Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package cloudflared for openSUSE:Factory checked in at 2024-12-16 19:09:34 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/cloudflared (Old) and /work/SRC/openSUSE:Factory/.cloudflared.new.29675 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "cloudflared" Mon Dec 16 19:09:34 2024 rev:8 rq:1230993 version:2024.12.1 Changes: -------- --- /work/SRC/openSUSE:Factory/cloudflared/cloudflared.changes 2024-11-25 23:23:47.728413710 +0100 +++ /work/SRC/openSUSE:Factory/.cloudflared.new.29675/cloudflared.changes 2024-12-16 19:09:36.647727946 +0100 @@ -1,0 +2,35 @@ +Sat Dec 14 11:40:38 UTC 2024 - Hillwood Yang <[email protected]> + +- Update version to 2024.12.1 + * TUN-8748: Migrated datagram V3 flows to use migrated context + * TUN-8737: update metrics server port selection + * TUN-8731: Implement diag/system endpoint + * TUN-8728: implement diag/tunnel endpoint + * TUN-8730: implement diag/configuration + * TUN-8735: add managed/local log collection + * TUN-8733: add log collection for docker + * TUN-8734: add log collection for kubernetes + * TUN-8640: Refactor ICMPRouter to support new ICMPResponders + * TUN-8729: implement network collection for diagnostic procedure + * TUN-8727: implement metrics, runtime, system, and tunnelstate in diagnostic + http client + * TUN-8726: implement compression routine to be used in diagnostic procedure + * TUN-8732: implement port selection algorithm + * TUN-8762: fix argument order when invoking tracert and modify network info + output parsing + * TUN-8769: fix k8s log collector arguments + * TUN-8727: extend client to include function to get cli configuration + and tunnel configuration + * TUN-8725: implement diagnostic procedure + * TUN-8767: include raw output from network collector in diagnostic zip file + * TUN-8770: add cli configuration and tunnel configuration to diagnostic zipfile + * TUN-8768: add job report to diagnostic zipfile + * TUN-8775: Make sure the session Close can only be called once + * TUN-8781: Add Trixie, drop Buster. Default to Bookworm + * TUN-8640: Add ICMP support for datagram V3 + * TUN-8789: make python package installation consistent + * TUN-8795: update createrepo to createrepo_c to fix the release_pkgs.py + script +- Add update-vendor.patch, fix CVE-2024-45337 and boo#1234582 + +------------------------------------------------------------------- Old: ---- cloudflared-2024.11.1.tar.gz New: ---- cloudflared-2024.12.1.tar.gz update-vendor.patch BETA DEBUG BEGIN: New: script - Add update-vendor.patch, fix CVE-2024-45337 and boo#1234582 BETA DEBUG END: ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ cloudflared.spec ++++++ --- /var/tmp/diff_new_pack.JzWCFv/_old 2024-12-16 19:09:38.551806969 +0100 +++ /var/tmp/diff_new_pack.JzWCFv/_new 2024-12-16 19:09:38.551806969 +0100 @@ -17,7 +17,7 @@ Name: cloudflared -Version: 2024.11.1 +Version: 2024.12.1 Release: 0 Summary: Cloudflare Tunnel client License: Apache-2.0 @@ -29,7 +29,9 @@ Patch0: 001-skip-test.patch # PATCH-FIX-OPENSUSE 002-use-pie.patch [email protected] Patch1: 002-use-pie.patch -Patch2: reproducible.patch +# PATHC-FIX-UPSTREAN update-vendor.patch [email protected] - Fix CVE-2024-45337 boo#1234582 +Patch2: update-vendor.patch +Patch3: reproducible.patch BuildRequires: fdupes BuildRequires: git-core BuildRequires: golang-packaging @@ -48,9 +50,11 @@ origins are available under cloudflared tunnel help. %prep -%autosetup -p1 -a1 -n %{name}-%{version} +%autosetup -p1 -n %{name}-%{version} %build +rm -rf vendor +tar -zxf %{SOURCE1} %make_build GOARCH=$(go env GOARCH) %install ++++++ cloudflared-2024.11.1.tar.gz -> cloudflared-2024.12.1.tar.gz ++++++ /work/SRC/openSUSE:Factory/cloudflared/cloudflared-2024.11.1.tar.gz /work/SRC/openSUSE:Factory/.cloudflared.new.29675/cloudflared-2024.12.1.tar.gz differ: char 114, line 2 ++++++ update-vendor.patch ++++++ diff -Nur cloudflared-2024.12.1/go.mod cloudflared-2024.12.1-new/go.mod --- cloudflared-2024.12.1/go.mod 2024-12-11 00:07:33.000000000 +0800 +++ cloudflared-2024.12.1-new/go.mod 2024-12-14 16:32:25.999238372 +0800 @@ -35,11 +35,11 @@ go.opentelemetry.io/otel/trace v1.26.0 go.opentelemetry.io/proto/otlp v1.2.0 go.uber.org/automaxprocs v1.4.0 - golang.org/x/crypto v0.23.0 + golang.org/x/crypto v0.31.0 golang.org/x/net v0.25.0 - golang.org/x/sync v0.7.0 - golang.org/x/sys v0.20.0 - golang.org/x/term v0.20.0 + golang.org/x/sync v0.10.0 + golang.org/x/sys v0.28.0 + golang.org/x/term v0.27.0 google.golang.org/protobuf v1.34.1 gopkg.in/natefinch/lumberjack.v2 v2.0.0 gopkg.in/yaml.v3 v3.0.1 @@ -87,8 +87,8 @@ golang.org/x/exp v0.0.0-20240506185415-9bf2ced13842 // indirect golang.org/x/mod v0.17.0 // indirect golang.org/x/oauth2 v0.18.0 // indirect - golang.org/x/text v0.15.0 // indirect - golang.org/x/tools v0.21.0 // indirect + golang.org/x/text v0.21.0 // indirect + golang.org/x/tools v0.21.1-0.20240508182429-e35e4ccd0d2d // indirect google.golang.org/appengine v1.6.8 // indirect google.golang.org/genproto/googleapis/api v0.0.0-20240311132316-a219d84964c2 // indirect google.golang.org/genproto/googleapis/rpc v0.0.0-20240318140521-94a12d6c2237 // indirect diff -Nur cloudflared-2024.12.1/go.sum cloudflared-2024.12.1-new/go.sum --- cloudflared-2024.12.1/go.sum 2024-12-11 00:07:33.000000000 +0800 +++ cloudflared-2024.12.1-new/go.sum 2024-12-14 16:32:26.002571714 +0800 @@ -224,6 +224,8 @@ golang.org/x/crypto v0.0.0-20210921155107-089bfa567519/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc= golang.org/x/crypto v0.23.0 h1:dIJU/v2J8Mdglj/8rJ6UUOM3Zc9zLZxVZwwxMooUSAI= golang.org/x/crypto v0.23.0/go.mod h1:CKFgDieR+mRhux2Lsu27y0fO304Db0wZe70UKqHu0v8= +golang.org/x/crypto v0.31.0 h1:ihbySMvVjLAeSH1IbfcRTkD/iNscyz8rGzjF/E5hV6U= +golang.org/x/crypto v0.31.0/go.mod h1:kDsLvtWBEx7MV9tJOj9bnXsPbxwJQ6csT/x4KIN4Ssk= golang.org/x/exp v0.0.0-20240506185415-9bf2ced13842 h1:vr/HnozRka3pE4EsMEg1lgkXJkTFJCVUX+S/ZT6wYzM= golang.org/x/exp