Many hyperlinks are disabled.
Use anonymous login
to enable hyperlinks.
49 events for the month beginning 2022-12-01
Following month ↑|
2022-12-31
| ||
| 18:51 | Fix another case where PROTECT_READONLY needs to be relaxed even though the request not from the same origin. ... (check-in: 03e21b9c user: drh tags: trunk) | |
| 12:21 | Fix stray character in the change log. ... (check-in: fbcd9a77 user: drh tags: trunk) | |
| 12:16 | Fix more cases where updates to the SUBSCRIBER table should be allowed to occur even if not a request from the same origin. ... (check-in: f33976f7 user: drh tags: trunk) | |
|
2022-12-30
| ||
| 22:18 | Correct mis-pluralization of 'new ticketss' in the timeline, per report in forum post e711cb860a. ... (check-in: 7c2c4457 user: stephan tags: trunk) | |
| 21:12 | Improved comment on the db_obscure() routine. No functional code changes. ... (check-in: aa1a0b31 user: drh tags: trunk) | |
| 21:06 | • Changes to wiki page "To Do List" ... (artifact: b114ac45 user: drh) | |
| 20:54 | Security enhancement: Do not store the passwords for remote URLs directly, but instead store the sha1_shared_secret() encoding of those passwords. It is the SHA1 encoding that gets transmitted to the server anyhow, so we might as well just store that. The SHA1 encoding cannot be used to log in. The password is still protected using obscure() even though it is now a SHA1 hash. ... (check-in: 41ba6ea7 user: drh tags: trunk) | |
| 16:32 | Show the parent-project-* CONFIG entries (if they exist) with the "fossil remote config-data" command. When parsing a URL, if the URL comes from the CONFIG table, remember the CONFIG table entry that supplied the password. ... (check-in: 6d0083ad user: drh tags: trunk) | |
| 12:26 | Fix minor typos in the diff source code. ... (check-in: 4e169542 user: drh tags: trunk) | |
| 11:53 | If there is a need to do lazy updates of the full text index during a request that is not from the same origin, then allow database writes for the duration of that update. Also, allow changes to USER and CONFIG tables when explicitly authorized by db_unprotect() even if the request that prompted the change is not from the same origin. ... (check-in: 8e85d6ca user: drh tags: trunk) | |
|
2022-12-29
| ||
| 21:09 | All writes to the subscriber table to update the last contact time even if the request is not from the same origin. ... (check-in: db162628 user: drh tags: trunk) | |
| 20:51 | • Changes to wiki page "To Do List" ... (artifact: 299d4878 user: drh) | |
| 20:09 | Improved comments on the SQL protection subsystem. ... (check-in: 0aa3483f user: drh tags: trunk) | |
| 19:49 | Only apply the PROTECT_READONLY restriction to the "repository", "configdb", and "localdb" database files. ... (check-in: b4e00621 user: drh tags: trunk) | |
| 19:39 | Fix the new read-only-repo security mechanism so that it enables write access when necessary. ... (check-in: f8363db8 user: drh tags: trunk) | |
| 18:56 | Add messages to the error log if the authorizer blocks an SQL statement for security reasons. This change requires a bug fix in SQLite and so it also includes the latest trunk version of SQLite. ... (check-in: 3d8bb63a user: drh tags: trunk) | |
| 17:00 | Make the repository database read-only if an HTTP request is not from the same origin. This is not required for security. It is just an extra layer of defense. ... (check-in: 7c71f00a user: drh tags: trunk) | |
|
2022-12-25
| ||
| 16:17 | A minor fix to the previous check-in. ... (check-in: abfec4dd user: george tags: trunk) | |
| 14:24 | Use URI extensions rather than name= query parameters on key ticket hyperlinks. ... (check-in: 5f22b960 user: drh tags: trunk) | |
|
2022-12-21
| ||
| 12:07 | Change spelling for check-in, check-out, and related words. ... (check-in: bc36fdcf user: danield tags: trunk) | |
| 11:52 | Merge in help consistency improvements. ... (Closed-Leaf check-in: 526b0a54 user: danield tags: check-in-spelling) | |
| 09:43 | • Edit [de684083c6ab2ef6|de684083]: Mark "Closed". ... (artifact: b400813c user: km) | |
| 09:31 | Improved consistency for --help option descriptions. ... (check-in: 2e56ef4e user: km tags: trunk) | |
| 09:00 | Improved consistency for --help option descriptions: begin with uppercase letter; do not use a period at the end of short-ish sentences. ... (Closed-Leaf check-in: de684083 user: km tags: spelling-fixes) | |
|
2022-12-20
| ||
| 14:55 | • Changes to wiki page "To Do List" ... (artifact: 11b3eb2c user: stephan) | |
| 14:21 | A couple of corrections to the [2213a0eb2d413f|previous /secaudit0 addition]. ... (check-in: 43601b3d user: george tags: trunk) | |
| 09:53 | Correct a small bit of internal-doc misinformation reported in forum post 9ed20acf6a. ... (check-in: dd67906c user: stephan tags: trunk) | |
| 09:46 | Change spelling for check-in and similar ... (check-in: d9c4321e user: danield tags: check-in-spelling) | |
| 05:14 | Move TH1/Tcl settings into their own configsets. ... (Leaf check-in: 5d784cf3 user: mistachkin tags: cfgSetTh1) | |
| 05:00 | Unbreak MinGW build to account for deletions in zlib 1.2.13. ... (check-in: a24a790f user: mistachkin tags: trunk) | |
| 02:01 | Make /secaudit0 page aware of the Tcl integration opportunities. ... (check-in: 2213a0eb user: george tags: trunk) | |
|
2022-12-19
| ||
| 13:06 | • Changes to wiki page "To Do List" ... (artifact: c257e2c3 user: stephan) | |
|
2022-12-16
| ||
| 21:47 | Updated the macOS sidebar in the backups.md doc to cover Ventura. ... (check-in: a55042a0 user: wyoung tags: trunk) | |
|
2022-12-15
| ||
| 16:19 | Re-add zlib link flags inadvertently removed via the new --disable-sockets flag. ... (Leaf check-in: 613834f6 user: stephan tags: optional-sockets) | |
| 15:50 | Add support for disabling sockets in auto.def. This is not wired up to anything else yet. ... (check-in: d8609e1e user: js tags: optional-sockets) | |
| 15:39 | Update the built-in SQLite to the latest 3.41.0 alpha that includes various query planner enhancements. This is done in order to test the enhancements to SQLite, to help ensure that they are working correctly in a real-world application. ... (check-in: 7010ce23 user: drh tags: trunk) | |
|
2022-12-14
| ||
| 13:03 | Fix help text for the 'artifact' command. ... (check-in: 98b80e42 user: danield tags: trunk) | |
|
2022-12-12
| ||
| 16:12 | Add support for omitting some ticket events from the default timeline view. Filtering is defined by the 'ticket-hidden-expr' option added to the /tktsetup_timeline page. Filtering is bypassed if this expression is unset or if the "Unhide" checkbox (at the timeline's submenu) is checked. See forum thread 4c49b2ad661c for discussion. ... (Leaf check-in: 452805c2 user: george tags: tkt-hidden-expr) | |
|
2022-12-07
| ||
| 17:39 | Merge enhancements to file labels in Tk diff frontend ... (check-in: f7c0657b user: Torsten tags: trunk) | |
| 12:33 | Rebuid pikchr.wasm/js for latest pikchr.c. ... (check-in: ec6cb37a user: stephan tags: trunk) | |
| 11:17 | Update to the latest pikchr.c sources. (pikchr.wasm is not updated.) ... (check-in: 544eefd7 user: drh tags: trunk) | |
|
2022-12-06
| ||
| 06:13 | Grammar and spelling fix pass on the new nspawn material in the containers doc. ... (check-in: 5405aa57 user: wyoung tags: trunk) | |
|
2022-12-05
| ||
| 03:39 | Update the built-in SQLite to the latest 3.41.0 alpha with the query planner tuning enhancements, as a beta-test of SQLite looking for performance regressions. ... (check-in: 4ddd8847 user: drh tags: trunk) | |
|
2022-12-03
| ||
| 13:17 | Typo fixes ... (check-in: 00e4d91e user: wyoung tags: trunk) | |
| 11:55 | Assorted prose polishing in the new systemd-container section at the end of the containers doc. ... (check-in: 120a2076 user: wyoung tags: trunk) | |
| 11:37 | Added a few more "container-*" targets to the main makefile to simplify the examples in the containers doc and make the resulting images and containers easier to manage. ... (check-in: b7edb5f1 user: wyoung tags: trunk) | |
|
2022-12-02
| ||
| 23:14 | Merged two redundant discussions of the consequences of disabling private network virtualization under systemd-container infrastructure, then added better reasons why the reader might care. ... (check-in: 70554336 user: wyoung tags: trunk) | |
| 15:27 | new branch for enhancements to Tk diff frontend: labeling of file origin (version, repo, working file etc.) in the left and right pane header ... (Leaf check-in: c90ee4bf user: Torsten tags: diff-tk-frontend) | |
|
2022-12-01
| ||
| 00:14 | Updates to the systemd service doc, primarily to refer the reader to the new containerized runner methods, but also to add other tips. ... (check-in: ad09d3ee user: wyoung tags: trunk) | |