Rubinius Chat Logs: Tuesday 2010/04/27

Show enters and exits. Hide enters and exits.

02:37:07	seydar	peace. one love
06:49:15	brixen	khaase: why does redmine use RedCloth3 instead of RedCloth?
06:52:10	scoopr	I think it monkey-patches some features to it
06:53:37	brixen	well, why not do that with RedCloth?
06:55:15	khaase	brixen: no clue, is that an issue?
06:55:42	brixen	khaase: well, looking at some of the failures and basically RedCloth3 is pretty crazy code
06:56:13	brixen	and RedCloth appears to work where RedCloth3 fails to eg replace -some text- with <del>some text</del>
06:56:16	dbussink	brixen: did you look into that jruby security issue a bit more or nog?
06:56:19	dbussink	or not?
06:56:31	brixen	dbussink: not after the gist I pasted you
06:56:40	brixen	dbussink: I don't see an issue with rbx
06:56:48	brixen	but I don't really understand the issue either
06:56:50	dbussink	brixen: well, it has the same output as jruby
06:56:57	khaase	brixen: i could try replacing redcloth3 with redcloth.
06:56:58	brixen	rbx does not
06:56:59	dbussink	brixen: so that's why i posted it
06:57:12	brixen	dbussink: show me where rbx has the same output as jruby
06:58:04	brixen	khaase: well, there must be an rbx bug somewhere if it's working on MRI
06:58:10	dbussink	ah, wait, looks like rbx replaces something there right?
06:58:12	brixen	khaase: finding it is painful
06:58:26	brixen	dbussink: it is clearly matching the <
07:01:00	brixen	khaase: so, there is one hang in test:units that I haven't gotten to yet, and I think 12f/2e
07:01:21	brixen	khaase: functionals have 6f/1e and integration 1f
07:02:06	dbussink	brixen: this is the output here: https://gist.github.com/f5bee9b7ee536a2ac8ab
07:02:10	dbussink	brixen: with jruby 1.4.0
07:02:27	khaase	brixen: cool stuff. i have to fix my database/update rbx, then i'll try running it again.
07:02:59	brixen	dbussink: wat is xss.rb
07:03:03	brixen	er what
07:03:12	dbussink	brixen: that piece of code from the report
07:03:26	brixen	that's not what I get
07:03:35	dbussink	brixen: which is here: http://www.jruby.org/2010/04/26/jruby-1-4-1-xss-vulnerability.html
07:03:37	brixen	http://gist.github.com/379980
07:03:54	brixen	I can't understand that description
07:05:19	dbussink	brixen: well, i see different output there in the kcode section
07:06:03	brixen	the jruby page says, "If a string contains invalid UTF-8 byte sequences in the (inclusive) range \xC0 to \xFD, the immediately following character will not be matched by a regular expression."
07:06:12	brixen	but < is clearly substituted in my gist
07:08:26	brixen	well, I should say, the string is processed differently
07:15:18	brixen	dbussink: yeah, there is an issue: http://gist.github.com/380451
07:15:32	brixen	why they couldn't use a simple script to begin with
07:15:59	brixen	sleeps
07:16:46	dbussink	brixen: night!
07:23:26	khaase	brixen: see you "tomorrow"
10:26:41	sMAshdot	hi
16:45:13	sMAshdot	rake rubyspec:update
16:45:18	sMAshdot	ups
16:49:48	brixen	sMAshdot: why are you running that?
16:50:12	brixen	poor boyscout
16:50:24	brixen	headed to galois talk, bbl...
16:53:46	sMAshdot	brixen: following http://rubini.us/docs/getting_started
16:54:14	BrianRice-work	oh, galois talk!
16:54:51	BrianRice-work	brixen: a mini-review upon your return would be appreciated
16:58:10	boyscout	CI: rubinius: 1b8ffb9 successful: 3448 files, 13480 examples, 41038 expectations, 0 failures, 0 errors
17:00:53	kronos_vano	brixen, what is CodeRay ?
17:08:18	Defiler	kronos_vano: a syntax highlighting library
17:08:44	kronos_vano	hm
18:03:47	slava	evan: how do you do GC checks?
18:29:50	dbussink	slava: evan is on vacation :)
18:30:22	slava	ah
18:35:55	dbussink	slava: should probably ask brixen to know when he'll be back :)
20:47:26	rue	LLVM 2.7 looks good
20:53:28	BrianRice-work	yeah the release notes look interesting: http://llvm.org/docs/ReleaseNotes.html#whatsnew