January 2022 - openSUSE Factory - openSUSE Mailing Lists

Drag and drop no longer working with external mouse
by John Paul Adrian Glaubitz 21 Jan '22

21 Jan '22

Hi! I'm running the current Tumbleweed snapshot with KDE on a Thinkpad T14 and I've run into the strange problem that I can't perform any drag and drop operations when using an external mouse. Using the touchpad as well as the trackpoint for drag and drop works fine though. Anyone knows what could be the problem? Adrian

2 1

New Tumbleweed snapshot 20220120 released!
by Dominique Leuenberger 21 Jan '22

21 Jan '22

Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: Mesa Mesa-drivers calligra cryptsetup (2.4.1 -> 2.4.3) dhcp exim fdk-aac-free ffmpeg-4 gstreamer-plugins-rs kernel-source (5.16.0 -> 5.16.1) libfido2 libndp (1.7 -> 1.8) librdkafka (1.8.0 -> 1.8.2) libreoffice libsmi openSUSE-build-key perl-MRO-Compat (0.13 -> 0.15) pipewire python-pyudev (0.22.0 -> 0.22.0+git.1642212208.d5630bf) ristretto (0.12.1 -> 0.12.2) simple-scan sqlite3 (3.37.1 -> 3.37.2) yast2-bootloader (4.4.11 -> 4.4.13) yast2-trans (84.87.20220109.a8187edd75 -> 84.87.20220116.6b981cb0d7) === Details === ==== Mesa ==== Subpackages: Mesa-dri-devel Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libgbm1 - using memory-constraints on ppc64 for trying to avoid OOM during build (boo#1194739) ==== Mesa-drivers ==== Subpackages: Mesa-dri Mesa-gallium Mesa-libva libvdpau_r300 libvdpau_r600 libvdpau_radeonsi libvulkan_intel libvulkan_radeon libxatracker2 - using memory-constraints on ppc64 for trying to avoid OOM during build (boo#1194739) ==== calligra ==== - Add Set-CXX_STANDARD-to-17.patch to set language standard to C++17, poppler 22.01.0 needs that - Add Fix-some-more-warnings.patch to fix build failures with C++17 ==== cryptsetup ==== Version update (2.4.1 -> 2.4.3) Subpackages: cryptsetup-lang libcryptsetup12 libcryptsetup12-32bit libcryptsetup12-hmac - cryptsetup 2.4.3: * Fix possible attacks against data confidentiality through LUKS2 online reencryption extension crash recovery CVE-2021-4122, boo#1194469 * Add configure option --disable-luks2-reencryption to completely disable LUKS2 reencryption code. * Improve internal metadata validation code for reencryption metadata * Add updated documentation for LUKS2 On-Disk Format Specification version 1.1.0 * Fix support for bitlk (BitLocker compatible) startup key with new metadata entry introduced in Windows 11 * Fix space restriction for LUKS2 reencryption with data shift - cryptsetup 2.4.2: * Fix possible large memory allocation if LUKS2 header size is invalid. * Fix memory corruption in debug message printing LUKS2 checksum. * veritysetup: remove link to the UUID library for the static build. * Remove link to pwquality library for integritysetup and veritysetup. These tools do not read passphrases. * OpenSSL3 backend: avoid remaining deprecated calls in API. Crypto backend no longer use API deprecated in OpenSSL 3.0 * Check if kernel device-mapper create device failed in an early phase. This happens when a concurrent creation of device-mapper devices meets in the very early state. * Do not set compiler optimization flag for Argon2 KDF if the memory wipe is implemented in libc. * Do not attempt to unload LUKS2 tokens if external tokens are disabled. This allows building a static binary with - -disable-external-tokens. * LUKS convert: also check sysfs for device activity. If udev symlink is missing, code fallbacks to sysfs scan to prevent data corruption for the active device. ==== dhcp ==== Subpackages: dhcp-client dhcp-doc dhcp-relay dhcp-server - Drop PrivateDevices and ProtectClock hardenings. They clash with the chroot logic (bsc#1194722) - Add now working CONFIG parameter to sysusers generator ==== exim ==== - disable ProtectHome=, it prevents local delivery (bsc#1194810) ==== fdk-aac-free ==== - Add baselibs.conf file since pipewire uses it and fdk-aac-free is a dependency. ==== ffmpeg-4 ==== Subpackages: libavcodec58_134 libavdevice58_13 libavfilter7_110 libavformat58_76 libavresample4_0 libavutil56_70 