helexa/cortex
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
aa88d3750925605b5495bdd9c6b7c18d6f7a72ea
cortex/cortex.spec
rob thijssen dc2a803266
Some checks failed
build-prerelease / Resolve version stamps (push) Successful in 33s
Details
CI / Format (push) Successful in 1m1s
Details
CI / Clippy (push) Successful in 3m12s
Details
CI / Test (push) Successful in 4m31s
Details
CI / Build cortex SRPM (push) Has been skipped
Details
CI / Build neuron SRPM (push) Has been skipped
Details
CI / Publish cortex to COPR (push) Has been skipped
Details
CI / Publish neuron to COPR (push) Has been skipped
Details
CI / Bump version in source (push) Has been skipped
Details
build-prerelease / Build cortex binary (push) Successful in 4m52s
Details
build-prerelease / Package cortex RPM (push) Successful in 1m18s
Details
build-prerelease / Build neuron-ampere (push) Has been cancelled
Details
build-prerelease / Build neuron-ada (push) Has been cancelled
Details
build-prerelease / Package helexa-neuron-ada RPM (push) Has been cancelled
Details
build-prerelease / Package helexa-neuron-ampere RPM (push) Has been cancelled
Details
build-prerelease / Package helexa-neuron-blackwell RPM (push) Has been cancelled
Details
build-prerelease / Publish to rpm.lair.cafe (unstable) (push) Has been cancelled
Details
build-prerelease / Build neuron-blackwell (push) Has been cancelled
Details
fix(rpm): migrate legacy helexa-cortex firewalld service to cortex 
Adds a %posttrans scriptlet to cortex.spec that:

- Removes the stale /etc/firewalld/services/helexa-cortex.xml left
  behind by an older packaging stream that named the service
  `helexa-cortex` and (in some build streams) carried wrong port
  numbers (9301/9302/9304).
- Walks every active firewalld zone; for any zone where the legacy
  helexa-cortex service was enabled, swaps it out for the new
  `cortex` service (which the RPM ships at
  /usr/lib/firewalld/services/cortex.xml with the right
  31313/31314 ports).
- Reloads firewalld so the change takes effect without operator
  intervention.

Operators on whom this happened were silently dropping inbound
connections to cortex on 31313 — the active zone advertised a
helexa-cortex service that listed unrelated ports, masking the
correctly-defined vendor cortex service.

helexa-neuron is unaffected: that spec already ships the vendor
service as helexa-neuron.xml (namespaced from day one) and no
stale /etc override files exist in the fleet.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
2026-05-22 06:12:51 +03:00

4.5 KiB
Raw Blame History

View Raw
Reference in New Issue View Git Blame Copy Permalink