transport.con commit diff: avoid fixed-size buffer for patch-ids (977db6b)
   1#include "cache.h"
   2#include "transport.h"
   3#include "run-command.h"
   4#include "pkt-line.h"
   5#include "fetch-pack.h"
   6#include "remote.h"
   7#include "connect.h"
   8#include "send-pack.h"
   9#include "walker.h"
  10#include "bundle.h"
  11#include "dir.h"
  12#include "refs.h"
  13#include "branch.h"
  14#include "url.h"
  15#include "submodule.h"
  16#include "string-list.h"
  17#include "sha1-array.h"
  18#include "sigchain.h"
  19
  20static void set_upstreams(struct transport *transport, struct ref *refs,
  21        int pretend)
  22{
  23        struct ref *ref;
  24        for (ref = refs; ref; ref = ref->next) {
  25                const char *localname;
  26                const char *tmp;
  27                const char *remotename;
  28                unsigned char sha[20];
  29                int flag = 0;
  30                /*
  31                 * Check suitability for tracking. Must be successful /
  32                 * already up-to-date ref create/modify (not delete).
  33                 */
  34                if (ref->status != REF_STATUS_OK &&
  35                        ref->status != REF_STATUS_UPTODATE)
  36                        continue;
  37                if (!ref->peer_ref)
  38                        continue;
  39                if (is_null_oid(&ref->new_oid))
  40                        continue;
  41
  42                /* Follow symbolic refs (mainly for HEAD). */
  43                localname = ref->peer_ref->name;
  44                remotename = ref->name;
  45                tmp = resolve_ref_unsafe(localname, RESOLVE_REF_READING,
  46                                         sha, &flag);
  47                if (tmp && flag & REF_ISSYMREF &&
  48                        starts_with(tmp, "refs/heads/"))
  49                        localname = tmp;
  50
  51                /* Both source and destination must be local branches. */
  52                if (!localname || !starts_with(localname, "refs/heads/"))
  53                        continue;
  54                if (!remotename || !starts_with(remotename, "refs/heads/"))
  55                        continue;
  56
  57                if (!pretend)
  58                        install_branch_config(BRANCH_CONFIG_VERBOSE,
  59                                localname + 11, transport->remote->name,
  60                                remotename);
  61                else
  62                        printf(_("Would set upstream of '%s' to '%s' of '%s'\n"),
  63                                localname + 11, remotename + 11,
  64                                transport->remote->name);
  65        }
  66}
  67
  68struct bundle_transport_data {
  69        int fd;
  70        struct bundle_header header;
  71};
  72
  73static struct ref *get_refs_from_bundle(struct transport *transport, int for_push)
  74{
  75        struct bundle_transport_data *data = transport->data;
  76        struct ref *result = NULL;
  77        int i;
  78
  79        if (for_push)
  80                return NULL;
  81
  82        if (data->fd > 0)
  83                close(data->fd);
  84        data->fd = read_bundle_header(transport->url, &data->header);
  85        if (data->fd < 0)
  86                die ("Could not read bundle '%s'.", transport->url);
  87        for (i = 0; i < data->header.references.nr; i++) {
  88                struct ref_list_entry *e = data->header.references.list + i;
  89                struct ref *ref = alloc_ref(e->name);
  90                hashcpy(ref->old_oid.hash, e->sha1);
  91                ref->next = result;
  92                result = ref;
  93        }
  94        return result;
  95}
  96
  97static int fetch_refs_from_bundle(struct transport *transport,
  98                               int nr_heads, struct ref **to_fetch)
  99{
 100        struct bundle_transport_data *data = transport->data;
 101        return unbundle(&data->header, data->fd,
 102                        transport->progress ? BUNDLE_VERBOSE : 0);
 103}
 104
 105static int close_bundle(struct transport *transport)
 106{
 107        struct bundle_transport_data *data = transport->data;
 108        if (data->fd > 0)
 109                close(data->fd);
 110        free(data);
 111        return 0;
 112}
 113
 114struct git_transport_data {
 115        struct git_transport_options options;
 116        struct child_process *conn;
 117        int fd[2];
 118        unsigned got_remote_heads : 1;
 119        struct sha1_array extra_have;
 120        struct sha1_array shallow;
 121};
 122
 123static int set_git_option(struct git_transport_options *opts,
 124                          const char *name, const char *value)
 125{
 126        if (!strcmp(name, TRANS_OPT_UPLOADPACK)) {
 127                opts->uploadpack = value;
 128                return 0;
 129        } else if (!strcmp(name, TRANS_OPT_RECEIVEPACK)) {
 130                opts->receivepack = value;
 131                return 0;
 132        } else if (!strcmp(name, TRANS_OPT_THIN)) {
 133                opts->thin = !!value;
 134                return 0;
 135        } else if (!strcmp(name, TRANS_OPT_FOLLOWTAGS)) {
 136                opts->followtags = !!value;
 137                return 0;
 138        } else if (!strcmp(name, TRANS_OPT_KEEP)) {
 139                opts->keep = !!value;
 140                return 0;
 141        } else if (!strcmp(name, TRANS_OPT_UPDATE_SHALLOW)) {
 142                opts->update_shallow = !!value;
 143                return 0;
 144        } else if (!strcmp(name, TRANS_OPT_DEPTH)) {
 145                if (!value)
 146                        opts->depth = 0;
 147                else {
 148                        char *end;
 149                        opts->depth = strtol(value, &end, 0);
 150                        if (*end)
 151                                die(_("transport: invalid depth option '%s'"), value);
 152                }
 153                return 0;
 154        } else if (!strcmp(name, TRANS_OPT_DEEPEN_SINCE)) {
 155                opts->deepen_since = value;
 156                return 0;
 157        } else if (!strcmp(name, TRANS_OPT_DEEPEN_NOT)) {
 158                opts->deepen_not = (const struct string_list *)value;
 159                return 0;
 160        } else if (!strcmp(name, TRANS_OPT_DEEPEN_RELATIVE)) {
 161                opts->deepen_relative = !!value;
