Many hyperlinks are disabled.
Use anonymous login
to enable hyperlinks.
110 check-ins using file src/main.c version 9a52a07b
2017-09-21
| ||
09:56 | (cherry-pick): Correct /doc webpage in the case of a read-only database containing a vcache table lacking the desired vid ... (Closed-Leaf check-in: 1fdcb207 user: jan.nijtmans tags: branch-2.3) | |
2017-09-11
| ||
16:44 | Restore the --no-dir-symlinks option. ... (Closed-Leaf check-in: aff4363d user: mistachkin tags: no-dir-symlinks) | |
2017-09-08
| ||
09:05 | (cherry-pick): Correct handling of mtime updates for UV push. (cherry-pick): Moved the check for iconv(3) in -liconv up within auto.def. If it happens after the checks for OpenSSL on certain macOS configurations, autosetup can be fooled into believing it doesn't need -liconv on that platform. This checkin splits up the group of cc-check-functions calls, so the moved call is now documented as to why its segregated. ... (check-in: 746668d5 user: jan.nijtmans tags: branch-2.3) | |
2017-08-29
| ||
07:58 | (cherry-pick): SQLite version 3.20.1 (cherry-pick): Remove an unused global variable from the path_shortest() logic ... (check-in: ae8709e2 user: jan.nijtmans tags: branch-2.3) | |
07:50 | SQLite version 3.20.1 ... (check-in: ffc252a6 user: jan.nijtmans tags: trunk) | |
2017-08-28
| ||
14:04 | Update dirent to version 1.23. See https://github.com/tronkko/dirent/releases ... (check-in: ade4a657 user: jan.nijtmans tags: trunk) | |
2017-08-24
| ||
19:30 | Remove an unused global variable from the path_shortest() logic. ... (check-in: 084690e7 user: drh tags: trunk) | |
14:20 | Typo fixes thanks to rosscanning, ref http://www.mail-archive.com/fossil-users@lists.fossil-scm.org/msg25775.html ... (check-in: f98852a0 user: andygoth tags: trunk) | |
2017-08-23
| ||
18:53 | (cherry-pick): Remove a redundant directory separator character from the temporary filenames generated on windows. (cherry-pick): Change the file_mkfolder() implementation to assume that the folder already exists and only go about creating it and its path if it does not previously exit. ... (check-in: adacbfbc user: jan.nijtmans tags: branch-2.3) | |
17:53 | Change the file_mkfolder() implementation to assume that the folder already exists and only go about creating it and its path if it does not previously exit. ... (check-in: 92ea6183 user: drh tags: trunk) | |
17:38 | Remove a redundant directory separator character from the temporary filenames generated on windows. ... (check-in: b5f0d703 user: drh tags: trunk) | |
17:29 | Add the test-tempname command for testing the file_tempname() routine. ... (check-in: f1d23f04 user: drh tags: trunk) | |
17:28 | Fix build (previous cherry-pick was not complete) (cherry-pick): For temporary filename paths on Windows, changes all backslash characters into forward slashes, so that the new enhanced-security shell escape mechanism from check-in [3b191c98] can use those temporary filenames. ... (check-in: dbda6e2a user: jan.nijtmans tags: branch-2.3) | |
17:18 | For temporary filename paths on Windows, changes all backslash characters into forward slashes, so that the new enhanced-security shell escape mechanism from check-in [3b191c98] can use those temporary filenames. ... (check-in: e474c177 user: drh tags: trunk) | |
11:05 | Add the --details option to the test-find-pivot command. ... (check-in: 9e48dad4 user: drh tags: trunk) | |
2017-08-22
| ||
09:46 | (cherry-pick): Use SQLite 3.20.0 final ... (check-in: 7eebec15 user: jan.nijtmans tags: branch-2.3) | |
09:44 | (cherry-pick): Fix the SSH sync protocol to avoid "ssh" command-line option injection attacks such as those fixed in Git 2.14.1, Mercurial 4.2.3, and Subversion 1.9.7. As "ssh://" URLs cannot be buried out of sight in Fossil, the vulnerability does not appear to be as severe as in those other systems. (cherry-pick): Enhance the ssh:// URL to be cautious about the fossil= query parameter. Only commands "fossil" and "echo" (with an optional path) are accepted. ... (check-in: 1f18d23d user: jan.nijtmans tags: branch-2.3) | |
