From: Christian <crich-ml@beronet.com>
To: Junio C Hamano <junkio@cox.net>
Cc: git@vger.kernel.org
Subject: Re: git push over http is very dangerous
Date: Sun, 22 Apr 2007 09:21:37 +0200 [thread overview]
Message-ID: <462B0D01.7000102@beronet.com> (raw)
In-Reply-To: <7v4pn9vaye.fsf@assigned-by-dhcp.cox.net>
Junio C Hamano wrote:
> Christian <crich-ml@beronet.com> writes:
>
>
>> The central machine is a AMD Sempron, it runs Debian Sarge (3.1)
>> We've installed git from source, because sarge has it not in its
>> archives.
>>
>> Maybe we did something wrong at building time ? or you're right and
>> the debian sarge zlib does not fit good to the current git versions ?
>>
>
> What I have been suspecting since I got that not-corrupted but
> reported to be corrupt tree is that the version running on your
> "unable to fsck" machine -- the one you use as the central
> machine -- has a dud (or miscompiled) version of git, which
> somehow reports corruption incorrectly on perfectly good
> objects when it validates it before using them.
>
well if you like i can give you an account to that machine offlist, i
could show you in a screen session where everything is.
> And to that machine, push over http succeeds fine only because
> push over http is "dangerous" in that it does not "validate" the
> pushed data on the receiving end like other codepaths do.
>
> It would be interesting to find out what the breakage is on that
> central machine. I think enough people run Sarge that it is
> unlikely it's zlib at fault, but the way git uses the zlib API,
> which was cleaned up in the current tree with the two fixes from
> Linus I mentioned earlier.
>
>
>
> -
> To unsubscribe from this list: send the line "unsubscribe git" in
> the body of a message to majordomo@vger.kernel.org
> More majordomo info at http://vger.kernel.org/majordomo-info.html
>
>
>
prev parent reply other threads:[~2007-04-22 7:22 UTC|newest]
Thread overview: 9+ messages / expand[flat|nested] mbox.gz Atom feed top
2007-04-16 15:22 git push over http is very dangerous Christian
2007-04-16 19:38 ` Linus Torvalds
2007-04-16 19:55 ` Junio C Hamano
2007-04-16 20:20 ` Linus Torvalds
2007-04-20 18:37 ` Christian
2007-04-21 1:03 ` Junio C Hamano
2007-04-21 17:07 ` Christian
2007-04-21 18:28 ` Junio C Hamano
2007-04-22 7:21 ` Christian [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=462B0D01.7000102@beronet.com \
--to=crich-ml@beronet.com \
--cc=git@vger.kernel.org \
--cc=junkio@cox.net \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.