gitweb: protect blob and diff output lines from controls.
[git] / http.c
1 #include "http.h"
2
3 int data_received;
4 int active_requests = 0;
5
6 #ifdef USE_CURL_MULTI
7 int max_requests = -1;
8 CURLM *curlm;
9 #endif
10 #ifndef NO_CURL_EASY_DUPHANDLE
11 CURL *curl_default;
12 #endif
13 char curl_errorstr[CURL_ERROR_SIZE];
14
15 int curl_ssl_verify = -1;
16 char *ssl_cert = NULL;
17 #if LIBCURL_VERSION_NUM >= 0x070902
18 char *ssl_key = NULL;
19 #endif
20 #if LIBCURL_VERSION_NUM >= 0x070908
21 char *ssl_capath = NULL;
22 #endif
23 char *ssl_cainfo = NULL;
24 long curl_low_speed_limit = -1;
25 long curl_low_speed_time = -1;
26 int curl_ftp_no_epsv = 0;
27
28 struct curl_slist *pragma_header;
29
30 struct active_request_slot *active_queue_head = NULL;
31
32 size_t fread_buffer(void *ptr, size_t eltsize, size_t nmemb,
33                            struct buffer *buffer)
34 {
35         size_t size = eltsize * nmemb;
36         if (size > buffer->size - buffer->posn)
37                 size = buffer->size - buffer->posn;
38         memcpy(ptr, (char *) buffer->buffer + buffer->posn, size);
39         buffer->posn += size;
40         return size;
41 }
42
43 size_t fwrite_buffer(const void *ptr, size_t eltsize,
44                             size_t nmemb, struct buffer *buffer)
45 {
46         size_t size = eltsize * nmemb;
47         if (size > buffer->size - buffer->posn) {
48                 buffer->size = buffer->size * 3 / 2;
49                 if (buffer->size < buffer->posn + size)
50                         buffer->size = buffer->posn + size;
51                 buffer->buffer = xrealloc(buffer->buffer, buffer->size);
52         }
53         memcpy((char *) buffer->buffer + buffer->posn, ptr, size);
54         buffer->posn += size;
55         data_received++;
56         return size;
57 }
58
59 size_t fwrite_null(const void *ptr, size_t eltsize,
60                           size_t nmemb, struct buffer *buffer)
61 {
62         data_received++;
63         return eltsize * nmemb;
64 }
65
66 static void finish_active_slot(struct active_request_slot *slot);
67
68 #ifdef USE_CURL_MULTI
69 static void process_curl_messages(void)
70 {
71         int num_messages;
72         struct active_request_slot *slot;
73         CURLMsg *curl_message = curl_multi_info_read(curlm, &num_messages);
74
75         while (curl_message != NULL) {
76                 if (curl_message->msg == CURLMSG_DONE) {
77                         int curl_result = curl_message->data.result;
78                         slot = active_queue_head;
79                         while (slot != NULL &&
80                                slot->curl != curl_message->easy_handle)
81                                 slot = slot->next;
82                         if (slot != NULL) {
83                                 curl_multi_remove_handle(curlm, slot->curl);
84                                 slot->curl_result = curl_result;
85                                 finish_active_slot(slot);
86                         } else {
87                                 fprintf(stderr, "Received DONE message for unknown request!\n");
88                         }
89                 } else {
90                         fprintf(stderr, "Unknown CURL message received: %d\n",
91                                 (int)curl_message->msg);
92                 }
93                 curl_message = curl_multi_info_read(curlm, &num_messages);
94         }
95 }
96 #endif
97
98 static int http_options(const char *var, const char *value)
99 {
100         if (!strcmp("http.sslverify", var)) {
101                 if (curl_ssl_verify == -1) {
102                         curl_ssl_verify = git_config_bool(var, value);
103                 }
104                 return 0;
105         }
106
107         if (!strcmp("http.sslcert", var)) {
108                 if (ssl_cert == NULL) {
109                         ssl_cert = xmalloc(strlen(value)+1);
110                         strcpy(ssl_cert, value);
111                 }
112                 return 0;
113         }
114 #if LIBCURL_VERSION_NUM >= 0x070902
115         if (!strcmp("http.sslkey", var)) {
116                 if (ssl_key == NULL) {
117                         ssl_key = xmalloc(strlen(value)+1);
118                         strcpy(ssl_key, value);
