Google Git
Sign in
googlers / jrn / git / f52b0cb4184362b2f88ebbf9ea20016914ce469d
commitf52b0cb4184362b2f88ebbf9ea20016914ce469d[log] [tgz]
authorJohannes Schindelin <johannes.schindelin@gmx.de>Fri Apr 24 22:35:48 2020 +0000
committerJunio C Hamano <gitster@pobox.com>Fri Apr 24 15:53:41 2020 -0700
tree7ef5cb5d34f1ba4b7a049cca796fe257683b57ba
parentaf6b65d45ef179ed52087e80cb089f6b2349f4ec [diff]
credential: optionally allow partial URLs in credential_from_url_gently()

Prior to the fixes for CVE-2020-11008, we were _very_ lenient in what we
required from a URL in order to parse it into a `struct credential`.
That led to serious vulnerabilities.

There was one call site, though, that really needed that leniency: when
parsing config settings a la `credential.dev.azure.com.useHTTPPath`.
Settings like this might be desired when users want to use, say, a given
user name on a given host, regardless of the protocol to be used.

In preparation for fixing that bug, let's refactor the code to
optionally allow for partial URLs. For the moment, this functionality is
only exposed via the now-renamed function `credential_from_url_1()`, but
it is not used. The intention is to make it easier to verify that this
commit does not change the existing behavior unless explicitly allowing
for partial URLs.

Please note that this patch does more than just reinstating a way to
imitate the behavior before those CVE-2020-11008 fixes: Before that, we
would simply ignore URLs without a protocol. In other words,
misleadingly, the following setting would be applied to _all_ URLs:

	[credential "example.com"]
		username = that-me

The obvious intention is to match the host name only. With this patch,
we allow precisely that: when parsing the URL with non-zero
`allow_partial_url`, we do not simply return success if there was no
protocol, but we simply leave the protocol unset and continue parsing
the URL.

