upstream/mercurial-mirror Files · mercurial/help/filesets.txt

dispatch: protect against malicious 'hg serve --stdio' invocations (sec)...

dispatch: protect against malicious 'hg serve --stdio' invocations (sec) Some shared-ssh installations assume that 'hg serve --stdio' is a safe command to run for minimally trusted users. Unfortunately, the messy implementation of argument parsing here meant that trying to access a repo named '--debugger' would give the user a pdb prompt, thereby sidestepping any hoped-for sandboxing. Serving repositories over HTTP(S) is unaffected. We're not currently hardening any subcommands other than 'serve'. If your service exposes other commands to users with arbitrary repository names, it is imperative that you defend against repository names of '--debugger' and anything starting with '--config'. The read-only mode of hg-ssh stopped working because it provided its hook configuration to "hg serve --stdio" via --config parameter. This is banned for security reasons now. This patch switches it to directly call ui.setconfig(). If your custom hosting infrastructure relies on passing --config to "hg serve --stdio", you'll need to find a different way to get that configuration into Mercurial, either by using ui.setconfig() as hg-ssh does in this patch, or by placing an hgrc file someplace where Mercurial will read it. mitrandir@fb.com provided some extra fixes for the dispatch code and for hg-ssh in places that I overlooked.

Yuya Nishihara - - Load All Authors

File last commit:

r31286:f8df8701 default


                r32050:77eaf953

4.1.3 stable

Download file

             filesets.txt
        
                    74 lines
            
             | 1.9 KiB
            
                | text/plain
            
             |
                TextLexer

/ mercurial / help / filesets.txt

History | Source | Raw |Copy content |Copy permalink

Matt Mackall fileset: add a help topic...	r14686	Mercurial supports a functional language for selecting a set of
Mads Kiilerich check-code: check txt files for trailing whitespace	r18960	files.
Matt Mackall fileset: add a help topic...	r14686
		Like other file patterns, this pattern type is indicated by a prefix,
		'set:'. The language supports a number of predicates which are joined
		by infix operators. Parenthesis can be used for grouping.

		Identifiers such as filenames or patterns must be quoted with single
		or double quotes if they contain characters outside of
		``[.*{}[]?/\_a-zA-Z0-9\x80-\xff]`` or if they match one of the
		predefined predicates. This generally applies to file patterns other
		than globs and arguments for predicates.

		Special characters can be used in quoted identifiers by escaping them,
		e.g., ``\n`` is interpreted as a newline. To prevent them from being
		interpreted, strings can be prefixed with ``r``, e.g. ``r'...'``.

Matt Harbison help: apply the section headings from revsets to filesets...	r30729	See also :hg:`help patterns`.

Matt Harbison help: merge the various operator sections of revsets, filesets and templates...	r30731	Operators
		=========
Matt Harbison help: apply the section headings from revsets to filesets...	r30729
Matt Mackall fileset: add a help topic...	r14686	There is a single prefix operator:

		``not x``
		Files not in x. Short form is ``! x``.

		These are the supported infix operators:

		``x and y``
		The intersection of files in x and y. Short form is ``x & y``.

		``x or y``
		The union of files in x and y. There are two alternative short
		forms: ``x \| y`` and ``x + y``.

		``x - y``
		Files in x but not in y.

Matt Harbison help: apply the section headings from revsets to filesets...	r30729	Predicates
		==========

Matt Mackall fileset: add a help topic...	r14686	The following predicates are supported:

		.. predicatesmarker

Matt Harbison help: apply the section headings from revsets to filesets...	r30729	Examples
		========

Matt Mackall fileset: add a help topic...	r14686	Some sample queries:

		- Show status of files that appear to be binary in the working directory::

		hg status -A "set:binary()"

		- Forget files that are in .hgignore but are already tracked::

		hg forget "set:hgignore() and not ignored()"

		- Find text files that contain a string::

FUJIWARA Katsunori help: use "hg files" instead of "hg locate" in "hg help filesets"...	r23109	hg files "set:grep(magic) and not binary()"
Matt Mackall fileset: add a help topic...	r14686
		- Find C files in a non-standard encoding::

FUJIWARA Katsunori help: use "hg files" instead of "hg locate" in "hg help filesets"...	r23109	hg files "set:**.c and not encoding('UTF-8')"
Matt Mackall fileset: add a help topic...	r14686
		- Revert copies of large binary files::

		hg revert "set:copied() and binary() and size('>1M')"

Arne Babenhauserheide help: fileset foo.lst was named files.lst	r14829	- Remove files listed in foo.lst that contain the letter a or b::
Matt Mackall fileset: add a help topic...	r14686
		hg remove "set: 'listfile:foo.lst' and (*a or *b)"

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages