http.con commit Merge branch 'aw/rebase-i-edit-todo' (68a31b7)
   1#include "http.h"
   2#include "pack.h"
   3#include "sideband.h"
   4#include "run-command.h"
   5#include "url.h"
   6#include "credential.h"
   7#include "version.h"
   8
   9int active_requests;
  10int http_is_verbose;
  11size_t http_post_buffer = 16 * LARGE_PACKET_MAX;
  12
  13#if LIBCURL_VERSION_NUM >= 0x070a06
  14#define LIBCURL_CAN_HANDLE_AUTH_ANY
  15#endif
  16
  17static int min_curl_sessions = 1;
  18static int curl_session_count;
  19#ifdef USE_CURL_MULTI
  20static int max_requests = -1;
  21static CURLM *curlm;
  22#endif
  23#ifndef NO_CURL_EASY_DUPHANDLE
  24static CURL *curl_default;
  25#endif
  26
  27#define PREV_BUF_SIZE 4096
  28#define RANGE_HEADER_SIZE 30
  29
  30char curl_errorstr[CURL_ERROR_SIZE];
  31
  32static int curl_ssl_verify = -1;
  33static const char *ssl_cert;
  34#if LIBCURL_VERSION_NUM >= 0x070903
  35static const char *ssl_key;
  36#endif
  37#if LIBCURL_VERSION_NUM >= 0x070908
  38static const char *ssl_capath;
  39#endif
  40static const char *ssl_cainfo;
  41static long curl_low_speed_limit = -1;
  42static long curl_low_speed_time = -1;
  43static int curl_ftp_no_epsv;
  44static const char *curl_http_proxy;
  45static const char *curl_cookie_file;
  46static struct credential http_auth = CREDENTIAL_INIT;
  47static int http_proactive_auth;
  48static const char *user_agent;
  49
  50#if LIBCURL_VERSION_NUM >= 0x071700
  51/* Use CURLOPT_KEYPASSWD as is */
  52#elif LIBCURL_VERSION_NUM >= 0x070903
  53#define CURLOPT_KEYPASSWD CURLOPT_SSLKEYPASSWD
  54#else
  55#define CURLOPT_KEYPASSWD CURLOPT_SSLCERTPASSWD
  56#endif
  57
  58static struct credential cert_auth = CREDENTIAL_INIT;
  59static int ssl_cert_password_required;
  60
  61static struct curl_slist *pragma_header;
  62static struct curl_slist *no_pragma_header;
  63
  64static struct active_request_slot *active_queue_head;
  65
  66size_t fread_buffer(char *ptr, size_t eltsize, size_t nmemb, void *buffer_)
  67{
  68        size_t size = eltsize * nmemb;
  69        struct buffer *buffer = buffer_;
  70
  71        if (size > buffer->buf.len - buffer->posn)
  72                size = buffer->buf.len - buffer->posn;
  73        memcpy(ptr, buffer->buf.buf + buffer->posn, size);
  74        buffer->posn += size;
  75
  76        return size;
  77}
  78
  79#ifndef NO_CURL_IOCTL
  80curlioerr ioctl_buffer(CURL *handle, int cmd, void *clientp)
  81{
  82        struct buffer *buffer = clientp;
  83
  84        switch (cmd) {
  85        case CURLIOCMD_NOP:
  86                return CURLIOE_OK;
  87
  88        case CURLIOCMD_RESTARTREAD:
  89                buffer->posn = 0;
  90                return CURLIOE_OK;
  91
  92        default:
  93                return CURLIOE_UNKNOWNCMD;
  94        }
  95}
  96#endif
  97
  98size_t fwrite_buffer(char *ptr, size_t eltsize, size_t nmemb, void *buffer_)
  99{
 100        size_t size = eltsize * nmemb;
 101        struct strbuf *buffer = buffer_;
 102
 103        strbuf_add(buffer, ptr, size);
 104        return size;
 105}
 106
 107size_t fwrite_null(char *ptr, size_t eltsize, size_t nmemb, void *strbuf)
 108{
 109        return eltsize * nmemb;
 110}
 111
 112#ifdef USE_CURL_MULTI
 113static void process_curl_messages(void)
 114{
 115        int num_messages;
 116        struct active_request_slot *slot;
 117        CURLMsg *curl_message = curl_multi_info_read(curlm, &num_messages);
 118
 119        while (curl_message != NULL) {
 120                if (curl_message->msg == CURLMSG_DONE) {
 121                        int curl_result = curl_message->data.result;
 122                        slot = active_queue_head;
 123                        while (slot != NULL &&
 124                               slot->curl != curl_message->easy_handle)
 125                                slot = slot->next;
 126                        if (slot != NULL) {
 127                                curl_multi_remove_handle(curlm, slot->curl);
 128                                slot->curl_result = curl_result;
 129                                finish_active_slot(slot);
 130                        } else {
 131                                fprintf(stderr, "Received DONE message for unknown request!\n");
 132                        }
 133                } else {
 134                        fprintf(stderr, "Unknown CURL message received: %d\n",
 135                                (int)curl_message->msg);
 136                }
 137                curl_message = curl_multi_info_read(curlm, &num_messages);
 138        }
 139}
 140#endif
 141
 142static int http_options(const char *var, const char *value, void *cb)
 143{
 144        if (!strcmp("http.sslverify", var)) {
 145                curl_ssl_verify = git_config_bool(var, value);
 146                return 0;
 147        }
 148        if (!strcmp("http.sslcert", var))
 149                return git_config_string(&ssl_cert, var, value);
 150#if LIBCURL_VERSION_NUM >= 0x070903
 151        if (!strcmp("http.sslkey", var))
 152                return git_config_string(&ssl_key, var, value);
 153#endif
 154#if LIBCURL_VERSION_NUM >= 0x070908
 155        if (!strcmp("http.sslcapath", var))
 156                return git_config_string(&ssl_capath, var, value);
 157#endif
 158        if (!strcmp("http.sslcainfo", var))
 159                return git_config_string(&ssl_cainfo, var, value);
 160        if (!strcmp("http.sslcertpasswordprotected", var)) {
 161                if (git_config_bool(var, value))
 162                        ssl_cert_password_required = 1;
 163                return 0;
 164        }
 165        if (!strcmp("http.minsessions", var)) {
 166                min_curl_sessions = git_config_int(var, value);
 167#ifndef USE_CURL_MULTI
 168                if (min_curl_sessions > 1)
 169                        min_curl_sessions = 1;
 170#endif
 171                return 0;
 172        }
 173#ifdef USE_CURL_MULTI
 174        if (!strcmp("http.maxrequests", var)) {
 175                max_requests = git_config_int(var, value);
 176                return 0;
 177        }
 178#endif
 179        if (!strcmp("http.lowspeedlimit", var)) {
 180                curl_low_speed_limit = (long)git_config_int(var, value);
 181                return 0;
