From mboxrd@z Thu Jan 1 00:00:00 1970
Return-Path: <gentoo-commits+bounces-1418700-garchives=archives.gentoo.org@lists.gentoo.org>
Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80])
(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256)
(No client certificate requested)
by finch.gentoo.org (Postfix) with ESMTPS id 76D57158094
for <garchives@archives.gentoo.org>; Fri, 15 Jul 2022 15:09:01 +0000 (UTC)
Received: from pigeon.gentoo.org (localhost [127.0.0.1])
by pigeon.gentoo.org (Postfix) with SMTP id 7C7672BC01F;
Fri, 15 Jul 2022 15:09:00 +0000 (UTC)
Received: from smtp.gentoo.org (woodpecker.gentoo.org [140.211.166.183])
(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256)
(No client certificate requested)
by pigeon.gentoo.org (Postfix) with ESMTPS id 420D92BC01F
for <gentoo-commits@lists.gentoo.org>; Fri, 15 Jul 2022 15:09:00 +0000 (UTC)
Received: from oystercatcher.gentoo.org (oystercatcher.gentoo.org [148.251.78.52])
(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256)
(No client certificate requested)
by smtp.gentoo.org (Postfix) with ESMTPS id 3FCF4341222
for <gentoo-commits@lists.gentoo.org>; Fri, 15 Jul 2022 15:08:59 +0000 (UTC)
Received: from localhost.localdomain (localhost [IPv6:::1])
by oystercatcher.gentoo.org (Postfix) with ESMTP id 7BF604FB
for <gentoo-commits@lists.gentoo.org>; Fri, 15 Jul 2022 15:08:57 +0000 (UTC)
From: "Sam James" <sam@gentoo.org>
To: gentoo-commits@lists.gentoo.org
Content-Transfer-Encoding: 8bit
Content-type: text/plain; charset=UTF-8
Reply-To: gentoo-dev@lists.gentoo.org, "Sam James" <sam@gentoo.org>
Message-ID: <1657897722.fd880c7576c4f6aabf009fa63b95ba1e4dc1fd4e.sam@gentoo>
Subject: [gentoo-commits] repo/gentoo:master commit in: www-apps/redmine/, www-apps/redmine/files/
X-VCS-Repository: repo/gentoo
X-VCS-Files: www-apps/redmine/Manifest www-apps/redmine/files/redmine-4.2.7-rails-yaml-safe_load.patch www-apps/redmine/redmine-4.2.7.ebuild
X-VCS-Directories: www-apps/redmine/files/ www-apps/redmine/
X-VCS-Committer: sam
X-VCS-Committer-Name: Sam James
X-VCS-Revision: fd880c7576c4f6aabf009fa63b95ba1e4dc1fd4e
X-VCS-Branch: master
Date: Fri, 15 Jul 2022 15:08:57 +0000 (UTC)
Precedence: bulk
List-Post: <mailto:gentoo-commits@lists.gentoo.org>
List-Help: <mailto:gentoo-commits+help@lists.gentoo.org>
List-Unsubscribe: <mailto:gentoo-commits+unsubscribe@lists.gentoo.org>
List-Subscribe: <mailto:gentoo-commits+subscribe@lists.gentoo.org>
List-Id: Gentoo Linux mail <gentoo-commits.gentoo.org>
X-BeenThere: gentoo-commits@lists.gentoo.org
X-Auto-Response-Suppress: DR, RN, NRN, OOF, AutoReply
X-Archives-Salt: 99749987-53e4-4dab-a0c1-97f5173c7b0c
X-Archives-Hash: 6cde38405388cf4c712aa2fa92f32067
commit: fd880c7576c4f6aabf009fa63b95ba1e4dc1fd4e
Author: Azamat H. Hackimov <azamat.hackimov <AT> gmail <DOT> com>
AuthorDate: Wed Jul 13 11:00:55 2022 +0000
Commit: Sam James <sam <AT> gentoo <DOT> org>
CommitDate: Fri Jul 15 15:08:42 2022 +0000
URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=fd880c75
