Commits
- Commit:
5822e79e39a8777984e08b5d89a8c55d6aa0356d
- From:
- Omar Polo <op@omarpolo.com>
- Date:
include sha2.h too where sha1.h is included
In preparation for wide sha256 support; stsp@ agrees. Change done
mechanically with
find . -iname \*.[cy] -exec sam {} +
X ,x/<sha1\.h>/i/\n#include <sha2.h>
- Commit:
b90054ed55f30ebe28115abf5ad9cecc2b925713
- From:
- Stefan Sperling <stsp@stsp.name>
- Date:
use mkstemps(3) instead of mkstemp(3) for opening named temporary files
Allows 'got commit' to use a ".diff" suffix for temporary diff files.
ok op@
- Commit:
d30ab56fff40b038af410d963b66e866a8e4e528
- From:
- Christian Weisgerber <naddy@mips.inka.de>
- Date:
fix unused variable, function definition warnings for clang 15
- Commit:
84bc347c349f09dc692e8d760ba9af3d21b0f5af
- From:
- Stefan Sperling <stsp@stsp.name>
- Date:
unlink temporary files created during ssh signature verification
- Commit:
1bd8e3b16ccbc427fca485fda6db88babc57dc2b
- From:
- Josh Rickmar <jrick@zettaport.com>
- Date:
fix pipe usage for linux
This uses the correct read and write ends of the fds returned by
pipe(2) on linux. It also moves away from creating FILE* streams with
fdopen and reading the stream with buf_load (which performs a fstat,
and breaks due to a zero length file size on linux) by instead reading
from the fd itself.
Reported by abieber@, with assistance from stsp@
ok stsp@
- Commit:
b9a36ae5ebce5fb8ce9d944a31210917b32c71d8
- From:
- Christian Weisgerber <naddy@mips.inka.de>
- Date:
fix potential type mismatch between format specifier and argument
Cast printf argument of type time_t to long long to match the %lld
format specifier on platforms where this might not be the case.
- Commit:
1b2dedff6127800c1ef287be60c5b3a4612a3c44
- From:
- Stefan Sperling <stsp@stsp.name>
- Date:
include system headers required for got_date.h directly, not indirectly
- Commit:
c632297d7b6d7267543afeb7b052dc8a970cdefe
- From:
- Josh Rickmar <jrick@zettaport.com>
- Date:
Use pipe() which is a more understood syscall than pipe2() which doesn't
exist on MacOS, for instance. Since we we're passing in 0 to pipe2(),
this mean no fcntl() flags were being sent. As such, it's the same
syscall as pipe() which also has the added benefit that it's more
portable.
committing on behalf of thomas with my ok
- Commit:
4d5ee9564a9e46a1f634f619833c62f636cfbdc1
- From:
- Josh Rickmar <jrick@zettaport.com>
- Date:
create and verify tags signed by SSH keys
This adds a new -s flag to 'got tag' that specifies the signer
identity (for example, a key file) of the tagger. The tag object will
include a signature that validates each of the tag object headers and
the tag message.
Verifying these signed tags requires maintaining an allowed signers
file which maps signer identities (i.e. the email address of the
tagger) to SSH public keys. See ssh-keygen(1) for more details of the
allowed signers file. After creating this file and providing the path
to it in got.conf(5) using the allowed_signers option, tags may be
verified using with 'got tag -V tag_name'. The return code will be
non-zero if a signature fails to verify.
ok stsp@