
515 }
516 }
517 firstAcceptedHashes = false;
518 }
519
520 if (unlikely(available_patches.empty() == true))
521 {
522 if (Debug)
523 std::clog << "pkgAcqDiffIndex: " << IndexDiffFile << ": "
524 << "Couldn't find any patches for the patch series." << std::endl;
525 return false;
526 }
527
528 for (char const * const * type = HashString::SupportedHashes(); *type != NULL; ++type)
529 {
530 if (LocalHashes.find(*type) == NULL)
531 continue;
532
533 std::string tagname = *type;
534 tagname.append("-Patches");
535 std::string const tmp = Tags.FindS(tagname.c_str());
536 if (tmp.empty() == true)
537 continue;
538
539 string hash, filename;
540 unsigned long long size;
541 std::stringstream ss(tmp);
542
543 while (ss >> hash >> size >> filename)
544 {
545 if (unlikely(hash.empty() == true || filename.empty() == true))
546 continue;
547
548 // see if we have a record for this file already
549 std::vector<DiffInfo>::iterator cur = available_patches.begin();
550 for (; cur != available_patches.end(); ++cur)
551 {
552 if (cur->file != filename)
553 continue;
554 if (unlikely(cur->patch_size != 0 && cur->patch_size != size))
555 continue;
556 cur->patch_hashes.push_back(HashString(*type, hash));
557 cur->patch_size = size;
558 break;
559 }
560 if (cur != available_patches.end())
561 continue;
562 if (Debug == true)
563 std::clog << "pkgAcqDiffIndex: " << IndexDiffFile << ": File " << filename
564 << " wasn't in the list for the first parsed hash! (patches)" << std::endl;
565 break;
566 }
567 }
568
569 bool foundStart = false;
570 for (std::vector<DiffInfo>::iterator cur = available_patches.begin();
571 cur != available_patches.end(); ++cur)
572 {
573 if (LocalHashes != cur->result_hashes)
574 continue;
575
576 available_patches.erase(available_patches.begin(), cur);
577 foundStart = true;
578 break;
579 }
580
581 if (foundStart == false || unlikely(available_patches.empty() == true))
582 {
583 if (Debug)
584 std::clog << "pkgAcqDiffIndex: " << IndexDiffFile << ": "
585 << "Couldn't find the start of the patch series." << std::endl;
586 return false;
587 }
588
589 // patching with too many files is rather slow compared to a fast download
590 unsigned long const fileLimit = _config->FindI("Acquire::PDiffs::FileLimit", 0);
591 if (fileLimit != 0 && fileLimit < available_patches.size())
592 {
593 if (Debug)
594 std::clog << "Need " << available_patches.size() << " diffs (Limit is " << fileLimit
595 << ") so fallback to complete download" << std::endl;
596 return false;
597 }
598
599 // calculate the size of all patches we have to get
600 // note that all sizes are uncompressed, while we download compressed files
601 unsigned long long patchesSize = 0;
602 for (std::vector<DiffInfo>::const_iterator cur = available_patches.begin();
603 cur != available_patches.end(); ++cur)
604 patchesSize += cur->patch_size;
605 unsigned long long const sizeLimit = ServerSize * _config->FindI("Acquire::PDiffs::SizeLimit", 100);
606 if (false && sizeLimit > 0 && (sizeLimit/100) < patchesSize)
607 {
608 if (Debug)
609 std::clog << "Need " << patchesSize << " bytes (Limit is " << sizeLimit/100
610 << ") so fallback to complete download" << std::endl;
611 return false;
612 }
613
614 // FIXME: make this use the method
615 PackagesFileReadyInPartial = true;
616 std::string const Partial = GetPartialFileNameFromURI(RealURI);
617
618 FileFd From(CurrentPackagesFile, FileFd::ReadOnly);
619 FileFd To(Partial, FileFd::WriteEmpty);
620 if(CopyFile(From, To) == false)
621 return _error->Errno("CopyFile", "failed to copy");
622
623 if(Debug)
624 std::cerr << "Done copying " << CurrentPackagesFile
625 << " -> " << Partial
626 << std::endl;
627
628 // we have something, queue the diffs
629 string::size_type const last_space = Description.rfind(" ");
630 if(last_space != string::npos)
631 Description.erase(last_space, Description.size()-last_space);
632
633 /* decide if we should download patches one by one or in one go:
634 The first is good if the server merges patches, but many don't so client
635 based merging can be attempt in which case the second is better.
636 "bad things" will happen if patches are merged on the server,
637 but client side merging is attempt as well */
638 bool pdiff_merge = _config->FindB("Acquire::PDiffs::Merge", true);
639 if (pdiff_merge == true)
640 {
641 // reprepro adds this flag if it has merged patches on the server
642 std::string const precedence = Tags.FindS("X-Patch-Precedence");
643 pdiff_merge = (precedence != "merged");
644 }
645
646 if (pdiff_merge == false)
647 {
648 new pkgAcqIndexDiffs(Owner, TransactionManager, Target, ExpectedHashes,
649 MetaIndexParser, available_patches);
650 }
651 else
652 {
653 std::vector<pkgAcqIndexMergeDiffs*> *diffs = new std::vector<pkgAcqIndexMergeDiffs*>(available_patches.size());
654 for(size_t i = 0; i < available_patches.size(); ++i)
655 (*diffs)[i] = new pkgAcqIndexMergeDiffs(Owner, TransactionManager,
656 Target,
657 ExpectedHashes,
658 MetaIndexParser,
659 available_patches[i],
660 diffs);
661 }
662
663 Complete = false;
664 Status = StatDone;
665 Dequeue();
666 return true;
667 }
668 /*}}}*/
669 void pkgAcqDiffIndex::Failed(string Message,pkgAcquire::MethodConfig * Cnf)/*{{{*/
670 {
671 if(Debug)
672 std::clog << "pkgAcqDiffIndex failed: " << Desc.URI << " with " << Message << std::endl
673 << "Falling back to normal index file acquire" << std::endl;
674
675 new pkgAcqIndex(Owner, TransactionManager, Target, ExpectedHashes, MetaIndexParser);
676
677 Item::Failed(Message,Cnf);
678 Status = StatDone;
679 }
680 /*}}}*/
681 void pkgAcqDiffIndex::Done(string Message,unsigned long long Size,HashStringList const &Hashes, /*{{{*/
682 pkgAcquire::MethodConfig *Cnf)
683 {
684 if(Debug)
685 std::clog << "pkgAcqDiffIndex::Done(): " << Desc.URI << std::endl;
686
687 Item::Done(Message, Size, Hashes, Cnf);
688
689 // verify the index target
690 if(Target && Target->MetaKey != "" && MetaIndexParser && Hashes.usable())
691 {
692 std::string IndexMetaKey = Target->MetaKey + ".diff/Index";
693 indexRecords::checkSum *Record = MetaIndexParser->Lookup(IndexMetaKey);
694 if(Record && Record->Hashes.usable() && Hashes != Record->Hashes)
695 {
696 RenameOnError(HashSumMismatch);
697 printHashSumComparision(RealURI, Record->Hashes, Hashes);
698 Failed(Message, Cnf);
699 return;
700 }
701
702 }
703
704 string FinalFile;
705 FinalFile = _config->FindDir("Dir::State::lists");
706 FinalFile += URItoFileName(Desc.URI);
707
708 if(StringToBool(LookupTag(Message,"IMS-Hit"),false))
709 DestFile = FinalFile;
710
711 if(!ParseDiffIndex(DestFile))
712 return Failed("Message: Couldn't parse pdiff index", Cnf);
713
714 // queue for final move
715 TransactionManager->TransactionStageCopy(this, DestFile, FinalFile);
716
717 Complete = true;
718 Status = StatDone;
719 Dequeue();
720 return;
721 }
722 /*}}}*/
723 // AcqIndexDiffs::AcqIndexDiffs - Constructor /*{{{*/
724 // ---------------------------------------------------------------------
725 /* The package diff is added to the queue. one object is constructed
726 * for each diff and the index
727 */
728 pkgAcqIndexDiffs::pkgAcqIndexDiffs(pkgAcquire *Owner,
729 pkgAcqMetaBase *TransactionManager,
730 struct IndexTarget const * const Target,
731 HashStringList const &ExpectedHashes,
732 indexRecords *MetaIndexParser,
733 vector<DiffInfo> diffs)
734 : pkgAcqBaseIndex(Owner, TransactionManager, Target, ExpectedHashes, MetaIndexParser),
735 available_patches(diffs)
736 {
737 DestFile = GetPartialFileNameFromURI(Target->URI);
738
739 Debug = _config->FindB("Debug::pkgAcquire::Diffs",false);
740
741 RealURI = Target->URI;
742 Desc.Owner = this;
743 Description = Target->Description;
744 Desc.ShortDesc = Target->ShortDesc;
745
746 if(available_patches.empty() == true)
747 {
748 // we are done (yeah!), check hashes against the final file
749 DestFile = _config->FindDir("Dir::State::lists");
750 DestFile += URItoFileName(Target->URI);
751 Finish(true);
752 }
753 else
754 {
755 // get the next diff
756 State = StateFetchDiff;
757 QueueNextDiff();
758 }
759 }
760 /*}}}*/
761 void pkgAcqIndexDiffs::Failed(string Message,pkgAcquire::MethodConfig * /*Cnf*/)/*{{{*/
762 {
763 if(Debug)
764 std::clog << "pkgAcqIndexDiffs failed: " << Desc.URI << " with " << Message << std::endl
765 << "Falling back to normal index file acquire" << std::endl;
766 new pkgAcqIndex(Owner, TransactionManager, Target, ExpectedHashes, MetaIndexParser);
767 Finish();
768 }
769 /*}}}*/
770 // Finish - helper that cleans the item out of the fetcher queue /*{{{*/
771 void pkgAcqIndexDiffs::Finish(bool allDone)
772 {
773 if(Debug)
774 std::clog << "pkgAcqIndexDiffs::Finish(): "
775 << allDone << " "
776 << Desc.URI << std::endl;
777
778 // we restore the original name, this is required, otherwise
779 // the file will be cleaned
780 if(allDone)
781 {
782 if(HashSums().usable() && !HashSums().VerifyFile(DestFile))
783 {
784 RenameOnError(HashSumMismatch);
785 Dequeue();
786 return;
787 }
788
789 // queue for copy
790 std::string FinalFile = _config->FindDir("Dir::State::lists");
791 FinalFile += URItoFileName(RealURI);
792 TransactionManager->TransactionStageCopy(this, DestFile, FinalFile);
793
794 // this is for the "real" finish
795 Complete = true;
796 Status = StatDone;
797 Dequeue();
798 if(Debug)
799 std::clog << "\n\nallDone: " << DestFile << "\n" << std::endl;
800 return;
801 }
802
803 if(Debug)
804 std::clog << "Finishing: " << Desc.URI << std::endl;
805 Complete = false;
806 Status = StatDone;
807 Dequeue();
808 return;
809 }
810 /*}}}*/
811 bool pkgAcqIndexDiffs::QueueNextDiff() /*{{{*/
812 {
813 // calc sha1 of the just patched file
814 std::string const FinalFile = GetPartialFileNameFromURI(RealURI);
815
816 if(!FileExists(FinalFile))
817 {
