Hi,
I intend to submit the following package to Factory:
https://build.opensuse.org/package/show/utilities/arch-install-scripts
These scripts are familiar to anyone who has ever installed Arch Linux, but are distro-independent and can prove useful when doing a manual installation (`zypper --root /mnt`), or recovery of a non-booting system.
As a testimonial to this package's usefulness, the first Google result for `arch-install-scripts` for me is not any page on the Arch website, but the Debian package catalog where it is described as “useful for debootstrapping a Debian-based system”.
The included scripts are:
* genfstab — Generates `etc/fstab` based on the running system's mounts.
* arch-chroot — Chroot wrapper with automatic bind mount setup and teardown. Can be used in a pinch as a poor man's docker substitute.
Happy New Year openSUSE!
Let's celebrate it with out first report from the Rel-eng call which
had rather modest attendance but not as modest as on 29th Dec :-)
I did keep previous reports for those who were missing just to ensure
we will not miss any outstanding item from previous meetings.
All meeting minutes can be found here:
https://etherpad.opensuse.org/p/ReleaseEngineering-meeting
Meeting is hosted here
https://meet.opensuse.org/ReleaseEngineeringMeeting
## Attendees
dleuenberger, lkocman,guillaumeg, gp
** Please note. We are uncertain how many people will attend the
engineering meeting over the next three weeks. If there is a meeting,
notes will be sent out. Otherwise, please expect the engineering
meeting to resume on Jan. 12
## Leap
Will be on vacation 15th - 26th Jan
Leap Micro 5.2 initial setup requested
https://etherpad.opensuse.org/p/ReleaseEngineering-leap-micro-discussion-20…
Notes from community meeting - generally good feedback
https://etherpad.opensuse.org/p/weeklymeeting20211216
Issue with publishing of appliances - missing version bump of certain
images and some images fail to build because of removed functionality
from kiwi, same seems to be the case for live images. We need to get
these properly building prior checkin deadline Beta - ideally Feb 16th
https://en.opensuse.org/openSUSE:Roadmap
Working towards any SLES-side blockers on community features prior my
vacation
https://code.opensuse.org/leap/features/issues
Features: discussion regarding fdk-aac-free / piperwire update and KDE
5.18 LTS consideration for 15.4 with Antonio Larossa
armv7 tasks are still missing in Release Checklist for Leap 15.4
https://github.com/openSUSE/openSUSE-release-process/blob/master/Alpha.md
What makes me bit worried is to ensure we do not skip any translation
tasks this release. As the scope of what's needed is bit unclear with
re-using of SLES binaries. Any supervising/documenting on this part
would be highly welcome.
NEW WALLPAPER FOR 15.4 BY SUSE BRAND TEAM
github.com/openSUSE/branding/issues/
## openSUSE Tumbleweed
* Tumbleweed has been rolling over the entire x-mas/new-years break
period (low volume snapshots, as there was a low number of requests)
* Most interesting change was the switch of the default system ruby
version from 2.7 to 3.0 - with an upgrade to 3.1 being tested in
Staging right now (some build fails left to address)
## Richard (Kubic/TW MicroOS)
Experimented with kiwi-less, container-first VM image building. Have a
working prototype that works entirely in OBS, builds a container using
a Dockerfile, takes that container then converts it to a working,
bootable, openSUSE VM.
k8s 1.23.0 still being packaged for Kubic (really wish upstream k8s did
a better job of documenting their changed dependencies...)
Investigating adding nerdctl support to Toolbox
Investigating buildkit and its limits as a container builder
working on a tool to convert existing Tumbleweed (and maybe also Leap)
systems to MicroOS and/or MicroOS Desktop
## Max
On vacation
## Guillaume - Arm
Tumbleweed:
* Rolling again after Christmas break
Leap 15.4:
* armv7:
* publish is not really fixed. No OSS repo, no ISO. Images
released.
=> Adrian is looking into that.
* armv7 images not tested in openQA yet, due to OBS/openQA sync
problem.
=> Todo: Lubos to reach out to new QA Prjmgr to find people who
can fix it.
* opencl-headers package is outdated in Leap 15.4 / SLE15-SP4:
https://bugzilla.opensuse.org/show_bug.cgi?id=1193617 This prevent
armnn to build with opencl support enabled.
## Sarah - s390x
On vacation
* Tumbleweed release not rolling because of compiler bug in PostgreSQL
(bug forwarded to IBM)
https://bugzilla.opensuse.org/show_bug.cgi?id=1190740
-> dependency to https://bugzilla.suse.com/show_bug.cgi?id=1188896
A bugfix from IBM has been tested together with the PostgreSQL14 build.
It seems, that it would be fixing the issue. Another workaround
(provided bz the GCC Developer at IBM) is to use 12GB of memory for a
build because of oom with 4 or 8GB. That is working also in a
constraints file as a workaround.
s390x kernel issue seems to be looked at
https://bugzilla.suse.com/show_bug.cgi?id=1192454 (should be under a
public product SP3).
## Doug
* Membership & Elections
* Elections have started
* Communications about membership are taking place
* Memberships being updated
* GNU Health Conference Talk went well
* Connected GNU Health Team with a counterpart
* Wrote article about new project equipment. Getting approvals from
those helping with article content
* Community meetings making progress on content to help people learn
openSUSE/open source projects
Keep through January
* openSUSE Conference (02.06 - 04.06) contract from Z-Bau not yet
recieved (sent reminder)
* Waiting on reply about openSUSE Summit with OSCAL -
https://etherpad.opensuse.org/p/weeklymeeting20211202
* No update on wallpaper yet.
## Dirk
Not available
## Gerald / Board
[ 20211229 Gerald joined and felt a little lonely. :-) ]
Happy New Year, eveyone!
## Wolfgang (Package Hub), Scott Bahling
Not available
## Maintenance team (Marina or Marcus, Maurizio (m4u))
No news to report.
