Changelog for
subversion-perl-1.11.1-301.1.i586.rpm :
Fri Jan 18 13:00:00 2019 astiegerAATTsuse.com
- Apache Subversion 1.11.1:
* Add conflict resolver support for added vs unversioned file
* Add conflict resolver support for unversioned directories
* Various client-side bug fixes for working copy operations
* Server: fix unexpected SVN_ERR_FS_NOT_DIRECTORY errors
* Server: fix mod_dav_svn\'s SVNUseUTF8 had no effect in some setups
* Server: fix a crash in mod_http2
* JavaHL bindings: Fix crash in client code when using external
diff
- Fixed a vulnerability that allowed malicious SVN clients to trigger a crash
in mod_dav_svn by omitting the root path from a recursive directory listing
request (CVE-2018-11803 bsc#1122842)
Fri Jan 11 13:00:00 2019 tchvatalAATTsuse.com
- Move the bash completion to /usr as per rpmlint warning
Sat Nov 10 13:00:00 2018 astiegerAATTsuse.com
- Apache Subversion 1.11.0:
* Shelving is no longer based on patch files
* Shelves created on 1.10 are not compatible
* New feature: Checkpointing
* New viewspec output command
* Improvements to tree conflict resolutio
* \'patch\' can now read non-pretty-printed svn:mergeinfo diffs
* Better error when http:// URL is not a Subversion repository
* Add \'schedule\' and \'depth\' items to \'svn info --show-item\'
* Allow the client cert password to be saved
* Various bug fixes
* On-disk caching of plaintext passwords and passphrases is now
disabled by default, but users can explicitly allow this
behavior via runtime configuration
- drop upstreamed subversion-1.10.2-java10.patch
Fri Oct 12 14:00:00 2018 astiegerAATTsuse.com
- Apache Subversion 1.10.3:
* Store the HTTPS client cert password
* Fix shelving when custom diff command is configured
* Fix conflict resolver crashes
* Fix conflict resolver endless scan in some cases
* Fix \"Accept incoming deletion\" on locally deleted file
* Fix \"resolver adds unrelated moves to move target list\"
* Reject bad PUT before CHECKOUT in v1 HTTP protocol
* Let \'svnadmin recover\' prune the rep-cache even if disabled
* Allow commands like \'svn ci --file X\' to work when X is a FIFO
* \'svnadmin verify --keep-going --quiet\' shows an error summary
* Fix error in german translation for \'svn help merge\'
Tue Sep 11 14:00:00 2018 fstrbaAATTsuse.com
- Added patches:
* subversion-1.10.2-java10.patch
+ Partly upstream patch to remove javah requirement to build
Subversion Java bindings.
+ Apply only for builds with jdk10+ that don\'t have javah tool
any more
* subversion-1.10.2-javadoc.patch
+ Avoid loading Internet URLs during the build
- Allow building with all Java versions starting with 1.6
Thu Aug 23 14:00:00 2018 astiegerAATTsuse.com
- Apache Subversion 1.10.2:
* Correctly claim to offer Gnome Keyring support with libsecret
* Fix segfault using Gnome Keyring with libsecret
* Fix JavaHL local refs capacity warning when unparsing externals
* Prune externals after \'update --set-depth=exclude\'
* Fix \"conflict resolver searches too far back ...\"
- Dropped patches that are included in the upstream release:
* subversion-1.10.0-fix-svn-version-gnome-keyring.patch
Wed Jul 25 14:00:00 2018 tchvatalAATTsuse.com
- Use macro to compile python objects, do not do it by hand
Fri Apr 27 14:00:00 2018 antoine.belvireAATTopensuse.org
- Remove useless build dependency on pkgconfig(bash-completion).
- Make subversion-bash-completion requires bash-completion, not
pkgconfig(bash-completion).
Sun Apr 15 14:00:00 2018 astiegerAATTsuse.com
- Apache Subversion 1.10.0:
* new conflict resolver
* Many bug fixes and enhancements
* lz4 compression for the repositories
* https://subversion.apache.org/docs/release-notes/1.10.html
- Packaging changes;
* Convert dependencies to pkgconfig counterparts
* Add dependency on liblz4 and utf8proc
* Use %license (boo#1082318)
* build with KDE5 KWallet support
- Refresh patches:
* subversion-1.8.0-rpath.patch
* subversion-no-build-date.patch
* subversion-fix-parallel-build-support-for-perl-bindings.patch
* subversion-perl-underlinking.patch
- dropped patches:
* subversion-1.8.11-autocheck-time.patch, upstream
* subversion-1.9.0-allow-httpd-2.4.6.patch, no longer required
- Add subversion-1.10.0-fix-svn-version-gnome-keyring.patch to list
GNOME keyring support in svn --version when using libsecret
Tue Dec 19 13:00:00 2017 fstrbaAATTsuse.com
- BuildConflict with jdk10 or higher. The build uses extensively
the javah tool which is removed in jdk10.
Thu Nov 23 13:00:00 2017 rbrownAATTsuse.com
- Replace references to /var/adm/fillup-templates with new
%_fillupdir macro (boo#1069468)
Wed Nov 1 13:00:00 2017 mpluskalAATTsuse.com
- Explicitly require python2
Mon Oct 9 14:00:00 2017 vcizekAATTsuse.com
- Disable kwallet support on openSUSE built with openssl 1.1, because
otherwise the libopenssl pulled in by libserf and libqt4 create
a conflict (boo#1042629)
Fri Aug 25 14:00:00 2017 tchvatalAATTsuse.com
- Switch the KDE condition to match sle15 too
Fri Aug 11 14:00:00 2017 tchvatalAATTsuse.com
- Remove user changing option inherited from sysconfig from README
* Was removed as it does not work on systemd, new section is there
describing current approach
Thu Aug 10 14:00:00 2017 astiegerAATTsuse.com
- Apache Subversion 1.9.7:
* CVE-2017-9800: A remote attacker could have caused svn clients
to execute arbitrary code via specially crafted URLs in
svn:externals and svn:sync-from-url properties. (bsc#1051362)
Fri Jul 28 14:00:00 2017 astiegerAATTsuse.com
- Add instructions for running svnserve as a user different from
\"svn\", and remove sysconfig variables that are no longer
effective with the systemd unit. bsc#1049448
Fri Jul 7 14:00:00 2017 astiegerAATTsuse.com
- Apache Subversion 1.9.6 (bsc#1026936):
This change makes Subversion resilient to collision attacks,
including SHA-1 collision attacks such as
.
https://subversion.apache.org/faq#shattered-sha1
* fsfs: never attempt to share directory representations
* fsfs: make consistency independent of hash algorithms
* cp/mv: improve error message when target is an unversioned dir
* merge: reduce memory usage with large amounts of mergeinfo
* \'svnadmin freeze\': document the purpose more clearly
* dump: fix segfault when a revision has no revprops
* fsfs: improve error message upon failure to open rep-cache
* work around an APR bug related to file truncation
* javahl: follow redirects when opening a connection
Thu Jun 15 14:00:00 2017 nmoudraAATTsuse.com
- Deleted all xinetd related entries as it is not desired anymore
* its obsolete due to socket based service
* socket based service is not needed at this pkg
Mon Mar 13 13:00:00 2017 tchvatalAATTsuse.com
- Update to build with new RPM in Factory
- Provide the kwallet auth in main pkg in case kde integration is
disabled
- Use apache2-rpm-macros to get the apache variables
Wed Nov 30 13:00:00 2016 tchvatalAATTsuse.com
- Version update to 1.9.5:
* bsc#1011552 CVE-2016-8734 Unrestricted XML entity expansion in
mod_dontdothat and Subversion clients using http(s)://
- Client-side bugfixes:
* fix accessing non-existent paths during reintegrate merge (r1766699 et al)
* fix handling of newly secured subdirectories in working copy (r1724448)
* info: remove trailing whitespace in --show-item=revision (issue #4660)
* fix recording wrong revisions for tree conflicts (r1734106)
* gpg-agent: improve discovery of gpg-agent sockets (r1766327)
* gpg-agent: fix file descriptor leak (r1766323)
* resolve: fix --accept=mine-full for binary files (issue #4647)
* merge: fix possible crash (issue #4652)
* resolve: fix possible crash (r1748514)
* fix potential crash in Win32 crash reporter (r1663253 et al)
- Server-side bugfixes:
* fsfs: fix \"offset too large\" error during pack (issue #4657)
* svnserve: enable hook script environments (r1769152)
* fsfs: fix possible data reconstruction error (issue #4658)
* fix source of spurious \'incoming edit\' tree conflicts (r1770108)
* fsfs: improve caching for large directories (r1721285)
* fsfs: fix crash when encountering all-zero checksums (r1759686)
* fsfs: fix potential source of repository corruptions (r1756266)
* mod_dav_svn: fix excessive memory usage with mod_headers/mod_deflate
(issue #3084)
* mod_dav_svn: reduce memory usage during GET requests (r1757529 et al)
* fsfs: fix unexpected \"database is locked\" errors (r1741096 et al)
* fsfs: fix opening old repositories without db/format files (r1720015)
- Client-side and server-side bugfixes:
* fix possible crash when reading invalid configuration files (r1715777)
- Bindings bugfixes:
* swig-pl: do not corrupt \"{DATE}\" revision variable (r1767768)
* javahl: fix temporary accepting SSL server certificates (r1764851)
* swig-pl: fix possible stack corruption (r1683266, r1683267)
- Drop no longer needed patch:
* subversion-1.8.11-swig-py-comment-3.patch
Wed Jun 29 14:00:00 2016 tchvatalAATTsuse.com
- Drop syslog.target from After wrt bnc#983938
Thu Apr 28 14:00:00 2016 astiegerAATTsuse.com
- Apache Subversion 1.9.4, fixing two server-side vulnerabilities:
* CVE-2016-2167: svnserve/sasl may authenticate users using the
wrong realm (boo#976849)
* CVE-2016-2168: Remotely triggerable DoS vulnerability in
mod_authz_svn during COPY/MOVE authorization check (boo#976850)
- Client-side bugfixes:
* diff: support \'--summarize --ignore-properties\'
* checkout: fix performance regression on NFS
* gpg-agent: properly handle passwords with percent characters
* svn-graph.pl: fix assertion about a non-canonical path
* hot-backup.py: better input validation
* commit: abort on Ctrl-C in plaintext password prompt
* diff: produce proper forward binary diffs with --git
* ra_serf: fix deleting directories with many files
- Server-side bugfixes:
* improve documentation for AuthzSVNGroupsFile and groups-db
* fsfs: reduce peak memory usage when listing large directories
* fsfs: fix a rare source of incomplete dump files and reports
- Client-side and server-side bugfixes:
* update INSTALL documentation file
* fix potential memory access bugs
* fix potential out of bounds read in svn_repos_get_logs5()
- Bindings bugfixes:
* ignore absent nodes in javahl version of svn status -u
- API changes:
* properly interpret parameters in svn_wc_get_diff_editor6()
Wed Mar 2 13:00:00 2016 astiegerAATTsuse.com
- make the subversion package conflict with KWallet and Gnome
Keyring packages with do not require matching subversion versions
in SLE 12 and openSUSE Leap 42.1 and thus break the main package
upon partial upgrade. Fix/workaround for boo#969159
Tue Dec 15 13:00:00 2015 astiegerAATTsuse.com
- Apache Subversion 1.9.3
This release fixes two security issues:
* Remotely triggerable heap overflow and out-of-bounds read
caused by integer overflow in the svn:// protocol parser.
CVE-2015-5259 [boo#958299]
* Remotely triggerable heap overflow and out-of-bounds read in
mod_dav_svn caused by integer overflow when parsing skel-
encoded request bodies.
CVE-2015-5343 [boo#958300]
Other changes:
* svn: fix possible crash in auth credentials cache
* cleanup: avoid unneeded memory growth during pristine cleanup
* diff: fix crash when repository is on server root
* fix translations for commit notifications
* ra_serf: fix crash in multistatus parser
* svn: report lock/unlock errors as failures
* svn: cleanup user deleted external registrations
* svn: allow simple resolving of binary file text conflicts
* svnlook: properly remove tempfiles on diff errors
* ra_serf: report built- and run-time versions of libserf
* ra_serf: set Content-Type header in outgoing requests
* svn: fix merging deletes of svn:eol-style CRLF/CR files
* ra_local: disable zero-copy code path
* mod_authz_svn: fix authz with mod_auth_kerb/mod_auth_ntlm
* mod_dav_svn: fix display of process ID in cache statistics
* mod_dav_svn: use LimitXMLRequestBody for skel-encoded requests
* svnadmin dump: preserve no-op changes
* fsfs: avoid unneeded I/O when opening transactions
* javahl: fix ABI incompatibilty with 1.8
* javahl: allow non-absolute paths in SVNClient.vacuum
* fix patch filter invocation in svn_client_patch()
* add AATTsince information to config defines
* fix running the tests in compatibility mode
* clarify documentation of svn_fs_node_created_rev()
* fix overflow detection in svn_stringbuf_remove and _replace
* don\'t ignore some of the parameters to svn_ra_svn_create_conn3
Wed Oct 28 13:00:00 2015 astiegerAATTsuse.com
- Fix copy-and-paste error in Supplements for GNOME keyring
integration
Wed Sep 23 14:00:00 2015 astiegerAATTsuse.com
- Apache Subversion 1.9.2:
* fix a numer of client-side crashes and bugs
* checkout: remove unnecessary I/O operation
* svn: show utf8proc version in svn --version --verbose
* fix reporting for empty representations in svnfsfs stats
- upstream keyring updated
Thu Sep 3 14:00:00 2015 astiegerAATTsuse.com
- Apache Subversion 1.9.1:
* Fix crash with GPG-agent with non-canonical $HOME
* svn: expose expat and zlib versions in svn --version --verbose
* svn: improve help text for \'svn info --show-item\'
* svnserve: fixed minor typo in help text
* Fix an error leak in FSFS verification
* Fix incomplete membuffer cache initialization
* svnfsfs: fix some bugs and inconsistencies in load-index
* Fix memory corruption in copy source SWIG bindings
- drop subversion-1.8.14-httpd-version-number-detection.patch,
change is upstream
- adjust subversion-1.9.0-allow-httpd-2.4.6.patch for upstream
changes
Mon Aug 24 14:00:00 2015 tchvatalAATTsuse.com
- Remove support for SLE11 from the spec file
- Use supplements instead of suggests on the other side for the
password store
- Fix kde integration conditional to work nicely on openSUSE Leap
Mon Aug 24 14:00:00 2015 tchvatalAATTsuse.com
- Use suggests instead of recommends to avoid 180+ new pkgs on
minimal setup due subversion-password-store bnc#942819
Tue Aug 11 14:00:00 2015 astiegerAATTsuse.com
- Apache Subversion 1.9.0:
* new FSFS format 7 with major overhaul for I/O reduction
* prospective blame
* FSX experimental repository back-end
* many enhangements and bug fixes
- subversion-devel now ships pkgconfig files
- dependency changes:
* serf 1.3.4
* apr, apr-utl 1.3.x
* httpd 2.2.x
* java 1.6
* Python 2.7
- To continue to allow building against blacklisted httpd 2.4.6
which has the required patches in openSUSE:13.1:Update, update
subversion-1.8.9-allow-httpd-2.4.6.patch to
subversion-1.9.0-allow-httpd-2.4.6.patch
- removed upstreamed patches:
* subversion-1.8.10-fix-bashisms.patch
* subversion-1.8.11-swig-py-comment.patch
* subversion-1.8.11-swig-py-comment-2.patch
- adjust subversion-no-build-date.patch
- drop subversion-1.8.14-unused-var-authnrequired.patch
Thu Aug 6 14:00:00 2015 stspAATTelego.de
- Pass --enable-broken-httpd-auth to configure. Assumes all apache2
packages contain security patches regardless of their version number.
Should fix the build on SLES12 and perhaps elsewhere.
Thu Aug 6 14:00:00 2015 stspAATTelego.de
- fix mod_authz_svn build with -Wunused-variable
* subversion-1.8.14-unused-var-authnrequired.patch
Thu Aug 6 14:00:00 2015 stspAATTelego.de
- Apache Subversion 1.8.14
This release fixes two vulnerabilities:
* mod_authz_svn: do not leak information in mixed anonymous/authenticated
httpd (dav) configurations (CVE-2015-3184) bnc#939514
* do not leak paths that were hidden by path-based authz (CVE-2015-3187)
bnc#939517
Non-security fixes:
* document svn:autoprops
* fix \'svn cp ^/A/D/HAATT1 ^/A\' to properly create A
* improve conflict prompts for binary files
* improve performance of \'ls -v\'
* improved Sqlite 3.8.9 query performance
* fixed issue #4580: \'svn -v st\' on file externals reports \"?\" for user/rev
* mod_dav_svn: do not ignore skel parsing errors
* detect invalid svndiff data earlier
* prevent possible repository corruption on power/disk failures
* fixed issue #4577: Read error with some repository nodes
* fixed issue #4531: server-side copy (over dav) is slow
* swig-pl: fix some stack memory problems
- Refreshed patch subversion-no-build-date.patch
- Remove obsoleted patch subversion-1.8.13-fix-sqlite-3.8.9-tests.patch
- Add patch subversion-1.8.14-httpd-version-number-detection.patch
Sat May 16 14:00:00 2015 astiegerAATTsuse.com
- disable failing check-swig-rb
Thu Apr 9 14:00:00 2015 astiegerAATTsuse.com
- fix tests with SQLite 3.8.9, adding
subversion-1.8.13-fix-sqlite-3.8.9-tests.patch
Tue Mar 31 14:00:00 2015 astiegerAATTsuse.com
- Apache Subversion 1.8.13
This release fixes three vulerabilities:
* Subversion HTTP servers with FSFS repositories were vulnerable
to a remotely triggerable excessive memory use with certain
REPORT requests.
(bsc#923793 CVE-2015-0202)
* Subversion mod_dav_svn and svnserve were vulnerable to a
remotely triggerable assertion DoS vulnerability for certain
requests with dynamically evaluated revision numbers.
(bsc#923794 CVE-2015-0248)
* Subversion HTTP servers allow spoofing svn:author property
values for new revisions
(bsc#923795 CVE-2015-0251)
- Non-security updates:
* fixes number of client and server side non-security bugs
* improved working copy performanc
* reduction of resource use
* stability improvements
* usability improvements
- 1.8.12 was not released
Fri Mar 20 13:00:00 2015 astiegerAATTsuse.com
- Improve installation of secure password storage plugins for
KWallet and GNOME Keyring
- Recommend installation of bash completion
Tue Mar 10 13:00:00 2015 astiegerAATTsuse.com
- Fix running all regression tests with davautocheck.sh and
svnserveautocheck.sh when time is a shell built-in but not
a command: add subversion-1.8.11-autocheck-time.patch
Wed Mar 4 13:00:00 2015 astiegerAATTsuse.com
- fix sample configuration comments in subversion.conf [boo#916286]
Mon Mar 2 13:00:00 2015 astiegerAATTsuse.com
- SLE 11 SP3 build with all regression tests
- run swig-py tests where they pass
Fri Feb 20 13:00:00 2015 astiegerAATTsuse.com
- fix build with swig 3.0.3 and later:
* upstream subversion-1.8.11-swig-py-comment.patch
* upstream subversion-1.8.11-swig-py-comment-2.patch
* partial subversion-1.8.11-swig-py-comment-3.patch
There remains a regression in swig 3.0.3 and later which causes
check-swig-py to fail - disable these checks.
Thu Jan 8 13:00:00 2015 bwiedemannAATTsuse.com
- fix sysconfig file generation (bnc#911620)
Thu Dec 18 13:00:00 2014 andreas.stiegerAATTgmx.de
- Apache Subversion 1.8.11
- This release addresses two security issues: [boo#909935]
* CVE-2014-3580: mod_dav_svn DoS from invalid REPORT requests.
* CVE-2014-8108: mod_dav_svn DoS from use of invalid transaction
names.
- Client-side bugfixes:
* checkout/update: fix file externals failing to follow history
and subsequently silently failing
* patch: don\'t skip targets in valid --git difs
* diff: make property output in diffs stable
* diff: fix diff of local copied directory with props
* diff: fix changelist filter for repos-WC and WC-WC
* remove broken conflict resolver menu options that always error
out
* improve gpg-agent support
* fix crash in eclipse IDE with GNOME Keyring
* fix externals shadowing a versioned directory
* fix problems working on unix file systems that don\'t support
permissions
* upgrade: keep external registrations
* cleanup: iprove performance of recorded timestamp fixups
* translation updates for German
- Server-side bugfixes:
* disable revprop caching feature due to cache invalidation
problems
* skip generating uniquifiers if rep-sharing is not supported
* mod_dav_svn: reject requests with missing repository paths
* mod_dav_svn: reject requests with invalid virtual transaction
names
* mod_dav_svn: avoid unneeded memory growth in resource walking
Thu Nov 20 13:00:00 2014 ledestAATTgmail.com
- fix bashisms in mailer-init.sh script
- add patches:
* subversion-1.8.10-fix-bashisms.patch
Sat Nov 1 13:00:00 2014 andreas.stiegerAATTgmx.de
- Add a versioned runtime requirement for sqlite and pass it to
configure via --enable-sqlite-compatibility-version to allow
running with sqlite older than at build time but compatible.
- make build with KDE / WKallet optional to fix build with SLE 12
Sat Sep 27 14:00:00 2014 andreas.stiegerAATTgmx.de
- enable build with python-ctypesgen
Wed Sep 17 14:00:00 2014 jweberhoferAATTweberhofer.at
- INSTALL#SQLite says \'Subversion 1.8 requires SQLite version 3.7.12 or above\';
therefore I lowered the sqlite requirement to make the subversion run on
older system versions, tooi. [bnc#897033]
Tue Sep 9 14:00:00 2014 andreas.stiegerAATTgmx.de
- Re-enable optional running full regression test suite,
cleanup of dependencies only for network based tests.
- make build with ctypesgen optional, off as it is not in Factory
Mon Sep 8 14:00:00 2014 andreas.stiegerAATTgmx.de
- move autogen to %build to not break quilt setup
Thu Sep 4 14:00:00 2014 tchvatalAATTsuse.com
- Use python_sitearch properly
Thu Sep 4 14:00:00 2014 tchvatalAATTsuse.com
- Cleanup with spec-cleaner, remove crufty conditionals to reduce
the in-build conditions
- Install only systemd packages where needed
- Drop support of really old stuff (sle10)
- Run only basic tests and run them always
- Unbundle everything. For older distros rather use linkpac
- Removed patches:
* subversion.libtool-pie-flags.patch
* subversion.perl.LD_RUN_PATH.patch
* swig.noembed.patch
- Added patches:
* subversion-1.8.0-rpath.patch
* subversion-fix-parallel-build-support-for-perl-bindings.patch
* subversion-perl-underlinking.patch
* subversion-swig-perl-Wall.patch
Thu Aug 7 14:00:00 2014 andreas.stiegerAATTgmx.de
- Apache Subversion 1.8.10
- Client-side bugfixes:
* guard against md5 hash collisions when finding cached
credentials [bnc#889849] [CVE-2014-3528]
* ra_serf: properly match wildcards in SSL certs.
[bnc#890511] [CVE-2014-3522]
* ra_serf: ignore the CommonName in SSL certs where there are
Subject Alt Names
* ra_serf: fix a URI escaping bug that prevented deleting locked
paths
* rm: Display the proper URL when deleting a URL in the commit
log editor
* log: Fix another instance of broken pipe error
* copy: Properly handle props not present or excluded on cross wc
copy
* copy: Fix copying parents of locally deleted nodes between wcs
* externals: Properly delete ancestor directories of externals
when removing the external by changing svn:externals.
* ra_serf: fix memory lifetime of some hash values
- Server-side bugfixes:
* fsfs: omit config file when creating pre-1.5 format repos
- Bindings:
* ruby: removing warning about Ruby 1.9 support being new.
* python: fix notify_func callbacks
Tue Jul 22 14:00:00 2014 mlsAATTsuse.de
- do not undef bool in swig, it breaks modern perl versions
new patch: swig.noembed.patch
Wed Jun 4 14:00:00 2014 andreas.stiegerAATTgmx.de
- do not package svnserve pid file in /var/run, fixing Factory
Tue May 13 14:00:00 2014 andreas.stiegerAATTgmx.de
- Apache Subversion 1.8.9 [bnc#877555]
- Client-side bugfixes:
* log: use proper peg revision over DAV
* upgrade: allow upgrading from 1.7 with exclusive locks
* proplist: resolve inconsitent inherited property results
* increase minimal timestamp sleep from 1ms to 10ms
* merge: automatic merge confused by subtree merge
* propget: report proper error on invalid revision for url
* commit: fix an assertion when committing a deleted descendant
* merge: resolve segfault when \'--force\' merges a directory
delete
* resolve: prevent interactive conflict resolution when nothing
has been done to resolve the conflict
* update: fix locks lost from wc with pre-1.6.17 servers
* merge: honor the \'preserved-conflict-file-exts\' setting
* list: fix \'--verbose\' against older servers
* unlock: fix ability to remove locks with timeouts
* copy: fix \'svn copy URL WC\' on relocated working copies
* export: allow file externals to be exported
* move: fix working copy db inconsistency in cert scenarios
* commit: fix an issue where mixed revision copy with non copy
descendants that shadow a not present node couldn\'t be committed
* delete: properly remove move_to info when the node in its
original location is removed
* status; fix an issue where output would vary based on if the
target was the node itself or its parent
- Server-side bugfixes:
* svnadmin dump: don\'t let invalid mergeinfo stop dump
* svnserve: resolve performance regression caused by iprops
* reduce size of memory buffer when reading config files
* remove dead transaction if commit was blocked by hook
* svnrdump load: fix crash when svn:
* normalization
* fix memcached support
* svndumpfilter: fix order of node record headers
* mod_dav_svn: allow generic DAV clients to refresh locks
* mod_dav_svn: detect out of dateness correctly during commit
- Developer-visible changes:
* improve consistency checks of DAV inherited property requests
* fix ocassional failure in autoprop_tests.py
* avoid duplicate sqlite analyze information rows
* add Mavericks to our sysinfo output
* bump copyright years to 2014
* unbreak test suite when running as root
* resolve buffer overflow in testcode
* fix libmagic detection with custom LDFLAGS
* fix an out of scope variable use in merge
* javahl: fix crash from resolve callback throwing an exception
* ruby: fix two memory lifetime bugs
* fix a missing null byte when handling old pre-1.4 deltas
* fix building with APR 0.9.x
* make svn_ra_get_locks() and svn_ra_get_lock() report not locked
nodes with a NULL svn_lock_t
*, as documented
* fix tests for compiler flags
- Packaging changes:
* adds subversion-1.8.9-allow-httpd-2.4.6.patch to allow building
against blacklisted httpd 2.4.6 which has the required patches
* update subversion-no-build-date.patch for context changes
Wed Apr 23 14:00:00 2014 dmuellerAATTsuse.com
- remove dependency on gpg-offline (is already checked
by source_validator)
Wed Feb 19 13:00:00 2014 andreas.stiegerAATTgmx.de
- Apache Subversion 1.8.8
- Client-side bugfixes:
* fix automatic relocate for wcs not at repository root
* wc: improve performance when used with SQLite 3.8
* copy: fix some scenarios that broke the working copy
* move: fix errors when moving files between an external and the
parent working copy
* log: resolve performance regression in certain scenarios
* merge: decrease work to detect differences between 3 files
* commit: don\'t change file permissions inappropriately
* commit: fix assertion due to invalid pool lifetime
* version: don\'t cut off the distribution version on Linux
* flush stdout before exiting to avoid information being lost
* status: fix missing sentinel value on warning codes
* update/switch: improve some WC db queries that may return
incorrect results depending on how SQLite is built
- Server-side bugfixes:
* reduce memory usage during checkout and export
* fsfs: create rep-cache.db with proper permissions
* mod_dav_svn: prevent crashes with SVNListParentPath on
(previously patched in this package)
* mod_dav_svn: fix SVNAllowBulkUpdates directive merging
* mod_dav_svn: include requested property changes in reports
* svnserve: correct default cache size in help text
* svnadmin dump: reduce size of dump files with \'--deltas\'
* resolve integer underflow that resulted in infinite loops
- developer visible changes:
* fix ocassional failure of check_tests.py 12
* fix failure with SQLite 3.8.1-3.8.3 when built with
SQLITE_ENABLE_STAT3/4 due to bug in SQLite
* specify SQLite defaults that can be changed when SQLite is
built to avoid unexpected behavior with Subversion
* numerous documentation fixes
* svn_client_commit_item3_dup() fix pool lifetime issues
* ra_serf: properly ask multiple certificate validation providers
for acceptance of certificate failures
* release internal fs objects when closing commit editor
* svn_client_proplist4() don\'t call the callback multiple times
for the same path in order to deliver inherited properties
- Bindings:
* swig-pl: fix with --enable-sqlite-compatibility-version
* swig: fix building from tarball with an out-of-tree build
- removed patches:
* subversion-1.8.x-SQLite-3.8.patch, committed upstream
* subversion-1.8.x-fix-ppc-tests.patch, committed upstream
* subversion-CVE-2014-0032.patch, now upstream
- packaging changes:
* only require and build with junit when building with java and
running regression tests
* specify memory constraints for reliable builds with regression
tests
- 1.8.6 and 1.8.7 were not released
Sun Feb 9 13:00:00 2014 andreas.stiegerAATTgmx.de
- fix a remotely triggerable segfault in mod_dav_svn when svn is
handling the server root and SVNListParentPath is on
[bnc#862459] CVE-2014-0032
- added patches:
* subversion-CVE-2014-0032.patch
Sun Dec 8 13:00:00 2013 andreas.stiegerAATTgmx.de
- add Subversion C API documentation to subversion-devel package
- fix rpmlint warning W: suse-wrong-suse-capitalisation
Sat Dec 7 13:00:00 2013 matzAATTsuse.de
- Copy updated config.{guess,sub} to in-tree swig source also
for ppc64le.
Sun Dec 1 13:00:00 2013 andreas.stiegerAATTgmx.de
- add repository benchmarking tool svn-bench to tools subpackage
- add repository statistics tool fsfs-stats to tools subpackage
- fix performance problems when dynamically linking against
SQLite 3.8. While this does not create a new working copy format
version, working copies that were created with a 1.8 client
linked against SQLite 3.7 need to have \"svn upgrade\" run once
to enjoy the benefits, while otherwise maintaining compatibility.
The step is optional and not required for new working copies.
Adds subversion-1.8.x-SQLite-3.8.patch based on upstream commits.
- dynamically link against SQLite as per the above in 13.1 and up.
Mon Nov 25 13:00:00 2013 andreas.stiegerAATTgmx.de
- CVE redaction for 1.8.5 [bnc#850747]
Mon Nov 25 13:00:00 2013 andreas.stiegerAATTgmx.de
- fix build on Factory where ruby 1.9 is no longer available,
do not build ruby bindings
Mon Nov 25 13:00:00 2013 andreas.stiegerAATTgmx.de
- update to 1.8.5 [bnc#850747], addressing two security issues:
* CVE-2013-4505: mod_dontdothat does not restrict requests from
serf clients.
* CVE-2013-4558: mod_dav_svn assertion triggered by
autoversioning commits.
- Client-side bugfixes:
* fix externals that point at redirected locations
* diff: fix assertion with move inside a copy
- Server-side bugfixes:
* mod_dav_svn: Prevent crashes with some 3rd party modules
* mod_dav_svn: canonicalize paths properly
* mod_authz_svn: fix crash of mod_authz_svn with invalid config
* hotcopy: fix hotcopy losing revprop files in packed repos
- Other tool improvements and bugfixes:
* mod_dontdothat: Fix the uri parser
- Developer-visible changes:
* fix compilation with \'--enable-optimize\' with clang
* add test to fail when built against broken ZLib
- Bindings:
* ctypes-python: build with compiler selected via configure
- if running regression tests, also run them against bdb backend
Tue Nov 19 13:00:00 2013 andreas.stiegerAATTgmx.de
- print error logs on on regression test failures
- always build with and statically link to in-tree SQLite to
prevent performance problems and test failures with SQLite 3.8
- fix regression tests for ppc/ppc64 architectures, found in
openSUSE package build and fixed with upstream developers, adding
subversion-1.8.x-fix-ppc-tests.patch
- improve sqlite and python-ctypes conditionals, the latter not
building for any current targets
- require python-sqlite when running regression tests for all
targets, no longer pulled in implicitly
- update keyring, use Subversion Project Management Committee
keyring rather than all committers
Tue Oct 29 13:00:00 2013 andreas.stiegerAATTgmx.de
- update to 1.8.4 [bnc#847103]
- Client- and server-side bugfixes:
* fix assertion on urls of the form \'file://./\'
* translation updates for Swedish
- Client-side bugfixes:
* revert: fix problems reverting moves
* update: fix assertion when file external access is denied
* merge: reduce network connections for automatic merge
* merge: fix path corruption during reintegration
* mergeinfo: fix crash
* ra_serf: verify the result of xml parsing
* ra_serf: improve error messages during commit
* ra_local: fix error with repository in Windows drive root
* fix crash on windows when piped command is interrupted
* fix assertion when upgrading old working copies
- Server-side bugfixes:
* hotcopy: cleanup unpacked revprops with \'--incremental\'
* fix OOM on concurrent requests at threaded server start
* fsfs: improve error message when unsupported fsfs format found
* fix memory problem in 3rd party FS module loader
- Developer-visible changes - Bindings:
* javahl: canonicalize path for streaFileContent method
- packaging changes:
* update keyring
Fri Aug 30 14:00:00 2013 andreas.stiegerAATTgmx.de
- update to 1.8.3
CVE-2013-4246: fsfs: corruption from editing packed revision properties
CVE-2013-4262: admin-side tools: symlink attack against pid file
CVE-2013-4277: svnserve: symlink attack against pid file
- User-visible changes:
- Client- and server-side bugfixes:
* translation updates for Swedish
* enforce strict version equality between tools and libraries
* consistently output revisions as \"r%ld\" in error messags
- Client-side bugfixes:
* status: always use absolute paths in XML output
* ra_serf: \'svn log -v\' fails with a 1.2.x server
* ra_serf: fix crash when committing cp with deep deletion
* diff: issue an error for files that can\'t fit in memory
* svnmucc: generate proper error for mismatched URLs
* update: fix a crash when a temp file doesn\'t exist
* commit & update: improve sleep for timestamps performance
* diff: continue on missing or obstructing files
* ra_serf: use runtime serf version for User-Agent
* ra_serf: ignore case when checking certificate common names
* ra_serf: format distinguished names properly
* ra_serf: do not retry HTTP requests if we started to parse them
* ra_serf: output ssl cert verification failure reason
* ra_serf: allow session reuse after SVN_ERR_CEASE_INVOCATION
* ra_serf: include library version in \'--version\' output
* info: fix spurious error on wc root with child in conflict
- Server-side bugfixes:
* svnserve: fix creation of pid files
* svnadmin: fix output encoding in non-UTF8 environments
* svnsync: fix high memory usage when running over ra_serf
* mod_dav_svn: do not map requests to filesystem
* svnauthz: improve help strings
* fsfs: fixed manifest file growth with revprop changes
* fsfs: fix packed revprops causing loss of revprops
- Other tool improvements and bugfixes:
* svnwcsub/irkerbridge: fix symlink attack via pid file
Developer-visible changes:
- General:
* describe APR unimplemented errors as coming from APR
* mod_dav_svn: update INSTALL to reflect configure defaults
* davautocheck: use the correct apxs binary by default
- API changes:
* svn_config_walk_auth_data() config_dir arg: permit NULL)
- Bindings:
* swig-pl: fix SVN::Client not honoring config file settings
* swig-pl & swig-py: disable unusable svn_fs_set_warning_func
Wed Jul 24 14:00:00 2013 andreas.stiegerAATTgmx.de
- Apache Subversion 1.8.1 [bnc#830031] CVE-2013-4131
- User-visible changes:
- Client- and server-side bugfixes:
* translation updates for German and Simplified Chinese
* improve sqlite error message output
* support platforms lacking mmap
* allow configuration files to start with UTF-8 BOM
* don\'t fail on UTF-8 data when encoding conversion not available
* improve error messages when encoding conversion fails
- Client-side bugfixes:
* merge: rename \'automatic merge\' to \'complete merge\'
* mergeinfo: reduce network usage for \'--show-revs\'
* ra_serf: improve http status handling
* merge: avoid unneeded ra session
* merge: reduce network usage
* merge: remove duplicated ancestry check
* ra_serf: fix \'Accept-Encoding\' header for IIS interoperability
* svn status: improve documentation for lock columns
* ra_serf: fix support for \'get-file-revs-reversed\' capability
* log: reduce network usage on repository roots
* diff: avoid temporary files when calling external diff
* upgrade: fix notification of 1.7.x working copies
* fix crash during tree conflict resolution
* interactive file merge: add two additional choices
* diff: use local style paths in error messages
* resolve: improve the interactive conflict resolution menu
* switch: use local style path in error message
* ra_serf: improve error output when receiving invalid XML
* svn cleanup: explain what the command does in help output
* blame: error on -r M:N where M>N unless server supports
* gpg-agent auth: don\'t try to use agent when unavailable
* gpg-agent auth: don\'t require GPG_TTY or TERM env vars
* update: fix some tree conflicts not triggering resolver
* commit: remove stale entries from wc lock table when deleting
* merge: fix --record-only erroring out on renamed path
* svnmucc: fix \'make install\' symlink to work when DESTDIR is set
* wc: fix crash when target is symlink to a working copy root
* ra_serf: change \"internal malfunction\" errors to normal errors
* ra_serf: handle proxies not supporting chunked requests
- Server-side bugfixes:
* fsfs: resolve endless loop problem when repos/db/uuid has \\r\
* fsfs: remove revision property buffer limit
* mod_dav_svn: better status codes for anonymous user errors
* mod_dav_svn: better status codes for commit failures
* fix performance regression in \'svn log\' against root
* allow deleting non-user-visible \'svn:\' properties
* fsfs: fix crash on strict-alignment architectures
* svnadmin upgrade: fix error of non-sharded fsfs repositories
* svnadmin create: deny \'--fs-type=fsfs --compatible-version=1.0\'
* svnadmin upgrade: fix data loss when cancelling in last stage
* mod_dav_svn: fix incorrect path canonicalization
- Other tool improvements and bugfixes:
* fsfs-stats (tool): resolve segfault when passing invalid path
* svn-bench: fix help output
* svnpubsub: add version header to server
Developer-visible changes
- General:
* ra_serf: fix some test runner issues on Windows
* fix two issues in reverse svn_ra_get_file_revs()
* handle --compatible-version=1.8 in the C tests
* improve clang compatibility
* use proper cancel baton when handling conflicts
* fs: BDB: provide proper error value from BDB
* ra_serf: tweak connection failed error value
* svn_client_log5: resolve possible segfault
* fix metadata_only move to work when target is unversioned node
* ra_svn: fix segfault with a NULL commit message
* Ev2: correctly initialize node kind in shims\'
* Ev2: fix copyfrom URL construction in shims
* fs: improve test against newlines in filenames
* make building with BDB 6 an opt-in feature
* sqlite: allow placing amalgamation in build dir
* ra_svn: make sessions usable after log callback early out
- Bindings:
* swig-rb: fix tests with out-of-tree-builds
* javahl: fix encoding of error messages produced by javahl
* swig-pl: silence compiler warnings
* swig-pl: improve documentation
- packaging changes:
* update keyring
Fri Jun 21 14:00:00 2013 andreas.stiegerAATTgmx.de
- require krb5-devel to fix factory build
- remove unrequired BuildIgnore
- update keyring
- change swig tarball to pristine upstream file
Tue Jun 18 14:00:00 2013 andreas.stiegerAATTgmx.de
- Apache Subversion 1.8.0
- Major new features
* working copy records moves as first-class operation
* merge uses reintegrate mode automatically when needed
* FSFS: Packing of revision property shards
* support inheritable properties
* repository can suggest config for autoprops and ignores
* support gpg-agent for password caching
* authz rules can be stored inside the repository
- concerns when upgrading from earlier versions
* Upgrading the Working Copy
1.8 introduces a new working copy format. One-time execution of
\"svn upgrade\" required. After that, clients earlier than 1.8 will
be unable to use the working copy. Working copy must have been
created using 1.6 or 1.7. For details, please see:
https://subversion.apache.org/docs/release-notes/1.8.html#wc-upgrade
* Upgrading the Repository
1.8 can read and write repositories created by earlier versions.
\"svnadmin upgrade\" may be used to upgrade to FSFS format 6 of 1.8,
after which the repository will be no longer be usable for 1.7 servers.
An optional dump/load cycle may be used to apply FSFS improvements
to past revisions.
https://subversion.apache.org/docs/release-notes/1.8.html#compatibility
https://subversion.apache.org/docs/release-notes/1.8.html#fsfs-enhancements
* Required configuration changes when using mod_dav_svn with Apache httpd2:
The MaxKeepAliveRequests option in httpd.conf needs to be increased
from 100 (the default) to at least 1000 (there is no reason why it
could not be 10000). This will improve performance by allowing serf
clients to use fewer TCP connections to the server. Clients using
neon will also work fine with this configuration.
- many minor features and improvements listed in:
https://subversion.apache.org/docs/release-notes/1.8.html
http://svn.apache.org/repos/asf/subversion/tags/1.8.0/CHANGES
- Deprecations:
* require serf as client-side http library (neon support removed)
* deprecate the Berkeley DB FS backend (libsvn_fs_base)
- packaging changes:
* ra_serf is now the only http library
* remove neon dependency, ra_neon removed upstream
* update in-tree sqlite to recommended version 3.7.15.1
* build with sqlite amalgamation for openSUSE 12.2 and earlier
* dropped patches, accepted upstream:
subversion-1.7.4-ruby-1.9-RbConfig.patch
subversion-1.7.8-TestHarness_run_py_test_exit_code.patch
* dropped patches, no longer required:
subversion-1.7.9-davautocheck-LD_LIBRARY_PATH.patch
Also setting LD_LIBRARY_PATH no longer required for tests.
* dropped patches, feature removed upstream:
subversion-neon-systemproxy.patch
* updated patches for upstream changes:
subversion-no-build-date.patch
subversion-swig-perl-install_vendor.patch
subversion.libtool-verbose.patch
subversion.perl.LD_RUN_PATH.patch
subversion.libtool-pie-flags.patch
* update tools installation, svnmucc is now a first order tool
* updated build requirements:
+ python >= 2.5
+ serf >= 1.2.1
+ ruby 1.8.x, >= 1.8.2 or 1.9.3
* build ruby bindings again for openSUSE 12.3 and Factory
* fix detection of ruby sitelib directory
* remove obsolete tool svnmerge.py
* update contrib package to r1485350
Sat Jun 15 14:00:00 2013 andreas.stiegerAATTgmx.de
- fix build for 12.3 x86_64 due to choice for libjpeg-devel
needed by libmng-devel: libjpeg62-devel libjpeg8-devel
Fri Jun 7 14:00:00 2013 andreas.stiegerAATTgmx.de
- fix execution of regression tests on SLE 11
Mon Jun 3 14:00:00 2013 andreas.stiegerAATTgmx.de
- build with -std=gnu99 on 12.3 and later to match apache httpd to
avoid configure warning
Fri May 31 14:00:00 2013 andreas.stiegerAATTgmx.de
- update to 1.7.10 [bnc#821505]
CVE-2013-1968 CVE-2013-2088 CVE-2013-2112
- Client-side bugfixes:
* fix \'svn revert\' \"no such table: revert_list\" spurious error
* fix \'svn diff\' doesn\'t show some locally added files
* fix changelist filtering when --changelist values aren\'t UTF8
* fix \'svn diff --git\' shows wrong copyfrom
* fix \'svn diff -x-w\' shows wrong changes
* fix \'svn blame\' sometimes shows every line as modified
* fix regression in \'svn status -u\' output for externals
* fix file permissions change on commit of file with keywords
* improve some fatal error messages
* fix externals not removed when working copy is made shallow
- Server-side bugfixes:
* fix repository corruption due to newline in filename
* fix svnserve exiting when a client connection is aborted
* fix svnserve memory use after clear
* fix repository corruption on power/disk failure on Windows
- Developer visible changes:
* make get-deps.sh compatible with Solaris /bin/sh
* fix infinite recursion bug in get-deps.sh
* fix uninitialised output parameter of svn_fs_commit_txn()
- Bindings:
* fix JavaHL thread-safety bug
Tue May 21 14:00:00 2013 andreas.stiegerAATTgmx.de
- use svnserveautocheck.sh and davautocheck.sh for unit tests,
greatly reducing complexity of spec file and adding support
for running unit tests with httpd 2.4 in factory
- add subversion-1.7.9-davautocheck-LD_LIBRARY_PATH.patch to
not overwrite LD_LIBRARY_PATH in davautocheck.sh to make
auth-test pass
Mon May 20 14:00:00 2013 andreas.stiegerAATTgmx.de
- add systemd support for svnserve
- package now contains user and group svn
- adjust and extend README.SuSE to cover a quickstart with both
mod_dav_svn and svnserve, mention the user/group requirement for
parallel operation and make text more compact by referencing the
template config file [bnc#781980]
Tue May 14 14:00:00 2013 andreas.stiegerAATTgmx.de
- package verify-po.py and other hook scripts as documentation
[bnc#781982]
Fri Apr 12 14:00:00 2013 andreas.stiegerAATTgmx.de
- add gpg signature verification of source tarball
Sun Apr 7 14:00:00 2013 andreas.stiegerAATTgmx.de
- update to 1.7.9 [bnc#813913], addressing remotely triggerable
vulnerabilities in mod_dav_svn which may result in denial of service:
+ CVE-2013-1845: mod_dav_svn excessive memory usage from property changes
+ CVE-2013-1846: mod_dav_svn crashes on LOCK requests against activity URLs
+ CVE-2013-1847: mod_dav_svn crashes on LOCK requests against non-existant URLs
+ CVE-2013-1849: mod_dav_svn crashes on PROPFIND requests against activity URLs
+ CVE-2013-1884: mod_dav_svn crashes on out of range limit in log REPORT
- further changes:
+ Client-side bugfixes:
* improved error messages about svn:date and svn:author props.
