[prev in list] [next in list] [prev in thread] [next in thread]
List: subversion-commits
Subject: svn commit: r1787654 - /subversion/branches/1.8.x/STATUS
From: stefan2 () apache ! org
Date: 2017-03-19 18:35:08
Message-ID: 20170319183508.994E53A0915 () svn01-us-west ! apache ! org
[Download RAW message or body]
Author: stefan2
Date: Sun Mar 19 18:35:08 2017
New Revision: 1787654
URL: http://svn.apache.org/viewvc?rev=1787654&view=rev
Log:
* STATUS:
Nominate r1759116 (trunc fix)
Nominate r1785053 (no dir rep sharing)
Nominate r1785737 group (strict rep sharing)
Modified:
subversion/branches/1.8.x/STATUS
Modified: subversion/branches/1.8.x/STATUS
URL: http://svn.apache.org/viewvc/subversion/branches/1.8.x/STATUS?rev=1787654&r1=1787653&r2=1787654&view=diff
==============================================================================
--- subversion/branches/1.8.x/STATUS (original)
+++ subversion/branches/1.8.x/STATUS Sun Mar 19 18:35:08 2017
@@ -43,6 +43,47 @@ Candidate changes:
-0 (non-binding): luke1410 (r1700130 is missing - will have to create a
backport branch)
+ * r1759116
+ Work around an APR bug in svn_io_file_trunc with buffered r/w files.
+ Justification:
+ Without this patch, trunc() will leave buffered file objects with
+ alternating read and write accesses in an inconsistent state. Apart
+ from being a bug in one of our public APIs, this will cause corruptions
+ in FSFS when the strict-rep-sharing patches get backported.
+ Votes:
+ +1: stefan2
+
+ * r1785053
+ Never attempt to share directory representations in FSFS.
+ Justification:
+ This fixes inconsistent behavior. We never add dir reps to the rep-
+ cache but would happily share any file or prop rep that happens to
+ match the respective directory rep.
+ Branch:
+ ^/subversion/branches/1.9.x-r1785053
+ Notes:
+ Will create a text conflict with the strict-rep-sharing patches.
+ Depending on which change gets merged first, the respective other
+ needs to be updated.
+ Votes:
+ +1: stefan2
+
+ * r1785737, r1785738, r1785734, r1786447, r1785754, r1786445, r1786446, r1786515
+ Make FSFS consistency no longer depend on hash algorithms.
+ Justification:
+ This eliminates any existing or future FSFS vulnerability due to
+ attacks on MD5 or SHA1.
+ Branch:
+ ^/subversion/branches/1.9.x-strict-rep-sharing
+ Notes:
+ Depends on r1759116 for correctness with older APR.
+ While the backport code is very close to the /trunk changes, it is
+ easier to review them as r1786580, r1786581 and r1786619 on the branch.
+ Will create a text conflict with the r1785053 backport. Depending on
+ which change gets merged first, the respective other must be updated.
+ Votes:
+ +1: stefan2
+
Veto-blocked changes:
=====================
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic