1#include "cache.h"
2#include "config.h"
3#include "transport.h"
4#include "run-command.h"
5#include "pkt-line.h"
6#include "fetch-pack.h"
7#include "remote.h"
8#include "connect.h"
9#include "send-pack.h"
10#include "walker.h"
11#include "bundle.h"
12#include "dir.h"
13#include "refs.h"
14#include "branch.h"
15#include "url.h"
16#include "submodule.h"
17#include "string-list.h"
18#include "sha1-array.h"
19#include "sigchain.h"
20
21static void set_upstreams(struct transport *transport, struct ref *refs,
22 int pretend)
23{
24 struct ref *ref;
25 for (ref = refs; ref; ref = ref->next) {
26 const char *localname;
27 const char *tmp;
28 const char *remotename;
29 int flag = 0;
30 /*
31 * Check suitability for tracking. Must be successful /
32 * already up-to-date ref create/modify (not delete).
33 */
34 if (ref->status != REF_STATUS_OK &&
35 ref->status != REF_STATUS_UPTODATE)
36 continue;
37 if (!ref->peer_ref)
38 continue;
39 if (is_null_oid(&ref->new_oid))
40 continue;
41
42 /* Follow symbolic refs (mainly for HEAD). */
43 localname = ref->peer_ref->name;
44 remotename = ref->name;
45 tmp = resolve_ref_unsafe(localname, RESOLVE_REF_READING,
46 NULL, &flag);
47 if (tmp && flag & REF_ISSYMREF &&
48 starts_with(tmp, "refs/heads/"))
49 localname = tmp;
50
51 /* Both source and destination must be local branches. */
52 if (!localname || !starts_with(localname, "refs/heads/"))
53 continue;
54 if (!remotename || !starts_with(remotename, "refs/heads/"))
55 continue;
56
57 if (!pretend)
58 install_branch_config(BRANCH_CONFIG_VERBOSE,
59 localname + 11, transport->remote->name,
60 remotename);
61 else
62 printf(_("Would set upstream of '%s' to '%s' of '%s'\n"),
63 localname + 11, remotename + 11,
64 transport->remote->name);
65 }
66}
67
68struct bundle_transport_data {
69 int fd;
70 struct bundle_header header;
71};
72
73static struct ref *get_refs_from_bundle(struct transport *transport, int for_push)
74{
75 struct bundle_transport_data *data = transport->data;
76 struct ref *result = NULL;
77 int i;
78
79 if (for_push)
80 return NULL;
81
82 if (data->fd > 0)
83 close(data->fd);
84 data->fd = read_bundle_header(transport->url, &data->header);
85 if (data->fd < 0)
86 die ("Could not read bundle '%s'.", transport->url);
87 for (i = 0; i < data->header.references.nr; i++) {
88 struct ref_list_entry *e = data->header.references.list + i;
89 struct ref *ref = alloc_ref(e->name);
90 oidcpy(&ref->old_oid, &e->oid);
91 ref->next = result;
92 result = ref;
93 }
94 return result;
95}
96
97static int fetch_refs_from_bundle(struct transport *transport,
98 int nr_heads, struct ref **to_fetch)
99{
100 struct bundle_transport_data *data = transport->data;
101 return unbundle(&data->header, data->fd,
102 transport->progress ? BUNDLE_VERBOSE : 0);
103}
104
105static int close_bundle(struct transport *transport)
106{
107 struct bundle_transport_data *data = transport->data;
108 if (data->fd > 0)
109 close(data->fd);
110 free(data);
111 return 0;
112}
113
114struct git_transport_data {
115 struct git_transport_options options;
116 struct child_process *conn;
117 int fd[2];
118 unsigned got_remote_heads : 1;
119 struct oid_array extra_have;
120 struct oid_array shallow;
121};
122
123static int set_git_option(struct git_transport_options *opts,
124 const char *name, const char *value)
125{
126 if (!strcmp(name, TRANS_OPT_UPLOADPACK)) {
127 opts->uploadpack = value;
128 return 0;
129 } else if (!strcmp(name, TRANS_OPT_RECEIVEPACK)) {
130 opts->receivepack = value;
131 return 0;
132 } else if (!strcmp(name, TRANS_OPT_THIN)) {
133 opts->thin = !!value;
134 return 0;
135 } else if (!strcmp(name, TRANS_OPT_FOLLOWTAGS)) {
136 opts->followtags = !!value;
137 return 0;
138 } else if (!strcmp(name, TRANS_OPT_KEEP)) {
139 opts->keep = !!value;
140 return 0;
141 } else if (!strcmp(name, TRANS_OPT_UPDATE_SHALLOW)) {
142 opts->update_shallow = !!value;
143 return 0;
144 } else if (!strcmp(name, TRANS_OPT_DEPTH)) {
145 if (!value)
146 opts->depth = 0;
147 else {
148 char *end;
149 opts->depth = strtol(value, &end, 0);
150 if (*end)
151 die(_("transport: invalid depth option '%s'"), value);
152 }
153 return 0;
154 } else if (!strcmp(name, TRANS_OPT_DEEPEN_SINCE)) {
155 opts->deepen_since = value;
156 return 0;
157 } else if (!strcmp(name, TRANS_OPT_DEEPEN_NOT)) {
158 opts->deepen_not = (const struct string_list *)value;
159 return 0;
160 } else if (!strcmp(name, TRANS_OPT_DEEPEN_RELATIVE)) {
161 opts->deepen_relative = !!value;
162 return 0;
163 }
164 return 1;
165}
166
167static int connect_setup(struct transport *transport, int for_push)
168{
