delta/libgit2.git/src/util/fs_path.c, branch ethomson/objectformat github.com: libgit2/libgit2.git repo: allow users running with sudo to access their repositories 2022-07-12T18:12:48+00:00 Edward Thomson ethomson@edwardthomson.com 2022-07-06T03:47:15+00:00 ed24b8bacc739b072a789ca7396e46bd751ca2ec In the ownership checks implemented for CVE-2022-24765, we disallowed users to access their own repositories when running with `sudo`. Examine the `SUDO_UID` environment variable and allow users running with `sudo`. This matches git's behavior. 
In the ownership checks implemented for CVE-2022-24765, we disallowed
users to access their own repositories when running with `sudo`.

Examine the `SUDO_UID` environment variable and allow users running
with `sudo`. This matches git's behavior.
fs: allow ownership match if user is in admin group 2022-07-07T14:37:54+00:00 Edward Thomson ethomson@edwardthomson.com 2022-07-04T20:01:01+00:00 5bc01a7ddbb765616b52d4504036fbbb0e483e8e Allow the user ownership to match if the file is owned by the admin group and the user is in the admin group, even if the current process is not running as administrator directly. 
Allow the user ownership to match if the file is owned by the admin
group and the user is in the admin group, even if the current process is
not running as administrator directly.
fs: refactor file ownership checks 2022-07-07T14:37:49+00:00 Edward Thomson ethomson@edwardthomson.com 2022-07-04T19:20:59+00:00 433f0166c946257214758b94d9ddbb8516e4fb98 Refactor the file ownership checks so that callers can provide discrete information about the ownership expectations to a single function. 
Refactor the file ownership checks so that callers can provide discrete
information about the ownership expectations to a single function.
fs: remove mock naming from change ownership constants 2022-07-07T14:37:44+00:00 Edward Thomson ethomson@edwardthomson.com 2022-07-03T13:07:32+00:00 df354ec25d22e70ad4bf3a58a6a7883975d31bb6 The file ownership concepts can reflect the actual file ownership, they are not necessarily limited to mocking the interface. Rename them so that they can be more broadly applicable. 
The file ownership concepts can reflect the actual file ownership, they
are not necessarily limited to mocking the interface. Rename them so
that they can be more broadly applicable.
fs_path: mock ownership checks 2022-04-12T02:15:47+00:00 Edward Thomson ethomson@edwardthomson.com 2022-04-11T16:06:55+00:00 c0b7f88ed0b55206b147ebba330ae903f7830ca4 Provide a mock for file ownership for testability. 
Provide a mock for file ownership for testability.
fs_path: refactor ownership checks into current user and system 2022-04-11T20:49:05+00:00 Edward Thomson ethomson@edwardthomson.com 2022-04-10T20:29:43+00:00 bf2620bcefa64e9c0c28621d9ea7c16e5a40c61b Provide individual file ownership checks for both the current user and the system user, as well as a combined current user and system user check. 
Provide individual file ownership checks for both the current user and
the system user, as well as a combined current user and system user
check.
fs_path: exit quickly in `dirname_r` failure 2022-02-27T14:27:31+00:00 Edward Thomson ethomson@edwardthomson.com 2022-02-27T14:26:16+00:00 9f0088c4ed82e30635b01466f80b0bc0584acb08 When we encounter a situation where we need to exit, simply `return -1` instead of trying to set `len = -1` and then jumping to the exit handler, which would erroneously do work based on the `len` value. 
When we encounter a situation where we need to exit, simply `return -1`
instead of trying to set `len = -1` and then jumping to the exit
handler, which would erroneously do work based on the `len` value.
refactor: make util an object library 2022-02-23T03:07:44+00:00 Edward Thomson ethomson@edwardthomson.com 2021-11-14T21:43:53+00:00 c3b7ace9cf3216928a31886b32c264e0cd3cde75 Instead of simply including the utility files directly, make them a cmake object library for easy reusability between other projects within libgit2. Now the top-level `src` is responsible for platform selection, while the next-level `libgit2` and `util` configurations are responsible for identifying what objects they include. 
Instead of simply including the utility files directly, make them a
cmake object library for easy reusability between other projects within
libgit2.

Now the top-level `src` is responsible for platform selection, while the
next-level `libgit2` and `util` configurations are responsible for
identifying what objects they include.