Fossil

Timeline
Login

Many hyperlinks are disabled.
Use anonymous login to enable hyperlinks.

110 check-ins using file src/main.c version 9a52a07b52

2017-09-21
09:56
(cherry-pick): Correct /doc webpage in the case of a read-only database containing a vcache table lacking the desired vid ... (Closed-Leaf check-in: 1fdcb20707 user: jan.nijtmans tags: branch-2.3)
2017-09-11
16:44
Restore the --no-dir-symlinks option. ... (Closed-Leaf check-in: aff4363d1c user: mistachkin tags: no-dir-symlinks)
2017-09-08
09:05
(cherry-pick): Correct handling of mtime updates for UV push. (cherry-pick): Moved the check for iconv(3) in -liconv up within auto.def. If it happens after the checks for OpenSSL on certain macOS configurations, autosetup can be fooled into believing it doesn't need -liconv on that platform. This checkin splits up the group of cc-check-functions calls, so the moved call is now documented as to why its segregated. ... (check-in: 746668d58b user: jan.nijtmans tags: branch-2.3)
2017-08-29
07:58
(cherry-pick): SQLite version 3.20.1 (cherry-pick): Remove an unused global variable from the path_shortest() logic ... (check-in: ae8709e2fc user: jan.nijtmans tags: branch-2.3)
07:50
SQLite version 3.20.1 ... (check-in: ffc252a663 user: jan.nijtmans tags: trunk)
2017-08-28
14:04
Update dirent to version 1.23. See [https://github.com/tronkko/dirent/releases] ... (check-in: ade4a657dc user: jan.nijtmans tags: trunk)
2017-08-24
19:30
Remove an unused global variable from the path_shortest() logic. ... (check-in: 084690e772 user: drh tags: trunk)
14:20
Typo fixes thanks to rosscanning, ref [http://www.mail-archive.com/fossil-users@lists.fossil-scm.org/msg25775.html] ... (check-in: f98852a0df user: andygoth tags: trunk)
2017-08-23
18:53
(cherry-pick): Remove a redundant directory separator character from the temporary filenames generated on windows. (cherry-pick): Change the file_mkfolder() implementation to assume that the folder already exists and only go about creating it and its path if it does not previously exit. ... (check-in: adacbfbcfb user: jan.nijtmans tags: branch-2.3)
17:53
Change the file_mkfolder() implementation to assume that the folder already exists and only go about creating it and its path if it does not previously exit. ... (check-in: 92ea61837e user: drh tags: trunk)
17:38
Remove a redundant directory separator character from the temporary filenames generated on windows. ... (check-in: b5f0d70362 user: drh tags: trunk)
17:29
Add the test-tempname command for testing the file_tempname() routine. ... (check-in: f1d23f04c0 user: drh tags: trunk)
17:28
Fix build (previous cherry-pick was not complete) (cherry-pick): For temporary filename paths on Windows, changes all backslash characters into forward slashes, so that the new enhanced-security shell escape mechanism from check-in [3b191c98] can use those temporary filenames. ... (check-in: dbda6e2a5d user: jan.nijtmans tags: branch-2.3)
17:18
For temporary filename paths on Windows, changes all backslash characters into forward slashes, so that the new enhanced-security shell escape mechanism from check-in [3b191c98] can use those temporary filenames. ... (check-in: e474c177df user: drh tags: trunk)
11:05
Add the --details option to the test-find-pivot command. ... (check-in: 9e48dad49b user: drh tags: trunk)
2017-08-22
09:46
(cherry-pick): Use SQLite 3.20.0 final ... (check-in: 7eebec15bd user: jan.nijtmans tags: branch-2.3)
09:44
(cherry-pick): Fix the SSH sync protocol to avoid "ssh" command-line option injection attacks such as those fixed in Git 2.14.1, Mercurial 4.2.3, and Subversion 1.9.7. As "ssh://" URLs cannot be buried out of sight in Fossil, the vulnerability does not appear to be as severe as in those other systems. (cherry-pick): Enhance the ssh:// URL to be cautious about the fossil= query parameter. Only commands "fossil" and "echo" (with an optional path) are accepted. ... (check-in: 1f18d23d76 user: jan.nijtmans tags: branch-2.3)
2017-08-21
12:18
Use SQLite 3.20.0 final (source_id change only) ... (check-in: 810dd031ec user: jan.nijtmans tags: trunk)
2017-08-12
18:47
Enhance the ssh:// URL to be cautious about the fossil= query parameter. Only commands "fossil" and "echo" (with an optional path) are accepted. ... (check-in: cb43937d8c user: drh tags: trunk)
18:34
Also disallow wildcard characters in blob_append_escape_arg(). ... (check-in: d5b015946d user: drh tags: trunk)
18:30
Disallow the ';' character in blob_append_escape_arg(). ... (check-in: 3bbac57534 user: drh tags: trunk)
18:24
Fix another problem with the needEscape computation in blob_append_escaped_arg() ... (check-in: 9eea719af6 user: drh tags: trunk)
18:22
The windows test macro is "_WIN32" without a trailing "_". ... (check-in: 49ae1785a6 user: drh tags: trunk)
18:20
Fix the needEscape calculation in blob_append_escaped_arg(). ... (check-in: 9690d370e0 user: drh tags: trunk)
18:15
Change the shell_escape() procedure into blob_append_escaped_arg(). Have that procedure raise a fatal error if the argument to be appended contains dodgy characters that might pose a security risk. Also, prepend "./" in front of arguments that begin with "-" to prevent them from looking like switches. ... (check-in: 3b191c984b user: drh tags: trunk)
16:20
Avoid another attack vector when using SSH sync protocol by not calling a shell interpreter. Fixes only Unix-like environments by using execvp() instead of a string that can be mishandled by /bin/sh. Superseded by [3b191c984b] &co. ... (Closed-Leaf check-in: ce7baa9798 user: andybradford tags: ssh-shell-cleanup)
04:19
Typo correction ... (check-in: 45a3d4b167 user: andygoth tags: trunk)
2017-08-11
16:00
Increase the version number to 2.4 and update the change log. ... (check-in: 3ebbe7bcaa user: drh tags: trunk)
15:29
Fix the SSH sync protocol to avoid "ssh" command-line option injection attacks such as those fixed in Git 2.14.1, Mercurial 4.2.3, and Subversion 1.9.7. As "ssh://" URLs cannot be buried out of sight in Fossil, the vulnerability does not appear to be as severe as in those other systems. ... (check-in: 1f63db591c user: drh tags: trunk)
2017-08-07
20:22
Hyperlinks to the SSL versions of the website. Redirect to the local unversioned source for the "precompiled binaries" link on the homepage. ... (check-in: b130b64cb4 user: drh tags: trunk)
2017-08-06
23:48
Restore end-of-line spaces used to demonstrate mid-paragraph line break in markdown.md. The spaces were removed by [23895c7b99] which appeared to clean house on end-of-line whitespace in addition to its documented purpose. ... (check-in: 1e491f6cc5 user: andygoth tags: trunk)
23:32
Document Markdown tables (never knew this feature existed), and improve consistency of formatting ... (check-in: 6f69ccdc69 user: andygoth tags: trunk)
2017-08-05
04:17
Enable processing of versioned manifest setting when creating zips and tarballs outside of an open checkout directory ... (check-in: da23bec780 user: andygoth tags: trunk)
03:45
Simplify manifest generation logic in zip page ... (check-in: b9de60427a user: andygoth tags: trunk)
03:23
Correct the /doc page to support read-only repositories ... (check-in: 95edba6534 user: andygoth tags: trunk)
2017-07-31
17:42
Update the built-in SQLite to the 4th release candidate for 3.20.0. ... (check-in: 2a615bed11 user: drh tags: trunk)
2017-07-28
19:41
(cherry-pick): Fix a problem with markdown rendering for "code". ... (check-in: dad3706248 user: jan.nijtmans tags: branch-2.3)
18:41
