Commits · fb9515abc80c945dfe74713989dfb4f41d03d106 · lvzhengyang / git2

14 Jul, 2022 13 commits
- stash: test save options init · fb9515ab
  Jacob Watson committed Jul 14, 2022
  
  fb9515ab Browse Files
- stash: add `const` to arguments · fc9d2897
  Jacob Watson committed Jul 14, 2022
  
  fc9d2897 Browse Files
- stash: better option validation for stash save · d0155f10
  Jacob Watson committed Jul 14, 2022
  
  d0155f10 Browse Files
- stash: implement CI testing · d91de9b0
  Jacob Watson committed Jul 14, 2022
  
  d91de9b0 Browse Files
- stash: implement partial stashing by path · 8dc78a0f
  Jacob Watson committed Jul 14, 2022
  
  8dc78a0f Browse Files
- Merge pull request #6353 from libgit2/ethomson/flaky_googlesource · ac0f2245
```
tests: skip flaky-ass googlesource tests
```
  Edward Thomson committed Jul 13, 2022
  ac0f2245 Browse Files
- Merge pull request #6354 from libgit2/ethomson/sha256_experimental · 46ce10f0
```
sha256: indirection for experimental functions
```
  Edward Thomson committed Jul 13, 2022
  46ce10f0 Browse Files
- sha256: indirection for experimental functions · b43567d6
```
The experimental function signature is only available when
`GIT_EXPERIMENTAL_SHA256` is enabled.
```
  Edward Thomson committed Jul 13, 2022
  b43567d6 Browse Files
- Merge pull request #6191 from libgit2/ethomson/sha256_poc · 433a1334
```
RFC: SHA256 proof of concept
```
  Edward Thomson committed Jul 13, 2022
  433a1334 Browse Files
- tests: skip flaky-ass googlesource tests · cbd5319f
  Edward Thomson committed Jul 13, 2022
  
  cbd5319f Browse Files
- Merge pull request #6352 from libgit2/ethomson/post_1.5.0 · 21b70f09
```
meta: update version number to v1.6.0-alpha
```
  Edward Thomson committed Jul 13, 2022
  21b70f09 Browse Files
- meta: update version number to v1.6.0-alpha · 43dd3700
  Edward Thomson committed Jul 13, 2022
  
  43dd3700 Browse Files
- Merge pull request #6351 from libgit2/ethomson/v1.5.0 · fbea439d
```
v1.5.0
```
  Edward Thomson committed Jul 13, 2022
  fbea439d Browse Files
13 Jul, 2022 7 commits
- v1.5: update version numbers · 2be53a5d
  Edward Thomson committed Jul 13, 2022
  
  2be53a5d Browse Files
- v1.5: update the changelog · 20303580
  Edward Thomson committed Jul 13, 2022
  
  20303580 Browse Files
- meta: update release.yml for security information · fb02e339
  Edward Thomson committed Jul 13, 2022
  
  fb02e339 Browse Files
- Merge pull request #6348 from lya001/fix-invalid-branch-name · 3c8a860d
```
Fix creation of branches and tags with invalid names
```
  Edward Thomson committed Jul 13, 2022
  3c8a860d Browse Files
- Update src/libgit2/tag.c · be08ef7f
  Edward Thomson committed Jul 12, 2022
  
  be08ef7f Browse Files
- Merge pull request #6347 from libgit2/ethomson/no_pack_v3 · b70dbaa2
```
pack: don't pretend we support pack files v3
```
  Edward Thomson committed Jul 12, 2022
  b70dbaa2 Browse Files
- Apply suggestions from code review · f6be8c26
  Edward Thomson committed Jul 12, 2022
  
  f6be8c26 Browse Files
12 Jul, 2022 10 commits

Merge pull request #6350 from libgit2/ethomson/zlib · 53cfad9e
```
zlib: update bundled zlib to v1.2.12
```
Edward Thomson committed Jul 12, 2022
53cfad9e Browse Files
Merge pull request #6349 from libgit2/ethomson/cve-2022-29187 · 4ae8704b
```
Fixes for CVE 2022-29187
```
Edward Thomson committed Jul 12, 2022
4ae8704b Browse Files
zlib: Silence some warnings from Visual Studio C. · af76267a
Mark Adler committed Jul 12, 2022

af76267a Browse Files

zlib: slide_hash: add MSAN annotation to suppress known read from uninitialised memory · 39ba0ee6

slide_hash knowingly reads (possibly) uninitialised memory, see comment
lower down about prev[n] potentially being garbage. In this case, the
result is never used - so we don't care about MSAN complaining about
this read.