818 Failed("Message: No FinalFile " + FinalFile + " available", NULL);
819 return false;
820 }
821
822 FileFd fd(FinalFile, FileFd::ReadOnly);
823 Hashes LocalHashesCalc;
824 LocalHashesCalc.AddFD(fd);
825 HashStringList const LocalHashes = LocalHashesCalc.GetHashStringList();
826
827 if(Debug)
828 std::clog << "QueueNextDiff: " << FinalFile << " (" << LocalHashes.find(NULL)->toStr() << ")" << std::endl;
829
830 if (unlikely(LocalHashes.usable() == false || ExpectedHashes.usable() == false))
831 {
832 Failed("Local/Expected hashes are not usable", NULL);
833 return false;
834 }
835
836
837 // final file reached before all patches are applied
838 if(LocalHashes == ExpectedHashes)
839 {
840 Finish(true);
841 return true;
842 }
843
844 // remove all patches until the next matching patch is found
845 // this requires the Index file to be ordered
846 for(vector<DiffInfo>::iterator I = available_patches.begin();
847 available_patches.empty() == false &&
848 I != available_patches.end() &&
849 I->result_hashes != LocalHashes;
850 ++I)
851 {
852 available_patches.erase(I);
853 }
854
855 // error checking and falling back if no patch was found
856 if(available_patches.empty() == true)
857 {
858 Failed("No patches left to reach target", NULL);
859 return false;
860 }
861
862 // queue the right diff
863 Desc.URI = RealURI + ".diff/" + available_patches[0].file + ".gz";
864 Desc.Description = Description + " " + available_patches[0].file + string(".pdiff");
865 DestFile = GetPartialFileNameFromURI(RealURI + ".diff/" + available_patches[0].file);
866
867 if(Debug)
868 std::clog << "pkgAcqIndexDiffs::QueueNextDiff(): " << Desc.URI << std::endl;
869
870 QueueURI(Desc);
871
872 return true;
873 }
874 /*}}}*/
875 void pkgAcqIndexDiffs::Done(string Message,unsigned long long Size, HashStringList const &Hashes, /*{{{*/
876 pkgAcquire::MethodConfig *Cnf)
877 {
878 if(Debug)
879 std::clog << "pkgAcqIndexDiffs::Done(): " << Desc.URI << std::endl;
880
881 Item::Done(Message, Size, Hashes, Cnf);
882
883 // FIXME: verify this download too before feeding it to rred
884 std::string const FinalFile = GetPartialFileNameFromURI(RealURI);
885
886 // success in downloading a diff, enter ApplyDiff state
887 if(State == StateFetchDiff)
888 {
889 FileFd fd(DestFile, FileFd::ReadOnly, FileFd::Gzip);
890 class Hashes LocalHashesCalc;
891 LocalHashesCalc.AddFD(fd);
892 HashStringList const LocalHashes = LocalHashesCalc.GetHashStringList();
893
894 if (fd.Size() != available_patches[0].patch_size ||
895 available_patches[0].patch_hashes != LocalHashes)
896 {
897 Failed("Patch has Size/Hashsum mismatch", NULL);
898 return;
899 }
900
901 // rred excepts the patch as $FinalFile.ed
902 Rename(DestFile,FinalFile+".ed");
903
904 if(Debug)
905 std::clog << "Sending to rred method: " << FinalFile << std::endl;
906
907 State = StateApplyDiff;
908 Local = true;
909 Desc.URI = "rred:" + FinalFile;
910 QueueURI(Desc);
911 SetActiveSubprocess("rred");
912 return;
913 }
914
915
916 // success in download/apply a diff, queue next (if needed)
917 if(State == StateApplyDiff)
918 {
919 // remove the just applied patch
920 available_patches.erase(available_patches.begin());
921 unlink((FinalFile + ".ed").c_str());
922
923 // move into place
924 if(Debug)
925 {
926 std::clog << "Moving patched file in place: " << std::endl
927 << DestFile << " -> " << FinalFile << std::endl;
928 }
929 Rename(DestFile,FinalFile);
930 chmod(FinalFile.c_str(),0644);
931
932 // see if there is more to download
933 if(available_patches.empty() == false) {
934 new pkgAcqIndexDiffs(Owner, TransactionManager, Target,
935 ExpectedHashes, MetaIndexParser,
936 available_patches);
937 return Finish();
938 } else
939 // update
940 DestFile = FinalFile;
941 return Finish(true);
942 }
943 }
944 /*}}}*/
945 // AcqIndexMergeDiffs::AcqIndexMergeDiffs - Constructor /*{{{*/
946 pkgAcqIndexMergeDiffs::pkgAcqIndexMergeDiffs(pkgAcquire *Owner,
947 pkgAcqMetaBase *TransactionManager,
948 struct IndexTarget const * const Target,
949 HashStringList const &ExpectedHashes,
950 indexRecords *MetaIndexParser,
951 DiffInfo const &patch,
952 std::vector<pkgAcqIndexMergeDiffs*> const * const allPatches)
953 : pkgAcqBaseIndex(Owner, TransactionManager, Target, ExpectedHashes, MetaIndexParser),
954 patch(patch), allPatches(allPatches), State(StateFetchDiff)
955 {
956 Debug = _config->FindB("Debug::pkgAcquire::Diffs",false);
957
958 RealURI = Target->URI;
959 Desc.Owner = this;
960 Description = Target->Description;
961 Desc.ShortDesc = Target->ShortDesc;
962
963 Desc.URI = RealURI + ".diff/" + patch.file + ".gz";
964 Desc.Description = Description + " " + patch.file + string(".pdiff");
965
966 DestFile = GetPartialFileNameFromURI(RealURI + ".diff/" + patch.file);
967
968 if(Debug)
969 std::clog << "pkgAcqIndexMergeDiffs: " << Desc.URI << std::endl;
970
971 QueueURI(Desc);
972 }
973 /*}}}*/
974 void pkgAcqIndexMergeDiffs::Failed(string Message,pkgAcquire::MethodConfig * Cnf)/*{{{*/
975 {
976 if(Debug)
977 std::clog << "pkgAcqIndexMergeDiffs failed: " << Desc.URI << " with " << Message << std::endl;
978
979 Item::Failed(Message,Cnf);
980 Status = StatDone;
981
982 // check if we are the first to fail, otherwise we are done here
983 State = StateDoneDiff;
984 for (std::vector<pkgAcqIndexMergeDiffs *>::const_iterator I = allPatches->begin();
985 I != allPatches->end(); ++I)
986 if ((*I)->State == StateErrorDiff)
987 return;
988
989 // first failure means we should fallback
990 State = StateErrorDiff;
991 std::clog << "Falling back to normal index file acquire" << std::endl;
992 new pkgAcqIndex(Owner, TransactionManager, Target, ExpectedHashes, MetaIndexParser);
993 }
994 /*}}}*/
995 void pkgAcqIndexMergeDiffs::Done(string Message,unsigned long long Size,HashStringList const &Hashes, /*{{{*/
996 pkgAcquire::MethodConfig *Cnf)
997 {
998 if(Debug)
999 std::clog << "pkgAcqIndexMergeDiffs::Done(): " << Desc.URI << std::endl;
1000
1001 Item::Done(Message,Size,Hashes,Cnf);
1002
1003 // FIXME: verify download before feeding it to rred
1004 string const FinalFile = GetPartialFileNameFromURI(RealURI);
1005
1006 if (State == StateFetchDiff)
1007 {
1008 FileFd fd(DestFile, FileFd::ReadOnly, FileFd::Gzip);
1009 class Hashes LocalHashesCalc;
1010 LocalHashesCalc.AddFD(fd);
1011 HashStringList const LocalHashes = LocalHashesCalc.GetHashStringList();
1012
1013 if (fd.Size() != patch.patch_size || patch.patch_hashes != LocalHashes)
1014 {
1015 Failed("Patch has Size/Hashsum mismatch", NULL);
1016 return;
1017 }
1018
1019 // rred expects the patch as $FinalFile.ed.$patchname.gz
1020 Rename(DestFile, FinalFile + ".ed." + patch.file + ".gz");
1021
1022 // check if this is the last completed diff
1023 State = StateDoneDiff;
1024 for (std::vector<pkgAcqIndexMergeDiffs *>::const_iterator I = allPatches->begin();
1025 I != allPatches->end(); ++I)
1026 if ((*I)->State != StateDoneDiff)
1027 {
1028 if(Debug)
1029 std::clog << "Not the last done diff in the batch: " << Desc.URI << std::endl;
1030 return;
1031 }
1032
1033 // this is the last completed diff, so we are ready to apply now
1034 State = StateApplyDiff;
1035
1036 if(Debug)
1037 std::clog << "Sending to rred method: " << FinalFile << std::endl;
1038
1039 Local = true;
1040 Desc.URI = "rred:" + FinalFile;
1041 QueueURI(Desc);
1042 SetActiveSubprocess("rred");
1043 return;
1044 }
1045 // success in download/apply all diffs, clean up
1046 else if (State == StateApplyDiff)
1047 {
1048 // see if we really got the expected file
1049 if(ExpectedHashes.usable() && !ExpectedHashes.VerifyFile(DestFile))
1050 {
1051 RenameOnError(HashSumMismatch);
1052 return;
1053 }
1054
1055
1056 std::string FinalFile = _config->FindDir("Dir::State::lists");
1057 FinalFile += URItoFileName(RealURI);
1058
1059 // move the result into place
1060 if(Debug)
1061 std::clog << "Queue patched file in place: " << std::endl
1062 << DestFile << " -> " << FinalFile << std::endl;
1063
1064 // queue for copy by the transaction manager
1065 TransactionManager->TransactionStageCopy(this, DestFile, FinalFile);
1066
1067 // ensure the ed's are gone regardless of list-cleanup
1068 for (std::vector<pkgAcqIndexMergeDiffs *>::const_iterator I = allPatches->begin();
1069 I != allPatches->end(); ++I)
1070 {
1071 std::string const PartialFile = GetPartialFileNameFromURI(RealURI);
1072 std::string patch = PartialFile + ".ed." + (*I)->patch.file + ".gz";
1073 unlink(patch.c_str());
1074 }
1075
1076 // all set and done
1077 Complete = true;
1078 if(Debug)
1079 std::clog << "allDone: " << DestFile << "\n" << std::endl;
1080 }
1081 }
1082 /*}}}*/
1083 // AcqBaseIndex::VerifyHashByMetaKey - verify hash for the given metakey /*{{{*/
1084 bool pkgAcqBaseIndex::VerifyHashByMetaKey(HashStringList const &Hashes)
1085 {
1086 if(MetaKey != "" && Hashes.usable())
1087 {
1088 indexRecords::checkSum *Record = MetaIndexParser->Lookup(MetaKey);
1089 if(Record && Record->Hashes.usable() && Hashes != Record->Hashes)
1090 {
1091 printHashSumComparision(RealURI, Record->Hashes, Hashes);
1092 return false;
1093 }
1094 }
1095 return true;
1096 }
1097 /*}}}*/
1098 // AcqIndex::AcqIndex - Constructor /*{{{*/
1099 // ---------------------------------------------------------------------
1100 /* The package file is added to the queue and a second class is
1101 instantiated to fetch the revision file */
1102 pkgAcqIndex::pkgAcqIndex(pkgAcquire *Owner,
1103 string URI,string URIDesc,string ShortDesc,
1104 HashStringList const &ExpectedHash)
1105 : pkgAcqBaseIndex(Owner, 0, NULL, ExpectedHash, NULL)
1106 {
1107 RealURI = URI;
1108
1109 AutoSelectCompression();
1110 Init(URI, URIDesc, ShortDesc);
1111
1112 if(_config->FindB("Debug::Acquire::Transaction", false) == true)
1113 std::clog << "New pkgIndex with TransactionManager "
