#include <sys/stat.h>

#include <sys/types.h>

#include <archive.h>

#include <archive_entry.h>

#include <fts.h>

#include <sqlite3.h>

#include <string.h>

#include <unistd.h>

load_rsa_private_key(char *rsa_key_path, pem_password_cb *password_cb)

{

	FILE *fp;

	RSA *rsa = NULL;

	if ((fp = fopen(rsa_key_path, "r")) == 0)

		return (NULL);

	if ((rsa = RSA_new()) == NULL) {

		fclose(fp);

		return (NULL);

	}

	if ((rsa = PEM_read_RSAPrivateKey(fp, 0, password_cb, rsa_key_path)) == NULL) {

		fclose(fp);

		return (NULL);

	}

	fclose(fp);

	return (rsa);

}

static RSA *

int

pkg_create_repo(char *path, void (progress)(struct pkg *pkg, void *data), void *data)

{

	FTS *fts = NULL;

	FTSENT *ent = NULL;

	struct stat st;

	struct pkg *pkg = NULL;

	struct pkg_dep *dep = NULL;

	struct pkg_category *category = NULL;

	struct pkg_license *license = NULL;

	char *ext = NULL;

	sqlite3 *sqlite = NULL;

	sqlite3_stmt *stmt_deps = NULL;

	sqlite3_stmt *stmt_pkg = NULL;

	sqlite3_stmt *stmt_lic1 = NULL;

	sqlite3_stmt *stmt_lic2 = NULL;

	sqlite3_stmt *stmt_cat1 = NULL;

	sqlite3_stmt *stmt_cat2 = NULL;

	int64_t package_id;

	char *errmsg = NULL;

	int retcode = EPKG_OK;

	char *pkg_path;

	char cksum[65];

	char *repopath[2];

	char repodb[MAXPATHLEN];

	const char initsql[] = ""

		"CREATE TABLE packages ("

			"id INTEGER PRIMARY KEY,"

			"origin TEXT UNIQUE,"

			"name TEXT NOT NULL,"

			"version TEXT NOT NULL,"

			"comment TEXT NOT NULL,"

			"desc TEXT NOT NULL,"

			"arch TEXT NOT NULL,"

			"osversion TEXT NOT NULL,"

			"maintainer TEXT NOT NULL,"

			"www TEXT,"

			"prefix TEXT NOT NULL,"

			"pkgsize INTEGER NOT NULL,"

			"flatsize INTEGER NOT NULL,"

			"licenselogic INTEGER NOT NULL,"

			"cksum TEXT NOT NULL,"

			"path TEXT NOT NULL," /* relative path to the package in the repository */

			"pkg_format_version INTEGER"

		");"

		"CREATE TABLE deps ("

			"origin TEXT,"

			"name TEXT,"

			"version TEXT,"

			"package_id INTEGER REFERENCES packages(id),"

			"UNIQUE(package_id, origin)"

		");"

		"CREATE TABLE categories ("

			"id INTEGER PRIMARY KEY, "

			"name TEXT NOT NULL UNIQUE "

		");"

		"CREATE TABLE pkg_categories ("

			"package_id INTEGER REFERENCES packages(id), "

			"category_id INTEGER REFERENCES categories(id), "

			"UNIQUE(package_id, category_id)"

		");"

		"CREATE TABLE licenses ("

			"id INTEGER PRIMARY KEY,"

			"name TEXT NOT NULL UNIQUE"

		");"

		"CREATE TABLE pkg_licenses ("

			"package_id INTEGER REFERENCES packages(id), "

			"license_id INTEGER REFERENCES licenses(id), "

			"UNIQUE(package_id, license_id)"

		");"

		"PRAGMA user_version=1;"

		;

	const char pkgsql[] = ""

		"INSERT INTO packages ("

				"origin, name, version, comment, desc, arch, osversion, "

				"maintainer, www, prefix, pkgsize, flatsize, licenselogic, cksum, path"

		")"

		"VALUES (?1, ?2, ?3, ?4, ?5, ?6, ?7, ?8, ?9, ?10, ?11, ?12, ?13, ?14, ?15);";

	const char depssql[] = ""

		"INSERT INTO deps (origin, name, version, package_id) "

		"VALUES (?1, ?2, ?3, ?4);";

	const char licsql[] = "INSERT OR IGNORE INTO licenses(name) VALUES(?1);";

	const char addlicsql[] = "INSERT OR ROLLBACK INTO pkg_licenses(package_id, license_id) "

		"VALUES (?1, (SELECT id FROM licenses WHERE name = ?2));";

	const char catsql[] = "INSERT OR IGNORE INTO categories(name) VALUES(?1);";

	const char addcatsql[] = "INSERT OR ROLLBACK INTO pkg_categories(package_id, category_id) "

		"VALUES (?1, (SELECT id FROM categories WHERE name = ?2));";

	if (!is_dir(path)) {

		EMIT_PKG_ERROR("%s is not a directory", path);

		return EPKG_FATAL;

	}

	repopath[0] = path;

	repopath[1] = NULL;

	snprintf(repodb, MAXPATHLEN, "%s/repo.sqlite", path);

	if (stat(repodb, &st) != -1)

		if (unlink(repodb) != 0) {

			EMIT_ERRNO("unlink", path);

			return EPKG_FATAL;

		}

	sqlite3_initialize();

	if (sqlite3_open(repodb, &sqlite) != SQLITE_OK) {

		sqlite3_shutdown();

		return (EPKG_FATAL);

	}

	if (sqlite3_exec(sqlite, initsql, NULL, NULL, &errmsg) != SQLITE_OK) {

		EMIT_PKG_ERROR("sqlite: %s", errmsg);

		retcode = EPKG_FATAL;

		goto cleanup;

	}

	if (sqlite3_exec(sqlite, "BEGIN TRANSACTION;", NULL, NULL, &errmsg) !=

		SQLITE_OK) {

		EMIT_PKG_ERROR("sqlite: %s", errmsg);

		retcode = EPKG_FATAL;

		goto cleanup;

	}

	if (sqlite3_prepare_v2(sqlite, pkgsql, -1, &stmt_pkg, NULL) != SQLITE_OK) {

		ERROR_SQLITE(sqlite);

		retcode = EPKG_FATAL;

		goto cleanup;

	}

	if (sqlite3_prepare_v2(sqlite, depssql, -1, &stmt_deps, NULL) != SQLITE_OK) {

		ERROR_SQLITE(sqlite);

		retcode = EPKG_FATAL;

		goto cleanup;

	}

	if (sqlite3_prepare_v2(sqlite, licsql, -1, &stmt_lic1, NULL) != SQLITE_OK) {

		ERROR_SQLITE(sqlite);

		retcode = EPKG_FATAL;

		goto cleanup;

	}

	if (sqlite3_prepare_v2(sqlite, addlicsql, -1, &stmt_lic2, NULL) != SQLITE_OK) {

		ERROR_SQLITE(sqlite);

		retcode = EPKG_FATAL;

		goto cleanup;

	}

	if ((fts = fts_open(repopath, FTS_PHYSICAL, NULL)) == NULL) {

		EMIT_ERRNO("fts_open", path);

		retcode = EPKG_FATAL;

		goto cleanup;

	}

	if (sqlite3_prepare_v2(sqlite, catsql, -1, &stmt_cat1, NULL) != SQLITE_OK) {

		ERROR_SQLITE(sqlite);

		retcode = EPKG_FATAL;

		goto cleanup;

	}

	if (sqlite3_prepare_v2(sqlite, addcatsql, -1, &stmt_cat2, NULL) != SQLITE_OK) {

		ERROR_SQLITE(sqlite);

		retcode = EPKG_FATAL;

		goto cleanup;

	}

	while ((ent = fts_read(fts)) != NULL) {

		cksum[0] = '\0';

