NetBSD Problem Report #51032
From hf@spg.tu-darmstadt.de Thu Mar 31 09:54:37 2016
Return-Path: <hf@spg.tu-darmstadt.de>
Received: from mail.netbsd.org (mail.netbsd.org [199.233.217.200])
(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
(Client CN "mail.netbsd.org", Issuer "Postmaster NetBSD.org" (verified OK))
by mollari.NetBSD.org (Postfix) with ESMTPS id 7BB5D7A3D8
for <gnats-bugs@gnats.NetBSD.org>; Thu, 31 Mar 2016 09:54:37 +0000 (UTC)
Message-Id: <201603310931.u2V9VXZt029028@Stoderzinken.nt.e-technik.tu-darmstadt.de>
Date: Thu, 31 Mar 2016 11:31:33 +0200 (CEST)
From: Hauke Fath <hf@spg.tu-darmstadt.de>
Reply-To: Hauke Fath <hf@spg.tu-darmstadt.de>
To: gnats-bugs@NetBSD.org
Cc: Hauke Fath <hf@spg.tu-darmstadt.de>
Subject: www/php-owncloud's code signing broken
X-Send-Pr-Version: 3.95
>Number: 51032
>Category: pkg
>Synopsis: www/php-owncloud's code signing broken
>Confidential: no
>Severity: serious
>Priority: low
>Responsible: ryoon
>State: closed
>Class: sw-bug
>Submitter-Id: net
>Arrival-Date: Thu Mar 31 09:55:00 +0000 2016
>Closed-Date: Mon Feb 27 13:29:24 +0000 2017
>Last-Modified: Mon Feb 27 13:29:24 +0000 2017
>Originator: Hauke Fath
>Release: NetBSD 7.0_STABLE
>Organization:
Technische Universitaet Darmstadt
>Environment:
System: NetBSD Stoderzinken 7.0_STABLE NetBSD 7.0_STABLE (P4SRV) #0: Wed Mar 23 12:03:24 CET 2016 hf@Hochstuhl:/var/obj/netbsd-builds/7/i386/sys/arch/i386/compile/P4SRV i386
Architecture: i386
Machine: i386
>Description:
With v9, owncloud introduced code signing
<https://doc.owncloud.org/server/9.0/admin_manual/issues/code_signing.html>.
Unfortunately, the feature appears to collide with the pkgsrc
installation process, and the owncloud server's automatic
upgrade process will greet the admin with reams of "invalid
hash" messages.
>How-To-Repeat:
Install or upgrade to php-owncloud v9. Log on to the web interface admin accound, be greeted with a ream of dire warnings.
>Fix:
I am not sure owncloud's code signing even makes much sense,
given the installation is not managed by its own means, but by
pkgsrc, which has its own hashes for the files installed.
Maybe owncloud's code signing only works with upstream's
packaging? Or maybe there is a way of regenerating the hashes
during the pkgsrc build?
>Release-Note:
>Audit-Trail:
Responsible-Changed-From-To: pkg-manager->ryoon
Responsible-Changed-By: bsiegert@NetBSD.org
Responsible-Changed-When: Fri, 01 Apr 2016 20:19:05 +0000
Responsible-Changed-Why:
Over to maintainer.
