Hello community, here is the log from the commit of package nextcloud for openSUSE:Leap:15.2 checked in at 2020-05-13 13:48:09 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Leap:15.2/nextcloud (Old) and /work/SRC/openSUSE:Leap:15.2/.nextcloud.new.2738 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "nextcloud" Wed May 13 13:48:09 2020 rev:31 rq:805243 version:18.0.4 Changes: -------- --- /work/SRC/openSUSE:Leap:15.2/nextcloud/nextcloud.changes 2020-02-16 18:30:56.738800462 +0100 +++ /work/SRC/openSUSE:Leap:15.2/.nextcloud.new.2738/nextcloud.changes 2020-05-13 13:48:15.757427451 +0200 @@ -2 +2 @@ -Thu Feb 6 11:39:25 UTC 2020 - Eric Schirra <[email protected]> +Thu Apr 23 05:23:41 UTC 2020 - [email protected] @@ -4,9 +4,611 @@ -- Update to 15.0.14 - - Fix boo#1162766 (NC-SA-2020-002, CVE-2019-15613) - - Fix boo#1162775 (NC-SA-2019-016, CVE-2019-15623) - - Fix boo#1162776 (NC-SA-2019-015, CVE-2019-15624) - - Fix boo#1162781 (NC-SA-2019-012, CVE-2020-8119) - - Fix boo#1162782 (NC-SA-2019-014, CVE-2020-8118) - - Fix boo#1162784 (NC-SA-2020-012, CVE-2019-15621) - - To many changes. - For detail see: https://nextcloud.com/changelog/ +- Update to 18.0.4 + - No changelog from upstream at this time. + +- Add nextcloud-rpmlintrc to reduce build warnings. +- Fix RewriteRules in apache_secure_data. + +------------------------------------------------------------------- +Sun Apr 12 13:20:14 UTC 2020 - Olav Reinert <[email protected]> + +- Make core/js/mimetypelist.js writable + * Fixes "occ maintenance:mimetype:update-js" command + * Allows apps to register new mimetypes +- Make core/img/filetypes/ writable + * Allows apps to register new file icons +- Use standard a2enmod command to manipulate Apache module list + +------------------------------------------------------------------- +Sun Mar 29 20:54:25 UTC 2020 - Olav Reinert <[email protected]> + +- Enable Apache PHP module on first install only, not on updates +- Make crontab and timer consistent: 5 minutes between jobs + +------------------------------------------------------------------- +Tue Mar 24 19:20:52 UTC 2020 - Michael Ströder <[email protected]> + +- Update to 18.0.3 + - Security update + +------------------------------------------------------------------- +Wed Mar 11 18:21:55 UTC 2020 - [email protected] + +- Update to 18.0.2 + - No changelog from upstream at this time. + +------------------------------------------------------------------- +Wed Feb 12 19:42:37 UTC 2020 - [email protected] + +- Update to 18.0.1 + * Changes + - [stable18] Fix cursor on disabled contenteditable divs (server#18961) + - Bump style-loader from 1.1.2 to 1.1.3 (server#18982) + - [stable18] Increase the timeout for app downloads (server#19025) + - [stable18] Fix loaded controller check (server#19060) + - [stable18] Allow to await the sidebar (server#19089) + - [stable18] expose Argon2 options (as we did for bcrypt) (server#19094) + - [stable18] fix multiselect actions for files (server#19108) + - [stable18] Adjust filelist color handling to new dark theme value (server#19117) + - [stable18] Reduce legacy event log level to debug (server#19118) + - [stable18] New file menu needs to be above the filelist header (server#19119) + - [stable18] Do not invert avatar colors when dark theme is enabled (server#19121) + - [stable18] Use the target for file notifications (server#19149) + - [stable18] Use correct appid for talk (server#19150) + - [stable18] add hub bundle for easy installation on upgraded instances (server#19153) + - [stable18] apps can have polyamorous relationships with bundles (server#19166) + - [stable18] Use themed favicon-fb (server#19189) + - [stable18] Fix "Call to undefined method + OCA\\WorkflowEngine\\Entity\\File::t()" (server#19190) + - [stable18] Fix query selector for inverted icons (server#19206) + - [stable18] Do not encode contacts menu mailto links (server#19207) + - [stable18] Give the sharing