Many hyperlinks are disabled.
Use anonymous login
to enable hyperlinks.
50 most recent check-ins that include changes to files matching 'src/*'
2023-07-22
| ||
14:29 | Add the option to sort files by size in the tree-view. ... (Leaf check-in: dedae5a123 user: drh tags: filesize-listings) | |
2023-07-21
| ||
23:02 | Display file sizes in /dir and /tree, as per request in [forum:2a0cd67e77|forum post 2a0cd67e77]. ... (check-in: fb0b7fe140 user: danield tags: filesize-listings) | |
2023-07-18
| ||
13:36 | Improved defense against denial-of-service caused by hackers pounding Fossil with repeated requests that contain SQL injection attempts. If SQL injection is attempted, return a "Begone, Knave!" page with status code 418. ... (Leaf check-in: 57f1e87254 user: drh tags: trunk) | |
2023-07-17
| ||
12:31 | Fix should have gone on the verify-options-cgi branch, not on trunk. ... (Closed-Leaf check-in: d276fd9b77 user: drh tags: verify-options-cgi) | |
12:28 | Make sure query parameter "t" is marked as isFetched even if it is renamed from "r". ... (check-in: 2b72f337be user: drh tags: trunk) | |
12:18 | In /raw and /secureraw, ensure that the "m" and "at" vars are fetched before the malice check. Typo fix in cgi.c. ... (check-in: 83015b0d9a user: stephan tags: verify-options-cgi) | |
12:13 | Improvements to the algorithm for detecting likely SQL injection text. ... (check-in: 5d6efeee47 user: drh tags: verify-options-cgi) | |
11:44 | Improve the error log message for 418 responses so that it includes the name of the offending query parameter. Require whitespace around keywords when trying to detect SQL. ... (check-in: ef1702fde3 user: drh tags: verify-options-cgi) | |
2023-07-16
| ||
20:55 | Fix typo on the 418 status code name. ... (check-in: f39c878fe1 user: drh tags: verify-options-cgi) | |
20:47 | Add calls to cgi_check_for_malice() on many more web pages. Log all 418 responses to the error log. ... (check-in: 40266bf9b2 user: drh tags: verify-options-cgi) | |
10:35 | Rename verify_all_options_cgi() to cgi_check_for_malice(). Add more comments explaining what the function is intended for. Add calls to cgi_check_for_malice() to a few new webpages. ... (check-in: 5a8063a8cb user: drh tags: verify-options-cgi) | |
2023-07-15
| ||
13:57 | Add verify_all_options_cgi(), which works similarly to verify_all_options() but only fails if it finds CGI GET/POST arguments which (A) have not been fetched via P(), PD(), or similar, and (B) fail cgi_value_spider_check(). Currently only applied on the /ci page. ... (check-in: a065940a74 user: stephan tags: verify-options-cgi) | |
2023-07-13
| ||
12:13 | Reconcile a test in the FTS search with its original intent in [196dfedf7fc]; reported in [forum:fa13ae06d|forum post fa13ae06d]. ... (check-in: e88211628b user: danield tags: trunk) | |
2023-07-10
| ||
12:59 | The "fossil repack" command should run VACUUM if either new compression opportunities were found *or* if the freelist count is positive. ... (check-in: 4d9ede80be user: drh tags: trunk) | |
12:50 | In the fts-config command and on the /srchsetup page, show how much space is used by the full-text index. ... (check-in: 5c5e54928e user: drh tags: trunk) | |
2023-07-09
| ||
03:13 | Show default value of settings that have a default in 'fossil help SETTING' output. These values are otherwise only documented in the source code. ok stephan, danield ... (check-in: 1e1a319e63 user: mark tags: trunk) | |
2023-07-08
| ||
18:08 | Replace --no-compile-commands configure flag with --compile-commands. i.e. make the feature explicitly opt-in, as the automatic guess is breaking builds on some platforms. (Edit: rolling back - contains inadvertent test edits.) ... (Closed-Leaf check-in: fb116a206e user: stephan tags: mistake) | |
2023-07-07
| ||
18:23 | The cpnode table used for cherrypick timelines should be a TEMP table. ... (check-in: 2478837b56 user: drh tags: trunk) | |
2023-07-01
| ||
16:06 | give 'json status' the same rename treatment as recent status work As reported by larrybr on the forum: [forum:9e9778f2e6], 'fossil json status' reports renamed _and_ edited files as only renamed. This change reports such cases as both edited and renamed, and displays the filename prior to being renamed as well as the renamed path. We now also update the vfile table before generating the status report to ensure the current checkout state is reported. ... (check-in: 771e592b4c user: mark tags: trunk) | |
2023-06-28
| ||
12:40 | report renamed state when file is both edited and renamed In `fossil {changes,status}` and the commit description shown in the editor with `fossil commit`, show the original and renamed path annotation if the file has been renamed and edited. Prior to this, the file was only reported as edited, which can be confusing. Reported by James Cook [forum:5a4c530e6b]. Discussed with stephan@ and danield@, plus some forum members. While here, make sure we honour the relative-paths setting/option when displaying the original pathname in the renamed case. ... (check-in: ca9d0ddf06 user: mark tags: trunk) | |
2023-06-23
| ||
22:15 | Check-in [bdde964e06128a02] got the test for text/html exactly backwards. ... (check-in: c6115dbf83 user: drh tags: trunk) | |
16:34 | Do not show the Close button on forum posts which are pending moderation. ... (check-in: 355a81bea7 user: stephan tags: trunk) | |
12:29 | Use the new octet_length() SQL function in place of length() where it is appropriate to do so. ... (check-in: 604e1a67d3 user: drh tags: trunk) | |
2023-06-22
| ||
17:09 | Do not allow caching of generated HTML content, as such content will usually contain a nonce which ought not be repeated. ... (check-in: bdde964e06 user: drh tags: trunk) | |
13:49 | enable importing multiple git repos into one fsl repo This fixes an issue reported by James Cook in [forum:d162b6e2dc]. Previously, we assumed the fx_git table does not exist when creating a new import, thus the previously untested use case of importing multiple new (read: not incremental) git repos into the same fossil repo failed at this assumption. While here, document the persistent nature of attributions in the import cmd help text; previously, this was only in the online docs: [/doc/trunk/www/inout.wiki] ... (check-in: 47fb3ddc5a user: mark tags: trunk) | |
11:01 | Allow more than ~128 MiB in a blob ;) ... (check-in: 1c2c0a1f95 user: danield tags: trunk) | |
10:47 | Add checks to ensure that Blob allocation sizes are within a legal max range, failing if they're too big, to address 'uv add' misbehavior reported in [forum:d5cd3e3c19|forum post d5cd3e3c19]. ... (check-in: 6efd41941c user: stephan tags: trunk) | |
08:46 | merge build system compilation database generation Tested on OpenBSD 7.3-current and macOS Ventura 13.4 by me, and also on some Linux machines by stephan@ This automatically generates a compile_commands.json file on machines that support the -MJ clang compiler option, which can be consumed by language server clients. ... (check-in: 91f0f00f5d user: mark tags: trunk) | |
2023-06-20
| ||
18:44 | Avoid logging errors associated with the inability to access the database specified for outgoing email. ... (check-in: 2787a454d0 user: drh tags: trunk) | |
2023-06-19
| ||
17:37 | Rework the elimination of the trailing comma in compile_commands.json to be more platform-portable. ... (Closed-Leaf check-in: 49c53e0bb8 user: stephan tags: compile_commands.json) | |
13:54 | Fix a bug in repo_list_page() that manifests only on 32-bit builds on big-endian CPUs. ... (check-in: 42076cabfa user: drh tags: trunk) | |
2023-06-18
| ||
23:20 | Update documentation to "fossil patch" and "fossil ui" to talk about the algorithm used for locating the fossil executable on the remote host. ... (check-in: d22e2b3817 user: drh tags: trunk) | |
19:58 | Omit the PATH= argument to SSH for "fossil patch push/pull" and "fossil ui" when the --fossilcmd option is used. ... (check-in: a35522f8a4 user: drh tags: trunk) | |
15:37 | Get the -MJ ... flags working for the in-binary objects and generate the top-level compile_commands.json. ... (check-in: e330509cd4 user: stephan tags: compile_commands.json) | |
