Remove http.authAny
[git] / http.c
1 #include "http.h"
2 #include "pack.h"
3 #include "sideband.h"
4
5 int data_received;
6 int active_requests;
7 int http_is_verbose;
8 size_t http_post_buffer = 16 * LARGE_PACKET_MAX;
9
10 #if LIBCURL_VERSION_NUM >= 0x070a06
11 #define LIBCURL_CAN_HANDLE_AUTH_ANY
12 #endif
13
14 static int min_curl_sessions = 1;
15 static int curl_session_count;
16 #ifdef USE_CURL_MULTI
17 static int max_requests = -1;
18 static CURLM *curlm;
19 #endif
20 #ifndef NO_CURL_EASY_DUPHANDLE
21 static CURL *curl_default;
22 #endif
23
24 #define PREV_BUF_SIZE 4096
25 #define RANGE_HEADER_SIZE 30
26
27 char curl_errorstr[CURL_ERROR_SIZE];
28
29 static int curl_ssl_verify = -1;
30 static const char *ssl_cert;
31 #if LIBCURL_VERSION_NUM >= 0x070903
32 static const char *ssl_key;
33 #endif
34 #if LIBCURL_VERSION_NUM >= 0x070908
35 static const char *ssl_capath;
36 #endif
37 static const char *ssl_cainfo;
38 static long curl_low_speed_limit = -1;
39 static long curl_low_speed_time = -1;
40 static int curl_ftp_no_epsv;
41 static const char *curl_http_proxy;
42 static char *user_name, *user_pass;
43
44 #if LIBCURL_VERSION_NUM >= 0x071700
45 /* Use CURLOPT_KEYPASSWD as is */
46 #elif LIBCURL_VERSION_NUM >= 0x070903
47 #define CURLOPT_KEYPASSWD CURLOPT_SSLKEYPASSWD
48 #else
49 #define CURLOPT_KEYPASSWD CURLOPT_SSLCERTPASSWD
50 #endif
51
52 static char *ssl_cert_password;
53 static int ssl_cert_password_required;
54
55 static struct curl_slist *pragma_header;
56 static struct curl_slist *no_pragma_header;
57
58 static struct active_request_slot *active_queue_head;
59
60 size_t fread_buffer(void *ptr, size_t eltsize, size_t nmemb, void *buffer_)
61 {
62         size_t size = eltsize * nmemb;
63         struct buffer *buffer = buffer_;
64
65         if (size > buffer->buf.len - buffer->posn)
66                 size = buffer->buf.len - buffer->posn;
67         memcpy(ptr, buffer->buf.buf + buffer->posn, size);
68         buffer->posn += size;
69
70         return size;
71 }
72
73 #ifndef NO_CURL_IOCTL
74 curlioerr ioctl_buffer(CURL *handle, int cmd, void *clientp)
75 {
76         struct buffer *buffer = clientp;
77
78         switch (cmd) {
79         case CURLIOCMD_NOP:
80                 return CURLIOE_OK;
81
82         case CURLIOCMD_RESTARTREAD:
83                 buffer->posn = 0;
84                 return CURLIOE_OK;
85
86         default:
87                 return CURLIOE_UNKNOWNCMD;
88         }
89 }
90 #endif
91
92 size_t fwrite_buffer(const void *ptr, size_t eltsize, size_t nmemb, void *buffer_)
93 {
94         size_t size = eltsize * nmemb;
95         struct strbuf *buffer = buffer_;
96
97         strbuf_add(buffer, ptr, size);
98         data_received++;
99         return size;
100 }
101
102 size_t fwrite_null(const void *ptr, size_t eltsize, size_t nmemb, void *strbuf)
103 {
104         data_received++;
105         return eltsize * nmemb;
106 }
107
108 #ifdef USE_CURL_MULTI
109 static void process_curl_messages(void)
110 {
111         int num_messages;
112         struct active_request_slot *slot;
113         CURLMsg *curl_message = curl_multi_info_read(curlm, &num_messages);
114
115         while (curl_message != NULL) {
116                 if (curl_message->msg == CURLMSG_DONE) {
117                         int curl_result = curl_message->data.result;
118                         slot = active_queue_head;
119                         while (slot != NULL &&
120                                slot->curl != curl_message->easy_handle)
121                                 slot = slot->next;
122                         if (slot != NULL) {
123                                 curl_multi_remove_handle(curlm, slot->curl);
124                                 slot->curl_result = curl_result;
125                                 finish_active_slot(slot);
126                         } else {
127                                 fprintf(stderr, "Received DONE message for unknown request!\n");
128                         }
129                 } else {
130                         fprintf(stderr, "Unknown CURL message received: %d\n",
131                                 (int)curl_message->msg);
132                 }
133                 curl_message = curl_multi_info_read(curlm, &num_messages);
134         }
135 }
136 #endif
137
138 static int http_options(const char *var, const char *value, void *cb)
139 {
140         if (!strcmp("http.sslverify", var)) {
141                 curl_ssl_verify = git_config_bool(var, value);
142                 return 0;
143         }
144         if (!strcmp("http.sslcert", var))
145                 return git_config_string(&ssl_cert, var, value);
146 #if LIBCURL_VERSION_NUM >= 0x070903
147         if (!strcmp("http.sslkey", var))
148                 return git_config_string(&ssl_key, var, value);
149 #endif
150 #if LIBCURL_VERSION_NUM >= 0x070908
151         if (!strcmp("http.sslcapath", var))
152                 return git_config_string(&ssl_capath, var, value);
153 #endif
154         if (!strcmp("http.sslcainfo", var))
155                 return git_config_string(&ssl_cainfo, var, value);
156         if (!strcmp("http.sslcertpasswordprotected", var)) {
157                 if (git_config_bool(var, value))
158                         ssl_cert_password_required = 1;
159                 return 0;
160         }
161         if (!strcmp("http.minsessions", var)) {
162                 min_curl_sessions = git_config_int(var, value);