Marina FTO: Dec 22 - Jan 7
## Adrian - openSUSE Step
Step requires some more discussion as there seems to be no current buy-
in from SLE nor Maintenance team.
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&versio…
Please do not reply to this email to report issues, rather file a bug
on bugzilla.opensuse.org. For more information on filing bugs please
see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
AppStream (0.14.6 -> 0.15.1)
edict (20210429 -> 20211231)
gdm
gtk4 (4.4.1 -> 4.6.0)
iptables
javapackages-tools
lua54
perl-Text-CSV_XS (1.46 -> 1.47)
perl-libwww-perl (6.59 -> 6.60)
rubygem-zeitwerk (2.5.2 -> 2.5.3)
virtualbox
virtualbox-kmp
=== Details ===
==== AppStream ====
Version update (0.14.6 -> 0.15.1)
Subpackages: AppStream-lang libAppStreamQt2 libappstream4
- Update to version 0.15.1
* compose: Port over font support from appstream-generator
* compose: Allow overriding unit used for locale processing
* compose: Refine legacy support for desktop-id launchables
* compose: Allow setting the custom desktop-entry translation function
* compose: Allow to run with threading (mostly) disabled
* compose: Reorganize feature flags, allow to disable l10n
* compose: Allow setting a screenshot file size limit
* compose: Allow to disable screencast processing explicitly
* compose: Allow to test whether result has a specific hint tag
* news-convert: Support a "Translators" section
* validator: Check that first rDNS component-ID parts are always lowercased
* validator: Validate capitalization for some selected text blocks
* vapi: Rename PoolFlag to PoolFlags to add the missing deprecated flags
* Fix cache always getting updated even if unnacessary on Debian systems
* Still verify download return codes if download was aborted intentionally
* compose: Warn if metainfo files are missing and data was processed anyway
- Update to version 0.15.0
* This release contains a complete rewrite of AppStream's
caching code, making use of libxmlb instead of LMDB now.
This will allow for more complex queries and simplifies the
caching code a bit.
* Allow clients to configure the addon autoresolve magic
* Allow clients to control the local metainfo preference
* qt: Add wrappers for new AsPool API
* qt: Wrap the AsPool ::changed signal
* Implement the new "Tags" tag
* Make component-ID search case-insensitive
* compose: Adjust to rsvg API changes
* qt: Align API deprecations with C library API
* Cache Flatpak data properly, and add some quirk fixes for it
- Add BuildRequires itstool
- Add BuildRequires xmlb >= 0.3.6
- Update BuildRequires glib-2.0 to >= 2.62
- Remove BuildRequires lmdb-devel
==== edict ====
Version update (20210429 -> 20211231)
Subpackages: edict2 jmdict
- Update to snapshot 20211231
* No changelog recorded.
==== gdm ====
Subpackages: gdm-lang gdmflexiserver libgdm1 typelib-1_0-Gdm-1_0
- Move
%{_datadir}/glib-2.0/schemas/org.gnome.login-screen.gschema.xml
from main package to new gdm-schema split package and make
libgdm1 depend on the new gdm-schema split package. Currently,
the gdm-schema is required for gnome-shell to work, but
gnome-shell only depends on libgdm1 and not on gdm as a whole,
causing a crash of gnome-shell if the gdm main package is not
installed. By moving the gdm-schema to it's own split package and
making libgdm1 actually require it, the crash can be prevented.
Fixes boo#1194183.
==== gtk4 ====
Version update (4.4.1 -> 4.6.0)
Subpackages: gtk4-lang gtk4-schema libgtk-4-1 typelib-1_0-Gtk-4_0
- Update to version 4.6.0:
+ GtkProgressBar: Fix handling of "inverted".
+ GtkLabel: Add a "natural wrap mode" property to influence how
natural width is determined.
+ GtkTextView: Scroll insertion on-screen after undo / redo.
+ gsk: Abort region diffing when changes are too complex.
+ gdk:
- Avoid compressing discrete scroll events.
- Fix problems with hiding windows.
- Improve GL and GLES version checks.
+ Wayland: Support new high-contrast setting.
+ Inspector: Add DND inspection support.
+ build: Avoid deprecated meson apis.
+ Updated translations.
- Update to version 4.5.1:
+ GtkWidget sizing has been rewritten to implement
width-for-height more properly. This had some fallout, and some
widgets may still not react kindly to the new way of doing
things. See https://blog.gtk.org/2021/12/03/sizable-news/ for
details, and please file issues if you notice fallout.
+ Rename git `master` branch to `main`
+ Css:
- Fully support font-variant-caps
- Fix a crash with gradients
+ Make various widgets activatable:
- GtkComboBox
- GtkDropDown
+ GtkPopover: Make focus indicators not disappear
+ GtkTextView:
- Don't leave embedded children stranded when scrolling
- Don't insert Emoji into non-editable textviews
- Fix Emoji chooser positioning
- Fix problems with pasting text
- Improve scroll-to-mark behavior
- Support right-aligned, centered and decimal tabs
- Make child anchor replacement character settable
- Provide more context to input methods
+ GtkDragIcon: Provide default icons for paintables and files
+ GtkBuilder: Speed up template precompilation
+ Actions:
- Reduce allocations during signal emissions
- Avoid duplication and unnecessary recursion
+ Inspector:
- Show the selected im-module in the General tab
- Add a clipboard viewer
- Make the recorder record events too
- Add a graph visualizing gtk_widget_measure()
+ Gsk:
- Fix hexbox rendering
- Fix transformed linear gradient rendering
+ Printing: Fix dialog-less printing
+ X11:
- Improve behavior of windows drags on headerbar controls
- Trap errors for RANDR changes
- Fix problems with drag icons
+ Wayland: Ensure we prefer the Wayland im-module over others
+ Updated translations.
- Changes from version 4.5.0:
+ gsk:
- Drop the GL renderer in favor of NGL
- Rename NGL to GL
- Fix some coordinate overflow issues
- Reimplement texture upload and download for better support of
image formats and color spaces
- New api:
* gsk_transform_skew
* gsk_transform_to_2d_components
+ gdk:
- Support HSL in gdk_rgba_parse
- Use libpng, libjpeg and libtiff directly when loading
textures, and support more image formats (including 16bit and
float formats)
- New apis:
* gdk_texture_new_from_bytes
* gdk_texture_new_from_filename
* gdk_texture_download_float
* gdk_texture_save_to_png_bytes
* gdk_texture_save_to_tiff
* gdk_texture_save_to_tiff_bytes
* gdk_display_create_gl_context
- Implement GIcon and GLoadableIcon in GdkTexture
- Move EGL initialization to the frontend
- Use configless EGL contexts, if supported
- Use >8bit pixel formats, if supported and requested
+ css:
- Add support for line-height
- Add support for text-transform
+ theme: Fixes for buttons in toolbars
+ input:
- Update compose sequences from libX11 1.7.2
- Accept replacement string longer than 20 characters
+ text:
- Implement sloped caret drawing
- Add a gtk-hint-font-metrics setting to switch font rendering
to be more similar to GTK3
+ GtkTextView:
- Add support for line height
- Add support for text transforms
- Misc fixes for css->pango attribute translations
- Invalidate pango contexts when font settings change
- Improve undo grouping when overwriting
+ GtkListView:
- Make tree indentation more flexible with
GtkTreeExpander:indent-for-icon
+ GtkMenuButton: Support custom children
+ GtkFlowBox: Add prepend and append
+ GtkCalendar: Fix handling of weeks starting on Monday
+ GtkWindow: Add a titlebar property
+ GtkDropDown: Add a show-arrow property
+ GtkPopoverMenu: Support a use-markup attribute in menu models
+ Add GtkSymbolicPaintable
+ Tools: Support DND in gtk4-node-editor and the inspector's
recorder
+ Demos: Improve the font rendering demo
+ Build:
- Require Pango 1.49
- Require libpng, libtiff and libjpeg
- Speed up handling of resources during build
+ X11: Support touchpad gestures with XInput 2.4
+ Updated translations.
- Drop gtk4-fix-link-to-g_signal_emit.patch: fixed upstream.
- Add docutils, pkgconfig(libjpeg), pkgconfig(libpng) and
pkgconfig(libtiff-4) BuildRequires: New dependencies.
==== iptables ====
Subpackages: libip4tc2 libip6tc2 libxtables12 xtables-plugins
- Only use nftables backend when iptables-backend-nft is installed
when using libalternatives
==== javapackages-tools ====
Subpackages: javapackages-filesystem
- Fix typo in suse-use-libdir.patch:
%{_libdir}/jvm-commmon -> %{_libdir}/jvm-common
==== lua54 ====
- Re-enable readline support in Lua, the way to do this changed
in Lua 5.4
- Because we are linking with readline add GPLv3+ only to the
main package
- Subsequently, update main_test.patch to ignore another test
- Update upstream-bugs.patch and upstream-bugs-test.patch to fix
bugs 9,10,12 for build and tests respectively. Bug 11 changes
interface of luaD_pretailcall.
==== perl-Text-CSV_XS ====
Version update (1.46 -> 1.47)
- updated to 1.47
see /usr/share/doc/packages/perl-Text-CSV_XS/ChangeLog
1.47 - 2021-12-21, H.Merijn Brand
* Make error 2014 catchable
* Suppress empty lines on empty input (issue 34)
* Perl 6 -> Raku in docs (RT#136864)
* IETF changed their URLs
* Add some documentation for Google hist (Nigel)
==== perl-libwww-perl ====
Version update (6.59 -> 6.60)
- updated to 6.60
see /usr/share/doc/packages/perl-libwww-perl/Changes
6.60 2021-12-17 22:29:57Z
- Warn if updating modification time of mirrored file fails (GH#399) (Ville Skyttä)
==== rubygem-zeitwerk ====
Version update (2.5.2 -> 2.5.3)
- updated to version 2.5.3
* The change introduced in 2.5.2 implied a performance regression
that was particularly dramatic in Ruby 3.1. We'll address
[#198](https://github.com/fxn/zeitwerk/issues/198) in a different way.
==== virtualbox ====
Subpackages: virtualbox-guest-tools virtualbox-guest-x11
- Tumbleweed no longer assigns the group "users" to a user, which breaks TW guests under VirtualBox.
This is fixed by adding 'TAG+="uaccess"' to the udev rule that creates /dev/vboxuser. Thanks to Andrei Borzenkov
for help with this problem. This fixes boo#1194065.
==== virtualbox-kmp ====
- Tumbleweed no longer assigns the group "users" to a user, which breaks TW guests under VirtualBox.
This is fixed by adding 'TAG+="uaccess"' to the udev rule that creates /dev/vboxuser. Thanks to Andrei Borzenkov
for help with this problem. This fixes boo#1194065.
Hi everyone,
There's a input method framework called fcitx4 shipped with openSUSE Tumbleweed and Leap, but when the whole project turns to new fcitx5, fcitx4 seems to be abounded and outdated. As far as I know, fcitx5 only exists in i18n project on the OBS, not in the main OSS repo. Could it possible to replace fcitx4 with fcitx5 in factory's OSS repo? So that Tumbleweed and Leap will finally benefit from it.
LS,
Due to time constrains, I just post the issue first here. After a short
time, 5.15.8 and 5.16.9-rc6 crash again. Probably different reason as
before.
Log listing:
Dec 20 10:47:17 pws1 systemd[2497]: Started Kate - Advanced Text Editor.
Dec 20 10:47:20 pws1 kioslave5[4403]: Qt: Session management error:
networkIdsList argument is NULL
Dec 20 10:53:59 pws1 kernel: amdgpu 0000:03:00.0: amdgpu: Failed to
export SMU metrics table!
