commit: ba994378b56d87b15c84344466dae648484bd0d3 Author: Azamat H. Hackimov <azamat.hackimov <AT> gmail <DOT> com> AuthorDate: Fri Oct 15 11:51:05 2021 +0000 Commit: Sam James <sam <AT> gentoo <DOT> org> CommitDate: Wed Oct 20 01:11:38 2021 +0000 URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=ba994378
www-apps/redmine: new versions 4.1.5 and 4.2.3 Fix security issue CVE-2021-42326 Bug: https://bugs.gentoo.org/817917 Package-Manager: Portage-3.0.20, Repoman-3.0.3 Signed-off-by: Azamat H. Hackimov <azamat.hackimov <AT> gmail.com> Signed-off-by: Sam James <sam <AT> gentoo.org> www-apps/redmine/Manifest | 2 + www-apps/redmine/redmine-4.1.5.ebuild | 233 +++++++++++++++++++++++++++++++++ www-apps/redmine/redmine-4.2.3.ebuild | 240 ++++++++++++++++++++++++++++++++++ 3 files changed, 475 insertions(+) diff --git a/www-apps/redmine/Manifest b/www-apps/redmine/Manifest index 429e25eb863..adbea5b7554 100644 --- a/www-apps/redmine/Manifest +++ b/www-apps/redmine/Manifest @@ -1,2 +1,4 @@ DIST redmine-4.1.4.tar.gz 2720709 BLAKE2B 9e0c2b990248c9000fd6062e3928bf4bc8e8043e0d9ceff13d5000da824cde027090121ce3a8be2f5d92eedb97b91629fb8b681ae5e380459fdb97904abd9b98 SHA512 93e46f2ed220c05b83b7bab34327891a7f05a46a01c6cbfc1a5c9bf18613e308d94d84fc3158a8bb7af740b8792448d935bc9d29795ee341bca577c82ac0619b +DIST redmine-4.1.5.tar.gz 2722929 BLAKE2B 83c9c974bbfecfcb796833640ed9b3cb4b2e2550714e702d9b024a41f676c2c71f8e6f4119b2519654556451313a0276a4dbe307f41747466b0034f415cde662 SHA512 cf4020bff11b13986989e312db1e7ee459f4391ec7326f59a4f493fb0c95be87d19196377da60ac083801b7c792dc012769350b684e20dd887c431c0c18cc851 DIST redmine-4.2.2.tar.gz 3038398 BLAKE2B 995179b6a5f75548525912dc20b4c0ded8709a12d6eb84873d899b20cf3b83469af7f14713187cce8ec720be4d501a9e7e890e1f38cbe2b118041dc91f555f53 SHA512 71155358ca68d9eb5bf6b79e26202c29ba3355d499662bfe659ff1672625a25d91694d5f1e4bb8db18456642470244aca914efe4456adef2850b70ff7eb216b2 +DIST redmine-4.2.3.tar.gz 3039136 BLAKE2B 68656da4a9a43139ab78b70e7e7364cbc776a75ea3069962086c49ea2ca965739efc47d6709b0068d94a884eaa6b56a641826ffbb16276cc8d686374a88d9e75 SHA512 456117b0d5d72ee58c87def84327e29f79937fa71098b48a80103e3e6653648c0df46afcc4f533803384ba7413e690538deeee33e263d86dd9e4e5dec65144e3 diff --git a/www-apps/redmine/redmine-4.1.5.ebuild b/www-apps/redmine/redmine-4.1.5.ebuild new file mode 100644 index 00000000000..f331ffe6d23 --- /dev/null +++ b/www-apps/redmine/redmine-4.1.5.ebuild @@ -0,0 +1,233 @@ +# Copyright 1999-2021 Gentoo Authors +# Distributed under the terms of the GNU General Public License v2 + +EAPI=7 + +USE_RUBY="ruby26" +inherit depend.apache ruby-ng + +DESCRIPTION="Flexible project management web application using the Ruby on Rails framework" +HOMEPAGE="https://www.redmine.org/"; +SRC_URI="https://www.redmine.org/releases/${P}.tar.gz"; + +KEYWORDS="~amd64" +LICENSE="GPL-2" +SLOT="0" +IUSE="imagemagick fastcgi ldap markdown mysql passenger postgres sqlite" + +DEPS=" + fastcgi? ( dev-ruby/fcgi ) + imagemagick? ( dev-ruby/mini_magick ) + ldap? ( dev-ruby/ruby-net-ldap ) + markdown? ( >=dev-ruby/redcarpet-3.5.1 ) + mysql? ( >=dev-ruby/mysql2-0.5.0:0.5 ) + passenger? ( www-apache/passenger ) + postgres? ( >=dev-ruby/pg-1.1.4:1 ) + sqlite? ( >=dev-ruby/sqlite3-1.4.0 ) + dev-ruby/actionpack-xml_parser:2 + dev-ruby/csv:3 + >=dev-ruby/i18n-1.6.0:1 + >=dev-ruby/mail-2.7.1 + dev-ruby/marcel + dev-ruby/mimemagic + >=dev-ruby/mini_mime-1.0.1 + >=dev-ruby/nokogiri-1.11.1 + dev-ruby/rails:5.2 + >=dev-ruby/rbpdf-1.20.0 + dev-ruby/request_store:0 + >=dev-ruby/roadie-rails-2.1.0 + >=dev-ruby/rouge-3.12.0 + >=dev-ruby/ruby-openid-2.9.2 + dev-ruby/rack-openid +" + +ruby_add_bdepend "${DEPS}" + +RDEPEND=" + acct-group/redmine + acct-user/redmine +" + +REDMINE_DIR="/var/lib/${PN}" + +all_ruby_prepare() { + rm -fr log files/delete.me .github || die + + # bug #406605 + rm .