On advice from OpenSSL Security Advisory [05 Jun 2014], we should
upgrade OpenSSL to version 0.9.8za ASAP. CVE-2014-0195 is
especially nasty, as it allows arbitrary code execution.
http://www.openssl.org/news/secadv_20140605.txt
Include a patch to make sure this compiles.
Signed-off-by: Erik Faye-Lund <kusmabite@gmail.com>
Makes it possible to commit inside of /src/<package>/release.sh when
core.whitespace is set and an auto-enabled pre-commit hook
(i.e. init.templatedir is set) is used that checks for whitespace problems.
Signed-off-by: Stefan Naewe <stefan.naewe@gmail.com>
Erik noted that the new compilation options cause libcurl to be linked to
zlib1.dll which we do not include. Removing the ZLIB_PATH parameter
keeps it statically linked.
The winssl code can fail to operate behind a proxy. It tries to check for
certificate revocation, fails and then aborts the ssl negotiations.
Therefore reverting back to openssl for ssl support.
Signed-off-by: Pat Thoyts <patthoyts@users.sourceforge.net>
On Windows XP ccache crashed when used in compiling git. Applying the patch
from ccache-win32 issue #8 resolved this problem and a number of other
patches from this tracker have been included.
Signed-off-by: Pat Thoyts <patthoyts@users.sourceforge.net>
When built for Windows gpg expects to find it's helper scripts in the same
directory but the installer places these in the libexec folder so we need
to move these so that 'gpg --refresh-keys' can work.
Signed-off-by: Pat Thoyts <patthoyts@users.sourceforge.net>
To get this to build we switch from using configure to a premade
makefile. This affects the resulting dll name and will require
relinking any other binaries using the curl dll.
This patch also makes curl use the Windows built-in SSL support
rather than using OpenSSL.
Acked-by: Johannes Schindelin <johannes.schindelin@gmx.de>
Signed-off-by: Pat Thoyts <patthoyts@users.sourceforge.net>
This allows us to accept CAcert issued certificates as valid for SSL
connections. CAcert is a chain-of-trust certificate authority using a
model like PGP for authenticating trust and is used by some open source
sites as the CA issues free certificates provided there is sufficient
confirmation of identity using the web of trust.
The CAcert license requires mentioning in the documentation and it is
polite to list other packages that Git for Windows depends upon.
This closes github issue #37.
Signed-off-by: Pat Thoyts <patthoyts@users.sourceforge.net>
The new compiled git wrapper failed to propagate the error code from the
wrapped process which causes problems when scripting git commands.
Also print error messages if something fails when launching the target
process.
This resolves github issue #43.
Signed-off-by: Pat Thoyts <patthoyts@users.sourceforge.net>
Starting git-gui from the command line would result in an error because the
internal script variable was not initialized.
Signed-off-by: Theo Niessink <niessink@martinic.com>
Signed-off-by: Erik Faye-Lund <kusmabite@gmail.com>
Signed-off-by: Pat Thoyts <patthoyts@users.sourceforge.net>
This addresses github issue #36 which points out problems in handling
git commit notations of the form tag^{commit} and HEAD^. The windows
command shell uses caret as a quote both on the command line and in
batch scripts and this results in requiring double quoting. To be
able to handle both "tag^{commit}" and tag^^{commit} (either style
of command prompt quoting) the script needs replacing. This also makes
it simpler to call git from batch scripts as it will no longer need to be
prefixed with 'call'.
Signed-off-by: Pat Thoyts <patthoyts@users.sourceforge.net>
The patch is can be replaced by providing a command line option.
Improved the handling of errors in the script.
Signed-off-by: Pat Thoyts <patthoyts@users.sourceforge.net>
Previous cURL versions did not try to build .dll files; unfortunately,
support for .dll files is not quite cooked yet: when enabling the shared
library build, libcurl.a contains symbols marked as dllexport, which makes
the link stage fail (as reported by Pat Thoyts).
Signed-off-by: Johannes Schindelin <johannes.schindelin@gmx.de>
Only the current version, 1.2.7, is available,
curl http://zlib.net/zlib-1.2.6.tar.gz
returns a 404 Not Found.
[jes: clarified commit message, as pointed out by Sebastian Schuberth.]
Signed-off-by: Johannes Schindelin <johannes.schindelin@gmx.de>
On Windows 64bit the explorer is a 64bit process. Thus a 32bit dll can
not be loaded. To support the context menu plugin on 64bit windows we
compile a seperate 64bit dll of cheetah and register it in case the
installer is run on 64bit.
The fact that there are two architectures is now not visible in the
installer anymore since it automatically chooses the right dll.
Signed-off-by: Heiko Voigt <hvoigt@hvoigt.net>
Use the canonical zlib URL. Adjust our custom patch for version 1.2.6. Do
not hard-code the version number in gitignore.
Use "-o" with curl instead of redirecting stdout to avoid the output file
being created in case of errors.
Signed-off-by: Sebastian Schuberth <sschuberth@gmail.com>
Instead of hard-coding the file name, get the most recent mingw-w64
release from the RSS feed of file releases. Also, make curl follow
redirects to SourceForge mirrors.
Signed-off-by: Sebastian Schuberth <sschuberth@gmail.com>
If mingw32-libiconv is installed via minigw-get, iconv() as declared in
iconv.h uses the new-style non-const inbuf as second argument. This is
achieved by exporting some automake variables in libiconv-*.mgwport. Do it
the same way here, too, so that we can have OLD_ICONV turned off when
compiling Git either in msysGit or mingwGitDevEnv.
Signed-off-by: Sebastian Schuberth <sschuberth@gmail.com>
Thomas Braun
Erik Faye-Lund
Johannes Schindelin
Stefan Naewe
Rick Burgstaler
Pat Thoyts
Theo Niessink
Adam Roben
Olivier Refalo
Heiko Voigt
Sebastian Schuberth