Hello, i am fascinated on MicroOS and on the concept of transactional-update, this got 1000% of the juice of the concept of hier on Linux/GNULinux.
Now i am creating this thread to see if is possible the devs do the next change on the images:
On my opinion these packages need to be installed on the podman mode of microOS:
- Apparmor pattern - the selection of packages are incomplete:
- Packages Installed
* apparmor-parser
* apparmor-profiles
* patterns-microOS-apparmor
- Packages Not-Installed (but have to be installed by defaul)
* apparmor-utils (the most basic one and is not installed). This package bring the apparmor control of the rules, i have a podman rootfless and the php-fpm pod is not working because i cant change the profile of this app.
* apparmor-docs
- Yast2
- Packages need to come by default
* yast2-storage-ng
* yast2-apparmor
- Firewall
- Packages that need come by defaul
* firewalld
- transactional-updates
- Packages that must come installed by default
* inotify-tools (how a module is out but not bring the dependencies, if this package is not install --do-not-change wont work)
- Others packages
* git
* man
* wget
* docker
and that's my opinion.
thank you for the hard work
Hello,
I'm about to submit two factory 3 packages, from the Virtualization
Devel project:
- libkrunfw
https://build.opensuse.org/package/show/Virtualization/libkrunfw
- libkrunÂ
https://build.opensuse.org/package/show/Virtualization/libkrun
- krunvm
https://build.opensuse.org/package/show/Virtualization/krunvm
Libkrun is the key and the heart of everything. It's a library that
enable a (OCI) runtime to start the environments that such runtimes
usually handles (read: containers) inside a super-lightweight virtual
machine (using KVM underneath, of course).
If you're familiar with KataContainers, well, it's similar... but all
done in a library, which makes things smaller and faster (at least
potentially, as the project is still in early stage of development and
performance is not a goal yet).
This is already possible, with krunvm, which is basically a CLI for
libkrun, that allows you to create lightweight VMs out of OCI images.
Watch this:
$ cat /etc/os-release
NAME="openSUSE Tumbleweed"
ID="opensuse-tumbleweed"
ID_LIKE="opensuse suse"
VERSION_ID="20210223"
[...]
$ uname -a
Linux Solace 5.10.16-1-default #1 SMP Sat Feb 13 16:20:19 UTC 2021 (11381f3) x86_64 x86_64 x86_64 GNU/Linux
Now, if I do:
$ sudo krunvm create opensuse/leap --name leap
Resolving "opensuse/leap" using unqualified-search registries
(/etc/containers/registries.conf)
Getting image source signatures
Copying blob 99b65196a7ec done
[...]
Lightweight VM created with name: leap
$ sudo krunvm list
leap
CPUs: 2
RAM (MiB): 1024
DNS server: 1.1.1.1
Buildah container: leap-working-container
Workdir: /root
Mapped volumes: {}
Mapped ports: {}
$ sudo krunvm start leap
sh-4.4# cat /etc/os-release
NAME="openSUSE Leap"
VERSION="15.2"
ID="opensuse-leap"
ID_LIKE="suse opensuse"
VERSION_ID="15.2"
sh-4.4# uname -a
Linux leap 5.10.10 #1 SMP Fri Feb 26 08:27:43 UTC 2021 x86_64 x86_64 x86_64 GNU/Linux
And you can tell that it's a VM from --among other things-- the fact
that the kernels (see the two `uname -a`) are different!
In this example, I used `sudo`, but it does work rootless as well, like
this (for now):
$ buildah unshare
Solace:~ # krunvm create ubuntu --name ubu
Solace:~ # krunvm start ubu
# apt-get update
Hit:1 http://archive.ubuntu.com/ubuntu focal InRelease
Get:2 http://archive.ubuntu.com/ubuntu focal-updates InRelease [114 kB]
Get:3 http://security.ubuntu.com/ubuntu focal-security InRelease [109
kB]
[...]
Get:5 http://archive.ubuntu.com/ubuntu focal-updates/universe amd64
Packages [934 kB]
Fetched 1257 kB in 3s (423 kB/s)
Reading package lists... Done
# ^D
Solace:~ # exit
$
And yes, as you see from the above example where I used apt, networking
works (limited to IPv4-TCP, for now... because as I said it's early!)
with zero configuration.
And of course it supports bind mounting pieces of the host filesystem
as well (and also with zero config needed).
