projects / git-annex.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 117b520) | patch
Don't allow the type of encryption of an existing special remote to be changed.
authorJoey Hess <joeyh@joeyh.name>
Thu, 21 Aug 2025 17:41:00 +0000 (13:41 -0400)
committerJoey Hess <joeyh@joeyh.name>
Thu, 21 Aug 2025 17:41:00 +0000 (13:41 -0400)
commit6b63fb7ea29f39b0fe7632dae6951c589115ee37
tree83b3ec19971bb6b87606362535af313453faffd1tree | snapshot
parent117b520825669f0bfc8db7d3ddf80ae6768b8185commit | diff
Don't allow the type of encryption of an existing special remote to be changed.

eg, git-annex enableremote foo encryption=none will not remove encryption,
and other encryption= settings don't change the type of encryption used.
Either of which would render data stored in a special remote inaccessible.

Probably fixes reversion introduced in
71f78fe45dc91dbef0bedd79b33d6a9fed85704d.
That commit got rid of the hasEncryptionConfig check, which I think would
have detected this before. I've not gone back to verify that.

Sponsored-by: mycroft
18 files changed:
CHANGELOG diff | blob | history
Remote/Adb.hs diff | blob | history
Remote/Bup.hs diff | blob | history
Remote/Ddar.hs diff | blob | history
Remote/Directory.hs diff | blob | history
Remote/External.hs diff | blob | history
Remote/GCrypt.hs diff | blob | history
Remote/GitLFS.hs diff | blob | history
Remote/Glacier.hs diff | blob | history
Remote/Helper/Encryptable.hs diff | blob | history
Remote/Hook.hs diff | blob | history
Remote/HttpAlso.hs diff | blob | history
Remote/Mask.hs diff | blob | history
Remote/Rsync.hs diff | blob | history
Remote/S3.hs diff | blob | history
Remote/WebDAV.hs diff | blob | history
Types/Crypto.hs diff | blob | history
doc/bugs/prevent_enableremote_changing_encryption.mdwn diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.