openSUSE Factory
Threads by month
- ----- 2025 -----
- January
- ----- 2024 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2023 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2022 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2021 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2020 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2019 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2018 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2017 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2016 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2015 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2014 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2013 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2012 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2011 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2010 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2009 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2008 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2007 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2006 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2005 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2004 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2003 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2002 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2001 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
March 2019
- 103 participants
- 79 discussions
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=opensuse&version=42.3&bui…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Distribution&q…
When you reply to discuss some issues, make sure to change the subject.
Please use the test plan at
https://docs.google.com/spreadsheets/d/1AGKijKpKiJCB616-bHVoNQuhWHpQLHPWCb3…
to record your testing efforts and use bugzilla to report bugs.
Packages changed:
biosdevname
btrfsmaintenance
conduit
gconf2-branding-openSUSE (42.1 -> 42.3)
ibus
kactivitymanagerd
kde-user-manager
kernel-source (4.4.73 -> 4.4.74)
libxml2
libzypp (16.12.0 -> 16.13.0)
lightdm
marble
mc
plasma5-integration
plasma5-openSUSE
postgresql (9.4 -> 9.6)
python-coverage (3.7.1 -> 4.3.4)
ucode-intel (20160714 -> 20170511)
yast2-bootloader (3.2.22 -> 3.2.23)
yast2-ntp-client (3.2.9 -> 3.2.12)
=== Details ===
==== biosdevname ====
- Duplicate naming of SRIOV VFs by biosdevname when VPD_DCM
Strings are present in VFs (bsc#1042185)
* Add: biosdevname_avoid_duplicates.patch
==== btrfsmaintenance ====
- Require btrfsprogs (bsc#1047226)
- update to 0.2
- updated documentation
- no hardcoded paths to external utilities
- fixed logger name typos for 'journal' target
- defrag fixes (sysconfig, find arguments)
- Removed patch: balance-typo.patch
- Added patch: sysconfig-override-trim.diff
- Add balance-typo.patch (bnc#986543)
- version 0.1.1
- fix typo and make journal logging target work
- cron refresh: remove bashism
- Removed patches:
* 0003-Add-COPYING-file.patch
* 0011-cron-refresh-remove-debuggiong-output.patch
- cron script symlinks are not created on first installation (bsc#907343)
- add COPYING to package
- refresh script: remove extra messages
- add uninstall targets
- fix refresh service
- adjust sysconfig defaults
- Add more package dependencies (cron, zypp-plugin)
- minor bugfixes
- Add supplements(btrfsprogs)
- initial version 0.1
==== conduit ====
Subpackages: conduit-lang
- Use python-vobject instead of vobject per python-vobject change in 42.3.
==== gconf2-branding-openSUSE ====
Version update (42.1 -> 42.3)
- do not build novell-sound-theme in the gconf2-branding-SLED build
to prevent duplicated binaries in openSUSE Leap. The
novell-sound-theme is taken from gconf2-branding-SLES sources on
both the SLED product and the SLES WE module. bsc#1046099
- bump versions
==== ibus ====
Subpackages: ibus-branding-openSUSE-KDE ibus-gtk ibus-gtk-32bit ibus-gtk3 ibus-lang libibus-1_0-5 libibus-1_0-5-32bit python-ibus typelib-1_0-IBus-1_0
- Update ibus.spec: copy auto-start files to SOURCE directory
to enable modifications before compile.
- Add ibus-disable-engines-preload-in-GNOME.patch: Disable load
preload-engines actions in SLE, which is unnecessary for mono IMF
in SLE and may cause CJK user login failed (bsc#1036729).
==== kactivitymanagerd ====
- Recommend -lang package
==== kde-user-manager ====
- Recommend -lang package
==== kernel-source ====
Version update (4.4.73 -> 4.4.74)
Subpackages: kernel-default kernel-default-devel kernel-devel kernel-docs kernel-macros kernel-syms
- Delete patches.kabi/kabi-fix-for-kvm-x86-fix-singlestepping-over-syscall.
No need for kABI fix yet for Leap 42.3.
- commit f0a86d9
- Fix kABI breakage by KVM CVE fix (bsc#1045922).
- commit c0308f6
- powerpc/perf: Fix branch event code for power9 (fate#321438,
Pending SUSE Kernel Fixes).
- commit e954af6
- powerpc: Fix /proc/cpuinfo revision for POWER9 DD2
(bsc#1046789).
- commit 444247f
- Refresh metadata
patches.drivers/ibmvnic-a2-Fix-assignment-of-RX-TX-IRQ-s.patch.
- commit be32be9
- drm/i915: Serialize GTT/Aperture accesses on BXT (bsc#1046821).
- commit b263fef
- Bluetooth: hidp: fix possible might sleep error in
hidp_session_thread (bsc#1031784).
- Refresh
patches.suse/kgr-0008-mark-task_safe-in-some-kthreads.patch.
- commit 18c6f3e
- KVM: x86: fix singlestepping over syscall (CVE-2017-7518
bsc#1045922).
- commit d989643
- nvme/pci: Fix stuck nvme reset (bsc#1043805).
- commit 7afe4f0
- Refresh fadump patches to upstream and add metadata
patches.arch/powerpc-fadump-add-reschedule-point-while-releasing-memory.patch.
patches.arch/powerpc-fadump-avoid-duplicates-in-crash-memory-ranges.patch
patches.arch/powerpc-fadump-avoid-holes-in-boot-memory-area-when-fadump-is-registered.patch
patches.arch/powerpc-fadump-provide-a-helpful-error-message.patch
- commit f0fb5c3
- blacklist.conf: Remove duplicated entries
- commit cb960d2
- Remove duplicated blacklist entries and put git-commit tag to patches
- commit 12a0cb2
- blacklist.conf: Remove duplicated entry.
- commit 561ddb1
- ibmvnic: Fix assignment of RX/TX IRQ's (bsc#1046589).
- commit 5fa38bf
- blacklist.conf: blacklist 570d8e939801
we do not care about the code in Documentation all that much, do we?
- commit 69d5811
- blacklist.conf: blaclist 5380e5644afb
it is just not worth backporting without any explicit report where a
silently truncated success would lead to a real bug.
- commit fc28626
- blacklist.conf: unnecessary patch
The bug triggers only upon a malformed descriptor and the comparison
is so that our buffer would be too large not too small so no overflow.
The device would not work, but it won't anyway.
- commit 99f8a16
- Rearrange the previous patches for hpsa and smartpqi to the right position.
- commit a1f1f27
- Update
patches.fixes/xfs-split-default-quota-limits-by-quota-type.patch
(bsc#1040941).
Fix the bug nr used.
- commit 115ba75
- printk: Correctly handle preemption in console_unlock()
(bsc#1046434).
- commit 0a3c2a4
- printk/xen: Force printk sync mode when migrating Xen guest
(bsc#1043347).
- commit e13596b
- btrfs: disable possible cause of premature ENOSPC (bsc#1040182)
- commit 8bf31da
- rbd: make sure pages are freed by libceph (bsc#1045596).
- rbd: drop extra rbd_img_request_get (bsc#1045596).
- commit c8719f2
- dm-raid: Do not call BUG() in __rdev_sectors() (bsc#1046264).
- commit 0b1aab0
- btrfs: Round down values which are written for total_bytes_size
(bsc#1043912).
- btrfs: Manually implement device_total_bytes getter/setter
(bsc#1043912).
- commit c4d2eb7
- pipe: cap initial pipe capacity according to pipe-max-size limit
(bsc#1045330).
- commit 4ee3ec2
- Blacklist drivers/net/ethernet/ibm/emac
We do not build the driver.
- commit d432b2b
- blacklist.conf: this patch breaks the API
It disallows some operations that are now allowed
- commit 98325c2
- arm64: Update config files. (bsc#1036737)
Disable XGENE_PMU.
- commit 7bb0115
- Disable Xilinx network drivers (bsc#1046170).
- commit 656fc83
- hwpoison, memcg: forcibly uncharge LRU pages (bnc#1046105).
- commit 2b252e1
- blacklist.conf: blacklist 570d8e939801
the issue is visible only when 80df554275c2 is applied (4.7+ and not
backported to our trees)
- commit 47b83ce
- config/x86_64: make CONFIG_SERIAL_8250_DW and *_MID built-in (bsc#1024449)
- commit 2e3ca7e
- Refresh
patches.drivers/0477-nvme-add-hostid-token-to-fabric-options.patch.
Update mainline references.
- commit eee1109
- fs/exec.c: account for argv/envp pointers (bnc#1039354, CVE-2017-1000365).
- commit 7418d0f
- Refresh ibmvnic patch metadata
patches.drivers/ibmvnic-98-ibmvnic-Correct-return-code-checking-for-ibmvnic_init-during-probe.patch.
patches.drivers/ibmvnic-a0-ibmvnic-Fix-incorrectly-defined-ibmvnic_request_map_rsp-structure.patch.
patches.drivers/ibmvnic-a1-ibmvnic-Fix-error-handling-when-registering-long-term-mapped-buffers.patch.
- commit babc17a
- Refresh metadata patches.fixes/powerpc-tm-Fix-stack-pointer-corruption-in-__tm_recheckpoint.
- commit 0b5bdc6
- powerpc/ftrace: Pass the correct stack pointer for
DYNAMIC_FTRACE_WITH_REGS (FATE#322421).
- commit 936e653
- nvme: add hostid token to fabric options (bsc#1045293).
- commit 52dffb9
- iw_cxgb4: Fix error return code in c4iw_rdev_open()
(bsc#1026570).
- RDMA/iw_cxgb4: Always wake up waiter in c4iw_peer_abort_intr()
(bsc#1026570).
- commit 2ce43b1
- clocksource/drivers/arm_arch_timer: Fix read and iounmap of
incorrect variable (bsc#1045937).
- commit 594f037
- Linux 4.4.74 (CVE-2017-1000364 bnc#1012382 bnc#1039348
bnc#1045340 bsc#1031717 bsc#1043231).
- Delete
patches.drivers/media-pvrusb2-reduce-stack-usage-pvr2_eeprom_analyze.
- Delete
patches.drivers/media-vb2-Fix-an-off-by-one-error-in-vb2_plane_vaddr.
- Delete
patches.drivers/staging-rtl8188eu-prevent-an-underflow-in-rtw_check_.
- Delete
patches.fixes/mm-fix-new-crash-in-unmapped_area_topdown.patch.
- Delete
patches.fixes/mm-larger-stack-guard-gap-between-vmas.patch.
- commit 5e41880
- tty: Fix ldisc crash on reopened tty (bnc#1043488).
- commit 04cca20
- tty: Destroy ldisc instance on hangup (bnc#1043488).
- tty: Refactor tty_ldisc_reinit() for reuse (bnc#1043488).
- tty: Use 'disc' for line discipline index name (bnc#1043488).
- tty: Move tty_ldisc_kill() (bnc#1043488).
- tty: Handle NULL tty->ldisc (bnc#1043488).
- tty: Prepare for destroying line discipline on hangup
(bnc#1043488).
- tty: Reset c_line from driver's init_termios (bnc#1043488).
- tty: Simplify tty_set_ldisc() exit handling (bnc#1043488).
- commit c016cca
- kabi: ignore fs_info parameter for tracepoints that didn't have it (bsc#1044912).
- commit 24869ea
==== libxml2 ====
Subpackages: libxml2-2 libxml2-2-32bit libxml2-devel libxml2-tools
- Security fix:
* libxml2-CVE-2017-7376.patch [bsc#1044887, CVE-2017-7376]
* Increase buffer space for port in HTTP redirect support
- Security fix:
* libxml2-CVE-2017-7375.patch [bsc#1044894, CVE-2017-7375]
* Prevent unwanted external entity reference
- Upstream patches updated and with tests:
* libxml2-CVE-2017-9047.patch and libxml2-CVE-2017-9048.patch
merged into libxml2-CVE-2017-9047.patch
[bsc#1039066, bsc#1039661]
* libxml2-CVE-2017-9049.patch and libxml2-CVE-2017-9050.patch
merged into libxml2-CVE-2017-9049.patch
[bsc#1039063, bsc#1039064]
==== libzypp ====
Version update (16.12.0 -> 16.13.0)
- Adapt loop mounting of iso images (bsc#1038132, bsc#1033236)
- Adjust zypp.conf for openSUSE Tumbleweed (bsc#1031756)
- Change arch variable names conflicting with compiler macros (fixes #70)
- Fix potential crash if repo has no baseurl (bnc#1043218)
- version 16.13.0 (0)
==== lightdm ====
Subpackages: liblightdm-gobject-1-0 lightdm-lang
- Augment patch to also resolve the target of symlink sessions
for detemining the preselected option:
* ignore-known-symlink-sessions.patch
==== marble ====
Subpackages: libastro1 libmarblewidget-qt5-27 marble-data marble-devel marble-doc marble-kde marble-lang
- Add Fix-utm-enum-value.patch and reverse-apply it, this upstream
commit causes a crash when adding bookmarks if switched to UTM
view angles because the necessary handler functions for the
dialog are not implemented yet (boo#1044747, kde#381872)
- Add Fix-plain-map-and-political-map-showing-no-content.patch to
fix the plain map and the political map being not displayed at
all (kde#379297)
==== mc ====
Subpackages: mc-lang
- sftp.patch: Backport upstream fixes for SFTP
(boo#1004280, boo#1042797)
==== plasma5-integration ====
- Move the Recommends: %{name}-plugin-lang to the
plasma5-integration-plugin sub package, otherwise the
translations won't get installed as there is no main package
(boo#1027925)
- Actually apply the aforementioned patch (shouldn't the source validator
have warned?)