 182        }
 183        if (!strcmp("http.lowspeedtime", var)) {
 184                curl_low_speed_time = (long)git_config_int(var, value);
 185                return 0;
 186        }
 187
 188        if (!strcmp("http.noepsv", var)) {
 189                curl_ftp_no_epsv = git_config_bool(var, value);
 190                return 0;
 191        }
 192        if (!strcmp("http.proxy", var))
 193                return git_config_string(&curl_http_proxy, var, value);
 194
 195        if (!strcmp("http.cookiefile", var))
 196                return git_config_string(&curl_cookie_file, var, value);
 197
 198        if (!strcmp("http.postbuffer", var)) {
 199                http_post_buffer = git_config_int(var, value);
 200                if (http_post_buffer < LARGE_PACKET_MAX)
 201                        http_post_buffer = LARGE_PACKET_MAX;
 202                return 0;
 203        }
 204
 205        if (!strcmp("http.useragent", var))
 206                return git_config_string(&user_agent, var, value);
 207
 208        /* Fall back on the default ones */
 209        return git_default_config(var, value, cb);
 210}
 211
 212static void init_curl_http_auth(CURL *result)
 213{
 214        if (!http_auth.username)
 215                return;
 216
 217        credential_fill(&http_auth);
 218
 219#if LIBCURL_VERSION_NUM >= 0x071301
 220        curl_easy_setopt(result, CURLOPT_USERNAME, http_auth.username);
 221        curl_easy_setopt(result, CURLOPT_PASSWORD, http_auth.password);
 222#else
 223        {
 224                static struct strbuf up = STRBUF_INIT;
 225                strbuf_reset(&up);
 226                strbuf_addf(&up, "%s:%s",
 227                            http_auth.username, http_auth.password);
 228                curl_easy_setopt(result, CURLOPT_USERPWD, up.buf);
 229        }
 230#endif
 231}
 232
 233static int has_cert_password(void)
 234{
 235        if (ssl_cert == NULL || ssl_cert_password_required != 1)
 236                return 0;
 237        if (!cert_auth.password) {
 238                cert_auth.protocol = xstrdup("cert");
 239                cert_auth.path = xstrdup(ssl_cert);
 240                credential_fill(&cert_auth);
 241        }
 242        return 1;
 243}
 244
 245static CURL *get_curl_handle(void)
 246{
 247        CURL *result = curl_easy_init();
 248
 249        if (!curl_ssl_verify) {
 250                curl_easy_setopt(result, CURLOPT_SSL_VERIFYPEER, 0);
 251                curl_easy_setopt(result, CURLOPT_SSL_VERIFYHOST, 0);
 252        } else {
 253                /* Verify authenticity of the peer's certificate */
 254                curl_easy_setopt(result, CURLOPT_SSL_VERIFYPEER, 1);
 255                /* The name in the cert must match whom we tried to connect */
 256                curl_easy_setopt(result, CURLOPT_SSL_VERIFYHOST, 2);
 257        }
 258
 259#if LIBCURL_VERSION_NUM >= 0x070907
 260        curl_easy_setopt(result, CURLOPT_NETRC, CURL_NETRC_OPTIONAL);
 261#endif
 262#ifdef LIBCURL_CAN_HANDLE_AUTH_ANY
 263        curl_easy_setopt(result, CURLOPT_HTTPAUTH, CURLAUTH_ANY);
 264#endif
 265
 266        if (http_proactive_auth)
 267                init_curl_http_auth(result);
 268
 269        if (ssl_cert != NULL)
 270                curl_easy_setopt(result, CURLOPT_SSLCERT, ssl_cert);
 271        if (has_cert_password())
 272                curl_easy_setopt(result, CURLOPT_KEYPASSWD, cert_auth.password);
 273#if LIBCURL_VERSION_NUM >= 0x070903
 274        if (ssl_key != NULL)
 275                curl_easy_setopt(result, CURLOPT_SSLKEY, ssl_key);
 276#endif
 277#if LIBCURL_VERSION_NUM >= 0x070908
 278        if (ssl_capath != NULL)
 279                curl_easy_setopt(result, CURLOPT_CAPATH, ssl_capath);
 280#endif
 281        if (ssl_cainfo != NULL)
 282                curl_easy_setopt(result, CURLOPT_CAINFO, ssl_cainfo);
 283        curl_easy_setopt(result, CURLOPT_FAILONERROR, 1);
 284
 285        if (curl_low_speed_limit > 0 && curl_low_speed_time > 0) {
 286                curl_easy_setopt(result, CURLOPT_LOW_SPEED_LIMIT,
 287                                 curl_low_speed_limit);
 288                curl_easy_setopt(result, CURLOPT_LOW_SPEED_TIME,
 289                                 curl_low_speed_time);
 290        }
 291
 292        curl_easy_setopt(result, CURLOPT_FOLLOWLOCATION, 1);
 293#if LIBCURL_VERSION_NUM >= 0x071301
 294        curl_easy_setopt(result, CURLOPT_POSTREDIR, CURL_REDIR_POST_ALL);
 295#elif LIBCURL_VERSION_NUM >= 0x071101
 296        curl_easy_setopt(result, CURLOPT_POST301, 1);
 297#endif
 298
 299        if (getenv("GIT_CURL_VERBOSE"))
 300                curl_easy_setopt(result, CURLOPT_VERBOSE, 1);
 301
 302        curl_easy_setopt(result, CURLOPT_USERAGENT,
 303                user_agent ? user_agent : git_user_agent());
 304
 305        if (curl_ftp_no_epsv)
 306                curl_easy_setopt(result, CURLOPT_FTP_USE_EPSV, 0);
 307
 308        if (curl_http_proxy) {
 309                curl_easy_setopt(result, CURLOPT_PROXY, curl_http_proxy);
 310                curl_easy_setopt(result, CURLOPT_PROXYAUTH, CURLAUTH_ANY);
 311        }
 312
 313        return result;
 314}
 315
 316static void set_from_env(const char **var, const char *envname)
 317{
 318        const char *val = getenv(envname);
 319        if (val)
 320                *var = val;
 321}
 322
 323void http_init(struct remote *remote, const char *url, int proactive_auth)
 324{
 325        char *low_speed_limit;
 326        char *low_speed_time;
 327
 328        http_is_verbose = 0;
 329
 330        git_config(http_options, NULL);
 331
 332        curl_global_init(CURL_GLOBAL_ALL);
 333
 334        http_proactive_auth = proactive_auth;
 335
 336        if (remote && remote->http_proxy)
 337                curl_http_proxy = xstrdup(remote->http_proxy);
 338
 339        pragma_header = curl_slist_append(pragma_header, "Pragma: no-cache");
 340        no_pragma_header = curl_slist_append(no_pragma_header, "Pragma:");
 341
 342#ifdef USE_CURL_MULTI
 343        {
 344                char *http_max_requests = getenv("GIT_HTTP_MAX_REQUESTS");
 345                if (http_max_requests != NULL)
 346                        max_requests = atoi(http_max_requests);
 347        }
 348
 349        curlm = curl_multi_init();
 350        if (curlm == NULL) {
 351                fprintf(stderr, "Error creating curl multi handle.\n");
 352                exit(1);
 353        }
 354#endif
 355
 356        if (getenv("GIT_SSL_NO_VERIFY"))
 357                curl_ssl_verify = 0;
 358
 359        set_from_env(&ssl_cert, "GIT_SSL_CERT");
 360#if LIBCURL_VERSION_NUM >= 0x070903
 361        set_from_env(&ssl_key, "GIT_SSL_KEY");
 362#endif
 363#if LIBCURL_VERSION_NUM >= 0x070908
 364        set_from_env(&ssl_capath, "GIT_SSL_CAPATH");
 365#endif
 366        set_from_env(&ssl_cainfo, "GIT_SSL_CAINFO");
 367
 368        set_from_env(&user_agent, "GIT_HTTP_USER_AGENT");
 369
 370        low_speed_limit = getenv("GIT_HTTP_LOW_SPEED_LIMIT");
 371        if (low_speed_limit != NULL)
 372                curl_low_speed_limit = strtol(low_speed_limit, NULL, 10);
 373        low_speed_time = getenv("GIT_HTTP_LOW_SPEED_TIME");
 374        if (low_speed_time != NULL)
 375                curl_low_speed_time = strtol(low_speed_time, NULL, 10);
 376
 377        if (curl_ssl_verify == -1)
 378                curl_ssl_verify = 1;
 379
 380        curl_session_count = 0;
 381#ifdef USE_CURL_MULTI
 382        if (max_requests < 1)
 383                max_requests = DEFAULT_MAX_REQUESTS;
 384#endif
 385
 386        if (getenv("GIT_CURL_FTP_NO_EPSV"))
 387                curl_ftp_no_epsv = 1;
 388
 389        if (url) {
 390                credential_from_url(&http_auth, url);
 391                if (!ssl_cert_password_required &&
 392                    getenv("GIT_SSL_CERT_PASSWORD_PROTECTED") &&
 393                    !prefixcmp(url, "https://"))
 394                        ssl_cert_password_required = 1;
 395        }
 396
 397#ifndef NO_CURL_EASY_DUPHANDLE
 398        curl_default = get_curl_handle();
 399#endif
 400}
 401
 402void http_cleanup(void)
 403{
 404        struct active_request_slot *slot = active_queue_head;
 405
 406        while (slot != NULL) {
 407                struct active_request_slot *next = slot->next;
 408                if (slot->curl != NULL) {
 409#ifdef USE_CURL_MULTI
 410                        curl_multi_remove_handle(curlm, slot->curl);
 411#endif
 412                        curl_easy_cleanup(slot->curl);
 413                }
 414                free(slot);
 415                slot = next;
 416        }
 417        active_queue_head = NULL;
 418
 419#ifndef NO_CURL_EASY_DUPHANDLE
 420        curl_easy_cleanup(curl_default);
 421#endif
 422
 423#ifdef USE_CURL_MULTI
 424        curl_multi_cleanup(curlm);
 425#endif
 426        curl_global_cleanup();
 427
 428        curl_slist_free_all(pragma_header);
 429        pragma_header = NULL;
 430
 431        curl_slist_free_all(no_pragma_header);
 432        no_pragma_header = NULL;
 433
 434        if (curl_http_proxy) {
 435                free((void *)curl_http_proxy);
 436                curl_http_proxy = NULL;
 437        }
 438
 439        if (cert_auth.password != NULL) {
 440                memset(cert_auth.password, 0, strlen(cert_auth.password));
 441                free(cert_auth.password);
 442                cert_auth.password = NULL;
 443        }
 444        ssl_cert_password_required = 0;
 445}
 446
 447struct active_request_slot *get_active_slot(void)
 448{
 449        struct active_request_slot *slot = active_queue_head;
 450        struct active_request_slot *newslot;
 451
 452#ifdef USE_CURL_MULTI
 453        int num_transfers;
 454
 455        /* Wait for a slot to open up if the queue is full */
 456        while (active_requests >= max_requests) {
 457                curl_multi_perform(curlm, &num_transfers);
 458                if (num_transfers < active_requests)
 459                        process_curl_messages();
 460        }
 461#endif
 462
 463        while (slot != NULL && slot->in_use)
 464                slot = slot->next;
 465
 466        if (slot == NULL) {
 467                newslot = xmalloc(sizeof(*newslot));
 468                newslot->curl = NULL;
 469                newslot->in_use = 0;
 470                newslot->next = NULL;
 471
 472                slot = active_queue_head;
 473                if (slot == NULL) {
 474                        active_queue_head = newslot;
 475                } else {
 476                        while (slot->next != NULL)
 477                                slot = slot->next;
 478                        slot->next = newslot;
 479                }
 480                slot = newslot;
 481        }
 482
 483        if (slot->curl == NULL) {
 484#ifdef NO_CURL_EASY_DUPHANDLE
 485                slot->curl = get_curl_handle();
 486#else
 487                slot->curl = curl_easy_duphandle(curl_default);
 488#endif
 489                curl_session_count++;
 490        }
 491
 492        active_requests++;
 493        slot->in_use = 1;
 494        slot->results = NULL;
 495        slot->finished = NULL;
 496        slot->callback_data = NULL;
 497        slot->callback_func = NULL;
 498        curl_easy_setopt(slot->curl, CURLOPT_COOKIEFILE, curl_cookie_file);
 499        curl_easy_setopt(slot->curl, CURLOPT_HTTPHEADER, pragma_header);
 500        curl_easy_setopt(slot->curl, CURLOPT_ERRORBUFFER, curl_errorstr);
 501        curl_easy_setopt(slot->curl, CURLOPT_CUSTOMREQUEST, NULL);
 502        curl_easy_setopt(slot->curl, CURLOPT_READFUNCTION, NULL);
 503        curl_easy_setopt(slot->curl, CURLOPT_WRITEFUNCTION, NULL);
 504        curl_easy_setopt(slot->curl, CURLOPT_POSTFIELDS, NULL);
 505        curl_easy_setopt(slot->curl, CURLOPT_UPLOAD, 0);
 506        curl_easy_setopt(slot->curl, CURLOPT_HTTPGET, 1);
 507        if (http_auth.password)
 508                init_curl_http_auth(slot->curl);
 509
 510        return slot;
 511}
 512
 513int start_active_slot(struct active_request_slot *slot)
 514{
 515#ifdef USE_CURL_MULTI
 516        CURLMcode curlm_result = curl_multi_add_handle(curlm, slot->curl);
 517        int num_transfers;
 518
 519        if (curlm_result != CURLM_OK &&
 520            curlm_result != CURLM_CALL_MULTI_PERFORM) {
 521                active_requests--;
 522                slot->in_use = 0;
 523                return 0;
 524        }
 525
 526        /*
 527         * We know there must be something to do, since we just added
 528         * something.