{git,hg}ignore || die + + # newenvd not working here + cat > "${T}/50${PN}" <<-EOF || die + CONFIG_PROTECT="${EROOT}/${REDMINE_DIR}/config" + CONFIG_PROTECT_MASK="${EROOT}/${REDMINE_DIR}/config/locales ${EROOT}/${REDMINE_DIR}/config/settings.yml" + EOF + + # Fixing versions in Gemfile + sed -i -e "s/~>/>=/g" Gemfile || die + + # bug #724464 + sed -i -e "s/gem 'rails',.*/gem 'rails', '~>5.2.6'/" Gemfile || die + + sed -i -e "/group :development do/,/end$/d" Gemfile || die + sed -i -e "/group :test do/,/end$/d" Gemfile || die + + if ! use imagemagick ; then + sed -i -e "/group :minimagick do/,/end$/d" Gemfile || die + fi + if ! use ldap ; then + # remove ldap stuff module if disabled to avoid #413779 + use ldap || rm app/models/auth_source_ldap.rb || die + sed -i -e "/group :ldap do/,/end$/d" Gemfile || die + fi + if ! use markdown ; then + sed -i -e "/group :markdown do/,/end$/d" Gemfile || die + fi + # Additional dependency for Gemfile (#657156) + if use fastcgi; then + echo "gem 'fcgi'" > Gemfile.local + fi +} + +all_ruby_install() { + dodoc doc/* README.rdoc + rm -r doc test appveyor.yml CONTRIBUTING.md README.rdoc || die + + keepdir /var/log/${PN} + + insinto "${REDMINE_DIR}" + doins -r . + insinto "${REDMINE_DIR}/config" + doins "${FILESDIR}/additional_environment.rb" + keepdir "${REDMINE_DIR}"/{app/views/previews,files,public/plugin_assets,vendor} + keepdir "${REDMINE_DIR}"/tmp/{cache,imports,sessions,sockets} + + fowners -R redmine:redmine \ + "${REDMINE_DIR}/config.ru" \ + "${REDMINE_DIR}/config" \ + "${REDMINE_DIR}/files" \ + "${REDMINE_DIR}/public/plugin_assets" \ + "${REDMINE_DIR}/tmp" \ + /var/log/${PN} + + fowners redmine:redmine "${REDMINE_DIR}" + + # protect sensitive data, see bug #406605 + fperms -R go-rwx \ + "${REDMINE_DIR}/config" \ + "${REDMINE_DIR}/files" \ + "${REDMINE_DIR}/tmp" \ + /var/log/${PN} + + if use passenger; then + has_apache + insinto "${APACHE_VHOSTS_CONFDIR}" + doins "${FILESDIR}/10_redmine_vhost.conf" + fi + + # logrotate + insinto /etc/logrotate.d + newins "${FILESDIR}"/redmine.logrotate redmine + + newconfd "${FILESDIR}/${PN}.confd" ${PN} + newinitd "${FILESDIR}/${PN}-3.initd" ${PN} + doenvd "${T}/50${PN}" +} + +pkg_postinst() { + if [[ -e "${EROOT}/${REDMINE_DIR}/config/initializers/session_store.rb" \ + || -e "${EROOT}/${REDMINE_DIR}/config/initializers/secret_token.rb" ]] + then + elog "Execute the following command to upgrade environment:" + elog + elog "# emerge --config \"=${CATEGORY}/${PF}\"" + elog + elog "For upgrade instructions take a look at:" + elog "http://www.redmine.org/wiki/redmine/RedmineUpgrade"; + else + elog "Execute the following command to initialize environment:" + elog + elog "# cd ${EROOT}/${REDMINE_DIR}" + elog "# cp config/database.yml.example config/database.yml" + elog "# \${EDITOR} config/database.yml" + elog "# chown redmine:redmine