2017-08-21
| ||
12:18 | Use SQLite 3.20.0 final (source_id change only) ... (check-in: 810dd031 user: jan.nijtmans tags: trunk) | |
2017-08-12
| ||
18:47 | Enhance the ssh:// URL to be cautious about the fossil= query parameter. Only commands "fossil" and "echo" (with an optional path) are accepted. ... (check-in: cb43937d user: drh tags: trunk) | |
18:34 | Also disallow wildcard characters in blob_append_escape_arg(). ... (check-in: d5b01594 user: drh tags: trunk) | |
18:30 | Disallow the ';' character in blob_append_escape_arg(). ... (check-in: 3bbac575 user: drh tags: trunk) | |
18:24 | Fix another problem with the needEscape computation in blob_append_escaped_arg() ... (check-in: 9eea719a user: drh tags: trunk) | |
18:22 | The windows test macro is "_WIN32" without a trailing "_". ... (check-in: 49ae1785 user: drh tags: trunk) | |
18:20 | Fix the needEscape calculation in blob_append_escaped_arg(). ... (check-in: 9690d370 user: drh tags: trunk) | |
18:15 | Change the shell_escape() procedure into blob_append_escaped_arg(). Have that procedure raise a fatal error if the argument to be appended contains dodgy characters that might pose a security risk. Also, prepend "./" in front of arguments that begin with "-" to prevent them from looking like switches. ... (check-in: 3b191c98 user: drh tags: trunk) | |
16:20 | Avoid another attack vector when using SSH sync protocol by not calling a shell interpreter. Fixes only Unix-like environments by using execvp() instead of a string that can be mishandled by /bin/sh. Superseded by [3b191c984b] &co. ... (Closed-Leaf check-in: ce7baa97 user: andybradford tags: ssh-shell-cleanup) | |
04:19 | Typo correction ... (check-in: 45a3d4b1 user: andygoth tags: trunk) | |
2017-08-11
| ||
16:00 | Increase the version number to 2.4 and update the change log. ... (check-in: 3ebbe7bc user: drh tags: trunk) | |
15:29 | Fix the SSH sync protocol to avoid "ssh" command-line option injection attacks such as those fixed in Git 2.14.1, Mercurial 4.2.3, and Subversion 1.9.7. As "ssh://" URLs cannot be buried out of sight in Fossil, the vulnerability does not appear to be as severe as in those other systems. ... (check-in: 1f63db59 user: drh tags: trunk) | |
2017-08-07
| ||
20:22 | Hyperlinks to the SSL versions of the website. Redirect to the local unversioned source for the "precompiled binaries" link on the homepage. ... (check-in: b130b64c user: drh tags: trunk) | |
2017-08-06
| ||
23:48 | Restore end-of-line spaces used to demonstrate mid-paragraph line break in markdown.md. The spaces were removed by [23895c7b99] which appeared to clean house on end-of-line whitespace in addition to its documented purpose. ... (check-in: 1e491f6c user: andygoth tags: trunk) | |
23:32 | Document Markdown tables (never knew this feature existed), and improve consistency of formatting ... (check-in: 6f69ccdc user: andygoth tags: trunk) | |
2017-08-05
| ||
04:17 | Enable processing of versioned manifest setting when creating zips and tarballs outside of an open checkout directory ... (check-in: da23bec7 user: andygoth tags: trunk) | |
03:45 | Simplify manifest generation logic in zip page ... (check-in: b9de6042 user: andygoth tags: trunk) | |
03:23 | Correct the /doc page to support read-only repositories ... (check-in: 95edba65 user: andygoth tags: trunk) | |
2017-07-31
| ||
17:42 | Update the built-in SQLite to the 4th release candidate for 3.20.0. ... (check-in: 2a615bed user: drh tags: trunk) | |
2017-07-28
| ||
19:41 | (cherry-pick): Fix a problem with markdown rendering for "code". ... (check-in: dad37062 user: jan.nijtmans tags: branch-2.3) | |