163 #ifndef USE_CURL_MULTI
164                 if (min_curl_sessions > 1)
165                         min_curl_sessions = 1;
166 #endif
167                 return 0;
168         }
169 #ifdef USE_CURL_MULTI
170         if (!strcmp("http.maxrequests", var)) {
171                 max_requests = git_config_int(var, value);
172                 return 0;
173         }
174 #endif
175         if (!strcmp("http.lowspeedlimit", var)) {
176                 curl_low_speed_limit = (long)git_config_int(var, value);
177                 return 0;
178         }
179         if (!strcmp("http.lowspeedtime", var)) {
180                 curl_low_speed_time = (long)git_config_int(var, value);
181                 return 0;
182         }
183
184         if (!strcmp("http.noepsv", var)) {
185                 curl_ftp_no_epsv = git_config_bool(var, value);
186                 return 0;
187         }
188         if (!strcmp("http.proxy", var))
189                 return git_config_string(&curl_http_proxy, var, value);
190
191         if (!strcmp("http.postbuffer", var)) {
192                 http_post_buffer = git_config_int(var, value);
193                 if (http_post_buffer < LARGE_PACKET_MAX)
194                         http_post_buffer = LARGE_PACKET_MAX;
195                 return 0;
196         }
197
198         /* Fall back on the default ones */
199         return git_default_config(var, value, cb);
200 }
201
202 static void init_curl_http_auth(CURL *result)
203 {
204         if (user_name) {
205                 struct strbuf up = STRBUF_INIT;
206                 if (!user_pass)
207                         user_pass = xstrdup(getpass("Password: "));
208                 strbuf_addf(&up, "%s:%s", user_name, user_pass);
209                 curl_easy_setopt(result, CURLOPT_USERPWD,
210                                  strbuf_detach(&up, NULL));
211         }
212 }
213
214 static int has_cert_password(void)
215 {
216         if (ssl_cert_password != NULL)
217                 return 1;
218         if (ssl_cert == NULL || ssl_cert_password_required != 1)
219                 return 0;
220         /* Only prompt the user once. */
221         ssl_cert_password_required = -1;
222         ssl_cert_password = getpass("Certificate Password: ");
223         if (ssl_cert_password != NULL) {
224                 ssl_cert_password = xstrdup(ssl_cert_password);
225                 return 1;
226         } else
227                 return 0;
228 }
229
230 static CURL *get_curl_handle(void)
231 {
232         CURL *result = curl_easy_init();
233
234         if (!curl_ssl_verify) {
235                 curl_easy_setopt(result, CURLOPT_SSL_VERIFYPEER, 0);
236                 curl_easy_setopt(result, CURLOPT_SSL_VERIFYHOST, 0);
237         } else {
238                 /* Verify authenticity of the peer's certificate */
239                 curl_easy_setopt(result, CURLOPT_SSL_VERIFYPEER, 1);
240                 /* The name in the cert must match whom we tried to connect */
241                 curl_easy_setopt(result, CURLOPT_SSL_VERIFYHOST, 2);
242         }
243
244 #if LIBCURL_VERSION_NUM >= 0x070907
245         curl_easy_setopt(result, CURLOPT_NETRC, CURL_NETRC_OPTIONAL);
246 #endif
247 #ifdef LIBCURL_CAN_HANDLE_AUTH_ANY
248         curl_easy_setopt(result, CURLOPT_HTTPAUTH, CURLAUTH_ANY);
249 #endif
250
251         init_curl_http_auth(result);
252
253         if (ssl_cert != NULL)
254                 curl_easy_setopt(result, CURLOPT_SSLCERT, ssl_cert);
255         if (has_cert_password())
256                 curl_easy_setopt(result, CURLOPT_KEYPASSWD, ssl_cert_password);
257 #if LIBCURL_VERSION_NUM >= 0x070903
258         if (ssl_key != NULL)
259                 curl_easy_setopt(result, CURLOPT_SSLKEY, ssl_key);
260 #endif
261 #if LIBCURL_VERSION_NUM >= 0x070908
262         if (ssl_capath != NULL)
263                 curl_easy_setopt(result, CURLOPT_CAPATH, ssl_capath);
264 #endif
265         if (ssl_cainfo != NULL)
266                 curl_easy_setopt(result, CURLOPT_CAINFO, ssl_cainfo);
267         curl_easy_setopt(result, CURLOPT_FAILONERROR, 1);
268
269         if (curl_low_speed_limit > 0 && curl_low_speed_time > 0) {
270                 curl_easy_setopt(result, CURLOPT_LOW_SPEED_LIMIT,
271                                  curl_low_speed_limit);
272                 curl_easy_setopt(result, CURLOPT_LOW_SPEED_TIME,
273                                  curl_low_speed_time);
274         }
275
276         curl_easy_setopt(result, CURLOPT_FOLLOWLOCATION, 1);
277
278         if (getenv("GIT_CURL_VERBOSE"))
279                 curl_easy_setopt(result, CURLOPT_VERBOSE, 1);
280
281         curl_easy_setopt(result, CURLOPT_USERAGENT, GIT_USER_AGENT);
282
283         if (curl_ftp_no_epsv)
284                 curl_easy_setopt(result, CURLOPT_FTP_USE_EPSV, 0);
285
286         if (curl_http_proxy)
287                 curl_easy_setopt(result, CURLOPT_PROXY, curl_http_proxy);
288
289         return result;
290 }
291
292 static void http_auth_init(const char *url)
293 {
294         char *at, *colon, *cp, *slash;
295         int len;
296
297         cp = strstr(url, "://");
298         if (!cp)
299                 return;
300
301         /*
302          * Ok, the URL looks like "proto://something".  Which one?
303          * "proto://<user>:<pass>@<host>/...",
304          * "proto://<user>@<host>/...", or just
305          * "proto://<host>/..."?
306          */
307         cp += 3;
308         at = strchr(cp, '@');
309         colon = strchr(cp, ':');
310         slash = strchrnul(cp, '/');
311         if (!at || slash <= at)
312                 return; /* No credentials */
313         if (!colon || at <= colon) {
314                 /* Only username */
315                 len = at - cp;
316                 user_name = xmalloc(len + 1);
317                 memcpy(user_name, cp, len);
318                 user_name[len] = '\0';
319                 user_pass = NULL;
320         } else {
321                 len = colon - cp;
322                 user_name = xmalloc(len + 1);
323                 memcpy(user_name, cp, len);
324                 user_name[len] = '\0';
325                 len = at - (colon + 1);
326                 user_pass = xmalloc(len + 1);
327                 memcpy(user_pass, colon + 1, len);
328                 user_pass[len] = '\0';
329         }
330 }
331
332 static void set_from_env(const char **var, const char *envname)
333 {
334         const char *val = getenv(envname);
335         if (val)
336                 *var = val;
337 }
338
339 void http_init(struct remote *remote)
340 {
341         char *low_speed_limit;
342         char *low_speed_time;
343
344         http_is_verbose = 0;
345
346         git_config(http_options, NULL);
347
348         curl_global_init(CURL_GLOBAL_ALL);
349
350         if (remote && remote->http_proxy)
351                 curl_http_proxy = xstrdup(remote->http_proxy);
352
353         pragma_header = curl_slist_append(pragma_header, "Pragma: no-cache");
354         no_pragma_header = curl_slist_append(no_pragma_header, "Pragma:");
355
356 #ifdef USE_CURL_MULTI
357         {
358                 char *http_max_requests = getenv("GIT_HTTP_MAX_REQUESTS");
359                 if (http_max_requests != NULL)
360                         max_requests = atoi(http_max_requests);
361         }
362
363         curlm = curl_multi_init();
364         if (curlm == NULL) {
365                 fprintf(stderr, "Error creating curl multi handle.\n");
366                 exit(1);
367         }
368 #endif
369
370         if (getenv("GIT_SSL_NO_VERIFY"))
371                 curl_ssl_verify = 0;
372
373         set_from_env(&ssl_cert, "GIT_SSL_CERT");
374 #if LIBCURL_VERSION_NUM >= 0x070903
375         set_from_env(&ssl_key, "GIT_SSL_KEY");
376 #endif
377 #if LIBCURL_VERSION_NUM >= 0x070908
378         set_from_env(&ssl_capath, "GIT_SSL_CAPATH");
379 #endif
380         set_from_env(&ssl_cainfo, "GIT_SSL_CAINFO");
381
382         low_speed_limit = getenv("GIT_HTTP_LOW_SPEED_LIMIT");
383         if (low_speed_limit != NULL)
384                 curl_low_speed_limit = strtol(low_speed_limit, NULL, 10);
385         low_speed_time = getenv("GIT_HTTP_LOW_SPEED_TIME");
386         if (low_speed_time != NULL)
387                 curl_low_speed_time = strtol(low_speed_time, NULL, 10);
388
389         if (curl_ssl_verify == -1)
390                 curl_ssl_verify = 1;
391
392         curl_session_count = 0;
393 #ifdef USE_CURL_MULTI
394         if (max_requests < 1)
395                 max_requests = DEFAULT_MAX_REQUESTS;
396 #endif
397
398         if (getenv("GIT_CURL_FTP_NO_EPSV"))
399                 curl_ftp_no_epsv = 1;
400
401         if (remote && remote->url && remote->url[0]) {
402                 http_auth_init(remote->url[0]);
403                 if (!ssl_cert_password_required &&
404                     getenv("GIT_SSL_CERT_PASSWORD_PROTECTED") &&
405                     !prefixcmp(remote->url[0], "https://"))
406                         ssl_cert_password_required = 1;
407         }
408
409 #ifndef NO_CURL_EASY_DUPHANDLE
410         curl_default = get_curl_handle();
411 #endif
412 }
413
414 void http_cleanup(void)
415 {
416         struct active_request_slot *slot = active_queue_head;
417
418         while (slot != NULL) {
419                 struct active_request_slot *next = slot->next;
420                 if (slot->curl != NULL) {
421 #ifdef USE_CURL_MULTI
422                         curl_multi_remove_handle(curlm, slot->curl);
423 #endif
424                         curl_easy_cleanup(slot->curl);
425                 }
426                 free(slot);
427                 slot = next;
428         }
429         active_queue_head = NULL;
430
431 #ifndef NO_CURL_EASY_DUPHANDLE
432         curl_easy_cleanup(curl_default);
433 #endif
434
435 #ifdef USE_CURL_MULTI
436         curl_multi_cleanup(curlm);
437 #endif
438         curl_global_cleanup();
439
440         curl_slist_free_all(pragma_header);
441         pragma_header = NULL;
442
443         curl_slist_free_all(no_pragma_header);
444         no_pragma_header = NULL;
445
446         if (curl_http_proxy) {
447                 free((void *)curl_http_proxy);
448                 curl_http_proxy = NULL;
449         }
450
451         if (ssl_cert_password != NULL) {
452                 memset(ssl_cert_password, 0, strlen(ssl_cert_password));
453                 free(ssl_cert_password);
454                 ssl_cert_password = NULL;
455         }
456         ssl_cert_password_required = 0;
457 }
458
459 struct active_request_slot *get_active_slot(void)
460 {
461         struct active_request_slot *slot = active_queue_head;
462         struct active_request_slot *newslot;
463
464 #ifdef USE_CURL_MULTI
465         int num_transfers;
466
467         /* Wait for a slot to open up if the queue is full */
468         while (active_requests >= max_requests) {
469                 curl_multi_perform(curlm, &num_transfers);
470                 if (num_transfers < active_requests)
471                         process_curl_messages();
472         }
473 #endif
474
475         while (slot != NULL && slot->in_use)
476                 slot = slot->next;
477
478         if (slot == NULL) {
479                 newslot = xmalloc(sizeof(*newslot));
480                 newslot->curl = NULL;
481                 newslot->in_use = 0;
482                 newslot->next = NULL;
483
484                 slot = active_queue_head;
485                 if (slot == NULL) {
486                         active_queue_head = newslot;
487                 } else {
488                         while (slot->next != NULL)
489                                 slot = slot->next;
490                         slot->next = newslot;
491                 }
492                 slot = newslot;
493         }
494
495         if (slot->curl == NULL) {
496 #ifdef NO_CURL_EASY_DUPHANDLE
497                 slot->curl = get_curl_handle();
498 #else
499                 slot->curl = curl_easy_duphandle(curl_default);
500 #endif
501                 curl_session_count++;
502         }
503
504         active_requests++;
505         slot->in_use = 1;
506         slot->local = NULL;
507         slot->results = NULL;
508         slot->finished = NULL;
