request-tracker5 (5.0.1+dfsg-1)
[PTS] [DDPO]
NEW: VCS has unreleased changes: 5.0.2+dfsg-1 > 5.0.1+dfsg-1
- Git: https://salsa.debian.org/request-tracker-team/request-tracker5.git
-
- Branch: master
- Path: debian/changelog
- Browser: https://salsa.debian.org/request-tracker-team/request-tracker5
- Last scan: 2022-01-24 01:55:15+00
- Next scan: 2022-02-01 11:38:00+00
- Debian changelog in Git:
request-tracker5 (5.0.2+dfsg-1) UNRELEASED; urgency=medium
* New upstream release (Closes: #988905).
* Drop patches merged upstream:
- use_webpath_for_relateddata_links.diff
- rt-crypt-gnupg-combine-call.diff
* Ensure package descriptions consistently refer to version 5
(Closes: #984676).
* Ensure a sane database admin user is specified for both PostgreSQL
and MySQL.
* Only create symlinks for the DB upgrade scripts we ship (Closes: #985704).
* Fixes a security vulnerability that involves a login timing side-channel
attack. This resolves CVE-2021-38562 (Closes: #995167)
-- Andrew Ruthven <andrew@etc.gen.nz> Tue, 30 Nov 2021 22:52:28 +1300
- This branch is 65 commits ahead of tag debian/5.0.1+dfsg-1
- Git log:
commit 9858f9d177264f55f673aa1c01cb3e358cc365d0
Author: Andrew Ruthven <andrew@etc.gen.nz>
Date: Tue Nov 30 22:53:30 2021 +1300
Add changelog entry to close 995167
commit 6974f7d8e414f164c24ec484da6ad655e2889349
Author: Andrew Ruthven <andrew@etc.gen.nz>
Date: Sun Sep 19 22:35:47 2021 +1200
Update for 5.0.2
commit 2cbd6140281123df5419d875a572d9df8953e159
Merge: 00034196 ee4ee66c
Author: Andrew Ruthven <andrew@etc.gen.nz>
Date: Sun Sep 19 22:16:52 2021 +1200
merge patched into master
commit ee4ee66cd110c699189e8e6863a9f14693579c52
Author: Andrew Ruthven <andrew@etc.gen.nz>
Date: Sat Feb 13 21:40:00 2021 +1300
Debian provides the Mozilla CAs in the ca-certificates package.
Forwarded: not-needed
Patch-Name: ignore_Mozilla::CA.diff
commit 8c401f5cbafaf101c27af40c6493e9d3ecff61dc
Author: Andrew Ruthven <andrew@etc.gen.nz>
Date: Thu Jul 9 23:03:35 2020 +1200
On Debian there is no need to install the GD modules if GD is desired.
Forwarded: not-needed
Patch-Name: debianize_charts.diff
commit d363b11062beedd920b64f186a85c6f3607c5e10
Author: Andrew Ruthven <andrew@etc.gen.nz>
Date: Thu Jul 9 22:53:09 2020 +1200
Use Debian location of commands and data
Forwarded: not-needed
Patch-Name: debianize_commands.diff
commit 3dd0d0a23a6d9c73adb5255953093b7c43a93093
Author: Andrew Ruthven <andrew@etc.gen.nz>
Date: Thu Jul 9 22:33:55 2020 +1200
Point to Debian locaton of mason_data.
Forwarded: not-needed
Patch-Name: debianize_extensions.diff
commit cd50782f5de8da56371c64785727dc2db4145627
Author: Andrew Ruthven <andrew@etc.gen.nz>
Date: Mon Jul 6 21:30:54 2020 +1200
Force use of IPv4 for LDAP test.
Net::LDAP::Server::Test binds to IPv6 by default, but Net::LDAP uses
'localhost' which resolves to an IPv4 address. Even when I switched
the call to Net::LDAP->new() to use ip6-localhost it failed elsewhere
due to RT using 127.0.0.1.
