|  | Commit message (Collapse) | Author | Age | 
|---|
| | 
| 
| 
| 
| 
| 
| | This fixes http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-2542.
Noticed-by: Silvio Cesare <silvio.cesare@gmail.com>
Signed-off-by: Lars Hjemli <hjemli@gmail.com> | 
| | 
| 
| 
| 
| 
| 
| 
| | The format uses a 'Z' suffix, which indicates no TZ offset.
Thus we should not respect the local-time config setting here.
Signed-off-by: Aaron Griffin <agriffin@datalogics.com>
Signed-off-by: Lars Hjemli <hjemli@gmail.com> | 
| | 
| 
| 
| 
| 
| 
| | Since cgit linked with git-1.6.0 all zip archives has been uncompressed.
This patch fixes the issue by specifying Z_DEFAULT_COMPRESSION.
Signed-off-by: Lars Hjemli <hjemli@gmail.com> | 
| | 
| 
| 
| 
| 
| 
| 
| | The source and destination strings in strcpy() may not overlap.
Instead, use memmove(), which allows overlap.  This fixes test t0104,
where 'url=foo%2bbar/tree' was being parsed improperly.
Signed-off-by: Mark Lodato <lodatom@gmail.com> | 
| | 
| 
| 
| | Signed-off-by: Mark Lodato <lodatom@gmail.com> | 
| | 
| 
| 
| | Signed-off-by: Lars Hjemli <hjemli@gmail.com> | 
| | 
| 
| 
| 
| 
| 
| 
| | When a ref refers to something other then a commit or tag object, cgit
could segfault when trying to display the tag info.
Noticed-by: Eugene Sajine <euguess@gmail.com>
Signed-off-by: Lars Hjemli <hjemli@gmail.com> | 
| | 
| 
| 
| 
| 
| 
| | When a commit has a specific encoding, this encoding also applies to
the author and committer name and email.
Signed-off-by: Lars Hjemli <hjemli@gmail.com> | 
| | 
| 
| 
| | Signed-off-by: Lars Hjemli <hjemli@gmail.com> | 
| | 
| 
| 
| | Signed-off-by: Lars Hjemli <hjemli@gmail.com> | 
| | 
| 
| 
| | Signed-off-by: Lars Hjemli <hjemli@gmail.com> | 
| | 
| 
| 
| 
| 
| 
| 
| 
| | PATH_INFO="/$REPONAME/commit/?id=1" QUERY_STRING="id=1" ./cgit.cgi
triggers segfault when the repository is empty and therefore
ctx.qry.head is unset
Signed-off-by: Florian Pritz <bluewind@xssn.at>
Signed-off-by: Lars Hjemli <hjemli@gmail.com> | 
| | 
| 
| 
| | Signed-off-by: Lars Hjemli <hjemli@gmail.com> | 
| | |  | 
| | 
| 
| 
| | Signed-off-by: Lars Hjemli <hjemli@gmail.com> | 
| | 
| 
| 
| 
| | Noticed-by: Andreas Schwab <schwab@linux-m68k.org>
Signed-off-by: Lars Hjemli <hjemli@gmail.com> | 
| | 
| 
| 
| | Signed-off-by: Lars Hjemli <hjemli@gmail.com> | 
| | |  | 
| | 
| 
| 
| 
| | Signed-off-by: Geoff Johnstone <geoff.johnstone@googlemail.com>
Signed-off-by: Lars Hjemli <hjemli@gmail.com> | 
| | 
| 
| 
| 
| | Signed-off-by: Loui Chang <louipc.ist@gmail.com>
Signed-off-by: Lars Hjemli <hjemli@gmail.com> | 
| | 
| 
| 
| 
| 
| 
| | This prevents FIXMEs from appearing.
Signed-off-by: Loui Chang <louipc.ist@gmail.com>
Signed-off-by: Lars Hjemli <hjemli@gmail.com> | 
| | 
| 
| 
| | Signed-off-by: Lars Hjemli <hjemli@gmail.com> | 
| |\ |  | 
| | | 
| | 
| | 
| | | Signed-off-by: Lars Hjemli <hjemli@gmail.com> | 
| |\ \ |  | 
| | | | 
| | | 
| | | 
| | | 
| | | 
| | | 
| | | 
| | | 
| | | 
| | | 
| | | 
| | | 
| | | 
| | | | The repo-specific 'snapshots' option is bitwise AND'ed with the global
'snapshots' option during parsing, and since the global cgitrc hasn't
been parsed when --scan-path is processed the global 'snapshots' will
always be 0 (i.e. no repo-specific 'snapshots' setting will have any
effect).
This patch fixes the issue by setting the global 'snapshots' mask to
0xFF (hence relying on later parsing of the generated cgitrc repolist
to do the right thing).
Signed-off-by: Lars Hjemli <hjemli@gmail.com> | 
| | | | 
| | | 
| | | 
| | | 
| | | 
| | | 
| | | 
| | | | Since repo.desc might have been populated by reading the 'description'
file in GIT_DIR, it may contain newlines. And by printing the literal
value, we may then generate an invalid cgitrc include-file.
Signed-off-by: Lars Hjemli <hjemli@gmail.com> | 
| | | | 
| | | 
| | | 
| | | | Signed-off-by: Lars Hjemli <hjemli@gmail.com> | 
| | | | 
| | | 
| | | 
| | | | Signed-off-by: Lars Hjemli <hjemli@gmail.com> | 
| | | | 
| | | 
| | | 
| | | 
| | | 
| | | 
| | | 
| | | | Note: print_repo() still ignores repo.max-stats and repo.snapshots,
which both requires additional work since these settings are represented
internally as an enum and a bitmap.