18:41 | Fix a problem with markdown rendering for "code". ... (check-in: 04de083e user: drh tags: trunk) | |
00:49 | Update the built-in SQLite to the 3rd 3.20.0 release candidate. ... (check-in: 8ffba76b user: drh tags: trunk) | |
2017-07-25
| ||
15:38 | Better error checking in the mkversion utility program used during the build process. ... (check-in: 8b9ce19e user: drh tags: trunk) | |
14:38 | Update the selfhosting information to talk about the new www3.fossil-scm.org. ... (check-in: 5698492f user: drh tags: trunk) | |
2017-07-24
| ||
14:26 | Update the built-in SQLite to the second 3.20.0 release candidate. ... (check-in: c45b8f45 user: drh tags: trunk) | |
2017-07-21
| ||
04:22 | Improve UI based test documentation with minor corrections to requirements and URLs. ... (check-in: 0a2be064 user: andybradford tags: trunk) | |
03:19 | Version 2.3 - the 10th anniversary release ... (check-in: f7914bfd user: drh tags: trunk, release, version-2.3) | |
2017-07-20
| ||
18:25 | Fixed commit-warning.test broken by addition of the bootstrap skin which includes a file with long lines that generated a new warning. ... (check-in: ae83b213 user: rberteig tags: trunk) | |
2017-07-15
| ||
13:55 | Update the built-in SQLite to the first 3.20.0 release candidate. ... (check-in: 4872a58b user: drh tags: trunk) | |
2017-07-14
| ||
20:47 | Mention support for HTML-style comments in Markdown reference ... (check-in: bfc29fb3 user: andygoth tags: trunk) | |
2017-07-13
| ||
10:24 | merge trunk ... (check-in: 548fabe7 user: jan.nijtmans tags: openssl-1.1) | |
10:22 | Update top OpenSSL 1.0.2l. Minor (harmless) compiler warnings in mkversion and codecheck1 (-Wall) ... (check-in: 23895c7b user: jan.nijtmans tags: trunk) | |
2017-07-12
| ||
18:55 | Remove an unused variable from the security audit webpage. ... (check-in: 7c0b9714 user: drh tags: trunk) | |
18:34 | Reword the header to the /fileage page to avoid disputes of commas. ... (check-in: 74bc515d user: drh tags: trunk) | |
18:08 | Update to the latest SQLite from upstream and make other changes, all to silence a few utterly harmless compiler warnings about incompletely initialized structures. ... (check-in: 2f225b82 user: drh tags: trunk) | |
16:57 | Be careful not to return a pointer to a webpage generator as a command-line command method. ... (check-in: 38df2a45 user: drh tags: trunk) | |
11:03 | merge trunk (without SQLite update to 3.20.0 beta, but WITH support for tab-completion in the SQL shell) ... (Closed-Leaf check-in: 107cfe02 user: jan.nijtmans tags: fossil-2.3-with-older-SQLite) | |
03:02 | Fix a typo on the security audit webpage. ... (check-in: 35f712d4 user: drh tags: trunk) | |
02:49 | More documentation about what the --verbose flag does for "fossil info". ... (check-in: 9167b2d6 user: drh tags: trunk) | |
2017-07-11
| ||
14:35 | Update the built-in SQLite to the latest 3.20.0 beta, including support for tab-completion in the SQL shell. ... (check-in: a314178a user: drh tags: trunk) | |
2017-07-10
| ||
18:19 | A minor fix for the Xekri Skin ... (check-in: b1a7527b user: zakero tags: trunk) | |
18:12 | Fixed a mouseover problem in the Xekri skin that was found by Jungle Boogie. ... (Closed-Leaf check-in: 773f9ba7 user: zakero tags: skin-xekri-fileage-fix) | |
14:37 | test-markdown-render and test-wiki-render command don't require to be inside a checkout. ... (check-in: 1ba3c919 user: mgagnon tags: trunk) | |
2017-07-09
| ||
00:51 | Document italic+bold Markdown ... (check-in: 9e67b8ab user: andygoth tags: trunk) | |
2017-07-08
| ||
20:42 | Improve built-in Markdown reference documentation to describe more features I long wished Markdown had but just now discovered it already does ... (check-in: 3bfdafe4 user: andygoth tags: trunk) | |
13:35 | An empty username on a U card is translated into "anonymous". ... (check-in: 23d45ff9 user: drh tags: trunk) | |