Fix a problem with markdown rendering for "code". ... (check-in: 04de083ec8 user: drh tags: trunk)
00:49
Update the built-in SQLite to the 3rd 3.20.0 release candidate. ... (check-in: 8ffba76b73 user: drh tags: trunk)
2017-07-25
15:38
Better error checking in the mkversion utility program used during the build process. ... (check-in: 8b9ce19e38 user: drh tags: trunk)
14:38
Update the selfhosting information to talk about the new www3.fossil-scm.org. ... (check-in: 5698492fbb user: drh tags: trunk)
2017-07-24
14:26
Update the built-in SQLite to the second 3.20.0 release candidate. ... (check-in: c45b8f4534 user: drh tags: trunk)
2017-07-21
04:22
Improve UI based test documentation with minor corrections to requirements and URLs. ... (check-in: 0a2be0648b user: andybradford tags: trunk)
03:19
Version 2.3 - the 10th anniversary release ... (check-in: f7914bfdfa user: drh tags: trunk, release, version-2.3)
2017-07-20
18:25
Fixed commit-warning.test broken by addition of the bootstrap skin which includes a file with long lines that generated a new warning. ... (check-in: ae83b2137f user: rberteig tags: trunk)
2017-07-15
13:55
Update the built-in SQLite to the first 3.20.0 release candidate. ... (check-in: 4872a58be2 user: drh tags: trunk)
2017-07-14
20:47
Mention support for HTML-style comments in Markdown reference ... (check-in: bfc29fb372 user: andygoth tags: trunk)
2017-07-13
10:24
merge trunk ... (check-in: 548fabe73c user: jan.nijtmans tags: openssl-1.1)
10:22
Update top OpenSSL 1.0.2l. Minor (harmless) compiler warnings in mkversion and codecheck1 (-Wall) ... (check-in: 23895c7b99 user: jan.nijtmans tags: trunk)
2017-07-12
18:55
Remove an unused variable from the security audit webpage. ... (check-in: 7c0b971437 user: drh tags: trunk)
18:34
Reword the header to the /fileage page to avoid disputes of commas. ... (check-in: 74bc515d36 user: drh tags: trunk)
18:08
Update to the latest SQLite from upstream and make other changes, all to silence a few utterly harmless compiler warnings about incompletely initialized structures. ... (check-in: 2f225b821f user: drh tags: trunk)
16:57
Be careful not to return a pointer to a webpage generator as a command-line command method. ... (check-in: 38df2a4544 user: drh tags: trunk)
11:03
merge trunk (without SQLite update to 3.20.0 beta, but WITH support for tab-completion in the SQL shell) ... (Closed-Leaf check-in: 107cfe0204 user: jan.nijtmans tags: fossil-2.3-with-older-SQLite)
03:02
Fix a typo on the security audit webpage. ... (check-in: 35f712d4d8 user: drh tags: trunk)
02:49
More documentation about what the --verbose flag does for "fossil info". ... (check-in: 9167b2d64a user: drh tags: trunk)
2017-07-11
14:35
Update the built-in SQLite to the latest 3.20.0 beta, including support for tab-completion in the SQL shell. ... (check-in: a314178a81 user: drh tags: trunk)
2017-07-10
18:19
A minor fix for the Xekri Skin ... (check-in: b1a7527b73 user: zakero tags: trunk)
18:12
Fixed a mouseover problem in the Xekri skin that was found by Jungle Boogie. ... (Closed-Leaf check-in: 773f9ba75c user: zakero tags: skin-xekri-fileage-fix)
14:37
test-markdown-render and test-wiki-render command don't require to be inside a checkout. ... (check-in: 1ba3c91994 user: mgagnon tags: trunk)
2017-07-09
00:51
Document italic+bold Markdown ... (check-in: 9e67b8ab23 user: andygoth tags: trunk)
2017-07-08
20:42
Improve built-in Markdown reference documentation to describe more features I long wished Markdown had but just now discovered it already does ... (check-in: 3bfdafe4aa user: andygoth tags: trunk)
13:35
An empty username on a U card is translated into "anonymous". ... (check-in: 23d45ff9ce user: drh tags: trunk)
11:01