119                 }
120                 return 0;
121         }
122 #endif
123 #if LIBCURL_VERSION_NUM >= 0x070908
124         if (!strcmp("http.sslcapath", var)) {
125                 if (ssl_capath == NULL) {
126                         ssl_capath = xmalloc(strlen(value)+1);
127                         strcpy(ssl_capath, value);
128                 }
129                 return 0;
130         }
131 #endif
132         if (!strcmp("http.sslcainfo", var)) {
133                 if (ssl_cainfo == NULL) {
134                         ssl_cainfo = xmalloc(strlen(value)+1);
135                         strcpy(ssl_cainfo, value);
136                 }
137                 return 0;
138         }
139
140 #ifdef USE_CURL_MULTI   
141         if (!strcmp("http.maxrequests", var)) {
142                 if (max_requests == -1)
143                         max_requests = git_config_int(var, value);
144                 return 0;
145         }
146 #endif
147
148         if (!strcmp("http.lowspeedlimit", var)) {
149                 if (curl_low_speed_limit == -1)
150                         curl_low_speed_limit = (long)git_config_int(var, value);
151                 return 0;
152         }
153         if (!strcmp("http.lowspeedtime", var)) {
154                 if (curl_low_speed_time == -1)
155                         curl_low_speed_time = (long)git_config_int(var, value);
156                 return 0;
157         }
158
159         if (!strcmp("http.noepsv", var)) {
160                 curl_ftp_no_epsv = git_config_bool(var, value);
161                 return 0;
162         }
163
164         /* Fall back on the default ones */
165         return git_default_config(var, value);
166 }
167
168 static CURL* get_curl_handle(void)
169 {
170         CURL* result = curl_easy_init();
171
172         curl_easy_setopt(result, CURLOPT_SSL_VERIFYPEER, curl_ssl_verify);
173 #if LIBCURL_VERSION_NUM >= 0x070907
174         curl_easy_setopt(result, CURLOPT_NETRC, CURL_NETRC_OPTIONAL);
175 #endif
176
177         if (ssl_cert != NULL)
178                 curl_easy_setopt(result, CURLOPT_SSLCERT, ssl_cert);
179 #if LIBCURL_VERSION_NUM >= 0x070902
180         if (ssl_key != NULL)
181                 curl_easy_setopt(result, CURLOPT_SSLKEY, ssl_key);
182 #endif
183 #if LIBCURL_VERSION_NUM >= 0x070908
184         if (ssl_capath != NULL)
185                 curl_easy_setopt(result, CURLOPT_CAPATH, ssl_capath);
186 #endif
187         if (ssl_cainfo != NULL)
188                 curl_easy_setopt(result, CURLOPT_CAINFO, ssl_cainfo);
189         curl_easy_setopt(result, CURLOPT_FAILONERROR, 1);
190
191         if (curl_low_speed_limit > 0 && curl_low_speed_time > 0) {
192                 curl_easy_setopt(result, CURLOPT_LOW_SPEED_LIMIT,
193                                  curl_low_speed_limit);
194                 curl_easy_setopt(result, CURLOPT_LOW_SPEED_TIME,
195                                  curl_low_speed_time);
196         }
197
198         curl_easy_setopt(result, CURLOPT_FOLLOWLOCATION, 1);
199
200         if (getenv("GIT_CURL_VERBOSE"))
201                 curl_easy_setopt(result, CURLOPT_VERBOSE, 1);
202
203         curl_easy_setopt(result, CURLOPT_USERAGENT, GIT_USER_AGENT);
204
205         if (curl_ftp_no_epsv)
206                 curl_easy_setopt(result, CURLOPT_FTP_USE_EPSV, 0);
207
208         return result;
209 }
210
211 void http_init(void)
212 {
213         char *low_speed_limit;
214         char *low_speed_time;
215
216         curl_global_init(CURL_GLOBAL_ALL);
217
218         pragma_header = curl_slist_append(pragma_header, "Pragma: no-cache");
219
220 #ifdef USE_CURL_MULTI
221         {
222                 char *http_max_requests = getenv("GIT_HTTP_MAX_REQUESTS");
223                 if (http_max_requests != NULL)
224                         max_requests = atoi(http_max_requests);
225         }
226
227         curlm = curl_multi_init();
228         if (curlm == NULL) {
229                 fprintf(stderr, "Error creating curl multi handle.\n");
230                 exit(1);
231         }
232 #endif
233
234         if (getenv("GIT_SSL_NO_VERIFY"))
235                 curl_ssl_verify = 0;
236
237         ssl_cert = getenv("GIT_SSL_CERT");
238 #if LIBCURL_VERSION_NUM >= 0x070902
239         ssl_key = getenv("GIT_SSL_KEY");
240 #endif