169 struct git_transport_data *data = transport->data;
170 int flags = transport->verbose > 0 ? CONNECT_VERBOSE : 0;
171
172 if (data->conn)
173 return 0;
174
175 switch (transport->family) {
176 case TRANSPORT_FAMILY_ALL: break;
177 case TRANSPORT_FAMILY_IPV4: flags |= CONNECT_IPV4; break;
178 case TRANSPORT_FAMILY_IPV6: flags |= CONNECT_IPV6; break;
179 }
180
181 data->conn = git_connect(data->fd, transport->url,
182 for_push ? data->options.receivepack :
183 data->options.uploadpack,
184 flags);
185
186 return 0;
187}
188
189static struct ref *get_refs_via_connect(struct transport *transport, int for_push)
190{
191 struct git_transport_data *data = transport->data;
192 struct ref *refs;
193
194 connect_setup(transport, for_push);
195 get_remote_heads(data->fd[0], NULL, 0, &refs,
196 for_push ? REF_NORMAL : 0,
197 &data->extra_have,
198 &data->shallow);
199 data->got_remote_heads = 1;
200
201 return refs;
202}
203
204static int fetch_refs_via_pack(struct transport *transport,
205 int nr_heads, struct ref **to_fetch)
206{
207 int ret = 0;
208 struct git_transport_data *data = transport->data;
209 struct ref *refs;
210 char *dest = xstrdup(transport->url);
211 struct fetch_pack_args args;
212 struct ref *refs_tmp = NULL;
213
214 memset(&args, 0, sizeof(args));
215 args.uploadpack = data->options.uploadpack;
216 args.keep_pack = data->options.keep;
217 args.lock_pack = 1;
218 args.use_thin_pack = data->options.thin;
219 args.include_tag = data->options.followtags;
220 args.verbose = (transport->verbose > 1);
221 args.quiet = (transport->verbose < 0);
222 args.no_progress = !transport->progress;
223 args.depth = data->options.depth;
224 args.deepen_since = data->options.deepen_since;
225 args.deepen_not = data->options.deepen_not;
226 args.deepen_relative = data->options.deepen_relative;
227 args.check_self_contained_and_connected =
228 data->options.check_self_contained_and_connected;
229 args.cloning = transport->cloning;
230 args.update_shallow = data->options.update_shallow;
231
232 if (!data->got_remote_heads) {
233 connect_setup(transport, 0);
234 get_remote_heads(data->fd[0], NULL, 0, &refs_tmp, 0,
235 NULL, &data->shallow);
236 data->got_remote_heads = 1;
237 }
238
239 refs = fetch_pack(&args, data->fd, data->conn,
240 refs_tmp ? refs_tmp : transport->remote_refs,
241 dest, to_fetch, nr_heads, &data->shallow,
242 &transport->pack_lockfile);
243 close(data->fd[0]);
244 close(data->fd[1]);
245 if (finish_connect(data->conn))
246 ret = -1;
247 data->conn = NULL;
248 data->got_remote_heads = 0;
249 data->options.self_contained_and_connected =
250 args.self_contained_and_connected;
251
252 if (refs == NULL)
253 ret = -1;
254 if (report_unmatched_refs(to_fetch, nr_heads))
255 ret = -1;
256
257 free_refs(refs_tmp);
258 free_refs(refs);
259 free(dest);
260 return ret;
261}
262
263static int push_had_errors(struct ref *ref)
264{
265 for (; ref; ref = ref->next) {
266 switch (ref->status) {
267 case REF_STATUS_NONE:
268 case REF_STATUS_UPTODATE:
269 case REF_STATUS_OK:
270 break;
271 default:
272 return 1;
273 }
274 }
275 return 0;
276}
277
278int transport_refs_pushed(struct ref *ref)
279{
280 for (; ref; ref = ref->next) {
281 switch(ref->status) {
282 case REF_STATUS_NONE:
283 case REF_STATUS_UPTODATE:
284 break;
285 default:
286 return 1;
287 }
288 }
289 return 0;
290}
291
292void transport_update_tracking_ref(struct remote *remote, struct ref *ref, int verbose)
293{
294 struct refspec rs;
295
296 if (ref->status != REF_STATUS_OK && ref->status != REF_STATUS_UPTODATE)
297 return;
298
299 rs.src = ref->name;
300 rs.dst = NULL;
301
302 if (!remote_find_tracking(remote, &rs)) {
303 if (verbose)
304 fprintf(stderr, "updating local tracking ref '%s'\n", rs.dst);
305 if (ref->deletion) {
306 delete_ref(NULL, rs.dst, NULL, 0);
307 } else
308 update_ref("update by push", rs.dst,
309 ref->new_oid.hash, NULL, 0, 0);
310 free(rs.dst);
311 }
312}
313
314static void print_ref_status(char flag, const char *summary,
315 struct ref *to, struct ref *from, const char *msg,
316 int porcelain, int summary_width)
317{
318 if (porcelain) {
319 if (from)
320 fprintf(stdout, "%c\t%s:%s\t", flag, from->name, to->name);
321 else
322 fprintf(stdout, "%c\t:%s\t", flag, to->name);
323 if (msg)
324 fprintf(stdout, "%s (%s)\n", summary, msg);
325 else
326 fprintf(stdout, "%s\n", summary);
327 } else {
328 fprintf(stderr, " %c %-*s ", flag, summary_width, summary);
329 if (from)
330 fprintf(stderr, "%s -> %s", prettify_refname(from->name), prettify_refname(to->name));
331 else
332 fputs(prettify_refname(to->name), stderr);
333 if (msg) {
334 fputs(" (", stderr);
335 fputs(msg, stderr);
336 fputc(')', stderr);
337 }
338 fputc('\n', stderr);
339 }
340}
341
342static void print_ok_ref_status(struct ref *ref, int porcelain, int summary_width)
343{
344 if (ref->deletion)
345 print_ref_status('-', "[deleted]", ref, NULL, NULL,
346 porcelain, summary_width);
347 else if (is_null_oid(&ref->old_oid))
348 print_ref_status('*',
349 (starts_with(ref->name, "refs/tags/") ? "[new tag]" :
350 "[new branch]"),
351 ref, ref->peer_ref, NULL, porcelain, summary_width);
352 else {
353 struct strbuf quickref = STRBUF_INIT;
354 char type;
355 const char *msg;
356
357 strbuf_add_unique_abbrev(&quickref, ref->old_oid.hash,
358 DEFAULT_ABBREV);
359 if (ref->forced_update) {
360 strbuf_addstr(&quickref, "...");
361 type = '+';
362 msg = "forced update";
363 } else {
364 strbuf_addstr(&quickref, "..");
365 type = ' ';
366 msg = NULL;
367 }
368 strbuf_add_unique_abbrev(&quickref, ref->new_oid.hash,
369 DEFAULT_ABBREV);
370
371 print_ref_status(type, quickref.buf, ref, ref->peer_ref, msg,
372 porcelain, summary_width);
373 strbuf_release(&quickref);
374 }
375}
376
377static int print_one_push_status(struct ref *ref, const char *dest, int count,
378 int porcelain, int summary_width)
379{
380 if (!count) {
381 char *url = transport_anonymize_url(dest);
382 fprintf(porcelain ? stdout : stderr, "To %s\n", url);
383 free(url);
384 }
385
386 switch(ref->status) {
387 case REF_STATUS_NONE:
388 print_ref_status('X', "[no match]", ref, NULL, NULL,
389 porcelain, summary_width);
390 break;
391 case REF_STATUS_REJECT_NODELETE:
392 print_ref_status('!', "[rejected]", ref, NULL,
393 "remote does not support deleting refs",
394 porcelain, summary_width);
395 break;
396 case REF_STATUS_UPTODATE:
397 print_ref_status('=', "[up to date]", ref,
398 ref->peer_ref, NULL, porcelain, summary_width);
399 break;
400 case REF_STATUS_REJECT_NONFASTFORWARD:
401 print_ref_status('!', "[rejected]", ref, ref->peer_ref,
402 "non-fast-forward", porcelain, summary_width);
403 break;
404 case REF_STATUS_REJECT_ALREADY_EXISTS:
405 print_ref_status('!', "[rejected]", ref, ref->peer_ref,
406 "already exists", porcelain, summary_width);
407 break;
408 case REF_STATUS_REJECT_FETCH_FIRST:
409 print_ref_status('!', "[rejected]", ref, ref->peer_ref,
410 "fetch first", porcelain, summary_width);
411 break;
412 case REF_STATUS_REJECT_NEEDS_FORCE:
413 print_ref_status('!', "[rejected]", ref, ref->peer_ref,
414 "needs force", porcelain, summary_width);
415 break;
416 case REF_STATUS_REJECT_STALE:
417 print_ref_status('!', "[rejected]", ref, ref->peer_ref,
418 "stale info", porcelain, summary_width);
419 break;
420 case REF_STATUS_REJECT_SHALLOW:
421 print_ref_status('!', "[rejected]", ref, ref->peer_ref,
422 "new shallow roots not allowed",
423 porcelain, summary_width);
424 break;
425 case REF_STATUS_REMOTE_REJECT:
426 print_ref_status('!', "[remote rejected]", ref,
427 ref->deletion ? NULL : ref->peer_ref,
428 ref->remote_status, porcelain, summary_width);
429 break;
430 case REF_STATUS_EXPECTING_REPORT:
431 print_ref_status('!', "[remote failure]", ref,
432 ref->deletion ? NULL : ref->peer_ref,
433 "remote failed to report status",
434 porcelain, summary_width);
435 break;
436 case REF_STATUS_ATOMIC_PUSH_FAILED:
437 print_ref_status('!', "[rejected]", ref, ref->peer_ref,
438 "atomic push failed", porcelain, summary_width);
439 break;
440 case REF_STATUS_OK:
441 print_ok_ref_status(ref, porcelain, summary_width);
442 break;
443 }
444
445 return 1;
446}
447
448static int measure_abbrev(const struct object_id *oid, int sofar)
449{
450 char hex[GIT_MAX_HEXSZ + 1];
451 int w = find_unique_abbrev_r(hex, oid->hash, DEFAULT_ABBREV);
452
453 return (w < sofar) ? sofar : w;
454}
455
456int transport_summary_width(const struct ref *refs)
457{
458 int maxw = -1;
459
460 for (; refs; refs = refs->next) {
461 maxw = measure_abbrev(&refs->old_oid, maxw);
462 maxw = measure_abbrev(&refs->new_oid, maxw);
463 }
464 if (maxw < 0)
465 maxw = FALLBACK_DEFAULT_ABBREV;
466 return (2 * maxw + 3);
467}
468
469void transport_print_push_status(const char *dest, struct ref *refs,
470 int verbose, int porcelain, unsigned int *reject_reasons)
471{
472 struct ref *ref;
473 int n = 0;
474 char *head;
475 int summary_width = transport_summary_width(refs);
476
477 head = resolve_refdup("HEAD", RESOLVE_REF_READING, NULL, NULL);
478
479 if (verbose) {
480 for (ref = refs; ref; ref = ref->next)
481 if (ref->status == REF_STATUS_UPTODATE)
482 n += print_one_push_status(ref, dest, n,
483 porcelain, summary_width);
484 }
485
486 for (ref = refs; ref; ref = ref->next)
487 if (ref->status == REF_STATUS_OK)
488 n += print_one_push_status(ref, dest, n,
489 porcelain, summary_width);
490
491 *reject_reasons = 0;
492 for (ref = refs; ref; ref = ref->next) {
493 if (ref->status != REF_STATUS_NONE &&
494 ref->status != REF_STATUS_UPTODATE &&
495 ref->status != REF_STATUS_OK)
496 n += print_one_push_status(ref, dest, n,
497 porcelain, summary_width);
498 if (ref->status == REF_STATUS_REJECT_NONFASTFORWARD) {
499 if (head != NULL && !strcmp(head, ref->name))
500 *reject_reasons |= REJECT_NON_FF_HEAD;
501 else
502 *reject_reasons |= REJECT_NON_FF_OTHER;
503 } else if (ref->status == REF_STATUS_REJECT_ALREADY_EXISTS) {
504 *reject_reasons |= REJECT_ALREADY_EXISTS;
505 } else if (ref->status == REF_STATUS_REJECT_FETCH_FIRST) {
506 *reject_reasons |= REJECT_FETCH_FIRST;
507 } else if (ref->status == REF_STATUS_REJECT_NEEDS_FORCE) {
508 *reject_reasons |= REJECT_NEEDS_FORCE;
509 }
510 }
511 free(head);
512}
513
514void transport_verify_remote_names(int nr_heads, const char **heads)
515{
516 int i;
517
518 for (i = 0; i < nr_heads; i++) {
519 const char *local = heads[i];
520 const char *remote = strrchr(heads[i], ':');
521
522 if (*local == '+')
523 local++;
524
525 /* A matching refspec is okay. */
526 if (remote == local && remote[1] == '\0')
527 continue;
528
529 remote = remote ? (remote + 1) : local;
530 if (check_refname_format(remote,
531 REFNAME_ALLOW_ONELEVEL|REFNAME_REFSPEC_PATTERN))
532 die("remote part of refspec is not a valid name in %s",
533 heads[i]);
534 }
535}
536
537static int git_transport_push(struct transport *transport, struct ref *remote_refs, int flags)
538{
539 struct git_transport_data *data = transport->data;
540 struct send_pack_args args;
541 int ret;
542
543 if (!data->got_remote_heads) {
544 struct ref *tmp_refs;
545 connect_setup(transport, 1);
546
547 get_remote_heads(data->fd[0], NULL, 0, &tmp_refs, REF_NORMAL,
548 NULL, &data->shallow);
549 data->got_remote_heads = 1;
550 }
551
552 memset(&args, 0, sizeof(args));
553 args.send_mirror = !!(flags & TRANSPORT_PUSH_MIRROR);
554 args.force_update = !!(flags & TRANSPORT_PUSH_FORCE);
555 args.use_thin_pack = data->options.thin;
556 args.verbose = (transport->verbose > 0);
557 args.quiet = (transport->verbose < 0);
558 args.progress = transport->progress;
559 args.dry_run = !!(flags & TRANSPORT_PUSH_DRY_RUN);
560 args.porcelain = !!(flags & TRANSPORT_PUSH_PORCELAIN);
561 args.atomic = !!(flags & TRANSPORT_PUSH_ATOMIC);
562 args.push_options = transport->push_options;
563 args.url = transport->url;
564
565 if (flags & TRANSPORT_PUSH_CERT_ALWAYS)
566 args.push_cert = SEND_PACK_PUSH_CERT_ALWAYS;
567 else if (flags & TRANSPORT_PUSH_CERT_IF_ASKED)
568 args.push_cert = SEND_PACK_PUSH_CERT_IF_ASKED;
569 else
570 args.push_cert = SEND_PACK_PUSH_CERT_NEVER;
571
572 ret = send_pack(&args, data->fd, data->conn, remote_refs,
573 &data->extra_have);
574
575 close(data->fd[1]);
576 close(data->fd[0]);
577 ret |= finish_connect(data->conn);
578 data->conn = NULL;
579 data->got_remote_heads = 0;
580
581 return ret;
582}
583
584static int connect_git(struct transport *transport, const char *name,
585 const char *executable, int fd[2])
586{
587 struct git_transport_data *data = transport->data;
588 data->conn = git_connect(data->fd, transport->url,
589 executable, 0);
590 fd[0] = data->fd[0];
591 fd[1] = data->fd[1];
592 return 0;
593}
594
595static int disconnect_git(struct transport *transport)
596{
597 struct git_transport_data *data = transport->data;
598 if (data->conn) {
599 if (data->got_remote_heads)
600 packet_flush(data->fd[1]);
601 close(data->fd[0]);
602 close(data->fd[1]);
603 finish_connect(data->conn);
604 }
605
606 free(data);
607 return 0;
608}
609
610void transport_take_over(struct transport *transport,
611 struct child_process *child)
612{
613 struct git_transport_data *data;
614
615 if (!transport->smart_options)
616 die("BUG: taking over transport requires non-NULL "
617 "smart_options field.");
618
619 data = xcalloc(1, sizeof(*data));
620 data->options = *transport->smart_options;
621 data->conn = child;
622 data->fd[0] = data->conn->out;
623 data->fd[1] = data->conn->in;
624 data->got_remote_heads = 0;
625 transport->data = data;
626
627 transport->set_option = NULL;
628 transport->get_refs_list = get_refs_via_connect;
629 transport->fetch = fetch_refs_via_pack;
630 transport->push = NULL;
631 transport->push_refs = git_transport_push;
632 transport->disconnect = disconnect_git;
633 transport->smart_options = &(data->options);
634
635 transport->cannot_reuse = 1;
636}
637
638static int is_file(const char *url)
639{
640 struct stat buf;
641 if (stat(url, &buf))
642 return 0;
643 return S_ISREG(buf.st_mode);
644}
645
646static int external_specification_len(const char *url)
647{
648 return strchr(url, ':') - url;
649}
650
651static const struct string_list *protocol_whitelist(void)
652{
653 static int enabled = -1;
654 static struct string_list allowed = STRING_LIST_INIT_DUP;
655
656 if (enabled < 0) {
657 const char *v = getenv("GIT_ALLOW_PROTOCOL");
658 if (v) {
659 string_list_split(&allowed, v, ':', -1);
660 string_list_sort(&allowed);
661 enabled = 1;
662 } else {
663 enabled = 0;
664 }
665 }
666
667 return enabled ? &allowed : NULL;
668}
669
670enum protocol_allow_config {
671 PROTOCOL_ALLOW_NEVER = 0,
672 PROTOCOL_ALLOW_USER_ONLY,
673 PROTOCOL_ALLOW_ALWAYS
674};
675
676static enum protocol_allow_config parse_protocol_config(const char *key,
677 const char *value)
678{
679 if (!strcasecmp(value, "always"))
680 return PROTOCOL_ALLOW_ALWAYS;
681 else if (!strcasecmp(value, "never"))
682 return PROTOCOL_ALLOW_NEVER;
683 else if (!strcasecmp(value, "user"))
684 return PROTOCOL_ALLOW_USER_ONLY;
685
686 die("unknown value for config '%s': %s", key, value);
687}
688
689static enum protocol_allow_config get_protocol_config(const char *type)
690{
691 char *key = xstrfmt("protocol.%s.allow", type);
692 char *value;
693
694 /* first check the per-protocol config */
695 if (!git_config_get_string(key, &value)) {
696 enum protocol_allow_config ret =
697 parse_protocol_config(key, value);
698 free(key);
699 free(value);
700 return ret;
701 }
702 free(key);
703
704 /* if defined, fallback to user-defined default for unknown protocols */
705 if (!git_config_get_string("protocol.allow", &value)) {
706 enum protocol_allow_config ret =
707 parse_protocol_config("protocol.allow", value);
708 free(value);
709 return ret;
710 }
711
712 /* fallback to built-in defaults */
713 /* known safe */
714 if (!strcmp(type, "http") ||
715 !strcmp(type, "https") ||
716 !strcmp(type, "git") ||
717 !strcmp(type, "ssh") ||
718 !strcmp(type, "file"))
719 return PROTOCOL_ALLOW_ALWAYS;
720
721 /* known scary; err on the side of caution */
722 if (!strcmp(type, "ext"))
723 return PROTOCOL_ALLOW_NEVER;
724
725 /* unknown; by default let them be used only directly by the user */
726 return PROTOCOL_ALLOW_USER_ONLY;
727}
728
729int is_transport_allowed(const char *type, int from_user)
730{
731 const struct string_list *whitelist = protocol_whitelist();
732 if (whitelist)
733 return string_list_has_string(whitelist, type);
734
735 switch (get_protocol_config(type)) {
736 case PROTOCOL_ALLOW_ALWAYS:
737 return 1;
738 case PROTOCOL_ALLOW_NEVER:
739 return 0;
740 case PROTOCOL_ALLOW_USER_ONLY:
741 if (from_user < 0)
742 from_user = git_env_bool("GIT_PROTOCOL_FROM_USER", 1);
743 return from_user;
744 }
745
746 die("BUG: invalid protocol_allow_config type");
747}
748
749void transport_check_allowed(const char *type)
750{
751 if (!is_transport_allowed(type, -1))
752 die("transport '%s' not allowed", type);
753}
754
755struct transport *transport_get(struct remote *remote, const char *url)
756{
757 const char *helper;
758 struct transport *ret = xcalloc(1, sizeof(*ret));
759
760 ret->progress = isatty(2);
761
762 if (!remote)
763 die("No remote provided to transport_get()");
764
765 ret->got_remote_refs = 0;
766 ret->remote = remote;
767 helper = remote->foreign_vcs;
768
769 if (!url && remote->url)
770 url = remote->url[0];
771 ret->url = url;
772
773 /* maybe it is a foreign URL? */
774 if (url) {
775 const char *p = url;
776
777 while (is_urlschemechar(p == url, *p))
778 p++;
779 if (starts_with(p, "::"))
780 helper = xstrndup(url, p - url);
781 }
782
783 if (helper) {
784 transport_helper_init(ret, helper);
785 } else if (starts_with(url, "rsync:")) {
786 die("git-over-rsync is no longer supported");
787 } else if (url_is_local_not_ssh(url) && is_file(url) && is_bundle(url, 1)) {
788 struct bundle_transport_data *data = xcalloc(1, sizeof(*data));
789 transport_check_allowed("file");
790 ret->data = data;
791 ret->get_refs_list = get_refs_from_bundle;
792 ret->fetch = fetch_refs_from_bundle;
793 ret->disconnect = close_bundle;
794 ret->smart_options = NULL;
795 } else if (!is_url(url)
796 || starts_with(url, "file://")
797 || starts_with(url, "git://")
798 || starts_with(url, "ssh://")
799 || starts_with(url, "git+ssh://") /* deprecated - do not use */
800 || starts_with(url, "ssh+git://") /* deprecated - do not use */
801 ) {
802 /*
803 * These are builtin smart transports; "allowed" transports
804 * will be checked individually in git_connect.
