From 7e9dc6bb50e5cd4a0a7ade20b3ab939f60570d27daa0ba6714ad1eca3b8fa5e7 Mon Sep 17 00:00:00 2001
From: Franck Bui <fbui@suse.com>
Date: Fri, 16 Nov 2018 12:20:42 +0000
Subject: [PATCH] Accepting request 649551 from
 home:fbui:systemd:openSUSE-Factory

- Import commit 69f9f79e1b03e3d23df25b61cbcc9304af3e358f (bsc#1080919 CVE-2018-6954)
  f3615ce49 tmpfiles: don't adjust qgroups on existing subvolumes (bsc#1093753)
  7165e92f4 tmpfiles: use fd_get_path() even less excessively
  c2c531c1d test: make TEST-22 easier to debug, by outputting to /dev/console
  621b78317 test: don't use "nobody:nogroup" for tests
  1f9c7acad tmpfiles: return correct error variable after fd_reopen()
  2236280c1 tmpfiles: reindent one comment less weirdly
  f6bdfb889 tmpfiles: use correct error variable
  bc75127cd tmpfiles: clarify that we ignore file attribute setting errors
  621c8b1fe tmpfiles: add log message where we previously failed silently
  bc9229630 tmpfiles: use fd_get_path() less excessively
  5a1106039 tmpfiles: add more tests
  c974086cc tmpfiles: don't follow unsafe transitions in path_set_*()
  e64a510eb fs-util: add new CHASE_NOFOLLOW flag to chase_symlinks()
  7480154d0 tmpfiles: make create_fifo() safe
  eb890962c fs-util: introduce mkfifoat_atomic() helper
  653bb81af fileio: make tempfn_random_child() accept empty string as path
  2b1e12bfe tmpfiles: introduce create_fifo()
  6dd80f289 tmpfiles: introduce empty_directory()
  f2c137edf tmpfiles: introduce create_directory() and create_subvolume() and make them safe
  6a76f6dfb basic/stat-util: introduce is_dir_fd()
  38a7f2e81 btrfs-util: unfuck tmpfiles' subvol creation
  26e19b6fe btrfs-util: introduce btrfs_subvol_make_fd()
  5fb5bdf5d basic/label: introduce mkdirat_label()/mkdirat_errno_wrapper() helpers
  390b767da selinux: introduce mac_selinux_create_file_prepare_at()
  0f72fadba smack: introduce mac_smack_fix_at()
  f2838154b tmpfiles: introduce create_directory_or_subvolume()
  2de697fb8 tmpfiles: make create_device() safe
  558c5fec7 tmpfiles: introduce create_device()
  dee986b1d tmpfiles: make copy_files() safe

OBS-URL: https://build.opensuse.org/request/show/649551
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1047
---
 systemd-mini.changes                    | 43 +++++++++++++++++++++++++
 systemd-mini.spec                       |  2 +-
 systemd-v239+suse.125.g69f9f79e1.tar.xz |  3 ++
 systemd-v239+suse.87.gf39674d6d.tar.xz  |  3 --
 systemd.changes                         | 43 +++++++++++++++++++++++++
 systemd.spec                            |  2 +-
 6 files changed, 91 insertions(+), 5 deletions(-)
 create mode 100644 systemd-v239+suse.125.g69f9f79e1.tar.xz
 delete mode 100644 systemd-v239+suse.87.gf39674d6d.tar.xz

