]>
Commit | Line | Data |
---|---|---|
e93fc5d7 | 1 | #include "git-compat-util.h" |
0b027f6c | 2 | #include "abspath.h" |
32a8f510 | 3 | #include "environment.h" |
f394e093 | 4 | #include "gettext.h" |
dabab1d6 | 5 | #include "object-name.h" |
c14c234f | 6 | #include "repository.h" |
b2141fc1 | 7 | #include "config.h" |
e90fdc39 | 8 | #include "dir.h" |
e38da487 | 9 | #include "setup.h" |
31171d9e | 10 | #include "string-list.h" |
8500e0de | 11 | #include "chdir-notify.h" |
60b7a92d | 12 | #include "promisor-remote.h" |
8959555c | 13 | #include "quote.h" |
74ea5c95 | 14 | #include "trace2.h" |
65156bb7 | 15 | #include "wrapper.h" |
e90fdc39 JS |
16 | |
17 | static int inside_git_dir = -1; | |
18 | static int inside_work_tree = -1; | |
fada7674 | 19 | static int work_tree_config_is_bogus; |
8d1a7448 GC |
20 | enum allowed_bare_repo { |
21 | ALLOWED_BARE_REPO_EXPLICIT = 0, | |
22 | ALLOWED_BARE_REPO_ALL, | |
23 | }; | |
d288a700 | 24 | |
46c3cd44 JK |
25 | static struct startup_info the_startup_info; |
26 | struct startup_info *startup_info = &the_startup_info; | |
e6f8861b | 27 | const char *tmp_original_cwd; |
46c3cd44 | 28 | |
ddc2a628 MEW |
29 | /* |
30 | * The input parameter must contain an absolute path, and it must already be | |
31 | * normalized. | |
32 | * | |
33 | * Find the part of an absolute path that lies inside the work tree by | |
34 | * dereferencing symlinks outside the work tree, for example: | |
35 | * /dir1/repo/dir2/file (work tree is /dir1/repo) -> dir2/file | |
36 | * /dir/file (work tree is /) -> dir/file | |
37 | * /dir/symlink1/symlink2 (symlink1 points to work tree) -> symlink2 | |
38 | * /dir/repolink/file (repolink points to /dir/repo) -> file | |
39 | * /dir/repo (exactly equal to work tree) -> (empty string) | |
40 | */ | |
41 | static int abspath_part_inside_repo(char *path) | |
42 | { | |
43 | size_t len; | |
44 | size_t wtlen; | |
45 | char *path0; | |
46 | int off; | |
47 | const char *work_tree = get_git_work_tree(); | |
3d7747e3 | 48 | struct strbuf realpath = STRBUF_INIT; |
ddc2a628 MEW |
49 | |
50 | if (!work_tree) | |
51 | return -1; | |
52 | wtlen = strlen(work_tree); | |
53 | len = strlen(path); | |
6127ff63 | 54 | off = offset_1st_component(path); |
ddc2a628 MEW |
55 | |
56 | /* check if work tree is already the prefix */ | |
d8727b36 | 57 | if (wtlen <= len && !fspathncmp(path, work_tree, wtlen)) { |
ddc2a628 MEW |
58 | if (path[wtlen] == '/') { |
59 | memmove(path, path + wtlen + 1, len - wtlen); | |
60 | return 0; | |
61 | } else if (path[wtlen - 1] == '/' || path[wtlen] == '\0') { | |
62 | /* work tree is the root, or the whole path */ | |
63 | memmove(path, path + wtlen, len - wtlen + 1); | |
64 | return 0; | |
65 | } | |
66 | /* work tree might match beginning of a symlink to work tree */ | |
67 | off = wtlen; | |
68 | } | |
69 | path0 = path; | |
6127ff63 | 70 | path += off; |
ddc2a628 MEW |
71 | |
72 | /* check each '/'-terminated level */ | |
73 | while (*path) { | |
74 | path++; | |
75 | if (*path == '/') { | |
76 | *path = '\0'; | |
3d7747e3 AM |
77 | strbuf_realpath(&realpath, path0, 1); |
78 | if (fspathcmp(realpath.buf, work_tree) == 0) { | |
ddc2a628 | 79 | memmove(path0, path + 1, len - (path - path0)); |
3d7747e3 | 80 | strbuf_release(&realpath); |
ddc2a628 MEW |
81 | return 0; |
82 | } | |
83 | *path = '/'; | |
84 | } | |
85 | } | |
86 | ||
87 | /* check whole path */ | |
3d7747e3 AM |
88 | strbuf_realpath(&realpath, path0, 1); |
89 | if (fspathcmp(realpath.buf, work_tree) == 0) { | |
ddc2a628 | 90 | *path0 = '\0'; |
3d7747e3 | 91 | strbuf_release(&realpath); |
ddc2a628 MEW |
92 | return 0; |
93 | } | |
94 | ||
3d7747e3 | 95 | strbuf_release(&realpath); |
ddc2a628 MEW |
96 | return -1; |
97 | } | |
98 | ||
645a29c4 NTND |
99 | /* |
100 | * Normalize "path", prepending the "prefix" for relative paths. If | |
101 | * remaining_prefix is not NULL, return the actual prefix still | |
102 | * remains in the path. For example, prefix = sub1/sub2/ and path is | |
103 | * | |
104 | * foo -> sub1/sub2/foo (full prefix) | |
105 | * ../foo -> sub1/foo (remaining prefix is sub1/) | |
106 | * ../../bar -> bar (no remaining prefix) | |
107 | * ../../sub1/sub2/foo -> sub1/sub2/foo (but no remaining prefix) | |
108 | * `pwd`/../bar -> sub1/bar (no remaining prefix) | |
109 | */ | |
110 | char *prefix_path_gently(const char *prefix, int len, | |
111 | int *remaining_prefix, const char *path) | |
d089ebaa JH |
112 | { |
113 | const char *orig = path; | |
18e051a3 CMAB |
114 | char *sanitized; |
115 | if (is_absolute_path(orig)) { | |
3733e694 | 116 | sanitized = xmallocz(strlen(path)); |
645a29c4 NTND |
117 | if (remaining_prefix) |
118 | *remaining_prefix = 0; | |
655ee9ea MEW |
119 | if (normalize_path_copy_len(sanitized, path, remaining_prefix)) { |
120 | free(sanitized); | |
121 | return NULL; | |
122 | } | |
123 | if (abspath_part_inside_repo(sanitized)) { | |
124 | free(sanitized); | |
125 | return NULL; | |
126 | } | |
18e051a3 | 127 | } else { |
24041d6b | 128 | sanitized = xstrfmt("%.*s%s", len, len ? prefix : "", path); |
645a29c4 NTND |
129 | if (remaining_prefix) |
130 | *remaining_prefix = len; | |
655ee9ea | 131 | if (normalize_path_copy_len(sanitized, sanitized, remaining_prefix)) { |
546e0fd9 JK |
132 | free(sanitized); |
133 | return NULL; | |
d089ebaa | 134 | } |
d089ebaa JH |
135 | } |
136 | return sanitized; | |
f332726e LT |
137 | } |
138 | ||
546e0fd9 JK |
139 | char *prefix_path(const char *prefix, int len, const char *path) |
140 | { | |
645a29c4 | 141 | char *r = prefix_path_gently(prefix, len, NULL, path); |
5c203986 ES |
142 | if (!r) { |
143 | const char *hint_path = get_git_work_tree(); | |
144 | if (!hint_path) | |
145 | hint_path = get_git_dir(); | |
e0020b2f | 146 | die(_("'%s' is outside repository at '%s'"), path, |
5c203986 ES |
147 | absolute_path(hint_path)); |
148 | } | |
546e0fd9 JK |
149 | return r; |
150 | } | |
151 | ||
152 | int path_inside_repo(const char *prefix, const char *path) | |
153 | { | |
154 | int len = prefix ? strlen(prefix) : 0; | |
645a29c4 | 155 | char *r = prefix_path_gently(prefix, len, NULL, path); |
546e0fd9 JK |
156 | if (r) { |
157 | free(r); | |
158 | return 1; | |
159 | } | |
160 | return 0; | |
161 | } | |
162 | ||
c6e8c800 JH |
163 | int check_filename(const char *prefix, const char *arg) |
164 | { | |
e4da43b1 | 165 | char *to_free = NULL; |
c6e8c800 JH |
166 | struct stat st; |
167 | ||
d51c6ee0 JK |
168 | if (skip_prefix(arg, ":/", &arg)) { |
169 | if (!*arg) /* ":/" is root dir, always exists */ | |
4db86e8b | 170 | return 1; |
a08cbcda | 171 | prefix = NULL; |
42471bce JK |
172 | } else if (skip_prefix(arg, ":!", &arg) || |
173 | skip_prefix(arg, ":^", &arg)) { | |
174 | if (!*arg) /* excluding everything is silly, but allowed */ | |
175 | return 1; | |
a08cbcda JK |
176 | } |
177 | ||
178 | if (prefix) | |
179 | arg = to_free = prefix_filename(prefix, arg); | |
180 | ||
181 | if (!lstat(arg, &st)) { | |
e4da43b1 | 182 | free(to_free); |
c6e8c800 | 183 | return 1; /* file exists */ |
e4da43b1 | 184 | } |
93dd544f | 185 | if (is_missing_file_error(errno)) { |
e4da43b1 | 186 | free(to_free); |
c6e8c800 | 187 | return 0; /* file does not exist */ |
e4da43b1 | 188 | } |
fc045fe7 | 189 | die_errno(_("failed to stat '%s'"), arg); |
c6e8c800 JH |
190 | } |
191 | ||
e270f42c NTND |
192 | static void NORETURN die_verify_filename(struct repository *r, |
193 | const char *prefix, | |
023e37c3 MM |
194 | const char *arg, |
195 | int diagnose_misspelt_rev) | |
009fee47 | 196 | { |
023e37c3 | 197 | if (!diagnose_misspelt_rev) |
ab33a76e VA |
198 | die(_("%s: no such path in the working tree.\n" |
199 | "Use 'git <command> -- <path>...' to specify paths that do not exist locally."), | |
023e37c3 | 200 | arg); |
0e539dca JH |
201 | /* |
202 | * Saying "'(icase)foo' does not exist in the index" when the | |
203 | * user gave us ":(icase)foo" is just stupid. A magic pathspec | |
204 | * begins with a colon and is followed by a non-alnum; do not | |
8c135ea2 | 205 | * let maybe_die_on_misspelt_object_name() even trigger. |
0e539dca JH |
206 | */ |
207 | if (!(arg[0] == ':' && !isalnum(arg[1]))) | |
e270f42c | 208 | maybe_die_on_misspelt_object_name(r, arg, prefix); |
0e539dca | 209 | |
009fee47 | 210 | /* ... or fall back the most general message. */ |
ab33a76e VA |
211 | die(_("ambiguous argument '%s': unknown revision or path not in the working tree.\n" |
212 | "Use '--' to separate paths from revisions, like this:\n" | |
213 | "'git <command> [<revision>...] -- [<file>...]'"), arg); | |
009fee47 MM |
214 | |
215 | } | |
216 | ||
c99eddd8 JK |
217 | /* |
218 | * Check for arguments that don't resolve as actual files, | |
219 | * but which look sufficiently like pathspecs that we'll consider | |
220 | * them such for the purposes of rev/pathspec DWIM parsing. | |
221 | */ | |
222 | static int looks_like_pathspec(const char *arg) | |
223 | { | |
39e21c6e JK |
224 | const char *p; |
225 | int escaped = 0; | |
226 | ||
227 | /* | |
228 | * Wildcard characters imply the user is looking to match pathspecs | |
229 | * that aren't in the filesystem. Note that this doesn't include | |
230 | * backslash even though it's a glob special; by itself it doesn't | |
231 | * cause any increase in the match. Likewise ignore backslash-escaped | |
232 | * wildcard characters. | |
233 | */ | |
234 | for (p = arg; *p; p++) { | |
235 | if (escaped) { | |
236 | escaped = 0; | |
237 | } else if (is_glob_special(*p)) { | |
238 | if (*p == '\\') | |
239 | escaped = 1; | |
240 | else | |
241 | return 1; | |
242 | } | |
243 | } | |
c99eddd8 JK |
244 | |
245 | /* long-form pathspec magic */ | |
246 | if (starts_with(arg, ":(")) | |
247 | return 1; | |
248 | ||
249 | return 0; | |
250 | } | |
251 | ||
e23d0b4a LT |
252 | /* |
253 | * Verify a filename that we got as an argument for a pathspec | |
254 | * entry. Note that a filename that begins with "-" never verifies | |
255 | * as true, because even if such a filename were to exist, we want | |
256 | * it to be preceded by the "--" marker (or we want the user to | |
257 | * use a format like "./-filename") | |
023e37c3 MM |
258 | * |
259 | * The "diagnose_misspelt_rev" is used to provide a user-friendly | |
260 | * diagnosis when dying upon finding that "name" is not a pathname. | |
261 | * If set to 1, the diagnosis will try to diagnose "name" as an | |
262 | * invalid object name (e.g. HEAD:foo). If set to 0, the diagnosis | |
263 | * will only complain about an inexisting file. | |
264 | * | |
265 | * This function is typically called to check that a "file or rev" | |
266 | * argument is unambiguous. In this case, the caller will want | |
267 | * diagnose_misspelt_rev == 1 when verifying the first non-rev | |
268 | * argument (which could have been a revision), and | |
269 | * diagnose_misspelt_rev == 0 for the next ones (because we already | |
270 | * saw a filename, there's not ambiguity anymore). | |
e23d0b4a | 271 | */ |
023e37c3 MM |
272 | void verify_filename(const char *prefix, |
273 | const char *arg, | |
274 | int diagnose_misspelt_rev) | |
e23d0b4a | 275 | { |
e23d0b4a | 276 | if (*arg == '-') |
fc045fe7 | 277 | die(_("option '%s' must come before non-option arguments"), arg); |
2cb47ab6 | 278 | if (looks_like_pathspec(arg) || check_filename(prefix, arg)) |
e23d0b4a | 279 | return; |
e270f42c | 280 | die_verify_filename(the_repository, prefix, arg, diagnose_misspelt_rev); |
e23d0b4a LT |
281 | } |
282 | ||
ea92f41f JH |
283 | /* |
284 | * Opposite of the above: the command line did not have -- marker | |
285 | * and we parsed the arg as a refname. It should not be interpretable | |
286 | * as a filename. | |
287 | */ | |
288 | void verify_non_filename(const char *prefix, const char *arg) | |
289 | { | |
7ae3df8c | 290 | if (!is_inside_work_tree() || is_inside_git_dir()) |
68025633 | 291 | return; |
ea92f41f JH |
292 | if (*arg == '-') |
293 | return; /* flag */ | |
c6e8c800 JH |
294 | if (!check_filename(prefix, arg)) |
295 | return; | |
ab33a76e VA |
296 | die(_("ambiguous argument '%s': both revision and filename\n" |
297 | "Use '--' to separate paths from revisions, like this:\n" | |
298 | "'git <command> [<revision>...] -- [<file>...]'"), arg); | |
ea92f41f JH |
299 | } |
300 | ||
31e26ebc | 301 | int get_common_dir(struct strbuf *sb, const char *gitdir) |
11f9dd71 MK |
302 | { |
303 | const char *git_env_common_dir = getenv(GIT_COMMON_DIR_ENVIRONMENT); | |
304 | if (git_env_common_dir) { | |
305 | strbuf_addstr(sb, git_env_common_dir); | |
306 | return 1; | |
307 | } else { | |
308 | return get_common_dir_noenv(sb, gitdir); | |
309 | } | |
310 | } | |
311 | ||
312 | int get_common_dir_noenv(struct strbuf *sb, const char *gitdir) | |
4dc4e145 NTND |
313 | { |
314 | struct strbuf data = STRBUF_INIT; | |
315 | struct strbuf path = STRBUF_INIT; | |
31e26ebc | 316 | int ret = 0; |
11f9dd71 | 317 | |
4dc4e145 NTND |
318 | strbuf_addf(&path, "%s/commondir", gitdir); |
319 | if (file_exists(path.buf)) { | |
320 | if (strbuf_read_file(&data, path.buf, 0) <= 0) | |
321 | die_errno(_("failed to read %s"), path.buf); | |
322 | while (data.len && (data.buf[data.len - 1] == '\n' || | |
323 | data.buf[data.len - 1] == '\r')) | |
324 | data.len--; | |
325 | data.buf[data.len] = '\0'; | |
326 | strbuf_reset(&path); | |
327 | if (!is_absolute_path(data.buf)) | |
328 | strbuf_addf(&path, "%s/", gitdir); | |
329 | strbuf_addbuf(&path, &data); | |
33ad9ddd | 330 | strbuf_add_real_path(sb, path.buf); |
31e26ebc | 331 | ret = 1; |
4ac9006f | 332 | } else { |
4dc4e145 | 333 | strbuf_addstr(sb, gitdir); |
4ac9006f BW |
334 | } |
335 | ||
4dc4e145 NTND |
336 | strbuf_release(&data); |
337 | strbuf_release(&path); | |
31e26ebc | 338 | return ret; |
4dc4e145 | 339 | } |
d288a700 | 340 | |
5f5608bc | 341 | /* |
ad1a382f | 342 | * Test if it looks like we're at a git directory. |
5e7bfe25 | 343 | * We want to see: |
5f5608bc | 344 | * |
790296fd | 345 | * - either an objects/ directory _or_ the proper |
5f5608bc | 346 | * GIT_OBJECT_DIRECTORY environment variable |
ad1a382f | 347 | * - a refs/ directory |
8098a178 | 348 | * - either a HEAD symlink or a HEAD file that is formatted as |
c847f537 JH |
349 | * a proper "ref:", or a regular file HEAD that has a properly |
350 | * formatted sha1 object name. | |
5f5608bc | 351 | */ |
b3256eb8 | 352 | int is_git_directory(const char *suspect) |
5f5608bc | 353 | { |
1d186b6f NTND |
354 | struct strbuf path = STRBUF_INIT; |
355 | int ret = 0; | |
356 | size_t len; | |
ad1a382f | 357 | |
4dc4e145 | 358 | /* Check worktree-related signatures */ |
fa4d8c78 JK |
359 | strbuf_addstr(&path, suspect); |
360 | strbuf_complete(&path, '/'); | |
361 | strbuf_addstr(&path, "HEAD"); | |
4dc4e145 NTND |
362 | if (validate_headref(path.buf)) |
363 | goto done; | |
364 | ||
365 | strbuf_reset(&path); | |
366 | get_common_dir(&path, suspect); | |
1d186b6f | 367 | len = path.len; |
4dc4e145 NTND |
368 | |
369 | /* Check non-worktree-related signatures */ | |
ad1a382f SP |
370 | if (getenv(DB_ENVIRONMENT)) { |
371 | if (access(getenv(DB_ENVIRONMENT), X_OK)) | |
1d186b6f | 372 | goto done; |
ad1a382f SP |
373 | } |
374 | else { | |
4dc4e145 | 375 | strbuf_setlen(&path, len); |
1d186b6f NTND |
376 | strbuf_addstr(&path, "/objects"); |
377 | if (access(path.buf, X_OK)) | |
378 | goto done; | |
ad1a382f SP |
379 | } |
380 | ||
1d186b6f NTND |
381 | strbuf_setlen(&path, len); |
382 | strbuf_addstr(&path, "/refs"); | |
383 | if (access(path.buf, X_OK)) | |
384 | goto done; | |
ad1a382f | 385 | |
1d186b6f NTND |
386 | ret = 1; |
387 | done: | |
388 | strbuf_release(&path); | |
389 | return ret; | |
5f5608bc LT |
390 | } |
391 | ||
ffd036b1 JK |
392 | int is_nonbare_repository_dir(struct strbuf *path) |
393 | { | |
394 | int ret = 0; | |
395 | int gitfile_error; | |
396 | size_t orig_path_len = path->len; | |
397 | assert(orig_path_len != 0); | |
398 | strbuf_complete(path, '/'); | |
399 | strbuf_addstr(path, ".git"); | |
400 | if (read_gitfile_gently(path->buf, &gitfile_error) || is_git_directory(path->buf)) | |
401 | ret = 1; | |
402 | if (gitfile_error == READ_GITFILE_ERR_OPEN_FAILED || | |
403 | gitfile_error == READ_GITFILE_ERR_READ_FAILED) | |
404 | ret = 1; | |
405 | strbuf_setlen(path, orig_path_len); | |
406 | return ret; | |
407 | } | |
408 | ||
68025633 JS |
409 | int is_inside_git_dir(void) |
410 | { | |
e90fdc39 JS |
411 | if (inside_git_dir < 0) |
412 | inside_git_dir = is_inside_dir(get_git_dir()); | |
413 | return inside_git_dir; | |
892c41b9 ML |
414 | } |
415 | ||
892c41b9 ML |
416 | int is_inside_work_tree(void) |
417 | { | |
e90fdc39 JS |
418 | if (inside_work_tree < 0) |
419 | inside_work_tree = is_inside_dir(get_git_work_tree()); | |
420 | return inside_work_tree; | |
892c41b9 ML |
421 | } |
422 | ||
f3fa1838 JH |
423 | void setup_work_tree(void) |
424 | { | |
8500e0de | 425 | const char *work_tree; |
354e6534 JS |
426 | static int initialized = 0; |
427 | ||
428 | if (initialized) | |
429 | return; | |
fada7674 JK |
430 | |
431 | if (work_tree_config_is_bogus) | |
fc045fe7 | 432 | die(_("unable to set up work tree using invalid config")); |
fada7674 | 433 | |
354e6534 | 434 | work_tree = get_git_work_tree(); |
8500e0de | 435 | if (!work_tree || chdir_notify(work_tree)) |
