git.ipfire.org Git - thirdparty/git.git/commit

author	Jeff King <peff@peff.net>
	Mon, 14 May 2018 16:22:48 +0000 (12:22 -0400)
committer	Jeff King <peff@peff.net>
	Tue, 22 May 2018 03:55:12 +0000 (23:55 -0400)
commit	2738744426c161a98c2ec494d41241a4c5eef9ef
tree	06aee7bffd5588f7f8662a7f05de87b833cc00c7	tree \| snapshot
parent	159e7b080bfa5d34559467cacaa79df89a01afc0	commit \| diff

fsck: handle promisor objects in .gitmodules check

If we have a tree that points to a .gitmodules blob but
don't have that blob, we can't check its contents. This
produces an fsck error when we encounter it.

But in the case of a promisor object, this absence is
expected, and we must not complain. Note that this can
technically circumvent our transfer.fsckObjects check.
Imagine a client fetches a tree, but not the matching
.gitmodules blob. An fsck of the incoming objects will show
that we don't have enough information. Later, we do fetch
the actual blob. But we have no idea that it's a .gitmodules
file.

The only ways to get around this would be to re-scan all of
the existing trees whenever new ones enter (which is
expensive), or to somehow persist the gitmodules_found set
between fsck runs (which is complicated).

In practice, it's probably OK to ignore the problem. Any
repository which has all of the objects (including the one
serving the promisor packs) can perform the checks. Since
promisor packs are inherently about a hierarchical topology
in which clients rely on upstream repositories, those
upstream repositories can protect all of their downstream
clients from broken objects.

Signed-off-by: Jeff King <peff@peff.net>