upstream/mercurial-mirror Files · mercurial/help/revisions.txt

context: use a the nofsauditor when matching file in history (issue4749)...

context: use a the nofsauditor when matching file in history (issue4749) Before this change, asking for file from history (eg: 'hg cat -r 42 foo/bar') could fail because of the current content of the working copy (eg: current "foo" being a symlink). As the working copy state have no influence on the content of the history, we can safely skip these checks. The working copy context class have a different 'match' implementation. That implementation still use the repo.auditor will still catch symlink traversal. I've audited all stuff calling "match" and they all go through a ctx in a sensible way. The most unclear case was diff which still seemed okay. You raised my paranoid level today and I double checked through tests. They behave properly. The odds of someone using the wrong (matching with a changectx for operation that will eventually touch the file system) is non-zero because you are never sure of what people will do. But I dunno if we can fight against that. So I would not commit to "never" for "at this level" and "in the future" if someone write especially bad code. However, as a last defense, the vfs itself is running path auditor in all cases outside of .hg/. So I think anything passing the 'matcher' for buggy reason would growl at the vfs layer.

Mads Kiilerich - - Load All Authors

File last commit:

r20245:4edd179f default


                r27234:15c6eb0a

default

Download file

             revisions.txt
        
                    29 lines
            
             | 1.3 KiB
            
                | text/plain
            
             |
                TextLexer

/ mercurial / help / revisions.txt

History | Annotation | Raw |Copy content |Copy permalink

				Mercurial supports several ways to specify individual revisions.

				A plain integer is treated as a revision number. Negative integers are
				treated as sequential offsets from the tip, with -1 denoting the tip,
				-2 denoting the revision prior to the tip, and so forth.

				A 40-digit hexadecimal string is treated as a unique revision
				identifier.

				A hexadecimal string less than 40 characters long is treated as a
				unique revision identifier and is referred to as a short-form
				identifier. A short-form identifier is only valid if it is the prefix
				of exactly one full-length identifier.

				Any other string is treated as a bookmark, tag, or branch name. A
				bookmark is a movable pointer to a revision. A tag is a permanent name
				associated with a revision. A branch name denotes the tipmost open branch head
				of that branch - or if they are all closed, the tipmost closed head of the
				branch. Bookmark, tag, and branch names must not contain the ":" character.

				The reserved name "tip" always identifies the most recent revision.

				The reserved name "null" indicates the null revision. This is the
				revision of an empty repository, and the parent of revision 0.

				The reserved name "." indicates the working directory parent. If no
				working directory is checked out, it is equivalent to null. If an
				uncommitted merge is in progress, "." is the revision of the first
				parent.

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages