diff --git a/debian/changelog b/debian/changelog new file mode 100644 index 0000000000000000000000000000000000000000..2aa82b862938cb48dfcdebbfb42ff3c710c35d89 --- /dev/null +++ b/debian/changelog @@ -0,0 +1,282 @@ +ruby-rack (2.0.6-3) unstable; urgency=medium + + * Team upload. + * add Breaks: ruby-sinatra (<< 2), as ruby-sinatra 1.x does not work with + ruby-rack 2. + + -- Antonio Terceiro <terceiro@debian.org> Fri, 11 Jan 2019 10:11:26 -0300 + +ruby-rack (2.0.6-2) unstable; urgency=medium + + * Team upload + * Re-upload to unstable + + -- Sruthi Chandran <srud@disroot.org> Thu, 03 Jan 2019 21:42:53 +0530 + +ruby-rack (2.0.6-1) experimental; urgency=medium + + * Team upload + * New upstream release + * Remove CVE-2018-16471.patch already applied upstream + + -- Sruthi Chandran <srud@disroot.org> Mon, 24 Dec 2018 22:11:29 +0530 + +ruby-rack (2.0.5-2) experimental; urgency=medium + + * CVE-2018-16471: Prevent a possible XSS vulnerability where a malicious + request could impact the HTTP/HTTPS scheme returned to the underlying + application. (Closes: #913005) + * debian/control: + - Add myself to Uploaders. + - Bump Standards-Version to 4.2.1. + - wrap-and-sort -sa. + * Drop trailing whitespace in debian/changelog. + * Use HTTPS URI in debian/copyright. + + -- Chris Lamb <lamby@debian.org> Wed, 21 Nov 2018 14:58:29 +0100 + +ruby-rack (2.0.5-1) experimental; urgency=medium + + * Team upload + + [ Pirate Praveen ] + * Drop 0001-Fix-Params_Depth.patch (applied upstream) + + [ Sruthi Chandran ] + * New upstream release + + -- Sruthi Chandran <srud@disroot.org> Tue, 01 May 2018 17:10:47 +0530 + +ruby-rack (1.6.4-4) unstable; urgency=medium + + * Team upload. + + [ Cédric Boutillier ] + * Use https:// in Vcs-* fields + * Run wrap-and-sort on packaging files + + [ Christian Hofstaedtler ] + * Remove uninstallable ruby-memcache-client from test dependencies + * Bump Standards-Version to 3.9.8 + + -- Christian Hofstaedtler <zeha@debian.org> Wed, 13 Jul 2016 01:59:31 +0200 + +ruby-rack (1.6.4-3) unstable; urgency=medium + + * Team upload + * Bump compat. version to 9 + * Update Debian packaging using dh-make-ruby + * d/control: + Update Vcs-* fields (switch to cgit and https everywhere) + Bump Standards-Version to 3.9.7 (no changes) + Move to ruby-dalli (memcache-client is deprecated) + ROM for ruby-memcache-client + https://github.com/rack/rack/issues/1025 + Remove librack-ruby* relations (those packages are long gone) + + -- Sebastien Badia <seb@sebian.fr> Thu, 03 Mar 2016 16:24:53 -0300 + +ruby-rack (1.6.4-2) unstable; urgency=medium + + * Upload to unstable + + -- Antonio Terceiro <terceiro@debian.org> Sat, 12 Dec 2015 16:08:31 -0200 + +ruby-rack (1.6.4-1) experimental; urgency=medium + + * Team upload + * New upstream release + * Refresh patch (part merged upstream) + + -- Pirate Praveen <praveen@debian.org> Fri, 07 Aug 2015 01:16:26 +0530 + +ruby-rack (1.5.2-4) unstable; urgency=medium + + * Add patch: Fix upstream Issue 631 + - uninitialized constant Rack::Response::BodyProxy + * Create cherry-picked patch for Security Fix (Closes: #789311) + - CVE-2015-3225: 1-4-deep_params.patch + + -- Youhei SASAKI <uwabami@gfd-dennou.org> Wed, 29 Jul 2015 17:32:29 +0900 + +ruby-rack (1.5.2-3) unstable; urgency=medium + + * add myself to Uploaders: + * debian/ruby-tests.rake: run all tests instead of a subset of them + * debian/tests/control: add a gem2deb-test-runner test + + -- Antonio Terceiro <terceiro@debian.org> Fri, 17 Oct 2014 09:41:28 -0300 + +ruby-rack (1.5.2-2) unstable; urgency=medium + + * Team upload. + * Rebuild with recent gem2deb to make package visible to