delta/libgit2.git/include/git2, branch cmn/remote-delete-name github.com: libgit2/libgit2.git remote: accept a repository and remote name for deletion 2014-09-30T14:09:55+00:00 Carlos Martín Nieto cmn@dwim.me 2014-09-30T14:07:30+00:00 262eec23fe7377a9eecf9e724fa1aba945b3162a We don't need the remote loaded, and the function extracted both of these from the git_remote in order to do its work, so let's remote a step and not ask for the loaded remote at all. This fixes #2390. 
We don't need the remote loaded, and the function extracted both of
these from the git_remote in order to do its work, so let's remote a
step and not ask for the loaded remote at all.

This fixes #2390.
Merge pull request #2464 from libgit2/cmn/host-cert-info 2014-09-17T12:56:39+00:00 Vicent Marti vicent@github.com 2014-09-17T12:56:39+00:00 1312f87b6838649cca525935656c84c7bd07a9a1 Provide a callback for certificate validation 
Provide a callback for certificate validation
 ssh: expose both hashes 2014-09-16T15:02:33+00:00 Carlos Martín Nieto cmn@dwim.me 2014-09-16T01:22:09+00:00 1e0aa105faff1bd6987665506037f299b8e0e1cb The user may have the data hashed as MD5 or SHA-1, so we should provide both types for consumption. 
The user may have the data hashed as MD5 or SHA-1, so we should provide
both types for consumption.
ssh: provide our own types for host key lengths 2014-09-16T15:02:32+00:00 Carlos Martín Nieto cmn@dwim.me 2014-09-16T00:27:16+00:00 286369a81fc2e1d77a7a134d5c140f023af1298b Instead of using the libssh2 defines, provide our own, which eases usage as we do not need to check whether libgit2 was built with libssh2 or not. 
Instead of using the libssh2 defines, provide our own, which eases usage
as we do not need to check whether libgit2 was built with libssh2 or not.
net: use only structs to pass information about cert 2014-09-16T15:02:32+00:00 Carlos Martín Nieto cmn@dwim.me 2014-09-15T23:47:30+00:00 0782fc43f809b1c2a5001453ccb064a4afcfc2b9 Instead of spreading the data in function arguments, some of which aren't used for ssh and having a struct only for ssh, use a struct for both, using a common parent to pass to the callback. 
Instead of spreading the data in function arguments, some of which
aren't used for ssh and having a struct only for ssh, use a struct for
both, using a common parent to pass to the callback.
Merge remote-tracking branch 'upstream/master' into cmn/host-cert-info 2014-09-16T15:02:28+00:00 Carlos Martín Nieto cmn@dwim.me 2014-09-15T23:25:53+00:00 0fef38999abc74b8237971f96295f461631d9d1d 






net: remove support for outright ignoring certificates
2014-09-16T15:01:32+00:00

Carlos Martín Nieto
cmn@dwim.me

2014-09-11T08:04:05+00:00

41698f22f683d3452ef83de3b3e82f5cb178b0b3

This option make it easy to ignore anything about the server we're
connecting to, which is bad security practice. This was necessary as we
didn't use to expose detailed information about the certificate, but now
that we do, we should get rid of this.

If the user wants to ignore everything, they can still provide a
callback which ignores all the information passed.





This option make it easy to ignore anything about the server we're
connecting to, which is bad security practice. This was necessary as we
didn't use to expose detailed information about the certificate, but now
that we do, we should get rid of this.

If the user wants to ignore everything, they can still provide a
callback which ignores all the information passed.







transport: move the cert type enum to types.h
2014-09-16T15:01:32+00:00

Carlos Martín Nieto
cmn@dwim.me

2014-08-31T21:16:19+00:00

2aee4642ef9c0cffcebc443e81a706f3e458906f

This should make the mingw compiler happy.





This should make the mingw compiler happy.







transport: always call the certificate check callback
2014-09-16T15:01:30+00:00

Carlos Martín Nieto
cmn@dwim.me

2014-08-29T15:18:23+00:00

17491f6e5660b82cb8163eea58805df6398af16e

We should let the user decide whether to cancel the connection or not
regardless of whether our checks have decided that the certificate is
fine. We provide our own assessment to the callback to let the user fall
back to our checks if they so desire.





We should let the user decide whether to cancel the connection or not
regardless of whether our checks have decided that the certificate is
fine. We provide our own assessment to the callback to let the user fall
back to our checks if they so desire.







http: send the DER-encoded cert to the callback
2014-09-16T15:01:30+00:00

Carlos Martín Nieto
cmn@dwim.me

2014-08-10T15:06:53+00:00

ec1ce4584a6a8ec2b5b227301a918548907a2b02

Instead of the parsed data, we can ask OpenSSL to give us the
DER-encoded version of the certificate, which the user can then parse
and validate.





Instead of the parsed data, we can ask OpenSSL to give us the
DER-encoded version of the certificate, which the user can then parse
and validate.