Mirror of https://git.kernel.org/pub/scm/git/git.git/ https://www.git.shady.money/git/atom?h=v2.27.0 2020-04-20T05:05:56Z 2020-04-20T05:05:56Z Junio C Hamano gitster@pobox.com 2020-04-20T05:05:56Z urn:sha1:048abe1751e6727bfbacf7b80466d78e04631f94 2020-04-19T23:32:24Z Jonathan Nieder jrnieder@gmail.com 2020-04-19T23:32:24Z urn:sha1:af6b65d45ef179ed52087e80cb089f6b2349f4ec This merges up the security fix from v2.17.5. Signed-off-by: Jonathan Nieder <jrnieder@gmail.com> 2020-04-19T23:31:07Z Jonathan Nieder jrnieder@gmail.com 2020-04-19T23:31:07Z urn:sha1:7397ca33730626f682845f8691b39c305535611e This merges up the security fix from v2.17.5. Signed-off-by: Jonathan Nieder <jrnieder@gmail.com> 2020-04-19T23:30:34Z Jonathan Nieder jrnieder@gmail.com 2020-04-19T23:30:34Z urn:sha1:b86a4be245d0ba077c97c6ab6b1cdbeb9dcc1342 This merges up the security fix from v2.17.5. Signed-off-by: Jonathan Nieder <jrnieder@gmail.com> 2020-04-19T23:30:19Z Jonathan Nieder jrnieder@gmail.com 2020-04-19T23:30:19Z urn:sha1:c9808fa014aa88cc306705d308d1d9065d567ddc This merges up the security fix from v2.17.5. Signed-off-by: Jonathan Nieder <jrnieder@gmail.com> 2020-04-19T23:30:08Z Jonathan Nieder jrnieder@gmail.com 2020-04-19T23:30:08Z urn:sha1:9206d27eb5e76bbb3a4e59e3c53f92eaa0caa97b This merges up the security fix from v2.17.5. Signed-off-by: Jonathan Nieder <jrnieder@gmail.com> 2020-04-19T23:28:57Z Jonathan Nieder jrnieder@gmail.com 2020-04-19T23:28:57Z urn:sha1:041bc65923e13313ca1b77681c3b2950b5e0a163 This merges up the security fix from v2.17.5. Signed-off-by: Jonathan Nieder <jrnieder@gmail.com> 2020-04-19T23:26:41Z Jonathan Nieder jrnieder@gmail.com 2020-04-19T23:26:41Z urn:sha1:76b54ee9b9944ee70422ac24884f78769cf264f1 This merges up the security fix from v2.17.5. Signed-off-by: Jonathan Nieder <jrnieder@gmail.com> 2020-04-19T23:24:14Z Jonathan Nieder jrnieder@gmail.com 2020-04-19T23:24:14Z urn:sha1:ba6f0905fdb9e65c1ac5fbc79c9a4ef0b59b3e68 This merges up the security fix from v2.17.5. Signed-off-by: Jonathan Nieder <jrnieder@gmail.com> 2020-04-19T23:10:57Z Jeff King peff@peff.net 2020-04-19T03:48:05Z urn:sha1:24036686c4af84c9e84e486ef3debab6e6d8e6b5 We may feed a URL like "cert:///path/to/cert.pem" into the credential machinery to get the key for a client-side certificate. That credential has no hostname field, which is about to be disallowed (to avoid confusion with protocols where a helper _would_ expect a hostname). This means as of the next patch, credential helpers won't work for unlocking certs. Let's fix that by doing two things: - when we parse a url with an empty host, set the host field to the empty string (asking only to match stored entries with an empty host) rather than NULL (asking to match _any_ host). - when we build a cert:// credential by hand, similarly assign an empty string It's the latter that is more likely to impact real users in practice, since it's what's used for http connections. But we don't have good infrastructure to test it. The url-parsing version will help anybody using git-credential in a script, and is easy to test. Signed-off-by: Jeff King <peff@peff.net> Reviewed-by: Taylor Blau <me@ttaylorr.com> Signed-off-by: Jonathan Nieder <jrnieder@gmail.com>