Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

subversion-1.10.0-lp150.1.2 RPM for x86_64

From OpenSuSE Leap 15.0 for x86_64

Name: subversion Distribution: openSUSE Leap 15.0
Version: 1.10.0 Vendor: openSUSE
Release: lp150.1.2 Build date: Tue May 15 21:31:51 2018
Group: Development/Tools/Version Control Build host: cloud127
Size: 10260736 Source RPM: subversion-1.10.0-lp150.1.2.src.rpm
Summary: Subversion version control system
Subversion exists to be universally recognized and adopted as an open-source,
centralized version control system characterized by its reliability as a safe
haven for valuable data; the simplicity of its model and usage; and its ability
to support the needs of a wide variety of users and projects, from individuals
to large-scale enterprise operations.






* Sun Apr 15 2018
  - Apache Subversion 1.10.0:
    * new conflict resolver
    * Many bug fixes and enhancements
    * lz4 compression for the repositories
  - Packaging changes;
    * Convert dependencies to pkgconfig counterparts
    * Add dependency on liblz4 and utf8proc
    * Use %license (boo#1082318)
    * build with KDE5 KWallet support
  - Refresh patches:
    * subversion-1.8.0-rpath.patch
    * subversion-no-build-date.patch
    * subversion-fix-parallel-build-support-for-perl-bindings.patch
    * subversion-perl-underlinking.patch
  - dropped patches:
    * subversion-1.8.11-autocheck-time.patch, upstream
    * subversion-1.9.0-allow-httpd-2.4.6.patch, no longer required
  - Add subversion-1.10.0-fix-svn-version-gnome-keyring.patch to list
    GNOME keyring support in svn --version when using libsecret
* Tue Dec 19 2017
  - BuildConflict with jdk10 or higher. The build uses extensively
    the javah tool which is removed in jdk10.
* Thu Nov 23 2017
  - Replace references to /var/adm/fillup-templates with new
    %_fillupdir macro (boo#1069468)
* Wed Nov 01 2017
  - Explicitly require python2
* Mon Oct 09 2017
  - Disable kwallet support on openSUSE built with openssl 1.1, because
    otherwise the libopenssl pulled in by libserf and libqt4 create
    a conflict (boo#1042629)
* Fri Aug 25 2017
  - Switch the KDE condition to match sle15 too
* Fri Aug 11 2017
  - Remove user changing option inherited from sysconfig from README
    * Was removed as it does not work on systemd, new section is there
      describing current approach
* Thu Aug 10 2017
  - Apache Subversion 1.9.7:
    * CVE-2017-9800: A remote attacker could have caused svn clients
      to execute arbitrary code via specially crafted URLs in
      svn:externals and svn:sync-from-url properties. (bsc#1051362)
* Fri Jul 28 2017
  - Add instructions for running svnserve as a user different from
    "svn", and remove sysconfig variables that are no longer
    effective with the systemd unit. bsc#1049448
* Fri Jul 07 2017
  - Apache Subversion 1.9.6 (bsc#1026936):
    This change makes Subversion resilient to collision attacks,
    including SHA-1 collision attacks such as <>.
    * fsfs: never attempt to share directory representations
    * fsfs: make consistency independent of hash algorithms
    * cp/mv: improve error message when target is an unversioned dir
    * merge: reduce memory usage with large amounts of mergeinfo
    * 'svnadmin freeze': document the purpose more clearly
    * dump: fix segfault when a revision has no revprops
    * fsfs: improve error message upon failure to open rep-cache
    * work around an APR bug related to file truncation
    * javahl: follow redirects when opening a connection
* Thu Jun 15 2017
  - Deleted all xinetd related entries as it is not desired anymore
    * its obsolete due to socket based service
    * socket based service is not needed at this pkg
* Mon Mar 13 2017
  - Update to build with new RPM in Factory
  - Provide the kwallet auth in main pkg in case kde integration is
  - Use apache2-rpm-macros to get the apache variables
* Wed Nov 30 2016
  - Version update to 1.9.5:
    * bsc#1011552 CVE-2016-8734 Unrestricted XML entity expansion in
      mod_dontdothat and Subversion clients using http(s)://
  - Client-side bugfixes:
    * fix accessing non-existent paths during reintegrate merge (r1766699 et al)
    * fix handling of newly secured subdirectories in working copy (r1724448)
    * info: remove trailing whitespace in --show-item=revision (issue #4660)
    * fix recording wrong revisions for tree conflicts (r1734106)
    * gpg-agent: improve discovery of gpg-agent sockets (r1766327)
    * gpg-agent: fix file descriptor leak (r1766323)
    * resolve: fix --accept=mine-full for binary files (issue #4647)
    * merge: fix possible crash (issue #4652)
    * resolve: fix possible crash (r1748514)
    * fix potential crash in Win32 crash reporter (r1663253 et al)
  - Server-side bugfixes:
    * fsfs: fix "offset too large" error during pack (issue #4657)
    * svnserve: enable hook script environments (r1769152)
    * fsfs: fix possible data reconstruction error (issue #4658)
    * fix source of spurious 'incoming edit' tree conflicts (r1770108)
    * fsfs: improve caching for large directories (r1721285)
    * fsfs: fix crash when encountering all-zero checksums (r1759686)
    * fsfs: fix potential source of repository corruptions (r1756266)
    * mod_dav_svn: fix excessive memory usage with mod_headers/mod_deflate
      (issue #3084)
    * mod_dav_svn: reduce memory usage during GET requests (r1757529 et al)
    * fsfs: fix unexpected "database is locked" errors (r1741096 et al)
    * fsfs: fix opening old repositories without db/format files (r1720015)
  - Client-side and server-side bugfixes:
    * fix possible crash when reading invalid configuration files (r1715777)
  - Bindings bugfixes:
    * swig-pl: do not corrupt "{DATE}" revision variable (r1767768)
    * javahl: fix temporary accepting SSL server certificates (r1764851)
    * swig-pl: fix possible stack corruption (r1683266, r1683267)
  - Drop no longer needed patch:
    * subversion-1.8.11-swig-py-comment-3.patch
* Wed Jun 29 2016
  - Drop from After wrt bnc#983938
* Thu Apr 28 2016
  - Apache Subversion 1.9.4, fixing two server-side vulnerabilities:
    * CVE-2016-2167: svnserve/sasl may authenticate users using the
      wrong realm (boo#976849)
    * CVE-2016-2168: Remotely triggerable DoS vulnerability in
      mod_authz_svn during COPY/MOVE authorization check (boo#976850)
  - Client-side bugfixes:
    * diff: support '--summarize --ignore-properties'
    * checkout: fix performance regression on NFS
    * gpg-agent: properly handle passwords with percent characters
    * fix assertion about a non-canonical path
    * better input validation
    * commit: abort on Ctrl-C in plaintext password prompt
    * diff: produce proper forward binary diffs with --git
    * ra_serf: fix deleting directories with many files
  - Server-side bugfixes:
    * improve documentation for AuthzSVNGroupsFile and groups-db
    * fsfs: reduce peak memory usage when listing large directories
    * fsfs: fix a rare source of incomplete dump files and reports
  - Client-side and server-side bugfixes:
    * update INSTALL documentation file
    * fix potential memory access bugs
    * fix potential out of bounds read in svn_repos_get_logs5()
  - Bindings bugfixes:
    * ignore absent nodes in javahl version of svn status -u
  - API changes:
    * properly interpret parameters in svn_wc_get_diff_editor6()
* Wed Mar 02 2016
  - make the subversion package conflict with KWallet and Gnome
    Keyring packages with do not require matching subversion versions
    in SLE 12 and openSUSE Leap 42.1 and thus break the main package
    upon partial upgrade. Fix/workaround for boo#969159
* Tue Dec 15 2015
  - Apache Subversion 1.9.3
    This release fixes two security issues:
    * Remotely triggerable heap overflow and out-of-bounds read
      caused by integer overflow in the svn:// protocol parser.
      CVE-2015-5259 [boo#958299]
    * Remotely triggerable heap overflow and out-of-bounds read in
      mod_dav_svn caused by integer overflow when parsing skel-
      encoded request bodies.
      CVE-2015-5343 [boo#958300]
    Other changes:
    * svn: fix possible crash in auth credentials cache
    * cleanup: avoid unneeded memory growth during pristine cleanup
    * diff: fix crash when repository is on server root
    * fix translations for commit notifications
    * ra_serf: fix crash in multistatus parser
    * svn: report lock/unlock errors as failures
    * svn: cleanup user deleted external registrations
    * svn: allow simple resolving of binary file text conflicts
    * svnlook: properly remove tempfiles on diff errors
    * ra_serf: report built- and run-time versions of libserf
    * ra_serf: set Content-Type header in outgoing requests
    * svn: fix merging deletes of svn:eol-style CRLF/CR files
    * ra_local: disable zero-copy code path
    * mod_authz_svn: fix authz with mod_auth_kerb/mod_auth_ntlm
    * mod_dav_svn: fix display of process ID in cache statistics
    * mod_dav_svn: use LimitXMLRequestBody for skel-encoded requests
    * svnadmin dump: preserve no-op changes
    * fsfs: avoid unneeded I/O when opening transactions
    * javahl: fix ABI incompatibilty with 1.8
    * javahl: allow non-absolute paths in SVNClient.vacuum
    * fix patch filter invocation in svn_client_patch()
    * add @since information to config defines
    * fix running the tests in compatibility mode
    * clarify documentation of svn_fs_node_created_rev()
    * fix overflow detection in svn_stringbuf_remove and _replace
    * don't ignore some of the parameters to svn_ra_svn_create_conn3
* Wed Oct 28 2015
  - Fix copy-and-paste error in Supplements for GNOME keyring
* Wed Sep 23 2015
  - Apache Subversion 1.9.2:
    * fix a numer of client-side crashes and bugs
    * checkout: remove unnecessary I/O operation
    * svn: show utf8proc version in svn --version --verbose
    * fix reporting for empty representations in svnfsfs stats
  - upstream keyring updated
* Thu Sep 03 2015
  - Apache Subversion 1.9.1:
    * Fix crash with GPG-agent with non-canonical $HOME
    * svn: expose expat and zlib versions in svn --version --verbose
    * svn: improve help text for 'svn info --show-item'
    * svnserve: fixed minor typo in help text
    * Fix an error leak in FSFS verification
    * Fix incomplete membuffer cache initialization
    * svnfsfs: fix some bugs and inconsistencies in load-index
    * Fix memory corruption in copy source SWIG bindings
  - drop subversion-1.8.14-httpd-version-number-detection.patch,
    change is upstream
  - adjust subversion-1.9.0-allow-httpd-2.4.6.patch for upstream
* Mon Aug 24 2015
  - Remove support for SLE11 from the spec file
  - Use supplements instead of suggests on the other side for the
    password store
  - Fix kde integration conditional to work nicely on openSUSE Leap
* Mon Aug 24 2015
  - Use suggests instead of recommends to avoid 180+ new pkgs on
    minimal setup due subversion-password-store bnc#942819
* Tue Aug 11 2015
  - Apache Subversion 1.9.0:
    * new FSFS format 7 with major overhaul for I/O reduction
    * prospective blame
    * FSX experimental repository back-end
    * many enhangements and bug fixes
  - subversion-devel now ships pkgconfig files
  - dependency changes:
    * serf 1.3.4
    * apr, apr-utl 1.3.x
    * httpd 2.2.x
    * java 1.6
    * Python 2.7
  - To continue to allow building against blacklisted httpd 2.4.6
    which has the required patches in openSUSE:13.1:Update, update
    subversion-1.8.9-allow-httpd-2.4.6.patch to
  - removed upstreamed patches:
    * subversion-1.8.10-fix-bashisms.patch
    * subversion-1.8.11-swig-py-comment.patch
    * subversion-1.8.11-swig-py-comment-2.patch
  - adjust subversion-no-build-date.patch
  - drop subversion-1.8.14-unused-var-authnrequired.patch
* Thu Aug 06 2015
  - Pass --enable-broken-httpd-auth to configure. Assumes all apache2
    packages contain security patches regardless of their version number.
    Should fix the build on SLES12 and perhaps elsewhere.
* Thu Aug 06 2015
  - fix mod_authz_svn build with -Wunused-variable
    * subversion-1.8.14-unused-var-authnrequired.patch
* Thu Aug 06 2015
  - Apache Subversion 1.8.14
    This release fixes two vulnerabilities:
    * mod_authz_svn: do not leak information in mixed anonymous/authenticated
      httpd (dav) configurations (CVE-2015-3184) bnc#939514
    * do not leak paths that were hidden by path-based authz (CVE-2015-3187)
    Non-security fixes:
    * document svn:autoprops
    * fix 'svn cp ^/A/D/H@1 ^/A' to properly create A
    * improve conflict prompts for binary files
    * improve performance of 'ls -v'
    * improved Sqlite 3.8.9 query performance
    * fixed issue #4580: 'svn -v st' on file externals reports "?" for user/rev
    * mod_dav_svn: do not ignore skel parsing errors
    * detect invalid svndiff data earlier
    * prevent possible repository corruption on power/disk failures
    * fixed issue #4577: Read error with some repository nodes
    * fixed issue #4531: server-side copy (over dav) is slow
    * swig-pl: fix some stack memory problems
  - Refreshed patch subversion-no-build-date.patch
  - Remove obsoleted patch subversion-1.8.13-fix-sqlite-3.8.9-tests.patch
  - Add patch subversion-1.8.14-httpd-version-number-detection.patch
* Sat May 16 2015
  - disable failing check-swig-rb
* Thu Apr 09 2015
  - fix tests with SQLite 3.8.9, adding
* Tue Mar 31 2015
  - Apache Subversion 1.8.13
    This release fixes three vulerabilities:
    * Subversion HTTP servers with FSFS repositories were vulnerable
      to a remotely triggerable excessive memory use with certain
      REPORT requests.
      (bsc#923793 CVE-2015-0202)
    * Subversion mod_dav_svn and svnserve were vulnerable to a
      remotely triggerable assertion DoS vulnerability for certain
      requests with dynamically evaluated revision numbers.
      (bsc#923794 CVE-2015-0248)
    * Subversion HTTP servers allow spoofing svn:author property
      values for new revisions
      (bsc#923795 CVE-2015-0251)
  - Non-security updates:
    * fixes number of client and server side non-security bugs
    * improved working copy performanc
    * reduction of resource use
    * stability improvements
    * usability improvements
  - 1.8.12 was not released
* Fri Mar 20 2015
  - Improve installation of secure password storage plugins for
    KWallet and GNOME Keyring
  - Recommend installation of bash completion
* Tue Mar 10 2015
  - Fix running all regression tests with and when time is a shell built-in but not
    a command: add subversion-1.8.11-autocheck-time.patch
* Wed Mar 04 2015
  - fix sample configuration comments in subversion.conf [boo#916286]
* Mon Mar 02 2015
  - SLE 11 SP3 build with all regression tests
  - run swig-py tests where they pass
* Fri Feb 20 2015
  - fix build with swig 3.0.3 and later:
    * upstream subversion-1.8.11-swig-py-comment.patch
    * upstream subversion-1.8.11-swig-py-comment-2.patch
    * partial subversion-1.8.11-swig-py-comment-3.patch
    There remains a regression in swig 3.0.3 and later which causes
    check-swig-py to fail - disable these checks.
* Thu Jan 08 2015
  - fix sysconfig file generation (bnc#911620)
* Thu Dec 18 2014
  - Apache Subversion 1.8.11
  - This release addresses two security issues: [boo#909935]
    * CVE-2014-3580: mod_dav_svn DoS from invalid REPORT requests.
    * CVE-2014-8108: mod_dav_svn DoS from use of invalid transaction
  - Client-side bugfixes:
    * checkout/update: fix file externals failing to follow history
      and subsequently silently failing
    * patch: don't skip targets in valid --git difs
    * diff: make property output in diffs stable
    * diff: fix diff of local copied directory with props
    * diff: fix changelist filter for repos-WC and WC-WC
    * remove broken conflict resolver menu options that always error
    * improve gpg-agent support
    * fix crash in eclipse IDE with GNOME Keyring
    * fix externals shadowing a versioned directory
    * fix problems working on unix file systems that don't support
    * upgrade: keep external registrations
    * cleanup: iprove performance of recorded timestamp fixups
    * translation updates for German
  - Server-side bugfixes:
    * disable revprop caching feature due to cache invalidation
    * skip generating uniquifiers if rep-sharing is not supported
    * mod_dav_svn: reject requests with missing repository paths
    * mod_dav_svn: reject requests with invalid virtual transaction
    * mod_dav_svn: avoid unneeded memory growth in resource walking
* Thu Nov 20 2014 Led <>
  - fix bashisms in script
  - add patches:
    * subversion-1.8.10-fix-bashisms.patch
* Sat Nov 01 2014
  - Add a versioned runtime requirement for sqlite and pass it to
    configure via --enable-sqlite-compatibility-version to allow
    running with sqlite older than at build time but compatible.
  - make build with KDE / WKallet optional to fix build with SLE 12
* Sat Sep 27 2014
  - enable build with python-ctypesgen
* Wed Sep 17 2014
  - INSTALL#SQLite says 'Subversion 1.8 requires SQLite version 3.7.12 or above';
    therefore I lowered the sqlite requirement to make the subversion run on
    older system versions, tooi. [bnc#897033]
* Tue Sep 09 2014
  - Re-enable optional running full regression test suite,
    cleanup of dependencies only for network based tests.
  - make build with ctypesgen optional, off as it is not in Factory
* Mon Sep 08 2014
  - move autogen to %build to not break quilt setup
* Thu Sep 04 2014
  - Use python_sitearch properly
* Thu Sep 04 2014
  - Cleanup with spec-cleaner, remove crufty conditionals to reduce
    the in-build conditions
  - Install only systemd packages where needed
  - Drop support of really old stuff (sle10)
  - Run only basic tests and run them always
  - Unbundle everything. For older distros rather use linkpac
  - Removed patches:
    * subversion.libtool-pie-flags.patch
    * subversion.perl.LD_RUN_PATH.patch
    * swig.noembed.patch
  - Added patches:
    * subversion-1.8.0-rpath.patch
    * subversion-fix-parallel-build-support-for-perl-bindings.patch
    * subversion-perl-underlinking.patch
    * subversion-swig-perl-Wall.patch
* Thu Aug 07 2014
  - Apache Subversion 1.8.10
  - Client-side bugfixes:
    * guard against md5 hash collisions when finding cached
      credentials [bnc#889849] [CVE-2014-3528]
    * ra_serf: properly match wildcards in SSL certs.
      [bnc#890511] [CVE-2014-3522]
    * ra_serf: ignore the CommonName in SSL certs where there are
      Subject Alt Names
    * ra_serf: fix a URI escaping bug that prevented deleting locked
    * rm: Display the proper URL when deleting a URL in the commit
      log editor
    * log: Fix another instance of broken pipe error
    * copy: Properly handle props not present or excluded on cross wc
    * copy: Fix copying parents of locally deleted nodes between wcs
    * externals: Properly delete ancestor directories of externals
      when removing the external by changing svn:externals.
    * ra_serf: fix memory lifetime of some hash values
  - Server-side bugfixes:
    * fsfs: omit config file when creating pre-1.5 format repos
  - Bindings:
    * ruby: removing warning about Ruby 1.9 support being new.
