Google Git
Sign in
googlers / jrn / git / abcbdc03895ff3f00280e54af11fee92d6877044
commitabcbdc03895ff3f00280e54af11fee92d6877044[log] [tgz]
authorJeff King <peff@peff.net>Wed Dec 14 14:39:55 2016 -0800
committerJunio C Hamano <gitster@pobox.com>Thu Dec 15 09:29:13 2016 -0800
tree7101db7492d3eb86db6d4c710a30a904ff37b43a
parenta768a02265f3b8f43e37f66a0a3affba92c830c7 [diff]
http: respect protocol.*.allow=user for http-alternates

The http-walker may fetch the http-alternates (or
alternates) file from a remote in order to find more
objects. This should count as a "not from the user" use of
the protocol. But because we implement the redirection
ourselves and feed the new URL to curl, it will use the
CURLOPT_PROTOCOLS rules, not the more restrictive
CURLOPT_REDIR_PROTOCOLS.

The ideal solution would be for each curl request we make to
know whether or not is directly from the user or part of an
alternates redirect, and then set CURLOPT_PROTOCOLS as
appropriate. However, that would require plumbing that
information through all of the various layers of the http
code.

Instead, let's check the protocol at the source: when we are
parsing the remote http-alternates file. The only downside
is that if there's any mismatch between what protocol we
think it is versus what curl thinks it is, it could violate
the policy.

To address this, we'll make the parsing err on the picky
side, and only allow protocols that it can parse
definitively. So for example, you can't elude the "http"
policy by asking for "HTTP://", even though curl might
handle it; we would reject it as unknown. The only unsafe
case would be if you have a URL that starts with "http://"
but curl interprets as another protocol. That seems like an
unlikely failure mode (and we are still protected by our
base CURLOPT_PROTOCOL setting, so the worst you could do is
trigger one of https, ftp, or ftps).

Signed-off-by: Jeff King <peff@peff.net>
Signed-off-by: Brandon Williams <bmwill@google.com>
Signed-off-by: Junio C Hamano <gitster@pobox.com>
2 files changed
tree: 7101db7492d3eb86db6d4c710a30a904ff37b43a
  1. block-sha1/
  2. builtin/
  3. ci/
  4. compat/
  5. contrib/
  6. Documentation/
  7. ewah/
  8. git-gui/
  9. gitk-git/
  10. gitweb/
  11. mergetools/
  12. perl/
  13. po/
  14. ppc/
  15. refs/
  16. t/
  17. templates/
  18. vcs-svn/
  19. xdiff/
  20. RelNotesDocumentation/RelNotes/2.9.4.txt
  21. .gitattributes
  22. .gitignore
  23. .mailmap
  24. .travis.yml
  25. abspath.c
  26. aclocal.m4
  27. advice.c
  28. advice.h
  29. alias.c
  30. alloc.c
  31. archive-tar.c
  32. archive-zip.c
  33. archive.c
  34. archive.h
  35. argv-array.c
  36. argv-array.h
  37. attr.c
  38. attr.h
  39. base85.c
  40. bisect.c
  41. bisect.h
  42. blob.c
  43. blob.h
  44. branch.c
  45. branch.h
  46. builtin.h
  47. bulk-checkin.c
  48. bulk-checkin.h
  49. bundle.c
  50. bundle.h
  51. cache-tree.c
  52. cache-tree.h
  53. cache.h
  54. check-builtins.sh
  55. check-racy.c
  56. check_bindir
  57. color.c
  58. color.h
  59. column.c
  60. column.h
  61. combine-diff.c
  62. command-list.txt
  63. commit-slab.h
  64. commit.c
  65. commit.h
  66. common-main.c
  67. config.c
  68. config.mak.in
  69. config.mak.uname
  70. configure.ac
  71. connect.c
  72. connect.h
  73. connected.c
  74. connected.h
  75. convert.c
  76. convert.h
  77. copy.c
  78. COPYING
  79. credential-cache--daemon.c
  80. credential-cache.c
  81. credential-store.c
  82. credential.c
  83. credential.h
  84. csum-file.c
  85. csum-file.h
  86. ctype.c
  87. daemon.c
  88. date.c
  89. decorate.c
  90. decorate.h
  91. delta.h
  92. diff-delta.c
  93. diff-lib.c
  94. diff-no-index.c
  95. diff.c
  96. diff.h
  97. diffcore-break.c
  98. diffcore-delta.c
  99. diffcore-order.c
  100. diffcore-pickaxe.c
  101. diffcore-rename.c
  102. diffcore.h
  103. dir.c
  104. dir.h
  105. editor.c
  106. entry.c
  107. environment.c
  108. exec_cmd.c
  109. exec_cmd.h
  110. fast-import.c
  111. fetch-pack.c
  112. fetch-pack.h
  113. fmt-merge-msg.h
  114. fsck.c
  115. fsck.h
  116. generate-cmdlist.sh
  117. gettext.c
  118. gettext.h
  119. git-add--interactive.perl
  120. git-archimport.perl
  121. git-bisect.sh
  122. git-compat-util.h
  123. git-cvsexportcommit.perl
  124. git-cvsimport.perl
  125. git-cvsserver.perl
  126. git-difftool--helper.sh
  127. git-difftool.perl
  128. git-filter-branch.sh
  129. git-instaweb.sh
  130. git-merge-octopus.sh
  131. git-merge-one-file.sh
  132. git-merge-resolve.sh
  133. git-mergetool--lib.sh
  134. git-mergetool.sh
  135. git-p4.py
  136. git-parse-remote.sh
  137. git-quiltimport.sh
  138. git-rebase--am.sh
  139. git-rebase--interactive.sh
  140. git-rebase--merge.sh
  141. git-rebase.sh
  142. git-relink.perl
  143. git-remote-testgit.sh
  144. git-request-pull.sh
  145. git-send-email.perl
  146. git-sh-i18n.sh
  147. git-sh-setup.sh
  148. git-stash.sh
  149. git-submodule.sh
  150. git-svn.perl
  151. GIT-VERSION-GEN
  152. git-web--browse.sh
  153. git.c
  154. git.rc
  155. gpg-interface.c
  156. gpg-interface.h
  157. graph.c
  158. graph.h
  159. grep.c
  160. grep.h
  161. hashmap.c
  162. hashmap.h
  163. help.c
  164. help.h
  165. hex.c
  166. http-backend.c
  167. http-fetch.c
  168. http-push.c
  169. http-walker.c
  170. http.c
  171. http.h
  172. ident.c
  173. imap-send.c
  174. INSTALL
  175. khash.h
  176. kwset.c
  177. kwset.h
  178. levenshtein.c
  179. levenshtein.h
  180. LGPL-2.1
  181. line-log.c
  182. line-log.h
  183. line-range.c
  184. line-range.h
  185. list-objects.c
  186. list-objects.h
  187. list.h
  188. ll-merge.c
  189. ll-merge.h
  190. lockfile.c
  191. lockfile.h
  192. log-tree.c
  193. log-tree.h
  194. mailinfo.c
  195. mailinfo.h
  196. mailmap.c
  197. mailmap.h
  198. Makefile
  199. match-trees.c
  200. merge-blobs.c
  201. merge-blobs.h
  202. merge-recursive.c
  203. merge-recursive.h
  204. merge.c
  205. mergesort.c
  206. mergesort.h
  207. name-hash.c
  208. notes-cache.c
  209. notes-cache.h
  210. notes-merge.c
  211. notes-merge.h
  212. notes-utils.c
  213. notes-utils.h
  214. notes.c
  215. notes.h
  216. object.c
  217. object.h
  218. pack-bitmap-write.c
  219. pack-bitmap.c
  220. pack-bitmap.h
  221. pack-check.c
  222. pack-objects.c
  223. pack-objects.h
  224. pack-revindex.c
  225. pack-revindex.h
  226. pack-write.c
  227. pack.h
  228. pager.c
  229. parse-options-cb.c
  230. parse-options.c
  231. parse-options.h
  232. patch-delta.c
  233. patch-ids.c
  234. patch-ids.h
  235. path.c
  236. pathspec.c
  237. pathspec.h
  238. pkt-line.c
  239. pkt-line.h
  240. preload-index.c
  241. pretty.c
  242. prio-queue.c
  243. prio-queue.h
  244. progress.c
  245. progress.h
  246. prompt.c
  247. prompt.h
  248. quote.c
  249. quote.h
  250. reachable.c
  251. reachable.h
  252. read-cache.c
  253. README.md
  254. ref-filter.c
  255. ref-filter.h
  256. reflog-walk.c
  257. reflog-walk.h
  258. refs.c
  259. refs.h
  260. remote-curl.c
  261. remote-testsvn.c
  262. remote.c
  263. remote.h
  264. replace_object.c
  265. rerere.c
  266. rerere.h
  267. resolve-undo.c
  268. resolve-undo.h
  269. revision.c
  270. revision.h
  271. run-command.c
  272. run-command.h
  273. send-pack.c
  274. send-pack.h
  275. sequencer.c
  276. sequencer.h
  277. server-info.c
  278. setup.c
  279. sh-i18n--envsubst.c
  280. sha1-array.c
  281. sha1-array.h
  282. sha1-lookup.c
  283. sha1-lookup.h
  284. sha1_file.c
  285. sha1_name.c
  286. shallow.c
  287. shell.c
  288. shortlog.h
  289. show-index.c
  290. sideband.c
  291. sideband.h
  292. sigchain.c
  293. sigchain.h
  294. split-index.c
  295. split-index.h
  296. strbuf.c
  297. strbuf.h
  298. streaming.c
  299. streaming.h
  300. string-list.c
  301. string-list.h
  302. submodule-config.c
  303. submodule-config.h
  304. submodule.c
  305. submodule.h
  306. symlinks.c
  307. tag.c
  308. tag.h
  309. tar.h
  310. tempfile.c
  311. tempfile.h
  312. thread-utils.c
  313. thread-utils.h
  314. trace.c
  315. trace.h
  316. trailer.c
  317. trailer.h
  318. transport-helper.c
  319. transport.c
  320. transport.h
  321. tree-diff.c
  322. tree-walk.c
  323. tree-walk.h
  324. tree.c
  325. tree.h
  326. unicode_width.h
  327. unimplemented.sh
  328. unix-socket.c
  329. unix-socket.h
  330. unpack-trees.c
  331. unpack-trees.h
  332. update_unicode.sh
  333. upload-pack.c
  334. url.c
  335. url.h
  336. urlmatch.c
  337. urlmatch.h
  338. usage.c
  339. userdiff.c
  340. userdiff.h
  341. utf8.c
  342. utf8.h
  343. varint.c
  344. varint.h
  345. version.c
  346. version.h
  347. versioncmp.c
  348. walker.c
  349. walker.h
  350. wildmatch.c
  351. wildmatch.h
  352. worktree.c
  353. worktree.h
  354. wrap-for-bin.sh
  355. wrapper.c
  356. write_or_die.c
  357. ws.c
  358. wt-status.c
  359. wt-status.h
  360. xdiff-interface.c
  361. xdiff-interface.h
  362. zlib.c
README.md

Git - fast, scalable, distributed revision control system

Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals.

Git is an Open Source project covered by the GNU General Public License version 2 (some parts of it are under different licenses, compatible with the GPLv2). It was originally written by Linus Torvalds with help of a group of hackers around the net.

Please read the file INSTALL for installation instructions.

Many Git online resources are accessible from http://git-scm.com/ including full documentation and Git related tools.

See Documentation/gittutorial.txt to get started, then see Documentation/giteveryday.txt for a useful minimum set of commands, and Documentation/git-.txt for documentation of each command. If git has been correctly installed, then the tutorial can also be read with man gittutorial or git help tutorial, and the documentation of each command with man git-<commandname> or git help <commandname>.

CVS users may also want to read Documentation/gitcvs-migration.txt (man gitcvs-migration or git help cvs-migration if git is installed).

The user discussion and development of Git take place on the Git mailing list -- everyone is welcome to post bug reports, feature requests, comments and patches to git@vger.kernel.org (read Documentation/SubmittingPatches for instructions on patch submission). To subscribe to the list, send an email with just “subscribe git” in the body to majordomo@vger.kernel.org. The mailing list archives are available at http://news.gmane.org/gmane.comp.version-control.git/, http://marc.info/?l=git and other archival sites.

The maintainer frequently sends the “What's cooking” reports that list the current status of various development topics to the mailing list. The discussion following them give a good reference for project status, development direction and remaining tasks.

The name “git” was given by Linus Torvalds when he wrote the very first version. He described the tool as “the stupid content tracker” and the name as (depending on your mood):

  • random three-letter combination that is pronounceable, and not actually used by any common UNIX command. The fact that it is a mispronunciation of “get” may or may not be relevant.
  • stupid. contemptible and despicable. simple. Take your pick from the dictionary of slang.
  • “global information tracker”: you're in a good mood, and it actually works for you. Angels sing, and a light suddenly fills the room.
  • “goddamn idiotic truckload of sh*t”: when it breaks