Mercurial Mercurial > mercurial / changeset
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
narrow: validate patterns on incoming bundle2 part
authorGregory Szorc <gregory.szorc@gmail.com>
Tue, 11 Sep 2018 10:59:21 -0700
changeset 39540 ce20caecacbd
parent 39539 8d8e61df8259
child 39541 8301741e1f89
narrow: validate patterns on incoming bundle2 part The remote data is untrusted and needs to be validated for pattern conformance. Differential Revision: https://phab.mercurial-scm.org/D4525
hgext/narrow/narrowbundle2.py file | annotate | diff | comparison | revisions 
--- a/hgext/narrow/narrowbundle2.py	Tue Sep 11 15:28:41 2018 -0700
+++ b/hgext/narrow/narrowbundle2.py	Tue Sep 11 10:59:21 2018 -0700
@@ -195,6 +195,9 @@
 def _handlechangespec_2(op, inpart):
     includepats = set(inpart.params.get(_SPECPART_INCLUDE, '').splitlines())
     excludepats = set(inpart.params.get(_SPECPART_EXCLUDE, '').splitlines())
+    narrowspec.validatepatterns(includepats)
+    narrowspec.validatepatterns(excludepats)
+
     if not repository.NARROW_REQUIREMENT in op.repo.requirements:
         op.repo.requirements.add(repository.NARROW_REQUIREMENT)
         op.repo._writerequirements()
mercurial