Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

libgit2-devel-1.3.0-150400.3.6.1 RPM for ppc64le

From OpenSuSE Leap 15.5 for ppc64le

Name: libgit2-devel Distribution: SUSE Linux Enterprise 15
Version: 1.3.0 Vendor: SUSE LLC <https://www.suse.com/>
Release: 150400.3.6.1 Build date: Fri Mar 17 08:25:35 2023
Group: Development/Libraries/C and C++ Build host: sangiovese
Size: 922614 Source RPM: libgit2-1.3.0-150400.3.6.1.src.rpm
Packager: https://www.suse.com/
Url: https://libgit2.github.com/
Summary: C git library
This package contains all necessary include files and libraries needed
to compile and develop applications that use libgit2.

Provides

Requires

License

GPL-2.0-only WITH GCC-exception-2.0

Changelog

* Wed Mar 15 2023 mgorse@suse.com
  - Verify ssh remote host keys (boo#1207364 CVE-2023-22742):
    0001-ssh-verify-the-remote-s-host-key-against-known_hosts.patch
    0002-tests-append-the-github.com-ssh-keys-so-we-have-acce.patch
    0003-tests-move-online-clone-ssh_auth_methods-into-the-ss.patch
    0004-ssh-look-for-a-key-in-known_hosts-to-set-the-key-typ.patch
* Tue Aug 23 2022 alarrosa@suse.com
  - Add patches from upstream v1.3 branch to fix CVE-2022-29187,
    CVE-2022-24765 (bsc#1201431, bsc#1198234):
    * 0001-path-refactor-ownership-checks-into-current-user-and.patch
    * 0002-repo-ensure-that-repo-dir-is-owned-by-current-user.patch
    * 0003-fs_path-mock-ownership-checks.patch
    * 0004-repo-test-configuration-ownership-validation.patch
    * 0005-repo-refactor-global-config-loader-function.patch
    * 0006-repo-honor-safe.directory-during-ownership-checks.patch
    * 0007-repo-make-ownership-checks-optional.patch
    * 0010-revparse-Remove-error-prone-redundant-test.patch
    * 0014-repo-add-tests-for-bare-repo-permissions.patch
    * 0015-fs-remove-mock-naming-from-change-ownership-constant.patch
    * 0016-fs-refactor-file-ownership-checks.patch
    * 0017-fs-allow-ownership-match-if-user-is-in-admin-group.patch
    * 0018-repo-allow-admin-owned-configs-by-admin-users.patch
    * 0019-repo-validate-gitdir-and-gitlink-ownership.patch
    * 0020-repo-allow-users-running-with-sudo-to-access-their-r.patch
* Wed Oct 20 2021 mcepl@suse.com
  - Update to 1.3.0:
    - This release includes only minor new features that will be helpful
      for users to have an orderly transition to the v2.0 lineage.
    - Complete list is available on
      https://github.com/libgit2/libgit2/blob/main/docs/changelog.md#v13
* Thu Sep 02 2021 andreas.stieger@gmx.de
  - update to 1.2.0:
    * Add support for commit graphs
    * Add support for multi-pack indexes
    * And core.longpaths support
    * Add support for additional SSH hostkey types
    * Add NO_PROXY environment variable support
    * Developer visible changes and bug fixes
* Fri Jul 16 2021 dmueller@suse.com
  - update to 1.1.1:
    * Fixes a bug where decompressing packfiles could fail in rare
      instances.
    * Ensure worktree paths are validated in more cases.
    * Builds without thread-safety (`THREADSAFE=OFF`) are supported again.
    * Builds without mmap (`NO_MMAP`) are supported again.
    * mbedTLS is supported in non-default locations.
    * Malformed branch names or missing branches on remotes are ignored.
    * Use compiler intrinsics to detect arithmetic overflows in more cases.
    * The configuration cache functions properly on systems with strict
      alignment.
    * A missing options initializer function (`git_blob_filter_options_init`)
      was added for `git_blob_filter_options`.
    * Several documentation fixes.
* Thu Nov 26 2020 mrueckert@suse.de
  - require library required by pkg-config file
* Mon Oct 19 2020 andreas.stieger@gmx.de
  - update to 1.1.0:
    * The refs/remotes/origin/HEAD file will be created at clone
      time to point to the origin's default branch
    * libgit2 now uses the __atomic_ intrinsics instead of __sync_
      intrinsics on supported gcc and clang versions
    * The init.defaultBranch setting is now respected and master is
      no longer the hardcoded as the default branch name
    * Patch files that do not contain an index line can now be parsed
    * Configuration files with multi-line values can now contain
      quotes split across multiple lines
    * Servers that request an upgrade to a newer HTTP version are
      silently ignored instead of erroneously failing
    * Users can pass NULL to the options argument to
      git_describe_commit
    * Clones and fetches of very large packfiles now succeeds on
      32-bit platforms
    * Custom reference database backends can now handle the
      repository's HEAD correctly
    * Repositories with a large number of packfiles no longer
      exhaust the number of file descriptors
    * The test framework now supports TAP output when the -t flag
      is specified
    * The test framework can now specify an exact match to a test
      function using a trailing $
    * All checkout types support GIT_CHECKOUT_DISABLE_PATHSPEC_MATCH
    * git_blame now can ignore whitespace changes using the option
      GIT_BLAME_IGNORE_WHITESPACE
    * Several new examples have been created, including an examples
      for commit, add and push
    * Mode changes during rename are now supported in patch
      application
    * git_checkout_head now correctly removes untracked files in a
      subdirectory when the FORCE | REMOVE_UNTRACKED options are
      specified
* Sat Jun 20 2020 andreas.stieger@gmx.de
  - update to 1.0.1:
    * Improve merge efficiency
    * git_worktree_prune_init_options restored for backward
      compatibility
    * Configuration files that are unreadable due to permissions are
      now silently ignored, and treated as if they do not exist
    * v4 index files are now correctly written
    * Improve compatibility with some servers including Gerrit
* Wed Apr 01 2020 bjorn.lie@gmail.com
  - Update to version 1.0.0:
    * CMake was converted to make use of the GNUInstallDirs module
      for both our pkgconfig and install targets in favor of our
      custom build options BIN_INSTALL_DIR, LIB_INSTALL_DIR and
      INCLUDE_INSTALL_DIR. Instead, you can now use CMakes standard
      variables CMAKE_INSTALL_BINDIR, CMAKE_INSTALL_LIBDIR and
      CMAKE_INSTALL_INCLUDEDIR.
