Compare commits

...

83 commits

Author SHA1 Message Date
Pirate Praveen
80776dcb96 Add comment about patch 2020-01-04 02:30:01 +05:30
Pirate Praveen
39c9240d28 Update changelog 2020-01-04 02:19:50 +05:30
Pirate Praveen
5eacd0aca8 Update minimum versions of ruby-akismet and ruby-asana 2020-01-04 02:19:50 +05:30
Pirate Praveen
7ce724c302 Add gitlab 12.5.6 security release as a patch 2020-01-04 02:19:50 +05:30
Pirate Praveen
361b18f17d Update changelog 2019-12-31 16:00:04 +05:30
Pirate Praveen
5d4267de19 Merge tag 'debian/12.5.4-2' into buster-fasttrack
gitlab Debian release 12.5.4-2
2019-12-31 15:59:07 +05:30
Pirate Praveen
f1fbb90e0c Update minimum version of ruby-gpgme to 2.0.19 2019-12-31 15:35:09 +05:30
Pirate Praveen
0f12edca41 Update changelog 2019-12-31 14:27:51 +05:30
Pirate Praveen
349431e7aa Merge tag 'debian/12.5.4-1' into buster-fasttrack
gitlab Debian release 12.5.4-1
2019-12-31 14:26:51 +05:30
Pirate Praveen
e48bb38abb Update minimum version of ruby-rouge to 3.11 2019-12-24 00:12:02 +05:30
Pirate Praveen
7d28908c0d Update changelog 2019-12-23 23:23:44 +05:30
Pirate Praveen
99e79781ea Merge branch 'master' into buster-fasttrack 2019-12-23 23:21:02 +05:30
Pirate Praveen
ddd3ad69ba Update changelog 2019-12-20 20:05:41 +05:30
Pirate Praveen
296afc5841 Merge branch 'master' into buster-fasttrack 2019-12-20 20:04:05 +05:30
Pirate Praveen
e170d45429 Update changelog 2019-11-29 20:57:39 +05:30
Pirate Praveen
b9f1850e6c Merge branch 'master' into buster-fasttrack 2019-11-29 20:56:59 +05:30
Pirate Praveen
8f0e03c6c8 Update changelog for fasttrack release 2019-11-29 14:13:58 +05:30
Pirate Praveen
dece181ffb Merge tag 'debian/12.2.9-5' into buster-fasttrack
gitlab Debian release 12.2.9-5
2019-11-29 14:05:00 +05:30
Pirate Praveen
727e607415 Update changelog 2019-11-15 19:15:28 +05:30
Pirate Praveen
e772c39290 Update minimum version for rm_confifile maintscript option 2019-11-15 19:11:24 +05:30
Utkarsh Gupta
0031db7120 Update d/ch 2019-10-31 02:33:23 +05:30
Utkarsh Gupta
21f7e2d18a gitlab Debian release 12.2.9-1
-----BEGIN PGP SIGNATURE-----
 
 iQIzBAABCAAdFiEEbJ0QSEqa5Mw4X3xxgj6WdgbDS5YFAl258+oACgkQgj6WdgbD
 S5aFXRAAtWqHzYQFavQ23NXZn5QkFGKuUKqq31EtHrdgVyCW1wdTif36es4IpBfK
 8zJ+WFllW+cOUnfkVfmbG4ygEVJbEhRpwaYN1gO4QrVvsumbtq55N90mJvYsD2Fy
 JdgbB0g0vz/qUxyAxZW2zmQAOHdi3egfrHBL9L04oZgfXq0dpTrL+YllADFRJrgH
 y2jvU6W0zZ/HPdpoKg3ejaGI1P5rmxFVzX9/jEyPhwpHGvBfChPCE0g0sKn9isk9
 151QE0T+0fbHWez4cQ723vMv55+J3GO5HNNkeUWzuXzogga1piQ4C0CtqP3fpu8+
 a8nf6IqQ7ToA0g5nQeMIXsUnux8muA66zxjiyWqyln7rssCvNUy/OOHKeC9JeoRJ
 tyuBZrU5XoLHKXgxwPLJKFNe+DuMRGn6m1IQmTOgaEc7feyZQeS0e2QQ7bYd46Zp
 SHkUx7luIEu2B44t/ioFzCbXj6Vb3ybKY+n1CKOymb1OSyibpgFKxe/1m5D6sbSX
 aFvt44OZWpaTAbWK7YYE7QDDGK2dXU1VnFxxgE1wEqNv92qk0bOFLp2mgsJTfD1H
 RtRV06JsVPsZo0pnnpedi1MSgmzham9O/hG8I71f4xlRofN+Tjq2sTYZtlDi43MD
 rMhkKd9OgaNUWpIZHNefiqhRzZEiJsZe/8DDmti8TGpRAeDP0SI=
 =ebh2
 -----END PGP SIGNATURE-----

Merge tag 'debian/12.2.9-1' into buster-fasttrack

gitlab Debian release 12.2.9-1
2019-10-31 02:17:46 +05:30
Dmitry Smirnov
cc29107cef CI: re-factored [skip ci] 2019-10-25 02:15:23 +11:00
Pirate Praveen
ef492edd14 Update changelog 2019-10-22 19:16:00 +05:30
Pirate Praveen
e5533d897c Update minimum version of gitaly to 1.53.3 2019-10-22 19:13:40 +05:30
Utkarsh Gupta
4fa910a2b5 Update d/ch for buster-fasttrack 2019-10-22 15:06:01 +05:30
Utkarsh Gupta
a14a56c217 gitlab Debian release 12.1.14-1
-----BEGIN PGP SIGNATURE-----
 
 iQIzBAABCAAdFiEEbJ0QSEqa5Mw4X3xxgj6WdgbDS5YFAl2uzGUACgkQgj6WdgbD
 S5ZYjw//aK8dS4kXeVgR0sD1T41hFvihmy8Qjj9dT2hx8S2QRK8RZgLUTCwvEfG9
 pfFLXxZAGRkqHdQ9a+eGexWI/5wYU1KDTknV6pKpWihpWVPbrrC67Er2ZO4Xc1kR
 xE35sW56Px04taXDLCJqUkVYUu+F2EkvUsSx0/FgXK0JqNKC9qb1cnDzJCaxZOhq
 dleTiY2CMIP7sKq3g0UnpJFDjY1703TKj0sNDbL9ik7hZJ9wf0c9r8b5Iu5kPXUD
 v5gTXZnDPPydRs5IL/vOVU+iXrkqrfAaQyQkfeQaOzOOLy8ALNXEoUhyJOvi4ivP
 d5jGkUO6hf7ordOtUT4FOYLEAkflco+oCGltM++tmefTLIpugHZPQwQziHjnNQaB
 U6wznMUynluu9qQiZSckWkHqxQPxvCVS4yr8H6IHng8y1bovx1CGqUVfOCt5MurQ
 e2286dLaZ+C1/se9EH8S1gPutiTYc1kv/ljfIx8JdlyfHnyGa5C3+oNQ+mN4Z+kO
 N1FiFoI7O/o6PROYxiS8nxNE5HnKgohOohIoflvWM0svdLx/L0BGI/4buVfWbpsA
 cOslt3mC1HGFx81AiVMQzB+Do/iZUG/WGVK52MgrvqDKhtAZKAQ2XSXwnGEx++Gj
 iRntL5Z2JKcbfvVxzuiTCaogaq6YJpDJRxgRzsUK0i8pUkSOUn0=
 =TTgt
 -----END PGP SIGNATURE-----

Merge tag 'debian/12.1.14-1' into buster-fasttrack

gitlab Debian release 12.1.14-1
2019-10-22 15:02:19 +05:30
Pirate Praveen
5357f91bab Add node-core-js (<< 3~) constraint to use embedded core-js module 2019-10-07 00:06:50 +05:30
Pirate Praveen
3005232959 Update changelog 2019-10-06 23:52:26 +05:30
Pirate Praveen
8563fafbe4 Merge tag 'debian/12.1.13-2' into buster-fasttrack
gitlab Debian release 12.1.13-2
2019-10-06 23:51:24 +05:30
Dmitry Smirnov
c735470424 CI: minor update 2019-10-04 09:06:09 +10:00
Utkarsh Gupta
7795860bef Update d/ch for buster-fasttrack rebuild 2019-09-12 14:00:43 +05:30
Utkarsh Gupta
74ab46c1ab Merge tag 'debian/12.0.9-1' into buster-fasttrack
gitlab Debian release 12.0.9-1
2019-09-12 13:56:15 +05:30
Pirate Praveen
d86b4ebc5e Update changelog 2019-09-11 12:14:15 +05:30
Pirate Praveen
d0e3e28998 Merge tag 'debian/12.0.8-3' into buster-fasttrack
gitlab Debian release 12.0.8-3
2019-09-11 12:11:44 +05:30
Pirate Praveen
a30f3cfa00 Update changelog 2019-08-14 17:40:36 +05:30
Pirate Praveen
8f9fd99498 gitlab Debian release 11.11.8+dfsg-1
-----BEGIN PGP SIGNATURE-----
 
 iQIzBAABCgAdFiEEsclPZxif+sAmSPvz1N6yL8C5bhUFAl1T9iQACgkQ1N6yL8C5
 bhVwQw//aD3Auw6HLlF/6yTVxIhf5+dx/X/UQ2V2etf433KyO4VrEUSPHnvtg3go
 gmZXm+1o19u93AhnWjC892uqWCNFEdHCVpliHcbDjGy8YI84wFuFO8hWByWYhEhf
 4QrasySvmiP/VSjLtZFNETBYhS3+qjGtH1c1DuddzNUnsjBKg/B4BO7N4yljLkDa
 rM5kMgWY9/oU4QGLqV6pWIEhcvMWPQMAt0lBjzpcTjW3PgxfkAqEwdJ7IJhEiDaE
 wJWvLMksLLmEowFxvwSK66im/WlOrKDNX7w2qW1r7kQGy4xk+oDSS6sjzf2FOx8l
 jlUqynB95nWeIOHycfe/vVAxvQwBTzZuanRq9jO1a36p/Hh7uOaPvMCEeLf2bykc
 HZJxxLrph4PUXLbIRy+u/lf/xyJ9nMQdhpvKZE3tYNA+dx/xduWaIzwlPKoxmXgC
 qNoP9F3To/TBhCez5wtM7TziPqh5VS1fPIk5CBLFr5G0zO+b0ohhiIHQnWiBa5iX
 n6Cy60BK0XMeQwlMuE6VrAjoixBZ/z1wJWnDiWHyGc4f6n6lD25qnC1WfkzQH9VH
 WJHf5g+H+jzRBPM7SdiLQ4rTQsPIztpvuwj7X6KTddY/F7usTFFYuRJNMJ6YDz8G
 u0pqhel8aUmXjQSH6lFfLMEeVr2VQ/ovngwtzdzsWMPEOtKGUdc=
 =8+DS
 -----END PGP SIGNATURE-----

Merge tag 'debian/11.11.8+dfsg-1' into buster-fasttrack

gitlab Debian release 11.11.8+dfsg-1
2019-08-14 17:39:10 +05:30
Pirate Praveen
0b56d3d594 Use packaged version of webpack 2019-08-08 12:08:50 +05:30
Pirate Praveen
509c56361d Update dependency on ruby-google-protobuf 2019-08-07 00:42:33 +05:30
Pirate Praveen
1a2640645f Ready for upload 2019-08-06 15:58:49 +00:00
Pirate Praveen
1a337d5fe1 Merge branch 'master' into buster-fasttrack 2019-08-06 15:57:03 +00:00
Pirate Praveen
52886cd1ac Update changelog 2019-07-07 14:52:52 +05:30
Pirate Praveen
3a9fffe295 Merge tag 'debian/11.10.8+dfsg-1' into buster-fasttrack
gitlab Debian release 11.10.8+dfsg-1
2019-07-07 14:50:48 +05:30
Pirate Praveen
628e6475a9 Update changelog 2019-06-05 15:41:20 +05:30
Pirate Praveen
bc16220487 gitlab Debian release 11.10.5+dfsg-1
-----BEGIN PGP SIGNATURE-----
 
 iQIzBAABCAAdFiEEKnl0ri/BUtd4Z9pKzh+cZ0USwioFAlz3eFAACgkQzh+cZ0US
 wiqp6g//TVGgcAeuzFiRwBEDXy6e4Deybmq5IMAbgogczfT5iwkHDtKVvunM2vty
 3nsuYTlsv6dHLSDXwUHrubwz4bQW6mPzsUZw6492UjHrb2NYFZXtQY4xfYq9at2R
 0dQFky8HgoT/mxlsz4BwUcCsm6Xp+/abPj4oROkeH+4hKkbKiSmqXwI6nwSfmPJj
 ILYNF7FgRlxGTmngSoYtMiGK9Of2Hvkkl8lRDTDBZu5J/OyLkd8lekeQZVoXrOKF
 JF8jKawNskm7NFs6ee8gceEQ0wvhsOgZnbcHbJpmip0mp9ODntkVAJt4XbIE3i/m
 GeAKHoVoxVwTA12fBaGtua2B/NfcT94+hOWNuoCxgZywd8YqMKrJY5L0WydBz4dN
 Y/dBW028QKuob9XoG9vEZSOvpJP2lqBLUlWg3vB/pzQOQl5/JHccGZ9RKtu5J7dQ
 TghzBrCdTttSA57VZO7PJ3rAwkf8cPhRdxJES1dvDem8qm8xI3Au4kUNpfrwV9HO
 uXXMiaPzIjHgVk79xhmVnhPcfpkHBvAdwvaZziTuiHNoZ4M4dKVhjItxHf7IK0p7
 6yYh0ylbo4+HVQngxBpL4LqUYeqyc8w7fwSWafdpTg92nx1Gw+T+SlqG6ZT8pOvd
 PvSb4pv0bKFeMFTkMto/c2RlZqeEBF9ABiiOhK+HMBH+YsM7aGI=
 =majb
 -----END PGP SIGNATURE-----

Merge tag 'debian/11.10.5+dfsg-1' into buster-fasttrack

gitlab Debian release 11.10.5+dfsg-1
2019-06-05 14:18:22 +05:30
Pirate Praveen
4e1e88068c Update changelog 2019-05-06 19:56:18 +05:30
Pirate Praveen
7ba2e71134 gitlab Debian release 11.8.9+dfsg-1
-----BEGIN PGP SIGNATURE-----
 
 iQIzBAABCAAdFiEEKnl0ri/BUtd4Z9pKzh+cZ0USwioFAlzP+foACgkQzh+cZ0US
 wir2OA//d+yo+OaGt5tBQoWkTJgSAIhT058R0KsYVrfzhhqViSiXSowmMzAV3UYQ
 izlKUrWJKws6QypmePoSHmxDMIvt4tdK2z44btteHBzYX62nXuI7mFuyFWe7608G
 ZMAmjLhiXmfQA3bmZ1Rg4CZdmi/1PUqI5upsstTW7ipvyOm7ir8TIHn5t/YHBo48
 BjzUu/gb/7llfW2jPZTTQs3QgPVPxcBSJBQIj3cZOzC3HYGpMCp3JBoZm1UyG4CO
 0Fy0toYdEtsZETuJ+YQo9F+XS9JV4ggVeSri1HOrtQgMbtZprwUrlegIOEIgZfQ0
 xJhZjph8dP5859FnAOw9JqkuLKyItZmdeid3ed5Nb6PIJ7JL02RIbcRHxT8QPM5g
 MVZZr9+CCuFA3Y3ZLtqlbK0txLnPAdLMw5QEAbC4giqwjHsDPYBuQ1hymAgGvT5P
 5KVUlqp2OOruV31IdqeOOKZK4z0TBESXv5K60uqWBV4MwW1Ll3gvpsHRB+jP1U4V
 vvvZzXqk2sSnECSqlEGB6ltStIqLJgYwAKFRldSNFvePFkFYELVBjlTN+4zt2Efc
 Oz1nPzIHA6BKapztpjQLNgEN3UvsSu5WRidpT9lRInfFG4/iCw2hr071HNREia9u
 +aAw2zHT8XkPuPjZ5ehXdzPnPNDdnSvaSXNfU/apx0Scqm38H64=
 =S/J1
 -----END PGP SIGNATURE-----

Merge tag 'debian/11.8.9+dfsg-1' into buster-fasttrack

gitlab Debian release 11.8.9+dfsg-1
2019-05-06 19:50:45 +05:30
Utkarsh Gupta
21ee9334f8 Fix typo in d/patches/0050-* 2019-05-05 23:28:57 +05:30
Utkarsh Gupta
e9cd9414e4 Merge tag 'upstream/11.8.9+dfsg' into master-11.8
Upstream version 11.8.9+dfsg
2019-05-05 18:52:01 +05:30
Utkarsh Gupta
511555a717 New upstream version 11.8.9+dfsg 2019-05-05 18:51:08 +05:30
Utkarsh Gupta
2771465d7b Update d/copyright to exclude pdf.* 2019-05-05 18:15:54 +05:30
Utkarsh Gupta
7f10525869 Update d/upstream-file-list 2019-05-05 18:14:10 +05:30
Utkarsh Gupta
8738e1d7a0 Update d/patches 2019-05-05 18:12:09 +05:30
Utkarsh Gupta
b33747df94 Update upstream source from tag 'upstream/11.8.9+dfsg'
Update to upstream version '11.8.9+dfsg'
with Debian dir 8a8fa4ffef
2019-05-05 18:10:48 +05:30
Utkarsh Gupta
add68ad8a8 Update d/upstream-file-list 2019-05-05 17:33:51 +05:30
Utkarsh Gupta
b7eae1279a Add patch to install .babelrc.js 2019-05-05 17:02:35 +05:30
Utkarsh Gupta
a301ba6ec1 Update d/ch 2019-05-05 16:55:34 +05:30
Utkarsh Gupta
80fa3cd031 Update upstream source from tag 'upstream/11.8.9+dfsg'
Update to upstream version '11.8.9+dfsg'
with Debian dir e6ecb7368e
2019-05-05 16:48:12 +05:30
Utkarsh Gupta
eb631e4ebf Remove ee 2019-05-05 01:36:48 +05:30
Utkarsh Gupta
d8d9537d7b Update d/changelog 2019-05-04 17:41:57 +05:30
Utkarsh Gupta
8fa5059027 Update d/patches/0680-* 2019-05-04 17:41:34 +05:30
Utkarsh Gupta
cc33652d35 Update d/patches/0470-* 2019-05-04 17:41:19 +05:30
Utkarsh Gupta
3eb051e84b Update d/patches/0290-* 2019-05-04 17:41:08 +05:30
Utkarsh Gupta
b12e0ea435 Update d/patches/0050-* 2019-05-04 17:40:41 +05:30
Utkarsh Gupta
ef79d2c859 Update upstream source from tag 'upstream/11.8.9'
Update to upstream version '11.8.9'
with Debian dir a2db60371b
2019-05-04 17:39:32 +05:30
Utkarsh Gupta
f8513db4ea New upstream version 11.8.9 2019-05-04 17:39:32 +05:30
Pirate Praveen
2b7a38adef Update changelog 2019-04-30 15:33:27 +05:30
Pirate Praveen
587ea54adc Merge tag 'debian/11.8.6+dfsg-1' into buster-fasttrack 2019-04-30 15:20:33 +05:30
Abhijith PA
871f06b578 update changelog 2019-04-19 08:33:19 +05:30
Abhijith PA
8eb1be7eee update changelog 2019-04-19 08:31:38 +05:30
Abhijith PA
cf9f890a3f add gitlab.examples 2019-04-19 08:24:31 +05:30
Abhijith PA
d9db5ce207 remove embedded pdf.js and use libjs-pdf 2019-04-19 08:19:27 +05:30
Abhijith PA
52dc8ac99a Update upstream source from tag 'upstream/11.8.6+dfsg'
Update to upstream version '11.8.6+dfsg'
with Debian dir 8d6e790779
2019-04-19 08:12:50 +05:30
Abhijith PA
fe4b85100d update changelog 2019-04-06 11:59:16 +05:30
Abhijith PA
dd2b680649 update upstream-file-list with ee 2019-04-06 11:57:00 +05:30
Abhijith PA
288e956cde update changelog 2019-04-03 18:24:31 +05:30
Abhijith PA
e160278ed2 Update upstream source from tag 'upstream/11.8.6'
Update to upstream version '11.8.6'
with Debian dir 7e57ab6d69
2019-04-03 18:18:56 +05:30
Abhijith PA
540c00d914 New upstream version 11.8.6 2019-04-03 18:18:56 +05:30
Pirate Praveen
c901217746 Update changelog 2019-03-22 21:22:28 +05:30
Pirate Praveen
70c9743e18 gitlab Debian release 11.8.3-1
-----BEGIN PGP SIGNATURE-----
 
 iQIzBAABCgAdFiEEsclPZxif+sAmSPvz1N6yL8C5bhUFAlyT3qIACgkQ1N6yL8C5
 bhXi5Q//bdF+ms+S3H2dPNzKb4fbA0UP3nfdHkjhUIcFP2UV4yVibm3uKpEH82W4
 r+LjqtFhQmtbqwNzPZk/xf7+AP6PEcDCck82zK1YEBOJKUuBY+4G4Y7vciOjApwf
 zBPC0E7cXoV9e1j4up01YXeZfugxA3gZUn+rIuwdXct3BFUTYlPaVz/SqGe0KoGu
 DLOjM2Xh7P/HXZiYZeAgBh+TOXlCoKJ8BtKgmiRfjMC+f6OpfCSvtYLkrvZBgYIG
 Tm5DBWMp3J4FPM8apGUrMhAfuBrqBOgV5ah19J5Rs1i01GTDf/pyDOG8awvi20AE
 V3fHKRlLa6Jmlc2iAc++cMSCHeIoMklYjEeCAWnRelnLwOtuA7iwY3smsgBLQMJf
 1c7wTwl6t9WAIWzvLaKNn3b76eDYOJ9eyVJXNseSkuscHFUzmentT/WmxM9+ETxK
 DsjmHHsfGOjAadH1NULGAsIeujYxPIMJBJDv91/iKdZoWjMJRDorNjvhNb7ERXey
 5Da4Gyvi3pzOjJq1pqhBaTnYyC2CWqcIcy9+2uvVFlbnhrHGudPQfF1aAQ9vwK6l
 wPbJ6Tx9j1ZWrCZf5QL/1CcNxACb44IrmYNxqPwSBhrj7pLSnl/BB/hGocKUpNz9
 loCX4kRa1WNNyz6+Psm4N9I3P2gK65+kQtSGufVuxUxF6E890xE=
 =T/42
 -----END PGP SIGNATURE-----

Merge tag 'debian/11.8.3-1' into buster-fasttrack

gitlab Debian release 11.8.3-1
2019-03-22 15:24:05 +05:30
Pirate Praveen
ccaddb6da4 Update changelog 2019-03-17 18:55:31 +05:30
Pirate Praveen
bd86ee062b Merge tag 'debian/11.8.2-3' into buster-fasttrack 2019-03-17 18:51:44 +05:30
Pirate Praveen
d3cdd71e05 Update changelog 2019-03-16 15:06:04 +05:30
6 changed files with 846 additions and 3 deletions

120
debian/changelog vendored
View file

@ -1,3 +1,19 @@
gitlab (12.5.4-2+fto10+2) buster-fasttrack; urgency=medium
* Add gitlab 12.5.6 security release as a patch (Fixes: CVE-2019-20142,
CVE-2019-20143, CVE-2019-20144, CVE-2019-20145, CVE-2019-20146,
CVE-2019-20147, CVE-2019-20148, CVE-2020-5197). We cannot update to
12.6.2 directly because gitaly 1.78 no longer builds with golang 1.11.
* Update minimum versions of ruby-akismet and ruby-asana.
-- Pirate Praveen <praveen@debian.org> Sat, 04 Jan 2020 02:11:59 +0530
gitlab (12.5.4-2+fto10+1) buster-fasttrack; urgency=medium
* Rebuild for buster-fasttrack.
-- Pirate Praveen <praveen@debian.org> Tue, 31 Dec 2019 15:59:14 +0530
gitlab (12.5.4-2) experimental; urgency=medium gitlab (12.5.4-2) experimental; urgency=medium
* Update minimum version of ruby-gpgme to 2.0.19 * Update minimum version of ruby-gpgme to 2.0.19
@ -5,6 +21,12 @@ gitlab (12.5.4-2) experimental; urgency=medium
-- Pirate Praveen <praveen@debian.org> Tue, 31 Dec 2019 15:48:16 +0530 -- Pirate Praveen <praveen@debian.org> Tue, 31 Dec 2019 15:48:16 +0530
gitlab (12.5.4-1+fto10+1) buster-fasttrack; urgency=medium
* Rebuild for buster-fasttrack.
-- Pirate Praveen <praveen@debian.org> Tue, 31 Dec 2019 14:26:58 +0530
gitlab (12.5.4-1) experimental; urgency=medium gitlab (12.5.4-1) experimental; urgency=medium
* New upstream version 12.5.4 * New upstream version 12.5.4
@ -51,6 +73,25 @@ gitlab (12.4.6-1) experimental; urgency=medium
-- Pirate Praveen <praveen@debian.org> Thu, 26 Dec 2019 21:03:03 +0530 -- Pirate Praveen <praveen@debian.org> Thu, 26 Dec 2019 21:03:03 +0530
gitlab (12.3.9-1+fto10+1) buster-fasttrack; urgency=medium
* Rebuild for buster-fasttrack.
-- Pirate Praveen <praveen@debian.org> Fri, 20 Dec 2019 20:04:38 +0530
gitlab (12.2.9-5+fto10+2) buster-fasttrack; urgency=medium
* Update minimum version of yarnpkg to 1.19~
* Check if yarn cache directory is present before updating permissions
-- Pirate Praveen <praveen@debian.org> Fri, 29 Nov 2019 20:57:21 +0530
gitlab (12.2.9-5+fto10+1) buster-fasttrack; urgency=medium
* Rebuild for buster-fasttrack.
-- Pirate Praveen <praveen@debian.org> Fri, 29 Nov 2019 14:13:02 +0530
gitlab (12.2.9-5) experimental; urgency=medium gitlab (12.2.9-5) experimental; urgency=medium
* Bump minimum version of ruby-font-awesome-rails to allow rails 5.2.3 * Bump minimum version of ruby-font-awesome-rails to allow rails 5.2.3
@ -90,6 +131,19 @@ gitlab (12.2.9-2) experimental; urgency=medium
-- Utkarsh Gupta <guptautkarsh2102@gmail.com> Sat, 02 Nov 2019 01:40:43 +0530 -- Utkarsh Gupta <guptautkarsh2102@gmail.com> Sat, 02 Nov 2019 01:40:43 +0530
gitlab (12.2.9-1+fto10+2) buster-fasttrack; urgency=medium
* Update minimum version for rm_confifile maintscript option (Closes:
#944596)
-- Pirate Praveen <praveen@debian.org> Fri, 15 Nov 2019 19:11:34 +0530
gitlab (12.2.9-1+fto10+1) buster-fasttrack; urgency=medium
* Rebuild for buster-fasttrack.
-- Utkarsh Gupta <guptautkarsh2102@gmail.com> Thu, 31 Oct 2019 02:19:25 +0530
gitlab (12.2.9-1) experimental; urgency=high gitlab (12.2.9-1) experimental; urgency=high
* New upstream version 12.2.9 (Fixes: CVE-2019-18446 CVE-2019-18447 * New upstream version 12.2.9 (Fixes: CVE-2019-18446 CVE-2019-18447
@ -112,6 +166,12 @@ gitlab (12.2.8-2) experimental; urgency=medium
-- Pirate Praveen <praveen@debian.org> Thu, 24 Oct 2019 23:47:12 +0530 -- Pirate Praveen <praveen@debian.org> Thu, 24 Oct 2019 23:47:12 +0530
gitlab (12.1.14-1+fto10+2) buster-fasttrack; urgency=medium
* Update minimum version of gitaly to 1.53.3 (Closes: #942633)
-- Pirate Praveen <praveen@debian.org> Tue, 22 Oct 2019 19:14:19 +0530
gitlab (12.2.8-1) experimental; urgency=medium gitlab (12.2.8-1) experimental; urgency=medium
[ Dmitry Smirnov ] [ Dmitry Smirnov ]
@ -133,6 +193,12 @@ gitlab (12.2.8-1) experimental; urgency=medium
-- Sruthi Chandran <srud@debian.org> Sun, 20 Oct 2019 22:59:27 +0530 -- Sruthi Chandran <srud@debian.org> Sun, 20 Oct 2019 22:59:27 +0530
gitlab (12.1.14-1+fto10+1) buster-fasttrack; urgency=medium
* Rebuild for buster-fasttrack.
-- Utkarsh Gupta <guptautkarsh2102@gmail.com> Tue, 08 Oct 2019 21:29:31 +0530
gitlab (12.1.14-1) experimental; urgency=medium gitlab (12.1.14-1) experimental; urgency=medium
[ Pirate Praveen ] [ Pirate Praveen ]
@ -145,6 +211,12 @@ gitlab (12.1.14-1) experimental; urgency=medium
-- Utkarsh Gupta <guptautkarsh2102@gmail.com> Mon, 07 Oct 2019 21:29:31 +0530 -- Utkarsh Gupta <guptautkarsh2102@gmail.com> Mon, 07 Oct 2019 21:29:31 +0530
gitlab (12.1.13-2+fto10+1) buster-fasttrack; urgency=medium
* Rebuild for buster-fasttrack.
-- Pirate Praveen <praveen@debian.org> Sun, 06 Oct 2019 23:51:32 +0530
gitlab (12.1.13-2) experimental; urgency=medium gitlab (12.1.13-2) experimental; urgency=medium
* Fix last version of initializers/active_record_verbose_query_logs.rb (this * Fix last version of initializers/active_record_verbose_query_logs.rb (this
@ -193,6 +265,12 @@ gitlab (12.0.9-2) experimental; urgency=medium
-- Utkarsh Gupta <guptautkarsh2102@gmail.com> Mon, 16 Sep 2019 22:37:08 +0530 -- Utkarsh Gupta <guptautkarsh2102@gmail.com> Mon, 16 Sep 2019 22:37:08 +0530
gitlab (12.0.9-1+fto10+1) buster-fasttrack; urgency=high
* Rebuild for buster-fasttrack.
-- Utkarsh Gupta <guptautkarsh2102@gmail.com> Thu, 12 Sep 2019 13:58:29 +0530
gitlab (12.0.9-1) experimental; urgency=high gitlab (12.0.9-1) experimental; urgency=high
* Team Upload * Team Upload
@ -201,6 +279,12 @@ gitlab (12.0.9-1) experimental; urgency=high
-- Nilesh <npatra974@gmail.com> Wed, 11 Sep 2019 10:12:18 -0400 -- Nilesh <npatra974@gmail.com> Wed, 11 Sep 2019 10:12:18 -0400
gitlab (12.0.8-3+fto10+1) buster-fasttrack; urgency=medium
* Rebuild for buster-fasttrack.
-- Pirate Praveen <praveen@debian.org> Wed, 11 Sep 2019 12:12:02 +0530
gitlab (12.0.8-3) experimental; urgency=medium gitlab (12.0.8-3) experimental; urgency=medium
* Update minimum version of ruby-gitaly-proto dependency * Update minimum version of ruby-gitaly-proto dependency
@ -227,6 +311,12 @@ gitlab (12.0.8-1) experimental; urgency=high
-- Sruthi Chandran <srud@debian.org> Sat, 07 Sep 2019 21:38:23 +0530 -- Sruthi Chandran <srud@debian.org> Sat, 07 Sep 2019 21:38:23 +0530
gitlab (11.11.8+dfsg-1+fto10+1) buster-fasttrack; urgency=medium
* Rebuild for buster-fasttrack.
-- Pirate Praveen <praveen@debian.org> Wed, 14 Aug 2019 17:39:22 +0530
gitlab (11.11.8+dfsg-1) experimental; urgency=medium gitlab (11.11.8+dfsg-1) experimental; urgency=medium
* New upstream security release 11.11.8+dfsg (Closes: #934708) * New upstream security release 11.11.8+dfsg (Closes: #934708)
@ -235,6 +325,12 @@ gitlab (11.11.8+dfsg-1) experimental; urgency=medium
-- Sruthi Chandran <srud@debian.org> Wed, 14 Aug 2019 17:14:06 +0530 -- Sruthi Chandran <srud@debian.org> Wed, 14 Aug 2019 17:14:06 +0530
gitlab (11.11.7+dfsg-1+ft10+1) buster-fasttrack; urgency=medium
* Rebuild for buster-fasttrack
-- Pirate Praveen <praveen@debian.org> Sun, 11 Aug 2019 13:00:50 +0530
gitlab (11.11.7+dfsg-1) experimental; urgency=medium gitlab (11.11.7+dfsg-1) experimental; urgency=medium
[ Pirate Praveen ] [ Pirate Praveen ]
@ -266,6 +362,12 @@ gitlab (11.11.7+dfsg-1) experimental; urgency=medium
-- Pirate Praveen <praveen@debian.org> Sun, 11 Aug 2019 13:00:50 +0530 -- Pirate Praveen <praveen@debian.org> Sun, 11 Aug 2019 13:00:50 +0530
gitlab (11.10.8+dfsg-1+fto10+1) buster-fasttrack; urgency=medium
* Rebuild for buster-fasttrack.
-- Pirate Praveen <praveen@debian.org> Sun, 07 Jul 2019 14:50:54 +0530
gitlab (11.10.8+dfsg-1) experimental; urgency=medium gitlab (11.10.8+dfsg-1) experimental; urgency=medium
[ Pirate Praveen ] [ Pirate Praveen ]
@ -283,6 +385,12 @@ gitlab (11.10.8+dfsg-1) experimental; urgency=medium
-- Pirate Praveen <praveen@debian.org> Sun, 07 Jul 2019 13:14:52 +0530 -- Pirate Praveen <praveen@debian.org> Sun, 07 Jul 2019 13:14:52 +0530
gitlab (11.10.5+dfsg-1+fto10+1) buster-fasttrack; urgency=medium
* Rebuild for buster-fasttrack.
-- Pirate Praveen <praveen@debian.org> Wed, 05 Jun 2019 14:18:57 +0530
gitlab (11.10.5+dfsg-1) experimental; urgency=medium gitlab (11.10.5+dfsg-1) experimental; urgency=medium
[ Pirate Praveen ] [ Pirate Praveen ]
@ -367,6 +475,12 @@ gitlab (11.8.3-1) unstable; urgency=high
-- Sruthi Chandran <srud@disroot.org> Fri, 22 Mar 2019 00:19:33 +0530 -- Sruthi Chandran <srud@disroot.org> Fri, 22 Mar 2019 00:19:33 +0530
gitlab (11.8.2-3+fto10+1) buster-fasttrack; urgency=medium
* Rebuild for buster-fasttrack
-- Pirate Praveen <praveen@debian.org> Sun, 17 Mar 2019 18:52:41 +0530
gitlab (11.8.2-3) unstable; urgency=medium gitlab (11.8.2-3) unstable; urgency=medium
* Add link to gitlab page on Debian wiki in README.Debian * Add link to gitlab page on Debian wiki in README.Debian
@ -379,6 +493,12 @@ gitlab (11.8.2-3) unstable; urgency=medium
-- Pirate Praveen <praveen@debian.org> Sun, 17 Mar 2019 18:34:25 +0530 -- Pirate Praveen <praveen@debian.org> Sun, 17 Mar 2019 18:34:25 +0530
gitlab (11.8.2-2+fto10+1) buster-fasttrack; urgency=medium
* Rebuild for buster-fasttrack
-- Pirate Praveen <praveen@debian.org> Sat, 16 Mar 2019 14:27:36 +0530
gitlab (11.8.2-2) unstable; urgency=medium gitlab (11.8.2-2) unstable; urgency=medium
[ Sruthi Chandran ] [ Sruthi Chandran ]