Note also that the crun OCI runtime already has support for libkrun,
and that podman can work on top of crun. Therefore, we could one day
have podman containers running as lightweight VMs!
We could one day have toolbox containers (which is why I'm cross-
posting to Kubic) running as lightweight VMs!!
Sure, we need to have crun for that, which I don't think we do right
now. But, baby steps. :-)
The third package, libkrunfw, is basically where the kernel of the
lightweight VM lives. Now, ideally, we would pick-up our kernel-source
package, apply patches and configuration, ad build libkrunfw from it.
However, this is currently not possible, due to the dependency of some
of the needed patches on a specific kernel-version.
We do intend, however, to fix this as soon as possible.
Libkrun and krunvm are available already in Fedora, via Copr and on
MacOS-aarch64 (the so-called M1).
You can find more about the project at the following links:
https://github.com/containers/libkrunhttps://github.com/containers/krunvmhttps://news.ycombinator.com/item?id=25939995https://static.sched.com/hosted_files/devconfcz2021/b9/libkrun%20Virtuailza…
Regards
--
Dario Faggioli, Ph.D
http://about.me/dario.faggioli
Virtualization Software Engineer
SUSE Labs, SUSE https://www.suse.com/
-------------------------------------------------------------------
<<This happens because _I_ choose it to happen!>> (Raistlin Majere)
Dear Tumbleweed users and hackers,
This week, we have released almost daily snapshots. It shows that I
have received help in working on the Stagings. Richard has been very
busy this week, working together with me on these areas. So, we managed
to publish 6 snapshots (0218, 0219, 0220, 0221, 0222, and 0223).
The noteworthy changes therein were:
* Transactional-Updates 3.1.4
* GNOME 3.38.4
* binutils 2.36
* util-linux 2..36.2
* libguestfs 1.44.0
* PostgreSQL 13.2
* Mozilla Firefox 85.0.2
* Dracut 052
In the staging projects, we are preparing and testing these updates:
* NetworkManager 1.30
* Mozilla Firefox 86.0
* KDE Plasma 5.21.1
* podman 3.0.1
* Dracut 053
* Linux kernel 5.11.2
* openssl 1.1.1i, based on centralized crypto-policies package
* GCC 11 as default compiler
Cheers,
Dominique
Hi there,
excuse me, if I' m asking at the wrong place.
Apparently there is a bug in current Fetchmail (6.3.26-lp152.5.8)
installed with openSUSE-Leap-15.2-1, which causes TLS to fail especially
with Gmail servers:
fetchmail: Server CommonName mismatch: invalid2.invalid != pop.gmail.com
fetchmail: Server certificate verification error: self signed certificate
fetchmail: Missing trust anchor certificate: /OU=No SNI provided; please fix your client./CN=invalid2.invalid
As reported elsewhere:
https://bugs.archlinux.org/task/60038 <https://bugs.archlinux.org/task/60038>
https://bugs.gentoo.org/697030 <https://bugs.gentoo.org/697030>
There is patch from RedHat which could be applied on fetchmail-6.3.26:
https://bugzilla.redhat.com/show_bug.cgi?id=1611815
Other (better?) "fix" would be to bump fetchmail to 6.4.x where this issue is resolved?
I could provide a complete bug report if needed.
Best regards
Zsolt
--
Heinlein Support GmbH
Schwedter Str. 8/9b, 10119 Berlin
https://www.heinlein-support.de
Tel: 030 / 40 50 51 - 0
Fax: 030 / 40 50 51 - 19
Amtsgericht Berlin-Charlottenburg - HRB 93818 B
Geschäftsführer: Peer Heinlein - Sitz: Berlin
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&versio…
Please do not reply to this email to report issues, rather file a bug
on bugzilla.opensuse.org. For more information on filing bugs please
see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
AppStream (0.13.1 -> 0.14.1)
binutils (2.35.1 -> 2.36)
e2fsprogs (1.45.6 -> 1.46.1)
elilo
gcin
glibc
gnome-control-center (3.38.3 -> 3.38.4)
gnome-photos (3.38.0 -> 3.38.1)
grub2
kernel-firmware
libgcrypt (1.9.1 -> 1.9.2)
libsolv (0.7.16 -> 0.7.17)
libzypp (17.25.6 -> 17.25.7)
linux-glibc-devel (5.10 -> 5.11)
milou5
nodejs-common
openafs
plasma5-openSUSE
plasma5-workspace
postgresql13 (13.1 -> 13.2)
python-M2Crypto
python-kiwi (9.23.12 -> 9.23.16)
qemu
rdma-core (31.0 -> 31.3)
redis
rygel (0.40.0 -> 0.40.1)
strace (5.10 -> 5.11)
ucode-intel (20201118 -> 20210216)
wireless-regdb (20201120 -> 20210129)
zbar (0.23.1 -> 0.23.90)
=== Details ===
==== AppStream ====
Version update (0.13.1 -> 0.14.1)
Subpackages: AppStream-lang libAppStreamQt2 libappstream4
- Update to version 0.14.1:
+ Features:
- Switch back from Soup to cURL for HTTP(S).
- validator: Check a few more things on requires/recommends
items.
- Only download the first bytes of a file when checking URLs
for validity.
+ Specification: spec: Officially mark <mimetypes/> tag as
deprecated.
+ Bugfixes:
- qt: Return better errors in AppStream::Metadata.
- Do not automatically clean up errors that will be propagated.
- Remove overall extern "C" to make very new (2.67+) GLib
versions happy.
- ascli: Don?t use GNU C extension type names.
- build: Use c11 rather than gnu11 and define vendor extensions
separately.
- Changes from version 0.14.0:
+ Features:
- news-to-metainfo: Interpret placeholder release dates as
denoting a dev version.
- Make as_utils_build_data_id public API.
- Add AsReview for attaching user reviews to software
components.
- Add a branch element to component data-IDs.
- utils: Add data-ID hashing and matching functions.
- utils: Make as_gstring_replace public API.
- Add branch info to on-disk cached components.
- content-rating: Add as_content_rating_add_attribute API.
- Rename INPUTMETHOD component kind enum to INPUT_METHOD.
- Add "cabinet" bundle type for firmware deployments.
- Make AsTokenMatch public API.
- Add function to AsScreenshot to get image closest to
preferred size.
- Allow AsComponent to directly ingest desktop-entry data.
- Make as_pool_build_search_tokens API public.
- Add "origin" token match.
- Make as_component_add_provided_item API public.
- Add some useful image dimension constants.
- compose: Add blur function from asglib.
- Add more efficient load_from_bytes method to AsComponent.
+ Updated translations.
- Drop fix-build-gcc7.patch: no longer applicable.
- Replace pkgconfig(libsoup-2.4) with pkgconfig(libcurl)
BuildRequires: follow upstreams switch back to cURL.
==== binutils ====
Version update (2.35.1 -> 2.36)
Subpackages: libctf-nobfd0 libctf0
- Bump 2.36 branch diff.
- Update 2.36 branch diff which should fix PR27311 completely.
It fixes also PR27284.
- Remove temporary fix 0001-PR27311-ld.bfd-symbol-from-plugin-undefined-referenc.patch.
- Add temporary upstream fix for PR27311
0001-PR27311-ld.bfd-symbol-from-plugin-undefined-referenc.patch.
- Update to binutils 2.36:
New features in the Assembler:
General:
* When setting the link order attribute of ELF sections, it is now
possible to use a numeric section index instead of symbol name.
* Added a .nop directive to generate a single no-op instruction in
a target neutral manner. This instruction does have an effect on
DWARF line number generation, if that is active.
* Removed --reduce-memory-overheads and --hash-size as gas now
uses hash tables that can be expand and shrink automatically.
X86/x86_64:
* Add support for AVX VNNI, HRESET, UINTR, TDX, AMX and Key
Locker instructions.
* Support non-absolute segment values for lcall and ljmp.
* Add {disp16} pseudo prefix to x86 assembler.
* Configure with --enable-x86-used-note by default for Linux/x86.
ARM/AArch64:
* Add support for Cortex-A78, Cortex-A78AE and Cortex-X1,
Cortex-R82, Neoverse V1, and Neoverse N2 cores.
* Add support for ETMv4 (Embedded Trace Macrocell), ETE (Embedded
Trace Extension), TRBE (Trace Buffer Extension), CSRE (Call
Stack Recorder Extension) and BRBE (Branch Record Buffer
Extension) system registers.
* Add support for Armv8-R and Armv8.7-A ISA extensions.
* Add support for DSB memory nXS barrier, WFET and WFIT
instruction for Armv8.7.
