commit firewalld for openSUSE:Factory
Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package firewalld for openSUSE:Factory checked in at 2024-06-28 15:46:36 Comparing /work/SRC/openSUSE:Factory/firewalld (Old) and /work/SRC/openSUSE:Factory/.firewalld.new.18349 (New) Package is "firewalld" Fri Jun 28 15:46:36 2024 rev:90 rq:1183143 version:2.1.2 Changes: --- /work/SRC/openSUSE:Factory/firewalld/firewalld.changes 2024-05-29 19:35:15.567201224 +0200 +++ /work/SRC/openSUSE:Factory/.firewalld.new.18349/firewalld.changes 2024-06-28 15:46:56.709779552 +0200 @@ -1,0 +2,6 @@ +Fri Jun 14 13:40:42 UTC 2024 - pgaj...@suse.com + +- remove dependency on /usr/bin/python3 using + %python3_fix_shebang macro, [bsc#1212476] + +--- Other differences: -- ++ firewalld.spec ++ --- /var/tmp/diff_new_pack.tGLpdk/_old 2024-06-28 15:47:02.593994819 +0200 +++ /var/tmp/diff_new_pack.tGLpdk/_new 2024-06-28 15:47:02.597994965 +0200 @@ -202,6 +202,8 @@ %find_lang %{name} --all-name +%python3_fix_shebang + %pre %service_add_pre firewalld.service # Avoid restoring outdated stuff in posttrans
commit firewalld for openSUSE:Factory
Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package firewalld for openSUSE:Factory checked in at 2024-05-29 19:35:08 Comparing /work/SRC/openSUSE:Factory/firewalld (Old) and /work/SRC/openSUSE:Factory/.firewalld.new.24587 (New) Package is "firewalld" Wed May 29 19:35:08 2024 rev:89 rq:1177113 version:2.1.2 Changes: --- /work/SRC/openSUSE:Factory/firewalld/firewalld.changes 2024-05-22 21:29:04.770530210 +0200 +++ /work/SRC/openSUSE:Factory/.firewalld.new.24587/firewalld.changes 2024-05-29 19:35:15.567201224 +0200 @@ -1,0 +2,6 @@ +Fri May 24 14:41:25 UTC 2024 - Dominique Leuenberger + +- Keep English 'translations' (en_US, en_GB) in the main package: + do not force the lang package on plain English systems. + +--- Other differences: -- ++ firewalld.spec ++ --- /var/tmp/diff_new_pack.HqBMGn/_old 2024-05-29 19:35:16.219224838 +0200 +++ /var/tmp/diff_new_pack.HqBMGn/_new 2024-05-29 19:35:16.219224838 +0200 @@ -294,6 +294,7 @@ %{_prefix}/lib/firewalld/policies/*.xml %{_prefix}/lib/firewalld/xmlschema/check.sh %{_prefix}/lib/firewalld/xmlschema/*.xsd +%{_datadir}/locale/en_*/LC_MESSAGES/firewalld.mo %{_datadir}/polkit-1 %dir %{_datadir}/dbus-1 %dir %{_datadir}/dbus-1/system.d @@ -383,4 +384,5 @@ %{_datadir}/zsh/site-functions/_firewalld %files lang -f %{name}.lang +%exclude %{_datadir}/locale/en_*/LC_MESSAGES/firewalld.mo
commit firewalld for openSUSE:Factory
Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package firewalld for openSUSE:Factory checked in at 2024-05-22 21:29:02 Comparing /work/SRC/openSUSE:Factory/firewalld (Old) and /work/SRC/openSUSE:Factory/.firewalld.new.1880 (New) Package is "firewalld" Wed May 22 21:29:02 2024 rev:88 rq:1175577 version:2.1.2 Changes: --- /work/SRC/openSUSE:Factory/firewalld/firewalld.changes 2024-01-30 18:24:21.867667925 +0100 +++ /work/SRC/openSUSE:Factory/.firewalld.new.1880/firewalld.changes 2024-05-22 21:29:04.770530210 +0200 @@ -1,0 +2,9 @@ +Thu May 9 18:58:54 UTC 2024 - Dirk Müller + +- update to 2.1.2: + * fix(policy): allow forward ports w/ to-addr for egress- +zone=HOST + * fix(rich): fix range check for large rule limit + * fix(tests): fix skip detection in fw-in-container environment + +--- Old: firewalld-2.1.1.tar.bz2 New: firewalld-2.1.2.tar.bz2 Other differences: -- ++ firewalld.spec ++ --- /var/tmp/diff_new_pack.LBYjbR/_old 2024-05-22 21:29:05.430554320 +0200 +++ /var/tmp/diff_new_pack.LBYjbR/_new 2024-05-22 21:29:05.430554320 +0200 @@ -27,7 +27,7 @@ %global modprobe_d_files firewalld-sysctls.conf Name: firewalld -Version:2.1.1 +Version:2.1.2 Release:0 Summary:A firewall daemon with D-Bus interface providing a dynamic firewall License:GPL-2.0-or-later ++ firewalld-2.1.1.tar.bz2 -> firewalld-2.1.2.tar.bz2 ++ 15630 lines of diff (skipped)
commit firewalld for openSUSE:Factory
Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package firewalld for openSUSE:Factory checked in at 2024-01-30 18:24:17 Comparing /work/SRC/openSUSE:Factory/firewalld (Old) and /work/SRC/openSUSE:Factory/.firewalld.new.1815 (New) Package is "firewalld" Tue Jan 30 18:24:17 2024 rev:87 rq:1142601 version:2.1.1 Changes: --- /work/SRC/openSUSE:Factory/firewalld/firewalld.changes 2024-01-09 20:48:43.842207429 +0100 +++ /work/SRC/openSUSE:Factory/.firewalld.new.1815/firewalld.changes 2024-01-30 18:24:21.867667925 +0100 @@ -1,0 +2,12 @@ +Mon Jan 29 17:05:05 UTC 2024 - Mohd Saquib + +- update to 2.1.1: + * fix(offline-cmd): use family when creating ipset (64f78a9) + * fix(firewall-config): allow rich rule forwarded ports to be logged (d46ea62) + * fix(ipXtables): log forwarded ports only (07dc202) + * fix(nftables): log forwarded ports (5c26b73) + * fix(io.ipset): raise exception if entries exceed limit (a2da5fb) + * fix(policy): ipXtables: multiple policies using same zone (b6f2f09) + * fix(policy): dispatch update for active policies (7f6f0e2) + +--- Old: firewalld-2.1.0.tar.bz2 New: firewalld-2.1.1.tar.bz2 Other differences: -- ++ firewalld.spec ++ --- /var/tmp/diff_new_pack.deKxSv/_old 2024-01-30 18:24:22.591694045 +0100 +++ /var/tmp/diff_new_pack.deKxSv/_new 2024-01-30 18:24:22.591694045 +0100 @@ -27,7 +27,7 @@ %global modprobe_d_files firewalld-sysctls.conf Name: firewalld -Version:2.1.0 +Version:2.1.1 Release:0 Summary:A firewall daemon with D-Bus interface providing a dynamic firewall License:GPL-2.0-or-later ++ firewalld-2.1.0.tar.bz2 -> firewalld-2.1.1.tar.bz2 ++ 138121 lines of diff (skipped)
commit firewalld for openSUSE:Factory
Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package firewalld for openSUSE:Factory checked in at 2024-01-09 20:48:31 Comparing /work/SRC/openSUSE:Factory/firewalld (Old) and /work/SRC/openSUSE:Factory/.firewalld.new.21961 (New) Package is "firewalld" Tue Jan 9 20:48:31 2024 rev:86 rq:1137494 version:2.1.0 Changes: --- /work/SRC/openSUSE:Factory/firewalld/firewalld.changes 2023-11-30 21:59:47.953695644 +0100 +++ /work/SRC/openSUSE:Factory/.firewalld.new.21961/firewalld.changes 2024-01-09 20:48:43.842207429 +0100 @@ -1,0 +2,14 @@ +Mon Jan 8 07:30:21 UTC 2024 - Mohd Saquib + +- update to 2.1.0: + * eat(service): add DNS over QUIC (DoQ) Service (5130430) + * feat(icmp): add ICMPv6 Multicast Listener Discovery (MLD) types (dd88bbf) + * feat(fw): add ReloadPolicy option in firewalld.conf (0019371) + * feat(service): add submission service (tcp 587) (d6a9561) + * feat(service): Add alvr (3a92358) + * feat(service): add vrrp (d62fc8d) + [* Renamed patch 0002-Disable-FlushAllOnReload-option.patch to + 0001-Disable-FlushAllOnReload-option.patch + [* Renamed patch firewalld-runstatedir.patch to 0002-firewalld-runstatedir.patch] + +--- Old: 0002-Disable-FlushAllOnReload-option.patch firewalld-2.0.2.tar.bz2 firewalld-runstatedir.patch New: 0001-Disable-FlushAllOnReload-option.patch 0002-firewalld-runstatedir.patch firewalld-2.1.0.tar.bz2 BETA DEBUG BEGIN: Old: * feat(service): add vrrp (d62fc8d) [* Renamed patch 0002-Disable-FlushAllOnReload-option.patch to 0001-Disable-FlushAllOnReload-option.patch Old: 0001-Disable-FlushAllOnReload-option.patch [* Renamed patch firewalld-runstatedir.patch to 0002-firewalld-runstatedir.patch] BETA DEBUG END: BETA DEBUG BEGIN: New: [* Renamed patch 0002-Disable-FlushAllOnReload-option.patch to 0001-Disable-FlushAllOnReload-option.patch [* Renamed patch firewalld-runstatedir.patch to 0002-firewalld-runstatedir.patch] New: 0001-Disable-FlushAllOnReload-option.patch [* Renamed patch firewalld-runstatedir.patch to 0002-firewalld-runstatedir.patch] BETA DEBUG END: Other differences: -- ++ firewalld.spec ++ --- /var/tmp/diff_new_pack.0UFV8q/_old 2024-01-09 20:48:44.614235498 +0100 +++ /var/tmp/diff_new_pack.0UFV8q/_new 2024-01-09 20:48:44.614235498 +0100 @@ -1,7 +1,7 @@ # # spec file for package firewalld # -# Copyright (c) 2023 SUSE LLC +# Copyright (c) 2024 SUSE LLC # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -27,7 +27,7 @@ %global modprobe_d_files firewalld-sysctls.conf Name: firewalld -Version:2.0.2 +Version:2.1.0 Release:0 Summary:A firewall daemon with D-Bus interface providing a dynamic firewall License:GPL-2.0-or-later @@ -35,8 +35,8 @@ URL:https://www.firewalld.org Source0: https://github.com/firewalld/firewalld/releases/download/v%{version}/firewalld-%{version}.tar.bz2 Source1:docker-zone.xml -Patch0: 0002-Disable-FlushAllOnReload-option.patch -Patch1: firewalld-runstatedir.patch +Patch0: 0001-Disable-FlushAllOnReload-option.patch +Patch1: 0002-firewalld-runstatedir.patch BuildRequires: autoconf BuildRequires: automake BuildRequires: desktop-file-utils @@ -285,12 +285,15 @@ %dir %{_prefix}/lib/firewalld/zones %dir %{_prefix}/lib/firewalld/helpers %dir %{_prefix}/lib/firewalld/policies +%dir %{_prefix}/lib/firewalld/xmlschema %{_prefix}/lib/firewalld/icmptypes/*.xml %{_prefix}/lib/firewalld/ipsets/README.md %{_prefix}/lib/firewalld/services/*.xml %{_prefix}/lib/firewalld/zones/*.xml %{_prefix}/lib/firewalld/helpers/*.xml %{_prefix}/lib/firewalld/policies/*.xml +%{_prefix}/lib/firewalld/xmlschema/check.sh +%{_prefix}/lib/firewalld/xmlschema/*.xsd %{_datadir}/polkit-1 %dir %{_datadir}/dbus-1 %dir %{_datadir}/dbus-1/system.d ++ 0002-Disable-FlushAllOnReload-option.patch -> 0001-Disable-FlushAllOnReload-option.patch ++ --- /work/SRC/openSUSE:Factory/firewalld/0002-Disable-FlushAllOnReload-option.patch 2023-06-25 21:42:00.256955642 +0200 +++ /work/SRC/openSUSE:Factory/.firewalld.new.21961/0001-Disable-FlushAllOnReload-option.patch 2024-01-09 20:48:43.782205248 +0100 @@ -1,57 +1,68 @@ -From b1145d3efc58220f58a4e67189c4ff4a8bd789ce Mon Sep 17 00:00:00 2001 -From: Michal Rostecki -Date: Mon, 25 Jan 2021 12:58:00 +0100 -Subject: [PATCH] Disable FlushAllOnReload option +From 98c87acce02c1963644455933ce7c2d40015d295 Mon Sep 17 00:00:00 2001 +From: Mohd Saquib +Date:
commit firewalld for openSUSE:Factory
Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package firewalld for openSUSE:Factory checked in at 2023-11-30 21:59:08 Comparing /work/SRC/openSUSE:Factory/firewalld (Old) and /work/SRC/openSUSE:Factory/.firewalld.new.25432 (New) Package is "firewalld" Thu Nov 30 21:59:08 2023 rev:85 rq:1129728 version:2.0.2 Changes: --- /work/SRC/openSUSE:Factory/firewalld/firewalld.changes 2023-10-25 18:02:39.250066095 +0200 +++ /work/SRC/openSUSE:Factory/.firewalld.new.25432/firewalld.changes 2023-11-30 21:59:47.953695644 +0100 @@ -1,0 +2,7 @@ +Wed Nov 29 07:10:44 UTC 2023 - Mohd Saquib + +- update to 2.0.2: + * fix(policy): runtime dispatch update if *-zone=ANY (e8b9637) + * fix(nm): release NM client after a timeout (d534f07) + +--- Old: firewalld-2.0.1.tar.bz2 New: firewalld-2.0.2.tar.bz2 Other differences: -- ++ firewalld.spec ++ --- /var/tmp/diff_new_pack.Jx68xA/_old 2023-11-30 21:59:48.665721874 +0100 +++ /var/tmp/diff_new_pack.Jx68xA/_new 2023-11-30 21:59:48.669722021 +0100 @@ -27,7 +27,7 @@ %global modprobe_d_files firewalld-sysctls.conf Name: firewalld -Version:2.0.1 +Version:2.0.2 Release:0 Summary:A firewall daemon with D-Bus interface providing a dynamic firewall License:GPL-2.0-or-later ++ firewalld-2.0.1.tar.bz2 -> firewalld-2.0.2.tar.bz2 ++ 5909 lines of diff (skipped)
