|
433a1334
|
2022-07-13T21:08:04
|
|
Merge pull request #6191 from libgit2/ethomson/sha256_poc
RFC: SHA256 proof of concept
|
|
21b70f09
|
2022-07-13T20:48:04
|
|
Merge pull request #6352 from libgit2/ethomson/post_1.5.0
meta: update version number to v1.6.0-alpha
|
|
43dd3700
|
2022-07-13T20:17:27
|
|
meta: update version number to v1.6.0-alpha
|
|
fbea439d
|
2022-07-13T20:06:59
|
|
Merge pull request #6351 from libgit2/ethomson/v1.5.0
v1.5.0
|
|
2be53a5d
|
2022-07-07T23:13:23
|
|
v1.5: update version numbers
|
|
20303580
|
2022-07-07T23:11:36
|
|
v1.5: update the changelog
|
|
fb02e339
|
2022-07-13T12:27:43
|
|
meta: update release.yml for security information
|
|
3c8a860d
|
2022-07-13T10:19:14
|
|
Merge pull request #6348 from lya001/fix-invalid-branch-name
Fix creation of branches and tags with invalid names
|
|
be08ef7f
|
2022-07-12T22:39:25
|
|
Update src/libgit2/tag.c
|
|
b70dbaa2
|
2022-07-12T22:12:36
|
|
Merge pull request #6347 from libgit2/ethomson/no_pack_v3
pack: don't pretend we support pack files v3
|
|
f6be8c26
|
2022-07-12T22:09:25
|
|
Apply suggestions from code review
|
|
53cfad9e
|
2022-07-12T15:07:11
|
|
Merge pull request #6350 from libgit2/ethomson/zlib
zlib: update bundled zlib to v1.2.12
|
|
4ae8704b
|
2022-07-12T14:42:50
|
|
Merge pull request #6349 from libgit2/ethomson/cve-2022-29187
Fixes for CVE 2022-29187
|
|
6febb7d7
|
2022-07-06T09:52:22
|
|
zlib: declare prototypes for new functions
The `crc32_combine_gen64` missed a prototype in our define path.
Add one.
|
|
2db6cdcd
|
2022-07-06T09:50:55
|
|
zlib: updated bundled zlib to v1.2.12
|
|
af76267a
|
2022-03-28T10:50:16
|
|
zlib: Silence some warnings from Visual Studio C.
|
|
39ba0ee6
|
2021-06-04T18:25:19
|
|
zlib: slide_hash: add MSAN annotation to suppress known read from uninitialised memory
slide_hash knowingly reads (possibly) uninitialised memory, see comment
lower down about prev[n] potentially being garbage. In this case, the
result is never used - so we don't care about MSAN complaining about
this read.
By adding the no_sanitize("memory") attribute, clients of zlib won't
see this (unnecessary) error when building and running with
MemorySanitizer. An alternative approach is for clients to build zlib
with -fsanitize-ignorelist=... where the ignorelist contains something
like 'fun:slide_hash'. But that's more work and needs to be redone
for any and all CI systems running a given project with MSAN. Adding
this annotation to zlib's sources is overall more convenient - but
also won't affect non-MSAN builds.
This specific issue was found while running git's test suite, but has
also been reported by other clients, see e.g. #518.
|
|
ed24b8ba
|
2022-07-05T23:47:15
|
|
repo: allow users running with sudo to access their repositories
In the ownership checks implemented for CVE-2022-24765, we disallowed
users to access their own repositories when running with `sudo`.
Examine the `SUDO_UID` environment variable and allow users running
with `sudo`. This matches git's behavior.
|
|
af9e0032
|
2022-07-02T10:19:33
|
|
repo: validate gitdir and gitlink ownership
To match git's behavior with CVE 2022-29187, validate not only the
working directory, but also the gitdir and gitlink (if it exists). This
a follow up to CVE-2022-24765 that was fixed earlier.
