Many hyperlinks are disabled.
Use anonymous login
to enable hyperlinks.
Overview
| Comment: | Flag the th1-setup setting as sensitive because it can, when built with --with-tcl, contain arbitrary tcl. Remove the following settings from the list of syncable settings because they will no longer sync because they're flagged as sensitive: tcl, tcl-setup, th1-setup, th1-docs. |
|---|---|
| Downloads: | Tarball | ZIP archive |
| Timelines: | family | ancestors | sync-skip-sensitive |
| Files: | files | file ages | folders |
| SHA3-256: |
6a114c4870d5185ffb5189327480ef91 |
| User & Date: | stephan 2024-10-14 19:23:27.238 |
References
|
2024-10-15
| ||
| 15:03 | Harden the synchronization process against sending or receiving settings flagged as sensitive. Mark the th1-setup setting as sensitive because it can contain not only th1, but also arbitrary TCL code if fossil is configured using --with-tcl. This addresses [forum:6179500deadf6ec7 | forum post 6179500dead]. (Edit: this was actually a merge from [6a114c48], but user error on my part lost that link.) check-in: 2ff87d4e0f user: stephan tags: trunk | |
Context
|
2024-10-14
| ||
| 19:23 | Flag the th1-setup setting as sensitive because it can, when built with --with-tcl, contain arbitrary tcl. Remove the following settings from the list of syncable settings because they will no longer sync because they're flagged as sensitive: tcl, tcl-setup, th1-setup, th1-docs. Closed-Leaf check-in: 6a114c4870 user: stephan tags: sync-skip-sensitive | |
| 19:21 | Cherry-pick [2d5a23e919df] into this branch. check-in: f3ce75f818 user: stephan tags: sync-skip-sensitive | |
Changes
Changes to src/configure.c.
| ︙ | ︙ | |||
116 117 118 119 120 121 122 |
{ "adunit", CONFIGSET_SKIN },
{ "adunit-omit-if-admin", CONFIGSET_SKIN },
{ "adunit-omit-if-user", CONFIGSET_SKIN },
{ "default-csp", CONFIGSET_SKIN },
{ "sitemap-extra", CONFIGSET_SKIN },
{ "safe-html", CONFIGSET_SKIN },
| < < < < < < < < < | 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 |
{ "adunit", CONFIGSET_SKIN },
{ "adunit-omit-if-admin", CONFIGSET_SKIN },
{ "adunit-omit-if-user", CONFIGSET_SKIN },
{ "default-csp", CONFIGSET_SKIN },
{ "sitemap-extra", CONFIGSET_SKIN },
{ "safe-html", CONFIGSET_SKIN },
#ifdef FOSSIL_ENABLE_TH1_HOOKS
{ "th1-hooks", CONFIGSET_TH1 },
#endif
{ "th1-uri-regexp", CONFIGSET_TH1 },
{ "project-name", CONFIGSET_PROJ },
{ "short-project-name", CONFIGSET_PROJ },
{ "project-description", CONFIGSET_PROJ },
{ "index-page", CONFIGSET_PROJ },
{ "manifest", CONFIGSET_PROJ },
{ "binary-glob", CONFIGSET_PROJ },
{ "clean-glob", CONFIGSET_PROJ },
|
| ︙ | ︙ |
Changes to src/db.c.
| ︙ | ︙ | |||
4965 4966 4967 4968 4969 4970 4971 | /* ** SETTING: th1-hooks boolean default=off ** If enabled, special TH1 commands will be called before and ** after any Fossil command or web page. */ #endif /* | | | 4965 4966 4967 4968 4969 4970 4971 4972 4973 4974 4975 4976 4977 4978 4979 | /* ** SETTING: th1-hooks boolean default=off ** If enabled, special TH1 commands will be called before and ** after any Fossil command or web page. */ #endif /* ** SETTING: th1-setup width=40 block-text sensitive ** This is the setup script to be evaluated after creating ** and initializing the TH1 interpreter. By default, this ** is empty and no extra setup is performed. */ /* ** SETTING: th1-uri-regexp width=40 block-text ** Specify which URI's are allowed in HTTP requests from |
| ︙ | ︙ |