http.con commit Merge branch 'jc/push-2.0-default-to-simple' (009055f)
   1#include "http.h"
   2#include "pack.h"
   3#include "sideband.h"
   4#include "run-command.h"
   5#include "url.h"
   6#include "urlmatch.h"
   7#include "credential.h"
   8#include "version.h"
   9#include "pkt-line.h"
  10
  11int active_requests;
  12int http_is_verbose;
  13size_t http_post_buffer = 16 * LARGE_PACKET_MAX;
  14
  15#if LIBCURL_VERSION_NUM >= 0x070a06
  16#define LIBCURL_CAN_HANDLE_AUTH_ANY
  17#endif
  18
  19static int min_curl_sessions = 1;
  20static int curl_session_count;
  21#ifdef USE_CURL_MULTI
  22static int max_requests = -1;
  23static CURLM *curlm;
  24#endif
  25#ifndef NO_CURL_EASY_DUPHANDLE
  26static CURL *curl_default;
  27#endif
  28
  29#define PREV_BUF_SIZE 4096
  30#define RANGE_HEADER_SIZE 30
  31
  32char curl_errorstr[CURL_ERROR_SIZE];
  33
  34static int curl_ssl_verify = -1;
  35static int curl_ssl_try;
  36static const char *ssl_cert;
  37#if LIBCURL_VERSION_NUM >= 0x070903
  38static const char *ssl_key;
  39#endif
  40#if LIBCURL_VERSION_NUM >= 0x070908
  41static const char *ssl_capath;
  42#endif
  43static const char *ssl_cainfo;
  44static long curl_low_speed_limit = -1;
  45static long curl_low_speed_time = -1;
  46static int curl_ftp_no_epsv;
  47static const char *curl_http_proxy;
  48static const char *curl_cookie_file;
  49static int curl_save_cookies;
  50struct credential http_auth = CREDENTIAL_INIT;
  51static int http_proactive_auth;
  52static const char *user_agent;
  53
  54#if LIBCURL_VERSION_NUM >= 0x071700
  55/* Use CURLOPT_KEYPASSWD as is */
  56#elif LIBCURL_VERSION_NUM >= 0x070903
  57#define CURLOPT_KEYPASSWD CURLOPT_SSLKEYPASSWD
  58#else
  59#define CURLOPT_KEYPASSWD CURLOPT_SSLCERTPASSWD
  60#endif
  61
  62static struct credential cert_auth = CREDENTIAL_INIT;
  63static int ssl_cert_password_required;
  64
  65static struct curl_slist *pragma_header;
  66static struct curl_slist *no_pragma_header;
  67
  68static struct active_request_slot *active_queue_head;
  69
  70size_t fread_buffer(char *ptr, size_t eltsize, size_t nmemb, void *buffer_)
  71{
  72        size_t size = eltsize * nmemb;
  73        struct buffer *buffer = buffer_;
  74
  75        if (size > buffer->buf.len - buffer->posn)
  76                size = buffer->buf.len - buffer->posn;
  77        memcpy(ptr, buffer->buf.buf + buffer->posn, size);
  78        buffer->posn += size;
  79
  80        return size;
  81}
  82
  83#ifndef NO_CURL_IOCTL
  84curlioerr ioctl_buffer(CURL *handle, int cmd, void *clientp)
  85{
  86        struct buffer *buffer = clientp;
  87
  88        switch (cmd) {
  89        case CURLIOCMD_NOP:
  90                return CURLIOE_OK;
  91
  92        case CURLIOCMD_RESTARTREAD:
  93                buffer->posn = 0;
  94                return CURLIOE_OK;
  95
  96        default:
  97                return CURLIOE_UNKNOWNCMD;
  98        }
  99}
 100#endif
 101
 102size_t fwrite_buffer(char *ptr, size_t eltsize, size_t nmemb, void *buffer_)
 103{
 104        size_t size = eltsize * nmemb;
 105        struct strbuf *buffer = buffer_;
 106
 107        strbuf_add(buffer, ptr, size);
 108        return size;
 109}
 110
 111size_t fwrite_null(char *ptr, size_t eltsize, size_t nmemb, void *strbuf)
 112{
 113        return eltsize * nmemb;
 114}
 115
 116#ifdef USE_CURL_MULTI
 117static void process_curl_messages(void)
 118{
 119        int num_messages;
 120        struct active_request_slot *slot;
 121        CURLMsg *curl_message = curl_multi_info_read(curlm, &num_messages);
 122
 123        while (curl_message != NULL) {
 124                if (curl_message->msg == CURLMSG_DONE) {
 125                        int curl_result = curl_message->data.result;
 126                        slot = active_queue_head;
 127                        while (slot != NULL &&
 128                               slot->curl != curl_message->easy_handle)
 129                                slot = slot->next;
 130                        if (slot != NULL) {
 131                                curl_multi_remove_handle(curlm, slot->curl);
 132                                slot->curl_result = curl_result;
 133                                finish_active_slot(slot);
 134                        } else {
 135                                fprintf(stderr, "Received DONE message for unknown request!\n");
 136                        }
 137                } else {
 138                        fprintf(stderr, "Unknown CURL message received: %d\n",
 139                                (int)curl_message->msg);
 140                }
 141                curl_message = curl_multi_info_read(curlm, &num_messages);
 142        }
 143}
 144#endif
 145
 146static int http_options(const char *var, const char *value, void *cb)
 147{
 148        if (!strcmp("http.sslverify", var)) {
 149                curl_ssl_verify = git_config_bool(var, value);
 150                return 0;
 151        }
 152        if (!strcmp("http.sslcert", var))
 153                return git_config_string(&ssl_cert, var, value);
 154#if LIBCURL_VERSION_NUM >= 0x070903
 155        if (!strcmp("http.sslkey", var))
 156                return git_config_string(&ssl_key, var, value);
 157#endif
 158#if LIBCURL_VERSION_NUM >= 0x070908
 159        if (!strcmp("http.sslcapath", var))
 160                return git_config_string(&ssl_capath, var, value);
 161#endif
 162        if (!strcmp("http.sslcainfo", var))
 163                return git_config_string(&ssl_cainfo, var, value);
 164        if (!strcmp("http.sslcertpasswordprotected", var)) {
 165                ssl_cert_password_required = git_config_bool(var, value);
 166                return 0;
 167        }
 168        if (!strcmp("http.ssltry", var)) {
 169                curl_ssl_try = git_config_bool(var, value);
 170                return 0;
 171        }
 172        if (!strcmp("http.minsessions", var)) {
 173                min_curl_sessions = git_config_int(var, value);
 174#ifndef USE_CURL_MULTI
 175                if (min_curl_sessions > 1)
 176                        min_curl_sessions = 1;
 177#endif
 178                return 0;
 179        }
 180#ifdef USE_CURL_MULTI
 181        if (!strcmp("http.maxrequests", var)) {
 182                max_requests = git_config_int(var, value);
 183                return 0;
 184        }
 185#endif
 186        if (!strcmp("http.lowspeedlimit", var)) {
 187                curl_low_speed_limit = (long)git_config_int(var, value);
 188                return 0;
 189        }
 190        if (!strcmp("http.lowspeedtime", var)) {
 191                curl_low_speed_time = (long)git_config_int(var, value);
 192                return 0;
 193        }
 194
 195        if (!strcmp("http.noepsv", var)) {
 196                curl_ftp_no_epsv = git_config_bool(var, value);
 197                return 0;
 198        }
 199        if (!strcmp("http.proxy", var))
 200                return git_config_string(&curl_http_proxy, var, value);
 201
 202        if (!strcmp("http.cookiefile", var))
 203                return git_config_string(&curl_cookie_file, var, value);
 204        if (!strcmp("http.savecookies", var)) {
 205                curl_save_cookies = git_config_bool(var, value);
 206                return 0;
 207        }
 208
 209        if (!strcmp("http.postbuffer", var)) {
 210                http_post_buffer = git_config_int(var, value);
 211                if (http_post_buffer < LARGE_PACKET_MAX)
 212                        http_post_buffer = LARGE_PACKET_MAX;
 213                return 0;
 214        }
 215
 216        if (!strcmp("http.useragent", var))
 217                return git_config_string(&user_agent, var, value);
 218
 219        /* Fall back on the default ones */
 220        return git_default_config(var, value, cb);
 221}
 222
 223static void init_curl_http_auth(CURL *result)
 224{
 225        if (!http_auth.username)
 226                return;
 227
 228        credential_fill(&http_auth);
 229
 230#if LIBCURL_VERSION_NUM >= 0x071301
 231        curl_easy_setopt(result, CURLOPT_USERNAME, http_auth.username);
 232        curl_easy_setopt(result, CURLOPT_PASSWORD, http_auth.password);
 233#else
 234        {
 235                static struct strbuf up = STRBUF_INIT;
 236                /*
 237                 * Note that we assume we only ever have a single set of
 238                 * credentials in a given program run, so we do not have
 239                 * to worry about updating this buffer, only setting its
 240                 * initial value.
 241                 */
 242                if (!up.len)
 243                        strbuf_addf(&up, "%s:%s",
 244                                http_auth.username, http_auth.password);
 245                curl_easy_setopt(result, CURLOPT_USERPWD, up.buf);
 246        }
 247#endif
 248}
 249
 250static int has_cert_password(void)
 251{
 252        if (ssl_cert == NULL || ssl_cert_password_required != 1)
 253                return 0;
 254        if (!cert_auth.password) {
 255                cert_auth.protocol = xstrdup("cert");
 256                cert_auth.username = xstrdup("");
 257                cert_auth.path = xstrdup(ssl_cert);
 258                credential_fill(&cert_auth);
 259        }
 260        return 1;
 261}
 262
 263#if LIBCURL_VERSION_NUM >= 0x071900
 264static void set_curl_keepalive(CURL *c)
 265{
 266        curl_easy_setopt(c, CURLOPT_TCP_KEEPALIVE, 1);
 267}
 268
 269#elif LIBCURL_VERSION_NUM >= 0x071000
 270static int sockopt_callback(void *client, curl_socket_t fd, curlsocktype type)
 271{
 272        int ka = 1;
 273        int rc;
 274        socklen_t len = (socklen_t)sizeof(ka);
 275
 276        if (type != CURLSOCKTYPE_IPCXN)
 277                return 0;
 278
 279        rc = setsockopt(fd, SOL_SOCKET, SO_KEEPALIVE, (void *)&ka, len);
 280        if (rc < 0)
 281                warning("unable to set SO_KEEPALIVE on socket %s",
 282                        strerror(errno));
 283
 284        return 0; /* CURL_SOCKOPT_OK only exists since curl 7.21.5 */
 285}
 286
 287static void set_curl_keepalive(CURL *c)
 288{
 289        curl_easy_setopt(c, CURLOPT_SOCKOPTFUNCTION, sockopt_callback);
 290}
 291
 292#else
 293static void set_curl_keepalive(CURL *c)
 294{
 295        /* not supported on older curl versions */
 296}
 297#endif
 298
 299static CURL *get_curl_handle(void)
 300{
 301        CURL *result = curl_easy_init();
 302
 303        if (!curl_ssl_verify) {
 304                curl_easy_setopt(result, CURLOPT_SSL_VERIFYPEER, 0);
 305                curl_easy_setopt(result, CURLOPT_SSL_VERIFYHOST, 0);
 306        } else {
 307                /* Verify authenticity of the peer's certificate */
 308                curl_easy_setopt(result, CURLOPT_SSL_VERIFYPEER, 1);
 309                /* The name in the cert must match whom we tried to connect */
 310                curl_easy_setopt(result, CURLOPT_SSL_VERIFYHOST, 2);
 311        }
 312
 313#if LIBCURL_VERSION_NUM >= 0x070907
 314        curl_easy_setopt(result, CURLOPT_NETRC, CURL_NETRC_OPTIONAL);
 315#endif
 316#ifdef LIBCURL_CAN_HANDLE_AUTH_ANY
 317        curl_easy_setopt(result, CURLOPT_HTTPAUTH, CURLAUTH_ANY);
 318#endif
 319
 320        if (http_proactive_auth)
 321                init_curl_http_auth(result);
 322
 323        if (ssl_cert != NULL)
 324                curl_easy_setopt(result, CURLOPT_SSLCERT, ssl_cert);
 325        if (has_cert_password())
 326                curl_easy_setopt(result, CURLOPT_KEYPASSWD, cert_auth.password);
 327#if LIBCURL_VERSION_NUM >= 0x070903
 328        if (ssl_key != NULL)
 329                curl_easy_setopt(result, CURLOPT_SSLKEY, ssl_key);
 330#endif
 331#if LIBCURL_VERSION_NUM >= 0x070908
 332        if (ssl_capath != NULL)
 333                curl_easy_setopt(result, CURLOPT_CAPATH, ssl_capath);
 334#endif
 335        if (ssl_cainfo != NULL)
 336                curl_easy_setopt(result, CURLOPT_CAINFO, ssl_cainfo);
 337
 338        if (curl_low_speed_limit > 0 && curl_low_speed_time > 0) {
 339                curl_easy_setopt(result, CURLOPT_LOW_SPEED_LIMIT,
 340                                 curl_low_speed_limit);
 341                curl_easy_setopt(result, CURLOPT_LOW_SPEED_TIME,
 342                                 curl_low_speed_time);
 343        }
 344
 345        curl_easy_setopt(result, CURLOPT_FOLLOWLOCATION, 1);
 346#if LIBCURL_VERSION_NUM >= 0x071301
 347        curl_easy_setopt(result, CURLOPT_POSTREDIR, CURL_REDIR_POST_ALL);
 348#elif LIBCURL_VERSION_NUM >= 0x071101
 349        curl_easy_setopt(result, CURLOPT_POST301, 1);
 350#endif
 351
 352        if (getenv("GIT_CURL_VERBOSE"))
 353                curl_easy_setopt(result, CURLOPT_VERBOSE, 1);
 354
 355        curl_easy_setopt(result, CURLOPT_USERAGENT,
 356                user_agent ? user_agent : git_user_agent());
 357
 358        if (curl_ftp_no_epsv)
 359                curl_easy_setopt(result, CURLOPT_FTP_USE_EPSV, 0);
 360
 361#ifdef CURLOPT_USE_SSL
 362        if (curl_ssl_try)
 363                curl_easy_setopt(result, CURLOPT_USE_SSL, CURLUSESSL_TRY);
 364#endif
 365
 366        if (curl_http_proxy) {
 367                curl_easy_setopt(result, CURLOPT_PROXY, curl_http_proxy);
 368                curl_easy_setopt(result, CURLOPT_PROXYAUTH, CURLAUTH_ANY);
 369        }
 370
 371        set_curl_keepalive(result);
 372
 373        return result;
 374}
 375
 376static void set_from_env(const char **var, const char *envname)
 377{
 378        const char *val = getenv(envname);
 379        if (val)
 380                *var = val;
 381}
 382
 383void http_init(struct remote *remote, const char *url, int proactive_auth)
 384{
 385        char *low_speed_limit;
 386        char *low_speed_time;
 387        char *normalized_url;
 388        struct urlmatch_config config = { STRING_LIST_INIT_DUP };
 389
 390        config.section = "http";
 391        config.key = NULL;
 392        config.collect_fn = http_options;
 393        config.cascade_fn = git_default_config;
 394        config.cb = NULL;
 395
 396        http_is_verbose = 0;
 397        normalized_url = url_normalize(url, &config.url);
 398
 399        git_config(urlmatch_config_entry, &config);
 400        free(normalized_url);
 401
 402        curl_global_init(CURL_GLOBAL_ALL);
 403
 404        http_proactive_auth = proactive_auth;
 405
 406        if (remote && remote->http_proxy)
 407                curl_http_proxy = xstrdup(remote->http_proxy);
 408
 409        pragma_header = curl_slist_append(pragma_header, "Pragma: no-cache");
 410        no_pragma_header = curl_slist_append(no_pragma_header, "Pragma:");
 411
 412#ifdef USE_CURL_MULTI
 413        {
 414                char *http_max_requests = getenv("GIT_HTTP_MAX_REQUESTS");
 415                if (http_max_requests != NULL)
 416                        max_requests = atoi(http_max_requests);
 417        }
 418
 419        curlm = curl_multi_init();
 420        if (curlm == NULL) {
