mirror of https://github.com/libgit2/libgit2.git synced 2026-01-25 11:06:32 +00:00

Files

Patrick Steinhardt 25cd374ddd fetchhead: strip credentials from remote URL

If fetching from an anonymous remote via its URL, then the URL gets
written into the FETCH_HEAD reference. This is mainly done to give
valuable context to some commands, like for example git-merge(1), which
will put the URL into the generated MERGE_MSG. As a result, what gets
written into FETCH_HEAD may become public in some cases. This is
especially important considering that URLs may contain credentials, e.g.
when cloning 'https://foo:bar@example.com/repo' we persist the complete
URL into FETCH_HEAD and put it without any kind of sanitization into the
MERGE_MSG. This is obviously bad, as your login data has now just leaked
as soon as you do git-push(1).

When writing the URL into FETCH_HEAD, upstream git does strip
credentials first. Let's do the same by trying to parse the remote URL
as a "real" URL, removing any credentials and then re-formatting the
URL. In case this fails, e.g. when it's a file path or not a valid URL,
we just fall back to using the URL as-is without any sanitization. Add
tests to verify our behaviour.

2020-03-30 11:10:00 +01:00

apply

apply: Test for EOFNL mishandling when several hunks are processed

2020-03-26 16:20:11 +01:00

attr

ignore: treat paths with trailing "/" as directories

2019-05-02 10:22:13 +02:00

blame

Fix segfault when calling git_blame_buffer()

2020-03-26 22:12:59 +01:00

buf

buf::oom tests: use custom allocator for oom failures

2018-10-21 13:15:24 +01:00

checkout

Disallow NTFS Alternate Data Stream attacks, even on Linux/macOS

2019-12-10 11:04:48 +01:00

cherrypick

object_type: use new enumeration names

2018-12-01 11:54:57 +00:00

clar

ci: use more compatible strftime formats

2018-09-06 11:18:59 +01:00

clone

object_type: use new enumeration names

2018-12-01 11:54:57 +00:00

commit

git_error: use new names in internal APIs and usage

2019-01-22 22:30:35 +00:00

config

Correctly write to missing locked global config

2019-05-02 12:06:18 +02:00

core

buffer: fix printing into out-of-memory buffer

2020-03-26 16:20:18 +01:00

date

treewide: remove use of C++ style comments

2018-07-13 08:25:12 +02:00

delta

delta: fix out-of-bounds read of delta

2018-06-29 09:30:02 +02:00

describe

Merge pull request #4702 from tiennou/fix/coverity

2018-07-20 12:56:49 +02:00

diff

patch_parse: handle patches without extended headers

2020-03-26 16:20:18 +01:00

fetchhead

fetchhead: strip credentials from remote URL

2020-03-30 11:10:00 +01:00

filter

git_error: use new names in internal APIs and usage

2019-01-22 22:30:35 +00:00

graph

…

index

index: ensure that we respect core.protectNTFS=false

2019-12-10 11:08:19 +01:00

iterator

refs: refuse to delete HEAD

2020-03-26 22:12:59 +01:00

mailmap

tests: mailmap: avoid definition of unused static variables

2018-11-28 15:22:27 +01:00

merge

annotated_commit: add failing test for looking up from annotated tag

2018-12-14 14:44:23 +01:00

message

just use git_message_trailer in tests

2018-01-16 22:20:50 -08:00

network

git_error: use new names in internal APIs and usage

2019-01-22 22:30:35 +00:00

notes

Convert usage of git_buf_free to new git_buf_dispose

2018-06-10 19:34:37 +02:00

object

tree: ensure we protect NTFS paths everywhere

2019-12-10 11:08:18 +01:00

odb

Fix a memory leak in odb_otype_fast()

2019-05-02 10:22:12 +02:00

online

fetchhead: strip credentials from remote URL

2020-03-30 11:10:00 +01:00

pack

git_error: use new names in internal APIs and usage

2019-01-22 22:30:35 +00:00

patch

patch_parse: fix out-of-bounds reads caused by integer underflow

2020-03-26 22:12:59 +01:00

path

path: support non-ascii drive letters on dos

2019-12-10 11:08:19 +01:00

perf

tests: perf: build but exclude performance tests by default

2018-01-03 11:50:39 +00:00

rebase

references: use new names in internal usage

2019-01-17 10:32:29 +00:00

refs

refs: refuse to delete HEAD

2020-03-26 22:12:59 +01:00

remote

tests: unwarranted NULL-ification

2018-11-02 14:58:12 +01:00

repo

open:fix memory leak when passing NULL to git_repository_open_ext

2020-03-26 16:20:17 +01:00

reset

object_type: use new enumeration names

2018-12-01 11:54:57 +00:00

resources

Fix segfault when calling git_blame_buffer()

2020-03-26 22:12:59 +01:00

revert

object_type: use new enumeration names

2018-12-01 11:54:57 +00:00

revwalk

Fix a bunch of warnings

2019-01-05 22:26:18 -08:00

stash

object_type: use new enumeration names

2018-12-01 11:54:57 +00:00

status

ignore: correct handling of nested rules overriding wild card unignore

2020-03-26 16:20:16 +01:00

stream

deprecation: define GIT_DEPRECATE_HARD internally

2019-01-25 09:06:50 +00:00

stress

Convert usage of git_buf_free to new git_buf_dispose

2018-06-10 19:34:37 +02:00

submodule

object_type: use new enumeration names

2018-12-01 11:54:57 +00:00

threads

git_error: use new names in internal APIs and usage

2019-01-22 22:30:35 +00:00

trace

alloc: make memory allocators use function pointers

2018-06-07 12:57:39 +02:00

transport

Update tests

2018-03-19 16:08:01 -07:00

transports/smart

smart_pkt: reorder and rename parameters of git_pkt_parse_line

2018-10-03 16:09:38 +02:00

win32

git_error: use new names in internal APIs and usage

2019-01-22 22:30:35 +00:00

worktree

worktree: unlock should return 1 when the worktree isn't locked

2018-08-17 00:51:51 +02:00

clar_libgit2_timer.c

…

clar_libgit2_timer.h

…

clar_libgit2_trace.c

…

clar_libgit2_trace.h

…

clar_libgit2.c

git_error: use new names in internal APIs and usage

2019-01-22 22:30:35 +00:00

clar_libgit2.h

cl_git_fail: do not report bogus error message

2019-12-10 11:04:48 +01:00

clar.c

clar: iterate errors in report_all / report_errors

2018-09-08 19:47:25 +01:00

clar.h

Documentation

2018-09-06 11:17:01 +01:00

CMakeLists.txt

deprecation: ensure we GIT_EXTERN deprecated funcs

2019-02-14 11:57:05 +00:00

generate.py

tests: deterministically generate test suite definitions

2017-08-30 21:56:12 +02:00

main.c

clar: provide a way to run some shell before exiting

2018-10-30 22:32:23 +01:00

precompiled.c

cmake: create own precompiled headers for tests

2017-08-16 07:12:38 +02:00

precompiled.h

cmake: create own precompiled headers for tests

2017-08-16 07:12:38 +02:00

README.md

…

valgrind-supp-mac.txt

git_error: use new names in internal APIs and usage

2019-01-22 22:30:35 +00:00

README.md

Writing Clar tests for libgit2

For information on the Clar testing framework and a detailed introduction please visit:

https://github.com/vmg/clar

Write your modules and tests. Use good, meaningful names.
Make sure you actually build the tests by setting:
```
  cmake -DBUILD_CLAR=ON build/
```
Test:
```
  ./build/libgit2_clar
```
Make sure everything is fine.
Send your pull request. That's it.