		/* skip everything that is not a file */

		if (ent->fts_info != FTS_F)

			continue;

		ext = strrchr(ent->fts_name, '.');

		if (ext == NULL)

			continue;

		if (strcmp(ext, ".tgz") != 0 &&

				strcmp(ext, ".tbz") != 0 &&

				strcmp(ext, ".txz") != 0 &&

				strcmp(ext, ".tar") != 0)

			continue;

		pkg_path = ent->fts_path;

		pkg_path += strlen(path);

		while (pkg_path[0] == '/' )

			pkg_path++;

		if (pkg_open(&pkg, ent->fts_accpath) != EPKG_OK) {

			retcode = EPKG_WARN;

			continue;

		}

		if (progress != NULL)

			progress(pkg, data);

		sqlite3_bind_text(stmt_pkg, 1, pkg_get(pkg, PKG_ORIGIN), -1, SQLITE_STATIC);

		sqlite3_bind_text(stmt_pkg, 2, pkg_get(pkg, PKG_NAME), -1, SQLITE_STATIC);

		sqlite3_bind_text(stmt_pkg, 3, pkg_get(pkg, PKG_VERSION), -1, SQLITE_STATIC);

		sqlite3_bind_text(stmt_pkg, 4, pkg_get(pkg, PKG_COMMENT), -1, SQLITE_STATIC);

		sqlite3_bind_text(stmt_pkg, 5, pkg_get(pkg, PKG_DESC), -1, SQLITE_STATIC);

		sqlite3_bind_text(stmt_pkg, 6, pkg_get(pkg, PKG_ARCH), -1, SQLITE_STATIC);

		sqlite3_bind_text(stmt_pkg, 7, pkg_get(pkg, PKG_OSVERSION), -1, SQLITE_STATIC);

		sqlite3_bind_text(stmt_pkg, 8, pkg_get(pkg, PKG_MAINTAINER), -1, SQLITE_STATIC);

		sqlite3_bind_text(stmt_pkg, 9, pkg_get(pkg, PKG_WWW), -1, SQLITE_STATIC);

		sqlite3_bind_text(stmt_pkg, 10, pkg_get(pkg, PKG_PREFIX), -1, SQLITE_STATIC);

		sqlite3_bind_int64(stmt_pkg, 11, ent->fts_statp->st_size);

		sqlite3_bind_int64(stmt_pkg, 12, pkg_flatsize(pkg));

		sha256_file(ent->fts_accpath, cksum);

		sqlite3_bind_int64(stmt_pkg, 13, pkg_licenselogic(pkg));

		sqlite3_bind_text(stmt_pkg, 14, cksum, -1, SQLITE_STATIC);

		sqlite3_bind_text(stmt_pkg, 15, pkg_path, -1, SQLITE_STATIC);

		if (sqlite3_step(stmt_pkg) != SQLITE_DONE) {

			ERROR_SQLITE(sqlite);

			retcode = EPKG_FATAL;

			goto cleanup;

		}

		sqlite3_reset(stmt_pkg);

		package_id = sqlite3_last_insert_rowid(sqlite);

		dep = NULL;

		while (pkg_deps(pkg, &dep) == EPKG_OK) {

			sqlite3_bind_text(stmt_deps, 1, pkg_dep_origin(dep), -1, SQLITE_STATIC);

			sqlite3_bind_text(stmt_deps, 2, pkg_dep_name(dep), -1, SQLITE_STATIC);

			sqlite3_bind_text(stmt_deps, 3, pkg_dep_version(dep), -1, SQLITE_STATIC);

			sqlite3_bind_int64(stmt_deps, 4, package_id);

			if (sqlite3_step(stmt_deps) != SQLITE_DONE) {

				ERROR_SQLITE(sqlite);

				retcode = EPKG_FATAL;

				goto cleanup;

			}

			sqlite3_reset(stmt_deps);

		}

		category = NULL;

		while (pkg_categories(pkg, &category) == EPKG_OK) {

			sqlite3_bind_text(stmt_cat1, 1, pkg_category_name(category), -1, SQLITE_STATIC);

			sqlite3_bind_int64(stmt_cat2, 1, package_id);

			sqlite3_bind_text(stmt_cat2, 2, pkg_category_name(category), -1, SQLITE_STATIC);

			if (sqlite3_step(stmt_cat1) != SQLITE_DONE) {

				ERROR_SQLITE(sqlite);

				retcode = EPKG_FATAL;

				goto cleanup;