1114 << TransactionManager << std::endl;
1115 }
1116 /*}}}*/
1117 // AcqIndex::AcqIndex - Constructor /*{{{*/
1118 pkgAcqIndex::pkgAcqIndex(pkgAcquire *Owner,
1119 pkgAcqMetaBase *TransactionManager,
1120 IndexTarget const *Target,
1121 HashStringList const &ExpectedHash,
1122 indexRecords *MetaIndexParser)
1123 : pkgAcqBaseIndex(Owner, TransactionManager, Target, ExpectedHash,
1124 MetaIndexParser)
1125 {
1126 RealURI = Target->URI;
1127
1128 // autoselect the compression method
1129 AutoSelectCompression();
1130 Init(Target->URI, Target->Description, Target->ShortDesc);
1131
1132 if(_config->FindB("Debug::Acquire::Transaction", false) == true)
1133 std::clog << "New pkgIndex with TransactionManager "
1134 << TransactionManager << std::endl;
1135 }
1136 /*}}}*/
1137 // AcqIndex::AutoSelectCompression - Select compression /*{{{*/
1138 void pkgAcqIndex::AutoSelectCompression()
1139 {
1140 std::vector<std::string> types = APT::Configuration::getCompressionTypes();
1141 CompressionExtensions = "";
1142 if (ExpectedHashes.usable())
1143 {
1144 for (std::vector<std::string>::const_iterator t = types.begin();
1145 t != types.end(); ++t)
1146 {
1147 std::string CompressedMetaKey = string(Target->MetaKey).append(".").append(*t);
1148 if (*t == "uncompressed" ||
1149 MetaIndexParser->Exists(CompressedMetaKey) == true)
1150 CompressionExtensions.append(*t).append(" ");
1151 }
1152 }
1153 else
1154 {
1155 for (std::vector<std::string>::const_iterator t = types.begin(); t != types.end(); ++t)
1156 CompressionExtensions.append(*t).append(" ");
1157 }
1158 if (CompressionExtensions.empty() == false)
1159 CompressionExtensions.erase(CompressionExtensions.end()-1);
1160 }
1161 /*}}}*/
1162 // AcqIndex::Init - defered Constructor /*{{{*/
1163 void pkgAcqIndex::Init(string const &URI, string const &URIDesc,
1164 string const &ShortDesc)
1165 {
1166 Stage = STAGE_DOWNLOAD;
1167
1168 DestFile = GetPartialFileNameFromURI(URI);
1169
1170 CurrentCompressionExtension = CompressionExtensions.substr(0, CompressionExtensions.find(' '));
1171 if (CurrentCompressionExtension == "uncompressed")
1172 {
1173 Desc.URI = URI;
1174 if(Target)
1175 MetaKey = string(Target->MetaKey);
1176 }
1177 else
1178 {
1179 Desc.URI = URI + '.' + CurrentCompressionExtension;
1180 DestFile = DestFile + '.' + CurrentCompressionExtension;
1181 if(Target)
1182 MetaKey = string(Target->MetaKey) + '.' + CurrentCompressionExtension;
1183 }
1184
1185 // load the filesize
1186 if(MetaIndexParser)
1187 {
1188 indexRecords::checkSum *Record = MetaIndexParser->Lookup(MetaKey);
1189 if(Record)
1190 FileSize = Record->Size;
1191
1192 InitByHashIfNeeded(MetaKey);
1193 }
1194
1195 Desc.Description = URIDesc;
1196 Desc.Owner = this;
1197 Desc.ShortDesc = ShortDesc;
1198
1199 QueueURI(Desc);
1200 }
1201 /*}}}*/
1202 // AcqIndex::AdjustForByHash - modify URI for by-hash support /*{{{*/
1203 void pkgAcqIndex::InitByHashIfNeeded(const std::string MetaKey)
1204 {
1205 // TODO:
1206 // - (maybe?) add support for by-hash into the sources.list as flag
1207 // - make apt-ftparchive generate the hashes (and expire?)
1208 std::string HostKnob = "APT::Acquire::" + ::URI(Desc.URI).Host + "::By-Hash";
1209 if(_config->FindB("APT::Acquire::By-Hash", false) == true ||
1210 _config->FindB(HostKnob, false) == true ||
1211 MetaIndexParser->GetSupportsAcquireByHash())
1212 {
1213 indexRecords::checkSum *Record = MetaIndexParser->Lookup(MetaKey);
1214 if(Record)
1215 {
1216 // FIXME: should we really use the best hash here? or a fixed one?
1217 const HashString *TargetHash = Record->Hashes.find("");
1218 std::string ByHash = "/by-hash/" + TargetHash->HashType() + "/" + TargetHash->HashValue();
1219 size_t trailing_slash = Desc.URI.find_last_of("/");
1220 Desc.URI = Desc.URI.replace(
1221 trailing_slash,
1222 Desc.URI.substr(trailing_slash+1).size()+1,
1223 ByHash);
1224 } else {
1225 _error->Warning(
1226 "Fetching ByHash requested but can not find record for %s",
1227 MetaKey.c_str());
1228 }
1229 }
1230 }
1231 /*}}}*/
1232 // AcqIndex::Custom600Headers - Insert custom request headers /*{{{*/
1233 // ---------------------------------------------------------------------
1234 /* The only header we use is the last-modified header. */
1235 string pkgAcqIndex::Custom600Headers() const
1236 {
1237 string Final = GetFinalFilename();
1238
1239 string msg = "\nIndex-File: true";
1240 struct stat Buf;
1241 if (stat(Final.c_str(),&Buf) == 0)
1242 msg += "\nLast-Modified: " + TimeRFC1123(Buf.st_mtime);
1243
1244 return msg;
1245 }
1246 /*}}}*/
1247 // pkgAcqIndex::Failed - getting the indexfile failed /*{{{*/
1248 void pkgAcqIndex::Failed(string Message,pkgAcquire::MethodConfig *Cnf)
1249 {
1250 size_t const nextExt = CompressionExtensions.find(' ');
1251 if (nextExt != std::string::npos)
1252 {
1253 CompressionExtensions = CompressionExtensions.substr(nextExt+1);
1254 Init(RealURI, Desc.Description, Desc.ShortDesc);
1255 return;
1256 }
1257
1258 // on decompression failure, remove bad versions in partial/
1259 if (Stage == STAGE_DECOMPRESS_AND_VERIFY)
1260 {
1261 unlink(EraseFileName.c_str());
1262 }
1263
1264 Item::Failed(Message,Cnf);
1265
1266 /// cancel the entire transaction
1267 TransactionManager->AbortTransaction();
1268 }
1269 /*}}}*/
1270 // pkgAcqIndex::GetFinalFilename - Return the full final file path /*{{{*/
1271 std::string pkgAcqIndex::GetFinalFilename() const
1272 {
1273 std::string FinalFile = _config->FindDir("Dir::State::lists");
1274 FinalFile += URItoFileName(RealURI);
1275 if (_config->FindB("Acquire::GzipIndexes",false) == true)
1276 FinalFile += '.' + CurrentCompressionExtension;
1277 return FinalFile;
1278 }
1279 /*}}}*/
1280 // AcqIndex::ReverifyAfterIMS - Reverify index after an ims-hit /*{{{*/
1281 void pkgAcqIndex::ReverifyAfterIMS()
1282 {
1283 // update destfile to *not* include the compression extension when doing
1284 // a reverify (as its uncompressed on disk already)
1285 DestFile = GetPartialFileNameFromURI(RealURI);
1286
1287 // adjust DestFile if its compressed on disk
1288 if (_config->FindB("Acquire::GzipIndexes",false) == true)
1289 DestFile += '.' + CurrentCompressionExtension;
1290
1291 // copy FinalFile into partial/ so that we check the hash again
1292 string FinalFile = GetFinalFilename();
1293 Stage = STAGE_DECOMPRESS_AND_VERIFY;
1294 Desc.URI = "copy:" + FinalFile;
1295 QueueURI(Desc);
1296 }
1297 /*}}}*/
1298 // AcqIndex::ValidateFile - Validate the content of the downloaded file /*{{{*/
1299 bool pkgAcqIndex::ValidateFile(const std::string &FileName)
1300 {
1301 // FIXME: this can go away once we only ever download stuff that
1302 // has a valid hash and we never do GET based probing
1303 // FIXME2: this also leaks debian-isms into the code and should go therefore
1304
1305 /* Always validate the index file for correctness (all indexes must
1306 * have a Package field) (LP: #346386) (Closes: #627642)
1307 */
1308 FileFd fd(FileName, FileFd::ReadOnly, FileFd::Extension);
1309 // Only test for correctness if the content of the file is not empty
1310 // (empty is ok)
1311 if (fd.Size() > 0)
1312 {
1313 pkgTagSection sec;
1314 pkgTagFile tag(&fd);
1315
1316 // all our current indexes have a field 'Package' in each section
1317 if (_error->PendingError() == true ||
1318 tag.Step(sec) == false ||
1319 sec.Exists("Package") == false)
1320 return false;
1321 }
1322 return true;
1323 }
1324 /*}}}*/
1325 // AcqIndex::Done - Finished a fetch /*{{{*/
1326 // ---------------------------------------------------------------------
1327 /* This goes through a number of states.. On the initial fetch the
1328 method could possibly return an alternate filename which points
1329 to the uncompressed version of the file. If this is so the file
1330 is copied into the partial directory. In all other cases the file
1331 is decompressed with a compressed uri. */
1332 void pkgAcqIndex::Done(string Message,
1333 unsigned long long Size,
1334 HashStringList const &Hashes,
1335 pkgAcquire::MethodConfig *Cfg)
1336 {
1337 Item::Done(Message,Size,Hashes,Cfg);
1338
1339 switch(Stage)
1340 {
1341 case STAGE_DOWNLOAD:
1342 StageDownloadDone(Message, Hashes, Cfg);
1343 break;
1344 case STAGE_DECOMPRESS_AND_VERIFY:
1345 StageDecompressDone(Message, Hashes, Cfg);
1346 break;
1347 }
1348 }
1349 /*}}}*/
1350 // AcqIndex::StageDownloadDone - Queue for decompress and verify /*{{{*/
1351 void pkgAcqIndex::StageDownloadDone(string Message,
1352 HashStringList const &Hashes,
1353 pkgAcquire::MethodConfig *Cfg)
1354 {
1355 // First check if the calculcated Hash of the (compressed) downloaded
1356 // file matches the hash we have in the MetaIndexRecords for this file
1357 if(VerifyHashByMetaKey(Hashes) == false)
1358 {
1359 RenameOnError(HashSumMismatch);
1360 Failed(Message, Cfg);
1361 return;
1362 }
1363
1364 Complete = true;
1365
1366 // Handle the unzipd case
1367 string FileName = LookupTag(Message,"Alt-Filename");
1368 if (FileName.empty() == false)
1369 {
1370 Stage = STAGE_DECOMPRESS_AND_VERIFY;
1371 Local = true;
1372 DestFile += ".decomp";
1373 Desc.URI = "copy:" + FileName;
1374 QueueURI(Desc);
1375 SetActiveSubprocess("copy");
1376 return;
1377 }
1378
1379 FileName = LookupTag(Message,"Filename");
1380 if (FileName.empty() == true)
1381 {
1382 Status = StatError;
1383 ErrorText = "Method gave a blank filename";
1384 }
1385
1386 // Methods like e.g. "file:" will give us a (compressed) FileName that is
1387 // not the "DestFile" we set, in this case we uncompress from the local file
1388 if (FileName != DestFile)
1389 Local = true;
1390 else
1391 EraseFileName = FileName;
1392
1393 // we need to verify the file against the current Release file again
1394 // on if-modfied-since hit to avoid a stale attack against us
1395 if(StringToBool(LookupTag(Message,"IMS-Hit"),false) == true)
