search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Merge branch 'am/doc-sha256'
[git.git] / compat / mingw.c
blobf7f5d0ce0cc0b646e6d1b50581b5d762554e5211
1 #include "../git-compat-util.h"
2 #include "win32.h"
3 #include <aclapi.h>
4 #include <sddl.h>
5 #include <conio.h>
6 #include <wchar.h>
7 #include "../strbuf.h"
8 #include "../run-command.h"
9 #include "../abspath.h"
10 #include "../alloc.h"
11 #include "win32/lazyload.h"
12 #include "../config.h"
13 #include "../environment.h"
14 #include "../trace2.h"
15 #include "../symlinks.h"
16 #include "../wrapper.h"
17 #include "dir.h"
18 #include "gettext.h"
19 #define SECURITY_WIN32
20 #include <sspi.h>
21
22 #define HCAST(type, handle) ((type)(intptr_t)handle)
23
24 static const int delay[] = { 0, 1, 10, 20, 40 };
25
26 void open_in_gdb(void)
27 {
28 static struct child_process cp = CHILD_PROCESS_INIT;
29 extern char *_pgmptr;
30
31 strvec_pushl(&cp.args, "mintty", "gdb", NULL);
32 strvec_pushf(&cp.args, "--pid=%d", getpid());
33 cp.clean_on_exit = 1;
34 if (start_command(&cp) < 0)
35 die_errno("Could not start gdb");
36 sleep(1);
37 }
38
39 int err_win_to_posix(DWORD winerr)
40 {
41 int error = ENOSYS;
42 switch(winerr) {
43 case ERROR_ACCESS_DENIED: error = EACCES; break;
44 case ERROR_ACCOUNT_DISABLED: error = EACCES; break;
45 case ERROR_ACCOUNT_RESTRICTION: error = EACCES; break;
46 case ERROR_ALREADY_ASSIGNED: error = EBUSY; break;
47 case ERROR_ALREADY_EXISTS: error = EEXIST; break;
48 case ERROR_ARITHMETIC_OVERFLOW: error = ERANGE; break;
49 case ERROR_BAD_COMMAND: error = EIO; break;
50 case ERROR_BAD_DEVICE: error = ENODEV; break;
51 case ERROR_BAD_DRIVER_LEVEL: error = ENXIO; break;
52 case ERROR_BAD_EXE_FORMAT: error = ENOEXEC; break;
53 case ERROR_BAD_FORMAT: error = ENOEXEC; break;
54 case ERROR_BAD_LENGTH: error = EINVAL; break;
55 case ERROR_BAD_PATHNAME: error = ENOENT; break;
56 case ERROR_BAD_PIPE: error = EPIPE; break;
57 case ERROR_BAD_UNIT: error = ENODEV; break;
58 case ERROR_BAD_USERNAME: error = EINVAL; break;
59 case ERROR_BROKEN_PIPE: error = EPIPE; break;
60 case ERROR_BUFFER_OVERFLOW: error = ENAMETOOLONG; break;
61 case ERROR_BUSY: error = EBUSY; break;
62 case ERROR_BUSY_DRIVE: error = EBUSY; break;
63 case ERROR_CALL_NOT_IMPLEMENTED: error = ENOSYS; break;
64 case ERROR_CANNOT_MAKE: error = EACCES; break;
65 case ERROR_CANTOPEN: error = EIO; break;
66 case ERROR_CANTREAD: error = EIO; break;
67 case ERROR_CANTWRITE: error = EIO; break;
68 case ERROR_CRC: error = EIO; break;
69 case ERROR_CURRENT_DIRECTORY: error = EACCES; break;
70 case ERROR_DEVICE_IN_USE: error = EBUSY; break;
71 case ERROR_DEV_NOT_EXIST: error = ENODEV; break;
72 case ERROR_DIRECTORY: error = EINVAL; break;
73 case ERROR_DIR_NOT_EMPTY: error = ENOTEMPTY; break;
74 case ERROR_DISK_CHANGE: error = EIO; break;
75 case ERROR_DISK_FULL: error = ENOSPC; break;
76 case ERROR_DRIVE_LOCKED: error = EBUSY; break;
77 case ERROR_ENVVAR_NOT_FOUND: error = EINVAL; break;
78 case ERROR_EXE_MARKED_INVALID: error = ENOEXEC; break;
79 case ERROR_FILENAME_EXCED_RANGE: error = ENAMETOOLONG; break;
80 case ERROR_FILE_EXISTS: error = EEXIST; break;
81 case ERROR_FILE_INVALID: error = ENODEV; break;
82 case ERROR_FILE_NOT_FOUND: error = ENOENT; break;
83 case ERROR_GEN_FAILURE: error = EIO; break;
84 case ERROR_HANDLE_DISK_FULL: error = ENOSPC; break;
85 case ERROR_INSUFFICIENT_BUFFER: error = ENOMEM; break;
86 case ERROR_INVALID_ACCESS: error = EACCES; break;
87 case ERROR_INVALID_ADDRESS: error = EFAULT; break;
88 case ERROR_INVALID_BLOCK: error = EFAULT; break;
89 case ERROR_INVALID_DATA: error = EINVAL; break;
90 case ERROR_INVALID_DRIVE: error = ENODEV; break;
91 case ERROR_INVALID_EXE_SIGNATURE: error = ENOEXEC; break;
92 case ERROR_INVALID_FLAGS: error = EINVAL; break;
93 case ERROR_INVALID_FUNCTION: error = ENOSYS; break;
94 case ERROR_INVALID_HANDLE: error = EBADF; break;
95 case ERROR_INVALID_LOGON_HOURS: error = EACCES; break;
96 case ERROR_INVALID_NAME: error = EINVAL; break;
97 case ERROR_INVALID_OWNER: error = EINVAL; break;
98 case ERROR_INVALID_PARAMETER: error = EINVAL; break;
99 case ERROR_INVALID_PASSWORD: error = EPERM; break;
100 case ERROR_INVALID_PRIMARY_GROUP: error = EINVAL; break;
101 case ERROR_INVALID_SIGNAL_NUMBER: error = EINVAL; break;
102 case ERROR_INVALID_TARGET_HANDLE: error = EIO; break;
103 case ERROR_INVALID_WORKSTATION: error = EACCES; break;
104 case ERROR_IO_DEVICE: error = EIO; break;
105 case ERROR_IO_INCOMPLETE: error = EINTR; break;
106 case ERROR_LOCKED: error = EBUSY; break;
107 case ERROR_LOCK_VIOLATION: error = EACCES; break;
108 case ERROR_LOGON_FAILURE: error = EACCES; break;
109 case ERROR_MAPPED_ALIGNMENT: error = EINVAL; break;
110 case ERROR_META_EXPANSION_TOO_LONG: error = E2BIG; break;
111 case ERROR_MORE_DATA: error = EPIPE; break;
112 case ERROR_NEGATIVE_SEEK: error = ESPIPE; break;
113 case ERROR_NOACCESS: error = EFAULT; break;
114 case ERROR_NONE_MAPPED: error = EINVAL; break;
115 case ERROR_NOT_ENOUGH_MEMORY: error = ENOMEM; break;
116 case ERROR_NOT_READY: error = EAGAIN; break;
117 case ERROR_NOT_SAME_DEVICE: error = EXDEV; break;
118 case ERROR_NO_DATA: error = EPIPE; break;
119 case ERROR_NO_MORE_SEARCH_HANDLES: error = EIO; break;
120 case ERROR_NO_PROC_SLOTS: error = EAGAIN; break;
121 case ERROR_NO_SUCH_PRIVILEGE: error = EACCES; break;
122 case ERROR_OPEN_FAILED: error = EIO; break;
123 case ERROR_OPEN_FILES: error = EBUSY; break;
124 case ERROR_OPERATION_ABORTED: error = EINTR; break;
125 case ERROR_OUTOFMEMORY: error = ENOMEM; break;
126 case ERROR_PASSWORD_EXPIRED: error = EACCES; break;
127 case ERROR_PATH_BUSY: error = EBUSY; break;
128 case ERROR_PATH_NOT_FOUND: error = ENOENT; break;
129 case ERROR_PIPE_BUSY: error = EBUSY; break;
130 case ERROR_PIPE_CONNECTED: error = EPIPE; break;
131 case ERROR_PIPE_LISTENING: error = EPIPE; break;
132 case ERROR_PIPE_NOT_CONNECTED: error = EPIPE; break;
133 case ERROR_PRIVILEGE_NOT_HELD: error = EACCES; break;
134 case ERROR_READ_FAULT: error = EIO; break;
135 case ERROR_SEEK: error = EIO; break;
136 case ERROR_SEEK_ON_DEVICE: error = ESPIPE; break;
137 case ERROR_SHARING_BUFFER_EXCEEDED: error = ENFILE; break;
138 case ERROR_SHARING_VIOLATION: error = EACCES; break;
139 case ERROR_STACK_OVERFLOW: error = ENOMEM; break;
140 case ERROR_SUCCESS: BUG("err_win_to_posix() called without an error!");
141 case ERROR_SWAPERROR: error = ENOENT; break;
142 case ERROR_TOO_MANY_MODULES: error = EMFILE; break;
143 case ERROR_TOO_MANY_OPEN_FILES: error = EMFILE; break;
144 case ERROR_UNRECOGNIZED_MEDIA: error = ENXIO; break;
145 case ERROR_UNRECOGNIZED_VOLUME: error = ENODEV; break;
146 case ERROR_WAIT_NO_CHILDREN: error = ECHILD; break;
147 case ERROR_WRITE_FAULT: error = EIO; break;
148 case ERROR_WRITE_PROTECT: error = EROFS; break;
149 }
150 return error;
151 }
152
153 static inline int is_file_in_use_error(DWORD errcode)
154 {
155 switch (errcode) {
156 case ERROR_SHARING_VIOLATION:
157 case ERROR_ACCESS_DENIED:
158 return 1;
159 }
160
161 return 0;
162 }
163
164 static int read_yes_no_answer(void)
165 {
166 char answer[1024];
167
168 if (fgets(answer, sizeof(answer), stdin)) {
169 size_t answer_len = strlen(answer);
170 int got_full_line = 0, c;
171
172 /* remove the newline */
173 if (answer_len >= 2 && answer[answer_len-2] == '\r') {
174 answer[answer_len-2] = '\0';
175 got_full_line = 1;
176 } else if (answer_len >= 1 && answer[answer_len-1] == '\n') {
177 answer[answer_len-1] = '\0';
178 got_full_line = 1;
179 }
180 /* flush the buffer in case we did not get the full line */
181 if (!got_full_line)
182 while ((c = getchar()) != EOF && c != '\n')
183 ;
184 } else
185 /* we could not read, return the
186 * default answer which is no */
187 return 0;
188
189 if (tolower(answer[0]) == 'y' && !answer[1])
190 return 1;
191 if (!strncasecmp(answer, "yes", sizeof(answer)))
192 return 1;
193 if (tolower(answer[0]) == 'n' && !answer[1])
194 return 0;
195 if (!strncasecmp(answer, "no", sizeof(answer)))
196 return 0;
197
198 /* did not find an answer we understand */
199 return -1;
200 }
201
202 static int ask_yes_no_if_possible(const char *format, ...)
203 {
204 char question[4096];
205 const char *retry_hook;
206 va_list args;
207
208 va_start(args, format);
209 vsnprintf(question, sizeof(question), format, args);
210 va_end(args);
211
212 retry_hook = mingw_getenv("GIT_ASK_YESNO");
213 if (retry_hook) {
214 struct child_process cmd = CHILD_PROCESS_INIT;
215
216 strvec_pushl(&cmd.args, retry_hook, question, NULL);
217 return !run_command(&cmd);
218 }
219
220 if (!isatty(_fileno(stdin)) || !isatty(_fileno(stderr)))
221 return 0;
222
223 while (1) {
224 int answer;
225 fprintf(stderr, "%s (y/n) ", question);
226
227 if ((answer = read_yes_no_answer()) >= 0)
228 return answer;
229
230 fprintf(stderr, "Sorry, I did not understand your answer. "
231 "Please type 'y' or 'n'\n");
232 }
233 }
234
235 /* Windows only */
236 enum hide_dotfiles_type {
237 HIDE_DOTFILES_FALSE = 0,
238 HIDE_DOTFILES_TRUE,
239 HIDE_DOTFILES_DOTGITONLY
240 };
241
242 static int core_restrict_inherited_handles = -1;
243 static enum hide_dotfiles_type hide_dotfiles = HIDE_DOTFILES_DOTGITONLY;
244 static char *unset_environment_variables;
245
246 int mingw_core_config(const char *var, const char *value,
247 const struct config_context *ctx, void *cb)
248 {
249 if (!strcmp(var, "core.hidedotfiles")) {
250 if (value && !strcasecmp(value, "dotgitonly"))
251 hide_dotfiles = HIDE_DOTFILES_DOTGITONLY;
252 else
253 hide_dotfiles = git_config_bool(var, value);
254 return 0;
255 }
256
257 if (!strcmp(var, "core.unsetenvvars")) {
258 free(unset_environment_variables);
259 unset_environment_variables = xstrdup(value);
260 return 0;
261 }
262
263 if (!strcmp(var, "core.restrictinheritedhandles")) {
264 if (value && !strcasecmp(value, "auto"))
265 core_restrict_inherited_handles = -1;
266 else
267 core_restrict_inherited_handles =
268 git_config_bool(var, value);
269 return 0;
270 }
271
272 return 0;
273 }
274
275 /* Normalizes NT paths as returned by some low-level APIs. */
276 static wchar_t *normalize_ntpath(wchar_t *wbuf)
277 {
278 int i;
279 /* fix absolute path prefixes */
280 if (wbuf[0] == '\\') {
281 /* strip NT namespace prefixes */
282 if (!wcsncmp(wbuf, L"\\??\\", 4) ||
283 !wcsncmp(wbuf, L"\\\\?\\", 4))
284 wbuf += 4;
285 else if (!wcsnicmp(wbuf, L"\\DosDevices\\", 12))
286 wbuf += 12;
287 /* replace remaining '...UNC\' with '\\' */
288 if (!wcsnicmp(wbuf, L"UNC\\", 4)) {
289 wbuf += 2;
290 *wbuf = '\\';
291 }
292 }
293 /* convert backslashes to slashes */
294 for (i = 0; wbuf[i]; i++)
295 if (wbuf[i] == '\\')
296 wbuf[i] = '/';
297 return wbuf;
298 }
299
300 int mingw_unlink(const char *pathname)
301 {
302 int ret, tries = 0;
303 wchar_t wpathname[MAX_PATH];
304 if (xutftowcs_path(wpathname, pathname) < 0)
305 return -1;
306
307 if (DeleteFileW(wpathname))
308 return 0;
309
310 /* read-only files cannot be removed */
311 _wchmod(wpathname, 0666);
312 while ((ret = _wunlink(wpathname)) == -1 && tries < ARRAY_SIZE(delay)) {
313 if (!is_file_in_use_error(GetLastError()))
314 break;
315 /*
316 * We assume that some other process had the source or
317 * destination file open at the wrong moment and retry.
318 * In order to give the other process a higher chance to
319 * complete its operation, we give up our time slice now.
320 * If we have to retry again, we do sleep a bit.
321 */
322 Sleep(delay[tries]);
323 tries++;
324 }
325 while (ret == -1 && is_file_in_use_error(GetLastError()) &&
326 ask_yes_no_if_possible("Unlink of file '%s' failed. "
327 "Should I try again?", pathname))
328 ret = _wunlink(wpathname);
329 return ret;
330 }
331
332 static int is_dir_empty(const wchar_t *wpath)
333 {
334 WIN32_FIND_DATAW findbuf;
335 HANDLE handle;
336 wchar_t wbuf[MAX_PATH + 2];
337 wcscpy(wbuf, wpath);
338 wcscat(wbuf, L"\\*");
339 handle = FindFirstFileW(wbuf, &findbuf);
340 if (handle == INVALID_HANDLE_VALUE)
341 return GetLastError() == ERROR_NO_MORE_FILES;
342
343 while (!wcscmp(findbuf.cFileName, L".") ||
344 !wcscmp(findbuf.cFileName, L".."))
345 if (!FindNextFileW(handle, &findbuf)) {
346 DWORD err = GetLastError();
347 FindClose(handle);
348 return err == ERROR_NO_MORE_FILES;
349 }
350 FindClose(handle);
351 return 0;
352 }
353
354 int mingw_rmdir(const char *pathname)
355 {
356 int ret, tries = 0;
357 wchar_t wpathname[MAX_PATH];
358 struct stat st;
359
360 /*
361 * Contrary to Linux' `rmdir()`, Windows' _wrmdir() and _rmdir()
362 * (and `RemoveDirectoryW()`) will attempt to remove the target of a
363 * symbolic link (if it points to a directory).
364 *
365 * This behavior breaks the assumption of e.g. `remove_path()` which
366 * upon successful deletion of a file will attempt to remove its parent
367 * directories recursively until failure (which usually happens when
368 * the directory is not empty).
369 *
370 * Therefore, before calling `_wrmdir()`, we first check if the path is
371 * a symbolic link. If it is, we exit and return the same error as
372 * Linux' `rmdir()` would, i.e. `ENOTDIR`.
373 */
374 if (!mingw_lstat(pathname, &st) && S_ISLNK(st.st_mode)) {
375 errno = ENOTDIR;
376 return -1;
377 }
378
379 if (xutftowcs_path(wpathname, pathname) < 0)
380 return -1;
381
382 while ((ret = _wrmdir(wpathname)) == -1 && tries < ARRAY_SIZE(delay)) {
383 if (!is_file_in_use_error(GetLastError()))
384 errno = err_win_to_posix(GetLastError());
385 if (errno != EACCES)
386 break;
387 if (!is_dir_empty(wpathname)) {
388 errno = ENOTEMPTY;
389 break;
390 }
391 /*
392 * We assume that some other process had the source or
393 * destination file open at the wrong moment and retry.
394 * In order to give the other process a higher chance to
395 * complete its operation, we give up our time slice now.
396 * If we have to retry again, we do sleep a bit.
397 */
398 Sleep(delay[tries]);
399 tries++;
400 }
401 while (ret == -1 && errno == EACCES && is_file_in_use_error(GetLastError()) &&
402 ask_yes_no_if_possible("Deletion of directory '%s' failed. "
403 "Should I try again?", pathname))
404 ret = _wrmdir(wpathname);
405 if (!ret)
406 invalidate_lstat_cache();
407 return ret;
408 }
409
410 static inline int needs_hiding(const char *path)
411 {
412 const char *basename;
413
414 if (hide_dotfiles == HIDE_DOTFILES_FALSE)
415 return 0;
416
417 /* We cannot use basename(), as it would remove trailing slashes */
418 win32_skip_dos_drive_prefix((char **)&path);
419 if (!*path)
420 return 0;
421
422 for (basename = path; *path; path++)
423 if (is_dir_sep(*path)) {
424 do {
425 path++;
426 } while (is_dir_sep(*path));
427 /* ignore trailing slashes */
428 if (*path)
429 basename = path;
430 else
431 break;
432 }
433
434 if (hide_dotfiles == HIDE_DOTFILES_TRUE)
435 return *basename == '.';
436
437 assert(hide_dotfiles == HIDE_DOTFILES_DOTGITONLY);
438 return !strncasecmp(".git", basename, 4) &&
439 (!basename[4] || is_dir_sep(basename[4]));
440 }
441
442 static int set_hidden_flag(const wchar_t *path, int set)
443 {
444 DWORD original = GetFileAttributesW(path), modified;
445 if (set)
446 modified = original | FILE_ATTRIBUTE_HIDDEN;
447 else
448 modified = original & ~FILE_ATTRIBUTE_HIDDEN;
449 if (original == modified || SetFileAttributesW(path, modified))
450 return 0;
451 errno = err_win_to_posix(GetLastError());
452 return -1;
453 }
454
455 int mingw_mkdir(const char *path, int mode)
456 {
457 int ret;
458 wchar_t wpath[MAX_PATH];
459
460 if (!is_valid_win32_path(path, 0)) {
461 errno = EINVAL;
462 return -1;
463 }
464
465 if (xutftowcs_path(wpath, path) < 0)
466 return -1;
467 ret = _wmkdir(wpath);
468 if (!ret && needs_hiding(path))
469 return set_hidden_flag(wpath, 1);
470 return ret;
471 }
472
473 /*
474 * Calling CreateFile() using FILE_APPEND_DATA and without FILE_WRITE_DATA
475 * is documented in [1] as opening a writable file handle in append mode.
476 * (It is believed that) this is atomic since it is maintained by the
477 * kernel unlike the O_APPEND flag which is racily maintained by the CRT.
478 *
479 * [1] https://docs.microsoft.com/en-us/windows/desktop/fileio/file-access-rights-constants
480 *
481 * This trick does not appear to work for named pipes. Instead it creates
482 * a named pipe client handle that cannot be written to. Callers should
483 * just use the regular _wopen() for them. (And since client handle gets
484 * bound to a unique server handle, it isn't really an issue.)
485 */
486 static int mingw_open_append(wchar_t const *wfilename, int oflags, ...)
487 {
488 HANDLE handle;
489 int fd;
490 DWORD create = (oflags & O_CREAT) ? OPEN_ALWAYS : OPEN_EXISTING;
491
492 /* only these flags are supported */
493 if ((oflags & ~O_CREAT) != (O_WRONLY | O_APPEND))
494 return errno = ENOSYS, -1;
495
496 /*
497 * FILE_SHARE_WRITE is required to permit child processes
498 * to append to the file.
499 */
500 handle = CreateFileW(wfilename, FILE_APPEND_DATA,
501 FILE_SHARE_WRITE | FILE_SHARE_READ,
502 NULL, create, FILE_ATTRIBUTE_NORMAL, NULL);
503 if (handle == INVALID_HANDLE_VALUE) {
504 DWORD err = GetLastError();
505
506 /*
507 * Some network storage solutions (e.g. Isilon) might return
508 * ERROR_INVALID_PARAMETER instead of expected error
509 * ERROR_PATH_NOT_FOUND, which results in an unknown error. If
510 * so, let's turn the error to ERROR_PATH_NOT_FOUND instead.
511 */
512 if (err == ERROR_INVALID_PARAMETER)
513 err = ERROR_PATH_NOT_FOUND;
514
515 errno = err_win_to_posix(err);
516 return -1;
517 }
518
519 /*
520 * No O_APPEND here, because the CRT uses it only to reset the
521 * file pointer to EOF before each write(); but that is not
522 * necessary (and may lead to races) for a file created with
523 * FILE_APPEND_DATA.
524 */
525 fd = _open_osfhandle((intptr_t)handle, O_BINARY);
526 if (fd < 0)
527 CloseHandle(handle);
528 return fd;
529 }
530
531 /*
532 * Does the pathname map to the local named pipe filesystem?
533 * That is, does it have a "//./pipe/" prefix?
534 */
535 static int is_local_named_pipe_path(const char *filename)
536 {
537 return (is_dir_sep(filename[0]) &&
538 is_dir_sep(filename[1]) &&
539 filename[2] == '.' &&
540 is_dir_sep(filename[3]) &&
541 !strncasecmp(filename+4, "pipe", 4) &&
542 is_dir_sep(filename[8]) &&
543 filename[9]);
544 }
545
546 int mingw_open (const char *filename, int oflags, ...)
547 {
548 typedef int (*open_fn_t)(wchar_t const *wfilename, int oflags, ...);
549 va_list args;
550 unsigned mode;
551 int fd, create = (oflags & (O_CREAT | O_EXCL)) == (O_CREAT | O_EXCL);
552 wchar_t wfilename[MAX_PATH];
553 open_fn_t open_fn;
554
555 va_start(args, oflags);
556 mode = va_arg(args, int);
557 va_end(args);
558
559 if (!is_valid_win32_path(filename, !create)) {
560 errno = create ? EINVAL : ENOENT;
561 return -1;
562 }
563
564 if ((oflags & O_APPEND) && !is_local_named_pipe_path(filename))
565 open_fn = mingw_open_append;
566 else
567 open_fn = _wopen;
568
569 if (filename && !strcmp(filename, "/dev/null"))
570 wcscpy(wfilename, L"nul");
571 else if (xutftowcs_path(wfilename, filename) < 0)
572 return -1;
573
574 fd = open_fn(wfilename, oflags, mode);
575
576 if (fd < 0 && (oflags & O_ACCMODE) != O_RDONLY && errno == EACCES) {
577 DWORD attrs = GetFileAttributesW(wfilename);
578 if (attrs != INVALID_FILE_ATTRIBUTES && (attrs & FILE_ATTRIBUTE_DIRECTORY))
579 errno = EISDIR;
580 }
581 if ((oflags & O_CREAT) && needs_hiding(filename)) {
582 /*
583 * Internally, _wopen() uses the CreateFile() API which errors
584 * out with an ERROR_ACCESS_DENIED if CREATE_ALWAYS was
585 * specified and an already existing file's attributes do not
586 * match *exactly*. As there is no mode or flag we can set that
587 * would correspond to FILE_ATTRIBUTE_HIDDEN, let's just try
588 * again *without* the O_CREAT flag (that corresponds to the
589 * CREATE_ALWAYS flag of CreateFile()).
590 */
591 if (fd < 0 && errno == EACCES)
592 fd = open_fn(wfilename, oflags & ~O_CREAT, mode);
593 if (fd >= 0 && set_hidden_flag(wfilename, 1))
594 warning("could not mark '%s' as hidden.", filename);
595 }
596 return fd;
597 }
598
599 static BOOL WINAPI ctrl_ignore(DWORD type)
600 {
601 return TRUE;
602 }
603
604 #undef fgetc
605 int mingw_fgetc(FILE *stream)
606 {
607 int ch;
608 if (!isatty(_fileno(stream)))
609 return fgetc(stream);
610
611 SetConsoleCtrlHandler(ctrl_ignore, TRUE);
612 while (1) {
613 ch = fgetc(stream);
614 if (ch != EOF || GetLastError() != ERROR_OPERATION_ABORTED)
615 break;
616
617 /* Ctrl+C was pressed, simulate SIGINT and retry */
618 mingw_raise(SIGINT);
619 }
620 SetConsoleCtrlHandler(ctrl_ignore, FALSE);
621 return ch;
622 }
623
624 #undef fopen
625 FILE *mingw_fopen (const char *filename, const char *otype)
626 {
627 int hide = needs_hiding(filename);
628 FILE *file;
629 wchar_t wfilename[MAX_PATH], wotype[4];
630 if (filename && !strcmp(filename, "/dev/null"))
631 wcscpy(wfilename, L"nul");
632 else if (!is_valid_win32_path(filename, 1)) {
633 int create = otype && strchr(otype, 'w');
634 errno = create ? EINVAL : ENOENT;
635 return NULL;
636 } else if (xutftowcs_path(wfilename, filename) < 0)
637 return NULL;
638
639 if (xutftowcs(wotype, otype, ARRAY_SIZE(wotype)) < 0)
640 return NULL;
641
642 if (hide && !access(filename, F_OK) && set_hidden_flag(wfilename, 0)) {
643 error("could not unhide %s", filename);
644 return NULL;
645 }
646 file = _wfopen(wfilename, wotype);
647 if (!file && GetLastError() == ERROR_INVALID_NAME)
648 errno = ENOENT;
649 if (file && hide && set_hidden_flag(wfilename, 1))
650 warning("could not mark '%s' as hidden.", filename);
651 return file;
652 }
653
654 FILE *mingw_freopen (const char *filename, const char *otype, FILE *stream)
655 {
656 int hide = needs_hiding(filename);
657 FILE *file;
658 wchar_t wfilename[MAX_PATH], wotype[4];
659 if (filename && !strcmp(filename, "/dev/null"))
660 wcscpy(wfilename, L"nul");
661 else if (!is_valid_win32_path(filename, 1)) {
662 int create = otype && strchr(otype, 'w');
663 errno = create ? EINVAL : ENOENT;
664 return NULL;
665 } else if (xutftowcs_path(wfilename, filename) < 0)
666 return NULL;
667
668 if (xutftowcs(wotype, otype, ARRAY_SIZE(wotype)) < 0)
669 return NULL;
670
671 if (hide && !access(filename, F_OK) && set_hidden_flag(wfilename, 0)) {
672 error("could not unhide %s", filename);
673 return NULL;
674 }
675 file = _wfreopen(wfilename, wotype, stream);
676 if (file && hide && set_hidden_flag(wfilename, 1))
677 warning("could not mark '%s' as hidden.", filename);
678 return file;
679 }
680
681 #undef fflush
682 int mingw_fflush(FILE *stream)
683 {
684 int ret = fflush(stream);
685
686 /*
687 * write() is used behind the scenes of stdio output functions.
688 * Since git code does not check for errors after each stdio write
689 * operation, it can happen that write() is called by a later
690 * stdio function even if an earlier write() call failed. In the
691 * case of a pipe whose readable end was closed, only the first
692 * call to write() reports EPIPE on Windows. Subsequent write()
693 * calls report EINVAL. It is impossible to notice whether this
694 * fflush invocation triggered such a case, therefore, we have to
695 * catch all EINVAL errors whole-sale.
696 */
697 if (ret && errno == EINVAL)
698 errno = EPIPE;
699
700 return ret;
701 }
702
703 #undef write
704 ssize_t mingw_write(int fd, const void *buf, size_t len)
705 {
706 ssize_t result = write(fd, buf, len);
707
708 if (result < 0 && errno == EINVAL && buf) {
709 /* check if fd is a pipe */
710 HANDLE h = (HANDLE) _get_osfhandle(fd);
711 if (GetFileType(h) == FILE_TYPE_PIPE)
712 errno = EPIPE;
713 else
714 errno = EINVAL;
715 }
716
717 return result;
718 }
719
720 int mingw_access(const char *filename, int mode)
721 {
722 wchar_t wfilename[MAX_PATH];
723 if (!strcmp("nul", filename) || !strcmp("/dev/null", filename))
724 return 0;
725 if (xutftowcs_path(wfilename, filename) < 0)
726 return -1;
727 /* X_OK is not supported by the MSVCRT version */
728 return _waccess(wfilename, mode & ~X_OK);
729 }
730
731 int mingw_chdir(const char *dirname)
732 {
733 wchar_t wdirname[MAX_PATH];
734 if (xutftowcs_path(wdirname, dirname) < 0)
735 return -1;
736 return _wchdir(wdirname);
737 }
738
739 int mingw_chmod(const char *filename, int mode)
740 {
741 wchar_t wfilename[MAX_PATH];
742 if (xutftowcs_path(wfilename, filename) < 0)
743 return -1;
744 return _wchmod(wfilename, mode);
745 }
746
747 /*
748 * The unit of FILETIME is 100-nanoseconds since January 1, 1601, UTC.
749 * Returns the 100-nanoseconds ("hekto nanoseconds") since the epoch.
750 */
751 static inline long long filetime_to_hnsec(const FILETIME *ft)
752 {
753 long long winTime = ((long long)ft->dwHighDateTime << 32) + ft->dwLowDateTime;
754 /* Windows to Unix Epoch conversion */
755 return winTime - 116444736000000000LL;
756 }
757
758 static inline void filetime_to_timespec(const FILETIME *ft, struct timespec *ts)
759 {
760 long long hnsec = filetime_to_hnsec(ft);
761 ts->tv_sec = (time_t)(hnsec / 10000000);
762 ts->tv_nsec = (hnsec % 10000000) * 100;
763 }
764
765 /**
766 * Verifies that safe_create_leading_directories() would succeed.
767 */
768 static int has_valid_directory_prefix(wchar_t *wfilename)
769 {
770 int n = wcslen(wfilename);
771
772 while (n > 0) {
773 wchar_t c = wfilename[--n];
774 DWORD attributes;
775
776 if (!is_dir_sep(c))
777 continue;
778
779 wfilename[n] = L'\0';
780 attributes = GetFileAttributesW(wfilename);
781 wfilename[n] = c;
782 if (attributes &
783 (FILE_ATTRIBUTE_DIRECTORY | FILE_ATTRIBUTE_DEVICE))
784 return 1;
785 if (attributes == INVALID_FILE_ATTRIBUTES)
786 switch (GetLastError()) {
787 case ERROR_PATH_NOT_FOUND:
788 continue;
789 case ERROR_FILE_NOT_FOUND:
790 /* This implies parent directory exists. */
791 return 1;
792 }
793 return 0;
794 }
795 return 1;
796 }
797
798 /* We keep the do_lstat code in a separate function to avoid recursion.
799 * When a path ends with a slash, the stat will fail with ENOENT. In
800 * this case, we strip the trailing slashes and stat again.
801 *
802 * If follow is true then act like stat() and report on the link
803 * target. Otherwise report on the link itself.
804 */
805 static int do_lstat(int follow, const char *file_name, struct stat *buf)
806 {
807 WIN32_FILE_ATTRIBUTE_DATA fdata;
808 wchar_t wfilename[MAX_PATH];
809 if (xutftowcs_path(wfilename, file_name) < 0)
810 return -1;
811
812 if (GetFileAttributesExW(wfilename, GetFileExInfoStandard, &fdata)) {
813 buf->st_ino = 0;
814 buf->st_gid = 0;
815 buf->st_uid = 0;
816 buf->st_nlink = 1;
817 buf->st_mode = file_attr_to_st_mode(fdata.dwFileAttributes);
818 buf->st_size = fdata.nFileSizeLow |
819 (((off_t)fdata.nFileSizeHigh)<<32);
820 buf->st_dev = buf->st_rdev = 0; /* not used by Git */
821 filetime_to_timespec(&(fdata.ftLastAccessTime), &(buf->st_atim));
822 filetime_to_timespec(&(fdata.ftLastWriteTime), &(buf->st_mtim));
823 filetime_to_timespec(&(fdata.ftCreationTime), &(buf->st_ctim));
824 if (fdata.dwFileAttributes & FILE_ATTRIBUTE_REPARSE_POINT) {
825 WIN32_FIND_DATAW findbuf;
826 HANDLE handle = FindFirstFileW(wfilename, &findbuf);
827 if (handle != INVALID_HANDLE_VALUE) {
828 if ((findbuf.dwFileAttributes & FILE_ATTRIBUTE_REPARSE_POINT) &&
829 (findbuf.dwReserved0 == IO_REPARSE_TAG_SYMLINK)) {
830 if (follow) {
831 char buffer[MAXIMUM_REPARSE_DATA_BUFFER_SIZE];
832 buf->st_size = readlink(file_name, buffer, MAXIMUM_REPARSE_DATA_BUFFER_SIZE);
833 } else {
834 buf->st_mode = S_IFLNK;
835 }
836 buf->st_mode |= S_IREAD;
837 if (!(findbuf.dwFileAttributes & FILE_ATTRIBUTE_READONLY))
838 buf->st_mode |= S_IWRITE;
839 }
840 FindClose(handle);
841 }
842 }
843 return 0;
844 }
845 switch (GetLastError()) {
846 case ERROR_ACCESS_DENIED:
847 case ERROR_SHARING_VIOLATION:
848 case ERROR_LOCK_VIOLATION:
849 case ERROR_SHARING_BUFFER_EXCEEDED:
850 errno = EACCES;
851 break;
852 case ERROR_BUFFER_OVERFLOW:
853 errno = ENAMETOOLONG;
854 break;
855 case ERROR_NOT_ENOUGH_MEMORY:
856 errno = ENOMEM;
857 break;
858 case ERROR_PATH_NOT_FOUND:
859 if (!has_valid_directory_prefix(wfilename)) {
860 errno = ENOTDIR;
861 break;
862 }
863 /* fallthru */
864 default:
865 errno = ENOENT;
866 break;
867 }
868 return -1;
869 }
870
871 /* We provide our own lstat/fstat functions, since the provided
872 * lstat/fstat functions are so slow. These stat functions are
873 * tailored for Git's usage (read: fast), and are not meant to be
874 * complete. Note that Git stat()s are redirected to mingw_lstat()
875 * too, since Windows doesn't really handle symlinks that well.
876 */
877 static int do_stat_internal(int follow, const char *file_name, struct stat *buf)
878 {
879 int namelen;
880 char alt_name[PATH_MAX];
881
882 if (!do_lstat(follow, file_name, buf))
883 return 0;
884
885 /* if file_name ended in a '/', Windows returned ENOENT;
886 * try again without trailing slashes
887 */
888 if (errno != ENOENT)
889 return -1;
890
891 namelen = strlen(file_name);
892 if (namelen && file_name[namelen-1] != '/')
893 return -1;
894 while (namelen && file_name[namelen-1] == '/')
895 --namelen;
896 if (!namelen || namelen >= PATH_MAX)
897 return -1;
898
899 memcpy(alt_name, file_name, namelen);
900 alt_name[namelen] = 0;
901 return do_lstat(follow, alt_name, buf);
902 }
903
904 static int get_file_info_by_handle(HANDLE hnd, struct stat *buf)
905 {
906 BY_HANDLE_FILE_INFORMATION fdata;
907
908 if (!GetFileInformationByHandle(hnd, &fdata)) {
909 errno = err_win_to_posix(GetLastError());
910 return -1;
911 }
912
913 buf->st_ino = 0;
914 buf->st_gid = 0;
915 buf->st_uid = 0;
916 buf->st_nlink = 1;
917 buf->st_mode = file_attr_to_st_mode(fdata.dwFileAttributes);
918 buf->st_size = fdata.nFileSizeLow |
919 (((off_t)fdata.nFileSizeHigh)<<32);
920 buf->st_dev = buf->st_rdev = 0; /* not used by Git */
921 filetime_to_timespec(&(fdata.ftLastAccessTime), &(buf->st_atim));
922 filetime_to_timespec(&(fdata.ftLastWriteTime), &(buf->st_mtim));
923 filetime_to_timespec(&(fdata.ftCreationTime), &(buf->st_ctim));
924 return 0;
925 }
926
927 int mingw_lstat(const char *file_name, struct stat *buf)
928 {
929 return do_stat_internal(0, file_name, buf);
930 }
931 int mingw_stat(const char *file_name, struct stat *buf)
932 {
933 return do_stat_internal(1, file_name, buf);
934 }
935
936 int mingw_fstat(int fd, struct stat *buf)
937 {
938 HANDLE fh = (HANDLE)_get_osfhandle(fd);
939 DWORD avail, type = GetFileType(fh) & ~FILE_TYPE_REMOTE;
940
941 switch (type) {
942 case FILE_TYPE_DISK:
943 return get_file_info_by_handle(fh, buf);
944
945 case FILE_TYPE_CHAR:
946 case FILE_TYPE_PIPE:
947 /* initialize stat fields */
948 memset(buf, 0, sizeof(*buf));
949 buf->st_nlink = 1;
950
951 if (type == FILE_TYPE_CHAR) {
952 buf->st_mode = _S_IFCHR;
953 } else {
954 buf->st_mode = _S_IFIFO;
955 if (PeekNamedPipe(fh, NULL, 0, NULL, &avail, NULL))
956 buf->st_size = avail;
957 }
958 return 0;
959
960 default:
961 errno = EBADF;
962 return -1;
963 }
964 }
965
966 static inline void time_t_to_filetime(time_t t, FILETIME *ft)
967 {
968 long long winTime = t * 10000000LL + 116444736000000000LL;
969 ft->dwLowDateTime = winTime;
970 ft->dwHighDateTime = winTime >> 32;
971 }
972
973 int mingw_utime (const char *file_name, const struct utimbuf *times)
974 {
975 FILETIME mft, aft;
976 int rc;
977 DWORD attrs;
978 wchar_t wfilename[MAX_PATH];
979 HANDLE osfilehandle;
980
981 if (xutftowcs_path(wfilename, file_name) < 0)
982 return -1;
983
984 /* must have write permission */
985 attrs = GetFileAttributesW(wfilename);
986 if (attrs != INVALID_FILE_ATTRIBUTES &&
987 (attrs & FILE_ATTRIBUTE_READONLY)) {
988 /* ignore errors here; open() will report them */
989 SetFileAttributesW(wfilename, attrs & ~FILE_ATTRIBUTE_READONLY);
990 }
991
992 osfilehandle = CreateFileW(wfilename,
993 FILE_WRITE_ATTRIBUTES,
994 0 /*FileShare.None*/,
995 NULL,
996 OPEN_EXISTING,
997 (attrs != INVALID_FILE_ATTRIBUTES &&
998 (attrs & FILE_ATTRIBUTE_DIRECTORY)) ?
999 FILE_FLAG_BACKUP_SEMANTICS : 0,
1000 NULL);
1001 if (osfilehandle == INVALID_HANDLE_VALUE) {
1002 errno = err_win_to_posix(GetLastError());
1003 rc = -1;
1004 goto revert_attrs;
1005 }
1006
1007 if (times) {
1008 time_t_to_filetime(times->modtime, &mft);
1009 time_t_to_filetime(times->actime, &aft);
1010 } else {
1011 GetSystemTimeAsFileTime(&mft);
1012 aft = mft;
1013 }
1014
1015 if (!SetFileTime(osfilehandle, NULL, &aft, &mft)) {
1016 errno = EINVAL;
1017 rc = -1;
1018 } else
1019 rc = 0;
1020
1021 if (osfilehandle != INVALID_HANDLE_VALUE)
1022 CloseHandle(osfilehandle);
1023
1024 revert_attrs:
1025 if (attrs != INVALID_FILE_ATTRIBUTES &&
1026 (attrs & FILE_ATTRIBUTE_READONLY)) {
1027 /* ignore errors again */
1028 SetFileAttributesW(wfilename, attrs);
1029 }
1030 return rc;
1031 }
1032
1033 #undef strftime
1034 size_t mingw_strftime(char *s, size_t max,
1035 const char *format, const struct tm *tm)
1036 {
1037 /* a pointer to the original strftime in case we can't find the UCRT version */
1038 static size_t (*fallback)(char *, size_t, const char *, const struct tm *) = strftime;
1039 size_t ret;
1040 DECLARE_PROC_ADDR(ucrtbase.dll, size_t, __cdecl, strftime, char *, size_t,
1041 const char *, const struct tm *);
1042
1043 if (INIT_PROC_ADDR(strftime))
1044 ret = strftime(s, max, format, tm);
1045 else
1046 ret = fallback(s, max, format, tm);
1047
1048 if (!ret && errno == EINVAL)
1049 die("invalid strftime format: '%s'", format);
1050 return ret;
1051 }
1052
1053 unsigned int sleep (unsigned int seconds)
1054 {
1055 Sleep(seconds*1000);
1056 return 0;
1057 }
1058
1059 char *mingw_mktemp(char *template)
1060 {
1061 wchar_t wtemplate[MAX_PATH];
1062 if (xutftowcs_path(wtemplate, template) < 0)
1063 return NULL;
1064 if (!_wmktemp(wtemplate))
1065 return NULL;
1066 if (xwcstoutf(template, wtemplate, strlen(template) + 1) < 0)
1067 return NULL;
1068 return template;
1069 }
1070
1071 int mkstemp(char *template)
1072 {
1073 return git_mkstemp_mode(template, 0600);
1074 }
1075
1076 int gettimeofday(struct timeval *tv, void *tz)
1077 {
1078 FILETIME ft;
1079 long long hnsec;
1080
1081 GetSystemTimeAsFileTime(&ft);
1082 hnsec = filetime_to_hnsec(&ft);
1083 tv->tv_sec = hnsec / 10000000;
1084 tv->tv_usec = (hnsec % 10000000) / 10;
1085 return 0;
1086 }
1087
1088 int pipe(int filedes[2])
1089 {
1090 HANDLE h[2];
1091
1092 /* this creates non-inheritable handles */
1093 if (!CreatePipe(&h[0], &h[1], NULL, 8192)) {
1094 errno = err_win_to_posix(GetLastError());
1095 return -1;
1096 }
1097 filedes[0] = _open_osfhandle(HCAST(int, h[0]), O_NOINHERIT);
1098 if (filedes[0] < 0) {
1099 CloseHandle(h[0]);
1100 CloseHandle(h[1]);
1101 return -1;
1102 }
1103 filedes[1] = _open_osfhandle(HCAST(int, h[1]), O_NOINHERIT);
1104 if (filedes[1] < 0) {
1105 close(filedes[0]);
1106 CloseHandle(h[1]);
1107 return -1;
1108 }
1109 return 0;
1110 }
1111
1112 #ifndef __MINGW64__
1113 struct tm *gmtime_r(const time_t *timep, struct tm *result)
1114 {
1115 if (gmtime_s(result, timep) == 0)
1116 return result;
1117 return NULL;
1118 }
1119
1120 struct tm *localtime_r(const time_t *timep, struct tm *result)
1121 {
1122 if (localtime_s(result, timep) == 0)
1123 return result;
1124 return NULL;
1125 }
1126 #endif
1127
1128 char *mingw_getcwd(char *pointer, int len)
1129 {
1130 wchar_t cwd[MAX_PATH], wpointer[MAX_PATH];
1131 DWORD ret = GetCurrentDirectoryW(ARRAY_SIZE(cwd), cwd);
1132
1133 if (!ret || ret >= ARRAY_SIZE(cwd)) {
1134 errno = ret ? ENAMETOOLONG : err_win_to_posix(GetLastError());
1135 return NULL;
1136 }
1137 ret = GetLongPathNameW(cwd, wpointer, ARRAY_SIZE(wpointer));
1138 if (!ret && GetLastError() == ERROR_ACCESS_DENIED) {
1139 HANDLE hnd = CreateFileW(cwd, 0,
1140 FILE_SHARE_READ | FILE_SHARE_WRITE | FILE_SHARE_DELETE, NULL,
1141 OPEN_EXISTING, FILE_FLAG_BACKUP_SEMANTICS, NULL);
1142 if (hnd == INVALID_HANDLE_VALUE)
1143 return NULL;
1144 ret = GetFinalPathNameByHandleW(hnd, wpointer, ARRAY_SIZE(wpointer), 0);
1145 CloseHandle(hnd);
1146 if (!ret || ret >= ARRAY_SIZE(wpointer))
1147 return NULL;
1148 if (xwcstoutf(pointer, normalize_ntpath(wpointer), len) < 0)
1149 return NULL;
1150 return pointer;
1151 }
1152 if (!ret || ret >= ARRAY_SIZE(wpointer))
1153 return NULL;
1154 if (GetFileAttributesW(wpointer) == INVALID_FILE_ATTRIBUTES) {
1155 errno = ENOENT;
1156 return NULL;
1157 }
1158 if (xwcstoutf(pointer, wpointer, len) < 0)
1159 return NULL;
1160 convert_slashes(pointer);
1161 return pointer;
1162 }
1163
1164 /*
1165 * See "Parsing C++ Command-Line Arguments" at Microsoft's Docs:
1166 * https://docs.microsoft.com/en-us/cpp/cpp/parsing-cpp-command-line-arguments
1167 */
1168 static const char *quote_arg_msvc(const char *arg)
1169 {
1170 /* count chars to quote */
1171 int len = 0, n = 0;
1172 int force_quotes = 0;
1173 char *q, *d;
1174 const char *p = arg;
1175 if (!*p) force_quotes = 1;
1176 while (*p) {
1177 if (isspace(*p) || *p == '*' || *p == '?' || *p == '{' || *p == '\'')
1178 force_quotes = 1;
1179 else if (*p == '"')
1180 n++;
1181 else if (*p == '\\') {
1182 int count = 0;
1183 while (*p == '\\') {
1184 count++;
1185 p++;
1186 len++;
1187 }
1188 if (*p == '"' || !*p)
1189 n += count*2 + 1;
1190 continue;
1191 }
1192 len++;
1193 p++;
1194 }
1195 if (!force_quotes && n == 0)
1196 return arg;
1197
1198 /* insert \ where necessary */
1199 d = q = xmalloc(st_add3(len, n, 3));
1200 *d++ = '"';
1201 while (*arg) {
1202 if (*arg == '"')
1203 *d++ = '\\';
1204 else if (*arg == '\\') {
1205 int count = 0;
1206 while (*arg == '\\') {
1207 count++;
1208 *d++ = *arg++;
1209 }
1210 if (*arg == '"' || !*arg) {
1211 while (count-- > 0)
1212 *d++ = '\\';
1213 /* don't escape the surrounding end quote */
1214 if (!*arg)
1215 break;
1216 *d++ = '\\';
1217 }
1218 }
1219 *d++ = *arg++;
1220 }
1221 *d++ = '"';
1222 *d++ = '\0';
1223 return q;
1224 }
1225
1226 #include "quote.h"
1227
1228 static const char *quote_arg_msys2(const char *arg)
1229 {
1230 struct strbuf buf = STRBUF_INIT;
1231 const char *p2 = arg, *p;
1232
1233 for (p = arg; *p; p++) {
1234 int ws = isspace(*p);
1235 if (!ws && *p != '\\' && *p != '"' && *p != '{' && *p != '\'' &&
1236 *p != '?' && *p != '*' && *p != '~')
1237 continue;
1238 if (!buf.len)
1239 strbuf_addch(&buf, '"');
1240 if (p != p2)
1241 strbuf_add(&buf, p2, p - p2);
1242 if (*p == '\\' || *p == '"')
1243 strbuf_addch(&buf, '\\');
1244 p2 = p;
1245 }
1246
1247 if (p == arg)
1248 strbuf_addch(&buf, '"');
1249 else if (!buf.len)
1250 return arg;
1251 else
1252 strbuf_add(&buf, p2, p - p2);
1253
1254 strbuf_addch(&buf, '"');
1255 return strbuf_detach(&buf, 0);
1256 }
1257
1258 static const char *parse_interpreter(const char *cmd)
1259 {
1260 static char buf[100];
1261 char *p, *opt;
1262 int n, fd;
1263
1264 /* don't even try a .exe */
1265 n = strlen(cmd);
1266 if (n >= 4 && !strcasecmp(cmd+n-4, ".exe"))
1267 return NULL;
1268
1269 fd = open(cmd, O_RDONLY);
1270 if (fd < 0)
1271 return NULL;
1272 n = read(fd, buf, sizeof(buf)-1);
1273 close(fd);
1274 if (n < 4) /* at least '#!/x' and not error */
1275 return NULL;
1276
1277 if (buf[0] != '#' || buf[1] != '!')
1278 return NULL;
1279 buf[n] = '\0';
1280 p = buf + strcspn(buf, "\r\n");
1281 if (!*p)
1282 return NULL;
1283
1284 *p = '\0';
1285 if (!(p = strrchr(buf+2, '/')) && !(p = strrchr(buf+2, '\\')))
1286 return NULL;
1287 /* strip options */
1288 if ((opt = strchr(p+1, ' ')))
1289 *opt = '\0';
1290 return p+1;
1291 }
1292
1293 /*
1294 * exe_only means that we only want to detect .exe files, but not scripts
1295 * (which do not have an extension)
1296 */
1297 static char *lookup_prog(const char *dir, int dirlen, const char *cmd,
1298 int isexe, int exe_only)
1299 {
1300 char path[MAX_PATH];
1301 wchar_t wpath[MAX_PATH];
1302 snprintf(path, sizeof(path), "%.*s\\%s.exe", dirlen, dir, cmd);
1303
1304 if (xutftowcs_path(wpath, path) < 0)
1305 return NULL;
1306
1307 if (!isexe && _waccess(wpath, F_OK) == 0)
1308 return xstrdup(path);
1309 wpath[wcslen(wpath)-4] = '\0';
1310 if ((!exe_only || isexe) && _waccess(wpath, F_OK) == 0) {
1311 if (!(GetFileAttributesW(wpath) & FILE_ATTRIBUTE_DIRECTORY)) {
1312 path[strlen(path)-4] = '\0';
1313 return xstrdup(path);
1314 }
1315 }
1316 return NULL;
1317 }
1318
1319 /*
1320 * Determines the absolute path of cmd using the split path in path.
1321 * If cmd contains a slash or backslash, no lookup is performed.
1322 */
1323 static char *path_lookup(const char *cmd, int exe_only)
1324 {
1325 const char *path;
1326 char *prog = NULL;
1327 int len = strlen(cmd);
1328 int isexe = len >= 4 && !strcasecmp(cmd+len-4, ".exe");
1329
1330 if (strpbrk(cmd, "/\\"))
1331 return xstrdup(cmd);
1332
1333 path = mingw_getenv("PATH");
1334 if (!path)
1335 return NULL;
1336
1337 while (!prog) {
1338 const char *sep = strchrnul(path, ';');
1339 int dirlen = sep - path;
1340 if (dirlen)
1341 prog = lookup_prog(path, dirlen, cmd, isexe, exe_only);
1342 if (!*sep)
1343 break;
1344 path = sep + 1;
1345 }
1346
1347 return prog;
1348 }
1349
1350 static const wchar_t *wcschrnul(const wchar_t *s, wchar_t c)
1351 {
1352 while (*s && *s != c)
1353 s++;
1354 return s;
1355 }
1356
1357 /* Compare only keys */
1358 static int wenvcmp(const void *a, const void *b)
1359 {
1360 wchar_t *p = *(wchar_t **)a, *q = *(wchar_t **)b;
1361 size_t p_len, q_len;
1362
1363 /* Find the keys */
1364 p_len = wcschrnul(p, L'=') - p;
1365 q_len = wcschrnul(q, L'=') - q;
1366
1367 /* If the length differs, include the shorter key's NUL */
1368 if (p_len < q_len)
1369 p_len++;
1370 else if (p_len > q_len)
1371 p_len = q_len + 1;
1372
1373 return _wcsnicmp(p, q, p_len);
1374 }
1375
1376 /*
1377 * Build an environment block combining the inherited environment
1378 * merged with the given list of settings.
1379 *
1380 * Values of the form "KEY=VALUE" in deltaenv override inherited values.
1381 * Values of the form "KEY" in deltaenv delete inherited values.
1382 *
1383 * Multiple entries in deltaenv for the same key are explicitly allowed.
1384 *
1385 * We return a contiguous block of UNICODE strings with a final trailing
1386 * zero word.
1387 */
1388 static wchar_t *make_environment_block(char **deltaenv)
1389 {
1390 wchar_t *wenv = GetEnvironmentStringsW(), *wdeltaenv, *result, *p;
1391 size_t wlen, s, delta_size, size;
1392
1393 wchar_t **array = NULL;
1394 size_t alloc = 0, nr = 0, i;
1395
1396 size = 1; /* for extra NUL at the end */
1397
1398 /* If there is no deltaenv to apply, simply return a copy. */
1399 if (!deltaenv || !*deltaenv) {
1400 for (p = wenv; p && *p; ) {
1401 size_t s = wcslen(p) + 1;
1402 size += s;
1403 p += s;
1404 }
1405
1406 DUP_ARRAY(result, wenv, size);
1407 FreeEnvironmentStringsW(wenv);
1408 return result;
1409 }
1410
1411 /*
1412 * If there is a deltaenv, let's accumulate all keys into `array`,
1413 * sort them using the stable git_stable_qsort() and then copy,
1414 * skipping duplicate keys
1415 */
1416 for (p = wenv; p && *p; ) {
1417 ALLOC_GROW(array, nr + 1, alloc);
1418 s = wcslen(p) + 1;
1419 array[nr++] = p;
1420 p += s;
1421 size += s;
1422 }
1423
1424 /* (over-)assess size needed for wchar version of deltaenv */
1425 for (delta_size = 0, i = 0; deltaenv[i]; i++)
1426 delta_size += strlen(deltaenv[i]) * 2 + 1;
1427 ALLOC_ARRAY(wdeltaenv, delta_size);
1428
1429 /* convert the deltaenv, appending to array */
1430 for (i = 0, p = wdeltaenv; deltaenv[i]; i++) {
1431 ALLOC_GROW(array, nr + 1, alloc);
1432 wlen = xutftowcs(p, deltaenv[i], wdeltaenv + delta_size - p);
1433 array[nr++] = p;
1434 p += wlen + 1;
1435 }
1436
1437 git_stable_qsort(array, nr, sizeof(*array), wenvcmp);
1438 ALLOC_ARRAY(result, size + delta_size);
1439
1440 for (p = result, i = 0; i < nr; i++) {
1441 /* Skip any duplicate keys; last one wins */
1442 while (i + 1 < nr && !wenvcmp(array + i, array + i + 1))
1443 i++;
1444
1445 /* Skip "to delete" entry */
1446 if (!wcschr(array[i], L'='))
1447 continue;
1448
1449 size = wcslen(array[i]) + 1;
1450 COPY_ARRAY(p, array[i], size);
1451 p += size;
1452 }
1453 *p = L'\0';
1454
1455 free(array);
1456 free(wdeltaenv);
1457 FreeEnvironmentStringsW(wenv);
1458 return result;
1459 }
1460
1461 static void do_unset_environment_variables(void)
1462 {
1463 static int done;
1464 char *p = unset_environment_variables;
1465
1466 if (done || !p)
1467 return;
1468 done = 1;
1469
1470 for (;;) {
1471 char *comma = strchr(p, ',');
1472
1473 if (comma)
1474 *comma = '\0';
1475 unsetenv(p);
1476 if (!comma)
1477 break;
1478 p = comma + 1;
1479 }
1480 }
1481
1482 struct pinfo_t {
1483 struct pinfo_t *next;
1484 pid_t pid;
1485 HANDLE proc;
1486 };
1487 static struct pinfo_t *pinfo = NULL;
1488 CRITICAL_SECTION pinfo_cs;
1489
1490 /* Used to match and chomp off path components */
1491 static inline int match_last_path_component(const char *path, size_t *len,
1492 const char *component)
1493 {
1494 size_t component_len = strlen(component);
1495 if (*len < component_len + 1 ||
1496 !is_dir_sep(path[*len - component_len - 1]) ||
1497 fspathncmp(path + *len - component_len, component, component_len))
1498 return 0;
1499 *len -= component_len + 1;
1500 /* chomp off repeated dir separators */
1501 while (*len > 0 && is_dir_sep(path[*len - 1]))
1502 (*len)--;
1503 return 1;
1504 }
1505
1506 static int is_msys2_sh(const char *cmd)
1507 {
1508 if (!cmd)
1509 return 0;
1510
1511 if (!strcmp(cmd, "sh")) {
1512 static int ret = -1;
1513 char *p;
1514
1515 if (ret >= 0)
1516 return ret;
1517
1518 p = path_lookup(cmd, 0);
1519 if (!p)
1520 ret = 0;
1521 else {
1522 size_t len = strlen(p);
1523
1524 ret = match_last_path_component(p, &len, "sh.exe") &&
1525 match_last_path_component(p, &len, "bin") &&
1526 match_last_path_component(p, &len, "usr");
1527 free(p);
1528 }
1529 return ret;
1530 }
1531
1532 if (ends_with(cmd, "\\sh.exe")) {
1533 static char *sh;
1534
1535 if (!sh)
1536 sh = path_lookup("sh", 0);
1537
1538 return !fspathcmp(cmd, sh);
1539 }
1540
1541 return 0;
1542 }
1543
1544 static pid_t mingw_spawnve_fd(const char *cmd, const char **argv, char **deltaenv,
1545 const char *dir,
1546 int prepend_cmd, int fhin, int fhout, int fherr)
1547 {
1548 static int restrict_handle_inheritance = -1;
1549 STARTUPINFOEXW si;
1550 PROCESS_INFORMATION pi;
1551 LPPROC_THREAD_ATTRIBUTE_LIST attr_list = NULL;
1552 HANDLE stdhandles[3];
1553 DWORD stdhandles_count = 0;
1554 SIZE_T size;
1555 struct strbuf args;
1556 wchar_t wcmd[MAX_PATH], wdir[MAX_PATH], *wargs, *wenvblk = NULL;
1557 unsigned flags = CREATE_UNICODE_ENVIRONMENT;
1558 BOOL ret;
1559 HANDLE cons;
1560 const char *(*quote_arg)(const char *arg) =
1561 is_msys2_sh(cmd ? cmd : *argv) ?