 421                fprintf(stderr, "Error creating curl multi handle.\n");
 422                exit(1);
 423        }
 424#endif
 425
 426        if (getenv("GIT_SSL_NO_VERIFY"))
 427                curl_ssl_verify = 0;
 428
 429        set_from_env(&ssl_cert, "GIT_SSL_CERT");
 430#if LIBCURL_VERSION_NUM >= 0x070903
 431        set_from_env(&ssl_key, "GIT_SSL_KEY");
 432#endif
 433#if LIBCURL_VERSION_NUM >= 0x070908
 434        set_from_env(&ssl_capath, "GIT_SSL_CAPATH");
 435#endif
 436        set_from_env(&ssl_cainfo, "GIT_SSL_CAINFO");
 437
 438        set_from_env(&user_agent, "GIT_HTTP_USER_AGENT");
 439
 440        low_speed_limit = getenv("GIT_HTTP_LOW_SPEED_LIMIT");
 441        if (low_speed_limit != NULL)
 442                curl_low_speed_limit = strtol(low_speed_limit, NULL, 10);
 443        low_speed_time = getenv("GIT_HTTP_LOW_SPEED_TIME");
 444        if (low_speed_time != NULL)
 445                curl_low_speed_time = strtol(low_speed_time, NULL, 10);
 446
 447        if (curl_ssl_verify == -1)
 448                curl_ssl_verify = 1;
 449
 450        curl_session_count = 0;
 451#ifdef USE_CURL_MULTI
 452        if (max_requests < 1)
 453                max_requests = DEFAULT_MAX_REQUESTS;
 454#endif
 455
 456        if (getenv("GIT_CURL_FTP_NO_EPSV"))
 457                curl_ftp_no_epsv = 1;
 458
 459        if (url) {
 460                credential_from_url(&http_auth, url);
 461                if (!ssl_cert_password_required &&
 462                    getenv("GIT_SSL_CERT_PASSWORD_PROTECTED") &&
 463                    starts_with(url, "https://"))
 464                        ssl_cert_password_required = 1;
 465        }
 466
 467#ifndef NO_CURL_EASY_DUPHANDLE
 468        curl_default = get_curl_handle();
 469#endif
 470}
 471
 472void http_cleanup(void)
 473{
 474        struct active_request_slot *slot = active_queue_head;
 475
 476        while (slot != NULL) {
 477                struct active_request_slot *next = slot->next;
 478                if (slot->curl != NULL) {
 479#ifdef USE_CURL_MULTI
 480                        curl_multi_remove_handle(curlm, slot->curl);
 481#endif
 482                        curl_easy_cleanup(slot->curl);
 483                }
 484                free(slot);
 485                slot = next;
 486        }
 487        active_queue_head = NULL;
 488
 489#ifndef NO_CURL_EASY_DUPHANDLE
 490        curl_easy_cleanup(curl_default);
 491#endif
 492
 493#ifdef USE_CURL_MULTI
 494        curl_multi_cleanup(curlm);
 495#endif
 496        curl_global_cleanup();
 497
 498        curl_slist_free_all(pragma_header);
 499        pragma_header = NULL;
 500
 501        curl_slist_free_all(no_pragma_header);
 502        no_pragma_header = NULL;
 503
 504        if (curl_http_proxy) {
 505                free((void *)curl_http_proxy);
 506                curl_http_proxy = NULL;
 507        }
 508
 509        if (cert_auth.password != NULL) {
 510                memset(cert_auth.password, 0, strlen(cert_auth.password));
 511                free(cert_auth.password);
 512                cert_auth.password = NULL;
 513        }
 514        ssl_cert_password_required = 0;
 515}
 516
 517struct active_request_slot *get_active_slot(void)
 518{
 519        struct active_request_slot *slot = active_queue_head;
 520        struct active_request_slot *newslot;
 521
 522#ifdef USE_CURL_MULTI
 523        int num_transfers;
 524
 525        /* Wait for a slot to open up if the queue is full */
 526        while (active_requests >= max_requests) {
 527                curl_multi_perform(curlm, &num_transfers);
 528                if (num_transfers < active_requests)
 529                        process_curl_messages();
 530        }
 531#endif
 532
 533        while (slot != NULL && slot->in_use)
 534                slot = slot->next;
 535
 536        if (slot == NULL) {
 537                newslot = xmalloc(sizeof(*newslot));
 538                newslot->curl = NULL;
 539                newslot->in_use = 0;
 540                newslot->next = NULL;
 541
 542                slot = active_queue_head;
 543                if (slot == NULL) {
 544                        active_queue_head = newslot;
 545                } else {
 546                        while (slot->next != NULL)
 547                                slot = slot->next;
 548                        slot->next = newslot;
 549                }
 550                slot = newslot;
 551        }
 552
 553        if (slot->curl == NULL) {
 554#ifdef NO_CURL_EASY_DUPHANDLE
 555                slot->curl = get_curl_handle();
 556#else
 557                slot->curl = curl_easy_duphandle(curl_default);
 558#endif
 559                curl_session_count++;
 560        }
 561
 562        active_requests++;
 563        slot->in_use = 1;
 564        slot->results = NULL;
 565        slot->finished = NULL;
 566        slot->callback_data = NULL;
 567        slot->callback_func = NULL;
 568        curl_easy_setopt(slot->curl, CURLOPT_COOKIEFILE, curl_cookie_file);
 569        if (curl_save_cookies)
 570                curl_easy_setopt(slot->curl, CURLOPT_COOKIEJAR, curl_cookie_file);
 571        curl_easy_setopt(slot->curl, CURLOPT_HTTPHEADER, pragma_header);
 572        curl_easy_setopt(slot->curl, CURLOPT_ERRORBUFFER, curl_errorstr);
 573        curl_easy_setopt(slot->curl, CURLOPT_CUSTOMREQUEST, NULL);
 574        curl_easy_setopt(slot->curl, CURLOPT_READFUNCTION, NULL);
 575        curl_easy_setopt(slot->curl, CURLOPT_WRITEFUNCTION, NULL);
 576        curl_easy_setopt(slot->curl, CURLOPT_POSTFIELDS, NULL);
 577        curl_easy_setopt(slot->curl, CURLOPT_UPLOAD, 0);
 578        curl_easy_setopt(slot->curl, CURLOPT_HTTPGET, 1);
 579        curl_easy_setopt(slot->curl, CURLOPT_FAILONERROR, 1);
 580        if (http_auth.password)
 581                init_curl_http_auth(slot->curl);
 582
 583        return slot;
 584}
 585
 586int start_active_slot(struct active_request_slot *slot)
 587{
 588#ifdef USE_CURL_MULTI
 589        CURLMcode curlm_result = curl_multi_add_handle(curlm, slot->curl);
 590        int num_transfers;
 591
 592        if (curlm_result != CURLM_OK &&
 593            curlm_result != CURLM_CALL_MULTI_PERFORM) {
 594                active_requests--;
 595                slot->in_use = 0;
 596                return 0;
 597        }
 598
 599        /*
 600         * We know there must be something to do, since we just added
 601         * something.
