'svn commit: r1787654 - /subversion/branches/1.8.x/STATUS'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       subversion-commits
Subject:    svn commit: r1787654 - /subversion/branches/1.8.x/STATUS
From:       stefan2 () apache ! org
Date:       2017-03-19 18:35:08
Message-ID: 20170319183508.994E53A0915 () svn01-us-west ! apache ! org
[Download RAW message or body]

Author: stefan2
Date: Sun Mar 19 18:35:08 2017
New Revision: 1787654

URL: http://svn.apache.org/viewvc?rev=1787654&view=rev
Log:
* STATUS:
  Nominate r1759116 (trunc fix)
  Nominate r1785053 (no dir rep sharing)
  Nominate r1785737 group (strict rep sharing)

Modified:
    subversion/branches/1.8.x/STATUS

Modified: subversion/branches/1.8.x/STATUS
URL: http://svn.apache.org/viewvc/subversion/branches/1.8.x/STATUS?rev=1787654&r1=1787653&r2=1787654&view=diff
 ==============================================================================
--- subversion/branches/1.8.x/STATUS (original)
+++ subversion/branches/1.8.x/STATUS Sun Mar 19 18:35:08 2017
@@ -43,6 +43,47 @@ Candidate changes:
      -0 (non-binding): luke1410 (r1700130 is missing - will have to create a
                        backport branch)
 
+ * r1759116
+   Work around an APR bug in svn_io_file_trunc with buffered r/w files.
+   Justification:
+     Without this patch, trunc() will leave buffered file objects with
+     alternating read and write accesses in an inconsistent state.  Apart
+     from being a bug in one of our public APIs, this will cause corruptions
+     in FSFS when the strict-rep-sharing patches get backported.
+   Votes:
+     +1: stefan2
+
+ * r1785053
+   Never attempt to share directory representations in FSFS.
+   Justification:
+     This fixes inconsistent behavior.  We never add dir reps to the rep-
+     cache but would happily share any file or prop rep that happens to
+     match the respective directory rep.
+   Branch:
+     ^/subversion/branches/1.9.x-r1785053
+   Notes:
+     Will create a text conflict with the strict-rep-sharing patches.
+     Depending on which change gets merged first, the respective other
+     needs to be updated.
+   Votes:
+     +1: stefan2
+
+ * r1785737, r1785738, r1785734, r1786447, r1785754, r1786445, r1786446, r1786515
+   Make FSFS consistency no longer depend on hash algorithms.
+   Justification:
+     This eliminates any existing or future FSFS vulnerability due to
+     attacks on MD5 or SHA1.
+   Branch:
+     ^/subversion/branches/1.9.x-strict-rep-sharing
+   Notes:
+     Depends on r1759116 for correctness with older APR.
+     While the backport code is very close to the /trunk changes, it is
+     easier to review them as r1786580, r1786581 and r1786619 on the branch.
+     Will create a text conflict with the r1785053 backport.  Depending on
+     which change gets merged first, the respective other must be updated.
+   Votes:
+     +1: stefan2
+
 Veto-blocked changes:
 =====================
 


[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic