openSUSE Factory
Threads by month
- ----- 2025 -----
- January
- ----- 2024 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2023 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2022 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2021 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2020 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2019 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2018 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2017 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2016 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2015 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2014 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2013 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2012 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2011 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2010 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2009 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2008 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2007 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2006 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2005 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2004 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2003 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2002 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2001 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
March 2022
- 80 participants
- 81 discussions
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&versio…
Please do not reply to this email to report issues, rather file a bug
on bugzilla.opensuse.org. For more information on filing bugs please
see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
MozillaFirefox (97.0.1 -> 98.0)
curl (7.81.0 -> 7.82.0)
kernel-source (5.16.11 -> 5.16.14)
mariadb
ndctl
nodejs17 (17.6.0 -> 17.7.0)
osinfo-db
pipewire (0.3.47 -> 0.3.48)
psutils (2.04 -> 2.08)
python-tqdm (4.62.3 -> 4.63.0)
rdma-core
rp-pppoe
rubygem-nokogiri (1.13.1 -> 1.13.3)
rubygem-pg (1.2.3 -> 1.3.4)
upower (0.99.16+4 -> 0.99.17)
xf86-video-vesa
yast2-security (4.4.12 -> 4.4.13)
=== Details ===
==== MozillaFirefox ====
Version update (97.0.1 -> 98.0)
Subpackages: MozillaFirefox-translations-common
- Mozilla Firefox 98.0
* Firefox has a new optimized download flow
* other changes as documented here
https://www.mozilla.org/en-US/firefox/98.0/releasenotes
MFSA 2022-10 (bsc#1196900)
* CVE-2022-26383 (bmo#1742421)
Browser window spoof using fullscreen mode
* CVE-2022-26384 (bmo#1744352)
iframe allow-scripts sandbox bypass
* CVE-2022-26387 (bmo#1752979)
Time-of-check time-of-use bug when verifying add-on signatures
* CVE-2022-26381 (bmo#1736243)
Use-after-free in text reflows
* CVE-2022-26382 (bmo#1741888)
Autofill Text could be exfiltrated via side-channel attacks
* CVE-2022-26385 (bmo#1747526)
Use-after-free in thread shutdown
* CVE-2022-0843 (bmo#1746523, bmo#1749062, bmo#1749164, bmo#1749214,
bmo#1749610, bmo#1750032, bmo#1752100, bmo#1752405, bmo#1753612,
bmo#1754508)
Memory safety bugs fixed in Firefox 98
- requires NSS 3.75
- add mozilla-bmo1756347.patch to fix i586 build
==== curl ====
Version update (7.81.0 -> 7.82.0)
Subpackages: libcurl4
- Fix: openssl: fix CN check error code
* Add curl-fix-verifyhost.patch
- Update to 7.82.0:
* curl: add --json command line option
* curl: make it so that sensitive command line arguments do not
show as easily in the output of ps(1)
* curl_multi_socket.3: remove callback and typical usage descriptions
* ftp: provide error message for control bytes in path
* ldap: return CURLE_URL_MALFORMAT for bad URL
* lib: remove support for CURL_DOES_CONVERSIONS
* mqtt: plug some memory leaks
* multi: allow user callbacks to call curl_multi_assign
* multi: remember connection_id before returning connection to pool
* multi: set in_callback for multi interface callbacks
* netware: remove support
* ngtcp2: adapt to changed end of headers callback proto
* openldap: implement SASL authentication
* openssl: return error if TLS 1.3 is requested when not supported
* sectransp: mark a 3DES cipher as weak
* smb: pass socket for writing and reading data instead of FIRSTSOCKET
* tool_getparam: DNS options that need c-ares now fail without it
* TPF: drop support
* url: given a user in the URL, find pwd for that user in netrc
* url: keep trailing dot in host name
* urlapi: handle "redirects" smarter
* urldata: CONN_IS_PROXIED replaces bits.proxy when proxy can be disabled
* urldata: remove conn->bits.user_passwd
==== kernel-source ====
Version update (5.16.11 -> 5.16.14)
- Linux 5.16.14 (bsc#1012628).
- Revert "ACPI: PM: s2idle: Cancel wakeup before dispatching EC
GPE" (bsc#1012628).
- xen/netfront: react properly to failing
gnttab_end_foreign_access_ref() (bsc#1012628).
- xen/gnttab: fix gnttab_end_foreign_access() without page
specified (bsc#1012628).
- xen/pvcalls: use alloc/free_pages_exact() (bsc#1012628).
- xen/9p: use alloc/free_pages_exact() (bsc#1012628).
- xen: remove gnttab_query_foreign_access() (bsc#1012628).
- xen/gntalloc: don't use gnttab_query_foreign_access()
(bsc#1012628).
- xen/scsifront: don't use gnttab_query_foreign_access() for
mapped status (bsc#1012628).
- xen/netfront: don't use gnttab_query_foreign_access() for
mapped status (bsc#1012628).
- xen/blkfront: don't use gnttab_query_foreign_access() for
mapped status (bsc#1012628).
- xen/grant-table: add gnttab_try_end_foreign_access()
(bsc#1012628).
- xen/xenbus: don't let xenbus_grant_ring() remove grants in
error case (bsc#1012628).
- ARM: fix build warning in proc-v7-bugs.c (bsc#1012628).
- arm64: Do not include __READ_ONCE() block in assembly files
(bsc#1012628).
- ARM: Do not use NOCROSSREFS directive with ld.lld (bsc#1012628).
- ARM: fix co-processor register typo (bsc#1012628).
- ARM: fix build error when BPF_SYSCALL is disabled (bsc#1012628).
- arm64: proton-pack: Include unprivileged eBPF status in Spectre
v2 mitigation reporting (bsc#1012628).
- arm64: Use the clearbhb instruction in mitigations
(bsc#1012628).
- KVM: arm64: Allow SMCCC_ARCH_WORKAROUND_3 to be discovered
and migrated (bsc#1012628).
- arm64: Mitigate spectre style branch history side channels
(bsc#1012628).
- Update config files.
- arm64: proton-pack: Report Spectre-BHB vulnerabilities as part
of Spectre-v2 (bsc#1012628).
- arm64: Add percpu vectors for EL1 (bsc#1012628).
- arm64: entry: Add macro for reading symbol addresses from the
trampoline (bsc#1012628).
- arm64: entry: Add vectors that have the bhb mitigation sequences
(bsc#1012628).
- arm64: entry: Add non-kpti __bp_harden_el1_vectors for
mitigations (bsc#1012628).
- arm64: entry: Allow the trampoline text to occupy multiple pages
(bsc#1012628).
- arm64: entry: Make the kpti trampoline's kpti sequence optional
(bsc#1012628).
- arm64: entry: Move trampoline macros out of ifdef'd section
(bsc#1012628).
- arm64: entry: Don't assume tramp_vectors is the start of the
vectors (bsc#1012628).
- arm64: entry: Allow tramp_alias to access symbols after the
4K boundary (bsc#1012628).
- arm64: entry: Move the trampoline data page before the text page
(bsc#1012628).
- arm64: entry: Free up another register on kpti's tramp_exit path
(bsc#1012628).
- arm64: entry: Make the trampoline cleanup optional
(bsc#1012628).
- KVM: arm64: Allow indirect vectors to be used without
SPECTRE_V3A (bsc#1012628).
- arm64: spectre: Rename spectre_v4_patch_fw_mitigation_conduit
(bsc#1012628).
- arm64: entry.S: Add ventry overflow sanity checks (bsc#1012628).
- arm64: cpufeature: add HWCAP for FEAT_RPRES (bsc#1012628).
- arm64: cpufeature: add HWCAP for FEAT_AFP (bsc#1012628).
- arm64: add ID_AA64ISAR2_EL1 sys register (bsc#1012628).
- ARM: include unprivileged BPF status in Spectre V2 reporting
(bsc#1012628).
- ARM: Spectre-BHB workaround (bsc#1012628).
- Update config files.
- ARM: use LOADADDR() to get load address of sections
(bsc#1012628).
- ARM: early traps initialisation (bsc#1012628).
- ARM: report Spectre v2 status through sysfs (bsc#1012628).
- Update config files.
- x86/speculation: Warn about eIBRS + LFENCE + Unprivileged eBPF +
SMT (bsc#1012628).
- x86/speculation: Warn about Spectre v2 LFENCE mitigation
(bsc#1012628).
- x86/speculation: Update link to AMD speculation whitepaper
(bsc#1012628).
- x86/speculation: Use generic retpoline by default on AMD
(bsc#1012628).
- x86/speculation: Include unprivileged eBPF status in Spectre
v2 mitigation reporting (bsc#1012628).
- Documentation/hw-vuln: Update spectre doc (bsc#1012628).
- x86/speculation: Add eIBRS + Retpoline options (bsc#1012628).
- x86/speculation: Rename RETPOLINE_AMD to RETPOLINE_LFENCE
(bsc#1012628).
- commit 80acc65
- Bluetooth: btusb: Add missing Chicony device for Realtek
RTL8723BE (bsc#1196779).
- commit 714ef34
- Linux 5.16.13 (bsc#1012628).
- mac80211_hwsim: report NOACK frames in tx_status (bsc#1012628).
- mac80211_hwsim: initialize ieee80211_tx_info at hw_scan_work
(bsc#1012628).
- i2c: bcm2835: Avoid clock stretching timeouts (bsc#1012628).
- ASoC: rt5682s: do not block workqueue if card is unbound
(bsc#1012628).
- ASoC: rt5668: do not block workqueue if card is unbound
(bsc#1012628).
- ASoC: rt5682: do not block workqueue if card is unbound
(bsc#1012628).
- regulator: core: fix false positive in regulator_late_cleanup()
(bsc#1012628).
- Input: clear BTN_RIGHT/MIDDLE on buttonpads (bsc#1012628).
- btrfs: get rid of warning on transaction commit when using
flushoncommit (bsc#1012628).
- KVM: arm64: vgic: Read HW interrupt pending state from the HW
(bsc#1012628).
- block: loop:use kstatfs.f_bsize of backing file to set discard
granularity (bsc#1012628).
- tipc: fix a bit overflow in tipc_crypto_key_rcv() (bsc#1012628).
- cifs: do not use uninitialized data in the owner/group sid
(bsc#1012628).
- cifs: fix double free race when mount fails in cifs_get_root()
(bsc#1012628).
- HID: amd_sfh: Handle amd_sfh work buffer in PM ops
(bsc#1012628).
- HID: amd_sfh: Add functionality to clear interrupts
(bsc#1012628).
- HID: amd_sfh: Add interrupt handler to process interrupts
(bsc#1012628).
- cifs: modefromsids must add an ACE for authenticated users
(bsc#1012628).
- selftests/seccomp: Fix seccomp failure by adding missing headers
(bsc#1012628).
- drm/amd/pm: correct UMD pstate clocks for Dimgrey Cavefish
and Beige Goby (bsc#1012628).
- selftests/ftrace: Do not trace do_softirq because of PREEMPT_RT
(bsc#1012628).
- dmaengine: shdma: Fix runtime PM imbalance on error
(bsc#1012628).
- i2c: cadence: allow COMPILE_TEST (bsc#1012628).
- i2c: imx: allow COMPILE_TEST (bsc#1012628).
- i2c: qup: allow COMPILE_TEST (bsc#1012628).
- net: usb: cdc_mbim: avoid altsetting toggling for Telit FN990
(bsc#1012628).
- block-map: add __GFP_ZERO flag for alloc_page in function
bio_copy_kern (bsc#1012628).
- exfat: reuse exfat_inode_info variable instead of calling
EXFAT_I() (bsc#1012628).
- exfat: fix i_blocks for files truncated over 4 GiB
(bsc#1012628).
- tracing: Add test for user space strings when filtering on
string pointers (bsc#1012628).
- arm64: Mark start_backtrace() notrace and NOKPROBE_SYMBOL
(bsc#1012628).
- serial: stm32: prevent TDR register overwrite when sending
x_char (bsc#1012628).
- KVM: arm64: Workaround Cortex-A510's single-step and PAC trap
errata (bsc#1012628).
- ext4: drop ineligible txn start stop APIs (bsc#1012628).
- ext4: simplify updating of fast commit stats (bsc#1012628).
- ext4: fast commit may not fallback for ineligible commit
(bsc#1012628).
- ext4: fast commit may miss file actions (bsc#1012628).
- sched/fair: Fix fault in reweight_entity (bsc#1012628).
- KVM: x86: Add KVM_CAP_ENABLE_CAP to x86 (bsc#1012628).
- ata: pata_hpt37x: fix PCI clock detection (bsc#1012628).
- drm/amdgpu: check vm ready by amdgpu_vm->evicting flag
(bsc#1012628).
- tracing: Add ustring operation to filtering string pointers
(bsc#1012628).
- ipv6: fix skb drops in igmp6_event_query() and
igmp6_event_report() (bsc#1012628).
- btrfs: defrag: bring back the old file extent search behavior
(bsc#1012628).
- btrfs: defrag: don't use merged extent map for their generation
check (bsc#1012628).
- ALSA: intel_hdmi: Fix reference to PCM buffer address
(bsc#1012628).
- ucounts: Fix systemd LimitNPROC with private users regression
(bsc#1012628).
- binfmt_elf: Avoid total_mapping_size for ET_EXEC (bsc#1012628).
- riscv/efi_stub: Fix get_boot_hartid_from_fdt() return value
(bsc#1012628).
- riscv: Fix config KASAN && SPARSEMEM && !SPARSE_VMEMMAP
(bsc#1012628).
- riscv: Fix config KASAN && DEBUG_VIRTUAL (bsc#1012628).
- iwlwifi: mvm: check debugfs_dir ptr before use (bsc#1012628).
- ASoC: ops: Shift tested values in snd_soc_put_volsw() by +min
(bsc#1012628).
- iommu/vt-d: Fix double list_add when enabling VMD in scalable
mode (bsc#1012628).
- iommu/amd: Recover from event log overflow (bsc#1012628).
- drm/i915: s/JSP2/ICP2/ PCH (bsc#1012628).
- drm/amd/display: Reduce dmesg error to a debug print
(bsc#1012628).
- xen/netfront: destroy queues before real_num_tx_queues is zeroed
(bsc#1012628).
- thermal: core: Fix TZ_GET_TRIP NULL pointer dereference
(bsc#1012628).
- mac80211: fix EAPoL rekey fail in 802.3 rx path (bsc#1012628).
- blktrace: fix use after free for struct blk_trace (bsc#1012628).
- ntb: intel: fix port config status offset for SPR (bsc#1012628).
- mm: Consider __GFP_NOWARN flag for oversized kvmalloc() calls
(bsc#1012628).
- xfrm: fix MTU regression (bsc#1012628).
- netfilter: fix use-after-free in __nf_register_net_hook()
(bsc#1012628).
- bpf, sockmap: Do not ignore orig_len parameter (bsc#1012628).
- xfrm: fix the if_id check in changelink (bsc#1012628).
- xfrm: enforce validity of offload input flags (bsc#1012628).
- e1000e: Correct NVM checksum verification flow (bsc#1012628).
- net: fix up skbs delta_truesize in UDP GRO frag_list
(bsc#1012628).
- netfilter: nf_queue: don't assume sk is full socket
(bsc#1012628).
- netfilter: nf_queue: fix possible use-after-free (bsc#1012628).
- netfilter: nf_queue: handle socket prefetch (bsc#1012628).
- batman-adv: Request iflink once in batadv-on-batadv check
(bsc#1012628).
- batman-adv: Request iflink once in batadv_get_real_netdevice
(bsc#1012628).
- batman-adv: Don't expect inter-netns unique iflink indices
(bsc#1012628).
- net: ipv6: ensure we call ipv6_mc_down() at most once
(bsc#1012628).
- net: dcb: flush lingering app table entries for unregistered
devices (bsc#1012628).
- net: ipa: fix a build dependency (bsc#1012628).
- net: ipa: add an interconnect dependency (bsc#1012628).
- net/smc: fix connection leak (bsc#1012628).
- net/smc: fix unexpected SMC_CLC_DECL_ERR_REGRMB error generated
by client (bsc#1012628).
- net/smc: fix unexpected SMC_CLC_DECL_ERR_REGRMB error cause
by server (bsc#1012628).
- btrfs: fix ENOSPC failure when attempting direct IO write into
NOCOW range (bsc#1012628).
- platform/x86: amd-pmc: Set QOS during suspend on CZN w/ timer
wakeup (bsc#1012628).
- net: dsa: microchip: fix bridging with more than two member
ports (bsc#1012628).
- mac80211: fix forwarded mesh frames AC & queue selection
(bsc#1012628).
- net: stmmac: fix return value of __setup handler (bsc#1012628).
- mac80211: treat some SAE auth steps as final (bsc#1012628).
- iavf: Fix missing check for running netdev (bsc#1012628).
- net: sxgbe: fix return value of __setup handler (bsc#1012628).
- ibmvnic: register netdev after init of adapter (bsc#1012628).
- net: arcnet: com20020: Fix null-ptr-deref in com20020pci_probe()
(bsc#1012628).
- ixgbe: xsk: change !netif_carrier_ok() handling in
ixgbe_xmit_zc() (bsc#1012628).
- iavf: Fix deadlock in iavf_reset_task (bsc#1012628).
- efivars: Respect "block" flag in efivar_entry_set_safe()
(bsc#1012628).
- auxdisplay: lcd2s: Fix lcd2s_redefine_char() feature
(bsc#1012628).
- firmware: arm_scmi: Remove space in MODULE_ALIAS name
(bsc#1012628).
- ASoC: cs4265: Fix the duplicated control name (bsc#1012628).
- auxdisplay: lcd2s: Fix memory leak in ->remove() (bsc#1012628).
- auxdisplay: lcd2s: Use proper API to free the instance of
charlcd object (bsc#1012628).
- can: gs_usb: change active_channels's type from atomic_t to u8
(bsc#1012628).
- iommu/tegra-smmu: Fix missing put_device() call in
tegra_smmu_find (bsc#1012628).
- arm64: dts: rockchip: Switch RK3399-Gru DP to SPDIF output
(bsc#1012628).
- igc: igc_read_phy_reg_gpy: drop premature return (bsc#1012628).
- ARM: Fix kgdb breakpoint for Thumb2 (bsc#1012628).
- mips: setup: fix setnocoherentio() boolean setting
(bsc#1012628).
- ARM: 9182/1: mmu: fix returns from early_param() and __setup()
functions (bsc#1012628).
- mptcp: Correctly set DATA_FIN timeout when number of retransmits
is large (bsc#1012628).
- selftests: mlxsw: tc_police_scale: Make test more robust
(bsc#1012628).
- pinctrl: sunxi: Use unique lockdep classes for IRQs
(bsc#1012628).
- igc: igc_write_phy_reg_gpy: drop premature return (bsc#1012628).
- ibmvnic: free reset-work-item when flushing (bsc#1012628).
- memfd: fix F_SEAL_WRITE after shmem huge page allocated
(bsc#1012628).
- s390/setup: preserve memory at OLDMEM_BASE and OLDMEM_SIZE
(bsc#1012628).
- s390/extable: fix exception table sorting (bsc#1012628).
- sched: Fix yet more sched_fork() races (bsc#1012628).
- arm64: dts: rockchip: drop pclk_xpcs from gmac0 on rk3568
(bsc#1012628).
- arm64: dts: juno: Remove GICv2m dma-range (bsc#1012628).
- arm64: dts: rockchip: fix Quartz64-A ddr regulator voltage
(bsc#1012628).
- arm64: dts: imx8mm: Fix VPU Hanging (bsc#1012628).
- iommu/amd: Fix I/O page table memory leak (bsc#1012628).
- MIPS: ralink: mt7621: do memory detection on KSEG1
(bsc#1012628).
- ARM: dts: switch timer config to common devkit8000 devicetree
(bsc#1012628).
- ARM: dts: Use 32KiHz oscillator on devkit8000 (bsc#1012628).
- soc: fsl: guts: Revert commit 3c0d64e867ed (bsc#1012628).
- soc: fsl: guts: Add a missing memory allocation failure check
(bsc#1012628).
- soc: fsl: qe: Check of ioremap return value (bsc#1012628).
- soc: imx: gpcv2: Fix clock disabling imbalance in error path
(bsc#1012628).
- netfilter: nf_tables: prefer kfree_rcu(ptr, rcu) variant
(bsc#1012628).
- ARM: tegra: Move panels to AUX bus (bsc#1012628).
- Bluetooth: Fix bt_skb_sendmmsg not allocating partial chunks
(bsc#1012628).
- can: etas_es58x: change opened_channel_cnt's type from atomic_t
to u8 (bsc#1012628).
- net: stmmac: enhance XDP ZC driver level switching performance
(bsc#1012628).
- net: stmmac: only enable DMA interrupts when ready
(bsc#1012628).
- ibmvnic: initialize rc before completing wait (bsc#1012628).
- ibmvnic: define flush_reset_queue helper (bsc#1012628).
- ibmvnic: complete init_done on transport events (bsc#1012628).
- ibmvnic: Update driver return codes (bsc#1012628).
- ibmvnic: init init_done_rc earlier (bsc#1012628).
- ibmvnic: clear fop when retrying probe (bsc#1012628).
- ibmvnic: Allow queueing resets during probe (bsc#1012628).
- net: chelsio: cxgb3: check the return value of
pci_find_capability() (bsc#1012628).
- net: sparx5: Fix add vlan when invalid operation (bsc#1012628).
- iavf: Add trace while removing device (bsc#1012628).
- iavf: Rework mutexes for better synchronisation (bsc#1012628).
- iavf: Add waiting so the port is initialized in remove
(bsc#1012628).
- iavf: Fix init state closure on remove (bsc#1012628).
- iavf: Fix locking for VIRTCHNL_OP_GET_OFFLOAD_VLAN_V2_CAPS
(bsc#1012628).
- iavf: Fix race in init state (bsc#1012628).
- iavf: Fix __IAVF_RESETTING state usage (bsc#1012628).
- drm/i915/guc/slpc: Correct the param count for unset param
(bsc#1012628).
- drm/bridge: ti-sn65dsi86: Properly undo autosuspend
(bsc#1012628).
- e1000e: Fix possible HW unit hang after an s0ix exit
(bsc#1012628).
- MIPS: ralink: mt7621: use bitwise NOT instead of logical
(bsc#1012628).
- nl80211: Handle nla_memdup failures in handle_nan_filter
(bsc#1012628).
- ptp: ocp: Add ptp_ocp_adjtime_coarse for large adjustments
(bsc#1012628).
- drm/amdgpu: fix suspend/resume hang regression (bsc#1012628).
- net: dcb: disable softirqs in dcbnl_flush_dev() (bsc#1012628).
- selftests: mlxsw: resource_scale: Fix return value
(bsc#1012628).
- net: stmmac: perserve TX and RX coalesce value during XDP setup
(bsc#1012628).
- Input: elan_i2c - move regulator_[en|dis]able() out of
elan_[en|dis]able_power() (bsc#1012628).
- Input: elan_i2c - fix regulator enable count imbalance after
suspend/resume (bsc#1012628).
- Input: samsung-keypad - properly state IOMEM dependency
(bsc#1012628).
- HID: add mapping for KEY_DICTATE (bsc#1012628).
- HID: add mapping for KEY_ALL_APPLICATIONS (bsc#1012628).
- tracing/histogram: Fix sorting on old "cpu" value (bsc#1012628).
- tracing: Fix return value of __setup handlers (bsc#1012628).
- btrfs: fix lost prealloc extents beyond eof after full fsync
(bsc#1012628).
- btrfs: fix relocation crash due to premature return from
btrfs_commit_transaction() (bsc#1012628).
- btrfs: subpage: fix a wrong check on subpage->writers
(bsc#1012628).
- btrfs: do not WARN_ON() if we have PageError set (bsc#1012628).
- btrfs: qgroup: fix deadlock between rescan worker and remove
qgroup (bsc#1012628).
- btrfs: add missing run of delayed items after unlink during
log replay (bsc#1012628).
- btrfs: fallback to blocking mode when doing async dio over
multiple extents (bsc#1012628).
- btrfs: do not start relocation until in progress drops are done
(bsc#1012628).
- Revert "xfrm: xfrm_state_mtu should return at least 1280 for
ipv6" (bsc#1012628).
- proc: fix documentation and description of pagemap
(bsc#1012628).
- x86/kvmclock: Fix Hyper-V Isolated VM's boot issue when vCPUs >
64 (bsc#1012628).
- s390/ftrace: fix arch_ftrace_get_regs implementation
(bsc#1012628).
- s390/ftrace: fix ftrace_caller/ftrace_regs_caller generation
(bsc#1012628).
- KVM: x86/mmu: Passing up the error state of
mmu_alloc_shadow_roots() (bsc#1012628).
- Update config files.
- commit bd40cb2
- Update
patches.kernel.org/5.16.11-207-lib-iov_iter-initialize-flags-in-new-pipe_bu…
(bsc#1012628 bsc#1196584 CVE-2022-0847).
Add references.
- commit 82f40a9
- nfc: st21nfca: Fix potential buffer overflows in EVT_TRANSACTION
(CVE-2022-26490 bsc#1196830).
- commit b002fe2
- config: ppc64{,le}: build vmx-crypto as module (bsc#1195768)
Building CONFIG_CRYPTO_DEV_VMX_ENCRYPT as module is the default in
mainline since v4.8, we use it in SLES and already in
config/ppc64/default. Thus unify it in the other configs.
There are build dependencies which has been fixed in mainline
647d41d3952d ("crypto: vmx - add missing dependencies")
(currently still at maintainer herbert/cryptodev-2.6 tree)
But instead of waiting commit to be accepted or backporting it we just
unify configs, which is useful anyway
- commit 70a0d71
- kernel-binary.spec: Also exclude the kernel signing key from devel package.
There is a check in OBS that fails when it is included. Also the key is
not reproducible.
Fixes: bb988d4625a3 ("kernel-binary: Do not include sourcedir in certificate path.")
- commit 68fa069
- rpm/check-for-config-changes: Ignore PAHOLE_VERSION.
- commit 88ba5ec
- Linux 5.16.12 (bsc#1012628).
- memblock: use kfree() to release kmalloced memblock regions
(bsc#1012628).
- gpio: tegra186: Fix chip_data type confusion (bsc#1012628).
- pinctrl: k210: Fix bias-pull-up (bsc#1012628).
- pinctrl: fix loop in k210_pinconf_get_drive() (bsc#1012628).
- tty: n_gsm: fix deadlock in gsmtty_open() (bsc#1012628).
- tty: n_gsm: fix wrong modem processing in convergence layer
type 2 (bsc#1012628).
- tty: n_gsm: fix wrong tty control line for flow control
(bsc#1012628).
- tty: n_gsm: fix NULL pointer access due to DLCI release
(bsc#1012628).
- tty: n_gsm: fix proper link termination after failed open
(bsc#1012628).
- tty: n_gsm: fix encoding of command/response bit (bsc#1012628).
- tty: n_gsm: fix encoding of control signal octet bit DV
(bsc#1012628).
- hugetlbfs: fix a truncation issue in hugepages parameter
(bsc#1012628).
- mm/hugetlb: fix kernel crash with hugetlb mremap (bsc#1012628).
- riscv: fix oops caused by irqsoff latency tracer (bsc#1012628).
- riscv: fix nommu_k210_sdcard_defconfig (bsc#1012628).
- IB/qib: Fix duplicate sysfs directory name (bsc#1012628).
- tps6598x: clear int mask on probe failure (bsc#1012628).
- staging: fbtft: fb_st7789v: reset display before initialization
(bsc#1012628).
- thermal: int340x: fix memory leak in int3400_notify()
(bsc#1012628).
- RDMA/cma: Do not change route.addr.src_addr outside state checks
(bsc#1012628).
- btrfs: reduce extent threshold for autodefrag (bsc#1012628).
- btrfs: autodefrag: only scan one inode once (bsc#1012628).
- btrfs: defrag: allow defrag_one_cluster() to skip large extent
which is not a target (bsc#1012628).
- btrfs: prevent copying too big compressed lzo segment
(bsc#1012628).
- btrfs: defrag: remove an ambiguous condition for rejection
(bsc#1012628).
- btrfs: defrag: don't defrag extents which are already at max
capacity (bsc#1012628).
- btrfs: defrag: don't try to merge regular extents with
preallocated extents (bsc#1012628).
- driver core: Free DMA range map when device is released
(bsc#1012628).
- mtd: core: Fix a conflict between MTD and NVMEM on wp-gpios
property (bsc#1012628).
- nvmem: core: Fix a conflict between MTD and NVMEM on wp-gpios
property (bsc#1012628).
- xhci: Prevent futile URB re-submissions due to incorrect return
value (bsc#1012628).
- xhci: re-initialize the HC during resume if HCE was set
(bsc#1012628).
- usb: dwc3: gadget: Let the interrupt handler disable bottom
halves (bsc#1012628).
- usb: dwc3: pci: Fix Bay Trail phy GPIO mappings (bsc#1012628).
- usb: dwc3: pci: Add "snps,dis_u2_susphy_quirk" for Intel Bay
Trail (bsc#1012628).
- usb: dwc2: drd: fix soft connect when gadget is unconfigured
(bsc#1012628).
- USB: serial: option: add Telit LE910R1 compositions
(bsc#1012628).
- USB: serial: option: add support for DW5829e (bsc#1012628).
- tracefs: Set the group ownership in apply_options() not
parse_options() (bsc#1012628).
- USB: gadget: validate endpoint index for xilinx udc
(bsc#1012628).
- usb: gadget: rndis: add spinlock for rndis response list
(bsc#1012628).
- Revert "USB: serial: ch341: add new Product ID for CH341A"
(bsc#1012628).
- ata: pata_hpt37x: disable primary channel on HPT371
(bsc#1012628).
- sc16is7xx: Fix for incorrect data being transmitted
(bsc#1012628).
- iio: Fix error handling for PM (bsc#1012628).
- iio: imu: st_lsm6dsx: wait for settling time in
st_lsm6dsx_read_oneshot (bsc#1012628).
- iio: accel: fxls8962af: add padding to regmap for SPI
(bsc#1012628).
- iio: adc: ad7124: fix mask used for setting AIN_BUFP & AIN_BUFM
bits (bsc#1012628).
- iio: adc: tsc2046: fix memory corruption by preventing array
overflow (bsc#1012628).
- iio: adc: men_z188_adc: Fix a resource leak in an error handling
path (bsc#1012628).
- iio:imu:adis16480: fix buffering for devices with no burst mode
(bsc#1012628).
- tracing: Have traceon and traceoff trigger honor the instance
(bsc#1012628).
- tracing: Dump stacktrace trigger to the corresponding instance
(bsc#1012628).
- bpf: Fix crash due to out of bounds access into reg2btf_ids
(bsc#1012628).
- bpf: Extend kfunc with PTR_TO_CTX, PTR_TO_MEM argument support
(bsc#1012628).
- RDMA/ib_srp: Fix a deadlock (bsc#1012628).
- configfs: fix a race in configfs_{,un}register_subsystem()
(bsc#1012628).
- bnxt_en: Increase firmware message response DMA wait time
(bsc#1012628).
- RDMA/rtrs-clt: Move free_permit from free_clt to rtrs_clt_close
(bsc#1012628).
- RDMA/rtrs-clt: Fix possible double free in error case
(bsc#1012628).
- net-timestamp: convert sk->sk_tskey to atomic_t (bsc#1012628).
- net: use sk_is_tcp() in more places (bsc#1012628).
- regmap-irq: Update interrupt clear register for proper reset
(bsc#1012628).
- gpio: rockchip: Reset int_bothedge when changing trigger
(bsc#1012628).
- PCI: mvebu: Fix device enumeration regression (bsc#1012628).
- spi: spi-zynq-qspi: Fix a NULL pointer dereference in
zynq_qspi_exec_mem_op() (bsc#1012628).
- net/mlx5e: Add missing increment of count (bsc#1012628).
- net/mlx5: Update log_max_qp value to be 17 at most
(bsc#1012628).
- net/mlx5: DR, Fix slab-out-of-bounds in mlx5_cmd_dr_create_fte
(bsc#1012628).
- net/mlx5e: kTLS, Use CHECKSUM_UNNECESSARY for device-offloaded
packets (bsc#1012628).
- net/mlx5e: MPLSoUDP decap, fix check for unsupported matches
(bsc#1012628).
- net/mlx5: DR, Fix the threshold that defines when pool sync
is initiated (bsc#1012628).
- net/mlx5: Fix wrong limitation of metadata match on ecpf
(bsc#1012628).
- net/mlx5: Fix possible deadlock on rule deletion (bsc#1012628).
- net/mlx5: DR, Don't allow match on IP w/o matching on full
ethertype/ip_version (bsc#1012628).
- ibmvnic: schedule failover only if vioctl fails (bsc#1012628).
- net/mlx5: DR, Cache STE shadow memory (bsc#1012628).
- udp_tunnel: Fix end of loop test in udp_tunnel_nic_unregister()
(bsc#1012628).
- surface: surface3_power: Fix battery readings on batteries
without a serial number (bsc#1012628).
- net/smc: Use a mutex for locking "struct smc_pnettable"
(bsc#1012628).
- netfilter: nf_tables: fix memory leak during stateful obj update
(bsc#1012628).
- net: mdio-ipq4019: add delay after clock enable (bsc#1012628).
- nfp: flower: Fix a potential leak in nfp_tunnel_add_shared_mac()
(bsc#1012628).
- net: dsa: avoid call to __dev_set_promiscuity() while rtnl_mutex
isn't held (bsc#1012628).
- netfilter: nf_tables: unregister flowtable hooks on netns exit
(bsc#1012628).
- net: Force inlining of checksum functions in net/checksum.h
(bsc#1012628).
- net: ll_temac: check the return value of devm_kmalloc()
(bsc#1012628).
- net/sched: act_ct: Fix flow table lookup after ct clear or
switching zones (bsc#1012628).
- drm/amd/display: For vblank_disable_immediate, check PSR is
really used (bsc#1012628).
- drm/i915/dg2: Print PHY name properly on calibration error
(bsc#1012628).
- drm/vc4: crtc: Fix runtime_pm reference counting (bsc#1012628).
- block: clear iocb->private in blkdev_bio_end_io_async()
(bsc#1012628).
- net/mlx5e: TC, Reject rules with drop and modify hdr action
(bsc#1012628).
- net/mlx5e: TC, Reject rules with forward and drop actions
(bsc#1012628).
- net/mlx5e: Fix wrong return value on ioctl EEPROM query failure
(bsc#1012628).
- drm/edid: Always set RGB444 (bsc#1012628).
- openvswitch: Fix setting ipv6 fields causing hw csum failure
(bsc#1012628).
- net: mv643xx_eth: process retval from of_get_mac_address
(bsc#1012628).
- gso: do not skip outer ip header in case of ipip and
net_failover (bsc#1012628).
- clk: qcom: gcc-msm8994: Remove NoC clocks (bsc#1012628).
- tipc: Fix end of loop tests for list_for_each_entry()
(bsc#1012628).
- nvme: also mark passthrough-only namespaces ready in
nvme_update_ns_info (bsc#1012628).
- net: __pskb_pull_tail() & pskb_carve_frag_list() drop_monitor
friends (bsc#1012628).
- io_uring: add a schedule point in io_add_buffers()
(bsc#1012628).
- bpf: Add schedule points in batch ops (bsc#1012628).
- bpf: Fix a bpf_timer initialization issue (bsc#1012628).
- selftests: bpf: Check bpf_msg_push_data return value
(bsc#1012628).
- bpf: Do not try bpf_msg_push_data with len 0 (bsc#1012628).
- bpf: Fix crash due to incorrect copy_map_value (bsc#1012628).
- net/mlx5: Update the list of the PCI supported devices
(bsc#1012628).
- ice: initialize local variable 'tlv' (bsc#1012628).
- ice: check the return of ice_ptp_gettimex64 (bsc#1012628).
- ice: fix concurrent reset and removal of VFs (bsc#1012628).
- ice: fix setting l4 port flag when adding filter (bsc#1012628).
- net/mlx5: Fix tc max supported prio for nic mode (bsc#1012628).
- hwmon: Handle failure to register sensor with thermal zone
correctly (bsc#1012628).
- bnxt_en: Restore the resets_reliable flag in bnxt_open()
(bsc#1012628).
- bnxt_en: Fix incorrect multicast rx mask setting when not
requested (bsc#1012628).
- bnxt_en: Fix occasional ethtool -t loopback test failures
(bsc#1012628).
- bnxt_en: Fix offline ethtool selftest with RDMA enabled
(bsc#1012628).
- bnxt_en: Fix active FEC reporting to ethtool (bsc#1012628).
- bnxt_en: Fix devlink fw_activate (bsc#1012628).
- bnx2x: fix driver load from initrd (bsc#1012628).
- selftests: mptcp: be more conservative with cookie MPJ limits
(bsc#1012628).
- selftests: mptcp: fix diag instability (bsc#1012628).
- mptcp: add mibs counter for ignored incoming options
(bsc#1012628).
- mptcp: fix race in incoming ADD_ADDR option processing
(bsc#1012628).
- perf data: Fix double free in perf_session__delete()
(bsc#1012628).
- perf evlist: Fix failed to use cpu list for uncore events
(bsc#1012628).
- gpu: host1x: Always return syncpoint value when waiting
(bsc#1012628).
- Revert "i40e: Fix reset bw limit when DCB enabled with 1 TC"
(bsc#1012628).
- ping: remove pr_err from ping_lookup (bsc#1012628).
- netfilter: nf_tables_offload: incorrect flow offload action
array size (bsc#1012628).
- netfilter: xt_socket: missing ifdef CONFIG_IP6_NF_IPTABLES
dependency (bsc#1012628).
- netfilter: xt_socket: fix a typo in socket_mt_destroy()
(bsc#1012628).
- CDC-NCM: avoid overflow in sanity checking (bsc#1012628).