Patch-Name: fix_test_ldap_ipv4.diff
commit a70c7413b77b9bf363c5de69107c73785c7eb444
Author: Dominic Hargreaves <dom@earth.li>
Date: Sun Mar 29 19:37:52 2020 +0100
Fix shebang for Debian policy
Patch-Name: fix_shebang_upgrade_mysql_schema.diff
commit 3eb5381813eae1efbe17ab445aaede8881b1b448
Author: Dominic Hargreaves <dom@earth.li>
Date: Sun Mar 29 19:18:28 2020 +0100
Fix POD for rt-munge-attachments
Patch-Name: fix_pod_rt_munge_attachments.diff
commit 7d3e83cc94e3b5f3e7e6b8b5a463e21bb76de076
Author: Dominic Hargreaves <dom@earth.li>
Date: Sun Sep 9 21:35:08 2018 +0100
Force the use of Cpanel::JSON::XS
JSON::XS breaks RT due to the removed from_json/to_json methods and JSON.pm
prefers JSON::XS to our preferred implementation Cpanel::JSON::XS by
default.
Bug-Debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=848041
Patch-Name: use_cpanel_json_xs.diff
commit a49e091d0b5faddab1dc3daf0b6625d69991046d
Author: gregor herrmann <gregoa@debian.org>
Date: Tue Oct 11 20:40:39 2016 +0200
set LC_ALL to C
LANG overrides only not set LC_variables, so if LC_CTYPE is set in the
environment, it persists and tons of tests fail.
Origin: vendor
Author: gregor herrmann <gregoa@debian.org>
Last-Update: 2016-10-11
Patch-Name: test_locale.diff
commit 328018a98ab48a0d28907563bfbbb6874e2de5f1
Author: Dominic Hargreaves <dom@earth.li>
Date: Fri Jan 1 18:23:08 2016 +0000
Use Noto Sans instead of Droid Sans
Droid Sans is deprecated in Debian, and we are using the fonts from
Debian rather than bundled with RT.
Bug-Debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=804687
Patch-Name: fonts_use_noto_sans.diff
commit e3ea5addf2e58794dca3e7935413e22cebe807dd
Author: Dominic Hargreaves <dom@earth.li>
Date: Thu Dec 31 12:17:56 2015 +0000
Extract the correct (Debian) version number in configure.ac
Also make clear in the web interface that this version number is from
Debian.
Patch-Name: debianize_version.diff
commit 8bdc0654ce830715a844f9da9e375dda76823c31
Author: Dominic Hargreaves <dom@earth.li>
Date: Thu May 7 21:37:37 2015 +0000
Allow overriding DatabaseType from the environment in RT::Test
Patch-Name: rt_test_db_type.diff
commit a8dc5d9066529428c4cbc0b1fbeb53aa29e6d06e
Author: Dominic Hargreaves <dom@earth.li>
Date: Wed May 6 22:29:35 2015 +0000
Load RT::Generated directly from @INC
This allows for the possibility of overriding RT::Generated in test
scenarios.
Patch-Name: load_rt_generated.diff
commit 523206727595c6633f00653358e8ec607a815b12
Author: Niko Tyni <ntyni@debian.org>
Date: Sat Dec 27 23:19:03 2014 +0200
Fix upgrade problems caused by an RTx::AssetTracker installation bug
The setup of the wheezy rt4-extension-assettracker package
(RTx::AssetTracker 2.0.0b2) accidentally inserted two pairs of system role
accounts, causing upgrade failures on SQLite backends due to uniqueness
constraint violations.
Bug-Debian: https://bugs.debian.org/773343
Patch-Name: assettracker-sysgroups.diff
commit 9a09eab12bb2e223db7c7ddb520f16800e849a1d
Author: Dominic Hargreaves <dom@earth.li>
Date: Sun Feb 23 22:48:50 2014 +0000
Debianize UPGRADING-4.2
Forwarded: not-needed
Patch-Name: debianize_UPGRADING-4.2.diff
commit 5712b42c678c9c6183f5e1af862ad92ae1f4056c
Author: Dominic Hargreaves <dom@earth.li>
Date: Sun Feb 16 16:11:43 2014 +0000
Don't include remote image references or redirects in broken install page
This fixes the lintian error privacy-breach-logo
Forwarded: no
Patch-Name: fix_lintian_privacy_break_logo_error.diff
commit 8dd9c539e1ddeda9fe52df493c5e3015c6312575
Author: Dominic Hargreaves <dom@earth.li>
Date: Wed Mar 27 23:42:04 2013 +0000
Reference correct local directory for Debian
Forwarded: not-needed
Patch-Name: debianize_docs_local.diff
commit 1f821e2cf53b87113cb647dca2b9b5a120ee2498
Author: Dominic Hargreaves <dom@earth.li>
Date: Wed Mar 27 23:36:30 2013 +0000
Customise backup docs for Debian
Forwarded: not-needed
Patch-Name: debianize_backup_docs.diff
commit 5f1b448315500801864b651347fc40a9bb89a20b
Author: Dominic Hargreaves <dom@earth.li>
Date: Sun Mar 24 18:38:07 2013 +0000
Fix relative references to config path
Forwarded: not-needed
Bug: http://issues.bestpractical.com/Ticket/Display.html?id=13592
Bug-Debian: http://bugs.debian.org/518556
Patch-Name: rt_setup_database_upgrade_basedir.diff
commit 5d62eb2f5d163cf860cb11b9c3a8766d66f22e87
Author: Stephen Quinney <sjq@debian.org>
Date: Sun Mar 24 18:38:06 2013 +0000
Use RT_SiteModules.pm in lib/RT/Interface/Web/Handler.pm
Forwarded: not-needed
Patch-Name: sitemodules.diff
commit 5b93651193edee6d0253935d06688ae219499dfa
Author: Stephen Quinney <sjq@debian.org>
Date: Sun Mar 24 18:38:05 2013 +0000
Add Debian layout (FHS-compatible)
Forwarded: not-needed
Patch-Name: layout.diff
commit 00034196b5026f45d72916509d606acd254de12e
Author: Andrew Ruthven <andrew@etc.gen.nz>
Date: Sun Sep 19 22:13:30 2021 +1200
record new upstream branch created by importing request-tracker5_5.0.2+dfsg.orig.tar.gz, request-tracker5_5.0.2+dfsg.orig-third-party-source.tar.gz
commit fd4cbbee30bfca60812d389fbce1c52f1816dcf1
Merge: 3df10227 ea1285bb
Author: Andrew Ruthven <andrew@etc.gen.nz>
Date: Sun Sep 19 22:13:29 2021 +1200
Import request-tracker5_5.0.2+dfsg.orig.tar.gz, request-tracker5_5.0.2+dfsg.orig-third-party-source.tar.gz
commit ea1285bb3416eeb345046618695b6ff963f9fac5
Author: Andrew Ruthven <andrew@etc.gen.nz>
Date: Sun Sep 19 22:12:34 2021 +1200
Import request-tracker5_5.0.2+dfsg.orig.tar.gz
commit 58970b3fd6b943ecb14db182253cf85d03b6bc83
Author: Andrew Ruthven <andrew@etc.gen.nz>
Date: Fri Jul 30 12:13:25 2021 +1200
Update for 5.0.2beta1
commit 9dd0650c227353f530db9dc4a9ae54b1bc61c98e
Merge: 62d70988 63b44fe9
Author: Andrew Ruthven <andrew@etc.gen.nz>
Date: Fri Jul 30 11:58:15 2021 +1200
merge patched into master
commit 63b44fe9418d827c198bedc3c972ca4466668d19
Author: Andrew Ruthven <andrew@etc.gen.nz>
Date: Sat Feb 13 21:40:00 2021 +1300
Debian provides the Mozilla CAs in the ca-certificates package.
Forwarded: not-needed
Patch-Name: ignore_Mozilla::CA.diff
commit 4a90fbc9263331256afdcf4a0e8c6d92cdf1132a
Author: Andrew Ruthven <andrew@etc.gen.nz>
Date: Thu Jul 9 23:03:35 2020 +1200
On Debian there is no need to install the GD modules if GD is desired.
Forwarded: not-needed
Patch-Name: debianize_charts.diff
commit 1962da6b8c99300c2c6f81fea73563f0e3ba1d8e
Author: Andrew Ruthven <andrew@etc.gen.nz>
Date: Thu Jul 9 22:53:09 2020 +1200
Use Debian location of commands and data
Forwarded: not-needed
Patch-Name: debianize_commands.diff
commit 6985ed9288a8c51a4dff1b08c2a9364e5aac40c8
Author: Andrew Ruthven <andrew@etc.gen.nz>
Date: Thu Jul 9 22:33:55 2020 +1200
Point to Debian locaton of mason_data.
