slide_hash knowingly reads (possibly) uninitialised memory, see comment
lower down about prev[n] potentially being garbage. In this case, the
result is never used - so we don't care about MSAN complaining about
this read.

By adding the no_sanitize("memory") attribute, clients of zlib won't
see this (unnecessary) error when building and running with
MemorySanitizer. An alternative approach is for clients to build zlib
with -fsanitize-ignorelist=... where the ignorelist contains something
like 'fun:slide_hash'. But that's more work and needs to be redone
for any and all CI systems running a given project with MSAN. Adding
this annotation to zlib's sources is overall more convenient - but
also won't affect non-MSAN builds.

This specific issue was found while running git's test suite, but has
also been reported by other clients, see e.g. #518.

The `crc32_combine_gen64` missed a prototype in our define path.
Add one.

Fix erroneously lax configuration ownership checks

Allow users in the administrator group to use git configs that are owned
by administrators.

Allow the user ownership to match if the file is owned by the admin
group and the user is in the admin group, even if the current process is
not running as administrator directly.

Refactor the file ownership checks so that callers can provide discrete
information about the ownership expectations to a single function.

The file ownership concepts can reflect the actual file ownership, they
are not necessarily limited to mocking the interface. Rename them so
that they can be more broadly applicable.

Ensure that we test opening a bare repository with odd permissions.

This reverts commit cdff2f02.

This change erroneously allowed system users to own a worktree; this
should only be allowed when the current user is in the Administrator
group on Windows as well.

cmake: drop posix dependency from pcre* detection

since f585b129 neither PCRE nor PCRE2 backends rely on POSIX regex, so
reflect it in library detection logic

fix interactive rebase detect.

Fix internal git_sysdir_find* function usage within public git_config_find* functions

ntlmclient: LibreSSL 3.5 removed HMAC_CTX_cleanup

ci: update dockerfiles for mbedTLS new url

Update the new URL for mbedTLS.

CI: limits actions scheduled workflows to the main repo

Only run scheduled workflows on the main repository; prevents people
from using build minutes on their forks.

https://ftp.openbsd.org/pub/OpenBSD/LibreSSL/libressl-3.5.0-relnotes.txt

Modify guard to declare dummy function.

filter: Fix Segfault

Co-authored-by: Edward Thomson <ethomson@github.com>

repo: allow administrator to own the configuration

status: update documentation for default options

config: update config entry iteration lifecycle

Update our ownership checks that were introduced in libgit2 v1.4.3
(to combat CVE 2022-24765). These were not compatible with git's; git
itself allows administrators to own the path. Our checks now match
this behavior.

Look for `getentropy` and flag its existence.

transport: introduce `git_transport_smart_remote_connect_options`