October 2017 - openSUSE Commits - openSUSE Mailing Lists

commit libsemanage for openSUSE:Factory
by root＠hilbert.suse.de 01 Oct '17

01 Oct '17

Hello community, here is the log from the commit of package libsemanage for openSUSE:Factory checked in at 2017-10-01 16:58:54 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/libsemanage (Old) and /work/SRC/openSUSE:Factory/.libsemanage.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "libsemanage" Sun Oct 1 16:58:54 2017 rev:41 rq:529096 version:2.5 Changes: -------- --- /work/SRC/openSUSE:Factory/libsemanage/python-semanage.changes 2016-08-03 11:36:40.000000000 +0200 +++ /work/SRC/openSUSE:Factory/.libsemanage.new/python-semanage.changes 2017-10-01 16:58:55.275131101 +0200 @@ -1,0 +2,6 @@ +Wed Sep 27 15:51:27 UTC 2017 - jmatejek(a)suse.com + +- build both python2 and python3 version of the semanage binding + with the singlespec machinery + +------------------------------------------------------------------- @@ -172,0 +179 @@ + ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ libsemanage.spec ++++++ --- /var/tmp/diff_new_pack.DZL1Xc/_old 2017-10-01 16:58:55.911041642 +0200 +++ /var/tmp/diff_new_pack.DZL1Xc/_new 2017-10-01 16:58:55.915041079 +0200 @@ -1,7 +1,7 @@ # # spec file for package libsemanage # -# Copyright (c) 2016 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2017 SUSE LINUX GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed ++++++ python-semanage.spec ++++++ --- /var/tmp/diff_new_pack.DZL1Xc/_old 2017-10-01 16:58:55.931038829 +0200 +++ /var/tmp/diff_new_pack.DZL1Xc/_new 2017-10-01 16:58:55.935038266 +0200 @@ -1,7 +1,7 @@ # # spec file for package python-semanage # -# Copyright (c) 2016 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2017 SUSE LINUX GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -16,6 +16,7 @@ # +%{?!python_module:%define python_module() python-%{**} python3-%{**}} Name: python-semanage Version: 2.5 Release: 0 @@ -26,6 +27,7 @@ Source: https://raw.githubusercontent.com/wiki/SELinuxProject/selinux/files/release… Source1: baselibs.conf Patch0: suse_path.patch +BuildRequires: %{python_module devel} BuildRequires: audit-devel BuildRequires: bison BuildRequires: flex @@ -33,11 +35,12 @@ BuildRequires: libselinux-devel BuildRequires: libsepol-devel BuildRequires: libustr-devel -BuildRequires: python-devel +BuildRequires: python-rpm-macros BuildRequires: swig # Ensure same version Requires: libsemanage1 = %{version} BuildRoot: %{_tmppath}/%{name}-%{version}-build +%python_subpackages %description This package contains the Python bindings for developing @@ -45,18 +48,30 @@ %prep %setup -q -n libsemanage-%{version} -%patch0 -p0 +%patch0 %build make %{?_smp_mflags} clean -make -j1 CFLAGS="%{optflags}" swigify -make -j1 CFLAGS="%{optflags}" LIBDIR="%{_libdir}" LIBEXECDIR="%{_libexecdir}" SHLIBDIR="%{_lib}" all pywrap +%{python_expand # loop over possible pythons +make -j1 PYTHON=$python CFLAGS="%{optflags}" swigify +make -j1 PYTHON=$python CFLAGS="%{optflags}" \ + LIBDIR="%{_libdir}" \ + LIBEXECDIR="%{_libexecdir}" \ + SHLIBDIR="%{_lib}" \ + all pywrap +} %install mkdir -p %{buildroot}/%{_lib} mkdir -p %{buildroot}%{_libdir} mkdir -p %{buildroot}%{_includedir} -make DESTDIR=%{buildroot} LIBDIR="%{buildroot}%{_libdir}" LIBEXECDIR="%{buildroot}%{_libexecdir}" SHLIBDIR="%{buildroot}/%{_lib}" install install-pywrap +%{python_expand # loop over possible pythons +make PYTHON=$python DESTDIR=%{buildroot} \ + LIBDIR="%{buildroot}%{_libdir}" \ + LIBEXECDIR="%{buildroot}%{_libexecdir}" \ + SHLIBDIR="%{buildroot}/%{_lib}" \ + install install-pywrap +} # remove files contained in other packages rm -rf %{buildroot}%{_sysconfdir} @@ -70,7 +85,7 @@ rm -rf %{buildroot}%{_libdir}/pkgconfig rm -rf %{buildroot}%{_mandir} -%files +%files %{python_files} %defattr(-,root,root) %{python_sitearch}/*

1 0

commit gcc7 for openSUSE:Factory
by root＠hilbert.suse.de 01 Oct '17

01 Oct '17

Hello community, here is the log from the commit of package gcc7 for openSUSE:Factory checked in at 2017-10-01 16:58:42 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/gcc7 (Old) and /work/SRC/openSUSE:Factory/.gcc7.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "gcc7" Sun Oct 1 16:58:42 2017 rev:7 rq:528963 version:7.2.1+r253221 Changes: -------- --- /work/SRC/openSUSE:Factory/gcc7/cross-aarch64-gcc7.changes 2017-09-13 21:32:43.961953617 +0200 +++ /work/SRC/openSUSE:Factory/.gcc7.new/cross-aarch64-gcc7.changes 2017-10-01 16:58:46.284395914 +0200 @@ -1,0 +2,14 @@ +Wed Sep 27 12:24:55 UTC 2017 - rguenther(a)suse.com + +- Update to gcc-7-branch head (r253221). + * Includes similar fix to gcc41-ppc32-retaddr.patch, disable the + patch but keep the testcase. + +------------------------------------------------------------------- +Mon Sep 25 20:22:09 UTC 2017 - matz(a)suse.de + +- Add support for zero-sized VLAs and allocas with + -fstack-clash-protection. [bnc #1059075] + Changes gcc7-stack-probe.diff. + +------------------------------------------------------------------- cross-arm-gcc7.changes: same change cross-avr-gcc7.changes: same change cross-epiphany-gcc7-bootstrap.changes: same change cross-epiphany-gcc7.changes: same change cross-hppa-gcc7.changes: same change cross-i386-gcc7.changes: same change cross-m68k-gcc7.changes: same change cross-mips-gcc7.changes: same change cross-nvptx-gcc7.changes: same change cross-ppc64-gcc7.changes: same change cross-ppc64le-gcc7.changes: same change cross-rx-gcc7-bootstrap.changes: same change cross-rx-gcc7.changes: same change cross-s390x-gcc7.changes: same change cross-sparc-gcc7.changes: same change cross-sparc64-gcc7.changes: same change cross-x86_64-gcc7.changes: same change gcc7-testresults.changes: same change gcc7.changes: same change Old: ---- gcc-7.2.1+r251579.tar.xz New: ---- gcc-7.2.1+r253221.tar.xz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ cross-aarch64-gcc7.spec ++++++ --- /var/tmp/diff_new_pack.OP46m9/_old 2017-10-01 16:58:50.235840027 +0200 +++ /var/tmp/diff_new_pack.OP46m9/_new 2017-10-01 16:58:50.239839464 +0200 @@ -157,7 +157,7 @@ %define biarch_targets x86_64 s390x powerpc64 powerpc sparc sparc64 Url: http://gcc.gnu.org/ -Version: 7.2.1+r251579 +Version: 7.2.1+r253221 Release: 0 %define gcc_version %(echo %version | sed 's/+.*//') %define gcc_dir_version %(echo %gcc_version | cut -d '.' -f 1) cross-arm-gcc7.spec: same change cross-avr-gcc7.spec: same change cross-epiphany-gcc7-bootstrap.spec: same change cross-epiphany-gcc7.spec: same change cross-hppa-gcc7.spec: same change cross-i386-gcc7.spec: same change cross-m68k-gcc7.spec: same change cross-mips-gcc7.spec: same change cross-nvptx-gcc7.spec: same change cross-ppc64-gcc7.spec: same change cross-ppc64le-gcc7.spec: same change cross-rx-gcc7-bootstrap.spec: same change cross-rx-gcc7.spec: same change cross-s390x-gcc7.spec: same change cross-sparc-gcc7.spec: same change cross-sparc64-gcc7.spec: same change cross-x86_64-gcc7.spec: same change gcc7-testresults.spec: same change gcc7.spec: same change ++++++ gcc-7.2.1+r251579.tar.xz -> gcc-7.2.1+r253221.tar.xz ++++++ /work/SRC/openSUSE:Factory/gcc7/gcc-7.2.1+r251579.tar.xz /work/SRC/openSUSE:Factory/.gcc7.new/gcc-7.2.1+r253221.tar.xz differ: char 27, line 1 ++++++ gcc.spec.in ++++++ --- /var/tmp/diff_new_pack.OP46m9/_old 2017-10-01 16:58:51.035727499 +0200 +++ /var/tmp/diff_new_pack.OP46m9/_new 2017-10-01 16:58:51.035727499 +0200 @@ -239,7 +239,7 @@ %define biarch_targets x86_64 s390x powerpc64 powerpc sparc sparc64 URL: http://gcc.gnu.org/ -Version: 7.2.1+r251579 +Version: 7.2.1+r253221 Release: 1 %define gcc_version %(echo %version | sed 's/+.*//') %define gcc_dir_version %(echo %gcc_version | cut -d '.' -f 1) ++++++ gcc41-ppc32-retaddr.patch ++++++ --- /var/tmp/diff_new_pack.OP46m9/_old 2017-10-01 16:58:51.051725248 +0200 +++ /var/tmp/diff_new_pack.OP46m9/_new 2017-10-01 16:58:51.055724686 +0200 @@ -6,11 +6,11 @@ * gcc.dg/20051128-1.c: New test. -Index: gcc/config/rs6000/rs6000.c -=================================================================== ---- gcc/config/rs6000/rs6000.c.orig 2013-11-26 15:42:33.000000000 +0100 -+++ gcc/config/rs6000/rs6000.c 2013-11-26 16:44:14.566089231 +0100 -@@ -20878,18 +20878,22 @@ rs6000_return_addr (int count, rtx frame +#Index: gcc/config/rs6000/rs6000.c +#=================================================================== +#--- gcc/config/rs6000/rs6000.c.orig 2013-11-26 15:42:33.000000000 +0100 +#+++ gcc/config/rs6000/rs6000.c 2013-11-26 16:44:14.566089231 +0100 +#@@ -20878,18 +20878,22 @@ rs6000_return_addr (int count, rtx frame if (count != 0 || ((DEFAULT_ABI == ABI_V4 || DEFAULT_ABI == ABI_DARWIN) && flag_pic)) { ++++++ gcc7-stack-probe.diff ++++++ --- /var/tmp/diff_new_pack.OP46m9/_old 2017-10-01 16:58:51.115716246 +0200 +++ /var/tmp/diff_new_pack.OP46m9/_new 2017-10-01 16:58:51.115716246 +0200 @@ -30,12 +30,12 @@ HOST_WIDE_INT stack_usage_size = -1; rtx_code_label *final_label; rtx final_target, target; -+ rtx loop_lab, end_lab, last_size; ++ rtx loop_lab, end_lab, skip_lab, last_size, before_skip; + int probe_pass = 0; /* If we're asking for zero bytes, it doesn't matter what we point to since we can't dereference it. But return a reasonable -@@ -1440,6 +1444,24 @@ allocate_dynamic_stack_space (rtx size, +@@ -1440,6 +1444,30 @@ allocate_dynamic_stack_space (rtx size, /* Don't let anti_adjust_stack emit notes. */ suppress_reg_args_size = true; @@ -47,6 +47,12 @@ + size = copy_to_mode_reg (Pmode, convert_to_mode (Pmode, size, 1)); + loop_lab = gen_label_rtx (); + end_lab = gen_label_rtx (); ++ skip_lab = gen_label_rtx (); ++ /* We insert 'target = virtual_stack_dynamic_rtx' here, but target ++ is changed later, so that insn can be constructed only later. */ ++ before_skip = get_last_insn (); ++ emit_cmp_and_jump_insns (size, CONST0_RTX (Pmode), EQ, NULL_RTX, ++ Pmode, 1, skip_lab); + emit_label (loop_lab); + emit_cmp_and_jump_insns (size, GEN_INT (PROBE_INTERVAL), LTU, + NULL_RTX, Pmode, 1, end_lab); @@ -60,7 +66,7 @@ /* Perform the required allocation from the stack. Some systems do this differently than simply incrementing/decrementing from the stack pointer, such as acquiring the space by calling malloc(). */ -@@ -1499,6 +1521,15 @@ allocate_dynamic_stack_space (rtx size, +@@ -1499,6 +1527,15 @@ allocate_dynamic_stack_space (rtx size, if (STACK_GROWS_DOWNWARD) emit_move_insn (target, virtual_stack_dynamic_rtx); } @@ -76,16 +82,25 @@ suppress_reg_args_size = false; -@@ -1510,6 +1541,8 @@ allocate_dynamic_stack_space (rtx size, +@@ -1510,6 +1547,17 @@ allocate_dynamic_stack_space (rtx size, emit_label (final_label); target = final_target; } + if (flag_stack_clash_protection) -+ emit_stack_probe (target); ++ { ++ rtx seq; ++ emit_stack_probe (target); ++ emit_label (skip_lab); ++ start_sequence (); ++ emit_move_insn (target, virtual_stack_dynamic_rtx); ++ seq = get_insns (); ++ end_sequence (); ++ emit_insn_after (seq, before_skip); ++ } target = align_dynamic_address (target, required_align); -@@ -1593,8 +1626,6 @@ emit_stack_probe (rtx address) +@@ -1593,8 +1641,6 @@ emit_stack_probe (rtx address) the current stack pointer. STACK_GROWS_DOWNWARD says whether to add or subtract them from the stack pointer. */