241 #if LIBCURL_VERSION_NUM >= 0x070908
242         ssl_capath = getenv("GIT_SSL_CAPATH");
243 #endif
244         ssl_cainfo = getenv("GIT_SSL_CAINFO");
245
246         low_speed_limit = getenv("GIT_HTTP_LOW_SPEED_LIMIT");
247         if (low_speed_limit != NULL)
248                 curl_low_speed_limit = strtol(low_speed_limit, NULL, 10);
249         low_speed_time = getenv("GIT_HTTP_LOW_SPEED_TIME");
250         if (low_speed_time != NULL)
251                 curl_low_speed_time = strtol(low_speed_time, NULL, 10);
252
253         git_config(http_options);
254
255         if (curl_ssl_verify == -1)
256                 curl_ssl_verify = 1;
257
258 #ifdef USE_CURL_MULTI
259         if (max_requests < 1)
260                 max_requests = DEFAULT_MAX_REQUESTS;
261 #endif
262
263         if (getenv("GIT_CURL_FTP_NO_EPSV"))
264                 curl_ftp_no_epsv = 1;
265
266 #ifndef NO_CURL_EASY_DUPHANDLE
267         curl_default = get_curl_handle();
268 #endif
269 }
270
271 void http_cleanup(void)
272 {
273         struct active_request_slot *slot = active_queue_head;
274 #ifdef USE_CURL_MULTI
275         char *wait_url;
276 #endif
277
278         while (slot != NULL) {
279 #ifdef USE_CURL_MULTI
280                 if (slot->in_use) {
281                         curl_easy_getinfo(slot->curl,
282                                           CURLINFO_EFFECTIVE_URL,
283                                           &wait_url);
284                         fprintf(stderr, "Waiting for %s\n", wait_url);
285                         run_active_slot(slot);
286                 }
287 #endif
288                 if (slot->curl != NULL)
289                         curl_easy_cleanup(slot->curl);
290                 slot = slot->next;
291         }
292
293 #ifndef NO_CURL_EASY_DUPHANDLE
294         curl_easy_cleanup(curl_default);
295 #endif
296
297 #ifdef USE_CURL_MULTI
298         curl_multi_cleanup(curlm);
299 #endif
300         curl_global_cleanup();
301
302         curl_slist_free_all(pragma_header);
303 }
304
305 struct active_request_slot *get_active_slot(void)
306 {
307         struct active_request_slot *slot = active_queue_head;
308         struct active_request_slot *newslot;
309
310 #ifdef USE_CURL_MULTI
311         int num_transfers;
312
313         /* Wait for a slot to open up if the queue is full */
314         while (active_requests >= max_requests) {
315                 curl_multi_perform(curlm, &num_transfers);
316                 if (num_transfers < active_requests) {
317                         process_curl_messages();
318                 }
319         }
320 #endif
321
322         while (slot != NULL && slot->in_use) {
323                 slot = slot->next;
324         }
325         if (slot == NULL) {
326                 newslot = xmalloc(sizeof(*newslot));
327                 newslot->curl = NULL;
328                 newslot->in_use = 0;
329                 newslot->next = NULL;
330
331                 slot = active_queue_head;
332                 if (slot == NULL) {
333                         active_queue_head = newslot;
334                 } else {
335                         while (slot->next != NULL) {
336                                 slot = slot->next;
337                         }
338                         slot->next = newslot;
339                 }
340                 slot = newslot;
341         }
342
343         if (slot->curl == NULL) {
344 #ifdef NO_CURL_EASY_DUPHANDLE
345                 slot->curl = get_curl_handle();
346 #else
347                 slot->curl = curl_easy_duphandle(curl_default);
348 #endif
349         }
350
351         active_requests++;
352         slot->in_use = 1;
353         slot->local = NULL;
354         slot->results = NULL;
355         slot->finished = NULL;
356         slot->callback_data = NULL;
357         slot->callback_func = NULL;
358         curl_easy_setopt(slot->curl, CURLOPT_HTTPHEADER, NULL);
359         curl_easy_setopt(slot->curl, CURLOPT_HTTPHEADER, pragma_header);
360         curl_easy_setopt(slot->curl, CURLOPT_ERRORBUFFER, curl_errorstr);
361         curl_easy_setopt(slot->curl, CURLOPT_CUSTOMREQUEST, NULL);
362         curl_easy_setopt(slot->curl, CURLOPT_READFUNCTION, NULL);
363         curl_easy_setopt(slot->curl, CURLOPT_WRITEFUNCTION, NULL);