1562 quote_arg_msys2 : quote_arg_msvc;
1563 const char *strace_env;
1564
1565 /* Make sure to override previous errors, if any */
1566 errno = 0;
1567
1568 if (restrict_handle_inheritance < 0)
1569 restrict_handle_inheritance = core_restrict_inherited_handles;
1570 /*
1571 * The following code to restrict which handles are inherited seems
1572 * to work properly only on Windows 7 and later, so let's disable it
1573 * on Windows Vista and 2008.
1574 */
1575 if (restrict_handle_inheritance < 0)
1576 restrict_handle_inheritance = GetVersion() >> 16 >= 7601;
1577
1578 do_unset_environment_variables();
1579
1580 /* Determine whether or not we are associated to a console */
1581 cons = CreateFileW(L"CONOUT$", GENERIC_WRITE,
1582 FILE_SHARE_WRITE, NULL, OPEN_EXISTING,
1583 FILE_ATTRIBUTE_NORMAL, NULL);
1584 if (cons == INVALID_HANDLE_VALUE) {
1585 /* There is no console associated with this process.
1586 * Since the child is a console process, Windows
1587 * would normally create a console window. But
1588 * since we'll be redirecting std streams, we do
1589 * not need the console.
1590 * It is necessary to use DETACHED_PROCESS
1591 * instead of CREATE_NO_WINDOW to make ssh
1592 * recognize that it has no console.
1593 */
1594 flags |= DETACHED_PROCESS;
1595 } else {
1596 /* There is already a console. If we specified
1597 * DETACHED_PROCESS here, too, Windows would
1598 * disassociate the child from the console.
1599 * The same is true for CREATE_NO_WINDOW.
1600 * Go figure!
1601 */
1602 CloseHandle(cons);
1603 }
1604 memset(&si, 0, sizeof(si));
1605 si.StartupInfo.cb = sizeof(si);
1606 si.StartupInfo.hStdInput = winansi_get_osfhandle(fhin);
1607 si.StartupInfo.hStdOutput = winansi_get_osfhandle(fhout);
1608 si.StartupInfo.hStdError = winansi_get_osfhandle(fherr);
1609
1610 /* The list of handles cannot contain duplicates */
1611 if (si.StartupInfo.hStdInput != INVALID_HANDLE_VALUE)
1612 stdhandles[stdhandles_count++] = si.StartupInfo.hStdInput;
1613 if (si.StartupInfo.hStdOutput != INVALID_HANDLE_VALUE &&
1614 si.StartupInfo.hStdOutput != si.StartupInfo.hStdInput)
1615 stdhandles[stdhandles_count++] = si.StartupInfo.hStdOutput;
1616 if (si.StartupInfo.hStdError != INVALID_HANDLE_VALUE &&
1617 si.StartupInfo.hStdError != si.StartupInfo.hStdInput &&
1618 si.StartupInfo.hStdError != si.StartupInfo.hStdOutput)
1619 stdhandles[stdhandles_count++] = si.StartupInfo.hStdError;
1620 if (stdhandles_count)
1621 si.StartupInfo.dwFlags |= STARTF_USESTDHANDLES;
1622
1623 if (*argv && !strcmp(cmd, *argv))
1624 wcmd[0] = L'\0';
1625 else if (xutftowcs_path(wcmd, cmd) < 0)
1626 return -1;
1627 if (dir && xutftowcs_path(wdir, dir) < 0)
1628 return -1;
1629
1630 /* concatenate argv, quoting args as we go */
1631 strbuf_init(&args, 0);
1632 if (prepend_cmd) {
1633 char *quoted = (char *)quote_arg(cmd);
1634 strbuf_addstr(&args, quoted);
1635 if (quoted != cmd)
1636 free(quoted);
1637 }
1638 for (; *argv; argv++) {
1639 char *quoted = (char *)quote_arg(*argv);
1640 if (*args.buf)
1641 strbuf_addch(&args, ' ');
1642 strbuf_addstr(&args, quoted);
1643 if (quoted != *argv)
1644 free(quoted);
1645 }
1646
1647 strace_env = getenv("GIT_STRACE_COMMANDS");
1648 if (strace_env) {
1649 char *p = path_lookup("strace.exe", 1);
1650 if (!p)
1651 return error("strace not found!");
1652 if (xutftowcs_path(wcmd, p) < 0) {
1653 free(p);
1654 return -1;
1655 }
1656 free(p);
1657 if (!strcmp("1", strace_env) ||
1658 !strcasecmp("yes", strace_env) ||
1659 !strcasecmp("true", strace_env))
1660 strbuf_insert(&args, 0, "strace ", 7);
1661 else {
1662 const char *quoted = quote_arg(strace_env);
1663 struct strbuf buf = STRBUF_INIT;
1664 strbuf_addf(&buf, "strace -o %s ", quoted);
1665 if (quoted != strace_env)
1666 free((char *)quoted);
1667 strbuf_insert(&args, 0, buf.buf, buf.len);
1668 strbuf_release(&buf);
1669 }
1670 }
1671
1672 ALLOC_ARRAY(wargs, st_add(st_mult(2, args.len), 1));
1673 xutftowcs(wargs, args.buf, 2 * args.len + 1);
1674 strbuf_release(&args);
1675
1676 wenvblk = make_environment_block(deltaenv);
1677
1678 memset(&pi, 0, sizeof(pi));
1679 if (restrict_handle_inheritance && stdhandles_count &&
1680 (InitializeProcThreadAttributeList(NULL, 1, 0, &size) ||
1681 GetLastError() == ERROR_INSUFFICIENT_BUFFER) &&
1682 (attr_list = (LPPROC_THREAD_ATTRIBUTE_LIST)
1683 (HeapAlloc(GetProcessHeap(), 0, size))) &&
1684 InitializeProcThreadAttributeList(attr_list, 1, 0, &size) &&
1685 UpdateProcThreadAttribute(attr_list, 0,
1686 PROC_THREAD_ATTRIBUTE_HANDLE_LIST,
1687 stdhandles,
1688 stdhandles_count * sizeof(HANDLE),
1689 NULL, NULL)) {
1690 si.lpAttributeList = attr_list;
1691 flags |= EXTENDED_STARTUPINFO_PRESENT;
1692 }
1693
1694 ret = CreateProcessW(*wcmd ? wcmd : NULL, wargs, NULL, NULL,
1695 stdhandles_count ? TRUE : FALSE,
1696 flags, wenvblk, dir ? wdir : NULL,
1697 &si.StartupInfo, &pi);
1698
1699 /*
1700 * On Windows 2008 R2, it seems that specifying certain types of handles
1701 * (such as FILE_TYPE_CHAR or FILE_TYPE_PIPE) will always produce an
1702 * error. Rather than playing finicky and fragile games, let's just try
1703 * to detect this situation and simply try again without restricting any
1704 * handle inheritance. This is still better than failing to create
1705 * processes.
1706 */
1707 if (!ret && restrict_handle_inheritance && stdhandles_count) {
1708 DWORD err = GetLastError();
1709 struct strbuf buf = STRBUF_INIT;
1710
1711 if (err != ERROR_NO_SYSTEM_RESOURCES &&
1712 /*
1713 * On Windows 7 and earlier, handles on pipes and character
1714 * devices are inherited automatically, and cannot be
1715 * specified in the thread handle list. Rather than trying
1716 * to catch each and every corner case (and running the
1717 * chance of *still* forgetting a few), let's just fall
1718 * back to creating the process without trying to limit the
1719 * handle inheritance.
1720 */
1721 !(err == ERROR_INVALID_PARAMETER &&
1722 GetVersion() >> 16 < 9200) &&
1723 !getenv("SUPPRESS_HANDLE_INHERITANCE_WARNING")) {
1724 DWORD fl = 0;
1725 int i;
1726
1727 setenv("SUPPRESS_HANDLE_INHERITANCE_WARNING", "1", 1);
1728
1729 for (i = 0; i < stdhandles_count; i++) {
1730 HANDLE h = stdhandles[i];
1731 strbuf_addf(&buf, "handle #%d: %p (type %lx, "
1732 "handle info (%d) %lx\n", i, h,
1733 GetFileType(h),
1734 GetHandleInformation(h, &fl),
1735 fl);
1736 }
1737 strbuf_addstr(&buf, "\nThis is a bug; please report it "
1738 "at\nhttps://github.com/git-for-windows/"
1739 "git/issues/new\n\n"
1740 "To suppress this warning, please set "
1741 "the environment variable\n\n"
1742 "\tSUPPRESS_HANDLE_INHERITANCE_WARNING=1"
1743 "\n");
1744 }
1745 restrict_handle_inheritance = 0;
1746 flags &= ~EXTENDED_STARTUPINFO_PRESENT;
1747 ret = CreateProcessW(*wcmd ? wcmd : NULL, wargs, NULL, NULL,
1748 TRUE, flags, wenvblk, dir ? wdir : NULL,
1749 &si.StartupInfo, &pi);
1750 if (!ret)
1751 errno = err_win_to_posix(GetLastError());
1752 if (ret && buf.len) {
1753 warning("failed to restrict file handles (%ld)\n\n%s",
1754 err, buf.buf);
1755 }
1756 strbuf_release(&buf);
1757 } else if (!ret)
1758 errno = err_win_to_posix(GetLastError());
1759
1760 if (si.lpAttributeList)
1761 DeleteProcThreadAttributeList(si.lpAttributeList);
1762 if (attr_list)
1763 HeapFree(GetProcessHeap(), 0, attr_list);
1764
1765 free(wenvblk);
1766 free(wargs);
1767
1768 if (!ret)
1769 return -1;
1770
1771 CloseHandle(pi.hThread);
1772
1773 /*
1774 * The process ID is the human-readable identifier of the process
1775 * that we want to present in log and error messages. The handle
1776 * is not useful for this purpose. But we cannot close it, either,
1777 * because it is not possible to turn a process ID into a process
1778 * handle after the process terminated.
1779 * Keep the handle in a list for waitpid.
1780 */
1781 EnterCriticalSection(&pinfo_cs);
1782 {
1783 struct pinfo_t *info = xmalloc(sizeof(struct pinfo_t));
1784 info->pid = pi.dwProcessId;
1785 info->proc = pi.hProcess;
1786 info->next = pinfo;
1787 pinfo = info;
1788 }
1789 LeaveCriticalSection(&pinfo_cs);
1790
1791 return (pid_t)pi.dwProcessId;
1792 }
1793
1794 static pid_t mingw_spawnv(const char *cmd, const char **argv, int prepend_cmd)
1795 {
1796 return mingw_spawnve_fd(cmd, argv, NULL, NULL, prepend_cmd, 0, 1, 2);
1797 }
1798
1799 pid_t mingw_spawnvpe(const char *cmd, const char **argv, char **deltaenv,
1800 const char *dir,
1801 int fhin, int fhout, int fherr)
1802 {
1803 pid_t pid;
1804 char *prog = path_lookup(cmd, 0);
1805
1806 if (!prog) {
1807 errno = ENOENT;
1808 pid = -1;
1809 }
1810 else {
1811 const char *interpr = parse_interpreter(prog);
1812
1813 if (interpr) {
1814 const char *argv0 = argv[0];
1815 char *iprog = path_lookup(interpr, 1);
1816 argv[0] = prog;
1817 if (!iprog) {
1818 errno = ENOENT;
1819 pid = -1;
1820 }
1821 else {
1822 pid = mingw_spawnve_fd(iprog, argv, deltaenv, dir, 1,
1823 fhin, fhout, fherr);
1824 free(iprog);
1825 }
1826 argv[0] = argv0;
1827 }
1828 else
1829 pid = mingw_spawnve_fd(prog, argv, deltaenv, dir, 0,
1830 fhin, fhout, fherr);
1831 free(prog);
1832 }
1833 return pid;
1834 }
1835
1836 static int try_shell_exec(const char *cmd, char *const *argv)
1837 {
1838 const char *interpr = parse_interpreter(cmd);
1839 char *prog;
1840 int pid = 0;
1841
1842 if (!interpr)
1843 return 0;
1844 prog = path_lookup(interpr, 1);
1845 if (prog) {
1846 int exec_id;
1847 int argc = 0;
1848 char **argv2;
1849 while (argv[argc]) argc++;
1850 ALLOC_ARRAY(argv2, argc + 1);
1851 argv2[0] = (char *)cmd; /* full path to the script file */
1852 COPY_ARRAY(&argv2[1], &argv[1], argc);
1853 exec_id = trace2_exec(prog, (const char **)argv2);
1854 pid = mingw_spawnv(prog, (const char **)argv2, 1);
1855 if (pid >= 0) {
1856 int status;
1857 if (waitpid(pid, &status, 0) < 0)
1858 status = 255;
1859 trace2_exec_result(exec_id, status);
1860 exit(status);
1861 }
1862 trace2_exec_result(exec_id, -1);
1863 pid = 1; /* indicate that we tried but failed */
1864 free(prog);
1865 free(argv2);
1866 }
1867 return pid;
1868 }
1869
1870 int mingw_execv(const char *cmd, char *const *argv)
1871 {
1872 /* check if git_command is a shell script */
1873 if (!try_shell_exec(cmd, argv)) {
1874 int pid, status;
1875 int exec_id;
1876
1877 exec_id = trace2_exec(cmd, (const char **)argv);
1878 pid = mingw_spawnv(cmd, (const char **)argv, 0);
1879 if (pid < 0) {
1880 trace2_exec_result(exec_id, -1);
1881 return -1;
1882 }
1883 if (waitpid(pid, &status, 0) < 0)
1884 status = 255;
1885 trace2_exec_result(exec_id, status);
1886 exit(status);
1887 }
1888 return -1;
1889 }
1890
1891 int mingw_execvp(const char *cmd, char *const *argv)
1892 {
1893 char *prog = path_lookup(cmd, 0);
1894
1895 if (prog) {
1896 mingw_execv(prog, argv);
1897 free(prog);
1898 } else
1899 errno = ENOENT;
1900
1901 return -1;
1902 }
1903
1904 int mingw_kill(pid_t pid, int sig)
1905 {
1906 if (pid > 0 && sig == SIGTERM) {
1907 HANDLE h = OpenProcess(PROCESS_TERMINATE, FALSE, pid);
1908
1909 if (TerminateProcess(h, -1)) {
1910 CloseHandle(h);
1911 return 0;
1912 }
1913
1914 errno = err_win_to_posix(GetLastError());
1915 CloseHandle(h);
1916 return -1;
1917 } else if (pid > 0 && sig == 0) {
1918 HANDLE h = OpenProcess(PROCESS_QUERY_INFORMATION, FALSE, pid);
1919 if (h) {
1920 CloseHandle(h);
1921 return 0;
1922 }
1923 }
1924
1925 errno = EINVAL;
1926 return -1;
1927 }
1928
1929 /*
1930 * UTF-8 versions of getenv(), putenv() and unsetenv().
1931 * Internally, they use the CRT's stock UNICODE routines
1932 * to avoid data loss.
1933 */
1934 char *mingw_getenv(const char *name)
1935 {
1936 #define GETENV_MAX_RETAIN 64
1937 static char *values[GETENV_MAX_RETAIN];
1938 static int value_counter;
1939 int len_key, len_value;
1940 wchar_t *w_key;
1941 char *value;
1942 wchar_t w_value[32768];
1943
1944 if (!name || !*name)
1945 return NULL;
1946
1947 len_key = strlen(name) + 1;
1948 /* We cannot use xcalloc() here because that uses getenv() itself */
1949 w_key = calloc(len_key, sizeof(wchar_t));
1950 if (!w_key)
1951 die("Out of memory, (tried to allocate %u wchar_t's)", len_key);
1952 xutftowcs(w_key, name, len_key);
1953 /* GetEnvironmentVariableW() only sets the last error upon failure */
1954 SetLastError(ERROR_SUCCESS);
1955 len_value = GetEnvironmentVariableW(w_key, w_value, ARRAY_SIZE(w_value));
1956 if (!len_value && GetLastError() == ERROR_ENVVAR_NOT_FOUND) {
1957 free(w_key);
1958 return NULL;
1959 }
1960 free(w_key);
1961
1962 len_value = len_value * 3 + 1;
1963 /* We cannot use xcalloc() here because that uses getenv() itself */
1964 value = calloc(len_value, sizeof(char));
1965 if (!value)
1966 die("Out of memory, (tried to allocate %u bytes)", len_value);
1967 xwcstoutf(value, w_value, len_value);
1968
1969 /*
1970 * We return `value` which is an allocated value and the caller is NOT
1971 * expecting to have to free it, so we keep a round-robin array,
1972 * invalidating the buffer after GETENV_MAX_RETAIN getenv() calls.
1973 */
1974 free(values[value_counter]);
1975 values[value_counter++] = value;
1976 if (value_counter >= ARRAY_SIZE(values))
1977 value_counter = 0;
1978
1979 return value;
1980 }
1981
1982 int mingw_putenv(const char *namevalue)
1983 {
1984 int size;
1985 wchar_t *wide, *equal;
1986 BOOL result;
1987
1988 if (!namevalue || !*namevalue)
1989 return 0;
1990
1991 size = strlen(namevalue) * 2 + 1;
1992 wide = calloc(size, sizeof(wchar_t));
1993 if (!wide)
1994 die("Out of memory, (tried to allocate %u wchar_t's)", size);
1995 xutftowcs(wide, namevalue, size);
1996 equal = wcschr(wide, L'=');
1997 if (!equal)
1998 result = SetEnvironmentVariableW(wide, NULL);
1999 else {
2000 *equal = L'\0';
2001 result = SetEnvironmentVariableW(wide, equal + 1);
2002 }
2003 free(wide);
2004
2005 if (!result)
2006 errno = err_win_to_posix(GetLastError());
2007
2008 return result ? 0 : -1;
2009 }
2010
2011 static void ensure_socket_initialization(void)
2012 {
2013 WSADATA wsa;
2014 static int initialized = 0;
2015
2016 if (initialized)
2017 return;
2018
2019 if (WSAStartup(MAKEWORD(2,2), &wsa))
2020 die("unable to initialize winsock subsystem, error %d",
2021 WSAGetLastError());
2022
2023 atexit((void(*)(void)) WSACleanup);
2024 initialized = 1;
2025 }
2026
2027 #undef gethostname
2028 int mingw_gethostname(char *name, int namelen)
2029 {
2030 ensure_socket_initialization();
2031 return gethostname(name, namelen);
2032 }
2033
2034 #undef gethostbyname
2035 struct hostent *mingw_gethostbyname(const char *host)
2036 {
2037 ensure_socket_initialization();
2038 return gethostbyname(host);
2039 }
2040
2041 #undef getaddrinfo
2042 int mingw_getaddrinfo(const char *node, const char *service,
2043 const struct addrinfo *hints, struct addrinfo **res)
2044 {
2045 ensure_socket_initialization();
2046 return getaddrinfo(node, service, hints, res);
2047 }
2048
2049 int mingw_socket(int domain, int type, int protocol)
2050 {
2051 int sockfd;
2052 SOCKET s;
2053
2054 ensure_socket_initialization();
2055 s = WSASocket(domain, type, protocol, NULL, 0, 0);
2056 if (s == INVALID_SOCKET) {
2057 /*
2058 * WSAGetLastError() values are regular BSD error codes
2059 * biased by WSABASEERR.
2060 * However, strerror() does not know about networking
2061 * specific errors, which are values beginning at 38 or so.
2062 * Therefore, we choose to leave the biased error code
2063 * in errno so that _if_ someone looks up the code somewhere,
2064 * then it is at least the number that are usually listed.
2065 */
2066 errno = WSAGetLastError();
2067 return -1;
2068 }
2069 /* convert into a file descriptor */
2070 if ((sockfd = _open_osfhandle(s, O_RDWR|O_BINARY)) < 0) {
2071 closesocket(s);
2072 return error("unable to make a socket file descriptor: %s",
2073 strerror(errno));
2074 }
2075 return sockfd;
2076 }
2077
2078 #undef connect
2079 int mingw_connect(int sockfd, struct sockaddr *sa, size_t sz)
2080 {
2081 SOCKET s = (SOCKET)_get_osfhandle(sockfd);
2082 return connect(s, sa, sz);
2083 }
2084
2085 #undef bind
2086 int mingw_bind(int sockfd, struct sockaddr *sa, size_t sz)
2087 {
2088 SOCKET s = (SOCKET)_get_osfhandle(sockfd);
2089 return bind(s, sa, sz);
2090 }
2091
2092 #undef setsockopt
2093 int mingw_setsockopt(int sockfd, int lvl, int optname, void *optval, int optlen)
2094 {
2095 SOCKET s = (SOCKET)_get_osfhandle(sockfd);
2096 return setsockopt(s, lvl, optname, (const char*)optval, optlen);
2097 }
2098
2099 #undef shutdown
2100 int mingw_shutdown(int sockfd, int how)
2101 {
2102 SOCKET s = (SOCKET)_get_osfhandle(sockfd);
2103 return shutdown(s, how);
2104 }
2105
2106 #undef listen
2107 int mingw_listen(int sockfd, int backlog)
2108 {
2109 SOCKET s = (SOCKET)_get_osfhandle(sockfd);
2110 return listen(s, backlog);
2111 }
2112
2113 #undef accept
2114 int mingw_accept(int sockfd1, struct sockaddr *sa, socklen_t *sz)
2115 {
2116 int sockfd2;
2117
2118 SOCKET s1 = (SOCKET)_get_osfhandle(sockfd1);
2119 SOCKET s2 = accept(s1, sa, sz);
2120
2121 /* convert into a file descriptor */
2122 if ((sockfd2 = _open_osfhandle(s2, O_RDWR|O_BINARY)) < 0) {
2123 int err = errno;
2124 closesocket(s2);
2125 return error("unable to make a socket file descriptor: %s",
2126 strerror(err));
2127 }
2128 return sockfd2;
2129 }
2130
2131 #undef rename
2132 int mingw_rename(const char *pold, const char *pnew)
2133 {
2134 DWORD attrs, gle;
2135 int tries = 0;
2136 wchar_t wpold[MAX_PATH], wpnew[MAX_PATH];
2137 if (xutftowcs_path(wpold, pold) < 0 || xutftowcs_path(wpnew, pnew) < 0)
2138 return -1;
2139
2140 /*
2141 * Try native rename() first to get errno right.
2142 * It is based on MoveFile(), which cannot overwrite existing files.
2143 */
2144 if (!_wrename(wpold, wpnew))
2145 return 0;
2146 if (errno != EEXIST)
2147 return -1;
2148 repeat:
2149 if (MoveFileExW(wpold, wpnew, MOVEFILE_REPLACE_EXISTING))
2150 return 0;
2151 /* TODO: translate more errors */
2152 gle = GetLastError();
2153 if (gle == ERROR_ACCESS_DENIED &&
2154 (attrs = GetFileAttributesW(wpnew)) != INVALID_FILE_ATTRIBUTES) {
2155 if (attrs & FILE_ATTRIBUTE_DIRECTORY) {
2156 DWORD attrsold = GetFileAttributesW(wpold);
2157 if (attrsold == INVALID_FILE_ATTRIBUTES ||
2158 !(attrsold & FILE_ATTRIBUTE_DIRECTORY))
2159 errno = EISDIR;
2160 else if (!_wrmdir(wpnew))
2161 goto repeat;
2162 return -1;
2163 }
2164 if ((attrs & FILE_ATTRIBUTE_READONLY) &&
2165 SetFileAttributesW(wpnew, attrs & ~FILE_ATTRIBUTE_READONLY)) {
2166 if (MoveFileExW(wpold, wpnew, MOVEFILE_REPLACE_EXISTING))
2167 return 0;
2168 gle = GetLastError();
2169 /* revert file attributes on failure */
2170 SetFileAttributesW(wpnew, attrs);
2171 }
2172 }
2173 if (tries < ARRAY_SIZE(delay) && gle == ERROR_ACCESS_DENIED) {
2174 /*
2175 * We assume that some other process had the source or
2176 * destination file open at the wrong moment and retry.
2177 * In order to give the other process a higher chance to
2178 * complete its operation, we give up our time slice now.
2179 * If we have to retry again, we do sleep a bit.
2180 */
2181 Sleep(delay[tries]);
2182 tries++;
2183 goto repeat;
2184 }
2185 if (gle == ERROR_ACCESS_DENIED &&
2186 ask_yes_no_if_possible("Rename from '%s' to '%s' failed. "
2187 "Should I try again?", pold, pnew))
2188 goto repeat;
2189
2190 errno = EACCES;
2191 return -1;
2192 }
2193
2194 /*
2195 * Note that this doesn't return the actual pagesize, but
2196 * the allocation granularity. If future Windows specific git code
2197 * needs the real getpagesize function, we need to find another solution.
2198 */
2199 int mingw_getpagesize(void)
2200 {
2201 SYSTEM_INFO si;
2202 GetSystemInfo(&si);
2203 return si.dwAllocationGranularity;
2204 }
2205
2206 /* See https://msdn.microsoft.com/en-us/library/windows/desktop/ms724435.aspx */
2207 enum EXTENDED_NAME_FORMAT {
2208 NameDisplay = 3,
2209 NameUserPrincipal = 8
2210 };
2211
2212 static char *get_extended_user_info(enum EXTENDED_NAME_FORMAT type)
2213 {
2214 DECLARE_PROC_ADDR(secur32.dll, BOOL, SEC_ENTRY, GetUserNameExW,
2215 enum EXTENDED_NAME_FORMAT, LPCWSTR, PULONG);
2216 static wchar_t wbuffer[1024];
2217 DWORD len;
2218
2219 if (!INIT_PROC_ADDR(GetUserNameExW))
2220 return NULL;
2221
2222 len = ARRAY_SIZE(wbuffer);
2223 if (GetUserNameExW(type, wbuffer, &len)) {
2224 char *converted = xmalloc((len *= 3));
2225 if (xwcstoutf(converted, wbuffer, len) >= 0)
2226 return converted;
2227 free(converted);
2228 }
2229
2230 return NULL;
2231 }
2232
2233 char *mingw_query_user_email(void)
2234 {
2235 return get_extended_user_info(NameUserPrincipal);
2236 }
2237
2238 struct passwd *getpwuid(int uid)
2239 {
2240 static unsigned initialized;
2241 static char user_name[100];
2242 static struct passwd *p;
2243 wchar_t buf[100];
2244 DWORD len;
2245
2246 if (initialized)
2247 return p;
2248
2249 len = ARRAY_SIZE(buf);
2250 if (!GetUserNameW(buf, &len)) {
2251 initialized = 1;
2252 return NULL;
2253 }
2254
2255 if (xwcstoutf(user_name, buf, sizeof(user_name)) < 0) {
2256 initialized = 1;
2257 return NULL;
2258 }
2259
2260 p = xmalloc(sizeof(*p));
2261 p->pw_name = user_name;
2262 p->pw_gecos = get_extended_user_info(NameDisplay);
2263 if (!p->pw_gecos)
2264 p->pw_gecos = "unknown";
2265 p->pw_dir = NULL;
2266
2267 initialized = 1;
2268 return p;
2269 }
2270
2271 static HANDLE timer_event;
2272 static HANDLE timer_thread;
2273 static int timer_interval;
2274 static int one_shot;
2275 static sig_handler_t timer_fn = SIG_DFL, sigint_fn = SIG_DFL;
2276
2277 /* The timer works like this:
2278 * The thread, ticktack(), is a trivial routine that most of the time
2279 * only waits to receive the signal to terminate. The main thread tells
2280 * the thread to terminate by setting the timer_event to the signalled
2281 * state.
2282 * But ticktack() interrupts the wait state after the timer's interval
2283 * length to call the signal handler.