Dec 20 10:54:02 pws1 kernel: amdgpu 0000:03:00.0: amdgpu: SMU: I'm not
done with your previous command: SMN_C2PMSG_66:0x00000012
SMN_C2PMSG_82:0x00000005
Dec 20 10:54:02 pws1 kernel: amdgpu 0000:03:00.0: amdgpu: Failed to
export SMU metrics table!
Dec 20 10:54:06 pws1 kernel: amdgpu 0000:03:00.0: amdgpu: SMU: I'm not
done with your previous command: SMN_C2PMSG_66:0x00000012
SMN_C2PMSG_82:0x00000005
Dec 20 10:54:06 pws1 kernel: amdgpu 0000:03:00.0: amdgpu: Failed to
export SMU metrics table!
Dec 20 10:54:06 pws1 kernel: [drm:amdgpu_job_timedout [amdgpu]] *ERROR*
ring gfx_0.0.0 timeout, signaled seq=51260, emitted seq=51262
Dec 20 10:54:06 pws1 kernel: [drm:amdgpu_job_timedout [amdgpu]] *ERROR*
Process information: process Xorg.bin pid 1903 thread Xorg.bin:cs0 pid 1937
Dec 20 10:54:06 pws1 kernel: amdgpu 0000:03:00.0: amdgpu: GPU reset begin!
Dec 20 10:54:06 pws1 kernel: [drm:amdgpu_cs_ioctl [amdgpu]] *ERROR*
Failed to initialize parser -125!
Dec 20 10:54:09 pws1 kernel[1828]: Last message '[drm:amdgpu_cs_ioctl'
repeated 4 times, suppressed by syslog-ng on pws1.fransdb.local
Dec 20 10:54:09 pws1 kernel: amdgpu 0000:03:00.0: amdgpu: SMU: I'm not
done with your previous command: SMN_C2PMSG_66:0x00000012
SMN_C2PMSG_82:0x00000005
Dec 20 10:54:09 pws1 kernel: amdgpu 0000:03:00.0: amdgpu: Failed to
disable gfxoff!
Dec 20 10:54:10 pws1 kernel: [drm:amdgpu_cs_ioctl [amdgpu]] *ERROR*
Failed to initialize parser -125!
Dec 20 10:54:21 pws1 kernel[1828]: Last message '[drm:amdgpu_cs_ioctl'
repeated 7 times, suppressed by syslog-ng on pws1.fransdb.local
Dec 20 10:54:20 pws1 kernel: amdgpu 0000:03:00.0:
[drm:amdgpu_ring_test_helper [amdgpu]] *ERROR* ring kiq_2.1.0 test
failed (-110)
Dec 20 10:54:20 pws1 kernel: [drm:gfx_v10_0_hw_fini [amdgpu]] *ERROR*
KGQ disable failed
Dec 20 10:54:20 pws1 kernel: amdgpu 0000:03:00.0:
[drm:amdgpu_ring_test_helper [amdgpu]] *ERROR* ring kiq_2.1.0 test
failed (-110)
Dec 20 10:54:20 pws1 kernel: [drm:gfx_v10_0_hw_fini [amdgpu]] *ERROR*
KCQ disable failed
Dec 20 10:54:21 pws1 kernel: [drm:gfx_v10_0_hw_fini [amdgpu]] *ERROR*
failed to halt cp gfx
Dec 20 10:54:24 pws1 kernel: amdgpu 0000:03:00.0: amdgpu: SMU: I'm not
done with your previous command: SMN_C2PMSG_66:0x00000012
SMN_C2PMSG_82:0x00000005
Dec 20 10:54:24 pws1 kernel: amdgpu 0000:03:00.0: amdgpu: Failed to
disable smu features.
Dec 20 10:54:24 pws1 kernel: amdgpu 0000:03:00.0: amdgpu: Fail to
disable dpm features!
Dec 20 10:54:24 pws1 kernel: [drm:amdgpu_device_ip_suspend_phase2
[amdgpu]] *ERROR* suspend of IP block <smu> failed -62
Dec 20 10:54:24 pws1 kernel: [drm] free PSP TMR buffer
Dec 20 10:54:25 pws1 kernel: [drm] psp gfx command DESTROY_TMR(0x7)
failed and response status is (0x80000306)
Dec 20 10:54:25 pws1 kernel: amdgpu 0000:03:00.0: amdgpu: MODE1 reset
Dec 20 10:54:25 pws1 kernel: amdgpu 0000:03:00.0: amdgpu: GPU mode1 reset
Dec 20 10:54:25 pws1 kernel: amdgpu 0000:03:00.0: amdgpu: GPU smu mode1
reset
Dec 20 10:54:29 pws1 kernel: amdgpu 0000:03:00.0: amdgpu: SMU: I'm not
done with your previous command: SMN_C2PMSG_66:0x00000012
SMN_C2PMSG_82:0x00000005
Dec 20 10:54:29 pws1 kernel: amdgpu 0000:03:00.0: amdgpu: GPU mode1
reset failed
Dec 20 10:54:29 pws1 kernel: amdgpu 0000:03:00.0: amdgpu: ASIC reset
failed with error, -62 for drm dev, 0000:03:00.0
^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
----------------------------
I shall report this later today in bugzilla.
5.15.7 and 5.16.0-rc5 where fine.
Regards, Frans.
--
A: Yes, just like that A: Ja, net zo
Q: Oh, Just like reading a book backwards Q: Oh, net als een boek achterstevoren lezen
A: Because it upsets the natural flow of a story A: Omdat het de natuurlijke gang uit het verhaal haalt
Q: Why is top-posting annoying? Q: Waarom is Top-posting zo irritant?
Hi!
Does anyone else have issues building packages in OBS locally at the moment?
Currently, local builds are stuck for me trying to download packages. Even
from machines on the SUSE network. So, it's not a local network problem on
my side.
Adrian
I am seeing a lot of traffic with GET URLs such as these:
GET /repositories/./Apache:/MirrorBrain/SLE_15_SP2/x86_64/http://build.opensuse.org/
GET /repositories/Apache/openSUSE_Leap_15.2/x86_64/https://software.opensuse.org/
GET /repositories/./Apache:/Shibboleth/SLE_12_SP2/repodata/http://build.opensuse.org/
GET /repositories/./Apache:/MirrorBrain/SLE_15_SP2/https://software.opensuse.org/
Of course they all result in a 404, but currently such requests take up
almost 10% of our total http traffic.
Does anyone recognise that unusual request format,
with 'https://software.opensuse.org/' or 'http://build.opensuse.org/'
appended ?
This started on 6 December with a few hundred thousand requests, but
grew to 2million by 13 December, now around 3.5-4million a day.
--
Per Jessen, Zürich (7.9°C)
Member, openSUSE Heroes
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&versio…
Please do not reply to this email to report issues, rather file a bug
on bugzilla.opensuse.org. For more information on filing bugs please
see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
cups
libcap (2.61 -> 2.62)
=== Details ===
==== cups ====
Subpackages: cups-client cups-config libcups2 libcups2-32bit libcupsimage2
- Provide /usr/share/cups/ppdc/ in the "cups" main package
to avoid that "lpinfo -m" results in /var/log/cups/error_log
things like "ppdc: Unable to find include file font.defs"
or "ppdc: Unable to find include file hp.h" and then
"Bad driver information file /usr/share/cups/drv/sample.drv"
(bsc#1186843)
- When cupsd creates directories with specific owner group
and permissions (usually owner is 'root' and group matches
"configure --with-cups-group=lp") specify same owner group and
permissions in the RPM spec file to ensure those directories
are installed by RPM with the right settings because if those
directories were installed by RPM with different settings then
cupsd would use them as is and not adjust its specific owner
group and permissions which could lead to privilege escalation
from 'lp' user to 'root' via symlink attacks e.g. if owner is
falsely 'lp' instead of 'root' CVE-2021-25317 (bsc#1184161)
- upstream_pull_174.patch is
https://github.com/OpenPrinting/cups/pull/174
"Use 60s timeout for read_thread, revert read limits"
to fix printing with older USB printers
- New upstream URL https://openprinting.github.io/cups
- Disable testsuite for now via "bcond_with testsuite"
until https://github.com/OpenPrinting/cups/issues/155 is fixed
- Add "testsuite" conditional that disables anything within %check
- fix-negotiate-authentication-between-CGIs-and-scheduler.patch
fixes web UI Kerberos authentication (bsc#1175960)
- Upstream changed to https://github.com/OpenPrinting/cups
- Added %check section to specfile that executes
the old 'make check' and the new (see 2.3.3op1) 'make test'
- Version upgrade to 2.3.3op2:
* Security: Fixed a buffer (read) overflow
in the ippReadIO function (CVE-2020-10001)
* Clarified the documentation for the "Listen" directive
* Fixed duplicate ColorModel entries for AirPrint printers
* Fixed directory/permission defaults for Debian
kfreebsd-based systems
* Fixed crash bug in ppdOpen
* Fixed regression in snprintf emulation function
* The scheduler's systemd service file now waits
for the nslcd service to start
* The libusb-based USB backend now uses a simpler read timer
implementation to avoid a regression in a previous change
* The PPD caching code now only tracks the APPrinterIconPath
value on macOS
* Fixed segfault in help.cgi when searching in man pages
* Root certificates were incorrectly stored in "~/.cups/ssl".
* Version upgrade to 2.3.3op1:
* The automated test suite can now be activated using make test
for consistency with other projects and CI environments - the
old make check continues to work as well, and the previous test
server behavior can be accessed by running make testserver.
* ippeveprinter now supports multiple icons and strings files.
* ippeveprinter now uses the system's FQDN with Avahi.
* ippeveprinter now supports Get-Printer-Attributes on "/".
* ippeveprinter now uses a deterministic "printer-uuid" value.
* ippeveprinter now uses system sounds on macOS
for Identify-Printer.
* Updated ippfind to look for files in "~/Desktop" on Windows.
* Updated ippfind to honor SKIP-XXX directives with PAUSE.
* Updated IPP Everywhere support to work around printers that only
advertise color raster support but really also support grayscale
* ipptool now supports DNS-SD URIs like
ipps://My%20Printer._ipps._tcp.local
* The scheduler now allows root backends to have world read
permissions but not world execute permissions
* Failures to bind IPv6 listener sockets no longer cause errors
if IPv6 is disabled on the host
* The SNMP backend now supports the HP and Ricoh vendor MIBs
* The scheduler no longer includes a timestamp in files it writes
* The systemd service names are now "cups.service"
and "cups-lpd.service"
* The scheduler no longer adds the local hostname to
the ServerAlias list
* Added LogFileGroup directive in "cups-files.conf" to control
the group owner of log files
* Added --with-max-log-size configure option
* Added --enable-sync-on-close configure option
* Added --with-error-policy configure option
* IPP Everywhere PPDs could have an "unknown" default InputSlot
* The httpAddrListen function now uses a listen backlog of 128.
* Added USB quirks
* Fixed IPP Everywhere v1.1 conformance issues in ippeveprinter.
* Fixed DNS-SD name collision support in ippeveprinter.
* Fixed compiler and code analyzer warnings.
* Fixed TLS support on Windows.
* Fixed ippfind sub-type searches with Avahi.
* Fixed the default hostname used by ippeveprinter on macOS.
* Fixed resolution of local IPP-USB printers with Avahi.
* Fixed coverity issues
* Fixed httpAddrConnect issues
* Fixed web interface device URI issue
* Fixed lp/lpr "printer/class not found" error reporting
* Fixed xinetd support for LPD clients
* Fixed libtool build issue
* Fixed a memory leak in the scheduler
* Fixed a potential integer overflow in the PPD hashing code
* Fixed output-bin and print-quality handling issues
* Fixed PPD options getting mapped to odd IPP values
like "tray---4"
* Fixed remote access to the cupsd.conf and log files
* Fixed the automated test suite when running in certain
build/CI environments
* Fixed a logging regression caused by a previous change
for Apple issue #5604
* Fixed fax phone number handling with GNOME
* Fixed potential rounding error in rastertopwg filter
* Fixed the "uri-security-supported" value from the scheduler
* Fixed IPP backend crash bug with "printer-alert" values
* Removed old Solaris inetconv(1m) reference in cups-lpd man page
* Fixed default options that incorrectly use the "custom" prefix
* Fixed a memory leak when resolving DNS-SD URIs
* Fixed systemd status reporting by adopting the notify interface
* Fixed crash in rastertopwg
* Fixed cupsManualCopies values in IPP Everywhere PPDs
- Removed let-cupsd-start-after-network.patch
as it is no longer required
- Removed CVE-2020-10001.patch as a fix as been merged upstream
- Removed section of specfile responsible for
renaming "org.cups.cups*" systemd files to cups*, due to
upstream renaming these files
- Remove code comments from expanded scriptlets to reduce size
cf. https://build.opensuse.org/request/show/879976
- CVE-2020-10001.patch fixes CVE-2020-10001 (bsc#1180520)
access to uninitialized buffer in ipp.c
- Version upgrade to 2.3.3:
* CVE-2020-3898: The 'ppdOpen' function did not handle invalid UI
constraint. 'ppdcSource::get_resolution' function did not
handle invalid resolution strings.
* CVE-2019-8842: The 'ippReadIO' function may under-read an
extension field.
* Fixed WARNING_OPTIONS support for GCC 9.x
Changes in CUPS 2.3.2:
Localization updates
Changes in CUPS 2.3.1:
* CVE-2019-2228: The 'ippSetValuetag' function did not validate
the default language value.
* Fixed a crash bug in the web interface.
* The PPD cache code now looks up page sizes using their
dimensions.
* PPD files containing "custom" option keywords did not work.
* Added a workaround for the scheduler's systemd support.
* Added a DigestOptions directive for the 'client.conf' file to
control whether MD5-based Digest authentication is allowed.
* Fixed a bug in the handling of printer resource files.
* The libusb-based USB backend now reports an error when the
distribution permissions are wrong.
* Added paint can labels to Dymo driver.
* The 'ippeveprinter' program now supports authentication.
* The 'ippeveprinter' program now advertises DNS-SD services on
the correct interfaces, and provides a way to turn them off.
* The '--with-dbusdir' option was ignored by the configure
script.
* Sandboxed applications were not able to get the default
printer.
* Log file access controls were not preserved by 'cupsctl'.
* Default printers set with 'lpoptions' did not work in all
cases.
* Fixed an error in the jobs web interface template.
* Fixed an off-by-one error in 'ippEnumString'.
* Fixed some new compiler warnings.
* Fixed a few issues with the Apple Raster support.
* The IPP backend did not detect all cases where a job should be
retried using a raster format.
* Fixed spelling of "fold-accordion".
* Fixed the default common name for TLS certificates used by
'ippeveprinter'.
* Fixed the option names used for IPP Everywhere finishing
options.
* Added support for the second roll of the DYMO Twin/DUO label
printers.
Changes in CUPS v2.3.0:
* CVE-2019-8696 and CVE-2019-8675: Fixed SNMP buffer overflows.
* Added a GPL2/LGPL2 exception to the new CUPS license terms.
* Fixed a bug in the scheduler job cleanup code.
* Fixed builds when there is no TLS library.
* "make" failed with GZIP options.
* Fixed potential excess logging from the scheduler when removing
job files.
* Fixed a NULL pointer dereference bug in 'httpGetSubField2'.
* Added FIPS-140 workarounds for GNU TLS.
* The scheduler no longer provides a default value for the
description.
* The scheduler now logs jobs held for authentication using the
error level so it is clear what happened.
* The 'lpadmin' command did not always update the PPD file for
changes to the 'cupsIPPSupplies' and 'cupsSNMPSupplies' keywords.
* The scheduler now uses both the group's membership list as well
as the various OS-specific membership functions to determine
whether a user belongs to a named group.
* Added USB quirks rule for HP LaserJet 1015.
* Fixed some PPD parser issues.
* The IPP parser no longer allows invalid member attributes in
collections.
* The configure script now treats the "wheel" group as a
potential system group.
* Fixed IPP buffer overflow.
* Fixed memory disclosure issue in the scheduler.
* Fixed DoS issues in the scheduler.
* Fixed an issue with unsupported "sides" values in the IPP
backend.
* The scheduler would restart continuously when idle and printers
were not shared.
* Fixed an issue with 'EXPECT !name WITH-VALUE ...' tests.
* Fixed a command ordering issue in the Zebra ZPL driver.
* Fixed a memory leak in 'ppdOpen'.
Changes in CUPS v2.3rc1:
* The 'cups-config' script no longer adds extra libraries when linking against
shared libraries.
* The supplied example print documents have been optimized for
size.
* The 'cupsctl' command now prevents setting "cups-files.conf"
directives.
* The "forbidden" message in the web interface is now explained.
* The footer in the web interface covered some content on small
displays.
* The libusb-based USB backend now enforces read limits,
improving print speed in many cases.
* The 'ippeveprinter' command now looks for print commands in
the "command" subdirectory.
* The 'ipptool' command now supports '$date-current' and
'$date-start' variables to insert the current and starting date
and time values, as well as ISO-8601 relative time values such
as "PT30S" for 30 seconds in the future.
Changes in CUPS v2.3b8
* Media size matching now uses a tolerance of 0.5mm.
* The lpadmin command would hang with a bad PPD file.
* Fixed a potential crash bug in cups-driverd.
* Fixed a performance regression with large PPDs.