v0.0.0-20240506185415-9bf2ced13842/go.mod h1:XtvwrStGgqGPLc4cjQfWqZHG1YFdYs6swckp8vpsjnc= golang.org/x/lint v0.0.0-20200302205851-738671d3881b/go.mod h1:3xt1FjdF8hUf6vQPIChWIBhFzV8gjjsPE/fR3IyQdNY= @@ -244,6 +246,7 @@ golang.org/x/sync v0.0.0-20220722155255-886fb9371eb4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM= golang.org/x/sync v0.7.0 h1:YsImfSBoP9QPYL0xyKJPq0gcaJdG3rInoqxTWbfQu9M= golang.org/x/sync v0.7.0/go.mod h1:Czt+wKu1gCyEFDUtn0jG5QVvpJ6rzVqr5aXyt9drQfk= +golang.org/x/sync v0.10.0/go.mod h1:Czt+wKu1gCyEFDUtn0jG5QVvpJ6rzVqr5aXyt9drQfk= golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY= golang.org/x/sys v0.0.0-20190412213103-97732733099d/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs= golang.org/x/sys v0.0.0-20191005200804-aed5e4c7ecf9/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs= @@ -256,10 +259,12 @@ golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= golang.org/x/sys v0.20.0 h1:Od9JTbYCk261bKm4M/mw7AklTlFYIa0bIp9BgSm1S8Y= golang.org/x/sys v0.20.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA= +golang.org/x/sys v0.28.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA= golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo= golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8= golang.org/x/term v0.20.0 h1:VnkxpohqXaOBYJtBmEppKUG6mXpi+4O6purfc2+sMhw= golang.org/x/term v0.20.0/go.mod h1:8UkIAJTvZgivsXaD6/pH6U9ecQzZ45awqEOzuCvwpFY= +golang.org/x/term v0.27.0/go.mod h1:iMsnZpn0cago0GOrHO2+Y7u7JPn5AylBrcoWkElMTSM= golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ= golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk= golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ= @@ -267,6 +272,7 @@ golang.org/x/text v0.3.8/go.mod h1:E6s5w1FMmriuDzIBO73fBruAKo1PCIq6d2Q6DHfQ8WQ= golang.org/x/text v0.15.0 h1:h1V/4gjBv8v9cjcR6+AR5+/cIYK5N/WAgiv4xlsEtAk= golang.org/x/text v0.15.0/go.mod h1:18ZOQIKpY8NJVqYksKHtTdi31H5itFRjB5/qKTNYzSU= +golang.org/x/text v0.21.0/go.mod h1:4IBbMaMmOPCJ8SecivzSH54+73PCFmPWxNTLm+vZkEQ= golang.org/x/time v0.0.0-20191024005414-555d28b269f0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ= golang.org/x/time v0.5.0 h1:o7cqy6amK/52YcAKIPlM3a+Fpj35zvRj2TP+e1xFSfk= golang.org/x/time v0.5.0/go.mod h1:3BpzKBy/shNhVucY/MWOyx10tF3SFh9QdLuxbVysPQM= @@ -277,6 +283,7 @@ golang.org/x/tools v0.1.12/go.mod h1:hNGJHUnrk76NpqgfD5Aqm5Crs+Hm0VOH/i9J2+nxYbc= golang.org/x/tools v0.21.0 h1:qc0xYgIbsSDt9EyWz05J5wfa7LOVW0YTLOXrqdLAWIw= golang.org/x/tools v0.21.0/go.mod h1:aiJjzUbINMkxbQROHiO6hDPo2LHcIPhhQsa9DLh0yGk= +golang.org/x/tools v0.21.1-0.20240508182429-e35e4ccd0d2d/go.mod h1:aiJjzUbINMkxbQROHiO6hDPo2LHcIPhhQsa9DLh0yGk= golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0= golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0= golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0= ++++++ vendor.tar.gz ++++++ /work/SRC/openSUSE:Factory/cloudflared/vendor.tar.gz /work/SRC/openSUSE:Factory/.cloudflared.new.29675/vendor.tar.gz differ: char 13, line 1
