summary refs log tree commit diff
Commit message (Collapse)AuthorAge
* build: Add ax_check_opensslJune McEnroe2020-07-31
|
* tls: Call SSL_CTX_set_default_verify_paths by defaultJune McEnroe2020-07-31
| | | | | | | | | | | | | | | | | | | | | | | This removes the hard dependency on a CA bundle file existing in the default path (which seems to not be the case on Debian, for example), but results in a subtle behaviour change: if the CA bundle file does not exist, the CA directory will be used instead, rather than failing hard. I believe the only reason libtls insists on loading a CA bundle file itself is so that it can be sandboxed afterwards, given that a file is loaded all at once while a directory is only loaded as needed. If the default CA bundle file exists, SSL_CTX_set_default_verify_paths will still immediately load it, so sandboxing will still work. If it doesn't exist, then the CA directory will be used, which will work well for unsandboxed applications, but will likely fail during verification as it tries to search the directory. Either way, if the CA bundle file does not exist, a sandboxed application will not work. Enabling the use of the CA directory, however, will allow more unsandboxed applications to work. Finally, to restore the original behaviour, an application can call tls_config_set_ca_file(3) with the path returned by tls_default_ca_cert_file(3).
* tls_config: Replace constant with X509_get_default_cert_file()June McEnroe2020-07-31
|
* tls_internal: Replace default ciphers with compatJune McEnroe2020-07-31
|
* tls: Implement load_verify_memJune McEnroe2020-07-31
| | | | Based on crypto/x509/by_mem.c
* tls: Implement use_certificate_chain_memJune McEnroe2020-07-31
| | | | Based on ssl/ssl_rsa.c.
* tls: Use SSL_CTX_get0_param and X509_STORE_get0_paramJune McEnroe2020-07-31
|
* tls_server: Remove SSL_OP_NO_CLIENT_RENEGOTIATIONJune McEnroe2020-07-31
| | | | This is a LibreSSL-specific option.
* tls_ocsp: Use X509_STORE_CTX_new and X509_OBJECT_newJune McEnroe2020-07-31
|
* tls_ocsp: Use ASN1_TIME_to_tmJune McEnroe2020-07-31
|
* tls_conninfo: Implement time_tm_clamp_notafterJune McEnroe2020-07-31
| | | | From crypto/asn1/a_time_tm.c
* tls_conninfo: Use ASN1_TIME_to_tmJune McEnroe2020-07-31
|
* tls_verify: Use ASN1_STRING_get0_dataJune McEnroe2020-07-31
|
* tls_bio_cb: Use public BIO interfacesJune McEnroe2020-07-31
|
* tls_server: #include <string.h>June McEnroe2020-07-30
|
* tls_client: #include <string.h>June McEnroe2020-07-30
|
* tls_util: #include <string.h>June McEnroe2020-07-30
|
* tls_config: #include <string.h>June McEnroe2020-07-30
|
* tls: #include <string.h>June McEnroe2020-07-30
|
* Import LibreSSL 3.2.0June McEnroe2020-07-30
|
* import: Add script to extract libtls from libressl-portableJune McEnroe2020-07-30
generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-11-16 19:25:11 +0000
own per page in log view. It also changes the default from 100 to 50, mainly due to the more cpu intensive log pages (number of files/lines changed) but also since 100 log messages requires excessive scrolling. Signed-off-by: Lars Hjemli <hjemli@gmail.com> 2007-05-13Show number of changed lines in log viewLars Hjemli Use the new file-diff interface to calculate number of changed lines per commit. Signed-off-by: Lars Hjemli <hjemli@gmail.com> 2007-05-13Simplify ui-diff.c using the new file-level diff interfaceLars Hjemli Signed-off-by: Lars Hjemli <hjemli@gmail.com> 2007-05-13Add standard interface for file diff functionsLars Hjemli Signed-off-by: Lars Hjemli <hjemli@gmail.com> 2007-05-13Show number of changed files in log viewLars Hjemli This uses the new tree-diff functions to calculate number of files changed per commit. Also fix some whitespace issues. Signed-off-by: Lars Hjemli <hjemli@gmail.com> 2007-05-13Use standard tree-diff function when showing diffstat for single commitLars Hjemli Remove unneeded code from ui-commit.c and replace with call to standard diff-functions. Also fix some whitespace issues. Signed-off-by: Lars Hjemli <hjemli@gmail.com> 2007-05-13Add shared diff-handling functionsLars Hjemli This adds a standard interface for tree diffing. Signed-off-by: Lars Hjemli <hjemli@gmail.com> 2007-05-12css: fix bad rendering in Internet ExplorerLars Hjemli The layout-tables used border-collapse:separate, which maked all pages look really bad in IE. Fix it. Signed-off-by: Lars Hjemli <hjemli@gmail.com> 2007-05-11Add links to enable downloading of tagged blobsLars Hjemli All tags below refs/archives are shown on the repo summary page as download links. The links referes to the tagged objects, using the tag name as filename for download. This can be used to add shortcuts for release tarballs, documentation