Mirror of https://git.kernel.org/pub/scm/git/git.git/ https://git.shady.money/git/atom?h=v2.7.2 2015-11-20T13:02:05Z 2015-11-20T13:02:05Z brian m. carlson sandals@crustytoothpaste.net 2015-11-10T02:22:20Z urn:sha1:f4e54d02b894064d370e461385b48701485672bd Use struct object_id in three fields in struct ref and convert all the necessary places that use it. Signed-off-by: brian m. carlson <sandals@crustytoothpaste.net> Signed-off-by: Jeff King <peff@peff.net> 2015-08-31T22:39:08Z Junio C Hamano gitster@pobox.com 2015-08-31T22:39:07Z urn:sha1:b21089db6a6006bcf9233f0d8592044ca5553c6a The client side codepaths in "git push" have been cleaned up and the user can request to perform an optional "signed push", i.e. sign only when the other end accepts signed push. * db/push-sign-if-asked: push: add a config option push.gpgSign for default signed pushes push: support signing pushes iff the server supports it builtin/send-pack.c: use parse_options API config.c: rename git_config_maybe_bool_text and export it as git_parse_maybe_bool transport: remove git_transport_options.push_cert gitremote-helpers.txt: document pushcert option Documentation/git-send-pack.txt: document --signed Documentation/git-send-pack.txt: wrap long synopsis line Documentation/git-push.txt: document when --signed may fail 2015-08-19T19:58:45Z Dave Borowitz dborowitz@google.com 2015-08-19T15:26:46Z urn:sha1:30261094b1f7fdcba3b7a1f396e43891cd998149 Add a new flag --sign=true (or --sign=false), which means the same thing as the original --signed (or --no-signed). Give it a third value --sign=if-asked to tell push and send-pack to send a push certificate if and only if the server advertised a push cert nonce. If not, warn the user that their push may not be as secure as they thought. Signed-off-by: Dave Borowitz <dborowitz@google.com> Signed-off-by: Junio C Hamano <gitster@pobox.com> 2015-05-06T04:00:23Z Junio C Hamano gitster@pobox.com 2015-05-06T04:00:23Z urn:sha1:a916cb5fb4824322d7e99b1b0efad4e6d7850e78 Identify parts of the code that knows that we use SHA-1 hash to name our objects too much, and use (1) symbolic constants instead of hardcoded 20 as byte count and/or (2) use struct object_id instead of unsigned char [20] for object names. * bc/object-id: apply: convert threeway_stage to object_id patch-id: convert to use struct object_id commit: convert parts to struct object_id diff: convert struct combine_diff_path to object_id bulk-checkin.c: convert to use struct object_id zip: use GIT_SHA1_HEXSZ for trailers archive.c: convert to use struct object_id bisect.c: convert leaf functions to use struct object_id define utility functions for object IDs define a structure for object IDs 2015-04-20T22:28:31Z Junio C Hamano gitster@pobox.com 2015-04-20T22:28:31Z urn:sha1:268d5bc2b2a6f261c6da99c3c9557426468a765b The "git push --signed" protocol extension did not limit what the "nonce" that is a server-chosen string can contain or how long it can be, which was unnecessarily lax. Limit both the length and the alphabet to a reasonably small space that can still have enough entropy. * jc/push-cert: push --signed: tighten what the receiving end can ask to sign 2015-04-02T19:34:43Z Junio C Hamano gitster@pobox.com 2015-04-02T19:34:43Z urn:sha1:3c6151dad310db71f599dbfbac329fa961f29794 * sb/atomic-push: send-pack: unify error messages for unsupported capabilities 2015-04-02T18:05:18Z Junio C Hamano gitster@pobox.com 2015-04-02T01:00:36Z urn:sha1:afcb6ee30acf17f4e0338c49fbab301131abfbba Instead of blindly trusting the receiving side to give us a sensible nonce to sign, limit the length (max 256 bytes) and the alphabet (alnum and a few selected punctuations, enough to encode in base64) that can be used in nonce. Signed-off-by: Junio C Hamano <gitster@pobox.com> 2015-04-02T18:02:52Z Ralf Thielow ralf.thielow@gmail.com 2015-04-02T17:28:48Z urn:sha1:c8b8f22aa97a94dbad4fb7d8dcb2c5bf21c4fa32 If --signed is not supported, the error message names the remote "receiving end". If --atomic is not supported, the error message names the remote "server". Unify the naming to "receiving end" as we're in the context of "push". Signed-off-by: Ralf Thielow <ralf.thielow@gmail.com> Signed-off-by: Junio C Hamano <gitster@pobox.com> 2015-03-14T05:43:13Z brian m. carlson sandals@crustytoothpaste.net 2015-03-13T23:39:34Z urn:sha1:7683e2e6e301835236539a33b2fba936dd1a0a2b Convert struct commit_graft and necessary local parts of commit.c. Also, convert several constants based on the hex length of an SHA-1 to use GIT_SHA1_HEXSZ, and move several magic constants into variables for readability. Signed-off-by: brian m. carlson <sandals@crustytoothpaste.net> Signed-off-by: Junio C Hamano <gitster@pobox.com> 2015-02-11T21:43:51Z Junio C Hamano gitster@pobox.com 2015-02-11T21:43:50Z urn:sha1:39fa6112ec8492f9300765e1f71e7c8ecfafc713 "git push" has been taught a "--atomic" option that makes push to update more than one ref an "all-or-none" affair. * sb/atomic-push: Document receive.advertiseatomic t5543-atomic-push.sh: add basic tests for atomic pushes push.c: add an --atomic argument send-pack.c: add --atomic command line argument send-pack: rename ref_update_to_be_sent to check_to_send_update receive-pack.c: negotiate atomic push support receive-pack.c: add execute_commands_atomic function receive-pack.c: move transaction handling in a central place receive-pack.c: move iterating over all commands outside execute_commands receive-pack.c: die instead of error in case of possible future bug receive-pack.c: shorten the execute_commands loop over all commands