xavi/slcl, branch cssSmall and lightweight cloud storage written in C99 and POSIX.1-2008.
https://gitea.privatedns.org/xavi/slcl/atom?h=css2024-07-06T11:45:18+00:00WIP css stuff2024-07-06T11:45:18+00:00Xavier Del Campo Romeroxavi.dcr@tutanota.com2024-07-06T11:45:18+00:00urn:sha1:6090bb3e0f1535e0020a9f947988d0937a6a4aa0auth.c: Reject empty files2024-06-13T06:25:29+00:00Xavier Del Campo Romeroxavi.dcr@tutanota.com2024-06-13T06:25:29+00:00urn:sha1:37c4b2967863fe5ba265a7fefad60dbd96a09f17
It makes no sense to attempt to fopen(3) an empty file and malloc(3)
zero bytes so as to dump it, as dump_db is still meant to fail on empty
files.
usergen: Fix error on empty $QUOTA2024-06-12T15:11:17+00:00Xavier Del Campo Romeroxavi.dcr@tutanota.com2024-06-12T15:09:43+00:00urn:sha1:2d6fc0f9a6a60bc96ef9c4a10e450ed6a8247435
When no quota is entered, printf(1) could fail because '%d' would expect
at least one argument. Whereas some printf(1) implementations, such as
the one by GNU coreutils, are somewhat tolerant, stricter
implementations such as Busybox would (correctly) refuse this.
README.md: Fix CMake build instructions2024-05-04T23:07:01+00:00Xavier Del Campo Romeroxavi.dcr@tutanota.com2024-05-04T23:00:01+00:00urn:sha1:32af8ddd3d63fe0936f9ae5b6ca09285bed1baff
The previous instructions were simply wrong because `cmake ..` would
attempt to configure the project from the parent directory, instead of
the build directory.
page.c: Do not get filename on previews2024-02-29T23:06:03+00:00Xavier Del Campo Romeroxavi.dcr@tutanota.com2024-02-29T23:02:43+00:00urn:sha1:b4572c6217e869a236dc779120de1b057e30c652
This change should provide the same behaviour, but would avoid
unnecessary calls to dynstr_append and basename(3) when a preview is to
be served.
README.md: Update dependencies list2024-02-24T07:39:25+00:00Xavier Del Campo Romeroxavi.dcr@tutanota.com2024-02-24T07:38:43+00:00urn:sha1:fb8896bccd96a11d77c7328c067ce674c72c5d36
- jq is required by usergen.
- Despite being part of a POSIX.1-2008 environment, m4 is not provided
by Debian or Ubuntu by default.
usergen: Do not abort on existing directory2024-02-20T20:44:53+00:00Xavier Del Campo Romeroxavi.dcr@tutanota.com2024-02-20T20:44:04+00:00urn:sha1:dd29f9096a2e364db316a8975e5f6be5a9a97023
Otherwise, it would not be possible to replace user credentials if the
directory already exists.
main.c: Improve relative path detection2024-02-20T20:24:17+00:00Xavier Del Campo Romeroxavi.dcr@tutanota.com2024-02-20T20:24:17+00:00urn:sha1:8bcf0bf855c1cd7710aa6c04e8bf23c06248c88b
Otherwise, the following resources would be considered valid:
- /user/../test
- /user/./test
- /user/a/.
- /user/a/./test
main.c: Reject invalid /public/ requests2024-02-20T07:18:11+00:00Xavier Del Campo Romeroxavi.dcr@tutanota.com2024-02-20T07:18:11+00:00urn:sha1:afc5cf0dfcb8c507315e40d71ee305fa130be6db
Otherwise:
- slcl would accept /public/ (i.e., without a file name) as a valid
resource. This would incorrectly map the public/ directory on the
database, making slcl to return -1 because public/ is not a regular
file.
- slcl would accept directory names (e.g.: /public/dir/), which is never
expected since slcl stores all public files into a single directory.
main.c: Force valid cookie on check_length2024-02-19T23:17:40+00:00Xavier Del Campo Romeroxavi.dcr@tutanota.com2024-02-19T23:17:40+00:00urn:sha1:b7f232366c03dad8afbbb8ed5ba44314e42b13fd
Otherwise, a malicious user could send multipart/form-data requests
without a valid cookie.