diff options
| author |   Tomáš Mózes <hydrapolic@gmail.com> | 2022-03-15 18:40:28 +0000 |
|---|---|---|
| committer |   Sam James <sam@gentoo.org> | 2022-03-16 17:33:00 +0000 |
| commit | 3982d928f6a2e8301ca0b5d40f4e5e2e991088bd (patch) | |
| tree | 2bff629d5f77683e9ce00133ee5ad968961e9d45 /www-apps | |
| parent | app-admin/syslog-ng: require >=bison-3.7.6 (diff) | |
| download | gentoo-3982d928f6a2e8301ca0b5d40f4e5e2e991088bd.tar.gz gentoo-3982d928f6a2e8301ca0b5d40f4e5e2e991088bd.tar.bz2 gentoo-3982d928f6a2e8301ca0b5d40f4e5e2e991088bd.zip | |
www-apps/gitea: security bump to 1.16.4
Bug: https://bugs.gentoo.org/834982
Signed-off-by: Tomáš Mózes <hydrapolic@gmail.com>
Signed-off-by: Sam James <sam@gentoo.org>
Diffstat (limited to 'www-apps')
| -rw-r--r-- | www-apps/gitea/Manifest | 1 | ||||
| -rw-r--r-- | www-apps/gitea/gitea-1.16.4.ebuild | 107 |
2 files changed, 108 insertions, 0 deletions
diff --git a/www-apps/gitea/Manifest b/www-apps/gitea/Manifest index 4c89c992fba0..98a73db2a47c 100644 --- a/www-apps/gitea/Manifest +++ b/www-apps/gitea/Manifest @@ -1 +1,2 @@ DIST gitea-1.16.3.tar.gz 49769388 BLAKE2B e3b77d2d224088cd1ad61a180e8034b4f4e3d7849181067f4d4115c2a1a4e8587f7d928a18c8b11c58fddf138cd7346ada1a551784f1eb2b16b971718c41c6de SHA512 444c7da04d725ce171653aea33210ce6240eeaf5d3e90cf46ddc908571710664a40f8189d19964387655a79fbead628a921260e9e8dfe3ccb121dd90d76be3f4 +DIST gitea-1.16.4.tar.gz 49747172 BLAKE2B cab622fd0014b7f9737674973d978055bc02b390c3bb522b3f462ac136eb2a51b335ae7223ed62cd0481bebb5bdbac442fa6c5d36f6b0a8f91f76e43cb44f2f7 SHA512 880a73cf161564e7dddb432a6ae3274896fd8825718f7bb84ec86aa1b36644789914d0fb390e7b5d7d8d0b47078ded3319e20149c677aeefadf8c79735383de0 diff --git a/www-apps/gitea/gitea-1.16.4.ebuild b/www-apps/gitea/gitea-1.16.4.ebuild new file mode 100644 index 000000000000..eaeda1a3f382 --- /dev/null +++ b/www-apps/gitea/gitea-1.16.4.ebuild @@ -0,0 +1,107 @@ +# Copyright 2016-2022 Gentoo Authors +# Distributed under the terms of the GNU General Public License v2 + +EAPI=8 + +inherit fcaps go-module tmpfiles systemd + +DESCRIPTION="A painless self-hosted Git service" +HOMEPAGE="https://gitea.io https://github.com/go-gitea/gitea" +SRC_URI="https://github.com/go-gitea/gitea/releases/download/v${PV}/gitea-src-${PV}.tar.gz -> ${P}.tar.gz" +KEYWORDS="~amd64 ~arm ~arm64" +S="${WORKDIR}" + +LICENSE="Apache-2.0 BSD BSD-2 ISC MIT MPL-2.0" +SLOT="0" +IUSE="+acct pam sqlite" + +DEPEND=" + acct? ( + acct-group/git + acct-user/git[gitea] ) + pam? ( sys-libs/pam )" +RDEPEND="${DEPEND} + dev-vcs/git" + +DOCS=( + custom/conf/app.example.ini CONTRIBUTING.md README.md +) +FILECAPS=( + -m 711 cap_net_bind_service+ep usr/bin/gitea +) + +RESTRICT="test" + +src_prepare() { + default + + local sedcmds=( + -e "s#^ROOT =#ROOT = ${EPREFIX}/var/lib/gitea/gitea-repositories#" + -e "s#^ROOT_PATH =#ROOT_PATH = ${EPREFIX}/var/log/gitea#" + -e "s#^APP_DATA_PATH = data#APP_DATA_PATH = ${EPREFIX}/var/lib/gitea/data#" + -e "s#^HTTP_ADDR = 0.0.0.0#HTTP_ADDR = 127.0.0.1#" + -e "s#^MODE = console#MODE = file#" + -e "s#^LEVEL = Trace#LEVEL = Info#" + -e "s#^LOG_SQL = true#LOG_SQL = false#" + -e "s#^DISABLE_ROUTER_LOG = false#DISABLE_ROUTER_LOG = true#" + ) + + sed -i "${sedcmds[@]}" custom/conf/app.example.ini || die + if use sqlite ; then + sed -i -e "s#^DB_TYPE = .*#DB_TYPE = sqlite3#" custom/conf/app.example.ini || die + fi +} + +src_compile() { + local gitea_tags=( + bindata + $(usev pam) + $(usex sqlite 'sqlite sqlite_unlock_notify' '') + ) + local gitea_settings=( + "-X code.gitea.io/gitea/modules/setting.CustomConf=${EPREFIX}/etc/gitea/app.ini" + "-X code.gitea.io/gitea/modules/setting.CustomPath=${EPREFIX}/var/lib/gitea/custom" + "-X code.gitea.io/gitea/modules/setting.AppWorkPath=${EPREFIX}/var/lib/gitea" + ) + local makeenv=( + DRONE_TAG="${PV}" + LDFLAGS="-extldflags \"${LDFLAGS}\" ${gitea_settings[*]}" + TAGS="${gitea_tags[*]}" + ) + + env "${makeenv[@]}" emake backend +} + +src_install() { + dobin gitea + + einstalldocs + + newconfd "${FILESDIR}/gitea.confd-r1" gitea + newinitd "${FILESDIR}/gitea.initd-r3" gitea + newtmpfiles - gitea.conf <<-EOF + d /run/gitea 0755 git git + EOF + systemd_newunit "${FILESDIR}"/gitea.service-r3 gitea.service + + insinto /etc/gitea + newins custom/conf/app.example.ini app.ini + if use acct; then + fowners root:git /etc/gitea/{,app.ini} + fperms g+w,o-rwx /etc/gitea/{,app.ini} + + diropts -m0750 -o git -g git + keepdir /var/lib/gitea /var/lib/gitea/custom /var/lib/gitea/data + keepdir /var/log/gitea + fi +} + +pkg_postinst() { + fcaps_pkg_postinst + tmpfiles_process gitea.conf + + ewarn "The default JWT signing algorithm changed in 1.15.0 from HS256 (symmetric) to" + ewarn "RS256 (asymmetric). Gitea OAuth2 tokens (and potentially client secrets) will" + ewarn "need to be regenerated unless you change your JWT_SIGNING_ALGORITHM back to HS256." + ewarn "For other breaking changes, see <https://github.com/go-gitea/gitea/releases/tag/v1.15.0>." +} |