+ distro: ${{ matrix.os }}

+ cc: gcc-13

+ distro: ${{matrix.vector.pool}}

+ distro: alpine-latest

+ distro: ubuntu32-16.04

+ distro: fedora-latest

+ distro: ${{matrix.vector.distro}}

+ - run: ci/install-dependencies.sh

+ variables:

+ CUSTOM_PATH: "/custom"

+ - ./ci/install-dependencies.sh

+test:fuzz-smoke-tests:

+ image: ubuntu:latest

+ variables:

+ CC: clang

+ before_script:

+ - ./ci/install-dependencies.sh

+ script:

+ - ./ci/run-build-and-minimal-fuzzers.sh

+

+ - ./ci/install-dependencies.sh

+:contrib-scripts: footnoteref:[contrib-scripts,Scripts under `contrib/` are +

+not part of the core `git` binary and must be called directly. Clone the Git +

+codebase and run `perl contrib/contacts/git-contacts`.]

+

+NOTE: If you're not sure whom to CC, running `contrib/contacts/git-contacts` can

+list potential reviewers. In addition, you can do `git send-email

+--cc-cmd='perl contrib/contacts/git-contacts' feature/*.patch`{contrib-scripts} to

+automatically pass this list of emails to `send-email`.

+

+Git v2.39.4 Release Notes

+=========================

+

+This addresses the security issues CVE-2024-32002, CVE-2024-32004,

+CVE-2024-32020 and CVE-2024-32021.

+

+This release also backports fixes necessary to let the CI builds pass

+successfully.

+

+Fixes since v2.39.3

+-------------------

+

+ * CVE-2024-32002:

+

+ Recursive clones on case-insensitive filesystems that support symbolic

+ links are susceptible to case confusion that can be exploited to

+ execute just-cloned code during the clone operation.

+

+ * CVE-2024-32004:

+

+ Repositories can be configured to execute arbitrary code during local

+ clones. To address this, the ownership checks introduced in v2.30.3

+ are now extended to cover cloning local repositories.

+

+ * CVE-2024-32020:

+

+ Local clones may end up hardlinking files into the target repository's

+ object database when source and target repository reside on the same

+ disk. If the source repository is owned by a different user, then

+ those hardlinked files may be rewritten at any point in time by the

+ untrusted user.

+

+ * CVE-2024-32021:

+

+ When cloning a local source repository that contains symlinks via the

+ filesystem, Git may create hardlinks to arbitrary user-readable files

+ on the same filesystem as the target repository in the objects/

+ directory.

+

+ * CVE-2024-32465:

+

+ It is supposed to be safe to clone untrusted repositories, even those

+ unpacked from zip archives or tarballs originating from untrusted

+ sources, but Git can be tricked to run arbitrary code as part of the

+ clone.

+

+ * Defense-in-depth: submodule: require the submodule path to contain

+ directories only.

+

+ * Defense-in-depth: clone: when symbolic links collide with directories, keep

+ the latter.

+

+ * Defense-in-depth: clone: prevent hooks from running during a clone.

+

+ * Defense-in-depth: core.hooksPath: add some protection while cloning.

+

+ * Defense-in-depth: fsck: warn about symlink pointing inside a gitdir.

+

+ * Various fix-ups on HTTP tests.

+

+ * Test update.

+

+ * HTTP Header redaction code has been adjusted for a newer version of

+ cURL library that shows its traces differently from earlier

+ versions.

+

+ * Fix was added to work around a regression in libcURL 8.7.0 (which has

+ already been fixed in their tip of the tree).

+

+ * Replace macos-12 used at GitHub CI with macos-13.

+

+ * ci(linux-asan/linux-ubsan): let's save some time

+

+ * Tests with LSan from time to time seem to emit harmless message that makes

+ our tests unnecessarily flakey; we work it around by filtering the

+ uninteresting output.

+

+ * Update GitHub Actions jobs to avoid warnings against using deprecated

+ version of Node.js.

+Git v2.40.2 Release Notes

+=========================

+

+This release merges up the fix that appears in v2.39.4 to address

+the security issues CVE-2024-32002, CVE-2024-32004, CVE-2024-32020,

+CVE-2024-32021 and CVE-2024-32465; see the release notes for that

+version for details.

+Git v2.41.1 Release Notes

+=========================

+

+This release merges up the fix that appears in v2.39.4 and v2.40.2

+to address the security issues CVE-2024-32002, CVE-2024-32004,

+CVE-2024-32020, CVE-2024-32021 and CVE-2024-32465; see the release

+notes for these versions for details.

+Git v2.42.2 Release Notes

+=========================

+

+This release merges up the fix that appears in v2.39.4, v2.40.2

+and v2.41.1 to address the security issues CVE-2024-32002,

+CVE-2024-32004, CVE-2024-32020, CVE-2024-32021 and CVE-2024-32465;

+see the release notes for these versions for details.

+Git v2.43.4 Release Notes

+=========================

+

+This release merges up the fix that appears in v2.39.4, v2.40.2,

+v2.41.1 and v2.42.2 to address the security issues CVE-2024-32002,

+CVE-2024-32004, CVE-2024-32020, CVE-2024-32021 and CVE-2024-32465;

+see the release notes for these versions for details.

+Git v2.44.1 Release Notes

+=========================

+

+This release merges up the fix that appears in v2.39.4, v2.40.2,

+v2.41.1, v2.42.2 and v2.43.4 to address the security issues

+CVE-2024-32002, CVE-2024-32004, CVE-2024-32020, CVE-2024-32021

+and CVE-2024-32465; see the release notes for these versions

+for details.

+Git v2.45.1 Release Notes

+=========================

+

+This release merges up the fix that appears in v2.39.4,

+v2.40.2, v2.41.1, v2.42.2, v2.43.4 and v2.44.1 to address the

+security issues CVE-2024-32002, CVE-2024-32004, CVE-2024-32020,

+CVE-2024-32021 and CVE-2024-32465; see the release notes for

+these versions for details.

+Git v2.46 Release Notes

+=======================

+

+Backward Compatibility Notes

+

+ (None at this moment)

+

+UI, Workflows & Features

+

+ * The "--rfc" option of "git format-patch" learned to take an

+ optional string value to be used in place of "RFC" to tweak the

+ "[PATCH]" on the subject header.

+

+ * The credential helper protocol, together with the HTTP layer, have

+ been enhanced to support authentication schemes different from

+ username & password pair, like Bearer and NTLM.

+

+ * Command line completion script (in contrib/) learned to complete

+ "git symbolic-ref" a bit better (you need to enable plumbing

+ commands to be completed with GIT_COMPLETION_SHOW_ALL_COMMANDS).

+

+ * When the user responds to a prompt given by "git add -p" with an

+ unsupported command, list of available commands were given, which

+ was too much if the user knew what they wanted to type but merely

+ made a typo. Now the user gets a much shorter error message.

+

+ * The color parsing code learned to handle 12-bit RGB colors, spelled

+ as "#RGB" (in addition to "#RRGGBB" that is already supported).

+

+

+Performance, Internal Implementation, Development Support etc.

+

+ * Advertise "git contacts", a tool for newcomers to find people to

+ ask review for their patches, a bit more in our developer

+ documentation.

+

+ * In addition to building the objects needed, try to link the objects

+ that are used in fuzzer tests, to make sure at least they build

+ without bitrot, in Linux CI runs.

+

+ * Code to write out reftable has seen some optimization and

+ simplification.

+

+ * Tests to ensure interoperability between reftable written by jgit

+ and our code have been added and enabled in CI.

+

+ * The singleton index_state instance "the_index" has been eliminated

+ by always instantiating "the_repository" and replacing references

+ to "the_index" with references to its .index member.

+

+

+ * Git-GUI has a new maintainer, Johannes Sixt.

+ (merge e18ad8eb26 jc/git-gui-maintainer-update later to maint).

+

+

+Fixes since v2.45

+-----------------

+

+ * "git rebase --signoff" used to forget that it needs to add a

+ sign-off to the resulting commit when told to continue after a

+ conflict stops its operation.

+ (merge a6c2654f83 pw/rebase-m-signoff-fix later to maint).

+

+ * The procedure to build multi-pack-index got confused by the

+ replace-refs mechanism, which has been corrected by disabling the

+ latter.

+ (merge 93e2ae1c95 xx/disable-replace-when-building-midx later to maint).

+

+ * The "-k" and "--rfc" options of "format-patch" will now error out

+ when used together, as one tells us not to add anything to the

+ title of the commit, and the other one tells us to add "RFC" in

+ addition to "PATCH".

+ (merge cadcf58085 ds/format-patch-rfc-and-k later to maint).

+

+ * "git stash -S" did not handle binary files correctly, which has

+ been corrected.

+ (merge 5fb7686409 aj/stash-staged-fix later to maint).

+

+ * A scheduled "git maintenance" job is expected to work on all

+ repositories it knows about, but it stopped at the first one that

+ errored out. Now it keeps going.

+ (merge c75662bfc9 js/for-each-repo-keep-going later to maint).

+

+ * zsh can pretend to be a normal shell pretty well except for some

+ glitches that we tickle in some of our scripts. Work them around

+ so that "vimdiff" and our test suite works well enough with it.

+ (merge fedd5c79ff bc/zsh-compatibility later to maint).

+

+ * Command line completion support for zsh (in contrib/) has been

+ updated to stop exposing internal state to end-user shell

+ interaction.

+ (merge 3c20acdf46 dk/zsh-git-repo-path-fix later to maint).

+

+ * Tests that try to corrupt in-repository files in chunked format did

+ not work well on macOS due to its broken "mv", which has been

+ worked around.

+ (merge 861dc19ba8 jc/test-workaround-broken-mv later to maint).

+

+ * The maximum size of attribute files is enforced more consistently.

+ (merge c793f9cb08 tb/attr-limits later to maint).

+

+ * Unbreak CI jobs so that we do not attempt to use Python 2 that has

+ been removed from the platform.

+ (merge 5ca0c455f1 ps/ci-python-2-deprecation later to maint).

+

+ * Git 2.43 started using the tree of HEAD as the source of attributes

+ in a bare repository, which has severe performance implications.

+ For now, revert the change, without ripping out a more explicit

+ support for the attr.tree configuration variable.

+ (merge 51441e6460 jc/no-default-attr-tree-in-bare later to maint).

+

+ * Other code cleanup, docfix, build fix, etc.

+ (merge 4cf6e7bf5e jt/doc-submitting-rerolled-series later to maint).

+ (merge a5a4cb7b27 rs/diff-parseopts-cleanup later to maint).

+ (merge 395c130fd8 ma/win32-unix-domain-socket later to maint).

+ (merge 7df2405b38 jk/ci-macos-gcc13-fix later to maint).

+ (merge 55702c543e fa/p4-error later to maint).

+==== Choosing your reviewers

+

+NOTE: Patches that may be

+:contrib-scripts: footnoteref:[contrib-scripts,Scripts under `contrib/` are +

+not part of the core `git` binary and must be called directly. Clone the Git +

+codebase and run `perl contrib/contacts/git-contacts`.]

+

+Send your patch with "To:" set to the mailing list, with "cc:" listing

+people who are involved in the area you are touching (the `git-contacts`

+script in `contrib/contacts/`{contrib-scripts} can help to

+identify them), to solicit comments and reviews. Also, when you made

+trial merges of your topic to `next` and `seen`, you may have noticed

+work by others conflicting with your changes. There is a good possibility

+that these people may know the area you are touching well.

+

+If you are using `send-email`, you can feed it the output of `git-contacts` like

+this:

+

+....

+ git send-email --cc-cmd='perl contrib/contacts/git-contacts' feature/*.patch

+....

+

+:current-maintainer: footnote:[The current maintainer: gitster@pobox.com]

+:git-ml: footnote:[The mailing list: git@vger.kernel.org]

+

+After the list reached a consensus that it is a good idea to apply the

+patch, re-send it with "To:" set to the maintainer{current-maintainer}

+and "cc:" the list{git-ml} for inclusion. This is especially relevant

+when the maintainer did not heavily participate in the discussion and

+instead left the review to trusted others.

+

+Do not forget to add trailers such as `Acked-by:`, `Reviewed-by:` and

+`Tested-by:` lines as necessary to credit people who helped your

+patch, and "cc:" them when sending such a final version for inclusion.

+

+==== `format-patch` and `send-email`

+

+Learn to use `format-patch` and `send-email` if possible. These commands

+NOTE: Here we outline the procedure using `format-patch` and

+`send-email`, but you can instead use GitGitGadget to send in your

+patches (see link:MyFirstContribution.html[MyFirstContribution]).

+

+All subsequent versions of a patch series and other related patches should be

+grouped into their own e-mail thread to help readers find all parts of the

+series. To that end, send them as replies to either an additional "cover

+letter" message (see below), the first patch, or the respective preceding patch.

+Here is a link:MyFirstContribution.html#v2-git-send-email[step-by-step guide] on

+how to submit updated versions of a patch series.

+- `git-gui/` comes from git-gui project, maintained by Johannes Sixt:

+ https://github.com/j6t/git-gui

+hex, like `#ff0ab3`, or 12-bit RGB values like `#f1b`, which is

+equivalent to the 24-bit color `#ff11bb`.

+`symlinkPointsToGitDir`::

+ (WARN) Symbolic link points inside a gitdir.

+

+`symlinkTargetBlob`::

+ (ERROR) A non-blob found instead of a symbolic link's target.

+

+`symlinkTargetLength`::

+ (WARN) Symbolic link target longer than maximum path length.

+

+`symlinkTargetMissing`::

+ (ERROR) Unable to read symbolic link target's blob.

+

+'git credential' (fill|approve|reject|capability)

+If the action is `capability`, git-credential will announce any capabilities

+it supports to standard output.

+

+contain any bytes except newline or NUL. A line, including the trailing

+newline, may not exceed 65535 bytes in order to allow implementations to

+parse efficiently.

+`authtype`::

+ This indicates that the authentication scheme in question should be used.

+ Common values for HTTP and HTTPS include `basic`, `bearer`, and `digest`,

+ although the latter is insecure and should not be used. If `credential`

+ is used, this may be set to an arbitrary string suitable for the protocol in

+ question (usually HTTP).

++

+This value should not be sent unless the appropriate capability (see below) is

+provided on input.

+

+`credential`::

+ The pre-encoded credential, suitable for the protocol in question (usually

+ HTTP). If this key is sent, `authtype` is mandatory, and `username` and

+ `password` are not used. For HTTP, Git concatenates the `authtype` value and

+ this value with a single space to determine the `Authorization` header.

++

+This value should not be sent unless the appropriate capability (see below) is

+provided on input.

+

+`ephemeral`::

+ This boolean value indicates, if true, that the value in the `credential`

+ field should not be saved by the credential helper because its usefulness is

+ limited in time. For example, an HTTP Digest `credential` value is computed

+ using a nonce and reusing it will not result in successful authentication.

+ This may also be used for situations with short duration (e.g., 24-hour)

+ credentials. The default value is false.

++

+The credential helper will still be invoked with `store` or `erase` so that it

+can determine whether the operation was successful.

++

+This value should not be sent unless the appropriate capability (see below) is

+provided on input.

+

+`state[]`::

+ This value provides an opaque state that will be passed back to this helper

+ if it is called again. Each different credential helper may specify this

+ once. The value should include a prefix unique to the credential helper and

+ should ignore values that don't match its prefix.

++

+This value should not be sent unless the appropriate capability (see below) is

+provided on input.

+

+`continue`::

+ This is a boolean value, which, if enabled, indicates that this

+ authentication is a non-final part of a multistage authentication step. This

+ is common in protocols such as NTLM and Kerberos, where two rounds of client

+ authentication are required, and setting this flag allows the credential

+ helper to implement the multistage authentication step. This flag should

+ only be sent if a further stage is required; that is, if another round of

+ authentication is expected.

++

+This value should not be sent unless the appropriate capability (see below) is

+provided on input. This attribute is 'one-way' from a credential helper to

+pass information to Git (or other programs invoking `git credential`).

+

+`capability[]`::

+ This signals that Git, or the helper, as appropriate, supports the capability

+ in question. This can be used to provide better, more specific data as part

+ of the protocol. A `capability[]` directive must precede any value depending

+ on it and these directives _should_ be the first item announced in the

+ protocol.

++

+There are two currently supported capabilities. The first is `authtype`, which

+indicates that the `authtype`, `credential`, and `ephemeral` values are

+understood. The second is `state`, which indicates that the `state[]` and

+`continue` values are understood.

++

+It is not obligatory to use the additional features just because the capability

+is supported, but they should not be provided without the capability.

+

+Unrecognised attributes and capabilities are silently discarded.

+

+[[CAPA-IOFMT]]

+CAPABILITY INPUT/OUTPUT FORMAT

+------------------------------

+

+For `git credential capability`, the format is slightly different. First, a

+`version 0` announcement is made to indicate the current version of the

+protocol, and then each capability is announced with a line like `capability

+authtype`. Credential helpers may also implement this format, again with the

+`capability` argument. Additional lines may be added in the future; callers

+should ignore lines which they don't understand.

+

+Because this is a new part of the credential helper protocol, older versions of

+Git, as well as some credential helpers, may not support it. If a non-zero

+exit status is received, or if the first line doesn't start with the word

+`version` and a space, callers should assume that no capabilities are supported.

+

+The intention of this format is to differentiate it from the credential output

+in an unambiguous way. It is possible to use very simple credential helpers

+(e.g., inline shell scripts) which always produce identical output. Using a

+distinct format allows users to continue to use this syntax without having to

+worry about correctly implementing capability advertisements or accidentally

+confusing callers querying for capabilities.

+--keep-going::

+ Continue with the remaining repositories if the command failed

+ on a repository. The exit code will still indicate that the

+ overall operation was not successful.

++

+Note that the exact exit code of the failing command is not passed

+through as the exit code of the `for-each-repo` command: If the command

+failed in any of the specified repositories, the overall exit code will

+be 1.

+ [--rfc[=<rfc>]] [--subject-prefix=<subject-prefix>]

+--rfc[=<rfc>]::

+ Prepends the string _<rfc>_ (defaults to "RFC") to

+ the subject prefix. As the subject prefix defaults to

+ "PATCH", you'll get "RFC PATCH" by default.

++

+RFC means "Request For Comments"; use this when sending

+an experimental patch for discussion rather than application.

+"--rfc=WIP" may also be a useful way to indicate that a patch

+is not complete yet ("WIP" stands for "Work In Progress").

++

+If the convention of the receiving community for a particular extra

+string is to have it _after_ the subject prefix, the string _<rfc>_

+can be prefixed with a dash ("`-`") to signal that the the rest of

+the _<rfc>_ string should be appended to the subject prefix instead,

+e.g., `--rfc='-(WIP)'` results in "PATCH (WIP)".

+ https://github.com/j6t/git-gui

+`GIT_NO_LAZY_FETCH`::

+ When cloning or fetching from a partial repository (i.e., one

+ itself cloned with `--filter`), the server-side `upload-pack`

+ may need to fetch extra objects from its upstream in order to

+ complete the request. By default, `upload-pack` will refuse to

+ perform such a lazy fetch, because `git fetch` may run arbitrary

+ commands specified in configuration and hooks of the source

+ repository (and `upload-pack` tries to be safe to run even in

+ untrusted `.git` directories).

++

+This is implemented by having `upload-pack` internally set the

+`GIT_NO_LAZY_FETCH` variable to `1`. If you want to override it

+(because you are fetching from a partial clone, and you are sure

+you trust it), you can explicitly set `GIT_NO_LAZY_FETCH` to

+`0`.

+

+SECURITY

+--------

+

+Most Git commands should not be run in an untrusted `.git` directory

+(see the section `SECURITY` in linkgit:git[1]). `upload-pack` tries to

+avoid any dangerous configuration options or hooks from the repository

+it's serving, making it safe to clone an untrusted directory and run

+commands on the resulting clone.

