Bug#285708: marked as done (subversion: svnserve hangs if little
entropy for /dev/random)
Debian Bug Tracking System
owner at bugs.debian.org
Sun Dec 4 06:03:10 UTC 2005
Your message dated Sat, 03 Dec 2005 22:02:09 -0800
with message-id <E1Eimwr-0003TH-J2 at spohr.debian.org>
and subject line Bug#298822: fixed in subversion 1.2.3dfsg1-3
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--------------------------------------
Received: (at submit) by bugs.debian.org; 15 Dec 2004 01:20:50 +0000
>From alexj at pulver.com Tue Dec 14 17:20:50 2004
Return-path: <alexj at pulver.com>
Received: from mail.pulver.com [192.246.69.184]
by spohr.debian.org with esmtp (Exim 3.35 1 (Debian))
id 1CeNqU-0005yt-00; Tue, 14 Dec 2004 17:20:50 -0800
Received: (qmail 15634 invoked by uid 510); 14 Dec 2004 21:03:12 -0500
Received: from alexj at pulver.com by mail.pulver.com by uid 508 with qmail-scanner-1.22-st-qms
(clamdscan: 0.72. spamassassin: 2.63. Clear:RC:0(24.47.101.86):SA:0(1.4/5.0):.
Processed in 0.731661 secs); 15 Dec 2004 02:03:12 -0000
X-Antivirus-MYDOMAIN-Mail-From: alexj at pulver.com via mail.pulver.com
X-Antivirus-MYDOMAIN: 1.22-st-qms (Clear:RC:0(24.47.101.86):SA:0(1.4/5.0):. Processed in 0.731661 secs Process 15626)
Received: from ool-182f6556.dyn.optonline.net (HELO ?127.0.0.1?) (alexj at pulver.com@24.47.101.86)
by mail.pulver.com with SMTP; 14 Dec 2004 21:03:11 -0500
Message-ID: <41BF938F.7040703 at pulver.com>
Date: Tue, 14 Dec 2004 20:29:51 -0500
From: Alex Jacques <alexj at pulver.com>
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.7.3) Gecko/20040910 MultiZilla/1.6.4.0b
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: submit at bugs.debian.org
Subject: subversion: svnserve hangs if little entropy for /dev/random
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit
Delivered-To: submit at bugs.debian.org
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2004_03_25
(1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Status: No, hits=-8.0 required=4.0 tests=BAYES_00,HAS_PACKAGE
autolearn=no version=2.60-bugs.debian.org_2004_03_25
X-Spam-Level:
Package: subversion
Version: 1.1.1-1
Severity: wishlist
If there is little entropy available then svnserve can hang for up to
several minutes waiting on /dev/random. This is similiar to the problem
listed here:
http://svnbook.red-bean.com/en/1.1/apb.html#svn-ap-b-sect-1.2.14
But I guess it affects Linux too (I'm running 2.6.9 on a P3).
See also http://svn.haxx.se/users/archive-2004-03/0452.shtml
This drove me nuts - I thought something was wrong with Subversion. I
can think of several possible fixes:
1. Compile APR against /dev/urandom instead of /dev/random (as suggested
in the manual). Admittedly this reduces the randomness, but I think
anyone who needs real security will run svn+ssh or Apache (I'm running
straight svn).
2. Make /dev/random vs. /dev/urandom a debconf option.
3. At least mention the problem in README.debian
Perhaps also make rng-tools a suggested package. This solved the problem
for me, but I think it would need a comment as to *why* rng-tools is
suggested. Also, rng-tools won't work on all machines - it needs the
hw_random kernel module or equivalent.
