[tor-dev] Git users, enable fsck by default!
Ximin Luo
infinity0 at torproject.org
Tue Feb 2 18:12:49 UTC 2016
On 02/02/16 18:56, Peter Palfrader wrote:
> On Tue, 02 Feb 2016, Nick Mathewson wrote:
>
>> The tl;dr here is:
>> * By default Git doesn't verify the sha1 checksums it receives by default.
>> * It doesn't look like we've got any inconsistencies in our
>> repositories I use, though. That's good!
>> * To turn on verification, I think you run:
>>
>> git config --add transfer.fsckobjects true
>> git config --add fetch.fsckobjects true
>> git config --add receive.fsckobjects true
>
> I suspect that setting things globally (in your ~/.gitconfig)
> git config --global --add transfer.fsckobjects true
> git config --global --add fetch.fsckobjects true
> git config --global --add receive.fsckobjects true
> might also work. (However, I haven't verified it.)
>
Tested with
$ for i in transfer fetch receive; do git config --global --replace-all "$i.fsckObjects" true; done
(--replace-all makes it idempotent).
I wrote "fsckObjects" because it's quicker to verify - the man page for git-config says fsckObjects rather than fsckobjects and then you need to do some extra digging to assure yourself it's case-insensitive.
X
--
GPG: ed25519/56034877E1F87C35
GPG: rsa4096/1318EFAC5FBBDBCE
git://github.com/infinity0/pubkeys.git
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: OpenPGP digital signature
URL: <http://lists.torproject.org/pipermail/tor-dev/attachments/20160202/8b8b24da/attachment.sig>
More information about the tor-dev
mailing list