			}

			if (sqlite3_step(stmt_cat2) != SQLITE_DONE) {

				ERROR_SQLITE(sqlite);

				retcode = EPKG_FATAL;

				goto cleanup;

			}

			sqlite3_reset(stmt_cat1);

			sqlite3_reset(stmt_cat2);

		}

		license = NULL;

		while (pkg_licenses(pkg, &license) == EPKG_OK) {

			sqlite3_bind_text(stmt_lic1, 1, pkg_license_name(license), -1, SQLITE_STATIC);

			sqlite3_bind_int64(stmt_lic2, 1, package_id);

			sqlite3_bind_text(stmt_lic2, 2, pkg_license_name(license), -1, SQLITE_STATIC);

			if (sqlite3_step(stmt_lic1) != SQLITE_DONE) {

				ERROR_SQLITE(sqlite);

				retcode = EPKG_FATAL;

				goto cleanup;

			}

			if (sqlite3_step(stmt_lic2) != SQLITE_DONE) {

				ERROR_SQLITE(sqlite);

				retcode = EPKG_FATAL;

				goto cleanup;

			}

			sqlite3_reset(stmt_lic1);

			sqlite3_reset(stmt_lic2);

		}

	}

	if (sqlite3_exec(sqlite, "COMMIT;", NULL, NULL, &errmsg) != SQLITE_OK) {

		EMIT_PKG_ERROR("sqlite: %s", errmsg);

		retcode = EPKG_FATAL;

	}

	cleanup:

	if (fts != NULL)

		fts_close(fts);

	if (pkg != NULL)

		pkg_free(pkg);

	if (stmt_pkg != NULL)

		sqlite3_finalize(stmt_pkg);

	if (stmt_deps != NULL)

		sqlite3_finalize(stmt_deps);

	if (stmt_cat1 != NULL)

		sqlite3_finalize(stmt_cat1);

	if (stmt_cat2 != NULL)

		sqlite3_finalize(stmt_cat2);

	if (stmt_lic1 != NULL)

		sqlite3_finalize(stmt_lic1);

	if (stmt_lic2 != NULL)

		sqlite3_finalize(stmt_lic2);

	if (sqlite != NULL)

		sqlite3_close(sqlite);

	if (errmsg != NULL)

		sqlite3_free(errmsg);

	sqlite3_shutdown();

	return (retcode);

}

int

pkg_finish_repo(char *path, pem_password_cb *password_cb, char *rsa_key_path)

{

	char repo_path[MAXPATHLEN];

	char repo_archive[MAXPATHLEN];

	struct packing *pack;

	int max_len = 0;

	unsigned char *sigret = NULL;

	int siglen = 0;

	RSA *rsa = NULL;

	char sha256[65];

	snprintf(repo_path, MAXPATHLEN, "%s/repo.sqlite", path);

	snprintf(repo_archive, MAXPATHLEN, "%s/repo", path);

	packing_init(&pack, repo_archive, TXZ);

	if (rsa_key_path != NULL) {

		if (access(rsa_key_path, R_OK) == -1) {

			EMIT_ERRNO("access", rsa_key_path);

			return EPKG_FATAL;

		}

		SSL_load_error_strings();

		OpenSSL_add_all_algorithms();

		OpenSSL_add_all_ciphers();

		rsa = load_rsa_private_key(rsa_key_path, password_cb);

		max_len = RSA_size(rsa);

		sigret = malloc(max_len + 1);

		memset(sigret, 0, max_len);

		sha256_file(repo_path, sha256);

		if (RSA_sign(NID_sha1, sha256, 65, sigret, &siglen, rsa) == 0) {

			/* XXX pass back RSA errors correctly */

			EMIT_PKG_ERROR("%s: %lu", rsa_key_path, ERR_get_error());

			return EPKG_FATAL;

		}

		packing_append_buffer(pack, sigret, "signature", siglen + 1);

		free(sigret);

		RSA_free(rsa);

		ERR_free_strings();

	}

	packing_append_file(pack, repo_path, "repo.sqlite");

	packing_finish(pack);

	return (EPKG_OK);

}