Many hyperlinks are disabled.
Use anonymous login
to enable hyperlinks.
81 check-ins using file src/db.c version 07b51b889c
|
2019-08-21
| ||
| 11:26 | Update to the default CSP page. Attempted to resolve merge conflicts, but more editting is likely necessary. check-in: 33a7b8babe user: drh tags: trunk | |
| 11:09 | Added a header to the new XSS material in defcsp.md so we can refer directly to it. check-in: 7b843f2d43 user: wyoung tags: trunk | |
| 11:01 | More thorough explanation of <script nonce> in www/defcsp.md, and explained the reason why Fossil has no way of providing that nonce in most content types rather than link to the "XSS via check-in rights" forum post. This new presentation of that post's ideas is more detailed and includes discussion of the feature's interaction with the TH1 docs feature. check-in: 8d43bb8786 user: wyoung tags: trunk | |
| 09:40 | Major improvements to the new defcsp.md article. Expanded the introductory material to better describe what the CSP does; added named anchors to headers; moved the discussion of $default_csp overrides into this document from customskin.md, which now just says how you use that variable read-only; and added an entirely new section, "Replacing the Default CSP". check-in: 366b23a180 user: wyoung tags: trunk | |
| 08:52 | Replaced the redundant copy of the default CSP in skins/bootstrap/header.txt with "$default_csp", allowing the TH1 setup script to override the CSP as in all the other stock skins. (Bootstrap is the last stock skin to define a custom <head> element.) check-in: 14ac2cacdd user: wyoung tags: trunk | |
|
2019-08-20
| ||
| 19:16 | Fix memcpy() compiler warnings. check-in: 7ae4b1a719 user: drh tags: trunk | |
| 16:11 | Fix possible misaligned pointer to a 16-bit object. check-in: f7c41be825 user: drh tags: trunk | |
| 15:04 | Updated and expanded documentation on how to set up a Fossil server. check-in: f146e21af9 user: drh tags: trunk | |
| 14:55 | Add the --with-sanitizer option to the ./configure script. check-in: 231d693314 user: drh tags: trunk | |
| 07:01 | Fixed a link punctuation bug introduced in [74a6578c]. Closed-Leaf check-in: c57e17931d user: wyoung tags: server-docs | |
| 06:45 | The merge from trunk accidentally reverted part of the new text in www/embeddeddoc.wiki. (This part was manually merged, and I missed a diff relative to trunk.) check-in: 8976a9dae3 user: wyoung tags: server-docs | |
| 06:35 | Missed a link to server.wiki that should have been checked in with [74a6578c]. check-in: d5def0c8c4 user: wyoung tags: server-docs | |
| 06:34 | Merged in trunk improvements check-in: 42d28c0286 user: wyoung tags: server-docs | |
| 06:28 | Reverted src/doc.c to the trunk version. The "Plan Z" reversion in [8264fd75] was incomplete, causing bad TH1 variable expansion. I believe this explains the symptom I worked around in [9bdf650f0b8]. This check-in also cherry-picks [3d6a4fd95c] onto the branch. check-in: 3cdf764c2c user: wyoung tags: server-docs | |
| 06:03 | Updated all of the internal hyperlinks referencing www/server.wiki to point at either www/server/index.html or one of the docs it now points at. check-in: 74a6578cd4 user: wyoung tags: server-docs | |
| 04:57 | Fixed an unwanted "$nonce" variable expansion within the new customskin.md introduced by [9044fd2dbe] which only occurs *sometimes*: not on fossil-scm.org, and apparently not in my earlier ckout testing prior to checking it in, but now in a different ckout test. This has to be a TH1 thing, but I don't understand why we didn't see this earlier. This is just a workaround for the symptom. check-in: 9bdf650f0b user: wyoung tags: trunk | |
| 04:34 | Fixed a link from the new material in embeddeddoc.wiki to the new CSP material: that briefly lived in customskin.md before checking it in, but then I moved it to a new document and forgot to update the link. check-in: f4cbfd5acc user: wyoung tags: trunk | |
| 04:24 | Fixed a couple of Tcl syntax fixes that caused the new --with-sanitizer code to a) run unconditionally irrespective of the option's setting and b) to check for the existence of libubsan whether it was actually needed or not. Closed-Leaf check-in: 66fdab7605 user: wyoung tags: configure-updates | |
| 04:07 | Added www/defcsp.md, which documents the default Content Security Policy applied by Fossil to the HTML pages it serves. Linked that into embeddeddoc.wik and customskin.md, which touched on this topic before but didn't go into much detail. check-in: 4e6d36d7d4 user: wyoung tags: trunk | |
