Rev 2221: Clear out BRANCH.TODO; all these items have been dealt with one way or another. in sftp://bazaar.launchpad.net/%7Ebzr/bzr/hpss/

[Andrew Bennetts]

At sftp://bazaar.launchpad.net/%7Ebzr/bzr/hpss/

------------------------------------------------------------
revno: 2221
revision-id: andrew.bennetts at canonical.com-20070416041315-w95yo01oar5pwsht
parent: andrew.bennetts at canonical.com-20070416025619-v6rjozkjjnrg970w
committer: Andrew Bennetts <andrew.bennetts at canonical.com>
branch nick: hpss
timestamp: Mon 2007-04-16 14:13:15 +1000
message:
  Clear out BRANCH.TODO; all these items have been dealt with one way or another.
modified:
  BRANCH.TODO                    BRANCH.TODO-20060103052123-79ac4969351c03a9
=== modified file 'BRANCH.TODO'
--- a/BRANCH.TODO	2007-04-05 09:35:26 +0000
+++ b/BRANCH.TODO	2007-04-16 04:13:15 +0000
@@ -3,23 +3,3 @@
 # 
 #
 
-Security: it should be impossible, by default, to access files above the base of
-the backing transport of the SmartServerRequestHandler.  Currently '..' and the
-like are not vetted, however.
-
-Similarly, the SmartWSGIApp should also be careful to disallow '..' and the
-like.
-
-We should test that we upgrade branches and repositories through the smart
-server.
-
-The Remote*Format and RemoteBzrDir/Repository/Branch need to stop deriving from
-classes which implement any of their methods using VFS facilities.  This
-probably means rearranging the class heirarchy to introduce new base classes
-with no functionality implemented by VFS.
-
-Implement RemoteBzrDir.find_repository directly for performance.
-
-decide what to do when operating on a branch on a server that is bound to another.
-
-urlutils.* operations on URLS which are obtained from a chrooted transport may be used to escape the chroot.