224 Commits

Author SHA256 Message Date
dec35e9d18 Accepting request 1297503 from security:netfilter
OBS-URL: https://build.opensuse.org/request/show/1297503
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/firewalld?expand=0&rev=95
2025-08-06 12:31:24 +00:00
c1c88ba33f - Call autopoint when building against gettext-runtime 0.25 or
newer. (boo#1246967)

OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=180
2025-08-04 13:17:16 +00:00
1c017e1cb4 Accepting request 1295233 from security:netfilter
- Adding Python multiversion support, will enable firewalld pkg
  to provide Python libraries compatible with all supported Python
  versions.

OBS-URL: https://build.opensuse.org/request/show/1295233
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/firewalld?expand=0&rev=94
2025-07-24 16:34:41 +00:00
7ddd10fb23 revert 1295097, will file a bug report instead
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=178
2025-07-23 08:44:30 +00:00
498795a7a6 - Call autopoint to work with newer gettext-runtime.
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=177
2025-07-23 07:38:49 +00:00
183f10fb6a Revoke 1293236
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=176
2025-07-23 06:19:29 +00:00
acaf0d0f33 - Adding Python multiversion support, will enable firewalld pkg
to provide Python libraries compatible with all supported Python
  versions.

  This means for tumbleweed in time of this submit-request:
   python313-firewall (which provide python3-firewall)
   python312-firewall
   python311-firewall

  The specfile is compatible also with SLES/LEAP versions >=15-SP6.

OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=175
2025-07-16 08:08:57 +00:00
6dc684ac35 As part of PED-13228 we need to allow Cockpit through the firewall,
instead of just punching a hole through it in the %postinstall it
would be nicer to be more explicit about this intent by allowing it
in the default zone

Fedora do exactly this under their FedoraServer policy, I am open
to creating a new default named policy for this so we don't have
to rely on this patch. This was just done quickly to open a discussion
around this

- add 0003-add-cockpit-to-public-zone.patch to allow cockpit
  through the firewall by default, this comes as a requirement from
  jsc#PED-13228 as a nicer alternative to Cockpit containing a
  %postinstall to punch through the firewall

OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=174
2025-07-15 06:21:56 +00:00
d30743268e Accepting request 1273679 from security:netfilter
OBS-URL: https://build.opensuse.org/request/show/1273679
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/firewalld?expand=0&rev=93
2025-05-01 13:22:35 +00:00
f6852d115c - Split the package to build the firewalld-rpmmacros subpackage in
a _multibuild flavor so that we can build it in Factory/i586 by
  itself instead of building the whole package, which has more
  dependencies (like python-PyQt6).

OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=172
2025-04-30 12:30:52 +00:00
4807e108d8 Accepting request 1269827 from security:netfilter
OBS-URL: https://build.opensuse.org/request/show/1269827
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/firewalld?expand=0&rev=92
2025-04-18 14:14:05 +00:00
0ac9193b83 - Require python3-PyQt6 in firewall-applet, since that's preferred
over PyQt5.

OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=170
2025-04-16 08:21:57 +00:00
3e86fdb208 Accepting request 1239597 from security:netfilter
OBS-URL: https://build.opensuse.org/request/show/1239597
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/firewalld?expand=0&rev=91
2025-01-23 17:01:34 +00:00
f76d53cd00 - Drop rcFOO symlinks for CODE16 (PED-266).
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=168
2025-01-22 15:59:40 +00:00
f02daabe99 Accepting request 1183143 from security:netfilter
OBS-URL: https://build.opensuse.org/request/show/1183143
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/firewalld?expand=0&rev=90
2024-06-28 13:46:36 +00:00
OBS User buildservice-autocommit
d279922d6f auto commit by copy to link target
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=167
2024-06-28 13:46:36 +00:00
OBS User buildservice-autocommit
c682aad0cd Updating link to change in openSUSE:Factory/firewalld revision 90
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=24ccace324433bf535594eb60b7cc607
2024-06-28 13:46:36 +00:00
8d2a8105d7 - remove dependency on /usr/bin/python3 using
%python3_fix_shebang macro, [bsc#1212476]

OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=166
2024-06-25 10:57:26 +00:00
b51df19025 Accepting request 1177113 from security:netfilter
OBS-URL: https://build.opensuse.org/request/show/1177113
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/firewalld?expand=0&rev=89
2024-05-29 17:35:08 +00:00
63bdde2228 Accepting request 1176756 from home:dimstar:Factory
- Keep English 'translations' (en_US, en_GB) in the main package:
  do not force the lang package on plain English systems.

OBS-URL: https://build.opensuse.org/request/show/1176756
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=164
2024-05-27 12:00:10 +00:00
938d174cad Accepting request 1175577 from security:netfilter
OBS-URL: https://build.opensuse.org/request/show/1175577
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/firewalld?expand=0&rev=88
2024-05-22 19:29:02 +00:00
e6f55ec60e Accepting request 1172979 from home:dirkmueller:Factory
- update to 2.1.2:
  * fix(policy): allow forward ports w/ to-addr for egress-
    zone=HOST
  * fix(rich): fix range check for large rule limit
  * fix(tests): fix skip detection in fw-in-container environment

  * fix(nm): release NM client after a timeout (d534f07)
- python3-dbus isn't correct either, it's python3-dbus-python.
- Correct Requires, python3-slip-dbus -> python3-dbus.
- fix(cli): all --list-all-zones output identical (boo#1213609)
    changes.
    https://github.com/firewalld/firewalld/releases/tag/v2.0.0
- Always own %_modprobedir (bsc#1196275, jsc#SLE-20639)
  - ipset, ebtables and iptables are purely optional and deprecated,
- Replace references to /var/adm/fillup-templates with new
  * 0001-firewall.core.fw_ipset-get_ipset-may-not-ckeck-if-se.patch
  * 0001-firewall.core.fw_ipset-get_ipset-may-not-ckeck-if-se.patch

OBS-URL: https://build.opensuse.org/request/show/1172979
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=162
2024-05-21 13:11:06 +00:00
e9a6b896ea Accepting request 1142601 from security:netfilter
OBS-URL: https://build.opensuse.org/request/show/1142601
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/firewalld?expand=0&rev=87
2024-01-30 17:24:17 +00:00
Mohd Saquib
2994173908 Accepting request 1142599 from home:msaquib:branches:security:netfilter
- update to 2.1.1:
  * fix(offline-cmd): use family when creating ipset (64f78a9)
  * fix(firewall-config): allow rich rule forwarded ports to be logged (d46ea62)
  * fix(ipXtables): log forwarded ports only (07dc202)
  * fix(nftables): log forwarded ports (5c26b73)
  * fix(io.ipset): raise exception if entries exceed limit (a2da5fb)
  * fix(policy): ipXtables: multiple policies using same zone (b6f2f09)
  * fix(policy): dispatch update for active policies (7f6f0e2)

OBS-URL: https://build.opensuse.org/request/show/1142599
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=160
2024-01-29 17:11:03 +00:00
0ebe659ca7 Accepting request 1137494 from security:netfilter
OBS-URL: https://build.opensuse.org/request/show/1137494
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/firewalld?expand=0&rev=86
2024-01-09 19:48:31 +00:00
Mohd Saquib
d2da4cedb0 Accepting request 1137493 from home:msaquib:branches:security:netfilter
- update to 2.1.0:
  * eat(service): add DNS over QUIC (DoQ) Service (5130430)
  * feat(icmp): add ICMPv6 Multicast Listener Discovery (MLD) types (dd88bbf)
  * feat(fw): add ReloadPolicy option in firewalld.conf (0019371)
  * feat(service): add submission service (tcp 587) (d6a9561)
  * feat(service): Add alvr (3a92358)
  * feat(service): add vrrp (d62fc8d)
  [* Renamed patch 0002-Disable-FlushAllOnReload-option.patch to
     0001-Disable-FlushAllOnReload-option.patch
  [* Renamed patch firewalld-runstatedir.patch to 0002-firewalld-runstatedir.patch]

OBS-URL: https://build.opensuse.org/request/show/1137493
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=158
2024-01-08 08:29:12 +00:00
f4d6521970 Accepting request 1129728 from security:netfilter
OBS-URL: https://build.opensuse.org/request/show/1129728
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/firewalld?expand=0&rev=85
2023-11-30 20:59:08 +00:00
Mohd Saquib
2f305546a6 Accepting request 1129725 from home:msaquib:branches:security:netfilter
- update to 2.0.2:
  * fix(policy): runtime dispatch update if *-zone=ANY (e8b9637)
  * fix(nm): release NM client after a timeout (d534f07)

OBS-URL: https://build.opensuse.org/request/show/1129725
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=156
2023-11-29 07:21:58 +00:00
a06de8084d Accepting request 1114901 from security:netfilter
OBS-URL: https://build.opensuse.org/request/show/1114901
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/firewalld?expand=0&rev=84
2023-10-25 16:01:56 +00:00
Mohd Saquib
696e343d98 Accepting request 1114900 from home:msaquib:branches:security:netfilter
- update to 2.0.1:
  * fix(cli): all --list-all-zones output identical (d30bc61)
  * fix(cli): properly show default zone attribute (ea8d9a8)
  * fix(cli): properly show active attribute for zones and policies (b202403)
  * fix(cli): --get-active-zones should include the default zone (dae9112)
  * fix(nftables): always flush main table on start (cd20981)
  * fix(runtimeToPermanent): deepcopy settings before mangling (9c53639)
  * docs: fix reference to lockdown-whitelist.xml in SYNOPSIS section (1c77205)
  * fix(firewall-config): escape markup stored in bindings store (c876fd0)
  * fix(tests): avoid deprecated assertRaisesRegexp for assertRaisesRegex (2935119)
  * fix(icmp): fix check_icmpv6_name() to use correct IPv6 names (af3c35b)
  * fix(ipset): fix configuring IP range for ipsets with nftables (6a050ec)
  * fix(ipset): fix configuring "timeout","maxelem" values for ipsets with nftables (7d3340c)
  * fix(core): fix exception while parsing invalid "tcp-mss-clamp" in policy (ff61209)
  * docs(policy): fix wrong documentation of in man firewalld.policy (21026d9)
- removed following patch:
  [- fix_list_all_zones_output.patch]

OBS-URL: https://build.opensuse.org/request/show/1114900
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=154
2023-10-03 06:46:08 +00:00
2e2f715c40 Accepting request 1113350 from security:netfilter
OBS-URL: https://build.opensuse.org/request/show/1113350
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/firewalld?expand=0&rev=83
2023-09-25 18:00:01 +00:00
Mohd Saquib
3aec93e256 Accepting request 1113321 from home:StevenK:branches:security:netfilter
- python3-dbus isn't correct either, it's python3-dbus-python.

OBS-URL: https://build.opensuse.org/request/show/1113321
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=152
2023-09-25 05:39:28 +00:00
Mohd Saquib
b4fe948076 Accepting request 1112692 from home:StevenK:branches:security:netfilter
- Correct Requires, python3-slip-dbus -> python3-dbus.

OBS-URL: https://build.opensuse.org/request/show/1112692
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=151
2023-09-21 07:54:25 +00:00
af6600100e Accepting request 1105433 from security:netfilter
OBS-URL: https://build.opensuse.org/request/show/1105433
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/firewalld?expand=0&rev=82
2023-08-28 15:11:07 +00:00
Mohd Saquib
2ec7c43968 Accepting request 1105432 from home:msaquib:branches:security:netfilter
- fix(cli): all --list-all-zones output identical (boo#1213609) 
  [+ fix_list_all_zones_output.patch]

OBS-URL: https://build.opensuse.org/request/show/1105432
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=149
2023-08-23 08:21:51 +00:00
7112b2be98 Accepting request 1095079 from security:netfilter
OBS-URL: https://build.opensuse.org/request/show/1095079
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/firewalld?expand=0&rev=81
2023-06-25 19:41:57 +00:00
Mohd Saquib
9bdb6d4a6f Accepting request 1095078 from home:msaquib:branches:security:netfilter
- update to version 2.0.0:
  * This is a major release. The major version is being bumped symbolically
    to reflect significant changes done in commit f4d2b80 ("fix(policy):
    disallow zone drifting"). It does not contain any deliberate breaking
    changes. 
  * Complete changelog:
    https://github.com/firewalld/firewalld/releases/tag/v2.0.0

OBS-URL: https://build.opensuse.org/request/show/1095078
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=147
2023-06-24 15:10:37 +00:00
9b0e817248 Accepting request 1093236 from security:netfilter
OBS-URL: https://build.opensuse.org/request/show/1093236
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/firewalld?expand=0&rev=80
2023-06-17 20:19:58 +00:00
Mohd Saquib
698d019100 Accepting request 1093235 from home:msaquib:branches:security:netfilter
- update to 1.3.3:
  * fix(reload): restore policy for old backend if it changed (de85849)
  * fix(io): rich: tcp mss: handle value=None (8016f10)
  * fix(firewall-config): rich: set destination address (f6641a9)
  * fix(policy): mixed IP families in ingress/egress (69ed4d6)

