pool/firewalld
SHA256
17
0
Fork 2
Code Issues Pull Requests 1 Activity
226 Commits 3 Branches 0 Tags
factory
Commit Graph

226 Commits

This Branch
This Branch
All Branches
Author SHA256 Message Date
Dominique Leuenberger
adf5f89af9 Accepting request 1334105 from security:netfilter 
OBS-URL: https://build.opensuse.org/request/show/1334105
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/firewalld?expand=0&rev=96
 2026-02-21 20:01:17 +00:00
Rahul Jain
30a5b6d9af - Update to New Version 2.3.2 
* doc(policy): add examples to man page 
* doc(policies): correct word is asymmetric 
* fix(doc): dbus: remove links to nonexistent IDs 
* fix(policy): allow forward ports with ingress zone and egress HOST 
* fix(server): load firewall rules before claiming dbus 
* fix(nftables): ipset: add entries from GLib loop when idle 
* fix(systemd): Requires dbus 
* fix(nftables): use current pkttype keywords 
* fix(systemd): use ProtectHome=tmpfs 
* fix(policy): allow-host-ipv6: allow MLD packets 
* fix(icmpv6): validate router codes 
* fix(icmpv6): validate neighbor codes 
* fix(icmpv6): validate redirect codes 
* docs(zone): update default zone target description to mention that ICMP is accepted 
* docs(zone): grammar fixes 
* docs(zone): mention that the ACCEPT target allows forwarding out of the zone 
* docs(zone): remove references to specific zone names in description of target attribute 
* docs: use US spelling of behavior 

- Update to New Version 2.3.0

-Update to New Version 2.3.0
 It also includes all bug fixes since v2.3.0. 
 * feat(policy): add disable flag 
 * feat(client): policy: add disable flag 
 * feat(cli): policy: add disable flag 
 * feat(policy): increase maximum name length to 128 
 * feat(cli): policy: support setting disable on sets 
 * feat(policy): set: add gateway

OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=182
 2026-02-20 06:03:39 +00:00
Dominique Leuenberger
d9144d4044 Accepting request 1297503 from security:netfilter 
OBS-URL: https://build.opensuse.org/request/show/1297503
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/firewalld?expand=0&rev=95
 2025-08-06 12:31:24 +00:00
Rahul Jain
a328d841ae Accepting request 1295498 from home:anag_factory:Rebuild0 
- Call autopoint when building against gettext-runtime 0.25 or
  newer. (boo#1246967)

OBS-URL: https://build.opensuse.org/request/show/1295498
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=180
 2025-08-04 13:17:16 +00:00
Dominique Leuenberger
4c2d8dce0b Accepting request 1295233 from security:netfilter 
- Adding Python multiversion support, will enable firewalld pkg
  to provide Python libraries compatible with all supported Python
  versions.

OBS-URL: https://build.opensuse.org/request/show/1295233
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/firewalld?expand=0&rev=94
 2025-07-24 16:34:41 +00:00
Ana Guerrero
fe7b2798d6 revert 1295097, will file a bug report instead 
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=178
 2025-07-23 08:44:30 +00:00
Ana Guerrero
c9b2e52150 Accepting request 1295097 from home:anag_factory:Rebuild0 
- Call autopoint to work with newer gettext-runtime.

OBS-URL: https://build.opensuse.org/request/show/1295097
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=177
 2025-07-23 07:38:49 +00:00
Rahul Jain
f97317880b Accepting request 1295198 from home:abrooks:branches:security:netfilter 
Revoke 1293236

OBS-URL: https://build.opensuse.org/request/show/1295198
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=176
 2025-07-23 06:19:29 +00:00
Rahul Jain
d72539bc5f Accepting request 1279496 from home:cfconrad:branches:security:netfilter 
- Adding Python multiversion support, will enable firewalld pkg
  to provide Python libraries compatible with all supported Python
  versions.

  This means for tumbleweed in time of this submit-request:
   python313-firewall (which provide python3-firewall)
   python312-firewall
   python311-firewall

  The specfile is compatible also with SLES/LEAP versions >=15-SP6.

OBS-URL: https://build.opensuse.org/request/show/1279496
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=175
 2025-07-16 08:08:57 +00:00
Rahul Jain
887fc2af77 Accepting request 1293236 from home:abrooks:branches:security:netfilter 
As part of PED-13228 we need to allow Cockpit through the firewall,
instead of just punching a hole through it in the %postinstall it
would be nicer to be more explicit about this intent by allowing it
in the default zone

Fedora do exactly this under their FedoraServer policy, I am open
to creating a new default named policy for this so we don't have
to rely on this patch. This was just done quickly to open a discussion
around this

- add 0003-add-cockpit-to-public-zone.patch to allow cockpit
  through the firewall by default, this comes as a requirement from
  jsc#PED-13228 as a nicer alternative to Cockpit containing a
  %postinstall to punch through the firewall

OBS-URL: https://build.opensuse.org/request/show/1293236
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=174
 2025-07-15 06:21:56 +00:00
Dominique Leuenberger
7b0ece0497 Accepting request 1273679 from security:netfilter 
OBS-URL: https://build.opensuse.org/request/show/1273679
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/firewalld?expand=0&rev=93
 2025-05-01 13:22:35 +00:00
Robert Frohl
d9f8127bd1 Accepting request 1273670 from home:alarrosa:branches:security:netfilter 
- Split the package to build the firewalld-rpmmacros subpackage in
  a _multibuild flavor so that we can build it in Factory/i586 by
  itself instead of building the whole package, which has more
  dependencies (like python-PyQt6).

OBS-URL: https://build.opensuse.org/request/show/1273670
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=172
 2025-04-30 12:30:52 +00:00
Ana Guerrero
6c0bd06f86 Accepting request 1269827 from security:netfilter 
OBS-URL: https://build.opensuse.org/request/show/1269827
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/firewalld?expand=0&rev=92
 2025-04-18 14:14:05 +00:00
Robert Frohl
e569057b10 Accepting request 1269452 from home:alarrosa:branches:security:netfilter 
- Require python3-PyQt6 in firewall-applet, since that's preferred
  over PyQt5.

OBS-URL: https://build.opensuse.org/request/show/1269452
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=170
 2025-04-16 08:21:57 +00:00
Ana Guerrero
ecade10e99 Accepting request 1239597 from security:netfilter 
OBS-URL: https://build.opensuse.org/request/show/1239597
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/firewalld?expand=0&rev=91
 2025-01-23 17:01:34 +00:00
Callum Farmer
a60acd138c Accepting request 1239596 from home:dimstar:Factory 
- Drop rcFOO symlinks for CODE16 (PED-266).

OBS-URL: https://build.opensuse.org/request/show/1239596
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=168
 2025-01-22 15:59:40 +00:00
Ana Guerrero
7b4104f90b Accepting request 1183143 from security:netfilter 
OBS-URL: https://build.opensuse.org/request/show/1183143
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/firewalld?expand=0&rev=90
 2024-06-28 13:46:36 +00:00
OBS User buildservice-autocommit
8c048f9049 auto commit by copy to link target 
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=167
 2024-06-28 13:46:36 +00:00
OBS User buildservice-autocommit
b64c52b5eb Updating link to change in openSUSE:Factory/firewalld revision 90 
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=24ccace324433bf535594eb60b7cc607
 2024-06-28 13:46:36 +00:00
Robert Frohl
5f26f47f53 Accepting request 1180925 from home:pgajdos 
- remove dependency on /usr/bin/python3 using
  %python3_fix_shebang macro, [bsc#1212476]

OBS-URL: https://build.opensuse.org/request/show/1180925
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=166
 2024-06-25 10:57:26 +00:00
Ana Guerrero
5efaff9726 Accepting request 1177113 from security:netfilter 
OBS-URL: https://build.opensuse.org/request/show/1177113
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/firewalld?expand=0&rev=89
 2024-05-29 17:35:08 +00:00
Robert Frohl
4d1d9492b0 Accepting request 1176756 from home:dimstar:Factory 
- Keep English 'translations' (en_US, en_GB) in the main package:
  do not force the lang package on plain English systems.

