From a0988c5d6348e673910c6c1d3de0970fef12f22d Mon Sep 17 00:00:00 2001 From: Jesse Keating Date: Sun, 20 Apr 2008 19:33:39 +0000 Subject: [PATCH 01/10] Initialize branch F-9 for git --- branch | 1 + 1 file changed, 1 insertion(+) create mode 100644 branch diff --git a/branch b/branch new file mode 100644 index 0000000..1c26f78 --- /dev/null +++ b/branch @@ -0,0 +1 @@ +F-9 From 2fc4ccba3287df1bc2f6167fcf75530db4e2c9b9 Mon Sep 17 00:00:00 2001 From: jbowes Date: Wed, 7 May 2008 12:34:20 +0000 Subject: [PATCH 02/10] update to 1.5.5.1 --- git.spec | 5 ++++- sources | 2 +- 2 files changed, 5 insertions(+), 2 deletions(-) diff --git a/git.spec b/git.spec index fbb0378..62b54f0 100644 --- a/git.spec +++ b/git.spec @@ -1,6 +1,6 @@ # Pass --without docs to rpmbuild if you don't want the documentation Name: git -Version: 1.5.5 +Version: 1.5.5.1 Release: 1%{?dist} Summary: Core git tools License: GPLv2 @@ -257,6 +257,9 @@ rm -rf $RPM_BUILD_ROOT # No files for you! %changelog +* Mon Apr 21 2008 James Bowes 1.5.5.1-1 +- git-1.5.5.1 + * Wed Apr 09 2008 James Bowes 1.5.5-1 - git-1.5.5 diff --git a/sources b/sources index f37bdad..c62e723 100644 --- a/sources +++ b/sources @@ -1 +1 @@ -978e50ddefeeb2e0c55b3f1c7fca2e16 git-1.5.5.tar.gz +863df5545e3496d9f29688ab25b6a53d git-1.5.5.1.tar.gz From 854fac5ab00ad71d97b597a4ad9ebf90d6441262 Mon Sep 17 00:00:00 2001 From: Dennis Gilmore Date: Fri, 23 May 2008 21:51:35 +0000 Subject: [PATCH 03/10] minor sparc rebuild --- git.spec | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/git.spec b/git.spec index 62b54f0..9450cea 100644 --- a/git.spec +++ b/git.spec @@ -1,7 +1,7 @@ # Pass --without docs to rpmbuild if you don't want the documentation Name: git Version: 1.5.5.1 -Release: 1%{?dist} +Release: 1%{?dist}.1 Summary: Core git tools License: GPLv2 Group: Development/Tools @@ -257,6 +257,9 @@ rm -rf $RPM_BUILD_ROOT # No files for you! %changelog +* Fri May 23 2008 Dennis Gilmore 1.5.5.1-1.1 +- minor rebuild for sparc + * Mon Apr 21 2008 James Bowes 1.5.5.1-1 - git-1.5.5.1 From 57cebcf437df56ded6e2064d15c0337c630fe737 Mon Sep 17 00:00:00 2001 From: jbowes Date: Mon, 26 May 2008 11:23:02 +0000 Subject: [PATCH 04/10] git 1.5.5.2 --- git.spec | 7 +++++-- sources | 2 +- 2 files changed, 6 insertions(+), 3 deletions(-) diff --git a/git.spec b/git.spec index 9450cea..bb3f6e8 100644 --- a/git.spec +++ b/git.spec @@ -1,7 +1,7 @@ # Pass --without docs to rpmbuild if you don't want the documentation Name: git -Version: 1.5.5.1 -Release: 1%{?dist}.1 +Version: 1.5.5.2 +Release: 1%{?dist} Summary: Core git tools License: GPLv2 Group: Development/Tools @@ -257,6 +257,9 @@ rm -rf $RPM_BUILD_ROOT # No files for you! %changelog +* Mon May 26 2008 James Bowes 1.5.5.2-1 +- git-1.5.5.2 + * Fri May 23 2008 Dennis Gilmore 1.5.5.1-1.1 - minor rebuild for sparc diff --git a/sources b/sources index c62e723..7a14cff 100644 --- a/sources +++ b/sources @@ -1 +1 @@ -863df5545e3496d9f29688ab25b6a53d git-1.5.5.1.tar.gz +3ae18e7f6e23b698be03260ebdcd4f15 git-1.5.5.2.tar.gz From 2e0a53733fc98c84c088708fbe1055e911d9faa6 Mon Sep 17 00:00:00 2001 From: jwboyer Date: Wed, 22 Oct 2008 12:35:16 +0000 Subject: [PATCH 05/10] - git-1.5.6.5 (bug 458156) --- .cvsignore | 2 +- git.spec | 5 ++++- sources | 2 +- 3 files changed, 6 insertions(+), 3 deletions(-) diff --git a/.cvsignore b/.cvsignore index e058737..000bb77 100644 --- a/.cvsignore +++ b/.cvsignore @@ -1 +1 @@ -git-1.5.5.tar.gz +git-1.5.6.5.tar.gz diff --git a/git.spec b/git.spec index bb3f6e8..ce26c0c 100644 --- a/git.spec +++ b/git.spec @@ -1,6 +1,6 @@ # Pass --without docs to rpmbuild if you don't want the documentation Name: git -Version: 1.5.5.2 +Version: 1.5.6.5 Release: 1%{?dist} Summary: Core git tools License: GPLv2 @@ -257,6 +257,9 @@ rm -rf $RPM_BUILD_ROOT # No files for you! %changelog +* Tue Oct 22 2008 Josh Boyer 1.5.6.5-1 +- git-1.5.6.5 (bug 458156) + * Mon May 26 2008 James Bowes 1.5.5.2-1 - git-1.5.5.2 diff --git a/sources b/sources index 7a14cff..e5de813 100644 --- a/sources +++ b/sources @@ -1 +1 @@ -3ae18e7f6e23b698be03260ebdcd4f15 git-1.5.5.2.tar.gz +c22da91c913a02305fd8a1a2298f75c9 git-1.5.6.5.tar.gz From c381d6443c942bca0896b00b2af1874b23f1e808 Mon Sep 17 00:00:00 2001 From: Todd Zullinger Date: Sat, 20 Dec 2008 17:40:14 +0000 Subject: [PATCH 06/10] - git-1.5.6.6 - Fixes a local privilege escalation bug in gitweb - Make git-email require perl(Net::SMTP::SSL) (bug 443615) - Add gitk Requires to git-gui (bug 476308) --- .cvsignore | 2 +- git.spec | 10 +++++++++- sources | 2 +- 3 files changed, 11 insertions(+), 3 deletions(-) diff --git a/.cvsignore b/.cvsignore index 000bb77..a4f1dc6 100644 --- a/.cvsignore +++ b/.cvsignore @@ -1 +1 @@ -git-1.5.6.5.tar.gz +git-1.5.6.6.tar.gz diff --git a/git.spec b/git.spec index ce26c0c..d42571c 100644 --- a/git.spec +++ b/git.spec @@ -1,6 +1,6 @@ # Pass --without docs to rpmbuild if you don't want the documentation Name: git -Version: 1.5.6.5 +Version: 1.5.6.6 Release: 1%{?dist} Summary: Core git tools License: GPLv2 @@ -90,6 +90,7 @@ Git tools for importing Arch repositories. Summary: Git tools for sending email Group: Development/Tools Requires: git = %{version}-%{release}, perl-Git = %{version}-%{release} +Requires: perl(Net::SMTP::SSL) %description email Git tools for sending email. @@ -97,6 +98,7 @@ Git tools for sending email. Summary: Git GUI tool Group: Development/Tools Requires: git = %{version}-%{release}, tk >= 8.4 +Requires: gitk = %{version}-%{release} %description gui Git GUI tool. @@ -257,6 +259,12 @@ rm -rf $RPM_BUILD_ROOT # No files for you! %changelog +* Sat Dec 20 2008 Todd Zullinger 1.5.6.6-1 +- git-1.5.6.6 +- Fixes a local privilege escalation bug in gitweb +- Make git-email require perl(Net::SMTP::SSL) (bug 443615) +- Add gitk Requires to git-gui (bug 476308) + * Tue Oct 22 2008 Josh Boyer 1.5.6.5-1 - git-1.5.6.5 (bug 458156) diff --git a/sources b/sources index e5de813..76e9fb5 100644 --- a/sources +++ b/sources @@ -1 +1 @@ -c22da91c913a02305fd8a1a2298f75c9 git-1.5.6.5.tar.gz +802fd4324af504415b0f40bcfcbdc610 git-1.5.6.6.tar.gz From 65fdde66482d0dce2c9ca75e7d6ae921de321300 Mon Sep 17 00:00:00 2001 From: Todd Zullinger Date: Mon, 2 Mar 2009 18:56:52 +0000 Subject: [PATCH 07/10] Update to git-1.6.0.6, and (mostly) sync specfile with F-10 branch - Enable parallel delta searching when packing objects (Roland McGrath) - Consolidate build/install options in %make_git (Roland McGrath) - Require perl(Authen::SASL) in git-email (bug 483062) - Exclude vc-git.el from emacs-git (bug 479531) - Change /srv/git to %{_var}/lib/git - Drop redundant libcurl Requires - Update URL field --- .cvsignore | 2 +- git.spec | 90 +++++++++++++++++++++++++++++++++++++++++------------- git.xinetd | 2 +- sources | 2 +- 4 files changed, 71 insertions(+), 25 deletions(-) diff --git a/.cvsignore b/.cvsignore index a4f1dc6..3db4196 100644 --- a/.cvsignore +++ b/.cvsignore @@ -1 +1 @@ -git-1.5.6.6.tar.gz +git-1.6.0.6.tar.bz2 diff --git a/git.spec b/git.spec index d42571c..61224ec 100644 --- a/git.spec +++ b/git.spec @@ -1,21 +1,21 @@ # Pass --without docs to rpmbuild if you don't want the documentation Name: git -Version: 1.5.6.6 -Release: 1%{?dist} +Version: 1.6.0.6 +Release: 3%{?dist} Summary: Core git tools License: GPLv2 Group: Development/Tools -URL: http://kernel.org/pub/software/scm/git/ -Source: http://kernel.org/pub/software/scm/git/%{name}-%{version}.tar.gz +URL: http://git-scm.com/ +Source: http://kernel.org/pub/software/scm/git/%{name}-%{version}.tar.bz2 Source1: git-init.el Source2: git.xinetd Source3: git.conf.httpd Patch0: git-1.5-gitweb-home-link.patch -BuildRequires: zlib-devel >= 1.2, openssl-devel, curl-devel, expat-devel, emacs, gettext %{!?_without_docs:, xmlto, asciidoc > 6.0.3} +BuildRequires: zlib-devel >= 1.2, openssl-devel, libcurl-devel, expat-devel, emacs, gettext %{!?_without_docs:, xmlto, asciidoc > 6.0.3} BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-root-%(%{__id_u} -n) Requires: perl-Git = %{version}-%{release} -Requires: zlib >= 1.2, rsync, curl, less, openssh-clients, expat, perl(Error) +Requires: zlib >= 1.2, rsync, less, openssh-clients, expat, perl(Error) Provides: git-core = %{version}-%{release} Obsoletes: git-core <= 1.5.4.3 @@ -90,7 +90,7 @@ Git tools for importing Arch repositories. Summary: Git tools for sending email Group: Development/Tools Requires: git = %{version}-%{release}, perl-Git = %{version}-%{release} -Requires: perl(Net::SMTP::SSL) +Requires: perl(Net::SMTP::SSL), perl(Authen::SASL) %description email Git tools for sending email. @@ -131,18 +131,24 @@ Requires: git = %{version}-%{release}, emacs-common %setup -q %patch0 -p1 +# Use these same options for every invocation of 'make'. +# Otherwise it will rebuild in %%install due to flags changes. +%define make_git \ +make %{_smp_mflags} CFLAGS="$RPM_OPT_FLAGS" \\\ + ETC_GITCONFIG=%{_sysconfdir}/gitconfig \\\ + DESTDIR=$RPM_BUILD_ROOT \\\ + INSTALLDIRS=vendor \\\ + THREADED_DELTA_SEARCH=YesPlease \\\ + gitexecdir=%{_bindir} \\\ + prefix=%{_prefix} + %build -make %{_smp_mflags} CFLAGS="$RPM_OPT_FLAGS" \ - ETC_GITCONFIG=/etc/gitconfig \ - prefix=%{_prefix} all %{!?