From: "Ryo ONODERA" <ryoon@netbsd.org>
To: gnats-bugs@gnats.NetBSD.org
Cc:
Subject: PR/51032 CVS commit: pkgsrc/www/php-owncloud
Date: Sun, 25 Sep 2016 13:06:31 +0000
Module Name: pkgsrc
Committed By: ryoon
Date: Sun Sep 25 13:06:31 UTC 2016
Modified Files:
pkgsrc/www/php-owncloud: Makefile PLIST distinfo
Log Message:
Update to 9.1.1
* Remove contact and calendar distfiles
* Remove replace commands for code sining, fix PR pkg/51032
Changelog:
Version 9.1.1 Sep 20 2016
Core: Remove OCS response body for HTTP status 204 and 304 which disturbed some firewalls - core/#25835
Core: Map Oracle driver options to params - core/#23938
Core: Log cron job class name for easier troubleshooting - core/#25743
Core: Skip version and trash expiry for users that never logged in - core/#25741
Core: Added white download icons for apps to use - core/#23891
Core: Fix warning about undefined offset in LoginController - core/#25714
Core: Fix warning about undefined two factor providers - core/#25606
Core: Load app before executing its repair steps - core/#25674
Core: Fix "defaultapp" setting - core/#25562
Core: Fix issue when opening some file app links received in share emails - core/#25200
Core: Reconnect DB in occ files:scan to avoid DB timeouts - core/#25853
Core: Fix status.php page redirection with non-standard port - core/#25946
Core: Improve users page loading performance with many groups - core/#25922
Core: Don't log credentials from tryLogin - core/#25895
Core: Fix password recovery with case sensitive user names - core/#25684
Core: Fix two factor page cyclic reload with some providers - core/#25893
Core: Add visual feedback when updating password in users page - core/#25532
Core: Fix useless warning when overwriting file when open_basedir is set - core/#26033
Files: Display hidden files in footer and selection summary - core/#25855
Files: Fix hidden files handling with insertion or selection - core/#25856
DAV: Faster classification migration in CalDAV - core/#25638
DAV: Error message about forbidden password login is now logged in debug level - core/#25486
DAV: Return "data-fingerprint" property on any file related element - core/#25482
DAV: Fix missing properties in CalDAV subscriptions - core/#24469
DAV: Improve performance of chunking in new DAV endpoint- core/#26072
Sharing: Fixed wrong insufficient storage error - core/#25582
Sharing: Prevent shared storage recursions to avoid memory issues and crashes - core/#25557
Sharing: Group received shares which have same source and target - core/#25113
Sharing: Fix sharing over API when dealing with trailing slashes - core/#25464
Sharing: Fix public upload issue with quota in some scenarios - core/#24751
Sharing: Fix issue where videos did not play from share links with PHP 7 - core/#25483
Sharing: Fix BadMethodCallException in cron or scanner - core/#25506
Sharing: Prevent ghost mounts for deleted/orphaned shares - core/#26001
Sharing: Fix fatal error for users with older existing shares from OC <= 8.2 - core/#25933
Sharing: Always allow share owner to increase permissions - core/#25542
Sharing: Properly retry federated shares after they were unavailable - core/#26037
Sharing: Reallow spaces in federated share autocomplete in share dialog - core/#25955
Encryption: OCC command for decryption now doesn't decrypt received shares - core/#25599
Files_external: Removed reference magic to avoid potential infinite loops - core/#25844
Files_external: Added conditional trace logging for debugging SMB on production systems - core/#25758
Files_external: Fix config database issue when using Oracle - core/#25764
Files_external: SMB subfolders with read-only attribute are now writeable in OC to match spec - core/#24608
Files_external: Fix "save in session" mode when using Webdav without cookies/session - core/#25511
Files_external: Respect theme for external folder icon - core/#25461
Files_external: Disable NFD encoding wrapper that was enabled by mistake for local storages - core/#25819
Files_external: Some SMB fixes and better debug logging - core/#25817
Files_trashbin: Add occ command to trigger trashbin retention expiration - core/#25878
Files_versions: Add occ command to trigger versions retention expiration - core/#25878
LDAP: Fix login issue when dealing with display name of deleted users - core/#23248
LDAP: Prevent triggering email change events at login time for unchanged email - core/#25553
LDAP: Fix login and logging issue with big avatars by reducing their size - core/#25857
LDAP: Hide LDAP admin password in wizard - core/#25702
Provisioning API: Fixed issue where subadmins could not change group memberships - core/#25496
Provisioning API: Added flag to enable/disable two-factor auth for users - core/#25876
Activity: Fix owner name processing for received federated shares - core/#24938
Updater: Fix web update issue with filesystem apps - updater/#371
Antivirus: Fix incorrect report of file size - files_antivirus/#120
Antivirus: Fix background scan - files_antivirus/#109
Version 9.1.0 Jul 21 2016
General
Background jobs (cron) can now run in parallel
Update notifications in client via API - You can now be notified in your desktop client about available updates for core and apps. The notifications are made available via the notifications API.