---------------------------------------
Received: (at 298822-close) by bugs.debian.org; 4 Dec 2005 06:02:20 +0000
>From katie at ftp-master.debian.org Sat Dec 03 22:02:20 2005
Return-path: <katie at ftp-master.debian.org>
Received: from katie by spohr.debian.org with local (Exim 4.50)
id 1Eimwr-0003TH-J2; Sat, 03 Dec 2005 22:02:09 -0800
From: Peter Samuelson <peter at p12n.org>
To: 298822-close at bugs.debian.org
X-Katie: $Revision: 1.60 $
Subject: Bug#298822: fixed in subversion 1.2.3dfsg1-3
Message-Id: <E1Eimwr-0003TH-J2 at spohr.debian.org>
Sender: Archive Administrator <katie at ftp-master.debian.org>
Date: Sat, 03 Dec 2005 22:02:09 -0800
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02
(1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Level:
X-Spam-Status: No, hits=-6.0 required=4.0 tests=BAYES_00,HAS_BUG_NUMBER
autolearn=no version=2.60-bugs.debian.org_2005_01_02
X-CrossAssassin-Score: 6
Source: subversion
Source-Version: 1.2.3dfsg1-3
We believe that the bug you reported is fixed in the latest version of
subversion, which is due to be installed in the Debian FTP archive:
libapache2-svn_1.2.3dfsg1-3_i386.deb
to pool/main/s/subversion/libapache2-svn_1.2.3dfsg1-3_i386.deb
libsvn-core-perl_1.2.3dfsg1-3_i386.deb
to pool/main/s/subversion/libsvn-core-perl_1.2.3dfsg1-3_i386.deb
libsvn-javahl_1.2.3dfsg1-3_i386.deb
to pool/main/s/subversion/libsvn-javahl_1.2.3dfsg1-3_i386.deb
libsvn0-dev_1.2.3dfsg1-3_i386.deb
to pool/main/s/subversion/libsvn0-dev_1.2.3dfsg1-3_i386.deb
libsvn0_1.2.3dfsg1-3_i386.deb
to pool/main/s/subversion/libsvn0_1.2.3dfsg1-3_i386.deb
python2.3-subversion_1.2.3dfsg1-3_i386.deb
to pool/main/s/subversion/python2.3-subversion_1.2.3dfsg1-3_i386.deb
subversion-tools_1.2.3dfsg1-3_all.deb
to pool/main/s/subversion/subversion-tools_1.2.3dfsg1-3_all.deb
subversion_1.2.3dfsg1-3.diff.gz
to pool/main/s/subversion/subversion_1.2.3dfsg1-3.diff.gz
subversion_1.2.3dfsg1-3.dsc
to pool/main/s/subversion/subversion_1.2.3dfsg1-3.dsc
subversion_1.2.3dfsg1-3_i386.deb
to pool/main/s/subversion/subversion_1.2.3dfsg1-3_i386.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 298822 at bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Peter Samuelson <peter at p12n.org> (supplier of updated subversion package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster at debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Fri, 2 Dec 2005 16:22:44 -0600
Source: subversion
Binary: libsvn-core-perl libapache2-svn libsvn0 libsvn-javahl python2.3-subversion subversion-tools libsvn0-dev subversion
Architecture: source i386 all
Version: 1.2.3dfsg1-3
Distribution: unstable
Urgency: low
Maintainer: Guilherme de S. Pastore <guilherme.pastore at terra.com.br>
Changed-By: Peter Samuelson <peter at p12n.org>
Description:
libapache2-svn - apache modules for Subversion (aka. svn)
libsvn-core-perl - perl bindings for Subversion (aka. svn)
libsvn-javahl - java bindings for Subversion (aka. svn)
libsvn0 - shared libraries used by Subversion (aka. svn)
libsvn0-dev - development files for Subversion (aka. svn) libraries
python2.3-subversion - python modules for interfacing with Subversion (aka. svn)
subversion - advanced version control system (aka. svn)
subversion-tools - assorted tools related to Subversion (aka. svn)
Closes: 285708 298822 310777 316097 335438 335455 336373 336781
Changes:
subversion (1.2.3dfsg1-3) unstable; urgency=low
.
