Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package NetworkManager for openSUSE:Factory checked in at 2021-07-07 18:29:48 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/NetworkManager (Old) and /work/SRC/openSUSE:Factory/.NetworkManager.new.2625 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "NetworkManager" Wed Jul 7 18:29:48 2021 rev:226 rq:904183 version:1.32.2 Changes: -------- --- /work/SRC/openSUSE:Factory/NetworkManager/NetworkManager.changes 2021-05-20 19:24:50.561996055 +0200 +++ /work/SRC/openSUSE:Factory/.NetworkManager.new.2625/NetworkManager.changes 2021-07-07 18:30:24.435025051 +0200 @@ -1,0 +2,22 @@ +Wed Jun 30 18:39:13 UTC 2021 - Bj??rn Lie <[email protected]> + +- Update to version 1.32.2 (CVE-2020-13529): + + hostname: prefer IPv4 addresses for reverse DNS lookup. + + dhcp: ignore unauthenticated FORCERENEW messages with internal, + systemd-based DHCPv4 plugin (CVE-2020-13529). This plugin is + not used, unless the undocumented dhcp=systemd option was set. + + cloud-setup: preserve IP addresses, routes and rules from + currently active connection profile. + + Various bugfixes and performance improvements. + +------------------------------------------------------------------- +Wed Jun 16 19:51:07 UTC 2021 - Bj??rn Lie <[email protected]> + +- Update to version 1.32.0: + + Now NetworkManager uses systemd-resolved API to lookup the + system hostname via reverse DNS. If systemd-resolved is not + available, a 'nm-daemon-helper' binary is spawned to perform + the lookup using the 'dns' NSS module. +- Rebase patches. + +------------------------------------------------------------------- Old: ---- NetworkManager-1.30.4.tar.xz New: ---- NetworkManager-1.32.2.tar.xz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ NetworkManager.spec ++++++ --- /var/tmp/diff_new_pack.TWlhRc/_old 2021-07-07 18:30:25.163019339 +0200 +++ /var/tmp/diff_new_pack.TWlhRc/_new 2021-07-07 18:30:25.167019307 +0200 @@ -22,13 +22,13 @@ %define with_cacert_patch 0 %define _udevdir %(pkg-config --variable udevdir udev) Name: NetworkManager -Version: 1.30.4 +Version: 1.32.2 Release: 0 Summary: Network Link Manager and user applications for it License: GPL-2.0-or-later AND LGPL-2.1-or-later Group: Productivity/Networking/System URL: https://www.gnome.org/projects/NetworkManager/ -Source0: https://download.gnome.org/sources/NetworkManager/1.30/%{name}-%{version}.tar.xz +Source0: https://download.gnome.org/sources/NetworkManager/1.32/%{name}-%{version}.tar.xz Source1: nfs Source2: NetworkManager.conf Source3: baselibs.conf @@ -270,7 +270,7 @@ %files %license COPYING -%doc ChangeLog NEWS AUTHORS README CONTRIBUTING TODO data/server.conf +%doc ChangeLog NEWS AUTHORS README TODO data/server.conf %{_bindir}/nm-online %{_bindir}/nmcli %{_bindir}/nmtui* @@ -297,6 +297,7 @@ %{_mandir}/man8/NetworkManager.8%{?ext_man} %{_mandir}/man8/nm-cloud-setup.8%{?ext_man} %{_mandir}/man8/nm-initrd-generator.8%{ext_man} +%{_mandir}/man8/NetworkManager-dispatcher.8%{ext_man} %dir %{_libdir}/NetworkManager %dir %{_libdir}/NetworkManager/%{version} %{_libdir}/NetworkManager/%{version}/libnm-device-plugin-adsl.so @@ -306,17 +307,15 @@ %{_libdir}/NetworkManager/%{version}/libnm-device-plugin-wifi.so %{_libdir}/NetworkManager/%{version}/libnm-device-plugin-wwan.so %{_libdir}/NetworkManager/%{version}/libnm-ppp-plugin.so -#%%{_libdir}/NetworkManager/%%{version}/libnm-settings-plugin-ibft.so %{_libdir}/NetworkManager/%{version}/libnm-wwan.so %dir %{_libdir}/pppd/2.