1#include "http.h"
2#include "pack.h"
3#include "sideband.h"
4#include "run-command.h"
5#include "url.h"
6
7int data_received;
8int active_requests;
9int http_is_verbose;
10size_t http_post_buffer = 16 * LARGE_PACKET_MAX;
11
12#if LIBCURL_VERSION_NUM >= 0x070a06
13#define LIBCURL_CAN_HANDLE_AUTH_ANY
14#endif
15
16static int min_curl_sessions = 1;
17static int curl_session_count;
18#ifdef USE_CURL_MULTI
19static int max_requests = -1;
20static CURLM *curlm;
21#endif
22#ifndef NO_CURL_EASY_DUPHANDLE
23static CURL *curl_default;
24#endif
25
26#define PREV_BUF_SIZE 4096
27#define RANGE_HEADER_SIZE 30
28
29char curl_errorstr[CURL_ERROR_SIZE];
30
31static int curl_ssl_verify = -1;
32static const char *ssl_cert;
33#if LIBCURL_VERSION_NUM >= 0x070903
34static const char *ssl_key;
35#endif
36#if LIBCURL_VERSION_NUM >= 0x070908
37static const char *ssl_capath;
38#endif
39static const char *ssl_cainfo;
40static long curl_low_speed_limit = -1;
41static long curl_low_speed_time = -1;
42static int curl_ftp_no_epsv;
43static const char *curl_http_proxy;
44static const char *curl_cookie_file;
45static char *user_name, *user_pass, *description;
46static const char *user_agent;
47
48#if LIBCURL_VERSION_NUM >= 0x071700
49/* Use CURLOPT_KEYPASSWD as is */
50#elif LIBCURL_VERSION_NUM >= 0x070903
51#define CURLOPT_KEYPASSWD CURLOPT_SSLKEYPASSWD
52#else
53#define CURLOPT_KEYPASSWD CURLOPT_SSLCERTPASSWD
54#endif
55
56static char *ssl_cert_password;
57static int ssl_cert_password_required;
58
59static struct curl_slist *pragma_header;
60static struct curl_slist *no_pragma_header;
61
62static struct active_request_slot *active_queue_head;
63
64size_t fread_buffer(char *ptr, size_t eltsize, size_t nmemb, void *buffer_)
65{
66 size_t size = eltsize * nmemb;
67 struct buffer *buffer = buffer_;
68
69 if (size > buffer->buf.len - buffer->posn)
70 size = buffer->buf.len - buffer->posn;
71 memcpy(ptr, buffer->buf.buf + buffer->posn, size);
72 buffer->posn += size;
73
74 return size;
75}
76
77#ifndef NO_CURL_IOCTL
78curlioerr ioctl_buffer(CURL *handle, int cmd, void *clientp)
79{
80 struct buffer *buffer = clientp;
81
82 switch (cmd) {
83 case CURLIOCMD_NOP:
84 return CURLIOE_OK;
85
86 case CURLIOCMD_RESTARTREAD:
87 buffer->posn = 0;
88 return CURLIOE_OK;
89
90 default:
91 return CURLIOE_UNKNOWNCMD;
92 }
93}
94#endif
95
96size_t fwrite_buffer(char *ptr, size_t eltsize, size_t nmemb, void *buffer_)
97{
98 size_t size = eltsize * nmemb;
99 struct strbuf *buffer = buffer_;
100
101 strbuf_add(buffer, ptr, size);
102 data_received++;
103 return size;
104}
105
106size_t fwrite_null(char *ptr, size_t eltsize, size_t nmemb, void *strbuf)
107{
108 data_received++;
109 return eltsize * nmemb;
110}
111
112#ifdef USE_CURL_MULTI
113static void process_curl_messages(void)
114{
115 int num_messages;
116 struct active_request_slot *slot;
117 CURLMsg *curl_message = curl_multi_info_read(curlm, &num_messages);
118
119 while (curl_message != NULL) {
120 if (curl_message->msg == CURLMSG_DONE) {
121 int curl_result = curl_message->data.result;
122 slot = active_queue_head;
123 while (slot != NULL &&
124 slot->curl != curl_message->easy_handle)
125 slot = slot->next;
126 if (slot != NULL) {
127 curl_multi_remove_handle(curlm, slot->curl);
128 slot->curl_result = curl_result;
129 finish_active_slot(slot);
130 } else {
131 fprintf(stderr, "Received DONE message for unknown request!\n");
132 }
133 } else {
134 fprintf(stderr, "Unknown CURL message received: %d\n",
135 (int)curl_message->msg);
136 }
137 curl_message = curl_multi_info_read(curlm, &num_messages);
138 }
139}
140#endif
141
142static char *git_getpass_with_description(const char *what, const char *desc)
143{
144 struct strbuf prompt = STRBUF_INIT;
145 char *r;
146
147 if (desc)
148 strbuf_addf(&prompt, "%s for '%s': ", what, desc);
149 else
150 strbuf_addf(&prompt, "%s: ", what);
151 /*
152 * NEEDSWORK: for usernames, we should do something less magical that
153 * actually echoes the characters. However, we need to read from
154 * /dev/tty and not stdio, which is not portable (but getpass will do
155 * it for us). http.c uses the same workaround.
