Date: Wed, 4 Oct 2017 14:17:46 +0200 From: Mathieu Arnold <mat@FreeBSD.org> To: David Chisnall <theraven@FreeBSD.org>, Ryan Steinmetz <zi@FreeBSD.org> Cc: Cy Schubert <Cy.Schubert@komquats.com>, Mathieu Arnold <mat@FreeBSD.org>, "ports-committers@freebsd.org" <ports-committers@freebsd.org>, "svn-ports-all@freebsd.org" <svn-ports-all@freebsd.org>, "svn-ports-head@freebsd.org" <svn-ports-head@freebsd.org> Subject: Re: svn commit: r450898 - head/security/vuxml Message-ID: <493386ff-dc20-b8cb-001d-ea8b79ae1129@FreeBSD.org> In-Reply-To: <31BE1638-3115-4F25-810C-5CB91626E480@FreeBSD.org> References: <zi@FreeBSD.org> <20171003185229.GA91081@exodus.zi0r.com> <201710031914.v93JESd2007316@slippy.cwsent.com> <20171003191620.GA99159@exodus.zi0r.com> <31BE1638-3115-4F25-810C-5CB91626E480@FreeBSD.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Le 04/10/2017 =C3=A0 13:37, David Chisnall a =C3=A9crit=C2=A0: > On 3 Oct 2017, at 20:16, Ryan Steinmetz <zi@FreeBSD.org> wrote: >> >> On (10/03/17 12:14), Cy Schubert wrote: >>> In message <20171003185229.GA91081@exodus.zi0r.com>, Ryan Steinmetz w= rites: >>>> >>>> On (10/03/17 11:36), Cy Schubert wrote: >>>>> Really? >>>>> >>>>> Looking at the code it's a 1m size limit. Put yourself in sizelimit= =2Econf and >>>> you get 10x that, unless you put a size after your name. >>>> >>>> Typo--is a transaction size limit that was triggered. >>> Yes. >>> >>> Why delete the old entries? It's history. >>> >>> Maybe we shouldn't keep the vuxml database in the ports tree, instead= >>> hosting the vuxml file on github instead of the port itself??? Just a= >>> thought. >>> >> We (ports-secteam) were addressing a problem (people couldn't commit n= ew entries). >> >> There is some investigative work going on now that will give us more o= ptions in terms of dealing with growth. >> >> More information will surface in the near future. > In retrospect, it seems that putting this as a single file in the ports= tree was a bad idea, and the correct solution is to have individual XML = fragments that can be assembled into both one huge file of everything and= a smaller one for vulnerabilities in ports that have been shipped in the= last year. This is the idea, yes, split it in yearly, quarterly, or montly files. If only someone were to do it :-) (and make sure vuxml.org still works, and stuff.) --=20 Mathieu Arnold
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?493386ff-dc20-b8cb-001d-ea8b79ae1129>