libpostproc55_9 libswresample3_9 libswscale5_9 - Add ffmpeg-chromium.patch: makes packaging Chromium easier and will allow for an easier migration for Chromium to FFmpeg 5 ==== gstreamer-plugins-rs ==== - Add a BuildRequires: pkgconfig(libwebp) to fix loading libgstrswebp.so which was failing with an `undefined symbol: WebPAnimDecoderDelete` error. ==== kernel-source ==== Version update (5.16.0 -> 5.16.1) Subpackages: kernel-default kernel-docs - Linux 5.16.1 (bsc#1012628). - workqueue: Fix unbind_workers() VS wq_worker_running() race (bsc#1012628). - workqueue: Fix unbind_workers() VS wq_worker_sleeping() race (bsc#1012628). - staging: r8188eu: switch the led off during deinit (bsc#1012628). - bpf: Fix out of bounds access from invalid *_or_null type verification (bsc#1012628). - Bluetooth: btusb: Add one more Bluetooth part for the Realtek RTL8852AE (bsc#1012628). - Bluetooth: btusb: Fix application of sizeof to pointer (bsc#1012628). - Bluetooth: btusb: fix memory leak in btusb_mtk_submit_wmt_recv_urb() (bsc#1012628). - Bluetooth: btusb: enable Mediatek to support AOSP extension (bsc#1012628). - Bluetooth: btusb: Add the new support IDs for WCN6855 (bsc#1012628). - Bluetooth: btusb: Add one more Bluetooth part for WCN6855 (bsc#1012628). - Bluetooth: btusb: Add two more Bluetooth parts for WCN6855 (bsc#1012628). - Bluetooth: btusb: Add support for Foxconn MT7922A (bsc#1012628). - Bluetooth: btintel: Fix broken LED quirk for legacy ROM devices (bsc#1012628). - Bluetooth: btusb: Add support for Foxconn QCA 0xe0d0 (bsc#1012628). - Bluetooth: bfusb: fix division by zero in send path (bsc#1012628). - ARM: dts: exynos: Fix BCM4330 Bluetooth reset polarity in I9100 (bsc#1012628). - USB: core: Fix bug in resuming hub's handling of wakeup requests (bsc#1012628). - USB: Fix "slab-out-of-bounds Write" bug in usb_hcd_poll_rh_status (bsc#1012628). - ath11k: Fix buffer overflow when scanning with extraie (bsc#1012628). - mmc: sdhci-pci: Add PCI ID for Intel ADL (bsc#1012628). - Bluetooth: add quirk disabling LE Read Transmit Power (bsc#1012628). - Bluetooth: btbcm: disable read tx power for some Macs with the T2 Security chip (bsc#1012628). - Bluetooth: btbcm: disable read tx power for MacBook Air 8,1 and 8,2 (bsc#1012628). - veth: Do not record rx queue hint in veth_xmit (bsc#1012628). - mfd: intel-lpss: Fix too early PM enablement in the ACPI - >probe() (bsc#1012628). - mfd: intel-lpss-pci: Fix clock speed for 38a8 UART (bsc#1012628). - can: gs_usb: fix use of uninitialized variable, detach device on reception of invalid USB data (bsc#1012628). - can: isotp: convert struct tpcon::{idx,len} to unsigned int (bsc#1012628). - can: gs_usb: gs_can_start_xmit(): zero-initialize hf->{flags,reserved} (bsc#1012628). - random: fix data race on crng_node_pool (bsc#1012628). - random: fix data race on crng init time (bsc#1012628). - platform/x86/intel: hid: add quirk to support Surface Go 3 (bsc#1012628). - drm/i915: Avoid bitwise vs logical OR warning in snb_wm_latency_quirk() (bsc#1012628). - staging: greybus: fix stack size warning with UBSAN (bsc#1012628). - parisc: Fix pdc_toc_pim_11 and pdc_toc_pim_20 definitions (bsc#1012628). Disabled: patches.suse/Bluetooth-Apply-initial-command-workaround-for-more-.patch as it conflicts with 95655456e7ce. Asked in bsc#1193124. - commit 13f032a - Update patches.suse/vfs-add-super_operations-get_inode_dev Copy an updated version from SLE15-SP4 with one minor refresh. - commit c02e2ab - Refresh patches.suse/0001-usb-Add-Xen-pvUSB-protocol-description.patch. - Refresh patches.suse/0002-usb-Introduce-Xen-pvUSB-frontend-xen-hcd.patch. - commit 8950040 - update patches metadata - update upstream references - patches.suse/media-Revert-media-uvcvideo-Set-unique-vdev-name-bas.patch - patches.suse/mwifiex-Fix-skb_over_panic-in-mwifiex_usb_recv.patch - patches.suse/random-fix-crash-on-multiple-early-calls-to-add_bootloader_randomness.patch - commit 949bbaa ==== libfido2 ==== - Use BuildRequires: openssl-devel instead of forcing 1.1 since 3.x is now supported. ==== libndp ==== Version update (1.7 -> 1.8) - update to 1.8: * libndp,ndptool: use poll() instead of select() * ndptool: avoid static buffer for string in ndptool * libndp: avoid static buffer for debug string in ndp_sock_recv() * libndp: use thread local variables for static return arguments * ndptool: fix printing dnssl lifetime in ndptool * ndptool: fix potential memory leak caused by strdup * libndp: close sockfd after using to avoid handle leak ==== librdkafka ==== Version update (1.8.0 -> 1.8.2) - update to 1.8.2: * Added ssl.ca.pem to add CA certificate by PEM string * Upon quick repeated leader changes the transactional producer could receive an OUT_OF_ORDER_SEQUENCE error from the broker * The transactional producer could stall during a transaction if the transaction coordinator changed ==== libreoffice ==== Subpackages: libreoffice-base libreoffice-calc libreoffice-draw libreoffice-filters-optional libreoffice-gnome libreoffice-gtk3 libreoffice-icon-themes libreoffice-impress libreoffice-l10n-cs libreoffice-l10n-da libreoffice-l10n-de libreoffice-l10n-el libreoffice-l10n-en libreoffice-l10n-en_GB libreoffice-l10n-es libreoffice-l10n-fr libreoffice-l10n-hu libreoffice-l10n-it libreoffice-l10n-ja libreoffice-l10n-pl libreoffice-l10n-pt_BR libreoffice-l10n-ru libreoffice-l10n-zh_CN libreoffice-l10n-zh_TW libreoffice-mailmerge libreoffice-math libreoffice-pyuno libreoffice-qt5 libreoffice-writer libreofficekit - Fix bsc#1183308: LO-L3: Simple, seven page slide deck of 3.7MB takes looong to open, start presentation mode, or move back to slide 1 * bsc1183308.patch ==== libsmi ==== Subpackages: libsmi2 - spec file cleanup ==== openSUSE-build-key ==== - refresh the openSUSE Backports key (bsc#1193092) - gpg-pubkey-65176565-59787af5.asc + gpg-pubkey-65176565-61a0ee8f.asc - removed old security key - updated security key to 2020 version ==== perl-MRO-Compat ==== Version update (0.13 -> 0.15) - updated to 0.15 see /usr/share/doc/packages/perl-MRO-Compat/Changes 0.15 - 2022-01-06 - fix function prototypes to match core functions 0.14_01 - 2020-11-16 - optimize pure perl DFS inheritance calculation on perl 5.8 - pod formatting fix ==== pipewire ==== Subpackages: gstreamer-plugin-pipewire libpipewire-0_3-0 pipewire-lang pipewire-modules-0_3 pipewire-pulseaudio pipewire-spa-plugins-0_2 pipewire-spa-tools pipewire-tools - Add several more patches from upstream - BlueZ may be missing adapter information for devices in some cases. Ignore devices without specified adapter: * 0001-bluez5-dont-create-device-if-adapter-is-missing.patch - Fix a case when pipewwire could never call callbacks or even block forever when loop is not running: * 0001-loop-invoke-immediately-when-loop-is-not-running.patch - Reconfigure when monitor changes * 0001-merger-also-reconfigure-when-monitor-changes.patch - Handle NULL props from metadata object * 0001-pw-metadata-handle-NULL-props-from-metadata-object.patch - Improve rate selection so we don't select an invalid rate when the default is set or the card is already opened in an unsupported rate: * 0001-alsa-improve-rate-selection.patch - Add several patches from upstream - Avoid an infinite loop when enumerating params of the converter: * 0001-audioconvert-avoid-infinite-loop.patch - When the device or adapter is NULL, skip the quirk checks instead of crashing: * 0001-bluez5-handle-missing-device-and-adapter-in-quirks.patch - Remember the last returned value from jack_get_buffer_size and only emit a buffersize change event when something new is configured. This fixes startup of jconvolver. * 0001-jack-remember-last-return-from-jack_get_buffer_size.patch - Better emulation of pulseaudio which shows monitor sources with device.class=monitor so now pipewire does that too: * 0001-pulse-server-show-monitor-sources-with-device_class_monitor.patch - Fix an errno check: * 0001-raop-fix-errno-check.patch - Added more baselibs packages and their dependencies ==== python-pyudev ==== Version update (0.22.0 -> 0.22.0+git.1642212208.d5630bf) - Update to version 0.22.0+git.1642212208.d5630bf (bsc#1194613): * Remove another flakey test * Remove all traces of tox * Update next Fedora to 35 * Delete a test which is probably flakey for real * Bump recommended development environment to fedora 34 * Use yamllint on all the configuration files * Add annotations to GitHub workflows * No longer use --recursive for isort * Update formatting for new black * Establish a weekly task for future fedora - Remove upstreamed patches: - remove_mock.patch ==== ristretto ==== Version update (0.12.1 -> 0.12.2) Subpackages: ristretto-lang - Update to version 0.12.2 * Add support for shared thumbnail repositories (gxo#apps/ristretto#82) * Add thumbnail flavor support (gxo#apps/ristretto#81) * Use TreeModel IFace to walk the image list * Add index and list link to RsttoImageListIter * Switch to GQueue in RsttoImageList * Cleanup and simplifications around thumbnail size * Redistribute thumbnail sizes uniformly * Disable debug checks in release mode * Remove unused APIs in RsttoImageList * Fix and complete file change monitoring * Thumbnailer: Rework queue management * Thumbnailer: Properly set the number of visible items * Take the device scale into account to limit rendering quality * Avoid multi-threading issue with X11 (gxo#apps/ristretto#76) * Translation Updates ==== simple-scan ==== Subpackages: simple-scan-lang - Add 200.patch: Fix accessibility conflict of constant and its value. Fixes build with vala 0.55.x. ==== sqlite3 ==== Version update (3.37.1 -> 3.37.2) - update to 3.37.2: * Fix a bug introduced in version 3.35.0 (2021-03-12) that can cause database corruption if a SAVEPOINT is rolled back while in PRAGMA temp_store=MEMORY mode, and other changes are made, and then the outer transaction commits * Fix a long-standing problem with ON DELETE CASCADE and ON UPDATE CASCADE in which a cache of the bytecode used to implement the cascading change was not being reset following a local DDL change ==== yast2-bootloader ==== Version update (4.4.11 -> 4.4.13) - Autoyast: add support for password protection (jsc#SLE-20928) - 4.4.13 - Add support for powerpc secure boot (bsc#1192764 jsc#SLE-18271). - 4.4.12 ==== yast2-trans ==== Version update (84.87.20220109.a8187edd75 -> 84.87.20220116.6b981cb0d7) Subpackages: yast2-trans-af yast2-trans-ar yast2-trans-bg yast2-trans-bn yast2-trans-bs yast2-trans-ca yast2-trans-cs yast2-trans-cy yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en_GB yast2-trans-es yast2-trans-et yast2-trans-fa yast2-trans-fi yast2-trans-fr yast2-trans-gl yast2-trans-gu yast2-trans-hi yast2-trans-hr yast2-trans-hu yast2-trans-id yast2-trans-it yast2-trans-ja yast2-trans-jv yast2-trans-ka yast2-trans-km yast2-trans-ko yast2-trans-lo yast2-trans-lt yast2-trans-mk yast2-trans-mr yast2-trans-nb yast2-trans-nl yast2-trans-pa yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ro yast2-trans-ru yast2-trans-si yast2-trans-sk yast2-trans-sl yast2-trans-sr yast2-trans-sv yast2-trans-ta yast2-trans-th yast2-trans-tr yast2-trans-uk yast2-trans-vi yast2-trans-wa yast2-trans-xh yast2-trans-zh_CN yast2-trans-zh_TW yast2-trans-zu - Update to version 84.87.20220116.6b981cb0d7: * Translated using Weblate (Ukrainian) * Translated using Weblate (Russian) * Translated using Weblate (Italian) * Translated using Weblate (Italian) * Translated using Weblate (Italian) * New POT for text domain 'autoinst'. * Translated using Weblate (Italian) * Translated using Weblate (Italian) * New POT for text domain 'packager'. * New POT for text domain 'dhcp-server'. * Translated using Weblate (Slovak) * Translated using Weblate (Dutch) * Translated using Weblate (Japanese) * Translated using Weblate (Catalan) * New POT for text domain 'storage'. * New POT for text domain 'packager'. * New POT for text domain 'installation'. * New POT for text domain 'bootloader'. * New POT for text domain 'base'. * Translated using Weblate (Indonesian) * Translated using Weblate (Indonesian) * Translated using Weblate (Slovak) * Translated using Weblate (Catalan) * Translated using Weblate (Catalan) * Translated using Weblate (Catalan)