tab a unique id so it also opens properly + on other languages (server#19212) + - [stable18] WebcalRefreshJob: Fix reading refresh rate (server#19228) + - [stable18] Make sure to catch php errors during job execution (server#19269) + - [stable18] Center Buttons (server#19271) + - [stable18] Use the l10n from settings (server#19277) + - [stable18] Use proper andwhere clause (server#19278) + - [stable18] Add move (and firstlogin) option to transferownership + service (server#19279) + - [stable18] for the DB ot pick an index specify the object_type (server#19283) + - [stable18] owner transfer multiselect fixes (server#19291) + - [stable18] Allow respecting PASSWORD_DEFAULT (server#19292) + - [stable18] Keep the modification time during decryptFile (server#19297) + - [stable18] Fix data Apache2 .htaccess typo (server#19302) + - [stable18] Fix display of DTEND for multi-day all-day event (server#19308) + - [stable18] do not overwrite global user auth credentials with + empty values (server#19315) + - [stable18] Fix occ maintenance:install database connect failure (server#19326) + - [stable18] Fix event type (server#19330) + - [stable18] Array access on int will fail on php7.4 (server#19332) + - [stable18] Make sure the default share provider does not execute + for other things (server#19334) + - [stable18] Disable link shares of disabled users (server#19340) + - [stable18] Prevent archieved download on secure view (server#19360) + - [stable18] Log Flow activity (server#19396) + - [stable18] Allow to serve static webm directly (server#19420) + - 18.0.1 final (server#19422) + - [stable18] Allow to serve static mp4 directly (server#19428) + - [stable18] Update master php testing versions (activity#417) + - Update stable18 target versions (activity#418) + - [stable18] Update master php testing versions (files_pdfviewer#164) + - Update stable18 target versions (files_pdfviewer#165) + - Update stable18 target versions (files_texteditor#194) + - Update stable18 target versions (firstrunwizard#274) + - Update stable18 target versions (logreader#313) + - [stable18] Update master php testing versions (nextcloud_announcements#64) + - Update stable18 target versions (nextcloud_announcements#65) + - Update stable18 target versions (notifications#547) + - [stable18] Add linting via github actions (notifications#555) + - [stable18] Support Strict VoIP push notifications for + iOS 13 SDK (notifications#565) + - [stable18] Update master php testing versions (password_policy#93) + - Update stable18 target versions (password_policy#94) + - [stable18] Lint with github actions (photos#153) + - [stable18] No more drone. Do it all on github actions (photos#158) + - [stable18] Respect .noimage and .nomedia files (photos#160) + - [stable18] added headers for your photos and favs (photos#172) + - [stable18] Fix/actions (photos#174) + - [stable18] Fix url escaping (photos#175) + - [stable18] Use actions from tutorial (photos#181) + - Update stable18 target versions (privacy#323) + - Update stable18 target versions (recommendations#182) + - Update stable18 target versions (serverinfo#170) + - [stable18] Update master php testing versions (survey_client#104) + - Update stable18 target versions (survey_client#105) + - [stable18] GitHub actions/lint (viewer#368) + - Fix url escaping (viewer#370) + - [stable18] Adjust tests syntax & formatting (viewer#379) + - [stable18] Use actions from tutorial (viewer#385) + - [stable18] Revert "Fix url escaping" (viewer#396) + +------------------------------------------------------------------- +Fri Jan 17 18:37:04 UTC 2020 - [email protected] + +- Update to 18.0.0 + As this is a major release, the changelog is too long to put here. + Users can look at github milestones to find what has been merged. + A quick overview of what is new: + - Files - features an improved sidebar, accepting internal + shares & folder owner transfership + - Workspaces brings context to your folders, facilitating + collaboration in one place. + - File locking prevents conflicts editing shared files with + others + - Flow - Brings extensive, easy to use workflow capabilities to + Nextcloud. Automatically turn documents in PDFs, send messages + to chat rooms and more! + - ONLYOFFICE - Built in ONLYOFFICE makes collaborative editing of + Microsoft Office documents accessible to everyone + - Photos - A brand new image gallery makes finding, browsing and + sharing your images easier than ever before. + - Calendar 2.0 - Calendar 2.0 books Talk meetings, brings busy + view for meetings and resource booking and more + - Mail - Mail 1.0 recognizes itineraries, handles rich text mails + and more + - Talk - rewritten user interface brings message delivery notifications, + circles support, message replies and flow integration + +- Add "occ maintenance:repair" during package update to fix possible (db) errors. + +------------------------------------------------------------------- +Thu Dec 19 14:59:58 UTC 2019 - [email protected] + +- Update to 17.0.2 + - Actually return the quote when getting global storage info (server#17851) + - Also set X-OC-Mtime header for files that are smaller than 10MB (server#17858) + - FIX: horizontal scrolling on mobile due to tab accessibility + navigation 'skip to content' positioned at a fixed position (server#17883) + - Fix reshare with circle (server#17916) + - Bump icewind/searchdav (server#17919) + - Make timeout a optional parameter (server#17925) + - Check quota before transfer ownership (server#17928) + - Re-acquired expired shared locks on large file uploads (server#17945) + - Pass through ServerNotAvailableException on app init (server#17952) + - Do not check for updates if we have no internet (server#18036) + - Convert more columns to bigint (server#18040) + - Fix installing with MySQL 8.0.4+ (server#18043) + - Uid can be false when the user record does not exit (server#18047) + - Update the CRL (server#18050) + - Make chunksize (used to check for gone LDAP users) configurable (server#18054) + - Remove objectstore credentials (server#18075) + - Incorrect integer value: '' for column 'password_invalid' while migra… (server#18100) + - Trim the login name (server#18156) + - Delay creation of the cert bundle (server#18186) + - Handle token insert conflicts (server#18189) + - Throw an invalid token exception is token is marked outdated (server#18198) + - Backport #18120 (server#18205) + - Mark "Talk" active on /call/token URLs (server#18221) + - Allow to unfavorite all files (server#18247) + - Hide the tooltip if the list row is rerendered (server#18252) + - Move overwritehost check to isTrustedDomain (server#18306) + - Convert various columns in oc_mounts to bigint (server#18307) + - Do not disable authentication apps (server#18332) + - Sharee API GS fixes (server#18337) + - Handle IPv6 addresses with an explict incoming interface at the end (server#18352) + - Adding share type circles (server#18355) ++++ 426 more lines (skipped) ++++ between /work/SRC/openSUSE:Leap:15.2/nextcloud/nextcloud.changes ++++ and /work/SRC/openSUSE:Leap:15.2/.nextcloud.new.2738/nextcloud.changes Old: ---- nextcloud-15.0.14.tar.bz2 New: ---- nextcloud-18.0.4.tar.bz2 nextcloud-cron nextcloud-cron.service nextcloud-cron.timer nextcloud-rpmlintrc ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ nextcloud.spec ++++++ --- /var/tmp/diff_new_pack.iIODrD/_old 2020-05-13 13:48:16.621429311 +0200 +++ /var/tmp/diff_new_pack.iIODrD/_new 2020-05-13 13:48:16.625429320 +0200 @@ -1,7 +1,7 @@ # # spec file for package nextcloud # -# Copyright (c) 2019 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2020 SUSE LLC # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -12,7 +12,7 @@ # license that conforms to the Open Source Definition (Version 1.9) # published by the Open Source Initiative. -# Please submit bugfixes or comments via