    * Some CMake build options accepted either a specific value or a
      boolean value to disable the option altogether or use automatic
      detection. We only accepted "ON" or "OFF", but none of the
      other values CMake recognizes as boolean. This was aligned with
      CMake's understanding of booleans.
    * The installed pkgconfig file contained incorrect values for
      both libdir and includedir variables.
    * If using pcre2 for regular expressions, then we incorrectly
      added "pcre2" instead of "pcre2-8" to our pkgconfig
      dependencies, which was corrected.
    * Fixed building the bundled ntlmclient dependency on FreeBSD,
      OpenBSD and SunOS.
    * When writing symlinks on Windows, we incorrectly handled
      relative symlink targets, which was corrected.
    * When using the HTTP protocol via macOS' SecureTransport
      implementation, reads could stall at the end of the session and
      only continue after a timeout of 60 seconds was reached.
    * The filesystem-based reference callback didn't corectly
      initialize the backend version.
    * A segmentation fault was fixed when calling git_blame_buffer()
      for files that were modified and added to the index.
    * A backwards-incompatible change was introduced when we moved
      some structures from "git2/credentials.h" into
      "git2/sys/credentials.h". This was fixed in the case where you
      do not use hard deprecation.
    * Improved error handling in various places.
  - Change sover define to 1_0 and in baselibs following upstream
    changes.
* Wed Apr 01 2020 bjorn.lie@gmail.com
  - Update to version 0.28.5:
    * Fix an out-of-bounds read when applying patches that do not end
      with a newline.
    * Fix an out-of-bounds read when decoding specially crafted
      binary patches.
    * Fix an out-of-bounds read when receiving a specially crafted
      "OK" packet via the smarthttp transport.
    * Fix lifetime for parsed patches depending on the lifetime of
      the parsed buffe.
    * Several fixes when parsing and applying patches.
    * Fix computed patch IDs for patches that have no newline at end
      of file.
    * Fix applying patches to trees that add new files.
    * Do not read configuration from a user's home directory if
      running in a sandboxed environment.
    * Fix handling of nested ignore rules overriding wildcard
      unignores in parent directories.
    * Fix reference locks not being correctly honored on Unix
      systems.
    * Follow 308 redirects when fetching or pushing from remote
      repositories on Windows.
    * Fix a race when detaching the libgit2 library on Windows.
    * Update the "binary" gitattribute macro to match git's change
      to "-diff -merge -text -crlf".
    * Refuse to delete the HEAD reference.
    * Fixes for several memory leaks.
    * When fetching from an anonymous remote using a URL with
      authentication information provided in the URL (eg
      https://foo:bar@example.com/repo), we would erroneously include
      the literal URL in the FETCH_HEAD file. We now remove that to
      match git's behavior.
* Wed Dec 11 2019 andreas.stieger@gmx.de
  - libgit2 0.28.4:
    * CVE-2019-1348: the fast-import stream command "feature
      export-marks=path" allows writing to arbitrary file paths. As
      libgit2 does not offer any interface for fast-import, it is not
      susceptible to this vulnerability. (boo#1158785)
    * CVE-2019-1349: by using NTFS 8.3 short names, backslashes or
      alternate filesystreams, it is possible to cause submodules to
      be written into pre-existing directories during a recursive
      clone using git. As libgit2 rejects cloning into non-empty
      directories by default, it is not susceptible to this
      vulnerability. (boo#1158787)
    * CVE-2019-1350: recursive clones may lead to arbitrary remote
      code executing due to improper quoting of command line
      arguments. As libgit2 uses libssh2, which does not require us
      to perform command line parsing, it is not susceptible to this
      vulnerability. (boo#1158788)
    * CVE-2019-1351: Windows provides the ability to substitute
      drive letters with arbitrary letters, including multi-byte
      Unicode letters. To fix any potential issues arising from
      interpreting such paths as relative paths, we have extended
      detection of DOS drive prefixes to accomodate for such cases.
      (boo#1158790)
    * CVE-2019-1352: by using NTFS-style alternative file streams for
      the ".git" directory, it is possible to overwrite parts of the
      repository. While this has been fixed in the past for Windows,
      the same vulnerability may also exist on other systems that
      write to NTFS filesystems. We now reject any paths starting
      with ".git:" on all systems. (boo#1158790)
    * CVE-2019-1353: by using NTFS-style 8.3 short names, it was
      possible to write to the ".git" directory and thus overwrite
      parts of the repository, leading to possible remote code
      execution. While this problem was already fixed in the past for
      Windows, other systems accessing NTFS filesystems are
      vulnerable to this issue too. We now enable NTFS protecions by
      default on all systems to fix this attack vector. (boo#1158791)
    * CVE-2019-1354: on Windows, backslashes are not a valid part of
      a filename but are instead interpreted as directory separators.