fc045fe7 | 436 | die(_("this operation must be run in a work tree")); |
0ed74813 NTND |
437 | |
438 | /* | |
439 | * Make sure subsequent git processes find correct worktree | |
440 | * if $GIT_WORK_TREE is set relative | |
441 | */ | |
442 | if (getenv(GIT_WORK_TREE_ENVIRONMENT)) | |
443 | setenv(GIT_WORK_TREE_ENVIRONMENT, ".", 1); | |
444 | ||
354e6534 | 445 | initialized = 1; |
59f0f2f3 MH |
446 | } |
447 | ||
e6f8861b EN |
448 | static void setup_original_cwd(void) |
449 | { | |
450 | struct strbuf tmp = STRBUF_INIT; | |
451 | const char *worktree = NULL; | |
452 | int offset = -1; | |
453 | ||
454 | if (!tmp_original_cwd) | |
455 | return; | |
456 | ||
457 | /* | |
458 | * startup_info->original_cwd points to the current working | |
459 | * directory we inherited from our parent process, which is a | |
460 | * directory we want to avoid removing. | |
461 | * | |
462 | * For convience, we would like to have the path relative to the | |
463 | * worktree instead of an absolute path. | |
464 | * | |
465 | * Yes, startup_info->original_cwd is usually the same as 'prefix', | |
466 | * but differs in two ways: | |
467 | * - prefix has a trailing '/' | |
468 | * - if the user passes '-C' to git, that modifies the prefix but | |
469 | * not startup_info->original_cwd. | |
470 | */ | |
471 | ||
472 | /* Normalize the directory */ | |
c37c6dc6 KL |
473 | if (!strbuf_realpath(&tmp, tmp_original_cwd, 0)) { |
474 | trace2_data_string("setup", the_repository, | |
475 | "realpath-path", tmp_original_cwd); | |
476 | trace2_data_string("setup", the_repository, | |
477 | "realpath-failure", strerror(errno)); | |
478 | free((char*)tmp_original_cwd); | |
479 | tmp_original_cwd = NULL; | |
480 | return; | |
481 | } | |
482 | ||
e6f8861b EN |
483 | free((char*)tmp_original_cwd); |
484 | tmp_original_cwd = NULL; | |
485 | startup_info->original_cwd = strbuf_detach(&tmp, NULL); | |
486 | ||
487 | /* | |
488 | * Get our worktree; we only protect the current working directory | |
489 | * if it's in the worktree. | |
490 | */ | |
491 | worktree = get_git_work_tree(); | |
492 | if (!worktree) | |
493 | goto no_prevention_needed; | |
494 | ||
495 | offset = dir_inside_of(startup_info->original_cwd, worktree); | |
496 | if (offset >= 0) { | |
497 | /* | |
498 | * If startup_info->original_cwd == worktree, that is already | |
499 | * protected and we don't need original_cwd as a secondary | |
500 | * protection measure. | |
501 | */ | |
502 | if (!*(startup_info->original_cwd + offset)) | |
503 | goto no_prevention_needed; | |
504 | ||
505 | /* | |
506 | * original_cwd was inside worktree; precompose it just as | |
507 | * we do prefix so that built up paths will match | |
508 | */ | |
509 | startup_info->original_cwd = \ | |
510 | precompose_string_if_needed(startup_info->original_cwd | |
511 | + offset); | |
512 | return; | |
513 | } | |
514 | ||
515 | no_prevention_needed: | |
516 | free((char*)startup_info->original_cwd); | |
517 | startup_info->original_cwd = NULL; | |
518 | } | |
519 | ||
58b284a2 NTND |
520 | static int read_worktree_config(const char *var, const char *value, void *vdata) |
521 | { | |
522 | struct repository_format *data = vdata; | |
523 | ||
524 | if (strcmp(var, "core.bare") == 0) { | |
525 | data->is_bare = git_config_bool(var, value); | |
526 | } else if (strcmp(var, "core.worktree") == 0) { | |
527 | if (!value) | |
528 | return config_error_nonbool(var); | |
13019979 | 529 | free(data->work_tree); |
58b284a2 NTND |
530 | data->work_tree = xstrdup(value); |
531 | } | |
532 | return 0; | |
533 | } | |
534 | ||
ec91ffca JK |
535 | enum extension_result { |
536 | EXTENSION_ERROR = -1, /* compatible with error(), etc */ | |
537 | EXTENSION_UNKNOWN = 0, | |
538 | EXTENSION_OK = 1 | |
539 | }; | |
540 | ||
541 | /* | |
542 | * Do not add new extensions to this function. It handles extensions which are | |
543 | * respected even in v0-format repositories for historical compatibility. | |
544 | */ | |
545 | static enum extension_result handle_extension_v0(const char *var, | |
546 | const char *value, | |
547 | const char *ext, | |
548 | struct repository_format *data) | |
549 | { | |
550 | if (!strcmp(ext, "noop")) { | |
551 | return EXTENSION_OK; | |
552 | } else if (!strcmp(ext, "preciousobjects")) { | |
553 | data->precious_objects = git_config_bool(var, value); | |
554 | return EXTENSION_OK; | |
555 | } else if (!strcmp(ext, "partialclone")) { | |
ec91ffca JK |
556 | data->partial_clone = xstrdup(value); |
557 | return EXTENSION_OK; | |
558 | } else if (!strcmp(ext, "worktreeconfig")) { | |
559 | data->worktree_config = git_config_bool(var, value); | |
560 | return EXTENSION_OK; | |
561 | } | |
562 | ||
563 | return EXTENSION_UNKNOWN; | |
564 | } | |
565 | ||
566 | /* | |
567 | * Record any new extensions in this function. | |
568 | */ | |
569 | static enum extension_result handle_extension(const char *var, | |
570 | const char *value, | |
571 | const char *ext, | |
572 | struct repository_format *data) | |
573 | { | |
574 | if (!strcmp(ext, "noop-v1")) { | |
575 | return EXTENSION_OK; | |
e0ad9574 JH |
576 | } else if (!strcmp(ext, "objectformat")) { |
577 | int format; | |
ec91ffca | 578 | |
e0ad9574 JH |
579 | if (!value) |
580 | return config_error_nonbool(var); | |
581 | format = hash_algo_by_name(value); | |
582 | if (format == GIT_HASH_UNKNOWN) | |
1a8aea85 JNA |
583 | return error(_("invalid value for '%s': '%s'"), |
584 | "extensions.objectformat", value); | |
e0ad9574 JH |
585 | data->hash_algo = format; |
586 | return EXTENSION_OK; | |
587 | } | |
ec91ffca JK |
588 | return EXTENSION_UNKNOWN; |
589 | } | |
590 | ||
2cc7c2c7 | 591 | static int check_repo_format(const char *var, const char *value, void *vdata) |
31e26ebc | 592 | { |
2cc7c2c7 | 593 | struct repository_format *data = vdata; |
00a09d57 JK |
594 | const char *ext; |
595 | ||
31e26ebc | 596 | if (strcmp(var, "core.repositoryformatversion") == 0) |
2cc7c2c7 | 597 | data->version = git_config_int(var, value); |
00a09d57 | 598 | else if (skip_prefix(var, "extensions.", &ext)) { |
ec91ffca JK |
599 | switch (handle_extension_v0(var, value, ext, data)) { |
600 | case EXTENSION_ERROR: | |
601 | return -1; | |
602 | case EXTENSION_OK: | |
603 | return 0; | |
604 | case EXTENSION_UNKNOWN: | |
605 | break; | |
606 | } | |
607 | ||
608 | switch (handle_extension(var, value, ext, data)) { | |
609 | case EXTENSION_ERROR: | |
610 | return -1; | |
611 | case EXTENSION_OK: | |
612 | string_list_append(&data->v1_only_extensions, ext); | |
613 | return 0; | |
614 | case EXTENSION_UNKNOWN: | |
2cc7c2c7 | 615 | string_list_append(&data->unknown_extensions, ext); |
ec91ffca JK |
616 | return 0; |
617 | } | |
00a09d57 | 618 | } |
58b284a2 NTND |
619 | |
620 | return read_worktree_config(var, value, vdata); | |
31e26ebc NTND |
621 | } |
622 | ||
abade65b | 623 | static int check_repository_format_gently(const char *gitdir, struct repository_format *candidate, int *nongit_ok) |
9459aa77 | 624 | { |
7d0fb0da | 625 | struct strbuf sb = STRBUF_INIT; |
2cc7c2c7 | 626 | struct strbuf err = STRBUF_INIT; |
652f18ee | 627 | int has_common; |
00a09d57 | 628 | |
652f18ee | 629 | has_common = get_common_dir(&sb, gitdir); |
e61a509a | 630 | strbuf_addstr(&sb, "/config"); |
abade65b | 631 | read_repository_format(candidate, sb.buf); |
2cc7c2c7 | 632 | strbuf_release(&sb); |
e61a509a | 633 | |
337e51ce | 634 | /* |
2cc7c2c7 JK |
635 | * For historical use of check_repository_format() in git-init, |
636 | * we treat a missing config as a silent "ok", even when nongit_ok | |
637 | * is unset. | |
337e51ce | 638 | */ |
abade65b | 639 | if (candidate->version < 0) |
2cc7c2c7 JK |
640 | return 0; |
641 | ||
abade65b | 642 | if (verify_repository_format(candidate, &err) < 0) { |
2cc7c2c7 JK |
643 | if (nongit_ok) { |
644 | warning("%s", err.buf); | |
645 | strbuf_release(&err); | |
646 | *nongit_ok = -1; | |
647 | return -1; | |
648 | } | |
649 | die("%s", err.buf); | |
650 | } | |
651 | ||
11664196 | 652 | repository_format_precious_objects = candidate->precious_objects; |
11664196 | 653 | repository_format_worktree_config = candidate->worktree_config; |
abade65b | 654 | string_list_clear(&candidate->unknown_extensions, 0); |
ec91ffca | 655 | string_list_clear(&candidate->v1_only_extensions, 0); |
58b284a2 NTND |
656 | |
657 | if (repository_format_worktree_config) { | |
658 | /* | |
659 | * pick up core.bare and core.worktree from per-worktree | |
660 | * config if present | |
661 | */ | |
662 | strbuf_addf(&sb, "%s/config.worktree", gitdir); | |
663 | git_config_from_file(read_worktree_config, sb.buf, candidate); | |
664 | strbuf_release(&sb); | |
665 | has_common = 0; | |
666 | } | |
667 | ||
652f18ee | 668 | if (!has_common) { |
abade65b | 669 | if (candidate->is_bare != -1) { |
670 | is_bare_repository_cfg = candidate->is_bare; | |
652f18ee JK |
671 | if (is_bare_repository_cfg == 1) |
672 | inside_work_tree = -1; | |
673 | } | |
abade65b | 674 | if (candidate->work_tree) { |
652f18ee | 675 | free(git_work_tree_cfg); |
e8805af1 | 676 | git_work_tree_cfg = xstrdup(candidate->work_tree); |
2cc7c2c7 | 677 | inside_work_tree = -1; |
652f18ee | 678 | } |
2cc7c2c7 JK |
679 | } |
680 | ||
681 | return 0; | |
682 | } | |
683 | ||
16af5f1a XL |
684 | int upgrade_repository_format(int target_version) |
685 | { | |
686 | struct strbuf sb = STRBUF_INIT; | |
687 | struct strbuf err = STRBUF_INIT; | |
688 | struct strbuf repo_version = STRBUF_INIT; | |
689 | struct repository_format repo_fmt = REPOSITORY_FORMAT_INIT; | |
690 | ||
691 | strbuf_git_common_path(&sb, the_repository, "config"); | |
692 | read_repository_format(&repo_fmt, sb.buf); | |
693 | strbuf_release(&sb); | |
694 | ||
695 | if (repo_fmt.version >= target_version) | |
696 | return 0; | |
697 | ||
62f2eca6 JN |
698 | if (verify_repository_format(&repo_fmt, &err) < 0) { |
699 | error("cannot upgrade repository format from %d to %d: %s", | |
700 | repo_fmt.version, target_version, err.buf); | |
16af5f1a XL |
701 | strbuf_release(&err); |
702 | return -1; | |
703 | } | |
62f2eca6 JN |
704 | if (!repo_fmt.version && repo_fmt.unknown_extensions.nr) |
705 | return error("cannot upgrade repository format: " | |
706 | "unknown extension %s", | |
707 | repo_fmt.unknown_extensions.items[0].string); | |
16af5f1a XL |
708 | |
709 | strbuf_addf(&repo_version, "%d", target_version); | |
710 | git_config_set("core.repositoryformatversion", repo_version.buf); | |
711 | strbuf_release(&repo_version); | |
712 | return 1; | |
713 | } | |
714 | ||
e8805af1 MÅ |
715 | static void init_repository_format(struct repository_format *format) |
716 | { | |
717 | const struct repository_format fresh = REPOSITORY_FORMAT_INIT; | |
718 | ||
719 | memcpy(format, &fresh, sizeof(fresh)); | |
720 | } | |
721 | ||
652f18ee | 722 | int read_repository_format(struct repository_format *format, const char *path) |
2cc7c2c7 | 723 | { |
e8805af1 | 724 | clear_repository_format(format); |
652f18ee | 725 | git_config_from_file(check_repo_format, path, format); |
e8805af1 MÅ |
726 | if (format->version == -1) |
727 | clear_repository_format(format); | |
2cc7c2c7 JK |
728 | return format->version; |
729 | } | |
730 | ||
e8805af1 MÅ |
731 | void clear_repository_format(struct repository_format *format) |
732 | { | |
733 | string_list_clear(&format->unknown_extensions, 0); | |
ec91ffca | 734 | string_list_clear(&format->v1_only_extensions, 0); |
e8805af1 MÅ |
735 | free(format->work_tree); |
736 | free(format->partial_clone); | |
737 | init_repository_format(format); | |
738 | } | |
739 | ||
2cc7c2c7 JK |
740 | int verify_repository_format(const struct repository_format *format, |
741 | struct strbuf *err) | |
742 | { | |
743 | if (GIT_REPO_VERSION_READ < format->version) { | |
274db840 | 744 | strbuf_addf(err, _("Expected git repo version <= %d, found %d"), |
2cc7c2c7 JK |
745 | GIT_REPO_VERSION_READ, format->version); |
746 | return -1; | |
747 | } | |
748 | ||
749 | if (format->version >= 1 && format->unknown_extensions.nr) { | |
00a09d57 JK |
750 | int i; |
751 | ||
8013d7d9 AH |
752 | strbuf_addstr(err, Q_("unknown repository extension found:", |
753 | "unknown repository extensions found:", | |
754 | format->unknown_extensions.nr)); | |
00a09d57 | 755 | |
2cc7c2c7 JK |
756 | for (i = 0; i < format->unknown_extensions.nr; i++) |
757 | strbuf_addf(err, "\n\t%s", | |
758 | format->unknown_extensions.items[i].string); | |
759 | return -1; | |
00a09d57 JK |
760 | } |
761 | ||
ec91ffca JK |
762 | if (format->version == 0 && format->v1_only_extensions.nr) { |
763 | int i; | |
764 | ||
765 | strbuf_addstr(err, | |
8013d7d9 AH |
766 | Q_("repo version is 0, but v1-only extension found:", |
767 | "repo version is 0, but v1-only extensions found:", | |
768 | format->v1_only_extensions.nr)); | |
ec91ffca JK |
769 | |
770 | for (i = 0; i < format->v1_only_extensions.nr; i++) | |
771 | strbuf_addf(err, "\n\t%s", | |
772 | format->v1_only_extensions.items[i].string); | |
773 | return -1; | |
774 | } | |
775 | ||
2cc7c2c7 | 776 | return 0; |
9459aa77 NTND |
777 | } |
778 | ||
5f29433f SB |
779 | void read_gitfile_error_die(int error_code, const char *path, const char *dir) |
780 | { | |
781 | switch (error_code) { | |
782 | case READ_GITFILE_ERR_STAT_FAILED: | |
783 | case READ_GITFILE_ERR_NOT_A_FILE: | |
784 | /* non-fatal; follow return path */ | |
785 | break; | |
786 | case READ_GITFILE_ERR_OPEN_FAILED: | |
fc045fe7 | 787 | die_errno(_("error opening '%s'"), path); |
5f29433f | 788 | case READ_GITFILE_ERR_TOO_LARGE: |
fc045fe7 | 789 | die(_("too large to be a .git file: '%s'"), path); |
5f29433f | 790 | case READ_GITFILE_ERR_READ_FAILED: |
fc045fe7 | 791 | die(_("error reading %s"), path); |
5f29433f | 792 | case READ_GITFILE_ERR_INVALID_FORMAT: |
fc045fe7 | 793 | die(_("invalid gitfile format: %s"), path); |
5f29433f | 794 | case READ_GITFILE_ERR_NO_PATH: |
fc045fe7 | 795 | die(_("no path in gitfile: %s"), path); |
5f29433f | 796 | case READ_GITFILE_ERR_NOT_A_REPO: |
fc045fe7 | 797 | die(_("not a git repository: %s"), dir); |
5f29433f | 798 | default: |
033abf97 | 799 | BUG("unknown error code"); |
5f29433f SB |
800 | } |
801 | } | |
802 | ||
b44ebb19 LH |
803 | /* |
804 | * Try to read the location of the git directory from the .git file, | |
ea1d8756 HWN |
805 | * return path to git directory if found. The return value comes from |
806 | * a shared buffer. | |
a93bedad EE |
807 | * |
808 | * On failure, if return_error_code is not NULL, return_error_code | |
809 | * will be set to an error code and NULL will be returned. If | |
810 | * return_error_code is NULL the function will die instead (for most | |
811 | * cases). | |
b44ebb19 | 812 | */ |
a93bedad | 813 | const char *read_gitfile_gently(const char *path, int *return_error_code) |
b44ebb19 | 814 | { |
921bdd96 | 815 | const int max_file_size = 1 << 20; /* 1MB */ |
a93bedad EE |
816 | int error_code = 0; |
817 | char *buf = NULL; | |
818 | char *dir = NULL; | |
40c813e0 | 819 | const char *slash; |
b44ebb19 LH |
820 | struct stat st; |
821 | int fd; | |
b1905aea | 822 | ssize_t len; |
3d7747e3 | 823 | static struct strbuf realpath = STRBUF_INIT; |
b44ebb19 | 824 | |
a93bedad | 825 | if (stat(path, &st)) { |
5c4003ca | 826 | /* NEEDSWORK: discern between ENOENT vs other errors */ |
a93bedad EE |
827 | error_code = READ_GITFILE_ERR_STAT_FAILED; |
828 | goto cleanup_return; | |
829 | } | |
830 | if (!S_ISREG(st.st_mode)) { | |
831 | error_code = READ_GITFILE_ERR_NOT_A_FILE; | |
832 | goto cleanup_return; | |
833 | } | |
921bdd96 EE |
834 | if (st.st_size > max_file_size) { |
835 | error_code = READ_GITFILE_ERR_TOO_LARGE; | |
836 | goto cleanup_return; | |
837 | } | |
b44ebb19 | 838 | fd = open(path, O_RDONLY); |
a93bedad EE |
839 | if (fd < 0) { |
840 | error_code = READ_GITFILE_ERR_OPEN_FAILED; | |
841 | goto cleanup_return; | |
842 | } | |
3733e694 | 843 | buf = xmallocz(st.st_size); |
b44ebb19 LH |
844 | len = read_in_full(fd, buf, st.st_size); |
845 | close(fd); | |
a93bedad EE |
846 | if (len != st.st_size) { |
847 | error_code = READ_GITFILE_ERR_READ_FAILED; | |
848 | goto cleanup_return; | |
849 | } | |
a93bedad EE |
850 | if (!starts_with(buf, "gitdir: ")) { |
851 | error_code = READ_GITFILE_ERR_INVALID_FORMAT; | |
852 | goto cleanup_return; | |
853 | } | |
b44ebb19 LH |
854 | while (buf[len - 1] == '\n' || buf[len - 1] == '\r') |
855 | len--; | |
a93bedad EE |
856 | if (len < 9) { |
857 | error_code = READ_GITFILE_ERR_NO_PATH; | |
858 | goto cleanup_return; | |
859 | } | |
b44ebb19 | 860 | buf[len] = '\0'; |
40c813e0 BK |
861 | dir = buf + 8; |
862 | ||
863 | if (!is_absolute_path(dir) && (slash = strrchr(path, '/'))) { | |
864 | size_t pathlen = slash+1 - path; | |
75faa45a JK |
865 | dir = xstrfmt("%.*s%.*s", (int)pathlen, path, |
866 | (int)(len - 8), buf + 8); | |
40c813e0 BK |
867 | free(buf); |
868 | buf = dir; | |
869 | } | |
a93bedad EE |
870 | if (!is_git_directory(dir)) { |
871 | error_code = READ_GITFILE_ERR_NOT_A_REPO; | |
872 | goto cleanup_return; | |
873 | } | |
3d7747e3 AM |
874 | |
875 | strbuf_realpath(&realpath, dir, 1); | |
876 | path = realpath.buf; | |
40c813e0 | 877 | |
a93bedad | 878 | cleanup_return: |
a93bedad EE |
879 | if (return_error_code) |
