according to http://postgis.net/2014/05/19/postgis-2.0.6_and_2.1.3: It has come to our attention that the PostGIS Raster support may give more privileges to users than an administrator is willing to grant. These include reading files from the filesystem and opening connections to network hosts. Both issues can be limited in existing installations by setting the GDAL_SKIP variable (in the PostgreSQL server environment) to the list of all gdal drivers, but some drivers would still be forceably loaded by some operations. Releases 2.1.3 and 2.0.6 strengthen the code to load no drivers by default and allows for a fine-grained tuning of what’s allowed and what not through postgis-specific environment variables: POSTGIS_GDAL_ENABLED_DRIVERS Specifies a list of GDAL drivers to enable (rather than skip) By default all drivers are disabled. Example value: “GTiff PNG JPEG” POSTGIS_ENABLE_OUTDB_RASTERS Enables read support for out-db raster bands if set to 1. By default out-db raster bands reading is disabled. Upgrade is highly recommended, especially for online services allowing users to run arbitrary SQL queries.
wrt 2.1.3, I did something here for my local overlay already to bump to 2.1.3 and fix the json-c build issue: bug 507708#c22 (no warranties)
postgis-2.1.4 including the patch was released: http://postgis.net/docs/manual-2.1/release_notes.html#idp45674128 --- postgis-2.1.3.ebuild 2014-08-02 15:10:46.655553488 +0200 +++ postgis-2.1.4.ebuild 2014-09-13 19:02:15.590512782 +0200 @@ -97,7 +97,6 @@ src_prepare() { epatch "${FILESDIR}/${PN}-2.1-ldflags.patch" \ "${FILESDIR}/${PN}-2.0-arflags.patch" \ - "${FILESDIR}/${PN}-2.1.3-fix-external-json-c-build.patch" \ "${FILESDIR}/${PN}-2.1.3-pkgconfig-json.patch" local AT_M4DIR="macros"
Created attachment 384824 [details, diff] postgis-2.1.4-pkgconfig-json.patch postgis-2.1.4 no longer requires json_tokener_errors() which was removed in json-c-0.12, which enables postgis and emul-linux-x86-baselibs[abi_x86_32] to coexist on a system. Afaict the change is backwards compatible. --- /usr/portage/dev-db/postgis/postgis-2.1.1.ebuild +++ postgis-2.1.4.ebuild @@ -27,7 +27,7 @@ dev-db/postgresql-server:9.1 dev-db/postgresql-server:9.0 ) - <dev-libs/json-c-0.11 + dev-libs/json-c dev-libs/libxml2:2 >=sci-libs/geos-3.3.8 >=sci-libs/proj-4.6.0 @@ -98,7 +98,7 @@ src_prepare() { epatch "${FILESDIR}/${PN}-2.1-ldflags.patch" \ "${FILESDIR}/${PN}-2.0-arflags.patch" \ - "${FILESDIR}/${PN}-2.1-pkgconfig-json.patch" + "${FILESDIR}/${PN}-2.1.4-pkgconfig-json.patch" local AT_M4DIR="macros" eautoreconf
this works for me.
ebuild form eroen compiled on amd64 and seems to be working fine
Created attachment 387878 [details] postgis-2.1.4.ebuild ebuild uses patch by eroen for pkgconfig-json Works on amd64
*postgis-2.1.4 (05 Nov 2014) *postgis-2.0.6 (05 Nov 2014) 05 Nov 2014; Aaron W. Swenson <titanofold@gentoo.org> +postgis-2.0.6.ebuild, +postgis-2.1.4.ebuild, +files/postgis-2.1.4-pkgconfig-json.patch: Version bump. Fixes bugs 464392, 507708, and 520694.