1396 {
1397 // do not reverify cdrom sources as apt-cdrom may rewrite the Packages
1398 // file when its doing the indexcopy
1399 if (RealURI.substr(0,6) == "cdrom:")
1400 return;
1401
1402 // The files timestamp matches, reverify by copy into partial/
1403 EraseFileName = "";
1404 ReverifyAfterIMS();
1405 return;
1406 }
1407
1408 // If we have compressed indexes enabled, queue for hash verification
1409 if (_config->FindB("Acquire::GzipIndexes",false))
1410 {
1411 DestFile = GetPartialFileNameFromURI(RealURI + '.' + CurrentCompressionExtension);
1412 EraseFileName = "";
1413 Stage = STAGE_DECOMPRESS_AND_VERIFY;
1414 Desc.URI = "copy:" + FileName;
1415 QueueURI(Desc);
1416 SetActiveSubprocess("copy");
1417 return;
1418 }
1419
1420 // get the binary name for your used compression type
1421 string decompProg;
1422 if(CurrentCompressionExtension == "uncompressed")
1423 decompProg = "copy";
1424 else
1425 decompProg = _config->Find(string("Acquire::CompressionTypes::").append(CurrentCompressionExtension),"");
1426 if(decompProg.empty() == true)
1427 {
1428 _error->Error("Unsupported extension: %s", CurrentCompressionExtension.c_str());
1429 return;
1430 }
1431
1432 // queue uri for the next stage
1433 Stage = STAGE_DECOMPRESS_AND_VERIFY;
1434 DestFile += ".decomp";
1435 Desc.URI = decompProg + ":" + FileName;
1436 QueueURI(Desc);
1437 SetActiveSubprocess(decompProg);
1438 }
1439 /*}}}*/
1440 // pkgAcqIndex::StageDecompressDone - Final verification /*{{{*/
1441 void pkgAcqIndex::StageDecompressDone(string Message,
1442 HashStringList const &Hashes,
1443 pkgAcquire::MethodConfig *Cfg)
1444 {
1445 if (ExpectedHashes.usable() && ExpectedHashes != Hashes)
1446 {
1447 Desc.URI = RealURI;
1448 RenameOnError(HashSumMismatch);
1449 printHashSumComparision(RealURI, ExpectedHashes, Hashes);
1450 Failed(Message, Cfg);
1451 return;
1452 }
1453
1454 if(!ValidateFile(DestFile))
1455 {
1456 RenameOnError(InvalidFormat);
1457 Failed(Message, Cfg);
1458 return;
1459 }
1460
1461 // remove the compressed version of the file
1462 unlink(EraseFileName.c_str());
1463
1464 // Done, queue for rename on transaction finished
1465 TransactionManager->TransactionStageCopy(this, DestFile, GetFinalFilename());
1466
1467 return;
1468 }
1469 /*}}}*/
1470 // AcqIndexTrans::pkgAcqIndexTrans - Constructor /*{{{*/
1471 // ---------------------------------------------------------------------
1472 /* The Translation file is added to the queue */
1473 pkgAcqIndexTrans::pkgAcqIndexTrans(pkgAcquire *Owner,
1474 string URI,string URIDesc,string ShortDesc)
1475 : pkgAcqIndex(Owner, URI, URIDesc, ShortDesc, HashStringList())
1476 {
1477 }
1478 pkgAcqIndexTrans::pkgAcqIndexTrans(pkgAcquire *Owner,
1479 pkgAcqMetaBase *TransactionManager,
1480 IndexTarget const * const Target,
1481 HashStringList const &ExpectedHashes,
1482 indexRecords *MetaIndexParser)
1483 : pkgAcqIndex(Owner, TransactionManager, Target, ExpectedHashes, MetaIndexParser)
1484 {
1485 // load the filesize
1486 indexRecords::checkSum *Record = MetaIndexParser->Lookup(string(Target->MetaKey));
1487 if(Record)
1488 FileSize = Record->Size;
1489 }
1490 /*}}}*/
1491 // AcqIndexTrans::Custom600Headers - Insert custom request headers /*{{{*/
1492 string pkgAcqIndexTrans::Custom600Headers() const
1493 {
1494 string Final = GetFinalFilename();
1495
1496 struct stat Buf;
1497 if (stat(Final.c_str(),&Buf) != 0)
1498 return "\nFail-Ignore: true\nIndex-File: true";
1499 return "\nFail-Ignore: true\nIndex-File: true\nLast-Modified: " + TimeRFC1123(Buf.st_mtime);
1500 }
1501 /*}}}*/
1502 // AcqIndexTrans::Failed - Silence failure messages for missing files /*{{{*/
1503 void pkgAcqIndexTrans::Failed(string Message,pkgAcquire::MethodConfig *Cnf)
1504 {
1505 size_t const nextExt = CompressionExtensions.find(' ');
1506 if (nextExt != std::string::npos)
1507 {
1508 CompressionExtensions = CompressionExtensions.substr(nextExt+1);
1509 Init(RealURI, Desc.Description, Desc.ShortDesc);
1510 Status = StatIdle;
1511 return;
1512 }
1513
1514 Item::Failed(Message,Cnf);
1515
1516 // FIXME: this is used often (e.g. in pkgAcqIndexTrans) so refactor
1517 if (Cnf->LocalOnly == true ||
1518 StringToBool(LookupTag(Message,"Transient-Failure"),false) == false)
1519 {
1520 // Ignore this
1521 Status = StatDone;
1522 }
1523 }
1524 /*}}}*/
1525 // AcqMetaBase::Add - Add a item to the current Transaction /*{{{*/
1526 void pkgAcqMetaBase::Add(Item *I)
1527 {
1528 Transaction.push_back(I);
1529 }
1530 /*}}}*/
1531 // AcqMetaBase::AbortTransaction - Abort the current Transaction /*{{{*/
1532 void pkgAcqMetaBase::AbortTransaction()
1533 {
1534 if(_config->FindB("Debug::Acquire::Transaction", false) == true)
1535 std::clog << "AbortTransaction: " << TransactionManager << std::endl;
1536
1537 // ensure the toplevel is in error state too
1538 for (std::vector<Item*>::iterator I = Transaction.begin();
1539 I != Transaction.end(); ++I)
1540 {
1541 if(_config->FindB("Debug::Acquire::Transaction", false) == true)
1542 std::clog << " Cancel: " << (*I)->DestFile << std::endl;
1543 // the transaction will abort, so stop anything that is idle
1544 if ((*I)->Status == pkgAcquire::Item::StatIdle)
1545 (*I)->Status = pkgAcquire::Item::StatDone;
1546
1547 // kill failed files in partial
1548 if ((*I)->Status == pkgAcquire::Item::StatError)
1549 {
1550 std::string const PartialFile = GetPartialFileName(flNotDir((*I)->DestFile));
1551 if(FileExists(PartialFile))
1552 Rename(PartialFile, PartialFile + ".FAILED");
1553 }
1554 }
1555 }
1556 /*}}}*/
1557 // AcqMetaBase::TransactionHasError - Check for errors in Transaction /*{{{*/
1558 bool pkgAcqMetaBase::TransactionHasError()
1559 {
1560 for (pkgAcquire::ItemIterator I = Transaction.begin();
1561 I != Transaction.end(); ++I)
1562 if((*I)->Status != pkgAcquire::Item::StatDone &&
1563 (*I)->Status != pkgAcquire::Item::StatIdle)
1564 return true;
1565
1566 return false;
1567 }
1568 /*}}}*/
1569 // AcqMetaBase::CommitTransaction - Commit a transaction /*{{{*/
1570 void pkgAcqMetaBase::CommitTransaction()
1571 {
1572 if(_config->FindB("Debug::Acquire::Transaction", false) == true)
1573 std::clog << "CommitTransaction: " << this << std::endl;
1574
1575 // move new files into place *and* remove files that are not
1576 // part of the transaction but are still on disk
1577 for (std::vector<Item*>::iterator I = Transaction.begin();
1578 I != Transaction.end(); ++I)
1579 {
1580 if((*I)->PartialFile != "")
1581 {
1582 if(_config->FindB("Debug::Acquire::Transaction", false) == true)
1583 std::clog << "mv " << (*I)->PartialFile << " -> "<< (*I)->DestFile << " "
1584 << (*I)->DescURI() << std::endl;
1585
1586 Rename((*I)->PartialFile, (*I)->DestFile);
1587 ChangeOwnerAndPermissionOfFile("CommitTransaction", (*I)->DestFile.c_str(), "root", "root", 0644);
1588
1589 } else {
1590 if(_config->FindB("Debug::Acquire::Transaction", false) == true)
1591 std::clog << "rm "
1592 << (*I)->DestFile
1593 << " "
1594 << (*I)->DescURI()
1595 << std::endl;
1596 unlink((*I)->DestFile.c_str());
1597 }
1598 // mark that this transaction is finished
1599 (*I)->TransactionManager = 0;
1600 }
1601 }
1602 /*}}}*/
1603 // AcqMetaBase::TransactionStageCopy - Stage a file for copying /*{{{*/
1604 void pkgAcqMetaBase::TransactionStageCopy(Item *I,
1605 const std::string &From,
1606 const std::string &To)
1607 {
1608 I->PartialFile = From;
1609 I->DestFile = To;
1610 }
1611 /*}}}*/
1612 // AcqMetaBase::TransactionStageRemoval - Sage a file for removal /*{{{*/
1613 void pkgAcqMetaBase::TransactionStageRemoval(Item *I,
1614 const std::string &FinalFile)
1615 {
1616 I->PartialFile = "";
1617 I->DestFile = FinalFile;
1618 }
1619 /*}}}*/
1620 // AcqMetaBase::GenerateAuthWarning - Check gpg authentication error /*{{{*/
1621 bool pkgAcqMetaBase::CheckStopAuthentication(const std::string &RealURI,
1622 const std::string &Message)
1623 {
1624 // FIXME: this entire function can do now that we disallow going to
1625 // a unauthenticated state and can cleanly rollback
1626
1627 string Final = _config->FindDir("Dir::State::lists") + URItoFileName(RealURI);
1628
1629 if(FileExists(Final))
1630 {
1631 Status = StatTransientNetworkError;
1632 _error->Warning(_("An error occurred during the signature "
1633 "verification. The repository is not updated "
1634 "and the previous index files will be used. "
1635 "GPG error: %s: %s\n"),
1636 Desc.Description.c_str(),
1637 LookupTag(Message,"Message").c_str());
1638 RunScripts("APT::Update::Auth-Failure");
1639 return true;
1640 } else if (LookupTag(Message,"Message").find("NODATA") != string::npos) {
1641 /* Invalid signature file, reject (LP: #346386) (Closes: #627642) */
1642 _error->Error(_("GPG error: %s: %s"),
1643 Desc.Description.c_str(),
1644 LookupTag(Message,"Message").c_str());
1645 Status = StatError;
1646 return true;
1647 } else {
1648 _error->Warning(_("GPG error: %s: %s"),
1649 Desc.Description.c_str(),
1650 LookupTag(Message,"Message").c_str());
1651 }
1652 // gpgv method failed
1653 ReportMirrorFailure("GPGFailure");
1654 return false;
1655 }
1656 /*}}}*/
1657 // AcqMetaSig::AcqMetaSig - Constructor /*{{{*/
1658 pkgAcqMetaSig::pkgAcqMetaSig(pkgAcquire *Owner,
1659 pkgAcqMetaBase *TransactionManager,
1660 string URI,string URIDesc,string ShortDesc,
1661 string MetaIndexFile,
1662 const vector<IndexTarget*>* IndexTargets,
1663 indexRecords* MetaIndexParser) :
1664 pkgAcqMetaBase(Owner, IndexTargets, MetaIndexParser,
1665 HashStringList(), TransactionManager),
1666 RealURI(URI), MetaIndexFile(MetaIndexFile), URIDesc(URIDesc),
1667 ShortDesc(ShortDesc)
1668 {
1669 DestFile = _config->FindDir("Dir::State::lists") + "partial/";
1670 DestFile += URItoFileName(RealURI);
1671
1672 // remove any partial downloaded sig-file in partial/.