880 | *return_error_code = error_code; | |
5f29433f SB |
881 | else if (error_code) |
882 | read_gitfile_error_die(error_code, path, dir); | |
a93bedad | 883 | |
b44ebb19 | 884 | free(buf); |
38ae8784 | 885 | return error_code ? NULL : path; |
b44ebb19 LH |
886 | } |
887 | ||
e4e30347 | 888 | static const char *setup_explicit_git_dir(const char *gitdirenv, |
7333ed17 | 889 | struct strbuf *cwd, |
abade65b | 890 | struct repository_format *repo_fmt, |
b3f66fd3 | 891 | int *nongit_ok) |
e4e30347 | 892 | { |
b3f66fd3 NTND |
893 | const char *work_tree_env = getenv(GIT_WORK_TREE_ENVIRONMENT); |
894 | const char *worktree; | |
895 | char *gitfile; | |
9b125da4 | 896 | int offset; |
e4e30347 JN |
897 | |
898 | if (PATH_MAX - 40 < strlen(gitdirenv)) | |
fc045fe7 | 899 | die(_("'$%s' too big"), GIT_DIR_ENVIRONMENT); |
b3f66fd3 | 900 | |
13d6ec91 | 901 | gitfile = (char*)read_gitfile(gitdirenv); |
b3f66fd3 NTND |
902 | if (gitfile) { |
903 | gitfile = xstrdup(gitfile); | |
904 | gitdirenv = gitfile; | |
905 | } | |
906 | ||
e4e30347 JN |
907 | if (!is_git_directory(gitdirenv)) { |
908 | if (nongit_ok) { | |
909 | *nongit_ok = 1; | |
b3f66fd3 | 910 | free(gitfile); |
e4e30347 JN |
911 | return NULL; |
912 | } | |
fc045fe7 | 913 | die(_("not a git repository: '%s'"), gitdirenv); |
e4e30347 | 914 | } |
b3f66fd3 | 915 | |
abade65b | 916 | if (check_repository_format_gently(gitdirenv, repo_fmt, nongit_ok)) { |
b3f66fd3 NTND |
917 | free(gitfile); |
918 | return NULL; | |
e4e30347 | 919 | } |
b3f66fd3 NTND |
920 | |
921 | /* #3, #7, #11, #15, #19, #23, #27, #31 (see t1510) */ | |
922 | if (work_tree_env) | |
923 | set_git_work_tree(work_tree_env); | |
924 | else if (is_bare_repository_cfg > 0) { | |
fada7674 JK |
925 | if (git_work_tree_cfg) { |
926 | /* #22.2, #30 */ | |
927 | warning("core.bare and core.worktree do not make sense"); | |
928 | work_tree_config_is_bogus = 1; | |
929 | } | |
b3f66fd3 NTND |
930 | |
931 | /* #18, #26 */ | |
0915a5b4 | 932 | set_git_dir(gitdirenv, 0); |
b3f66fd3 | 933 | free(gitfile); |
e4e30347 | 934 | return NULL; |
b3f66fd3 NTND |
935 | } |
936 | else if (git_work_tree_cfg) { /* #6, #14 */ | |
937 | if (is_absolute_path(git_work_tree_cfg)) | |
938 | set_git_work_tree(git_work_tree_cfg); | |
939 | else { | |
56b9f6e7 | 940 | char *core_worktree; |
b3f66fd3 | 941 | if (chdir(gitdirenv)) |
fc045fe7 | 942 | die_errno(_("cannot chdir to '%s'"), gitdirenv); |
b3f66fd3 | 943 | if (chdir(git_work_tree_cfg)) |
fc045fe7 | 944 | die_errno(_("cannot chdir to '%s'"), git_work_tree_cfg); |
56b9f6e7 | 945 | core_worktree = xgetcwd(); |
7333ed17 | 946 | if (chdir(cwd->buf)) |
fc045fe7 | 947 | die_errno(_("cannot come back to cwd")); |
b3f66fd3 | 948 | set_git_work_tree(core_worktree); |
56b9f6e7 | 949 | free(core_worktree); |
b3f66fd3 NTND |
950 | } |
951 | } | |
2cd83d10 JK |
952 | else if (!git_env_bool(GIT_IMPLICIT_WORK_TREE_ENVIRONMENT, 1)) { |
953 | /* #16d */ | |
0915a5b4 | 954 | set_git_dir(gitdirenv, 0); |
2cd83d10 JK |
955 | free(gitfile); |
956 | return NULL; | |
957 | } | |
b3f66fd3 NTND |
958 | else /* #2, #10 */ |
959 | set_git_work_tree("."); | |
960 | ||
961 | /* set_git_work_tree() must have been called by now */ | |
962 | worktree = get_git_work_tree(); | |
963 | ||
964 | /* both get_git_work_tree() and cwd are already normalized */ | |
7333ed17 | 965 | if (!strcmp(cwd->buf, worktree)) { /* cwd == worktree */ |
0915a5b4 | 966 | set_git_dir(gitdirenv, 0); |
b3f66fd3 | 967 | free(gitfile); |
e4e30347 | 968 | return NULL; |
b3f66fd3 | 969 | } |
e4e30347 | 970 | |
7333ed17 | 971 | offset = dir_inside_of(cwd->buf, worktree); |
9b125da4 | 972 | if (offset >= 0) { /* cwd inside worktree? */ |
0915a5b4 | 973 | set_git_dir(gitdirenv, 1); |
b3f66fd3 | 974 | if (chdir(worktree)) |
fc045fe7 | 975 | die_errno(_("cannot chdir to '%s'"), worktree); |
7333ed17 | 976 | strbuf_addch(cwd, '/'); |
b3f66fd3 | 977 | free(gitfile); |
7333ed17 | 978 | return cwd->buf + offset; |
93a00542 | 979 | } |
b3f66fd3 NTND |
980 | |
981 | /* cwd outside worktree */ | |
0915a5b4 | 982 | set_git_dir(gitdirenv, 0); |
b3f66fd3 NTND |
983 | free(gitfile); |
984 | return NULL; | |
93a00542 JN |
985 | } |
986 | ||
9951d3b3 | 987 | static const char *setup_discovered_git_dir(const char *gitdir, |
7333ed17 | 988 | struct strbuf *cwd, int offset, |
abade65b | 989 | struct repository_format *repo_fmt, |
9951d3b3 | 990 | int *nongit_ok) |
98937bef | 991 | { |
abade65b | 992 | if (check_repository_format_gently(gitdir, repo_fmt, nongit_ok)) |
9951d3b3 | 993 | return NULL; |
98937bef | 994 | |
4868b2ea JN |
995 | /* --work-tree is set without --git-dir; use discovered one */ |
996 | if (getenv(GIT_WORK_TREE_ENVIRONMENT) || git_work_tree_cfg) { | |
2d4dcf21 JS |
997 | char *to_free = NULL; |
998 | const char *ret; | |
999 | ||
7333ed17 | 1000 | if (offset != cwd->len && !is_absolute_path(gitdir)) |
2d4dcf21 | 1001 | gitdir = to_free = real_pathdup(gitdir, 1); |
7333ed17 | 1002 | if (chdir(cwd->buf)) |
fc045fe7 | 1003 | die_errno(_("cannot come back to cwd")); |
abade65b | 1004 | ret = setup_explicit_git_dir(gitdir, cwd, repo_fmt, nongit_ok); |
2d4dcf21 JS |
1005 | free(to_free); |
1006 | return ret; | |
4868b2ea JN |
1007 | } |
1008 | ||
9951d3b3 NTND |
1009 | /* #16.2, #17.2, #20.2, #21.2, #24, #25, #28, #29 (see t1510) */ |
1010 | if (is_bare_repository_cfg > 0) { | |
0915a5b4 | 1011 | set_git_dir(gitdir, (offset != cwd->len)); |
7333ed17 | 1012 | if (chdir(cwd->buf)) |
fc045fe7 | 1013 | die_errno(_("cannot come back to cwd")); |
98937bef | 1014 | return NULL; |
9951d3b3 | 1015 | } |
98937bef | 1016 | |
9951d3b3 NTND |
1017 | /* #0, #1, #5, #8, #9, #12, #13 */ |
1018 | set_git_work_tree("."); | |
1019 | if (strcmp(gitdir, DEFAULT_GIT_DIR_ENVIRONMENT)) | |
0915a5b4 | 1020 | set_git_dir(gitdir, 0); |
98937bef | 1021 | inside_git_dir = 0; |
9951d3b3 | 1022 | inside_work_tree = 1; |
5cf7b3b1 | 1023 | if (offset >= cwd->len) |
98937bef NTND |
1024 | return NULL; |
1025 | ||
df380d58 JS |
1026 | /* Make "offset" point past the '/' (already the case for root dirs) */ |
1027 | if (offset != offset_1st_component(cwd->buf)) | |
1028 | offset++; | |
1029 | /* Add a '/' at the end */ | |
7333ed17 RS |
1030 | strbuf_addch(cwd, '/'); |
1031 | return cwd->buf + offset; | |
98937bef NTND |
1032 | } |
1033 | ||
1cd8031b | 1034 | /* #16.1, #17.1, #20.1, #21.1, #22.1 (see t1510) */ |
7333ed17 | 1035 | static const char *setup_bare_git_dir(struct strbuf *cwd, int offset, |
abade65b | 1036 | struct repository_format *repo_fmt, |
7333ed17 | 1037 | int *nongit_ok) |
68698da5 JN |
1038 | { |
1039 | int root_len; | |
1040 | ||
abade65b | 1041 | if (check_repository_format_gently(".", repo_fmt, nongit_ok)) |
1cd8031b NTND |
1042 | return NULL; |
1043 | ||
2cd83d10 JK |
1044 | setenv(GIT_IMPLICIT_WORK_TREE_ENVIRONMENT, "0", 1); |
1045 | ||
4868b2ea JN |
1046 | /* --work-tree is set without --git-dir; use discovered one */ |
1047 | if (getenv(GIT_WORK_TREE_ENVIRONMENT) || git_work_tree_cfg) { | |
da6f8475 | 1048 | static const char *gitdir; |
4868b2ea | 1049 | |
7333ed17 RS |
1050 | gitdir = offset == cwd->len ? "." : xmemdupz(cwd->buf, offset); |
1051 | if (chdir(cwd->buf)) | |
fc045fe7 | 1052 | die_errno(_("cannot come back to cwd")); |
abade65b | 1053 | return setup_explicit_git_dir(gitdir, cwd, repo_fmt, nongit_ok); |
4868b2ea JN |
1054 | } |
1055 | ||
68698da5 | 1056 | inside_git_dir = 1; |
1cd8031b | 1057 | inside_work_tree = 0; |
7333ed17 RS |
1058 | if (offset != cwd->len) { |
1059 | if (chdir(cwd->buf)) | |
fc045fe7 | 1060 | die_errno(_("cannot come back to cwd")); |
7333ed17 RS |
1061 | root_len = offset_1st_component(cwd->buf); |
1062 | strbuf_setlen(cwd, offset > root_len ? offset : root_len); | |
0915a5b4 | 1063 | set_git_dir(cwd->buf, 0); |
337e51ce | 1064 | } |
1cd8031b | 1065 | else |
0915a5b4 | 1066 | set_git_dir(".", 0); |
68698da5 JN |
1067 | return NULL; |
1068 | } | |
1069 | ||
2565b43b | 1070 | static dev_t get_device_or_die(const char *path, const char *prefix, int prefix_len) |
60c98d1e JN |
1071 | { |
1072 | struct stat buf; | |
2565b43b | 1073 | if (stat(path, &buf)) { |
fc045fe7 | 1074 | die_errno(_("failed to stat '%*s%s%s'"), |
2565b43b | 1075 | prefix_len, |
60c98d1e JN |
1076 | prefix ? prefix : "", |
1077 | prefix ? "/" : "", path); | |
2565b43b | 1078 | } |
60c98d1e JN |
1079 | return buf.st_dev; |
1080 | } | |
1081 | ||
9e2326c7 | 1082 | /* |
1b77d83c | 1083 | * A "string_list_each_func_t" function that canonicalizes an entry |
4530a85b | 1084 | * from GIT_CEILING_DIRECTORIES using real_pathdup(), or |
7ec30aaa MH |
1085 | * discards it if unusable. The presence of an empty entry in |
