[v3,00/13] Stop relying on SHA1 fallback for `the_hash_algo`

Message ID	cover.1714371422.git.ps@pks.im (mailing list archive)
Headers	show Received: from fhigh3-smtp.messagingengine.com (fhigh3-smtp.messagingengine.com [103.168.172.154]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id 76C5D1118A for <git@vger.kernel.org>; Mon, 29 Apr 2024 06:34:15 +0000 (UTC) Feedback-ID: i197146af:Fastmail Date: Mon, 29 Apr 2024 08:34:09 +0200 From: Patrick Steinhardt <ps@pks.im> To: git@vger.kernel.org Cc: Junio C Hamano <gitster@pobox.com>, "brian m. carlson" <sandals@crustytoothpaste.net>, Justin Tobler <jltobler@gmail.com> Subject: [PATCH v3 00/13] Stop relying on SHA1 fallback for `the_hash_algo` Message-ID: <cover.1714371422.git.ps@pks.im> References: <cover.1713519789.git.ps@pks.im> Precedence: bulk MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha512; protocol="application/pgp-signature"; boundary="7g6evmVLWcx5JcpP" Content-Disposition: inline In-Reply-To: <cover.1713519789.git.ps@pks.im>
Series	Stop relying on SHA1 fallback for `the_hash_algo` \| expand [v3,00/13] Stop relying on SHA1 fallback for `the_hash_algo` [v3,01/13] path: harden validation of HEAD with non-standard hashes [v3,02/13] path: move `validate_headref()` to its only user [v3,03/13] parse-options-cb: only abbreviate hashes when hash algo is known [v3,04/13] attr: don't recompute default attribute source [v3,05/13] attr: fix BUG() when parsing attrs outside of repo [v3,06/13] remote-curl: fix parsing of detached SHA256 heads [v3,07/13] builtin/rev-parse: allow shortening to more than 40 hex characters [v3,08/13] builtin/blame: don't access potentially unitialized `the_hash_algo` [v3,09/13] builtin/bundle: abort "verify" early when there is no repository [v3,10/13] builtin/diff: explicitly set hash algo when there is no repo [v3,11/13] builtin/shortlog: don't set up revisions without repo [v3,12/13] oss-fuzz/commit-graph: set up hash algorithm [v3,13/13] repository: stop setting SHA1 as the default object hash

Message ID

cover.1714371422.git.ps@pks.im (mailing list archive)

Headers

Feedback-ID: i197146af:Fastmail
Date: Mon, 29 Apr 2024 08:34:09 +0200
From: Patrick Steinhardt <ps@pks.im>
To: git@vger.kernel.org
Cc: Junio C Hamano <gitster@pobox.com>,
	"brian m. carlson" <sandals@crustytoothpaste.net>,
	Justin Tobler <jltobler@gmail.com>
Subject: [PATCH v3 00/13] Stop relying on SHA1 fallback for `the_hash_algo`
Message-ID: <cover.1714371422.git.ps@pks.im>
References: <cover.1713519789.git.ps@pks.im>
Precedence: bulk
MIME-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha512;
	protocol="application/pgp-signature"; boundary="7g6evmVLWcx5JcpP"
Content-Disposition: inline
In-Reply-To: <cover.1713519789.git.ps@pks.im>

Series

Stop relying on SHA1 fallback for `the_hash_algo` | expand

Message

Patrick Steinhardt April 29, 2024, 6:34 a.m. UTC

Hi,

this is the third version of my patch series that stops relying on the
SHA1 fallback configured for `the_hash_algo`.

There's only a single change compared to v2, which is a new patch that
fixes a segfault in the commit-graph fuzzer.

Thanks!

Patrick

Patrick Steinhardt (13):
  path: harden validation of HEAD with non-standard hashes
  path: move `validate_headref()` to its only user
  parse-options-cb: only abbreviate hashes when hash algo is known
  attr: don't recompute default attribute source
  attr: fix BUG() when parsing attrs outside of repo
  remote-curl: fix parsing of detached SHA256 heads
  builtin/rev-parse: allow shortening to more than 40 hex characters
  builtin/blame: don't access potentially unitialized `the_hash_algo`
  builtin/bundle: abort "verify" early when there is no repository
  builtin/diff: explicitly set hash algo when there is no repo
  builtin/shortlog: don't set up revisions without repo
  oss-fuzz/commit-graph: set up hash algorithm
  repository: stop setting SHA1 as the default object hash

 attr.c                       | 31 +++++++++++++++------
 builtin/blame.c              |  5 ++--
 builtin/bundle.c             |  5 ++++
 builtin/diff.c               |  9 ++++++
 builtin/rev-parse.c          |  5 ++--
 builtin/shortlog.c           |  2 +-
 oss-fuzz/fuzz-commit-graph.c |  1 +
 parse-options-cb.c           |  3 +-
 path.c                       | 53 ------------------------------------
 path.h                       |  1 -
 remote-curl.c                | 19 ++++++++++++-
 repository.c                 |  2 --
 setup.c                      | 53 ++++++++++++++++++++++++++++++++++++
 t/t0003-attributes.sh        | 15 ++++++++++
 t/t0040-parse-options.sh     | 17 ++++++++++++
 t/t1500-rev-parse.sh         |  6 ++++
 t/t5550-http-fetch-dumb.sh   | 15 ++++++++++
 17 files changed, 168 insertions(+), 74 deletions(-)

Range-diff against v2:
 1:  a986b464d3 =  1:  5134f35cda path: harden validation of HEAD with non-standard hashes
 2:  a347c7e6ca =  2:  589b6a99ef path: move `validate_headref()` to its only user
 3:  c0a15b2fa6 =  3:  9a63c445d2 parse-options-cb: only abbreviate hashes when hash algo is known
 4:  1b5f904eed =  4:  929bacbfce attr: don't recompute default attribute source
 5:  26909daca4 =  5:  8f20aec1ee attr: fix BUG() when parsing attrs outside of repo
 6:  0b99184f50 =  6:  53439067a1 remote-curl: fix parsing of detached SHA256 heads
 7:  ccfda3c2d2 =  7:  1f74960760 builtin/rev-parse: allow shortening to more than 40 hex characters
 8:  1813e7eb5c =  8:  2d985abca1 builtin/blame: don't access potentially unitialized `the_hash_algo`
 9:  31182a1fc6 =  9:  f3b23d28aa builtin/bundle: abort "verify" early when there is no repository
10:  78e19d0a1b = 10:  7577b6b96c builtin/diff: explicitly set hash algo when there is no repo
11:  51bcddbc31 = 11:  509c79d1d3 builtin/shortlog: don't set up revisions without repo
 -:  ---------- > 12:  660f976129 oss-fuzz/commit-graph: set up hash algorithm
12:  e8126371e1 = 13:  95909c2da5 repository: stop setting SHA1 as the default object hash