 529         */
 530        curl_multi_perform(curlm, &num_transfers);
 531#endif
 532        return 1;
 533}
 534
 535#ifdef USE_CURL_MULTI
 536struct fill_chain {
 537        void *data;
 538        int (*fill)(void *);
 539        struct fill_chain *next;
 540};
 541
 542static struct fill_chain *fill_cfg;
 543
 544void add_fill_function(void *data, int (*fill)(void *))
 545{
 546        struct fill_chain *new = xmalloc(sizeof(*new));
 547        struct fill_chain **linkp = &fill_cfg;
 548        new->data = data;
 549        new->fill = fill;
 550        new->next = NULL;
 551        while (*linkp)
 552                linkp = &(*linkp)->next;
 553        *linkp = new;
 554}
 555
 556void fill_active_slots(void)
 557{
 558        struct active_request_slot *slot = active_queue_head;
 559
 560        while (active_requests < max_requests) {
 561                struct fill_chain *fill;
 562                for (fill = fill_cfg; fill; fill = fill->next)
 563                        if (fill->fill(fill->data))
 564                                break;
 565
 566                if (!fill)
 567                        break;
 568        }
 569
 570        while (slot != NULL) {
 571                if (!slot->in_use && slot->curl != NULL
 572                        && curl_session_count > min_curl_sessions) {
 573                        curl_easy_cleanup(slot->curl);
 574                        slot->curl = NULL;
 575                        curl_session_count--;
 576                }
 577                slot = slot->next;
 578        }
 579}
 580
 581void step_active_slots(void)
 582{
 583        int num_transfers;
 584        CURLMcode curlm_result;
 585
 586        do {
 587                curlm_result = curl_multi_perform(curlm, &num_transfers);
 588        } while (curlm_result == CURLM_CALL_MULTI_PERFORM);
 589        if (num_transfers < active_requests) {
 590                process_curl_messages();
 591                fill_active_slots();
 592        }
 593}
 594#endif
 595
 596void run_active_slot(struct active_request_slot *slot)
 597{
 598#ifdef USE_CURL_MULTI
 599        fd_set readfds;
 600        fd_set writefds;
 601        fd_set excfds;
 602        int max_fd;
 603        struct timeval select_timeout;
 604        int finished = 0;
 605
 606        slot->finished = &finished;
 607        while (!finished) {
 608                step_active_slots();
 609
 610                if (slot->in_use) {
 611#if LIBCURL_VERSION_NUM >= 0x070f04
 612                        long curl_timeout;
 613                        curl_multi_timeout(curlm, &curl_timeout);
 614                        if (curl_timeout == 0) {
 615                                continue;
 616                        } else if (curl_timeout == -1) {
 617                                select_timeout.tv_sec  = 0;
 618                                select_timeout.tv_usec = 50000;
 619                        } else {
 620                                select_timeout.tv_sec  =  curl_timeout / 1000;
 621                                select_timeout.tv_usec = (curl_timeout % 1000) * 1000;
 622                        }
 623#else
 624                        select_timeout.tv_sec  = 0;
 625                        select_timeout.tv_usec = 50000;
 626#endif
 627
 628                        max_fd = -1;
 629                        FD_ZERO(&readfds);
 630                        FD_ZERO(&writefds);
 631                        FD_ZERO(&excfds);
 632                        curl_multi_fdset(curlm, &readfds, &writefds, &excfds, &max_fd);
 633
 634                        select(max_fd+1, &readfds, &writefds, &excfds, &select_timeout);
 635                }
 636        }
 637#else
 638        while (slot->in_use) {
 639                slot->curl_result = curl_easy_perform(slot->curl);
 640                finish_active_slot(slot);
 641        }
 642#endif
 643}
 644
 645static void closedown_active_slot(struct active_request_slot *slot)
 646{
 647        active_requests--;
 648        slot->in_use = 0;
 649}
 650
 651static void release_active_slot(struct active_request_slot *slot)
 652{
 653        closedown_active_slot(slot);
 654        if (slot->curl && curl_session_count > min_curl_sessions) {
 655#ifdef USE_CURL_MULTI
 656                curl_multi_remove_handle(curlm, slot->curl);
 657#endif
 658                curl_easy_cleanup(slot->curl);
 659                slot->curl = NULL;
 660                curl_session_count--;
 661        }
 662#ifdef USE_CURL_MULTI
 663        fill_active_slots();
 664#endif
 665}
 666
 667void finish_active_slot(struct active_request_slot *slot)
 668{
 669        closedown_active_slot(slot);
 670        curl_easy_getinfo(slot->curl, CURLINFO_HTTP_CODE, &slot->http_code);
 671
 672        if (slot->finished != NULL)
 673                (*slot->finished) = 1;
 674
 675        /* Store slot results so they can be read after the slot is reused */
 676        if (slot->results != NULL) {
 677                slot->results->curl_result = slot->curl_result;
 678                slot->results->http_code = slot->http_code;
 679        }
 680
 681        /* Run callback if appropriate */
 682        if (slot->callback_func != NULL)
 683                slot->callback_func(slot->callback_data);
 684}
 685
 686void finish_all_active_slots(void)
 687{
 688        struct active_request_slot *slot = active_queue_head;
 689
 690        while (slot != NULL)
 691                if (slot->in_use) {
 692                        run_active_slot(slot);
 693                        slot = active_queue_head;
 694                } else {
 695                        slot = slot->next;
 696                }
 697}
 698
 699/* Helpers for modifying and creating URLs */
 700static inline int needs_quote(int ch)
 701{
 702        if (((ch >= 'A') && (ch <= 'Z'))
 703                        || ((ch >= 'a') && (ch <= 'z'))
 704                        || ((ch >= '0') && (ch <= '9'))
 705                        || (ch == '/')
 706                        || (ch == '-')
 707                        || (ch == '.'))
