3 #include "refs-internal.h"
5 #include "../iterator.h"
6 #include "../dir-iterator.h"
7 #include "../lockfile.h"
14 struct object_id old_oid;
18 * Return true if refname, which has the specified oid and flags, can
19 * be resolved to an object in the database. If the referred-to object
20 * does not exist, emit a warning and return false.
22 static int ref_resolves_to_object(const char *refname,
23 const struct object_id *oid,
26 if (flags & REF_ISBROKEN)
28 if (!has_sha1_file(oid->hash)) {
29 error("%s does not point to a valid object!", refname);
35 struct packed_ref_cache {
36 struct ref_cache *cache;
39 * Count of references to the data structure in this instance,
40 * including the pointer from files_ref_store::packed if any.
41 * The data will not be freed as long as the reference count
44 unsigned int referrers;
47 * Iff the packed-refs file associated with this instance is
48 * currently locked for writing, this points at the associated
49 * lock (which is owned by somebody else). The referrer count
50 * is also incremented when the file is locked and decremented
51 * when it is unlocked.
53 struct lock_file *lock;
55 /* The metadata from when this packed-refs cache was read */
56 struct stat_validity validity;
60 * Future: need to be in "struct repository"
61 * when doing a full libification.
63 struct files_ref_store {
64 struct ref_store base;
65 unsigned int store_flags;
69 char *packed_refs_path;
71 struct ref_cache *loose;
72 struct packed_ref_cache *packed;
75 /* Lock used for the main packed-refs file: */
76 static struct lock_file packlock;
79 * Increment the reference count of *packed_refs.
81 static void acquire_packed_ref_cache(struct packed_ref_cache *packed_refs)
83 packed_refs->referrers++;
87 * Decrease the reference count of *packed_refs. If it goes to zero,
88 * free *packed_refs and return true; otherwise return false.
90 static int release_packed_ref_cache(struct packed_ref_cache *packed_refs)
92 if (!--packed_refs->referrers) {
93 free_ref_cache(packed_refs->cache);
94 stat_validity_clear(&packed_refs->validity);
102 static void clear_packed_ref_cache(struct files_ref_store *refs)
105 struct packed_ref_cache *packed_refs = refs->packed;
107 if (packed_refs->lock)
108 die("internal error: packed-ref cache cleared while locked");
110 release_packed_ref_cache(packed_refs);
114 static void clear_loose_ref_cache(struct files_ref_store *refs)
117 free_ref_cache(refs->loose);
123 * Create a new submodule ref cache and add it to the internal
126 static struct ref_store *files_ref_store_create(const char *gitdir,
129 struct files_ref_store *refs = xcalloc(1, sizeof(*refs));
130 struct ref_store *ref_store = (struct ref_store *)refs;
131 struct strbuf sb = STRBUF_INIT;
133 base_ref_store_init(ref_store, &refs_be_files);
134 refs->store_flags = flags;
136 refs->gitdir = xstrdup(gitdir);
137 get_common_dir_noenv(&sb, gitdir);
138 refs->gitcommondir = strbuf_detach(&sb, NULL);
139 strbuf_addf(&sb, "%s/packed-refs", refs->gitcommondir);
140 refs->packed_refs_path = strbuf_detach(&sb, NULL);
146 * Die if refs is not the main ref store. caller is used in any
147 * necessary error messages.
149 static void files_assert_main_repository(struct files_ref_store *refs,
152 if (refs->store_flags & REF_STORE_MAIN)
155 die("BUG: operation %s only allowed for main ref store", caller);
159 * Downcast ref_store to files_ref_store. Die if ref_store is not a
160 * files_ref_store. required_flags is compared with ref_store's
161 * store_flags to ensure the ref_store has all required capabilities.
162 * "caller" is used in any necessary error messages.
164 static struct files_ref_store *files_downcast(struct ref_store *ref_store,
165 unsigned int required_flags,
168 struct files_ref_store *refs;
170 if (ref_store->be != &refs_be_files)
171 die("BUG: ref_store is type \"%s\" not \"files\" in %s",
172 ref_store->be->name, caller);
174 refs = (struct files_ref_store *)ref_store;
176 if ((refs->store_flags & required_flags) != required_flags)
177 die("BUG: operation %s requires abilities 0x%x, but only have 0x%x",
178 caller, required_flags, refs->store_flags);
183 /* The length of a peeled reference line in packed-refs, including EOL: */
184 #define PEELED_LINE_LENGTH 42
187 * The packed-refs header line that we write out. Perhaps other
188 * traits will be added later. The trailing space is required.
190 static const char PACKED_REFS_HEADER[] =
191 "# pack-refs with: peeled fully-peeled \n";
194 * Parse one line from a packed-refs file. Write the SHA1 to sha1.
195 * Return a pointer to the refname within the line (null-terminated),
196 * or NULL if there was a problem.
198 static const char *parse_ref_line(struct strbuf *line, unsigned char *sha1)
203 * 42: the answer to everything.
205 * In this case, it happens to be the answer to
206 * 40 (length of sha1 hex representation)
207 * +1 (space in between hex and name)
208 * +1 (newline at the end of the line)
213 if (get_sha1_hex(line->buf, sha1) < 0)
215 if (!isspace(line->buf[40]))
218 ref = line->buf + 41;
222 if (line->buf[line->len - 1] != '\n')
224 line->buf[--line->len] = 0;
230 * Read f, which is a packed-refs file, into dir.
232 * A comment line of the form "# pack-refs with: " may contain zero or
233 * more traits. We interpret the traits as follows:
237 * Probably no references are peeled. But if the file contains a
238 * peeled value for a reference, we will use it.
242 * References under "refs/tags/", if they *can* be peeled, *are*
243 * peeled in this file. References outside of "refs/tags/" are
244 * probably not peeled even if they could have been, but if we find
245 * a peeled value for such a reference we will use it.
249 * All references in the file that can be peeled are peeled.
250 * Inversely (and this is more important), any references in the
251 * file for which no peeled value is recorded is not peelable. This
252 * trait should typically be written alongside "peeled" for
253 * compatibility with older clients, but we do not require it
254 * (i.e., "peeled" is a no-op if "fully-peeled" is set).
256 static void read_packed_refs(FILE *f, struct ref_dir *dir)
258 struct ref_entry *last = NULL;
259 struct strbuf line = STRBUF_INIT;
260 enum { PEELED_NONE, PEELED_TAGS, PEELED_FULLY } peeled = PEELED_NONE;
262 while (strbuf_getwholeline(&line, f, '\n') != EOF) {
263 unsigned char sha1[20];
267 if (skip_prefix(line.buf, "# pack-refs with:", &traits)) {
268 if (strstr(traits, " fully-peeled "))
269 peeled = PEELED_FULLY;
270 else if (strstr(traits, " peeled "))
271 peeled = PEELED_TAGS;
272 /* perhaps other traits later as well */
276 refname = parse_ref_line(&line, sha1);
278 int flag = REF_ISPACKED;
280 if (check_refname_format(refname, REFNAME_ALLOW_ONELEVEL)) {
281 if (!refname_is_safe(refname))
282 die("packed refname is dangerous: %s", refname);
284 flag |= REF_BAD_NAME | REF_ISBROKEN;
286 last = create_ref_entry(refname, sha1, flag, 0);
287 if (peeled == PEELED_FULLY ||
288 (peeled == PEELED_TAGS && starts_with(refname, "refs/tags/")))
289 last->flag |= REF_KNOWS_PEELED;
290 add_ref_entry(dir, last);
294 line.buf[0] == '^' &&
295 line.len == PEELED_LINE_LENGTH &&
296 line.buf[PEELED_LINE_LENGTH - 1] == '\n' &&
297 !get_sha1_hex(line.buf + 1, sha1)) {
298 hashcpy(last->u.value.peeled.hash, sha1);
300 * Regardless of what the file header said,
301 * we definitely know the value of *this*
304 last->flag |= REF_KNOWS_PEELED;
308 strbuf_release(&line);
311 static const char *files_packed_refs_path(struct files_ref_store *refs)
313 return refs->packed_refs_path;
316 static void files_reflog_path(struct files_ref_store *refs,
322 * FIXME: of course this is wrong in multi worktree
323 * setting. To be fixed real soon.
325 strbuf_addf(sb, "%s/logs", refs->gitcommondir);
329 switch (ref_type(refname)) {
330 case REF_TYPE_PER_WORKTREE:
331 case REF_TYPE_PSEUDOREF:
332 strbuf_addf(sb, "%s/logs/%s", refs->gitdir, refname);
334 case REF_TYPE_NORMAL:
335 strbuf_addf(sb, "%s/logs/%s", refs->gitcommondir, refname);
338 die("BUG: unknown ref type %d of ref %s",
339 ref_type(refname), refname);
343 static void files_ref_path(struct files_ref_store *refs,
347 switch (ref_type(refname)) {
348 case REF_TYPE_PER_WORKTREE:
349 case REF_TYPE_PSEUDOREF:
350 strbuf_addf(sb, "%s/%s", refs->gitdir, refname);
352 case REF_TYPE_NORMAL:
353 strbuf_addf(sb, "%s/%s", refs->gitcommondir, refname);
356 die("BUG: unknown ref type %d of ref %s",
357 ref_type(refname), refname);
362 * Get the packed_ref_cache for the specified files_ref_store,
363 * creating it if necessary.
365 static struct packed_ref_cache *get_packed_ref_cache(struct files_ref_store *refs)
367 const char *packed_refs_file = files_packed_refs_path(refs);
370 !stat_validity_check(&refs->packed->validity, packed_refs_file))
371 clear_packed_ref_cache(refs);
376 refs->packed = xcalloc(1, sizeof(*refs->packed));
377 acquire_packed_ref_cache(refs->packed);
378 refs->packed->cache = create_ref_cache(&refs->base, NULL);
379 refs->packed->cache->root->flag &= ~REF_INCOMPLETE;
380 f = fopen(packed_refs_file, "r");
382 stat_validity_update(&refs->packed->validity, fileno(f));
383 read_packed_refs(f, get_ref_dir(refs->packed->cache->root));
390 static struct ref_dir *get_packed_ref_dir(struct packed_ref_cache *packed_ref_cache)
392 return get_ref_dir(packed_ref_cache->cache->root);
395 static struct ref_dir *get_packed_refs(struct files_ref_store *refs)
397 return get_packed_ref_dir(get_packed_ref_cache(refs));
401 * Add a reference to the in-memory packed reference cache. This may
402 * only be called while the packed-refs file is locked (see
403 * lock_packed_refs()). To actually write the packed-refs file, call
404 * commit_packed_refs().
406 static void add_packed_ref(struct files_ref_store *refs,
407 const char *refname, const unsigned char *sha1)
409 struct packed_ref_cache *packed_ref_cache = get_packed_ref_cache(refs);
411 if (!packed_ref_cache->lock)
412 die("internal error: packed refs not locked");
413 add_ref_entry(get_packed_ref_dir(packed_ref_cache),
414 create_ref_entry(refname, sha1, REF_ISPACKED, 1));
418 * Read the loose references from the namespace dirname into dir
419 * (without recursing). dirname must end with '/'. dir must be the
420 * directory entry corresponding to dirname.
422 static void loose_fill_ref_dir(struct ref_store *ref_store,
423 struct ref_dir *dir, const char *dirname)
425 struct files_ref_store *refs =
426 files_downcast(ref_store, REF_STORE_READ, "fill_ref_dir");
429 int dirnamelen = strlen(dirname);
430 struct strbuf refname;
431 struct strbuf path = STRBUF_INIT;
434 files_ref_path(refs, &path, dirname);
435 path_baselen = path.len;
437 d = opendir(path.buf);
439 strbuf_release(&path);
443 strbuf_init(&refname, dirnamelen + 257);
444 strbuf_add(&refname, dirname, dirnamelen);
446 while ((de = readdir(d)) != NULL) {
447 unsigned char sha1[20];
451 if (de->d_name[0] == '.')