==== plasma5-openSUSE ====
Subpackages: plasma5-defaults-openSUSE plasma5-theme-openSUSE plasma5-workspace-branding-openSUSE sddm-theme-openSUSE
- Fix installation of the sddm theme files (boo#1047254)
==== postgresql ====
Version update (9.4 -> 9.6)
Subpackages: postgresql-contrib postgresql-devel postgresql-docs postgresql-server
- Bump version and defaultpackage to 9.6.
- Move ~postgres/.bash_profile to postgresql-server to avoid a
file conflict between the versioned server packages.
- Bump version and defaultpackage to 9.4.
- Bump version and defaultpackage to 9.3.
- Change license string to PostgreSQL.
- Make all dummy packages noarch.
- Make PostgreSQL 9.2 the default.
- Reduce the postgresql packages with unversioned names to dummy
packages that require the respective versioned package names.
==== python-coverage ====
Version update (3.7.1 -> 4.3.4)
- uninstall alternatives in %postun
- update for singlespec
- update to 4.3.4:
- Using the --skip-covered option on an HTML report with 100% coverage would
cause a ?No data to report? error, as reported in issue 549. This is now
fixed; thanks, Lo�c Dachary.
- If-statements can be optimized away during compilation, for example, if 0:
or if __debug__:. Coverage.py had problems properly understanding these
statements which existed in the source, but not in the compiled bytecode.
This problem, reported in issue 522, is now fixed.
- If you specified --source as a directory, then coverage.py would look for
importable Python files in that directory, and could identify ones that had
never been executed at all. But if you specified it as a package name, that
detection wasn?t performed. Now it is, closing issue 426. Thanks to Lo�c
Dachary for the fix.
- If you started and stopped coverage measurement thousands of times in your
process, you could crash Python with a ?Fatal Python error: deallocating
None? error. This is now fixed. Thanks to Alex Groce for the bug report.
- On PyPy, measuring coverage in subprocesses could produce a warning: ?Trace
function changed, measurement is likely wrong: None?. This was spurious,
and has been suppressed.
- Previously, coverage.py couldn?t start on Jython, due to that
implementation missing the multiprocessing module (issue 551). This problem
has now been fixed. Also, issue 322 about not being able to invoke coverage
conveniently, seems much better: jython -m coverage run myprog.py works
properly.
- Let?s say you ran the HTML report over and over again in the same output
directory, with --skip-covered. And imagine due to your heroic test-writing
efforts, a file just acheived the goal of 100% coverage. With coverage.py
4.3, the old HTML file with the less-than-100% coverage would be left
behind. This file is now properly deleted.
- update to Version 4.3.1 ? 2016-12-28:
- Some environments couldn?t install 4.3, as described in issue 540. This is
now fixed.
- The check for conflicting --source and --include was too simple in a few
different ways, breaking a few perfectly reasonable use cases, described in
issue 541. The check has been reverted while we re-think the fix for issue 265.
- update to Version 4.3 ? 2016-12-27:
Special thanks to Lo�c Dachary, who took an extraordinary interest in
coverage.py and contributed a number of improvements in this release.
- The HTML report now supports a --skip-covered option like the other
reporting commands. Thanks, Lo�c Dachary for the implementation, closing
issue 433.
- Subprocesses that are measured with automatic subprocess measurement used
to read in any pre-existing data file. This meant data would be incorrectly
carried forward from run to run. Now those files are not read, so each
subprocess only writes its own data. Fixes issue 510.
- Coverage.py wouldn?t execute sys.excepthook when an exception happened in
your program. Now it does, thanks to Andrew Hoos. Closes issue 535.
- The coverage combine command will now fail if there are no data files to
combine. The combine changes in 4.2 meant that multiple combines could lose
data, leaving you with an empty .coverage data file. Fixes issues issue 525,
issue 412, issue 516, and probably issue 511.
- The branch coverage issues described in issue 493, issue 496, and issue 502
are now fixed, thanks to Lo�c Dachary.
- Options can now be read from a tox.ini file, if any. Like setup.cfg,
sections are prefixed with ?coverage:?, so [run] options will be read from
the [coverage:run] section of tox.ini. Implements part of issue 519. Thanks,
Stephen Finucane.
- Specifying both --source and --include no longer silently ignores the
include setting, instead it fails with a message. Thanks, Nathan Land and
Lo�c Dachary. Closes issue 265.
- Coverage.py can now search .pex files for source, just as it can .zip and
.egg. Thanks, Peter Ebden.
- update to 4.2:
- Since ``concurrency=multiprocessing`` uses subprocesses, options specified on
the coverage.py command line will not be communicated down to them. Only
options in the configuration file will apply to the subprocesses.
Previously, the options didn't apply to the subprocesses, but there was no
indication. Now it is an error to use ``--concurrency=multiprocessing`` and
other run-affecting options on the command line. This prevents
failures like those reported in `issue 495`_.
- Filtering the HTML report is now faster, thanks to Ville Skytt�.
- update to 4.0.3:
- Fixed a mysterious problem that manifested in different ways: sometimes
hanging the process (`issue 420`_), sometimes making database connections
fail (`issue 445`_).
- The XML report now has correct ``<source>`` elements when using a
``--source=`` option somewhere besides the current directory. This fixes
`issue 439`_. Thanks, Arcady Ivanov.
- Fixed an unusual edge case of detecting source encodings, described in
`issue 443`_.
- Help messages that mention the command to use now properly use the actual
command name, which might be different than "coverage". Thanks to Ben Finney,
this closes `issue 438`_.
- add LICENSE.txt
- Pre require coreutils. This package is needed for the rm call in the pre section.
Subprocess failed. Error: RPM failed: /var/tmp/rpm-tmp.gONanE: line 3: rm: command not found
- specfile:
* updated license
* updated update-alternatives
* README.txt -> README.rst
- update to version 4.0:
(long list, see http://coverage.readthedocs.org/en/latest/changes.html)
- fix rhel deps by depending on /usr/sbin/update-alternatives
==== ucode-intel ====
Version update (20160714 -> 20170511)
- Update to version 20170511
- Update to version 20161104.
==== yast2-bootloader ====
Version update (3.2.22 -> 3.2.23)
- AuotYaST configuration: Set StorageDevices flag disks_valid
to true. So libstorage can scan valid disks and "/" partition
can be found. (bnc#1043132)
- 3.2.23
==== yast2-ntp-client ====
Version update (3.2.9 -> 3.2.12)
- Resrict records are written at the end but the default file and
most profiles use them at the beginning, which mangles the file
completely (bsc#983486).
To fix it we have just changed the order of writing.
- 3.2.12
- AutoYaST: Fix crash when trying to sanitize not string values,
for example initial_sync.
- AutoYaST: Sanitize comments by only removing blank spaces at
the beginning and adding line break. This avoids augeas parse
errors (bsc#1045777).
- 3.2.11
- AutoYaST: Fix crash in CFA when creating a command record with
some key value option is given (bsc#1045968)
- 3.2.10
- AutoYaST: Comments from autoyast profile should not be sanitized
to avoid entries without space between value and comment (e.g
trustedkey 1# coment). This is caused by a bug in augeas adding
new entries.
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org
2
1
Can this be true? If so, why? Zypper won't let me upgrade acpid without
breakage unless systemd is installed too. I have systemd locked out, as I'd
rather test things I can understand in Factory, not major overhaul stuff.
--
"The wise are known for their understanding, and pleasant
words are persuasive." Proverbs 16:21 (New Living Translation)
Team OS/2 ** Reg. Linux User #211409 ** a11y rocks!
Felix Miata *** http://fm.no-ip.com/
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
For additional commands, e-mail: opensuse-factory+help(a)opensuse.org
4
3
Hi Jan, all,
I'd like to carry our OBS dicussion to a wider audience
(https://build.opensuse.org/request/show/672510)
The question is whether we can assume that "/bin/sh" links to bash,
in particular whether rpm scriptlets without explicit -p interpreter
can be assumed to interpreted by bash.
I'm aware that, in principle, /bin/sh is supposed to be the Bourne
shell on Unix systems. But as a matter of fact, on current openSUSE, it
is not. Unless it's tampered with, /bin/sh is a symlink to /bin/bash.
bash is not started in full POSIX mode if invoked as /bin/sh, and even
if it's in POSIX mode, it supports some extensions over the POSIX shell
spec (e.g. the [[ ]] construct), which makes it behave differently than
another shell not supporting [[ ]] would (*). Problably there are more
differences, I can't claim to know them all.
Here are some arguments why I think it'd be reasonable to assume that
/bin/sh is bash on openSUSE:
1. patterns-base-minimal_base depends on bash, and the /bin/sh symlink
is a non-configurable part of the "bash" package.
2. we could handle /bin/sh via /etc/alternatives, but we don't.
3. our Wiki suggests testing failing scriplets using "bash -xv"
(https://en.opensuse.org/openSUSE:Packaging_scriptlet_snippets)
4. /bin/sh has pointed to bash for a long time (not sure how long
exactly).
FTR, Fedora basically guarantees (sh == bash) for the purpose of rpm
scriptlets (https://fedoraproject.org/wiki/Packaging:Scriptlets) So
Fedora <-> openSUSE portability may also be an issue to consider.
If we can't assume that /bin/sh is bash, what else can we assume? I
recall from earlier work that writing really 100% compatible shell code
for all kinds of environments is really hard. E.g., "[" isn't 100%
portable either, even though it's part of the POSIX "test" standard
(http://pubs.opengroup.org/onlinepubs/9699919799/utilities/test.html)
We should have clear rules which syntax expressions can be used in rpm
scriptlets, and which can't. IMO we should define one of the various
existing shells as a reference by saying "if it's supported
by this shell, it's valid scriptlet code". That'd be easier (especially
for testing compliance) than referring to a spec. That reference shell
doesn't have to be bash, of course.
Thanks
Martin
(*) For example:
# ln -s /usr/bin/echo '/usr/bin/[['
# ls -l /bin/sh
lrwxrwxrwx 1 root root 4 Feb 8 10:38 /bin/sh -> bash
# /bin/sh --posix -c '[[ 2 = 1 ]] && echo yes'
# dash -c '[[ 2 = 1 ]] && echo yes'
2 -eq 1 ]]
yes
--
Dr. Martin Wilck <mwilck(a)suse.com>, Tel. +49 (0)911 74053 2107
SUSE Linux GmbH, GF: Felix Imendörffer, Jane Smithard, Graham Norton
HRB 21284 (AG Nürnberg)
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org
25
147
I'm not sure, if this is bug or feature... After few days, update applet (TW,
KDE) says there are 6843 new updates (TeX, R, ... ;-). When I click to
"Install updates" error "Too many packages to process (6843/5200)" appears.
Zypper handles it well. Is it worth of bug report? To b.o.o?
Yours,
V.