 162                return 0;
 163        }
 164        return 1;
 165}
 166
 167static int connect_setup(struct transport *transport, int for_push)
 168{
 169        struct git_transport_data *data = transport->data;
 170        int flags = transport->verbose > 0 ? CONNECT_VERBOSE : 0;
 171
 172        if (data->conn)
 173                return 0;
 174
 175        switch (transport->family) {
 176        case TRANSPORT_FAMILY_ALL: break;
 177        case TRANSPORT_FAMILY_IPV4: flags |= CONNECT_IPV4; break;
 178        case TRANSPORT_FAMILY_IPV6: flags |= CONNECT_IPV6; break;
 179        }
 180
 181        data->conn = git_connect(data->fd, transport->url,
 182                                 for_push ? data->options.receivepack :
 183                                 data->options.uploadpack,
 184                                 flags);
 185
 186        return 0;
 187}
 188
 189static struct ref *get_refs_via_connect(struct transport *transport, int for_push)
 190{
 191        struct git_transport_data *data = transport->data;
 192        struct ref *refs;
 193
 194        connect_setup(transport, for_push);
 195        get_remote_heads(data->fd[0], NULL, 0, &refs,
 196                         for_push ? REF_NORMAL : 0,
 197                         &data->extra_have,
 198                         &data->shallow);
 199        data->got_remote_heads = 1;
 200
 201        return refs;
 202}
 203
 204static int fetch_refs_via_pack(struct transport *transport,
 205                               int nr_heads, struct ref **to_fetch)
 206{
 207        int ret = 0;
 208        struct git_transport_data *data = transport->data;
 209        struct ref *refs;
 210        char *dest = xstrdup(transport->url);
 211        struct fetch_pack_args args;
 212        struct ref *refs_tmp = NULL;
 213
 214        memset(&args, 0, sizeof(args));
 215        args.uploadpack = data->options.uploadpack;
 216        args.keep_pack = data->options.keep;
 217        args.lock_pack = 1;
 218        args.use_thin_pack = data->options.thin;
 219        args.include_tag = data->options.followtags;
 220        args.verbose = (transport->verbose > 1);
 221        args.quiet = (transport->verbose < 0);
 222        args.no_progress = !transport->progress;
 223        args.depth = data->options.depth;
 224        args.deepen_since = data->options.deepen_since;
 225        args.deepen_not = data->options.deepen_not;
 226        args.deepen_relative = data->options.deepen_relative;
 227        args.check_self_contained_and_connected =
 228                data->options.check_self_contained_and_connected;
 229        args.cloning = transport->cloning;
 230        args.update_shallow = data->options.update_shallow;
 231
 232        if (!data->got_remote_heads) {
 233                connect_setup(transport, 0);
 234                get_remote_heads(data->fd[0], NULL, 0, &refs_tmp, 0,
 235                                 NULL, &data->shallow);
 236                data->got_remote_heads = 1;
 237        }
 238
 239        refs = fetch_pack(&args, data->fd, data->conn,
 240                          refs_tmp ? refs_tmp : transport->remote_refs,
 241                          dest, to_fetch, nr_heads, &data->shallow,
 242                          &transport->pack_lockfile);
 243        close(data->fd[0]);
 244        close(data->fd[1]);
 245        if (finish_connect(data->conn))
 246                ret = -1;
 247        data->conn = NULL;
 248        data->got_remote_heads = 0;
 249        data->options.self_contained_and_connected =
 250                args.self_contained_and_connected;
 251
 252        if (refs == NULL)
 253                ret = -1;
 254        if (report_unmatched_refs(to_fetch, nr_heads))
 255                ret = -1;
 256
 257        free_refs(refs_tmp);
 258        free_refs(refs);
 259        free(dest);
 260        return ret;
 261}
 262
 263static int push_had_errors(struct ref *ref)
 264{
 265        for (; ref; ref = ref->next) {
 266                switch (ref->status) {
 267                case REF_STATUS_NONE:
 268                case REF_STATUS_UPTODATE:
 269                case REF_STATUS_OK:
 270                        break;
 271                default:
 272                        return 1;
 273                }
 274        }
 275        return 0;
 276}
 277
 278int transport_refs_pushed(struct ref *ref)
 279{
 280        for (; ref; ref = ref->next) {
 281                switch(ref->status) {
 282                case REF_STATUS_NONE:
 283                case REF_STATUS_UPTODATE:
 284                        break;
 285                default:
 286                        return 1;
 287                }
 288        }
 289        return 0;
 290}
 291
 292void transport_update_tracking_ref(struct remote *remote, struct ref *ref, int verbose)
 293{
 294        struct refspec rs;
 295
 296        if (ref->status != REF_STATUS_OK && ref->status != REF_STATUS_UPTODATE)
 297                return;
 298
 299        rs.src = ref->name;
 300        rs.dst = NULL;
 301
 302        if (!remote_find_tracking(remote, &rs)) {
 303                if (verbose)
 304                        fprintf(stderr, "updating local tracking ref '%s'\n", rs.dst);
 305                if (ref->deletion) {
 306                        delete_ref(NULL, rs.dst, NULL, 0);
 307                } else
 308                        update_ref("update by push", rs.dst,
 309                                        ref->new_oid.hash, NULL, 0, 0);
 310                free(rs.dst);
 311        }
 312}
 313
 314static void print_ref_status(char flag, const char *summary,
 315                             struct ref *to, struct ref *from, const char *msg,
 316                             int porcelain, int summary_width)
 317{
 318        if (porcelain) {
 319                if (from)
 320                        fprintf(stdout, "%c\t%s:%s\t", flag, from->name, to->name);
 321                else
 322                        fprintf(stdout, "%c\t:%s\t", flag, to->name);
 323                if (msg)
 324                        fprintf(stdout, "%s (%s)\n", summary, msg);
 325                else
 326                        fprintf(stdout, "%s\n", summary);
 327        } else {
 328                fprintf(stderr, " %c %-*s ", flag, summary_width, summary);
 329                if (from)
 330                        fprintf(stderr, "%s -> %s", prettify_refname(from->name), prettify_refname(to->name));
 331                else
