commit squid for openSUSE:Factory

Source-Sync Wed, 22 Dec 2021 11:23:13 -0800

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package squid for openSUSE:Factory checked 
in at 2021-12-22 20:18:17
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/squid (Old)
 and      /work/SRC/openSUSE:Factory/.squid.new.2520 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++


Package is "squid"

Wed Dec 22 20:18:17 2021 rev:97 rq:942126 version:5.3

Changes:
--------
--- /work/SRC/openSUSE:Factory/squid/squid.changes      2021-12-21 
18:41:29.497920157 +0100
+++ /work/SRC/openSUSE:Factory/.squid.new.2520/squid.changes    2021-12-22 
20:19:35.411889898 +0100
@@ -1,0 +2,5 @@
+Wed Dec 22 14:03:32 UTC 2021 - Martin Pluskal <mplus...@suse.com>
+
+- Adjust harden_squid.service.patch to resolve boo#1193938
+
+-------------------------------------------------------------------

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ squid.spec ++++++
--- /var/tmp/diff_new_pack.ig9Sf9/_old  2021-12-22 20:19:36.095890219 +0100
+++ /var/tmp/diff_new_pack.ig9Sf9/_new  2021-12-22 20:19:36.099890221 +0100
@@ -69,15 +69,14 @@
 Requires(pre):  permissions
 Recommends:     logrotate
 Provides:       http_proxy
-%if 0%{suse_version} <= 1500
+%{?systemd_ordering}
+%if 0%{?suse_version} <= 1500
 # due to package rename
 # Wed Aug 15 17:40:30 UTC 2012
 # remove this after SLE15
 Provides:       %{name}3 = %{version}
 Obsoletes:      %{name}3 < %{version}
 %endif
-
-%{?systemd_ordering}
 %if 0%{?suse_version} >= 1500
 BuildRequires:  sysuser-shadow
 BuildRequires:  sysuser-tools
@@ -236,7 +235,6 @@
 %if 0%{?suse_version} >= 1500
 %pre -f squid.pre
 %else
-
 %pre
 # we need this group for /usr/sbin/pinger
 getent group %{name} >/dev/null || %{_sbindir}/groupadd -g 31 -r %{name}

++++++ harden_squid.service.patch ++++++
--- /var/tmp/diff_new_pack.ig9Sf9/_old  2021-12-22 20:19:36.143890241 +0100
+++ /var/tmp/diff_new_pack.ig9Sf9/_new  2021-12-22 20:19:36.143890241 +0100
@@ -1,15 +1,14 @@
-Index: squid-5.2/tools/systemd/squid.service
+Index: squid-5.3/tools/systemd/squid.service
 ===================================================================
---- squid-5.2.orig/tools/systemd/squid.service
-+++ squid-5.2/tools/systemd/squid.service
-@@ -11,6 +11,19 @@ Documentation=man:squid(8)
+--- squid-5.3.orig/tools/systemd/squid.service
++++ squid-5.3/tools/systemd/squid.service
+@@ -11,6 +11,18 @@ Documentation=man:squid(8)
  After=network.target network-online.target nss-lookup.target
  
  [Service]
 +# added automatically, for details please see
 +# https://en.opensuse.org/openSUSE:Security_Features#Systemd_hardening_effort
 +ProtectSystem=full
-+ProtectHome=true
 +PrivateDevices=true
 +ProtectHostname=true
 +ProtectClock=true
@@ -18,7 +17,7 @@
 +ProtectKernelLogs=true
 +ProtectControlGroups=true
 +RestrictRealtime=true
-+# end of automatic additions 
++# end of automatic additions
  Type=notify
  PIDFile=/var/run/squid.pid
  ExecStartPre=/usr/sbin/squid --foreground -z

commit squid for openSUSE:Factory

Reply via email to