From: Junio C Hamano <gitster@pobox.com>
To: M Hickford <mirth.hickford@gmail.com>
Cc: git@vger.kernel.org
Subject: Re: Credential improvements need review
Date: Tue, 25 Jul 2023 11:35:56 -0700 [thread overview]
Message-ID: <xmqqzg3jltyr.fsf@gitster.g> (raw)
In-Reply-To: <20230724194854.3076-1-mirth.hickford@gmail.com> (M. Hickford's message of "Mon, 24 Jul 2023 20:48:54 +0100")
M Hickford <mirth.hickford@gmail.com> writes:
>> * mh/credential-erase-improvements-more (2023-06-24) 2 commits
>> - credential/wincred: erase matching creds only
>> - credential/libsecret: erase matching creds only
>>
>> Needs review.
>> source: <pull.1529.git.git.1687596777147.gitgitgadget@gmail.com>
>
> Hi. Is anyone able to help review these changes?
>
> https://lore.kernel.org/git/pull.1529.git.git.1687596777147.gitgitgadget@gmail.com/
> https://lore.kernel.org/git/pull.1527.git.git.1687591293705.gitgitgadget@gmail.com/
Thanks for pinging. One thing that may help (both patches, my
understanding is that they are of the same spirit, just one is for
libsecret while the other one is for wincred) is to describe the
problem the patches attempt to address a bit more. For example,
in one of them:
Fix test "helper ... does not erase a password distinct from input"
introduced in aeb21ce22e (credential: avoid erasing distinct password,
2023-06-13)
we can read from the above proposed log message that it is a "fix"
to some bug, and that the "bug" was introduced by the named commit,
but there are a few things that it does not explain, that could have
helped readers to convince themselves that the changes in the patches
are addressing the right problems and solving them in the right
way. For example,
* how does the "bug" manifest itself in an observable way to the
end-users? "When they do X, they expect Y to happen, but instead
Z happens, and doing Z breaks expectation of users expecting Y in
this (W) way."
* what was wrong in the code that led to the "bug"? Was it testing
a wrong condition before making a call to some system service?
Was the condition it checked correct but it made a call in a
wrong way (and if so how)?
Thanks.
next prev parent reply other threads:[~2023-07-25 18:36 UTC|newest]
Thread overview: 5+ messages / expand[flat|nested] mbox.gz Atom feed top
2023-07-19 21:25 What's cooking in git.git (Jul 2023, #04; Wed, 19) Junio C Hamano
2023-07-24 19:48 ` Credential improvements need review M Hickford
2023-07-25 18:35 ` Junio C Hamano [this message]
2023-07-25 21:09 ` Glen Choo
2023-07-26 15:57 ` M Hickford
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
List information: http://vger.kernel.org/majordomo-info.html
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=xmqqzg3jltyr.fsf@gitster.g \
--to=gitster@pobox.com \
--cc=git@vger.kernel.org \
--cc=mirth.hickford@gmail.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
Code repositories for project(s) associated with this public inbox
https://80x24.org/mirrors/git.git
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).