- USB: zaurus: support another broken Zaurus (bsc#1012628).
- sr9700: sanity check for packet length (bsc#1012628).
- drm/i915: Fix bw atomic check when switching between SAGV
vs. no SAGV (bsc#1012628).
- drm/i915: Correctly populate use_sagv_wm for all pipes
(bsc#1012628).
- drm/i915: Disconnect PHYs left connected by BIOS on disabled
ports (bsc#1012628).
- drm/i915: Widen the QGV point mask (bsc#1012628).
- drm/amdgpu: do not enable asic reset for raven2 (bsc#1012628).
- drm/amdgpu: disable MMHUB PG for Picasso (bsc#1012628).
- drm/amd: Check if ASPM is enabled from PCIe subsystem
(bsc#1012628).
- drm/amd/pm: fix some OEM SKU specific stability issues
(bsc#1012628).
- drm/amd/display: Protect update_bw_bounding_box FPU code
(bsc#1012628).
- drm/amd/display: Fix stream->link_enc unassigned during stream
removal (bsc#1012628).
- KVM: x86: nSVM: disallow userspace setting of
MSR_AMD64_TSC_RATIO to non default value when tsc scaling
disabled (bsc#1012628).
- KVM: x86/mmu: make apf token non-zero to fix bug (bsc#1012628).
- parisc/unaligned: Fix ldw() and stw() unalignment handlers
(bsc#1012628).
- parisc/unaligned: Fix fldd and fstd unaligned handlers on
32-bit kernel (bsc#1012628).
- vhost/vsock: don't check owner in vhost_vsock_stop() while
releasing (bsc#1012628).
- selinux: fix misuse of mutex_is_locked() (bsc#1012628).
- io_uring: disallow modification of rsrc_data during quiesce
(bsc#1012628).
- io_uring: don't convert to jiffies for waiting on timeouts
(bsc#1012628).
- clk: jz4725b: fix mmc0 clock gating (bsc#1012628).
- slab: remove __alloc_size attribute from __kmalloc_track_caller
(bsc#1012628).
- btrfs: tree-checker: check item_size for dev_item (bsc#1012628).
- btrfs: tree-checker: check item_size for inode_item
(bsc#1012628).
- cgroup-v1: Correct privileges check in release_agent writes
(bsc#1012628).
- cgroup/cpuset: Fix a race between cpuset_attach() and cpu
hotplug (bsc#1012628).
- mm/filemap: Fix handling of THPs in generic_file_buffered_read()
(bsc#1012628).
- commit 9b89dd3
==== mariadb ====
Subpackages: libmariadbd19 mariadb-client mariadb-errormessages
- Do not include mariadb-galera files in the main package when
%{with galera} is false
==== ndctl ====
- Add support for reporting dirty shutdown count (jsc#SLE-18196).
+ 0016-libndctl-papr-Add-support-for-reporting-shutdown-cou.patch
+ 0009-libndctl-papr-Fix-probe-for-papr-scm-compatible-nvdi.patch
+ 0003-libndctl-Unify-adding-dimms-for-papr-and-nfit-famili.patch
- Merge fixes that went into v72 and v73
- Documentation updates
+ 0015-ndctl-docs-Clarify-update-firwmware-activation-overf.patch
+ 0014-Documentation-ndctl-fix-self-reference-of-ndctl-disa.patch
+ 0013-daxctl-Add-Soft-Reservation-theory-of-operation.patch
+ 0008-ndctl-Update-nvdimm-mailing-list-address.patch
- Label index block calculation fix
+ 0012-ndctl-dimm-Fix-label-index-block-calculations.patch
+ 0002-Expose-ndctl_bus_nfit_translate_spa-as-a-public-func.patch
- Scrub fix
+ 0011-ndctl-scrub-Reread-scrub-engine-status-at-start.patch
+ 0010-ndctl-scrub-Stop-translating-return-values.patch
- Add memblock count to JSON
+ 0007-daxctl-emit-counts-of-total-and-online-memblocks.patch
- DAX disable fix
+ 0006-libndctl-check-for-active-system-ram-before-disablin.patch
+ 0005-libdaxctl-add-an-API-to-check-if-a-device-is-active.patch
+ 0001-ndctl-namespace-Fix-disable-namespace-accounting-rel.patch
- DAX reconfigure fix
+ 0004-daxctl-fail-reconfigure-device-based-on-kernel-onlin.patch
- Install modprobe.conf file to %_modprobedir (bsc#1196275, jsc#SLE-20639)
==== nodejs17 ====
Version update (17.6.0 -> 17.7.0)
Subpackages: npm17
- update to 17.7.0:
* crypto: add KeyObject.prototype.equals method
* net: add new options to net.Socket and net.Server
* src: allow preventing InitializeInspector in env
* deps: update nghttp2 to 1.47.0
* deps: upgrade npm to 8.5.2
- versioned.patch: refreshed
==== osinfo-db ====
- bsc#1196965 - openSUSE Tumbleweed unattended installation with
libvirt fails
opensuse-autoyast-desktop.patch
==== pipewire ====
Version update (0.3.47 -> 0.3.48)
Subpackages: gstreamer-plugin-pipewire libpipewire-0_3-0 pipewire-lang pipewire-modules-0_3 pipewire-pulseaudio pipewire-spa-plugins-0_2 pipewire-spa-tools pipewire-tools
- Update to version 0.3.48:
* Highlights
- Fix IEC958 passthrough again.
- Fix pulse-server crashes when playing a sample.
- Support for more a more advanced upmixing algorithm.
- filter-chain now supports arbitrary many ports.
- Fix multichannel support in WINE (with new WirePlumber).
- Many bugfixes and improvements.
* PipeWire
- The work queue is now created in the context so we can fail
early and avoid further error checking in various places.
- Fix a potential use after free with threaded loops.
- The protocol now has a message footer. This is used to pass
around global state such as the last registered object
serial number. This can be used to detect when a client tries
to bind to old (but reused) object ids. This avoids some
races in the session manager but also when binding objects.
- The zero-denormals CPU flag is now not touched anymore unless
explicitly selected by the user. Denormals are avoided in
filter-chain now in software. If the zero-denormals are now
only configured in the data thread. This should fix issues
with luajit.
- Configuration parsing will not actually fail on errors.
- pw-top now correctly clips unicode characters.
- Many places now use a dynamic POD builder to support
arbitrary large property sets.
- pw-stream now support PropInfo parameters so that they can
announce custom properties.
- Serial number are now also set on metadata and
session-manager objects.
* SPA
- audioadapter is now smarter when trying to fixate the format.
It will use the PortConfig format to fill in any wildcards.
This results in the least amount of conversions when the
stream can handle it. It also is part of a fix (also requires
a session manager fix) for WINE multichannel support.
- Fix 5.1 to 2 channels mixing. It was using the volume of the
stereo pair on all channels.
- Fix some weird volume issues when a source is capturing and
channelmixing.
- Add stereo to 7.1 upmixing.
- The channelmix parameters can be changed at runtime now.
- Many improvements to the upmixing algorithms. Rear channels
are now constructed from the ambient sound and can have delay
and phase shift applied to them to improve spacialisation.
The stereo channels can be filtered so that the dialogue is
more concentrated in the centre channel.
* modules
- Module X11 bell received cleanups and improvements.
- The module now has a private method to schedule unload later.
This simplifies cleanup in many modules.
- module-filter-chain now handles arbitrary many ports and
control ports.
- Fix a bug in RAOP where it was reading from the wrong port.
* pulse-server
- Nodes with the DONT_MOVE property should fail with -EINVAL
when they are moved.
- Fix a segfault when playing a sample.
- The _FIX flags in pulse-server also now ignore the configured
sample format, just like pulseaudio does.
- Fix IEC958 passthrough again. It got accidentally broken
since 0.3.45 with a fix for another issue.
- Fix module-null-sink device.description.
* Bluetooth
- Don't try to connect HSP/HFP when no backend is available.
- Drop patches already included upstream:
* 0001-revert-loop-remove-destroy-list.patch
* 0002-pulse-server-free-pending-sample-reply.patch
- Rebase reduce-meson-dependency.patch.
- Enable pulseaudio-setup use on openSUSE Leap 15.4.
- Some spec clean-up.
==== psutils ====
Version update (2.04 -> 2.08)
- Update to 2.08:
* man pages: names of programs should always start with
lower-case letter
* PSUtils.pm: update invocation of paper, and improve parsing of
output
- Changes from 2.07:
* PSUtils.pm: add trailing colon to certain DSC keywords
- Changes from 2.06:
* Fix normalization of rotations in pagespecs
* PSUtils.pm: in parsepaper, don?t pass empty string to
singledimension
- Changes from 2.05:
* PSUtils.pm: print the culprit when we get a bad dimension
* Make programs use bindir prefix when running each other
* Fix a bug in test harness: don?t distribute built file
pre-inst-env
* tests: remove accidentally-added file
* Makefile.am: don?t echo an echo command in ?make loc?
- Use current macros.
==== python-tqdm ====
Version update (4.62.3 -> 4.63.0)
Subpackages: python-tqdm-bash-completion python38-tqdm
- update to version 4.63.0:
* add __reversed__()
* add efficient __contains__()
* improve CLI startup time (replace pkg_resources => importlib)
* tqdm.autonotebook warning & std fallback on missing ipywidgets
(#1218 <- #1082, #1217)
* warn on positional CLI arguments
* misc build/test framework updates
+ enable py3.10 tests
+ add conda dependencies
+ update pre-commit hooks
+ fix pytest config (nbval, asyncio)
+ fix dependencies & tests
+ fix site deployment
==== rdma-core ====
Subpackages: libefa1 libibverbs libibverbs1 libmlx4-1 libmlx5-1 librdmacm1 rdma-ndd
- Update spec file from upstream
- install modprobe.conf files to %_modprobedir (bsc#1196275, jsc#SLE-20639)
- fix build support for riscv
- Added cmake-Make-modprobe.d-path-configurable.patch
- Backport from upstream to allow modprobe files to be installed in a
configurable directory
==== rp-pppoe ====
- Removed Wants=network.target from pppoe.service (bsc#1196359).
==== rubygem-nokogiri ====
Version update (1.13.1 -> 1.13.3)
- use mini_portile2 2.8
required by version 1.13.3
- updated to version 1.13.3
[#]## Fixed
* [CRuby] Revert a HTML4 parser bug in libxml 2.9.13 (introduced in Nokogiri v1.13.2). The bug causes libxml2's HTML4 parser to fail to recover when encountering a bare `<` character in some contexts. This version of Nokogiri restores the earlier behavior, which is to recover from the parse error and treat the `<` as normal character data (which will be serialized as `<` in a text node). The bug (and the fix) is only relevant when the `RECOVER` parse option is set, as it is by default. [[#2461](https://github.com/sparklemotion/nokogiri/issues/2461)]
[#]# 1.13.2 / 2022-02-21
[#]## Security
* [CRuby] Vendored libxml2 is updated from 2.9.12 to 2.9.13. This update addresses [CVE-2022-23308](https://nvd.nist.gov/vuln/detail/CVE-2022-23308).
* [CRuby] Vendored libxslt is updated from 1.1.34 to 1.1.35. This update addresses [CVE-2021-30560](https://nvd.nist.gov/vuln/detail/CVE-2021-30560).
Please see [GHSA-fq42-c5rg-92c2](https://github.com/sparklemotion/nokogiri/security/adv… for more information about these CVEs.
[#]## Dependencies
* [CRuby] Vendored libxml2 is updated from 2.9.12 to 2.9.13. Full changelog is available at https://download.gnome.org/sources/libxml2/2.9/libxml2-2.9.13.news
* [CRuby] Vendored libxslt is updated from 1.1.34 to 1.1.35. Full changelog is available at https://download.gnome.org/sources/libxslt/1.1/libxslt-1.1.35.news
==== rubygem-pg ====
Version update (1.2.3 -> 1.3.4)
- Update to version 1.3.4
No Changelog installed anylonger
- Drop no longer required use-pkg-config.patch
==== upower ====
Version update (0.99.16+4 -> 0.99.17)
Subpackages: libupower-glib3 typelib-1_0-UpowerGlib-1_0 upower-lang
- Update to version 0.99.17:
+ Upstream release, no changes, versionbump only.
==== xf86-video-vesa ====
- Refuse vesa driver on the system with simpledrmfb (bsc#1193539):
u_Refuse-to-run-on-machines-with-simpledrmfb-too.patch
==== yast2-security ====
Version update (4.4.12 -> 4.4.13)
- Always check for the package in the underlying system when
trying to detect if running on systemd (bsc#1196963).
- 4.4.13
1
0
Hi,
gdcm is a graphics library for DICOM images. It builds fine for Leap 15.3 and
TW, but fails for 15.4:
From
https://build.opensuse.org/build/home:DocB:Orthanc/15.4/x86_64/gdcm/_log
Error:
https://paste.opensuse.org/20682002
The issue seems to be related to libpoppler (22.01). Can one of the C++
experts explain why it fails just for Leap 15.4?
Thanks
Axel
5
17
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&versio…
Please do not reply to this email to report issues, rather file a bug
on bugzilla.opensuse.org. For more information on filing bugs please
see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
akonadi-server
bluedevil5 (5.24.2 -> 5.24.3)
breeze (5.24.2 -> 5.24.3)
breeze-gtk (5.24.2 -> 5.24.3)
discover (5.24.2.1 -> 5.24.3)
drkonqi5 (5.24.2 -> 5.24.3)
kactivitymanagerd (5.24.2 -> 5.24.3)
kcm_sddm (5.24.2 -> 5.24.3)
kde-cli-tools5 (5.24.2 -> 5.24.3)
kde-gtk-config5 (5.24.2 -> 5.24.3)
kgamma5 (5.24.2 -> 5.24.3)
khotkeys5 (5.24.2 -> 5.24.3)
kinfocenter5 (5.24.2 -> 5.24.3)
kmenuedit5 (5.24.2 -> 5.24.3)
kscreen5 (5.24.2 -> 5.24.3)
kscreenlocker (5.24.2 -> 5.24.3)
ksshaskpass5 (5.24.2 -> 5.24.3)
ksystemstats5 (5.24.2 -> 5.24.3)
kwayland-integration (5.24.2 -> 5.24.3)
kwayland-server (5.24.2 -> 5.24.3)
kwin5 (5.24.2 -> 5.24.3)
kwrited5 (5.24.2 -> 5.24.3)
layer-shell-qt (5.24.2 -> 5.24.3)
libkdecoration2 (5.24.2 -> 5.24.3)
libkscreen2 (5.24.2 -> 5.24.3)
libksysguard5 (5.24.2 -> 5.24.3)
milou5 (5.24.2 -> 5.24.3)
ovmf (202111 -> 202202)
oxygen5 (5.24.2 -> 5.24.3)
plasma-browser-integration (5.24.2 -> 5.24.3)
plasma-nm5 (5.24.2 -> 5.24.3)
plasma5-addons (5.24.2 -> 5.24.3)
plasma5-desktop (5.24.2 -> 5.24.3)
plasma5-disks (5.24.2 -> 5.24.3)
plasma5-integration (5.24.2 -> 5.24.3)
plasma5-openSUSE
plasma5-pa (5.24.2 -> 5.24.3)
plasma5-systemmonitor (5.24.2 -> 5.24.3)
plasma5-thunderbolt (5.24.2 -> 5.24.3)
plasma5-workspace (5.24.2 -> 5.24.3)
polkit-kde-agent-5 (5.24.2 -> 5.24.3)
powerdevil5 (5.24.2 -> 5.24.3)
python-PyYAML
python-pycryptodome
python-pyudev (0.22.0+git.1642212208.d5630bf -> 0.23.2+14)
systemsettings5 (5.24.2 -> 5.24.3)
vim (8.2.4456 -> 8.2.4542)
wireplumber
xdg-desktop-portal-kde (5.24.2 -> 5.24.3)
=== Details ===
==== akonadi-server ====
Subpackages: akonadi-server-lang libKF5AkonadiAgentBase5 libKF5AkonadiCore5 libKF5AkonadiPrivate5 libKF5AkonadiWidgets5 libKF5AkonadiXml5
- Add patch:
* 0001-Apparmor-Also-look-in-usr-libexec.patch
==== bluedevil5 ====
Version update (5.24.2 -> 5.24.3)
Subpackages: bluedevil5-lang
- Update to 5.24.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.3
- No code changes since 5.24.2
==== breeze ====
Version update (5.24.2 -> 5.24.3)
Subpackages: breeze5-cursors breeze5-decoration breeze5-style breeze5-style-lang libbreezecommon5-5
- Update to 5.24.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.3
- Changes since 5.24.2:
* KStyle: center QTabBar custom tab buttons vertically in vertical tabs (kde#447315)
==== breeze-gtk ====
Version update (5.24.2 -> 5.24.3)
Subpackages: gtk2-metatheme-breeze gtk3-metatheme-breeze metatheme-breeze-common
- Update to 5.24.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.3
- No code changes since 5.24.2
==== discover ====
Version update (5.24.2.1 -> 5.24.3)
Subpackages: discover-backend-flatpak discover-backend-fwupd discover-backend-packagekit discover-lang
- Update to 5.24.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.3
- Changes since 5.24.2:
* flatpak: Do not emit about upgradeable packages that were just created
* flatpak: Use the sources map to check if a resource is already being used
* Set textFormat in Label to StyledText
* Fix build by explicitly creating a QUrl from QString
- Restore compatibility with older kf5-filesystem
==== drkonqi5 ====
Version update (5.24.2 -> 5.24.3)
Subpackages: drkonqi5-lang
- Update to 5.24.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.3
- Changes since 5.24.2:
* make sure to create the wallet folder before using it (kde#446925)
- Restore compatibility with older kf5-filesystem
==== kactivitymanagerd ====
Version update (5.24.2 -> 5.24.3)
Subpackages: kactivitymanagerd-lang
- Update to 5.24.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.3
- No code changes since 5.24.2
- Restore compatibility with older kf5-filesystem
==== kcm_sddm ====
Version update (5.24.2 -> 5.24.3)
Subpackages: kcm_sddm-lang
- Update to 5.24.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.3
- No code changes since 5.24.2
- Restore compatibility with older kf5-filesystem
==== kde-cli-tools5 ====
Version update (5.24.2 -> 5.24.3)
Subpackages: kde-cli-tools5-lang
- Update to 5.24.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.3
- No code changes since 5.24.2
==== kde-gtk-config5 ====
Version update (5.24.2 -> 5.24.3)
Subpackages: kde-gtk-config5-gtk3
- Update to 5.24.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.3
- No code changes since 5.24.2
- Restore compatibility with older kf5-filesystem
==== kgamma5 ====
Version update (5.24.2 -> 5.24.3)
Subpackages: kgamma5-lang
- Update to 5.24.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.3
- No code changes since 5.24.2
==== khotkeys5 ====
Version update (5.24.2 -> 5.24.3)
Subpackages: khotkeys5-lang
- Update to 5.24.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.3
- No code changes since 5.24.2
==== kinfocenter5 ====
Version update (5.24.2 -> 5.24.3)
Subpackages: kinfocenter5-lang
- Update to 5.24.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.3
- Changes since 5.24.2:
* fix up help paths (kde#450918)
==== kmenuedit5 ====
Version update (5.24.2 -> 5.24.3)
Subpackages: kmenuedit5-lang
- Update to 5.24.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.3
- No code changes since 5.24.2
==== kscreen5 ====
Version update (5.24.2 -> 5.24.3)
Subpackages: kscreen5-lang kscreen5-plasmoid
- Update to 5.24.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.3
- Changes since 5.24.2:
* Revert "KCM: Workaround unknown Qt issue that causes the revert dialog to be invisible"
==== kscreenlocker ====
Version update (5.24.2 -> 5.24.3)
Subpackages: kscreenlocker-lang libKScreenLocker5
- Update to 5.24.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.3
- No code changes since 5.24.2
- Restore compatibility with older kf5-filesystem
==== ksshaskpass5 ====
Version update (5.24.2 -> 5.24.3)
Subpackages: ksshaskpass5-lang
- Update to 5.24.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.3
- No code changes since 5.24.2
==== ksystemstats5 ====
Version update (5.24.2 -> 5.24.3)
Subpackages: ksystemstats5-lang
- Update to 5.24.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.3
- No code changes since 5.24.2
==== kwayland-integration ====
Version update (5.24.2 -> 5.24.3)
- Update to 5.24.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.3
- No code changes since 5.24.2
==== kwayland-server ====
Version update (5.24.2 -> 5.24.3)
- Update to 5.24.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.3
- Changes since 5.24.2:
* Fix kdebugsettings categories file
* linuxdmabuf: Add unistd.h include
==== kwin5 ====
Version update (5.24.2 -> 5.24.3)
Subpackages: kwin5-lang
- Update to 5.24.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.3
- Changes since 5.24.2:
* backends/drm: don't change the configuration while KWin is terminating
* backends/drm: wait for pending pageflips before doing a modeset
* output changes: handle to-be-enabled outputs first
* platform: check all outputs, not only enabled ones for the enabled flag
* backends/drm: fix recording with direct scanout (kde#450943)
* backends/drm: fix multi gpu (kde#450737)
* backends/drm: fix format choosing (kde#450779)
* inputmethod: fix placing the virtual keyboard at the bottom
* Revert "Remove mysterious s_cursorUpdateBlocking boolean flag in pointer_input.cpp" (kde#449273)
- Drop patches, now upstream:
* 0001-Revert-Remove-mysterious-s_cursorUpdateBlocking-bool.patch
- Restore compatibility with older kf5-filesystem
==== kwrited5 ====
Version update (5.24.2 -> 5.24.3)
- Update to 5.24.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.3
- No code changes since 5.24.2
==== layer-shell-qt ====
Version update (5.24.2 -> 5.24.3)
- Update to 5.24.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.3
- No code changes since 5.24.2
==== libkdecoration2 ====
Version update (5.24.2 -> 5.24.3)
Subpackages: libkdecorations2-5 libkdecorations2-5-lang libkdecorations2private9
- Update to 5.24.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.3
- No code changes since 5.24.2
==== libkscreen2 ====
Version update (5.24.2 -> 5.24.3)
Subpackages: libKF5Screen7 libkscreen2-plugin
- Update to 5.24.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.3
- No code changes since 5.24.2
==== libksysguard5 ====
Version update (5.24.2 -> 5.24.3)
Subpackages: ksysguardsystemstats-data libKSysGuardSystemStats1 libksysguard5-imports libksysguard5-lang
- Update to 5.24.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.3
- Changes since 5.24.2:
* Fixed computational bug for bar chart spacing (kde#449868)
- Restore compatibility with older kf5-filesystem
==== milou5 ====
Version update (5.24.2 -> 5.24.3)
Subpackages: milou5-lang
- Update to 5.24.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.3
- No code changes since 5.24.2
==== ovmf ====
Version update (202111 -> 202202)
Subpackages: qemu-ovmf-x86_64
- Update to edk2-stable202202
- Features (https://github.com/tianocore/edk2/releases)
OvmfPkg Add new target for Cloud Hypervisor
Add TDVF to OvmfPkg
Add new APIs to UefiCpuPkg/UefiCpuLib
Add AMD Secure Nested Paging Support
Add SSDT PCI generator in DynamicTablesPkg
Support ACPI 6.4 PPTT changes
Add FdtHwInfoParser library
Add DynamicPlatRepo library
Make package and platform builds reproducible across source format changes
Add Uncrustify CI Plugin
Apply uncrustify changes to all package C and H files
- Patches (git log --oneline --reverse edk2-stable202111~..edk2-stable202202):
bb1bba3d77 NetworkPkg: Fix invalid pointer for DNS response token on error
ef9a059cdb EmulatorPkg/Win/Host: Update CC_FLAGS
69877614fd .pytool/Plugin/EccCheck: Remove RevertCode()
854462bd34 .pytool/Plugin/EccCheck: Remove temp directory on exception
3019f1bbab .pytool/Plugin/EccCheck: Add performance optimizations
99f84ff473 .pytools/Plugin/LicenseCheck: Use temp directory for git diff output
76a1ce4d5f .azurepipelines/templates: Update max pipeline job time to 2 hours
365dced2c3 ArmPkg: Update YAML to ignore specific ECC files/errors
1939fc9569 ArmPlatformPkg: Update YAML to ignore specific ECC files/errors
c97fee87f0 ArmVirtPkg: Update YAML to ignore specific ECC files/errors
d5744ecba8 CryptoPkg: Update YAML to ignore specific ECC files/errors
d7d30e8f21 EmulatorPkg: Update YAML to ignore specific ECC files/errors
9deb937076 MdeModulePkg: Update YAML to ignore specific ECC files/errors
df790cd6b3 MdePkg: Update YAML to ignore specific ECC files/errors
60fa40be45 SecurityPkg: Update YAML to ignore specific ECC files/errors
9944508e85 ShellPkg: Update YAML to ignore specific ECC files/errors
c30c40d6c6 StandaloneMmPkg: Update YAML to ignore specific ECC files/errors
c057347977 UefiPayloadPkg: Update YAML to ignore specific ECC files/errors
f0f3f5aae7 UnitTestFrameworkPkg: Update YAML to ignore specific ECC files/errors
dfafa8e453 MdeModulePkg/DxeCorePerformanceLib:Variable Initial
a4a582e180 ArmPkg: Change use of EFI_D_* to DEBUG_*
1d2482e1e3 ArmPlatformPkg: Change use of EFI_D_* to DEBUG_*
c5b3a56e4f ArmVirtPkg: Change use of EFI_D_* to DEBUG_*
a1878955b2 EmbeddedPkg: Change use of EFI_D_* to DEBUG_*
9c7da8d804 EmulatorPkg: Change use of EFI_D_* to DEBUG_*
917e98f3e5 FatPkg: Change use of EFI_D_* to DEBUG_*
87000d7708 MdeModulePkg: Change use of EFI_D_* to DEBUG_*
5f289f3ae3 MdePkg: Change use of EFI_D_* to DEBUG_*
c49ca4a29e NetworkPkg: Change use of EFI_D_* to DEBUG_*
47719926e8 OvmfPkg: Change use of EFI_D_* to DEBUG_*
ca56749b0e PcAtChipsetPkg: Change use of EFI_D_* to DEBUG_*
e905fbb05a SecurityPkg: Change use of EFI_D_* to DEBUG_*
4a1aee13d8 ShellPkg: Change use of EFI_D_* to DEBUG_*
586fda4800 SourceLevelDebugPkg: Change use of EFI_D_* to DEBUG_*
96e1cba5c1 UefiCpuPkg: Change use of EFI_D_* to DEBUG_*
1871d28eaf ArmPkg: Change OPTIONAL keyword usage style
2863ba97ca ArmPlatformPkg: Change OPTIONAL keyword usage style
9607597a74 ArmVirtPkg: Change OPTIONAL keyword usage style
c8f46130f8 CryptoPkg: Change OPTIONAL keyword usage style
fe2d81892f DynamicTablesPkg: Change OPTIONAL keyword usage style
792433088c EmbeddedPkg: Change OPTIONAL keyword usage style
c69fc80c80 EmulatorPkg: Change OPTIONAL keyword usage style
9c721071d3 FmpDevicePkg: Change OPTIONAL keyword usage style
e3917e22e7 MdeModulePkg: Change OPTIONAL keyword usage style
d0e2f8232a MdePkg: Change OPTIONAL keyword usage style
8874fa199d NetworkPkg: Change OPTIONAL keyword usage style
79d49e162e OvmfPkg: Change OPTIONAL keyword usage style
237295f46d PcAtChipsetPkg: Change OPTIONAL keyword usage style
dc8fe5ec95 RedfishPkg: Change OPTIONAL keyword usage style
12710fe93b SecurityPkg: Change OPTIONAL keyword usage style
9b8507cabe ShellPkg: Change OPTIONAL keyword usage style
18908e6131 SignedCapsulePkg: Change OPTIONAL keyword usage style
f9c9215b55 SourceLevelDebugPkg: Change OPTIONAL keyword usage style
902e76de19 StandaloneMmPkg: Change OPTIONAL keyword usage style
4ec586b9f6 UefiCpuPkg: Change OPTIONAL keyword usage style
e35dd32821 UefiPayloadPkg: Change OPTIONAL keyword usage style
78bc3bdd2a UnitTestFrameworkPkg: Change OPTIONAL keyword usage style
ea85f0fe13 ArmVirtPkg: Change complex DEBUG_CODE() to DEBUG_CODE_BEGIN/END()
e3b855f283 CryptoPkg: Change complex DEBUG_CODE() to DEBUG_CODE_BEGIN/END()
4a9d411662 DynamicTablesPkg: Change complex DEBUG_CODE() to DEBUG_CODE_BEGIN/END()
db52c7f755 MdeModulePkg: Change complex DEBUG_CODE() to DEBUG_CODE_BEGIN/END()
098307e082 MdePkg: Change complex DEBUG_CODE() to DEBUG_CODE_BEGIN/END()
ed7f7c9168 NetworkPkg: Change complex DEBUG_CODE() to DEBUG_CODE_BEGIN/END()
8e875037bf OvmfPkg: Change complex DEBUG_CODE() to DEBUG_CODE_BEGIN/END()
deba54761a PcAtChipsetPkg: Change complex DEBUG_CODE() to DEBUG_CODE_BEGIN/END()
f9f4fb2329 SecurityPkg: Change complex DEBUG_CODE() to DEBUG_CODE_BEGIN/END()
7c2a6033c1 UefiCpuPkg: Change complex DEBUG_CODE() to DEBUG_CODE_BEGIN/END()
429309e0c6 ArmPkg: Apply uncrustify changes
40b0b23ed3 ArmPlatformPkg: Apply uncrustify changes
2b16a4fb91 ArmVirtPkg: Apply uncrustify changes
7c34237831 CryptoPkg: Apply uncrustify changes
731c67e1d7 DynamicTablesPkg: Apply uncrustify changes
e7108d0e96 EmbeddedPkg: Apply uncrustify changes
a550d468a6 EmulatorPkg: Apply uncrustify changes
bcdcc4160d FatPkg: Apply uncrustify changes
45ce0a67bb FmpDevicePkg: Apply uncrustify changes
111f2228dd IntelFsp2Pkg: Apply uncrustify changes
7c7184e201 IntelFsp2WrapperPkg: Apply uncrustify changes
1436aea4d5 MdeModulePkg: Apply uncrustify changes
2f88bd3a12 MdePkg: Apply uncrustify changes
d1050b9dff NetworkPkg: Apply uncrustify changes
ac0a286f4d OvmfPkg: Apply uncrustify changes
5220bd211d PcAtChipsetPkg: Apply uncrustify changes
39de741e2d RedfishPkg: Apply uncrustify changes
c411b485b6 SecurityPkg: Apply uncrustify changes
47d20b54f9 ShellPkg: Apply uncrustify changes
b878648967 SignedCapsulePkg: Apply uncrustify changes
c1e126b119 SourceLevelDebugPkg: Apply uncrustify changes
91415a36ae StandaloneMmPkg: Apply uncrustify changes
053e878bfb UefiCpuPkg: Apply uncrustify changes
e5efcf8be8 UefiPayloadPkg: Apply uncrustify changes
7c0ad2c338 UnitTestFrameworkPkg: Apply uncrustify changes
dc453b5164 .pytool/Plugin/UncrustifyCheck: Add Uncrustify CI plugin
1832eb15aa UefiPayloadPkg/UefiPayloadPkg.fdf: Update DXE Apriori list
ca78281c25 UefiPayloadPkg/PayloadEntry: Inherit 4/5-level paging from bootloader
b2f7ee2ded UefiPayloadPkg: Increase SystemMemoryUefiRegionSize from 32M to 64M
94e0a7bddb UefiPayloadPkg: Add missing Guid gUefiAcpiBoardInfoGuid
2527723de9 UefiPayloadPkg: Add performance measurement feature
ffdde9d719 UefiPayloadPkg: Skip ModuleInfo HOB in Payload
965292135b UefiPayloadPkg/UefiPayloadPkg.dsc:Add BootManagerLib for BootManagerMenuApp
85a678bf76 UefiPayloadPkg: Add integration instruction for coreboot common error
7b28310008 BaseTools: Increase the DevicePath length for support more PCD value.
d25b803e51 MdeModulePkg/Bus/Pci/UhciDxe: Fix the UsbHc memory allocate and free issue
c82ab4d8c1 BaseTools/VfrCompile: Correct Bit Field Flags for numeric/one of
2ddacfb6b8 OvmfPkg/SecMain: move SEV specific routines in AmdSev.c
e2289d19d8 UefiCpuPkg/MpInitLib: move SEV specific routines in AmdSev.c
2fe8edfe55 OvmfPkg/ResetVector: move clearing GHCB in SecMain
3053183d41 OvmfPkg/ResetVector: introduce SEV metadata descriptor for VMM use
707c71a01b OvmfPkg: reserve SNP secrets page
cca9cd3dd6 OvmfPkg: reserve CPUID page
f2dc28f0b6 OvmfPkg/ResetVector: pre-validate the data pages used in SEC phase
34819f2cac OvmfPkg/ResetVector: use SEV-SNP-validated CPUID values
d9822304ce OvmfPkg/MemEncryptSevLib: add MemEncryptSevSnpEnabled()
7c3b2892ea OvmfPkg/SecMain: register GHCB gpa for the SEV-SNP guest
d2b998fbdc OvmfPkg/VmgExitLib: use SEV-SNP-validated CPUID values
a19b648952 OvmfPkg/PlatformPei: register GHCB gpa for the SEV-SNP guest
19914edc5a OvmfPkg/AmdSevDxe: do not use extended PCI config space
ade62c18f4 OvmfPkg/MemEncryptSevLib: add support to validate system RAM
d706f8fec2 OvmfPkg/MemEncryptSevLib: add function to check the VMPL0
11b15336f0 OvmfPkg/BaseMemEncryptSevLib: skip the pre-validated system RAM
d39f8d88ec OvmfPkg/MemEncryptSevLib: add support to validate > 4GB memory in PEI phase
202fb22be6 OvmfPkg/SecMain: validate the memory used for decompressing Fv
8eb79b5f4f OvmfPkg/PlatformPei: validate the system RAM when SNP is active
26210f9436 MdePkg: Define ConfidentialComputingGuestAttr
504ae26b80 OvmfPkg/PlatformPei: set PcdConfidentialComputingAttr when SEV is active
b95908e043 UefiCpuPkg/MpInitLib: use PcdConfidentialComputingAttr to check SEV status
f4e3ce5f53 UefiCpuPkg: add PcdGhcbHypervisorFeatures
f5a6e1bab5 OvmfPkg/PlatformPei: set the Hypervisor Features PCD
2c354252be MdePkg/GHCB: increase the GHCB protocol max version
9c703bc0f1 UefiCpuPkg/MpLib: add support to register GHCB GPA when SEV-SNP is enabled
d4d7c9ad5f UefiCpuPkg/MpInitLib: use BSP to do extended topology check
b928eb44d5 OvmfPkg/MemEncryptSevLib: change the page state in the RMP table
b7b8872031 OvmfPkg/MemEncryptSevLib: skip page state change for Mmio address
ea3a12d970 OvmfPkg/PlatformPei: mark cpuid and secrets memory reserved in EFI map
67484aed69 OvmfPkg/AmdSev: expose the SNP reserved pages through configuration table
06544455d0 UefiCpuPkg/MpInitLib: Use SEV-SNP AP Creation NAE event to launch APs
0f1d7477c0 OvmfPkg: Remove unused print service driver (PrintDxe)
30631f0a26 MdePkg: Add missing Cache ID (in)valid define
0077c22f6d MdePkg: Remove PPTT ID type structure
a50b65ce22 ShellPkg: Update Acpiview PPTT parser to ACPI 6.4
8cf2bdfcfb ShellPkg: Add Cache ID to PPTT parser
b2bbe3df54 DynamicTablesPkg: Remove PPTT ID structure from ACPI 6.4 generator
e139829dd6 DynamicTablesPkg: Update PPTT generator to ACPI 6.4
e81a81e584 DynamicTablesPkg: Add CacheId to PPTT generator
9afcd48a94 OvmfPkg: Handle Cloud Hypervisor host bridge
2ccefa32a6 OvmfPkg: Create global entry point for SMBIOS parsing
d8ef774346 OvmfPkg: Retrieve SMBIOS from Cloud Hypervisor
66bce05f6d OvmfPkg: Generalize AcpiPlatformDxe
7594c5bfe2 OvmfPkg: Install ACPI tables for Cloud Hypervisor
f6df289a1c OvmfPkg/OvmfXen: Fix Xen build
2b20a34fd5 OvmfPkg-EmuVariableFvbRuntimeDxe: Support Access To Memory Above 4G
d5efc875ef MdePkg: Introduce CcMeasurementProtocol for CC Guest firmware
a124cd4ef9 SecurityPkg: Support CcMeasurementProtocol in DxeTpm2MeasureBootLib
8c06c53b58 SecurityPkg: Support CcMeasurementProtocol in DxeTpmMeasurementLib
adf070ff56 OvmfPkg/Microvm: add PcdConfidentialComputingGuestAttr
2686468c43 OvmfPkg/Bhyve: add MemEncryptSevLib
61be49e0f7 OvmfPkg/PlatformCI: factor out PlatformBuildLib.py
21ee379407 OvmfPkg/PlatformCI: add QEMU_SKIP
64bccda534 OvmfPkg/PlatformCI: add BhyveBuild.py
04eacd3943 OvmfPkg/PlatformCI: add MicrovmBuild.py
8b8ae609a7 OvmfPkg/PlatformCI: add AmdSevBuild.py
2722856a87 OvmfPkg/PlatformCI: dummy grub.efi for AmdSev
1203eba58e OvmfPkg/PlatformCI: add XenBuild.py
64ef0dd1d3 OvmfPkg/Microvm/fdt: add device tree support
79dcaf7054 OvmfPkg/Microvm/fdt: load fdt from fw_cfg
c802f8935c OvmfPkg/Microvm/fdt: add empty fdt
2a68abf6ee OvmfPkg/Microvm/virtio: add virtio-mmio support
e07d27e24d OvmfPkg/Microvm: add README
7f1861be2b DynamicTablesPkg: AML Code generation for memory ranges
0e7147fe75 DynamicTablesPkg: AML Code generation to create a named Package()
fd5fc4bbb7 DynamicTablesPkg: AML Code generation to create a named ResourceTemplate()
b2b8def4e3 DynamicTablesPkg: AML Code generation to add _PRT entries
69ddfee1c3 DynamicTablesPkg: Add AmlAttachNode()
ce306e48eb DynamicTablesPkg: Add Pci related objects
e35a746cf5 DynamicTablesPkg: SSDT Pci express generator
ec37fd9c1f DynamicTablesPkg: Fix multiple objects parsing
557dede8a6 OvmfPkg/PlatformPei: ScanOrAdd64BitE820Ram improvements
759e3c6d21 OvmfPkg/PlatformPei: prefer etc/e820 for memory detection
41d8bb3038 OvmfPkg/PlatformPei: stop using cmos for memory detection
7a6e6ae933 EmulatorPkg: Update lldbefi.py to work with current lldb which uses python3
4d30352445 ArmPkg: Add SMC helper functions
c039fa7ff0 ArmPkg: Update SMC calls to use the new ArmCallSmc0/1/2/3 functions
90ad4b3b34 DynamicTablesPkg: Definition for HwInfoParser interface
d59c5a20f8 DynamicTablesPkg: FdtHwInfoParser: CM Object descriptor helper
5d8b5d171c DynamicTablesPkg: FdtHwInfoParser: Add FDT utility functions
8d2691c3d5 DynamicTablesPkg: FdtHwInfoParser: Add Boot Arch parser
3ebe1ff5c9 DynamicTablesPkg: FdtHwInfoParser: Generic Timer Parser
51941f7558 DynamicTablesPkg: FdtHwInfoParser: Add Serial port parser
e366a41ef0 DynamicTablesPkg: FdtHwInfoParser: Add GICC parser
0fa1217726 DynamicTablesPkg: FdtHwInfoParser: Add GICD parser
b04cf355a0 DynamicTablesPkg: FdtHwInfoParser: Add MSI Frame parser
d250d408cf DynamicTablesPkg: FdtHwInfoParser: Add ITS parser
7b6c8b30a5 DynamicTablesPkg: FdtHwInfoParser: Add GICR parser
26bf034a59 DynamicTablesPkg: FdtHwInfoParser: Add GIC dispatcher
c67bf628c8 DynamicTablesPkg: FdtHwInfoParser: Add PCI config parser
deb01dfd7f DynamicTablesPkg: Add FdtHwInfoParser library
9006967c8d DynamicTablesPkg: Handle 16550_WITH_GAS id
b2d0ed20fd DynamicTablesPkg: Definition for DynamicPlatRepoLib interface
2e2db65e39 DynamicTablesPkg: DynamicPlatRepo: Add TokenGenerator
740e3bb634 DynamicTablesPkg: DynamicPlatRepo: Add TokenFixer
5fe5b6f94f DynamicTablesPkg: DynamicPlatRepo: Add TokenMapper
38f6d78c3b DynamicTablesPkg: Add DynamicPlatRepo library
f14fff5135 StandaloneMmPkg/FvLib: Support large file with EFI_FFS_FILE_HEADER2.