Signed-off-by: Johannes Schindelin <johannes.schindelin@gmx.de>
Signed-off-by: Junio C Hamano <gitster@pobox.com>
1 file changed
tree: 7ef5cb5d34f1ba4b7a049cca796fe257683b57ba
  1. .github/
  2. block-sha1/
  3. builtin/
  4. ci/
  5. compat/
  6. contrib/
  7. Documentation/
  8. ewah/
  9. git-gui/
  10. gitk-git/
  11. gitweb/
  12. mergetools/
  13. negotiator/
  14. perl/
  15. po/
  16. ppc/
  17. refs/
  18. sha1dc/
  19. sha256/
  20. t/
  21. templates/
  22. trace2/
  23. vcs-svn/
  24. xdiff/
  25. sha1collisiondetection
  26. RelNotesDocumentation/RelNotes/2.26.2.txt
  27. .cirrus.yml
  28. .clang-format
  29. .editorconfig
  30. .gitattributes
  31. .gitignore
  32. .gitmodules
  33. .mailmap
  34. .travis.yml
  35. .tsan-suppressions
  36. abspath.c
  37. aclocal.m4
  38. add-interactive.c
  39. add-interactive.h
  40. add-patch.c
  41. advice.c
  42. advice.h
  43. alias.c
  44. alias.h
  45. alloc.c
  46. alloc.h
  47. apply.c
  48. apply.h
  49. archive-tar.c
  50. archive-zip.c
  51. archive.c
  52. archive.h
  53. argv-array.c
  54. argv-array.h
  55. attr.c
  56. attr.h
  57. azure-pipelines.yml
  58. banned.h
  59. base85.c
  60. bisect.c
  61. bisect.h
  62. blame.c
  63. blame.h
  64. blob.c
  65. blob.h
  66. branch.c
  67. branch.h
  68. builtin.h
  69. bulk-checkin.c
  70. bulk-checkin.h
  71. bundle.c
  72. bundle.h
  73. cache-tree.c
  74. cache-tree.h
  75. cache.h
  76. chdir-notify.c
  77. chdir-notify.h
  78. check-builtins.sh
  79. check_bindir
  80. checkout.c
  81. checkout.h
  82. CODE_OF_CONDUCT.md
  83. color.c
  84. color.h
  85. column.c
  86. column.h
  87. combine-diff.c
  88. command-list.txt
  89. commit-graph.c
  90. commit-graph.h
  91. commit-reach.c
  92. commit-reach.h
  93. commit-slab-decl.h
  94. commit-slab-impl.h
  95. commit-slab.h
  96. commit.c
  97. commit.h
  98. common-main.c
  99. config.c
  100. config.h
  101. config.mak.dev
  102. config.mak.in
  103. config.mak.uname
  104. configure.ac
  105. connect.c
  106. connect.h
  107. connected.c
  108. connected.h
  109. convert.c
  110. convert.h
  111. copy.c
  112. COPYING
  113. credential-cache--daemon.c
  114. credential-cache.c
  115. credential-store.c
  116. credential.c
  117. credential.h
  118. csum-file.c
  119. csum-file.h
  120. ctype.c
  121. daemon.c
  122. date.c
  123. decorate.c
  124. decorate.h
  125. delta-islands.c
  126. delta-islands.h
  127. delta.h
  128. detect-compiler
  129. diff-delta.c
  130. diff-lib.c
  131. diff-no-index.c
  132. diff.c
  133. diff.h
  134. diffcore-break.c
  135. diffcore-delta.c
  136. diffcore-order.c
  137. diffcore-pickaxe.c
  138. diffcore-rename.c
  139. diffcore.h
  140. dir-iterator.c
  141. dir-iterator.h
  142. dir.c
  143. dir.h
  144. editor.c
  145. entry.c
  146. environment.c
  147. exec-cmd.c
  148. exec-cmd.h
  149. fast-import.c
  150. fetch-negotiator.c
  151. fetch-negotiator.h
  152. fetch-pack.c
  153. fetch-pack.h
  154. fmt-merge-msg.h
  155. fsck.c
  156. fsck.h
  157. fsmonitor.c
  158. fsmonitor.h
  159. fuzz-commit-graph.c
  160. fuzz-pack-headers.c
  161. fuzz-pack-idx.c
  162. generate-cmdlist.sh
  163. gettext.c
  164. gettext.h
  165. git-add--interactive.perl
  166. git-archimport.perl
  167. git-bisect.sh
  168. git-compat-util.h
  169. git-cvsexportcommit.perl
  170. git-cvsimport.perl
  171. git-cvsserver.perl
  172. git-difftool--helper.sh
  173. git-filter-branch.sh
  174. git-instaweb.sh
  175. git-legacy-stash.sh
  176. git-merge-octopus.sh
  177. git-merge-one-file.sh
  178. git-merge-resolve.sh
  179. git-mergetool--lib.sh
  180. git-mergetool.sh
  181. git-p4.py
  182. git-parse-remote.sh
  183. git-quiltimport.sh
  184. git-rebase--preserve-merges.sh
  185. git-request-pull.sh
  186. git-send-email.perl
  187. git-sh-i18n.sh
  188. git-sh-setup.sh
  189. git-submodule.sh
  190. git-svn.perl
  191. GIT-VERSION-GEN
  192. git-web--browse.sh
  193. git.c
  194. git.rc
  195. gpg-interface.c
  196. gpg-interface.h
  197. graph.c
  198. graph.h
  199. grep.c
  200. grep.h
  201. hash.h
  202. hashmap.c
  203. hashmap.h
  204. help.c
  205. help.h
  206. hex.c
  207. http-backend.c
  208. http-fetch.c
  209. http-push.c
  210. http-walker.c
  211. http.c
  212. http.h
  213. ident.c
  214. imap-send.c
  215. INSTALL
  216. interdiff.c
  217. interdiff.h
  218. iterator.h
  219. json-writer.c
  220. json-writer.h
  221. khash.h
  222. kwset.c
  223. kwset.h
  224. levenshtein.c
