Jeff King <peff@xxxxxxxx> writes: > Agreed. Having hidden cruft makes birthday collision attacks easier (or > it will, if sha1 ever gets broken to that point). Unfortunately, there > is a _ton_ of code which assumes that commit messages are > NUL-terminated, as they always have been since e871b64 (2005-05-25). I think that commit is irrelevant, as long as read_sha1_file() returns the contents as <ptr,len> pair, which has been the case forever. It's just the matter of propagating the length back up the callchain. A naïve implementation to add "len" member to struct commit would increase the size of the in-core commit object by sizeof(unsigned long), which we may want to avoid. Traversals that care nothing but the topology of the history would have to waste that memory and these things tend to add up (8-byte ulong * 250k commits = 2MB). Perhaps change the type of "buf" member in struct commit to a pointer to a <ptr,len> pair, or something? Or perhaps a few megabytes wasted between friends we do not care much about? -- To unsubscribe from this list: send the line "unsubscribe git" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html