Forwarded: not-needed
Patch-Name: debianize_extensions.diff
commit 4251246ee56aa659d2972377e063385c67d2d4a4
Author: Andrew Ruthven <andrew@etc.gen.nz>
Date: Mon Jul 6 21:30:54 2020 +1200
Force use of IPv4 for LDAP test.
Net::LDAP::Server::Test binds to IPv6 by default, but Net::LDAP uses
'localhost' which resolves to an IPv4 address. Even when I switched
the call to Net::LDAP->new() to use ip6-localhost it failed elsewhere
due to RT using 127.0.0.1.
Patch-Name: fix_test_ldap_ipv4.diff
commit 0e7e41397810c0dcdaa04f4c22f48a0a9a69dcf2
Author: Dominic Hargreaves <dom@earth.li>
Date: Sun Mar 29 19:37:52 2020 +0100
Fix shebang for Debian policy
Patch-Name: fix_shebang_upgrade_mysql_schema.diff
commit 3e8079791b96d8c0b0db3b04fced99a87be8e30e
Author: Dominic Hargreaves <dom@earth.li>
Date: Sun Mar 29 19:18:28 2020 +0100
Fix POD for rt-munge-attachments
Patch-Name: fix_pod_rt_munge_attachments.diff
commit e392ba5a4af898c31fd7f56dde23a6eb52b9160f
Author: Dominic Hargreaves <dom@earth.li>
Date: Sun Sep 9 21:35:08 2018 +0100
Force the use of Cpanel::JSON::XS
JSON::XS breaks RT due to the removed from_json/to_json methods and JSON.pm
prefers JSON::XS to our preferred implementation Cpanel::JSON::XS by
default.
Bug-Debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=848041
Patch-Name: use_cpanel_json_xs.diff
commit ea9ab61c4cf3b58f502eb0b5b768ff4c431de8fd
Author: gregor herrmann <gregoa@debian.org>
Date: Tue Oct 11 20:40:39 2016 +0200
set LC_ALL to C
LANG overrides only not set LC_variables, so if LC_CTYPE is set in the
environment, it persists and tons of tests fail.
Origin: vendor
Author: gregor herrmann <gregoa@debian.org>
Last-Update: 2016-10-11
Patch-Name: test_locale.diff
commit e1d58ed3375a0c211ba85aa382df256f13ee8815
Author: Dominic Hargreaves <dom@earth.li>
Date: Fri Jan 1 18:23:08 2016 +0000
Use Noto Sans instead of Droid Sans
Droid Sans is deprecated in Debian, and we are using the fonts from
Debian rather than bundled with RT.
Bug-Debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=804687
Patch-Name: fonts_use_noto_sans.diff
commit 38e522ab36f8cfe09ff93efdb06b0d7b1bb95fa2
Author: Dominic Hargreaves <dom@earth.li>
Date: Thu Dec 31 12:17:56 2015 +0000
Extract the correct (Debian) version number in configure.ac
Also make clear in the web interface that this version number is from
Debian.
Patch-Name: debianize_version.diff
commit d2836e0d7f2cbaabb39a653a879538fedbc5d916
Author: Dominic Hargreaves <dom@earth.li>
Date: Thu May 7 21:37:37 2015 +0000
Allow overriding DatabaseType from the environment in RT::Test
Patch-Name: rt_test_db_type.diff
commit 9f38e9a79cddc6285aafcc8faba4217019b60e54
Author: Dominic Hargreaves <dom@earth.li>
Date: Wed May 6 22:29:35 2015 +0000
Load RT::Generated directly from @INC
This allows for the possibility of overriding RT::Generated in test
scenarios.
Patch-Name: load_rt_generated.diff
commit 90f4efd89ebccf7d6cf2a0e2c92856de21f12971
Author: Niko Tyni <ntyni@debian.org>
Date: Sat Dec 27 23:19:03 2014 +0200
Fix upgrade problems caused by an RTx::AssetTracker installation bug
The setup of the wheezy rt4-extension-assettracker package
(RTx::AssetTracker 2.0.0b2) accidentally inserted two pairs of system role
accounts, causing upgrade failures on SQLite backends due to uniqueness
constraint violations.
Bug-Debian: https://bugs.debian.org/773343
Patch-Name: assettracker-sysgroups.diff
commit b29db3153138dab22f6ac9d83b268007dfc83447
Author: Dominic Hargreaves <dom@earth.li>
Date: Sun Feb 23 22:48:50 2014 +0000
Debianize UPGRADING-4.2
Forwarded: not-needed
Patch-Name: debianize_UPGRADING-4.2.diff
commit e1b3145a264e34ba8e799d89244d44b5d303dd8e
Author: Dominic Hargreaves <dom@earth.li>
Date: Sun Feb 16 16:11:43 2014 +0000
Don't include remote image references or redirects in broken install page
This fixes the lintian error privacy-breach-logo
Forwarded: no
Patch-Name: fix_lintian_privacy_break_logo_error.diff
commit 527b335f6d681050c7c6d4d32910bd644f8c0750
Author: Dominic Hargreaves <dom@earth.li>
Date: Wed Mar 27 23:42:04 2013 +0000
Reference correct local directory for Debian
Forwarded: not-needed
Patch-Name: debianize_docs_local.diff
commit 88f85271ef4ef2f33e1fd727891a2ad87eebeacd
Author: Dominic Hargreaves <dom@earth.li>
Date: Wed Mar 27 23:36:30 2013 +0000
Customise backup docs for Debian
Forwarded: not-needed
Patch-Name: debianize_backup_docs.diff
commit 9a57064be29a1a6035662a50964b9f07d45442fe
Author: Dominic Hargreaves <dom@earth.li>
Date: Sun Mar 24 18:38:07 2013 +0000
Fix relative references to config path
Forwarded: not-needed
Bug: http://issues.bestpractical.com/Ticket/Display.html?id=13592
Bug-Debian: http://bugs.debian.org/518556
Patch-Name: rt_setup_database_upgrade_basedir.diff
commit 97caf5fa611ca5e892667cf23250d5bf29d2fb95
Author: Stephen Quinney <sjq@debian.org>
Date: Sun Mar 24 18:38:06 2013 +0000
Use RT_SiteModules.pm in lib/RT/Interface/Web/Handler.pm
Forwarded: not-needed
Patch-Name: sitemodules.diff
commit bf32cb6468dcd4ed3f8d204593005a26a435b1ec
Author: Stephen Quinney <sjq@debian.org>
Date: Sun Mar 24 18:38:05 2013 +0000
Add Debian layout (FHS-compatible)
Forwarded: not-needed
Patch-Name: layout.diff
commit 62d70988bd9c09f0b651081a3d2f2fceabad8a6b
Author: Andrew Ruthven <andrew@etc.gen.nz>
Date: Fri Jul 30 11:49:16 2021 +1200
record new upstream branch created by importing request-tracker5_5.0.2beta1+dfsg.orig.tar.gz, request-tracker5_5.0.2beta1+dfsg.orig-third-party-source.tar.gz
commit 3df10227ee6b26e15b7641f52a0b0b69c8e87668
Merge: 81d966c8 96fc8f82
Author: Andrew Ruthven <andrew@etc.gen.nz>
Date: Fri Jul 30 11:49:15 2021 +1200
Import request-tracker5_5.0.2beta1+dfsg.orig.tar.gz, request-tracker5_5.0.2beta1+dfsg.orig-third-party-source.tar.gz
commit 96fc8f82ba13b26ee77dedbee34b93c68ee6a9af
Author: Andrew Ruthven <andrew@etc.gen.nz>
Date: Fri Jul 30 11:44:50 2021 +1200
Import request-tracker5_5.0.2beta1+dfsg.orig.tar.gz
commit b2b78fd37b50c6bb9645830a15c4b85a9dcf0b6c
Author: Andrew Ruthven <puck@catalyst.net.nz>
Date: Sat May 22 22:24:48 2021 +1200
Changelog entry for GnuPG using WKD in tests fix
commit bc6d81b8b93282a1ef3412fb8375c2fdc335c817
Merge: ae1a1fe2 4c41bc97
Author: Andrew Ruthven <puck@catalyst.net.nz>
Date: Sat May 22 00:29:46 2021 +1200
merge patched into master
commit 4c41bc9777df840d28cc18e006b5146d3085ec7c
Author: Andrew Ruthven <puck@catalyst.net.nz>
Date: Fri May 21 23:44:56 2021 +1200
Disable using WKD on GnuPG tests that might attempt to use the network.