 332                        fputs(prettify_refname(to->name), stderr);
 333                if (msg) {
 334                        fputs(" (", stderr);
 335                        fputs(msg, stderr);
 336                        fputc(')', stderr);
 337                }
 338                fputc('\n', stderr);
 339        }
 340}
 341
 342static void print_ok_ref_status(struct ref *ref, int porcelain, int summary_width)
 343{
 344        if (ref->deletion)
 345                print_ref_status('-', "[deleted]", ref, NULL, NULL,
 346                                 porcelain, summary_width);
 347        else if (is_null_oid(&ref->old_oid))
 348                print_ref_status('*',
 349                        (starts_with(ref->name, "refs/tags/") ? "[new tag]" :
 350                        "[new branch]"),
 351                        ref, ref->peer_ref, NULL, porcelain, summary_width);
 352        else {
 353                struct strbuf quickref = STRBUF_INIT;
 354                char type;
 355                const char *msg;
 356
 357                strbuf_add_unique_abbrev(&quickref, ref->old_oid.hash,
 358                                         DEFAULT_ABBREV);
 359                if (ref->forced_update) {
 360                        strbuf_addstr(&quickref, "...");
 361                        type = '+';
 362                        msg = "forced update";
 363                } else {
 364                        strbuf_addstr(&quickref, "..");
 365                        type = ' ';
 366                        msg = NULL;
 367                }
 368                strbuf_add_unique_abbrev(&quickref, ref->new_oid.hash,
 369                                         DEFAULT_ABBREV);
 370
 371                print_ref_status(type, quickref.buf, ref, ref->peer_ref, msg,
 372                                 porcelain, summary_width);
 373                strbuf_release(&quickref);
 374        }
 375}
 376
 377static int print_one_push_status(struct ref *ref, const char *dest, int count,
 378                                 int porcelain, int summary_width)
 379{
 380        if (!count) {
 381                char *url = transport_anonymize_url(dest);
 382                fprintf(porcelain ? stdout : stderr, "To %s\n", url);
 383                free(url);
 384        }
 385
 386        switch(ref->status) {
 387        case REF_STATUS_NONE:
 388                print_ref_status('X', "[no match]", ref, NULL, NULL,
 389                                 porcelain, summary_width);
 390                break;
 391        case REF_STATUS_REJECT_NODELETE:
 392                print_ref_status('!', "[rejected]", ref, NULL,
 393                                 "remote does not support deleting refs",
 394                                 porcelain, summary_width);
 395                break;
 396        case REF_STATUS_UPTODATE:
 397                print_ref_status('=', "[up to date]", ref,
 398                                 ref->peer_ref, NULL, porcelain, summary_width);
 399                break;
 400        case REF_STATUS_REJECT_NONFASTFORWARD:
 401                print_ref_status('!', "[rejected]", ref, ref->peer_ref,
 402                                 "non-fast-forward", porcelain, summary_width);
 403                break;
 404        case REF_STATUS_REJECT_ALREADY_EXISTS:
 405                print_ref_status('!', "[rejected]", ref, ref->peer_ref,
 406                                 "already exists", porcelain, summary_width);
 407                break;
 408        case REF_STATUS_REJECT_FETCH_FIRST:
 409                print_ref_status('!', "[rejected]", ref, ref->peer_ref,
 410                                 "fetch first", porcelain, summary_width);
 411                break;
 412        case REF_STATUS_REJECT_NEEDS_FORCE:
 413                print_ref_status('!', "[rejected]", ref, ref->peer_ref,
 414                                 "needs force", porcelain, summary_width);
 415                break;
 416        case REF_STATUS_REJECT_STALE:
 417                print_ref_status('!', "[rejected]", ref, ref->peer_ref,
 418                                 "stale info", porcelain, summary_width);
 419                break;
 420        case REF_STATUS_REJECT_SHALLOW:
 421                print_ref_status('!', "[rejected]", ref, ref->peer_ref,
 422                                 "new shallow roots not allowed",
 423                                 porcelain, summary_width);
 424                break;
 425        case REF_STATUS_REMOTE_REJECT:
 426                print_ref_status('!', "[remote rejected]", ref,
 427                                 ref->deletion ? NULL : ref->peer_ref,
 428                                 ref->remote_status, porcelain, summary_width);
 429                break;
 430        case REF_STATUS_EXPECTING_REPORT:
 431                print_ref_status('!', "[remote failure]", ref,
 432                                 ref->deletion ? NULL : ref->peer_ref,
 433                                 "remote failed to report status",
 434                                 porcelain, summary_width);
 435                break;
 436        case REF_STATUS_ATOMIC_PUSH_FAILED:
 437                print_ref_status('!', "[rejected]", ref, ref->peer_ref,
 438                                 "atomic push failed", porcelain, summary_width);
 439                break;
 440        case REF_STATUS_OK:
 441                print_ok_ref_status(ref, porcelain, summary_width);
 442                break;
 443        }
 444
 445        return 1;
 446}
 447
 448static int measure_abbrev(const struct object_id *oid, int sofar)
 449{
 450        char hex[GIT_SHA1_HEXSZ + 1];
 451        int w = find_unique_abbrev_r(hex, oid->hash, DEFAULT_ABBREV);
 452
 453        return (w < sofar) ? sofar : w;
 454}
 455
 456int transport_summary_width(const struct ref *refs)
 457{
 458        int maxw = -1;
 459
 460        for (; refs; refs = refs->next) {
 461                maxw = measure_abbrev(&refs->old_oid, maxw);
 462                maxw = measure_abbrev(&refs->new_oid, maxw);
 463        }
 464        if (maxw < 0)
 465                maxw = FALLBACK_DEFAULT_ABBREV;
 466        return (2 * maxw + 3);
 467}
 468
 469void transport_print_push_status(const char *dest, struct ref *refs,
 470                                  int verbose, int porcelain, unsigned int *reject_reasons)
 471{
 472        struct ref *ref;
 473        int n = 0;
 474        struct object_id head_oid;
 475        char *head;
