setup.con commit Prepare execv_git_cmd() for removal of builtins from the filesystem (7550be0)
   1#include "cache.h"
   2#include "dir.h"
   3
   4static int inside_git_dir = -1;
   5static int inside_work_tree = -1;
   6
   7static int sanitary_path_copy(char *dst, const char *src)
   8{
   9        char *dst0 = dst;
  10
  11        if (*src == '/') {
  12                *dst++ = '/';
  13                while (*src == '/')
  14                        src++;
  15        }
  16
  17        for (;;) {
  18                char c = *src;
  19
  20                /*
  21                 * A path component that begins with . could be
  22                 * special:
  23                 * (1) "." and ends   -- ignore and terminate.
  24                 * (2) "./"           -- ignore them, eat slash and continue.
  25                 * (3) ".." and ends  -- strip one and terminate.
  26                 * (4) "../"          -- strip one, eat slash and continue.
  27                 */
  28                if (c == '.') {
  29                        switch (src[1]) {
  30                        case '\0':
  31                                /* (1) */
  32                                src++;
  33                                break;
  34                        case '/':
  35                                /* (2) */
  36                                src += 2;
  37                                while (*src == '/')
  38                                        src++;
  39                                continue;
  40                        case '.':
  41                                switch (src[2]) {
  42                                case '\0':
  43                                        /* (3) */
  44                                        src += 2;
  45                                        goto up_one;
  46                                case '/':
  47                                        /* (4) */
  48                                        src += 3;
  49                                        while (*src == '/')
  50                                                src++;
  51                                        goto up_one;
  52                                }
  53                        }
  54                }
  55
  56                /* copy up to the next '/', and eat all '/' */
  57                while ((c = *src++) != '\0' && c != '/')
  58                        *dst++ = c;
  59                if (c == '/') {
  60                        *dst++ = c;
  61                        while (c == '/')
  62                                c = *src++;
  63                        src--;
  64                } else if (!c)
  65                        break;
  66                continue;
  67
  68        up_one:
  69                /*
  70                 * dst0..dst is prefix portion, and dst[-1] is '/';
  71                 * go up one level.
  72                 */
  73                dst -= 2; /* go past trailing '/' if any */
  74                if (dst < dst0)
  75                        return -1;
  76                while (1) {
  77                        if (dst <= dst0)
  78                                break;
  79                        c = *dst--;
  80                        if (c == '/') {
  81                                dst += 2;
  82                                break;
  83                        }
  84                }
  85        }
  86        *dst = '\0';
  87        return 0;
  88}
  89
  90const char *prefix_path(const char *prefix, int len, const char *path)
  91{
  92        const char *orig = path;
  93        char *sanitized = xmalloc(len + strlen(path) + 1);
  94        if (is_absolute_path(orig))
  95                strcpy(sanitized, path);
  96        else {
  97                if (len)
  98                        memcpy(sanitized, prefix, len);
  99                strcpy(sanitized + len, path);
 100        }
 101        if (sanitary_path_copy(sanitized, sanitized))
 102                goto error_out;
 103        if (is_absolute_path(orig)) {
 104                const char *work_tree = get_git_work_tree();
 105                size_t len = strlen(work_tree);
 106                size_t total = strlen(sanitized) + 1;
 107                if (strncmp(sanitized, work_tree, len) ||
 108                    (sanitized[len] != '\0' && sanitized[len] != '/')) {
 109                error_out:
 110                        error("'%s' is outside repository", orig);
 111                        free(sanitized);
 112                        return NULL;
 113                }
 114                if (sanitized[len] == '/')
 115                        len++;
 116                memmove(sanitized, sanitized + len, total - len);
 117        }
 118        return sanitized;
 119}
 120
 121/*
 122 * Unlike prefix_path, this should be used if the named file does
 123 * not have to interact with index entry; i.e. name of a random file
 124 * on the filesystem.
 125 */
 126const char *prefix_filename(const char *pfx, int pfx_len, const char *arg)
 127{
 128        static char path[PATH_MAX];
 129        if (!pfx || !*pfx || is_absolute_path(arg))
 130                return arg;
 131        memcpy(path, pfx, pfx_len);
 132        strcpy(path + pfx_len, arg);
 133        return path;
 134}
 135
 136/*
 137 * Verify a filename that we got as an argument for a pathspec
 138 * entry. Note that a filename that begins with "-" never verifies
 139 * as true, because even if such a filename were to exist, we want
 140 * it to be preceded by the "--" marker (or we want the user to
 141 * use a format like "./-filename")
 142 */
 143void verify_filename(const char *prefix, const char *arg)
 144{
 145        const char *name;
 146        struct stat st;
 147
 148        if (*arg == '-')
 149                die("bad flag '%s' used after filename", arg);
 150        name = prefix ? prefix_filename(prefix, strlen(prefix), arg) : arg;
 151        if (!lstat(name, &st))
 152                return;
 153        if (errno == ENOENT)
 154                die("ambiguous argument '%s': unknown revision or path not in the working tree.\n"
 155                    "Use '--' to separate paths from revisions", arg);
 156        die("'%s': %s", arg, strerror(errno));
 157}
 158
 159/*
 160 * Opposite of the above: the command line did not have -- marker
 161 * and we parsed the arg as a refname.  It should not be interpretable
 162 * as a filename.
 163 */
 164void verify_non_filename(const char *prefix, const char *arg)
 165{
 166        const char *name;
 167        struct stat st;
 168
 169        if (!is_inside_work_tree() || is_inside_git_dir())
 170                return;
 171        if (*arg == '-')
 172                return; /* flag */
 173        name = prefix ? prefix_filename(prefix, strlen(prefix), arg) : arg;
 174        if (!lstat(name, &st))
 175                die("ambiguous argument '%s': both revision and filename\n"
 176                    "Use '--' to separate filenames from revisions", arg);
 177        if (errno != ENOENT && errno != ENOTDIR)
 178                die("'%s': %s", arg, strerror(errno));
 179}
 180
 181const char **get_pathspec(const char *prefix, const char **pathspec)
 182{
 183        const char *entry = *pathspec;
 184        const char **src, **dst;
 185        int prefixlen;
 186
 187        if (!prefix && !entry)
 188                return NULL;
 189
 190        if (!entry) {
 191                static const char *spec[2];
 192                spec[0] = prefix;
 193                spec[1] = NULL;
 194                return spec;
 195        }
 196
 197        /* Otherwise we have to re-write the entries.. */
 198        src = pathspec;
 199        dst = pathspec;
 200        prefixlen = prefix ? strlen(prefix) : 0;
 201        while (*src) {
 202                const char *p = prefix_path(prefix, prefixlen, *src);
 203                if (p)
 204                        *(dst++) = p;
 205                else
 206                        exit(128); /* error message already given */
 207                src++;
 208        }
 209        *dst = NULL;
 210        if (!*pathspec)
 211                return NULL;
 212        return pathspec;
 213}
 214
 215/*
 216 * Test if it looks like we're at a git directory.
 217 * We want to see:
 218 *
 219 *  - either an objects/ directory _or_ the proper
 220 *    GIT_OBJECT_DIRECTORY environment variable
 221 *  - a refs/ directory
 222 *  - either a HEAD symlink or a HEAD file that is formatted as
 223 *    a proper "ref:", or a regular file HEAD that has a properly
 224 *    formatted sha1 object name.
 225 */
 226static int is_git_directory(const char *suspect)
 227{
 228        char path[PATH_MAX];
 229        size_t len = strlen(suspect);
 230
 231        strcpy(path, suspect);
 232        if (getenv(DB_ENVIRONMENT)) {
 233                if (access(getenv(DB_ENVIRONMENT), X_OK))
 234                        return 0;
 235        }
 236        else {
 237                strcpy(path + len, "/objects");
 238                if (access(path, X_OK))
 239                        return 0;
 240        }
 241
 242        strcpy(path + len, "/refs");
 243        if (access(path, X_OK))
 244                return 0;
 245
 246        strcpy(path + len, "/HEAD");
 247        if (validate_headref(path))
 248                return 0;
 249
 250        return 1;
 251}
 252
 253int is_inside_git_dir(void)
 254{
 255        if (inside_git_dir < 0)
 256                inside_git_dir = is_inside_dir(get_git_dir());
 257        return inside_git_dir;
 258}
 259
 260int is_inside_work_tree(void)
 261{
 262        if (inside_work_tree < 0)
 263                inside_work_tree = is_inside_dir(get_git_work_tree());
 264        return inside_work_tree;
 265}
 266
 267/*
 268 * set_work_tree() is only ever called if you set GIT_DIR explicitely.
 269 * The old behaviour (which we retain here) is to set the work tree root
 270 * to the cwd, unless overridden by the config, the command line, or
 271 * GIT_WORK_TREE.
 272 */
 273static const char *set_work_tree(const char *dir)
 274{
 275        char buffer[PATH_MAX + 1];
 276
 277        if (!getcwd(buffer, sizeof(buffer)))
 278                die ("Could not get the current working directory");
 279        git_work_tree_cfg = xstrdup(buffer);
 280        inside_work_tree = 1;
 281
 282        return NULL;
 283}
 284
 285void setup_work_tree(void)
 286{
 287        const char *work_tree, *git_dir;
 288        static int initialized = 0;
 289
 290        if (initialized)
 291                return;
 292        work_tree = get_git_work_tree();
 293        git_dir = get_git_dir();
 294        if (!is_absolute_path(git_dir))
 295                set_git_dir(make_absolute_path(git_dir));
 296        if (!work_tree || chdir(work_tree))
 297                die("This operation must be run in a work tree");
 298        initialized = 1;
 299}
 300
 301static int check_repository_format_gently(int *nongit_ok)
 302{
 303        git_config(check_repository_format_version, NULL);
 304        if (GIT_REPO_VERSION < repository_format_version) {
 305                if (!nongit_ok)
 306                        die ("Expected git repo version <= %d, found %d",
 307                             GIT_REPO_VERSION, repository_format_version);
 308                warning("Expected git repo version <= %d, found %d",
 309                        GIT_REPO_VERSION, repository_format_version);
 310                warning("Please upgrade Git");
 311                *nongit_ok = -1;
 312                return -1;
 313        }
 314        return 0;
 315}
 316
 317/*
 318 * Try to read the location of the git directory from the .git file,
 319 * return path to git directory if found.
 320 */
 321const char *read_gitfile_gently(const char *path)
 322{
 323        char *buf;
 324        struct stat st;
 325        int fd;
 326        size_t len;
 327
 328        if (stat(path, &st))
 329                return NULL;
 330        if (!S_ISREG(st.st_mode))
 331                return NULL;
 332        fd = open(path, O_RDONLY);
 333        if (fd < 0)
 334                die("Error opening %s: %s", path, strerror(errno));
 335        buf = xmalloc(st.st_size + 1);
 336        len = read_in_full(fd, buf, st.st_size);
 337        close(fd);
 338        if (len != st.st_size)
 339                die("Error reading %s", path);
 340        buf[len] = '\0';
 341        if (prefixcmp(buf, "gitdir: "))
 342                die("Invalid gitfile format: %s", path);
 343        while (buf[len - 1] == '\n' || buf[len - 1] == '\r')
 344                len--;
 345        if (len < 9)
 346                die("No path in gitfile: %s", path);
 347        buf[len] = '\0';
 348        if (!is_git_directory(buf + 8))
 349                die("Not a git repository: %s", buf + 8);
 350        path = make_absolute_path(buf + 8);
 351        free(buf);
 352        return path;
 353}
 354
 355/*
 356 * We cannot decide in this function whether we are in the work tree or
 357 * not, since the config can only be read _after_ this function was called.
 358 */
 359const char *setup_git_directory_gently(int *nongit_ok)
 360{
 361        const char *work_tree_env = getenv(GIT_WORK_TREE_ENVIRONMENT);
 362        static char cwd[PATH_MAX+1];
 363        const char *gitdirenv;
 364        const char *gitfile_dir;
 365        int len, offset;
 366
 367        /*
 368         * Let's assume that we are in a git repository.
 369         * If it turns out later that we are somewhere else, the value will be
 370         * updated accordingly.
 371         */
 372        if (nongit_ok)
 373                *nongit_ok = 0;
 374
 375        /*
 376         * If GIT_DIR is set explicitly, we're not going
 377         * to do any discovery, but we still do repository
 378         * validation.
 379         */
 380        gitdirenv = getenv(GIT_DIR_ENVIRONMENT);
 381        if (gitdirenv) {
 382                if (PATH_MAX - 40 < strlen(gitdirenv))
 383                        die("'$%s' too big", GIT_DIR_ENVIRONMENT);
 384                if (is_git_directory(gitdirenv)) {
 385                        static char buffer[1024 + 1];
 386                        const char *retval;
 387
 388                        if (!work_tree_env) {
 389                                retval = set_work_tree(gitdirenv);
 390                                /* config may override worktree */
 391                                if (check_repository_format_gently(nongit_ok))
 392                                        return NULL;
 393                                return retval;
 394                        }
 395                        if (check_repository_format_gently(nongit_ok))
 396                                return NULL;
 397                        retval = get_relative_cwd(buffer, sizeof(buffer) - 1,
 398                                        get_git_work_tree());
 399                        if (!retval || !*retval)
 400                                return NULL;
 401                        set_git_dir(make_absolute_path(gitdirenv));
 402                        if (chdir(work_tree_env) < 0)
 403                                die ("Could not chdir to %s", work_tree_env);
 404                        strcat(buffer, "/");
 405                        return retval;
 406                }
 407                if (nongit_ok) {
 408                        *nongit_ok = 1;
 409                        return NULL;
 410                }
 411                die("Not a git repository: '%s'", gitdirenv);
 412        }
 413
 414        if (!getcwd(cwd, sizeof(cwd)-1))
 415                die("Unable to read current working directory");
 416
 417        /*
 418         * Test in the following order (relative to the cwd):
 419         * - .git (file containing "gitdir: <path>")
 420         * - .git/
 421         * - ./ (bare)
 422         * - ../.git
 423         * - ../.git/
 424         * - ../ (bare)
 425         * - ../../.git/
 426         *   etc.
 427         */
 428        offset = len = strlen(cwd);
 429        for (;;) {
 430                gitfile_dir = read_gitfile_gently(DEFAULT_GIT_DIR_ENVIRONMENT);
 431                if (gitfile_dir) {
 432                        if (set_git_dir(gitfile_dir))
 433                                die("Repository setup failed");
 434                        break;
 435                }
 436                if (is_git_directory(DEFAULT_GIT_DIR_ENVIRONMENT))
 437                        break;
 438                if (is_git_directory(".")) {
 439                        inside_git_dir = 1;
 440                        if (!work_tree_env)
 441                                inside_work_tree = 0;
 442                        setenv(GIT_DIR_ENVIRONMENT, ".", 1);
 443                        check_repository_format_gently(nongit_ok);
 444                        return NULL;
 445                }
 446                chdir("..");
 447                do {
 448                        if (!offset) {
 449                                if (nongit_ok) {
 450                                        if (chdir(cwd))
 451                                                die("Cannot come back to cwd");
 452                                        *nongit_ok = 1;
 453                                        return NULL;
 454                                }
 455                                die("Not a git repository");
 456                        }
 457                } while (cwd[--offset] != '/');
 458        }
 459
 460        inside_git_dir = 0;
 461        if (!work_tree_env)
 462                inside_work_tree = 1;
 463        git_work_tree_cfg = xstrndup(cwd, offset);
 464        if (check_repository_format_gently(nongit_ok))
 465                return NULL;
 466        if (offset == len)
 467                return NULL;
 468
 469        /* Make "offset" point to past the '/', and add a '/' at the end */
 470        offset++;
 471        cwd[len++] = '/';
 472        cwd[len] = 0;
 473        return cwd + offset;
 474}
 475
 476int git_config_perm(const char *var, const char *value)
 477{
 478        int i;
 479        char *endptr;
 480
 481        if (value == NULL)
 482                return PERM_GROUP;
 483
 484        if (!strcmp(value, "umask"))
 485                return PERM_UMASK;
 486        if (!strcmp(value, "group"))
 487                return PERM_GROUP;
 488        if (!strcmp(value, "all") ||
 489            !strcmp(value, "world") ||
 490            !strcmp(value, "everybody"))
 491                return PERM_EVERYBODY;
 492
 493        /* Parse octal numbers */
 494        i = strtol(value, &endptr, 8);
 495
 496        /* If not an octal number, maybe true/false? */
 497        if (*endptr != 0)
 498                return git_config_bool(var, value) ? PERM_GROUP : PERM_UMASK;
 499
 500        /*
 501         * Treat values 0, 1 and 2 as compatibility cases, otherwise it is
 502         * a chmod value.
 503         */
 504        switch (i) {
 505        case PERM_UMASK:               /* 0 */
 506                return PERM_UMASK;
 507        case OLD_PERM_GROUP:           /* 1 */
 508                return PERM_GROUP;
 509        case OLD_PERM_EVERYBODY:       /* 2 */
 510                return PERM_EVERYBODY;
 511        }
 512
 513        /* A filemode value was given: 0xxx */
 514
 515        if ((i & 0600) != 0600)
 516                die("Problem with core.sharedRepository filemode value "
 517                    "(0%.3o).\nThe owner of files must always have "
 518                    "read and write permissions.", i);
 519
 520        /*
 521         * Mask filemode value. Others can not get write permission.
 522         * x flags for directories are handled separately.
 523         */
 524        return i & 0666;
 525}
 526
 527int check_repository_format_version(const char *var, const char *value, void *cb)
 528{
 529        if (strcmp(var, "core.repositoryformatversion") == 0)
 530                repository_format_version = git_config_int(var, value);
 531        else if (strcmp(var, "core.sharedrepository") == 0)
 532                shared_repository = git_config_perm(var, value);
 533        else if (strcmp(var, "core.bare") == 0) {
 534                is_bare_repository_cfg = git_config_bool(var, value);
 535                if (is_bare_repository_cfg == 1)
 536                        inside_work_tree = -1;
 537        } else if (strcmp(var, "core.worktree") == 0) {
 538                if (!value)
 539                        return config_error_nonbool(var);
 540                free(git_work_tree_cfg);
 541                git_work_tree_cfg = xstrdup(value);
 542                inside_work_tree = -1;
 543        }
 544        return 0;
 545}
 546
 547int check_repository_format(void)
 548{
 549        return check_repository_format_gently(NULL);
 550}
 551
 552const char *setup_git_directory(void)
 553{
 554        const char *retval = setup_git_directory_gently(NULL);
 555
 556        /* If the work tree is not the default one, recompute prefix */
 557        if (inside_work_tree < 0) {
 558                static char buffer[PATH_MAX + 1];
 559                char *rel;
 560                if (retval && chdir(retval))
 561                        die ("Could not jump back into original cwd");
 562                rel = get_relative_cwd(buffer, PATH_MAX, get_git_work_tree());
 563                return rel && *rel ? strcat(rel, "/") : NULL;
 564        }
 565
 566        return retval;
 567}