 708                return 0;
 709        return 1;
 710}
 711
 712static char *quote_ref_url(const char *base, const char *ref)
 713{
 714        struct strbuf buf = STRBUF_INIT;
 715        const char *cp;
 716        int ch;
 717
 718        end_url_with_slash(&buf, base);
 719
 720        for (cp = ref; (ch = *cp) != 0; cp++)
 721                if (needs_quote(ch))
 722                        strbuf_addf(&buf, "%%%02x", ch);
 723                else
 724                        strbuf_addch(&buf, *cp);
 725
 726        return strbuf_detach(&buf, NULL);
 727}
 728
 729void append_remote_object_url(struct strbuf *buf, const char *url,
 730                              const char *hex,
 731                              int only_two_digit_prefix)
 732{
 733        end_url_with_slash(buf, url);
 734
 735        strbuf_addf(buf, "objects/%.*s/", 2, hex);
 736        if (!only_two_digit_prefix)
 737                strbuf_addf(buf, "%s", hex+2);
 738}
 739
 740char *get_remote_object_url(const char *url, const char *hex,
 741                            int only_two_digit_prefix)
 742{
 743        struct strbuf buf = STRBUF_INIT;
 744        append_remote_object_url(&buf, url, hex, only_two_digit_prefix);
 745        return strbuf_detach(&buf, NULL);
 746}
 747
 748int handle_curl_result(struct active_request_slot *slot)
 749{
 750        struct slot_results *results = slot->results;
 751
 752        if (results->curl_result == CURLE_OK) {
 753                credential_approve(&http_auth);
 754                return HTTP_OK;
 755        } else if (missing_target(results))
 756                return HTTP_MISSING_TARGET;
 757        else if (results->http_code == 401) {
 758                if (http_auth.username && http_auth.password) {
 759                        credential_reject(&http_auth);
 760                        return HTTP_NOAUTH;
 761                } else {
 762                        credential_fill(&http_auth);
 763                        init_curl_http_auth(slot->curl);
 764                        return HTTP_REAUTH;
 765                }
 766        } else {
 767#if LIBCURL_VERSION_NUM >= 0x070c00
 768                if (!curl_errorstr[0])
 769                        strlcpy(curl_errorstr,
 770                                curl_easy_strerror(results->curl_result),
 771                                sizeof(curl_errorstr));
 772#endif
 773                return HTTP_ERROR;
 774        }
 775}
 776
 777/* http_request() targets */
 778#define HTTP_REQUEST_STRBUF     0
 779#define HTTP_REQUEST_FILE       1
 780
 781static int http_request(const char *url, void *result, int target, int options)
 782{
 783        struct active_request_slot *slot;
 784        struct slot_results results;
 785        struct curl_slist *headers = NULL;
 786        struct strbuf buf = STRBUF_INIT;
 787        int ret;
 788
 789        slot = get_active_slot();
 790        slot->results = &results;
 791        curl_easy_setopt(slot->curl, CURLOPT_HTTPGET, 1);
 792
 793        if (result == NULL) {
 794                curl_easy_setopt(slot->curl, CURLOPT_NOBODY, 1);
 795        } else {
 796                curl_easy_setopt(slot->curl, CURLOPT_NOBODY, 0);
 797                curl_easy_setopt(slot->curl, CURLOPT_FILE, result);
 798
 799                if (target == HTTP_REQUEST_FILE) {
 800                        long posn = ftell(result);
 801                        curl_easy_setopt(slot->curl, CURLOPT_WRITEFUNCTION,
 802                                         fwrite);
 803                        if (posn > 0) {
 804                                strbuf_addf(&buf, "Range: bytes=%ld-", posn);
 805                                headers = curl_slist_append(headers, buf.buf);
 806                                strbuf_reset(&buf);
 807                        }
 808                } else
 809                        curl_easy_setopt(slot->curl, CURLOPT_WRITEFUNCTION,
 810                                         fwrite_buffer);
 811        }
 812
 813        strbuf_addstr(&buf, "Pragma:");
 814        if (options & HTTP_NO_CACHE)
 815                strbuf_addstr(&buf, " no-cache");
 816
 817        headers = curl_slist_append(headers, buf.buf);
 818
 819        curl_easy_setopt(slot->curl, CURLOPT_URL, url);
 820        curl_easy_setopt(slot->curl, CURLOPT_HTTPHEADER, headers);
 821
 822        if (start_active_slot(slot)) {
 823                run_active_slot(slot);
 824                ret = handle_curl_result(slot);
 825        } else {
 826                error("Unable to start HTTP request for %s", url);
 827                ret = HTTP_START_FAILED;
 828        }
 829
 830        curl_slist_free_all(headers);
 831        strbuf_release(&buf);
 832
 833        return ret;
 834}
 835
 836static int http_request_reauth(const char *url, void *result, int target,
 837                               int options)
 838{
 839        int ret = http_request(url, result, target, options);
 840        if (ret != HTTP_REAUTH)
 841                return ret;
 842        return http_request(url, result, target, options);
 843}
 844
 845int http_get_strbuf(const char *url, struct strbuf *result, int options)
 846{
 847        return http_request_reauth(url, result, HTTP_REQUEST_STRBUF, options);
 848}
 849
 850/*
 851 * Downloads a URL and stores the result in the given file.
 852 *
 853 * If a previous interrupted download is detected (i.e. a previous temporary
 854 * file is still around) the download is resumed.
 855 */
 856static int http_get_file(const char *url, const char *filename, int options)
 857{
 858        int ret;
 859        struct strbuf tmpfile = STRBUF_INIT;
 860        FILE *result;
 861
 862        strbuf_addf(&tmpfile, "%s.temp", filename);
 863        result = fopen(tmpfile.buf, "a");
 864        if (! result) {
 865                error("Unable to open local file %s", tmpfile.buf);
 866                ret = HTTP_ERROR;
 867                goto cleanup;
 868        }
 869
 870        ret = http_request_reauth(url, result, HTTP_REQUEST_FILE, options);
 871        fclose(result);
 872
 873        if ((ret == HTTP_OK) && move_temp_to_file(tmpfile.buf, filename))
 874                ret = HTTP_ERROR;
 875cleanup:
 876        strbuf_release(&tmpfile);
 877        return ret;
 878}
 879
 880int http_error(const char *url, int ret)
 881{
 882        /* http_request has already handled HTTP_START_FAILED. */
 883        if (ret != HTTP_START_FAILED)
 884                error("%s while accessing %s", curl_errorstr, url);
 885
 886        return ret;
 887}
 888
 889int http_fetch_ref(const char *base, struct ref *ref)
 890{
 891        char *url;
 892        struct strbuf buffer = STRBUF_INIT;
 893        int ret = -1;
 894
 895        url = quote_ref_url(base, ref->name);
 896        if (http_get_strbuf(url, &buffer, HTTP_NO_CACHE) == HTTP_OK) {
 897                strbuf_rtrim(&buffer);
 898                if (buffer.len == 40)
 899                        ret = get_sha1_hex(buffer.buf, ref->old_sha1);
 900                else if (!prefixcmp(buffer.buf, "ref: ")) {
 901                        ref->symref = xstrdup(buffer.buf + 5);
 902                        ret = 0;
 903                }
 904        }
 905
 906        strbuf_release(&buffer);
 907        free(url);
 908        return ret;
 909}
 910
 911/* Helpers for fetching packs */
 912static char *fetch_pack_index(unsigned char *sha1, const char *base_url)
 913{
 914        char *url, *tmp;
 915        struct strbuf buf = STRBUF_INIT;
 916
 917        if (http_is_verbose)
 918                fprintf(stderr, "Getting index for pack %s\n", sha1_to_hex(sha1));
 919
 920        end_url_with_slash(&buf, base_url);
 921        strbuf_addf(&buf, "objects/pack/pack-%s.idx", sha1_to_hex(sha1));
 922        url = strbuf_detach(&buf, NULL);
 923
 924        strbuf_addf(&buf, "%s.temp", sha1_pack_index_name(sha1));
 925        tmp = strbuf_detach(&buf, NULL);
 926
 927        if (http_get_file(url, tmp, 0) != HTTP_OK) {
 928                error("Unable to get pack index %s", url);
 929                free(tmp);
 930                tmp = NULL;
 931        }
 932
 933        free(url);
 934        return tmp;
 935}
 936
 937static int fetch_and_setup_pack_index(struct packed_git **packs_head,
 938        unsigned char *sha1, const char *base_url)
 939{
 940        struct packed_git *new_pack;
 941        char *tmp_idx = NULL;
 942        int ret;
 943
 944        if (has_pack_index(sha1)) {
 945                new_pack = parse_pack_index(sha1, NULL);
 946                if (!new_pack)
 947                        return -1; /* parse_pack_index() already issued error message */
 948                goto add_pack;
 949        }
 950
 951        tmp_idx = fetch_pack_index(sha1, base_url);
 952        if (!tmp_idx)
 953                return -1;
 954
 955        new_pack = parse_pack_index(sha1, tmp_idx);
 956        if (!new_pack) {
 957                unlink(tmp_idx);
 958                free(tmp_idx);
 959
 960                return -1; /* parse_pack_index() already issued error message */
 961        }
 962
 963        ret = verify_pack_index(new_pack);
 964        if (!ret) {
 965                close_pack_index(new_pack);
 966                ret = move_temp_to_file(tmp_idx, sha1_pack_index_name(sha1));
 967        }
 968        free(tmp_idx);
 969        if (ret)
 970                return -1;
 971
 972add_pack:
 973        new_pack->next = *packs_head;
 974        *packs_head = new_pack;
 975        return 0;
 976}
 977
 978int http_get_info_packs(const char *base_url, struct packed_git **packs_head)
 979{
 980        int ret = 0, i = 0;
 981        char *url, *data;
 982        struct strbuf buf = STRBUF_INIT;
 983        unsigned char sha1[20];
 984
 985        end_url_with_slash(&buf, base_url);
 986        strbuf_addstr(&buf, "objects/info/packs");
 987        url = strbuf_detach(&buf, NULL);
 988
 989        ret = http_get_strbuf(url, &buf, HTTP_NO_CACHE);
 990        if (ret != HTTP_OK)
 991                goto cleanup;
 992
 993        data = buf.buf;
 994        while (i < buf.len) {
 995                switch (data[i]) {
 996                case 'P':
 997                        i++;
 998                        if (i + 52 <= buf.len &&
 999                            !prefixcmp(data + i, " pack-") &&
1000                            !prefixcmp(data + i + 46, ".pack\n")) {
1001                                get_sha1_hex(data + i + 6, sha1);
1002                                fetch_and_setup_pack_index(packs_head, sha1,
1003                                                      base_url);
1004                                i += 51;
1005                                break;
1006                        }
1007                default:
1008                        while (i < buf.len && data[i] != '\n')
1009                                i++;
1010                }
1011                i++;
1012        }
1013
1014cleanup:
1015        free(url);
1016        return ret;
1017}
1018
1019void release_http_pack_request(struct http_pack_request *preq)
1020{
1021        if (preq->packfile != NULL) {
1022                fclose(preq->packfile);
1023                preq->packfile = NULL;
1024        }
1025        if (preq->range_header != NULL) {
1026                curl_slist_free_all(preq->range_header);
1027                preq->range_header = NULL;
1028        }
1029        preq->slot = NULL;
1030        free(preq->url);
1031}
1032
1033int finish_http_pack_request(struct http_pack_request *preq)
1034{
1035        struct packed_git **lst;
1036        struct packed_git *p = preq->target;