_without_docs: doc} +%{make_git} all %{!?_without_docs: doc} make -C contrib/emacs %install rm -rf $RPM_BUILD_ROOT -make %{_smp_mflags} CFLAGS="$RPM_OPT_FLAGS" DESTDIR=$RPM_BUILD_ROOT \ - prefix=%{_prefix} mandir=%{_mandir} \ - ETC_GITCONFIG=/etc/gitconfig \ - INSTALLDIRS=vendor install %{!?_without_docs: install-doc} +%{make_git} install %{!?_without_docs: install-doc} make -C contrib/emacs install \ emacsdir=$RPM_BUILD_ROOT%{_datadir}/emacs/site-lisp for elc in $RPM_BUILD_ROOT%{_datadir}/emacs/site-lisp/*.elc ; do @@ -166,11 +172,11 @@ find $RPM_BUILD_ROOT -type f -name perllocal.pod -exec rm -f {} ';' (find $RPM_BUILD_ROOT%{_bindir} -type f | grep -vE "archimport|svn|cvs|email|gitk|git-gui|git-citooli|git-daemon" | sed -e s@^$RPM_BUILD_ROOT@@) > bin-man-doc-files (find $RPM_BUILD_ROOT%{perl_vendorlib} -type f | sed -e s@^$RPM_BUILD_ROOT@@) >> perl-files %if %{!?_without_docs:1}0 -(find $RPM_BUILD_ROOT%{_mandir} $RPM_BUILD_ROOT/Documentation -type f | grep -vE "archimport|svn|git-cvs|email|gitk|git-gui|git-citool" | sed -e s@^$RPM_BUILD_ROOT@@ -e 's/$/*/' ) >> bin-man-doc-files +(find $RPM_BUILD_ROOT%{_mandir} $RPM_BUILD_ROOT/Documentation -type f | grep -vE "archimport|svn|git-cvs|email|gitk|git-gui|git-citool|git-daemon" | sed -e s@^$RPM_BUILD_ROOT@@ -e 's/$/*/' ) >> bin-man-doc-files %else rm -rf $RPM_BUILD_ROOT%{_mandir} %endif -mkdir -p $RPM_BUILD_ROOT/srv/git +mkdir -p $RPM_BUILD_ROOT%{_var}/lib/git mkdir -p $RPM_BUILD_ROOT%{_sysconfdir}/bash_completion.d install -m 644 -T contrib/completion/git-completion.bash $RPM_BUILD_ROOT%{_sysconfdir}/bash_completion.d/git @@ -240,14 +246,18 @@ rm -rf $RPM_BUILD_ROOT %files -n emacs-git %defattr(-,root,root) +%exclude %{_datadir}/emacs/site-lisp/vc-git.el* %{_datadir}/emacs/site-lisp/*git*.el* %{_datadir}/emacs/site-lisp/site-start.d/git-init.el %files daemon %defattr(-,root,root) +%doc Documentation/*daemon*.txt %{_bindir}/git-daemon %config(noreplace)%{_sysconfdir}/xinetd.d/git -/srv/git +%{_var}/lib/git +%{!?_without_docs: %{_mandir}/man1/*daemon*.1*} +%{!?_without_docs: %doc Documentation/*daemon*.html} %files -n gitweb %defattr(-,root,root) @@ -259,14 +269,50 @@ rm -rf $RPM_BUILD_ROOT # No files for you! %changelog -* Sat Dec 20 2008 Todd Zullinger 1.5.6.6-1 -- git-1.5.6.6 +* Mon Mar 02 2009 Todd Zullinger - 1.6.0.6-3 +- Enable parallel delta searching when packing objects (Roland McGrath) +- Consolidate build/install options in %%make_git (Roland McGrath) +- Require perl(Authen::SASL) in git-email (bug 483062) +- Exclude vc-git.el from emacs-git (bug 479531) +- Change /srv/git to %{_var}/lib/git +- Include docs in the git-daemon package +- Drop redundant libcurl Requires +- Update URL field + +* Sat Dec 20 2008 Todd