-------------------------------------------------------------------------------- Fedora EPEL Update Notification FEDORA-EPEL-2025-746273e909 2025-01-31 01:16:48.532647+00:00 --------------------------------------------------------------------------------
Name : snapd Product : Fedora EPEL 8 Version : 2.67 Release : 0.el8 URL : https://github.com/snapcore/snapd Summary : A transactional software package manager Description : Snappy is a modern, cross-distribution, transactional package manager designed for working with self-contained, immutable packages.
-------------------------------------------------------------------------------- Update Information:
The changelog date and author have been modified to maintain linearity. Drop 0001-data-selinux-remove-timedatex.patch - applied upstream. New upstream release 2.67 AppArmor prompting (experimental): allow overlapping rules Registry view (experimental): Changes to registry data (from both users and snaps) can be validated and saved by custodian snaps Registry view (experimental): Support 'snapctl get --pristine' to read the registry data excluding staged transaction changes Registry view (experimental): Put registry commands behind experimental feature flag Components: Make modules shipped/created by kernel-modules components available right after reboot Components: Add tab completion for local component files Components: Allow installing snaps and components from local files jointly on the CLI Components: Allow 'snapctl model' command for gadget and kernel snaps Components: Add 'snap components' command Components: Bug fixes eMMC gadget updates (WIP): add syntax support in gadget.yaml for eMMC schema Support for ephemeral recovery mode on hybrid systems Support for dm-verity options in snap-bootstrap Support for overlayfs options and allow empty what argument for tmpfs Enable ubuntu-image to determine the size of the disk image to create Expose 'snap debug' commands 'validate-seed' and 'seeding' Add debug API option to use dedicated snap socket /run/snapd- snap.socket Hide experimental features that are no longer required (accepted/rejected) Mount ubuntu-save partition with no{exec,dev,suid} at install, run and factory-reset Improve memory controller support with cgroup v2 Support ssh socket activation configurations (used by ubuntu 22.10+) Fix generation of AppArmor profile with incorrect revision during multi snap refresh Fix refresh app awareness related deadlock edge case Fix not caching delta updated snap download Fix passing non root uid, guid to initial tmpfs mount Fix ignoring snaps in try mode when amending Fix reloading of service activation units to avoid systemd errors Fix snapd snap FIPS build on Launchpad to use Advantage Pro FIPS updates PPA Make killing of snap apps best effort to avoid possibility of malicious failure loop Alleviate impact of auto-refresh failure loop with progressive delay Dropped timedatex in selinux-policy to avoid runtime issue Fix missing syscalls in seccomp profile Modify AppArmor template to allow using SNAP_REEXEC on arch systems Modify AppArmor template to allow using vim.tiny (available in base snaps) Modify AppArmor template to add read-access to debian_version Modify AppArmor template to allow owner to read @{PROC}/@{pid}/sessionid {common,personal,system}-files interface: prohibit trailing @ in filepaths {desktop,shutdown,system-observe,upower-observe} interface: improve for Ubuntu Core Desktop custom-device interface: allow @ in custom-device filepaths desktop interface: improve launch entry and systray integration with session desktop-legacy interface: allow DBus access to com.canonical.dbusmenu fwupd interface: allow access to nvmem for thunderbolt plugin mpris interface: add plasmashell as label mount-control interface: add support for nfs mounts network-{control,manager} interface: add missing dbus link rules network-manager-observe interface: add getDevices methods opengl interface: add Kernel Fusion Driver access to opengl screen-inhibit-control interface: improve screen inhibit control for use on core udisks2 interface: allow ping of the UDisks2 service u2f-devices interface: add Nitrokey Passkey -------------------------------------------------------------------------------- ChangeLog:
