pool/redis
SHA256
4
0
Fork 1
Code Issues Pull Requests Packages Projects Releases Wiki Activity
145 Commits 2 Branches 0 Tags 7 MiB
Makefile 100%
ce9b309603
Go to file
Martin Pluskal ce9b309603 Accepting request 1098376 from home:dspinella:branches:server:database 
- redis 7.0.12:
  * (CVE-2022-24834) A specially crafted Lua script executing in Redis can trigger
    a heap overflow in the cjson and cmsgpack libraries, and result in heap
    corruption and potentially remote code execution. The problem exists in all
    versions of Redis with Lua scripting support, starting from 2.6, and affects
    only authenticated and authorized users. (bsc#1213193)
  * (CVE-2023-36824) Extracting key names from a command and a list of arguments
    may, in some cases, trigger a heap overflow and result in reading random heap
    memory, heap corruption and potentially remote code execution. Specifically:
    using COMMAND GETKEYS* and validation of key names in ACL rules. (bsc#1213249)
  * Re-enable downscale rehashing while there is a fork child
  * Fix possible hang in HRANDFIELD, SRANDMEMBER, ZRANDMEMBER when used with <count>
  * Improve fairness issue in RANDOMKEY, HRANDFIELD, SRANDMEMBER, ZRANDMEMBER,
    SPOP, and eviction
  * Fix WAIT to be effective after a blocked module command being unblocked
  * Avoid unnecessary full sync after master restart in a rare case

OBS-URL: https://build.opensuse.org/request/show/1098376
OBS-URL: https://build.opensuse.org/package/show/server:database/redis?expand=0&rev=226
2023-07-12 16:56:39 +00:00
.gitattributes osc copypac from project:server:database package:regis revision:2 2010-02-24 22:49:48 +00:00
ppc-atomic.patch Accepting request 890241 from home:stroeder:branches:server:database 2021-05-04 08:23:54 +00:00
README.SUSE Accepting request 878769 from home:stroeder:branches:server:database 2021-03-18 14:23:57 +00:00
redis-7.0.12.tar.gz Accepting request 1098376 from home:dspinella:branches:server:database 2023-07-12 16:56:39 +00:00
redis-conf.patch Accepting request 878769 from home:stroeder:branches:server:database 2021-03-18 14:23:57 +00:00
redis-sentinel.target Accepting request 633784 from home:darix:apps 2018-09-06 19:15:00 +00:00
redis-sentinel@.service Accepting request 976028 from home:jsegitz:branches:server:database 2022-05-11 06:36:28 +00:00
redis-user.conf Accepting request 760070 from home:kukuk:ei-demo 2019-12-31 08:22:02 +00:00
redis.changes Accepting request 1098376 from home:dspinella:branches:server:database 2023-07-12 16:56:39 +00:00
redis.hashes Accepting request 1098376 from home:dspinella:branches:server:database 2023-07-12 16:56:39 +00:00
redis.logrotate Accepting request 180755 from home:vjt:ifad 2013-07-01 08:22:41 +00:00
redis.spec Accepting request 1098376 from home:dspinella:branches:server:database 2023-07-12 16:56:39 +00:00
redis.sysctl Accepting request 505518 from home:computersalat:devel:database 2017-06-23 11:36:02 +00:00
redis.target Accepting request 294021 from home:darix:apps 2015-04-01 16:53:07 +00:00
redis.tmpfiles.d Accepting request 876322 from home:13ilya:branches:server:database 2021-03-03 07:13:07 +00:00
redis@.service Accepting request 932205 from home:jsegitz:branches:systemdhardening:server:database 2021-11-22 10:20:26 +00:00
reproducible.patch Accepting request 752707 from home:13ilya 2019-12-02 09:15:27 +00:00

README.SUSE 

 README.SUSE
-------------

 Redis Server
==============

1. cp -a /etc/redis/default.conf.example /etc/redis/instancename.conf

We use the "cp -a" here, so that our permissions are preserved.
In case you copied the file with out the "-a"

chown root:redis  /etc/redis/instancename.conf
chmod u=rw,g=r,o= /etc/redis/instancename.conf

2. change at least pidfile, logfile and dir setting
# the pid file *has* to match your config filename without the ".conf"

pidfile /run/redis/instancename.pid
logfile /var/log/redis/instancename.log
dir /var/lib/redis/instancename/

If you want to run more than one instance you also have to change the
socket path and/or the ip:port combination.
 e.g. /run/redis/instancename.sock

Also make sure if you copy configurations from somewhere, that "daemonize"
should be set to "no".

3. create the database dir:
$ install -d -o redis -g redis -m 0750 /var/lib/redis/instancename/

4. systemctl start redis@instancename
5. systemctl enable redis@instancename

6. To stop/restart all instances at the same time use:

systemctl restart redis.target
systemctl stop redis.target

 Redis Sentinel
================

1. cp -a /etc/redis/sentinel.conf.example /etc/redis/sentinel-instancename.conf

We use the "cp -a" here, so that our permissions are preserved.
In case you copied the file with out the "-a"

chown root:redis  /etc/redis/sentinel-instancename.conf
chmod u=rw,g=rw,o= /etc/redis/sentinel-instancename.conf

Please note that the sentinel config needs write permissions for the group.
The chmod line differs from the line for the normal redis server.

2. change at least pidfile, logfile setting
# the pid file *has* to match your config filename without the ".conf"

pidfile /run/redis/instancename.pid
logfile /var/log/redis/instancename.log

If you want to run more than one instance you also have to change the
socket path and/or the ip:port combination.
 e.g. /run/redis/instancename.sock

Also make sure if you copy configurations from somewhere, that "daemonize"
should be set to "no".

4. systemctl start redis-sentinel@instancename
5. systemctl enable redis-sentinel@instancename

6. To stop/restart all instances at the same time use:

systemctl restart redis-sentinel.target
systemctl stop redis-sentinel.target

 Integration with apache when using unix domain sockets
=========================================================

If you plan to use redis in combination with apache, then you should
add 'redis' to apache group and set 'unixsocketperm 770':
$ usermod -a -G redis wwwrun
$ systemctl restart apache2
then apache is able to connect to redis socket