May 2014 - openSUSE Commits - openSUSE Mailing Lists

commit build for openSUSE:Factory
by root＠hilbert.suse.de 02 May '14

02 May '14

Hello community, here is the log from the commit of package build for openSUSE:Factory checked in at 2014-05-02 19:21:33 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/build (Old) and /work/SRC/openSUSE:Factory/.build.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "build" Changes: -------- --- /work/SRC/openSUSE:Factory/build/build.changes 2014-02-28 16:21:37.000000000 +0100 +++ /work/SRC/openSUSE:Factory/.build.new/build.changes 2014-05-02 19:21:36.000000000 +0200 @@ -1,0 +2,5 @@ +Thu Apr 24 19:09:19 UTC 2014 - adrian(a)suse.de + +- build script got refactored and split in multiple modules + +------------------------------------------------------------------- Old: ---- obs-build-20140220.tar.gz New: ---- obs-build-20140424.tar.gz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ build.spec ++++++ --- /var/tmp/diff_new_pack.v6usR6/_old 2014-05-02 19:21:37.000000000 +0200 +++ /var/tmp/diff_new_pack.v6usR6/_new 2014-05-02 19:21:37.000000000 +0200 @@ -20,7 +20,7 @@ Summary: A Script to Build SUSE Linux RPMs License: GPL-2.0+ and GPL-2.0 Group: Development/Tools/Building -Version: 20140220 +Version: 20140424 Release: 0 #!BuildIgnore: build-mkbaselibs Source: obs-build-%{version}.tar.gz ++++++ PKGBUILD ++++++ --- /var/tmp/diff_new_pack.v6usR6/_old 2014-05-02 19:21:37.000000000 +0200 +++ /var/tmp/diff_new_pack.v6usR6/_new 2014-05-02 19:21:37.000000000 +0200 @@ -1,5 +1,5 @@ pkgname=build -pkgver=20140220 +pkgver=20140424 pkgrel=0 pkgdesc="Build packages in sandbox" arch=('i686' 'x86_64') @@ -8,7 +8,7 @@ groups=('base-devel') depends=('perl') source=(obs-build-${pkgver}.tar.gz) -md5sums=('2da128f38381b82851281ba6ad41aee4') +md5sums=('118afc7b791cd6873244f4948d38ba36') package() { msg "Installing build ..." ++++++ build.dsc ++++++ --- /var/tmp/diff_new_pack.v6usR6/_old 2014-05-02 19:21:37.000000000 +0200 +++ /var/tmp/diff_new_pack.v6usR6/_new 2014-05-02 19:21:37.000000000 +0200 @@ -1,6 +1,6 @@ Format: 1.0 Source: build -Version: 20140220 +Version: 20140424 Binary: build Maintainer: Adrian Schroeter <adrian(a)suse.de> Architecture: all ++++++ obs-build-20140220.tar.gz -> obs-build-20140424.tar.gz ++++++ ++++ 9790 lines of diff (skipped) -- To unsubscribe, e-mail: opensuse-commit+unsubscribe(a)opensuse.org For additional commands, e-mail: opensuse-commit+help(a)opensuse.org

1 0

commit ocaml for openSUSE:Factory
by root＠hilbert.suse.de 02 May '14

02 May '14

Hello community, here is the log from the commit of package ocaml for openSUSE:Factory checked in at 2014-05-02 19:21:30 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/ocaml (Old) and /work/SRC/openSUSE:Factory/.ocaml.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "ocaml" Changes: -------- --- /work/SRC/openSUSE:Factory/ocaml/ocaml.changes 2014-02-02 19:10:25.000000000 +0100 +++ /work/SRC/openSUSE:Factory/.ocaml.new/ocaml.changes 2014-05-02 19:21:35.000000000 +0200 @@ -1,0 +2,5 @@ +Thu May 1 20:06:12 UTC 2014 - dvaleev(a)suse.com + +- Enable opt for ppc64le (ocaml-ppc64le.patch) + +------------------------------------------------------------------- New: ---- ocaml-ppc64le.patch ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ ocaml.spec ++++++ --- /var/tmp/diff_new_pack.oq5DSs/_old 2014-05-02 19:21:36.000000000 +0200 +++ /var/tmp/diff_new_pack.oq5DSs/_new 2014-05-02 19:21:36.000000000 +0200 @@ -23,7 +23,7 @@ Release: 0 %define doc_version 4.01 %define do_opt 0 -%ifarch %arm %ix86 ppc ppc64 x86_64 +%ifarch %arm %ix86 ppc ppc64 ppc64le x86_64 %define do_opt 1 %endif # http://caml.inria.fr/pub/distrib/ocaml-%{doc_version}/ @@ -44,6 +44,8 @@ Patch8: ocaml-yacc-Use-mkstemp-instead-of-mktemp.patch # FIX-UPSTREAM enable build on PowerPC 64bit platform. Patch9: ocaml-ppc64.patch +# FIX-UPSTREAM enable build on PowerPC 64bit LE platform. +Patch10: ocaml-ppc64le.patch Url: http://caml.inria.fr/ Summary: The Objective Caml Compiler and Programming Environment License: QPL-1.0 and SUSE-LGPL-2.0-with-linking-exception @@ -260,6 +262,7 @@ %patch7 %patch8 -p1 %patch9 -p1 +%patch10 -p1 find -name ".cvsignore" | xargs -r rm -f @@ -273,7 +276,7 @@ # For ppc64 we need a larger stack than default to compile some files # because the stages in the OCaml compiler are not mutually tail # recursive. -%ifarch ppc64 +%ifarch ppc64 ppc64le ulimit -a ulimit -Hs 65536 ulimit -Ss 65536 ++++++ ocaml-ppc64le.patch ++++++ ++++ 1902 lines (skipped) -- To unsubscribe, e-mail: opensuse-commit+unsubscribe(a)opensuse.org For additional commands, e-mail: opensuse-commit+help(a)opensuse.org

1 0

commit kexec-tools for openSUSE:Factory
by root＠hilbert.suse.de 02 May '14

02 May '14

Hello community, here is the log from the commit of package kexec-tools for openSUSE:Factory checked in at 2014-05-02 19:21:29 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/kexec-tools (Old) and /work/SRC/openSUSE:Factory/.kexec-tools.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "kexec-tools" Changes: -------- --- /work/SRC/openSUSE:Factory/kexec-tools/kexec-tools.changes 2014-03-31 20:43:30.000000000 +0200 +++ /work/SRC/openSUSE:Factory/.kexec-tools.new/kexec-tools.changes 2014-05-02 19:21:33.000000000 +0200 @@ -1,0 +2,16 @@ +Thu May 1 17:47:36 UTC 2014 - tonyj(a)suse.com + +- Device tree values should be big endian for ppc64le (bnc#875485) + New patch: kexec-tools-ppc64-purgatory-device-tree-values-should-be-read-stored-in-big-endian.patch + +------------------------------------------------------------------- +Fri Apr 11 18:08:41 UTC 2014 - tonyj(a)suse.com + +- Expose flattened device trees (ppc64le) to new kexec'd kernel in Big Endian + format (bnc#873169) + New patch: kexec-tools-fs2dt-fix-endianess-issue-with-initrd-base-and-size.patch +- Update patch headers to reflect upstream commit id's: + Change patch: kexec-tools-ppc64-purgatory-disabling-gcc-stack-protection.patch + Change patch: kexec-tools-zero-efi-info.patch + +------------------------------------------------------------------- @@ -5,2 +21,2 @@ - New patch: kexec-tools-ppc64-purgatory-disabling-gcc-stack-protection.patch_ -- Disable erroneous (efi memory descriptor version message (bnc#867785c5) + New patch: kexec-tools-ppc64-purgatory-disabling-gcc-stack-protection.patch +- Disable erroneous (efi memory descriptor version) message (bnc#867785c5) New: ---- kexec-tools-fs2dt-fix-endianess-issue-with-initrd-base-and-size.patch kexec-tools-ppc64-purgatory-device-tree-values-should-be-read-stored-in-big-endian.patch ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ kexec-tools.spec ++++++ --- /var/tmp/diff_new_pack.LOv7gG/_old 2014-05-02 19:21:34.000000000 +0200 +++ /var/tmp/diff_new_pack.LOv7gG/_new 2014-05-02 19:21:34.000000000 +0200 @@ -42,6 +42,8 @@ Patch7: %{name}-i386-bzimage_efi.patch Patch8: %{name}-ppc64-purgatory-disabling-gcc-stack-protection.patch Patch9: %{name}-zero-efi-info.patch +Patch10: %{name}-fs2dt-fix-endianess-issue-with-initrd-base-and-size.patch +Patch11: %{name}-ppc64-purgatory-device-tree-values-should-be-read-stored-in-big-endian.patch Url: ftp://kernel.org/pub/linux/utils/kernel/kexec/%{name}-%{version}.tar.bz2 BuildRoot: %{_tmppath}/%{name}-%{version}-build #!BuildIgnore: fop @@ -71,6 +73,8 @@ %patch7 -p1 %patch8 -p1 %patch9 -p1 +%patch10 -p1 +%patch11 -p1 %build # disable as-needed ++++++ kexec-tools-fs2dt-fix-endianess-issue-with-initrd-base-and-size.patch ++++++ From: Laurent Dufour <ldufour(a)linux.vnet.ibm.com> Subject: [PATCH] kexec/fs2dt : Fix endianess issue with initrd base and size Date: Fri, 11 Apr 2014 12:10:30 +0200 Git-commit: db3c32babc5279816344be8210ca91a64331f0fe References: bnc#873169 Signed-off-by: Tony Jones <tonyj(a)suse.de> The initrd values exposed in the device tree of the kexeced kernel must be encoded in Big Endian format. Without this patch, kexeced LE kernel are expected to panic when dealing with the initrd image. Signed-off-by: Laurent Dufour <ldufour(a)linux.vnet.ibm.com> --- kexec/fs2dt.c | 9 +++++---- 1 file changed, 5 insertions(+), 4 deletions(-) diff --git a/kexec/fs2dt.c b/kexec/fs2dt.c index 5e6b98d..2a90979 100644 --- a/kexec/fs2dt.c +++ b/kexec/fs2dt.c @@ -531,7 +531,7 @@ static void putnode(void) /* Add initrd entries to the second kernel */ if (initrd_base && initrd_size && !strcmp(basename,"chosen/")) { int len = 8; - unsigned long long initrd_end; + uint64_t bevalue; dt_reserve(&dt, 12); /* both props, of 6 words ea. */ *dt++ = cpu_to_be32(3); @@ -539,7 +539,8 @@ static void putnode(void) *dt++ = cpu_to_be32(propnum("linux,initrd-start")); pad_structure_block(len); - memcpy(dt,&initrd_base,len); + bevalue = cpu_to_be64(initrd_base); + memcpy(dt, &bevalue, len); dt += (len + 3)/4; len = 8; @@ -547,10 +548,10 @@ static void putnode(void) *dt++ = cpu_to_be32(len); *dt++ = cpu_to_be32(propnum("linux,initrd-end")); - initrd_end = initrd_base + initrd_size; + bevalue = cpu_to_be64(initrd_base + initrd_size); pad_structure_block(len); - memcpy(dt,&initrd_end,len); + memcpy(dt, &bevalue, len); dt += (len + 3)/4; reserve(initrd_base, initrd_size); ++++++ kexec-tools-ppc64-purgatory-device-tree-values-should-be-read-stored-in-big-endian.patch ++++++ From: Laurent Dufour <ldufour(a)linux.vnet.ibm.com> Subject: ppc64/purgatory: Device tree values should be read/stored in Big Endian References: bnc#875485 Git-commit: pending Signed-off-by: Tony Jones <tonyj(a)suse.de> The purgatory code reads the device tree's version and stores if needed the currently running CPU number. These 2 values are stored in Big Endian format in the device tree and should be byte swapped when running in Little Endian mode. Without this fix, when running in SMP environment, kexec or kdump kernel may fail booting with the following message : Failed to identify boot CPU Signed-off-by: Laurent Dufour <ldufour(a)linux.vnet.ibm.com> --- purgatory/arch/ppc64/v2wrap.S | 10 ++++++++++ 1 file changed, 10 insertions(+) diff --git a/purgatory/arch/ppc64/v2wrap.S b/purgatory/arch/ppc64/v2wrap.S index 6fc62e3..dc5034f 100644 --- a/purgatory/arch/ppc64/v2wrap.S +++ b/purgatory/arch/ppc64/v2wrap.S @@ -90,10 +90,20 @@ master: LOADADDR(16, dt_offset) ld 3,0(16) # load device-tree address mr 16,3 # save dt address in reg16 +#ifdef __BIG_ENDIAN__ lwz 6,20(3) # fetch version number +#else + li 4,20 + lwbrx 6,3,4 # fetch BE version number +#endif cmpwi 0,6,2 # v2 ? blt 80f +#ifdef __BIG_ENDIAN__ stw 17,28(3) # save my cpu number as boot_cpu_phys +#else + li 4,28 + stwbrx 17,3,4 # Store my cpu as BE value +#endif 80: LOADADDR(6,opal_base) # For OPAL early debug ld 8,0(6) # load the OPAL base address in r8 ++++++ kexec-tools-ppc64-purgatory-disabling-gcc-stack-protection.patch ++++++ --- /var/tmp/diff_new_pack.LOv7gG/_old 2014-05-02 19:21:34.000000000 +0200 +++ /var/tmp/diff_new_pack.LOv7gG/_new 2014-05-02 19:21:34.000000000 +0200 @@ -1,6 +1,9 @@ From: Laurent Dufour <ldufour(a)linux.vnet.ibm.com> Date: Tue, 25 Mar 2014 10:55:53 +0100 Subject: [PATCH] ppc64/purgatory: Disabling GCC's stack protection +Git-commit: 7d33c8933ebf8e1788ffff0132b6e08a2388748c +References: bnc#869161 +Signed-off-by: Tony Jones <tonyj(a)suse.de> Some Linux distributions, like Suse, are turning on the GCC's stack protection mechanism by default (-fstack-protector). When building the ++++++ kexec-tools-zero-efi-info.patch ++++++ --- /var/tmp/diff_new_pack.LOv7gG/_old 2014-05-02 19:21:34.000000000 +0200 +++ /var/tmp/diff_new_pack.LOv7gG/_new 2014-05-02 19:21:34.000000000 +0200 @@ -1,7 +1,8 @@ From: Tony Jones <tonyj(a)suse.de> Subject: Disable erroneous efi memory descriptor version message References: bnc#867785c5 -Upstream: not yet +Git-commit: 3e5443fffb2c311a61fe157be25b80de53329604 +Signed-off-by: Tony Jones <tonyj(a)suse.de> On non-EFI systems, efi_info section of boot_params is zero filled resulting in an erroneous message from kexec regarding "efi memory descriptor" version. -- To unsubscribe, e-mail: opensuse-commit+unsubscribe(a)opensuse.org For additional commands, e-mail: opensuse-commit+help(a)opensuse.org

1 0

commit xen for openSUSE:Factory
by root＠hilbert.suse.de 02 May '14

02 May '14

Hello community, here is the log from the commit of package xen for openSUSE:Factory checked in at 2014-05-02 19:21:27 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/xen (Old) and /work/SRC/openSUSE:Factory/.xen.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "xen" Changes: -------- --- /work/SRC/openSUSE:Factory/xen/xen.changes 2014-04-16 07:44:25.000000000 +0200 +++ /work/SRC/openSUSE:Factory/.xen.new/xen.changes 2014-05-02 19:21:29.000000000 +0200 @@ -1,0 +2,26 @@ +Sat Apr 26 09:56:36 MDT 2014 - carnold(a)suse.com + +- When the xl command is used, check to see if the domain being + modified is managed by libvirt and print warning if it is. + xl-check-for-libvirt-managed-domain.patch + +------------------------------------------------------------------- +Thu Apr 24 08:17:36 MDT 2014 - carnold(a)suse.com + +- Upstream patches from Jan + 53455585-x86-AMD-feature-masking-is-unavailable-on-Fam11.patch + 5346a7a0-x86-AMD-support-further-feature-masking-MSRs.patch + 534bbd90-x86-nested-HAP-don-t-BUG-on-legitimate-error.patch + 534bdf47-x86-HAP-also-flush-TLB-when-altering-a-present-1G-or-intermediate-entry.patch + 53563ea4-x86-MSI-drop-workaround-for-insecure-Dom0-kernels.patch + 5357baff-x86-add-missing-break-in-dom0_pit_access.patch +- XSA-92 + xsa92.patch + +------------------------------------------------------------------- +Sat Apr 12 20:48:21 UTC 2014 - mmarek(a)suse.cz + +- Add # needssslcertforbuild to use the project's certificate when + building in a home project. (bnc#872354) + +------------------------------------------------------------------- New: ---- 53455585-x86-AMD-feature-masking-is-unavailable-on-Fam11.patch 5346a7a0-x86-AMD-support-further-feature-masking-MSRs.patch 534bbd90-x86-nested-HAP-don-t-BUG-on-legitimate-error.patch 534bdf47-x86-HAP-also-flush-TLB-when-altering-a-present-1G-or-intermediate-entry.patch 53563ea4-x86-MSI-drop-workaround-for-insecure-Dom0-kernels.patch 5357baff-x86-add-missing-break-in-dom0_pit_access.patch xl-check-for-libvirt-managed-domain.patch xsa92.patch ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ xen.spec ++++++ --- /var/tmp/diff_new_pack.FnTEMX/_old 2014-05-02 19:21:32.000000000 +0200 +++ /var/tmp/diff_new_pack.FnTEMX/_new 2014-05-02 19:21:32.000000000 +0200 @@ -16,6 +16,8 @@ # +# needssslcertforbuild + Name: xen ExclusiveArch: %ix86 x86_64 %arm aarch64 %define xvers 4.4 @@ -152,7 +154,7 @@ %endif %endif -Version: 4.4.0_14 +Version: 4.4.0_16 Release: 0 PreReq: %insserv_prereq %fillup_prereq Summary: Xen Virtualization: Hypervisor (aka VMM aka Microkernel) @@ -235,6 +237,13 @@ Patch22: 53356c1e-x86-HVM-correct-CPUID-leaf-80000008-handling.patch Patch23: 533ad1ee-VMX-fix-PAT-value-seen-by-guest.patch Patch24: 533d413b-x86-mm-fix-checks-against-max_mapped_pfn.patch +Patch25: 53455585-x86-AMD-feature-masking-is-unavailable-on-Fam11.patch +Patch26: 5346a7a0-x86-AMD-support-further-feature-masking-MSRs.patch +Patch27: 534bbd90-x86-nested-HAP-don-t-BUG-on-legitimate-error.patch +Patch28: 534bdf47-x86-HAP-also-flush-TLB-when-altering-a-present-1G-or-intermediate-entry.patch +Patch29: 53563ea4-x86-MSI-drop-workaround-for-insecure-Dom0-kernels.patch +Patch30: 5357baff-x86-add-missing-break-in-dom0_pit_access.patch +Patch92: xsa92.patch # Upstream qemu Patch250: VNC-Support-for-ExtendedKeyEvent-client-message.patch Patch251: 0001-net-move-the-tap-buffer-into-TAPState.patch @@ -356,6 +365,7 @@ Patch464: set-mtu-from-bridge-for-tap-interface.patch Patch465: libxl.add-option-for-discard-support-to-xl-disk-conf.patch Patch466: aarch64-rename-PSR_MODE_ELxx-to-match-linux-headers.patch +Patch467: xl-check-for-libvirt-managed-domain.patch # Hypervisor and PV driver Patches Patch501: x86-ioapic-ack-default.patch Patch502: x86-cpufreq-report.patch @@ -617,6 +627,13 @@ %patch22 -p1 %patch23 -p1 %patch24 -p1 +%patch25 -p1 +%patch26 -p1 +%patch27 -p1 +%patch28 -p1 +%patch29 -p1 +%patch30 -p1 +%patch92 -p1 # Upstream qemu patches %patch250 -p1 %patch251 -p1 @@ -737,6 +754,7 @@ %patch464 -p1 %patch465 -p1 %patch466 -p1 +%patch467 -p1 # Hypervisor and PV driver Patches %patch501 -p1 %patch502 -p1 ++++++ 53455585-x86-AMD-feature-masking-is-unavailable-on-Fam11.patch ++++++ # Commit 70e79fad6dc6f533ff83ee23b8d13de5a696d896 # Date 2014-04-09 16:13:25 +0200 # Author Jan Beulich <jbeulich(a)suse.com> # Committer Jan Beulich <jbeulich(a)suse.com> x86/AMD: feature masking is unavailable on Fam11 Reported-by: Aravind Gopalakrishnan<aravind.gopalakrishnan(a)amd.com> Signed-off-by: Jan Beulich <jbeulich(a)suse.com> Reviewed-by: Andrew Cooper <andrew.cooper3(a)citrix.com> --- a/xen/arch/x86/cpu/amd.c +++ b/xen/arch/x86/cpu/amd.c @@ -107,6 +107,10 @@ static void __devinit set_cpuidmask(cons ASSERT((status == not_parsed) && (smp_processor_id() == 0)); status = no_mask; + /* Fam11 doesn't support masking at all. */ + if (c->x86 == 0x11) + return; + if (~(opt_cpuid_mask_ecx & opt_cpuid_mask_edx & opt_cpuid_mask_ext_ecx & opt_cpuid_mask_ext_edx)) { feat_ecx = opt_cpuid_mask_ecx; @@ -176,7 +180,6 @@ static void __devinit set_cpuidmask(cons extfeat_ecx, extfeat_edx); setmask: - /* FIXME check if processor supports CPUID masking */ /* AMD processors prior to family 10h required a 32-bit password */ if (c->x86 >= 0x10) { wrmsr(MSR_K8_FEATURE_MASK, feat_edx, feat_ecx); ++++++ 5346a7a0-x86-AMD-support-further-feature-masking-MSRs.patch ++++++ # Commit e74de9c0b19f9bd16d658a96bf6c9ab9a2a639e9 # Date 2014-04-10 16:16:00 +0200 # Author Jan Beulich <jbeulich(a)suse.com> # Committer Jan Beulich <jbeulich(a)suse.com> x86/AMD: support further feature masking MSRs Newer AMD CPUs also allow masking CPUID leaf 6 ECX and CPUID leaf 7 sub-leaf 0 EAX and EBX. Signed-off-by: Jan Beulich <jbeulich(a)suse.com> Reviewed-by: Aravind Gopalakrishnan<aravind.gopalakrishnan(a)amd.com> --- a/docs/misc/xen-command-line.markdown +++ b/docs/misc/xen-command-line.markdown @@ -320,24 +320,42 @@ Indicate where the responsibility for dr ### cpuid\_mask\_cpu (AMD only) > `= fam_0f_rev_c | fam_0f_rev_d | fam_0f_rev_e | fam_0f_rev_f | fam_0f_rev_g | fam_10_rev_b | fam_10_rev_c | fam_11_rev_b` -If the other **cpuid\_mask\_{,ext\_}e{c,d}x** options are fully set -(unspecified on the command line), specify a pre-canned cpuid mask to -mask the current processor down to appear as the specified processor. -It is important to ensure that all hosts in a pool appear the same to -guests to allow successful live migration. +If the other **cpuid\_mask\_{,ext\_,thermal\_,l7s0\_}e{a,b,c,d}x** +options are fully set (unspecified on the command line), specify a +pre-canned cpuid mask to mask the current processor down to appear as +the specified processor. It is important to ensure that all hosts in a +pool appear the same to guests to allow successful live migration. -### cpuid\_mask\_ ecx,edx,ext\_ecx,ext\_edx,xsave_eax +### cpuid\_mask\_{{,ext\_}ecx,edx} > `= <integer>` > Default: `~0` (all bits set) -These five command line parameters are used to specify cpuid masks to +These four command line parameters are used to specify cpuid masks to help with cpuid levelling across a pool of hosts. Setting a bit in the mask indicates that the feature should be enabled, while clearing a bit in the mask indicates that the feature should be disabled. It is important to ensure that all hosts in a pool appear the same to guests to allow successful live migration. +### cpuid\_mask\_xsave\_eax (Intel only) +> `= <integer>` + +> Default: `~0` (all bits set) + +This command line parameter is also used to specify a cpuid mask to +help with cpuid levelling across a pool of hosts. See the description +of the other respective options above. + +### cpuid\_mask\_{l7s0\_{eax,ebx},thermal\_ecx} (AMD only) +> `= <integer>` + +> Default: `~0` (all bits set) + +These three command line parameters are also used to specify cpuid +masks to help with cpuid levelling across a pool of hosts. See the +description of the other respective options above. + ### cpuidle > `= <boolean>` --- a/xen/arch/x86/cpu/amd.c +++ b/xen/arch/x86/cpu/amd.c @@ -30,9 +30,17 @@ * "fam_10_rev_c" * "fam_11_rev_b" */ -static char opt_famrev[14]; +static char __initdata opt_famrev[14]; string_param("cpuid_mask_cpu", opt_famrev); +static unsigned int __initdata opt_cpuid_mask_l7s0_eax = ~0u; +integer_param("cpuid_mask_l7s0_eax", opt_cpuid_mask_l7s0_eax); +static unsigned int __initdata opt_cpuid_mask_l7s0_ebx = ~0u; +integer_param("cpuid_mask_l7s0_ebx", opt_cpuid_mask_l7s0_ebx); + +static unsigned int __initdata opt_cpuid_mask_thermal_ecx = ~0u; +integer_param("cpuid_mask_thermal_ecx", opt_cpuid_mask_thermal_ecx); + /* 1 = allow, 0 = don't allow guest creation, -1 = don't allow boot */ s8 __read_mostly opt_allow_unsafe; boolean_param("allow_unsafe", opt_allow_unsafe); @@ -96,7 +104,11 @@ static void __devinit set_cpuidmask(cons { static unsigned int feat_ecx, feat_edx; static unsigned int extfeat_ecx, extfeat_edx; + static unsigned int l7s0_eax, l7s0_ebx; + static unsigned int thermal_ecx; + static bool_t skip_l7s0_eax_ebx, skip_thermal_ecx; static enum { not_parsed, no_mask, set_mask } status; + unsigned int eax, ebx, ecx, edx; if (status == no_mask) return; @@ -104,7 +116,7 @@ static void __devinit set_cpuidmask(cons if (status == set_mask) goto setmask; - ASSERT((status == not_parsed) && (smp_processor_id() == 0)); + ASSERT((status == not_parsed) && (c == &boot_cpu_data)); status = no_mask; /* Fam11 doesn't support masking at all. */ @@ -112,11 +124,16 @@ static void __devinit set_cpuidmask(cons return; if (~(opt_cpuid_mask_ecx & opt_cpuid_mask_edx & - opt_cpuid_mask_ext_ecx & opt_cpuid_mask_ext_edx)) { + opt_cpuid_mask_ext_ecx & opt_cpuid_mask_ext_edx & + opt_cpuid_mask_l7s0_eax & opt_cpuid_mask_l7s0_ebx & + opt_cpuid_mask_thermal_ecx)) { feat_ecx = opt_cpuid_mask_ecx; feat_edx = opt_cpuid_mask_edx; extfeat_ecx = opt_cpuid_mask_ext_ecx; extfeat_edx = opt_cpuid_mask_ext_edx; + l7s0_eax = opt_cpuid_mask_l7s0_eax; + l7s0_ebx = opt_cpuid_mask_l7s0_ebx; + thermal_ecx = opt_cpuid_mask_thermal_ecx; } else if (*opt_famrev == '\0') { return; } else if (!strcmp(opt_famrev, "fam_0f_rev_c")) { @@ -179,11 +196,39 @@ static void __devinit set_cpuidmask(cons printk("Writing CPUID extended feature mask ECX:EDX -> %08Xh:%08Xh\n", extfeat_ecx, extfeat_edx); + if (c->cpuid_level >= 7) + cpuid_count(7, 0, &eax, &ebx, &ecx, &edx); + else + ebx = eax = 0; + if ((eax | ebx) && ~(l7s0_eax & l7s0_ebx)) { + if (l7s0_eax > eax) + l7s0_eax = eax; + l7s0_ebx &= ebx; + printk("Writing CPUID leaf 7 subleaf 0 feature mask EAX:EBX -> %08Xh:%08Xh\n", + l7s0_eax, l7s0_ebx); + } else + skip_l7s0_eax_ebx = 1; + + /* Only Fam15 has the respective MSR. */ + ecx = c->x86 == 0x15 && c->cpuid_level >= 6 ? cpuid_ecx(6) : 0; + if (ecx && ~thermal_ecx) { + thermal_ecx &= ecx; + printk("Writing CPUID thermal/power feature mask ECX -> %08Xh\n", + thermal_ecx); + } else + skip_thermal_ecx = 1; + setmask: /* AMD processors prior to family 10h required a 32-bit password */ if (c->x86 >= 0x10) { wrmsr(MSR_K8_FEATURE_MASK, feat_edx, feat_ecx); wrmsr(MSR_K8_EXT_FEATURE_MASK, extfeat_edx, extfeat_ecx); + if (!skip_l7s0_eax_ebx) + wrmsr(MSR_AMD_L7S0_FEATURE_MASK, l7s0_ebx, l7s0_eax); + if (!skip_thermal_ecx) { + rdmsr(MSR_AMD_THRM_FEATURE_MASK, eax, edx); + wrmsr(MSR_AMD_THRM_FEATURE_MASK, thermal_ecx, edx); + } } else { wrmsr_amd(MSR_K8_FEATURE_MASK, feat_edx, feat_ecx); wrmsr_amd(MSR_K8_EXT_FEATURE_MASK, extfeat_edx, extfeat_ecx); --- a/xen/include/asm-x86/msr-index.h +++ b/xen/include/asm-x86/msr-index.h @@ -204,6 +204,8 @@ #define MSR_AMD_FAM15H_EVNTSEL5 0xc001020a #define MSR_AMD_FAM15H_PERFCTR5 0xc001020b +#define MSR_AMD_L7S0_FEATURE_MASK 0xc0011002 +#define MSR_AMD_THRM_FEATURE_MASK 0xc0011003 #define MSR_K8_FEATURE_MASK 0xc0011004 #define MSR_K8_EXT_FEATURE_MASK 0xc0011005 ++++++ 534bbd90-x86-nested-HAP-don-t-BUG-on-legitimate-error.patch ++++++ # Commit 1ca73aaf51eba14256794bf045c2eb01e88e1324 # Date 2014-04-14 12:50:56 +0200 # Author Jan Beulich <jbeulich(a)suse.com> # Committer Jan Beulich <jbeulich(a)suse.com> x86/nested HAP: don't BUG() on legitimate error p2m_set_entry() can fail without there being a bug in the code - crash the domain rather than the host in that case. Signed-off-by: Jan Beulich <jbeulich(a)suse.com> Reviewed-by: Andrew Cooper <andrew.cooper3(a)citrix.com> Acked-by: Tim Deegan <tim(a)xen.org> --- a/xen/arch/x86/mm/hap/nested_hap.c +++ b/xen/arch/x86/mm/hap/nested_hap.c @@ -133,7 +133,7 @@ nestedhap_fix_p2m(struct vcpu *v, struct gdprintk(XENLOG_ERR, "failed to set entry for %#"PRIx64" -> %#"PRIx64"\n", L2_gpa, L0_gpa); - BUG(); + domain_crash(p2m->domain); } } ++++++ 534bdf47-x86-HAP-also-flush-TLB-when-altering-a-present-1G-or-intermediate-entry.patch ++++++ # Commit c82fbfe6ec8be597218eb943641d1f7a81c4c01e # Date 2014-04-14 15:14:47 +0200 # Author Jan Beulich <jbeulich(a)suse.com> # Committer Jan Beulich <jbeulich(a)suse.com> x86/HAP: also flush TLB when altering a present 1G or intermediate entry Signed-off-by: Jan Beulich <jbeulich(a)suse.com> Acked-by: Tim Deegan <tim(a)xen.org> --- a/xen/arch/x86/mm/hap/hap.c +++ b/xen/arch/x86/mm/hap/hap.c @@ -711,9 +711,8 @@ hap_write_p2m_entry(struct vcpu *v, unsi } safe_write_pte(p, new); - if ( (old_flags & _PAGE_PRESENT) - && (level == 1 || (level == 2 && (old_flags & _PAGE_PSE))) ) - flush_tlb_mask(d->domain_dirty_cpumask); + if ( old_flags & _PAGE_PRESENT ) + flush_tlb_mask(d->domain_dirty_cpumask); paging_unlock(d); ++++++ 53563ea4-x86-MSI-drop-workaround-for-insecure-Dom0-kernels.patch ++++++ # Commit 061eebe0e99ad45c9c3b1a778b06140de4a91f25 # Date 2014-04-22 12:04:20 +0200 # Author Jan Beulich <jbeulich(a)suse.com> # Committer Jan Beulich <jbeulich(a)suse.com> x86/MSI: drop workaround for insecure Dom0 kernels Considering that - the workaround is expensive (iterating through the entire P2M space of a domain), - the planned elimination of the expensiveness (by propagating the type change step by step to the individual P2M leaves) wouldn't address the IOMMU side of things (as for it to obey to the changed permissions the adjustments must be pushed down immediately through the entire tree) - the proper solution (PHYSDEVOP_msix_prepare) should by now be implemented by all security conscious Dom0 kernels remove the workaround, killing eventual guests that would be known to become a security risk instead. Signed-off-by: Jan Beulich <jbeulich(a)suse.com> Acked-by: Kevin Tian <kevin.tian(a)intel.com> --- a/xen/arch/x86/mm/p2m-ept.c +++ b/xen/arch/x86/mm/p2m-ept.c @@ -679,7 +679,7 @@ static void ept_change_entry_type_global return; BUG_ON(p2m_is_grant(ot) || p2m_is_grant(nt)); - BUG_ON(ot != nt && (ot == p2m_mmio_direct || nt == p2m_mmio_direct)); + BUG_ON(p2m_is_mmio(ot) || p2m_is_mmio(nt)); ept_change_entry_type_page(_mfn(ept_get_asr(ept)), ept_get_wl(ept), ot, nt); --- a/xen/arch/x86/msi.c +++ b/xen/arch/x86/msi.c @@ -825,32 +825,22 @@ static int msix_capability_init(struct p msix->pba.last) ) WARN(); - if ( dev->domain ) - p2m_change_entry_type_global(dev->domain, - p2m_mmio_direct, p2m_mmio_direct); - if ( desc && (!dev->domain || !paging_mode_translate(dev->domain)) ) + if ( desc ) { - struct domain *d = dev->domain; + struct domain *currd = current->domain; + struct domain *d = dev->domain ?: currd; - if ( !d ) - for_each_domain(d) - if ( !paging_mode_translate(d) && - (iomem_access_permitted(d, msix->table.first, - msix->table.last) || - iomem_access_permitted(d, msix->pba.first, - msix->pba.last)) ) - break; - if ( d ) - { - if ( !is_hardware_domain(d) && msix->warned != d->domain_id ) - { - msix->warned = d->domain_id; - printk(XENLOG_ERR - "Potentially insecure use of MSI-X on %04x:%02x:%02x.%u by Dom%d\n", - seg, bus, slot, func, d->domain_id); - } - /* XXX How to deal with existing mappings? */ - } + if ( !is_hardware_domain(currd) || d != currd ) + printk("%s use of MSI-X on %04x:%02x:%02x.%u by Dom%d\n", + is_hardware_domain(currd) + ? XENLOG_WARNING "Potentially insecure" + : XENLOG_ERR "Insecure", + seg, bus, slot, func, d->domain_id); + if ( !is_hardware_domain(d) && + /* Assume a domain without memory has no mappings yet. */ + (!is_hardware_domain(currd) || d->tot_pages) ) + domain_crash(d); + /* XXX How to deal with existing mappings? */ } } WARN_ON(msix->nr_entries != nr_entries); ++++++ 5357baff-x86-add-missing-break-in-dom0_pit_access.patch ++++++ # Commit 815dc9f1dba5782dcef77d8a002a11f5b1e5cc37 # Date 2014-04-23 15:07:11 +0200 # Author Jan Beulich <jbeulich(a)suse.com> # Committer Jan Beulich <jbeulich(a)suse.com> x86: add missing break in dom0_pit_access() Coverity ID 1203045 Signed-off-by: Jan Beulich <jbeulich(a)suse.com> Reviewed-by: Andrew Cooper <andrew.cooper3(a)citrix.com> --- a/xen/arch/x86/time.c +++ b/xen/arch/x86/time.c @@ -1632,6 +1632,7 @@ int dom0_pit_access(struct ioreq *ioreq) outb(ioreq->data, PIT_MODE); return 1; } + break; case 0x61: if ( ioreq->dir == IOREQ_READ ) ++++++ xl-check-for-libvirt-managed-domain.patch ++++++ Index: xen-4.4.0-testing/tools/libxl/xl.c =================================================================== --- xen-4.4.0-testing.orig/tools/libxl/xl.c +++ xen-4.4.0-testing/tools/libxl/xl.c @@ -282,6 +282,44 @@ static void xl_ctx_free(void) } } +/* + Return 0 if domain is managed by libvirt +*/ +static int xl_lookup_libvirt_managed_domains(int argc, char **argv) +{ + FILE *fp; + int i; + char line[1024]; + char *libvirt_sock = "/run/libvirt/libvirt-sock"; + + /* Check for the libvirt socket file */ + if (access(libvirt_sock, F_OK) != 0) { + return 1; + } + + /* Run virsh to get a list of running domains managed by libvirt */ + fp = popen("/usr/bin/virsh list --name 2>&1", "r"); + if (fp == NULL) { + return 1; + } + + /* Read the list of domains looking for each name in the xl command */ + while (fgets(line, sizeof(line)-1, fp) != NULL) { + line[strlen(line)-1] = '\0'; + for (i=0; i<argc && line[0]; ++i) { + if (!strcmp(argv[i], line)) { + pclose(fp); + return 0; + } + } + } + + pclose(fp); + + /* Not found */ + return 1; +} + int main(int argc, char **argv) { int opt = 0; @@ -345,6 +383,18 @@ int main(int argc, char **argv) goto xit; } if (cspec->modifies && !dryrun_only) { + if (!force_execution) { + if (!xl_lookup_libvirt_managed_domains(argc, argv)) { + fprintf(stderr, +"Warning: This domain is managed by libvirt. Using xl commands to modify this\n" +"domain will result in errors when virsh or virt-manager is used.\n" +"Please use only virsh or virt-manager to manage this domain.\n\n" +"(This check can be overridden with the -f option.)\n" + ); + ret = 1; + goto xit; + } + } for (int i = 0; i < sizeof(locks)/sizeof(locks[0]); i++) { if (!access(locks[i], F_OK) && !force_execution) { fprintf(stderr, ++++++ xsa92.patch ++++++ x86/HVM: restrict HVMOP_set_mem_type Permitting arbitrary type changes here has the potential of creating present P2M (and hence EPT/NPT/IOMMU) entries pointing to an invalid MFN (INVALID_MFN truncated to the respective hardware structure field's width). This would become a problem the latest when something real sat at the end of the physical address space; I'm suspecting though that other things might break with such bogus entries. Along with that drop a bogus (and otherwise becoming stale) log message. Afaict the similar operation in p2m_set_mem_access() is safe. This is XSA-92. Signed-off-by: Jan Beulich <jbeulich(a)suse.com> Reviewed-by: Tim Deegan <tim(a)xen.org> --- a/xen/arch/x86/hvm/hvm.c +++ b/xen/arch/x86/hvm/hvm.c @@ -4410,12 +4410,10 @@ long do_hvm_op(unsigned long op, XEN_GUE rc = -EINVAL; goto param_fail4; } - if ( p2m_is_grant(t) ) + if ( !p2m_is_ram(t) && + (!p2m_is_hole(t) || a.hvmmem_type != HVMMEM_mmio_dm) ) { put_gfn(d, pfn); - gdprintk(XENLOG_WARNING, - "type for pfn %#lx changed to grant while " - "we were working?\n", pfn); goto param_fail4; } else -- To unsubscribe, e-mail: opensuse-commit+unsubscribe(a)opensuse.org For additional commands, e-mail: opensuse-commit+help(a)opensuse.org

1 0

commit gpg2 for openSUSE:Factory
by root＠hilbert.suse.de 02 May '14

02 May '14

Hello community, here is the log from the commit of package gpg2 for openSUSE:Factory checked in at 2014-05-02 19:21:25 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/gpg2 (Old) and /work/SRC/openSUSE:Factory/.gpg2.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "gpg2" Changes: -------- --- /work/SRC/openSUSE:Factory/gpg2/gpg2.changes 2014-02-17 07:18:18.000000000 +0100 +++ /work/SRC/openSUSE:Factory/.gpg2.new/gpg2.changes 2014-05-02 19:21:28.000000000 +0200 @@ -1,0 +2,10 @@ +Tue Apr 29 12:06:03 UTC 2014 - vcizek(a)suse.com + +- add patch by Stephan Mueller which adds an option to enable + legacy ciphers in FIPS mode + * added gnupg-add_legacy_FIPS_mode_option.patch + (part of bnc#856312) +- added BuildRequires: makeinfo (to build info pages from the + patched gnupg.texi) + +------------------------------------------------------------------- New: ---- gnupg-add_legacy_FIPS_mode_option.patch ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ gpg2.spec ++++++ --- /var/tmp/diff_new_pack.WbRPY0/_old 2014-05-02 19:21:28.000000000 +0200 +++ /var/tmp/diff_new_pack.WbRPY0/_new 2014-05-02 19:21:28.000000000 +0200 @@ -30,6 +30,7 @@ BuildRequires: libgpg-error-devel >= 1.11 BuildRequires: libksba-devel >= 1.0.7 BuildRequires: libusb-devel +BuildRequires: makeinfo BuildRequires: openldap2-devel BuildRequires: readline-devel BuildRequires: zlib-devel @@ -64,6 +65,7 @@ Patch9: gnupg-detect_FIPS_mode.patch # PATCH-FIX-OPENSUSE coolo(a)suse.de -- automake 1.13 already includes $SHELL Patch10: gnupg-2.0.20-automake113.diff +Patch11: gnupg-add_legacy_FIPS_mode_option.patch BuildRoot: %{_tmppath}/%{name}-%{version}-build @@ -83,6 +85,7 @@ %patch8 -p1 %patch9 -p1 %patch10 -p1 +%patch11 -p1 %build autoreconf -fi ++++++ gnupg-add_legacy_FIPS_mode_option.patch ++++++ Index: gnupg-2.0.22/doc/gpg.texi =================================================================== --- gnupg-2.0.22.orig/doc/gpg.texi 2013-10-04 19:08:32.000000000 +0200 +++ gnupg-2.0.22/doc/gpg.texi 2014-04-30 12:42:35.129468147 +0200 @@ -1795,6 +1795,24 @@ implies, this option is for experts only understand the implications of what it allows you to do, leave this off. @option{--no-expert} disables this option. +@item --set-legacy-fips +@itemx --set-legacy-fips +@opindex set-legacy-fips +Enable legacy support even when the libgcrypt library is in FIPS 140-2 +mode. The legacy mode of libgcrypt allows the use of all ciphers, +including non-approved ciphers. This mode is needed when for legacy +reasons a message must be encrypted or decrypted. Legacy reasons for +decryptions include the decryption of old messages created with a +public key that use cipher settings which do not meet FIPS 140-2 +requirements. Legacy reasons for encryption include the encryption +of messages with a recipients public key where the recipient is not +bound to FIPS 140-2 regulation and therefore provided a key using +non-approved ciphers. Although the legacy mode is a violation of strict +FIPS 140-2 rule interpretations, it is wise to use this mode or +either not being able to access old messages or not being able +to create encrypted messages to a recipient that is not adhering +to FIPS 140-2 rules. + @end table Index: gnupg-2.0.22/g10/gpg.c =================================================================== --- gnupg-2.0.22.orig/g10/gpg.c 2014-04-30 12:42:35.117468014 +0200 +++ gnupg-2.0.22/g10/gpg.c 2014-04-30 12:42:35.129468147 +0200 @@ -368,6 +368,7 @@ enum cmd_and_opt_values oDisableDSA2, oAllowMultipleMessages, oNoAllowMultipleMessages, + oSetLegacyFips, oNoop }; @@ -744,6 +745,7 @@ static ARGPARSE_OPTS opts[] = { ARGPARSE_s_n (oDisableDSA2, "disable-dsa2", "@"), ARGPARSE_s_n (oAllowMultipleMessages, "allow-multiple-messages", "@"), ARGPARSE_s_n (oNoAllowMultipleMessages, "no-allow-multiple-messages", "@"), + ARGPARSE_s_n (oSetLegacyFips, "set-legacy-fips", "@"), /* These two are aliases to help users of the PGP command line product use gpg with minimal pain. Many commands are common @@ -2948,6 +2950,13 @@ main (int argc, char **argv) opt.flags.allow_multiple_messages=0; break; + case oSetLegacyFips: + if(gcry_fips_mode_active()) + gcry_control (GCRYCTL_INACTIVATE_FIPS_FLAG, "Enable legacy support in FIPS 140-2 mode"); + else + log_info ("Command set-legacy-fips ignored as libgcrypt is not in FIPS mode\n"); + break; + case oNoop: break; default: -- To unsubscribe, e-mail: opensuse-commit+unsubscribe(a)opensuse.org For additional commands, e-mail: opensuse-commit+help(a)opensuse.org

1 0

commit valgrind for openSUSE:Factory
by root＠hilbert.suse.de 02 May '14

02 May '14

Hello community, here is the log from the commit of package valgrind for openSUSE:Factory checked in at 2014-05-02 19:21:24 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/valgrind (Old) and /work/SRC/openSUSE:Factory/.valgrind.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "valgrind" Changes: -------- --- /work/SRC/openSUSE:Factory/valgrind/valgrind.changes 2014-02-19 11:39:11.000000000 +0100 +++ /work/SRC/openSUSE:Factory/.valgrind.new/valgrind.changes 2014-05-02 19:21:26.000000000 +0200 @@ -1,0 +2,5 @@ +Thu Apr 24 08:45:51 UTC 2014 - dmueller(a)suse.com + +- add aarch64-support.diff, aarch64-VEX-support.diff: aarch64 support + +------------------------------------------------------------------- New: ---- aarch64-VEX-support.diff aarch64-support.diff ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ valgrind.spec ++++++ --- /var/tmp/diff_new_pack.YngDAe/_old 2014-05-02 19:21:27.000000000 +0200 +++ /var/tmp/diff_new_pack.YngDAe/_new 2014-05-02 19:21:27.000000000 +0200 @@ -44,6 +44,8 @@ Patch4: valgrind-3.9.0-ppc64le-abiv2.patch Patch5: glibc-2.19.patch Patch6: r2798.diff +Patch7: aarch64-support.diff +Patch8: aarch64-VEX-support.diff # during building the major version of glibc is built into the suppression file %define glibc_main_version %(getconf GNU_LIBC_VERSION | cut -d' ' -f2 | cut -d. -f1) %define glibc_major_version %(getconf GNU_LIBC_VERSION | cut -d' ' -f2 | cut -d. -f2) @@ -54,7 +56,7 @@ %endif Provides: callgrind = %version Obsoletes: callgrind < %version -ExclusiveArch: %ix86 x86_64 ppc ppc64 ppc64le s390x armv7l armv7hl armv6l armv6hl +ExclusiveArch: aarch64 %ix86 x86_64 ppc ppc64 ppc64le s390x armv7l armv7hl armv6l armv6hl %if %suse_version > 1100 %define building_docs 1 %else @@ -139,13 +141,20 @@ %prep %setup -q -n %{name}-%{version} cd VEX +%ifarch aarch64 +%patch8 +%endif cd .. %patch1 %patch2 %patch3 -p1 %patch4 -p1 +%ifarch aarch64 +%patch7 +%else %patch5 -p1 %patch6 +%endif %build %ifarch %arm @@ -161,7 +170,11 @@ autoreconf -fi %endif export GDB=/usr/bin/gdb -%configure +%configure \ +%ifarch aarch64 + --enable-only64bit +%endif + make %{?jobs:-j%jobs} %if %building_docs pushd docs @@ -186,6 +199,9 @@ %doc %_defaultdocdir/%name %doc %_mandir/*/* %dir %_libdir/valgrind +%ifarch aarch64 +%_libdir/valgrind/*-arm64-linux +%endif %ifarch x86_64 %_libdir/valgrind/*-amd64-linux %endif ++++++ aarch64-VEX-support.diff ++++++ ++++ 33056 lines (skipped) ++++++ aarch64-support.diff ++++++ ++++ 64531 lines (skipped) -- To unsubscribe, e-mail: opensuse-commit+unsubscribe(a)opensuse.org For additional commands, e-mail: opensuse-commit+help(a)opensuse.org

1 0

commit poppler for openSUSE:Factory
by root＠hilbert.suse.de 02 May '14

02 May '14

Hello community, here is the log from the commit of package poppler for openSUSE:Factory checked in at 2014-05-02 19:21:19 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/poppler (Old) and /work/SRC/openSUSE:Factory/.poppler.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "poppler" Changes: -------- --- /work/SRC/openSUSE:Factory/poppler/poppler-qt.changes 2014-03-01 14:38:39.000000000 +0100 +++ /work/SRC/openSUSE:Factory/.poppler.new/poppler-qt.changes 2014-05-02 19:21:21.000000000 +0200 @@ -1,0 +2,115 @@ +Tue Apr 29 08:24:33 UTC 2014 - zaitor(a)opensuse.org + +- Update to version 0.26.0: + + qt4: Fix mismatched boolean logic in + TextAnnotation::setInplaceIntent. + + qt5: Fix mismatched boolean logic in + TextAnnotation::setInplaceIntent. + + core: Very small code cleanup. + + cpp: Very small code cleanup. +- Changes from version 0.25.3: + + core: + - Fix crashes on broken files. + - Avoid MinGW/Cygwin warnings due to redefinition of NOMINMAX. + - Fix some small memory leaks. + + qt5: + - Fix some kinds of OCG models. + - Cleanup some deprecated methods. + + glib: + - Fix the first coord of the quadrilateral in + create_poppler_quads_from_annot_quads() (fdo#76504). + + utils: pdftohtml: Fix typo in manpage. + + qt4: Fix some kinds of OCG models. +- Changes from version 0.25.2: + + core: + - Tagged-PDF support. + - Open some broken files (fdo#75232). + - Fix crashes on broken files. + - Fix regression parsing some broken files (kde#329600). + - Improve compilation under Win 8 with Visual Studio 2012 + (fdo#73111). + - PSOutputDev: + . Ensure paper size takes into account rotation (fdo#72312). + . Fix DocumentMedia/Page/Media/PageBBox DSC comments. + . Use crop box as page size. + . Remove origpagesizes mode and make -origpagesizes an alias + for -paper match. + . Only change paper size when different to previous size. + . Ensure there is always a page size in the output. + . Fix regression when creating level1 PS (fdo#75241). + - CairoOutputDev: Clip to crop box (bgo#649886). + - Splash: + . Blend usage in PDF with spot colors casue random + output (fdo#74883). + . Fix off by one that caused crash in a file (fdo#76387). + - Make sure number of least objects in hints table is valid + (fdo#74741). + - Limit numeric parsing of character names (fdo#38456). + + glib: + - Tagged-PDF support. + - Annotation improvements. + - Install error callback (fdo#73269). + - Fix gobject-introspection warnings. + - demo: Fix performance in text markup annotations. + - Increase gtk3 dependency. + + qt4: + - Improve naming of internal export/import macros. + - Add GCC visibility export attributes. + - Expose document-supplied text direction. + + qt5: + - Improve naming of internal export/import macros. + - Add GCC visibility export attributes. + - Expose document-supplied text direction. + + utils: + - pdftocairo: Ensure page size and crop box works the same as + pdftops. + - Fix TIFF writting in Windows (fdo#75969). + + buildsystem: + - Learn about automake 1.14. + - Do not define -ansi (fdo#72499). + - cmake: + . Install JpegWriter.h depending on libjpeg + . Use c99 for the c compiler. +- Changes from version 0.25.1: + + core: + - GooString format: + . Added some tests + improved documentation. + . Fixed bug with printing LLONG_MIN. + - Regression test improvements. + + qt4: + - Arthur backend font rendering improvements. + - Test program to save to file. + + qt5: + - Arthur backend font rendering improvements. + - Improve detection of Qt5 moc (fdo#72744). + - Test program to save to file. + + utils: + - pdfunite: + . Work even if there's a single file given. + . Do not lose fonts when merging some files. +- Changes from version 0.25.0: + + core: + - Annotation improvements. + - Tagged PDF work. + - Improve speed on some files using ICC color space. + - Use ICC profile in OutputIntents (fdo#34053). + - Limit use of ZapfDingbats character names (fdo#60243). + - Splash: correction for knockout transparency groups. + - Regression test improvements. + + utils: + - pdftoppm: Added thinlinemode option setting. + - pdfinfo: + . Indicate if pdf contains javascript. + . Add option to print out javascript. + - pdfimages: + . Print size, ratio, and ppi. + . More image output format support. + - pdfseparate: allow zero-padded pagespecs. + + glib: + - Annotation improvements. + - Add API to get text, text layout and text attributes for a + given area. + - Demo improvements. +- Bump soname following upstream changes. + +------------------------------------------------------------------- poppler.changes: same change Old: ---- poppler-0.24.5.tar.xz New: ---- poppler-0.26.0.tar.xz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ poppler-qt.spec ++++++ --- /var/tmp/diff_new_pack.QHs1R7/_old 2014-05-02 19:21:22.000000000 +0200 +++ /var/tmp/diff_new_pack.QHs1R7/_new 2014-05-02 19:21:22.000000000 +0200 @@ -21,11 +21,11 @@ Name: poppler-qt %define _name poppler -Version: 0.24.5 +Version: 0.26.0 Release: 0 # Actual version of poppler-data: %define poppler_data_version 0.4.6 -%define poppler_soname 44 +%define poppler_soname 46 %define poppler_cpp_soname 0 %define poppler_glib_soname 8 %define poppler_qt4_soname 4 ++++++ poppler.spec ++++++ --- /var/tmp/diff_new_pack.QHs1R7/_old 2014-05-02 19:21:22.000000000 +0200 +++ /var/tmp/diff_new_pack.QHs1R7/_new 2014-05-02 19:21:22.000000000 +0200 @@ -21,11 +21,11 @@ Name: poppler %define _name poppler -Version: 0.24.5 +Version: 0.26.0 Release: 0 # Actual version of poppler-data: %define poppler_data_version 0.4.6 -%define poppler_soname 44 +%define poppler_soname 46 %define poppler_cpp_soname 0 %define poppler_glib_soname 8 %define poppler_qt4_soname 4 ++++++ poppler-0.24.5.tar.xz -> poppler-0.26.0.tar.xz ++++++ ++++ 59160 lines of diff (skipped) -- To unsubscribe, e-mail: opensuse-commit+unsubscribe(a)opensuse.org For additional commands, e-mail: opensuse-commit+help(a)opensuse.org

1 0

commit translation-update for openSUSE:Factory
by root＠hilbert.suse.de 02 May '14