    * python: fix notify_func callbacks
* Tue Jul 22 2014
  - do not undef bool in swig, it breaks modern perl versions
    new patch: swig.noembed.patch
* Wed Jun 04 2014
  - do not package svnserve pid file in /var/run, fixing Factory
* Tue May 13 2014
  - Apache Subversion 1.8.9 [bnc#877555]
  - Client-side bugfixes:
    * log: use proper peg revision over DAV
    * upgrade: allow upgrading from 1.7 with exclusive locks
    * proplist: resolve inconsitent inherited property results
    * increase minimal timestamp sleep from 1ms to 10ms
    * merge: automatic merge confused by subtree merge
    * propget: report proper error on invalid revision for url
    * commit: fix an assertion when committing a deleted descendant
    * merge: resolve segfault when '--force' merges a directory
    * resolve: prevent interactive conflict resolution when nothing
      has been done to resolve the conflict
    * update: fix locks lost from wc with pre-1.6.17 servers
    * merge: honor the 'preserved-conflict-file-exts' setting
    * list: fix '--verbose' against older servers
    * unlock: fix ability to remove locks with timeouts
    * copy: fix 'svn copy URL WC' on relocated working copies
    * export: allow file externals to be exported
    * move: fix working copy db inconsistency in cert scenarios
    * commit: fix an issue where mixed revision copy with non copy
      descendants that shadow a not present node couldn't be committed
    * delete: properly remove move_to info when the node in its
      original location is removed
    * status; fix an issue where output would vary based on if the
      target was the node itself or its parent
  - Server-side bugfixes:
    * svnadmin dump: don't let invalid mergeinfo stop dump
    * svnserve: resolve performance regression caused by iprops
    * reduce size of memory buffer when reading config files
    * remove dead transaction if commit was blocked by hook
    * svnrdump load: fix crash when svn:* normalization
    * fix memcached support
    * svndumpfilter: fix order of node record headers
    * mod_dav_svn: allow generic DAV clients to refresh locks
    * mod_dav_svn: detect out of dateness correctly during commit
  - Developer-visible changes:
    * improve consistency checks of DAV inherited property requests
    * fix ocassional failure in
    * avoid duplicate sqlite analyze information rows
    * add Mavericks to our sysinfo output
    * bump copyright years to 2014
    * unbreak test suite when running as root
    * resolve buffer overflow in testcode
    * fix libmagic detection with custom LDFLAGS
    * fix an out of scope variable use in merge
    * javahl: fix crash from resolve callback throwing an exception
    * ruby: fix two memory lifetime bugs
    * fix a missing null byte when handling old pre-1.4 deltas
    * fix building with APR 0.9.x
    * make svn_ra_get_locks() and svn_ra_get_lock() report not locked
      nodes with a NULL svn_lock_t *, as documented
    * fix tests for compiler flags
  - Packaging changes:
    * adds subversion-1.8.9-allow-httpd-2.4.6.patch to allow building
      against blacklisted httpd 2.4.6 which has the required patches
    * update subversion-no-build-date.patch for context changes
* Wed Apr 23 2014
  - remove dependency on gpg-offline (is already checked
    by source_validator)
* Wed Feb 19 2014
  - Apache Subversion 1.8.8
  - Client-side bugfixes:
    * fix automatic relocate for wcs not at repository root
    * wc: improve performance when used with SQLite 3.8
    * copy: fix some scenarios that broke the working copy
    * move: fix errors when moving files between an external and the
      parent working copy
    * log: resolve performance regression in certain scenarios
    * merge: decrease work to detect differences between 3 files
    * commit: don't change file permissions inappropriately
    * commit: fix assertion due to invalid pool lifetime
    * version: don't cut off the distribution version on Linux
    * flush stdout before exiting to avoid information being lost
    * status: fix missing sentinel value on warning codes
    * update/switch: improve some WC db queries that may return
      incorrect results depending on how SQLite is built
  - Server-side bugfixes:
    * reduce memory usage during checkout and export
    * fsfs: create rep-cache.db with proper permissions
    * mod_dav_svn: prevent crashes with SVNListParentPath on
      (previously patched in this package)
    * mod_dav_svn: fix SVNAllowBulkUpdates directive merging
    * mod_dav_svn: include requested property changes in reports
    * svnserve: correct default cache size in help text
    * svnadmin dump: reduce size of dump files with '--deltas'
    * resolve integer underflow that resulted in infinite loops
  - developer visible changes:
    * fix ocassional failure of 12
    * fix failure with SQLite 3.8.1-3.8.3 when built with
      SQLITE_ENABLE_STAT3/4 due to bug in SQLite
    * specify SQLite defaults that can be changed when SQLite is
      built to avoid unexpected behavior with Subversion
    * numerous documentation fixes
    * svn_client_commit_item3_dup() fix pool lifetime issues
    * ra_serf: properly ask multiple certificate validation providers
      for acceptance of certificate failures
    * release internal fs objects when closing commit editor
    * svn_client_proplist4() don't call the callback multiple times
      for the same path in order to deliver inherited properties
  - Bindings:
    * swig-pl: fix with --enable-sqlite-compatibility-version
    * swig: fix building from tarball with an out-of-tree build
  - removed patches:
    * subversion-1.8.x-SQLite-3.8.patch, committed upstream
    * subversion-1.8.x-fix-ppc-tests.patch, committed upstream
    * subversion-CVE-2014-0032.patch, now upstream
  - packaging changes:
    * only require and build with junit when building with java and
      running regression tests
    * specify memory constraints for reliable builds with regression
  - 1.8.6 and 1.8.7 were not released
* Sun Feb 09 2014
  - fix a remotely triggerable segfault in mod_dav_svn when svn is
    handling the server root and SVNListParentPath is on
    [bnc#862459] CVE-2014-0032
  - added patches:
    * subversion-CVE-2014-0032.patch
* Sun Dec 08 2013
  - add Subversion C API documentation to subversion-devel package
  - fix rpmlint warning W: suse-wrong-suse-capitalisation
* Sat Dec 07 2013
  - Copy updated config.{guess,sub} to in-tree swig source also
    for ppc64le.
* Sun Dec 01 2013
  - add repository benchmarking tool svn-bench to tools subpackage
  - add repository statistics tool fsfs-stats to tools subpackage
  - fix performance problems when dynamically linking against
    SQLite 3.8. While this does not create a new working copy format
    version, working copies that were created with a 1.8 client
    linked against SQLite 3.7 need to have "svn upgrade" run once
    to enjoy the benefits, while otherwise maintaining compatibility.
    The step is optional and not required for new working copies.
    Adds subversion-1.8.x-SQLite-3.8.patch based on upstream commits.
  - dynamically link against SQLite as per the above in 13.1 and up.
* Mon Nov 25 2013
  - CVE redaction for 1.8.5 [bnc#850747]
* Mon Nov 25 2013
  - fix build on Factory where ruby 1.9 is no longer available,
    do not build ruby bindings
* Mon Nov 25 2013
  - update to 1.8.5 [bnc#850747], addressing two security issues:
    * CVE-2013-4505: mod_dontdothat does not restrict requests from
      serf clients.
    * CVE-2013-4558: mod_dav_svn assertion triggered by
      autoversioning commits.
    - Client-side bugfixes:
    * fix externals that point at redirected locations
    * diff: fix assertion with move inside a copy
    - Server-side bugfixes:
    * mod_dav_svn: Prevent crashes with some 3rd party modules
    * mod_dav_svn: canonicalize paths properly
    * mod_authz_svn: fix crash of mod_authz_svn with invalid config
    * hotcopy: fix hotcopy losing revprop files in packed repos
    - Other tool improvements and bugfixes:
    * mod_dontdothat: Fix the uri parser
    - Developer-visible changes:
    * fix compilation with '--enable-optimize' with clang
    * add test to fail when built against broken ZLib
    - Bindings:
    * ctypes-python: build with compiler selected via configure
  - if running regression tests, also run them against bdb backend
* Tue Nov 19 2013
  - print error logs on on regression test failures
  - always build with and statically link to in-tree SQLite to
    prevent performance problems and test failures with SQLite 3.8
  - fix regression tests for ppc/ppc64 architectures, found in
    openSUSE package build and fixed with upstream developers, adding
  - improve sqlite and python-ctypes conditionals, the latter not
    building for any current targets
  - require python-sqlite when running regression tests for all
    targets, no longer pulled in implicitly
  - update keyring, use Subversion Project Management Committee
    keyring rather than all committers
* Tue Oct 29 2013
  - update to 1.8.4 [bnc#847103]
    - Client- and server-side bugfixes:
    * fix assertion on urls of the form 'file://./'
    * translation updates for Swedish
    - Client-side bugfixes:
    * revert: fix problems reverting moves
    * update: fix assertion when file external access is denied
    * merge: reduce network connections for automatic merge
    * merge: fix path corruption during reintegration
    * mergeinfo: fix crash
    * ra_serf: verify the result of xml parsing
    * ra_serf: improve error messages during commit
    * ra_local: fix error with repository in Windows drive root
    * fix crash on windows when piped command is interrupted
    * fix assertion when upgrading old working copies
    - Server-side bugfixes:
    * hotcopy: cleanup unpacked revprops with '--incremental'
    * fix OOM on concurrent requests at threaded server start
    * fsfs: improve error message when unsupported fsfs format found
    * fix memory problem in 3rd party FS module loader
    - Developer-visible changes - Bindings:
    * javahl: canonicalize path for streaFileContent method
  - packaging changes:
    * update keyring
* Fri Aug 30 2013
  - update to 1.8.3
    CVE-2013-4246: fsfs: corruption from editing packed revision properties
    CVE-2013-4262: admin-side tools: symlink attack against pid file
    CVE-2013-4277: svnserve: symlink attack against pid file
  - User-visible changes:
    - Client- and server-side bugfixes:
    * translation updates for Swedish
    * enforce strict version equality between tools and libraries
    * consistently output revisions as "r%ld" in error messags
    - Client-side bugfixes:
    * status: always use absolute paths in XML output
    * ra_serf: 'svn log -v' fails with a 1.2.x server
    * ra_serf: fix crash when committing cp with deep deletion
    * diff: issue an error for files that can't fit in memory
    * svnmucc: generate proper error for mismatched URLs
    * update: fix a crash when a temp file doesn't exist
    * commit & update: improve sleep for timestamps performance
    * diff: continue on missing or obstructing files
    * ra_serf: use runtime serf version for User-Agent
    * ra_serf: ignore case when checking certificate common names
    * ra_serf: format distinguished names properly
    * ra_serf: do not retry HTTP requests if we started to parse them
    * ra_serf: output ssl cert verification failure reason
    * ra_serf: allow session reuse after SVN_ERR_CEASE_INVOCATION
    * ra_serf: include library version in '--version' output
