From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on dcvr.yhbt.net X-Spam-Level: X-Spam-Status: No, score=-3.8 required=3.0 tests=AWL,BAYES_00, HEADER_FROM_DIFFERENT_DOMAINS,MAILING_LIST_MULTI,SPF_HELO_PASS, SPF_PASS shortcircuit=no autolearn=ham autolearn_force=no version=3.4.2 Received: from vger.kernel.org (vger.kernel.org [23.128.96.18]) by dcvr.yhbt.net (Postfix) with ESMTP id 23D8A1F9FD for ; Tue, 16 Feb 2021 12:57:43 +0000 (UTC) Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S229889AbhBPMze (ORCPT ); Tue, 16 Feb 2021 07:55:34 -0500 Received: from cloud.peff.net ([104.130.231.41]:33990 "EHLO cloud.peff.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S229742AbhBPMzd (ORCPT ); Tue, 16 Feb 2021 07:55:33 -0500 Received: (qmail 12982 invoked by uid 109); 16 Feb 2021 12:54:51 -0000 Received: from Unknown (HELO peff.net) (10.0.1.2) by cloud.peff.net (qpsmtpd/0.94) with ESMTP; Tue, 16 Feb 2021 12:54:51 +0000 Authentication-Results: cloud.peff.net; auth=none Received: (qmail 23636 invoked by uid 111); 16 Feb 2021 12:54:50 -0000 Received: from coredump.intra.peff.net (HELO sigill.intra.peff.net) (10.0.0.2) by peff.net (qpsmtpd/0.94) with (TLS_AES_256_GCM_SHA384 encrypted) ESMTPS; Tue, 16 Feb 2021 07:54:50 -0500 Authentication-Results: peff.net; auth=none Date: Tue, 16 Feb 2021 07:54:50 -0500 From: Jeff King To: Junio C Hamano Cc: =?utf-8?B?w4Z2YXIgQXJuZmrDtnLDsA==?= Bjarmason , Blake Burkhart , git Subject: Re: [PATCH 1/2] fsck: make symlinked .gitignore and .gitattributes a warning Message-ID: References: <87y2foaltl.fsf@evledraar.gmail.com> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Disposition: inline In-Reply-To: Precedence: bulk List-ID: X-Mailing-List: git@vger.kernel.org On Mon, Feb 15, 2021 at 05:56:50PM -0800, Junio C Hamano wrote: > Jeff King writes: > > > That said, they'd probably want to checkout those old commits, too. So > > we probably do need a config override, even if it's a broad one ("trust > > me, this repo is OK, just allow symlinks for these special files"). > > Is this about the check that is overly strict for some existing > projects that kept the jk/symlinked-dotgitx-files topic in the > 'seen' so far? Yes. > On the fsck end, we know we can demote the error level per > repository, but I wonder if we should make checkout/clone honor the > same setting? What would the default be? If it's permissive, then it feels like we are not really solving much, as anybody who wanted to be careful can already inspect the tree contents. This is about avoiding surprises in the default config. If it's to forbid by default, then yes, I think the "trust me this repo is OK" I gave above would be a viable path forward. > I think GITMODULES_SYMLINK has been there for quite some time at > "error" level and we do want to discourage it to be a symbolic link, > so I am not quite sure what the demoting of these two achieves. Why > aren't we having a similar issue on .gitmodules that is a symbolic > link? I think it's just less common to have symlinked .gitmodules. To be clear, I think symlinked .gitignore is also pretty uncommon. Back when we discussed this originally in 2018 I scanned most of GitHub and came up with only a handful of repositories that did so. -Peff