openSUSE ARM
Threads by month
- ----- 2024 -----
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2023 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2022 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2021 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2020 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2019 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2018 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2017 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2016 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2015 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2014 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2013 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2012 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2011 -----
- December
- November
- October
- September
- August
- July
- June
- May
December 2020
- 13 participants
- 18 discussions
09 Mar '21
Is there any progress in getting working sound in Raspberry Pi 4 images; XFCE
or KDE? Tumbleweed and/or Leap 15.2?
--
fr.gr.
member openSUSE
Freek de Kruijf
--
To unsubscribe, e-mail: opensuse-arm+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-arm+owner(a)opensuse.org
5
9
Hi all,
is there an openSUSE image download available for the Pine64 Rockpro64
SingleBoardComputer?
https://www.pine64.org/rockpro64/
Greetings...
2
2
[opensuse-arm] Regression observed on Rasbperry Pi 4 with snapshot 20201214
by Nicolas Saenz Julienne 24 Dec '20
by Nicolas Saenz Julienne 24 Dec '20
24 Dec '20
Hi all,
we are aware of a regression on the latest Tumbleweed snapshot breaking USB in
u-boot and GRUB[1]. So please abstain from upgrading your boards until it's
fixed. A series addressing the underlying issue is already in progress[2].
If anyone is having difficulties with this please reply here, I can provide
support.
Sorry for the inconvenience.
Regards,
Nicolas
[1] https://bugzilla.suse.com/show_bug.cgi?id=1180338
[2] http://u-boot.10912.n7.nabble.com/PATCH-v5-00-13-Raspberry-Pi-400-Compute-M…
1
0
Tumbleweed 20201214 on RPi4 - Waiting for PHY auto negotiation to complete
by Linux Kamarada 23 Dec '20
by Linux Kamarada 23 Dec '20
23 Dec '20
Hi, everyone!
I downloaded the latest Tumbleweed XFCE image, based on snapshot
20201214, for my Raspberry Pi 4.
During boot, it keeps repeatedly saying:
Waiting for PHY auto negotiation to complete... TIMEOUT !
And reboots. The GRUB menu is not displayed.
I took a photo that may help: https://paste.opensuse.org/97348522
That does not happen with the latest Leap 15.2 XFCE image (version
2020.07.08-Build1.71).
Does anyone know how to fix that?
Thanks!
Antonio
The Linux Kamarada Project
http://kamarada.github.io/
3
3
18 Dec '20
On my Raspberry Pi 1B the latest JeOS Tumbleweed image, Snapshot20201209, is
installed.
I want to use firewalld with the following deviations from the standard
configuration given as firewall-cmd lines.
firewall-cmd --permanent --zone=public --remove-service=ssh
firewall-cmd --permanent --zone=public --add-rich-rule='rule port port="22" \
protocol="tcp" log prefix="SFW2-INSSH " level="info" limit value="6/m" drop'
firewall-cmd --permanent --zone=internal --remove-service=samba-client
firewall-cmd --permanent --zone=internal --add-service=ssh
firewall-cmd --permanent --zone=internal --add-source=192.168.0.0/16
firewall-cmd --permanent --zone=internal --add-source=fe80::/16
firewall-cmd --permanent --zone=internal --add-source=83.x.y.z
firewall-cmd --permanent --zone=internal --add-source=2001:x:y:z::/48
firewall-cmd --permanent --zone=internal --add-source=2001:xx:yy:zz::/56
public is the default zone
The firewall blocks almost all traffic and allows ssh access from the listed
IPv4 and IPv6 addresses in zone internal; some local, some from somewhere in
the internet. The rich-rule keeps track of unwanted access to the ssh port.
When I reboot the system with the firewalld.service enabled I use "ip a" to
list the IP addresses assigned to the interfaces lo: and eth0:
In this list eth0 does not have an IPv4 address. Also when I stop the
firewalld service eth0 still does not get an IPv4 address. Only after a
restart of the network service, eth0 gets an IPv4 address; no firewall active.
eth0 is configured (standard) to get an IPv4 address via DHCP.
Also router information "ip r" and /etc/resolv.conf do not contain IPv4
addresses.
To did investigate this further, so I installed the latest JeOS Tumbleweed on
my RPi4 and configured firewalld in the same way. This system does NOT show
this wrong behavior.
I filed a bug report: https://bugzilla.opensuse.org/show_bug.cgi?id=1180231
--
fr.gr.
member openSUSE
Freek de Kruijf
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the aarch64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio…
Please do not reply to this email to report issues, rather file a bug
on bugzilla.opensuse.org. For more information on filing bugs please
see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
apache2
apache2-prefork
apache2-utils
busybox-links
drbd (9.0.25~0+git.bd41626d -> 9.0.26~0+git.9114a038)
fwupd (1.5.2 -> 1.5.3)
gstreamer (1.18.1 -> 1.18.2)
gstreamer-devtools (1.18.1 -> 1.18.2)
gstreamer-editing-services (1.18.1 -> 1.18.2)
gstreamer-plugins-bad (1.18.1 -> 1.18.2)
gstreamer-plugins-base (1.18.1 -> 1.18.2)
gstreamer-plugins-good (1.18.1 -> 1.18.2)
gstreamer-plugins-libav (1.18.1 -> 1.18.2)
gstreamer-plugins-ugly (1.18.1 -> 1.18.2)
icewm-theme-branding
kdevelop5 (5.6.0 -> 5.6.1)
kernel-64kb (5.9.12 -> 5.9.14)
kernel-firmware (20201120 -> 20201130)
kernel-source (5.9.12 -> 5.9.14)
libressl (3.2.2 -> 3.2.3)
libzypp (17.25.2 -> 17.25.5)
lightdm
lvm2
lvm2-device-mapper
malcontent
man-pages-ja (20191215 -> 20201115)
mdadm
mdevctl (0.61 -> 0.78)
openldap2 (2.4.55 -> 2.4.56)
patterns-gnome (20200416 -> 20201210)
patterns-server
patterns-yast (20191229 -> 20201210)
perl-Mojolicious (8.66 -> 8.67)
polkit-default-privs (1550+20201119.2c1dce4 -> 1550+20201208.135bf51)
postgresql13
python-M2Crypto (0.36.0 -> 0.37.1)
python-Pillow (7.2.0 -> 8.0.1)
python-Twisted
python-cryptography (3.2.1 -> 3.3)
python-gst (1.18.1 -> 1.18.2)
python-immutables
python-outcome
python-paramiko
python-psutil
python-reportlab (3.5.51 -> 3.5.56)
python-sniffio
qemu
qemu (5.1.0 -> 5.2.0)
remmina (1.4.9 -> 1.4.10)
rsyslog (8.2010.0 -> 8.2012.0)
rubygem-autoprefixer-rails (10.0.1.3 -> 10.1.0.0)
rubygem-erubi (1.9.0 -> 1.10.0)
rubygem-loofah (2.7.0 -> 2.8.0)
rubygem-passenger (6.0.6 -> 6.0.7)
rubygem-puma (5.0.4 -> 5.1.1)
rubygem-tzinfo (2.0.2 -> 2.0.3)
rubygem-vagrant_cloud (2.0.3 -> 3.0.2)
rubygem-zeitwerk (2.4.1 -> 2.4.2)
scim
simple-scan (3.38.1 -> 3.38.2)
supermin (5.1.20 -> 5.2.0)
systemd (246.6 -> 246.7)
tracker (3.0.1 -> 3.0.2)
tracker-miners (3.0.1 -> 3.0.3)
u-boot-rpiarm64
xapps (1.6.10 -> 2.0.0)
xdm
xreader (2.6.4 -> 2.8.0)
yast2-network (4.3.30 -> 4.3.32)
yast2-security (4.3.4 -> 4.3.5)
yast2-storage-ng (4.3.27 -> 4.3.28)
zypper (1.14.40 -> 1.14.41)
=== Details ===
==== apache2 ====
- added https://httpd.apache.org/server-status like server status
(configured by APACHE_EXTENDED_STATUS="lua")
- modified sources
% apache2-mod_status.conf
% apache2-start_apache2
% sysconfig.apache2
- actually install suse provided READMEs
- install upstream configuration example
- added sources
+ apache2-README-configuration.txt
==== apache2-prefork ====
- added https://httpd.apache.org/server-status like server status
(configured by APACHE_EXTENDED_STATUS="lua")
- modified sources
% apache2-mod_status.conf
% apache2-start_apache2
% sysconfig.apache2
- actually install suse provided READMEs
- install upstream configuration example
- added sources
+ apache2-README-configuration.txt
==== apache2-utils ====
- added https://httpd.apache.org/server-status like server status
(configured by APACHE_EXTENDED_STATUS="lua")
- modified sources
% apache2-mod_status.conf
% apache2-start_apache2
% sysconfig.apache2
- actually install suse provided READMEs
- install upstream configuration example
- added sources
+ apache2-README-configuration.txt
==== busybox-links ====
Subpackages: busybox-coreutils busybox-findutils busybox-gawk busybox-grep busybox-gzip busybox-patch busybox-psmisc busybox-sed busybox-sendmail busybox-tar busybox-xz
- busybox-adduser needs "nogroup" for system accounts, which have
no group specified.
==== drbd ====
Version update (9.0.25~0+git.bd41626d -> 9.0.26~0+git.9114a038)
Subpackages: drbd-kmp-64kb drbd-kmp-default
- bsc#1179708, compat to kernel v5.10
- Add patch compat_get_fs.patch
Add patch remove_bdi_cap_stable_writes.patch
- Update to 9.0.26
* fix a case of a disk unexpectedly becoming Outdated by moving the
exchange of the initial packets into the body of the two-phase-commit
that happens at a connect
* fix adding of new volumes to resources with a primary node
* reliably detect split brain situation on both nodes
* fix an unexpected occurrence of NetworkFailure state in a tight
drbdsetup disconnect; drbdsetup connect sequence
* fix online verify to return to Established from VerifyS if the VerifyT node
was temporarily Inconsistent during the run
* fix a corner case where a node ends up Outdated after the crash and rejoin
of a primary node
* implement 'blockdev --setro' in DRBD
* following upstream changes to DRBD up to Linux 5.9 and ensure
compatibility with Linux 5.8 and 5.9
* fix a crash if during resync a discard operation fails on the
resync-target node
* fix online verify to not clamp disk states to UpToDate
* fix promoting resync-target nodes; the problem was that it could modify
the bitmap of an ongoing resync; which leads to alarming log messages
* pause a resync if the sync-source node becomes inconsistent; an example
is a cascading resync where the upstream resync aborts and leaves the
sync-source node for the downstream resync with an inconsistent disk;
note, the node at the end of the chain could still have an outdated disk
(better than inconsistent)
* allow force primary on a sync-target node by breaking the resync
* minor fixes to the compat tests
* fix for writes not getting mirrored over a connection while the primary
transitions through the WFBitMapS state
* completed missing logic of the new two-phase-commit based connect process;
avoid connecting partitions with a primary in each; ensure consistent
decisions if the connect attempt will be retried
- Add patch compat-test-header.patch
Add patch submit-bio-private-date.patch
- Remove patch rely-on-sb-handlers.patch (187bddac0)
Remove patch fix-err-of-wrong-return-type.patch (969310232)
Remove patch compat_remove_pgprot_88dca4c.patch (ee025dc84)
Remove patch compat_generic_make_request.patch (8615d6837)
Remove patch blk_alloc_queue_make_request.patch (edaa9b0f/fb59b40e)
Remove patch remove_congested_fn_congested_data.patch (34484003/9b80d46b)
- Modify patch compat_remove_kernel_setsockopt.patch (518846b54)
Modify patch compat_blk_queue_stack_limits.patch (edaa9b0f2)
==== fwupd ====
Version update (1.5.2 -> 1.5.3)
Subpackages: libfwupd2 libfwupdplugin1 typelib-1_0-Fwupd-2_0
- Update to version 1.5.3:
+ Lower the CURL version required to fix build in RHEL
+ Do not use meson ternary operations to avoid bumping the
required meson version
+ Added Lite Mk III
+ Allow setting the GMainContext when used for sync methods
+ Fall back to the misc device for serio devices
+ Actually implement rescan in FuUdevDevice
+ bcm57xx: Refactor CRC code to remove extra byteswap
+ bcm57xx: Fix CRC check
+ synaptics-rmi: Don't crash if calling ->to_string() before
- >setup()
+ Fix a possible critical warning due to missing retval
+ Add the serio->firmare_id for UDev devices
+ Export the driver name from FuUdevDevice
+ Allow the client to send PKCS7 and GPG signatures
+ Force the remote kind to JCat server-side
+ Only parse the signature if the remote is JCat
+ fu-main: Fix sender_features insert with wrong size
+ make platform integrity plugin optional and disabled by default
+ Add quirk for Western Digital
+ Mark more user-visible strings as translatable
+ modem-manager: validate firmware update method combinations
+ modem-manager: remove unused byte counts in QMI/PDC update logic
+ modem-manager: make sure the correct interface number is used
for QMI
+ modem-manager: udev monitoring only if device switches layout
+ modem-manager: plug udev client leak
+ Restrict loading component types of firmware
- Enable supported_build to clarify that this package is supported
(bsc#1179790)
- Drop fwupd-platform-integrity.conf since upstream disables the
platform integrity module by default now due to incompleteness.
- Address fwupd-refresh.service in %preun, %pre, %post, and %postun
and provide a rc link for it
- Version "Obsoletes: dbxtool" and "Obsoletes: fwupdate"
==== gstreamer ====
Version update (1.18.1 -> 1.18.2)
Subpackages: gstreamer-utils libgstreamer-1_0-0 typelib-1_0-Gst-1_0
- Update to version 1.18.2:
+ Highlighted bugfixes:
- Fix MPEG-TS timestamping regression when playing DVB streams
- compositor: fix artefacts in certain input scaling/conversion
situations and make sure that the output format is actually
supported, plus renegotiation fixes
- Fix sftp:// URI playback in decodebin/playbin via giosrc
- adaptivedemux/dashdemux/hlsdemux fixes
- rtsp-server fixes
- android media: fix crash when encoding AVC
- fix races in various unit tests
- lots of other bug fixes and memory leak fixes
- various stability, performance and reliability improvements
- g-i annotation fixes
- build fixes
+ gstreamer changes:
- bin: When removing a sink, check if the EOS status changed
- info: colorize PIDs in log messages
- aggregator: Include min-upstream-latency in buffering time,
helps especially with performance issues on single core
systems where there are a lot of threads running
- typefind: copy seqnum to new segment event, fixing issues
with oggdemux operating in push mode with typefind operating
in pull mode
- identity, clocksync: Also provide system clock if sync=false
- queue2: Fix modes in scheduling query handling
- harness: Handle element not being set cleanly
- g-i: Add some missing nullable annotations, and fix some
nullable annotations:
- gst_test_clock_process_next_clock_id() returns nullable
- gst_stream_type_get_name() is not nullable
- build: fix build issue when compiling for 32-bit
architectures with 64-bit time_t (e.g. riscv32) by increasing
padding in GstClockEntryImpl in gst_private.h
- Fix the _service file and spec to really use the tarball
generated by service.
==== gstreamer-devtools ====
Version update (1.18.1 -> 1.18.2)
Subpackages: libgstvalidate-1_0-0 typelib-1_0-GstValidate-1_0
- Update to version 1.18.2:
+ No changes.
- Tweak _service file.
==== gstreamer-editing-services ====
Version update (1.18.1 -> 1.18.2)
Subpackages: libges-1_0-0 typelib-1_0-GES-1_0
- Update to version 1.18.2:
+ Fix static build
+ ges_init(): Fix potential initialisation crash on error
- Fix the _service file and spec to really use the tarball
generated by service.
==== gstreamer-plugins-bad ====
Version update (1.18.1 -> 1.18.2)
Subpackages: gstreamer-transcoder libgstadaptivedemux-1_0-0 libgstbadaudio-1_0-0 libgstbasecamerabinsrc-1_0-0 libgstcodecparsers-1_0-0 libgstcodecs-1_0-0 libgstisoff-1_0-0 libgstmpegts-1_0-0 libgstphotography-1_0-0 libgstsctp-1_0-0 libgsttranscoder-1_0-0 libgsturidownloader-1_0-0 libgstvulkan-1_0-0 libgstwayland-1_0-0 libgstwebrtc-1_0-0 typelib-1_0-GstTranscoder-1_0
- Update to version 1.18.2:
+ tsparse: timestamp packetized buffers, fixing timestamp
handling regression in connection with dvbsrc in MeTV
+ ttmlparse: fix issues in aggregation of input TTML
+ mpegdemux: Set duration on seeking query if possible, fixes
seeking in MPEG-PS streams in gst-play-1.0
+ mpegtsdemux: Fix off by one error
+ adaptivedemux:
- Store QoS values on the element
- Don't calculate bitrate for header/index fragments
+ hlsdemux: Don't double-free variant streams on errors
+ mpegtspacketizer: Handle PCR issues with adaptive streams
+ player: call ref_sink on pipeline
+ vkdeviceprovider: Avoid deadlock on physical device
+ wlvideoformat: fix DMA format convertor
+ Webrtc shutdown crashes
+ decklink:
- Update enum value bounds check in gst_decklink_get_mode()
- Correct framerate 2KDCI 23.98
+ amc: Fix crash when encoding AVC
+ d3d11videoprocessor: Fix wrong input/output supportability
check
+ opencv: allow compilation against 4.5.x
+ tests: svthevcenc: Fix test_encode_simple
+ tests: dtls: Don't set dtlsenc state before linking
+ mpegtsmux: Restore intervals when creating TsMux
+ adaptivedemux, hlsdemux, curl: Use actual object for logging
+ gi: player: Fix get_current_subtitle_track() annotation
- Fix the _service file and spec to really use the tarball
generated by service.
==== gstreamer-plugins-base ====
Version update (1.18.1 -> 1.18.2)
Subpackages: libgstallocators-1_0-0 libgstapp-1_0-0 libgstaudio-1_0-0 libgstfft-1_0-0 libgstgl-1_0-0 libgstpbutils-1_0-0 libgstriff-1_0-0 libgstrtp-1_0-0 libgstrtsp-1_0-0 libgstsdp-1_0-0 libgsttag-1_0-0 libgstvideo-1_0-0 typelib-1_0-GstAudio-1_0 typelib-1_0-GstPbutils-1_0 typelib-1_0-GstTag-1_0 typelib-1_0-GstVideo-1_0
- Update to version 1.18.2:
+ gl/eagl: internal view resize fixes for glimagesink
+ video-converter: increase the number of cache lines for
resampling, fixes significant color issues and artefacts with
"special" resizing parameters in compositor
+ compositor: Don't crash in prepare_frame() if the pad was just
removed
+ decodebin3: Properly handle caps query with no filter
+ videoaggregator:
- Guarantee that the output format is supported
- Fix locking around vagg->info
- Fix renegotiation when using convert pad
- document and fix locking in convert pad
+ gluploadelement:
- Avoid race condition of base class' context
- Avoid race condition of inside upload creation
+ gl: Fix prototype of glGetSynciv()
+ tcpserversink: Don't assume g_socket_get_remote_address()
succeeds
+ audiodecoder, videodecoder: Don't reset max-errors property
value in reset()
+ audioencoder: Fix incorrect GST_LOG_OBJECT usage
+ pbutils: Fix segfault when using invalid encoding profile
+ g-i: videometa: gir annotate the size of plane array in new API
+ examples/gl/gtk: Add missing dependency on gstgl
+ video: fix doc warning.
- Fix the _service file and spec to really use the tarball
generated by service.
==== gstreamer-plugins-good ====
Version update (1.18.1 -> 1.18.2)
Subpackages: gstreamer-plugins-good-extra gstreamer-plugins-good-gtk gstreamer-plugins-good-jack gstreamer-plugins-good-qtqml
- Update to version 1.18.2:
+ rpicamsrc: add vchostif library as it is required to build
successful
+ deinterlace: Enable x86 assembly with nasm on MSVC
+ v4l2: caps negotiate wrong as interlace feature
+ aacparse: Fix caps change handling
+ rtspsrc: Use URI hash for stream id
+ flvmux: Release pads via GstAggregator
+ qtmux: Chain up when releasing pad, and fix some locking
+ matroska-mux: Fix sparse stream crash
+ Splitmux testsuite races
- Fix the _service file and spec to really use the tarball
generated by service.
==== gstreamer-plugins-libav ====
Version update (1.18.1 -> 1.18.2)
- Update to version 1.18.2:
+ avauddec: Check planar-ness of frame rather than context, fixes
issue with aptX HD decoding.
==== gstreamer-plugins-ugly ====
Version update (1.18.1 -> 1.18.2)
- Update to version 1.18.2:
+ No changes.
- Fix the _service file and spec to really use the tarball
generated by service.
==== icewm-theme-branding ====
- Change file /etc/icewm/startup: Pass environment variables to
systemd --user session (bsc#1179237).
==== kdevelop5 ====
Version update (5.6.0 -> 5.6.1)
Subpackages: kdevelop5-lang kdevplatform kdevplatform-lang libkdevplatform56
- Update to 5.6.1
* Fix support for gdb 10.x (kde#428688)
* Fix an issue in the "Run test" feature with tests launched by
the same executable (kde#377639)
* Fix several crashes on exit while debugging (kde#425994,
kde#425993, kde#425985)
* The output view now highlights glibc assert messages by default
* Less confusing behaviour of the "Stop" and "Stop all" toolbar
buttons (it no longer has a delayed-dropdown)
* Fix a set of oddities with initial parsing of project files
* Fix a crash when closing KDevelop directly after opening a
large project (kde#427387, kde#427386)
* Fix a crash in some cases when launching an executable
(kde#399511, kde#416874)
* Improved support for changing the CMake_BUILD_TYPE in projects
(kde#429605)
* Fix a crash when the problem reporter plugin was turned off
during runtime
* Various other small bug fixes
* Various smaller performance improvements
==== kernel-64kb ====
Version update (5.9.12 -> 5.9.14)
- drm/i915/gt: Declare gen9 has 64 mocs entries! (git-fixes).
- commit c648a46
- Linux 5.9.14 (bsc#1012628).
- usb: gadget: f_fs: Use local copy of descriptors for userspace
copy (bsc#1012628).
- USB: serial: kl5kusb105: fix memleak on open (bsc#1012628).
- USB: serial: ch341: add new Product ID for CH341A (bsc#1012628).
- USB: serial: ch341: sort device-id entries (bsc#1012628).
- USB: serial: option: add Fibocom NL668 variants (bsc#1012628).
- USB: serial: option: add support for Thales Cinterion EXS82
(bsc#1012628).
- USB: serial: option: fix Quectel BG96 matching (bsc#1012628).
- speakup: Reject setting the speakup line discipline outside
of speakup (bsc#1012628).
- ALSA: hda/realtek: Fix bass speaker DAC assignment on Asus
Zephyrus G14 (bsc#1012628).
- ALSA: hda/realtek: Add mute LED quirk to yet another HP x360
model (bsc#1012628).
- ALSA: hda/realtek: Enable headset of ASUS UX482EG & B9400CEA
with ALC294 (bsc#1012628).
- ALSA: hda/realtek - Add new codec supported for ALC897
(bsc#1012628).
- ALSA: hda/realtek - Fixed Dell AIO wrong sound tone
(bsc#1012628).
- ALSA: hda/generic: Add option to enforce preferred_dacs pairs
(bsc#1012628).
- ring-buffer: Update write stamp with the correct ts
(bsc#1012628).
- ring-buffer: Set the right timestamp in the slow path of
__rb_reserve_next() (bsc#1012628).
- ring-buffer: Always check to put back before stamp when crossing
pages (bsc#1012628).
- ftrace: Fix updating FTRACE_FL_TRAMP (bsc#1012628).
- ftrace: Fix DYNAMIC_FTRACE_WITH_DIRECT_CALLS dependency
(bsc#1012628).
- cifs: allow syscalls to be restarted in __smb_send_rqst()
(bsc#1012628).
- cifs: fix potential use-after-free in cifs_echo_request()
(bsc#1012628).
- cifs: refactor create_sd_buf() and and avoid corrupting the
buffer (bsc#1012628).
- cifs: add NULL check for ses->tcon_ipc (bsc#1012628).
- gfs2: Upgrade shared glocks for atime updates (bsc#1012628).
- gfs2: Fix deadlock between gfs2_{create_inode,inode_lookup}
and delete_work_func (bsc#1012628).
- s390/pci: fix CPU address in MSI for directed IRQ (bsc#1012628).
- i2c: imx: Fix reset of I2SR_IAL flag (bsc#1012628).
- i2c: imx: Check for I2SR_IAL after every byte (bsc#1012628).
- i2c: imx: Don't generate STOP condition if arbitration has
been lost (bsc#1012628).
- tracing: Fix userstacktrace option for instances (bsc#1012628).
- thunderbolt: Fix use-after-free in remove_unplugged_switch()
(bsc#1012628).
- drm/omap: sdi: fix bridge enable/disable (bsc#1012628).
- drm/amdgpu/vcn3.0: stall DPG when WPTR/RPTR reset (bsc#1012628).
- drm/amdgpu/vcn3.0: remove old DPG workaround (bsc#1012628).
- drm/i915/gt: Retain default context state across shrinking
(bsc#1012628).
- drm/i915/gt: Limit frequency drop to RPe on parking
(bsc#1012628).
- drm/i915/gt: Program mocs:63 for cache eviction on gen9
(bsc#1012628).
- KVM: PPC: Book3S HV: XIVE: Fix vCPU id sanity check
(bsc#1012628).
- scsi: mpt3sas: Fix ioctl timeout (bsc#1012628).
- io_uring: fix recvmsg setup with compat buf-select
(bsc#1012628).
- dm writecache: advance the number of arguments when reporting
max_age (bsc#1012628).
- dm writecache: fix the maximum number of arguments
(bsc#1012628).
- powerpc/64s/powernv: Fix memory corruption when saving SLB
entries on MCE (bsc#1012628).
- genirq/irqdomain: Add an irq_create_mapping_affinity() function
(bsc#1012628).
- powerpc/pseries: Pass MSI affinity to irq_create_mapping()
(bsc#1012628).
- dm: fix bug with RCU locking in dm_blk_report_zones
(bsc#1012628).
- dm: fix double RCU unlock in dm_dax_zero_page_range() error path
(bsc#1012628).
- dm: remove invalid sparse __acquires and __releases annotations
(bsc#1012628).
- x86/uprobes: Do not use prefixes.nbytes when looping over
prefixes.bytes (bsc#1012628).
- coredump: fix core_pattern parse error (bsc#1012628).
- mm: list_lru: set shrinker map bit when child nr_items is not
zero (bsc#1012628).
- mm/swapfile: do not sleep with a spin lock held (bsc#1012628).
- hugetlb_cgroup: fix offline of hugetlb cgroup with reservations
(bsc#1012628).
- Revert "amd/amdgpu: Disable VCN DPG mode for Picasso"
(bsc#1012628).
- iommu/amd: Set DTE[IntTabLen] to represent 512 IRTEs
(bsc#1012628).
- mm: memcg/slab: fix obj_cgroup_charge() return value handling
(bsc#1012628).
- lib/syscall: fix syscall registers retrieval on 32-bit platforms
(bsc#1012628).
- can: af_can: can_rx_unregister(): remove WARN() statement from
list operation sanity check (bsc#1012628).
- gfs2: check for empty rgrp tree in gfs2_ri_update (bsc#1012628).
- netfilter: ipset: prevent uninit-value in hash_ip6_add
(bsc#1012628).
- ASoC: wm_adsp: fix error return code in wm_adsp_load()
(bsc#1012628).
- gfs2: Fix deadlock dumping resource group glocks (bsc#1012628).
- gfs2: Don't freeze the file system during unmount (bsc#1012628).
- rtw88: debug: Fix uninitialized memory in debugfs code
(bsc#1012628).
- i2c: qcom: Fix IRQ error misassignement (bsc#1012628).
- i2c: qup: Fix error return code in qup_i2c_bam_schedule_desc()
(bsc#1012628).
- dm writecache: remove BUG() and fail gracefully instead
(bsc#1012628).
- Input: i8042 - fix error return code in i8042_setup_aux()
(bsc#1012628).
- netfilter: nf_tables: avoid false-postive lockdep splat
(bsc#1012628).
- netfilter: nftables_offload: set address type in control
dissector (bsc#1012628).
- netfilter: nftables_offload: build mask based from the matching
bytes (bsc#1012628).
- x86/insn-eval: Use new for_each_insn_prefix() macro to loop
over prefixes bytes (bsc#1012628).
- Revert "geneve: pull IP header before ECN decapsulation"
(bsc#1012628).
- bpf: Fix propagation of 32-bit signed bounds from 64-bit bounds
(bsc#1012628).
- commit 960bcea
- Update patches.suse/tty-Fix-pgrp-locking-in-tiocspgrp.patch
(bsc#1179745 CVE-2020-29661).
- Update patches.suse/tty-Fix-session-locking.patch (bsc#1179745
CVE-2020-29660).
Add CVE numbers.
- commit 1329f77
- Update config files to disable CONFIG_DEBUG_SECTION_MISMATCH (bsc#1177403)
- commit a0a476d
- Linux 5.9.13 (bsc#1012628).
- devlink: Hold rtnl lock while reading netdev attributes
(bsc#1012628).
- devlink: Make sure devlink instance and port are in same net
namespace (bsc#1012628).
- ipv6: addrlabel: fix possible memory leak in ip6addrlbl_net_init
(bsc#1012628).
- net/af_iucv: set correct sk_protocol for child sockets
(bsc#1012628).
- net: openvswitch: fix TTL decrement action netlink message
format (bsc#1012628).
- net/tls: missing received data after fast remote close
(bsc#1012628).
- net/tls: Protect from calling tls_dev_del for TLS RX twice
(bsc#1012628).
- rose: Fix Null pointer dereference in rose_send_frame()
(bsc#1012628).
- sock: set sk_err to ee_errno on dequeue from errq (bsc#1012628).
- tcp: Set INET_ECN_xmit configuration in
tcp_reinit_congestion_control (bsc#1012628).
- tun: honor IOCB_NOWAIT flag (bsc#1012628).
- usbnet: ipheth: fix connectivity with iOS 14 (bsc#1012628).
- vsock/virtio: discard packets only when socket is really closed
(bsc#1012628).
- mptcp: fix NULL ptr dereference on bad MPJ (bsc#1012628).
- net/packet: fix packet receive on L3 devices without visible
hard header (bsc#1012628).
- netfilter: bridge: reset skb->pkt_type after
NF_INET_POST_ROUTING traversal (bsc#1012628).
- ipv4: Fix tos mask in inet_rtm_getroute() (bsc#1012628).
- dt-bindings: net: correct interrupt flags in examples
(bsc#1012628).
- chelsio/chtls: fix panic during unload reload chtls
(bsc#1012628).
- ibmvnic: Ensure that SCRQ entry reads are correctly ordered
(bsc#1012628).
- ibmvnic: Fix TX completion error handling (bsc#1012628).
- tipc: fix incompatible mtu of transmission (bsc#1012628).
- inet_ecn: Fix endianness of checksum update when setting ECT(1)
(bsc#1012628).
- geneve: pull IP header before ECN decapsulation (bsc#1012628).
- net: ip6_gre: set dev->hard_header_len when using header_ops
(bsc#1012628).
- dpaa_eth: copy timestamp fields to new skb in A-050385
workaround (bsc#1012628).
- cxgb3: fix error return code in t3_sge_alloc_qset()
(bsc#1012628).
- net: pasemi: fix error return code in pasemi_mac_open()
(bsc#1012628).
- vxlan: fix error return code in __vxlan_dev_create()
(bsc#1012628).
- chelsio/chtls: fix a double free in chtls_setkey()
(bsc#1012628).
- net: mvpp2: Fix error return code in mvpp2_open() (bsc#1012628).
- net: skbuff: ensure LSE is pullable before decrementing the
MPLS ttl (bsc#1012628).
- net: openvswitch: ensure LSE is pullable before reading it
(bsc#1012628).
- net/sched: act_mpls: ensure LSE is pullable before reading it
(bsc#1012628).
- net/mlx5: DR, Proper handling of unsupported Connect-X6DX SW
steering (bsc#1012628).
- net/mlx5: Fix wrong address reclaim when command interface is
down (bsc#1012628).
- net: mlx5e: fix fs_tcp.c build when IPV6 is not enabled
(bsc#1012628).
- ALSA: usb-audio: US16x08: fix value count for level meters
(bsc#1012628).
- Input: xpad - support Ardwiino Controllers (bsc#1012628).
- Input: i8042 - add ByteSpeed touchpad to noloop table
(bsc#1012628).
- Input: atmel_mxt_ts - fix lost interrupts (bsc#1012628).
- tracing: Fix alignment of static buffer (bsc#1012628).
- tracing: Remove WARN_ON in start_thread() (bsc#1012628).
- uapi: fix statx attribute value overlap for DAX & MOUNT_ROOT
(bsc#1012628).
- drm/i915/gt: Fixup tgl mocs for PTE tracking (bsc#1012628).
- commit 3dfd18b
- tty: Fix ->session locking (bsc#1179745).
- tty: Fix ->pgrp locking in tiocspgrp() (bsc#1179745).
- commit 9455f8b
- net/x25: prevent a couple of overflows (bsc#1178590).
- commit 2a06597
==== kernel-firmware ====
Version update (20201120 -> 20201130)
Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network
- Update to version 20201130 (git commit 7455a3606674):
* linux-firmware: Update firmware file for Intel Bluetooth AX210
* linux-firmware: Update firmware file for Intel Bluetooth AX210
* i915: Add GuC firmware v49.0.1 for all platforms
* i915: Remove duplicate KBL DMC entry
* Mellanox: Add new mlxsw_spectrum firmware xx.2008.2018
==== kernel-source ====
Version update (5.9.12 -> 5.9.14)
Subpackages: kernel-default kernel-docs
- drm/i915/gt: Declare gen9 has 64 mocs entries! (git-fixes).
- commit c648a46
- Linux 5.9.14 (bsc#1012628).
- usb: gadget: f_fs: Use local copy of descriptors for userspace
copy (bsc#1012628).
- USB: serial: kl5kusb105: fix memleak on open (bsc#1012628).
- USB: serial: ch341: add new Product ID for CH341A (bsc#1012628).
- USB: serial: ch341: sort device-id entries (bsc#1012628).
- USB: serial: option: add Fibocom NL668 variants (bsc#1012628).
- USB: serial: option: add support for Thales Cinterion EXS82
(bsc#1012628).
- USB: serial: option: fix Quectel BG96 matching (bsc#1012628).
- speakup: Reject setting the speakup line discipline outside
of speakup (bsc#1012628).
- ALSA: hda/realtek: Fix bass speaker DAC assignment on Asus
Zephyrus G14 (bsc#1012628).
- ALSA: hda/realtek: Add mute LED quirk to yet another HP x360
model (bsc#1012628).
- ALSA: hda/realtek: Enable headset of ASUS UX482EG & B9400CEA
with ALC294 (bsc#1012628).
- ALSA: hda/realtek - Add new codec supported for ALC897
(bsc#1012628).
- ALSA: hda/realtek - Fixed Dell AIO wrong sound tone
(bsc#1012628).
- ALSA: hda/generic: Add option to enforce preferred_dacs pairs
(bsc#1012628).
- ring-buffer: Update write stamp with the correct ts
(bsc#1012628).
- ring-buffer: Set the right timestamp in the slow path of
__rb_reserve_next() (bsc#1012628).
- ring-buffer: Always check to put back before stamp when crossing
pages (bsc#1012628).
- ftrace: Fix updating FTRACE_FL_TRAMP (bsc#1012628).
- ftrace: Fix DYNAMIC_FTRACE_WITH_DIRECT_CALLS dependency
(bsc#1012628).
- cifs: allow syscalls to be restarted in __smb_send_rqst()
(bsc#1012628).
- cifs: fix potential use-after-free in cifs_echo_request()
(bsc#1012628).
