Many hyperlinks are disabled.
Use anonymous login
to enable hyperlinks.
198 ancestors of version-2.21 back to version-2.20
|
2023-02-25
| ||
| 19:23 | Version 2.21 (check-in: f9aa474081 ... user: drh tags: trunk, release, version-2.21) | |
|
2023-02-24
| ||
| 17:14 | Fix a harmless compiler warning in gzip.c. (check-in: 9b05cad18d ... user: drh tags: trunk) | |
|
2023-02-23
| ||
| 18:47 | Fix a harmless compiler overflow warning. (check-in: 2fd158fce7 ... user: danield tags: trunk) | |
|
2023-02-22
| ||
| 00:09 | Clarified one of the 2.21 changelog entries. (Started as fixing a typo.) (check-in: 86c4e6bf26 ... user: wyoung tags: trunk) | |
|
2023-02-21
| ||
| 23:34 | Update the built-in SQLite to the 3.41.0 release. (check-in: 6d88833ffa ... user: drh tags: trunk) | |
| 03:58 | Correct inability of forum users to delete their own pending-moderation posts. (check-in: 19333c8a49 ... user: stephan tags: trunk) | |
|
2023-02-20
| ||
| 14:58 | Change the typedef of u32 in search.c so that it works in older PPC macs. (check-in: f82caec579 ... user: drh tags: trunk) | |
|
2023-02-17
| ||
| 14:57 | Fix a multitude of harmless compiler warnings. (check-in: 53db40e6fc ... user: drh tags: trunk) | |
| 14:37 | A large collection of compiler warning fixes re. signed/unsigned comparison from Daniel D. (closed check-in: c71f711ec9 ... user: stephan tags: compiler-warnings) | |
|
2023-02-15
| ||
| 11:26 | Reverted half of commit [4ad86dd5]: it incorrectly moved a CSS style instead of copying it to where it also needed to be. The user-visible effect was that centered Pikchrs varied in size according to their size and complexity, which meant that elements that should've been the same size weren't. (check-in: 5ad62aba37 ... user: wyoung tags: trunk) | |
| 05:16 | Cleaned up a few inconsistencies in the Pikchrs in the branching doc in an attempt to fix the smaller-and-smaller diagram size problem currently occuring in this doc. (check-in: 239fb5b186 ... user: wyoung tags: trunk) | |
|
2023-02-14
| ||
| 20:54 | Updated the PBKDF2 recommendations in the backup doc to track recent changes in best practice due to all these GPU computing fleets coming online. Added a few paragraphs explaining the limits to all of this and why we chose the passphrase lengths we did as examples. (check-in: 6a3d6fa63e ... user: wyoung tags: trunk) | |
| 11:42 | Update the built-in SQLite to the latest 3.41.0 beta for testing. (check-in: 7b5057745a ... user: drh tags: trunk) | |
|
2023-02-10
| ||
| 17:38 | Add a PD_NoBot() check to /timeline, based on spider attack records. (check-in: 3fa6f8f09a ... user: stephan tags: trunk) | |
|
2023-02-09
| ||
| 21:00 | Update the change log. (check-in: a64ef5efd1 ... user: drh tags: trunk) | |
| 20:09 | Add the "repack" command as an alias for "rebuild --compress-only". (check-in: dd6a88da09 ... user: drh tags: trunk) | |
| 19:45 | The extra-delta-compression step now reports the number of new deltas added and the bytes of storage space saved using those deltas. (check-in: 59e21eb3e5 ... user: drh tags: trunk) | |
| 16:16 | Updates to the change log. (check-in: 7449a10f2a ... user: drh tags: trunk) | |
|
2023-02-08
| ||
| 16:59 | Further improvements to the attack-spider detection mechanism. (check-in: eb7fad0cd3 ... user: drh tags: trunk) | |
| 16:41 | As a performance optimization, only do the SQL-injection detection for user "nobody". Improved comment on cgi_value_spider_check() to better explain what this subsystem is all about. (check-in: 00ae2391e4 ... user: drh tags: trunk) | |
| 16:32 | Test command for the SQL-injection detection routine. Possible performance improvements as well. (check-in: d3cb62f767 ... user: drh tags: trunk) | |
| 14:54 | Update the built-in SQLite to use the latest 3.41.0 alpha version that includes new efforts to silence nuiscance compiler warnings. (check-in: 05fa1c3c24 ... user: drh tags: trunk) | |
| 13:35 | Fix a couple of -Wextra compiler warnings. (check-in: 3afeef3f9a ... user: danield tags: trunk) | |
|
2023-02-07
| ||
| 16:50 | Rename AntiSpider to NoBot, for brevity's sake. (check-in: fa27979805 ... user: stephan tags: trunk) | |
| 16:48 | Rename P_NoSQL and PD_NoSQL to P(D)_AntiSpider to make their intent clearer and the names more generic. (check-in: 91d13592a7 ... user: stephan tags: trunk) | |
| 16:28 | Merge spider-sql-detection branch into trunk, per /chat discussion. (check-in: 534c10f6b8 ... user: stephan tags: trunk) | |
| 16:24 | Apply the spider SQL check to the diff URL argument of the /vdiff page. Improve some related docs. (closed check-in: 936c122ff9 ... user: stephan tags: spider-sql-detection) | |
| 16:18 | Inititial draft of an attempt to intercept certain SQL injection attacks recently seen made against fossil repos. Its effect can be seen by visiting: /vdiff?from=trunk&to=trunk&w=drop (check-in: 61a608a2df ... user: stephan tags: spider-sql-detection) | |
|
2023-02-06
| ||
| 13:37 | Make the --nossl and --nocompress server options available for CGI requests. (check-in: 391526232e ... user: florian tags: trunk) | |
|
2023-02-03
| ||
| 15:59 | Fix another harmless compiler warning reported by Clang-15. (check-in: de184889a7 ... user: danield tags: trunk) | |