commit firewalld for openSUSE:Factory
Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package firewalld for openSUSE:Factory checked in at 2023-10-25 18:01:56 Comparing /work/SRC/openSUSE:Factory/firewalld (Old) and /work/SRC/openSUSE:Factory/.firewalld.new.24901 (New) Package is "firewalld" Wed Oct 25 18:01:56 2023 rev:84 rq:1114901 version:2.0.1 Changes: --- /work/SRC/openSUSE:Factory/firewalld/firewalld.changes 2023-09-25 20:00:21.628011216 +0200 +++ /work/SRC/openSUSE:Factory/.firewalld.new.24901/firewalld.changes 2023-10-25 18:02:39.250066095 +0200 @@ -1,0 +2,21 @@ +Tue Oct 3 06:42:21 UTC 2023 - Mohd Saquib + +- update to 2.0.1: + * fix(cli): all --list-all-zones output identical (d30bc61) + * fix(cli): properly show default zone attribute (ea8d9a8) + * fix(cli): properly show active attribute for zones and policies (b202403) + * fix(cli): --get-active-zones should include the default zone (dae9112) + * fix(nftables): always flush main table on start (cd20981) + * fix(runtimeToPermanent): deepcopy settings before mangling (9c53639) + * docs: fix reference to lockdown-whitelist.xml in SYNOPSIS section (1c77205) + * fix(firewall-config): escape markup stored in bindings store (c876fd0) + * fix(tests): avoid deprecated assertRaisesRegexp for assertRaisesRegex (2935119) + * fix(icmp): fix check_icmpv6_name() to use correct IPv6 names (af3c35b) + * fix(ipset): fix configuring IP range for ipsets with nftables (6a050ec) + * fix(ipset): fix configuring "timeout","maxelem" values for ipsets with nftables (7d3340c) + * fix(core): fix exception while parsing invalid "tcp-mss-clamp" in policy (ff61209) + * docs(policy): fix wrong documentation of in man firewalld.policy (21026d9) + +- removed following patch: + [- fix_list_all_zones_output.patch] +--- Old: firewalld-2.0.0.tar.bz2 fix_list_all_zones_output.patch New: firewalld-2.0.1.tar.bz2 Other differences: -- ++ firewalld.spec ++ --- /var/tmp/diff_new_pack.gpax17/_old 2023-10-25 18:02:39.862088687 +0200 +++ /var/tmp/diff_new_pack.gpax17/_new 2023-10-25 18:02:39.866088835 +0200 @@ -27,7 +27,7 @@ %global modprobe_d_files firewalld-sysctls.conf Name: firewalld -Version:2.0.0 +Version:2.0.1 Release:0 Summary:A firewall daemon with D-Bus interface providing a dynamic firewall License:GPL-2.0-or-later @@ -37,7 +37,6 @@ Source1:docker-zone.xml Patch0: 0002-Disable-FlushAllOnReload-option.patch Patch1: firewalld-runstatedir.patch -Patch2: fix_list_all_zones_output.patch BuildRequires: autoconf BuildRequires: automake BuildRequires: desktop-file-utils ++ firewalld-2.0.0.tar.bz2 -> firewalld-2.0.1.tar.bz2 ++ 15338 lines of diff (skipped)
commit firewalld for openSUSE:Factory
Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package firewalld for openSUSE:Factory checked in at 2023-09-25 20:00:01 Comparing /work/SRC/openSUSE:Factory/firewalld (Old) and /work/SRC/openSUSE:Factory/.firewalld.new.1770 (New) Package is "firewalld" Mon Sep 25 20:00:01 2023 rev:83 rq:1113350 version:2.0.0 Changes: --- /work/SRC/openSUSE:Factory/firewalld/firewalld.changes 2023-08-28 17:11:08.279865854 +0200 +++ /work/SRC/openSUSE:Factory/.firewalld.new.1770/firewalld.changes 2023-09-25 20:00:21.628011216 +0200 @@ -1,0 +2,10 @@ +Mon Sep 25 01:29:47 UTC 2023 - Steve Kowalik + +- python3-dbus isn't correct either, it's python3-dbus-python. + +--- +Thu Sep 21 06:26:34 UTC 2023 - Steve Kowalik + +- Correct Requires, python3-slip-dbus -> python3-dbus. + +--- Other differences: -- ++ firewalld.spec ++ --- /var/tmp/diff_new_pack.ke9buv/_old 2023-09-25 20:00:22.804053616 +0200 +++ /var/tmp/diff_new_pack.ke9buv/_new 2023-09-25 20:00:22.808053760 +0200 @@ -78,9 +78,9 @@ Summary:Python3 bindings for FirewallD Group: Productivity/Networking/Security Requires: dbus-1-python3 +Requires: python3-dbus-python Requires: python3-decorator Requires: python3-gobject -Requires: python3-slip-dbus %description -n python3-firewall The python3 bindings for firewalld.
commit firewalld for openSUSE:Factory
Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package firewalld for openSUSE:Factory checked in at 2023-08-28 17:11:07 Comparing /work/SRC/openSUSE:Factory/firewalld (Old) and /work/SRC/openSUSE:Factory/.firewalld.new.1766 (New) Package is "firewalld" Mon Aug 28 17:11:07 2023 rev:82 rq:1105433 version:2.0.0 Changes: --- /work/SRC/openSUSE:Factory/firewalld/firewalld.changes 2023-06-25 21:42:00.372956339 +0200 +++ /work/SRC/openSUSE:Factory/.firewalld.new.1766/firewalld.changes 2023-08-28 17:11:08.279865854 +0200 @@ -1,0 +2,6 @@ +Tue Aug 22 10:47:06 UTC 2023 - Mohd Saquib + +- fix(cli): all --list-all-zones output identical (boo#1213609) + [+ fix_list_all_zones_output.patch] + +--- New: fix_list_all_zones_output.patch Other differences: -- ++ firewalld.spec ++ --- /var/tmp/diff_new_pack.Noht0o/_old 2023-08-28 17:11:09.827921447 +0200 +++ /var/tmp/diff_new_pack.Noht0o/_new 2023-08-28 17:11:09.831921590 +0200 @@ -37,6 +37,7 @@ Source1:docker-zone.xml Patch0: 0002-Disable-FlushAllOnReload-option.patch Patch1: firewalld-runstatedir.patch +Patch2: fix_list_all_zones_output.patch BuildRequires: autoconf BuildRequires: automake BuildRequires: desktop-file-utils ++ fix_list_all_zones_output.patch ++ commit f3cea0e8e2a290d4ce00de936d9b679fbd0e0484 f3cea0e Author: Eric Garver Date: Mon Jul 10 15:59:42 2023 -0400 fix(cli): all --list-all-zones output identical Fixes: #1152 diff --git a/src/firewall-cmd.in b/src/firewall-cmd.in index 062909e9..c327763f 100755 --- a/src/firewall-cmd.in +++ b/src/firewall-cmd.in @@ -2448,7 +2448,8 @@ if a.permanent: names = fw.config().getZoneNames() for zone in sorted(names): interfaces = try_nm_get_interfaces_in_zone(zone) -cmd.print_zone_info(zone, settings, extra_interfaces=interfaces) +cmd.print_zone_info(zone, fw.config().getZoneByName(zone).getSettings(), +extra_interfaces=interfaces) cmd.print_msg("") sys.exit(0)
commit firewalld for openSUSE:Factory
Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package firewalld for openSUSE:Factory checked in at 2023-06-25 21:41:57 Comparing /work/SRC/openSUSE:Factory/firewalld (Old) and /work/SRC/openSUSE:Factory/.firewalld.new.15902 (New) Package is "firewalld" Sun Jun 25 21:41:57 2023 rev:81 rq:1095079 version:2.0.0 Changes: --- /work/SRC/openSUSE:Factory/firewalld/firewalld.changes 2023-06-17 22:20:04.499452044 +0200 +++ /work/SRC/openSUSE:Factory/.firewalld.new.15902/firewalld.changes 2023-06-25 21:42:00.372956339 +0200 @@ -1,0 +2,11 @@ +Sat Jun 24 14:20:24 UTC 2023 - Mohd Saquib + +- update to version 2.0.0: + * This is a major release. The major version is being bumped symbolically +to reflect significant changes done in commit f4d2b80 ("fix(policy): +disallow zone drifting"). It does not contain any deliberate breaking +changes. + * Complete changelog: +https://github.com/firewalld/firewalld/releases/tag/v2.0.0 + +--- Old: firewalld-1.3.3.tar.bz2 New: firewalld-2.0.0.tar.bz2 Other differences: -- ++ firewalld.spec ++ --- /var/tmp/diff_new_pack.aV0Rk4/_old 2023-06-25 21:42:01.104960736 +0200 +++ /var/tmp/diff_new_pack.aV0Rk4/_new 2023-06-25 21:42:01.112960784 +0200 @@ -27,7 +27,7 @@ %global modprobe_d_files firewalld-sysctls.conf Name: firewalld -Version:1.3.3 +Version:2.0.0 Release:0 Summary:A firewall daemon with D-Bus interface providing a dynamic firewall License:GPL-2.0-or-later ++ 0002-Disable-FlushAllOnReload-option.patch ++ --- /var/tmp/diff_new_pack.aV0Rk4/_old 2023-06-25 21:42:01.136960928 +0200 +++ /var/tmp/diff_new_pack.aV0Rk4/_new 2023-06-25 21:42:01.140960952 +0200 @@ -14,10 +14,10 @@ src/firewall/config/__init__.py.in | 2 +- 3 files changed, 4 insertions(+), 4 deletions(-) -Index: firewalld-1.2.1/config/firewalld.conf -=== firewalld-1.2.1.orig/config/firewalld.conf -+++ firewalld-1.2.1/config/firewalld.conf +diff --git a/config/firewalld.conf b/config/firewalld.conf +index 7c9305e..43663b3 100644 +--- a/config/firewalld.conf b/config/firewalld.conf @@ -63,8 +63,8 @@ FirewallBackend=nftables # configuration was retained during a reload, namely; interface to zone # assignment, and direct rules. This was confusing to users. To get the old @@ -29,10 +29,10 @@ # RFC3964_IPv4 # As per RFC 3964, filter IPv6 traffic with 6to4 destination addresses that -Index: firewalld-1.2.1/doc/xml/firewalld.conf.xml -=== firewalld-1.2.1.orig/doc/xml/firewalld.conf.xml -+++ firewalld-1.2.1/doc/xml/firewalld.conf.xml +diff --git a/doc/xml/firewalld.conf.xml b/doc/xml/firewalld.conf.xml +index 1b74f70..a45c8df 100644 +--- a/doc/xml/firewalld.conf.xml b/doc/xml/firewalld.conf.xml @@ -190,7 +190,7 @@ runtime configuration was retained during a reload, namely; interface to zone assignment, and direct rules. This was @@ -42,11 +42,11 @@ -Index: firewalld-1.2.1/src/firewall/config/__init__.py.in -=== firewalld-1.2.1.orig/src/firewall/config/__init__.py.in -+++ firewalld-1.2.1/src/firewall/config/__init__.py.in -@@ -132,6 +132,6 @@ FALLBACK_INDIVIDUAL_CALLS = False +diff --git a/src/firewall/config/__init__.py.in b/src/firewall/config/__init__.py.in +index 468daf5..5ec116c 100644 +--- a/src/firewall/config/__init__.py.in b/src/firewall/config/__init__.py.in +@@ -132,7 +132,7 @@ FALLBACK_INDIVIDUAL_CALLS = False FALLBACK_LOG_DENIED = "off" FALLBACK_AUTOMATIC_HELPERS = "no" FALLBACK_FIREWALL_BACKEND = "nftables" @@ -54,4 +54,5 @@ +FALLBACK_FLUSH_ALL_ON_RELOAD = False FALLBACK_RFC3964_IPV4 = True FALLBACK_ALLOW_ZONE_DRIFTING = False + FALLBACK_NFTABLES_FLOWTABLE = "off" ++ firewalld-1.3.3.tar.bz2 -> firewalld-2.0.0.tar.bz2 ++ 171068 lines of diff (skipped)
commit firewalld for openSUSE:Factory
Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package firewalld for openSUSE:Factory checked in at 2023-06-17 22:19:58 Comparing /work/SRC/openSUSE:Factory/firewalld (Old) and /work/SRC/openSUSE:Factory/.firewalld.new.15902 (New) Package is "firewalld" Sat Jun 17 22:19:58 2023 rev:80 rq:1093236 version:1.3.3 Changes: --- /work/SRC/openSUSE:Factory/firewalld/firewalld.changes 2023-05-17 10:53:06.199338398 +0200 +++ /work/SRC/openSUSE:Factory/.firewalld.new.15902/firewalld.changes 2023-06-17 22:20:04.499452044 +0200 @@ -1,0 +2,9 @@ +Thu Jun 15 07:48:48 UTC 2023 - Mohd Saquib + +- update to 1.3.3: + * fix(reload): restore policy for old backend if it changed (de85849) + * fix(io): rich: tcp mss: handle value=None (8016f10) + * fix(firewall-config): rich: set destination address (f6641a9) + * fix(policy): mixed IP families in ingress/egress (69ed4d6) + +--- Old: firewalld-1.3.2.tar.bz2 New: firewalld-1.3.3.tar.bz2 Other differences: -- ++ firewalld.spec ++ --- /var/tmp/diff_new_pack.474tEw/_old 2023-06-17 22:20:06.131461851 +0200 +++ /var/tmp/diff_new_pack.474tEw/_new 2023-06-17 22:20:06.139461899 +0200 @@ -27,7 +27,7 @@ %global modprobe_d_files firewalld-sysctls.conf Name: firewalld -Version:1.3.2 +Version:1.3.3 Release:0 Summary:A firewall daemon with D-Bus interface providing a dynamic firewall License:GPL-2.0-or-later ++ firewalld-1.3.2.tar.bz2 -> firewalld-1.3.3.tar.bz2 ++ 7454 lines of diff (skipped)
commit firewalld for openSUSE:Factory
Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package firewalld for openSUSE:Factory checked in at 2023-05-17 10:52:48 Comparing /work/SRC/openSUSE:Factory/firewalld (Old) and /work/SRC/openSUSE:Factory/.firewalld.new.1533 (New) Package is "firewalld" Wed May 17 10:52:48 2023 rev:79 rq:1087468 version:1.3.2 Changes: --- /work/SRC/openSUSE:Factory/firewalld/firewalld.changes 2023-04-26 17:24:58.577488431 +0200 +++ /work/SRC/openSUSE:Factory/.firewalld.new.1533/firewalld.changes 2023-05-17 10:53:06.199338398 +0200 @@ -1,0 +2,6 @@ +Tue May 16 20:03:26 UTC 2023 - Callum Farmer + +- Add firewalld-runstatedir.patch: change pid file location from + /var/run to /run + +--- New: firewalld-runstatedir.patch Other differences: -- ++ firewalld.spec ++ --- /var/tmp/diff_new_pack.BqlpNH/_old 2023-05-17 10:53:06.759341413 +0200 +++ /var/tmp/diff_new_pack.BqlpNH/_new 2023-05-17 10:53:06.763341435 +0200 @@ -36,6 +36,7 @@ Source0: https://github.com/firewalld/firewalld/releases/download/v%{version}/firewalld-%{version}.tar.bz2 Source1:docker-zone.xml Patch0: 0002-Disable-FlushAllOnReload-option.patch +Patch1: firewalld-runstatedir.patch BuildRequires: autoconf BuildRequires: automake BuildRequires: desktop-file-utils ++ firewalld-runstatedir.patch ++ diff --git a/__init__.py.in b/__init__.py.in.new index d982384..6452e6d 100644 --- a/src/firewall/config/__init__.py.in +++ b/src/firewall/config/__init__.py.in @@ -95,7 +95,7 @@ FIREWALLD_LOGFILE = '/var/log/firewalld' FIREWALLD_LOGTARGET = '@DEFAULT_LOG_TARGET@' -FIREWALLD_PIDFILE = "/var/run/firewalld.pid" +FIREWALLD_PIDFILE = "/run/firewalld.pid" FIREWALLD_TEMPDIR = '/run/firewalld'
commit firewalld for openSUSE:Factory
Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package firewalld for openSUSE:Factory checked in at 2023-04-26 17:24:22 Comparing /work/SRC/openSUSE:Factory/firewalld (Old) and /work/SRC/openSUSE:Factory/.firewalld.new.1533 (New) Package is "firewalld" Wed Apr 26 17:24:22 2023 rev:78 rq:1082734 version:1.3.2 Changes: --- /work/SRC/openSUSE:Factory/firewalld/firewalld.changes 2023-04-20 15:13:40.065735135 +0200 +++ /work/SRC/openSUSE:Factory/.firewalld.new.1533/firewalld.changes 2023-04-26 17:24:58.577488431 +0200 @@ -1,0 +2,8 @@ +Tue Apr 25 11:20:58 UTC 2023 - Mohd Saquib + +- update to 1.3.2: + * test(container): add centos9-stream (b7bb3d0) + * test(functions): iptables: normalize protocols to numeric values (33a1b16) + * test(functions): ip6tables: normalize opt field output (eeac39c) + +--- Old: firewalld-1.3.1.tar.bz2 New: firewalld-1.3.2.tar.bz2 Other differences: -- ++ firewalld.spec ++ --- /var/tmp/diff_new_pack.HDHXzn/_old 2023-04-26 17:24:59.049491185 +0200 +++ /var/tmp/diff_new_pack.HDHXzn/_new 2023-04-26 17:24:59.053491209 +0200 @@ -27,7 +27,7 @@ %global modprobe_d_files firewalld-sysctls.conf Name: firewalld -Version:1.3.1 +Version:1.3.2 Release:0 Summary:A firewall daemon with D-Bus interface providing a dynamic firewall License:GPL-2.0-or-later ++ firewalld-1.3.1.tar.bz2 -> firewalld-1.3.2.tar.bz2 ++ 143250 lines of diff (skipped)
commit firewalld for openSUSE:Factory
Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package firewalld for openSUSE:Factory checked in at 2023-04-20 15:13:25 Comparing /work/SRC/openSUSE:Factory/firewalld (Old) and /work/SRC/openSUSE:Factory/.firewalld.new.2023 (New) Package is "firewalld" Thu Apr 20 15:13:25 2023 rev:77 rq:1080031 version:1.3.1 Changes: --- /work/SRC/openSUSE:Factory/firewalld/firewalld.changes 2023-01-07 17:16:51.877135887 +0100 +++ /work/SRC/openSUSE:Factory/.firewalld.new.2023/firewalld.changes 2023-04-20 15:13:40.065735135 +0200 @@ -1,0 +2,13 @@ +Tue Apr 18 01:59:28 UTC 2023 - Mohd Saquib + +- update to 1.3.1: + * fix(fw_nm): use IP interface names for connection lookup (18c8b81) + * fix(fw_policy): raise exceptions (5ae9322) + * fix(service): include: when used with rich rule (986f0be) + * fix(nftables): rich: log: limit was not taking effect (0dc0575) + * fix(build): rpm must build all as prerequisite (6896748) + * fix: use error codes for FirewallError instances (370e5f2) + * fix(ipset): chunk entries when restoring set (8a88855) + * fix(applet): allows using KDE network connection editor (29c8ef6) + +--- Old: firewalld-1.3.0.tar.gz New: firewalld-1.3.1.tar.bz2 Other differences: -- ++ firewalld.spec ++ --- /var/tmp/diff_new_pack.d1z33D/_old 2023-04-20 15:13:42.025744123 +0200 +++ /var/tmp/diff_new_pack.d1z33D/_new 2023-04-20 15:13:42.029744141 +0200 @@ -1,7 +1,7 @@ # # spec file for package firewalld # -# Copyright (c) 2022 SUSE LLC +# Copyright (c) 2023 SUSE LLC # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -27,13 +27,13 @@ %global modprobe_d_files firewalld-sysctls.conf Name: firewalld -Version:1.3.0 +Version:1.3.1 Release:0 Summary:A firewall daemon with D-Bus interface providing a dynamic firewall License:GPL-2.0-or-later Group: Productivity/Networking/Security URL:https://www.firewalld.org -Source0: https://github.com/firewalld/firewalld/releases/download/v%{version}/firewalld-%{version}.tar.gz +Source0: https://github.com/firewalld/firewalld/releases/download/v%{version}/firewalld-%{version}.tar.bz2 Source1:docker-zone.xml Patch0: 0002-Disable-FlushAllOnReload-option.patch BuildRequires: autoconf ++ firewalld-1.3.0.tar.gz -> firewalld-1.3.1.tar.bz2 ++ 142903 lines of diff (skipped)
commit firewalld for openSUSE:Factory
Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package firewalld for openSUSE:Factory checked in at 2023-01-07 17:16:22 Comparing /work/SRC/openSUSE:Factory/firewalld (Old) and /work/SRC/openSUSE:Factory/.firewalld.new.1563 (New) Package is "firewalld" Sat Jan 7 17:16:22 2023 rev:76 rq:1056418 version:1.3.0 Changes: --- /work/SRC/openSUSE:Factory/firewalld/firewalld.changes 2022-12-07 17:34:38.928435249 +0100 +++ /work/SRC/openSUSE:Factory/.firewalld.new.1563/firewalld.changes 2023-01-07 17:16:51.877135887 +0100 @@ -1,0 +2,16 @@ +Fri Jan 6 15:11:02 UTC 2023 - Callum Farmer + +- update to 1.3.0: + * feat(service): add Warpinator + * feat(dbus): reset to default settings + * feat(service): add bareos-director bareos-filedaemon +bareos-storage + * feat(policy): masquerade: allow ingress zone to have interface + * feat(service): add Nebula service + * feat(service): add Ceph Prometheus exporter + * feat(service): add OMG DDS service definition + * feat(service): add llmnr-client service + * feat(service): add ps2link service + * feat(service): add definition for syncthing-relay + +--- Old: firewalld-1.2.2.tar.gz New: firewalld-1.3.0.tar.gz Other differences: -- ++ firewalld.spec ++ --- /var/tmp/diff_new_pack.CfEGRl/_old 2023-01-07 17:16:53.645146435 +0100 +++ /var/tmp/diff_new_pack.CfEGRl/_new 2023-01-07 17:16:53.653146482 +0100 @@ -27,7 +27,7 @@ %global modprobe_d_files firewalld-sysctls.conf Name: firewalld -Version:1.2.2 +Version:1.3.0 Release:0 Summary:A firewall daemon with D-Bus interface providing a dynamic firewall License:GPL-2.0-or-later ++ firewalld-1.2.2.tar.gz -> firewalld-1.3.0.tar.gz ++ 56052 lines of diff (skipped)
commit firewalld for openSUSE:Factory
Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package firewalld for openSUSE:Factory checked in at 2022-12-07 17:34:01 Comparing /work/SRC/openSUSE:Factory/firewalld (Old) and /work/SRC/openSUSE:Factory/.firewalld.new.1835 (New) Package is "firewalld" Wed Dec 7 17:34:01 2022 rev:75 rq:1040347 version:1.2.2 Changes: --- /work/SRC/openSUSE:Factory/firewalld/firewalld.changes 2022-11-05 14:46:50.530619427 +0100 +++ /work/SRC/openSUSE:Factory/.firewalld.new.1835/firewalld.changes 2022-12-07 17:34:38.928435249 +0100 @@ -1,0 +2,11 @@ +Sun Dec 4 16:16:29 UTC 2022 - Dirk Müller + +- update to 1.2.2: + * fix(client): raise exception (40a473b) + * fix(nftables): raise exception (a4b82cc) + * fix(nftables): invalid conditional statement (e9ca0ad) + * fix(check_config): use on disk firewalld_conf (d141d6d) + * fix(service): llmnr: improve description (d233698) + * Revert "feat(service): Add jellyfin service" (ea154d5) + +--- Old: firewalld-1.2.1.tar.gz New: firewalld-1.2.2.tar.gz Other differences: -- ++ firewalld.spec ++ --- /var/tmp/diff_new_pack.uFjORP/_old 2022-12-07 17:34:39.596438906 +0100 +++ /var/tmp/diff_new_pack.uFjORP/_new 2022-12-07 17:34:39.600438928 +0100 @@ -27,7 +27,7 @@ %global modprobe_d_files firewalld-sysctls.conf Name: firewalld -Version:1.2.1 +Version:1.2.2 Release:0 Summary:A firewall daemon with D-Bus interface providing a dynamic firewall License:GPL-2.0-or-later ++ firewalld-1.2.1.tar.gz -> firewalld-1.2.2.tar.gz ++ 17552 lines of diff (skipped)
commit firewalld for openSUSE:Factory
Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package firewalld for openSUSE:Factory checked in at 2022-11-05 14:46:45 Comparing /work/SRC/openSUSE:Factory/firewalld (Old) and /work/SRC/openSUSE:Factory/.firewalld.new.2275 (New) Package is "firewalld" Sat Nov 5 14:46:45 2022 rev:74 rq:1033616 version:1.2.1 Changes: --- /work/SRC/openSUSE:Factory/firewalld/firewalld.changes 2022-09-02 21:56:41.784318765 +0200 +++ /work/SRC/openSUSE:Factory/.firewalld.new.2275/firewalld.changes 2022-11-05 14:46:50.530619427 +0100 @@ -1,0 +2,20 @@ +Thu Nov 3 15:03:25 UTC 2022 - Paolo Stivanin + +- Update to 1.2.1: + * fix(modules): don't error if /proc/modules is missing (a1f091d) + * fix(readme): format optional (03e61f2) + * docs: add protocols to rich and zones (191cea4) + * docs(policy): add priority attribute to rule (616ed7c) + * fix(runtimeToPermanent): errors for interfaces not in zone (6b5a70b) + * fix(failsafe): log exception on fatal failure (af1b8f0) + * fix(ipset): defer native ipset creation if nftables (ae0ded4) + * fix(nftables): drop invalid packets before zone dispatch (dc972ae) + * fix(iptables): drop invalid packets before zone dispatch (83a4608) + * fix(policies): Splitting interfaces with wildcards (3806e79) + * fix(ipset): exception on overlap checking empty set (bfe827f) + * fix(bash): fix ipset commands autocompletion (742669b) + * docs(README): fix typo (e40b100) + * fix(treewide): misc typos (d121f0c) + * fix: firewalld.conf: trim trailing whitespace (21809ed) + +--- Old: firewalld-1.2.0.tar.gz New: firewalld-1.2.1.tar.gz Other differences: -- ++ firewalld.spec ++ --- /var/tmp/diff_new_pack.0J7BJE/_old 2022-11-05 14:46:51.346624187 +0100 +++ /var/tmp/diff_new_pack.0J7BJE/_new 2022-11-05 14:46:51.354624234 +0100 @@ -27,7 +27,7 @@ %global modprobe_d_files firewalld-sysctls.conf Name: firewalld -Version:1.2.0 +Version:1.2.1 