[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: "svn diff" bug that leads to security/privacy problems

From: Vincent Lefevre <vincent+svn_at_vinc17.org>
Date: 2005-04-12 23:17:08 CEST

On 2005-04-12 13:13:54 -0500, kfogel@collab.net wrote:
> Vincent Lefevre <vincent+svn@vinc17.org> writes:
> > It seems that no-one replied... This bugs still occurs with:
> >
> > svn, version 1.1.4 (r13838)
> > compiled Apr 10 2005, 01:31:37
>
> Can you verify it with either 1.2.0-rc1, or better yet, head of trunk?

Well, I only use Debian packages for the moment.
Here's a testcase, if someone is able to test:

svnadmin create svntest
svn co file:///`pwd`/svntest wc
cd wc
echo test > file
svn add file
svn ps svn:mime-type application/octet-stream file
svn ci -m 'Adding file.'
ln -s file link
svn add link
svn diff

Here, "svn diff" outputs:

Index: link
===================================================================
--- link (revision 0)
+++ link (revision 0)
@@ -0,0 +1 @@
+test

Property changes on: link
___________________________________________________________________
Name: svn:special
   + *

instead of something like:

Index: link
===================================================================
Cannot display: symbolic link to file marked as a binary type.
svn:mime-type = application/octet-stream

Property changes on: link
___________________________________________________________________
Name: svn:special
   + *

-- 
Vincent Lefèvre <vincent_at_vinc17.org> - Web: <http://www.vinc17.org/>
100% accessible validated (X)HTML - Blog: <http://www.vinc17.org/blog/>
Work: CR INRIA - computer arithmetic / SPACES project at LORIA
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Tue Apr 12 23:22:46 2005

This is an archived mail posted to the Subversion Dev mailing list.