3 # Checks Debian packages from Incoming
4 # Copyright (C) 2000, 2001, 2002, 2003, 2004, 2005, 2006 James Troup <james@nocrew.org>
6 # This program is free software; you can redistribute it and/or modify
7 # it under the terms of the GNU General Public License as published by
8 # the Free Software Foundation; either version 2 of the License, or
9 # (at your option) any later version.
11 # This program is distributed in the hope that it will be useful,
12 # but WITHOUT ANY WARRANTY; without even the implied warranty of
13 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 # GNU General Public License for more details.
16 # You should have received a copy of the GNU General Public License
17 # along with this program; if not, write to the Free Software
18 # Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
20 # Originally based on dinstall by Guy Maor <maor@debian.org>
22 ################################################################################
24 # Computer games don't affect kids. I mean if Pacman affected our generation as
25 # kids, we'd all run around in a darkened room munching pills and listening to
29 ################################################################################
31 import commands, errno, fcntl, os, re, shutil, stat, sys, time, tempfile, traceback
32 import apt_inst, apt_pkg
33 import daklib.database
40 ################################################################################
42 re_valid_version = re.compile(r"^([0-9]+:)?[0-9A-Za-z\.\-\+:~]+$")
43 re_valid_pkg_name = re.compile(r"^[\dA-Za-z][\dA-Za-z\+\-\.]+$")
44 re_changelog_versions = re.compile(r"^\w[-+0-9a-z.]+ \([^\(\) \t]+\)")
45 re_strip_revision = re.compile(r"-([^-]+)$")
46 re_strip_srcver = re.compile(r"\s+\(\S+\)$")
47 re_spacestrip = re.compile('(\s)')
49 ################################################################################
60 # Aliases to the real vars in the Upload class; hysterical raisins.
68 ###############################################################################
71 global Cnf, Options, Upload, changes, dsc, dsc_files, files, pkg
75 Cnf = apt_pkg.newConfiguration()
76 apt_pkg.ReadConfigFileISC(Cnf,daklib.utils.which_conf_file())
78 Arguments = [('a',"automatic","Dinstall::Options::Automatic"),
79 ('h',"help","Dinstall::Options::Help"),
80 ('n',"no-action","Dinstall::Options::No-Action"),
81 ('p',"no-lock", "Dinstall::Options::No-Lock"),
82 ('s',"no-mail", "Dinstall::Options::No-Mail")]
84 for i in ["automatic", "help", "no-action", "no-lock", "no-mail",
85 "override-distribution", "version"]:
86 Cnf["Dinstall::Options::%s" % (i)] = ""
88 changes_files = apt_pkg.ParseCommandLine(Cnf,Arguments,sys.argv)
89 Options = Cnf.SubTree("Dinstall::Options")
94 Upload = daklib.queue.Upload(Cnf)
96 changes = Upload.pkg.changes
98 dsc_files = Upload.pkg.dsc_files
99 files = Upload.pkg.files
104 ################################################################################
106 def usage (exit_code=0):
107 print """Usage: dinstall [OPTION]... [CHANGES]...
108 -a, --automatic automatic run
109 -h, --help show this help and exit.
110 -n, --no-action don't do anything
111 -p, --no-lock don't check lockfile !! for cron.daily only !!
112 -s, --no-mail don't send any mail
113 -V, --version display the version number and exit"""
116 ################################################################################
118 def reject (str, prefix="Rejected: "):
119 global reject_message
121 reject_message += prefix + str + "\n"
123 ################################################################################
125 def copy_to_holding(filename):
128 base_filename = os.path.basename(filename)
130 dest = Cnf["Dir::Queue::Holding"] + '/' + base_filename
132 fd = os.open(dest, os.O_RDWR|os.O_CREAT|os.O_EXCL, 0640)
135 # Shouldn't happen, but will if, for example, someone lists a
136 # file twice in the .changes.
137 if errno.errorcode[e.errno] == 'EEXIST':
138 reject("%s: already exists in holding area; can not overwrite." % (base_filename))
143 shutil.copy(filename, dest)
145 # In either case (ENOENT or EACCES) we want to remove the
146 # O_CREAT | O_EXCLed ghost file, so add the file to the list
147 # of 'in holding' even if it's not the real file.
148 if errno.errorcode[e.errno] == 'ENOENT':
149 reject("%s: can not copy to holding area: file not found." % (base_filename))
152 elif errno.errorcode[e.errno] == 'EACCES':
153 reject("%s: can not copy to holding area: read permission denied." % (base_filename))
158 in_holding[base_filename] = ""
160 ################################################################################
166 os.chdir(Cnf["Dir::Queue::Holding"])
167 for file in in_holding.keys():
168 if os.path.exists(file):
169 if file.find('/') != -1:
170 daklib.utils.fubar("WTF? clean_holding() got a file ('%s') with / in it!" % (file))
176 ################################################################################
179 filename = pkg.changes_file
181 # Parse the .changes field into a dictionary
183 changes.update(daklib.utils.parse_changes(filename))
184 except daklib.utils.cant_open_exc:
185 reject("%s: can't read file." % (filename))
187 except daklib.utils.changes_parse_error_exc, line:
188 reject("%s: parse error, can't grok: %s." % (filename, line))
191 # Parse the Files field from the .changes into another dictionary
193 files.update(daklib.utils.build_file_list(changes))
194 except daklib.utils.changes_parse_error_exc, line:
195 reject("%s: parse error, can't grok: %s." % (filename, line))
196 except daklib.utils.nk_format_exc, format:
197 reject("%s: unknown format '%s'." % (filename, format))
200 # Check for mandatory fields
201 for i in ("source", "binary", "architecture", "version", "distribution",
202 "maintainer", "files", "changes", "description"):
203 if not changes.has_key(i):
204 reject("%s: Missing mandatory field `%s'." % (filename, i))
205 return 0 # Avoid <undef> errors during later tests
207 # Strip a source version in brackets from the source field
208 if re_strip_srcver.search(changes["source"]):
209 changes["source"] = re_strip_srcver.sub('', changes["source"])
211 # Ensure the source field is a valid package name.
212 if not re_valid_pkg_name.match(changes["source"]):
213 reject("%s: invalid source name '%s'." % (filename, changes["source"]))
215 # Split multi-value fields into a lower-level dictionary
216 for i in ("architecture", "distribution", "binary", "closes"):
217 o = changes.get(i, "")
224 # Fix the Maintainer: field to be RFC822/2047 compatible
226 (changes["maintainer822"], changes["maintainer2047"],
227 changes["maintainername"], changes["maintaineremail"]) = \
228 daklib.utils.fix_maintainer (changes["maintainer"])
229 except daklib.utils.ParseMaintError, msg:
230 reject("%s: Maintainer field ('%s') failed to parse: %s" \
231 % (filename, changes["maintainer"], msg))
233 # ...likewise for the Changed-By: field if it exists.
235 (changes["changedby822"], changes["changedby2047"],
236 changes["changedbyname"], changes["changedbyemail"]) = \
237 daklib.utils.fix_maintainer (changes.get("changed-by", ""))
238 except daklib.utils.ParseMaintError, msg:
239 (changes["changedby822"], changes["changedby2047"],
240 changes["changedbyname"], changes["changedbyemail"]) = \
242 reject("%s: Changed-By field ('%s') failed to parse: %s" \
243 % (filename, changes["changed-by"], msg))
245 # Ensure all the values in Closes: are numbers
246 if changes.has_key("closes"):
247 for i in changes["closes"].keys():
248 if daklib.queue.re_isanum.match (i) == None:
249 reject("%s: `%s' from Closes field isn't a number." % (filename, i))
252 # chopversion = no epoch; chopversion2 = no epoch and no revision (e.g. for .orig.tar.gz comparison)
253 changes["chopversion"] = daklib.utils.re_no_epoch.sub('', changes["version"])
254 changes["chopversion2"] = daklib.utils.re_no_revision.sub('', changes["chopversion"])
256 # Check there isn't already a changes file of the same name in one
257 # of the queue directories.
258 base_filename = os.path.basename(filename)
259 for dir in [ "Accepted", "Byhand", "Done", "New", "ProposedUpdates", "OldProposedUpdates" ]:
260 if os.path.exists(Cnf["Dir::Queue::%s" % (dir) ]+'/'+base_filename):
261 reject("%s: a file with this name already exists in the %s directory." % (base_filename, dir))
263 # Check the .changes is non-empty
265 reject("%s: nothing to do (Files field is empty)." % (base_filename))
270 ################################################################################
272 def check_distributions():
273 "Check and map the Distribution field of a .changes file."
275 # Handle suite mappings
276 for map in Cnf.ValueList("SuiteMappings"):
279 if type == "map" or type == "silent-map":
280 (source, dest) = args[1:3]
281 if changes["distribution"].has_key(source):
282 del changes["distribution"][source]
283 changes["distribution"][dest] = 1
284 if type != "silent-map":
285 reject("Mapping %s to %s." % (source, dest),"")
286 if changes.has_key("distribution-version"):
287 if changes["distribution-version"].has_key(source):
288 changes["distribution-version"][source]=dest
289 elif type == "map-unreleased":
290 (source, dest) = args[1:3]
291 if changes["distribution"].has_key(source):
292 for arch in changes["architecture"].keys():
293 if arch not in Cnf.ValueList("Suite::%s::Architectures" % (source)):
294 reject("Mapping %s to %s for unreleased architecture %s." % (source, dest, arch),"")
295 del changes["distribution"][source]
296 changes["distribution"][dest] = 1
298 elif type == "ignore":
300 if changes["distribution"].has_key(suite):
301 del changes["distribution"][suite]
302 reject("Ignoring %s as a target suite." % (suite), "Warning: ")
303 elif type == "reject":
305 if changes["distribution"].has_key(suite):
306 reject("Uploads to %s are not accepted." % (suite))
307 elif type == "propup-version":
308 # give these as "uploaded-to(non-mapped) suites-to-add-when-upload-obsoletes"
310 # changes["distribution-version"] looks like: {'testing': 'testing-proposed-updates'}
311 if changes["distribution"].has_key(args[1]):
312 changes.setdefault("distribution-version", {})
313 for suite in args[2:]: changes["distribution-version"][suite]=suite
315 # Ensure there is (still) a target distribution
316 if changes["distribution"].keys() == []:
317 reject("no valid distribution.")
319 # Ensure target distributions exist
320 for suite in changes["distribution"].keys():
321 if not Cnf.has_key("Suite::%s" % (suite)):
322 reject("Unknown distribution `%s'." % (suite))
324 ################################################################################
326 def check_deb_ar(filename, control):
327 """Sanity check the ar of a .deb, i.e. that there is:
331 o data.tar.gz or data.tar.bz2
333 in that order, and nothing else."""
334 cmd = "ar t %s" % (filename)
335 (result, output) = commands.getstatusoutput(cmd)
337 reject("%s: 'ar t' invocation failed." % (filename))
338 reject(daklib.utils.prefix_multi_line_string(output, " [ar output:] "), "")
339 chunks = output.split('\n')
341 reject("%s: found %d chunks, expected 3." % (filename, len(chunks)))
342 if chunks[0] != "debian-binary":
343 reject("%s: first chunk is '%s', expected 'debian-binary'." % (filename, chunks[0]))
344 if chunks[1] != "control.tar.gz":
345 reject("%s: second chunk is '%s', expected 'control.tar.gz'." % (filename, chunks[1]))
346 if chunks[2] not in [ "data.tar.bz2", "data.tar.gz" ]:
347 reject("%s: third chunk is '%s', expected 'data.tar.gz' or 'data.tar.bz2'." % (filename, chunks[2]))
349 ################################################################################
354 archive = daklib.utils.where_am_i()
355 file_keys = files.keys()
357 # if reprocess is 2 we've already done this and we're checking
358 # things again for the new .orig.tar.gz.
359 # [Yes, I'm fully aware of how disgusting this is]
360 if not Options["No-Action"] and reprocess < 2:
362 os.chdir(pkg.directory)
363 for file in file_keys:
364 copy_to_holding(file)
367 # Check there isn't already a .changes or .dak file of the same name in
368 # the proposed-updates "CopyChanges" or "CopyDotDak" storage directories.
369 # [NB: this check must be done post-suite mapping]
370 base_filename = os.path.basename(pkg.changes_file)
371 dot_dak_filename = base_filename[:-8]+".dak"
372 for suite in changes["distribution"].keys():
373 copychanges = "Suite::%s::CopyChanges" % (suite)
374 if Cnf.has_key(copychanges) and \
375 os.path.exists(Cnf[copychanges]+"/"+base_filename):
376 reject("%s: a file with this name already exists in %s" \
377 % (base_filename, Cnf[copychanges]))
379 copy_dot_dak = "Suite::%s::CopyDotDak" % (suite)
380 if Cnf.has_key(copy_dot_dak) and \
381 os.path.exists(Cnf[copy_dot_dak]+"/"+dot_dak_filename):
382 reject("%s: a file with this name already exists in %s" \
383 % (dot_dak_filename, Cnf[copy_dot_dak]))
389 for file in file_keys:
390 # Ensure the file does not already exist in one of the accepted directories
391 for dir in [ "Accepted", "Byhand", "New", "ProposedUpdates", "OldProposedUpdates", "Embargoed", "Unembargoed" ]:
392 if not Cnf.has_key("Dir::Queue::%s" % (dir)): continue
393 if os.path.exists(Cnf["Dir::Queue::%s" % (dir) ]+'/'+file):
394 reject("%s file already exists in the %s directory." % (file, dir))
395 if not daklib.utils.re_taint_free.match(file):
396 reject("!!WARNING!! tainted filename: '%s'." % (file))
397 # Check the file is readable
398 if os.access(file,os.R_OK) == 0:
399 # When running in -n, copy_to_holding() won't have
400 # generated the reject_message, so we need to.
401 if Options["No-Action"]:
402 if os.path.exists(file):
403 reject("Can't read `%s'. [permission denied]" % (file))
405 reject("Can't read `%s'. [file not found]" % (file))
406 files[file]["type"] = "unreadable"
408 # If it's byhand skip remaining checks
409 if files[file]["section"] == "byhand" or files[file]["section"][:4] == "raw-":
410 files[file]["byhand"] = 1
411 files[file]["type"] = "byhand"
412 # Checks for a binary package...
413 elif daklib.utils.re_isadeb.match(file):
415 files[file]["type"] = "deb"
417 # Extract package control information
418 deb_file = daklib.utils.open_file(file)
420 control = apt_pkg.ParseSection(apt_inst.debExtractControl(deb_file))
422 reject("%s: debExtractControl() raised %s." % (file, sys.exc_type))
424 # Can't continue, none of the checks on control would work.
428 # Check for mandatory fields
429 for field in [ "Package", "Architecture", "Version" ]:
430 if control.Find(field) == None:
431 reject("%s: No %s field in control." % (file, field))
435 # Ensure the package name matches the one give in the .changes
436 if not changes["binary"].has_key(control.Find("Package", "")):
437 reject("%s: control file lists name as `%s', which isn't in changes file." % (file, control.Find("Package", "")))
439 # Validate the package field
440 package = control.Find("Package")
441 if not re_valid_pkg_name.match(package):
442 reject("%s: invalid package name '%s'." % (file, package))
444 # Validate the version field
445 version = control.Find("Version")
446 if not re_valid_version.match(version):
447 reject("%s: invalid version number '%s'." % (file, version))
449 # Ensure the architecture of the .deb is one we know about.
450 default_suite = Cnf.get("Dinstall::DefaultSuite", "Unstable")
451 architecture = control.Find("Architecture")
452 if architecture not in Cnf.ValueList("Suite::%s::Architectures" % (default_suite)):
453 reject("Unknown architecture '%s'." % (architecture))
455 # Ensure the architecture of the .deb is one of the ones
456 # listed in the .changes.
457 if not changes["architecture"].has_key(architecture):
458 reject("%s: control file lists arch as `%s', which isn't in changes file." % (file, architecture))
460 # Sanity-check the Depends field
461 depends = control.Find("Depends")
463 reject("%s: Depends field is empty." % (file))
465 # Sanity-check the Provides field
466 provides = control.Find("Provides")
468 provide = re_spacestrip.sub('', provides)
470 reject("%s: Provides field is empty." % (file))
471 prov_list = provide.split(",")
472 for prov in prov_list:
473 if not re_valid_pkg_name.match(prov):
474 reject("%s: Invalid Provides field content %s." % (file, prov))
477 # Check the section & priority match those given in the .changes (non-fatal)
478 if control.Find("Section") and files[file]["section"] != "" and files[file]["section"] != control.Find("Section"):
479 reject("%s control file lists section as `%s', but changes file has `%s'." % (file, control.Find("Section", ""), files[file]["section"]), "Warning: ")
480 if control.Find("Priority") and files[file]["priority"] != "" and files[file]["priority"] != control.Find("Priority"):
481 reject("%s control file lists priority as `%s', but changes file has `%s'." % (file, control.Find("Priority", ""), files[file]["priority"]),"Warning: ")
483 files[file]["package"] = package
484 files[file]["architecture"] = architecture
485 files[file]["version"] = version
486 files[file]["maintainer"] = control.Find("Maintainer", "")
487 if file.endswith(".udeb"):
488 files[file]["dbtype"] = "udeb"
489 elif file.endswith(".deb"):
490 files[file]["dbtype"] = "deb"
492 reject("%s is neither a .deb or a .udeb." % (file))
493 files[file]["source"] = control.Find("Source", files[file]["package"])
494 # Get the source version
495 source = files[file]["source"]
497 if source.find("(") != -1:
498 m = daklib.utils.re_extract_src_version.match(source)
500 source_version = m.group(2)
501 if not source_version:
502 source_version = files[file]["version"]
503 files[file]["source package"] = source
504 files[file]["source version"] = source_version
506 # Ensure the filename matches the contents of the .deb
507 m = daklib.utils.re_isadeb.match(file)
509 file_package = m.group(1)
510 if files[file]["package"] != file_package:
511 reject("%s: package part of filename (%s) does not match package name in the %s (%s)." % (file, file_package, files[file]["dbtype"], files[file]["package"]))
512 epochless_version = daklib.utils.re_no_epoch.sub('', control.Find("Version"))
514 file_version = m.group(2)
515 if epochless_version != file_version:
516 reject("%s: version part of filename (%s) does not match package version in the %s (%s)." % (file, file_version, files[file]["dbtype"], epochless_version))
518 file_architecture = m.group(3)
519 if files[file]["architecture"] != file_architecture:
520 reject("%s: architecture part of filename (%s) does not match package architecture in the %s (%s)." % (file, file_architecture, files[file]["dbtype"], files[file]["architecture"]))
522 # Check for existent source
523 source_version = files[file]["source version"]
524 source_package = files[file]["source package"]
525 if changes["architecture"].has_key("source"):
526 if source_version != changes["version"]:
527 reject("source version (%s) for %s doesn't match changes version %s." % (source_version, file, changes["version"]))
529 # Check in the SQL database
530 if not Upload.source_exists(source_package, source_version, changes["distribution"].keys()):
531 # Check in one of the other directories
532 source_epochless_version = daklib.utils.re_no_epoch.sub('', source_version)
533 dsc_filename = "%s_%s.dsc" % (source_package, source_epochless_version)
534 if os.path.exists(Cnf["Dir::Queue::Byhand"] + '/' + dsc_filename):
535 files[file]["byhand"] = 1
536 elif os.path.exists(Cnf["Dir::Queue::New"] + '/' + dsc_filename):
537 files[file]["new"] = 1
540 for myq in ["Accepted", "Embargoed", "Unembargoed", "ProposedUpdates", "OldProposedUpdates"]:
541 if Cnf.has_key("Dir::Queue::%s" % (myq)):
542 if os.path.exists(Cnf["Dir::Queue::"+myq] + '/' + dsc_filename):
545 if not dsc_file_exists:
546 reject("no source found for %s %s (%s)." % (source_package, source_version, file))
547 # Check the version and for file overwrites
548 reject(Upload.check_binary_against_db(file),"")
550 check_deb_ar(file, control)
552 # Checks for a source package...
554 m = daklib.utils.re_issource.match(file)
557 files[file]["package"] = m.group(1)
558 files[file]["version"] = m.group(2)
559 files[file]["type"] = m.group(3)
561 # Ensure the source package name matches the Source filed in the .changes
562 if changes["source"] != files[file]["package"]:
563 reject("%s: changes file doesn't say %s for Source" % (file, files[file]["package"]))
565 # Ensure the source version matches the version in the .changes file
566 if files[file]["type"] == "orig.tar.gz":
567 changes_version = changes["chopversion2"]
569 changes_version = changes["chopversion"]
570 if changes_version != files[file]["version"]:
571 reject("%s: should be %s according to changes file." % (file, changes_version))
573 # Ensure the .changes lists source in the Architecture field
574 if not changes["architecture"].has_key("source"):
575 reject("%s: changes file doesn't list `source' in Architecture field." % (file))
577 # Check the signature of a .dsc file
578 if files[file]["type"] == "dsc":
579 dsc["fingerprint"] = daklib.utils.check_signature(file, reject)
581 files[file]["architecture"] = "source"
583 # Not a binary or source package? Assume byhand...
585 files[file]["byhand"] = 1
586 files[file]["type"] = "byhand"
588 # Per-suite file checks
589 files[file]["oldfiles"] = {}
590 for suite in changes["distribution"].keys():
592 if files[file].has_key("byhand"):
595 # Handle component mappings
596 for map in Cnf.ValueList("ComponentMappings"):
597 (source, dest) = map.split()
598 if files[file]["component"] == source:
599 files[file]["original component"] = source
600 files[file]["component"] = dest
602 # Ensure the component is valid for the target suite
603 if Cnf.has_key("Suite:%s::Components" % (suite)) and \
604 files[file]["component"] not in Cnf.ValueList("Suite::%s::Components" % (suite)):
605 reject("unknown component `%s' for suite `%s'." % (files[file]["component"], suite))
608 # Validate the component
609 component = files[file]["component"]
610 component_id = daklib.database.get_component_id(component)
611 if component_id == -1:
612 reject("file '%s' has unknown component '%s'." % (file, component))
615 # See if the package is NEW
616 if not Upload.in_override_p(files[file]["package"], files[file]["component"], suite, files[file].get("dbtype",""), file):
617 files[file]["new"] = 1
619 # Validate the priority
620 if files[file]["priority"].find('/') != -1:
621 reject("file '%s' has invalid priority '%s' [contains '/']." % (file, files[file]["priority"]))
623 # Determine the location
624 location = Cnf["Dir::Pool"]
625 location_id = daklib.database.get_location_id (location, component, archive)
626 if location_id == -1:
627 reject("[INTERNAL ERROR] couldn't determine location (Component: %s, Archive: %s)" % (component, archive))
628 files[file]["location id"] = location_id
630 # Check the md5sum & size against existing files (if any)
631 files[file]["pool name"] = daklib.utils.poolify (changes["source"], files[file]["component"])
632 files_id = daklib.database.get_files_id(files[file]["pool name"] + file, files[file]["size"], files[file]["md5sum"], files[file]["location id"])
634 reject("INTERNAL ERROR, get_files_id() returned multiple matches for %s." % (file))
636 reject("md5sum and/or size mismatch on existing copy of %s." % (file))
637 files[file]["files id"] = files_id
639 # Check for packages that have moved from one component to another
640 q = Upload.projectB.query("""
641 SELECT c.name FROM binaries b, bin_associations ba, suite s, location l,
642 component c, architecture a, files f
643 WHERE b.package = '%s' AND s.suite_name = '%s'
644 AND (a.arch_string = '%s' OR a.arch_string = 'all')
645 AND ba.bin = b.id AND ba.suite = s.id AND b.architecture = a.id
646 AND f.location = l.id AND l.component = c.id AND b.file = f.id"""
647 % (files[file]["package"], suite,
648 files[file]["architecture"]))
651 files[file]["othercomponents"] = ql[0][0]
653 # If the .changes file says it has source, it must have source.
654 if changes["architecture"].has_key("source"):
656 reject("no source found and Architecture line in changes mention source.")
658 if not has_binaries and Cnf.FindB("Dinstall::Reject::NoSourceOnly"):
659 reject("source only uploads are not supported.")
661 ###############################################################################
666 # Ensure there is source to check
667 if not changes["architecture"].has_key("source"):
672 for file in files.keys():
673 if files[file]["type"] == "dsc":
675 reject("can not process a .changes file with multiple .dsc's.")
680 # If there isn't one, we have nothing to do. (We have reject()ed the upload already)
682 reject("source uploads must contain a dsc file")
685 # Parse the .dsc file
687 dsc.update(daklib.utils.parse_changes(dsc_filename, signing_rules=1))
688 except daklib.utils.cant_open_exc:
689 # if not -n copy_to_holding() will have done this for us...
690 if Options["No-Action"]:
691 reject("%s: can't read file." % (dsc_filename))
692 except daklib.utils.changes_parse_error_exc, line:
693 reject("%s: parse error, can't grok: %s." % (dsc_filename, line))
694 except daklib.utils.invalid_dsc_format_exc, line:
695 reject("%s: syntax error on line %s." % (dsc_filename, line))
696 # Build up the file list of files mentioned by the .dsc
698 dsc_files.update(daklib.utils.build_file_list(dsc, is_a_dsc=1))
699 except daklib.utils.no_files_exc:
700 reject("%s: no Files: field." % (dsc_filename))
702 except daklib.utils.changes_parse_error_exc, line:
703 reject("%s: parse error, can't grok: %s." % (dsc_filename, line))
706 # Enforce mandatory fields
707 for i in ("format", "source", "version", "binary", "maintainer", "architecture", "files"):
708 if not dsc.has_key(i):
709 reject("%s: missing mandatory field `%s'." % (dsc_filename, i))
712 # Validate the source and version fields
713 if not re_valid_pkg_name.match(dsc["source"]):
714 reject("%s: invalid source name '%s'." % (dsc_filename, dsc["source"]))
715 if not re_valid_version.match(dsc["version"]):
716 reject("%s: invalid version number '%s'." % (dsc_filename, dsc["version"]))
718 # Bumping the version number of the .dsc breaks extraction by stable's
719 # dpkg-source. So let's not do that...
720 if dsc["format"] != "1.0":
721 reject("%s: incompatible 'Format' version produced by a broken version of dpkg-dev 1.9.1{3,4}." % (dsc_filename))
723 # Validate the Maintainer field
725 daklib.utils.fix_maintainer (dsc["maintainer"])
726 except daklib.utils.ParseMaintError, msg:
727 reject("%s: Maintainer field ('%s') failed to parse: %s" \
728 % (dsc_filename, dsc["maintainer"], msg))
730 # Validate the build-depends field(s)
731 for field_name in [ "build-depends", "build-depends-indep" ]:
732 field = dsc.get(field_name)
734 # Check for broken dpkg-dev lossage...
735 if field.startswith("ARRAY"):
736 reject("%s: invalid %s field produced by a broken version of dpkg-dev (1.10.11)" % (dsc_filename, field_name.title()))
738 # Have apt try to parse them...
740 apt_pkg.ParseSrcDepends(field)
742 reject("%s: invalid %s field (can not be parsed by apt)." % (dsc_filename, field_name.title()))
745 # Ensure the version number in the .dsc matches the version number in the .changes
746 epochless_dsc_version = daklib.utils.re_no_epoch.sub('', dsc["version"])
747 changes_version = files[dsc_filename]["version"]
748 if epochless_dsc_version != files[dsc_filename]["version"]:
749 reject("version ('%s') in .dsc does not match version ('%s') in .changes." % (epochless_dsc_version, changes_version))
751 # Ensure there is a .tar.gz in the .dsc file
753 for f in dsc_files.keys():
754 m = daklib.utils.re_issource.match(f)
756 reject("%s: %s in Files field not recognised as source." % (dsc_filename, f))
759 if type == "orig.tar.gz" or type == "tar.gz":
762 reject("%s: no .tar.gz or .orig.tar.gz in 'Files' field." % (dsc_filename))
764 # Ensure source is newer than existing source in target suites
765 reject(Upload.check_source_against_db(dsc_filename),"")
767 (reject_msg, is_in_incoming) = Upload.check_dsc_against_db(dsc_filename)
768 reject(reject_msg, "")
770 if not Options["No-Action"]:
771 copy_to_holding(is_in_incoming)
772 orig_tar_gz = os.path.basename(is_in_incoming)
773 files[orig_tar_gz] = {}
774 files[orig_tar_gz]["size"] = os.stat(orig_tar_gz)[stat.ST_SIZE]
775 files[orig_tar_gz]["md5sum"] = dsc_files[orig_tar_gz]["md5sum"]
776 files[orig_tar_gz]["section"] = files[dsc_filename]["section"]
777 files[orig_tar_gz]["priority"] = files[dsc_filename]["priority"]
778 files[orig_tar_gz]["component"] = files[dsc_filename]["component"]
779 files[orig_tar_gz]["type"] = "orig.tar.gz"
784 ################################################################################
786 def get_changelog_versions(source_dir):
787 """Extracts a the source package and (optionally) grabs the
788 version history out of debian/changelog for the BTS."""
790 # Find the .dsc (again)
792 for file in files.keys():
793 if files[file]["type"] == "dsc":
796 # If there isn't one, we have nothing to do. (We have reject()ed the upload already)
800 # Create a symlink mirror of the source files in our temporary directory
801 for f in files.keys():
802 m = daklib.utils.re_issource.match(f)
804 src = os.path.join(source_dir, f)
805 # If a file is missing for whatever reason, give up.