Release:0 Summary:A firewall daemon with D-Bus interface providing a dynamic firewall License:GPL-2.0-or-later ++ 0002-Disable-FlushAllOnReload-option.patch ++ --- /var/tmp/diff_new_pack.0J7BJE/_old 2022-11-05 14:46:51.382624397 +0100 +++ /var/tmp/diff_new_pack.0J7BJE/_new 2022-11-05 14:46:51.386624421 +0100 @@ -14,11 +14,11 @@ src/firewall/config/__init__.py.in | 2 +- 3 files changed, 4 insertions(+), 4 deletions(-) -diff --git a/config/firewalld.conf b/config/firewalld.conf -index 532f0452..e789f2a7 100644 a/config/firewalld.conf -+++ b/config/firewalld.conf -@@ -52,8 +52,8 @@ FirewallBackend=nftables +Index: firewalld-1.2.1/config/firewalld.conf +=== +--- firewalld-1.2.1.orig/config/firewalld.conf firewalld-1.2.1/config/firewalld.conf +@@ -63,8 +63,8 @@ FirewallBackend=nftables # configuration was retained during a reload, namely; interface to zone # assignment, and direct rules. This was confusing to users. To get the old # behavior set this to "no". @@ -29,11 +29,11 @@ # RFC3964_IPv4 # As per RFC 3964, filter IPv6 traffic with 6to4 destination addresses that -diff --git a/doc/xml/firewalld.conf.xml b/doc/xml/firewalld.conf.xml -index fcfbfd2b..8415ba3e 100644 a/doc/xml/firewalld.conf.xml -+++ b/doc/xml/firewalld.conf.xml -@@ -166,7 +166,7 @@ +Index: firewalld-1.2.1/doc/xml/firewalld.conf.xml +=== +--- firewalld-1.2.1.orig/doc/xml/firewalld.conf.xml firewalld-1.2.1/doc/xml/firewalld.conf.xml +@@ -190,7 +190,7 @@ runtime configuration was retained during a reload, namely; interface to zone assignment, and direct rules. This was confusing to users. To get the old behavior set this to "no". @@ -42,11 +42,11 @@ -diff --git a/src/firewall/config/__init__.py.in b/src/firewall/config/__init__.py.in -index e875e849..df6f449b 100644 a/src/firewall/config/__init__.py.in -+++ b/src/firewall/config/__init__.py.in -@@ -131,6 +131,6 @@ FALLBACK_INDIVIDUAL_CALLS = False +Index: firewalld-1.2.1/src/firewall/config/__init__.py.in +=== +--- firewalld-1.2.1.orig/src/firewall/config/__init__.py.in firewalld-1.2.1/src/firewall/config/__init__.py.in +@@ -132,6 +132,6 @@ FALLBACK_INDIVIDUAL_CALLS = False FALLBACK_LOG_DENIED = "off" FALLBACK_AUTOMATIC_HELPERS = "no" FALLBACK_FIREWALL_BACKEND = "nftables" @@ -54,7 +54,4 @@ +FALLBACK_FLUSH_ALL_ON_RELOAD = False FALLBACK_RFC3964_IPV
commit firewalld for openSUSE:Factory
Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package firewalld for openSUSE:Factory checked in at 2022-09-02 21:56:25 Comparing /work/SRC/openSUSE:Factory/firewalld (Old) and /work/SRC/openSUSE:Factory/.firewalld.new.2083 (New) Package is "firewalld" Fri Sep 2 21:56:25 2022 rev:73 rq:1000604 version:1.2.0 Changes: --- /work/SRC/openSUSE:Factory/firewalld/firewalld.changes 2022-08-03 21:16:32.855418384 +0200 +++ /work/SRC/openSUSE:Factory/.firewalld.new.2083/firewalld.changes 2022-09-02 21:56:41.784318765 +0200 @@ -1,0 +2,6 @@ +Thu Sep 1 07:55:30 UTC 2022 - Stefan Schubert + +- Migration to /usr/etc: Saving user changed configuration files + in /etc and restoring them while an RPM update. + +--- Other differences: -- ++ firewalld.spec ++ --- /var/tmp/diff_new_pack.dhGEUy/_old 2022-09-02 21:56:42.332320092 +0200 +++ /var/tmp/diff_new_pack.dhGEUy/_new 2022-09-02 21:56:42.340320111 +0200 @@ -1,7 +1,7 @@ # # spec file for package firewalld # -# Copyright (c) 2021 SUSE LLC +# Copyright (c) 2022 SUSE LLC # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -43,14 +43,14 @@ # Adding tools to BuildRequires as well so they can be autodetected # Else the configure tool will set them to /bin/false BuildRequires: fdupes +BuildRequires: ebtables BuildRequires: gettext BuildRequires: glib2-devel BuildRequires: gobject-introspection BuildRequires: hicolor-icon-theme BuildRequires: intltool -BuildRequires: iptables -BuildRequires: ebtables BuildRequires: ipset +BuildRequires: iptables BuildRequires: libxslt-tools BuildRequires: python3-devel BuildRequires: systemd-rpm-macros @@ -208,6 +208,12 @@ [ ! -f "/etc/modprobe.d/${_f}.rpmsave" ] || \ mv -f "/etc/modprobe.d/${_f}.rpmsave" "/etc/modprobe.d/${_f}.rpmsave.old" || : done +%if 0%{?suse_version} > 1500 +# Prepare for migration to /usr/etc; save any old .rpmsave +for i in logrotate.d/firewalld ; do + test -f %{_sysconfdir}/${i}.rpmsave && mv -v %{_sysconfdir}/${i}.rpmsave %{_sysconfdir}/${i}.rpmsave.old ||: +done +%endif %post %service_add_post firewalld.service @@ -229,6 +235,12 @@ [ ! -f "/etc/modprobe.d/${_f}.rpmsave" ] || \ mv -fv "/etc/modprobe.d/${_f}.rpmsave" "/etc/modprobe.d/${_f}" || : done +%if 0%{?suse_version} > 1500 +# Migration to /usr/etc, restore just created .rpmsave +for i in logrotate.d/firewalld ; do + test -f %{_sysconfdir}/${i}.rpmsave && mv -v %{_sysconfdir}/${i}.rpmsave %{_sysconfdir}/${i} ||: +done +%endif %post -n firewall-applet /bin/touch --no-create %{_datadir}/icons/hicolor &>/dev/null || :
commit firewalld for openSUSE:Factory
Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package firewalld for openSUSE:Factory checked in at 2022-08-03 21:16:25 Comparing /work/SRC/openSUSE:Factory/firewalld (Old) and /work/SRC/openSUSE:Factory/.firewalld.new.1533 (New) Package is "firewalld" Wed Aug 3 21:16:25 2022 rev:72 rq:992210 version:1.2.0 Changes: --- /work/SRC/openSUSE:Factory/firewalld/firewalld.changes 2022-07-26 19:42:33.069172970 +0200 +++ /work/SRC/openSUSE:Factory/.firewalld.new.1533/firewalld.changes 2022-08-03 21:16:32.855418384 +0200 @@ -1,0 +2,6 @@ +Tue Aug 2 09:17:56 UTC 2022 - Marcus Meissner + +- readd ipset buildrequires to reenable ipset support (bsc#1202043) +- readd ebtables too, as there is no builtin support. + +--- Other differences: -- ++ firewalld.spec ++ --- /var/tmp/diff_new_pack.qNX4G9/_old 2022-08-03 21:16:33.343419665 +0200 +++ /var/tmp/diff_new_pack.qNX4G9/_new 2022-08-03 21:16:33.347419675 +0200 @@ -49,6 +49,8 @@ BuildRequires: hicolor-icon-theme BuildRequires: intltool BuildRequires: iptables +BuildRequires: ebtables +BuildRequires: ipset BuildRequires: libxslt-tools BuildRequires: python3-devel BuildRequires: systemd-rpm-macros
commit firewalld for openSUSE:Factory
Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package firewalld for openSUSE:Factory checked in at 2022-07-26 19:42:23 Comparing /work/SRC/openSUSE:Factory/firewalld (Old) and /work/SRC/openSUSE:Factory/.firewalld.new.1533 (New) Package is "firewalld" Tue Jul 26 19:42:23 2022 rev:71 rq:991048 version:1.2.0 Changes: --- /work/SRC/openSUSE:Factory/firewalld/firewalld.changes 2022-07-25 15:07:03.195886221 +0200 +++ /work/SRC/openSUSE:Factory/.firewalld.new.1533/firewalld.changes 2022-07-26 19:42:33.069172970 +0200 @@ -1,0 +2,12 @@ +Mon Jul 25 13:38:56 UTC 2022 - Marcus Meissner + +- readd iptables requires, as docker uses iptables passthrough + currently, which calls into iptables (bsc#1201836) + +--- +Thu Jul 14 09:07:58 UTC 2022 - Thomas Renninger + +- Also remove ipset, ebtables and iptables from the BuildRequires + list (compare with change from 2022-03-03 - Thorsten Kukuk ) + +--- Other differences: -- ++ firewalld.spec ++ --- /var/tmp/diff_new_pack.RDpjb0/_old 2022-07-26 19:42:33.801059875 +0200 +++ /var/tmp/diff_new_pack.RDpjb0/_new 2022-07-26 19:42:33.809058639 +0200 @@ -42,14 +42,12 @@ BuildRequires: docbook-xsl-stylesheets # Adding tools to BuildRequires as well so they can be autodetected # Else the configure tool will set them to /bin/false -BuildRequires: ebtables BuildRequires: fdupes BuildRequires: gettext BuildRequires: glib2-devel BuildRequires: gobject-introspection BuildRequires: hicolor-icon-theme BuildRequires: intltool -BuildRequires: ipset BuildRequires: iptables BuildRequires: libxslt-tools BuildRequires: python3-devel
commit firewalld for openSUSE:Factory
Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package firewalld for openSUSE:Factory checked in at 2022-07-25 15:07:02 Comparing /work/SRC/openSUSE:Factory/firewalld (Old) and /work/SRC/openSUSE:Factory/.firewalld.new.1533 (New) Package is "firewalld" Mon Jul 25 15:07:02 2022 rev:70 rq: version:1.2.0 Changes: --- /work/SRC/openSUSE:Factory/firewalld/firewalld.changes 2022-07-21 11:33:03.598930848 +0200 +++ /work/SRC/openSUSE:Factory/.firewalld.new.1533/firewalld.changes 2022-07-25 15:07:03.195886221 +0200 @@ -2,6 +1,0 @@ -Thu Jul 14 09:07:58 UTC 2022 - Thomas Renninger - -- Also remove ipset, ebtables and iptables from the BuildRequires - list (compare with change from 2022-03-03 - Thorsten Kukuk ) - Other differences: -- ++ firewalld.spec ++ --- /var/tmp/diff_new_pack.cjBhS7/_old 2022-07-25 15:07:04.471689094 +0200 +++ /var/tmp/diff_new_pack.cjBhS7/_new 2022-07-25 15:07:04.475688476 +0200 @@ -42,12 +42,15 @@ BuildRequires: docbook-xsl-stylesheets # Adding tools to BuildRequires as well so they can be autodetected # Else the configure tool will set them to /bin/false +BuildRequires: ebtables BuildRequires: fdupes BuildRequires: gettext BuildRequires: glib2-devel BuildRequires: gobject-introspection BuildRequires: hicolor-icon-theme BuildRequires: intltool +BuildRequires: ipset +BuildRequires: iptables BuildRequires: libxslt-tools BuildRequires: python3-devel BuildRequires: systemd-rpm-macros
commit firewalld for openSUSE:Factory
Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package firewalld for openSUSE:Factory checked in at 2022-07-21 11:32:44 Comparing /work/SRC/openSUSE:Factory/firewalld (Old) and /work/SRC/openSUSE:Factory/.firewalld.new.1523 (New) Package is "firewalld" Thu Jul 21 11:32:44 2022 rev:69 rq:989313 version:1.2.0 Changes: --- /work/SRC/openSUSE:Factory/firewalld/firewalld.changes 2022-07-05 12:27:38.677885396 +0200 +++ /work/SRC/openSUSE:Factory/.firewalld.new.1523/firewalld.changes 2022-07-21 11:33:03.598930848 +0200 @@ -1,0 +2,6 @@ +Thu Jul 14 09:07:58 UTC 2022 - Thomas Renninger + +- Also remove ipset, ebtables and iptables from the BuildRequires + list (compare with change from 2022-03-03 - Thorsten Kukuk ) + +--- Other differences: -- ++ firewalld.spec ++ --- /var/tmp/diff_new_pack.KKYBJW/_old 2022-07-21 11:33:04.150931323 +0200 +++ /var/tmp/diff_new_pack.KKYBJW/_new 2022-07-21 11:33:04.154931326 +0200 @@ -42,15 +42,12 @@ BuildRequires: docbook-xsl-stylesheets # Adding tools to BuildRequires as well so they can be autodetected # Else the configure tool will set them to /bin/false -BuildRequires: ebtables BuildRequires: fdupes BuildRequires: gettext BuildRequires: glib2-devel BuildRequires: gobject-introspection BuildRequires: hicolor-icon-theme BuildRequires: intltool -BuildRequires: ipset -BuildRequires: iptables BuildRequires: libxslt-tools BuildRequires: python3-devel BuildRequires: systemd-rpm-macros
commit firewalld for openSUSE:Factory
Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package firewalld for openSUSE:Factory checked in at 2022-07-05 12:27:32 Comparing /work/SRC/openSUSE:Factory/firewalld (Old) and /work/SRC/openSUSE:Factory/.firewalld.new.1548 (New) Package is "firewalld" Tue Jul 5 12:27:32 2022 rev:68 rq:986626 version:1.2.0 Changes: --- /work/SRC/openSUSE:Factory/firewalld/firewalld.changes 2022-06-24 08:45:20.711141505 +0200 +++ /work/SRC/openSUSE:Factory/.firewalld.new.1548/firewalld.changes 2022-07-05 12:27:38.677885396 +0200 @@ -1,0 +2,14 @@ +Mon Jul 4 11:05:13 UTC 2022 - Callum Farmer + +- Update to 1.2.0: + * feat(firewalld): add new --log-target parameter + * feat(service): add snmptls, snmptls-trap services + * feat(service): add IPFS service + * feat(fw): startup failsafe + * feat(service): Add kubelet-readonly + * feat(service): Add secure version of k8s controller-plane components + * feat(bash): completion of policy-related commands + * feat(service): add prometheus node-exporter + * feat(service): add Kodi JSON-RPC and EventServer services + +--- Old: firewalld-1.1.1.tar.gz New: firewalld-1.2.0.tar.gz Other differences: -- ++ firewalld.spec ++ --- /var/tmp/diff_new_pack.KQkfQw/_old 2022-07-05 12:27:39.213886181 +0200 +++ /var/tmp/diff_new_pack.KQkfQw/_new 2022-07-05 12:27:39.217886186 +0200 @@ -27,7 +27,7 @@ %global modprobe_d_files firewalld-sysctls.conf Name: firewalld -Version:1.1.1 +Version:1.2.0 Release:0 Summary:A firewall daemon with D-Bus interface providing a dynamic firewall License:GPL-2.0-or-later @@ -259,7 +259,7 @@ %{_bindir}/glib-compile-schemas %{_datadir}/glib-2.0/schemas &> /dev/null || : %files -%doc README +%doc README.md %license COPYING %{_sbindir}/firewalld %{_sbindir}/rcfirewalld @@ -273,7 +273,7 @@ %dir %{_prefix}/lib/firewalld/helpers %dir %{_prefix}/lib/firewalld/policies %{_prefix}/lib/firewalld/icmptypes/*.xml -%{_prefix}/lib/firewalld/ipsets/README +%{_prefix}/lib/firewalld/ipsets/README.md %{_prefix}/lib/firewalld/services/*.xml %{_prefix}/lib/firewalld/zones/*.xml %{_prefix}/lib/firewalld/helpers/*.xml @@ -350,7 +350,7 @@ %files test %dir %{_datadir}/firewalld/testsuite -%{_datadir}/firewalld/testsuite/README +%{_datadir}/firewalld/testsuite/README.md %{_datadir}/firewalld/testsuite/testsuite %dir %{_datadir}/firewalld/testsuite/integration %{_datadir}/firewalld/testsuite/integration/testsuite ++ firewalld-1.1.1.tar.gz -> firewalld-1.2.0.tar.gz ++ 183468 lines of diff (skipped)
commit firewalld for openSUSE:Factory
Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package firewalld for openSUSE:Factory checked in at 2022-06-24 08:45:08 Comparing /work/SRC/openSUSE:Factory/firewalld (Old) and /work/SRC/openSUSE:Factory/.firewalld.new.1548 (New) Package is "firewalld" Fri Jun 24 08:45:08 2022 rev:67 rq:984239 version:1.1.1 Changes: --- /work/SRC/openSUSE:Factory/firewalld/firewalld.changes 2022-04-02 18:20:07.494555038 +0200 +++ /work/SRC/openSUSE:Factory/.firewalld.new.1548/firewalld.changes 2022-06-24 08:45:20.711141505 +0200 @@ -1,0 +2,6 @@ +Wed Jun 15 09:32:57 UTC 2022 - Stefan Schubert + +- Moved logrotate files from user specific directory /etc/logrotate.d + to vendor specific directory /usr/etc/logrotate.d. + +--- Other differences: -- ++ firewalld.spec ++ --- /var/tmp/diff_new_pack.yRGez5/_old 2022-06-24 08:45:22.047143002 +0200 +++ /var/tmp/diff_new_pack.yRGez5/_new 2022-06-24 08:45:22.055143011 +0200 @@ -192,7 +192,9 @@ mv %{buildroot}%{_sysconfdir}/modprobe.d/* %{buildroot}%{_modprobedir} %if 0%{?suse_version} >= 1550 mkdir -p %{buildroot}%{_distconfdir}/xdg/autostart +mkdir -p %{buildroot}%{_distconfdir}/logrotate.d mv %{buildroot}%{_sysconfdir}/xdg/autostart/* %{buildroot}%{_distconfdir}/xdg/autostart +mv %{buildroot}%{_sysconfdir}/logrotate.d/firewalld %{buildroot}%{_distconfdir}/logrotate.d/firewalld %endif %fdupes %{buildroot}%{python3_sitelib} @@ -283,7 +285,11 @@ %{_modprobedir}/firewalld-sysctls.conf %config(noreplace) %{_sysconfdir}/firewalld/firewalld.conf %config(noreplace) %{_sysconfdir}/firewalld/lockdown-whitelist.xml +%if 0%{?suse_version} > 1550 +%{_distconfdir}/logrotate.d/firewalld +%else %config(noreplace) %{_sysconfdir}/logrotate.d/firewalld +%endif %attr(0750,root,root) %dir %{_sysconfdir}/firewalld %attr(0750,root,root) %dir %{_sysconfdir}/firewalld/icmptypes %attr(0750,root,root) %dir %{_sysconfdir}/firewalld/services
commit firewalld for openSUSE:Factory
Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package firewalld for openSUSE:Factory checked in at 2022-04-02 18:20:03 Comparing /work/SRC/openSUSE:Factory/firewalld (Old) and /work/SRC/openSUSE:Factory/.firewalld.new.1900 (New) Package is "firewalld" Sat Apr 2 18:20:03 2022 rev:66 rq:966068 version:1.1.1 Changes: --- /work/SRC/openSUSE:Factory/firewalld/firewalld.changes 2022-03-24 22:57:03.612195692 +0100 +++ /work/SRC/openSUSE:Factory/.firewalld.new.1900/firewalld.changes 2022-04-02 18:20:07.494555038 +0200 @@ -1,0 +2,10 @@ +Wed Mar 30 17:09:49 UTC 2022 - Callum Farmer + +- Update to 1.1.1: + * fix(build): oci: use centos:stream8 instead of ubi:8 + * fix(functions): --check-config fails if direct.xml exists + * fix(build): oci: use dbus inside the container + * docs(README): add note about container host integration + * docs: typo fixes + +--- Old: firewalld-1.1.0.tar.gz New: firewalld-1.1.1.tar.gz Other differences: -- ++ firewalld.spec ++ --- /var/tmp/diff_new_pack.BxxgZQ/_old 2022-04-02 18:20:08.062548663 +0200 +++ /var/tmp/diff_new_pack.BxxgZQ/_new 2022-04-02 18:20:08.066548617 +0200 @@ -27,7 +27,7 @@ %global modprobe_d_files firewalld-sysctls.conf Name: firewalld -Version:1.1.0 +Version:1.1.1 Release:0 Summary:A firewall daemon with D-Bus interface providing a dynamic firewall License:GPL-2.0-or-later ++ firewalld-1.1.0.tar.gz -> firewalld-1.1.1.tar.gz ++ 130594 lines of diff (skipped)
commit firewalld for openSUSE:Factory
Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package firewalld for openSUSE:Factory checked in at 2022-03-24 22:56:57 Comparing /work/SRC/openSUSE:Factory/firewalld (Old) and /work/SRC/openSUSE:Factory/.firewalld.new.1900 (New) Package is "firewalld" Thu Mar 24 22:56:57 2022 rev:65 rq:964017 version:1.1.0 Changes: --- /work/SRC/openSUSE:Factory/firewalld/firewalld.changes 2022-03-11 21:40:58.906057506 +0100 +++ /work/SRC/openSUSE:Factory/.firewalld.new.1900/firewalld.changes 2022-03-24 22:57:03.612195692 +0100 @@ -1,0 +2,5 @@ +Fri Mar 18 12:43:17 UTC 2022 - Witek Bedyk + +- Provide dummy firewalld-prometheus-config package (bsc#1197042) + +--- Other differences: -- ++ firewalld.spec ++ --- /var/tmp/diff_new_pack.uIeMbW/_old 2022-03-24 22:57:04.232196302 +0100 +++ /var/tmp/diff_new_pack.uIeMbW/_new 2022-03-24 22:57:04.236196306 +0100 @@ -55,6 +55,8 @@ BuildRequires: python3-devel BuildRequires: systemd-rpm-macros Recommends: logrotate +Obsoletes: firewalld-prometheus-config < 0.2 +Provides: firewalld-prometheus-config = 0.2 # Workaround: nftables seems to be a python3-nftables requirement, # not of firewalld. Requires: nftables
commit firewalld for openSUSE:Factory
Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package firewalld for openSUSE:Factory checked in at 2022-03-11 21:40:55 Comparing /work/SRC/openSUSE:Factory/firewalld (Old) and /work/SRC/openSUSE:Factory/.firewalld.new.25692 (New) Package is "firewalld" Fri Mar 11 21:40:55 2022 rev:64 rq:960423 version:1.1.0 Changes: --- /work/SRC/openSUSE:Factory/firewalld/firewalld.changes 2022-03-05 14:43:18.699699323 +0100 +++ /work/SRC/openSUSE:Factory/.firewalld.new.25692/firewalld.changes 2022-03-11 21:40:58.906057506 +0100 @@ -1,0 +2,11 @@ +Mon Mar 7 16:45:58 UTC 2022 - Martin Wilck + +- Add code for safe modprobe.d migration + (https://en.opensuse.org/openSUSE:Packaging_UsrEtc) + +--- +Fri Mar 4 20:30:02 UTC 2022 - Martin Wilck + +- Always own %_modprobedir (bsc#1196275, jsc#SLE-20639) + +--- Other differences: -- ++ firewalld.spec ++ --- /var/tmp/diff_new_pack.o47jHb/_old 2022-03-11 21:40:59.410057893 +0100 +++ /var/tmp/diff_new_pack.o47jHb/_new 2022-03-11 21:40:59.418057899 +0100 @@ -24,6 +24,8 @@ # systemd-rpm-macros(or kmod) is wrong in 15.2 and 15.3 %define _modprobedir /lib/modprobe.d %endif +%global modprobe_d_files firewalld-sysctls.conf + Name: firewalld Version:1.1.0 Release:0 @@ -197,6 +199,11 @@ %pre %service_add_pre firewalld.service +# Avoid restoring outdated stuff in posttrans +for _f in %{?modprobe_d_files}; do +[ ! -f "/etc/modprobe.d/${_f}.rpmsave" ] || \ +mv -f "/etc/modprobe.d/${_f}.rpmsave" "/etc/modprobe.d/${_f}.rpmsave.old" || : +done %post %service_add_post firewalld.service @@ -212,6 +219,13 @@ # Let the user restart it whenever he feels like it. %service_del_postun_without_restart firewalld.service +%posttrans +# Migration of modprobe.conf files to _modprobedir +for _f in %{?modprobe_d_files}; do +[ ! -f "/etc/modprobe.d/${_f}.rpmsave" ] || \ +mv -fv "/etc/modprobe.d/${_f}.rpmsave" "/etc/modprobe.d/${_f}" || : +done + %post -n firewall-applet /bin/touch --no-create %{_datadir}/icons/hicolor &>/dev/null || : @@ -263,9 +277,7 @@ %{_datadir}/polkit-1 %dir %{_datadir}/dbus-1 %dir %{_datadir}/dbus-1/system.d -%if 0%{?suse_version} < 1550 && 0%{?sle_version} < 150300 %dir %{_modprobedir} -%endif %{_modprobedir}/firewalld-sysctls.conf %config(noreplace) %{_sysconfdir}/firewalld/firewalld.conf %config(noreplace) %{_sysconfdir}/firewalld/lockdown-whitelist.xml
commit firewalld for openSUSE:Factory
Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package firewalld for openSUSE:Factory checked in at 2022-03-05 14:43:08 Comparing /work/SRC/openSUSE:Factory/firewalld (Old) and /work/SRC/openSUSE:Factory/.firewalld.new.1958 (New) Package is "firewalld" Sat Mar 5 14:43:08 2022 rev:63 rq:959443 version:1.1.0 Changes: --- /work/SRC/openSUSE:Factory/firewalld/firewalld.changes 2022-02-27 22:42:55.642627556 +0100 +++ /work/SRC/openSUSE:Factory/.firewalld.new.1958/firewalld.changes 2022-03-05 14:43:18.699699323 +0100 @@ -1,0 +2,10 @@ +Thu Mar 3 14:26:57 UTC 2022 - Thorsten Kukuk + +- Fix modprobe.d directory for SLE15 SP3 +- Cleanup dependencies: + - ipset, ebtables and iptables are purely optional and deprecated, +so don't require them + - sysconfig is not needed at all + - Don't hard require systemd, we don't have and need that in containers + +--- Other differences: -- ++ firewalld.spec ++ --- /var/tmp/diff_new_pack.owFFiA/_old 2022-03-05 14:43:19.255699463 +0100 +++ /var/tmp/diff_new_pack.owFFiA/_new 2022-03-05 14:43:19.267699466 +0100 @@ -20,8 +20,8 @@ %if ! %{defined _fillupdir} %define _fillupdir %{_localstatedir}/adm/fillup-templates %endif -%if 0%{?suse_version} < 1550 && 0%{?sle_version} < 150300 -# systemd-rpm-macros(or kmod) is wrong in 15.2 +%if 0%{?suse_version} < 1550 && 0%{?sle_version} < 150400 +# systemd-rpm-macros(or kmod) is wrong in 15.2 and 15.3 %define _modprobedir /lib/modprobe.d %endif Name: firewalld @@ -39,7 +39,7 @@ BuildRequires: desktop-file-utils BuildRequires: docbook-xsl-stylesheets # Adding tools to BuildRequires as well so they can be autodetected -# even though it is probably unlikely for paths to change in the future +# Else the configure tool will set them to /bin/false BuildRequires: ebtables BuildRequires: fdupes BuildRequires: gettext @@ -50,22 +50,19 @@ BuildRequires: ipset BuildRequires: iptables BuildRequires: libxslt-tools -BuildRequires: nftables BuildRequires: python3-devel BuildRequires: systemd-rpm-macros -Requires: ebtables -Requires: ipset -Requires: iptables -Requires: logrotate +Recommends: logrotate +# Workaround: nftables seems to be a python3-nftables requirement, +# not of firewalld. Requires: nftables Requires: python3-firewall = %{version} Requires: python3-gobject Requires: python3-nftables -Requires: sysconfig Requires(post): %fillup_prereq Suggests: susefirewall2-to-firewalld BuildArch: noarch -%{?systemd_requires} +%{?systemd_ordering} %description firewalld is a firewall service daemon that provides a dynamic customizable
