github Byron/gitoxide gix-url-v0.25.0
gix-url v0.25.0
on GitHub

latest releases: gix-path-v0.10.11, gix-trace-v0.1.10, gix-fsck-v0.6.0...
11 months ago

This release contains a complete rewrite of the internal url parsing logic, the public interface stays mostly the same however. Gitoxide will now be
more correct, interpreting more urls the same way Git does. Improvements include the added support for ssh aliases (github:byron/gitoxide has previously
been parsed as local path), adjustments around the interpretation of colons in file names (previously we disallowed colons that were not followed up
with a slash character) and some smaller changes that bring the interpretation of file urls more in line with Git's implementation. Additionally, the
error types have been adjusted to print a more comprehensive message by default, making sure they stay helpful even when bubbled up through multiple abstraction
layers.

There are still many (edge) cases in Git's url parsing implementation which are not handled correctly by Gitoxide. If you notice any such deviation please
open a new issue to help us making Gitoxide even more correct.

Bug Fixes

  • another fuzz-issue that could cause long parse times of URLs
  • denial of service attack by passing a URL with a very long host.
    We now check for certain size limits and prevent passing long URLs to
    the url crate.

New Features

  • enable fuzzing for git url parsing

Commit Statistics

  • 18 commits contributed to the release over the course of 17 calendar days.
  • 17 days passed between releases.
  • 3 commits were understood as conventional.
  • 0 issues like '(#ID)' were seen in commit messages

Commit Details

view details
  • Uncategorized
    • Prepare changelogs prior to release (1347a54)
    • Another fuzz-issue that could cause long parse times of URLs (ea0ea88)
    • Add yet another bypass attack that runs into the url DoS issue (6aa63b1)
    • Merge branch 'improvements' (3939a45)
    • Assure we don't accidentally parse a valid-looking URL to url and cause long compute times. (7497553)
    • Merge branch 'gix-url-fixture-improvements' (3d60c02)
    • Fix panics not shown in gix-url baseline generation (2488ad9)
    • Improve output of the gix-url baseline test (a530037)
    • Denial of service attack by passing a URL with a very long host. (60126d7)
    • Merge branch 'gix-url-parse-rewrite' (a12e4a8)
    • Enable fuzzing for git url parsing (4184a5e)
    • Assure we don't loose test coverage; possibly adjust expecations (30bb7dc)
    • Refactor (e318a4c)
    • Refactor baseline tests (4b4ac8a)
    • Add platform specific baseline tests and run always run them. (e9aa690)
    • Update changelogs (4349353)
    • Align test with real behavior (a31af62)
    • Fix absolute windows file urls with extra slash (3bf12a3)
Check out latest releases or
releases around Byron/gitoxide gix-url-v0.25.0

Don't miss a new gitoxide release

NewReleases is sending notifications on new releases.

Get notifications