* fix local_relpath assertion
* fix memory leak in `svn log` over svn://
* fix incorrect authz failure when using neon http library
* fix segfault when using kwallet
+ Server-side bugfixes:
* svnserve will log the replayed rev not the low-water rev.
* mod_dav_svn will omit some property values for activity urls
* fix an assertion in mod_dav_svn when acting as a proxy on /
* improve memory usage when committing properties in mod_dav_svn
* fix svnrdump to load dump files with non-LF line endings
* fix assertion when rep-cache is inaccessible
* improved logic in mod_dav_svn\'s implementation of lock.
* avoid executing unnecessary code in log with limit
- Developer-visible changes:
+ General:
* fix an assertion in dav_svn_get_repos_path() on Windows
* fix get-deps.sh to correctly download zlib
* doxygen docs will now ignore prefixes when producing the index
* fix get-deps.sh on freebsd
+ Bindings:
* javahl status api now respects the ignoreExternals boolean
- refresh subversion-no-build-date.patch for upstream source changes
Wed Mar 20 13:00:00 2013 schwabAATTsuse.de
- Copy updated config.{guess,sub} to in-tree swig source for aarch64
Mon Dec 17 13:00:00 2012 andreas.stiegerAATTgmx.de
- update to 1.7.8 [bnc#794676]
+ Client- and server-side bugfixes:
* Fix typos in pt_BR, es and zh_TW translations
+ Client-side bugfixes:
* add missing attributes to \"svn log -v --xml\" output
* fix svn patch ignoring hunks after no trailing newline
* fix hang with ra_serf during error processing
* ignore file externals with mergeinfo when merging
* fix SEGV with \"svnmucc cp rev arg\" during argv processing
* fix conflict handling on symlinks
+ Server-side bugfixes:
* properly detect threading availability
* fix \"svnadmin load --bypass-prop-validation\"
* fix parsing of [groupsfoo] sections in authz file
* add Vary: header to GET responses to improve cacheability
* fix fs_fs to cleanup after failed rep transmission
* fix mod_dav_svn to complain about revisions > HEAD
+ Developer-visible changes:
* fix incorrect status returned by 1.6 API
* fix compilation with g++ 4.7
- drop subversion-1.7.5-libsvn_auth_kwallet-r1345740.patch
as it was merged upstream
- update annotation of subversion-1.7.4-ruby-1.9-RbConfig.patch
- remove excess logging from optional regression tests to reduce
spurious build failures in OBS due to size of log
- remove commands trailing \"make check\" which masked build failures
- add subversion-1.7.8-TestHarness_run_py_test_exit_code.patch
to ensure \"make check\" fails when certain Python tests fail
Sat Dec 8 13:00:00 2012 andreas.stiegerAATTgmx.de
- for package maintainers, add support to run regression tests
over ra_neon and ra_serf (http://) via Apache / mod_dav_svn
when built --with=regression_tests
Sat Oct 6 14:00:00 2012 andreas.stiegerAATTgmx.de
- update to upstream 1.7.7:
User-visible changes:
- Client- and server-side bugfixes:
* fix memory read bug
* update Chinese translation
- Client-side bugfixes:
* fix issues with applying Git patch files
* fix status does not descend into dir externals after upgrade
* fix file externals don\'t update with old mod_dav_svn
* fix external diff tool duplicates Index: lines with \'svn diff\'
* fix GNOME keyring library fails with very old glib
* fix unknown password stores in config file cause error
* fix assertions in ra_serf running against server root
* fix ra_serf checkout/export aborts early on Windows
- Server-side bugfixes:
* fix an assert with SVNAutoVersioning in mod_dav_svn
* fix unbounded memory use with SVNPathAuthz short_circuit
* fix svndumpfilter exclude --targets requires leading slash
* fix connection ttl for memcache should be 50 seconds
* stabilize order of paths in dumpfiles with APR 1.4.6
Developer-visible changes:
- General:
* print \"All tests successful\" at the end of \'make check\'
* fix sandbox violation in a test
* fix tests fail when running within a format 30 WC
* fix return value of svn_client_update4() incorrect
* fix make check summary missing test failures
* fix build does not fail when apache httpd is not available
- Bindings:
* fix swig-pl build fails with swig 2.0.7 and newer.
* fix swig-py runtime problems with swig 2.0.5 and newer
- refresh subversion-1.7.4-ruby-1.9-RbConfig.patch
- refresh subversion-1.7.5-libsvn_auth_kwallet-r1345740.patch
Wed Aug 15 14:00:00 2012 andreas.stiegerAATTgmx.de
- update to upstream 1.7.6:
User-visible changes:
- Client-side bugfixes:
* Fix \"svn status -u --depth empty FILE\"
* Fix example output of \'svn help status\'
* svn propset of svn:eol-style might not notice related text changes
* sort output of \'svn propget -R\'
* sort output of \'svn proplist\'
* sort output of \'svn status\'
* avoid a filestat per working copy find operation
* optimize \'svn upgrade\' performance on large working copies
* allow \'file:///C:\\repos\' style arguments on Windows, like 1.6
* fix ra_serf against Subversion 1.2 servers
* fix \'svn upgrade\' on working copies with certain tree conflicts
* avoid workqueue references to system temp dir
* allow non-existant canonical paths
* fix \'svn revert --depth files\' to operate on files
* fix ra_serf XML namespace handling against malicious server
* fix relocate with server-relative externals
* change two asserts into errors for TortoiseSVN
* don\'t attempt to anchor an operation outside a wc root
- Server-side bugfixes:
* partial sync drops properties when converting to adds
* replaying a copy and delete of an unreadable child fails
* allow svnlook to operate on r0
* make FSFS revision files independent of APR hash order
- Other tool improvements and bugfixes:
* move mod_dontdothat to install-tools
Developer-visible changes:
- General:
* fix running tests against httpd 2.4
* use constant struct initialisers for C89 compatibility
- Bindings:
* JavaHL: Don\'t assert on some invalid input
* JavaHL: Add missing new in 1.7 notifications
- refresh subversion-no-build-date.patch
Tue Jun 12 14:00:00 2012 andreas.stiegerAATTgmx.de
- make build against neon optional, default on, like serf
Thu Jun 7 14:00:00 2012 andreas.stiegerAATTgmx.de
- add subversion-1.7.5-libsvn_auth_kwallet-r1345740.patch from trunk
to fix build with gcc 4.7
- move checks for schemes handled by ra modules into %check section
- do not run regression tests by default:
* too many failed builds
* doesn\'t include http tests
- only require iproute2 when running regression tests
Mon May 21 14:00:00 2012 andreas.stiegerAATTgmx.de
- Allow unit tests to be run for Factory: --with=regression_tests
replacing the inline conditional
Thu May 17 14:00:00 2012 andreas.stiegerAATTgmx.de
- update to upstream 1.7.5
User-visible changes:
- Client- and server-side bugfixes:
* http: report deleted-revision upon delete during update
- Client-side bugfixes:
* avoid potential segfault when canonicalizing properties
* improve memory and file-handle management with externals (issue #4130)
* serf: convert assertions to \"MERGE failed\" errors
* fix undefined behaviour during multi-segment reverse merges (issue #4144)
* fix potential use of already freed memory during diff operation
* improve performance of scan for the working copy root
* cmdline: fix segfault during \'svn diff\' argument processing
* fix regression from 1.6 in update with --depth option (issue #4136)
* propset: avoid undefined behaviour in error path
* reset sqlite statements, partly for sqlite-3.7.11 compat
* fix assertion during \'svn diff -r BASE:HEAD ^/trunk\' (issue #4161)
* notify upon \'update\' just removing locks on files
* neon: fix potential use of freed memory during commits
* \'status --xml\' doesn\'t show repository deletes correctly (issue #4167)
* fix assert on svn:externals with drive letter on Windows (issue #4073)
* fix \'svn update --depth=empty\' against 1.4 servers (issue #4046)
* handle missing svn:date reported by svnserve gracefully
* fix merges which first add a subtree and then delete it (issue #4166)
* fix a regression with checkout of file externals (issue #4087)
* don\'t add spurious mergeinfo to subtrees in edge-case merge (issue #4169)
* improve performance of status on large working copies (issue #4178)
- Server-side bugfixes:
* fix non-fatal FSFS corruption bug with concurrent commits (issue #4129)
* mod_dav_svn: raise an error on MERGE of non-existent resource
* mod_dav_svn: support compiling/running under httpd-2.4 (r1232267)
* mod_dav_svn: forbid BDB repositories under httpd\'s event MPM (issue #4157)
- Other tool improvements and bugfixes:
* emacs support: updates to dsvn.el and vc-svn.el
Developer-visible changes:
- General:
* windows example distribution scripts: include svnrdump
* fix running the test suite with jsvn
- Bindings:
* swig-py tests: avoid FAILs on APR hash order
* swig-rb tests: avoid FAILs on APR hash order
* swig-pl: Improved perl detection in gen-make.py
Fri May 11 14:00:00 2012 andreas.stiegerAATTgmx.de
- Subversion currently does not compile Ruby bindings for 1.9
disable to fix build in Factory
- add subversion-1.7.4-ruby-1.9-RbConfig.patch to use RbConfig
instead of Config which is deprecated in Ruby 1.9
- fix conditional configuration for serf support
- add check that ra_serf is built as configure failed silently
Thu Mar 8 13:00:00 2012 andreas.stiegerAATTgmx.de
- update to upstream 1.7.4
User-visible changes:
* fix \'svn log --diff\' for moved paths
* fix ra_serf problem with reading directory entries via HTTPv2
* prepend \"sqlite:\" to error messages from SQLite
* fix randomly missing \"Merged via\" notifications in \'svn log -g\'
* fix spurious conflict when merging deleted symbolic link (issue #4052)
* fix URL-to-WC copy of externals on Windows (issue #4123)
* improve an FSFS sanity-check error message
* fix regressions with symlinks pointing at externals (issue #4102)
* fix \'svn log --diff\' output ordering issue on Windows
Developer-visible changes:
* don\'t build mod_dontdothat if not building with httpd
* fix the testsuite to avoid FAILs on APR hash order
Sat Mar 3 13:00:00 2012 andreas.stiegerAATTgmx.de
- add bash completion subpackage
Tue Feb 21 13:00:00 2012 cooloAATTsuse.com
- Apache-2 is not a license in spdx.org, pick Apache-2.0
Mon Feb 13 13:00:00 2012 andreas.stiegerAATTgmx.de
- refresh subversion-no-build-date.patch
- add mod_dontdothat to subversion-server package
- add section to README.SuSE about mod_dontdothat
- add inactive sample mod_dontdothat configuration to subversion.conf
- update to upstream 1.7.3
General:
* ship mod_dontdothat with the standard release
User-visible changes:
* fix segfault on \'svn rm $ROOT_URL\' (issue #4074)
* replace a couple of assertions in favor of errors (r1207858, -949)
* fix a server assert after being upgraded (r1210195)
* fix segfault on \'svn mkdir svn://localhost\' (r1211483)
* make \'svnadmin recover\' prune the rep cache (r1213331, et al)
* make svnmucc use values from --config-dir option
* update and clarify the merge help text (r1154121, et al)
* replace wc assertion with informative error (r1222521, -693)
* copy permissions correctly for FSFS dirs (r1229252)
* improve \'svn log --with-all-revprops\' over ra-dav (issue #4082)
* fix segfault when remapping a file external (issue #4093)
* fix segfault caused by obstructing unversioned dir (r1229677)
* fix regression on first update of external dir with \'-r\' (issue #4053)
* fix various EOL-handling problems in \'svn patch\' (issues #3814, #3991)
* fix segfault in \'svn revert\' (r1229303)
* improve correctness of \'svn patch --dry-run\' (r1231944, -5)
* enforce revisions given in \'svn:externals\' (issue #4053)
* fix potential corruption on 32-bit FSFS with large files (r1230212)
* make \'svn status --xml\' show new files (issue #4097)
* fix \'svn mergeinfo\' correctness (issue #4050)
* return the correct status for non-present nodes (r1232202, -07, -21, -22)
* improve SASL error messages (r1236343, et al)
* improve server cert error code for ra_serf (r1232413)
* fix SVNParentPath listings for parent path symlinks (r1221767, -80)
* fix mod_dav_svn\'s handling of POST errors (issue #4086)
* log some mod_dav_svn errors, rather than ignoring them (r1237720, -9596)
* relax requirements for canonicalization in mod_dav_svn (r1236173)
* fix a rare source of FSFS corruption (r1240752)
* allow committing the result of some copy operations (issue #4059)
* prevent one-byte buffer overflow in base64 decoding (r1242337)
Developer-visible changes:
* JavaHL: Add missing notify action, fixing an exception (r1221793)
* fix swig-py memory leak (r1235264, -296, -302, -736)
* fix spurious test suite failure (r1220742, -50)
* allow running tests on UNC shares (r1225491)
* bindings: see platform-specific password providers (r1242660, -1)
* skip \'svnrdump dump\' tests over ra_serf (r1242537)
* convert a few ra_serf assertions to errors (r1242607)
Wed Dec 21 13:00:00 2011 andreas.stiegerAATTgmx.de
- update license to Apache-2
- run regression tests for 12.1 again
- allow builds --without regression_tests
- subversion.libtool-verbose.patch
refresh for moved source lines
- subversion-swig-perl-install_vendor.patch
refresh for moved source lines
- subversion.libtool-pie-flags.patch
refresh for moved source lines
- subversion.perl.LD_RUN_PATH.patch
refresh for moved source lines
- subversion-no-build-date.patch
refresh for moved source lines
- subversion-neon-systemproxy.patch
adjust to changed upstream sources, remove one chunk which would
create duplicated lines in patched result
Tue Dec 6 13:00:00 2011 andreas.stiegerAATTgmx.de
- update to upstream 1.7.2
User-visible changes:
* fix working copy corruption after interrupted update/switch (issue #4040)
* avoid segfaults against pre-1.5 servers (r1186928)
* improve configure error message if apr-util uses old or no bdb (r1186784)
* make \'svn patch\' ignore \'/dev/null\' targets for compat with git (r1197998)
* fix \'svn patch\' segfault on patch that skips and deletes files (r1199950)
* omit \"Committed revision N.\" output from \'svn commit --quiet\' (r1200837)
* fix authz denial when svnserve root is a repository (issue #4060)
* fix uninitialized memory read in client diff code (r1201002)
* avoid potential segfault during merges (r1202807)
* fix an assertion failure when a symlink is updated (r1186944, -81, -83)
* make working copy operations fail if nodes have no base checksum (r1202630)
* fix nested
s when using v2 protocol (r1203546, -651, -653)
* make mod_dav_svn ignore non-Subversion POST requests (r1187695)
* avoid reading freed memory (r1204478)
* recognize empty (only byte order mark) UTF-8 files as text (issue #4064)
* fix 1.7 client regression when operating against a 1.0.x server (r1199876)
* remove empty parent dirs of removed externals on update (issue #4044)
* make \'svn diff -c N\' work for files added in rN (issue #2873)
* plug a memory leak in the bdb backend (r1205726)
* fix \'svn import\' with native eol-style and inconsistent EOLs (r1205193)
* fix reading beyond the end of a string in bdb backend (r1205839, -48)
* don\'t assert when committing an incomplete directory (issue #4042)
Developer-visible changes:
* JavaHL: allow \'status -u\' to function properly (r1189190, -395)
* don\'t put \'\\r\' characters in our generate sql headers (r1189580)
* properly define WIN64 on Windows x64 builds (r1188609)
* better adherence to C89 in enum definitions (r1189665)
* bump copyright year in Windows DLLs (r1189261)
* log a better error when opening rep-cache.db fails (r1204610, -73)
Thu Dec 1 13:00:00 2011 dmuellerAATTsuse.de
- only hide ctypesgen for Facory builds
Tue Nov 22 13:00:00 2011 cooloAATTsuse.com
- add libtool as buildrequire to avoid implicit dependency
Sun Oct 23 14:00:00 2011 dmuellerAATTsuse.de
- update to 1.7.1
* Based on many fixes by stsp.elego.de, many thanks!
* License changed to Apache License, version 2
* Detecting MIME types with libmagic
* Optimizations of diff, merge and blame
* See http://subversion.apache.org/docs/release-notes/1.7
for details
Fri Oct 21 14:00:00 2011 dmuellerAATTsuse.de
- merge in fixes from stsp.elego.de:
* Simplify tools install and ship a smaller amount of tools.
Should fix rpmlint complaining about .libs/ directories
and various other illegal files ending up in the package.
Users are better off downloading the scripts previously shipped
in this package directly from the upstream svn repository.
Fri Oct 21 14:00:00 2011 dmuellerAATTsuse.de
- merge in package description fixes from stsp.elego.de, thanks!
Fri Oct 21 14:00:00 2011 dmuellerAATTsuse.de
- reenable gnome-keyring/kde4-keyring support for older distros
(bnc#713919)
Thu Sep 29 14:00:00 2011 stspAATTelego.de
- pass the serf configure option to subversion\'s configure script,
not to swig\'s configure script
Tue Aug 23 14:00:00 2011 dmuellerAATTsuse.de
- add bconditional for libserf support
Fri Aug 19 14:00:00 2011 dmuellerAATTsuse.de
- fix swig bindings building (bnc#710878)
Fri Aug 12 14:00:00 2011 dmuellerAATTsuse.de
- run regression tests again, but only for fsfs, as bdb
is slow and often runs out of memory
Tue Aug 2 14:00:00 2011 dmuellerAATTsuse.de
- add versioned runtime dependency on sqlite3 libraries
- make init script executable
Sat Jul 30 14:00:00 2011 dmuellerAATTsuse.de
- annotate changelog with bugs and CVE\'s fixed via individual backports
on the maintained code streams
Wed Jul 27 14:00:00 2011 dmuellerAATTsuse.de
- remove intree copies of sqlite and swig if version is new enough
- disable kwallet/gnome-keyring support for SLE11 (to be package list compatible)
Mon May 30 14:00:00 2011 stspAATTelego.de
- update to 1.6.17 (bnc#698205):
includes security fixes [CVE-2011-1752, CVE-2011-1783, CVE-2011-1921]
User-visible changes:
* improve checkout speed on Windows (issue #3719)
* make \'blame -g\' more efficient on with large mergeinfo (r1094692)
* avoid some invalid handle exceptions on Windows (r1095654)
* preserve log message with a non-zero editor exit (r1072084)
* fix FSFS cache performance on 64-bit platforms (r1103665)
* make svn cleanup tolerate obstructed directories (r1091881)
* fix deadlock in multithreaded servers serving FSFS repositories (r1104093)
* detect very occasional corruption and abort commit (issue #3845)
* fixed: file externals cause non-inheritable mergeinfo (issue #3843)
* fixed: file externals cause mixed-revision working copies (issue #3816)
* fix crash in mod_dav_svn with GETs of baselined resources (r1104126)
See CVE-2011-1752, and descriptive advisory at
http://subversion.apache.org/security/CVE-2011-1752-advisory.txt
* fixed: write-through proxy could direcly commit to slave (r917523)
* detect a particular corruption condition in FSFS (r1100213)
* improve error message when clients refer to unkown revisions (r939000)
* bugfixes and optimizations to the DAV mirroring code (r878607)
* fixed: locked and deleted file causes tree conflict (issue #3525)
* fixed: update touches locked file with svn:keywords property (issue #3471)
* fix svnsync handling of directory copyfrom (issue #3641)
* fix \'log -g\' excessive duplicate output (issue #3650)
* fix svnsync copyfrom handling bug with BDB (r1036429)
* server-side validation of svn:mergeinfo syntax during commit (issue #3895)
* fix remotely triggerable mod_dav_svn DoS
See CVE-2011-1783, and descriptive advisory at
http://subversion.apache.org/security/CVE-2011-1783-advisory.txt
* fix potential leak of authz-protected file contents
See CVE-2011-1921, and descriptive advisory at
http://subversion.apache.org/security/CVE-2011-1921-advisory.txt
Developer-visible changes:
* fix reporting FS-level post-commit processing errors (r1104098)
* fix JVM recognition on OS X Snow Leopard (10.6) (r1028084)
* allow building on Windows with recent Expat (r1074572)
Thu Apr 21 14:00:00 2011 pthAATTsuse.de
- Use getent to check for existance of user and group (bnc#688968).
Thu Feb 24 13:00:00 2011 stspAATTelego.de
- update to 1.6.16 (bnc#676949, bnc#662030):
includes security fixes [CVE-2010-4539, CVE-2010-4644, CVE-2011-0715]
User-visible changes:
* more improvement to the \'blame -g\' memory leak from 1.6.15 (r1041438)
* avoid a crash in mod_dav_svn when using locks (r1071239, -307)
See CVE-2011-0715, and descriptive advisory at
http://subversion.apache.org/security/CVE-2011-0715-advisory.txt
* avoid unnecessary globbing for performance (r1068988)
* don\'t add tree conflicts when one already exists (issue #3486)
* fix potential crash when requesting mergeinfo (r902467)
* don\'t attempt to resolve prop conflicts in \'merge --dry-run\' (r880146)
* more fixes for issue #3270.
