Many hyperlinks are disabled.
Use anonymous login
to enable hyperlinks.
98 check-ins using file extsrc/shell.c version 66f8c2b755
|
2025-04-13
| ||
| 12:39 | better quoting to make intent clearer, thanks to [forum:/forumpost/cf724a9bea] Closed-Leaf check-in: 3e16be4e02 user: jkosche tags: tkt-improvements | |
| 12:15 | better regexp to match the hyphen, thanks to [forum:/forumpost/81529972df] check-in: ac848122fa user: jkosche tags: tkt-improvements | |
| 11:01 | some more html quoting check-in: e8a72ebbaf user: jkosche tags: tkt-improvements | |
| 00:12 | add hyphen to pattern via unicode escape check-in: 439d7a36e8 user: jkosche tags: tkt-improvements | |
|
2025-04-12
| ||
| 16:31 | only allow a certain whitelist of characters for linked tags and hashes to guard against injection check-in: 70b2569ec0 user: jkosche tags: tkt-improvements | |
| 14:54 | url quoting to avoid XSS check-in: 27f6238ce7 user: jkosche tags: tkt-improvements | |
| 13:53 | Fix SQL Injection vulnerability introduced by the new code in this branch. There still exists XSS vulnerabilities, but this is a first step. check-in: ffb5a46715 user: drh tags: tkt-improvements | |
| 13:41 | fix lines >80 chars check-in: 7b41c73e67 user: jkosche tags: tkt-improvements | |
|
2025-04-10
| ||
| 13:57 | also show age of ctime and mtime in /tktview check-in: 8b48a054ed user: jkosche tags: tkt-improvements | |
| 09:34 | Remove 'www.' prefix in extsrc/sqlite3.c and .h check-in: d452c5cebc user: brickviking tags: trunk | |
| 07:23 | When deleting a connection-restored notification, also delete the connection-broken notification it's associated with. Add a button to the message popup for connection-related notifications to delete all connection-related notifications. When running on localhost, reduce the /chat poller timeout to 15s. Closed-Leaf check-in: 79932a5210 user: stephan tags: chat-backoff-timer2 | |
| 06:12 | Improve an error message. check-in: 1f97db779d user: stephan tags: chat-backoff-timer2 | |
| 06:08 | Remove some stray debug output. Make fossil.dom.remove() a bit more robust against passed-in elements which have already been removed from the DOM. check-in: 040a7d4503 user: stephan tags: chat-backoff-timer2 | |
| 06:02 | Restore the production-mode (not dev-mode) long-pole timeout. check-in: 8da1269599 user: stephan tags: chat-backoff-timer2 | |
| 06:01 | Rework the chat poll fallback considerably. The notification widgets now interact with other messages better and don't mis-fire when the long-poll connection times out. check-in: 9516f7cd15 user: stephan tags: chat-backoff-timer2 | |
| 00:44 | Add a connection retry back-off delay to /chat when it cannot reach the server. (Edit: too many UI quirks. It needs reworking.) check-in: 4443ef843f user: stephan tags: chat-backoff-timer2 | |
| 00:28 | Make (refine?) the back-off random delay adjustment to be a factor of the current delay. Closed-Leaf check-in: f75fb1dd54 user: stephan tags: chat-backoff-timer | |
| 00:16 | Get the /chat-fetch-one handler to lift the back-off delay on success. check-in: d3baf9d5ec user: stephan tags: chat-backoff-timer | |
| 00:08 | Apply the connection-recovery reporting to the other AJAX commands, so that they can trigger the polling to continue if they determine that the connection is back up. Internal cleanups. check-in: fd36f8490b user: stephan tags: chat-backoff-timer | |
|
2025-04-09
| ||
| 22:56 | Remove 'www.' prefix from www.fossil-scm.org links in the footers of several skins. check-in: 67f8111ea3 user: stephan tags: trunk | |
| 22:37 | If /chat's poller cannot connect to the server, apply a back-off timer so that it does not keep hammering the remote every single second. It attempts to inform the user about outages and when reconnection has succeeded, but it's difficult to test the timing of the the UI elements thoroughly with a single pair of hands, so this is being checked in for dogfooding. check-in: 2debc54e67 user: stephan tags: chat-backoff-timer | |
| 21:12 | Do not allow integer left-shift overflow in TH1, because gcc 14.2.0 hates that. [forum:/info/6c1653220d4e12ec|Forum post 6c1653220]. check-in: c66b19670f user: drh tags: trunk | |
| 13:33 | also display creation time in /tktview check-in: 814a417b4d user: jkosche tags: tkt-improvements | |
| 13:07 | Further improvements to the /cachestat page. check-in: 3af3ffdf44 user: drh tags: trunk | |
| 12:25 | More administrative functions related to the Web Cache are now available on the /cachestat page. check-in: cfb716fb83 user: drh tags: trunk | |
| 11:23 | Add the ability for an admin to create a web-cache from the web interface. check-in: 7de57f400e user: drh tags: trunk | |
| 01:47 | Merge latest change from trunk. Closed-Leaf check-in: 3144c3bea4 user: mgagnon tags: fix-timeline-cli-after | |
|
2025-04-08
| ||
| 22:57 | remove the delete submenu from /rptedit, as it doesn't work anyway because the CSRF check only allows POST requests check-in: 7c91416166 user: jkosche tags: tkt-improvements | |
| 22:30 | show creation date in default template for the ticket report and use better names for the columns check-in: 86c1910ffb user: jkosche tags: tkt-improvements | |
| 22:05 | make the version field a link, if it contains a valid checkin hash or tagname, see ticket [04ba0f70b816cebe] check-in: 44bd394f0a user: jkosche tags: tkt-improvements | |
| 18:02 | Do not warn about hung backoffice processes if they have been running for only a little more than 60 seconds. check-in: 7ed4d030cf user: drh tags: trunk | |
| 15:58 | Change the user-elevation notification subscription to a user-perms-changed notification, per /chat disucssion. check-in: 36f72c0872 user: stephan tags: trunk | |
| 15:02 | In /setup_ulist, show the email address in the Alerts column so that accounts which have multiple notification subscriptions under different email addresses to not appear as visually-indistinguishable duplicates (they're distinguishable by the parameters for their subscription info link, but not to the naked eye). check-in: a4f5a53c55 user: stephan tags: trunk | |
| 12:49 | Ensure that ALL fopen() calls include 'b' in their modes. The git import/export fopen()s did not have this, which may (hypothetically, but unproven) lead to EOL conversion on Windows. Leaf check-in: 13049ef245 user: stephan tags: fopen-mode-b | |
| 12:43 | Change the message for the 'user elevation' notification to help clarify that it's not necessarily an elevation. Help/message text changes only - no functional changes. check-in: eabccae174 user: stephan tags: trunk | |
|
2025-04-07
| ||
| 17:08 | Show the menu of trouble-shooting options to administrators at the bottom of the /announce page. check-in: c98eec22c2 user: drh tags: trunk | |
| 16:57 | Usage hints on email-send-relayhost to suggest using an IP address to avoid name lookup problems from within chroot jails. check-in: 8266b5b3cf user: drh tags: trunk | |
| 16:42 | Improved debugging and diagnostic capabilities for announcement sending, especially when using relay. check-in: 056c83d120 user: drh tags: trunk | |
| 16:03 | New debugging option for /announce shows the SMTP transcript when the notification type is "relay". check-in: bbfca4cb64 user: drh tags: trunk | |
| 15:27 | Clean up the interface to internal smtp_session_new() routine. check-in: 3fc9b90587 user: drh tags: trunk | |
| 15:14 | Add convenient access to the notification setup menu when dealing with email notification pages as an administrator. check-in: 4859a911f5 user: drh tags: trunk | |
| 05:25 | Make the default value for email-send-relayhost be "localhost" check-in: 6c7066a1c5 user: drh tags: trunk | |
| 05:14 | Include the process-id in the logfile message for warnings. check-in: 420d007adf user: drh tags: trunk | |
| 05:06 | On the notification setup page, add a Refresh button to Status. Make Relay the first choice. check-in: cad72b796f user: drh tags: trunk | |
|
2025-04-06
| ||
| 16:35 | quickfix for [59d699710b1ab5d4] check-in: 5cf4dc82e7 user: jkosche tags: trunk | |
| 16:21 | make the separator in multi row ticket reports visually clearer identifiable as a separator check-in: 7b08586a41 user: jkosche tags: tkt-improvements | |
| 15:26 | comment the fix Closed-Leaf check-in: 369178ff05 user: jkosche tags: quickfix-sorttable-multirow | |
| 15:12 | quickfix for [59d699710b1ab5d4] check-in: d82cd903d2 user: jkosche tags: quickfix-sorttable-multirow | |
|
2025-04-04
| ||
| 19:58 | show the project description on the repository list check-in: 2771beab20 user: jkosche tags: trunk | |