OBS-URL: https://build.opensuse.org/request/show/1176756
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=164
 2024-05-27 12:00:10 +00:00
Ana Guerrero
b2416ed27f Accepting request 1175577 from security:netfilter 
OBS-URL: https://build.opensuse.org/request/show/1175577
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/firewalld?expand=0&rev=88
 2024-05-22 19:29:02 +00:00
Robert Frohl
dbf46e6f77 Accepting request 1172979 from home:dirkmueller:Factory 
- update to 2.1.2:
  * fix(policy): allow forward ports w/ to-addr for egress-
    zone=HOST
  * fix(rich): fix range check for large rule limit
  * fix(tests): fix skip detection in fw-in-container environment

  * fix(nm): release NM client after a timeout (d534f07)
- python3-dbus isn't correct either, it's python3-dbus-python.
- Correct Requires, python3-slip-dbus -> python3-dbus.
- fix(cli): all --list-all-zones output identical (boo#1213609)
    changes.
    https://github.com/firewalld/firewalld/releases/tag/v2.0.0
- Always own %_modprobedir (bsc#1196275, jsc#SLE-20639)
  - ipset, ebtables and iptables are purely optional and deprecated,
- Replace references to /var/adm/fillup-templates with new
  * 0001-firewall.core.fw_ipset-get_ipset-may-not-ckeck-if-se.patch
  * 0001-firewall.core.fw_ipset-get_ipset-may-not-ckeck-if-se.patch

OBS-URL: https://build.opensuse.org/request/show/1172979
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=162
 2024-05-21 13:11:06 +00:00
Ana Guerrero
16e29819eb Accepting request 1142601 from security:netfilter 
OBS-URL: https://build.opensuse.org/request/show/1142601
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/firewalld?expand=0&rev=87
 2024-01-30 17:24:17 +00:00
Mohd Saquib
eea4b868ea Accepting request 1142599 from home:msaquib:branches:security:netfilter 
- update to 2.1.1:
  * fix(offline-cmd): use family when creating ipset (64f78a9)
  * fix(firewall-config): allow rich rule forwarded ports to be logged (d46ea62)
  * fix(ipXtables): log forwarded ports only (07dc202)
  * fix(nftables): log forwarded ports (5c26b73)
  * fix(io.ipset): raise exception if entries exceed limit (a2da5fb)
  * fix(policy): ipXtables: multiple policies using same zone (b6f2f09)
  * fix(policy): dispatch update for active policies (7f6f0e2)

OBS-URL: https://build.opensuse.org/request/show/1142599
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=160
 2024-01-29 17:11:03 +00:00
Ana Guerrero
40c428a44b Accepting request 1137494 from security:netfilter 
OBS-URL: https://build.opensuse.org/request/show/1137494
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/firewalld?expand=0&rev=86
 2024-01-09 19:48:31 +00:00
Mohd Saquib
104b7d14da Accepting request 1137493 from home:msaquib:branches:security:netfilter 
- update to 2.1.0:
  * eat(service): add DNS over QUIC (DoQ) Service (5130430)
  * feat(icmp): add ICMPv6 Multicast Listener Discovery (MLD) types (dd88bbf)
  * feat(fw): add ReloadPolicy option in firewalld.conf (0019371)
  * feat(service): add submission service (tcp 587) (d6a9561)
  * feat(service): Add alvr (3a92358)
  * feat(service): add vrrp (d62fc8d)
  [* Renamed patch 0002-Disable-FlushAllOnReload-option.patch to
     0001-Disable-FlushAllOnReload-option.patch
  [* Renamed patch firewalld-runstatedir.patch to 0002-firewalld-runstatedir.patch]

OBS-URL: https://build.opensuse.org/request/show/1137493
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=158
 2024-01-08 08:29:12 +00:00
Ana Guerrero
a64ae12c11 Accepting request 1129728 from security:netfilter 
OBS-URL: https://build.opensuse.org/request/show/1129728
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/firewalld?expand=0&rev=85
 2023-11-30 20:59:08 +00:00
Mohd Saquib
841d6386cc Accepting request 1129725 from home:msaquib:branches:security:netfilter 
- update to 2.0.2:
  * fix(policy): runtime dispatch update if *-zone=ANY (e8b9637)
  * fix(nm): release NM client after a timeout (d534f07)