509         slot->callback_data = NULL;
510         slot->callback_func = NULL;
511         curl_easy_setopt(slot->curl, CURLOPT_HTTPHEADER, pragma_header);
512         curl_easy_setopt(slot->curl, CURLOPT_ERRORBUFFER, curl_errorstr);
513         curl_easy_setopt(slot->curl, CURLOPT_CUSTOMREQUEST, NULL);
514         curl_easy_setopt(slot->curl, CURLOPT_READFUNCTION, NULL);
515         curl_easy_setopt(slot->curl, CURLOPT_WRITEFUNCTION, NULL);
516         curl_easy_setopt(slot->curl, CURLOPT_UPLOAD, 0);
517         curl_easy_setopt(slot->curl, CURLOPT_HTTPGET, 1);
518
519         return slot;
520 }
521
522 int start_active_slot(struct active_request_slot *slot)
523 {
524 #ifdef USE_CURL_MULTI
525         CURLMcode curlm_result = curl_multi_add_handle(curlm, slot->curl);
526         int num_transfers;
527
528         if (curlm_result != CURLM_OK &&
529             curlm_result != CURLM_CALL_MULTI_PERFORM) {
530                 active_requests--;
531                 slot->in_use = 0;
532                 return 0;
533         }
534
535         /*
536          * We know there must be something to do, since we just added
537          * something.
538          */
539         curl_multi_perform(curlm, &num_transfers);
540 #endif
541         return 1;
542 }
543
544 #ifdef USE_CURL_MULTI
545 struct fill_chain {
546         void *data;
547         int (*fill)(void *);
548         struct fill_chain *next;
549 };
550
551 static struct fill_chain *fill_cfg;
552
553 void add_fill_function(void *data, int (*fill)(void *))
554 {
555         struct fill_chain *new = xmalloc(sizeof(*new));
556         struct fill_chain **linkp = &fill_cfg;
557         new->data = data;
558         new->fill = fill;
559         new->next = NULL;
560         while (*linkp)
561                 linkp = &(*linkp)->next;
562         *linkp = new;
563 }
564
565 void fill_active_slots(void)
566 {
567         struct active_request_slot *slot = active_queue_head;
568
569         while (active_requests < max_requests) {
570                 struct fill_chain *fill;
571                 for (fill = fill_cfg; fill; fill = fill->next)
572                         if (fill->fill(fill->data))
573                                 break;
574
575                 if (!fill)
576                         break;
577         }
578
579         while (slot != NULL) {
580                 if (!slot->in_use && slot->curl != NULL
581                         && curl_session_count > min_curl_sessions) {
582                         curl_easy_cleanup(slot->curl);
583                         slot->curl = NULL;
584                         curl_session_count--;
585                 }
586                 slot = slot->next;
587         }
588 }
589
590 void step_active_slots(void)
591 {
592         int num_transfers;
593         CURLMcode curlm_result;
594
595         do {
596                 curlm_result = curl_multi_perform(curlm, &num_transfers);
597         } while (curlm_result == CURLM_CALL_MULTI_PERFORM);
598         if (num_transfers < active_requests) {
599                 process_curl_messages();
600                 fill_active_slots();
601         }
602 }
603 #endif
604
605 void run_active_slot(struct active_request_slot *slot)
606 {
607 #ifdef USE_CURL_MULTI
608         long last_pos = 0;
609         long current_pos;
610         fd_set readfds;
611         fd_set writefds;
612         fd_set excfds;
613         int max_fd;
614         struct timeval select_timeout;
615         int finished = 0;
616
617         slot->finished = &finished;
618         while (!finished) {
619                 data_received = 0;
620                 step_active_slots();
621
622                 if (!data_received && slot->local != NULL) {
623                         current_pos = ftell(slot->local);
624                         if (current_pos > last_pos)
625                                 data_received++;
626                         last_pos = current_pos;
627                 }
628
629                 if (slot->in_use && !data_received) {
630                         max_fd = 0;
631                         FD_ZERO(&readfds);
632                         FD_ZERO(&writefds);
633                         FD_ZERO(&excfds);
634                         select_timeout.tv_sec = 0;
635                         select_timeout.tv_usec = 50000;
636                         select(max_fd, &readfds, &writefds,
637                                &excfds, &select_timeout);
638                 }
639         }
640 #else
641         while (slot->in_use) {
642                 slot->curl_result = curl_easy_perform(slot->curl);
643                 finish_active_slot(slot);
644         }
645 #endif
646 }
647
648 static void closedown_active_slot(struct active_request_slot *slot)
649 {
650         active_requests--;
651         slot->in_use = 0;
652 }
653
654 void release_active_slot(struct active_request_slot *slot)
655 {
656         closedown_active_slot(slot);
657         if (slot->curl && curl_session_count > min_curl_sessions) {
658 #ifdef USE_CURL_MULTI
659                 curl_multi_remove_handle(curlm, slot->curl);
660 #endif
661                 curl_easy_cleanup(slot->curl);
662                 slot->curl = NULL;
663                 curl_session_count--;
664         }
665 #ifdef USE_CURL_MULTI
666         fill_active_slots();
667 #endif
668 }
669
670 void finish_active_slot(struct active_request_slot *slot)
671 {
672         closedown_active_slot(slot);
673         curl_easy_getinfo(slot->curl, CURLINFO_HTTP_CODE, &slot->http_code);
674
675         if (slot->finished != NULL)
676                 (*slot->finished) = 1;
677
678         /* Store slot results so they can be read after the slot is reused */
679         if (slot->results != NULL) {
680                 slot->results->curl_result = slot->curl_result;
681                 slot->results->http_code = slot->http_code;
682         }
683
684         /* Run callback if appropriate */
685         if (slot->callback_func != NULL)
686                 slot->callback_func(slot->callback_data);
687 }
688
689 void finish_all_active_slots(void)
690 {
691         struct active_request_slot *slot = active_queue_head;
692
693         while (slot != NULL)
694                 if (slot->in_use) {
695                         run_active_slot(slot);
696                         slot = active_queue_head;
697                 } else {
698                         slot = slot->next;
699                 }
700 }
701
702 /* Helpers for modifying and creating URLs */
703 static inline int needs_quote(int ch)
704 {
705         if (((ch >= 'A') && (ch <= 'Z'))
706                         || ((ch >= 'a') && (ch <= 'z'))
707                         || ((ch >= '0') && (ch <= '9'))
708                         || (ch == '/')
709                         || (ch == '-')
710                         || (ch == '.'))
711                 return 0;
712         return 1;
713 }
714
715 static inline int hex(int v)
716 {
717         if (v < 10)
718                 return '0' + v;
719         else
720                 return 'A' + v - 10;
721 }
722
723 static void end_url_with_slash(struct strbuf *buf, const char *url)
724 {
725         strbuf_addstr(buf, url);
726         if (buf->len && buf->buf[buf->len - 1] != '/')
727                 strbuf_addstr(buf, "/");
728 }
729
730 static char *quote_ref_url(const char *base, const char *ref)
731 {
732         struct strbuf buf = STRBUF_INIT;
733         const char *cp;
734         int ch;
735
736         end_url_with_slash(&buf, base);
737
738         for (cp = ref; (ch = *cp) != 0; cp++)
739                 if (needs_quote(ch))
740                         strbuf_addf(&buf, "%%%02x", ch);
741                 else
742                         strbuf_addch(&buf, *cp);
743
744         return strbuf_detach(&buf, NULL);
745 }
746
747 void append_remote_object_url(struct strbuf *buf, const char *url,
748                               const char *hex,
749                               int only_two_digit_prefix)
750 {
751         end_url_with_slash(buf, url);
752
753         strbuf_addf(buf, "objects/%.*s/", 2, hex);
754         if (!only_two_digit_prefix)
755                 strbuf_addf(buf, "%s", hex+2);
756 }
757
758 char *get_remote_object_url(const char *url, const char *hex,
759                             int only_two_digit_prefix)
760 {
761         struct strbuf buf = STRBUF_INIT;
762         append_remote_object_url(&buf, url, hex, only_two_digit_prefix);
763         return strbuf_detach(&buf, NULL);
764 }
765
766 /* http_request() targets */
767 #define HTTP_REQUEST_STRBUF     0
768 #define HTTP_REQUEST_FILE       1
769
770 static int http_request(const char *url, void *result, int target, int options)
771 {
772         struct active_request_slot *slot;
773         struct slot_results results;
774         struct curl_slist *headers = NULL;
775         struct strbuf buf = STRBUF_INIT;
776         int ret;
777
778         slot = get_active_slot();
779         slot->results = &results;
780         curl_easy_setopt(slot->curl, CURLOPT_HTTPGET, 1);
781
782         if (result == NULL) {
783                 curl_easy_setopt(slot->curl, CURLOPT_NOBODY, 1);
784         } else {
785                 curl_easy_setopt(slot->curl, CURLOPT_NOBODY, 0);
786                 curl_easy_setopt(slot->curl, CURLOPT_FILE, result);
787
788                 if (target == HTTP_REQUEST_FILE) {
789                         long posn = ftell(result);
790                         curl_easy_setopt(slot->curl, CURLOPT_WRITEFUNCTION,
791                                          fwrite);
792                         if (posn > 0) {
793                                 strbuf_addf(&buf, "Range: bytes=%ld-", posn);
794                                 headers = curl_slist_append(headers, buf.buf);
795                                 strbuf_reset(&buf);
796                         }
797                         slot->local = result;
798                 } else
799                         curl_easy_setopt(slot->curl, CURLOPT_WRITEFUNCTION,
800                                          fwrite_buffer);
801         }
802
803         strbuf_addstr(&buf, "Pragma:");
804         if (options & HTTP_NO_CACHE)
805                 strbuf_addstr(&buf, " no-cache");
806
807         headers = curl_slist_append(headers, buf.buf);
808
809         curl_easy_setopt(slot->curl, CURLOPT_URL, url);
810         curl_easy_setopt(slot->curl, CURLOPT_HTTPHEADER, headers);
811
812         if (start_active_slot(slot)) {
813                 run_active_slot(slot);
814                 if (results.curl_result == CURLE_OK)
815                         ret = HTTP_OK;
816                 else if (missing_target(&results))
817                         ret = HTTP_MISSING_TARGET;
818                 else
819                         ret = HTTP_ERROR;
820         } else {
821                 error("Unable to start HTTP request for %s", url);
822                 ret = HTTP_START_FAILED;
823         }
824
825         slot->local = NULL;
826         curl_slist_free_all(headers);
827         strbuf_release(&buf);
828
829         return ret;
830 }
831
832 int http_get_strbuf(const char *url, struct strbuf *result, int options)
833 {
834         return http_request(url, result, HTTP_REQUEST_STRBUF, options);
835 }
836
837 int http_get_file(const char *url, const char *filename, int options)
838 {
839         int ret;
840         struct strbuf tmpfile = STRBUF_INIT;
841         FILE *result;
842
843         strbuf_addf(&tmpfile, "%s.temp", filename);
844         result = fopen(tmpfile.buf, "a");
845         if (! result) {
846                 error("Unable to open local file %s", tmpfile.buf);
847                 ret = HTTP_ERROR;
848                 goto cleanup;
849         }
850
851         ret = http_request(url, result, HTTP_REQUEST_FILE, options);
852         fclose(result);
853
854         if ((ret == HTTP_OK) && move_temp_to_file(tmpfile.buf, filename))
855                 ret = HTTP_ERROR;
856 cleanup:
857         strbuf_release(&tmpfile);
858         return ret;
859 }
860
861 int http_error(const char *url, int ret)
862 {
863         /* http_request has already handled HTTP_START_FAILED. */
864         if (ret != HTTP_START_FAILED)
865                 error("%s while accessing %s\n", curl_errorstr, url);
866
867         return ret;
868 }
869
870 int http_fetch_ref(const char *base, struct ref *ref)
871 {
872         char *url;
873         struct strbuf buffer = STRBUF_INIT;
874         int ret = -1;
875
876         url = quote_ref_url(base, ref->name);
877         if (http_get_strbuf(url, &buffer, HTTP_NO_CACHE) == HTTP_OK) {
878                 strbuf_rtrim(&buffer);
879                 if (buffer.len == 40)
880                         ret = get_sha1_hex(buffer.buf, ref->old_sha1);
881                 else if (!prefixcmp(buffer.buf, "ref: ")) {
882                         ref->symref = xstrdup(buffer.buf + 5);
883                         ret = 0;
884                 }
885         }
886
887         strbuf_release(&buffer);
888         free(url);
889         return ret;
890 }
891
892 /* Helpers for fetching packs */
893 static int fetch_pack_index(unsigned char *sha1, const char *base_url)
894 {
895         int ret = 0;
896         char *hex = xstrdup(sha1_to_hex(sha1));
897         char *filename;
898         char *url = NULL;
899         struct strbuf buf = STRBUF_INIT;
900
901         if (has_pack_index(sha1)) {
902                 ret = 0;
903                 goto cleanup;
904         }
905
906         if (http_is_verbose)
907                 fprintf(stderr, "Getting index for pack %s\n", hex);
908
909         end_url_with_slash(&buf, base_url);
910         strbuf_addf(&buf, "objects/pack/pack-%s.idx", hex);
911         url = strbuf_detach(&buf, NULL);
912
913         filename = sha1_pack_index_name(sha1);
914         if (http_get_file(url, filename, 0) != HTTP_OK)
915                 ret = error("Unable to get pack index %s\n", url);
916
917 cleanup:
918         free(hex);
919         free(url);
920         return ret;
921 }
922
923 static int fetch_and_setup_pack_index(struct packed_git **packs_head,
924         unsigned char *sha1, const char *base_url)
925 {
926         struct packed_git *new_pack;
927
928         if (fetch_pack_index(sha1, base_url))
929                 return -1;
930
931         new_pack = parse_pack_index(sha1);
932         if (!new_pack)
933                 return -1; /* parse_pack_index() already issued error message */
934         new_pack->next = *packs_head;
935         *packs_head = new_pack;
936         return 0;
937 }
938
939 int http_get_info_packs(const char *base_url, struct packed_git **packs_head)
940 {
941         int ret = 0, i = 0;
942         char *url, *data;
943         struct strbuf buf = STRBUF_INIT;
944         unsigned char sha1[20];
945
946         end_url_with_slash(&buf, base_url);
947         strbuf_addstr(&buf, "objects/info/packs");
948         url = strbuf_detach(&buf, NULL);
949
950         ret = http_get_strbuf(url, &buf, HTTP_NO_CACHE);
951         if (ret != HTTP_OK)
952                 goto cleanup;
953
954         data = buf.buf;
955         while (i < buf.len) {
956                 switch (data[i]) {
957                 case 'P':
958                         i++;
959                         if (i + 52 <= buf.len &&
960                             !prefixcmp(data + i, " pack-") &&
961                             !prefixcmp(data + i + 46, ".pack\n")) {
962                                 get_sha1_hex(data + i + 6, sha1);
963                                 fetch_and_setup_pack_index(packs_head, sha1,
964                                                       base_url);
965                                 i += 51;
966                                 break;
967                         }
968                 default:
969                         while (i < buf.len && data[i] != '\n')
970                                 i++;
971                 }
972                 i++;
973         }
974
975 cleanup:
976         free(url);
977         return ret;
978 }
979
980 void release_http_pack_request(struct http_pack_request *preq)
981 {
982         if (preq->packfile != NULL) {
983                 fclose(preq->packfile);
984                 preq->packfile = NULL;
985                 preq->slot->local = NULL;
986         }
987         if (preq->range_header != NULL) {
988                 curl_slist_free_all(preq->range_header);
989                 preq->range_header = NULL;
990         }
991         preq->slot = NULL;
992         free(preq->url);
993 }
994
995 int finish_http_pack_request(struct http_pack_request *preq)
996 {
997         int ret;
998         struct packed_git **lst;
999
1000         preq->target->pack_size = ftell(preq->packfile);
1001
1002         if (preq->packfile != NULL) {
1003                 fclose(preq->packfile);
1004                 preq->packfile = NULL;
1005                 preq->slot->local = NULL;
1006         }
1007
1008         ret = move_temp_to_file(preq->tmpfile, preq->filename);
1009         if (ret)
1010                 return ret;
1011
1012         lst = preq->lst;
1013         while (*lst != preq->target)
1014                 lst = &((*lst)->next);
1015         *lst = (*lst)->next;
1016
1017         if (verify_pack(preq->target))
1018                 return -1;
1019         install_packed_git(preq->target);
1020