commit firewalld for openSUSE:Factory
Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package firewalld for openSUSE:Factory checked in at 2022-02-27 22:42:48 Comparing /work/SRC/openSUSE:Factory/firewalld (Old) and /work/SRC/openSUSE:Factory/.firewalld.new.1958 (New) Package is "firewalld" Sun Feb 27 22:42:48 2022 rev:62 rq:957780 version:1.1.0 Changes: --- /work/SRC/openSUSE:Factory/firewalld/firewalld.changes 2022-01-15 21:45:18.545617561 +0100 +++ /work/SRC/openSUSE:Factory/.firewalld.new.1958/firewalld.changes 2022-02-27 22:42:55.642627556 +0100 @@ -1,0 +2,15 @@ +Sat Feb 26 14:35:35 UTC 2022 - Callum Farmer + +- Update to 1.1.0: + * feat(service): Add jellyfin service + * feat(policy): support OUTPUT forward ports + * feat: config check improvements + * feat(service): add http3 + * feat(service): add service definition for WS-Discovery Client + * feat(service): add service definition for WS-Discovery + * feat(service): add service definition for AFP + * feat(rich): Support nflog target and add log attribute +errors/checks + * feat(service): add ZeroTier service + +--- Old: firewalld-1.0.3.tar.gz New: firewalld-1.1.0.tar.gz Other differences: -- ++ firewalld.spec ++ --- /var/tmp/diff_new_pack.ua2kVk/_old 2022-02-27 22:42:56.194627716 +0100 +++ /var/tmp/diff_new_pack.ua2kVk/_new 2022-02-27 22:42:56.198627718 +0100 @@ -25,7 +25,7 @@ %define _modprobedir /lib/modprobe.d %endif Name: firewalld -Version:1.0.3 +Version:1.1.0 Release:0 Summary:A firewall daemon with D-Bus interface providing a dynamic firewall License:GPL-2.0-or-later @@ -150,7 +150,7 @@ %build export PYTHON="%{_bindir}/python3" -./autogen.sh +autoreconf -fiv %configure \ --enable-sysconfig \ --enable-rpmmacros \ @@ -189,7 +189,7 @@ # No more /etc mkdir -p %{buildroot}%{_modprobedir} mv %{buildroot}%{_sysconfdir}/modprobe.d/* %{buildroot}%{_modprobedir} -%if %{defined _distconfdir} +%if 0%{?suse_version} >= 1550 mkdir -p %{buildroot}%{_distconfdir}/xdg/autostart mv %{buildroot}%{_sysconfdir}/xdg/autostart/* %{buildroot}%{_distconfdir}/xdg/autostart %endif ++ firewalld-1.0.3.tar.gz -> firewalld-1.1.0.tar.gz ++ 69371 lines of diff (skipped)
commit firewalld for openSUSE:Factory
Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package firewalld for openSUSE:Factory checked in at 2022-01-15 21:45:08 Comparing /work/SRC/openSUSE:Factory/firewalld (Old) and /work/SRC/openSUSE:Factory/.firewalld.new.1892 (New) Package is "firewalld" Sat Jan 15 21:45:08 2022 rev:61 rq:946416 version:1.0.3 Changes: --- /work/SRC/openSUSE:Factory/firewalld/firewalld.changes 2021-11-20 22:48:00.927865172 +0100 +++ /work/SRC/openSUSE:Factory/.firewalld.new.1892/firewalld.changes 2022-01-15 21:45:18.545617561 +0100 @@ -1,0 +2,8 @@ +Fri Jan 14 12:41:46 UTC 2022 - Callum Farmer + +- Update to 1.0.3: + * fix(io): _check_config() expects a dict + * feat(build): distribute an OCI container image + * fix(ipset): reduce cost of entry overlap detection + +--- Old: firewalld-1.0.2.tar.gz New: firewalld-1.0.3.tar.gz Other differences: -- ++ firewalld.spec ++ --- /var/tmp/diff_new_pack.Vj4lpS/_old 2022-01-15 21:45:19.321617972 +0100 +++ /var/tmp/diff_new_pack.Vj4lpS/_new 2022-01-15 21:45:19.333617978 +0100 @@ -25,7 +25,7 @@ %define _modprobedir /lib/modprobe.d %endif Name: firewalld -Version:1.0.2 +Version:1.0.3 Release:0 Summary:A firewall daemon with D-Bus interface providing a dynamic firewall License:GPL-2.0-or-later ++ firewalld-1.0.2.tar.gz -> firewalld-1.0.3.tar.gz ++ 7658 lines of diff (skipped)
commit firewalld for openSUSE:Factory
Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package firewalld for openSUSE:Factory checked in at 2021-11-20 22:47:48 Comparing /work/SRC/openSUSE:Factory/firewalld (Old) and /work/SRC/openSUSE:Factory/.firewalld.new.1895 (New) Package is "firewalld" Sat Nov 20 22:47:48 2021 rev:60 rq:932170 version:1.0.2 Changes: --- /work/SRC/openSUSE:Factory/firewalld/firewalld.changes 2021-10-11 16:48:53.386193866 +0200 +++ /work/SRC/openSUSE:Factory/.firewalld.new.1895/firewalld.changes 2021-11-20 22:48:00.927865172 +0100 @@ -1,0 +2,13 @@ +Thu Nov 18 10:04:38 UTC 2021 - Micha?? Rostecki + +- Update to 1.0.2: + * fix(firewalld): check capng_apply() return code + * fix(nftables): do not log icmp block if inversion + * fix(nftables): rich: source address with netmask + * fix(fw_config): zone: on rename remove then add + * fix(io/functions): check_config against on disk conf + * fix(zone): detect same source/interface in zones + * docs(policy): fix typos + * docs(policies): fix typos + +--- Old: firewalld-1.0.1.tar.gz New: firewalld-1.0.2.tar.gz Other differences: -- ++ firewalld.spec ++ --- /var/tmp/diff_new_pack.2xHyU9/_old 2021-11-20 22:48:01.471863369 +0100 +++ /var/tmp/diff_new_pack.2xHyU9/_new 2021-11-20 22:48:01.471863369 +0100 @@ -25,7 +25,7 @@ %define _modprobedir /lib/modprobe.d %endif Name: firewalld -Version:1.0.1 +Version:1.0.2 Release:0 Summary:A firewall daemon with D-Bus interface providing a dynamic firewall License:GPL-2.0-or-later ++ firewalld-1.0.1.tar.gz -> firewalld-1.0.2.tar.gz ++ 155180 lines of diff (skipped)
commit firewalld for openSUSE:Factory
Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package firewalld for openSUSE:Factory checked in at 2021-10-11 16:48:44 Comparing /work/SRC/openSUSE:Factory/firewalld (Old) and /work/SRC/openSUSE:Factory/.firewalld.new.2443 (New) Package is "firewalld" Mon Oct 11 16:48:44 2021 rev:59 rq:924225 version:1.0.1 Changes: --- /work/SRC/openSUSE:Factory/firewalld/firewalld.changes 2021-08-16 10:13:22.286972782 +0200 +++ /work/SRC/openSUSE:Factory/.firewalld.new.2443/firewalld.changes 2021-10-11 16:48:53.386193866 +0200 @@ -1,0 +2,8 @@ +Sat Sep 25 20:24:33 UTC 2021 - Callum Farmer + +- Update to 1.0.1: + * keep linux capability CAP_SYS_MODULE + * UPnP Client: actually allow SSDP traffic + * Fix RPM macros to test if firewall-cmd is executable + +--- Old: firewalld-1.0.0.tar.gz New: firewalld-1.0.1.tar.gz Other differences: -- ++ firewalld.spec ++ --- /var/tmp/diff_new_pack.kbD933/_old 2021-10-11 16:48:53.854194609 +0200 +++ /var/tmp/diff_new_pack.kbD933/_new 2021-10-11 16:48:53.858194616 +0200 @@ -20,8 +20,12 @@ %if ! %{defined _fillupdir} %define _fillupdir %{_localstatedir}/adm/fillup-templates %endif +%if 0%{?suse_version} < 1550 && 0%{?sle_version} < 150300 +# systemd-rpm-macros(or kmod) is wrong in 15.2 +%define _modprobedir /lib/modprobe.d +%endif Name: firewalld -Version:1.0.0 +Version:1.0.1 Release:0 Summary:A firewall daemon with D-Bus interface providing a dynamic firewall License:GPL-2.0-or-later @@ -183,8 +187,8 @@ install -p -m 644 %{SOURCE1} %{buildroot}%{_prefix}/lib/firewalld/zones/docker.xml # No more /etc -mkdir -p %{buildroot}%{_prefix}/lib/modprobe.d -mv %{buildroot}%{_sysconfdir}/modprobe.d/* %{buildroot}%{_prefix}/lib/modprobe.d +mkdir -p %{buildroot}%{_modprobedir} +mv %{buildroot}%{_sysconfdir}/modprobe.d/* %{buildroot}%{_modprobedir} %if %{defined _distconfdir} mkdir -p %{buildroot}%{_distconfdir}/xdg/autostart mv %{buildroot}%{_sysconfdir}/xdg/autostart/* %{buildroot}%{_distconfdir}/xdg/autostart @@ -262,7 +266,10 @@ %{_datadir}/polkit-1 %dir %{_datadir}/dbus-1 %dir %{_datadir}/dbus-1/system.d -%{_prefix}/lib/modprobe.d/firewalld-sysctls.conf +%if 0%{?suse_version} < 1550 && 0%{?sle_version} < 150300 +%dir %{_modprobedir} +%endif +%{_modprobedir}/firewalld-sysctls.conf %config(noreplace) %{_sysconfdir}/firewalld/firewalld.conf %config(noreplace) %{_sysconfdir}/firewalld/lockdown-whitelist.xml %config(noreplace) %{_sysconfdir}/logrotate.d/firewalld ++ firewalld-1.0.0.tar.gz -> firewalld-1.0.1.tar.gz ++ 4502 lines of diff (skipped)
commit firewalld for openSUSE:Factory
Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package firewalld for openSUSE:Factory checked in at 2021-08-16 10:08:46 Comparing /work/SRC/openSUSE:Factory/firewalld (Old) and /work/SRC/openSUSE:Factory/.firewalld.new.1899 (New) Package is "firewalld" Mon Aug 16 10:08:46 2021 rev:58 rq:911378 version:1.0.0 Changes: --- /work/SRC/openSUSE:Factory/firewalld/firewalld.changes 2021-04-10 15:27:12.730366800 +0200 +++ /work/SRC/openSUSE:Factory/.firewalld.new.1899/firewalld.changes 2021-08-16 10:13:22.286972782 +0200 @@ -1,0 +2,20 @@ +Sat Aug 7 14:27:01 UTC 2021 - Callum Farmer + +- Update to 1.0.0: + * Reduced dependencies + * Intra-zone forwarding by default + * NAT rules moved to inet family (reduced rule set) + * Default target is now similar to reject + * ICMP blocks and block inversion only apply to input, +not forward + * tftp-client service has been removed + * iptables backend is deprecated + * Direct interface is deprecated + * CleanupModulesOnExit defaults to no +(kernel modules not unloaded) +- Add new firewalld-test package +- Move bash and zsh completions to more useful separate packages +- Clean spec file +- Move modprobe.d and autostart files out of /etc + +--- Old: firewalld-0.9.3.tar.gz New: firewalld-1.0.0.tar.gz Other differences: -- ++ firewalld.spec ++ --- /var/tmp/diff_new_pack.aX46AD/_old 2021-08-16 10:13:22.770972165 +0200 +++ /var/tmp/diff_new_pack.aX46AD/_new 2021-08-16 10:13:22.770972165 +0200 @@ -1,7 +1,7 @@ # # spec file for package firewalld # -# Copyright (c) 2018 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2021 SUSE LLC # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -12,7 +12,7 @@ # license that conforms to the Open Source Definition (Version 1.9) # published by the Open Source Initiative. -# Please submit bugfixes or comments via http://bugs.opensuse.org/ +# Please submit bugfixes or comments via https://bugs.opensuse.org/ # @@ -21,12 +21,12 @@ %define _fillupdir %{_localstatedir}/adm/fillup-templates %endif Name: firewalld -Version:0.9.3 +Version:1.0.0 Release:0 Summary:A firewall daemon with D-Bus interface providing a dynamic firewall License:GPL-2.0-or-later Group: Productivity/Networking/Security -Url:http://www.firewalld.org +URL:https://www.firewalld.org Source0: https://github.com/firewalld/firewalld/releases/download/v%{version}/firewalld-%{version}.tar.gz Source1:docker-zone.xml Patch0: 0002-Disable-FlushAllOnReload-option.patch @@ -109,6 +109,33 @@ The firewall configuration application provides an configuration interface for firewalld. +%package test +Summary:Firewalld testsuite +Group: Productivity/Networking/Security + +%description test +This package provides the firewalld testsuite. + +%package bash-completion +Summary:Bash Completion for firewalld +Group: Productivity/Networking/Security +Requires: %{name} = %{version}-%{release} +Requires: bash-completion +Supplements:(%{name} and bash-completion) + +%description bash-completion +Bash command line completion support for firewalld. + +%package zsh-completion +Summary:Zsh Completion for firewalld +Group: Productivity/Networking/Security +Requires: %{name} = %{version}-%{release} +Requires: zsh +Supplements:(%{name} and zsh) + +%description zsh-completion +Zsh command line completion support for firewalld. + %lang_package %prep @@ -127,7 +154,7 @@ # Normally documentation is shipped but this will ensure that missing # files will be generated. -make %{?