* Add support for +csre feature for -march. Add CSR PDEC
instruction for CSRE feature in AArch64.
* Add support for +flagm feature for -march in Armv8.4 AArch64.
* Add support for +ls64 feature for -march in Armv8.7
AArch64. Add atomic 64-byte load/store instructions for this
feature.
* Add support for +pauth (Pointer Authentication) feature for
- march in AArch64.
New features in the Linker:
* Add --error-handling-script=<NAME> command line option to allow
a helper script to be invoked when an undefined symbol or a
missing library is encountered. This option can be suppressed
via the configure time switch: --enable-error-handling-script=no.
* Add -z x86-64-{baseline|v[234]} to the x86 ELF linker to mark
x86-64-{baseline|v[234]} ISA level as needed.
* Add -z unique-symbol to avoid duplicated local symbol names.
* The creation of PE format DLLs now defaults to using a more
secure set of DLL characteristics.
* The linker now deduplicates the types in .ctf sections. The new
command-line option --ctf-share-types describes how to do this:
its default value, share-unconflicted, produces the most compact
output.
* The linker now omits the "variable section" from .ctf sections
by default, saving space. This is almost certainly what you
want unless you are working on a project that has its own
analogue of symbol tables that are not reflected in the ELF
symtabs.
New features in other binary tools:
* The ar tool's previously unused l modifier is now used for
specifying dependencies of a static library. The arguments of
this option (or --record-libdeps long form option) will be
stored verbatim in the __.LIBDEP member of the archive, which
the linker may read at link time.
* Readelf can now display the contents of LTO symbol table
sections when asked to do so via the --lto-syms command line
option.
* Readelf now accepts the -C command line option to enable the
demangling of symbol names. In addition the --demangle=<style>,
- -no-demangle, --recurse-limit and --no-recurse-limit options
are also now availale.
- Includes fixes for these CVEs:
bnc#1179898 aka CVE-2020-16590 aka PR25821
bnc#1179899 aka CVE-2020-16591 aka PR25822
bnc#1179900 aka CVE-2020-16592 aka PR25823
bnc#1179901 aka CVE-2020-16593 aka PR25827
bnc#1179902 aka CVE-2020-16598 aka PR25840
bnc#1179903 aka CVE-2020-16599 aka PR25842
bnc#1180451 aka CVE-2020-35493 aka PR25307
bnc#1180454 aka CVE-2020-35496 aka PR25308
bnc#1180461 aka CVE-2020-35507 aka PR25308
- Rebase the following patches:
* binutils-fix-relax.diff
* binutils-revert-nm-symversion.diff
* binutils-revert-plt32-in-branches.diff
- Add missing dependency on bc (ld.gold testsuite uses it).
- Use --enable-obsolete for cross builds as ia64 is deprecated now.
- Add binutils-2.36-branch.diff.gz.
- Add binutils-fix-relax.diff to fix linking relaxation problems
with old object files hitting some enterprise software. [bsc#1179341]
- Update binutils-2.35-branch.diff.gz to commit 1c5243df:
* Fixes PR26520, aka [bsc#1179036], a problem in addr2line with
certain DWARF variable descriptions.
* Also fixes PR26711, PR26656, PR26655, PR26929, PR26808, PR25878,
PR26740, PR26778, PR26763, PR26685, PR26699, PR26902, PR26869,
PR26711
* The above includes fixes for dwo files produced by modern dwp,
fixing several problems in the DWARF reader.
==== e2fsprogs ====
Version update (1.45.6 -> 1.46.1)
Subpackages: e2fsprogs-scrub libcom_err2 libcom_err2-32bit libext2fs2
- Remove autoreconf (and resulting dependencies) from the spec file. The
upstream configure script should be fine.
