rugged 0.27.7 → 0.27.9

data/vendor/libgit2/src/mailmap.h

@@ -1,35 +0,0 @@
-/*
- * Copyright (C) the libgit2 contributors. All rights reserved.
- *
- * This file is part of libgit2, distributed under the GNU GPL v2 with
- * a Linking Exception. For full terms see the included COPYING file.
- */
-#ifndef INCLUDE_mailmap_h__
-#define INCLUDE_mailmap_h__
-
-#include "git2/mailmap.h"
-#include "vector.h"
-
-/*
- * A mailmap is stored as a sorted vector of 'git_mailmap_entry's. These entries
- * are sorted first by 'replace_email', and then by 'replace_name'. NULL
- * replace_names are ordered first.
- *
- * Looking up a name and email in the mailmap is done with a binary search.
- */
-struct git_mailmap {
-	git_vector entries;
-};
-
-/* Single entry parsed from a mailmap */
-typedef struct git_mailmap_entry {
-	char *real_name; /**< the real name (may be NULL) */
-	char *real_email; /**< the real email (may be NULL) */
-	char *replace_name; /**< the name to replace (may be NULL) */
-	char *replace_email; /**< the email to replace */
-} git_mailmap_entry;
-
-const git_mailmap_entry *git_mailmap_entry_lookup(
-	const git_mailmap *mm, const char *name, const char *email);
-
-#endif

data/vendor/libgit2/src/stdalloc.c

@@ -1,120 +0,0 @@
-/*
- * Copyright (C) the libgit2 contributors. All rights reserved.
- *
- * This file is part of libgit2, distributed under the GNU GPL v2 with
- * a Linking Exception. For full terms see the included COPYING file.
- */
-
-#include "stdalloc.h"
-
-static void *stdalloc__malloc(size_t len, const char *file, int line)
-{
-	void *ptr = malloc(len);
-
-	GIT_UNUSED(file);
-	GIT_UNUSED(line);
-
-	if (!ptr) giterr_set_oom();
-	return ptr;
-}
-
-static void *stdalloc__calloc(size_t nelem, size_t elsize, const char *file, int line)
-{
-	void *ptr = calloc(nelem, elsize);
-
-	GIT_UNUSED(file);
-	GIT_UNUSED(line);
-
-	if (!ptr) giterr_set_oom();
-	return ptr;
-}
-
-static char *stdalloc__strdup(const char *str, const char *file, int line)
-{
-	char *ptr = strdup(str);
-
-	GIT_UNUSED(file);
-	GIT_UNUSED(line);
-
-	if (!ptr) giterr_set_oom();
-	return ptr;
-}
-
-static char *stdalloc__strndup(const char *str, size_t n, const char *file, int line)
-{
-	size_t length = 0, alloclength;
-	char *ptr;
-
-	length = p_strnlen(str, n);
-
-	if (GIT_ADD_SIZET_OVERFLOW(&alloclength, length, 1) ||
-		!(ptr = stdalloc__malloc(alloclength, file, line)))
-		return NULL;
-
-	if (length)
-		memcpy(ptr, str, length);
-
-	ptr[length] = '\0';
-
-	return ptr;
-}
-
-static char *stdalloc__substrdup(const char *start, size_t n, const char *file, int line)
-{
-	char *ptr;
-	size_t alloclen;
-
-	if (GIT_ADD_SIZET_OVERFLOW(&alloclen, n, 1) ||
-		!(ptr = stdalloc__malloc(alloclen, file, line)))
-		return NULL;
-
-	memcpy(ptr, start, n);
-	ptr[n] = '\0';
-	return ptr;
-}
-
-static void *stdalloc__realloc(void *ptr, size_t size, const char *file, int line)
-{
-	void *new_ptr = realloc(ptr, size);
-
-	GIT_UNUSED(file);
-	GIT_UNUSED(line);
-
-	if (!new_ptr) giterr_set_oom();
-	return new_ptr;
-}
-
-static void *stdalloc__reallocarray(void *ptr, size_t nelem, size_t elsize, const char *file, int line)
-{
-	size_t newsize;
-
-	GIT_UNUSED(file);
-	GIT_UNUSED(line);
-
-	return GIT_MULTIPLY_SIZET_OVERFLOW(&newsize, nelem, elsize) ?
-		NULL : realloc(ptr, newsize);
-}
-
-static void *stdalloc__mallocarray(size_t nelem, size_t elsize, const char *file, int line)
-{
-	return stdalloc__reallocarray(NULL, nelem, elsize, file, line);
-}
-
-static void stdalloc__free(void *ptr)
-{
-	free(ptr);
-}
-
-int git_stdalloc_init_allocator(git_allocator *allocator)
-{
-	allocator->gmalloc = stdalloc__malloc;
-	allocator->gcalloc = stdalloc__calloc;
-	allocator->gstrdup = stdalloc__strdup;
-	allocator->gstrndup = stdalloc__strndup;
-	allocator->gsubstrdup = stdalloc__substrdup;
-	allocator->grealloc = stdalloc__realloc;
-	allocator->greallocarray = stdalloc__reallocarray;
-	allocator->gmallocarray = stdalloc__mallocarray;
-	allocator->gfree = stdalloc__free;
-	return 0;
-}

data/vendor/libgit2/src/stdalloc.h

@@ -1,17 +0,0 @@
-/*
- * Copyright (C) the libgit2 contributors. All rights reserved.
- *
- * This file is part of libgit2, distributed under the GNU GPL v2 with
- * a Linking Exception. For full terms see the included COPYING file.
- */
-
-#ifndef INCLUDE_stdalloc_h__
-#define INCLUDE_stdalloc_h__
-
-#include "alloc.h"
-
-#include "common.h"
-
-int git_stdalloc_init_allocator(git_allocator *allocator);
-
-#endif

data/vendor/libgit2/src/streams/mbedtls.c

@@ -1,463 +0,0 @@
-/*
- * Copyright (C) the libgit2 contributors. All rights reserved.
- *
- * This file is part of libgit2, distributed under the GNU GPL v2 with
- * a Linking Exception. For full terms see the included COPYING file.
- */
-
-#include "streams/mbedtls.h"
-
-#ifdef GIT_MBEDTLS
-
-#include <ctype.h>
-
-#include "global.h"
-#include "stream.h"
-#include "streams/socket.h"
-#include "netops.h"
-#include "git2/transport.h"
-#include "util.h"
-
-#ifdef GIT_CURL
-# include "streams/curl.h"
-#endif
-
-#ifndef GIT_DEFAULT_CERT_LOCATION
-#define GIT_DEFAULT_CERT_LOCATION NULL
-#endif
-
-/* Work around C90-conformance issues */
-#if defined(_MSC_VER)
-# define inline __inline
-#elif defined(__GNUC__)
-# define inline __inline__
-#else
-# define inline
-#endif
-
-#include <mbedtls/config.h>
-#include <mbedtls/ssl.h>
-#include <mbedtls/error.h>
-#include <mbedtls/entropy.h>
-#include <mbedtls/ctr_drbg.h>
-
-#undef inline
-
-mbedtls_ssl_config *git__ssl_conf;
-mbedtls_entropy_context *mbedtls_entropy;
-
-#define GIT_SSL_DEFAULT_CIPHERS "TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256:TLS-ECDHE-RSA-WITH-AES-128-GCM-SHA256:TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384:TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384:TLS-DHE-RSA-WITH-AES-128-GCM-SHA256:TLS-DHE-DSS-WITH-AES-128-GCM-SHA256:TLS-DHE-RSA-WITH-AES-256-GCM-SHA384:TLS-DHE-DSS-WITH-AES-256-GCM-SHA384:TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256:TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256:TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA:TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA:TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA384:TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384:TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA:TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA:TLS-DHE-RSA-WITH-AES-128-CBC-SHA256:TLS-DHE-RSA-WITH-AES-256-CBC-SHA256:TLS-DHE-RSA-WITH-AES-128-CBC-SHA:TLS-DHE-RSA-WITH-AES-256-CBC-SHA:TLS-DHE-DSS-WITH-AES-128-CBC-SHA256:TLS-DHE-DSS-WITH-AES-256-CBC-SHA256:TLS-DHE-DSS-WITH-AES-128-CBC-SHA:TLS-DHE-DSS-WITH-AES-256-CBC-SHA:TLS-RSA-WITH-AES-128-GCM-SHA256:TLS-RSA-WITH-AES-256-GCM-SHA384:TLS-RSA-WITH-AES-128-CBC-SHA256:TLS-RSA-WITH-AES-256-CBC-SHA256:TLS-RSA-WITH-AES-128-CBC-SHA:TLS-RSA-WITH-AES-256-CBC-SHA"
-#define GIT_SSL_DEFAULT_CIPHERS_COUNT 30
-
-/**
- * This function aims to clean-up the SSL context which
- * we allocated.
- */
-static void shutdown_ssl(void)
-{
-	if (git__ssl_conf) {
-		mbedtls_x509_crt_free(git__ssl_conf->ca_chain);
-		git__free(git__ssl_conf->ca_chain);
-		mbedtls_ctr_drbg_free(git__ssl_conf->p_rng);
-		git__free(git__ssl_conf->p_rng);
-		mbedtls_ssl_config_free(git__ssl_conf);
-		git__free(git__ssl_conf);
-		git__ssl_conf = NULL;
-	}
-	if (mbedtls_entropy) {
-		mbedtls_entropy_free(mbedtls_entropy);
-		git__free(mbedtls_entropy);
-		mbedtls_entropy = NULL;
-	}
-}
-
-int git_mbedtls__set_cert_location(const char *path, int is_dir);
-
-int git_mbedtls_stream_global_init(void)
-{
-	int loaded = 0;
-	char *crtpath = GIT_DEFAULT_CERT_LOCATION;
-	struct stat statbuf;
-	mbedtls_ctr_drbg_context *ctr_drbg = NULL;
-
-	int *ciphers_list = NULL;
-	int ciphers_known = 0;
-	char *cipher_name = NULL;
-	char *cipher_string = NULL;
-	char *cipher_string_tmp = NULL;
-
-	mbedtls_x509_crt *cacert = NULL;
-
-	git__ssl_conf = git__malloc(sizeof(mbedtls_ssl_config));
-	mbedtls_ssl_config_init(git__ssl_conf);
-	if (mbedtls_ssl_config_defaults(git__ssl_conf,
-		                            MBEDTLS_SSL_IS_CLIENT,
-		                            MBEDTLS_SSL_TRANSPORT_STREAM,
-		                            MBEDTLS_SSL_PRESET_DEFAULT) != 0) {
-		giterr_set(GITERR_SSL, "failed to initialize mbedTLS");
-		goto cleanup;
-	}
-
-	/* configure TLSv1 */
-	mbedtls_ssl_conf_min_version(git__ssl_conf, MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0);
-
-	/* verify_server_cert is responsible for making the check.
