Fix merge of encrypted files with conflicts (#69) #76
Conversation
| - the [shfmt](https://github.com/mvdan/sh) tool to apply consistent formatting | ||
| to the _transcrypt_ file, e.g: `shfmt -w transcrypt` | ||
| - the [Prettier](https://prettier.io) tool to apply consistent formatting to the | ||
| _README.md_ file, e.g: `prettier --write README.md` |
There was a problem hiding this comment.
Thank you for picking up on those and adding the details to the README!
README.md
Outdated
|
|
||
| Improvements: | ||
|
|
||
| - Add functional tests. |
There was a problem hiding this comment.
I've previously just put changes information into the release notes, but perhaps we should create a legit CHANGELOG.md file instead of tacking them on here?
There was a problem hiding this comment.
I agree. Could that be a separate issue and PR as a follow up to these?
There was a problem hiding this comment.
👍 Yep, that's totally fine to pull these out in a separate PR.
| fi | ||
| if [[ ! "$REMOTE_NAME" ]]; then | ||
| REMOTE_NAME="remote" | ||
| fi |
There was a problem hiding this comment.
I haven't pulled your changes yet to test things out locally, but would this be:
$ git rev-parse --abbrev-ref @{upstream}
upstream/master
??? There's also @{push}, but I think that's not what you're after here.
There was a problem hiding this comment.
I tried that but it doesn't work for the tests which have no upstream, and isn't quite what is needed.
Ideally we would use something like this: REMOTE_NAME=$(git rev-parse --abbrev-ref MERGE_HEAD) where MERGE_HEAD names the branch being merged in. But that ref doesn't seem to exist when the merge driver script runs, and after another hunt I haven't been able to find any equivalent.
So far the awful $GIT_REFLOG_ACTION lookup hack is the only way I have found to be able to find the name of the branch being merged in. It isn't even that important compared to fixing conflict merges overall, it's just nicer to have the correct names in the file conflict markers.
transcrypt
Outdated
| # We must redirect stdout to $5 here instead of letting merge-file write to | ||
| # $2 as it would by default, because we need $5 to contain the final result | ||
| # content so a later crypt `clean` generates the correct hash salt value | ||
| git merge-file --stdout --marker-size=$4 -L $TARGET_NAME -L base -L $REMOTE_NAME $2 $1 $3 > $5 |
There was a problem hiding this comment.
Brilliant stuff...I've got some reading to do 😄 I really appreciate the detailed notes.
Two passing tests for merging encrypted files without conflicts, and a single failing test for merging an encrypted where there are conflicts. This test is in anticipation of an incoming fix for merging encrypted files with conflicts.
Fix transcrypt's handling of merges where encrypted files have conflicting changes, a situation which would lead to Git producing "merged" files with conflict markers around partially- or fully- encrypted content that cannot be sensibly merged by a person. The root problem is that git does not run the smudge/textconv filter on all BASE, LOCAL, REMOTE conflicting version files before attempting a three-way merge. This change adds: - a merge driver script to pre-decrypt conflicting BASE, LOCAL, and REMOTE file versions then run git's internal `merge-file` command to merge the decrypted versions - git repo settings to configure the merge driver - recommendation to add the extra "merge=crypt" setting to .gitattribute definitions.
jmurty
force-pushed
the
69-fix-merge-of-encrypted-files-with-conflicts
branch
from
9a31591 to
44f1c0e
Compare
|
To further confirm the merge fix applied in this PR by adding a merge driver, the example problem test case outlined in #23 (comment) works well and produces human-readable plain text conflicts markers when updated to use the fixed After a merge with conflicts of an encrypted file...
Here is a version of @mdjnewman's test script updated to be runnable in the All of this is to further confirm results of the "with conflicts" test case already in tests/test_merge.bats |
|
Hi @elasticdog I have updated the commits in this PR to rebase them on the latest |
There was a problem hiding this comment.