364         curl_easy_setopt(slot->curl, CURLOPT_UPLOAD, 0);
365         curl_easy_setopt(slot->curl, CURLOPT_HTTPGET, 1);
366
367         return slot;
368 }
369
370 int start_active_slot(struct active_request_slot *slot)
371 {
372 #ifdef USE_CURL_MULTI
373         CURLMcode curlm_result = curl_multi_add_handle(curlm, slot->curl);
374
375         if (curlm_result != CURLM_OK &&
376             curlm_result != CURLM_CALL_MULTI_PERFORM) {
377                 active_requests--;
378                 slot->in_use = 0;
379                 return 0;
380         }
381 #endif
382         return 1;
383 }
384
385 #ifdef USE_CURL_MULTI
386 void step_active_slots(void)
387 {
388         int num_transfers;
389         CURLMcode curlm_result;
390
391         do {
392                 curlm_result = curl_multi_perform(curlm, &num_transfers);
393         } while (curlm_result == CURLM_CALL_MULTI_PERFORM);
394         if (num_transfers < active_requests) {
395                 process_curl_messages();
396                 fill_active_slots();
397         }
398 }
399 #endif
400
401 void run_active_slot(struct active_request_slot *slot)
402 {
403 #ifdef USE_CURL_MULTI
404         long last_pos = 0;
405         long current_pos;
406         fd_set readfds;
407         fd_set writefds;
408         fd_set excfds;
409         int max_fd;
410         struct timeval select_timeout;
411         int finished = 0;
412
413         slot->finished = &finished;
414         while (!finished) {
415                 data_received = 0;
416                 step_active_slots();
417
418                 if (!data_received && slot->local != NULL) {
419                         current_pos = ftell(slot->local);
420                         if (current_pos > last_pos)
421                                 data_received++;
422                         last_pos = current_pos;
423                 }
424
425                 if (slot->in_use && !data_received) {
426                         max_fd = 0;
427                         FD_ZERO(&readfds);
428                         FD_ZERO(&writefds);
429                         FD_ZERO(&excfds);
430                         select_timeout.tv_sec = 0;
431                         select_timeout.tv_usec = 50000;
432                         select(max_fd, &readfds, &writefds,
433                                &excfds, &select_timeout);
434                 }
435         }
436 #else
437         while (slot->in_use) {
438                 slot->curl_result = curl_easy_perform(slot->curl);
439                 finish_active_slot(slot);
440         }
441 #endif
442 }
443
444 static void closedown_active_slot(struct active_request_slot *slot)
445 {
446         active_requests--;
447         slot->in_use = 0;
448 }
449
450 void release_active_slot(struct active_request_slot *slot)
451 {
452         closedown_active_slot(slot);
453         if (slot->curl) {
454 #ifdef USE_CURL_MULTI
455                 curl_multi_remove_handle(curlm, slot->curl);
456 #endif
457                 curl_easy_cleanup(slot->curl);
458                 slot->curl = NULL;
459         }
460 #ifdef USE_CURL_MULTI
461         fill_active_slots();
462 #endif
463 }
464
465 static void finish_active_slot(struct active_request_slot *slot)
466 {
467         closedown_active_slot(slot);
468         curl_easy_getinfo(slot->curl, CURLINFO_HTTP_CODE, &slot->http_code);
469
470         if (slot->finished != NULL)
471                 (*slot->finished) = 1;
472
473         /* Store slot results so they can be read after the slot is reused */
474         if (slot->results != NULL) {
475                 slot->results->curl_result = slot->curl_result;
476                 slot->results->http_code = slot->http_code;
477         }
478
479         /* Run callback if appropriate */
480         if (slot->callback_func != NULL) {
481                 slot->callback_func(slot->callback_data);
482         }
483 }
484
485 void finish_all_active_slots(void)
486 {
487         struct active_request_slot *slot = active_queue_head;
488
489         while (slot != NULL)
490                 if (slot->in_use) {
491                         run_active_slot(slot);
492                         slot = active_queue_head;
493                 } else {
494                         slot = slot->next;
495                 }
496 }