OBS-URL: https://build.opensuse.org/request/show/1129725
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=156
 2023-11-29 07:21:58 +00:00
Ana Guerrero
84030e9eca Accepting request 1114901 from security:netfilter 
OBS-URL: https://build.opensuse.org/request/show/1114901
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/firewalld?expand=0&rev=84
 2023-10-25 16:01:56 +00:00
Mohd Saquib
e8f3e99355 Accepting request 1114900 from home:msaquib:branches:security:netfilter 
- update to 2.0.1:
  * fix(cli): all --list-all-zones output identical (d30bc61)
  * fix(cli): properly show default zone attribute (ea8d9a8)
  * fix(cli): properly show active attribute for zones and policies (b202403)
  * fix(cli): --get-active-zones should include the default zone (dae9112)
  * fix(nftables): always flush main table on start (cd20981)
  * fix(runtimeToPermanent): deepcopy settings before mangling (9c53639)
  * docs: fix reference to lockdown-whitelist.xml in SYNOPSIS section (1c77205)
  * fix(firewall-config): escape markup stored in bindings store (c876fd0)
  * fix(tests): avoid deprecated assertRaisesRegexp for assertRaisesRegex (2935119)
  * fix(icmp): fix check_icmpv6_name() to use correct IPv6 names (af3c35b)
  * fix(ipset): fix configuring IP range for ipsets with nftables (6a050ec)
  * fix(ipset): fix configuring "timeout","maxelem" values for ipsets with nftables (7d3340c)
  * fix(core): fix exception while parsing invalid "tcp-mss-clamp" in policy (ff61209)
  * docs(policy): fix wrong documentation of in man firewalld.policy (21026d9)
- removed following patch:
  [- fix_list_all_zones_output.patch]

OBS-URL: https://build.opensuse.org/request/show/1114900
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=154
 2023-10-03 06:46:08 +00:00
Ana Guerrero
279222b228 Accepting request 1113350 from security:netfilter 
OBS-URL: https://build.opensuse.org/request/show/1113350
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/firewalld?expand=0&rev=83
 2023-09-25 18:00:01 +00:00
Mohd Saquib
c6d2675ba9 Accepting request 1113321 from home:StevenK:branches:security:netfilter 
- python3-dbus isn't correct either, it's python3-dbus-python.

OBS-URL: https://build.opensuse.org/request/show/1113321
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=152
 2023-09-25 05:39:28 +00:00
Mohd Saquib
e83f04a967 Accepting request 1112692 from home:StevenK:branches:security:netfilter 
- Correct Requires, python3-slip-dbus -> python3-dbus.

OBS-URL: https://build.opensuse.org/request/show/1112692
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=151
 2023-09-21 07:54:25 +00:00
Ana Guerrero
21669d38e8 Accepting request 1105433 from security:netfilter 
OBS-URL: https://build.opensuse.org/request/show/1105433
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/firewalld?expand=0&rev=82
 2023-08-28 15:11:07 +00:00
Mohd Saquib
cae4f43a5d Accepting request 1105432 from home:msaquib:branches:security:netfilter 
- fix(cli): all --list-all-zones output identical (boo#1213609) 
  [+ fix_list_all_zones_output.patch]

OBS-URL: https://build.opensuse.org/request/show/1105432
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=149
 2023-08-23 08:21:51 +00:00
Dominique Leuenberger
f0a3ac4bad Accepting request 1095079 from security:netfilter 
OBS-URL: https://build.opensuse.org/request/show/1095079
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/firewalld?expand=0&rev=81
 2023-06-25 19:41:57 +00:00
Mohd Saquib
1bbbf56acb Accepting request 1095078 from home:msaquib:branches:security:netfilter 
- update to version 2.0.0:
  * This is a major release. The major version is being bumped symbolically
    to reflect significant changes done in commit f4d2b80 ("fix(policy):
    disallow zone drifting"). It does not contain any deliberate breaking
    changes. 
  * Complete changelog:
    https://github.com/firewalld/firewalld/releases/tag/v2.0.0