In the "last change" report, show the user as "anonymous" if the EVENT.USER field is NULL or an empty string. (Later:) Removed from trunk because a better solution is to not store empty strings in the EVENT.USER field in the first place. ... (Closed-Leaf check-in: 970adec0fe user: drh tags: mistake)
2017-07-07
19:18
Avoid appending to g.zPath inside doc_page() loop. Instead, wait until the loop is done to modify g.zPath. When doing a directory lookup, the check-in and directory name were being repeatedly appended to g.zPath each step through the list of possible filename suffixes. This corrupted <base href> should index.html not exist, which in turn broke relative URLs. ... (check-in: 956d4901a9 user: andygoth tags: trunk)
12:59
Merge trunk. Upgrade to OpenSSL 1.1.0f. Note that this branch only adapts the Windows buildfiles, no source-code or anything else, since Openssl 1.1.0 is (almost, not significant for fossil) upwards compatible. ... (check-in: 4a516fb72c user: jan.nijtmans tags: openssl-1.1)
2017-07-06
15:32
Fix typo in auto.def Merge trunk ... (check-in: 10c7e0fcea user: jan.nijtmans tags: fossil-2.3-with-older-SQLite)
2017-07-05
13:00
In the timeline graph rendering code, hard-code the topRow value in the generated javascript. ... (check-in: e76f3bbe45 user: drh tags: trunk)
12:33
Fix timeline rendering so that multiple timelines can be drawn on each page without interferring with one another. Move the "Referenced By" section of the /info page upward and rename it as "References". Added the /test-backlink page for showing all pages that contain references. ... (check-in: ba3444327f user: drh tags: trunk)
11:12
Add the "Referenced By" section to the /info page. ... (check-in: fae745cf0f user: drh tags: trunk)
2017-07-04
16:02
On the /urllist page, stop the display of access URLs after at least 8 have been shown and the last access is more than 30 days ago. Except, show them all if the "all" query parameter is used. ... (check-in: 9d7ef44fb6 user: drh tags: trunk)
13:11
Do not send the message body on an HTTP reply to a HEAD request. ... (check-in: 5826ba37ac user: drh tags: trunk)
04:36
Add the "bootstrap" skin. ... (check-in: f57f5f99b9 user: drh tags: trunk)
2017-07-03
23:18
Do not show checkouts with the "info -v" command or in the /urllist webpage if the checkout does not appear to exist any more. ... (check-in: c666579cf5 user: drh tags: trunk)
20:04
Add a pre-packaged CONFIG table query to the administrator SQL interface. ... (check-in: 6a679311bb user: drh tags: trunk)
19:07
On the text descriptions of the various administrator settings, identify the property in the CONFIG table that is being modified. ... (check-in: 3ca935ef55 user: drh tags: trunk)
13:54
On the server.wiki page, point to the source code comments that describe the various CGI options. ... (check-in: a8910101c3 user: drh tags: trunk)
13:48
On the server.wiki page, point to the source code comments that describe the various CGI options. ... (Closed-Leaf check-in: d407e22fed user: drh tags: security-risk)
11:26
On the /test_env page, show the AUTH_CONTENT and AUTH_TYPE environment variables in "cookie" mode. - On second thought, better to not show these, since they can expose passwords on screen. ... (check-in: d28cb283f3 user: drh tags: security-risk)
10:36
Suggestion for 2.3 release: Eliminate the need for SQLITE_PREPARE_PERSISTENT, which makes fossil work with SQLite 3.19.3. ... (check-in: 1eab060a84 user: jan.nijtmans tags: fossil-2.3-with-older-SQLite)
09:31
Update changes.wiki. Some eol-spacing ... (check-in: 86d4754a7a user: jan.nijtmans tags: trunk)
2017-07-02
18:22
On the /test_env page, report the values of the REMOTE_USER and HTTP_AUTHENTICATION environment variables, if they exist. ... (check-in: 4207a04072 user: drh tags: trunk)