  225. levenshtein.h
  226. LGPL-2.1
  227. line-log.c
  228. line-log.h
  229. line-range.c
  230. line-range.h
  231. linear-assignment.c
  232. linear-assignment.h
  233. list-objects-filter-options.c
  234. list-objects-filter-options.h
  235. list-objects-filter.c
  236. list-objects-filter.h
  237. list-objects.c
  238. list-objects.h
  239. list.h
  240. ll-merge.c
  241. ll-merge.h
  242. lockfile.c
  243. lockfile.h
  244. log-tree.c
  245. log-tree.h
  246. ls-refs.c
  247. ls-refs.h
  248. mailinfo.c
  249. mailinfo.h
  250. mailmap.c
  251. mailmap.h
  252. Makefile
  253. match-trees.c
  254. mem-pool.c
  255. mem-pool.h
  256. merge-blobs.c
  257. merge-blobs.h
  258. merge-recursive.c
  259. merge-recursive.h
  260. merge.c
  261. mergesort.c
  262. mergesort.h
  263. midx.c
  264. midx.h
  265. name-hash.c
  266. notes-cache.c
  267. notes-cache.h
  268. notes-merge.c
  269. notes-merge.h
  270. notes-utils.c
  271. notes-utils.h
  272. notes.c
  273. notes.h
  274. object-store.h
  275. object.c
  276. object.h
  277. oidmap.c
  278. oidmap.h
  279. oidset.c
  280. oidset.h
  281. pack-bitmap-write.c
  282. pack-bitmap.c
  283. pack-bitmap.h
  284. pack-check.c
  285. pack-objects.c
  286. pack-objects.h
  287. pack-revindex.c
  288. pack-revindex.h
  289. pack-write.c
  290. pack.h
  291. packfile.c
  292. packfile.h
  293. pager.c
  294. parse-options-cb.c
  295. parse-options.c
  296. parse-options.h
  297. patch-delta.c
  298. patch-ids.c
  299. patch-ids.h
  300. path.c
  301. path.h
  302. pathspec.c
  303. pathspec.h
  304. pkt-line.c
  305. pkt-line.h
  306. preload-index.c
  307. pretty.c
  308. pretty.h
  309. prio-queue.c
  310. prio-queue.h
  311. progress.c
  312. progress.h
  313. promisor-remote.c
  314. promisor-remote.h
  315. prompt.c
  316. prompt.h
  317. protocol.c
  318. protocol.h
  319. quote.c
  320. quote.h
  321. range-diff.c
  322. range-diff.h
  323. reachable.c
  324. reachable.h
  325. read-cache.c
  326. README.md
  327. rebase-interactive.c
  328. rebase-interactive.h
  329. rebase.c
  330. rebase.h
  331. ref-filter.c
  332. ref-filter.h
  333. reflog-walk.c
  334. reflog-walk.h
  335. refs.c
  336. refs.h
  337. refspec.c
  338. refspec.h
  339. remote-curl.c
  340. remote-testsvn.c
  341. remote.c
  342. remote.h
  343. replace-object.c
  344. replace-object.h
  345. repo-settings.c
  346. repository.c
  347. repository.h
  348. rerere.c
  349. rerere.h
  350. resolve-undo.c
  351. resolve-undo.h
  352. revision.c
  353. revision.h
  354. run-command.c
  355. run-command.h
  356. send-pack.c
  357. send-pack.h
  358. sequencer.c
  359. sequencer.h
  360. serve.c
  361. serve.h
  362. server-info.c
  363. setup.c
  364. sh-i18n--envsubst.c
  365. sha1-array.c
  366. sha1-array.h
  367. sha1-file.c
  368. sha1-lookup.c
  369. sha1-lookup.h
  370. sha1-name.c
  371. sha1dc_git.c
  372. sha1dc_git.h
  373. shallow.c
  374. shell.c
  375. shortlog.h
  376. sideband.c
  377. sideband.h
  378. sigchain.c
  379. sigchain.h
  380. split-index.c
  381. split-index.h
  382. stable-qsort.c
  383. strbuf.c
  384. strbuf.h
  385. streaming.c
  386. streaming.h
  387. string-list.c
  388. string-list.h
  389. sub-process.c
  390. sub-process.h
  391. submodule-config.c
  392. submodule-config.h
  393. submodule.c
  394. submodule.h
  395. symlinks.c
  396. tag.c
  397. tag.h
  398. tar.h
  399. tempfile.c
  400. tempfile.h
  401. thread-utils.c
  402. thread-utils.h
  403. tmp-objdir.c
  404. tmp-objdir.h
  405. trace.c
  406. trace.h
  407. trace2.c
  408. trace2.h
  409. trailer.c
  410. trailer.h
  411. transport-helper.c
  412. transport-internal.h
  413. transport.c
  414. transport.h
  415. tree-diff.c
  416. tree-walk.c
  417. tree-walk.h
  418. tree.c
  419. tree.h
  420. unicode-width.h
  421. unimplemented.sh
  422. unix-socket.c
  423. unix-socket.h
  424. unpack-trees.c
  425. unpack-trees.h
  426. upload-pack.c
  427. upload-pack.h
  428. url.c
  429. url.h
  430. urlmatch.c
  431. urlmatch.h
  432. usage.c
  433. userdiff.c
  434. userdiff.h
  435. utf8.c
  436. utf8.h
  437. varint.c
  438. varint.h
  439. version.c
  440. version.h
  441. versioncmp.c
  442. walker.c
  443. walker.h
  444. wildmatch.c
  445. wildmatch.h
  446. worktree.c
  447. worktree.h
  448. wrap-for-bin.sh
  449. wrapper.c
  450. write-or-die.c
  451. ws.c
  452. wt-status.c
  453. wt-status.h
  454. xdiff-interface.c
  455. xdiff-interface.h
  456. zlib.c
README.md