11:01 | In the "last change" report, show the user as "anonymous" if the EVENT.USER field is NULL or an empty string. (Later:) Removed from trunk because a better solution is to not store empty strings in the EVENT.USER field in the first place. ... (Closed-Leaf check-in: 970adec0 user: drh tags: mistake) | |
2017-07-07
| ||
19:18 | Avoid appending to g.zPath inside doc_page() loop. Instead, wait until the loop is done to modify g.zPath. When doing a directory lookup, the check-in and directory name were being repeatedly appended to g.zPath each step through the list of possible filename suffixes. This corrupted <base href> should index.html not exist, which in turn broke relative URLs. ... (check-in: 956d4901 user: andygoth tags: trunk) | |
12:59 | Merge trunk. Upgrade to OpenSSL 1.1.0f. Note that this branch only adapts the Windows buildfiles, no source-code or anything else, since Openssl 1.1.0 is (almost, not significant for fossil) upwards compatible. ... (check-in: 4a516fb7 user: jan.nijtmans tags: openssl-1.1) | |
2017-07-06
| ||
15:32 | Fix typo in auto.def Merge trunk ... (check-in: 10c7e0fc user: jan.nijtmans tags: fossil-2.3-with-older-SQLite) | |
2017-07-05
| ||
13:00 | In the timeline graph rendering code, hard-code the topRow value in the generated javascript. ... (check-in: e76f3bbe user: drh tags: trunk) | |
12:33 | Fix timeline rendering so that multiple timelines can be drawn on each page without interferring with one another. Move the "Referenced By" section of the /info page upward and rename it as "References". Added the /test-backlink page for showing all pages that contain references. ... (check-in: ba344432 user: drh tags: trunk) | |
11:12 | Add the "Referenced By" section to the /info page. ... (check-in: fae745cf user: drh tags: trunk) | |
2017-07-04
| ||
16:02 | On the /urllist page, stop the display of access URLs after at least 8 have been shown and the last access is more than 30 days ago. Except, show them all if the "all" query parameter is used. ... (check-in: 9d7ef44f user: drh tags: trunk) | |
13:11 | Do not send the message body on an HTTP reply to a HEAD request. ... (check-in: 5826ba37 user: drh tags: trunk) | |
04:36 | Add the "bootstrap" skin. ... (check-in: f57f5f99 user: drh tags: trunk) | |
2017-07-03
| ||
23:18 | Do not show checkouts with the "info -v" command or in the /urllist webpage if the checkout does not appear to exist any more. ... (check-in: c666579c user: drh tags: trunk) | |
20:04 | Add a pre-packaged CONFIG table query to the administrator SQL interface. ... (check-in: 6a679311 user: drh tags: trunk) | |
19:07 | On the text descriptions of the various administrator settings, identify the property in the CONFIG table that is being modified. ... (check-in: 3ca935ef user: drh tags: trunk) | |
13:54 | On the server.wiki page, point to the source code comments that describe the various CGI options. ... (check-in: a8910101 user: drh tags: trunk) | |
13:48 | On the server.wiki page, point to the source code comments that describe the various CGI options. ... (Closed-Leaf check-in: d407e22f user: drh tags: security-risk) | |
11:26 | On the /test_env page, show the AUTH_CONTENT and AUTH_TYPE environment variables in "cookie" mode. - On second thought, better to not show these, since they can expose passwords on screen. ... (check-in: d28cb283 user: drh tags: security-risk) | |
10:36 | Suggestion for 2.3 release: Eliminate the need for SQLITE_PREPARE_PERSISTENT, which makes fossil work with SQLite 3.19.3. ... (check-in: 1eab060a user: jan.nijtmans tags: fossil-2.3-with-older-SQLite) | |
09:31 | Update changes.wiki. Some eol-spacing ... (check-in: 86d4754a user: jan.nijtmans tags: trunk) | |
2017-07-02
| ||
18:22 | On the /test_env page, report the values of the REMOTE_USER and HTTP_AUTHENTICATION environment variables, if they exist. ... (check-in: 4207a040 user: drh tags: trunk) | |
2017-07-01
| ||
22:43 | Fix a minor problem with Write-Unver reporting on the security audit report. ... (check-in: 5c999558 user: drh tags: trunk) | |
22:38 | Add the cgi_referer() utility function. Use it to cause the setup_uedit page to always go back to the page it came from. ... (check-in: 59a51b82 user: drh tags: trunk) | |
22:17 | More checking of user permissions on the Security Audit page. ... (check-in: 564e42df user: drh tags: trunk) | |
19:36 | Update the change log to mention recent enhancements. ... (check-in: 8fe2f97e user: drh tags: trunk) | |
18:09 | Improvements to the "Last Change" report. ... (check-in: 1dc93b70 user: drh tags: trunk) | |
17:54 | Add the "Last Change" activity report. ... (check-in: b629647e user: drh tags: trunk) | |
17:23 | When computing the "Last Login" on the user list page, take the RCVFROM sync log into account. ... (check-in: 46d5d638 user: drh tags: trunk) | |
16:41 | Prevent line breaks in the "Last Login" column of the user list. ... (check-in: 2fe385e4 user: drh tags: trunk) | |
16:34 | Add the "Last Login" column to the setup_ulist page. ... (check-in: 5832d2fc user: drh tags: trunk) | |
03:08 | Typo fix in documentation. ... (check-in: 38f37679 user: drh tags: trunk) | |
00:52 | Improved wording on some of the security-audit warnings. ... (check-in: 752365e7 user: drh tags: trunk) | |
00:51 | More security-audit checks. ... (check-in: 4253b1de user: drh tags: trunk) | |
2017-06-30
| ||
19:59 | Add the --numstat option to the diff command. ... (check-in: 3d6cf6a7 user: drh tags: trunk) | |
19:00 | Report an error if the input file to "fossil import" cannot be opened. ... (check-in: 038dcc00 user: drh tags: trunk) | |
18:56 | Fix the zlib Makefile for MSVC to use /MT to avoid a compiler warning. ... (check-in: 0f8bae07 user: drh tags: trunk) | |
18:42 | Fix the unix makefile so that the dependency on page_index.h is against dispatch.c not main.c. ... (check-in: 4c17ab60 user: drh tags: trunk) | |
18:28 | New security audit checks. ... (check-in: 6c543c03 user: drh tags: trunk) | |
16:18 | Add the Security-Audit page. There is more work to be done here, but it is now at least partially functional. ... (check-in: 02683077 user: drh tags: trunk) | |
16:13 | Many new permission checks for the security-audit page. ... (Closed-Leaf check-in: c12ffe2c user: drh tags: security-audit) | |
15:17 | Start the security audit by checking to see if the repos it public or private. ... (check-in: 7f29e264 user: drh tags: security-audit) | |
14:10 | Fossil now needs at least SQLite 3.20.0 (beta) ... (check-in: 1c1d4ed2 user: jan.nijtmans tags: trunk) | |
13:36 | Add a stub for the Security Audit page. ... (check-in: c5504029 user: drh tags: security-audit) | |
2017-06-29
| ||
19:59 | Enable the STMT virtual table so that it available in the "fossil sql" command. ... (check-in: 960b9dc0 user: drh tags: trunk) | |
19:05 | Make use of the new sqlite3_prepare_v3() interface and the SQLITE_PREPARE_PERSISTENT flag in SQLite. ... (check-in: 11c46fd6 user: drh tags: trunk) | |
18:54 | Update the built-in SQLite to the latest from upstream. ... (check-in: ee71f347 user: drh tags: trunk) | |
06:29 | Make the command-line timeline behave more like the timeline page by handling dates before resolving to symbolic rid which might actually not meet the "before" or "after" criteria. Bug reported by Roy Keene: timeline output always included a timeline entry which happened to be before the "after" date indicated. ... (check-in: 048738b2 user: andybradford tags: trunk) | |
2017-06-24
| ||
16:28 | Fixed "integer constant is too large for long type" warning on 32-bit Linux ... (check-in: caf26817 user: andygoth tags: trunk) | |
13:59 | Increase the stack size limit to 8MB. Disable stack and heap size limits prior to invoking subprocesses. ... (check-in: 3f193ba6 user: drh tags: trunk) | |