From ceec526574f2145ab638b7dfa0c697d8be6cfbba9cfabf918df0bc37a6baea54 Mon Sep 17 00:00:00 2001
From: Yan Gao <ygao@suse.com>
Date: Thu, 13 Mar 2014 10:26:07 +0000
Subject: [PATCH] - mainloop: Fixes use after free in process monitor code -
 lrmd: Cancel recurring operations before stop action is executed - lrmd:
 Merge duplicate recurring monitor operations - services: Do not allow
 duplicate recurring op entries - crmd: Ack pending operations that were
 cancelled due to rsc deletion - crm_mon: Add failures to --as-xml output -
 cib: Check if on-disk cib is corrupt in the separate on_disk_cib_corrupt()
 rather than in validate_on_disk_cib() (bnc#866618) - crmd: Do not start
 timers for already completed operations - acl: Read access must be explicitly
 granted - xml: Better move detection logic for xml nodes - cib: Do not
 disable cib disk writes if on-disk cib is corrupt (bnc#866618) - xml:
 Correctly calculate the adjusted offset of xml elements - crm_diff: Mirror
 how the cib operates for better testing - cib: Ingore patch failures if we
 already have their contents - cib: Prevent use-after-free when cleaning up
 after query operations - xml: Mark the parents of a partial replace as dirty
 - xml: Correctly enforce ACLs after a replace operation - cib: Do not try to
 use an empty value for CIB_shadow - crm_resource: Gracefully handle -EACCESS
 when querying the cib - xml: Correctly observe ACLs when creating filtered
 copies of xml documents - xml: Only test write permissions for attributes
 that are being changed - xml: Always allow new scaffolding - node with no
 attributes or only an id field - cib: Memory leaks caused by ACLs returning
 filtered copies - xml: Set flags to indicate when updates were rejected by an
 ACL - cib: Respect the CIB_user environment variable for ACLs - xml: Unpack
 and apply ACLs when tracking changes - cib: Implement CIB_file-mode ACLs for
 testing - remote: Enable migration support for baremetal connection resources
 by default - cibadmin: Allow priviliged clients to perform tasks as
 unpriviliged users - cibadmin: Remove dangerous commands that exposed
 unnecessary implementation internal details

OBS-URL: https://build.opensuse.org/package/show/network:ha-clustering:Factory/pacemaker?expand=0&rev=115
---
 _service                                     |  2 +-
 pacemaker-1.1.11+git20140303.ca8234d.tar.bz2 |  3 --
 pacemaker-1.1.11+git20140312.38c5972.tar.bz2 |  3 ++
 pacemaker.changes                            | 47 ++++++++++++++++++++
 pacemaker.spec                               |  2 +-
 5 files changed, 52 insertions(+), 5 deletions(-)
 delete mode 100644 pacemaker-1.1.11+git20140303.ca8234d.tar.bz2
 create mode 100644 pacemaker-1.1.11+git20140312.38c5972.tar.bz2

diff --git a/_service b/_service
index 6532f87..e02b2d3 100644
--- a/_service
+++ b/_service
@@ -11,7 +11,7 @@
     <param name="version">1.1.11</param>
 -->
     <param name="versionformat">1.1.11+git%cd.%h</param>
-    <param name="revision">ca8234daf2bbb2d0fd2fb47cdbb6667f892081bb</param>
+    <param name="revision">38c5972cd284ea6627b3309b619dad4d27442ab0</param>
   </service>
 