3a72ec71cd OvmfPkg: remove unused TPM options from MicrovmX64.dsc
b47575801e OvmfPkg: move tcg configuration to dsc and fdf include files
5711ff4d0b OvmfPkg: drop TPM_CONFIG_ENABLE
b819388772 OvmfPkg: create Tcg12ConfigPei.inf
4de8d61bce OvmfPkg: rework TPM configuration
e6ea1464a8 OvmfPkg/PlatformPei: Revert "stop using cmos for memory detection"
a6c0418651 ArmPkg/SmbiosMiscDxe: Remove duplicate HII string definition
45e3842970 ArmPkg/SmbiosMiscDxe: Get full SMBIOS strings from OemMiscLib
b451c69088 ArmPkg/ProcessorSubClassDxe: Get serial and part number from OemMiscLib
8ed8568922 SecurityPkg: Debug code to audit BIOS TPM extend operations
195f011973 SecurityPkg: Reallocate TPM Active PCRs based on platform support
ab5ab2f603 SecurityPkg: TPM must go to Idle state on CRB command completion
c63a10ecb7 EmbeddedPkg/AcpiLib: Add more helper functions
f129b1f06f OvmfPkg/Bhyve: fix tls-enabled build
ee1f8262b8 OvmfPkg: Call PlatformInitializeConsole for GPU passthrough case
de9e5b7dc7 IntelFsp2WrapperPkg : FSPM/S UPD data address based on Build Type
9ec2cc1f31 IntelFsp2WrapperPkg : Remove EFIAPI from local functions.
ae8272ef78 MdeModulePkg/UsbBusDxe: fix NOOPT build error
15c596aeeb OvmfPkg: Bhyve: Delete unused AcpiTables/Ssdt.asl file
6612ff8561 UefiCpuPkg: Extend measurement of microcode patches to TPM
e910f076ad BaseTools: Fix the bug of --cmd-len build option
7935be0fbd IntelFsp2Pkg/FspSecCore: ExtendedImageRevision was not printed.
c095122d4b MdeModulePkg/PciBusDxe: Enumerator to check for RCiEP before looking for RP
d463c56ddd MdeModulePkg: Replace with UFS_UNIT_DESC to fix timeout problem
45920941d9 MdeModulePkg: Refactoring UFS DME request and fix timing problem
13d9e8ec98 MdeModulePkg: Put off UFS HCS.DP checking to fix timing problem
079a58276b OvmfPkg/AmdSev/SecretPei: Mark SEV launch secret area as reserved
9dd14fc91c MdePkg: Add registers of boot partition feature
14a731096d UnitTestFrameworkPkg: CI YAML: Grant cmockery spell check exception
6062002bd5 MdeModulePkg/PartitionDxe: Add break to handle invalid LBA0 in MBR
7438a85bf1 BaseTools: Fix wrong variable header size
c712ce2bb1 OvmfPkg/CloudHv: Add new target for Cloud Hypervisor
a2da72b2ca OvmfPkg/CloudHv: Replace legacy 8254 PIT with local APIC timer
6ecdda71fe OvmfPkg/CloudHv: Connect serial console
1552050ce7 OvmfPkg/CloudHv: Remove legacy 8259 PIC support
fdcea7ff6f OvmfPkg/CloudHv: Remove Q35 specifics
71082d3d1b OvmfPkg/CloudHv: Reduce dependency on QemuFwCfg
196be601f9 OvmfPkg/CloudHv: Remove video support
7b6cbe0a81 OvmfPkg/CloudHv: Remove USB support
e73d1bf96a OvmfPkg/CloudHv: Remove CSM support
b66056ef21 OvmfPkg/CloudHv: add Maintainers.txt entry
5302bd81d9 OvmfPkg: Add CloudHvX64 to the CI
59c48c9314 UefiPayloadPkg: Change the user interface name of the Uiapp
5801910013 UefiPayloadPkg: Not use BaseCpuTimerLib by default.
772c5bb8dc FmpDevicePkg/FmpDxe: Update FmpDeviceCheckImageWithStatus() handling
7709988dd8 RedfishPkg/RedfishRestExDxe:Simplify status check
21320ef669 MdeModulePkg/Variable: Make only EFI_VARIABLE_NON_VOLATILE invalid
7e5c603cba MdeModulePkg/SdMmcPciHcDxe: Robust improvements for SD card 1.8V switch
ee67067f17 MdeModulePkg: VariableSmmRuntimeDxe: Fix Variable Policy Message Length
5b39832e18 MdePkg: MmCommunication2: Update MM communicate2 function description
ce37f45955 ArmPkg: MmCommunicationDxe: MM communicate function argument attributes
541a077bd1 ArmPkg: MmCommunicationDxe: Update MM communicate `CommBuffer**` checks
1aa1ec4574 ArmPkg: MmCommunicationDxe: Update MM communicate `CommSize` check
8cc5590eab ArmPkg: MmCommunicationDxe: Update MM communicate `MessageLength` check
6777e67383 EmbeddedPkg: Fix a build error in FwVol.c in X64 arch
a867f3a704 UefiPayloadPkg: Use BaseCpuTimerLib for Universal Payload by default
f4b7b473b4 MdeModulePkg/UefiBootManagerLib: Convert BmLoadOption to Variable Policy
76b3d45b75 ShellPkg: Add the missing VariablePolicyHelperLib in ShellPkg.dsc
8542fc5f95 NetworkPkg: Add the missing VariablePolicyHelperLib in NetworkPkg.dsc
ae35314e7b Maintainers.txt: Add Sami Mujawar as reviewer for ArmPkg
862ea6e836 OvmfPkg: change qemu default resolution to 1280x800
e95b44c90e ArmVirtPkg: change qemu default resolution to 1280x800
929804b172 OvmfPkg: add PcdVideoResolutionSource
7f25ddbc03 OvmfPkg/QemuVideoDxe: simplify InitializeBochsGraphicsMode
336da55ca8 OvmfPkg/QemuVideoDxe: drop QEMU_VIDEO_BOCHS_MODES->ColorDepth
55c05427b9 OvmfPkg/QemuVideoDxe: factor out QemuVideoBochsAddMode
49a2d8cbf5 OvmfPkg/QemuVideoDxe: parse edid blob, detect display resolution
ba79becd55 OvmfPkg/BaseCachingPciExpressLib: Migrate BaseCachingPciExpressLib
103fa647d1 ArmPkg: Replace CoreId and ClusterId with Mpidr in ARM_CORE_INFO struct
742dafd2cc DynamicTablesPkg: Print specifier macro for CM_OBJECT_ID
13136cc311 DynamicTablesPkg: FdtHwInfoParserLib: Parse Pmu info
5751d60821 DynamicTablesPkg: AmlLib: AmlAddPrtEntry() to handle GSI
5816bd3eab DynamicTablesPkg: AcpiSsdtPcieLibArm: Remove link device generation
dc1118fa0d ArmVirtPkg: Add cspell exceptions
0dbd356983 ArmVirtPkg/Kvmtool: Add DSDT ACPI table
312ef7a0a4 ArmVirtPkg/Kvmtool: Add Configuration Manager
17a02163bd ArmVirtPkg/Kvmtool: Enable ACPI support
5b3c682d91 ArmVirtPkg/Kvmtool: Enable Acpiview
017564d637 ArmPkg/ArmMmuLib AARCH64: avoid EL0 accessible mappings
45b1612659 DynamicTablesPkg: Add Memory32Fixed function
007a95055b DynamicTablesPkg: Remove redundant cast in AmlCodeGenReturn
33189f0527 DynamicTablesPkg: Add AmlCodeGenMethodRetInteger function
a4b7aa362d MdeModulePkg/Bus/Pci/PciBusDxe: Support platform PCI ROM override
6fb09da89f ShellPkg: Fix incorrect PPTT FlagName dereference
c09dbc92e9 BaseTools/Conf: Add new macro for customizing dll file reduction.
d4ac53aa91 BaseTools: Fix error leg in DscBuildData.py
f78b937c95 MdeModulePkg/RuntimeDxe: clear mVirtualMapMaxIndex
96b8b5fd10 MdeModulePkg/UiApp: Fix spelling of 'FRONTPAGE'
bd676f080a Maintainers.txt: add missing github IDs to OvmfPkf/Fdt reviewers
1f54eaa725 Maintainers.txt: update email for Leif Lindholm
b360b0b589 Maintainers.txt: Update email address
c9b7c6e0cc BaseTools: Update CLANG{35,38}_WARNING_OVERRIDES to ignore unused vars
42af706dfb BaseTools: Update brotli submodule
1193aa2dfb MdeModulePkg: update brotli submodule
85589ddbf6 OvmfPkg/VmgExitLib: Fix uninitialized variable warning with XCODE5
c28e376edc OvmfPkg/FvbServicesSmm: use the VmgExitLibNull
8a57673316 ShellPkg: Fix Ping GetTimerPeriod API failure
b24306f15d NetworkPkg: Fix incorrect unicode string of the AKM/Cipher Suite
- Add amd-sev-es to the following descriptors because James Fehlig
tested them (bsc#1196879):
60-ovmf-x86_64.json
60-ovmf-x86_64-2m.json
60-ovmf-x86_64-ms.json
60-ovmf-x86_64-2m-ms.json
- Backported patches in ovmf-bsc1196879-sev-fix.patch for fixing SEV:
de463163d9 OvmfPkg/AmdSev: reserve snp pages
63c50d3ff2 OvmfPkg/ResetVector: cache the SEV status MSR value in workarea
f1d1c337e7 OvmfPkg/BaseMemEncryptLib: use the SEV_STATUS MSR value from workarea
==== oxygen5 ====
Version update (5.24.2 -> 5.24.3)
- Update to 5.24.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.3
- No code changes since 5.24.2
==== plasma-browser-integration ====
Version update (5.24.2 -> 5.24.3)
Subpackages: plasma-browser-integration-lang
- Update to 5.24.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.3
- No code changes since 5.24.2
==== plasma-nm5 ====
Version update (5.24.2 -> 5.24.3)
Subpackages: plasma-nm5-lang plasma-nm5-openconnect plasma-nm5-openvpn plasma-nm5-pptp plasma-nm5-vpnc
- Update to 5.24.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.3
- No code changes since 5.24.2
==== plasma5-addons ====
Version update (5.24.2 -> 5.24.3)
Subpackages: plasma5-addons-lang
- Update to 5.24.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.3
- No code changes since 5.24.2
==== plasma5-desktop ====
Version update (5.24.2 -> 5.24.3)
Subpackages: plasma5-desktop-emojier plasma5-desktop-lang
- Update to 5.24.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.3
- Changes since 5.24.2:
* kcms/touchpad: Remove weird Q_EMIT changed(false) in resizeEvent
- Drop patches, now upstream:
* 0001-kcms-touchpad-Remove-weird-Q_EMIT-changed-false-in-r.patch
- Restore compatibility with older kf5-filesystem
- Remove duplicate mention of kimpanel-ibus-panel
==== plasma5-disks ====
Version update (5.24.2 -> 5.24.3)
Subpackages: plasma5-disks-lang
- Update to 5.24.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.3
- No code changes since 5.24.2
- Restore compatibility with older kf5-filesystem
==== plasma5-integration ====
Version update (5.24.2 -> 5.24.3)
Subpackages: plasma5-integration-plugin plasma5-integration-plugin-lang
- Update to 5.24.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.3
- Changes since 5.24.2:
* [KDEPlatformFileDialog] Don't do stat if baseUrl didn't change
==== plasma5-openSUSE ====
Subpackages: plasma5-defaults-openSUSE plasma5-theme-openSUSE plasma5-workspace-branding-openSUSE sddm-theme-openSUSE
- Update to 5.24.3
==== plasma5-pa ====
Version update (5.24.2 -> 5.24.3)
Subpackages: plasma5-pa-lang
- Update to 5.24.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.3
- Changes since 5.24.2:
* [kcm] Update device combobox when current device changes externally
==== plasma5-systemmonitor ====
Version update (5.24.2 -> 5.24.3)
Subpackages: plasma5-systemmonitor-lang
- Update to 5.24.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.3
- No code changes since 5.24.2
==== plasma5-thunderbolt ====
Version update (5.24.2 -> 5.24.3)
Subpackages: plasma5-thunderbolt-lang
- Update to 5.24.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.3
- No code changes since 5.24.2
==== plasma5-workspace ====
Version update (5.24.2 -> 5.24.3)
Subpackages: gmenudbusmenuproxy plasma5-session plasma5-session-wayland plasma5-workspace-lang plasma5-workspace-libs xembedsniproxy
- Update to 5.24.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.3
- Changes since 5.24.2:
* kcms/colors: Implement radio button layouts better
* kcms/colors: fix spacing between radio buttons and content
* [Battery Monitor] Only show charge threshold hint for power supply batteries (kde#451161)
* [Icons KCM] Give measure delegate a text
* wallpapers: Sort BackgroundListModel by title
* applets/digital-clock: Fix `Qt.formatDateTime` returns different date when minute changes (kde#436796)
* applets/systray: align applet labels with differing line counts in hidden view (kde#438347)
* Show panel config above other windows (kde#450794)
* Use current accent colour to set ColorDialog object in colour picker
* SystemDialog: Allow accepting the dialogs with the keyboard (kde#450223)
* applets/systemtray: Do not open context menu on mouse pressed for SNI (kde#409768)
* Revert "Fix overdraw on Wayland"
* startkde: Forward stdout/stderr of started processes
* SDDM theme: stop eliding people's names so aggressively (kde#450673)
* applets/digital-clock: Word-wrap date string for desktop representation (kde#450632)
* wrap completely the invariants timer in NDEBUG
* ScreenPool as the source of truth of QScreen info
* Always ensure there is an user selected (kde#450182)
* Prevent panel going out of screen boundaries
* applets/clipboard: Focus on text area when transition is done
* applets/clipboard: Fix highlight after exiting edit mode
- Drop patches, now upstream:
* 0001-startkde-Forward-stdout-stderr-of-started-processes.patch
- Restore compatibility with older kf5-filesystem
==== polkit-kde-agent-5 ====
Version update (5.24.2 -> 5.24.3)
Subpackages: polkit-kde-agent-5-lang
- Update to 5.24.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.3
- No code changes since 5.24.2
- Restore compatibility with older kf5-filesystem
==== powerdevil5 ====
Version update (5.24.2 -> 5.24.3)
Subpackages: powerdevil5-lang
- Update to 5.24.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.3
- Changes since 5.24.2:
* Improved backlight devices selection (kde#399646)
- Restore compatibility with older kf5-filesystem
==== python-PyYAML ====
- do not use setup.py test construct
https://trello.com/c/me9Z4sIv/121-setuppy-test-leftovers
==== python-pycryptodome ====
- do not use setup.py test construct
https://trello.com/c/me9Z4sIv/121-setuppy-test-leftovers
==== python-pyudev ====
Version update (0.22.0+git.1642212208.d5630bf -> 0.23.2+14)
- Update to version 0.23.2+14:
* Remove a bunch of python-2 only testing
* Bump some Python versions
* Get rid of six dependency
* Drop all pylint tasks
* Remove overly rigorous tests
* Make a package target that uses build
* Omit PyPy flakey test
* Check whether the Context has a "_libudev" attribute
* Remove setup.cfg
* Remove obsolete egg_info parameter
* Delete another flaky test
- Rebase hypothesis_settings.patch and pytest_register_mark.patch.
- Drop six (Build)?Requires.
==== systemsettings5 ====
Version update (5.24.2 -> 5.24.3)
Subpackages: systemsettings5-lang
- Update to 5.24.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.3
- Changes since 5.24.2:
* app/SettingsBase: Fix systemsettings unable to start when missing plugin (kde#451054)
* ModuleView: Simplify and fix custom headers logic
==== vim ====
Version update (8.2.4456 -> 8.2.4542)
Subpackages: gvim vim-data vim-data-common
- Updated to version 8.2.4542, fixes the following problems
* Terminal test may fail on some machines.
* The GPM library can only be linked statically.
* Vim9: compiling filter() call fails with funcref that has unknown
arguments.
* Vim9: compiling sort() call fails with a funcref that has unknown
arguments.
* Vim9: wrong error for defining dict function.
* Not enough testing for quickfix code.
* Completion only uses strict matching.
* Dtrace files are recognized as filetype D.
* Fuzzy completion does not order matches properly.
"create-directories" as the final argument.
* Running filetype test leaves file behind.
* Coverity warns for uninitialized struct member.
* Coverity warns for uninitialized variable.
* Coverity warns for use of a freed function name.
* Coverity warnds for not checking return value of ftell().
* Memory allocation failures not tested in quickfix code.
* Fuzzy cmdline completion does not work for lower case.
* Operator name spelled wrong.
* Crash when using fuzzy completion.
* No fuzzy completieon for maps and abbreviations.
* Suspending with CTRL-Z does not work on Android.
* Cmdline popup menu not removed when 'lazyredraw' is set.
* No fuzzy cmdline completion for user defined completion.
* Command completion makes two rounds to collect matches.
* Vim9: some error messages are not tested.
* Compiler warning for uninitialized variable.
* Vim9: cannot compare with v:null.
* Build error with +eval but without +channel or +job.
* Failing test for comparing v:null with number.
* Terminal focus reporting only works for xterm-like terminals. (Jonathan
Rascher)
* MS-Windows makefile dependencies are outdated.
* No error if an option is given an invalid value with ":let &opt = val".
* Options test fails in the GUI.
* The find_tags() function is much too long.
* Help test fails in 24 line terminal.
* Coverity gives warnings after tags code refactoring.
* Wrong color for half of wide character next to pum scrollbar.
* Using <Plug> with "noremap" does not work.
* Vim9: at the script level declarations leak from try block to catch and
finally block.
* Vim9: can declare a global variable on the command line.
* With 'showbreak' set and after the end of the line the cursor may be
displayed in the wrong position.
* In the GUI a modifier is not recognized for the key typed after CTRL-X,
which may result in a mapping to be used. (Daniel Steinberg)
* Vim9: there is no point in supporting :Print and :mode.
* When there is a partially matching map and modifyOtherKeys is active a
full map may not work.
* Vim9: outdated "autocmd nested" still works.
* "pattern not found" for :global is not an error message.
* Test fails because of new error message.
* Vim9: cannot assign to a global variable on the command line.
* Vim9: can declare a variable with ":va".
* Vim9: shortening commands leads to confusing script.
* Filetype test fails.
* The find_tags_in_file() function is much too long.
* Window-local directory is not applied if 'acd' fails.
* Vim9: some flow commands can be shortened.
* Old subsitute syntax is still supported.
* Build failure without the +eval feature.
* The binary tag search feature is always enabled.
* Vim9: Can still use ":fini" and ":finis" for ":finish".
* Using wrong highlight for cursor line number.
* Build failure without the +diff feature. (John Marriott)
* GUI test fails with Motif. (Dominique Pellé)
* When gvim is started maximized the 'window' option isn't set
properly. (Christian J. Robinson)
* Some GUI tests don't work on Athena.
* Vim9: cannot set variables to a null value.
* The Athena GUI is old and does not work well.
* Crash when using null_function for a partial.
* Vim9: comparing partial with function fails.
* Making comparison with null work changes legacy behavior.
* LGTM warnings for condition always true and buffer size too small.
* Suspending with CTRL-Z does not work on OpenBSD.
* Vim9: no test that after assigning null the type is still checked.
* Vim9: "is" operator with empty string and null returns true.
* Filename modifer ":8" removes the filename.
* Debugger test fails when breaking on expression.
* Output from linter and language server shows up in git.
* The find_tags_in_file() function is too long.
* When comparing special v:none and v:null are handled the same when
compiling.
* Line number for error is off by one.
* Crash in debugger when a variable is not available in the current block.
* Vim9: "break" inside try/catch not handled correctly.
==== wireplumber ====
Subpackages: libwireplumber-0_4-0 wireplumber-audio
- Add patch from upstream to fix a crash on tty switch
(glfo#pipewire/wireplumber#193):
* 0002-policy-bluetooth-fix-string.find-crash-with-nil-string.patch
- Add patch from upstream to fix issues with PulseAudio support with
PipeWire 0.3.48+ (glfo#pipewire/pipewire#2189):
* 0003-si-audio-adapter-relax-format-parsing.patch
- Some spec clean-up.
==== xdg-desktop-portal-kde ====
Version update (5.24.2 -> 5.24.3)
Subpackages: xdg-desktop-portal-kde-lang
- Update to 5.24.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.3
- No code changes since 5.24.2
- Restore compatibility with older kf5-filesystem
2
1
Dear Package maintainers and hackers.
Below package(s) in openSUSE:Factory have been failing to build for at
least 4 weeks. We tried to send out notifications to the
configured bugowner/maintainers of the package(s), but so far no
fix has been submitted. This probably means that the
maintainer/bugowner did not yet find the time to look into the
matter and he/she would certainly appreciate help to get this
sorted.
- deepin-movie
- julia
- python-PySDL2
- python-blue
- python-imageio
- python-zeep
Unless somebody is stepping up and submitting fixes, the listed
package(s) are going to be removed from openSUSE:Factory.
Kind regards,
DimStar / Dominique Leuenberger <dimstar(a)opensuse.org>
2
1
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&versio…
Please do not reply to this email to report issues, rather file a bug
on bugzilla.opensuse.org. For more information on filing bugs please
see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
ceph (16.2.6.463+g22e7612f9ad -> 16.2.7.596+g7d574789716)
dbus-1 (1.12.22 -> 1.14.0)
dbus-1-x11 (1.12.22 -> 1.14.0)
firewalld
freerdp (2.6.0 -> 2.6.1)
gnutls
kbd
libvdpau (1.4 -> 1.5)
logrotate
lua54
mozilla-nss (3.74 -> 3.75)
nfs-utils
openssl-1_1
perl-DBD-SQLite
python-FontTools (4.28.5 -> 4.29.1)
python-xarray (0.21.1 -> 2022.3.0)
qemu
ruby3.1
rubygem-rspec-rails (5.1.0 -> 5.1.1)
rubygem-sprockets (4.0.2 -> 4.0.3)
swtpm (0.7.1 -> 0.7.2)
vsftpd
yast2 (4.4.45 -> 4.4.47)
yast2-network (4.4.43 -> 4.4.44)
=== Details ===
==== ceph ====
Version update (16.2.6.463+g22e7612f9ad -> 16.2.7.596+g7d574789716)
Subpackages: librados2 librbd1
- Update to 16.2.7-596-g7d574789716
+ Update Prometheus Container image paths (pr #459)
+ mgr/dashboard: Fix documentation URL (pr #456)
+ mgr/dashboard: Adapt downstream branded navigation page (pr #454)
- Update to 16.2.7-577-g3e3603b5dd1
+ Update prometheus-server version
- Update to 16.2.7-37-gb3be69440db:
+ (bsc#1194353) Downstream branding breaks dashboard npm build
==== dbus-1 ====
Version update (1.12.22 -> 1.14.0)
Subpackages: libdbus-1-3 libdbus-1-3-32bit
- Update to version 1.14.0:
+ Dependencies:
- dbus now requires at least a basic level of support for C99
variadic macros, as implemented in gcc >= 3, all versions of
Clang, and MSVC >= 2005. In practice this requirement has
existed since version 1.9.2, but it is now official.
- dbus now requires a C99-compatible va_copy() macro
(or a __va_copy() macro with the same behaviour), except when
building for Windows using MSVC and CMake.
- On Unix platforms, if getpwnam_r() and getgrnam_r() are
implemented, they must be POSIX-conformant. The non-POSIX
signature seen in ancient Solaris versions will no longer
work.
- GLib >= 2.38 is required if full test coverage is enabled
(reduced from 2.40 in dbus 1.12.x.)
- Building using CMake now requires CMake 3.4.
- Building documentation using CMake now requires xsltproc,
Docbook DTDs (for example docbook-xml on Debian derivatives),
and Docbook XSLT stylesheets (for example docbook-xsl on
Debian derivatives). Using KDE's meinproc4 documentation
processor is no longer supported.
+ Build-time configuration changes: Move CMake build system to
top level, matching normal practice for CMake projects
+ Deprecations:
- Third-party software should install default dbus policies for
the system bus into ${datadir}/dbus-1/system.d (this has been
supported since dbus 1.10, released in August 2015).
Installing default dbus policies in
${sysconfdir}/dbus-1/system.d is now considered to be
deprecated. Policy files in ${sysconfdir}/dbus-1/system.d
continue to be read, but this directory should only be used
by system administrators wishing to override the default
policies.
- The ${datadir} applicable to dbus is usually /usr/share and
the ${sysconfdir} is usually /etc.
- A similar pattern applies to the session bus policies in
session.d.
- The dbus-send(1) man page now documents --bus and --peer
instead of the old --address synonym for --peer, which has
been deprecated since the introduction of --bus and --peer in
1.7.6
- The dbus-daemon man page now has scarier warnings about
<allow_anonymous/> and non-local TCP, which are insecure and
should not be used, particularly for the standard system and
session buses.
- DBusServer (and hence the dbus-daemon) no longer accepts
usernames (login names) for the recommended EXTERNAL
authentication mechanism, only numeric user IDs or the empty
string. See 1.13.0 release notes for full details.
+ New features:
- On Linux 4.13 or later when built against a suitable glibc
version, GetConnectionCredentials() now includes
UnixGroupIDs, the effective group IDs of the initiator of the
connection, taken from SO_PEERGROUPS.
- On Linux 4.13 or later, <policy group="?"> now uses the
SO_PEERGROUPS credentials-passing socket option to get the
effective group IDs of the initiator of the connection. See
1.13.4 release notes for details.
- Add a --sender option to dbus-send, which requests a name and
holds it until the signal has been sent
- dbus-daemon <allow> and <deny> rules can now specify a
send_destination_prefix attribute, which is like a
combination of send_destination and the arg0namespace keyword
in match rules. See 1.13.12 release notes for more details.
- The dbus-daemon now filters the messages that it relays,
removing header fields that it does not understand. Clients
must not rely on this behaviour unless they have confirmed
that they are connected to a suitable message bus
implementation, for example by querying its Features
property.
- The dbus-daemon now emits a signal,
ActivatableServicesChanged, when the list of activatable
services may have changed. Support for this signal can be
discovered by querying the Features property.
- It is now possible to disable traditional (non-systemd)
service activation at build-time (Autotools:
- -disable-traditional-activation, CMake:
- DENABLE_TRADITIONAL_ACTIVATION=OFF). See 1.13.10 release
notes for details.
- The API reference manual can be built as a Qt compiled help
file if qhelpgenerator(-qt5) is available. See 1.13.16
release notes for details.
+ Miscellaneous behaviour changes:
- When using the "user bus" (--enable-user-session), put the
dbus-daemon in the session slice
- Several environment variables set by systemd are no longer
passed on to activated services
- If the dbus-daemon is compiled for Linux with systemd
support, it now informs systemd that it is ready for use via
the sd_notify() mechanism.
- Tarball releases no longer contain pre-2007 changelogs and
are now compressed with xz, making them around 35% smaller.
- Drop conditionals for old obsolete versions of openSUSE.
- Rebase patches with quilt.
- Use https for source and sig URL.
==== dbus-1-x11 ====
Version update (1.12.22 -> 1.14.0)
- Update to version 1.14.0:
+ Dependencies:
- dbus now requires at least a basic level of support for C99
variadic macros, as implemented in gcc >= 3, all versions of
Clang, and MSVC >= 2005. In practice this requirement has
existed since version 1.9.2, but it is now official.
- dbus now requires a C99-compatible va_copy() macro
(or a __va_copy() macro with the same behaviour), except when
building for Windows using MSVC and CMake.
- On Unix platforms, if getpwnam_r() and getgrnam_r() are
implemented, they must be POSIX-conformant. The non-POSIX
signature seen in ancient Solaris versions will no longer
work.
- GLib >= 2.38 is required if full test coverage is enabled
(reduced from 2.40 in dbus 1.12.x.)
- Building using CMake now requires CMake 3.4.
- Building documentation using CMake now requires xsltproc,
Docbook DTDs (for example docbook-xml on Debian derivatives),
and Docbook XSLT stylesheets (for example docbook-xsl on
Debian derivatives). Using KDE's meinproc4 documentation
processor is no longer supported.
+ Build-time configuration changes: Move CMake build system to
top level, matching normal practice for CMake projects
+ Deprecations:
- Third-party software should install default dbus policies for
the system bus into ${datadir}/dbus-1/system.d (this has been
supported since dbus 1.10, released in August 2015).
Installing default dbus policies in
${sysconfdir}/dbus-1/system.d is now considered to be
deprecated. Policy files in ${sysconfdir}/dbus-1/system.d
continue to be read, but this directory should only be used
by system administrators wishing to override the default
policies.
- The ${datadir} applicable to dbus is usually /usr/share and
the ${sysconfdir} is usually /etc.
- A similar pattern applies to the session bus policies in
session.d.
- The dbus-send(1) man page now documents --bus and --peer
instead of the old --address synonym for --peer, which has
been deprecated since the introduction of --bus and --peer in
1.7.6
- The dbus-daemon man page now has scarier warnings about
<allow_anonymous/> and non-local TCP, which are insecure and
should not be used, particularly for the standard system and
session buses.
- DBusServer (and hence the dbus-daemon) no longer accepts
usernames (login names) for the recommended EXTERNAL
authentication mechanism, only numeric user IDs or the empty
string. See 1.13.0 release notes for full details.
+ New features:
- On Linux 4.13 or later when built against a suitable glibc
version, GetConnectionCredentials() now includes
UnixGroupIDs, the effective group IDs of the initiator of the
connection, taken from SO_PEERGROUPS.
- On Linux 4.13 or later, <policy group="?"> now uses the
SO_PEERGROUPS credentials-passing socket option to get the
effective group IDs of the initiator of the connection. See
1.13.4 release notes for details.
- Add a --sender option to dbus-send, which requests a name and
holds it until the signal has been sent
- dbus-daemon <allow> and <deny> rules can now specify a
send_destination_prefix attribute, which is like a
combination of send_destination and the arg0namespace keyword
in match rules. See 1.13.12 release notes for more details.
- The dbus-daemon now filters the messages that it relays,
removing header fields that it does not understand. Clients
must not rely on this behaviour unless they have confirmed
that they are connected to a suitable message bus
implementation, for example by querying its Features
property.
- The dbus-daemon now emits a signal,
ActivatableServicesChanged, when the list of activatable
services may have changed. Support for this signal can be
discovered by querying the Features property.
- It is now possible to disable traditional (non-systemd)
service activation at build-time (Autotools:
- -disable-traditional-activation, CMake:
- DENABLE_TRADITIONAL_ACTIVATION=OFF). See 1.13.10 release
notes for details.
- The API reference manual can be built as a Qt compiled help
file if qhelpgenerator(-qt5) is available. See 1.13.16
release notes for details.
+ Miscellaneous behaviour changes:
- When using the "user bus" (--enable-user-session), put the
dbus-daemon in the session slice
- Several environment variables set by systemd are no longer
passed on to activated services
- If the dbus-daemon is compiled for Linux with systemd
support, it now informs systemd that it is ready for use via
the sd_notify() mechanism.
- Tarball releases no longer contain pre-2007 changelogs and
are now compressed with xz, making them around 35% smaller.
- Drop conditionals for old obsolete versions of openSUSE.
- Rebase patches with quilt.
- Use https for source and sig URL.
==== firewalld ====
Subpackages: firewalld-bash-completion firewalld-lang firewalld-zsh-completion python3-firewall
- Add code for safe modprobe.d migration
(https://en.opensuse.org/openSUSE:Packaging_UsrEtc)
- Always own %_modprobedir (bsc#1196275, jsc#SLE-20639)
==== freerdp ====
Version update (2.6.0 -> 2.6.1)
Subpackages: libfreerdp2-2 libwinpr2-2
- Upgraded to freerdp 2.6.1
* Decreased logging verbosity, now freerdp is much less verbose by default
* Backported freerdp_abort_connect during freerdp_connect fix (#gh:FreeRDP/FreeRDP#7700)
* Backported improved version dection see docs/version_detection.md for details
* Backported various rdpsnd fixes (#gh:FreeRDP/FreeRDP#7695)
==== gnutls ====
Subpackages: libgnutls-dane0 libgnutls30 libgnutls30-32bit libgnutls30-hmac
- build with lto
- build with -Wl,-z,now -Wl,-z,relro
- build without -fanalyzer, which cuts build time in ~ half
==== kbd ====
Subpackages: kbd-legacy
- Refresh kbdsettings-nox86.patch to fix build on non-x86*
architectures
==== libvdpau ====
Version update (1.4 -> 1.5)
- Add U_Support-AV1.patch: Add support for AV1 in vdpauinfo.
- Minor tweaks to spec.
- Update to version 1.5:
* Add AV1 decode support in VDPAU API
* Addition of comma and removing the extra braces
* Add tracing for HEVCRangeExt picture info
* Add tracing for VP9 picture info
- Also update vdpauinfo to version 1.4
- Drop patches fixed upstream:
* c5a8e7c6c8b4b36a0e4c9a4369404519262a3256.patch
* e82dc4bdbb0db3ffa8c78275902738eb63aa5ca8.patch
==== logrotate ====
- Added own logrotate.service file in order to define a new order
of parsed config files:
/usr/etc/logrotate.conf Default configuration file defined by
the vendor.
/usr/etc/logrotate.d/* Directory for additional configuration
files defined by the vendor.
/etc/logrotate.conf Default configuration file defined by
the administrator. (optional)
/etc/logrotate.d/* Directory for additional configuration
files defined by the administrator.
(optional)
- drop logrotate-3.19.0-systemd_add_home_env.patch:
- included in new logrotate.service
- Adapted man page: logrotate-3.19.0-man_logrotate.patch
==== lua54 ====
- Added patches from upstream:
* luabugs1.patch
* luabugs2.patch
- Adjust buildsystem so that it matches upstream git (testes??)
- Drop the lua_docdir define, package docs in the standard
location. Instead just silently drop packaging the README with
the path that does not makes sense for a rpm package, but for a
source tarball install. Simpler solution to boo#1186233.
==== mozilla-nss ====
Version update (3.74 -> 3.75)
Subpackages: libfreebl3 libfreebl3-hmac libsoftokn3 libsoftokn3-hmac mozilla-nss-certs mozilla-nss-tools
- update to NSS 3.75
* bmo#1749030 - This patch adds gcc-9 and gcc-10 to the CI.
* bmo#1749794 - Make DottedOIDToCode.py compatible with python3.
* bmo#1749475 - Avoid undefined shift in SSL_CERT_IS while fuzzing.
* bmo#1748386 - Remove redundant key type check.