Zullinger 1.6.0.6-1 +- git-1.6.0.6 - Fixes a local privilege escalation bug in gitweb -- Make git-email require perl(Net::SMTP::SSL) (bug 443615) + (http://article.gmane.org/gmane.comp.version-control.git/103624) - Add gitk Requires to git-gui (bug 476308) -* Tue Oct 22 2008 Josh Boyer 1.5.6.5-1 -- git-1.5.6.5 (bug 458156) +* Thu Dec 11 2008 Josh Boyer 1.6.0.5-1 +- git-1.6.0.5 + +* Mon Nov 17 2008 Seth Vidal +- switch from /srv/git to /var/lib/git-daemon for packaging rules compliance + +* Fri Nov 14 2008 Josh Boyer 1.6.0.4-1 +- git-1.6.0.4 + +* Wed Oct 22 2008 Josh Boyer 1.6.0.3-1 +- git-1.6.0.3 +- Drop curl requirement in favor of libcurl (bug 449388) +- Add requires for SMTP-SSL perl module to make git-send-email work (bug 443615) + +* Thu Aug 28 2008 James Bowes 1.6.0.1-1 +- git-1.6.0.1 + +* Thu Jul 24 2008 James Bowes 1.5.6-4 +- git-1.5.6.4 + +* Thu Jun 19 2008 James Bowes 1.5.6-1 +- git-1.5.6 + +* Tue Jun 3 2008 Stepan Kasal 1.5.5.3-2 +- use tar.bz2 instead of tar.gz + +* Wed May 28 2008 James Bowes 1.5.5.3-1 +- git-1.5.5.3 * Mon May 26 2008 James Bowes 1.5.5.2-1 - git-1.5.5.2 diff --git a/git.xinetd b/git.xinetd index dcfae91..1ab3cc0 100644 --- a/git.xinetd +++ b/git.xinetd @@ -9,7 +9,7 @@ service git wait = no user = nobody server = /usr/bin/git-daemon - server_args = --base-path=/srv/git --export-all --user-path=public_git --syslog --inetd --verbose + server_args = --base-path=/var/lib/git --export-all --user-path=public_git --syslog --inetd --verbose log_on_failure += USERID # xinetd doesn't do this by default. bug #195265 flags = IPv6 diff --git a/sources b/sources index 76e9fb5..383d999 100644 --- a/sources +++ b/sources @@ -1 +1 @@ -802fd4324af504415b0f40bcfcbdc610 git-1.5.6.6.tar.gz +b5be9b34b441cb57f92086bfaf59f255 git-1.6.0.6.tar.bz2 From e0a7617f038187c61fe6e0e8ba9f94db06145a88 Mon Sep 17 00:00:00 2001 From: Todd Zullinger Date: Fri, 19 Jun 2009 13:34:49 +0000 Subject: [PATCH 08/10] Fix git-daemon hang on invalid input (CVE-2009-2108, bug 505761) - Ignore Branches output from cvsps-2.2b1 (bug 490602) - Escape newline in git-daemon xinetd description (bug 502393) --- git-1.6.0.6-daemon-extra-args.patch | 114 ++++++++++++++++++ ...t-Ignore-cvsps-2.2b1-Branches-output.patch | 26 ++++ git.spec | 12 +- git.xinetd | 2 +- 4 files changed, 152 insertions(+), 2 deletions(-) create mode 100644 git-1.6.0.6-daemon-extra-args.patch create mode 100644 git-cvsimport-Ignore-cvsps-2.2b1-Branches-output.patch diff --git a/git-1.6.0.6-daemon-extra-args.patch b/git-1.6.0.6-daemon-extra-args.patch new file mode 100644 index 0000000..f07fa27 --- /dev/null +++ b/git-1.6.0.6-daemon-extra-args.patch @@ -0,0 +1,114 @@ +From ccf9fce9da3cda9ee869c70a048971c7f231a78a Mon Sep 17 00:00:00 2001 +From: Shawn O. Pearce +Date: Thu, 4 Jun 2009 18:33:32 -0700 +Subject: [PATCH] daemon: Strictly parse the "extra arg" part of the command + +This is a backport of upstream commit 73bb33a. + +Since 1.4.4.5 (49ba83fb67 "Add virtualization