From: Junio C Hamano <gitster@pobox.com>
To: "Kyle J. McKay" <mackyle@gmail.com>
Cc: Mark Lodato <lodatom@gmail.com>,
Jonathan Nieder <jrnieder@gmail.com>,
git list <git@vger.kernel.org>
Subject: Re: [PATCH] http.c: fix parsing of http.sslCertPasswordProtected variable
Date: Mon, 15 Jul 2013 08:54:45 -0700 [thread overview]
Message-ID: <7v4nbvddiy.fsf@alter.siamese.dyndns.org> (raw)
In-Reply-To: <EFAADB2C-5774-4076-99CE-887AFB2B5CCA@gmail.com> (Kyle J. McKay's message of "Sun, 14 Jul 2013 23:37:44 -0700")
"Kyle J. McKay" <mackyle@gmail.com> writes:
> That works fine for GIT_SSL_CERT_PASSWORD_PROTECTED and
> GIT_CURL_VERBOSE, but it's a little bit awkward for GIT_SSL_NO_VERIFY
> and GIT_CURL_FTP_NO_EPSV since they have "_NO_" in their names.
>
> If the user wants to override a "http.sslVerify=false" then
> "GIT_SSL_NO_VERIFY=false" is needed rather than "GIT_SSL_VERIFY=true".
>
> We could:
>
> 1) Introduce GIT_SSL_VERIFY and GIT_CURL_FTP_EPSV and say if they are
> set the "_NO_" version is ignored.
>
> 2) Go ahead with "GIT_SSL_NO_VERIFY=false" to force http.sslVerify
> back to true (and similarly for EPSV).
>
> 3) Just leave GIT_SSL_NO_VERIFY and GIT_CURL_FTP_NO_EPSV alone.
>
> 4) Do something else, ideas?
>
> Comments?
The usual way we have done this kind of thing so far is:
(1) Add GIT_SSL_VERIFY and GIT_CURL_FTP_EPSV support, that is
boolean. If that is set, it takes precedence to
GIT_SSL_NO_VERIFY and GIT_CURL_FTP_NO_EPSV. If not,
GIT_SSL_NO_VERIFY and GIT_CURL_FTP_NO_EPSV are used just like
before (setting it to any value will decline VERIFY or EPSV).
(2) Issue a warning to tell users to use GIT_SSL_VERIFY or
GIT_CURL_FTP_EPSV instead, when GIT_SSL_NO_VERIFY and
GIT_CURL_FTP_NO_EPSV are used.
(3) Later at a large version bump, remove support for *_NO_*
variants.
We can stop at (1) and not do (2) and (3), if the resulting code
after (1) is not too cumbersome to maintain. If we do (2) then we
must follow it through with (3), and if we plan to do (3) then we
must precede it with (2).
next prev parent reply other threads:[~2013-07-15 15:54 UTC|newest]
Thread overview: 8+ messages / expand[flat|nested] mbox.gz Atom feed top
2013-07-12 18:52 [PATCH] http.c: fix parsing of http.sslCertPasswordProtected variable Junio C Hamano
2013-07-12 19:05 ` Jonathan Nieder
2013-07-12 19:52 ` Junio C Hamano
2013-07-14 0:37 ` Mark Lodato
2013-07-15 4:13 ` Junio C Hamano
2013-07-15 6:37 ` Kyle J. McKay
2013-07-15 15:54 ` Junio C Hamano [this message]
2013-07-13 19:28 ` Kyle J. McKay
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
List information: http://vger.kernel.org/majordomo-info.html
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=7v4nbvddiy.fsf@alter.siamese.dyndns.org \
--to=gitster@pobox.com \
--cc=git@vger.kernel.org \
--cc=jrnieder@gmail.com \
--cc=lodatom@gmail.com \
--cc=mackyle@gmail.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
Code repositories for project(s) associated with this public inbox
https://80x24.org/mirrors/git.git
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).