6
debian/control vendored
View file

@ -73,7 +73,7 @@ Depends: ${shlibs:Depends}, ${misc:Depends},
ruby-jwt (>= 2.1~), ruby-jwt (>= 2.1~),
# Spam and anti-bot protection # Spam and anti-bot protection
ruby-recaptcha (>= 4.11~), ruby-recaptcha (>= 4.11~),
ruby-akismet (>= 2.0~), ruby-akismet (>= 3.0~),
ruby-invisible-captcha (>= 0.12.1~), ruby-invisible-captcha (>= 0.12.1~),
# Two-factor authentication # Two-factor authentication
ruby-devise-two-factor (>= 3.0~), ruby-devise-two-factor (>= 3.0~),
@ -211,7 +211,7 @@ Depends: ${shlibs:Depends}, ${misc:Depends},
# Hangouts Chat integration # Hangouts Chat integration
ruby-hangouts-chat (>= 0.0.5), ruby-hangouts-chat (>= 0.0.5),
# Asana integration # Asana integration
ruby-asana (>= 0.8.1~), ruby-asana (>= 0.9~),
# FogBugz integration # FogBugz integration
ruby-fogbugz (>= 0.2.1-3~), ruby-fogbugz (>= 0.2.1-3~),
# Kubernetes integration # Kubernetes integration
@ -313,7 +313,7 @@ Depends: ${shlibs:Depends}, ${misc:Depends},
# Gitaly GRPC client # Gitaly GRPC client
ruby-gitaly (>= 1.70+dfsg~), ruby-gitaly (>= 1.70+dfsg~),
ruby-grpc (>= 1.19~), ruby-grpc (>= 1.19~),
ruby-google-protobuf (>= 3.7~), ruby-google-protobuf (>= 3.7.1~),
# #
ruby-toml-rb (>= 1.0.0-2~), ruby-toml-rb (>= 1.0.0-2~),
# Feature toggles # Feature toggles

3
debian/gitlab.examples vendored Normal file
View file

@ -0,0 +1,3 @@
doc/ci/examples/*
debian/gems-compat/activerecord-5.1.6.1/examples/*
debian/gems-compat/omniauth-google-oauth2-0.6.1/examples/*

View file

@ -0,0 +1,718 @@
https://gitlab.com/gitlab-org/gitlab-foss/compare/v12.5.4...v12.5.6
Created by git diff v12.5.4..v12.5.6 in upstream git repo
--- a/CHANGELOG-EE.md
+++ b/CHANGELOG-EE.md
@@ -1,5 +1,16 @@
Please view this file on the master branch, on stable branches it's out of date.
+## 12.5.5
+
+- No changes.
+
+## 12.5.4
+
+### Security (1 change)
+
+- Fix stale Elasticsearch permissions when moving group from public group to private parent group.
+
+
## 12.5.3
### Performance (1 change)
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -2,9 +2,35 @@
documentation](doc/development/changelog.md) for instructions on adding your own
entry.
+## 12.5.6
+
+### Security (5 changes)
+
+- GraphQL: Add timeout to all queries.
+- Return only runners from groups where user is owner for user CI owned runners.
+- Filter out notification settings for projects that a user does not have at least read access.
+- Hide project name and path when unsusbcribing from an issue or merge request.
+- Fix 500 error caused by invalid byte sequences in uploads links.
+
+
+## 12.5.5
+
+### Security (1 change)
+
+- Upgrade Akismet gem to v3.0.0. !21786
+
+### Fixed (2 changes)
+
+- Fix error in updating runner session. !20902
+- Fix Asana integration. !21501
+
+
## 12.5.4
-- No changes.
+### Security (1 change)
+
+- Update maven_file_name_regex for full string match.
+
## 12.5.3
--- a/Gemfile
+++ b/Gemfile
@@ -50,7 +50,7 @@
# Spam and anti-bot protection
gem 'recaptcha', '~> 4.11', require: 'recaptcha/rails'
-gem 'akismet', '~> 2.0'
+gem 'akismet', '~> 3.0'
gem 'invisible_captcha', '~> 0.12.1'
# Two-factor authentication
@@ -231,7 +231,7 @@
gem 'hangouts-chat', '~> 0.0.5'
# Asana integration
-gem 'asana', '~> 0.8.1'
+gem 'asana', '~> 0.9'
# FogBugz integration
gem 'ruby-fogbugz', '~> 0.2.1'
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -58,16 +58,16 @@
addressable (2.5.2)
public_suffix (>= 2.0.2, < 4.0)
aes_key_wrap (1.0.1)
- akismet (2.0.0)
+ akismet (3.0.0)
apollo_upload_server (2.0.0.beta.3)
graphql (>= 1.8)
rails (>= 4.2)
arel (9.0.0)
- asana (0.8.1)
+ asana (0.9.3)
faraday (~> 0.9)
faraday_middleware (~> 0.9)
faraday_middleware-multi_json (~> 0.0)
- oauth2 (~> 1.0)
+ oauth2 (~> 1.4)
asciidoctor (2.0.10)
asciidoctor-include-ext (0.3.1)
asciidoctor (>= 1.5.6, < 3.0.0)
@@ -1117,9 +1117,9 @@
activerecord-explain-analyze (~> 0.1)
acts-as-taggable-on (~> 6.0)
addressable (~> 2.5.2)
- akismet (~> 2.0)
+ akismet (~> 3.0)
apollo_upload_server (~> 2.0.0.beta3)
- asana (~> 0.8.1)
+ asana (~> 0.9)
asciidoctor (~> 2.0.10)
asciidoctor-include-ext (~> 0.3.1)
asciidoctor-plantuml (= 0.0.10)
--- a/VERSION
+++ b/VERSION
@@ -1 +1 @@
-12.5.4
+12.5.6
--- a/app/controllers/profiles/notifications_controller.rb
+++ b/app/controllers/profiles/notifications_controller.rb
@@ -11,6 +11,7 @@
exclude_group_ids: @group_notifications.select(:source_id)
).execute.map { |group| current_user.notification_settings_for(group, inherit: true) }
@project_notifications = current_user.notification_settings.for_projects.order(:id)
+ .select { |notification| current_user.can?(:read_project, notification.source) }
@global_notification_setting = current_user.global_notification_setting
end
# rubocop: enable CodeReuse/ActiveRecord
--- a/app/helpers/notifications_helper.rb
+++ b/app/helpers/notifications_helper.rb
@@ -116,4 +116,8 @@
def show_unsubscribe_title?(noteable)
can?(current_user, "read_#{noteable.to_ability_name}".to_sym, noteable)
end
+
+ def can_read_project?(project)
+ can?(current_user, :read_project, project)
+ end
end
--- a/app/models/ci/build.rb
+++ b/app/models/ci/build.rb
@@ -53,7 +53,7 @@
has_one :runner_session, class_name: 'Ci::BuildRunnerSession', validate: true, inverse_of: :build
- accepts_nested_attributes_for :runner_session
+ accepts_nested_attributes_for :runner_session, update_only: true
accepts_nested_attributes_for :job_variables
delegate :url, to: :runner_session, prefix: true, allow_nil: true
--- a/app/models/project_services/asana_service.rb
+++ b/app/models/project_services/asana_service.rb
@@ -81,12 +81,12 @@
def check_commit(message, push_msg)
# matches either:
# - #1234
- # - https://app.asana.com/0/0/1234
+ # - https://app.asana.com/0/{project_gid}/{task_gid}
# optionally preceded with:
# - fix/ed/es/ing
# - close/s/d
# - closing
- issue_finder = %r{(fix\w*|clos[ei]\w*+)?\W*(?:https://app\.asana\.com/\d+/\d+/(\d+)|#(\d+))}i
+ issue_finder = %r{(fix\w*|clos[ei]\w*+)?\W*(?:https://app\.asana\.com/\d+/\w+/(\w+)|#(\w+))}i
message.scan(issue_finder).each do |tuple|
# tuple will be
@@ -94,7 +94,7 @@
taskid = tuple[2] || tuple[1]
begin
- task = Asana::Task.find_by_id(client, taskid)
+ task = Asana::Resources::Task.find_by_id(client, taskid)
task.add_comment(text: "#{push_msg} #{message}")
if tuple[0]
--- a/app/models/user.rb
+++ b/app/models/user.rb
@@ -1307,7 +1307,7 @@
.select('ci_runners.*')
group_runners = Ci::RunnerNamespace
- .where(namespace_id: owned_or_maintainers_groups.select(:id))
+ .where(namespace_id: owned_groups.select(:id))
.joins(:runner)
.select('ci_runners.*')
--- a/app/views/sent_notifications/unsubscribe.html.haml
+++ b/app/views/sent_notifications/unsubscribe.html.haml
@@ -1,13 +1,16 @@
- noteable = @sent_notification.noteable
- noteable_type = @sent_notification.noteable_type.titleize.downcase
- noteable_text = show_unsubscribe_title?(noteable) ? %(#{noteable.title} (#{noteable.to_reference})) : %(#{noteable.to_reference})
-- page_title _("Unsubscribe"), noteable_text, noteable_type.pluralize, @sent_notification.project.full_name
+- show_project_path = can_read_project?(@sent_notification.project)
+- project_path = show_project_path ? @sent_notification.project.full_name : _("GitLab / Unsubscribe")
+- noteable_url = show_project_path ? url_for([@sent_notification.project.namespace.becomes(Namespace), @sent_notification.project, noteable]) : breadcrumb_title_link
+- page_title _('Unsubscribe'), noteable_text, noteable_type.pluralize, project_path
%h3.page-title
= _("Unsubscribe from %{type}") % { type: noteable_type }
%p
- - link_to_noteable_text = link_to(noteable_text, url_for([@sent_notification.project.namespace.becomes(Namespace), @sent_notification.project, noteable]))
+ - link_to_noteable_text = link_to(noteable_text, noteable_url)
= _("Are you sure you want to unsubscribe from the %{type}: %{link_to_noteable_text}?").html_safe % { type: noteable_type, link_to_noteable_text: link_to_noteable_text }
%p
--- a/config/initializers/graphql.rb
+++ b/config/initializers/graphql.rb
@@ -5,3 +5,7 @@
GraphQL::Schema::Object.accepts_definition(:authorize)
GraphQL::Schema::Field.accepts_definition(:authorize)
+
+GitlabSchema.middleware << GraphQL::Schema::TimeoutMiddleware.new(max_seconds: ENV.fetch('GITLAB_RAILS_GRAPHQL_TIMEOUT', 30).to_i) do |timeout_error, query|
+ Gitlab::GraphqlLogger.error(message: timeout_error.to_s, query: query.query_string, query_variables: query.provided_variables)
+end
--- a/lib/banzai/filter/relative_link_filter.rb
+++ b/lib/banzai/filter/relative_link_filter.rb
@@ -116,7 +116,7 @@
end
def process_link_to_upload_attr(html_attr)
- path_parts = [Addressable::URI.unescape(html_attr.value)]
+ path_parts = [unescape_and_scrub_uri(html_attr.value)]
if project
path_parts.unshift(relative_url_root, project.full_path)
@@ -172,7 +172,7 @@
end
def cleaned_file_path(uri)
- Addressable::URI.unescape(uri.path).scrub.delete("\0").chomp("/")
+ unescape_and_scrub_uri(uri.path).delete("\0").chomp("/")
end
def relative_file_path(uri)
@@ -184,7 +184,7 @@
def request_path
return unless context[:requested_path]
- Addressable::URI.unescape(context[:requested_path]).chomp("/")
+ unescape_and_scrub_uri(context[:requested_path]).chomp("/")
end
# Convert a relative path into its correct location based on the currently
@@ -266,6 +266,12 @@
def repository
@repository ||= project&.repository
end
+
+ private
+
+ def unescape_and_scrub_uri(uri)
+ Addressable::URI.unescape(uri).scrub
+ end
end
end
end
--- a/locale/gitlab.pot
+++ b/locale/gitlab.pot
@@ -8193,6 +8193,9 @@
msgid "GitHub import"
msgstr ""
+msgid "GitLab / Unsubscribe"
+msgstr ""
+
msgid "GitLab CI Linter has been moved"
msgstr ""
--- a/qa/Dockerfile
+++ b/qa/Dockerfile
@@ -11,7 +11,7 @@
# Update APT sources and install some dependencies
#
RUN sed -i "s/httpredir.debian.org/ftp.us.debian.org/" /etc/apt/sources.list
-RUN apt-get update && apt-get install -y wget unzip xvfb
+RUN apt-get update && apt-get install -y wget unzip xvfb lsb-release
##
# Install some packages from backports
--- a/spec/controllers/profiles/notifications_controller_spec.rb
+++ b/spec/controllers/profiles/notifications_controller_spec.rb
@@ -52,6 +52,35 @@
end.to exceed_query_limit(control)
end
end
+
+ context 'with project notifications' do
+ let!(:notification_setting) { create(:notification_setting, source: project, user: user, level: :watch) }
+
+ before do
+ sign_in(user)
+ get :show
+ end
+
+ context 'when project is public' do
+ let(:project) { create(:project, :public) }
+
+ it 'shows notification setting for project' do
+ expect(assigns(:project_notifications).map(&:source_id)).to include(project.id)
+ end
+ end
+
+ context 'when project is public' do
+ let(:project) { create(:project, :private) }
+
+ it 'shows notification setting for project' do
+ # notification settings for given project were created before project was set to private
+ expect(user.notification_settings.for_projects.map(&:source_id)).to include(project.id)
+
+ # check that notification settings for project where user does not have access are filtered
+ expect(assigns(:project_notifications)).to be_empty
+ end
+ end
+ end
end
describe 'POST update' do
--- a/spec/controllers/sent_notifications_controller_spec.rb
+++ b/spec/controllers/sent_notifications_controller_spec.rb
@@ -56,7 +56,7 @@
get(:unsubscribe, params: { id: sent_notification.reply_key })
end
- shared_examples 'unsubscribing as anonymous' do
+ shared_examples 'unsubscribing as anonymous' do |project_visibility|
it 'does not unsubscribe the user' do
expect(noteable.subscribed?(user, target_project)).to be_truthy
end
@@ -69,6 +69,18 @@
expect(response.status).to eq(200)
expect(response).to render_template :unsubscribe
end
+
+ if project_visibility == :private
+ it 'does not show project name or path' do
+ expect(response.body).not_to include(noteable.project.name)
+ expect(response.body).not_to include(noteable.project.full_name)
+ end
+ else
+ it 'shows project name or path' do
+ expect(response.body).to include(noteable.project.name)
+ expect(response.body).to include(noteable.project.full_name)
+ end
+ end
end
context 'when project is public' do
@@ -79,7 +91,7 @@
expect(response.body).to include(issue.title)
end
- it_behaves_like 'unsubscribing as anonymous'
+ it_behaves_like 'unsubscribing as anonymous', :public
end
context 'when unsubscribing from confidential issue' do
@@ -90,7 +102,7 @@
expect(response.body).to include(confidential_issue.to_reference)
end
- it_behaves_like 'unsubscribing as anonymous'
+ it_behaves_like 'unsubscribing as anonymous', :public
end
context 'when unsubscribing from merge request' do
@@ -100,7 +112,12 @@
expect(response.body).to include(merge_request.title)
end
- it_behaves_like 'unsubscribing as anonymous'
+ it 'shows project name or path' do
+ expect(response.body).to include(issue.project.name)
+ expect(response.body).to include(issue.project.full_name)
+ end
+
+ it_behaves_like 'unsubscribing as anonymous', :public
end
end
@@ -110,11 +127,11 @@
context 'when unsubscribing from issue' do
let(:noteable) { issue }
- it 'shows issue title' do
+ it 'does not show issue title' do
expect(response.body).not_to include(issue.title)
end
- it_behaves_like 'unsubscribing as anonymous'
+ it_behaves_like 'unsubscribing as anonymous', :private
end
context 'when unsubscribing from confidential issue' do
@@ -125,17 +142,17 @@
expect(response.body).to include(confidential_issue.to_reference)
end
- it_behaves_like 'unsubscribing as anonymous'
+ it_behaves_like 'unsubscribing as anonymous', :private
end
context 'when unsubscribing from merge request' do
let(:noteable) { merge_request }
- it 'shows merge request title' do
+ it 'dos not show merge request title' do
expect(response.body).not_to include(merge_request.title)
end
- it_behaves_like 'unsubscribing as anonymous'
+ it_behaves_like 'unsubscribing as anonymous', :private
end
end
end
--- a/spec/features/merge_request/user_suggests_changes_on_diff_spec.rb
+++ b/spec/features/merge_request/user_suggests_changes_on_diff_spec.rb
@@ -139,6 +139,10 @@
# Making sure it's not a Front-end cache.
visit(diffs_project_merge_request_path(project, merge_request))
+ page.within '.line-resolve-all-container' do
+ page.find('.discussion-next-btn').click
+ end
+
expect_appliable_suggestions(2)
page.within("[id='#{hash}']") do
--- a/spec/lib/banzai/filter/relative_link_filter_spec.rb
+++ b/spec/lib/banzai/filter/relative_link_filter_spec.rb
@@ -124,6 +124,15 @@
expect { filter(act) }.not_to raise_error
end
+ it 'does not raise an exception on URIs containing invalid utf-8 byte sequences in uploads' do
+ act = link("/uploads/%FF")
+ expect { filter(act) }.not_to raise_error
+ end
+
+ it 'does not raise an exception on URIs containing invalid utf-8 byte sequences in context requested path' do
+ expect { filter(link("files/test.md"), requested_path: '%FF') }.not_to raise_error
+ end
+
it 'does not raise an exception with a garbled path' do
act = link("open(/var/tmp/):%20/location%0Afrom:%20/test")
expect { filter(act) }.not_to raise_error
--- a/spec/lib/gitlab/gitaly_client/cleanup_service_spec.rb
+++ b/spec/lib/gitlab/gitaly_client/cleanup_service_spec.rb
@@ -9,6 +9,10 @@
let(:client) { described_class.new(project.repository) }
describe '#apply_bfg_object_map_stream' do
+ before do
+ ::Gitlab::GitalyClient.clear_stubs!
+ end
+
it 'sends an apply_bfg_object_map_stream message' do
expect_any_instance_of(Gitaly::CleanupService::Stub)
.to receive(:apply_bfg_object_map_stream)
--- a/spec/models/ci/build_runner_session_spec.rb
+++ b/spec/models/ci/build_runner_session_spec.rb
@@ -4,6 +4,7 @@
describe Ci::BuildRunnerSession, model: true do
let!(:build) { create(:ci_build, :with_runner_session) }
+ let(:url) { 'https://new.example.com' }
subject { build.runner_session }
@@ -12,6 +13,25 @@
it { is_expected.to validate_presence_of(:build) }
it { is_expected.to validate_presence_of(:url).with_message('must be a valid URL') }
+ context 'nested attribute assignment' do
+ it 'creates a new session' do
+ simple_build = create(:ci_build)
+ simple_build.runner_session_attributes = { url: url }
+ simple_build.save!
+
+ session = simple_build.reload.runner_session
+ expect(session).to be_a(Ci::BuildRunnerSession)
+ expect(session.url).to eq(url)
+ end
+
+ it 'updates session with new attributes' do
+ build.runner_session_attributes = { url: url }
+ build.save!
+
+ expect(build.reload.runner_session.url).to eq(url)
+ end
+ end
+
describe '#terminal_specification' do
let(:specification) { subject.terminal_specification }
--- a/spec/models/project_services/asana_service_spec.rb