    * info: fix spurious error on wc root with child in conflict
    - Server-side bugfixes:
    * svnserve: fix creation of pid files
    * svnadmin: fix output encoding in non-UTF8 environments
    * svnsync: fix high memory usage when running over ra_serf
    * mod_dav_svn: do not map requests to filesystem
    * svnauthz: improve help strings
    * fsfs: fixed manifest file growth with revprop changes
    * fsfs: fix packed revprops causing loss of revprops
    - Other tool improvements and bugfixes:
    * svnwcsub/irkerbridge: fix symlink attack via pid file
    Developer-visible changes:
    - General:
    * describe APR unimplemented errors as coming from APR
    * mod_dav_svn: update INSTALL to reflect configure defaults
    * davautocheck: use the correct apxs binary by default
    - API changes:
    * svn_config_walk_auth_data() config_dir arg: permit NULL)
    - Bindings:
    * swig-pl: fix SVN::Client not honoring config file settings
    * swig-pl & swig-py: disable unusable svn_fs_set_warning_func
* Wed Jul 24 2013
  - Apache Subversion 1.8.1 [bnc#830031] CVE-2013-4131
  - User-visible changes:
    - Client- and server-side bugfixes:
    * translation updates for German and Simplified Chinese
    * improve sqlite error message output
    * support platforms lacking mmap
    * allow configuration files to start with UTF-8 BOM
    * don't fail on UTF-8 data when encoding conversion not available
    * improve error messages when encoding conversion fails
    - Client-side bugfixes:
    * merge: rename 'automatic merge' to 'complete merge'
    * mergeinfo: reduce network usage for '--show-revs'
    * ra_serf: improve http status handling
    * merge: avoid unneeded ra session
    * merge: reduce network usage
    * merge: remove duplicated ancestry check
    * ra_serf: fix 'Accept-Encoding' header for IIS interoperability
    * svn status: improve documentation for lock columns
    * ra_serf: fix support for 'get-file-revs-reversed' capability
    * log: reduce network usage on repository roots
    * diff: avoid temporary files when calling external diff
    * upgrade: fix notification of 1.7.x working copies
    * fix crash during tree conflict resolution
    * interactive file merge: add two additional choices
    * diff: use local style paths in error messages
    * resolve: improve the interactive conflict resolution menu
    * switch: use local style path in error message
    * ra_serf: improve error output when receiving invalid XML
    * svn cleanup: explain what the command does in help output
    * blame: error on -r M:N where M>N unless server supports
    * gpg-agent auth: don't try to use agent when unavailable
    * gpg-agent auth: don't require GPG_TTY or TERM env vars
    * update: fix some tree conflicts not triggering resolver
    * commit: remove stale entries from wc lock table when deleting
    * merge: fix --record-only erroring out on renamed path
    * svnmucc: fix 'make install' symlink to work when DESTDIR is set
    * wc: fix crash when target is symlink to a working copy root
    * ra_serf: change "internal malfunction" errors to normal errors
    * ra_serf: handle proxies not supporting chunked requests
    - Server-side bugfixes:
    * fsfs: resolve endless loop problem when repos/db/uuid has \r\n
    * fsfs: remove revision property buffer limit
    * mod_dav_svn: better status codes for anonymous user errors
    * mod_dav_svn: better status codes for commit failures
    * fix performance regression in 'svn log' against root
    * allow deleting non-user-visible 'svn:' properties
    * fsfs: fix crash on strict-alignment architectures
    * svnadmin upgrade: fix error of non-sharded fsfs repositories
    * svnadmin create: deny '--fs-type=fsfs --compatible-version=1.0'
    * svnadmin upgrade: fix data loss when cancelling in last stage
    * mod_dav_svn: fix incorrect path canonicalization
    - Other tool improvements and bugfixes:
    * fsfs-stats (tool): resolve segfault when passing invalid path
    * svn-bench: fix help output
    * svnpubsub: add version header to server
    Developer-visible changes
    - General:
    * ra_serf: fix some test runner issues on Windows
    * fix two issues in reverse svn_ra_get_file_revs()
    * handle --compatible-version=1.8 in the C tests
    * improve clang compatibility
    * use proper cancel baton when handling conflicts
    * fs: BDB: provide proper error value from BDB
    * ra_serf: tweak connection failed error value
    * svn_client_log5: resolve possible segfault
    * fix metadata_only move to work when target is unversioned node
    * ra_svn: fix segfault with a NULL commit message
    * Ev2: correctly initialize node kind in shims'
    * Ev2: fix copyfrom URL construction in shims
    * fs: improve test against newlines in filenames
    * make building with BDB 6 an opt-in feature
    * sqlite: allow placing amalgamation in build dir
    * ra_svn: make sessions usable after log callback early out
    - Bindings:
    * swig-rb: fix tests with out-of-tree-builds
    * javahl: fix encoding of error messages produced by javahl
    * swig-pl: silence compiler warnings
    * swig-pl: improve documentation
  - packaging changes:
    * update keyring
* Fri Jun 21 2013
  - require krb5-devel to fix factory build
  - remove unrequired BuildIgnore
  - update keyring
  - change swig tarball to pristine upstream file
* Tue Jun 18 2013
  - Apache Subversion 1.8.0
  - Major new features
    * working copy records moves as first-class operation
    * merge uses reintegrate mode automatically when needed
    * FSFS: Packing of revision property shards
    * support inheritable properties
    * repository can suggest config for autoprops and ignores
    * support gpg-agent for password caching
    * authz rules can be stored inside the repository
  - concerns when upgrading from earlier versions
    * Upgrading the Working Copy
      1.8 introduces a new working copy format. One-time execution of
      "svn upgrade" required. After that, clients earlier than 1.8 will
      be unable to use the working copy. Working copy must have been
      created using 1.6 or 1.7. For details, please see:
    * Upgrading the Repository
      1.8 can read and write repositories created by earlier versions.
      "svnadmin upgrade" may be used to upgrade to FSFS format 6 of 1.8,
      after which the repository will be no longer be usable for 1.7 servers.
      An optional dump/load cycle may be used to apply FSFS improvements
      to past revisions.
    * Required configuration changes when using mod_dav_svn with Apache httpd2:
      The MaxKeepAliveRequests option in httpd.conf needs to be increased
      from 100 (the default) to at least 1000 (there is no reason why it
      could not be 10000). This will improve performance by allowing serf
      clients to use fewer TCP connections to the server. Clients using
      neon will also work fine with this configuration.
  - many minor features and improvements listed in:
  - Deprecations:
    * require serf as client-side http library (neon support removed)
    * deprecate the Berkeley DB FS backend (libsvn_fs_base)
  - packaging changes:
    * ra_serf is now the only http library
    * remove neon dependency, ra_neon removed upstream
    * update in-tree sqlite to recommended version
    * build with sqlite amalgamation for openSUSE 12.2 and earlier
    * dropped patches, accepted upstream:
    * dropped patches, no longer required:
      Also setting LD_LIBRARY_PATH no longer required for tests.
    * dropped patches, feature removed upstream:
    * updated patches for upstream changes:
    * update tools installation, svnmucc is now a first order tool
    * updated build requirements:
      + python >= 2.5
      + serf >= 1.2.1
      + ruby 1.8.x, >= 1.8.2 or 1.9.3
    * build ruby bindings again for openSUSE 12.3 and Factory
    * fix detection of ruby sitelib directory
    * remove obsolete tool
    * update contrib package to r1485350
* Sat Jun 15 2013
  - fix build for 12.3 x86_64 due to choice for libjpeg-devel
    needed by libmng-devel: libjpeg62-devel libjpeg8-devel
* Fri Jun 07 2013
  - fix execution of regression tests on SLE 11
* Mon Jun 03 2013
  - build with -std=gnu99 on 12.3 and later to match apache httpd to
    avoid configure warning
* Fri May 31 2013
  - update to 1.7.10 [bnc#821505]
    CVE-2013-1968 CVE-2013-2088 CVE-2013-2112
    - Client-side bugfixes:
    * fix 'svn revert' "no such table: revert_list" spurious error
    * fix 'svn diff' doesn't show some locally added files
    * fix changelist filtering when --changelist values aren't UTF8
    * fix 'svn diff --git' shows wrong copyfrom
    * fix 'svn diff -x-w' shows wrong changes
    * fix 'svn blame' sometimes shows every line as modified
    * fix regression in 'svn status -u' output for externals
    * fix file permissions change on commit of file with keywords
    * improve some fatal error messages
    * fix externals not removed when working copy is made shallow
    - Server-side bugfixes:
    * fix repository corruption due to newline in filename
    * fix svnserve exiting when a client connection is aborted
    * fix svnserve memory use after clear
    * fix repository corruption on power/disk failure on Windows
    - Developer visible changes:
    * make compatible with Solaris /bin/sh
    * fix infinite recursion bug in
    * fix uninitialised output parameter of svn_fs_commit_txn()
    - Bindings:
    * fix JavaHL thread-safety bug
* Tue May 21 2013
  - use and for unit tests,
    greatly reducing complexity of spec file and adding support
    for running unit tests with httpd 2.4 in factory
  - add subversion-1.7.9-davautocheck-LD_LIBRARY_PATH.patch to
    not overwrite LD_LIBRARY_PATH in to make
    auth-test pass
* Mon May 20 2013
  - add systemd support for svnserve
  - package now contains user and group svn
  - adjust and extend README.SuSE to cover a quickstart with both
    mod_dav_svn and svnserve, mention the user/group requirement for
    parallel operation and make text more compact by referencing the
    template config file [bnc#781980]
* Tue May 14 2013
  - package and other hook scripts as documentation
* Fri Apr 12 2013
  - add gpg signature verification of source tarball
* Sun Apr 07 2013
  - update to 1.7.9 [bnc#813913], addressing remotely triggerable
    vulnerabilities in mod_dav_svn which may result in denial of service:
    + CVE-2013-1845: mod_dav_svn excessive memory usage from property changes
    + CVE-2013-1846: mod_dav_svn crashes on LOCK requests against activity URLs
    + CVE-2013-1847: mod_dav_svn crashes on LOCK requests against non-existant URLs
    + CVE-2013-1849: mod_dav_svn crashes on PROPFIND requests against activity URLs
    + CVE-2013-1884: mod_dav_svn crashes on out of range limit in log REPORT
  - further changes:
    + Client-side bugfixes:
    * improved error messages about svn:date and svn:author props.
    * fix local_relpath assertion
    * fix memory leak in `svn log` over svn://
    * fix incorrect authz failure when using neon http library
    * fix segfault when using kwallet
    + Server-side bugfixes:
    * svnserve will log the replayed rev not the low-water rev.
    * mod_dav_svn will omit some property values for activity urls
    * fix an assertion in mod_dav_svn when acting as a proxy on /
    * improve memory usage when committing properties in mod_dav_svn
    * fix svnrdump to load dump files with non-LF line endings
    * fix assertion when rep-cache is inaccessible
    * improved logic in mod_dav_svn's implementation of lock.
    * avoid executing unnecessary code in log with limit
  - Developer-visible changes:
    + General:
    * fix an assertion in dav_svn_get_repos_path() on Windows
    * fix to correctly download zlib
    * doxygen docs will now ignore prefixes when producing the index
    * fix on freebsd
    + Bindings:
    * javahl status api now respects the ignoreExternals boolean
  - refresh subversion-no-build-date.patch for upstream source changes
* Wed Mar 20 2013
  - Copy updated config.{guess,sub} to in-tree swig source for aarch64
* Mon Dec 17 2012
  - update to 1.7.8 [bnc#794676]
    + Client- and server-side bugfixes:
    * Fix typos in pt_BR, es and zh_TW translations
    + Client-side bugfixes:
    * add missing attributes to "svn log -v --xml" output
    * fix svn patch ignoring hunks after no trailing newline
    * fix hang with ra_serf during error processing
    * ignore file externals with mergeinfo when merging
    * fix SEGV with "svnmucc cp rev arg" during argv processing
    * fix conflict handling on symlinks
    + Server-side bugfixes:
    * properly detect threading availability
    * fix "svnadmin load --bypass-prop-validation"
    * fix parsing of [groupsfoo] sections in authz file
    * add Vary: header to GET responses to improve cacheability
    * fix fs_fs to cleanup after failed rep transmission
    * fix mod_dav_svn to complain about revisions > HEAD
    + Developer-visible changes:
    * fix incorrect status returned by 1.6 API
    * fix compilation with g++ 4.7
  - drop subversion-1.7.5-libsvn_auth_kwallet-r1345740.patch
    as it was merged upstream
  - update annotation of subversion-1.7.4-ruby-1.9-RbConfig.patch
  - remove excess logging from optional regression tests to reduce
    spurious build failures in OBS due to size of log
  - remove commands trailing "make check" which masked build failures
  - add subversion-1.7.8-TestHarness_run_py_test_exit_code.patch
    to ensure "make check" fails when certain Python tests fail
* Sat Dec 08 2012
  - for package maintainers, add support to run regression tests
    over ra_neon and ra_serf (http://) via Apache / mod_dav_svn
    when built --with=regression_tests
* Sat Oct 06 2012
  - update to upstream 1.7.7:
    User-visible changes:
    - Client- and server-side bugfixes:
    * fix memory read bug
    * update Chinese translation
    - Client-side bugfixes:
    * fix issues with applying Git patch files
    * fix status does not descend into dir externals after upgrade
    * fix file externals don't update with old mod_dav_svn
    * fix external diff tool duplicates Index: lines with 'svn diff'
    * fix GNOME keyring library fails with very old glib
    * fix unknown password stores in config file cause error
    * fix assertions in ra_serf running against server root
    * fix ra_serf checkout/export aborts early on Windows
    - Server-side bugfixes:
    * fix an assert with SVNAutoVersioning in mod_dav_svn
    * fix unbounded memory use with SVNPathAuthz short_circuit
    * fix svndumpfilter exclude --targets requires leading slash
    * fix connection ttl for memcache should be 50 seconds
    * stabilize order of paths in dumpfiles with APR 1.4.6
    Developer-visible changes:
    - General:
    * print "All tests successful" at the end of 'make check'
    * fix sandbox violation in a test
    * fix tests fail when running within a format 30 WC
    * fix return value of svn_client_update4() incorrect
    * fix make check summary missing test failures
    * fix build does not fail when apache httpd is not available
    - Bindings:
    * fix swig-pl build fails with swig 2.0.7 and newer.
    * fix swig-py runtime problems with swig 2.0.5 and newer
  - refresh subversion-1.7.4-ruby-1.9-RbConfig.patch
  - refresh subversion-1.7.5-libsvn_auth_kwallet-r1345740.patch
* Wed Aug 15 2012
  - update to upstream 1.7.6:
    User-visible changes:
    - Client-side bugfixes:
    * Fix "svn status -u --depth empty FILE"
    * Fix example output of 'svn help status'
    * svn propset of svn:eol-style might not notice related text changes
    * sort output of 'svn propget -R'
    * sort output of 'svn proplist'
    * sort output of 'svn status'
    * avoid a filestat per working copy find operation
    * optimize 'svn upgrade' performance on large working copies
    * allow 'file:///C:\repos' style arguments on Windows, like 1.6
    * fix ra_serf against Subversion 1.2 servers
    * fix 'svn upgrade' on working copies with certain tree conflicts
    * avoid workqueue references to system temp dir
    * allow non-existant canonical paths
    * fix 'svn revert --depth files' to operate on files
    * fix ra_serf XML namespace handling against malicious server
    * fix relocate with server-relative externals
    * change two asserts into errors for TortoiseSVN
    * don't attempt to anchor an operation outside a wc root
    - Server-side bugfixes:
    * partial sync drops properties when converting to adds
    * replaying a copy and delete of an unreadable child fails
    * allow svnlook to operate on r0
    * make FSFS revision files independent of APR hash order
    - Other tool improvements and bugfixes:
    * move mod_dontdothat to install-tools
    Developer-visible changes:
    - General:
    * fix running tests against httpd 2.4
    * use constant struct initialisers for C89 compatibility
    - Bindings:
    * JavaHL: Don't assert on some invalid input
    * JavaHL: Add missing new in 1.7 notifications
  - refresh subversion-no-build-date.patch
* Tue Jun 12 2012
  - make build against neon optional, default on, like serf
* Thu Jun 07 2012
  - add subversion-1.7.5-libsvn_auth_kwallet-r1345740.patch from trunk
    to fix build with gcc 4.7
  - move checks for schemes handled by ra modules into %check section
  - do not run regression tests by default:
    * too many failed builds
    * doesn't include http tests
  - only require iproute2 when running regression tests
* Mon May 21 2012
  - Allow unit tests to be run for Factory: --with=regression_tests
    replacing the inline conditional
* Thu May 17 2012
  - update to upstream 1.7.5
    User-visible changes:
    - Client- and server-side bugfixes:
    * http: report deleted-revision upon delete during update
    - Client-side bugfixes:
    * avoid potential segfault when canonicalizing properties
    * improve memory and file-handle management with externals (issue #4130)
    * serf: convert assertions to "MERGE failed" errors
    * fix undefined behaviour during multi-segment reverse merges (issue #4144)
    * fix potential use of already freed memory during diff operation
    * improve performance of scan for the working copy root
    * cmdline: fix segfault during 'svn diff' argument processing
    * fix regression from 1.6 in update with --depth option (issue #4136)
    * propset: avoid undefined behaviour in error path
    * reset sqlite statements, partly for sqlite-3.7.11 compat
    * fix assertion during 'svn diff -r BASE:HEAD ^/trunk' (issue #4161)
    * notify upon 'update' just removing locks on files
    * neon: fix potential use of freed memory during commits
    * 'status --xml' doesn't show repository deletes correctly (issue #4167)
    * fix assert on svn:externals with drive letter on Windows (issue #4073)
    * fix 'svn update --depth=empty' against 1.4 servers (issue #4046)
    * handle missing svn:date reported by svnserve gracefully
    * fix merges which first add a subtree and then delete it (issue #4166)
    * fix a regression with checkout of file externals (issue #4087)
    * don't add spurious mergeinfo to subtrees in edge-case merge (issue #4169)
    * improve performance of status on large working copies (issue #4178)
    - Server-side bugfixes:
    * fix non-fatal FSFS corruption bug with concurrent commits (issue #4129)
    * mod_dav_svn: raise an error on MERGE of non-existent resource
    * mod_dav_svn: support compiling/running under httpd-2.4 (r1232267)
    * mod_dav_svn: forbid BDB repositories under httpd's event MPM (issue #4157)
    - Other tool improvements and bugfixes:
    * emacs support: updates to dsvn.el and vc-svn.el
    Developer-visible changes:
    - General:
    * windows example distribution scripts: include svnrdump
    * fix running the test suite with jsvn
    - Bindings:
    * swig-py tests: avoid FAILs on APR hash order
    * swig-rb tests: avoid FAILs on APR hash order
    * swig-pl: Improved perl detection in
* Fri May 11 2012
  - Subversion currently does not compile Ruby bindings for 1.9
    disable to fix build in Factory
  - add subversion-1.7.4-ruby-1.9-RbConfig.patch to use RbConfig
    instead of Config which is deprecated in Ruby 1.9
  - fix conditional configuration for serf support
  - add check that ra_serf is built as configure failed silently
* Thu Mar 08 2012
  - update to upstream 1.7.4
    User-visible changes:
    * fix 'svn log --diff' for moved paths
    * fix ra_serf problem with reading directory entries via HTTPv2
    * prepend "sqlite:" to error messages from SQLite
    * fix randomly missing "Merged via" notifications in 'svn log -g'
    * fix spurious conflict when merging deleted symbolic link (issue #4052)
    * fix URL-to-WC copy of externals on Windows (issue #4123)
    * improve an FSFS sanity-check error message
    * fix regressions with symlinks pointing at externals (issue #4102)
    * fix 'svn log --diff' output ordering issue on Windows
    Developer-visible changes:
    * don't build mod_dontdothat if not building with httpd
    * fix the testsuite to avoid FAILs on APR hash order
* Sat Mar 03 2012
  - add bash completion subpackage
* Tue Feb 21 2012
  - Apache-2 is not a license in, pick Apache-2.0
* Mon Feb 13 2012
  - refresh subversion-no-build-date.patch
  - add mod_dontdothat to subversion-server package
  - add section to README.SuSE about mod_dontdothat