_smp_mflags} +%make_build %install %make_install @@ -155,6 +182,14 @@ install -dp %{buildroot}%{_prefix}/lib/firewalld/zones install -p -m 644 %{SOURCE1} %{buildroot}%{_prefix}/lib/firewalld/zones/docker.xml +# No more /etc +mkdir -p %{buildroot}%{_prefix}/lib/modprobe.d +mv %{buildroot}%{_sysconfdir}/modprobe.d/* %{buildroot}%{_prefix}/lib/modprobe.d +%if %{defined _distconfdir} +mkdir -p %{buildroot}%{_distconfdir}/xdg/autostart +mv %{buildroot}%{_sysconfdir}/xdg/autostart/* %{buildroot}%{_distconfdir}/xdg/autostart +%endif + %fdupes %{buildroot}%{python3_sitelib} %find_lang %{name} --all-name @@ -211,10 +246,6 @@ %{_sbindir}/rcfirewalld %{_bindir}/firewall-cmd %{_bindir}/firewall-offline-cmd -%dir %{_datadir}/bash-completion/completions -%{_datadir}/bash-completion/completions/firewall-cmd -%dir
commit firewalld for openSUSE:Factory
Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package firewalld for openSUSE:Factory checked in at 2021-04-10 15:26:30 Comparing /work/SRC/openSUSE:Factory/firewalld (Old) and /work/SRC/openSUSE:Factory/.firewalld.new.2401 (New) Package is "firewalld" Sat Apr 10 15:26:30 2021 rev:57 rq:883555 version:0.9.3 Changes: --- /work/SRC/openSUSE:Factory/firewalld/firewalld.changes 2021-02-17 18:09:40.521849074 +0100 +++ /work/SRC/openSUSE:Factory/.firewalld.new.2401/firewalld.changes 2021-04-10 15:27:12.730366800 +0200 @@ -1,0 +2,5 @@ +Wed Apr 7 09:24:28 UTC 2021 - Micha?? Rostecki + +- Remove dependency on firewalld from firewall-macros (bsc#1183404) + +--- Other differences: -- ++ firewalld.spec ++ --- /var/tmp/diff_new_pack.dLfxad/_old 2021-04-10 15:27:13.174367322 +0200 +++ /var/tmp/diff_new_pack.dLfxad/_new 2021-04-10 15:27:13.178367327 +0200 @@ -81,7 +81,6 @@ %package -n firewall-macros Summary:FirewallD RPM macros Group: Productivity/Networking/Security -Requires: %{name} = %{version}-%{release} %description -n firewall-macros This package provides the firewalld RPM macros file needed by packages
commit firewalld for openSUSE:Factory
Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package firewalld for openSUSE:Factory checked in at 2021-02-17 18:09:37 Comparing /work/SRC/openSUSE:Factory/firewalld (Old) and /work/SRC/openSUSE:Factory/.firewalld.new.28504 (New) Package is "firewalld" Wed Feb 17 18:09:37 2021 rev:56 rq:873150 version:0.9.3 Changes: --- /work/SRC/openSUSE:Factory/firewalld/firewalld.changes 2021-02-01 13:25:24.957842445 +0100 +++ /work/SRC/openSUSE:Factory/.firewalld.new.28504/firewalld.changes 2021-02-17 18:09:40.521849074 +0100 @@ -115 +115 @@ -- Update to version 0.7.5: +- Update to version 0.7.5 (jsc#SLE-12281): Other differences: --
commit firewalld for openSUSE:Factory
Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package firewalld for openSUSE:Factory checked in at 2021-02-01 13:25:19 Comparing /work/SRC/openSUSE:Factory/firewalld (Old) and /work/SRC/openSUSE:Factory/.firewalld.new.28504 (New) Package is "firewalld" Mon Feb 1 13:25:19 2021 rev:55 rq:866985 version:0.9.3 Changes: --- /work/SRC/openSUSE:Factory/firewalld/firewalld.changes 2021-01-18 11:30:45.98720 +0100 +++ /work/SRC/openSUSE:Factory/.firewalld.new.28504/firewalld.changes 2021-02-01 13:25:24.957842445 +0100 @@ -1,0 +2,18 @@ +Tue Jan 26 16:33:10 UTC 2021 - Micha?? Rostecki + +- Disable FlushAllOnReload option to not retain interface to zone + assignments and direct rules when using --reload option. + * 0002-Disable-FlushAllOnReload-option.patch + +--- +Mon Jan 25 11:29:37 UTC 2021 - Micha?? Rostecki + +- Update to 0.9.3 (jsc#SLE-17336): + * docs(dbus): fix invalid method names + * fix(forward): iptables: ipset used as zone source + * fix(rich): non-printable characters removed from rich rules + * docs(firewall-cmd): small description grammar fix + * fix(rich): limit table to strip non-printables to C0 and C1 + * fix(zone): add source with mac address + +--- @@ -10 +28 @@ - nftables: + nftables (jsc#SLE-16300): @@ -15 +33 @@ - (rhbz#1817022) + (rhbz#1817022, jsc#SLE-16300) Old: firewalld-0.9.1.tar.gz New: 0002-Disable-FlushAllOnReload-option.patch firewalld-0.9.3.tar.gz Other differences: -- ++ firewalld.spec ++ --- /var/tmp/diff_new_pack.0tOtq5/_old 2021-02-01 13:25:25.737843669 +0100 +++ /var/tmp/diff_new_pack.0tOtq5/_new 2021-02-01 13:25:25.737843669 +0100 @@ -21,7 +21,7 @@ %define _fillupdir %{_localstatedir}/adm/fillup-templates %endif Name: firewalld -Version:0.9.1 +Version:0.9.3 Release:0 Summary:A firewall daemon with D-Bus interface providing a dynamic firewall License:GPL-2.0-or-later @@ -29,7 +29,7 @@ Url:http://www.firewalld.org Source0: https://github.com/firewalld/firewalld/releases/download/v%{version}/firewalld-%{version}.tar.gz Source1:docker-zone.xml - +Patch0: 0002-Disable-FlushAllOnReload-option.patch BuildRequires: autoconf BuildRequires: automake BuildRequires: desktop-file-utils ++ 0002-Disable-FlushAllOnReload-option.patch ++ >From b1145d3efc58220f58a4e67189c4ff4a8bd789ce Mon Sep 17 00:00:00 2001 From: Michal Rostecki Date: Mon, 25 Jan 2021 12:58:00 +0100 Subject: [PATCH] Disable FlushAllOnReload option Disabling the FlushAllOnReload option restores the old behavior where --reload does not retain interface to zone assignmnets and direct rules. We want to keep that behavior in openSUSE and SLE Signed-off-by: Michal Rostecki --- config/firewalld.conf | 4 ++-- doc/xml/firewalld.conf.xml | 2 +- src/firewall/config/__init__.py.in | 2 +- 3 files changed, 4 insertions(+), 4 deletions(-) diff --git a/config/firewalld.conf b/config/firewalld.conf index 532f0452..e789f2a7 100644 --- a/config/firewalld.conf +++ b/config/firewalld.conf @@ -52,8 +52,8 @@ FirewallBackend=nftables # configuration was retained during a reload, namely; interface to zone # assignment, and direct rules. This was confusing to users. To get the old # behavior set this to "no". -# Default: yes -FlushAllOnReload=yes +# Default: no +FlushAllOnReload=no # RFC3964_IPv4 # As per RFC 3964, filter IPv6 traffic with 6to4 destination addresses that diff --git a/doc/xml/firewalld.conf.xml b/doc/xml/firewalld.conf.xml index fcfbfd2b..8415ba3e 100644 --- a/doc/xml/firewalld.conf.xml +++ b/doc/xml/firewalld.conf.xml @@ -166,7 +166,7 @@ runtime configuration was retained during a reload, namely; interface to zone assignment, and direct rules. This was confusing to users. To get the old behavior set this to "no". -Defaults to "yes". +Defaults to "no". diff --git a/src/firewall/config/__init__.py.in b/src/firewall/config/__init__.py.in index e875e849..df6f449b 100644 --- a/src/firewall/config/__init__.py.in +++ b/src/firewall/config/__init__.py.in @@ -131,6 +131,6 @@ FALLBACK_INDIVIDUAL_CALLS = False FALLBACK_LOG_DENIED = "off" FALLBACK_AUTOMATIC_HELPERS = "no" FALLBACK_FIREWALL_BACKEND = "nftables" -FALLBACK_FLUSH_ALL_ON_RELOAD = True +FALLBACK_FLUSH_ALL_ON_RELOAD = False FALLBACK_RFC3964_IPV4 = True FALLBACK_ALLOW_ZONE_DRIFTING = False -- 2.30.0 ++ firewalld-0.9.1.tar.gz -> fire
commit firewalld for openSUSE:Factory
Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package firewalld for openSUSE:Factory checked in at 2021-01-18 11:27:30 Comparing /work/SRC/openSUSE:Factory/firewalld (Old) and /work/SRC/openSUSE:Factory/.firewalld.new.28504 (New) Package is "firewalld" Mon Jan 18 11:27:30 2021 rev:54 rq:863088 version:0.9.1 Changes: --- /work/SRC/openSUSE:Factory/firewalld/firewalld.changes 2020-12-09 22:11:02.959044412 +0100 +++ /work/SRC/openSUSE:Factory/.firewalld.new.28504/firewalld.changes 2021-01-18 11:30:45.98720 +0100 @@ -1,0 +2,5 @@ +Thu Jan 14 09:52:26 UTC 2021 - Robert Frohl + +- Add dependency for firewall-offline-cmd (bsc#1180883) + +--- Other differences: -- ++ firewalld.spec ++ --- /var/tmp/diff_new_pack.75z4FB/_old 2021-01-18 11:30:46.092506841 +0100 +++ /var/tmp/diff_new_pack.75z4FB/_new 2021-01-18 11:30:46.096506891 +0100 @@ -55,6 +55,7 @@ Requires: logrotate Requires: nftables Requires: python3-firewall = %{version} +Requires: python3-gobject Requires: python3-nftables Requires: sysconfig Requires(post): %fillup_prereq
commit firewalld for openSUSE:Factory
Hello community, here is the log from the commit of package firewalld for openSUSE:Factory checked in at 2020-12-09 22:11:01 Comparing /work/SRC/openSUSE:Factory/firewalld (Old) and /work/SRC/openSUSE:Factory/.firewalld.new.2328 (New) Package is "firewalld" Wed Dec 9 22:11:01 2020 rev:53 rq:853450 version:0.9.1 Changes: --- /work/SRC/openSUSE:Factory/firewalld/firewalld.changes 2020-11-14 18:23:03.408056278 +0100 +++ /work/SRC/openSUSE:Factory/.firewalld.new.2328/firewalld.changes 2020-12-09 22:11:02.959044412 +0100 @@ -1,0 +2,16 @@ +Mon Nov 9 09:15:55 UTC 2020 - Michał Rostecki + +- Remove the patch which enforces usage of iptables instead of + nftables: + * 0001-firewall-backend-Switch-default-backend-to-iptables.patch +- Add firewalld zone for the docker0 interface. This is the + workaround for lack of nftables support in docker. Without that + additional zone, containers have no Internet connectivity. + (rhbz#1817022) +- Update to 0.9.1: + * Bugfixes: +* docs(firewall-cmd): clarify lockdown whitelist command paths +* fix(dbus): getActivePolicies shouldn't return a policy if a zone is not active +* fix(policy): zone interface/source changes should affect all using zone + +--- Old: 0001-firewall-backend-Switch-default-backend-to-iptables.patch firewalld-0.9.0.tar.gz New: docker-zone.xml firewalld-0.9.1.tar.gz Other differences: -- ++ firewalld.spec ++ --- /var/tmp/diff_new_pack.Skkv3l/_old 2020-12-09 22:11:03.631045094 +0100 +++ /var/tmp/diff_new_pack.Skkv3l/_new 2020-12-09 22:11:03.635045097 +0100 @@ -21,14 +21,14 @@ %define _fillupdir %{_localstatedir}/adm/fillup-templates %endif Name: firewalld -Version:0.9.0 +Version:0.9.1 Release:0 Summary:A firewall daemon with D-Bus interface providing a dynamic firewall License:GPL-2.0-or-later Group: Productivity/Networking/Security Url:http://www.firewalld.org -Source: https://github.com/firewalld/firewalld/releases/download/v%{version}/firewalld-%{version}.tar.gz -Patch0: 0001-firewall-backend-Switch-default-backend-to-iptables.patch +Source0: https://github.com/firewalld/firewalld/releases/download/v%{version}/firewalld-%{version}.tar.gz +Source1:docker-zone.xml BuildRequires: autoconf BuildRequires: automake @@ -151,6 +151,10 @@ ln -sf %{_sbindir}/service %{buildroot}/%{_sbindir}/rcfirewalld +# add firewalld zone (rhbz#1817022) +install -dp %{buildroot}%{_prefix}/lib/firewalld/zones +install -p -m 644 %{SOURCE1} %{buildroot}%{_prefix}/lib/firewalld/zones/docker.xml + %fdupes %{buildroot}%{python3_sitelib} %find_lang %{name} --all-name ++ docker-zone.xml ++ docker All network connections are accepted. ++ firewalld-0.9.0.tar.gz -> firewalld-0.9.1.tar.gz ++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/firewalld-0.9.0/config/lockdown-whitelist.xml new/firewalld-0.9.1/config/lockdown-whitelist.xml --- old/firewalld-0.9.0/config/lockdown-whitelist.xml 2020-09-02 20:08:49.0 +0200 +++ new/firewalld-0.9.1/config/lockdown-whitelist.xml 2020-10-01 18:08:29.0 +0200 @@ -1,6 +1,6 @@ - + diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/firewalld-0.9.0/configure new/firewalld-0.9.1/configure --- old/firewalld-0.9.0/configure 2020-09-02 20:08:45.0 +0200 +++ new/firewalld-0.9.1/configure 2020-10-01 18:08:24.0 +0200 @@ -1,6 +1,6 @@ #! /bin/sh # Guess values for system-dependent variables and create Makefiles. -# Generated by GNU Autoconf 2.69 for firewalld 0.9.0. +# Generated by GNU Autoconf 2.69 for firewalld 0.9.1. # # # Copyright (C) 1992-1996, 1998-2012 Free Software Foundation, Inc. @@ -577,8 +577,8 @@ # Identity of this package. PACKAGE_NAME='firewalld' PACKAGE_TARNAME='firewalld' -PACKAGE_VERSION='0.9.0' -PACKAGE_STRING='firewalld 0.9.0' +PACKAGE_VERSION='0.9.1' +PACKAGE_STRING='firewalld 0.9.1' PACKAGE_BUGREPORT='' PACKAGE_URL='' @@ -1314,7 +1314,7 @@ # Omit some internal or obsolete options to make the list less imposing. # This message is too long to be a string in the A/UX 3.1 sh. cat <<_ACEOF -\`configure' configures firewalld 0.9.0 to adapt to many kinds of systems. +\`configure' configures firewalld 0.9.1 to adapt to many kinds of systems. Usage: $0 [OPTION]... [VAR=VALUE]... @@ -1380,7 +1380,7 @@ if test -n "$ac_init_help"; then case $ac_init_help in - short | recursive ) echo "Configuration of firewalld 0.9.0:";; + short | recur
[opensuse-commit] commit firewalld for openSUSE:Factory
Hello community, here is the log from the commit of package firewalld for openSUSE:Factory checked in at 2020-11-14 18:22:52 Comparing /work/SRC/openSUSE:Factory/firewalld (Old) and /work/SRC/openSUSE:Factory/.firewalld.new.24930 (New) Package is "firewalld" Sat Nov 14 18:22:52 2020 rev:52 rq: version:0.9.0 Changes: --- /work/SRC/openSUSE:Factory/firewalld/firewalld.changes 2020-11-13 18:53:18.217726770 +0100 +++ /work/SRC/openSUSE:Factory/.firewalld.new.24930/firewalld.changes 2020-11-14 18:23:03.408056278 +0100 @@ -2,16 +1,0 @@ -Mon Nov 9 09:15:55 UTC 2020 - Michał Rostecki - -- Remove the patch which enforces usage of iptables instead of - nftables: - * 0001-firewall-backend-Switch-default-backend-to-iptables.patch -- Add firewalld zone for the docker0 interface. This is the - workaround for lack of nftables support in docker. Without that - additional zone, containers have no Internet connectivity. - (rhbz#1817022) -- Update to 0.9.1: - * Bugfixes: -* docs(firewall-cmd): clarify lockdown whitelist command paths -* fix(dbus): getActivePolicies shouldn't return a policy if a zone is not active -* fix(policy): zone interface/source changes should affect all using zone - Old: docker-zone.xml firewalld-0.9.1.tar.gz New: 0001-firewall-backend-Switch-default-backend-to-iptables.patch firewalld-0.9.0.tar.gz Other differences: -- ++ firewalld.spec ++ --- /var/tmp/diff_new_pack.nEG9vQ/_old 2020-11-14 18:23:05.192058057 +0100 +++ /var/tmp/diff_new_pack.nEG9vQ/_new 2020-11-14 18:23:05.196058061 +0100 @@ -21,14 +21,14 @@ %define _fillupdir %{_localstatedir}/adm/fillup-templates %endif Name: firewalld -Version:0.9.1 +Version:0.9.0 Release:0 Summary:A firewall daemon with D-Bus interface providing a dynamic firewall License:GPL-2.0-or-later Group: Productivity/Networking/Security Url:http://www.firewalld.org -Source0: https://github.com/firewalld/firewalld/releases/download/v%{version}/firewalld-%{version}.tar.gz -Source1:docker-zone.xml +Source: https://github.com/firewalld/firewalld/releases/download/v%{version}/firewalld-%{version}.tar.gz +Patch0: 0001-firewall-backend-Switch-default-backend-to-iptables.patch BuildRequires: autoconf BuildRequires: automake @@ -151,10 +151,6 @@ ln -sf %{_sbindir}/service %{buildroot}/%{_sbindir}/rcfirewalld -# add firewalld zone (rhbz#1817022) -install -dp %{buildroot}%{_prefix}/lib/firewalld/zones -install -p -m 644 %{SOURCE1} %{buildroot}%{_prefix}/lib/firewalld/zones/docker.xml - %fdupes %{buildroot}%{python3_sitelib} %find_lang %{name} --all-name ++ 0001-firewall-backend-Switch-default-backend-to-iptables.patch ++ Index: firewalld-0.8.3/config/firewalld.conf === --- firewalld-0.8.3.orig/config/firewalld.conf +++ firewalld-0.8.3/config/firewalld.conf @@ -43,9 +43,9 @@ LogDenied=off # FirewallBackend # Selects the firewall backend implementation. # Choices are: -# - nftables (default) -# - iptables (iptables, ip6tables, ebtables and ipset) -FirewallBackend=nftables +# - nftables +# - iptables (iptables, ip6tables, ebtables and ipset) (default) +FirewallBackend=iptables # FlushAllOnReload # Flush all runtime rules on a reload. In previous releases some runtime Index: firewalld-0.8.3/doc/xml/firewalld.conf.xml === --- firewalld-0.8.3.orig/doc/xml/firewalld.conf.xml +++ firewalld-0.8.3/doc/xml/firewalld.conf.xml @@ -149,8 +149,8 @@ Selects the firewall backend implementation. Possible values -are; nftables (default), or -iptables. This applies to all +are; nftables, or +iptables (default). This applies to all firewalld primitives. The only exception is direct and passthrough rules which always use the traditional iptables, ip6tables, and ebtables backends. Index: firewalld-0.8.3/src/firewall/config/__init__.py.in === --- firewalld-0.8.3.orig/src/firewall/config/__init__.py.in +++ firewalld-0.8.3/src/firewall/config/__init__.py.in @@ -127,7 +127,7 @@ FALLBACK_IPV6_RPFILTER = True FALLBACK_INDIVIDUAL_CALLS = False FALLBACK_LOG_DENIED = "off" FALLBACK_AUTOMATIC_HELPERS = "no" -FALLBACK_FIREWALL_BACKEND = "nftables" +FALLBACK_FIREWALL_BACKEND = "iptables" FALLBACK_FLUSH_ALL_ON_RELOAD = True
[opensuse-commit] commit firewalld for openSUSE:Factory
Hello community, here is the log from the commit of package firewalld for openSUSE:Factory checked in at 2020-11-13 18:53:00 Comparing /work/SRC/openSUSE:Factory/firewalld (Old) and /work/SRC/openSUSE:Factory/.firewalld.new.24930 (New) Package is "firewalld" Fri Nov 13 18:53:00 2020 rev:51 rq:847328 version:0.9.1 Changes: --- /work/SRC/openSUSE:Factory/firewalld/firewalld.changes 2020-10-03 18:55:35.933488695 +0200 +++ /work/SRC/openSUSE:Factory/.firewalld.new.24930/firewalld.changes 2020-11-13 18:53:18.217726770 +0100 @@ -1,0 +2,16 @@ +Mon Nov 9 09:15:55 UTC 2020 - Michał Rostecki + +- Remove the patch which enforces usage of iptables instead of + nftables: + * 0001-firewall-backend-Switch-default-backend-to-iptables.patch +- Add firewalld zone for the docker0 interface. This is the + workaround for lack of nftables support in docker. Without that + additional zone, containers have no Internet connectivity. + (rhbz#1817022) +- Update to 0.9.1: + * Bugfixes: +* docs(firewall-cmd): clarify lockdown whitelist command paths +* fix(dbus): getActivePolicies shouldn't return a policy if a zone is not active +* fix(policy): zone interface/source changes should affect all using zone + +--- Old: 0001-firewall-backend-Switch-default-backend-to-iptables.patch firewalld-0.9.0.tar.gz New: docker-zone.xml firewalld-0.9.1.tar.gz Other differences: -- ++ firewalld.spec ++ --- /var/tmp/diff_new_pack.Og2RC5/_old 2020-11-13 18:53:20.189728855 +0100 +++ /var/tmp/diff_new_pack.Og2RC5/_new 2020-11-13 18:53:20.193728859 +0100 @@ -21,14 +21,14 @@ %define _fillupdir %{_localstatedir}/adm/fillup-templates %endif Name: firewalld -Version:0.9.0 +Version:0.9.1 Release:0 Summary:A firewall daemon with D-Bus interface providing a dynamic firewall License:GPL-2.0-or-later Group: Productivity/Networking/Security Url:http://www.firewalld.org -Source: https://github.com/firewalld/firewalld/releases/download/v%{version}/firewalld-%{version}.tar.gz -Patch0: 0001-firewall-backend-Switch-default-backend-to-iptables.patch +Source0: https://github.com/firewalld/firewalld/releases/download/v%{version}/firewalld-%{version}.tar.gz +Source1:docker-zone.xml BuildRequires: autoconf BuildRequires: automake @@ -151,6 +151,10 @@ ln -sf %{_sbindir}/service %{buildroot}/%{_sbindir}/rcfirewalld +# add firewalld zone (rhbz#1817022) +install -dp %{buildroot}%{_prefix}/lib/firewalld/zones +install -p -m 644 %{SOURCE1} %{buildroot}%{_prefix}/lib/firewalld/zones/docker.xml + %fdupes %{buildroot}%{python3_sitelib} %find_lang %{name} --all-name ++ docker-zone.xml ++ docker All network connections are accepted. ++ firewalld-0.9.0.tar.gz -> firewalld-0.9.1.tar.gz ++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/firewalld-0.9.0/config/lockdown-whitelist.xml new/firewalld-0.9.1/config/lockdown-whitelist.xml --- old/firewalld-0.9.0/config/lockdown-whitelist.xml 2020-09-02 20:08:49.0 +0200 +++ new/firewalld-0.9.1/config/lockdown-whitelist.xml 2020-10-01 18:08:29.0 +0200 @@ -1,6 +1,6 @@ - + diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/firewalld-0.9.0/configure new/firewalld-0.9.1/configure --- old/firewalld-0.9.0/configure 2020-09-02 20:08:45.0 +0200 +++ new/firewalld-0.9.1/configure 2020-10-01 18:08:24.0 +0200 @@ -1,6 +1,6 @@ #! /bin/sh # Guess values for system-dependent variables and create Makefiles. -# Generated by GNU Autoconf 2.69 for firewalld 0.9.0. +# Generated by GNU Autoconf 2.69 for firewalld 0.9.1. # # # Copyright (C) 1992-1996, 1998-2012 Free Software Foundation, Inc. @@ -577,8 +577,8 @@ # Identity of this package. PACKAGE_NAME='firewalld' PACKAGE_TARNAME='firewalld' -PACKAGE_VERSION='0.9.0' -PACKAGE_STRING='firewalld 0.9.0' +PACKAGE_VERSION='0.9.1' +PACKAGE_STRING='firewalld 0.9.1' PACKAGE_BUGREPORT='' PACKAGE_URL='' @@ -1314,7 +1314,7 @@ # Omit some internal or obsolete options to make the list less imposing. # This message is too long to be a string in the A/UX 3.1 sh. cat <<_ACEOF -\`configure' configures firewalld 0.9.0 to adapt to many kinds of systems. +\`configure' configures firewalld 0.9.1 to adapt to many kinds of systems. Usage: $0 [OPTION]... [VAR=VALUE]... @@ -1380,7 +1380,7 @@ if test -n "$ac_init_help"; then case $ac_init_help in - short | recursive ) echo "Configuration of firewalld 0.9.0:";; + short | recu