Rubygems on all + Ruby interpreters + * Drop transitional packages + * Add autopkgtest smoke test + + -- Antonio Terceiro <terceiro@debian.org> Thu, 24 Jul 2014 19:24:55 -0300 + +ruby-rack (1.5.2-1) unstable; urgency=low + + * Team upload. + + [ Cédric Boutillier ] + * debian/control: remove obsolete DM-Upload-Allowed flag + * use canonical URI in Vcs-* fields + + [ Christian Hofstaedtler ] + * New upstream release. + * Removed all patches, already applied upstream. + + -- Christian Hofstaedtler <christian@hofstaedtler.name> Mon, 03 Jun 2013 15:56:09 +0200 + +ruby-rack (1.4.1-2.1) unstable; urgency=high + + [ KURASHIKI Satoru ] + * Non-maintainer upload. + * Create cherry-picked patches for Security Fix (Closes: #700173 #700226). + - CVE-2013-0262: 0004-Prevent-symlink-path-traversals.patch + - CVE-2013-0263: 0005-Use-secure_compare-for-hmac-comparison.patch + + [ Youhei SASAKI ] + * Create cherry-picked patches for Security Fix (Closes: #698440). + - CVE-2012-6109: 0001-Fix-parsing-performance-for-unquoted-filenames.patch + - CVE-2013-0183: 0002-multipart-parser-avoid-unbounded-gets-method.patch + - CVE-2013-0184: 0003-Reimplement-auth-scheme-fix.patch + + -- KURASHIKI Satoru <lurdan@gmail.com> Wed, 20 Feb 2013 20:56:31 +0900 + +ruby-rack (1.4.1-2) unstable; urgency=low + + * Bump build dependency on gem2deb to >= 0.3.0~ + + -- Antonio Terceiro <terceiro@debian.org> Mon, 25 Jun 2012 15:07:51 -0300 + +ruby-rack (1.4.1-1) unstable; urgency=low + + * New Upstream version 1.4.1 + * Bump standard version: 3.9.3 + * Add Build-Depends: rake, bacon, ruby-memcache-client, thin + * Add d/s/local-options: Update patch handling + * Update ruby-tests.rb to ruby-tests.rake: running full test + + -- Youhei SASAKI <uwabami@gfd-dennou.org> Wed, 07 Mar 2012 01:00:16 +0900 + +ruby-rack (1.4.0-1) unstable; urgency=low + + * New upstream release (closes: #653963). + + -- Paul van Tilburg <paulvt@debian.org> Tue, 03 Jan 2012 22:39:13 +0100 + +ruby-rack (1.3.5-1) unstable; urgency=low + + * New upstream release. + * Fix my email address. + * Fix priority of transitional packages. + * TESTS ARE DISABLED: many dependencies required for tests are not + packaged yet. + + -- Lucas Nussbaum <lucas@debian.org> Wed, 21 Dec 2011 10:52:37 +0100 + +ruby-rack (1.3.1-1) unstable; urgency=low + + * New upstream release: 1.3.1 + * Bump Standard version: 3.9.2 + * Add me to Uploaders + * Add ruby-bacon to Build-Depends + * Add manpage for rackup Closes: #606910 + - Thanks to Glido Fiorito <fiorito.g@gmail.com> + + -- Youhei SASAKI <uwabami@gfd-dennou.org> Tue, 26 Jul 2011 00:57:23 +0900 + +ruby-rack (1.2.2-2) unstable; urgency=low + + * Add transitional packages from librack-ruby. + + -- Lucas Nussbaum <lucas@lucas-nussbaum.net> Tue, 26 Apr 2011 16:34:08 +0200 + +ruby-rack (1.2.2-1) unstable; urgency=low + + * Switch to gem2deb-based packaging. Rename source and binary package. + * libopenssl-ruby was merged in the main ruby package. Closes: #574960 + Closes: #592416. + * new upstream release. + * TESTS ARE DISABLED: many dependencies required for tests are not + packaged yet. + + -- Lucas Nussbaum <lucas@lucas-nussbaum.net> Tue, 26 Apr 2011 15:44:15 +0200 + +librack-ruby (1.1.0-4) unstable; urgency=low + + * Team upload. + * This package is now maintained within the Debian/Ruby Extras team. + * debian/control: + - Added the team (and myself) to the uploaders. + - Updated the Vcs-* fields. + * Version the dependency between librack-ruby and librack-ruby1.8. + Closes: #583553 + * Rename the 1.9.1 binary to rackup1.9.1 + + -- Lucas Nussbaum <lucas@lucas-nussbaum.net> Sat, 18 Sep 2010 08:31:46 +0200 + +librack-ruby (1.1.0-3) unstable; urgency=low + + * adopt package + * add Conflicts/Replaces from librack-ruby1.9.1 to librack-ruby1.9 + because of /usr/bin/rackup1.9 (Closes: #570435) + + -- Ryan Niebur <ryan@debian.org> Sat, 13 Mar 2010 12:14:56 -0800 + +librack-ruby (1.1.0-2) unstable; urgency=low + + * Move to ruby1.9.1 (Closes: #569884). + * Removed unused lintian override. + * Bumped up Standards-Version. + + -- Sebastien Delafond <seb@debian.org> Mon, 15 Feb 2010 19:42:49 +0100 + +librack-ruby (1.1.0-1) unstable; urgency=low + + * New upstream release. + + -- Sebastien Delafond <seb@debian.org> Fri, 08 Jan 2010 18:50:25 +0100 + +librack-ruby (1.0.1-1) unstable; urgency=low + + * New upstream release. + * Bumped up Standards revision. + * Moved to CDBS. + * Lintian cleanups. + + -- Sebastien Delafond <seb@debian.org> Wed, 21 Oct 2009 11:36:29 +0200 + +librack-ruby (1.0.0-1) unstable; urgency=low + + * New upstream release. + * Added debian/watch file. + * Bumped up Standards version to 3.8.1. + * BUmped up debhelper compat level to 6. + * Moved to section "ruby". + * Added proper versioned dependency on debhelper (for dh_lintian). + * Updated short description for librack-ruby1.8. + + -- Sebastien Delafond <seb@debian.org> Tue, 28 Apr 2009 02:14:00 -0700 + +librack-ruby (0.9.1-1) unstable; urgency=low + + * New upstream release (Closes: #516855). + + -- Sebastien Delafond <seb@debian.org> Mon, 23 Feb 2009 19:29:20 -0800 + +librack-ruby (0.3.0-2) unstable; urgency=low + + * Corrected short description for librack-ruby1.8 + + -- Sebastien Delafond <seb@debian.org> Wed, 07 May 2008 14:13:26 -0700 + +librack-ruby (0.3.0-1) unstable; urgency=low + + * Initial Release (Closes: #480035). + + -- Sebastien Delafond <seb@debian.org> Wed, 07 May 2008 11:28:30 -0700 diff --git a/debian/compat b/debian/compat new file mode 100644 index 0000000000000000000000000000000000000000..b4de3947675361a7770d29b8982c407b0ec6b2a0 --- /dev/null +++ b/debian/compat @@ -0,0 +1 @@ +11 diff --git a/debian/control b/debian/control new file mode 100644 index 0000000000000000000000000000000000000000..6793b96eb41566e7833a9a37840be2bcd4040954 --- /dev/null +++ b/debian/control @@ -0,0 +1,39 @@ +Source: ruby-rack +Section: ruby +Priority: optional +Maintainer: Debian Ruby Extras Maintainers <pkg-ruby-extras-maintainers@lists.alioth.debian.org> +Uploaders: + Chris Lamb <lamby@debian.org>, + Lucas Nussbaum <lucas@debian.org>, + Youhei SASAKI <uwabami@gfd-dennou.org>, + Paul van Tilburg <paulvt@debian.org>, +Build-Depends: + debhelper (>= 11~), + gem2deb, + rake, + ruby-bacon, + ruby-concurrent (>= 1.0.3~), + ruby-dalli, + thin, +Standards-Version: 4.3.0 +Vcs-Git: https://salsa.debian.org/ruby-team/ruby-rack.git +Vcs-Browser: https://salsa.debian.org/ruby-team/ruby-rack +Homepage: https://rack.github.io/ +XS-Ruby-Versions: all + +Package: ruby-rack +Architecture: all +XB-Ruby-Versions: ${ruby:Versions} +Depends: + ruby | ruby-interpreter, + ${misc:Depends}, + ${shlibs:Depends}, +Breaks: ruby-sinatra (<< 2) +Description: modular Ruby webserver interface + Rack provides a minimal, modular and adaptable interface for developing + web applications in Ruby. By wrapping HTTP requests and responses in + the simplest way possible, it unifies and distills the API for web + servers, web frameworks, and software in between (the so-called + middleware) into a single method call. + . + Also see http://rack.github.io/. diff --git a/debian/copyright b/debian/copyright new file mode 100644 index 0000000000000000000000000000000000000000..3756a384264bdeb2464745b10bbf0253b9581b07 --- /dev/null +++ b/debian/copyright @@ -0,0 +1,33 @@ +Format: https://www.debian.org/doc/packaging-manuals/copyright-format/1.0/ +Upstream-Name: rack +Source: http://rack.github.io/ + +Files: * +Copyright: 2007-2015 Christian Neukirchen <purl.org/net/chneukirchen> +License: Expat + +Files: debian/* +Copyright: 2008 Sebastien Delafond <seb@debian.org> + 2011-2015 Youhei SASAKI <uwabami@gfd-dennou.org> + 2013-2016 Antonio Terceiro <terceiro@debian.org> +License: Expat +Comment: the Debian packaging is licensed under the same terms as the original package. + +License: Expat + Permission is hereby granted, free of charge, to any person obtaining a copy + of this software and associated documentation files (the “Softwareâ€), to deal + in the Software without restriction, including without limitation the rights + to use, copy, modify, merge, publish, distribute, sublicense, and/or sell + copies of the Software, and to permit persons to whom the Software is + furnished to do so, subject to the following conditions: + . + The above copyright notice and this permission notice shall be included in + all copies or substantial portions of the Software. + . + THE SOFTWARE IS PROVIDED “AS ISâ€, WITHOUT WARRANTY OF ANY KIND, EXPRESS OR + IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, + FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE + AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER + LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, + OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE + SOFTWARE. diff --git a/debian/patches/series b/debian/patches/series new file mode 100644 index 0000000000000000000000000000000000000000..e69de29bb2d1d6434b8b29ae775ad8c2e48c5391 diff --git a/debian/rackup.1 b/debian/rackup.1 new file mode 100644 index 0000000000000000000000000000000000000000..71b90f605173363725a1d10a07d0fee4e8eba7ab --- /dev/null +++ b/debian/rackup.1 @@ -0,0 +1,107 @@ +.\" generated with Ronn/v0.7.3 +.\" http://github.com/rtomayko/ronn/tree/0.7.3 +. +.TH "RACKUP" "1" "December 2010" "" "" +. +.SH "NAME" +\fBrackup\fR +. +.P +rackup(1) \-\- An utility for run Rack\-based applications +. +.SH "SYNOPSIS" +\fBrackup\fR [ruby options] [rack options] [rackup config] +. +.SH "DESCRIPTION" +Rackup is a useful tool for running Rack applications, which uses the Rack::Builder DSL to configure middleware and build up applications easily\. +. +.P +rackup automatically figures out the environment it is run in, and runs your application as FastCGI, CGI, or standalone with Mongrel or WEBrick \-all from the same configuration\. +. +.SH "OPTIONS" +Ruby options: +. +.TP +\fB\-e\fR, \fB\-\-eval\fR [LINE] +evaluate a LINE of code +. +.TP +\fB\-d\fR, \fB\-\-debug\fR +set debugging flags (set $DEBUG to true) +. +.TP +\fB\-w\fR, \fB\-\-warn\fR +turn warnings on for your script +. +.TP +\fB\-I\fR, \fB\-\-include\fR [PATH] +specify $LOAD_PATH (may be used more than once) +. +.TP +\fB\-r\fR, \fB\-\-require\fR [LIBRARY] +require the library, before executing your script +. +.P +Rack options: +. +.TP +\fB\-s\fR, \fB\-\-server\fR [SERVER] +serve using SERVER (webrick/mongrel) +. +.TP +\fB\-o\fR, \fB\-\-host\fR [HOST] +listen on HOST (default: 0\.0\.0\.0) +. +.TP +\fB\-p\fR, \fB\-\-port\fR [PORT] +use PORT (default: 9292) +. +.TP +\fB\-E\fR, \fB\-\-env\fR [ENVIRONMENT] +use ENVIRONMENT for defaults (default: development) +. +.TP +\fB\-D\fR, \fB\-\-daemonize\fR +run daemonized in the background +. +.TP +\fB\-P\fR, \fB\-\-pid\fR [FILE] +file to store PID (default: rack\.pid) +. +.P +Common options: +. +.TP +\fB\-h\fR, \fB\-\-help\fR +Show the help message +. +.TP +\fB\-\-version\fR +Show version +. +.SH "EXAMPLES" +This is a simple example on how to start an application based on Rack with rackup: +. +.P +$ rackup \-Ilib blog/config\.ru +. +.P +[2010\-12\-10 15:01:11] INFO WEBrick 1\.3\.1 +. +.P +[2010\-12\-10 15:01:11] INFO ruby 1\.9\.2 (2010\-08\-18) [x86_64\-linux] +. +.P +[2010\-12\-10 15:01:11] INFO WEBrick::HTTPServer#start: pid=4496 port=9292 +. +.SH "AUTHORS" +Copyright (C) 2007, 2008, 2009, 2010 \fBChristian Neukirchen\fR \fB<http://purl\.org/net/chneukirchen>\fR +. +.P +For a complete list of authors and contributors to the project, please take a look here \fIhttps://github\.com/rack/rack/contributors\fR +. +.P +This manual page was written by Ermenegildo Fiorito \fIfiorito\.g@gmail\.com\fR for the Debian Project +. +.SH "SEE ALSO" +ruby(1) \fIhttp://rack\.rubyforge\.org\fR diff --git a/debian/ruby-rack.docs b/debian/ruby-rack.docs new file mode 100644 index 0000000000000000000000000000000000000000..e475c53ed013742672b136c5dee9af35978d96c8 --- /dev/null +++ b/debian/ruby-rack.docs @@ -0,0 +1 @@ +README.rdoc diff --git a/debian/ruby-rack.manpages b/debian/ruby-rack.manpages new file mode 100644 index 0000000000000000000000000000000000000000..fecd28026a3e21d5da9d696368b3e092ff8ba05b --- /dev/null +++ b/debian/ruby-rack.manpages @@ -0,0 +1 @@ +debian/rackup.1 diff --git a/debian/ruby-tests.rake b/debian/ruby-tests.rake new file mode 100644 index 0000000000000000000000000000000000000000..350d87c73cfbeac8c9763a5f9102a9c0dc4eb273 --- /dev/null +++ b/debian/ruby-tests.rake @@ -0,0 +1,7 @@ +# -*- mode: ruby; coding: utf-8 -*- +require 'rbconfig' unless defined? RbConfig +ruby = File.join(RbConfig::CONFIG['bindir'], RbConfig::CONFIG['ruby_install_name']) + +task :default do + sh "#{ruby} /usr/bin/bacon -I./test -w -a" +end diff --git a/debian/rules b/debian/rules new file mode 100755 index 0000000000000000000000000000000000000000..58f5da36d5876af82aec713b84c2f669830b71d0 --- /dev/null +++ b/debian/rules @@ -0,0 +1,10 @@ +#!/usr/bin/make -f + +export GEM2DEB_TEST_RUNNER = --check-dependencies + +%: + dh $@ --buildsystem=ruby --with ruby + +override_dh_auto_clean: + dh_auto_clean + $(RM) test/cgi/lighttpd.errors diff --git a/debian/source/format b/debian/source/format new file mode 100644 index 0000000000000000000000000000000000000000..163aaf8d82b6c54f23c45f32895dbdfdcc27b047 --- /dev/null +++ b/debian/source/format @@ -0,0 +1 @@ +3.0 (quilt) diff --git a/debian/tests/control b/debian/tests/control new file mode 100644 index 0000000000000000000000000000000000000000..09f541ea6ef01fe005531c639b1fb06f3c62af7b --- /dev/null +++ b/debian/tests/control @@ -0,0 +1,6 @@ +Tests: smoke-test +Depends: @, curl + +Test-Command: gem2deb-test-runner +Depends: @, gem2deb-test-runner, rake, ruby-bacon, thin +Restrictions: allow-stderr diff --git a/debian/tests/smoke-test b/debian/tests/smoke-test new file mode 100755 index 0000000000000000000000000000000000000000..8b5af5a33e6e3ba10c003329c5b9487d92c192bd --- /dev/null +++ b/debian/tests/smoke-test @@ -0,0 +1,20 @@ +#!/bin/sh + +exec 2>&1 + +set -ex + +appdir=${ADTTMP:-/tmp}/app +mkdir $appdir +cd $appdir + +cat > config.ru <<EOF +run(lambda { |request| [200, {'Content-Type' => 'text/html'}, ['Hello, world!']]}) +EOF + +rackup --pid smoke.pid --daemonize +sleep 5 + +curl -s http://localhost:9292/ | grep 'Hello, world' + +kill $(cat smoke.pid) diff --git a/debian/watch b/debian/watch new file mode 100644 index 0000000000000000000000000000000000000000..18653c12621a73155633354d746a06e558f188ad --- /dev/null +++ b/debian/watch @@ -0,0 +1,2 @@ +version=3 +https://gemwatch.debian.net/rack .*/rack-(.*).tar.gz