* Fixed a memory reallocation bug in HTTP header value expansion.
* Timed out job submission now yields an error.
* Restored minimal support for the 'Emulators' keyword in PPD
files to allow old Samsung printer drivers to continue to work.
* The scheduler did not encode octetString values like
"job-password" correctly for the print filters.
* The 'cupsCheckDestSupported' function did not check octetString
values correctly.
* Added support for 'UserAgentTokens' directive in "client.conf".
* Updated the systemd service file for cupsd.
* The 'ippValidateAttribute' function did not catch all instances
of invalid UTF-8 strings.
* Fixed an issue with the self-signed certificates generated by
GNU TLS.
* Fixed a potential memory leak when reading at the end of a
file.
* Fixed potential unaligned accesses in the string pool.
* Fixed a potential memory leak when loading a PPD file.
* Added a USB quirks rule for the Lexmark E120n.
* Updated the USB quirks rule for Zebra label printers.
* The lpadmin command, web interface, and scheduler all queried
an IPP Everywhere printer differently, resulting in different
PPDs for the same printer.
* The web interface no longer provides access to the log files.
* Non-Kerberized printing to Windows via IPP was broken.
* The scheduler no longer stops a printer if an error occurs when
a job is canceled or aborted.
* Added a USB quirks rule for the DYMO 450 Turbo.
* Added a USB quirks rule for Xerox printers.
* The scheduler's self-signed certificate did not include all of
the alternate names for the server when using GNU TLS.
* Fixed some PPD caching and IPP Everywhere PPD
accounting/password bugs.
* Fixed 'PreserveJobHistory' bug with time values.
* The scheduler no longer advertises the HTTP methods it
supports.
* The scheduler did not always idle exit as quickly as it could.
* Added a new 'ippeveprinter' command based on the old ippserver
sample code.
Changes in CUPS v2.3b7
* Running ppdmerge with the same input and output filenames did
not work as advertised.
* Rebase let-cupsd-start-after-network.patch and
cups-config-libs.patch.
* Drop issue5509-fix-utf-8-validation-issue.patch and
issue5453.patch: fixed upstream.
- make cups-devel pull in cups-rpm-helper to fix printer driver
provides (boo#1172407)
- Fixes for %_libexecdir changing to /usr/libexec
- Add issue5509-fix-utf-8-validation-issue.patch (bsc#1118118)
Fixes https://github.com/apple/cups/issues/5509
- Remove libcupscgi1, libcupsmime1, libcupsppdc1 from
baselibs.conf
- Version upgrade to 2.3b6:
This is the sixth beta of the CUPS 2.3 series which adopts the
new CUPS license, adds support for IPP presets and finishing
templates, and fixes a number of bugs and "polish" issues.
For details see https://github.com/apple/cups/releases
or the CHANGES.md file.
Backward incompatible changes:
* The cupsaddsmb program has been removed (Issue #5449)
* The cupstestdsc program has been removed (Issue #5450)
* The cupscgi, cupsmime, and cupsppdc support libraries
are no longer installed as shared libraries.
Changes include:
* CVE-2018-4700: Linux session cookies used a predictable
random number seed.
* The lpoptions command now works with IPP Everywhere printers
that have not yet been added as local queues (Issue #5045)
* The lpadmin command would create a non-working printer
in some error cases (Issue #5305)
* The scheduler would crash if an empty AccessLog directive
was specified (Issue #5309)
* The scheduler did not idle-exit on some
Linux distributions (Issue #5319)
* Fixed a regression in the changes to ippValidateAttribute
(Issue #5322, Issue #5330)
* Fixed a crash bug in the Epson dot matrix driver (Issue #5323)
* Automatic debug logging of job errors did not work
with systemd (Issue #5337)
* The web interface did not list the
IPP Everywhere "driver" (Issue #5338)
* The scheduler did not report all of the supported job options
and values (Issue #5340)
* The IPP Everywhere "driver" now properly supports
face-up printers (Issue #5345)
* Fixed some typos in the label printer drivers (Issue #5350)
* Setting the Community name to the empty string in snmp.conf
now disables SNMP supply level monitoring by all the
standard network backends (Issue #5354)
* Multi-file jobs could get stuck if the backend failed
(Issue #5359, Issue #5413)
* The IPP Everywhere "driver" no longer does local filtering
when printing to a shared CUPS printer (Issue #5361)
* The lpadmin command now correctly reports IPP errors
when configuring an IPP Everywhere printer (Issue #5370)
* Fixed some memory leaks discovered by Coverity (Issue #5375)
* The PPD compiler incorrectly terminated JCL options
(Issue #5379)
* The cupstestppd utility did not generate errors for
missing/mismatched CloseUI/JCLCloseUI keywords (Issue #5381)
* The scheduler now reports the actual location
of the log file (Issue #5398)
* The generated PPD files for IPP Everywhere printers
did not contain the cupsManualCopies keyword (Issue #5433)
* Kerberos credentials might be truncated (Issue #5435)
* The handling of MaxJobTime 0 did not match the documentation
(Issue #5438)
* Fixed a bug adding a queue with the -E option (Issue #5440)
* The scheduler did not validate that required initial request
attributes were in the operation group (rdar://41098178)
* Fixed an issue with HTTP Digest authentication
(rdar://41709086)
* The scheduler could crash when job history was purged
(rdar://42198057)
* Fixed a crash bug when mapping PPD duplex options
to IPP attributes (rdar://46183976)
* Fixed a memory leak for some IPP (extension) syntaxes.
* The snmp backend is now deprecated.
- issue5453.patch fixes https://github.com/apple/cups/issues/5453
- Version upgrade to 2.3b5:
This is the fifth beta of the CUPS 2.3 series which adopts the
new CUPS license, adds support for IPP presets and finishing
templates, and fixes a number of bugs and "polish" issues.
For details see https://github.com/apple/cups/releases
or the CHANGES.md file.