      As other platforms allowed to use such paths, it was possible
      to write such invalid entries into a Git repository and was
      thus an attack vector to write into the ".git" dierctory. We
      now reject any entries starting with ".git" on all systems.
      (boo#1158792)
    * CVE-2019-1387: it is possible to let a submodule's git
      directory point into a sibling's submodule directory, which may
      result in overwriting parts of the Git repository and thus lead
      to arbitrary command execution. As libgit2 doesn't provide any
      way to do submodule clones natively, it is not susceptible to
      this vulnerability. Users of libgit2 that have implemented
      recursive submodule clones manually are encouraged to review
      their implementation for this vulnerability. (boo#1158793)
* Wed Dec 11 2019 andreas.stieger@gmx.de
  - libgit2 0.28.3:
    * A carefully constructed commit object with a very large number
      of parents may have lead to out-of-bounds writes or potential
      denial of service (boo#1158981)
* Tue Jul 23 2019 tchvatal@suse.com
  - Update to 0.28.2:
    * Fix include directory ordering when using bundled dependencies.
    * Fix infinite loop when searching for a non-existing repository with
      Windows-style paths including drive prefixes.
    * Fix symlinks to directories on Windows.
    * Fix paths with a trailing "/" not always being treated as
      directories when computing ignores.
    * Fix false negatives when computing ignores where ignore rules
      that are a prefix to a negative ignore rule exist.
    * Fix patches with CRLF line endings not being parsed correctly.
    * Fix segfault when parsing patches with file addition (deletion)
      where the added (deleted) file name contains a space.
    * Fix assertion failure when trying to write to a non-existent
      locked configuration file.
* Thu Feb 14 2019 mrueckert@suse.de
  -  Update to version 0.28.1:
    - The deprecated functions (git_buf_free and the giterr_ family
      of functions) are now exported properly. In the v0.28 release,
      they were not given the correct external attributes and they
      did not have the correct linkage visibility in the v0.28
      library.
* Wed Feb 13 2019 bjorn.lie@gmail.com
  - Update to version 0.28.0:
    * Changes or improvements:
    - The library is now always built with cdecl calling
      conventions on Windows; the ability to build a stdcall
      library has been removed.
    - Reference log creation now honors
      core.logallrefupdates=always.
    - Fix some issues with the error-reporting in the OpenSSL
      backend.
    - HTTP proxy support is now builtin; libcurl is no longer used
      to support proxies and is removed as a dependency.
    - Certificate and credential callbacks can now return
      GIT_PASSTHROUGH to decline to act; libgit2 will behave as if
      there was no callback set in the first place.
    - The line-ending filtering logic - when checking out files -
      has been updated to match newer git (>= git 2.9) for proper
      interoperability.
    - Symbolic links are now supported on Windows when
      core.symlinks is set to true.
    - Submodules with names which attempt to perform path traversal
      now have their configuration ignored. Such names were blindly
      appended to the $GIT_DIR/modules and a malicious name could
      lead to an attacker writing to an arbitrary location. This
      matches git's handling of CVE-2018-11235.
    - Object validation is now performed during tree creation in
      the git_index_write_tree_to API.
    - Configuration variable may now be specified on the same line
      as a section header; previously this was erroneously a parser
      error.
    - When an HTTP server supports both NTLM and Negotiate
      authentication mechanisms, we would previously fail to
      authenticate with any mechanism.
    - The GIT_OPT_SET_PACK_MAX_OBJECTS option can now set the
      maximum number of objects allowed in a packfile being
      downloaded; this can help limit the maximum memory used when
      fetching from an untrusted remote.
    - Line numbers in diffs loaded from patch files were not being
      populated; they are now included in the results.
    - The repository's index is reloaded from disk at the beginning
      of git_merge operations to ensure that it is up-to-date.
    - Mailmap handling APIs have been introduced, and the new
      commit APIs git_commit_committer_with_mailmap and
      git_commit_author_with_mailmap will use the mailmap to
      resolve the committer and author information. In addition,
      blame will use the mailmap given when the
      GIT_BLAME_USE_MAILMAP option.
    - Ignore handling for files in ignored folders would be
      ignored.
    - Worktrees can now be backed by bare repositories.
    - Trailing spaces are supported in .gitignore files, these
      spaces were previously (and erroneously) treated as part of
      the pattern.
    - The library can now be built with mbedTLS support for HTTPS.
    - The diff status character 'T' will now be presented by the
      git_diff_status_char API for diff entries that change type.
    - Revision walks previously would sometimes include commits
      that should have been ignored; this is corrected.
    - Revision walks are now more efficient when the output is
      unsorted; we now avoid walking all the way to the beginning
      of history unnecessarily.
    - Error-handling around index extension loading has been fixed.
      We were previously always misreporting a truncated index.
    * API additions:
    - The index may now be iterated atomically using
      git_index_iterator.
    - Remote objects can now be created with extended options using
      the git_remote_create_with_opts API.
    - Diff objects can now be applied as changes to the working
      directory, index or both, emulating the git apply command.
      Additionally, git_apply_to_tree can apply those changes to a
      tree object as a fully in-memory operation.
    - You can now swap out memory allocators via the
      GIT_OPT_SET_ALLOCATOR option with git_libgit2_opts().
    - You can now ensure that functions do not discard unwritten
      changes to the index via the
      GIT_OPT_ENABLE_UNSAVED_INDEX_SAFETY option to
      git_libgit2_opts(). This will cause functions that implicitly
      re-read the index (eg, git_checkout) to fail if you have
      staged changes to the index but you have not written the
      index to disk. (Unless the checkout has the FORCE flag
      specified.)
