Google Git
Sign in
googlers / jrn / git / bb69b3b009c0093417942dba136b81fbf614c4ed
commitbb69b3b009c0093417942dba136b81fbf614c4ed[log] [tgz]
authorEric Sunshine <sunshine@sunshineco.com>Mon Feb 24 04:08:48 2020 -0500
committerJunio C Hamano <gitster@pobox.com>Mon Feb 24 13:05:07 2020 -0800
tree7ca5c5dd31f81939a0b4f3dea560ef9c3ad1983d
parentbb4995fc3fab35b56f1ca48cda9187bcf340e643 [diff]
worktree: don't allow "add" validation to be fooled by suffix matching

"git worktree add <path>" performs various checks before approving
<path> as a valid location for the new worktree. Aside from ensuring
that <path> does not already exist, one of the questions it asks is
whether <path> is already a registered worktree. To perform this check,
it queries find_worktree() and disallows the "add" operation if
find_worktree() finds a match for <path>. As a convenience, however,
find_worktree() casts an overly wide net to allow users to identify
worktrees by shorthand in order to keep typing to a minimum. For
instance, it performs suffix matching which, given subtrees "foo/bar"
and "foo/baz", can correctly select the latter when asked only for
"baz".

"add" validation knows the exact path it is interrogating, so this sort
of heuristic-based matching is, at best, questionable for this use-case
and, at worst, may may accidentally interpret <path> as matching an
existing worktree and incorrectly report it as already registered even
when it isn't. (In fact, validate_worktree_add() already contains a
special case to avoid accidentally matching against the main worktree,
precisely due to this problem.)

Avoid the problem of potential accidental matching against an existing
worktree by instead taking advantage of find_worktree_by_path() which
matches paths deterministically, without applying any sort of magic
shorthand matching performed by find_worktree().