| 02:09 | Fix a compiler warning in the security-audit page. check-in: 3243a6c148 user: drh tags: trunk | |
| 01:34 | Added --with-sanitizer configure-time option for appending -fsanitize=VALUE to CFLAGS and LDFLAGS, plus automatic detection of -lubsan for GCC, which doesn't automatically link to that with -fsanitize=undefined as Clang does. EDIT: This check-in breaks the built on Ubuntu 18.04. check-in: 7907b6ffae user: wyoung tags: configure-updates | |
| 00:41 | Removed "known to work with IIS" bit from www/server/index.html in the CGI section, since that is not actually true. We can put it back once someone figures out [https://fossil-scm.org/forum/forumpost/de18dc32c0 | the IIS + CGI + Fossil CPU pegging problem]. check-in: 8b7c17de3f user: wyoung tags: server-docs | |
| 00:37 | Removed documentation of the nonce="$NONCE" feature in www/embeddeddoc.wiki, removed as part of [8264fd75]. check-in: d55f6b1501 user: wyoung tags: server-docs | |
|
2019-08-19
| ||
| 23:32 | Fix a broken hyperlink on the new server-docs index page. check-in: 461c8f06fc user: drh tags: server-docs | |
| 19:29 | Updating links in www/server/windows/stunnel.md to correct locations. check-in: 65d175aef0 user: ckennedy tags: server-docs | |
| 18:24 | [https://www.fossil-scm.org/forum/forumpost/89dba2d978|Plan Z] check-in: 8264fd75bc user: drh tags: server-docs | |
| 17:18 | Have the security-audit page analyze and display the content security policy. check-in: 9cf90a4f9d user: drh tags: trunk | |
| 13:04 | Increase the default HTTP request timeout to 10 minutes. Provide the FOSSIL_DEFAULT_TIMEOUT compile-time option for setting an alternative default. check-in: 7979989dff user: drh tags: trunk | |
| 12:38 | Added missing www/chroot.md file check-in: 80cd49f063 user: wyoung tags: server-docs | |
| 12:09 | Updated www/server/index.html to no longer discuss launchd as a "maybe" option now that we have a document for it, and removed mention of Solaris SMF entirely. check-in: 1e6fbcf214 user: wyoung tags: server-docs | |
| 11:59 | Added www/server/macos/service.md and then added macOS to the set of server OSes offered in www/server/index.html check-in: e0ad4b48b5 user: wyoung tags: server-docs | |
| 10:22 | Assorted small tweaks to www/server/windows/iis.md check-in: b5fefeec23 user: wyoung tags: server-docs | |
| 10:10 | Small tweaks to the new "Serving as a Standalone Server on Windows" article. check-in: 3995a3c7ae user: wyoung tags: server-docs | |
| 09:47 | Assorted small tweaks to server docs, mainly around new systemd material. check-in: 9d4a478241 user: wyoung tags: server-docs | |
| 09:10 | Added www/server/debian/service.md, demonstrating systemd configuration of Fossil for the first time in the official docs, both as a user serivce and in socket activation mode as a system-level service. check-in: 94763aed7c user: wyoung tags: server-docs | |
| 05:00 | Clarity tweak check-in: bc678e1321 user: wyoung tags: server-docs | |
| 04:58 | Grammar fix on previous check-in: d5c754f97b user: wyoung tags: server-docs | |
| 04:58 | Title tweak on previous check-in: afc65312fa user: wyoung tags: server-docs | |
| 04:57 | Added www/server/windows/none.md server setup article check-in: 3e55ddf754 user: wyoung tags: server-docs | |
| 03:44 | Added explicit instructions on installing IIS within the new IIS server docs. It isn't installed by default, and in the CGI case, CGI isn't part of the default IIS install. check-in: b2f10ad585 user: wyoung tags: server-docs | |
| 01:17 | The www/customskin.md document hadn't been updated since we removed the explicit <html><head> stuff from the default skins and moved that into the C code so we could insert the CSP and such automatically. Updated it to show the inner <div> tags that you actually get by default now, and talked about how the HTML document wrapper is added automatically. Also fixed some spelling and grammar errors. check-in: 9044fd2dbe user: wyoung tags: trunk | |
| 00:51 | Fix embedded HTML detection for the 'doc' web page when the 'data-title' attribute is not specified. check-in: 3d6a4fd95c user: mistachkin tags: trunk | |
| 00:30 | Added links back to the top-level www/server/index.html article from the tail end of www/server/*/*.md. check-in: 0f6f151dd3 user: wyoung tags: server-docs | |