| 15:15 | Attempt to fix various harmless compiler warnings reported by Clang-15. (check-in: e486a0acbc ... user: drh tags: trunk) | |
| 14:59 | Update the built-in SQLite to the latest trunk version that attempts to fix various harmless compiler warnings reported by the new Clang-15. (check-in: ea57625d31 ... user: drh tags: trunk) | |
| 14:32 | Add the /deltachain page, indented for analysis of the delta compression and future improvements to that algorithm. There are links to the delta chain on the /timeline and /finfo when the showid query parameter is used. (check-in: 00c62a11ad ... user: drh tags: trunk) | |
| 07:21 |
prefill the tktnew page email field with user emailaddr
If the logged-in user has a valid email address in their contact-info, use it to prefill the email field in the /tktnew page when submitting a new ticket. As discussed in /chat, enhance the Fossil builtin find_emailaddr() SQL function--suggested by wyoung@--to parse strings for well-formed email addresses not necessarily wrapped in <...>. Requested by jose i cabrera on the forum. (check-in: f974583f90 ... user: mark tags: trunk) | |
| 00:31 | Enable SELECT statements for the ticket_schema_auth() authorizer. This is required for the new FTS5 search and the fts5_api_from_db() routine. (check-in: 3fe8a8cd18 ... user: drh tags: trunk) | |
|
2023-02-01
| ||
| 14:35 | Do not export private artifacts to git. (check-in: fbd3b58335 ... user: danield tags: trunk) | |
|
2023-01-31
| ||
| 10:41 | Use a faster query when checking for private artifacts. (closed check-in: 25a6ba26a2 ... user: danield tags: git-export-omit-private) | |
| 10:11 | Do not export private artifacts to git. (check-in: 40abd83957 ... user: danield tags: git-export-omit-private) | |
| 10:07 | Small correction in the usage text for 'fossil git'. (check-in: 1aa3188e8d ... user: danield tags: trunk) | |
|
2023-01-27
| ||
| 20:42 | Add a link to the /intermap page for Interwiki Map keywords on the setup menu. (check-in: bb189a15fd ... user: drh tags: trunk) | |
| 15:40 | Update the built-in SQLite to the latest 3.41.0 alpha, for testing of SQLite. (check-in: 0f30113b3b ... user: drh tags: trunk) | |
|
2023-01-26
| ||
| 01:46 | Refactor how the IF NOT EXISTS check is performed on the repository.admin_log table, per request from drh. (check-in: 2da6010b7c ... user: stephan tags: trunk) | |
|
2023-01-25
| ||
| 13:59 | More updates f() to f(void). (check-in: 46ddf0e80b ... user: danield tags: trunk) | |
| 00:30 | More updates of func decls f() to f(void). (check-in: 5dd632eb44 ... user: stephan tags: trunk) | |
| 00:25 | More updates of func decls f() to f(void). (check-in: 9c5952bec3 ... user: stephan tags: trunk) | |
|
2023-01-24
| ||
| 21:25 | Upgrade FTS search from v4 to v5. (check-in: c3c4ef167e ... user: stephan tags: trunk) | |
| 19:01 | Add initial infrastructure for being able to resolve 'ckout' uniformly in certain contexts, per /chat discussion. (check-in: 4d8c30265b ... user: stephan tags: trunk) | |
| 14:36 | The search logic now works correctly (I think) regardless of whether the repository uses a legacy FTS4 index or a newer FTS5 index. This allows the Fossil binary to be upgraded on systems without disrupting the search feature and without requiring a search index rebuild. The search index is automatically upgraded to FTS5 the next time the search index is rebuilt. (closed check-in: a07e6b87cb ... user: drh tags: search-fts5) | |
| 03:26 | Remove some end-of-line whitespace. No functional changes. (check-in: 8307133b7c ... user: stephan tags: search-fts5) | |
| 03:18 | Replaced a standalone "diffFlags" variable in the /fdiff handler with use of the new DiffConfig.diffFlags member. No functional change, just a code cleanup found while working on another branch. Making it on trunk to keep that branch's diffs minimal. (check-in: 65d97f23f6 ... user: wyoung tags: trunk) | |
| 02:57 | Replace FTS4 with FTS5, per forum post d05b1855aa. This has been only lightly tested and might require a repo rebuild (or that we rename the associated tables/views rather than recycle them). (check-in: c1933caf03 ... user: stephan tags: search-fts5) | |
|
2023-01-23
| ||
| 00:12 | Add /json/settings/get and set APIs, per discussion in forum post 04b7159d63d4abe4. (check-in: a80f27485a ... user: stephan tags: trunk) | |
|
2023-01-22
| ||
| 22:01 | Remember the chosen type of artifacts that are shown at /timeline page as a display preference. This amends the initial behavior introduced on 2017-11-29 with the 'sticky-timeline-style' branch. (check-in: 61bd0c9b11 ... user: george tags: trunk) | |
| 18:35 | Fix appearance of a chat-only view: eliminate redundant gap between the vertical scrollbar and the right edge of a window. (check-in: d3c0206ed2 ... user: george tags: trunk) | |
|
2023-01-21
| ||
| 11:40 | Make diff --checkin VERSION capable for working from outside of a checkout. (check-in: 8e8e0269a9 ... user: stephan tags: trunk) | |
| 10:50 | Improve scroll width calculation for unified diffs. (check-in: 7a76111fe0 ... user: florian tags: trunk) | |
| 01:13 | Remove bootstrap skin, per discussion in forum post aa02d7443d446211. Clients with that skin selected will automatically be switched to the default. (check-in: e1ef9347e1 ... user: stephan tags: trunk) | |
|
2023-01-20
| ||
| 10:42 | Simplify the loop to enumerate table columns to the left. (closed check-in: faadb48dc9 ... user: florian tags: udiff-hscroll) | |
| 04:25 | Add /json/settings/set. Replace several free() calls with fossil_free(). Work around json_send_response() being called twice in some CLI-based cases. (closed check-in: 4d2aeb29eb ... user: stephan tags: json-settings-command) | |
| 00:11 | Add docs for /json/settings. (check-in: f302b9bc41 ... user: stephan tags: json-settings-command) | |
|
2023-01-19
| ||
| 23:44 | Roll back a broken part of [f3d3d1be59728b5dde702a] which caused only versioned settings' values to be fetched. (check-in: c7221a2e8c ... user: stephan tags: json-settings-command) | |
| 23:38 | Correct (non-)fetching of sensitive properties for (non-)Setup users. (check-in: f3d3d1be59 ... user: stephan tags: json-settings-command) | |
| 23:32 | Restructure /json/settings/get output from an array of objects to a map of objects, keyed on setting name, per forum discussion. (check-in: d0bf9682a9 ... user: stephan tags: json-settings-command) | |
| 12:15 | Firefox ≠ Chromium (check-in: dbffb2fad2 ... user: florian tags: udiff-hscroll) | |
| 11:52 | Compensate for the outer border. (check-in: 2c0d435256 ... user: florian tags: udiff-hscroll) | |
| 11:36 | More accurate scroll width calculation for unified diffs (looks better for SQLite diffs with up to 5-digit line numbers). (check-in: 337b297cbe ... user: florian tags: udiff-hscroll) | |
| 02:55 | For sensitive settings, always explicitly set value and valueSource to null for non-setup users (or if they aren't set), to avoid the possibility of downstream clients perhaps picking up inherited properties in their place, depending on their programming environment. (check-in: 451cda0452 ... user: stephan tags: json-settings-command) | |
| 02:39 | Extend /json/settings/get with a version=X flag indicating the check-in version to check for versionable flags in before falling back to either the checkout or repository. List sensitive properties for all users but elide their values for non-setup users (previously they were elided altogether for non-setup users). (check-in: fd405e9563 ... user: stephan tags: json-settings-command) | |
| 01:01 | Add missing 'void' to no-arg function decls and impls throughout the JSON API. (In my defense: the distinction between f(void) and f() was unknown to me at the time that code was written.) (check-in: 632dfd26dd ... user: stephan tags: json-settings-command) | |
|
2023-01-18
| ||
| 00:54 | Initial prototype of the /json/settings/get command/page, per discussion in forum post 04b7159d63d4abe4. (check-in: 29e5bb008c ... user: stephan tags: json-settings-command) | |
| 00:47 | Fix a memory leak of the path to a versioned-setting file in print_setting(). (check-in: c76b00197f ... user: stephan tags: trunk) | |
|
2023-01-17
| ||
| 20:40 | Small fix to the nojail patch; accidentally lost the [80faedbc] change in the shuffle. (check-in: 7a6cf9dd24 ... user: wyoung tags: trunk) | |
| 20:37 | Removed the two "mknod" calls from the Dockerfile in the nojail patch used by Podman rootless containers. Not only is the build user not allowed to run mknod in that case, there will be a /dev tree mapped into the container, causing the commands to fail due to these two basic dev nodes preexisting. (check-in: d97a8fb17e ... user: wyoung tags: trunk) | |
| 20:35 | No longer running "fossil" with a relative path ("bin/fossil") at the end of the Dockerfile, but instead relying on the hard-coded PATH defined a few sections prior. This allows the same command to work for both the rootful and rootless cases since moving the binary into /usr/bin/fossil to placate nspawn. Before, it was /jail/bin vs /bin, so the difference netted out to nothing. (check-in: 80faedbc51 ... user: wyoung tags: trunk) | |
| 20:32 | Fixed a copy-paste error in the Podman sections of the container doc: was using "docker" commands instead of "podman" in a few places. That'll work for people who aliased them, but it's confusing. (check-in: 6eefa9b0d7 ... user: wyoung tags: trunk) | |
| 06:29 | Removed use of UPX in the container build process. It complicates the build for a tiny gain while breaking ARM builds. We worked around the ARM-on-ARM case earlier, but it also breaks x86 cross-compilation on ARM. Images are already compressed, and while `upx -9` is stronger compression than whatever Docker Engine is using, it's a small advantage. This does mean the static executable isn't compressed any more on x86, but if you want that, you can UPX it afterward. (check-in: da545c9e79 ... user: wyoung tags: trunk) | |
| 05:28 |
Generating the /etc/os-release file for the OCI container using
autosetup at configure time rather than from a build arg in the
Dockerfile at image creation time. This lets us back out the use of
heredocs in the Dockerfile, which isn't supported in Podman at all as of
this writing and under Docker requires use of BuildKit rather than the
legacy "docker build" mechanism.