453 if (ends_with(de->d_name, ".lock"))
455 strbuf_addstr(&refname, de->d_name);
456 strbuf_addstr(&path, de->d_name);
457 if (stat(path.buf, &st) < 0) {
458 ; /* silently ignore */
459 } else if (S_ISDIR(st.st_mode)) {
460 strbuf_addch(&refname, '/');
461 add_entry_to_dir(dir,
462 create_dir_entry(dir->cache, refname.buf,
465 if (!refs_resolve_ref_unsafe(&refs->base,
470 flag |= REF_ISBROKEN;
471 } else if (is_null_sha1(sha1)) {
473 * It is so astronomically unlikely
474 * that NULL_SHA1 is the SHA-1 of an
475 * actual object that we consider its
476 * appearance in a loose reference
477 * file to be repo corruption
478 * (probably due to a software bug).
480 flag |= REF_ISBROKEN;
483 if (check_refname_format(refname.buf,
484 REFNAME_ALLOW_ONELEVEL)) {
485 if (!refname_is_safe(refname.buf))
486 die("loose refname is dangerous: %s", refname.buf);
488 flag |= REF_BAD_NAME | REF_ISBROKEN;
490 add_entry_to_dir(dir,
491 create_ref_entry(refname.buf, sha1, flag, 0));
493 strbuf_setlen(&refname, dirnamelen);
494 strbuf_setlen(&path, path_baselen);
496 strbuf_release(&refname);
497 strbuf_release(&path);
501 * Manually add refs/bisect, which, being per-worktree, might
502 * not appear in the directory listing for refs/ in the main
505 if (!strcmp(dirname, "refs/")) {
506 int pos = search_ref_dir(dir, "refs/bisect/", 12);
509 struct ref_entry *child_entry = create_dir_entry(
510 dir->cache, "refs/bisect/", 12, 1);
511 add_entry_to_dir(dir, child_entry);
516 static struct ref_cache *get_loose_ref_cache(struct files_ref_store *refs)
520 * Mark the top-level directory complete because we
521 * are about to read the only subdirectory that can
524 refs->loose = create_ref_cache(&refs->base, loose_fill_ref_dir);
526 /* We're going to fill the top level ourselves: */
527 refs->loose->root->flag &= ~REF_INCOMPLETE;
530 * Add an incomplete entry for "refs/" (to be filled
533 add_entry_to_dir(get_ref_dir(refs->loose->root),
534 create_dir_entry(refs->loose, "refs/", 5, 1));
540 * Return the ref_entry for the given refname from the packed
541 * references. If it does not exist, return NULL.
543 static struct ref_entry *get_packed_ref(struct files_ref_store *refs,
546 return find_ref_entry(get_packed_refs(refs), refname);
550 * A loose ref file doesn't exist; check for a packed ref.
552 static int resolve_packed_ref(struct files_ref_store *refs,
554 unsigned char *sha1, unsigned int *flags)
556 struct ref_entry *entry;
559 * The loose reference file does not exist; check for a packed
562 entry = get_packed_ref(refs, refname);
564 hashcpy(sha1, entry->u.value.oid.hash);
565 *flags |= REF_ISPACKED;
568 /* refname is not a packed reference. */
572 static int files_read_raw_ref(struct ref_store *ref_store,
573 const char *refname, unsigned char *sha1,
574 struct strbuf *referent, unsigned int *type)
576 struct files_ref_store *refs =
577 files_downcast(ref_store, REF_STORE_READ, "read_raw_ref");
578 struct strbuf sb_contents = STRBUF_INIT;
579 struct strbuf sb_path = STRBUF_INIT;
586 int remaining_retries = 3;
589 strbuf_reset(&sb_path);
591 files_ref_path(refs, &sb_path, refname);
597 * We might have to loop back here to avoid a race
598 * condition: first we lstat() the file, then we try
599 * to read it as a link or as a file. But if somebody
600 * changes the type of the file (file <-> directory
601 * <-> symlink) between the lstat() and reading, then
602 * we don't want to report that as an error but rather
603 * try again starting with the lstat().
605 * We'll keep a count of the retries, though, just to avoid
606 * any confusing situation sending us into an infinite loop.
609 if (remaining_retries-- <= 0)
612 if (lstat(path, &st) < 0) {
615 if (resolve_packed_ref(refs, refname, sha1, type)) {
623 /* Follow "normalized" - ie "refs/.." symlinks by hand */
624 if (S_ISLNK(st.st_mode)) {
625 strbuf_reset(&sb_contents);
626 if (strbuf_readlink(&sb_contents, path, 0) < 0) {
627 if (errno == ENOENT || errno == EINVAL)
628 /* inconsistent with lstat; retry */
633 if (starts_with(sb_contents.buf, "refs/") &&
634 !check_refname_format(sb_contents.buf, 0)) {
635 strbuf_swap(&sb_contents, referent);
636 *type |= REF_ISSYMREF;
641 * It doesn't look like a refname; fall through to just
642 * treating it like a non-symlink, and reading whatever it
647 /* Is it a directory? */
648 if (S_ISDIR(st.st_mode)) {
650 * Even though there is a directory where the loose
651 * ref is supposed to be, there could still be a
654 if (resolve_packed_ref(refs, refname, sha1, type)) {
663 * Anything else, just open it and try to use it as
666 fd = open(path, O_RDONLY);
668 if (errno == ENOENT && !S_ISLNK(st.st_mode))
669 /* inconsistent with lstat; retry */
674 strbuf_reset(&sb_contents);
675 if (strbuf_read(&sb_contents, fd, 256) < 0) {
676 int save_errno = errno;
682 strbuf_rtrim(&sb_contents);
683 buf = sb_contents.buf;
684 if (starts_with(buf, "ref:")) {
686 while (isspace(*buf))
689 strbuf_reset(referent);
690 strbuf_addstr(referent, buf);
691 *type |= REF_ISSYMREF;
697 * Please note that FETCH_HEAD has additional
698 * data after the sha.
700 if (get_sha1_hex(buf, sha1) ||
701 (buf[40] != '\0' && !isspace(buf[40]))) {
702 *type |= REF_ISBROKEN;
711 strbuf_release(&sb_path);
712 strbuf_release(&sb_contents);
717 static void unlock_ref(struct ref_lock *lock)
719 /* Do not free lock->lk -- atexit() still looks at them */
721 rollback_lock_file(lock->lk);
722 free(lock->ref_name);
727 * Lock refname, without following symrefs, and set *lock_p to point
728 * at a newly-allocated lock object. Fill in lock->old_oid, referent,
729 * and type similarly to read_raw_ref().
731 * The caller must verify that refname is a "safe" reference name (in
732 * the sense of refname_is_safe()) before calling this function.
734 * If the reference doesn't already exist, verify that refname doesn't
735 * have a D/F conflict with any existing references. extras and skip
736 * are passed to refs_verify_refname_available() for this check.
738 * If mustexist is not set and the reference is not found or is
739 * broken, lock the reference anyway but clear sha1.
741 * Return 0 on success. On failure, write an error message to err and
742 * return TRANSACTION_NAME_CONFLICT or TRANSACTION_GENERIC_ERROR.
744 * Implementation note: This function is basically
749 * but it includes a lot more code to
750 * - Deal with possible races with other processes
751 * - Avoid calling refs_verify_refname_available() when it can be
752 * avoided, namely if we were successfully able to read the ref
753 * - Generate informative error messages in the case of failure
755 static int lock_raw_ref(struct files_ref_store *refs,
756 const char *refname, int mustexist,
757 const struct string_list *extras,
758 const struct string_list *skip,
759 struct ref_lock **lock_p,
760 struct strbuf *referent,
764 struct ref_lock *lock;
765 struct strbuf ref_file = STRBUF_INIT;
766 int attempts_remaining = 3;
767 int ret = TRANSACTION_GENERIC_ERROR;
770 files_assert_main_repository(refs, "lock_raw_ref");
774 /* First lock the file so it can't change out from under us. */
776 *lock_p = lock = xcalloc(1, sizeof(*lock));
778 lock->ref_name = xstrdup(refname);
779 files_ref_path(refs, &ref_file, refname);
782 switch (safe_create_leading_directories(ref_file.buf)) {
787 * Suppose refname is "refs/foo/bar". We just failed
788 * to create the containing directory, "refs/foo",
789 * because there was a non-directory in the way. This
790 * indicates a D/F conflict, probably because of
791 * another reference such as "refs/foo". There is no
792 * reason to expect this error to be transitory.
794 if (refs_verify_refname_available(&refs->base, refname,
795 extras, skip, err)) {
798 * To the user the relevant error is
799 * that the "mustexist" reference is
803 strbuf_addf(err, "unable to resolve reference '%s'",
807 * The error message set by
808 * refs_verify_refname_available() is
811 ret = TRANSACTION_NAME_CONFLICT;
815 * The file that is in the way isn't a loose
816 * reference. Report it as a low-level
819 strbuf_addf(err, "unable to create lock file %s.lock; "
820 "non-directory in the way",
825 /* Maybe another process was tidying up. Try again. */
826 if (--attempts_remaining > 0)
830 strbuf_addf(err, "unable to create directory for %s",
836 lock->lk = xcalloc(1, sizeof(struct lock_file));
838 if (hold_lock_file_for_update(lock->lk, ref_file.buf, LOCK_NO_DEREF) < 0) {
839 if (errno == ENOENT && --attempts_remaining > 0) {
841 * Maybe somebody just deleted one of the
842 * directories leading to ref_file. Try
847 unable_to_lock_message(ref_file.buf, errno, err);
853 * Now we hold the lock and can read the reference without
854 * fear that its value will change.
857 if (files_read_raw_ref(&refs->base, refname,
858 lock->old_oid.hash, referent, type)) {
859 if (errno == ENOENT) {
861 /* Garden variety missing reference. */
862 strbuf_addf(err, "unable to resolve reference '%s'",
867 * Reference is missing, but that's OK. We
868 * know that there is not a conflict with
869 * another loose reference because
870 * (supposing that we are trying to lock
871 * reference "refs/foo/bar"):
873 * - We were successfully able to create
874 * the lockfile refs/foo/bar.lock, so we
875 * know there cannot be a loose reference
878 * - We got ENOENT and not EISDIR, so we
879 * know that there cannot be a loose
880 * reference named "refs/foo/bar/baz".
883 } else if (errno == EISDIR) {
885 * There is a directory in the way. It might have
886 * contained references that have been deleted. If
887 * we don't require that the reference already
888 * exists, try to remove the directory so that it
889 * doesn't cause trouble when we want to rename the
890 * lockfile into place later.
893 /* Garden variety missing reference. */
894 strbuf_addf(err, "unable to resolve reference '%s'",
897 } else if (remove_dir_recursively(&ref_file,
898 REMOVE_DIR_EMPTY_ONLY)) {
899 if (refs_verify_refname_available(
900 &refs->base, refname,
901 extras, skip, err)) {
903 * The error message set by
904 * verify_refname_available() is OK.
906 ret = TRANSACTION_NAME_CONFLICT;
910 * We can't delete the directory,
911 * but we also don't know of any
912 * references that it should
915 strbuf_addf(err, "there is a non-empty directory '%s' "
916 "blocking reference '%s'",
917 ref_file.buf, refname);
921 } else if (errno == EINVAL && (*type & REF_ISBROKEN)) {
922 strbuf_addf(err, "unable to resolve reference '%s': "
923 "reference broken", refname);
926 strbuf_addf(err, "unable to resolve reference '%s': %s",
927 refname, strerror(errno));
932 * If the ref did not exist and we are creating it,
933 * make sure there is no existing ref that conflicts
936 if (refs_verify_refname_available(
937 &refs->base, refname,
950 strbuf_release(&ref_file);
954 static int files_peel_ref(struct ref_store *ref_store,
955 const char *refname, unsigned char *sha1)
957 struct files_ref_store *refs =
958 files_downcast(ref_store, REF_STORE_READ | REF_STORE_ODB,
961 unsigned char base[20];
963 if (current_ref_iter && current_ref_iter->refname == refname) {
964 struct object_id peeled;
966 if (ref_iterator_peel(current_ref_iter, &peeled))
968 hashcpy(sha1, peeled.hash);
972 if (refs_read_ref_full(ref_store, refname,
973 RESOLVE_REF_READING, base, &flag))
977 * If the reference is packed, read its ref_entry from the
978 * cache in the hope that we already know its peeled value.
979 * We only try this optimization on packed references because
980 * (a) forcing the filling of the loose reference cache could
981 * be expensive and (b) loose references anyway usually do not
982 * have REF_KNOWS_PEELED.
984 if (flag & REF_ISPACKED) {
985 struct ref_entry *r = get_packed_ref(refs, refname);
987 if (peel_entry(r, 0))
989 hashcpy(sha1, r->u.value.peeled.hash);
994 return peel_object(base, sha1);
997 struct files_ref_iterator {
998 struct ref_iterator base;
1000 struct packed_ref_cache *packed_ref_cache;
1001 struct ref_iterator *iter0;
1005 static int files_ref_iterator_advance(struct ref_iterator *ref_iterator)
1007 struct files_ref_iterator *iter =
1008 (struct files_ref_iterator *)ref_iterator;
1011 while ((ok = ref_iterator_advance(iter->iter0)) == ITER_OK) {
1012 if (iter->flags & DO_FOR_EACH_PER_WORKTREE_ONLY &&
1013 ref_type(iter->iter0->refname) != REF_TYPE_PER_WORKTREE)
1016 if (!(iter->flags & DO_FOR_EACH_INCLUDE_BROKEN) &&
1017 !ref_resolves_to_object(iter->iter0->refname,
1019 iter->iter0->flags))
1022 iter->base.refname = iter->iter0->refname;
1023 iter->base.oid = iter->iter0->oid;
1024 iter->base.flags = iter->iter0->flags;
1029 if (ref_iterator_abort(ref_iterator) != ITER_DONE)
1035 static int files_ref_iterator_peel(struct ref_iterator *ref_iterator,
1036 struct object_id *peeled)
1038 struct files_ref_iterator *iter =
1039 (struct files_ref_iterator *)ref_iterator;
1041 return ref_iterator_peel(iter->iter0, peeled);
1044 static int files_ref_iterator_abort(struct ref_iterator *ref_iterator)
1046 struct files_ref_iterator *iter =
1047 (struct files_ref_iterator *)ref_iterator;
1051 ok = ref_iterator_abort(iter->iter0);
1053 release_packed_ref_cache(iter->packed_ref_cache);
1054 base_ref_iterator_free(ref_iterator);
1058 static struct ref_iterator_vtable files_ref_iterator_vtable = {
1059 files_ref_iterator_advance,
1060 files_ref_iterator_peel,
1061 files_ref_iterator_abort
1064 static struct ref_iterator *files_ref_iterator_begin(
1065 struct ref_store *ref_store,
1066 const char *prefix, unsigned int flags)
1068 struct files_ref_store *refs;
1069 struct ref_iterator *loose_iter, *packed_iter;
1070 struct files_ref_iterator *iter;
1071 struct ref_iterator *ref_iterator;
1073 if (ref_paranoia < 0)
1074 ref_paranoia = git_env_bool("GIT_REF_PARANOIA", 0);
1076 flags |= DO_FOR_EACH_INCLUDE_BROKEN;
1078 refs = files_downcast(ref_store,
1079 REF_STORE_READ | (ref_paranoia ? 0 : REF_STORE_ODB),
1080 "ref_iterator_begin");
1082 iter = xcalloc(1, sizeof(*iter));
1083 ref_iterator = &iter->base;
1084 base_ref_iterator_init(ref_iterator, &files_ref_iterator_vtable);
1087 * We must make sure that all loose refs are read before
1088 * accessing the packed-refs file; this avoids a race
1089 * condition if loose refs are migrated to the packed-refs
1090 * file by a simultaneous process, but our in-memory view is
1091 * from before the migration. We ensure this as follows:
1092 * First, we call start the loose refs iteration with its
1093 * `prime_ref` argument set to true. This causes the loose
1094 * references in the subtree to be pre-read into the cache.
1095 * (If they've already been read, that's OK; we only need to
1096 * guarantee that they're read before the packed refs, not
1097 * *how much* before.) After that, we call
1098 * get_packed_ref_cache(), which internally checks whether the
1099 * packed-ref cache is up to date with what is on disk, and
1100 * re-reads it if not.
1103 loose_iter = cache_ref_iterator_begin(get_loose_ref_cache(refs),
1106 iter->packed_ref_cache = get_packed_ref_cache(refs);
1107 acquire_packed_ref_cache(iter->packed_ref_cache);
1108 packed_iter = cache_ref_iterator_begin(iter->packed_ref_cache->cache,
1111 iter->iter0 = overlay_ref_iterator_begin(loose_iter, packed_iter);
1112 iter->flags = flags;
1114 return ref_iterator;
1118 * Verify that the reference locked by lock has the value old_sha1.
1119 * Fail if the reference doesn't exist and mustexist is set. Return 0
1120 * on success. On error, write an error message to err, set errno, and
1121 * return a negative value.
1123 static int verify_lock(struct ref_store *ref_store, struct ref_lock *lock,
1124 const unsigned char *old_sha1, int mustexist,
1129 if (refs_read_ref_full(ref_store, lock->ref_name,
1130 mustexist ? RESOLVE_REF_READING : 0,
1131 lock->old_oid.hash, NULL)) {
1133 int save_errno = errno;
1134 strbuf_addf(err, "can't verify ref '%s'", lock->ref_name);
1138 oidclr(&lock->old_oid);
1142 if (old_sha1 && hashcmp(lock->old_oid.hash, old_sha1)) {
1143 strbuf_addf(err, "ref '%s' is at %s but expected %s",
1145 oid_to_hex(&lock->old_oid),
1146 sha1_to_hex(old_sha1));
1153 static int remove_empty_directories(struct strbuf *path)
1156 * we want to create a file but there is a directory there;
1157 * if that is an empty directory (or a directory that contains
1158 * only empty directories), remove them.
1160 return remove_dir_recursively(path, REMOVE_DIR_EMPTY_ONLY);
1163 static int create_reflock(const char *path, void *cb)
1165 struct lock_file *lk = cb;
1167 return hold_lock_file_for_update(lk, path, LOCK_NO_DEREF) < 0 ? -1 : 0;
1171 * Locks a ref returning the lock on success and NULL on failure.
1172 * On failure errno is set to something meaningful.
1174 static struct ref_lock *lock_ref_sha1_basic(struct files_ref_store *refs,
1175 const char *refname,
1176 const unsigned char *old_sha1,
1177 const struct string_list *extras,
1178 const struct string_list *skip,
1179 unsigned int flags, int *type,
1182 struct strbuf ref_file = STRBUF_INIT;
1183 struct ref_lock *lock;
1185 int mustexist = (old_sha1 && !is_null_sha1(old_sha1));
1186 int resolve_flags = RESOLVE_REF_NO_RECURSE;
1189 files_assert_main_repository(refs, "lock_ref_sha1_basic");
1192 lock = xcalloc(1, sizeof(struct ref_lock));
1195 resolve_flags |= RESOLVE_REF_READING;
1196 if (flags & REF_DELETING)
1197 resolve_flags |= RESOLVE_REF_ALLOW_BAD_NAME;
1199 files_ref_path(refs, &ref_file, refname);
1200 resolved = !!refs_resolve_ref_unsafe(&refs->base,
1201 refname, resolve_flags,
1202 lock->old_oid.hash, type);
1203 if (!resolved && errno == EISDIR) {
1205 * we are trying to lock foo but we used to
1206 * have foo/bar which now does not exist;
1207 * it is normal for the empty directory 'foo'
1210 if (remove_empty_directories(&ref_file)) {
1212 if (!refs_verify_refname_available(
1214 refname, extras, skip, err))
1215 strbuf_addf(err, "there are still refs under '%s'",
1219 resolved = !!refs_resolve_ref_unsafe(&refs->base,
1220 refname, resolve_flags,
1221 lock->old_oid.hash, type);
1225 if (last_errno != ENOTDIR ||
1226 !refs_verify_refname_available(&refs->base, refname,
1228 strbuf_addf(err, "unable to resolve reference '%s': %s",
1229 refname, strerror(last_errno));
1235 * If the ref did not exist and we are creating it, make sure
1236 * there is no existing packed ref whose name begins with our
1237 * refname, nor a packed ref whose name is a proper prefix of
1240 if (is_null_oid(&lock->old_oid) &&
1241 refs_verify_refname_available(&refs->base, refname,
1242 extras, skip, err)) {
1243 last_errno = ENOTDIR;
1247 lock->lk = xcalloc(1, sizeof(struct lock_file));
1249 lock->ref_name = xstrdup(refname);
1251 if (raceproof_create_file(ref_file.buf, create_reflock, lock->lk)) {
1253 unable_to_lock_message(ref_file.buf, errno, err);
1257 if (verify_lock(&refs->base, lock, old_sha1, mustexist, err)) {
1268 strbuf_release(&ref_file);
1274 * Write an entry to the packed-refs file for the specified refname.
1275 * If peeled is non-NULL, write it as the entry's peeled value.
1277 static void write_packed_entry(FILE *fh, const char *refname,
1278 const unsigned char *sha1,
1279 const unsigned char *peeled)
1281 fprintf_or_die(fh, "%s %s\n", sha1_to_hex(sha1), refname);
1283 fprintf_or_die(fh, "^%s\n", sha1_to_hex(peeled));
1287 * Lock the packed-refs file for writing. Flags is passed to
1288 * hold_lock_file_for_update(). Return 0 on success. On errors, set
1289 * errno appropriately and return a nonzero value.
1291 static int lock_packed_refs(struct files_ref_store *refs, int flags)
1293 static int timeout_configured = 0;
1294 static int timeout_value = 1000;
1295 struct packed_ref_cache *packed_ref_cache;
1297 files_assert_main_repository(refs, "lock_packed_refs");
1299 if (!timeout_configured) {
1300 git_config_get_int("core.packedrefstimeout", &timeout_value);
1301 timeout_configured = 1;
1304 if (hold_lock_file_for_update_timeout(
1305 &packlock, files_packed_refs_path(refs),
1306 flags, timeout_value) < 0)
1309 * Get the current packed-refs while holding the lock. If the
1310 * packed-refs file has been modified since we last read it,
1311 * this will automatically invalidate the cache and re-read
1312 * the packed-refs file.
1314 packed_ref_cache = get_packed_ref_cache(refs);
1315 packed_ref_cache->lock = &packlock;
1316 /* Increment the reference count to prevent it from being freed: */
1317 acquire_packed_ref_cache(packed_ref_cache);
1322 * Write the current version of the packed refs cache from memory to
1323 * disk. The packed-refs file must already be locked for writing (see
1324 * lock_packed_refs()). Return zero on success. On errors, set errno
1325 * and return a nonzero value
1327 static int commit_packed_refs(struct files_ref_store *refs)
1329 struct packed_ref_cache *packed_ref_cache =
1330 get_packed_ref_cache(refs);
1334 struct ref_iterator *iter;
1336 files_assert_main_repository(refs, "commit_packed_refs");
1338 if (!packed_ref_cache->lock)
1339 die("internal error: packed-refs not locked");
1341 out = fdopen_lock_file(packed_ref_cache->lock, "w");
1343 die_errno("unable to fdopen packed-refs descriptor");
1345 fprintf_or_die(out, "%s", PACKED_REFS_HEADER);
1347 iter = cache_ref_iterator_begin(packed_ref_cache->cache, NULL, 0);
1348 while ((ok = ref_iterator_advance(iter)) == ITER_OK) {
1349 struct object_id peeled;
1350 int peel_error = ref_iterator_peel(iter, &peeled);
1352 write_packed_entry(out, iter->refname, iter->oid->hash,
1353 peel_error ? NULL : peeled.hash);
1356 if (ok != ITER_DONE)
1357 die("error while iterating over references");
1359 if (commit_lock_file(packed_ref_cache->lock)) {
1363 packed_ref_cache->lock = NULL;
1364 release_packed_ref_cache(packed_ref_cache);
1370 * Rollback the lockfile for the packed-refs file, and discard the
1371 * in-memory packed reference cache. (The packed-refs file will be
1372 * read anew if it is needed again after this function is called.)