1 0

New Tumbleweed snapshot 20220118 released!
by Dominique Leuenberger 19 Jan '22

19 Jan '22

Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: gstreamer-plugins-rs === Details === ==== gstreamer-plugins-rs ==== - Increase the disk constraint since i586 builds take ~15.6 GB, s390x over 22 GB and other archs ~18.8 GB.

1 0

openSUSE Release Engineering Meeting 19.01.2022
by ddemaio 19 Jan '22

19 Jan '22

All meeting minutes can be found here: https://etherpad.opensuse.org/p/ReleaseEngineering-meeting Meeting is hosted here https://meet.opensuse.org/ReleaseEngineeringMeeting ## Attendees ddemaio, dleuenberger,guillaumeg, rbrown, meissner, mlin, DocB, dirk ## Leap * No new Leap build this week, packages are still rebuilding after updated pool-leap-15.4 Lubos will be on vacation 15th - 26th Jan ## openSUSE Tumbleweed * Kernel 5.16.0 is in Tumbleweed, 5.16.1 scheduled for checkin * Python 3.6 being EOL, removal of python36-FOO modules ongoing. Last week: 226 left, now 142 * Ruby 3.1, incl. switch of default ruby, is in Staging:L - apparmor missing, no visible progress * GCC 12 pre-integration tests started (Staging:Gcc7); Scheduled for actual merge in April/May ## Richard (Kubic/TW MicroOS) Verifying that fixes to https://bugzilla.opensuse.org/show_bug.cgi?id=1159205 works Verifying that SELinux+colord policy fixes work also Experimented with kiwi-less, container-first VM image building. Have a working prototype that works entirely in OBS, builds a container using a Dockerfile, takes that container then converts it to a working, bootable, openSUSE VM. Investigating adding nerdctl support to Toolbox Investigating buildkit and its limits as a container builder working on a tool to convert existing Tumbleweed (and maybe also Leap) systems to MicroOS and/or MicroOS Desktop ## Max * https://code.opensuse.org/leap/features/issue/15 is WIP still: skippkg-finder is almost ready, we can start monitoring the result and tweaking NON_FTP_PACKAGES for the affected packages * Fish - movement from SLE to Leap, https://code.opensuse.org/leap/features/issue/56 - SLE will drop fish from any shipping extensions, we can update fish to version 3.x to Backports without keep fish and fish3 both exist ## Guillaume - Arm Tumbleweed: * Rolling * Upcoming GCC12 tested for aarch64: https://build.opensuse.org/project/show/home:dirkmueller:branches:openSUSE:… Leap 15.4: * opencl-headers package is outdated in Leap 15.4 / SLE15-SP4: https://bugzilla.opensuse.org/show_bug.cgi?id=1193617 This prevent armnn to build with opencl support enabled. => SR https://build.opensuse.org/request/show/944701 has been mirrored and should reach OBS in 2-3 weeks. * aarch64: * kernel issue (rebuild not finished yet?). See openSUSE:Leap:15.4/pcfclock (and others) unresolvables. * armv7: * armv7 images are not tested in openQA yet, because JeOS-efi image does not build properly due to an armv7 kernel bug with btrfs and lzo compression: https://bugzilla.opensuse.org/show_bug.cgi?id=1193852 ## Sarah - s390x Not available ## Doug * Annual survey is live until Feb. 27 - https://survey.opensuse.org * * Almost 700 responses * openSUSE Conference * * Still waiting on contract to be signed * * CfP is open until April 14 - https://news.opensuse.org/2022/01/18/cfp-opens-for-osc22/ * * First planning meetings https://etherpad.opensuse.org/p/osc220118 * openSUSE Summit at OSCAL * * Will start CfP in February * * June 18 & 19 * * Recorded talks with live Q&A avaialble * Google Summer of Code * * No replies as of yet. email ddemaio ASAP if interested * * Application period from Feb. 7 to 21 (deadline) * Survey on safety results published - https://en.opensuse.org/Safety-surveys/2021 ## Dirk No update ## Gerald / Board No update. ## Wolfgang (Package Hub), Scott Bahling Not available ## Maintenance team (Marina or Marcus, Maurizio (m4u)) - Marina: working on opencl-headers (SLE side of bsc#1193617) - Marcus: 15.2 EOL notice posted, bots and channels disabled - Marcus: 15.3 is operating GREEN - Marcus: 15.4 is set up channel wise, some updates will go in testing occasionaly, if you need more ping me, no openqa setup yet ## Adrian - openSUSE Step No update

1 0

Announcing the D-Installer project
by Imobach Gonzalez Sosa 19 Jan '22

19 Jan '22

Hi all, During 2021, the YaST team was playing with the idea of building a web- based installer using our libraries. Finally, we have decided to define the project and try to invest some CPU cycles on it. 🙂 Please, read the announcement in our blog and do not hesitate to share your point of view with us. https://yast.opensuse.org/blog/2022-01-18/announcing-the-d-installer-project Regards, Imo -- Imobach González Sosa YaST Team at SUSE LLC https://imobachgs.github.io/