+++ b/spec/models/project_services/asana_service_spec.rb
@@ -21,6 +21,7 @@
describe 'Execute' do
let(:user) { create(:user) }
let(:project) { create(:project) }
+ let(:gid) { "123456789ABCD" }
def create_data_for_commits(*messages)
{
@@ -48,32 +49,32 @@
end
it 'calls Asana service to create a story' do
- data = create_data_for_commits('Message from commit. related to #123456')
+ data = create_data_for_commits("Message from commit. related to ##{gid}")
expected_message = "#{data[:user_name]} pushed to branch #{data[:ref]} of #{project.full_name} ( #{data[:commits][0][:url]} ): #{data[:commits][0][:message]}"
- d1 = double('Asana::Task')
+ d1 = double('Asana::Resources::Task')
expect(d1).to receive(:add_comment).with(text: expected_message)
- expect(Asana::Task).to receive(:find_by_id).with(anything, '123456').once.and_return(d1)
+ expect(Asana::Resources::Task).to receive(:find_by_id).with(anything, gid).once.and_return(d1)
@asana.execute(data)
end
it 'calls Asana service to create a story and close a task' do
data = create_data_for_commits('fix #456789')
- d1 = double('Asana::Task')
+ d1 = double('Asana::Resources::Task')
expect(d1).to receive(:add_comment)
expect(d1).to receive(:update).with(completed: true)
- expect(Asana::Task).to receive(:find_by_id).with(anything, '456789').once.and_return(d1)
+ expect(Asana::Resources::Task).to receive(:find_by_id).with(anything, '456789').once.and_return(d1)
@asana.execute(data)
end
it 'is able to close via url' do
data = create_data_for_commits('closes https://app.asana.com/19292/956299/42')
- d1 = double('Asana::Task')
+ d1 = double('Asana::Resources::Task')
expect(d1).to receive(:add_comment)
expect(d1).to receive(:update).with(completed: true)
- expect(Asana::Task).to receive(:find_by_id).with(anything, '42').once.and_return(d1)
+ expect(Asana::Resources::Task).to receive(:find_by_id).with(anything, '42').once.and_return(d1)
@asana.execute(data)
end
@@ -84,28 +85,28 @@
ref https://app.asana.com/19292/956299/42 and closing https://app.asana.com/19292/956299/12
EOF
data = create_data_for_commits(message)
- d1 = double('Asana::Task')
+ d1 = double('Asana::Resources::Task')
expect(d1).to receive(:add_comment)
expect(d1).to receive(:update).with(completed: true)
- expect(Asana::Task).to receive(:find_by_id).with(anything, '123').once.and_return(d1)
+ expect(Asana::Resources::Task).to receive(:find_by_id).with(anything, '123').once.and_return(d1)
- d2 = double('Asana::Task')
+ d2 = double('Asana::Resources::Task')
expect(d2).to receive(:add_comment)
expect(d2).to receive(:update).with(completed: true)
- expect(Asana::Task).to receive(:find_by_id).with(anything, '456').once.and_return(d2)
+ expect(Asana::Resources::Task).to receive(:find_by_id).with(anything, '456').once.and_return(d2)
- d3 = double('Asana::Task')
+ d3 = double('Asana::Resources::Task')
expect(d3).to receive(:add_comment)
- expect(Asana::Task).to receive(:find_by_id).with(anything, '789').once.and_return(d3)
+ expect(Asana::Resources::Task).to receive(:find_by_id).with(anything, '789').once.and_return(d3)
- d4 = double('Asana::Task')
+ d4 = double('Asana::Resources::Task')
expect(d4).to receive(:add_comment)
- expect(Asana::Task).to receive(:find_by_id).with(anything, '42').once.and_return(d4)
+ expect(Asana::Resources::Task).to receive(:find_by_id).with(anything, '42').once.and_return(d4)
- d5 = double('Asana::Task')
+ d5 = double('Asana::Resources::Task')
expect(d5).to receive(:add_comment)
expect(d5).to receive(:update).with(completed: true)
- expect(Asana::Task).to receive(:find_by_id).with(anything, '12').once.and_return(d5)
+ expect(Asana::Resources::Task).to receive(:find_by_id).with(anything, '12').once.and_return(d5)
@asana.execute(data)
end
--- a/spec/models/user_spec.rb
+++ b/spec/models/user_spec.rb
@@ -2533,8 +2533,8 @@
add_user(:maintainer)
end
- it 'loads' do
- expect(user.ci_owned_runners).to contain_exactly(runner)
+ it 'does not load' do
+ expect(user.ci_owned_runners).to be_empty
end
end
@@ -2549,6 +2549,20 @@
end
end
+ shared_examples :group_member do
+ context 'when the user is owner' do
+ before do
+ add_user(:owner)
+ end
+
+ it 'loads' do
+ expect(user.ci_owned_runners).to contain_exactly(runner)
+ end
+ end
+
+ it_behaves_like :member
+ end
+
context 'with groups projects runners' do
let(:group) { create(:group) }
let!(:project) { create(:project, group: group) }
@@ -2557,7 +2571,7 @@
group.add_user(user, access)
end
- it_behaves_like :member
+ it_behaves_like :group_member
end
context 'with groups runners' do
@@ -2568,14 +2582,14 @@
group.add_user(user, access)
end
- it_behaves_like :member
+ it_behaves_like :group_member
end
context 'with other projects runners' do
let!(:project) { create(:project) }
def add_user(access)
- project.add_role(user, access)
+ project.add_user(user, access)
end
it_behaves_like :member
@@ -2593,7 +2607,7 @@
subgroup.add_user(another_user, :owner)
end
- it_behaves_like :member
+ it_behaves_like :group_member
end
end
--- a/spec/requests/api/graphql/gitlab_schema_spec.rb
+++ b/spec/requests/api/graphql/gitlab_schema_spec.rb
@@ -8,6 +8,18 @@
set(:project) { create(:project) }
shared_examples 'imposing query limits' do
+ describe 'timeouts' do
+ context 'when timeout is reached' do
+ it 'shows an error' do
+ Timecop.scale(50000000) do # ludicrously large number because the timeout has to happen before the query even begins
+ subject
+
+ expect_graphql_errors_to_include /Timeout/
+ end
+ end
+ end
+ end
+
describe '#max_complexity' do
context 'when complexity is too high' do
it 'shows an error' do
--- a/spec/requests/api/runners_spec.rb
+++ b/spec/requests/api/runners_spec.rb
@@ -6,6 +6,7 @@
let(:admin) { create(:user, :admin) }
let(:user) { create(:user) }
let(:user2) { create(:user) }
+ let(:group_maintainer) { create(:user) }
let(:project) { create(:project, creator_id: user.id) }
let(:project2) { create(:project, creator_id: user.id) }
@@ -20,6 +21,7 @@
before do
# Set project access for users
+ create(:group_member, :maintainer, user: group_maintainer, group: group)
create(:project_member, :maintainer, user: user, project: project)
create(:project_member, :maintainer, user: user, project: project2)
create(:project_member, :reporter, user: user2, project: project)
@@ -525,6 +527,20 @@
end.to change { Ci::Runner.project_type.count }.by(-1)
end
+ it 'does not delete group runner with maintainer access' do
+ delete api("/runners/#{group_runner.id}", group_maintainer)
+
+ expect(response).to have_http_status(403)
+ end
+
+ it 'deletes group runner with owner access' do
+ expect do
+ delete api("/runners/#{group_runner.id}", user)
+
+ expect(response).to have_http_status(204)
+ end.to change { Ci::Runner.group_type.count }.by(-1)
+ end
+
it_behaves_like '412 response' do
let(:request) { api("/runners/#{project_runner.id}", user) }
end

View file

@ -33,3 +33,4 @@
0750-fix-relative-paths.patch 0750-fix-relative-paths.patch
0760-bump-rubyzip.patch 0760-bump-rubyzip.patch
0770-bump-node-d3.patch 0770-bump-node-d3.patch
gitlab-v12.5.4..v12.5.6.diff

1
debian/rules vendored
View file

@ -7,6 +7,7 @@ include /usr/share/dpkg/pkg-info.mk
override_dh_install: override_dh_install:
dh_install -XLICENSE dh_install -XLICENSE
dh_installexamples
# Make sure we are installing all required files in debian/install # Make sure we are installing all required files in debian/install
sh debian/upstream-file-count-check.sh sh debian/upstream-file-count-check.sh
rm -rf debian/gitlab/usr/share/gitlab/tmp/* rm -rf debian/gitlab/usr/share/gitlab/tmp/*