support to git-daemon") +git daemon enters an infinite loop and never terminates if a client +hides any extra arguments in the initial request line which is not +exactly "\0host=blah\0". + +Since that change, a client must never insert additional extra +arguments, or attempt to use any argument other than "host=", as +any daemon will get stuck parsing the request line and will never +complete the request. + +Since the client can't tell if the daemon is patched or not, it +is not possible to know if additional extra args might actually be +able to be safely requested. + +If we ever need to extend the git daemon protocol to support a new +feature, we may have to do something like this to the exchange: + + # If both support git:// v2 + # + C: 000cgit://v2 + S: 0010ok host user + C: 0018host git.kernel.org + C: 0027git-upload-pack /pub/linux-2.6.git + S: ...git-upload-pack header... + + # If client supports git:// v2, server does not: + # + C: 000cgit://v2 + S: + + C: 003bgit-upload-pack /pub/linux-2.6.git\0host=git.kernel.org\0 + S: ...git-upload-pack header... + +This requires the client to create two TCP connections to talk to +an older git daemon, however all daemons since the introduction of +daemon.c will safely reject the unknown "git://v2" command request, +so the client can quite easily determine the server supports an +older protocol. + +Signed-off-by: Shawn O. Pearce +Signed-off-by: Junio C Hamano +--- + connect.c | 5 ++++- + daemon.c | 11 ++++++----- + 2 files changed, 10 insertions(+), 6 deletions(-) + +diff --git a/connect.c b/connect.c +index dd96f8e..c7a9f6d 100644 +--- a/connect.c ++++ b/connect.c +@@ -573,7 +573,10 @@ struct child_process *git_connect(int fd[2], const char *url_orig, + git_tcp_connect(fd, host, flags); + /* + * Separate original protocol components prog and path +- * from extended components with a NUL byte. ++ * from extended host header with a NUL byte. ++ * ++ * Note: Do not add any other headers here! Doing so ++ * will cause older git-daemon servers to crash. + */ + packet_write(fd[1], + "%s %s%chost=%s%c", +diff --git a/daemon.c b/daemon.c +index 8dcde73..325766e 100644 +--- a/daemon.c ++++ b/daemon.c +@@ -432,16 +432,15 @@ static void make_service_overridable(const char *name, int ena) + } + + /* +- * Separate the "extra args" information as supplied by the client connection. +- * Any resulting data is squirreled away in the given interpolation table. ++ * Read the host as supplied by the client connection. + */ +-static void parse_extra_args(struct interp *table, char *extra_args, int buflen) ++static void parse_host_arg(struct interp *table, char *extra_args, int buflen) + { + char *val; + int vallen; + char *end = extra_args + buflen; + +- while (extra_args < end && *extra_args) { ++ if (extra_args < end && *extra_args) { + saw_extended_args = 1; + if (strncasecmp("host=", extra_args, 5) == 0) { + val = extra_args + 5; +@@ -461,6 +460,8 @@ static void parse_extra_args(struct interp *table, char *extra_args, int buflen) + /* On to the next one */ + extra_args = val + vallen; + } ++ if (extra_args < end && *extra_args) ++ die("Invalid request"); + } + } + +@@ -580,7 +581,7 @@ static int execute(struct sockaddr *addr) + interp_set_entry(interp_table, INTERP_SLOT_PERCENT, "%"); + + if (len != pktlen) { +- parse_extra_args(interp_table, line + len + 1, pktlen - len - 1); ++ parse_host_arg(interp_table, line + len + 1, pktlen - len - 1); + fill_in_extra_table_entries(interp_table); + } + +-- +1.6.3.2 + diff --git a/git-cvsimport-Ignore-cvsps-2.2b1-Branches-output.patch b/git-cvsimport-Ignore-cvsps-2.2b1-Branches-output.patch new file mode 100644 index 0000000..37a22dd --- /dev/null +++ b/git-cvsimport-Ignore-cvsps-2.2b1-Branches-output.patch @@ -0,0 +1,26 @@ +From 09891c65a5f7409ce0bd37daced0ff31fbb1b1c9 Mon Sep 17 00:00:00 2001 +From: Todd Zullinger +Date: Mon, 23 Mar 2009 00:03:36 -0400 +Subject: [PATCH] git-cvsimport: Ignore cvsps-2.2b1 Branches: output + +Signed-off-by: Todd Zullinger +--- + git-cvsimport.perl | 2 +- + 1 files changed, 1 insertions(+), 1 deletions(-) + +diff --git a/git-cvsimport.perl b/git-cvsimport.perl +index e439202..d020f1a 100755 +--- a/git-cvsimport.perl ++++ b/git-cvsimport.perl +@@ -952,7 +952,7 @@ while () { + } elsif (/^-+$/) { # end of unknown-line processing + $state = 1; + } elsif ($state != 11) { # ignore stuff when skipping +- print STDERR "* UNKNOWN LINE * $_\n"; ++ print STDERR "* UNKNOWN LINE * $_\n" unless /^Branches: /; + } + } + commit() if $branch and $state != 11; +-- +1.6.2.2 + diff --git a/git.spec b/git.spec index 61224ec..94ff9ed 100644 --- a/git.spec +++ b/git.spec @@ -1,7 +1,7 @@ # Pass --without docs to rpmbuild if you don't want the documentation Name: git Version: 1.6.0.6 -Release: 3%{?dist} +Release: 4%{?dist} Summary: Core git tools License: GPLv2 Group: Development/Tools @@ -11,6 +11,9 @@ Source1: git-init.el Source2: git.xinetd Source3: git.conf.httpd Patch0: git-1.5-gitweb-home-link.patch +Patch1: git-1.6.0.6-daemon-extra-args.patch +# https://bugzilla.redhat.com/490602 +Patch2: git-cvsimport-Ignore-cvsps-2.2b1-Branches-output.patch BuildRequires: zlib-devel >= 1.2, openssl-devel, libcurl-devel, expat-devel, emacs, gettext %{!?_without_docs:, xmlto, asciidoc > 6.0.3} BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-root-%(%{__id_u} -n) @@ -130,6 +133,8 @@ Requires: git = %{version}-%{release}, emacs-common %prep %setup -q %patch0 -p1 +%patch1 -p1 +%patch2 -p1 # Use these same options for every invocation of 'make'. # Otherwise it will rebuild in %%install due to flags changes. @@ -269,6 +274,11 @@ rm -rf $RPM_BUILD_ROOT # No files for you! %changelog +* Fri Jun 19 2009 Todd Zullinger - 1.6.0.6-4 +- Fix git-daemon hang on invalid input (CVE-2009-2108, bug 505761) +- Ignore Branches output from cvsps-2.2b1 (bug 490602) +- Escape newline in git-daemon xinetd description (bug 502393) + * Mon Mar 02 2009 Todd Zullinger - 