This looks perfect to me! I really appreciate how thorough you've been with checking the other example test case from #23. Is there any reason to hold off on merging?
|
Thanks for confirming @elasticdog, if you're happy I'm happy: PR is now merged. |
|
Is this PR actually solving the issue in #23. I have the same problem and this would be a long awaited solution. If yes what do you thing when this gets released? For all out there asking themselves how the heck to install the version from master unless this is released: Just follow the install instructions using git clone: |
|
I'd be glad to cut a release in the near future if @jmurty doesn't have a backlog of other work that he'd like to have included? |
|
@Blackjacx I believe the merge driver does fix the merge issue, and it has done in my real world usage. Whether it fixes ALL merge issues in all cases is hard to be sure. If you have a merge problem you could try it to see. In the problem repo, uninstall then reinstall using the git cloned @elasticdog I think we can cut a new release soon. Pending work is to merge the Windows/path fix (probably as-is) and I think update the manual? |
|
Oh, and set |
|
@jmurty really brilliant stuff you implemented here 👍 I will test it with the problem repo, but where can I find it? |
|
Thanks @Blackjacx, hopefully the merge driver will completely fix the merge problems. It's the result of a lot of trial and error and testing on some real-world merge problems, but I found and fixed a problem with it just a few days ago. I thought you already had a repo showing the merge problem to test with. If not, it isn't worthwhile for you to test the example from #23 because I have already done so. If you want to simulate at least simple test cases, you can see the test scripts for clean and conflicting merges in https://github.com/elasticdog/transcrypt/blob/master/tests/test_merge.bats To install the latest merge driver feature, you need to:
And that should be it. If you are able to experiment with merges that would have caused problems before I would appreciate the extra manual testing. |
|
Maybe I found another small bug in the implementation. But I don't understand the merge driver story so much apparently. In my case I try to rebase cat: "<FILE_WITH_CONFLICT>": No such file or directory
Auto-merging <FILE_WITH_CONFLICT>
error: add_cacheinfo failed to refresh for path '<FILE_WITH_CONFLICT>'; merge aborting.
hint: Could not execute the todo command
hint:
hint: pick d0c3787e3e9bf9f956b263b1c7b4a6966ec7dc78 Test rebase with transcrypt
hint:
hint: It has been rescheduled; To edit the command before continuing, please
hint: edit the todo list first:
hint:
hint: git rebase --edit-todo
hint: git rebase --continue
Could not apply d0c3787e3... Test rebase with transcryptMaybe didn't catch the failed merge? EDIT Okay I found that the above problem occurs if the file in question has been modified on EDIT 2 For me it workes when the last line in the driver script becomes (double quotes stripped from Wow this stuff is really interesting :D |
Fix incorrect quoting of the `$5` file path argument. This caused the
filename passed to transcrypt's `clean` to differ from the real
filename, producing an incorrect hash value and encrypted blob. Git
caught and flagged the error with:
error: add_cacheinfo failed to refresh for path
'<FILE_WITH_CONFLICT>'; merge aborting.
The clean merge situation that involves the merge driver script is
now properly exercised by an additional unit test.
Thanks @Blackjacx for catching this:
#76 (comment)
|
Great catch thanks @Blackjacx! To be honest, the merge driver stuff is completely bamboozling and I don't fully grasp it myself. From your description I was able to reproduce the problem in a test, and apply a fix that keeps the quoting (which I still want to keep due to #78) but does it properly. See #87 Could you please fetch the fixed version from |
|
Here's the change to fix quoting, in case anyone spots other problems with it? - echo "$(cat \"$5\" | ./.git/crypt/clean \"$5\")" > "$2"
+ cat "$5" | ./.git/crypt/clean "$5" > "$2" |
|
Yeah your're welcome and I can confirm it works now 👍 This change literally saves my a**. Since I really really need the ability to merge encrypted files. I tried with compile time code generation from encrypted files but no tool was able to deal with the data salad during a megre/rebase conflict. Nice work and thx for the collaboration 👍 |
|
@Blackjacx Great! Thanks for confirming, and I'm glad it helps. The merge driver will be included in an official release at some time but until then you can use the |
Fix
transcrypt's handling of merges where encrypted files have conflicting changes, a situation which would lead to Git producing "merged" files with conflict markers around partially- or fully-encrypted content that cannot be sensibly merged by a person. See issue #69 and a bunch of related issues.The root problem is that git does not run the
smudge/textconvfilter on all BASE, LOCAL, REMOTE conflicting version files before attempting a three-way merge.This change adds:
merge-filecommand to merge the decrypted versionsmerge=cryptsetting to .gitattribute definitionsAlso included are minor listing and formatting fixes from applying the recommended tools to do this clean-up, and documentation for how to run these tools in README.md
The bulk of this work is originally from https://github.com/ixc/transcrypt/commits/fix-merge-with-conflicts