156 */
157 r = git_getpass(prompt.buf);
158
159 strbuf_release(&prompt);
160 return xstrdup(r);
161}
162
163static int http_options(const char *var, const char *value, void *cb)
164{
165 if (!strcmp("http.sslverify", var)) {
166 curl_ssl_verify = git_config_bool(var, value);
167 return 0;
168 }
169 if (!strcmp("http.sslcert", var))
170 return git_config_string(&ssl_cert, var, value);
171#if LIBCURL_VERSION_NUM >= 0x070903
172 if (!strcmp("http.sslkey", var))
173 return git_config_string(&ssl_key, var, value);
174#endif
175#if LIBCURL_VERSION_NUM >= 0x070908
176 if (!strcmp("http.sslcapath", var))
177 return git_config_string(&ssl_capath, var, value);
178#endif
179 if (!strcmp("http.sslcainfo", var))
180 return git_config_string(&ssl_cainfo, var, value);
181 if (!strcmp("http.sslcertpasswordprotected", var)) {
182 if (git_config_bool(var, value))
183 ssl_cert_password_required = 1;
184 return 0;
185 }
186 if (!strcmp("http.minsessions", var)) {
187 min_curl_sessions = git_config_int(var, value);
188#ifndef USE_CURL_MULTI
189 if (min_curl_sessions > 1)
190 min_curl_sessions = 1;
191#endif
192 return 0;
193 }
194#ifdef USE_CURL_MULTI
195 if (!strcmp("http.maxrequests", var)) {
196 max_requests = git_config_int(var, value);
197 return 0;
198 }
199#endif
200 if (!strcmp("http.lowspeedlimit", var)) {
201 curl_low_speed_limit = (long)git_config_int(var, value);
202 return 0;
203 }
204 if (!strcmp("http.lowspeedtime", var)) {
205 curl_low_speed_time = (long)git_config_int(var, value);
206 return 0;
207 }
208
209 if (!strcmp("http.noepsv", var)) {
210 curl_ftp_no_epsv = git_config_bool(var, value);
211 return 0;
212 }
213 if (!strcmp("http.proxy", var))
214 return git_config_string(&curl_http_proxy, var, value);
215
216 if (!strcmp("http.cookiefile", var))
217 return git_config_string(&curl_cookie_file, var, value);
218
219 if (!strcmp("http.postbuffer", var)) {
220 http_post_buffer = git_config_int(var, value);
221 if (http_post_buffer < LARGE_PACKET_MAX)
222 http_post_buffer = LARGE_PACKET_MAX;
223 return 0;
224 }
225
226 if (!strcmp("http.useragent", var))
227 return git_config_string(&user_agent, var, value);
228
229 /* Fall back on the default ones */
230 return git_default_config(var, value, cb);
231}
232
233static void init_curl_http_auth(CURL *result)
234{
235 if (user_name) {
236 struct strbuf up = STRBUF_INIT;
237 if (!user_pass)
238 user_pass = xstrdup(git_getpass_with_description("Password", description));
239 strbuf_addf(&up, "%s:%s", user_name, user_pass);
240 curl_easy_setopt(result, CURLOPT_USERPWD,
241 strbuf_detach(&up, NULL));
242 }
243}
244
245static int has_cert_password(void)
246{
247 if (ssl_cert_password != NULL)
248 return 1;
249 if (ssl_cert == NULL || ssl_cert_password_required != 1)
250 return 0;
251 /* Only prompt the user once. */
252 ssl_cert_password_required = -1;
253 ssl_cert_password = git_getpass_with_description("Certificate Password", description);
254 if (ssl_cert_password != NULL) {
255 ssl_cert_password = xstrdup(ssl_cert_password);
256 return 1;
257 } else
258 return 0;
259}
260
261static CURL *get_curl_handle(void)
262{
263 CURL *result = curl_easy_init();
264
265 if (!curl_ssl_verify) {
266 curl_easy_setopt(result, CURLOPT_SSL_VERIFYPEER, 0);
267 curl_easy_setopt(result, CURLOPT_SSL_VERIFYHOST, 0);
268 } else {
269 /* Verify authenticity of the peer's certificate */
270 curl_easy_setopt(result, CURLOPT_SSL_VERIFYPEER, 1);
271 /* The name in the cert must match whom we tried to connect */
272 curl_easy_setopt(result, CURLOPT_SSL_VERIFYHOST, 2);
273 }
274
275#if LIBCURL_VERSION_NUM >= 0x070907
276 curl_easy_setopt(result, CURLOPT_NETRC, CURL_NETRC_OPTIONAL);
277#endif
278#ifdef LIBCURL_CAN_HANDLE_AUTH_ANY
279 curl_easy_setopt(result, CURLOPT_HTTPAUTH, CURLAUTH_ANY);
280#endif
281
282 if (ssl_cert != NULL)
283 curl_easy_setopt(result, CURLOPT_SSLCERT, ssl_cert);
284 if (has_cert_password())
285 curl_easy_setopt(result, CURLOPT_KEYPASSWD, ssl_cert_password);
286#if LIBCURL_VERSION_NUM >= 0x070903
287 if (ssl_key != NULL)
288 curl_easy_setopt(result, CURLOPT_SSLKEY, ssl_key);
289#endif
290#if LIBCURL_VERSION_NUM >= 0x070908
291 if (ssl_capath != NULL)
292 curl_easy_setopt(result, CURLOPT_CAPATH, ssl_capath);
293#endif
294 if (ssl_cainfo != NULL)
295 curl_easy_setopt(result, CURLOPT_CAINFO, ssl_cainfo);
296 curl_easy_setopt(result, CURLOPT_FAILONERROR, 1);
297
298 if (curl_low_speed_limit > 0 && curl_low_speed_time > 0) {
299 curl_easy_setopt(result, CURLOPT_LOW_SPEED_LIMIT,
300 curl_low_speed_limit);
301 curl_easy_setopt(result, CURLOPT_LOW_SPEED_TIME,
302 curl_low_speed_time);
303 }
304
305 curl_easy_setopt(result, CURLOPT_FOLLOWLOCATION, 1);
306#if LIBCURL_VERSION_NUM >= 0x071301
307 curl_easy_setopt(result, CURLOPT_POSTREDIR, CURL_REDIR_POST_ALL);
308#elif LIBCURL_VERSION_NUM >= 0x071101
309 curl_easy_setopt(result, CURLOPT_POST301, 1);
310#endif
311
312 if (getenv("GIT_CURL_VERBOSE"))
313 curl_easy_setopt(result, CURLOPT_VERBOSE, 1);
314
315 curl_easy_setopt(result, CURLOPT_USERAGENT,
316 user_agent ? user_agent : GIT_HTTP_USER_AGENT);
317
318 if (curl_ftp_no_epsv)
319 curl_easy_setopt(result, CURLOPT_FTP_USE_EPSV, 0);
320
321 if (curl_http_proxy)
322 curl_easy_setopt(result, CURLOPT_PROXY, curl_http_proxy);
323
324 return result;
325}
326
327static void http_auth_init(const char *url)
328{
329 const char *at, *colon, *cp, *slash, *host;
330
331 cp = strstr(url, "://");
332 if (!cp)
333 return;
334
335 /*
336 * Ok, the URL looks like "proto://something". Which one?
337 * "proto://<user>:<pass>@<host>/...",
338 * "proto://<user>@<host>/...", or just
339 * "proto://<host>/..."?
340 */
341 cp += 3;
342 at = strchr(cp, '@');
343 colon = strchr(cp, ':');
344 slash = strchrnul(cp, '/');
345 if (!at || slash <= at) {
346 /* No credentials, but we may have to ask for some later */
347 host = cp;
348 }
349 else if (!colon || at <= colon) {
350 /* Only username */
351 user_name = url_decode_mem(cp, at - cp);
352 user_pass = NULL;
353 host = at + 1;
354 } else {
355 user_name = url_decode_mem(cp, colon - cp);
356 user_pass = url_decode_mem(colon + 1, at - (colon + 1));
357 host = at + 1;
358 }
359
360 description = url_decode_mem(host, slash - host);
361}
362
363static void set_from_env(const char **var, const char *envname)
364{
365 const char *val = getenv(envname);
366 if (val)
367 *var = val;
368}
369
370void http_init(struct remote *remote, const char *url)
371{
372 char *low_speed_limit;
373 char *low_speed_time;
374
375 http_is_verbose = 0;
376
377 git_config(http_options, NULL);
378
379 curl_global_init(CURL_GLOBAL_ALL);
380
381 if (remote && remote->http_proxy)
382 curl_http_proxy = xstrdup(remote->http_proxy);
383
384 pragma_header = curl_slist_append(pragma_header, "Pragma: no-cache");
385 no_pragma_header = curl_slist_append(no_pragma_header, "Pragma:");
386
387#ifdef USE_CURL_MULTI
388 {
389 char *http_max_requests = getenv("GIT_HTTP_MAX_REQUESTS");
390 if (http_max_requests != NULL)
391 max_requests = atoi(http_max_requests);
392 }
393
394 curlm = curl_multi_init();
395 if (curlm == NULL) {
396 fprintf(stderr, "Error creating curl multi handle.\n");
397 exit(1);
398 }
399#endif
400
401 if (getenv("GIT_SSL_NO_VERIFY"))
402 curl_ssl_verify = 0;
403
404 set_from_env(&ssl_cert, "GIT_SSL_CERT");
405#if LIBCURL_VERSION_NUM >= 0x070903
406 set_from_env(&ssl_key, "GIT_SSL_KEY");
407#endif
408#if LIBCURL_VERSION_NUM >= 0x070908
409 set_from_env(&ssl_capath, "GIT_SSL_CAPATH");
410#endif
411 set_from_env(&ssl_cainfo, "GIT_SSL_CAINFO");
412
413 set_from_env(&user_agent, "GIT_HTTP_USER_AGENT");
414
415 low_speed_limit = getenv("GIT_HTTP_LOW_SPEED_LIMIT");
416 if (low_speed_limit != NULL)
417 curl_low_speed_limit = strtol(low_speed_limit, NULL, 10);
418 low_speed_time = getenv("GIT_HTTP_LOW_SPEED_TIME");
419 if (low_speed_time != NULL)
420 curl_low_speed_time = strtol(low_speed_time, NULL, 10);
421
422 if (curl_ssl_verify == -1)
423 curl_ssl_verify = 1;
424
425 curl_session_count = 0;
426#ifdef USE_CURL_MULTI
427 if (max_requests < 1)
428 max_requests = DEFAULT_MAX_REQUESTS;
429#endif
430
431 if (getenv("GIT_CURL_FTP_NO_EPSV"))
432 curl_ftp_no_epsv = 1;
433
434 if (url) {
435 http_auth_init(url);
436 if (!ssl_cert_password_required &&
437 getenv("GIT_SSL_CERT_PASSWORD_PROTECTED") &&
438 !prefixcmp(url, "https://"))
439 ssl_cert_password_required = 1;
440 }
441
442#ifndef NO_CURL_EASY_DUPHANDLE
443 curl_default = get_curl_handle();
444#endif
445}
446
447void http_cleanup(void)
448{
449 struct active_request_slot *slot = active_queue_head;
450
451 while (slot != NULL) {
452 struct active_request_slot *next = slot->next;
453 if (slot->curl != NULL) {
454#ifdef USE_CURL_MULTI
455 curl_multi_remove_handle(curlm, slot->curl);
456#endif
457 curl_easy_cleanup(slot->curl);
458 }
459 free(slot);
460 slot = next;
461 }
462 active_queue_head = NULL;
463
464#ifndef NO_CURL_EASY_DUPHANDLE
465 curl_easy_cleanup(curl_default);
466#endif
467
468#ifdef USE_CURL_MULTI
469 curl_multi_cleanup(curlm);
470#endif
471 curl_global_cleanup();
472
473 curl_slist_free_all(pragma_header);
474 pragma_header = NULL;
475
476 curl_slist_free_all(no_pragma_header);
477 no_pragma_header = NULL;
478
479 if (curl_http_proxy) {
480 free((void *)curl_http_proxy);
481 curl_http_proxy = NULL;
482 }
483
484 if (ssl_cert_password != NULL) {
485 memset(ssl_cert_password, 0, strlen(ssl_cert_password));
486 free(ssl_cert_password);
487 ssl_cert_password = NULL;
488 }
489 ssl_cert_password_required = 0;
490}
491
492struct active_request_slot *get_active_slot(void)
493{
494 struct active_request_slot *slot = active_queue_head;
495 struct active_request_slot *newslot;
496
497#ifdef USE_CURL_MULTI
498 int num_transfers;
499
500 /* Wait for a slot to open up if the queue is full */
501 while (active_requests >= max_requests) {
502 curl_multi_perform(curlm, &num_transfers);
503 if (num_transfers < active_requests)
504 process_curl_messages();
505 }
506#endif
507
508 while (slot != NULL && slot->in_use)
509 slot = slot->next;
510
511 if (slot == NULL) {
512 newslot = xmalloc(sizeof(*newslot));
513 newslot->curl = NULL;
514 newslot->in_use = 0;
515 newslot->next = NULL;
516
517 slot = active_queue_head;
518 if (slot == NULL) {
519 active_queue_head = newslot;
520 } else {
521 while (slot->next != NULL)
522 slot = slot->next;
523 slot->next = newslot;
524 }
525 slot = newslot;
526 }
527
528 if (slot->curl == NULL) {
529#ifdef NO_CURL_EASY_DUPHANDLE
530 slot->curl = get_curl_handle();
531#else
532 slot->curl = curl_easy_duphandle(curl_default);
533#endif
534 curl_session_count++;
535 }
536
537 active_requests++;
538 slot->in_use = 1;
539 slot->local = NULL;
540 slot->results = NULL;
541 slot->finished = NULL;
542 slot->callback_data = NULL;
543 slot->callback_func = NULL;
544 curl_easy_setopt(slot->curl, CURLOPT_COOKIEFILE, curl_cookie_file);
545 curl_easy_setopt(slot->curl, CURLOPT_HTTPHEADER, pragma_header);
546 curl_easy_setopt(slot->curl, CURLOPT_ERRORBUFFER, curl_errorstr);
547 curl_easy_setopt(slot->curl, CURLOPT_CUSTOMREQUEST, NULL);
548 curl_easy_setopt(slot->curl, CURLOPT_READFUNCTION, NULL);
549 curl_easy_setopt(slot->curl, CURLOPT_WRITEFUNCTION, NULL);
550 curl_easy_setopt(slot->curl, CURLOPT_POSTFIELDS, NULL);
551 curl_easy_setopt(slot->curl, CURLOPT_UPLOAD, 0);
552 curl_easy_setopt(slot->curl, CURLOPT_HTTPGET, 1);
553
554 return slot;
555}
556
557int start_active_slot(struct active_request_slot *slot)
558{
559#ifdef USE_CURL_MULTI
560 CURLMcode curlm_result = curl_multi_add_handle(curlm, slot->curl);
561 int num_transfers;
562
563 if (curlm_result != CURLM_OK &&
564 curlm_result != CURLM_CALL_MULTI_PERFORM) {
565 active_requests--;
566 slot->in_use = 0;
567 return 0;
568 }
569
570 /*
571 * We know there must be something to do, since we just added
572 * something.
573 */
574 curl_multi_perform(curlm, &num_transfers);
575#endif
576 return 1;
577}
578
579#ifdef USE_CURL_MULTI
580struct fill_chain {
581 void *data;
582 int (*fill)(void *);
583 struct fill_chain *next;
584};
585
586static struct fill_chain *fill_cfg;
587
588void add_fill_function(void *data, int (*fill)(void *))
589{
590 struct fill_chain *new = xmalloc(sizeof(*new));
591 struct fill_chain **linkp = &fill_cfg;
592 new->data = data;
593 new->fill = fill;
594 new->next = NULL;
595 while (*linkp)
596 linkp = &(*linkp)->next;
597 *linkp = new;
598}
599
600void fill_active_slots(void)
601{
602 struct active_request_slot *slot = active_queue_head;
603
604 while (active_requests < max_requests) {
605 struct fill_chain *fill;
606 for (fill = fill_cfg; fill; fill = fill->next)
607 if (fill->fill(fill->data))
608 break;
609
610 if (!fill)
611 break;
612 }
613
614 while (slot != NULL) {
615 if (!slot->in_use && slot->curl != NULL
616 && curl_session_count > min_curl_sessions) {
617 curl_easy_cleanup(slot->curl);
618 slot->curl = NULL;
619 curl_session_count--;
620 }
621 slot = slot->next;
622 }
623}
624
625void step_active_slots(void)
626{
627 int num_transfers;
628 CURLMcode curlm_result;
629
630 do {
631 curlm_result = curl_multi_perform(curlm, &num_transfers);
632 } while (curlm_result == CURLM_CALL_MULTI_PERFORM);
633 if (num_transfers < active_requests) {
634 process_curl_messages();
635 fill_active_slots();
636 }
637}
638#endif
639
640void run_active_slot(struct active_request_slot *slot)
641{
642#ifdef USE_CURL_MULTI
643 long last_pos = 0;
644 long current_pos;
645 fd_set readfds;
646 fd_set writefds;
647 fd_set excfds;
648 int max_fd;
649 struct timeval select_timeout;
650 int finished = 0;
651
652 slot->finished = &finished;
653 while (!finished) {
654 data_received = 0;
655 step_active_slots();
656
657 if (!data_received && slot->local != NULL) {
658 current_pos = ftell(slot->local);
659 if (current_pos > last_pos)
660 data_received++;
661 last_pos = current_pos;
662 }
663
664 if (slot->in_use && !data_received) {
665 max_fd = 0;
666 FD_ZERO(&readfds);
667 FD_ZERO(&writefds);
668 FD_ZERO(&excfds);
669 select_timeout.tv_sec = 0;
670 select_timeout.tv_usec = 50000;
671 select(max_fd, &readfds, &writefds,
672 &excfds, &select_timeout);
673 }
674 }
675#else
676 while (slot->in_use) {
677 slot->curl_result = curl_easy_perform(slot->curl);
678 finish_active_slot(slot);
679 }
680#endif
681}
682
683static void closedown_active_slot(struct active_request_slot *slot)
684{
685 active_requests--;
686 slot->in_use = 0;
687}
688
689static void release_active_slot(struct active_request_slot *slot)
690{
691 closedown_active_slot(slot);
692 if (slot->curl && curl_session_count > min_curl_sessions) {
693#ifdef USE_CURL_MULTI
694 curl_multi_remove_handle(curlm, slot->curl);
695#endif
696 curl_easy_cleanup(slot->curl);
697 slot->curl = NULL;
698 curl_session_count--;
699 }
700#ifdef USE_CURL_MULTI
701 fill_active_slots();
702#endif
703}
704
705void finish_active_slot(struct active_request_slot *slot)
706{
707 closedown_active_slot(slot);
708 curl_easy_getinfo(slot->curl, CURLINFO_HTTP_CODE, &slot->http_code);
709
710 if (slot->finished != NULL)
711 (*slot->finished) = 1;
712
713 /* Store slot results so they can be read after the slot is reused */
714 if (slot->results != NULL) {
715 slot->results->curl_result = slot->curl_result;
716 slot->results->http_code = slot->http_code;
717 }
718
719 /* Run callback if appropriate */
720 if (slot->callback_func != NULL)
721 slot->callback_func(slot->callback_data);
722}
723
724void finish_all_active_slots(void)
725{
726 struct active_request_slot *slot = active_queue_head;
727
728 while (slot != NULL)
729 if (slot->in_use) {
730 run_active_slot(slot);
731 slot = active_queue_head;
732 } else {
733 slot = slot->next;
734 }
735}
736
737/* Helpers for modifying and creating URLs */
738static inline int needs_quote(int ch)
739{
740 if (((ch >= 'A') && (ch <= 'Z'))
741 || ((ch >= 'a') && (ch <= 'z'))
742 || ((ch >= '0') && (ch <= '9'))
743 || (ch == '/')
744 || (ch == '-')
745 || (ch == '.'))
746 return 0;
747 return 1;
748}
749
750static char *quote_ref_url(const char *base, const char *ref)
751{
752 struct strbuf buf = STRBUF_INIT;
753 const char *cp;
754 int ch;
755
756 end_url_with_slash(&buf, base);
757
758 for (cp = ref; (ch = *cp) != 0; cp++)
759 if (needs_quote(ch))
760 strbuf_addf(&buf, "%%%02x", ch);
761 else
762 strbuf_addch(&buf, *cp);
763
764 return strbuf_detach(&buf, NULL);
765}
766
767void append_remote_object_url(struct strbuf *buf, const char *url,
768 const char *hex,
769 int only_two_digit_prefix)
770{
771 end_url_with_slash(buf, url);
772
773 strbuf_addf(buf, "objects/%.*s/", 2, hex);
774 if (!only_two_digit_prefix)
775 strbuf_addf(buf, "%s", hex+2);
776}
777
778char *get_remote_object_url(const char *url, const char *hex,
779 int only_two_digit_prefix)
780{
781 struct strbuf buf = STRBUF_INIT;
782 append_remote_object_url(&buf, url, hex, only_two_digit_prefix);
783 return strbuf_detach(&buf, NULL);
784}
785
786/* http_request() targets */
787#define HTTP_REQUEST_STRBUF 0
788#define HTTP_REQUEST_FILE 1
789
790static int http_request(const char *url, void *result, int target, int options)
791{
792 struct active_request_slot *slot;
793 struct slot_results results;
794 struct curl_slist *headers = NULL;
795 struct strbuf buf = STRBUF_INIT;
796 int ret;
797
798 slot = get_active_slot();
799 slot->results = &results;
800 curl_easy_setopt(slot->curl, CURLOPT_HTTPGET, 1);
801
802 if (result == NULL) {
803 curl_easy_setopt(slot->curl, CURLOPT_NOBODY, 1);
804 } else {
805 curl_easy_setopt(slot->curl, CURLOPT_NOBODY, 0);
806 curl_easy_setopt(slot->curl, CURLOPT_FILE, result);
807
808 if (target == HTTP_REQUEST_FILE) {
809 long posn = ftell(result);
810 curl_easy_setopt(slot->curl, CURLOPT_WRITEFUNCTION,
811 fwrite);
812 if (posn > 0) {
813 strbuf_addf(&buf, "Range: bytes=%ld-", posn);
814 headers = curl_slist_append(headers, buf.buf);
815 strbuf_reset(&buf);
816 }
817 slot->local = result;
818 } else
819 curl_easy_setopt(slot->curl, CURLOPT_WRITEFUNCTION,
820 fwrite_buffer);
821 }
822
823 strbuf_addstr(&buf, "Pragma:");
824 if (options & HTTP_NO_CACHE)
825 strbuf_addstr(&buf, " no-cache");
826
827 headers = curl_slist_append(headers, buf.buf);
828
829 curl_easy_setopt(slot->curl, CURLOPT_URL, url);
830 curl_easy_setopt(slot->curl, CURLOPT_HTTPHEADER, headers);
831
832 if (start_active_slot(slot)) {
833 run_active_slot(slot);
834 if (results.curl_result == CURLE_OK)
835 ret = HTTP_OK;
836 else if (missing_target(&results))
837 ret = HTTP_MISSING_TARGET;
838 else if (results.http_code == 401) {
839 if (user_name && user_pass) {
840 ret = HTTP_NOAUTH;
841 } else {
842 /*
843 * git_getpass is needed here because its very likely stdin/stdout are
844 * pipes to our parent process. So we instead need to use /dev/tty,
845 * but that is non-portable. Using git_getpass() can at least be stubbed
846 * on other platforms with a different implementation if/when necessary.
847 */
848 if (!user_name)
849 user_name = xstrdup(git_getpass_with_description("Username", description));
850 init_curl_http_auth(slot->curl);
851 ret = HTTP_REAUTH;
852 }
853 } else {
854 if (!curl_errorstr[0])
855 strlcpy(curl_errorstr,
856 curl_easy_strerror(results.curl_result),
857 sizeof(curl_errorstr));
858 ret = HTTP_ERROR;
859 }
860 } else {
861 error("Unable to start HTTP request for %s", url);
862 ret = HTTP_START_FAILED;
863 }
864
865 slot->local = NULL;
866 curl_slist_free_all(headers);
867 strbuf_release(&buf);
868
869 return ret;
870}
871
872static int http_request_reauth(const char *url, void *result, int target,
873 int options)
874{
875 int ret = http_request(url, result, target, options);
876 if (ret != HTTP_REAUTH)
877 return ret;
878 return http_request(url, result, target, options);
879}
880
881int http_get_strbuf(const char *url, struct strbuf *result, int options)
882{
883 return http_request_reauth(url, result, HTTP_REQUEST_STRBUF, options);
884}
885
886/*
887 * Downloads an url and stores the result in the given file.
888 *
889 * If a previous interrupted download is detected (i.e. a previous temporary
890 * file is still around) the download is resumed.
891 */
892static int http_get_file(const char *url, const char *filename, int options)
893{
894 int ret;
895 struct strbuf tmpfile = STRBUF_INIT;
896 FILE *result;
897
898 strbuf_addf(&tmpfile, "%s.temp", filename);
899 result = fopen(tmpfile.buf, "a");
900 if (! result) {
901 error("Unable to open local file %s", tmpfile.buf);
902 ret = HTTP_ERROR;
903 goto cleanup;
904 }
905
906 ret = http_request_reauth(url, result, HTTP_REQUEST_FILE, options);
907 fclose(result);
908
909 if ((ret == HTTP_OK) && move_temp_to_file(tmpfile.buf, filename))
910 ret = HTTP_ERROR;
911cleanup:
912 strbuf_release(&tmpfile);
913 return ret;
914}
915
916int http_error(const char *url, int ret)
917{
918 /* http_request has already handled HTTP_START_FAILED. */
919 if (ret != HTTP_START_FAILED)
920 error("%s while accessing %s", curl_errorstr, url);
921
922 return ret;
923}
924
925int http_fetch_ref(const char *base, struct ref *ref)
926{
927 char *url;
928 struct strbuf buffer = STRBUF_INIT;
929 int ret = -1;
930
931 url = quote_ref_url(base, ref->name);
932 if (http_get_strbuf(url, &buffer, HTTP_NO_CACHE) == HTTP_OK) {
933 strbuf_rtrim(&buffer);
934 if (buffer.len == 40)
935 ret = get_sha1_hex(buffer.buf, ref->old_sha1);
936 else if (!prefixcmp(buffer.buf, "ref: ")) {
937 ref->symref = xstrdup(buffer.buf + 5);
938 ret = 0;
939 }
940 }
941
942 strbuf_release(&buffer);
943 free(url);
944 return ret;
945}
946
947/* Helpers for fetching packs */
948static char *fetch_pack_index(unsigned char *sha1, const char *base_url)
949{
950 char *url, *tmp;
951 struct strbuf buf = STRBUF_INIT;
952
953 if (http_is_verbose)
954 fprintf(stderr, "Getting index for pack %s\n", sha1_to_hex(sha1));
955
956 end_url_with_slash(&buf, base_url);
957 strbuf_addf(&buf, "objects/pack/pack-%s.idx", sha1_to_hex(sha1));
958 url = strbuf_detach(&buf, NULL);
959
960 strbuf_addf(&buf, "%s.temp", sha1_pack_index_name(sha1));
961 tmp = strbuf_detach(&buf, NULL);
962
963 if (http_get_file(url, tmp, 0) != HTTP_OK) {
964 error("Unable to get pack index %s\n", url);
965 free(tmp);
966 tmp = NULL;
967 }
968
969 free(url);
970 return tmp;
971}
972
973static int fetch_and_setup_pack_index(struct packed_git **packs_head,
974 unsigned char *sha1, const char *base_url)
975{
976 struct packed_git *new_pack;
977 char *tmp_idx = NULL;
978 int ret;
979
980 if (has_pack_index(sha1)) {
981 new_pack = parse_pack_index(sha1, NULL);
982 if (!new_pack)
983 return -1; /* parse_pack_index() already issued error message */
984 goto add_pack;
985 }
986
987 tmp_idx = fetch_pack_index(sha1, base_url);
988 if (!tmp_idx)
989 return -1;
990
991 new_pack = parse_pack_index(sha1, tmp_idx);
992 if (!new_pack) {
993 unlink(tmp_idx);
994 free(tmp_idx);
995
996 return -1; /* parse_pack_index() already issued error message */
997 }
998
999 ret = verify_pack_index(new_pack);
1000 if (!ret) {
1001 close_pack_index(new_pack);
1002 ret = move_temp_to_file(tmp_idx, sha1_pack_index_name(sha1));
1003 }
1004 free(tmp_idx);
1005 if (ret)
1006 return -1;
1007
1008add_pack:
1009 new_pack->next = *packs_head;
1010 *packs_head = new_pack;
1011 return 0;
1012}
1013
1014int http_get_info_packs(const char *base_url, struct packed_git **packs_head)
1015{
1016 int ret = 0, i = 0;
1017 char *url, *data;
1018 struct strbuf buf = STRBUF_INIT;
1019 unsigned char sha1[20];
1020
1021 end_url_with_slash(&buf, base_url);
1022 strbuf_addstr(&buf, "objects/info/packs");
1023 url = strbuf_detach(&buf, NULL);
1024
1025 ret = http_get_strbuf(url, &buf, HTTP_NO_CACHE);
1026 if (ret != HTTP_OK)
1027 goto cleanup;
1028
1029 data = buf.buf;
1030 while (i < buf.len) {
1031 switch (data[i]) {
1032 case 'P':
1033 i++;
1034 if (i + 52 <= buf.len &&
1035 !prefixcmp(data + i, " pack-") &&
1036 !prefixcmp(data + i + 46, ".pack\n")) {
1037 get_sha1_hex(data + i + 6, sha1);
1038 fetch_and_setup_pack_index(packs_head, sha1,
1039 base_url);
1040 i += 51;
1041 break;
1042 }
1043 default:
1044 while (i < buf.len && data[i] != '\n')
1045 i++;
1046 }
1047 i++;
1048 }
1049
1050cleanup:
1051 free(url);
1052 return ret;
1053}
1054
1055void release_http_pack_request(struct http_pack_request *preq)
1056{
1057 if (preq->packfile != NULL) {
1058 fclose(preq->packfile);
1059 preq->packfile = NULL;
1060 preq->slot->local = NULL;
1061 }
1062 if (preq->range_header != NULL) {
1063 curl_slist_free_all(preq->range_header);
1064 preq->range_header = NULL;
1065 }
1066 preq->slot = NULL;
1067 free(preq->url);
1068}
1069
1070int finish_http_pack_request(struct http_pack_request *preq)
1071{
1072 struct packed_git **lst;
1073 struct packed_git *p = preq->target;
1074 char *tmp_idx;
1075 struct child_process ip;
1076 const char *ip_argv[8];
1077
1078 close_pack_index(p);
1079
1080 fclose(preq->packfile);
1081 preq->packfile = NULL;
1082 preq->slot->local = NULL;
1083
1084 lst = preq->lst;
1085 while (*lst != p)
1086 lst = &((*lst)->next);
1087 *lst = (*lst)->next;
1088
1089 tmp_idx = xstrdup(preq->tmpfile);
1090 strcpy(tmp_idx + strlen(tmp_idx) - strlen(".pack.temp"),
1091 ".idx.temp");
1092
1093 ip_argv[0] = "index-pack";
1094 ip_argv[1] = "-o";
1095 ip_argv[2] = tmp_idx;
1096 ip_argv[3] = preq->tmpfile;
1097 ip_argv[4] = NULL;
1098
1099 memset(&ip, 0, sizeof(ip));
1100 ip.argv = ip_argv;
1101 ip.git_cmd = 1;
1102 ip.no_stdin = 1;
1103 ip.no_stdout = 1;
1104
1105 if (run_command(&ip)) {
1106 unlink(preq->tmpfile);
1107 unlink(tmp_idx);
1108 free(tmp_idx);
1109 return -1;
1110 }
1111
1112 unlink(sha1_pack_index_name(p->sha1));
1113
1114 if (move_temp_to_file(preq->tmpfile, sha1_pack_name(p->sha1))
1115 || move_temp_to_file(tmp_idx, sha1_pack_index_name(p->sha1))) {
1116 free(tmp_idx);
1117 return -1;
1118 }
1119
1120 install_packed_git(p);
1121 free(tmp_idx);
1122 return 0;
1123}
1124
1125struct http_pack_request *new_http_pack_request(
1126 struct packed_git *target, const char *base_url)
1127{
1128 long prev_posn = 0;
1129 char range[RANGE_HEADER_SIZE];
1130 struct strbuf buf = STRBUF_INIT;
1131 struct http_pack_request *preq;
1132
1133 preq = xcalloc(1, sizeof(*preq));
1134 preq->target = target;
1135
1136 end_url_with_slash(&buf, base_url);
1137 strbuf_addf(&buf, "objects/pack/pack-%s.pack",
1138 sha1_to_hex(target->sha1));
1139 preq->url = strbuf_detach(&buf, NULL);
1140
1141 snprintf(preq->tmpfile, sizeof(preq->tmpfile), "%s.temp",
1142 sha1_pack_name(target->sha1));
1143 preq->packfile = fopen(preq->tmpfile, "a");
1144 if (!preq->packfile) {
1145 error("Unable to open local file %s for pack",
1146 preq->tmpfile);
1147 goto abort;
1148 }
1149
1150 preq->slot = get_active_slot();
1151 preq->slot->local = preq->packfile;
1152 curl_easy_setopt(preq->slot->curl, CURLOPT_FILE, preq->packfile);
1153 curl_easy_setopt(preq->slot->curl, CURLOPT_WRITEFUNCTION, fwrite);
1154 curl_easy_setopt(preq->slot->curl, CURLOPT_URL, preq->url);
1155 curl_easy_setopt(preq->slot->curl, CURLOPT_HTTPHEADER,
1156 no_pragma_header);
1157
1158 /*
1159 * If there is data present from a previous transfer attempt,
1160 * resume where it left off
1161 */
1162 prev_posn = ftell(preq->packfile);
1163 if (prev_posn>0) {
1164 if (http_is_verbose)
1165 fprintf(stderr,
1166 "Resuming fetch of pack %s at byte %ld\n",
1167 sha1_to_hex(target->sha1), prev_posn);
1168 sprintf(range, "Range: bytes=%ld-", prev_posn);
1169 preq->range_header = curl_slist_append(NULL, range);
1170 curl_easy_setopt(preq->slot->curl, CURLOPT_HTTPHEADER,
1171 preq->range_header);
1172 }
1173
1174 return preq;
1175
1176abort:
1177 free(preq->url);
1178 free(preq);
1179 return NULL;
1180}
1181
1182/* Helpers for fetching objects (loose) */
1183static size_t fwrite_sha1_file(char *ptr, size_t eltsize, size_t nmemb,
1184 void *data)
1185{
1186 unsigned char expn[4096];
1187 size_t size = eltsize * nmemb;
1188 int posn = 0;
1189 struct http_object_request *freq =
1190 (struct http_object_request *)data;
1191 do {
1192 ssize_t retval = xwrite(freq->localfile,
1193 (char *) ptr + posn, size - posn);
1194 if (retval < 0)
1195 return posn;
1196 posn += retval;
1197 } while (posn < size);
1198
1199 freq->stream.avail_in = size;
1200 freq->stream.next_in = (void *)ptr;
1201 do {
1202 freq->stream.next_out = expn;
1203 freq->stream.avail_out = sizeof(expn);
1204 freq->zret = git_inflate(&freq->stream, Z_SYNC_FLUSH);
1205 git_SHA1_Update(&freq->c, expn,
1206 sizeof(expn) - freq->stream.avail_out);
1207 } while (freq->stream.avail_in && freq->zret == Z_OK);
1208 data_received++;
1209 return size;
1210}
1211
1212struct http_object_request *new_http_object_request(const char *base_url,
1213 unsigned char *sha1)
1214{
1215 char *hex = sha1_to_hex(sha1);
1216 char *filename;
1217 char prevfile[PATH_MAX];
1218 int prevlocal;
1219 char prev_buf[PREV_BUF_SIZE];
1220 ssize_t prev_read = 0;
1221 long prev_posn = 0;
1222 char range[RANGE_HEADER_SIZE];
1223 struct curl_slist *range_header = NULL;
1224 struct http_object_request *freq;
1225
1226 freq = xcalloc(1, sizeof(*freq));
1227 hashcpy(freq->sha1, sha1);
1228 freq->localfile = -1;
1229
1230 filename = sha1_file_name(sha1);
1231 snprintf(freq->tmpfile, sizeof(freq->tmpfile),
1232 "%s.temp", filename);
1233
1234 snprintf(prevfile, sizeof(prevfile), "%s.prev", filename);
1235 unlink_or_warn(prevfile);
1236 rename(freq->tmpfile, prevfile);
1237 unlink_or_warn(freq->tmpfile);
1238
1239 if (freq->localfile != -1)
1240 error("fd leakage in start: %d", freq->localfile);
1241 freq->localfile = open(freq->tmpfile,
1242 O_WRONLY | O_CREAT | O_EXCL, 0666);
1243 /*
1244 * This could have failed due to the "lazy directory creation";
1245 * try to mkdir the last path component.
1246 */
1247 if (freq->localfile < 0 && errno == ENOENT) {
1248 char *dir = strrchr(freq->tmpfile, '/');
1249 if (dir) {
1250 *dir = 0;
1251 mkdir(freq->tmpfile, 0777);
1252 *dir = '/';
1253 }
1254 freq->localfile = open(freq->tmpfile,
1255 O_WRONLY | O_CREAT | O_EXCL, 0666);
1256 }
1257
1258 if (freq->localfile < 0) {
1259 error("Couldn't create temporary file %s: %s",
1260 freq->tmpfile, strerror(errno));
1261 goto abort;
1262 }
1263
1264 git_inflate_init(&freq->stream);
1265
1266 git_SHA1_Init(&freq->c);
1267
1268 freq->url = get_remote_object_url(base_url, hex, 0);
1269
1270 /*
1271 * If a previous temp file is present, process what was already
1272 * fetched.
1273 */
1274 prevlocal = open(prevfile, O_RDONLY);
1275 if (prevlocal != -1) {
1276 do {
1277 prev_read = xread(prevlocal, prev_buf, PREV_BUF_SIZE);
1278 if (prev_read>0) {
1279 if (fwrite_sha1_file(prev_buf,
1280 1,
1281 prev_read,
1282 freq) == prev_read) {
1283 prev_posn += prev_read;
1284 } else {
1285 prev_read = -1;
1286 }
1287 }
1288 } while (prev_read > 0);
1289 close(prevlocal);
1290 }
1291 unlink_or_warn(prevfile);
1292
1293 /*
1294 * Reset inflate/SHA1 if there was an error reading the previous temp
1295 * file; also rewind to the beginning of the local file.
1296 */
1297 if (prev_read == -1) {
1298 memset(&freq->stream, 0, sizeof(freq->stream));
1299 git_inflate_init(&freq->stream);
1300 git_SHA1_Init(&freq->c);
1301 if (prev_posn>0) {
1302 prev_posn = 0;
1303 lseek(freq->localfile, 0, SEEK_SET);
1304 if (ftruncate(freq->localfile, 0) < 0) {
1305 error("Couldn't truncate temporary file %s: %s",
1306 freq->tmpfile, strerror(errno));
1307 goto abort;
1308 }
1309 }
1310 }
1311
1312 freq->slot = get_active_slot();
1313
1314 curl_easy_setopt(freq->slot->curl, CURLOPT_FILE, freq);
1315 curl_easy_setopt(freq->slot->curl, CURLOPT_WRITEFUNCTION, fwrite_sha1_file);
1316 curl_easy_setopt(freq->slot->curl, CURLOPT_ERRORBUFFER, freq->errorstr);
1317 curl_easy_setopt(freq->slot->curl, CURLOPT_URL, freq->url);
1318 curl_easy_setopt(freq->slot->curl, CURLOPT_HTTPHEADER, no_pragma_header);
1319
1320 /*
1321 * If we have successfully processed data from a previous fetch
1322 * attempt, only fetch the data we don't already have.
1323 */
1324 if (prev_posn>0) {
1325 if (http_is_verbose)
1326 fprintf(stderr,
1327 "Resuming fetch of object %s at byte %ld\n",
1328 hex, prev_posn);
1329 sprintf(range, "Range: bytes=%ld-", prev_posn);
1330 range_header = curl_slist_append(range_header, range);
1331 curl_easy_setopt(freq->slot->curl,
1332 CURLOPT_HTTPHEADER, range_header);
1333 }
1334
1335 return freq;
1336
1337abort:
1338 free(freq->url);
1339 free(freq);
1340 return NULL;
1341}
1342
1343void process_http_object_request(struct http_object_request *freq)
1344{
1345 if (freq->slot == NULL)
1346 return;
1347 freq->curl_result = freq->slot->curl_result;
1348 freq->http_code = freq->slot->http_code;
1349 freq->slot = NULL;
1350}
1351
1352int finish_http_object_request(struct http_object_request *freq)
1353{
1354 struct stat st;
1355
1356 close(freq->localfile);
1357 freq->localfile = -1;
1358
1359 process_http_object_request(freq);
1360
1361 if (freq->http_code == 416) {
1362 warning("requested range invalid; we may already have all the data.");
1363 } else if (freq->curl_result != CURLE_OK) {
1364 if (stat(freq->tmpfile, &st) == 0)
1365 if (st.st_size == 0)
1366 unlink_or_warn(freq->tmpfile);
1367 return -1;
1368 }
1369
1370 git_inflate_end(&freq->stream);
1371 git_SHA1_Final(freq->real_sha1, &freq->c);
1372 if (freq->zret != Z_STREAM_END) {
1373 unlink_or_warn(freq->tmpfile);
1374 return -1;
1375 }
1376 if (hashcmp(freq->sha1, freq->real_sha1)) {
1377 unlink_or_warn(freq->tmpfile);
1378 return -1;
1379 }
1380 freq->rename =
1381 move_temp_to_file(freq->tmpfile, sha1_file_name(freq->sha1));
1382
1383 return freq->rename;
1384}
1385
1386void abort_http_object_request(struct http_object_request *freq)
1387{
1388 unlink_or_warn(freq->tmpfile);
1389
1390 release_http_object_request(freq);
1391}
1392
1393void release_http_object_request(struct http_object_request *freq)
1394{
1395 if (freq->localfile != -1) {
1396 close(freq->localfile);
1397 freq->localfile = -1;
1398 }
1399 if (freq->url != NULL) {
1400 free(freq->url);
1401 freq->url = NULL;
1402 }
1403 if (freq->slot != NULL) {
1404 freq->slot->callback_func = NULL;
1405 freq->slot->callback_data = NULL;
1406 release_active_slot(freq->slot);
1407 freq->slot = NULL;
1408 }
1409}