2 #include "repository.h"
9 #include "run-command.h"
15 #include "string-list.h"
16 #include "oid-array.h"
17 #include "connected.h"
21 #include "gpg-interface.h"
24 #include "tmp-objdir.h"
27 #include "object-store.h"
29 #include "commit-reach.h"
33 static const char * const receive_pack_usage[] = {
34 N_("git receive-pack <git-dir>"),
46 static int deny_deletes;
47 static int deny_non_fast_forwards;
48 static enum deny_action deny_current_branch = DENY_UNCONFIGURED;
49 static enum deny_action deny_delete_current = DENY_UNCONFIGURED;
50 static int receive_fsck_objects = -1;
51 static int transfer_fsck_objects = -1;
52 static struct strbuf fsck_msg_types = STRBUF_INIT;
53 static int receive_unpack_limit = -1;
54 static int transfer_unpack_limit = -1;
55 static int advertise_atomic_push = 1;
56 static int advertise_push_options;
57 static int advertise_sid;
58 static int unpack_limit = 100;
59 static off_t max_input_size;
60 static int report_status;
61 static int report_status_v2;
62 static int use_sideband;
63 static int use_atomic;
64 static int use_push_options;
66 static int prefer_ofs_delta = 1;
67 static int auto_update_server_info;
68 static int auto_gc = 1;
69 static int reject_thin;
70 static int stateless_rpc;
71 static const char *service_dir;
72 static const char *head_name;
73 static void *head_name_to_free;
74 static int sent_capabilities;
75 static int shallow_update;
76 static const char *alt_shallow_file;
77 static struct strbuf push_cert = STRBUF_INIT;
78 static struct object_id push_cert_oid;
79 static struct signature_check sigcheck;
80 static const char *push_cert_nonce;
81 static const char *cert_nonce_seed;
83 static const char *NONCE_UNSOLICITED = "UNSOLICITED";
84 static const char *NONCE_BAD = "BAD";
85 static const char *NONCE_MISSING = "MISSING";
86 static const char *NONCE_OK = "OK";
87 static const char *NONCE_SLOP = "SLOP";
88 static const char *nonce_status;
89 static long nonce_stamp_slop;
90 static timestamp_t nonce_stamp_slop_limit;
91 static struct ref_transaction *transaction;
98 static int keepalive_in_sec = 5;
100 static struct tmp_objdir *tmp_objdir;
102 static struct proc_receive_ref {
103 unsigned int want_add:1,
108 struct proc_receive_ref *next;
111 static void proc_receive_ref_append(const char *prefix);
113 static enum deny_action parse_deny_action(const char *var, const char *value)
116 if (!strcasecmp(value, "ignore"))
118 if (!strcasecmp(value, "warn"))
120 if (!strcasecmp(value, "refuse"))
122 if (!strcasecmp(value, "updateinstead"))
123 return DENY_UPDATE_INSTEAD;
125 if (git_config_bool(var, value))
130 static int receive_pack_config(const char *var, const char *value, void *cb)
132 int status = parse_hide_refs_config(var, value, "receive");
137 if (strcmp(var, "receive.denydeletes") == 0) {
138 deny_deletes = git_config_bool(var, value);
142 if (strcmp(var, "receive.denynonfastforwards") == 0) {
143 deny_non_fast_forwards = git_config_bool(var, value);
147 if (strcmp(var, "receive.unpacklimit") == 0) {
148 receive_unpack_limit = git_config_int(var, value);
152 if (strcmp(var, "transfer.unpacklimit") == 0) {
153 transfer_unpack_limit = git_config_int(var, value);
157 if (strcmp(var, "receive.fsck.skiplist") == 0) {
160 if (git_config_pathname(&path, var, value))
162 strbuf_addf(&fsck_msg_types, "%cskiplist=%s",
163 fsck_msg_types.len ? ',' : '=', path);
168 if (skip_prefix(var, "receive.fsck.", &var)) {
169 if (is_valid_msg_type(var, value))
170 strbuf_addf(&fsck_msg_types, "%c%s=%s",
171 fsck_msg_types.len ? ',' : '=', var, value);
173 warning("Skipping unknown msg id '%s'", var);
177 if (strcmp(var, "receive.fsckobjects") == 0) {
178 receive_fsck_objects = git_config_bool(var, value);
182 if (strcmp(var, "transfer.fsckobjects") == 0) {
183 transfer_fsck_objects = git_config_bool(var, value);
187 if (!strcmp(var, "receive.denycurrentbranch")) {
188 deny_current_branch = parse_deny_action(var, value);
192 if (strcmp(var, "receive.denydeletecurrent") == 0) {
193 deny_delete_current = parse_deny_action(var, value);
197 if (strcmp(var, "repack.usedeltabaseoffset") == 0) {
198 prefer_ofs_delta = git_config_bool(var, value);
202 if (strcmp(var, "receive.updateserverinfo") == 0) {
203 auto_update_server_info = git_config_bool(var, value);
207 if (strcmp(var, "receive.autogc") == 0) {
208 auto_gc = git_config_bool(var, value);
212 if (strcmp(var, "receive.shallowupdate") == 0) {
213 shallow_update = git_config_bool(var, value);
217 if (strcmp(var, "receive.certnonceseed") == 0)
218 return git_config_string(&cert_nonce_seed, var, value);
220 if (strcmp(var, "receive.certnonceslop") == 0) {
221 nonce_stamp_slop_limit = git_config_ulong(var, value);
225 if (strcmp(var, "receive.advertiseatomic") == 0) {
226 advertise_atomic_push = git_config_bool(var, value);
230 if (strcmp(var, "receive.advertisepushoptions") == 0) {
231 advertise_push_options = git_config_bool(var, value);
235 if (strcmp(var, "receive.keepalive") == 0) {
236 keepalive_in_sec = git_config_int(var, value);
240 if (strcmp(var, "receive.maxinputsize") == 0) {
241 max_input_size = git_config_int64(var, value);
245 if (strcmp(var, "receive.procreceiverefs") == 0) {
247 return config_error_nonbool(var);
248 proc_receive_ref_append(value);
252 if (strcmp(var, "transfer.advertisesid") == 0) {
253 advertise_sid = git_config_bool(var, value);
257 return git_default_config(var, value, cb);
260 static void show_ref(const char *path, const struct object_id *oid)
262 if (sent_capabilities) {
263 packet_write_fmt(1, "%s %s\n", oid_to_hex(oid), path);
265 struct strbuf cap = STRBUF_INIT;
268 "report-status report-status-v2 delete-refs side-band-64k quiet");
269 if (advertise_atomic_push)
270 strbuf_addstr(&cap, " atomic");
271 if (prefer_ofs_delta)
272 strbuf_addstr(&cap, " ofs-delta");
274 strbuf_addf(&cap, " push-cert=%s", push_cert_nonce);
275 if (advertise_push_options)
276 strbuf_addstr(&cap, " push-options");
278 strbuf_addf(&cap, " session-id=%s", trace2_session_id());
279 strbuf_addf(&cap, " object-format=%s", the_hash_algo->name);
280 strbuf_addf(&cap, " agent=%s", git_user_agent_sanitized());
281 packet_write_fmt(1, "%s %s%c%s\n",
282 oid_to_hex(oid), path, 0, cap.buf);
283 strbuf_release(&cap);
284 sent_capabilities = 1;
288 static int show_ref_cb(const char *path_full, const struct object_id *oid,
289 int flag, void *data)
291 struct oidset *seen = data;
292 const char *path = strip_namespace(path_full);
294 if (ref_is_hidden(path, path_full))
298 * Advertise refs outside our current namespace as ".have"
299 * refs, so that the client can use them to minimize data
300 * transfer but will otherwise ignore them.
303 if (oidset_insert(seen, oid))
307 oidset_insert(seen, oid);
313 static void show_one_alternate_ref(const struct object_id *oid,
316 struct oidset *seen = data;
318 if (oidset_insert(seen, oid))
321 show_ref(".have", oid);
324 static void write_head_info(void)
326 static struct oidset seen = OIDSET_INIT;
328 for_each_ref(show_ref_cb, &seen);
329 for_each_alternate_ref(show_one_alternate_ref, &seen);
331 if (!sent_capabilities)
332 show_ref("capabilities^{}", &null_oid);
334 advertise_shallow_grafts(1);
340 #define RUN_PROC_RECEIVE_SCHEDULED 1
341 #define RUN_PROC_RECEIVE_RETURNED 2
343 struct command *next;
344 const char *error_string;
345 struct ref_push_report *report;
346 unsigned int skip_update:1,
350 struct object_id old_oid;
351 struct object_id new_oid;
352 char ref_name[FLEX_ARRAY]; /* more */
355 static void proc_receive_ref_append(const char *prefix)
357 struct proc_receive_ref *ref_pattern;
361 ref_pattern = xcalloc(1, sizeof(struct proc_receive_ref));
362 p = strchr(prefix, ':');
366 ref_pattern->want_add = 1;
367 else if (*prefix == 'd')
368 ref_pattern->want_delete = 1;
369 else if (*prefix == 'm')
370 ref_pattern->want_modify = 1;
371 else if (*prefix == '!')
372 ref_pattern->negative_ref = 1;
377 ref_pattern->want_add = 1;
378 ref_pattern->want_delete = 1;
379 ref_pattern->want_modify = 1;
381 len = strlen(prefix);
382 while (len && prefix[len - 1] == '/')
384 ref_pattern->ref_prefix = xmemdupz(prefix, len);
385 if (!proc_receive_ref) {
386 proc_receive_ref = ref_pattern;
388 struct proc_receive_ref *end;
390 end = proc_receive_ref;
393 end->next = ref_pattern;
397 static int proc_receive_ref_matches(struct command *cmd)
399 struct proc_receive_ref *p;
401 if (!proc_receive_ref)
404 for (p = proc_receive_ref; p; p = p->next) {
405 const char *match = p->ref_prefix;
408 if (!p->want_add && is_null_oid(&cmd->old_oid))
410 else if (!p->want_delete && is_null_oid(&cmd->new_oid))
412 else if (!p->want_modify &&
413 !is_null_oid(&cmd->old_oid) &&
414 !is_null_oid(&cmd->new_oid))
417 if (skip_prefix(cmd->ref_name, match, &remains) &&
418 (!*remains || *remains == '/')) {
419 if (!p->negative_ref)
421 } else if (p->negative_ref) {
428 static void rp_error(const char *err, ...) __attribute__((format (printf, 1, 2)));
429 static void rp_warning(const char *err, ...) __attribute__((format (printf, 1, 2)));
431 static void report_message(const char *prefix, const char *err, va_list params)
436 sz = xsnprintf(msg, sizeof(msg), "%s", prefix);
437 sz += vsnprintf(msg + sz, sizeof(msg) - sz, err, params);
438 if (sz > (sizeof(msg) - 1))
439 sz = sizeof(msg) - 1;
443 send_sideband(1, 2, msg, sz, use_sideband);
448 static void rp_warning(const char *err, ...)
451 va_start(params, err);
452 report_message("warning: ", err, params);
456 static void rp_error(const char *err, ...)
459 va_start(params, err);
460 report_message("error: ", err, params);
464 static int copy_to_sideband(int in, int out, void *arg)
467 int keepalive_active = 0;
469 if (keepalive_in_sec <= 0)
470 use_keepalive = KEEPALIVE_NEVER;
471 if (use_keepalive == KEEPALIVE_ALWAYS)
472 keepalive_active = 1;
477 if (keepalive_active) {
483 ret = poll(&pfd, 1, 1000 * keepalive_in_sec);
490 } else if (ret == 0) {
491 /* no data; send a keepalive packet */
492 static const char buf[] = "0005\1";
493 write_or_die(1, buf, sizeof(buf) - 1);
495 } /* else there is actual data to read */
498 sz = xread(in, data, sizeof(data));
502 if (use_keepalive == KEEPALIVE_AFTER_NUL && !keepalive_active) {
503 const char *p = memchr(data, '\0', sz);
506 * The NUL tells us to start sending keepalives. Make
507 * sure we send any other data we read along
510 keepalive_active = 1;
511 send_sideband(1, 2, data, p - data, use_sideband);
512 send_sideband(1, 2, p + 1, sz - (p - data + 1), use_sideband);
518 * Either we're not looking for a NUL signal, or we didn't see
519 * it yet; just pass along the data.
521 send_sideband(1, 2, data, sz, use_sideband);
527 static void hmac_hash(unsigned char *out,
528 const char *key_in, size_t key_len,
529 const char *text, size_t text_len)
531 unsigned char key[GIT_MAX_BLKSZ];
532 unsigned char k_ipad[GIT_MAX_BLKSZ];
533 unsigned char k_opad[GIT_MAX_BLKSZ];
537 /* RFC 2104 2. (1) */
538 memset(key, '\0', GIT_MAX_BLKSZ);
539 if (the_hash_algo->blksz < key_len) {
540 the_hash_algo->init_fn(&ctx);
541 the_hash_algo->update_fn(&ctx, key_in, key_len);
542 the_hash_algo->final_fn(key, &ctx);
544 memcpy(key, key_in, key_len);
547 /* RFC 2104 2. (2) & (5) */
548 for (i = 0; i < sizeof(key); i++) {
549 k_ipad[i] = key[i] ^ 0x36;
550 k_opad[i] = key[i] ^ 0x5c;
553 /* RFC 2104 2. (3) & (4) */
554 the_hash_algo->init_fn(&ctx);
555 the_hash_algo->update_fn(&ctx, k_ipad, sizeof(k_ipad));
556 the_hash_algo->update_fn(&ctx, text, text_len);
557 the_hash_algo->final_fn(out, &ctx);
559 /* RFC 2104 2. (6) & (7) */
560 the_hash_algo->init_fn(&ctx);
561 the_hash_algo->update_fn(&ctx, k_opad, sizeof(k_opad));
562 the_hash_algo->update_fn(&ctx, out, the_hash_algo->rawsz);
563 the_hash_algo->final_fn(out, &ctx);
566 static char *prepare_push_cert_nonce(const char *path, timestamp_t stamp)
568 struct strbuf buf = STRBUF_INIT;
569 unsigned char hash[GIT_MAX_RAWSZ];
571 strbuf_addf(&buf, "%s:%"PRItime, path, stamp);
572 hmac_hash(hash, buf.buf, buf.len, cert_nonce_seed, strlen(cert_nonce_seed));
573 strbuf_release(&buf);
575 /* RFC 2104 5. HMAC-SHA1 or HMAC-SHA256 */
576 strbuf_addf(&buf, "%"PRItime"-%.*s", stamp, (int)the_hash_algo->hexsz, hash_to_hex(hash));
577 return strbuf_detach(&buf, NULL);
581 * NEEDSWORK: reuse find_commit_header() from jk/commit-author-parsing
582 * after dropping "_commit" from its name and possibly moving it out
585 static char *find_header(const char *msg, size_t len, const char *key,
586 const char **next_line)
588 int key_len = strlen(key);
589 const char *line = msg;
591 while (line && line < msg + len) {
592 const char *eol = strchrnul(line, '\n');
594 if ((msg + len <= eol) || line == eol)
596 if (line + key_len < eol &&
597 !memcmp(line, key, key_len) && line[key_len] == ' ') {
598 int offset = key_len + 1;
600 *next_line = *eol ? eol + 1 : eol;
601 return xmemdupz(line + offset, (eol - line) - offset);
603 line = *eol ? eol + 1 : NULL;
609 * Return zero if a and b are equal up to n bytes and nonzero if they are not.
610 * This operation is guaranteed to run in constant time to avoid leaking data.
612 static int constant_memequal(const char *a, const char *b, size_t n)
617 for (i = 0; i < n; i++)
622 static const char *check_nonce(const char *buf, size_t len)
624 char *nonce = find_header(buf, len, "nonce", NULL);
625 timestamp_t stamp, ostamp;
626 char *bohmac, *expect = NULL;
627 const char *retval = NONCE_BAD;
631 retval = NONCE_MISSING;
633 } else if (!push_cert_nonce) {
634 retval = NONCE_UNSOLICITED;
636 } else if (!strcmp(push_cert_nonce, nonce)) {
641 if (!stateless_rpc) {
642 /* returned nonce MUST match what we gave out earlier */
648 * In stateless mode, we may be receiving a nonce issued by
649 * another instance of the server that serving the same
650 * repository, and the timestamps may not match, but the
651 * nonce-seed and dir should match, so we can recompute and
652 * report the time slop.
654 * In addition, when a nonce issued by another instance has
655 * timestamp within receive.certnonceslop seconds, we pretend
656 * as if we issued that nonce when reporting to the hook.
659 /* nonce is concat(<seconds-since-epoch>, "-", <hmac>) */
660 if (*nonce <= '0' || '9' < *nonce) {
664 stamp = parse_timestamp(nonce, &bohmac, 10);
665 if (bohmac == nonce || bohmac[0] != '-') {
670 noncelen = strlen(nonce);
671 expect = prepare_push_cert_nonce(service_dir, stamp);
672 if (noncelen != strlen(expect)) {
673 /* This is not even the right size. */
677 if (constant_memequal(expect, nonce, noncelen)) {
678 /* Not what we would have signed earlier */
684 * By how many seconds is this nonce stale? Negative value
685 * would mean it was issued by another server with its clock
686 * skewed in the future.