* bmo#1749869 - Update ABI expectations to match ECH changes.
* bmo#1748386 - Enable CKM_CHACHA20.
* bmo#1747327 - check return on NSS_NoDB_Init and NSS_Shutdown.
* bmo#1747310 - real move assignment operator.
* bmo#1748245 - Run ECDSA test vectors from bltest as part of the CI tests.
* bmo#1743302 - Add ECDSA test vectors to the bltest command line tool.
* bmo#1747772 - Allow to build using clang's integrated assembler.
* bmo#1321398 - Allow to override python for the build.
* bmo#1747317 - test HKDF output rather than input.
* bmo#1747316 - Use ASSERT macros to end failed tests early.
* bmo#1747310 - move assignment operator for DataBuffer.
* bmo#1712879 - Add test cases for ECH compression and unexpected
extensions in SH.
* bmo#1725938 - Update tests for ECH-13.
* bmo#1725938 - Tidy up error handling.
* bmo#1728281 - Add tests for ECH HRR Changes.
* bmo#1728281 - Server only sends GREASE HRR extension if enabled
by preference.
* bmo#1725938 - Update generation of the Associated Data for ECH-13.
* bmo#1712879 - When ECH is accepted, reject extensions which were
only advertised in the Outer Client Hello.
* bmo#1712879 - Allow for compressed, non-contiguous, extensions.
* bmo#1712879 - Scramble the PSK extension in CHOuter.
* bmo#1712647 - Split custom extension handling for ECH.
* bmo#1728281 - Add ECH-13 HRR Handling.
* bmo#1677181 - Client side ECH padding.
* bmo#1725938 - Stricter ClientHelloInner Decompression.
* bmo#1725938 - Remove ECH_inner extension, use new enum format.
* bmo#1725938 - Update the version number for ECH-13 and adjust
the ECHConfig size.
==== nfs-utils ====
Subpackages: libnfsidmap1 nfs-client nfs-kernel-server
- add reenable-nfsv2.patch for reverting nfsv2 deprecation until
test coverage is fixed (poo#106679)
- Add gcc12-fix.patch upstream fix for GCC 12 compiler.
- Update to version 2.6.1
- https://kernel.org/pub/linux/utils/nfs-utils/2.6.1/2.6.1-Changelog
- remove patches from this release:
- 0001-gssd-fix-crash-in-debug-message.patch,
- Add-disable-sbin-override-for-when-sbin-is-a-symlink.patch
==== openssl-1_1 ====
Subpackages: libopenssl1_1 libopenssl1_1-32bit libopenssl1_1-hmac
- Security fix: [bsc#1192820, CVE-2002-20001]
* Fix DHEATER: The Diffie-Hellman Key Agreement Protocol allows
remote attackers (from the client side) to send arbitrary
numbers that are actually not public keys, and trigger
expensive server-side DHE calculation.
* Stop recommending the DHE in SSL_DEFAULT_SUSE_CIPHER_LIST
* Rebase openssl-DEFAULT_SUSE_cipher.patch
- Fix the engines section in /etc/ssl/openssl.cnf [bsc#1194187]
* In an INI-type file, the sections begin with a [section_name]
and they run until the next section begins.
* Rebase openssl-1_1-use-include-directive.patch
==== perl-DBD-SQLite ====
- Use the system sqlite rather than the built-in one.
[bsc#1195771, perl-DBD-SQLite-use-external-sqlite3.patch]
==== python-FontTools ====
Version update (4.28.5 -> 4.29.1)
- Update to 4.29.1
* [colorLib] Fixed rounding issue with radial gradient's start/end
circles inside one another (#2521).
* [freetypePen] Handle rotate/skew transform when auto-computing
width/height of the buffer; raise PenError wen missing moveTo
(#2517)
- Release 4.29.0
* [ufoLib] Fixed illegal characters and expanded reserved
filenames (#2506).
* [COLRv1] Don't emit useless PaintColrLayers of lenght=1 in
LayerListBuilder (#2513).
* [ttx] Removed legacy waitForKeyPress method on Windows (#2509).
* [pens] Added FreeTypePen that uses freetype-py and the pen
protocol for rasterizating outline paths (#2494).
* [unicodedata] Updated the script direction list to Unicode 14.0
(#2484).
* Bumped unicodedata2 dependency to 14.0 (#2499).
* [psLib] Fixed type of fontName in suckfont (#2496).
==== python-xarray ====
Version update (0.21.1 -> 2022.3.0)
- - update to version 2022.03.0:
- This release brings a number of small improvements, as well as a move to `calendar versioning <https://calver.org/>`_ (:issue:`6176`).:
- Many thanks to the 16 contributors to the v2022.02.0 release!:
- Aaron Spring, Alan D. Snow, Anderson Banihirwe, crusaderky, Illviljan, Joe Hamman, Jonas Gliß,:
- Lukas Pilz, Martin Bergemann, Mathias Hauser, Maximilian Roos, Romain Caneill, Stan West, Stijn Van Hoey,:
- Tobias Kölling, and Tom Nicholas.:
- New Features:
- Enabled multiplying tick offsets by floats. Allows ``float`` ``n`` in
:py:meth:`CFTimeIndex.shift` if ``shift_freq`` is between ``Day``
and ``Microsecond``. (:issue:`6134`, :pull:`6135`).
By `Aaron Spring <https://github.com/aaronspring>`_.
- Enbable to provide more keyword arguments to `pydap` backend when reading
OpenDAP datasets (:issue:`6274`).
By `Jonas Gliß <https://github.com/jgliss>`.
- Allow :py:meth:`DataArray.drop_duplicates` to drop duplicates along multiple dimensions at once,
and add :py:meth:`Dataset.drop_duplicates`. (:pull:`6307`)
By `Tom Nicholas <https://github.com/TomNicholas>`_.
- Breaking changes:
- Renamed the ``interpolation`` keyword of all ``quantile`` methods (e.g. :py:meth:`DataArray.quantile`)
to ``method`` for consistency with numpy v1.22.0 (:pull:`6108`).
By `Mathias Hauser <https://github.com/mathause>`_.
- Deprecations:
- Bug fixes:
- Variables which are chunked using dask in larger (but aligned) chunks than the target zarr chunk size
can now be stored using `to_zarr()` (:pull:`6258`) By `Tobias Kölling <https://github.com/d70-t>`_.
- Multi-file datasets containing encoded :py:class:`cftime.datetime` objects can be read in parallel again (:issue:`6226`, :pull:`6249`, :pull:`6305`). By `Martin Bergemann <https://github.com/antarcticrainforest>`_ and `Stan West <https://github.com/stanwest>`_.
- Documentation:
- Delete files of datasets saved to disk while building the documentation and enable
building on Windows via `sphinx-build` (:pull:`6237`).
By `Stan West <https://github.com/stanwest>`_.
- Internal Changes:
- update to version 0.21.1:
- This is a bugfix release to resolve (:issue:`6216`, :pull:`6207`).:
- Bug fixes:
- Add `packaging` as a dependency to Xarray (:issue:`6216`, :pull:`6207`).
By `Sebastian Weigand <https://github.com/s-weigand>`_ and `Joe Hamman <https://github.com/jhamman>`_.
==== qemu ====
Subpackages: qemu-accel-tcg-x86 qemu-audio-spice qemu-block-curl qemu-block-rbd qemu-chardev-spice qemu-guest-agent qemu-hw-display-qxl qemu-hw-display-virtio-gpu qemu-hw-display-virtio-gpu-pci qemu-hw-display-virtio-vga qemu-hw-usb-host qemu-hw-usb-redirect qemu-hw-usb-smartcard qemu-ipxe qemu-ksm qemu-kvm qemu-lang qemu-microvm qemu-seabios qemu-sgabios qemu-tools qemu-ui-curses qemu-ui-gtk qemu-ui-opengl qemu-ui-spice-app qemu-ui-spice-core qemu-vgabios qemu-x86
- Build PPC firmwares from sources on non-PPC builds as well
(bsc#1193545)
- Build RiscV firmwares on non-RiscV builds as well
- While there, refactor (and simplify!) the firmware building
logic and code
* Patches added:
Makefile-define-endianess-for-cross-buil.patch
Makefile-fix-build-with-binutils-2.38.patch
- qemu,kvm,xen: NULL pointer dereference issue in megasas-gen2 host
bus adapter (bsc#1180432, CVE-2020-35503)
* Patches added:
hw-scsi-megasas-check-for-NULL-frame-in-.patch
==== ruby3.1 ====
Subpackages: libruby3_1-3_1
- use valgrind for more supported platforms
- run tests in parallel for better build times
- set PATH for test to just built ruby interpreter
- skip network tests, they hang on timeouts, slowing down the build
- remove exceptions for armv7 testing, these are all fixed
==== rubygem-rspec-rails ====
Version update (5.1.0 -> 5.1.1)
- updated to version 5.1.1
Enhancements:
* Make the API request scaffold template more consistent and compatible with
Rails 6.1. (Naoto Hamada, #2484)
* Change the scaffold `rails_helper.rb` template to use `require_relative`.
(Jon Dufresne, #2528)
==== rubygem-sprockets ====
Version update (4.0.2 -> 4.0.3)
- updated to version 4.0.3
* Fix `Manifest#find` yielding from a Promise causing issue on Ruby 3.1.0-dev. [#720](https://github.com/rails/sprockets/pull/720)
* Better detect the ERB version to avoid deprecation warnings. [#719](https://github.com/rails/sprockets/pull/719)
* Allow assets already fingerprinted to be served through `Sprockets::Server`
* Do not fingerprint files that already contain a valid digest in their name
* Remove remaining support for Ruby < 2.4.[#672](https://github.com/rails/sprockets/pull/672)
==== swtpm ====
Version update (0.7.1 -> 0.7.2)
Subpackages: swtpm-selinux
- Update to version 0.7.2:
- swtpm:
- Do not chdir(/) when using --daemon
- swtpm-localca:
- Re-implement variable resolution for swtpm-localca.conf
- tests:
- Use ${WORKDIR} in config files to test env. var replacement
- man pages:
- Add missing .config directory to path description when using ${HOME}
- build-sys:
- Add probing for -fstack-protector
==== vsftpd ====
- Use rpm conditional to build against the proper OpenSSL version
on all distributions. [jsc#PM-3322]
==== yast2 ====
Version update (4.4.45 -> 4.4.47)
Subpackages: yast2-logs
- Extend the Package module to force using PackageSystem or
PackageAI without having the mode into account.
- AutoYaST: properly detect whether firewalld, bind and
yast2-dns-server packages are installed when cloning a system
(bsc#1196963).
- 4.4.47
- Reverted LD_PRELOAD change (GitHub PR#1236) (bsc#1196326)
- 4.4.46
- New doc: Invoking External Commands in YaST (in doc/)
==== yast2-network ====
Version update (4.4.43 -> 4.4.44)
- Write NetworkManager s390 options to the ethernet section instead
of the connection one (bsc#1196582)
- 4.4.44
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&versio…
Please do not reply to this email to report issues, rather file a bug
on bugzilla.opensuse.org. For more information on filing bugs please
see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
calligra
fetchmail (6.4.27 -> 6.4.28)
rubygem-actioncable-7.0 (7.0.2.2 -> 7.0.2.3)
rubygem-actionmailbox-7.0 (7.0.2.2 -> 7.0.2.3)
rubygem-actionmailer-7.0 (7.0.2.2 -> 7.0.2.3)
rubygem-actionpack-7.0 (7.0.2.2 -> 7.0.2.3)
rubygem-actiontext-7.0 (7.0.2.2 -> 7.0.2.3)
rubygem-actionview-7.0 (7.0.2.2 -> 7.0.2.3)
rubygem-activejob-7.0 (7.0.2.2 -> 7.0.2.3)
rubygem-activemodel-7.0 (7.0.2.2 -> 7.0.2.3)
rubygem-activerecord-7.0 (7.0.2.2 -> 7.0.2.3)
rubygem-activestorage-7.0 (7.0.2.2 -> 7.0.2.3)
rubygem-activesupport-7.0 (7.0.2.2 -> 7.0.2.3)
rubygem-bootsnap (1.10.3 -> 1.11.1)
rubygem-rails-7.0 (7.0.2.2 -> 7.0.2.3)
rubygem-railties-7.0 (7.0.2.2 -> 7.0.2.3)
rubygem-rubocop (1.25.1 -> 1.26.0)
rubygem-rubocop-ast (1.15.2 -> 1.16.0)
=== Details ===
==== calligra ====
- Add poppler-22.03.0.patch to fix build with poppler-22.03.0
==== fetchmail ====
Version update (6.4.27 -> 6.4.28)
Subpackages: fetchmailconf
- update to 6.4.28:
* Updated spanish translation.
- fix typos in changelog.
==== rubygem-actioncable-7.0 ====
Version update (7.0.2.2 -> 7.0.2.3)
- updated to version 7.0.2.3
* no changes
==== rubygem-actionmailbox-7.0 ====
Version update (7.0.2.2 -> 7.0.2.3)
- updated to version 7.0.2.3
* no changes
==== rubygem-actionmailer-7.0 ====
Version update (7.0.2.2 -> 7.0.2.3)
- updated to version 7.0.2.3
* no changes
==== rubygem-actionpack-7.0 ====
Version update (7.0.2.2 -> 7.0.2.3)
- updated to version 7.0.2.3
* no changes
==== rubygem-actiontext-7.0 ====
Version update (7.0.2.2 -> 7.0.2.3)
- updated to version 7.0.2.3
* no changes
==== rubygem-actionview-7.0 ====
Version update (7.0.2.2 -> 7.0.2.3)
- updated to version 7.0.2.3
* no changes
==== rubygem-activejob-7.0 ====
Version update (7.0.2.2 -> 7.0.2.3)
- updated to version 7.0.2.3
* no changes
==== rubygem-activemodel-7.0 ====
Version update (7.0.2.2 -> 7.0.2.3)
- updated to version 7.0.2.3
* no changes
==== rubygem-activerecord-7.0 ====
Version update (7.0.2.2 -> 7.0.2.3)
- updated to version 7.0.2.3
* no changes
==== rubygem-activestorage-7.0 ====
Version update (7.0.2.2 -> 7.0.2.3)
- updated to version 7.0.2.3
* Added image transformation validation via configurable allow-list.
Variant now offers a configurable allow-list for
transformation methods in addition to a configurable deny-list for arguments.
[CVE-2022-21831]
==== rubygem-activesupport-7.0 ====
Version update (7.0.2.2 -> 7.0.2.3)
- updated to version 7.0.2.3
* no changes
==== rubygem-bootsnap ====
Version update (1.10.3 -> 1.11.1)
- updated to version 1.11.1
* Fix the `can't modify frozen Hash` error on load path cache mutation. See #411.
[#] 1.11.0
* Drop dependency on `fileutils`.
* Better respect `Kernel#require` duck typing. While it almost never comes up in practice, `Kernel#require`
follow a fairly intricate duck-typing protocol on its argument implemented as `rb_get_path(VALUE)` in MRI.
So when applicable we bind `rb_get_path` and use it for improved compatibility. See #396 and #406.
* Get rid of the `Kernel.require_relative` decorator by resolving `$LOAD_PATH` members to their real path.
This way we handle symlinks in `$LOAD_PATH` much more efficiently. See #402 for the detailed explanation.
* Drop support for Ruby 2.3 (to allow getting rid of the `Kernel.require_relative` decorator).
==== rubygem-rails-7.0 ====
Version update (7.0.2.2 -> 7.0.2.3)
- updated to version 7.0.2.3
https://rubyonrails.org/2022/3/8/Rails-7-0-2-3-6-1-4-7-6-0-4-7-and-5-2-6-3-…
==== rubygem-railties-7.0 ====
Version update (7.0.2.2 -> 7.0.2.3)
- updated to version 7.0.2.3
* no changes
==== rubygem-rubocop ====
Version update (1.25.1 -> 1.26.0)
- updated to version 1.26.0
[#]## New features
* [#10419](https://github.com/rubocop/rubocop/pull/10419): Add new `Style/NestedFileDirname` cop. ([@koic][])
* [#10433](https://github.com/rubocop/rubocop/pull/10433): Support `TargetRubyVersion 3.2` (experimental). ([@koic][])
[#]## Bug fixes
* [#10406](https://github.com/rubocop/rubocop/pull/10406): Fix a false positive for `Lint/InheritException` when inheriting a standard lib exception class that is not a subclass of `StandardError`. ([@koic][])
* [#10421](https://github.com/rubocop/rubocop/issues/10421): Make `Style/DefWithParentheses` aware of endless method definition. ([@koic][])
* [#10401](https://github.com/rubocop/rubocop/issues/10401): Fix a false positive for `Style/HashSyntax` when local variable hash key and hash value are the same. ([@koic][])
* [#10424](https://github.com/rubocop/rubocop/pull/10424): Fix a false positive for `Security/YamlLoad` when using Ruby 3.1+ (Psych 4). ([@koic][])
* [#10446](https://github.com/rubocop/rubocop/pull/10446): Lint/RedundantDirGlobSort unset SafeAutoCorrect. ([@friendlyantz][])
* [#10403](https://github.com/rubocop/rubocop/issues/10403): Fix an error for `Style/StringConcatenation` when string concatenation with multiline heredoc text. ([@koic][])
* [#10432](https://github.com/rubocop/rubocop/pull/10432): Fix an error when using regexp with non-encoding option. ([@koic][])
* [#10415](https://github.com/rubocop/rubocop/issues/10415): Fix an error for `Lint/UselessTimes` when using `1.times` with method chain. ([@koic][])
[#]## Changes
* [#10408](https://github.com/rubocop/rubocop/pull/10408): Mark `Lint/InheritException` as unsafe auto-correction. ([@koic][])
* [#10407](https://github.com/rubocop/rubocop/pull/10407): Change `EnforcedStyle` from `runtime_error` to `standard_error` for `Lint/InheritException`. ([@koic][])
* [#10414](https://github.com/rubocop/rubocop/pull/10414): Update auto-gen-config's auto-correction comments to be more clear. ([@maxjacobson][])
* [#10427](https://github.com/rubocop/rubocop/issues/10427): Mark `Style/For` as unsafe auto-correction. ([@issyl0][])
* [#10410](https://github.com/rubocop/rubocop/issues/10410): Improve help string for `--fail-level` CLI option. ([@tejasbubane][])
==== rubygem-rubocop-ast ====
Version update (1.15.2 -> 1.16.0)
- updated to version 1.16.0
[#]## New features
* [#223](https://github.com/rubocop-hq/rubocop-ast/pull/223): Support `Parser::Ruby32` for Ruby 3.2 parser (experimental). ([@koic][])
1
0
Dear Tumbleweed users and hackers,
Over here, the weather is getting better by the day, spring is around
the corner. But the Tumbleweed developers seem not to care that much,
as we managed to release a full 7 snapshots in the last week
(0303…0309).
