[thirdparty/git.git] / t / t5550-http-fetch-dumb.sh

#!/bin/sh

test_description='test dumb fetching over http via static file'
. ./test-lib.sh
. "$TEST_DIRECTORY"/lib-httpd.sh
start_httpd

test_expect_success 'setup repository' '
	git config push.default matching &&
	echo content1 >file &&
	git add file &&
	git commit -m one &&
	echo content2 >file &&
	git add file &&
	git commit -m two
'

test_expect_success 'create http-accessible bare repository with loose objects' '
	cp -R .git "$HTTPD_DOCUMENT_ROOT_PATH/repo.git" &&
	(cd "$HTTPD_DOCUMENT_ROOT_PATH/repo.git" &&
	 git config core.bare true &&
	 mkdir -p hooks &&
	 echo "exec git update-server-info" >hooks/post-update &&
	 chmod +x hooks/post-update &&
	 hooks/post-update
	) &&
	git remote add public "$HTTPD_DOCUMENT_ROOT_PATH/repo.git" &&
	git push public master:master
'

test_expect_success 'clone http repository' '
	git clone $HTTPD_URL/dumb/repo.git clone-tmpl &&
	cp -R clone-tmpl clone &&
	test_cmp file clone/file
'

test_expect_success 'create password-protected repository' '
	mkdir -p "$HTTPD_DOCUMENT_ROOT_PATH/auth/dumb/" &&
	cp -Rf "$HTTPD_DOCUMENT_ROOT_PATH/repo.git" \
	       "$HTTPD_DOCUMENT_ROOT_PATH/auth/dumb/repo.git"
'

setup_askpass_helper

test_expect_success 'cloning password-protected repository can fail' '
	set_askpass wrong &&
	test_must_fail git clone "$HTTPD_URL/auth/dumb/repo.git" clone-auth-fail &&
	expect_askpass both wrong
'

test_expect_success 'http auth can use user/pass in URL' '
	set_askpass wrong &&
	git clone "$HTTPD_URL_USER_PASS/auth/dumb/repo.git" clone-auth-none &&
	expect_askpass none
'

test_expect_success 'http auth can use just user in URL' '
	set_askpass wrong pass@host &&
	git clone "$HTTPD_URL_USER/auth/dumb/repo.git" clone-auth-pass &&
	expect_askpass pass user@host
'

test_expect_success 'http auth can request both user and pass' '
	set_askpass user@host pass@host &&
	git clone "$HTTPD_URL/auth/dumb/repo.git" clone-auth-both &&
	expect_askpass both user@host
'

test_expect_success 'http auth respects credential helper config' '
	test_config_global credential.helper "!f() {
		cat >/dev/null
		echo username=user@host
		echo password=pass@host
	}; f" &&
	set_askpass wrong &&
	git clone "$HTTPD_URL/auth/dumb/repo.git" clone-auth-helper &&
	expect_askpass none
'

test_expect_success 'http auth can get username from config' '
	test_config_global "credential.$HTTPD_URL.username" user@host &&
	set_askpass wrong pass@host &&
	git clone "$HTTPD_URL/auth/dumb/repo.git" clone-auth-user &&
	expect_askpass pass user@host
'

test_expect_success 'configured username does not override URL' '
	test_config_global "credential.$HTTPD_URL.username" wrong &&
	set_askpass wrong pass@host &&
	git clone "$HTTPD_URL_USER/auth/dumb/repo.git" clone-auth-user2 &&
	expect_askpass pass user@host
'

test_expect_success 'set up repo with http submodules' '
	git init super &&
	set_askpass user@host pass@host &&
	(
		cd super &&
		git submodule add "$HTTPD_URL/auth/dumb/repo.git" sub &&
		git commit -m "add submodule"
	)
'

test_expect_success 'cmdline credential config passes to submodule via clone' '
	set_askpass wrong pass@host &&
	test_must_fail git clone --recursive super super-clone &&
	rm -rf super-clone &&

	set_askpass wrong pass@host &&
	git -c "credential.$HTTPD_URL.username=user@host" \
		clone --recursive super super-clone &&
	expect_askpass pass user@host
'

test_expect_success 'cmdline credential config passes submodule via fetch' '
	set_askpass wrong pass@host &&
	test_must_fail git -C super-clone fetch --recurse-submodules &&

	set_askpass wrong pass@host &&
	git -C super-clone \
	    -c "credential.$HTTPD_URL.username=user@host" \
	    fetch --recurse-submodules &&
	expect_askpass pass user@host
'

test_expect_success 'cmdline credential config passes submodule update' '
	# advance the submodule HEAD so that a fetch is required
	git commit --allow-empty -m foo &&
	git push "$HTTPD_DOCUMENT_ROOT_PATH/auth/dumb/repo.git" HEAD &&
	sha1=$(git rev-parse HEAD) &&
	git -C super-clone update-index --cacheinfo 160000,$sha1,sub &&

	set_askpass wrong pass@host &&
	test_must_fail git -C super-clone submodule update &&

	set_askpass wrong pass@host &&
	git -C super-clone \
	    -c "credential.$HTTPD_URL.username=user@host" \
	    submodule update &&
	expect_askpass pass user@host
'

test_expect_success 'fetch changes via http' '
	echo content >>file &&
	git commit -a -m two &&
	git push public &&
	(cd clone && git pull) &&
	test_cmp file clone/file
'

test_expect_success 'fetch changes via manual http-fetch' '
	cp -R clone-tmpl clone2 &&

	HEAD=$(git rev-parse --verify HEAD) &&
	(cd clone2 &&
	 git http-fetch -a -w heads/master-new $HEAD $(git config remote.origin.url) &&
	 git checkout master-new &&
	 test $HEAD = $(git rev-parse --verify HEAD)) &&
	test_cmp file clone2/file
'

test_expect_success 'http remote detects correct HEAD' '
	git push public master:other &&
	(cd clone &&
	 git remote set-head origin -d &&
	 git remote set-head origin -a &&
	 git symbolic-ref refs/remotes/origin/HEAD > output &&
	 echo refs/remotes/origin/master > expect &&
	 test_cmp expect output
	)
'

test_expect_success 'fetch packed objects' '
	cp -R "$HTTPD_DOCUMENT_ROOT_PATH"/repo.git "$HTTPD_DOCUMENT_ROOT_PATH"/repo_pack.git &&
	(cd "$HTTPD_DOCUMENT_ROOT_PATH"/repo_pack.git &&
	 git --bare repack -a -d
	) &&
	git clone $HTTPD_URL/dumb/repo_pack.git
'

test_expect_success 'fetch notices corrupt pack' '
	cp -R "$HTTPD_DOCUMENT_ROOT_PATH"/repo_pack.git "$HTTPD_DOCUMENT_ROOT_PATH"/repo_bad1.git &&
	(cd "$HTTPD_DOCUMENT_ROOT_PATH"/repo_bad1.git &&
	 p=$(ls objects/pack/pack-*.pack) &&
	 chmod u+w $p &&
	 printf %0256d 0 | dd of=$p bs=256 count=1 seek=1 conv=notrunc
	) &&
	mkdir repo_bad1.git &&
	(cd repo_bad1.git &&
	 git --bare init &&
	 test_must_fail git --bare fetch $HTTPD_URL/dumb/repo_bad1.git &&
	 test 0 = $(ls objects/pack/pack-*.pack | wc -l)
	)
'

test_expect_success 'fetch notices corrupt idx' '
	cp -R "$HTTPD_DOCUMENT_ROOT_PATH"/repo_pack.git "$HTTPD_DOCUMENT_ROOT_PATH"/repo_bad2.git &&
	(cd "$HTTPD_DOCUMENT_ROOT_PATH"/repo_bad2.git &&
	 p=$(ls objects/pack/pack-*.idx) &&
	 chmod u+w $p &&
	 printf %0256d 0 | dd of=$p bs=256 count=1 seek=1 conv=notrunc
	) &&
	mkdir repo_bad2.git &&
	(cd repo_bad2.git &&
	 git --bare init &&
	 test_must_fail git --bare fetch $HTTPD_URL/dumb/repo_bad2.git &&
	 test 0 = $(ls objects/pack | wc -l)
	)
'

test_expect_success 'fetch can handle previously-fetched .idx files' '
	git checkout --orphan branch1 &&
	echo base >file &&
	git add file &&
	git commit -m base &&
	git --bare init "$HTTPD_DOCUMENT_ROOT_PATH"/repo_packed_branches.git &&
	git push "$HTTPD_DOCUMENT_ROOT_PATH"/repo_packed_branches.git branch1 &&
	git --git-dir="$HTTPD_DOCUMENT_ROOT_PATH"/repo_packed_branches.git repack -d &&
	git checkout -b branch2 branch1 &&
	echo b2 >>file &&
	git commit -a -m b2 &&
	git push "$HTTPD_DOCUMENT_ROOT_PATH"/repo_packed_branches.git branch2 &&
	git --git-dir="$HTTPD_DOCUMENT_ROOT_PATH"/repo_packed_branches.git repack -d &&
	git --bare init clone_packed_branches.git &&
	git --git-dir=clone_packed_branches.git fetch "$HTTPD_URL"/dumb/repo_packed_branches.git branch1:branch1 &&
	git --git-dir=clone_packed_branches.git fetch "$HTTPD_URL"/dumb/repo_packed_branches.git branch2:branch2
'

test_expect_success 'did not use upload-pack service' '
	test_might_fail grep '/git-upload-pack' <"$HTTPD_ROOT_PATH"/access.log >act &&
	: >exp &&
	test_cmp exp act
'