1673 // it may confuse proxies and is too small to warrant a
1674 // partial download anyway
1675 unlink(DestFile.c_str());
1676
1677 // set the TransactionManager
1678 if(_config->FindB("Debug::Acquire::Transaction", false) == true)
1679 std::clog << "New pkgAcqMetaSig with TransactionManager "
1680 << TransactionManager << std::endl;
1681
1682 // Create the item
1683 Desc.Description = URIDesc;
1684 Desc.Owner = this;
1685 Desc.ShortDesc = ShortDesc;
1686 Desc.URI = URI;
1687
1688 QueueURI(Desc);
1689 }
1690 /*}}}*/
1691 pkgAcqMetaSig::~pkgAcqMetaSig() /*{{{*/
1692 {
1693 }
1694 /*}}}*/
1695 // pkgAcqMetaSig::Custom600Headers - Insert custom request headers /*{{{*/
1696 // ---------------------------------------------------------------------
1697 string pkgAcqMetaSig::Custom600Headers() const
1698 {
1699 std::string Header = GetCustom600Headers(RealURI);
1700 return Header;
1701 }
1702 /*}}}*/
1703 // pkgAcqMetaSig::Done - The signature was downloaded/verified /*{{{*/
1704 // ---------------------------------------------------------------------
1705 /* The only header we use is the last-modified header. */
1706 void pkgAcqMetaSig::Done(string Message,unsigned long long Size,
1707 HashStringList const &Hashes,
1708 pkgAcquire::MethodConfig *Cfg)
1709 {
1710 Item::Done(Message, Size, Hashes, Cfg);
1711
1712 if(AuthPass == false)
1713 {
1714 if(CheckDownloadDone(Message, RealURI) == true)
1715 {
1716 // destfile will be modified to point to MetaIndexFile for the
1717 // gpgv method, so we need to save it here
1718 MetaIndexFileSignature = DestFile;
1719 QueueForSignatureVerify(MetaIndexFile, MetaIndexFileSignature);
1720 }
1721 return;
1722 }
1723 else
1724 {
1725 if(CheckAuthDone(Message, RealURI) == true)
1726 {
1727 std::string FinalFile = _config->FindDir("Dir::State::lists");
1728 FinalFile += URItoFileName(RealURI);
1729 TransactionManager->TransactionStageCopy(this, MetaIndexFileSignature, FinalFile);
1730 }
1731 }
1732 }
1733 /*}}}*/
1734 void pkgAcqMetaSig::Failed(string Message,pkgAcquire::MethodConfig *Cnf)/*{{{*/
1735 {
1736 string Final = _config->FindDir("Dir::State::lists") + URItoFileName(RealURI);
1737
1738 // check if we need to fail at this point
1739 if (AuthPass == true && CheckStopAuthentication(RealURI, Message))
1740 return;
1741
1742 // FIXME: meh, this is not really elegant
1743 string InReleaseURI = RealURI.replace(RealURI.rfind("Release.gpg"), 12,
1744 "InRelease");
1745 string FinalInRelease = _config->FindDir("Dir::State::lists") + URItoFileName(InReleaseURI);
1746
1747 if (RealFileExists(Final) || RealFileExists(FinalInRelease))
1748 {
1749 std::string downgrade_msg;
1750 strprintf(downgrade_msg, _("The repository '%s' is no longer signed."),
1751 URIDesc.c_str());
1752 if(_config->FindB("Acquire::AllowDowngradeToInsecureRepositories"))
1753 {
1754 // meh, the users wants to take risks (we still mark the packages
1755 // from this repository as unauthenticated)
1756 _error->Warning("%s", downgrade_msg.c_str());
1757 _error->Warning(_("This is normally not allowed, but the option "
1758 "Acquire::AllowDowngradeToInsecureRepositories was "
1759 "given to override it."));
1760
1761 } else {
1762 _error->Error("%s", downgrade_msg.c_str());
1763 Rename(MetaIndexFile, MetaIndexFile+".FAILED");
1764 Item::Failed("Message: " + downgrade_msg, Cnf);
1765 TransactionManager->AbortTransaction();
1766 return;
1767 }
1768 }
1769
1770 // this ensures that any file in the lists/ dir is removed by the
1771 // transaction
1772 DestFile = GetPartialFileNameFromURI(RealURI);
1773 TransactionManager->TransactionStageRemoval(this, DestFile);
1774
1775 // only allow going further if the users explicitely wants it
1776 if(_config->FindB("Acquire::AllowInsecureRepositories") == true)
1777 {
1778 // we parse the indexes here because at this point the user wanted
1779 // a repository that may potentially harm him
1780 MetaIndexParser->Load(MetaIndexFile);
1781 QueueIndexes(true);
1782 }
1783 else
1784 {
1785 _error->Error("Use --allow-insecure-repositories to force the update");
1786 }
1787
1788 Item::Failed(Message,Cnf);
1789
1790 // FIXME: this is used often (e.g. in pkgAcqIndexTrans) so refactor
1791 if (Cnf->LocalOnly == true ||
1792 StringToBool(LookupTag(Message,"Transient-Failure"),false) == false)
1793 {
1794 // Ignore this
1795 Status = StatDone;
1796 }
1797 }
1798 /*}}}*/
1799 pkgAcqMetaIndex::pkgAcqMetaIndex(pkgAcquire *Owner, /*{{{*/
1800 pkgAcqMetaBase *TransactionManager,
1801 string URI,string URIDesc,string ShortDesc,
1802 string MetaIndexSigURI,string MetaIndexSigURIDesc, string MetaIndexSigShortDesc,
1803 const vector<IndexTarget*>* IndexTargets,
1804 indexRecords* MetaIndexParser) :
1805 pkgAcqMetaBase(Owner, IndexTargets, MetaIndexParser, HashStringList(),
1806 TransactionManager),
1807 RealURI(URI), URIDesc(URIDesc), ShortDesc(ShortDesc),
1808 MetaIndexSigURI(MetaIndexSigURI), MetaIndexSigURIDesc(MetaIndexSigURIDesc),
1809 MetaIndexSigShortDesc(MetaIndexSigShortDesc)
1810 {
1811 if(TransactionManager == NULL)
1812 {
1813 this->TransactionManager = this;
1814 this->TransactionManager->Add(this);
1815 }
1816
1817 if(_config->FindB("Debug::Acquire::Transaction", false) == true)
1818 std::clog << "New pkgAcqMetaIndex with TransactionManager "
1819 << this->TransactionManager << std::endl;
1820
1821
1822 Init(URIDesc, ShortDesc);
1823 }
1824 /*}}}*/
1825 // pkgAcqMetaIndex::Init - Delayed constructor /*{{{*/
1826 void pkgAcqMetaIndex::Init(std::string URIDesc, std::string ShortDesc)
1827 {
1828 DestFile = GetPartialFileNameFromURI(RealURI);
1829
1830 // Create the item
1831 Desc.Description = URIDesc;
1832 Desc.Owner = this;
1833 Desc.ShortDesc = ShortDesc;
1834 Desc.URI = RealURI;
1835
1836 // we expect more item
1837 ExpectedAdditionalItems = IndexTargets->size();
1838 QueueURI(Desc);
1839 }
1840 /*}}}*/
1841 // pkgAcqMetaIndex::Custom600Headers - Insert custom request headers /*{{{*/
1842 // ---------------------------------------------------------------------
1843 string pkgAcqMetaIndex::Custom600Headers() const
1844 {
1845 return GetCustom600Headers(RealURI);
1846 }
1847 /*}}}*/
1848 void pkgAcqMetaIndex::Done(string Message,unsigned long long Size, /*{{{*/
1849 HashStringList const &Hashes,
1850 pkgAcquire::MethodConfig *Cfg)
1851 {
1852 Item::Done(Message,Size,Hashes,Cfg);
1853
1854 if(CheckDownloadDone(Message, RealURI))
1855 {
1856 // we have a Release file, now download the Signature, all further
1857 // verify/queue for additional downloads will be done in the
1858 // pkgAcqMetaSig::Done() code
1859 std::string MetaIndexFile = DestFile;
1860 new pkgAcqMetaSig(Owner, TransactionManager,
1861 MetaIndexSigURI, MetaIndexSigURIDesc,
1862 MetaIndexSigShortDesc, MetaIndexFile, IndexTargets,
1863 MetaIndexParser);
1864
1865 string FinalFile = _config->FindDir("Dir::State::lists");
1866 FinalFile += URItoFileName(RealURI);
1867 TransactionManager->TransactionStageCopy(this, DestFile, FinalFile);
1868 }
1869 }
1870 /*}}}*/
1871 bool pkgAcqMetaBase::CheckAuthDone(string Message, const string &RealURI) /*{{{*/
1872 {
1873 // At this point, the gpgv method has succeeded, so there is a
1874 // valid signature from a key in the trusted keyring. We
1875 // perform additional verification of its contents, and use them
1876 // to verify the indexes we are about to download
1877
1878 if (!MetaIndexParser->Load(DestFile))
1879 {
1880 Status = StatAuthError;
1881 ErrorText = MetaIndexParser->ErrorText;
1882 return false;
1883 }
1884
1885 if (!VerifyVendor(Message, RealURI))
1886 {
1887 return false;
1888 }
1889
1890 if (_config->FindB("Debug::pkgAcquire::Auth", false))
1891 std::cerr << "Signature verification succeeded: "
1892 << DestFile << std::endl;
1893
1894 // Download further indexes with verification
1895 //
1896 // it would be really nice if we could simply do
1897 // if (IMSHit == false) QueueIndexes(true)
1898 // and skip the download if the Release file has not changed
1899 // - but right now the list cleaner will needs to be tricked
1900 // to not delete all our packages/source indexes in this case
1901 QueueIndexes(true);
1902
1903 return true;
1904 }
1905 /*}}}*/
1906 // pkgAcqMetaBase::GetCustom600Headers - Get header for AcqMetaBase /*{{{*/
1907 // ---------------------------------------------------------------------
1908 string pkgAcqMetaBase::GetCustom600Headers(const string &RealURI) const
1909 {
1910 std::string Header = "\nIndex-File: true";
1911 std::string MaximumSize;
1912 strprintf(MaximumSize, "\nMaximum-Size: %i",
1913 _config->FindI("Acquire::MaxReleaseFileSize", 10*1000*1000));
1914 Header += MaximumSize;
1915
1916 string FinalFile = _config->FindDir("Dir::State::lists");
1917 FinalFile += URItoFileName(RealURI);
1918
1919 struct stat Buf;
1920 if (stat(FinalFile.c_str(),&Buf) == 0)
1921 Header += "\nLast-Modified: " + TimeRFC1123(Buf.st_mtime);
1922
1923 return Header;
1924 }
1925 /*}}}*/
1926 // pkgAcqMetaBase::QueueForSignatureVerify /*{{{*/
1927 void pkgAcqMetaBase::QueueForSignatureVerify(const std::string &MetaIndexFile,
1928 const std::string &MetaIndexFileSignature)
1929 {
1930 AuthPass = true;
1931 Desc.URI = "gpgv:" + MetaIndexFileSignature;
1932 DestFile = MetaIndexFile;
1933 QueueURI(Desc);
1934 SetActiveSubprocess("gpgv");
1935 }
1936 /*}}}*/
1937 // pkgAcqMetaBase::CheckDownloadDone /*{{{*/
1938 bool pkgAcqMetaBase::CheckDownloadDone(const std::string &Message,
1939 const std::string &RealURI)
1940 {
1941 // We have just finished downloading a Release file (it is not
1942 // verified yet)
1943
1944 string FileName = LookupTag(Message,"Filename");
1945 if (FileName.empty() == true)
1946 {
1947 Status = StatError;
1948 ErrorText = "Method gave a blank filename";
1949 return false;
1950 }
1951
1952 if (FileName != DestFile)
1953 {
1954 Local = true;
1955 Desc.URI = "copy:" + FileName;
1956 QueueURI(Desc);
1957 return false;
1958 }
1959
1960 // make sure to verify against the right file on I-M-S hit
1961 IMSHit = StringToBool(LookupTag(Message,"IMS-Hit"),false);
1962 if(IMSHit)
1963 {
1964 string FinalFile = _config->FindDir("Dir::State::lists");
1965 FinalFile += URItoFileName(RealURI);
1966 DestFile = FinalFile;
1967 }
1968
1969 // set Item to complete as the remaining work is all local (verify etc)
1970 Complete = true;
1971
1972 return true;
1973 }
1974 /*}}}*/
1975 void pkgAcqMetaBase::QueueIndexes(bool verify) /*{{{*/
1976 {
1977 bool transInRelease = false;
1978 {
1979 std::vector<std::string> const keys = MetaIndexParser->MetaKeys();
1980 for (std::vector<std::string>::const_iterator k = keys.begin(); k != keys.end(); ++k)
1981 // FIXME: Feels wrong to check for hardcoded string here, but what should we do else…
1982 if (k->find("Translation-") != std::string::npos)
1983 {
1984 transInRelease = true;
1985 break;
1986 }
1987 }
1988
1989 // at this point the real Items are loaded in the fetcher
1990 ExpectedAdditionalItems = 0;
1991 for (vector <IndexTarget*>::const_iterator Target = IndexTargets->begin();
1992 Target != IndexTargets->end();
1993 ++Target)
1994 {
1995 HashStringList ExpectedIndexHashes;
1996 const indexRecords::checkSum *Record = MetaIndexParser->Lookup((*Target)->MetaKey);
1997 bool compressedAvailable = false;
1998 if (Record == NULL)
1999 {
2000 if ((*Target)->IsOptional() == true)
2001 {
2002 std::vector<std::string> types = APT::Configuration::getCompressionTypes();
2003 for (std::vector<std::string>::const_iterator t = types.begin(); t != types.end(); ++t)
2004 if (MetaIndexParser->Exists((*Target)->MetaKey + "." + *t) == true)
2005 {
2006 compressedAvailable = true;
2007 break;
2008 }
2009 }
2010 else if (verify == true)
2011 {
2012 Status = StatAuthError;
2013 strprintf(ErrorText, _("Unable to find expected entry '%s' in Release file (Wrong sources.list entry or malformed file)"), (*Target)->MetaKey.c_str());
2014 return;
2015 }
2016 }
2017 else
2018 {
2019 ExpectedIndexHashes = Record->Hashes;
2020 if (_config->FindB("Debug::pkgAcquire::Auth", false))
2021 {
2022 std::cerr << "Queueing: " << (*Target)->URI << std::endl
2023 << "Expected Hash:" << std::endl;
2024 for (HashStringList::const_iterator hs = ExpectedIndexHashes.begin(); hs != ExpectedIndexHashes.end(); ++hs)
2025 std::cerr << "\t- " << hs->toStr() << std::endl;
2026 std::cerr << "For: " << Record->MetaKeyFilename << std::endl;
2027 }
2028 if (verify == true && ExpectedIndexHashes.empty() == true && (*Target)->IsOptional() == false)
2029 {
2030 Status = StatAuthError;
2031 strprintf(ErrorText, _("Unable to find hash sum for '%s' in Release file"), (*Target)->MetaKey.c_str());
2032 return;
2033 }
2034 }
2035
2036 if ((*Target)->IsOptional() == true)
2037 {
2038 if (transInRelease == false || Record != NULL || compressedAvailable == true)
2039 {
2040 if (_config->FindB("Acquire::PDiffs",true) == true && transInRelease == true &&
2041 MetaIndexParser->Exists((*Target)->MetaKey + ".diff/Index") == true)
2042 new pkgAcqDiffIndex(Owner, TransactionManager, *Target, ExpectedIndexHashes, MetaIndexParser);
2043 else
2044 new pkgAcqIndexTrans(Owner, TransactionManager, *Target, ExpectedIndexHashes, MetaIndexParser);
2045 }
2046 continue;
2047 }
2048
2049 /* Queue Packages file (either diff or full packages files, depending
2050 on the users option) - we also check if the PDiff Index file is listed
2051 in the Meta-Index file. Ideal would be if pkgAcqDiffIndex would test this
2052 instead, but passing the required info to it is to much hassle */
2053 if(_config->FindB("Acquire::PDiffs",true) == true && (verify == false ||
2054 MetaIndexParser->Exists((*Target)->MetaKey + ".diff/Index") == true))
2055 new pkgAcqDiffIndex(Owner, TransactionManager, *Target, ExpectedIndexHashes, MetaIndexParser);
2056 else
2057 new pkgAcqIndex(Owner, TransactionManager, *Target, ExpectedIndexHashes, MetaIndexParser);
2058 }
2059 }
2060 /*}}}*/
2061 bool pkgAcqMetaBase::VerifyVendor(string Message, const string &RealURI)/*{{{*/
2062 {
2063 string::size_type pos;
2064
2065 // check for missing sigs (that where not fatal because otherwise we had
2066 // bombed earlier)
2067 string missingkeys;
2068 string msg = _("There is no public key available for the "
2069 "following key IDs:\n");
2070 pos = Message.find("NO_PUBKEY ");
2071 if (pos != std::string::npos)
2072 {
2073 string::size_type start = pos+strlen("NO_PUBKEY ");
2074 string Fingerprint = Message.substr(start, Message.find("\n")-start);
2075 missingkeys += (Fingerprint);
2076 }
2077 if(!missingkeys.empty())
2078 _error->Warning("%s", (msg + missingkeys).c_str());
2079
2080 string Transformed = MetaIndexParser->GetExpectedDist();
2081
2082 if (Transformed == "../project/experimental")
2083 {
2084 Transformed = "experimental";
2085 }
2086
2087 pos = Transformed.rfind('/');
2088 if (pos != string::npos)
2089 {
2090 Transformed = Transformed.substr(0, pos);
2091 }
2092
2093 if (Transformed == ".")