+

+For an extra level of safety, you may be able to run `upload-pack` as an

+alternate user. The details will be platform dependent, but on many

+systems you can run:

+

+ git clone --no-local --upload-pack='sudo -u nobody git-upload-pack' ...

+

+SECURITY

+--------

+

+Some configuration options and hook files may cause Git to run arbitrary

+shell commands. Because configuration and hooks are not copied using

+`git clone`, it is generally safe to clone remote repositories with

+untrusted content, inspect them with `git log`, and so on.

+

+However, it is not safe to run Git commands in a `.git` directory (or

+the working tree that surrounds it) when that `.git` directory itself

+comes from an untrusted source. The commands in its config and hooks

+are executed in the usual way.

+

+By default, Git will refuse to run when the repository is owned by

+someone other than the user running the command. See the entry for

+`safe.directory` in linkgit:git-config[1]. While this can help protect

+you in a multi-user environment, note that you can also acquire

+untrusted repositories that are owned by you (for example, if you

+extract a zip file or tarball from an untrusted source). In such cases,

+you'd need to "sanitize" the untrusted repository first.

+

+If you have an untrusted `.git` directory, you should first clone it

+with `git clone --no-local` to obtain a clean copy. Git does restrict

+the set of options and hooks that will be run by `upload-pack`, which

+handles the server side of a clone or fetch, but beware that the

+surface area for attack against `upload-pack` is large, so this does

+carry some risk. The safest thing is to serve the repository as an

+unprivileged user (either via linkgit:git-daemon[1], ssh, or using

+other tools to change user ids). See the discussion in the `SECURITY`

+section of linkgit:git-upload-pack[1].

+

+DEF_VER=v2.45.GIT

+# Define LINK_FUZZ_PROGRAMS if you want `make all` to also build the fuzz test

+# programs in oss-fuzz/.

+#

+TEST_BUILTINS_OBJS += test-example-tap.o

+# If you add a new fuzzer, please also make sure to run it in

+# ci/run-build-and-minimal-fuzzers.sh so that we make sure it still links and

+# runs in the future.

+FUZZ_OBJS += oss-fuzz/dummy-cmd-main.o

+FUZZ_OBJS += oss-fuzz/fuzz-commit-graph.o

+FUZZ_OBJS += oss-fuzz/fuzz-config.o

+FUZZ_OBJS += oss-fuzz/fuzz-date.o

+FUZZ_OBJS += oss-fuzz/fuzz-pack-headers.o

+FUZZ_OBJS += oss-fuzz/fuzz-pack-idx.o

+.PHONY: fuzz-objs

+fuzz-objs: $(FUZZ_OBJS)

+

+# Always build fuzz objects even if not testing, to prevent bit-rot.

+all:: $(FUZZ_OBJS)

+

+FUZZ_PROGRAMS += $(patsubst %.o,%,$(filter-out %dummy-cmd-main.o,$(FUZZ_OBJS)))

+

+# Build fuzz programs when possible, even without the necessary fuzzing support,

+# to prevent bit-rot.

+ifdef LINK_FUZZ_PROGRAMS

+all:: $(FUZZ_PROGRAMS)

+endif

+

+t/helper/test-tool$X: $(patsubst %,t/helper/%,$(TEST_BUILTINS_OBJS)) $(UNIT_TEST_DIR)/test-lib.o

+# make CC=clang FUZZ_CXX=clang++ \

+FUZZ_CXX ?= $(CC)

+fuzz-all: $(FUZZ_PROGRAMS)

+ $(QUIET_LINK)$(FUZZ_CXX) $(FUZZ_CXXFLAGS) -o $@ $(ALL_LDFLAGS) \

+unit-tests: $(UNIT_TEST_PROGS) t/helper/test-tool$X

+Documentation/RelNotes/2.46.0.txt \ No newline at end of file

+ fputs(s->s.error_color, stdout);

+ vprintf(fmt, args);

+ puts(s->s.reset_color);

+ fwrite(diff->buf, diff->len, 1, stdout);

+ } else if (s->answer.buf[0] == '?') {

+ } else {

+ err(s, _("Unknown command '%s' (use '?' for help)"),

+ s->answer.buf);

+ err(&s, _("No changes."));

+ err(&s, _("Only binary files changed."));

+static struct attr_stack *read_attr_from_buf(char *buf, size_t length,

+ const char *path, unsigned flags)

+ if (length >= ATTR_MAX_FILE_SIZE) {

+ warning(_("ignoring overly large gitattributes blob '%s'"), path);

+ free(buf);

+ return NULL;

+ }

+ return read_attr_from_buf(buf, sz, path, flags);

+ stack = read_attr_from_buf(buf, size, path, flags);

+

+ for (i = 0; i < the_repository->index->cache_nr; i++) {

+ struct cache_entry *ce = the_repository->index->cache[i];

+ !path_in_sparse_checkout(ce->name, the_repository->index)))

+ if (pathspec && !ce_path_match(the_repository->index, ce, pathspec, NULL))

+ err = chmod_index_entry(the_repository->index, ce, flip);

+ for (i = 0; i < the_repository->index->cache_nr; i++) {

+ struct cache_entry *ce = the_repository->index->cache[i];

+ !path_in_sparse_checkout(ce->name, the_repository->index)))

+ if (pathspec && !ce_path_match(the_repository->index, ce, pathspec, NULL))

+ retval |= add_file_to_index(the_repository->index, ce->name,

+ if (dir_path_match(the_repository->index, entry, pathspec, prefix, seen))

+ add_pathspec_matches_against_index(pathspec, the_repository->index, seen,

+ refresh_index(the_repository->index, flags, pathspec, seen,

+ !path_in_sparse_checkout(path, the_repository->index)) {

+ !path_in_sparse_checkout(dir->entries[i]->name, the_repository->index)) {

+ if (add_file_to_index(the_repository->index, dir->entries[i]->name, flags)) {

+ die_in_unpopulated_submodule(the_repository->index, prefix);

+ die_path_inside_submodule(the_repository->index, &pathspec);

+ baselen = fill_directory(&dir, the_repository->index, &pathspec);

+ the_repository->index, PS_IGNORE_SKIP_WORKTREE);

+ if (is_excluded(&dir, the_repository->index, path, &dtype))

+ dir_add_ignored(&dir, the_repository->index,

+ if (write_locked_index(the_repository->index, &lock_file,

+

+ discard_index(the_repository->index);

+ read_index_from(the_repository->index, index_file, get_git_dir());

+ discard_index(the_repository->index);

+ read_index_from(the_repository->index, index_path, get_git_dir());

+ if (write_index_as_tree(&orig_tree, the_repository->index, index_path, 0, NULL))

+ if (write_index_as_tree(&their_tree, the_repository->index, index_path, 0, NULL))

+ discard_index(the_repository->index);

+ if (write_index_as_tree(&tree, the_repository->index, get_index_file(), 0, NULL))

+ if (unmerged_index(the_repository->index)) {

+ refresh_index(the_repository->index, REFRESH_QUIET, NULL, NULL, NULL);

+ opts.src_index = the_repository->index;

+ opts.dst_index = the_repository->index;

+ if (write_locked_index(the_repository->index, &lock_file, COMMIT_LOCK))

+ opts.src_index = the_repository->index;

+ opts.dst_index = the_repository->index;

+ if (write_locked_index(the_repository->index, &lock_file, COMMIT_LOCK))

+ if (write_index_as_tree(&index, the_repository->index, get_index_file(), 0, NULL))

+

+ if (convert_to_working_tree(the_repository->index, path, *buf, *size, &strbuf, &meta)) {

+ git_all_attrs(the_repository->index, full_path, check);

+ git_check_attr(the_repository->index, full_path, check);

+ die_path_inside_submodule(the_repository->index, &pathspec);

+ seen = find_pathspecs_matching_against_index(&pathspec, the_repository->index,

+ pattern = last_matching_pattern(dir, the_repository->index,

+

+ int pos = index_name_pos(the_repository->index, name, namelen);

+ while (pos <the_repository->index->cache_nr) {

+ struct cache_entry *ce =the_repository->index->cache[pos];

+ for (i = 0; i < the_repository->index->cache_nr ; i++) {

+ struct cache_entry *ce = the_repository->index->cache[i];

+ ensure_full_index(the_repository->index);

+ ce = the_repository->index->cache[i];

+ state.istate = the_repository->index;

+ state.istate = the_repository->index;

+ write_locked_index(the_repository->index, &lock_file, COMMIT_LOCK))

+ ce = make_empty_cache_entry(the_repository->index, len);

+ pos = index_name_pos(the_repository->index, ce->name, ce->ce_namelen);

+ struct cache_entry *old = the_repository->index->cache[pos];

+ add_index_entry(the_repository->index, ce,

+ while (++pos < the_repository->index->cache_nr &&

+ !strcmp(the_repository->index->cache[pos]->name, ce->name))

+ while (pos < the_repository->index->cache_nr &&

+ !strcmp(the_repository->index->cache[pos]->name, ce->name)) {

+ if (ce_stage(the_repository->index->cache[pos]) == stage)

+ while (pos < the_repository->index->cache_nr) {

+ ce = the_repository->index->cache[pos];

+ while (pos < the_repository->index->cache_nr &&

+ !strcmp(the_repository->index->cache[pos]->name, ce->name)) {

+ if (ce_stage(the_repository->index->cache[pos]) == stage)

+ return checkout_entry(the_repository->index->cache[pos], state,

+ struct cache_entry *ce = the_repository->index->cache[pos];

+ while (pos < the_repository->index->cache_nr) {

+ ce = the_repository->index->cache[pos];

+ if (ce_path_match(the_repository->index, ce, &opts->pathspec, ps_matched))

+ if (ce_path_match(the_repository->index, ce, &opts->pathspec, ps_matched)) {

+ state.istate = the_repository->index;