If GnuPG isn't able to use the network (DNS and HTTPS) then the error
message returned from a failed WKD lookup is different than one which
fails due to the key not existing.
Given it is a Debian policy requirement[0] to during build no remote
network access is allowed, we'll disable WKD usage.
[0] https://www.debian.org/doc/debian-policy/ch-source.html#main-building-script-debian-rules
Bug: https://rt.bestpractical.com/Ticket/Display.html?id=37159
Debian-Bug: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=988905
Patch-Name: rt_test_gnupg_disable_wkd.diff
commit ae1a1fe2b80b3a6fb898d9b577eb65d37601192d
Merge: 43869f98 54a28742
Author: Andrew Ruthven <puck@catalyst.net.nz>
Date: Sat May 22 00:27:26 2021 +1200
merge patched into master
commit 54a28742777953fc4b2203b1066bd024e686c91b
Author: Andrew Ruthven <puck@catalyst.net.nz>
Date: Fri May 21 23:44:56 2021 +1200
Disable using WKD on GnuPG tests that might attempt to use the network.
If GnuPG isn't able to use the network (DNS and HTTPS) then the error
message returned from a failed WKD lookup is different than one which
fails due to the key not existing.
Given it is a Debian policy requirement[0] to during build no remote
network access is allowed, we'll disable WKD usage.
[0] https://www.debian.org/doc/debian-policy/ch-source.html#main-building-script-debian-rules
Debian-Bug: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=988905
Patch-Name: rt_test_gnupg_disable_wkd.diff
commit 43869f9877f01d747a70434f5f0c98e9049ae2bf
Merge: 4319788e 904d478d
Author: Andrew Ruthven <puck@catalyst.net.nz>
Date: Sat May 22 00:14:01 2021 +1200
merge patched into master
commit 904d478da25a7874d7684bc6fddd63f4e09e8432
Author: Andrew Ruthven <puck@catalyst.net.nz>
Date: Fri May 21 23:44:56 2021 +1200
Disable using WKD on GnuPG tests that might attempt to use the network
Debian-Bug: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=988905
Patch-Name: rt_test_gnupg_disable_wkd.diff
commit 4319788e590b53c5a0cda331b9dffd84d5a9a329
Merge: 4b1621a8 eee16514
Author: Andrew Ruthven <puck@catalyst.net.nz>
Date: Fri May 21 23:49:45 2021 +1200
merge patched into master
commit eee16514aaadf1cbd323083f2e1651a17e2b729e
Author: Andrew Ruthven <puck@catalyst.net.nz>
Date: Fri May 21 23:44:56 2021 +1200
Disable using WKD on GnuPG tests that might attempt to use the network
Debian-Bug: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=988905
Patch-Name: rt_test_gnupg_disable_wkd.diff
commit 4b1621a84011ed1913a1e0239ca5fe045c648f6c
Author: Andrew Ruthven <andrew@etc.gen.nz>
Date: Sat Apr 10 23:51:37 2021 +1200
Update database upgrade scripts
* Only create symlinks for the scripts we ship.
commit 7dc22ebf48b3f170221e91a089f050e1b11f9f7f
Author: Andrew Ruthven <andrew@etc.gen.nz>
Date: Sat Apr 10 18:36:25 2021 +1200
Ensure a sane database admin user is defined.
Because we run configure and specify pgsql as the dbtype, the default
database admin user is set to 'postgres'. We need to make sure this
is root if the user is using MySQL.
commit 86012da1e86775d4f9e1d728578b513408d9082c
Author: Andrew Ruthven <andrew@etc.gen.nz>
Date: Sun Mar 7 21:07:57 2021 +1300
Ensure package descriptions consistently refer to version 5