2094 {
2095 Transformed = "";
2096 }
2097
2098 if (_config->FindB("Acquire::Check-Valid-Until", true) == true &&
2099 MetaIndexParser->GetValidUntil() > 0) {
2100 time_t const invalid_since = time(NULL) - MetaIndexParser->GetValidUntil();
2101 if (invalid_since > 0)
2102 // TRANSLATOR: The first %s is the URL of the bad Release file, the second is
2103 // the time since then the file is invalid - formated in the same way as in
2104 // the download progress display (e.g. 7d 3h 42min 1s)
2105 return _error->Error(
2106 _("Release file for %s is expired (invalid since %s). "
2107 "Updates for this repository will not be applied."),
2108 RealURI.c_str(), TimeToStr(invalid_since).c_str());
2109 }
2110
2111 if (_config->FindB("Debug::pkgAcquire::Auth", false))
2112 {
2113 std::cerr << "Got Codename: " << MetaIndexParser->GetDist() << std::endl;
2114 std::cerr << "Expecting Dist: " << MetaIndexParser->GetExpectedDist() << std::endl;
2115 std::cerr << "Transformed Dist: " << Transformed << std::endl;
2116 }
2117
2118 if (MetaIndexParser->CheckDist(Transformed) == false)
2119 {
2120 // This might become fatal one day
2121 // Status = StatAuthError;
2122 // ErrorText = "Conflicting distribution; expected "
2123 // + MetaIndexParser->GetExpectedDist() + " but got "
2124 // + MetaIndexParser->GetDist();
2125 // return false;
2126 if (!Transformed.empty())
2127 {
2128 _error->Warning(_("Conflicting distribution: %s (expected %s but got %s)"),
2129 Desc.Description.c_str(),
2130 Transformed.c_str(),
2131 MetaIndexParser->GetDist().c_str());
2132 }
2133 }
2134
2135 return true;
2136 }
2137 /*}}}*/
2138 // pkgAcqMetaIndex::Failed - no Release file present /*{{{*/
2139 void pkgAcqMetaIndex::Failed(string Message,
2140 pkgAcquire::MethodConfig * Cnf)
2141 {
2142 pkgAcquire::Item::Failed(Message, Cnf);
2143 Status = StatDone;
2144
2145 string FinalFile = _config->FindDir("Dir::State::lists") + URItoFileName(RealURI);
2146
2147 _error->Warning(_("The repository '%s' does not have a Release file. "
2148 "This is deprecated, please contact the owner of the "
2149 "repository."), URIDesc.c_str());
2150
2151 // No Release file was present so fall
2152 // back to queueing Packages files without verification
2153 // only allow going further if the users explicitely wants it
2154 if(_config->FindB("Acquire::AllowInsecureRepositories") == true)
2155 {
2156 // Done, queue for rename on transaction finished
2157 if (FileExists(DestFile))
2158 TransactionManager->TransactionStageCopy(this, DestFile, FinalFile);
2159
2160 // queue without any kind of hashsum support
2161 QueueIndexes(false);
2162 } else {
2163 // warn if the repository is unsinged
2164 _error->Error("Use --allow-insecure-repositories to force the update");
2165 TransactionManager->AbortTransaction();
2166 Status = StatError;
2167 return;
2168 }
2169 }
2170 /*}}}*/
2171 void pkgAcqMetaIndex::Finished() /*{{{*/
2172 {
2173 if(_config->FindB("Debug::Acquire::Transaction", false) == true)
2174 std::clog << "Finished: " << DestFile <<std::endl;
2175 if(TransactionManager != NULL &&
2176 TransactionManager->TransactionHasError() == false)
2177 TransactionManager->CommitTransaction();
2178 }
2179 /*}}}*/
2180 pkgAcqMetaClearSig::pkgAcqMetaClearSig(pkgAcquire *Owner, /*{{{*/
2181 string const &URI, string const &URIDesc, string const &ShortDesc,
2182 string const &MetaIndexURI, string const &MetaIndexURIDesc, string const &MetaIndexShortDesc,
2183 string const &MetaSigURI, string const &MetaSigURIDesc, string const &MetaSigShortDesc,
2184 const vector<IndexTarget*>* IndexTargets,
2185 indexRecords* MetaIndexParser) :
2186 pkgAcqMetaIndex(Owner, NULL, URI, URIDesc, ShortDesc, MetaSigURI, MetaSigURIDesc,MetaSigShortDesc, IndexTargets, MetaIndexParser),
2187 MetaIndexURI(MetaIndexURI), MetaIndexURIDesc(MetaIndexURIDesc), MetaIndexShortDesc(MetaIndexShortDesc),
2188 MetaSigURI(MetaSigURI), MetaSigURIDesc(MetaSigURIDesc), MetaSigShortDesc(MetaSigShortDesc)
2189 {
2190 // index targets + (worst case:) Release/Release.gpg
2191 ExpectedAdditionalItems = IndexTargets->size() + 2;
2192
2193 }
2194 /*}}}*/
2195 pkgAcqMetaClearSig::~pkgAcqMetaClearSig() /*{{{*/
2196 {
2197 }
2198 /*}}}*/
2199 // pkgAcqMetaClearSig::Custom600Headers - Insert custom request headers /*{{{*/
2200 // ---------------------------------------------------------------------
2201 string pkgAcqMetaClearSig::Custom600Headers() const
2202 {
2203 string Header = GetCustom600Headers(RealURI);
2204 Header += "\nFail-Ignore: true";
2205 return Header;
2206 }
2207 /*}}}*/
2208 // pkgAcqMetaClearSig::Done - We got a file /*{{{*/
2209 // ---------------------------------------------------------------------
2210 void pkgAcqMetaClearSig::Done(std::string Message,unsigned long long /*Size*/,
2211 HashStringList const &/*Hashes*/,
2212 pkgAcquire::MethodConfig *Cnf)
2213 {
2214 // if we expect a ClearTextSignature (InRelase), ensure that
2215 // this is what we get and if not fail to queue a
2216 // Release/Release.gpg, see #346386
2217 if (FileExists(DestFile) && !StartsWithGPGClearTextSignature(DestFile))
2218 {
2219 pkgAcquire::Item::Failed(Message, Cnf);
2220 RenameOnError(NotClearsigned);
2221 TransactionManager->AbortTransaction();
2222 return;
2223 }
2224
2225 if(AuthPass == false)
2226 {
2227 if(CheckDownloadDone(Message, RealURI) == true)
2228 QueueForSignatureVerify(DestFile, DestFile);
2229 return;
2230 }
2231 else
2232 {
2233 if(CheckAuthDone(Message, RealURI) == true)
2234 {
2235 string FinalFile = _config->FindDir("Dir::State::lists");
2236 FinalFile += URItoFileName(RealURI);
2237
2238 // queue for copy in place
2239 TransactionManager->TransactionStageCopy(this, DestFile, FinalFile);
2240 }
2241 }
2242 }
2243 /*}}}*/
2244 void pkgAcqMetaClearSig::Failed(string Message,pkgAcquire::MethodConfig *Cnf) /*{{{*/
2245 {
2246 Item::Failed(Message, Cnf);
2247
2248 // we failed, we will not get additional items from this method
2249 ExpectedAdditionalItems = 0;
2250
2251 if (AuthPass == false)
2252 {
2253 // Queue the 'old' InRelease file for removal if we try Release.gpg
2254 // as otherwise the file will stay around and gives a false-auth
2255 // impression (CVE-2012-0214)
2256 string FinalFile = _config->FindDir("Dir::State::lists");
2257 FinalFile.append(URItoFileName(RealURI));
2258 TransactionManager->TransactionStageRemoval(this, FinalFile);
2259 Status = StatDone;
2260
2261 new pkgAcqMetaIndex(Owner, TransactionManager,
2262 MetaIndexURI, MetaIndexURIDesc, MetaIndexShortDesc,
2263 MetaSigURI, MetaSigURIDesc, MetaSigShortDesc,
2264 IndexTargets, MetaIndexParser);
2265 }
2266 else
2267 {
2268 if(CheckStopAuthentication(RealURI, Message))
2269 return;
2270
2271 _error->Warning(_("The data from '%s' is not signed. Packages "
2272 "from that repository can not be authenticated."),
2273 URIDesc.c_str());
2274
2275 // No Release file was present, or verification failed, so fall
2276 // back to queueing Packages files without verification
2277 // only allow going further if the users explicitely wants it
2278 if(_config->FindB("Acquire::AllowInsecureRepositories") == true)
2279 {
2280 Status = StatDone;
2281
2282 /* Always move the meta index, even if gpgv failed. This ensures
2283 * that PackageFile objects are correctly filled in */
2284 if (FileExists(DestFile))
2285 {
2286 string FinalFile = _config->FindDir("Dir::State::lists");
2287 FinalFile += URItoFileName(RealURI);
2288 /* InRelease files become Release files, otherwise
2289 * they would be considered as trusted later on */
2290 RealURI = RealURI.replace(RealURI.rfind("InRelease"), 9,
2291 "Release");
2292 FinalFile = FinalFile.replace(FinalFile.rfind("InRelease"), 9,
2293 "Release");
2294
2295 // Done, queue for rename on transaction finished