+ for (pos = 0; pos < the_repository->index->cache_nr; pos++) {

+ struct cache_entry *ce = the_repository->index->cache[pos];

+ remove_marked_cache_entries(the_repository->index, 1);

+ unmerge_index(the_repository->index, &opts->pathspec, CE_MATCHED);

+ for (pos = 0; pos < the_repository->index->cache_nr; pos++)

+ mark_ce_for_checkout_overlay(the_repository->index->cache[pos],

+ mark_ce_for_checkout_no_overlay(the_repository->index->cache[pos],

+ for (pos = 0; pos < the_repository->index->cache_nr; pos++) {

+ const struct cache_entry *ce = the_repository->index->cache[pos];

+ remove_marked_cache_entries(the_repository->index, 1);

+ if (write_locked_index(the_repository->index, &lock_file, COMMIT_LOCK))

+ opts.src_index = the_repository->index;

+ opts.dst_index = the_repository->index;

+ topts->src_index = the_repository->index;

+ topts->dst_index = the_repository->index;

+ topts->initial_checkout = is_index_unborn(the_repository->index);

+ resolve_undo_clear_index(the_repository->index);

+ refresh_index(the_repository->index, REFRESH_QUIET, NULL, NULL, NULL);

+ if (unmerged_index(the_repository->index)) {

+ if (!cache_tree_fully_valid(the_repository->index->cache_tree))

+ cache_tree_update(the_repository->index, WRITE_TREE_SILENT | WRITE_TREE_REPAIR);

+ if (write_locked_index(the_repository->index, &lock_file, COMMIT_LOCK))

+ if (is_excluded(&dir, the_repository->index, item->string, &dtype)) {

+ fill_directory(&dir, the_repository->index, &pathspec);

+ if (!index_name_is_other(the_repository->index, ent->name, ent->len))

+

+ /*

+ * Refuse copying directories by default which aren't owned by us. The

+ * code that performs either the copying or hardlinking is not prepared

+ * to handle various edge cases where an adversary may for example

+ * racily swap out files for symlinks. This can cause us to

+ * inadvertently use the wrong source file.

+ *

+ * Furthermore, even if we were prepared to handle such races safely,

+ * creating hardlinks across user boundaries is an inherently unsafe

+ * operation as the hardlinked files can be rewritten at will by the

+ * potentially-untrusted user. We thus refuse to do so by default.

+ */

+ die_upon_dubious_ownership(NULL, NULL, src_repo);

+ if (!link(src->buf, dest->buf)) {

+ struct stat st;

+

+ /*

+ * Sanity-check whether the created hardlink

+ * actually links to the expected file now. This

+ * catches time-of-check-time-of-use bugs in

+ * case the source file was meanwhile swapped.

+ */

+ if (lstat(dest->buf, &st))

+ die(_("hardlink cannot be checked at '%s'"), dest->buf);

+ if (st.st_mode != iter->st.st_mode ||

+ st.st_ino != iter->st.st_ino ||

+ st.st_dev != iter->st.st_dev ||

+ st.st_size != iter->st.st_size ||

+ st.st_uid != iter->st.st_uid ||

+ st.st_gid != iter->st.st_gid)

+ die(_("hardlink different from source at '%s'"), dest->buf);

+

+ }

+ opts.src_index = the_repository->index;

+ opts.dst_index = the_repository->index;

+ if (write_locked_index(the_repository->index, &lock_file, COMMIT_LOCK))

+ const char *template_dir;

+ char *template_dir_dup = NULL;

+ xsetenv("GIT_CLONE_PROTECTION_ACTIVE", "true", 0 /* allow user override */);

+ template_dir = get_template_dir(option_template);

+ if (*template_dir && !is_absolute_path(template_dir))

+ template_dir = template_dir_dup =

+ absolute_pathdup(template_dir);

+ xsetenv("GIT_CLONE_TEMPLATE_DIR", template_dir, 1);

+

+ init_db(git_dir, real_git_dir, template_dir, GIT_HASH_UNKNOWN,

+ free(template_dir_dup);

+ overlay_tree_on_index(the_repository->index, with_tree, max_prefix);

+ ensure_full_index(the_repository->index);

+ for (i = 0; i < the_repository->index->cache_nr; i++) {

+ const struct cache_entry *ce = the_repository->index->cache[i];

+ if (!ce_path_match(the_repository->index, ce, pattern, m))

+ if (add_to_index(the_repository->index, p->string, &st, 0))

+ remove_file_from_index(the_repository->index, p->string);

+ discard_index(the_repository->index);

+ opts.src_index = the_repository->index;

+ opts.dst_index = the_repository->index;

+ if (refresh_index(the_repository->index, refresh_flags | REFRESH_IN_PORCELAIN, NULL, NULL, NULL))

+ if (write_locked_index(the_repository->index, &index_lock, 0))

+ discard_index(the_repository->index);

+ read_index_from(the_repository->index, get_lock_file_path(&index_lock),

+ if (cache_tree_update(the_repository->index, WRITE_TREE_SILENT) == 0) {

+ if (write_locked_index(the_repository->index, &index_lock, 0))

+ cache_tree_update(the_repository->index, WRITE_TREE_SILENT);

+ if (write_locked_index(the_repository->index, &index_lock, 0))

+ if (the_repository->index->cache_changed

+ || !cache_tree_fully_valid(the_repository->index->cache_tree))

+ cache_tree_update(the_repository->index, WRITE_TREE_SILENT);

+ if (write_locked_index(the_repository->index, &index_lock,

+ discard_index(the_repository->index);

+ refresh_index(the_repository->index, REFRESH_QUIET, NULL, NULL, NULL);

+ cache_tree_update(the_repository->index, WRITE_TREE_SILENT);

+ if (write_locked_index(the_repository->index, &index_lock, 0))

+ refresh_index(the_repository->index, REFRESH_QUIET, NULL, NULL, NULL);

+ if (write_locked_index(the_repository->index, &false_lock, 0))

+ discard_index(the_repository->index);

+ read_index_from(the_repository->index, ret, get_git_dir());

+ if (!the_repository->index->initialized && repo_read_index(the_repository) < 0)

+ ensure_full_index(the_repository->index);

+ for (i = 0; i < the_repository->index->cache_nr; i++)

+ if (ce_intent_to_add(the_repository->index->cache[i]))

+ committable = the_repository->index->cache_nr - ita_nr > 0;

+ discard_index(the_repository->index);

+ read_index_from(the_repository->index, index_file, get_git_dir());

+ if (cache_tree_update(the_repository->index, 0)) {

+ refresh_index(the_repository->index,

+ if (commit_tree_extended(sb.buf, sb.len, &the_repository->index->cache_tree->oid,

+ credential_set_all_capabilities(c, CREDENTIAL_OP_INITIAL);

+

+ if (credential_read(c, fh, CREDENTIAL_OP_HELPER) < 0)

+ e->item.capa_authtype.request_initial = 1;

+ e->item.capa_authtype.request_helper = 1;

+

+ fprintf(out, "capability[]=authtype\n");

+ if (e->item.username)

+ fprintf(out, "username=%s\n", e->item.username);

+ if (e->item.password)

+ fprintf(out, "password=%s\n", e->item.password);

+ if (credential_has_capability(&c.capa_authtype, CREDENTIAL_OP_HELPER) && e->item.authtype)

+ fprintf(out, "authtype=%s\n", e->item.authtype);

+ if (credential_has_capability(&c.capa_authtype, CREDENTIAL_OP_HELPER) && e->item.credential)

+ fprintf(out, "credential=%s\n", e->item.credential);

+ else if ((!c.username || !c.password) && (!c.authtype && !c.credential))

+ else if (c.ephemeral)

+ warning("not storing ephemeral credential");

+#include "credential.h"

+static void announce_capabilities(void)

+{

+ struct credential c = CREDENTIAL_INIT;

+ c.capa_authtype.request_initial = 1;

+ credential_announce_capabilities(&c, stdout);

+}

+

+ else if (!strcmp(op, "capability"))

+ announce_capabilities();

+ if (credential_read(&c, stdin, CREDENTIAL_OP_HELPER) < 0)

+ if (!strcmp(op, "capability")) {

+ credential_set_all_capabilities(&c, CREDENTIAL_OP_INITIAL);

+ credential_announce_capabilities(&c, stdout);

+ return 0;

+ }

+

+ if (credential_read(&c, stdin, CREDENTIAL_OP_INITIAL) < 0)

+ credential_fill(&c, 0);

+ credential_next_state(&c);

+ credential_write(&c, stdout, CREDENTIAL_OP_RESPONSE);

+ credential_set_all_capabilities(&c, CREDENTIAL_OP_HELPER);

+ credential_set_all_capabilities(&c, CREDENTIAL_OP_HELPER);

+ refresh_index(the_repository->index, REFRESH_QUIET|REFRESH_UNMERGED,

+ if (the_repository->index->cache)

+

+ discard_index(the_repository->index);

+ refresh_index(the_repository->index, REFRESH_QUIET|REFRESH_UNMERGED, NULL, NULL,

+

+ !index_fd(the_repository->index, &wt_oid, fd, &st, OBJ_BLOB, name, 0)) {

+ int keep_going = 0;

+ OPT_BOOL(0, "keep-going", &keep_going,

+ N_("keep going even if command fails in a repository")),

+ for (i = 0; i < values->nr; i++) {

+ int ret = run_command_on_repo(values->items[i].string, argc, argv);

+ if (ret) {

+ if (!keep_going)

+ return ret;

+ result = 1;

+ }

+ }

+ "<string>--keep-going</string>\n"

+ "<Arguments>--exec-path=\"%s\" for-each-repo --keep-going --config=maintenance.repo maintenance run --schedule=%s</Arguments>\n"

+ "%%d %%s * * %%s \"%s/git\" --exec-path=\"%s\" for-each-repo --keep-going --config=maintenance.repo maintenance run --schedule=%%s\n",

+ "ExecStart=\"%s/git\" --exec-path=\"%s\" for-each-repo --keep-going --config=maintenance.repo maintenance run --schedule=%%i\n"

+static int rfc_callback(const struct option *opt, const char *arg,

+ int unset)

+{

+ const char **rfc = opt->value;

+

+ *rfc = opt->value;

+ if (unset)

+ *rfc = NULL;

+ else

+ *rfc = arg ? arg : "RFC";

+ return 0;

+}

+

+ const char *rfc = NULL;

+ OPT_CALLBACK_F(0, "rfc", &rfc, N_("rfc"),

+ N_("add <rfc> (default 'RFC') before 'PATCH'"),

+ PARSE_OPT_OPTARG, rfc_callback),

+ if (rfc && rfc[0]) {

+ subject_prefix = 1;

+ if (rfc[0] == '-')

+ strbuf_addf(&sprefix, " %s", rfc + 1);

+ else

+ strbuf_insertf(&sprefix, 0, "%s ", rfc);

+ }

+ if (pos >= the_repository->index->cache_nr)

+ const struct cache_entry *ce = the_repository->index->cache[pos];

+ } while (++pos < the_repository->index->cache_nr);

+ int pos = index_name_pos(the_repository->index, path, strlen(path));

+ ensure_full_index(the_repository->index);

+ for (i = 0; i < the_repository->index->cache_nr; i++) {

+ const struct cache_entry *ce = the_repository->index->cache[i];

+ ensure_full_index(the_repository->index);

+ traverse_trees(the_repository->index, 3, t, &info);

+ refresh_index(the_repository->index, REFRESH_QUIET, NULL, NULL, NULL);

+ discard_index(the_repository->index);

+ opts.src_index = the_repository->index;

+ opts.dst_index = the_repository->index;

+ cache_tree_free(&the_repository->index->cache_tree);

+ if (write_index_as_tree(oid, the_repository->index, get_index_file(), 0, NULL))

+ if (write_locked_index(the_repository->index, &lock,

+ for (i = 0; i < the_repository->index->cache_nr; i++)

+ if (ce_stage(the_repository->index->cache[i]))

+ discard_index(the_repository->index);

+ read_index_from(the_repository->index, index_file, get_git_dir());

+ append_conflicts_hint(the_repository->index, &msgbuf,

+ resolve_undo_clear_index(the_repository->index);

+ refresh_index(the_repository->index, REFRESH_QUIET, NULL, NULL, NULL);

+ discard_index(the_repository->index);

+#include "replace-object.h"

+ disable_replace_refs();

+

+

+ if (!S_ISGITLINK(the_repository->index->cache[first]->ce_mode))

+ if (!is_staging_gitmodules_ok(the_repository->index))

+ first = index_name_pos(the_repository->index, src_w_slash, len_w_slash);

+ for (last = first; last < the_repository->index->cache_nr; last++) {

+ const char *path = the_repository->index->cache[last]->name;

+ int pos = index_name_pos(the_repository->index, with_slash, length);

+ if (pos >= the_repository->index->cache_nr)

+ ce = the_repository->index->cache[pos];

+ if (!path_in_sparse_checkout(dst_w_slash, the_repository->index) &&

+ if (!path_in_cone_mode_sparse_checkout(destination[0], the_repository->index))

+ pos = index_name_pos(the_repository->index, src, length);

+ if (!path_in_sparse_checkout(src_w_slash, the_repository->index) &&

+ ce = the_repository->index->cache[pos];

+ if (index_name_pos(the_repository->index, dst, strlen(dst)) < 0) {

+ int first = index_name_pos(the_repository->index, src, length), last;

+ const struct cache_entry *ce = the_repository->index->cache[first + j];

+ if (!(ce = index_file_exists(the_repository->index, src, length, 0))) {

+ index_entry_exists(the_repository->index, dst, strlen(dst))) {

+ !path_in_sparse_checkout(src, the_repository->index)) {

+ !path_in_sparse_checkout(dst, the_repository->index)) {

+ state.istate = the_repository->index;

+ pos = index_name_pos(the_repository->index, src, strlen(src));

+ sparse_and_dirty = ie_modified(the_repository->index,

+ the_repository->index->cache[pos],

+ rename_index_entry_at(the_repository->index, pos, dst);

+ path_in_sparse_checkout(dst, the_repository->index)) {

+ int dst_pos = index_name_pos(the_repository->index, dst,

+ struct cache_entry *dst_ce = the_repository->index->cache[dst_pos];

+ !path_in_sparse_checkout(dst, the_repository->index)) {

+ int dst_pos = index_name_pos(the_repository->index, dst,

+ struct cache_entry *dst_ce = the_repository->index->cache[dst_pos];

+ stage_updated_gitmodules(the_repository->index);

+ if (write_locked_index(the_repository->index, &lock_file,

+

+ if (is_null_oid(&orig_head) && !is_index_unborn(the_repository->index))

+ opts.src_index = the_repository->index;

+ opts.dst_index = the_repository->index;

+ resolve_undo_clear_index(the_repository->index);

+ ensure_full_index(the_repository->index);

+ opts.initial_checkout = is_index_unborn(the_repository->index);

+ cache_tree_free(&the_repository->index->cache_tree);

+ if (write_locked_index(the_repository->index, &lock_file, COMMIT_LOCK))

+ discard_index(the_repository->index);

+

+ opts.src_index = the_repository->index;

+ opts.dst_index = the_repository->index;

+ remove_file_from_index(the_repository->index, one->path);

+ ce = make_cache_entry(the_repository->index, one->mode, &one->oid, one->path,

+ pos = index_name_pos(the_repository->index, one->path, strlen(one->path));

+ if ((pos >= 0 && ce_skip_worktree(the_repository->index->cache[pos])) ||

+ (pos < 0 && !path_in_sparse_checkout(one->path, the_repository->index)))

+ add_index_entry(the_repository->index, ce,

+ if (pathspec->nr && pathspec_needs_expanded_index(the_repository->index, pathspec))

+ ensure_full_index(the_repository->index);

+ if (is_merge() || unmerged_index(the_repository->index))

+ the_repository->index->updated_skipworktree = 1;

+ refresh_index(the_repository->index, flags, NULL, NULL,

+ if (write_locked_index(the_repository->index, &lock, COMMIT_LOCK))

+ discard_index(the_repository->index);

+

+ if (the_repository->index->split_index) {

+ const struct object_id *oid = &the_repository->index->split_index->base_oid;

+

+ while ((i < the_repository->index->cache_nr) && !strcmp(the_repository->index->cache[i]->name, path)) {

+ if (ce_stage(the_repository->index->cache[i]) == 2)

+ pos = index_name_pos(the_repository->index, name, strlen(name));

+ ce = the_repository->index->cache[pos];

+ pos = index_name_pos(the_repository->index, name, strlen(name));

+ if (!S_ISGITLINK(the_repository->index->cache[pos]->ce_mode) ||

+ ce = the_repository->index->cache[pos];

+ if (ie_match_stat(the_repository->index, ce, &st, 0) ||

+ refresh_index(the_repository->index, REFRESH_QUIET|REFRESH_UNMERGED, &pathspec, NULL, NULL);

+ if (pathspec_needs_expanded_index(the_repository->index, &pathspec))

+ ensure_full_index(the_repository->index);

+ for (i = 0; i < the_repository->index->cache_nr; i++) {

+ const struct cache_entry *ce = the_repository->index->cache[i];

+ !path_in_sparse_checkout(ce->name, the_repository->index)))

+ if (!ce_path_match(the_repository->index, ce, &pathspec, seen))

+ !is_staging_gitmodules_ok(the_repository->index))

+ if (remove_file_from_index(the_repository->index, path))

+ stage_updated_gitmodules(the_repository->index);

+ if (write_locked_index(the_repository->index, &lock_file,

+ if (refresh_index(the_repository->index, REFRESH_QUIET, NULL, NULL, NULL))

+ opts.src_index = the_repository->index;

+ opts.dst_index = the_repository->index;

+ if (write_locked_index(the_repository->index, &lock_file, COMMIT_LOCK))

+ state.istate = the_repository->index;

+ pos = index_name_pos(the_repository->index, p->two->path,

+ if (pos >= 0 && ce_skip_worktree(the_repository->index->cache[pos])) {

+ ce = the_repository->index->cache[pos];

+ ce = make_cache_entry(the_repository->index,

+ add_index_entry(the_repository->index, ce, option);

+ if (write_locked_index(the_repository->index, &lock,

+ if (write_index_as_tree(&c_tree, the_repository->index, get_index_file(), 0,

+ discard_index(the_repository->index);

+ if (write_index_as_tree(&index_tree, the_repository->index,

+ discard_index(the_repository->index);

+ unpack_tree_opt.src_index = the_repository->index;

+ unpack_tree_opt.dst_index = the_repository->index;

+ strvec_pushl(&cp_diff_tree.args, "diff-tree", "-p", "--binary",

+ "-U1", "HEAD", oid_to_hex(&info->w_tree), "--", NULL);

+ if (write_index_as_tree(&info->i_tree, the_repository->index, get_index_file(), 0,

+ ensure_full_index(the_repository->index);

+ for (i = 0; i < the_repository->index->cache_nr; i++)

+ ce_path_match(the_repository->index, the_repository->index->cache[i], ps,

+ discard_index(the_repository->index);

+ for (i = 0; i < the_repository->index->cache_nr; i++) {

+ const struct cache_entry *ce = the_repository->index->cache[i];

+ if (!match_pathspec(the_repository->index, pathspec, ce->name, ce_namelen(ce),

+ while (i + 1 < the_repository->index->cache_nr &&

+ !strcmp(ce->name, the_repository->index->cache[i + 1]->name))

+ if (validate_submodule_path(path) < 0)

+ exit(128);

+

+ if (validate_submodule_path(path) < 0)

+ exit(128);

+

+ index_fd(the_repository->index, &p->oid_dst, fd, &st, OBJ_BLOB,

+ if (validate_submodule_path(path) < 0)

+ exit(128);

+

+ if (validate_submodule_path(path) < 0)

+ exit(128);

+

+static int dir_contains_only_dotgit(const char *path)

+{

+ DIR *dir = opendir(path);

+ struct dirent *e;

+ int ret = 1;

+

+ if (!dir)

+ return 0;

+

+ e = readdir_skip_dot_and_dotdot(dir);

+ if (!e)

+ ret = 0;

+ else if (strcmp(DEFAULT_GIT_DIR_ENVIRONMENT, e->d_name) ||

+ (e = readdir_skip_dot_and_dotdot(dir))) {

+ error("unexpected item '%s' in '%s'", e->d_name, path);

+ ret = 0;

+ }

+

+ closedir(dir);

+ return ret;

+}

+

+ struct stat st;

+ if (validate_submodule_path(clone_data_path) < 0)

+ exit(128);

+

+ if (clone_data->require_init && !stat(clone_data_path, &st) &&

+ !is_empty_dir(clone_data_path))

+ die(_("directory not empty: '%s'"), clone_data_path);

+

+

+ if (clone_data->require_init && !stat(clone_data_path, &st) &&

+ !dir_contains_only_dotgit(clone_data_path)) {

+ char *dot_git = xstrfmt("%s/.git", clone_data_path);

+ unlink(dot_git);

+ free(dot_git);

+ die(_("directory not empty: '%s'"), clone_data_path);

+ }

+ if (clone_data->require_init && !stat(clone_data_path, &st) &&

+ /*

+ * We already performed this check at the beginning of this function,

+ * before cloning the objects. This tries to detect racy behavior e.g.

+ * in parallel clones, where another process could easily have made the

+ * gitdir nested _after_ it was created.

+ *

+ * To prevent further harm coming from this unintentionally-nested

+ * gitdir, let's disable it by deleting the `HEAD` file.

+ */

+ if (validate_submodule_git_dir(sm_gitdir, clone_data->name) < 0) {

+ char *head = xstrfmt("%s/HEAD", sm_gitdir);

+ unlink(head);

+ free(head);

+ die(_("refusing to create/use '%s' in another submodule's "

+ "git dir"), sm_gitdir);

+ }

+

+ if (validate_submodule_path(update_data->sm_path) < 0)

+ return -1;

+

+ int code = 128;

+ /*

+ * Verify that the submodule path does not contain any

+ * symlinks; if it does, it might have been tampered with.

+ * TODO: allow exempting it via

+ * `safe.submodule.path` or something

+ */

+ if (validate_submodule_path(update_data->sm_path) < 0)

+ goto fail;

+

+ ensure_full_index(the_repository->index);

+ for (i = 0; i < the_repository->index->cache_nr; i++) {

+ ce_path_match(the_repository->index, the_repository->index->cache[i], &ps,

+ if (!S_ISGITLINK(the_repository->index->cache[i]->ce_mode))

+ if (validate_submodule_path(add_data.sm_path) < 0)

+ exit(128);

+

+

+ int pos = index_name_pos(the_repository->index, path, namelen);

+ mark_fsmonitor_invalid(the_repository->index, the_repository->index->cache[pos]);

+ the_repository->index->cache[pos]->ce_flags |= flag;

+ the_repository->index->cache[pos]->ce_flags &= ~flag;

+ the_repository->index->cache[pos]->ce_flags |= CE_UPDATE_IN_BASE;

+ cache_tree_invalidate_path(the_repository->index, path);

+ the_repository->index->cache_changed |= CE_ENTRY_CHANGED;

+ if (remove_file_from_index(the_repository->index, path))

+ if (old && !ce_stage(old) && !ie_match_stat(the_repository->index, old, st, 0))

+ ce = make_empty_cache_entry(the_repository->index, len);

+ fill_stat_cache_info(the_repository->index, ce, st);

+ if (index_path(the_repository->index, &ce->oid, path, st,

+ if (add_index_entry(the_repository->index, ce, option)) {

+ int pos = index_name_pos(the_repository->index, path, len);

+ const struct cache_entry *ce = the_repository->index->cache[pos];

+ while (pos < the_repository->index->cache_nr) {

+ const struct cache_entry *ce = the_repository->index->cache[pos++];

+ pos = index_name_pos(the_repository->index, path, len);

+ ce = pos < 0 ? NULL : the_repository->index->cache[pos];

+ remove_file_from_index(the_repository->index, path))

+ ce = make_empty_cache_entry(the_repository->index, len);

+ if (add_index_entry(the_repository->index, ce, option))

+ pos = index_name_pos(the_repository->index, path, strlen(path));

+ ce = the_repository->index->cache[pos];

+ if (chmod_index_entry(the_repository->index, ce, flip) < 0)

+ if (remove_file_from_index(the_repository->index, path))

+ if (remove_file_from_index(the_repository->index, path_name))

+ if (!the_repository->index->sparse_index && mode == S_IFDIR) {

+ ce = make_empty_cache_entry(the_repository->index, namelen);

+ if (!the_repository->index->resolve_undo)

+ item = string_list_lookup(the_repository->index->resolve_undo, path);

+ res = unmerge_index_entry(the_repository->index, path, item->util, 0);

+ for (pos = 0; pos < the_repository->index->cache_nr; pos++) {

+ const struct cache_entry *ce = the_repository->index->cache[pos];

+ if (ce_stage(ce) || !ce_path_match(the_repository->index, ce, &pathspec, NULL))

+ ensure_full_index(the_repository->index);

+ save_nr = the_repository->index->cache_nr;

+ if (save_nr != the_repository->index->cache_nr)

+ *o->has_errors |= refresh_index(the_repository->index, o->flags | flag, NULL,

+ if (has_racy_timestamp(the_repository->index)) {

+ the_repository->index->cache_changed |= SOMETHING_CHANGED;

+ resolve_undo_clear_index(the_repository->index);

+ the_repository->index->cache_changed = 0;

+ the_repository->index->cache_changed = 0;

+ the_repository->index->updated_skipworktree = 1;

+ printf(_("%d\n"), the_repository->index->version);

+ if (the_repository->index->version != preferred_index_format)

+ the_repository->index->cache_changed |= SOMETHING_CHANGED;

+ the_repository->index->version, preferred_index_format);

+ the_repository->index->version = preferred_index_format;

+ if (the_repository->index->split_index)

+ the_repository->index->cache_changed |= SPLIT_INDEX_ORDERED;

+ add_split_index(the_repository->index);

+ remove_split_index(the_repository->index);

+ remove_untracked_cache(the_repository->index);

+ add_untracked_cache(the_repository->index);

+ add_fsmonitor(the_repository->index);

+ remove_fsmonitor(the_repository->index);

+ if (the_repository->index->cache_changed || force_write) {

+ if (write_locked_index(the_repository->index, &lock_file, COMMIT_LOCK))

+#include "environment.h"

+ xsetenv(NO_LAZY_FETCH_ENVIRONMENT, "1", 0);

+

+ ret = write_index_as_tree(&oid, the_repository->index, get_index_file(),

+ flags, tree_prefix);

+#!/bin/sh

+begin_group "Install dependencies"

+

+JGITWHENCE=https://repo.eclipse.org/content/groups/releases//org/eclipse/jgit/org.eclipse.jgit.pgm/6.8.0.202311291450-r/org.eclipse.jgit.pgm-6.8.0.202311291450-r.sh

+# Make sudo a no-op and execute the command directly when running as root.

+# While using sudo would be fine on most platforms when we are root already,

+# some platforms like e.g. Alpine Linux do not have sudo available by default

+# and would thus break.

+if test "$(id -u)" -eq 0

+then

+ sudo () {

+ "$@"

+ }

+fi

+

+case "$distro" in

+alpine-*)

+ apk add --update shadow sudo build-base curl-dev openssl-dev expat-dev gettext \

+ pcre2-dev python3 musl-libintl perl-utils ncurses \

+ apache2 apache2-http2 apache2-proxy apache2-ssl apache2-webdav apr-util-dbd_sqlite3 \

+ bash cvs gnupg perl-cgi perl-dbd-sqlite >/dev/null

+ ;;

+fedora-*)

+ dnf -yq update >/dev/null &&

+ dnf -yq install make gcc findutils diffutils perl python3 gettext zlib-devel expat-devel openssl-devel curl-devel pcre2-devel >/dev/null

+ ;;

+ # Required so that apt doesn't wait for user input on certain packages.

+ export DEBIAN_FRONTEND=noninteractive

+

+ sudo apt-get -q -y install \

+ language-pack-is libsvn-perl apache2 cvs cvsps git gnupg subversion \

+ make libssl-dev libcurl4-openssl-dev libexpat-dev wget sudo default-jre \

+ tcl tk gettext zlib1g-dev perl-modules liberror-perl libauthen-sasl-perl \

+ libemail-valid-perl libio-socket-ssl-perl libnet-smtp-ssl-perl libdbd-sqlite3-perl libcgi-pm-perl \

+ ${CC_PACKAGE:-${CC:-gcc}} $PYTHON_PACKAGE

+

+ mkdir --parents "$CUSTOM_PATH"

+ wget --quiet --directory-prefix="$CUSTOM_PATH" \

+ "$P4WHENCE/bin.linux26x86_64/p4d" "$P4WHENCE/bin.linux26x86_64/p4"

+ chmod a+x "$CUSTOM_PATH/p4d" "$CUSTOM_PATH/p4"

+

+ wget --quiet "$LFSWHENCE/git-lfs-linux-amd64-$LINUX_GIT_LFS_VERSION.tar.gz"

+ tar -xzf "git-lfs-linux-amd64-$LINUX_GIT_LFS_VERSION.tar.gz" \

+ -C "$CUSTOM_PATH" --strip-components=1 "git-lfs-$LINUX_GIT_LFS_VERSION/git-lfs"

+ rm "git-lfs-linux-amd64-$LINUX_GIT_LFS_VERSION.tar.gz"

+

+ wget --quiet "$JGITWHENCE" --output-document="$CUSTOM_PATH/jgit"

+ chmod a+x "$CUSTOM_PATH/jgit"

+ ;;

+ubuntu32-*)

+ sudo linux32 --32bit i386 sh -c '

+ apt update >/dev/null &&

+ apt install -y build-essential libcurl4-openssl-dev \

+ libssl-dev libexpat-dev gettext python >/dev/null

+ '

+ mkdir -p "$CUSTOM_PATH"

+ wget -q "$P4WHENCE/bin.macosx1015x86_64/helix-core-server.tgz" &&

+ tar -xf helix-core-server.tgz -C "$CUSTOM_PATH" p4 p4d &&

+ sudo xattr -d com.apple.quarantine "$CUSTOM_PATH/p4" "$CUSTOM_PATH/p4d" 2>/dev/null || true

+ rm helix-core-server.tgz

+

+

+if type jgit >/dev/null 2>&1

+then

+ echo "$(tput setaf 6)JGit Version$(tput sgr0)"

+ jgit version

+else

+ echo >&2 "WARNING: JGit wasn't installed, see above for clues why"

+fi

+

+end_group "Install dependencies"

+ distro=$(echo "$CI_JOB_IMAGE" | tr : -)

+case "$distro" in

+ # Python 2 is end of life, and Ubuntu 23.04 and newer don't actually

+ # have it anymore. We thus only test with Python 2 on older LTS

+ # releases.

+ if "$distro" = "ubuntu-20.04"

+ PYTHON_PACKAGE=python2

+ else

+CUSTOM_PATH="${CUSTOM_PATH:-$HOME/path}"

+export PATH="$CUSTOM_PATH:$PATH"

+

+ FUZZ_CXX=clang++ \

+ group "Run unit tests" make --quiet -C t unit-tests-test-tool

+static int get_hex_color(const char **inp, int width, unsigned char *out)

+ const char *in = *inp;

+

+ assert(width == 1 || width == 2);

+ val = (hexval(in[0]) << 4) | hexval(in[width - 1]);

+ *inp += width;

+ /* Try a 24- or 12-bit RGB value prefixed with '#' */

+ if ((len == 7 || len == 4) && name[0] == '#') {

+ int width_per_color = (len == 7) ? 2 : 1;

+ const char *color = name + 1;

+

+ if (!get_hex_color(&color, width_per_color, &out->red) &&

+ !get_hex_color(&color, width_per_color, &out->green) &&

+ !get_hex_color(&color, width_per_color, &out->blue)) {

+ * name ("red"), a RGB code (#FF0000 or #F00) or a 256-color-mode from the

+ * terminal.

+ initialize_repository(the_repository);

+#ifndef NO_UNIX_SOCKETS

+#endif

+ if (!strcmp(var, "core.hookspath")) {

+ if (ctx->kvi && ctx->kvi->scope == CONFIG_SCOPE_LOCAL &&

+ git_env_bool("GIT_CLONE_PROTECTION_ACTIVE", 0))

+ die(_("active `core.hooksPath` found in the local "

+ "repository config:\n\t%s\nFor security "

+ "reasons, this is disallowed by default.\nIf "

+ "this is intentional and the hook should "

+ "actually be run, please\nrun the command "

+ "again with "

+ "`GIT_CLONE_PROTECTION_ACTIVE=false`"),

+ value);

+ }

+ LINK_FUZZ_PROGRAMS = YesPlease

+add_library(test-lib OBJECT ${CMAKE_SOURCE_DIR}/t/unit-tests/test-lib.c)

+target_link_libraries(test-tool test-lib common-main)

+# To add completion for git subcommands that are implemented in external

+# scripts, define a function of the form '_git_${subcommand}' while replacing

+# all dashes with underscores, and the main git completion will make use of it.

+# For example, to add completion for 'git do-stuff' (which could e.g. live

+# in /usr/bin/git-do-stuff), name the completion function '_git_do_stuff'.

+# See _git_show, _git_bisect etc. below for more examples.

+#

+# If you have a shell command that is not part of git (and is not called as a

+# git subcommand), but you would still like git-style completion for it, use

+# __git_complete. For example, to use the same completion as for 'git log' also

+# for the 'gl' command:

+# Or if the 'gk' command should be completed the same as 'gitk':

+# The second parameter of __git_complete gives the completion function; it is

+# resolved as a function named "$2", or "__$2_main", or "_$2" in that order.

+# In the examples above, the actual functions used for completion will be

+# _git_log and __gitk_main.

+#

+_git_symbolic_ref () {

+ case "$cur" in

+ --*)

+ __gitcomp_builtin symbolic-ref

+ return

+ ;;

+ esac

+

+ __git_complete_refs

+}

+

+ local __git_repo_path

+#include "gettext.h"

+#include "strbuf.h"

+#include "abspath.h"

+

+static int do_symlinks_match(const char *path1, const char *path2)

+{

+ struct strbuf buf1 = STRBUF_INIT, buf2 = STRBUF_INIT;

+ int ret = 0;

+

+ if (!strbuf_readlink(&buf1, path1, 0) &&

+ !strbuf_readlink(&buf2, path2, 0))

+ ret = !strcmp(buf1.buf, buf2.buf);

+

+ strbuf_release(&buf1);

+ strbuf_release(&buf2);

+ return ret;

+}

+

+int do_files_match(const char *path1, const char *path2)

+{

+ struct stat st1, st2;

+ int fd1 = -1, fd2 = -1, ret = 1;

+ char buf1[8192], buf2[8192];

+

+ if ((fd1 = open_nofollow(path1, O_RDONLY)) < 0 ||

+ fstat(fd1, &st1) || !S_ISREG(st1.st_mode)) {

+ if (fd1 < 0 && errno == ELOOP)

+ /* maybe this is a symbolic link? */

+ return do_symlinks_match(path1, path2);

+ ret = 0;

+ } else if ((fd2 = open_nofollow(path2, O_RDONLY)) < 0 ||

+ fstat(fd2, &st2) || !S_ISREG(st2.st_mode)) {

+ ret = 0;

+ }

+

+ if (ret)

+ /* to match, neither must be executable, or both */

+ ret = !(st1.st_mode & 0111) == !(st2.st_mode & 0111);

+

+ if (ret)

+ ret = st1.st_size == st2.st_size;

+

+ while (ret) {

+ ssize_t len1 = read_in_full(fd1, buf1, sizeof(buf1));

+ ssize_t len2 = read_in_full(fd2, buf2, sizeof(buf2));

+

+ if (len1 < 0 || len2 < 0 || len1 != len2)

+ ret = 0; /* read error or different file size */

+ else if (!len1) /* len2 is also 0; hit EOF on both */

+ break; /* ret is still true */

+ else

+ ret = !memcmp(buf1, buf2, len1);

+ }

+

+ if (fd1 >= 0)

+ close(fd1);

+ if (fd2 >= 0)

+ close(fd2);

+

+ return ret;

+}

+/*

+ * Compare the file mode and contents of two given files.

+ *

+ * If both files are actually symbolic links, the function returns 1 if the link

+ * targets are identical or 0 if they are not.

+ *

+ * If any of the two files cannot be accessed or in case of read failures, this

+ * function returns 0.

+ *

+ * If the file modes and contents are identical, the function returns 1,

+ * otherwise it returns 0.

+ */

+int do_files_match(const char *path1, const char *path2);

+

+ free(c->credential);

+ free(c->authtype);

+ strvec_clear(&c->state_headers);

+ strvec_clear(&c->state_headers_to_send);

+void credential_next_state(struct credential *c)

+{

+ strvec_clear(&c->state_headers_to_send);

+ SWAP(c->state_headers, c->state_headers_to_send);

+}

+

+void credential_clear_secrets(struct credential *c)

+{

+ FREE_AND_NULL(c->password);

+ FREE_AND_NULL(c->credential);

+}

+

+static void credential_set_capability(struct credential_capability *capa,

+ enum credential_op_type op_type)

+{

+ switch (op_type) {

+ case CREDENTIAL_OP_INITIAL:

+ capa->request_initial = 1;

+ break;

+ case CREDENTIAL_OP_HELPER:

+ capa->request_helper = 1;

+ break;

+ case CREDENTIAL_OP_RESPONSE:

+ capa->response = 1;

+ break;

+ }

+}

+

+

+void credential_set_all_capabilities(struct credential *c,

+ enum credential_op_type op_type)

+{

+ credential_set_capability(&c->capa_authtype, op_type);

+ credential_set_capability(&c->capa_state, op_type);

+}

+

+static void announce_one(struct credential_capability *cc, const char *name, FILE *fp) {

+ if (cc->request_initial)

+ fprintf(fp, "capability %s\n", name);

+}

+

+void credential_announce_capabilities(struct credential *c, FILE *fp) {

+ fprintf(fp, "version 0\n");

+ announce_one(&c->capa_authtype, "authtype", fp);

+ announce_one(&c->capa_state, "state", fp);

+}

+

+ (!match_password || CHECK(password)) &&

+ (!match_password || CHECK(credential));

+int credential_has_capability(const struct credential_capability *capa,

+ enum credential_op_type op_type)

+{

+ /*

+ * We're checking here if each previous step indicated that we had the

+ * capability. If it did, then we want to pass it along; conversely, if

+ * it did not, we don't want to report that to our caller.

