fsck: call fsck_finish() after fscking objects

peff · peff · commit 1995b5e03e1c · 2018-05-21T23:55:12.000-04:00
Now that the internal fsck code is capable of checking
.gitmodules files, we just need to teach its callers to use
the "finish" function to check any queued objects.

With this, we can now catch the malicious case in t7415 with
git-fsck.

Signed-off-by: Jeff King &lt;peff@peff.net&gt;
diff --git a/builtin/fsck.c b/builtin/fsck.c
@@ -748,6 +748,9 @@ int cmd_fsck(int argc, const char **argv, const char *prefix)
 			}
 			stop_progress(&progress);
 		}
+
+		if (fsck_finish(&fsck_obj_options))
+			errors_found |= ERROR_OBJECT;
 	}
 
 	for (i = 0; i < argc; i++) {
diff --git a/t/t7415-submodule-names.sh b/t/t7415-submodule-names.sh
@@ -73,4 +73,8 @@ test_expect_success 'clone evil superproject' '
 	! grep "RUNNING POST CHECKOUT" output
 '
 
+test_expect_success 'fsck detects evil superproject' '
+	test_must_fail git fsck
+'
+
 test_done

Original file line number	Diff line number	Diff line change
`@@ -748,6 +748,9 @@ int cmd_fsck(int argc, const char *argv, const char prefix)`
`748`	`748`	`}`
`749`	`749`	`stop_progress(&progress);`
`750`	`750`	`}`
	`751`	`+`
	`752`	`+ if (fsck_finish(&fsck_obj_options))`
	`753`	`+ errors_found \|= ERROR_OBJECT;`
`751`	`754`	`}`
`752`	`755`
`753`	`756`	`for (i = 0; i < argc; i++) {`
Original file line number	Diff line number	Diff line change
`@@ -73,4 +73,8 @@ test_expect_success 'clone evil superproject' '`
`73`	`73`	`! grep "RUNNING POST CHECKOUT" output`
`74`	`74`	`'`
`75`	`75`
	`76`	`+test_expect_success 'fsck detects evil superproject' '`
	`77`	`+ test_must_fail git fsck`
	`78`	`+'`
	`79`	`+`
`76`	`80`	`test_done`