Brion Vibber [Wed, 21 Feb 2007 01:05:50 +0000 (01:05 +0000)]
clarify note; Apache 2 sends charset for files, but PHP sends its own
text/html with no charset, overriding it. Never mind. :)
Brion Vibber [Wed, 21 Feb 2007 01:02:47 +0000 (01:02 +0000)]
* Add 'charset' to Content-Type headers on various HTTP error responses
to forestall additional UTF-7-autodetect XSS issues. Probably not an
issue on Apache 2.0+, but most servers send only 'text/html' by default
when the script didn't specify more details.
This fixes an issue with the Ajax interface error message on MSIE when
$wgUseAjax is enabled (not default configuration); this UTF-7 variant
on a previously fixed attack vector was discovered by Moshe BA from BugSec:
http://www.bugsec.com/articles.php?Security=24
* Trackback responses now specify XML content type
Brion Vibber [Wed, 21 Feb 2007 00:04:21 +0000 (00:04 +0000)]
* Lazy-initialize site_stats row on load when empty. Somewhat kinder to
dump-based installations, avoiding PHP warnings when NUMBEROFARTICLES
and such are used.
Raimond Spekking [Tue, 20 Feb 2007 14:30:06 +0000 (14:30 +0000)]
* (bug 9039) Update French messages
patch by Rémi Kaupp
Raimond Spekking [Tue, 20 Feb 2007 11:30:39 +0000 (11:30 +0000)]
Translations of special page names reverted (part of r19915
See bug 9038.
Brion Vibber [Tue, 20 Feb 2007 05:04:36 +0000 (05:04 +0000)]
Fix regression: typo caused 'Vary: Accept-Encoding' to be sent overwriting more exact Vary lines such as the Vary: Accept-Encoding, Cookie used for squid mode
Brion Vibber [Tue, 20 Feb 2007 04:58:54 +0000 (04:58 +0000)]
Don't suppress gzip mode for zero-length output; failing to send the
Content-Encoding header with 304 responses confuses some browsers.
Brion Vibber [Tue, 20 Feb 2007 04:46:07 +0000 (04:46 +0000)]
* Further fix to Special:Export etc; instead of trying to suppress those
Content-Encoding and Content-Length headers, just don't send them
in the first place!
* Suppress Content-Length from wfOutputHandler if $wgDisableOutputCompression set
* Fix typo that caused $wgDisableOutputCompression to *enable* instead of *disable* compression ;)
Brion Vibber [Tue, 20 Feb 2007 02:25:27 +0000 (02:25 +0000)]
Erase the Content-Encoding and Content-Length for the new output buffer/compression handler.
Fixes Special:Export and probably other things when the HTTP 1.0 stuff engages
Brion Vibber [Tue, 20 Feb 2007 00:55:54 +0000 (00:55 +0000)]
* Hide irrelevant block options in Special:Blockip based on whether an
IP address/range or username is listed. (Dynamic using JS.)
Tim Starling [Mon, 19 Feb 2007 23:03:37 +0000 (23:03 +0000)]
* Moved the main ob_start() from the default LocalSettings.php to WebStart.php.
The ob_start() section should preferably be removed from older
LocalSettings.php files.
* Give Content-Length header for HTTP/1.0 clients.
* Partial support for Flash cross-domain-policy filtering. Text entry points should be protected, but uploads are not.
Brion Vibber [Mon, 19 Feb 2007 18:16:21 +0000 (18:16 +0000)]
Further fix: restore order of parameters on addButton() to most backwards- and forwards-compatible state
Brion Vibber [Mon, 19 Feb 2007 18:08:45 +0000 (18:08 +0000)]
Tweaks to r19987:
* Don't add an 'id' attribute for custom toolbar buttons where the
custom array doesn't include an id, for compatibility with
existing settings.
* Fix corrupted, but previously also incorrect, encoding on regex
for currencies in sortable table setup. Using \u escape sequences
for pound and euro; possibly other symbols need to be added?
* Bump $wgStyleVersion
Niklas Laxström [Mon, 19 Feb 2007 17:00:43 +0000 (17:00 +0000)]
* Updates from Fulup
Leon Weber [Mon, 19 Feb 2007 11:46:52 +0000 (11:46 +0000)]
* Added a classname ("mw-toolbar-editbutton") and unique IDs to the edit
toolbar buttons
Leon Weber [Sun, 18 Feb 2007 19:04:26 +0000 (19:04 +0000)]
* (bug 8846) fixes/highlights hardcoded links and wrong
localisations in interface messages for message
files from F to H (MessagesFa.php and MessagesHe.php will follow later).