1 0

commit krb5 for openSUSE:Factory
by root＠hilbert.suse.de 01 Oct '17

01 Oct '17

Hello community, here is the log from the commit of package krb5 for openSUSE:Factory checked in at 2017-10-01 16:58:35 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/krb5 (Old) and /work/SRC/openSUSE:Factory/.krb5.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "krb5" Sun Oct 1 16:58:35 2017 rev:130 rq:528906 version:1.15.2 Changes: -------- --- /work/SRC/openSUSE:Factory/krb5/krb5-mini.changes 2017-08-21 11:32:26.856948324 +0200 +++ /work/SRC/openSUSE:Factory/.krb5.new/krb5-mini.changes 2017-10-01 16:58:39.393365341 +0200 @@ -1,0 +2,15 @@ +Mon Sep 25 19:45:05 UTC 2017 - michael(a)stroeder.com + +- Upgrade to 1.15.2 + * Fix a KDC denial of service vulnerability caused by unset status + strings [CVE-2017-11368] + * Preserve GSS contexts on init/accept failure [CVE-2017-11462] + * Fix kadm5 setkey operation with LDAP KDB module + * Use a ten-second timeout after successful connection for HTTPS KDC + requests, as we do for TCP requests + * Fix client null dereference when KDC offers encrypted challenge + without FAST + * Ignore dotfiles when processing profile includedir directive + * Improve documentation + +------------------------------------------------------------------- krb5.changes: same change Old: ---- krb5-1.15.1.tar.gz krb5-1.15.1.tar.gz.asc New: ---- krb5-1.15.2.tar.gz krb5-1.15.2.tar.gz.asc ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ krb5-mini.spec ++++++ --- /var/tmp/diff_new_pack.gIAzp8/_old 2017-10-01 16:58:40.545203301 +0200 +++ /var/tmp/diff_new_pack.gIAzp8/_new 2017-10-01 16:58:40.549202738 +0200 @@ -16,7 +16,7 @@ # -%define srcRoot krb5-1.15.1 +%define srcRoot krb5-1.15.2 %define vendorFiles %{_builddir}/%{srcRoot}/vendor-files/ %define krb5docdir %{_defaultdocdir}/krb5 @@ -29,7 +29,7 @@ BuildRequires: libcom_err-devel BuildRequires: libselinux-devel BuildRequires: ncurses-devel -Version: 1.15.1 +Version: 1.15.2 Release: 0 Summary: MIT Kerberos5 implementation and libraries with minimal dependencies License: MIT ++++++ krb5.spec ++++++ --- /var/tmp/diff_new_pack.gIAzp8/_old 2017-10-01 16:58:40.573199362 +0200 +++ /var/tmp/diff_new_pack.gIAzp8/_new 2017-10-01 16:58:40.573199362 +0200 @@ -25,7 +25,7 @@ BuildRequires: libcom_err-devel BuildRequires: libselinux-devel BuildRequires: ncurses-devel -Version: 1.15.1 +Version: 1.15.2 Release: 0 Summary: MIT Kerberos5 Implementation--Libraries License: MIT ++++++ krb5-1.15.1.tar.gz -> krb5-1.15.2.tar.gz ++++++ /work/SRC/openSUSE:Factory/krb5/krb5-1.15.1.tar.gz /work/SRC/openSUSE:Factory/.krb5.new/krb5-1.15.2.tar.gz differ: char 5, line 1

1 0