Bug#1114855: trixie-pu: package irqbalance/1.9.4-1+deb13u1
Package: release.debian.org
Severity: normal
Tags: trixie
X-Debbugs-Cc: irqbalance@packages.debian.org, paride@debian.org
Control: affects -1 + src:irqbalance
User: release.debian.org@packages.debian.org
Usertags: pu
[ Reason ]
The version in Trixie is affected by #1114676, which prevents
irqbalance from working properly as it doesn't have permissions
to modify procfs.
[ Impact ]
The Trixie package is essentially useless due to #1114676.
[ Tests ]
Salsa CI, manual build+install, plus the fix is reported working in
#1114676. Upstream tests do pass but they are not relevant given
the nature of the changes.
[ Risks ]
The patch is an upstream cherry-pick that disables one restriction
systemd imposes on the service. There are no changes on the actual
code being run.
[ Checklist ]
[x] *all* changes are documented in the d/changelog
[x] I reviewed all changes and I approve them
[x] attach debdiff against the package in (old)stable
[x] the issue is verified as fixed in unstable
[ Changes ]
ProtectKernelTunables=yes in the systemd service file prevents
irqbalance from working. The restriction got added in
https://github.com/Irqbalance/irqbalance/commit/a99b6043b364e071
released in upstream version 1.9.4 and then reverted. The revert
is not released yet, so #1114676 is fixed via a quilt patch for
now (clean upstream cherry-pick). This pu applies the same patch
to the Trixie version.
The only other changes is a branch name in d/gbp.conf, non user
visible.
--
Paride
diff -Nru irqbalance-1.9.4/debian/changelog irqbalance-1.9.4/debian/changelog
--- irqbalance-1.9.4/debian/changelog 2024-09-27 14:36:25.000000000 +0200
+++ irqbalance-1.9.4/debian/changelog 2025-09-10 18:50:24.000000000 +0200
@@ -1,3 +1,12 @@
+irqbalance (1.9.4-1+deb13u1) trixie; urgency=medium
+
+ * d/gbp.conf: set debian-branch to debian/trixie
+ * Drop ProtectKernelTunables=yes in irqbalance.service.
+ Done via new patch: d/p/drop-protectkerneltunables.patch
+ Thanks to Marco d'Itri (Closes: #1114676)
+
+ -- Paride Legovini <paride@debian.org> Wed, 10 Sep 2025 18:50:24 +0200
+
irqbalance (1.9.4-1) unstable; urgency=medium
* New upstream version 1.9.4
diff -Nru irqbalance-1.9.4/debian/gbp.conf irqbalance-1.9.4/debian/gbp.conf
--- irqbalance-1.9.4/debian/gbp.conf 2024-09-27 14:29:30.000000000 +0200
+++ irqbalance-1.9.4/debian/gbp.conf 2025-09-10 18:50:24.000000000 +0200
@@ -1,2 +1,2 @@
[DEFAULT]
-debian-branch = debian/latest
+debian-branch = debian/trixie
diff -Nru irqbalance-1.9.4/debian/patches/drop-protectkerneltunables.debian-patch irqbalance-1.9.4/debian/patches/drop-protectkerneltunables.debian-patch
--- irqbalance-1.9.4/debian/patches/drop-protectkerneltunables.debian-patch 1970-01-01 01:00:00.000000000 +0100
+++ irqbalance-1.9.4/debian/patches/drop-protectkerneltunables.debian-patch 2025-09-10 18:50:24.000000000 +0200
@@ -0,0 +1,24 @@
+Origin: upstream, https://github.com/Irqbalance/irqbalance/commit/f2c8309a4198d8f51069a783905049c5b7eb7600
+Bug: https://github.com/Irqbalance/irqbalance/issues/308
+Bug-Debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1114676
+From: Neil Horman <nhorman@openssl.org>
+Date: Mon, 1 Apr 2024 08:05:14 -0400
+Subject: [PATCH] Drop ProtectKernelTunables
+
+It makes /proc/irq read only
+---
+ misc/irqbalance.service | 1 -
+ 1 file changed, 1 deletion(-)
+
+diff --git a/misc/irqbalance.service b/misc/irqbalance.service
+index 87e19c1..b731cc6 100644
+--- a/misc/irqbalance.service
++++ b/misc/irqbalance.service
+@@ -23,7 +23,6 @@ PrivateNetwork=yes
+ PrivateUsers=true
+ ProtectHostname=yes
+ ProtectClock=yes
+-ProtectKernelTunables=yes
+ ProtectKernelModules=yes
+ ProtectKernelLogs=yes
+ ProtectControlGroups=yes
diff -Nru irqbalance-1.9.4/debian/patches/series irqbalance-1.9.4/debian/patches/series
--- irqbalance-1.9.4/debian/patches/series 1970-01-01 01:00:00.000000000 +0100
+++ irqbalance-1.9.4/debian/patches/series 2025-09-10 18:50:24.000000000 +0200
@@ -0,0 +1 @@
+drop-protectkerneltunables.debian-patch
Reply to: