Page MenuHomeFreeBSD
Differential D16009

www/gitlab security update to 10.8.5
ClosedPublic
Actions

Authored by mfechner on Jun 25 2018, 5:37 PM.
Tags
None
Referenced Files
F81635203: D16009.diff
Fri, Apr 19, 7:19 AM
F81604490: D16009.id.diff
Thu, Apr 18, 8:10 PM
F81604476: D16009.id44636.diff
Thu, Apr 18, 8:10 PM
F81604465: D16009.id44433.diff
Thu, Apr 18, 8:10 PM
F81603617: D16009.diff
Thu, Apr 18, 7:49 PM
Unknown Object (File)
Jan 8 2024, 2:39 AM
Unknown Object (File)
Jan 8 2024, 2:39 AM
Unknown Object (File)
Jan 8 2024, 2:39 AM
View All 20 Files
Subscribers
mat

Details

Reviewers
tz
swills
Commits
rP473553: Security update to 10.8.5.
Summary

_NOTE_: Version skipped so far, there seems to be a major bug with the new sanitize version, I create a PR for this:
https://gitlab.com/gitlab-org/gitlab-ce/issues/48415

Commit message:
Security update to 10.8.5. For details see here:
https://about.gitlab.com/2018/06/25/security-release-gitlab-11-dot-0-dot-1-released

Test Plan

Please note, build process and tests are currently running, but I want to give it in parallel into approval process.
I will not commit it before I tested it with a new installation and upgrade a 10.8.4.

All patches are build, you can find all build logs:
https://pkg.fechner.net/jail.html?mastername=111amd64-gitlab

The fresh packages are tested against a new installation using:
https://gitlab.fechner.net/mfechner/Gitlab-vagrant

An old version is updated following the manual:
https://gitlab.fechner.net/mfechner/Gitlab-docu

Diff Detail

Repository
rP FreeBSD ports repository
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

mfechner created this revision.Jun 25 2018, 5:37 PM
Herald added a subscriber: mat. · View Herald TranscriptJun 25 2018, 5:37 PM
mfechner edited the summary of this revision. (Show Details)Jun 25 2018, 6:18 PM
tz accepted this revision.Jun 26 2018, 7:52 AM

The update itself looks fine so far. Good that you catched this error! Now there are two possibilities:

  • Do the upgrade even with the bug in mind and warn the users
  • Only fix the security issues by porting the fixes as patches (and leave the broken fix)
This revision is now accepted and ready to land.Jun 26 2018, 7:52 AM
mfechner added a comment.Jun 26 2018, 9:41 PM

The version 10.8.4 should not contain all bugs, as I already fixed some of them and reported them to gitlab with a confidental issue.
You will see that e.g. sanitizer is already fixed in 10.8.4.

I hope I find tomorrow evening some time to test pipeline-html gem.
I already build everything but I can access my test environment only from my local network which I will have access earliest tomorrow evening.

mfechner added a comment.Jun 27 2018, 5:59 AM

I think the hint from the gitlab developer that html-pipeline 2.7.1 is required fixes it. I added a review to get the new port here: https://reviews.freebsd.org/D16032

I will do later this evening additional tests to make sure gitlab works as expected and will commit it then.

Closed by commit rP473553: Security update to 10.8.5. (authored by mfechner). · Explain WhyJun 29 2018, 3:01 PM
This revision was automatically updated to reflect the committed changes.

Revision Contents
Changeset List

PathSize
head/
www/
gitlab/
6 lines
6 lines
files/
9 lines

Diff 44636

View Options

head/www/gitlab/Makefile

Loading...
View Options

head/www/gitlab/distinfo

Loading...
View Options

head/www/gitlab/files/patch-Gemfile

Loading...