1374 static void rollback_packed_refs(struct files_ref_store *refs)
1376 struct packed_ref_cache *packed_ref_cache =
1377 get_packed_ref_cache(refs);
1379 files_assert_main_repository(refs, "rollback_packed_refs");
1381 if (!packed_ref_cache->lock)
1382 die("internal error: packed-refs not locked");
1383 rollback_lock_file(packed_ref_cache->lock);
1384 packed_ref_cache->lock = NULL;
1385 release_packed_ref_cache(packed_ref_cache);
1386 clear_packed_ref_cache(refs);
1389 struct ref_to_prune {
1390 struct ref_to_prune *next;
1391 unsigned char sha1[20];
1392 char name[FLEX_ARRAY];
1396 REMOVE_EMPTY_PARENTS_REF = 0x01,
1397 REMOVE_EMPTY_PARENTS_REFLOG = 0x02
1401 * Remove empty parent directories associated with the specified
1402 * reference and/or its reflog, but spare [logs/]refs/ and immediate
1403 * subdirs. flags is a combination of REMOVE_EMPTY_PARENTS_REF and/or
1404 * REMOVE_EMPTY_PARENTS_REFLOG.
1406 static void try_remove_empty_parents(struct files_ref_store *refs,
1407 const char *refname,
1410 struct strbuf buf = STRBUF_INIT;
1411 struct strbuf sb = STRBUF_INIT;
1415 strbuf_addstr(&buf, refname);
1417 for (i = 0; i < 2; i++) { /* refs/{heads,tags,...}/ */
1418 while (*p && *p != '/')
1420 /* tolerate duplicate slashes; see check_refname_format() */
1424 q = buf.buf + buf.len;
1425 while (flags & (REMOVE_EMPTY_PARENTS_REF | REMOVE_EMPTY_PARENTS_REFLOG)) {
1426 while (q > p && *q != '/')
1428 while (q > p && *(q-1) == '/')
1432 strbuf_setlen(&buf, q - buf.buf);
1435 files_ref_path(refs, &sb, buf.buf);
1436 if ((flags & REMOVE_EMPTY_PARENTS_REF) && rmdir(sb.buf))
1437 flags &= ~REMOVE_EMPTY_PARENTS_REF;
1440 files_reflog_path(refs, &sb, buf.buf);
1441 if ((flags & REMOVE_EMPTY_PARENTS_REFLOG) && rmdir(sb.buf))
1442 flags &= ~REMOVE_EMPTY_PARENTS_REFLOG;
1444 strbuf_release(&buf);
1445 strbuf_release(&sb);
1448 /* make sure nobody touched the ref, and unlink */
1449 static void prune_ref(struct files_ref_store *refs, struct ref_to_prune *r)
1451 struct ref_transaction *transaction;
1452 struct strbuf err = STRBUF_INIT;
1454 if (check_refname_format(r->name, 0))
1457 transaction = ref_store_transaction_begin(&refs->base, &err);
1459 ref_transaction_delete(transaction, r->name, r->sha1,
1460 REF_ISPRUNING | REF_NODEREF, NULL, &err) ||
1461 ref_transaction_commit(transaction, &err)) {
1462 ref_transaction_free(transaction);
1463 error("%s", err.buf);
1464 strbuf_release(&err);
1467 ref_transaction_free(transaction);
1468 strbuf_release(&err);
1471 static void prune_refs(struct files_ref_store *refs, struct ref_to_prune *r)
1479 static int files_pack_refs(struct ref_store *ref_store, unsigned int flags)
1481 struct files_ref_store *refs =
1482 files_downcast(ref_store, REF_STORE_WRITE | REF_STORE_ODB,
1484 struct ref_iterator *iter;
1485 struct ref_dir *packed_refs;
1487 struct ref_to_prune *refs_to_prune = NULL;
1489 lock_packed_refs(refs, LOCK_DIE_ON_ERROR);
1490 packed_refs = get_packed_refs(refs);
1492 iter = cache_ref_iterator_begin(get_loose_ref_cache(refs), NULL, 0);
1493 while ((ok = ref_iterator_advance(iter)) == ITER_OK) {
1495 * If the loose reference can be packed, add an entry
1496 * in the packed ref cache. If the reference should be
1497 * pruned, also add it to refs_to_prune.
1499 struct ref_entry *packed_entry;
1500 int is_tag_ref = starts_with(iter->refname, "refs/tags/");
1502 /* Do not pack per-worktree refs: */
1503 if (ref_type(iter->refname) != REF_TYPE_NORMAL)
1506 /* ALWAYS pack tags */
1507 if (!(flags & PACK_REFS_ALL) && !is_tag_ref)
1510 /* Do not pack symbolic or broken refs: */
1511 if (iter->flags & REF_ISSYMREF)
1514 if (!ref_resolves_to_object(iter->refname, iter->oid, iter->flags))
1518 * Create an entry in the packed-refs cache equivalent
1519 * to the one from the loose ref cache, except that
1520 * we don't copy the peeled status, because we want it
1523 packed_entry = find_ref_entry(packed_refs, iter->refname);
1525 /* Overwrite existing packed entry with info from loose entry */
1526 packed_entry->flag = REF_ISPACKED;
1527 oidcpy(&packed_entry->u.value.oid, iter->oid);
1529 packed_entry = create_ref_entry(iter->refname, iter->oid->hash,
1531 add_ref_entry(packed_refs, packed_entry);
1533 oidclr(&packed_entry->u.value.peeled);
1535 /* Schedule the loose reference for pruning if requested. */
1536 if ((flags & PACK_REFS_PRUNE)) {
1537 struct ref_to_prune *n;
1538 FLEX_ALLOC_STR(n, name, iter->refname);
1539 hashcpy(n->sha1, iter->oid->hash);
1540 n->next = refs_to_prune;
1544 if (ok != ITER_DONE)
1545 die("error while iterating over references");
1547 if (commit_packed_refs(refs))
1548 die_errno("unable to overwrite old ref-pack file");
1550 prune_refs(refs, refs_to_prune);
1555 * Rewrite the packed-refs file, omitting any refs listed in
1556 * 'refnames'. On error, leave packed-refs unchanged, write an error
1557 * message to 'err', and return a nonzero value.
1559 * The refs in 'refnames' needn't be sorted. `err` must not be NULL.
1561 static int repack_without_refs(struct files_ref_store *refs,
1562 struct string_list *refnames, struct strbuf *err)
1564 struct ref_dir *packed;
1565 struct string_list_item *refname;
1566 int ret, needs_repacking = 0, removed = 0;
1568 files_assert_main_repository(refs, "repack_without_refs");
1571 /* Look for a packed ref */
1572 for_each_string_list_item(refname, refnames) {
1573 if (get_packed_ref(refs, refname->string)) {
1574 needs_repacking = 1;
1579 /* Avoid locking if we have nothing to do */
1580 if (!needs_repacking)
1581 return 0; /* no refname exists in packed refs */
1583 if (lock_packed_refs(refs, 0)) {
1584 unable_to_lock_message(files_packed_refs_path(refs), errno, err);
1587 packed = get_packed_refs(refs);
1589 /* Remove refnames from the cache */
1590 for_each_string_list_item(refname, refnames)
1591 if (remove_entry_from_dir(packed, refname->string) != -1)
1595 * All packed entries disappeared while we were
1596 * acquiring the lock.
1598 rollback_packed_refs(refs);
1602 /* Write what remains */
1603 ret = commit_packed_refs(refs);
1605 strbuf_addf(err, "unable to overwrite old ref-pack file: %s",
1610 static int files_delete_refs(struct ref_store *ref_store,
1611 struct string_list *refnames, unsigned int flags)
1613 struct files_ref_store *refs =
1614 files_downcast(ref_store, REF_STORE_WRITE, "delete_refs");
1615 struct strbuf err = STRBUF_INIT;
1621 result = repack_without_refs(refs, refnames, &err);
1624 * If we failed to rewrite the packed-refs file, then
1625 * it is unsafe to try to remove loose refs, because
1626 * doing so might expose an obsolete packed value for
1627 * a reference that might even point at an object that
1628 * has been garbage collected.
1630 if (refnames->nr == 1)
1631 error(_("could not delete reference %s: %s"),
1632 refnames->items[0].string, err.buf);
1634 error(_("could not delete references: %s"), err.buf);
1639 for (i = 0; i < refnames->nr; i++) {
1640 const char *refname = refnames->items[i].string;
1642 if (refs_delete_ref(&refs->base, NULL, refname, NULL, flags))
1643 result |= error(_("could not remove reference %s"), refname);
1647 strbuf_release(&err);
1652 * People using contrib's git-new-workdir have .git/logs/refs ->
1653 * /some/other/path/.git/logs/refs, and that may live on another device.
1655 * IOW, to avoid cross device rename errors, the temporary renamed log must
1656 * live into logs/refs.
1658 #define TMP_RENAMED_LOG "refs/.tmp-renamed-log"
1661 const char *tmp_renamed_log;
1665 static int rename_tmp_log_callback(const char *path, void *cb_data)
1667 struct rename_cb *cb = cb_data;
1669 if (rename(cb->tmp_renamed_log, path)) {
1671 * rename(a, b) when b is an existing directory ought
1672 * to result in ISDIR, but Solaris 5.8 gives ENOTDIR.
1673 * Sheesh. Record the true errno for error reporting,
1674 * but report EISDIR to raceproof_create_file() so
1675 * that it knows to retry.
1677 cb->true_errno = errno;
1678 if (errno == ENOTDIR)
1686 static int rename_tmp_log(struct files_ref_store *refs, const char *newrefname)
1688 struct strbuf path = STRBUF_INIT;
1689 struct strbuf tmp = STRBUF_INIT;
1690 struct rename_cb cb;
1693 files_reflog_path(refs, &path, newrefname);
1694 files_reflog_path(refs, &tmp, TMP_RENAMED_LOG);
1695 cb.tmp_renamed_log = tmp.buf;
1696 ret = raceproof_create_file(path.buf, rename_tmp_log_callback, &cb);
1698 if (errno == EISDIR)
1699 error("directory not empty: %s", path.buf);
1701 error("unable to move logfile %s to %s: %s",
1703 strerror(cb.true_errno));
1706 strbuf_release(&path);
1707 strbuf_release(&tmp);
1711 static int write_ref_to_lockfile(struct ref_lock *lock,
1712 const unsigned char *sha1, struct strbuf *err);
1713 static int commit_ref_update(struct files_ref_store *refs,
1714 struct ref_lock *lock,
1715 const unsigned char *sha1, const char *logmsg,
1716 struct strbuf *err);
1718 static int files_rename_ref(struct ref_store *ref_store,
1719 const char *oldrefname, const char *newrefname,
1722 struct files_ref_store *refs =
1723 files_downcast(ref_store, REF_STORE_WRITE, "rename_ref");
1724 unsigned char sha1[20], orig_sha1[20];
1725 int flag = 0, logmoved = 0;
1726 struct ref_lock *lock;
1727 struct stat loginfo;
1728 struct strbuf sb_oldref = STRBUF_INIT;
1729 struct strbuf sb_newref = STRBUF_INIT;
1730 struct strbuf tmp_renamed_log = STRBUF_INIT;
1732 struct strbuf err = STRBUF_INIT;
1734 files_reflog_path(refs, &sb_oldref, oldrefname);
1735 files_reflog_path(refs, &sb_newref, newrefname);
1736 files_reflog_path(refs, &tmp_renamed_log, TMP_RENAMED_LOG);
1738 log = !lstat(sb_oldref.buf, &loginfo);
1739 if (log && S_ISLNK(loginfo.st_mode)) {
1740 ret = error("reflog for %s is a symlink", oldrefname);
1744 if (!refs_resolve_ref_unsafe(&refs->base, oldrefname,
1745 RESOLVE_REF_READING | RESOLVE_REF_NO_RECURSE,
1746 orig_sha1, &flag)) {
1747 ret = error("refname %s not found", oldrefname);
1751 if (flag & REF_ISSYMREF) {
1752 ret = error("refname %s is a symbolic ref, renaming it is not supported",
1756 if (!refs_rename_ref_available(&refs->base, oldrefname, newrefname)) {
1761 if (log && rename(sb_oldref.buf, tmp_renamed_log.buf)) {
1762 ret = error("unable to move logfile logs/%s to logs/"TMP_RENAMED_LOG": %s",
1763 oldrefname, strerror(errno));
1767 if (refs_delete_ref(&refs->base, logmsg, oldrefname,
1768 orig_sha1, REF_NODEREF)) {
1769 error("unable to delete old %s", oldrefname);
1774 * Since we are doing a shallow lookup, sha1 is not the
1775 * correct value to pass to delete_ref as old_sha1. But that
1776 * doesn't matter, because an old_sha1 check wouldn't add to
1777 * the safety anyway; we want to delete the reference whatever
1778 * its current value.
1780 if (!refs_read_ref_full(&refs->base, newrefname,
1781 RESOLVE_REF_READING | RESOLVE_REF_NO_RECURSE,
1783 refs_delete_ref(&refs->base, NULL, newrefname,
1784 NULL, REF_NODEREF)) {
1785 if (errno == EISDIR) {
1786 struct strbuf path = STRBUF_INIT;
1789 files_ref_path(refs, &path, newrefname);
1790 result = remove_empty_directories(&path);
1791 strbuf_release(&path);
1794 error("Directory not empty: %s", newrefname);
1798 error("unable to delete existing %s", newrefname);
1803 if (log && rename_tmp_log(refs, newrefname))
1808 lock = lock_ref_sha1_basic(refs, newrefname, NULL, NULL, NULL,
1809 REF_NODEREF, NULL, &err);
1811 error("unable to rename '%s' to '%s': %s", oldrefname, newrefname, err.buf);
1812 strbuf_release(&err);
1815 hashcpy(lock->old_oid.hash, orig_sha1);
1817 if (write_ref_to_lockfile(lock, orig_sha1, &err) ||
1818 commit_ref_update(refs, lock, orig_sha1, logmsg, &err)) {
1819 error("unable to write current sha1 into %s: %s", newrefname, err.buf);
1820 strbuf_release(&err);
1828 lock = lock_ref_sha1_basic(refs, oldrefname, NULL, NULL, NULL,
1829 REF_NODEREF, NULL, &err);
1831 error("unable to lock %s for rollback: %s", oldrefname, err.buf);
1832 strbuf_release(&err);
1836 flag = log_all_ref_updates;
1837 log_all_ref_updates = LOG_REFS_NONE;
1838 if (write_ref_to_lockfile(lock, orig_sha1, &err) ||
1839 commit_ref_update(refs, lock, orig_sha1, NULL, &err)) {
1840 error("unable to write current sha1 into %s: %s", oldrefname, err.buf);
1841 strbuf_release(&err);
1843 log_all_ref_updates = flag;
1846 if (logmoved && rename(sb_newref.buf, sb_oldref.buf))
1847 error("unable to restore logfile %s from %s: %s",
1848 oldrefname, newrefname, strerror(errno));
1849 if (!logmoved && log &&
1850 rename(tmp_renamed_log.buf, sb_oldref.buf))
1851 error("unable to restore logfile %s from logs/"TMP_RENAMED_LOG": %s",
1852 oldrefname, strerror(errno));
1855 strbuf_release(&sb_newref);
1856 strbuf_release(&sb_oldref);
1857 strbuf_release(&tmp_renamed_log);
1862 static int close_ref(struct ref_lock *lock)
1864 if (close_lock_file(lock->lk))
1869 static int commit_ref(struct ref_lock *lock)
1871 char *path = get_locked_file_path(lock->lk);
1874 if (!lstat(path, &st) && S_ISDIR(st.st_mode)) {
1876 * There is a directory at the path we want to rename
1877 * the lockfile to. Hopefully it is empty; try to
1880 size_t len = strlen(path);
1881 struct strbuf sb_path = STRBUF_INIT;
1883 strbuf_attach(&sb_path, path, len, len);
1886 * If this fails, commit_lock_file() will also fail
1887 * and will report the problem.
1889 remove_empty_directories(&sb_path);
1890 strbuf_release(&sb_path);
1895 if (commit_lock_file(lock->lk))
1900 static int open_or_create_logfile(const char *path, void *cb)
1904 *fd = open(path, O_APPEND | O_WRONLY | O_CREAT, 0666);
1905 return (*fd < 0) ? -1 : 0;
1909 * Create a reflog for a ref. If force_create = 0, only create the
1910 * reflog for certain refs (those for which should_autocreate_reflog
1911 * returns non-zero). Otherwise, create it regardless of the reference
1912 * name. If the logfile already existed or was created, return 0 and
1913 * set *logfd to the file descriptor opened for appending to the file.
1914 * If no logfile exists and we decided not to create one, return 0 and
1915 * set *logfd to -1. On failure, fill in *err, set *logfd to -1, and
1918 static int log_ref_setup(struct files_ref_store *refs,
1919 const char *refname, int force_create,
1920 int *logfd, struct strbuf *err)
1922 struct strbuf logfile_sb = STRBUF_INIT;
1925 files_reflog_path(refs, &logfile_sb, refname);
1926 logfile = strbuf_detach(&logfile_sb, NULL);
1928 if (force_create || should_autocreate_reflog(refname)) {
1929 if (raceproof_create_file(logfile, open_or_create_logfile, logfd)) {
1930 if (errno == ENOENT)
1931 strbuf_addf(err, "unable to create directory for '%s': "
1932 "%s", logfile, strerror(errno));
1933 else if (errno == EISDIR)
1934 strbuf_addf(err, "there are still logs under '%s'",
1937 strbuf_addf(err, "unable to append to '%s': %s",
1938 logfile, strerror(errno));
1943 *logfd = open(logfile, O_APPEND | O_WRONLY, 0666);
1945 if (errno == ENOENT || errno == EISDIR) {
1947 * The logfile doesn't already exist,
1948 * but that is not an error; it only
1949 * means that we won't write log
1954 strbuf_addf(err, "unable to append to '%s': %s",
1955 logfile, strerror(errno));
1962 adjust_shared_perm(logfile);
1972 static int files_create_reflog(struct ref_store *ref_store,
1973 const char *refname, int force_create,
1976 struct files_ref_store *refs =
1977 files_downcast(ref_store, REF_STORE_WRITE, "create_reflog");
1980 if (log_ref_setup(refs, refname, force_create, &fd, err))
1989 static int log_ref_write_fd(int fd, const unsigned char *old_sha1,
1990 const unsigned char *new_sha1,
1991 const char *committer, const char *msg)
1993 int msglen, written;
1994 unsigned maxlen, len;
1997 msglen = msg ? strlen(msg) : 0;
1998 maxlen = strlen(committer) + msglen + 100;
1999 logrec = xmalloc(maxlen);
2000 len = xsnprintf(logrec, maxlen, "%s %s %s\n",
2001 sha1_to_hex(old_sha1),
2002 sha1_to_hex(new_sha1),
2005 len += copy_reflog_msg(logrec + len - 1, msg) - 1;
2007 written = len <= maxlen ? write_in_full(fd, logrec, len) : -1;
2015 static int files_log_ref_write(struct files_ref_store *refs,
2016 const char *refname, const unsigned char *old_sha1,
2017 const unsigned char *new_sha1, const char *msg,
2018 int flags, struct strbuf *err)
2022 if (log_all_ref_updates == LOG_REFS_UNSET)
2023 log_all_ref_updates = is_bare_repository() ? LOG_REFS_NONE : LOG_REFS_NORMAL;
2025 result = log_ref_setup(refs, refname,
2026 flags & REF_FORCE_CREATE_REFLOG,
2034 result = log_ref_write_fd(logfd, old_sha1, new_sha1,
2035 git_committer_info(0), msg);
2037 struct strbuf sb = STRBUF_INIT;
2038 int save_errno = errno;
2040 files_reflog_path(refs, &sb, refname);
2041 strbuf_addf(err, "unable to append to '%s': %s",
2042 sb.buf, strerror(save_errno));
2043 strbuf_release(&sb);
2048 struct strbuf sb = STRBUF_INIT;
2049 int save_errno = errno;
2051 files_reflog_path(refs, &sb, refname);
2052 strbuf_addf(err, "unable to append to '%s': %s",
2053 sb.buf, strerror(save_errno));
2054 strbuf_release(&sb);
2061 * Write sha1 into the open lockfile, then close the lockfile. On
2062 * errors, rollback the lockfile, fill in *err and
2065 static int write_ref_to_lockfile(struct ref_lock *lock,
2066 const unsigned char *sha1, struct strbuf *err)
2068 static char term = '\n';
2072 o = parse_object(sha1);
2075 "trying to write ref '%s' with nonexistent object %s",
2076 lock->ref_name, sha1_to_hex(sha1));
2080 if (o->type != OBJ_COMMIT && is_branch(lock->ref_name)) {
2082 "trying to write non-commit object %s to branch '%s'",
2083 sha1_to_hex(sha1), lock->ref_name);
2087 fd = get_lock_file_fd(lock->lk);
2088 if (write_in_full(fd, sha1_to_hex(sha1), 40) != 40 ||
2089 write_in_full(fd, &term, 1) != 1 ||
2090 close_ref(lock) < 0) {
2092 "couldn't write '%s'", get_lock_file_path(lock->lk));
2100 * Commit a change to a loose reference that has already been written
2101 * to the loose reference lockfile. Also update the reflogs if
2102 * necessary, using the specified lockmsg (which can be NULL).
2104 static int commit_ref_update(struct files_ref_store *refs,
2105 struct ref_lock *lock,
2106 const unsigned char *sha1, const char *logmsg,
2109 files_assert_main_repository(refs, "commit_ref_update");
2111 clear_loose_ref_cache(refs);
2112 if (files_log_ref_write(refs, lock->ref_name,
2113 lock->old_oid.hash, sha1,
2115 char *old_msg = strbuf_detach(err, NULL);
2116 strbuf_addf(err, "cannot update the ref '%s': %s",
2117 lock->ref_name, old_msg);
2123 if (strcmp(lock->ref_name, "HEAD") != 0) {
2125 * Special hack: If a branch is updated directly and HEAD
2126 * points to it (may happen on the remote side of a push
2127 * for example) then logically the HEAD reflog should be
2129 * A generic solution implies reverse symref information,
2130 * but finding all symrefs pointing to the given branch
2131 * would be rather costly for this rare event (the direct
2132 * update of a branch) to be worth it. So let's cheat and
2133 * check with HEAD only which should cover 99% of all usage
2134 * scenarios (even 100% of the default ones).
