Upcoming lirc package for openSUSE:Factory
This package will be submitted to openSUSE:Factory soon. All changes for the Factory package should get tested here first.
- Devel package for openSUSE:Factory
-
6
derived packages
- Links to openSUSE:Factory / lirc
- Download package
-
Checkout Package
osc -A https://api.opensuse.org checkout vdr/lirc && cd $_ - Create Badge
Refresh
Refresh
Source Files
| Filename | Size | Changed |
|---|---|---|
| _link | 0000000143 143 Bytes | |
| harden_irexec.service.patch | 0000000683 683 Bytes | |
| harden_lircd-uinput.service.patch | 0000000727 727 Bytes | |
| harden_lircd.service.patch | 0000000679 679 Bytes | |
| harden_lircmd.service.patch | 0000000734 734 Bytes | |
| project.diff | 0000002424 2.37 KB |
Revision 105 (latest revision is 119)
Stefan Seyfried (seife)
accepted
request 923297
from
Johannes Segitz (jsegitz)
(revision 105)
Automatic systemd hardening effort by the security team. This has not been tested. For details please see https://en.opensuse.org/openSUSE:Security_Features#Systemd_hardening_effort
Comments 3
Additions from harden_lircd.service.patch broke lircd for me. Now error "lircd-0.10.1[19958]: Error: unable to open '/dev/input/event8'" (example) is written periodically to journal logs. Proposed fix (that worked for me): add "DeviceAllow=char-input" to the lircd.service file
Background: Seems to be related to ProtectClock=true https://en.opensuse.org/openSUSE:Security_Features#Systemd_hardening_effort states: ProtectClock: 'true' (implies DeviceAllow=char-rtc r, which implies a restriction on all other devices, so breaks e.g. everything trying to access a disk device without further DeviceAllow= lines) So "/dev/input/eventX" is "other devices"...
The package's maintainer seems to be no longer active, so either file a bug for the security team, or, as you seem to have found the cause already, just submit a fix for the package ;-)
Submitted a fix for that in https://build.opensuse.org/request/show/931284 some days ago, currently still pending.