 476        int summary_width = transport_summary_width(refs);
 477
 478        head = resolve_refdup("HEAD", RESOLVE_REF_READING, head_oid.hash, NULL);
 479
 480        if (verbose) {
 481                for (ref = refs; ref; ref = ref->next)
 482                        if (ref->status == REF_STATUS_UPTODATE)
 483                                n += print_one_push_status(ref, dest, n,
 484                                                           porcelain, summary_width);
 485        }
 486
 487        for (ref = refs; ref; ref = ref->next)
 488                if (ref->status == REF_STATUS_OK)
 489                        n += print_one_push_status(ref, dest, n,
 490                                                   porcelain, summary_width);
 491
 492        *reject_reasons = 0;
 493        for (ref = refs; ref; ref = ref->next) {
 494                if (ref->status != REF_STATUS_NONE &&
 495                    ref->status != REF_STATUS_UPTODATE &&
 496                    ref->status != REF_STATUS_OK)
 497                        n += print_one_push_status(ref, dest, n,
 498                                                   porcelain, summary_width);
 499                if (ref->status == REF_STATUS_REJECT_NONFASTFORWARD) {
 500                        if (head != NULL && !strcmp(head, ref->name))
 501                                *reject_reasons |= REJECT_NON_FF_HEAD;
 502                        else
 503                                *reject_reasons |= REJECT_NON_FF_OTHER;
 504                } else if (ref->status == REF_STATUS_REJECT_ALREADY_EXISTS) {
 505                        *reject_reasons |= REJECT_ALREADY_EXISTS;
 506                } else if (ref->status == REF_STATUS_REJECT_FETCH_FIRST) {
 507                        *reject_reasons |= REJECT_FETCH_FIRST;
 508                } else if (ref->status == REF_STATUS_REJECT_NEEDS_FORCE) {
 509                        *reject_reasons |= REJECT_NEEDS_FORCE;
 510                }
 511        }
 512        free(head);
 513}
 514
 515void transport_verify_remote_names(int nr_heads, const char **heads)
 516{
 517        int i;
 518
 519        for (i = 0; i < nr_heads; i++) {
 520                const char *local = heads[i];
 521                const char *remote = strrchr(heads[i], ':');
 522
 523                if (*local == '+')
 524                        local++;
 525
 526                /* A matching refspec is okay.  */
 527                if (remote == local && remote[1] == '\0')
 528                        continue;
 529
 530                remote = remote ? (remote + 1) : local;
 531                if (check_refname_format(remote,
 532                                REFNAME_ALLOW_ONELEVEL|REFNAME_REFSPEC_PATTERN))
 533                        die("remote part of refspec is not a valid name in %s",
 534                                heads[i]);
 535        }
 536}
 537
 538static int git_transport_push(struct transport *transport, struct ref *remote_refs, int flags)
 539{
 540        struct git_transport_data *data = transport->data;
 541        struct send_pack_args args;
 542        int ret;
 543
 544        if (!data->got_remote_heads) {
 545                struct ref *tmp_refs;
 546                connect_setup(transport, 1);
 547
 548                get_remote_heads(data->fd[0], NULL, 0, &tmp_refs, REF_NORMAL,
 549                                 NULL, &data->shallow);
 550                data->got_remote_heads = 1;
 551        }
 552
 553        memset(&args, 0, sizeof(args));
 554        args.send_mirror = !!(flags & TRANSPORT_PUSH_MIRROR);
 555        args.force_update = !!(flags & TRANSPORT_PUSH_FORCE);
 556        args.use_thin_pack = data->options.thin;
 557        args.verbose = (transport->verbose > 0);
 558        args.quiet = (transport->verbose < 0);
 559        args.progress = transport->progress;
 560        args.dry_run = !!(flags & TRANSPORT_PUSH_DRY_RUN);
 561        args.porcelain = !!(flags & TRANSPORT_PUSH_PORCELAIN);
 562        args.atomic = !!(flags & TRANSPORT_PUSH_ATOMIC);
 563        args.push_options = transport->push_options;
 564        args.url = transport->url;
 565
 566        if (flags & TRANSPORT_PUSH_CERT_ALWAYS)
 567                args.push_cert = SEND_PACK_PUSH_CERT_ALWAYS;
 568        else if (flags & TRANSPORT_PUSH_CERT_IF_ASKED)
 569                args.push_cert = SEND_PACK_PUSH_CERT_IF_ASKED;
 570        else
 571                args.push_cert = SEND_PACK_PUSH_CERT_NEVER;
 572
 573        ret = send_pack(&args, data->fd, data->conn, remote_refs,
 574                        &data->extra_have);
 575
 576        close(data->fd[1]);
 577        close(data->fd[0]);
 578        ret |= finish_connect(data->conn);
 579        data->conn = NULL;
 580        data->got_remote_heads = 0;
 581
 582        return ret;
 583}
 584
 585static int connect_git(struct transport *transport, const char *name,
 586                       const char *executable, int fd[2])
 587{
 588        struct git_transport_data *data = transport->data;
 589        data->conn = git_connect(data->fd, transport->url,
 590                                 executable, 0);
 591        fd[0] = data->fd[0];
 592        fd[1] = data->fd[1];
 593        return 0;
 594}
 595
 596static int disconnect_git(struct transport *transport)
 597{
 598        struct git_transport_data *data = transport->data;
 599        if (data->conn) {
 600                if (data->got_remote_heads)
 601                        packet_flush(data->fd[1]);
 602                close(data->fd[0]);
 603                close(data->fd[1]);
 604                finish_connect(data->conn);
 605        }
 606
 607        free(data);
 608        return 0;
 609}
 610
 611void transport_take_over(struct transport *transport,
 612                         struct child_process *child)
 613{
 614        struct git_transport_data *data;
 615
 616        if (!transport->smart_options)
 617                die("BUG: taking over transport requires non-NULL "
 618                    "smart_options field.");
 619
 620        data = xcalloc(1, sizeof(*data));
 621        data->options = *transport->smart_options;
 622        data->conn = child;
 623        data->fd[0] = data->conn->out;
 624        data->fd[1] = data->conn->in;
 625        data->got_remote_heads = 0;
 626        transport->data = data;
 627
 628        transport->set_option = NULL;
 629        transport->get_refs_list = get_refs_via_connect;
 630        transport->fetch = fetch_refs_via_pack;
 631        transport->push = NULL;
 632        transport->push_refs = git_transport_push;
 633        transport->disconnect = disconnect_git;
 634        transport->smart_options = &(data->options);
 635
 636        transport->cannot_reuse = 1;
 637}
 638
 639static int is_file(const char *url)
 640{
 641        struct stat buf;
 642        if (stat(url, &buf))
 643                return 0;
 644        return S_ISREG(buf.st_mode);
 645}
 646
 647static int external_specification_len(const char *url)
 648{
 649        return strchr(url, ':') - url;
 650}
 651
 652static const struct string_list *protocol_whitelist(void)
 653{
 654        static int enabled = -1;
 655        static struct string_list allowed = STRING_LIST_INIT_DUP;
 656
 657        if (enabled < 0) {
 658                const char *v = getenv("GIT_ALLOW_PROTOCOL");
 659                if (v) {
 660                        string_list_split(&allowed, v, ':', -1);
 661                        string_list_sort(&allowed);
 662                        enabled = 1;
 663                } else {
 664                        enabled = 0;
 665                }
 666        }
 667
 668        return enabled ? &allowed : NULL;
 669}
 670
 671enum protocol_allow_config {
 672        PROTOCOL_ALLOW_NEVER = 0,
 673        PROTOCOL_ALLOW_USER_ONLY,
 674        PROTOCOL_ALLOW_ALWAYS
 675};
 676
 677static enum protocol_allow_config parse_protocol_config(const char *key,
 678                                                        const char *value)
 679{
 680        if (!strcasecmp(value, "always"))
 681                return PROTOCOL_ALLOW_ALWAYS;
 682        else if (!strcasecmp(value, "never"))
 683                return PROTOCOL_ALLOW_NEVER;
 684        else if (!strcasecmp(value, "user"))
 685                return PROTOCOL_ALLOW_USER_ONLY;
 686
 687        die("unknown value for config '%s': %s", key, value);
 688}
 689
 690static enum protocol_allow_config get_protocol_config(const char *type)
 691{
 692        char *key = xstrfmt("protocol.%s.allow", type);
 693        char *value;
 694
 695        /* first check the per-protocol config */
 696        if (!git_config_get_string(key, &value)) {
 697                enum protocol_allow_config ret =
 698                        parse_protocol_config(key, value);
 699                free(key);
 700                free(value);
 701                return ret;
 702        }
 703        free(key);
 704
 705        /* if defined, fallback to user-defined default for unknown protocols */
 706        if (!git_config_get_string("protocol.allow", &value)) {
 707                enum protocol_allow_config ret =
 708                        parse_protocol_config("protocol.allow", value);
 709                free(value);
 710                return ret;
 711        }
 712
 713        /* fallback to built-in defaults */
 714        /* known safe */
 715        if (!strcmp(type, "http") ||
 716            !strcmp(type, "https") ||
 717            !strcmp(type, "git") ||
 718            !strcmp(type, "ssh") ||
 719            !strcmp(type, "file"))
 720                return PROTOCOL_ALLOW_ALWAYS;
 721
 722        /* known scary; err on the side of caution */
 723        if (!strcmp(type, "ext"))
 724                return PROTOCOL_ALLOW_NEVER;
 725
 726        /* unknown; by default let them be used only directly by the user */
 727        return PROTOCOL_ALLOW_USER_ONLY;
 728}
 729
 730int is_transport_allowed(const char *type, int from_user)
 731{
 732        const struct string_list *whitelist = protocol_whitelist();
 733        if (whitelist)
 734                return string_list_has_string(whitelist, type);
 735
 736        switch (get_protocol_config(type)) {
 737        case PROTOCOL_ALLOW_ALWAYS:
 738                return 1;
 739        case PROTOCOL_ALLOW_NEVER:
 740                return 0;
 741        case PROTOCOL_ALLOW_USER_ONLY:
 742                if (from_user < 0)
 743                        from_user = git_env_bool("GIT_PROTOCOL_FROM_USER", 1);
 744                return from_user;
 745        }
 746
 747        die("BUG: invalid protocol_allow_config type");
 748}
 749
 750void transport_check_allowed(const char *type)
 751{
 752        if (!is_transport_allowed(type, -1))
 753                die("transport '%s' not allowed", type);
 754}
 755
 756struct transport *transport_get(struct remote *remote, const char *url)
 757{
 758        const char *helper;
 759        struct transport *ret = xcalloc(1, sizeof(*ret));
 760
 761        ret->progress = isatty(2);
 762
 763        if (!remote)
 764                die("No remote provided to transport_get()");
 765
 766        ret->got_remote_refs = 0;
 767        ret->remote = remote;
 768        helper = remote->foreign_vcs;
 769
 770        if (!url && remote->url)
 771                url = remote->url[0];
 772        ret->url = url;
 773
 774        /* maybe it is a foreign URL? */
 775        if (url) {
 776                const char *p = url;
 777
 778                while (is_urlschemechar(p == url, *p))
 779                        p++;
 780                if (starts_with(p, "::"))
 781                        helper = xstrndup(url, p - url);
 782        }
 783
 784        if (helper) {
 785                transport_helper_init(ret, helper);
 786        } else if (starts_with(url, "rsync:")) {
 787                die("git-over-rsync is no longer supported");
 788        } else if (url_is_local_not_ssh(url) && is_file(url) && is_bundle(url, 1)) {
 789                struct bundle_transport_data *data = xcalloc(1, sizeof(*data));
 790                transport_check_allowed("file");
 791                ret->data = data;
 792                ret->get_refs_list = get_refs_from_bundle;
 793                ret->fetch = fetch_refs_from_bundle;
 794                ret->disconnect = close_bundle;
 795                ret->smart_options = NULL;
 796        } else if (!is_url(url)
 797                || starts_with(url, "file://")
 798                || starts_with(url, "git://")
 799                || starts_with(url, "ssh://")
 800                || starts_with(url, "git+ssh://") /* deprecated - do not use */
 801                || starts_with(url, "ssh+git://") /* deprecated - do not use */
 802                ) {
 803                /*
 804                 * These are builtin smart transports; "allowed" transports
 805                 * will be checked individually in git_connect.
 806                 */
 807                struct git_transport_data *data = xcalloc(1, sizeof(*data));
 808                ret->data = data;
 809                ret->set_option = NULL;
 810                ret->get_refs_list = get_refs_via_connect;
 811                ret->fetch = fetch_refs_via_pack;
 812                ret->push_refs = git_transport_push;
 813                ret->connect = connect_git;
 814                ret->disconnect = disconnect_git;
 815                ret->smart_options = &(data->options);
 816
 817                data->conn = NULL;
 818                data->got_remote_heads = 0;
 819        } else {
 820                /* Unknown protocol in URL. Pass to external handler. */
 821                int len = external_specification_len(url);
 822                char *handler = xmemdupz(url, len);
 823                transport_helper_init(ret, handler);
 824        }
 825
 826        if (ret->smart_options) {
 827                ret->smart_options->thin = 1;
 828                ret->smart_options->uploadpack = "git-upload-pack";
 829                if (remote->uploadpack)
 830                        ret->smart_options->uploadpack = remote->uploadpack;
 831                ret->smart_options->receivepack = "git-receive-pack";
 832                if (remote->receivepack)
 833                        ret->smart_options->receivepack = remote->receivepack;
 834        }
 835
 836        return ret;
 837}
 838
 839int transport_set_option(struct transport *transport,
 840                         const char *name, const char *value)
 841{
 842        int git_reports = 1, protocol_reports = 1;
 843
 844        if (transport->smart_options)
 845                git_reports = set_git_option(transport->smart_options,
 846                                             name, value);
 847
 848        if (transport->set_option)
 849                protocol_reports = transport->set_option(transport, name,
 850                                                        value);
 851
 852        /* If either report is 0, report 0 (success). */
 853        if (!git_reports || !protocol_reports)
 854                return 0;
 855        /* If either reports -1 (invalid value), report -1. */
 856        if ((git_reports == -1) || (protocol_reports == -1))
 857                return -1;
 858        /* Otherwise if both report unknown, report unknown. */
 859        return 1;
 860}
 861
 862void transport_set_verbosity(struct transport *transport, int verbosity,
 863        int force_progress)
 864{
 865        if (verbosity >= 1)
 866                transport->verbose = verbosity <= 3 ? verbosity : 3;
 867        if (verbosity < 0)
 868                transport->verbose = -1;
 869
 870        /**
 871         * Rules used to determine whether to report progress (processing aborts
 872         * when a rule is satisfied):
 873         *
 874         *   . Report progress, if force_progress is 1 (ie. --progress).
 875         *   . Don't report progress, if force_progress is 0 (ie. --no-progress).
 876         *   . Don't report progress, if verbosity < 0 (ie. -q/--quiet ).
 877         *   . Report progress if isatty(2) is 1.
 878         **/
 879        if (force_progress >= 0)
 880                transport->progress = !!force_progress;
 881        else
 882                transport->progress = verbosity >= 0 && isatty(2);
 883}
 884
 885static void die_with_unpushed_submodules(struct string_list *needs_pushing)
 886{
 887        int i;
 888
 889        fprintf(stderr, _("The following submodule paths contain changes that can\n"
 890                        "not be found on any remote:\n"));
 891        for (i = 0; i < needs_pushing->nr; i++)
 892                fprintf(stderr, "  %s\n", needs_pushing->items[i].string);
 893        fprintf(stderr, _("\nPlease try\n\n"
 894                          "     git push --recurse-submodules=on-demand\n\n"
 895                          "or cd to the path and use\n\n"
 896                          "     git push\n\n"
 897                          "to push them to a remote.\n\n"));
 898
 899        string_list_clear(needs_pushing, 0);
 900
 901        die(_("Aborting."));
 902}
 903
 904static int run_pre_push_hook(struct transport *transport,
 905                             struct ref *remote_refs)
 906{
 907        int ret = 0, x;
 908        struct ref *r;
 909        struct child_process proc = CHILD_PROCESS_INIT;
 910        struct strbuf buf;
 911        const char *argv[4];
 912
 913        if (!(argv[0] = find_hook("pre-push")))
 914                return 0;
 915
 916        argv[1] = transport->remote->name;
 917        argv[2] = transport->url;
 918        argv[3] = NULL;
 919
 920        proc.argv = argv;
 921        proc.in = -1;
 922
 923        if (start_command(&proc)) {
 924                finish_command(&proc);
 925                return -1;
 926        }
 927
 928        sigchain_push(SIGPIPE, SIG_IGN);
 929
 930        strbuf_init(&buf, 256);
 931
 932        for (r = remote_refs; r; r = r->next) {
 933                if (!r->peer_ref) continue;
 934                if (r->status == REF_STATUS_REJECT_NONFASTFORWARD) continue;
 935                if (r->status == REF_STATUS_REJECT_STALE) continue;
 936                if (r->status == REF_STATUS_UPTODATE) continue;
 937
 938                strbuf_reset(&buf);
 939                strbuf_addf( &buf, "%s %s %s %s\n",
 940                         r->peer_ref->name, oid_to_hex(&r->new_oid),
 941                         r->name, oid_to_hex(&r->old_oid));
 942
 943                if (write_in_full(proc.in, buf.buf, buf.len) < 0) {
 944                        /* We do not mind if a hook does not read all refs. */
 945                        if (errno != EPIPE)
 946                                ret = -1;
 947                        break;
 948                }
 949        }
 950
 951        strbuf_release(&buf);
 952
 953        x = close(proc.in);
 954        if (!ret)
 955                ret = x;
 956
 957        sigchain_pop(SIGPIPE);
 958
 959        x = finish_command(&proc);
 960        if (!ret)
 961                ret = x;
 962
 963        return ret;
 964}
 965
 966int transport_push(struct transport *transport,
 967                   int refspec_nr, const char **refspec, int flags,
 968                   unsigned int *reject_reasons)
 969{
 970        *reject_reasons = 0;
 971        transport_verify_remote_names(refspec_nr, refspec);
 972
 973        if (transport->push) {
 974                /* Maybe FIXME. But no important transport uses this case. */
 975                if (flags & TRANSPORT_PUSH_SET_UPSTREAM)
 976                        die("This transport does not support using --set-upstream");
 977
 978                return transport->push(transport, refspec_nr, refspec, flags);
 979        } else if (transport->push_refs) {
 980                struct ref *remote_refs;
 981                struct ref *local_refs = get_local_heads();
 982                int match_flags = MATCH_REFS_NONE;
 983                int verbose = (transport->verbose > 0);
 984                int quiet = (transport->verbose < 0);
 985                int porcelain = flags & TRANSPORT_PUSH_PORCELAIN;
 986                int pretend = flags & TRANSPORT_PUSH_DRY_RUN;
 987                int push_ret, ret, err;
 988
 989                if (check_push_refs(local_refs, refspec_nr, refspec) < 0)
 990                        return -1;
 991
 992                remote_refs = transport->get_refs_list(transport, 1);
 993
 994                if (flags & TRANSPORT_PUSH_ALL)
 995                        match_flags |= MATCH_REFS_ALL;
 996                if (flags & TRANSPORT_PUSH_MIRROR)
 997                        match_flags |= MATCH_REFS_MIRROR;
 998                if (flags & TRANSPORT_PUSH_PRUNE)
 999                        match_flags |= MATCH_REFS_PRUNE;
1000                if (flags & TRANSPORT_PUSH_FOLLOW_TAGS)
1001                        match_flags |= MATCH_REFS_FOLLOW_TAGS;
1002
1003                if (match_push_refs(local_refs, &remote_refs,
1004                                    refspec_nr, refspec, match_flags)) {
1005                        return -1;
1006                }
1007
1008                if (transport->smart_options &&
1009                    transport->smart_options->cas &&
1010                    !is_empty_cas(transport->smart_options->cas))
1011                        apply_push_cas(transport->smart_options->cas,
1012                                       transport->remote, remote_refs);
1013
1014                set_ref_status_for_push(remote_refs,
1015                        flags & TRANSPORT_PUSH_MIRROR,
1016                        flags & TRANSPORT_PUSH_FORCE);
1017
1018                if (!(flags & TRANSPORT_PUSH_NO_HOOK))
1019                        if (run_pre_push_hook(transport, remote_refs))
1020                                return -1;
1021
1022                if ((flags & (TRANSPORT_RECURSE_SUBMODULES_ON_DEMAND |
1023                              TRANSPORT_RECURSE_SUBMODULES_ONLY)) &&
1024                    !is_bare_repository()) {
1025                        struct ref *ref = remote_refs;
1026                        struct sha1_array commits = SHA1_ARRAY_INIT;
1027
1028                        for (; ref; ref = ref->next)
1029                                if (!is_null_oid(&ref->new_oid))
1030                                        sha1_array_append(&commits, ref->new_oid.hash);
1031
1032                        if (!push_unpushed_submodules(&commits,
1033                                                      transport->remote->name,
1034                                                      pretend)) {
1035                                sha1_array_clear(&commits);
1036                                die("Failed to push all needed submodules!");
1037                        }
1038                        sha1_array_clear(&commits);
1039                }
1040
1041                if (((flags & TRANSPORT_RECURSE_SUBMODULES_CHECK) ||
1042                     ((flags & (TRANSPORT_RECURSE_SUBMODULES_ON_DEMAND |
1043                                TRANSPORT_RECURSE_SUBMODULES_ONLY)) &&
1044                      !pretend)) && !is_bare_repository()) {
1045                        struct ref *ref = remote_refs;
1046                        struct string_list needs_pushing = STRING_LIST_INIT_DUP;
1047                        struct sha1_array commits = SHA1_ARRAY_INIT;
1048
1049                        for (; ref; ref = ref->next)
1050                                if (!is_null_oid(&ref->new_oid))
1051                                        sha1_array_append(&commits, ref->new_oid.hash);
1052
1053                        if (find_unpushed_submodules(&commits, transport->remote->name,
1054                                                &needs_pushing)) {
1055                                sha1_array_clear(&commits);
1056                                die_with_unpushed_submodules(&needs_pushing);
1057                        }
1058                        string_list_clear(&needs_pushing, 0);
1059                        sha1_array_clear(&commits);
1060                }
1061
1062                if (!(flags & TRANSPORT_RECURSE_SUBMODULES_ONLY))
1063                        push_ret = transport->push_refs(transport, remote_refs, flags);
1064                else
1065                        push_ret = 0;
1066                err = push_had_errors(remote_refs);
1067                ret = push_ret | err;
1068
1069                if (!quiet || err)
1070                        transport_print_push_status(transport->url, remote_refs,
1071                                        verbose | porcelain, porcelain,
1072                                        reject_reasons);
1073
1074                if (flags & TRANSPORT_PUSH_SET_UPSTREAM)
1075                        set_upstreams(transport, remote_refs, pretend);
1076
1077                if (!(flags & (TRANSPORT_PUSH_DRY_RUN |
1078                               TRANSPORT_RECURSE_SUBMODULES_ONLY))) {
1079                        struct ref *ref;
1080                        for (ref = remote_refs; ref; ref = ref->next)
1081                                transport_update_tracking_ref(transport->remote, ref, verbose);
1082                }
1083
1084                if (porcelain && !push_ret)
1085                        puts("Done");
1086                else if (!quiet && !ret && !transport_refs_pushed(remote_refs))
1087                        fprintf(stderr, "Everything up-to-date\n");
1088
1089                return ret;
1090        }
1091        return 1;
1092}
1093
1094const struct ref *transport_get_remote_refs(struct transport *transport)
1095{
1096        if (!transport->got_remote_refs) {
1097                transport->remote_refs = transport->get_refs_list(transport, 0);
1098                transport->got_remote_refs = 1;
1099        }
1100
1101        return transport->remote_refs;
1102}
1103
1104int transport_fetch_refs(struct transport *transport, struct ref *refs)
1105{
1106        int rc;
1107        int nr_heads = 0, nr_alloc = 0, nr_refs = 0;
1108        struct ref **heads = NULL;
1109        struct ref *rm;
1110
1111        for (rm = refs; rm; rm = rm->next) {
1112                nr_refs++;
1113                if (rm->peer_ref &&
1114                    !is_null_oid(&rm->old_oid) &&
1115                    !oidcmp(&rm->peer_ref->old_oid, &rm->old_oid))
1116                        continue;
1117                ALLOC_GROW(heads, nr_heads + 1, nr_alloc);
1118                heads[nr_heads++] = rm;
1119        }
1120
1121        if (!nr_heads) {
1122                /*
1123                 * When deepening of a shallow repository is requested,
1124                 * then local and remote refs are likely to still be equal.
