cgit with patches for sandboxing using qssb
移至檔案
Lars Hjemli 8a631b1173 ui-tag.c: do not segfault when id is missing from query-string
The purpose of the tag page is to print info about a specific tag,
but if no tag was specified on the query-string cgit used to segfault.

With this patch, cgit will fallback to the value of the 'h' parameter
instead (which is never NULL due to prepare_repo_cmd() in cgit.c).

It will now also verify that the specified tagname is in fact a valid
ref in the 'refs/tags/' namespace, i.e. specifying 'id=master' will
trigger a 'Bad tag reference' error.

Noticed-by: Eric Wong <normalperson@yhbt.net>
Signed-off-by: Lars Hjemli <hjemli@gmail.com>
2009-08-17 09:24:36 +02:00
git@5c415311f7 Use GIT-1.6.1.1 2009-02-01 19:30:16 +01:00
tests Merge branch 'jw/commit-decorations' 2009-01-27 23:00:40 +01:00
.gitignore Makefile: autobuild dependency rules 2008-03-24 23:27:12 +01:00
.gitmodules Delete submodules.sh and prepare for using git-submodule 2007-09-03 22:54:51 +02:00
cache.c Fix some warnings to allow -Werror 2008-11-06 19:18:07 +01:00
cache.h Add page 'ls_cache' 2008-04-28 12:10:13 +02:00
cgit.c Add support for a custom header 2009-01-29 21:27:39 +01:00
cgit.css ui-tree: show hexdump of binary blobs 2009-01-31 17:45:48 +01:00
cgit.h Merge branch 'lh/binary' 2009-02-01 19:29:47 +01:00
cgit.png Replace sidebar/logo 2008-04-12 20:00:27 +02:00
cgitrc.5.txt Add support for a custom header 2009-01-29 21:27:39 +01:00
cmd.c Merge branch 'lh/stats' 2009-01-27 20:16:37 +01:00
cmd.h Add command dispatcher 2008-03-24 01:43:48 +01:00
configfile.c Move function for configfile parsing into configfile.[ch] 2008-03-28 00:09:11 +01:00
configfile.h Move function for configfile parsing into configfile.[ch] 2008-03-28 00:09:11 +01:00
COPYING Add license file and copyright notices 2006-12-10 22:41:14 +01:00
gen-version.sh gen-version.sh: don't sed the output from git describe 2007-10-01 12:09:41 +02:00
html.c html.c: use correct escaping in html attributes 2009-01-29 22:21:15 +01:00
html.h html.c: add html_url_path 2008-10-05 16:52:57 +02:00
Makefile CGIT 0.8.2.1 2009-03-15 09:31:05 +01:00
parsing.c parsing.c: enable builds with NO_ICONV defined 2008-12-05 19:10:28 +01:00
README Update README 2007-09-04 11:53:54 +02:00
scan-tree.c Add support for --scan-tree=<path> option to cgit 2008-09-15 23:35:27 +02:00
scan-tree.h Add support for --scan-tree=<path> option to cgit 2008-09-15 23:35:27 +02:00
shared.c shared.c: avoid SEGFAULT when checking for binary buffers 2009-02-01 19:29:24 +01:00
ui-atom.c Add atom-support 2008-08-01 22:12:34 +02:00
ui-atom.h Add atom-support 2008-08-01 22:12:34 +02:00
ui-blob.c Adjust to new calling convention for read_tree_recursive() 2008-07-21 10:10:48 +02:00
ui-blob.h allow blob extract blobs by head/path combination 2008-06-24 23:33:24 +02:00
ui-clone.c Supply status description to html_status() 2008-08-06 22:57:44 +02:00
ui-clone.h Add support for cloning over http 2008-08-06 11:21:09 +02:00
ui-commit.c Add decorations to commit pages 2009-01-27 22:45:47 +01:00
ui-commit.h Add separate header-files for each page/view 2008-03-24 16:38:47 +01:00
ui-diff.c Handle binary files in diffs 2009-01-31 10:40:40 +01:00
ui-diff.h Integrate diffstat with diff 2008-04-24 23:41:32 +02:00
ui-log.c Handle binary files in diffs 2009-01-31 10:40:40 +01:00
ui-log.h Add decorations to commit pages 2009-01-27 22:45:47 +01:00
ui-patch.c Handle binary files in diffs 2009-01-31 10:40:40 +01:00
ui-patch.h Add separate header-files for each page/view 2008-03-24 16:38:47 +01:00
ui-plain.c Fix some warnings to allow -Werror 2008-11-06 19:18:07 +01:00
ui-plain.h Implement plain view 2008-08-06 11:21:30 +02:00
ui-refs.c Make all tags viewable 2009-01-11 16:39:43 +01:00
ui-refs.h Add separate header-files for each page/view 2008-03-24 16:38:47 +01:00
ui-repolist.c Merge branch 'full-log' 2008-12-06 11:37:37 +01:00
ui-repolist.h Prepare for 'about site' page / add 'root-readme' option to cgitrc 2008-04-29 01:06:30 +02:00
ui-shared.c Add support for a custom header 2009-01-29 21:27:39 +01:00
ui-shared.h Merge branch 'lh/stats' 2009-01-27 20:16:37 +01:00
ui-snapshot.c ui-snapshot: avoid segfault when no filename is specified 2009-03-15 08:57:33 +01:00
ui-snapshot.h Set prefix in snapshots when using dwimmery 2008-11-30 13:39:53 +01:00
ui-stats.c ui-stats.c: reuse cgit_add_hidden_formfields() 2008-12-07 15:57:55 +01:00
ui-stats.h ui-stats: replace 'enable-stats' setting with 'max-stats' 2008-12-07 13:17:21 +01:00
ui-summary.c ui-summary: use html_url_path() 2008-10-05 21:21:42 +02:00
ui-summary.h Prepare for 'about repo' page 2008-04-28 23:06:57 +02:00
ui-tag.c ui-tag.c: do not segfault when id is missing from query-string 2009-08-17 09:24:36 +02:00
ui-tag.h Add separate header-files for each page/view 2008-03-24 16:38:47 +01:00
ui-tree.c fix segfault when displaying empty blobs 2009-03-15 08:46:15 +01:00
ui-tree.h Add separate header-files for each page/view 2008-03-24 16:38:47 +01:00