The primary consequence of doing it this way is that the Fossil version number in that generated file becomes the configure-time version, unconditionally. The old way let you override the FSLVER variable at image build time and have that value put into the os-release file. Under this new scheme, you now have to run "/jail/bin/fossil version" to find out what version of Fossil got baked into the image. (check-in: ec8ef573b3 ... user: wyoung tags: trunk) | |
|
2023-01-16
| ||
| 18:14 | Update the built-in SQLite to the latest 3.41.0 alpha version in order to silence harmless compiler warnings and for general testing of SQLite. (check-in: cdd89e2dbe ... user: drh tags: trunk) | |
| 15:37 | Roll back the part of [71a2d68a7a113e7c] which automatically updates the user display prefs cookie, per /chat discussion. Updating the cookie once again requires an explicit udc URL arg or setting the skin, which implies udc. This fixes the problem that a timeline link from the /reports page persistently sets the default timeline entry count to the value used by that report. (check-in: 5feac63473 ... user: stephan tags: trunk) | |
|
2023-01-13
| ||
| 18:38 | Backout change on "login-group join" command which broke the usage of it outside an opened checkout (using -R flag). Change usage text to match the command behavior properly when using the -R flag. (check-in: edf0355961 ... user: mgagnon tags: trunk) | |
| 16:52 | Modernized several old fossil-scm.org URLs, changing "http" to "https" where absolute URLs are necessary, and using site-relative URLs otherwise. Also found and fixed a reference to fossil-scm.hwaci.com, which doesn't seem to resolve any more. (check-in: 143f1db75f ... user: wyoung tags: trunk) | |
| 16:35 | Removed pointless "udc=1" parameters from a few Fossil file links from the docs. (check-in: 40d912aec1 ... user: wyoung tags: trunk) | |
| 14:55 | Remove ":443" from the end of the hostname for HTTPS requests. (check-in: add3f520a7 ... user: drh tags: trunk) | |
| 14:34 | Use the hostname as the report IP when doing SSH synchronization. (check-in: 0b7af9d865 ... user: drh tags: trunk) | |
| 13:09 | Documentation and change-log updates. (check-in: a90d3aa1ab ... user: drh tags: trunk) | |
|
2023-01-11
| ||
| 18:07 | Enable horizontal scrolling for individual text blocks in unified diffs. Forum Post 91c3e7854c and the following. (check-in: 603816d221 ... user: florian tags: trunk) | |
| 07:56 | Enable horizontal scrolling for individual text blocks in unified diffs. (closed check-in: 15ba7e616c ... user: florian tags: udiff-hscroll) | |
| 03:06 | merge latest change from trunk. (closed check-in: 5d5911e6fd ... user: mgagnon tags: no_ssh_sync_ip_resolve) | |
| 02:51 | Make proxy setting "system" by default to use http_proxy environment variable. Closer to old behavior and conform with most programs on Unix-like system. (check-in: 8f9f2cb7cd ... user: mgagnon tags: trunk) | |
|
2023-01-09
| ||
| 13:25 | Help text improvements for diffcmd.c. (check-in: e1b51150af ... user: danield tags: trunk) | |
| 13:06 | Further consistency improvements in docs for various commands. (check-in: 2512d2d472 ... user: km tags: trunk) | |
| 05:16 |
add new entry to related work links and polish markup
Add 'fsl', a tcl wrapper, to inspired projects; prompted by John Rouillard on the forum. While here, remove redundant markup and articles. (check-in: b4b8dc32f2 ... user: mark tags: trunk) | |
|
2023-01-07
| ||
| 20:58 | Updates to the change log to discuss recent enhancements. (check-in: 7173a1b1f4 ... user: drh tags: trunk) | |
| 20:37 | Submenu buttons linking all of the logging pages. (check-in: aae2b775f9 ... user: drh tags: trunk) | |
| 20:18 | Make admin_log entries for password changes. (check-in: c9c7e8c1d8 ... user: drh tags: trunk) | |
| 17:06 | Enhance the new /resetpw page so that it honors the redirect-to-https setting. (check-in: 3b1e8a0e5c ... user: drh tags: trunk) | |
| 15:36 | Add the ability to enable users to request an email message that contains a special secure hyperlink that they can follow to reset their password. (check-in: 07bfe3fee3 ... user: drh tags: trunk) | |
| 15:35 | Go to the login page after a successful self-service password reset. (closed check-in: 837f275868 ... user: drh tags: self-service-password-reset) | |
| 15:18 | Improved comments. Extra defensive code. (check-in: d860e2b5f6 ... user: drh tags: self-service-password-reset) | |
| 14:25 | Initial complete implementation of self-password-reset. Just need refinement and a security audit before merging to trunk. (check-in: 41bb73e9ba ... user: drh tags: self-service-password-reset) | |
| 11:58 | Add a non-functioning place-holder button to request a password reset to the /register page. (check-in: 5c62a2c3a7 ... user: drh tags: self-service-password-reset) | |
| 00:03 | Add the /resetpw web page. The name argument must contain a hash that proves knowledge of the old password and that limits the valid lifetime of the argument. (check-in: ac86dfa085 ... user: drh tags: self-service-password-reset) | |
|
2023-01-06
| ||
| 21:33 | Do not try to resolve the IP from the hostname when syncing using ssh:// protocol. Ssh may use the provided name as an alias defined in ~/.ssh/config which may not be resolvable or even resolve to an unrelated ip. This change can potentially avoid long timeout during name resolution failure. Equivalent to [52f08008e2790a81]. (check-in: e5c5622d4b ... user: mgagnon tags: no_ssh_sync_ip_resolve) | |
| 14:27 | Oops, somehow one dash in `--file` got lost in 92d3fdba73a44c4c. (check-in: 0bf2eaaf65 ... user: km tags: trunk) | |
| 14:25 | Minor adjustments in description of the `--file` option for `whatis`. (check-in: 92d3fdba73 ... user: km tags: trunk) | |
| 14:03 | Allow writes to the accesslog table to record a login attempt even if the request is not from the same origin. This is needed in case a query request url it typed in manually but there is a cookie with login credentials that the browser adds automatically. (check-in: e31c2c01e1 ... user: drh tags: trunk) | |
| 13:10 | Add the 'dont-commit' setting as a safety against accidental commits, per request in forum post 291f9af918. (check-in: 884436ce74 ... user: danield tags: trunk) | |
| 13:04 | Fix a bug in the 'commit' command that made it ignore the 'forbid-delta-manifests' setting. (check-in: ead01b6f27 ... user: danield tags: trunk) | |
| 12:59 | Fix the /chat-send page so that it works even with the recent same-origin security enhancements. (check-in: 4ba37b1c14 ... user: drh tags: trunk) | |
| 08:34 | update related work page: Add Inskinerator as per forum post from wyoung@, the Makeheaders tool, and the new Sapling version control system. (check-in: be6d71dd64 ... user: mark tags: trunk) | |
|
2023-01-05
| ||
| 19:49 | Add support for "fossil remote" and "fossil sync --all" to the "fossil all" command. (check-in: 693b950b1e ... user: drh tags: trunk) | |
| 17:21 | Add the "-f|--file" flag to the "whatis" command which consist to search for any other files in the repo with the exact same content as the given file. (check-in: a821cbf522 ... user: mgagnon tags: trunk) | |
|
2023-01-03
| ||
| 20:13 | Added named anchors to the "Image Format vs Fossil Repo Size" doc so I can refer to one in particular. (check-in: 7de2410f74 ... user: wyoung tags: trunk) | |
|
2023-01-02
| ||
| 16:12 | When applying a patch, if the file rename fails, make that just a warning not a fatal error, as the warning might be due to file renames on a prior merge. Fix for ticket [21037bfc1296dabc]. (check-in: f013384605 ... user: drh tags: trunk) | |
| 15:52 | Initialize the output blob in the test-delta-apply command. (check-in: dd9b316179 ... user: drh tags: trunk) | |
| 13:00 | Show the value of g.zLocalRoot on the /test_env page. (check-in: 3df5d40c2f ... user: drh tags: trunk) | |
|
2022-12-31
| ||
| 18:51 | Fix another case where PROTECT_READONLY needs to be relaxed even though the request not from the same origin. (check-in: 03e21b9cd5 ... user: drh tags: trunk) | |
| 12:21 | Fix stray character in the change log. (check-in: fbcd9a77b7 ... user: drh tags: trunk) | |
| 12:16 | Fix more cases where updates to the SUBSCRIBER table should be allowed to occur even if not a request from the same origin. (check-in: f33976f7cc ... user: drh tags: trunk) | |
|
2022-12-30
| ||
| 22:18 | Correct mis-pluralization of 'new ticketss' in the timeline, per report in forum post e711cb860a. (check-in: 7c2c445796 ... user: stephan tags: trunk) | |
| 21:12 | Improved comment on the db_obscure() routine. No functional code changes. (check-in: aa1a0b31e2 ... user: drh tags: trunk) | |
| 20:54 | Security enhancement: Do not store the passwords for remote URLs directly, but instead store the sha1_shared_secret() encoding of those passwords. It is the SHA1 encoding that gets transmitted to the server anyhow, so we might as well just store that. The SHA1 encoding cannot be used to log in. The password is still protected using obscure() even though it is now a SHA1 hash. (check-in: 41ba6ea7db ... user: drh tags: trunk) | |
| 16:32 | Show the parent-project-* CONFIG entries (if they exist) with the "fossil remote config-data" command. When parsing a URL, if the URL comes from the CONFIG table, remember the CONFIG table entry that supplied the password. (check-in: 6d0083adce ... user: drh tags: trunk) | |
| 12:26 | Fix minor typos in the diff source code. (check-in: 4e169542ae ... user: drh tags: trunk) | |
