libgit2-experimental-1.9.0-160000.2.2

- Pass -DEXPERIMENTAL_SHA256=ON to cmake to enable sha256
  integration (already being used by opensuse gitea) in a separate
  multibuild flavour. This provides downstream libs (like pygit2)
  to build against the experimental flavour, should they want to.

- update to 1.9.0
  * update TLS cipher selection to match the "compatibility" cipher
    suite settings as documented by Mozilla.
  * blame API now contains committer information and commit
    summaries for blame hunks, and the ability to get information
    about the line of text that was modified
  * add blame, init commands to CLI
  * ABI-breaking changes in blame hunk, checkout, configuration,
    update_refs
  * new API: git_signature_default_from_env
  * packbuilder can now be interrupted from a callback
  * honor the preciousObject repository extension
  * Push status will be reported even when a push fails
  * support generating think packs from a mempack instanct
  * New LIBGIT2_VERSION_CHECK macro for version checking
  * Custom X509 certificates can be added to OpenSSL's certificate
    store using the GIT_OPT_ADD_SSL_X509_CERT option
  * Bug fixes and documentation updates

- update to 1.8.4:
  * Actually includes the pre-1.8.0 commit constness behavior fix

- update to 1.8.3:
  * revert a const-correctness change introduced in v1.8.0 for
    the git_commit_create functions. Retain the const-behavior for
    the commits arguments from prior to v1.8.0.
  * Fix a bug introduced in v1.8.1 for users of the legacy
    Node.js http-parser dependency.

- update to 1.8.1:
  * In v1.8, libgit2 introduced the `report_unchanged ` member in
    the `git_fetch_options` structure. We mistakenly introduced
    this as a bitfield, which is not suitable for our public API.
    To correct this mistake, we have _removed_ the
    `report_unchanged ` member. To support the report unchanged
    tips option, users can set the `update_fetchhead`
    member to include the `GIT_REMOTE_UPDATE_REPORT_UNCHANGED`
    value.
  * The libgit2 projects regrets the API change, but this was
    required to support cross-platform compatibility.
  * commit: Fix git_commit_create_from_stage without author and
  * committer
  * process.c: fix environ
  * Bounds check for pack index read
  * transport: provide a useful error message during cancellation
  * transport: support sha256 oids
  * Revparse: Correctly accept ref with '@' at the end
  * remote: drop bitfields in git_remote_fetch_options
  * examples: fix memory leak in for-each-ref.c
  * xdiff: use proper free function
  * rand: avoid uninitialized loadavg warnings
  * cli: include alloca on illumos / solaris / sunos
  * Update git_array allocator to obey strict aliasing rules
  * tree: avoid mixed signedness comparison by @ethomson in

- update to 1.8.0:
  * Simplified commit creation (git_commit_create_from_stage)
  * Worktree improvements for better compatibility with core git
  * ABI breaking channge: Add WORKTREE configuration level.
    GIT_CONFIG_LEVEL_WORKTREE level t priority 6,
    GIT_CONFIG_LEVEL_APP now begins at priority 7.
  * ABI breaking change: git_config_entry structure change
  * ABI breaking change: git_push_options includes remote push
    options
- the optional, experimental support for invoking OpenSSH remains
  disabled in this package

- update to 1.7.2:
  * CVE-2024-24575: infinite loop condition given specially crafted
    inputs (boo#1219664)
  * CVE-2024-24577: arbitrary code execution due to heap corruption
    in git_index_add (boo#1219660)
  * Fix a bug in the smart transport negotiation could have caused
    an out-of-bounds read when a remote server did not advertise
    capabilities.

- update to 1.7.1:
  * proxy: Return an error for invalid proxy URLs instead of crashing
  * ssh: fix known_hosts leak in _git_ssh_setup_conn
  * repository: make cleanup safe for re-use with grafts
  * fix: Add missing include for oidarray
  * Revert "CMake: Search for ssh2 instead of libssh2."

- update to 1.7.0:
  * supports shallow clone and shallow repositories
  * Simplify custom pluggable allocator (breaking change)
  * repo: honor environment variables for more scenarios
  * Introduce timeouts on sockets
  * some performance improvements and bug fixes

- Update to 1.6.4:
  * config: return GIT_ENOTFOUND for missing programdata
- move experimental cli into libgit2-tools as intended