www-apps/redmine: add 4.2.7
Closes: https://bugs.gentoo.org/852740
Bug: https://bugs.gentoo.org/852743
Signed-off-by: Azamat H. Hackimov <azamat.hackimov <AT> gmail.com>
Signed-off-by: Sam James <sam <AT> gentoo.org>
www-apps/redmine/Manifest | 1 +
.../files/redmine-4.2.7-rails-yaml-safe_load.patch | 29 +++
www-apps/redmine/redmine-4.2.7.ebuild | 244 +++++++++++++++++++++
3 files changed, 274 insertions(+)
diff --git a/www-apps/redmine/Manifest b/www-apps/redmine/Manifest
index 5fc9ac894ead..b8a4435a7d82 100644
--- a/www-apps/redmine/Manifest
+++ b/www-apps/redmine/Manifest
@@ -1,2 +1,3 @@
DIST redmine-4.1.5.tar.gz 2722929 BLAKE2B 83c9c974bbfecfcb796833640ed9b3cb4b2e2550714e702d9b024a41f676c2c71f8e6f4119b2519654556451313a0276a4dbe307f41747466b0034f415cde662 SHA512 cf4020bff11b13986989e312db1e7ee459f4391ec7326f59a4f493fb0c95be87d19196377da60ac083801b7c792dc012769350b684e20dd887c431c0c18cc851
DIST redmine-4.2.3.tar.gz 3039136 BLAKE2B 68656da4a9a43139ab78b70e7e7364cbc776a75ea3069962086c49ea2ca965739efc47d6709b0068d94a884eaa6b56a641826ffbb16276cc8d686374a88d9e75 SHA512 456117b0d5d72ee58c87def84327e29f79937fa71098b48a80103e3e6653648c0df46afcc4f533803384ba7413e690538deeee33e263d86dd9e4e5dec65144e3
+DIST redmine-4.2.7.tar.gz 3042676 BLAKE2B 023448a6b1ea20ef0d924def19f661a6d1099f3ab6fe0c887e4e8782773bcc63488075d86f3dc70d8ebf87d44e6b6b242be4a1fb4b5cce5cc361f6f39e99e6d4 SHA512 6654aec3981de8b26de416d253c22c91d881dd7df54192ce41e6e99213c6f4b0947ce213fe484c18117f8701d0528ebb23fe3acf335f84638eeddd972b601be9
diff --git a/www-apps/redmine/files/redmine-4.2.7-rails-yaml-safe_load.patch b/www-apps/redmine/files/redmine-4.2.7-rails-yaml-safe_load.patch
new file mode 100644
index 000000000000..dcd4bdb51073
--- /dev/null
+++ b/www-apps/redmine/files/redmine-4.2.7-rails-yaml-safe_load.patch
@@ -0,0 +1,29 @@
+From 8eb7563204e6c9b3a1fcff453c08ed4824b20bc6 Mon Sep 17 00:00:00 2001
+From: "Azamat H. Hackimov" <azamat.hackimov@gmail.com>
+Date: Wed, 13 Jul 2022 13:52:18 +0300
+Subject: [PATCH] Added compatibility option for recent Rails
+
+Rails 5.2.8.1, 6.0.5.1, 6.1.6.1 and 7.0.3.1 fixes CVE-2022-32224 which
+breaks compatibility with old implementation of YAML.unsafe_load.
+
+Added `config.active_record.yaml_column_permitted_classes = [Symbol]` to
+configuration of application to workaround issue.
+---
+ config/application.rb | 1 +
+ 1 file changed, 1 insertion(+)
+
+diff --git a/config/application.rb b/config/application.rb
+index bba468f38..78557d376 100644
+--- a/config/application.rb
++++ b/config/application.rb
+@@ -32,6 +32,7 @@ module RedmineApp
+
+ config.active_record.store_full_sti_class = true
+ config.active_record.default_timezone = :local
++ config.active_record.yaml_column_permitted_classes = [Symbol]
+
+ config.action_mailer.delivery_job = "ActionMailer::MailDeliveryJob"
+
+--
+2.35.1
+
diff --git a/www-apps/redmine/redmine-4.2.7.ebuild b/www-apps/redmine/redmine-4.2.7.ebuild
new file mode 100644