config/database.yml" + elog "# emerge --config \"=${CATEGORY}/${PF}\"" + elog + elog "Installation notes are at official site" + elog "http://www.redmine.org/wiki/redmine/RedmineInstall"; + fi +} + +pkg_config() { + # Remove old lock file + rm -f "${EROOT}/${REDMINE_DIR}/Gemfile.lock" + + if [[ ! -e "${EROOT}/${REDMINE_DIR}/config/database.yml" ]]; then + eerror "Copy ${EROOT}/${REDMINE_DIR}/config/database.yml.example to" + eerror "${EROOT}/${REDMINE_DIR}/config/database.yml then edit this" + eerror "file in order to configure your database settings for" + eerror "\"production\" environment." + die + fi + + local RAILS_ENV=${RAILS_ENV:-production} + if [[ ! -L /usr/bin/ruby ]]; then + eerror "/usr/bin/ruby is not a valid symlink to any ruby implementation." + eerror "Please update it via `eselect ruby`" + die + fi + if [[ $RUBY_TARGETS != *$( eselect ruby show | awk 'NR==2' | tr -d ' ' )* ]] + then + eerror "/usr/bin/ruby is currently not included in redmine's ruby targets:" + eerror "${RUBY_TARGETS}." + eerror "Please update it via `eselect ruby`" + die + fi + local RUBY=${RUBY:-ruby} + + cd "${EROOT}/${REDMINE_DIR}" || die + if [[ -e "${EROOT}/${REDMINE_DIR}/config/initializers/session_store.rb" ]] + then + einfo + einfo "Generating secret token." + einfo + rm config/initializers/session_store.rb || die + RAILS_ENV="${RAILS_ENV}" ${RUBY} -S rake generate_secret_token || die + fi + if [[ -e "${EROOT}/${REDMINE_DIR}/config/initializers/secret_token.rb" ]] + then + einfo + einfo "Upgrading database." + einfo + + einfo "Generating secret token." + # Migration from Redmine 2.x + rm config/initializers/secret_token.rb || die + RAILS_ENV="${RAILS_ENV}" ${RUBY} -S rake generate_secret_token || die + + einfo "Migrating database." + RAILS_ENV="${RAILS_ENV}" ${RUBY} -S rake db:migrate || die + einfo "Upgrading the plugin migrations." + RAILS_ENV="${RAILS_ENV}" ${RUBY} -S rake redmine:plugins:migrate || die + einfo "Clear the cache." + ${RUBY} -S rake tmp:cache:clear || die + else + einfo + einfo "Initializing database." + einfo + + einfo "Generating a session store secret." + ${RUBY} -S rake generate_secret_token || die + einfo "Creating the database structure." + RAILS_ENV="${RAILS_ENV}" ${RUBY} -S rake db:migrate || die + einfo "Populating database with default configuration data." + RAILS_ENV="${RAILS_ENV}" ${RUBY} -S rake redmine:load_default_data || die + chown redmine:redmine -R "${EROOT}//var/log/redmine/" || die + einfo + einfo "If you use sqlite3, please do not forget to change the ownership" + einfo "of the sqlite files." + einfo + einfo "# cd \"${EROOT}/${REDMINE_DIR}\"" + einfo "# chown redmine:redmine db/ db/*.sqlite3" + einfo + fi +} diff --git a/www-apps/redmine/redmine-4.2.3.ebuild b/www-apps/redmine/redmine-4.2.3.ebuild new file mode 100644 index 00000000000..bd3fc3e7a87 --- /dev/null +++ b/www-apps/redmine/redmine-4.2.3.ebuild @@ -0,0 +1,240 @@ +# Copyright 1999-2021 Gentoo Authors +# Distributed under the terms of the GNU General Public License v2 + +EAPI=7 + +USE_RUBY="ruby26" +inherit depend.apache ruby-ng + +DESCRIPTION="Flexible project management web application using the Ruby on Rails framework" +HOMEPAGE="https://www.redmine.org/"; +SRC_URI="https://www.redmine.org/releases/${P}.tar.gz"; + +KEYWORDS="~amd64" +LICENSE="GPL-2" +SLOT="0" +IUSE="fastcgi imagemagick ldap markdown +minimagick mysql passenger pdf postgres sqlite" + +ruby_add_bdepend " + fastcgi? ( dev-ruby/fcgi ) + ldap? ( dev-ruby/ruby-net-ldap ) + minimagick? ( dev-ruby/mini_magick ) + markdown? ( >=dev-ruby/redcarpet-3.5.1 ) + mysql? ( >=dev-ruby/mysql2-0.5.0:0.5 ) + passenger? ( www-apache/passenger ) + postgres? ( >=dev-ruby/pg-1.1.4:1 ) + sqlite? ( >=dev-ruby/sqlite3-1.4.0 ) + dev-ruby/actionpack-xml_parser:2 + dev-ruby/addressable + dev-ruby/csv:3 + >=dev-ruby/i18n-1.8.2:1 + >=dev-ruby/mail-2.7.1 + dev-ruby/marcel + dev-ruby/mimemagic + >=dev-ruby/mini_mime-1.0.1 + >=dev-ruby/nokogiri-1.11.1 + dev-ruby/rack-openid + dev-ruby/rails:5.2 + >=dev-ruby/rbpdf-1.20.0 + >=dev-ruby/request_store-1.5.0:0 + >=dev-ruby/roadie-rails-2.2.0 + dev-ruby/rotp + >=dev-ruby/rouge-3.26.0 + dev-ruby/rqrcode + >=dev-ruby/ruby-openid-2.9.2 + >=dev-ruby/rubyzip-2.3.0:2 +" + +RDEPEND=" + acct-group/redmine + acct-user/redmine + imagemagick? ( media-gfx/imagemagick ) + pdf? ( + app-text/ghostscript-gpl + media-gfx/imagemagick + ) +" + +REDMINE_DIR="/var/lib/${PN}" + +all_ruby_prepare() { + rm -fr log files/delete.me .github || die + + # bug #406605 + rm .{git,hg}ignore || die + + # newenvd not working here + cat > "${T}/50${PN}" <<-EOF || die + CONFIG_PROTECT="${EROOT}/${REDMINE_DIR}/config" + CONFIG_PROTECT_MASK="${EROOT}/${REDMINE_DIR}/config/locales ${EROOT}/${REDMINE_DIR}/config/settings.yml" + EOF + + # Fixing versions in Gemfile + sed -i -e "s/~>/>=/g" Gemfile || die + + # bug #724464 + sed -i -e "s/gem 'rails',.*/gem 'rails', '~>5.2.6'/" Gemfile || die + + sed -i -e "/group :development do/,/end$/d" Gemfile || die + sed -i -e "/group :test do/,/end$/d" Gemfile || die + + if ! use imagemagick ; then + sed -i -e "/group :minimagick do/,/end$/d" Gemfile || die + fi + if ! use ldap ; then + # remove ldap stuff module if disabled to avoid #413779 + use ldap || rm app/models/auth_source_ldap.rb || die + sed -i -e "/group :ldap do/,/end$/d" Gemfile || die + fi + if ! use markdown ; then + sed -i -e "/group :markdown do/,/end$/d" Gemfile || die + fi + # Additional dependency for Gemfile (#657156) + if use fastcgi; then + echo "gem 'fcgi'" > Gemfile.local + fi +} + +all_ruby_install() { + dodoc doc/* README.rdoc + rm -r doc test appveyor.yml CONTRIBUTING.md README.rdoc || die + + keepdir /var/log/${PN} + + insinto "${REDMINE_DIR}" + doins -r . + insinto "${REDMINE_DIR}/config" + doins "${FILESDIR}/additional_environment.rb" + keepdir "${REDMINE_DIR}"/{app/views/previews,files,public/plugin_assets,vendor} + keepdir "${REDMINE_DIR}"/tmp/{cache,imports,sessions,sockets} + + fowners -R redmine:redmine \ + "${REDMINE_DIR}/config.ru" \ + "${REDMINE_DIR}/config" \ + "${REDMINE_DIR}/files" \ + "${REDMINE_DIR}/public/plugin_assets" \ + "${REDMINE_DIR}/tmp" \ + /var/log/${PN} + + fowners redmine:redmine "${REDMINE_DIR}" + + # protect sensitive data, see bug #406605 + fperms -R go-rwx \ + "${REDMINE_DIR}/config" \ + "${REDMINE_DIR}/files" \ + "${REDMINE_DIR}/tmp" \ + /var/log/${PN} + + if use passenger; then + has_apache + insinto "${APACHE_VHOSTS_CONFDIR}" + doins "${FILESDIR}/10_redmine_vhost.conf" + fi + + # logrotate + insinto /etc/logrotate.d + newins "${FILESDIR}"/redmine.logrotate redmine + + newconfd "${FILESDIR}/${PN}.confd" ${PN} + newinitd "${FILESDIR}/${PN}-3.initd" ${PN} + doenvd "${T}/50${PN}" +} + +pkg_postinst() { + if [[ -e "${EROOT}/${REDMINE_DIR}/config/initializers/session_store.rb" \ + || -e "${EROOT}/${REDMINE_DIR}/config/initializers/secret_token.rb" ]] + then + elog "Execute the following command to upgrade environment:" + elog + elog "# emerge --config \"=${CATEGORY}/${PF}\"" + elog + elog "For upgrade instructions take a look at:" + elog "http://www.redmine.org/wiki/redmine/RedmineUpgrade"; + else + elog "Execute the following command to initialize environment:" + elog + elog "# cd ${EROOT}/${REDMINE_DIR}" + elog "# cp config/database.yml.example config/database.yml" + elog "# \${EDITOR} config/database.yml" + elog "# chown redmine:redmine config/database.yml" + elog "# emerge --config \"=${CATEGORY}/${PF}\"" + elog + elog "Installation notes are at official site" + elog "http://www.redmine.org/wiki/redmine/RedmineInstall"; + fi +} + +pkg_config() { + # Remove old lock file + rm -f "${EROOT}/${REDMINE_DIR}/Gemfile.lock" + + if [[ ! -e "${EROOT}/${REDMINE_DIR}/config/database.yml" ]]; then + eerror "Copy ${EROOT}/${REDMINE_DIR}/config/database.yml.example to" + eerror "${EROOT}/${REDMINE_DIR}/config/database.yml then edit this" + eerror "file in order to configure your database settings for" + eerror "\"production\" environment." + die + fi + + local RAILS_ENV=${RAILS_ENV:-production} + if [[ ! -L /usr/bin/ruby ]]; then + eerror "/usr/bin/ruby is not a valid symlink to any ruby implementation." + eerror "Please update it via `eselect ruby`" + die + fi + if [[ $RUBY_TARGETS != *$( eselect ruby show | awk 'NR==2' | tr -d ' ' )* ]] + then + eerror "/usr/bin/ruby is currently not included in redmine's ruby targets:" + eerror "${RUBY_TARGETS}." + eerror "Please update it via `eselect ruby`" + die + fi + local RUBY=${RUBY:-ruby} + + cd "${EROOT}/${REDMINE_DIR}" || die + if [[ -e "${EROOT}/${REDMINE_DIR}/config/initializers/session_store.rb" ]] + then + einfo + einfo "Generating secret token." + einfo + rm config/initializers/session_store.rb || die + RAILS_ENV="${RAILS_ENV}" ${RUBY} -S rake generate_secret_token || die + fi + if [[ -e "${EROOT}/${REDMINE_DIR}/config/initializers/secret_token.rb" ]] + then + einfo + einfo "Upgrading database." + einfo + + einfo "Generating secret token." + # Migration from Redmine 2.x + rm config/initializers/secret_token.rb || die + RAILS_ENV="${RAILS_ENV}" ${RUBY} -S rake generate_secret_token || die + + einfo "Migrating database." + RAILS_ENV="${RAILS_ENV}" ${RUBY} -S rake db:migrate || die + einfo "Upgrading the plugin migrations." + RAILS_ENV="${RAILS_ENV}" ${RUBY} -S rake redmine:plugins:migrate || die + einfo "Clear the cache." + ${RUBY} -S rake tmp:cache:clear || die + else + einfo + einfo "Initializing database." + einfo + + einfo "Generating a session store secret." + ${RUBY} -S rake generate_secret_token || die + einfo "Creating the database structure." + RAILS_ENV="${RAILS_ENV}" ${RUBY} -S rake db:migrate || die + einfo "Populating database with default configuration data." + RAILS_ENV="${RAILS_ENV}" ${RUBY} -S rake redmine:load_default_data || die + chown redmine:redmine -R "${EROOT}/var/log/redmine/" || die + einfo + einfo "If you use sqlite3, please do not forget to change the ownership" + einfo "of the sqlite files." + einfo + einfo "# cd \"${EROOT}/${REDMINE_DIR}\"" + einfo "# chown redmine:redmine db/ db/*.sqlite3" + einfo + fi +}