|
|
d1001fd0
|
2022-07-12T14:12:15
|
|
Merge pull request #6341 from libgit2/ethomson/ownership2
Fix erroneously lax configuration ownership checks
|
|
760a5acc
|
2022-07-12T15:07:54
|
|
Merge branch 'main' into fix-invalid-branch-name
|
|
1912f145
|
2022-07-11T15:53:35
|
|
tests: free resources in invalid tag name test
|
|
7456e819
|
2022-07-11T15:42:16
|
|
tests: error when create tag with invalid name
|
|
fe9bfec4
|
2022-07-11T15:35:15
|
|
tag: refactor tag name validity checks
|
|
7560ac4d
|
2022-07-11T15:25:51
|
|
branches: fix error message for invalid name
|
|
724b5a0e
|
2022-07-11T15:24:34
|
|
tests: rename to follow clar naming convention
|
|
2e9228e8
|
2022-07-11T15:23:41
|
|
tests: rename test for consistency
|
|
391afec4
|
2022-07-11T13:54:38
|
|
branch: refactor branch name validity checks
|
|
71fafae1
|
2022-07-11T12:03:37
|
|
tests: error when create branch with invalid name
|
|
e4f98ac4
|
2022-07-11T12:00:23
|
|
tests: follow clar naming convention
|
|
4597b869
|
2022-07-08T21:28:15
|
|
pack: don't pretend we support pack files v3
Pack files v3 are introduced in the SHA256 hash transition document
https://github.com/git/git/blob/master/Documentation/technical/hash-function-transition.txt
Obviously we do not support these yet. Stop pretending that we do.
|
|
56aaaf53
|
2022-07-04T16:03:10
|
|
repo: allow admin owned configs by admin users
Allow users in the administrator group to use git configs that are owned
by administrators.
|
|
5bc01a7d
|
2022-07-04T16:01:01
|
|
fs: allow ownership match if user is in admin group
Allow the user ownership to match if the file is owned by the admin
group and the user is in the admin group, even if the current process is
not running as administrator directly.
|
|
433f0166
|
2022-07-04T15:20:59
|
|
fs: refactor file ownership checks
Refactor the file ownership checks so that callers can provide discrete
information about the ownership expectations to a single function.
|
|
df354ec2
|
2022-07-03T09:07:32
|
|
fs: remove mock naming from change ownership constants
The file ownership concepts can reflect the actual file ownership, they
are not necessarily limited to mocking the interface. Rename them so
that they can be more broadly applicable.
|
|
78af6b5e
|
2022-07-02T15:21:55
|
|
repo: add tests for bare repo permissions
Ensure that we test opening a bare repository with odd permissions.
|
|
f51f6646
|
2022-07-02T15:36:07
|
|
Revert "repo: allow administrator to own the configuration"
This reverts commit cdff2f0237f663e0f68155655a8b66d05c1ec716.
This change erroneously allowed system users to own a worktree; this
should only be allowed when the current user is in the Administrator
group on Windows as well.
|
|
92ffdd2c
|
2022-07-07T09:43:56
|
|
Merge pull request #6333 from jpalus/pcre2-detection
cmake: drop posix dependency from pcre* detection
|
|
636a2752
|
2022-06-27T10:04:23
|
|
cmake: drop posix dependency from pcre* detection
since f585b12 neither PCRE nor PCRE2 backends rely on POSIX regex, so
reflect it in library detection logic
|
|
50a1f637
|
2022-07-07T00:28:56
|
|
Merge pull request #6334 from i-tengfei/fix-rebase-interactive
fix interactive rebase detect.
|
|
b34b831c
|
2022-07-06T23:21:30
|
|
Merge pull request #6335 from kcsaul/fix/config-find-system-file
Fix internal git_sysdir_find* function usage within public git_config_find* functions
|
|
cdcf5b9c
|
2022-07-06T23:19:28
|
|
rebase: formatting fixes
|
|
c2dc51e8
|
2022-07-06T23:14:17
|
|
Merge pull request #6340 from vishwin/main
ntlmclient: LibreSSL 3.5 removed HMAC_CTX_cleanup
|
|
1a94d97e
|
2022-07-06T13:33:06
|
|
Merge pull request #6343 from libgit2/ethomson/ci
ci: update dockerfiles for mbedTLS new url
|
|
5afc146a
|
2022-07-06T11:45:08
|
|
ci: update dockerfiles for mbedTLS new url
Update the new URL for mbedTLS.
|
|
c70035dc
|
2022-07-06T13:10:29
|
|
actions: pass UID and GID to PR builds of dockerfiles
|
|
a2d2769b
|
2022-07-06T11:14:55
|
|
Merge pull request #6342 from libgit2/ethomson/actions_limits
CI: limits actions scheduled workflows to the main repo
|
|
69c1fe0f
|
2022-07-06T10:47:01
|
|
actions: move CodeQL workflow into nightly
|
|
e72af290
|
2022-07-06T10:45:27
|
|
actions: limit secheduled workflows to our main repo
Only run scheduled workflows on the main repository; prevents people
from using build minutes on their forks.