805 */
806 struct git_transport_data *data = xcalloc(1, sizeof(*data));
807 ret->data = data;
808 ret->set_option = NULL;
809 ret->get_refs_list = get_refs_via_connect;
810 ret->fetch = fetch_refs_via_pack;
811 ret->push_refs = git_transport_push;
812 ret->connect = connect_git;
813 ret->disconnect = disconnect_git;
814 ret->smart_options = &(data->options);
815
816 data->conn = NULL;
817 data->got_remote_heads = 0;
818 } else {
819 /* Unknown protocol in URL. Pass to external handler. */
820 int len = external_specification_len(url);
821 char *handler = xmemdupz(url, len);
822 transport_helper_init(ret, handler);
823 }
824
825 if (ret->smart_options) {
826 ret->smart_options->thin = 1;
827 ret->smart_options->uploadpack = "git-upload-pack";
828 if (remote->uploadpack)
829 ret->smart_options->uploadpack = remote->uploadpack;
830 ret->smart_options->receivepack = "git-receive-pack";
831 if (remote->receivepack)
832 ret->smart_options->receivepack = remote->receivepack;
833 }
834
835 return ret;
836}
837
838int transport_set_option(struct transport *transport,
839 const char *name, const char *value)
840{
841 int git_reports = 1, protocol_reports = 1;
842
843 if (transport->smart_options)
844 git_reports = set_git_option(transport->smart_options,
845 name, value);
846
847 if (transport->set_option)
848 protocol_reports = transport->set_option(transport, name,
849 value);
850
851 /* If either report is 0, report 0 (success). */
852 if (!git_reports || !protocol_reports)
853 return 0;
854 /* If either reports -1 (invalid value), report -1. */
855 if ((git_reports == -1) || (protocol_reports == -1))
856 return -1;
857 /* Otherwise if both report unknown, report unknown. */
858 return 1;
859}
860
861void transport_set_verbosity(struct transport *transport, int verbosity,
862 int force_progress)
863{
864 if (verbosity >= 1)
865 transport->verbose = verbosity <= 3 ? verbosity : 3;
866 if (verbosity < 0)
867 transport->verbose = -1;
868
869 /**
870 * Rules used to determine whether to report progress (processing aborts
871 * when a rule is satisfied):
872 *
873 * . Report progress, if force_progress is 1 (ie. --progress).
874 * . Don't report progress, if force_progress is 0 (ie. --no-progress).
875 * . Don't report progress, if verbosity < 0 (ie. -q/--quiet ).
876 * . Report progress if isatty(2) is 1.
877 **/
878 if (force_progress >= 0)
879 transport->progress = !!force_progress;
880 else
881 transport->progress = verbosity >= 0 && isatty(2);
882}
883
884static void die_with_unpushed_submodules(struct string_list *needs_pushing)
885{
886 int i;
887
888 fprintf(stderr, _("The following submodule paths contain changes that can\n"
889 "not be found on any remote:\n"));
890 for (i = 0; i < needs_pushing->nr; i++)
891 fprintf(stderr, " %s\n", needs_pushing->items[i].string);
892 fprintf(stderr, _("\nPlease try\n\n"
893 " git push --recurse-submodules=on-demand\n\n"
894 "or cd to the path and use\n\n"
895 " git push\n\n"
896 "to push them to a remote.\n\n"));
897
898 string_list_clear(needs_pushing, 0);
899
900 die(_("Aborting."));
901}
902
903static int run_pre_push_hook(struct transport *transport,
904 struct ref *remote_refs)
905{
906 int ret = 0, x;
907 struct ref *r;
908 struct child_process proc = CHILD_PROCESS_INIT;
909 struct strbuf buf;
910 const char *argv[4];
911
912 if (!(argv[0] = find_hook("pre-push")))
913 return 0;
914
915 argv[1] = transport->remote->name;
916 argv[2] = transport->url;
917 argv[3] = NULL;
918
919 proc.argv = argv;
920 proc.in = -1;
921
922 if (start_command(&proc)) {
923 finish_command(&proc);
924 return -1;
925 }
926
927 sigchain_push(SIGPIPE, SIG_IGN);
928
929 strbuf_init(&buf, 256);
930
931 for (r = remote_refs; r; r = r->next) {
932 if (!r->peer_ref) continue;
933 if (r->status == REF_STATUS_REJECT_NONFASTFORWARD) continue;
934 if (r->status == REF_STATUS_REJECT_STALE) continue;
935 if (r->status == REF_STATUS_UPTODATE) continue;
936
937 strbuf_reset(&buf);
938 strbuf_addf( &buf, "%s %s %s %s\n",
939 r->peer_ref->name, oid_to_hex(&r->new_oid),
940 r->name, oid_to_hex(&r->old_oid));
941
942 if (write_in_full(proc.in, buf.buf, buf.len) < 0) {
943 /* We do not mind if a hook does not read all refs. */
944 if (errno != EPIPE)
945 ret = -1;
946 break;
947 }
948 }
949
950 strbuf_release(&buf);
951
952 x = close(proc.in);
953 if (!ret)
954 ret = x;
955
956 sigchain_pop(SIGPIPE);
957
958 x = finish_command(&proc);
959 if (!ret)
960 ret = x;
961
962 return ret;
963}
964
965int transport_push(struct transport *transport,
966 int refspec_nr, const char **refspec, int flags,
967 unsigned int *reject_reasons)
968{
969 *reject_reasons = 0;
970 transport_verify_remote_names(refspec_nr, refspec);
971
972 if (transport->push) {
973 /* Maybe FIXME. But no important transport uses this case. */
974 if (flags & TRANSPORT_PUSH_SET_UPSTREAM)