 602         */
 603        curl_multi_perform(curlm, &num_transfers);
 604#endif
 605        return 1;
 606}
 607
 608#ifdef USE_CURL_MULTI
 609struct fill_chain {
 610        void *data;
 611        int (*fill)(void *);
 612        struct fill_chain *next;
 613};
 614
 615static struct fill_chain *fill_cfg;
 616
 617void add_fill_function(void *data, int (*fill)(void *))
 618{
 619        struct fill_chain *new = xmalloc(sizeof(*new));
 620        struct fill_chain **linkp = &fill_cfg;
 621        new->data = data;
 622        new->fill = fill;
 623        new->next = NULL;
 624        while (*linkp)
 625                linkp = &(*linkp)->next;
 626        *linkp = new;
 627}
 628
 629void fill_active_slots(void)
 630{
 631        struct active_request_slot *slot = active_queue_head;
 632
 633        while (active_requests < max_requests) {
 634                struct fill_chain *fill;
 635                for (fill = fill_cfg; fill; fill = fill->next)
 636                        if (fill->fill(fill->data))
 637                                break;
 638
 639                if (!fill)
 640                        break;
 641        }
 642
 643        while (slot != NULL) {
 644                if (!slot->in_use && slot->curl != NULL
 645                        && curl_session_count > min_curl_sessions) {
 646                        curl_easy_cleanup(slot->curl);
 647                        slot->curl = NULL;
 648                        curl_session_count--;
 649                }
 650                slot = slot->next;
 651        }
 652}
 653
 654void step_active_slots(void)
 655{
 656        int num_transfers;
 657        CURLMcode curlm_result;
 658
 659        do {
 660                curlm_result = curl_multi_perform(curlm, &num_transfers);
 661        } while (curlm_result == CURLM_CALL_MULTI_PERFORM);
 662        if (num_transfers < active_requests) {
 663                process_curl_messages();
 664                fill_active_slots();
 665        }
 666}
 667#endif
 668
 669void run_active_slot(struct active_request_slot *slot)
 670{
 671#ifdef USE_CURL_MULTI
 672        fd_set readfds;
 673        fd_set writefds;
 674        fd_set excfds;
 675        int max_fd;
 676        struct timeval select_timeout;
 677        int finished = 0;
 678
 679        slot->finished = &finished;
 680        while (!finished) {
 681                step_active_slots();
 682
 683                if (slot->in_use) {
 684#if LIBCURL_VERSION_NUM >= 0x070f04
 685                        long curl_timeout;
 686                        curl_multi_timeout(curlm, &curl_timeout);
 687                        if (curl_timeout == 0) {
 688                                continue;
 689                        } else if (curl_timeout == -1) {
 690                                select_timeout.tv_sec  = 0;
 691                                select_timeout.tv_usec = 50000;
 692                        } else {
 693                                select_timeout.tv_sec  =  curl_timeout / 1000;
 694                                select_timeout.tv_usec = (curl_timeout % 1000) * 1000;
 695                        }
 696#else
 697                        select_timeout.tv_sec  = 0;
 698                        select_timeout.tv_usec = 50000;
 699#endif
 700
 701                        max_fd = -1;
 702                        FD_ZERO(&readfds);
 703                        FD_ZERO(&writefds);
 704                        FD_ZERO(&excfds);
 705                        curl_multi_fdset(curlm, &readfds, &writefds, &excfds, &max_fd);
 706
 707                        /*
 708                         * It can happen that curl_multi_timeout returns a pathologically
 709                         * long timeout when curl_multi_fdset returns no file descriptors
 710                         * to read.  See commit message for more details.
 711                         */
 712                        if (max_fd < 0 &&
 713                            (select_timeout.tv_sec > 0 ||
 714                             select_timeout.tv_usec > 50000)) {
 715                                select_timeout.tv_sec  = 0;
 716                                select_timeout.tv_usec = 50000;
 717                        }
 718
 719                        select(max_fd+1, &readfds, &writefds, &excfds, &select_timeout);
 720                }
 721        }
 722#else
 723        while (slot->in_use) {
 724                slot->curl_result = curl_easy_perform(slot->curl);
 725                finish_active_slot(slot);
 726        }
 727#endif
 728}
 729
 730static void closedown_active_slot(struct active_request_slot *slot)
 731{
 732        active_requests--;
 733        slot->in_use = 0;
 734}
 735
 736static void release_active_slot(struct active_request_slot *slot)
 737{
 738        closedown_active_slot(slot);
 739        if (slot->curl && curl_session_count > min_curl_sessions) {
 740#ifdef USE_CURL_MULTI
 741                curl_multi_remove_handle(curlm, slot->curl);
 742#endif
 743                curl_easy_cleanup(slot->curl);
 744                slot->curl = NULL;
 745                curl_session_count--;
 746        }
 747#ifdef USE_CURL_MULTI
 748        fill_active_slots();
 749#endif
 750}
 751
 752void finish_active_slot(struct active_request_slot *slot)
 753{
 754        closedown_active_slot(slot);
 755        curl_easy_getinfo(slot->curl, CURLINFO_HTTP_CODE, &slot->http_code);
 756
 757        if (slot->finished != NULL)
 758                (*slot->finished) = 1;
 759
 760        /* Store slot results so they can be read after the slot is reused */
 761        if (slot->results != NULL) {
 762                slot->results->curl_result = slot->curl_result;
 763                slot->results->http_code = slot->http_code;
 764#if LIBCURL_VERSION_NUM >= 0x070a08
 765                curl_easy_getinfo(slot->curl, CURLINFO_HTTPAUTH_AVAIL,
 766                                  &slot->results->auth_avail);
 767#else
 768                slot->results->auth_avail = 0;
 769#endif
 770        }
 771
 772        /* Run callback if appropriate */
 773        if (slot->callback_func != NULL)
 774                slot->callback_func(slot->callback_data);
 775}
 776
 777void finish_all_active_slots(void)
 778{
 779        struct active_request_slot *slot = active_queue_head;
 780
 781        while (slot != NULL)
 782                if (slot->in_use) {
 783                        run_active_slot(slot);
 784                        slot = active_queue_head;
 785                } else {
 786                        slot = slot->next;
 787                }
 788}
 789
 790/* Helpers for modifying and creating URLs */
 791static inline int needs_quote(int ch)
 792{
 793        if (((ch >= 'A') && (ch <= 'Z'))
 794                        || ((ch >= 'a') && (ch <= 'z'))
 795                        || ((ch >= '0') && (ch <= '9'))
 796                        || (ch == '/')
 797                        || (ch == '-')
 798                        || (ch == '.'))
 799                return 0;
 800        return 1;
 801}
 802
 803static char *quote_ref_url(const char *base, const char *ref)
 804{
 805        struct strbuf buf = STRBUF_INIT;
 806        const char *cp;
 807        int ch;
 808
 809        end_url_with_slash(&buf, base);
 810
 811        for (cp = ref; (ch = *cp) != 0; cp++)
 812                if (needs_quote(ch))
 813                        strbuf_addf(&buf, "%%%02x", ch);
 814                else
 815                        strbuf_addch(&buf, *cp);
 816
 817        return strbuf_detach(&buf, NULL);
 818}
 819
 820void append_remote_object_url(struct strbuf *buf, const char *url,
 821                              const char *hex,
 822                              int only_two_digit_prefix)
 823{
 824        end_url_with_slash(buf, url);
 825
 826        strbuf_addf(buf, "objects/%.*s/", 2, hex);
 827        if (!only_two_digit_prefix)
 828                strbuf_addf(buf, "%s", hex+2);
 829}
 830
 831char *get_remote_object_url(const char *url, const char *hex,
 832                            int only_two_digit_prefix)
 833{
 834        struct strbuf buf = STRBUF_INIT;
 835        append_remote_object_url(&buf, url, hex, only_two_digit_prefix);
 836        return strbuf_detach(&buf, NULL);
 837}
 838
 839int handle_curl_result(struct slot_results *results)
 840{
 841        /*
 842         * If we see a failing http code with CURLE_OK, we have turned off
 843         * FAILONERROR (to keep the server's custom error response), and should
 844         * translate the code into failure here.
 845         */
 846        if (results->curl_result == CURLE_OK &&
 847            results->http_code >= 400) {
 848                results->curl_result = CURLE_HTTP_RETURNED_ERROR;
 849                /*
 850                 * Normally curl will already have put the "reason phrase"
 851                 * from the server into curl_errorstr; unfortunately without
 852                 * FAILONERROR it is lost, so we can give only the numeric
 853                 * status code.
 854                 */
 855                snprintf(curl_errorstr, sizeof(curl_errorstr),
 856                         "The requested URL returned error: %ld",
 857                         results->http_code);
 858        }
 859
 860        if (results->curl_result == CURLE_OK) {
 861                credential_approve(&http_auth);
 862                return HTTP_OK;
 863        } else if (missing_target(results))
 864                return HTTP_MISSING_TARGET;
 865        else if (results->http_code == 401) {
 866                if (http_auth.username && http_auth.password) {
 867                        credential_reject(&http_auth);
 868                        return HTTP_NOAUTH;
 869                } else {
 870                        return HTTP_REAUTH;
 871                }
 872        } else {
 873#if LIBCURL_VERSION_NUM >= 0x070c00
 874                if (!curl_errorstr[0])
 875                        strlcpy(curl_errorstr,
 876                                curl_easy_strerror(results->curl_result),
 877                                sizeof(curl_errorstr));
 878#endif
 879                return HTTP_ERROR;
 880        }
 881}
 882
 883static CURLcode curlinfo_strbuf(CURL *curl, CURLINFO info, struct strbuf *buf)
 884{
 885        char *ptr;
 886        CURLcode ret;
 887
 888        strbuf_reset(buf);
 889        ret = curl_easy_getinfo(curl, info, &ptr);
 890        if (!ret && ptr)
 891                strbuf_addstr(buf, ptr);
 892        return ret;
 893}
 894
 895/* http_request() targets */
 896#define HTTP_REQUEST_STRBUF     0
 897#define HTTP_REQUEST_FILE       1
 898
 899static int http_request(const char *url,
 900                        void *result, int target,
 901                        const struct http_get_options *options)
 902{
 903        struct active_request_slot *slot;
 904        struct slot_results results;
 905        struct curl_slist *headers = NULL;
 906        struct strbuf buf = STRBUF_INIT;
 907        int ret;
 908
 909        slot = get_active_slot();
 910        slot->results = &results;
 911        curl_easy_setopt(slot->curl, CURLOPT_HTTPGET, 1);
 912
 913        if (result == NULL) {
 914                curl_easy_setopt(slot->curl, CURLOPT_NOBODY, 1);
 915        } else {
 916                curl_easy_setopt(slot->curl, CURLOPT_NOBODY, 0);
 917                curl_easy_setopt(slot->curl, CURLOPT_FILE, result);
 918
 919                if (target == HTTP_REQUEST_FILE) {
 920                        long posn = ftell(result);
 921                        curl_easy_setopt(slot->curl, CURLOPT_WRITEFUNCTION,
 922                                         fwrite);
 923                        if (posn > 0) {
 924                                strbuf_addf(&buf, "Range: bytes=%ld-", posn);
 925                                headers = curl_slist_append(headers, buf.buf);
 926                                strbuf_reset(&buf);
 927                        }
 928                } else
 929                        curl_easy_setopt(slot->curl, CURLOPT_WRITEFUNCTION,
 930                                         fwrite_buffer);
 931        }
 932
 933        strbuf_addstr(&buf, "Pragma:");
 934        if (options && options->no_cache)
 935                strbuf_addstr(&buf, " no-cache");
 936        if (options && options->keep_error)
 937                curl_easy_setopt(slot->curl, CURLOPT_FAILONERROR, 0);
 938
 939        headers = curl_slist_append(headers, buf.buf);
 940
 941        curl_easy_setopt(slot->curl, CURLOPT_URL, url);
 942        curl_easy_setopt(slot->curl, CURLOPT_HTTPHEADER, headers);
 943        curl_easy_setopt(slot->curl, CURLOPT_ENCODING, "gzip");
 944
 945        if (start_active_slot(slot)) {
 946                run_active_slot(slot);
 947                ret = handle_curl_result(&results);
 948        } else {
 949                snprintf(curl_errorstr, sizeof(curl_errorstr),
 950                         "failed to start HTTP request");
 951                ret = HTTP_START_FAILED;
 952        }
 953
 954        if (options && options->content_type)
 955                curlinfo_strbuf(slot->curl, CURLINFO_CONTENT_TYPE,
 956                                options->content_type);
 957
 958        if (options && options->effective_url)
 959                curlinfo_strbuf(slot->curl, CURLINFO_EFFECTIVE_URL,
 960                                options->effective_url);
 961
 962        curl_slist_free_all(headers);
 963        strbuf_release(&buf);
 964
 965        return ret;
 966}
 967
 968/*
 969 * Update the "base" url to a more appropriate value, as deduced by
 970 * redirects seen when requesting a URL starting with "url".