By adding the no_sanitize("memory") attribute, clients of zlib won't
see this (unnecessary) error when building and running with
MemorySanitizer. An alternative approach is for clients to build zlib
with -fsanitize-ignorelist=... where the ignorelist contains something
like 'fun:slide_hash'. But that's more work and needs to be redone
for any and all CI systems running a given project with MSAN. Adding
this annotation to zlib's sources is overall more convenient - but
also won't affect non-MSAN builds.

This specific issue was found while running git's test suite, but has
also been reported by other clients, see e.g. #518.

committed Jul 12, 2022

39ba0ee6 Browse Files

zlib: declare prototypes for new functions · 6febb7d7
```
The `crc32_combine_gen64` missed a prototype in our define path.
Add one.
```
Edward Thomson committed Jul 12, 2022
6febb7d7 Browse Files
zlib: updated bundled zlib to v1.2.12 · 2db6cdcd
Edward Thomson committed Jul 12, 2022

2db6cdcd Browse Files

repo: allow users running with sudo to access their repositories · ed24b8ba

In the ownership checks implemented for CVE-2022-24765, we disallowed
users to access their own repositories when running with `sudo`.

Examine the `SUDO_UID` environment variable and allow users running
with `sudo`. This matches git's behavior.

committed Jul 12, 2022

ed24b8ba Browse Files

repo: validate gitdir and gitlink ownership · af9e0032

To match git's behavior with CVE 2022-29187, validate not only the
working directory, but also the gitdir and gitlink (if it exists). This
a follow up to CVE-2022-24765 that was fixed earlier.

committed Jul 12, 2022

af9e0032 Browse Files

Merge pull request #6341 from libgit2/ethomson/ownership2 · d1001fd0
```
Fix erroneously lax configuration ownership checks
```
Edward Thomson committed Jul 12, 2022
d1001fd0 Browse Files
Merge branch 'main' into fix-invalid-branch-name · 760a5acc
yuangli committed Jul 12, 2022

760a5acc Browse Files

11 Jul, 2022 9 commits
- tests: free resources in invalid tag name test · 1912f145
  yuangli committed Jul 11, 2022
  
  1912f145 Browse Files
- tests: error when create tag with invalid name · 7456e819
  yuangli committed Jul 11, 2022
  
  7456e819 Browse Files
- tag: refactor tag name validity checks · fe9bfec4
  yuangli committed Jul 11, 2022
  
  fe9bfec4 Browse Files
- branches: fix error message for invalid name · 7560ac4d
  yuangli committed Jul 11, 2022
  
  7560ac4d Browse Files
- tests: rename to follow clar naming convention · 724b5a0e
  yuangli committed Jul 11, 2022
  
  724b5a0e Browse Files
- tests: rename test for consistency · 2e9228e8
  yuangli committed Jul 11, 2022
  
  2e9228e8 Browse Files
- branch: refactor branch name validity checks · 391afec4
  yuangli committed Jul 11, 2022
  
  391afec4 Browse Files
- tests: error when create branch with invalid name · 71fafae1
  yuangli committed Jul 11, 2022
  
  71fafae1 Browse Files
- tests: follow clar naming convention · e4f98ac4
  yuangli committed Jul 11, 2022
  
  e4f98ac4 Browse Files
09 Jul, 2022 1 commit

pack: don't pretend we support pack files v3 · 4597b869

Pack files v3 are introduced in the SHA256 hash transition document
https://github.com/git/git/blob/master/Documentation/technical/hash-function-transition.txt

Obviously we do not support these yet. Stop pretending that we do.

committed Jul 08, 2022

4597b869 Browse Files