+ */

+ switch (op_type) {

+ case CREDENTIAL_OP_HELPER:

+ return capa->request_initial;

+ case CREDENTIAL_OP_RESPONSE:

+ return capa->request_initial && capa->request_helper;

+ default:

+ return 0;

+ }

+}

+

+int credential_read(struct credential *c, FILE *fp,

+ enum credential_op_type op_type)

+ } else if (!strcmp(key, "credential")) {

+ free(c->credential);

+ c->credential = xstrdup(value);

+ } else if (!strcmp(key, "ephemeral")) {

+ c->ephemeral = !!git_config_bool("ephemeral", value);

+ } else if (!strcmp(key, "state[]")) {

+ strvec_push(&c->state_headers, value);

+ } else if (!strcmp(key, "capability[]")) {

+ if (!strcmp(value, "authtype"))

+ credential_set_capability(&c->capa_authtype, op_type);

+ else if (!strcmp(value, "state"))

+ credential_set_capability(&c->capa_state, op_type);

+ } else if (!strcmp(key, "continue")) {

+ c->multistage = !!git_config_bool("continue", value);

+ } else if (!strcmp(key, "authtype")) {

+ free(c->authtype);

+ c->authtype = xstrdup(value);

+void credential_write(const struct credential *c, FILE *fp,

+ enum credential_op_type op_type)

+ if (credential_has_capability(&c->capa_authtype, op_type))

+ credential_write_item(fp, "capability[]", "authtype", 0);

+ if (credential_has_capability(&c->capa_state, op_type))

+ credential_write_item(fp, "capability[]", "state", 0);

+

+ if (credential_has_capability(&c->capa_authtype, op_type)) {

+ credential_write_item(fp, "authtype", c->authtype, 0);

+ credential_write_item(fp, "credential", c->credential, 0);

+ if (c->ephemeral)

+ credential_write_item(fp, "ephemeral", "1", 0);

+ }

+ if (credential_has_capability(&c->capa_state, op_type)) {

+ if (c->multistage)

+ credential_write_item(fp, "continue", "1", 0);

+ for (size_t i = 0; i < c->state_headers_to_send.nr; i++)

+ credential_write_item(fp, "state[]", c->state_headers_to_send.v[i], 0);

+ }

+ credential_write(c, fp, want_output ? CREDENTIAL_OP_HELPER : CREDENTIAL_OP_RESPONSE);

+ r = credential_read(c, fp, CREDENTIAL_OP_HELPER);

+void credential_fill(struct credential *c, int all_capabilities)

+ if ((c->username && c->password) || c->credential)

+ credential_next_state(c);

+ c->multistage = 0;

+

+ if (all_capabilities)

+ credential_set_all_capabilities(c, CREDENTIAL_OP_INITIAL);

+ if ((c->username && c->password) || c->credential) {

+ strvec_clear(&c->wwwauth_headers);

+ }

+ if (!c->username && !c->password && !c->credential)

+ if (((!c->username || !c->password) && !c->credential) || c->password_expiry_utc < time(NULL))

+ credential_next_state(c);

+

+ credential_next_state(c);

+

+ FREE_AND_NULL(c->credential);

+/*

+ * These values define the kind of operation we're performing and the

+ * capabilities at each stage. The first is either an external request (via git

+ * credential fill) or an internal request (e.g., via the HTTP) code. The

+ * second is the call to the credential helper, and the third is the response

+ * we're providing.

+ *

+ * At each stage, we will emit the capability only if the previous stage

+ * supported it.

+ */

+enum credential_op_type {

+ CREDENTIAL_OP_INITIAL = 1,

+ CREDENTIAL_OP_HELPER = 2,

+ CREDENTIAL_OP_RESPONSE = 3,

+};

+

+struct credential_capability {

+ unsigned request_initial:1,

+ request_helper:1,

+ response:1;

+};

+ * A `strvec` of state headers received from credential helpers.

+ */

+ struct strvec state_headers;

+

+ /**

+ * A `strvec` of state headers to send to credential helpers.

+ */

+ struct strvec state_headers_to_send;

+

+ /**

+ ephemeral:1,

+ multistage: 1,

+ struct credential_capability capa_authtype;

+ struct credential_capability capa_state;

+

+ char *credential;

+

+ /**

+ * The authorization scheme to use. If this is NULL, libcurl is free to

+ * negotiate any scheme it likes.

+ */

+ char *authtype;

+ .state_headers = STRVEC_INIT, \

+ .state_headers_to_send = STRVEC_INIT, \

+ *

+ * If all_capabilities is set, this is an internal user that is prepared

+ * to deal with all known capabilities, and we should advertise that fact.

+void credential_fill(struct credential *, int all_capabilities);

+/**

+ * Enable all of the supported credential flags in this credential.

+ */

+void credential_set_all_capabilities(struct credential *c,

+ enum credential_op_type op_type);

+

+/**

+ * Clear the secrets in this credential, but leave other data intact.

+ *

+ * This is useful for resetting credentials in preparation for a subsequent

+ * stage of filling.

+ */

+void credential_clear_secrets(struct credential *c);

+

+/**

+ * Print a list of supported capabilities and version numbers to standard

+ * output.

+ */

+void credential_announce_capabilities(struct credential *c, FILE *fp);

+

+/**

+ * Prepares the credential for the next iteration of the helper protocol by

+ * updating the state headers to send with the ones read by the last iteration

+ * of the protocol.

+ *

+ * Except for internal callers, this should be called exactly once between

+ * reading credentials with `credential_fill` and writing them.

+ */

+void credential_next_state(struct credential *c);

+

+/**

+ * Return true if the capability is enabled for an operation of op_type.

+ */

+int credential_has_capability(const struct credential_capability *capa,

+ enum credential_op_type op_type);

+

+int credential_read(struct credential *, FILE *,

+ enum credential_op_type);

+void credential_write(const struct credential *, FILE *,

+ enum credential_op_type);

+int paths_collide(const char *a, const char *b)

+{

+ size_t len_a = strlen(a), len_b = strlen(b);

+

+ if (len_a == len_b)

+ return fspatheq(a, b);

+

+ if (len_a < len_b)

+ return is_dir_sep(b[len_a]) && !fspathncmp(a, b, len_a);

+ return is_dir_sep(a[len_b]) && !fspathncmp(a, b, len_b);

+}

+

+ * Reports whether paths collide. This may be because the paths differ only in

+ * case on a case-sensitive filesystem, or that one path refers to a symlink

+ * that collides with one of the parent directories of the other.

+ */

+int paths_collide(const char *a, const char *b);

+

+/*

+ paths_collide(ce->name, dup->name)) {

+ /*

+ * We must avoid replacing submodules' leading

+ * directories with symbolic links, lest recursive

+ * clones can write into arbitrary locations.

+ *

+ * Technically, this logic is not limited

+ * to recursive clones, or for that matter to

+ * submodules' paths colliding with symbolic links'

+ * paths. Yet it strikes a balance in favor of

+ * simplicity, and if paths are colliding, we might

+ * just as well keep the directories during a clone.

+ */

+ if (state->clone && S_ISLNK(ce->ce_mode))

+ return 0;

+ oidset_insert(&options->symlink_targets_found,

+ entry_oid);

+ if (oidset_contains(&options->symlink_targets_found, oid)) {

+ const char *ptr = buf;

+ const struct object_id *reported = NULL;

+

+ oidset_insert(&options->symlink_targets_done, oid);

+

+ if (!buf || size > PATH_MAX) {

+ /*

+ * A missing buffer here is a sign that the caller found the

+ * blob too gigantic to load into memory. Let's just consider

+ * that an error.

+ */

+ return report(options, oid, OBJ_BLOB,

+ FSCK_MSG_SYMLINK_TARGET_LENGTH,

+ "symlink target too long");

+ }

+

+ while (!reported && ptr) {

+ const char *p = ptr;

+ char c, *slash = strchrnul(ptr, '/');

+ char *backslash = memchr(ptr, '\\', slash - ptr);

+

+ c = *slash;

+ *slash = '\0';

+

+ while (!reported && backslash) {

+ *backslash = '\0';

+ if (is_ntfs_dotgit(p))

+ ret |= report(options, reported = oid, OBJ_BLOB,

+ FSCK_MSG_SYMLINK_POINTS_TO_GIT_DIR,

+ "symlink target points to git dir");

+ *backslash = '\\';

+ p = backslash + 1;

+ backslash = memchr(p, '\\', slash - p);

+ }

+ if (!reported && is_ntfs_dotgit(p))

+ ret |= report(options, reported = oid, OBJ_BLOB,

+ FSCK_MSG_SYMLINK_POINTS_TO_GIT_DIR,

+ "symlink target points to git dir");

+

+ if (!reported && is_hfs_dotgit(ptr))

+ ret |= report(options, reported = oid, OBJ_BLOB,

+ FSCK_MSG_SYMLINK_POINTS_TO_GIT_DIR,

+ "symlink target points to git dir");

+

+ *slash = c;

+ ptr = c ? slash + 1 : NULL;

+ }

+ }

+

+ ret |= fsck_blobs(&options->symlink_targets_found, &options->symlink_targets_done,

+ FSCK_MSG_SYMLINK_TARGET_MISSING, FSCK_MSG_SYMLINK_TARGET_BLOB,

+ options, "<symlink-target>");

+

+ FUNC(SYMLINK_TARGET_MISSING, ERROR) \

+ FUNC(SYMLINK_TARGET_BLOB, ERROR) \

+ FUNC(SYMLINK_TARGET_LENGTH, WARN) \

+ FUNC(SYMLINK_POINTS_TO_GIT_DIR, WARN) \

+ struct oidset symlink_targets_found;

+ struct oidset symlink_targets_done;

+ .symlink_targets_found = OIDSET_INIT, \

+ .symlink_targets_done = OIDSET_INIT, \

+ .symlink_targets_found = OIDSET_INIT, \

+ .symlink_targets_done = OIDSET_INIT, \

+ .symlink_targets_found = OIDSET_INIT, \

+ .symlink_targets_done = OIDSET_INIT, \

+ try:

+ # force a failure in fast-import, else an empty

+ # commit will be made

+ self.gitStream.write("\n")

+ self.gitStream.write("die-now\n")

+ self.gitStream.close()

+ # ignore errors, but make sure it exits first

+ self.importProcess.wait()

+ finally:

+ if f:

+ die("Error from p4 print for %s: %s" % (f, err))

+ else:

+ die("Error from p4 print: %s" % err)

+#include "environment.h"

+#include "setup.h"

+#include "copy.h"

+

+static int identical_to_template_hook(const char *name, const char *path)

+{

+ const char *env = getenv("GIT_CLONE_TEMPLATE_DIR");

+ const char *template_dir = get_template_dir(env && *env ? env : NULL);

+ struct strbuf template_path = STRBUF_INIT;

+ int found_template_hook, ret;

+