                       cgit - cgi for git


This is an attempt to create a fast web interface for the git scm, using a
builtin cache to decrease server io-pressure.


Installation

Building cgit involves building a proper version of git. How to do this
depends on how you obtained the cgit sources:

a) If you're working in a cloned cgit repository, you first need to
initialize and update the git submodule:

  $ git submodule init     # register the git submodule in .git/config
  $ $EDITOR .git/config    # if you want to specify a different url for git
  $ git submodule update   # clone/fetch and checkout correct git version

b) If you're building from a cgit tarball, you can download a proper git
version like this:

  $ make get-git


When either a) or b) has been performed, you can build and install cgit like
this:

  $ make
  $ sudo make install

This will install cgit.cgi and cgit.css into "/var/www/htdocs/cgit". You can
configure this location (and a few other things) by providing a "cgit.conf"
file (see the Makefile for details).


Dependencies:
  -git 1.5.3
  -zip lib
  -crypto lib
  -openssl lib


Apache configuration

A new Directory-section must probably be added for cgit, possibly something
like this:

  <Directory "/var/www/htdocs/cgit/">
      AllowOverride None
      Options ExecCGI
      Order allow,deny
      Allow from all
  </Directory>


Runtime configuration

The file /etc/cgitrc is read by cgit before handling a request. In addition
to runtime parameters, this file also contains a list of the repositories
displayed by cgit.

A template cgitrc is shipped with the sources, and all parameters and default
values are documented in this file.


The cache

When cgit is invoked it looks for a cachefile matching the request and
returns it to the client. If no such cachefile exist (or if it has expired),
the content for the request is written into the proper cachefile before the
file is returned.

If the cachefile has expired but cgit is unable to obtain a lock for it, the
stale cachefile is returned to the client. This is done to favour page
throughput over page freshness.

The generated content contains the complete response to the client, including
the http-headers "Modified" and "Expires".


The missing features

* Submodule links in the directory listing page have a fixed format per
  repository. This should probably be extended to a generic map between
  submodule path and url.

* Branch- and tag-lists in the summary page can get very long, they should
  probably only show something like the ten "latest modified" branches and
  a similar number of "most recent" tags.

* There should be a new page for browsing refs/heads and refs/tags, with links
  from the summary page whenever the branch/tag lists overflow.

* The log-page should have more/better search options (author, committer,
  pickaxe, paths) and possibly support arbitrary revision specifiers.

* A set of test-scripts is required before cgit-1.0 can be released.

Patches/bugreports/suggestions/comments are always welcome, please feel free
to contact the author: hjemli@gmail.com