1.6.0.6-3 - Enable parallel delta searching when packing objects (Roland McGrath) - Consolidate build/install options in %%make_git (Roland McGrath) diff --git a/git.xinetd b/git.xinetd index 1ab3cc0..be6193f 100644 --- a/git.xinetd +++ b/git.xinetd @@ -1,5 +1,5 @@ # default: off -# description: The git dæmon allows git repositories to be exported using +# description: The git dæmon allows git repositories to be exported using \ # the git:// protocol. service git From 27bd1b4936fdb670f6d5ab377c5d636fbb674f8f Mon Sep 17 00:00:00 2001 From: Bill Nottingham Date: Thu, 26 Nov 2009 01:56:49 +0000 Subject: [PATCH 09/10] Fix typo that causes a failure to update the common directory. (releng #2781) --- Makefile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Makefile b/Makefile index 6c8a637..fbfe8aa 100644 --- a/Makefile +++ b/Makefile @@ -4,7 +4,7 @@ NAME := git SPECFILE = $(firstword $(wildcard *.spec)) define find-makefile-common -for d in common ../common ../../common ; do if [ -f $$d/Makefile.common ] ; then if [ -f $$d/CVS/Root -a -w $$/Makefile.common ] ; then cd $$d ; cvs -Q update ; fi ; echo "$$d/Makefile.common" ; break ; fi ; done +for d in common ../common ../../common ; do if [ -f $$d/Makefile.common ] ; then if [ -f $$d/CVS/Root -a -w $$d/Makefile.common ] ; then cd $$d ; cvs -Q update ; fi ; echo "$$d/Makefile.common" ; break ; fi ; done endef MAKEFILE_COMMON := $(shell $(find-makefile-common)) From 8bc03e1a722afa7cdb5ad35c95c67049e4f3dbff Mon Sep 17 00:00:00 2001 From: Fedora Release Engineering Date: Wed, 28 Jul 2010 15:41:39 +0000 Subject: [PATCH 10/10] dist-git conversion --- .cvsignore => .gitignore | 0 Makefile | 21 --------------------- branch | 1 - 3 files changed, 22 deletions(-) rename .cvsignore => .gitignore (100%) delete mode 100644 Makefile delete mode 100644 branch diff --git a/.cvsignore b/.gitignore similarity index 100% rename from .cvsignore rename to .gitignore diff --git a/Makefile b/Makefile deleted file mode 100644 index fbfe8aa..0000000 --- a/Makefile +++ /dev/null @@ -1,21 +0,0 @@ -# Makefile for source rpm: git -# $Id$ -NAME := git -SPECFILE = $(firstword $(wildcard *.spec)) - -define find-makefile-common -for d in common ../common ../../common ; do if [ -f $$d/Makefile.common ] ; then if [ -f $$d/CVS/Root -a -w $$d/Makefile.common ] ; then cd $$d ; cvs -Q update ; fi ; echo "$$d/Makefile.common" ; break ; fi ; done -endef - -MAKEFILE_COMMON := $(shell $(find-makefile-common)) - -ifeq ($(MAKEFILE_COMMON),) -# attept a checkout -define checkout-makefile-common -test -f CVS/Root && { cvs -Q -d $$(cat CVS/Root) checkout common && echo "common/Makefile.common" ; } || { echo "ERROR: I can't figure out how to checkout the 'common' module." ; exit -1 ; } >&2 -endef - -MAKEFILE_COMMON := $(shell $(checkout-makefile-common)) -endif - -include $(MAKEFILE_COMMON) diff --git a/branch b/branch deleted file mode 100644 index 1c26f78..0000000 --- a/branch +++ /dev/null @@ -1 +0,0 @@ -F-9