--
Vojtěch Zeisek
Komunita openSUSE GNU/Linuxu
Community of the openSUSE GNU/Linux
https://www.opensuse.org/
https://trapa.cz/
8
10
23 Dec '19
Hi,
last month's status:
https://lists.opensuse.org/opensuse-factory/2018-12/msg00171.html
Last months' r-b project updates (including my work):
https://reproducible-builds.org/blog/posts/195/
https://reproducible-builds.org/blog/posts/194/
https://reproducible-builds.org/blog/posts/193/
https://reproducible-builds.org/blog/posts/192/
I uploaded https://rb.zq1.de/compare.factory-20190125/ today
and rbstats are:
total-packages: 11298
build-tried: 11297
build-failed: 37
build-n-a: 107
build-succeeded: 11153
build-official-failed+na: 85
build-compare-failed: 283
build-compare-succeeded: 10870
bit-by-bit-identical: 10605
not-bit-by-bit-identical: 538
Fixed core packages since last month:
breeze5-icons dolphin libqt5-qtwebkit wireshark syntax-highlighting:
Qt rcc/qrc fix merged in Factory
https://build.opensuse.org/request/show/663360
also fixed dozens others like bitcoin.
opa-ff
CPU-detection via -march=native
https://build.opensuse.org/request/show/661771
gengetopt
https://build.opensuse.org/request/show/661735
nearly fixed:
pcre2
PGO/parallelism https://build.opensuse.org/request/show/668163
perl:
ASLR-induced randomness
https://build.opensuse.org/request/show/668211
--- ring0 ---
acl
gcc7
gcc8
--- ring1 ---
MozillaFirefox
MozillaThunderbird
ant
bsf
colord
emacs
firebird
gconf2-branding-openSUSE
gdb
gimp
gnome-documents
go1.10
go1.11
groff-full
grub2
hamcrest
installation-images
java-11-openjdk
java-1_8_0-openjdk
jing-trang
jtidy
junit
junitperf
kernel-debug
kernel-default
kernel-vanilla
kubernetes
libkolabxml
libqt5-qtscript
libreoffice
mono-core
mozilla-nss
pcp
php7
python-base
python3-base
qdox
release-notes-openSUSE
ruby2.5
rubygem-gem2rpm
rust
scons
transfig
virtualbox
xmlbeans
yodl
If you are interested in why they vary:
acl:
date+time in /usr/share/locale/en(a)boldquot/LC_MESSAGES/acl.mo
-PO-Revision-Date: 2018-10-23 01:45+0000
+PO-Revision-Date: 2033-11-24 15:01+0000
gcc7 gcc8:
indeterminism from PGO/parallelism + mtime. See also
https://github.com/bmwiedemann/theunreproduciblepackage/tree/master/pgo
MozillaFirefox MozillaThunderbird:
date+time, rust, other
has bug around update.locale symlink
/usr/lib64/firefox/libxul.so varies from
https://github.com/rust-lang/rust/issues/57041
.../browser/extensions/langpack-ca(a)xxxxxxxxxxxxxxxxxxx/manifest.json
- "version": "20181009013946"
+ "version": "20331110172641"
apache-commons-lang3 apache-pdfbox dom4j hsqldb icu4j javassist
jing-trang jtidy junitperf jython objectweb-asm qdox tomcat xerces-j2
xpp2 xpp3:
date + mtime
in .jar + javadoc html
can be normalized by strip-nondeterminism
bsh2 cglib:
/usr/share/maven-metadata/bsh2.xml has ASLR order issues
date + mtime in .jar + javadoc html
colord
some randomness from uninitialized memory
maybe from glib-compile-resources
16-byte random profileID in .icc files from cd-create-profile
plus an uncommitted date/time fix in lib/colord/cd-it8.c:
priv->enable_created = FALSE
ecj
ASLR + date?
/usr/share/maven-metadata/ecj.xml has alias entries in random order
emacs
dumps lisp interpreter memory to create its binaries
(similar to clisp)
causes variations in /usr/bin/emacs-*
firebird:
ships unreproducible database
http://tracker.firebirdsql.org/browse/CORE-5548
gconf2-branding-openSUSE
embeds mtime values in
/etc/gconf/gconf.xml.vendor/%gconf-tree.xml
gdb
contains testresults
https://bugzilla.opensuse.org/show_bug.cgi?id=1110708
gimp
ASLR
12 byte differ in bKGD header
from gegl
GEGL_USE_OPENCL=no GEGL_SWAP=ram /usr/bin/gegl
../../icons/Symbolic/64/gimp-texture.png -o 64/gimp-texture.png --
gegl:invert-gamma
gnome-documents
gnome-documents-getting-started.pdf has random ID from inkscape
go1.10 go1.11:
variations in /usr/lib64/go/1.10/pkg/obj/go-build/*/*-a
groff-full
date+time + unknown reason?
.ps files vary
.html files have CreationDate
grub2
mtime + readdir
https://savannah.gnu.org/bugs/index.php?54841
hamcrest
java .class files vary from
build/temp/hamcrest-core/generated-code
/org/hamcrest/CoreMatchers.java written by ant
javadoc html varies
installation-images
many variations from mtimes + filesys/readdir and %post scripts
java-1_8_0-openjdk java-10-openjdk java-11-openjdk
various .jar .zip .html .jmod
ordering in /usr/lib64/jvm/java-10-openjdk-10/lib/classlist
kernel-debug kernel-default kernel-vanilla
date+time ; random keys?
"Build time autogenerated kernel key0
..181009012108Z..21180915012108Z0.1,0"
kubernetes:
fixed upstream: order in man-pages
https://github.com/kubernetes/kubernetes/pull/68983
maybe fixed upstream: random build-ids
libkolabxml
unknown/ASLR?
from build/kolabformat-xcal-schema.cxx
created by compiled/xsdbin.cxx
libqt5-qtscript
filesys order
libreoffice
various .jar .so .dat/.bau (.zip) javadoc_log.txt
mono-core
date+time ; other
mozilla-nss
DSA random temp-key from shlibsign
https://bugzilla.opensuse.org/show_bug.cgi?id=1081723
pcp
/var/lib/pcp/testsuite/perfevent/perfevent_coverage has random diffs
from gcov / .gcno files causing diff in .o ?
php7
date / EPOCH timestamps
e.g. in /usr/share/php7/PEAR/.channels/__uri.reg
python-base python3-base:
PGO
varies .o files that go into /usr/lib64/libpython3.6m.so.1.0
.pyc files vary
python-base shows influence from date+hostname (in PGO?)
python-numpy
1 .pyc file varied
release-notes-openSUSE
partial fix in https://github.com/openSUSE/daps/issues/482
date+time in .pdf ; needs work on fop java code
random id values in .html
ruby2.5
2 gemspec files have date
created.rid varies
rubygem-gem2rpm
mtime ?
/usr/lib64/ruby/gems/2.5.0/cache/checksums.yaml varies
rust
asm diffs in cargo and others from llvm's llc
- filed at https://github.com/rust-lang/rust/issues/57041
some progress made here with the switch to llvm7
scons
hostname in various places
tigervnc
date+time+randomness in
/usr/share/vnc/classes/META-INF/TIGERVNC.RSA
from SignJar.cmake calling jarsigner with temporary private key
partial fix merged https://github.com/TigerVNC/tigervnc/pull/765
transfig
date+time
in sample-presentation.pdf /CreationDate /ModDate
from pdflatex
virtualbox
tar + random
https://www.virtualbox.org/ticket/16854
.so files have random NT_GNU_BUILD_ID (unique build ID bitstring)
maybe from out/linux.amd64/release/obj/webservice/gsoapH_from_gsoap.h
that has date+time in comment
/usr/share/virtualbox/extensions/VNC-5.2.16.vbox-extpack
unhandled gzip content: POSIX tar archive (GNU)
-13343137165.010505. 5...
+16773576625.010527. 5...
xmlbeans
index.xsb varies from filesystem
created in org.apache.xmlbeans.impl.tool.SchemaCompiler
yodl
pdf from latex/ghostscript/dvips/ps2pdf
additionally, on the SLE15 list
===============================
gnuplot
date+time in pdf from pdflatex
golang-github-prometheus-prometheus
date+time+random build-id
hawk2
https://bugzilla.opensuse.org/show_bug.cgi?id=1112159
ibus-libzhuyin libpinyin libzhuyin
random bytes - maybe uninitialized memory
perf
random filesys order
from nftw call in ./linux-*/tools/perf/pmu-events/jevents.c
python-keystoneauth1
https://bugs.launchpad.net/keystoneauth/+bug/1796899
5
14
[opensuse-factory] [PLEASE SPEAK UP] Disabling legacy file systems by default?
by Martin Wilck 09 Jul '19
by Martin Wilck 09 Jul '19
09 Jul '19
SUSE will blacklist a number of legacy and/or less frequently used
file systems by default on SLES for security reasons.
The proposed list can be seen here:
https://github.com/openSUSE/suse-module-tools/pull/5/commits/8cb42fb6658f21…
The question is now whether we should do the same for openSUSE.
I figure that while the above list is probably not controversial for
enterprise customers, openSUSE users may have objections to some
items on the list. Please speak up if you do.
In any case, note that even if we do this, you can re-enable the
filesystems you need by simply commenting out lines in the blacklist
file.
Regards,
Martin
--
Dr. Martin Wilck <mwilck(a)suse.com>, Tel. +49 (0)911 74053 2107
SUSE Linux GmbH, GF: Felix Imendörffer, Jane Smithard, Graham Norton
HRB 21284 (AG Nürnberg)
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org
45
209
02 Jun '19
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&versio…
Please do not reply to this email to report issues, rather file a bug
on bugzilla.opensuse.org. For more information on filing bugs please
see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
cppcheck (1.85 -> 1.86)
cups-filters (1.21.4 -> 1.21.6)
elementary-xfce-icon-theme (0.13.1+20181113.14732d1b -> 0.13.1~git6.c377da86)
festival
flatpak-builder (1.0.0 -> 1.0.1)
fwupd
gnu-unifont-bitmap-fonts (11.0.02 -> 11.0.03)
gstreamer-plugins-bad
health-checker
kernel-firmware (20181026 -> 20181218)
kernel-source (4.19.8 -> 4.19.11)
libassuan
libinput (1.12.3 -> 1.12.4)
libmtp
libyui-qt-pkg (2.45.24 -> 2.45.25)
llvm (6.0.1 -> 7.0.0)
llvm4
llvm6
llvm7
multipath-tools (0.7.9+58+suse.0790830 -> 0.7.9+85+suse.766b95e)
openldap2 (2.4.46 -> 2.4.47)
osinfo-db
postfix
protobuf
python-PySocks
python-Pygments
python-SecretStorage
python-base
python-ipaddr
python-ndg-httpsclient
python-parso
python-passlib
python-rpm-macros
python-urlgrabber
qqc2-desktop-style (5.52.0 -> 5.53.0)
systemd-presets-common-SUSE
tracker
=== Details ===
==== cppcheck ====
Version update (1.85 -> 1.86)
- Update to 1.86
* Many fixes in the template simplifier
* Several fixes in the abstract syntax tree.
Checking improvements:
* New check: passing address of char to function that expects a
strz
* New check: shadow variables
* Improved lifetime checking
* Improved STL iterators checking
* Improved data flow analysis
New libraries:
* zlib
* googletest
Addons:
* misra.py: Fixes for suppressions and exclusions
* namingng.py: New addon to check naming conventions. Rules are
specified in json file.
==== cups-filters ====
Version update (1.21.4 -> 1.21.6)
- Update to version 1.21.6:
* Bug fix release, mainly for cups-browsed to avoid crashes and
infinite printer removal/re-creation loops and spurious local
queues for local CUPS printers. Also expanded PostScript
interpreter bug workaround to more Apple LaserWriter models.
* cups-browsed: To find out whether a DNS-SD-discovered printer
is from the local machine, use not only the flags in the Avahi
lookup result but also check the host name.
* cups-browsed: When a local CUPS queue pointing to a remote CUPS
printer was removed and re-created to make it a permanent
queue, on_printer_deleted() was triggered by cupsd's
notification to re-create a lost queue. Now
on_printer_deleted() checks whether the queue is really gone
and only re-creates then.
* cups-browsed: When updating the CUPS queues, also removed and
unregistered queues and not only created queues got checked for
HTTP timeouts, which caused crashes on shutdown.
* pdftops: Use the PS interpreter of Poppler for all Apple
LaserWriter 16/600, 4/600, 12/640, 12/600, 12/660 as they all
seem to not work with Ghostscript's PS output.
* cups-browsed: On shutdown queues got removed even if they still
had jobs.
- Changes from version 1.21.5:
* Bug fix release, to build with Poppler 0.71 and with
cups-browsed converting temporary CUPS queues reliably to
permanent queues.
* cups-browsed: We cannot reliably determine whether a CUPS queue
is temporary, so we apply the procedure to make a temporary
queue permanent to any unshared queue.
* pdftoraster, pdftopdf, pdftoijs, pdftoopvp: Do not use the
Poppler-specific "GBool", "gFalse", "gTrue" any more, as
Poppler has switched to standard "bool", "false", "true" in
version 0.71.0.
==== elementary-xfce-icon-theme ====
Version update (0.13.1+20181113.14732d1b -> 0.13.1~git6.c377da86)
- Update to version 0.13.1~git6.c377da86:
* Add yast specific package-* icons
- Renamed version
==== festival ====
- Do not ignore errors from useradd/groupadd.
==== flatpak-builder ====
Version update (1.0.0 -> 1.0.1)
- Update to version 1.0.1:
+ Run appstream-util mirror-screenshots in the sandbox, rather
than on the host, as the host might not have a new enough
appstream-glib.
+ Fix build cache when a module has uncommon characters in the
name.
==== fwupd ====
Subpackages: fwupd-lang libfwupd2
- Add pesign-obs-integration to BuildRequires and add fwupd*.efi to
BRP_PESIGN_FILES to get it signed
- Add LC_IMAGES and use efivar only if %{with efi_fw_update}
+ Also update the version requirement of efivar
- Disable Redfish and NVME plugins if %{without efi_fw_update}
since those two plugins require efivar
- Remove fwup from BuildRequires since fwupdate is already merged
into fwupd.