- cifs: refactor create_sd_buf() and and avoid corrupting the
buffer (bsc#1012628).
- cifs: add NULL check for ses->tcon_ipc (bsc#1012628).
- gfs2: Upgrade shared glocks for atime updates (bsc#1012628).
- gfs2: Fix deadlock between gfs2_{create_inode,inode_lookup}
and delete_work_func (bsc#1012628).
- s390/pci: fix CPU address in MSI for directed IRQ (bsc#1012628).
- i2c: imx: Fix reset of I2SR_IAL flag (bsc#1012628).
- i2c: imx: Check for I2SR_IAL after every byte (bsc#1012628).
- i2c: imx: Don't generate STOP condition if arbitration has
been lost (bsc#1012628).
- tracing: Fix userstacktrace option for instances (bsc#1012628).
- thunderbolt: Fix use-after-free in remove_unplugged_switch()
(bsc#1012628).
- drm/omap: sdi: fix bridge enable/disable (bsc#1012628).
- drm/amdgpu/vcn3.0: stall DPG when WPTR/RPTR reset (bsc#1012628).
- drm/amdgpu/vcn3.0: remove old DPG workaround (bsc#1012628).
- drm/i915/gt: Retain default context state across shrinking
(bsc#1012628).
- drm/i915/gt: Limit frequency drop to RPe on parking
(bsc#1012628).
- drm/i915/gt: Program mocs:63 for cache eviction on gen9
(bsc#1012628).
- KVM: PPC: Book3S HV: XIVE: Fix vCPU id sanity check
(bsc#1012628).
- scsi: mpt3sas: Fix ioctl timeout (bsc#1012628).
- io_uring: fix recvmsg setup with compat buf-select
(bsc#1012628).
- dm writecache: advance the number of arguments when reporting
max_age (bsc#1012628).
- dm writecache: fix the maximum number of arguments
(bsc#1012628).
- powerpc/64s/powernv: Fix memory corruption when saving SLB
entries on MCE (bsc#1012628).
- genirq/irqdomain: Add an irq_create_mapping_affinity() function
(bsc#1012628).
- powerpc/pseries: Pass MSI affinity to irq_create_mapping()
(bsc#1012628).
- dm: fix bug with RCU locking in dm_blk_report_zones
(bsc#1012628).
- dm: fix double RCU unlock in dm_dax_zero_page_range() error path
(bsc#1012628).
- dm: remove invalid sparse __acquires and __releases annotations
(bsc#1012628).
- x86/uprobes: Do not use prefixes.nbytes when looping over
prefixes.bytes (bsc#1012628).
- coredump: fix core_pattern parse error (bsc#1012628).
- mm: list_lru: set shrinker map bit when child nr_items is not
zero (bsc#1012628).
- mm/swapfile: do not sleep with a spin lock held (bsc#1012628).
- hugetlb_cgroup: fix offline of hugetlb cgroup with reservations
(bsc#1012628).
- Revert "amd/amdgpu: Disable VCN DPG mode for Picasso"
(bsc#1012628).
- iommu/amd: Set DTE[IntTabLen] to represent 512 IRTEs
(bsc#1012628).
- mm: memcg/slab: fix obj_cgroup_charge() return value handling
(bsc#1012628).
- lib/syscall: fix syscall registers retrieval on 32-bit platforms
(bsc#1012628).
- can: af_can: can_rx_unregister(): remove WARN() statement from
list operation sanity check (bsc#1012628).
- gfs2: check for empty rgrp tree in gfs2_ri_update (bsc#1012628).
- netfilter: ipset: prevent uninit-value in hash_ip6_add
(bsc#1012628).
- ASoC: wm_adsp: fix error return code in wm_adsp_load()
(bsc#1012628).
- gfs2: Fix deadlock dumping resource group glocks (bsc#1012628).
- gfs2: Don't freeze the file system during unmount (bsc#1012628).
- rtw88: debug: Fix uninitialized memory in debugfs code
(bsc#1012628).
- i2c: qcom: Fix IRQ error misassignement (bsc#1012628).
- i2c: qup: Fix error return code in qup_i2c_bam_schedule_desc()
(bsc#1012628).
- dm writecache: remove BUG() and fail gracefully instead
(bsc#1012628).
- Input: i8042 - fix error return code in i8042_setup_aux()
(bsc#1012628).
- netfilter: nf_tables: avoid false-postive lockdep splat
(bsc#1012628).
- netfilter: nftables_offload: set address type in control
dissector (bsc#1012628).
- netfilter: nftables_offload: build mask based from the matching
bytes (bsc#1012628).
- x86/insn-eval: Use new for_each_insn_prefix() macro to loop
over prefixes bytes (bsc#1012628).
- Revert "geneve: pull IP header before ECN decapsulation"
(bsc#1012628).
- bpf: Fix propagation of 32-bit signed bounds from 64-bit bounds
(bsc#1012628).
- commit 960bcea
- Update patches.suse/tty-Fix-pgrp-locking-in-tiocspgrp.patch
(bsc#1179745 CVE-2020-29661).
- Update patches.suse/tty-Fix-session-locking.patch (bsc#1179745
CVE-2020-29660).
Add CVE numbers.
- commit 1329f77
- Update config files to disable CONFIG_DEBUG_SECTION_MISMATCH (bsc#1177403)
- commit a0a476d
- Linux 5.9.13 (bsc#1012628).
- devlink: Hold rtnl lock while reading netdev attributes
(bsc#1012628).
- devlink: Make sure devlink instance and port are in same net
namespace (bsc#1012628).
- ipv6: addrlabel: fix possible memory leak in ip6addrlbl_net_init
(bsc#1012628).
- net/af_iucv: set correct sk_protocol for child sockets
(bsc#1012628).
- net: openvswitch: fix TTL decrement action netlink message
format (bsc#1012628).
- net/tls: missing received data after fast remote close
(bsc#1012628).
- net/tls: Protect from calling tls_dev_del for TLS RX twice
(bsc#1012628).
- rose: Fix Null pointer dereference in rose_send_frame()
(bsc#1012628).
- sock: set sk_err to ee_errno on dequeue from errq (bsc#1012628).
- tcp: Set INET_ECN_xmit configuration in
tcp_reinit_congestion_control (bsc#1012628).
- tun: honor IOCB_NOWAIT flag (bsc#1012628).
- usbnet: ipheth: fix connectivity with iOS 14 (bsc#1012628).
- vsock/virtio: discard packets only when socket is really closed
(bsc#1012628).
- mptcp: fix NULL ptr dereference on bad MPJ (bsc#1012628).
- net/packet: fix packet receive on L3 devices without visible
hard header (bsc#1012628).
- netfilter: bridge: reset skb->pkt_type after
NF_INET_POST_ROUTING traversal (bsc#1012628).
- ipv4: Fix tos mask in inet_rtm_getroute() (bsc#1012628).
- dt-bindings: net: correct interrupt flags in examples
(bsc#1012628).
- chelsio/chtls: fix panic during unload reload chtls
(bsc#1012628).
- ibmvnic: Ensure that SCRQ entry reads are correctly ordered
(bsc#1012628).
- ibmvnic: Fix TX completion error handling (bsc#1012628).
- tipc: fix incompatible mtu of transmission (bsc#1012628).
- inet_ecn: Fix endianness of checksum update when setting ECT(1)
(bsc#1012628).
- geneve: pull IP header before ECN decapsulation (bsc#1012628).
- net: ip6_gre: set dev->hard_header_len when using header_ops
(bsc#1012628).
- dpaa_eth: copy timestamp fields to new skb in A-050385
workaround (bsc#1012628).
- cxgb3: fix error return code in t3_sge_alloc_qset()
(bsc#1012628).
- net: pasemi: fix error return code in pasemi_mac_open()
(bsc#1012628).
- vxlan: fix error return code in __vxlan_dev_create()
(bsc#1012628).
- chelsio/chtls: fix a double free in chtls_setkey()
(bsc#1012628).
- net: mvpp2: Fix error return code in mvpp2_open() (bsc#1012628).
- net: skbuff: ensure LSE is pullable before decrementing the
MPLS ttl (bsc#1012628).
- net: openvswitch: ensure LSE is pullable before reading it
(bsc#1012628).
- net/sched: act_mpls: ensure LSE is pullable before reading it
(bsc#1012628).
- net/mlx5: DR, Proper handling of unsupported Connect-X6DX SW
steering (bsc#1012628).
- net/mlx5: Fix wrong address reclaim when command interface is
down (bsc#1012628).
- net: mlx5e: fix fs_tcp.c build when IPV6 is not enabled
(bsc#1012628).
- ALSA: usb-audio: US16x08: fix value count for level meters
(bsc#1012628).
- Input: xpad - support Ardwiino Controllers (bsc#1012628).
- Input: i8042 - add ByteSpeed touchpad to noloop table
(bsc#1012628).
- Input: atmel_mxt_ts - fix lost interrupts (bsc#1012628).
- tracing: Fix alignment of static buffer (bsc#1012628).
- tracing: Remove WARN_ON in start_thread() (bsc#1012628).
- uapi: fix statx attribute value overlap for DAX & MOUNT_ROOT
(bsc#1012628).
- drm/i915/gt: Fixup tgl mocs for PTE tracking (bsc#1012628).
- commit 3dfd18b
- tty: Fix ->session locking (bsc#1179745).
- tty: Fix ->pgrp locking in tiocspgrp() (bsc#1179745).
- commit 9455f8b
- net/x25: prevent a couple of overflows (bsc#1178590).
- commit 2a06597
==== libressl ====
Version update (3.2.2 -> 3.2.3)
Subpackages: libcrypto46 libssl48 libtls20
- Update to release 3.2.3
* Fixed: Malformed ASN.1 in a certificate revocation list or a
timestamp response token could lead to a NULL pointer
dereference.
==== libzypp ====
Version update (17.25.2 -> 17.25.5)
- Fix lsof monitoring (bsc#1179909)
- version 17.25.5 (22)
- Prevent librpmDb iterator from accidentally creating an empty
rpmdb in / (repoened bsc#1178910)
- Fix update of gpg keys with elongated expire date (bsc#1179222)
- needreboot: remove udev from the list (bsc#1179083)
- Prefer /run over /var/run.
- version 17.25.4 (22)
- RepoManager: Carefully tidy up the caches. Remove non-directory
entries. (bsc#1178966)
- RpmDb: If no database exists use the _dbpath configured in rpm.
Still makes sure a compat symlink at /var/lib/rpm exists in case
the configures _dbpath is elsewhere. (bsc#1178910)
- Url: Hide known password entries when writing the query part
(bsc#1050625 bsc#1177583, CVE-2017-9271)
- adapt testcase to change introduced by libsolv#402.
- RepoManager: Force refresh if repo url has changed (bsc#1174016)
- RepoInfo: ignore legacy type= in a .repo file and let RepoManager
probe (bsc#1177427, Fixes openSUSE/zypper#357).
- version 17.25.3 (22)
==== lightdm ====
Subpackages: liblightdm-gobject-1-0 lightdm-lang
- Only build the qt4 subpackage up to Leap 15.2 / SLE 15 SP2
(boo#1179613)
==== lvm2 ====
Subpackages: liblvm2cmd2_03
- lvm2 should use 'external_device_info_source="udev"' by default (bsc#1179691)
- change external_device_info_source from none to udev
- comment out lvm.conf item preferred_names by default (bsc#1179738)
- comment out preferred_names
- Update lvm.conf, make it closely to upstream's setting (bsc#1179739)
- change lvm.conf, follow upstream 7b41ea61b2e33dbfad754fd4c6e7851faf7ca5ef
==== lvm2-device-mapper ====
Subpackages: device-mapper libdevmapper-event1_03 libdevmapper1_03
- lvm2 should use 'external_device_info_source="udev"' by default (bsc#1179691)
- change external_device_info_source from none to udev
- comment out lvm.conf item preferred_names by default (bsc#1179738)
- comment out preferred_names
- Update lvm.conf, make it closely to upstream's setting (bsc#1179739)
- change lvm.conf, follow upstream 7b41ea61b2e33dbfad754fd4c6e7851faf7ca5ef
==== malcontent ====
Subpackages: libmalcontent-0-0 libmalcontent-ui-0-0 typelib-1_0-Malcontent-0
- Split MalcontentControl into seperate package so a library
doesn't require a desktop application.
==== man-pages-ja ====
Version update (20191215 -> 20201115)
- version update to 20201115
* added and improved manual pages
==== mdadm ====
- There are some important fixes merged in mdadm upstream which
should go with jsc#SLE-13700. This is the update from upstream
mdadm including the important fixes we should have.
- Detail: show correct raid level when the array is inactive
(jsc#SLE-13700)
0095-Detail-show-correct-raid-level-when-the-array-is-ina.patch
- Don't create bitmap for raid5 with journal disk
(jsc#SLE-13700)
0096-Don-t-create-bitmap-for-raid5-with-journal-disk.patch
- Monitor: refresh mdstat fd after select (jsc#SLE-13700)
0097-Monitor-refresh-mdstat-fd-after-select.patch
- Monitor: stop notifing about containers. (jsc#SLE-13700)
0098-Monitor-stop-notifing-about-containers.patch
- mdmonitor: set small delay once (jsc#SLE-13700)
0099-mdmonitor-set-small-delay-once.patch
- Check if other Monitor instance running before fork.
(jsc#SLE-13700)
0100-Check-if-other-Monitor-instance-running-before-fork.patch
- Super1: allow RAID0 layout setting to be removed.
(jsc#SLE-13700)
0101-Super1-allow-RAID0-layout-setting-to-be-removed.patch
- Detail: fix segfault during IMSM raid creation
(jsc#SLE-13700)
0102-Detail-fix-segfault-during-IMSM-raid-creation.patch
- Create.c: close mdfd and generate uevent (jsc#SLE-13700)
0103-Create.c-close-mdfd-and-generate-uevent.patch
- imsm: update num_data_stripes according to dev_size
(jsc#SLE-13700)
0104-imsm-update-num_data_stripes-according-to-dev_size.patch
- imsm: remove redundant calls to imsm_get_map (jsc#SLE-13700)
0105-imsm-remove-redundant-calls-to-imsm_get_map.patch
- Monitor: don't use default modes when creating a file
(jsc#SLE-13700)
0106-Monitor-don-t-use-default-modes-when-creating-a-file.patch
- imsm: limit support to first NVMe namespace (jsc#SLE-13700)
0107-imsm-limit-support-to-first-NVMe-namespace.patch
- mdadm: Unify forks behaviour (jsc#SLE-13700)
0108-mdadm-Unify-forks-behaviour.patch
- mdadm/Detail: show correct state for clustered array
(jsc#SLE-13700)
0109-mdadm-Detail-show-correct-state-for-clustered-array.patch
- Make target to install binaries only (jsc#SLE-13700)
0110-Make-target-to-install-binaries-only.patch
- udev: start grow service automatically (jsc#SLE-13700)
0111-udev-start-grow-service-automatically.patch
==== mdevctl ====
Version update (0.61 -> 0.78)
- Update to version 0.78:
* Automatic version commit for tag 0.78
* use standard bash path
* avoid other tags spilling into the .spec changelog
* mdevctl: fix cleanup on error when creating and removing mdev
* version support
* Fix attributes getting applied via start-parent-mdevs
* mdevctl: fix cleanup on error when writing to attribute
* Remove never used 'available' option
* Fix attribute validation
jsc#SLE-15861, bsc#1179770
==== openldap2 ====
Version update (2.4.55 -> 2.4.56)
Subpackages: libldap-2_4-2 libldap-data openldap2-client
- updated to 2.4.56
OpenLDAP 2.4.56 Release (2020/11/10)
Fixed slapd to remove assert in certificateListValidate (ITS#9383)
Fixed slapd to remove assert in csnNormalize23 (ITS#9384)
Fixed slapd to better parse ldapi listener URIs (ITS#9379)
==== patterns-gnome ====
Version update (20200416 -> 20201210)
Subpackages: patterns-gnome-gnome patterns-gnome-gnome_basic patterns-gnome-gnome_basis patterns-gnome-gnome_basis_opt patterns-gnome-gnome_games patterns-gnome-gnome_ide patterns-gnome-gnome_imaging patterns-gnome-gnome_internet patterns-gnome-gnome_multimedia patterns-gnome-gnome_office patterns-gnome-gnome_utilities patterns-gnome-gnome_x11 patterns-gnome-gnome_yast patterns-gnome-sw_management_gnome
- Add malcontent-control recommendation to the base pattern
==== patterns-server ====
Subpackages: patterns-server-dhcp_dns_server patterns-server-directory_server patterns-server-file_server patterns-server-gateway_server patterns-server-kvm_server patterns-server-lamp_server patterns-server-mail_server patterns-server-printing
- kvm-server for s390x: beginning with the v5.2.0 qemu package,the
s390x specific sub-package is named qemu-s390x, not qemu-s390.
Reference using the new name (boo#1177764 jsc#SLE-17060)
==== patterns-yast ====
Version update (20191229 -> 20201210)
Subpackages: patterns-yast-x11_yast patterns-yast-yast2_basis patterns-yast-yast2_desktop patterns-yast-yast2_install_wf patterns-yast-yast2_server
- Do not recomment yast2-fonts (bsc#1179866).
- 20201210
==== perl-Mojolicious ====
Version update (8.66 -> 8.67)
- updated to 8.67
see /usr/share/doc/packages/perl-Mojolicious/Changes
8.67 2020-12-04
- Deprecated Mojolicious::Routes::Route::route in favor of Mojolicious::Routes::Route::any.
- Deprecated Mojolicious::Routes::Route::over in favor of Mojolicious::Routes::Route::requires.
- Deprecated Mojolicious::Routes::Route::via in favor of Mojolicious::Routes::Route::methods.
- Deprecated Mojolicious::Routes::Route::detour.
- Added methods and requires methods to Mojolicious::Routes::Route.
- Improved Mojolicious::Commands to throw an exception for invalid commands.
==== polkit-default-privs ====
Version update (1550+20201119.2c1dce4 -> 1550+20201208.135bf51)
- Update to version 1550+20201208.135bf51:
* libvirt: allow the active session to create read-only connections (bsc#1179126)
* profiles: cleanup outdates keep_always entries
==== postgresql13 ====
Subpackages: libpq5 postgresql13-contrib postgresql13-docs postgresql13-llvmjit postgresql13-server
- bsc#1178961: %ghost the symlinks to pg_config and ecpg.
- boo#1179765: BuildRequire libpq5 and libecpg6 when not building
them to avoid dangling symlinks in the devel package.
==== python-M2Crypto ====
Version update (0.36.0 -> 0.37.1)
- Update to 0.37.1:
- Remove support for CentOS 6 and Python 2.6 (remove
tests.vendor module). Python 2.7 is still fully supported.
- Remodel CI:
- on GitHub switched from Travis-CI to GH Actions
- on GitLab-CI: stop testing 2.7 on Fedora, add centos7
- update appveyor.yml
- Stop playing with swig in setup.py, we don't support swig 1.*
anymore.
- Fix dereferencing of pointers (gl#m2crypto/m2crypto#281)
- Replace deprecated PyObject_AsReadBuffer with our own shim
(thanks to Casey Deccio for saving my bacon there).
- Use parametrized to create parametrized tests (new external
dependency).
- Only use DigestSign() and DigestUpdate() with OpenSSL >= 1.1.1
- Expose all the X509_V_FLAG
- Add support for DigestSign* and DigestVerify*
==== python-Pillow ====
Version update (7.2.0 -> 8.0.1)
- specfile:
* README.rst -> README.md
- update to version 8.0.1:
* Update FreeType used in binary wheels to 2.10.4 to fix
CVE-2020-15999. [radarhere]
* Moved string_dimension image to pillow-depends #4993 [radarhere]
- changes from version 8.0.0:
* Drop support for EOL Python 3.5 #4746, #4794 [hugovk, radarhere,
nulano]
* Drop support for PyPy3 < 7.2.0 #4964 [nulano]
* Remove ImageCms.CmsProfile attributes deprecated since 3.2.0 #4768
[hugovk, radarhere]
* Remove long-deprecated Image.py functions #4798 [hugovk, nulano,
radarhere]
* Add support for 16-bit precision JPEG quantization values #4918
[gofr]
* Added reading of IFD tag type #4979 [radarhere]
* Initialize offset memory for PyImagingPhotoPut #4806 [nqbit]
* Fix TiffDecode comparison warnings #4756 [nulano]
* Docs: Add dark mode #4968 [hugovk, nulano]
* Added macOS SDK install path to library and include directories
[#4974] [radarhere, fxcoudert]
* Imaging.h: prevent confusion with system #4923 [ax3l, ,radarhere]
* Avoid using pkg_resources in PIL.features.pilinfo #4975 [nulano]
* Add getlength and getbbox functions for TrueType fonts #4959
[nulano, radarhere, hugovk]
* Allow tuples with one item to give single color value in getink
[#4927] [radarhere, nulano]
* Add support for CBDT and COLR fonts #4955 [nulano, hugovk]
* Removed OSError in favour of DecompressionBombError for BMP #4966
[radarhere]
* Implemented another ellipse drawing algorithm #4523 [xtsm,
radarhere]
* Removed unused JpegImagePlugin._fixup_dict function #4957
[radarhere]
* Added reading and writing of private PNG chunks #4292 [radarhere]
* Implement anchor for TrueType fonts #4930 [nulano, hugovk]
* Fixed bug in Exif __delitem__ #4942 [radarhere]
* Fix crash in ImageTk.PhotoImage on MinGW 64-bit #4946 [nulano]
* Moved CVE images to pillow-depends #4929 [radarhere]
* Refactor font_getsize and font_render #4910 [nulano]
* Fixed loading profile with non-ASCII path on Windows #4914
[radarhere]
* Fixed effect_spread bug for zero distance #4908 [radarhere,
hugovk]
* Added formats parameter to Image.open #4837 [nulano, radarhere]
* Added regular_polygon draw method #4846 [comhar]
* Raise proper TypeError in putpixel #4882 [nulano, hugovk]
* Added writing of subIFDs #4862 [radarhere]
* Fix IFDRational __eq__ bug #4888 [luphord, radarhere]
* Fixed duplicate variable name #4885 [liZe, radarhere]
* Added homebrew zlib include directory #4842 [radarhere]
* Corrected inverted PDF CMYK colors #4866 [radarhere]
* Do not try to close file pointer if file pointer is empty #4823
[radarhere]
* ImageOps.autocontrast: add mask parameter #4843 [navneeth, hugovk]
* Read EXIF data tEXt chunk into info as bytes instead of string
[#4828] [radarhere]
* Replaced distutils with setuptools #4797, #4809, #4814, #4817,
[#4829], #4890 [hugovk, radarhere]
* Add MIME type to PsdImagePlugin #4788 [samamorgan]
* Allow ImageOps.autocontrast to specify low and high cutoffs
separately #4749 [millionhz, radarhere]
==== python-Twisted ====
- Add twisted-pr1369-remove-pyopenssl-npn.patch to support
pyOpenSSL 20
- Add twisted-pr1487-increase-ffdh-keysize.patch to support
crpytography 3.3
- Fix the update-alternatives setup
* manpages were cloned but never registerd with u-a
* install alternatives as master and slave links now
==== python-cryptography ====
Version update (3.2.1 -> 3.3)
- update to 3.3.0
- BACKWARDS INCOMPATIBLE: Support for Python 3.5 has been removed
due to low usage and maintenance burden.
- BACKWARDS INCOMPATIBLE: The GCM and AESGCM now require 64-bit
to 1024-bit (8 byte to 128 byte) initialization vectors. This
change is to conform with an upcoming OpenSSL release that will
no longer support sizes outside this window.
- BACKWARDS INCOMPATIBLE: When deserializing asymmetric keys we
now raise ValueError rather than UnsupportedAlgorithm when an
unsupported cipher is used. This change is to conform with an
upcoming OpenSSL release that will no longer distinguish
between error types.
- BACKWARDS INCOMPATIBLE: We no longer allow loading of finite
field Diffie-Hellman parameters of less than 512 bits in
length. This change is to conform with an upcoming OpenSSL
release that no longer supports smaller sizes. These keys were
already wildly insecure and should not have been used in any
application outside of testing.
- Updated Windows, macOS, and manylinux wheels to be compiled
with OpenSSL 1.1.1i.
- Python 2 support is deprecated in cryptography. This is the
last release that will support Python 2.
- Added the recover_data_from_signature() function to
RSAPublicKey for recovering the signed data from an RSA
signature.
- Remove unnecessary dependency virtualenv.
==== python-gst ====
Version update (1.18.1 -> 1.18.2)
- Update to version 1.18.2:
+ No changes.
==== python-immutables ====
- Add skip_32bit_tests.patch (gh#MagicStack/immutables#53) to skip tests
which fail on 32bit architectures.
==== python-outcome ====
- BuildRequire more than the default python3 flavor packages
gh#openSUSE/python-rpm-macros#66
- pytest-cov is not required
==== python-paramiko ====
- Set environment to utf-8 to allow tests to pass on Python 2. (bsc#1178341)
==== python-psutil ====
- Only require unittest2 for Leap.
- Add missing BR for unittest2
==== python-reportlab ====
Version update (3.5.51 -> 3.5.56)
- Update to 3.5.56
* allow setting initial template cycle
* fix for pillow 8.0.x
* added trustedHosts & trustedSchemes settings
* allow Drawing.outDir to be a callable
- Rebased reportlab-missing-includes.patch
==== python-sniffio ====
- Revert the python36 skip. python36-curio has been reenabled
==== qemu ====
Subpackages: qemu-ipxe qemu-sgabios
- Package and cross-build rom files for aarch64 from
SLE15/Leap15.0 to fix boo#1125964
- Add patch to fix seabios cross-compilation:
* seabios-fix_cross_compilation.patch
- Add patch to fix sgabios cross-compilation:
* sgabios-fix-cross-build.patch
- Fix _constraints to include all architectures for disk size
(fix aarch64)
- Revert upstream patch which declares x86 vmx feature a migration
blocker. Given the proliferation of using vm's with host features
passed through and the general knowledge that nested
virtualization has many usage caveats, but still gets put in use
in restricted scenarios, this patch did more harm than good, I
feel. So despite this relaxation, please consider yourself warned
that nested virtualization is not yet a supportable feature.
(bsc#1121604)
0058-Revert-target-i386-kvm-add-VMX-migr.patch
- Fix SEV VM device assignment (bsc#1123205)
0059-memory-Fix-the-memory-region-type-a.patch
0060-target-i386-sev-Do-not-pin-the-ram-.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-3.1
- Remove 71-sev.rules, which modifies the default permissions of
/dev/sev by adding the kvm group as reader/writer. Upstream
decided to take a different approach for libvirt to manage SEV
due to security concerns which I agree overrides the convenience
of providing /dev/sev access to all the kvm group (bsc#1124842
bsc#1102604)
- Increase memory needed to build qemu-testsuite for ppc* arch's
in _constraints file
- Return specification exception for unimplemented diag 308 subcodes
rather than a hardware error (bsc#1123179)
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-3.1
* Patches added:
0057-s390x-Return-specification-exceptio.patch
- Fix OOB issue in slirp (CVE-2019-6778 bsc#1123156)
0056-slirp-check-data-length-while-emula.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-3.1
- Fix ipxe GCC 9 incompatibilities (bsc#1121464)
ipxe-efi-Simplify-diagnostic-for-NULL-handle.patch
ipxe-build-Disable-gcc-address-of-packed-member-warning.patch
- Tweak Xen interface to be compatible with upcoming v4.12 Xen
0055-xen-Add-xen-v4.12-based-xc_domain_c.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-3.1
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-3.1
* Patches added:
0054-linux-user-make-pwrite64-pread64-fd.patch
(bsc#1121600)
- Clarify that move to include v3.1.0 in qemu package corresponds
with fate#327089, which of course builds on v3.0.0 mentioned
previously, and that among other patches which this change
obsoletes (because functionality is included in base version) I
will mention one pointed out by reviewers:
0094-s390x-cpumodels-add-z14-Model-ZR1.patch
- include post v3.1.0 patches marked for next stable release:
0041-vfio-ap-flag-as-compatible-with-bal.patch
0042-hw-s390x-Fix-bad-mask-in-time2tod.patch
0043-pcie-set-link-state-inactive-active.patch
0044-pc-piix4-Update-smbus-I-O-space-aft.patch
0045-hw-usb-fix-mistaken-de-initializati.patch
- Address various security/stability issues
* Fix host access vulnerability in usb-mtp infrastructure
(CVE-2018-16872 bsc#1119493)
0046-usb-mtp-use-O_NOFOLLOW-and-O_CLOEXE.patch
* Fix DoS in pvrdma interface (CVE-2018-20123 bsc#1119437)
0047-pvrdma-release-device-resources-in-.patch
* Fix OOB access issue in rdma backend (CVE-2018-20124 bsc#1119840)
0048-rdma-check-num_sge-does-not-exceed-.patch
* Fix NULL pointer reference in pvrdma emulation (CVE-2018-20191
bsc#1119979)
0049-pvrdma-add-uar_read-routine.patch
* Fix DoS in pvrdma interface (CVE-2018-20125 bsc#1119989)
0050-pvrdma-check-number-of-pages-when-c.patch
* Fix DoS in pvrdma interface (CVE-2018-20216 bsc#1119984)
0051-pvrdma-check-return-value-from-pvrd.patch
* Fix DoS in pvrdma interface (CVE-2018-20126 bsc#1119991)
0052-pvrdma-release-ring-object-in-case-.patch
- one more post v3.1.0 patches marked for next stable release:
0053-block-Fix-hangs-in-synchronous-APIs.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-3.1
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-3.1
* Patches added:
0040-xen-ignore-live-parameter-from-xen-.patch
(bsc#1079730, bsc#1101982, bsc#1063993)
- Follow up on ideas prompted by last change: clean up the patches
generated by git workflow. There is no value to the first line
(mbox From line), or [PATCH] on subject line. Get rid of those
- Other minor fixes and improvements to update_git.sh
- Modify update_git.sh script:
pass --zero-commit to format-patch
This removes needless noise in the buildservice when the same set
of patches is imported/exported at different times by different users.
pass --no-signature to format-patch
Remove sed call which used to remove the signature, use mv instead
- Use /bin/bash to echo value into sys fs for ksm control (bsc#1112646)
- fix memory leak in xen_disk (bsc#1100408)
0039-xen_disk-Avoid-repeated-memory-allo.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-3.1
- building against xen-devel requires the XC_* compat macros to be
set because this version of QEMU will be built against many
versions of Xen. configure will decide on the appropriate function
names it knows about today. To actually call these functions,
future versions of Xen may require XC_* to be set.
Furthermore, fix a bug in QEMU: xen_common.h undefines the XC_*
macros unconditionally.
- Update to v3.1.0: See http://wiki.qemu.org/ChangeLog/3.1
Take note that ongoing feature deprecation is tracked at both
http://wiki.qemu-project.org/Features/LegacyRemoval and in
Appendix B of the qemu-doc.* files installed with the qemu package
Some noteworthy changes:
* x86 IceLake-Server and IceLake-Client cpu models added
* Document recommendations for choosing cpu modesl for x86 guests
* Support for Hyper-V enlightened VMCS
* stdvga and bochs-display devices can expose EDID information to the
guest. stdvga xres and yres properties are exposed in the EDID information
* s390 improvements: vfio-ap crypto device support, max-cpu model added,
etoken support, huge page backing support
* ARM: ARMv6M architecture and Cortex-M0 cpu host support added,
Cortex-A72 cpu model added, GICv2 virtualization extensions, emulation
of AArch32 virtualization, Scalable Vector Extension implemented
* Support for AMD IOMMU interrupt remapping and guest virtual APIC mode
* Multithreaded TCG on x86 is considered supportable
* Add a patch to triple timeout of block io tests, since the obs
environment is fickle
* x86 save/restore and live migration is prohibited if Intel KVM nested
virtualization is enabled
* Patches dropped (upstream unless otherwise noted):
0033-migration-warn-about-inconsistent-s.patch (shouldn't be needed anymore)
0035-configure-Modify-python-used-for-io.patch (upstream now python3 friendly)
0039-tests-boot-serial-test-Bump-timeout.patch
0040-linux-headers-update.patch
0041-s390x-kvm-add-etoken-facility.patch
0042-seccomp-prefer-SCMP_ACT_KILL_PROCES.patch
0043-configure-require-libseccomp-2.2.0.patch
0044-seccomp-set-the-seccomp-filter-to-a.patch
0045-sandbox-disable-sandbox-if-CONFIG_S.patch
0046-seccomp-check-TSYNC-host-capability.patch
0047-linux-user-init_guest_space-Try-to-.patch
0048-ne2000-fix-possible-out-of-bound-ac.patch
0049-rtl8139-fix-possible-out-of-bound-a.patch
0050-pcnet-fix-possible-buffer-overflow.patch
0051-net-ignore-packet-size-greater-than.patch
0052-lsi53c895a-check-message-length-val.patch
0053-nvme-fix-oob-access-issue-CVE-2018-.patch (fixed differently upstream)
* Patches renamed:
0034-smbios-Add-1-terminator-if-any-stri.patch
- > 0033-smbios-Add-1-terminator-if-any-stri.patch
0036-qemu-io-tests-comment-out-problemat.patch
- > 0034-qemu-io-tests-comment-out-problemat.patch
0037-tests-test-thread-pool-is-racy-add-.patch
- > 0035-tests-test-thread-pool-is-racy-add-.patch
0038-xen-add-block-resize-support-for-xe.patch
- > 0036-xen-add-block-resize-support-for-xe.patch
* Patches added:
0037-tests-qemu-iotests-Triple-timeout-o.patch
0038-tests-block-io-test-130-needs-some-.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-3.1
- Update includes the following bug fixes: bsc#1108474, bsc#1117615
- Update includes the following SLE requested functionality: FATE#324810,
FATE#325875, FATE#326369, FATE#326378, FATE#326379, FATE#326401,
FATE#326672, FATE#326829
- Make the following packaging changes related to the new release
* Enable libpmem, pvrdma, vhost-crypto features and qemu-block-nfs
subpackage
* New roms available: vgabios-bochs-display.bin, vgabios-ramfb.bin
* New binary tool included (qemu-edid) for testing the new qemu edid
generator
- Tweaked patches we carry to pass qemu's checkpatch checker
- Modify update_git.sh script to enable packaging qemu from development
time sources, not just at release time
- Removed erroneous (and now useless) tests for tar and gzip formats
- Don't exclude s390x anymore from building the qemu-testsuite
- Based on current OBS building observations make changes to storage
and memory requires specified in the _constraints file
- Re-sync openSUSE and SUSE SLE qemu packages. This changes file
is the openSUSE one with this entry providing the intervening
SLE CVE, FATE, and bugzilla references, which are still addressed
in this package, and not yet called out in this changes file.