OBS-URL: https://build.opensuse.org/request/show/1095078
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=147
 2023-06-24 15:10:37 +00:00
Dominique Leuenberger
15bc286480 Accepting request 1093236 from security:netfilter 
OBS-URL: https://build.opensuse.org/request/show/1093236
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/firewalld?expand=0&rev=80
 2023-06-17 20:19:58 +00:00
Mohd Saquib
71387257f1 Accepting request 1093235 from home:msaquib:branches:security:netfilter 
- update to 1.3.3:
  * fix(reload): restore policy for old backend if it changed (de85849)
  * fix(io): rich: tcp mss: handle value=None (8016f10)
  * fix(firewall-config): rich: set destination address (f6641a9)
  * fix(policy): mixed IP families in ingress/egress (69ed4d6)

OBS-URL: https://build.opensuse.org/request/show/1093235
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=145
 2023-06-15 07:53:32 +00:00
Dominique Leuenberger
e5780aa8d0 Accepting request 1087468 from security:netfilter 
OBS-URL: https://build.opensuse.org/request/show/1087468
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/firewalld?expand=0&rev=79
 2023-05-17 08:52:48 +00:00
Callum Farmer
98aa35ae8d Accepting request 1087467 from home:gmbr3:Active 
- Add firewalld-runstatedir.patch: change pid file location from
  /var/run to /run

OBS-URL: https://build.opensuse.org/request/show/1087467
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=143
 2023-05-16 20:04:59 +00:00
Dominique Leuenberger
54b35127c1 Accepting request 1082734 from security:netfilter 
OBS-URL: https://build.opensuse.org/request/show/1082734
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/firewalld?expand=0&rev=78
 2023-04-26 15:24:22 +00:00
Mohd Saquib
4cfdf7984a Accepting request 1082733 from home:msaquib:branches:security:netfilter 
update to version 1.3.2

OBS-URL: https://build.opensuse.org/request/show/1082733
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=141
 2023-04-25 11:30:15 +00:00
Dominique Leuenberger
37de7ee3b1 Accepting request 1080031 from security:netfilter 
OBS-URL: https://build.opensuse.org/request/show/1080031
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/firewalld?expand=0&rev=77
 2023-04-20 13:13:25 +00:00
Mohd Saquib
b22353a51c Accepting request 1080030 from home:msaquib:branches:security:netfilter 
- update to 1.3.1:
  * fix(fw_nm): use IP interface names for connection lookup (18c8b81)
  * fix(fw_policy): raise exceptions (5ae9322)
  * fix(service): include: when used with rich rule (986f0be)
  * fix(nftables): rich: log: limit was not taking effect (0dc0575)
  * fix(build): rpm must build all as prerequisite (6896748)
  * fix: use error codes for FirewallError instances (370e5f2)
  * fix(ipset): chunk entries when restoring set (8a88855)
  * fix(applet): allows using KDE network connection editor (29c8ef6)

OBS-URL: https://build.opensuse.org/request/show/1080030
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=139
 2023-04-18 03:33:16 +00:00
Dominique Leuenberger
d343b4b4e5 Accepting request 1056418 from security:netfilter 
OBS-URL: https://build.opensuse.org/request/show/1056418
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/firewalld?expand=0&rev=76
 2023-01-07 16:16:22 +00:00
Callum Farmer
d02ab9f7b6 Accepting request 1056417 from home:gmbr3:Active 
- update to 1.3.0:
  * feat(service): add Warpinator
  * feat(dbus): reset to default settings
  * feat(service): add bareos-director bareos-filedaemon
    bareos-storage
  * feat(policy): masquerade: allow ingress zone to have interface
  * feat(service): add Nebula service
  * feat(service): add Ceph Prometheus exporter
  * feat(service): add OMG DDS service definition
  * feat(service): add llmnr-client service
  * feat(service): add ps2link service
  * feat(service): add definition for syncthing-relay

OBS-URL: https://build.opensuse.org/request/show/1056417
OBS-URL: https://build.opensuse.org/package/show/security:netfilter/firewalld?expand=0&rev=137
 2023-01-06 15:16:49 +00:00
Dominique Leuenberger
85698b9e26 Accepting request 1040347 from security:netfilter 
OBS-URL: https://build.opensuse.org/request/show/1040347
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/firewalld?expand=0&rev=75
 2022-12-07 16:34:01 +00:00