 971 *
 972 * The "asked" parameter is a URL that we asked curl to access, and must begin
 973 * with "base".
 974 *
 975 * The "got" parameter is the URL that curl reported to us as where we ended
 976 * up.
 977 *
 978 * Returns 1 if we updated the base url, 0 otherwise.
 979 *
 980 * Our basic strategy is to compare "base" and "asked" to find the bits
 981 * specific to our request. We then strip those bits off of "got" to yield the
 982 * new base. So for example, if our base is "http://example.com/foo.git",
 983 * and we ask for "http://example.com/foo.git/info/refs", we might end up
 984 * with "https://other.example.com/foo.git/info/refs". We would want the
 985 * new URL to become "https://other.example.com/foo.git".
 986 *
 987 * Note that this assumes a sane redirect scheme. It's entirely possible
 988 * in the example above to end up at a URL that does not even end in
 989 * "info/refs".  In such a case we simply punt, as there is not much we can
 990 * do (and such a scheme is unlikely to represent a real git repository,
 991 * which means we are likely about to abort anyway).
 992 */
 993static int update_url_from_redirect(struct strbuf *base,
 994                                    const char *asked,
 995                                    const struct strbuf *got)
 996{
 997        const char *tail;
 998        size_t tail_len;
 999
1000        if (!strcmp(asked, got->buf))
1001                return 0;
1002
1003        if (!starts_with(asked, base->buf))
1004                die("BUG: update_url_from_redirect: %s is not a superset of %s",
1005                    asked, base->buf);
1006
1007        tail = asked + base->len;
1008        tail_len = strlen(tail);
1009
1010        if (got->len < tail_len ||
1011            strcmp(tail, got->buf + got->len - tail_len))
1012                return 0; /* insane redirect scheme */
1013
1014        strbuf_reset(base);
1015        strbuf_add(base, got->buf, got->len - tail_len);
1016        return 1;
1017}
1018
1019static int http_request_reauth(const char *url,
1020                               void *result, int target,
1021                               struct http_get_options *options)
1022{
1023        int ret = http_request(url, result, target, options);
1024
1025        if (options && options->effective_url && options->base_url) {
1026                if (update_url_from_redirect(options->base_url,
1027                                             url, options->effective_url)) {
1028                        credential_from_url(&http_auth, options->base_url->buf);
1029                        url = options->effective_url->buf;
1030                }
1031        }
1032
1033        if (ret != HTTP_REAUTH)
1034                return ret;
1035
1036        /*
1037         * If we are using KEEP_ERROR, the previous request may have
1038         * put cruft into our output stream; we should clear it out before
1039         * making our next request. We only know how to do this for
1040         * the strbuf case, but that is enough to satisfy current callers.
1041         */
1042        if (options && options->keep_error) {
1043                switch (target) {
1044                case HTTP_REQUEST_STRBUF:
1045                        strbuf_reset(result);
1046                        break;
1047                default:
1048                        die("BUG: HTTP_KEEP_ERROR is only supported with strbufs");
1049                }
1050        }
1051
1052        credential_fill(&http_auth);
1053
1054        return http_request(url, result, target, options);
1055}
1056
1057int http_get_strbuf(const char *url,
1058                    struct strbuf *result,
1059                    struct http_get_options *options)
1060{
1061        return http_request_reauth(url, result, HTTP_REQUEST_STRBUF, options);
1062}
1063
1064/*
1065 * Downloads a URL and stores the result in the given file.
1066 *
1067 * If a previous interrupted download is detected (i.e. a previous temporary
1068 * file is still around) the download is resumed.
1069 */
1070static int http_get_file(const char *url, const char *filename,
1071                         struct http_get_options *options)
1072{
1073        int ret;
1074        struct strbuf tmpfile = STRBUF_INIT;
1075        FILE *result;
1076
1077        strbuf_addf(&tmpfile, "%s.temp", filename);
1078        result = fopen(tmpfile.buf, "a");
1079        if (!result) {
1080                error("Unable to open local file %s", tmpfile.buf);
1081                ret = HTTP_ERROR;
1082                goto cleanup;
1083        }
1084
1085        ret = http_request_reauth(url, result, HTTP_REQUEST_FILE, options);
1086        fclose(result);
1087
1088        if (ret == HTTP_OK && move_temp_to_file(tmpfile.buf, filename))
1089                ret = HTTP_ERROR;
1090cleanup:
1091        strbuf_release(&tmpfile);
1092        return ret;
1093}
1094
1095int http_fetch_ref(const char *base, struct ref *ref)
1096{
1097        struct http_get_options options = {0};
1098        char *url;
1099        struct strbuf buffer = STRBUF_INIT;
1100        int ret = -1;
1101
1102        options.no_cache = 1;
1103
1104        url = quote_ref_url(base, ref->name);
1105        if (http_get_strbuf(url, &buffer, &options) == HTTP_OK) {
1106                strbuf_rtrim(&buffer);
1107                if (buffer.len == 40)
1108                        ret = get_sha1_hex(buffer.buf, ref->old_sha1);
1109                else if (starts_with(buffer.buf, "ref: ")) {
1110                        ref->symref = xstrdup(buffer.buf + 5);
1111                        ret = 0;
1112                }
1113        }
1114
1115        strbuf_release(&buffer);
1116        free(url);
1117        return ret;
1118}
1119
1120/* Helpers for fetching packs */
1121static char *fetch_pack_index(unsigned char *sha1, const char *base_url)
1122{
1123        char *url, *tmp;
1124        struct strbuf buf = STRBUF_INIT;
1125
1126        if (http_is_verbose)
1127                fprintf(stderr, "Getting index for pack %s\n", sha1_to_hex(sha1));
1128
1129        end_url_with_slash(&buf, base_url);
1130        strbuf_addf(&buf, "objects/pack/pack-%s.idx", sha1_to_hex(sha1));
1131        url = strbuf_detach(&buf, NULL);
1132
1133        strbuf_addf(&buf, "%s.temp", sha1_pack_index_name(sha1));
1134        tmp = strbuf_detach(&buf, NULL);
1135
1136        if (http_get_file(url, tmp, NULL) != HTTP_OK) {
1137                error("Unable to get pack index %s", url);
1138                free(tmp);
1139                tmp = NULL;
1140        }
1141
1142        free(url);
1143        return tmp;
1144}
1145
1146static int fetch_and_setup_pack_index(struct packed_git **packs_head,
1147        unsigned char *sha1, const char *base_url)
1148{
1149        struct packed_git *new_pack;
1150        char *tmp_idx = NULL;
1151        int ret;
1152
1153        if (has_pack_index(sha1)) {
1154                new_pack = parse_pack_index(sha1, NULL);
1155                if (!new_pack)
1156                        return -1; /* parse_pack_index() already issued error message */
1157                goto add_pack;
1158        }
1159
1160        tmp_idx = fetch_pack_index(sha1, base_url);
1161        if (!tmp_idx)
1162                return -1;
1163
1164        new_pack = parse_pack_index(sha1, tmp_idx);
1165        if (!new_pack) {
1166                unlink(tmp_idx);
1167                free(tmp_idx);
1168
1169                return -1; /* parse_pack_index() already issued error message */
1170        }
1171
1172        ret = verify_pack_index(new_pack);
1173        if (!ret) {
1174                close_pack_index(new_pack);
1175                ret = move_temp_to_file(tmp_idx, sha1_pack_index_name(sha1));
1176        }
1177        free(tmp_idx);
1178        if (ret)
1179                return -1;
1180
1181add_pack:
1182        new_pack->next = *packs_head;
1183        *packs_head = new_pack;
1184        return 0;
1185}
1186
1187int http_get_info_packs(const char *base_url, struct packed_git **packs_head)
1188{
1189        struct http_get_options options = {0};
1190        int ret = 0, i = 0;
1191        char *url, *data;
1192        struct strbuf buf = STRBUF_INIT;