    - At present, this defaults to off, but we intend to enable
      this more broadly in the future, as a warning or error. We
      encourage you to examine your code to ensure that you are not
      relying on the current behavior that implicitly removes
      staged changes.
    - Reference specifications can be parsed from an arbitrary
      string with the git_refspec_parse API.
    - You can now get the name and path of worktrees using the
      git_worktree_name and git_worktree_path APIs, respectively.
    - The ref field has been added to git_worktree_add_options to
      enable the creation of a worktree from a pre-existing branch.
    - It's now possible to analyze merge relationships between any
      two references, not just against HEAD, using
      git_merge_analysis_for_ref.
    * API removals:
    - The git_buf_free API is deprecated; it has been renamed to
      git_buf_dispose for consistency. The git_buf_free API will be
      retained for backward compatibility for the foreseeable
      future.
    - The git_otype enumeration and its members are deprecated and
      have been renamed for consistency. The GIT_OBJ_ enumeration
      values are now prefixed with GIT_OBJECT_. The old
      enumerations and macros will be retained for backward
      compatibility for the foreseeable future.
    - Several index-related APIs have been renamed for consistency.
      The GIT_IDXENTRY_ enumeration values and macros have been
      renamed to be prefixed with GIT_INDEX_ENTRY_. The
      GIT_INDEXCAP enumeration values are now prefixed with
      GIT_INDEX_CAPABILITY_. The old enumerations and macros will
      be retained for backward compatibility for the foreseeable
      future.
    - The error functions and enumeration values have been renamed
      for consistency. The giterr_ functions and values prefix have
      been renamed to be prefixed with git_error_; similarly,
      the GITERR_ constants have been renamed to be prefixed with
      GIT_ERROR_. The old enumerations and macros will be retained
      for backward compatibility for the foreseeable future.
    * Breaking API changes:
    - The default checkout strategy changed from DRY_RUN to SAFE.
    - Adding a symlink as .gitmodules into the index from the
      workdir or checking out such files is not allowed as this can
      make a Git implementation write outside of the repository and
      bypass the fsck checks for CVE-2018-11235.
  - Bump sover to 28 following upstreams changes.
* Mon Nov 05 2018 astieger@suse.com
  - libgit2 0.27.7:
    * Various improvements for handling repositories
    * Various API correctness fixes
  - includes changess from 0.27.6:
    * Various security fixes for parsing integers from buffers,
      and buffer handling bsc#1114729
* Sun Oct 07 2018 astieger@suse.com
  - libgit2 0.27.5:
    * CVE-2018-17456: Submodule URLs and paths with a leading "-"
      are now ignored to avoid injecting options into library
      consumers that perform recursive clones (bsc#1110949)
    * Avoid a buffer overflow when running repack
    * Avoid stack overflow from unbounded recursion in configuration
      file parser
    * Avoid heap-buffer overflow when parsing "ok" packets
    * Fix heap-buffer overflows in smart protocol parsing code
    * Fix potential integer overflows on platforms with 16 bit ints
    * Fix potential NULL pointer dereference when parsing
      configuration files
* Tue Aug 21 2018 mpluskal@suse.com
  - Use pkgconfig style of dependencies, refresh dependencies
  - Use more of cmake macros
* Mon Aug 13 2018 astieger@suse.com
  - libgit2 0.27.4:
    * fix out-of-bounds reads when processing smart-protocol "ng"
      packets (bsc#1104641)
* Tue Jul 10 2018 astieger@suse.com
  - libgit2 0.27.3:
    * CVE-2018-10887 (bsc#1100613), CVE-2018-10888 (bsc#1100612):
      Specially crafted delta object in packfiles could trigger an
      integer overflow, bypassing input validation and causing the
      object database to contain copies of system memory. This may
      allow denial of service or, potentially, an information leak
  - includes changes from 0.27.2:
    * various API and correctnes fixes
    * Fixes related to handling of .gitmodules
  - includes changes from 0.27.1:
    * CVE-2018-11235: insufficient validation of submodule names from
      .gitmodules allowed writes to arbitrary paths (bsc#1095219)
    * disallow .gitmodules files as symlinks.
* Mon Apr 23 2018 mrueckert@suse.de
  - update to 0.27.0:
    - Changes or improvements
    - Improved p_unlink in posix_w32.c to try and make a file
      writable before sleeping in the retry loop to prevent
      unnecessary calls to sleep.
    - The CMake build infrastructure has been improved to speed up
      building time.
    - A new CMake option "-DUSE_HTTPS=" makes it possible to
      explicitly choose an HTTP backend.
    - A new CMake option "-DSHA1_BACKEND=" makes it possible to
      explicitly choose an SHA1 backend. The collision-detecting
      backend is now the default.
    - A new CMake option "-DUSE_BUNDLED_ZLIB" makes it possible to
      explicitly use the bundled zlib library.
    - A new CMake option "-DENABLE_REPRODUCIBLE_BUILDS" makes it
      possible to generate a reproducible static archive. This
      requires support from your toolchain.
    - The minimum required CMake version has been bumped to 2.8.11.
    - Writing to a configuration file now preserves the case of the
      key given by the caller for the case-insensitive portions of
      the key (existing sections are used even if they don't
      match).
    - We now support conditional includes in configuration files.
    - Fix for handling re-reading of configuration files with
      includes.
    - Fix for reading patches which contain exact renames only.
    - Fix for reading patches with whitespace in the compared
      files' paths.
    - We will now fill FETCH_HEAD from all passed refspecs instead
      of overwriting with the last one.
    - There is a new diff option, GIT_DIFF_INDENT_HEURISTIC which
      activates a heuristic which takes into account whitespace and
      indentation in order to produce better diffs when dealing
      with ambiguous diff hunks.