806 if not os.path.exists(src):
809 if type == "orig.tar.gz" and pkg.orig_tar_gz:
811 dest = os.path.join(os.getcwd(), f)
812 os.symlink(src, dest)
814 # If the orig.tar.gz is not a part of the upload, create a symlink to the
817 dest = os.path.join(os.getcwd(), os.path.basename(pkg.orig_tar_gz))
818 os.symlink(pkg.orig_tar_gz, dest)
821 cmd = "dpkg-source -sn -x %s" % (dsc_filename)
822 (result, output) = commands.getstatusoutput(cmd)
824 reject("'dpkg-source -x' failed for %s [return code: %s]." % (dsc_filename, result))
825 reject(daklib.utils.prefix_multi_line_string(output, " [dpkg-source output:] "), "")
828 if not Cnf.Find("Dir::Queue::BTSVersionTrack"):
831 # Get the upstream version
832 upstr_version = daklib.utils.re_no_epoch.sub('', dsc["version"])
833 if re_strip_revision.search(upstr_version):
834 upstr_version = re_strip_revision.sub('', upstr_version)
836 # Ensure the changelog file exists
837 changelog_filename = "%s-%s/debian/changelog" % (dsc["source"], upstr_version)
838 if not os.path.exists(changelog_filename):
839 reject("%s: debian/changelog not found in extracted source." % (dsc_filename))
842 # Parse the changelog
843 dsc["bts changelog"] = ""
844 changelog_file = daklib.utils.open_file(changelog_filename)
845 for line in changelog_file.readlines():
846 m = re_changelog_versions.match(line)
848 dsc["bts changelog"] += line
849 changelog_file.close()
851 # Check we found at least one revision in the changelog
852 if not dsc["bts changelog"]:
853 reject("%s: changelog format not recognised (empty version tree)." % (dsc_filename))
855 ########################################
859 # a) there's no source
860 # or b) reprocess is 2 - we will do this check next time when orig.tar.gz is in 'files'
861 # or c) the orig.tar.gz is MIA
862 if not changes["architecture"].has_key("source") or reprocess == 2 \
863 or pkg.orig_tar_gz == -1:
866 # Create a temporary directory to extract the source into
867 if Options["No-Action"]:
868 tmpdir = tempfile.mktemp()
870 # We're in queue/holding and can create a random directory.
871 tmpdir = "%s" % (os.getpid())
874 # Move into the temporary directory
878 # Get the changelog version history
879 get_changelog_versions(cwd)
881 # Move back and cleanup the temporary tree
884 shutil.rmtree(tmpdir)
886 if errno.errorcode[e.errno] != 'EACCES':
887 daklib.utils.fubar("%s: couldn't remove tmp dir for source tree." % (dsc["source"]))
889 reject("%s: source tree could not be cleanly removed." % (dsc["source"]))
890 # We probably have u-r or u-w directories so chmod everything
892 cmd = "chmod -R u+rwx %s" % (tmpdir)
893 result = os.system(cmd)
895 daklib.utils.fubar("'%s' failed with result %s." % (cmd, result))
896 shutil.rmtree(tmpdir)
898 daklib.utils.fubar("%s: couldn't remove tmp dir for source tree." % (dsc["source"]))
900 ################################################################################
902 # FIXME: should be a debian specific check called from a hook
904 def check_urgency ():
905 if changes["architecture"].has_key("source"):
906 if not changes.has_key("urgency"):
907 changes["urgency"] = Cnf["Urgency::Default"]
908 if changes["urgency"] not in Cnf.ValueList("Urgency::Valid"):
909 reject("%s is not a valid urgency; it will be treated as %s by testing." % (changes["urgency"], Cnf["Urgency::Default"]), "Warning: ")
910 changes["urgency"] = Cnf["Urgency::Default"]
911 changes["urgency"] = changes["urgency"].lower()
913 ################################################################################
916 # Make sure we recognise the format of the Files: field
917 format = changes.get("format", "0.0").split(".",1)
919 format = int(format[0]), int(format[1])
921 format = int(float(format[0])), 0
923 check_hash(".changes", files, "md5sum", apt_pkg.md5sum)
924 check_hash(".dsc", dsc_files, "md5sum", apt_pkg.md5sum)
927 hashes = [("sha1", apt_pkg.sha1sum),
928 ("sha256", apt_pkg.sha256sum)]
933 if x.startswith("checksum-"):
934 h = x.split("-",1)[1]
935 if h not in dict(hashes):
936 reject("Unsupported checksum field in .changes" % (h))
939 if x.startswith("checksum-"):
940 h = x.split("-",1)[1]
941 if h not in dict(hashes):
942 reject("Unsupported checksum field in .dsc" % (h))
946 fs = daklib.utils.build_file_list(changes, 0, "checksums-%s" % h, h)
947 check_hash(".changes %s" % (h), fs, h, f, files)
948 except daklib.utils.no_files_exc:
949 reject("No Checksums-%s: field in .changes" % (h))
950 except daklib.utils.changes_parse_error_exc, line:
951 reject("parse error for Checksums-%s in .changes, can't grok: %s." % (h, line))
953 if "source" not in changes["architecture"]: continue
956 fs = daklib.utils.build_file_list(dsc, 1, "checksums-%s" % h, h)
957 check_hash(".dsc %s" % (h), fs, h, f, dsc_files)
958 except daklib.utils.no_files_exc:
959 reject("No Checksums-%s: field in .dsc" % (h))
960 except daklib.utils.changes_parse_error_exc, line:
961 reject("parse error for Checksums-%s in .dsc, can't grok: %s." % (h, line))
963 ################################################################################
965 def check_hash (where, files, key, testfn, basedict = None):
967 for file in basedict.keys():
968 if file not in files:
969 reject("%s: no %s checksum" % (file, key))
971 for file in files.keys():
972 if basedict and file not in basedict:
973 reject("%s: extraneous entry in %s checksums" % (file, key))
976 file_handle = daklib.utils.open_file(file)
977 except daklib.utils.cant_open_exc:
981 if testfn(file_handle) != files[file][key]:
982 reject("%s: %s check failed." % (file, key))
985 actual_size = os.stat(file)[stat.ST_SIZE]
986 size = int(files[file]["size"])
987 if size != actual_size:
988 reject("%s: actual file size (%s) does not match size (%s) in %s"
989 % (file, actual_size, size, where))
991 ################################################################################
993 # Sanity check the time stamps of files inside debs.
994 # [Files in the near future cause ugly warnings and extreme time
995 # travel can cause errors on extraction]
997 def check_timestamps():
999 def __init__(self, future_cutoff, past_cutoff):
1001 self.future_cutoff = future_cutoff
1002 self.past_cutoff = past_cutoff
1005 self.future_files = {}
1006 self.ancient_files = {}
1008 def callback(self, Kind,Name,Link,Mode,UID,GID,Size,MTime,Major,Minor):
1009 if MTime > self.future_cutoff:
1010 self.future_files[Name] = MTime
1011 if MTime < self.past_cutoff:
1012 self.ancient_files[Name] = MTime
1015 future_cutoff = time.time() + int(Cnf["Dinstall::FutureTimeTravelGrace"])
1016 past_cutoff = time.mktime(time.strptime(Cnf["Dinstall::PastCutoffYear"],"%Y"))
1017 tar = Tar(future_cutoff, past_cutoff)
1018 for filename in files.keys():
1019 if files[filename]["type"] == "deb":
1022 deb_file = daklib.utils.open_file(filename)
1023 apt_inst.debExtract(deb_file,tar.callback,"control.tar.gz")
1026 apt_inst.debExtract(deb_file,tar.callback,"data.tar.gz")
1027 except SystemError, e:
1028 # If we can't find a data.tar.gz, look for data.tar.bz2 instead.
1029 if not re.search(r"Cannot f[ui]nd chunk data.tar.gz$", str(e)):
1032 apt_inst.debExtract(deb_file,tar.callback,"data.tar.bz2")
1035 future_files = tar.future_files.keys()
1037 num_future_files = len(future_files)
1038 future_file = future_files[0]
1039 future_date = tar.future_files[future_file]
1040 reject("%s: has %s file(s) with a time stamp too far into the future (e.g. %s [%s])."
1041 % (filename, num_future_files, future_file,
1042 time.ctime(future_date)))
1044 ancient_files = tar.ancient_files.keys()
1046 num_ancient_files = len(ancient_files)
1047 ancient_file = ancient_files[0]
1048 ancient_date = tar.ancient_files[ancient_file]
1049 reject("%s: has %s file(s) with a time stamp too ancient (e.g. %s [%s])."
1050 % (filename, num_ancient_files, ancient_file,
1051 time.ctime(ancient_date)))
1053 reject("%s: deb contents timestamp check failed [%s: %s]" % (filename, sys.exc_type, sys.exc_value))
1055 ################################################################################
1057 def lookup_uid_from_fingerprint(fpr):
1058 q = Upload.projectB.query("SELECT u.uid, u.name FROM fingerprint f, uid u WHERE f.uid = u.id AND f.fingerprint = '%s'" % (fpr))
1065 def check_signed_by_key():
1066 """Ensure the .changes is signed by an authorized uploader."""
1068 (uid, uid_name) = lookup_uid_from_fingerprint(changes["fingerprint"])
1069 if uid_name == None:
1072 # match claimed name with actual name:
1074 uid, uid_email = changes["fingerprint"], uid
1075 may_nmu, may_sponsor = 1, 1
1076 # XXX by default new dds don't have a fingerprint/uid in the db atm,
1077 # and can't get one in there if we don't allow nmu/sponsorship
1078 elif uid[:3] == "dm:":
1080 may_nmu, may_sponsor = 0, 0
1082 uid_email = "%s@debian.org" % (uid)
1083 may_nmu, may_sponsor = 1, 1
1085 if uid_email in [changes["maintaineremail"], changes["changedbyemail"]]:
1087 elif uid_name in [changes["maintainername"], changes["changedbyname"]]:
1089 if uid_name == "": sponsored = 1
1092 if ("source" in changes["architecture"] and
1093 daklib.utils.is_email_alias(uid_email)):
1094 sponsor_addresses = daklib.utils.gpg_get_key_addresses(changes["fingerprint"])
1095 if (changes["maintaineremail"] not in sponsor_addresses and
1096 changes["changedbyemail"] not in sponsor_addresses):
1097 changes["sponsoremail"] = uid_email
1099 if sponsored and not may_sponsor:
1100 reject("%s is not authorised to sponsor uploads" % (uid))
1102 if not sponsored and not may_nmu:
1104 check_suites = changes["distribution"].keys()
1105 if "unstable" not in check_suites: check_suites.append("unstable")
1106 for suite in check_suites:
1107 suite_id = daklib.database.get_suite_id(suite)
1108 q = Upload.projectB.query("SELECT s.id FROM source s JOIN src_associations sa ON (s.id = sa.source) WHERE s.source = '%s' AND sa.suite = %d" % (changes["source"], suite_id))
1109 for si in q.getresult():
1110 if si[0] not in source_ids: source_ids.append(si[0])
1112 print "source_ids: %s" % (",".join([str(x) for x in source_ids]))
1115 for si in source_ids:
1117 q = Upload.projectB.query("SELECT m.name FROM maintainer m WHERE m.id IN (SELECT maintainer FROM src_uploaders WHERE src_uploaders.source = %s)" % (si))
1118 for m in q.getresult():
1119 (rfc822, rfc2047, name, email) = daklib.utils.fix_maintainer(m[0])
1120 if email == uid_email or name == uid_name:
1124 reject("%s may not upload/NMU source package %s" % (uid, changes["source"]))
1126 for b in changes["binary"].keys():
1127 for suite in changes["distribution"].keys():
1128 suite_id = daklib.database.get_suite_id(suite)
1129 q = Upload.projectB.query("SELECT DISTINCT s.source FROM source s JOIN binaries b ON (s.id = b.source) JOIN bin_associations ba On (b.id = ba.bin) WHERE b.package = '%s' AND ba.suite = %s" % (b, suite_id))
1130 for s in q.getresult():
1131 if s[0] != changes["source"]:
1132 reject("%s may not hijack %s from source package %s in suite %s" % (uid, b, s, suite))
1134 for file in files.keys():
1135 if files[file].has_key("byhand"):
1136 reject("%s may not upload BYHAND file %s" % (uid, file))
1137 if files[file].has_key("new"):
1138 reject("%s may not upload NEW file %s" % (uid, file))
1140 # The remaining checks only apply to binary-only uploads right now
1141 if changes["architecture"].has_key("source"):
1144 if not Cnf.Exists("Binary-Upload-Restrictions"):
1147 restrictions = Cnf.SubTree("Binary-Upload-Restrictions")
1149 # If the restrictions only apply to certain components make sure
1150 # that the upload is actual targeted there.
1151 if restrictions.Exists("Components"):
1152 restricted_components = restrictions.SubTree("Components").ValueList()
1153 is_restricted = False
1155 if files[file]["component"] in restricted_components:
1156 is_restricted = True
1158 if not is_restricted:
1161 # Assuming binary only upload restrictions are in place we then
1162 # iterate over suite and architecture checking the key is in the
1163 # allowed list. If no allowed list exists for a given suite or
1164 # architecture it's assumed to be open to anyone.
1165 for suite in changes["distribution"].keys():
1166 if not restrictions.Exists(suite):
1168 for arch in changes["architecture"].keys():
1169 if not restrictions.SubTree(suite).Exists(arch):
1171 allowed_keys = restrictions.SubTree("%s::%s" % (suite, arch)).ValueList()
1172 if changes["fingerprint"] not in allowed_keys:
1173 base_filename = os.path.basename(pkg.changes_file)
1174 reject("%s: not signed by authorised uploader for %s/%s"
1175 % (base_filename, suite, arch))
1177 ################################################################################
1178 ################################################################################
1180 # If any file of an upload has a recent mtime then chances are good
1181 # the file is still being uploaded.
