Many hyperlinks are disabled.
Use anonymous login
to enable hyperlinks.
50 events by user dmitry occurring around 2012-11-04 12:59:14.
|
2012-11-06
| ||
| 18:38 | Make sure file names in file browser don't wrap by adding white-space property to default CSS. check-in: b83278f6ff user: dmitry tags: trunk | |
|
2012-11-05
| ||
| 11:10 | • Edit [45065c5c282cda99|45065c5c28]: Mark "Closed". artifact: a3212ad15e user: dmitry | |
|
2012-11-04
| ||
| 12:59 | Fix typos. Closed-Leaf check-in: 45065c5c28 user: dmitry tags: spelling | |
|
2012-03-01
| ||
| 01:43 | • Fixed ticket [6b6c379afe]: progress display goes over 100% plus 2 other changes artifact: bda71ce784 user: dmitry | |
|
2011-12-20
| ||
| 14:39 | • Ticket [0a3c59e801] Getting "timeline.rss is not a valid feed" from Thunderbird status still Open with 1 other change artifact: b2fae3eecf user: dmitry ... 1 similar event omitted. | |
|
2011-12-16
| ||
| 22:00 | Add SSL SNI support (suggested by BohwaZ on mailing list). Simplify setting of port for SSL connection. Closed-Leaf check-in: 132dbcedbc user: dmitry tags: dmitry-fixes | |
|
2011-10-24
| ||
| 18:15 | • Ticket [60211effbd] fossil mv nonexistentfile newfilename status still Open with 2 other changes artifact: 8d20eb300d user: dmitry | |
|
2011-10-04
| ||
| 15:20 | Add HMAC-SHA1 implementation. Closed-Leaf check-in: dcee34b25f user: dmitry tags: multisession | |
| 15:19 | • Edit [f4eb0f5afcb33598|f4eb0f5afc]: Mark "Closed". artifact: 0425a41e99 user: dmitry | |
| 15:15 | Merge protection against timing attacks into trunk. check-in: d4a341b49d user: dmitry tags: trunk | |
| 14:38 | Merge trunk into dmitry-security branch. Closed-Leaf check-in: f4eb0f5afc user: dmitry tags: dmitry-security | |
| 14:34 | Rename constant_time_eq to constant_time_cmp to better indicate that these functions return 0 when values are equal, like memcmp, strcmp, etc., not truth, to avoid possible mistakes. check-in: d244c484e7 user: dmitry tags: dmitry-security | |
| 14:28 | Revert the previous change after thinking more about it. Login cards in the sync protocol have the following format: login userid nonce signature Nonce is SHA-1 of the message that follows this line, signature is SHA-1 of the concatenation of the nonce and user's shared secret. The successful timing attack can reveal only signature for this particular packet due to nonce. However, as nonce is known to the attacker, it's theoretically possible for them to bruteforce the shared secret_offline_. The whole scenario sounds highly improbable, but using constant-time comparison function for such things by default is a good practice. check-in: 13a9a1244c user: dmitry tags: dmitry-security | |
|
2011-09-30
| ||
| 10:51 | It seems like blob_constant_time_eq() is unnecessary for sync protocol signatures; removed. check-in: 48bcfbd47b user: dmitry tags: dmitry-security | |
| 09:41 | Catch zero length early in blob_constant_time_eq(). check-in: e3d022dffa user: dmitry tags: dmitry-security | |
|
2011-09-29
| ||
| 21:06 | Fix to the previous fix: install function to the correct database. check-in: 3782276da6 user: dmitry tags: dmitry-security | |
| 21:04 | Fix login groups. check-in: 6f29649ef3 user: dmitry tags: dmitry-security | |
| 17:26 | Fix comment. check-in: a0fa120b74 user: dmitry tags: dmitry-security | |
| 17:21 | Protect against timing attacks by using constant-time comparison function to compare passwords and cookies. check-in: 7f110475ec user: dmitry tags: dmitry-security | |
| 14:07 | When creating a manifest, get isExe and isLink bits from filesystem at once instead of doing two stat(2) calls. check-in: 9bfa186be0 user: dmitry tags: trunk | |
| 11:45 | Change file_size() to file_wd_size() in file_is_the_same(). check-in: 13a771ce18 user: dmitry tags: trunk | |
| 11:44 | • Edit [a369dc77210bf42c|a369dc7721]: Edit check-in comment. artifact: 14a491e973 user: dmitry | |