Changes include:
* The ipptool program no longer checks for duplicate attributes
when running in list or CSV mode (Issue #5278)
* The cupsCreateJob, cupsPrintFile2, and cupsPrintFiles2 APIs
did not use the supplied HTTP connection (Issue #5288)
* Fixed another crash in the scheduler when adding an IPP
Everywhere printer (Issue #5290)
* Added a workaround for certain web browsers that
do not support multiple authentication schemes
in a single response header (Issue #5289)
* Fixed policy limits containing the All operation (Issue #5296)
* The scheduler was always restarted after idle-exit
with systemd (Issue #5297)
* The mailto notifier did not wait for the
welcome message (Issue #5312)
* Fixed a parsing bug in the pstops filter (Issue #5321)
* The scheduler allowed environment variables to be specified
in the cupsd.conf file (rdar://37836779, rdar://37836995,
rdar://37837252, rdar://37837581)
* Fax queues did not support pause (p) or
wait-for-dialtone (w) characters (rdar://39212256)
* The scheduler did not validate notify-recipient-uri values
properly (rdar://40068936)
* The IPP parser allowed invalid group tags (rdar://40442124)
* Fixed a parsing bug in the new authentication code.
- issue5296_fix_policy_limits_using_All.patch is obsolete
because it is fixed upstream (see "Issue #5296" above)
- Add patch let-cupsd-start-after-network.patch
Let cuspd start after possible network connection (boo#1111351)
This let cupsd also stop before a used network connection goes
down, hence the cusp does not lock due waiting on remote printers.
- Fix warning message upon update (boo#1050845): Remove template
service cups-lpd@ from service_* macro in scriptlets.
- issue5296_fix_policy_limits_using_All.patch fixes
https://github.com/apple/cups/issues/5296
by only the actually relevant part of
https://github.com/apple/cups/commit/0873f681e43c04972b3d6bc90bdbdedb29e6e9…
(follow-up of boo#936309 and bsc#577936 starting at comment 13)
- Version upgrade to 2.3b4:
This is the fourth beta of the CUPS 2.3 series.
For details see https://github.com/apple/cups/releases
or the CHANGES.md file.
Changes include:
* Additional security fixes for:
bsc#1061066 DBUS library aborts caller process
in _dbus_check_is_valid_utf8 (in particular that aborts cupsd)
and
bsc#1087018 CVE-2017-18248: cups: The add_job function in
scheduler/ipp.c in CUPS before 2.2.6, when D-Bus support is
enabled, can be crashed by remote attackers by sending print
jobs with an invalid username, related to a D-Bus notification
which are the CUPS upstream issues
https://github.com/apple/cups/issues/5143
Remote DoS attack against cupsd via invalid username
and malicious D-Bus library
and
https://github.com/apple/cups/issues/5186
squash non-UTF-8 strings into ASCII on plain IPP level
and
https://github.com/apple/cups/issues/5229
persistently substitute invalid job attributes
with default values - not only in add_job
see also
bsc#1087072 dbus-1:
Disable assertions to prevent un-expected DDoS attacks
* NOTICE: Raw print queues are now deprecated (Issue #5269)
so that now there is a warning message when you
add or modify a queue to use the "raw driver" but
raw printing will continue to work through CUPS 2.3.x, cf.
https://lists.cups.org/pipermail/cups/2018-March/074060.html
* Kerberized printing to another CUPS server did not work
correctly (Issue #5233)
* The scheduler now supports using temporary print queues
for older IPP/1.1 print queues like those shared by CUPS 1.3
and earlier (Issue #5241)
* Systemd did not restart cupsd when configuration changes
were made that required a restart (Issue #5263)
* Fixed an Avahi crash bug in the scheduler (Issue #5268)
* TLS connections now properly timeout (rdar://34938533)
* Removed support for the '-D_PPD_DEPRECATED=""' developer
cheat - the PPD API should no longer be used.
* Removed support for '-D_IPP_PRIVATE_STRUCTURES=1' developer
cheat - the IPP accessor functions should be used instead.
* The symlink rastertodymo -> rastertolabel
in /usr/lib/cups/filter is no longer provided.
- Removed fix_filter_Makefile.patch
because since CUPS 2.3b4 it is fixed in the upstream code via
https://github.com/apple/cups/issues/5247 more precisely via
https://github.com/apple/cups/commit/ab89234de2d9bf36bb59f2aa4873d98e95ca4d…
- Version upgrade to 2.3b3:
This is the third beta of the CUPS 2.3 series.
For details see https://github.com/apple/cups/releases
Changes include:
* More fixes for printing to old CUPS servers (Issue #5211)
* Additional changes for the scheduler to substitute
default values for invalid job attributes
when running in "relaxed conformance" mode
(Issue #5229 - a follow-up of issues #5186 and #5143)
A detailed list of changes can be found in the CHANGES.md file.
- fix_filter_Makefile.patch fixes
https://github.com/apple/cups/issues/5247
- Version upgrade to 2.3b2:
This is the second beta of the CUPS 2.3 series.
For details see https://github.com/apple/cups/releases
Changes include:
* Printing to old CUPS servers has been fixed (Issue #5211)
A detailed list of changes can be found in the CHANGES.md file.
==== libcap ====
Version update (2.61 -> 2.62)
Subpackages: libcap2 libcap2-32bit
- update to 2.62:
* Bug fix for Go package "cap" and launching
* Build cleanups
* Documentation updates: cap_max_bits has a man page entry
* Recognize default securebits as a libcap mode: HYBRID
Hi,
while there is a discussion ongoing about Python versions in Leap 15.4 I
noticed that the python setup for Leap 15.3 seems to be broken:
It now requires explicit declaration of
BuildRequires: python-rpm-macros
which was not the case before, and is not required for other Leap Flavours or
Tumbleweed.
Can that be fixed on a distribution level? Otherwise I would need to change
some hundred specfiles just for Leap 15.3.....
Thanks
Axel
