summaryrefslogtreecommitdiffstats
path: root/test
Commit message (Collapse)AuthorAgeFilesLines
* Merged r17060 from trunk to 3.2-stable (#27516)Toshi MARUYAMA2017-12-071-0/+19
| | | | | | | | | | | | | | | | | | | | | | | | mercurial: reject malicious command argument We've got a security report from the Phabricator team, which basically says --config and --debugger arguments can be injected anywhere to lead to an arbitrary command execution. https://secure.phabricator.com/rPa7921a4448093d00defa8bd18f35b8c8f8bf3314 This is a fundamental issue of the argument parsing rules in Mercurial, which allows extensions to populate their parsing rules and such extensions can be loaded by "--config extensions.<name>=". There's a chicken and egg problem. We're working on hardening the parsing rules, but which won't come in by default as it would be a behavior change. This patch adds a verification to reject malicious command arguments as a last ditch. The subsequent patches will fix the problem in more appropriate way. Contributed by Yuya Nishihara. git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@17074 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r16622 to r16625 (#26055).Jean-Philippe Lang2017-06-072-14/+37
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@16631 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r16619 (#26072).Jean-Philippe Lang2017-06-071-0/+12
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@16629 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r16574 (#25760).Jean-Philippe Lang2017-06-061-0/+30
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@16621 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r16572 (#25861).Jean-Philippe Lang2017-06-062-0/+12
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@16618 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r16568 (#25634).Jean-Philippe Lang2017-05-271-0/+14
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@16571 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r16557 (#25713).Jean-Philippe Lang2017-05-271-0/+19
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@16567 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r16500 to r16503 (#25503).Jean-Philippe Lang2017-04-083-9/+67
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@16524 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r16504 (#25478).Jean-Philippe Lang2017-04-081-1/+15
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@16522 e93f8b46-1217-0410-a6f0-8f06a7374b81
* total_spent_hours not returned in 3.2 (#25526).Jean-Philippe Lang2017-04-061-1/+0
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@16510 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r16492 (#25526).Jean-Philippe Lang2017-04-051-0/+9
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@16496 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Backported r16293 (#24875).Jean-Philippe Lang2017-01-301-0/+31
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@16309 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Test failure introduced in r16295 (#24199).Jean-Philippe Lang2017-01-301-2/+2
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@16305 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r16283 (#23793).Jean-Philippe Lang2017-01-292-0/+9
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@16301 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r16287 to r16289 (#24416).Jean-Philippe Lang2017-01-292-1/+15
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@16299 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r16286 (#24307).Jean-Philippe Lang2017-01-291-1/+24
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@16297 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r16118 to r16122 (#24693, #24718, #24722).Jean-Philippe Lang2017-01-041-2/+46
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@16133 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r16114 (#24646).Jean-Philippe Lang2017-01-041-0/+12
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@16131 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r16116 (#22034).Jean-Philippe Lang2017-01-043-14/+50
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@16129 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r16059, r16060, r16064, r16072.Jean-Philippe Lang2016-12-2028-48/+69
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@16107 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Fix test in 3.2-stable (#14817).Jean-Philippe Lang2016-12-201-1/+1
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@16105 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r16071 (#24595).Jean-Philippe Lang2016-12-201-0/+12
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@16100 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r16056 (#14817).Jean-Philippe Lang2016-12-201-0/+9
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@16098 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r15955 and r15956 (#24297).Jean-Philippe Lang2016-11-261-0/+11
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@16000 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r15848 (#23764).Jean-Philippe Lang2016-10-021-1/+11
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@15871 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r15846 (#23841).Jean-Philippe Lang2016-10-021-0/+16
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@15868 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r15852 and r15863 (#23839).Jean-Philippe Lang2016-10-021-0/+41
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@15865 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r15816 (#23758).Jean-Philippe Lang2016-09-041-0/+14
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@15818 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r15750 (#23655).Jean-Philippe Lang2016-08-311-0/+22
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@15766 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r15609 (#23278).Jean-Philippe Lang2016-07-112-2/+12
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@15638 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r15607 (#23246).Jean-Philippe Lang2016-07-101-0/+4
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@15615 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r15608 (#23206).Jean-Philippe Lang2016-07-101-0/+11
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@15613 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r15539 and r15550 (#23067).Jean-Philippe Lang2016-06-181-0/+8
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@15558 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r15532 and r15533 (#23054).Jean-Philippe Lang2016-06-181-0/+9
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@15538 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r15510 (#22123).Jean-Philippe Lang2016-06-121-0/+20
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@15515 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r15442 (#22898).Jean-Philippe Lang2016-06-041-1/+1
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@15445 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r15431 to r15435 (#22924, #22925, #22926).Jean-Philippe Lang2016-06-042-1/+16
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@15441 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r15429 (#22911).Jean-Philippe Lang2016-06-041-0/+4
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@15439 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r15416 (#22808).Jean-Philippe Lang2016-05-211-0/+16
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@15419 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r15318 and r15319 (#22342).Jean-Philippe Lang2016-04-121-0/+18
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@15329 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r15290 (#5156).Jean-Philippe Lang2016-04-091-0/+9
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@15308 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r15293 (#22305).Jean-Philippe Lang2016-04-091-0/+3
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@15306 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r15252 from trunk to 3.2-stableToshi MARUYAMA2016-03-241-1/+1
| | | | | | NameError: uninitialized constant Redmine::ApiTest::GroupsTest::MultiJson git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@15278 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r15238.Jean-Philippe Lang2016-03-13297-297/+297
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@15239 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r15223 and r15225 (#22127).Jean-Philippe Lang2016-03-132-9/+45
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@15230 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r15224 (#22178).Jean-Philippe Lang2016-03-131-0/+26
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@15227 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r15202 (#22108).Jean-Philippe Lang2016-03-131-0/+20
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@15226 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r15136 to r15138 (#21593).Jean-Philippe Lang2016-03-121-2/+2
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@15222 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r15196 (#22072).Jean-Philippe Lang2016-03-121-0/+18
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@15207 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r15131 (#21867).Jean-Philippe Lang2016-03-121-4/+4
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.2-stable@15203 e93f8b46-1217-0410-a6f0-8f06a7374b81
generated by cgit v1.2.3 (git 2.39.1) at 2025-01-11 04:17:53 +0000