Re: Replacing large blobs in git history

All of lore.kernel.org
 help / color / mirror / Atom feed

From: Holger Hellmuth <hellmuth@ira.uka.de>
To: "Ævar Arnfjörð Bjarmason" <avarab@gmail.com>
Cc: Neal Kreitzinger <nkreitzinger@gmail.com>,
	Barry Roberts <blr@robertsr.us>, git <git@vger.kernel.org>
Subject: Re: Replacing large blobs in git history
Date: Thu, 08 Mar 2012 16:39:57 +0100	[thread overview]
Message-ID: <4F58D2CD.2050502@ira.uka.de> (raw)
In-Reply-To: <CACBZZX4hinV8vkebyNCLp_Ac6L80aNbdGOFqg1nSsCuRktFFrg@mail.gmail.com>

On 07.03.2012 22:27, Ævar Arnfjörð Bjarmason wrote:
> Does something other than git-fsck actually check whether the
> collection of blobs you're getting from the remote when you clone have
> sensible sha1's?
>
> What'll happen if he replaces that 550MB blob with a 0 byte blob but
> hacks the object store so that it pretends to have the same sha1?

This is something I tested once because of security concerns (i.e. what 
happens if a malicious intruder just drops something else into the 
object store) and if I remember correctly only git-fsck was able to spot 
the switch. But I didn't test cloning, only a few local operations.

next prev parent reply	other threads:[~2012-03-08 15:39 UTC|newest]

Thread overview: 6+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2012-03-06 16:09 Replacing large blobs in git history Barry Roberts
2012-03-06 20:49 ` Neal Kreitzinger
2012-03-07 21:27   ` Ævar Arnfjörð Bjarmason
2012-03-08 15:39     ` Holger Hellmuth [this message]
2012-03-08 21:22       ` Junio C Hamano
2012-03-07  9:04 ` Michael Haggerty

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=4F58D2CD.2050502@ira.uka.de \
    --to=hellmuth@ira.uka.de \
    --cc=avarab@gmail.com \
    --cc=blr@robertsr.us \
    --cc=git@vger.kernel.org \
    --cc=nkreitzinger@gmail.com \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.