summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAge
* improve temp dir securityGravatar Joey Hess2015-12-15
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | http://bugs.debian.org/807341 * Fix insecure temporary permissions when git-annex repair is used in in a corrupted git repository. Other calls to withTmpDir didn't leak any potentially private data, but repair clones the git repository to a temp directory which is made using the user's umask. Thus, it might expose a git repo that is otherwise locked down. * Fix potential denial of service attack when creating temp dirs. Since withTmpDir used easily predictable temporary directory names, an attacker could create foo.0, foo.1, etc and as long as it managed to keep ahead of it, could prevent it from ever returning. I'd rate this as a low utility DOS attack. Most attackers in a position to do this could just fill up the disk /tmp is on to prevent anything from writing temp files. And few parts of git-annex use withTmpDir anyway, so DOS potential is quite low. Examined all callers of withTmpDir and satisfied myself that switching to mkdtmp and so getting a mode 700 temp dir wouldn't break any of them. Note that withTmpDirIn continues to not force temp dir to 700. But it's only used for temp directories inside .git/annex/wherever/ so that is not a problem. Also re-audited all other uses of temp files and dirs in git-annex.
* Debian: Build depend on concurrent-output.Gravatar Joey Hess2015-12-12
| | | | In unstable now.
* 2 more data -> 2 more daysGravatar http://www.ryantm.com/2015-12-11
|
* devblogGravatar Joey Hess2015-12-11
|
* fsck: Failed to honor annex.diskreserve when checking a remote.Gravatar Joey Hess2015-12-11
|
* Merge branch 'master' of ssh://git-annex.branchable.comGravatar Joey Hess2015-12-11
|\
* | webdav: When testing the WebDAV server, send a file with content. The empty ↵Gravatar Joey Hess2015-12-11
| | | | | | | | file it was sending tickled bugs in some php WebDAV server.
* | commentGravatar Joey Hess2015-12-11
| |
* | commentGravatar Joey Hess2015-12-11
| |
* | commentGravatar Joey Hess2015-12-11
| |
* | add Blackblaze B2 extranal special remote to the listGravatar Joey Hess2015-12-11
| |
* | commentGravatar Joey Hess2015-12-11
| |
* | clean upGravatar Joey Hess2015-12-11
| |
| * Added a commentGravatar yminus2015-12-10
| |
| * Added a commentGravatar http://joeyh.name/2015-12-10
| |
* | commentGravatar Joey Hess2015-12-10
| |
| * Added a comment: Complete removalGravatar fbicknel@01ede624a1a56b3998b823e9b60da0ff81cccb162015-12-10
| |
* | Add S3 features to git-annex version output.Gravatar Joey Hess2015-12-10
|/
* commentGravatar Joey Hess2015-12-10
|
* responseGravatar Joey Hess2015-12-10
|
* responseGravatar Joey Hess2015-12-10
|
* Added a comment: The downsideGravatar https://openid.stackexchange.com/user/27ceb3c5-0762-42b8-8f8a-ed21c284748f2015-12-10
|
* (no commit message)Gravatar https://openid.stackexchange.com/user/3ee5cf54-f022-4a71-8666-3c2b5ee231dd2015-12-09
|
* Merge branch 'master' of ssh://git-annex.branchable.comGravatar Joey Hess2015-12-09
|\
* | devblogGravatar Joey Hess2015-12-09
| |
| * Added a commentGravatar openmedi2015-12-09
| |
| * Added a comment: anyone saw/worked on backend for watchdox service? (not ↵Gravatar https://me.yahoo.com/a/EbvxpTI_xP9Aod7Mg4cwGhgjrCrdM5s-#7c0f42015-12-08
|/ | | | free one but needed :-/)
* add news item for git-annex 5.20151208Gravatar Joey Hess2015-12-08
|
* prep release5.20151208Gravatar Joey Hess2015-12-08
|
* responseGravatar Joey Hess2015-12-08
|
* Added a comment: Problems initializing glacier remoteGravatar ben2015-12-08
|
* I started using a repo on S3, so that partially answered my question about ↵Gravatar wsha.code+ga@b38779424f41c5701bbe5937340be43ff1474b2d2015-12-08
| | | | how files are stored on S3.
* Added a commentGravatar wsha.code+ga@b38779424f41c5701bbe5937340be43ff1474b2d2015-12-08
|
* Added a comment: How to view configuration of special remotes?Gravatar cantora@432fae6be728a32ac472387df86a8922f059d4a62015-12-08
|
* Merge branch 'master' of ssh://git-annex.branchable.comGravatar Joey Hess2015-12-07
|\
* | devblogGravatar Joey Hess2015-12-07
| |
| * Added a commentGravatar sts2015-12-07
|/
* Merge branch 'master' of ssh://git-annex.branchable.comGravatar Joey Hess2015-12-06
|\
* | fix temp filenameGravatar Joey Hess2015-12-06
| | | | | | | | | | | | | | Was not putting it inside the temp dir, but next to it! This was just wrong, and it led to a longer filename that desired being used, leading to some bug reports.
* | avoid too long temp dir templateGravatar Joey Hess2015-12-06
| | | | | | | | | | The filename might be at or close to the filename length limit, so using it as the template for the temp dir would then fail.
* | cleanupGravatar Joey Hess2015-12-06
| |
* | avoid looping trying to make temp dir when the name is too longGravatar Joey Hess2015-12-06
| | | | | | | | | | Only loop when directory creation fails due to the directory existing already.
| * Added a commentGravatar torpidus2015-12-06
| |
* | generalize catchHardwareFault to catchIOErrorTypeGravatar Joey Hess2015-12-06
|/
* (no commit message)Gravatar torpidus2015-12-06
|
* Fix broken link to other bugGravatar samuel.hym+bugs@a85e9c44dc6369ad6b12e8e6a3896ad34f7df4a32015-12-06
|
* Report bug due to broken createSymbolicLinkGravatar samuel.hym+bugs@a85e9c44dc6369ad6b12e8e6a3896ad34f7df4a32015-12-06
|
* mGravatar spwhitton2015-12-05
|
* Copy hints for Emacs users from propellor coding style pageGravatar spwhitton2015-12-05
|
* (no commit message)Gravatar a@b34f238966e58f7c2ea550cc4cab3005c0e331502015-12-05
|
generated by cgit v1.2.3 (git 2.39.1) at 2024-09-06 08:21:58 +0000