and other blobs stored in the object database, especially blobs that are not reachable during cloning. Signed-off-by: Lars Hjemli <hjemli@gmail.com> 2007-05-11Makefile: add support for building w.o. preinstalled gitLars Hjemli Signed-off-by: Lars Hjemli <hjemli@gmail.com> 2007-05-11Tag release v0.3Lars Hjemli Signed-off-by: Lars Hjemli <hjemli@gmail.com> 2007-05-11Update README with submodule build infoLars Hjemli Signed-off-by: Lars Hjemli <hjemli@gmail.com> 2007-05-11Add submodule links in tree listingLars Hjemli When a submodule occurs in a tree, generate a link to show the module/commit. The link is specified as a sprintf string in /etc/cgitrc, using parameters 'module-link' and 'repo.module-link'. This should probably be extended with repo.module-link.$path. Signed-off-by: Lars Hjemli <hjemli@gmail.com> 2007-05-11Add submodules.sh and use it during buildsLars Hjemli This adds a shell script which can be be used to initialize, list and update submodules in a git repository. It reads the file .gitmodules to find a mapping between submodule path and repository url for the initial clone of all submodules. The script is used during cgit builds to enable automatic download and checkout of the git git repository. Signed-off-by: Lars Hjemli <hjemli@gmail.com> 2007-05-11Added git as a submoduleLars Hjemli This commit adds the subdirectory 'git' as a submodule containing the git git repository, but doesn't add support for automatically cloning the submodule. Signed-off-by: Lars Hjemli <hjemli@gmail.com> 2007-05-09Add support for downloading single blobsLars Hjemli Signed-off-by: Lars Hjemli <hjemli@gmail.com> 2007-05-08ui-view: show pathname if specified in querystringLars Hjemli Signed-off-by: Lars Hjemli <hjemli@gmail.com> 2007-05-08Update to libgit 1.5.2-rc2Lars Hjemli Signed-off-by: Lars Hjemli <hjemli@gmail.com> 2007-02-21Layout updateLars Hjemli 2007-02-08Make snapshot feature configurableLars Hjemli Snapshots can now be enabled/disabled by default for all repositories in cgitrc with param "snapshots". Additionally, any repo can override the default setting with param "repo.snapshots". By default, no snapshotting is enabled. Signed-off-by: Lars Hjemli <hjemli@gmail.com> 2007-02-08Add support for snapshotsLars Hjemli Make a link from the commit viewer to a snapshot of the corresponding tree. Currently only zip-format is supported. Signed-off-by: Lars Hjemli <hjemli@gmail.com> 2007-02-05cgit v0.2Lars Hjemli Main changes since v0.1: -list tags in repo summary -allow search in log-view -read repository paths from cgitrc Signed-off-by: Lars Hjemli <hjemli@gmail.com> 2007-02-05Add support for prefix and gitsrc arguments to 'make'Lars Hjemli This should improve the installation a little, especially since the new options are mentioned in the README. Also, add a make-rule to build the git binaries if necessary + a dependency between cgit and libgit.a. Signed-off-by: Lars Hjemli <hjemli@gmail.com> 2007-02-04Update cgitrc templateLars Hjemli Make the descriptions more helpfull. Signed-off-by: Lars Hjemli <hjemli@gmail.com> 2007-02-04Add support for lightweight tagsLars Hjemli There is nothing bad about a tag that has no tag-object, but the old code didn't handle such tags correctly. Fix it. Signed-off-by: Lars Hjemli <hjemli@gmail.com> 2007-02-04Read repo-info from /etc/cgitrcLars Hjemli This makes cgit read all repo-info from the configfile, instead of scanning for possible git-dirs below a common root path. This is primarily done to get better security (separate physical path from logical repo-name). In /etc/cgitrc each repo is registered with the following keys: repo.url repo.name repo.path repo.desc repo.owner Note: *Required keys are repo.url and repo.path, all others are optional *Each occurrence of repo.url starts a new repository registration *Default value for repo.name is taken from repo.url *The value of repo.url cannot contain characters with special meaning for urls (i.e. one of /?%&), while repo.name can contain anything. Example: repo.url=cgit-pub repo.name=cgit/public repo.path=/pub/git/cgit repo.desc=My public cgit repo repo.owner=Lars Hjemli repo.url=cgit-priv repo.name=cgit/private repo.path=/home/larsh/src/cgit/.git repo.desc=My private cgit repo repo.owner=Lars Hjemli Signed-off-by: Lars Hjemli <hjemli@gmail.com> 2007-02-04Do not die if tag has no messageLars Hjemli Signed-off-by: Lars Hjemli <hjemli@gmail.com> 2007-02-03Fix search for non-virtual urlsLars Hjemli When cgit don't use virtual urls, the current repo and page url parameters must be included in the search form as hidden input fields. Signed-off-by: Lars Hjemli <hjemli@gmail.com> 2007-01-28Update README with install/config informationLars Hjemli