975 die("This transport does not support using --set-upstream");
976
977 return transport->push(transport, refspec_nr, refspec, flags);
978 } else if (transport->push_refs) {
979 struct ref *remote_refs;
980 struct ref *local_refs = get_local_heads();
981 int match_flags = MATCH_REFS_NONE;
982 int verbose = (transport->verbose > 0);
983 int quiet = (transport->verbose < 0);
984 int porcelain = flags & TRANSPORT_PUSH_PORCELAIN;
985 int pretend = flags & TRANSPORT_PUSH_DRY_RUN;
986 int push_ret, ret, err;
987
988 if (check_push_refs(local_refs, refspec_nr, refspec) < 0)
989 return -1;
990
991 remote_refs = transport->get_refs_list(transport, 1);
992
993 if (flags & TRANSPORT_PUSH_ALL)
994 match_flags |= MATCH_REFS_ALL;
995 if (flags & TRANSPORT_PUSH_MIRROR)
996 match_flags |= MATCH_REFS_MIRROR;
997 if (flags & TRANSPORT_PUSH_PRUNE)
998 match_flags |= MATCH_REFS_PRUNE;
999 if (flags & TRANSPORT_PUSH_FOLLOW_TAGS)
1000 match_flags |= MATCH_REFS_FOLLOW_TAGS;
1001
1002 if (match_push_refs(local_refs, &remote_refs,
1003 refspec_nr, refspec, match_flags)) {
1004 return -1;
1005 }
1006
1007 if (transport->smart_options &&
1008 transport->smart_options->cas &&
1009 !is_empty_cas(transport->smart_options->cas))
1010 apply_push_cas(transport->smart_options->cas,
1011 transport->remote, remote_refs);
1012
1013 set_ref_status_for_push(remote_refs,
1014 flags & TRANSPORT_PUSH_MIRROR,
1015 flags & TRANSPORT_PUSH_FORCE);
1016
1017 if (!(flags & TRANSPORT_PUSH_NO_HOOK))
1018 if (run_pre_push_hook(transport, remote_refs))
1019 return -1;
1020
1021 if ((flags & (TRANSPORT_RECURSE_SUBMODULES_ON_DEMAND |
1022 TRANSPORT_RECURSE_SUBMODULES_ONLY)) &&
1023 !is_bare_repository()) {
1024 struct ref *ref = remote_refs;
1025 struct oid_array commits = OID_ARRAY_INIT;
1026
1027 for (; ref; ref = ref->next)
1028 if (!is_null_oid(&ref->new_oid))
1029 oid_array_append(&commits,
1030 &ref->new_oid);
1031
1032 if (!push_unpushed_submodules(&commits,
1033 transport->remote,
1034 refspec, refspec_nr,
1035 transport->push_options,
1036 pretend)) {
1037 oid_array_clear(&commits);
1038 die("Failed to push all needed submodules!");
1039 }
1040 oid_array_clear(&commits);
1041 }
1042
1043 if (((flags & TRANSPORT_RECURSE_SUBMODULES_CHECK) ||
1044 ((flags & (TRANSPORT_RECURSE_SUBMODULES_ON_DEMAND |
1045 TRANSPORT_RECURSE_SUBMODULES_ONLY)) &&
1046 !pretend)) && !is_bare_repository()) {
1047 struct ref *ref = remote_refs;
1048 struct string_list needs_pushing = STRING_LIST_INIT_DUP;
1049 struct oid_array commits = OID_ARRAY_INIT;
1050
1051 for (; ref; ref = ref->next)
1052 if (!is_null_oid(&ref->new_oid))
1053 oid_array_append(&commits,
1054 &ref->new_oid);
1055
1056 if (find_unpushed_submodules(&commits, transport->remote->name,
1057 &needs_pushing)) {
1058 oid_array_clear(&commits);
1059 die_with_unpushed_submodules(&needs_pushing);
1060 }
1061 string_list_clear(&needs_pushing, 0);
1062 oid_array_clear(&commits);
1063 }
1064
1065 if (!(flags & TRANSPORT_RECURSE_SUBMODULES_ONLY))
1066 push_ret = transport->push_refs(transport, remote_refs, flags);
1067 else
1068 push_ret = 0;
1069 err = push_had_errors(remote_refs);
1070 ret = push_ret | err;
1071
1072 if (!quiet || err)
1073 transport_print_push_status(transport->url, remote_refs,
1074 verbose | porcelain, porcelain,
1075 reject_reasons);
1076
1077 if (flags & TRANSPORT_PUSH_SET_UPSTREAM)
1078 set_upstreams(transport, remote_refs, pretend);
1079
1080 if (!(flags & (TRANSPORT_PUSH_DRY_RUN |
1081 TRANSPORT_RECURSE_SUBMODULES_ONLY))) {
1082 struct ref *ref;
1083 for (ref = remote_refs; ref; ref = ref->next)
1084 transport_update_tracking_ref(transport->remote, ref, verbose);
1085 }
1086
1087 if (porcelain && !push_ret)
1088 puts("Done");
1089 else if (!quiet && !ret && !transport_refs_pushed(remote_refs))
1090 fprintf(stderr, "Everything up-to-date\n");
1091
1092 return ret;
1093 }
1094 return 1;
1095}
1096
1097const struct ref *transport_get_remote_refs(struct transport *transport)
1098{
1099 if (!transport->got_remote_refs) {
1100 transport->remote_refs = transport->get_refs_list(transport, 0);
1101 transport->got_remote_refs = 1;
1102 }
1103
1104 return transport->remote_refs;
1105}
1106
1107int transport_fetch_refs(struct transport *transport, struct ref *refs)
1108{
1109 int rc;
1110 int nr_heads = 0, nr_alloc = 0, nr_refs = 0;
1111 struct ref **heads = NULL;
1112 struct ref *rm;
1113
1114 for (rm = refs; rm; rm = rm->next) {
1115 nr_refs++;
1116 if (rm->peer_ref &&
1117 !is_null_oid(&rm->old_oid) &&
1118 !oidcmp(&rm->peer_ref->old_oid, &rm->old_oid))
1119 continue;
1120 ALLOC_GROW(heads, nr_heads + 1, nr_alloc);
1121 heads[nr_heads++] = rm;
1122 }
1123
1124 if (!nr_heads) {
1125 /*
1126 * When deepening of a shallow repository is requested,
1127 * then local and remote refs are likely to still be equal.
