commit 4dc8dedb97891f37b9da2220e5740c65685b0906
Author: Jan Pazdziora <jpazdziora@redhat.com>
Date: Mon Oct 31 17:26:00 2022 +0100
Workaround change of behaviour in git 2.38.1 for CVE-2022-39253.
By default, protocol.file.allow now defaults to user, preventing
clones with symlinks.
https://github.blog/2022-10-18-git-security-vulnerabilities-announced/#cve-2022-39253
diff --git a/t/21-submodule.t b/t/21-submodule.t
index 444029c..97374f8 100644
--- a/t/21-submodule.t
+++ b/t/21-submodule.t
@@ -44,6 +44,7 @@ $s->run( checkout => 'master', { quiet => 1 } );
# now test adding a submodule
my $r = test_repository(@init);
$r->run(
+ ( Git::Repository->version_ge('2.38.1') ? ('-c', 'protocol.file.allow=always') : ()),
submodule => add => $s->work_tree => 'sub',
{ env => { GIT_WORK_TREE => undef } }
);