Return-Path: Delivered-To: apmail-couchdb-dev-archive@www.apache.org Received: (qmail 67807 invoked from network); 20 Sep 2009 23:52:21 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.3) by minotaur.apache.org with SMTP; 20 Sep 2009 23:52:21 -0000 Received: (qmail 96284 invoked by uid 500); 20 Sep 2009 23:52:21 -0000 Delivered-To: apmail-couchdb-dev-archive@couchdb.apache.org Received: (qmail 96187 invoked by uid 500); 20 Sep 2009 23:52:21 -0000 Mailing-List: contact dev-help@couchdb.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: dev@couchdb.apache.org Delivered-To: mailing list dev@couchdb.apache.org Received: (qmail 96177 invoked by uid 99); 20 Sep 2009 23:52:20 -0000 Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136) by apache.org (qpsmtpd/0.29) with ESMTP; Sun, 20 Sep 2009 23:52:20 +0000 X-ASF-Spam-Status: No, hits=-0.0 required=10.0 tests=SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (athena.apache.org: domain of curt.arnld@gmail.com designates 209.85.210.185 as permitted sender) Received: from [209.85.210.185] (HELO mail-yx0-f185.google.com) (209.85.210.185) by apache.org (qpsmtpd/0.29) with ESMTP; Sun, 20 Sep 2009 23:52:11 +0000 Received: by yxe15 with SMTP id 15so3018181yxe.13 for ; Sun, 20 Sep 2009 16:51:50 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:sender:content-type :mime-version:subject:from:in-reply-to:date :content-transfer-encoding:message-id:references:to:x-mailer; bh=e9zSS94vFxERVRqc3M4+/SbT+GbrP9PNyU8mHTBiL5A=; b=NI53Vlc3fs9vFztsyuBqQL+FlVgxTmO9BRXXTa04LMUGvzjHclucKGjL1xo2XXIsPv 3KT2b5TytcI1eZr3VtslEqIWfSC88r8c0WvxiAVJsMXjYingdCilyleXwBlkaZzvYo/1 0KCtAQ0kfT5ppSBwcn2At4IRRbtBYyk6BAcug= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=sender:content-type:mime-version:subject:from:in-reply-to:date :content-transfer-encoding:message-id:references:to:x-mailer; b=D4zrzDbUPDapMv3EFvuUcVtWM2AJ3MqeJk1q0L2Pe0x5IdYdsF40k4wU0ZQToPimyW ReJrezISmQYqQNKJIVLpa3z4iDNOmKX9DWc10F/M0l4N4dVbXmlJeApsaiDjS8qNmCjU evqeVtDfRnd6kwGTtZR4Jw8opK/EGRtA8RnUQ= Received: by 10.100.243.7 with SMTP id q7mr3685027anh.28.1253490710693; Sun, 20 Sep 2009 16:51:50 -0700 (PDT) Received: from ?192.168.10.104? (70-139-215-122.lightspeed.cyprtx.sbcglobal.net [70.139.215.122]) by mx.google.com with ESMTPS id c29sm1519505anc.15.2009.09.20.16.51.49 (version=TLSv1/SSLv3 cipher=RC4-MD5); Sun, 20 Sep 2009 16:51:49 -0700 (PDT) Sender: Curt Arnold Content-Type: text/plain; charset=us-ascii; format=flowed; delsp=yes Mime-Version: 1.0 (Apple Message framework v1076) Subject: Re: Second call for objections releasing 0.10 From: Curt Arnold In-Reply-To: Date: Sun, 20 Sep 2009 18:51:47 -0500 Content-Transfer-Encoding: 7bit Message-Id: <0C812947-DEF5-4B2D-8DC8-5AD39CF9A46C@apache.org> References: <20090920130655.GG29736@tumbolia.org> To: dev@couchdb.apache.org X-Mailer: Apple Mail (2.1076) X-Virus-Checked: Checked by ClamAV on apache.org On Sep 20, 2009, at 4:48 PM, Chris Anderson wrote: > > That's the sort of thing that'd get backported for 0.10.1 anyway, so I > don't think it's a blocker. Also, probably a fairly easy patch. > > Chris > COUCHDB-345 seemed to get no attention in the last call for objections (other than the fix to a unit test that would break if a patch were applied). I believe the problem addressed in the issue that makes every CouchDB installation that allows untrusted users to write to the database vulnerable. Also, as far as I know there is not a simple procedure to recover a CouchDB that has been wedged by a malicious or unintentional insert of a malencoded document. No one has objected to the badenc1.patch, however I believe the performance cost could be reduced by first scanning the incoming byte array and only calling xmerl_ucs:from_utf8 on the portion beginning with the first byte value >= 0x80. I'm not confident in my Erlang skills yet to think that I know the optimal way of coding that. However, I think it would be better to get some fix in than wait for an optimal fix.