1193        unsigned char sha1[20];
1194
1195        end_url_with_slash(&buf, base_url);
1196        strbuf_addstr(&buf, "objects/info/packs");
1197        url = strbuf_detach(&buf, NULL);
1198
1199        options.no_cache = 1;
1200        ret = http_get_strbuf(url, &buf, &options);
1201        if (ret != HTTP_OK)
1202                goto cleanup;
1203
1204        data = buf.buf;
1205        while (i < buf.len) {
1206                switch (data[i]) {
1207                case 'P':
1208                        i++;
1209                        if (i + 52 <= buf.len &&
1210                            starts_with(data + i, " pack-") &&
1211                            starts_with(data + i + 46, ".pack\n")) {
1212                                get_sha1_hex(data + i + 6, sha1);
1213                                fetch_and_setup_pack_index(packs_head, sha1,
1214                                                      base_url);
1215                                i += 51;
1216                                break;
1217                        }
1218                default:
1219                        while (i < buf.len && data[i] != '\n')
1220                                i++;
1221                }
1222                i++;
1223        }
1224
1225cleanup:
1226        free(url);
1227        return ret;
1228}
1229
1230void release_http_pack_request(struct http_pack_request *preq)
1231{
1232        if (preq->packfile != NULL) {
1233                fclose(preq->packfile);
1234                preq->packfile = NULL;
1235        }
1236        if (preq->range_header != NULL) {
1237                curl_slist_free_all(preq->range_header);
1238                preq->range_header = NULL;
1239        }
1240        preq->slot = NULL;
1241        free(preq->url);
1242}
1243
1244int finish_http_pack_request(struct http_pack_request *preq)
1245{
1246        struct packed_git **lst;
1247        struct packed_git *p = preq->target;
1248        char *tmp_idx;
1249        struct child_process ip;
1250        const char *ip_argv[8];
1251
1252        close_pack_index(p);
1253
1254        fclose(preq->packfile);
1255        preq->packfile = NULL;
1256
1257        lst = preq->lst;
1258        while (*lst != p)
1259                lst = &((*lst)->next);
1260        *lst = (*lst)->next;
1261
1262        tmp_idx = xstrdup(preq->tmpfile);
1263        strcpy(tmp_idx + strlen(tmp_idx) - strlen(".pack.temp"),
1264               ".idx.temp");
1265
1266        ip_argv[0] = "index-pack";
1267        ip_argv[1] = "-o";
1268        ip_argv[2] = tmp_idx;
1269        ip_argv[3] = preq->tmpfile;
1270        ip_argv[4] = NULL;
1271
1272        memset(&ip, 0, sizeof(ip));
1273        ip.argv = ip_argv;
1274        ip.git_cmd = 1;
1275        ip.no_stdin = 1;
1276        ip.no_stdout = 1;
1277
1278        if (run_command(&ip)) {
1279                unlink(preq->tmpfile);
1280                unlink(tmp_idx);
1281                free(tmp_idx);
1282                return -1;
1283        }
1284
1285        unlink(sha1_pack_index_name(p->sha1));
1286
1287        if (move_temp_to_file(preq->tmpfile, sha1_pack_name(p->sha1))
1288         || move_temp_to_file(tmp_idx, sha1_pack_index_name(p->sha1))) {
1289                free(tmp_idx);
1290                return -1;
1291        }
1292
1293        install_packed_git(p);
1294        free(tmp_idx);
1295        return 0;
1296}
1297
1298struct http_pack_request *new_http_pack_request(
1299        struct packed_git *target, const char *base_url)
1300{
1301        long prev_posn = 0;
1302        char range[RANGE_HEADER_SIZE];
1303        struct strbuf buf = STRBUF_INIT;
1304        struct http_pack_request *preq;
1305
1306        preq = xcalloc(1, sizeof(*preq));
1307        preq->target = target;
1308
1309        end_url_with_slash(&buf, base_url);
1310        strbuf_addf(&buf, "objects/pack/pack-%s.pack",
1311                sha1_to_hex(target->sha1));
1312        preq->url = strbuf_detach(&buf, NULL);
1313
1314        snprintf(preq->tmpfile, sizeof(preq->tmpfile), "%s.temp",
1315                sha1_pack_name(target->sha1));
1316        preq->packfile = fopen(preq->tmpfile, "a");
1317        if (!preq->packfile) {
1318                error("Unable to open local file %s for pack",
1319                      preq->tmpfile);
1320                goto abort;
1321        }
1322
1323        preq->slot = get_active_slot();
1324        curl_easy_setopt(preq->slot->curl, CURLOPT_FILE, preq->packfile);
1325        curl_easy_setopt(preq->slot->curl, CURLOPT_WRITEFUNCTION, fwrite);
1326        curl_easy_setopt(preq->slot->curl, CURLOPT_URL, preq->url);
1327        curl_easy_setopt(preq->slot->curl, CURLOPT_HTTPHEADER,
1328                no_pragma_header);
1329
1330        /*
1331         * If there is data present from a previous transfer attempt,
1332         * resume where it left off
1333         */
1334        prev_posn = ftell(preq->packfile);
1335        if (prev_posn>0) {
1336                if (http_is_verbose)
1337                        fprintf(stderr,
1338                                "Resuming fetch of pack %s at byte %ld\n",
1339                                sha1_to_hex(target->sha1), prev_posn);
1340                sprintf(range, "Range: bytes=%ld-", prev_posn);
1341                preq->range_header = curl_slist_append(NULL, range);
1342                curl_easy_setopt(preq->slot->curl, CURLOPT_HTTPHEADER,
1343                        preq->range_header);
1344        }
1345
1346        return preq;
1347
1348abort:
1349        free(preq->url);
1350        free(preq);
1351        return NULL;
1352}
1353
1354/* Helpers for fetching objects (loose) */
1355static size_t fwrite_sha1_file(char *ptr, size_t eltsize, size_t nmemb,
1356                               void *data)
1357{
1358        unsigned char expn[4096];
1359        size_t size = eltsize * nmemb;
1360        int posn = 0;
1361        struct http_object_request *freq =
1362                (struct http_object_request *)data;
1363        do {
1364                ssize_t retval = xwrite(freq->localfile,
1365                                        (char *) ptr + posn, size - posn);
1366                if (retval < 0)
1367                        return posn;
1368                posn += retval;
1369        } while (posn < size);
1370
1371        freq->stream.avail_in = size;
1372        freq->stream.next_in = (void *)ptr;
1373        do {
1374                freq->stream.next_out = expn;
1375                freq->stream.avail_out = sizeof(expn);
1376                freq->zret = git_inflate(&freq->stream, Z_SYNC_FLUSH);
1377                git_SHA1_Update(&freq->c, expn,
1378                                sizeof(expn) - freq->stream.avail_out);
1379        } while (freq->stream.avail_in && freq->zret == Z_OK);
1380        return size;
1381}
1382
1383struct http_object_request *new_http_object_request(const char *base_url,
1384        unsigned char *sha1)
1385{
1386        char *hex = sha1_to_hex(sha1);
1387        char *filename;
1388        char prevfile[PATH_MAX];
1389        int prevlocal;
1390        char prev_buf[PREV_BUF_SIZE];
1391        ssize_t prev_read = 0;
1392        long prev_posn = 0;
1393        char range[RANGE_HEADER_SIZE];
1394        struct curl_slist *range_header = NULL;
1395        struct http_object_request *freq;
1396
1397        freq = xcalloc(1, sizeof(*freq));
1398        hashcpy(freq->sha1, sha1);
1399        freq->localfile = -1;
1400
1401        filename = sha1_file_name(sha1);
1402        snprintf(freq->tmpfile, sizeof(freq->tmpfile),
1403                 "%s.temp", filename);
1404
1405        snprintf(prevfile, sizeof(prevfile), "%s.prev", filename);
1406        unlink_or_warn(prevfile);
1407        rename(freq->tmpfile, prevfile);
1408        unlink_or_warn(freq->tmpfile);
1409
1410        if (freq->localfile != -1)
1411                error("fd leakage in start: %d", freq->localfile);
1412        freq->localfile = open(freq->tmpfile,
1413                               O_WRONLY | O_CREAT | O_EXCL, 0666);
1414        /*
1415         * This could have failed due to the "lazy directory creation";
1416         * try to mkdir the last path component.
1417         */
1418        if (freq->localfile < 0 && errno == ENOENT) {
1419                char *dir = strrchr(freq->tmpfile, '/');
1420                if (dir) {
1421                        *dir = 0;
1422                        mkdir(freq->tmpfile, 0777);
1423                        *dir = '/';
1424                }
1425                freq->localfile = open(freq->tmpfile,
1426                                       O_WRONLY | O_CREAT | O_EXCL, 0666);
1427        }
1428
1429        if (freq->localfile < 0) {
1430                error("Couldn't create temporary file %s: %s",
1431                      freq->tmpfile, strerror(errno));
1432                goto abort;
1433        }
1434
1435        git_inflate_init(&freq->stream);
1436
1437        git_SHA1_Init(&freq->c);
1438
1439        freq->url = get_remote_object_url(base_url, hex, 0);
1440
1441        /*
1442         * If a previous temp file is present, process what was already
1443         * fetched.
1444         */
1445        prevlocal = open(prevfile, O_RDONLY);
1446        if (prevlocal != -1) {
1447                do {
1448                        prev_read = xread(prevlocal, prev_buf, PREV_BUF_SIZE);
1449                        if (prev_read>0) {
1450                                if (fwrite_sha1_file(prev_buf,
1451                                                     1,
1452                                                     prev_read,
1453                                                     freq) == prev_read) {
1454                                        prev_posn += prev_read;
1455                                } else {
1456                                        prev_read = -1;
1457                                }
1458                        }
1459                } while (prev_read > 0);
1460                close(prevlocal);
1461        }
1462        unlink_or_warn(prevfile);
1463
1464        /*
1465         * Reset inflate/SHA1 if there was an error reading the previous temp
1466         * file; also rewind to the beginning of the local file.
1467         */
1468        if (prev_read == -1) {
1469                memset(&freq->stream, 0, sizeof(freq->stream));
1470                git_inflate_init(&freq->stream);
1471                git_SHA1_Init(&freq->c);
1472                if (prev_posn>0) {
1473                        prev_posn = 0;
1474                        lseek(freq->localfile, 0, SEEK_SET);
1475                        if (ftruncate(freq->localfile, 0) < 0) {
1476                                error("Couldn't truncate temporary file %s: %s",
1477                                          freq->tmpfile, strerror(errno));
1478                                goto abort;
1479                        }
1480                }
1481        }
1482
1483        freq->slot = get_active_slot();
1484
1485        curl_easy_setopt(freq->slot->curl, CURLOPT_FILE, freq);
1486        curl_easy_setopt(freq->slot->curl, CURLOPT_WRITEFUNCTION, fwrite_sha1_file);
1487        curl_easy_setopt(freq->slot->curl, CURLOPT_ERRORBUFFER, freq->errorstr);
1488        curl_easy_setopt(freq->slot->curl, CURLOPT_URL, freq->url);
1489        curl_easy_setopt(freq->slot->curl, CURLOPT_HTTPHEADER, no_pragma_header);
1490
1491        /*
1492         * If we have successfully processed data from a previous fetch
1493         * attempt, only fetch the data we don't already have.
1494         */
1495        if (prev_posn>0) {
1496                if (http_is_verbose)
1497                        fprintf(stderr,
1498                                "Resuming fetch of object %s at byte %ld\n",
1499                                hex, prev_posn);
1500                sprintf(range, "Range: bytes=%ld-", prev_posn);
1501                range_header = curl_slist_append(range_header, range);
1502                curl_easy_setopt(freq->slot->curl,
1503                                 CURLOPT_HTTPHEADER, range_header);
1504        }
1505
1506        return freq;
1507
1508abort:
1509        free(freq->url);
1510        free(freq);
1511        return NULL;
1512}
1513
1514void process_http_object_request(struct http_object_request *freq)
1515{
1516        if (freq->slot == NULL)
1517                return;
1518        freq->curl_result = freq->slot->curl_result;
1519        freq->http_code = freq->slot->http_code;
1520        freq->slot = NULL;
1521}
1522
1523int finish_http_object_request(struct http_object_request *freq)
1524{
1525        struct stat st;
1526
1527        close(freq->localfile);
1528        freq->localfile = -1;
1529
1530        process_http_object_request(freq);
1531
1532        if (freq->http_code == 416) {
1533                warning("requested range invalid; we may already have all the data.");
1534        } else if (freq->curl_result != CURLE_OK) {
1535                if (stat(freq->tmpfile, &st) == 0)
1536                        if (st.st_size == 0)
1537                                unlink_or_warn(freq->tmpfile);
1538                return -1;
1539        }
1540
1541        git_inflate_end(&freq->stream);
1542        git_SHA1_Final(freq->real_sha1, &freq->c);
1543        if (freq->zret != Z_STREAM_END) {
1544                unlink_or_warn(freq->tmpfile);
1545                return -1;
1546        }
1547        if (hashcmp(freq->sha1, freq->real_sha1)) {
1548                unlink_or_warn(freq->tmpfile);
1549                return -1;
1550        }
1551        freq->rename =
1552                move_temp_to_file(freq->tmpfile, sha1_file_name(freq->sha1));
1553
1554        return freq->rename;
1555}
1556
1557void abort_http_object_request(struct http_object_request *freq)
1558{
1559        unlink_or_warn(freq->tmpfile);
1560
1561        release_http_object_request(freq);
1562}
1563
1564void release_http_object_request(struct http_object_request *freq)
1565{
1566        if (freq->localfile != -1) {
1567                close(freq->localfile);
1568                freq->localfile = -1;
1569        }
1570        if (freq->url != NULL) {
1571                free(freq->url);
1572                freq->url = NULL;
1573        }
1574        if (freq->slot != NULL) {
1575                freq->slot->callback_func = NULL;
1576                freq->slot->callback_data = NULL;
1577                release_active_slot(freq->slot);
1578                freq->slot = NULL;
1579        }
1580}