Fossil SCM
Add mentions in changes.wiki and signing.md that SSH-signed artifacts are "ignored" by fossil versions prior to 2.26, as suggested in [forum:9348885dd6 | forum post 9348885dd6].
Commit
3f8d014f99cf91d1672d83fc8984800184fd5de647c1d4f50f68d75489ca505d
Parent
932d351ea5619f5…
2 files changed
+3
-2
+5
-1
+3
-2
| --- www/changes.wiki | ||
| +++ www/changes.wiki | ||
| @@ -14,11 +14,10 @@ | ||
| 14 | 14 | <li> Require at least an anonymous login to access the /blame page and similar, |
| 15 | 15 | to help prevent robots from soaking up excess CPU time on such pages. |
| 16 | 16 | <li> When walking the filesystem looking for Fossil repositories, avoid descending |
| 17 | 17 | into directories named "/proc". |
| 18 | 18 | </ol> |
| 19 | - | |
| 20 | 19 | |
| 21 | 20 | <h2 id='v2_26'>Changes for version 2.26 (2025-04-30)</h2><ol> |
| 22 | 21 | <li>Enhancements to [/help?cmd=diff|fossil diff] and similar: |
| 23 | 22 | <ol type="a"> |
| 24 | 23 | <li> The argument to the --from option can be a directory name, causing |
| @@ -62,11 +61,13 @@ | ||
| 62 | 61 | him or her the opportunity to edit the comment before continuing. |
| 63 | 62 | This feature is controllable by the |
| 64 | 63 | [/help?cmd=verify-comments|verify-comments setting]. |
| 65 | 64 | <li> The new "--if-changes" option causes the commit to become |
| 66 | 65 | a quiet no-op if there are no pending changes. |
| 67 | - <li> Added the ability to sign check-ins with SSH keys. | |
| 66 | + <li> Added the ability to sign check-ins with SSH keys. Artifacts signed | |
| 67 | + this way are ignored by all previous fossil versions, as if they | |
| 68 | + were plain-text file content instead of Fossil artifacts. | |
| 68 | 69 | <li> Issue a warning if a user tries to commit on a check-in where the |
| 69 | 70 | branch has been changed. |
| 70 | 71 | <li> The interactive checkin comment prompt shows the formatting rules |
| 71 | 72 | set for that repository. |
| 72 | 73 | <li> Add the "--editor" option. |
| 73 | 74 |
| --- www/changes.wiki | |
| +++ www/changes.wiki | |
| @@ -14,11 +14,10 @@ | |
| 14 | <li> Require at least an anonymous login to access the /blame page and similar, |
| 15 | to help prevent robots from soaking up excess CPU time on such pages. |
| 16 | <li> When walking the filesystem looking for Fossil repositories, avoid descending |
| 17 | into directories named "/proc". |
| 18 | </ol> |
| 19 | |
| 20 | |
| 21 | <h2 id='v2_26'>Changes for version 2.26 (2025-04-30)</h2><ol> |
| 22 | <li>Enhancements to [/help?cmd=diff|fossil diff] and similar: |
| 23 | <ol type="a"> |
| 24 | <li> The argument to the --from option can be a directory name, causing |
| @@ -62,11 +61,13 @@ | |
| 62 | him or her the opportunity to edit the comment before continuing. |
| 63 | This feature is controllable by the |
| 64 | [/help?cmd=verify-comments|verify-comments setting]. |
| 65 | <li> The new "--if-changes" option causes the commit to become |
| 66 | a quiet no-op if there are no pending changes. |
| 67 | <li> Added the ability to sign check-ins with SSH keys. |
| 68 | <li> Issue a warning if a user tries to commit on a check-in where the |
| 69 | branch has been changed. |
| 70 | <li> The interactive checkin comment prompt shows the formatting rules |
| 71 | set for that repository. |
| 72 | <li> Add the "--editor" option. |
| 73 |
| --- www/changes.wiki | |
| +++ www/changes.wiki | |
| @@ -14,11 +14,10 @@ | |
| 14 | <li> Require at least an anonymous login to access the /blame page and similar, |
| 15 | to help prevent robots from soaking up excess CPU time on such pages. |
| 16 | <li> When walking the filesystem looking for Fossil repositories, avoid descending |
| 17 | into directories named "/proc". |
| 18 | </ol> |
| 19 | |
| 20 | <h2 id='v2_26'>Changes for version 2.26 (2025-04-30)</h2><ol> |
| 21 | <li>Enhancements to [/help?cmd=diff|fossil diff] and similar: |
| 22 | <ol type="a"> |
| 23 | <li> The argument to the --from option can be a directory name, causing |
| @@ -62,11 +61,13 @@ | |
| 61 | him or her the opportunity to edit the comment before continuing. |
| 62 | This feature is controllable by the |
| 63 | [/help?cmd=verify-comments|verify-comments setting]. |
| 64 | <li> The new "--if-changes" option causes the commit to become |
| 65 | a quiet no-op if there are no pending changes. |
| 66 | <li> Added the ability to sign check-ins with SSH keys. Artifacts signed |
| 67 | this way are ignored by all previous fossil versions, as if they |
| 68 | were plain-text file content instead of Fossil artifacts. |
| 69 | <li> Issue a warning if a user tries to commit on a check-in where the |
| 70 | branch has been changed. |
| 71 | <li> The interactive checkin comment prompt shows the formatting rules |
| 72 | set for that repository. |
| 73 | <li> Add the "--editor" option. |
| 74 |
+5
-1
| --- www/signing.md | ||
| +++ www/signing.md | ||
| @@ -51,15 +51,19 @@ | ||
| 51 | 51 | used. |
| 52 | 52 | |
| 53 | 53 | The value for `-n` (the _namespace_) can be changed at will, but care has to be |
| 54 | 54 | taken to use the same value when verifying the signature. |
| 55 | 55 | |
| 56 | +Fossil versions prior to 2.26 do not understand SSH signatures and | |
| 57 | +will treat artifacts signed this way as opaque blobs, not Fossil | |
| 58 | +artifacts. | |
| 59 | + | |
| 56 | 60 | |
| 57 | 61 | ## Verifying a signature |
| 58 | 62 | |
| 59 | 63 | Fossil does not provide an internal method for verifying signatures and |
| 60 | -relies – like it does for signing – on external tools. | |
| 64 | +relies – like it does for signing – on external tools. | |
| 61 | 65 | |
| 62 | 66 | ### GnuPG |
| 63 | 67 | |
| 64 | 68 | Assuming you used the |
| 65 | 69 | default GPG command for signing, one can verify the signature using |
| 66 | 70 |
| --- www/signing.md | |
| +++ www/signing.md | |
| @@ -51,15 +51,19 @@ | |
| 51 | used. |
| 52 | |
| 53 | The value for `-n` (the _namespace_) can be changed at will, but care has to be |
| 54 | taken to use the same value when verifying the signature. |
| 55 | |
| 56 | |
| 57 | ## Verifying a signature |
| 58 | |
| 59 | Fossil does not provide an internal method for verifying signatures and |
| 60 | relies – like it does for signing – on external tools. |
| 61 | |
| 62 | ### GnuPG |
| 63 | |
| 64 | Assuming you used the |
| 65 | default GPG command for signing, one can verify the signature using |
| 66 |
| --- www/signing.md | |
| +++ www/signing.md | |
| @@ -51,15 +51,19 @@ | |
| 51 | used. |
| 52 | |
| 53 | The value for `-n` (the _namespace_) can be changed at will, but care has to be |
| 54 | taken to use the same value when verifying the signature. |
| 55 | |
| 56 | Fossil versions prior to 2.26 do not understand SSH signatures and |
| 57 | will treat artifacts signed this way as opaque blobs, not Fossil |
| 58 | artifacts. |
| 59 | |
| 60 | |
| 61 | ## Verifying a signature |
| 62 | |
| 63 | Fossil does not provide an internal method for verifying signatures and |
| 64 | relies – like it does for signing – on external tools. |
| 65 | |
| 66 | ### GnuPG |
| 67 | |
| 68 | Assuming you used the |
| 69 | default GPG command for signing, one can verify the signature using |
| 70 |