==== gnu-unifont-bitmap-fonts ====
Version update (11.0.02 -> 11.0.03)
- unifont 11.0.03:
* Add Nushu glyphs
* Final forms for Kana placeholder glyphs
* other minor changes to single glyphs
==== gstreamer-plugins-bad ====
Subpackages: gstreamer-plugins-bad-lang libgstadaptivedemux-1_0-0 libgstbadaudio-1_0-0 libgstbadvideo-1_0-0 libgstbasecamerabinsrc-1_0-0 libgstcodecparsers-1_0-0 libgstisoff-1_0-0 libgstmpegts-1_0-0 libgstphotography-1_0-0 libgsturidownloader-1_0-0 libgstwayland-1_0-0 libgstwebrtc-1_0-0
- Add gst-bad-fdkaac2-fix.patch: fdkaac: Fixes for compatibility
with libfdk-aac 2.0.0.
==== health-checker ====
- Split the CaaSP plugin into a MicroOS and CaaSP part
==== kernel-firmware ====
Version update (20181026 -> 20181218)
Subpackages: ucode-amd
- Update to version 20181218:
* Revert "amdgpu: update vega10 fw for 18.50 release"
* brcm: Add 4330 NVRAM for the Prowise PT301 tablet
* brcm: Add 43430 NVRAM for the Chuwi Vi8 Plus tablet
* brcm: Add 43340 based AP6234 NVRAM for the Meegopad T08 HDMI stick
* brcm: Add 43430a0 based AP6212 NVRAM for the Jumper EZpad mini 3 tablet
* brcm: Add 43430a0 based AP6212 NVRAM for the Onda V80 Plus tablet
* brcm: Add 4356 based AP6356 NVRAM for the GPD win handheld
* brcm: Add brcmfmac43362-sdio.lemaker,bananapro.txt symlink
* brcm: Add 43362 based AP6210 NVRAM for the Cubietech Cubietruck
* WHENCE: Put quotes around brcmfmac NVRAM filenames
* check_whence.py: Add support for filenames with spaces in them
* rtl_bt: Add firmware and configuration files for the Bluetooth part of RTL8723BS
- Update to version 20181217:
* iwlwifi: update firmwares for 8000 series
* iwlwifi: add -43.ucode for 9000 series
* iwlwifi: update -41.ucode for 9000 series
* brcm: provide new firmwares for BCM4366 chipset
* Mellanox: Add new mlxsw_spectrum firmware 13.1910.622
* cavium: Update firmware for CNN55XX crypto driver
* amdgpu: update vega12 fw for 18.50 release
* amdgpu: update vega10 fw for 18.50 release
* amdgpu: update raven fw for 18.50 release
* amdgpu: update polaris11 fw for 18.50 release
* amdgpu: update polaris10 fw for 18.50 release
* amdgpu: add firmware for vega12
* amdgpu: Add new polaris MC firmwares
* amdgpu: Add new polaris SMC firmwares
* linux-firmware: Update AMD cpu microcode
* nfp: update Agilio SmartNIC flower firmware to rev AOTC-2.10.A.13
* microchip: add firmware for VSC8574 and VSC8584 Ethernet PHYs
* linux-firmware: intel: Update Cannonlake audio firmware.
* firmware/huc/bxt: Add huC Update for BXT
* nfp: update Agilio SmartNIC firmware to rev 2.1.16
* cxgb4: update firmware to revision 1.21.5.0
==== kernel-source ====
Version update (4.19.8 -> 4.19.11)
Subpackages: kernel-default kernel-default-devel kernel-devel kernel-docs kernel-macros kernel-syms
- Linux 4.19.11 (bnc#1012628).
- sched/pelt: Fix warning and clean up IRQ PELT config
(bnc#1012628).
- scsi: raid_attrs: fix unused variable warning (bnc#1012628).
- staging: olpc_dcon: add a missing dependency (bnc#1012628).
- slimbus: ngd: mark PM functions as __maybe_unused (bnc#1012628).
- i2c: aspeed: fix build warning (bnc#1012628).
- ARM: dts: qcom-apq8064-arrow-sd-600eval fix graph_endpoint
warning (bnc#1012628).
- drm/msm: fix address space warning (bnc#1012628).
- pinctrl: sunxi: a83t: Fix IRQ offset typo for PH11
(bnc#1012628).
- aio: fix spectre gadget in lookup_ioctx (bnc#1012628).
- scripts/spdxcheck.py: always open files in binary mode
(bnc#1012628).
- fs/iomap.c: get/put the page in iomap_page_create/release()
(bnc#1012628).
- userfaultfd: check VM_MAYWRITE was set after verifying the
uffd is registered (bnc#1012628).
- arm64: dma-mapping: Fix FORCE_CONTIGUOUS buffer clearing
(bnc#1012628).
- block/bio: Do not zero user pages (bnc#1012628).
- ovl: fix decode of dir file handle with multi lower layers
(bnc#1012628).
- ovl: fix missing override creds in link of a metacopy upper
(bnc#1012628).
- MMC: OMAP: fix broken MMC on OMAP15XX/OMAP5910/OMAP310
(bnc#1012628).
- mmc: core: use mrq->sbc when sending CMD23 for RPMB
(bnc#1012628).
- mmc: sdhci-omap: Fix DCRC error handling during tuning
(bnc#1012628).
- mmc: sdhci: fix the timeout check window for clock and reset
(bnc#1012628).
- fuse: continue to send FUSE_RELEASEDIR when FUSE_OPEN returns
ENOSYS (bnc#1012628).
- ARM: mmp/mmp2: fix cpu_is_mmp2() on mmp2-dt (bnc#1012628).
- ARM: dts: bcm2837: Fix polarity of wifi reset GPIOs
(bnc#1012628).
- dm thin: send event about thin-pool state change _after_
making it (bnc#1012628).
- dm cache metadata: verify cache has blocks in
blocks_are_clean_separate_dirty() (bnc#1012628).
- dm: call blk_queue_split() to impose device limits on bios
(bnc#1012628).
- tracing: Fix memory leak in create_filter() (bnc#1012628).
- tracing: Fix memory leak in set_trigger_filter() (bnc#1012628).
- tracing: Fix memory leak of instance function hash filters
(bnc#1012628).
- media: vb2: don't call __vb2_queue_cancel if vb2_start_streaming
failed (bnc#1012628).
- powerpc/msi: Fix NULL pointer access in teardown code
(bnc#1012628).
- powerpc: Look for "stdout-path" when setting up legacy consoles
(bnc#1012628).
- drm/nouveau/kms: Fix memory leak in nv50_mstm_del()
(bnc#1012628).
- drm/nouveau/kms/nv50-: also flush fb writes when rewinding
push buffer (bnc#1012628).
- Revert "drm/rockchip: Allow driver to be shutdown on
reboot/kexec" (bnc#1012628).
- drm/i915/gvt: Fix tiled memory decoding bug on BDW
(bnc#1012628).
- drm/i915/execlists: Apply a full mb before execution for
Braswell (bnc#1012628).
- drm/amdgpu/powerplay: Apply avfs cks-off voltages on VI
(bnc#1012628).
- drm/amdkfd: add new vega10 pci ids (bnc#1012628).
- drm/amdgpu: add some additional vega10 pci ids (bnc#1012628).
- drm/amdgpu: update smu firmware images for VI variants (v2)
(bnc#1012628).
- drm/amdgpu: update SMC firmware image for polaris10 variants
(bnc#1012628).
- dm zoned: Fix target BIO completion handling (bnc#1012628).
- commit 096f733
- Linux 4.19.10 (bnc#1012628).
- tcp: lack of available data can also cause TSO defer
(bnc#1012628).
- bpf: fix off-by-one error in adjust_subprog_starts
(bnc#1012628).
- IB/hfi1: Fix an out-of-bounds access in get_hw_stats
(bnc#1012628).
- ALSA: hda/realtek - Fix the mute LED regresion on Lenovo X1
Carbon (bnc#1012628).
- ALSA: hda/realtek: Enable audio jacks of ASUS UX433FN/UX333FA
with ALC294 (bnc#1012628).
- ALSA: hda/realtek: Enable audio jacks of ASUS UX533FD with
ALC294 (bnc#1012628).
- ALSA: hda/realtek: ALC294 mic and headset-mode fixups for ASUS
X542UN (bnc#1012628).
- ALSA: hda/realtek - Fixed headphone issue for ALC700
(bnc#1012628).
- ALSA: fireface: fix reference to wrong register for clock
configuration (bnc#1012628).
- dax: Check page->mapping isn't NULL (bnc#1012628).
- flexfiles: enforce per-mirror stateid only for v4 DSes
(bnc#1012628).
- ocfs2: fix potential use after free (bnc#1012628).
- initramfs: clean old path before creating a hardlink
(bnc#1012628).
- kernel/kcov.c: mark funcs in __sanitizer_cov_trace_pc() as
notrace (bnc#1012628).
- proc: fixup map_files test on arm (bnc#1012628).
- debugobjects: avoid recursive calls with kmemleak (bnc#1012628).
- hfsplus: do not free node before using (bnc#1012628).
- hfs: do not free node before using (bnc#1012628).
- mm/page_alloc.c: fix calculation of pgdat->nr_zones
(bnc#1012628).
- ocfs2: fix deadlock caused by ocfs2_defrag_extent()
(bnc#1012628).
- ACPI/IORT: Fix iort_get_platform_device_domain() uninitialized
pointer value (bnc#1012628).
- nvme-rdma: fix double freeing of async event data (bnc#1012628).
- nvme: flush namespace scanning work just before removing
namespaces (bnc#1012628).
- nvme: warn when finding multi-port subsystems without
multipathing enabled (bnc#1012628).
- fscache, cachefiles: remove redundant variable 'cache'
(bnc#1012628).
- cachefiles: Explicitly cast enumerated type in put_object
(bnc#1012628).
- fscache: fix race between enablement and dropping of object
(bnc#1012628).
- afs: Fix validation/callback interaction (bnc#1012628).
- pstore/ram: Correctly calculate usable PRZ bytes (bnc#1012628).
- pvcalls-front: fixes incorrect error handling (bnc#1012628).
- Revert "xen/balloon: Mark unallocated host memory as UNUSABLE"
(bnc#1012628).
- xen: xlate_mmu: add missing header to fix 'W=1' warning
(bnc#1012628).
- drm/ast: fixed reading monitor EDID not stable issue
(bnc#1012628).
- drm/amdgpu: Add delay after enable RLC ucode (bnc#1012628).
- net: hisilicon: remove unexpected free_netdev (bnc#1012628).
- ixgbe: recognize 1000BaseLX SFP modules as 1Gbps (bnc#1012628).
- igb: fix uninitialized variables (bnc#1012628).
- cachefiles: Fix page leak in cachefiles_read_backing_file
while vmscan is active (bnc#1012628).
- fscache: Fix race in fscache_op_complete() due to split
atomic_sub & read (bnc#1012628).
- cachefiles: Fix an assertion failure when trying to update a
failed object (bnc#1012628).
- ALSA: usb-audio: Add vendor and product name for Dell WD19 Dock
(bnc#1012628).
- netfilter: nf_tables: deactivate expressions in rule replecement
routine (bnc#1012628).
- usb: gadget: u_ether: fix unsafe list iteration (bnc#1012628).
- net: thunderx: fix NULL pointer dereference in nic_remove
(bnc#1012628).
- x86/kvm/vmx: fix old-style function declaration (bnc#1012628).
- KVM: x86: fix empty-body warnings (bnc#1012628).
- KVM: VMX: Update shared MSRs to be saved/restored on
MSR_EFER.LMA changes (bnc#1012628).
- netfilter: nf_conncount: remove wrong condition check routine
(bnc#1012628).
- netfilter: nat: fix double register in masquerade modules
(bnc#1012628).
- netfilter: add missing error handling code for register
functions (bnc#1012628).
- IB/mlx5: Fix page fault handling for MW (bnc#1012628).
- netfilter: ipv6: Preserve link scope traffic original oif
(bnc#1012628).
- drm/meson: add support for 1080p25 mode (bnc#1012628).
- thunderbolt: Prevent root port runtime suspend during NVM
upgrade (bnc#1012628).
- USB: omap_udc: fix rejection of out transfers when DMA is used
(bnc#1012628).
- USB: omap_udc: fix USB gadget functionality on Palm Tungsten E
(bnc#1012628).
- USB: omap_udc: fix omap_udc_start() on 15xx machines
(bnc#1012628).
- USB: omap_udc: fix crashes on probe error and module removal
(bnc#1012628).
- USB: omap_udc: use devm_request_irq() (bnc#1012628).
- ipvs: call ip_vs_dst_notifier earlier than ipv6_dev_notf
(bnc#1012628).
- fsi: master-ast-cf: select GENERIC_ALLOCATOR (bnc#1012628).
- bpf: fix check of allowed specifiers in bpf_trace_printk
(bnc#1012628).
- RDMA/hns: Bugfix pbl configuration for rereg mr (bnc#1012628).
- exportfs: do not read dentry after free (bnc#1012628).
- ASoC: omap-dmic: Add pm_qos handling to avoid overruns with
CPU_IDLE (bnc#1012628).
- ASoC: omap-mcpdm: Add pm_qos handling to avoid under/overruns
with CPU_IDLE (bnc#1012628).
- ASoC: omap-mcbsp: Fix latency value calculation for pm_qos
(bnc#1012628).
- tools: bpftool: fix potential NULL pointer dereference in
do_load (bnc#1012628).
- RDMA/rdmavt: Fix rvt_create_ah function signature (bnc#1012628).
- RDMA/bnxt_re: Avoid accessing the device structure after it
is freed (bnc#1012628).
- RDMA/bnxt_re: Fix system hang when registration with L2 driver
fails (bnc#1012628).
- RDMA/core: Add GIDs while changing MAC addr only for registered
ndev (bnc#1012628).
- RDMA/mlx5: Fix fence type for IB_WR_LOCAL_INV WR (bnc#1012628).
- Btrfs: send, fix infinite loop due to directory rename
dependencies (bnc#1012628).
- ARM: dts: at91: sama5d2: use the divided clock for SMC
(bnc#1012628).
- phy: qcom-qusb2: Fix HSTX_TRIM tuning with fused value for
SDM845 (bnc#1012628).
- phy: qcom-qusb2: Use HSTX_TRIM fused value as is (bnc#1012628).
- objtool: Fix segfault in .cold detection with
- ffunction-sections (bnc#1012628).
- objtool: Fix double-free in .cold detection error path
(bnc#1012628).
- ASoC: acpi: fix: continue searching when machine is ignored
(bnc#1012628).
- PCI: imx6: Fix link training status detection in link up check
(bnc#1012628).
- perf tools: Restore proper cwd on return from mnt namespace
(bnc#1012628).
- hwmon: (w83795) temp4_type has writable permission
(bnc#1012628).
- netfilter: xt_hashlimit: fix a possible memory leak in
htable_create() (bnc#1012628).
- aio: fix failure to put the file pointer (bnc#1012628).
- bpf: allocate local storage buffers using GFP_ATOMIC
(bnc#1012628).
- hwmon: (mlxreg-fan) Fix macros for tacho fault reading
(bnc#1012628).
- spi: omap2-mcspi: Add missing suspend and resume calls
(bnc#1012628).
- ASoC: dapm: Recalculate audio map forcely when card instantiated
(bnc#1012628).
- ASoC: omap-abe-twl6040: Fix missing audio card caused by
deferred probing (bnc#1012628).
- hwmon: (ina2xx) Fix current value calculation (bnc#1012628).
- s390/cpum_cf: Reject request for sampling in event
initialization (bnc#1012628).
- ASoC: qcom: Set dai_link id to each dai_link (bnc#1012628).
- ASoC: Intel: Power down links before turning off display audio
power (bnc#1012628).
- ASoC: wm_adsp: Fix dma-unsafe read of scratch registers
(bnc#1012628).
- ASoC: rockchip: add missing slave_config setting for I2S
(bnc#1012628).
- hwmon: (raspberrypi) Fix initial notify (bnc#1012628).
- hwmon (ina2xx) Fix NULL id pointer in probe() (bnc#1012628).
- s390/cio: Fix cleanup when unsupported IDA format is used
(bnc#1012628).
- s390/cio: Fix cleanup of pfn_array alloc failure (bnc#1012628).
- netfilter: nf_tables: fix use-after-free when deleting compat
expressions (bnc#1012628).
- netfilter: xt_RATEEST: remove netns exit routine (bnc#1012628).
- perf tools: Fix crash on synthesizing the unit (bnc#1012628).
- selftests: add script to stress-test nft packet path vs. control
plane (bnc#1012628).
- netfilter: nf_tables: don't skip inactive chains during update
(bnc#1012628).
- netfilter: nf_conncount: fix unexpected permanent node of list
(bnc#1012628).
- netfilter: nf_conncount: fix list_del corruption in conn_free
(bnc#1012628).
- netfilter: nf_conncount: use spin_lock_bh instead of spin_lock
(bnc#1012628).
- sysv: return 'err' instead of 0 in __sysv_write_inode
(bnc#1012628).
- arm64: dts: sdm845-mtp: Reserve reserved gpios (bnc#1012628).
- ASoC: sun8i-codec: fix crash on module removal (bnc#1012628).
- tools: bpftool: prevent infinite loop in get_fdinfo()
(bnc#1012628).
- ARM: OMAP1: ams-delta: Fix possible use of uninitialized field
(bnc#1012628).
- ARM: dts: am3517-som: Fix WL127x Wifi interrupt (bnc#1012628).
- ARM: dts: logicpd-somlv: Fix interrupt on mmc3_dat1
(bnc#1012628).
- ARM: dts: LogicPD Torpedo: Fix mmc3_dat1 interrupt
(bnc#1012628).
- ARM: dts: am3517: Fix pinmuxing for CD on MMC1 (bnc#1012628).
- staging: rtl8723bs: Fix the return value in case of error in
'rtw_wx_read32()' (bnc#1012628).
- ASoC: qdsp6: q6afe-dai: Fix the dai widgets (bnc#1012628).
- ASoC: qdsp6: q6afe: Fix wrong MI2S SD line mask (bnc#1012628).
- ASoC: rsnd: fixup clock start checker (bnc#1012628).
- ARM: OMAP2+: prm44xx: Fix section annotation on
omap44xx_prm_enable_io_wakeup (bnc#1012628).
- net: fix XPS static_key accounting (bnc#1012628).
- net: restore call to netdev_queue_numa_node_write when resetting
XPS (bnc#1012628).
- sctp: update frag_point when stream_interleave is set
(bnc#1012628).
- net: phy: sfp: correct store of detected link modes
(bnc#1012628).
- virtio-net: keep vnet header zeroed after processing XDP
(bnc#1012628).
- tun: forbid iface creation with rtnl ops (bnc#1012628).
- tcp: fix NULL ref in tail loss probe (bnc#1012628).
- tcp: Do not underestimate rwnd_limited (bnc#1012628).
- sctp: kfree_rcu asoc (bnc#1012628).
- rtnetlink: ndo_dflt_fdb_dump() only work for ARPHRD_ETHER
devices (bnc#1012628).
- Revert "net/ibm/emac: wrong bit is used for STA control"
(bnc#1012628).
- net: use skb_list_del_init() to remove from RX sublists
(bnc#1012628).
- net: Prevent invalid access to skb->prev in __qdisc_drop_all
(bnc#1012628).
- net: phy: don't allow __set_phy_supported to add unsupported
modes (bnc#1012628).
- net/mlx4_en: Change min MTU size to ETH_MIN_MTU (bnc#1012628).
- net/mlx4_core: Correctly set PFC param if global pause is
turned off (bnc#1012628).
- net: 8139cp: fix a BUG triggered by changing mtu with network
traffic (bnc#1012628).
- ipv6: sr: properly initialize flowi6 prior passing to
ip6_route_output (bnc#1012628).
- neighbour: Avoid writing before skb->head in neigh_hh_output()
(bnc#1012628).
- ipv6: Check available headroom in ip6_xmit() even without
options (bnc#1012628).
- ipv4: ipv6: netfilter: Adjust the frag mem limit when truesize
changes (bnc#1012628).
- commit 9284d89
- Linux 4.19.9 (bnc#1012628).
- media: vicodec: lower minimum height to 360 (bnc#1012628).
- media: cec: check for non-OK/NACK conditions while claiming a LA
(bnc#1012628).
- media: omap3isp: Unregister media device as first (bnc#1012628).
- media: ipu3-cio2: Unregister device nodes first, then release
resources (bnc#1012628).
- iommu/vt-d: Fix NULL pointer dereference in prq_event_thread()
(bnc#1012628).
- brcmutil: really fix decoding channel info for 160 MHz bandwidth
(bnc#1012628).
- mt76: fix building without CONFIG_LEDS_CLASS (bnc#1012628).
- iommu/ipmmu-vmsa: Fix crash on early domain free (bnc#1012628).
- scsi: ufs: Fix hynix ufs bug with quirk on hi36xx SoC
(bnc#1012628).
- can: ucan: remove set but not used variable 'udev'
(bnc#1012628).
- can: rcar_can: Fix erroneous registration (bnc#1012628).
- test_firmware: fix error return getting clobbered (bnc#1012628).
- HID: input: Ignore battery reported by Symbol DS4308
(bnc#1012628).
- batman-adv: Use explicit tvlv padding for ELP packets
(bnc#1012628).
- batman-adv: Expand merged fragment buffer for full packet
(bnc#1012628).
- amd/iommu: Fix Guest Virtual APIC Log Tail Address Register
(bnc#1012628).
- bnx2x: Assign unique DMAE channel number for FW DMAE
transactions (bnc#1012628).
- qed: Fix PTT leak in qed_drain() (bnc#1012628).
- qed: Fix overriding offload_tc by protocols without APP TLV
(bnc#1012628).
- qed: Fix rdma_info structure allocation (bnc#1012628).
- qed: Fix reading wrong value in loop condition (bnc#1012628).
- usb: dwc2: pci: Fix an error code in probe (bnc#1012628).
- Revert "usb: gadget: ffs: Fix BUG when userland exits with
submitted AIO transfers" (bnc#1012628).
- s390/ism: clear dmbe_mask bit before SMC IRQ handling
(bnc#1012628).
- nvme-fc: resolve io failures during connect (bnc#1012628).
- bnxt_en: Fix filling time in bnxt_fill_coredump_record()
(bnc#1012628).
- drm/amdgpu: Add amdgpu "max bpc" connector property (v2)
(bnc#1012628).
- drm/amd/display: Support amdgpu "max bpc" connector property
(v2) (bnc#1012628).
- net/mlx4_core: Zero out lkey field in SW2HW_MPT fw command
(bnc#1012628).
- net/mlx4_core: Fix uninitialized variable compilation warning
(bnc#1012628).
- net/mlx4: Fix UBSAN warning of signed integer overflow
(bnc#1012628).
- drivers/net/ethernet/qlogic/qed/qed_rdma.h: fix typo
(bnc#1012628).
- gpio: pxa: fix legacy non pinctrl aware builds again
(bnc#1012628).
- gpio: mockup: fix indicated direction (bnc#1012628).
- tc-testing: tdc.py: ignore errors when decoding stdout/stderr
(bnc#1012628).
- tc-testing: tdc.py: Guard against lack of returncode in executed
command (bnc#1012628).
- mtd: rawnand: qcom: Namespace prefix some commands
(bnc#1012628).
- cpufreq: ti-cpufreq: Only register platform_device when
supported (bnc#1012628).
- Revert "HID: uhid: use strlcpy() instead of strncpy()"
(bnc#1012628).
- HID: multitouch: Add pointstick support for Cirque Touchpad
(bnc#1012628).
- mtd: spi-nor: Fix Cadence QSPI page fault kernel panic
(bnc#1012628).
- net: ena: fix crash during failed resume from hibernation
(bnc#1012628).
- NFSv4: Fix a NFSv4 state manager deadlock (bnc#1012628).
- qed: Fix bitmap_weight() check (bnc#1012628).
- qed: Fix QM getters to always return a valid pq (bnc#1012628).
- net/ibmnvic: Fix deadlock problem in reset (bnc#1012628).
- riscv: fix warning in arch/riscv/include/asm/module.h
(bnc#1012628).
- net: faraday: ftmac100: remove netif_running(netdev) check
before disabling interrupts (bnc#1012628).
- iommu/vt-d: Use memunmap to free memremap (bnc#1012628).
- NFSv4.2 copy do not allocate memory under the lock
(bnc#1012628).
- flexfiles: use per-mirror specified stateid for IO
(bnc#1012628).
- ibmvnic: Fix RX queue buffer cleanup (bnc#1012628).
- ibmvnic: Update driver queues after change in ring size support
(bnc#1012628).
- team: no need to do team_notify_peers or team_mcast_rejoin
when disabling port (bnc#1012628).
- net: amd: add missing of_node_put() (bnc#1012628).
- usb: quirk: add no-LPM quirk on SanDisk Ultra Flair device
(bnc#1012628).
- usb: appledisplay: Add 27" Apple Cinema Display (bnc#1012628).
- USB: check usb_get_extra_descriptor for proper size
(bnc#1012628).
- USB: serial: console: fix reported terminal settings
(bnc#1012628).
- ALSA: usb-audio: Add SMSL D1 to quirks for native DSD support
(bnc#1012628).
- ALSA: hda: Add support for AMD Stoney Ridge (bnc#1012628).
- ALSA: pcm: Fix starvation on down_write_nonblock()
(bnc#1012628).
- ALSA: pcm: Call snd_pcm_unlink() conditionally at closing
(bnc#1012628).
- ALSA: pcm: Fix interval evaluation with openmin/max
(bnc#1012628).
- ALSA: hda/realtek - Fix speaker output regression on Thinkpad
T570 (bnc#1012628).
- ALSA: hda/realtek: ALC286 mic and headset-mode fixups for Acer
Aspire U27-880 (bnc#1012628).
- ALSA: hda/realtek - Add support for Acer Aspire C24-860 headset
mic (bnc#1012628).
- ALSA: hda/realtek: Fix mic issue on Acer AIO Veriton Z4660G
(bnc#1012628).
- ALSA: hda/realtek: Fix mic issue on Acer AIO Veriton
Z4860G/Z6860G (bnc#1012628).
- media: gspca: fix frame overflow error (bnc#1012628).
- media: vicodec: fix memchr() kernel oops (bnc#1012628).
- Revert "mfd: cros_ec: Use devm_kzalloc for private data"
(bnc#1012628).
- parisc: Enable -ffunction-sections for modules on 32-bit kernel
(bnc#1012628).
- virtio/s390: avoid race on vcdev->config (bnc#1012628).
- virtio/s390: fix race in ccw_io_helper() (bnc#1012628).
- vhost/vsock: fix use-after-free in network stack callers
(bnc#1012628).
- arm64: hibernate: Avoid sending cross-calling with interrupts
disabled (bnc#1012628).
- SUNRPC: Fix leak of krb5p encode pages (bnc#1012628).
- dmaengine: dw: Fix FIFO size for Intel Merrifield (bnc#1012628).
- Revert "dmaengine: imx-sdma: Use GFP_NOWAIT for dma allocations"
(bnc#1012628).
- Revert "dmaengine: imx-sdma: alloclate bd memory from dma pool"
(bnc#1012628).
- dmaengine: imx-sdma: implement channel termination via worker
(bnc#1012628).
- dmaengine: imx-sdma: use GFP_NOWAIT for dma descriptor
allocations (bnc#1012628).
- dmaengine: cppi41: delete channel from pending list when stop
channel (bnc#1012628).
- ARM: 8806/1: kprobes: Fix false positive with FORTIFY_SOURCE
(bnc#1012628).
- xhci: workaround CSS timeout on AMD SNPS 3.0 xHC (bnc#1012628).
- xhci: Prevent U1/U2 link pm states if exit latency is too long
(bnc#1012628).
- arm64: dts: rockchip: remove vdd_log from rock960 to fix a
stability issues (bnc#1012628).
- Revert "x86/e820: put !E820_TYPE_RAM regions into
memblock.reserved" (bnc#1012628).
- cifs: Fix separator when building path from dentry
(bnc#1012628).
- staging: rtl8712: Fix possible buffer overrun (bnc#1012628).
- Revert commit ef9209b642f "staging: rtl8723bs: Fix indenting
errors and an off-by-one mistake in core/rtw_mlme_ext.c"
(bnc#1012628).
- crypto: do not free algorithm before using (bnc#1012628).
- drm/amdgpu: update mc firmware image for polaris12 variants
(bnc#1012628).
- drm/lease: Send a distinct uevent (bnc#1012628).
- drm/msm: Move fence put to where failure occurs (bnc#1012628).
- drm/amdgpu/gmc8: update MC firmware for polaris (bnc#1012628).
- drm/amdgpu/gmc8: always load MC firmware in the driver
(bnc#1012628).
- drm/i915: Downgrade Gen9 Plane WM latency error (bnc#1012628).
- kprobes/x86: Fix instruction patching corruption when copying
more than one RIP-relative instruction (bnc#1012628).
- x86/efi: Allocate e820 buffer before calling
efi_exit_boot_service (bnc#1012628).
- Drivers: hv: vmbus: Offload the handling of channels to two
workqueues (bnc#1012628).
- tty: serial: 8250_mtk: always resume the device in probe
(bnc#1012628).
- tty: do not set TTY_IO_ERROR flag if console port (bnc#1012628).
- gnss: sirf: fix activation retry handling (bnc#1012628).
- kgdboc: fix KASAN global-out-of-bounds bug in
param_set_kgdboc_var() (bnc#1012628).
- libnvdimm, pfn: Pad pfn namespaces relative to other regions
(bnc#1012628).
- cfg80211: Fix busy loop regression in ieee80211_ie_split_ric()
(bnc#1012628).
- mac80211_hwsim: Timer should be initialized before device
registered (bnc#1012628).
- mac80211: fix GFP_KERNEL under tasklet context (bnc#1012628).
- mac80211: Clear beacon_int in ieee80211_do_stop (bnc#1012628).
- mac80211: ignore tx status for PS stations in
ieee80211_tx_status_ext (bnc#1012628).
- mac80211: fix reordering of buffered broadcast packets
(bnc#1012628).
- mac80211: ignore NullFunc frames in the duplicate detection
(bnc#1012628).
- HID: quirks: fix RetroUSB.com devices (bnc#1012628).
- Update config files.
- commit 2f28da6
- Refresh
patches.rpmify/x86-build-Fix-compiler-support-check-for-CONFIG_RETP.patch.
Update upstream status.
- commit ceaabb8
==== libassuan ====
- qemu-disable-fdpassing-test.patch: remove
==== libinput ====
Version update (1.12.3 -> 1.12.4)
Subpackages: libinput-udev libinput10
- Update to new upstream release 1.12.4
* Three hardware-specific quirks for the HP Spectre x360
(touchpad pressure thresholds), the Macbook Pro 11,2 (palm
thresholds) and the Lenovo T480s (missing
INPUT_PROP_BUTTONPAD) were added.
==== libmtp ====
Subpackages: libmtp-udev libmtp9
- Small packaging cleanup
==== libyui-qt-pkg ====
Version update (2.45.24 -> 2.45.25)
- Make icons pop out from any background (boo#1115949)
- 2.45.25
==== llvm ====
Version update (6.0.1 -> 7.0.0)
- Update to llvm 7.0.0
* For details, see the release notes:
https://llvm.org/releases/7.0.0/docs/ReleaseNotes.html
https://llvm.org/releases/7.0.0/tools/clang/docs/ReleaseNotes.html
https://llvm.org/releases/7.0.0/tools/clang/tools/extra/docs/ReleaseNotes.h…
https://llvm.org/releases/7.0.0/tools/lld/docs/ReleaseNotes.html
==== llvm4 ====
Subpackages: clang4-checker libLLVM4 libclang4
- Use %license macro
- Use upstream-recommended %{_rpmconfigdir}/macros.d directory
for the rpm macros.
==== llvm6 ====
Subpackages: libLLVM6 libclang6
- Use %license macro
- Use upstream-recommended %{_rpmconfigdir}/macros.d directory
for the rpm macros.
==== llvm7 ====
Subpackages: libc++-devel libc++1 libc++abi-devel libc++abi1
- Use %license macro
- Use upstream-recommended %{_rpmconfigdir}/macros.d directory
for the rpm macros.
==== multipath-tools ====
Version update (0.7.9+58+suse.0790830 -> 0.7.9+85+suse.766b95e)
Subpackages: kpartx
- Update to version 0.7.9+85+suse.766b95e:
* upstream patch series to make verbosity level 3
less verbose and thus better usable (bsc#1118937)
* fix for handling device size mismatch in coalesce_paths()
(bsc#1037379)
* libmultipath: fix false removes in dmevents polling code
(bsc#1116272)
* Spec file: remove build dependency on dracut which causes
build errors for some distributions
==== openldap2 ====
Version update (2.4.46 -> 2.4.47)
Subpackages: libldap-2_4-2 libldap-2_4-2-32bit libldap-data openldap2-client openldap2-devel
- Update to upstream release 2.4.47
- Removed obsolete patches:
* 0006-No-Build-date-and-time-in-binaries.dif
(upstream now uses SOURCE_DATE_EPOCH for reproducable builds)
* 0012-ITS8051-sockdnpat.patch
* 0014-ITS-8714-Send-out-EXTENDED-operation-message-from-back-sock.patch
OpenLDAP 2.4.47 Release (2018/12/19)
Added slapd-sock DN qualifier for subtrees to be processed (ITS#8051)
Added slapd-sock ability to send extended operations to external listeners (ITS#8714)
Fixed liblber to avoid incremental access to user-supplied bv in dupbv (ITS#8752)
Fixed libldap dn to domain parsing with bad input (ITS#8842)
Fixed slapd slapcat to correctly honor -g option (ITS#8667)
Fixed slapd to correctly handle NO_SUCH_OBJECT with dynamic groups (ITS#8923)
Fixed slapd to check status of rdnNormalize (ITS#8932)
Fixed slapd cn=config when modifying slapo-syncprov config (ITS#8616)
Fixed slapd sasl authz-policy "all" behavior (ITS#8909)
Fixed slapd sasl minor typo (ITS#8918)
Fixed slapd to correctly hide hidden DBs in the rootDSE (ITS#8912)
Fixed slapd domainScope control to match Microsoft specification (ITS#8840)
Fixed slapd-bdb/hdb/mdb to not convert certain IDLs to ranges (ITS#8868)
Fixed slapo-accesslog deadlock during cleanup (ITS#8752)
Fixed slapo-memberof cn=config modifications (ITS#8663)
Fixed slapo-ppolicy with multimaster replication (ITS#8927)
Fixed slapo-syncprov with NULL modlist (ITS#8843)
Build Environment
Added slapd reproducible build support (ITS#8928)
Fixed missing includes with OpenSSL 1.0.2 (ITS#8809)
Contrib
Fixed slapo-pbkdf2 hash generation (ITS#8878)
Documentation
admin24 fixed minor typo (ITS#8887)
==== osinfo-db ====
- Add correct release date for SLE12-SP4
add-sle12sp4-support.patch
==== postfix ====
Subpackages: postfix-doc
- binary hardening: link with full RELRO
==== protobuf ====
Subpackages: libprotobuf-lite17 libprotobuf17
- Add maven pom files to the protobuf-java package
==== python-PySocks ====
- Remove superfluous devel dependency for noarch package
==== python-Pygments ====
- Remove superfluous devel dependency for noarch package
==== python-SecretStorage ====
- Remove superfluous devel dependency for noarch package
==== python-base ====
Subpackages: libpython2_7-1_0 libpython2_7-1_0-32bit python-xml
- Use upstream-recommended %{_rpmconfigdir}/macros.d directory
for the rpm macros.
==== python-ipaddr ====
- Remove superfluous devel dependency for noarch package
==== python-ndg-httpsclient ====
- Remove superfluous devel dependency for noarch package
==== python-parso ====
- Remove superfluous devel dependency for noarch package
==== python-passlib ====
- Use noun phrase in summary. Trim filler wording from description.
- Remove superfluous devel dependency for noarch package
==== python-rpm-macros ====
- Use upstream-recommended %{_rpmconfigdir}/macros.d directory
for the rpm macros.
- Include license and readme.
==== python-urlgrabber ====
- Remove superfluous devel dependency for noarch package
==== qqc2-desktop-style ====
Version update (5.52.0 -> 5.53.0)
- Update to 5.53.0
* New feature release
* For more details please see:
* https://www.kde.org/announcements/kde-frameworks-5.53.0.php
- Changes since 5.52.0:
* consistent sizing of item compared to QWidgets
* emit activated
* same behavior as qwidgets comboboxes
* fix Menu sizing
* default values for ToolTip
* proper line widths
* make sure flickables are pixelAligned
* Fix compilation
* Support for QGuiApplication-based apps (kde#396287)
* touchscreen text controls
* Size according to specified icon width and height
* Honor flat property of buttons
* Remove qt include prefix
* Fix issue where there's only one element on the menu
==== systemd-presets-common-SUSE ====
- Eanble new mdadm timers mdcheck_start.timer and mdmonitor-oneshot.timer
(bsc#1115407)
==== tracker ====
Subpackages: libtracker-common-2_0 libtracker-control-2_0-0 libtracker-miner-2_0-0 libtracker-sparql-2_0-0 tracker-lang typelib-1_0-Tracker-2_0 typelib-1_0-TrackerControl-2_0
- Extend tracker-sqlte-3.25-rename-tables.patch with two more
commits:
+ libtracker-data: Update FTS if base tables were altered
+ libtracker-data: Reset property table name on cardinality
changes
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org
4
3
[opensuse-factory] Making a better experience installing TW on a 4K / Optimus laptop
by Michael Pujos 22 Apr '19
by Michael Pujos 22 Apr '19
22 Apr '19
This message details my experience installing TW on a 4K / Optimus laptop,
namely a Lenovo ThinkPad P72 with Intel UHD 630 / Quadro P600.
I'd like to hopefully spark a discussion on how to possibly make it
better from the POV
of a proverbial "new Linux user" that would want to install TW on such
laptop.
I used the current TW net-install image as of today written on a USB drive.
There are 2 separate pain points here: 4K and Optimus.
1. 4K
The issue is text too small and really hard to read. It is even more
problematic on a laptop due to the
very high pixel density.
a. the installer first starts GRUB in native 4K, thus with super small text.
This is only (somewhat) problematic if you have to edit the config.
To address small text, would it not be better for configure GRUB to
always start in a sane resolution
such as 800x600 ?
There is another (smaller) issue: key presses are very delayed (like 2s
between keys!).
b. after GRUB and before the installer switches to Xorg, the linux
console takes over, again in 4K with a super hard to read font.