   <service name="recompress" mode="disabled">
diff --git a/pacemaker-1.1.11+git20140303.ca8234d.tar.bz2 b/pacemaker-1.1.11+git20140303.ca8234d.tar.bz2
deleted file mode 100644
index 1d61f15..0000000
--- a/pacemaker-1.1.11+git20140303.ca8234d.tar.bz2
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:236dbbd84ac635a1339439f65f4e92c38762c9fb6b66f26c9a4569208ba8e790
-size 9256516
diff --git a/pacemaker-1.1.11+git20140312.38c5972.tar.bz2 b/pacemaker-1.1.11+git20140312.38c5972.tar.bz2
new file mode 100644
index 0000000..87a48f9
--- /dev/null
+++ b/pacemaker-1.1.11+git20140312.38c5972.tar.bz2
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:fa8acee4eb22ba5ca6a8159284f89634c09db83c38d4fb6d296a58c6c1e59214
+size 9271047
diff --git a/pacemaker.changes b/pacemaker.changes
index 75ab871..e1055e4 100644
--- a/pacemaker.changes
+++ b/pacemaker.changes
@@ -1,3 +1,50 @@
+-------------------------------------------------------------------
+Thu Mar 13 09:38:46 UTC 2014 - ygao@suse.com
+
+- mainloop: Fixes use after free in process monitor code
+- lrmd: Cancel recurring operations before stop action is executed
+- lrmd: Merge duplicate recurring monitor operations
+- services: Do not allow duplicate recurring op entries
+- crmd: Ack pending operations that were cancelled due to rsc deletion
+- crm_mon: Add failures to --as-xml output
+- cib: Check if on-disk cib is corrupt in the separate on_disk_cib_corrupt() rather than in validate_on_disk_cib() (bnc#866618)
+- crmd: Do not start timers for already completed operations
+- acl: Read access must be explicitly granted
+- xml: Better move detection logic for xml nodes
+- cib: Do not disable cib disk writes if on-disk cib is corrupt (bnc#866618)
+- xml: Correctly calculate the adjusted offset of xml elements
+- crm_diff: Mirror how the cib operates for better testing
+- cib: Ingore patch failures if we already have their contents
+- cib: Prevent use-after-free when cleaning up after query operations
+- xml: Mark the parents of a partial replace as dirty
+- xml: Correctly enforce ACLs after a replace operation
+- cib: Do not try to use an empty value for CIB_shadow
+- crm_resource: Gracefully handle -EACCESS when querying the cib
+- xml: Correctly observe ACLs when creating filtered copies of xml documents
+- xml: Only test write permissions for attributes that are being changed
+- xml: Always allow new scaffolding - node with no attributes or only an id field
+- cib: Memory leaks caused by ACLs returning filtered copies
+- xml: Set flags to indicate when updates were rejected by an ACL
+- cib: Respect the CIB_user environment variable for ACLs
+- xml: Unpack and apply ACLs when tracking changes
+- cib: Implement CIB_file-mode ACLs for testing
+- remote: Enable migration support for baremetal connection resources by default
+- cibadmin: Allow priviliged clients to perform tasks as unpriviliged users
+- cibadmin: Remove dangerous commands that exposed unnecessary implementation internal details
+- cibadmin: Purge legacy command options deprecated since 2008 to make the short-forms available for new options
+- cib: Include a request with file-mode cib actions for the acl code to interrogate
+- cib: Switch over completely to the new ACL code
+- xml: Allow new objects to be created provided they subseqently match a configured ACL
+- cib: Use the new acl filtering functionality
+- xml: Support the creation of filtered copies based on ACLs
+- xml: Convert all ACLs to xpaths during unpack
+- xml: Add ACL flags for xpath selectors when tracking is enabled
+- cib: ACL improvements
+- cib: Simplify ACL handling for read-only cib queries
+- cib: Check ACLs prior to making the update instead of parsing the diff afterwards
+- cib: Default ACL support to on
+- Upstream version cs: 38c5972cd284ea6627b3309b619dad4d27442ab0
+
 -------------------------------------------------------------------
 Mon Mar  3 11:42:04 UTC 2014 - ygao@suse.com
 
diff --git a/pacemaker.spec b/pacemaker.spec
index 8823db3..a4d1fec 100644
--- a/pacemaker.spec
+++ b/pacemaker.spec
@@ -95,7 +95,7 @@ Name:           pacemaker
 Summary:        Scalable High-Availability cluster resource manager
 License:        GPL-2.0+ and LGPL-2.1+
 Group:          Productivity/Clustering/HA
-Version:        1.1.11+git20140303.ca8234d
+Version:        1.1.11+git20140312.38c5972
 Release:        0
 #Release:        %{pcmk_release}%{?dist}
 Url:            http://www.clusterlabs.org