pkg-proxy/internal/handler/debian.go

package handler

import (
	"fmt"
	"net/http"
	"regexp"
	"strings"
)

const (
	debianUpstream = "http://deb.debian.org/debian"
	debMatchCount  = 4 // full match + name + version + arch
)

// DebianHandler handles APT/Debian repository protocol requests.
// It proxies requests to upstream Debian/Ubuntu repositories and caches .deb packages.
type DebianHandler struct {
	proxy       *Proxy
	upstreamURL string
	proxyURL    string
}

// NewDebianHandler creates a new Debian/APT protocol handler.
func NewDebianHandler(proxy *Proxy, proxyURL string) *DebianHandler {
	return &DebianHandler{
		proxy:       proxy,
		upstreamURL: debianUpstream,
		proxyURL:    strings.TrimSuffix(proxyURL, "/"),
	}
}

// Routes returns the HTTP handler for Debian requests.
// Mount this at /debian on your router.
func (h *DebianHandler) Routes() http.Handler {
	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
		if r.Method != http.MethodGet && r.Method != http.MethodHead {
			http.Error(w, "method not allowed", http.StatusMethodNotAllowed)
			return
		}

		path := strings.TrimPrefix(r.URL.Path, "/")

		if containsPathTraversal(path) {
			http.Error(w, "invalid path", http.StatusBadRequest)
			return
		}

		// Route based on path type
		switch {
		case strings.HasPrefix(path, "pool/"):
			// Package downloads - cache these
			h.handlePackageDownload(w, r, path)
		case strings.HasPrefix(path, "dists/"):
			// Repository metadata - proxy without caching (changes frequently)
			h.handleMetadata(w, r, path)
		default:
			// Other files (like README, etc.) - proxy directly
			h.proxyFile(w, r, path)
		}
	})
}

// handlePackageDownload fetches and caches .deb packages from the pool.
// Pool path format: pool/{component}/{prefix}/{name}/{filename}
// Example: pool/main/n/nginx/nginx_1.18.0-6_amd64.deb
func (h *DebianHandler) handlePackageDownload(w http.ResponseWriter, r *http.Request, path string) {
	// Parse the path to extract package info
	name, version, arch := h.parsePoolPath(path)
	if name == "" {
		// Can't parse, just proxy directly
		h.proxyFile(w, r, path)
		return
	}

	filename := path[strings.LastIndex(path, "/")+1:]
	downloadURL := fmt.Sprintf("%s/%s", h.upstreamURL, path)

	h.proxy.Logger.Info("debian package download",
		"name", name, "version", version, "arch", arch, "filename", filename)

	result, err := h.proxy.GetOrFetchArtifactFromURL(
		r.Context(), "deb", name, version, filename, downloadURL)
	if err != nil {
		h.proxy.Logger.Error("failed to get debian package", "error", err)
		http.Error(w, "failed to fetch package", http.StatusBadGateway)
		return
	}

	w.Header().Set("Content-Type", "application/vnd.debian.binary-package")
	ServeArtifact(w, result)
}

// handleMetadata proxies repository metadata files.
// These change frequently so we don't cache them.
func (h *DebianHandler) handleMetadata(w http.ResponseWriter, r *http.Request, path string) {
	cacheKey := strings.ReplaceAll(path, "/", "_")
	h.proxy.ProxyCached(w, r, fmt.Sprintf("%s/%s", h.upstreamURL, path), "debian", cacheKey, "*/*")
}

// proxyFile proxies any file directly without caching.
func (h *DebianHandler) proxyFile(w http.ResponseWriter, r *http.Request, path string) {
	h.proxy.ProxyFile(w, r, fmt.Sprintf("%s/%s", h.upstreamURL, path))
}

// debPackagePattern matches .deb filenames to extract name, version, and arch.
// Format: {name}_{version}_{arch}.deb
var debPackagePattern = regexp.MustCompile(`^(.+)_([^_]+)_([^_]+)\.deb$`)

// parsePoolPath extracts package info from a pool path.
// Example: pool/main/n/nginx/nginx_1.18.0-6_amd64.deb
func (h *DebianHandler) parsePoolPath(path string) (name, version, arch string) {
	// Get the filename
	idx := strings.LastIndex(path, "/")
	if idx < 0 {
		return "", "", ""
	}
	filename := path[idx+1:]

	// Parse the filename
	matches := debPackagePattern.FindStringSubmatch(filename)
	if len(matches) != debMatchCount {
		return "", "", ""
	}

	return matches[1], matches[2], matches[3]
}
Add Container, Debian, RPM handlers and enrichment API Adds proxy support for Docker/OCI container registries, Debian/APT repositories, and RPM/Yum repositories. Includes a new enrichment API for package metadata, vulnerability scanning, and outdated detection. Updates the dashboard with Tailwind CSS, dark mode support, and a security overview section showing vulnerability counts. 2026-01-29 19:35:15 +00:00			`package handler`