[ Peter Samuelson ]
* rules: Remove the unwritten requirement that /usr/bin/python be
specifically version 2.3:
- derive python version from debian/control, not from dpkg -l
- pass PYTHON=python2.3 explicitly into configure
* rules: clean rule: Seek and destroy _all_ *.pyc files. There were
a few we didn't catch before, buried in the testsuite.
* Remove various unneeded files from language bindings (Closes: #310777)
- libsvn-core-perl.install: don't install /usr/lib/*.{a,la,so}
- python2.3-subversion.install: likewise
- libsvn-javahl.install: don't install /usr/lib/jni/*.{a,la}
- rules: delete *.{a,la} from python2.3/site-packages/libsvn
* control: build-depends on libapr0-dev (>= 2.0.55-3).
Earlier versions of libapr0 will try to make us link to libdb4.2.
* subversion.NEWS, README.db4.3: document db4.2 -> db4.3 upgrade.
* patches/no_extra_libs.patch: new patch to prevent linking to several
unneeded libraries. (Closes: #336373, which was caused by linking to
libssl0.9.8.)
- debian/control: Remove several depends and build-depends we are no
longer using because of this
* patches/commit-email-warning.patch: new patch to eliminate a harmless
warning in a hook script. (Closes: #336781)
* patches/perl-test-clean.patch: new patch to avoid leaving several
/tmp/svn-perl-test-xxxxxx dirs.
* patches/swig-1.3.27-hack.patch: new patch to avoid FTBFS from bad
interaction of swig 1.3.27 and <apr.h>. A *really* ugly hack.
.
[ Adam Conrad ]
* Switch to using DB4.3 instead of DB4.2, as libapr0 has
(Closes: #335455, #335438)
- Bump build-dep and libsvn0-dev dep from libdb4.2-dev to libdb4.3-dev
- Bump subversion and libapache2-svn deps from db4.2-util to db4.3-util
.
[ Troy Heber ]
* Added note about the requirement for nfs-common when your repository lives
on a NFS volume. (closes: #316097)
* Changing the default behavior to not use apr_generate_random_bytes(),
Debian use the system APR which is configured to use /dev/random. In cases
where the entropy pool is drained svn commands can block waiting. Removing
the call to apr_generate_random_bytes and using the fallback apr_time_now
instead. (closes: #285708, #298822)
Files:
436db1152a9c5992b4acc7b0709bad48 1157 devel optional subversion_1.2.3dfsg1-3.dsc
0ac73d98915e163a8fedb049e0a0fb05 35852 devel optional subversion_1.2.3dfsg1-3.diff.gz
b731bf3983f01cd93c9183f834138361 112226 admin extra subversion-tools_1.2.3dfsg1-3_all.deb
62e958362d6a7c56982e97a6233fb0ae 924752 devel optional subversion_1.2.3dfsg1-3_i386.deb
cf0d58818eacaa375aca83f4794167d4 490036 libs optional libsvn0_1.2.3dfsg1-3_i386.deb
d497e98d7963e538d0fb919fbb8beef1 703024 libdevel extra libsvn0-dev_1.2.3dfsg1-3_i386.deb
0304e9d48da956fc32ba66c2e3291cb4 106902 net optional libapache2-svn_1.2.3dfsg1-3_i386.deb
8b4b4f8c44a749837723ecd84c8230b7 348470 python optional python2.3-subversion_1.2.3dfsg1-3_i386.deb
5e5c5d76aa37a5f2857f1563075ce23f 157396 devel optional libsvn-javahl_1.2.3dfsg1-3_i386.deb
294b4c07333b3b37d2192789da90a618 704784 perl optional libsvn-core-perl_1.2.3dfsg1-3_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)
iD8DBQFDkoQzgcCJIoCND9ARAkV3AKCMexA0QVN8w6KUs90c1PNEJjx/igCgoLBP
5ji//d0BqmDZhHY+lLhVuZU=
=GIvq
-----END PGP SIGNATURE-----
More information about the pkg-subversion-maintainers
mailing list