rpm/cgit
SHA256
1
0
Fork 0
forked from pool/cgit
Code Pull Requests Activity
db2b3d263a
cgit/cgit.spec
Martin Pluskal db2b3d263a Accepting request 373839 from home:tiwai:branches:devel:tools:scm 
- Fix remote code execution via buffer overflow (CVE-2016-2315,
  CVE-2016-2324, bsc#971328):
  0012-http-push-stop-using-name_path.patch
  0013-show_object_with_name-simplify-by-using-path_name.patch
  0014-list-objects-convert-name_path-to-a-strbuf.patch
  0015-list-objects-drop-name_path-entirely.patch
  0016-list-objects-pass-full-pathname-to-callbacks.patch

OBS-URL: https://build.opensuse.org/request/show/373839
OBS-URL: https://build.opensuse.org/package/show/devel:tools:scm/cgit?expand=0&rev=27
2016-03-16 15:50:59 +00:00

91 lines
2.8 KiB
RPMSpec
Raw Blame History

#
# spec file for package cgit
#
# Copyright (c) 2011 SUSE LINUX Products GmbH, Nuernberg, Germany.
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
# upon. The license for this file, and modifications and additions to the
# file, is the same license as for the pristine package itself (unless the
# license for the pristine package is not an Open Source License, in which
# case the license is the MIT License). An "Open Source License" is a
# license that conforms to the Open Source Definition (Version 1.9)
# published by the Open Source Initiative.
# Please submit bugfixes or comments via http://bugs.opensuse.org/
#
%define git_version 2.7.0
Name: cgit
Version: 0.12
Release: 0
Summary: A web frontend for git repositories
Url: http://git.zx2c4.com/cgit/
License: GPL-2.0
Group: Development/Tools/Version Control
#Git-Clone: git://git.zx2c4.com/cgit
Source: http://git.zx2c4.com/cgit/snapshot/%name-%version.tar.xz
Source2: https://www.kernel.org/pub/software/scm/git/git-%git_version.tar.xz
Source3: https://www.kernel.org/pub/software/scm/git/git-%git_version.tar.sign
Source4: %name.keyring
Source9: cgitrc
Patch0: cgit-optflags.diff
# PATCH-FIX-UPSTREAM fix remote code execution via buffer overflow (CVE-2016-2324, bsc#971328)
Patch12: 0012-http-push-stop-using-name_path.patch
Patch13: 0013-show_object_with_name-simplify-by-using-path_name.patch
Patch14: 0014-list-objects-convert-name_path-to-a-strbuf.patch
Patch15: 0015-list-objects-drop-name_path-entirely.patch
Patch16: 0016-list-objects-pass-full-pathname-to-callbacks.patch
# Requirements for cgit
BuildRequires: gnu-crypto
BuildRequires: libopenssl-devel
BuildRequires: libzip-devel
# Requirements for cgitrc man page generation
BuildRequires: asciidoc
BuildRequires: libxslt
BuildRequires: xz
BuildRoot: %{_tmppath}/%{name}-%{version}-build
%description
This is an attempt to create a fast web interface for the Git SCM, using a
builtin cache to decrease server I/O pressue.
%prep
%setup -qa2
%patch0 -p1
rm -rf git
ln -s git-%git_version git
cd git
%patch12 -p1
%patch13 -p1
%patch14 -p1
%patch15 -p1
%patch16 -p1
%build
make V=1 prefix="%_prefix" %{?_smp_mflags}
%install
make install install-man DESTDIR="%buildroot" prefix="%_prefix" \
CGIT_SCRIPT_PATH="/srv/www/htdocs/cgit"
mkdir -p "%buildroot/srv/www/cgi-bin/cgit/"
mv "%{buildroot}"/srv/www/{htdocs,cgi-bin}/cgit/cgit.cgi
mkdir -p "%buildroot/%_sysconfdir"
cp %{SOURCE9} "%buildroot/%_sysconfdir/cgitrc"
%files
%defattr(-,root,root)
%doc README COPYING
%_mandir/man5/cgitrc.5.gz
/srv/www/cgi-bin/cgit/
/srv/www/htdocs/cgit/
/usr/lib/cgit/
%config(noreplace) %_sysconfdir/cgitrc
%changelog
View Git Blame Copy Permalink