* %{_libdir}/pppd/2.*/nm-pppd-plugin.* %{_libexecdir}/nm-cloud-setup +%{_libexecdir}/nm-daemon-helper %{_libexecdir}/nm-dhcp-helper %{_libexecdir}/nm-dispatcher %{_libexecdir}/nm-iface-helper %{_libexecdir}/nm-initrd-generator -%config %{_sysconfdir}/dbus-1/system.d/org.freedesktop.NetworkManager.conf -%config %{_sysconfdir}/dbus-1/system.d/nm-dispatcher.conf %dir %{_sysconfdir}/NetworkManager %dir %{_sysconfdir}/NetworkManager/VPN %dir %{_sysconfdir}/NetworkManager/dispatcher.d @@ -344,6 +343,8 @@ %dir %{_prefix}/lib/firewalld %dir %{_prefix}/lib/firewalld/zones %{_prefix}/lib/firewalld/zones/nm-shared.xml +%{_datadir}/dbus-1/system.d/nm-dispatcher.conf +%{_datadir}/dbus-1/system.d/org.freedesktop.NetworkManager.conf %files devel %{_includedir}/libnm/ ++++++ 0001-Coerce-connectivity-LIMITED-to-NONE-when-device-is-d.patch ++++++ --- /var/tmp/diff_new_pack.TWlhRc/_old 2021-07-07 18:30:25.195019087 +0200 +++ /var/tmp/diff_new_pack.TWlhRc/_new 2021-07-07 18:30:25.199019056 +0200 @@ -12,11 +12,11 @@ src/devices/nm-device.c | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) -Index: NetworkManager-1.29.90/src/core/devices/nm-device.c +Index: NetworkManager-1.32.0/src/core/devices/nm-device.c =================================================================== ---- NetworkManager-1.29.90.orig/src/core/devices/nm-device.c -+++ NetworkManager-1.29.90/src/core/devices/nm-device.c -@@ -4296,7 +4296,8 @@ concheck_update_state(NMDevice * +--- NetworkManager-1.32.0.orig/src/core/devices/nm-device.c ++++ NetworkManager-1.32.0/src/core/devices/nm-device.c +@@ -4292,7 +4292,8 @@ concheck_update_state(NMDevice * state = NM_CONNECTIVITY_LIMITED; } else state = NM_CONNECTIVITY_NONE; ++++++ NetworkManager-1.10.6-netconfig.patch ++++++ --- /var/tmp/diff_new_pack.TWlhRc/_old 2021-07-07 18:30:25.211018962 +0200 +++ /var/tmp/diff_new_pack.TWlhRc/_new 2021-07-07 18:30:25.211018962 +0200 @@ -1,8 +1,8 @@ -Index: NetworkManager-1.29.90/src/core/dns/nm-dns-manager.c +Index: NetworkManager-1.32.0/src/core/dns/nm-dns-manager.c =================================================================== ---- NetworkManager-1.29.90.orig/src/core/dns/nm-dns-manager.c -+++ NetworkManager-1.29.90/src/core/dns/nm-dns-manager.c -@@ -611,6 +611,14 @@ dispatch_netconfig(NMDnsManager * se +--- NetworkManager-1.32.0.orig/src/core/dns/nm-dns-manager.c ++++ NetworkManager-1.32.0/src/core/dns/nm-dns-manager.c +@@ -614,6 +614,14 @@ dispatch_netconfig(NMDnsManager * se gssize l; nm_auto_free_gstring GString *str = NULL; ++++++ NetworkManager-1.30.4.tar.xz -> NetworkManager-1.32.2.tar.xz ++++++ ++++ 2304362 lines of diff (skipped) ++++++ nm-add-CAP_CHOWN-capability.patch ++++++ --- /var/tmp/diff_new_pack.TWlhRc/_old 2021-07-07 18:30:45.762857688 +0200 +++ /var/tmp/diff_new_pack.TWlhRc/_new 2021-07-07 18:30:45.762857688 +0200 @@ -1,22 +1,9 @@ -From 11ad747142f3cd1782d596aea8252db7ecb790f3 Mon Sep 17 00:00:00 2001 -From: Jonathan Kang <[email protected]> -Date: Tue, 18 May 2021 08:51:34 +0800 -Subject: [PATCH] Add CAP_CHOWN to CapabilityBoundingSet to make teamd work - properly - -https://gitlab.freedesktop.org/NetworkManager/NetworkManager/-/issues/722 ---- - data/NetworkManager.service.in | 2 +- - 1 file changed, 1 insertion(+), 1 deletion(-) - -Index: NetworkManager-1.30.4/data/NetworkManager.service.in -=================================================================== ---- NetworkManager-1.30.4.orig/data/NetworkManager.service.in -+++ NetworkManager-1.30.4/data/NetworkManager.service.in -@@ -14,7 +14,7 @@ ExecStart=@sbindir@/NetworkManager --no- - Restart=on-failure - # NM doesn't want systemd to kill its children for it +--- NetworkManager-1.32.0-orig/data/NetworkManager.service.in 2021-06-10 22:26:13.000000000 +0200 ++++ NetworkManager-1.32.0/data/NetworkManager.service.in 2021-06-16 22:14:28.539285426 +0200 +@@ -16,7 +16,7 @@ KillMode=process + + # CAP_DAC_OVERRIDE: required to open /run/openvswitch/db.sock socket. -CapabilityBoundingSet=CAP_NET_ADMIN CAP_DAC_OVERRIDE CAP_NET_RAW CAP_NET_BIND_SERVICE CAP_SETGID CAP_SETUID CAP_SYS_MODULE CAP_AUDIT_WRITE CAP_KILL CAP_SYS_CHROOT CAP_SYS_ADMIN +CapabilityBoundingSet=CAP_NET_ADMIN CAP_DAC_OVERRIDE CAP_NET_RAW CAP_NET_BIND_SERVICE CAP_SETGID CAP_SETUID CAP_SYS_MODULE CAP_AUDIT_WRITE CAP_KILL CAP_SYS_CHROOT CAP_SYS_ADMIN CAP_CHOWN ++++++ nm-add-CAP_SYS_ADMIN-permission.patch ++++++ --- /var/tmp/diff_new_pack.TWlhRc/_old 2021-07-07 18:30:45.774857594 +0200 +++ /var/tmp/diff_new_pack.TWlhRc/_new 2021-07-07 18:30:45.774857594 +0200 @@ -1,11 +1,9 @@ -Index: NetworkManager-1.24.2/data/NetworkManager.service.in -=================================================================== ---- NetworkManager-1.24.2.orig/data/NetworkManager.service.in -+++ NetworkManager-1.24.2/data/NetworkManager.service.in -@@ -14,7 +14,7 @@ ExecStart=@sbindir@/NetworkManager --no- - Restart=on-failure - # NM doesn't want systemd to kill its children for it +--- NetworkManager-1.32.0-orig/data/NetworkManager.service.in 2021-06-10 22:26:13.000000000 +0200 ++++ NetworkManager-1.32.0/data/NetworkManager.service.in 2021-06-16 21:57:08.635254606 +0200 +@@ -16,7 +16,7 @@ KillMode=process + + # CAP_DAC_OVERRIDE: required to open /run/openvswitch/db.sock socket. -CapabilityBoundingSet=CAP_NET_ADMIN CAP_DAC_OVERRIDE CAP_NET_RAW CAP_NET_BIND_SERVICE CAP_SETGID CAP_SETUID CAP_SYS_MODULE CAP_AUDIT_WRITE CAP_KILL CAP_SYS_CHROOT +CapabilityBoundingSet=CAP_NET_ADMIN CAP_DAC_OVERRIDE CAP_NET_RAW CAP_NET_BIND_SERVICE CAP_SETGID CAP_SETUID CAP_SYS_MODULE CAP_AUDIT_WRITE CAP_KILL CAP_SYS_CHROOT CAP_SYS_ADMIN ++++++ nm-dhcp-use-valid-lease-on-timeout.patch ++++++ --- /var/tmp/diff_new_pack.TWlhRc/_old 2021-07-07 18:30:45.786857499 +0200 +++ /var/tmp/diff_new_pack.TWlhRc/_new 2021-07-07 18:30:45.786857499 +0200 @@ -19,11 +19,11 @@ src/core/dhcp/nm-dhcp-dhcpcd.c | 1 + 4 files changed, 12 insertions(+), 10 deletions(-) -Index: NetworkManager-1.30.0/src/core/devices/nm-device.c +Index: NetworkManager-1.32.0/src/core/devices/nm-device.c =================================================================== ---- NetworkManager-1.30.0.orig/src/core/devices/nm-device.c -+++ NetworkManager-1.30.0/src/core/devices/nm-device.c -@@ -9314,6 +9314,7 @@ dhcp4_state_changed(NMDhcpClient *client +--- NetworkManager-1.32.0.orig/src/core/devices/nm-device.c ++++ NetworkManager-1.32.0/src/core/devices/nm-device.c +@@ -9342,6 +9342,7 @@ dhcp4_state_changed(NMDhcpClient *client switch (state) { case NM_DHCP_STATE_BOUND: case NM_DHCP_STATE_EXTENDED: @@ -31,7 +31,7 @@ if (!ip4_config) { _LOGW(LOGD_DHCP4, "failed to get IPv4 config in response to DHCP event."); dhcp4_fail(self, state); -@@ -9360,9 +9361,6 @@ dhcp4_state_changed(NMDhcpClient *client +@@ -9388,9 +9389,6 @@ dhcp4_state_changed(NMDhcpClient *client dhcp4_fail(self, state); } break; @@ -41,19 +41,19 @@ case NM_DHCP_STATE_EXPIRE: /* Ignore expiry before we even have a lease (NAK, old lease, etc) */ if (priv->ip_state_4 == NM_DEVICE_IP_STATE_CONF) -Index: NetworkManager-1.30.0/src/core/dhcp/nm-dhcp-client.c +Index: NetworkManager-1.32.0/src/core/dhcp/nm-dhcp-client.c =================================================================== ---- NetworkManager-1.30.0.orig/src/core/dhcp/nm-dhcp-client.c -+++ NetworkManager-1.30.0/src/core/dhcp/nm-dhcp-client.c -@@ -19,6 +19,7 @@ +--- NetworkManager-1.32.0.orig/src/core/dhcp/nm-dhcp-client.c ++++ NetworkManager-1.32.0/src/core/dhcp/nm-dhcp-client.c +@@ -20,6 +20,7 @@ #include "NetworkManagerUtils.h" #include "nm-utils.h" +#include "nm-dhcp-manager.h" #include "nm-dhcp-utils.h" #include "nm-dhcp-options.h" - #include "platform/nm-platform.h" -@@ -443,14 +444,14 @@ nm_dhcp_client_set_state(NMDhcpClient *s + #include "libnm-platform/nm-platform.h" +@@ -446,14 +447,14 @@ nm_dhcp_client_set_state(NMDhcpClient *s if (NM_IN_SET(new_state, NM_DHCP_STATE_BOUND, NM_DHCP_STATE_EXTENDED)) { g_return_if_fail(NM_IS_IP_CONFIG_ADDR_FAMILY(ip_config, priv->addr_family)); g_return_if_fail(options); @@ -70,7 +70,7 @@ watch_cleanup(self); /* The client may send same-state transitions for RENEW/REBIND events and -@@ -557,8 +558,6 @@ nm_dhcp_client_watch_child(NMDhcpClient +@@ -552,8 +553,6 @@ nm_dhcp_client_watch_child(NMDhcpClient g_return_if_fail(priv->pid == -1); priv->pid = pid; @@ -79,7 +79,7 @@ g_return_if_fail(priv->watch_id == 0); priv->watch_id = g_child_watch_add(pid, daemon_watch_cb, self); } -@@ -905,7 +904,9 @@ nm_dhcp_client_handle_event(gpointer +@@ -898,7 +897,9 @@ nm_dhcp_client_handle_event(gpointer if (new_state == NM_DHCP_STATE_NOOP) return TRUE; @@ -90,10 +90,10 @@ GVariantIter iter; const char * name; GVariant * value; -Index: NetworkManager-1.30.0/src/core/dhcp/nm-dhcp-dhcpcanon.c +Index: NetworkManager-1.32.0/src/core/dhcp/nm-dhcp-dhcpcanon.c =================================================================== ---- NetworkManager-1.30.0.orig/src/core/dhcp/nm-dhcp-dhcpcanon.c -+++ NetworkManager-1.30.0/src/core/dhcp/nm-dhcp-dhcpcanon.c +--- NetworkManager-1.32.0.orig/src/core/dhcp/nm-dhcp-dhcpcanon.c ++++ NetworkManager-1.32.0/src/core/dhcp/nm-dhcp-dhcpcanon.c @@ -156,6 +156,7 @@ dhcpcanon_start(NMDhcpClient *client, nm_assert(pid > 0); _LOGI("dhcpcanon started with pid %d", pid); @@ -102,11 +102,11 @@ priv->pid_file = g_steal_pointer(&pid_file); return TRUE; } -Index: NetworkManager-1.30.0/src/core/dhcp/nm-dhcp-dhcpcd.c +Index: NetworkManager-1.32.0/src/core/dhcp/nm-dhcp-dhcpcd.c =================================================================== ---- NetworkManager-1.30.0.orig/src/core/dhcp/nm-dhcp-dhcpcd.c -+++ NetworkManager-1.30.0/src/core/dhcp/nm-dhcp-dhcpcd.c -@@ -158,6 +158,7 @@ ip4_start(NMDhcpClient *client, +--- NetworkManager-1.32.0.orig/src/core/dhcp/nm-dhcp-dhcpcd.c ++++ NetworkManager-1.32.0/src/core/dhcp/nm-dhcp-dhcpcd.c +@@ -155,6 +155,7 @@ ip4_start(NMDhcpClient *client, const ch nm_assert(pid > 0); _LOGI("dhcpcd started with pid %d", pid); nm_dhcp_client_watch_child(client, pid); ++++++ nm-dont-overwrite-resolv-conf.patch ++++++ --- /var/tmp/diff_new_pack.TWlhRc/_old 2021-07-07 18:30:45.794857436 +0200 +++ /var/tmp/diff_new_pack.TWlhRc/_new 2021-07-07 18:30:45.798857405 +0200 @@ -1,8 +1,8 @@ -Index: NetworkManager-1.29.90/src/core/dns/nm-dns-manager.c +Index: NetworkManager-1.32.0/src/core/dns/nm-dns-manager.c =================================================================== ---- NetworkManager-1.29.90.orig/src/core/dns/nm-dns-manager.c -+++ NetworkManager-1.29.90/src/core/dns/nm-dns-manager.c -@@ -638,7 +638,7 @@ again: +--- NetworkManager-1.32.0.orig/src/core/dns/nm-dns-manager.c ++++ NetworkManager-1.32.0/src/core/dns/nm-dns-manager.c +@@ -641,7 +641,7 @@ again: /* FIXME: don't write to netconfig synchronously. */ /* Wait until the process exits */ ++++++ systemd-network-config.patch ++++++ --- /var/tmp/diff_new_pack.TWlhRc/_old 2021-07-07 18:30:45.810857311 +0200 +++ /var/tmp/diff_new_pack.TWlhRc/_new 2021-07-07 18:30:45.810857311 +0200 @@ -1,6 +1,7 @@ -diff -Nur NetworkManager-1.24.0-orig/data/NetworkManager.service.in NetworkManager-1.24.0/data/NetworkManager.service.in ---- NetworkManager-1.24.0-orig/data/NetworkManager.service.in 2020-05-08 08:07:01.000000000 +0200 -+++ NetworkManager-1.24.0/data/NetworkManager.service.in 2020-05-08 20:24:16.528438647 +0200 +Index: NetworkManager-1.32.0/data/NetworkManager.service.in +=================================================================== +--- NetworkManager-1.32.0.orig/data/NetworkManager.service.in ++++ NetworkManager-1.32.0/data/NetworkManager.service.in @@ -1,7 +1,7 @@ [Unit] Description=Network Manager @@ -10,7 +11,7 @@ After=network-pre.target dbus.service Before=network.target @DISTRO_NETWORK_SERVICE@ -@@ -21,6 +21,7 @@ +@@ -27,6 +27,7 @@ LimitNOFILE=65536 [Install] WantedBy=multi-user.target @@ -18,10 +19,11 @@ Also=NetworkManager-dispatcher.service # We want to enable NetworkManager-wait-online.service whenever this service -diff -Nur NetworkManager-1.24.0-orig/data/NetworkManager-wait-online.service.in NetworkManager-1.24.0/data/NetworkManager-wait-online.service.in ---- NetworkManager-1.24.0-orig/data/NetworkManager-wait-online.service.in 2020-05-08 08:07:01.000000000 +0200 -+++ NetworkManager-1.24.0/data/NetworkManager-wait-online.service.in 2020-05-08 20:24:25.980316717 +0200 -@@ -16,7 +16,9 @@ +Index: NetworkManager-1.32.0/data/NetworkManager-wait-online.service.in +=================================================================== +--- NetworkManager-1.32.0.orig/data/NetworkManager-wait-online.service.in ++++ NetworkManager-1.32.0/data/NetworkManager-wait-online.service.in +@@ -16,7 +16,9 @@ Before=network-online.target # time. Type=oneshot