  - add inactive sample mod_dontdothat configuration to subversion.conf
  - update to upstream 1.7.3
    * ship mod_dontdothat with the standard release
    User-visible changes:
    * fix segfault on 'svn rm $ROOT_URL' (issue #4074)
    * replace a couple of assertions in favor of errors (r1207858, -949)
    * fix a server assert after being upgraded (r1210195)
    * fix segfault on 'svn mkdir svn://localhost' (r1211483)
    * make 'svnadmin recover' prune the rep cache (r1213331, et al)
    * make svnmucc use values from --config-dir option
    * update and clarify the merge help text (r1154121, et al)
    * replace wc assertion with informative error (r1222521, -693)
    * copy permissions correctly for FSFS dirs (r1229252)
    * improve 'svn log --with-all-revprops' over ra-dav (issue #4082)
    * fix segfault when remapping a file external (issue #4093)
    * fix segfault caused by obstructing unversioned dir (r1229677)
    * fix regression on first update of external dir with '-r' (issue #4053)
    * fix various EOL-handling problems in 'svn patch' (issues #3814, #3991)
    * fix segfault in 'svn revert' (r1229303)
    * improve correctness of 'svn patch --dry-run' (r1231944, -5)
    * enforce revisions given in 'svn:externals' (issue #4053)
    * fix potential corruption on 32-bit FSFS with large files (r1230212)
    * make 'svn status --xml' show new files (issue #4097)
    * fix 'svn mergeinfo' correctness (issue #4050)
    * return the correct status for non-present nodes (r1232202, -07, -21, -22)
    * improve SASL error messages (r1236343, et al)
    * improve server cert error code for ra_serf (r1232413)
    * fix SVNParentPath listings for parent path symlinks (r1221767, -80)
    * fix mod_dav_svn's handling of POST errors (issue #4086)
    * log some mod_dav_svn errors, rather than ignoring them (r1237720, -9596)
    * relax requirements for canonicalization in mod_dav_svn (r1236173)
    * fix a rare source of FSFS corruption (r1240752)
    * allow committing the result of some copy operations (issue #4059)
    * prevent one-byte buffer overflow in base64 decoding (r1242337)
    Developer-visible changes:
    * JavaHL: Add missing notify action, fixing an exception (r1221793)
    * fix swig-py memory leak (r1235264, -296, -302, -736)
    * fix spurious test suite failure (r1220742, -50)
    * allow running tests on UNC shares (r1225491)
    * bindings: see platform-specific password providers (r1242660, -1)
    * skip 'svnrdump dump' tests over ra_serf (r1242537)
    * convert a few ra_serf assertions to errors (r1242607)
* Wed Dec 21 2011
  - update license to Apache-2
  - run regression tests for 12.1 again
  - allow builds --without regression_tests
  - subversion.libtool-verbose.patch
    refresh for moved source lines
  - subversion-swig-perl-install_vendor.patch
    refresh for moved source lines
  - subversion.libtool-pie-flags.patch
    refresh for moved source lines
  - subversion.perl.LD_RUN_PATH.patch
    refresh for moved source lines
  - subversion-no-build-date.patch
    refresh for moved source lines
  - subversion-neon-systemproxy.patch
    adjust to changed upstream sources, remove one chunk which would
    create duplicated lines in patched result
* Tue Dec 06 2011
  - update to upstream 1.7.2
    User-visible changes:
    * fix working copy corruption after interrupted update/switch (issue #4040)
    * avoid segfaults against pre-1.5 servers (r1186928)
    * improve configure error message if apr-util uses old or no bdb (r1186784)
    * make 'svn patch' ignore '/dev/null' targets for compat with git (r1197998)
    * fix 'svn patch' segfault on patch that skips and deletes files (r1199950)
    * omit "Committed revision N." output from 'svn commit --quiet' (r1200837)
    * fix authz denial when svnserve root is a repository (issue #4060)
    * fix uninitialized memory read in client diff code (r1201002)
    * avoid potential segfault during merges (r1202807)
    * fix an assertion failure when a symlink is updated (r1186944, -81, -83)
    * make working copy operations fail if nodes have no base checksum (r1202630)
    * fix nested <Location>s when using v2 protocol (r1203546, -651, -653)
    * make mod_dav_svn ignore non-Subversion POST requests (r1187695)
    * avoid reading freed memory (r1204478)
    * recognize empty (only byte order mark) UTF-8 files as text (issue #4064)
    * fix 1.7 client regression when operating against a 1.0.x server (r1199876)
    * remove empty parent dirs of removed externals on update (issue #4044)
    * make 'svn diff -c N' work for files added in rN (issue #2873)
    * plug a memory leak in the bdb backend (r1205726)
    * fix 'svn import' with native eol-style and inconsistent EOLs (r1205193)
    * fix reading beyond the end of a string in bdb backend (r1205839, -48)
    * don't assert when committing an incomplete directory (issue #4042)
    Developer-visible changes:
    * JavaHL: allow 'status -u' to function properly (r1189190, -395)
    * don't put '\r' characters in our generate sql headers (r1189580)
    * properly define WIN64 on Windows x64 builds (r1188609)
    * better adherence to C89 in enum definitions (r1189665)
    * bump copyright year in Windows DLLs (r1189261)
    * log a better error when opening rep-cache.db fails (r1204610, -73)
* Thu Dec 01 2011
  - only hide ctypesgen for Facory builds
* Tue Nov 22 2011
  - add libtool as buildrequire to avoid implicit dependency
* Sun Oct 23 2011
  - update to 1.7.1
    * Based on many fixes by, many thanks!
    * License changed to Apache License, version 2
    * Detecting MIME types with libmagic
    * Optimizations of diff, merge and blame
    * See
      for details
* Fri Oct 21 2011
  - merge in fixes from
    * Simplify tools install and ship a smaller amount of tools.
    Should fix rpmlint complaining about .libs/ directories
    and various other illegal files ending up in the package.
    Users are better off downloading the scripts previously shipped
    in this package directly from the upstream svn repository.
* Fri Oct 21 2011
  - merge in package description fixes from, thanks!
* Fri Oct 21 2011
  - reenable gnome-keyring/kde4-keyring support for older distros
* Thu Sep 29 2011
  - pass the serf configure option to subversion's configure script,
    not to swig's configure script
* Tue Aug 23 2011
  - add bconditional for libserf support
* Fri Aug 19 2011
  - fix swig bindings building (bnc#710878)
* Fri Aug 12 2011
  - run regression tests again, but only for fsfs, as bdb
    is slow and often runs out of memory
* Tue Aug 02 2011
  - add versioned runtime dependency on sqlite3 libraries
  - make init script executable
* Sat Jul 30 2011
  - annotate changelog with bugs and CVE's fixed via individual backports
    on the maintained code streams
* Wed Jul 27 2011
  - remove intree copies of sqlite and swig if version is new enough
  - disable kwallet/gnome-keyring support for SLE11 (to be package list compatible)
* Mon May 30 2011
  - update to 1.6.17 (bnc#698205):
    includes security fixes [CVE-2011-1752, CVE-2011-1783, CVE-2011-1921]
    User-visible changes:
    * improve checkout speed on Windows (issue #3719)
    * make 'blame -g' more efficient on with large mergeinfo (r1094692)
    * avoid some invalid handle exceptions on Windows (r1095654)
    * preserve log message with a non-zero editor exit (r1072084)
    * fix FSFS cache performance on 64-bit platforms (r1103665)
    * make svn cleanup tolerate obstructed directories (r1091881)
    * fix deadlock in multithreaded servers serving FSFS repositories (r1104093)
    * detect very occasional corruption and abort commit (issue #3845)
    * fixed: file externals cause non-inheritable mergeinfo (issue #3843)
    * fixed: file externals cause mixed-revision working copies (issue #3816)
    * fix crash in mod_dav_svn with GETs of baselined resources (r1104126)
      See CVE-2011-1752, and descriptive advisory at
    * fixed: write-through proxy could direcly commit to slave (r917523)
    * detect a particular corruption condition in FSFS (r1100213)
    * improve error message when clients refer to unkown revisions (r939000)
    * bugfixes and optimizations to the DAV mirroring code (r878607)
    * fixed: locked and deleted file causes tree conflict (issue #3525)
    * fixed: update touches locked file with svn:keywords property (issue #3471)
    * fix svnsync handling of directory copyfrom (issue #3641)
    * fix 'log -g' excessive duplicate output (issue #3650)
    * fix svnsync copyfrom handling bug with BDB (r1036429)
    * server-side validation of svn:mergeinfo syntax during commit (issue #3895)
    * fix remotely triggerable mod_dav_svn DoS
      See CVE-2011-1783, and descriptive advisory at
    * fix potential leak of authz-protected file contents
      See CVE-2011-1921, and descriptive advisory at
    Developer-visible changes:
    * fix reporting FS-level post-commit processing errors (r1104098)
    * fix JVM recognition on OS X Snow Leopard (10.6) (r1028084)
    * allow building on Windows with recent Expat (r1074572)
* Thu Apr 21 2011
  - Use getent to check for existance of user and group (bnc#688968).
* Thu Feb 24 2011
  - update to 1.6.16 (bnc#676949, bnc#662030):
    includes security fixes [CVE-2010-4539, CVE-2010-4644, CVE-2011-0715]
    User-visible changes:
    * more improvement to the 'blame -g' memory leak from 1.6.15 (r1041438)
    * avoid a crash in mod_dav_svn when using locks (r1071239, -307)
      See CVE-2011-0715, and descriptive advisory at
    * avoid unnecessary globbing for performance (r1068988)
    * don't add tree conflicts when one already exists (issue #3486)
    * fix potential crash when requesting mergeinfo (r902467)
    * don't attempt to resolve prop conflicts in 'merge --dry-run' (r880146)
    * more fixes for issue #3270.
