| 1 |
commit: 99b860baf770849dc16cb7e2b58d346144f129d7 |
| 2 |
Author: Tomáš Mózes <hydrapolic <AT> gmail <DOT> com> |
| 3 |
AuthorDate: Fri Mar 25 07:23:58 2022 +0000 |
| 4 |
Commit: Sam James <sam <AT> gentoo <DOT> org> |
| 5 |
CommitDate: Fri Mar 25 19:25:35 2022 +0000 |
| 6 |
URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=99b860ba |
| 7 |
|
| 8 |
www-apps/gitea: security bump to 1.16.5 |
| 9 |
|
| 10 |
Bug: https://bugs.gentoo.org/835932 |
| 11 |
Closes: https://bugs.gentoo.org/835376 |
| 12 |
Signed-off-by: Tomáš Mózes <hydrapolic <AT> gmail.com> |
| 13 |
Signed-off-by: Sam James <sam <AT> gentoo.org> |
| 14 |
|
| 15 |
www-apps/gitea/Manifest | 1 + |
| 16 |
www-apps/gitea/gitea-1.16.5.ebuild | 107 +++++++++++++++++++++++++++++++++++++ |
| 17 |
2 files changed, 108 insertions(+) |
| 18 |
|
| 19 |
diff --git a/www-apps/gitea/Manifest b/www-apps/gitea/Manifest |
| 20 |
index c7c4b0d52fb8..878c1f5000f2 100644 |
| 21 |
--- a/www-apps/gitea/Manifest |
| 22 |
+++ b/www-apps/gitea/Manifest |
| 23 |
@@ -1 +1,2 @@ |
| 24 |
DIST gitea-1.16.4.tar.gz 49747172 BLAKE2B cab622fd0014b7f9737674973d978055bc02b390c3bb522b3f462ac136eb2a51b335ae7223ed62cd0481bebb5bdbac442fa6c5d36f6b0a8f91f76e43cb44f2f7 SHA512 880a73cf161564e7dddb432a6ae3274896fd8825718f7bb84ec86aa1b36644789914d0fb390e7b5d7d8d0b47078ded3319e20149c677aeefadf8c79735383de0 |
| 25 |
+DIST gitea-1.16.5.tar.gz 53178954 BLAKE2B 67c378a46eab8e374b1a5b91d86e558c6ae06e24a23cb0d670f112573e0606c3ee7f700047f703a73b19f39b216597e3a05c3602e01ecfb09f146515545d3687 SHA512 3c367155a97809d587879b023979ad198106040c362e6d5e6df26cad384c614aaac1c47d84bcac0177a5b5546c4a76e95cfff9cf76b411226c0b1aa618d4d4b3 |
| 26 |
|
| 27 |
diff --git a/www-apps/gitea/gitea-1.16.5.ebuild b/www-apps/gitea/gitea-1.16.5.ebuild |
| 28 |
new file mode 100644 |
| 29 |
index 000000000000..eaeda1a3f382 |
| 30 |
--- /dev/null |
| 31 |
+++ b/www-apps/gitea/gitea-1.16.5.ebuild |
| 32 |
@@ -0,0 +1,107 @@ |
| 33 |
+# Copyright 2016-2022 Gentoo Authors |
| 34 |
+# Distributed under the terms of the GNU General Public License v2 |
| 35 |
+ |
| 36 |
+EAPI=8 |
| 37 |
+ |
| 38 |
+inherit fcaps go-module tmpfiles systemd |
| 39 |
+ |
| 40 |
+DESCRIPTION="A painless self-hosted Git service" |
| 41 |
+HOMEPAGE="https://gitea.io https://github.com/go-gitea/gitea" |
| 42 |
+SRC_URI="https://github.com/go-gitea/gitea/releases/download/v${PV}/gitea-src-${PV}.tar.gz -> ${P}.tar.gz" |
| 43 |
+KEYWORDS="~amd64 ~arm ~arm64" |
| 44 |
+S="${WORKDIR}" |
| 45 |
+ |
| 46 |
+LICENSE="Apache-2.0 BSD BSD-2 ISC MIT MPL-2.0" |
| 47 |
+SLOT="0" |
| 48 |
+IUSE="+acct pam sqlite" |
| 49 |
+ |
| 50 |
+DEPEND=" |
| 51 |
+ acct? ( |
| 52 |
+ acct-group/git |
| 53 |
+ acct-user/git[gitea] ) |
| 54 |
+ pam? ( sys-libs/pam )" |
| 55 |
+RDEPEND="${DEPEND} |
| 56 |
+ dev-vcs/git" |
| 57 |
+ |
| 58 |
+DOCS=( |
| 59 |
+ custom/conf/app.example.ini CONTRIBUTING.md README.md |
| 60 |
+) |
| 61 |
+FILECAPS=( |
| 62 |
+ -m 711 cap_net_bind_service+ep usr/bin/gitea |
| 63 |
+) |
| 64 |
+ |
| 65 |
+RESTRICT="test" |
| 66 |
+ |
| 67 |
+src_prepare() { |
| 68 |
+ default |
| 69 |
+ |
| 70 |
+ local sedcmds=( |
| 71 |
+ -e "s#^ROOT =#ROOT = ${EPREFIX}/var/lib/gitea/gitea-repositories#" |
| 72 |
+ -e "s#^ROOT_PATH =#ROOT_PATH = ${EPREFIX}/var/log/gitea#" |
| 73 |
+ -e "s#^APP_DATA_PATH = data#APP_DATA_PATH = ${EPREFIX}/var/lib/gitea/data#" |
| 74 |
+ -e "s#^HTTP_ADDR = 0.0.0.0#HTTP_ADDR = 127.0.0.1#" |
| 75 |
+ -e "s#^MODE = console#MODE = file#" |
| 76 |
+ -e "s#^LEVEL = Trace#LEVEL = Info#" |
| 77 |
+ -e "s#^LOG_SQL = true#LOG_SQL = false#" |
| 78 |
+ -e "s#^DISABLE_ROUTER_LOG = false#DISABLE_ROUTER_LOG = true#" |
| 79 |
+ ) |
| 80 |
+ |
| 81 |
+ sed -i "${sedcmds[@]}" custom/conf/app.example.ini || die |
| 82 |
+ if use sqlite ; then |
| 83 |
+ sed -i -e "s#^DB_TYPE = .*#DB_TYPE = sqlite3#" custom/conf/app.example.ini || die |
| 84 |
+ fi |
| 85 |
+} |
| 86 |
+ |
| 87 |
+src_compile() { |
| 88 |
+ local gitea_tags=( |
| 89 |
+ bindata |
| 90 |
+ $(usev pam) |
| 91 |
+ $(usex sqlite 'sqlite sqlite_unlock_notify' '') |
| 92 |
+ ) |
| 93 |
+ local gitea_settings=( |
| 94 |
+ "-X code.gitea.io/gitea/modules/setting.CustomConf=${EPREFIX}/etc/gitea/app.ini" |
| 95 |
+ "-X code.gitea.io/gitea/modules/setting.CustomPath=${EPREFIX}/var/lib/gitea/custom" |
| 96 |
+ "-X code.gitea.io/gitea/modules/setting.AppWorkPath=${EPREFIX}/var/lib/gitea" |
| 97 |
+ ) |
| 98 |
+ local makeenv=( |
| 99 |
+ DRONE_TAG="${PV}" |
| 100 |
+ LDFLAGS="-extldflags \"${LDFLAGS}\" ${gitea_settings[*]}" |
| 101 |
+ TAGS="${gitea_tags[*]}" |
| 102 |
+ ) |
| 103 |
+ |
| 104 |
+ env "${makeenv[@]}" emake backend |
| 105 |
+} |
| 106 |
+ |
| 107 |
+src_install() { |
| 108 |
+ dobin gitea |
| 109 |
+ |
| 110 |
+ einstalldocs |
| 111 |
+ |
| 112 |
+ newconfd "${FILESDIR}/gitea.confd-r1" gitea |
| 113 |
+ newinitd "${FILESDIR}/gitea.initd-r3" gitea |
| 114 |
+ newtmpfiles - gitea.conf <<-EOF |
| 115 |
+ d /run/gitea 0755 git git |
| 116 |
+ EOF |
| 117 |
+ systemd_newunit "${FILESDIR}"/gitea.service-r3 gitea.service |
| 118 |
+ |
| 119 |
+ insinto /etc/gitea |
| 120 |
+ newins custom/conf/app.example.ini app.ini |
| 121 |
+ if use acct; then |
| 122 |
+ fowners root:git /etc/gitea/{,app.ini} |
| 123 |
+ fperms g+w,o-rwx /etc/gitea/{,app.ini} |
| 124 |
+ |
| 125 |
+ diropts -m0750 -o git -g git |
| 126 |
+ keepdir /var/lib/gitea /var/lib/gitea/custom /var/lib/gitea/data |
| 127 |
+ keepdir /var/log/gitea |
| 128 |
+ fi |
| 129 |
+} |
| 130 |
+ |
| 131 |
+pkg_postinst() { |
| 132 |
+ fcaps_pkg_postinst |
| 133 |
+ tmpfiles_process gitea.conf |
| 134 |
+ |
| 135 |
+ ewarn "The default JWT signing algorithm changed in 1.15.0 from HS256 (symmetric) to" |
| 136 |
+ ewarn "RS256 (asymmetric). Gitea OAuth2 tokens (and potentially client secrets) will" |
| 137 |
+ ewarn "need to be regenerated unless you change your JWT_SIGNING_ALGORITHM back to HS256." |
| 138 |
+ ewarn "For other breaking changes, see <https://github.com/go-gitea/gitea/releases/tag/v1.15.0>." |
| 139 |
+} |
Archives