Many hyperlinks are disabled.
Use anonymous login
to enable hyperlinks.
History of file src/codecheck1.c at check-in 31be2e17a4833ce8
|
2025-12-23
| ||
| 16:06 | Assorted fixes of typos and grammar in code comments. No functional changes. file: [6c1e1aeae4] check-in: [e2bdc10572] user: danield branch: trunk, size: 20016 | |
|
2025-03-07
| ||
| 16:30 | The codecheck1 utility makes a distinction between routines that need to generate HTML-free content and routines that generate content that is safe for any generic HTTP reply. file: [eacab5ac3a] check-in: [cd9086c266] user: drh branch: enhanced-defenses, size: 20907 | |
| 15:56 | Enhance codecheck1.c to detect cases where style_header() is called with arguments that are not easily proven to be HTML-free. Fix multiple calls to style_header() to prove they are always HTML-free. file: [80ce8606fb] check-in: [2da41072ff] user: drh branch: enhanced-defenses, size: 20868 | |
|
2024-10-12
| ||
| 12:03 | Emit only \n, not \r\n, even in places where protocols technically require a full \r\n. Provide a compile-time option -DSEND_CR=1 that includes the CRs when necessary. file: [0a1deec55b] check-in: [0dcce257b0] user: drh branch: omit-cr, size: 20143 | |
|
2024-02-02
| ||
| 22:18 | Remove trailing whitespace from non-external C files. file: [c0daab2055] check-in: [7db0a2d910] user: danield branch: fix-overlength-lines, size: 20017 | |
|
2023-08-30
| ||
| 19:42 | Improvements to the tools/codecheck1.c injection-attack static analyzer tool. file: [950baa52c8] check-in: [2afff83e7e] user: drh branch: trunk, size: 20020 | |
|
2021-12-25
| ||
| 12:06 | Renamed src/codecheck1.c → tools/codecheck1.c. Part one of src/ file relocations discussed in /chat. This step moves the various code generators and translators from src/ to tools/. Edit: moving to branch for further changes, as this broke diff -tk. file: [a8331266f3] check-in: [a13ab011f4] user: stephan branch: code-movement, size: 19703 | |
|
2021-07-08
| ||
| 17:43 | Enhancement to codecheck1.c to verify that routines like db_set() use a string literal as the setting argument, and are thus impervious to injection attacks. file: [a8331266f3] check-in: [0a5d0e191c] user: drh branch: trunk, size: 19703 | |
|
2020-07-31
| ||
| 21:32 | Reduce the number of jsmode options to three: inline, separate, bundled. file: [0ca97e0ad6] check-in: [38f3d9785b] user: drh branch: refactor-js-handling, size: 18185 | |
|
2020-05-28
| ||
| 14:20 | Enhance codecheck1.c to check recently added varargs functions. file: [b626830f2b] check-in: [b17aba9e20] user: drh branch: trunk, size: 18231 | |
|
2018-08-23
| ||
| 02:57 | Put all javascript inline using a nonce. Disallow 'unsafe-inline' CSP for javascript. file: [f74b41cba1] check-in: [89c40851f0] user: drh branch: csp-nonce, size: 17330 | |
|
2018-06-21
| ||
| 19:10 | The /subscribe page now creates entries in the subscriber table and sends verification emails. file: [3da69f1393] check-in: [31be2e17a4] user: drh branch: email-alerts, size: 17284 | |
| 16:40 | Strengthen the codecheck1.c utility program to help find cases where query parameters are used in unsafe ways. No unsafe usage of query parameters was detected in the current code. file: [c9a0fcba1d] check-in: [bb9233a61a] user: drh branch: trunk, size: 17225 | |
|
2018-01-16
| ||
| 16:30 | Update the codecheck1.c utility program to find unsafe format strings for recently added varargs functions. Fix unsafe varargs found by this update. This is a continuation of the fix in check-in [3c2ef25d03fb48d5]. file: [4b4bbebe72] check-in: [2fac7df467] user: drh branch: trunk, size: 15610 | |
|
2017-12-05
| ||
| 01:05 | Anti-robot defenses are now CSP-safe. file: [ed76b2c22b] check-in: [4f2c984132] user: drh branch: main.js, size: 15053 | |
|
2017-07-13
| ||
| 10:22 | Update top OpenSSL 1.0.2l. Minor (harmless) compiler warnings in mkversion and codecheck1 (-Wall) file: [cbf9594fb2] check-in: [23895c7b99] user: jan.nijtmans branch: trunk, size: 15014 | |
|
2016-11-07
| ||
| 01:29 | Remove some tabs and end-of-line whitespace file: [0e2c3cd406] check-in: [bf9669f55e] user: andygoth branch: trunk, size: 14998 | |
|
2016-08-19
| ||
| 00:13 | Use the new SQLITE_DBCONFIG_MAINDBNAME feature of SQLite to eliminate the need for the db_name() hack. file: [4f707cdaef] check-in: [d858f3da52] user: drh branch: omit-db_name, size: 14999 | |
|
2015-12-23
| ||
| 11:10 | Improvements to handling of localtime. The 'utc' and 'localtime' query parameters now work on all web pages. Timestamps can be expressed with a timezone modifier and that works correctly. file: [bf92e19b6a] check-in: [ea63a2d1f4] user: drh branch: trunk, size: 15012 | |
|
2015-01-22
| ||
| 12:37 | Add a few "const" qualifiers in appropriate places, and remove some unnecessary end-of-line spaces. No change in functionality. file: [2cf1fc75f4] check-in: [f6c285f88c] user: jan.nijtmans branch: trunk, size: 15030 | |
|
2014-11-30
| ||
| 13:36 | Added more logging, added admin_log() to printf checker. file: [db3f0df7d6] check-in: [f63d68d4d3] user: stephan branch: admin-logging, size: 15040 | |
|
2014-10-28
| ||
| 04:02 | Fix compiler warning with MSVC. file: [141caa31ad] check-in: [5247900ccf] user: mistachkin branch: trunk, size: 15001 | |
|
2014-10-21
| ||
| 02:09 | Include main.mk in the makefile integration for the codecheck1 tool. Also fix dependency issue with the MinGW makefiles. file: [f0c1330bde] check-in: [5ea84522ec] user: mistachkin branch: compile-time-print-checking, size: 14987 | |
|
2014-10-20
| ||
| 20:40 | Fix harmless compiler warnings in the codecheck1 tool. file: [6e9100c715] check-in: [9eb3b6ce80] user: mistachkin branch: compile-time-print-checking, size: 14981 | |
| 16:45 | added json_new_string_f() to codecheck1's list. file: [3b701d8761] check-in: [0237021d58] user: stephan branch: compile-time-print-checking, size: 14987 | |
| 15:01 | Added: Add a custom static analysis program that verifies the arguments to printf-style varargs routines used in Fossil. Adjust the source code to be more robust for printf format errors and to fix a few minor problems found by the static checker. file: [56a116ebb6] check-in: [0a7e326fa4] user: drh branch: compile-time-print-checking, size: 14948 | |