    Developer-visible changes:
    * ensure report_info_t is properly initialized by ra_serf (r1058722)
    * locate errors properly on a malfunction (r1053208)
    * fix output param timing of svn_fs_commit_txn() on fsfs (r1051751)
    * for svn_fs_commit_txn(), set invalid rev on failed commit (r1051632, -8)
    * fix sporadic Ruby bindings test failures (r1038792)
    * fix JavaHL JVM object leak when dumping large revisions (r947006)
    * use Perl to resolve symlinks when building swig-pl (r1039040)
    * allow Perl bindings to build within a symlinked working copy (r1036534)
    * don't overwrite the LD_LIBRARY_PATH during make check-swig-pl (r946355)
    * improve unit tests for some fs functions (r1051744, -5, -3185, -241)
* Mon Jan 31 2011
  - use proper capitalisation and punctuation in /etc/sysconfig/svnserve
* Mon Jan 31 2011
  - fix misleading text in /etc/sysconfig/svnserve (+1 from mrueckert)
* Wed Jan 19 2011
  - fix typo in readme (bnc#661584)
* Mon Dec 27 2010
  - fix build against 11.4
* Mon Dec 06 2010
  - fix synax error (bnc#657354)
* Wed Nov 24 2010
  - update to 1.6.15 (bnc#649861):
    includes security fixes [CVE-2010-3315]
    User-visible changes:
    * hide unreadable dirs in mod_dav_svn's GET response (r996884)
    * make 'svnmucc propsetf' actually work (r1005446)
    * limit memory fragmentation in svnserve (r1022675)
    * fix 'svn export' regression from 1.6.13 (r1032970)
    * fix 'svn export' mistakenly uri-encodes paths (issue #3745)
    * fix server-side memory leaks triggered by 'blame -g' (r1032808)
    * prevent crash in mod_dav_svn when using SVNParentPath (r1033166)
    * allow 'log -g' to continue in the face of invalid mergeinfo (r1028108)
    * filter unreadable paths for 'svn ls' and 'svn co' (r997026, -070, -474)
    * fix abort in 'svn blame -g' (issue #3666)
    * fix file handle leak in ruby bindings (issue #3512)
    * remove check for 1.7-style working copies (issue #3729)
    Developer-visible changes:
    * improve some swig parameter mapping (r984565, r1035745)
    * improve test accuracy over dav (r991534, r877814)
    * create fails.log for test runs (r964349)
    * improve detection of 'svnversion' when buildling (r877219, et al)
    * don't violate API layering in dumpstream logic (issue #3733)
    * don't report working copy installs as switched (r1033921)
  - project website changed from to
* Wed Nov 24 2010
  - correct instructions on how to create the svn account (bnc#655094)
* Sat Oct 02 2010
  - fixes CVE-2010-3315:
    (only affects certain scenarios when using "SVNPathAuthz short_circuit")
  - update to 1.6.13:
    * don't drop properties during foreign-repo merges (issue #3623)
    * improve auto-props failure error message (r961970)
    * improve error message for 403 status with ra_neon (r876615)
    * don't allow 'merge --reintegrate' for 2-url merges (r959004)
    * improve handling of missing fsfs.conf during hotcopy (r980811, -1449)
    * escape unsafe characters in a URL during export (issue #3683)
    * don't leak stale locks in FSFS (r959760)
    * better detect broken working copies during update over ra_neon (r979045)
    * fsfs: make rev files read-only (r981921)
    * properly canonicalize a URL (r984928, -31)
    * fix wc corruption with 'commit --depth=empty' (issue #3700)
    * permissions fixes when doing reintegrate merges (related to issue #3242)
    * fix mergeinfo miscalculation during 2-url merges (issue #3648)
    * fix error transmission problems in svnserve (r997457, -66)
    * fixed: record-only merges create self-referential mergeinfo (issue #3646)
    * fixed: 'SVNPathAuthz short_circuit' unsolicited read access (issue #3695)
    * make 'svnmucc propset' handle existing and non-existing URLs (r1000607)
    * add new 'propsetf' subcommand to svnmucc (r1000612)
    * emit a warning about copied dirs during ci with limited depth (r1002094)
    * make ruby bindings compatible with Ruby 1.9 (r957507)
    * use the repos verify API in JavaHL (r948916)
    * teach ra_serf to parse md5 checksums with update editors (r979429)
    * let ra_serf work with current serf releases (r879757, r880320, r943796)
* Mon Sep 27 2010
  - Add subversion-neon-systemproxy.patch: Use Neon's system-proxy
    feature that was introduced in neon 0.29. In the background, neon
    uses libproxy to get the right information from the session.
* Mon Sep 20 2010
  - Do not include build date in binaries
  - refresh patches
* Tue Jun 22 2010
  - update to 1.6.12:
    * further improvements for issue #3242 ("Subversion demands unnecessary access to parent directories of operations")
    * allow deletion of uris which need character escaping (issue #3636)
    * fix errors with 'svn mkdir --parents' (issue #3649)
    * update address to which crash reports are sent (r901304)
    * fix handling of peg revision'd copy targets (issue #3651)
    * more improvements to 'svn merge --reintegrate' (r935631)
    * allow copying of broken symlinks (issue #3303)
    * improve rep-sharing performance on high-concurrency repos (issue #3506)
    * fixed: added subtrees with mergeinfo break reintegrate (issue #3654)
    * fixed: assertion triggered by tree-conflicted externals (issue #3469)
  - rolling back the in-tree sqlite-amalgamation from 3.6.17 to 3.6.13 (which is the version recommended by upstream)
  - added check in spec file to make sure we use the recommended sqlite (-amalgamation) version
* Sun Apr 18 2010
  - update to 1.6.11:
    * fix for repositories mounted via NFS
    * enable TCP keep-alives in svnserve
    * tighten restrictions on revprops for 'svnadmin verify'
    * make ra_serf give better out-of-date information
    * improve error message upon connection failure with svn+ssh://
    * allow 'svn log' on an uncommitted copy/move destination
    * make 'svnadmin hotcopy' copy the fsfs config file
    * mergeinfo improvements with non-inheritable mergeinfo
    * make mergeinfo queries not require access to the repo root
    * update URLs to refer the the new repository
    * update relative externals during a switch
    * fix 'merge --reintegrate' with self-referential mergeinfo
    * improve wc-ng working copy detection
    * improve handling of mergeinfo when using serf
    * fixed: 'svnlook plist --revprop' with '-t TXN_NAME'
    * fixed: file external from URL cannot overwrite existing item
    * fixed: potential memory error in 'svn status'
    * fixed: merge records mergeinfo from natural history gaps
    * fixed: theoretical possibility of DB corruption
* Sun Jan 24 2010
  - update to 1.6.9:
    User-visible changes:
    * allow multiple external updates over ra_svn (issue #3487)
    * fix a segmentation fault when using FSFS (r881905)
    * support Berkeley DB 4.8 (r879688)
    * various autoprop improvements (r880274, -5)
    * improve usage of svn+ssh:// on Windows (issue #2580)
    * teach 1.6.x to recognize 1.7 working copies (1.6.x-future-
      proof branch)
    * update help text for 'svn update' and 'svn switch' (r886164)
    * make 'svnadmin load --parent-dir' create valid mergeinfo
    * tolerate relative merge source paths in mergeinfo (r889840)
    * teach mod_dav_svn to support the Label header (issue #3519)
    * fixed: svnsync leaves stale sync-locks on mirrors (r884842)
    * fix applicability of 'svn resolve --accept=theirs-conflict'
    * fixed: segfault in 'svn resolve' (r896522)
    * fix commit failure against an out-of-date mirror (r900797)
    Developer-visible changes:
    * update ruby bindings test expectation (r880162)
    * don't allow rangelist and mergeinfo API to modify input args
* Mon Jan 04 2010
  - Change gnome-keyring-devel BuildRequires to
    libgnome-keyring-devel on 11.3 and later, following the module
    split upstream.
* Thu Oct 22 2009
  - update to 1.6.6:
    User-visible changes:
    * fix crash during 'svn update' (r39673)
    * respect Apache's ServerSignature directive (r40008, -21, -31)
    * don't add a file with mixed line endings, and then abort (issue #2713)
    * support Neon 0.29.
    * fix a crash in 'svn rm --force' (r37953)
    * handle tree conflicts involving replacements (issue #3486)
    * allow non-threadsafe sqlite if APR has no threads (r39301)
    * print newline before plaintext SSL cert / password prompts (r38982, r39302)
    * improve merge performance with implicit subtree mergeinfo (issue #3443)
    * fix "libsvn_ra_svn/marshal.c assertion failed (opt || cstr)" (issue #3485)
    * make file externals work for binary files (issue #3368)
    * perform MIME type matching case-insensitively (issue #3479)
    * do not treat non-existent revisions as HEAD in 'svn export' (issue #3400)
    * revert r36720's default MIME type change back to "text/plain" (issue #3508)
    * improve "tree conflict already exists" error message (r38872)
    * fix failure to commit replacement of a directory (issue #3281)
    * fix mod_dav_svn parent dir links to preserve peg revisions (issue #3425)
    Developer-visible changes:
    * fix 2 failing tests in ruby bindings (r38886)
    * do not require GNU grep for build (issue #3453)
    * use '$SED' instead of 'sed' in build scripts (issue #3458)
    * add svn.client.{log5,merge_peg3} to python bindings (r39635, -6, -7)
    * include the time of a test run in tests.log (r39887)
  - Rename subversion-1.6.5-rpmlintrc to subversion.rpmlintrc.
  - Drop subversion.allowed-neon.patch in favour of --disable-neon-version-check
    configure flag.
  - Drop subversion-make-check-log-to-stdout.patch, it doesn't apply anymore.
    It was mainly for debugging test suite hangs on Factory. We don't run
    tests on factory anymore.
* Mon Aug 24 2009
  - add patch to fix failing regression test in ruby bindings
  - rename rpmlintrc file
* Sun Aug 23 2009
  - update to 1.6.5:
    * fix mod_dav_svn directory view links to preserve peg revisions
    * properly escape lock comments over ra_neon
    * allow syncing copies of '/' over ra_neon and ra_serf
    * make 'svnlook diff' show empty added or deleted files
    * fix building with Apache 2.4
    * fix possible data loss on ext4 and GPFS filesystems
    * resolve symlinks when checking for ~/.subversion
    * don't let svn+ssh SIGKILL ssh processes
    * allow PLAIN and LOGIN mechanisms with SASL in svnserve
    * fix peg revision parsing in filenames like 'dir/@file.txt'
    * don't pretend to do tree conflict resolution
    * fix data corruption when syncing from svnserve to mod_dav_svn
    * fix GNOME Keyring with '--non-interactive' option
    * fixed: false "File '...' already exists" error during commit
  - bump in-tree sqlite-amalgamation from 3.6.16 to 3.6.17
* Sat Aug 08 2009
  - bump in-tree sqlite-amalgamation from to 3.6.16
  - use a trap function in check section to make sure the svnserve
    process is killed
  - use a random free port for testing the svnserve process
* Fri Aug 07 2009
  - update to 1.6.4 (bnc#528714):
    * Security fix [CVE-2009-2411]
* Fri Jul 24 2009
  - fix typo in dav svn default configuration (bnc#517143)
* Tue Jul 21 2009
  - Don't run regression tests on OpenSUSE Factory. It takes too
    long which causes problems for the build service because the
    subversion package is being rebuilt often.
* Fri Jul 17 2009
  - To help us figure out why the test suite sometimes hangs on the
    build service, add a patch which allows logging to stdout
    and stderr, instead of logging to tests.log, during make check.
* Mon Jul 06 2009
  - Run regression tests over both filesystem backends (FSFS and BDB),
    and over svn:// as well as file://
* Mon Jul 06 2009
  - Now that the project repositories have been configured correctly
    on the build service, OpenSUSE 10.3 should also have a JDK.
* Fri Jul 03 2009
  - Make python-xml an explicit build requirement since the regression
    tests need it to run.
* Fri Jul 03 2009
  - Make regression tests clean up temporary test data (repositories,
    working copies, etc.) to avoid build failures due to running out
    of disk space. This trades time against space -- the build will
    take longer.
* Fri Jul 03 2009
  - The build service keeps complaining that "nothing provides
    java-1_6_0-sun-devel". Attempt to make it happy by only building
    Java bindings on SUSE versions which have OpenJDK.
* Fri Jul 03 2009
  - write tests.log to stdout if make check fails to aid
    debugging of test failures on the build service
* Fri Jul 03 2009
  - run all regression tests (ra_local only for now)
  - filter a false positive rpmlint warning
  - update to 1.6.3
    User-visible changes:
    * fix segfault in WC->URL copy (r37646, -56)
    * let 'svnadmin load' tolerate mergeinfo with "\r\n" (r37768)
    * make svnsync normalize svn:* props to LF line endings (issue #3404)
    * better integration with external merge tools (r36178)
    * return a friendly error message for 'svn diff' (r37735)
    * update dsvn.el for 1.6 (r37774)
    * don't allow setting of props on out-of-date dirs under neon (r37745)
    * improve BASH completion (r36450, -52, -70, -79, -538)
    * improve some DAV-based error messages (issue #3414)
    * always show tree conflicts with 'svn st' (issue #3382)
    * improve correctness of 'svn mergeinfo' (issue #3126)
    * decrease the amount of memory needed for large commits (r37894, -6)
    * work around an APR buffer overflow seen by svnsync (r37622)
    * ra_svn clients now use TCP keep-alives if available (issue #3347)
    * improve 'svn merge' perf by reducing server contact (r37491, -593, -618)
    * stop propagating self-referential mergeinfo in reintegrate merges (r37931)
    * fix NLS detection where -liconv is required for bindtextdomain() (r37827)
    * don't delete unversioned files with 'rm --keel-local' (r38015, -17, -19)
    * bump apr and apr-util versions included in deps to latest. (r37941)
    * avoid temp file name collisions with ra_serf, ra_neon (r37972)
    * fixed: potential segfault with noop file merges (r37779)
    * fixed: incorrect output with 'svn blame -g' (r37719, -23, -41)
    * fixed: bindings don't load FS libs when module search enabled (issue #3413)
    * fixed: potential abort() in the working copy library (r37857)
    * fixed: memory leak in hash reading functions (r37868, -979)
    Developer-visible changes:
    * improve memory usage in file-to-stringbuf APIs (r37907)
    * reduce memory usage for temp string manipulation (r38010)
* Mon Jun 29 2009
  - fix package names to be able to remove the rpmlintrc
* Fri Jun 19 2009
  - disable as-needed for this package as it fails to build with it
* Mon Jun 15 2009
  - make Subversion's configure script detect Berkeley DB again. With
    apu-1-config 1.3.7, the --libs output doesn't return -ldb any
    longer, and Subversion was relying on this. See this long thread:
    Building with --with-berkeley-db makes it work again.
* Tue Jun 09 2009
  - remove ctypesgen package - not in factory yet
* Fri Jun 05 2009
  - update to the latest version
    * not using popen2 anymore which was deprecated
* Wed Jun 03 2009
  - merge into Factory
* Tue May 26 2009
  - update to sqlite-amalgamation
* Fri May 15 2009
  - enable in-tree sqlite-amalgamation again, as the required sqlite3
    package screws up zypper (bnc#504251)
* Mon May 11 2009
  - bump in-tree sqlite-amalgamation to the recommended version for
    Subversion 1.6.2: 3.6.13
  - update to 1.6.2:
    * vastly improve memory usage with 'svn merge' (issue #3393)
    * make default depth for merge 'infinity' (r37156)
    * make 'status --quiet' show tree conflicts (issue #3396)
    * allow '--set-depth infinity' to expand shallow subtrees
    * return an error if attempting to reintegrate from/to the repo
      root (r37385)
    * don't store bogus mergeinfo for '--ignore-ancestry', foreign
      merges (r37333)
    * don't allow merge of difference between two repos (r37519)
    * avoid potential segfault with subtree mergeinfo (r36613)
    * recommend sqlite 3.6.13 (r37245)
    * avoid unnecessary server query for implicit mergeinfo
    * avoid unnecessary server query during reverse merges (r36527)
    * set depth=infinity on 'svn add' items with restricted depth
    * fixed: commit log message template missing paths (issue #3399)
    * fixed: segfault on merge with servers < 1.6 (r37363)
    * fixed: repeat merge failures with non-inheritable mergeinfo
      (issue #3392)
    * fixed: another memory leak when performing mergeinfo-aware
      merges (r37398)
    * fixed: incorrect mergeinfo on children of shallow merges
      (issue #3407)
    * fixed: pool lifetime issues in the BDB backend (r37137)
* Thu May 07 2009
  - build and install the following binaries from tools/server-side
    into subversion-tools:
    * svn-populate-node-origins-index
    * svnauthz-validate
  - add support for building Subversion 1.6.x on SLE 9, by using the
    package "python25" and patching all python scripts accordingly,
    to use #!/usr/bin/python2.5 instead of /usr/bin/python or
    /usr/bin/env python
* Wed Apr 15 2009
  - update to 1.6.1
    User-visible changes:
    * recommend Neon 0.28.4. (r36388)
    * improve performance of 'svn merge --ignore-ancestry' (r36256)
    * improve 'svn merge' performance with subtree mergeinfo (r36444)
    * correctly proxy LOCK and UNLOCK requests (r36159)
    * prevent a crash when updating old working copies (r36751)
    * don't let delete a nonexistent property (r36086, -767, -769)
    * don't fail when upgrading pre-1.2 repositories (r36851, -7)
    * allow escaping of separator characters in autoprops (r36763, -84)
    * improve tempfile creation robustness on Windows (r36442, -3)
    * fix for 1.6.x working copies (r36874, -5)
    * improve configure's detection of Berkeley DB (r36741, -2)
    * don't allow foreign merges to add foreign mergeinfo (issue #3383)
    * improve performance of 'svn update' on large files (r36389, et. al.)
    * fixed: error leak and potential crash (r36860)
    * fixed: parent directory handling on Windows (r36049, -50, -51, -131)
    * fixed: unintialized memory errors (r36252, -3)
    * fixed: potential working copy corruption (r36714)
    * fixed: working copy upgrade error (r36302)
    * fixed: pointer dereference error (r36783)
    * fixed: error diff'ing large data with ignored whitespace (r36816)
    * fixed: potential hang in ra_serf (r36913)
    * fixed: problem with merge and non-inheritable mergeinfo (r36879)
    * fixed: repeated merging of conflicted properties fails (issue #3250)
    * fixed: excluding an absent directory segfaults (issue #3391)
    Developer-visible changes:
    * ensure svn_subst_translate_cstring2() properly flushes data (r36747)
    * make serf report a base checksum to apply_textdelta (r36890)
    * syntax updates for strict C89 compilers (r36799)
    * update RPM scripts for RHEL4 (r36834)
    * allow tests to be run with Python 2.6.1 on Windows (r36149, -50, -51, -56)
    * allow building JavaHL with Visual Studio 2008 (r36954)
    * stop setting default translation domain in JavaHL (r36955)
    * fixed: warning with Python 2.6 and ctypes bindings (r36559)
    * fixed: undefined references to svn_fs_path_change2_create() (r36823)
* Mon Mar 30 2009
  - fix build on SLE10
  - don't build on SLE9, its python is too old (requires >= 2.4)
  - build gnome-keyring and kde4 kwallet authentication store plugins
    as subpackages
  - added explicit BuildRequires for cyrus-sasl-devel
  - use an in-tree sqlite 3.6.11 as recommended instead of the
    system-wide version
  - removed the %changelog from the spec file, was very long, and we
    have a .changes file anyway
  - rpmlint happiness:
    * added a patch to remove a pointless shebang in the python
    * removed dot at end of Summary in subpackages
  - removed the License: tag in each subpackage
* Sun Mar 22 2009
  - build the new ctypes python bindings
  - upgraded in-tree SWIG to the recommended version for building
    SVN: 1.3.36 (required to build the Ruby bindings)
  - 1.6.0 in a separate repository for now
  - update to 1.6.0:
    * the working copy format has been upgraded: this means that 1.5
      and older Subversion clients will not be able to work with
      working copies produced by Subversion 1.6; working copies are
      upgraded automatically
    * the repository filesystem formats have changed, meaning that
      1.5 and older versions of Subversion tools that normally access
      a repository directly (e.g. svnserve, mod_dav_svn, svnadmin)
      won't be able to read a repository created by Subversion 1.6;
      but, repositories are not upgraded automatically (use
      "svnadmin upgrade")
    * improved output of "svn proplist --verbose"
    * "svn propget" now accepts the --verbose option
    * changed output of "svn status": now contains the additional
      seventh column which informs whether the item is the victim of a
      tree conflict; an  additional line with more detailed description
      of a tree conflict is displayed after each item remaining in tree
    * subversion prompts before storing passwords in plaintext form
    * passwords can be stored in KWallet (KDE 4) and GNOME Keyring
    * SSL client certificate passphrases can be stored in KWallet,
      GNOME Keyring in encrypted form or in plaintext form
    * repository root relative URLs (client)
    * improvements to "svn:externals": support for files and usual shell
      quoting rules in external definitions
    * detection of tree conflicts: Subversion 1.6 recognizes a new kind
      of conflict, known as a "tree conflict"; such conflicts manifest
      at the level of directory structure, rather than file content
    * several improvements to both the Berkeley DB and FSFS backends,
      designed to improve storage space, and can result in drastically
      smaller repositories:
      + sharing multiple common representations
      + FSFS repositories: packing completed shards
      + FSFS repositories: support for Memcached
      + BDB repositories: reverse deltas
    * ctypes Python bindings
    * improved interactive conflict resolution
    * sparse directory exclusion
    * logging support for svnserve
    * new public "historical" HTTP URI syntax for mod_dav_svn
    * the "svn log" command can now take multiple revision arguments in
      one invocation
    * --trust-server-cert option: added to svn and svnsync, so that
      non-interactive operations can work with self-signed certificates
      not backed by a known trust authority
* Sun Mar 08 2009
  - enable build of ruby bindings by using an in-tree SWIG 1.3.33
  - update to 1.5.6:
    * allow colons within mergeinfo path names (r35040)
    * make it impossible to add .svn to wc via 'svn add --parents'
      (r35143, -5)
    * copy properties of added but uncommitted files (r32448)
    * improve performance of log operation on < 1.5 servers (r35566)
    * allow commits over Neon of files >2GB (POSIX only) (r34919, -24)
    * allow serf from behind MS ISA proxy servers (r35981)
    * prevent from committing bogus
      mergeinfo (r35516)



Generated by rpm2html 1.8.1

Fabrice Bellet, Sat Apr 9 10:08:57 2022