CVS log for mandoc/man.cgi.8

[BACK] Up to [cvsweb.bsd.lv] / mandoc

Request diff between arbitrary revisions


Default branch: MAIN
Current tag: MAIN


Revision 1.23 / (download) - annotate - [select for diffs], Sun May 20 21:48:44 2018 UTC (3 years, 3 months ago) by schwarze
Branch: MAIN
CVS Tags: VERSION_1_14_5, VERSION_1_14_4, HEAD
Changes since 1.22: +9 -4 lines
Diff to previous 1.22 (colored) to selected 1.6 (colored)

various minor improvements

Revision 1.22 / (download) - annotate - [select for diffs], Sat Mar 18 16:48:24 2017 UTC (4 years, 6 months ago) by schwarze
Branch: MAIN
CVS Tags: VERSION_1_14_3, VERSION_1_14_2
Changes since 1.21: +2 -7 lines
Diff to previous 1.21 (colored) to selected 1.6 (colored)

Simplify: write HTTP 303 redirects with relative locations.
Suggested by bentley@.

Delete the HTTP_HOST configuration variable that is now obsolete.

Revision 1.21 / (download) - annotate - [select for diffs], Fri Mar 17 12:56:57 2017 UTC (4 years, 6 months ago) by schwarze
Branch: MAIN
Changes since 1.20: +9 -8 lines
Diff to previous 1.20 (colored) to selected 1.6 (colored)

Update HISTORY and AUTHORS: we no longer use SQLite.
Outdated information reported by an Anonymous Coward on undeadly.org.

Revision 1.20 / (download) - annotate - [select for diffs], Mon Jul 11 22:48:37 2016 UTC (5 years, 2 months ago) by schwarze
Branch: MAIN
CVS Tags: VERSION_1_14_1, VERSION_1_13_4, VERSION_1_13
Changes since 1.19: +5 -3 lines
Diff to previous 1.19 (colored) to selected 1.6 (colored)

Make all components of the URI individually optional,
independent of each other, as in:
http://man.openbsd.org[/manpath][/mansec][/arch]/name[.sec]
The restrictions in the past kept confusing people.
Triggered by a question from RafaelNeves at gmail dot com.

Revision 1.19 / (download) - annotate - [select for diffs], Sun Jul 10 10:05:33 2016 UTC (5 years, 2 months ago) by schwarze
Branch: MAIN
Changes since 1.18: +12 -13 lines
Diff to previous 1.18 (colored) to selected 1.6 (colored)

Simplify the code and the server setup by deleting the pseudo-manpath
"mandoc" that was used for man.cgi(8) documentation and by assuming
that the apropos(1) and man.cgi(8) manuals are simply installed in
the default manpath.  Even though man.cgi(8) is not installed by
default when installing OpenBSD, it is easy to copy it into the
default manpath used for man.cgi(8).

Idea found when considering a question asked by wrant dot com.

Revision 1.18 / (download) - annotate - [select for diffs], Thu Jul 7 14:34:41 2016 UTC (5 years, 2 months ago) by schwarze
Branch: MAIN
Changes since 1.17: +3 -5 lines
Diff to previous 1.17 (colored) to selected 1.6 (colored)

sync with OpenBSD: do not talk about nginx(8)

Revision 1.17 / (download) - annotate - [select for diffs], Sat May 28 13:40:49 2016 UTC (5 years, 3 months ago) by schwarze
Branch: MAIN
Changes since 1.16: +11 -16 lines
Diff to previous 1.16 (colored) to selected 1.6 (colored)

Simplify search form: minus two visible control elements, minus
one table, minus twenty lines of code, no loss of functionality.
No idea why i didn't do this earlier...

Revision 1.16 / (download) - annotate - [select for diffs], Sat Mar 19 13:29:22 2016 UTC (5 years, 5 months ago) by schwarze
Branch: MAIN
Changes since 1.15: +2 -2 lines
Diff to previous 1.15 (colored) to selected 1.6 (colored)

double word; from jmc@

Revision 1.15 / (download) - annotate - [select for diffs], Fri Mar 18 13:22:27 2016 UTC (5 years, 6 months ago) by schwarze
Branch: MAIN
Changes since 1.14: +51 -42 lines
Diff to previous 1.14 (colored) to selected 1.6 (colored)

Make the SCRIPT_NAME logic simpler, safer, and make it actually work;
in part based on ideas by bentley@.
While here, improve the documentation.

Revision 1.14 / (download) - annotate - [select for diffs], Fri Mar 18 01:22:56 2016 UTC (5 years, 6 months ago) by schwarze
Branch: MAIN
Changes since 1.13: +11 -2 lines
Diff to previous 1.13 (colored) to selected 1.6 (colored)

document short URIs

Revision 1.13 / (download) - annotate - [select for diffs], Thu Nov 5 20:55:41 2015 UTC (5 years, 10 months ago) by schwarze
Branch: MAIN
Changes since 1.12: +9 -9 lines
Diff to previous 1.12 (colored) to selected 1.6 (colored)

Use include files "header.html" and "footer.html" rather than a
compiled-in string.  This is not a security risk, we read the file
manpath.conf from the same directory, anyway.  No error handling
is needed; even if the files are absent, that's not an error.

This is more flexible without causing complication of the code or
the user interface.  It helps the upcoming revamp of the online
manual pages on man.NetBSD.org.

Based on an idea by Jean-Yves Migeon <jeanyves dot migeon at free dot fr>,
but implemented in a much simpler way.

Revision 1.12 / (download) - annotate - [select for diffs], Thu Nov 5 17:47:51 2015 UTC (5 years, 10 months ago) by schwarze
Branch: MAIN
Changes since 1.11: +7 -9 lines
Diff to previous 1.11 (colored) to selected 1.6 (colored)

Unify the three stylesheets into a single CSS file.
Many thanks to bentley@ for doing this work.

Revision 1.11 / (download) - annotate - [select for diffs], Sun Sep 14 19:44:28 2014 UTC (7 years ago) by schwarze
Branch: MAIN
CVS Tags: VERSION_1_13_3, VERSION_1_13_2
Changes since 1.10: +8 -2 lines
Diff to previous 1.10 (colored) to selected 1.6 (colored)

Support backslash-escaping of white space in the query expression,
to be more similar to apropos(1) called from the shell.
Missing feature reported by Marcus MERIGHI <mcmer dash openbsd at
tor dot at> on misc@.

Revision 1.10 / (download) - annotate - [select for diffs], Fri Aug 22 15:49:50 2014 UTC (7 years ago) by schwarze
Branch: MAIN
Changes since 1.9: +3 -3 lines
Diff to previous 1.9 (colored) to selected 1.6 (colored)

typo; noticed by jmc@ some time ago

Revision 1.9 / (download) - annotate - [select for diffs], Tue Jul 22 18:14:13 2014 UTC (7 years, 1 month ago) by schwarze
Branch: MAIN
CVS Tags: VERSION_1_13_1
Changes since 1.8: +40 -2 lines
Diff to previous 1.8 (colored) to selected 1.6 (colored)

Security fix to prevent XSS attacks:
Restrict the character set of strings passed into html_alloc(),
in particular architecture names that come from the QUERY_STRING,
but also SCRIPT_NAME and manpath.conf content for additional safety,
and bail out safely on violations.
Issue reported by Sebastien Marie <semarie-openbsd at latrappe dot fr>.

Revision 1.8 / (download) - annotate - [select for diffs], Mon Jul 21 15:45:17 2014 UTC (7 years, 1 month ago) by schwarze
Branch: MAIN
Changes since 1.7: +7 -2 lines
Diff to previous 1.7 (colored) to selected 1.6 (colored)

Kristaps points out that the current HTTP/1.1 draft standard (RFC
2616) requires the Location: response-header field to be an absolute
URI (14.30), and only the most recent proposed standard (RFC 7231),
which is barely a month old, allows a relative Location: (7.1.2).
While most modern browsers appear to support relative Location:
headers, some may not, and it's maybe a bit early to rely on relative
Location: headers.

