8 #include "run-command.h"
14 #include "transport.h"
15 #include "string-list.h"
16 #include "sha1-array.h"
17 #include "connected.h"
18 #include "argv-array.h"
21 #include "gpg-interface.h"
24 #include "tmp-objdir.h"
28 static const char * const receive_pack_usage[] = {
29 N_("git receive-pack <git-dir>"),
41 static int deny_deletes;
42 static int deny_non_fast_forwards;
43 static enum deny_action deny_current_branch = DENY_UNCONFIGURED;
44 static enum deny_action deny_delete_current = DENY_UNCONFIGURED;
45 static int receive_fsck_objects = -1;
46 static int transfer_fsck_objects = -1;
47 static struct strbuf fsck_msg_types = STRBUF_INIT;
48 static int receive_unpack_limit = -1;
49 static int transfer_unpack_limit = -1;
50 static int advertise_atomic_push = 1;
51 static int advertise_push_options;
52 static int unpack_limit = 100;
53 static off_t max_input_size;
54 static int report_status;
55 static int use_sideband;
56 static int use_atomic;
57 static int use_push_options;
59 static int prefer_ofs_delta = 1;
60 static int auto_update_server_info;
61 static int auto_gc = 1;
62 static int reject_thin;
63 static int stateless_rpc;
64 static const char *service_dir;
65 static const char *head_name;
66 static void *head_name_to_free;
67 static int sent_capabilities;
68 static int shallow_update;
69 static const char *alt_shallow_file;
70 static struct strbuf push_cert = STRBUF_INIT;
71 static unsigned char push_cert_sha1[20];
72 static struct signature_check sigcheck;
73 static const char *push_cert_nonce;
74 static const char *cert_nonce_seed;
76 static const char *NONCE_UNSOLICITED = "UNSOLICITED";
77 static const char *NONCE_BAD = "BAD";
78 static const char *NONCE_MISSING = "MISSING";
79 static const char *NONCE_OK = "OK";
80 static const char *NONCE_SLOP = "SLOP";
81 static const char *nonce_status;
82 static long nonce_stamp_slop;
83 static timestamp_t nonce_stamp_slop_limit;
84 static struct ref_transaction *transaction;
91 static int keepalive_in_sec = 5;
93 static struct tmp_objdir *tmp_objdir;
95 static enum deny_action parse_deny_action(const char *var, const char *value)
98 if (!strcasecmp(value, "ignore"))
100 if (!strcasecmp(value, "warn"))
102 if (!strcasecmp(value, "refuse"))
104 if (!strcasecmp(value, "updateinstead"))
105 return DENY_UPDATE_INSTEAD;
107 if (git_config_bool(var, value))
112 static int receive_pack_config(const char *var, const char *value, void *cb)
114 int status = parse_hide_refs_config(var, value, "receive");
119 if (strcmp(var, "receive.denydeletes") == 0) {
120 deny_deletes = git_config_bool(var, value);
124 if (strcmp(var, "receive.denynonfastforwards") == 0) {
125 deny_non_fast_forwards = git_config_bool(var, value);
129 if (strcmp(var, "receive.unpacklimit") == 0) {
130 receive_unpack_limit = git_config_int(var, value);
134 if (strcmp(var, "transfer.unpacklimit") == 0) {
135 transfer_unpack_limit = git_config_int(var, value);
139 if (strcmp(var, "receive.fsck.skiplist") == 0) {
142 if (git_config_pathname(&path, var, value))
144 strbuf_addf(&fsck_msg_types, "%cskiplist=%s",
145 fsck_msg_types.len ? ',' : '=', path);
150 if (skip_prefix(var, "receive.fsck.", &var)) {
151 if (is_valid_msg_type(var, value))
152 strbuf_addf(&fsck_msg_types, "%c%s=%s",
153 fsck_msg_types.len ? ',' : '=', var, value);
155 warning("Skipping unknown msg id '%s'", var);
159 if (strcmp(var, "receive.fsckobjects") == 0) {
160 receive_fsck_objects = git_config_bool(var, value);
164 if (strcmp(var, "transfer.fsckobjects") == 0) {
165 transfer_fsck_objects = git_config_bool(var, value);
169 if (!strcmp(var, "receive.denycurrentbranch")) {
170 deny_current_branch = parse_deny_action(var, value);
174 if (strcmp(var, "receive.denydeletecurrent") == 0) {
175 deny_delete_current = parse_deny_action(var, value);
179 if (strcmp(var, "repack.usedeltabaseoffset") == 0) {
180 prefer_ofs_delta = git_config_bool(var, value);
184 if (strcmp(var, "receive.updateserverinfo") == 0) {
185 auto_update_server_info = git_config_bool(var, value);
189 if (strcmp(var, "receive.autogc") == 0) {
190 auto_gc = git_config_bool(var, value);
194 if (strcmp(var, "receive.shallowupdate") == 0) {
195 shallow_update = git_config_bool(var, value);
199 if (strcmp(var, "receive.certnonceseed") == 0)
200 return git_config_string(&cert_nonce_seed, var, value);
202 if (strcmp(var, "receive.certnonceslop") == 0) {
203 nonce_stamp_slop_limit = git_config_ulong(var, value);
207 if (strcmp(var, "receive.advertiseatomic") == 0) {
208 advertise_atomic_push = git_config_bool(var, value);
212 if (strcmp(var, "receive.advertisepushoptions") == 0) {
213 advertise_push_options = git_config_bool(var, value);
217 if (strcmp(var, "receive.keepalive") == 0) {
218 keepalive_in_sec = git_config_int(var, value);
222 if (strcmp(var, "receive.maxinputsize") == 0) {
223 max_input_size = git_config_int64(var, value);
227 return git_default_config(var, value, cb);
230 static void show_ref(const char *path, const struct object_id *oid)
232 if (sent_capabilities) {
233 packet_write_fmt(1, "%s %s\n", oid_to_hex(oid), path);
235 struct strbuf cap = STRBUF_INIT;
238 "report-status delete-refs side-band-64k quiet");
239 if (advertise_atomic_push)
240 strbuf_addstr(&cap, " atomic");
241 if (prefer_ofs_delta)
242 strbuf_addstr(&cap, " ofs-delta");
244 strbuf_addf(&cap, " push-cert=%s", push_cert_nonce);
245 if (advertise_push_options)
246 strbuf_addstr(&cap, " push-options");
247 strbuf_addf(&cap, " agent=%s", git_user_agent_sanitized());
248 packet_write_fmt(1, "%s %s%c%s\n",
249 oid_to_hex(oid), path, 0, cap.buf);
250 strbuf_release(&cap);
251 sent_capabilities = 1;
255 static int show_ref_cb(const char *path_full, const struct object_id *oid,
256 int flag, void *data)
258 struct oidset *seen = data;
259 const char *path = strip_namespace(path_full);
261 if (ref_is_hidden(path, path_full))
265 * Advertise refs outside our current namespace as ".have"
266 * refs, so that the client can use them to minimize data
267 * transfer but will otherwise ignore them.
270 if (oidset_insert(seen, oid))
274 oidset_insert(seen, oid);
280 static void show_one_alternate_ref(const char *refname,
281 const struct object_id *oid,
284 struct oidset *seen = data;
286 if (oidset_insert(seen, oid))
289 show_ref(".have", oid);
292 static void write_head_info(void)
294 static struct oidset seen = OIDSET_INIT;
296 for_each_ref(show_ref_cb, &seen);
297 for_each_alternate_ref(show_one_alternate_ref, &seen);
299 if (!sent_capabilities)
300 show_ref("capabilities^{}", &null_oid);
302 advertise_shallow_grafts(1);
309 struct command *next;
310 const char *error_string;
311 unsigned int skip_update:1,
314 struct object_id old_oid;
315 struct object_id new_oid;
316 char ref_name[FLEX_ARRAY]; /* more */
319 static void rp_error(const char *err, ...) __attribute__((format (printf, 1, 2)));
320 static void rp_warning(const char *err, ...) __attribute__((format (printf, 1, 2)));
322 static void report_message(const char *prefix, const char *err, va_list params)
327 sz = xsnprintf(msg, sizeof(msg), "%s", prefix);
328 sz += vsnprintf(msg + sz, sizeof(msg) - sz, err, params);
329 if (sz > (sizeof(msg) - 1))
330 sz = sizeof(msg) - 1;
334 send_sideband(1, 2, msg, sz, use_sideband);
339 static void rp_warning(const char *err, ...)
342 va_start(params, err);
343 report_message("warning: ", err, params);
347 static void rp_error(const char *err, ...)
350 va_start(params, err);
351 report_message("error: ", err, params);
355 static int copy_to_sideband(int in, int out, void *arg)
358 int keepalive_active = 0;
360 if (keepalive_in_sec <= 0)
361 use_keepalive = KEEPALIVE_NEVER;
362 if (use_keepalive == KEEPALIVE_ALWAYS)
363 keepalive_active = 1;
368 if (keepalive_active) {
374 ret = poll(&pfd, 1, 1000 * keepalive_in_sec);
381 } else if (ret == 0) {
382 /* no data; send a keepalive packet */
383 static const char buf[] = "0005\1";
384 write_or_die(1, buf, sizeof(buf) - 1);
386 } /* else there is actual data to read */
389 sz = xread(in, data, sizeof(data));
393 if (use_keepalive == KEEPALIVE_AFTER_NUL && !keepalive_active) {
394 const char *p = memchr(data, '\0', sz);
397 * The NUL tells us to start sending keepalives. Make
398 * sure we send any other data we read along
401 keepalive_active = 1;
402 send_sideband(1, 2, data, p - data, use_sideband);
403 send_sideband(1, 2, p + 1, sz - (p - data + 1), use_sideband);
409 * Either we're not looking for a NUL signal, or we didn't see
410 * it yet; just pass along the data.
412 send_sideband(1, 2, data, sz, use_sideband);
418 #define HMAC_BLOCK_SIZE 64
420 static void hmac_sha1(unsigned char *out,
421 const char *key_in, size_t key_len,
422 const char *text, size_t text_len)
424 unsigned char key[HMAC_BLOCK_SIZE];
425 unsigned char k_ipad[HMAC_BLOCK_SIZE];
426 unsigned char k_opad[HMAC_BLOCK_SIZE];
430 /* RFC 2104 2. (1) */
431 memset(key, '\0', HMAC_BLOCK_SIZE);
432 if (HMAC_BLOCK_SIZE < key_len) {
434 git_SHA1_Update(&ctx, key_in, key_len);
435 git_SHA1_Final(key, &ctx);
437 memcpy(key, key_in, key_len);
440 /* RFC 2104 2. (2) & (5) */
441 for (i = 0; i < sizeof(key); i++) {
442 k_ipad[i] = key[i] ^ 0x36;
443 k_opad[i] = key[i] ^ 0x5c;
446 /* RFC 2104 2. (3) & (4) */
448 git_SHA1_Update(&ctx, k_ipad, sizeof(k_ipad));
449 git_SHA1_Update(&ctx, text, text_len);
450 git_SHA1_Final(out, &ctx);
452 /* RFC 2104 2. (6) & (7) */
454 git_SHA1_Update(&ctx, k_opad, sizeof(k_opad));
455 git_SHA1_Update(&ctx, out, 20);
456 git_SHA1_Final(out, &ctx);
459 static char *prepare_push_cert_nonce(const char *path, timestamp_t stamp)
461 struct strbuf buf = STRBUF_INIT;
462 unsigned char sha1[20];
464 strbuf_addf(&buf, "%s:%"PRItime, path, stamp);
465 hmac_sha1(sha1, buf.buf, buf.len, cert_nonce_seed, strlen(cert_nonce_seed));;
466 strbuf_release(&buf);
468 /* RFC 2104 5. HMAC-SHA1-80 */
469 strbuf_addf(&buf, "%"PRItime"-%.*s", stamp, 20, sha1_to_hex(sha1));
470 return strbuf_detach(&buf, NULL);
474 * NEEDSWORK: reuse find_commit_header() from jk/commit-author-parsing
475 * after dropping "_commit" from its name and possibly moving it out
478 static char *find_header(const char *msg, size_t len, const char *key,
479 const char **next_line)
481 int key_len = strlen(key);
482 const char *line = msg;
484 while (line && line < msg + len) {
485 const char *eol = strchrnul(line, '\n');
487 if ((msg + len <= eol) || line == eol)
489 if (line + key_len < eol &&
490 !memcmp(line, key, key_len) && line[key_len] == ' ') {
491 int offset = key_len + 1;
493 *next_line = *eol ? eol + 1 : eol;
494 return xmemdupz(line + offset, (eol - line) - offset);
496 line = *eol ? eol + 1 : NULL;
501 static const char *check_nonce(const char *buf, size_t len)
503 char *nonce = find_header(buf, len, "nonce", NULL);
504 timestamp_t stamp, ostamp;
505 char *bohmac, *expect = NULL;
506 const char *retval = NONCE_BAD;
509 retval = NONCE_MISSING;
511 } else if (!push_cert_nonce) {
512 retval = NONCE_UNSOLICITED;
514 } else if (!strcmp(push_cert_nonce, nonce)) {
519 if (!stateless_rpc) {
520 /* returned nonce MUST match what we gave out earlier */
526 * In stateless mode, we may be receiving a nonce issued by
527 * another instance of the server that serving the same
528 * repository, and the timestamps may not match, but the
529 * nonce-seed and dir should match, so we can recompute and
530 * report the time slop.
532 * In addition, when a nonce issued by another instance has
533 * timestamp within receive.certnonceslop seconds, we pretend
534 * as if we issued that nonce when reporting to the hook.
537 /* nonce is concat(<seconds-since-epoch>, "-", <hmac>) */
538 if (*nonce <= '0' || '9' < *nonce) {
542 stamp = parse_timestamp(nonce, &bohmac, 10);
543 if (bohmac == nonce || bohmac[0] != '-') {
548 expect = prepare_push_cert_nonce(service_dir, stamp);
549 if (strcmp(expect, nonce)) {
550 /* Not what we would have signed earlier */
556 * By how many seconds is this nonce stale? Negative value
557 * would mean it was issued by another server with its clock
558 * skewed in the future.
560 ostamp = parse_timestamp(push_cert_nonce, NULL, 10);
561 nonce_stamp_slop = (long)ostamp - (long)stamp;
563 if (nonce_stamp_slop_limit &&
564 labs(nonce_stamp_slop) <= nonce_stamp_slop_limit) {
566 * Pretend as if the received nonce (which passes the
567 * HMAC check, so it is not a forged by third-party)
570 free((void *)push_cert_nonce);
571 push_cert_nonce = xstrdup(nonce);
584 * Return 1 if there is no push_cert or if the push options in push_cert are
585 * the same as those in the argument; 0 otherwise.
587 static int check_cert_push_options(const struct string_list *push_options)
589 const char *buf = push_cert.buf;
590 int len = push_cert.len;
593 const char *next_line;
594 int options_seen = 0;
601 while ((option = find_header(buf, len, "push-option", &next_line))) {
602 len -= (next_line - buf);
605 if (options_seen > push_options->nr
607 push_options->items[options_seen - 1].string)) {
614 if (options_seen != push_options->nr)
622 static void prepare_push_cert_sha1(struct child_process *proc)
624 static int already_done;
630 struct strbuf gpg_output = STRBUF_INIT;
631 struct strbuf gpg_status = STRBUF_INIT;
632 int bogs /* beginning_of_gpg_sig */;
635 if (write_sha1_file(push_cert.buf, push_cert.len, "blob", push_cert_sha1))
636 hashclr(push_cert_sha1);
638 memset(&sigcheck, '\0', sizeof(sigcheck));
639 sigcheck.result = 'N';
641 bogs = parse_signature(push_cert.buf, push_cert.len);
642 if (verify_signed_buffer(push_cert.buf, bogs,
643 push_cert.buf + bogs, push_cert.len - bogs,
644 &gpg_output, &gpg_status) < 0) {
645 ; /* error running gpg */
647 sigcheck.payload = push_cert.buf;
648 sigcheck.gpg_output = gpg_output.buf;
649 sigcheck.gpg_status = gpg_status.buf;
650 parse_gpg_output(&sigcheck);
653 strbuf_release(&gpg_output);
654 strbuf_release(&gpg_status);
655 nonce_status = check_nonce(push_cert.buf, bogs);
657 if (!is_null_sha1(push_cert_sha1)) {
658 argv_array_pushf(&proc->env_array, "GIT_PUSH_CERT=%s",
659 sha1_to_hex(push_cert_sha1));
660 argv_array_pushf(&proc->env_array, "GIT_PUSH_CERT_SIGNER=%s",
661 sigcheck.signer ? sigcheck.signer : "");
662 argv_array_pushf(&proc->env_array, "GIT_PUSH_CERT_KEY=%s",
663 sigcheck.key ? sigcheck.key : "");
664 argv_array_pushf(&proc->env_array, "GIT_PUSH_CERT_STATUS=%c",
666 if (push_cert_nonce) {
667 argv_array_pushf(&proc->env_array,
668 "GIT_PUSH_CERT_NONCE=%s",
670 argv_array_pushf(&proc->env_array,
671 "GIT_PUSH_CERT_NONCE_STATUS=%s",
673 if (nonce_status == NONCE_SLOP)
674 argv_array_pushf(&proc->env_array,
675 "GIT_PUSH_CERT_NONCE_SLOP=%ld",
681 struct receive_hook_feed_state {
685 const struct string_list *push_options;
688 typedef int (*feed_fn)(void *, const char **, size_t *);
689 static int run_and_feed_hook(const char *hook_name, feed_fn feed,
690 struct receive_hook_feed_state *feed_state)
692 struct child_process proc = CHILD_PROCESS_INIT;
697 argv[0] = find_hook(hook_name);
705 proc.stdout_to_stderr = 1;
706 if (feed_state->push_options) {
708 for (i = 0; i < feed_state->push_options->nr; i++)
709 argv_array_pushf(&proc.env_array,
710 "GIT_PUSH_OPTION_%d=%s", i,
711 feed_state->push_options->items[i].string);
712 argv_array_pushf(&proc.env_array, "GIT_PUSH_OPTION_COUNT=%d",
713 feed_state->push_options->nr);
715 argv_array_pushf(&proc.env_array, "GIT_PUSH_OPTION_COUNT");
718 argv_array_pushv(&proc.env_array, tmp_objdir_env(tmp_objdir));
721 memset(&muxer, 0, sizeof(muxer));
722 muxer.proc = copy_to_sideband;
724 code = start_async(&muxer);
730 prepare_push_cert_sha1(&proc);
732 code = start_command(&proc);
735 finish_async(&muxer);
739 sigchain_push(SIGPIPE, SIG_IGN);
744 if (feed(feed_state, &buf, &n))
746 if (write_in_full(proc.in, buf, n) < 0)
751 finish_async(&muxer);
753 sigchain_pop(SIGPIPE);
755 return finish_command(&proc);
758 static int feed_receive_hook(void *state_, const char **bufp, size_t *sizep)
760 struct receive_hook_feed_state *state = state_;
761 struct command *cmd = state->cmd;
764 state->skip_broken && (cmd->error_string || cmd->did_not_exist))
768 strbuf_reset(&state->buf);
769 strbuf_addf(&state->buf, "%s %s %s\n",
770 oid_to_hex(&cmd->old_oid), oid_to_hex(&cmd->new_oid),
772 state->cmd = cmd->next;
774 *bufp = state->buf.buf;
775 *sizep = state->buf.len;
780 static int run_receive_hook(struct command *commands,
781 const char *hook_name,
783 const struct string_list *push_options)
785 struct receive_hook_feed_state state;
788 strbuf_init(&state.buf, 0);
789 state.cmd = commands;
790 state.skip_broken = skip_broken;
791 if (feed_receive_hook(&state, NULL, NULL))
793 state.cmd = commands;
794 state.push_options = push_options;
795 status = run_and_feed_hook(hook_name, feed_receive_hook, &state);
796 strbuf_release(&state.buf);
800 static int run_update_hook(struct command *cmd)
803 struct child_process proc = CHILD_PROCESS_INIT;
806 argv[0] = find_hook("update");
810 argv[1] = cmd->ref_name;
811 argv[2] = oid_to_hex(&cmd->old_oid);
812 argv[3] = oid_to_hex(&cmd->new_oid);
816 proc.stdout_to_stderr = 1;
817 proc.err = use_sideband ? -1 : 0;
820 code = start_command(&proc);
824 copy_to_sideband(proc.err, -1, NULL);
825 return finish_command(&proc);
828 static int is_ref_checked_out(const char *ref)
830 if (is_bare_repository())
835 return !strcmp(head_name, ref);
838 static char *refuse_unconfigured_deny_msg =
839 N_("By default, updating the current branch in a non-bare repository\n"
840 "is denied, because it will make the index and work tree inconsistent\n"
841 "with what you pushed, and will require 'git reset --hard' to match\n"
842 "the work tree to HEAD.\n"
844 "You can set the 'receive.denyCurrentBranch' configuration variable\n"
845 "to 'ignore' or 'warn' in the remote repository to allow pushing into\n"
846 "its current branch; however, this is not recommended unless you\n"
847 "arranged to update its work tree to match what you pushed in some\n"
850 "To squelch this message and still keep the default behaviour, set\n"
851 "'receive.denyCurrentBranch' configuration variable to 'refuse'.");
853 static void refuse_unconfigured_deny(void)
855 rp_error("%s", _(refuse_unconfigured_deny_msg));
858 static char *refuse_unconfigured_deny_delete_current_msg =
859 N_("By default, deleting the current branch is denied, because the next\n"
860 "'git clone' won't result in any file checked out, causing confusion.\n"
862 "You can set 'receive.denyDeleteCurrent' configuration variable to\n"
863 "'warn' or 'ignore' in the remote repository to allow deleting the\n"
864 "current branch, with or without a warning message.\n"
866 "To squelch this message, you can set it to 'refuse'.");
868 static void refuse_unconfigured_deny_delete_current(void)
870 rp_error("%s", _(refuse_unconfigured_deny_delete_current_msg));
873 static int command_singleton_iterator(void *cb_data, unsigned char sha1[20]);
874 static int update_shallow_ref(struct command *cmd, struct shallow_info *si)
876 static struct lock_file shallow_lock;
877 struct oid_array extra = OID_ARRAY_INIT;
878 struct check_connected_options opt = CHECK_CONNECTED_INIT;
879 uint32_t mask = 1 << (cmd->index % 32);
882 trace_printf_key(&trace_shallow,
883 "shallow: update_shallow_ref %s\n", cmd->ref_name);
884 for (i = 0; i < si->shallow->nr; i++)
885 if (si->used_shallow[i] &&
886 (si->used_shallow[i][cmd->index / 32] & mask) &&
887 !delayed_reachability_test(si, i))
888 oid_array_append(&extra, &si->shallow->oid[i]);
890 opt.env = tmp_objdir_env(tmp_objdir);
891 setup_alternate_shallow(&shallow_lock, &opt.shallow_file, &extra);
892 if (check_connected(command_singleton_iterator, cmd, &opt)) {
893 rollback_lock_file(&shallow_lock);
894 oid_array_clear(&extra);
898 commit_lock_file(&shallow_lock);
901 * Make sure setup_alternate_shallow() for the next ref does
902 * not lose these new roots..
904 for (i = 0; i < extra.nr; i++)
905 register_shallow(&extra.oid[i]);
907 si->shallow_ref[cmd->index] = 0;
908 oid_array_clear(&extra);
913 * NEEDSWORK: we should consolidate various implementions of "are we
914 * on an unborn branch?" test into one, and make the unified one more
915 * robust. !get_sha1() based check used here and elsewhere would not
916 * allow us to tell an unborn branch from corrupt ref, for example.
917 * For the purpose of fixing "deploy-to-update does not work when
918 * pushing into an empty repository" issue, this should suffice for
921 static int head_has_history(void)
923 struct object_id oid;
925 return !get_oid("HEAD", &oid);
928 static const char *push_to_deploy(unsigned char *sha1,
929 struct argv_array *env,
930 const char *work_tree)
932 const char *update_refresh[] = {
933 "update-index", "-q", "--ignore-submodules", "--refresh", NULL
935 const char *diff_files[] = {
936 "diff-files", "--quiet", "--ignore-submodules", "--", NULL
938 const char *diff_index[] = {
939 "diff-index", "--quiet", "--cached", "--ignore-submodules",
942 const char *read_tree[] = {
943 "read-tree", "-u", "-m", NULL, NULL
945 struct child_process child = CHILD_PROCESS_INIT;
947 child.argv = update_refresh;
948 child.env = env->argv;
949 child.dir = work_tree;
951 child.stdout_to_stderr = 1;
953 if (run_command(&child))
954 return "Up-to-date check failed";
956 /* run_command() does not clean up completely; reinitialize */
957 child_process_init(&child);
958 child.argv = diff_files;
959 child.env = env->argv;
960 child.dir = work_tree;
962 child.stdout_to_stderr = 1;
964 if (run_command(&child))
965 return "Working directory has unstaged changes";
967 /* diff-index with either HEAD or an empty tree */
968 diff_index[4] = head_has_history() ? "HEAD" : EMPTY_TREE_SHA1_HEX;
970 child_process_init(&child);
971 child.argv = diff_index;
972 child.env = env->argv;
975 child.stdout_to_stderr = 0;
977 if (run_command(&child))
978 return "Working directory has staged changes";
980 read_tree[3] = sha1_to_hex(sha1);
981 child_process_init(&child);
982 child.argv = read_tree;
983 child.env = env->argv;
984 child.dir = work_tree;
987 child.stdout_to_stderr = 0;
989 if (run_command(&child))
990 return "Could not update working tree to new HEAD";
995 static const char *push_to_checkout_hook = "push-to-checkout";
997 static const char *push_to_checkout(unsigned char *sha1,
998 struct argv_array *env,
999 const char *work_tree)
1001 argv_array_pushf(env, "GIT_WORK_TREE=%s", absolute_path(work_tree));
1002 if (run_hook_le(env->argv, push_to_checkout_hook,
1003 sha1_to_hex(sha1), NULL))
1004 return "push-to-checkout hook declined";
1009 static const char *update_worktree(unsigned char *sha1)
1012 const char *work_tree = git_work_tree_cfg ? git_work_tree_cfg : "..";
1013 struct argv_array env = ARGV_ARRAY_INIT;
1015 if (is_bare_repository())
1016 return "denyCurrentBranch = updateInstead needs a worktree";
1018 argv_array_pushf(&env, "GIT_DIR=%s", absolute_path(get_git_dir()));
1020 if (!find_hook(push_to_checkout_hook))
1021 retval = push_to_deploy(sha1, &env, work_tree);
1023 retval = push_to_checkout(sha1, &env, work_tree);
1025 argv_array_clear(&env);
1029 static const char *update(struct command *cmd, struct shallow_info *si)
1031 const char *name = cmd->ref_name;
1032 struct strbuf namespaced_name_buf = STRBUF_INIT;
1033 static char *namespaced_name;
1035 struct object_id *old_oid = &cmd->old_oid;
1036 struct object_id *new_oid = &cmd->new_oid;
1038 /* only refs/... are allowed */
1039 if (!starts_with(name, "refs/") || check_refname_format(name + 5, 0)) {
1040 rp_error("refusing to create funny ref '%s' remotely", name);
1041 return "funny refname";
1044 strbuf_addf(&namespaced_name_buf, "%s%s", get_git_namespace(), name);
1045 free(namespaced_name);
1046 namespaced_name = strbuf_detach(&namespaced_name_buf, NULL);
1048 if (is_ref_checked_out(namespaced_name)) {
1049 switch (deny_current_branch) {
1053 rp_warning("updating the current branch");
1056 case DENY_UNCONFIGURED:
1057 rp_error("refusing to update checked out branch: %s", name);
1058 if (deny_current_branch == DENY_UNCONFIGURED)
1059 refuse_unconfigured_deny();
1060 return "branch is currently checked out";
1061 case DENY_UPDATE_INSTEAD:
1062 ret = update_worktree(new_oid->hash);
1069 if (!is_null_oid(new_oid) && !has_object_file(new_oid)) {
1070 error("unpack should have generated %s, "
1071 "but I can't find it!", oid_to_hex(new_oid));
1075 if (!is_null_oid(old_oid) && is_null_oid(new_oid)) {
1076 if (deny_deletes && starts_with(name, "refs/heads/")) {
1077 rp_error("denying ref deletion for %s", name);
1078 return "deletion prohibited";
1081 if (head_name && !strcmp(namespaced_name, head_name)) {
1082 switch (deny_delete_current) {
1086 rp_warning("deleting the current branch");
1089 case DENY_UNCONFIGURED:
1090 case DENY_UPDATE_INSTEAD:
1091 if (deny_delete_current == DENY_UNCONFIGURED)
1092 refuse_unconfigured_deny_delete_current();
1093 rp_error("refusing to delete the current branch: %s", name);
1094 return "deletion of the current branch prohibited";
1096 return "Invalid denyDeleteCurrent setting";
1101 if (deny_non_fast_forwards && !is_null_oid(new_oid) &&
1102 !is_null_oid(old_oid) &&
1103 starts_with(name, "refs/heads/")) {
1104 struct object *old_object, *new_object;
1105 struct commit *old_commit, *new_commit;
1107 old_object = parse_object(old_oid);
1108 new_object = parse_object(new_oid);
1110 if (!old_object || !new_object ||
1111 old_object->type != OBJ_COMMIT ||
1112 new_object->type != OBJ_COMMIT) {
1113 error("bad sha1 objects for %s", name);
1116 old_commit = (struct commit *)old_object;
1117 new_commit = (struct commit *)new_object;
1118 if (!in_merge_bases(old_commit, new_commit)) {
1119 rp_error("denying non-fast-forward %s"
1120 " (you should pull first)", name);
1121 return "non-fast-forward";
1124 if (run_update_hook(cmd)) {
1125 rp_error("hook declined to update %s", name);
1126 return "hook declined";
1129 if (is_null_oid(new_oid)) {
1130 struct strbuf err = STRBUF_INIT;
1131 if (!parse_object(old_oid)) {
1133 if (ref_exists(name)) {
1134 rp_warning("Allowing deletion of corrupt ref.");
1136 rp_warning("Deleting a non-existent ref.");
1137 cmd->did_not_exist = 1;
1140 if (ref_transaction_delete(transaction,
1142 old_oid ? old_oid->hash : NULL,
1144 rp_error("%s", err.buf);
1145 strbuf_release(&err);
1146 return "failed to delete";
1148 strbuf_release(&err);
1149 return NULL; /* good */
1152 struct strbuf err = STRBUF_INIT;
1153 if (shallow_update && si->shallow_ref[cmd->index] &&
1154 update_shallow_ref(cmd, si))
1155 return "shallow error";
1157 if (ref_transaction_update(transaction,
1159 new_oid->hash, old_oid->hash,
1162 rp_error("%s", err.buf);
1163 strbuf_release(&err);
1165 return "failed to update ref";
1167 strbuf_release(&err);
1169 return NULL; /* good */
1173 static void run_update_post_hook(struct command *commands)
1175 struct command *cmd;
1176 struct child_process proc = CHILD_PROCESS_INIT;
1179 hook = find_hook("post-update");
1183 for (cmd = commands; cmd; cmd = cmd->next) {
1184 if (cmd->error_string || cmd->did_not_exist)
1186 if (!proc.args.argc)
1187 argv_array_push(&proc.args, hook);
1188 argv_array_push(&proc.args, cmd->ref_name);
1190 if (!proc.args.argc)
1194 proc.stdout_to_stderr = 1;
1195 proc.err = use_sideband ? -1 : 0;
1197 if (!start_command(&proc)) {
1199 copy_to_sideband(proc.err, -1, NULL);
1200 finish_command(&proc);
1204 static void check_aliased_update(struct command *cmd, struct string_list *list)
1206 struct strbuf buf = STRBUF_INIT;
1207 const char *dst_name;
1208 struct string_list_item *item;
1209 struct command *dst_cmd;
1210 unsigned char sha1[GIT_MAX_RAWSZ];
1213 strbuf_addf(&buf, "%s%s", get_git_namespace(), cmd->ref_name);
1214 dst_name = resolve_ref_unsafe(buf.buf, 0, sha1, &flag);
1215 strbuf_release(&buf);
1217 if (!(flag & REF_ISSYMREF))
1221 rp_error("refusing update to broken symref '%s'", cmd->ref_name);
1222 cmd->skip_update = 1;
1223 cmd->error_string = "broken symref";
1226 dst_name = strip_namespace(dst_name);
1228 if ((item = string_list_lookup(list, dst_name)) == NULL)
1231 cmd->skip_update = 1;
1233 dst_cmd = (struct command *) item->util;
1235 if (!oidcmp(&cmd->old_oid, &dst_cmd->old_oid) &&
1236 !oidcmp(&cmd->new_oid, &dst_cmd->new_oid))
1239 dst_cmd->skip_update = 1;
1241 rp_error("refusing inconsistent update between symref '%s' (%s..%s) and"
1242 " its target '%s' (%s..%s)",
1244 find_unique_abbrev(cmd->old_oid.hash, DEFAULT_ABBREV),
1245 find_unique_abbrev(cmd->new_oid.hash, DEFAULT_ABBREV),
1247 find_unique_abbrev(dst_cmd->old_oid.hash, DEFAULT_ABBREV),
1248 find_unique_abbrev(dst_cmd->new_oid.hash, DEFAULT_ABBREV));
1250 cmd->error_string = dst_cmd->error_string =
1251 "inconsistent aliased update";
1254 static void check_aliased_updates(struct command *commands)
1256 struct command *cmd;
1257 struct string_list ref_list = STRING_LIST_INIT_NODUP;
1259 for (cmd = commands; cmd; cmd = cmd->next) {
1260 struct string_list_item *item =
1261 string_list_append(&ref_list, cmd->ref_name);
1262 item->util = (void *)cmd;
1264 string_list_sort(&ref_list);
1266 for (cmd = commands; cmd; cmd = cmd->next) {
1267 if (!cmd->error_string)
1268 check_aliased_update(cmd, &ref_list);
1271 string_list_clear(&ref_list, 0);
1274 static int command_singleton_iterator(void *cb_data, unsigned char sha1[20])
1276 struct command **cmd_list = cb_data;
1277 struct command *cmd = *cmd_list;
1279 if (!cmd || is_null_oid(&cmd->new_oid))
1280 return -1; /* end of list */
1281 *cmd_list = NULL; /* this returns only one */
1282 hashcpy(sha1, cmd->new_oid.hash);
1286 static void set_connectivity_errors(struct command *commands,
1287 struct shallow_info *si)
1289 struct command *cmd;
1291 for (cmd = commands; cmd; cmd = cmd->next) {
1292 struct command *singleton = cmd;
1293 struct check_connected_options opt = CHECK_CONNECTED_INIT;
1295 if (shallow_update && si->shallow_ref[cmd->index])
1296 /* to be checked in update_shallow_ref() */
1299 opt.env = tmp_objdir_env(tmp_objdir);
1300 if (!check_connected(command_singleton_iterator, &singleton,
1304 cmd->error_string = "missing necessary objects";
1308 struct iterate_data {
1309 struct command *cmds;
1310 struct shallow_info *si;
1313 static int iterate_receive_command_list(void *cb_data, unsigned char sha1[20])
1315 struct iterate_data *data = cb_data;
1316 struct command **cmd_list = &data->cmds;
1317 struct command *cmd = *cmd_list;
1319 for (; cmd; cmd = cmd->next) {
1320 if (shallow_update && data->si->shallow_ref[cmd->index])
1321 /* to be checked in update_shallow_ref() */
1323 if (!is_null_oid(&cmd->new_oid) && !cmd->skip_update) {
1324 hashcpy(sha1, cmd->new_oid.hash);
1325 *cmd_list = cmd->next;
1330 return -1; /* end of list */
1333 static void reject_updates_to_hidden(struct command *commands)
1335 struct strbuf refname_full = STRBUF_INIT;
1337 struct command *cmd;
1339 strbuf_addstr(&refname_full, get_git_namespace());
1340 prefix_len = refname_full.len;
1342 for (cmd = commands; cmd; cmd = cmd->next) {
1343 if (cmd->error_string)
1346 strbuf_setlen(&refname_full, prefix_len);
1347 strbuf_addstr(&refname_full, cmd->ref_name);
1349 if (!ref_is_hidden(cmd->ref_name, refname_full.buf))
1351 if (is_null_oid(&cmd->new_oid))
1352 cmd->error_string = "deny deleting a hidden ref";
1354 cmd->error_string = "deny updating a hidden ref";
1357 strbuf_release(&refname_full);
1360 static int should_process_cmd(struct command *cmd)
1362 return !cmd->error_string && !cmd->skip_update;
1365 static void warn_if_skipped_connectivity_check(struct command *commands,
1366 struct shallow_info *si)
1368 struct command *cmd;
1369 int checked_connectivity = 1;
1371 for (cmd = commands; cmd; cmd = cmd->next) {
1372 if (should_process_cmd(cmd) && si->shallow_ref[cmd->index]) {
1373 error("BUG: connectivity check has not been run on ref %s",
1375 checked_connectivity = 0;
1378 if (!checked_connectivity)
1379 die("BUG: connectivity check skipped???");
1382 static void execute_commands_non_atomic(struct command *commands,
1383 struct shallow_info *si)
1385 struct command *cmd;
1386 struct strbuf err = STRBUF_INIT;
1388 for (cmd = commands; cmd; cmd = cmd->next) {
1389 if (!should_process_cmd(cmd))
1392 transaction = ref_transaction_begin(&err);
1394 rp_error("%s", err.buf);
1396 cmd->error_string = "transaction failed to start";
1400 cmd->error_string = update(cmd, si);
1402 if (!cmd->error_string
1403 && ref_transaction_commit(transaction, &err)) {
1404 rp_error("%s", err.buf);
1406 cmd->error_string = "failed to update ref";
1408 ref_transaction_free(transaction);
1410 strbuf_release(&err);
1413 static void execute_commands_atomic(struct command *commands,
1414 struct shallow_info *si)
1416 struct command *cmd;
1417 struct strbuf err = STRBUF_INIT;
1418 const char *reported_error = "atomic push failure";
1420 transaction = ref_transaction_begin(&err);
1422 rp_error("%s", err.buf);
1424 reported_error = "transaction failed to start";
1428 for (cmd = commands; cmd; cmd = cmd->next) {
1429 if (!should_process_cmd(cmd))
1432 cmd->error_string = update(cmd, si);
1434 if (cmd->error_string)
1438 if (ref_transaction_commit(transaction, &err)) {
1439 rp_error("%s", err.buf);
1440 reported_error = "atomic transaction failed";
1446 for (cmd = commands; cmd; cmd = cmd->next)
1447 if (!cmd->error_string)
1448 cmd->error_string = reported_error;
1451 ref_transaction_free(transaction);
1452 strbuf_release(&err);
1455 static void execute_commands(struct command *commands,
1456 const char *unpacker_error,
1457 struct shallow_info *si,
1458 const struct string_list *push_options)
1460 struct check_connected_options opt = CHECK_CONNECTED_INIT;
1461 struct command *cmd;
1462 struct object_id oid;
1463 struct iterate_data data;
1467 if (unpacker_error) {
1468 for (cmd = commands; cmd; cmd = cmd->next)
1469 cmd->error_string = "unpacker error";
1474 memset(&muxer, 0, sizeof(muxer));
1475 muxer.proc = copy_to_sideband;
1477 if (!start_async(&muxer))
1479 /* ...else, continue without relaying sideband */
1482 data.cmds = commands;
1484 opt.err_fd = err_fd;
1485 opt.progress = err_fd && !quiet;
1486 opt.env = tmp_objdir_env(tmp_objdir);
1487 if (check_connected(iterate_receive_command_list, &data, &opt))
1488 set_connectivity_errors(commands, si);
1491 finish_async(&muxer);
1493 reject_updates_to_hidden(commands);
1495 if (run_receive_hook(commands, "pre-receive", 0, push_options)) {
1496 for (cmd = commands; cmd; cmd = cmd->next) {
1497 if (!cmd->error_string)
1498 cmd->error_string = "pre-receive hook declined";
1504 * Now we'll start writing out refs, which means the objects need
1505 * to be in their final positions so that other processes can see them.