* CVE-2018-10839 CVE-2018-16847 CVE-2018-17958 CVE-2018-17962
CVE-2018-17963 CVE-2018-18849
* bsc#1110910 bsc#1111006 bsc#1111010 bsc#1111013 bsc#1114422
bsc#1114529
* Patches added:
0047-linux-user-init_guest_space-Try-to-.patch
0048-ne2000-fix-possible-out-of-bound-ac.patch
0049-rtl8139-fix-possible-out-of-bound-a.patch
0050-pcnet-fix-possible-buffer-overflow.patch
0051-net-ignore-packet-size-greater-than.patch
0052-lsi53c895a-check-message-length-val.patch
0053-nvme-fix-oob-access-issue-CVE-2018-.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-3.0
* Adding changes to mitigate seccomp vulnerability
(CVE-2018-15746 bsc#1106222)
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-3.0
* Patches added:
0042-seccomp-prefer-SCMP_ACT_KILL_PROCES.patch
0043-configure-require-libseccomp-2.2.0.patch
0044-seccomp-set-the-seccomp-filter-to-a.patch
0045-sandbox-disable-sandbox-if-CONFIG_S.patch
0046-seccomp-check-TSYNC-host-capability.patch
- Do more misc spec file fixes:
* Be explicit in spec file about Version used for all subpackages
(again, to avoid subpackage ordering issues). Default Release
tag is also brought in by obs format_spec_file service
* Delete binary blob s390-netboot.img, which we rebuild
* Don't provide separate Url for qemu-kvm package - the main qemu
website provides easily findable link for kvm specifics
* Associate petalogix-ml605.dtb with qemu-extra instead of qemu-ppc
* More entry sorting
- Correct some versioning as follows:
* Accurately reflect the qemu-ipxe package version value by adding
"+" at the end
* Don't overwrite seabios .version file, since now (for quite some
time actually) upstream tarball creation creates this file and
the value we are writing to it is actually wrong
- Make spec file improvements, including the following:
* Add qemu.keyring to enable package source verification
* Create srcname macro to identify source file name separately from
package name
* Create alternate to %version to avoid subpackage ordering
causing inadvertantly wrong %version value at point of use
* Sort some entries
* Be more consistent with macro syntax usage
* Minor file tweaks as done by osc format_spec_file service
- Re-sync openSUSE and SUSE SLE qemu packages. This changes file
is the openSUSE one with this entry providing the intervening
SLE CVE, FATE, and bugzilla references, which are still addressed
in this package, and not yet called out in this changes file.
* CVE-2018-11806 CVE-2018-12617 CVE-2018-7550 CVE-2018-15746
* fate#325467
* bsc#1091695 bsc#1094725 bsc#1094913 bsc#1096223 bsc#1098735
bsc#1103628 bsc#1105279 bsc#1106222 bsc#1106222 bsc#1107489
* Patches added:
* only enable glusterfs for openSUSE
0040-linux-headers-update.patch
0041-s390x-kvm-add-etoken-facility.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-3.0
- Increase timeout for boot-serial-test, since we've hit the timeout
for armv7l arch in qemu-testsuite.
0039-tests-boot-serial-test-Bump-timeout.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-3.0
- Drop legacy kvm_stat script and man page. We'll rely on the kvm_stat
package only going forward
kvm_stat
kvm_stat.1.gz
- Update SLE support documentation to match v3.0.0 release
- Update to v3.0.0: See http://wiki.qemu.org/ChangeLog/3.0
Don't read anything into the major version number update. It's
been decided to increase the major version number each year.
Take note that ongoing feature deprecation is tracked at both
http://wiki.qemu-project.org/Features/LegacyRemoval and in
Appendix B of the qemu-doc.* files installed with the qemu package.
Some noteworthy changes:
* Support for additional x86/AMD mitigations against Speculative
Store Bypass (Spectre Variant 4, CVE-2018-3639)
* Improved support for nested KVM guests running on Hyper-V
* Block device support for active disk-mirroring, which avoids
convergence issues which may arise when doing passive/background
mirroring of busy devices
* Improved support for AHCI emulation, SCSI emulation, and persistent
reservations / cluster management
* OpenGL ES support for SDL front-end, additional framebuffer
device options for early boot display without using legacy VGA
emulation
* Live migration support for TPM TIS devices, capping bandwidth
usage during post-copy migration, and recovering from a failed
post-copy migration
* Improved latency when using user-mode networking / SLIRP
* ARM: support for SMMUv3 IOMMU when using 'virt' machine type
* ARM: v8M extensions for VLLDM and VLSTM floating-point instructions,
and improved support for AArch64 v8.2 FP16 extensions
* ARM: support for Scalable Vector Extensions in linux-user mode
* Microblaze: support for 64-bit address sizes and translation bug
fixes
* PowerPC: PMU support for mac99 machine type and improvements for
Uninorth PCI host bridge emulation for Mac machine types
* PowerPC: preliminary support for emulating POWER9 hash MMU mode when
using powernv machine type
* RISC-V: improvement for privileged ISA emulation
* s390: support for z14 ZR1 CPU model
* s390: bpb/ppa15 Spectre mitigations enabled by default for z196 and
later CPU models
* s390: support for configuring consoles via -serial options
* Patches dropped (upstream unless otherwise noted):
0008-linux-user-fix-segfault-deadlock.patch (no longer needed)
0039-blockjob-Fix-assertion-in-block_job.patch
0041-seccomp-allow-sched_setscheduler-wi.patch
Make-installed-scripts-explicitly-python3.patch (we now make
python3 explicit in other patch)
* Patches renamed:
0009-linux-user-binfmt-support-host-bina.patch
- > 0008-linux-user-binfmt-support-host-bina.patch
0010-linux-user-Fake-proc-cpuinfo.patch
- > 0009-linux-user-Fake-proc-cpuinfo.patch
0011-Remove-problematic-evdev-86-key-fro.patch
- > 0010-Remove-problematic-evdev-86-key-fro.patch
0012-linux-user-use-target_ulong.patch
- > 0011-linux-user-use-target_ulong.patch
0013-Make-char-muxer-more-robust-wrt-sma.patch
- > 0012-Make-char-muxer-more-robust-wrt-sma.patch
0014-linux-user-lseek-explicitly-cast-no.patch
- > 0013-linux-user-lseek-explicitly-cast-no.patch
0015-AIO-Reduce-number-of-threads-for-32.patch
- > 0014-AIO-Reduce-number-of-threads-for-32.patch
0016-xen_disk-Add-suse-specific-flush-di.patch
- > 0015-xen_disk-Add-suse-specific-flush-di.patch
0017-qemu-bridge-helper-reduce-security-.patch
- > 0016-qemu-bridge-helper-reduce-security-.patch
0018-qemu-binfmt-conf-use-qemu-ARCH-binf.patch
- > 0017-qemu-binfmt-conf-use-qemu-ARCH-binf.patch
0019-linux-user-properly-test-for-infini.patch
- > 0018-linux-user-properly-test-for-infini.patch
0020-roms-Makefile-pass-a-packaging-time.patch
- > 0019-roms-Makefile-pass-a-packaging-time.patch
0021-Raise-soft-address-space-limit-to-h.patch
- > 0020-Raise-soft-address-space-limit-to-h.patch
0022-increase-x86_64-physical-bits-to-42.patch
- > 0021-increase-x86_64-physical-bits-to-42.patch
0023-vga-Raise-VRAM-to-16-MiB-for-pc-0.1.patch
- > 0022-vga-Raise-VRAM-to-16-MiB-for-pc-0.1.patch
0024-i8254-Fix-migration-from-SLE11-SP2.patch
- > 0023-i8254-Fix-migration-from-SLE11-SP2.patch
0025-acpi_piix4-Fix-migration-from-SLE11.patch
- > 0024-acpi_piix4-Fix-migration-from-SLE11.patch
0026-Fix-tigervnc-long-press-issue.patch
- > 0025-Fix-tigervnc-long-press-issue.patch
0027-string-input-visitor-Fix-uint64-par.patch
- > 0026-string-input-visitor-Fix-uint64-par.patch
0028-test-string-input-visitor-Add-int-t.patch
- > 0027-test-string-input-visitor-Add-int-t.patch
0029-test-string-input-visitor-Add-uint6.patch
- > 0028-test-string-input-visitor-Add-uint6.patch
0030-tests-Add-QOM-property-unit-tests.patch
- > 0029-tests-Add-QOM-property-unit-tests.patch
0031-tests-Add-scsi-disk-test.patch
- > 0030-tests-Add-scsi-disk-test.patch
0032-Switch-order-of-libraries-for-mpath.patch
- > 0031-Switch-order-of-libraries-for-mpath.patch
0033-Make-installed-scripts-explicitly-p.patch
- > 0032-Make-installed-scripts-explicitly-p.patch (python2->python3)
0034-migration-warn-about-inconsistent-s.patch
- > 0033-migration-warn-about-inconsistent-s.patch
0035-smbios-Add-1-terminator-if-any-stri.patch
- > 0034-smbios-Add-1-terminator-if-any-stri.patch
0036-configure-Modify-python-used-for-io.patch
- > 0035-configure-Modify-python-used-for-io.patch
0037-qemu-io-tests-comment-out-problemat.patch
- > 0036-qemu-io-tests-comment-out-problemat.patch
0038-tests-test-thread-pool-is-racy-add-.patch
- > 0037-tests-test-thread-pool-is-racy-add-.patch
0040-xen-add-block-resize-support-for-xe.patch
- > 0038-xen-add-block-resize-support-for-xe.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-3.0
- Update QEMU to allow kvm group access to /dev/sev (bsc#1102604).
71-sev.rules
- Update to v2.12.1, a stable, (mostly) bug-fix-only release
* This update contains new mitigation functionality for
CVE-2018-3639 (Speculative Store Bypass) in x86. There are also
bug fixes for migration, Intel IOMMU emulation, block layer/image
handling, ARM emulation, and various other areas.
(Note that a number of 2.12.1 patches were already included by us
previously) (CVE-2018-3639 bsc#1092885)
* Patches dropped (subsumed by stable update):
0039-device_tree-Increase-FDT_MAX_SIZE-t.patch
0040-vnc-fix-use-after-free.patch
0041-ccid-Fix-dwProtocols-advertisement-.patch
0042-tcg-arm-Fix-memory-barrier-encoding.patch
0043-s390-ccw-force-diag-308-subcode-to-.patch
0044-nbd-client-fix-nbd_negotiate_simple.patch
0045-migration-block-dirty-bitmap-fix-me.patch
0046-nbd-client-Fix-error-messages-durin.patch
0047-nbd-client-Relax-handling-of-large-.patch
0048-qxl-fix-local-renderer-crash.patch
0049-tcg-Limit-the-number-of-ops-in-a-TB.patch
0050-target-arm-Clear-SVE-high-bits-for-.patch
0051-cpus-tcg-fix-never-exiting-loop-on-.patch
0052-s390x-css-disabled-subchannels-cann.patch
0053-pc-bios-s390-ccw-struct-tpi_info-mu.patch
0054-virtio-ccw-common-reset-handler.patch
0055-s390x-ccw-make-sure-all-ccw-devices.patch
0056-blockjob-expose-error-string-via-qu.patch
0058-qemu-io-Use-purely-string-blockdev-.patch
0059-qemu-img-Use-only-string-options-in.patch
0060-nfs-Remove-processed-options-from-Q.patch
0061-i386-define-the-ssbd-CPUID-feature-.patch
0062-i386-Define-the-Virt-SSBD-MSR-and-h.patch
0063-i386-define-the-AMD-virt-ssbd-CPUID.patch
0064-ahci-fix-PxCI-register-race.patch
0065-ccid-card-passthru-fix-regression-i.patch
* Patches renamed:
0057-blockjob-Fix-assertion-in-block_job.patch
- > 0039-blockjob-Fix-assertion-in-block_job.patch
0066-xen-add-block-resize-support-for-xe.patch
- > 0040-xen-add-block-resize-support-for-xe.patch
0067-seccomp-allow-sched_setscheduler-wi.patch
- > 0041-seccomp-allow-sched_setscheduler-wi.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.12
- Fixing seccomp resourcecontrol defunct issue (bsc#1102627)
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.12
* Patches added:
0067-seccomp-allow-sched_setscheduler-wi.patch
- Add ipxe-fix-build.patch to not error out with
binutils >= 2.31 .
- Remove linux-user patch which is no longer needed (bsc#1098056)
* Patches dropped:
0011-linux-user-XXX-disable-fiemap.patch
* Patches renamed:
0036-Remove-problematic-evdev-86-key-fro.patch
- > 0011-Remove-problematic-evdev-86-key-fro.patch
0037-configure-Modify-python-used-for-io.patch
- > 0036-configure-Modify-python-used-for-io.patch
0038-qemu-io-tests-comment-out-problemat.patch
- > 0037-qemu-io-tests-comment-out-problemat.patch
0039-tests-test-thread-pool-is-racy-add-.patch
- > 0038-tests-test-thread-pool-is-racy-add-.patch
0040-device_tree-Increase-FDT_MAX_SIZE-t.patch
- > 0039-device_tree-Increase-FDT_MAX_SIZE-t.patch
0041-vnc-fix-use-after-free.patch
- > 0040-vnc-fix-use-after-free.patch
0042-ccid-Fix-dwProtocols-advertisement-.patch
- > 0041-ccid-Fix-dwProtocols-advertisement-.patch
0043-tcg-arm-Fix-memory-barrier-encoding.patch
- > 0042-tcg-arm-Fix-memory-barrier-encoding.patch
0044-s390-ccw-force-diag-308-subcode-to-.patch
- > 0043-s390-ccw-force-diag-308-subcode-to-.patch
0045-nbd-client-fix-nbd_negotiate_simple.patch
- > 0044-nbd-client-fix-nbd_negotiate_simple.patch
0046-migration-block-dirty-bitmap-fix-me.patch
- > 0045-migration-block-dirty-bitmap-fix-me.patch
0047-nbd-client-Fix-error-messages-durin.patch
- > 0046-nbd-client-Fix-error-messages-durin.patch
0048-nbd-client-Relax-handling-of-large-.patch
- > 0047-nbd-client-Relax-handling-of-large-.patch
0049-qxl-fix-local-renderer-crash.patch
- > 0048-qxl-fix-local-renderer-crash.patch
0050-tcg-Limit-the-number-of-ops-in-a-TB.patch
- > 0049-tcg-Limit-the-number-of-ops-in-a-TB.patch
0051-target-arm-Clear-SVE-high-bits-for-.patch
- > 0050-target-arm-Clear-SVE-high-bits-for-.patch
0052-cpus-tcg-fix-never-exiting-loop-on-.patch
- > 0051-cpus-tcg-fix-never-exiting-loop-on-.patch
0053-s390x-css-disabled-subchannels-cann.patch
- > 0052-s390x-css-disabled-subchannels-cann.patch
0054-pc-bios-s390-ccw-struct-tpi_info-mu.patch
- > 0053-pc-bios-s390-ccw-struct-tpi_info-mu.patch
0055-virtio-ccw-common-reset-handler.patch
- > 0054-virtio-ccw-common-reset-handler.patch
0056-s390x-ccw-make-sure-all-ccw-devices.patch
- > 0055-s390x-ccw-make-sure-all-ccw-devices.patch
0057-blockjob-expose-error-string-via-qu.patch
- > 0056-blockjob-expose-error-string-via-qu.patch
0058-blockjob-Fix-assertion-in-block_job.patch
- > 0057-blockjob-Fix-assertion-in-block_job.patch
0059-qemu-io-Use-purely-string-blockdev-.patch
- > 0058-qemu-io-Use-purely-string-blockdev-.patch
0060-qemu-img-Use-only-string-options-in.patch
- > 0059-qemu-img-Use-only-string-options-in.patch
0061-nfs-Remove-processed-options-from-Q.patch
- > 0060-nfs-Remove-processed-options-from-Q.patch
0062-i386-define-the-ssbd-CPUID-feature-.patch
- > 0061-i386-define-the-ssbd-CPUID-feature-.patch
0063-i386-Define-the-Virt-SSBD-MSR-and-h.patch
- > 0062-i386-Define-the-Virt-SSBD-MSR-and-h.patch
0064-i386-define-the-AMD-virt-ssbd-CPUID.patch
- > 0063-i386-define-the-AMD-virt-ssbd-CPUID.patch
0065-ahci-fix-PxCI-register-race.patch
- > 0064-ahci-fix-PxCI-register-race.patch
0066-ccid-card-passthru-fix-regression-i.patch
- > 0065-ccid-card-passthru-fix-regression-i.patch
0067-xen-add-block-resize-support-for-xe.patch
- > 0066-xen-add-block-resize-support-for-xe.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.12
- Fix build failure of skiboot with gcc8 compiler
skiboot-hdata-i2c.c-fix-building-with-gcc8.patch
- Tweak build service constraints information to avoid failures
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.12
* Patches added:
0067-xen-add-block-resize-support-for-xe.patch
- Tweak patch file generation to be more git version agnostic.
Also change update_git.sh to not reformat spec file by default.
- Looks like the right fix for the AHCI issue has been identified
upstream. Turns out to also affect Linux guests as well.
(bsc#1094406)
* Patches dropped:
0065-Revert-replay-don-t-process-async-e.patch
0066-Revert-replay-avoid-recursive-call-.patch
0067-Revert-replay-check-return-values-o.patch
0068-Revert-replay-push-replay_mutex_loc.patch
* Patches added:
0065-ahci-fix-PxCI-register-race.patch
- Fix a regresssion introduced in v2.12.0 for ccid-card-passthrough
(bsc#1095419)
0066-ccid-card-passthru-fix-regression-i.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.12
- Fix qemu-guest-agent service issue (bsc#1094898)
- Spectre v4 vulnerability mitigation support for KVM guests.
High level description of vulnerability: Systems with microprocessors
utilizing speculative execution and speculative execution of memory
reads before the addresses of all prior memory writes are known may
allow unauthorized disclosure of information to an attacker with
local user access via a side-channel analysis.
This change permits the new x86 cpu feature flag named "ssbd" to be
presented to the guest, given that the host has this feature, and
KVM exposes it to the guest as well.
For this feature to be enabled, via adding it to the qemu commandline
(eg: -cpu <model>,+spec-ctrl,+ssbd), so the guest OS can take advantage
of the feature, spec-ctrl and ssbd support is also required in the host.
Another new x86 cpu feature flag named "virt-ssbd" is also added to
handle this vulnerability for AMD processors.
(CVE-2018-3639 bsc#1092885)
0062-i386-define-the-ssbd-CPUID-feature-.patch
0063-i386-Define-the-Virt-SSBD-MSR-and-h.patch
0064-i386-define-the-AMD-virt-ssbd-CPUID.patch
- Replay code introduced an issue for AHCI emulation, where on Windows 10
I/O would stop randomly, and Windows would then reset the AHCI device.
The issue is not yet fully identified, but reverting some of those
changes is at least for now a workaround. (bsc#1094406)
0065-Revert-replay-don-t-process-async-e.patch
0066-Revert-replay-avoid-recursive-call-.patch
0067-Revert-replay-check-return-values-o.patch
0068-Revert-replay-push-replay_mutex_loc.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.12
- Add some upstream fixes targeted for the next stable release
0040-device_tree-Increase-FDT_MAX_SIZE-t.patch
0041-vnc-fix-use-after-free.patch
0042-ccid-Fix-dwProtocols-advertisement-.patch
0043-tcg-arm-Fix-memory-barrier-encoding.patch
0044-s390-ccw-force-diag-308-subcode-to-.patch
0045-nbd-client-fix-nbd_negotiate_simple.patch
0046-migration-block-dirty-bitmap-fix-me.patch
0047-nbd-client-Fix-error-messages-durin.patch
0048-nbd-client-Relax-handling-of-large-.patch
0049-qxl-fix-local-renderer-crash.patch
0050-tcg-Limit-the-number-of-ops-in-a-TB.patch
0051-target-arm-Clear-SVE-high-bits-for-.patch
0052-cpus-tcg-fix-never-exiting-loop-on-.patch
0053-s390x-css-disabled-subchannels-cann.patch
0054-pc-bios-s390-ccw-struct-tpi_info-mu.patch
0055-virtio-ccw-common-reset-handler.patch
0056-s390x-ccw-make-sure-all-ccw-devices.patch
0057-blockjob-expose-error-string-via-qu.patch
0058-blockjob-Fix-assertion-in-block_job.patch
0059-qemu-io-Use-purely-string-blockdev-.patch
0060-qemu-img-Use-only-string-options-in.patch
0061-nfs-Remove-processed-options-from-Q.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.12
- Fix qemu-guest-agent uninstall (bsc#1093169)
- Minor tweak to qemu spec file
- Update to v2.12.0: See http://wiki.qemu.org/ChangeLog/2.12
Some noteworthy changes:
CLI options removed: -tdf, -no-kvm-pit, -drive boot, -net channel,
- net dump, -hdachs, -drive,if=scsi
HMP commands removed: usb_add, usb_del, host_net_add, host_net_remove
Q35 default nic now e1000e
AMD SEV support
- smbios supports setting data for type 11 tables
audio and display support split out as modules
- nic for simple creation of guest NIC and host back-end
QMP monitor "out-of-band" capability
lots of ARM and s390 improvements
- Include more of upstream's in-tree tests in the qemu-testsuite
package
* Patches dropped:
0033-memfd-fix-configure-test.patch
0034-qapi-use-items-values-intead-of-ite.patch
0035-qapi-Use-OrderedDict-from-standard-.patch
0036-qapi-adapt-to-moved-location-of-Str.patch
0037-qapi-Adapt-to-moved-location-of-mak.patch
0038-qapi-remove-q-arg-to-diff-when-comp.patch
0039-qapi-ensure-stable-sort-ordering-wh.patch
0040-qapi-force-a-UTF-8-locale-for-runni.patch
0041-scripts-ensure-signrom-treats-data-.patch
0042-configure-allow-use-of-python-3.patch
0043-input-add-missing-JIS-keys-to-virti.patch
0045-pc-fail-memory-hot-plug-unplug-with.patch
0046-memattrs-add-debug-attribute.patch
0047-exec-add-ram_debug_ops-support.patch
0048-exec-add-debug-version-of-physical-.patch
0049-monitor-i386-use-debug-APIs-when-ac.patch
0050-machine-add-memory-encryption-prope.patch
0051-kvm-update-kvm.h-to-include-memory-.patch
0052-docs-add-AMD-Secure-Encrypted-Virtu.patch
0053-target-i386-add-Secure-Encrypted-Vi.patch
0054-qmp-add-query-sev-command.patch
0055-sev-i386-add-command-to-initialize-.patch
0056-qmp-populate-SevInfo-fields-with-SE.patch
0057-sev-i386-register-the-guest-memory-.patch
0058-kvm-introduce-memory-encryption-API.patch
0059-hmp-add-info-sev-command.patch
0060-sev-i386-add-command-to-create-laun.patch
0061-sev-i386-add-command-to-encrypt-gue.patch
0062-target-i386-encrypt-bios-rom.patch
0063-sev-i386-add-support-to-LAUNCH_MEAS.patch
0064-sev-i386-finalize-the-SEV-guest-lau.patch
0065-hw-i386-set-ram_debug_ops-when-memo.patch
0066-sev-i386-add-debug-encrypt-and-decr.patch
0067-target-i386-clear-C-bit-when-walkin.patch
0068-include-add-psp-sev.h-header-file.patch
0069-sev-i386-add-support-to-query-PLATF.patch
0070-sev-i386-add-support-to-KVM_SEV_GUE.patch
0071-qmp-add-query-sev-launch-measure-co.patch
0072-tests-qmp-test-blacklist-query-sev-.patch
0073-sev-i386-add-migration-blocker.patch
0074-cpu-i386-populate-CPUID-0x8000_001F.patch
0075-migration-warn-about-inconsistent-s.patch
0076-smbios-support-setting-OEM-strings-.patch
0077-smbios-Add-1-terminator-if-any-stri.patch
0078-Remove-problematic-evdev-86-key-fro.patch
0079-tpm-lookup-cancel-path-under-tpm-de.patch
0080-vga-fix-region-calculation.patch
skiboot-GCC7-fixes-for-Wimplicit-fallthr.patch
skiboot-libc-stdio-vsnprintf.c-add-expli.patch
skiboot-build-LDFLAGS-pass-pie-flag-explicitly-to-ld.patch
ui-keycodemapdb-Add-missing-QKeyCode-val.patch
ui-keycodemapdb-Fix-compat-with-py3-dict.patch
* Patches renamed:
0044-Make-installed-scripts-explicitly-p.patch
- > 0033-Make-installed-scripts-explicitly-p.patch
0075-migration-warn-about-inconsistent-s.patch
- > 0034-migration-warn-about-inconsistent-s.patch
0077-smbios-Add-1-terminator-if-any-stri.patch
- > 0035-smbios-Add-1-terminator-if-any-stri.patch
0078-Remove-problematic-evdev-86-key-fro.patch
- > 0036-Remove-problematic-evdev-86-key-fro.patch
* Patches added:
0037-configure-Modify-python-used-for-io.patch
0038-qemu-io-tests-comment-out-problemat.patch
0039-tests-test-thread-pool-is-racy-add-.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.12
- Fix autoinstall of qemu-guest-agent by getting the modalias string
right (bsc#1091143)
- Guard strncpy call with GCC pragma to disable warning about possible
incorrect usage, when in fact it is correct. This is for gcc 8
compatibility (bsc#1090355)
ipxe-efi-guard-strncpy-with-gcc-warning-ignore-pragma.patch
- Add WantedBy for enable qemu-ga@.service auto start (bsc#1090369)
- fix qemu-ga service file name (bsc#1089067)
- Fix OOB access in VGA emulation (CVE-2018-7858 bsc#1084604)
0080-vga-fix-region-calculation.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.11
- Add new look up path "sys/class/tpm" for tpm cancel path based
on Linux 4.0 change (commit 313d21eeab9282e)(bsc#1070615)
0079-tpm-lookup-cancel-path-under-tpm-de.patch
- Fix issue with key codes in qemu v2.11
0078-Remove-problematic-evdev-86-key-fro.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.11
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.11
* Patches added:
0077-smbios-Add-1-terminator-if-any-stri.patch
bsc#994082 and bsc#1084316
- Add support for setting OEM strings table (fate#323624)
0076-smbios-support-setting-OEM-strings-.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.11
- SLE15 KVM (as targeted for RC1) now has the feature exposed.
Drop the patch. (bsc#1082276)
0076-i386-Compensate-for-KVM-SPEC_CTRL-f.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.11
- Change example qemu-ifup script to not depend on bridge-utils.
Also update the paths used for ip binary.
- Eliminate bogus use of CPUID_7_0_EDX_PRED_CMD which we've
carried since the initial Spectre v2 patch was added. EDX bit
27 of CPUID Leaf 07H, Sub-leaf 0 provides status on STIBP, and
not the PRED_CMD MSR. Exposing the STIBP CPUID feature bit to the
guest is wrong in general, since the VM doesn't directly control
the scheduling of physical hyperthreads. This is left strictly to
the L0 hypervisor.
- Update to v2.11.1, a stable, (mostly) bug-fix-only release
In addition to bug fixes, of necessity fixes are needed to
address the Spectre v2 vulnerability by passing along to the
guest new hardware features introduced by host microcode updates.
A January 2018 release of qemu initially addressed this issue
by exposing the feature for all x86 vcpu types, which was the
quick and dirty approach, but not the proper solution. We remove
that initial patch and now rely on the upstream solution. This
update instead defines spec_ctrl and ibpb cpu feature flags as
well as new cpu models which are clones of existing models with
either -IBRS or -IBPB added to the end of the model name. These
new vcpu models explicitly include the new feature(s), whereas
the feature flags can be added to the cpu parameter as with other
features. In short, for continued Spectre v2 protection, ensure
that either the appropriate cpu feature flag is added to the QEMU
command-line, or one of the new cpu models is used. Although
migration from older versions is supported, the new cpu features
won't be properly exposed to the guest until it is restarted with
the cpu features explicitly added. A reboot is insufficient.
A warning patch is added which attempts to detect a migration
from a qemu version which had the quick and dirty fix (it only
detects certain cases, but hopefully is helpful.)
s390x guest vulnerability to Spectre v2 is also addressed in this
update by including support for bpb and ppa/stfle.81 features.
(CVE-2017-5715 bsc#1068032)
For additional information on Spectre v2 as it relates to QEMU,
see: https://www.qemu.org/2018/02/14/qemu-2-11-1-and-spectre-update/
- Unfortunately, it was found that our current KVM isn't correctly
indicating support for the spec-ctrl feature, so I've added a patch
to still detect that support within QEMU. This is of course a
temporary kludge until KVM gets fixed. (bsc#1082276)
- The SEV support patches are updated to the v9 series.
- Fix incompatibility with recent glibc (boo#1081154)
- Add Supplements tags for the guest agent package in an attempt to
auto-install for QEMU and Xen SUSE Linux guests (fate#323570)
* Patches dropped (subsumed by stable update, or reworked in v9):
0033-i386-kvm-MSR_IA32_SPEC_CTRL-and-MSR.patch
0050-target-i386-add-memory-encryption-f.patch
0054-accel-add-Secure-Encrypted-Virtuliz.patch
0072-sev-Fix-build-for-non-x86-hosts.patch
* Patches added:
0033-memfd-fix-configure-test.patch
0053-target-i386-add-Secure-Encrypted-Vi.patch
0056-qmp-populate-SevInfo-fields-with-SE.patch
0072-tests-qmp-test-blacklist-query-sev-.patch
0073-sev-i386-add-migration-blocker.patch
0074-cpu-i386-populate-CPUID-0x8000_001F.patch
0075-migration-warn-about-inconsistent-s.patch
0076-i386-Compensate-for-KVM-SPEC_CTRL-f.patch
* Patches renamed (plus some minor code changes):
0051-machine-add-memory-encryption-prope.patch
- > 0050-machine-add-memory-encryption-prope.patch
0052-kvm-update-kvm.h-to-include-memory-.patch
- > 0051-kvm-update-kvm.h-to-include-memory-.patch
0053-docs-add-AMD-Secure-Encrypted-Virtu.patch
- > 0052-docs-add-AMD-Secure-Encrypted-Virtu.patch
0055-sev-add-command-to-initialize-the-m.patch
- > 0055-sev-i386-add-command-to-initialize-.patch
0056-sev-register-the-guest-memory-range.patch
- > 0057-sev-i386-register-the-guest-memory-.patch
0057-kvm-introduce-memory-encryption-API.patch
- > 0058-kvm-introduce-memory-encryption-API.patch
0058-qmp-add-query-sev-command.patch
- > 0054-qmp-add-query-sev-command.patch
0060-sev-add-command-to-create-launch-me.patch
- > 0060-sev-i386-add-command-to-create-laun.patch
0061-sev-add-command-to-encrypt-guest-me.patch
- > 0061-sev-i386-add-command-to-encrypt-gue.patch
0063-sev-add-support-to-LAUNCH_MEASURE-c.patch
- > 0063-sev-i386-add-support-to-LAUNCH_MEAS.patch
0064-sev-Finalize-the-SEV-guest-launch-f.patch
- > 0064-sev-i386-finalize-the-SEV-guest-lau.patch
0066-sev-add-debug-encrypt-and-decrypt-c.patch
- > 0066-sev-i386-add-debug-encrypt-and-decr.patch
0069-sev-add-support-to-query-PLATFORM_S.patch
- > 0069-sev-i386-add-support-to-query-PLATF.patch
0070-sev-add-support-to-KVM_SEV_GUEST_ST.patch
- > 0070-sev-i386-add-support-to-KVM_SEV_GUE.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.11
- Add AMD SEV (Secure Encrypted Virtualization) support by taking
the v7 series of the patches posted to qemu ml. (fate#322124)
0046-memattrs-add-debug-attribute.patch
0047-exec-add-ram_debug_ops-support.patch
0048-exec-add-debug-version-of-physical-.patch
0049-monitor-i386-use-debug-APIs-when-ac.patch
0050-target-i386-add-memory-encryption-f.patch
0051-machine-add-memory-encryption-prope.patch
0052-kvm-update-kvm.h-to-include-memory-.patch
0053-docs-add-AMD-Secure-Encrypted-Virtu.patch
0054-accel-add-Secure-Encrypted-Virtuliz.patch
0055-sev-add-command-to-initialize-the-m.patch
0056-sev-register-the-guest-memory-range.patch
0057-kvm-introduce-memory-encryption-API.patch
0058-qmp-add-query-sev-command.patch
0059-hmp-add-info-sev-command.patch
0060-sev-add-command-to-create-launch-me.patch
0061-sev-add-command-to-encrypt-guest-me.patch
0062-target-i386-encrypt-bios-rom.patch
0063-sev-add-support-to-LAUNCH_MEASURE-c.patch
0064-sev-Finalize-the-SEV-guest-launch-f.patch
0065-hw-i386-set-ram_debug_ops-when-memo.patch
0066-sev-add-debug-encrypt-and-decrypt-c.patch
0067-target-i386-clear-C-bit-when-walkin.patch
0068-include-add-psp-sev.h-header-file.patch
0069-sev-add-support-to-query-PLATFORM_S.patch
0070-sev-add-support-to-KVM_SEV_GUEST_ST.patch
0071-qmp-add-query-sev-launch-measure-co.patch
0072-sev-Fix-build-for-non-x86-hosts.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.11
- Update python3 related patches now that they are upstream
- guest agent: change service file to a template so it can be
used by Xen as well. Adjust udev rule accordingly.
FATE#324963
- Fix machine inconsistency with -no-acpi and nvdimm (bsc#1077823)
0045-pc-fail-memory-hot-plug-unplug-with.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.11
- Modify BuildRequires python references
- seabios also needed tweaks for python2 vs python3
* Patches added:
seabios-use-python2-explicitly-as-needed.patch
seabios-switch-to-python3-as-needed.patch
- Try to get our story right wrt python2 vs python3 (bsc#1077564)
* Get rid of use of #!/usr/bin/env python in scripts we install
* include proposed upstream build system changes needed for building
with python2 or python3
* Patches dropped:
0032-scripts-avoid-usr-bin-python-refere.patch
* Patches renamed:
0033-Switch-order-of-libraries-for-mpath.patch
- > 0032-Switch-order-of-libraries-for-mpath.patch
0034-i386-kvm-MSR_IA32_SPEC_CTRL-and-MSR.patch
- > 0033-i386-kvm-MSR_IA32_SPEC_CTRL-and-MSR.patch
* Patches added:
0034-qapi-use-items-values-intead-of-ite.patch
0035-qapi-Use-OrderedDict-from-standard-.patch
0036-qapi-adapt-to-moved-location-of-Str.patch
0037-qapi-Adapt-to-moved-location-of-mak.patch
0038-qapi-remove-q-arg-to-diff-when-comp.patch
0039-qapi-ensure-stable-sort-ordering-wh.patch
0040-qapi-force-a-UTF-8-locale-for-runni.patch
0041-scripts-ensure-signrom-treats-data-.patch
0042-configure-allow-use-of-python-3.patch
0043-input-add-missing-JIS-keys-to-virti.patch
0044-Make-installed-scripts-explicitly-p.patch
Make-installed-scripts-explicitly-python3.patch
ui-keycodemapdb-Add-missing-QKeyCode-val.patch
ui-keycodemapdb-Fix-compat-with-py3-dict.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.11
- Fix packaging dependencies (coreutils) for qemu-ksm package
(bsc#1040202)
- Pass through to guest info related to x86 security vulnerability
(CVE-2017-5715 bsc#1068032)
0034-i386-kvm-MSR_IA32_SPEC_CTRL-and-MSR.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.11
- Update to v2.11.0: See http://wiki.qemu.org/ChangeLog/2.11
Some noteworthy changes:
- nodefconfig is now deprecated
legacy pci-assignment code removed
qemu-pr-helper added for handling guest persistant reservations (bsc#891066,
bsc#910704, bsc#943807)
qemu-keymap tool added for generating keymap files
throttle block filter driver added
support for a TPM emulator
qcow2 image shrink support
better support for >=64 vcpus for Windows guests
nested KVM related improvements
s390 pgste handling now done better
EPYC cpu model added (bsc#1052825)
improvements in qcow2 buffer handling
vhost-user resume issue fixed
migration hardening
ARMv8-M security extension support
more seccomp/sandboxing options available
s390 cpu hot-plug improvements
misc. virtfs improvements
nbd improvements
MTTCG improvements
misc. TCG improvements
scsi correctness improvements
SEABIOS now has serial output option
* Includes fixes for CVE-2017-15118 bsc#1070147, CVE-2017-15119 bsc#1070144
* Adds KASLR support (fate#323473, bsc#1070281)
* Update SLE support docs to match this release
* simplify spec file to expect at least sle_version >= 1315
* Patches dropped (upstream):
0013-console-add-question-mark-escape-op.patch
0020-configure-Fix-detection-of-seccomp-.patch
0034-target-i386-cpu-Add-new-EPYC-CPU-mo.patch
0035-chardev-baum-fix-baum-that-releases.patch
0036-io-fix-temp-directory-used-by-test-.patch
0037-io-fix-check-for-handshake-completi.patch
0038-crypto-fix-test-cert-generation-to-.patch
0039-vhost-user-disable-the-broken-subpr.patch
0040-io-monitor-encoutput-buffer-size-fr.patch
0041-cirrus-fix-oob-access-in-mode4and5-.patch
0042-9pfs-use-g_malloc0-to-allocate-spac.patch
* Patches renamed:
0014-Make-char-muxer-more-robust-wrt-sma.patch
- > 0013-Make-char-muxer-more-robust-wrt-sma.patch
0015-linux-user-lseek-explicitly-cast-no.patch
- > 0014-linux-user-lseek-explicitly-cast-no.patch
0016-AIO-Reduce-number-of-threads-for-32.patch
- > 0015-AIO-Reduce-number-of-threads-for-32.patch
0017-xen_disk-Add-suse-specific-flush-di.patch
- > 0016-xen_disk-Add-suse-specific-flush-di.patch
0018-qemu-bridge-helper-reduce-security-.patch
- > 0017-qemu-bridge-helper-reduce-security-.patch
0019-qemu-binfmt-conf-use-qemu-ARCH-binf.patch
- > 0018-qemu-binfmt-conf-use-qemu-ARCH-binf.patch
0021-linux-user-properly-test-for-infini.patch
- > 0019-linux-user-properly-test-for-infini.patch
0022-roms-Makefile-pass-a-packaging-time.patch
- > 0020-roms-Makefile-pass-a-packaging-time.patch
0023-Raise-soft-address-space-limit-to-h.patch
- > 0021-Raise-soft-address-space-limit-to-h.patch
0024-increase-x86_64-physical-bits-to-42.patch
- > 0022-increase-x86_64-physical-bits-to-42.patch
0025-vga-Raise-VRAM-to-16-MiB-for-pc-0.1.patch
- > 0023-vga-Raise-VRAM-to-16-MiB-for-pc-0.1.patch
0026-i8254-Fix-migration-from-SLE11-SP2.patch
- > 0024-i8254-Fix-migration-from-SLE11-SP2.patch
0027-acpi_piix4-Fix-migration-from-SLE11.patch
- > 0025-acpi_piix4-Fix-migration-from-SLE11.patch
0028-Fix-tigervnc-long-press-issue.patch
- > 0026-Fix-tigervnc-long-press-issue.patch
0029-string-input-visitor-Fix-uint64-par.patch
- > 0027-string-input-visitor-Fix-uint64-par.patch
0030-test-string-input-visitor-Add-int-t.patch
- > 0028-test-string-input-visitor-Add-int-t.patch
0031-test-string-input-visitor-Add-uint6.patch
- > 0029-test-string-input-visitor-Add-uint6.patch
0032-tests-Add-QOM-property-unit-tests.patch
- > 0030-tests-Add-QOM-property-unit-tests.patch
0033-tests-Add-scsi-disk-test.patch
- > 0031-tests-Add-scsi-disk-test.patch
0043-scripts-avoid-usr-bin-python-refere.patch
- > 0032-scripts-avoid-usr-bin-python-refere.patch
* We need the multipath libraries link order switched
0033-Switch-order-of-libraries-for-mpath.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.11
- Avoid ref to /usr/bin/python in vmstate-static-checker.py script
0043-scripts-avoid-usr-bin-python-refere.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.10
- For SLE15, it's been decided to stop providing SDL based graphics
due to packaging constraints. Long ago GTK became the default,
and there is little benefit to providing both. For now, keep it
enabled for openSUSE (Tumblweed and Leap), but consider it marked
deprecated there and if no one complains it will be removed for
openSUSE as well in the near future. (fate#324465)
- Fix problem building skiboot.lid
skiboot-build-LDFLAGS-pass-pie-flag-explicitly-to-ld.patch
- Wrap analyze-migration and vmstate-static-checker into tools from
qemu scripts folder, also changed introduction of qemu-tools in
spec file
- Move supportplugin position in spec file
- Add announcement in support docs about qed storage format no
longer being supported in next major SLE release (SLE15)
(fate#324200)
- Address various security/stability issues
* Fix DoS in I/O channel websockets (CVE-2017-15268 bsc#1062942)
0040-io-monitor-encoutput-buffer-size-fr.patch
* Fix OOB access in cirrus vga device emulation (CVE-2017-15289
bsc#1063122)
0041-cirrus-fix-oob-access-in-mode4and5-.patch
* Fix information leak in 9pfs interface (CVE-2017-15038 bsc#1062069)
0042-9pfs-use-g_malloc0-to-allocate-spac.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.10
- Don't tie glusterfs support to specific arch
- Build skiboot firmware (OPAL), particularly since it's fairly
easy to do so
skiboot-GCC7-fixes-for-Wimplicit-fallthr.patch
skiboot-libc-stdio-vsnprintf.c-add-expli.patch
- Added the global macro 'with_glusterfs' in order to re-enable
glusterfs support. The macro enable easier future adjustments
for various ARCH/targets/requiremnets.
At first glusterfs support is enabled for openSUSE Leap 42.x and
Factory for ARCH x86_64.
- Add dependencies on ovmf (uefi) for the qemu-x86 and qemu-arm
packages
- Fix s390-netboot.img to be included with qemu-s390 package, not
qemu-ppc
- Update to v2.10.1, a stable, bug-fix-only release
* fixes bsc#1056386 CVE-2017-13673, bsc#1056334 CVE-2017-13672,
bsc#1057585 CVE-2017-14167
* Patches dropped (upstream):
0034-slirp-fix-clearing-ifq_so-from-pend.patch
0035-s390-ccw-Fix-alignment-for-CCW1.patch
0038-s390x-ais-for-2.10-stable-disable-a.patch
0039-s390x-cpumodel-remove-ais-from-z14-.patch
* Patches renamed:
0036-target-i386-cpu-Add-new-EPYC-CPU-mo.patch
- > 0034-target-i386-cpu-Add-new-EPYC-CPU-mo.patch
0037-chardev-baum-fix-baum-that-releases.patch
- > 0035-chardev-baum-fix-baum-that-releases.patch
0040-io-fix-temp-directory-used-by-test-.patch
- > 0036-io-fix-temp-directory-used-by-test-.patch
0041-io-fix-check-for-handshake-completi.patch
- > 0037-io-fix-check-for-handshake-completi.patch
0042-crypto-fix-test-cert-generation-to-.patch
- > 0038-crypto-fix-test-cert-generation-to-.patch
0043-vhost-user-disable-the-broken-subpr.patch
- > 0039-vhost-user-disable-the-broken-subpr.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.10
- Fix failures and potential failures in qemu-testsuite
0040-io-fix-temp-directory-used-by-test-.patch
0041-io-fix-check-for-handshake-completi.patch
0042-crypto-fix-test-cert-generation-to-.patch
0043-vhost-user-disable-the-broken-subpr.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.10
- Fix migration issue on s390
0038-s390x-ais-for-2.10-stable-disable-a.patch
0039-s390x-cpumodel-remove-ais-from-z14-.patch
- Fix case of not being able to build from rpm sources due to
undefined macro (boo#1057966)
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.10
- Fix baum that release brlapi twice (bsc#1060045)
0037-chardev-baum-fix-baum-that-releases.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.10
- For SLE15 pre-release testing, add support for the EPYC processor.
This will be officially supported once it is included in the v2.11
release. (bsc#1052825)
0036-target-i386-cpu-Add-new-EPYC-CPU-mo.patch
- Fix some support statements in our SLE support documents.
- Update BuildRequires packages libibverbs-devel and librdmacm-devel
to the more correct rdma-core-devel
- Enable seccomp for s390x, aarch64, and ppc64le
- Fix OOB issue (use after free) in slirp network stack (CVE-2017-13711
bsc#1056291)
0034-slirp-fix-clearing-ifq_so-from-pend.patch
- Fix a misalignment in the s390 ccw firmware (bsc#1056680)
0035-s390-ccw-Fix-alignment-for-CCW1.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.10
- Add a supportconfig plugin
qemu-supportconfig
FATE#323661
- Update to v2.10.0: See http://wiki.qemu.org/ChangeLog/2.10
- Dropped internal only patches used to support SUSE Studio
Testdrive as well as other miscellaneous patches deemed unused
and not worth carrying (bsc#1046783, bsc#1055125, bsc#1055127)
- Update SLE support statements in anticipation of SLE15
- disable SAN boot capability from virtio pxe rom used in v1.4 and
older pc machine types due to rom size requirements. Hopefully
a better solution can be found which doesn't impact functionality
* Patches added:
ipxe-stub-out-the-SAN-req-s-in-int13.patch
* Patches renamed:
0006-qemu-cvs-gettimeofday.patch -> 0003-qemu-cvs-gettimeofday.patch
0007-qemu-cvs-ioctl_debug.patch -> 0004-qemu-cvs-ioctl_debug.patch
0008-qemu-cvs-ioctl_nodirection.patch -> 0005-qemu-cvs-ioctl_nodirection.patch
0009-linux-user-add-binfmt-wrapper-for-a.patch -> 0006-linux-user-add-binfmt-wrapper-for-a.patch
0010-PPC-KVM-Disable-mmu-notifier-check.patch -> 0007-PPC-KVM-Disable-mmu-notifier-check.patch
0011-linux-user-fix-segfault-deadlock.patch -> 0008-linux-user-fix-segfault-deadlock.patch
0012-linux-user-binfmt-support-host-bina.patch -> 0009-linux-user-binfmt-support-host-bina.patch
0013-linux-user-Fake-proc-cpuinfo.patch -> 0010-linux-user-Fake-proc-cpuinfo.patch
0014-linux-user-XXX-disable-fiemap.patch -> 0011-linux-user-XXX-disable-fiemap.patch
0017-linux-user-use-target_ulong.patch -> 0012-linux-user-use-target_ulong.patch
0021-console-add-question-mark-escape-op.patch -> 0013-console-add-question-mark-escape-op.patch
0022-Make-char-muxer-more-robust-wrt-sma.patch -> 0014-Make-char-muxer-more-robust-wrt-sma.patch
0023-linux-user-lseek-explicitly-cast-no.patch -> 0015-linux-user-lseek-explicitly-cast-no.patch
0025-AIO-Reduce-number-of-threads-for-32.patch -> 0016-AIO-Reduce-number-of-threads-for-32.patch
0027-xen_disk-Add-suse-specific-flush-di.patch -> 0017-xen_disk-Add-suse-specific-flush-di.patch
0028-qemu-bridge-helper-reduce-security-.patch -> 0018-qemu-bridge-helper-reduce-security-.patch
0029-qemu-binfmt-conf-use-qemu-ARCH-binf.patch -> 0019-qemu-binfmt-conf-use-qemu-ARCH-binf.patch
0030-configure-Fix-detection-of-seccomp-.patch -> 0020-configure-Fix-detection-of-seccomp-.patch
0031-linux-user-properly-test-for-infini.patch -> 0020-linux-user-properly-test-for-infini.patch
0033-roms-Makefile-pass-a-packaging-time.patch -> 0022-roms-Makefile-pass-a-packaging-time.patch
0034-Raise-soft-address-space-limit-to-h.patch -> 0023-Raise-soft-address-space-limit-to-h.patch
0035-increase-x86_64-physical-bits-to-42.patch -> 0024-increase-x86_64-physical-bits-to-42.patch
0036-vga-Raise-VRAM-to-16-MiB-for-pc-0.1.patch -> 0025-vga-Raise-VRAM-to-16-MiB-for-pc-0.1.patch
0037-i8254-Fix-migration-from-SLE11-SP2.patch -> 0026-i8254-Fix-migration-from-SLE11-SP2.patch
0038-acpi_piix4-Fix-migration-from-SLE11.patch -> 0027-acpi_piix4-Fix-migration-from-SLE11.patch
0039-Fix-tigervnc-long-press-issue.patch -> 0028-Fix-tigervnc-long-press-issue.patch
0041-string-input-visitor-Fix-uint64-par.patch -> 0029-string-input-visitor-Fix-uint64-par.patch
0042-test-string-input-visitor-Add-int-t.patch -> 0030-test-string-input-visitor-Add-int-t.patch
0043-test-string-input-visitor-Add-uint6.patch -> 0031-test-string-input-visitor-Add-uint6.patch
0044-tests-Add-QOM-property-unit-tests.patch -> 0032-tests-Add-QOM-property-unit-tests.patch
0045-tests-Add-scsi-disk-test.patch -> 0033-tests-Add-scsi-disk-test.patch
* Patches dropped (upstream unless otherwise noted):
0003-qemu-cvs-alsa_bitfield.patch (deemed not needed)
0004-qemu-cvs-alsa_ioctl.patch (deemed not needed)
0005-qemu-cvs-alsa_mmap.patch (deemed not needed)
0015-slirp-nooutgoing.patch (bsc#1055125)
0016-vnc-password-file-and-incoming-conn.patch (bsc#1055127)
0018-block-Add-support-for-DictZip-enabl.patch (bsc#1046783)
0019-block-Add-tar-container-format.patch (bsc#1046783)
0020-Legacy-Patch-kvm-qemu-preXX-dictzip.patch (bsc#1046783)
0024-configure-Enable-PIE-for-ppc-and-pp.patch (obsolete)
0026-dictzip-Fix-on-big-endian-systems.patch (bsc#1046783)
0032-linux-user-remove-all-traces-of-qem.patch
0040-fix-xen-hvm-direct-kernel-boot.patch (bsc#970791)
0046-RFC-update-Linux-headers-from-irqs-.patch
0047-ARM-KVM-Enable-in-kernel-timers-wit.patch
0048-input-Add-trace-event-for-empty-key.patch
0049-ACPI-don-t-call-acpi_pcihp_device_p.patch
0050-i386-Allow-cpuid-bit-override.patch (was for testing only)
0051-input-limit-kbd-queue-depth.patch
0052-audio-release-capture-buffers.patch
0053-scsi-avoid-an-off-by-one-error-in-m.patch
0054-vmw_pvscsi-check-message-ring-page-.patch
0055-9pfs-local-forbid-client-access-to-.patch
0056-jazz_led-fix-bad-snprintf.patch
0057-slirp-smb-Replace-constant-strings-.patch
0058-altera_timer-fix-incorrect-memset.patch
0059-Hacks-for-building-on-gcc-7-Fedora-.patch
0060-9pfs-local-fix-unlink-of-alien-file.patch
0061-megasas-do-not-read-DCMD-opcode-mor.patch
0062-megasas-always-store-SCSIRequest-in.patch
0063-nbd-Fully-initialize-client-in-case.patch
0064-9pfs-local-remove-use-correct-path-.patch
0065-hid-Reset-kbd-modifiers-on-reset.patch
0066-input-Decrement-queue-count-on-kbd-.patch
0067-xhci-only-update-dequeue-ptr-on-com.patch
0068-vnc-Set-default-kbd-delay-to-10ms.patch
0069-qemu-nbd-Ignore-SIGPIPE.patch
0070-usb-redir-fix-stack-overflow-in-usb.patch
0072-slirp-check-len-against-dhcp-option.patch
0071-exec-use-qemu_ram_ptr_length-to-acc.patch
0073-xen-mapcache-store-dma-information-.patch
0074-exec-Add-lock-parameter-to-qemu_ram.patch
0075-Replace-struct-ucontext-with-uconte.patch
ipxe-build-Avoid-implicit-fallthrough-warnings-on-GCC-7.patch
ipxe-iscsi-Always-send-FirstBurstLength-parameter.patch
ipxe-ath-Add-missing-break-statements.patch
ipxe-mucurses-Fix-erroneous-__nonnull-attribute.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.10
- Fix package build failure as of glibc v2.26 update in Factory
(boo#1055587)
0075-Replace-struct-ucontext-with-uconte.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.9
- Remove redundant prerequire for pwdutils
- Postrequire acl for setfacl
- Prerequire shadow for groupadd
- The recent security fix for CVE-2017-11334 adversely affects Xen.
Include two additional patches to make sure Xen is going to be OK.
0073-xen-mapcache-store-dma-information-.patch
0074-exec-Add-lock-parameter-to-qemu_ram.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.9
- Pre-add group kvm for qemu-tools (bsc#1011144)
- Fixed a few more inaccuracies in the support docs.
- Address various security/stability issues
* Fix DOS vulnerability in qemu-nbd (bsc#1046636 CVE-2017-10664)
0069-qemu-nbd-Ignore-SIGPIPE.patch
* Fix DOS from stack overflow in debug messages of usb redirection
support (bsc#1047674 CVE-2017-10806)
0070-usb-redir-fix-stack-overflow-in-usb.patch
* Fix OOB access during DMA operation (CVE-2017-11334 bsc#1048902)
0071-exec-use-qemu_ram_ptr_length-to-acc.patch
* Fix OOB access parsing dhcp slirp options (CVE-2017-11434 bsc#1049381)
0072-slirp-check-len-against-dhcp-option.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.9
- Fix support docs to indicate ARM64 is now fully L3 supported in
SLES 12 SP3. Apply a few additional clarifications in the support
docs. (bsc#1050268)
- Adjust to libvdeplug-devel package naming changes.
- Fix migration with xhci (bsc#1048296)
0067-xhci-only-update-dequeue-ptr-on-com.patch
- Increase VNC delay to fix missing keyboard input events (bsc#1031692)
0068-vnc-Set-default-kbd-delay-to-10ms.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.9
- Remove build dependency package iasl used for seabios
- Fixed stuck state during usb keyboard reset (bsc#1044936)
0065-hid-Reset-kbd-modifiers-on-reset.patch
- Fixed keyboard events getting lost (bsc#1044936)
0066-input-Decrement-queue-count-on-kbd-.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.9
- Use most recent compiler to build size-critical firmware, instead
of hard-coding gcc6 for all target versions (bsc#1043390)
* A few upstream ipxe patches were needed for gcc7 compatibility:
ipxe-ath-Add-missing-break-statements.patch
ipxe-mucurses-Fix-erroneous-__nonnull-attribute.patch
- Add --no-renames to the git format-patch command in the git
workflow script for better patch compatibility
- Address various security/stability issues
* Fix potential privilege escalation in virtfs (CVE-2016-9602
bsc#1020427)
0060-9pfs-local-fix-unlink-of-alien-file.patch
* Fix DOS in megasas device emulation (CVE-2017-9503 bsc#1043296)
0061-megasas-do-not-read-DCMD-opcode-mor.patch
0062-megasas-always-store-SCSIRequest-in.patch
* Fix DOS in qemu-nbd server (CVE-2017-9524 bsc#1043808)
0063-nbd-Fully-initialize-client-in-case.patch
* Fix regression introduced by recent virtfs security fixes (bsc#1045035)
0064-9pfs-local-remove-use-correct-path-.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.9
- Backport ipxe to support FirstBurstLength (bsc#1040476)
ipxe-iscsi-Always-send-FirstBurstLength-parameter.patch
- Fixes for gcc7 compatability (bsc#1040228) (in behalf of Liang Yan)
0056-jazz_led-fix-bad-snprintf.patch
0057-slirp-smb-Replace-constant-strings-.patch
0058-altera_timer-fix-incorrect-memset.patch
0059-Hacks-for-building-on-gcc-7-Fedora-.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.9
- Protect access to metadata in virtio-9pfs (CVE-2017-7493 bsc#1039495)
0055-9pfs-local-forbid-client-access-to-.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.9
- Address various security/stability issues
* Fix DOS potential in vnc interface (CVE-2017-8379 bsc#1037334)
0051-input-limit-kbd-queue-depth.patch
* Fix DOS potential in vnc interface (CVE-2017-8309 bsc#1037242)
0052-audio-release-capture-buffers.patch
* Fix OOB access in megasas device emulation (CVE-2017-8380
bsc#1037336)
0053-scsi-avoid-an-off-by-one-error-in-m.patch
* Fix DOS in Vmware pv scsi emulation (CVE-2017-8112 bsc#1036211)
0054-vmw_pvscsi-check-message-ring-page-.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.9
- Fix building packages for some older distros.
- Further refine our handling of building firmware (or not) for
the various arch's and distro versions we build for. Note that
if we don't build x86 firmware, (eg: x86 Leap 42.1) the upstream
binary blobs are used, which may have migration incompatibilities
with previous versions of qemu provided.
- Fix issue in shipping qemu v2.9.0, where pci-passthrough for Xen
HVM guests got broken (bsc#1034131)
0049-ACPI-don-t-call-acpi_pcihp_device_p.patch
- Include experimental, unsupported feature to assist in some
performance analysis work.
0050-i386-Allow-cpuid-bit-override.patch
- Updated to v2.9.0: See http://wiki.qemu-project.org/ChangeLog/2.9
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.9
- Updated to v2.9.0-rc5: See http://wiki.qemu-project.org/ChangeLog/2.9
* Includes fix for CVE-2017-7471, a virtfs security issue.
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.9
- Add empty keyboard queue tracepoint to help openQA testing work
better (bsc#1031692)
0048-input-Add-trace-event-for-empty-key.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.9
- Updated to v2.9.0-rc4: See http://wiki.qemu-project.org/ChangeLog/2.9
- Enable ceph/rbd support for s390x (bsc#1030068)
- Enable ceph/rbd support for ppc* as available
- Update ARM in-kernel-timers patch (bsc#1033416)
* Patches renamed:
0041-ARM-KVM-Enable-in-kernel-timers-wit.patch -> 0047-ARM-KVM-Enable-in-kernel-timers-wit.patch
0042-string-input-visitor-Fix-uint64-par.patch -> 0041-string-input-visitor-Fix-uint64-par.patch
0043-test-string-input-visitor-Add-int-t.patch -> 0042-test-string-input-visitor-Add-int-t.patch
0044-test-string-input-visitor-Add-uint6.patch -> 0043-test-string-input-visitor-Add-uint6.patch
0045-tests-Add-QOM-property-unit-tests.patch -> 0044-tests-Add-QOM-property-unit-tests.patch
0046-tests-Add-scsi-disk-test.patch -> 0045-tests-Add-scsi-disk-test.patch
* Patches added (support patch):
0046-RFC-update-Linux-headers-from-irqs-.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.9
- Updated to v2.9.0-rc3: See http://wiki.qemu-project.org/ChangeLog/2.9
* Patches dropped (included in upstream source archive):
0047-hw-intc-arm_gicv3_kvm-Check-KVM_DEV.patch
0048-i386-Replace-uint32_t-with-FeatureW.patch
0049-i386-Don-t-override-cpu-options-on-.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.9
- Added additional documentation provided with v2.9.0
- Fix build failure with gcc7 (bsc#1031340)
ipxe-build-Avoid-implicit-fallthrough-warnings-on-GCC-7.patch
- Made miscellaneous spec file refinements
- The support documents included are now fairly accurate for the
arm and s390 world, and the x86 version also received a few
tweaks. Also included in those docs is a url reference to upstream
qemu deprecation plans and discussions.
(fate#321146)
- Add post v2.9.0-rc2 upstream patches which fix -cpu host and -cpu
max feature overrides for libvirt compatability.
0048-i386-Replace-uint32_t-with-FeatureW.patch
0049-i386-Don-t-override-cpu-options-on-.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.9
- Updated to v2.9.0-rc2: See http://wiki.qemu-project.org/ChangeLog/2.9
* Includes fix for in guest privilege escalation when using TCG
(bsc#1030624)
* Patches dropped (equivalent included in upstream source archive):
0047-linux-user-exclude-cpu-model-code-w.patch
- Fix failure booting SLE12-SP2 Aarch64 guest (bsc#1031384)
0047-hw-intc-arm_gicv3_kvm-Check-KVM_DEV.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.9
- Updated to v2.9.0-rc1: See http://wiki.qemu-project.org/ChangeLog/2.9
* Patches dropped (no longer needed based on what we now build for):
0024-virtfs-proxy-helper-Provide-__u64-f.patch
* Patches dropped (included in upstream source archive):
0034-dma-rc4030-limit-interval-timer-rel.patch
* Patches renamed:
0025-configure-Enable-PIE-for-ppc-and-pp.patch -> 0024-configure-Enable-PIE-for-ppc-and-pp.patch
0026-AIO-Reduce-number-of-threads-for-32.patch -> 0025-AIO-Reduce-number-of-threads-for-32.patch
0027-dictzip-Fix-on-big-endian-systems.patch -> 0026-dictzip-Fix-on-big-endian-systems.patch
0028-xen_disk-Add-suse-specific-flush-di.patch -> 0027-xen_disk-Add-suse-specific-flush-di.patch
0029-qemu-bridge-helper-reduce-security-.patch -> 0028-qemu-bridge-helper-reduce-security-.patch
0030-qemu-binfmt-conf-use-qemu-ARCH-binf.patch -> 0029-qemu-binfmt-conf-use-qemu-ARCH-binf.patch
0031-configure-Fix-detection-of-seccomp-.patch -> 0030-configure-Fix-detection-of-seccomp-.patch
0032-linux-user-properly-test-for-infini.patch -> 0031-linux-user-properly-test-for-infini.patch
0033-linux-user-remove-all-traces-of-qem.patch -> 0032-linux-user-remove-all-traces-of-qem.patch
0035-roms-Makefile-pass-a-packaging-time.patch -> 0033-roms-Makefile-pass-a-packaging-time.patch
0036-Raise-soft-address-space-limit-to-h.patch -> 0034-Raise-soft-address-space-limit-to-h.patch
0037-increase-x86_64-physical-bits-to-42.patch -> 0035-increase-x86_64-physical-bits-to-42.patch
0038-vga-Raise-VRAM-to-16-MiB-for-pc-0.1.patch -> 0036-vga-Raise-VRAM-to-16-MiB-for-pc-0.1.patch
0039-i8254-Fix-migration-from-SLE11-SP2.patch -> 0037-i8254-Fix-migration-from-SLE11-SP2.patch
0040-acpi_piix4-Fix-migration-from-SLE11.patch -> 0038-acpi_piix4-Fix-migration-from-SLE11.patch
0041-Fix-tigervnc-long-press-issue.patch -> 0039-Fix-tigervnc-long-press-issue.patch
0042-fix-xen-hvm-direct-kernel-boot.patch -> 0040-fix-xen-hvm-direct-kernel-boot.patch
0043-ARM-KVM-Enable-in-kernel-timers-wit.patch -> 0041-ARM-KVM-Enable-in-kernel-timers-wit.patch
0044-string-input-visitor-Fix-uint64-par.patch -> 0042-string-input-visitor-Fix-uint64-par.patch
0045-test-string-input-visitor-Add-int-t.patch -> 0043-test-string-input-visitor-Add-int-t.patch
0046-test-string-input-visitor-Add-uint6.patch -> 0044-test-string-input-visitor-Add-uint6.patch
0047-tests-Add-QOM-property-unit-tests.patch -> 0045-tests-Add-QOM-property-unit-tests.patch
0048-tests-Add-scsi-disk-test.patch -> 0046-tests-Add-scsi-disk-test.patch
0049-linux-user-exclude-cpu-model-code-w.patch -> 0047-linux-user-exclude-cpu-model-code-w.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.9
- Updated to v2.9.0-rc0: See http://wiki.qemu-project.org/ChangeLog/2.9
* Updated version carries fixes for the following reported issues:
CVE-2016-9602 bsc#1020427, CVE-2016-9923 bsc#1014703,
CVE-2017-2630 bsc#1025396, CVE-2017-2633 bsc#1026612,
CVE-2017-5579 bsc#1021741, CVE-2017-5931 bsc#1024114,
CVE-2017-5973 bsc#1025109, CVE-2017-5987 bsc#1025311,
CVE-2017-6058 bsc#1025837, CVE-2017-6505 bsc#1028184
* Patches dropped:
seabios_128kb.patch (no longer required)
* Patches dropped (included in upstream source archive):
0035-net-imx-limit-buffer-descriptor-cou.patch
0045-virtio-gpu-call-cleanup-mapping-fun.patch
0051-virtio-gpu-fix-information-leak-in-.patch
0052-display-cirrus-ignore-source-pitch-.patch
0053-s390x-kvm-fix-small-race-reboot-vs..patch
0054-target-s390x-use-qemu-cpu-model-in-.patch
0056-tests-check-path-to-avoid-a-failing.patch
0057-display-virtio-gpu-3d-check-virgl-c.patch
0058-watchdog-6300esb-add-exit-function.patch
0059-virtio-gpu-3d-fix-memory-leak-in-re.patch
0060-virtio-gpu-fix-memory-leak-in-resou.patch
0061-virtio-fix-vq-inuse-recalc-after-mi.patch
0062-audio-es1370-add-exit-function.patch
0063-audio-ac97-add-exit-function.patch
0064-megasas-fix-guest-triggered-memory-.patch
0065-cirrus-handle-negative-pitch-in-cir.patch
0066-cirrus-fix-blit-address-mask-handli.patch
0067-cirrus-fix-oob-access-issue-CVE-201.patch
0068-usb-ccid-check-ccid-apdu-length.patch
0069-sd-sdhci-check-data-length-during-d.patch
0070-virtio-gpu-fix-resource-leak-in-vir.patch
0071-cirrus-fix-patterncopy-checks.patch
0072-cirrus-add-blit_is_unsafe-call-to-c.patch
* Patches renamed:
0036-roms-Makefile-pass-a-packaging-time.patch -> 0035-roms-Makefile-pass-a-packaging-time.patch
0037-Raise-soft-address-space-limit-to-h.patch -> 0036-Raise-soft-address-space-limit-to-h.patch
0038-increase-x86_64-physical-bits-to-42.patch -> 0037-increase-x86_64-physical-bits-to-42.patch
0039-vga-Raise-VRAM-to-16-MiB-for-pc-0.1.patch -> 0038-vga-Raise-VRAM-to-16-MiB-for-pc-0.1.patch
0040-i8254-Fix-migration-from-SLE11-SP2.patch -> 0039-i8254-Fix-migration-from-SLE11-SP2.patch
0041-acpi_piix4-Fix-migration-from-SLE11.patch -> 0040-acpi_piix4-Fix-migration-from-SLE11.patch
0042-Fix-tigervnc-long-press-issue.patch -> 0041-Fix-tigervnc-long-press-issue.patch
0043-fix-xen-hvm-direct-kernel-boot.patch -> 0042-fix-xen-hvm-direct-kernel-boot.patch
0044-ARM-KVM-Enable-in-kernel-timers-wit.patch -> 0043-ARM-KVM-Enable-in-kernel-timers-wit.patch
0046-string-input-visitor-Fix-uint64-par.patch -> 0044-string-input-visitor-Fix-uint64-par.patch
0047-test-string-input-visitor-Add-int-t.patch -> 0045-test-string-input-visitor-Add-int-t.patch
0048-test-string-input-visitor-Add-uint6.patch -> 0046-test-string-input-visitor-Add-uint6.patch
0049-tests-Add-QOM-property-unit-tests.patch -> 0047-tests-Add-QOM-property-unit-tests.patch
0050-tests-Add-scsi-disk-test.patch -> 0048-tests-Add-scsi-disk-test.patch
0055-linux-user-exclude-cpu-model-code-w.patch -> 0049-linux-user-exclude-cpu-model-code-w.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.9
- Buildignore for the global gcc-PIE, as this package enables PIE
on its own and has troubles if all use it. (meissner(a)suse.com)
- Address various security/stability issues
* Fix OOB access in virito-gpu-3d (CVE-2016-10028 bsc#1017084
bsc#1016503)
0057-display-virtio-gpu-3d-check-virgl-c.patch
* Fix DOS in Intel 6300ESB device emulation (CVE-2016-10155 bsc#1021129)
0058-watchdog-6300esb-add-exit-function.patch
* Fix DOS in virtio-gpu-3d (CVE-2017-5552 bsc#1021195)
0059-virtio-gpu-3d-fix-memory-leak-in-re.patch
* Fix DOS in virtio-gpu (CVE-2017-5578 bsc#1021481)
0060-virtio-gpu-fix-memory-leak-in-resou.patch
* Fix cause of infrequent migration failures from bad virtio device
state. (bsc#1020928)
0061-virtio-fix-vq-inuse-recalc-after-mi.patch
* Fix DOS in es1370 emulated audio device (CVE-2017-5526 bsc#1020589)
0062-audio-es1370-add-exit-function.patch
* Fix DOS in ac97 emulated audio device (CVE-2017-5525 bsc#1020491)
0063-audio-ac97-add-exit-function.patch
* Fix DOS in megasas device emulation (CVE-2017-5856 bsc#1023053)
0064-megasas-fix-guest-triggered-memory-.patch
* Fix various inaccuracies in cirrus vga device emulation
0065-cirrus-handle-negative-pitch-in-cir.patch
0066-cirrus-fix-blit-address-mask-handli.patch
* Fix OOB access in cirrus vga emulation (CVE-2017-2615 bsc#1023004)
0067-cirrus-fix-oob-access-issue-CVE-201.patch
* Fix DOS in usb CCID card device emulator (CVE-2017-5898 bsc#1023907)
0068-usb-ccid-check-ccid-apdu-length.patch
* Fix OOB access in SDHCI device emulation (CVE-2017-5667 bsc#1022541)
0069-sd-sdhci-check-data-length-during-d.patch
* Fix DOS in virtio-gpu-3d (CVE-2017-5857 bsc#1023073)
0070-virtio-gpu-fix-resource-leak-in-vir.patch
* Fix cirrus patterncopy checks
0071-cirrus-fix-patterncopy-checks.patch
* Fix OOB access in cirrus vga emulation (CVE-2017-2620 bsc#1024972)
0072-cirrus-add-blit_is_unsafe-call-to-c.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.8
- Fix name of s390x specific sysctl configuration file to end with
.conf (bsc#1026583)
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.8
* Check that sysfs path exists before running test which requires
it. This allows qemu-testsuite to succeed in local build service
chroot based package build.
0056-tests-check-path-to-avoid-a-failing.patch
- Factory and SLE12-SP3 got a name change in the dtc devel package:
libfdt1-devel -> libfdt-devel. Adjust our spec file accordingly.
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.8
* Patches added:
0055-linux-user-exclude-cpu-model-code-w.patch
- Make sure qemu guest agent is usable as soon as qemu-guest-agent
package is installed. The previous post script was still not
doing the job.
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.8
* Fix potential hang/crash rebooting s390x guest
0053-s390x-kvm-fix-small-race-reboot-vs..patch
* Fix s390x linux-user failure since v2.8.0 update
0054-target-s390x-use-qemu-cpu-model-in-.patch
- Merge qemu packages from openSUSE and SUSE SLE releases together
for the v2.8 qemu update. The qemu.changes file is the openSUSE
version with this entry providing CVE, FATE, and bugzilla
references from the SUSE SLE qemu package to date (see below)
- Updated to v2.8.0: See http://wiki.qemu-project.org/ChangeLog/2.8
* For SUSE SLE-12-SP3, update relates to fate#319684, fate#321331,
fate#321335, fate#321339, fate#321349, fate#321857
* For best compatibility, qemu-ifup and kvm_stat scripts now owned
by qemu package
* Build ipxe roms with gcc6 to maintain SLE legacy migration
compatibility requirements
* qmp-commands.txt file removed, to resurface in future doc reorganization
* qemu-tech.html file merged into other existing doc
* trace-events renamed to trace-events-all
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.8
* Patches dropped (upstream):
0013-linux-user-lock-tcg.patch
0014-linux-user-Run-multi-threaded-code-.patch
0015-linux-user-lock-tb-flushing-too.patch
0017-linux-user-implement-FS_IOC_GETFLAG.patch
0018-linux-user-implement-FS_IOC_SETFLAG.patch
0034-xen-SUSE-xenlinux-unplug-for-emulat.patch
0039-Fix-tlb_vaddr_to_host-with-CONFIG_U.patch
0041-vmsvga-correct-bitmap-and-pixmap-si.patch
0042-scsi-mptconfig-fix-an-assert-expres.patch
0043-scsi-mptconfig-fix-misuse-of-MPTSAS.patch
0044-scsi-pvscsi-limit-loop-to-fetch-SG-.patch
0045-usb-xhci-fix-memory-leak-in-usb_xhc.patch
0046-scsi-mptsas-use-g_new0-to-allocate-.patch
0047-scsi-pvscsi-limit-process-IO-loop-t.patch
0048-virtio-add-check-for-descriptor-s-m.patch
0049-net-mcf-limit-buffer-descriptor-cou.patch
0050-usb-ehci-fix-memory-leak-in-ehci_pr.patch
0051-xhci-limit-the-number-of-link-trbs-.patch
0052-9pfs-allocate-space-for-guest-origi.patch
0053-9pfs-fix-memory-leak-in-v9fs_link.patch
0054-9pfs-fix-potential-host-memory-leak.patch
0055-9pfs-fix-information-leak-in-xattr-.patch
0056-9pfs-fix-memory-leak-in-v9fs_xattrc.patch
0057-9pfs-fix-memory-leak-in-v9fs_write.patch
0058-char-serial-check-divider-value-aga.patch
0059-net-pcnet-check-rx-tx-descriptor-ri.patch
0060-net-eepro100-fix-memory-leak-in-dev.patch
0061-net-rocker-set-limit-to-DMA-buffer-.patch
0062-net-vmxnet-initialise-local-tx-desc.patch
0063-net-rtl8139-limit-processing-of-rin.patch
0064-audio-intel-hda-check-stream-entry-.patch
0065-virtio-gpu-fix-memory-leak-in-virti.patch
0066-9pfs-fix-integer-overflow-issue-in-.patch
slof_xhci.patch
* Patches renamed:
0016-linux-user-Fake-proc-cpuinfo.patch -> 0013-linux-user-Fake-proc-cpuinfo.patch
0019-linux-user-XXX-disable-fiemap.patch -> 0014-linux-user-XXX-disable-fiemap.patch
0020-slirp-nooutgoing.patch -> 0015-slirp-nooutgoing.patch
0021-vnc-password-file-and-incoming-conn.patch -> 0016-vnc-password-file-and-incoming-conn.patch
0022-linux-user-use-target_ulong.patch -> 0017-linux-user-use-target_ulong.patch
0023-block-Add-support-for-DictZip-enabl.patch -> 0018-block-Add-support-for-DictZip-enabl.patch
0024-block-Add-tar-container-format.patch -> 0019-block-Add-tar-container-format.patch
0025-Legacy-Patch-kvm-qemu-preXX-dictzip.patch -> 0020-Legacy-Patch-kvm-qemu-preXX-dictzip.patch
0026-console-add-question-mark-escape-op.patch -> 0021-console-add-question-mark-escape-op.patch
0027-Make-char-muxer-more-robust-wrt-sma.patch -> 0022-Make-char-muxer-more-robust-wrt-sma.patch
0028-linux-user-lseek-explicitly-cast-no.patch -> 0023-linux-user-lseek-explicitly-cast-no.patch
0029-virtfs-proxy-helper-Provide-__u64-f.patch -> 0024-virtfs-proxy-helper-Provide-__u64-f.patch
0030-configure-Enable-PIE-for-ppc-and-pp.patch -> 0025-configure-Enable-PIE-for-ppc-and-pp.patch
0031-AIO-Reduce-number-of-threads-for-32.patch -> 0026-AIO-Reduce-number-of-threads-for-32.patch
0032-dictzip-Fix-on-big-endian-systems.patch -> 0027-dictzip-Fix-on-big-endian-systems.patch
0033-xen_disk-Add-suse-specific-flush-di.patch -> 0028-xen_disk-Add-suse-specific-flush-di.patch
0035-qemu-bridge-helper-reduce-security-.patch -> 0029-qemu-bridge-helper-reduce-security-.patch
0036-qemu-binfmt-conf-use-qemu-ARCH-binf.patch -> 0030-qemu-binfmt-conf-use-qemu-ARCH-binf.patch
0037-configure-Fix-detection-of-seccomp-.patch -> 0031-configure-Fix-detection-of-seccomp-.patch
0038-linux-user-properly-test-for-infini.patch -> 0032-linux-user-properly-test-for-infini.patch
0040-linux-user-remove-all-traces-of-qem.patch -> 0033-linux-user-remove-all-traces-of-qem.patch
0067-dma-rc4030-limit-interval-timer-rel.patch -> 0034-dma-rc4030-limit-interval-timer-rel.patch
0068-net-imx-limit-buffer-descriptor-cou.patch -> 0035-net-imx-limit-buffer-descriptor-cou.patch
0069-roms-Makefile-pass-a-packaging-time.patch -> 0036-roms-Makefile-pass-a-packaging-time.patch
* Patches added:
0037-Raise-soft-address-space-limit-to-h.patch
0038-increase-x86_64-physical-bits-to-42.patch
0039-vga-Raise-VRAM-to-16-MiB-for-pc-0.1.patch
0040-i8254-Fix-migration-from-SLE11-SP2.patch
0041-acpi_piix4-Fix-migration-from-SLE11.patch
0042-Fix-tigervnc-long-press-issue.patch
0043-fix-xen-hvm-direct-kernel-boot.patch
0044-ARM-KVM-Enable-in-kernel-timers-wit.patch
0045-virtio-gpu-call-cleanup-mapping-fun.patch
0046-string-input-visitor-Fix-uint64-par.patch
0047-test-string-input-visitor-Add-int-t.patch
0048-test-string-input-visitor-Add-uint6.patch
0049-tests-Add-QOM-property-unit-tests.patch
0050-tests-Add-scsi-disk-test.patch
0051-virtio-gpu-fix-information-leak-in-.patch
0052-display-cirrus-ignore-source-pitch-.patch
ipxe-use-gcc6-for-more-compact-code.patch
* SLE patches dropped (accounted for in above listed changes):
0002-qemu-0.9.0.cvs-binfmt.patch
0009-block-vmdk-Support-creation-of-SCSI.patch
0010-linux-user-add-binfmt-wrapper-for-a.patch
0011-PPC-KVM-Disable-mmu-notifier-check.patch
0012-linux-user-fix-segfault-deadlock.patch
0013-linux-user-binfmt-support-host-bina.patch
0014-linux-user-Ignore-broken-loop-ioctl.patch
0015-linux-user-lock-tcg.patch
0016-linux-user-Run-multi-threaded-code-.patch
0017-linux-user-lock-tb-flushing-too.patch
0018-linux-user-Fake-proc-cpuinfo.patch
0019-linux-user-implement-FS_IOC_GETFLAG.patch
0020-linux-user-implement-FS_IOC_SETFLAG.patch
0021-linux-user-XXX-disable-fiemap.patch
0022-slirp-nooutgoing.patch
0023-vnc-password-file-and-incoming-conn.patch
0024-linux-user-add-more-blk-ioctls.patch
0025-linux-user-use-target_ulong.patch
0026-block-Add-support-for-DictZip-enabl.patch
0027-block-Add-tar-container-format.patch
0028-Legacy-Patch-kvm-qemu-preXX-dictzip.patch
0029-console-add-question-mark-escape-op.patch
0030-Make-char-muxer-more-robust-wrt-sma.patch
0031-linux-user-lseek-explicitly-cast-no.patch
0032-virtfs-proxy-helper-Provide-_u64-f.patch
0033-configure-Enable-PIE-for-ppc-and-pp.patch
0034-Raise-soft-address-space-limit-to-h.patch
0035-increase-x86_64-physical-bits-to-42.patch
0036-vnc-provide-fake-color-map.patch
0037-vga-Raise-VRAM-to-16-MiB-for-pc-0.1.patch
0038-i8254-Fix-migration-from-SLE11-SP2.patch
0039-acpi_piix4-Fix-migration-from-SLE11.patch
0040-qtest-Increase-socket-timeout-to-ac.patch
0041-dictzip-Fix-on-big-endian-systems.patch
0043-xen_disk-Add-suse-specific-flush-di.patch
0044-Split-large-discard-requests-from-b.patch
0045-fix-xen-hvm-direct-kernel-boot.patch
0046-xen-introduce-dummy-system-device.patch
0047-xen-write-information-about-support.patch
0048-xen-add-pvUSB-backend.patch
0049-xen-move-xen_sysdev-to-xen_backend..patch
0050-vnc-add-configurable-keyboard-delay.patch
0051-xen-SUSE-xenlinux-unplug-for-emulat.patch
0052-configure-add-echo_version-helper.patch
0053-configure-support-vte-2.91.patch
0054-scsi-esp-fix-migration.patch
0055-hw-arm-virt-mark-the-PCIe-host-cont.patch
0056-xen-when-removing-a-backend-don-t-r.patch
0057-xen-drain-submit-queue-in-xen-usb-b.patch
0058-qcow2-avoid-extra-flushes-in-qcow2.patch
0059-qemu-bridge-helper-reduce-security-.patch
0060-xen-use-a-common-function-for-pv-an.patch
0061-xen_platform-unplug-also-SCSI-disks.patch
0062-virtio-check-vring-descriptor-buffe.patch
0063-net-vmxnet3-check-for-device_active.patch
0064-net-vmxnet-initialise-local-tx-desc.patch
0065-scsi-pvscsi-avoid-infinite-loop-whi.patch
0066-ARM-KVM-Enable-in-kernel-timers-wit.patch
0067-hw-net-Fix-a-heap-overflow-in-xlnx..patch
0068-vmsvga-correct-bitmap-and-pixmap-si.patch
0069-usb-xhci-fix-memory-leak-in-usb_xhc.patch
0070-virtio-add-check-for-descriptor-s-m.patch
0071-net-mcf-limit-buffer-descriptor-cou.patch
0072-usb-ehci-fix-memory-leak-in-ehci_pr.patch
0073-xhci-limit-the-number-of-link-trbs-.patch
0074-9pfs-allocate-space-for-guest-origi.patch
0075-9pfs-fix-memory-leak-in-v9fs_link.patch
0076-9pfs-fix-potential-host-memory-leak.patch
0077-9pfs-fix-memory-leak-in-v9fs_write.patch
0078-char-serial-check-divider-value-aga.patch
0079-net-pcnet-check-rx-tx-descriptor-ri.patch
0080-net-eepro100-fix-memory-leak-in-dev.patch
0081-net-rocker-set-limit-to-DMA-buffer-.patch
0082-net-rtl8139-limit-processing-of-rin.patch
0083-audio-intel-hda-check-stream-entry-.patch
0084-virtio-gpu-fix-memory-leak-in-virti.patch
0085-9pfs-fix-integer-overflow-issue-in-.patch
0086-dma-rc4030-limit-interval-timer-rel.patch
0087-net-imx-limit-buffer-descriptor-cou.patch
0088-target-i386-Implement-CPUID-0xB-Ext.patch
0089-target-i386-present-virtual-L3-cach.patch
0090-migration-fix-inability-to-save-VM-.patch
0091-ui-gtk-Fix-a-runtime-warning-on-vte.patch
0092-gtk-don-t-leak-the-GtkBorder-with-V.patch
0093-xen-fix-ioreq-handling.patch
0094-macio-Use-blk_drain-instead-of-blk_.patch
0095-rbd-Switch-rbd_start_aio-to-byte-ba.patch
0096-virtio-blk-Release-s-rq-queue-at-sy.patch
0097-virtio-blk-Remove-stale-comment-abo.patch
0098-block-reintroduce-bdrv_flush_all.patch
0099-qemu-use-bdrv_flush_all-for-vm_stop.patch
0100-block-backend-remove-blkflush_all.patch
0101-char-fix-missing-return-in-error-pa.patch
0102-rbd-shift-byte-count-as-a-64-bit-va.patch
0103-mirror-use-bdrv_drained_begin-bdrv_.patch
0104-block-curl-Use-BDRV_SECTOR_SIZE.patch
0105-block-curl-Fix-return-value-from-cu.patch
0106-block-curl-Remember-all-sockets.patch
0107-block-curl-Do-not-wait-for-data-bey.patch
0108-virtio-allow-per-device-class-legac.patch
0109-virtio-net-mark-VIRTIO_NET_F_GSO-as.patch
0110-vhost-adapt-vhost_verify_ring_mappi.patch
0111-ivshmem-Fix-64-bit-memory-bar-confi.patch
0112-intel_iommu-fix-incorrect-device-in.patch
0113-9pfs-fix-information-leak-in-xattr-.patch
0114-9pfs-fix-memory-leak-in-v9fs_xattrc.patch
0115-net-mcf-check-receive-buffer-size-r.patch
0116-virtio-gpu-fix-memory-leak-in-updat.patch
0117-virtio-gpu-fix-information-leak-in-.patch
0118-9pfs-adjust-the-order-of-resource-c.patch
0119-9pfs-add-cleanup-operation-in-FileO.patch
0120-9pfs-add-cleanup-operation-for-hand.patch
0121-9pfs-add-cleanup-operation-for-prox.patch
0122-virtio-gpu-call-cleanup-mapping-fun.patch
0123-string-input-visitor-Fix-uint64-par.patch
0124-test-string-input-visitor-Add-int-t.patch
0125-test-string-input-visitor-Add-uint6.patch
0126-tests-Add-QOM-property-unit-tests.patch
0127-tests-Add-scsi-disk-test.patch
0128-usb-ehci-fix-memory-leak-in-ehci_in.patch
0129-usbredir-free-vm_change_state_handl.patch
0130-virtio-gpu-fix-information-leak-in-.patch
ipxe-ath9k-Fix-buffer-overrun-for-ar9287.patch
ipxe-ath-Fix-building-with-GCC-6.patch
ipxe-efi-fix-garbage-bytes-in-device-path.patch
ipxe-efi-fix-uninitialised-data-in-HII.patch
ipxe-legacy-Fix-building-with-GCC-6.patch
ipxe-mucurses-Fix-GCC-6-nonnull-compare-errors.patch
ipxe-sis190-Fix-building-with-GCC-6.patch
ipxe-skge-Fix-building-with-GCC-6.patch
ipxe-util-v5.24-perl-errors-on-redeclare.patch
- SLE CVE, FATE, and bugzilla references not otherwise listed in
this changelog file. The intent of this list is to indicate that
the fix or feature continues the line of inheritance in the
development stream of this package. The list is intended to
satisfy searches only - refer to the SLE-12-SP2 changelog file
for additional details.
* fate#314468 fate#314497 fate#315125 fate#315467 fate#317015
fate#317741 fate#317763 fate#318349 fate#319660 fate#319979
fate#321010
* bnc#812983 bnc#869026 bnc#869746 bnc#874413 bnc#875582 bnc#875870
bnc#877642 bnc#877645 bnc#878541 bsc#882405 bsc#886378 bnc#893339
bnc#893892 bnc#895369 bnc#896726 bnc#897654 bnc#905097 bnc#907805
bnc#908380 bnc#914521 bsc#924018 bsc#929339 bsc#932267 bsc#932770
bsc#933981 bsc#936537 bsc#937125 bsc#938344 bsc#940929 bsc#942845
bsc#943446 bsc#944697 bsc#945404 bsc#945987 bsc#945989 bsc#946020
bsc#947159 bnc#953518 bsc#954864 bsc#956829 bsc#957162 bsc#958491
bsc#958917 bsc#959005 bsc#959386 bsc#960334 bsc#960708 bsc#960725
bsc#960835 bsc#961333 bsc#961556 bsc#961691 bsc#962320 bsc#963782
bsc#964413 bsc#970791 bsc#974141 bsc#978158 bsc#979473 bsc#982365
bsc#989655 bsc#991466 bsc#994771 bsc#994774 bsc#996441 bsc#997858
bsc#999212
bsc#1001151 bsc#1002116 bsc#1005353 boo#1007263 bsc#1007769
bsc#1008519 bsc#1009109 bsc#1013285 bsc#1013341 bsc#1013764
bsc#1013767 bsc#1014109 bsc#1014110 bsc#1014111 bsc#1014112
bsc#1014256 bsc#1014514 bsc#1014702 bsc#1015169 bsc#1016779
* CVE-2014-0222 CVE-2014-0223 CVE-2014-3461 CVE-2014-3640 CVE-2014-7840
CVE-2014-8106 CVE-2015-1779 CVE-2015-3209 CVE-2015-4037 CVE-2015-5154
CVE-2015-5225 CVE-2015-5278 CVE-2015-5279 CVE-2015-5745 CVE-2015-6815
CVE-2015-6855 CVE-2015-7295 CVE-2015-7512 CVE-2015-7549 CVE-2015-8345
CVE-2015-8504 CVE-2015-8558 CVE-2015-8567 CVE-2015-8568 CVE-2015-8613
CVE-2015-8619 CVE-2015-8743 CVE-2015-8744 CVE-2015-8745 CVE-2016-1568
CVE-2016-1714 CVE-2016-1922 CVE-2016-1981 CVE-2016-2198 CVE-2016-3710
CVE-2016-6490 CVE-2016-6833 CVE-2016-6888 CVE-2016-7116 CVE-2016-7155
CVE-2016-7161 CVE-2016-9381 CVE-2016-9776 CVE-2016-9845 CVE-2016-9846
CVE-2016-9907 CVE-2016-9908 CVE-2016-9911 CVE-2016-9912 CVE-2016-9913
CVE-2016-9921 CVE-2016-9922
- Despite the previous entry about re-enabling ceph on Nov 19, 2016
the change wasn't actually done. Do it now.
- sgabios-stable-buildid.patch: Use geeko@buildhost
- slof_xhci.patch: XHCI fixes (boo#977027)
- Recommend x86 ROMs for emulated PCI cards on ppc, arm, others
(bsc#1005869, michals)
- Tidy SLOF patch boilerplate (michals)
- Build with spice on all archs. (boo#1009438, michals)
- Refine the approach to producing stable builds in our ROM based
packages. All built roms which have hostname or date calls now
produce consistent results build to build via patch changes, so
remove the hostname and date call workarounds. (bsc#1011213)
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.7
* Patches added:
0069-roms-Makefile-pass-a-packaging-time.patch
sgabios-stable-buildid.patch
- Re-enable ceph (rbd) functionality in OBS builds as we've been told
the issues which prompted us to disable it are resolved
- Address various security/stability issues
* Fix OOB access in VMware SVGA emulation (CVE-2016-7170 bsc#998516)
0041-vmsvga-correct-bitmap-and-pixmap-si.patch
* Fix DOS in LSI SAS1068 emulation (CVE-2016-7157 bsc#997860)
0042-scsi-mptconfig-fix-an-assert-expres.patch
0043-scsi-mptconfig-fix-misuse-of-MPTSAS.patch
* Fix DOS in Vmware pv scsi interface (CVE-2016-7156 bsc#997859)
0044-scsi-pvscsi-limit-loop-to-fetch-SG-.patch
* Fix DOS in USB xHCI emulation (CVE-2016-7466 bsc#1000345)
0045-usb-xhci-fix-memory-leak-in-usb_xhc.patch
* Fix OOB access in LSI SAS1068 emulation (CVE-2016-7423 bsc#1000397)
0046-scsi-mptsas-use-g_new0-to-allocate-.patch
* Fix DOS in Vmware pv scsi interface (CVE-2016-7421 bsc#999661)
0047-scsi-pvscsi-limit-process-IO-loop-t.patch
* Fix NULL pointer dereference in virtio processing
(CVE-2016-7422 bsc#1000346)
0048-virtio-add-check-for-descriptor-s-m.patch
* Fix DOS in ColdFire Fast Ethernet Controller emulation
(CVE-2016-7908 bsc#1002550)
0049-net-mcf-limit-buffer-descriptor-cou.patch
* Fix DOS in USB EHCI emulation (CVE-2016-7995 bsc#1003612)
0050-usb-ehci-fix-memory-leak-in-ehci_pr.patch
* Fix DOS in USB xHCI emulation (CVE-2016-8576 bsc#1003878)
0051-xhci-limit-the-number-of-link-trbs-.patch
* Fix DOS in virtio-9pfs (CVE-2016-8578 bsc#1003894)
0052-9pfs-allocate-space-for-guest-origi.patch
* Fix DOS in virtio-9pfs (CVE-2016-9105 bsc#1007494)
0053-9pfs-fix-memory-leak-in-v9fs_link.patch
* Fix DOS in virtio-9pfs (CVE-2016-8577 bsc#1003893)
0054-9pfs-fix-potential-host-memory-leak.patch
* Plug data leak in virtio-9pfs interface (CVE-2016-9103 bsc#1007454)
0055-9pfs-fix-information-leak-in-xattr-.patch
* Fix DOS in virtio-9pfs interface (CVE-2016-9102 bsc#1007450)
0056-9pfs-fix-memory-leak-in-v9fs_xattrc.patch
* Fix DOS in virtio-9pfs (CVE-2016-9106 bsc#1007495)
0057-9pfs-fix-memory-leak-in-v9fs_write.patch
* Fix DOS in 16550A UART emulation (CVE-2016-8669 bsc#1004707)
0058-char-serial-check-divider-value-aga.patch
* Fix DOS in PC-Net II emulation (CVE-2016-7909 bsc#1002557)
0059-net-pcnet-check-rx-tx-descriptor-ri.patch
* Fix DOS in PRO100 emulation (CVE-2016-9101 bsc#1007391)
0060-net-eepro100-fix-memory-leak-in-dev.patch
* Fix OOB access in Rocker switch emulation (CVE-2016-8668 bsc#1004706)
0061-net-rocker-set-limit-to-DMA-buffer-.patch
* Plug data leak in vmxnet3 emulation (CVE-2016-6836 bsc#994760)
0062-net-vmxnet-initialise-local-tx-desc.patch
* Fix DOS in RTL8139 emulation (CVE-2016-8910 bsc#1006538)
0063-net-rtl8139-limit-processing-of-rin.patch
* Fix DOS in Intel HDA controller emulation (CVE-2016-8909 bsc#1006536)
0064-audio-intel-hda-check-stream-entry-.patch
* Fix DOS in virtio-gpu (CVE-2016-7994 bsc#1003613)
0065-virtio-gpu-fix-memory-leak-in-virti.patch
* Fix DOS in virtio-9pfs (CVE-2016-9104 bsc#1007493)
0066-9pfs-fix-integer-overflow-issue-in-.patch
* Fix DOS in JAZZ RC4030 emulation (CVE-2016-8667 bsc#1004702)
0067-dma-rc4030-limit-interval-timer-rel.patch
* Fix DOS in i.MX NIC emulation (CVE-2016-7907 bsc#1002549)
0068-net-imx-limit-buffer-descriptor-cou.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.7
- Use fixed timestamps and stable build_id in ipxe and other ROMs
* Patches added:
ipxe-stable-buildid.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.7
* Patch updated:
0040-linux-user-skip-0-flag-from-proc-se.patch -> 0040-linux-user-remove-all-traces-of-qem.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.7
* Patches added:
0040-linux-user-skip-0-flag-from-proc-se.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.7
* Patches added:
0039-Fix-tlb_vaddr_to_host-with-CONFIG_U.patch
- Document two new options, but leave jemalloc disabled for now
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.7
* Patches dropped:
0034-build-link-with-libatomic-on-powerp.patch
* Patches renamed:
0035-xen-SUSE-xenlinux-unplug-for-emulat.patch -> 0034-xen-SUSE-xenlinux-unplug-for-emulat.patch
0036-qemu-bridge-helper-reduce-security-.patch -> 0035-qemu-bridge-helper-reduce-security-.patch
0037-qemu-binfmt-conf-use-qemu-ARCH-binf.patch -> 0036-qemu-binfmt-conf-use-qemu-ARCH-binf.patch
0038-configure-Fix-detection-of-seccomp-.patch -> 0037-configure-Fix-detection-of-seccomp-.patch
0039-linux-user-properly-test-for-infini.patch -> 0038-linux-user-properly-test-for-infini.patch
- Updated to v2.7.0: See http://wiki.qemu-project.org/ChangeLog/2.7
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.7
* Patches added:
0039-linux-user-properly-test-for-infini.patch
- Use new kvm_stat package where available, else provide updated
kvm_stat script.
- Update to v2.7.0-rc5: See http://wiki.qemu-project.org/ChangeLog/2.7
- Updated to v2.7.0-rc2: See http://wiki.qemu-project.org/ChangeLog/2.7
* Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.7
* Patches dropped:
0002-qemu-0.9.0.cvs-binfmt.patch (script rewritten upstream)
0009-block-vmdk-Support-creation-of-SCSI.patch (deprecated)
0014-linux-user-Ignore-broken-loop-ioctl.patch (implemented upstream)
0024-linux-user-add-more-blk-ioctls.patch (more implemented upstream)
0034-qtest-Increase-socket-timeout.patch (increased further upstream)
0036-configure-Enable-libseccomp-for-ppc.patch (enabled upstream)
0038-block-split-large-discard-requests-.patch
0041-xen-introduce-dummy-system-device.patch
0042-xen-write-information-about-support.patch
0043-xen-add-pvUSB-backend.patch
0044-xen-move-xen_sysdev-to-xen_backend..patch
0045-vnc-add-configurable-keyboard-delay.patch
0046-configure-add-echo_version-helper.patch
0047-configure-support-vte-2.91.patch
0048-hw-arm-virt-mark-the-PCIe-host-cont.patch
0050-scsi-esp-fix-migration.patch
0051-xen-when-removing-a-backend-don-t-r.patch
0052-xen-drain-submit-queue-in-xen-usb-b.patch
0053-qcow2-avoid-extra-flushes-in-qcow2.patch
0055-xen-use-a-common-function-for-pv-an.patch
ipxe-ath9k-Fix-buffer-overrun-for-ar9287.patch
ipxe-mucurses-Fix-GCC-6-nonnull-compare-errors.patch
ipxe-sis190-Fix-building-with-GCC-6.patch
ipxe-skge-Fix-building-with-GCC-6.patch
ipxe-ath-Fix-building-with-GCC-6.patch
ipxe-legacy-Fix-building-with-GCC-6.patch
ipxe-util-v5.24-perl-errors-on-redeclare.patch
ipxe-efi-fix-garbage-bytes-in-device-path.patch
ipxe-efi-fix-uninitialised-data-in-HII.patch
* Patches renamed:
0010-linux-user-add-binfmt-wrapper-for-a.patch -> 0009-linux-user-add-binfmt-wrapper-for-a.patch
0011-PPC-KVM-Disable-mmu-notifier-check.patch -> 0010-PPC-KVM-Disable-mmu-notifier-check.patch
0012-linux-user-fix-segfault-deadlock.patch -> 0011-linux-user-fix-segfault-deadlock.patch
0013-linux-user-binfmt-support-host-bina.patch -> 0012-linux-user-binfmt-support-host-bina.patch
0015-linux-user-lock-tcg.patch -> 0013-linux-user-lock-tcg.patch
0016-linux-user-Run-multi-threaded-code-.patch -> 0014-linux-user-Run-multi-threaded-code-.patch
0017-linux-user-lock-tb-flushing-too.patch -> 0015-linux-user-lock-tb-flushing-too.patch
0018-linux-user-Fake-proc-cpuinfo.patch -> 0016-linux-user-Fake-proc-cpuinfo.patch
0019-linux-user-implement-FS_IOC_GETFLAG.patch -> 0017-linux-user-implement-FS_IOC_GETFLAG.patch
0020-linux-user-implement-FS_IOC_SETFLAG.patch -> 0018-linux-user-implement-FS_IOC_SETFLAG.patch
0021-linux-user-XXX-disable-fiemap.patch -> 0019-linux-user-XXX-disable-fiemap.patch
0022-slirp-nooutgoing.patch -> 0020-slirp-nooutgoing.patch
0023-vnc-password-file-and-incoming-conn.patch -> 0021-vnc-password-file-and-incoming-conn.patch
0025-linux-user-use-target_ulong.patch -> 0022-linux-user-use-target_ulong.patch
0026-block-Add-support-for-DictZip-enabl.patch -> 0023-block-Add-support-for-DictZip-enabl.patch
0027-block-Add-tar-container-format.patch -> 0024-block-Add-tar-container-format.patch
0028-Legacy-Patch-kvm-qemu-preXX-dictzip.patch -> 0025-Legacy-Patch-kvm-qemu-preXX-dictzip.patch
0029-console-add-question-mark-escape-op.patch -> 0026-console-add-question-mark-escape-op.patch
0030-Make-char-muxer-more-robust-wrt-sma.patch -> 0027-Make-char-muxer-more-robust-wrt-sma.patch
0031-linux-user-lseek-explicitly-cast-no.patch -> 0028-linux-user-lseek-explicitly-cast-no.patch
0032-virtfs-proxy-helper-Provide-__u64-f.patch -> 0029-virtfs-proxy-helper-Provide-__u64-f.patch
0033-configure-Enable-PIE-for-ppc-and-pp.patch -> 0030-configure-Enable-PIE-for-ppc-and-pp.patch
0035-AIO-Reduce-number-of-threads-for-32.patch -> 0031-AIO-Reduce-number-of-threads-for-32.patch
0037-dictzip-Fix-on-big-endian-systems.patch -> 0032-dictzip-Fix-on-big-endian-systems.patch
0039-xen_disk-Add-suse-specific-flush-di.patch -> 0033-xen_disk-Add-suse-specific-flush-di.patch
0040-build-link-with-libatomic-on-powerp.patch -> 0034-build-link-with-libatomic-on-powerp.patch
0049-xen-SUSE-xenlinux-unplug-for-emulat.patch -> 0035-xen-SUSE-xenlinux-unplug-for-emulat.patch
0054-qemu-bridge-helper-reduce-security-.patch -> 0036-qemu-bridge-helper-reduce-security-.patch
* Patches added:
0002-qemu-binfmt-conf-Modify-default-pat.patch
0037-qemu-binfmt-conf-use-qemu-ARCH-binf.patch
* Package renamed trace-events-all file and linuxboot_dma.bin
* Handle building and packaging roms for e1000e and vmxnet3 (Bruce)
* Remove ipxe patches which are now enabled upstream (Bruce)
* Enable seccomp for s390x (Mark Post):
0038-configure-Fix-detection-of-seccomp-.patch
- Update to v2.6.1 a stable, bug-fix-only release (fate#316228)
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.6
* Patches dropped (upstreamed):
0041-net-mipsnet-check-packet-length-aga.patch
0042-i386-kvmvapic-initialise-imm32-vari.patch
0043-esp-check-command-buffer-length-bef.patch
0044-esp-check-dma-length-before-reading.patch
0045-scsi-pvscsi-check-command-descripto.patch
0046-scsi-mptsas-infinite-loop-while-fet.patch
0047-vga-add-sr_vbe-register-set.patch
0048-scsi-megasas-use-appropriate-proper.patch
0049-scsi-megasas-check-read_queue_head-.patch
0050-scsi-megasas-null-terminate-bios-ve.patch
0051-vmsvga-move-fifo-sanity-checks-to-v.patch
0052-vmsvga-don-t-process-more-than-1024.patch
0053-block-iscsi-avoid-potential-overflo.patch
0054-scsi-esp-check-TI-buffer-index-befo.patch
0060-scsi-megasas-initialise-local-confi.patch
0065-scsi-esp-check-buffer-length-before.patch
0066-scsi-esp-respect-FIFO-invariant-aft.patch
0067-pci-assign-Move-Invalid-ROM-error-m.patch
0068-Xen-PCI-passthrough-fix-passthrough.patch
0069-scsi-esp-make-cmdbuf-big-enough-for.patch
0071-virtio-error-out-if-guest-exceeds-v.patch
* Patches renamed:
0055-xen-introduce-dummy-system-device.patch
- > 0041-xen-introduce-dummy-system-device.patch
0056-xen-write-information-about-support.patch
- > 0042-xen-write-information-about-support.patch
0057-xen-add-pvUSB-backend.patch
- > 0043-xen-add-pvUSB-backend.patch
0058-xen-move-xen_sysdev-to-xen_backend..patch
- > 0044-xen-move-xen_sysdev-to-xen_backend..patch
0059-vnc-add-configurable-keyboard-delay.patch
- > 0045-vnc-add-configurable-keyboard-delay.patch
0061-configure-add-echo_version-helper.patch
- > 0046-configure-add-echo_version-helper.patch
0062-configure-support-vte-2.91.patch
- > 0047-configure-support-vte-2.91.patch
0063-hw-arm-virt-mark-the-PCIe-host-cont.patch
- > 0048-hw-arm-virt-mark-the-PCIe-host-cont.patch
0064-xen-SUSE-xenlinux-unplug-for-emulat.patch
- > 0049-xen-SUSE-xenlinux-unplug-for-emulat.patch
0070-scsi-esp-fix-migration.patch
- > 0050-scsi-esp-fix-migration.patch
0072-xen-when-removing-a-backend-don-t-r.patch
- > 0051-xen-when-removing-a-backend-don-t-r.patch
0073-xen-drain-submit-queue-in-xen-usb-b.patch
- > 0052-xen-drain-submit-queue-in-xen-usb-b.patch
0074-qcow2-avoid-extra-flushes-in-qcow2.patch
- > 0053-qcow2-avoid-extra-flushes-in-qcow2.patch
0075-qemu-bridge-helper-reduce-security-.patch
- > 0054-qemu-bridge-helper-reduce-security-.patch
0076-xen-use-a-common-function-for-pv-an.patch
- > 0055-xen-use-a-common-function-for-pv-an.patch
- Temporarily disable ceph (rbd) functionality in OBS due to staging
issues.
- use upstream solution for building xen-usb.c correctly
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.6
* Patches dropped:
0058-usb-Fix-conditions-that-xen-usb.c-i.patch
* Patches added:
0058-xen-move-xen_sysdev-to-xen_backend..patch
- Incorporate patch carried in Xen's qemu to get same support
as Xen switches to use the qemu package (bsc#953339, bsc#953362,
bsc#953518, bsc#984981)
0064-xen-SUSE-xenlinux-unplug-for-emulat.patch
- Fix more potential OOB accesses in 53C9X emulation
(CVE-2016-5238 bsc#982959)
0065-scsi-esp-check-buffer-length-before.patch
0066-scsi-esp-respect-FIFO-invariant-aft.patch
- Avoid "Invalid ROM" error message when it is not appropriate
(bsc#982927)
0067-pci-assign-Move-Invalid-ROM-error-m.patch
- Fix failure in Xen HVM PCI passthrough (bsc#981925, bsc#989250)
0068-Xen-PCI-passthrough-fix-passthrough.patch
- Fix OOB access in 53C9X emulation (CVE-2016-6351 bsc#990835)
0069-scsi-esp-make-cmdbuf-big-enough-for.patch
0070-scsi-esp-fix-migration.patch
- Avoid potential for guest initiated OOM condition in qemu through
virtio interface (CVE-2016-5403 bsc#991080)
0071-virtio-error-out-if-guest-exceeds-v.patch
- Fix potential crashes in qemu from pvusb bugs (bsc#986156)
0072-xen-when-removing-a-backend-don-t-r.patch
0073-xen-drain-submit-queue-in-xen-usb-b.patch
- Avoid unneeded flushes in qcow2 which impact performance (bsc#991296)
0074-qcow2-avoid-extra-flushes-in-qcow2.patch
- Finally get qemu-bridge-helper the permissions it needs for non-
root usage. The kvm group is leveraged to control access. (boo#988279)
0075-qemu-bridge-helper-reduce-security-.patch
- Fix pvusb not working for HVM guests (bsc#991785)
0076-xen-use-a-common-function-for-pv-an.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.6
- Minor spec file formatting fixes
- Fix ARM PCIe DMA coherency bug (bsc#991034)
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.6
* Patches added:
0063-hw-arm-virt-mark-the-PCIe-host-cont.patch
- Clean up the udev ifdeffery to cover systemd as well (boo#860275)
- Trigger udev rules also under systemd (boo#989655)
- Suppress s390x sysctl in chroot
- Ignore s390x sysctl failures (agraf)
- Build SLOF for SLE12 now that we have gcc fix (bsc#949000)
- Add script for loading kvm module on s390x
- Enable seccomp and iscsi support in more configurations
- Enable more support for virtio-gpu
- Fix /dev/kvm permissions problem with package install and no
reboot (bnc#867867)
- Remove libtool dependency
- Disable more aggressive stack protector for performance reasons
- Enable vte to be used again in more configurations (bsc#988855)
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.6
* Patches added:
0061-configure-add-echo_version-helper.patch
0062-configure-support-vte-2.91.patch
- Remove deprecated patch "work-around-SA_RESTART-race" (boo#982208)
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.6
* Patches dropped:
0002-XXX-work-around-SA_RESTART-race-wit.patch
0003-qemu-0.9.0.cvs-binfmt.patch
0004-qemu-cvs-alsa_bitfield.patch
0005-qemu-cvs-alsa_ioctl.patch
0006-qemu-cvs-alsa_mmap.patch
0007-qemu-cvs-gettimeofday.patch
0008-qemu-cvs-ioctl_debug.patch
0009-qemu-cvs-ioctl_nodirection.patch
0010-block-vmdk-Support-creation-of-SCSI.patch
0011-linux-user-add-binfmt-wrapper-for-a.patch
0012-PPC-KVM-Disable-mmu-notifier-check.patch
0013-linux-user-fix-segfault-deadlock.patch
0014-linux-user-binfmt-support-host-bina.patch
0015-linux-user-Ignore-broken-loop-ioctl.patch
0016-linux-user-lock-tcg.patch
0017-linux-user-Run-multi-threaded-code-.patch
0018-linux-user-lock-tb-flushing-too.patch
0019-linux-user-Fake-proc-cpuinfo.patch
0020-linux-user-implement-FS_IOC_GETFLAG.patch
0021-linux-user-implement-FS_IOC_SETFLAG.patch
0022-linux-user-XXX-disable-fiemap.patch
0023-slirp-nooutgoing.patch
0024-vnc-password-file-and-incoming-conn.patch
0025-linux-user-add-more-blk-ioctls.patch
0026-linux-user-use-target_ulong.patch
0027-block-Add-support-for-DictZip-enabl.patch
0028-block-Add-tar-container-format.patch
0029-Legacy-Patch-kvm-qemu-preXX-dictzip.patch
0030-console-add-question-mark-escape-op.patch
0031-Make-char-muxer-more-robust-wrt-sma.patch
0032-linux-user-lseek-explicitly-cast-no.patch
0033-virtfs-proxy-helper-Provide-__u64-f.patch
0034-configure-Enable-PIE-for-ppc-and-pp.patch
0035-qtest-Increase-socket-timeout.patch
0036-AIO-Reduce-number-of-threads-for-32.patch
0037-configure-Enable-libseccomp-for-ppc.patch
0038-dictzip-Fix-on-big-endian-systems.patch
0039-block-split-large-discard-requests-.patch
0040-xen_disk-Add-suse-specific-flush-di.patch
0041-build-link-with-libatomic-on-powerp.patch
0042-net-mipsnet-check-packet-length-aga.patch
0043-i386-kvmvapic-initialise-imm32-vari.patch
0044-esp-check-command-buffer-length-bef.patch
0045-esp-check-dma-length-before-reading.patch
0046-scsi-pvscsi-check-command-descripto.patch
0047-scsi-mptsas-infinite-loop-while-fet.patch
0048-vga-add-sr_vbe-register-set.patch
0049-scsi-megasas-use-appropriate-proper.patch
0050-scsi-megasas-check-read_queue_head-.patch
0051-scsi-megasas-null-terminate-bios-ve.patch
0052-vmsvga-move-fifo-sanity-checks-to-v.patch
0053-vmsvga-don-t-process-more-than-1024.patch
0054-block-iscsi-avoid-potential-overflo.patch
0055-scsi-esp-check-TI-buffer-index-befo.patch
0056-xen-introduce-dummy-system-device.patch
0057-xen-write-information-about-support.patch
0058-xen-add-pvUSB-backend.patch
0059-usb-Fix-conditions-that-xen-usb.c-i.patch
0060-vnc-add-configurable-keyboard-delay.patch
0061-scsi-megasas-initialise-local-confi.patch
* Patches added:
0002-qemu-0.9.0.cvs-binfmt.patch
0003-qemu-cvs-alsa_bitfield.patch
0004-qemu-cvs-alsa_ioctl.patch
0005-qemu-cvs-alsa_mmap.patch
0006-qemu-cvs-gettimeofday.patch
0007-qemu-cvs-ioctl_debug.patch
0008-qemu-cvs-ioctl_nodirection.patch
0009-block-vmdk-Support-creation-of-SCSI.patch
0010-linux-user-add-binfmt-wrapper-for-a.patch
0011-PPC-KVM-Disable-mmu-notifier-check.patch
0012-linux-user-fix-segfault-deadlock.patch
0013-linux-user-binfmt-support-host-bina.patch
0014-linux-user-Ignore-broken-loop-ioctl.patch
0015-linux-user-lock-tcg.patch
0016-linux-user-Run-multi-threaded-code-.patch
0017-linux-user-lock-tb-flushing-too.patch
0018-linux-user-Fake-proc-cpuinfo.patch
0019-linux-user-implement-FS_IOC_GETFLAG.patch
0020-linux-user-implement-FS_IOC_SETFLAG.patch
0021-linux-user-XXX-disable-fiemap.patch
0022-slirp-nooutgoing.patch
0023-vnc-password-file-and-incoming-conn.patch
0024-linux-user-add-more-blk-ioctls.patch
0025-linux-user-use-target_ulong.patch
0026-block-Add-support-for-DictZip-enabl.patch
0027-block-Add-tar-container-format.patch
0028-Legacy-Patch-kvm-qemu-preXX-dictzip.patch
0029-console-add-question-mark-escape-op.patch
0030-Make-char-muxer-more-robust-wrt-sma.patch
0031-linux-user-lseek-explicitly-cast-no.patch
0032-virtfs-proxy-helper-Provide-__u64-f.patch
0033-configure-Enable-PIE-for-ppc-and-pp.patch
0034-qtest-Increase-socket-timeout.patch
0035-AIO-Reduce-number-of-threads-for-32.patch
0036-configure-Enable-libseccomp-for-ppc.patch
0037-dictzip-Fix-on-big-endian-systems.patch
0038-block-split-large-discard-requests-.patch
0039-xen_disk-Add-suse-specific-flush-di.patch
0040-build-link-with-libatomic-on-powerp.patch
0041-net-mipsnet-check-packet-length-aga.patch
0042-i386-kvmvapic-initialise-imm32-vari.patch
0043-esp-check-command-buffer-length-bef.patch
0044-esp-check-dma-length-before-reading.patch
0045-scsi-pvscsi-check-command-descripto.patch
0046-scsi-mptsas-infinite-loop-while-fet.patch
0047-vga-add-sr_vbe-register-set.patch
0048-scsi-megasas-use-appropriate-proper.patch
0049-scsi-megasas-check-read_queue_head-.patch
0050-scsi-megasas-null-terminate-bios-ve.patch
0051-vmsvga-move-fifo-sanity-checks-to-v.patch
0052-vmsvga-don-t-process-more-than-1024.patch
0053-block-iscsi-avoid-potential-overflo.patch
0054-scsi-esp-check-TI-buffer-index-befo.patch
0055-xen-introduce-dummy-system-device.patch
0056-xen-write-information-about-support.patch
0057-xen-add-pvUSB-backend.patch
0058-usb-Fix-conditions-that-xen-usb.c-i.patch
0059-vnc-add-configurable-keyboard-delay.patch
0060-scsi-megasas-initialise-local-confi.patch
- Enable ceph (rbd) support for aarch64
- Enable ceph (rbd) support
- Fix OVMF iPXE network menu (bsc#986033, boo#987488)
ipxe-efi-fix-garbage-bytes-in-device-path.patch
ipxe-efi-fix-uninitialised-data-in-HII.patch
- Fix host information leak to guest in MegaRAID SAS 8708EM2 Host
Bus AdapterMegaRAID SAS 8708EM2 Host Bus Adapter emulation support
(CVE-2016-5105 bsc#982017)
* Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.6
0061-scsi-megasas-initialise-local-confi.patch
- Address various security/stability issues
* Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.6
* Fix OOB access in megasas emulated device (CVE-2016-5106 bsc#982018)
0049-scsi-megasas-use-appropriate-proper.patch
* Fix OOB access in megasas emulated device (CVE-2016-5107 bsc#982019)
0050-scsi-megasas-check-read_queue_head-.patch
* Fix OOB access in megasas emulated device (CVE-2016-5337 bsc#983961)
0051-scsi-megasas-null-terminate-bios-ve.patch
* Correct the vmvga fifo access checks (CVE-2016-4454 bsc#982222)
0052-vmsvga-move-fifo-sanity-checks-to-v.patch
* Fix potential DoS issue in vmvga processing (CVE-2016-4453 bsc#982223)
0053-vmsvga-don-t-process-more-than-1024.patch
* Fix heap buffer overflow flaw when iscsi protocol is used
(CVE-2016-5126 bsc#982285)
0054-block-iscsi-avoid-potential-overflo.patch
* Fix OOB access in 53C9X emulation (CVE-2016-5338 bsc#983982)
0055-scsi-esp-check-TI-buffer-index-befo.patch
- Add support to qemu for pv-usb under Xen (fate#316612)
0056-xen-introduce-dummy-system-device.patch
0057-xen-write-information-about-support.patch
0058-xen-add-pvUSB-backend.patch
0059-usb-Fix-conditions-that-xen-usb.c-i.patch
- Provide ability to rate limit keyboard events from the vnc server.
This is part of the solution to an issue affecting openQA testing,
where characters are lost, resulting in unexpected failures
(bsc#974914)
0060-vnc-add-configurable-keyboard-delay.patch
- Adjust to parallel changes in virglrenderer packages - no longer
"BuildRequires" virglrenderer directly, just the devel package.
- Fix build compatibility with gcc6 wrt ipxe rom where compiler
warnings are treated as errors.
ipxe-ath9k-Fix-buffer-overrun-for-ar9287.patch
ipxe-mucurses-Fix-GCC-6-nonnull-compare-errors.patch
ipxe-sis190-Fix-building-with-GCC-6.patch
ipxe-skge-Fix-building-with-GCC-6.patch
ipxe-ath-Fix-building-with-GCC-6.patch
ipxe-legacy-Fix-building-with-GCC-6.patch
- Fix ipxe build script which fails under perl v5.24
ipxe-util-v5.24-perl-errors-on-redeclare.patch
- Specify build time disk space requirements for ppc64 and ppc64le
- Add sysctl script and %post on s390x to allow kvm usage (bsc#975331)
- Address various security/stability issues
* Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.6
* Fix OOB access in MIPSnet emulated controller CVE-2016-4002 (bsc#975136)
0042-net-mipsnet-check-packet-length-aga.patch
* Fix possible host data leakage to guest from TPR access
CVE-2016-4020 (bsc#975700)
0043-i386-kvmvapic-initialise-imm32-vari.patch
* Avoid OOB access in 53C9X emulation CVE-2016-4439 (bsc#980711)
0044-esp-check-command-buffer-length-bef.patch
* Avoid OOB access in 53C9X emulation CVE-2016-4441 (bsc#980723)
0045-esp-check-dma-length-before-reading.patch
* Avoid OOB access in Vmware PV SCSI emulation CVE-2016-4952 (bsc#981266)
0046-scsi-pvscsi-check-command-descripto.patch
* Avoid potential DoS in LSI SAS1068 emulation CVE-2016-4964 (bsc#981399)
0047-scsi-mptsas-infinite-loop-while-fet.patch
* Fix regression in vga behavior - introduced in v2.6.0 CVE-2016-3712 (bsc#978160)
0048-vga-add-sr_vbe-register-set.patch
- Update to v2.6.0: See http://wiki.qemu-project.org/ChangeLog/2.6
- Enable SDL2, virglrenderer (for use with virtio-gpu), xfsctl, and
tracing using default log backend
- Build efi pxe roms on x86_64
- Check modules for conflicting release versions
- Suggest recently added block modules
- Bump copyright in qemu.spec.in
- Enable libiscsi for Factory
- Enable seccomp for ppc64le as well
- Update to v2.6.0-rc3: See http://wiki.qemu-project.org/ChangeLog/2.6
* Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.6
* Patches dropped (upstreamed):
0041-tests-Use-correct-config-param-for-.patch
* Patches renamed:
0042-build-link-with-libatomic-on-powerp.patch -> 0041-build-link-with-libatomic-on-powerp.patch
- Partially revert the last change's cleanup
- Indicate SUSE version
- Update to v2.6.0-rc0: See http://wiki.qemu-project.org/ChangeLog/2.6
* Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.6
* Accept every size in DISCARD request from a guest (bsc#964427)
0039-block-split-large-discard-requests-.patch
* Recognize libxl flag to disable flush in block device (bsc#879425)
0040-xen_disk-Add-suse-specific-flush-di.patch
* Use correct flag for crypto tests
0041-tests-Use-correct-config-param-for-.patch
* Fix build on powerpc:
0042-build-link-with-libatomic-on-powerp.patch
* Patches dropped (upstreamed):
seabios_checkrom_typo.patch
seabios_avoid_smbios_signature_string.patch
- Disable vte for Leap, fixing build
- Don't drop u-boot.e500 yet - breaks testsuite
- Re-enable libcacard support
- Clean up configured features
- Clean up qemu-tools libcacard Provides/Obsoletes - separate again
- Drop u-boot.e500 - being packaged as u-boot-ppce500
- Update to v2.5.0: See http://wiki.qemu-project.org/ChangeLog/2.5
* Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.5
* Patches dropped (upstreamed):
0039-tests-Fix-check-report-qtest-target.patch
- Fix build on openSUSE 13.2
- Fix testsuite on 32bit systems (bsc#957379)
- Update to v2.5.0-rc1: See http://wiki.qemu-project.org/ChangeLog/2.5
* Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.5
* Rebase libseccomp enablement:
0037-Revert-Revert-seccomp-tests-that-al.patch -> 0037-configure-Enable-libseccomp-for-ppc.patch
* Provide qemu-ga and qemu-ipxe for qemu-testsuite
- Clean up qemu-ksm recommendation
- Fix SLE11 build by fixing systemd conditionalization (from olh)
- Update to v2.5.0-rc0: See http://wiki.qemu-project.org/ChangeLog/2.5
* Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.5
* Patches dropped (upstream):
0038-tcg-aarch64-Fix-tcg_out_qemu_-ld-st.patch
0039-tests-Unique-test-path-for-string-v.patch
gcc5-ipxe-add-missing-const-qualifiers.patch
gcc5-ipxe-ath9k-Remove-confusing-logic-inversion-in-an-ANI-var.patch
SLOF_ppc64le.patch
* Patch renamed:
0040-dictzip-Fix-on-big-endian-systems.patch -> 0038-dictzip-Fix-on-big-endian-systems.patch
* --enable-smartcard-nss -> --enable-smartcard
Needs an external libcacard, so drop it for now.
* Drop --enable-vnc-tls
* Require xz-devel for ipxe build
* Package qemu-ga(8) man page
* Package ivshmem-{client,server}
* Patches added:
0039-tests-Fix-check-report-qtest-target.patch
- Add systemd unit file and udev rules for qemu guest agent
- taken from the SLE12 / Leap package, see boo#955707
- Add _constraints file (based on work by kenljohnson)
- Enable SLOF build for ppc64le, too, now (bsc#949000, bsc#949016)
- Allow building SLOF on ppc64le (bsc#949016)
SLOF_ppc64le.patch
- Add two checks for DictZip and tar qemu-img behavior (bsc#945778)
* Clean up qemu-testsuite build/installation
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.4
* Fix endianness issues in DictZip block driver (bsc#937572, bsc#945778)
0027-block-Add-support-for-DictZip-enabl.patch
0028-block-Add-tar-container-format.patch
0040-dictzip-Fix-on-big-endian-systems.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.4
* Fix qemu-testsuite for glib2-2.46.0 by assuring uniqueness of paths
0039-tests-Unique-test-path-for-string-v.patch
- Build SLOF on ppc64 (bsc#949016, thanks to k0da)
* Simplify x86 fw logic while at it
- No need to enable KVM for armv6hl
- Add notice about pre_checkin.sh to update_git.sh
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.4
* Fix aarch64 TCG:
0038-tcg-aarch64-Fix-tcg_out_qemu_-ld-st.patch
- Update to v2.4.0: See http://wiki.qemu-project.org/ChangeLog/2.4
- Update to v2.4.0-rc2: See http://wiki.qemu-project.org/ChangeLog/2.4
* Provide qemu-img symlink instead of passing QTEST_QEMU_IMG
- Update to v2.4.0-rc1: See http://wiki.qemu-project.org/ChangeLog/2.4
* Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.4
* Patches dropped:
0037-linux-user-Allocate-thunk-size-dyna.patch
0039-s390x-Fix-stoc-direction.patch
0040-s390x-Add-interlocked-access-facili.patch
0041-fdc-force-the-fifo-access-to-be-in-.patch
0042-rules.mak-Force-CFLAGS-for-all-obje.patch
0043-qcow2-Set-MIN_L2_CACHE_SIZE-to-2.patch
0044-hw-arm-boot-Increase-fdt-alignment.patch
* Patches renamed:
0038-Revert-Revert-seccomp-tests-that-al.patch -> 0037-Revert-Revert-seccomp-tests-that-al.patch
* Package new vgabios-virtio.bin
* target-x86_64.conf was dropped
* Add qemu-block-dmg module sub-package
* Set QTEST_QEMU_IMG variable for ahci-test
* --enable-quorum and --enable-vnc-ws are no longer available
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.3
- Fix -kernel boot for AArch64
* Patches added:
0044-hw-arm-boot-Increase-fdt-alignment.patch
- Use libusb-1_0-devel as buildrequires, not the old
unused compatibility layer in libusb-devel
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.3
- Fix qemu2 cow caching (bsc#933132)
* Patches added:
0043-qcow2-Set-MIN_L2_CACHE_SIZE-to-2.patch
- Patch queue updated from git://github.com/jirislaby/qemu.git opensuse-2.3
* Patches added:
0042-rules.mak-Force-CFLAGS-for-all-obje.patch
gcc5-ipxe-add-missing-const-qualifiers.patch
gcc5-ipxe-ath9k-Remove-confusing-logic-inversion-in-an-ANI-var.patch
- Fix CVE-2015-3456 (boo#929339)
0041-fdc-force-the-fifo-access-to-be-in-.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.3
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.3
* Patches added:
0040-s390x-Add-interlocked-access-facili.patch
- Disable dependency on libnuma for s390x (not available in SLE12)
- Update to v2.3.0: See http://wiki.qemu-project.org/ChangeLog/2.3
- Disable iotests for now
- Update to v2.3.0-rc4: See http://wiki.qemu-project.org/ChangeLog/2.3
- Update seabios_avoid_smbios_signature_string.patch with version
applied upstream
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.3
- Fix s390x stoc instructions
0039-s390x-Fix-stoc-direction.patch
- Update to v2.3.0-rc3: See http://wiki.qemu-project.org/ChangeLog/2.3
* Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.3
* Patches dropped (applied upstream):
0037-tcg-tcg-op.c-Fix-ld-st-of-64-bit-va.patch
* Patches renamed:
0038-linux-user-Allocate-thunk-size-dyna.patch -> 0037-linux-user-Allocate-thunk-size-dyna.patch
* Revert -rc3 change to disable seccomp on non-x86 architectures
0038-Revert-Revert-seccomp-tests-that-al.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.3
- Fix qemu-linux-user on powerpc
* Patches added:
0038-linux-user-Allocate-thunk-size-dyna.patch
- Split off qemu-testsuite.spec
* Package check-report.html and check-report.xml
* Enable quick iotests
- Dropped 0030-net-Warn-about-default-MAC-address.patch
The warning is relevant only for bridged setups, not for the
default SLIRP based -net user / -netdev user setup,
and it breaks output expectations of some iotests.
* Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.3
* Patches renamed:
0031-console-add-question-mark-escape-op.patch -> 0030-console-add-question-mark-escape-op.patch
0032-Make-char-muxer-more-robust-wrt-sma.patch -> 0031-Make-char-muxer-more-robust-wrt-sma.patch
0033-linux-user-lseek-explicitly-cast-no.patch -> 0032-linux-user-lseek-explicitly-cast-no.patch
0034-virtfs-proxy-helper-Provide-__u64-f.patch -> 0033-virtfs-proxy-helper-Provide-__u64-f.patch
0035-configure-Enable-PIE-for-ppc-and-pp.patch -> 0034-configure-Enable-PIE-for-ppc-and-pp.patch
0036-qtest-Increase-socket-timeout.patch -> 0035-qtest-Increase-socket-timeout.patch
0037-AIO-Reduce-number-of-threads-for-32.patch -> 0036-AIO-Reduce-number-of-threads-for-32.patch
0038-tcg-tcg-op.c-Fix-ld-st-of-64-bit-va.patch -> 0037-tcg-tcg-op.c-Fix-ld-st-of-64-bit-va.patch
- Re-enable glusterfs on Factory (updated from v3.6.1 to v3.6.2)
- Re-enable seccomp for armv7l (libseccomp submission pending)
- Suppress seccomp for Factory armv7l (broken in libseccomp v2.2.0)
- Disable glusterfs explicitly on Factory, SLE12 and before 13.1
- Enable glusterfs and package as qemu-block-gluster
glusterfs post-v3.5.3 and v3.6.1/v3.6.2 have switched the
glusterfs-api.pc version incompatibly, so only 13.1+13.2 for now
- Use macro for module Conflicts
- Tidy configure options:
* Move --enable-modules to build options
* Sort libusb alphabetically
* Explicitly enable attr, bluez, fdt, lzo, tpm, vhdx, vhost-net,
vnc, xen-pci-passthrough
* Enable bzip2
* Enable libssh2 where possible and package as qemu-block-ssh
* Enable numa where a compatible numactl is available
* Enable quorum where a compatible gnutls is available
* Enable snappy where possible
* Prepare to enable glusterfs
* Explicitly enable the nop tracing backend (to be revisited)
* Explicitly disable Archipelago, as we don't have libxseg and it's
incompatibly GPL-3.0+
* Explicitly disable libiscsi, libnfs, netmap and rbd
as we don't have packages
* Drop deprecated --enable-virtio-blk-data-plane (now default)
- Fix 64-bit TCG stores on 32-bit Big Endian hosts (ppc)
0038-tcg-tcg-op.c-Fix-ld-st-of-64-bit-va.patch
* Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.3
- Update to v2.3.0-rc2: See http://wiki.qemu-project.org/ChangeLog/2.3
* Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.3
* Patches dropped (upstreamed):
0038-fw_cfg-test-Fix-test-path-to-includ.patch
0039-rcu-tests-fix-compilation-on-32-bit.patch
- make check was failing due to a bogus SMBIOS signature being
encountered within SeaBIOS. Avoid having that signature stored
randomly within the SeaBIOS image.
* seabios_avoid_smbios_signature_string.patch
- Build x86 firmware only from 13.1 on (11.4 was broken, surpassing 128 KB)
- Update to v2.3.0-rc1: See http://wiki.qemu-project.org/ChangeLog/2.3
* Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.3
* Patches dropped (upstreamed):
0038-linux-user-Fix-emulation-of-splice-.patch
0039-ide-fix-cmd_write_pio-when-nsectors.patch
0040-ide-fix-cmd_read_pio-when-nsectors-.patch
0041-ahci-Fix-sglist-offset-manipulation.patch
0042-ahci-test-improve-rw-buffer-pattern.patch
0045-linux-user-fix-broken-cpu_copy.patch
* Patches renamed:
0043-fw_cfg-test-Fix-test-path-to-includ.patch -> 0038-fw_cfg-test-Fix-test-path-to-includ.patch
0044-rcu-tests-fix-compilation-on-32-bit.patch -> 0039-rcu-tests-fix-compilation-on-32-bit.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.3
* Patches added:
0045-linux-user-fix-broken-cpu_copy.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.3
* Make test path for fw_cfg-test unique (including architecture)
0043-fw_cfg-test-Fix-test-path-to-includ.patch
* Fix rcu tests build on ppc (undefined reference to `__sync_fetch_and_add_8')
0044-rcu-tests-fix-compilation-on-32-bit.patch
- Fix typo in SeaBIOS size check
seabios_checkrom_typo.patch
- Update to v2.3.0-rc0: See http://wiki.qemu-project.org/ChangeLog/2.3
* Updated update_git.sh accordingly
* Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.3
* seabios_128kb.patch: Added patch to squeeze SeaBIOS into 128 KB
with our gcc 4.8.3 (brogers(a)suse.com)
- Renamed 0030-Legacy-Patch-kvm-qemu-preXX-report-.patch to
0030-net-Warn-about-default-MAC-address.patch:
Suppress warning for accel=qtest, to sanitize make check results.
- Added patches to fix ahci-test:
0039-ide-fix-cmd_write_pio-when-nsectors.patch
0040-ide-fix-cmd_read_pio-when-nsectors-.patch
0041-ahci-Fix-sglist-offset-manipulation.patch
0042-ahci-test-improve-rw-buffer-pattern.patch
- Update company name in spec file templates
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.2
* Patches added:
0038-linux-user-Fix-emulation-of-splice-.patch
- Add user kvm when installing guest-agent.
- Use macro to update udev_rules when available
- Fix packaging of e500 U-Boot
- Don't rely on wildcard with explicit excludes
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.2
* Patches added:
0037-AIO-Reduce-number-of-threads-for-32.patch
- Update to v2.2.0: See http://wiki.qemu-project.org/ChangeLog/2.2
* Updated DictZip and Tar block backends accordingly
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.2
* Patches dropped:
0015-target-arm-linux-user-no-tb_flush-o.patch (tb_flush() not called)
0037-tests-Don-t-run-qom-test-twice.patch (superseded)
0039-linux-user-Cast-validity-checks-on-.patch (helper function introduced)
0040-linux-user-Convert-blkpg-to-use-a-s.patch (upstreamed)
* Patched renumbered:
0016-linux-user-Ignore-broken-loop-ioctl.patch -> 0015-linux-user-Ignore-broken-loop-ioctl.patch
0017-linux-user-lock-tcg.patch -> 0016-linux-user-lock-tcg.patch
0018-linux-user-Run-multi-threaded-code-.patch -> 0017-linux-user-Run-multi-threaded-code-.patch
0019-linux-user-lock-tb-flushing-too.patch -> 0018-linux-user-lock-tb-flushing-too.patch
0020-linux-user-Fake-proc-cpuinfo.patch -> 0019-linux-user-Fake-proc-cpuinfo.patch
0021-linux-user-implement-FS_IOC_GETFLAG.patch -> 0020-linux-user-implement-FS_IOC_GETFLAG.patch
0022-linux-user-implement-FS_IOC_SETFLAG.patch -> 0021-linux-user-implement-FS_IOC_SETFLAG.patch
0023-linux-user-XXX-disable-fiemap.patch -> 0022-linux-user-XXX-disable-fiemap.patch
0024-slirp-nooutgoing.patch -> 0023-slirp-nooutgoing.patch
0025-vnc-password-file-and-incoming-conn.patch -> 0024-vnc-password-file-and-incoming-conn.patch
0026-linux-user-add-more-blk-ioctls.patch -> 0025-linux-user-add-more-blk-ioctls.patch
0027-linux-user-use-target_ulong.patch -> 0026-linux-user-use-target_ulong.patch
0028-block-Add-support-for-DictZip-enabl.patch -> 0027-block-Add-support-for-DictZip-enabl.patch
0029-block-Add-tar-container-format.patch -> 0028-block-Add-tar-container-format.patch
0030-Legacy-Patch-kvm-qemu-preXX-dictzip.patch -> 0029-Legacy-Patch-kvm-qemu-preXX-dictzip.patch
0031-Legacy-Patch-kvm-qemu-preXX-report-.patch -> 0030-Legacy-Patch-kvm-qemu-preXX-report-.patch
0032-console-add-question-mark-escape-op.patch -> 0031-console-add-question-mark-escape-op.patch
0033-Make-char-muxer-more-robust-wrt-sma.patch -> 0032-Make-char-muxer-more-robust-wrt-sma.patch
0034-linux-user-lseek-explicitly-cast-no.patch -> 0033-linux-user-lseek-explicitly-cast-no.patch
0035-virtfs-proxy-helper-Provide-__u64-f.patch -> 0034-virtfs-proxy-helper-Provide-__u64-f.patch
0036-configure-Enable-PIE-for-ppc-and-pp.patch -> 0035-configure-Enable-PIE-for-ppc-and-pp.patch
0038-qtest-Increase-socket-timeout.patch -> 0036-qtest-Increase-socket-timeout.patch
==== qemu ====
Version update (5.1.0 -> 5.2.0)
Subpackages: qemu-arm qemu-block-curl qemu-block-dmg qemu-block-gluster qemu-block-iscsi qemu-block-nfs qemu-block-rbd qemu-block-ssh qemu-chardev-baum qemu-guest-agent qemu-hw-display-qxl qemu-hw-usb-redirect qemu-hw-usb-smartcard qemu-ksm qemu-lang qemu-microvm qemu-ppc qemu-seabios qemu-skiboot qemu-tools qemu-ui-curses qemu-ui-gtk qemu-ui-spice-app qemu-vgabios qemu-vhost-user-gpu qemu-x86
- Update to v5.2.0: See http://wiki.qemu.org/ChangeLog/5.2
Take note that ongoing feature deprecation is tracked at both
http://wiki.qemu-project.org/Features/LegacyRemoval and in
the deprecated.html file installed with the qemu package
Some noteworthy changes:
* Dropped system emulators: qemu-system-lm32, qemu-system-unicore32
* Dropped linux user emulator: qemu-ppc64abi32
* Added linux user emulator: qemu-extensaeb
* Unicore32 and lm32 guest support dropped
* New sub-packages (most due to ongoing modularization of QEMU):
qemu-audio-spice, qemu-hw-chardev-spice, qemu-hw-display-virtio-vga,
qemu-hw-display-virtio-gpu, qemu-hw-display-virtio-gpu-pci,
qemu-ui-spice-core, qemu-ui-opengl, qemu-ivshmem-tools
* x86: A new KVM feature which improves the handling of asynchronous page
faults is available with -cpu ...,kvm-async-pf-int (requires Linux 5.8)
* s390: More instructions emulated under TCG
* PowerPC: nvdimm= machine option now functions correctly; misc improvements
* ARM: new boards: mps2-an386 (Cortex-M4 based) and mps2-an500
(Cortex-M7 based), raspi3ap (the Pi 3 model A+), raspi0 (the Pi Zero)
and raspi1ap (the Pi A+)
* RISC-V: OpenSBI v0.8 included by default; Generic OpenSBI platform used
when no -bios argument is supplied; Support for NUMA sockets on Virt
and Spike Machines; Support for migrating machines; misc improvements
* Misc NVMe improvements
* The 'vhost-user-blk' export type has been added, allowing
qemu-storage-daemon to act as a vhost-user-blk device backend
* The SMBIOS OEM strings can now come from a file
* 9pfs - misc performance related improvements
* virtiofs - misc improvements
* migration: The default migration bandwidth has been increased to 1Gbps
(users are still encouraged to tune it to their own hardware); The new
'calc-dirty-rate' and 'query-dirty-rate' QMP commands can help determine
the likelihood of precopy migration success; TLS+multifd now supported
for higher bandwidth encrypted migration; misc minor features added
* Misc minor block features added
* Misc doc improvements
* qemu-microvm subpackage change: the bios-microvm.bin is now SeaBIOS based,
and the qboot based on is now qboot.rom
* elf2dmp is no longer part of qemu-tools (it was never intended to be
a packaged binary)
* Some subpackages which were 'Requires' are now 'Recommends', allowing for
a smaller qemu packaging footprint if needed
* Patches dropped (included in release tarball, unless otherwise noted):
docs-fix-trace-docs-build-with-sphinx-3..patch (fixed differently)
hw-hyperv-vmbus-Fix-32bit-compilation.patch
linux-user-properly-test-for-infinite-ti.patch
Switch-order-of-libraries-for-mpath-supp.patch (fixed differently)
Conditionalize-ui-bitmap-installation-be.patch (fixed differently)
hw-usb-hcd-xhci-Fix-GCC-9-build-warning.patch (no longer using gcc9)
hw-usb-dev-mtp-Fix-GCC-9-build-warning.patch (no longer using gcc9)
roms-Makefile-enable-cross-compile-for-b.patch (fixed with different patch)
libvhost-user-handle-endianness-as-manda.patch
virtio-add-vhost-user-fs-ccw-device.patch
Fix-s-directive-argument-is-null-error.patch
build-Workaround-compilation-error-with-.patch
build-Be-explicit-about-fcommon-compiler.patch
intel-Avoid-spurious-compiler-warning-on.patch
golan-Add-explicit-type-casts-for-nodnic.patch
Do-not-apply-WORKAROUND_CFLAGS-for-host-.patch
ensure-headers-included-are-compatible-w.patch
Enable-cross-compile-prefix-for-C-compil.patch (fixed differently)
hw-net-net_tx_pkt-fix-assertion-failure-.patch
hw-net-xgmac-Fix-buffer-overflow-in-xgma.patch
s390x-protvirt-allow-to-IPL-secure-guest.patch
usb-fix-setup_len-init-CVE-2020-14364.patch
* Patches added:
meson-install-ivshmem-client-and-ivshmem.patch
Revert-roms-efirom-tests-uefi-test-tools.patch
Makefile-Don-t-check-pc-bios-as-pre-requ.patch
roms-Makefile-add-cross-file-to-qboot-me.patch
qboot-add-cross.ini-file-to-handle-aarch.patch
usb-Help-compiler-out-to-avoid-a-warning.patch
- In spec file, where reasonable, switch BuildRequires: XXX-devel
to be pkgconfig(XXX') instead
- No longer disable link time optimization for qemu for x86. It looks like
either the build service, qemu code changes and/or the switch to meson
have resolved issues previously seen there. We still see problems for
other architectures however.
- For the record, the following issues reported for SUSE SLE15-SP2
are either fixed in this current package, or are otherwise no longer
an issue: bsc#1172384 bsc#1174386 bsc#1174641 bsc#1174863 bsc#1175370
bsc#1175441 bsc#1176494 CVE-2020-13361 CVE-2020-14364 CVE-2020-15863
CVE-2020-16092 CVE-2020-24352
and the following feature requests are satisfied by this package:
jsc#SLE-13689 jsc#SEL-13780 jsc#SLE-13840
- To be more accurate, and to align with other qemu packaging
practices, rename the qemu-s390 package to qemu-s390x. The old
name (in the rpm namespace) is provided with a "Provides"
directive, and an "Obsoletes" done against that name for prior
qemu versions, as is standard practice (boo#1177764 jsc#SLE-17060)
- Take this opportunity to remove some ancient Split-Provides
mechanisms which can't conceivably be needed any more:
qemu-block-curl provided: qemu:%_libdir/%name/block-curl.so
qemu-guest-agent provided: qemu:%_bindir/qemu-ga
qemu-tools provided: qemu:%_libexecdir/qemu-bridge-helper
- Disable linux-user 'ls' test on 32 bit arm. It's failing with
"Allocating guest commpage: Cannot allocate memory" error, which
we should hunt down, but for now we don't want it to prevent the
package from being built
==== remmina ====
Version update (1.4.9 -> 1.4.10)
Subpackages: remmina-lang remmina-plugin-rdp remmina-plugin-secret remmina-plugin-vnc remmina-plugin-xdmcp
- Update to release 1.4.10
* Resolve "RDP Black Screen on connection" !2123 @antenore
* Correctly importing and exporting audiocapturemode, closes #2349 !2124 @antenore
* [RFC] rdp: add Use base credential for RD gateway authentication !2125 @Fantu
* Resolve "Auto accept changes to fingerprints and auto accept certificates" !2126 @antenore
* "Fingerprinters" corrected to "fingerprints". !2127 @kingu
* Implementing network type option !2128 @antenore
* Improving the terminal colour file picker !2129 @antenore
* Resolve "[RDP] Since v1.4.9 Audio is no longer working" !2130 @antenore
* New connection strings corrected !2131 @kingu
* Correct location of Terminal colour scheme setting !2132 @kingu
* Fixing pulseaudio LD_LIBRARY_PATH and staging PA libraries !2136 @antenore
* [RFC][v2] RDP: Add Use base credential for RD gateway authentication !2135 @Fantu
* fix incorrect name date log sessions ssh !2137 @acendrou
* Resolve "Strange padding in main window" !2138 @antenore
* Remove legacy rfx code !2139 @antenore
* Resolve "RDP export features does not properly include gatewayhostname" !2140 @antenore
* RDP log filters keep previous value across connections !2143 @antenore
* [RFC][v2] RDP: Add Use base credential for RD gateway authentication !2135 @Fantu
* Emit warning if libkf5wallet missing but required by -DWITH_KF5WALLET=ON !2144 @giox069
* Do not activate performance optimisations based on network type unless explicitly requested. !2145 @antenore
==== rsyslog ====
Version update (8.2010.0 -> 8.2012.0)
- Upgrade to rsyslog 8.2012.0:
* testbench bugfix: some tests did not work in make distcheck
* immark: rewrite with many improvements
* usability: re-phrase error message to help users better understand cause
* add new system property $now-unixtimestamp
* omfwd: add new rate limit option
* omfwd bug: param "StreamDriver.PermitExpiredCerts" is not "off" by default
==== rubygem-autoprefixer-rails ====
Version update (10.0.1.3 -> 10.1.0.0)
- updated to version 10.1.0.0
* Fixed `Cannot read property 'proxyOf' of undefined` error (by Igor Kamyshev).
