[Webkit-unassigned] [Bug 168774] Add a test verifying cache deduplication is not sensitive to SHA1 collision attack

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Fri Feb 24 09:29:37 PST 2017


--- Comment #32 from Csaba Osztrogonác <ossy at webkit.org> ---
(In reply to comment #30)
> (In reply to comment #28)
> > Oh wow, incredible.
> > 
> > Is it fixable, or are we just totally hosed? Are we going to need to delete
> > all the SVN history since this commit from the server in order to avoid the
> > hash collision?
> For the record: the commits have been deleted, but the SVN is still hosed.
> Mailing list thread:
> https://lists.webkit.org/pipermail/webkit-dev/2017-February/028792.html

It broke our SVN mirror too, it can't be sync anymore after r212950:

Transmitting file data .....svnsync: E200014: Checksum mismatch for resulting fulltext
   expected:  5bd9d8cabc46041579a311230539b8d1
     actual:  ee4aa52b139d925f8d8884402b0a750c

You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.webkit.org/pipermail/webkit-unassigned/attachments/20170224/d0453067/attachment.html>

More information about the webkit-unassigned mailing list