-	 * OPTIONAL because REQUIRED drops the certificate as soon as the check
-	 * is made, so we can never see the certificate and override it. */
-	mbedtls_ssl_conf_authmode(git__ssl_conf, MBEDTLS_SSL_VERIFY_OPTIONAL);
-
-	/* set the list of allowed ciphersuites */
-	ciphers_list = calloc(GIT_SSL_DEFAULT_CIPHERS_COUNT, sizeof(int));
-	ciphers_known = 0;
-	cipher_string = cipher_string_tmp = git__strdup(GIT_SSL_DEFAULT_CIPHERS);
-	while ((cipher_name = git__strtok(&cipher_string_tmp, ":")) != NULL) {
-		int cipherid = mbedtls_ssl_get_ciphersuite_id(cipher_name);
-		if (cipherid == 0) continue;
-
-		ciphers_list[ciphers_known++] = cipherid;
-	}
-	git__free(cipher_string);
-
-	if (!ciphers_known) {
-		giterr_set(GITERR_SSL, "no cipher could be enabled");
-		goto cleanup;
-	}
-	mbedtls_ssl_conf_ciphersuites(git__ssl_conf, ciphers_list);
-
-	/* Seeding the random number generator */
-	mbedtls_entropy = git__malloc(sizeof(mbedtls_entropy_context));
-	mbedtls_entropy_init(mbedtls_entropy);
-
-	ctr_drbg = git__malloc(sizeof(mbedtls_ctr_drbg_context));
-	mbedtls_ctr_drbg_init(ctr_drbg);
-	if (mbedtls_ctr_drbg_seed(ctr_drbg,
-		                      mbedtls_entropy_func,
-		                      mbedtls_entropy, NULL, 0) != 0) {
-		giterr_set(GITERR_SSL, "failed to initialize mbedTLS entropy pool");
-		goto cleanup;
-	}
-
-	mbedtls_ssl_conf_rng(git__ssl_conf, mbedtls_ctr_drbg_random, ctr_drbg);
-
-	/* load default certificates */
-	if (crtpath != NULL && stat(crtpath, &statbuf) == 0 && S_ISREG(statbuf.st_mode))
-		loaded = (git_mbedtls__set_cert_location(crtpath, 0) == 0);
-	if (!loaded && crtpath != NULL && stat(crtpath, &statbuf) == 0 && S_ISDIR(statbuf.st_mode))
-		loaded = (git_mbedtls__set_cert_location(crtpath, 1) == 0);
-
-	git__on_shutdown(shutdown_ssl);
-
-	return 0;
-
-cleanup:
-	mbedtls_x509_crt_free(cacert);
-	git__free(cacert);
-	mbedtls_ctr_drbg_free(ctr_drbg);
-	git__free(ctr_drbg);
-	mbedtls_ssl_config_free(git__ssl_conf);
-	git__free(git__ssl_conf);
-	git__ssl_conf = NULL;
-
-	return -1;
-}
-
-mbedtls_ssl_config *git__ssl_conf;
-
-static int bio_read(void *b, unsigned char *buf, size_t len)
-{
-	git_stream *io = (git_stream *) b;
-	return (int) git_stream_read(io, buf, len);
-}
-
-static int bio_write(void *b, const unsigned char *buf, size_t len)
-{
-	git_stream *io = (git_stream *) b;
-	return (int) git_stream_write(io, (const char *)buf, len, 0);
-}
-
-static int ssl_set_error(mbedtls_ssl_context *ssl, int error)
-{
-	char errbuf[512];
-	int ret = -1;
-
-	assert(error != MBEDTLS_ERR_SSL_WANT_READ);
-	assert(error != MBEDTLS_ERR_SSL_WANT_WRITE);
-
-	if (error != 0)
-		mbedtls_strerror( error, errbuf, 512 );
-
-	switch(error) {
-		case 0:
-		giterr_set(GITERR_SSL, "SSL error: unknown error");
-		break;
-
-	case MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:
-		giterr_set(GITERR_SSL, "SSL error: %#04x [%x] - %s", error, ssl->session_negotiate->verify_result, errbuf);
-		ret = GIT_ECERTIFICATE;
-		break;
-
-	default:
-		giterr_set(GITERR_SSL, "SSL error: %#04x - %s", error, errbuf);
-	}
-
