SUSE-SU-2016:2974-1

Description of the patch:

This update for pacemaker fixes the following issues:

• remote: Allow cluster and remote LRM API versions to diverge (bsc#1009076)

• libcrmcommon: fix CVE-2016-7035 (improper IPC guarding) (bsc#1007433)

• sysconfig: minor tweaks (typo, wording)

• spec: more robust check for systemd being in use

• spec: defines instead of some globals + error suppression

• various: issues discovered via valgrind and coverity

• attrd_updater: fix usage of HAVE_ATOMIC_ATTRD

• crmd: cl#5185 - Record pending operations in the CIB before they are performed (bsc#1003565)

• ClusterMon: fix to avoid matching other process with the same PID

• mcp: improve comments for sysconfig options

• remove openssl-devel and libselinux-devel as build dependencies

• tools: crm_standby --version/--help should work without cluster

• libpengine: only log startup-fencing warning once

• pacemaker.service: do not mistakenly suggest killing fenced

• libcrmcommon: report errors consistently when waiting for data on connection (bsc#986644)

• remote: Correctly calculate the remaining timeouts when receiving messages (bsc#986644)

• libfencing: report added node ID correctly

• crm_mon: Do not call setenv with null value

• pengine: Do not fence a maintenance node if it shuts down cleanly (bsc#1000743)

• ping: Avoid temporary files for fping check (bsc#987348)

• all: clarify licensing and copyrights

• crmd: Resend the shutdown request if the DC forgets

• ping: Avoid temp files in fping_check (bsc#987348)

• crmd: Ensure the R_SHUTDOWN is set whenever we ask the DC to shut us down

• crmd: clear remote node operation history only when it comes up

• libcib,libfencing,libtransition: handle memory allocation errors without CRM_CHECK()

• tools: make crm_mon XML schema handle resources with multiple active

• pengine: set OCF_RESKEY_CRM_meta_notify_active_* for multistate resources

• pengine: avoid null dereference in new same-node ordering option

• lrmd,libcluster: ensure g_hash_table_foreach()...