1507 if (tmp_objdir_migrate(tmp_objdir) < 0) {
1508 for (cmd = commands; cmd; cmd = cmd->next) {
1509 if (!cmd->error_string)
1510 cmd->error_string = "unable to migrate objects to permanent storage";
1516 check_aliased_updates(commands);
1518 free(head_name_to_free);
1519 head_name = head_name_to_free = resolve_refdup("HEAD", 0, oid.hash, NULL);
1522 execute_commands_atomic(commands, si);
1524 execute_commands_non_atomic(commands, si);
1527 warn_if_skipped_connectivity_check(commands, si);
1530 static struct command **queue_command(struct command **tail,
1534 struct object_id old_oid, new_oid;
1535 struct command *cmd;
1536 const char *refname;
1540 if (parse_oid_hex(line, &old_oid, &p) ||
1542 parse_oid_hex(p, &new_oid, &p) ||
1544 die("protocol error: expected old/new/ref, got '%s'", line);
1547 reflen = linelen - (p - line);
1548 FLEX_ALLOC_MEM(cmd, ref_name, refname, reflen);
1549 oidcpy(&cmd->old_oid, &old_oid);
1550 oidcpy(&cmd->new_oid, &new_oid);
1555 static void queue_commands_from_cert(struct command **tail,
1556 struct strbuf *push_cert)
1558 const char *boc, *eoc;
1561 die("protocol error: got both push certificate and unsigned commands");
1563 boc = strstr(push_cert->buf, "\n\n");
1565 die("malformed push certificate %.*s", 100, push_cert->buf);
1568 eoc = push_cert->buf + parse_signature(push_cert->buf, push_cert->len);
1571 const char *eol = memchr(boc, '\n', eoc - boc);
1572 tail = queue_command(tail, boc, eol ? eol - boc : eoc - boc);
1573 boc = eol ? eol + 1 : eoc;
1577 static struct command *read_head_info(struct oid_array *shallow)
1579 struct command *commands = NULL;
1580 struct command **p = &commands;
1585 line = packet_read_line(0, &len);
1589 if (len > 8 && starts_with(line, "shallow ")) {
1590 struct object_id oid;
1591 if (get_oid_hex(line + 8, &oid))
1592 die("protocol error: expected shallow sha, got '%s'",
1594 oid_array_append(shallow, &oid);
1598 linelen = strlen(line);
1599 if (linelen < len) {
1600 const char *feature_list = line + linelen + 1;
1601 if (parse_feature_request(feature_list, "report-status"))
1603 if (parse_feature_request(feature_list, "side-band-64k"))
1604 use_sideband = LARGE_PACKET_MAX;
1605 if (parse_feature_request(feature_list, "quiet"))
1607 if (advertise_atomic_push
1608 && parse_feature_request(feature_list, "atomic"))
1610 if (advertise_push_options
1611 && parse_feature_request(feature_list, "push-options"))
1612 use_push_options = 1;
1615 if (!strcmp(line, "push-cert")) {
1620 len = packet_read(0, NULL, NULL,
1621 certbuf, sizeof(certbuf), 0);
1626 if (!strcmp(certbuf, "push-cert-end\n"))
1627 break; /* end of cert */
1628 strbuf_addstr(&push_cert, certbuf);
1636 p = queue_command(p, line, linelen);
1640 queue_commands_from_cert(p, &push_cert);
1645 static void read_push_options(struct string_list *options)
1651 line = packet_read_line(0, &len);
1656 string_list_append(options, line);
1660 static const char *parse_pack_header(struct pack_header *hdr)
1662 switch (read_pack_header(0, hdr)) {
1664 return "eof before pack header was fully read";
1666 case PH_ERROR_PACK_SIGNATURE:
1667 return "protocol error (pack signature mismatch detected)";
1669 case PH_ERROR_PROTOCOL:
1670 return "protocol error (pack version unsupported)";
1673 return "unknown error in parse_pack_header";
1680 static const char *pack_lockfile;
1682 static void push_header_arg(struct argv_array *args, struct pack_header *hdr)
1684 argv_array_pushf(args, "--pack_header=%"PRIu32",%"PRIu32,
1685 ntohl(hdr->hdr_version), ntohl(hdr->hdr_entries));
1688 static const char *unpack(int err_fd, struct shallow_info *si)
1690 struct pack_header hdr;
1691 const char *hdr_err;
1693 struct child_process child = CHILD_PROCESS_INIT;
1694 int fsck_objects = (receive_fsck_objects >= 0
1695 ? receive_fsck_objects
1696 : transfer_fsck_objects >= 0
1697 ? transfer_fsck_objects
1700 hdr_err = parse_pack_header(&hdr);
1707 if (si->nr_ours || si->nr_theirs) {
1708 alt_shallow_file = setup_temporary_shallow(si->shallow);
1709 argv_array_push(&child.args, "--shallow-file");
1710 argv_array_push(&child.args, alt_shallow_file);
1713 tmp_objdir = tmp_objdir_create();
1717 return "unable to create temporary object directory";
1719 child.env = tmp_objdir_env(tmp_objdir);
1722 * Normally we just pass the tmp_objdir environment to the child
1723 * processes that do the heavy lifting, but we may need to see these
1724 * objects ourselves to set up shallow information.
1726 tmp_objdir_add_as_alternate(tmp_objdir);
1728 if (ntohl(hdr.hdr_entries) < unpack_limit) {
1729 argv_array_push(&child.args, "unpack-objects");
1730 push_header_arg(&child.args, &hdr);
1732 argv_array_push(&child.args, "-q");
1734 argv_array_pushf(&child.args, "--strict%s",
1735 fsck_msg_types.buf);
1737 argv_array_pushf(&child.args, "--max-input-size=%"PRIuMAX,
1738 (uintmax_t)max_input_size);
1739 child.no_stdout = 1;
1742 status = run_command(&child);
1744 return "unpack-objects abnormal exit";
1746 char hostname[HOST_NAME_MAX + 1];
1748 argv_array_pushl(&child.args, "index-pack", "--stdin", NULL);
1749 push_header_arg(&child.args, &hdr);
1751 if (xgethostname(hostname, sizeof(hostname)))
1752 xsnprintf(hostname, sizeof(hostname), "localhost");
1753 argv_array_pushf(&child.args,
1754 "--keep=receive-pack %"PRIuMAX" on %s",
1755 (uintmax_t)getpid(),
1758 if (!quiet && err_fd)
1759 argv_array_push(&child.args, "--show-resolving-progress");
1761 argv_array_push(&child.args, "--report-end-of-input");
1763 argv_array_pushf(&child.args, "--strict%s",
1764 fsck_msg_types.buf);
1766 argv_array_push(&child.args, "--fix-thin");
1768 argv_array_pushf(&child.args, "--max-input-size=%"PRIuMAX,
1769 (uintmax_t)max_input_size);
1773 status = start_command(&child);
1775 return "index-pack fork failed";
1776 pack_lockfile = index_pack_lockfile(child.out);
1778 status = finish_command(&child);
1780 return "index-pack abnormal exit";
1781 reprepare_packed_git();
1786 static const char *unpack_with_sideband(struct shallow_info *si)
1792 return unpack(0, si);
1794 use_keepalive = KEEPALIVE_AFTER_NUL;
1795 memset(&muxer, 0, sizeof(muxer));
1796 muxer.proc = copy_to_sideband;
1798 if (start_async(&muxer))
1801 ret = unpack(muxer.in, si);
1803 finish_async(&muxer);
1807 static void prepare_shallow_update(struct command *commands,
1808 struct shallow_info *si)
1810 int i, j, k, bitmap_size = DIV_ROUND_UP(si->ref->nr, 32);
1812 ALLOC_ARRAY(si->used_shallow, si->shallow->nr);
1813 assign_shallow_commits_to_refs(si, si->used_shallow, NULL);
1815 si->need_reachability_test =
1816 xcalloc(si->shallow->nr, sizeof(*si->need_reachability_test));
1818 xcalloc(si->shallow->nr, sizeof(*si->reachable));
1819 si->shallow_ref = xcalloc(si->ref->nr, sizeof(*si->shallow_ref));
1821 for (i = 0; i < si->nr_ours; i++)
1822 si->need_reachability_test[si->ours[i]] = 1;
1824 for (i = 0; i < si->shallow->nr; i++) {
1825 if (!si->used_shallow[i])
1827 for (j = 0; j < bitmap_size; j++) {
1828 if (!si->used_shallow[i][j])
1830 si->need_reachability_test[i]++;
1831 for (k = 0; k < 32; k++)
1832 if (si->used_shallow[i][j] & (1U << k))
1833 si->shallow_ref[j * 32 + k]++;
1837 * true for those associated with some refs and belong
1838 * in "ours" list aka "step 7 not done yet"
1840 si->need_reachability_test[i] =
1841 si->need_reachability_test[i] > 1;
1845 * keep hooks happy by forcing a temporary shallow file via
1846 * env variable because we can't add --shallow-file to every
1847 * command. check_everything_connected() will be done with
1848 * true .git/shallow though.