2296 TransactionManager->TransactionStageCopy(this, DestFile, FinalFile);
2297 }
2298 QueueIndexes(false);
2299 } else {
2300 // warn if the repository is unsigned
2301 _error->Error("Use --allow-insecure-repositories to force the update");
2302 TransactionManager->AbortTransaction();
2303 Status = StatError;
2304 }
2305 }
2306 }
2307 /*}}}*/
2308 // AcqArchive::AcqArchive - Constructor /*{{{*/
2309 // ---------------------------------------------------------------------
2310 /* This just sets up the initial fetch environment and queues the first
2311 possibilitiy */
2312 pkgAcqArchive::pkgAcqArchive(pkgAcquire *Owner,pkgSourceList *Sources,
2313 pkgRecords *Recs,pkgCache::VerIterator const &Version,
2314 string &StoreFilename) :
2315 Item(Owner, HashStringList()), Version(Version), Sources(Sources), Recs(Recs),
2316 StoreFilename(StoreFilename), Vf(Version.FileList()),
2317 Trusted(false)
2318 {
2319 Retries = _config->FindI("Acquire::Retries",0);
2320
2321 if (Version.Arch() == 0)
2322 {
2323 _error->Error(_("I wasn't able to locate a file for the %s package. "
2324 "This might mean you need to manually fix this package. "
2325 "(due to missing arch)"),
2326 Version.ParentPkg().FullName().c_str());
2327 return;
2328 }
2329
2330 /* We need to find a filename to determine the extension. We make the
2331 assumption here that all the available sources for this version share
2332 the same extension.. */
2333 // Skip not source sources, they do not have file fields.
2334 for (; Vf.end() == false; ++Vf)
2335 {
2336 if ((Vf.File()->Flags & pkgCache::Flag::NotSource) != 0)
2337 continue;
2338 break;
2339 }
2340
2341 // Does not really matter here.. we are going to fail out below
2342 if (Vf.end() != true)
2343 {
2344 // If this fails to get a file name we will bomb out below.
2345 pkgRecords::Parser &Parse = Recs->Lookup(Vf);
2346 if (_error->PendingError() == true)
2347 return;
2348
2349 // Generate the final file name as: package_version_arch.foo
2350 StoreFilename = QuoteString(Version.ParentPkg().Name(),"_:") + '_' +
2351 QuoteString(Version.VerStr(),"_:") + '_' +
2352 QuoteString(Version.Arch(),"_:.") +
2353 "." + flExtension(Parse.FileName());
2354 }
2355
2356 // check if we have one trusted source for the package. if so, switch
2357 // to "TrustedOnly" mode - but only if not in AllowUnauthenticated mode
2358 bool const allowUnauth = _config->FindB("APT::Get::AllowUnauthenticated", false);
2359 bool const debugAuth = _config->FindB("Debug::pkgAcquire::Auth", false);
2360 bool seenUntrusted = false;
2361 for (pkgCache::VerFileIterator i = Version.FileList(); i.end() == false; ++i)
2362 {
2363 pkgIndexFile *Index;
2364 if (Sources->FindIndex(i.File(),Index) == false)
2365 continue;
2366
2367 if (debugAuth == true)
2368 std::cerr << "Checking index: " << Index->Describe()
2369 << "(Trusted=" << Index->IsTrusted() << ")" << std::endl;
2370
2371 if (Index->IsTrusted() == true)
2372 {
2373 Trusted = true;
2374 if (allowUnauth == false)
2375 break;
2376 }
2377 else
2378 seenUntrusted = true;
2379 }
2380
2381 // "allow-unauthenticated" restores apts old fetching behaviour
2382 // that means that e.g. unauthenticated file:// uris are higher
2383 // priority than authenticated http:// uris
2384 if (allowUnauth == true && seenUntrusted == true)
2385 Trusted = false;
2386
2387 // Select a source
2388 if (QueueNext() == false && _error->PendingError() == false)
2389 _error->Error(_("Can't find a source to download version '%s' of '%s'"),
2390 Version.VerStr(), Version.ParentPkg().FullName(false).c_str());
2391 }
2392 /*}}}*/
2393 // AcqArchive::QueueNext - Queue the next file source /*{{{*/
2394 // ---------------------------------------------------------------------
2395 /* This queues the next available file version for download. It checks if
2396 the archive is already available in the cache and stashs the MD5 for
2397 checking later. */
2398 bool pkgAcqArchive::QueueNext()
2399 {
2400 for (; Vf.end() == false; ++Vf)
2401 {
2402 // Ignore not source sources
2403 if ((Vf.File()->Flags & pkgCache::Flag::NotSource) != 0)
2404 continue;
2405
2406 // Try to cross match against the source list
2407 pkgIndexFile *Index;
2408 if (Sources->FindIndex(Vf.File(),Index) == false)
2409 continue;
2410
2411 // only try to get a trusted package from another source if that source
2412 // is also trusted
2413 if(Trusted && !Index->IsTrusted())
2414 continue;
2415
2416 // Grab the text package record
2417 pkgRecords::Parser &Parse = Recs->Lookup(Vf);
2418 if (_error->PendingError() == true)
2419 return false;
2420
2421 string PkgFile = Parse.FileName();
2422 ExpectedHashes = Parse.Hashes();
2423
2424 if (PkgFile.empty() == true)
2425 return _error->Error(_("The package index files are corrupted. No Filename: "
2426 "field for package %s."),
2427 Version.ParentPkg().Name());
2428
2429 Desc.URI = Index->ArchiveURI(PkgFile);
2430 Desc.Description = Index->ArchiveInfo(Version);
2431 Desc.Owner = this;
2432 Desc.ShortDesc = Version.ParentPkg().FullName(true);
2433
2434 // See if we already have the file. (Legacy filenames)
2435 FileSize = Version->Size;
2436 string FinalFile = _config->FindDir("Dir::Cache::Archives") + flNotDir(PkgFile);
2437 struct stat Buf;
2438 if (stat(FinalFile.c_str(),&Buf) == 0)
2439 {
2440 // Make sure the size matches
2441 if ((unsigned long long)Buf.st_size == Version->Size)
2442 {
2443 Complete = true;
2444 Local = true;
2445 Status = StatDone;
2446 StoreFilename = DestFile = FinalFile;
2447 return true;
2448 }
2449
2450 /* Hmm, we have a file and its size does not match, this means it is
2451 an old style mismatched arch */
2452 unlink(FinalFile.c_str());
2453 }
2454
2455 // Check it again using the new style output filenames
2456 FinalFile = _config->FindDir("Dir::Cache::Archives") + flNotDir(StoreFilename);
2457 if (stat(FinalFile.c_str(),&Buf) == 0)
2458 {
2459 // Make sure the size matches
2460 if ((unsigned long long)Buf.st_size == Version->Size)
2461 {
2462 Complete = true;
2463 Local = true;
2464 Status = StatDone;
2465 StoreFilename = DestFile = FinalFile;
2466 return true;
2467 }
2468
2469 /* Hmm, we have a file and its size does not match, this shouldn't
2470 happen.. */
2471 unlink(FinalFile.c_str());
2472 }
2473
2474 DestFile = _config->FindDir("Dir::Cache::Archives") + "partial/" + flNotDir(StoreFilename);
2475
2476 // Check the destination file
2477 if (stat(DestFile.c_str(),&Buf) == 0)
2478 {
2479 // Hmm, the partial file is too big, erase it
2480 if ((unsigned long long)Buf.st_size > Version->Size)
2481 unlink(DestFile.c_str());
2482 else
2483 {
2484 PartialSize = Buf.st_size;
2485 ChangeOwnerAndPermissionOfFile("pkgAcqArchive::QueueNext", DestFile.c_str(), "_apt", "root", 0600);
2486 }
2487 }
2488
2489 // Disables download of archives - useful if no real installation follows,
2490 // e.g. if we are just interested in proposed installation order
2491 if (_config->FindB("Debug::pkgAcqArchive::NoQueue", false) == true)
2492 {
2493 Complete = true;
2494 Local = true;
2495 Status = StatDone;
2496 StoreFilename = DestFile = FinalFile;
2497 return true;
2498 }
2499
2500 // Create the item
2501 Local = false;
2502 QueueURI(Desc);
2503
2504 ++Vf;
2505 return true;
2506 }
2507 return false;
2508 }
2509 /*}}}*/
2510 // AcqArchive::Done - Finished fetching /*{{{*/
2511 // ---------------------------------------------------------------------
2512 /* */
2513 void pkgAcqArchive::Done(string Message,unsigned long long Size, HashStringList const &CalcHashes,
2514 pkgAcquire::MethodConfig *Cfg)
2515 {
2516 Item::Done(Message, Size, CalcHashes, Cfg);
2517
2518 // Check the size
2519 if (Size != Version->Size)
2520 {
2521 RenameOnError(SizeMismatch);
2522 return;
2523 }
2524
2525 // FIXME: could this empty() check impose *any* sort of security issue?