diff --git a/systemd-mini.changes b/systemd-mini.changes
index e0afa6ec..7e1e9ec4 100644
--- a/systemd-mini.changes
+++ b/systemd-mini.changes
@@ -1,3 +1,46 @@
+-------------------------------------------------------------------
+Fri Nov 16 10:31:42 UTC 2018 - Franck Bui <fbui@suse.com>
+
+- Import commit 69f9f79e1b03e3d23df25b61cbcc9304af3e358f (bsc#1080919 CVE-2018-6954)
+
+  f3615ce49 tmpfiles: don't adjust qgroups on existing subvolumes (bsc#1093753)
+  7165e92f4 tmpfiles: use fd_get_path() even less excessively
+  c2c531c1d test: make TEST-22 easier to debug, by outputting to /dev/console
+  621b78317 test: don't use "nobody:nogroup" for tests
+  1f9c7acad tmpfiles: return correct error variable after fd_reopen()
+  2236280c1 tmpfiles: reindent one comment less weirdly
+  f6bdfb889 tmpfiles: use correct error variable
+  bc75127cd tmpfiles: clarify that we ignore file attribute setting errors
+  621c8b1fe tmpfiles: add log message where we previously failed silently
+  bc9229630 tmpfiles: use fd_get_path() less excessively
+  5a1106039 tmpfiles: add more tests
+  c974086cc tmpfiles: don't follow unsafe transitions in path_set_*()
+  e64a510eb fs-util: add new CHASE_NOFOLLOW flag to chase_symlinks()
+  7480154d0 tmpfiles: make create_fifo() safe
+  eb890962c fs-util: introduce mkfifoat_atomic() helper
+  653bb81af fileio: make tempfn_random_child() accept empty string as path
+  2b1e12bfe tmpfiles: introduce create_fifo()
+  6dd80f289 tmpfiles: introduce empty_directory()
+  f2c137edf tmpfiles: introduce create_directory() and create_subvolume() and make them safe
+  6a76f6dfb basic/stat-util: introduce is_dir_fd()
+  38a7f2e81 btrfs-util: unfuck tmpfiles' subvol creation
+  26e19b6fe btrfs-util: introduce btrfs_subvol_make_fd()
+  5fb5bdf5d basic/label: introduce mkdirat_label()/mkdirat_errno_wrapper() helpers
+  390b767da selinux: introduce mac_selinux_create_file_prepare_at()
+  0f72fadba smack: introduce mac_smack_fix_at()
+  f2838154b tmpfiles: introduce create_directory_or_subvolume()
+  2de697fb8 tmpfiles: make create_device() safe
+  558c5fec7 tmpfiles: introduce create_device()
+  dee986b1d tmpfiles: make copy_files() safe
+  cacb14d3f tmpfiles: introduce copy_files() routine
+  81c85ce17 tmpfiles: make write_one_file() safe
+  9ec6b92ab tmpfiles: make truncate_file() safe
+  8dde36e03 tmpfiles: introduce truncate_file() which deals with 'F' exclusively
+  481134a93 tmpfiles: introduce create_file() which deals with 'f'/'F' exclusively
+  057861560 tmpfiles: make the stat struct parameter in fd_set_*() optional
+  f37caffda tmpfiles: stat file in item_do() rather than in its callers
+  86f1362d4 tmpfiles: set only default acls to folders #9545 (#9599)
+
 -------------------------------------------------------------------
 Fri Nov  9 10:37:21 UTC 2018 - Franck Bui <fbui@suse.com>
 
diff --git a/systemd-mini.spec b/systemd-mini.spec
index 3d23ede6..97246174 100644
--- a/systemd-mini.spec
+++ b/systemd-mini.spec
@@ -26,7 +26,7 @@
 ##### WARNING: please do not edit this auto generated spec file. Use the systemd.spec! #####
 %define mini -mini
 %define min_kernel_version 4.5
-%define suse_version +suse.87.gf39674d6d
+%define suse_version +suse.125.g69f9f79e1
 