| 12:18 | Enable the search in the built-in help text even without a repository. check-in: 3db304c755 user: tsbg tags: trunk | |
| 10:58 | Change unconditional CGI redirects to be 301 Moved Permanently. check-in: 33c1cfde9c user: drh tags: trunk | |
| 10:28 | add text indicating additional usage of project description Closed-Leaf check-in: 8bb501b725 user: jkosche tags: repolist-description | |
|
2025-04-03
| ||
| 21:34 | fix sorting check-in: 4dd3fa8874 user: jkosche tags: repolist-description | |
| 16:58 | Fix the use of "-p PATH" flag with "after" keyword in the timeline command. check-in: 52645bdc36 user: mgagnon tags: fix-timeline-cli-after | |
| 11:49 | add a description to the repolist as suggested by [forum:fc7e81a9db] check-in: f4ebb61013 user: jkosche tags: repolist-description | |
| 02:51 | Make work the "-t TYPE" flag with "after". Note: "-p PATH" is still to be fixed with "after" and was also not working originally with "children | ancestor" check-in: 7f1b2f1b8b user: mgagnon tags: fix-timeline-cli-after | |
| 02:09 | Use the absolute value of the -n argument as limit of the initial select when "after" is used so "-n N" with negative N can be use. (especially since the default is -20). check-in: 0d26e8a46f user: mgagnon tags: fix-timeline-cli-after | |
|
2025-04-02
| ||
| 23:31 | Fix the use of the "after" WHEN keyword for the fossil timeline command. "fossil timeline after <checkin|date>" when used with "-n N" was showing the N most recent checkins regardless the specified <checking|date> instead of the N checking following the specified <checkin|date>. Should fix the issue mentions on [https://fossil-scm.org/forum/forumpost/9d5808166ce7d9bd|forum post 9d5808166c] check-in: eee36897b6 user: mgagnon tags: fix-timeline-cli-after | |
| 21:00 | allow to use tickets as templates, see [https://fossil-scm.org/forum/forumpost/c9982d733b94e1ac|this forum post] for details check-in: 271a6bd31d user: jkosche tags: trunk | |
| 11:55 | Enable the search in the built-in help text even without a repository. Closed-Leaf check-in: 21c54d5db0 user: tsbg tags: search-in-help | |
| 11:52 | Fix a harmless typo in a comment. check-in: 6e47e6b38b user: drh tags: trunk | |
|
2025-04-01
| ||
| 18:46 | Make the mv-rm-files setting on by default. Leaf check-in: bd1b13210f user: drh tags: mv-rm-default-swap | |
| 15:38 | Do not silently overwrite existing files when doing 'mv --hard'. check-in: 31e75c3a41 user: danield tags: trunk | |
| 13:33 | Make use of the Accept-Encoding header value to help distinguish humans from robots. check-in: 0d41eb4790 user: drh tags: trunk | |
| 12:16 | Add test-brotli command to get some basic compression measurements. Closing this branch, as brotli is simply too slow for what we want to do. Closed-Leaf check-in: f5b559af94 user: stephan tags: brotli-compress | |
|
2025-03-31
| ||
| 21:04 | Replace cgi.c:is_gzippable() with is_compressible() and add support for brotli compression to its decision-making process. There's still a lot to do before we can actually emit brotli compression. check-in: 22e7b78dce user: stephan tags: brotli-compress | |
| 20:26 | Add a basic auto.def check for brotli compression support. The eventual goal of this branch is to add support for brotli-compressed http responses. check-in: a90221b3ae user: stephan tags: brotli-compress | |
| 18:49 | Try to avoid false-positive hung backoffice warnings from appearing in the error log. check-in: 6f1c7324b6 user: drh tags: trunk | |
| 12:28 | Minor tweaks to backoffice - mostly comment typo fixes. check-in: a46e128c3f user: drh tags: trunk | |
|
2025-03-30
| ||
| 23:25 | More details on the g.zPhase markings for backoffice processing, to help track down reports of hung backoffice processes that appear in the error log from time to time. check-in: cd532394c6 user: drh tags: trunk | |
| 23:11 | Slightly stronger detection of XSS attacks. Mostly this is rewording of comments to better explain how the anti-attack logic works. check-in: 8612122f50 user: drh tags: trunk | |
| 22:28 | Improved detection of XSS and SQL injection attacks. check-in: 5a33f30750 user: drh tags: trunk | |
| 21:04 | Clean up the description of the background color adjustments in the change log. check-in: 1c0f93e13f user: drh tags: trunk | |