test_expect_success 'git client shows text/plain errors' '
	test_must_fail git clone "$HTTPD_URL/error/text" 2>stderr &&
	grep "this is the error message" stderr
'

test_expect_success 'git client does not show html errors' '
	test_must_fail git clone "$HTTPD_URL/error/html" 2>stderr &&
	! grep "this is the error message" stderr
'

test_expect_success 'git client shows text/plain with a charset' '
	test_must_fail git clone "$HTTPD_URL/error/charset" 2>stderr &&
	grep "this is the error message" stderr
'

test_expect_success 'http error messages are reencoded' '
	test_must_fail git clone "$HTTPD_URL/error/utf16" 2>stderr &&
	grep "this is the error message" stderr
'

test_expect_success 'reencoding is robust to whitespace oddities' '
	test_must_fail git clone "$HTTPD_URL/error/odd-spacing" 2>stderr &&
	grep "this is the error message" stderr
'

check_language () {
	case "$2" in
	'')
		>expect
		;;
	?*)
		echo "=> Send header: Accept-Language: $1" >expect
		;;
	esac &&
	GIT_TRACE_CURL=true \
	LANGUAGE=$2 \
	git ls-remote "$HTTPD_URL/dumb/repo.git" >output 2>&1 &&
	tr -d '\015' <output |
	sort -u |
	sed -ne '/^=> Send header: Accept-Language:/ p' >actual &&
	test_cmp expect actual
}

test_expect_success 'git client sends Accept-Language based on LANGUAGE' '
	check_language "ko-KR, *;q=0.9" ko_KR.UTF-8'

test_expect_success 'git client sends Accept-Language correctly with unordinary LANGUAGE' '
	check_language "ko-KR, *;q=0.9" "ko_KR:" &&
	check_language "ko-KR, en-US;q=0.9, *;q=0.8" "ko_KR::en_US" &&
	check_language "ko-KR, *;q=0.9" ":::ko_KR" &&
	check_language "ko-KR, en-US;q=0.9, *;q=0.8" "ko_KR!!:en_US" &&
	check_language "ko-KR, ja-JP;q=0.9, *;q=0.8" "ko_KR en_US:ja_JP"'

test_expect_success 'git client sends Accept-Language with many preferred languages' '
	check_language "ko-KR, en-US;q=0.9, fr-CA;q=0.8, de;q=0.7, sr;q=0.6, \
ja;q=0.5, zh;q=0.4, sv;q=0.3, pt;q=0.2, *;q=0.1" \
		ko_KR.EUC-KR:en_US.UTF-8:fr_CA:de.UTF-8@euro:sr@latin:ja:zh:sv:pt &&
	check_language "ko-KR, en-US;q=0.99, fr-CA;q=0.98, de;q=0.97, sr;q=0.96, \
ja;q=0.95, zh;q=0.94, sv;q=0.93, pt;q=0.92, nb;q=0.91, *;q=0.90" \
		ko_KR.EUC-KR:en_US.UTF-8:fr_CA:de.UTF-8@euro:sr@latin:ja:zh:sv:pt:nb
'

test_expect_success 'git client does not send an empty Accept-Language' '
	GIT_TRACE_CURL=true LANGUAGE= git ls-remote "$HTTPD_URL/dumb/repo.git" 2>stderr &&
	! grep "^=> Send header: Accept-Language:" stderr
'

test_expect_success 'remote-http complains cleanly about malformed urls' '
	# do not actually issue "list" or other commands, as we do not
	# want to rely on what curl would actually do with such a broken
	# URL. This is just about making sure we do not segfault during
	# initialization.
	test_must_fail git remote-http http::/example.com/repo.git
'

test_expect_success 'redirects can be forbidden/allowed' '
	test_must_fail git -c http.followRedirects=false \
		clone $HTTPD_URL/dumb-redir/repo.git dumb-redir &&
	git -c http.followRedirects=true \
		clone $HTTPD_URL/dumb-redir/repo.git dumb-redir 2>stderr
'

test_expect_success 'redirects are reported to stderr' '
	# just look for a snippet of the redirected-to URL
	test_i18ngrep /dumb/ stderr
'

test_expect_success 'non-initial redirects can be forbidden' '
	test_must_fail git -c http.followRedirects=initial \
		clone $HTTPD_URL/redir-objects/repo.git redir-objects &&
	git -c http.followRedirects=true \
		clone $HTTPD_URL/redir-objects/repo.git redir-objects
'

test_expect_success 'http.followRedirects defaults to "initial"' '
	test_must_fail git clone $HTTPD_URL/redir-objects/repo.git default
'

# The goal is for a clone of the "evil" repository, which has no objects
# itself, to cause the client to fetch objects from the "victim" repository.
test_expect_success 'set up evil alternates scheme' '
	victim=$HTTPD_DOCUMENT_ROOT_PATH/victim.git &&
	git init --bare "$victim" &&
	git -C "$victim" --work-tree=. commit --allow-empty -m secret &&
	git -C "$victim" repack -ad &&
	git -C "$victim" update-server-info &&
	sha1=$(git -C "$victim" rev-parse HEAD) &&

	evil=$HTTPD_DOCUMENT_ROOT_PATH/evil.git &&
	git init --bare "$evil" &&
	# do this by hand to avoid object existence check
	printf "%s\\t%s\\n" $sha1 refs/heads/master >"$evil/info/refs"
'

# Here we'll just redirect via HTTP. In a real-world attack these would be on
# different servers, but we should reject it either way.
test_expect_success 'http-alternates is a non-initial redirect' '
	echo "$HTTPD_URL/dumb/victim.git/objects" \
		>"$evil/objects/info/http-alternates" &&
	test_must_fail git -c http.followRedirects=initial \
		clone $HTTPD_URL/dumb/evil.git evil-initial &&
	git -c http.followRedirects=true \
		clone $HTTPD_URL/dumb/evil.git evil-initial
'

# Curl supports a lot of protocols that we'd prefer not to allow
# http-alternates to use, but it's hard to test whether curl has
# accessed, say, the SMTP protocol, because we are not running an SMTP server.
# But we can check that it does not allow access to file://, which would
# otherwise allow this clone to complete.
test_expect_success 'http-alternates cannot point at funny protocols' '
	echo "file://$victim/objects" >"$evil/objects/info/http-alternates" &&
	test_must_fail git -c http.followRedirects=true \
		clone "$HTTPD_URL/dumb/evil.git" evil-file
'

test_expect_success 'http-alternates triggers not-from-user protocol check' '
	echo "$HTTPD_URL/dumb/victim.git/objects" \
		>"$evil/objects/info/http-alternates" &&
	test_config_global http.followRedirects true &&
	test_must_fail git -c protocol.http.allow=user \
		clone $HTTPD_URL/dumb/evil.git evil-user &&
	git -c protocol.http.allow=always \
		clone $HTTPD_URL/dumb/evil.git evil-user
'

test_expect_success 'can redirect through non-"info/refs?service=git-upload-pack" URL' '
	git clone "$HTTPD_URL/redir-to/dumb/repo.git"
'

test_expect_success 'print HTTP error when any intermediate redirect throws error' '
	test_must_fail git clone "$HTTPD_URL/redir-to/502" 2> stderr &&
	test_i18ngrep "unable to access.*/redir-to/502" stderr
'