| 11:05 | Cache "manifest" setting in fossil_reserved_name() instead of reading it from the database on every call. This speeds up adding many files. check-in: a369dc7721 user: dmitry tags: trunk | |
|
2011-09-27
| ||
| 19:28 | Call file_wd_isdir() in file_mkdir(). check-in: 13120e9620 user: dmitry tags: trunk | |
| 19:15 | Change a few instances of file_isdir() to file_wd_isdir(). check-in: f1329470c0 user: dmitry tags: trunk | |
|
2011-09-25
| ||
| 11:14 | Fix double LI tags when listing wiki attachments for users without permissions. check-in: 12272b7ff0 user: dmitry tags: trunk | |
|
2011-09-24
| ||
| 01:39 | Disable SSLv2 in HTTPS client. This version of the protocol is considered insecure and has been deprecated; all modern browsers disable it. check-in: ea1d369d23 user: dmitry tags: trunk | |
|
2011-09-16
| ||
| 10:00 | • Ticket [87f7cebc27] Wiki page names starting with '.' don't work status still Open with 2 other changes artifact: c2d10bc74d user: dmitry | |
|
2011-09-15
| ||
| 19:19 | • Edit [4e586a2d8e690d14|4e586a2d8e]: Mark "Closed". artifact: fec22893bc user: dmitry | |
|
2011-09-12
| ||
| 19:46 | • Edit [2cd21f8dc2ec202e|2cd21f8dc2]: Mark "Closed". artifact: db1ee119a8 user: dmitry | |
| 19:45 | • Fixed ticket [4af785ba3c]: User specified with --user-override doesn't show up in commit msg plus 2 other changes artifact: 6e487fe9bb user: dmitry | |
| 19:45 | • Fixed ticket [109ae2e904]: RSS feed is not always valid plus 2 other changes artifact: 71e5e079c5 user: dmitry | |
| 19:44 | • Fixed ticket [806c4358cd]: Wrong anchor on 'settings'' in reference (settings vs. setting) plus 2 other changes artifact: c415098ea3 user: dmitry | |
| 19:44 | • Fixed ticket [09310d1a05]: Typos in Wiki Theory page plus 2 other changes artifact: c75f3c9c4c user: dmitry | |
| 19:44 | • Fixed ticket [66ce1088b6]: It is possible for the empty string to be a user id plus 2 other changes artifact: 026637e905 user: dmitry | |
| 19:43 | • Fixed ticket [19be0265ff]: Rebuild button on Shun page on UI generates incorrect output plus 2 other changes artifact: e260450530 user: dmitry | |
|
2011-09-11
| ||
| 17:11 | • Closed ticket [0dddfe5d22]: incremental update of git export plus 2 other changes artifact: 0f1df4adb3 user: dmitry | |
| 15:00 | • Fixed ticket [427938e2f6]: three-way merge plus 2 other changes artifact: fc175456b8 user: dmitry | |
| 14:26 | • Fixed ticket [9d0f274589]: Ticket attachment shows garbage plus 2 other changes artifact: c06a617fcc user: dmitry | |
| 14:21 | • Fixed ticket [1a99e30dd4]: RSS link within the feed does not point to item matching the title plus 2 other changes artifact: 252ca94096 user: dmitry | |
| 14:08 | • Fixed ticket [164e519962]: .zip archive of an artifact should be available w/o a login plus 2 other changes artifact: 9fcd4791fe user: dmitry | |
| 13:57 | Fix three remaining instances of printing rebuild progress in CGI mode. Ticket [19be0265ff]. Closed-Leaf check-in: 2cd21f8dc2 user: dmitry tags: dmitry-fixes | |
| 12:27 | Disallow creating users with empty login. Ticket [66ce1088]. check-in: e1ea6c26d0 user: dmitry tags: dmitry-fixes | |
| 12:26 | Fix typos in documentation. Tickets [09310d1a] and [806c4358]. check-in: 9150a8a234 user: dmitry tags: dmitry-fixes | |
| 12:22 | • Edit [7c82dbf5465f7b4d|7c82dbf546]: Change user to "dmitry". artifact: 5be4a64dbf user: dmitry | |
| 12:19 | Show overridden user in commit comment. Ticket [4af785ba]. check-in: 7c82dbf546 user: dmitry tags: dmitry-fixes | |
| 12:04 | • Fixed ticket [cc8fb65705]: process_one_web_page crashes if zPathInfo is NULL plus 2 other changes artifact: 81dfc4b06c user: dmitry | |
|
2011-09-10
| ||
| 21:07 | • Closed ticket [be95038383]: Fossil generates invalid markup... plus 2 other changes artifact: e9e27b01ab user: dmitry | |
| 21:05 | • Fixed ticket [40f32e9733]: incorrect url for check-ins entry on ticket history menu plus 2 other changes artifact: 88f873a9d6 user: dmitry | |