			`import (`
			`"fmt"`
			`"net/http"`
			`"regexp"`
			`"strings"`
			`)`

			`const (`
			`debianUpstream = "http://deb.debian.org/debian"`
Fix all golangci-lint issues across the codebase (#32) * Fix all golangci-lint issues across the codebase Resolve 77 lint issues reported by golangci-lint with gocritic, gocognit, gocyclo, maintidx, dupl, mnd, unparam, ireturn, goconst, and errcheck enabled. Net reduction of ~175 lines through shared helpers and deduplication. * Suppress staticcheck SA1019 for intentional deprecated field usage The Storage.Path field is deprecated but still read for backwards compatibility with existing configs that haven't migrated to the URL field. 2026-03-18 10:59:29 +00:00			`debMatchCount = 4 // full match + name + version + arch`
Add Container, Debian, RPM handlers and enrichment API Adds proxy support for Docker/OCI container registries, Debian/APT repositories, and RPM/Yum repositories. Includes a new enrichment API for package metadata, vulnerability scanning, and outdated detection. Updates the dashboard with Tailwind CSS, dark mode support, and a security overview section showing vulnerability counts. 2026-01-29 19:35:15 +00:00			`)`

			`// DebianHandler handles APT/Debian repository protocol requests.`
			`// It proxies requests to upstream Debian/Ubuntu repositories and caches .deb packages.`
			`type DebianHandler struct {`
			`proxy *Proxy`
			`upstreamURL string`
			`proxyURL string`
			`}`

			`// NewDebianHandler creates a new Debian/APT protocol handler.`
			`func NewDebianHandler(proxy Proxy, proxyURL string) DebianHandler {`
			`return &DebianHandler{`
			`proxy: proxy,`
			`upstreamURL: debianUpstream,`
			`proxyURL: strings.TrimSuffix(proxyURL, "/"),`
			`}`
			`}`

			`// Routes returns the HTTP handler for Debian requests.`
			`// Mount this at /debian on your router.`
			`func (h *DebianHandler) Routes() http.Handler {`
			`return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {`
			`if r.Method != http.MethodGet && r.Method != http.MethodHead {`
			`http.Error(w, "method not allowed", http.StatusMethodNotAllowed)`
			`return`
			`}`

			`path := strings.TrimPrefix(r.URL.Path, "/")`

Reject path traversal in debian and rpm handlers The debian and rpm handlers take the request path and pass it directly to the upstream URL without checking for ".." segments. This could let a client craft a request that reaches unintended upstream paths. Add a containsPathTraversal check at the entry point of both handlers and return 400 for any path containing ".." segments. 2026-03-12 12:05:52 +00:00			`if containsPathTraversal(path) {`
			`http.Error(w, "invalid path", http.StatusBadRequest)`
			`return`
			`}`

Add Container, Debian, RPM handlers and enrichment API Adds proxy support for Docker/OCI container registries, Debian/APT repositories, and RPM/Yum repositories. Includes a new enrichment API for package metadata, vulnerability scanning, and outdated detection. Updates the dashboard with Tailwind CSS, dark mode support, and a security overview section showing vulnerability counts. 2026-01-29 19:35:15 +00:00			`// Route based on path type`
			`switch {`
			`case strings.HasPrefix(path, "pool/"):`
			`// Package downloads - cache these`
			`h.handlePackageDownload(w, r, path)`
			`case strings.HasPrefix(path, "dists/"):`
			`// Repository metadata - proxy without caching (changes frequently)`
			`h.handleMetadata(w, r, path)`
			`default:`
			`// Other files (like README, etc.) - proxy directly`
			`h.proxyFile(w, r, path)`
			`}`
			`})`
			`}`

			`// handlePackageDownload fetches and caches .deb packages from the pool.`
			`// Pool path format: pool/{component}/{prefix}/{name}/{filename}`
			`// Example: pool/main/n/nginx/nginx_1.18.0-6_amd64.deb`
			`func (h DebianHandler) handlePackageDownload(w http.ResponseWriter, r http.Request, path string) {`
			`// Parse the path to extract package info`
			`name, version, arch := h.parsePoolPath(path)`
			`if name == "" {`
			`// Can't parse, just proxy directly`
			`h.proxyFile(w, r, path)`
			`return`
			`}`

			`filename := path[strings.LastIndex(path, "/")+1:]`
			`downloadURL := fmt.Sprintf("%s/%s", h.upstreamURL, path)`

			`h.proxy.Logger.Info("debian package download",`
			`"name", name, "version", version, "arch", arch, "filename", filename)`

			`result, err := h.proxy.GetOrFetchArtifactFromURL(`
			`r.Context(), "deb", name, version, filename, downloadURL)`
			`if err != nil {`
			`h.proxy.Logger.Error("failed to get debian package", "error", err)`
			`http.Error(w, "failed to fetch package", http.StatusBadGateway)`
			`return`
			`}`

			`w.Header().Set("Content-Type", "application/vnd.debian.binary-package")`
			`ServeArtifact(w, result)`
			`}`

			`// handleMetadata proxies repository metadata files.`
			`// These change frequently so we don't cache them.`
			`func (h DebianHandler) handleMetadata(w http.ResponseWriter, r http.Request, path string) {`
Add mirror command and API for selective package mirroring Add a `proxy mirror` CLI command and `/api/mirror` API endpoints that pre-populate the cache from various input sources: individual PURLs, SBOM files (CycloneDX and SPDX), or full registry enumeration. The mirror reuses the existing handler.Proxy.GetOrFetchArtifact() pipeline so cached artifacts are identical to those fetched on demand. A bounded worker pool controls download parallelism. Metadata caching is opt-in via `cache_metadata: true` in config (or PROXY_CACHE_METADATA=true). The mirror command always enables it. When enabled, upstream metadata responses are stored for offline fallback with ETag-based conditional revalidation. New internal/mirror package with Source interface, PURLSource, SBOMSource, RegistrySource, and async JobStore. New metadata_cache database table for offline metadata serving. 2026-03-19 21:06:02 +00:00			`cacheKey := strings.ReplaceAll(path, "/", "_")`
Fix review issues in mirror feature - Fix race where runJob could overwrite canceled state set by Cancel() - Fix Debian ecosystem name inconsistency ("deb" -> "debian") - Stream metadata responses when caching is disabled to avoid buffering - Add metadata_cache table to initial schema strings for consistency - Gate mirror API behind mirror_api config flag (disabled by default) - Fix goconst lint in metadata_cache_test.go 2026-04-01 16:14:07 +01:00			`h.proxy.ProxyCached(w, r, fmt.Sprintf("%s/%s", h.upstreamURL, path), "debian", cacheKey, "/")`
Add Container, Debian, RPM handlers and enrichment API Adds proxy support for Docker/OCI container registries, Debian/APT repositories, and RPM/Yum repositories. Includes a new enrichment API for package metadata, vulnerability scanning, and outdated detection. Updates the dashboard with Tailwind CSS, dark mode support, and a security overview section showing vulnerability counts. 2026-01-29 19:35:15 +00:00			`}`

			`// proxyFile proxies any file directly without caching.`
			`func (h DebianHandler) proxyFile(w http.ResponseWriter, r http.Request, path string) {`
Fix all golangci-lint issues across the codebase (#32) * Fix all golangci-lint issues across the codebase Resolve 77 lint issues reported by golangci-lint with gocritic, gocognit, gocyclo, maintidx, dupl, mnd, unparam, ireturn, goconst, and errcheck enabled. Net reduction of ~175 lines through shared helpers and deduplication. * Suppress staticcheck SA1019 for intentional deprecated field usage The Storage.Path field is deprecated but still read for backwards compatibility with existing configs that haven't migrated to the URL field. 2026-03-18 10:59:29 +00:00			`h.proxy.ProxyFile(w, r, fmt.Sprintf("%s/%s", h.upstreamURL, path))`
Add Container, Debian, RPM handlers and enrichment API Adds proxy support for Docker/OCI container registries, Debian/APT repositories, and RPM/Yum repositories. Includes a new enrichment API for package metadata, vulnerability scanning, and outdated detection. Updates the dashboard with Tailwind CSS, dark mode support, and a security overview section showing vulnerability counts. 2026-01-29 19:35:15 +00:00			`}`

			`// debPackagePattern matches .deb filenames to extract name, version, and arch.`
			`// Format: {name}_{version}_{arch}.deb`
			var debPackagePattern = regexp.MustCompile(`^(.+)_([^_]+)_([^_]+)\.deb$`)

			`// parsePoolPath extracts package info from a pool path.`
			`// Example: pool/main/n/nginx/nginx_1.18.0-6_amd64.deb`
			`func (h *DebianHandler) parsePoolPath(path string) (name, version, arch string) {`
			`// Get the filename`
			`idx := strings.LastIndex(path, "/")`
			`if idx < 0 {`
			`return "", "", ""`
			`}`
			`filename := path[idx+1:]`

			`// Parse the filename`
			`matches := debPackagePattern.FindStringSubmatch(filename)`
Fix all golangci-lint issues across the codebase (#32) * Fix all golangci-lint issues across the codebase Resolve 77 lint issues reported by golangci-lint with gocritic, gocognit, gocyclo, maintidx, dupl, mnd, unparam, ireturn, goconst, and errcheck enabled. Net reduction of ~175 lines through shared helpers and deduplication. * Suppress staticcheck SA1019 for intentional deprecated field usage The Storage.Path field is deprecated but still read for backwards compatibility with existing configs that haven't migrated to the URL field. 2026-03-18 10:59:29 +00:00			`if len(matches) != debMatchCount {`
Add Container, Debian, RPM handlers and enrichment API Adds proxy support for Docker/OCI container registries, Debian/APT repositories, and RPM/Yum repositories. Includes a new enrichment API for package metadata, vulnerability scanning, and outdated detection. Updates the dashboard with Tailwind CSS, dark mode support, and a security overview section showing vulnerability counts. 2026-01-29 19:35:15 +00:00			`return "", "", ""`
			`}`

			`return matches[1], matches[2], matches[3]`
			`}`