stop_httpd
test_done
Commit	Line	Data
119c8eee JK	1	#!/bin/sh
119c8eee JK	2
7da4e228	3	test_description='test dumb fetching over http via static file'
119c8eee	4	. ./test-lib.sh
55bc3dc4	5	. "$TEST_DIRECTORY"/lib-httpd.sh
119c8eee JK	6	start_httpd
	7
	8	test_expect_success 'setup repository' '
c9704aa7	9	git config push.default matching &&
5a9681f4	10	echo content1 >file &&
119c8eee	11	git add file &&
99094a7a	12	git commit -m one &&
5a9681f4 CB	13	echo content2 >file &&
	14	git add file &&
	15	git commit -m two
119c8eee JK	16	'
119c8eee JK	17
5a9681f4	18	test_expect_success 'create http-accessible bare repository with loose objects' '
d4a7ffaa	19	cp -R .git "$HTTPD_DOCUMENT_ROOT_PATH/repo.git" &&
119c8eee	20	(cd "$HTTPD_DOCUMENT_ROOT_PATH/repo.git" &&
5a9681f4 CB	21	git config core.bare true &&
5a9681f4 CB	22	mkdir -p hooks &&
119c8eee	23	echo "exec git update-server-info" >hooks/post-update &&
5a9681f4 CB	24	chmod +x hooks/post-update &&
5a9681f4 CB	25	hooks/post-update
119c8eee JK	26	) &&
	27	git remote add public "$HTTPD_DOCUMENT_ROOT_PATH/repo.git" &&
	28	git push public master:master
	29	'
	30
	31	test_expect_success 'clone http repository' '
6cfc0286 TRC	32	git clone $HTTPD_URL/dumb/repo.git clone-tmpl &&
6cfc0286 TRC	33	cp -R clone-tmpl clone &&
119c8eee JK	34	test_cmp file clone/file
	35	'
	36
5232586c	37	test_expect_success 'create password-protected repository' '
726800a8	38	mkdir -p "$HTTPD_DOCUMENT_ROOT_PATH/auth/dumb/" &&
5232586c	39	cp -Rf "$HTTPD_DOCUMENT_ROOT_PATH/repo.git" \
726800a8	40	"$HTTPD_DOCUMENT_ROOT_PATH/auth/dumb/repo.git"
5232586c JK	41	'
5232586c JK	42
e837936c	43	setup_askpass_helper
148bb6a7	44
5232586c	45	test_expect_success 'cloning password-protected repository can fail' '
e837936c	46	set_askpass wrong &&
726800a8	47	test_must_fail git clone "$HTTPD_URL/auth/dumb/repo.git" clone-auth-fail &&
148bb6a7	48	expect_askpass both wrong
5232586c JK	49	'
	50
	51	test_expect_success 'http auth can use user/pass in URL' '
e837936c	52	set_askpass wrong &&
726800a8	53	git clone "$HTTPD_URL_USER_PASS/auth/dumb/repo.git" clone-auth-none &&
148bb6a7	54	expect_askpass none
5232586c JK	55	'
5232586c JK	56
dfa1725a	57	test_expect_success 'http auth can use just user in URL' '
afbf5ca5	58	set_askpass wrong pass@host &&
726800a8	59	git clone "$HTTPD_URL_USER/auth/dumb/repo.git" clone-auth-pass &&
148bb6a7	60	expect_askpass pass user@host
5232586c JK	61	'
5232586c JK	62
dfa1725a	63	test_expect_success 'http auth can request both user and pass' '
afbf5ca5	64	set_askpass user@host pass@host &&
726800a8	65	git clone "$HTTPD_URL/auth/dumb/repo.git" clone-auth-both &&
148bb6a7	66	expect_askpass both user@host
3cf8fe1d GC	67	'
3cf8fe1d GC	68
dfa1725a	69	test_expect_success 'http auth respects credential helper config' '
11825072 JK	70	test_config_global credential.helper "!f() {
	71	cat >/dev/null
	72	echo username=user@host
afbf5ca5	73	echo password=pass@host
11825072	74	}; f" &&
e837936c	75	set_askpass wrong &&
726800a8	76	git clone "$HTTPD_URL/auth/dumb/repo.git" clone-auth-helper &&
11825072 JK	77	expect_askpass none
	78	'
	79
dfa1725a	80	test_expect_success 'http auth can get username from config' '
d5742425	81	test_config_global "credential.$HTTPD_URL.username" user@host &&
afbf5ca5	82	set_askpass wrong pass@host &&
726800a8	83	git clone "$HTTPD_URL/auth/dumb/repo.git" clone-auth-user &&
d5742425 JK	84	expect_askpass pass user@host
	85	'
	86
dfa1725a	87	test_expect_success 'configured username does not override URL' '
d5742425	88	test_config_global "credential.$HTTPD_URL.username" wrong &&
afbf5ca5	89	set_askpass wrong pass@host &&
726800a8	90	git clone "$HTTPD_URL_USER/auth/dumb/repo.git" clone-auth-user2 &&
d5742425 JK	91	expect_askpass pass user@host
	92	'
	93
455d22c1	94	test_expect_success 'set up repo with http submodules' '
14111fc4 JK	95	git init super &&
	96	set_askpass user@host pass@host &&
	97	(
	98	cd super &&
	99	git submodule add "$HTTPD_URL/auth/dumb/repo.git" sub &&
	100	git commit -m "add submodule"
455d22c1 JK	101	)
	102	'
	103
