From: Jonathan Nieder <jrnieder@gmail.com>
To: Jeff King <peff@peff.net>
Cc: Marketa Calabkova <mcalabkova@suse.cz>, git@vger.kernel.org
Subject: Re: Git bomb still present (at least in SUSE)?
Date: Tue, 15 Jan 2019 18:51:10 -0800 [thread overview]
Message-ID: <20190116025110.GD8864@google.com> (raw)
In-Reply-To: <20190115180031.GA31834@sigill.intra.peff.net>
(moving conversation to the main Git list. I hope that's okay.)
Hi,
Jeff King wrote:
> On Tue, Jan 15, 2019 at 02:35:29PM +0100, Marketa Calabkova wrote:
>> meggy@irbis:/tmp/test> /usr/bin/time git clone
>> https://github.com/Katee/git-bomb.git
>> Cloning into 'git-bomb'...
>> remote: Enumerating objects: 18, done.
>> remote: Total 18 (delta 0), reused 0 (delta 0), pack-reused 18
>> Unpacking objects: 100% (18/18), done.
>> ^Cwarning: Clone succeeded, but checkout failed.
[...]
> git clone --bare https://github.com/Katee/git-bomb.git
> cd git-bomb.git
> git read-tree HEAD ;# yikes!
>
> So I don't think there's a bug per se. It is possible that Git could
> have better protections against maliciously gigantic repositories, but I
> don't think anybody is actively working on such a feature (and it would
> involve much more than this case; it's pretty easy to generate trees
> with pessimal diffs, etc).
One thing I think interested people could do is introduce some kind of
"limits" subsystem into Git, so that a person could configure Git to
refuse to even try when it notices that an operation is going to be
sufficiently expensive. I.e. something similar to what rlimits (or
other limits e.g. enforced in cgroups) provide in an operating system.
That said, as alluded to in the last paragraph, there's also some
protection possible at the operating system level.
So my feeling is that there's some real potential for improvement
here, and I'm happy to help mentor anyone working on it if it is their
itch (because of the "can handle at another level" thing, it is not
mine).
Thanks,
Jonathan
next parent reply other threads:[~2019-01-16 2:51 UTC|newest]
Thread overview: 2+ messages / expand[flat|nested] mbox.gz Atom feed top
[not found] <a212bd07-8d3c-da5c-6387-4d70ed8edd65@suse.cz>
[not found] ` <20190115180031.GA31834@sigill.intra.peff.net>
2019-01-16 2:51 ` Jonathan Nieder [this message]
2019-01-17 12:26 ` Git bomb still present (at least in SUSE)? Marketa Calabkova
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
List information: http://vger.kernel.org/majordomo-info.html
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20190116025110.GD8864@google.com \
--to=jrnieder@gmail.com \
--cc=git@vger.kernel.org \
--cc=mcalabkova@suse.cz \
--cc=peff@peff.net \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
Code repositories for project(s) associated with this public inbox
https://80x24.org/mirrors/git.git
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).