| 00:25 | Justified the ordering of sections in www/server/index.html by including info on complexity. CGI remains last because CGI is only a "simple" option when someone else sets up the CGI security for you, as on old-style cheap hosting plans. Also added several inline sub-document references. check-in: 9f4121db3b user: wyoung tags: server-docs | |
| 00:01 | Merged the lists of socket listener daemons into the Socket Listener section of www/server/index.html: the list of known-working daemons down from the numbered list at the top of the article, and the list of potentially-working daemons up from the <noscript>-cloaked document matrix below. Also reordered the sections from simplest to most complex. check-in: d9ab9c567c user: wyoung tags: server-docs | |
|
2019-08-18
| ||
| 10:26 | Improvements to the nonce='$NONCE' substitution mechanism. check-in: 1c50073d31 user: drh tags: server-docs | |
| 08:52 | Implemented the first version of the JavaScript tutorial chooser in www/server/index.html, complete with fallbacks for the noscript case, optional display of the static document matrix, and pretty CSS transitions between the states. check-in: 0cbdbc725c user: wyoung tags: server-docs | |
| 06:20 | URL fix in previous check-in: a7610e4273 user: wyoung tags: server-docs | |
| 06:06 | Added the nonce="$NONCE" embedded documentation substitution feature and documented that and the other pre-existing text substitution features. check-in: 02db05e600 user: wyoung tags: server-docs | |
| 05:20 | Further refinement of the server setup tutorial matrix CSS check-in: a6fee5898f user: wyoung tags: server-docs | |
| 05:12 | Reduced the number of columns in the server setup tutorial matrix by collapsing all of those for the OS's default web server down to a single shared column. Also dropped the xinetd column as obsolete. (We still have the explicit xinetd article link above.) check-in: 3f9f1bdf38 user: wyoung tags: server-docs | |
| 04:51 | Moved inline CSS within www/server/index.html elements up into a <style> block at the top. Then used that to create a more even matrix layout. Also fixed some incorrect URLs checked in with the prior version, due to the document changing directory level. check-in: 648574cb0e user: wyoung tags: server-docs | |
| 04:41 | Renamed www/server.wiki to www/server/index.html and converted it to HTML format. Did a bit of prose polishing and CSS work while in there. check-in: 8193266763 user: wyoung tags: server-docs | |
| 04:12 | Small improvements to IIS + CGI doc check-in: f7c839c1c6 user: wyoung tags: server-docs | |
| 03:53 | Added docs for IIS + CGI server configuration. check-in: 9098ebba2d user: wyoung tags: server-docs | |
| 02:21 | Assorted improvements to www/server/windows/iis.md. Removed the empty CGI and SCGI sections, as those will be separate articles. Added "Why Bother?" section. Added link to ./service.md. Better explanation of the /code rewriting example. Hoist TLS info up into the new "Why Bother?" section. check-in: 1670e5fac6 user: wyoung tags: server-docs | |
| 01:03 | Capitalization fix in HTML output from /artifact_stats check-in: d570edc646 user: wyoung tags: trunk | |
| 00:59 | Include forum artifact statistics on the /artifact_stats page. check-in: e2f2a05eff user: drh tags: trunk | |
|
2019-08-16
| ||
| 18:58 | Corrected the description of nginx + SCGI in www/server.wiki. check-in: 0f217e89f2 user: wyoung tags: server-docs | |
| 18:36 | Added starting version of www/server/windows/iis.md, covering only the HTTP reverse proxying case. check-in: fbacfacfe6 user: wyoung tags: server-docs | |
| 14:25 | An attempt to make the main server.wiki page simpler and yet self-contained, all at once. check-in: 5bb1e11228 user: drh tags: server-docs | |
| 12:53 | Moved the chroot and loadmgmt sections of www/server.wiki into separate documents. This change also adds info on /proc to the chroot doc, which was missing in its prior server.wiki form. Also reduced a few other "details" sections of server.wiki to bullet points in the new "Further Details" list at the end of the document. check-in: 85eaffb6a5 user: wyoung tags: server-docs | |
| 11:59 | Changed "socket activation" to "socket listener" in all the new docs check-in: 3c9f811b87 user: wyoung tags: server-docs | |