1128 * Just feed them all to the fetch method in that case.
1129 * This condition shouldn't be met in a non-deepening fetch
1130 * (see builtin/fetch.c:quickfetch()).
1131 */
1132 ALLOC_ARRAY(heads, nr_refs);
1133 for (rm = refs; rm; rm = rm->next)
1134 heads[nr_heads++] = rm;
1135 }
1136
1137 rc = transport->fetch(transport, nr_heads, heads);
1138
1139 free(heads);
1140 return rc;
1141}
1142
1143void transport_unlock_pack(struct transport *transport)
1144{
1145 if (transport->pack_lockfile) {
1146 unlink_or_warn(transport->pack_lockfile);
1147 FREE_AND_NULL(transport->pack_lockfile);
1148 }
1149}
1150
1151int transport_connect(struct transport *transport, const char *name,
1152 const char *exec, int fd[2])
1153{
1154 if (transport->connect)
1155 return transport->connect(transport, name, exec, fd);
1156 else
1157 die("Operation not supported by protocol");
1158}
1159
1160int transport_disconnect(struct transport *transport)
1161{
1162 int ret = 0;
1163 if (transport->disconnect)
1164 ret = transport->disconnect(transport);
1165 free(transport);
1166 return ret;
1167}
1168
1169/*
1170 * Strip username (and password) from a URL and return
1171 * it in a newly allocated string.
1172 */
1173char *transport_anonymize_url(const char *url)
1174{
1175 char *scheme_prefix, *anon_part;
1176 size_t anon_len, prefix_len = 0;
1177
1178 anon_part = strchr(url, '@');
1179 if (url_is_local_not_ssh(url) || !anon_part)
1180 goto literal_copy;
1181
1182 anon_len = strlen(++anon_part);
1183 scheme_prefix = strstr(url, "://");
1184 if (!scheme_prefix) {
1185 if (!strchr(anon_part, ':'))
1186 /* cannot be "me@there:/path/name" */
1187 goto literal_copy;
1188 } else {
1189 const char *cp;
1190 /* make sure scheme is reasonable */
1191 for (cp = url; cp < scheme_prefix; cp++) {
1192 switch (*cp) {
1193 /* RFC 1738 2.1 */
1194 case '+': case '.': case '-':
1195 break; /* ok */
1196 default:
1197 if (isalnum(*cp))
1198 break;
1199 /* it isn't */
1200 goto literal_copy;
1201 }
1202 }
1203 /* @ past the first slash does not count */
1204 cp = strchr(scheme_prefix + 3, '/');
1205 if (cp && cp < anon_part)
1206 goto literal_copy;
1207 prefix_len = scheme_prefix - url + 3;
1208 }
1209 return xstrfmt("%.*s%.*s", (int)prefix_len, url,
1210 (int)anon_len, anon_part);
1211literal_copy:
1212 return xstrdup(url);
1213}
1214
1215static void read_alternate_refs(const char *path,
1216 alternate_ref_fn *cb,
1217 void *data)
1218{
1219 struct child_process cmd = CHILD_PROCESS_INIT;
1220 struct strbuf line = STRBUF_INIT;
1221 FILE *fh;
1222
1223 cmd.git_cmd = 1;
1224 argv_array_pushf(&cmd.args, "--git-dir=%s", path);
1225 argv_array_push(&cmd.args, "for-each-ref");
1226 argv_array_push(&cmd.args, "--format=%(objectname) %(refname)");
1227 cmd.env = local_repo_env;
1228 cmd.out = -1;
1229
1230 if (start_command(&cmd))
1231 return;
1232
1233 fh = xfdopen(cmd.out, "r");
1234 while (strbuf_getline_lf(&line, fh) != EOF) {
1235 struct object_id oid;
1236
1237 if (get_oid_hex(line.buf, &oid) ||
1238 line.buf[GIT_SHA1_HEXSZ] != ' ') {
1239 warning("invalid line while parsing alternate refs: %s",
1240 line.buf);
1241 break;
1242 }
1243
1244 cb(line.buf + GIT_SHA1_HEXSZ + 1, &oid, data);
1245 }
1246
1247 fclose(fh);
1248 finish_command(&cmd);
1249}
1250
1251struct alternate_refs_data {
1252 alternate_ref_fn *fn;
1253 void *data;
1254};
1255
1256static int refs_from_alternate_cb(struct alternate_object_database *e,
1257 void *data)
1258{
1259 struct strbuf path = STRBUF_INIT;
1260 size_t base_len;
1261 struct alternate_refs_data *cb = data;
1262
1263 if (!strbuf_realpath(&path, e->path, 0))
1264 goto out;
1265 if (!strbuf_strip_suffix(&path, "/objects"))
1266 goto out;
1267 base_len = path.len;
1268
1269 /* Is this a git repository with refs? */
1270 strbuf_addstr(&path, "/refs");
1271 if (!is_directory(path.buf))
1272 goto out;
1273 strbuf_setlen(&path, base_len);
1274
1275 read_alternate_refs(path.buf, cb->fn, cb->data);
1276
1277out:
1278 strbuf_release(&path);
1279 return 0;
1280}
1281
1282void for_each_alternate_ref(alternate_ref_fn fn, void *data)
1283{
1284 struct alternate_refs_data cb;
1285 cb.fn = fn;
1286 cb.data = data;
1287 foreach_alt_odb(refs_from_alternate_cb, &cb);
1288}