13:58 | More work on compile_commands.json support. This does not work because the approach of extending CFLAGS with the -MJ flag is incompatible with the build process's use of different compilers for the in-tree tools vs the files compiled as part of the fossil binary. On systems with both gcc and clang, the former group may get built with cc (==gcc) yet inherit -MJ via CFLAGS, breaking the build. This approach appears to be a dead end, but checking it in for later analysis. ... (check-in: 0e6ad145d4 user: stephan tags: compile_commands.json) | |
11:16 | Initial *incomplete* attempt at integrating compile_commands.json support, for code editors which support it. This is a copy/paste port from the libfossil tree, but lacks one final piece which is difficult to emulate in POSIX make (as opposed to GNU make). Build file changes only, no code changes. ... (check-in: 492787465d user: stephan tags: compile_commands.json) | |
03:12 | fix import handling of git repositories with renamed files Reported by James Cook in [forum:2b857ded1b]: renamed files were shown as a deletion and an addition. This was because the optional 3rd and 4th field in the manifest's F card to indicate renames were omitted, despite having parsed these data from the git fast-export marks. ... (check-in: 7ab1e11850 user: mark tags: trunk) | |
00:46 | Always print the SSH command used to implement "fossil patch push/pull". No longer require the -v option to see the ssh command. This is in the interest of full disclosure - letting the operator know what Fossi is doing behind the scenes. ... (check-in: 97ec767f4b user: drh tags: trunk) | |
00:22 | For the "fossil ui remote:/" and the "fossil patch push/pull" commands, when going over SSH, add the argument "PATH=$HOME/bin:$PATH" to the command line so that the "fossil" executable can be found in the users home directory. This is important on system like Mac where the default PATH for SSH consists of only unwritable directories. ... (check-in: 8cb1164079 user: drh tags: trunk) | |
2023-06-17
| ||
20:51 | Mention the "all" option in the documentation for "autosync" ... (check-in: 4e7b08c380 user: drh tags: trunk) | |
14:10 | add "renamed" annotation to renamed and changed files in /info As per James Cook's report in [forum:2b857ded1b], the /info page provided no hint that a renamed and modified file had been renamed, only modified. This slightly changes the annotation to make it clear the file was also renamed. Discussed with larrybr and stephan in /chat. Slight tweak on stephan's suggested phrasing. ok stephan@ ... (check-in: 495a4d71b8 user: mark tags: trunk) | |
2023-06-15
| ||
19:12 | Fix a gap positions vs. adjacent chunks positions mix-up in the diff context loader. The test case to reveal this bug is the 2nd gap of commit diff [d6ddd5bcfa]. Congrats again to Stephan for this smart code! ... (check-in: 8347c4add1 user: florian tags: trunk) | |
12:21 | To avoid unnecessary clutter in the error log, do not write timeout message to the error log for timeouts that occur during web-page reply and that use less than one second of CPU time. ... (check-in: af2f7d1749 user: drh tags: trunk) | |
11:58 | Use the new timediff() function of SQLite 3.43.0 to refactor the "Duration of Project" line on the /stat page to be "Project Age". ... (check-in: 2abb23dba8 user: drh tags: trunk) | |
11:26 | Document the --errorlog command-line option to "fossil ui". ... (check-in: 1e64c2c10b user: drh tags: trunk) | |
2023-06-14
| ||
14:37 | Add the ability for 'branch list' to filter the branches that have/have not been merged into the current branch, per [forum:c4a9d9e097|forum request]. ... (Leaf check-in: d6ddd5bcfa user: danield tags: branch-list-merged-unmerged) | |
14:29 | Remove a longtime obsolete comment in the branch listing routine. ... (check-in: ebe81aa11c user: danield tags: trunk) | |
2023-06-12
| ||
09:20 | Correct previous check-in to fail fatally if the CSRF check fails. ... (check-in: 37dfb4c8d6 user: stephan tags: trunk) | |
08:53 | Add a CSRF check for the forum post Close/Re-open button. ... (check-in: 619d51440f user: stephan tags: trunk) | |
2023-06-10
| ||
19:03 | Remove the superfluous Close Post option from the forum edit page. ... (check-in: b2f007178a user: stephan tags: trunk) | |