4 3

New Tumbleweed snapshot 20220117 released!
by Dominique Leuenberger 19 Jan '22

19 Jan '22

Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: expect gstreamer-plugins-rs (0.7.2 -> 0.8.0) libstorage-ng (4.4.73 -> 4.4.75) perl-Net-SSLeay python-FontTools (4.28.3 -> 4.28.5) python-authheaders (0.13.0 -> 0.14.1) python-certifi (2021.5.30 -> 2021.10.8) python-fastparquet python-fs (2.4.13 -> 2.4.14) python-unicodedata2 (13.0.0 -> 14.0.0) thrift (0.14.1 -> 0.15.0) xf86-input-wacom === Details === ==== expect ==== - Fix home page URL https://core.tcl-lang.org/expect/ ==== gstreamer-plugins-rs ==== Version update (0.7.2 -> 0.8.0) - Update to version 0.8.0: * No changelog provided by upstream ==== libstorage-ng ==== Version update (4.4.73 -> 4.4.75) Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1 - merge gh#openSUSE/libstorage-ng#856 - added python-rpm-macros to build requires (bsc#1194759) - 4.4.75 - Translated using Weblate (Italian) (bsc#1149754) - 4.4.74 ==== perl-Net-SSLeay ==== - Fix cpanspec.yml ==== python-FontTools ==== Version update (4.28.3 -> 4.28.5) - update to 4.28.5: * make sure all occurrences of str() are now replaced with user-defined ntos * refactored code into submodules, plus several bugfixes and improvements * Merge GDEF marksets in Lookups properly * Have fontTools feaLib script exit with error code when build fails * Added ntos option to customize number formatting * Speed up subsetting of large CFF fonts * Speculatively promote lookups to extension to speed up compilation ==== python-authheaders ==== Version update (0.13.0 -> 0.14.1) - update to 0.14.1: - Bump version to fix pypi artifacts, no code changes - Use email.utils to parse the From header addresses (Thanks to Adam Clark for noting this issue and providing the fix) Fixes Github #5 - Correct minimum authres version requirment in setup.py - Catch more errors. Add DKIM temperror. (Thanks to 'niftylettuce') Fixes Github #18 - Skip DMARC records with no 'p' tag and don't raise an error (also thanks to 'niftylettuce') Fixes Github #14 - Fix issues with upper case characters in domain (Thanks to Mark Sapiro for root causing the issue and providing a fix for the domain name regex) Fixes Github #13 - Include ARC result comment is A-R header field when ARC fails. Fixes Github #12 - Handle the case where no valid From is found. Fixes Github #15 ==== python-certifi ==== Version update (2021.5.30 -> 2021.10.8) - update to 2021.10.8: added certs: * CN=TunTrust Root CA O=Agence Nationale de Certification Electronique * CN=HARICA TLS ECC Root CA 2021 O=Hellenic Academic and Research Institutions CA ==== python-fastparquet ==== - Clean specfile from unused python36 conditionals - Require thrift 0.15.0 (+patch) for Python 3.10 compatibility * gh#dask/fastparquet#514 ==== python-fs ==== Version update (2.4.13 -> 2.4.14) - update to 2.4.14: * Added `fs.copy.copy_file_if`, `fs.copy.copy_dir_if`, and `fs.copy.copy_fs_if`. * Added `fs.base.FS.getmodified`. * FTP servers that do not support the MLST command now try to use the MDTM command to retrieve the last modification timestamp of a resource. * Fixed performance bugs in `fs.copy.copy_dir_if_newer`. Test cases were adapted to catch those bugs in the future. * Fixed precision bug for timestamps in `fs.OSFS.setinfo`. ==== python-unicodedata2 ==== Version update (13.0.0 -> 14.0.0) - Update to 14.0.0 * Dropped support for EOL Python 2.7 and 3.5 (#47, #48) * Added support for Python 3.9 and 3.10, and PyPy3 * Updated to Unicode 14.0 (#50) ==== thrift ==== Version update (0.14.1 -> 0.15.0) - Update to 0.15.0 * Known Open Issues (Blocker or Critical) - [THRIFT-3877] - C++: library don't work with HTTP (csharp server, cpp client; need cross test enhancement) * Removed Languages - [THRIFT-5229] - ActionScript 3 support dropped - [THRIFT-5347] - Haskell support dropped * Breaking Changes - [THRIFT-5381] - possible collisions at VOID type with some 3rd-party libraries on Haxe cpp targets - [THRIFT-5396] - deprecate netstd "Async" method postfix - [THRIFT-5453] - go: NewTSocketConf and NewTSSLSocketConf no longer return an error * AS3 - [THRIFT-5229] - Deprecate/remove ActionScript 3 support * Build Process - [THRIFT-5334] - version of thrift-maven-plugin is not sync with the main project - [THRIFT-5394] - AppVeyor CI tries to download outdated cmake - [THRIFT-5429] - build: autotools: add foreign to AM_INIT_AUTOMAKE * C glib - [THRIFT-5244] - Dynamic exception specifications are deprecated in C++11[-Wdeprecated] - [THRIFT-5265] - Add the zlib transport to c_glib - [THRIFT-5399] - Fix socket leak in abnormal situation - [THRIFT-5421] - Fix the problem of incorrect setting of errno in some files * C++ - [THRIFT-5341] - Fix Old-Style-Cast, Missing override and Possible noexcept - [THRIFT-5342] - Apply 'noexcept' attribute to Init/Copy/Move Constructors and Assignments - [THRIFT-5355] - Do not rely on compiler and check boundaries * D language - [THRIFT-4303] - D deprecation warnings - [THRIFT-4979] - Still D deprecation warnings about std.datetime.