| 11:42 | Markdownism fixes... check-in: 1428f59ec9 user: wyoung tags: server-docs | |
| 11:41 | Small improvements to the new Fossil Chroot Jail section of www/server.wiki check-in: 4c837bc343 user: wyoung tags: server-docs | |
| 11:08 | Small clarity tweak to the new "Methods" discussion in www/server.wiki. check-in: fc00b7b297 user: wyoung tags: server-docs | |
| 10:27 | Converted the backwards-compatibility sections in www/server.wiki into identified hyperlinks to the new docs, which allows existing external ".../server.wiki#cgi" URLs and such to work without needing the near-empty sections containing only a hyperlink just to anchor the link. check-in: 0bb59100f2 user: wyoung tags: server-docs | |
| 10:19 | Several small refinements to prior check-ins. check-in: 16e3cff648 user: wyoung tags: server-docs | |
| 10:11 | Moved the "Serving via althttpd" material from www/ssl.wiki to a new document, www/server/any/althttpd.md, linked from www/server.wiki. check-in: 2e19fcee33 user: wyoung tags: server-docs | |
| 09:55 | Added some named anchors to www/server/any/stunnel.md check-in: ce4b4bae31 user: wyoung tags: server-docs | |
| 09:54 | Moved the stunnel proxying docs from www/ssl.wiki to a new document www/server/any/stunnel.md, and pointed www/server.wiki at it. Also replaced some similar material in this branch's new www/server/windows/stunnel.md file at this generic document. Between these two changes, the generic stunnel docs now cover the reverse proxying option for the first time. (The old version used the socket activation method exclusively.) The new document also gives a more realistic configuration, showing Let's Encrypt paths and a sensible ciphersuite configuration. check-in: 53b2e866e1 user: wyoung tags: server-docs | |
| 09:15 | Split the HTTP-only parts out of www/tls-nginx.md into a new document discussing only the reverse-proxying of `fossil --scgi` to HTTP using nginx on Debian type OSes. That material is now in www/server/debian/nginx.md, which is referred to from www/server.wiki. While in there, did a bit of prose polishing on this old guide. check-in: 2baa8151d7 user: wyoung tags: server-docs | |
| 07:13 | Broke most of the contents of www/server/wiki out into a series of www/server/*.md articles that are now linked from a checkmark table in its place, which also links to the new www/server/windows/*.md files created to start this branch off. This is not purely a matter of moving prose around: there is a fair bit of improvement to the pre-existing prose as well, most notably that we now document the Fossil chroot jail requirements for the first time. (Previously, you had to go dig up mailing list or forum posts (or even RTFS!) to work out those requirements.) There's more to do on all of this; do not merge it to trunk yet. check-in: fad82714aa user: wyoung tags: server-docs | |
| 03:33 | Relaxed the "enforcing" language around the planned change of hash policy from "auto" to "sha3" in Fossil 2.10 within section 2.8 of the fossil-v-git.wiki doc, and clarified what will actually happen with that release as compared to the current release. check-in: c5461fb599 user: wyoung tags: trunk | |
| 01:58 | Merged recent spell check fixes into this branch so we don't revert any of them. check-in: a9fd086f13 user: wyoung tags: server-docs | |
| 01:57 | Another spell check pass on www/* using a different dictionary than in the prior pass. ([79c2cb083152]) check-in: 0996347d4a user: wyoung tags: trunk | |
|
2019-08-15
| ||
| 16:16 | Server Documentation Update. This ckeckin contains instructions for using Fossil as a windows service and with stunnel as an https proxy. check-in: 8b7c563d49 user: ckennedy tags: server-docs | |
|
2019-08-13
| ||
| 23:29 | Additional documentation on CGI configuration options. Updates to the change log. New hyperlinks interconnecting the various documents. check-in: fbc3b2f72e user: drh tags: trunk | |
| 20:44 | Remove the sigalrm_handler() function on windows builds as it is never called there. check-in: 1d7afcdff6 user: drh tags: trunk | |
| 20:31 | Improvements to HOME search on windows, and improve the documentation of the same. check-in: 006afac0f0 user: drh tags: trunk | |
|
2019-08-10
| ||
| 18:07 | Refine HOME search order on Windows to maintain backward compatibility with the previous search hierarchy. Closed-Leaf check-in: c07cbcd3db user: mistachkin tags: windows-env-usage-v2 | |