1037        char *tmp_idx;
1038        struct child_process ip;
1039        const char *ip_argv[8];
1040
1041        close_pack_index(p);
1042
1043        fclose(preq->packfile);
1044        preq->packfile = NULL;
1045
1046        lst = preq->lst;
1047        while (*lst != p)
1048                lst = &((*lst)->next);
1049        *lst = (*lst)->next;
1050
1051        tmp_idx = xstrdup(preq->tmpfile);
1052        strcpy(tmp_idx + strlen(tmp_idx) - strlen(".pack.temp"),
1053               ".idx.temp");
1054
1055        ip_argv[0] = "index-pack";
1056        ip_argv[1] = "-o";
1057        ip_argv[2] = tmp_idx;
1058        ip_argv[3] = preq->tmpfile;
1059        ip_argv[4] = NULL;
1060
1061        memset(&ip, 0, sizeof(ip));
1062        ip.argv = ip_argv;
1063        ip.git_cmd = 1;
1064        ip.no_stdin = 1;
1065        ip.no_stdout = 1;
1066
1067        if (run_command(&ip)) {
1068                unlink(preq->tmpfile);
1069                unlink(tmp_idx);
1070                free(tmp_idx);
1071                return -1;
1072        }
1073
1074        unlink(sha1_pack_index_name(p->sha1));
1075
1076        if (move_temp_to_file(preq->tmpfile, sha1_pack_name(p->sha1))
1077         || move_temp_to_file(tmp_idx, sha1_pack_index_name(p->sha1))) {
1078                free(tmp_idx);
1079                return -1;
1080        }
1081
1082        install_packed_git(p);
1083        free(tmp_idx);
1084        return 0;
1085}
1086
1087struct http_pack_request *new_http_pack_request(
1088        struct packed_git *target, const char *base_url)
1089{
1090        long prev_posn = 0;
1091        char range[RANGE_HEADER_SIZE];
1092        struct strbuf buf = STRBUF_INIT;
1093        struct http_pack_request *preq;
1094
1095        preq = xcalloc(1, sizeof(*preq));
1096        preq->target = target;
1097
1098        end_url_with_slash(&buf, base_url);
1099        strbuf_addf(&buf, "objects/pack/pack-%s.pack",
1100                sha1_to_hex(target->sha1));
1101        preq->url = strbuf_detach(&buf, NULL);
1102
1103        snprintf(preq->tmpfile, sizeof(preq->tmpfile), "%s.temp",
1104                sha1_pack_name(target->sha1));
1105        preq->packfile = fopen(preq->tmpfile, "a");
1106        if (!preq->packfile) {
1107                error("Unable to open local file %s for pack",
1108                      preq->tmpfile);
1109                goto abort;
1110        }
1111
1112        preq->slot = get_active_slot();
1113        curl_easy_setopt(preq->slot->curl, CURLOPT_FILE, preq->packfile);
1114        curl_easy_setopt(preq->slot->curl, CURLOPT_WRITEFUNCTION, fwrite);
1115        curl_easy_setopt(preq->slot->curl, CURLOPT_URL, preq->url);
1116        curl_easy_setopt(preq->slot->curl, CURLOPT_HTTPHEADER,
1117                no_pragma_header);
1118
1119        /*
1120         * If there is data present from a previous transfer attempt,
1121         * resume where it left off
1122         */
1123        prev_posn = ftell(preq->packfile);
1124        if (prev_posn>0) {
1125                if (http_is_verbose)
1126                        fprintf(stderr,
1127                                "Resuming fetch of pack %s at byte %ld\n",
1128                                sha1_to_hex(target->sha1), prev_posn);
1129                sprintf(range, "Range: bytes=%ld-", prev_posn);
1130                preq->range_header = curl_slist_append(NULL, range);
1131                curl_easy_setopt(preq->slot->curl, CURLOPT_HTTPHEADER,
1132                        preq->range_header);
1133        }
1134
1135        return preq;
1136
1137abort:
1138        free(preq->url);
1139        free(preq);
1140        return NULL;
1141}
1142
1143/* Helpers for fetching objects (loose) */
1144static size_t fwrite_sha1_file(char *ptr, size_t eltsize, size_t nmemb,
1145                               void *data)
1146{
1147        unsigned char expn[4096];
1148        size_t size = eltsize * nmemb;
1149        int posn = 0;
1150        struct http_object_request *freq =
1151                (struct http_object_request *)data;
1152        do {
1153                ssize_t retval = xwrite(freq->localfile,
1154                                        (char *) ptr + posn, size - posn);
1155                if (retval < 0)
1156                        return posn;
1157                posn += retval;
1158        } while (posn < size);
1159
1160        freq->stream.avail_in = size;
1161        freq->stream.next_in = (void *)ptr;
1162        do {
1163                freq->stream.next_out = expn;
1164                freq->stream.avail_out = sizeof(expn);
1165                freq->zret = git_inflate(&freq->stream, Z_SYNC_FLUSH);
1166                git_SHA1_Update(&freq->c, expn,
1167                                sizeof(expn) - freq->stream.avail_out);
1168        } while (freq->stream.avail_in && freq->zret == Z_OK);
1169        return size;
1170}
1171
1172struct http_object_request *new_http_object_request(const char *base_url,
1173        unsigned char *sha1)
1174{
1175        char *hex = sha1_to_hex(sha1);
1176        char *filename;
1177        char prevfile[PATH_MAX];
1178        int prevlocal;
1179        char prev_buf[PREV_BUF_SIZE];
1180        ssize_t prev_read = 0;
1181        long prev_posn = 0;
1182        char range[RANGE_HEADER_SIZE];
1183        struct curl_slist *range_header = NULL;
1184        struct http_object_request *freq;
1185
1186        freq = xcalloc(1, sizeof(*freq));
1187        hashcpy(freq->sha1, sha1);
1188        freq->localfile = -1;
1189
1190        filename = sha1_file_name(sha1);
1191        snprintf(freq->tmpfile, sizeof(freq->tmpfile),
1192                 "%s.temp", filename);
1193
1194        snprintf(prevfile, sizeof(prevfile), "%s.prev", filename);
1195        unlink_or_warn(prevfile);
1196        rename(freq->tmpfile, prevfile);
1197        unlink_or_warn(freq->tmpfile);
1198
1199        if (freq->localfile != -1)
1200                error("fd leakage in start: %d", freq->localfile);
1201        freq->localfile = open(freq->tmpfile,
1202                               O_WRONLY | O_CREAT | O_EXCL, 0666);
1203        /*
1204         * This could have failed due to the "lazy directory creation";
1205         * try to mkdir the last path component.
