Commits
- Commit:
ae25a666dd4099105786ef32f1e6ebaf92abe64d
- From:
- Omar Polo <op@omarpolo.com>
- Date:
add some helper functions to compute hashes
This adds a set of functions to abstract over SHA1Init, SHA1Update,
SHA1Final, their respective SHA256 variants and how to compare digests.
Replace all the SHA1*() usage with the new APIs. It's a preparatory
step for sha256 handling.
ok stsp@
- Commit:
53bf0b541977b66862040d4b633fb6b5d3a3c6c8
- From:
- Omar Polo <op@omarpolo.com>
- Date:
rename lib/sha1.c to lib/hash.c
It will soon grow functions to deal with sha256 too. stsp@ agrees.
- Commit:
5822e79e39a8777984e08b5d89a8c55d6aa0356d
- From:
- Omar Polo <op@omarpolo.com>
- Date:
include sha2.h too where sha1.h is included
In preparation for wide sha256 support; stsp@ agrees. Change done
mechanically with
find . -iname \*.[cy] -exec sam {} +
X ,x/<sha1\.h>/i/\n#include <sha2.h>
- Commit:
161b566ff8fdc61984f077c6ab1d75b5f0fd5ac7
- From:
- Omar Polo <op@omarpolo.com>
- Date:
lib/object_create.c: calloc object ids
future fields added to the got_object_id will be implicitly zeroed
instead of gibberish.
ok stsp@
- Commit:
b90054ed55f30ebe28115abf5ad9cecc2b925713
- From:
- Stefan Sperling <stsp@stsp.name>
- Date:
use mkstemps(3) instead of mkstemp(3) for opening named temporary files
Allows 'got commit' to use a ".diff" suffix for temporary diff files.
ok op@
- Commit:
40831471082f880a26b73987b595a52dc1c93794
- From:
- Josh Rickmar <jrick@zettaport.com>
- Date:
don't create signed tag objects with trailing NUL
Although Git itself did not care, the superfluous NUL at the end of
the tag object was breaking GitHub's SSH signature detection.
ok stsp@
- Commit:
438d0cc30baf8e97fd870f5e620833e0a45401aa
- From:
- Omar Polo <op@omarpolo.com>
- Date:
fix snprintf error handling
follow the "proper secure idiom" described in the CAVEATS section of
printf(3). reminded by tb@ and millert@
- Commit:
c9e76cc42e880db2e858c1e99942214157bd7ea9
- From:
- Florian Obser <florian@narrans.de>
- Date:
Prevent memory leak when asprintf fails.
Found by llvm's scan-build.
OK stsp
- Commit:
1bd8e3b16ccbc427fca485fda6db88babc57dc2b
- From:
- Josh Rickmar <jrick@zettaport.com>
- Date:
fix pipe usage for linux
This uses the correct read and write ends of the fds returned by
pipe(2) on linux. It also moves away from creating FILE* streams with
fdopen and reading the stream with buf_load (which performs a fstat,
and breaks due to a zero length file size on linux) by instead reading
from the fd itself.
Reported by abieber@, with assistance from stsp@
ok stsp@
- Commit:
91d845ad5d8f8897e51d3f9233a9ea3e89fee80d
- From:
- Josh Rickmar <jrick@zettaport.com>
- Date:
fix tag signing when the key file does not exist
This should fail without creating any tag. Before, ssh-keygen(1)
would print an error to stderr, but got would create an unsigned tag.
ok op@
- Commit:
4d5ee9564a9e46a1f634f619833c62f636cfbdc1
- From:
- Josh Rickmar <jrick@zettaport.com>
- Date:
create and verify tags signed by SSH keys
This adds a new -s flag to 'got tag' that specifies the signer
identity (for example, a key file) of the tagger. The tag object will
include a signature that validates each of the tag object headers and
the tag message.
Verifying these signed tags requires maintaining an allowed signers
file which maps signer identities (i.e. the email address of the
tagger) to SSH public keys. See ssh-keygen(1) for more details of the
allowed signers file. After creating this file and providing the path
to it in got.conf(5) using the allowed_signers option, tags may be
verified using with 'got tag -V tag_name'. The return code will be
non-zero if a signature fails to verify.
ok stsp@
- Commit:
336075a42a5ae0fa322db734c481d21998e82bb8
- From:
- Omar Polo <op@omarpolo.com>
- Date:
build with -Wmissing-prototypes
ok stsp@
- Commit:
d7b5a0e827bb38e5c8502f0ba8d7838fedaba19b
- From:
- Stefan Sperling <stsp@stsp.name>
- Date:
inline struct got_object_id in struct got_object_qid
Saves us from doing a malloc/free call for every item on the list.
ok op@
- Commit:
72840534edfc1ffa7aafa0ce0ab42568c8ec7145
- From:
- Stefan Sperling <stsp@stsp.name>
- Date:
compress delta data from delta_cache directly into pack file
- Commit:
8bd0cdad05519cbb08d8d11223bdde0472678150
- From:
- Stefan Sperling <stsp@stsp.name>
- Date:
add O_CLOEXEC (close-on-exec) flag to open(2) calls
suggested by millert
ok thomas_adam