	104	test_expect_success 'cmdline credential config passes to submodule via clone' '
14111fc4 JK	105	set_askpass wrong pass@host &&
	106	test_must_fail git clone --recursive super super-clone &&
	107	rm -rf super-clone &&
455d22c1	108
14111fc4	109	set_askpass wrong pass@host &&
1149ee21	110	git -c "credential.$HTTPD_URL.username=user@host" \
14111fc4	111	clone --recursive super super-clone &&
c12e8656 JK	112	expect_askpass pass user@host
	113	'
	114
	115	test_expect_success 'cmdline credential config passes submodule via fetch' '
	116	set_askpass wrong pass@host &&
	117	test_must_fail git -C super-clone fetch --recurse-submodules &&
	118
	119	set_askpass wrong pass@host &&
	120	git -C super-clone \
	121	-c "credential.$HTTPD_URL.username=user@host" \
	122	fetch --recurse-submodules &&
14111fc4 JK	123	expect_askpass pass user@host
	124	'
	125
860cba61 JK	126	test_expect_success 'cmdline credential config passes submodule update' '
	127	# advance the submodule HEAD so that a fetch is required
	128	git commit --allow-empty -m foo &&
	129	git push "$HTTPD_DOCUMENT_ROOT_PATH/auth/dumb/repo.git" HEAD &&
	130	sha1=$(git rev-parse HEAD) &&
	131	git -C super-clone update-index --cacheinfo 160000,$sha1,sub &&
	132
	133	set_askpass wrong pass@host &&
	134	test_must_fail git -C super-clone submodule update &&
	135
	136	set_askpass wrong pass@host &&
	137	git -C super-clone \
	138	-c "credential.$HTTPD_URL.username=user@host" \
	139	submodule update &&
	140	expect_askpass pass user@host
	141	'
	142
119c8eee JK	143	test_expect_success 'fetch changes via http' '
	144	echo content >>file &&
	145	git commit -a -m two &&
2bcd9ec5	146	git push public &&
119c8eee JK	147	(cd clone && git pull) &&
	148	test_cmp file clone/file
	149	'
	150
6cfc0286 TRC	151	test_expect_success 'fetch changes via manual http-fetch' '
	152	cp -R clone-tmpl clone2 &&
	153
	154	HEAD=$(git rev-parse --verify HEAD) &&
	155	(cd clone2 &&
	156	git http-fetch -a -w heads/master-new $HEAD $(git config remote.origin.url) &&
	157	git checkout master-new &&
	158	test $HEAD = $(git rev-parse --verify HEAD)) &&
	159	test_cmp file clone2/file
	160	'
	161
fbb074c2 JK	162	test_expect_success 'http remote detects correct HEAD' '
	163	git push public master:other &&
	164	(cd clone &&
	165	git remote set-head origin -d &&
	166	git remote set-head origin -a &&
	167	git symbolic-ref refs/remotes/origin/HEAD > output &&
	168	echo refs/remotes/origin/master > expect &&
	169	test_cmp expect output
	170	)
	171	'
	172
96a4f187 TRC	173	test_expect_success 'fetch packed objects' '
96a4f187 TRC	174	cp -R "$HTTPD_DOCUMENT_ROOT_PATH"/repo.git "$HTTPD_DOCUMENT_ROOT_PATH"/repo_pack.git &&
d761b2ac	175	(cd "$HTTPD_DOCUMENT_ROOT_PATH"/repo_pack.git &&
1327d839	176	git --bare repack -a -d
d761b2ac	177	) &&
024bb125	178	git clone $HTTPD_URL/dumb/repo_pack.git
96a4f187 TRC	179	'
96a4f187 TRC	180
fe72d420 SP	181	test_expect_success 'fetch notices corrupt pack' '
	182	cp -R "$HTTPD_DOCUMENT_ROOT_PATH"/repo_pack.git "$HTTPD_DOCUMENT_ROOT_PATH"/repo_bad1.git &&
	183	(cd "$HTTPD_DOCUMENT_ROOT_PATH"/repo_bad1.git &&
bacb1c01	184	p=$(ls objects/pack/pack-*.pack) &&
fe72d420 SP	185	chmod u+w $p &&
	186	printf %0256d 0 \| dd of=$p bs=256 count=1 seek=1 conv=notrunc
	187	) &&
	188	mkdir repo_bad1.git &&
	189	(cd repo_bad1.git &&
	190	git --bare init &&
	191	test_must_fail git --bare fetch $HTTPD_URL/dumb/repo_bad1.git &&
bacb1c01	192	test 0 = $(ls objects/pack/pack-*.pack \| wc -l)
fe72d420 SP	193	)
	194	'
	195
750ef425 SP	196	test_expect_success 'fetch notices corrupt idx' '
	197	cp -R "$HTTPD_DOCUMENT_ROOT_PATH"/repo_pack.git "$HTTPD_DOCUMENT_ROOT_PATH"/repo_bad2.git &&
	198	(cd "$HTTPD_DOCUMENT_ROOT_PATH"/repo_bad2.git &&
bacb1c01	199	p=$(ls objects/pack/pack-*.idx) &&
750ef425 SP	200	chmod u+w $p &&
	201	printf %0256d 0 \| dd of=$p bs=256 count=1 seek=1 conv=notrunc
	202	) &&
	203	mkdir repo_bad2.git &&
	204	(cd repo_bad2.git &&
	205	git --bare init &&
	206	test_must_fail git --bare fetch $HTTPD_URL/dumb/repo_bad2.git &&
bacb1c01	207	test 0 = $(ls objects/pack \| wc -l)
750ef425 SP	208	)
	209	'
	210
8b9c2dd4 JK	211	test_expect_success 'fetch can handle previously-fetched .idx files' '
	212	git checkout --orphan branch1 &&
	213	echo base >file &&
	214	git add file &&
	215	git commit -m base &&
	216	git --bare init "$HTTPD_DOCUMENT_ROOT_PATH"/repo_packed_branches.git &&
	217	git push "$HTTPD_DOCUMENT_ROOT_PATH"/repo_packed_branches.git branch1 &&
	218	git --git-dir="$HTTPD_DOCUMENT_ROOT_PATH"/repo_packed_branches.git repack -d &&
	219	git checkout -b branch2 branch1 &&
	220	echo b2 >>file &&
	221	git commit -a -m b2 &&
	222	git push "$HTTPD_DOCUMENT_ROOT_PATH"/repo_packed_branches.git branch2 &&
	223	git --git-dir="$HTTPD_DOCUMENT_ROOT_PATH"/repo_packed_branches.git repack -d &&
	224	git --bare init clone_packed_branches.git &&
	225	git --git-dir=clone_packed_branches.git fetch "$HTTPD_URL"/dumb/repo_packed_branches.git branch1:branch1 &&
	226	git --git-dir=clone_packed_branches.git fetch "$HTTPD_URL"/dumb/repo_packed_branches.git branch2:branch2
	227	'
	228
7da4e228	229	test_expect_success 'did not use upload-pack service' '
35da1bf5 JK	230	test_might_fail grep '/git-upload-pack' <"$HTTPD_ROOT_PATH"/access.log >act &&
35da1bf5 JK	231	: >exp &&
7da4e228 SP	232	test_cmp exp act
	233	'
	234
dbcf2bd3 JK	235	test_expect_success 'git client shows text/plain errors' '
	236	test_must_fail git clone "$HTTPD_URL/error/text" 2>stderr &&
	237	grep "this is the error message" stderr
	238	'
	239
	240	test_expect_success 'git client does not show html errors' '
	241	test_must_fail git clone "$HTTPD_URL/error/html" 2>stderr &&
	242	! grep "this is the error message" stderr
	243	'
	244
bf197fd7 JK	245	test_expect_success 'git client shows text/plain with a charset' '
	246	test_must_fail git clone "$HTTPD_URL/error/charset" 2>stderr &&
	247	grep "this is the error message" stderr
	248	'
	249
fc1b774c JK	250	test_expect_success 'http error messages are reencoded' '
	251	test_must_fail git clone "$HTTPD_URL/error/utf16" 2>stderr &&
	252	grep "this is the error message" stderr
	253	'
	254
f34a655d YE	255	test_expect_success 'reencoding is robust to whitespace oddities' '
	256	test_must_fail git clone "$HTTPD_URL/error/odd-spacing" 2>stderr &&
	257	grep "this is the error message" stderr
	258	'
	259
f18604bb YE	260	check_language () {
	261	case "$2" in
	262	'')
	263	>expect
	264	;;
	265	?*)
81590bf7	266	echo "=> Send header: Accept-Language: $1" >expect
f18604bb YE	267	;;
f18604bb YE	268	esac &&
81590bf7	269	GIT_TRACE_CURL=true \
f18604bb YE	270	LANGUAGE=$2 \
	271	git ls-remote "$HTTPD_URL/dumb/repo.git" >output 2>&1 &&
	272	tr -d '\015' <output \|
	273	sort -u \|
81590bf7	274	sed -ne '/^=> Send header: Accept-Language:/ p' >actual &&
f18604bb YE	275	test_cmp expect actual
	276	}
	277
	278	test_expect_success 'git client sends Accept-Language based on LANGUAGE' '
	279	check_language "ko-KR, *;q=0.9" ko_KR.UTF-8'
	280
	281	test_expect_success 'git client sends Accept-Language correctly with unordinary LANGUAGE' '
	282	check_language "ko-KR, *;q=0.9" "ko_KR:" &&
	283	check_language "ko-KR, en-US;q=0.9, *;q=0.8" "ko_KR::en_US" &&
	284	check_language "ko-KR, *;q=0.9" ":::ko_KR" &&
	285	check_language "ko-KR, en-US;q=0.9, *;q=0.8" "ko_KR!!:en_US" &&
	286	check_language "ko-KR, ja-JP;q=0.9, *;q=0.8" "ko_KR en_US:ja_JP"'
	287
	288	test_expect_success 'git client sends Accept-Language with many preferred languages' '
	289	check_language "ko-KR, en-US;q=0.9, fr-CA;q=0.8, de;q=0.7, sr;q=0.6, \
	290	ja;q=0.5, zh;q=0.4, sv;q=0.3, pt;q=0.2, *;q=0.1" \
	291	ko_KR.EUC-KR:en_US.UTF-8:fr_CA:de.UTF-8@euro:sr@latin:ja:zh:sv:pt &&
	292	check_language "ko-KR, en-US;q=0.99, fr-CA;q=0.98, de;q=0.97, sr;q=0.96, \
	293	ja;q=0.95, zh;q=0.94, sv;q=0.93, pt;q=0.92, nb;q=0.91, *;q=0.90" \
	294	ko_KR.EUC-KR:en_US.UTF-8:fr_CA:de.UTF-8@euro:sr@latin:ja:zh:sv:pt:nb
	295	'
	296
	297	test_expect_success 'git client does not send an empty Accept-Language' '
81590bf7 EP	298	GIT_TRACE_CURL=true LANGUAGE= git ls-remote "$HTTPD_URL/dumb/repo.git" 2>stderr &&
81590bf7 EP	299	! grep "^=> Send header: Accept-Language:" stderr
f18604bb YE	300	'
f18604bb YE	301
