From 8b49674631c4bd1dee3e35b9f978c54dae923184 Mon Sep 17 00:00:00 2001 From: Zoltan Fridrich Date: Wed, 9 Feb 2022 17:02:22 +0100 Subject: [PATCH] Disable live config reload Resolves: rhbz#2042532 Signed-off-by: Zoltan Fridrich --- gnutls-3.7.3-disable-config-reload.patch | 19 +++++++++++++++++++ gnutls.spec | 6 +++++- 2 files changed, 24 insertions(+), 1 deletion(-) create mode 100644 gnutls-3.7.3-disable-config-reload.patch diff --git a/gnutls-3.7.3-disable-config-reload.patch b/gnutls-3.7.3-disable-config-reload.patch new file mode 100644 index 0000000..2fc5c35 --- /dev/null +++ b/gnutls-3.7.3-disable-config-reload.patch @@ -0,0 +1,19 @@ +diff --color -ru a/lib/priority.c b/lib/priority.c +--- a/lib/priority.c 2022-01-14 07:53:21.000000000 +0100 ++++ b/lib/priority.c 2022-02-15 09:31:36.388485784 +0100 +@@ -2030,15 +2030,6 @@ + additional++; + } + +- /* Always try to refresh the cached data, to allow it to be +- * updated without restarting all applications. +- */ +- ret = _gnutls_update_system_priorities(); +- if (ret < 0) { +- _gnutls_debug_log("failed to update system priorities: %s\n", +- gnutls_strerror(ret)); +- } +- + do { + ss_next = strchr(ss, ','); + if (ss_next) { diff --git a/gnutls.spec b/gnutls.spec index 6cc7041..403e5b6 100644 --- a/gnutls.spec +++ b/gnutls.spec @@ -1,9 +1,10 @@ Version: 3.7.3 -Release: 2%{?dist} +Release: 3%{?dist} Patch1: gnutls-3.6.7-no-now-guile.patch Patch2: gnutls-3.2.7-rpath.patch Patch3: gnutls-3.7.2-enable-intel-cet.patch Patch4: gnutls-3.7.2-no-explicit-init.patch +Patch5: gnutls-3.7.3-disable-config-reload.patch %bcond_with bootstrap %bcond_without dane %if 0%{?rhel} @@ -309,6 +310,9 @@ make check %{?_smp_mflags} GNUTLS_SYSTEM_PRIORITY_FILE=/dev/null %endif %changelog +* Tue Feb 15 2022 Zoltan Fridrich - 3.7.3-3 +- Disable config reload in order to not break allowlisting (#2042532) + * Wed Feb 2 2022 Daiki Ueno - 3.7.3-2 - Build with TPM2 support, patch from Alexander Sosedkin (#2033220)