This transfers over to ncurses (which asks for the WiFi SSID and
password). If you need to spend some time in the various ncurses
installer options (for example to start a shell)
or switch to a virtual console (to check installer / kernel logs), it is
super painful to read. And I'm not even talking about doing a text only
install which is almost impossible to do.
Not sure how this can fixed.
Bonus: it would be nice to have mouse support in ncurses, with the
installer loading gpm. Mostly useful for full text install though.
2. Optimus
Assuming, laptop boots into Optimus mode (that is, with 2 graphic
cards), Xorg will start with a blackscreen. The reason is that nouveau does
not work at all in an Optimus setup. Booting with the nouveau module
blacklisted results in Xorg failing to start and the installer falling back
to text installation, but then you have the 4K issue and if you are
brave enough to go for that text install, Xorg will still not start
properly as well on reboot.
The only way to have the graphical installer starting is by enabling
"Discrete only" in BIOS to have a single video card, the NVIDIA card.
This make nouveau not explode.
It would be very nice to have the installer 'just work' in Optimus mode,
although this is tricky.
The installer would have to detect that situation (Optimus) and:
- unload the nouveau module
- make sure Xorg does not try to load the nouveau driver
- start Xorg with the proper BusID for the Device associated to the
Intel card. Xorg is unable to determine it by itself and will fail to
start if the proper BusID is not specified.
=> That way Xorg will start properly using the modesetting driver.
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org
3
3
18 Apr '19
Hi,
Short version:
KDE4 is dead and will be removed shortly from openSUSE Factory.
Qt4 is dead and shall be removed as soon as possible from openSUSE Factory.
Long version:
The last kdelibs version was released in 2017 and is no longer maintained,
Qt4 is also no longer maintained upstream.
To avoid keeping zombies with security issues, it's time to kill the kdelibs4
based packages but also the Qt4 based ones.
A couple delete requests for KDE4 packages are currently being processes and
more will follow.
kdelibs4 will be the last one to go and after that, we'll remove packages not
present in Leap from the KDE: tree.
Qt4's fate shall be the same. If you maintain packages still using Qt4, please
check if Qt5-based versions exist, if the Qt dependency is mandatory and/or if
these packages are still useful.
Thanks,
The KDE team.
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org
26
55
02 Apr '19
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&versio…
Please do not reply to this email to report issues, rather file a bug
on bugzilla.opensuse.org. For more information on filing bugs please
see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
ceph (14.1.0.559+gf1a72cff25 -> 14.2.0.300+gacd2f2b9e1)
checkpolicy (2.8 -> 2.9)
cronie
exim (4.91 -> 4.92)
fftw3 (3.3.6 -> 3.3.8)
fuse
google-noto-fonts
gpg2 (2.2.13 -> 2.2.14)
grub2
kernel-source (5.0.2 -> 5.0.3)
libglvnd (1.1.0 -> 1.1.1)
libgpg-error (1.35 -> 1.36)
libselinux (2.8 -> 2.9)
libselinux-bindings (2.8 -> 2.9)
libsemanage (2.8 -> 2.9)
libsepol (2.8 -> 2.9)
libssh2_org (1.8.0 -> 1.8.1)
patterns-xfce
perl-Text-CSV_XS (1.37 -> 1.39)
policycoreutils (2.8 -> 2.9)
python-semanage (2.8 -> 2.9)
strace (4.26 -> 5.0)
suse-module-tools (15.1.11 -> 15.1.13)
vlc
webkit2gtk3
=== Details ===
==== ceph ====
Version update (14.1.0.559+gf1a72cff25 -> 14.2.0.300+gacd2f2b9e1)
Subpackages: librados2 librbd1
- Update to 14.2.0-300-gacd2f2b9e1:
+ spec/ceph-mgr: drop "Recommends: ceph-mgr-ssh"
+ cmake: empty INSTALL_RPATH for libceph_crypto_openssl.so (boo#1129921)
- Update to 14.2.0-296-g063d979413:
+ rebase on top of upstream nautilus branch, SHA1 3a54b2b6d167d4a2a19e003a705696d4fe619afc
* upstream Nautilus 14.2.0 (stable) release
release notes: http://docs.ceph.com/docs/master/releases/nautilus/
+ rpm: fix "rhel <= 7" conditional (bsc#1129595)
+ rpm: refrain from building ceph-resource-agents on SLE (bsc#1129597)
- Update to 14.1.1-457-g1411dbed54:
+ rebase on top of upstream nautilus branch, SHA1 98653b3db92f69023cb62526791d4d9aa5d6ec23
* upstream Nautilus 14.1.1 (RC2) release
* mgr: Fix broken get_localized_module_option function (bsc#1127342)
* spec: ceph-osd gets new runtime dependency, libstoragemgmt
+ dashboard: Update downstream branding (bsc#1129224)
+ spec: build ceph-test package on x86_64 arch only (bsc#1129274)
==== checkpolicy ====
Version update (2.8 -> 2.9)
- Update to version 2.9
* Add option to sort contexts when creating a binary policy
* Update manpage
* check the result value of hashtable_search
* destroy the class datum if it fails to initialize
* remove extraneous policy build noise
==== cronie ====
Subpackages: cron
- update to 1.5.3
* Fix CVE-2019-9704 [bnc#1128937] and CVE-2019-9705 [bnc#1128935]
to avoid local DoS of the crond
* crontab: Make crontab without arguments fail
* crond: In PAM configuration include system-auth instead of
password-auth
* crond: In the systemd service file restart crond if it fails
* crond: Use the role from the crond context for system job
contexts
* Multiple small cleanups and fixes.
- refresh cronie-nheader_lines.diff and cronie-pam_config.diff
==== exim ====
Version update (4.91 -> 4.92)
- update to exim 4.92
* ${l_header:<name>} expansion
* ${readsocket} now supports TLS
* "utf8_downconvert" option (if built with SUPPORT_I18N)
* "pipelining" log_selector
* JSON variants for ${extract } expansion
* "noutf8" debug option
* TCP Fast Open support on MacOS
- add workaround patch for compile time error on missing printf
format annotation (gnu_printf.patch)
==== fftw3 ====
Version update (3.3.6 -> 3.3.8)
Subpackages: libfftw3-3 libfftw3_threads3
- Update to 3.3.8:
* Fixed AVX, AVX2 for gcc-8.
- Release notes for 3.3.7:
* Experimental support for CMake.
* Fixes for armv7a cycle counter.
* Official support for aarch64, now that we have hardware to test it.
* Tweak usage of FMA instructions in a way that favors newer processors
(Skylake and Ryzen) over older processors (Haswell).
* tests/bench: use 64-bit precision to compute mflops.
==== fuse ====
Subpackages: libfuse2
- Use %make_build in order to provide verbose output.
==== google-noto-fonts ====
Subpackages: google-noto-fonts-doc noto-coloremoji-fonts noto-sans-fonts
- Changed dependecy status of doc sub-package from Required to
Recommended because fonts load just fine without it.
==== gpg2 ====
Version update (2.2.13 -> 2.2.14)
Subpackages: gpg2-lang
- Update to 2.2.14:
* gpg: Allow import of PGP desktop exported secret keys. Also avoid
importing secret keys if the secret keyblock is not valid.
* gpg: Do not error out on version 5 keys in the local keyring.
* gpg: Make invalid primary key algo obvious in key listings.
* sm: Do not mark a certificate in a key listing as de-vs compliant
if its use for a signature will not be possible.
* sm: Fix certificate creation with key on card.
* sm: Create rsa3072 bit certificates by default.
* sm: Print Yubikey attestation extensions with --dump-cert.
* agent: Fix cancellation handling for scdaemon.
* agent: Support --mode=ssh option for CLEAR_PASSPHRASE.
* scd: Fix flushing of the CA-FPR DOs in app-openpgp.
* scd: Avoid a conflict error with the "undefined" app.
* dirmngr: Add CSRF protection exception for protonmail.
* dirmngr: Fix build problems with gcc 9 in libdns.
* gpgconf: New option --show-socket for use wity --launch.
* gpgtar: Make option -C work for archive creation.
- Removed patches that are included upstream by now:
- 0001-libdns-Avoid-using-compound-literals.patch
- 0002-libdns-Avoid-using-compound-literals-2.patch
- 0003-libdns-Avoid-using-compound-literals-3.patch
- 0004-libdns-Avoid-using-compound-literals-4.patch
- 0005-libdns-Avoid-using-compound-literals-5.patch
- 0006-libdns-Avoid-using-compound-literals-6.patch
- 0007-libdns-Avoid-using-compound-literals-7.patch
- 0008-libdns-Avoid-using-compound-literals-8.patch
==== grub2 ====
Subpackages: grub2-i386-pc grub2-snapper-plugin grub2-systemd-sleep-plugin grub2-x86_64-efi grub2-x86_64-xen
- Use %doc for older products for compatibility, or may end up with
unsuccessful build result
* grub2.spec
- Revert grub2-ieee1275-open-raw-mode.patch for regression of crashing lvm on
multipath SAN (bsc#1113702)
* deleted grub2-ieee1275-open-raw-mode.patch
- Add exception handling to FCP lun enumeration (bsc#1113702)
* grub2-ieee1275-FCP-methods-for-WWPN-and-LUNs.patch
==== kernel-source ====
Version update (5.0.2 -> 5.0.3)
Subpackages: kernel-default kernel-default-devel kernel-devel kernel-docs kernel-macros kernel-syms kernel-vanilla
- Do not provide kernel-default-srchash from kernel-default-base.
- commit d6c71ce
- rpm/kernel-subpackage-build: handle arm kernel zImage.
- commit 81a63c3
- config: disable IMA_ARCH_POLICY for now
When IMA_ARCH_POLICY was enabled during the 5.0-rc* stage, IMA causes
kdump load to fail:
kexec_file_load failed: Permission denied
ima: impossible to appraise a kernel image without a file descriptor; try using kexec_file_load syscall.
We have to fix kexec tooling before enabling IMA for everyone.
BTW IMA_APPRAISE_BOOTPARAM was disabled by IMA_ARCH_POLICY=y. So
restore the original state (and functionality).
- commit 3fe0cfc
- rpm/kernel-source.changes.old: Really drop old changelogs (bsc#1098995)
- commit 9e463cf
- config: disable BPFILTER_UMH on arm (bsc#1127188).
- commit a705565
- Linux 5.0.3 (bnc#1012628).
- drm: Block fb changes for async plane updates (bnc#1012628).
- It's wrong to add len to sector_nr in raid10 reshape twice
(bnc#1012628).
- perf/x86/intel: Make dev_attr_allow_tsx_force_abort static
(bnc#1012628).
- perf/x86/intel: Fix memory corruption (bnc#1012628).
- ALSA: hda/realtek: Enable headset MIC of Acer TravelMate
X514-51T with ALC255 (bnc#1012628).
- ALSA: hda/realtek - Reduce click noise on Dell Precision 5820
headphone (bnc#1012628).
- ALSA: hda/realtek: Enable audio jacks of ASUS UX362FA with
ALC294 (bnc#1012628).
- ALSA: hda - add more quirks for HP Z2 G4 and HP Z240
(bnc#1012628).
- ALSA: hda: Extend i915 component bind timeout (bnc#1012628).
- ALSA: firewire-motu: fix construction of PCM frame for capture
direction (bnc#1012628).
- ALSA: bebob: use more identical mod_alias for Saffire Pro 10
I/O against Liquid Saffire 56 (bnc#1012628).
- perf/x86: Fixup typo in stub functions (bnc#1012628).
- f2fs: wait on atomic writes to count F2FS_CP_WB_DATA
(bnc#1012628).
- net: sched: flower: insert new filter to idr after setting
its mask (bnc#1012628).
- vsock/virtio: fix kernel panic from
virtio_transport_reset_no_sock (bnc#1012628).
- net: hns3: fix to stop multiple HNS reset due to the AER changes
(bnc#1012628).
- net: dsa: mv88e6xxx: Set correct interface mode for CPU/DSA
ports (bnc#1012628).
- net/mlx4_core: Fix qp mtt size calculation (bnc#1012628).
- net/mlx4_core: Fix locking in SRIOV mode when switching between
events and polling (bnc#1012628).
- net/mlx4_core: Fix reset flow when in command polling mode
(bnc#1012628).
- vxlan: test dev->flags & IFF_UP before calling
gro_cells_receive() (bnc#1012628).
- vxlan: Fix GRO cells race condition between receive and link
delete (bnc#1012628).
- tcp: handle inet_csk_reqsk_queue_add() failures (bnc#1012628).
- tcp: Don't access TCP_SKB_CB before initializing it
(bnc#1012628).
- tcp: do not report TCP_CM_INQ of 0 for closed connections
(bnc#1012628).
- sctp: remove sched init from sctp_stream_init (bnc#1012628).
- rxrpc: Fix client call queueing, waiting for channel
(bnc#1012628).
