On Wed, Jan 29, 2020 at 08:50:13PM +0100, Han-Wen Nienhuys wrote: > > That might be a good enough safety. I guess the next question would be, would > > it be OK for reftable to ignore and entries under the refs/ dir if they happen > > to appear there somehow? > > I propose to ignore refs/ if it is read-only, and fail if it is r/w. > We're not going to look over the files under refs/ . If people > actively try to shoot themselves in the foot, why would we stop them? I'm worried that playing games with permissions is going to lead to confusing outcomes. There are reasons one might want a r/o refs/ directory with the current system (e.g., you could have a repository on a read-only mount). Or you might have a system which doesn't implement the full POSIX permissions, and everything appears to be r/w by the user. -Peff
