mirrors/git-annex
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages 1 Wiki Activity Actions
CI to automate build of cargo lockfiles on different Alpine releases for git-annex aports https://gitlab.alpinelinux.org/alpine/aports/-/tree/master/community/git-annex
32030 commits 13 branches 445 tags 110 MiB
Find a file
Joey Hess b657242f5d
enforce retrievalSecurityPolicy 
Leveraged the existing verification code by making it also check the
retrievalSecurityPolicy.

Also, prevented getViaTmp from running the download action at all when the
retrievalSecurityPolicy is going to prevent verifying and so storing it.

Added annex.security.allow-unverified-downloads. A per-remote version
would be nice to have too, but would need more plumbing, so KISS.
(Bill the Cat reference not too over the top I hope. The point is to
make this something the user reads the documentation for before using.)

A few calls to verifyKeyContent and getViaTmp, that don't
involve downloads from remotes, have RetrievalAllKeysSecure hard-coded.
It was also hard-coded for P2P.Annex and Command.RecvKey,
to match the values of the corresponding remotes.

A few things use retrieveKeyFile/retrieveKeyFileCheap without going
through getViaTmp.
* Command.Fsck when downloading content from a remote to verify it.
  That content does not get into the annex, so this is ok.
* Command.AddUrl when using a remote to download an url; this is new
  content being added, so this is ok.

