Return-Path: Delivered-To: apmail-couchdb-dev-archive@www.apache.org Received: (qmail 76244 invoked from network); 21 Sep 2009 14:08:38 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.3) by minotaur.apache.org with SMTP; 21 Sep 2009 14:08:38 -0000 Received: (qmail 79152 invoked by uid 500); 21 Sep 2009 14:08:38 -0000 Delivered-To: apmail-couchdb-dev-archive@couchdb.apache.org Received: (qmail 79059 invoked by uid 500); 21 Sep 2009 14:08:38 -0000 Mailing-List: contact dev-help@couchdb.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: dev@couchdb.apache.org Delivered-To: mailing list dev@couchdb.apache.org Received: (qmail 79044 invoked by uid 99); 21 Sep 2009 14:08:38 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 21 Sep 2009 14:08:38 +0000 X-ASF-Spam-Status: No, hits=-0.0 required=10.0 tests=SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (nike.apache.org: domain of curt.arnld@gmail.com designates 209.85.210.192 as permitted sender) Received: from [209.85.210.192] (HELO mail-yx0-f192.google.com) (209.85.210.192) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 21 Sep 2009 14:08:26 +0000 Received: by yxe30 with SMTP id 30so3612483yxe.29 for ; Mon, 21 Sep 2009 07:08:05 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:sender:content-type :mime-version:subject:from:in-reply-to:date :content-transfer-encoding:message-id:references:to:x-mailer; bh=0yJdnJ4LfMAhDBouJ3p2g4HYN2BT16SdTEL7V9q8Xmo=; b=IIuHzBfyqvsI+EpCEoYmVlTp0+2a2VgbNoGfxqQUEhGLQz5Ag3NCKRof376GOC6ZOE jPNqZBSSKKpOq8kJ/5zRTzEC5m2m7ptbXqlBHLDpkBQ2a2F2mvAdPqZRRZk3WYSX440l NhQtUDg7qtBe6PR1Gcci9K/ff2D4CDNdg3WwA= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=sender:content-type:mime-version:subject:from:in-reply-to:date :content-transfer-encoding:message-id:references:to:x-mailer; b=jJZYuwVFax5Xae1y3zRZWZgAThC2QFjMceEPc5YcM+QuC62MFPTle3InRGpAS5owhl kKjhagtBkccjMBhvpKBkYJ4XAzu5oIQDGJ3gHWMdLFWqMj4/70UHa9tquomdOf8m3g7A yAFFTw5G6Eadyjq3pZ8Fo/gNtsDNSOI3IMYWM= Received: by 10.90.210.11 with SMTP id i11mr3328462agg.94.1253542085622; Mon, 21 Sep 2009 07:08:05 -0700 (PDT) Received: from ?192.168.10.104? (70-139-215-122.lightspeed.cyprtx.sbcglobal.net [70.139.215.122]) by mx.google.com with ESMTPS id 39sm19194agb.23.2009.09.21.07.08.04 (version=TLSv1/SSLv3 cipher=RC4-MD5); Mon, 21 Sep 2009 07:08:04 -0700 (PDT) Sender: Curt Arnold Content-Type: text/plain; charset=us-ascii; format=flowed; delsp=yes Mime-Version: 1.0 (Apple Message framework v1076) Subject: Re: Second call for objections releasing 0.10 From: Curt Arnold In-Reply-To: <20090920130655.GG29736@tumbolia.org> Date: Mon, 21 Sep 2009 09:08:02 -0500 Content-Transfer-Encoding: 7bit Message-Id: <5D7D20B1-88BF-48BC-998C-27231663DB92@apache.org> References: <20090920130655.GG29736@tumbolia.org> To: dev@couchdb.apache.org X-Mailer: Apple Mail (2.1076) X-Virus-Checked: Checked by ClamAV on apache.org On Sep 20, 2009, at 8:06 AM, Noah Slater wrote: > Hey, > > I've been following the first thread, but am unsure where we all > stand. This is > my second call for objections following our previous discussion. Do > we all feel > ready to prepare and vote on the 0.10 release now? > > Thanks, > > -- > Noah Slater, http://tumbolia.org/nslater The "invalid json allowed into CouchDB" thread on user@couchdb.apache.org appears to offer a means of gaming a system to place data in a document that would be seen by CouchDB, but could be hidden from clients. I think the issue needs to be resolved before cutting 0.10. It does appear to be a security issue, but one which the resolution could negatively impact some fraction of apps that depended on the behavior. If we address it before 0.10, we could just reject the document as invalid. As a security patch in a 0.10.1 or so, we may feel compelled to try to merge the data to preserve the rare app that depended on the function. My initial opinion is that any document with multiple occurrences of a property should be rejected and it could just be weaved into the patch for COUCHDB-345.