Developer-visible changes:
* ensure report_info_t is properly initialized by ra_serf (r1058722)
* locate errors properly on a malfunction (r1053208)
* fix output param timing of svn_fs_commit_txn() on fsfs (r1051751)
* for svn_fs_commit_txn(), set invalid rev on failed commit (r1051632, -8)
* fix sporadic Ruby bindings test failures (r1038792)
* fix JavaHL JVM object leak when dumping large revisions (r947006)
* use Perl to resolve symlinks when building swig-pl (r1039040)
* allow Perl bindings to build within a symlinked working copy (r1036534)
* don\'t overwrite the LD_LIBRARY_PATH during make check-swig-pl (r946355)
* improve unit tests for some fs functions (r1051744, -5, -3185, -241)
Mon Jan 31 13:00:00 2011 stspAATTelego.de
- use proper capitalisation and punctuation in /etc/sysconfig/svnserve
Mon Jan 31 13:00:00 2011 stspAATTelego.de
- fix misleading text in /etc/sysconfig/svnserve (+1 from mrueckert)
Wed Jan 19 13:00:00 2011 dmuellerAATTsuse.de
- fix typo in readme (bnc#661584)
Mon Dec 27 13:00:00 2010 dmuellerAATTsuse.de
- fix build against 11.4
Mon Dec 6 13:00:00 2010 dmuellerAATTsuse.de
- fix synax error (bnc#657354)
Wed Nov 24 13:00:00 2010 stspAATTelego.de
- update to 1.6.15 (bnc#649861):
includes security fixes [CVE-2010-3315]
User-visible changes:
* hide unreadable dirs in mod_dav_svn\'s GET response (r996884)
* make \'svnmucc propsetf\' actually work (r1005446)
* limit memory fragmentation in svnserve (r1022675)
* fix \'svn export\' regression from 1.6.13 (r1032970)
* fix \'svn export\' mistakenly uri-encodes paths (issue #3745)
* fix server-side memory leaks triggered by \'blame -g\' (r1032808)
* prevent crash in mod_dav_svn when using SVNParentPath (r1033166)
* allow \'log -g\' to continue in the face of invalid mergeinfo (r1028108)
* filter unreadable paths for \'svn ls\' and \'svn co\' (r997026, -070, -474)
* fix abort in \'svn blame -g\' (issue #3666)
* fix file handle leak in ruby bindings (issue #3512)
* remove check for 1.7-style working copies (issue #3729)
Developer-visible changes:
* improve some swig parameter mapping (r984565, r1035745)
* improve test accuracy over dav (r991534, r877814)
* create fails.log for test runs (r964349)
* improve detection of \'svnversion\' when buildling (r877219, et al)
* don\'t violate API layering in dumpstream logic (issue #3733)
* don\'t report working copy installs as switched (r1033921)
- project website changed from subversion.tigris.org to subversion.apache.org
Wed Nov 24 13:00:00 2010 dmuellerAATTsuse.de
- correct instructions on how to create the svn account (bnc#655094)
Sat Oct 2 14:00:00 2010 pascal.bleserAATTopensuse.org
- fixes CVE-2010-3315:
http://subversion.apache.org/security/CVE-2010-3315-advisory.txt
(only affects certain scenarios when using \"SVNPathAuthz short_circuit\")
- update to 1.6.13:
* don\'t drop properties during foreign-repo merges (issue #3623)
* improve auto-props failure error message (r961970)
* improve error message for 403 status with ra_neon (r876615)
* don\'t allow \'merge --reintegrate\' for 2-url merges (r959004)
* improve handling of missing fsfs.conf during hotcopy (r980811, -1449)
* escape unsafe characters in a URL during export (issue #3683)
* don\'t leak stale locks in FSFS (r959760)
* better detect broken working copies during update over ra_neon (r979045)
* fsfs: make rev files read-only (r981921)
* properly canonicalize a URL (r984928, -31)
* fix wc corruption with \'commit --depth=empty\' (issue #3700)
* permissions fixes when doing reintegrate merges (related to issue #3242)
* fix mergeinfo miscalculation during 2-url merges (issue #3648)
* fix error transmission problems in svnserve (r997457, -66)
* fixed: record-only merges create self-referential mergeinfo (issue #3646)
* fixed: \'SVNPathAuthz short_circuit\' unsolicited read access (issue #3695)
* make \'svnmucc propset\' handle existing and non-existing URLs (r1000607)
* add new \'propsetf\' subcommand to svnmucc (r1000612)
* emit a warning about copied dirs during ci with limited depth (r1002094)
* make ruby bindings compatible with Ruby 1.9 (r957507)
* use the repos verify API in JavaHL (r948916)
* teach ra_serf to parse md5 checksums with update editors (r979429)
* let ra_serf work with current serf releases (r879757, r880320, r943796)
Mon Sep 27 14:00:00 2010 dimstarAATTopensuse.org
- Add subversion-neon-systemproxy.patch: Use Neon\'s system-proxy
feature that was introduced in neon 0.29. In the background, neon
uses libproxy to get the right information from the session.
Mon Sep 20 14:00:00 2010 cristian.rodriguezAATTopensuse.org
- Do not include build date in binaries
- refresh patches
Tue Jun 22 14:00:00 2010 pascal.bleserAATTopensuse.org
- update to 1.6.12:
* further improvements for issue #3242 (\"Subversion demands unnecessary access to parent directories of operations\")
* allow deletion of uris which need character escaping (issue #3636)
* fix errors with \'svn mkdir --parents\' (issue #3649)
* update address to which crash reports are sent (r901304)
* fix handling of peg revision\'d copy targets (issue #3651)
* more improvements to \'svn merge --reintegrate\' (r935631)
* allow copying of broken symlinks (issue #3303)
* improve rep-sharing performance on high-concurrency repos (issue #3506)
* fixed: added subtrees with mergeinfo break reintegrate (issue #3654)
* fixed: assertion triggered by tree-conflicted externals (issue #3469)
- rolling back the in-tree sqlite-amalgamation from 3.6.17 to 3.6.13 (which is the version recommended by upstream)
- added check in spec file to make sure we use the recommended sqlite (-amalgamation) version
Sun Apr 18 14:00:00 2010 pascal.bleserAATTopensuse.org
- update to 1.6.11:
* fix for repositories mounted via NFS
* enable TCP keep-alives in svnserve
* tighten restrictions on revprops for \'svnadmin verify\'
* make ra_serf give better out-of-date information
* improve error message upon connection failure with svn+ssh://
* allow \'svn log\' on an uncommitted copy/move destination
* make \'svnadmin hotcopy\' copy the fsfs config file
* mergeinfo improvements with non-inheritable mergeinfo
* make mergeinfo queries not require access to the repo root
* update URLs to refer the the new apache.org repository
* update relative externals during a switch
* fix \'merge --reintegrate\' with self-referential mergeinfo
* improve wc-ng working copy detection
* improve handling of mergeinfo when using serf
* fixed: \'svnlook plist --revprop\' with \'-t TXN_NAME\'
* fixed: file external from URL cannot overwrite existing item
* fixed: potential memory error in \'svn status\'
* fixed: merge records mergeinfo from natural history gaps
* fixed: theoretical possibility of DB corruption
Sun Jan 24 13:00:00 2010 pascal.bleserAATTopensuse.org
- update to 1.6.9:
User-visible changes:
* allow multiple external updates over ra_svn (issue #3487)
* fix a segmentation fault when using FSFS (r881905)
* support Berkeley DB 4.8 (r879688)
* various autoprop improvements (r880274, -5)
* improve usage of svn+ssh:// on Windows (issue #2580)
* teach 1.6.x to recognize 1.7 working copies (1.6.x-future-
proof branch)
* update help text for \'svn update\' and \'svn switch\' (r886164)
* make \'svnadmin load --parent-dir\' create valid mergeinfo
(r888979)
* tolerate relative merge source paths in mergeinfo (r889840)
* teach mod_dav_svn to support the Label header (issue #3519)
* fixed: svnsync leaves stale sync-locks on mirrors (r884842)
* fix applicability of \'svn resolve --accept=theirs-conflict\'
(r880525)
* fixed: segfault in \'svn resolve\' (r896522)
* fix commit failure against an out-of-date mirror (r900797)
Developer-visible changes:
* update ruby bindings test expectation (r880162)
* don\'t allow rangelist and mergeinfo API to modify input args
(r879093)
Mon Jan 4 13:00:00 2010 vuntzAATTopensuse.org
- Change gnome-keyring-devel BuildRequires to
libgnome-keyring-devel on 11.3 and later, following the module
split upstream.
Thu Oct 22 14:00:00 2009 stspAATTelego.de
- update to 1.6.6:
User-visible changes:
* fix crash during \'svn update\' (r39673)
* respect Apache\'s ServerSignature directive (r40008, -21, -31)
* don\'t add a file with mixed line endings, and then abort (issue #2713)
* support Neon 0.29.
* fix a crash in \'svn rm --force\' (r37953)
* handle tree conflicts involving replacements (issue #3486)
* allow non-threadsafe sqlite if APR has no threads (r39301)
* print newline before plaintext SSL cert / password prompts (r38982, r39302)
* improve merge performance with implicit subtree mergeinfo (issue #3443)
* fix \"libsvn_ra_svn/marshal.c assertion failed (opt || cstr)\" (issue #3485)
* make file externals work for binary files (issue #3368)
* perform MIME type matching case-insensitively (issue #3479)
* do not treat non-existent revisions as HEAD in \'svn export\' (issue #3400)
* revert r36720\'s default MIME type change back to \"text/plain\" (issue #3508)
* improve \"tree conflict already exists\" error message (r38872)
* fix failure to commit replacement of a directory (issue #3281)
* fix mod_dav_svn parent dir links to preserve peg revisions (issue #3425)
Developer-visible changes:
* fix 2 failing tests in ruby bindings (r38886)
* do not require GNU grep for build (issue #3453)
* use \'$SED\' instead of \'sed\' in build scripts (issue #3458)
* add svn.client.{log5,merge_peg3} to python bindings (r39635, -6, -7)
* include the time of a test run in tests.log (r39887)
- Rename subversion-1.6.5-rpmlintrc to subversion.rpmlintrc.
- Drop subversion.allowed-neon.patch in favour of --disable-neon-version-check
configure flag.
- Drop subversion-make-check-log-to-stdout.patch, it doesn\'t apply anymore.
It was mainly for debugging test suite hangs on Factory. We don\'t run
tests on factory anymore.
Mon Aug 24 14:00:00 2009 stspAATTelego.de
- add patch to fix failing regression test in ruby bindings
- rename rpmlintrc file
Sun Aug 23 14:00:00 2009 pascal.bleserAATTopensuse.org
- update to 1.6.5:
* fix mod_dav_svn directory view links to preserve peg revisions
* properly escape lock comments over ra_neon
* allow syncing copies of \'/\' over ra_neon and ra_serf
* make \'svnlook diff\' show empty added or deleted files
* fix building with Apache 2.4
* fix possible data loss on ext4 and GPFS filesystems
* resolve symlinks when checking for ~/.subversion
* don\'t let svn+ssh SIGKILL ssh processes
* allow PLAIN and LOGIN mechanisms with SASL in svnserve
* fix peg revision parsing in filenames like \'dir/AATTfile.txt\'
* don\'t pretend to do tree conflict resolution
* fix data corruption when syncing from svnserve to mod_dav_svn
* fix GNOME Keyring with \'--non-interactive\' option
* fixed: false \"File \'...\' already exists\" error during commit
- bump in-tree sqlite-amalgamation from 3.6.16 to 3.6.17
Sat Aug 8 14:00:00 2009 pascal.bleserAATTopensuse.org
- bump in-tree sqlite-amalgamation from 3.6.14.2 to 3.6.16
- use a trap function in check section to make sure the svnserve
process is killed
- use a random free port for testing the svnserve process
Fri Aug 7 14:00:00 2009 stspAATTelego.de
- update to 1.6.4 (bnc#528714):
* Security fix [CVE-2009-2411]
Fri Jul 24 14:00:00 2009 dmuellerAATTsuse.de
- fix typo in dav svn default configuration (bnc#517143)
Tue Jul 21 14:00:00 2009 stspAATTelego.de
- Don\'t run regression tests on OpenSUSE Factory. It takes too
long which causes problems for the build service because the
subversion package is being rebuilt often.
Fri Jul 17 14:00:00 2009 stspAATTelego.de
- To help us figure out why the test suite sometimes hangs on the
build service, add a patch which allows logging to stdout
and stderr, instead of logging to tests.log, during make check.
Mon Jul 6 14:00:00 2009 stspAATTelego.de
- Run regression tests over both filesystem backends (FSFS and BDB),
and over svn:// as well as file://
Mon Jul 6 14:00:00 2009 stspAATTelego.de
- Now that the project repositories have been configured correctly
on the build service, OpenSUSE 10.3 should also have a JDK.
Fri Jul 3 14:00:00 2009 stspAATTelego.de
- Make python-xml an explicit build requirement since the regression
tests need it to run.
Fri Jul 3 14:00:00 2009 stspAATTelego.de
- Make regression tests clean up temporary test data (repositories,
working copies, etc.) to avoid build failures due to running out
of disk space. This trades time against space -- the build will
take longer.
Fri Jul 3 14:00:00 2009 stspAATTelego.de
- The build service keeps complaining that \"nothing provides
java-1_6_0-sun-devel\". Attempt to make it happy by only building
Java bindings on SUSE versions which have OpenJDK.
Fri Jul 3 14:00:00 2009 stspAATTelego.de
- write tests.log to stdout if make check fails to aid
debugging of test failures on the build service
Fri Jul 3 14:00:00 2009 stspAATTelego.de
- run all regression tests (ra_local only for now)
- filter a false positive rpmlint warning
- update to 1.6.3
User-visible changes:
* fix segfault in WC->URL copy (r37646, -56)
* let \'svnadmin load\' tolerate mergeinfo with \"\\r\
\" (r37768)
* make svnsync normalize svn:
* props to LF line endings (issue #3404)
* better integration with external merge tools (r36178)
* return a friendly error message for \'svn diff\' (r37735)
* update dsvn.el for 1.6 (r37774)
* don\'t allow setting of props on out-of-date dirs under neon (r37745)
* improve BASH completion (r36450, -52, -70, -79, -538)
* improve some DAV-based error messages (issue #3414)
* always show tree conflicts with \'svn st\' (issue #3382)
* improve correctness of \'svn mergeinfo\' (issue #3126)
* decrease the amount of memory needed for large commits (r37894, -6)
* work around an APR buffer overflow seen by svnsync (r37622)
* ra_svn clients now use TCP keep-alives if available (issue #3347)
* improve \'svn merge\' perf by reducing server contact (r37491, -593, -618)
* stop propagating self-referential mergeinfo in reintegrate merges (r37931)
* fix NLS detection where -liconv is required for bindtextdomain() (r37827)
* don\'t delete unversioned files with \'rm --keel-local\' (r38015, -17, -19)
* bump apr and apr-util versions included in deps to latest. (r37941)
* avoid temp file name collisions with ra_serf, ra_neon (r37972)
* fixed: potential segfault with noop file merges (r37779)
* fixed: incorrect output with \'svn blame -g\' (r37719, -23, -41)
* fixed: bindings don\'t load FS libs when module search enabled (issue #3413)
* fixed: potential abort() in the working copy library (r37857)
* fixed: memory leak in hash reading functions (r37868, -979)
Developer-visible changes:
* improve memory usage in file-to-stringbuf APIs (r37907)
* reduce memory usage for temp string manipulation (r38010)
Mon Jun 29 14:00:00 2009 dmuellerAATTsuse.de
- fix package names to be able to remove the rpmlintrc
Fri Jun 19 14:00:00 2009 cooloAATTnovell.com
- disable as-needed for this package as it fails to build with it
Mon Jun 15 14:00:00 2009 poemlAATTsuse.de
- make Subversion\'s configure script detect Berkeley DB again. With
apu-1-config 1.3.7, the --libs output doesn\'t return -ldb any
longer, and Subversion was relying on this. See this long thread:
http://mail-archives.apache.org/mod_mbox/apr-dev/200906.mbox/%3c1244533468.25532.110.camelAATTshrek.rexursive.com%3e
Building with --with-berkeley-db makes it work again.
Tue Jun 9 14:00:00 2009 dmuellerAATTsuse.de
- remove ctypesgen package - not in factory yet
Fri Jun 5 14:00:00 2009 wrAATTopensuse.org
- update svnmerge.py to the latest version
* not using popen2 anymore which was deprecated
Wed Jun 3 14:00:00 2009 dmuellerAATTsuse.de
- merge into Factory
Tue May 26 14:00:00 2009 pascal.bleserAATTopensuse.org
- update to sqlite-amalgamation 3.6.14.2
Fri May 15 14:00:00 2009 pascal.bleserAATTopensuse.org
- enable in-tree sqlite-amalgamation again, as the required sqlite3
package screws up zypper (bnc#504251)
Mon May 11 14:00:00 2009 pascal.bleserAATTopensuse.org
- bump in-tree sqlite-amalgamation to the recommended version for
Subversion 1.6.2: 3.6.13
- update to 1.6.2:
* vastly improve memory usage with \'svn merge\' (issue #3393)
* make default depth for merge \'infinity\' (r37156)
* make \'status --quiet\' show tree conflicts (issue #3396)
* allow \'--set-depth infinity\' to expand shallow subtrees
(r37169)
* return an error if attempting to reintegrate from/to the repo
root (r37385)
* don\'t store bogus mergeinfo for \'--ignore-ancestry\', foreign
merges (r37333)
* don\'t allow merge of difference between two repos (r37519)
* avoid potential segfault with subtree mergeinfo (r36613)
* recommend sqlite 3.6.13 (r37245)
* avoid unnecessary server query for implicit mergeinfo
(r36509)
* avoid unnecessary server query during reverse merges (r36527)
* set depth=infinity on \'svn add\' items with restricted depth
(r37607)
* fixed: commit log message template missing paths (issue #3399)
* fixed: segfault on merge with servers < 1.6 (r37363)
* fixed: repeat merge failures with non-inheritable mergeinfo
(issue #3392)
* fixed: another memory leak when performing mergeinfo-aware
merges (r37398)
* fixed: incorrect mergeinfo on children of shallow merges
(issue #3407)
* fixed: pool lifetime issues in the BDB backend (r37137)
Thu May 7 14:00:00 2009 pascal.bleserAATTopensuse.org
- build and install the following binaries from tools/server-side
into subversion-tools:
* svn-populate-node-origins-index
* svnauthz-validate
- add support for building Subversion 1.6.x on SLE 9, by using the
package \"python25\" and patching all python scripts accordingly,
to use #!/usr/bin/python2.5 instead of /usr/bin/python or
/usr/bin/env python
Wed Apr 15 14:00:00 2009 dmuellerAATTsuse.de
- update to 1.6.1
User-visible changes:
* recommend Neon 0.28.4. (r36388)
* improve performance of \'svn merge --ignore-ancestry\' (r36256)
* improve \'svn merge\' performance with subtree mergeinfo (r36444)
* correctly proxy LOCK and UNLOCK requests (r36159)
* prevent a crash when updating old working copies (r36751)
* don\'t let svnmerge.py delete a nonexistent property (r36086, -767, -769)
* don\'t fail when upgrading pre-1.2 repositories (r36851, -7)
* allow escaping of separator characters in autoprops (r36763, -84)
* improve tempfile creation robustness on Windows (r36442, -3)
* fix change-svn-wc-format.py for 1.6.x working copies (r36874, -5)
* improve configure\'s detection of Berkeley DB (r36741, -2)
* don\'t allow foreign merges to add foreign mergeinfo (issue #3383)
* improve performance of \'svn update\' on large files (r36389, et. al.)
* fixed: error leak and potential crash (r36860)
* fixed: parent directory handling on Windows (r36049, -50, -51, -131)
* fixed: unintialized memory errors (r36252, -3)
* fixed: potential working copy corruption (r36714)
* fixed: working copy upgrade error (r36302)
* fixed: pointer dereference error (r36783)
* fixed: error diff\'ing large data with ignored whitespace (r36816)
* fixed: potential hang in ra_serf (r36913)
* fixed: problem with merge and non-inheritable mergeinfo (r36879)
* fixed: repeated merging of conflicted properties fails (issue #3250)
* fixed: excluding an absent directory segfaults (issue #3391)
Developer-visible changes:
* ensure svn_subst_translate_cstring2() properly flushes data (r36747)
* make serf report a base checksum to apply_textdelta (r36890)
* syntax updates for strict C89 compilers (r36799)
* update RPM scripts for RHEL4 (r36834)
* allow tests to be run with Python 2.6.1 on Windows (r36149, -50, -51, -56)
* allow building JavaHL with Visual Studio 2008 (r36954)
* stop setting default translation domain in JavaHL (r36955)
* fixed: warning with Python 2.6 and ctypes bindings (r36559)
* fixed: undefined references to svn_fs_path_change2_create() (r36823)
Mon Mar 30 14:00:00 2009 pascal.bleserAATTopensuse.org
- fix build on SLE10
- don\'t build on SLE9, its python is too old (requires >= 2.4)
- build gnome-keyring and kde4 kwallet authentication store plugins
as subpackages
- added explicit BuildRequires for cyrus-sasl-devel
- use an in-tree sqlite 3.6.11 as recommended instead of the
system-wide version
- removed the %changelog from the spec file, was very long, and we
have a .changes file anyway
- rpmlint happiness:
* added a patch to remove a pointless shebang in the python
bindings
* removed dot at end of Summary in subpackages
- removed the License: tag in each subpackage
Sun Mar 22 13:00:00 2009 pascal.bleserAATTopensuse.org
- build the new ctypes python bindings
- upgraded in-tree SWIG to the recommended version for building
SVN: 1.3.36 (required to build the Ruby bindings)
- 1.6.0 in a separate repository for now
- update to 1.6.0:
* the working copy format has been upgraded: this means that 1.5
and older Subversion clients will not be able to work with
working copies produced by Subversion 1.6; working copies are
upgraded automatically
* the repository filesystem formats have changed, meaning that
1.5 and older versions of Subversion tools that normally access
a repository directly (e.g. svnserve, mod_dav_svn, svnadmin)
won\'t be able to read a repository created by Subversion 1.6;
but, repositories are not upgraded automatically (use
\"svnadmin upgrade\")
* improved output of \"svn proplist --verbose\"
* \"svn propget\" now accepts the --verbose option
* changed output of \"svn status\": now contains the additional
seventh column which informs whether the item is the victim of a
tree conflict; an additional line with more detailed description
of a tree conflict is displayed after each item remaining in tree
conflict
* subversion prompts before storing passwords in plaintext form
* passwords can be stored in KWallet (KDE 4) and GNOME Keyring
* SSL client certificate passphrases can be stored in KWallet,
GNOME Keyring in encrypted form or in plaintext form
* repository root relative URLs (client)
* improvements to \"svn:externals\": support for files and usual shell
quoting rules in external definitions
* detection of tree conflicts: Subversion 1.6 recognizes a new kind
of conflict, known as a \"tree conflict\"; such conflicts manifest
at the level of directory structure, rather than file content
* several improvements to both the Berkeley DB and FSFS backends,
designed to improve storage space, and can result in drastically
smaller repositories:
+ sharing multiple common representations
+ FSFS repositories: packing completed shards
+ FSFS repositories: support for Memcached
+ BDB repositories: reverse deltas
* ctypes Python bindings
* improved interactive conflict resolution
* sparse directory exclusion
* logging support for svnserve
* new public \"historical\" HTTP URI syntax for mod_dav_svn
* the \"svn log\" command can now take multiple revision arguments in
one invocation
* --trust-server-cert option: added to svn and svnsync, so that
non-interactive operations can work with self-signed certificates
not backed by a known trust authority
Sun Mar 8 13:00:00 2009 pascal.bleserAATTopensuse.org
- enable build of ruby bindings by using an in-tree SWIG 1.3.33
- update to 1.5.6:
* allow colons within mergeinfo path names (r35040)
* make it impossible to add .svn to wc via \'svn add --parents\'
(r35143, -5)
* copy properties of added but uncommitted files (r32448)
* improve performance of log operation on < 1.5 servers (r35566)
* allow commits over Neon of files >2GB (POSIX only) (r34919, -24)
* allow serf from behind MS ISA proxy servers (r35981)
* prevent svnmerge-migrate-history.py from committing bogus
mergeinfo (r35516)