02 May '14

Hello community, here is the log from the commit of package translation-update for openSUSE:Factory checked in at 2014-05-02 15:11:10 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/translation-update (Old) and /work/SRC/openSUSE:Factory/.translation-update.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "translation-update" Changes: -------- --- /work/SRC/openSUSE:Factory/translation-update/translation-update.changes 2013-02-20 17:48:35.000000000 +0100 +++ /work/SRC/openSUSE:Factory/.translation-update.new/translation-update.changes 2014-05-02 15:11:11.000000000 +0200 @@ -1,0 +2,6 @@ +Fri May 2 10:25:43 UTC 2014 - tchvatal(a)suse.com + +- Rename ca@valencia and sr@latn to caValencia and srLatn to work + again on Factory. + +------------------------------------------------------------------- ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ translation-update.spec ++++++ --- /var/tmp/diff_new_pack.yOG5Vf/_old 2014-05-02 15:11:12.000000000 +0200 +++ /var/tmp/diff_new_pack.yOG5Vf/_new 2014-05-02 15:11:12.000000000 +0200 @@ -1,7 +1,7 @@ # # spec file for package translation-update # -# Copyright (c) 2013 SUSE LINUX Products GmbH, Nuernberg, Germany. +# Copyright (c) 2014 SUSE LINUX Products GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -150,13 +150,13 @@ Applications that use gettext correctly can then pick up overridden or updated translations from this location. -%package -n translation-update-ca@valencia +%package -n translation-update-caValencia Summary: Translation Updates for Catalan Group: System/Localization Provides: locale(translation-update:ca@valencia) Requires: translation-update -%description -n translation-update-ca@valencia +%description -n translation-update-caValencia This is a set of translation updates that are installed into the preferred directory, /usr/share/locale-langpack/<locale>/LC_MESSAGES/. @@ -722,13 +722,13 @@ Applications that use gettext correctly can then pick up overridden or updated translations from this location. -%package -n translation-update-sr@latin +%package -n translation-update-srLatin Summary: Translation Updates for Serbian Group: System/Localization Provides: locale(translation-update:sr@latin) Requires: translation-update -%description -n translation-update-sr@latin +%description -n translation-update-srLatin This is a set of translation updates that are installed into the preferred directory, /usr/share/locale-langpack/<locale>/LC_MESSAGES/. @@ -1046,10 +1046,10 @@ %lang(ca) %{_datadir}/locale-langpack/ca %doc COPYING -%files -n translation-update-ca@valencia +%files -n translation-update-caValencia %defattr(-,root,root) %dir %{_datadir}/locale-langpack -%lang(ca@valencia) %{_datadir}/locale-langpack/ca@valencia +%lang(caValencia) %{_datadir}/locale-langpack/ca@valencia %doc COPYING %files -n translation-update-cs @@ -1310,10 +1310,10 @@ %lang(sr) %{_datadir}/locale-langpack/sr %doc COPYING -%files -n translation-update-sr@latin +%files -n translation-update-srLatin %defattr(-,root,root) %dir %{_datadir}/locale-langpack -%lang(sr@latin) %{_datadir}/locale-langpack/sr@latin +%lang(srLatin) %{_datadir}/locale-langpack/sr@latin %doc COPYING %files -n translation-update-sv -- To unsubscribe, e-mail: opensuse-commit+unsubscribe(a)opensuse.org For additional commands, e-mail: opensuse-commit+help(a)opensuse.org

1 0

commit marble for openSUSE:Factory
by root＠hilbert.suse.de 02 May '14

02 May '14

Hello community, here is the log from the commit of package marble for openSUSE:Factory checked in at 2014-05-02 15:11:06 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/marble (Old) and /work/SRC/openSUSE:Factory/.marble.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "marble" Changes: -------- --- /work/SRC/openSUSE:Factory/marble/marble.changes 2014-04-18 12:35:44.000000000 +0200 +++ /work/SRC/openSUSE:Factory/.marble.new/marble.changes 2014-05-02 15:11:07.000000000 +0200 @@ -1,0 +2,8 @@ +Wed Apr 23 20:51:12 UTC 2014 - ctrippe(a)opensuse.org + +- remove additional desktop files as they cause multiple non + distinguishable entries in the menu (kde#327405) + Do not build qt only version and mobile version (added patch + do_not_build_qtonly_and_mobile.diff) + +------------------------------------------------------------------- New: ---- do_not_build_qtonly_and_mobile.diff ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ marble.spec ++++++ --- /var/tmp/diff_new_pack.tCOBhp/_old 2014-05-02 15:11:08.000000000 +0200 +++ /var/tmp/diff_new_pack.tCOBhp/_new 2014-05-02 15:11:08.000000000 +0200 @@ -26,6 +26,8 @@ Group: Amusements/Teaching/Other Url: http://edu.kde.org Source0: %{name}-%{version}.tar.xz +# PATCH-FIX-OPENSUSE do_not_build_qtonly_and_mobile.diff do not build qt-only version and mobile version +Patch0: do_not_build_qtonly_and_mobile.diff BuildRequires: fdupes BuildRequires: gpsd-devel BuildRequires: libkde4-devel @@ -90,6 +92,7 @@ %prep %setup -q +%patch0 %build %ifarch ppc ppc64 @@ -103,6 +106,9 @@ %kde_post_install %fdupes -s %{buildroot} +#remove additional desktop files as they cause multiple non distinguishable entries in the homerun (https://bugs.kde.org/show_bug.cgi?id=327405#c8) or even a single random entry in kickoff + rm -rf %{buildroot}/usr/share/applications/kde4/marble-touch.desktop + %post -n libmarblewidget%{_so} -p /sbin/ldconfig %postun -n libmarblewidget%{_so} -p /sbin/ldconfig @@ -123,9 +129,6 @@ %{_kde4_applicationsdir}/marble_kml.desktop %{_kde4_applicationsdir}/marble_osm.desktop %{_kde4_applicationsdir}/marble_kmz.desktop -%{_kde4_applicationsdir}/marble-mobile.desktop -%{_kde4_applicationsdir}/marble-qt.desktop -%{_kde4_applicationsdir}/marble-touch.desktop %{_kde4_applicationsdir}/marble_geo.desktop %{_kde4_applicationsdir}/marble_worldwind.desktop %{_kde4_appsdir}/marble/ ++++++ do_not_build_qtonly_and_mobile.diff ++++++ Index: src/apps/CMakeLists.txt =================================================================== --- src/apps/CMakeLists.txt.orig 2014-03-31 09:51:15.000000000 +0200 +++ src/apps/CMakeLists.txt 2014-04-25 22:22:29.253322142 +0200 @@ -1,6 +1,4 @@ add_subdirectory(marble-ui) -add_subdirectory(marble-qt) -add_subdirectory(marble-mobile) if (NOT QTONLY) add_subdirectory(marble-kde) -- To unsubscribe, e-mail: opensuse-commit+unsubscribe(a)opensuse.org For additional commands, e-mail: opensuse-commit+help(a)opensuse.org

1 0

commit mozilla-nss for openSUSE:13.1:Update
by root＠hilbert.suse.de 02 May '14

02 May '14

Hello community, here is the log from the commit of package mozilla-nss for openSUSE:13.1:Update checked in at 2014-05-02 14:52:40 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:13.1:Update/mozilla-nss (Old) and /work/SRC/openSUSE:13.1:Update/.mozilla-nss.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "mozilla-nss" Changes: -------- New Changes file: NO CHANGES FILE!!! ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ _link ++++++ --- /var/tmp/diff_new_pack.Tm9S2K/_old 2014-05-02 14:52:56.000000000 +0200 +++ /var/tmp/diff_new_pack.Tm9S2K/_new 2014-05-02 14:52:56.000000000 +0200 @@ -1 +1 @@ -<link package='mozilla-nss.2675' cicount='copy' /> +<link package='mozilla-nss.2771' cicount='copy' /> -- To unsubscribe, e-mail: opensuse-commit+unsubscribe(a)opensuse.org For additional commands, e-mail: opensuse-commit+help(a)opensuse.org

1 0