-	return ret;
-}
-
-static int ssl_teardown(mbedtls_ssl_context *ssl)
-{
-	int ret = 0;
-
-	ret = mbedtls_ssl_close_notify(ssl);
-	if (ret < 0)
-		ret = ssl_set_error(ssl, ret);
-
-	mbedtls_ssl_free(ssl);
-	return ret;
-}
-
-static int verify_server_cert(mbedtls_ssl_context *ssl)
-{
-	int ret = -1;
-
-	if ((ret = mbedtls_ssl_get_verify_result(ssl)) != 0) {
-		char vrfy_buf[512];
-		int len = mbedtls_x509_crt_verify_info(vrfy_buf, sizeof(vrfy_buf), "", ret);
-		if (len >= 1) vrfy_buf[len - 1] = '\0'; /* Remove trailing \n */
-		giterr_set(GITERR_SSL, "the SSL certificate is invalid: %#04x - %s", ret, vrfy_buf);
-		return GIT_ECERTIFICATE;
-	}
-
-	return 0;
-}
-
-typedef struct {
-	git_stream parent;
-	git_stream *io;
-	bool connected;
-	char *host;
-	mbedtls_ssl_context *ssl;
-	git_cert_x509 cert_info;
-} mbedtls_stream;
-
-
-int mbedtls_connect(git_stream *stream)
-{
-	int ret;
-	mbedtls_stream *st = (mbedtls_stream *) stream;
-
-	if ((ret = git_stream_connect(st->io)) < 0)
-		return ret;
-
-	st->connected = true;
-
-	mbedtls_ssl_set_hostname(st->ssl, st->host);
-
-	mbedtls_ssl_set_bio(st->ssl, st->io, bio_write, bio_read, NULL);
-
-	if ((ret = mbedtls_ssl_handshake(st->ssl)) != 0)
-		return ssl_set_error(st->ssl, ret);
-
-	return verify_server_cert(st->ssl);
-}
-
-int mbedtls_certificate(git_cert **out, git_stream *stream)
-{
-	unsigned char *encoded_cert;
-	mbedtls_stream *st = (mbedtls_stream *) stream;
-
-	const mbedtls_x509_crt *cert = mbedtls_ssl_get_peer_cert(st->ssl);
-	if (!cert) {
-		giterr_set(GITERR_SSL, "the server did not provide a certificate");
-		return -1;
-	}
-
-	/* Retrieve the length of the certificate first */
-	if (cert->raw.len == 0) {
-		giterr_set(GITERR_NET, "failed to retrieve certificate information");
-		return -1;
-	}
-
-	encoded_cert = git__malloc(cert->raw.len);
-	GITERR_CHECK_ALLOC(encoded_cert);
-	memcpy(encoded_cert, cert->raw.p, cert->raw.len);
-
-	st->cert_info.parent.cert_type = GIT_CERT_X509;
-	st->cert_info.data = encoded_cert;
-	st->cert_info.len = cert->raw.len;
-
-	*out = &st->cert_info.parent;
-
-	return 0;
-}
-
-static int mbedtls_set_proxy(git_stream *stream, const git_proxy_options *proxy_options)
-{
-	mbedtls_stream *st = (mbedtls_stream *) stream;
-
-	return git_stream_set_proxy(st->io, proxy_options);
-}
-
-ssize_t mbedtls_stream_write(git_stream *stream, const char *data, size_t len, int flags)
-{
-	size_t read = 0;
-	mbedtls_stream *st = (mbedtls_stream *) stream;
-
-	GIT_UNUSED(flags);
-
-	do {
-		int error = mbedtls_ssl_write(st->ssl, (const unsigned char *)data + read, len - read);
-		if (error <= 0) {
-			return ssl_set_error(st->ssl, error);
-		}
-		read += error;
-	} while (read < len);
-
-	return read;
-}
-
-ssize_t mbedtls_stream_read(git_stream *stream, void *data, size_t len)
-{
-	mbedtls_stream *st = (mbedtls_stream *) stream;
-	int ret;
-
-	if ((ret = mbedtls_ssl_read(st->ssl, (unsigned char *)data, len)) <= 0)
-		ssl_set_error(st->ssl, ret);
-
-	return ret;
-}
-
-int mbedtls_stream_close(git_stream *stream)
-{
-	mbedtls_stream *st = (mbedtls_stream *) stream;