Signed-off-by: Lars Hjemli <hjemli@gmail.com> | 
| | | | 
| | | 
| | | 
| | | | Signed-off-by: Lars Hjemli <hjemli@gmail.com> | 
| | | | 
| | | 
| | | 
| | | 
| | | 
| | | 
| | | | This option must be enabled if repo-specific cgitrc files should be
allowed to override any of the 'filter' options.
Signed-off-by: Lars Hjemli <hjemli@gmail.com> | 
| | | | 
| | | 
| | | 
| | | | Signed-off-by: Lars Hjemli <hjemli@gmail.com> | 
| | | | 
| | | 
| | | 
| | | | Signed-off-by: Lars Hjemli <hjemli@gmail.com> | 
| | | | 
| | | 
| | | 
| | | 
| | | 
| | | 
| | | 
| | | 
| | | 
| | | 
| | | 
| | | 
| | | 
| | | 
| | | 
| | | 
| | | 
| | | 
| | | 
| | | 
| | | 
| | | 
| | | 
| | | 
| | | 
| | | | When recursively scanning a directory tree looking for git repositories,
cgit will now parse cgitrc files found within such repositories.
The repo-specific config files can include any repo-specific options
except 'repo.url' and 'repo.path'. Also, in such config files the 'repo.'
prefix can not be used, i.e. the valid options then becomes:
* name
* clone-url
* desc
* ower
* defbranch
* snapshots
* enable-log-filecount
* enable-log-linecount
* max-stats
* module-link
* section
* about-filter
* commit-filter
* source-filter
* readme
Signed-off-by: Lars Hjemli <hjemli@gmail.com> | 
| | | | 
| | | 
| | | 
| | | 
| | | 
| | | 
| | | 
| | | 
| | | 
| | | | The new function repo_config() is used to handle all 'simple' repo
options, for the following reasons:
* code readability
* parser performance
* upcoming support for repo-local cgitrc files during scanning
Signed-off-by: Lars Hjemli <hjemli@gmail.com> | 
| | | | 
| | | 
| | | 
| | | 
| | | 
| | | 
| | | 
| | | | When no sorting is requested by the client, cgit will now sort by
section name followed by repo name. This allows repos to be registered/
discovered independently of their display order.
Signed-off-by: Lars Hjemli <hjemli@gmail.com> | 
| | | | 
| | | 
| | | 
| | | 
| | | 
| | | 
| | | | This option can be used to specify the section name for the current
repository.
Signed-off-by: Lars Hjemli <hjemli@gmail.com> | 
| | | | 
| | | 
| | | 
| | | 
| | | 
| | | 
| | | 
| | | | The 'repo.' prefix should be reserved for repo-specific options, but
the option 'repo.group' must still be honored to stay backwards
compatible.
Signed-off-by: Lars Hjemli <hjemli@gmail.com> | 
| | | | 
| | | 
| | | 
| | | 
| | | 
| | | 
| | | | This is an alias for --scan-tree (which might be deprecated in the
future).
Signed-off-by: Lars Hjemli <hjemli@gmail.com> | 
| | | | 
| | | 
| | | 
| | | 
| | | 
| | | 
| | | | The 'repo.' prefix will soon be reserved for repo-specific config
options.
Signed-off-by: Lars Hjemli <hjemli@gmail.com> | 
| | | | 
| | | 
| | | 
| | | | Signed-off-by: Lars Hjemli <hjemli@gmail.com> | 
| | | | 
| | | 
| | | 
| | | | Signed-off-by: Lars Hjemli <hjemli@gmail.com> | 
| | | | 
| | | 
| | | 
| | | | Signed-off-by: Lars Hjemli <hjemli@gmail.com> | 
| | | | 
| | | 
| | | 
| | | 
| | | 
| | | | This function will be reused to cache the result of tree scanning.
Signed-off-by: Lars Hjemli <hjemli@gmail.com> | 
| | | | 
| | | 
| | | 
| | | 
| | | 
| | | | When specified, the specified path will be scanned for repositories.
Signed-off-by: Lars Hjemli <hjemli@gmail.com> | 
| | | | 
| | | 
| | | 
| | | 
| | | 
| | | 
| | | | We don't want to descend into every subdirectory of a git repository
with a workdir.
Signed-off-by: Lars Hjemli <hjemli@gmail.com> | 
| |\ \ \ |  | 
| | | | | 
| | | | 
| | | | 
| | | | 
| | | | 
| | | | 
| | | | | Adding some padding to the linenumbers while right-aligning them and
removing the background color makes the page more readable.
Signed-off-by: Lars Hjemli <hjemli@gmail.com> | 
| | | | | 
| | | | 
| | | | 
| | | | 
| | | | 
| | | | 
| | | | 
| | | | 
| | | | 
| | | | 
| | | | 
| | | | 
| | | | 
| | | | | This makes the name of the cgitrc option more descriptive and at the
same time changes the default from "0" to "1" in an attempt to stay
backwards compatible - prior to the introduction of "source-filter"
and "linenumbers", cgit always generated linenumber links in the
tree view, but now this feature can be turned off (one might want to
do this if the source-filter performs line-wrapping etc).
While at it, the documentation is updated to match the surrounding
descriptions.
Signed-off-by: Lars Hjemli <hjemli@gmail.com> |