* in current master - [THRIFT-5376] - Fix deprecation warnings in D library * Dart - [THRIFT-5285] - Update to dart 2, widen range on http package * Delphi - [THRIFT-5350] - 0.14.0 fails to build on non-x86 - [THRIFT-5438] - Inconsistent handling of exceptions during message read vs. message write phase - [THRIFT-5384] - Improved error message for HTTP transports - [THRIFT-5385] - XML-HTTP client reports IsOpen=TRUE even if it is not - [THRIFT-5386] - XML-HTTP client may throw "max message size reached" incorrectly - [THRIFT-5387] - Improved and simplified Delphi test setup - [THRIFT-5390] - Named Pipes transport hardening - [THRIFT-5428] - Prevent costly reallocations to improve performance - [THRIFT-5437] - Make TProtocolImpl CTOR virtual * Documentation - [THRIFT-5332] - Question: list all the reserved words in thrift doc - [THRIFT-5348] - Update debian/copyright * Erlang - [THRIFT-5377] - Remove Erlang R16 support * Go - [THRIFT-5337] - Go set fields write improvement - [THRIFT-5353] - Namespace from type is ignored in generated code - [THRIFT-5358] - Add go.mod file(s) - [THRIFT-5369] - Malformed payload can still cause huge allocations - [THRIFT-5389] - Thrift compiler generates uncompilable go code around optional constants - [THRIFT-5404] - TTransportException.Timeout would correctly return true when it's connect timeout during TSocket.Open call - [THRIFT-5447] - Update supported Go versions before 0.15.0 release - [THRIFT-5453] - go: NewTSocketConf should not call net.ResolveTCPAddr - [THRIFT-5459] - Adding a new exception to an endpoint is kinda breaking in go * Haskell - [THRIFT-5347] - Deprecate Haskell bindings * Haxe - [THRIFT-5370] - Haxe 4 compatibility - [THRIFT-5381] - possible collisions at VOID type with some 3rd-party libraries on Haxe cpp targets - [THRIFT-5393] - Incorrect namespaces for included types - [THRIFT-3036] - create official haxelib Thrift package - [THRIFT-5413] - Int vs String in method get_size required by property size * Java - [THRIFT-5375] - Put org.apache.tomcat.embed:tomcat-embed-core into scope test - [THRIFT-5383] - TJSONProtocol Java readString throws on bounds check - [THRIFT-5400] - Java library does not export the .annotation package - [THRIFT-5425] - Throw an exception when reading TSimpleJson in Java - [THRIFT-5430] - FieldMetaData synchronized method can trigger deadlock during static class initialization in JVM native code - [THRIFT-5432] - TSaslTransport throw TTransportException of MaxMessageSize reached - [THRIFT-5433] - Add Counter To Thread Name of TThreadPoolServer * JavaScript - [THRIFT-3508] - JS:TS Generator set all fields of the struct as required * Lua - [THRIFT-5417] - Fix Lua compiler omitting default values in Lua service functions - [THRIFT-5439] - Lua Generator does not support const i64 * netstd - [THRIFT-5354] - disable IDE0083 warning - [THRIFT-5382] - Netstd default list/set enums values are generated incorrectly in some cases - [THRIFT-5395] - inconsistent treatment of methods ending in "Async" - [THRIFT-5396] - deprecate "Async" method postfix - [THRIFT-5408] - Support for deprecated methods (via annotation) - [THRIFT-5414] - Use of specific parameter names generates uncompileable code - [THRIFT-5442] - Separate client service calls into send/recv methods and make them public - [THRIFT-5444] - Netstd generator produces uncompileable code for enums ending with "_result" or "_args" - [THRIFT-5445] - "cancellationToken" cannot be used as argument name - [THRIFT-5236] - THttpTransport.cs still has bad timeout code - [THRIFT-5349] - Add net5.0 as supported platform - [THRIFT-5373] - HTTP status in case of Protocol/Transport exceptions - [THRIFT-5391] - Named pipes transport hardening - [THRIFT-5398] - ThreadPoolServer not stoppable via CancellationToken - [THRIFT-5407] - Keep support for .NET Core 3.1 - [THRIFT-5419] - Incorrect usage of thread pool in TThreadPoolAsyncServer may lead to poor performance - [THRIFT-5422] - add threadpool server to netstd test suite impl - [THRIFT-5431] - Response should include 'content-type' header - [THRIFT-5436] - Timeout.Infinite is not a good default * PHP - [THRIFT-5318] - PHP 8 compatible version of binary protocol - [THRIFT-5440] - Add php8 to composer.json * Python - [THRIFT-5352] - Python: IDL exceptions with no fields can't be instantiated * Ruby - [THRIFT-5312] - The Ruby compilation configuration in the .gemspec file is modified to be compatible with later bundler versions. - [THRIFT-5367] - Ruby library crashes when using GC.compact * Rust - [THRIFT-4098] - Support user-defined output namespaces in generated Rust modules - [THRIFT-4101] - Make auto-generated Rust enums and unions more user-extensible - [THRIFT-5314] - Enum forward compatibility - [THRIFT-5363] - All-caps constant rendered incorrectly - Add thrift-pr2487-py310.patch for Python 3.10 compatibility * gh#apache/thrift#2487 * https://issues.apache.org/jira/browse/THRIFT-5488 * required by python-fastparquet ==== xf86-input-wacom ==== - Added hardening to systemd service(s) (bsc#1181400). Added patch(es): * harden_wacom-inputattach@.service.patch