 %bcond_with     gnuefi
 %if 0%{?bootstrap}
diff --git a/systemd-v239+suse.125.g69f9f79e1.tar.xz b/systemd-v239+suse.125.g69f9f79e1.tar.xz
new file mode 100644
index 00000000..63374478
--- /dev/null
+++ b/systemd-v239+suse.125.g69f9f79e1.tar.xz
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:60a1d726a705d621a543e255ec20b8b5698c9b9e78ea23387bc60d4eef6416fd
+size 4858072
diff --git a/systemd-v239+suse.87.gf39674d6d.tar.xz b/systemd-v239+suse.87.gf39674d6d.tar.xz
deleted file mode 100644
index f0de2fe3..00000000
--- a/systemd-v239+suse.87.gf39674d6d.tar.xz
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:f62d64a099b2cb1fec5146914220d6396777b06c6d5075a479b1dfc22838c2c5
-size 4854560
diff --git a/systemd.changes b/systemd.changes
index e0afa6ec..7e1e9ec4 100644
--- a/systemd.changes
+++ b/systemd.changes
@@ -1,3 +1,46 @@
+-------------------------------------------------------------------
+Fri Nov 16 10:31:42 UTC 2018 - Franck Bui <fbui@suse.com>
+
+- Import commit 69f9f79e1b03e3d23df25b61cbcc9304af3e358f (bsc#1080919 CVE-2018-6954)
+
+  f3615ce49 tmpfiles: don't adjust qgroups on existing subvolumes (bsc#1093753)
+  7165e92f4 tmpfiles: use fd_get_path() even less excessively
+  c2c531c1d test: make TEST-22 easier to debug, by outputting to /dev/console
+  621b78317 test: don't use "nobody:nogroup" for tests
+  1f9c7acad tmpfiles: return correct error variable after fd_reopen()
+  2236280c1 tmpfiles: reindent one comment less weirdly
+  f6bdfb889 tmpfiles: use correct error variable
+  bc75127cd tmpfiles: clarify that we ignore file attribute setting errors
+  621c8b1fe tmpfiles: add log message where we previously failed silently
+  bc9229630 tmpfiles: use fd_get_path() less excessively
+  5a1106039 tmpfiles: add more tests
+  c974086cc tmpfiles: don't follow unsafe transitions in path_set_*()
+  e64a510eb fs-util: add new CHASE_NOFOLLOW flag to chase_symlinks()
+  7480154d0 tmpfiles: make create_fifo() safe
+  eb890962c fs-util: introduce mkfifoat_atomic() helper
+  653bb81af fileio: make tempfn_random_child() accept empty string as path
+  2b1e12bfe tmpfiles: introduce create_fifo()
+  6dd80f289 tmpfiles: introduce empty_directory()
+  f2c137edf tmpfiles: introduce create_directory() and create_subvolume() and make them safe
+  6a76f6dfb basic/stat-util: introduce is_dir_fd()
+  38a7f2e81 btrfs-util: unfuck tmpfiles' subvol creation
+  26e19b6fe btrfs-util: introduce btrfs_subvol_make_fd()
+  5fb5bdf5d basic/label: introduce mkdirat_label()/mkdirat_errno_wrapper() helpers
+  390b767da selinux: introduce mac_selinux_create_file_prepare_at()
+  0f72fadba smack: introduce mac_smack_fix_at()
+  f2838154b tmpfiles: introduce create_directory_or_subvolume()
+  2de697fb8 tmpfiles: make create_device() safe
+  558c5fec7 tmpfiles: introduce create_device()
+  dee986b1d tmpfiles: make copy_files() safe
+  cacb14d3f tmpfiles: introduce copy_files() routine
+  81c85ce17 tmpfiles: make write_one_file() safe
+  9ec6b92ab tmpfiles: make truncate_file() safe
+  8dde36e03 tmpfiles: introduce truncate_file() which deals with 'F' exclusively
+  481134a93 tmpfiles: introduce create_file() which deals with 'f'/'F' exclusively
+  057861560 tmpfiles: make the stat struct parameter in fd_set_*() optional
+  f37caffda tmpfiles: stat file in item_do() rather than in its callers
+  86f1362d4 tmpfiles: set only default acls to folders #9545 (#9599)
+
 -------------------------------------------------------------------
 Fri Nov  9 10:37:21 UTC 2018 - Franck Bui <fbui@suse.com>
 
diff --git a/systemd.spec b/systemd.spec
index 9beae4f4..960a434e 100644
--- a/systemd.spec
+++ b/systemd.spec
@@ -24,7 +24,7 @@
 %define bootstrap 0
 %define mini %nil
 %define min_kernel_version 4.5
-%define suse_version +suse.87.gf39674d6d
+%define suse_version +suse.125.g69f9f79e1
 
 %bcond_with     gnuefi
 %if 0%{?bootstrap}