upstream/mercurial-mirror Files · mercurial/help/diffs.txt

context: use a the nofsauditor when matching file in history (issue4749)...

context: use a the nofsauditor when matching file in history (issue4749) Before this change, asking for file from history (eg: 'hg cat -r 42 foo/bar') could fail because of the current content of the working copy (eg: current "foo" being a symlink). As the working copy state have no influence on the content of the history, we can safely skip these checks. The working copy context class have a different 'match' implementation. That implementation still use the repo.auditor will still catch symlink traversal. I've audited all stuff calling "match" and they all go through a ctx in a sensible way. The most unclear case was diff which still seemed okay. You raised my paranoid level today and I double checked through tests. They behave properly. The odds of someone using the wrong (matching with a changectx for operation that will eventually touch the file system) is non-zero because you are never sure of what people will do. But I dunno if we can fight against that. So I would not commit to "never" for "at this level" and "in the future" if someone write especially bad code. However, as a last defense, the vfs itself is running path auditor in all cases outside of .hg/. So I think anything passing the 'matcher' for buggy reason would growl at the vfs layer.

Brodie Rao - - Load All Authors

File last commit:

r12083:ebfc4692 stable


                r27234:15c6eb0a

default

Download file

             diffs.txt
        
                    29 lines
            
             | 1.3 KiB
            
                | text/plain
            
             |
                TextLexer

/ mercurial / help / diffs.txt

History | Annotation | Raw |Copy content |Copy permalink

				Mercurial's default format for showing changes between two versions of
				a file is compatible with the unified format of GNU diff, which can be
				used by GNU patch and many other standard tools.

				While this standard format is often enough, it does not encode the
				following information:

				- executable status and other permission bits
				- copy or rename information
				- changes in binary files
				- creation or deletion of empty files

				Mercurial also supports the extended diff format from the git VCS
				which addresses these limitations. The git diff format is not produced
				by default because a few widespread tools still do not understand this
				format.

				This means that when generating diffs from a Mercurial repository
				(e.g. with :hg:`export`), you should be careful about things like file
				copies and renames or other things mentioned above, because when
				applying a standard diff to a different repository, this extra
				information is lost. Mercurial's internal operations (like push and
				pull) are not affected by this, because they use an internal binary
				format for communicating changes.

				To make Mercurial produce the git extended diff format, use the --git
				option available for many commands, or set 'git = True' in the [diff]
				section of your configuration file. You do not need to set this option
				when importing diffs in this format or using them in the mq extension.

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages