Commits
- Commit:
1b1a386df9068b7cb3ceb8a67d88ccd24f5b2deb
- From:
- Omar Polo <op@omarpolo.com>
- Date:
gotd: use a struct got_object_id instead of an hash buffer
ok stsp@
- Commit:
9c574a767ec39853cd7c624009e002b8e40030a7
- From:
- Stefan Sperling <stsp@stsp.name>
- Date:
don't leak the existence of gotd repositories to unrelated user accounts
In particular, this prevents anonymous user accounts from discovering
the existence of other private repositories served by gotd by correctly
guessing the name of a private repository. They still wouldn't have read
or write access but in some cases even knowledge about the existence of
a particular repository could be cause for concern.
ok op@
- Commit:
e8d451cc39fa03a3fd56b95b86c820491d399550
- From:
- Stefan Sperling <stsp@stsp.name>
- Date:
display process title in syslog when a gotd child process exits
- Commit:
2c52c623be04b56400a5c94cc8d86b6fda214d16
- From:
- Omar Polo <op@omarpolo.com>
- Date:
convert to use imsg_get_fd()
While here also fix a fd leak in got-read-pack. We were dup'ing
imsg.fd without closing imsg.fd later; instead just use imsg_get_fd()
to extract the file descriptor.
Tested by falsifian and Kyle Ackerman, thanks!
'go ahead' stsp@
- Commit:
56624d2b65c2b867ab6c9dd5ac2ad51c3a13d47c
- From:
- Stefan Sperling <stsp@stsp.name>
- Date:
make the gotd auth process provide the user's account name for later use
with tweaks from + ok op@
- Commit:
1963be61deb20cacab2552113c66b38fbee7a080
- From:
- Stefan Sperling <stsp@stsp.name>
- Date:
remove dependency of gitwrapper on gotd/auth.c
Move gotd_auth_parseuid() from auth.c to parse.y as gotd_parseuid(), and
remove auth.c from the list of source files required by gitwrapper.
- Commit:
5822e79e39a8777984e08b5d89a8c55d6aa0356d
- From:
- Omar Polo <op@omarpolo.com>
- Date:
include sha2.h too where sha1.h is included
In preparation for wide sha256 support; stsp@ agrees. Change done
mechanically with
find . -iname \*.[cy] -exec sam {} +
X ,x/<sha1\.h>/i/\n#include <sha2.h>
- Commit:
2ec74a9e9c334f3245765a6e6f35b7977f5b420e
- From:
- Omar Polo <op@omarpolo.com>
- Date:
drop double process name from some gotd logs
i.e. "listen: listen: shutting down" -> "listen: shutting down"
the procname is already prepended by vlog()
ok jamsek
- Commit:
40b85cca5d86ebef3a353efd464af989c3ebf18b
- From:
- Stefan Sperling <stsp@stsp.name>
- Date:
introduce connection options to gotd.conf
Allow administrators to tweak the default authentication and request
timeouts if needed, and to tweak the limit of concurrent connections
for specific user accounts.
with several tweaks from and ok op@
- Commit:
365cf0f34d08316d433e730a8663283029f729b3
- From:
- Stefan Sperling <stsp@stsp.name>
- Date:
move "unix" pledge promise from gotd parent to auth process
The listen process now communicates the client UID/GID to the parent,
and the auth process verifies this on behalf of the parent.
This allows us to remove the "unix" pledge promise from the parent,
removing parent access to syscalls such as listen() and accept() in
the AF_UNIX domain.
ok tracey@ op@
- Commit:
5e25db14db9eb20ee11b68048b45b3e0f54d50eb
- From:
- Stefan Sperling <stsp@stsp.name>
- Date:
run gotd authentication in a separate child process
ok op@
- Commit:
e18d071f3cc8912b9bfb6fb392689dc7394355dd
- From:
- Stefan Sperling <stsp@stsp.name>
- Date:
getpwuid() returns NULL without setting errno if no user is found
pointed out by millert@
- Commit:
4cad5be9f88baeb0583b4b63a546f5815929a270
- From:
- Omar Polo <op@omarpolo.com>
- Date:
zap double grp.h include
spotted by Thomas
- Commit:
ddbe612c691511246aacb15046c1a202d0efcf75
- From:
- Stefan Sperling <stsp@stsp.name>
- Date:
fix group membership check in gotd auth
ok op@
- Commit:
0ccf3acb6c3004ac41b46ad931024da1f4ea0e3e
- From:
- Stefan Sperling <stsp@stsp.name>
- Date:
implement per-repository read/write authorization rules in gotd
ok op@