1021         return 0;
1022 }
1023
1024 struct http_pack_request *new_http_pack_request(
1025         struct packed_git *target, const char *base_url)
1026 {
1027         char *filename;
1028         long prev_posn = 0;
1029         char range[RANGE_HEADER_SIZE];
1030         struct strbuf buf = STRBUF_INIT;
1031         struct http_pack_request *preq;
1032
1033         preq = xmalloc(sizeof(*preq));
1034         preq->target = target;
1035         preq->range_header = NULL;
1036
1037         end_url_with_slash(&buf, base_url);
1038         strbuf_addf(&buf, "objects/pack/pack-%s.pack",
1039                 sha1_to_hex(target->sha1));
1040         preq->url = strbuf_detach(&buf, NULL);
1041
1042         filename = sha1_pack_name(target->sha1);
1043         snprintf(preq->filename, sizeof(preq->filename), "%s", filename);
1044         snprintf(preq->tmpfile, sizeof(preq->tmpfile), "%s.temp", filename);
1045         preq->packfile = fopen(preq->tmpfile, "a");
1046         if (!preq->packfile) {
1047                 error("Unable to open local file %s for pack",
1048                       preq->tmpfile);
1049                 goto abort;
1050         }
1051
1052         preq->slot = get_active_slot();
1053         preq->slot->local = preq->packfile;
1054         curl_easy_setopt(preq->slot->curl, CURLOPT_FILE, preq->packfile);
1055         curl_easy_setopt(preq->slot->curl, CURLOPT_WRITEFUNCTION, fwrite);
1056         curl_easy_setopt(preq->slot->curl, CURLOPT_URL, preq->url);
1057         curl_easy_setopt(preq->slot->curl, CURLOPT_HTTPHEADER,
1058                 no_pragma_header);
1059
1060         /*
1061          * If there is data present from a previous transfer attempt,
1062          * resume where it left off
1063          */
1064         prev_posn = ftell(preq->packfile);
1065         if (prev_posn>0) {
1066                 if (http_is_verbose)
1067                         fprintf(stderr,
1068                                 "Resuming fetch of pack %s at byte %ld\n",
1069                                 sha1_to_hex(target->sha1), prev_posn);
1070                 sprintf(range, "Range: bytes=%ld-", prev_posn);
1071                 preq->range_header = curl_slist_append(NULL, range);
1072                 curl_easy_setopt(preq->slot->curl, CURLOPT_HTTPHEADER,
1073                         preq->range_header);
1074         }
1075
1076         return preq;
1077
1078 abort:
1079         free(filename);
1080         free(preq->url);
1081         free(preq);
1082         return NULL;
1083 }
1084
1085 /* Helpers for fetching objects (loose) */
1086 static size_t fwrite_sha1_file(void *ptr, size_t eltsize, size_t nmemb,
1087                                void *data)
1088 {
1089         unsigned char expn[4096];
1090         size_t size = eltsize * nmemb;
1091         int posn = 0;
1092         struct http_object_request *freq =
1093                 (struct http_object_request *)data;
1094         do {
1095                 ssize_t retval = xwrite(freq->localfile,
1096                                         (char *) ptr + posn, size - posn);
1097                 if (retval < 0)
1098                         return posn;
1099                 posn += retval;
1100         } while (posn < size);
1101
1102         freq->stream.avail_in = size;
1103         freq->stream.next_in = ptr;
1104         do {
1105                 freq->stream.next_out = expn;
1106                 freq->stream.avail_out = sizeof(expn);
1107                 freq->zret = git_inflate(&freq->stream, Z_SYNC_FLUSH);
1108                 git_SHA1_Update(&freq->c, expn,
1109                                 sizeof(expn) - freq->stream.avail_out);
1110         } while (freq->stream.avail_in && freq->zret == Z_OK);
1111         data_received++;
1112         return size;
1113 }
1114
1115 struct http_object_request *new_http_object_request(const char *base_url,
1116         unsigned char *sha1)
1117 {
1118         char *hex = sha1_to_hex(sha1);
1119         char *filename;
1120         char prevfile[PATH_MAX];
1121         int prevlocal;
1122         unsigned char prev_buf[PREV_BUF_SIZE];
1123         ssize_t prev_read = 0;
1124         long prev_posn = 0;
1125         char range[RANGE_HEADER_SIZE];
1126         struct curl_slist *range_header = NULL;
1127         struct http_object_request *freq;
1128
1129         freq = xmalloc(sizeof(*freq));
1130         hashcpy(freq->sha1, sha1);
1131         freq->localfile = -1;
1132
1133         filename = sha1_file_name(sha1);
1134         snprintf(freq->filename, sizeof(freq->filename), "%s", filename);
1135         snprintf(freq->tmpfile, sizeof(freq->tmpfile),
1136                  "%s.temp", filename);
1137
1138         snprintf(prevfile, sizeof(prevfile), "%s.prev", filename);
1139         unlink_or_warn(prevfile);
1140         rename(freq->tmpfile, prevfile);
1141         unlink_or_warn(freq->tmpfile);
1142
1143         if (freq->localfile != -1)
1144                 error("fd leakage in start: %d", freq->localfile);
1145         freq->localfile = open(freq->tmpfile,
1146                                O_WRONLY | O_CREAT | O_EXCL, 0666);
1147         /*
1148          * This could have failed due to the "lazy directory creation";
1149          * try to mkdir the last path component.