| 11:53 | If there is a need to do lazy updates of the full text index during a request that is not from the same origin, then allow database writes for the duration of that update. Also, allow changes to USER and CONFIG tables when explicitly authorized by db_unprotect() even if the request that prompted the change is not from the same origin. (check-in: 8e85d6ca22 ... user: drh tags: trunk) | |
|
2022-12-29
| ||
| 21:09 | All writes to the subscriber table to update the last contact time even if the request is not from the same origin. (check-in: db16262817 ... user: drh tags: trunk) | |
| 20:09 | Improved comments on the SQL protection subsystem. (check-in: 0aa3483fa8 ... user: drh tags: trunk) | |
| 19:49 | Only apply the PROTECT_READONLY restriction to the "repository", "configdb", and "localdb" database files. (check-in: b4e00621e3 ... user: drh tags: trunk) | |
| 19:39 | Fix the new read-only-repo security mechanism so that it enables write access when necessary. (check-in: f8363db81b ... user: drh tags: trunk) | |
| 18:56 | Add messages to the error log if the authorizer blocks an SQL statement for security reasons. This change requires a bug fix in SQLite and so it also includes the latest trunk version of SQLite. (check-in: 3d8bb63aab ... user: drh tags: trunk) | |
| 17:00 | Make the repository database read-only if an HTTP request is not from the same origin. This is not required for security. It is just an extra layer of defense. (check-in: 7c71f00ac8 ... user: drh tags: trunk) | |
|
2022-12-25
| ||
| 16:17 | A minor fix to the previous check-in. (check-in: abfec4dd5c ... user: george tags: trunk) | |
| 14:24 | Use URI extensions rather than name= query parameters on key ticket hyperlinks. (check-in: 5f22b960b3 ... user: drh tags: trunk) | |
|
2022-12-21
| ||
| 12:07 | Change spelling for check-in, check-out, and related words. (check-in: bc36fdcf3a ... user: danield tags: trunk) | |
| 11:52 | Merge in help consistency improvements. (closed check-in: 526b0a54c4 ... user: danield tags: check-in-spelling) | |
| 09:31 | Improved consistency for --help option descriptions. (check-in: 2e56ef4e8d ... user: km tags: trunk) | |
| 09:00 | Improved consistency for --help option descriptions: begin with uppercase letter; do not use a period at the end of short-ish sentences. (closed check-in: de684083c6 ... user: km tags: spelling-fixes) | |
|
2022-12-20
| ||
| 14:21 | A couple of corrections to the [2213a0eb2d413f|previous /secaudit0 addition]. (check-in: 43601b3d12 ... user: george tags: trunk) | |
| 09:53 | Correct a small bit of internal-doc misinformation reported in forum post 9ed20acf6a. (check-in: dd67906cbd ... user: stephan tags: trunk) | |
| 09:46 | Change spelling for check-in and similar (check-in: d9c4321e7a ... user: danield tags: check-in-spelling) | |
| 05:00 | Unbreak MinGW build to account for deletions in zlib 1.2.13. (check-in: a24a790f3d ... user: mistachkin tags: trunk) | |
| 02:01 | Make /secaudit0 page aware of the Tcl integration opportunities. (check-in: 2213a0eb2d ... user: george tags: trunk) | |
|
2022-12-16
| ||
| 21:47 | Updated the macOS sidebar in the backups.md doc to cover Ventura. (check-in: a55042a015 ... user: wyoung tags: trunk) | |
|
2022-12-15
| ||
| 15:39 | Update the built-in SQLite to the latest 3.41.0 alpha that includes various query planner enhancements. This is done in order to test the enhancements to SQLite, to help ensure that they are working correctly in a real-world application. (check-in: 7010ce2391 ... user: drh tags: trunk) | |
|
2022-12-14
| ||
| 13:03 | Fix help text for the 'artifact' command. (check-in: 98b80e429c ... user: danield tags: trunk) | |
|
2022-12-07
| ||
| 17:39 | Merge enhancements to file labels in Tk diff frontend (check-in: f7c0657bbd ... user: Torsten tags: trunk) | |
| 12:33 | Rebuid pikchr.wasm/js for latest pikchr.c. (check-in: ec6cb37a6a ... user: stephan tags: trunk) | |
| 11:17 | Update to the latest pikchr.c sources. (pikchr.wasm is not updated.) (check-in: 544eefd722 ... user: drh tags: trunk) | |
|
2022-12-06
| ||
| 06:13 | Grammar and spelling fix pass on the new nspawn material in the containers doc. (check-in: 5405aa5738 ... user: wyoung tags: trunk) | |
|
2022-12-05
| ||
| 03:39 | Update the built-in SQLite to the latest 3.41.0 alpha with the query planner tuning enhancements, as a beta-test of SQLite looking for performance regressions. (check-in: 4ddd884709 ... user: drh tags: trunk) | |
|
2022-12-03
| ||
| 13:17 | Typo fixes (check-in: 00e4d91e28 ... user: wyoung tags: trunk) | |
| 11:55 | Assorted prose polishing in the new systemd-container section at the end of the containers doc. (check-in: 120a207631 ... user: wyoung tags: trunk) | |
| 11:37 | Added a few more "container-*" targets to the main makefile to simplify the examples in the containers doc and make the resulting images and containers easier to manage. (check-in: b7edb5f1c5 ... user: wyoung tags: trunk) | |
|
2022-12-02
| ||
| 23:14 | Merged two redundant discussions of the consequences of disabling private network virtualization under systemd-container infrastructure, then added better reasons why the reader might care. (check-in: 7055433695 ... user: wyoung tags: trunk) | |
| 15:27 | new branch for enhancements to Tk diff frontend: labeling of file origin (version, repo, working file etc.) in the left and right pane header (leaf check-in: c90ee4bf55 ... user: Torsten tags: diff-tk-frontend) | |
|
2022-12-01
| ||
| 00:14 | Updates to the systemd service doc, primarily to refer the reader to the new containerized runner methods, but also to add other tips. (check-in: ad09d3eee0 ... user: wyoung tags: trunk) | |
|
2022-11-30
| ||
| 23:32 | Updated the nojail patch so it'll apply atop the new Dockerfile changes. (check-in: 45e0475ca7 ... user: wyoung tags: trunk) | |
| 23:09 | Worked out how to get systemd-container (a.k.a. nspawn + machinectl) working with the stock Fossil container. Following the above commits, it's pure documentation. Removed the runc and crun docs at the same time since this is as small as crun while being more functional; there's zero reaon to push through all the additional complexity of those even lower-level tools now that this method is debugged and documented. (check-in: 930a655a14 ... user: wyoung tags: trunk) | |
| 21:27 | Added empty /tmp and /run directories to the "OS image" layer of the stock container in case someone is mounting the base layer read-only with tmpfs mounted atop these points. (Seen with "systemd-nspawn --read-only" but might affect other runtimes.) (check-in: 0733be502b ... user: wyoung tags: trunk) | |
| 15:23 |
Container build changes to allow systemd-nspawn to recognize it as an
"OS tree:"
Had to switch to buildx to make this work, so I could use heredocs in the first step. (check-in: f74ddbce71 ... user: wyoung tags: trunk) | |
| 14:29 | Added "container-clean" target to cleanup after the other container-* targets. (check-in: e119d59836 ... user: wyoung tags: trunk) | |
| 12:59 | Tried to get "--with-tcl=1" working in the containerized build, but failed, so I documented the reason why it isn't going to work given our current design goals and pointed at an alternative with different tradeoffs. (check-in: fb1bfce16d ... user: wyoung tags: trunk) | |
| 12:32 | Added the FSLCFG Dockerfile build arg and showed how to use it in the containers doc, plus other improvements to the doc while in there. (check-in: e2277aad16 ... user: wyoung tags: trunk) | |
| 12:23 | Put a "sleep 1" into "make container-run" before the step that shows the container logs to ensure we show everything it says on startup. Added this on seeing just the first line of output due to a race condition, so I missed the generated admin password. (check-in: 4429e10f6d ... user: wyoung tags: trunk) | |
| 12:19 | The "container-run" target now runs "container-image" conditionally, building it only if it wasn't created in a prior step. This allows custom image builds followed by a one-command way of running that built image. Without this, the custom image gets stomped on. (check-in: a9e862b887 ... user: wyoung tags: trunk) | |
| 11:44 | Reverted the build hack to strip out all but the default and darkmode skins in the stock Dockerfile. That was done to cater to a wish for extremely small ARM builds, for fun, not for any practical reason. It conflicts with a key philosophy behind this container project, to create stock Fossil builds by default. "make container-image" should get you a functionally identical binary inside the container as "./configure && make" does outside it. (check-in: 3e95d94583 ... user: wyoung tags: trunk) | |
| 01:03 | Make sure SQLite is compiled with HAVE_USLEEP. (check-in: f97f90c08d ... user: drh tags: trunk) | |
|
2022-11-29
| ||
| 21:08 | Remove JS console debug output added by the previous checkin. (check-in: 2755b31a87 ... user: stephan tags: trunk) | |
| 20:59 | /chat: add embedded view support for .wiki/.md/.pikchr file attachments, with the caveat that the rendering happens in an iframe and thus has some limitations/usability quirks compared to non-iframed content. Added based on feedback from a /chat session. (check-in: fd5298f027 ... user: stephan tags: trunk) | |
| 04:11 | Improve consistency of "fossil branch" command. I don't think this deserves more attention but others may decide to make it do more. (check-in: 761a39c025 ... user: andybradford tags: trunk) | |
|
2022-11-26
| ||
| 17:31 |
Fix artifact_page() function so that the content of a text file
is surrounded by CODE elements even if a file's extension is just a single letter.
(check-in: e7a7b5c1b0 ...
user: george tags: trunk)
| |
|
2022-11-24
| ||
| 22:13 |
Add TH1 command "submenu". For the time being it has just one subcommand "link" that adds a hyperlink to the submenu of a page.