Reported-by: Cameron Gunnin <cameron.gunnin@synopsys.com>
Signed-off-by: Eric Sunshine <sunshine@sunshineco.com>
Signed-off-by: Junio C Hamano <gitster@pobox.com>
2 files changed
tree: 7ca5c5dd31f81939a0b4f3dea560ef9c3ad1983d
  1. .github/
  2. block-sha1/
  3. builtin/
  4. ci/
  5. compat/
  6. contrib/
  7. Documentation/
  8. ewah/
  9. git-gui/
  10. gitk-git/
  11. gitweb/
  12. mergetools/
  13. negotiator/
  14. perl/
  15. po/
  16. ppc/
  17. refs/
  18. sha1dc/
  19. sha256/
  20. t/
  21. templates/
  22. trace2/
  23. vcs-svn/
  24. xdiff/
  25. sha1collisiondetection
  26. RelNotesDocumentation/RelNotes/2.25.0.txt
  27. .cirrus.yml
  28. .clang-format
  29. .editorconfig
  30. .gitattributes
  31. .gitignore
  32. .gitmodules
  33. .mailmap
  34. .travis.yml
  35. .tsan-suppressions
  36. abspath.c
  37. aclocal.m4
  38. add-interactive.c
  39. add-interactive.h
  40. add-patch.c
  41. advice.c
  42. advice.h
  43. alias.c
  44. alias.h
  45. alloc.c
  46. alloc.h
  47. apply.c
  48. apply.h
  49. archive-tar.c
  50. archive-zip.c
  51. archive.c
  52. archive.h
  53. argv-array.c
  54. argv-array.h
  55. attr.c
  56. attr.h
  57. azure-pipelines.yml
  58. banned.h
  59. base85.c
  60. bisect.c
  61. bisect.h
  62. blame.c
  63. blame.h
  64. blob.c
  65. blob.h
  66. branch.c
  67. branch.h
  68. builtin.h
  69. bulk-checkin.c
  70. bulk-checkin.h
  71. bundle.c
  72. bundle.h
  73. cache-tree.c
  74. cache-tree.h
  75. cache.h
  76. chdir-notify.c
  77. chdir-notify.h
  78. check-builtins.sh
  79. check_bindir
  80. checkout.c
  81. checkout.h
  82. CODE_OF_CONDUCT.md
  83. color.c
  84. color.h
  85. column.c
  86. column.h
  87. combine-diff.c
  88. command-list.txt
  89. commit-graph.c
  90. commit-graph.h
  91. commit-reach.c
  92. commit-reach.h
  93. commit-slab-decl.h
  94. commit-slab-impl.h
  95. commit-slab.h
  96. commit.c
  97. commit.h
  98. common-main.c
  99. config.c
  100. config.h
  101. config.mak.dev
  102. config.mak.in
  103. config.mak.uname
  104. configure.ac
  105. connect.c
  106. connect.h
  107. connected.c
  108. connected.h
  109. convert.c
  110. convert.h
  111. copy.c
  112. COPYING
  113. credential-cache--daemon.c
  114. credential-cache.c
  115. credential-store.c
  116. credential.c
  117. credential.h
  118. csum-file.c
  119. csum-file.h
  120. ctype.c
  121. daemon.c
  122. date.c
  123. decorate.c
  124. decorate.h
  125. delta-islands.c
  126. delta-islands.h
  127. delta.h
  128. detect-compiler
  129. diff-delta.c
  130. diff-lib.c
  131. diff-no-index.c
  132. diff.c
  133. diff.h
  134. diffcore-break.c
  135. diffcore-delta.c
  136. diffcore-order.c
  137. diffcore-pickaxe.c
  138. diffcore-rename.c
  139. diffcore.h
  140. dir-iterator.c
  141. dir-iterator.h
  142. dir.c
  143. dir.h
  144. editor.c
  145. entry.c
  146. environment.c
  147. exec-cmd.c
  148. exec-cmd.h
  149. fast-import.c
  150. fetch-negotiator.c
  151. fetch-negotiator.h
  152. fetch-pack.c
  153. fetch-pack.h
  154. fmt-merge-msg.h
  155. fsck.c
  156. fsck.h
  157. fsmonitor.c
  158. fsmonitor.h
  159. fuzz-commit-graph.c
  160. fuzz-pack-headers.c
  161. fuzz-pack-idx.c
  162. generate-cmdlist.sh
  163. gettext.c
  164. gettext.h
  165. git-add--interactive.perl
  166. git-archimport.perl
  167. git-bisect.sh
  168. git-compat-util.h
  169. git-cvsexportcommit.perl
  170. git-cvsimport.perl
  171. git-cvsserver.perl
  172. git-difftool--helper.sh
  173. git-filter-branch.sh
  174. git-instaweb.sh
  175. git-legacy-stash.sh
  176. git-merge-octopus.sh
  177. git-merge-one-file.sh
  178. git-merge-resolve.sh
  179. git-mergetool--lib.sh
  180. git-mergetool.sh
  181. git-p4.py
  182. git-parse-remote.sh
  183. git-quiltimport.sh
  184. git-rebase--preserve-merges.sh
  185. git-request-pull.sh
  186. git-send-email.perl
  187. git-sh-i18n.sh
  188. git-sh-setup.sh
  189. git-submodule.sh
  190. git-svn.perl
  191. GIT-VERSION-GEN
  192. git-web--browse.sh
  193. git.c
  194. git.rc
  195. gpg-interface.c
  196. gpg-interface.h
  197. graph.c
  198. graph.h
  199. grep.c
  200. grep.h
  201. hash.h
  202. hashmap.c
  203. hashmap.h
  204. help.c
  205. help.h
  206. hex.c
  207. http-backend.c
  208. http-fetch.c
  209. http-push.c
  210. http-walker.c
  211. http.c
  212. http.h
  213. ident.c
  214. imap-send.c
  215. INSTALL
  216. interdiff.c
  217. interdiff.h
  218. iterator.h
  219. json-writer.c
  220. json-writer.h
  221. khash.h
  222. kwset.c