-	int ret = 0;
-
-	if (st->connected && (ret = ssl_teardown(st->ssl)) != 0)
-		return -1;
-
-	st->connected = false;
-
-	return git_stream_close(st->io);
-}
-
-void mbedtls_stream_free(git_stream *stream)
-{
-	mbedtls_stream *st = (mbedtls_stream *) stream;
-
-	git__free(st->host);
-	git__free(st->cert_info.data);
-	git_stream_free(st->io);
-	git__free(st->ssl);
-	git__free(st);
-}
-
-int git_mbedtls_stream_new(git_stream **out, const char *host, const char *port)
-{
-	int error;
-	mbedtls_stream *st;
-
-	st = git__calloc(1, sizeof(mbedtls_stream));
-	GITERR_CHECK_ALLOC(st);
-
-#ifdef GIT_CURL
-	error = git_curl_stream_new(&st->io, host, port);
-#else
-	error = git_socket_stream_new(&st->io, host, port);
-#endif
-
-	if (error < 0)
-		goto out_err;
-
-	st->ssl = git__malloc(sizeof(mbedtls_ssl_context));
-	GITERR_CHECK_ALLOC(st->ssl);
-	mbedtls_ssl_init(st->ssl);
-	if (mbedtls_ssl_setup(st->ssl, git__ssl_conf)) {
-		giterr_set(GITERR_SSL, "failed to create ssl object");
-		error = -1;
-		goto out_err;
-	}
-
-	st->host = git__strdup(host);
-	GITERR_CHECK_ALLOC(st->host);
-
-	st->parent.version = GIT_STREAM_VERSION;
-	st->parent.encrypted = 1;
-	st->parent.proxy_support = git_stream_supports_proxy(st->io);
-	st->parent.connect = mbedtls_connect;
-	st->parent.certificate = mbedtls_certificate;
-	st->parent.set_proxy = mbedtls_set_proxy;
-	st->parent.read = mbedtls_stream_read;
-	st->parent.write = mbedtls_stream_write;
-	st->parent.close = mbedtls_stream_close;
-	st->parent.free = mbedtls_stream_free;
-
-	*out = (git_stream *) st;
-	return 0;
-
-out_err:
-	mbedtls_ssl_free(st->ssl);
-	git_stream_free(st->io);
-	git__free(st);
-
-	return error;
-}
-
-int git_mbedtls__set_cert_location(const char *path, int is_dir)
-{
-	int ret = 0;
-	char errbuf[512];
-	mbedtls_x509_crt *cacert;
-
-	assert(path != NULL);
-
-	cacert = git__malloc(sizeof(mbedtls_x509_crt));
-	mbedtls_x509_crt_init(cacert);
-	if (is_dir) {
-		ret = mbedtls_x509_crt_parse_path(cacert, path);
-	} else {
-		ret = mbedtls_x509_crt_parse_file(cacert, path);
-	}
-	/* mbedtls_x509_crt_parse_path returns the number of invalid certs on success */
-	if (ret < 0) {
-		mbedtls_x509_crt_free(cacert);
-		git__free(cacert);
-		mbedtls_strerror( ret, errbuf, 512 );
-		giterr_set(GITERR_SSL, "failed to load CA certificates: %#04x - %s", ret, errbuf);
-		return -1;
-	}
-
-	mbedtls_x509_crt_free(git__ssl_conf->ca_chain);
-	git__free(git__ssl_conf->ca_chain);
-	mbedtls_ssl_conf_ca_chain(git__ssl_conf, cacert, NULL);
-
-	return 0;
-}
-
-#else
-
-#include "stream.h"
-
-int git_mbedtls_stream_global_init(void)
-{
-	return 0;
-}
-
-int git_mbedtls_stream_new(git_stream **out, const char *host, const char *port)
-{
-	GIT_UNUSED(out);
-	GIT_UNUSED(host);
-	GIT_UNUSED(port);
-
-	giterr_set(GITERR_SSL, "mbedTLS is not supported in this version");
-	return -1;
-}
-
-int git_mbedtls__set_cert_location(const char *path, int is_dir)
-{
-	GIT_UNUSED(path);
-	GIT_UNUSED(is_dir);
-
-	giterr_set(GITERR_SSL, "mbedTLS is not supported in this version");
-	return -1;
-}
-
-#endif