From d4fe34c420c3dbf2b555c29d857fdf2dae197ff510d27059b138db902fcd8522 Mon Sep 17 00:00:00 2001
From: Takashi Iwai <tiwai@suse.com>
Date: Fri, 15 Oct 2021 16:19:20 +0000
Subject: [PATCH] Accepting request 925454 from
 home:jsegitz:branches:systemdhardening_protectclock

- Drop ProtectClock hardening, can cause issues if other device acceess is needed

OBS-URL: https://build.opensuse.org/request/show/925454
OBS-URL: https://build.opensuse.org/package/show/multimedia:libs/fluidsynth?expand=0&rev=95
---
 fluidsynth.changes              | 5 +++++
 fluidsynth.service              | 1 -
 harden_fluidsynth.service.patch | 3 +--
 3 files changed, 6 insertions(+), 3 deletions(-)

diff --git a/fluidsynth.changes b/fluidsynth.changes
index 8a66f6d..5e5f693 100644
--- a/fluidsynth.changes
+++ b/fluidsynth.changes
@@ -1,3 +1,8 @@
+-------------------------------------------------------------------
+Fri Oct 15 12:11:47 UTC 2021 - Johannes Segitz <jsegitz@suse.com>
+
+- Drop ProtectClock hardening, can cause issues if other device acceess is needed
+
 -------------------------------------------------------------------
 Tue Sep 14 09:59:43 UTC 2021 - Johannes Segitz <jsegitz@suse.com>
 
diff --git a/fluidsynth.service b/fluidsynth.service
index 20e44e9..cc59622 100644
--- a/fluidsynth.service
+++ b/fluidsynth.service
@@ -9,7 +9,6 @@ After=sound.target
 ProtectSystem=full
 ProtectHome=true
 ProtectHostname=true
-ProtectClock=true
 ProtectKernelTunables=true
 ProtectKernelModules=true
 ProtectKernelLogs=true
diff --git a/harden_fluidsynth.service.patch b/harden_fluidsynth.service.patch
index 444e669..cb520d2 100644
--- a/harden_fluidsynth.service.patch
+++ b/harden_fluidsynth.service.patch
@@ -2,7 +2,7 @@ Index: fluidsynth-2.2.2/fluidsynth.service.in
 ===================================================================
 --- fluidsynth-2.2.2.orig/fluidsynth.service.in
 +++ fluidsynth-2.2.2/fluidsynth.service.in
-@@ -4,6 +4,17 @@ Documentation=man:fluidsynth(1)
+@@ -4,6 +4,16 @@ Documentation=man:fluidsynth(1)
  After=sound.target
  
  [Service]
@@ -11,7 +11,6 @@ Index: fluidsynth-2.2.2/fluidsynth.service.in
 +ProtectSystem=full
 +ProtectHome=true
 +ProtectHostname=true
-+ProtectClock=true
 +ProtectKernelTunables=true
 +ProtectKernelModules=true
 +ProtectKernelLogs=true