Patch by Arnomane.
Ivan Lanin [Sun, 18 Feb 2007 17:48:51 +0000 (17:48 +0000)]
Updates for Indonesian (id) localization.
Leon Weber [Sun, 18 Feb 2007 13:58:58 +0000 (13:58 +0000)]
* (bug 8846) Fixes/highlights link problems inside {{fullurl: and wrong page
link definitions for messages files up to MessagesEu.php. Patch by Arnomane.
Greg Sabino Mullane [Sat, 17 Feb 2007 20:06:37 +0000 (20:06 +0000)]
Parse InnoDB defs with max_rows and avg_row_length specifiers.
Greg Sabino Mullane [Sat, 17 Feb 2007 20:02:39 +0000 (20:02 +0000)]
Postgres, PostgreSQL if you must, but never "postgre" :)
Antoine Musso [Sat, 17 Feb 2007 13:40:45 +0000 (13:40 +0000)]
Sort log types in Special:Log
Antoine Musso [Sat, 17 Feb 2007 13:30:28 +0000 (13:30 +0000)]
Fixes some tests:
* use dirname instead of $IP
* define MEDIAWIKI before requiring
Antoine Musso [Sat, 17 Feb 2007 13:08:47 +0000 (13:08 +0000)]
Update release note for r19177
Rotem Liss [Sat, 17 Feb 2007 09:25:36 +0000 (09:25 +0000)]
Update.
Aaron Schulz [Sat, 17 Feb 2007 04:17:53 +0000 (04:17 +0000)]
* Give rev_deleted notice when editing oldids
Andrew Garrett [Fri, 16 Feb 2007 23:01:44 +0000 (23:01 +0000)]
Silly me, forgot $wgDBprefix
Brion Vibber [Fri, 16 Feb 2007 22:03:19 +0000 (22:03 +0000)]
Fix regressions in Special:Listusers introduced in r19951 with conversion
to AlphabeticPager class:
* fix PHP notice errors about renamed variable
* preserve group selection across paging and form resubmissions
* fix PHP notice errors about missing variable
* restore the 'username' form variable, was dropped and half-replaced with
the internal pager offset which behaves differently (eg, you can again
see a particular user's entry by typing it in the form, whereas under
r19951 you only got things from the user *after* the one you asked for)
Brion Vibber [Fri, 16 Feb 2007 21:35:04 +0000 (21:35 +0000)]
unused local var
Raimond Spekking [Fri, 16 Feb 2007 21:01:52 +0000 (21:01 +0000)]
* (bug 9003) Update Occitan - format of numbers
Aaron Schulz [Fri, 16 Feb 2007 20:48:33 +0000 (20:48 +0000)]
* Add no-html option for block log parsing for future use
Raimond Spekking [Fri, 16 Feb 2007 17:06:27 +0000 (17:06 +0000)]
Remove hardcoded quotation marks to allow better localications
Raimond Spekking [Fri, 16 Feb 2007 12:40:41 +0000 (12:40 +0000)]
Update Spanish, Estonian and Basque localizations
fixing hardcoded links
Patches by Arnomane
Raimond Spekking [Fri, 16 Feb 2007 08:48:20 +0000 (08:48 +0000)]
* (bug 8998) Update Latin messages
patch by [[la:Usor:UV]]
reordered with rebuildLanguage.php
Raimond Spekking [Fri, 16 Feb 2007 08:10:37 +0000 (08:10 +0000)]
Update messages files
Andrew Garrett [Fri, 16 Feb 2007 07:39:33 +0000 (07:39 +0000)]
Fix for ProtectionForm - consider expiry times invalid if theyre in the past. Also a *very* minor typo fix from my previous work on alignment in the expiry box.
Andrew Garrett [Fri, 16 Feb 2007 07:21:03 +0000 (07:21 +0000)]
Fix for ProtectionForm - make mwProtect-reason retain its value when errors are spat as errors are :-)
Nick Jenkins [Fri, 16 Feb 2007 06:54:13 +0000 (06:54 +0000)]
(bug 8999) User.php gives "undefined user editcount" PHP notice.
