4 files changed, 130 insertions, 0 deletions

diff --git a/modules/buildsystem/templates/maintdb/maintdb.bin b/modules/buildsystem/templates/maintdb/maintdb.bin
new file mode 100755
index 00000000..903ee009
--- /dev/null
+++ b/modules/buildsystem/templates/maintdb/maintdb.bin
@@ -0,0 +1,98 @@
+#!/bin/bash
+
+MAINTDBDIR="<%= scope.lookupvar('buildsystem::var::maintdb::dbdir') %>"
+
+function checkname()
+{
+    if [ -z "$1" ] ||
+        echo "$1" | grep -q '[/*{}%]' ||
+        echo "$1" | fgrep -q '..'
+    then
+        echo "Error: invalid package name." >&2
+        exit 1
+    fi
+}
+
+function maintnew()
+{
+    if [ "$user" != "root" ]; then
+        echo "Error: new is only allowed to root." >&2
+        exit 1
+    fi
+    checkname "$1"
+    maintfile="$MAINTDBDIR/$1"
+    if [ -f "$maintfile" ]; then
+        exit 0
+    fi
+    echo "$2" > "$maintfile"
+}
+
+function maintset()
+{
+    checkname "$1"
+    maintfile="$MAINTDBDIR/$1"
+    newmaint="$2"
+    if [ ! -f "$maintfile" ]; then
+        echo "Error: package $1 does not exist in maintdb." >&2
+        exit 1
+    fi
+    curmaint=$(cat "$maintfile")
+    if [ "$newmaint" = "nobody" ] || [[ "$newmaint" = *-team ]]; then
+        if [ "$curmaint" = "$user" ]; then
+            echo "$newmaint" > "$maintfile"
+            exit 0
+        else
+            echo "Error: cannot set maintainer for $1." >&2
+            exit 1
+        fi
+    elif [ "$newmaint" = "$user" ]; then
+        if [ "$curmaint" = "nobody" ] || [[ "$curmaint" = *-team ]]; then
+            echo "$newmaint" > "$maintfile"
+            exit 0
+        else
+            echo "Error: cannot set maintainer for $1." >&2
+            exit 1
+        fi
+    else
+        echo "Error: cannot set someone else as maintainer." >&2
+        exit 1
+    fi
+}
+
+function maintgetall()
+{
+    cd "$MAINTDBDIR"
+    for file in *; do
+        echo "$file $(cat $file)"
+    done
+    exit 0
+}
+
+function maintget()
+{
+    if [ -z "$1" ]; then
+        maintgetall
+    fi
+    checkname "$1"
+    maintfile="$MAINTDBDIR/$1"
+    if [ -f "$maintfile" ]; then
+        cat "$maintfile"
+    else
+        echo "Error: package $1 does not exist in maintdb." >&2
+        exit 1
+    fi
+}
+
+user="$1"
+action="$2"
+
+if [ "$action" = "new" ]; then
+    maintnew "$3" "$4"
+elif [ "$action" = "set" ]; then
+    maintset "$3" "$4"
+elif [ "$action" = "get" ]; then
+    maintget "$3"
+else
+    echo "Error: unknown command." >&2
+    exit 2
+fi
diff --git a/modules/buildsystem/templates/maintdb/sudoers.maintdb b/modules/buildsystem/templates/maintdb/sudoers.maintdb
new file mode 100644
index 00000000..91c88e47
--- /dev/null
+++ b/modules/buildsystem/templates/maintdb/sudoers.maintdb
@@ -0,0 +1,4 @@
+%<%= scope.lookupvar('buildsystem::var::groups::packagers') %>   ALL =(<%= scope.lookupvar('buildsystem::var::maintdb::login') %>) NOPASSWD: <%= scope.lookupvar('buildsystem::var::maintdb::binpath') %> [a-z]* get
+%<%= scope.lookupvar('buildsystem::var::groups::packagers') %>   ALL =(<%= scope.lookupvar('buildsystem::var::maintdb::login') %>) NOPASSWD: <%= scope.lookupvar('buildsystem::var::maintdb::binpath') %> [a-z]* [gs]et [a-zA-Z0-9]*
+%<%= scope.lookupvar('buildsystem::var::groups::packagers') %>   ALL =(<%= scope.lookupvar('buildsystem::var::maintdb::login') %>) NOPASSWD: <%= scope.lookupvar('buildsystem::var::maintdb::binpath') %> [a-z]* set [a-zA-Z0-9]* [a-z]*
+<%= scope.lookupvar('buildsystem::var::scheduler::login') %>    ALL =(<%= scope.lookupvar('buildsystem::var::maintdb::login') %>) NOPASSWD: <%= scope.lookupvar('buildsystem::var::maintdb::binpath') %> [a-z]* new [a-zA-Z0-9]* [a-z]*
diff --git a/modules/buildsystem/templates/maintdb/vhost_maintdb.conf b/modules/buildsystem/templates/maintdb/vhost_maintdb.conf
new file mode 100644
index 00000000..146413a7
--- /dev/null
+++ b/modules/buildsystem/templates/maintdb/vhost_maintdb.conf
@@ -0,0 +1,3 @@
+<Directory <%= scope.lookupvar('buildsystem::var::maintdb::dbdir') %>>
+  Options None
+</Directory>
diff --git a/modules/buildsystem/templates/maintdb/wrapper.maintdb b/modules/buildsystem/templates/maintdb/wrapper.maintdb
new file mode 100644
index 00000000..fcf69dab
--- /dev/null
+++ b/modules/buildsystem/templates/maintdb/wrapper.maintdb
@@ -0,0 +1,25 @@
+#!/bin/sh
+
+maintdbuser="<%= scope.lookupvar('buildsystem::var::maintdb::login') %>"
+maintdbpath="<%= scope.lookupvar('buildsystem::var::maintdb::binpath') %>"
+packagersgroup="<%= scope.lookupvar('buildsystem::var::groups::packagers') %>"
+
+function isingroup()
+{
+  grp="$1"
+  for group in `groups`
+  do if [ "$grp" = "$group" ]
+     then
+        return 0
+     fi
+  done
+  return 1
+}
+
+if ! isingroup "$packagersgroup"
+then
+   echo "You are not in $packagersgroup group."
+   exit 1
+fi
+
+sudo -u "$maintdbuser" "$maintdbpath" $(whoami) "$@"