    - Fix for pattern-based ignore rules where files ignored by a
      rule cannot be un-ignored by another rule.
    - Sockets opened by libgit2 are now being closed on exec(3) if
      the platform supports it.
    - Fix for peeling annotated tags from packed-refs files.
    - Fix reading huge loose objects from the object database.
    - Fix files not being treated as modified when only the file
      mode has changed.
    - We now explicitly reject adding submodules to the index via
      git_index_add_frombuffer.
    - Fix handling of GIT_DIFF_FIND_RENAMES_FROM_REWRITES raising
      SIGABRT when one file has been deleted and another file has
      been rewritten.
    - Fix for WinHTTP not properly handling NTLM and Negotiate
      challenges.
    - When using SSH-based transports, we now repeatedly ask for
      the passphrase to decrypt the private key in case a wrong
      passphrase is being provided.
    - When generating conflict markers, they will now use the same
      line endings as the rest of the file.
    - API additions
    - The git_merge_file_options structure now contains a new
      setting, marker_size. This allows users to set the size of
      markers that delineate the sides of merged files in the
      output conflict file.  By default this is 7
      (GIT_MERGE_CONFLICT_MARKER_SIZE), which produces output
      markers like <<<<<<< and >>>>>>>.
    - git_remote_create_detached() creates a remote that is not
      associated to any repository (and does not apply
      configuration like 'insteadof' rules).  This is mostly useful
      for e.g. emulating git ls-remote behavior.
    - git_diff_patchid() lets you generate patch IDs for diffs.
    - git_status_options now has an additional field baseline to
      allow creating status lists against different trees.
    - New family of functions to allow creating notes for a
      specific notes commit instead of for a notes reference.
    - New family of functions to allow parsing message trailers.
      This API is still experimental and may change in future
      releases.
    - Breaking API changes
    - Signatures now distinguish between +0000 and -0000 UTC offsets.
    - The certificate check callback in the WinHTTP transport will
      now receive the message_cb_payload instead of the
      cred_acquire_payload.
    - We are now reading symlinked directories under .git/refs.
    - We now refuse creating branches named "HEAD".
    - We now refuse reading and writing all-zero object IDs into
      the object database.
    - We now read the effective user's configuration file instead
      of the real user's configuration in case libgit2 runs as part
      of a setuid binary.
    - The git_odb_open_rstream function and its readstream callback
      in the git_odb_backend interface have changed their
      signatures to allow providing the object's size and type to
      the caller.
* Wed Mar 14 2018 kbabioch@suse.com
  - Update to 0.26.3:
    * Fix cloning of the libgit2 project with git clone --recursive by removing an
      invalid submodule from our testing data.
    * Fix endianness of the port in p_getaddrinfo().
    * Fix handling of negative gitignore rules with wildcards.
    * Fix handling of case-insensitive negative gitignore rules.
    * Fix resolving references to a tag if the reference is stored with its fully
      resolved OID in the packed-refs file.
    * Fix checkout not treating worktree files as modified when only their mode has
      changed.
    * Fix rename detection with GIT_DIFF_FIND_RENAMES_FROM_REWRITES.
    * Fixes memory handling issues when reading crafted repository index files.
      The issues allow for possible denial of service due to allocation of large
      memory and out-of-bound reads.
      (CVE-2018-8098 bnc#1085257 CVE-2018-8099 bnc#1085256)
    * Updates the bundled zlib to 1.2.11. Users who build the bundled zlib are
      vulnerable to security issues in the prior version.
* Wed Feb 28 2018 dimstar@opensuse.org
  - Modernize spec-file by calling spec-cleaner
* Mon Nov 13 2017 mimi.vx@gmail.com
  - remove unneeded dependency (python is used only for testsuite, which
      isn't used during build)
* Sat Aug 05 2017 astieger@suse.com
  - libgit2 0.26.0:
    * Support for opening, creating and modifying worktrees.
    * Can now detect SHA1 collisions resulting from the SHAttered
      attack CVE-2005-4900
    * Fix for missing implementation of `git_merge_driver_source` getters
    * Fix for installed pkg-config file being broken when the prefix
      contains spaces
    * Can now detect when the hashsum of on-disk objects does not
      match their expected hashsum.
    * Support open-ended ranges (e.g. "master..", "...master") in
      revision range parsing code.
    * Correctly compute ignores with leading "/" in subdirectories.
    * Optionally call `fsync` on loose objects, packfiles and their
      indexes, loose references and packed reference files.
    * Builds against OpenSSL v1.1 and against LibreSSL.
    * Improvements for reading index v4 files.
    * API additions and incompatible API changes
* Wed Jan 11 2017 astieger@suse.com
  - libgit2 0.25.1
  - New features and functionality:
    * repository discovery features
    * Support for reading and writing git index v4 files
    * Improve the performance of the revwalk
    * reference db concurrency improvements
    * Nanosecond resolution is now activated by default
    * restrict the set of ciphers used with OpenSSL by default.
    * user-registered merge drivers
    * built-in support for the union merge driver
    * callers can now specify proxy settings
    * New API for creating signed commits
    * New API for creating blobs from streams
    * New flags for opening repositories
    * New functions for various git operations
  - Removed API:
    * git_blob_create_fromchunks() has been removed in  favour of
      git_blob_create_fromstream()
  - Changed API:
    * git_packbuilder_object_count and git_packbuilder_written now
      return a size_t instead of a uint32_t for more thorough
      compatibility with the rest of the library.
    * git_packbuiler_progress now provides explicitly sized uint32_t
      values instead of unsigned int.
    * git_diff_file now includes an id_abbrev field that reflects the
      number of nibbles set in the id field.
    * git_odb_backend now has a freshen function pointer
    * git_remote_connect() now accepts proxy options.
* Wed Jan 11 2017 astieger@suse.com
  - libgit2 0.24.6, including the following security fixes:
    * bsc#1019036: edge cases in the Git Smart Protocol can lead to
      attempting to parse outside of the buffer
      CVE-2016-10128,CVE-2016-10129
    * bsc#1019037: MITM possible due to lack of parameter for
      certificate parameter
      CVE-2016-10130,CVE-2017-5338,CVE-2017-5339
  - includes changes from 0.24.5:
    * add support for OpenSSL 1.1.0 for BIO filter
* Thu Dec 01 2016 astieger@suse.com
  - libgit2 0.24.3, fixing the following vulnerabilities:
    * CVE-2016-8568, CVE-2016-8569: invalid memory accesses parsing
      object files (bsc#1003810)
    * various bug fixes from the 0.24.2 release
* Mon May 09 2016 sreeves@suse.com
  - Add to the SDK. Fate#319349
  - Update license to GPL-2.0 WITH GCC-exception-2.0
* Wed Apr 20 2016 astieger@suse.com
  - libgit2 0.24.1:
    + various compatible backported bug fixes
* Wed Mar 16 2016 dimstar@opensuse.org
  - Update to version 0.24.0:
    + Custom filters can now be registered with wildcard attributes,
      for example filter=*. Consumers should examine the attributes
      parameter of the check function for details.
    + Symlinks are now followed when locking a file, which can be
      necessary when multiple worktrees share a base repository.
    + You can now set your own user-agent to be sent for HTTP
      requests by using the GIT_OPT_SET_USER_AGENT with
      git_libgit2_opts().
    + You can set custom HTTP header fields to be sent along with
      requests by passing them in the fetch and push options.
    + Tree objects are now assumed to be sorted. If a tree is not
      correctly formed, it will give bad results. This is the git
      approach and cuts a significant amount of time when reading the
      trees.
    + Filter registration is now protected against concurrent
      registration.
    + Filenames which are not valid on Windows in an index no longer
      cause to fail to parse it on that OS.
    + Rebases can now be performed purely in-memory, without touching
      the repository's workdir.
    + When adding objects to the index, or when creating new tree or
      commit objects, the inputs are validated to ensure that the
      dependent objects exist and are of the correct type. This
      object validation can be disabled with the
      GIT_OPT_ENABLE_STRICT_OBJECT_CREATION option.
    + The WinHTTP transport's handling of bad credentials now behaves
      like the others, asking for credentials again.
    + Various API changes (additions AND removals).
  - Rename libgit2-23 subpackage to libgit2-24, following upstraems
    soname bump (also in baselibs.conf).
* Mon Nov 30 2015 astieger@suse.com
  - libgit2 0.23.4:
    * various bug fixes and improvements
  - drop upstreamed libgit2-fix-.pc-file.patch
* Wed Oct 07 2015 astieger@suse.com
  - libgit2 0.23.3, containing critical fixes:
    * blame: guard xdiff calls for large files
    * diff: don't feed large files to xdiff
    * merge_file: treat large files as binary
    * xdiff: convert size variables to size_t
    * GITERR_CHECK_ALLOC_ADDn: multi-arg adders
* Thu Sep 10 2015 dimstar@opensuse.org
  - Add libgit2-fix-.pc-file.patch: Fix paths written in libgit2.pc.
* Mon Sep 07 2015 astieger@suse.com
  - libgit2 0.23.2:
    * documentation fixes
    * diff: don't error out on an invalid regex
    * http: propagate the credentials callback's error code
    * Fix bug in git_smart__push: push_transfer_progress cb is never called
    * remote: don't confuse tag auto-follow rules with refspec matching
    * curl: use the most secure auth method for the proxy
    * Forcing libssh2 lib location
    * fix duplicate basenames to support older VS
  - includes changes from 0.23.1:
    * Stage an unregistered submodule in _add_bypath()
    * filebuf: remove lockfile upon rename errors
    * Increase required version of cmake to 2.8
    * Handle ssh:// and git:// urls containing a '~' character.
    * documentation updates
    * submodule URL handling fixes
    * index: allow add_bypath to update submodules
    * blob: fail to create a blob from a dir with EDIRECTORY
    * submodule: lookup the submodule by path if available
    * submdule: reproduce double-reporting of a submodule in foreach
  - note cmake requirement and use cmake makros
  - build with system libcurl
  - build with system http-parser
* Tue Jul 28 2015 dimstar@opensuse.org
  - Update to version 0.23.0:
    + Changes or improvements:
    - Patience and minimal diff drivers can now be used for merges.
    - Merges can now ignore whitespace changes.
    - Updated binary identification in CRLF filtering to avoid
      false positives in UTF-8 files.
    - Rename and copy detection is enabled for small files.
    - Checkout can now handle an initial checkout of a repository,
      making GIT_CHECKOUT_SAFE_CREATE unnecessary for users of
      clone.
    - The signature parameter in the ref-modifying functions has
      been removed. Use git_repository_set_ident() and
      git_repository_ident() to override the signature to be used.
    - The local transport now auto-scales the number of threads to
      use when creating the packfile instead of sticking to one.
    - Reference renaming now uses the right id for the old value.
    - The annotated version of branch creation, HEAD detaching and
      reset allow for specifying the expression from the user to be
      put into the reflog.
    - git_rebase_commit now returns GIT_EUNMERGED when you attempt
      to commit with unstaged changes.
    - On Mac OS X, we now use SecureTransport to provide the
      cryptographic support for HTTPS connections insead of
      OpenSSL.
    - Checkout can now accept an index for the baseline
      computations via the baseline_index member.
    - The configuration for fetching is no longer stored inside the
      git_remote struct but has been moved to a git_fetch_options.
      The remote functions now take these options or the callbacks
      instead of setting them beforehand.
    - git_submodule instances are no longer cached or shared across
      lookup. Each submodule represents the configuration at the
      time of loading.
    - The index now uses diffs for add_all() and update_all() which
      gives it a speed boost and closer semantics to git.
    - The ssh transport now reports the stderr output from the
      server as the error message, which allows you to get the
      "repository not found" messages.
    - git_index_conflict_add() will remove staged entries that
      exist for conflicted paths.
    - The flags for a git_diff_file will now have the
      GIT_DIFF_FLAG_EXISTS bit set when a file exists on that side
      of the diff. This is useful for understanding whether a side
      of the diff exists in the presence of a conflict.
    - The constructor for a write-stream into the odb now takes
      git_off_t instead of size_t for the size of the blob, which
      allows putting large files into the odb on 32-bit systems.
    - The remote's push and pull URLs now honor the
      url.$URL.insteadOf configuration. This allows modifying URL
      prefixes to a custom value via gitconfig.
    - git_diff_foreach, git_diff_blobs, git_diff_blob_to_buffer,
      and git_diff_buffers now accept a new binary callback of type
      git_diff_binary_cb that includes the binary diff information.
    - The race condition mitigations described in racy-git.txt have
      been implemented.
    - If libcurl is installed, we will use it to connect to HTTP(S)
      servers.
    + Various API changes (incl. breaking changes).
  - Rename libgit2-22 subpackage to libgit2-23, following upstreams
    soname bump (also in baselibs.conf).
* Tue Jan 27 2015 dimstar@opensuse.org
  - Update to version 0.22.1:
    + The following (critical) fixes have been backported to this
      maintenance release:
    - checkout: introduce git_checkout_perfdata.
    - git_path_join_unrooted: return base len.
    - checkout: don't recreate previous directory.
    - checkout tests: nasty symlinks.
    - checkout: drop newline in error message.
    - checkout: remove files before writing new ones.
    - checkout tests: emulate p_realpath poorly on Win32.
    - checkout tests: cleanup realpath impl on Win32.
  - Changes from version 0.22.0:
    + git_signature_new() now requires a non-empty email address.
    + Use CommonCrypto libraries for SHA-1 calculation on Mac OS X.
    + Disable SSL compression and SSLv2 and SSLv3 ciphers in favor of
      TLSv1 in OpenSSL.
    + The fetch behavior of remotes with autotag set to
      GIT_REMOTE_DOWNLOAD_TAGS_ALL has been changed to match git
      1.9.0 and later. In this mode, libgit2 now fetches all tags in
      addition to whatever else needs to be fetched.
    + git_checkout() now handles case-changing renames correctly on
      case-insensitive filesystems; for example renaming "readme" to
      "README".
    + The search for libssh2 is now done via pkg-config instead of a
      custom search of a few directories.
    + Add support for core.protectHFS and core.protectNTFS. Add more
      validation for filenames which we write such as references.
    + The local transport now generates textual progress output like
      git-upload-pack does ("counting objects").
    + git_checkout_index() can now check out an in-memory index that
      is not necessarily the repository's index, so you may check out
      an index that was produced by git_merge and friends while
      retaining the cached information.
    + Remove the default timeout for receiving / sending data over
      HTTP using the WinHTTP transport layer.
    + Add SPNEGO (Kerberos) authentication using GSSAPI on Unix
      systems.
    + Provide built-in objects for the empty blob (e69de29) and empty
      tree (4b825dc) objects.
    + The index' tree cache is now filled upon read-tree and
      write-tree and the cache is written to disk.
    + LF -> CRLF filter refuses to handle mixed-EOL files.
    + LF -> CRLF filter now runs when * text = auto (with Git for
      Windows 1.9.4).
    + File unlocks are atomic again via rename. Read-only files on
      Windows are made read-write if necessary.
    + Share open packfiles across repositories to share descriptors
      and mmaps.
    + Use a map for the treebuilder, making insertion O(1).
    + The build system now accepts an option EMBED_SSH_PATH which
      when set tells it to include a copy of libssh2 at the given
      location. This is enabled for MSVC.
    + Add support for refspecs with the asterisk in the middle of a
      pattern.
    + Fetching now performs opportunistic updates. To achieve this,
      we introduce a difference between active and passive refspecs,
      which make git_remote_download() and git_remote_fetch() to take
      a list of resfpecs to be the active list, similarly to how git
      fetch accepts a list on the command-line.
    + The THREADSAFE option to build libgit2 with threading support
      has been flipped to be on by default.
    + The remote object has learnt to prune remote-tracking branches.
      If the remote is configured to do so, this will happen via
      git_remote_fetch(). You can also call git_remote_prune() after
      connecting or fetching to perform the prune.
  - Rename libgit2-21 subpackage to libgit2-22, following upstreams
    soname bump (also in baselibs.conf).