Nick Jenkins [Fri, 16 Feb 2007 03:43:40 +0000 (03:43 +0000)]
(bug 3678) Allow disabling [[MediaWiki:aboutsite]] in the same way as
[[MediaWiki:Disclaimers]]; Also means that if any of the footer links are
disabled in the wiki's default language (by setting to "-"), they'll also
be disabled in other languages too (e.g. if the user specifies uselang=fr),
which was probably want the site admin wanted to happen anyway.
Aryeh Gregor [Fri, 16 Feb 2007 02:31:36 +0000 (02:31 +0000)]
(bug 8910) Correct language name for Aramaic (arc)
Brion Vibber [Thu, 15 Feb 2007 23:40:05 +0000 (23:40 +0000)]
* (bug 8992) Fix a remaining raw use of REQUEST_URI in history
Raimond Spekking [Thu, 15 Feb 2007 20:33:29 +0000 (20:33 +0000)]
Rebuild Esperanto message file
Message update by maha, linkfixes by arnomane
Raimond Spekking [Thu, 15 Feb 2007 19:06:12 +0000 (19:06 +0000)]
Update German localization
Domas Mituzas [Thu, 15 Feb 2007 18:48:12 +0000 (18:48 +0000)]
Use AlphabeticPager for Special:Listusers
Domas Mituzas [Thu, 15 Feb 2007 15:41:21 +0000 (15:41 +0000)]
small comment on top of function (about previous commit :)
Domas Mituzas [Thu, 15 Feb 2007 15:39:21 +0000 (15:39 +0000)]
run a LinksBatch pass on all links being printed.
Domas Mituzas [Thu, 15 Feb 2007 15:38:28 +0000 (15:38 +0000)]
Add ResultSet::rewind()
Raimond Spekking [Thu, 15 Feb 2007 14:45:05 +0000 (14:45 +0000)]
* (bug 8995) Update Japanese messages
patch by Kkkdc@jawiki
Domas Mituzas [Thu, 15 Feb 2007 14:27:15 +0000 (14:27 +0000)]
* store user_editcount inside cached user object
* load editcount together with user.*, avoid multiple queries
-- this removes additional query (or queries)
Daniel Kinzler [Thu, 15 Feb 2007 13:24:49 +0000 (13:24 +0000)]
enforcing read permission in RC feeds; NOTE: people watching restricted wikis using RSS will no longer see diffs!
Andrew Garrett [Thu, 15 Feb 2007 11:18:47 +0000 (11:18 +0000)]
Fix an earlier commit - I forgot to put pr_id in updaters.inc
Andrew Garrett [Thu, 15 Feb 2007 11:16:42 +0000 (11:16 +0000)]
Fix up Special:Protectedpages to use a ReverseChronologicalPager, and the new pr_id field like it should. This will improve performance, optimise, and make the data real-time as opposed to cached.
Daniel Kinzler [Thu, 15 Feb 2007 01:24:33 +0000 (01:24 +0000)]
Bug 8824: check read permission when exporting
Daniel Kinzler [Thu, 15 Feb 2007 01:23:47 +0000 (01:23 +0000)]
wgNonincludableNamespaces option to disable inclusion for specific namespaces. Helps to make read-protection work
Leon Weber [Wed, 14 Feb 2007 16:07:18 +0000 (16:07 +0000)]
* (bug 8988) Added missing $ in error messages.
Leon Weber [Wed, 14 Feb 2007 00:56:36 +0000 (00:56 +0000)]
* (bug 8980) Georgian localisation patch by Malafaya <malafaya@clix.pt>.
Antoine Musso [Tue, 13 Feb 2007 22:12:47 +0000 (22:12 +0000)]
Implements 8978 : update for georgian language.
Patch by <malafaya@clix.pt>
Aaron Schulz [Tue, 13 Feb 2007 20:56:31 +0000 (20:56 +0000)]
* parsemag comment
Niklas Laxström [Tue, 13 Feb 2007 20:32:15 +0000 (20:32 +0000)]
* Reverting stuff that I shouldn't have committed
Raimond Spekking [Tue, 13 Feb 2007 15:19:29 +0000 (15:19 +0000)]
* Adding German template for SpecialCite.php
* Update URL of meta page
* Some minor German updates
Brion Vibber [Mon, 12 Feb 2007 21:33:22 +0000 (21:33 +0000)]
Revert r19877; no reason is given for it but it breaks things such as parameter substitution of text that includes {{braces}}. An example of breakage is the automated deletion comments, where it expands template contents unexpectedly
Antoine Musso [Mon, 12 Feb 2007 20:22:34 +0000 (20:22 +0000)]
Fix r19896 for bug 8944 (pressing 'u' in vim before committing is a bad idea).
Antoine Musso [Mon, 12 Feb 2007 20:18:05 +0000 (20:18 +0000)]
Fix #8944: The deprecated is_a() function is used in StubObjects.php
Rotem Liss [Mon, 12 Feb 2007 19:40:29 +0000 (19:40 +0000)]
Fix.
Aaron Schulz [Mon, 12 Feb 2007 01:02:35 +0000 (01:02 +0000)]
* Added useragent and an xff function and header
Niklas Laxström [Sun, 11 Feb 2007 19:36:36 +0000 (19:36 +0000)]
* Removed remaining references to listinterwikis
Domas Mituzas [Sun, 11 Feb 2007 11:29:33 +0000 (11:29 +0000)]
If 'tables' is a string that starts with a space, treat it as user-enforced FROM definition.
Development sponsored by: Dirty Hacks Inc.
Aaron Schulz [Sun, 11 Feb 2007 06:31:06 +0000 (06:31 +0000)]
* Get messages to actually transform (use magic phrases)
Ilmari Karonen [Sat, 10 Feb 2007 22:03:31 +0000 (22:03 +0000)]
kluge to fix wovel harmony for "MediaWiki" (and other names with a "wiki" suffix) in LanguageFi::convertGrammar()
Raimond Spekking [Sat, 10 Feb 2007 20:20:29 +0000 (20:20 +0000)]
Update Russian localization
fixing hardcoded links
Patch by Alexander Sigachov
Ivan Lanin [Sat, 10 Feb 2007 20:14:53 +0000 (20:14 +0000)]
Some new and updated localisations for Indonesian language (id).
Raimond Spekking [Sat, 10 Feb 2007 20:07:14 +0000 (20:07 +0000)]
Update Danish and Greek localizations
Patch by Arnomane
Niklas Laxström [Sat, 10 Feb 2007 15:30:31 +0000 (15:30 +0000)]
* Splitted checkboxes and buttons to their own functions
Niklas Laxström [Sat, 10 Feb 2007 13:39:22 +0000 (13:39 +0000)]
* Some fixes
Rotem Liss [Sat, 10 Feb 2007 13:31:49 +0000 (13:31 +0000)]
Update.
Rotem Liss [Sat, 10 Feb 2007 13:24:15 +0000 (13:24 +0000)]
Rebuild.
Rotem Liss [Sat, 10 Feb 2007 13:22:33 +0000 (13:22 +0000)]
Fix.
Rotem Liss [Sat, 10 Feb 2007 13:21:45 +0000 (13:21 +0000)]
Fixes.
Rotem Liss [Sat, 10 Feb 2007 13:11:49 +0000 (13:11 +0000)]
I think these messages should not be above everything else.
Rotem Liss [Sat, 10 Feb 2007 13:06:46 +0000 (13:06 +0000)]
Adding the live preview messages.
Domas Mituzas [Sat, 10 Feb 2007 12:41:55 +0000 (12:41 +0000)]
CategoriesPage no more
Raimond Spekking [Fri, 9 Feb 2007 22:19:54 +0000 (22:19 +0000)]
Suppress external weblink arrow for uploading a new image version
Niklas Laxström [Fri, 9 Feb 2007 21:54:11 +0000 (21:54 +0000)]
* Reformatted
Raimond Spekking [Fri, 9 Feb 2007 21:48:39 +0000 (21:48 +0000)]
Updates
Niklas Laxström [Fri, 9 Feb 2007 21:43:59 +0000 (21:43 +0000)]
* Updates
Niklas Laxström [Fri, 9 Feb 2007 21:39:38 +0000 (21:39 +0000)]
* Missing description
Niklas Laxström [Fri, 9 Feb 2007 20:42:52 +0000 (20:42 +0000)]
* whoops, restoring two messages
Niklas Laxström [Fri, 9 Feb 2007 20:34:57 +0000 (20:34 +0000)]
* Some enhancements to live preview
Brion Vibber [Fri, 9 Feb 2007 19:44:30 +0000 (19:44 +0000)]
wgMessageStrucutre -> wgMessageStructure
Brion Vibber [Fri, 9 Feb 2007 19:41:31 +0000 (19:41 +0000)]
Revert r19843 for now; unreviewed schema changes
Raimond Spekking [Fri, 9 Feb 2007 18:34:25 +0000 (18:34 +0000)]
Update German localization
Patch by Arnomane
Leon Weber [Fri, 9 Feb 2007 18:30:34 +0000 (18:30 +0000)]
< Arnomane> all internal links are now together in one group
Raimond Spekking [Fri, 9 Feb 2007 15:48:40 +0000 (15:48 +0000)]
Missing unit 'px' added. W3C CSS validator
whines about it:
"Invalid number : width only 0 can be a length. You
must put an unit after your number : 150"
Raimond Spekking [Fri, 9 Feb 2007 14:32:26 +0000 (14:32 +0000)]
* (bug 8861) Update Belarussian Special pages aliases
patch created from file by Eugene Zelenko
Roman Nosov [Fri, 9 Feb 2007 11:22:13 +0000 (11:22 +0000)]
Revision table tree patch (No objections have been raised so i'm committing it to trunk)
Raimond Spekking [Fri, 9 Feb 2007 10:32:04 +0000 (10:32 +0000)]
* Message names changed for AlphabeticPager introduced
with r19758 for better localisations.
Tim Starling [Fri, 9 Feb 2007 09:28:35 +0000 (09:28 +0000)]
Reducing the number of stat calls is all very well, but please don't introduce any remote inclusion vulnerabilities while you're at it.
Nick Jenkins [Fri, 9 Feb 2007 07:04:30 +0000 (07:04 +0000)]
Resync trunk fuzz tester to be current.
Brion Vibber [Fri, 9 Feb 2007 05:37:44 +0000 (05:37 +0000)]
* Add 'ParserTestTables' hook to expand the list of temporary tables copied
by the parser test harness; use for extensions which require the presence
of other tables while they work.
Nick Jenkins [Fri, 9 Feb 2007 05:36:56 +0000 (05:36 +0000)]
Prevent some unnecessary lstat system calls, generated by include or require directives.
This can be done either by:
* Using explicit full paths, using the $IP global for the installation directory full path, and then working down the tree from there.
* Using explicit full paths, using the "dirname(__FILE__)" directive to get a full directory path for the includer file.
* Occasionally removing the line altogether, and then for some files the inclusion is handled by the autoloader.
For example, if the "extensions/wikihiero/wh_main.php" file does an include or require on "wh_list.php", then PHP does the following:
* tries to open "wiki/wh_list.php", and fails.
* tries to open "wiki/includes/wh_list.php", and fails.
* tries to open "wiki/languages/wh_list.php", and fails.
* tries to open "wiki/extensions/wikihiero/wh_list.php", and succeeds.
So in this example, the first 3 calls can be prevented if PHP is told where the file is.
Testing Method: On a Linux box, run these commands to attach strace to all the apache2 processes, and log their system calls to a temporary file, then generate some activity, and then stop the strace:
-----------------------------------
rm /tmp/strace-log.txt
strace -tt -o /tmp/strace-log.txt -p `pidof apache2 | sed 's/ / -p /g'` &
php maintenance/fuzz-tester.php --keep-passed-tests --include-binary --max-runtime=3 > /tmp/strace-tests.txt
killall -9 strace
grep "No such file or directory" /tmp/strace-log.txt | sort -u
-----------------------------------
Any failed file stats will be marked with: "-1 ENOENT (No such file or directory)".
Also:
* Strict Standards: Undefined offset: 230 in includes/normal/UtfNormal.php on line 637
* Strict Standards: iconv() [<a href='function.iconv'>function.iconv</a>]: Detected an illegal character in input string in languages/Language.php on line 776
[Note: Partial only - despite adding "//IGNORE", it still seems to be possible with some
messed- up binary input to cause PHP 5.1.2's iconv() function to squeal like a stuck pig].
* Update one $fname variable (method belongs to HistoryBlobStub class).
Aaron Schulz [Fri, 9 Feb 2007 00:24:37 +0000 (00:24 +0000)]
*Add a space to balance show/hide link