1086 | * GIT_CEILING_DIRECTORIES turns off canonicalization for all | |
1087 | * subsequent entries. | |
9e2326c7 | 1088 | */ |
1b77d83c | 1089 | static int canonicalize_ceiling_entry(struct string_list_item *item, |
7ec30aaa | 1090 | void *cb_data) |
9e2326c7 | 1091 | { |
7ec30aaa | 1092 | int *empty_entry_found = cb_data; |
1b77d83c | 1093 | char *ceil = item->string; |
9e2326c7 | 1094 | |
7ec30aaa MH |
1095 | if (!*ceil) { |
1096 | *empty_entry_found = 1; | |
9e2326c7 | 1097 | return 0; |
7ec30aaa | 1098 | } else if (!is_absolute_path(ceil)) { |
9e2326c7 | 1099 | return 0; |
7ec30aaa MH |
1100 | } else if (*empty_entry_found) { |
1101 | /* Keep entry but do not canonicalize it */ | |
1102 | return 1; | |
1103 | } else { | |
ce83eadd | 1104 | char *real_path = real_pathdup(ceil, 0); |
4ac9006f | 1105 | if (!real_path) { |
7ec30aaa | 1106 | return 0; |
4ac9006f | 1107 | } |
7ec30aaa | 1108 | free(item->string); |
4ac9006f | 1109 | item->string = real_path; |
7ec30aaa MH |
1110 | return 1; |
1111 | } | |
9e2326c7 MH |
1112 | } |
1113 | ||
8959555c JS |
1114 | struct safe_directory_data { |
1115 | const char *path; | |
1116 | int is_safe; | |
1117 | }; | |
1118 | ||
1119 | static int safe_directory_cb(const char *key, const char *value, void *d) | |
1120 | { | |
1121 | struct safe_directory_data *data = d; | |
1122 | ||
bb50ec3c MV |
1123 | if (strcmp(key, "safe.directory")) |
1124 | return 0; | |
1125 | ||
0f85c4a3 | 1126 | if (!value || !*value) { |
8959555c | 1127 | data->is_safe = 0; |
0f85c4a3 DS |
1128 | } else if (!strcmp(value, "*")) { |
1129 | data->is_safe = 1; | |
1130 | } else { | |
8959555c JS |
1131 | const char *interpolated = NULL; |
1132 | ||
1133 | if (!git_config_pathname(&interpolated, key, value) && | |
1134 | !fspathcmp(data->path, interpolated ? interpolated : value)) | |
1135 | data->is_safe = 1; | |
1136 | ||
1137 | free((char *)interpolated); | |
1138 | } | |
1139 | ||
1140 | return 0; | |
1141 | } | |
1142 | ||
3b0bf270 CMAB |
1143 | /* |
1144 | * Check if a repository is safe, by verifying the ownership of the | |
1145 | * worktree (if any), the git directory, and the gitfile (if any). | |
1146 | * | |
1147 | * Exemptions for known-safe repositories can be added via `safe.directory` | |
1148 | * config settings; for non-bare repositories, their worktree needs to be | |
1149 | * added, for bare ones their git directory. | |
1150 | */ | |
1151 | static int ensure_valid_ownership(const char *gitfile, | |
17d3883f JS |
1152 | const char *worktree, const char *gitdir, |
1153 | struct strbuf *report) | |
8959555c | 1154 | { |
3b0bf270 CMAB |
1155 | struct safe_directory_data data = { |
1156 | .path = worktree ? worktree : gitdir | |
1157 | }; | |
8959555c | 1158 | |
e47363e5 | 1159 | if (!git_env_bool("GIT_TEST_ASSUME_DIFFERENT_OWNER", 0) && |
17d3883f JS |
1160 | (!gitfile || is_path_owned_by_current_user(gitfile, report)) && |
1161 | (!worktree || is_path_owned_by_current_user(worktree, report)) && | |
1162 | (!gitdir || is_path_owned_by_current_user(gitdir, report))) | |
8959555c JS |
1163 | return 1; |
1164 | ||
3b0bf270 CMAB |
1165 | /* |
1166 | * data.path is the "path" that identifies the repository and it is | |
1167 | * constant regardless of what failed above. data.is_safe should be | |
1168 | * initialized to false, and might be changed by the callback. | |
1169 | */ | |
6061601d | 1170 | git_protected_config(safe_directory_cb, &data); |
8959555c JS |
1171 | |
1172 | return data.is_safe; | |
1173 | } | |
1174 | ||
8d1a7448 GC |
1175 | static int allowed_bare_repo_cb(const char *key, const char *value, void *d) |
1176 | { | |
1177 | enum allowed_bare_repo *allowed_bare_repo = d; | |
1178 | ||
1179 | if (strcasecmp(key, "safe.bareRepository")) | |
1180 | return 0; | |
1181 | ||
1182 | if (!strcmp(value, "explicit")) { | |
1183 | *allowed_bare_repo = ALLOWED_BARE_REPO_EXPLICIT; | |
1184 | return 0; | |
1185 | } | |
1186 | if (!strcmp(value, "all")) { | |
1187 | *allowed_bare_repo = ALLOWED_BARE_REPO_ALL; | |
1188 | return 0; | |
1189 | } | |
1190 | return -1; | |
1191 | } | |
1192 | ||
1193 | static enum allowed_bare_repo get_allowed_bare_repo(void) | |
1194 | { | |
1195 | enum allowed_bare_repo result = ALLOWED_BARE_REPO_ALL; | |
1196 | git_protected_config(allowed_bare_repo_cb, &result); | |
1197 | return result; | |
1198 | } | |
1199 | ||
1200 | static const char *allowed_bare_repo_to_string( | |
1201 | enum allowed_bare_repo allowed_bare_repo) | |
1202 | { | |
1203 | switch (allowed_bare_repo) { | |
1204 | case ALLOWED_BARE_REPO_EXPLICIT: | |
1205 | return "explicit"; | |
1206 | case ALLOWED_BARE_REPO_ALL: | |
1207 | return "all"; | |
1208 | default: | |
1209 | BUG("invalid allowed_bare_repo %d", | |
1210 | allowed_bare_repo); | |
1211 | } | |
1212 | return NULL; | |
1213 | } | |
1214 | ||
ce9b8aab JS |
1215 | enum discovery_result { |
1216 | GIT_DIR_NONE = 0, | |
1217 | GIT_DIR_EXPLICIT, | |
1218 | GIT_DIR_DISCOVERED, | |
1219 | GIT_DIR_BARE, | |
1220 | /* these are errors */ | |
1221 | GIT_DIR_HIT_CEILING = -1, | |
01017dce | 1222 | GIT_DIR_HIT_MOUNT_POINT = -2, |
8959555c | 1223 | GIT_DIR_INVALID_GITFILE = -3, |
8d1a7448 GC |
1224 | GIT_DIR_INVALID_OWNERSHIP = -4, |
1225 | GIT_DIR_DISALLOWED_BARE = -5, | |
ce9b8aab JS |
1226 | }; |
1227 | ||
e90fdc39 JS |
1228 | /* |
1229 | * We cannot decide in this function whether we are in the work tree or | |
1230 | * not, since the config can only be read _after_ this function was called. | |
ce9b8aab JS |
1231 | * |
1232 | * Also, we avoid changing any global state (such as the current working | |
1233 | * directory) to allow early callers. | |
1234 | * | |
1235 | * The directory where the search should start needs to be passed in via the | |
1236 | * `dir` parameter; upon return, the `dir` buffer will contain the path of | |
1237 | * the directory where the search ended, and `gitdir` will contain the path of | |
1238 | * the discovered .git/ directory, if any. If `gitdir` is not absolute, it | |
1239 | * is relative to `dir` (i.e. *not* necessarily the cwd). | |
e90fdc39 | 1240 | */ |
ce9b8aab | 1241 | static enum discovery_result setup_git_directory_gently_1(struct strbuf *dir, |
01017dce | 1242 | struct strbuf *gitdir, |
17d3883f | 1243 | struct strbuf *report, |
01017dce | 1244 | int die_on_error) |
d288a700 | 1245 | { |
0454dd93 | 1246 | const char *env_ceiling_dirs = getenv(CEILING_DIRECTORIES_ENVIRONMENT); |
31171d9e | 1247 | struct string_list ceiling_dirs = STRING_LIST_INIT_DUP; |
ce9b8aab | 1248 | const char *gitdirenv; |
d17f2124 | 1249 | int ceil_offset = -1, min_offset = offset_1st_component(dir->buf); |
c7d1d1b1 RH |
1250 | dev_t current_device = 0; |
1251 | int one_filesystem = 1; | |
d288a700 | 1252 | |
e90fdc39 JS |
1253 | /* |
1254 | * If GIT_DIR is set explicitly, we're not going | |
1255 | * to do any discovery, but we still do repository | |
1256 | * validation. | |
1257 | */ | |
ad1a382f | 1258 | gitdirenv = getenv(GIT_DIR_ENVIRONMENT); |
ce9b8aab JS |
1259 | if (gitdirenv) { |
1260 | strbuf_addstr(gitdir, gitdirenv); | |
1261 | return GIT_DIR_EXPLICIT; | |
1262 | } | |
d288a700 | 1263 | |
31171d9e | 1264 | if (env_ceiling_dirs) { |
7ec30aaa MH |
1265 | int empty_entry_found = 0; |
1266 | ||
31171d9e | 1267 | string_list_split(&ceiling_dirs, env_ceiling_dirs, PATH_SEP, -1); |
1b77d83c | 1268 | filter_string_list(&ceiling_dirs, 0, |
7ec30aaa | 1269 | canonicalize_ceiling_entry, &empty_entry_found); |
ce9b8aab | 1270 | ceil_offset = longest_ancestor_length(dir->buf, &ceiling_dirs); |
31171d9e MH |
1271 | string_list_clear(&ceiling_dirs, 0); |
1272 | } | |
1273 | ||
ce9b8aab JS |
1274 | if (ceil_offset < 0) |
1275 | ceil_offset = min_offset - 2; | |
d288a700 | 1276 | |
e2683d51 JS |
1277 | if (min_offset && min_offset == dir->len && |
1278 | !is_dir_sep(dir->buf[min_offset - 1])) { | |
1279 | strbuf_addch(dir, '/'); | |
1280 | min_offset++; | |
1281 | } | |
1282 | ||
892c41b9 | 1283 | /* |
ce9b8aab | 1284 | * Test in the following order (relative to the dir): |
b44ebb19 | 1285 | * - .git (file containing "gitdir: <path>") |
e90fdc39 JS |
1286 | * - .git/ |
1287 | * - ./ (bare) | |
b44ebb19 | 1288 | * - ../.git |
e90fdc39 JS |
1289 | * - ../.git/ |
1290 | * - ../ (bare) | |
176b2d32 | 1291 | * - ../../.git |
e90fdc39 | 1292 | * etc. |
892c41b9 | 1293 | */ |
cf87463e | 1294 | one_filesystem = !git_env_bool("GIT_DISCOVERY_ACROSS_FILESYSTEM", 0); |
60c98d1e | 1295 | if (one_filesystem) |
ce9b8aab | 1296 | current_device = get_device_or_die(dir->buf, NULL, 0); |
e90fdc39 | 1297 | for (;;) { |
01017dce | 1298 | int offset = dir->len, error_code = 0; |