1 0

(15.4) openSUSE-Leap-15.4-NET-x86_64-Media.iso download failed - http 403
by Alex Bihlmaier 19 Jan '22

19 Jan '22

hiya. when downloading the current 15.4 net iso the download fails. ~ » wget https://download.opensuse.org/distribution/leap/15.4/iso/openSUSE-Leap-15.4… --2022-01-16 16:20:23-- https://download.opensuse.org/distribution/leap/15.4/iso/openSUSE-Leap-15.4… Resolving download.opensuse.org (download.opensuse.org) 195.135.221.134, 2001:67c:2178:8::13 Connecting to download.opensuse.org (download.opensuse.org)|195.135.221.134|:443... connected. HTTP request sent, awaiting response... 403 Forbidden 2022-01-16 16:20:23 ERROR 403: Forbidden.

2 1

How to deal with self signed certificates properly?
by Gerald Wiese 18 Jan '22

18 Jan '22

Dear openSUSE community, I already mentionned this problem two months ago: lists.opensuse.org/archives/list/factory@lists.opensuse.org/thread/PXBOKSJW… Unfortunatelly I still can't manage to trust a self-signed certificate using the update-ca-certificates command. The context is GNU Health & Apache installed using Ansible. Any feedback/help would be much appreciated! Here is how to reproduce: Install Ansible pip3 install ansible-core export PATH=$PATH:/home/username/.local/bin Clone Repo (remove spaces between https, link was considered phishing) git clone h t t p s://gitlab.com/geraldwiese/gnuhealth-automatic-deployment.git cd gnuhealth-automatic-deployment/ Execute Playbooks (first might take 10minutes) ansible-playbook gnuhealth.yml -c local -e my_user=`whoami` -K ansible-playbook desktop.yml -c local -e my_user=`whoami` -K Run GNU Health Client & try to connect (leave connection informations unchanged) gnuhealth-client → Error 404 Trust cert properly and try HTTPS sudo cp fetch/gnuhealth-selfsigned.crt /etc/pki/trust/anchors/ sudo update-ca-certificates -v → Nothing updated, still facing error sudo mv /etc/pki/trust/anchors/gnuhealth-selfsigned.crt /etc/pki/trust/anchors/gnuhealth-selfsigned.pem sudo update-ca-certificates -v → Nothing updated, still facing error Trust cert the ugly way, remove config (seems necessary at least partial, don’t know why) cat fetch/gnuhealth-selfsigned.crt | sudo tee -a /var/lib/ca-certificates/ca-bundle.pem rm -r ~/.config/gnuhealth/ gnuhealth-client Enter connection informations: Host: localhost:443 Database: health User name: admin → connection should work I also tried removing the config directory after running update-ca-certificates but this doesn’t work either. And I know I could connect directly to GNU Health locally without HTTPS/Apache but I want to test it in order to add the option to trust selfsigned certificates to the Ansible playbooks for the case of having client & server on different systems. Am I missing something or is this actually a bug? Best Gerald

1 0

mirror optimizer tool
by Bernhard M. Wiedemann 18 Jan '22

18 Jan '22

Hi, tl/dr: my new tool could help you find faster openSUSE mirrors - especially if you are far away from Nuremberg. https://github.com/bmwiedemann/bench-http usage: see README.md The findbestmirror.pl script will add the best mirror to repos that only use download.o.o , if it has write permissions to /etc/zypp/repos.d/ It is a good idea to keep a backup of that dir, in case you want to revert the changes. limitations: 1) a few (5) mirrors do redirects and those are not considered when looking for the best mirror. 2) It does not change repos under /repositories (devel+home), because those are only mirrored in few places and usually only contain few files, so performance impact should not be so large. 3) Can worsen things if the machine travels between very different networks (especially across continents). possible improvements: we could skip measuring download speed for mirrors that show too high RTT (e.g. above 500ms) - that would speed up scanning a lot and probably still produce the same list of best mirrors. Measured from a Provo (Utah, USA) VM with 8 enabled repos. Original repos: zypper clean --all ; time zypper ref --force real 0m58.552s zypper clean ; time zypper -n in -d -f kernel-default real 0m11.405s After modification by ./findbestmirror.pl < out # to add http://provo-mirror.opensuse.org/ repos zypper clean --all ; time zypper ref --force real 0m40.893s zypper clean ; time zypper -n in -d -f kernel-default real 0m6.542s If you try this, please let me know about how it went. On a related note: there is ongoing work hinted at in https://news.opensuse.org/2021/12/23/download-redirector-state/ to improve zypper to contact local mirrorcache servers directly to skip all round-trips to download.o.o in Nuremberg. Yet, with my mirror-optimizer it could still be faster. Ciao Bernhard M.

7 8

Action required: script_run() API change in OpenQA
by Martin Doucha 18 Jan '22

18 Jan '22

Hello, I'd like to notify you about the following GitHub pull request which will change the documented behavior of script_run() within the os-autoinst-distri-opensuse testsuite: https://github.com/os-autoinst/os-autoinst-distri-opensuse/pull/14027 The PR will stay open for 3 weeks, until February 7th, 2022 so that everybody can update their code. The API change is that script_run() will no longer return undef by default when the shell command times out. Instead, script_run() will raise error and the test module will fail. If your test code intentionally accepts command timeout as one of the expected valid results, you can preserve the old behavior by adding a new argument to the call: script_run(..., die_on_timeout => 0); If your code is well-behaved and only treats command timeouts in script_run() as errors, then the only action you need to take is to celebrate another small improvement in OpenQA. -- Martin Doucha mdoucha(a)suse.cz QA Engineer for Software Maintenance SUSE LINUX, s.r.o. CORSO IIa Krizikova 148/34 186 00 Prague 8 Czech Republic

1 0