summaryrefslogtreecommitdiffstats
path: root/t/t7416-submodule-dash-url.sh
diff options
context:
space:
mode:
authorJeff King <peff@peff.net>2018-09-24 10:37:17 +0200
committerJunio C Hamano <gitster@pobox.com>2018-09-27 20:41:26 +0200
commita124133e1e6ab5c7a9fef6d0e6bcb084e3455b46 (patch)
treeb2feaba2c06781e934d4888f89a1dbe632a49777 /t/t7416-submodule-dash-url.sh
parentSync with 2.16.5 (diff)
downloadgit-a124133e1e6ab5c7a9fef6d0e6bcb084e3455b46.tar.xz
git-a124133e1e6ab5c7a9fef6d0e6bcb084e3455b46.zip
fsck: detect submodule urls starting with dash
Urls with leading dashes can cause mischief on older versions of Git. We should detect them so that they can be rejected by receive.fsckObjects, preventing modern versions of git from being a vector by which attacks can spread. Signed-off-by: Jeff King <peff@peff.net> Signed-off-by: Junio C Hamano <gitster@pobox.com>
Diffstat (limited to 't/t7416-submodule-dash-url.sh')
-rwxr-xr-xt/t7416-submodule-dash-url.sh15
1 files changed, 15 insertions, 0 deletions
diff --git a/t/t7416-submodule-dash-url.sh b/t/t7416-submodule-dash-url.sh
index 459193c976..1cd2c1c1ea 100755
--- a/t/t7416-submodule-dash-url.sh
+++ b/t/t7416-submodule-dash-url.sh
@@ -20,6 +20,13 @@ test_expect_success 'clone can recurse submodule' '
test_cmp expect actual
'
+test_expect_success 'fsck accepts protected dash' '
+ test_when_finished "rm -rf dst" &&
+ git init --bare dst &&
+ git -C dst config transfer.fsckObjects true &&
+ git push dst HEAD
+'
+
test_expect_success 'remove ./ protection from .gitmodules url' '
perl -i -pe "s{\./}{}" .gitmodules &&
git commit -am "drop protection"
@@ -31,4 +38,12 @@ test_expect_success 'clone rejects unprotected dash' '
test_i18ngrep ignoring err
'
+test_expect_success 'fsck rejects unprotected dash' '
+ test_when_finished "rm -rf dst" &&
+ git init --bare dst &&
+ git -C dst config transfer.fsckObjects true &&
+ test_must_fail git push dst HEAD 2>err &&
+ grep gitmodulesUrl err
+'
+
test_done