  223. kwset.h
  224. levenshtein.c
  225. levenshtein.h
  226. LGPL-2.1
  227. line-log.c
  228. line-log.h
  229. line-range.c
  230. line-range.h
  231. linear-assignment.c
  232. linear-assignment.h
  233. list-objects-filter-options.c
  234. list-objects-filter-options.h
  235. list-objects-filter.c
  236. list-objects-filter.h
  237. list-objects.c
  238. list-objects.h
  239. list.h
  240. ll-merge.c
  241. ll-merge.h
  242. lockfile.c
  243. lockfile.h
  244. log-tree.c
  245. log-tree.h
  246. ls-refs.c
  247. ls-refs.h
  248. mailinfo.c
  249. mailinfo.h
  250. mailmap.c
  251. mailmap.h
  252. Makefile
  253. match-trees.c
  254. mem-pool.c
  255. mem-pool.h
  256. merge-blobs.c
  257. merge-blobs.h
  258. merge-recursive.c
  259. merge-recursive.h
  260. merge.c
  261. mergesort.c
  262. mergesort.h
  263. midx.c
  264. midx.h
  265. name-hash.c
  266. notes-cache.c
  267. notes-cache.h
  268. notes-merge.c
  269. notes-merge.h
  270. notes-utils.c
  271. notes-utils.h
  272. notes.c
  273. notes.h
  274. object-store.h
  275. object.c
  276. object.h
  277. oidmap.c
  278. oidmap.h
  279. oidset.c
  280. oidset.h
  281. pack-bitmap-write.c
  282. pack-bitmap.c
  283. pack-bitmap.h
  284. pack-check.c
  285. pack-objects.c
  286. pack-objects.h
  287. pack-revindex.c
  288. pack-revindex.h
  289. pack-write.c
  290. pack.h
  291. packfile.c
  292. packfile.h
  293. pager.c
  294. parse-options-cb.c
  295. parse-options.c
  296. parse-options.h
  297. patch-delta.c
  298. patch-ids.c
  299. patch-ids.h
  300. path.c
  301. path.h
  302. pathspec.c
  303. pathspec.h
  304. pkt-line.c
  305. pkt-line.h
  306. preload-index.c
  307. pretty.c
  308. pretty.h
  309. prio-queue.c
  310. prio-queue.h
  311. progress.c
  312. progress.h
  313. promisor-remote.c
  314. promisor-remote.h
  315. prompt.c
  316. prompt.h
  317. protocol.c
  318. protocol.h
  319. quote.c
  320. quote.h
  321. range-diff.c
  322. range-diff.h
  323. reachable.c
  324. reachable.h
  325. read-cache.c
  326. README.md
  327. rebase-interactive.c
  328. rebase-interactive.h
  329. ref-filter.c
  330. ref-filter.h
  331. reflog-walk.c
  332. reflog-walk.h
  333. refs.c
  334. refs.h
  335. refspec.c
  336. refspec.h
  337. remote-curl.c
  338. remote-testsvn.c
  339. remote.c
  340. remote.h
  341. replace-object.c
  342. replace-object.h
  343. repo-settings.c
  344. repository.c
  345. repository.h
  346. rerere.c
  347. rerere.h
  348. resolve-undo.c
  349. resolve-undo.h
  350. revision.c
  351. revision.h
  352. run-command.c
  353. run-command.h
  354. send-pack.c
  355. send-pack.h
  356. sequencer.c
  357. sequencer.h
  358. serve.c
  359. serve.h
  360. server-info.c
  361. setup.c
  362. sh-i18n--envsubst.c
  363. sha1-array.c
  364. sha1-array.h
  365. sha1-file.c
  366. sha1-lookup.c
  367. sha1-lookup.h
  368. sha1-name.c
  369. sha1dc_git.c
  370. sha1dc_git.h
  371. shallow.c
  372. shell.c
  373. shortlog.h
  374. sideband.c
  375. sideband.h
  376. sigchain.c
  377. sigchain.h
  378. split-index.c
  379. split-index.h
  380. stable-qsort.c
  381. strbuf.c
  382. strbuf.h
  383. streaming.c
  384. streaming.h
  385. string-list.c
  386. string-list.h
  387. sub-process.c
  388. sub-process.h
  389. submodule-config.c
  390. submodule-config.h
  391. submodule.c
  392. submodule.h
  393. symlinks.c
  394. tag.c
  395. tag.h
  396. tar.h
  397. tempfile.c
  398. tempfile.h
  399. thread-utils.c
  400. thread-utils.h
  401. tmp-objdir.c
  402. tmp-objdir.h
  403. trace.c
  404. trace.h
  405. trace2.c
  406. trace2.h
  407. trailer.c
  408. trailer.h
  409. transport-helper.c
  410. transport-internal.h
  411. transport.c
  412. transport.h
  413. tree-diff.c
  414. tree-walk.c
  415. tree-walk.h
  416. tree.c
  417. tree.h
  418. unicode-width.h
  419. unimplemented.sh
  420. unix-socket.c
  421. unix-socket.h
  422. unpack-trees.c
  423. unpack-trees.h
  424. upload-pack.c
  425. upload-pack.h
  426. url.c
  427. url.h
  428. urlmatch.c
  429. urlmatch.h
  430. usage.c
  431. userdiff.c
  432. userdiff.h
  433. utf8.c
  434. utf8.h
  435. varint.c
  436. varint.h
  437. version.c
  438. version.h
  439. versioncmp.c
  440. walker.c
  441. walker.h
  442. wildmatch.c
  443. wildmatch.h
  444. worktree.c
  445. worktree.h
  446. wrap-for-bin.sh
  447. wrapper.c
  448. write-or-die.c
  449. ws.c
  450. wt-status.c
  451. wt-status.h
  452. xdiff-interface.c
  453. xdiff-interface.h
  454. zlib.c
README.md