2017-07-01
22:43
Fix a minor problem with Write-Unver reporting on the security audit report. ... (check-in: 5c999558ff user: drh tags: trunk)
22:38
Add the cgi_referer() utility function. Use it to cause the setup_uedit page to always go back to the page it came from. ... (check-in: 59a51b8267 user: drh tags: trunk)
22:17
More checking of user permissions on the Security Audit page. ... (check-in: 564e42dfe5 user: drh tags: trunk)
19:36
Update the change log to mention recent enhancements. ... (check-in: 8fe2f97ea1 user: drh tags: trunk)
18:09
Improvements to the "Last Change" report. ... (check-in: 1dc93b704f user: drh tags: trunk)
17:54
Add the "Last Change" activity report. ... (check-in: b629647e82 user: drh tags: trunk)
17:23
When computing the "Last Login" on the user list page, take the RCVFROM sync log into account. ... (check-in: 46d5d638b1 user: drh tags: trunk)
16:41
Prevent line breaks in the "Last Login" column of the user list. ... (check-in: 2fe385e4c3 user: drh tags: trunk)
16:34
Add the "Last Login" column to the setup_ulist page. ... (check-in: 5832d2fc60 user: drh tags: trunk)
03:08
Typo fix in documentation. ... (check-in: 38f37679d3 user: drh tags: trunk)
00:52
Improved wording on some of the security-audit warnings. ... (check-in: 752365e71f user: drh tags: trunk)
00:51
More security-audit checks. ... (check-in: 4253b1de6b user: drh tags: trunk)
2017-06-30
19:59
Add the --numstat option to the diff command. ... (check-in: 3d6cf6a722 user: drh tags: trunk)
19:00
Report an error if the input file to "fossil import" cannot be opened. ... (check-in: 038dcc00e5 user: drh tags: trunk)
18:56
Fix the zlib Makefile for MSVC to use /MT to avoid a compiler warning. ... (check-in: 0f8bae079e user: drh tags: trunk)
18:42
Fix the unix makefile so that the dependency on page_index.h is against dispatch.c not main.c. ... (check-in: 4c17ab60b9 user: drh tags: trunk)
18:28
New security audit checks. ... (check-in: 6c543c0308 user: drh tags: trunk)
16:18
Add the Security-Audit page. There is more work to be done here, but it is now at least partially functional. ... (check-in: 02683077f4 user: drh tags: trunk)
16:13
Many new permission checks for the security-audit page. ... (Closed-Leaf check-in: c12ffe2ce1 user: drh tags: security-audit)
15:17
Start the security audit by checking to see if the repos it public or private. ... (check-in: 7f29e2640a user: drh tags: security-audit)
14:10
Fossil now needs at least SQLite 3.20.0 (beta) ... (check-in: 1c1d4ed21a user: jan.nijtmans tags: trunk)
13:36
Add a stub for the Security Audit page. ... (check-in: c550402982 user: drh tags: security-audit)
2017-06-29
19:59
Enable the STMT virtual table so that it available in the "fossil sql" command. ... (check-in: 960b9dc0d4 user: drh tags: trunk)
19:05
Make use of the new sqlite3_prepare_v3() interface and the SQLITE_PREPARE_PERSISTENT flag in SQLite. ... (check-in: 11c46fd6aa user: drh tags: trunk)
18:54
Update the built-in SQLite to the latest from upstream. ... (check-in: ee71f347ee user: drh tags: trunk)
06:29
Make the command-line timeline behave more like the timeline page by handling dates before resolving to symbolic rid which might actually not meet the "before" or "after" criteria. Bug reported by Roy Keene: timeline output always included a timeline entry which happened to be before the "after" date indicated. ... (check-in: 048738b282 user: andybradford tags: trunk)
2017-06-24
16:28
Fixed "integer constant is too large for long type" warning on 32-bit Linux ... (check-in: caf2681720 user: andygoth tags: trunk)
13:59
Increase the stack size limit to 8MB. Disable stack and heap size limits prior to invoking subprocesses. ... (check-in: 3f193ba610 user: drh tags: trunk)