Build Status

Git - fast, scalable, distributed revision control system

Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals.

Git is an Open Source project covered by the GNU General Public License version 2 (some parts of it are under different licenses, compatible with the GPLv2). It was originally written by Linus Torvalds with help of a group of hackers around the net.

Please read the file INSTALL for installation instructions.

Many Git online resources are accessible from https://git-scm.com/ including full documentation and Git related tools.

See Documentation/gittutorial.txt to get started, then see Documentation/giteveryday.txt for a useful minimum set of commands, and Documentation/git-<commandname>.txt for documentation of each command. If git has been correctly installed, then the tutorial can also be read with man gittutorial or git help tutorial, and the documentation of each command with man git-<commandname> or git help <commandname>.

CVS users may also want to read Documentation/gitcvs-migration.txt (man gitcvs-migration or git help cvs-migration if git is installed).

The user discussion and development of Git take place on the Git mailing list -- everyone is welcome to post bug reports, feature requests, comments and patches to git@vger.kernel.org (read Documentation/SubmittingPatches for instructions on patch submission). To subscribe to the list, send an email with just “subscribe git” in the body to majordomo@vger.kernel.org. The mailing list archives are available at https://lore.kernel.org/git/, http://marc.info/?l=git and other archival sites.

Issues which are security relevant should be disclosed privately to the Git Security mailing list git-security@googlegroups.com.

The maintainer frequently sends the “What's cooking” reports that list the current status of various development topics to the mailing list. The discussion following them give a good reference for project status, development direction and remaining tasks.

The name “git” was given by Linus Torvalds when he wrote the very first version. He described the tool as “the stupid content tracker” and the name as (depending on your mood):

  • random three-letter combination that is pronounceable, and not actually used by any common UNIX command. The fact that it is a mispronunciation of “get” may or may not be relevant.
  • stupid. contemptible and despicable. simple. Take your pick from the dictionary of slang.
  • “global information tracker”: you're in a good mood, and it actually works for you. Angels sing, and a light suddenly fills the room.
  • “goddamn idiotic truckload of sh*t”: when it breaks