1125                 * Just feed them all to the fetch method in that case.
1126                 * This condition shouldn't be met in a non-deepening fetch
1127                 * (see builtin/fetch.c:quickfetch()).
1128                 */
1129                ALLOC_ARRAY(heads, nr_refs);
1130                for (rm = refs; rm; rm = rm->next)
1131                        heads[nr_heads++] = rm;
1132        }
1133
1134        rc = transport->fetch(transport, nr_heads, heads);
1135
1136        free(heads);
1137        return rc;
1138}
1139
1140void transport_unlock_pack(struct transport *transport)
1141{
1142        if (transport->pack_lockfile) {
1143                unlink_or_warn(transport->pack_lockfile);
1144                free(transport->pack_lockfile);
1145                transport->pack_lockfile = NULL;
1146        }
1147}
1148
1149int transport_connect(struct transport *transport, const char *name,
1150                      const char *exec, int fd[2])
1151{
1152        if (transport->connect)
1153                return transport->connect(transport, name, exec, fd);
1154        else
1155                die("Operation not supported by protocol");
1156}
1157
1158int transport_disconnect(struct transport *transport)
1159{
1160        int ret = 0;
1161        if (transport->disconnect)
1162                ret = transport->disconnect(transport);
1163        free(transport);
1164        return ret;
1165}
1166
1167/*
1168 * Strip username (and password) from a URL and return
1169 * it in a newly allocated string.
1170 */
1171char *transport_anonymize_url(const char *url)
1172{
1173        char *scheme_prefix, *anon_part;
1174        size_t anon_len, prefix_len = 0;
1175
1176        anon_part = strchr(url, '@');
1177        if (url_is_local_not_ssh(url) || !anon_part)
1178                goto literal_copy;
1179
1180        anon_len = strlen(++anon_part);
1181        scheme_prefix = strstr(url, "://");
1182        if (!scheme_prefix) {
1183                if (!strchr(anon_part, ':'))
1184                        /* cannot be "me@there:/path/name" */
1185                        goto literal_copy;
1186        } else {
1187                const char *cp;
1188                /* make sure scheme is reasonable */
1189                for (cp = url; cp < scheme_prefix; cp++) {
1190                        switch (*cp) {
1191                                /* RFC 1738 2.1 */
1192                        case '+': case '.': case '-':
1193                                break; /* ok */
1194                        default:
1195                                if (isalnum(*cp))
1196                                        break;
1197                                /* it isn't */
1198                                goto literal_copy;
1199                        }
1200                }
1201                /* @ past the first slash does not count */
1202                cp = strchr(scheme_prefix + 3, '/');
1203                if (cp && cp < anon_part)
1204                        goto literal_copy;
1205                prefix_len = scheme_prefix - url + 3;
1206        }
1207        return xstrfmt("%.*s%.*s", (int)prefix_len, url,
1208                       (int)anon_len, anon_part);
1209literal_copy:
1210        return xstrdup(url);
1211}
1212
1213static void read_alternate_refs(const char *path,
1214                                alternate_ref_fn *cb,
1215                                void *data)
1216{
1217        struct child_process cmd = CHILD_PROCESS_INIT;
1218        struct strbuf line = STRBUF_INIT;
1219        FILE *fh;
1220
1221        cmd.git_cmd = 1;
1222        argv_array_pushf(&cmd.args, "--git-dir=%s", path);
1223        argv_array_push(&cmd.args, "for-each-ref");
1224        argv_array_push(&cmd.args, "--format=%(objectname) %(refname)");
1225        cmd.env = local_repo_env;
1226        cmd.out = -1;
1227
1228        if (start_command(&cmd))
1229                return;
1230
1231        fh = xfdopen(cmd.out, "r");
1232        while (strbuf_getline_lf(&line, fh) != EOF) {
1233                struct object_id oid;
1234
1235                if (get_oid_hex(line.buf, &oid) ||
1236                    line.buf[GIT_SHA1_HEXSZ] != ' ') {
1237                        warning("invalid line while parsing alternate refs: %s",
1238                                line.buf);
1239                        break;
1240                }
1241
1242                cb(line.buf + GIT_SHA1_HEXSZ + 1, &oid, data);
1243        }
1244
1245        fclose(fh);
1246        finish_command(&cmd);
1247}
1248
1249struct alternate_refs_data {
1250        alternate_ref_fn *fn;
1251        void *data;
1252};
1253
1254static int refs_from_alternate_cb(struct alternate_object_database *e,
1255                                  void *data)
1256{
1257        struct strbuf path = STRBUF_INIT;
1258        size_t base_len;
1259        struct alternate_refs_data *cb = data;
1260
1261        if (!strbuf_realpath(&path, e->path, 0))
1262                goto out;
1263        if (!strbuf_strip_suffix(&path, "/objects"))
1264                goto out;
1265        base_len = path.len;
1266
1267        /* Is this a git repository with refs? */
1268        strbuf_addstr(&path, "/refs");
1269        if (!is_directory(path.buf))
1270                goto out;
1271        strbuf_setlen(&path, base_len);
1272
1273        read_alternate_refs(path.buf, cb->fn, cb->data);
1274
1275out:
1276        strbuf_release(&path);
1277        return 0;
1278}
1279
1280void for_each_alternate_ref(alternate_ref_fn fn, void *data)
1281{
1282        struct alternate_refs_data cb;
1283        cb.fn = fn;
1284        cb.data = data;
1285        foreach_alt_odb(refs_from_alternate_cb, &cb);
1286}