- route: set the deleted fnhe fnhe_daddr to 0 in ip_del_fnhe to
fix a race (bnc#1012628).
- ravb: Decrease TxFIFO depth of Q3 and Q2 to one (bnc#1012628).
- pptp: dst_release sk_dst_cache in pptp_sock_destruct
(bnc#1012628).
- net/x25: reset state in x25_connect() (bnc#1012628).
- net/x25: fix use-after-free in x25_device_event() (bnc#1012628).
- net: sit: fix UBSAN Undefined behaviour in check_6rd
(bnc#1012628).
- net/hsr: fix possible crash in add_timer() (bnc#1012628).
- net: hsr: fix memory leak in hsr_dev_finalize() (bnc#1012628).
- net: hns3: add dma_rmb() for rx description (bnc#1012628).
- lan743x: Fix TX Stall Issue (bnc#1012628).
- lan743x: Fix RX Kernel Panic (bnc#1012628).
- l2tp: fix infoleak in l2tp_ip6_recvmsg() (bnc#1012628).
- ipv4/route: fail early when inet dev is missing (bnc#1012628).
- gro_cells: make sure device is up in gro_cells_receive()
(bnc#1012628).
- fou, fou6: avoid uninit-value in gue_err() and gue6_err()
(bnc#1012628).
- connector: fix unsafe usage of ->real_parent (bnc#1012628).
- commit 843d1cc
- config: armv6hl: Update to v5.0.2
- commit a2d3030
- config: armv7hl: Update to v5.0.2
- commit 70aaed6
- Trim build dependencies of sample subpackage spec file (FATE#326579,
jsc#SLE-4117, jsc#SLE-3853, bsc#1128910).
- commit 2eae420
- cifs: Fix NULL pointer dereference of devname (bnc#1129519).
- commit 018878b
- config: enable RANDOM_TRUST_CPU
The outcome from mailing list discussion when this config option
appeared was that it makes more sense to enable it by default and let
those who do not trust their CPU override it on command line; but then
I forgot to actually change the value.
- commit 138b5df
- Update config files: disable CONFIG_FRAMEBUFFER_CONSOLE_DEFERRED_TAKEOVER (bsc#1127552)
The deferred fbcon takeover makes little sense with the current openSUSE
boot setup, and it's harmful (more glitches, etc). Disable it for now.
- commit 14fa903
- Remove the previous subpackage infrastructure.
This partially reverts commit 9b3ca32c11854156b2f950ff5e26131377d8445e
("Add kernel-subpackage-build.spec (FATE#326579).")
- commit a5ee24e
- Add sample kernel-default-base spec file (FATE#326579, jsc#SLE-4117,
jsc#SLE-3853, bsc#1128910).
- commit 35c4a52
==== libglvnd ====
Version update (1.1.0 -> 1.1.1)
Subpackages: libglvnd-32bit
- Update to release 1.1.1
* Fixed a potential race condition with entrypoint patching
* Fixed the TSD dispatch stubs for PPC64LE
* Fixed a segfault when generating GLX dispatch stubs for AARCH64
==== libgpg-error ====
Version update (1.35 -> 1.36)
Subpackages: libgpg-error0 libgpg-error0-32bit
- Update to 1.36:
* Two new error codes to better support PIV cards
* Support armv7a-unknown-linux-gnueabihf
==== libselinux ====
Version update (2.8 -> 2.9)
Subpackages: libselinux1 libselinux1-32bit selinux-tools
- Update to version 2.9
* Add security_reject_unknown(3) man page
* Change matchpathcon usage to match with matchpathcon manpage
* Do not define gettid() if glibc >= 2.30 is used
* Fix RESOURCE_LEAK defects reported by coverity scan
* Fix line wrapping in selabel_file.5
* Do not dereference symlink with statfs in selinux_restorecon
* Fix overly strict validation of file_contexts.bin
* Fix selinux_restorecon() on non-SELinux hosts
* Fix the whatis line for the selinux_boolean_sub.3 manpage
* Fix printf format string specifier for uint64_t
* Fix handling of unknown classes/perms
* Set an appropriate errno in booleans.c
- Dropped python3.patch, is now upstream
==== libselinux-bindings ====
Version update (2.8 -> 2.9)
- Update to version 2.9
* Add security_reject_unknown(3) man page
* Change matchpathcon usage to match with matchpathcon manpage
* Do not define gettid() if glibc >= 2.30 is used
* Fix RESOURCE_LEAK defects reported by coverity scan
* Fix line wrapping in selabel_file.5
* Do not dereference symlink with statfs in selinux_restorecon
* Fix overly strict validation of file_contexts.bin
* Fix selinux_restorecon() on non-SELinux hosts
* Fix the whatis line for the selinux_boolean_sub.3 manpage
* Fix printf format string specifier for uint64_t
* Fix handling of unknown classes/perms
* Set an appropriate errno in booleans.c
- Dropped python3.patch, is now upstream
==== libsemanage ====
Version update (2.8 -> 2.9)
Subpackages: libsemanage-migrate-store libsemanage1
- Update to version 2.9
* Always set errno to 0 before calling getpwent()
* Include user name in ROLE_REMOVE audit events
* genhomedircon - improve handling large groups
* improve semanage_migrate_store import failure
* reset umask before creating directories
* set selinux policy root around calls to selinux_boolean_sub
* use previous seuser when getting the previous name
==== libsepol ====
Version update (2.8 -> 2.9)
- Update to version 2.9
* Add two new Xen initial SIDs
* Check that initial sid indexes are within the valid range
* Create policydb_sort_ocontexts()
* Eliminate initial sid string definitions in module_to_cil.c
* Rename kernel_to_common.c stack functions
* add missing ibendport port validity check
* destroy the copied va_list
* do not call malloc with 0 byte
* do not leak memory if list_prepend fails
* do not use uninitialized value for low_value
* fix endianity in ibpkey range checks
* ibpkeys.c: fix printf format string specifiers for subnet_prefix
* mark permissive types when loading a binary policy
==== libssh2_org ====
Version update (1.8.0 -> 1.8.1)
- Version update to 1.8.1:
Bug Fixes:
* [bsc#1128471, CVE-2019-3855] Integer overflow when reading a specially
crafted packet
* [bsc#1128493, CVE-2019-3863] Integer overflow in userauth_keyboard_interactive
with a number of extremely long prompt strings
* [bsc#1128472, CVE-2019-3856] Integer overflow if the server sent an extremely
large number of keyboard prompts
* [bsc#1128490, CVE-2019-3861] Out of bounds read when processing a specially
crafted packet
* [bsc#1128474, CVE-2019-3857] Integer overflow when receiving a specially
crafted exit signal message channel packet
* [bsc#1128492, CVE-2019-3862] Out of bounds read when receiving a specially
crafted exit status message channel packet
* [bsc#1128476, CVE-2019-3858] Zero byte allocation when reading a specially
crafted SFTP packet
* [bsc#1128481, CVE-2019-3860] Out of bounds reads when processing specially
crafted SFTP packets
* [bsc#1128480, CVE-2019-3859] Out of bounds reads in _libssh2_packet_require(v)
==== patterns-xfce ====
Subpackages: patterns-xfce-xfce patterns-xfce-xfce_basis patterns-xfce-xfce_laptop patterns-xfce-xfce_office
- recommend gcr-ssh-askpass (bnc#1108381)
==== perl-Text-CSV_XS ====
Version update (1.37 -> 1.39)
- update to 1.39
1.39 - 2019-03-15, H.Merijn Brand
* It's 2019
* Fix tests to skip on Encode failing (PR#17 charsbar + klapperl)
* Tested on Z/OS (s390x - Hercules) :)
* Test with new Module::CPANTS::Analyse
* Add options -w/-b/-Z to csvdiff
* Fix strict on streaming EOF
* Now also tested with cperl
1.38 - 2018-12-30, H.Merijn Brand
* Name the duplicate headers on error 1013
* Add missing attributes to default list (doc only, David H. Gutteridge)
* Add support for combined keys
* Look at $NO_COLOR for csvdiff
* Add support for key-value pair
==== policycoreutils ====
Version update (2.8 -> 2.9)
Subpackages: policycoreutils-lang python3-policycoreutils
- Update to version 2.9
* secon: free scon_trans before returning
* audit2allow/sepolgen-ifgen: show errors on stderr
* audit2allow: allow using audit2why as non-root user
* chcat: use check_call instead of getstatusoutput
* restorecon: add force option
* semanage module: Fix handling of -a/-e/-d/-r options
* semanage/seobject: Fix listing boolean values
* semanage: Drop python shebang from seobject.py
* semanage: Fix logger class definition
* semanage: Include MCS/MLS range when exporting local customizations
* semanage: Load a store policy and set the store SELinux policy root
* semanage: Start exporting "ibendport" and "ibpkey" entries
* semanage: Stop logging loginRecords changes
* semanage: Stop rejecting aliases in semanage commands
* semanage: Use standard argparse.error() method in handlePermissive
* semanage: do not show "None" levels when using a non-MLS policy
* semanage: import sepolicy only when it's needed
* semanage: move valid_types initialisations to class constructors
* sepolgen: close /etc/selinux/sepolgen.conf after parsing it
* sepolgen: fix access vector initialization
* sepolgen: fix refpolicy parsing of "permissive"
* sepolgen: print all AV rules correctly
* sepolgen: refpolicy installs its Makefile in include/Makefile
* sepolgen: return NotImplemented instead of raising it
* sepolgen: silence linter warning about has_key
* sepolgen: use self when accessing members in FilesystemUse
* sepolicy: Add sepolicy.load_store_policy(store)
* sepolicy: Make policy files sorting more robust
* sepolicy: Stop rejecting aliases in sepolicy commands
* sepolicy: Update to work with setools-4.2.0
* sepolicy: add missing % in network tab help text
* sepolicy: initialize mislabeled_files in __init__()
* sepolicy: search() also for dontaudit rules
* add xperms support to audit2allow
* replace aliases with corresponding type names
- Dropped python3.patch, upstream now
==== python-semanage ====
Version update (2.8 -> 2.9)
- Update to version 2.9
* Always set errno to 0 before calling getpwent()
* Include user name in ROLE_REMOVE audit events
* genhomedircon - improve handling large groups
* improve semanage_migrate_store import failure
* reset umask before creating directories
* set selinux policy root around calls to selinux_boolean_sub
* use previous seuser when getting the previous name
==== strace ====
Version update (4.26 -> 5.0)
- Update to strace 5.0
* Changes in behavior
* -D option now implies -I4
* Diagnostic message is no longer printed if an attempt to restart a process
has failed with ESRCH.
* ASCII dump no longer tries to read the whole buffer at once.
* Improvements
* Changed the way tracees are handled: all pending tracees are now waited for
before further processing, this improves fairness of tracee processing.
* Enhanced xlat styles support configured by -X option.
* Enhanced decoding of bpf syscall.
* Enhanced pid formatting in strace-log-merge output.
* Wired up kexec_file_load and rseq syscalls on aarch64, arc, metag, nios2,
or1k, riscv, and tile architectures.
* Updated lists of BPF_*, BTRFS_*, FAN_*, IFLA_*, KERN_*, KVM_CAP_*, NDA_*,
NETNSA_*, NT_*, PR_*, REL_*, SECCOMP_*, SCTP_*, UDP_*, V4L2_*, and *_MAGIC
constants.
* Updated lists of ioctl commands from Linux 5.0.
* Bug fixes
* Fixed ordering of sockaddr_in6 fields.
* Fixed strace-k test on alpha.
* Fixed build on mips o32.
* Fixed build on NOMMU architectures.
* Fixed build in --with-libiberty=yes mode.
* Fixed potential NULL dereference during printing of line continuation
for syscalls that haven't been decoded.
* Fixed strace-log-merge error diagnostics.
==== suse-module-tools ====
Version update (15.1.11 -> 15.1.13)
- Update to version 15.1.13:
* spec file: add conflicts for dracut < 44.2 (bsc#1127891)
- Update to version 15.1.12 (git 1ab0b84):
* modprobe.conf.common: add csiostor->cxgb4 dependency
(bsc#1100989)
* Load fbcon together with virtio_gpu on s390 (bsc#1121996,
fate#327159)
==== vlc ====
Subpackages: libvlc5 libvlccore9 vlc-codec-gstreamer vlc-lang vlc-noX vlc-qt vlc-vdpau
- Add vlc-libssh2-ECDSA-version.patch: sftp: fix version for ECDSA
known hosts (fixes vlc#22060).
- Add conditional pkgconfig(dav1d) BuildRequires: build av1
decoding via dav1d decoder.
==== webkit2gtk3 ====
Subpackages: libjavascriptcoregtk-4_0-18 libwebkit2gtk-4_0-37 libwebkit2gtk3-lang typelib-1_0-JavaScriptCore-4_0 typelib-1_0-WebKit2-4_0 webkit2gtk-4_0-injected-bundles
- Disable openjpeg on SLE 12. Our version isn't new enough.
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org
5
5