d63ed6ef JK	302	test_expect_success 'remote-http complains cleanly about malformed urls' '
	303	# do not actually issue "list" or other commands, as we do not
	304	# want to rely on what curl would actually do with such a broken
	305	# URL. This is just about making sure we do not segfault during
	306	# initialization.
	307	test_must_fail git remote-http http::/example.com/repo.git
	308	'
	309
50d34137 JK	310	test_expect_success 'redirects can be forbidden/allowed' '
	311	test_must_fail git -c http.followRedirects=false \
	312	clone $HTTPD_URL/dumb-redir/repo.git dumb-redir &&
	313	git -c http.followRedirects=true \
	314	clone $HTTPD_URL/dumb-redir/repo.git dumb-redir 2>stderr
	315	'
	316
	317	test_expect_success 'redirects are reported to stderr' '
	318	# just look for a snippet of the redirected-to URL
	319	test_i18ngrep /dumb/ stderr
	320	'
	321
	322	test_expect_success 'non-initial redirects can be forbidden' '
	323	test_must_fail git -c http.followRedirects=initial \
	324	clone $HTTPD_URL/redir-objects/repo.git redir-objects &&
	325	git -c http.followRedirects=true \
	326	clone $HTTPD_URL/redir-objects/repo.git redir-objects
	327	'
	328
	329	test_expect_success 'http.followRedirects defaults to "initial"' '
	330	test_must_fail git clone $HTTPD_URL/redir-objects/repo.git default
	331	'
	332
cb4d2d35 JK	333	# The goal is for a clone of the "evil" repository, which has no objects
	334	# itself, to cause the client to fetch objects from the "victim" repository.
	335	test_expect_success 'set up evil alternates scheme' '
	336	victim=$HTTPD_DOCUMENT_ROOT_PATH/victim.git &&
	337	git init --bare "$victim" &&
	338	git -C "$victim" --work-tree=. commit --allow-empty -m secret &&
	339	git -C "$victim" repack -ad &&
	340	git -C "$victim" update-server-info &&
	341	sha1=$(git -C "$victim" rev-parse HEAD) &&
	342
	343	evil=$HTTPD_DOCUMENT_ROOT_PATH/evil.git &&
	344	git init --bare "$evil" &&
	345	# do this by hand to avoid object existence check
	346	printf "%s\\t%s\\n" $sha1 refs/heads/master >"$evil/info/refs"
	347	'
	348
	349	# Here we'll just redirect via HTTP. In a real-world attack these would be on
	350	# different servers, but we should reject it either way.
	351	test_expect_success 'http-alternates is a non-initial redirect' '
	352	echo "$HTTPD_URL/dumb/victim.git/objects" \
	353	>"$evil/objects/info/http-alternates" &&
	354	test_must_fail git -c http.followRedirects=initial \
	355	clone $HTTPD_URL/dumb/evil.git evil-initial &&
	356	git -c http.followRedirects=true \
	357	clone $HTTPD_URL/dumb/evil.git evil-initial
	358	'
	359
	360	# Curl supports a lot of protocols that we'd prefer not to allow
	361	# http-alternates to use, but it's hard to test whether curl has
	362	# accessed, say, the SMTP protocol, because we are not running an SMTP server.
	363	# But we can check that it does not allow access to file://, which would
	364	# otherwise allow this clone to complete.
	365	test_expect_success 'http-alternates cannot point at funny protocols' '
	366	echo "file://$victim/objects" >"$evil/objects/info/http-alternates" &&
	367	test_must_fail git -c http.followRedirects=true \
	368	clone "$HTTPD_URL/dumb/evil.git" evil-file
	369	'
	370
abcbdc03 JK	371	test_expect_success 'http-alternates triggers not-from-user protocol check' '
	372	echo "$HTTPD_URL/dumb/victim.git/objects" \
	373	>"$evil/objects/info/http-alternates" &&
	374	test_config_global http.followRedirects true &&
	375	test_must_fail git -c protocol.http.allow=user \
	376	clone $HTTPD_URL/dumb/evil.git evil-user &&
	377	git -c protocol.http.allow=always \
	378	clone $HTTPD_URL/dumb/evil.git evil-user
	379	'
	380
8e27391a JT	381	test_expect_success 'can redirect through non-"info/refs?service=git-upload-pack" URL' '
	382	git clone "$HTTPD_URL/redir-to/dumb/repo.git"
	383	'
	384
	385	test_expect_success 'print HTTP error when any intermediate redirect throws error' '
	386	test_must_fail git clone "$HTTPD_URL/redir-to/502" 2> stderr &&
	387	test_i18ngrep "unable to access.*/redir-to/502" stderr
	388	'
	389
119c8eee JK	390	stop_httpd
119c8eee JK	391	test_done