|
|
628ebbde
|
2022-07-03T20:44:41
|
|
ntlmclient: LibreSSL 3.5 removed HMAC_CTX_cleanup
https://ftp.openbsd.org/pub/OpenBSD/LibreSSL/libressl-3.5.0-relnotes.txt
Modify guard to declare dummy function.
|
|
05b2c89d
|
2022-06-28T21:52:45
|
|
config: use correct git_sysdir_find* function within git_config_find* functions
|
|
8fa58818
|
2022-06-28T04:48:57
|
|
fix interactive rebase detect.
|
|
3847522e
|
2022-06-22T21:14:43
|
|
Merge pull request #6303 from zawata/legacy_buffer_stream_segfault
filter: Fix Segfault
|
|
f887fd60
|
2022-06-22T09:22:50
|
|
copy back git_buf after callback
|
|
6013b6a0
|
2022-06-15T22:25:46
|
|
ci: run sha256 builds in ci
|
|
6c57bac6
|
2022-06-14T22:29:10
|
|
sha256: make sha256 an experimental optional feature
libgit2 can be built with optional, experimental sha256 support. This
allows consumers to begin testing and providing feedback for our sha256
support while we continue to develop it, and allows us to make API
breaking changes while we iterate on a final sha256 implementation.
The results will be `git2-experimental.dll` and installed as
`git2-experimental.h` to avoid confusion with a production libgit2.
|
|
d1036201
|
2022-06-18T16:10:38
|
|
meta: generated `features.h` is now `git2_features.h`
Linux has a /usr/include/features.h, which gets confusing; update this
to `git2_features.h` and move it into the `util` directory.
|
|
04f34688
|
2022-01-26T13:10:01
|
|
odb_loose: SHA256 support for loose object storage
Teach the loose object database how to cope with SHA256 objects.
|
|
162c996b
|
2022-01-25T13:43:02
|
|
oid: add git_oid_fmt_substr
Tidy up `nfmt` / `pathfmt`.
|
|
4d7ec76c
|
2021-12-12T09:19:25
|
|
odb: add git_odb_loose_backend_options
Move the arguments to `git_odb_loose` into an options structure.
|
|
dbccfc20
|
2022-01-26T13:57:48
|
|
odb: accept an oid type in options
Allow the object database to take an oid type that it supports. This
oid type will be used to validate the objects that the backends provide.
|
|
3eba9181
|
2022-01-26T13:02:49
|
|
odb: add git_odb_options
Users will need to be able to specify the object id type for the given
object database; add a new `git_odb_options` with that option.
|
|
c50b280f
|
2022-01-26T13:08:24
|
|
oid: provide an oid type to hash type map
We intentionally separate oid types from hash types; a hash is a generic
hunk of bytes, an object id has meaning and backs an object on disk. As
a result of this separation, we need a 1:1 mapping.
|
|
14798060
|
2022-01-26T13:10:36
|
|
oid: specify a default implementation
libgit2's current default oid type is SHA1, set a public macro for that.
|
|
81732413
|
2022-01-27T15:02:27
|
|
clar: format sha256 in cl_assert_equal_oid
|
|
0db1c57c
|
2022-01-25T10:32:47
|
|
oid: add sha256 typed oids
|
|
3fbf580c
|
2022-01-23T09:47:01
|
|
oid: give oids a type
`git_oid`s now have a type, and we require the oid type when creating
the object id from creation functions.
|
|
8444b6dc
|
2022-01-26T13:07:28
|
|
odb_hash*: accept the oid type to hash into
The git_odb_hash helper functions should not assume SHA1, and instead
should be given the oid type that they're producing.
|
|
e0a8b4e8
|
2022-06-16T13:26:52
|
|
fix indentation, copy asize
|
|
61838295
|
2022-01-26T16:22:04
|
|
object: move oid header printing to object
|
|
b7a46fa8
|
2022-01-23T12:25:03
|
|
object: move oid header parsing to object
|
|
c4360116
|
2021-12-12T09:56:28
|
|
oid: include maximum oid raw/hex sizes
|
|
0b068214
|
2021-12-11T15:34:27
|
|
oid: add functions to inspect oid information
Provide helper functions to provide information about the object id size
given its type.
|
|
74ffce20
|
2021-12-11T12:00:26
|
|
oid: introduce `git_oid_t`
We require an enumeration to help us identify the different types of
object IDs. Currently, we only support SHA1 but we will support SHA256
in the future.
