commit corosync-qdevice for openSUSE:Factory

Source-Sync Mon, 28 Apr 2025 07:17:44 -0700

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package corosync-qdevice for 
openSUSE:Factory checked in at 2025-04-28 16:16:37
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/corosync-qdevice (Old)
 and      /work/SRC/openSUSE:Factory/.corosync-qdevice.new.30101 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++


Package is "corosync-qdevice"

Mon Apr 28 16:16:37 2025 rev:3 rq:1273025 version:3.0.3

Changes:
--------
--- /work/SRC/openSUSE:Factory/corosync-qdevice/corosync-qdevice.changes        
2024-11-14 16:10:48.828071048 +0100
+++ 
/work/SRC/openSUSE:Factory/.corosync-qdevice.new.30101/corosync-qdevice.changes 
    2025-04-28 16:17:01.370885239 +0200
@@ -1,0 +2,6 @@
+Mon Apr 28 04:35:09 UTC 2025 - Nicholas Yang <[email protected]>
+
+- Modify 0001-harden-services-with-systemd-sandboxing.patch:
+  * Remove NoNewPrivileges=true as it is incompatible with SELinux 
(bsc#1241921)
+
+-------------------------------------------------------------------

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ corosync-qdevice.spec ++++++
--- /var/tmp/diff_new_pack.SK0GvG/_old  2025-04-28 16:17:02.262922616 +0200
+++ /var/tmp/diff_new_pack.SK0GvG/_new  2025-04-28 16:17:02.266922783 +0200
@@ -1,7 +1,7 @@
 #
 # spec file for package corosync-qdevice
 #
-# Copyright (c) 2024 SUSE LLC
+# Copyright (c) 2025 SUSE LLC
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed

++++++ 0001-harden-services-with-systemd-sandboxing.patch ++++++
--- /var/tmp/diff_new_pack.SK0GvG/_old  2025-04-28 16:17:02.290923789 +0200
+++ /var/tmp/diff_new_pack.SK0GvG/_new  2025-04-28 16:17:02.294923957 +0200
@@ -1,12 +1,12 @@
-From f7b8fd41b82ef11933f2d2b0e8f54192dfbcfa18 Mon Sep 17 00:00:00 2001
+From e9f0bf98fee6efe53c060d463501ed3ea95335a6 Mon Sep 17 00:00:00 2001
 From: nicholasyang <[email protected]>
-Date: Wed, 13 Nov 2024 16:11:10 +0800
+Date: Mon, 28 Apr 2025 12:28:51 +0800
 Subject: [PATCH] harden services with systemd sandboxing
 
 ---
  init/corosync-qdevice.service.in | 10 ++++++++++
- init/corosync-qnetd.service.in   | 13 +++++++++++++
- 2 files changed, 23 insertions(+)
+ init/corosync-qnetd.service.in   | 12 ++++++++++++
+ 2 files changed, 22 insertions(+)
 
 diff --git a/init/corosync-qdevice.service.in 
b/init/corosync-qdevice.service.in
 index 5ffb498..824e557 100644
@@ -29,10 +29,10 @@
  [Install]
  WantedBy=multi-user.target
 diff --git a/init/corosync-qnetd.service.in b/init/corosync-qnetd.service.in
-index a8d6a7e..64da610 100644
+index a8d6a7e..6e84b02 100644
 --- a/init/corosync-qnetd.service.in
 +++ b/init/corosync-qnetd.service.in
-@@ -16,5 +16,18 @@ Restart=on-abnormal
+@@ -16,5 +16,17 @@ Restart=on-abnormal
  RuntimeDirectory=corosync-qnetd
  RuntimeDirectoryMode=0770
  
@@ -47,11 +47,10 @@
 +ProtectKernelLogs=true
 +ProtectControlGroups=true
 +RestrictRealtime=true
-+NoNewPrivileges=true
 +
  [Install]
  WantedBy=multi-user.target
 -- 
-2.47.0
+2.49.0

commit corosync-qdevice for openSUSE:Factory

Reply via email to