OBS-URL: https://build.opensuse.org/request/show/1093235
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=145
2023-06-15 07:53:32 +00:00
ac09a8ad80 Accepting request 1087468 from security:netfilter
OBS-URL: https://build.opensuse.org/request/show/1087468
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/firewalld?expand=0&rev=79
2023-05-17 08:52:48 +00:00
e945f49835 Accepting request 1087467 from home:gmbr3:Active
- Add firewalld-runstatedir.patch: change pid file location from
  /var/run to /run

OBS-URL: https://build.opensuse.org/request/show/1087467
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=143
2023-05-16 20:04:59 +00:00
df7827d38b Accepting request 1082734 from security:netfilter
OBS-URL: https://build.opensuse.org/request/show/1082734
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/firewalld?expand=0&rev=78
2023-04-26 15:24:22 +00:00
Mohd Saquib
b09aab8023 Accepting request 1082733 from home:msaquib:branches:security:netfilter
update to version 1.3.2

OBS-URL: https://build.opensuse.org/request/show/1082733
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=141
2023-04-25 11:30:15 +00:00
cdade9ab52 Accepting request 1080031 from security:netfilter
OBS-URL: https://build.opensuse.org/request/show/1080031
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/firewalld?expand=0&rev=77
2023-04-20 13:13:25 +00:00
Mohd Saquib
f978c8b5bd Accepting request 1080030 from home:msaquib:branches:security:netfilter
- update to 1.3.1:
  * fix(fw_nm): use IP interface names for connection lookup (18c8b81)
  * fix(fw_policy): raise exceptions (5ae9322)
  * fix(service): include: when used with rich rule (986f0be)
  * fix(nftables): rich: log: limit was not taking effect (0dc0575)
  * fix(build): rpm must build all as prerequisite (6896748)
  * fix: use error codes for FirewallError instances (370e5f2)
  * fix(ipset): chunk entries when restoring set (8a88855)
  * fix(applet): allows using KDE network connection editor (29c8ef6)

OBS-URL: https://build.opensuse.org/request/show/1080030
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=139
2023-04-18 03:33:16 +00:00
d7fc07ad76 Accepting request 1056418 from security:netfilter
OBS-URL: https://build.opensuse.org/request/show/1056418
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/firewalld?expand=0&rev=76
2023-01-07 16:16:22 +00:00
430d717ca5 Accepting request 1056417 from home:gmbr3:Active
- update to 1.3.0:
  * feat(service): add Warpinator
  * feat(dbus): reset to default settings
  * feat(service): add bareos-director bareos-filedaemon
    bareos-storage
  * feat(policy): masquerade: allow ingress zone to have interface
  * feat(service): add Nebula service
  * feat(service): add Ceph Prometheus exporter
  * feat(service): add OMG DDS service definition
  * feat(service): add llmnr-client service
  * feat(service): add ps2link service
  * feat(service): add definition for syncthing-relay

OBS-URL: https://build.opensuse.org/request/show/1056417
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=137
2023-01-06 15:16:49 +00:00
071b128396 Accepting request 1040347 from security:netfilter
OBS-URL: https://build.opensuse.org/request/show/1040347
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/firewalld?expand=0&rev=75
2022-12-07 16:34:01 +00:00
c577c7773e Accepting request 1040022 from home:dirkmueller:Factory
- update to 1.2.2:
  * fix(client): raise exception (40a473b)
  * fix(nftables): raise exception (a4b82cc)
  * fix(nftables): invalid conditional statement (e9ca0ad)
  * fix(check_config): use on disk firewalld_conf (d141d6d)
  * fix(service): llmnr: improve description (d233698)
  * Revert "feat(service): Add jellyfin service" (ea154d5)

OBS-URL: https://build.opensuse.org/request/show/1040022
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=135
2022-12-05 15:44:43 +00:00
2609841abf Accepting request 1033616 from security:netfilter
OBS-URL: https://build.opensuse.org/request/show/1033616
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/firewalld?expand=0&rev=74
2022-11-05 13:46:45 +00:00