|
|
0acaf3a8
|
2022-01-17T13:40:37
|
|
oid: define GIT_OID_SHA1_ZERO
Callers should not assume the layout of the oid structure; provide them
a macro that defines the null / zero sha1 object id.
|
|
dbc4ac1c
|
2022-01-22T23:10:03
|
|
oid: `GIT_OID_*SZ` is now `GIT_OID_SHA1_*SIZE`
In preparation for SHA256 support, `GIT_OID_RAWSZ` and `GIT_OID_HEXSZ`
need to indicate that they're the size of _SHA1_ OIDs.
|
|
e2ea138d
|
2022-06-14T08:47:50
|
|
Address feedback
Co-authored-by: Edward Thomson <ethomson@github.com>
|
|
f98dd543
|
2022-06-13T22:14:37
|
|
Merge pull request #6321 from libgit2/ethomson/ownership
repo: allow administrator to own the configuration
|
|
05f21154
|
2022-06-13T21:56:01
|
|
Merge pull request #6322 from libgit2/ethomson/stat
status: update documentation for default options
|
|
fb68f180
|
2022-06-13T21:44:05
|
|
status: update documentation for default options
|
|
70a182c6
|
2022-06-13T21:38:32
|
|
Merge pull request #6320 from libgit2/ethomson/config-docs
config: update config entry iteration lifecycle
|
|
cdff2f02
|
2022-06-13T21:34:01
|
|
repo: allow administrator to own the configuration
Update our ownership checks that were introduced in libgit2 v1.4.3
(to combat CVE 2022-24765). These were not compatible with git's; git
itself allows administrators to own the path. Our checks now match
this behavior.
|
|
1ed1e19a
|
2022-06-13T21:23:42
|
|
config: update config entry iteration lifecycle
|
|
96c61174
|
2022-06-13T11:19:55
|
|
cmake: only use `getloadavg` where it exists
|
|
3809ab0e
|
2022-06-13T10:50:40
|
|
cmake: add `gnu` library for Haiku
|
|
9bc82c8f
|
2022-06-13T10:46:21
|
|
cmake: detect `getentropy`
Look for `getentropy` and flag its existence.
|
|
7eb7edd4
|
2022-06-12T10:51:13
|
|
Merge pull request #6278 from lhchavez/git_transport_smart_remote_connect_options
transport: introduce `git_transport_smart_remote_connect_options`
|
|
cc4c37ca
|
2022-06-12T10:50:43
|
|
transport: remove `git_transport_smart_proxy_options`
Snuck in during refactoring; let's get rid of it.
|
|
d333dbea
|
2022-06-12T10:40:12
|
|
Merge pull request #6288 from libgit2/cmn/mwindow-simplifications
A couple of simplications around mwindow
|
|
660e6bd5
|
2022-06-11T21:21:01
|
|
Merge pull request #6023 from libgit2/ethomson/clang-format
Add a .clang-format with our style
|
|
0a7c00be
|
2022-06-11T14:31:16
|
|
Merge remote-tracking branch 'origin/main' into main
|
|
a7541676
|
2022-06-11T14:29:15
|
|
Apply suggestions from code review
Co-authored-by: Edward Thomson <ethomson@github.com>
|
|
2b28ee77
|
2022-06-11T16:51:04
|
|
Merge pull request #6319 from libgit2/ethomson/progress_32bit
CLI: progress updates
|
|
28d2ea1d
|
2022-06-11T16:50:56
|
|
Merge pull request #6305 from zawata/fix_refdb_error_msg
refs: fix missing error message
|
|
3b8a06c0
|
2022-06-11T16:50:35
|
|
Merge pull request #6287 from SkinnyMind/docs-typos
docs: fix couple of typos
|
|
565a3317
|
2022-06-11T16:28:12
|
|
Merge pull request #6299 from dongcarl/patch-1
revparse: Remove error-prone, redundant test
|
|
4f7b568d
|
2022-06-11T16:26:50
|
|
Merge pull request #6291 from libgit2/cmn/midx-no-hash
midx: do not verify the checksum on load
|
|
3a737169
|
2022-06-11T16:14:11
|
|
progress: fewer updates about throughput
Avoid too much flashing on the console with updates about throughput.
Only update throughput once a second.
|
|
286e7f0a
|
2022-06-11T16:08:28
|
|
cli: show progress on 32 bit machines
|
|
4f0ee02f
|
2022-06-11T15:40:10
|
|
Merge pull request #6306 from libgit2/ethomson/ci_test
Include test results data in CI
|