2136 unsigned char head_sha1[20];
2138 const char *head_ref;
2140 head_ref = refs_resolve_ref_unsafe(&refs->base, "HEAD",
2141 RESOLVE_REF_READING,
2142 head_sha1, &head_flag);
2143 if (head_ref && (head_flag & REF_ISSYMREF) &&
2144 !strcmp(head_ref, lock->ref_name)) {
2145 struct strbuf log_err = STRBUF_INIT;
2146 if (files_log_ref_write(refs, "HEAD",
2147 lock->old_oid.hash, sha1,
2148 logmsg, 0, &log_err)) {
2149 error("%s", log_err.buf);
2150 strbuf_release(&log_err);
2155 if (commit_ref(lock)) {
2156 strbuf_addf(err, "couldn't set '%s'", lock->ref_name);
2165 static int create_ref_symlink(struct ref_lock *lock, const char *target)
2168 #ifndef NO_SYMLINK_HEAD
2169 char *ref_path = get_locked_file_path(lock->lk);
2171 ret = symlink(target, ref_path);
2175 fprintf(stderr, "no symlink - falling back to symbolic ref\n");
2180 static void update_symref_reflog(struct files_ref_store *refs,
2181 struct ref_lock *lock, const char *refname,
2182 const char *target, const char *logmsg)
2184 struct strbuf err = STRBUF_INIT;
2185 unsigned char new_sha1[20];
2187 !refs_read_ref_full(&refs->base, target,
2188 RESOLVE_REF_READING, new_sha1, NULL) &&
2189 files_log_ref_write(refs, refname, lock->old_oid.hash,
2190 new_sha1, logmsg, 0, &err)) {
2191 error("%s", err.buf);
2192 strbuf_release(&err);
2196 static int create_symref_locked(struct files_ref_store *refs,
2197 struct ref_lock *lock, const char *refname,
2198 const char *target, const char *logmsg)
2200 if (prefer_symlink_refs && !create_ref_symlink(lock, target)) {
2201 update_symref_reflog(refs, lock, refname, target, logmsg);
2205 if (!fdopen_lock_file(lock->lk, "w"))
2206 return error("unable to fdopen %s: %s",
2207 lock->lk->tempfile.filename.buf, strerror(errno));
2209 update_symref_reflog(refs, lock, refname, target, logmsg);
2211 /* no error check; commit_ref will check ferror */
2212 fprintf(lock->lk->tempfile.fp, "ref: %s\n", target);
2213 if (commit_ref(lock) < 0)
2214 return error("unable to write symref for %s: %s", refname,
2219 static int files_create_symref(struct ref_store *ref_store,
2220 const char *refname, const char *target,
2223 struct files_ref_store *refs =
2224 files_downcast(ref_store, REF_STORE_WRITE, "create_symref");
2225 struct strbuf err = STRBUF_INIT;
2226 struct ref_lock *lock;
2229 lock = lock_ref_sha1_basic(refs, refname, NULL,
2230 NULL, NULL, REF_NODEREF, NULL,
2233 error("%s", err.buf);
2234 strbuf_release(&err);
2238 ret = create_symref_locked(refs, lock, refname, target, logmsg);
2243 int set_worktree_head_symref(const char *gitdir, const char *target, const char *logmsg)
2246 * FIXME: this obviously will not work well for future refs
2247 * backends. This function needs to die.
2249 struct files_ref_store *refs =
2250 files_downcast(get_main_ref_store(),
2254 static struct lock_file head_lock;
2255 struct ref_lock *lock;
2256 struct strbuf head_path = STRBUF_INIT;
2257 const char *head_rel;
2260 strbuf_addf(&head_path, "%s/HEAD", absolute_path(gitdir));
2261 if (hold_lock_file_for_update(&head_lock, head_path.buf,
2262 LOCK_NO_DEREF) < 0) {
2263 struct strbuf err = STRBUF_INIT;
2264 unable_to_lock_message(head_path.buf, errno, &err);
2265 error("%s", err.buf);
2266 strbuf_release(&err);
2267 strbuf_release(&head_path);
2271 /* head_rel will be "HEAD" for the main tree, "worktrees/wt/HEAD" for
2273 head_rel = remove_leading_path(head_path.buf,
2274 absolute_path(get_git_common_dir()));
2275 /* to make use of create_symref_locked(), initialize ref_lock */
2276 lock = xcalloc(1, sizeof(struct ref_lock));
2277 lock->lk = &head_lock;
2278 lock->ref_name = xstrdup(head_rel);
2280 ret = create_symref_locked(refs, lock, head_rel, target, logmsg);
2282 unlock_ref(lock); /* will free lock */
2283 strbuf_release(&head_path);
2287 static int files_reflog_exists(struct ref_store *ref_store,
2288 const char *refname)
2290 struct files_ref_store *refs =
2291 files_downcast(ref_store, REF_STORE_READ, "reflog_exists");
2292 struct strbuf sb = STRBUF_INIT;
2296 files_reflog_path(refs, &sb, refname);
2297 ret = !lstat(sb.buf, &st) && S_ISREG(st.st_mode);
2298 strbuf_release(&sb);
2302 static int files_delete_reflog(struct ref_store *ref_store,
2303 const char *refname)
2305 struct files_ref_store *refs =
2306 files_downcast(ref_store, REF_STORE_WRITE, "delete_reflog");
2307 struct strbuf sb = STRBUF_INIT;
2310 files_reflog_path(refs, &sb, refname);
2311 ret = remove_path(sb.buf);
2312 strbuf_release(&sb);
2316 static int show_one_reflog_ent(struct strbuf *sb, each_reflog_ent_fn fn, void *cb_data)
2318 struct object_id ooid, noid;
2319 char *email_end, *message;
2320 unsigned long timestamp;
2322 const char *p = sb->buf;
2324 /* old SP new SP name <email> SP time TAB msg LF */
2325 if (!sb->len || sb->buf[sb->len - 1] != '\n' ||
2326 parse_oid_hex(p, &ooid, &p) || *p++ != ' ' ||
2327 parse_oid_hex(p, &noid, &p) || *p++ != ' ' ||
2328 !(email_end = strchr(p, '>')) ||
2329 email_end[1] != ' ' ||
2330 !(timestamp = strtoul(email_end + 2, &message, 10)) ||
2331 !message || message[0] != ' ' ||
2332 (message[1] != '+' && message[1] != '-') ||
2333 !isdigit(message[2]) || !isdigit(message[3]) ||
2334 !isdigit(message[4]) || !isdigit(message[5]))
2335 return 0; /* corrupt? */
2336 email_end[1] = '\0';
2337 tz = strtol(message + 1, NULL, 10);
2338 if (message[6] != '\t')
2342 return fn(&ooid, &noid, p, timestamp, tz, message, cb_data);
2345 static char *find_beginning_of_line(char *bob, char *scan)
2347 while (bob < scan && *(--scan) != '\n')
2348 ; /* keep scanning backwards */
2350 * Return either beginning of the buffer, or LF at the end of
2351 * the previous line.
2356 static int files_for_each_reflog_ent_reverse(struct ref_store *ref_store,
2357 const char *refname,
2358 each_reflog_ent_fn fn,
2361 struct files_ref_store *refs =
2362 files_downcast(ref_store, REF_STORE_READ,
2363 "for_each_reflog_ent_reverse");
2364 struct strbuf sb = STRBUF_INIT;
2367 int ret = 0, at_tail = 1;
2369 files_reflog_path(refs, &sb, refname);
2370 logfp = fopen(sb.buf, "r");
2371 strbuf_release(&sb);
2375 /* Jump to the end */
2376 if (fseek(logfp, 0, SEEK_END) < 0)
2377 ret = error("cannot seek back reflog for %s: %s",
2378 refname, strerror(errno));
2380 while (!ret && 0 < pos) {
2386 /* Fill next block from the end */
2387 cnt = (sizeof(buf) < pos) ? sizeof(buf) : pos;
2388 if (fseek(logfp, pos - cnt, SEEK_SET)) {
2389 ret = error("cannot seek back reflog for %s: %s",
2390 refname, strerror(errno));
2393 nread = fread(buf, cnt, 1, logfp);
2395 ret = error("cannot read %d bytes from reflog for %s: %s",
2396 cnt, refname, strerror(errno));
2401 scanp = endp = buf + cnt;
2402 if (at_tail && scanp[-1] == '\n')
2403 /* Looking at the final LF at the end of the file */
2407 while (buf < scanp) {
2409 * terminating LF of the previous line, or the beginning
2414 bp = find_beginning_of_line(buf, scanp);
2418 * The newline is the end of the previous line,
2419 * so we know we have complete line starting
2420 * at (bp + 1). Prefix it onto any prior data
2421 * we collected for the line and process it.
2423 strbuf_splice(&sb, 0, 0, bp + 1, endp - (bp + 1));
2426 ret = show_one_reflog_ent(&sb, fn, cb_data);
2432 * We are at the start of the buffer, and the
2433 * start of the file; there is no previous
2434 * line, and we have everything for this one.
2435 * Process it, and we can end the loop.
2437 strbuf_splice(&sb, 0, 0, buf, endp - buf);
2438 ret = show_one_reflog_ent(&sb, fn, cb_data);
2445 * We are at the start of the buffer, and there
2446 * is more file to read backwards. Which means
2447 * we are in the middle of a line. Note that we
2448 * may get here even if *bp was a newline; that
2449 * just means we are at the exact end of the
2450 * previous line, rather than some spot in the
2453 * Save away what we have to be combined with
2454 * the data from the next read.
2456 strbuf_splice(&sb, 0, 0, buf, endp - buf);
2463 die("BUG: reverse reflog parser had leftover data");
2466 strbuf_release(&sb);
2470 static int files_for_each_reflog_ent(struct ref_store *ref_store,
2471 const char *refname,
2472 each_reflog_ent_fn fn, void *cb_data)
2474 struct files_ref_store *refs =
2475 files_downcast(ref_store, REF_STORE_READ,
2476 "for_each_reflog_ent");
2478 struct strbuf sb = STRBUF_INIT;
2481 files_reflog_path(refs, &sb, refname);
2482 logfp = fopen(sb.buf, "r");
2483 strbuf_release(&sb);
2487 while (!ret && !strbuf_getwholeline(&sb, logfp, '\n'))
2488 ret = show_one_reflog_ent(&sb, fn, cb_data);
2490 strbuf_release(&sb);
2494 struct files_reflog_iterator {
2495 struct ref_iterator base;
2497 struct ref_store *ref_store;
2498 struct dir_iterator *dir_iterator;
2499 struct object_id oid;
2502 static int files_reflog_iterator_advance(struct ref_iterator *ref_iterator)
2504 struct files_reflog_iterator *iter =
2505 (struct files_reflog_iterator *)ref_iterator;
2506 struct dir_iterator *diter = iter->dir_iterator;
2509 while ((ok = dir_iterator_advance(diter)) == ITER_OK) {
2512 if (!S_ISREG(diter->st.st_mode))
2514 if (diter->basename[0] == '.')
2516 if (ends_with(diter->basename, ".lock"))
2519 if (refs_read_ref_full(iter->ref_store,
2520 diter->relative_path, 0,
2521 iter->oid.hash, &flags)) {
2522 error("bad ref for %s", diter->path.buf);
2526 iter->base.refname = diter->relative_path;
2527 iter->base.oid = &iter->oid;
2528 iter->base.flags = flags;
2532 iter->dir_iterator = NULL;
2533 if (ref_iterator_abort(ref_iterator) == ITER_ERROR)
2538 static int files_reflog_iterator_peel(struct ref_iterator *ref_iterator,
2539 struct object_id *peeled)
2541 die("BUG: ref_iterator_peel() called for reflog_iterator");
2544 static int files_reflog_iterator_abort(struct ref_iterator *ref_iterator)
2546 struct files_reflog_iterator *iter =
2547 (struct files_reflog_iterator *)ref_iterator;
2550 if (iter->dir_iterator)
2551 ok = dir_iterator_abort(iter->dir_iterator);
2553 base_ref_iterator_free(ref_iterator);
2557 static struct ref_iterator_vtable files_reflog_iterator_vtable = {
2558 files_reflog_iterator_advance,
2559 files_reflog_iterator_peel,
2560 files_reflog_iterator_abort
2563 static struct ref_iterator *files_reflog_iterator_begin(struct ref_store *ref_store)
2565 struct files_ref_store *refs =
2566 files_downcast(ref_store, REF_STORE_READ,
2567 "reflog_iterator_begin");
2568 struct files_reflog_iterator *iter = xcalloc(1, sizeof(*iter));
2569 struct ref_iterator *ref_iterator = &iter->base;
2570 struct strbuf sb = STRBUF_INIT;
2572 base_ref_iterator_init(ref_iterator, &files_reflog_iterator_vtable);
2573 files_reflog_path(refs, &sb, NULL);
2574 iter->dir_iterator = dir_iterator_begin(sb.buf);
2575 iter->ref_store = ref_store;
2576 strbuf_release(&sb);
2577 return ref_iterator;
2580 static int ref_update_reject_duplicates(struct string_list *refnames,
2583 int i, n = refnames->nr;
2587 for (i = 1; i < n; i++)
2588 if (!strcmp(refnames->items[i - 1].string, refnames->items[i].string)) {
2590 "multiple updates for ref '%s' not allowed.",
2591 refnames->items[i].string);
2598 * If update is a direct update of head_ref (the reference pointed to
2599 * by HEAD), then add an extra REF_LOG_ONLY update for HEAD.