Build Status

Git - fast, scalable, distributed revision control system

Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals.

Git is an Open Source project covered by the GNU General Public License version 2 (some parts of it are under different licenses, compatible with the GPLv2). It was originally written by Linus Torvalds with help of a group of hackers around the net.

Please read the file INSTALL for installation instructions.

Many Git online resources are accessible from https://git-scm.com/ including full documentation and Git related tools.

See Documentation/gittutorial.txt to get started, then see Documentation/giteveryday.txt for a useful minimum set of commands, and Documentation/git-<commandname>.txt for documentation of each command. If git has been correctly installed, then the tutorial can also be read with man gittutorial or git help tutorial, and the documentation of each command with man git-<commandname> or git help <commandname>.

CVS users may also want to read Documentation/gitcvs-migration.txt (man gitcvs-migration or git help cvs-migration if git is installed).

The user discussion and development of Git take place on the Git mailing list -- everyone is welcome to post bug reports, feature requests, comments and patches to git@vger.kernel.org (read Documentation/SubmittingPatches for instructions on patch submission). To subscribe to the list, send an email with just “subscribe git” in the body to majordomo@vger.kernel.org. The mailing list archives are available at https://lore.kernel.org/git/, http://marc.info/?l=git and other archival sites.

Issues which are security relevant should be disclosed privately to the Git Security mailing list git-security@googlegroups.com.

The maintainer frequently sends the “What's cooking” reports that list the current status of various development topics to the mailing list. The discussion following them give a good reference for project status, development direction and remaining tasks.

The name “git” was given by Linus Torvalds when he wrote the very first version. He described the tool as “the stupid content tracker” and the name as (depending on your mood):

  • random three-letter combination that is pronounceable, and not actually used by any common UNIX command. The fact that it is a mispronunciation of “get” may or may not be relevant.
  • stupid. contemptible and despicable. simple. Take your pick from the dictionary of slang.
  • “global information tracker”: you're in a good mood, and it actually works for you. Angels sing, and a light suddenly fills the room.
  • “goddamn idiotic truckload of sh*t”: when it breaks