1150          */
1151         if (freq->localfile < 0 && errno == ENOENT) {
1152                 char *dir = strrchr(freq->tmpfile, '/');
1153                 if (dir) {
1154                         *dir = 0;
1155                         mkdir(freq->tmpfile, 0777);
1156                         *dir = '/';
1157                 }
1158                 freq->localfile = open(freq->tmpfile,
1159                                        O_WRONLY | O_CREAT | O_EXCL, 0666);
1160         }
1161
1162         if (freq->localfile < 0) {
1163                 error("Couldn't create temporary file %s for %s: %s",
1164                       freq->tmpfile, freq->filename, strerror(errno));
1165                 goto abort;
1166         }
1167
1168         memset(&freq->stream, 0, sizeof(freq->stream));
1169
1170         git_inflate_init(&freq->stream);
1171
1172         git_SHA1_Init(&freq->c);
1173
1174         freq->url = get_remote_object_url(base_url, hex, 0);
1175
1176         /*
1177          * If a previous temp file is present, process what was already
1178          * fetched.
1179          */
1180         prevlocal = open(prevfile, O_RDONLY);
1181         if (prevlocal != -1) {
1182                 do {
1183                         prev_read = xread(prevlocal, prev_buf, PREV_BUF_SIZE);
1184                         if (prev_read>0) {
1185                                 if (fwrite_sha1_file(prev_buf,
1186                                                      1,
1187                                                      prev_read,
1188                                                      freq) == prev_read) {
1189                                         prev_posn += prev_read;
1190                                 } else {
1191                                         prev_read = -1;
1192                                 }
1193                         }
1194                 } while (prev_read > 0);
1195                 close(prevlocal);
1196         }
1197         unlink_or_warn(prevfile);
1198
1199         /*
1200          * Reset inflate/SHA1 if there was an error reading the previous temp
1201          * file; also rewind to the beginning of the local file.
1202          */
1203         if (prev_read == -1) {
1204                 memset(&freq->stream, 0, sizeof(freq->stream));
1205                 git_inflate_init(&freq->stream);
1206                 git_SHA1_Init(&freq->c);
1207                 if (prev_posn>0) {
1208                         prev_posn = 0;
1209                         lseek(freq->localfile, 0, SEEK_SET);
1210                         if (ftruncate(freq->localfile, 0) < 0) {
1211                                 error("Couldn't truncate temporary file %s for %s: %s",
1212                                           freq->tmpfile, freq->filename, strerror(errno));
1213                                 goto abort;
1214                         }
1215                 }
1216         }
1217
1218         freq->slot = get_active_slot();
1219
1220         curl_easy_setopt(freq->slot->curl, CURLOPT_FILE, freq);
1221         curl_easy_setopt(freq->slot->curl, CURLOPT_WRITEFUNCTION, fwrite_sha1_file);
1222         curl_easy_setopt(freq->slot->curl, CURLOPT_ERRORBUFFER, freq->errorstr);
1223         curl_easy_setopt(freq->slot->curl, CURLOPT_URL, freq->url);
1224         curl_easy_setopt(freq->slot->curl, CURLOPT_HTTPHEADER, no_pragma_header);
1225
1226         /*
1227          * If we have successfully processed data from a previous fetch
1228          * attempt, only fetch the data we don't already have.
1229          */
1230         if (prev_posn>0) {
1231                 if (http_is_verbose)
1232                         fprintf(stderr,
1233                                 "Resuming fetch of object %s at byte %ld\n",
1234                                 hex, prev_posn);
1235                 sprintf(range, "Range: bytes=%ld-", prev_posn);
1236                 range_header = curl_slist_append(range_header, range);
1237                 curl_easy_setopt(freq->slot->curl,
1238                                  CURLOPT_HTTPHEADER, range_header);
1239         }
1240
1241         return freq;
1242
1243 abort:
1244         free(filename);
1245         free(freq->url);
1246         free(freq);
1247         return NULL;
1248 }
1249
1250 void process_http_object_request(struct http_object_request *freq)
1251 {
1252         if (freq->slot == NULL)
1253                 return;
1254         freq->curl_result = freq->slot->curl_result;
1255         freq->http_code = freq->slot->http_code;
1256         freq->slot = NULL;
1257 }
1258
1259 int finish_http_object_request(struct http_object_request *freq)
1260 {
1261         struct stat st;
1262
1263         close(freq->localfile);
1264         freq->localfile = -1;
1265
1266         process_http_object_request(freq);
1267
1268         if (freq->http_code == 416) {
1269                 fprintf(stderr, "Warning: requested range invalid; we may already have all the data.\n");
1270         } else if (freq->curl_result != CURLE_OK) {
1271                 if (stat(freq->tmpfile, &st) == 0)
1272                         if (st.st_size == 0)
1273                                 unlink_or_warn(freq->tmpfile);
1274                 return -1;
1275         }
1276
1277         git_inflate_end(&freq->stream);
1278         git_SHA1_Final(freq->real_sha1, &freq->c);
1279         if (freq->zret != Z_STREAM_END) {
1280                 unlink_or_warn(freq->tmpfile);
1281                 return -1;
1282         }
1283         if (hashcmp(freq->sha1, freq->real_sha1)) {
1284                 unlink_or_warn(freq->tmpfile);
1285                 return -1;
1286         }
1287         freq->rename =
1288                 move_temp_to_file(freq->tmpfile, freq->filename);
1289
1290         return freq->rename;
1291 }
1292
1293 void abort_http_object_request(struct http_object_request *freq)
1294 {
1295         unlink_or_warn(freq->tmpfile);
1296
1297         release_http_object_request(freq);
1298 }
1299
1300 void release_http_object_request(struct http_object_request *freq)
1301 {
1302         if (freq->localfile != -1) {
1303                 close(freq->localfile);
1304                 freq->localfile = -1;
1305         }
1306         if (freq->url != NULL) {
1307                 free(freq->url);
1308                 freq->url = NULL;
1309         }
1310         if (freq->slot != NULL) {
1311                 freq->slot->callback_func = NULL;
1312                 freq->slot->callback_data = NULL;
1313                 release_active_slot(freq->slot);
1314                 freq->slot = NULL;
1315         }
1316 }