The main changes in those snapshots included:
* libva 2.14.0
* KDE Gear 21.12.3
* binutils 2.38
* Libreoffice 7.3.1.3
* Poppler 22.03.0
* Node.JS 17.6.0
* VLC 3.0.17
* openSSH 8.9p1
* Rust 1.59
* go 1.16.15 & 1.17.8
* Ruby Rails 7.0
The stagings are not overcrowded at the moment, there is space for all
your submissions. But there are still things in the makings, such as:
* systemd 250.3: breaks python-pyudev
* Linux kernel 5.16.14
* util-linux 2.37.4
* Mozilla Firefox 98.0 & Thunderbird 91.7.0
* cURL 7.82.0: breaks libzypp and pycurl
* KDE Plasma 5.24.3
* dbus 1.14.0
Cheers,
Dominique
1
0
Dear Package maintainers and hackers.
Below package(s) in openSUSE:Factory have been failing to build for at
least 4 weeks. We tried to send out notifications to the
configured bugowner/maintainers of the package(s), but so far no
fix has been submitted. This probably means that the
maintainer/bugowner did not yet find the time to look into the
matter and he/she would certainly appreciate help to get this
sorted.
- radare2-iaito
Unless somebody is stepping up and submitting fixes, the listed
package(s) are going to be removed from openSUSE:Factory.
Kind regards,
DimStar / Dominique Leuenberger <dimstar(a)opensuse.org>
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&versio…
Please do not reply to this email to report issues, rather file a bug
on bugzilla.opensuse.org. For more information on filing bugs please
see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
baloo5
cyrus-imapd
discover
drkonqi5
filesystem
gcc11
hwdata (0.356 -> 0.357)
kactivitymanagerd
kauth
kcm_sddm
kcron
kde-gtk-config5
kdeconnect-kde
kdelibs4support
kdenetwork-filesharing
khelpcenter5
kio-fuse
kscreenlocker
kwalletmanager5
kwayland
kwin5
libksysguard5
libnvme
ncurses (6.3.20220219 -> 6.3.20220226)
openssh (8.8p1 -> 8.9p1)
plasma5-desktop
plasma5-disks
plasma5-workspace
polkit-kde-agent-5
powerdevil5
python-colorama
systemd
upower (0.99.16 -> 0.99.16+4)
wireless-regdb (20220108 -> 20220218)
xdg-desktop-portal-kde
=== Details ===
==== baloo5 ====
Subpackages: baloo5-file baloo5-file-lang baloo5-imports baloo5-kioslaves baloo5-kioslaves-lang baloo5-tools baloo5-tools-lang libKF5Baloo5 libKF5BalooEngine5 libKF5BalooEngine5-lang
- Replace %_libdir/libexec with %_libexecdir (boo#1174075)
==== cyrus-imapd ====
Subpackages: cyradm perl-Cyrus-IMAP perl-Cyrus-SIEVE-managesieve
- Add cyrus-imapd-2.4.22-fix-cve-2021-33582.patch: Fix CVE-2021-33582
- Add cyrus-imapd-2.4.22-recognize-new-backends.patch: Recognize
backends of Cyrus versions 3.6 and 3.7
==== discover ====
Subpackages: discover-backend-flatpak discover-backend-fwupd discover-backend-packagekit discover-lang
- Replace %_libdir/libexec with %_libexecdir (boo#1174075)
==== drkonqi5 ====
Subpackages: drkonqi5-lang
- Replace %_libdir/libexec with %_libexecdir (boo#1174075)
==== filesystem ====
- Create tmpfiles.d which creates /usr/local on the fly
==== gcc11 ====
Subpackages: cpp11 gcc11-info gcc11-locale libasan6 libatomic1 libgcc_s1 libgcc_s1-32bit libgfortran5 libgomp1 libitm1 liblsan0 libobjc4 libquadmath0 libstdc++6 libstdc++6-32bit libstdc++6-devel-gcc11 libstdc++6-locale libstdc++6-pp-gcc11 libstdc++6-pp-gcc11-32bit libtsan0 libubsan1
- Add a list of Obsoletes to libstdc++6-pp-gcc11 so updates from
packages provided by older GCC work. Add a requires from that
package to the corresponding libstc++6 package to keep those
at the same version. [bsc#1196107]
==== hwdata ====
Version update (0.356 -> 0.357)
- Update to version 0.357:
+ Updated pci, usb and vendor ids.
==== kactivitymanagerd ====
Subpackages: kactivitymanagerd-lang
- Replace %_libdir/libexec with %_libexecdir (boo#1174075)
==== kauth ====
Subpackages: libKF5Auth5 libKF5Auth5-lang libKF5AuthCore5
- Replace %_libdir/libexec with %_libexecdir (boo#1174075)
==== kcm_sddm ====
Subpackages: kcm_sddm-lang
- Replace %_libdir/libexec with %_libexecdir (boo#1174075)
==== kcron ====
Subpackages: kcron-lang
- Replace %_libdir/libexec with %_libexecdir (boo#1174075)
==== kde-gtk-config5 ====
Subpackages: kde-gtk-config5-gtk3
- Replace %_libdir/libexec with %_libexecdir (boo#1174075)
==== kdeconnect-kde ====
Subpackages: kdeconnect-kde-lang kdeconnect-kde-zsh-completion
- Replace %_libdir/libexec with %_libexecdir (boo#1174075)
==== kdelibs4support ====
Subpackages: kdelibs4support-lang libKF5KDELibs4Support5
- Add patch to fix installation:
* 0001-Use-KDE_INSTALL_FULL_-variables-where-needed.patch
==== kdenetwork-filesharing ====
Subpackages: kdenetwork-filesharing-lang
- Replace %_libdir/libexec with %_libexecdir (boo#1174075)
==== khelpcenter5 ====
Subpackages: khelpcenter5-lang
- Replace %_libdir/libexec with %_libexecdir (boo#1174075)
==== kio-fuse ====
- Replace %_libdir/libexec with %_libexecdir (boo#1174075)
==== kscreenlocker ====
Subpackages: kscreenlocker-lang libKScreenLocker5
- Replace %_libdir/libexec with %_libexecdir (boo#1174075)
==== kwalletmanager5 ====
Subpackages: kwalletmanager5-lang
- Replace %_libdir/libexec with %_libexecdir (boo#1174075)
==== kwayland ====
- Replace %_libdir/libexec with %_libexecdir (boo#1174075)
==== kwin5 ====
Subpackages: kwin5-lang
- Replace %_libdir/libexec with %_libexecdir (boo#1174075)
==== libksysguard5 ====
Subpackages: ksysguardsystemstats-data libKSysGuardSystemStats1 libksysguard5-imports libksysguard5-lang
- Replace %_libdir/libexec with %_libexecdir (boo#1174075)
==== libnvme ====
- Update License information. The library is released under
LGPL-2.1-or-later and not LGPL-2.1-only.
==== ncurses ====
Version update (6.3.20220219 -> 6.3.20220226)
Subpackages: libncurses6 ncurses-utils terminfo terminfo-base terminfo-iterm terminfo-screen
- Add ncurses patch 20220226
+ fix issues found with coverity:
+ rewrite canonical_name() function of infocmp to ensure buffer size
+ corrected use of original tty-modes in tput init/reset subcommands
+ modify tabs program to limit tab-stop values to max-columns
+ add limit-checks for palette rgb values in test/ncurses.c
+ add a few null-pointer checks to help with static-analysis.
+ enforce limit on number of soft-keys used in c++ binding.
+ adjust a buffer-limit in write_entry.c to quiet a bogus warning from
gcc 12.0.1
==== openssh ====
Version update (8.8p1 -> 8.9p1)
Subpackages: openssh-clients openssh-common openssh-server
- Version update to 8.9p1:
= Security
* sshd(8): fix an integer overflow in the user authentication path
that, in conjunction with other logic errors, could have yielded
unauthenticated access under difficult to exploit conditions.
This situation is not exploitable because of independent checks in
the privilege separation monitor. Privilege separation has been
enabled by default in since openssh-3.2.2 (released in 2002) and
has been mandatory since openssh-7.5 (released in 2017). Moreover,
portable OpenSSH has used toolchain features available in most
modern compilers to abort on signed integer overflow since
openssh-6.5 (released in 2014).
Thanks to Malcolm Stagg for finding and reporting this bug.
= Potentially-incompatible changes
* sshd(8), portable OpenSSH only: this release removes in-built
support for MD5-hashed passwords. If you require these on your
system then we recommend linking against libxcrypt or similar.
* This release modifies the FIDO security key middleware interface
and increments SSH_SK_VERSION_MAJOR.
= New features
* ssh(1), sshd(8), ssh-add(1), ssh-agent(1): add a system for
restricting forwarding and use of keys added to ssh-agent(1)
A detailed description of the feature is available at
https://www.openssh.com/agent-restrict.html and the protocol
extensions are documented in the PROTOCOL and PROTOCOL.agent
files in the source release.
* ssh(1), sshd(8): add the sntrup761x25519-sha512(a)openssh.com hybrid
ECDH/x25519 + Streamlined NTRU Prime post-quantum KEX to the
default KEXAlgorithms list (after the ECDH methods but before the
prime-group DH ones). The next release of OpenSSH is likely to
make this key exchange the default method.
* ssh-keygen(1): when downloading resident keys from a FIDO token,
pass back the user ID that was used when the key was created and
append it to the filename the key is written to (if it is not the
default). Avoids keys being clobbered if the user created multiple
resident keys with the same application string but different user
IDs.
* ssh-keygen(1), ssh(1), ssh-agent(1): better handling for FIDO keys
on tokens that provide user verification (UV) on the device itself,
including biometric keys, avoiding unnecessary PIN prompts.
* ssh-keygen(1): add "ssh-keygen -Y match-principals" operation to
perform matching of principals names against an allowed signers
file. To be used towards a TOFU model for SSH signatures in git.
* ssh-add(1), ssh-agent(1): allow pin-required FIDO keys to be added
to ssh-agent(1). $SSH_ASKPASS will be used to request the PIN at
authentication time.
* ssh-keygen(1): allow selection of hash at sshsig signing time
(either sha512 (default) or sha256).
* ssh(1), sshd(8): read network data directly to the packet input
buffer instead of indirectly via a small stack buffer. Provides a
modest performance improvement.
* ssh(1), sshd(8): read data directly to the channel input buffer,
providing a similar modest performance improvement.
* ssh(1): extend the PubkeyAuthentication configuration directive to
accept yes|no|unbound|host-bound to allow control over one of the
protocol extensions used to implement agent-restricted keys.
= Bugfixes
* sshd(8): document that CASignatureAlgorithms, ExposeAuthInfo and
PubkeyAuthOptions can be used in a Match block. PR277.
* sshd(8): fix possible string truncation when constructing paths to
.rhosts/.shosts files with very long user home directory names.
* ssh-keysign(1): unbreak for KEX algorithms that use SHA384/512
exchange hashes
* ssh(1): don't put the TTY into raw mode when SessionType=none,
avoids ^C being unable to kill such a session. bz3360
* scp(1): fix some corner-case bugs in SFTP-mode handling of
~-prefixed paths.
* ssh(1): unbreak hostbased auth using RSA keys. Allow ssh(1) to
select RSA keys when only RSA/SHA2 signature algorithms are
configured (this is the default case). Previously RSA keys were
not being considered in the default case.
* ssh-keysign(1): make ssh-keysign use the requested signature
algorithm and not the default for the key type. Part of unbreaking
hostbased auth for RSA/SHA2 keys.
* ssh(1): stricter UpdateHostkey signature verification logic on
the client- side. Require RSA/SHA2 signatures for RSA hostkeys
except when RSA/SHA1 was explicitly negotiated during initial
KEX; bz3375
* ssh(1), sshd(8): fix signature algorithm selection logic for
UpdateHostkeys on the server side. The previous code tried to
prefer RSA/SHA2 for hostkey proofs of RSA keys, but missed some
cases. This will use RSA/SHA2 signatures for RSA keys if the
client proposed these algorithms in initial KEX. bz3375
* All: convert all uses of select(2)/pselect(2) to poll(2)/ppoll(2).
This includes the mainloops in ssh(1), ssh-agent(1), ssh-agent(1)
and sftp-server(8), as well as the sshd(8) listen loop and all
other FD read/writability checks. On platforms with missing or
broken poll(2)/ppoll(2) syscalls a select(2)-based compat shim is
available.
* ssh-keygen(1): the "-Y find-principals" command was verifying key
validity when using ca certs but not with simple key lifetimes
within the allowed signers file.
* ssh-keygen(1): make sshsig verify-time argument parsing optional
* sshd(8): fix truncation in rhosts/shosts path construction.
* ssh(1), ssh-agent(1): avoid xmalloc(0) for PKCS#11 keyid for ECDSA
keys (we already did this for RSA keys). Avoids fatal errors for
PKCS#11 libraries that return empty keyid, e.g. Microchip ATECC608B
"cryptoauthlib"; bz#3364
* ssh(1), ssh-agent(1): improve the testing of credentials against
inserted FIDO: ask the token whether a particular key belongs to
it in cases where the token supports on-token user-verification
(e.g. biometrics) rather than just assuming that it will accept it.
Will reduce spurious "Confirm user presence" notifications for key
handles that relate to FIDO keys that are not currently inserted in at
least some cases. bz3366
* ssh(1), sshd(8): correct value for IPTOS_DSCP_LE. It needs to
allow for the preceding two ECN bits. bz#3373
* ssh-keygen(1): add missing -O option to usage() for the "-Y sign"
option.
* ssh-keygen(1): fix a NULL deref when using the find-principals
function, when matching an allowed_signers line that contains a
namespace restriction, but no restriction specified on the
command-line
* ssh-agent(1): fix memleak in process_extension(); oss-fuzz
issue #42719
* ssh(1): suppress "Connection to xxx closed" messages when LogLevel
is set to "error" or above. bz3378
* ssh(1), sshd(8): use correct zlib flags when inflate(3)-ing
compressed packet data. bz3372
* scp(1): when recursively transferring files in SFTP mode, create the
destination directory if it doesn't already exist to match scp(1) in
legacy RCP mode behaviour.
* scp(1): many improvements in error message consistency between scp(1)
in SFTP mode vs legacy RCP mode.
* sshd(8): fix potential race in SIGTERM handling PR289
* ssh(1), ssh(8): since DSA keys are deprecated, move them to the
end of the default list of public keys so that they will be tried
last. PR295
* ssh-keygen(1): allow 'ssh-keygen -Y find-principals' to match
wildcard principals in allowed_signers files
= Portability
* ssh(1), sshd(8): don't trust closefrom(2) on Linux. glibc's
implementation does not work in a chroot when the kernel does not
have close_range(2). It tries to read from /proc/self/fd and when
that fails dies with an assertion of sorts. Instead, call
close_range(2) directly from our compat code and fall back if
that fails. bz#3349,
* OS X poll(2) is broken; use compat replacement. For character-
special devices like /dev/null, Darwin's poll(2) returns POLLNVAL
when polled with POLLIN. Apparently this is Apple bug 3710161 -
not public but a websearch will find other OSS projects
rediscovering it periodically since it was first identified in
2005.
* Correct handling of exceptfds/POLLPRI in our select(2)-based
poll(2)/ppoll(2) compat implementation.
* Cygwin: correct checking of mbstowcs() return value.
* Add a basic SECURITY.md that refers people to the openssh.com
website.
* Enable additional compiler warnings and toolchain hardening flags,
including -Wbitwise-instead-of-logical, -Wmisleading-indentation,
- fzero-call-used-regs and -ftrivial-auto-var-init.
* HP/UX. Use compat getline(3) on HP-UX 10.x, where the libc version
is not reliable.
- Rebased patches:
* openssh-7.7p1-ldap.patch
* openssh-8.0p1-gssapi-keyex.patch
* openssh-8.1p1-audit.patch
* openssh-8.4p1-vendordir.patch
* openssh-reenable-dh-group14-sha1-default.patch
==== plasma5-desktop ====
Subpackages: plasma5-desktop-emojier plasma5-desktop-lang
- Replace %_libdir/libexec with %_libexecdir (boo#1174075)
==== plasma5-disks ====
Subpackages: plasma5-disks-lang
- Replace %_libdir/libexec with %_libexecdir (boo#1174075)
==== plasma5-workspace ====
Subpackages: gmenudbusmenuproxy plasma5-session plasma5-session-wayland plasma5-workspace-lang plasma5-workspace-libs xembedsniproxy
- Replace %_libdir/libexec with %_libexecdir (boo#1174075)
==== polkit-kde-agent-5 ====
Subpackages: polkit-kde-agent-5-lang
- Replace %_libdir/libexec with %_libexecdir (boo#1174075)
==== powerdevil5 ====
Subpackages: powerdevil5-lang
- Replace %_libdir/libexec with %_libexecdir (boo#1174075)
==== python-colorama ====
- python-mock is actually not required for build
==== systemd ====
Subpackages: libsystemd0 libsystemd0-32bit libudev1 libudev1-32bit systemd-32bit systemd-container systemd-devel systemd-lang udev
- Fix the default target when it's been incorrectly set to one of the runlevel
targets (bsc#1196567)
The script 'upgrade-from-pre-210.sh' used to initialize the default target
during migration from sysvinit to systemd. However it created symlinks to
runlevel targets, which are deprecated and might be missing when
systemd-sysvcompat package is not installed. If such symlinks are found the
script now renames them to point to 'true' systemd target units.
- When migrating from sysvinit to systemd (it probably won't happen anymore),
let's use the default systemd target, which is the graphical.target one. In
most cases it will do the right thing anyway.
==== upower ====
Version update (0.99.16 -> 0.99.16+4)
Subpackages: libupower-glib3 typelib-1_0-UpowerGlib-1_0 upower-lang
- Update to version 0.99.16+4:
+ meson.build: Output correct paths for sbindir and datadir.
+ daemon: Initialize FD to -1 to avoid incorrect close.
+ input: Fix FD handling and let input stream close it.
+ linux: Set FD to -1 rather than 0 when closing delay inhibitor.
==== wireless-regdb ====
Version update (20220108 -> 20220218)
- Update to version 20220218:
* wireless-regdb: update regulatory database based on preceding changes
* wireless-regdb: Update regulatory rules for the Netherlands (NL) on 6GHz
* wireless-regdb: Update regulatory rules for China (CN)
* wireless-regdb: Update regulatory rules for South Korea (KR)
* Revert "wireless-regdb: Update regulatory rules for South Korea (KR)"
* wireless-regdb: Update regulatory rules for Spain (ES) on 6GHz
* wireless-regdb: add 802.11ah bands to world regulatory domain
* wireless-regdb: add support for US S1G channels
* wireless-regdb: Update regulatory rules for France (FR) on 6 and 60 GHz
* wireless-regdb: Update regulatory rules for South Korea (KR)
==== xdg-desktop-portal-kde ====
Subpackages: xdg-desktop-portal-kde-lang
- Replace %_libdir/libexec with %_libexecdir (boo#1174075)
1
0
I have just tried to use zypper to update my system to snapshot 20220306
I noticed that the app sitecopy and associated sitecopy-lang were to be
deleted. Why should this be" I use sitecopy regularly. Is there an
alternative that I can use instead?
--
\ ^ /
0 Turtle
/ v \
wame nuttauwadtuongash
8
12