1 |
commit: 99b860baf770849dc16cb7e2b58d346144f129d7 |
2 |
Author: Tomáš Mózes <hydrapolic <AT> gmail <DOT> com> |
3 |
AuthorDate: Fri Mar 25 07:23:58 2022 +0000 |
4 |
Commit: Sam James <sam <AT> gentoo <DOT> org> |
5 |
CommitDate: Fri Mar 25 19:25:35 2022 +0000 |
6 |
URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=99b860ba |
7 |
|
8 |
www-apps/gitea: security bump to 1.16.5 |
9 |
|
10 |
Bug: https://bugs.gentoo.org/835932 |
11 |
Closes: https://bugs.gentoo.org/835376 |
12 |
Signed-off-by: Tomáš Mózes <hydrapolic <AT> gmail.com> |
13 |
Signed-off-by: Sam James <sam <AT> gentoo.org> |
14 |
|
15 |
www-apps/gitea/Manifest | 1 + |
16 |
www-apps/gitea/gitea-1.16.5.ebuild | 107 +++++++++++++++++++++++++++++++++++++ |
17 |
2 files changed, 108 insertions(+) |
18 |
|
19 |
diff --git a/www-apps/gitea/Manifest b/www-apps/gitea/Manifest |
20 |
index c7c4b0d52fb8..878c1f5000f2 100644 |
21 |
--- a/www-apps/gitea/Manifest |
22 |
+++ b/www-apps/gitea/Manifest |
23 |
@@ -1 +1,2 @@ |
24 |
DIST gitea-1.16.4.tar.gz 49747172 BLAKE2B cab622fd0014b7f9737674973d978055bc02b390c3bb522b3f462ac136eb2a51b335ae7223ed62cd0481bebb5bdbac442fa6c5d36f6b0a8f91f76e43cb44f2f7 SHA512 880a73cf161564e7dddb432a6ae3274896fd8825718f7bb84ec86aa1b36644789914d0fb390e7b5d7d8d0b47078ded3319e20149c677aeefadf8c79735383de0 |
25 |
+DIST gitea-1.16.5.tar.gz 53178954 BLAKE2B 67c378a46eab8e374b1a5b91d86e558c6ae06e24a23cb0d670f112573e0606c3ee7f700047f703a73b19f39b216597e3a05c3602e01ecfb09f146515545d3687 SHA512 3c367155a97809d587879b023979ad198106040c362e6d5e6df26cad384c614aaac1c47d84bcac0177a5b5546c4a76e95cfff9cf76b411226c0b1aa618d4d4b3 |
26 |
|
27 |
diff --git a/www-apps/gitea/gitea-1.16.5.ebuild b/www-apps/gitea/gitea-1.16.5.ebuild |
28 |
new file mode 100644 |
29 |
index 000000000000..eaeda1a3f382 |
30 |
--- /dev/null |
31 |
+++ b/www-apps/gitea/gitea-1.16.5.ebuild |
32 |
@@ -0,0 +1,107 @@ |
33 |
+# Copyright 2016-2022 Gentoo Authors |
34 |
+# Distributed under the terms of the GNU General Public License v2 |
35 |
+ |
36 |
+EAPI=8 |
37 |
+ |
38 |
+inherit fcaps go-module tmpfiles systemd |
39 |
+ |
40 |
+DESCRIPTION="A painless self-hosted Git service" |
41 |
+HOMEPAGE="https://gitea.io https://github.com/go-gitea/gitea" |
42 |
+SRC_URI="https://github.com/go-gitea/gitea/releases/download/v${PV}/gitea-src-${PV}.tar.gz -> ${P}.tar.gz" |
43 |
+KEYWORDS="~amd64 ~arm ~arm64" |
44 |
+S="${WORKDIR}" |
45 |
+ |
46 |
+LICENSE="Apache-2.0 BSD BSD-2 ISC MIT MPL-2.0" |
47 |
+SLOT="0" |
48 |
+IUSE="+acct pam sqlite" |
49 |
+ |
50 |
+DEPEND=" |
51 |
+ acct? ( |
52 |
+ acct-group/git |
53 |
+ acct-user/git[gitea] ) |
54 |
+ pam? ( sys-libs/pam )" |
55 |
+RDEPEND="${DEPEND} |
56 |
+ dev-vcs/git" |
57 |
+ |
58 |
+DOCS=( |
59 |
+ custom/conf/app.example.ini CONTRIBUTING.md README.md |
60 |
+) |
61 |
+FILECAPS=( |
62 |
+ -m 711 cap_net_bind_service+ep usr/bin/gitea |
63 |
+) |
64 |
+ |
65 |
+RESTRICT="test" |
66 |
+ |
67 |
+src_prepare() { |
68 |
+ default |
69 |
+ |
70 |
+ local sedcmds=( |
71 |
+ -e "s#^ROOT =#ROOT = ${EPREFIX}/var/lib/gitea/gitea-repositories#" |
72 |
+ -e "s#^ROOT_PATH =#ROOT_PATH = ${EPREFIX}/var/log/gitea#" |
73 |
+ -e "s#^APP_DATA_PATH = data#APP_DATA_PATH = ${EPREFIX}/var/lib/gitea/data#" |
74 |
+ -e "s#^HTTP_ADDR = 0.0.0.0#HTTP_ADDR = 127.0.0.1#" |
75 |
+ -e "s#^MODE = console#MODE = file#" |
76 |
+ -e "s#^LEVEL = Trace#LEVEL = Info#" |
77 |
+ -e "s#^LOG_SQL = true#LOG_SQL = false#" |
78 |
+ -e "s#^DISABLE_ROUTER_LOG = false#DISABLE_ROUTER_LOG = true#" |
79 |
+ ) |
80 |
+ |
81 |
+ sed -i "${sedcmds[@]}" custom/conf/app.example.ini || die |
82 |
+ if use sqlite ; then |
83 |
+ sed -i -e "s#^DB_TYPE = .*#DB_TYPE = sqlite3#" custom/conf/app.example.ini || die |
84 |
+ fi |
85 |
+} |
86 |
+ |
87 |
+src_compile() { |
88 |
+ local gitea_tags=( |
89 |
+ bindata |
90 |
+ $(usev pam) |
91 |
+ $(usex sqlite 'sqlite sqlite_unlock_notify' '') |
92 |
+ ) |
93 |
+ local gitea_settings=( |
94 |
+ "-X code.gitea.io/gitea/modules/setting.CustomConf=${EPREFIX}/etc/gitea/app.ini" |
95 |
+ "-X code.gitea.io/gitea/modules/setting.CustomPath=${EPREFIX}/var/lib/gitea/custom" |
96 |
+ "-X code.gitea.io/gitea/modules/setting.AppWorkPath=${EPREFIX}/var/lib/gitea" |
97 |
+ ) |
98 |
+ local makeenv=( |
99 |
+ DRONE_TAG="${PV}" |
100 |
+ LDFLAGS="-extldflags \"${LDFLAGS}\" ${gitea_settings[*]}" |
101 |
+ TAGS="${gitea_tags[*]}" |
102 |
+ ) |
103 |
+ |
104 |
+ env "${makeenv[@]}" emake backend |
105 |
+} |
106 |
+ |
107 |
+src_install() { |
108 |
+ dobin gitea |
109 |
+ |
110 |
+ einstalldocs |
111 |
+ |
112 |
+ newconfd "${FILESDIR}/gitea.confd-r1" gitea |
113 |
+ newinitd "${FILESDIR}/gitea.initd-r3" gitea |
114 |
+ newtmpfiles - gitea.conf <<-EOF |
115 |
+ d /run/gitea 0755 git git |
116 |
+ EOF |
117 |
+ systemd_newunit "${FILESDIR}"/gitea.service-r3 gitea.service |
118 |
+ |
119 |
+ insinto /etc/gitea |
120 |
+ newins custom/conf/app.example.ini app.ini |
121 |
+ if use acct; then |
122 |
+ fowners root:git /etc/gitea/{,app.ini} |
123 |
+ fperms g+w,o-rwx /etc/gitea/{,app.ini} |
124 |
+ |
125 |
+ diropts -m0750 -o git -g git |
126 |
+ keepdir /var/lib/gitea /var/lib/gitea/custom /var/lib/gitea/data |
127 |
+ keepdir /var/log/gitea |
128 |
+ fi |
129 |
+} |
130 |
+ |
131 |
+pkg_postinst() { |
132 |
+ fcaps_pkg_postinst |
133 |
+ tmpfiles_process gitea.conf |
134 |
+ |
135 |
+ ewarn "The default JWT signing algorithm changed in 1.15.0 from HS256 (symmetric) to" |
136 |
+ ewarn "RS256 (asymmetric). Gitea OAuth2 tokens (and potentially client secrets) will" |
137 |
+ ewarn "need to be regenerated unless you change your JWT_SIGNING_ALGORITHM back to HS256." |
138 |
+ ewarn "For other breaking changes, see <https://github.com/go-gitea/gitea/releases/tag/v1.15.0>." |
139 |
+} |