1850 setenv(GIT_SHALLOW_FILE_ENVIRONMENT, alt_shallow_file, 1);
1853 static void update_shallow_info(struct command *commands,
1854 struct shallow_info *si,
1855 struct oid_array *ref)
1857 struct command *cmd;
1859 remove_nonexistent_theirs_shallow(si);
1860 if (!si->nr_ours && !si->nr_theirs) {
1865 for (cmd = commands; cmd; cmd = cmd->next) {
1866 if (is_null_oid(&cmd->new_oid))
1868 oid_array_append(ref, &cmd->new_oid);
1869 cmd->index = ref->nr - 1;
1873 if (shallow_update) {
1874 prepare_shallow_update(commands, si);
1878 ALLOC_ARRAY(ref_status, ref->nr);
1879 assign_shallow_commits_to_refs(si, NULL, ref_status);
1880 for (cmd = commands; cmd; cmd = cmd->next) {
1881 if (is_null_oid(&cmd->new_oid))
1883 if (ref_status[cmd->index]) {
1884 cmd->error_string = "shallow update not allowed";
1885 cmd->skip_update = 1;
1891 static void report(struct command *commands, const char *unpack_status)
1893 struct command *cmd;
1894 struct strbuf buf = STRBUF_INIT;
1896 packet_buf_write(&buf, "unpack %s\n",
1897 unpack_status ? unpack_status : "ok");
1898 for (cmd = commands; cmd; cmd = cmd->next) {
1899 if (!cmd->error_string)
1900 packet_buf_write(&buf, "ok %s\n",
1903 packet_buf_write(&buf, "ng %s %s\n",
1904 cmd->ref_name, cmd->error_string);
1906 packet_buf_flush(&buf);
1909 send_sideband(1, 1, buf.buf, buf.len, use_sideband);
1911 write_or_die(1, buf.buf, buf.len);
1912 strbuf_release(&buf);
1915 static int delete_only(struct command *commands)
1917 struct command *cmd;
1918 for (cmd = commands; cmd; cmd = cmd->next) {
1919 if (!is_null_oid(&cmd->new_oid))
1925 int cmd_receive_pack(int argc, const char **argv, const char *prefix)
1927 int advertise_refs = 0;
1928 struct command *commands;
1929 struct oid_array shallow = OID_ARRAY_INIT;
1930 struct oid_array ref = OID_ARRAY_INIT;
1931 struct shallow_info si;
1933 struct option options[] = {
1934 OPT__QUIET(&quiet, N_("quiet")),
1935 OPT_HIDDEN_BOOL(0, "stateless-rpc", &stateless_rpc, NULL),
1936 OPT_HIDDEN_BOOL(0, "advertise-refs", &advertise_refs, NULL),
1937 OPT_HIDDEN_BOOL(0, "reject-thin-pack-for-testing", &reject_thin, NULL),
1941 packet_trace_identity("receive-pack");
1943 argc = parse_options(argc, argv, prefix, options, receive_pack_usage, 0);
1946 usage_msg_opt(_("Too many arguments."), receive_pack_usage, options);
1948 usage_msg_opt(_("You must specify a directory."), receive_pack_usage, options);
1950 service_dir = argv[0];
1954 if (!enter_repo(service_dir, 0))
1955 die("'%s' does not appear to be a git repository", service_dir);
1957 git_config(receive_pack_config, NULL);
1958 if (cert_nonce_seed)
1959 push_cert_nonce = prepare_push_cert_nonce(service_dir, time(NULL));
1961 if (0 <= transfer_unpack_limit)
1962 unpack_limit = transfer_unpack_limit;
1963 else if (0 <= receive_unpack_limit)
1964 unpack_limit = receive_unpack_limit;
1966 if (advertise_refs || !stateless_rpc) {
1972 if ((commands = read_head_info(&shallow)) != NULL) {
1973 const char *unpack_status = NULL;
1974 struct string_list push_options = STRING_LIST_INIT_DUP;
1976 if (use_push_options)
1977 read_push_options(&push_options);
1978 if (!check_cert_push_options(&push_options)) {
1979 struct command *cmd;
1980 for (cmd = commands; cmd; cmd = cmd->next)
1981 cmd->error_string = "inconsistent push options";
1984 prepare_shallow_info(&si, &shallow);
1985 if (!si.nr_ours && !si.nr_theirs)
1987 if (!delete_only(commands)) {
1988 unpack_status = unpack_with_sideband(&si);
1989 update_shallow_info(commands, &si, &ref);
1991 use_keepalive = KEEPALIVE_ALWAYS;
1992 execute_commands(commands, unpack_status, &si,
1995 unlink_or_warn(pack_lockfile);
1997 report(commands, unpack_status);
1998 run_receive_hook(commands, "post-receive", 1,
2000 run_update_post_hook(commands);
2001 string_list_clear(&push_options, 0);
2003 const char *argv_gc_auto[] = {
2004 "gc", "--auto", "--quiet", NULL,
2006 struct child_process proc = CHILD_PROCESS_INIT;
2009 proc.stdout_to_stderr = 1;
2010 proc.err = use_sideband ? -1 : 0;
2012 proc.argv = argv_gc_auto;
2015 if (!start_command(&proc)) {
2017 copy_to_sideband(proc.err, -1, NULL);
2018 finish_command(&proc);
2021 if (auto_update_server_info)
2022 update_server_info(0);
2023 clear_shallow_info(&si);
2027 oid_array_clear(&shallow);
2028 oid_array_clear(&ref);
2029 free((void *)push_cert_nonce);