I'm not going back to the HTTP_HOST or SERVER_NAME CGI variables,
though.  While some CGI programs certainly require those, in which
case both the CGI programmer and the web server admin have to be
very careful to keep the system secure and reliable, man.cgi(8)
does not really need them.  We always know at compile time which
domain we are running for, and for man.cgi(8), security and reliability
are definitely much more important than flexibility.  So make HTTP_HOST
a compile-time definition for now.

Revision 1.7 / (download) - annotate - [select for diffs], Fri Jul 18 19:03:39 2014 UTC (7 years, 2 months ago) by schwarze
Branch: MAIN
Changes since 1.6: +1 -6 lines
Diff to previous 1.6 (colored)

Do not use the HTTP_HOST CGI variable,
just make the HTTP redirect Location: relative.
Less user input is good, it reduces the attack surface.
Besides, this removes one global variable and 4 lines of code.

Patch from Sebastien Marie <semarie-openbsd at latrappe dot fr>.

Revision 1.6 / (download) - annotate - [selected], Sun Jul 13 15:38:36 2014 UTC (7 years, 2 months ago) by schwarze
Branch: MAIN
Changes since 1.5: +57 -22 lines
Diff to previous 1.5 (colored)

Compatibility hack for the old "manpath=OpenBSD<blank>" query parameter format;
unfortunate, more than 400 links needing this are scattered all around
the www.openbsd.org website, and CVSweb needs this as well.

Revision 1.5 / (download) - annotate - [select for diffs], Sun Jul 13 09:39:32 2014 UTC (7 years, 2 months ago) by schwarze
Branch: MAIN
Changes since 1.4: +6 -2 lines
Diff to previous 1.4 (colored) to selected 1.6 (colored)

Install the manuals of the web interface below the same directory
as manpath.conf, such that we do not need to mix our own documentation
into the documentation we are serving, which may not even be possible
if the latter is updated automatically.

Based on an idea by beck@.

Revision 1.4 / (download) - annotate - [select for diffs], Sun Jul 13 00:19:51 2014 UTC (7 years, 2 months ago) by schwarze
Branch: MAIN
Changes since 1.3: +58 -58 lines
Diff to previous 1.3 (colored) to selected 1.6 (colored)

update after recent code changes

Revision 1.3 / (download) - annotate - [select for diffs], Sat Jul 12 23:41:04 2014 UTC (7 years, 2 months ago) by schwarze
Branch: MAIN
Changes since 1.2: +3 -3 lines
Diff to previous 1.2 (colored) to selected 1.6 (colored)

Polish the search form using feedback from beck@ and others,
in particular introduce a section dropdown and an architecture dropdown.

Revision 1.2 / (download) - annotate - [select for diffs], Fri Jul 11 21:30:52 2014 UTC (7 years, 2 months ago) by schwarze
Branch: MAIN
Changes since 1.1: +10 -2 lines
Diff to previous 1.1 (colored) to selected 1.6 (colored)

add HISTORY section

Revision 1.1 / (download) - annotate - [select for diffs], Thu Jul 10 00:31:10 2014 UTC (7 years, 2 months ago) by schwarze
Branch: MAIN
Diff to selected 1.6 (colored)

Full rewrite of the man.cgi(8) manual.

Almost everything in the old man.cgi(7) was outdated in one way
or another - catman, catman.conf, CACHE_DIR, /cache, manroots,
replacing '/' with spaces, /tmp...

Instead, document the HTML and URI interfaces, the output and the setup,
and complete the listings of ENVIRONMENT variables and FILES.

Using section 8 instead of section 7 because that's the usual place
for CGI programs, see for example bgplg(8) and slowcgi(8).

This form allows you to request diff's between any two revisions of a file. You may select a symbolic revision name using the selection box or you may type in a numeric name using the type-in text box.




CVSweb