688 ostamp = parse_timestamp(push_cert_nonce, NULL, 10);
689 nonce_stamp_slop = (long)ostamp - (long)stamp;
691 if (nonce_stamp_slop_limit &&
692 labs(nonce_stamp_slop) <= nonce_stamp_slop_limit) {
694 * Pretend as if the received nonce (which passes the
695 * HMAC check, so it is not a forged by third-party)
698 free((void *)push_cert_nonce);
699 push_cert_nonce = xstrdup(nonce);
712 * Return 1 if there is no push_cert or if the push options in push_cert are
713 * the same as those in the argument; 0 otherwise.
715 static int check_cert_push_options(const struct string_list *push_options)
717 const char *buf = push_cert.buf;
718 int len = push_cert.len;
721 const char *next_line;
722 int options_seen = 0;
729 while ((option = find_header(buf, len, "push-option", &next_line))) {
730 len -= (next_line - buf);
733 if (options_seen > push_options->nr
735 push_options->items[options_seen - 1].string)) {
742 if (options_seen != push_options->nr)
750 static void prepare_push_cert_sha1(struct child_process *proc)
752 static int already_done;
758 int bogs /* beginning_of_gpg_sig */;
761 if (write_object_file(push_cert.buf, push_cert.len, "blob",
763 oidclr(&push_cert_oid);
765 memset(&sigcheck, '\0', sizeof(sigcheck));
767 bogs = parse_signature(push_cert.buf, push_cert.len);
768 check_signature(push_cert.buf, bogs, push_cert.buf + bogs,
769 push_cert.len - bogs, &sigcheck);
771 nonce_status = check_nonce(push_cert.buf, bogs);
773 if (!is_null_oid(&push_cert_oid)) {
774 strvec_pushf(&proc->env_array, "GIT_PUSH_CERT=%s",
775 oid_to_hex(&push_cert_oid));
776 strvec_pushf(&proc->env_array, "GIT_PUSH_CERT_SIGNER=%s",
777 sigcheck.signer ? sigcheck.signer : "");
778 strvec_pushf(&proc->env_array, "GIT_PUSH_CERT_KEY=%s",
779 sigcheck.key ? sigcheck.key : "");
780 strvec_pushf(&proc->env_array, "GIT_PUSH_CERT_STATUS=%c",
782 if (push_cert_nonce) {
783 strvec_pushf(&proc->env_array,
784 "GIT_PUSH_CERT_NONCE=%s",
786 strvec_pushf(&proc->env_array,
787 "GIT_PUSH_CERT_NONCE_STATUS=%s",
789 if (nonce_status == NONCE_SLOP)
790 strvec_pushf(&proc->env_array,
791 "GIT_PUSH_CERT_NONCE_SLOP=%ld",
797 struct receive_hook_feed_state {
799 struct ref_push_report *report;
802 const struct string_list *push_options;
805 typedef int (*feed_fn)(void *, const char **, size_t *);
806 static int run_and_feed_hook(const char *hook_name, feed_fn feed,
807 struct receive_hook_feed_state *feed_state)
809 struct child_process proc = CHILD_PROCESS_INIT;
814 argv[0] = find_hook(hook_name);
822 proc.stdout_to_stderr = 1;
823 proc.trace2_hook_name = hook_name;
825 if (feed_state->push_options) {
827 for (i = 0; i < feed_state->push_options->nr; i++)
828 strvec_pushf(&proc.env_array,
829 "GIT_PUSH_OPTION_%d=%s", i,
830 feed_state->push_options->items[i].string);
831 strvec_pushf(&proc.env_array, "GIT_PUSH_OPTION_COUNT=%d",
832 feed_state->push_options->nr);
834 strvec_pushf(&proc.env_array, "GIT_PUSH_OPTION_COUNT");
837 strvec_pushv(&proc.env_array, tmp_objdir_env(tmp_objdir));
840 memset(&muxer, 0, sizeof(muxer));
841 muxer.proc = copy_to_sideband;
843 code = start_async(&muxer);
849 prepare_push_cert_sha1(&proc);
851 code = start_command(&proc);
854 finish_async(&muxer);
858 sigchain_push(SIGPIPE, SIG_IGN);
863 if (feed(feed_state, &buf, &n))
865 if (write_in_full(proc.in, buf, n) < 0)
870 finish_async(&muxer);
872 sigchain_pop(SIGPIPE);
874 return finish_command(&proc);
877 static int feed_receive_hook(void *state_, const char **bufp, size_t *sizep)
879 struct receive_hook_feed_state *state = state_;
880 struct command *cmd = state->cmd;
883 state->skip_broken && (cmd->error_string || cmd->did_not_exist))
888 return 0; /* OK, can feed something. */
889 strbuf_reset(&state->buf);
891 state->report = cmd->report;
893 struct object_id *old_oid;
894 struct object_id *new_oid;
895 const char *ref_name;
897 old_oid = state->report->old_oid ? state->report->old_oid : &cmd->old_oid;
898 new_oid = state->report->new_oid ? state->report->new_oid : &cmd->new_oid;
899 ref_name = state->report->ref_name ? state->report->ref_name : cmd->ref_name;
900 strbuf_addf(&state->buf, "%s %s %s\n",
901 oid_to_hex(old_oid), oid_to_hex(new_oid),
903 state->report = state->report->next;
905 state->cmd = cmd->next;
907 strbuf_addf(&state->buf, "%s %s %s\n",
908 oid_to_hex(&cmd->old_oid), oid_to_hex(&cmd->new_oid),
910 state->cmd = cmd->next;
913 *bufp = state->buf.buf;
914 *sizep = state->buf.len;
919 static int run_receive_hook(struct command *commands,
920 const char *hook_name,
922 const struct string_list *push_options)
924 struct receive_hook_feed_state state;
927 strbuf_init(&state.buf, 0);
928 state.cmd = commands;
929 state.skip_broken = skip_broken;
931 if (feed_receive_hook(&state, NULL, NULL))
933 state.cmd = commands;
934 state.push_options = push_options;
935 status = run_and_feed_hook(hook_name, feed_receive_hook, &state);
936 strbuf_release(&state.buf);
940 static int run_update_hook(struct command *cmd)
943 struct child_process proc = CHILD_PROCESS_INIT;
946 argv[0] = find_hook("update");
950 argv[1] = cmd->ref_name;
951 argv[2] = oid_to_hex(&cmd->old_oid);
952 argv[3] = oid_to_hex(&cmd->new_oid);
956 proc.stdout_to_stderr = 1;
957 proc.err = use_sideband ? -1 : 0;
959 proc.trace2_hook_name = "update";
961 code = start_command(&proc);
965 copy_to_sideband(proc.err, -1, NULL);
966 return finish_command(&proc);
969 static struct command *find_command_by_refname(struct command *list,
972 for (; list; list = list->next)
973 if (!strcmp(list->ref_name, refname))
978 static int read_proc_receive_report(struct packet_reader *reader,
979 struct command *commands,
980 struct strbuf *errmsg)
983 struct command *hint = NULL;
984 struct ref_push_report *report = NULL;
990 struct object_id old_oid, new_oid;
995 if (packet_reader_read(reader) != PACKET_READ_NORMAL)
999 p = strchr(head, ' ');
1001 strbuf_addf(errmsg, "proc-receive reported incomplete status line: '%s'\n", head);
1006 if (!strcmp(head, "option")) {
1007 const char *key, *val;
1009 if (!hint || !(report || new_report)) {
1011 strbuf_addstr(errmsg, "proc-receive reported 'option' without a matching 'ok/ng' directive\n");
1016 if (!hint->report) {
1017 hint->report = xcalloc(1, sizeof(struct ref_push_report));
1018 report = hint->report;
1020 report = hint->report;
1021 while (report->next)
1022 report = report->next;
1023 report->next = xcalloc(1, sizeof(struct ref_push_report));
1024 report = report->next;
1029 p = strchr(key, ' ');
1033 if (!strcmp(key, "refname"))
1034 report->ref_name = xstrdup_or_null(val);
1035 else if (!strcmp(key, "old-oid") && val &&
1036 !parse_oid_hex(val, &old_oid, &val))
1037 report->old_oid = oiddup(&old_oid);
1038 else if (!strcmp(key, "new-oid") && val &&
1039 !parse_oid_hex(val, &new_oid, &val))
1040 report->new_oid = oiddup(&new_oid);
1041 else if (!strcmp(key, "forced-update"))
1042 report->forced_update = 1;
1043 else if (!strcmp(key, "fall-through"))
1044 /* Fall through, let 'receive-pack' to execute it. */
1045 hint->run_proc_receive = 0;
1052 p = strchr(refname, ' ');
1055 if (strcmp(head, "ok") && strcmp(head, "ng")) {
1056 strbuf_addf(errmsg, "proc-receive reported bad status '%s' on ref '%s'\n",
1062 /* first try searching at our hint, falling back to all refs */
1064 hint = find_command_by_refname(hint, refname);
1066 hint = find_command_by_refname(commands, refname);
1068 strbuf_addf(errmsg, "proc-receive reported status on unknown ref: %s\n",
1073 if (!hint->run_proc_receive) {
1074 strbuf_addf(errmsg, "proc-receive reported status on unexpected ref: %s\n",
1079 hint->run_proc_receive |= RUN_PROC_RECEIVE_RETURNED;
1080 if (!strcmp(head, "ng")) {
1082 hint->error_string = xstrdup(p);
1084 hint->error_string = "failed";
1091 for (cmd = commands; cmd; cmd = cmd->next)
1092 if (cmd->run_proc_receive && !cmd->error_string &&
1093 !(cmd->run_proc_receive & RUN_PROC_RECEIVE_RETURNED)) {
1094 cmd->error_string = "proc-receive failed to report status";
1100 static int run_proc_receive_hook(struct command *commands,
1101 const struct string_list *push_options)
1103 struct child_process proc = CHILD_PROCESS_INIT;
1105 struct command *cmd;
1106 const char *argv[2];
1107 struct packet_reader reader;
1108 struct strbuf cap = STRBUF_INIT;
1109 struct strbuf errmsg = STRBUF_INIT;
1110 int hook_use_push_options = 0;
1114 argv[0] = find_hook("proc-receive");
1116 rp_error("cannot find hook 'proc-receive'");
1124 proc.trace2_hook_name = "proc-receive";
1127 memset(&muxer, 0, sizeof(muxer));
1128 muxer.proc = copy_to_sideband;
1130 code = start_async(&muxer);
1133 proc.err = muxer.in;
1138 code = start_command(&proc);
1141 finish_async(&muxer);
1145 sigchain_push(SIGPIPE, SIG_IGN);
1147 /* Version negotiaton */
1148 packet_reader_init(&reader, proc.out, NULL, 0,
1149 PACKET_READ_CHOMP_NEWLINE |
1150 PACKET_READ_GENTLE_ON_EOF);
1152 strbuf_addstr(&cap, " atomic");
1153 if (use_push_options)
1154 strbuf_addstr(&cap, " push-options");
1156 packet_write_fmt(proc.in, "version=1%c%s\n", '\0', cap.buf + 1);
1157 strbuf_release(&cap);
1159 packet_write_fmt(proc.in, "version=1\n");
1161 packet_flush(proc.in);
1166 if (packet_reader_read(&reader) != PACKET_READ_NORMAL)
1169 if (reader.pktlen > 8 && starts_with(reader.line, "version=")) {
1170 version = atoi(reader.line + 8);
1171 linelen = strlen(reader.line);
1172 if (linelen < reader.pktlen) {
1173 const char *feature_list = reader.line + linelen + 1;
1174 if (parse_feature_request(feature_list, "push-options"))
1175 hook_use_push_options = 1;
1181 strbuf_addf(&errmsg, "proc-receive version '%d' is not supported",
1188 for (cmd = commands; cmd; cmd = cmd->next) {
1189 if (!cmd->run_proc_receive || cmd->skip_update || cmd->error_string)
1191 packet_write_fmt(proc.in, "%s %s %s",
1192 oid_to_hex(&cmd->old_oid),
1193 oid_to_hex(&cmd->new_oid),
1196 packet_flush(proc.in);
1198 /* Send push options */
1199 if (hook_use_push_options) {
1200 struct string_list_item *item;
1202 for_each_string_list_item(item, push_options)
1203 packet_write_fmt(proc.in, "%s", item->string);
1204 packet_flush(proc.in);
1207 /* Read result from proc-receive */
1208 code = read_proc_receive_report(&reader, commands, &errmsg);
1214 finish_async(&muxer);
1215 if (finish_command(&proc))
1217 if (errmsg.len >0) {
1218 char *p = errmsg.buf;
1220 p += errmsg.len - 1;
1223 rp_error("%s", errmsg.buf);
1224 strbuf_release(&errmsg);
1226 sigchain_pop(SIGPIPE);
1231 static char *refuse_unconfigured_deny_msg =
1232 N_("By default, updating the current branch in a non-bare repository\n"
1233 "is denied, because it will make the index and work tree inconsistent\n"
1234 "with what you pushed, and will require 'git reset --hard' to match\n"
1235 "the work tree to HEAD.\n"
1237 "You can set the 'receive.denyCurrentBranch' configuration variable\n"
1238 "to 'ignore' or 'warn' in the remote repository to allow pushing into\n"
1239 "its current branch; however, this is not recommended unless you\n"
1240 "arranged to update its work tree to match what you pushed in some\n"
1243 "To squelch this message and still keep the default behaviour, set\n"
1244 "'receive.denyCurrentBranch' configuration variable to 'refuse'.");
1246 static void refuse_unconfigured_deny(void)
1248 rp_error("%s", _(refuse_unconfigured_deny_msg));
1251 static char *refuse_unconfigured_deny_delete_current_msg =
1252 N_("By default, deleting the current branch is denied, because the next\n"
1253 "'git clone' won't result in any file checked out, causing confusion.\n"
1255 "You can set 'receive.denyDeleteCurrent' configuration variable to\n"
1256 "'warn' or 'ignore' in the remote repository to allow deleting the\n"
1257 "current branch, with or without a warning message.\n"
1259 "To squelch this message, you can set it to 'refuse'.");
1261 static void refuse_unconfigured_deny_delete_current(void)
1263 rp_error("%s", _(refuse_unconfigured_deny_delete_current_msg));
1266 static int command_singleton_iterator(void *cb_data, struct object_id *oid);
1267 static int update_shallow_ref(struct command *cmd, struct shallow_info *si)
1269 struct shallow_lock shallow_lock = SHALLOW_LOCK_INIT;
1270 struct oid_array extra = OID_ARRAY_INIT;
1271 struct check_connected_options opt = CHECK_CONNECTED_INIT;
1272 uint32_t mask = 1 << (cmd->index % 32);
1275 trace_printf_key(&trace_shallow,
1276 "shallow: update_shallow_ref %s\n", cmd->ref_name);
1277 for (i = 0; i < si->shallow->nr; i++)
1278 if (si->used_shallow[i] &&
1279 (si->used_shallow[i][cmd->index / 32] & mask) &&
1280 !delayed_reachability_test(si, i))
1281 oid_array_append(&extra, &si->shallow->oid[i]);
1283 opt.env = tmp_objdir_env(tmp_objdir);
1284 setup_alternate_shallow(&shallow_lock, &opt.shallow_file, &extra);
1285 if (check_connected(command_singleton_iterator, cmd, &opt)) {
1286 rollback_shallow_file(the_repository, &shallow_lock);
1287 oid_array_clear(&extra);
1291 commit_shallow_file(the_repository, &shallow_lock);
1294 * Make sure setup_alternate_shallow() for the next ref does
1295 * not lose these new roots..
1297 for (i = 0; i < extra.nr; i++)
1298 register_shallow(the_repository, &extra.oid[i]);
1300 si->shallow_ref[cmd->index] = 0;
1301 oid_array_clear(&extra);
1306 * NEEDSWORK: we should consolidate various implementions of "are we
1307 * on an unborn branch?" test into one, and make the unified one more
1308 * robust. !get_sha1() based check used here and elsewhere would not
1309 * allow us to tell an unborn branch from corrupt ref, for example.
1310 * For the purpose of fixing "deploy-to-update does not work when
1311 * pushing into an empty repository" issue, this should suffice for
1314 static int head_has_history(void)
1316 struct object_id oid;
1318 return !get_oid("HEAD", &oid);
1321 static const char *push_to_deploy(unsigned char *sha1,
1323 const char *work_tree)
1325 const char *update_refresh[] = {
1326 "update-index", "-q", "--ignore-submodules", "--refresh", NULL
1328 const char *diff_files[] = {
1329 "diff-files", "--quiet", "--ignore-submodules", "--", NULL
1331 const char *diff_index[] = {
1332 "diff-index", "--quiet", "--cached", "--ignore-submodules",
1335 const char *read_tree[] = {
1336 "read-tree", "-u", "-m", NULL, NULL
1338 struct child_process child = CHILD_PROCESS_INIT;
1340 child.argv = update_refresh;
1342 child.dir = work_tree;
1344 child.stdout_to_stderr = 1;
1346 if (run_command(&child))
1347 return "Up-to-date check failed";
1349 /* run_command() does not clean up completely; reinitialize */
1350 child_process_init(&child);
1351 child.argv = diff_files;
1353 child.dir = work_tree;
1355 child.stdout_to_stderr = 1;
1357 if (run_command(&child))
1358 return "Working directory has unstaged changes";
1360 /* diff-index with either HEAD or an empty tree */
1361 diff_index[4] = head_has_history() ? "HEAD" : empty_tree_oid_hex();
1363 child_process_init(&child);
1364 child.argv = diff_index;
1367 child.no_stdout = 1;
1368 child.stdout_to_stderr = 0;
1370 if (run_command(&child))
1371 return "Working directory has staged changes";
1373 read_tree[3] = hash_to_hex(sha1);
1374 child_process_init(&child);
1375 child.argv = read_tree;
1377 child.dir = work_tree;
1379 child.no_stdout = 1;
1380 child.stdout_to_stderr = 0;
1382 if (run_command(&child))
1383 return "Could not update working tree to new HEAD";
1388 static const char *push_to_checkout_hook = "push-to-checkout";
1390 static const char *push_to_checkout(unsigned char *hash,
1392 const char *work_tree)
1394 strvec_pushf(env, "GIT_WORK_TREE=%s", absolute_path(work_tree));
1395 if (run_hook_le(env->v, push_to_checkout_hook,
1396 hash_to_hex(hash), NULL))
1397 return "push-to-checkout hook declined";
1402 static const char *update_worktree(unsigned char *sha1, const struct worktree *worktree)
1404 const char *retval, *work_tree, *git_dir = NULL;
1405 struct strvec env = STRVEC_INIT;
1407 if (worktree && worktree->path)
1408 work_tree = worktree->path;
1409 else if (git_work_tree_cfg)
1410 work_tree = git_work_tree_cfg;
1414 if (is_bare_repository())
1415 return "denyCurrentBranch = updateInstead needs a worktree";
1417 git_dir = get_worktree_git_dir(worktree);
1419 git_dir = get_git_dir();
1421 strvec_pushf(&env, "GIT_DIR=%s", absolute_path(git_dir));
1423 if (!find_hook(push_to_checkout_hook))
1424 retval = push_to_deploy(sha1, &env, work_tree);
1426 retval = push_to_checkout(sha1, &env, work_tree);
1432 static const char *update(struct command *cmd, struct shallow_info *si)
1434 const char *name = cmd->ref_name;
1435 struct strbuf namespaced_name_buf = STRBUF_INIT;
1436 static char *namespaced_name;
1438 struct object_id *old_oid = &cmd->old_oid;
1439 struct object_id *new_oid = &cmd->new_oid;
1440 int do_update_worktree = 0;
1441 const struct worktree *worktree = is_bare_repository() ? NULL : find_shared_symref("HEAD", name);
1443 /* only refs/... are allowed */
1444 if (!starts_with(name, "refs/") || check_refname_format(name + 5, 0)) {
1445 rp_error("refusing to create funny ref '%s' remotely", name);
1446 return "funny refname";
1449 strbuf_addf(&namespaced_name_buf, "%s%s", get_git_namespace(), name);
1450 free(namespaced_name);
1451 namespaced_name = strbuf_detach(&namespaced_name_buf, NULL);
1454 switch (deny_current_branch) {
1458 rp_warning("updating the current branch");
1461 case DENY_UNCONFIGURED:
1462 rp_error("refusing to update checked out branch: %s", name);
1463 if (deny_current_branch == DENY_UNCONFIGURED)
1464 refuse_unconfigured_deny();
1465 return "branch is currently checked out";
1466 case DENY_UPDATE_INSTEAD:
1467 /* pass -- let other checks intervene first */
1468 do_update_worktree = 1;
1473 if (!is_null_oid(new_oid) && !has_object_file(new_oid)) {
1474 error("unpack should have generated %s, "
1475 "but I can't find it!", oid_to_hex(new_oid));
1479 if (!is_null_oid(old_oid) && is_null_oid(new_oid)) {
1480 if (deny_deletes && starts_with(name, "refs/heads/")) {
1481 rp_error("denying ref deletion for %s", name);
1482 return "deletion prohibited";
1485 if (worktree || (head_name && !strcmp(namespaced_name, head_name))) {
1486 switch (deny_delete_current) {
1490 rp_warning("deleting the current branch");
1493 case DENY_UNCONFIGURED:
1494 case DENY_UPDATE_INSTEAD:
1495 if (deny_delete_current == DENY_UNCONFIGURED)
1496 refuse_unconfigured_deny_delete_current();
1497 rp_error("refusing to delete the current branch: %s", name);
1498 return "deletion of the current branch prohibited";
1500 return "Invalid denyDeleteCurrent setting";
1505 if (deny_non_fast_forwards && !is_null_oid(new_oid) &&
1506 !is_null_oid(old_oid) &&
1507 starts_with(name, "refs/heads/")) {
1508 struct object *old_object, *new_object;
1509 struct commit *old_commit, *new_commit;
1511 old_object = parse_object(the_repository, old_oid);
1512 new_object = parse_object(the_repository, new_oid);
1514 if (!old_object || !new_object ||
1515 old_object->type != OBJ_COMMIT ||
1516 new_object->type != OBJ_COMMIT) {
1517 error("bad sha1 objects for %s", name);
1520 old_commit = (struct commit *)old_object;
1521 new_commit = (struct commit *)new_object;
1522 if (!in_merge_bases(old_commit, new_commit)) {
1523 rp_error("denying non-fast-forward %s"
1524 " (you should pull first)", name);
1525 return "non-fast-forward";
1528 if (run_update_hook(cmd)) {
1529 rp_error("hook declined to update %s", name);
1530 return "hook declined";
1533 if (do_update_worktree) {
1534 ret = update_worktree(new_oid->hash, find_shared_symref("HEAD", name));
1539 if (is_null_oid(new_oid)) {
1540 struct strbuf err = STRBUF_INIT;
1541 if (!parse_object(the_repository, old_oid)) {
1543 if (ref_exists(name)) {
1544 rp_warning("Allowing deletion of corrupt ref.");
1546 rp_warning("Deleting a non-existent ref.");
1547 cmd->did_not_exist = 1;
1550 if (ref_transaction_delete(transaction,
1554 rp_error("%s", err.buf);
1555 strbuf_release(&err);
1556 return "failed to delete";
1558 strbuf_release(&err);
1559 return NULL; /* good */
1562 struct strbuf err = STRBUF_INIT;
1563 if (shallow_update && si->shallow_ref[cmd->index] &&
1564 update_shallow_ref(cmd, si))
1565 return "shallow error";
1567 if (ref_transaction_update(transaction,
1572 rp_error("%s", err.buf);
1573 strbuf_release(&err);
1575 return "failed to update ref";
1577 strbuf_release(&err);
1579 return NULL; /* good */
1583 static void run_update_post_hook(struct command *commands)
1585 struct command *cmd;
1586 struct child_process proc = CHILD_PROCESS_INIT;
1589 hook = find_hook("post-update");
1593 for (cmd = commands; cmd; cmd = cmd->next) {
1594 if (cmd->error_string || cmd->did_not_exist)
1597 strvec_push(&proc.args, hook);
1598 strvec_push(&proc.args, cmd->ref_name);
1604 proc.stdout_to_stderr = 1;
1605 proc.err = use_sideband ? -1 : 0;
1606 proc.trace2_hook_name = "post-update";
1608 if (!start_command(&proc)) {
1610 copy_to_sideband(proc.err, -1, NULL);
1611 finish_command(&proc);
1615 static void check_aliased_update_internal(struct command *cmd,
1616 struct string_list *list,
1617 const char *dst_name, int flag)
1619 struct string_list_item *item;
1620 struct command *dst_cmd;
1622 if (!(flag & REF_ISSYMREF))
1626 rp_error("refusing update to broken symref '%s'", cmd->ref_name);
1627 cmd->skip_update = 1;
1628 cmd->error_string = "broken symref";
1631 dst_name = strip_namespace(dst_name);
1633 if ((item = string_list_lookup(list, dst_name)) == NULL)
1636 cmd->skip_update = 1;
1638 dst_cmd = (struct command *) item->util;
1640 if (oideq(&cmd->old_oid, &dst_cmd->old_oid) &&
1641 oideq(&cmd->new_oid, &dst_cmd->new_oid))
1644 dst_cmd->skip_update = 1;
1646 rp_error("refusing inconsistent update between symref '%s' (%s..%s) and"
1647 " its target '%s' (%s..%s)",
1649 find_unique_abbrev(&cmd->old_oid, DEFAULT_ABBREV),
1650 find_unique_abbrev(&cmd->new_oid, DEFAULT_ABBREV),
1652 find_unique_abbrev(&dst_cmd->old_oid, DEFAULT_ABBREV),
1653 find_unique_abbrev(&dst_cmd->new_oid, DEFAULT_ABBREV));
1655 cmd->error_string = dst_cmd->error_string =
1656 "inconsistent aliased update";
1659 static void check_aliased_update(struct command *cmd, struct string_list *list)
1661 struct strbuf buf = STRBUF_INIT;
1662 const char *dst_name;
1665 strbuf_addf(&buf, "%s%s", get_git_namespace(), cmd->ref_name);
1666 dst_name = resolve_ref_unsafe(buf.buf, 0, NULL, &flag);
1667 check_aliased_update_internal(cmd, list, dst_name, flag);
1668 strbuf_release(&buf);
1671 static void check_aliased_updates(struct command *commands)
1673 struct command *cmd;
1674 struct string_list ref_list = STRING_LIST_INIT_NODUP;
1676 for (cmd = commands; cmd; cmd = cmd->next) {
1677 struct string_list_item *item =
1678 string_list_append(&ref_list, cmd->ref_name);
1679 item->util = (void *)cmd;
1681 string_list_sort(&ref_list);
1683 for (cmd = commands; cmd; cmd = cmd->next) {
1684 if (!cmd->error_string)
1685 check_aliased_update(cmd, &ref_list);
1688 string_list_clear(&ref_list, 0);
1691 static int command_singleton_iterator(void *cb_data, struct object_id *oid)
1693 struct command **cmd_list = cb_data;
1694 struct command *cmd = *cmd_list;
1696 if (!cmd || is_null_oid(&cmd->new_oid))
1697 return -1; /* end of list */
1698 *cmd_list = NULL; /* this returns only one */
1699 oidcpy(oid, &cmd->new_oid);
1703 static void set_connectivity_errors(struct command *commands,
1704 struct shallow_info *si)
1706 struct command *cmd;
1708 for (cmd = commands; cmd; cmd = cmd->next) {
1709 struct command *singleton = cmd;
1710 struct check_connected_options opt = CHECK_CONNECTED_INIT;
1712 if (shallow_update && si->shallow_ref[cmd->index])
1713 /* to be checked in update_shallow_ref() */
1716 opt.env = tmp_objdir_env(tmp_objdir);
1717 if (!check_connected(command_singleton_iterator, &singleton,
1721 cmd->error_string = "missing necessary objects";
1725 struct iterate_data {
1726 struct command *cmds;
1727 struct shallow_info *si;
1730 static int iterate_receive_command_list(void *cb_data, struct object_id *oid)
1732 struct iterate_data *data = cb_data;
1733 struct command **cmd_list = &data->cmds;
1734 struct command *cmd = *cmd_list;
1736 for (; cmd; cmd = cmd->next) {
1737 if (shallow_update && data->si->shallow_ref[cmd->index])
1738 /* to be checked in update_shallow_ref() */
1740 if (!is_null_oid(&cmd->new_oid) && !cmd->skip_update) {
1741 oidcpy(oid, &cmd->new_oid);
1742 *cmd_list = cmd->next;
1747 return -1; /* end of list */
1750 static void reject_updates_to_hidden(struct command *commands)
1752 struct strbuf refname_full = STRBUF_INIT;
1754 struct command *cmd;
1756 strbuf_addstr(&refname_full, get_git_namespace());
1757 prefix_len = refname_full.len;
1759 for (cmd = commands; cmd; cmd = cmd->next) {
1760 if (cmd->error_string)
1763 strbuf_setlen(&refname_full, prefix_len);
1764 strbuf_addstr(&refname_full, cmd->ref_name);
1766 if (!ref_is_hidden(cmd->ref_name, refname_full.buf))
1768 if (is_null_oid(&cmd->new_oid))
1769 cmd->error_string = "deny deleting a hidden ref";
1771 cmd->error_string = "deny updating a hidden ref";
1774 strbuf_release(&refname_full);
1777 static int should_process_cmd(struct command *cmd)
1779 return !cmd->error_string && !cmd->skip_update;
1782 static void warn_if_skipped_connectivity_check(struct command *commands,
1783 struct shallow_info *si)
1785 struct command *cmd;
1786 int checked_connectivity = 1;
1788 for (cmd = commands; cmd; cmd = cmd->next) {
1789 if (should_process_cmd(cmd) && si->shallow_ref[cmd->index]) {
1790 error("BUG: connectivity check has not been run on ref %s",
1792 checked_connectivity = 0;
1795 if (!checked_connectivity)
1796 BUG("connectivity check skipped???");
1799 static void execute_commands_non_atomic(struct command *commands,
1800 struct shallow_info *si)
1802 struct command *cmd;
1803 struct strbuf err = STRBUF_INIT;
1805 for (cmd = commands; cmd; cmd = cmd->next) {
1806 if (!should_process_cmd(cmd) || cmd->run_proc_receive)
1809 transaction = ref_transaction_begin(&err);
1811 rp_error("%s", err.buf);
1813 cmd->error_string = "transaction failed to start";
1817 cmd->error_string = update(cmd, si);
1819 if (!cmd->error_string
1820 && ref_transaction_commit(transaction, &err)) {
1821 rp_error("%s", err.buf);
1823 cmd->error_string = "failed to update ref";
1825 ref_transaction_free(transaction);
1827 strbuf_release(&err);
1830 static void execute_commands_atomic(struct command *commands,
1831 struct shallow_info *si)
1833 struct command *cmd;
1834 struct strbuf err = STRBUF_INIT;
1835 const char *reported_error = "atomic push failure";
1837 transaction = ref_transaction_begin(&err);
1839 rp_error("%s", err.buf);
1841 reported_error = "transaction failed to start";
1845 for (cmd = commands; cmd; cmd = cmd->next) {
1846 if (!should_process_cmd(cmd) || cmd->run_proc_receive)
1849 cmd->error_string = update(cmd, si);
1851 if (cmd->error_string)
1855 if (ref_transaction_commit(transaction, &err)) {
1856 rp_error("%s", err.buf);
1857 reported_error = "atomic transaction failed";
1863 for (cmd = commands; cmd; cmd = cmd->next)
1864 if (!cmd->error_string)
1865 cmd->error_string = reported_error;
1868 ref_transaction_free(transaction);
1869 strbuf_release(&err);
1872 static void execute_commands(struct command *commands,
1873 const char *unpacker_error,
1874 struct shallow_info *si,
1875 const struct string_list *push_options)
1877 struct check_connected_options opt = CHECK_CONNECTED_INIT;
1878 struct command *cmd;
1879 struct iterate_data data;
1882 int run_proc_receive = 0;
1884 if (unpacker_error) {
1885 for (cmd = commands; cmd; cmd = cmd->next)
1886 cmd->error_string = "unpacker error";
1891 memset(&muxer, 0, sizeof(muxer));
1892 muxer.proc = copy_to_sideband;
1894 if (!start_async(&muxer))
1896 /* ...else, continue without relaying sideband */
1899 data.cmds = commands;
1901 opt.err_fd = err_fd;
1902 opt.progress = err_fd && !quiet;
1903 opt.env = tmp_objdir_env(tmp_objdir);
1904 if (check_connected(iterate_receive_command_list, &data, &opt))
1905 set_connectivity_errors(commands, si);
1908 finish_async(&muxer);
1910 reject_updates_to_hidden(commands);
1913 * Try to find commands that have special prefix in their reference names,
1914 * and mark them to run an external "proc-receive" hook later.
1916 if (proc_receive_ref) {
1917 for (cmd = commands; cmd; cmd = cmd->next) {
1918 if (!should_process_cmd(cmd))
1921 if (proc_receive_ref_matches(cmd)) {
1922 cmd->run_proc_receive = RUN_PROC_RECEIVE_SCHEDULED;
1923 run_proc_receive = 1;
1928 if (run_receive_hook(commands, "pre-receive", 0, push_options)) {
1929 for (cmd = commands; cmd; cmd = cmd->next) {
1930 if (!cmd->error_string)
1931 cmd->error_string = "pre-receive hook declined";
1937 * Now we'll start writing out refs, which means the objects need
1938 * to be in their final positions so that other processes can see them.
1940 if (tmp_objdir_migrate(tmp_objdir) < 0) {
1941 for (cmd = commands; cmd; cmd = cmd->next) {
1942 if (!cmd->error_string)
1943 cmd->error_string = "unable to migrate objects to permanent storage";
1949 check_aliased_updates(commands);
1951 free(head_name_to_free);
1952 head_name = head_name_to_free = resolve_refdup("HEAD", 0, NULL, NULL);
1954 if (run_proc_receive &&
1955 run_proc_receive_hook(commands, push_options))
1956 for (cmd = commands; cmd; cmd = cmd->next)
1957 if (!cmd->error_string &&
1958 !(cmd->run_proc_receive & RUN_PROC_RECEIVE_RETURNED) &&
1959 (cmd->run_proc_receive || use_atomic))
1960 cmd->error_string = "fail to run proc-receive hook";
1963 execute_commands_atomic(commands, si);
1965 execute_commands_non_atomic(commands, si);
1968 warn_if_skipped_connectivity_check(commands, si);
1971 static struct command **queue_command(struct command **tail,
1975 struct object_id old_oid, new_oid;
1976 struct command *cmd;
1977 const char *refname;
1981 if (parse_oid_hex(line, &old_oid, &p) ||
1983 parse_oid_hex(p, &new_oid, &p) ||
1985 die("protocol error: expected old/new/ref, got '%s'", line);
1988 reflen = linelen - (p - line);
1989 FLEX_ALLOC_MEM(cmd, ref_name, refname, reflen);
1990 oidcpy(&cmd->old_oid, &old_oid);
1991 oidcpy(&cmd->new_oid, &new_oid);
1996 static void queue_commands_from_cert(struct command **tail,
1997 struct strbuf *push_cert)
1999 const char *boc, *eoc;
2002 die("protocol error: got both push certificate and unsigned commands");
2004 boc = strstr(push_cert->buf, "\n\n");
2006 die("malformed push certificate %.*s", 100, push_cert->buf);
2009 eoc = push_cert->buf + parse_signature(push_cert->buf, push_cert->len);
2012 const char *eol = memchr(boc, '\n', eoc - boc);
2013 tail = queue_command(tail, boc, eol ? eol - boc : eoc - boc);
2014 boc = eol ? eol + 1 : eoc;
2018 static struct command *read_head_info(struct packet_reader *reader,
2019 struct oid_array *shallow)
2021 struct command *commands = NULL;
2022 struct command **p = &commands;
2026 if (packet_reader_read(reader) != PACKET_READ_NORMAL)
2029 if (reader->pktlen > 8 && starts_with(reader->line, "shallow ")) {
2030 struct object_id oid;
2031 if (get_oid_hex(reader->line + 8, &oid))
2032 die("protocol error: expected shallow sha, got '%s'",
2034 oid_array_append(shallow, &oid);
2038 linelen = strlen(reader->line);
2039 if (linelen < reader->pktlen) {
2040 const char *feature_list = reader->line + linelen + 1;
2041 const char *hash = NULL;
2042 const char *client_sid;
2044 if (parse_feature_request(feature_list, "report-status"))
2046 if (parse_feature_request(feature_list, "report-status-v2"))
2047 report_status_v2 = 1;
2048 if (parse_feature_request(feature_list, "side-band-64k"))
2049 use_sideband = LARGE_PACKET_MAX;
2050 if (parse_feature_request(feature_list, "quiet"))
2052 if (advertise_atomic_push
2053 && parse_feature_request(feature_list, "atomic"))
2055 if (advertise_push_options
2056 && parse_feature_request(feature_list, "push-options"))
2057 use_push_options = 1;
2058 hash = parse_feature_value(feature_list, "object-format", &len, NULL);
2060 hash = hash_algos[GIT_HASH_SHA1].name;
2063 if (xstrncmpz(the_hash_algo->name, hash, len))
2064 die("error: unsupported object format '%s'", hash);
2065 client_sid = parse_feature_value(feature_list, "session-id", &len, NULL);
2067 char *sid = xstrndup(client_sid, len);
2068 trace2_data_string("transfer", NULL, "client-sid", client_sid);
2073 if (!strcmp(reader->line, "push-cert")) {
2075 int saved_options = reader->options;
2076 reader->options &= ~PACKET_READ_CHOMP_NEWLINE;
2079 packet_reader_read(reader);
2080 if (reader->status == PACKET_READ_FLUSH) {
2084 if (reader->status != PACKET_READ_NORMAL) {
2085 die("protocol error: got an unexpected packet");
2087 if (!strcmp(reader->line, "push-cert-end\n"))
2088 break; /* end of cert */
2089 strbuf_addstr(&push_cert, reader->line);
2091 reader->options = saved_options;
2098 p = queue_command(p, reader->line, linelen);
2102 queue_commands_from_cert(p, &push_cert);
2107 static void read_push_options(struct packet_reader *reader,
2108 struct string_list *options)
2111 if (packet_reader_read(reader) != PACKET_READ_NORMAL)
2114 string_list_append(options, reader->line);
2118 static const char *parse_pack_header(struct pack_header *hdr)
2120 switch (read_pack_header(0, hdr)) {
2122 return "eof before pack header was fully read";
2124 case PH_ERROR_PACK_SIGNATURE:
2125 return "protocol error (pack signature mismatch detected)";
2127 case PH_ERROR_PROTOCOL:
2128 return "protocol error (pack version unsupported)";
2131 return "unknown error in parse_pack_header";
2138 static const char *pack_lockfile;
2140 static void push_header_arg(struct strvec *args, struct pack_header *hdr)
2142 strvec_pushf(args, "--pack_header=%"PRIu32",%"PRIu32,
2143 ntohl(hdr->hdr_version), ntohl(hdr->hdr_entries));
2146 static const char *unpack(int err_fd, struct shallow_info *si)
2148 struct pack_header hdr;
2149 const char *hdr_err;
2151 struct child_process child = CHILD_PROCESS_INIT;
2152 int fsck_objects = (receive_fsck_objects >= 0
2153 ? receive_fsck_objects
2154 : transfer_fsck_objects >= 0
2155 ? transfer_fsck_objects
2158 hdr_err = parse_pack_header(&hdr);
2165 if (si->nr_ours || si->nr_theirs) {
2166 alt_shallow_file = setup_temporary_shallow(si->shallow);
2167 strvec_push(&child.args, "--shallow-file");
2168 strvec_push(&child.args, alt_shallow_file);
2171 tmp_objdir = tmp_objdir_create();
2175 return "unable to create temporary object directory";
2177 child.env = tmp_objdir_env(tmp_objdir);
2180 * Normally we just pass the tmp_objdir environment to the child
2181 * processes that do the heavy lifting, but we may need to see these
2182 * objects ourselves to set up shallow information.
2184 tmp_objdir_add_as_alternate(tmp_objdir);
2186 if (ntohl(hdr.hdr_entries) < unpack_limit) {
2187 strvec_push(&child.args, "unpack-objects");
2188 push_header_arg(&child.args, &hdr);
2190 strvec_push(&child.args, "-q");
2192 strvec_pushf(&child.args, "--strict%s",
2193 fsck_msg_types.buf);
2195 strvec_pushf(&child.args, "--max-input-size=%"PRIuMAX,
2196 (uintmax_t)max_input_size);
2197 child.no_stdout = 1;
2200 status = run_command(&child);
2202 return "unpack-objects abnormal exit";
2204 char hostname[HOST_NAME_MAX + 1];
2206 strvec_pushl(&child.args, "index-pack", "--stdin", NULL);
2207 push_header_arg(&child.args, &hdr);
2209 if (xgethostname(hostname, sizeof(hostname)))
2210 xsnprintf(hostname, sizeof(hostname), "localhost");
2211 strvec_pushf(&child.args,
2212 "--keep=receive-pack %"PRIuMAX" on %s",
2213 (uintmax_t)getpid(),
2216 if (!quiet && err_fd)
2217 strvec_push(&child.args, "--show-resolving-progress");
2219 strvec_push(&child.args, "--report-end-of-input");
2221 strvec_pushf(&child.args, "--strict%s",
2222 fsck_msg_types.buf);
2224 strvec_push(&child.args, "--fix-thin");
2226 strvec_pushf(&child.args, "--max-input-size=%"PRIuMAX,
2227 (uintmax_t)max_input_size);
2231 status = start_command(&child);
2233 return "index-pack fork failed";
2234 pack_lockfile = index_pack_lockfile(child.out);
2236 status = finish_command(&child);
2238 return "index-pack abnormal exit";
2239 reprepare_packed_git(the_repository);
2244 static const char *unpack_with_sideband(struct shallow_info *si)
2250 return unpack(0, si);
2252 use_keepalive = KEEPALIVE_AFTER_NUL;
2253 memset(&muxer, 0, sizeof(muxer));
2254 muxer.proc = copy_to_sideband;
2256 if (start_async(&muxer))
2259 ret = unpack(muxer.in, si);
2261 finish_async(&muxer);
2265 static void prepare_shallow_update(struct shallow_info *si)
2267 int i, j, k, bitmap_size = DIV_ROUND_UP(si->ref->nr, 32);
2269 ALLOC_ARRAY(si->used_shallow, si->shallow->nr);
2270 assign_shallow_commits_to_refs(si, si->used_shallow, NULL);
2272 si->need_reachability_test =
2273 xcalloc(si->shallow->nr, sizeof(*si->need_reachability_test));
2275 xcalloc(si->shallow->nr, sizeof(*si->reachable));
2276 si->shallow_ref = xcalloc(si->ref->nr, sizeof(*si->shallow_ref));
2278 for (i = 0; i < si->nr_ours; i++)
2279 si->need_reachability_test[si->ours[i]] = 1;
2281 for (i = 0; i < si->shallow->nr; i++) {
2282 if (!si->used_shallow[i])
2284 for (j = 0; j < bitmap_size; j++) {
2285 if (!si->used_shallow[i][j])
2287 si->need_reachability_test[i]++;
2288 for (k = 0; k < 32; k++)
2289 if (si->used_shallow[i][j] & (1U << k))
2290 si->shallow_ref[j * 32 + k]++;
2294 * true for those associated with some refs and belong
2295 * in "ours" list aka "step 7 not done yet"
2297 si->need_reachability_test[i] =
2298 si->need_reachability_test[i] > 1;
2302 * keep hooks happy by forcing a temporary shallow file via
2303 * env variable because we can't add --shallow-file to every
2304 * command. check_connected() will be done with
2305 * true .git/shallow though.
2307 setenv(GIT_SHALLOW_FILE_ENVIRONMENT, alt_shallow_file, 1);
2310 static void update_shallow_info(struct command *commands,
2311 struct shallow_info *si,
2312 struct oid_array *ref)
2314 struct command *cmd;
2316 remove_nonexistent_theirs_shallow(si);
2317 if (!si->nr_ours && !si->nr_theirs) {
2322 for (cmd = commands; cmd; cmd = cmd->next) {
2323 if (is_null_oid(&cmd->new_oid))
2325 oid_array_append(ref, &cmd->new_oid);
2326 cmd->index = ref->nr - 1;
2330 if (shallow_update) {
2331 prepare_shallow_update(si);
2335 ALLOC_ARRAY(ref_status, ref->nr);
2336 assign_shallow_commits_to_refs(si, NULL, ref_status);
2337 for (cmd = commands; cmd; cmd = cmd->next) {
2338 if (is_null_oid(&cmd->new_oid))
2340 if (ref_status[cmd->index]) {
2341 cmd->error_string = "shallow update not allowed";
2342 cmd->skip_update = 1;
2348 static void report(struct command *commands, const char *unpack_status)
2350 struct command *cmd;
2351 struct strbuf buf = STRBUF_INIT;
2353 packet_buf_write(&buf, "unpack %s\n",
2354 unpack_status ? unpack_status : "ok");
2355 for (cmd = commands; cmd; cmd = cmd->next) {
2356 if (!cmd->error_string)
2357 packet_buf_write(&buf, "ok %s\n",
2360 packet_buf_write(&buf, "ng %s %s\n",
2361 cmd->ref_name, cmd->error_string);
2363 packet_buf_flush(&buf);
2366 send_sideband(1, 1, buf.buf, buf.len, use_sideband);
2368 write_or_die(1, buf.buf, buf.len);
2369 strbuf_release(&buf);
2372 static void report_v2(struct command *commands, const char *unpack_status)
2374 struct command *cmd;
2375 struct strbuf buf = STRBUF_INIT;
2376 struct ref_push_report *report;
2378 packet_buf_write(&buf, "unpack %s\n",
2379 unpack_status ? unpack_status : "ok");
2380 for (cmd = commands; cmd; cmd = cmd->next) {
2383 if (cmd->error_string) {
2384 packet_buf_write(&buf, "ng %s %s\n",
2389 packet_buf_write(&buf, "ok %s\n",
2391 for (report = cmd->report; report; report = report->next) {
2393 packet_buf_write(&buf, "ok %s\n",
2395 if (report->ref_name)
2396 packet_buf_write(&buf, "option refname %s\n",
2398 if (report->old_oid)
2399 packet_buf_write(&buf, "option old-oid %s\n",
2400 oid_to_hex(report->old_oid));
2401 if (report->new_oid)
2402 packet_buf_write(&buf, "option new-oid %s\n",
2403 oid_to_hex(report->new_oid));
2404 if (report->forced_update)
2405 packet_buf_write(&buf, "option forced-update\n");
2408 packet_buf_flush(&buf);
2411 send_sideband(1, 1, buf.buf, buf.len, use_sideband);
2413 write_or_die(1, buf.buf, buf.len);
2414 strbuf_release(&buf);
2417 static int delete_only(struct command *commands)
2419 struct command *cmd;
2420 for (cmd = commands; cmd; cmd = cmd->next) {
2421 if (!is_null_oid(&cmd->new_oid))
2427 int cmd_receive_pack(int argc, const char **argv, const char *prefix)
2429 int advertise_refs = 0;
2430 struct command *commands;
2431 struct oid_array shallow = OID_ARRAY_INIT;
2432 struct oid_array ref = OID_ARRAY_INIT;
2433 struct shallow_info si;
2434 struct packet_reader reader;
2436 struct option options[] = {
2437 OPT__QUIET(&quiet, N_("quiet")),
2438 OPT_HIDDEN_BOOL(0, "stateless-rpc", &stateless_rpc, NULL),
2439 OPT_HIDDEN_BOOL(0, "advertise-refs", &advertise_refs, NULL),
2440 OPT_HIDDEN_BOOL(0, "reject-thin-pack-for-testing", &reject_thin, NULL),
2444 packet_trace_identity("receive-pack");
2446 argc = parse_options(argc, argv, prefix, options, receive_pack_usage, 0);
2449 usage_msg_opt(_("Too many arguments."), receive_pack_usage, options);
2451 usage_msg_opt(_("You must specify a directory."), receive_pack_usage, options);
2453 service_dir = argv[0];
2457 if (!enter_repo(service_dir, 0))
2458 die("'%s' does not appear to be a git repository", service_dir);
2460 git_config(receive_pack_config, NULL);
2461 if (cert_nonce_seed)
2462 push_cert_nonce = prepare_push_cert_nonce(service_dir, time(NULL));
2464 if (0 <= transfer_unpack_limit)
2465 unpack_limit = transfer_unpack_limit;
2466 else if (0 <= receive_unpack_limit)
2467 unpack_limit = receive_unpack_limit;
2469 switch (determine_protocol_version_server()) {
2472 * push support for protocol v2 has not been implemented yet,
2473 * so ignore the request to use v2 and fallback to using v0.
2478 * v1 is just the original protocol with a version string,
2479 * so just fall through after writing the version string.
2481 if (advertise_refs || !stateless_rpc)
2482 packet_write_fmt(1, "version 1\n");
2487 case protocol_unknown_version:
2488 BUG("unknown protocol version");
2491 if (advertise_refs || !stateless_rpc) {
2497 packet_reader_init(&reader, 0, NULL, 0,
2498 PACKET_READ_CHOMP_NEWLINE |
2499 PACKET_READ_DIE_ON_ERR_PACKET);
2501 if ((commands = read_head_info(&reader, &shallow)) != NULL) {
2502 const char *unpack_status = NULL;
2503 struct string_list push_options = STRING_LIST_INIT_DUP;
2505 if (use_push_options)
2506 read_push_options(&reader, &push_options);
2507 if (!check_cert_push_options(&push_options)) {
2508 struct command *cmd;
2509 for (cmd = commands; cmd; cmd = cmd->next)
2510 cmd->error_string = "inconsistent push options";
2513 prepare_shallow_info(&si, &shallow);
2514 if (!si.nr_ours && !si.nr_theirs)
2516 if (!delete_only(commands)) {
2517 unpack_status = unpack_with_sideband(&si);
2518 update_shallow_info(commands, &si, &ref);
2520 use_keepalive = KEEPALIVE_ALWAYS;
2521 execute_commands(commands, unpack_status, &si,
2524 unlink_or_warn(pack_lockfile);
2525 if (report_status_v2)
2526 report_v2(commands, unpack_status);
2527 else if (report_status)
2528 report(commands, unpack_status);
2529 run_receive_hook(commands, "post-receive", 1,
2531 run_update_post_hook(commands);
2532 string_list_clear(&push_options, 0);
2534 const char *argv_gc_auto[] = {
2535 "gc", "--auto", "--quiet", NULL,
2537 struct child_process proc = CHILD_PROCESS_INIT;
2540 proc.stdout_to_stderr = 1;
2541 proc.err = use_sideband ? -1 : 0;
2543 proc.argv = argv_gc_auto;
2545 close_object_store(the_repository->objects);
2546 if (!start_command(&proc)) {
2548 copy_to_sideband(proc.err, -1, NULL);
2549 finish_command(&proc);
2552 if (auto_update_server_info)
2553 update_server_info(0);
2554 clear_shallow_info(&si);
2558 oid_array_clear(&shallow);
2559 oid_array_clear(&ref);
2560 free((void *)push_cert_nonce);
projects / git / blob