http://bugs.opensuse.org/ +# Please submit bugfixes or comments via https://bugs.opensuse.org/ # @@ -49,32 +49,42 @@ %endif Name: nextcloud -Version: 15.0.14 +Version: 18.0.4 Release: 0 Summary: File hosting service License: AGPL-3.0-only Group: Productivity/Networking/Web/Utilities -Url: https://nextcloud.com +URL: https://nextcloud.com Source0: https://download.nextcloud.com/server/releases/%{name}-%{version}.tar.bz2 Source1: apache_secure_data Source2: README Source3: README.SELinux Source4: README.SUSE Source5: robots.txt +Source10: %{name}-cron +Source11: %{name}-cron.service +Source12: %{name}-cron.timer +Source99: %{name}-rpmlintrc BuildRoot: %{_tmppath}/%{name}-%{version}-build BuildArch: noarch %if 0%{?suse_version} BuildRequires: apache2 >= 2.4 +BuildRequires: cron %if 0%{?suse_version} > 1020 BuildRequires: fdupes %endif BuildRequires: unzip %endif # +Requires: cron Requires: curl +Requires: libxml2-2 Requires: mysql +Requires: php-bz2 +Requires: php-dom Requires: php-gd +Requires: php-intl Requires: php-json Requires: php-mbstring Requires: php-mysql @@ -82,8 +92,8 @@ Requires: php-zip # %if 0%{?fedora_version} || 0%{?rhel} || 0%{?rhel_version} || 0%{?centos_version} -Requires: php <= 7.3.0 -Requires: php >= 7.0.0 +Requires: php < 7.5.0 +Requires: php >= 7.2.0 Requires: php-process Requires: php-xml # @@ -92,8 +102,8 @@ # %if 0%{?suse_version} Requires: apache2 -Requires: mod_php_any < 7.4.0 -Requires: mod_php_any >= 7.0.0 +Requires: mod_php_any < 7.5.0 +Requires: mod_php_any >= 7.2.0 Requires: php-ctype Requires: php-curl # SUSE does not include the fileinfo module in php-common. @@ -103,13 +113,30 @@ Requires: php-pear Requires: php-xmlreader Requires: php-xmlwriter +Requires: php-zip Requires: php-zlib -# Recommends: sqlite3 +%{?systemd_requires} %endif -# -Recommends: php-imagick +# Database connectors: Recommends: php-sqlite +#Recommends: php-pgsql +# Require for specific apps: +Requires: php-ftp +Requires: php-ldap +#Requires: php-imap +#Requires: php-smbclient +# Recommend for specific apps: +Recommends: php-exif +Recommends: php-gmp +# For enhanced server performance: +Recommends: php-APCu +# For preview generation: +Recommends: php-imagick +Recommends: php-ffmpeg +#Recommends: libreoffice +# For command line processing: +Recommends: php-pcntl %description Nextcloud is a suite of client-server software for creating file @@ -164,7 +191,16 @@ %fdupes -s $RPM_BUILD_ROOT/%{apache_serverroot}/%{name} %endif +# CronJob +install -d -m 0755 %{buildroot}%{_sysconfdir}/cron.d +install -D -m 0644 %{SOURCE10} %{buildroot}%{_sysconfdir}/cron.d/%{name} +install -D -m 0644 %{SOURCE11} %{buildroot}%{_unitdir}/%{name}-cron.service +install -D -m 0644 %{SOURCE12} %{buildroot}%{_unitdir}/%{name}-cron.timer +mkdir -p %{buildroot}%{_sbindir} +ln -sf %{_sbindir}/service %{buildroot}%{_sbindir}/rc%{name}-cron + %pre +%service_add_pre %{name}-cron.timer %{name}-cron.service # avoid fatal php errors, while we are changing files # https://github.com/nextcloud # @@ -206,25 +242,22 @@ fi %post +%service_add_post %{name}-cron.timer %{name}-cron.service if [ $1 -eq 1 ]; then echo "%{name} First install complete" else echo "%{name} Upgrade complete" fi +if [ $1 -eq 1 ]; then %if 0%{?suse_version} %if 0%{?suse_version} >= 1500 -# make sure php7 is not in APACHE_MODULES, so that we don't create dups. -perl -pani -e 's@^(APACHE_MODULES=".*)\bphp7\b@$1@' /etc/sysconfig/apache2 -# add php7 to APACHE_MODULES -perl -pani -e 's@^(APACHE_MODULES=")@${1}php7 @' /etc/sysconfig/apache2 +a2enmod php7 %else -# make sure php5 is not in APACHE_MODULES, so that we don't create dups. -perl -pani -e 's@^(APACHE_MODULES=".