1183 def upload_too_new():
1185 # Move back to the original directory to get accurate time stamps
1187 os.chdir(pkg.directory)
1188 file_list = pkg.files.keys()
1189 file_list.extend(pkg.dsc_files.keys())
1190 file_list.append(pkg.changes_file)
1191 for file in file_list:
1193 last_modified = time.time()-os.path.getmtime(file)
1194 if last_modified < int(Cnf["Dinstall::SkipTime"]):
1202 ################################################################################
1205 # changes["distribution"] may not exist in corner cases
1206 # (e.g. unreadable changes files)
1207 if not changes.has_key("distribution") or not isinstance(changes["distribution"], DictType):
1208 changes["distribution"] = {}
1210 (summary, short_summary) = Upload.build_summaries()
1212 # q-unapproved hax0ring
1214 "New": { "is": is_new, "process": acknowledge_new },
1215 "Autobyhand" : { "is" : is_autobyhand, "process": do_autobyhand },
1216 "Byhand" : { "is": is_byhand, "process": do_byhand },
1217 "OldStableUpdate" : { "is": is_oldstableupdate,
1218 "process": do_oldstableupdate },
1219 "StableUpdate" : { "is": is_stableupdate, "process": do_stableupdate },
1220 "Unembargo" : { "is": is_unembargo, "process": queue_unembargo },
1221 "Embargo" : { "is": is_embargo, "process": queue_embargo },
1223 queues = [ "New", "Autobyhand", "Byhand" ]
1224 if Cnf.FindB("Dinstall::SecurityQueueHandling"):
1225 queues += [ "Unembargo", "Embargo" ]
1227 queues += [ "OldStableUpdate", "StableUpdate" ]
1229 (prompt, answer) = ("", "XXX")
1230 if Options["No-Action"] or Options["Automatic"]:
1235 if reject_message.find("Rejected") != -1:
1236 if upload_too_new():
1237 print "SKIP (too new)\n" + reject_message,
1238 prompt = "[S]kip, Quit ?"
1240 print "REJECT\n" + reject_message,
1241 prompt = "[R]eject, Skip, Quit ?"
1242 if Options["Automatic"]:
1247 if queue_info[q]["is"]():
1251 print "%s for %s\n%s%s" % (
1252 queue.upper(), ", ".join(changes["distribution"].keys()),
1253 reject_message, summary),
1254 queuekey = queue[0].upper()
1255 if queuekey in "RQSA":
1257 prompt = "[D]ivert, Skip, Quit ?"
1259 prompt = "[%s]%s, Skip, Quit ?" % (queuekey, queue[1:].lower())
1260 if Options["Automatic"]:
1263 print "ACCEPT\n" + reject_message + summary,
1264 prompt = "[A]ccept, Skip, Quit ?"
1265 if Options["Automatic"]:
1268 while prompt.find(answer) == -1:
1269 answer = daklib.utils.our_raw_input(prompt)
1270 m = daklib.queue.re_default_answer.match(prompt)
1273 answer = answer[:1].upper()
1276 os.chdir (pkg.directory)
1277 Upload.do_reject(0, reject_message)
1279 accept(summary, short_summary)
1280 remove_from_unchecked()
1281 elif answer == queuekey:
1282 queue_info[queue]["process"](summary, short_summary)
1283 remove_from_unchecked()
1287 def remove_from_unchecked():
1288 os.chdir (pkg.directory)
1289 for file in files.keys():
1291 os.unlink(pkg.changes_file)
1293 ################################################################################
1295 def accept (summary, short_summary):
1296 Upload.accept(summary, short_summary)
1297 Upload.check_override()
1299 ################################################################################
1301 def move_to_dir (dest, perms=0660, changesperms=0664):
1302 daklib.utils.move (pkg.changes_file, dest, perms=changesperms)
1303 file_keys = files.keys()
1304 for file in file_keys:
1305 daklib.utils.move (file, dest, perms=perms)
1307 ################################################################################
1309 def is_unembargo ():
1310 q = Upload.projectB.query(
1311 "SELECT package FROM disembargo WHERE package = '%s' AND version = '%s'" %
1312 (changes["source"], changes["version"]))
1317 oldcwd = os.getcwd()
1318 os.chdir(Cnf["Dir::Queue::Disembargo"])
1319 disdir = os.getcwd()
1322 if pkg.directory == disdir:
1323 if changes["architecture"].has_key("source"):
1324 if Options["No-Action"]: return 1
1326 Upload.projectB.query(
1327 "INSERT INTO disembargo (package, version) VALUES ('%s', '%s')" %
1328 (changes["source"], changes["version"]))
1333 def queue_unembargo (summary, short_summary):
1334 print "Moving to UNEMBARGOED holding area."
1335 Logger.log(["Moving to unembargoed", pkg.changes_file])
1337 Upload.dump_vars(Cnf["Dir::Queue::Unembargoed"])
1338 move_to_dir(Cnf["Dir::Queue::Unembargoed"])
1339 Upload.queue_build("unembargoed", Cnf["Dir::Queue::Unembargoed"])
1341 # Check for override disparities
1342 Upload.Subst["__SUMMARY__"] = summary
1343 Upload.check_override()
1345 ################################################################################
1348 # if embargoed queues are enabled always embargo
1351 def queue_embargo (summary, short_summary):
1352 print "Moving to EMBARGOED holding area."
1353 Logger.log(["Moving to embargoed", pkg.changes_file])
1355 Upload.dump_vars(Cnf["Dir::Queue::Embargoed"])
1356 move_to_dir(Cnf["Dir::Queue::Embargoed"])
1357 Upload.queue_build("embargoed", Cnf["Dir::Queue::Embargoed"])
1359 # Check for override disparities
1360 Upload.Subst["__SUMMARY__"] = summary
1361 Upload.check_override()
1363 ################################################################################
1365 def is_stableupdate ():
1366 if not changes["distribution"].has_key("proposed-updates"):
1369 if not changes["architecture"].has_key("source"):
1370 pusuite = daklib.database.get_suite_id("proposed-updates")
1371 q = Upload.projectB.query(
1372 "SELECT S.source FROM source s JOIN src_associations sa ON (s.id = sa.source) WHERE s.source = '%s' AND s.version = '%s' AND sa.suite = %d" %
1373 (changes["source"], changes["version"], pusuite))
1376 # source is already in proposed-updates so no need to hold
1381 def do_stableupdate (summary, short_summary):
1382 print "Moving to PROPOSED-UPDATES holding area."
1383 Logger.log(["Moving to proposed-updates", pkg.changes_file]);
1385 Upload.dump_vars(Cnf["Dir::Queue::ProposedUpdates"]);
1386 move_to_dir(Cnf["Dir::Queue::ProposedUpdates"])
1388 # Check for override disparities
1389 Upload.Subst["__SUMMARY__"] = summary;
1390 Upload.check_override();
1392 ################################################################################
1394 def is_oldstableupdate ():
1395 if not changes["distribution"].has_key("oldstable-proposed-updates"):
1398 if not changes["architecture"].has_key("source"):
1399 pusuite = daklib.database.get_suite_id("oldstable-proposed-updates")
1400 q = Upload.projectB.query(
1401 "SELECT S.source FROM source s JOIN src_associations sa ON (s.id = sa.source) WHERE s.source = '%s' AND s.version = '%s' AND sa.suite = %d" %
1402 (changes["source"], changes["version"], pusuite))
1405 # source is already in oldstable-proposed-updates so no need to hold
1410 def do_oldstableupdate (summary, short_summary):
1411 print "Moving to OLDSTABLE-PROPOSED-UPDATES holding area."
1412 Logger.log(["Moving to oldstable-proposed-updates", pkg.changes_file]);
1414 Upload.dump_vars(Cnf["Dir::Queue::OldProposedUpdates"]);
1415 move_to_dir(Cnf["Dir::Queue::OldProposedUpdates"])
1417 # Check for override disparities
1418 Upload.Subst["__SUMMARY__"] = summary;
1419 Upload.check_override();
1421 ################################################################################
1423 def is_autobyhand ():
1426 for file in files.keys():
1427 if files[file].has_key("byhand"):
1430 # filename is of form "PKG_VER_ARCH.EXT" where PKG, VER and ARCH
1431 # don't contain underscores, and ARCH doesn't contain dots.
1432 # further VER matches the .changes Version:, and ARCH should be in
1433 # the .changes Architecture: list.