* Thu Oct 16 2014 hrvoje.senjan@gmail.com
  - Add baselibs.conf

Files

/usr/include/git2
/usr/include/git2.h
/usr/include/git2/annotated_commit.h
/usr/include/git2/apply.h
/usr/include/git2/attr.h
/usr/include/git2/blame.h
/usr/include/git2/blob.h
/usr/include/git2/branch.h
/usr/include/git2/buffer.h
/usr/include/git2/cert.h
/usr/include/git2/checkout.h
/usr/include/git2/cherrypick.h
/usr/include/git2/clone.h
/usr/include/git2/commit.h
/usr/include/git2/common.h
/usr/include/git2/config.h
/usr/include/git2/cred_helpers.h
/usr/include/git2/credential.h
/usr/include/git2/credential_helpers.h
/usr/include/git2/deprecated.h
/usr/include/git2/describe.h
/usr/include/git2/diff.h
/usr/include/git2/email.h
/usr/include/git2/errors.h
/usr/include/git2/filter.h
/usr/include/git2/global.h
/usr/include/git2/graph.h
/usr/include/git2/ignore.h
/usr/include/git2/index.h
/usr/include/git2/indexer.h
/usr/include/git2/mailmap.h
/usr/include/git2/merge.h
/usr/include/git2/message.h
/usr/include/git2/net.h
/usr/include/git2/notes.h
/usr/include/git2/object.h
/usr/include/git2/odb.h
/usr/include/git2/odb_backend.h
/usr/include/git2/oid.h
/usr/include/git2/oidarray.h
/usr/include/git2/pack.h
/usr/include/git2/patch.h
/usr/include/git2/pathspec.h
/usr/include/git2/proxy.h
/usr/include/git2/rebase.h
/usr/include/git2/refdb.h
/usr/include/git2/reflog.h
/usr/include/git2/refs.h
/usr/include/git2/refspec.h
/usr/include/git2/remote.h
/usr/include/git2/repository.h
/usr/include/git2/reset.h
/usr/include/git2/revert.h
/usr/include/git2/revparse.h
/usr/include/git2/revwalk.h
/usr/include/git2/signature.h
/usr/include/git2/stash.h
/usr/include/git2/status.h
/usr/include/git2/stdint.h
/usr/include/git2/strarray.h
/usr/include/git2/submodule.h
/usr/include/git2/sys
/usr/include/git2/sys/alloc.h
/usr/include/git2/sys/commit.h
/usr/include/git2/sys/commit_graph.h
/usr/include/git2/sys/config.h
/usr/include/git2/sys/cred.h
/usr/include/git2/sys/credential.h
/usr/include/git2/sys/diff.h
/usr/include/git2/sys/email.h
/usr/include/git2/sys/filter.h
/usr/include/git2/sys/hashsig.h
/usr/include/git2/sys/index.h
/usr/include/git2/sys/mempack.h
/usr/include/git2/sys/merge.h
/usr/include/git2/sys/midx.h
/usr/include/git2/sys/odb_backend.h
/usr/include/git2/sys/openssl.h
/usr/include/git2/sys/path.h
/usr/include/git2/sys/refdb_backend.h
/usr/include/git2/sys/reflog.h
/usr/include/git2/sys/refs.h
/usr/include/git2/sys/repository.h
/usr/include/git2/sys/stream.h
/usr/include/git2/sys/transport.h
/usr/include/git2/tag.h
/usr/include/git2/trace.h
/usr/include/git2/transaction.h
/usr/include/git2/transport.h
/usr/include/git2/tree.h
/usr/include/git2/types.h
/usr/include/git2/version.h
/usr/include/git2/worktree.h
/usr/lib64/libgit2.so
/usr/lib64/pkgconfig/libgit2.pc
/usr/share/doc/packages/libgit2-devel
/usr/share/doc/packages/libgit2-devel/examples
/usr/share/doc/packages/libgit2-devel/examples/CMakeLists.txt
/usr/share/doc/packages/libgit2-devel/examples/COPYING
/usr/share/doc/packages/libgit2-devel/examples/README.md
/usr/share/doc/packages/libgit2-devel/examples/add.c
/usr/share/doc/packages/libgit2-devel/examples/args.c
/usr/share/doc/packages/libgit2-devel/examples/args.h
/usr/share/doc/packages/libgit2-devel/examples/blame.c
/usr/share/doc/packages/libgit2-devel/examples/cat-file.c
/usr/share/doc/packages/libgit2-devel/examples/checkout.c
/usr/share/doc/packages/libgit2-devel/examples/clone.c
/usr/share/doc/packages/libgit2-devel/examples/commit.c
/usr/share/doc/packages/libgit2-devel/examples/common.c
/usr/share/doc/packages/libgit2-devel/examples/common.h
/usr/share/doc/packages/libgit2-devel/examples/config.c
/usr/share/doc/packages/libgit2-devel/examples/describe.c
/usr/share/doc/packages/libgit2-devel/examples/diff.c
/usr/share/doc/packages/libgit2-devel/examples/fetch.c
/usr/share/doc/packages/libgit2-devel/examples/for-each-ref.c
/usr/share/doc/packages/libgit2-devel/examples/general.c
/usr/share/doc/packages/libgit2-devel/examples/index-pack.c
/usr/share/doc/packages/libgit2-devel/examples/init.c
/usr/share/doc/packages/libgit2-devel/examples/lg2.c
/usr/share/doc/packages/libgit2-devel/examples/log.c
/usr/share/doc/packages/libgit2-devel/examples/ls-files.c
/usr/share/doc/packages/libgit2-devel/examples/ls-remote.c
/usr/share/doc/packages/libgit2-devel/examples/merge.c
/usr/share/doc/packages/libgit2-devel/examples/push.c
/usr/share/doc/packages/libgit2-devel/examples/remote.c
/usr/share/doc/packages/libgit2-devel/examples/rev-list.c
/usr/share/doc/packages/libgit2-devel/examples/rev-parse.c
/usr/share/doc/packages/libgit2-devel/examples/show-index.c
/usr/share/doc/packages/libgit2-devel/examples/stash.c
/usr/share/doc/packages/libgit2-devel/examples/status.c
/usr/share/doc/packages/libgit2-devel/examples/tag.c


Generated by rpm2html 1.8.1

Fabrice Bellet, Tue Jul 9 17:57:49 2024