2601 static int split_head_update(struct ref_update *update,
2602 struct ref_transaction *transaction,
2603 const char *head_ref,
2604 struct string_list *affected_refnames,
2607 struct string_list_item *item;
2608 struct ref_update *new_update;
2610 if ((update->flags & REF_LOG_ONLY) ||
2611 (update->flags & REF_ISPRUNING) ||
2612 (update->flags & REF_UPDATE_VIA_HEAD))
2615 if (strcmp(update->refname, head_ref))
2619 * First make sure that HEAD is not already in the
2620 * transaction. This insertion is O(N) in the transaction
2621 * size, but it happens at most once per transaction.
2623 item = string_list_insert(affected_refnames, "HEAD");
2625 /* An entry already existed */
2627 "multiple updates for 'HEAD' (including one "
2628 "via its referent '%s') are not allowed",
2630 return TRANSACTION_NAME_CONFLICT;
2633 new_update = ref_transaction_add_update(
2634 transaction, "HEAD",
2635 update->flags | REF_LOG_ONLY | REF_NODEREF,
2636 update->new_sha1, update->old_sha1,
2639 item->util = new_update;
2645 * update is for a symref that points at referent and doesn't have
2646 * REF_NODEREF set. Split it into two updates:
2647 * - The original update, but with REF_LOG_ONLY and REF_NODEREF set
2648 * - A new, separate update for the referent reference
2649 * Note that the new update will itself be subject to splitting when
2650 * the iteration gets to it.
2652 static int split_symref_update(struct files_ref_store *refs,
2653 struct ref_update *update,
2654 const char *referent,
2655 struct ref_transaction *transaction,
2656 struct string_list *affected_refnames,
2659 struct string_list_item *item;
2660 struct ref_update *new_update;
2661 unsigned int new_flags;
2664 * First make sure that referent is not already in the
2665 * transaction. This insertion is O(N) in the transaction
2666 * size, but it happens at most once per symref in a
2669 item = string_list_insert(affected_refnames, referent);
2671 /* An entry already existed */
2673 "multiple updates for '%s' (including one "
2674 "via symref '%s') are not allowed",
2675 referent, update->refname);
2676 return TRANSACTION_NAME_CONFLICT;
2679 new_flags = update->flags;
2680 if (!strcmp(update->refname, "HEAD")) {
2682 * Record that the new update came via HEAD, so that
2683 * when we process it, split_head_update() doesn't try
2684 * to add another reflog update for HEAD. Note that
2685 * this bit will be propagated if the new_update
2686 * itself needs to be split.
2688 new_flags |= REF_UPDATE_VIA_HEAD;
2691 new_update = ref_transaction_add_update(
2692 transaction, referent, new_flags,
2693 update->new_sha1, update->old_sha1,
2696 new_update->parent_update = update;
2699 * Change the symbolic ref update to log only. Also, it
2700 * doesn't need to check its old SHA-1 value, as that will be
2701 * done when new_update is processed.
2703 update->flags |= REF_LOG_ONLY | REF_NODEREF;
2704 update->flags &= ~REF_HAVE_OLD;
2706 item->util = new_update;
2712 * Return the refname under which update was originally requested.
2714 static const char *original_update_refname(struct ref_update *update)
2716 while (update->parent_update)
2717 update = update->parent_update;
2719 return update->refname;
2723 * Check whether the REF_HAVE_OLD and old_oid values stored in update
2724 * are consistent with oid, which is the reference's current value. If
2725 * everything is OK, return 0; otherwise, write an error message to
2726 * err and return -1.
2728 static int check_old_oid(struct ref_update *update, struct object_id *oid,
2731 if (!(update->flags & REF_HAVE_OLD) ||
2732 !hashcmp(oid->hash, update->old_sha1))
2735 if (is_null_sha1(update->old_sha1))
2736 strbuf_addf(err, "cannot lock ref '%s': "
2737 "reference already exists",
2738 original_update_refname(update));
2739 else if (is_null_oid(oid))
2740 strbuf_addf(err, "cannot lock ref '%s': "
2741 "reference is missing but expected %s",
2742 original_update_refname(update),
2743 sha1_to_hex(update->old_sha1));
2745 strbuf_addf(err, "cannot lock ref '%s': "
2746 "is at %s but expected %s",
2747 original_update_refname(update),
2749 sha1_to_hex(update->old_sha1));
2755 * Prepare for carrying out update:
2756 * - Lock the reference referred to by update.
2757 * - Read the reference under lock.
2758 * - Check that its old SHA-1 value (if specified) is correct, and in
2759 * any case record it in update->lock->old_oid for later use when
2760 * writing the reflog.
2761 * - If it is a symref update without REF_NODEREF, split it up into a
2762 * REF_LOG_ONLY update of the symref and add a separate update for
2763 * the referent to transaction.
2764 * - If it is an update of head_ref, add a corresponding REF_LOG_ONLY
2767 static int lock_ref_for_update(struct files_ref_store *refs,
2768 struct ref_update *update,
2769 struct ref_transaction *transaction,
2770 const char *head_ref,
2771 struct string_list *affected_refnames,
2774 struct strbuf referent = STRBUF_INIT;
2775 int mustexist = (update->flags & REF_HAVE_OLD) &&
2776 !is_null_sha1(update->old_sha1);
2778 struct ref_lock *lock;
2780 files_assert_main_repository(refs, "lock_ref_for_update");
2782 if ((update->flags & REF_HAVE_NEW) && is_null_sha1(update->new_sha1))
2783 update->flags |= REF_DELETING;
2786 ret = split_head_update(update, transaction, head_ref,
2787 affected_refnames, err);
2792 ret = lock_raw_ref(refs, update->refname, mustexist,
2793 affected_refnames, NULL,
2795 &update->type, err);
2799 reason = strbuf_detach(err, NULL);
2800 strbuf_addf(err, "cannot lock ref '%s': %s",
2801 original_update_refname(update), reason);
2806 update->backend_data = lock;
2808 if (update->type & REF_ISSYMREF) {
2809 if (update->flags & REF_NODEREF) {
2811 * We won't be reading the referent as part of
2812 * the transaction, so we have to read it here
2813 * to record and possibly check old_sha1:
2815 if (refs_read_ref_full(&refs->base,
2817 lock->old_oid.hash, NULL)) {
2818 if (update->flags & REF_HAVE_OLD) {
2819 strbuf_addf(err, "cannot lock ref '%s': "
2820 "error reading reference",
2821 original_update_refname(update));
2824 } else if (check_old_oid(update, &lock->old_oid, err)) {
2825 return TRANSACTION_GENERIC_ERROR;
2829 * Create a new update for the reference this
2830 * symref is pointing at. Also, we will record
2831 * and verify old_sha1 for this update as part
2832 * of processing the split-off update, so we
2833 * don't have to do it here.
2835 ret = split_symref_update(refs, update,
2836 referent.buf, transaction,
2837 affected_refnames, err);
2842 struct ref_update *parent_update;
2844 if (check_old_oid(update, &lock->old_oid, err))
2845 return TRANSACTION_GENERIC_ERROR;
2848 * If this update is happening indirectly because of a
2849 * symref update, record the old SHA-1 in the parent
2852 for (parent_update = update->parent_update;
2854 parent_update = parent_update->parent_update) {
2855 struct ref_lock *parent_lock = parent_update->backend_data;
2856 oidcpy(&parent_lock->old_oid, &lock->old_oid);
2860 if ((update->flags & REF_HAVE_NEW) &&
2861 !(update->flags & REF_DELETING) &&
2862 !(update->flags & REF_LOG_ONLY)) {
2863 if (!(update->type & REF_ISSYMREF) &&
2864 !hashcmp(lock->old_oid.hash, update->new_sha1)) {
2866 * The reference already has the desired
2867 * value, so we don't need to write it.
2869 } else if (write_ref_to_lockfile(lock, update->new_sha1,
2871 char *write_err = strbuf_detach(err, NULL);
2874 * The lock was freed upon failure of
2875 * write_ref_to_lockfile():
2877 update->backend_data = NULL;
2879 "cannot update ref '%s': %s",
2880 update->refname, write_err);
2882 return TRANSACTION_GENERIC_ERROR;
2884 update->flags |= REF_NEEDS_COMMIT;
2887 if (!(update->flags & REF_NEEDS_COMMIT)) {
2889 * We didn't call write_ref_to_lockfile(), so
2890 * the lockfile is still open. Close it to
2891 * free up the file descriptor:
2893 if (close_ref(lock)) {
2894 strbuf_addf(err, "couldn't close '%s.lock'",
2896 return TRANSACTION_GENERIC_ERROR;
2902 static int files_transaction_commit(struct ref_store *ref_store,
2903 struct ref_transaction *transaction,
2906 struct files_ref_store *refs =
2907 files_downcast(ref_store, REF_STORE_WRITE,
2908 "ref_transaction_commit");
2910 struct string_list refs_to_delete = STRING_LIST_INIT_NODUP;
2911 struct string_list_item *ref_to_delete;
2912 struct string_list affected_refnames = STRING_LIST_INIT_NODUP;
2913 char *head_ref = NULL;
2915 struct object_id head_oid;
2916 struct strbuf sb = STRBUF_INIT;
2920 if (transaction->state != REF_TRANSACTION_OPEN)
2921 die("BUG: commit called for transaction that is not open");
2923 if (!transaction->nr) {
2924 transaction->state = REF_TRANSACTION_CLOSED;
2929 * Fail if a refname appears more than once in the
2930 * transaction. (If we end up splitting up any updates using
2931 * split_symref_update() or split_head_update(), those
2932 * functions will check that the new updates don't have the
2933 * same refname as any existing ones.)
2935 for (i = 0; i < transaction->nr; i++) {
2936 struct ref_update *update = transaction->updates[i];
2937 struct string_list_item *item =
2938 string_list_append(&affected_refnames, update->refname);
2941 * We store a pointer to update in item->util, but at
2942 * the moment we never use the value of this field
2943 * except to check whether it is non-NULL.
2945 item->util = update;
2947 string_list_sort(&affected_refnames);
2948 if (ref_update_reject_duplicates(&affected_refnames, err)) {
2949 ret = TRANSACTION_GENERIC_ERROR;
2954 * Special hack: If a branch is updated directly and HEAD
2955 * points to it (may happen on the remote side of a push
2956 * for example) then logically the HEAD reflog should be
2959 * A generic solution would require reverse symref lookups,
2960 * but finding all symrefs pointing to a given branch would be
2961 * rather costly for this rare event (the direct update of a
2962 * branch) to be worth it. So let's cheat and check with HEAD
2963 * only, which should cover 99% of all usage scenarios (even
2964 * 100% of the default ones).
2966 * So if HEAD is a symbolic reference, then record the name of
2967 * the reference that it points to. If we see an update of
2968 * head_ref within the transaction, then split_head_update()
2969 * arranges for the reflog of HEAD to be updated, too.
2971 head_ref = refs_resolve_refdup(ref_store, "HEAD",
2972 RESOLVE_REF_NO_RECURSE,
2973 head_oid.hash, &head_type);
2975 if (head_ref && !(head_type & REF_ISSYMREF)) {
2981 * Acquire all locks, verify old values if provided, check
2982 * that new values are valid, and write new values to the
2983 * lockfiles, ready to be activated. Only keep one lockfile
2984 * open at a time to avoid running out of file descriptors.
2986 for (i = 0; i < transaction->nr; i++) {
2987 struct ref_update *update = transaction->updates[i];
2989 ret = lock_ref_for_update(refs, update, transaction,
2990 head_ref, &affected_refnames, err);
2995 /* Perform updates first so live commits remain referenced */
2996 for (i = 0; i < transaction->nr; i++) {
2997 struct ref_update *update = transaction->updates[i];
2998 struct ref_lock *lock = update->backend_data;
3000 if (update->flags & REF_NEEDS_COMMIT ||
3001 update->flags & REF_LOG_ONLY) {
3002 if (files_log_ref_write(refs,
3006 update->msg, update->flags,
3008 char *old_msg = strbuf_detach(err, NULL);
3010 strbuf_addf(err, "cannot update the ref '%s': %s",
3011 lock->ref_name, old_msg);
3014 update->backend_data = NULL;
3015 ret = TRANSACTION_GENERIC_ERROR;
3019 if (update->flags & REF_NEEDS_COMMIT) {
3020 clear_loose_ref_cache(refs);
3021 if (commit_ref(lock)) {
3022 strbuf_addf(err, "couldn't set '%s'", lock->ref_name);
3024 update->backend_data = NULL;
3025 ret = TRANSACTION_GENERIC_ERROR;
3030 /* Perform deletes now that updates are safely completed */
3031 for (i = 0; i < transaction->nr; i++) {
3032 struct ref_update *update = transaction->updates[i];
3033 struct ref_lock *lock = update->backend_data;
3035 if (update->flags & REF_DELETING &&
3036 !(update->flags & REF_LOG_ONLY)) {
3037 if (!(update->type & REF_ISPACKED) ||
3038 update->type & REF_ISSYMREF) {
3039 /* It is a loose reference. */
3041 files_ref_path(refs, &sb, lock->ref_name);
3042 if (unlink_or_msg(sb.buf, err)) {
3043 ret = TRANSACTION_GENERIC_ERROR;
3046 update->flags |= REF_DELETED_LOOSE;
3049 if (!(update->flags & REF_ISPRUNING))
3050 string_list_append(&refs_to_delete,
3055 if (repack_without_refs(refs, &refs_to_delete, err)) {
3056 ret = TRANSACTION_GENERIC_ERROR;
3060 /* Delete the reflogs of any references that were deleted: */
3061 for_each_string_list_item(ref_to_delete, &refs_to_delete) {
3063 files_reflog_path(refs, &sb, ref_to_delete->string);
3064 if (!unlink_or_warn(sb.buf))
3065 try_remove_empty_parents(refs, ref_to_delete->string,
3066 REMOVE_EMPTY_PARENTS_REFLOG);
3069 clear_loose_ref_cache(refs);
3072 strbuf_release(&sb);
3073 transaction->state = REF_TRANSACTION_CLOSED;
3075 for (i = 0; i < transaction->nr; i++) {
3076 struct ref_update *update = transaction->updates[i];
3077 struct ref_lock *lock = update->backend_data;
3082 if (update->flags & REF_DELETED_LOOSE) {
3084 * The loose reference was deleted. Delete any
3085 * empty parent directories. (Note that this
3086 * can only work because we have already
3087 * removed the lockfile.)
3089 try_remove_empty_parents(refs, update->refname,
3090 REMOVE_EMPTY_PARENTS_REF);
3094 string_list_clear(&refs_to_delete, 0);
3096 string_list_clear(&affected_refnames, 0);
3101 static int ref_present(const char *refname,
3102 const struct object_id *oid, int flags, void *cb_data)
3104 struct string_list *affected_refnames = cb_data;
3106 return string_list_has_string(affected_refnames, refname);
3109 static int files_initial_transaction_commit(struct ref_store *ref_store,
3110 struct ref_transaction *transaction,
3113 struct files_ref_store *refs =
3114 files_downcast(ref_store, REF_STORE_WRITE,
3115 "initial_ref_transaction_commit");
3117 struct string_list affected_refnames = STRING_LIST_INIT_NODUP;
3121 if (transaction->state != REF_TRANSACTION_OPEN)
3122 die("BUG: commit called for transaction that is not open");
3124 /* Fail if a refname appears more than once in the transaction: */
3125 for (i = 0; i < transaction->nr; i++)
3126 string_list_append(&affected_refnames,
3127 transaction->updates[i]->refname);
3128 string_list_sort(&affected_refnames);
3129 if (ref_update_reject_duplicates(&affected_refnames, err)) {
3130 ret = TRANSACTION_GENERIC_ERROR;
3135 * It's really undefined to call this function in an active
3136 * repository or when there are existing references: we are
3137 * only locking and changing packed-refs, so (1) any
3138 * simultaneous processes might try to change a reference at
3139 * the same time we do, and (2) any existing loose versions of
3140 * the references that we are setting would have precedence
3141 * over our values. But some remote helpers create the remote
3142 * "HEAD" and "master" branches before calling this function,
3143 * so here we really only check that none of the references
3144 * that we are creating already exists.
3146 if (refs_for_each_rawref(&refs->base, ref_present,
3147 &affected_refnames))
3148 die("BUG: initial ref transaction called with existing refs");
3150 for (i = 0; i < transaction->nr; i++) {
3151 struct ref_update *update = transaction->updates[i];
3153 if ((update->flags & REF_HAVE_OLD) &&
3154 !is_null_sha1(update->old_sha1))
3155 die("BUG: initial ref transaction with old_sha1 set");
3156 if (refs_verify_refname_available(&refs->base, update->refname,
3157 &affected_refnames, NULL,
3159 ret = TRANSACTION_NAME_CONFLICT;
3164 if (lock_packed_refs(refs, 0)) {
3165 strbuf_addf(err, "unable to lock packed-refs file: %s",
3167 ret = TRANSACTION_GENERIC_ERROR;
3171 for (i = 0; i < transaction->nr; i++) {
3172 struct ref_update *update = transaction->updates[i];
3174 if ((update->flags & REF_HAVE_NEW) &&
3175 !is_null_sha1(update->new_sha1))
3176 add_packed_ref(refs, update->refname, update->new_sha1);
3179 if (commit_packed_refs(refs)) {
3180 strbuf_addf(err, "unable to commit packed-refs file: %s",
3182 ret = TRANSACTION_GENERIC_ERROR;
3187 transaction->state = REF_TRANSACTION_CLOSED;
3188 string_list_clear(&affected_refnames, 0);
3192 struct expire_reflog_cb {
3194 reflog_expiry_should_prune_fn *should_prune_fn;
3197 struct object_id last_kept_oid;
3200 static int expire_reflog_ent(struct object_id *ooid, struct object_id *noid,
3201 const char *email, unsigned long timestamp, int tz,
3202 const char *message, void *cb_data)
3204 struct expire_reflog_cb *cb = cb_data;
3205 struct expire_reflog_policy_cb *policy_cb = cb->policy_cb;
3207 if (cb->flags & EXPIRE_REFLOGS_REWRITE)
3208 ooid = &cb->last_kept_oid;
3210 if ((*cb->should_prune_fn)(ooid->hash, noid->hash, email, timestamp, tz,
3211 message, policy_cb)) {
3213 printf("would prune %s", message);
3214 else if (cb->flags & EXPIRE_REFLOGS_VERBOSE)
3215 printf("prune %s", message);
3218 fprintf(cb->newlog, "%s %s %s %lu %+05d\t%s",
3219 oid_to_hex(ooid), oid_to_hex(noid),
3220 email, timestamp, tz, message);
3221 oidcpy(&cb->last_kept_oid, noid);
3223 if (cb->flags & EXPIRE_REFLOGS_VERBOSE)
3224 printf("keep %s", message);
3229 static int files_reflog_expire(struct ref_store *ref_store,
3230 const char *refname, const unsigned char *sha1,
3232 reflog_expiry_prepare_fn prepare_fn,
3233 reflog_expiry_should_prune_fn should_prune_fn,
3234 reflog_expiry_cleanup_fn cleanup_fn,
3235 void *policy_cb_data)
3237 struct files_ref_store *refs =
3238 files_downcast(ref_store, REF_STORE_WRITE, "reflog_expire");
3239 static struct lock_file reflog_lock;
3240 struct expire_reflog_cb cb;
3241 struct ref_lock *lock;
3242 struct strbuf log_file_sb = STRBUF_INIT;
3246 struct strbuf err = STRBUF_INIT;
3248 memset(&cb, 0, sizeof(cb));
3250 cb.policy_cb = policy_cb_data;
3251 cb.should_prune_fn = should_prune_fn;
3254 * The reflog file is locked by holding the lock on the
3255 * reference itself, plus we might need to update the
3256 * reference if --updateref was specified:
3258 lock = lock_ref_sha1_basic(refs, refname, sha1,
3259 NULL, NULL, REF_NODEREF,
3262 error("cannot lock ref '%s': %s", refname, err.buf);
3263 strbuf_release(&err);
3266 if (!refs_reflog_exists(ref_store, refname)) {
3271 files_reflog_path(refs, &log_file_sb, refname);
3272 log_file = strbuf_detach(&log_file_sb, NULL);
3273 if (!(flags & EXPIRE_REFLOGS_DRY_RUN)) {
3275 * Even though holding $GIT_DIR/logs/$reflog.lock has
3276 * no locking implications, we use the lock_file
3277 * machinery here anyway because it does a lot of the
3278 * work we need, including cleaning up if the program
3279 * exits unexpectedly.
3281 if (hold_lock_file_for_update(&reflog_lock, log_file, 0) < 0) {
3282 struct strbuf err = STRBUF_INIT;
3283 unable_to_lock_message(log_file, errno, &err);
3284 error("%s", err.buf);
3285 strbuf_release(&err);
3288 cb.newlog = fdopen_lock_file(&reflog_lock, "w");
3290 error("cannot fdopen %s (%s)",
3291 get_lock_file_path(&reflog_lock), strerror(errno));
3296 (*prepare_fn)(refname, sha1, cb.policy_cb);
3297 refs_for_each_reflog_ent(ref_store, refname, expire_reflog_ent, &cb);
3298 (*cleanup_fn)(cb.policy_cb);
3300 if (!(flags & EXPIRE_REFLOGS_DRY_RUN)) {
3302 * It doesn't make sense to adjust a reference pointed
3303 * to by a symbolic ref based on expiring entries in
3304 * the symbolic reference's reflog. Nor can we update
3305 * a reference if there are no remaining reflog
3308 int update = (flags & EXPIRE_REFLOGS_UPDATE_REF) &&
3309 !(type & REF_ISSYMREF) &&
3310 !is_null_oid(&cb.last_kept_oid);
3312 if (close_lock_file(&reflog_lock)) {
3313 status |= error("couldn't write %s: %s", log_file,
3315 } else if (update &&
3316 (write_in_full(get_lock_file_fd(lock->lk),
3317 oid_to_hex(&cb.last_kept_oid), GIT_SHA1_HEXSZ) != GIT_SHA1_HEXSZ ||
3318 write_str_in_full(get_lock_file_fd(lock->lk), "\n") != 1 ||
3319 close_ref(lock) < 0)) {
3320 status |= error("couldn't write %s",
3321 get_lock_file_path(lock->lk));
3322 rollback_lock_file(&reflog_lock);
3323 } else if (commit_lock_file(&reflog_lock)) {
3324 status |= error("unable to write reflog '%s' (%s)",
3325 log_file, strerror(errno));
3326 } else if (update && commit_ref(lock)) {
3327 status |= error("couldn't set %s", lock->ref_name);
3335 rollback_lock_file(&reflog_lock);
3341 static int files_init_db(struct ref_store *ref_store, struct strbuf *err)
3343 struct files_ref_store *refs =
3344 files_downcast(ref_store, REF_STORE_WRITE, "init_db");
3345 struct strbuf sb = STRBUF_INIT;
3348 * Create .git/refs/{heads,tags}
3350 files_ref_path(refs, &sb, "refs/heads");
3351 safe_create_dir(sb.buf, 1);
3354 files_ref_path(refs, &sb, "refs/tags");
3355 safe_create_dir(sb.buf, 1);
3357 strbuf_release(&sb);
3361 struct ref_storage_be refs_be_files = {
3364 files_ref_store_create,
3366 files_transaction_commit,
3367 files_initial_transaction_commit,
3371 files_create_symref,
3375 files_ref_iterator_begin,
3378 files_reflog_iterator_begin,
3379 files_for_each_reflog_ent,
3380 files_for_each_reflog_ent_reverse,
3381 files_reflog_exists,
3382 files_create_reflog,
3383 files_delete_reflog,
projects / git / blob