*)\bphp5\b@$1@' /etc/sysconfig/apache2 -# add php5 to APACHE_MODULES -perl -pani -e 's@^(APACHE_MODULES=")@${1}php5 @' /etc/sysconfig/apache2 +a2enmod php5 %endif %endif +fi if [ -s %{statedir}/apache_stopped_during_nextcloud_install ]; then echo "%{name} post-install: Restarting Apache" @@ -243,6 +276,8 @@ fi if [ -s %{statedir}/occ_maintenance_mode_during_nextcloud_install ]; then +echo "%{name}: occ maintenance:repair (fix possible errors)" +su %{oc_user} -s /bin/sh -c "cd %{oc_dir}; PATH=%{ocphp_bin}:$PATH php ./occ maintenance:repair" || true echo "%{name}: occ upgrade" su %{oc_user} -s /bin/sh -c "cd %{oc_dir}; PATH=%{ocphp_bin}:$PATH php ./occ upgrade" || true echo "%{name}: occ maintenance:mode --off" @@ -252,18 +287,30 @@ rm -f %{statedir}/apache_stopped_during_nextcloud_install rm -f %{statedir}/occ_maintenance_mode_during_nextcloud_install +%preun +%service_del_preun %{name}-cron.timer %{name}-cron.service + +%postun +%service_del_postun %{name}-cron.timer %{name}-cron.service + %files %defattr(644,root,root,755) %exclude %{apache_serverroot}/%{name}/README %exclude %{apache_serverroot}/%{name}/README.SUSE %exclude %{apache_serverroot}/%{name}/README.SELinux %doc README README.SUSE README.SELinux +%config(noreplace) %{_sysconfdir}/cron.d/%{name} +%{_sbindir}/rc%{name}-cron +%{_unitdir}/%{name}-cron.service +%{_unitdir}/%{name}-cron.timer %{apache_serverroot}/%{name} %attr(-,wwwrun,www) %{apache_serverroot}/%{name}/occ %config(noreplace) %{apache_confdir}/nextcloud.conf %config(noreplace) %{apache_serverroot}/%{name}/.user.ini %defattr(664,wwwrun,www,775) %{apache_serverroot}/%{name}/apps +%{apache_serverroot}/%{name}/core/js/mimetypelist.js +%dir %{apache_serverroot}/%{name}/core/img/filetypes %defattr(660,wwwrun,www,770) %{apache_serverroot}/%{name}/config %{apache_serverroot}/%{name}/data ++++++ apache_secure_data ++++++ --- /var/tmp/diff_new_pack.iIODrD/_old 2020-05-13 13:48:16.705429492 +0200 +++ /var/tmp/diff_new_pack.iIODrD/_new 2020-05-13 13:48:16.705429492 +0200 @@ -8,7 +8,7 @@ </IfModule> <IfModule mod_headers.c> - Header set Referrer-Policy no-referrer + Header always set Referrer-Policy no-referrer Header always set Strict-Transport-Security "max-age=15768000; includeSubDomains; preload" </IfModule> @@ -21,8 +21,14 @@ Require all denied </Directory> -Redirect 301 /.well-known/carddav /nextcloud/remote.php/dav -Redirect 301 /.well-known/caldav /nextcloud/remote.php/dav - Redirect 301 /ocm-provider/ /nextcloud/ocm-provider/ Redirect 301 /ocs-provider/ /nextcloud/ocs-provider/ + +<IfModule mod_rewrite.c> + RewriteEngine on + RewriteRule ^/\.well-known/host-meta /nextcloud/public.php?service=host-meta [QSA,L] + RewriteRule ^/\.well-known/host-meta\.json /nextcloud/public.php?service=host-meta-json [QSA,L] + RewriteRule ^/\.well-known/webfinger /nextcloud/public.php?service=webfinger [QSA,L] + RewriteRule ^/\.well-known/carddav /nextcloud/remote.php/dav/ [R=301,L] + RewriteRule ^/\.well-known/caldav /nextcloud/remote.php/dav/ [R=301,L] +</IfModule> ++++++ nextcloud-15.0.14.tar.bz2 -> nextcloud-18.0.4.tar.bz2 ++++++ /work/SRC/openSUSE:Leap:15.2/nextcloud/nextcloud-15.0.14.tar.bz2 /work/SRC/openSUSE:Leap:15.2/.nextcloud.new.2738/nextcloud-18.0.4.tar.bz2 differ: char 11, line 1 ++++++ nextcloud-cron ++++++ # # Nextcloud CronJob every 5 minutes. # # Uncomment to enable it. SHELL=/bin/sh PATH=/sbin:/bin:/usr/sbin:/usr/bin #*/5 * * * * wwwrun /usr/bin/php -f /srv/www/htdocs/nextcloud/cron.php /dev/null 2>&1 ++++++ nextcloud-cron.service ++++++ [Unit] Description=Nextcloud CronJob [Service] User=wwwrun ExecStart=/usr/bin/php -f /srv/www/htdocs/nextcloud/cron.php [Install] WantedBy=basic.target ++++++ nextcloud-cron.timer ++++++ [Unit] Description=Nextcloud CronJob - run every 5 minutes [Timer] OnBootSec=5min OnUnitActiveSec=5min Unit=nextcloud-cron.service [Install] WantedBy=timers.target ++++++ nextcloud-rpmlintrc ++++++ # False positive addFilter('explicit-lib-dependency'); # git files should not be removed, otherwise nextcloud rise up integrity check failure in some situations. addFilter('version-control-internal-file'); addFilter('hidden-file-or-dir'); addFilter('non-etc-or-var-file-marked-as-conffile');