* Added `dpcm` unit support to `min-resolution: 2dppx` (by Robert Eisele).
* Fixed rational approximation in `min-resolution` (by Robert Eisele).
==== rubygem-erubi ====
Version update (1.9.0 -> 1.10.0)
- updated to version 1.10.0
* Improve template parsing, mostly by reducing allocations (jeremyevans)
* Do not ship tests in the gem, reducing gem size about 20% (jeremyevans)
* Support :literal_prefix and :literal_postfix options for how to output literal tags (e.g. <%% code %>) (jaredcwhite) (#26, #27)
==== rubygem-loofah ====
Version update (2.7.0 -> 2.8.0)
- updated to version 2.8.0
* Allow CSS properties `order`, `flex-direction`, `flex-grow`, `flex-wrap`, `flex-shrink`, `flex-flow`,
`flex-basis`, `flex`, `justify-content`, `align-self`, `align-items`, and `align-content`.
[[#197](https://github.com/flavorjones/loofah/issues/197)] (Thanks, [@miguelperez](https://github.com/miguelperez)!)
==== rubygem-passenger ====
Version update (6.0.6 -> 6.0.7)
Subpackages: ruby2.7-rubygem-passenger rubygem-passenger-apache2
- updated to version 6.0.7
* Addresses regression introduced in 6.0.5 when attempting to establish database connection after fork and activerecord is not configured in the expected way. Closes GH-2281.
* Addresses regression introduced in 5.1.5 where hook scripts would fail to run. As a result the PASSENGER_ERROR_PAGE and PASSENGER_CONFIG_MANIFEST env vars have been removed from the passenger hook script environment.
* Match static rails assets on 8-digit content hash. Contributed by @mattozinga.
* Allow skipping the Apache/Nginx sections of the `passenger-memory-stats` output, through the `--no-apache` and `--no-nginx` commandline options. Closes GH-2306. Contributed by Saverio Miroddi (@saveriomiroddi).
* Fixes an issue where `passenger-memory-stats` would throw an error if a process went away while it was running. Closes GH-2305.
* Fixes a formatting issue with apr-1 include flags on macOS.
* Fixes a warning about BOOST_*_ENDIAN macros being deprecated by migrating to new suggested macros.
* Fixes an occasional issue with the node loader where the startup handshake would fail to record progress.
* Adds an option for specifying the address to bind ruby apps to, for sending requests directly to specific app instances:
- Standalone: direct_instance_request_address
- Nginx: passenger_direct_instance_request_address
- Apache: PassengerDirectInstanceRequestAddress
* Updated various library versions used in precompiled binaries (used for e.g. gem installs):
- ccache: 4.0 (was: 3.7.10)
- curl: 7.73.0 (was: 7.71.1)
- git: 2.29.1 (was: 2.27.0)
- gnupg: 2.2.23 (was: 2.2.21)
- libgpg_error: 1.39 (was: 1.38)
- ruby: 2.7.2 (was: 2.7.1)
- libassuan 2.5.4 (was: 2.5.3)
- libgcrypt 1.8.7 (was 1.8.6)
- OpenSSL 1.1.1h (was 1.0.2u)
- added apache-rpm-macros and apache2-utils to gem2rpm.yml file
(otherwise the dependencies are missing when generating the spec
file again)
- use system apache rpm macros
- require apache2-utils for build (apachectl)
==== rubygem-puma ====
Version update (5.0.4 -> 5.1.1)
[#]# 5.1.1 / 2020-12-10
* Bugfixes
* Fix over eager matching against banned header names ([#2510])
[#]# 5.1.0 / 2020-11-30
* Features
* Phased restart availability is now always logged, even if it is not available.
* Prints the loaded configuration if the environment variable `PUMA_LOG_CONFIG` is present ([#2472])
* Integrate with systemd's watchdog and notification features ([#2438])
* Adds max_fast_inline as a configuration option for the Server object ([#2406])
* You can now fork workers from worker 0 using SIGURG w/o fork_worker enabled [#2449]
* Add option to bind to systemd activated sockets ([#2362])
* Add compile option to change the `QUERY_STRING` max length ([#2485])
* Bugfixes
* Fix JRuby handling in Puma::DSL#ssl_bind ([#2489])
* control_cli.rb - all normal output should be to @stdout ([#2487])
* Catch 'Error in reactor loop escaped: mode not supported for this object: r' ([#2477])
* Ignore Rails' reaper thread (and any thread marked forksafe) for warning ([#2475])
* Ignore illegal (by Rack spec) response header ([#2439])
* Close idle connections immediately on shutdown ([#2460])
* Fix some instances of phased restart errors related to the `json` gem ([#2473])
* Remove use of `json` gem to fix phased restart errors ([#2479])
* Fix grouping regexp of ILLEGAL_HEADER_KEY_REGEX ([#2495])-
==== rubygem-tzinfo ====
Version update (2.0.2 -> 2.0.3)
- updated to version 2.0.3
* Added support for handling "slim" format zoneinfo files that are produced by
default by zic version 2020b and later. The POSIX-style TZ string is now used
calculate DST transition times after the final defined transition in the file.
[#120].
* Fixed `TimeWithOffset#getlocal` returning a `TimeWithOffset` with the
`timezone_offset` still assigned when called with an offset argument on JRuby
9.3.
* Rubinius is no longer supported.
==== rubygem-vagrant_cloud ====
Version update (2.0.3 -> 3.0.2)
- New upstream release 3.0.2
[#] v3.0.2 (October 30, 2020)
* Raise custom exception on request error [GH-67](https://github.com/hashicorp/vagrant_cloud/pull/67)
[#] v3.0.1 (October 27, 2020)
* Fixes on authentication related client methods [GH-65](https://github.com/hashicorp/vagrant_cloud/pull/65)
* Prevent frozen data modifications on deletions [GH-65](https://github.com/hashicorp/vagrant_cloud/pull/65)
* Update direct upload callback behaviors [GH-65](https://github.com/hashicorp/vagrant_cloud/pull/65)
[#] v3.0.0 (September 21, 2020)
* Refactor library implementation [GH-59](https://github.com/hashicorp/vagrant_cloud/pull/59)
* Add support for direct storage uploads [GH-62](https://github.com/hashicorp/vagrant_cloud/pull/62)
_NOTE_: This release includes breaking changes and is not backwards compatible
==== rubygem-zeitwerk ====
Version update (2.4.1 -> 2.4.2)
- updated to version 2.4.2
* Implements `Zeitwerk::Loader#on_load`, which allows you to configure blocks of code to be executed after a certain class or module have been loaded:
```ruby
[#] config/environments/development.rb
loader.on_load("SomeApiClient") do
SomeApiClient.endpoint = "https://api.dev"
[#] config/environments/production.rb
loader.on_load("SomeApiClient") do
SomeApiClient.endpoint = "https://api.prod"
end
```
See the [documentation](https://github.com/fxn/zeitwerk/blob/master/README.md#the-on… for further details.
==== scim ====
Subpackages: scim-gtk scim-gtk3 scim-lang
- Do not build the qt4 subpackage for Leap 15.3 or newer
(boo#1179613).
==== simple-scan ====
Version update (3.38.1 -> 3.38.2)
- Update to version 3.38.2:
+ Add new text resolution 200 dpi.
+ Fix crash when scanning on Lexmark MFP.
+ Display an error, when no documents found in the feeder during
start scanning.
+ Do not use is_inhibited() as it is not reliable, check the
cookie value instead.
+ Updated translations.
==== supermin ====
Version update (5.1.20 -> 5.2.0)
- update to 5.2.0:
* rpm: extend the Multiple_matches exception
* Use external command mv to rename old output directory (RHBZ#1670191).
* rpm: do not unpack parameters
* rpm: fix version comparison
* rpm: provide a dummy supermin_rpm_get_arch implementation
* ext2: Build symbolic links correctly (RHBZ#1770304).
* Update gnulib to latest.
- switch to release tarball, use keyring for gpg validation
- run tests
==== systemd ====
Version update (246.6 -> 246.7)
Subpackages: libsystemd0 libudev-devel libudev1 systemd-container systemd-doc systemd-logger systemd-sysvinit udev
- Import commit d5e7958d35dc7758fe2e87e0a8193b93ce1a1b15 (merge of v246.7)
450792497e sd-event: fix delays assert brain-o (#17790)
1040a19d08 udevadm: rename option '--log-priority' into '--log-level'
a7b41e19bd udev: rename kernel option 'log_priority' into 'log_level'
For a complete list of changes, visit:
https://github.com/openSUSE/systemd/compare/f6104ea5f554233e34b94ffd92da833…
==== tracker ====
Version update (3.0.1 -> 3.0.2)
Subpackages: libtracker-sparql-3_0-0 tracker-data-files typelib-1_0-Tracker-3_0
- Update to version 3.0.2:
+ Update some wording in website
+ Fix initialization issues in portal
+ Improve turtle parser
+ Improve checks for dates in the far past/future
+ Cleanup meson build options
+ Fix invalid reads
+ Make UPDATE parser tree processing iterative rather than
recursive
+ Fix errors in tracker:uri-is-parent
+ Protect harder against invalid database state
+ Introspection annotation fixes
+ Improve thread safety of internal ontology objects
+ Add missing <package> element to gir file.
==== tracker-miners ====
Version update (3.0.1 -> 3.0.3)
Subpackages: tracker-miner-files
- Update to version 3.0.3:
+ Allow newstatat/statat64 syscalls
+ Brown paper bag release
- Changes from version 3.0.2:
+ Fix sched test under non glibc platforms
+ Refcount fixes
+ Avoid the fluiddec gstreamer plugin
+ Ensure to avoid non-native files in tracker-extract-3
+ CI fixes
+ Updated translations.
==== u-boot-rpiarm64 ====
Subpackages: u-boot-rpiarm64-doc
- Add bananapim2zero flavor
- Introduce odroid-c4
==== xapps ====
Version update (1.6.10 -> 2.0.0)
Subpackages: libxapp1 typelib-1_0-XApp-1_0 xapps-common xapps-common-lang
- Update to version 2.0.0.
* Bump for favorites support
* .gitignore: Ignore the new debian build folder.
* favorites: expose xapp_favorites_rename (), it was mistakenly
made private during some cleanup.
* xapp-gtk3-module.c: Don't initialize favorites until they're
needed.
* xapp-gtk3-module.c: Register the favorites uri scheme
immediately, rather than when XAppFavorites is instantiated.
* xapp-favorites: Add missing pointer to the DestroyData.
* l10n: Update POT
- Updates since 1.6.10.
* sn-watcher.c: Move invocation completion to the registration
callback.
* sn-item.c: use a different method of fetching the pixmap.
* Make property-retrieval fully asynchronous.
* mate-xapp-status-applet.py: Adapt to change brought by
9c4d5e92d2eb288.
* build: Allow making a library-only build for flatpak packaging.
* xapp-icon-chooser-button.c: Remove leftover debugging line.
* xapp-sn-watcher: Create StatusNotifierItem proxies
asynchronously, and don't try to load their properties.
* xapp-sn-watcher: Add an app list to flag items that should
have their tooltip replaced by the application name.
* build: Make build of xapp-sn-watcher optional, defaulting to
true.
* xapp-sn-watcher: Add key to disable StatusNotifier support,
but leave appindicator support enabled.
* l10n: Update translations
* Update docs
* xapp-status-icon.c: Get rid of the dead 'shadow' region around
menus, as they can interfere with clicking on the icon to
close the menu.
* xapp-status-icon: Add new properties for menu/button state
handling and one for metadata (miscellaneous info to help
define behavior in the status applets).
* xapp-sn-watcher: Set status icon metadata for appindicator
icons, to inform the applet to highlight/toggle the panel icon
with either button click when opening the menu.
* mate-xapp-status-applet.py: Use new properties to sync button
toggle state with the menu state.
* test-scripts: Update some scripts to demonstrate new property
use.
* sn-item: Remove support for XAyatanaLabel.
* xapp-sn-watcher: Update clear the registration list before
freeing the table of registered items.
* xapp-status-icon.c: Add xapp_status_icon_popup_menu() and use
a more reliable GtkMenu popup method.
* xapp-status-icon.c: Fix inadvertant verison change in doc
string.
* Icons: Add symbolic icons for xreaders annotation features
* xapp-status-icon: Add a get_visible method.
* mate applet: Use markup for tooltips, and update test script to
reflect this as well.
* mate-xapp-status-applet: Fix set icon error handling when an
icon name is missing.
* xapp-status-icon: Add a get_visible method.
* mate applet: Use markup for tooltips, and update test script to
reflect this as well.
* mate-xapp-status-applet: Fix set icon error handling when an
icon name is missing.
* Update documentation
* README: Update link to docs
* Update README.md
* xapp-util.c: Initialize auto variables.
* Icons: add pin/unpin symbolic (#90)
* Icons: Add xapp-diaporama-symbolic
* xapp-sn-watcher: Add autostart file, to start at session, to
start at the session initialization phase.
* Add a utility function to check for nvidia on-demand mode.
* xapp-sn-watcher: Don't enable in MATE
* l10n: Fix makepot picking up unwanted service file
* Eliminate all appindicator-specific code from
xapp-status-icon.c, Add a whitelist for xapp-sn-watcher to list
ai icons that should left-click to activate.
* l10n: Fix makepot picking up unwanted service file
* Eliminate all appindicator-specific code from
xapp-status-icon.c,
Add a whitelist for xapp-sn-watcher to list ai icons that
should left-click to activate.
* xapp-sn-watcher: Add a whitelist to manage what desktop
environments to start in.
* Add option to specify path to pygobject override directory
* Install icons and scripts using meson options
* xapp-status-icon.c: Sync the visible state of the fallback
GtkStatusIcon when it is first created.
* xapp-status-icon.c: Fix the timeout duration for
xapp_status_icon_any_monitors.
* Remove use of deprecated g_type_class_add_private function.
* xapp-monitor-blanker: Use G_DECLARE_FINAL_TYPE
* xapp-status-icon.c: check if we have a fallback status icon
before disconnecting signals from it.
* xapp-status-icon.c: Only call gtk_status_icon_set_name() when
explicitly requested.
* Add StatusNotifier watcher.
* mate applet: Set the new icon size property (this provides a
hint to xapp-sn-watcher or any client app to provide a correct
icon size in some situations).
* status icon: Add support for scroll events
* debian: Remove python2 deps.
* debian/control: Add missing dbusmenu dependency.
* Packaging: Re-add python-gi-dev as build-dep
* xapp-sn-watcher: rewrite in C due to leaky dbus python
bindings.
- Removed xapps-python3.patch, fixed.
- Removed gtkstatusicon-fix.patch, fixed
- Add fix_sn-item_control_reaches_end_of_non-void_function.patch
to fix Fix control reaches end of non-void function in sn-item.c
==== xdm ====
Subpackages: xdm-xsession
- fixed %postun for older releases than factory/TW (see change
right below, which broke it)
==== xreader ====
Version update (2.6.4 -> 2.8.0)
Subpackages: libxreaderdocument3 libxreaderview3 xreader-lang xreader-plugin-comicsdocument xreader-plugin-djvudocument xreader-plugin-dvidocument xreader-plugin-epubdocument xreader-plugin-pdfdocument xreader-plugin-pixbufdocument xreader-plugin-psdocument xreader-plugin-tiffdocument xreader-plugin-xpsdocument
- Update to version 2.8.0.
* Get toolbar visibility from GtkRevealer when saving view
metadata
* Add g_assert_not_reached to sizing_mode_to_string
* setting to hide/show menubar (WIP)
* Update menubar toggle action on init
* fix saving menubar visibility as default
* Added logic to fix issue of Tab key toggling checkboxes
* Fix mimetype handling and backend selection:
* Clean up build files
* Fix for #89. Added logic to allow for cursor position to change
in multiline-text fields
* Added keyboard shortcut for toolbar
* Fix for #442. Added null check to stop segfault with
annotations
* Implemented ticket #241. Added show sidebar button to toolbar
* Move the new sidebar button to be part of the navigation group
on the left end of the toolbar.
* Added keyboard shortcuts to history buttons
* Favorites - rework startup page to display both favorites and
recents, add favorites to the file menu.
* Disable pixbuf support properly.
* ev-window.c: Temporarily disable menu toggling using the alt
key.
* Implements ticket #279. Added Go To Page By Number to menu
* Displays entire label in tooltip
* Revert "Implements ticket #279. Added Go To Page By Number to
menu"
* l10n: Fix po/POTFILES.in
* ev-window-title.c: Don't show "Recent Documents" in the landing
page titlebar - it is no longer showing only recents.
* l10n: Update POT
- Removed fix_ev-window.c_error.patch, fixed.
- Add fix_no_return_statement_ev-application.c.patch to fix
/shell/ev-application.c error no return statement in
function returning non-void.
==== yast2-network ====
Version update (4.3.30 -> 4.3.32)
- Fix bonding slaves sorting (bsc#1178950)
- 4.3.32
- Clean the ifcfg file cached data before the connection
configuration changes are written (bsc#1178950)
- 4.3.31
==== yast2-security ====
Version update (4.3.4 -> 4.3.5)
- Removed handling of obsolete entry SYSTOHC in /etc/sysconfig/clock
(bsc#1175496)
- 4.3.5
==== yast2-storage-ng ====
Version update (4.3.27 -> 4.3.28)
- Partitioner: do not show summary when there are no actions to
perform (bsc#1179829).
- 4.3.28
==== zypper ====
Version update (1.14.40 -> 1.14.41)
Subpackages: zypper-log zypper-needs-restarting
- Avoid translated text in xml attributes ( fixes #361 )
- BuildRequires: libzypp-devel >= 17.25.3.
Adapt to new LoadTestcase API.
- version 1.14.41
1
0
Newbie questions getting a not yet supported board going (bananapi m2 zero)
by Stefan Seyfried 15 Dec '20
by Stefan Seyfried 15 Dec '20
15 Dec '20
Hi all,
I recently got myself a bananapi m2 zero.
It works well with armbian.
Naive as I am, I tried to boot the
openSUSE-Tumbleweed-ARM-XFCE-sinovoipbpim2plus.armv7l.raw on it and of
course failed miserably :-)
Today, with a serial console attached I found out that u-boot did not
find the sdcard. OK, I just copied the u-boot from the armbian image
over (after finding out it is directly on the SD card unpartitioned
"header.." ;-)) and now it boots into GRUB and later even to a login
prompt on the serial console.
But there is nothing on the display (I would not care) and, worse, no
ethernet / WiFi.
I guess I'd need a matching device tree file for the board (I also
needed to recompile it for armbian to use the USB OTG port as an USB
host port), but I failed at finding out where I could specify the dtb
file to be used for booting.
Any hints on where to look for this?
--
Stefan Seyfried
"For a successful technology, reality must take precedence over
public relations, for nature cannot be fooled." -- Richard Feynman
2
8
Please note that this mail was generated by a script.
The described changes are computed based on the aarch64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio…
Please do not reply to this email to report issues, rather file a bug
on bugzilla.opensuse.org. For more information on filing bugs please
see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
Mesa (20.2.3 -> 20.2.4)
Mesa-drivers (20.2.3 -> 20.2.4)
ModemManager (1.14.6 -> 1.14.8)
NetworkManager (1.26.4 -> 1.28.0)
apache2
apache2-prefork
apache2-utils
bind (9.16.7 -> 9.16.8)
busybox
cryptsetup
firewalld (0.9.0 -> 0.9.1)
fprintd (1.90.4 -> 1.90.6)
gdb
gdk-pixbuf (2.42.0 -> 2.42.2)
gnome-chess (3.38.0 -> 3.38.1)
gpgme
gpgmeqt
gtk3 (3.24.23+118 -> 3.24.24)
hplip (3.20.6 -> 3.20.9)
hwdata (0.341 -> 0.342)
libical
libqb (2.0.1+20200729.416caf2 -> 2.0.2+20201203.def947e)
libstorage-ng (4.3.71 -> 4.3.72)
libvirt
lvm2
lvm2-device-mapper
memcached (1.6.7 -> 1.6.9)
mutt (2.0.2 -> 2.0.3)
net-snmp
netcat-openbsd
nodejs14
opensc (0.19.0 -> 0.21.0)
php7
plymouth (0.9.5+git20200921+20778f2 -> 0.9.5+git20201026+53c83cc)
poppler (20.10.0 -> 20.12.0)
poppler-qt5 (20.10.0 -> 20.12.0)
procps
psmisc
python-dkimpy (1.0.3 -> 1.0.5)
raspberrypi-firmware (2020.10.22 -> 2020.12.08)
raspberrypi-firmware-config (2020.10.22 -> 2020.12.08)
raspberrypi-firmware-dt (2020.10.26 -> 2020.12.07)
rubygem-net-ssh (6.1.0 -> 6.2.0.rc1)
smp_utils
subversion
sudo (1.9.3p1 -> 1.9.4)
sysconfig
sysvinit (2.97 -> 2.98)
telepathy-glib
telepathy-logger
tigervnc
vim (8.2.2039 -> 8.2.2105)
vlan
webkit2gtk3
xfsdump
xorg-x11-server (1.20.9 -> 1.20.10)
yast2-firstboot (4.3.8 -> 4.3.9)
yast2-installation (4.3.22 -> 4.3.24)
yast2-trans (84.87.20201130.b140fdb5f7 -> 84.87.20201205.6b65f14502)
=== Details ===
==== Mesa ====
Version update (20.2.3 -> 20.2.4)
Subpackages: Mesa-dri-devel Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libgbm1
- update to 20.2.4
* fourth (second to last) bugfix release for the 20.2 branch
==== Mesa-drivers ====
Version update (20.2.3 -> 20.2.4)
Subpackages: Mesa-dri Mesa-dri-nouveau Mesa-gallium Mesa-libva libvdpau_nouveau libvdpau_r300 libvdpau_r600 libvdpau_radeonsi
- update to 20.2.4
* fourth (second to last) bugfix release for the 20.2 branch
==== ModemManager ====
Version update (1.14.6 -> 1.14.8)
Subpackages: ModemManager-bash-completion libmm-glib0
- Update to version 1.14.8:
+ Build:
- Fixed distcheck with new gtk-doc releases.
- ModemManager-names.h was being included in the dist tarball,
but then removed on the 'clean' target. Fix that, by only
removing it on the 'maintainer-clean' target. Therefore,
'xsltproc' is now only needed in git builds, not needed when
building from a dist tarball.
+ QMI:
- Fix daemon crash when the device is removed during the
initialization sequence.
+ Several other minor improvements and fixes.
- Drop libxslt-tools BuildRequires: No longer needed.
==== NetworkManager ====
Version update (1.26.4 -> 1.28.0)
Subpackages: libnm0 typelib-1_0-NM-1_0
- Update to version 1.28.0:
+ Change the behavior of nm-initrd-generator so that the
'ip=off|none' kernel cmdline argument actually generates a
connection which disables both ipv4 and ipv6. Previously the
generated connection would disable ipv4 but ipv6 would be set
to the 'auto' method.
==== apache2 ====
- Require /usr/bin/which instead of which: allow usage of busybox
variant for containers.
- apache2 main package recommends apache2-utils
- break some long lines in the spec as requested by review team
- maybe make spec acceptable for factory bot
- modified sources
% _multibuild
- buildrequire netcfg for tests
- remove Requires(post): firewalld hard dependency (this is already
handled by the %firewalld_reload macro)
- package reworked trough [bsc#1178478]
- modified patches
% apache2-mod_proxy_uwsgi-fix-crash.patch (refreshed)
- modified sources
% apache2-loadmodule.conf
% apache2-manual.conf
% apache2-script-helpers
% apache2@.service
% sysconfig.apache2
- deleted patches
- deprecated-scripts-arch.patch (not needed)
- httpd-2.0.54-envvars.dif (not needed)
- httpd-2.1.3alpha-layout.dif
(renamed to apache2-system-dirs-layout.patch)
- httpd-2.2.0-apxs-a2enmod.dif (not needed)
- httpd-2.4.9-bnc690734.patch
(renamed to apache2-LimitRequestFieldSize-limits-headers.patch)
- httpd-2.4.x-fate317766-config-control-two-protocol-options.diff
(renamed to apache2-HttpContentLengthHeadZero-HttpExpectStrict.patch)
- httpd-2.x.x-logresolve.patch
(renamed to apache2-logresolve-tmp-security.patch)
- httpd-apachectl.patch
(renamed to apache2-apachectl.patch)
- httpd-implicit-pointer-decl.patch (not needed)
- httpd-visibility.patch (not needed)
- deleted sources
- SUSE-NOTICE (outdated)
- a2enflag (renamed to apache2-a2enflag)
- a2enmod (renamed to apache2-a2enmod)
- apache-22-24-upgrade (outdated)
- apache2-README (outdated)
- apache2-README.QUICKSTART (outedated)
- apache2-find-directives (renamed to apache2-find_directives)
- apache2-init.logrotate (not needed)
- apache2.firewalld (renamed to firewalld.apache2)
- apache2.logrotate (renamed to logrotate.apache2)
- apache2.ssl.firewalld (renamed to firewalld-ssl.apache2)
- apache2.ssl.susefirewall (renamed to susefirewall.apache2)
- apache2.susefirewall (renamed to susefirewall-ssl.apache2)
- favicon.ico (not needed)
- rc.apache2 (not needed)
- robots.txt (not needed)
- sysconf_addword (not needed, in aaa_base)
- added patches
fix PATCH: https://marc.info/?l=apache-httpd-users&m=147448312531134&w=2
+ apache-test-application-xml-type.patch
fix these variables from the test
+ apache-test-turn-off-variables-in-ssl-var-lookup.patch
fix [fate317766] backport of an upstream commit
+ apache2-HttpContentLengthHeadZero-HttpExpectStrict.patch
fix [bnc#690734] TODO, to be upstreamed
+ apache2-LimitRequestFieldSize-limits-headers.patch
fix apachectl is frontend for start_apache2, suse specific
+ apache2-apachectl.patch
fix [bnc#210904] perhaps to be upstreamed
+ apache2-logresolve-tmp-security.patch
fix layout of system dirs configuration, may be upstreamed
+ apache2-system-dirs-layout.patch
- added sources
+ _multibuild
+ apache2-a2enflag
+ apache2-a2enmod
+ apache2-find_directives
+ apache2-gensslcert
+ apache2-mod_example.c
+ apache2-start_apache2
+ firewalld-ssl.apache2
+ firewalld.apache2
+ logrotate.apache2
+ susefirewall-ssl.apache2
+ susefirewall.apache2
==== apache2-prefork ====
- Require /usr/bin/which instead of which: allow usage of busybox
variant for containers.
- apache2 main package recommends apache2-utils
- break some long lines in the spec as requested by review team
- maybe make spec acceptable for factory bot
- modified sources
% _multibuild
- buildrequire netcfg for tests
- remove Requires(post): firewalld hard dependency (this is already
handled by the %firewalld_reload macro)
- package reworked trough [bsc#1178478]
- modified patches
% apache2-mod_proxy_uwsgi-fix-crash.patch (refreshed)
- modified sources
% apache2-loadmodule.conf
% apache2-manual.conf
% apache2-script-helpers
% apache2@.service
% sysconfig.apache2
- deleted patches
- deprecated-scripts-arch.patch (not needed)
- httpd-2.0.54-envvars.dif (not needed)
- httpd-2.1.3alpha-layout.dif
(renamed to apache2-system-dirs-layout.patch)
- httpd-2.2.0-apxs-a2enmod.dif (not needed)
- httpd-2.4.9-bnc690734.patch
(renamed to apache2-LimitRequestFieldSize-limits-headers.patch)
- httpd-2.4.x-fate317766-config-control-two-protocol-options.diff
(renamed to apache2-HttpContentLengthHeadZero-HttpExpectStrict.patch)
- httpd-2.x.x-logresolve.patch
(renamed to apache2-logresolve-tmp-security.patch)
- httpd-apachectl.patch
(renamed to apache2-apachectl.patch)
- httpd-implicit-pointer-decl.patch (not needed)
- httpd-visibility.patch (not needed)
- deleted sources
- SUSE-NOTICE (outdated)
- a2enflag (renamed to apache2-a2enflag)
- a2enmod (renamed to apache2-a2enmod)
- apache-22-24-upgrade (outdated)
- apache2-README (outdated)
- apache2-README.QUICKSTART (outedated)
- apache2-find-directives (renamed to apache2-find_directives)
- apache2-init.logrotate (not needed)
- apache2.firewalld (renamed to firewalld.apache2)
- apache2.logrotate (renamed to logrotate.apache2)
- apache2.ssl.firewalld (renamed to firewalld-ssl.apache2)
- apache2.ssl.susefirewall (renamed to susefirewall.apache2)
- apache2.susefirewall (renamed to susefirewall-ssl.apache2)
- favicon.ico (not needed)
- rc.apache2 (not needed)
- robots.txt (not needed)
- sysconf_addword (not needed, in aaa_base)
- added patches
fix PATCH: https://marc.info/?l=apache-httpd-users&m=147448312531134&w=2
+ apache-test-application-xml-type.patch
fix these variables from the test
+ apache-test-turn-off-variables-in-ssl-var-lookup.patch
fix [fate317766] backport of an upstream commit
+ apache2-HttpContentLengthHeadZero-HttpExpectStrict.patch
fix [bnc#690734] TODO, to be upstreamed
+ apache2-LimitRequestFieldSize-limits-headers.patch
fix apachectl is frontend for start_apache2, suse specific
+ apache2-apachectl.patch
fix [bnc#210904] perhaps to be upstreamed
+ apache2-logresolve-tmp-security.patch
fix layout of system dirs configuration, may be upstreamed
+ apache2-system-dirs-layout.patch
- added sources
+ _multibuild
+ apache2-a2enflag
+ apache2-a2enmod
+ apache2-find_directives
+ apache2-gensslcert
+ apache2-mod_example.c
+ apache2-start_apache2
+ firewalld-ssl.apache2
+ firewalld.apache2
+ logrotate.apache2
+ susefirewall-ssl.apache2
+ susefirewall.apache2
==== apache2-utils ====
- Require /usr/bin/which instead of which: allow usage of busybox
variant for containers.
- apache2 main package recommends apache2-utils
- break some long lines in the spec as requested by review team
- maybe make spec acceptable for factory bot
- modified sources
% _multibuild
- buildrequire netcfg for tests
- remove Requires(post): firewalld hard dependency (this is already
handled by the %firewalld_reload macro)
- package reworked trough [bsc#1178478]
- modified patches
% apache2-mod_proxy_uwsgi-fix-crash.patch (refreshed)
- modified sources
% apache2-loadmodule.conf
% apache2-manual.conf
% apache2-script-helpers
% apache2@.service
% sysconfig.apache2
- deleted patches
- deprecated-scripts-arch.patch (not needed)
- httpd-2.0.54-envvars.dif (not needed)
- httpd-2.1.3alpha-layout.dif
(renamed to apache2-system-dirs-layout.patch)
- httpd-2.2.0-apxs-a2enmod.dif (not needed)
- httpd-2.4.9-bnc690734.patch
(renamed to apache2-LimitRequestFieldSize-limits-headers.patch)
- httpd-2.4.x-fate317766-config-control-two-protocol-options.diff
(renamed to apache2-HttpContentLengthHeadZero-HttpExpectStrict.patch)
- httpd-2.x.x-logresolve.patch
(renamed to apache2-logresolve-tmp-security.patch)
- httpd-apachectl.patch
(renamed to apache2-apachectl.patch)
- httpd-implicit-pointer-decl.patch (not needed)
- httpd-visibility.patch (not needed)
- deleted sources
- SUSE-NOTICE (outdated)
- a2enflag (renamed to apache2-a2enflag)
- a2enmod (renamed to apache2-a2enmod)
- apache-22-24-upgrade (outdated)
- apache2-README (outdated)
- apache2-README.QUICKSTART (outedated)
- apache2-find-directives (renamed to apache2-find_directives)
- apache2-init.logrotate (not needed)
- apache2.firewalld (renamed to firewalld.apache2)
- apache2.logrotate (renamed to logrotate.apache2)
- apache2.ssl.firewalld (renamed to firewalld-ssl.apache2)
- apache2.ssl.susefirewall (renamed to susefirewall.apache2)
- apache2.susefirewall (renamed to susefirewall-ssl.apache2)
- favicon.ico (not needed)
- rc.apache2 (not needed)
- robots.txt (not needed)
- sysconf_addword (not needed, in aaa_base)
- added patches
fix PATCH: https://marc.info/?l=apache-httpd-users&m=147448312531134&w=2
+ apache-test-application-xml-type.patch
fix these variables from the test
+ apache-test-turn-off-variables-in-ssl-var-lookup.patch
fix [fate317766] backport of an upstream commit
+ apache2-HttpContentLengthHeadZero-HttpExpectStrict.patch
fix [bnc#690734] TODO, to be upstreamed
+ apache2-LimitRequestFieldSize-limits-headers.patch
fix apachectl is frontend for start_apache2, suse specific
+ apache2-apachectl.patch
fix [bnc#210904] perhaps to be upstreamed
+ apache2-logresolve-tmp-security.patch
fix layout of system dirs configuration, may be upstreamed
+ apache2-system-dirs-layout.patch
- added sources
+ _multibuild
+ apache2-a2enflag
+ apache2-a2enmod
+ apache2-find_directives
+ apache2-gensslcert
+ apache2-mod_example.c
+ apache2-start_apache2
+ firewalld-ssl.apache2
+ firewalld.apache2
+ logrotate.apache2
+ susefirewall-ssl.apache2
+ susefirewall.apache2
==== bind ====
Version update (9.16.7 -> 9.16.8)
Subpackages: bind-chrootenv bind-doc bind-utils libbind9-1600 libirs1601 libisccc1600 libisccfg1601 python3-bind
- Added special make instruction for the "Administrator Reference
Manual" which is built using python3-Sphinx
[bsc#1177983, bind.spec]
- Removed "Before=nss-lookup.target" from named.service as that
leads to a systemd ordering cycle
[bsc#1177491, bsc#1178626, bsc#1177991, vendor-files.tar.bz2]
- Upgrade to version 9.16.8
New Features:
* Add a new rndc command, "rndc dnssec -rollover", which triggers a
manual rollover for a specific key.
* Add a new rndc command, "rndc dumpdb -expired", which dumps the
cache database, including expired RRsets that are awaiting
cleanup, to the dump-file for diagnostic purposes.
Bug Fixes:
* named reported an invalid memory size when running in an environment
that did not properly report the number of available memory pages
and/or the size of each memory page.
* With multiple forwarders configured, named could fail the
REQUIRE(msg->state == (-1)) assertion in lib/dns/message.c,
causing it to crash. This has been fixed.
* named erroneously performed continuous key rollovers for KASP
policies that used algorithm Ed25519 or Ed448 due to a mismatch
between created key size and expected key size.
* Updating contents of an RPZ zone which contained names spelled
using varying letter case could cause some processing rules in
that RPZ zone to be erroneously ignored.
Local changes:
* Add /usr/lib64/named to the files and directories in
bind-chrootenv.conf. This directory contains plugins loaded
after the chroot().
[bsc#1177913,bsc#1178078,bsc#1177603,bind-chrootenv.conf]
- Removed "dnssec-enable" from named.conf as it has been obsoleted.
Added a comment for reference which should be removed
in the future.
- Added a comment to the "dnssec-validation" in named.conf
with a reference to forwarders which do not return signed responses.
- Replaced named's dependency on time-sync with a dependency on time-set
in named.service.
[bsc#1177790,bsc#1175894,bsc#1177915,vendor-files.tar.bz2]
==== busybox ====
Subpackages: busybox-static
- cpio-long-opt.patch: add more long options to cpio for IBS/unrpm
==== cryptsetup ====
Subpackages: libcryptsetup12 libcryptsetup12-hmac
- SLE marker: implements jsc#SLE-5911, bsc#1165580, jsc#SLE-145149
==== firewalld ====
Version update (0.9.0 -> 0.9.1)
Subpackages: python3-firewall
- Remove the patch which enforces usage of iptables instead of
nftables:
* 0001-firewall-backend-Switch-default-backend-to-iptables.patch
- Add firewalld zone for the docker0 interface. This is the
workaround for lack of nftables support in docker. Without that
additional zone, containers have no Internet connectivity.
(rhbz#1817022)
- Update to 0.9.1:
* Bugfixes:
* docs(firewall-cmd): clarify lockdown whitelist command paths
* fix(dbus): getActivePolicies shouldn't return a policy if a zone is not active
* fix(policy): zone interface/source changes should affect all using zone
==== fprintd ====
Version update (1.90.4 -> 1.90.6)
Subpackages: fprintd-lang fprintd-pam
- Update to version 1.90.5
The 1.90.5 release was unusable due to a number of inter-related
issues with the DBus interface and authorization. We also found
a number of problems with possible security implications.
Currently fprintd will do interactive authorization even if this
was not requested using the correct DBus method call flag. All
API users MUST be updated to set the flag as it will be enabled
in the future!
Highlights:
* Fix fprintd DBus configuration
* Change details of what requires authorization
* Fix various race conditions in pam_fprintd
* Permit interactive authorization from fprintd utilities
* Do not allow deletion while another operation is ongoing
- Drop patch:
* 0001-tests-Fix-test-not-failing-on-error.patch
- Update to version 1.90.4
The 1.90.4 release caused a major regression, as it included a
USB hub in UDEV the autosupend rule list.
Highlights:
* Remove USB hub from udev autosupend rules
* synaptics: Add PID 0x00c9 which is used in some HP laptops
==== gdb ====
- Backport from master [jsc#13656]:
* gdb-powerpc-remove-512-bytes-region-limit-if-2nd-dawr-is-avaliable.patch
- Require 8GB diskspace for x86_64.
==== gdk-pixbuf ====
Version update (2.42.0 -> 2.42.2)
Subpackages: gdk-pixbuf-query-loaders gdk-pixbuf-thumbnailer libgdk_pixbuf-2_0-0 typelib-1_0-GdkPixbuf-2_0
- Update to version 2.42.2:
+ Requre Meson 0.55.3.
+ Improve the PNG save operation.
+ Fix leak in the error path of the XPM loader.
+ Fix loading GIF without a GCE rendering color 0.
+ Fix invalid LZW codes in the GIF loader (CVE-2020-29385).
==== gnome-chess ====
Version update (3.38.0 -> 3.38.1)
- Update to version 3.38.1:
+ Try to make all chess engines easier on Easy and Normal
difficulty.
+ Fix claim draw dialog appearing every turn after threefold
repetition.
+ Fix bogus "computer player is confused" errors in several
situations:
- When the engine is stalemated.
- When starting a new game while the game is paused, if the
engine has moved during pause.
- When resigning immediately before the engine moves.
+ Fix file chooser defaulting to /run when game is saved for a
second time under flatpak.
+ Fix detection of stalled chess engine in untimed games.
+ Fix claim draw dialog appearing before a forced draw.
+ Fix ChessScene removing invalid GSource.
==== gpgme ====
Subpackages: libgpgme11 libgpgmepp6 python3-gpg
- Use python-rpm-macros to provide python3X-gpg for all present
python3 flavors -- gh#openSUSE/python-rpm-macros#66
==== gpgmeqt ====
- Use python-rpm-macros to provide python3X-gpg for all present
python3 flavors -- gh#openSUSE/python-rpm-macros#66
==== gtk3 ====
Version update (3.24.23+118 -> 3.24.24)
Subpackages: gtk3-data gtk3-immodule-amharic gtk3-immodule-inuktitut gtk3-immodule-thai gtk3-immodule-tigrigna gtk3-immodule-vietnamese gtk3-schema gtk3-tools libgtk-3-0 typelib-1_0-Gtk-3_0
- Update to version 3.24.24:
+ GtkColorChooser: Update the default color palette.
+ GtkFontChooser: Fix family-only mode to return regular style.
+ GtkTreeView: Don't set focus-on-click for header buttons.
+ Accessibility:
- Implement scrollSubstringTo.
- Add a11y support to GtkPlug/GtkSocket.
+ Printing: Allow the lpr backend to print pdf and ps files.
+ Theme:
- Update gesture graphics.
- Update HighContrast css.
+ Wayland: Support the primary-selection-unstable-v1 protocol.
+ X11: Fix a crash with parent-relative backgrounds.
+ Broadway: Set modifier state of scroll events.
+ Build: Fix pc file generation on NixOS.
+ Updated translations.
==== hplip ====
Version update (3.20.6 -> 3.20.9)
Subpackages: hplip-hpijs hplip-sane
- Update to 3.20.9
Add support for the following printers:
* HP Color LaserJet Managed MFP E57540dn
* HP Color LaserJet Managed Flow MFP E57540c
* HP Color LaserJet Enterprise MFP M578dn
* HP Color LaserJet Enterprise MFP M578f
* HP Color LaserJet Enterprise Flow MFP M578c
* HP Color LaserJet Enterprise Flow MFP M578z
* HP Color LaserJet Managed E55040dw
* HP Color LaserJet Managed E55040dn
* HP Color LaserJet Enterprise M554dn
* HP Color LaserJet Enterprise M555dn
* HP Color LaserJet Enterprise M555x
- Modified patches:
* Use-lsb_release-fallback-code-if-import-distro-fails.patch
* hp_ipp.h-add-missing-prototypes.patch
* hplip-remove-imageprocessor.diff
* hplip-udev-rules-in-usr.patch
+ refresh using source service
* add_missing_includes_and_define_GNU_SOURCE.patch
+ refresh, drop inexisting file and add GNU_SOURCE definition
and missing include in common/utils.c
* hplip-misc-missing-includes-and-definitions.patch
+ rediff to changed context
- New build dependency on libavahi-devel
==== hwdata ====
Version update (0.341 -> 0.342)
- Update to version 0.342:
+ Updated pci, usb and vendor ids.
==== libical ====
- Add 0001-Fix-build-with-icu-68.1.patch: fix build with icu 68.1.
==== libqb ====
Version update (2.0.1+20200729.416caf2 -> 2.0.2+20201203.def947e)
- Update to version 2.0.2+20201203.def947e (v2.0.2):
- ipcs : Decrease log level. (#426)
- cov: Quieten some covscan warnings (#427)
- doxygen2man: Fix a couple of covscan-detected errors (#425)
- ipcs: Add missing qb_list_del when freeing server (#423) (gh#ClusterLabs/libqb#422)
- ipc: add qb_ipcc_auth_get() API call (#418)
- doxygen2man: Remove horrible hack (#420) (gh#ClusterLabs/libqb#419)
- doxygen2man: Add support for @code blocks (#417)
- man: Tidy man pages (#416)
- doxygen2man: Add option to read copyright line from the header file (#415) (gh#ClusterLabs/libqb#414)
==== libstorage-ng ====
Version update (4.3.71 -> 4.3.72)
Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1
- merge gh#openSUSE/libstorage-ng#785
- handle missing partition device nodes for multipath (bsc#1175981)
- 4.3.72
==== libvirt ====
Subpackages: libvirt-bash-completion libvirt-client libvirt-daemon libvirt-daemon-driver-interface libvirt-daemon-driver-lxc libvirt-daemon-driver-network libvirt-daemon-driver-nodedev libvirt-daemon-driver-nwfilter libvirt-daemon-driver-qemu libvirt-daemon-driver-secret libvirt-daemon-driver-storage libvirt-daemon-driver-storage-core libvirt-daemon-driver-storage-disk libvirt-daemon-driver-storage-iscsi libvirt-daemon-driver-storage-iscsi-direct libvirt-daemon-driver-storage-logical libvirt-daemon-driver-storage-mpath libvirt-daemon-driver-storage-rbd libvirt-daemon-driver-storage-scsi libvirt-daemon-lxc libvirt-daemon-qemu libvirt-libs
- spec: Enable mdevctl support in the nodedev driver for SLE15 SP3
jsc#SLE-15861, bsc#1179770
- apparmor: Allow lxc processes to receive signals from libvirt
lxc: Set default security model in XML parser config
0d05d51b-apparmor-lxc-fix.patch, cf4e7e62-lxc-def-secmodel.patch
bsc#1179735
==== lvm2 ====
Subpackages: liblvm2cmd2_03
- prepare usrmerge (boo#1029961)
==== lvm2-device-mapper ====
Subpackages: device-mapper libdevmapper-event1_03 libdevmapper1_03
- prepare usrmerge (boo#1029961)
==== memcached ====
Version update (1.6.7 -> 1.6.9)
- update to 1.6.9:
* arm64: Re-add arm crc32c hw acceleration for extstore
* restart mode: expose memory_file path in stats settings
* 'shutdown graceful' command for raising SIGUSR1
* Introduce NAPI ID based worker thread selection (see doc/napi_ids.txt)
* item crawler hash table walk mode
* bugfixes
- Trim history lesson from description.
- Do not suppress errors from useradd.
- Reduce hard dependency on systemd.
==== mutt ====
Version update (2.0.2 -> 2.0.3)
Subpackages: mutt-doc mutt-lang
- mutt 2.0.3:
* Fix pager dropped input on SigWinch flag handling
* Fix REPLY_TO environment variable handling
* Fix undefined NULL pointer arithmetic
* Fix exact-address recording of last value
* Fix exact-address handling when addr->personal is set
==== net-snmp ====
Subpackages: libsnmp30 perl-SNMP snmp-mibs
- Fix the python subpackage generation
gh#openSUSE/python-rpm-macros#79
- Support multiple python 3 flavors in the python subpackage
gh#openSUSE/python-rpm-macros#66
==== netcat-openbsd ====
- Add port-select-on-connect.patch: if -s is given but not -p
do not select port at bind() but at connect() time.
==== nodejs14 ====
Subpackages: npm14
- openssl_binary_detection.patch: fixes unit tests on SLE12
==== opensc ====
Version update (0.19.0 -> 0.21.0)
- OpenSC 0.21.0:
* CVE-2020-26571: stack-based buffer overflow in the gemsafe GPK
smart card software driver (boo#1177380)
* CVE-2020-26572: stack-based buffer overflow in the TCOS smart
card software driver (boo#1177378)
* CVE-2020-26570: heap-based buffer overflow in the Oberthur
smart card software driver (boo#1177364)
* CardOS 5.x support boo#1179291
* Support for OAEP encryption, make SHA256 default
* New separate debug level for PIN commands
* Fix handling of card/reader insertion/removal events in pcscd
* Fixes of removed readers handling
* Fix Firefox crash because of invalid pcsc context
* PKCS#11: Return CKR_TOKEN_NOT_RECOGNIZED for not recognized cards
* Propagate ignore_user_content to PKCS#11 layer not to confuse applications
* Minidriver: Fix check of ATR length (2-to 33 characters inclusive)
* pkcs11-tool: allow using SW tokens
* opensc-explorer asn1 accepts offsets and decode records
* opensc-explorer cat accepts records
* OpenPGP: Add new ec curves supported by GNUK
* First steps supporting OpenPGP 3.4
* OpenPGP: Add support for EC key import
* Rutoken: Add ATR for Rutoken ECP SC NFC
* Improve detection of various CardOS 5 configurations
* DNIe: Add new DNIe CA structure for the secure channel
* ePass2003: Improve ECC support
* ePass2003: Fix erase sequence
* IAS-ECC: Fix support for Idemia Cosmo cards
* IAS-ECC: PIN padding settings are now used from PKCS#15 info when available
* IAS-ECC: Added PIN-pad support for PIN unblock
* New driver for Gemalto IDPrime (only some types)
* eDo: New driver with initial support for Polish eID card (e-dowód, eDO)
* MCRD: Remove unused and broken RSA EstEID support
* TCOS: Add missing encryption certificates
* PIV: Add ATR of DOD Yubikey
* fixed PIV global pin bug
* CAC1: Support changing PIN with CAC Alt tokens
- includes changes from 0.20.0
* CVE-2019-6502: memory leak in libopensc (boo#1122756)
* CVE-2019-15946: out-of-bounds access of an ASN.1 Octet string (boo#1149747)
* CVE-2019-15945: out-of-bounds access of an ASN.1 Bitstring (boo#1149746)
* CVE-2019-19479: incorrect read operation during parsing of a SETCOS file attribute (boo#1158256)
* CVE-2019-19480: improper free operation in sc_pkcs15_decode_prkdf_entry (boo#1158307)
* Support RSA-PSS signature mechanisms using RSA-RAW
* Added memory locking for secrets
* added support for terminal colors
* PC/SC driver: Fixed error handling in case of changing or removing the card reader
* rename md_read_only to read_only and use it for PKCS#11 and Minidriver
* allow global use of ignore_private_certificate
* PKCS#11: Implement write protection (CKF_WRITE_PROTECTED) based on the card profile
* PKCS#11: Add C_WrapKey and C_UnwrapKey implementations
* PKCS#11: Handle CKA_ALWAYS_AUTHENTICATE when creating key objects
* PKCS#11: Truncate long PKCS#11 labels with ...
* PKCS#11: Fixed recognition of a token when being unplugged and reinserted
* Minidriver: Register for CardOS5 cards
* Minidriver: Add support for RSA-PSS
* tools: Harmonize the use of option -r/--reader
* goid-tool: GoID personalization with fingerprint
* openpgp-tool: replace the options -L/--key-length with -t/--key-type
* openpgp-tool: add options -C/--card-info and -K/--key-info
* opensc-explorer: add command pin_info, extend random
* pkcs11-register: Auto-configuration of applications for use of OpenSC PKCS#11
* pkcd11-register: Autostart
* opensc-tool: Show ATR also for cards not recognized by OpenSC
* pkcs11-spy: parse CKM_AES_GCM, EC Derive parameters
* pkcs11-spy: Add support for CKA_OTP_* and CKM_*_PSS values
* pkcs11-tool: Support for signature verification via --verify
* pkcs11-tool: Add object type secrkey for --type option
* pkcs11-tool: Implement Secret Key write object
* pkcs11-tool: Add GOSTR3410-2012 support
* pkcs11-tool: Add support for testing CKM_RSA_PKCS_OAEP
* pkcs11-tool: Add extractable option to key import
* pkcs11-tool: list more key access flags when listing keys
* pkcs11-tool: Add support for CKA_ALLOWED_MECHANISMS when creating new objects and listing keys
* pkcs15-crypt: *Handle keys with user consent
* New separate CAC1 driver using the old CAC specification (#1502)
* CardOS: Add support for 4K RSA keys in CardOS 5
* CardOS: Fixed decryption with CardOS 5
* Enable CoolKey driver to handle 2048-bit keys
* EstEID: add support for a minimalistic, small and fast card profile based on IAS-ECC issued since December 2018
* GIDS Decipher fix (#1881)
* GIDS: Allow RSA 4K support
* MICARDO: Remove long expired EstEID 1.0/1.1 card support
* MyEID: Add support for unwrapping a secret key with an RSA key or secret key
* MyEID Add support for wrapping a secret key with a secret key
* Support for MyEID 4K RSA
* Support for OsEID
* Gemalto GemSafe: add new PTeID ATRs, add support for 4K RSA keys
* OpenPGP Card v3 ECC support
* Add Rutoken ECP SC
* Add Rutoken Lite
* Add SmartCard-HSM 4K ATR
* Add missing secp384r1 curve parameter
* Stacros: Fix decipher with 2.3
* Stacros: Add ATR for 2nd gen. eGK
* Stacros: Add new ATR for 3.5
* Stacros: Detect and allow Globalplatform PIN encoding
* Fix TCOS IDKey support
* TCOS: add encryption certificate for IDKey
* Infocamere, Postecert, Cnipa: Remove profiles
* Remove incomplete acos5 driver
- drop patches now upstream:
* opensc-0.19.0-piv_card_matching.patch
* opensc-0.19.0-redundant_logging.patch
* opensc-0.19.0-rsa-pss.patch
==== php7 ====
Subpackages: apache2-mod_php7 php7-ctype php7-dom php7-gd php7-gettext php7-iconv php7-json php7-mbstring php7-mysql php7-pdo php7-sqlite php7-tokenizer php7-xmlreader php7-xmlwriter
- do not add mod_php to httpd.conf during %install (better fix for
new apache2 from Apache development repo)
+ php-install-mod_php.patch
- do not build php-cgi when not needed
- only build extensions in cli
==== plymouth ====
Version update (0.9.5+git20200921+20778f2 -> 0.9.5+git20201026+53c83cc)
Subpackages: libply-boot-client5 libply-splash-core5 libply-splash-graphics5 libply5 plymouth-dracut plymouth-plugin-label plymouth-plugin-two-step plymouth-scripts plymouth-theme-bgrt plymouth-theme-spinner
- Update to version: 0.9.5+git20201026:
Don't wait forever for a ping reply.
==== poppler ====
Version update (20.10.0 -> 20.12.0)
Subpackages: libpoppler-cpp0 libpoppler-glib8 poppler-tools
- Update to 20.12.0:
+ core:
- Draw better circles for circle annotations
- Fix annotation line width if no appearance stream or style are given
- Tweak rendering of highlight annotations
- Fix border rendering of some annotations
- Fix rendering of some files. Issue #976 Issue #567
- PSOutputDev: provide options to set the rasterization color space and ICC profile
- PSOutputDev: for splashModeCMYK8 and language level >=2 activate overprint emulation
- PSOutputDev: use the DeviceN8 bitmap for rasterization with CMYK-output + overprint
- Use the font name without subset tag when querying for a system font
- Splash: Fix wrong x adjustment during clipping
- Splash: Fix blitImage in uncolored tiling patterns
- timeToDateString: We forgot the ' after the minutes
- Move psLevel to PSOutputDev creation
- Fix several issues in broken files
+ utils:
- pdftops: provide options to set the rasterization color space and ICC profile
- pdftops: for splashModeCMYK8 and language level >=2 activate overprint emulation
==== poppler-qt5 ====
Version update (20.10.0 -> 20.12.0)
- Update to 20.12.0:
+ core:
- Draw better circles for circle annotations
- Fix annotation line width if no appearance stream or style are given
- Tweak rendering of highlight annotations
- Fix border rendering of some annotations
- Fix rendering of some files. Issue #976 Issue #567
- PSOutputDev: provide options to set the rasterization color space and ICC profile
- PSOutputDev: for splashModeCMYK8 and language level >=2 activate overprint emulation
- PSOutputDev: use the DeviceN8 bitmap for rasterization with CMYK-output + overprint
- Use the font name without subset tag when querying for a system font
- Splash: Fix wrong x adjustment during clipping
- Splash: Fix blitImage in uncolored tiling patterns
- timeToDateString: We forgot the ' after the minutes
- Move psLevel to PSOutputDev creation
- Fix several issues in broken files
+ utils:
- pdftops: provide options to set the rasterization color space and ICC profile
- pdftops: for splashModeCMYK8 and language level >=2 activate overprint emulation
==== procps ====
Subpackages: libprocps8
- prepare usrmerge (boo#1029961)
==== psmisc ====
- prepare usrmerge (boo#1029961)
==== python-dkimpy ====
Version update (1.0.3 -> 1.0.5)
- update to 1.0.5
- Update dnsplug for DNS Python (dns) 2.0 compatibility (LP: #1888583)
- Fix @param srv_id typos (LP: #1890532)
- Correct dkim.verify processing to avoid errors when verifying messages
with no DKIM signatures
==== raspberrypi-firmware ====
Version update (2020.10.22 -> 2020.12.08)
- Update to 919aee0ed7 (2020-12-08):
* firmware: Switch DA9121 PMIC to PWM mode when ARM > 600 MHz
* firmware: xhci: Don't reset BCM2711 XHCI from filesys in start.elf
* firmware: platform: Avoid vco issue with low arm_freq_min on Pi0-3
==== raspberrypi-firmware-config ====
Version update (2020.10.22 -> 2020.12.08)
- Update to 919aee0ed7 (2020-12-08):
* firmware: Switch DA9121 PMIC to PWM mode when ARM > 600 MHz
* firmware: xhci: Don't reset BCM2711 XHCI from filesys in start.elf
* firmware: platform: Avoid vco issue with low arm_freq_min on Pi0-3
==== raspberrypi-firmware-dt ====
Version update (2020.10.26 -> 2020.12.07)
- Update to f77383ec0ed3 (2020-12-07):
* Introduce RPi400 device-tree
==== rubygem-net-ssh ====
Version update (6.1.0 -> 6.2.0.rc1)
New upstream release 6.2.0 rc1
* rsa-sha2-512, rsa-sha2-256 host_key algs [#771]
* JRuby aes*-ctr suppport [#767]
==== smp_utils ====
Subpackages: libsmputils1-1
- Add missing ldconfig calls for libsmputils1-1.
==== subversion ====
Subpackages: libsvn_auth_gnome_keyring-1-0 libsvn_auth_kwallet-1-0 subversion-bash-completion subversion-perl subversion-server subversion-tools
- use system apache rpm macros
==== sudo ====
Version update (1.9.3p1 -> 1.9.4)
Subpackages: sudo-plugin-python
- Update to 1.9.4
* The sudoers parser will now detect when an upper-case reserved
word is used when declaring an alias. Now instead of "syntax
error, unexpected CHROOT, expecting ALIAS" the message will be
"syntax error, reserved word CHROOT used as an alias name".
Bug #941.
* Better handling of sudoers files without a final newline.
The parser now adds a newline at end-of-file automatically which
removes the need for special cases in the parser.
* Fixed a regression introduced in sudo 1.9.1 in the sssd back-end
where an uninitialized pointer could be freed on an error path.
GitHub issue #67.
* The core logging code is now shared between sudo_logsrvd and
the sudoers plugin.
* JSON log entries sent to syslog now use "minimal" JSON which
skips all non-essential whitespace.
* The sudoers plugin can now produce JSON-formatted logs. The
"log_format" sudoers option can be used to select sudo or json
format logs. The default is sudo format logs.
* The sudoers plugin and visudo now display the column number in
syntax error messages in addition to the line number. Bug #841.
* If I/O logging is not enabled but "log_servers" is set, the
sudoers plugin will now log accept events to sudo_logsrvd.
Previously, the accept event was only sent when I/O logging was
enabled. The sudoers plugin now sends reject and alert events too.
* The sudo logsrv protocol has been extended to allow an AlertMessage
to contain an optional array of InfoMessage, as AcceptMessage
and RejectMessage already do.
* Fixed a bug in sudo_logsrvd where receipt of SIGHUP would result
in duplicate entries in the debug log when debugging was enabled.
* The visudo utility now supports EDITOR environment variables
that use single or double quotes in the command arguments.
Bug #942.
* The PAM session modules now run when sudo is set-user-ID root,
which allows a module to determine the original user-ID.
Bug #944.
* Fixed a regression introduced in sudo 1.8.24 in the LDAP back-end
where sudoNotBefore and sudoNotAfter were applied even when the
SUDOERS_TIMED setting was not present in ldap.conf. Bug #945.
* Sudo packages for macOS 11 now contain universal binaries that
support both Intel and Apple Silicon CPUs.
* For sudo_logsrvd, an empty value for the "pid_file" setting in
sudo_logsrvd.conf will now disable the process ID file.
- Remove sudo-1.9.3p1-pam_xauth.patch (upstreamed)
==== sysconfig ====
Subpackages: sysconfig-netconfig
- Also support service(network) provides
==== sysvinit ====
Version update (2.97 -> 2.98)
- Update to sysvinit 2.98:
* Fixed time parsing in shutdown when there is a + in front of a 0 time offset.
Commands with a postiive time offset (+1) would work but +0 fails.
This has been corrected by Arkadiusz Miskiewicz.
==== telepathy-glib ====
Subpackages: libtelepathy-glib0 typelib-1_0-TelepathyGlib-0_12
- Drop python-xml BuildRequires: the installation is using python3.
==== telepathy-logger ====
Subpackages: libtelepathy-logger3 typelib-1_0-TelepathyLogger-0_2
- Build with python3 instead of python2:
+ Add 1.diff: tools: Fix the build with Python 3.
+ Drop python2-devel and python-xml BuildRequires.
- Drop empty post/postun scriptlets that were calling
glib2_gsettings_schema_post/postun: macros are now empty
placeholder and the funcionality handled by file triggers.
==== tigervnc ====
Subpackages: libXvnc1 xorg-x11-Xvnc xorg-x11-Xvnc-module
- x11vnc wrapper script: converted to python3 (boo#1179592)
==== vim ====
Version update (8.2.2039 -> 8.2.2105)
Subpackages: gvim vim-data vim-data-common
- Updated to version 8.2.2105, fixes the following problems
* Viminfo is not written when creating a new file.
* Terminal buffer disappears even when 'bufhidden' is "hide". (Sergey Vlasov)
* Haskell filetype not optimally recognized.
* Build failure with +profile but without +reltime.
* GTK3: white border around text stands out.
* Highlighting a character too much with incsearch.
* Some test failures don't give a clear error.
* Amiga: FEAT_ARP defined when it should not.
* Amiga: obsolete code.
* Amiga: obsolete function.
* Search test contains unneeded sleeps.
* Vim9: crash when aborting a user function call.
* Vim9: "edit +4 fname" gives an error. (Naruhiko Nishino)
* Vim9: lamba doesn't accept argument types.
* Configure fails when building with the "implicit-function-declaration"
error enabled, specifically on Mac.
* Getting the selection may trigger TextYankPost autocmd.
* Using mkview/loadview changes the jumplist.
* Check for features implemented with "if".
* Vim9: E1030 error when using empty string for term_sendkeys().
* <Cmd> does not handle CTRL-V.
* Vim9: only one level of indexing supported.
* terminal: cursor is on while redrawing, causing flicker.
* Using map() and filter() on a range() is inefficient.
* Vim9: assignment with += doesn't work.
* Cursor position in popup terminal is wrong.
* Transparent syntax item uses start/end of containing region.
* The quickfix window is not updated after setqflist().
* Can't get the exit value in VimLeave or VimLeavePre autocommands.
* Vim9: list assign doesn't except empty remainder list.
* Vim9: list assign not well tested.
* Vim9: for with unpack only works for local variables.
* Vim9: using :normal from Vim9 script can't handle range.
* Error for const argument to mapnew().
* Build failure with small features.
* Illegal memory access when using :print on invalid text. (Dhiraj Mishra)
* Vim9: cannot put a linebreak before or after "in" of ":for".
* Vim9: no proper error message for using s:var in for loop.
* Vim9: cannot handle a linebreak after "=" in assignment.
* Vim9: can still use the depricated #{} dict syntax.
* Vim9: crash when using ":silent!" and getting member fails.
* CTRL-V U doesn't work to enter a Unicode character when modifyOtherKeys
is effective. (Ken Takata)
* Qt translation file is recognized as typescript.
* Libvterm tests are only run on Linux.
* Vim9: memory leak when statement is truncated.
* Vim9: script test sometimes fails.
* Vim9: dict does not accept a key in quotes.
* Vim9: unpredictable errors for script tests.
* Vim9: script test sometimes fails.
* When an expression fails getting the next command may be wrong.
* Vim9: crash when failed dict member is followed by concatenation.
* Vim9: command modifiers not restored after assignment.
* Vim9: using :silent! when calling a function prevents abortng that
function.
* Vim9: function argument of sort() and map() not tested.
* Vim9: some checks are not tested.
* Insufficient testing for function range and dict.
* Vim9: memory leak when literal dict has an error and when an expression
is not complete.
* Vim9: not all error messages tested.
* Vim9: unreachable code.
* Build problem with Ruby 2.7.
* Sound test is a bit flaky.
==== vlan ====
- prepare usrmerge (boo#1029961)
==== webkit2gtk3 ====
Subpackages: libjavascriptcoregtk-4_0-18 libwebkit2gtk-4_0-37 typelib-1_0-JavaScriptCore-4_0 typelib-1_0-WebKit2-4_0 webkit2gtk-4_0-injected-bundles
- Add old-wayland-scanner.patch for 15.0/15.1: support older
wayland-scanner. Also renumber patches to group
15.0/15.1-specific patches together.
- Have the libwebkit2gtk package require libjavascriptcoregtk of
the same version (boo#1171531).
==== xfsdump ====
- prepare usrmerge (boo#1029961)
==== xorg-x11-server ====
Version update (1.20.9 -> 1.20.10)
Subpackages: xorg-x11-server-Xvfb xorg-x11-server-extra xorg-x11-server-sdk xorg-x11-server-wayland
- Update to version 1.20.10:
* Check SetMap request length carefully.
* Fix XkbSetDeviceInfo() and SetDeviceIndicators() heap overflows
* present/wnmd: Translate update region to screen space
* modesetting: keep going if a modeset fails on EnterVT
* modesetting: check the kms state on EnterVT
* configure: Build hashtable for Xres and glvnd
* xwayland: Create an xwl_window for toplevel only
* xwayland: non-rootless requires the wl_shell protocol
* glamor: Update pixmap's devKind when making it exportable
* os: Fix instruction pointer written in xorg_backtrace
* present/wnmd: Execute copies at target_msc-1 already
* present/wnmd: Move up present_wnmd_queue_vblank
* present: Add present_vblank::exec_msc field
* present: Move flip target_msc adjustment out of present_vblank_create
* xwayland: Remove pending stream reference when freeing
* xwayland: use drmGetNodeTypeFromFd for checking if a node is a render one
* xwayland: Do not discard frame callbacks on allow commits
* present/wnmd: Remove dead check from present_wnmd_check_flip
* xwayland: Check window pixmap in xwl_present_check_flip2
* present/wnmd: Can't use page flipping for windows clipped by children
* xfree86: Take second reference for SavedCursor in xf86CursorSetCursor
* glamor: Fix glamor_poly_fill_rect_gl xRectangle::width/height handling
* include: Increase the number of max. input devices to 256.
* Revert "linux: Make platform device probe less fragile"
* Revert "linux: Fix platform device PCI detection for complex bus topologies"
* Revert "linux: Fix platform device probe for DT-based PCI"
- Remove included pachtes
* U_xfree86_take_second_ref_for_xcursor.patch
* U_Revert-linux-Fix-platform-device-probe-for-DT-based-.patch
* U_Revert-linux-Fix-platform-device-PCI-detection-for-c.patch
* U_Revert-linux-Make-platform-device-probe-less-fragile.patch
* U_Fix-XkbSetDeviceInfo-and-SetDeviceIndicators-heap-ov.patch
* U_Check-SetMap-request-length-carefully.patch
- remove unneeded python2 script 'fdi2iclass.py' from
xorg-x11-server-sources subpackage (boo#1179591)
==== yast2-firstboot ====
Version update (4.3.8 -> 4.3.9)
- Fix: Starting YaST2 Control Center if the flag SHOW_Y2CC_CHECKBOX
has been set in /etc/sysconfig/firstboot and the user has
selected it while the firstboot installation workflow
(bsc#1178834).
- 4.3.9
==== yast2-installation ====
Version update (4.3.22 -> 4.3.24)
- Do not cleanup the libzypp cache when the system has low memory,
incomplete cache confuses libzypp later (bsc#1179415)
- 4.3.24
- Starting YAST2 Control Center if it has been set while an
yast2-firstboot installation workflow (bsc#1178834).
- 4.3.23
==== yast2-trans ====
Version update (84.87.20201130.b140fdb5f7 -> 84.87.20201205.6b65f14502)
Subpackages: yast2-trans-af yast2-trans-ar yast2-trans-bg yast2-trans-bn yast2-trans-bs yast2-trans-ca yast2-trans-cs yast2-trans-cy yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en_GB yast2-trans-es yast2-trans-et yast2-trans-fa yast2-trans-fi yast2-trans-fr yast2-trans-gl yast2-trans-gu yast2-trans-hi yast2-trans-hr yast2-trans-hu yast2-trans-id yast2-trans-it yast2-trans-ja yast2-trans-jv yast2-trans-ka yast2-trans-km yast2-trans-ko yast2-trans-lo yast2-trans-lt yast2-trans-mk yast2-trans-mr yast2-trans-nb yast2-trans-nl yast2-trans-pa yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ro yast2-trans-ru yast2-trans-si yast2-trans-sk yast2-trans-sl yast2-trans-sr yast2-trans-sv yast2-trans-ta yast2-trans-th yast2-trans-tr yast2-trans-uk yast2-trans-vi yast2-trans-wa yast2-trans-xh yast2-trans-zh_CN yast2-trans-zh_TW yast2-trans-zu
- Update to version 84.87.20201205.6b65f14502:
* Translated using Weblate (Dutch)
* Translated using Weblate (Slovak)
* Translated using Weblate (German)
* Translated using Weblate (Czech)
* Translated using Weblate (Japanese)
* Translated using Weblate (Catalan)
* New POT for text domain 'update'.
* New POT for text domain 'cluster'.
* Translated using Weblate (Slovak)
* Translated using Weblate (Czech)
* Translated using Weblate (Slovak)
* Translated using Weblate (Japanese)
* Translated using Weblate (Dutch)
* Translated using Weblate (Catalan)
* New POT for text domain 'storage'.
* Translated using Weblate (Portuguese)
* New POT for text domain 'users'.
* Translated using Weblate (Czech)
* Translated using Weblate (Slovak)
* Translated using Weblate (Japanese)
* Translated using Weblate (Dutch)
* Translated using Weblate (Catalan)
* New POT for text domain 'control'.
1
0
Hi all
we have a number of Nano Pi Neo Air boards all running openSUSE Leap
15.x - the software watchdog with the sunxi H3 watchdog works very
well. The other day, after a board got locked up hard, heartbeat LED
on solid, board getting quite hot (after about 12 hours until someone
noticed), I started thinking of an external hardware circuit - I was
just wondering if anyone here might have looked at that already ?
--
Per Jessen, Zürich (1.1°C)
1
0
When doing a "zypper ref" on my Raspberry Pi 1B with Tumbleweed I get:
# LC_ALL=C zypper ref
Repository 'openSUSE-Tumbleweed-Oss' is up to date.
Building repository 'openSUSE-Tumbleweed-Oss' cache
........................................................................
[error]
Error building the cache:
[|] Failed to cache repo (1).
Skipping repository 'openSUSE-Tumbleweed-Oss' because of the above error.
Repository 'openSUSE-Tumbleweed-Update' is up to date.
Some of the repositories have not been refreshed because of an error.
After doing a "zypper clean -a", "zypper ref" works OK, however trying to
update a few packages gives the same error about building the cache.
Also packet already installed AND packet not available in repository.
--
fr.gr.
member openSUSE
Freek de Kruijf
2
2