* Wed Jan 22 2025 Zygmunt Krynicki zygmunt.krynicki@canonical.com - The changelog date and author have been modified to maintain linearity. - Drop 0001-data-selinux-remove-timedatex.patch - applied upstream. - New upstream release 2.67 - AppArmor prompting (experimental): allow overlapping rules - Registry view (experimental): Changes to registry data (from both users and snaps) can be validated and saved by custodian snaps - Registry view (experimental): Support 'snapctl get --pristine' to read the registry data excluding staged transaction changes - Registry view (experimental): Put registry commands behind experimental feature flag - Components: Make modules shipped/created by kernel-modules components available right after reboot - Components: Add tab completion for local component files - Components: Allow installing snaps and components from local files jointly on the CLI - Components: Allow 'snapctl model' command for gadget and kernel snaps - Components: Add 'snap components' command - Components: Bug fixes - eMMC gadget updates (WIP): add syntax support in gadget.yaml for eMMC schema - Support for ephemeral recovery mode on hybrid systems - Support for dm-verity options in snap-bootstrap - Support for overlayfs options and allow empty what argument for tmpfs - Enable ubuntu-image to determine the size of the disk image to create - Expose 'snap debug' commands 'validate-seed' and 'seeding' - Add debug API option to use dedicated snap socket /run/snapd- snap.socket - Hide experimental features that are no longer required (accepted/rejected) - Mount ubuntu-save partition with no{exec,dev,suid} at install, run and factory-reset - Improve memory controller support with cgroup v2 - Support ssh socket activation configurations (used by ubuntu 22.10+) - Fix generation of AppArmor profile with incorrect revision during multi snap refresh - Fix refresh app awareness related deadlock edge case - Fix not caching delta updated snap download - Fix passing non root uid, guid to initial tmpfs mount - Fix ignoring snaps in try mode when amending - Fix reloading of service activation units to avoid systemd errors - Fix snapd snap FIPS build on Launchpad to use Advantage Pro FIPS updates PPA - Make killing of snap apps best effort to avoid possibility of malicious failure loop - Alleviate impact of auto-refresh failure loop with progressive delay - Dropped timedatex in selinux-policy to avoid runtime issue - Fix missing syscalls in seccomp profile - Modify AppArmor template to allow using SNAP_REEXEC on arch systems - Modify AppArmor template to allow using vim.tiny (available in base snaps) - Modify AppArmor template to add read-access to debian_version - Modify AppArmor template to allow owner to read @{PROC}/@{pid}/sessionid - {common,personal,system}-files interface: prohibit trailing @ in filepaths - {desktop,shutdown,system-observe,upower-observe} interface: improve for Ubuntu Core Desktop - custom-device interface: allow @ in custom-device filepaths - desktop interface: improve launch entry and systray integration with session - desktop-legacy interface: allow DBus access to com.canonical.dbusmenu - fwupd interface: allow access to nvmem for thunderbolt plugin - mpris interface: add plasmashell as label - mount-control interface: add support for nfs mounts - network-{control,manager} interface: add missing dbus link rules - network-manager-observe interface: add getDevices methods - opengl interface: add Kernel Fusion Driver access to opengl - screen-inhibit-control interface: improve screen inhibit control for use on core - udisks2 interface: allow ping of the UDisks2 service - u2f-devices interface: add Nitrokey Passkey * Sun Jan 19 2025 Fedora Release Engineering releng@fedoraproject.org - 2.66.1-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild * Tue Dec 3 2024 Orion Poplawski orion@nwra.com - Drop RestartMode from snapd.service on EL8 (rhbz#2315759) * Fri Nov 29 2024 Zygmunt Krynicki me@zygoon.pl - Re-cherry pick fix for SELinux timedatex problem from upstream as it was not released in 2.66.1, sorry. --------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use su -c 'yum update snapd' at the command line. For more information, refer to "YUM", available at https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7%5C /html/System_Administrators_Guide/ch-yum.html
All packages are signed with the Fedora EPEL GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------
epel-package-announce@lists.fedoraproject.org
-
updates@fedoraproject.org