1434 if file.count("_") < 2:
1438 (pkg, ver, archext) = file.split("_", 2)
1439 if archext.count(".") < 1 or changes["version"] != ver:
1443 ABH = Cnf.SubTree("AutomaticByHandPackages")
1444 if not ABH.has_key(pkg) or \
1445 ABH["%s::Source" % (pkg)] != changes["source"]:
1446 print "not match %s %s" % (pkg, changes["source"])
1450 (arch, ext) = archext.split(".", 1)
1451 if arch not in changes["architecture"]:
1455 files[file]["byhand-arch"] = arch
1456 files[file]["byhand-script"] = ABH["%s::Script" % (pkg)]
1458 return any_auto and all_auto
1460 def do_autobyhand (summary, short_summary):
1461 print "Attempting AUTOBYHAND."
1463 for file in files.keys():
1465 if not files[file].has_key("byhand"):
1467 if not files[file].has_key("byhand-script"):
1471 os.system("ls -l %s" % byhandfile)
1472 result = os.system("%s %s %s %s %s" % (
1473 files[file]["byhand-script"], byhandfile,
1474 changes["version"], files[file]["byhand-arch"],
1475 os.path.abspath(pkg.changes_file)))
1477 os.unlink(byhandfile)
1480 print "Error processing %s, left as byhand." % (file)
1484 do_byhand(summary, short_summary)
1486 accept(summary, short_summary)
1488 ################################################################################
1491 for file in files.keys():
1492 if files[file].has_key("byhand"):
1496 def do_byhand (summary, short_summary):
1497 print "Moving to BYHAND holding area."
1498 Logger.log(["Moving to byhand", pkg.changes_file])
1500 Upload.dump_vars(Cnf["Dir::Queue::Byhand"])
1501 move_to_dir(Cnf["Dir::Queue::Byhand"])
1503 # Check for override disparities
1504 Upload.Subst["__SUMMARY__"] = summary
1505 Upload.check_override()
1507 ################################################################################
1510 for file in files.keys():
1511 if files[file].has_key("new"):
1515 def acknowledge_new (summary, short_summary):
1516 Subst = Upload.Subst
1518 print "Moving to NEW holding area."
1519 Logger.log(["Moving to new", pkg.changes_file])
1521 Upload.dump_vars(Cnf["Dir::Queue::New"])
1522 move_to_dir(Cnf["Dir::Queue::New"])
1524 if not Options["No-Mail"]:
1525 print "Sending new ack."
1526 Subst["__SUMMARY__"] = summary
1527 new_ack_message = daklib.utils.TemplateSubst(Subst,Cnf["Dir::Templates"]+"/process-unchecked.new")
1528 daklib.utils.send_mail(new_ack_message)
1530 ################################################################################
1532 # reprocess is necessary for the case of foo_1.2-1 and foo_1.2-2 in
1533 # Incoming. -1 will reference the .orig.tar.gz, but -2 will not.
1534 # Upload.check_dsc_against_db() can find the .orig.tar.gz but it will
1535 # not have processed it during it's checks of -2. If -1 has been
1536 # deleted or otherwise not checked by 'dak process-unchecked', the
1537 # .orig.tar.gz will not have been checked at all. To get round this,
1538 # we force the .orig.tar.gz into the .changes structure and reprocess
1539 # the .changes file.
1541 def process_it (changes_file):
1542 global reprocess, reject_message
1544 # Reset some globals
1547 # Some defaults in case we can't fully process the .changes file
1548 changes["maintainer2047"] = Cnf["Dinstall::MyEmailAddress"]
1549 changes["changedby2047"] = Cnf["Dinstall::MyEmailAddress"]
1552 # Absolutize the filename to avoid the requirement of being in the
1553 # same directory as the .changes file.
1554 pkg.changes_file = os.path.abspath(changes_file)
1556 # Remember where we are so we can come back after cd-ing into the
1557 # holding directory.
1558 pkg.directory = os.getcwd()
1561 # If this is the Real Thing(tm), copy things into a private
1562 # holding directory first to avoid replacable file races.
1563 if not Options["No-Action"]:
1564 os.chdir(Cnf["Dir::Queue::Holding"])
1565 copy_to_holding(pkg.changes_file)
1566 # Relativize the filename so we use the copy in holding
1567 # rather than the original...
1568 pkg.changes_file = os.path.basename(pkg.changes_file)
1569 changes["fingerprint"] = daklib.utils.check_signature(pkg.changes_file, reject)
1570 if changes["fingerprint"]:
1571 valid_changes_p = check_changes()
1576 check_distributions()
1578 valid_dsc_p = check_dsc()
1584 check_signed_by_key()
1585 Upload.update_subst(reject_message)
1591 traceback.print_exc(file=sys.stderr)
1594 # Restore previous WD
1595 os.chdir(pkg.directory)
1597 ###############################################################################
1600 global Cnf, Options, Logger
1602 changes_files = init()
1604 # -n/--dry-run invalidates some other options which would involve things happening
1605 if Options["No-Action"]:
1606 Options["Automatic"] = ""
1608 # Ensure all the arguments we were given are .changes files
1609 for file in changes_files:
1610 if not file.endswith(".changes"):
1611 daklib.utils.warn("Ignoring '%s' because it's not a .changes file." % (file))
1612 changes_files.remove(file)
1614 if changes_files == []:
1615 daklib.utils.fubar("Need at least one .changes file as an argument.")
1617 # Check that we aren't going to clash with the daily cron job
1619 if not Options["No-Action"] and os.path.exists("%s/daily.lock" % (Cnf["Dir::Lock"])) and not Options["No-Lock"]:
1620 daklib.utils.fubar("Archive maintenance in progress. Try again later.")
1622 # Obtain lock if not in no-action mode and initialize the log
1624 if not Options["No-Action"]:
1625 lock_fd = os.open(Cnf["Dinstall::LockFile"], os.O_RDWR | os.O_CREAT)
1627 fcntl.lockf(lock_fd, fcntl.LOCK_EX | fcntl.LOCK_NB)
1629 if errno.errorcode[e.errno] == 'EACCES' or errno.errorcode[e.errno] == 'EAGAIN':
1630 daklib.utils.fubar("Couldn't obtain lock; assuming another 'dak process-unchecked' is already running.")
1633 Logger = Upload.Logger = daklib.logging.Logger(Cnf, "process-unchecked")
1635 # debian-{devel-,}-changes@lists.debian.org toggles writes access based on this header
1636 bcc = "X-DAK: dak process-unchecked\nX-Katie: $Revision: 1.65 $"
1637 if Cnf.has_key("Dinstall::Bcc"):
1638 Upload.Subst["__BCC__"] = bcc + "\nBcc: %s" % (Cnf["Dinstall::Bcc"])
1640 Upload.Subst["__BCC__"] = bcc
1643 # Sort the .changes files so that we process sourceful ones first
1644 changes_files.sort(daklib.utils.changes_compare)
1646 # Process the changes files
1647 for changes_file in changes_files:
1648 print "\n" + changes_file
1650 process_it (changes_file)
1652 if not Options["No-Action"]:
1655 accept_count = Upload.accept_count
1656 accept_bytes = Upload.accept_bytes
1659 if accept_count > 1:
1661 print "Accepted %d package %s, %s." % (accept_count, sets, daklib.utils.size_type(int(accept_bytes)))
1662 Logger.log(["total",accept_count,accept_bytes])
1664 if not Options["No-Action"]:
1667 ################################################################################
1669 if __name__ == '__main__':