Multi bucket support for primary objectstore integration
Authentication
Pluggable authentication: plugin system that supports different authentication schemes
Token-based authentication
Ability to invalidate sessions
List connected browsers/devices in the personal settings page. Allows the user to disconnect browsers/devices.
Device-specific passwords/tokens, can be generated in the personal page and revoked
Disable users and automatically revoke their sessions
Detect disabled LDAP users or password changes and revoke their sessions
Log in with email address
Configuration option to enforce token-based login outside the web UI
Two Factor authentication plug-in system
OCC command added to (temporarily) disable/enable two-factor authentication for single users
Note: the current desktop and mobile client versions do not support two-factor yet, this will be added later. It is already possible to generate a device specific password and enter that in the current client versions.
Files app
Ability to toggle displaying hidden files
Remember sort order
Permalinks for internal shares
Visual cue when dragging in files app
Autoscroll file list when dragging files
Upload progress estimate
Federated sharing
Ability to create federated shares with CRUDS permissions
Resharing a federated share does not create a chain of shares any more but connects the share owner's server to the reshare recipient
External storage
UTF-8 NFD encoding compatibility support for NFD file names stored directly on external storages (new mount option in external storage admin page)
Direct links to the configuration pages for setting up a GDrive or Dropbox app for use with ownCloud
Some performance and memory usage improvements for GDrive, stream download and chunk upload
Performance and memory usage improvements for Dropbox with stream download
GDrive library update provides exponential backoff which will reduce rate limit errors
Minor additions
Support for print style sheets
Command line based update will now be suggested if the instance is bigger to avoid potential timeouts
Web updater will be disabled if LDAP or shibboleth are installed
DB/app update process now shows better progress information
Added occ files:scan --unscanned to only scan folders that haven't yet been explored on external storages
Chunk cache TTL can now be configured
Added warning for wrongly configured database transactions, helps prevent "database is locked" issues
Use a capped memory cache to reduce memory usage especially in background jobs and the file scanner
Allow login by email
Respect CLASS property in calendar events
Allow addressbook export using VCFExportPlugin
Birthdays are also generated based on shared addressbooks
For developers
New DAV endpoint with a new chunking protocol aiming to solve many issues like timeouts (not used by clients yet)
New webdav property for share permissions
Background repair steps can be specified info.xml
Background jobs (cron) can now be declared in info.xml
Apps can now define repair steps to run at install/uninstall time
Export contact images via sabre dav plugin
Sabre DAV's browser plugin is available in debug mode to allow easier development around webdav
Technical debt
PSR-4 autoloading forced for OC\ and OCP\, optional for OCA\ docs at https://doc.owncloud.org/server/9.1/developer_manual/app/classloader.html
More cleanup of the sharing code (ongoing)
To generate a diff of this commit:
cvs rdiff -u -r1.59 -r1.60 pkgsrc/www/php-owncloud/Makefile
cvs rdiff -u -r1.37 -r1.38 pkgsrc/www/php-owncloud/PLIST \
pkgsrc/www/php-owncloud/distinfo
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.
State-Changed-From-To: open->feedback
State-Changed-By: ryoon@NetBSD.org
State-Changed-When: Mon, 26 Sep 2016 13:36:54 +0000
State-Changed-Why:
Could you try latest one? Thank you.
State-Changed-From-To: feedback->closed
State-Changed-By: hauke@NetBSD.org
State-Changed-When: Mon, 27 Feb 2017 13:29:24 +0000
State-Changed-Why:
Builds fine now - thanks for the fix.
>Unformatted:
(Contact us)
$NetBSD: query-full-pr,v 1.39 2013/11/01 18:47:49 spz Exp $
$NetBSD: gnats_config.sh,v 1.8 2006/05/07 09:23:38 tsutsui Exp $
Copyright © 1994-2014
The NetBSD Foundation, Inc. ALL RIGHTS RESERVED.
Home