(check-in: 71b221657b ...
user: george tags: trunk)
| |
| 15:21 | In the new forum reply header, reduce size from H1 to H2 and italicize the thread title. (check-in: 7b92fc614d ... user: stephan tags: trunk) | |
| 14:38 | Slight reformatting of the forum reply page header based on feedback from sqlite forum post c745cf3a7f6246de. Now says: Replying to HASH-with-link in thread TITLE-without-link (check-in: 0b6b3a001a ... user: stephan tags: trunk) | |
|
2022-11-20
| ||
| 08:42 | Update the built-in zlib to version 1.2.13, released on October 13, 2022. (check-in: a9e589ca28 ... user: florian tags: trunk) | |
| 07:50 | Add compat/zlib/contrib/ada/* and compat/zlib/doc/* to the ignore-glob. Now there's only two (manual) cherry-picks required for zlib updates: [0f8bae079e] and [368d97869b] (though the upstream ticket for [368d97869b] is commented as "Incorporated" and closed: https://github.com/madler/zlib/issues/684). (closed check-in: 1a52d387c2 ... user: florian tags: zlib-update) | |
| 07:37 | Carry forward [511ad59ae3] to the zlib 1.2.13 update: exclude all files from the contrib/ada subdirectory. (check-in: aafa682bb9 ... user: florian tags: zlib-update) | |
| 01:58 | Do not attempt to render empty description of a report. Also make hyperlinks in a report's submenu more robust. This amends [fcf17b28a902c0]. (check-in: 04a01d066a ... user: george tags: trunk) | |
|
2022-11-19
| ||
| 16:48 | Omit "Show associated wikis" from the submenu of a /wcontent page if there are no associated wikis in a repository (this amends [29a24941ed9b]). Also optimize out a couple of unnecessary calls to mprintf(). (check-in: e3c8aad9b1 ... user: george tags: trunk) | |
| 16:19 | Fix malformed hyperlink for historical revisions of a forum post. Perhaps introduced by check-in [168eb71643a4]. Reported by forum post 44505ae8ec51. (check-in: 114b17c408 ... user: george tags: trunk) | |
| 14:59 | Rename test_find_pivot() to merge_base_cmd(). No functional changes. (check-in: 8cc9211f9f ... user: stephan tags: trunk) | |
| 14:02 | Upgrade the test-find-pivot command to the merge-base command, per discussion at forum post 1f5db4364464e965. (check-in: 2b6649c743 ... user: stephan tags: trunk) | |
| 04:38 | Comment typo fix. No code changes. (check-in: 95e5814c9b ... user: stephan tags: trunk) | |
|
2022-11-18
| ||
| 19:48 | Update the change log for the report format enhancement. (check-in: c2467e52ef ... user: drh tags: trunk) | |
| 19:30 | Fix a potentially uninitialized variable associated with the resent ticket report changes. (check-in: d296ddb272 ... user: drh tags: trunk) | |
| 19:28 | Add the ability to specify a description for each ticket report format. The user and reportfmt tables are updated with a new jx column containing JSON that describes the new features. (The user.jx table is currently not used but it was convenient to add it at the same time.) (check-in: fcf17b28a9 ... user: drh tags: trunk) | |
| 19:23 | Make sure the reportfmt table contains the jx column before trying to use that column. (leaf check-in: d433272527 ... user: drh tags: json-meta-data) | |
| 19:20 | Use the "name" query parameter to select a report number. The legacy "rn" query parameter still works, but generated hyperlinks now use the new format. (check-in: 3048c04b2a ... user: drh tags: json-meta-data) | |
| 18:50 | Provide the ability to add custom header text on all ticket reports. The header and its mimetype are stored in the REPORTFMT.JX column. (check-in: c06a9980c3 ... user: drh tags: json-meta-data) | |
| 18:33 | Give the JX column of USER and REPORTFMT a default value which is valid JSON. (check-in: 2433964d8f ... user: drh tags: json-meta-data) | |
| 12:11 | Factor out the ALTER TABLE statements that add the JX column to the USER and REPORTFMT tables into separate subroutines. (check-in: 8f6d7dacbb ... user: drh tags: json-meta-data) | |
|
2022-11-17
| ||
| 23:38 | Add the "jx" column to the "user" and "reportfmt" tables, with the intent of using the column for JSON metadata. Currently unused. Make arrangements to sync the "jx" column (using the "fossil config" command) in a way that is backwards compatible with older versions that do not have the "jx" column. (check-in: b7ac178c4f ... user: drh tags: json-meta-data) | |
| 07:45 | Increase the version number to 2.21 to start the next development cycle. (check-in: 8dcee00837 ... user: danield tags: trunk) | |
|
2022-11-16
| ||
| 20:59 | Merge in setupuser-retain-pw branch (HTML change only, no code). (check-in: 88f9da9880 ... user: stephan tags: trunk) | |
| 20:53 | Prefixing each shell script section in the Dockerfile with "set -x" broke the checks to prevent running UPX on ARM builds. You can still get release container builds on ARM by copying this fixed Dockerfile to your release checkout. (check-in: b4c3d9a13e ... user: wyoung tags: trunk) | |
| 20:05 | Fix harmless typos reported by forum post 15f7327318. (check-in: f3adbd8874 ... user: drh tags: trunk) | |
| 19:49 | Remove the "ada" subdirectory from the compat/zlib/contrib because it is not used, but it does (apparently) cause warnings for lintian. Perhaps this will be a partial fix for the warnings reported by forum post 15f7327318. (check-in: 511ad59ae3 ... user: drh tags: trunk) | |
| 18:49 | Update website for the 2.20 release. (check-in: e14628bc3d ... user: drh tags: trunk) | |
| 18:46 | Version 2.20 (check-in: 210e89a059 ... user: drh tags: trunk, release, version-2.20) | |