index 000000000000..373621607812
--- /dev/null
+++ b/www-apps/redmine/redmine-4.2.7.ebuild
@@ -0,0 +1,244 @@
+# Copyright 1999-2022 Gentoo Authors
+# Distributed under the terms of the GNU General Public License v2
+
+EAPI=7
+
+USE_RUBY="ruby26 ruby27"
+inherit depend.apache ruby-ng
+
+DESCRIPTION="Flexible project management web application using the Ruby on Rails framework"
+HOMEPAGE="https://www.redmine.org/"
+SRC_URI="https://www.redmine.org/releases/${P}.tar.gz"
+
+KEYWORDS="~amd64"
+LICENSE="GPL-2"
+SLOT="0"
+IUSE="fastcgi imagemagick ldap markdown +minimagick mysql passenger pdf postgres sqlite"
+
+PATCHES=(
+ "${FILESDIR}/${P}-rails-yaml-safe_load.patch"
+)
+
+ruby_add_bdepend "
+ fastcgi? ( dev-ruby/fcgi )
+ ldap? ( dev-ruby/ruby-net-ldap )
+ minimagick? ( dev-ruby/mini_magick )
+ markdown? ( >=dev-ruby/redcarpet-3.5.1 )
+ mysql? ( >=dev-ruby/mysql2-0.5.0:0.5 )
+ passenger? ( www-apache/passenger )
+ postgres? ( >=dev-ruby/pg-1.1.4:1 )
+ sqlite? ( >=dev-ruby/sqlite3-1.4.0 )
+ dev-ruby/actionpack-xml_parser:2
+ dev-ruby/addressable
+ dev-ruby/csv:3
+ >=dev-ruby/i18n-1.8.2:1
+ >=dev-ruby/mail-2.7.1
+ dev-ruby/marcel
+ dev-ruby/mimemagic
+ >=dev-ruby/mini_mime-1.0.1
+ >=dev-ruby/nokogiri-1.11.1
+ dev-ruby/rack-openid
+ >=dev-ruby/rails-5.2.8.1:5.2
+ >=dev-ruby/rbpdf-1.20.0
+ >=dev-ruby/request_store-1.5.0:0
+ >=dev-ruby/roadie-rails-2.2.0:2
+ dev-ruby/rotp
+ >=dev-ruby/rouge-3.26.0
+ dev-ruby/rqrcode
+ >=dev-ruby/ruby-openid-2.9.2
+ >=dev-ruby/rubyzip-2.3.0:2
+"
+
+RDEPEND="
+ acct-group/redmine
+ acct-user/redmine
+ imagemagick? ( media-gfx/imagemagick )
+ pdf? (
+ app-text/ghostscript-gpl
+ media-gfx/imagemagick
+ )
+"
+
+REDMINE_DIR="/var/lib/${PN}"
+
+all_ruby_prepare() {
+ rm -fr log files/delete.me .github || die
+
+ # bug #406605
+ rm .{git,hg}ignore || die
+
+ # newenvd not working here
+ cat > "${T}/50${PN}" <<-EOF || die
+ CONFIG_PROTECT="${EROOT}/${REDMINE_DIR}/config"
+ CONFIG_PROTECT_MASK="${EROOT}/${REDMINE_DIR}/config/locales ${EROOT}/${REDMINE_DIR}/config/settings.yml"
+ EOF
+
+ # Fixing versions in Gemfile
+ sed -i -e "s/~>/>=/g" Gemfile || die
+
+ # bug #724464
+ sed -i -e "s/gem 'rails',.*/gem 'rails', '~>5.2.6'/" Gemfile || die
+
+ sed -i -e "/group :development do/,/end$/d" Gemfile || die
+ sed -i -e "/group :test do/,/end$/d" Gemfile || die
+
+ if ! use imagemagick ; then
+ sed -i -e "/group :minimagick do/,/end$/d" Gemfile || die
+ fi
+ if ! use ldap ; then
+ # remove ldap stuff module if disabled to avoid #413779
+ use ldap || rm app/models/auth_source_ldap.rb || die
+ sed -i -e "/group :ldap do/,/end$/d" Gemfile || die
+ fi
+ if ! use markdown ; then
+ sed -i -e "/group :markdown do/,/end$/d" Gemfile || die
+ fi
+ # Additional dependency for Gemfile (#657156)
+ if use fastcgi; then
+ echo "gem 'fcgi'" > Gemfile.local
+ fi
+}
+
+all_ruby_install() {
+ dodoc doc/* README.rdoc
+ rm -r doc test appveyor.yml CONTRIBUTING.md README.rdoc || die
+
+ keepdir /var/log/${PN}
+
+ insinto "${REDMINE_DIR}"
+ doins -r .
+ insinto "${REDMINE_DIR}/config"
+ doins "${FILESDIR}/additional_environment.rb"
+ keepdir "${REDMINE_DIR}"/{app/views/previews,files,public/plugin_assets,vendor}
+ keepdir "${REDMINE_DIR}"/tmp/{cache,imports,sessions,sockets}
+
+ fowners -R redmine:redmine \
+ "${REDMINE_DIR}/config.ru" \
+ "${REDMINE_DIR}/config" \
+ "${REDMINE_DIR}/files" \
+ "${REDMINE_DIR}/public/plugin_assets" \
+ "${REDMINE_DIR}/tmp" \
+ /var/log/${PN}
+
+ fowners redmine:redmine "${REDMINE_DIR}"
+
+ # protect sensitive data, see bug #406605
+ fperms -R go-rwx \
+ "${REDMINE_DIR}/config" \
+ "${REDMINE_DIR}/files" \
+ "${REDMINE_DIR}/tmp" \
+ /var/log/${PN}
+
+ if use passenger; then
+ has_apache
+ insinto "${APACHE_VHOSTS_CONFDIR}"
+ doins "${FILESDIR}/10_redmine_vhost.conf"
+ fi
+
+ # logrotate
+ insinto /etc/logrotate.d
+ newins "${FILESDIR}"/redmine.logrotate redmine
+
+ newconfd "${FILESDIR}/${PN}.confd" ${PN}
+ newinitd "${FILESDIR}/${PN}-3.initd" ${PN}
+ doenvd "${T}/50${PN}"
+}
+
+pkg_postinst() {
+ if [[ -e "${EROOT}/${REDMINE_DIR}/config/initializers/session_store.rb" \
+ || -e "${EROOT}/${REDMINE_DIR}/config/initializers/secret_token.rb" ]]
+ then
+ elog "Execute the following command to upgrade environment:"
+ elog
+ elog "# emerge --config \"=${CATEGORY}/${PF}\""
+ elog
+ elog "For upgrade instructions take a look at:"
+ elog "http://www.redmine.org/wiki/redmine/RedmineUpgrade"
+ else
+ elog "Execute the following command to initialize environment:"
+ elog
+ elog "# cd ${EROOT}/${REDMINE_DIR}"
+ elog "# cp config/database.yml.example config/database.yml"
+ elog "# \${EDITOR} config/database.yml"
+ elog "# chown redmine:redmine config/database.yml"
+ elog "# emerge --config \"=${CATEGORY}/${PF}\""
+ elog
+ elog "Installation notes are at official site"
+ elog "http://www.redmine.org/wiki/redmine/RedmineInstall"
+ fi
+}
+
+pkg_config() {
+ # Remove old lock file
+ rm -f "${EROOT}/${REDMINE_DIR}/Gemfile.lock"
+
+ if [[ ! -e "${EROOT}/${REDMINE_DIR}/config/database.yml" ]]; then
+ eerror "Copy ${EROOT}/${REDMINE_DIR}/config/database.yml.example to"
+ eerror "${EROOT}/${REDMINE_DIR}/config/database.yml then edit this"
+ eerror "file in order to configure your database settings for"
+ eerror "\"production\" environment."
+ die
+ fi
+
+ local RAILS_ENV=${RAILS_ENV:-production}
+ if [[ ! -L /usr/bin/ruby ]]; then
+ eerror "/usr/bin/ruby is not a valid symlink to any ruby implementation."
+ eerror "Please update it via `eselect ruby`"
+ die
+ fi
+ if [[ $RUBY_TARGETS != *$( eselect ruby show | awk 'NR==2' | tr -d ' ' )* ]]
+ then
+ eerror "/usr/bin/ruby is currently not included in redmine's ruby targets:"
+ eerror "${RUBY_TARGETS}."
+ eerror "Please update it via `eselect ruby`"
+ die
+ fi
+ local RUBY=${RUBY:-ruby}
+
+ cd "${EROOT}/${REDMINE_DIR}" || die
+ if [[ -e "${EROOT}/${REDMINE_DIR}/config/initializers/session_store.rb" ]]
+ then
+ einfo
+ einfo "Generating secret token."
+ einfo
+ rm config/initializers/session_store.rb || die
+ RAILS_ENV="${RAILS_ENV}" ${RUBY} -S rake generate_secret_token || die
+ fi
+ if [[ -e "${EROOT}/${REDMINE_DIR}/config/initializers/secret_token.rb" ]]
+ then
+ einfo
+ einfo "Upgrading database."
+ einfo
+
+ einfo "Generating secret token."
+ # Migration from Redmine 2.x
+ rm config/initializers/secret_token.rb || die
+ RAILS_ENV="${RAILS_ENV}" ${RUBY} -S rake generate_secret_token || die
+
+ einfo "Migrating database."
+ RAILS_ENV="${RAILS_ENV}" ${RUBY} -S rake db:migrate || die
+ einfo "Upgrading the plugin migrations."
+ RAILS_ENV="${RAILS_ENV}" ${RUBY} -S rake redmine:plugins:migrate || die
+ einfo "Clear the cache."
+ ${RUBY} -S rake tmp:cache:clear || die
+ else
+ einfo
+ einfo "Initializing database."
+ einfo
+
+ einfo "Generating a session store secret."
+ ${RUBY} -S rake generate_secret_token || die
+ einfo "Creating the database structure."
+ RAILS_ENV="${RAILS_ENV}" ${RUBY} -S rake db:migrate || die
+ einfo "Populating database with default configuration data."
+ RAILS_ENV="${RAILS_ENV}" ${RUBY} -S rake redmine:load_default_data || die
+ chown redmine:redmine -R "${EROOT}/var/log/redmine/" || die
+ einfo
+ einfo "If you use sqlite3, please do not forget to change the ownership"
+ einfo "of the sqlite files."
+ einfo
+ einfo "# cd \"${EROOT}/${REDMINE_DIR}\""
+ einfo "# chown redmine:redmine db/ db/*.sqlite3"
+ einfo
+ fi
+}