2284 */
2285
2286 static unsigned __stdcall ticktack(void *dummy)
2287 {
2288 while (WaitForSingleObject(timer_event, timer_interval) == WAIT_TIMEOUT) {
2289 mingw_raise(SIGALRM);
2290 if (one_shot)
2291 break;
2292 }
2293 return 0;
2294 }
2295
2296 static int start_timer_thread(void)
2297 {
2298 timer_event = CreateEvent(NULL, FALSE, FALSE, NULL);
2299 if (timer_event) {
2300 timer_thread = (HANDLE) _beginthreadex(NULL, 0, ticktack, NULL, 0, NULL);
2301 if (!timer_thread )
2302 return errno = ENOMEM,
2303 error("cannot start timer thread");
2304 } else
2305 return errno = ENOMEM,
2306 error("cannot allocate resources for timer");
2307 return 0;
2308 }
2309
2310 static void stop_timer_thread(void)
2311 {
2312 if (timer_event)
2313 SetEvent(timer_event); /* tell thread to terminate */
2314 if (timer_thread) {
2315 int rc = WaitForSingleObject(timer_thread, 10000);
2316 if (rc == WAIT_TIMEOUT)
2317 error("timer thread did not terminate timely");
2318 else if (rc != WAIT_OBJECT_0)
2319 error("waiting for timer thread failed: %lu",
2320 GetLastError());
2321 CloseHandle(timer_thread);
2322 }
2323 if (timer_event)
2324 CloseHandle(timer_event);
2325 timer_event = NULL;
2326 timer_thread = NULL;
2327 }
2328
2329 static inline int is_timeval_eq(const struct timeval *i1, const struct timeval *i2)
2330 {
2331 return i1->tv_sec == i2->tv_sec && i1->tv_usec == i2->tv_usec;
2332 }
2333
2334 int setitimer(int type, struct itimerval *in, struct itimerval *out)
2335 {
2336 static const struct timeval zero;
2337 static int atexit_done;
2338
2339 if (out)
2340 return errno = EINVAL,
2341 error("setitimer param 3 != NULL not implemented");
2342 if (!is_timeval_eq(&in->it_interval, &zero) &&
2343 !is_timeval_eq(&in->it_interval, &in->it_value))
2344 return errno = EINVAL,
2345 error("setitimer: it_interval must be zero or eq it_value");
2346
2347 if (timer_thread)
2348 stop_timer_thread();
2349
2350 if (is_timeval_eq(&in->it_value, &zero) &&
2351 is_timeval_eq(&in->it_interval, &zero))
2352 return 0;
2353
2354 timer_interval = in->it_value.tv_sec * 1000 + in->it_value.tv_usec / 1000;
2355 one_shot = is_timeval_eq(&in->it_interval, &zero);
2356 if (!atexit_done) {
2357 atexit(stop_timer_thread);
2358 atexit_done = 1;
2359 }
2360 return start_timer_thread();
2361 }
2362
2363 int sigaction(int sig, struct sigaction *in, struct sigaction *out)
2364 {
2365 if (sig != SIGALRM)
2366 return errno = EINVAL,
2367 error("sigaction only implemented for SIGALRM");
2368 if (out)
2369 return errno = EINVAL,
2370 error("sigaction: param 3 != NULL not implemented");
2371
2372 timer_fn = in->sa_handler;
2373 return 0;
2374 }
2375
2376 #undef signal
2377 sig_handler_t mingw_signal(int sig, sig_handler_t handler)
2378 {
2379 sig_handler_t old;
2380
2381 switch (sig) {
2382 case SIGALRM:
2383 old = timer_fn;
2384 timer_fn = handler;
2385 break;
2386
2387 case SIGINT:
2388 old = sigint_fn;
2389 sigint_fn = handler;
2390 break;
2391
2392 default:
2393 return signal(sig, handler);
2394 }
2395
2396 return old;
2397 }
2398
2399 #undef raise
2400 int mingw_raise(int sig)
2401 {
2402 switch (sig) {
2403 case SIGALRM:
2404 if (timer_fn == SIG_DFL) {
2405 if (isatty(STDERR_FILENO))
2406 fputs("Alarm clock\n", stderr);
2407 exit(128 + SIGALRM);
2408 } else if (timer_fn != SIG_IGN)
2409 timer_fn(SIGALRM);
2410 return 0;
2411
2412 case SIGINT:
2413 if (sigint_fn == SIG_DFL)
2414 exit(128 + SIGINT);
2415 else if (sigint_fn != SIG_IGN)
2416 sigint_fn(SIGINT);
2417 return 0;
2418
2419 #if defined(_MSC_VER)
2420 case SIGILL:
2421 case SIGFPE:
2422 case SIGSEGV:
2423 case SIGTERM:
2424 case SIGBREAK:
2425 case SIGABRT:
2426 case SIGABRT_COMPAT:
2427 /*
2428 * The <signal.h> header in the MS C Runtime defines 8 signals
2429 * as being supported on the platform. Anything else causes an
2430 * "Invalid signal or error" (which in DEBUG builds causes the
2431 * Abort/Retry/Ignore dialog). We by-pass the CRT for things we
2432 * already know will fail.
2433 */
2434 return raise(sig);
2435 default:
2436 errno = EINVAL;
2437 return -1;
2438
2439 #else
2440
2441 default:
2442 return raise(sig);
2443
2444 #endif
2445
2446 }
2447 }
2448
2449 int link(const char *oldpath, const char *newpath)
2450 {
2451 wchar_t woldpath[MAX_PATH], wnewpath[MAX_PATH];
2452 if (xutftowcs_path(woldpath, oldpath) < 0 ||
2453 xutftowcs_path(wnewpath, newpath) < 0)
2454 return -1;
2455
2456 if (!CreateHardLinkW(wnewpath, woldpath, NULL)) {
2457 errno = err_win_to_posix(GetLastError());
2458 return -1;
2459 }
2460 return 0;
2461 }
2462
2463 pid_t waitpid(pid_t pid, int *status, int options)
2464 {
2465 HANDLE h = OpenProcess(SYNCHRONIZE | PROCESS_QUERY_INFORMATION,
2466 FALSE, pid);
2467 if (!h) {
2468 errno = ECHILD;
2469 return -1;
2470 }
2471
2472 if (pid > 0 && options & WNOHANG) {
2473 if (WAIT_OBJECT_0 != WaitForSingleObject(h, 0)) {
2474 CloseHandle(h);
2475 return 0;
2476 }
2477 options &= ~WNOHANG;
2478 }
2479
2480 if (options == 0) {
2481 struct pinfo_t **ppinfo;
2482 if (WaitForSingleObject(h, INFINITE) != WAIT_OBJECT_0) {
2483 CloseHandle(h);
2484 return 0;
2485 }
2486
2487 if (status)
2488 GetExitCodeProcess(h, (LPDWORD)status);
2489
2490 EnterCriticalSection(&pinfo_cs);
2491
2492 ppinfo = &pinfo;
2493 while (*ppinfo) {
2494 struct pinfo_t *info = *ppinfo;
2495 if (info->pid == pid) {
2496 CloseHandle(info->proc);
2497 *ppinfo = info->next;
2498 free(info);
2499 break;
2500 }
2501 ppinfo = &info->next;
2502 }
2503
2504 LeaveCriticalSection(&pinfo_cs);
2505
2506 CloseHandle(h);
2507 return pid;
2508 }
2509 CloseHandle(h);
2510
2511 errno = EINVAL;
2512 return -1;
2513 }
2514
2515 int xutftowcsn(wchar_t *wcs, const char *utfs, size_t wcslen, int utflen)
2516 {
2517 int upos = 0, wpos = 0;
2518 const unsigned char *utf = (const unsigned char*) utfs;
2519 if (!utf || !wcs || wcslen < 1) {
2520 errno = EINVAL;
2521 return -1;
2522 }
2523 /* reserve space for \0 */
2524 wcslen--;
2525 if (utflen < 0)
2526 utflen = INT_MAX;
2527
2528 while (upos < utflen) {
2529 int c = utf[upos++] & 0xff;
2530 if (utflen == INT_MAX && c == 0)
2531 break;
2532
2533 if (wpos >= wcslen) {
2534 wcs[wpos] = 0;
2535 errno = ERANGE;
2536 return -1;
2537 }
2538
2539 if (c < 0x80) {
2540 /* ASCII */
2541 wcs[wpos++] = c;
2542 } else if (c >= 0xc2 && c < 0xe0 && upos < utflen &&
2543 (utf[upos] & 0xc0) == 0x80) {
2544 /* 2-byte utf-8 */
2545 c = ((c & 0x1f) << 6);
2546 c |= (utf[upos++] & 0x3f);
2547 wcs[wpos++] = c;
2548 } else if (c >= 0xe0 && c < 0xf0 && upos + 1 < utflen &&
2549 !(c == 0xe0 && utf[upos] < 0xa0) && /* over-long encoding */
2550 (utf[upos] & 0xc0) == 0x80 &&
2551 (utf[upos + 1] & 0xc0) == 0x80) {
2552 /* 3-byte utf-8 */
2553 c = ((c & 0x0f) << 12);
2554 c |= ((utf[upos++] & 0x3f) << 6);
2555 c |= (utf[upos++] & 0x3f);
2556 wcs[wpos++] = c;
2557 } else if (c >= 0xf0 && c < 0xf5 && upos + 2 < utflen &&
2558 wpos + 1 < wcslen &&
2559 !(c == 0xf0 && utf[upos] < 0x90) && /* over-long encoding */
2560 !(c == 0xf4 && utf[upos] >= 0x90) && /* > \u10ffff */
2561 (utf[upos] & 0xc0) == 0x80 &&
2562 (utf[upos + 1] & 0xc0) == 0x80 &&
2563 (utf[upos + 2] & 0xc0) == 0x80) {
2564 /* 4-byte utf-8: convert to \ud8xx \udcxx surrogate pair */
2565 c = ((c & 0x07) << 18);
2566 c |= ((utf[upos++] & 0x3f) << 12);
2567 c |= ((utf[upos++] & 0x3f) << 6);
2568 c |= (utf[upos++] & 0x3f);
2569 c -= 0x10000;
2570 wcs[wpos++] = 0xd800 | (c >> 10);
2571 wcs[wpos++] = 0xdc00 | (c & 0x3ff);
2572 } else if (c >= 0xa0) {
2573 /* invalid utf-8 byte, printable unicode char: convert 1:1 */
2574 wcs[wpos++] = c;
2575 } else {
2576 /* invalid utf-8 byte, non-printable unicode: convert to hex */
2577 static const char *hex = "0123456789abcdef";
2578 wcs[wpos++] = hex[c >> 4];
2579 if (wpos < wcslen)
2580 wcs[wpos++] = hex[c & 0x0f];
2581 }
2582 }
2583 wcs[wpos] = 0;
2584 return wpos;
2585 }
2586
2587 int xwcstoutf(char *utf, const wchar_t *wcs, size_t utflen)
2588 {
2589 if (!wcs || !utf || utflen < 1) {
2590 errno = EINVAL;
2591 return -1;
2592 }
2593 utflen = WideCharToMultiByte(CP_UTF8, 0, wcs, -1, utf, utflen, NULL, NULL);
2594 if (utflen)
2595 return utflen - 1;
2596 errno = ERANGE;
2597 return -1;
2598 }
2599
2600 static void setup_windows_environment(void)
2601 {
2602 char *tmp = getenv("TMPDIR");
2603
2604 /* on Windows it is TMP and TEMP */
2605 if (!tmp) {
2606 if (!(tmp = getenv("TMP")))
2607 tmp = getenv("TEMP");
2608 if (tmp) {
2609 setenv("TMPDIR", tmp, 1);
2610 tmp = getenv("TMPDIR");
2611 }
2612 }
2613
2614 if (tmp) {
2615 /*
2616 * Convert all dir separators to forward slashes,
2617 * to help shell commands called from the Git
2618 * executable (by not mistaking the dir separators
2619 * for escape characters).
2620 */
2621 convert_slashes(tmp);
2622 }
2623
2624 /* simulate TERM to enable auto-color (see color.c) */
2625 if (!getenv("TERM"))
2626 setenv("TERM", "cygwin", 1);
2627
2628 /* calculate HOME if not set */
2629 if (!getenv("HOME")) {
2630 /*
2631 * try $HOMEDRIVE$HOMEPATH - the home share may be a network
2632 * location, thus also check if the path exists (i.e. is not
2633 * disconnected)
2634 */
2635 if ((tmp = getenv("HOMEDRIVE"))) {
2636 struct strbuf buf = STRBUF_INIT;
2637 strbuf_addstr(&buf, tmp);
2638 if ((tmp = getenv("HOMEPATH"))) {
2639 strbuf_addstr(&buf, tmp);
2640 if (is_directory(buf.buf))
2641 setenv("HOME", buf.buf, 1);
2642 else
2643 tmp = NULL; /* use $USERPROFILE */
2644 }
2645 strbuf_release(&buf);
2646 }
2647 /* use $USERPROFILE if the home share is not available */
2648 if (!tmp && (tmp = getenv("USERPROFILE")))
2649 setenv("HOME", tmp, 1);
2650 }
2651 }
2652
2653 static PSID get_current_user_sid(void)
2654 {
2655 HANDLE token;
2656 DWORD len = 0;
2657 PSID result = NULL;
2658
2659 if (!OpenProcessToken(GetCurrentProcess(), TOKEN_QUERY, &token))
2660 return NULL;
2661
2662 if (!GetTokenInformation(token, TokenUser, NULL, 0, &len)) {
2663 TOKEN_USER *info = xmalloc((size_t)len);
2664 if (GetTokenInformation(token, TokenUser, info, len, &len)) {
2665 len = GetLengthSid(info->User.Sid);
2666 result = xmalloc(len);
2667 if (!CopySid(len, result, info->User.Sid)) {
2668 error(_("failed to copy SID (%ld)"),
2669 GetLastError());
2670 FREE_AND_NULL(result);
2671 }
2672 }
2673 FREE_AND_NULL(info);
2674 }
2675 CloseHandle(token);
2676
2677 return result;
2678 }
2679
2680 static int acls_supported(const char *path)
2681 {
2682 size_t offset = offset_1st_component(path);
2683 WCHAR wroot[MAX_PATH];
2684 DWORD file_system_flags;
2685
2686 if (offset &&
2687 xutftowcsn(wroot, path, MAX_PATH, offset) > 0 &&
2688 GetVolumeInformationW(wroot, NULL, 0, NULL, NULL,
2689 &file_system_flags, NULL, 0))
2690 return !!(file_system_flags & FILE_PERSISTENT_ACLS);
2691
2692 return 0;
2693 }
2694
2695 int is_path_owned_by_current_sid(const char *path, struct strbuf *report)
2696 {
2697 WCHAR wpath[MAX_PATH];
2698 PSID sid = NULL;
2699 PSECURITY_DESCRIPTOR descriptor = NULL;
2700 DWORD err;
2701
2702 static wchar_t home[MAX_PATH];
2703
2704 int result = 0;
2705
2706 if (xutftowcs_path(wpath, path) < 0)
2707 return 0;
2708
2709 /*
2710 * On Windows, the home directory is owned by the administrator, but for
2711 * all practical purposes, it belongs to the user. Do pretend that it is
2712 * owned by the user.
2713 */
2714 if (!*home) {
2715 DWORD size = ARRAY_SIZE(home);
2716 DWORD len = GetEnvironmentVariableW(L"HOME", home, size);
2717 if (!len || len > size)
2718 wcscpy(home, L"::N/A::");
2719 }
2720 if (!wcsicmp(wpath, home))
2721 return 1;
2722
2723 /* Get the owner SID */
2724 err = GetNamedSecurityInfoW(wpath, SE_FILE_OBJECT,
2725 OWNER_SECURITY_INFORMATION |
2726 DACL_SECURITY_INFORMATION,
2727 &sid, NULL, NULL, NULL, &descriptor);
2728
2729 if (err != ERROR_SUCCESS)
2730 error(_("failed to get owner for '%s' (%ld)"), path, err);
2731 else if (sid && IsValidSid(sid)) {
2732 /* Now, verify that the SID matches the current user's */
2733 static PSID current_user_sid;
2734 BOOL is_member;
2735
2736 if (!current_user_sid)
2737 current_user_sid = get_current_user_sid();
2738
2739 if (current_user_sid &&
2740 IsValidSid(current_user_sid) &&
2741 EqualSid(sid, current_user_sid))
2742 result = 1;
2743 else if (IsWellKnownSid(sid, WinBuiltinAdministratorsSid) &&
2744 CheckTokenMembership(NULL, sid, &is_member) &&
2745 is_member)
2746 /*
2747 * If owned by the Administrators group, and the
2748 * current user is an administrator, we consider that
2749 * okay, too.
2750 */
2751 result = 1;
2752 else if (report &&
2753 IsWellKnownSid(sid, WinWorldSid) &&
2754 !acls_supported(path)) {
2755 /*
2756 * On FAT32 volumes, ownership is not actually recorded.
2757 */
2758 strbuf_addf(report, "'%s' is on a file system that does "
2759 "not record ownership\n", path);
2760 } else if (report) {
2761 LPSTR str1, str2, to_free1 = NULL, to_free2 = NULL;
2762
2763 if (ConvertSidToStringSidA(sid, &str1))
2764 to_free1 = str1;
2765 else
2766 str1 = "(inconvertible)";
2767
2768 if (!current_user_sid)
2769 str2 = "(none)";
2770 else if (!IsValidSid(current_user_sid))
2771 str2 = "(invalid)";
2772 else if (ConvertSidToStringSidA(current_user_sid, &str2))
2773 to_free2 = str2;
2774 else
2775 str2 = "(inconvertible)";
2776 strbuf_addf(report,
2777 "'%s' is owned by:\n"
2778 "\t'%s'\nbut the current user is:\n"
2779 "\t'%s'\n", path, str1, str2);
2780 LocalFree(to_free1);
2781 LocalFree(to_free2);
2782 }
2783 }
2784
2785 /*
2786 * We can release the security descriptor struct only now because `sid`
2787 * actually points into this struct.
2788 */
2789 if (descriptor)
2790 LocalFree(descriptor);
2791
2792 return result;
2793 }
2794
2795 int is_valid_win32_path(const char *path, int allow_literal_nul)
2796 {
2797 const char *p = path;
2798 int preceding_space_or_period = 0, i = 0, periods = 0;
2799
2800 if (!protect_ntfs)
2801 return 1;
2802
2803 skip_dos_drive_prefix((char **)&path);
2804 goto segment_start;
2805
2806 for (;;) {
2807 char c = *(path++);
2808 switch (c) {
2809 case '\0':
2810 case '/': case '\\':
2811 /* cannot end in ` ` or `.`, except for `.` and `..` */
2812 if (preceding_space_or_period &&
2813 (i != periods || periods > 2))
2814 return 0;
2815 if (!c)
2816 return 1;
2817
2818 i = periods = preceding_space_or_period = 0;
2819
2820 segment_start:
2821 switch (*path) {
2822 case 'a': case 'A': /* AUX */
2823 if (((c = path[++i]) != 'u' && c != 'U') ||
2824 ((c = path[++i]) != 'x' && c != 'X')) {
2825 not_a_reserved_name:
2826 path += i;
2827 continue;
2828 }
2829 break;
2830 case 'c': case 'C':
2831 /* COM1 ... COM9, CON, CONIN$, CONOUT$ */
2832 if ((c = path[++i]) != 'o' && c != 'O')
2833 goto not_a_reserved_name;
2834 c = path[++i];
2835 if (c == 'm' || c == 'M') { /* COM1 ... COM9 */
2836 c = path[++i];
2837 if (c < '1' || c > '9')
2838 goto not_a_reserved_name;
2839 } else if (c == 'n' || c == 'N') { /* CON */
2840 c = path[i + 1];
2841 if ((c == 'i' || c == 'I') &&
2842 ((c = path[i + 2]) == 'n' ||
2843 c == 'N') &&
2844 path[i + 3] == '$')
2845 i += 3; /* CONIN$ */
2846 else if ((c == 'o' || c == 'O') &&
2847 ((c = path[i + 2]) == 'u' ||
2848 c == 'U') &&
2849 ((c = path[i + 3]) == 't' ||
2850 c == 'T') &&
2851 path[i + 4] == '$')
2852 i += 4; /* CONOUT$ */
2853 } else
2854 goto not_a_reserved_name;
2855 break;
2856 case 'l': case 'L': /* LPT<N> */
2857 if (((c = path[++i]) != 'p' && c != 'P') ||
2858 ((c = path[++i]) != 't' && c != 'T') ||
2859 !isdigit(path[++i]))
2860 goto not_a_reserved_name;
2861 break;
2862 case 'n': case 'N': /* NUL */
2863 if (((c = path[++i]) != 'u' && c != 'U') ||
2864 ((c = path[++i]) != 'l' && c != 'L') ||
2865 (allow_literal_nul &&
2866 !path[i + 1] && p == path))
2867 goto not_a_reserved_name;
2868 break;
2869 case 'p': case 'P': /* PRN */
2870 if (((c = path[++i]) != 'r' && c != 'R') ||
2871 ((c = path[++i]) != 'n' && c != 'N'))
2872 goto not_a_reserved_name;
2873 break;
2874 default:
2875 continue;
2876 }
2877
2878 /*
2879 * So far, this looks like a reserved name. Let's see
2880 * whether it actually is one: trailing spaces, a file
2881 * extension, or an NTFS Alternate Data Stream do not
2882 * matter, the name is still reserved if any of those
2883 * follow immediately after the actual name.
2884 */
2885 i++;
2886 if (path[i] == ' ') {
2887 preceding_space_or_period = 1;
2888 while (path[++i] == ' ')
2889 ; /* skip all spaces */
2890 }
2891
2892 c = path[i];
2893 if (c && c != '.' && c != ':' && !is_xplatform_dir_sep(c))
2894 goto not_a_reserved_name;
2895
2896 /* contains reserved name */
2897 return 0;
2898 case '.':
2899 periods++;
2900 /* fallthru */
2901 case ' ':
2902 preceding_space_or_period = 1;
2903 i++;
2904 continue;
2905 case ':': /* DOS drive prefix was already skipped */
2906 case '<': case '>': case '"': case '|': case '?': case '*':
2907 /* illegal character */
2908 return 0;
2909 default:
2910 if (c > '\0' && c < '\x20')
2911 /* illegal character */
2912 return 0;
2913 }
2914 preceding_space_or_period = 0;
2915 i++;
2916 }
2917 }
2918
2919 #if !defined(_MSC_VER)
2920 /*
2921 * Disable MSVCRT command line wildcard expansion (__getmainargs called from
2922 * mingw startup code, see init.c in mingw runtime).
2923 */
2924 int _CRT_glob = 0;
2925 #endif
2926
2927 static NORETURN void die_startup(void)
2928 {
2929 fputs("fatal: not enough memory for initialization", stderr);
2930 exit(128);
2931 }
2932
2933 static void *malloc_startup(size_t size)
2934 {
2935 void *result = malloc(size);
2936 if (!result)
2937 die_startup();
2938 return result;
2939 }
2940
2941 static char *wcstoutfdup_startup(char *buffer, const wchar_t *wcs, size_t len)
2942 {
2943 len = xwcstoutf(buffer, wcs, len) + 1;
2944 return memcpy(malloc_startup(len), buffer, len);
2945 }
2946
2947 static void maybe_redirect_std_handle(const wchar_t *key, DWORD std_id, int fd,
2948 DWORD desired_access, DWORD flags)
2949 {
2950 DWORD create_flag = fd ? OPEN_ALWAYS : OPEN_EXISTING;
2951 wchar_t buf[MAX_PATH];
2952 DWORD max = ARRAY_SIZE(buf);
2953 HANDLE handle;
2954 DWORD ret = GetEnvironmentVariableW(key, buf, max);
2955
2956 if (!ret || ret >= max)
2957 return;
2958
2959 /* make sure this does not leak into child processes */
2960 SetEnvironmentVariableW(key, NULL);
2961 if (!wcscmp(buf, L"off")) {
2962 close(fd);
2963 handle = GetStdHandle(std_id);
2964 if (handle != INVALID_HANDLE_VALUE)
2965 CloseHandle(handle);
2966 return;
2967 }
2968 if (std_id == STD_ERROR_HANDLE && !wcscmp(buf, L"2>&1")) {
2969 handle = GetStdHandle(STD_OUTPUT_HANDLE);
2970 if (handle == INVALID_HANDLE_VALUE) {
2971 close(fd);
2972 handle = GetStdHandle(std_id);
2973 if (handle != INVALID_HANDLE_VALUE)
2974 CloseHandle(handle);
2975 } else {
2976 int new_fd = _open_osfhandle((intptr_t)handle, O_BINARY);
2977 SetStdHandle(std_id, handle);
2978 dup2(new_fd, fd);
2979 /* do *not* close the new_fd: that would close stdout */
2980 }
2981 return;
2982 }
2983 handle = CreateFileW(buf, desired_access, 0, NULL, create_flag,
2984 flags, NULL);
2985 if (handle != INVALID_HANDLE_VALUE) {
2986 int new_fd = _open_osfhandle((intptr_t)handle, O_BINARY);
2987 SetStdHandle(std_id, handle);
2988 dup2(new_fd, fd);
2989 close(new_fd);
2990 }
2991 }
2992
2993 static void maybe_redirect_std_handles(void)
2994 {
2995 maybe_redirect_std_handle(L"GIT_REDIRECT_STDIN", STD_INPUT_HANDLE, 0,
2996 GENERIC_READ, FILE_ATTRIBUTE_NORMAL);
2997 maybe_redirect_std_handle(L"GIT_REDIRECT_STDOUT", STD_OUTPUT_HANDLE, 1,
2998 GENERIC_WRITE, FILE_ATTRIBUTE_NORMAL);
2999 maybe_redirect_std_handle(L"GIT_REDIRECT_STDERR", STD_ERROR_HANDLE, 2,
3000 GENERIC_WRITE, FILE_FLAG_NO_BUFFERING);
3001 }
3002
3003 #ifdef _MSC_VER
3004 #ifdef _DEBUG
3005 #include <crtdbg.h>
3006 #endif
3007 #endif
3008
3009 /*
3010 * We implement wmain() and compile with -municode, which would
3011 * normally ignore main(), but we call the latter from the former
3012 * so that we can handle non-ASCII command-line parameters
3013 * appropriately.
3014 *
3015 * To be more compatible with the core git code, we convert
3016 * argv into UTF8 and pass them directly to main().
3017 */
3018 int wmain(int argc, const wchar_t **wargv)
3019 {
3020 int i, maxlen, exit_status;
3021 char *buffer, **save;
3022 const char **argv;
3023
3024 trace2_initialize_clock();
3025
3026 #ifdef _MSC_VER
3027 #ifdef _DEBUG
3028 _CrtSetReportMode(_CRT_ASSERT, _CRTDBG_MODE_DEBUG);
3029 #endif
3030
3031 #ifdef USE_MSVC_CRTDBG
3032 _CrtSetDbgFlag(_CRTDBG_ALLOC_MEM_DF | _CRTDBG_LEAK_CHECK_DF);
3033 #endif
3034 #endif
3035
3036 maybe_redirect_std_handles();
3037
3038 /* determine size of argv and environ conversion buffer */
3039 maxlen = wcslen(wargv[0]);
3040 for (i = 1; i < argc; i++)
3041 maxlen = max(maxlen, wcslen(wargv[i]));
3042
3043 /* allocate buffer (wchar_t encodes to max 3 UTF-8 bytes) */
3044 maxlen = 3 * maxlen + 1;
3045 buffer = malloc_startup(maxlen);
3046
3047 /*
3048 * Create a UTF-8 version of w_argv. Also create a "save" copy
3049 * to remember all the string pointers because parse_options()
3050 * will remove claimed items from the argv that we pass down.
3051 */
3052 ALLOC_ARRAY(argv, argc + 1);
3053 ALLOC_ARRAY(save, argc + 1);
3054 for (i = 0; i < argc; i++)
3055 argv[i] = save[i] = wcstoutfdup_startup(buffer, wargv[i], maxlen);
3056 argv[i] = save[i] = NULL;
3057 free(buffer);
3058
3059 /* fix Windows specific environment settings */
3060 setup_windows_environment();
3061
3062 unset_environment_variables = xstrdup("PERL5LIB");
3063
3064 /* initialize critical section for waitpid pinfo_t list */
3065 InitializeCriticalSection(&pinfo_cs);
3066
3067 /* set up default file mode and file modes for stdin/out/err */
3068 _fmode = _O_BINARY;
3069 _setmode(_fileno(stdin), _O_BINARY);
3070 _setmode(_fileno(stdout), _O_BINARY);
3071 _setmode(_fileno(stderr), _O_BINARY);
3072
3073 /* initialize Unicode console */
3074 winansi_init();
3075
3076 /* invoke the real main() using our utf8 version of argv. */
3077 exit_status = main(argc, argv);
3078
3079 for (i = 0; i < argc; i++)
3080 free(save[i]);
3081 free(save);
3082 free(argv);
3083
3084 return exit_status;
3085 }
3086
3087 int uname(struct utsname *buf)
3088 {
3089 unsigned v = (unsigned)GetVersion();
3090 memset(buf, 0, sizeof(*buf));
3091 xsnprintf(buf->sysname, sizeof(buf->sysname), "Windows");
3092 xsnprintf(buf->release, sizeof(buf->release),
3093 "%u.%u", v & 0xff, (v >> 8) & 0xff);
3094 /* assuming NT variants only.. */
3095 xsnprintf(buf->version, sizeof(buf->version),
3096 "%u", (v >> 16) & 0x7fff);
3097 return 0;
3098 }
The Best VCS Around