This commit was sponsored by Fernando Jimenez on Patreon.
2018-06-21 13:37:01 -04:00
Annex enforce retrievalSecurityPolicy 2018-06-21 13:37:01 -04:00
Assistant change Remote.repo to Remote.getRepo 2018-06-04 15:30:26 -04:00
Backend fix migration bug and make fsck warn 2018-05-23 14:07:51 -04:00
Build fix build 2018-04-27 12:59:09 -04:00
CmdLine GIT_ANNEX_SHELL_APPENDONLY 2018-05-25 13:17:56 -04:00
Command enforce retrievalSecurityPolicy 2018-06-21 13:37:01 -04:00
Config use DynamicConfig to handle cost-command 2017-08-17 14:04:29 -04:00
Database fix build with old version of persistent 2017-09-25 09:57:41 -04:00
debian BF: deb standalone patch - force use of gzip compression 2018-05-23 11:48:29 -04:00
doc enforce retrievalSecurityPolicy 2018-06-21 13:37:01 -04:00
Git Fix build with ghc 8.4+, which broke due to the Semigroup Monoid change 2018-05-30 12:28:43 -04:00
Limit AssociatedFile newtype 2017-03-10 13:35:31 -04:00
Logs avoid git annex info remote buffering list of keys 2018-04-26 16:13:05 -04:00
Messages Fix mangling of --json output of utf-8 characters when not running in a utf-8 locale 2018-04-16 16:21:21 -04:00
P2P enforce retrievalSecurityPolicy 2018-06-21 13:37:01 -04:00
Remote enforce retrievalSecurityPolicy 2018-06-21 13:37:01 -04:00
RemoteDaemon move protocol version stuff to the Net free monad 2018-03-12 15:20:51 -04:00
standalone get android building the security fix 2018-06-21 10:23:04 -04:00
static Revert "remove newlines from static js and css" 2014-06-13 02:20:39 -04:00
templates version: Added "dependency versions" line. 2017-04-07 18:16:11 -04:00
Test Split Test.hs and avoid optimising it much, to need less memory to compile. 2018-02-18 11:48:48 -04:00
Types enforce retrievalSecurityPolicy 2018-06-21 13:37:01 -04:00
Upgrade squelch a couple of warnings about moveAnnex return code 2017-02-28 12:49:17 -04:00
Utility get android building the security fix 2018-06-21 10:23:04 -04:00
.ghci workaround for ghci fragility in reusing objects compiled with ghc 2012-10-20 16:20:42 -04:00
.gitattributes update changelog location 2016-08-22 23:54:11 -04:00
.gitignore ignore generated file Build/SysConfig.hs 2018-02-28 11:58:53 -04:00
.mailmap alias for Yaroslav @ yahoo to mailmap 2015-09-09 12:38:59 -04:00
Annex.hs avoid insertWith' depreaction warning 2018-04-22 13:28:31 -04:00
Assistant.hs fold Build/SysConfig.hs into BuildInfo via include 2017-12-14 12:46:57 -04:00
Backend.hs more lambda-case conversion 2017-12-05 15:00:50 -04:00
bash-completion.bash update from optparse-applicative output 2017-06-09 11:30:24 -04:00
build.bat let build.bat also be run from cygwin terminal 2015-04-21 14:12:14 -04:00
BuildFlags.hs split BuildInfo and BuildFlags 2018-01-02 13:47:51 -04:00
BuildInfo.hs split BuildInfo and BuildFlags 2018-01-02 13:47:51 -04:00
CHANGELOG enforce retrievalSecurityPolicy 2018-06-21 13:37:01 -04:00
CmdLine.hs Make --json and --quiet suppress automatic init messages 2016-09-05 15:34:38 -04:00
Command.hs add --json-error-messages (not yet implemented) 2018-02-19 14:32:15 -04:00
Common.hs finally really add back custom-setup stanza 2017-12-31 16:36:39 -04:00
Config.hs configuration and docs for tracking exports 2017-09-19 13:05:43 -04:00
COPYRIGHT add Utility.HttpManagerRestricted 2018-06-16 18:44:13 -04:00
Creds.hs finish git-annex enable-tor 2016-11-29 17:30:27 -04:00
Crypto.hs add KeyVariety type 2017-02-24 15:16:56 -04:00
ghci avoid tab warnings from ghc 8 2016-11-17 13:39:30 -04:00
git-annex.cabal version deps 2018-06-19 19:55:22 -04:00
git-annex.hs windows build fix 2018-01-09 11:51:17 -04:00
git-union-merge.hs Always use filesystem encoding for all file and handle reads and writes. 2016-12-24 14:46:31 -04:00
Git.hs Propigate GIT_DIR and GIT_WORK_TREE environment to external special remotes. 2016-05-06 12:26:44 -04:00
Jenkinsfile Revert "debugging strange old version of git-annex in windows installer bundle" 2017-10-26 11:32:04 -04:00
Key.hs Fix mangling of --json output of utf-8 characters when not running in a utf-8 locale 2018-04-16 16:21:21 -04:00
Limit.hs followup 2018-06-04 12:12:56 -04:00
Logs.hs implement export.log and resolve export conflicts 2017-08-31 15:47:23 -04:00
Makefile android: try harder to force PIE for android 5+ 2018-04-16 17:30:21 -04:00
Messages.hs Added INFO to external special remote protocol. 2018-02-06 13:03:55 -04:00
NEWS enforce retrievalSecurityPolicy 2018-06-21 13:37:01 -04:00
README use https 2014-11-06 14:20:10 -04:00
Remote.hs enforce retrievalSecurityPolicy 2018-06-21 13:37:01 -04:00
Setup.hs Added git-remote-tor-annex, which allows git pull and push to the tor hidden service. 2016-11-21 17:27:38 -04:00
stack-windows.yaml Removed the testsuite build flag 2017-12-20 12:25:03 -04:00
stack.yaml Revert "response" 2018-05-30 11:27:54 -04:00
Test.hs limit url downloads to whitelisted schemes 2018-06-16 11:57:50 -04:00
Types.hs better dup key with -J fix 2017-10-17 18:48:53 -04:00
Upgrade.hs Avoid backtraces on expected failures when built with ghc 8; only use backtraces for unexpected errors. 2016-11-15 21:29:54 -04:00

README 

git-annex allows managing files with git, without checking the file
contents into git. While that may seem paradoxical, it is useful when
dealing with files larger than git can currently easily handle, whether due
to limitations in memory, checksumming time, or disk space.

For documentation, see doc/ or <https://git-annex.branchable.com/>