1206         */
1207        if (freq->localfile < 0 && errno == ENOENT) {
1208                char *dir = strrchr(freq->tmpfile, '/');
1209                if (dir) {
1210                        *dir = 0;
1211                        mkdir(freq->tmpfile, 0777);
1212                        *dir = '/';
1213                }
1214                freq->localfile = open(freq->tmpfile,
1215                                       O_WRONLY | O_CREAT | O_EXCL, 0666);
1216        }
1217
1218        if (freq->localfile < 0) {
1219                error("Couldn't create temporary file %s: %s",
1220                      freq->tmpfile, strerror(errno));
1221                goto abort;
1222        }
1223
1224        git_inflate_init(&freq->stream);
1225
1226        git_SHA1_Init(&freq->c);
1227
1228        freq->url = get_remote_object_url(base_url, hex, 0);
1229
1230        /*
1231         * If a previous temp file is present, process what was already
1232         * fetched.
1233         */
1234        prevlocal = open(prevfile, O_RDONLY);
1235        if (prevlocal != -1) {
1236                do {
1237                        prev_read = xread(prevlocal, prev_buf, PREV_BUF_SIZE);
1238                        if (prev_read>0) {
1239                                if (fwrite_sha1_file(prev_buf,
1240                                                     1,
1241                                                     prev_read,
1242                                                     freq) == prev_read) {
1243                                        prev_posn += prev_read;
1244                                } else {
1245                                        prev_read = -1;
1246                                }
1247                        }
1248                } while (prev_read > 0);
1249                close(prevlocal);
1250        }
1251        unlink_or_warn(prevfile);
1252
1253        /*
1254         * Reset inflate/SHA1 if there was an error reading the previous temp
1255         * file; also rewind to the beginning of the local file.
1256         */
1257        if (prev_read == -1) {
1258                memset(&freq->stream, 0, sizeof(freq->stream));
1259                git_inflate_init(&freq->stream);
1260                git_SHA1_Init(&freq->c);
1261                if (prev_posn>0) {
1262                        prev_posn = 0;
1263                        lseek(freq->localfile, 0, SEEK_SET);
1264                        if (ftruncate(freq->localfile, 0) < 0) {
1265                                error("Couldn't truncate temporary file %s: %s",
1266                                          freq->tmpfile, strerror(errno));
1267                                goto abort;
1268                        }
1269                }
1270        }
1271
1272        freq->slot = get_active_slot();
1273
1274        curl_easy_setopt(freq->slot->curl, CURLOPT_FILE, freq);
1275        curl_easy_setopt(freq->slot->curl, CURLOPT_WRITEFUNCTION, fwrite_sha1_file);
1276        curl_easy_setopt(freq->slot->curl, CURLOPT_ERRORBUFFER, freq->errorstr);
1277        curl_easy_setopt(freq->slot->curl, CURLOPT_URL, freq->url);
1278        curl_easy_setopt(freq->slot->curl, CURLOPT_HTTPHEADER, no_pragma_header);
1279
1280        /*
1281         * If we have successfully processed data from a previous fetch
1282         * attempt, only fetch the data we don't already have.
1283         */
1284        if (prev_posn>0) {
1285                if (http_is_verbose)
1286                        fprintf(stderr,
1287                                "Resuming fetch of object %s at byte %ld\n",
1288                                hex, prev_posn);
1289                sprintf(range, "Range: bytes=%ld-", prev_posn);
1290                range_header = curl_slist_append(range_header, range);
1291                curl_easy_setopt(freq->slot->curl,
1292                                 CURLOPT_HTTPHEADER, range_header);
1293        }
1294
1295        return freq;
1296
1297abort:
1298        free(freq->url);
1299        free(freq);
1300        return NULL;
1301}
1302
1303void process_http_object_request(struct http_object_request *freq)
1304{
1305        if (freq->slot == NULL)
1306                return;
1307        freq->curl_result = freq->slot->curl_result;
1308        freq->http_code = freq->slot->http_code;
1309        freq->slot = NULL;
1310}
1311
1312int finish_http_object_request(struct http_object_request *freq)
1313{
1314        struct stat st;
1315
1316        close(freq->localfile);
1317        freq->localfile = -1;
1318
1319        process_http_object_request(freq);
1320
1321        if (freq->http_code == 416) {
1322                warning("requested range invalid; we may already have all the data.");
1323        } else if (freq->curl_result != CURLE_OK) {
1324                if (stat(freq->tmpfile, &st) == 0)
1325                        if (st.st_size == 0)
1326                                unlink_or_warn(freq->tmpfile);
1327                return -1;
1328        }
1329
1330        git_inflate_end(&freq->stream);
1331        git_SHA1_Final(freq->real_sha1, &freq->c);
1332        if (freq->zret != Z_STREAM_END) {
1333                unlink_or_warn(freq->tmpfile);
1334                return -1;
1335        }
1336        if (hashcmp(freq->sha1, freq->real_sha1)) {
1337                unlink_or_warn(freq->tmpfile);
1338                return -1;
1339        }
1340        freq->rename =
1341                move_temp_to_file(freq->tmpfile, sha1_file_name(freq->sha1));
1342
1343        return freq->rename;
1344}
1345
1346void abort_http_object_request(struct http_object_request *freq)
1347{
1348        unlink_or_warn(freq->tmpfile);
1349
1350        release_http_object_request(freq);
1351}
1352
1353void release_http_object_request(struct http_object_request *freq)
1354{
1355        if (freq->localfile != -1) {
1356                close(freq->localfile);
1357                freq->localfile = -1;
1358        }
1359        if (freq->url != NULL) {
1360                free(freq->url);
1361                freq->url = NULL;
1362        }
1363        if (freq->slot != NULL) {
1364                freq->slot->callback_func = NULL;
1365                freq->slot->callback_data = NULL;
1366                release_active_slot(freq->slot);
1367                freq->slot = NULL;
1368        }
1369}