While updating the ptolemy website:
Working Directory: /home/www/ptweb Command: /home/www/bin/vc-svn update --username vc@chess.eecs.berkeley.edu --config-dir /home/vc/.subversion-chess 2>&1 Updating module ptweb: svn: Server sent unexpected return value (500 Internal Server Error) in response to OPTIONS request for 'https://repo.eecs.berkeley.edu/svn/projects/chess/ptweb' Done!To replicate, log on to moog, become the @@webuser@@:
[root@moog ~]# su - webuser [webuser@moog ~]$ cd ~www/ptweb/ [webuser@moog ptweb]$ /home/www/bin/vc-svn update --username vc@chess.eecs.berkeley.edu --config-dir /home/vc/ .subversion-chess U conferences/15/program.htm Updated to revision 7497. [webuser@moog ptweb]$
Note that there was a recent patch to svn:
Red Hat Satellite has determined that the following advisory is applicable to one or more of the systems you have registered: Complete information about this errata can be found at the following location: https://ucbrhn.Berkeley.EDU/rhn/errata/details/Details.do?eid=103064 Security Advisory - RHSA-2015:1633-1 ------------------------------------------------------------------------------ Summary: Moderate: subversion security update Updated subversion packages that fix three security issues are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. Subversion (SVN) is a concurrent version control system which enables one or more users to collaborate in developing and maintaining a hierarchy of files and directories while keeping a history of all changes. The mod_dav_svn module is used with the Apache HTTP Server to allow access to Subversion repositories via HTTP. An assertion failure flaw was found in the way the SVN server processed certain requests with dynamically evaluated revision numbers. A remote attacker could use this flaw to cause the SVN server (both svnserve and httpd with the mod_dav_svn module) to crash. (CVE-2015-0248) It was found that the mod_dav_svn module did not properly validate the svn:author property of certain requests. An attacker able to create new revisions could use this flaw to spoof the svn:author property. (CVE-2015-0251) It was found that when an SVN server (both svnserve and httpd with the mod_dav_svn module) searched the history of a file or a directory, it would disclose its location in the repository if that file or directory was not readable (for example, if it had been moved). (CVE-2015-3187) Red Hat would like to thank the Apache Software Foundation for reporting these issues. Upstream acknowledges Evgeny Kotkov of VisualSVN as the original reporter of CVE-2015-0248 and CVE-2015-0251, and C. Michael Pilato of CollabNet as the original reporter of CVE-2015-3187. All subversion users should upgrade to these updated packages, which contain backported patches to correct these issues. After installing the updated packages, for the update to take effect, you must restart the httpd daemon, if you are using mod_dav_svn, and the svnserve daemon, if you are serving Subversion repositories via the svn:// protocol. https://access.redhat.com/security/updates/classification/#moderate https://subversion.apache.org/security/CVE-2015-0248-advisory.txt https://subversion.apache.org/security/CVE-2015-0251-advisory.txt https://subversion.apache.org/security/CVE-2015-3187-advisory.txt ------------------------------------------------------------------------------ --------------------- Affected Systems List --------------------- This Errata Advisory may apply to the systems listed below. If you know that this errata does not apply to a system listed, it might be possible that the package profile for that server is out of date. In that case you should run 'up2date -p' (RHEL 4 and below) or 'rhn-profile-sync' (RHEL 5 and above) as root on the system in question to refresh your software profile. There is 1 affected system registered in 'Overview' (only systems for which you have explicitly enabled Errata Alerts are shown). Release Arch Profile Name ---------- ---------- --------------------------------------------- 6Server x86_64 moog.eecs.berkeley.edu You may address the issues outlined in this advisory in two ways: - select your server name by clicking on its name from the list available at the following location, and then schedule an errata update for it: https://ucbrhn.Berkeley.EDU/rhn/systems/Overview.do - run the Update Agent on each affected server.
After the patch, it seems like the --username
argument is causing the problems.