3b0bf270 CMAB |
1299 | char *gitdir_path = NULL; |
1300 | char *gitfile = NULL; | |
ce9b8aab JS |
1301 | |
1302 | if (offset > min_offset) | |
1303 | strbuf_addch(dir, '/'); | |
1304 | strbuf_addstr(dir, DEFAULT_GIT_DIR_ENVIRONMENT); | |
01017dce JS |
1305 | gitdirenv = read_gitfile_gently(dir->buf, die_on_error ? |
1306 | NULL : &error_code); | |
1307 | if (!gitdirenv) { | |
1308 | if (die_on_error || | |
1309 | error_code == READ_GITFILE_ERR_NOT_A_FILE) { | |
5c4003ca | 1310 | /* NEEDSWORK: fail if .git is not file nor dir */ |
3b0bf270 | 1311 | if (is_git_directory(dir->buf)) { |
01017dce | 1312 | gitdirenv = DEFAULT_GIT_DIR_ENVIRONMENT; |
3b0bf270 CMAB |
1313 | gitdir_path = xstrdup(dir->buf); |
1314 | } | |
01017dce JS |
1315 | } else if (error_code != READ_GITFILE_ERR_STAT_FAILED) |
1316 | return GIT_DIR_INVALID_GITFILE; | |
3b0bf270 CMAB |
1317 | } else |
1318 | gitfile = xstrdup(dir->buf); | |
1319 | /* | |
1320 | * Earlier, we tentatively added DEFAULT_GIT_DIR_ENVIRONMENT | |
1321 | * to check that directory for a repository. | |
1322 | * Now trim that tentative addition away, because we want to | |
1323 | * focus on the real directory we are in. | |
1324 | */ | |
ce9b8aab | 1325 | strbuf_setlen(dir, offset); |
9951d3b3 | 1326 | if (gitdirenv) { |
3b0bf270 | 1327 | enum discovery_result ret; |
d51e1dff JS |
1328 | const char *gitdir_candidate = |
1329 | gitdir_path ? gitdir_path : gitdirenv; | |
3b0bf270 | 1330 | |
d51e1dff | 1331 | if (ensure_valid_ownership(gitfile, dir->buf, |
17d3883f | 1332 | gitdir_candidate, report)) { |
3b0bf270 CMAB |
1333 | strbuf_addstr(gitdir, gitdirenv); |
1334 | ret = GIT_DIR_DISCOVERED; | |
1335 | } else | |
1336 | ret = GIT_DIR_INVALID_OWNERSHIP; | |
1337 | ||
1338 | /* | |
1339 | * Earlier, during discovery, we might have allocated | |
1340 | * string copies for gitdir_path or gitfile so make | |
1341 | * sure we don't leak by freeing them now, before | |
1342 | * leaving the loop and function. | |
1343 | * | |
1344 | * Note: gitdirenv will be non-NULL whenever these are | |
1345 | * allocated, therefore we need not take care of releasing | |
1346 | * them outside of this conditional block. | |
1347 | */ | |
1348 | free(gitdir_path); | |
1349 | free(gitfile); | |
1350 | ||
1351 | return ret; | |
9951d3b3 | 1352 | } |
9951d3b3 | 1353 | |
ce9b8aab | 1354 | if (is_git_directory(dir->buf)) { |
e35f202b | 1355 | trace2_data_string("setup", NULL, "implicit-bare-repository", dir->buf); |
8d1a7448 GC |
1356 | if (get_allowed_bare_repo() == ALLOWED_BARE_REPO_EXPLICIT) |
1357 | return GIT_DIR_DISALLOWED_BARE; | |
17d3883f | 1358 | if (!ensure_valid_ownership(NULL, NULL, dir->buf, report)) |
8959555c | 1359 | return GIT_DIR_INVALID_OWNERSHIP; |
ce9b8aab JS |
1360 | strbuf_addstr(gitdir, "."); |
1361 | return GIT_DIR_BARE; | |
502ffe34 | 1362 | } |
9951d3b3 | 1363 | |
ce9b8aab JS |
1364 | if (offset <= min_offset) |
1365 | return GIT_DIR_HIT_CEILING; | |
1cd8031b | 1366 | |
ce9b8aab | 1367 | while (--offset > ceil_offset && !is_dir_sep(dir->buf[offset])) |
6c1e6544 | 1368 | ; /* continue */ |
ce9b8aab JS |
1369 | if (offset <= ceil_offset) |
1370 | return GIT_DIR_HIT_CEILING; | |
1371 | ||
1372 | strbuf_setlen(dir, offset > min_offset ? offset : min_offset); | |
1373 | if (one_filesystem && | |
1374 | current_device != get_device_or_die(dir->buf, NULL, offset)) | |
1375 | return GIT_DIR_HIT_MOUNT_POINT; | |
892c41b9 | 1376 | } |
d288a700 | 1377 | } |
5e7bfe25 | 1378 | |
d3fb71b3 BW |
1379 | int discover_git_directory(struct strbuf *commondir, |
1380 | struct strbuf *gitdir) | |
16ac8b8d JS |
1381 | { |
1382 | struct strbuf dir = STRBUF_INIT, err = STRBUF_INIT; | |
1383 | size_t gitdir_offset = gitdir->len, cwd_len; | |
d3fb71b3 | 1384 | size_t commondir_offset = commondir->len; |
e8805af1 | 1385 | struct repository_format candidate = REPOSITORY_FORMAT_INIT; |
16ac8b8d JS |
1386 | |
1387 | if (strbuf_getcwd(&dir)) | |
d3fb71b3 | 1388 | return -1; |
16ac8b8d JS |
1389 | |
1390 | cwd_len = dir.len; | |
17d3883f | 1391 | if (setup_git_directory_gently_1(&dir, gitdir, NULL, 0) <= 0) { |
16ac8b8d | 1392 | strbuf_release(&dir); |
d3fb71b3 | 1393 | return -1; |
16ac8b8d JS |
1394 | } |
1395 | ||
1396 | /* | |
1397 | * The returned gitdir is relative to dir, and if dir does not reflect | |
1398 | * the current working directory, we simply make the gitdir absolute. | |
1399 | */ | |
1400 | if (dir.len < cwd_len && !is_absolute_path(gitdir->buf + gitdir_offset)) { | |
1401 | /* Avoid a trailing "/." */ | |
1402 | if (!strcmp(".", gitdir->buf + gitdir_offset)) | |
1403 | strbuf_setlen(gitdir, gitdir_offset); | |
1404 | else | |
1405 | strbuf_addch(&dir, '/'); | |
1406 | strbuf_insert(gitdir, gitdir_offset, dir.buf, dir.len); | |
1407 | } | |
1408 | ||
d3fb71b3 BW |
1409 | get_common_dir(commondir, gitdir->buf + gitdir_offset); |
1410 | ||
16ac8b8d | 1411 | strbuf_reset(&dir); |
d3fb71b3 | 1412 | strbuf_addf(&dir, "%s/config", commondir->buf + commondir_offset); |
16ac8b8d JS |
1413 | read_repository_format(&candidate, dir.buf); |
1414 | strbuf_release(&dir); | |
1415 | ||
1416 | if (verify_repository_format(&candidate, &err) < 0) { | |
1417 | warning("ignoring git dir '%s': %s", | |
1418 | gitdir->buf + gitdir_offset, err.buf); | |
1419 | strbuf_release(&err); | |
d3fb71b3 | 1420 | strbuf_setlen(commondir, commondir_offset); |
69743f9b | 1421 | strbuf_setlen(gitdir, gitdir_offset); |
e8805af1 | 1422 | clear_repository_format(&candidate); |
d3fb71b3 | 1423 | return -1; |
16ac8b8d JS |
1424 | } |
1425 | ||
ebaf3bcf JT |
1426 | /* take ownership of candidate.partial_clone */ |
1427 | the_repository->repository_format_partial_clone = | |
1428 | candidate.partial_clone; | |
1429 | candidate.partial_clone = NULL; | |
1430 | ||
e8805af1 | 1431 | clear_repository_format(&candidate); |
d3fb71b3 | 1432 | return 0; |
16ac8b8d JS |
1433 | } |
1434 | ||
a60645f9 NTND |
1435 | const char *setup_git_directory_gently(int *nongit_ok) |
1436 | { | |
ce9b8aab | 1437 | static struct strbuf cwd = STRBUF_INIT; |
17d3883f | 1438 | struct strbuf dir = STRBUF_INIT, gitdir = STRBUF_INIT, report = STRBUF_INIT; |
07098b81 | 1439 | const char *prefix = NULL; |
e8805af1 | 1440 | struct repository_format repo_fmt = REPOSITORY_FORMAT_INIT; |
a60645f9 | 1441 | |
ce9b8aab JS |
1442 | /* |
1443 | * We may have read an incomplete configuration before | |
1444 | * setting-up the git directory. If so, clear the cache so | |
1445 | * that the next queries to the configuration reload complete | |
1446 | * configuration (including the per-repo config file that we | |
1447 | * ignored previously). | |
1448 | */ | |
1449 | git_config_clear(); | |
1450 | ||
1451 | /* | |
1452 | * Let's assume that we are in a git repository. | |
1453 | * If it turns out later that we are somewhere else, the value will be | |
1454 | * updated accordingly. | |
1455 | */ | |
1456 | if (nongit_ok) | |
1457 | *nongit_ok = 0; | |
1458 | ||
1459 | if (strbuf_getcwd(&cwd)) | |
1460 | die_errno(_("Unable to read current working directory")); | |
1461 | strbuf_addbuf(&dir, &cwd); | |
1462 | ||
17d3883f | 1463 | switch (setup_git_directory_gently_1(&dir, &gitdir, &report, 1)) { |
ce9b8aab | 1464 | case GIT_DIR_EXPLICIT: |
abade65b | 1465 | prefix = setup_explicit_git_dir(gitdir.buf, &cwd, &repo_fmt, nongit_ok); |
ce9b8aab JS |
1466 | break; |
1467 | case GIT_DIR_DISCOVERED: | |
1468 | if (dir.len < cwd.len && chdir(dir.buf)) | |
fc045fe7 | 1469 | die(_("cannot change to '%s'"), dir.buf); |
ce9b8aab | 1470 | prefix = setup_discovered_git_dir(gitdir.buf, &cwd, dir.len, |
abade65b | 1471 | &repo_fmt, nongit_ok); |
ce9b8aab JS |
1472 | break; |
1473 | case GIT_DIR_BARE: | |
1474 | if (dir.len < cwd.len && chdir(dir.buf)) | |
fc045fe7 | 1475 | die(_("cannot change to '%s'"), dir.buf); |
abade65b | 1476 | prefix = setup_bare_git_dir(&cwd, dir.len, &repo_fmt, nongit_ok); |
ce9b8aab JS |
1477 | break; |
1478 | case GIT_DIR_HIT_CEILING: | |
07098b81 ED |
1479 | if (!nongit_ok) |
1480 | die(_("not a git repository (or any of the parent directories): %s"), | |
1481 | DEFAULT_GIT_DIR_ENVIRONMENT); | |
1482 | *nongit_ok = 1; | |
ce9b8aab JS |
1483 | break; |
1484 | case GIT_DIR_HIT_MOUNT_POINT: | |
07098b81 ED |
1485 | if (!nongit_ok) |
1486 | die(_("not a git repository (or any parent up to mount point %s)\n" | |
1487 | "Stopping at filesystem boundary (GIT_DISCOVERY_ACROSS_FILESYSTEM not set)."), | |
1488 | dir.buf); | |
1489 | *nongit_ok = 1; | |
1490 | break; | |
8959555c JS |
1491 | case GIT_DIR_INVALID_OWNERSHIP: |
1492 | if (!nongit_ok) { | |
1493 | struct strbuf quoted = STRBUF_INIT; | |
1494 | ||
17d3883f | 1495 | strbuf_complete(&report, '\n'); |
8959555c | 1496 | sq_quote_buf_pretty("ed, dir.buf); |
3b0bf270 | 1497 | die(_("detected dubious ownership in repository at '%s'\n" |
17d3883f | 1498 | "%s" |
8959555c JS |
1499 | "To add an exception for this directory, call:\n" |
1500 | "\n" | |
1501 | "\tgit config --global --add safe.directory %s"), | |
17d3883f | 1502 | dir.buf, report.buf, quoted.buf); |
8959555c JS |
1503 | } |
1504 | *nongit_ok = 1; | |
1505 | break; | |
8d1a7448 GC |
1506 | case GIT_DIR_DISALLOWED_BARE: |
1507 | if (!nongit_ok) { | |
1508 | die(_("cannot use bare repository '%s' (safe.bareRepository is '%s')"), | |
1509 | dir.buf, | |
1510 | allowed_bare_repo_to_string(get_allowed_bare_repo())); | |
1511 | } | |
1512 | *nongit_ok = 1; | |
1513 | break; | |
07098b81 ED |
1514 | case GIT_DIR_NONE: |
1515 | /* | |
1516 | * As a safeguard against setup_git_directory_gently_1 returning | |
1517 | * this value, fallthrough to BUG. Otherwise it is possible to | |
1518 | * set startup_info->have_repository to 1 when we did nothing to | |
1519 | * find a repository. | |
1520 | */ | |
ce9b8aab | 1521 | default: |
a3ba4fa7 | 1522 | BUG("unhandled setup_git_directory_gently_1() result"); |
ce9b8aab JS |
1523 | } |
1524 | ||
07098b81 ED |
1525 | /* |
1526 | * At this point, nongit_ok is stable. If it is non-NULL and points | |
1527 | * to a non-zero value, then this means that we haven't found a | |
1528 | * repository and that the caller expects startup_info to reflect | |
1529 | * this. | |
1530 | * | |
1531 | * Regardless of the state of nongit_ok, startup_info->prefix and | |
1532 | * the GIT_PREFIX environment variable must always match. For details | |
1533 | * see Documentation/config/alias.txt. | |
1534 | */ | |
c7d0e610 | 1535 | if (nongit_ok && *nongit_ok) |
07098b81 | 1536 | startup_info->have_repository = 0; |
c7d0e610 | 1537 | else |
07098b81 | 1538 | startup_info->have_repository = 1; |
46c3cd44 | 1539 | |
73f192c9 BW |
1540 | /* |
1541 | * Not all paths through the setup code will call 'set_git_dir()' (which | |
1542 | * directly sets up the environment) so in order to guarantee that the | |
1543 | * environment is in a consistent state after setup, explicitly setup | |
1544 | * the environment if we have a repository. | |
1545 | * | |
1546 | * NEEDSWORK: currently we allow bogus GIT_DIR values to be set in some | |
1547 | * code paths so we also need to explicitly setup the environment if | |
1548 | * the user has set GIT_DIR. It may be beneficial to disallow bogus | |
1549 | * GIT_DIR values at some point in the future. | |
1550 | */ | |
07098b81 ED |
1551 | if (/* GIT_DIR_EXPLICIT, GIT_DIR_DISCOVERED, GIT_DIR_BARE */ |
1552 | startup_info->have_repository || | |
1553 | /* GIT_DIR_EXPLICIT */ | |
1554 | getenv(GIT_DIR_ENVIRONMENT)) { | |
c14c234f BW |
1555 | if (!the_repository->gitdir) { |
1556 | const char *gitdir = getenv(GIT_DIR_ENVIRONMENT); | |
1557 | if (!gitdir) | |
1558 | gitdir = DEFAULT_GIT_DIR_ENVIRONMENT; | |
357a03eb | 1559 | setup_git_env(gitdir); |
c14c234f | 1560 | } |
ebaf3bcf | 1561 | if (startup_info->have_repository) { |
78a67668 | 1562 | repo_set_hash_algo(the_repository, repo_fmt.hash_algo); |
ebaf3bcf JT |
1563 | /* take ownership of repo_fmt.partial_clone */ |
1564 | the_repository->repository_format_partial_clone = | |
1565 | repo_fmt.partial_clone; | |
1566 | repo_fmt.partial_clone = NULL; | |
1567 | } | |
c14c234f | 1568 | } |
c7d0e610 TB |
1569 | /* |
1570 | * Since precompose_string_if_needed() needs to look at | |
1571 | * the core.precomposeunicode configuration, this | |
1572 | * has to happen after the above block that finds | |
1573 | * out where the repository is, i.e. a preparation | |
1574 | * for calling git_config_get_bool(). | |
1575 | */ | |
1576 | if (prefix) { | |
1577 | prefix = precompose_string_if_needed(prefix); | |
1578 | startup_info->prefix = prefix; | |
1579 | setenv(GIT_PREFIX_ENVIRONMENT, prefix, 1); | |
1580 | } else { | |
1581 | startup_info->prefix = NULL; | |
1582 | setenv(GIT_PREFIX_ENVIRONMENT, "", 1); | |
1583 | } | |
1584 | ||
e6f8861b | 1585 | setup_original_cwd(); |
73f192c9 | 1586 | |
ce9b8aab JS |
1587 | strbuf_release(&dir); |
1588 | strbuf_release(&gitdir); | |
17d3883f | 1589 | strbuf_release(&report); |
e8805af1 | 1590 | clear_repository_format(&repo_fmt); |
ce9b8aab | 1591 | |
a60645f9 NTND |
1592 | return prefix; |
1593 | } | |
1594 | ||
94df2506 JH |
1595 | int git_config_perm(const char *var, const char *value) |
1596 | { | |
06cbe855 HO |
1597 | int i; |
1598 | char *endptr; | |
1599 | ||
afe8a907 | 1600 | if (!value) |
06cbe855 HO |
1601 | return PERM_GROUP; |
1602 | ||
1603 | if (!strcmp(value, "umask")) | |
1604 | return PERM_UMASK; | |
1605 | if (!strcmp(value, "group")) | |
1606 | return PERM_GROUP; | |
1607 | if (!strcmp(value, "all") || | |
1608 | !strcmp(value, "world") || | |
1609 | !strcmp(value, "everybody")) | |
1610 | return PERM_EVERYBODY; | |
1611 | ||
1612 | /* Parse octal numbers */ | |
1613 | i = strtol(value, &endptr, 8); | |
1614 | ||
1615 | /* If not an octal number, maybe true/false? */ | |
1616 | if (*endptr != 0) | |
1617 | return git_config_bool(var, value) ? PERM_GROUP : PERM_UMASK; | |
1618 | ||
1619 | /* | |
1620 | * Treat values 0, 1 and 2 as compatibility cases, otherwise it is | |
5a688fe4 | 1621 | * a chmod value to restrict to. |
06cbe855 HO |
1622 | */ |
1623 | switch (i) { | |
1624 | case PERM_UMASK: /* 0 */ | |
1625 | return PERM_UMASK; | |
1626 | case OLD_PERM_GROUP: /* 1 */ | |
1627 | return PERM_GROUP; | |
1628 | case OLD_PERM_EVERYBODY: /* 2 */ | |
1629 | return PERM_EVERYBODY; | |
94df2506 | 1630 | } |
06cbe855 HO |
1631 | |
1632 | /* A filemode value was given: 0xxx */ | |
1633 | ||
1634 | if ((i & 0600) != 0600) | |
fc045fe7 | 1635 | die(_("problem with core.sharedRepository filemode value " |
06cbe855 | 1636 | "(0%.3o).\nThe owner of files must always have " |
2ff30e67 | 1637 | "read and write permissions."), i); |
06cbe855 HO |
1638 | |
1639 | /* | |
1640 | * Mask filemode value. Others can not get write permission. | |
1641 | * x flags for directories are handled separately. | |
1642 | */ | |
5a688fe4 | 1643 | return -(i & 0666); |
94df2506 JH |
1644 | } |
1645 | ||
cfe3917c | 1646 | void check_repository_format(struct repository_format *fmt) |
ab9cb76f | 1647 | { |
e8805af1 | 1648 | struct repository_format repo_fmt = REPOSITORY_FORMAT_INIT; |
cfe3917c | 1649 | if (!fmt) |
1650 | fmt = &repo_fmt; | |
1651 | check_repository_format_gently(get_git_dir(), fmt, NULL); | |
f1c126bd | 1652 | startup_info->have_repository = 1; |
d553aceb | 1653 | repo_set_hash_algo(the_repository, fmt->hash_algo); |
ebaf3bcf JT |
1654 | the_repository->repository_format_partial_clone = |
1655 | xstrdup_or_null(fmt->partial_clone); | |
e8805af1 | 1656 | clear_repository_format(&repo_fmt); |
ab9cb76f JH |
1657 | } |
1658 | ||
e1e5ec86 CB |
1659 | /* |
1660 | * Returns the "prefix", a path to the current working directory | |
1661 | * relative to the work tree root, or NULL, if the current working | |
1662 | * directory is not a strict subdirectory of the work tree root. The | |
1663 | * prefix always ends with a '/' character. | |
1664 | */ | |
5e7bfe25 JH |
1665 | const char *setup_git_directory(void) |
1666 | { | |
b3f66fd3 | 1667 | return setup_git_directory_gently(NULL); |
5e7bfe25 | 1668 | } |
abc06822 | 1669 | |
40d96325 | 1670 | const char *resolve_gitdir_gently(const char *suspect, int *return_error_code) |
abc06822 FG |
1671 | { |
1672 | if (is_git_directory(suspect)) | |
1673 | return suspect; | |
40d96325 | 1674 | return read_gitfile_gently(suspect, return_error_code); |
abc06822 | 1675 | } |
1d999ddd TR |
1676 | |
1677 | /* if any standard file descriptor is missing open it to /dev/null */ | |
1678 | void sanitize_stdfds(void) | |
1679 | { | |
d9a65b6c RS |
1680 | int fd = xopen("/dev/null", O_RDWR); |
1681 | while (fd < 2) | |
1682 | fd = xdup(fd); | |
1d999ddd TR |
1683 | if (fd > 2) |
1684 | close(fd); | |
1685 | } | |
de0957ce NTND |
1686 | |
1687 | int daemonize(void) | |
1688 | { | |
1689 | #ifdef NO_POSIX_GOODIES | |
1690 | errno = ENOSYS; | |
1691 | return -1; | |
1692 | #else | |
1693 | switch (fork()) { | |
1694 | case 0: | |
1695 | break; | |
1696 | case -1: | |
fc045fe7 | 1697 | die_errno(_("fork failed")); |
de0957ce NTND |
1698 | default: |
1699 | exit(0); | |
1700 | } | |
1701 | if (setsid() == -1) | |
fc045fe7 | 1702 | die_errno(_("setsid failed")); |
de0957ce NTND |
1703 | close(0); |
1704 | close(1); | |
1705 | close(2); | |
1706 | sanitize_stdfds(); | |
1707 | return 0; | |
1708 | #endif | |
1709 | } |