2526 if(ExpectedHashes.usable() && ExpectedHashes != CalcHashes)
2527 {
2528 RenameOnError(HashSumMismatch);
2529 printHashSumComparision(DestFile, ExpectedHashes, CalcHashes);
2530 return;
2531 }
2532
2533 // Grab the output filename
2534 string FileName = LookupTag(Message,"Filename");
2535 if (FileName.empty() == true)
2536 {
2537 Status = StatError;
2538 ErrorText = "Method gave a blank filename";
2539 return;
2540 }
2541
2542 // Reference filename
2543 if (FileName != DestFile)
2544 {
2545 StoreFilename = DestFile = FileName;
2546 Local = true;
2547 Complete = true;
2548 return;
2549 }
2550
2551 // Done, move it into position
2552 string FinalFile = _config->FindDir("Dir::Cache::Archives");
2553 FinalFile += flNotDir(StoreFilename);
2554 Rename(DestFile,FinalFile);
2555 ChangeOwnerAndPermissionOfFile("pkgAcqArchive::Done", FinalFile.c_str(), "root", "root", 0644);
2556 StoreFilename = DestFile = FinalFile;
2557 Complete = true;
2558 }
2559 /*}}}*/
2560 // AcqArchive::Failed - Failure handler /*{{{*/
2561 // ---------------------------------------------------------------------
2562 /* Here we try other sources */
2563 void pkgAcqArchive::Failed(string Message,pkgAcquire::MethodConfig *Cnf)
2564 {
2565 ErrorText = LookupTag(Message,"Message");
2566
2567 /* We don't really want to retry on failed media swaps, this prevents
2568 that. An interesting observation is that permanent failures are not
2569 recorded. */
2570 if (Cnf->Removable == true &&
2571 StringToBool(LookupTag(Message,"Transient-Failure"),false) == true)
2572 {
2573 // Vf = Version.FileList();
2574 while (Vf.end() == false) ++Vf;
2575 StoreFilename = string();
2576 Item::Failed(Message,Cnf);
2577 return;
2578 }
2579
2580 if (QueueNext() == false)
2581 {
2582 // This is the retry counter
2583 if (Retries != 0 &&
2584 Cnf->LocalOnly == false &&
2585 StringToBool(LookupTag(Message,"Transient-Failure"),false) == true)
2586 {
2587 Retries--;
2588 Vf = Version.FileList();
2589 if (QueueNext() == true)
2590 return;
2591 }
2592
2593 StoreFilename = string();
2594 Item::Failed(Message,Cnf);
2595 }
2596 }
2597 /*}}}*/
2598 // AcqArchive::IsTrusted - Determine whether this archive comes from a trusted source /*{{{*/
2599 // ---------------------------------------------------------------------
2600 APT_PURE bool pkgAcqArchive::IsTrusted() const
2601 {
2602 return Trusted;
2603 }
2604 /*}}}*/
2605 // AcqArchive::Finished - Fetching has finished, tidy up /*{{{*/
2606 // ---------------------------------------------------------------------
2607 /* */
2608 void pkgAcqArchive::Finished()
2609 {
2610 if (Status == pkgAcquire::Item::StatDone &&
2611 Complete == true)
2612 return;
2613 StoreFilename = string();
2614 }
2615 /*}}}*/
2616 // AcqFile::pkgAcqFile - Constructor /*{{{*/
2617 // ---------------------------------------------------------------------
2618 /* The file is added to the queue */
2619 pkgAcqFile::pkgAcqFile(pkgAcquire *Owner,string URI, HashStringList const &Hashes,
2620 unsigned long long Size,string Dsc,string ShortDesc,
2621 const string &DestDir, const string &DestFilename,
2622 bool IsIndexFile) :
2623 Item(Owner, Hashes), IsIndexFile(IsIndexFile)
2624 {
2625 Retries = _config->FindI("Acquire::Retries",0);
2626
2627 if(!DestFilename.empty())
2628 DestFile = DestFilename;
2629 else if(!DestDir.empty())
2630 DestFile = DestDir + "/" + flNotDir(URI);
2631 else
2632 DestFile = flNotDir(URI);
2633
2634 // Create the item
2635 Desc.URI = URI;
2636 Desc.Description = Dsc;
2637 Desc.Owner = this;
2638
2639 // Set the short description to the archive component
2640 Desc.ShortDesc = ShortDesc;
2641
2642 // Get the transfer sizes
2643 FileSize = Size;
2644 struct stat Buf;
2645 if (stat(DestFile.c_str(),&Buf) == 0)
2646 {
2647 // Hmm, the partial file is too big, erase it
2648 if ((Size > 0) && (unsigned long long)Buf.st_size > Size)
2649 unlink(DestFile.c_str());
2650 else
2651 {
2652 PartialSize = Buf.st_size;
2653 ChangeOwnerAndPermissionOfFile("pkgAcqFile", DestFile.c_str(), "_apt", "root", 0600);
2654 }
2655 }
2656
2657 QueueURI(Desc);
2658 }
2659 /*}}}*/
2660 // AcqFile::Done - Item downloaded OK /*{{{*/
2661 // ---------------------------------------------------------------------
2662 /* */
2663 void pkgAcqFile::Done(string Message,unsigned long long Size,HashStringList const &CalcHashes,
2664 pkgAcquire::MethodConfig *Cnf)
2665 {
2666 Item::Done(Message,Size,CalcHashes,Cnf);
2667
2668 // Check the hash
2669 if(ExpectedHashes.usable() && ExpectedHashes != CalcHashes)
2670 {
2671 RenameOnError(HashSumMismatch);
2672 printHashSumComparision(DestFile, ExpectedHashes, CalcHashes);
2673 return;
2674 }
2675
2676 string FileName = LookupTag(Message,"Filename");
2677 if (FileName.empty() == true)
2678 {
2679 Status = StatError;
2680 ErrorText = "Method gave a blank filename";
2681 return;
2682 }
2683
2684 Complete = true;
2685
2686 // The files timestamp matches
2687 if (StringToBool(LookupTag(Message,"IMS-Hit"),false) == true)
2688 return;
2689
2690 // We have to copy it into place
2691 if (FileName != DestFile)
2692 {
2693 Local = true;
2694 if (_config->FindB("Acquire::Source-Symlinks",true) == false ||
2695 Cnf->Removable == true)
2696 {
2697 Desc.URI = "copy:" + FileName;
2698 QueueURI(Desc);
2699 return;
2700 }
2701
2702 // Erase the file if it is a symlink so we can overwrite it
2703 struct stat St;
2704 if (lstat(DestFile.c_str(),&St) == 0)
2705 {
2706 if (S_ISLNK(St.st_mode) != 0)
2707 unlink(DestFile.c_str());
2708 }
2709
2710 // Symlink the file
2711 if (symlink(FileName.c_str(),DestFile.c_str()) != 0)
2712 {
2713 ErrorText = "Link to " + DestFile + " failure ";
2714 Status = StatError;
2715 Complete = false;
2716 }
2717 }
2718 }
2719 /*}}}*/
2720 // AcqFile::Failed - Failure handler /*{{{*/
2721 // ---------------------------------------------------------------------
2722 /* Here we try other sources */
2723 void pkgAcqFile::Failed(string Message,pkgAcquire::MethodConfig *Cnf)
2724 {
2725 ErrorText = LookupTag(Message,"Message");
2726
2727 // This is the retry counter
2728 if (Retries != 0 &&
2729 Cnf->LocalOnly == false &&
2730 StringToBool(LookupTag(Message,"Transient-Failure"),false) == true)
2731 {
2732 Retries--;
2733 QueueURI(Desc);
2734 return;
2735 }
2736
2737 Item::Failed(Message,Cnf);
2738 }
2739 /*}}}*/
2740 // AcqIndex::Custom600Headers - Insert custom request headers /*{{{*/
2741 // ---------------------------------------------------------------------
2742 /* The only header we use is the last-modified header. */
2743 string pkgAcqFile::Custom600Headers() const
2744 {
2745 if (IsIndexFile)
2746 return "\nIndex-File: true";
2747 return "";
2748 }
2749 /*}}}*/
APT (for Cydia)