| 18:40 | Update the help text for "fossil branch new" to make it clear that the preferred idiom for branch creation in Fossil is to use the --branch option on the "fossil commit" command. check-in: 1869b58580 user: drh tags: trunk | |
| 17:02 | show previous ticket comments for [/tktview/3bcacd36ff|ticket: Show ticket history on ticket edit page] check-in: ff009a8f0e user: jkosche tags: tkt-improvements | |
| 15:54 | improve navigation of tktsetup-subpages check-in: f5619ef3e0 user: jkosche tags: tkt-improvements | |
| 11:18 | Replaced the mention of "fossil branch new" in the Quick Start doc with a link to the section of the gitusers doc which explains why this is not the recommended way of working with Fossil. Both options remain documented, but now we bring Git expats to the place where many of their _other_ questions are most likely to be answered. check-in: f04b61f7e1 user: wyoung tags: trunk | |
| 11:08 | Expanded the "Starting A New Project" section of the Quick Start doc to cover the next few common steps. Also updated the "fossil version" example above it to the current release version to keep the doc from looking *too* outdated. check-in: 4f42caee47 user: wyoung tags: trunk | |
| 09:51 | Update documentation for the /test_env to /test-env change. check-in: 5df726ab25 user: drh tags: trunk | |
|
2025-03-29
| ||
| 16:00 | Initialize the $title and $login variable for TH1 used during header/footer generation to a similar string that has characters that are special to HTML escaped to similar-looking unicode characters. This is an defense against XSS attacks that might otherwise result due to errors in a custom skin where the $title variable is misused. check-in: 5ea6e15bf1 user: drh tags: trunk | |
| 15:10 | Change the name of the /test_env page to /test-env for consistency. The old name is retained as an alias for backwards compatibility. check-in: caf286d748 user: drh tags: trunk | |
| 10:55 | Add comments with usage hints to the tools/find-fossil-cgis.tcl script. check-in: e8f3f411a5 user: drh tags: trunk | |
| 10:44 | New command-line options for find-fossil-cgis.tcl: --print, --symlink, and -v. check-in: 609f885a02 user: drh tags: trunk | |
| 00:22 | Add the --has and --hasnot options to the find-fossil-cgis.tcl script. check-in: ccb7cc4ecd user: drh tags: trunk | |
| 00:15 | (Typo) correction to www/changes.wiki. check-in: 71e1ef3384 user: brickviking tags: trunk | |
| 00:04 | Add the utility script tools/find-fossil-cgis.tcl. check-in: f8fe5be2c3 user: drh tags: trunk | |
|
2025-03-28
| ||
| 23:28 | Merge from trunk. check-in: 13c9f74bc8 user: brickviking tags: bv-infotool | |
| 23:27 | Tweaks to makeinfo script. check-in: 7bd0ad7a81 user: brickviking tags: bv-infotool | |
| 17:15 | If compiled with -DFOSSIL_PENTEST and if "<BUG>" appears anywhere in HTML output, or if "BUG" appears anywhere in SQL, then a panic is generated. Leaf check-in: 9ceb5ff869 user: drh tags: pentest | |
| 16:47 | Document parameters 'from' and 'to' for /reports. check-in: a584f75ff8 user: danield tags: trunk | |
| 14:47 | Fix a ULARGE_INTEGER struct initialization warning on Windows. check-in: 1f0adaa7fd user: stephan tags: trunk | |
| 14:43 | Fix a ULARGE_INTEGER struct initialization warning on Windows. (Edit: moving to mistake branch because msys changed the exec bits of many files.) Closed-Leaf check-in: 263acf1668 user: stephan tags: mistake | |
| 13:22 | Add a checkbox to the /setup_timeline page to control the raw-bgcolor setting. check-in: 620e1e0fc4 user: drh tags: trunk | |
| 12:56 | Attempt to fix the graph CSS for the Xekri skin. check-in: d176fea43e user: drh tags: trunk | |
| 12:20 | Improve the background color adjustment algorithm so that colors that are further out of range receive a proportionally greater adjustment. Also expand the range of allowed colors, slightly. check-in: 9d2e0d0802 user: drh tags: trunk | |
| 10:11 | Merge from trunk. check-in: f60a7ed291 user: brickviking tags: bv-infotool | |
| 00:17 | Add a new category of error log messages: SQLITE_AUTH and similar. check-in: bc8e936abf user: drh tags: trunk | |
|
2025-03-27
| ||
| 23:35 | Update the built-in SQLite to the latest trunk version for testing. check-in: da34b906ed user: drh tags: trunk | |