- Update to 1.46.1:
* Fix setting extended attributes in libext2fs and debugfs
* Fix e2fsck to accept large_dir directories greater than 4G
* Fix fast commit support on big endian architectures
* Fix mke2fs -d to correctly import a small file stored using inline_data
feature and which has ACL or extended attribute
* Various compilation fixes
* Speedup bitmap loading for large filesystems using multiple threads
* Speedup mke2fs for bigalloc filesystems
* E2fsck fixes when rehashing directories
* Fix e2fsck crashes on maliciously corrupted filesystems
* Fix e2fsck handling of duplicated case-folded file names
* Implement hashed directory support in libext2fs
* Support for fast commit feature
* Support for combination of casefolding and encryption
* Support for stable inodes feature
* Add support for per-inode DAX flag
* Fix tune2fs to unlock MMP on failure
* Fix e2fsck buffer overflow when scanning directory blocks
* Fix resize2fs overflowing block group descriptors with 1k block size
- delete e2fsprogs-1.45.2-gettext.patch - it was merged upstream
- Add autoconf-archive to build requirements
- Fix installation of info files for older distros
==== elilo ====
- Add elilo-binutils-2.36-fix.patch in order to fix build
with binutils 2.36.
==== gcin ====
Subpackages: gcin-gtk2 gcin-gtk3 gcin-qt5 libgcin-im-client1
- Fix the build failure due to the comparison of bare words
==== glibc ====
Subpackages: glibc-32bit glibc-devel glibc-extra glibc-lang glibc-locale glibc-locale-base nscd
- Prepare for usrmerge (bsc#1029961)
- Add --enable-memory-tagging for aarch64
==== gnome-control-center ====
Version update (3.38.3 -> 3.38.4)
Subpackages: gnome-control-center-color gnome-control-center-goa gnome-control-center-lang gnome-control-center-user-faces
- Update to version 3.38.4:
+ User Accounts:
- Properly handle claiming errors if we're already claiming.
- Always call EnrollStop on enrollment complete.
+ Updated translations.
==== gnome-photos ====
Version update (3.38.0 -> 3.38.1)
Subpackages: gnome-photos-lang gnome-shell-search-provider-gnome-photos
- Update to version 3.38.1:
+ Bugs fixed: appdata: Add release notes for 3.38.0.
+ Updated translations.
==== grub2 ====
Subpackages: grub2-i386-pc grub2-snapper-plugin grub2-systemd-sleep-plugin grub2-x86_64-efi grub2-x86_64-xen
- Fix build error in binutils 2.36 (bsc#1181741)
* 0001-Fix-build-error-in-binutils-2.36.patch
- Fix executable stack in grub-emu (bsc#1181696)
* 0001-emu-fix-executable-stack-marking.patch
- Restore compatibilty sym-links
* grub2.spec
- Use rpmlintrc to filter out rpmlint 2.0 error (bsc#1179044)
* grub2.rpmlintrc
==== kernel-firmware ====
Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network ucode-amd
- Correct the RPi4 brcm config to recover the WiFi breakage
(bsc#1182320):
Revert-brcm-rpi4-boardflags3-bit.patch
==== libgcrypt ====
Version update (1.9.1 -> 1.9.2)
Subpackages: libgcrypt20 libgcrypt20-32bit libgcrypt20-hmac
- libgcrypt 1.9.2:
* Fix building with --disable-asm on x86
* Check public key for ECDSA verify operation
* Make sure gcry_get_config (NULL) returns a nul-terminated
string
* Fix a memory leak in the ECDH code
* Fix a reading beyond end of input buffer in SHA2-avx2
- remove obsolete texinfo packaging macros
==== libsolv ====
Version update (0.7.16 -> 0.7.17)
Subpackages: libsolv-tools python3-solv ruby-solv
- repo_write: fix handling of nested flexarray
- improve choicerule generation a bit more to cover more cases
- harden testcase parser against repos being added too late
- support python-3.10
- check %_dbpath macro in rpmdb code
- handle default/visible/langonly attributes in comps parser
- support multiple collections in updateinfo parser
- add '-D' option in rpmdb2solv to set the dbpath
- bump version to 0.7.17
==== libzypp ====
Version update (17.25.6 -> 17.25.7)
- Patch: Identify well-known category names (bsc#117984)
This allows to use the RH and SUSE patch categrory names
synonymously:
(recommendedi = bugfix) and (optional = feature = enhancement).
- Add missing includes for GCC 11 compatibility.
- Fix %posttrans script execution (fixes #265)
The scripts are execuable. No need to call them through 'sh -c'.
- Commit: Fix rpmdb compat symlink in case rpm got removed.
- Repo: Allow multiple baseurls specified on one line (fixes #285)
- Regex: Fix memory leak and undefined behavior.
- Add rpm buildrequires for test suite (fixes #279)
- Use rpmdb2solv new -D switch to tell the location ob the
rpmdatabase to use.
- BuildRequires: libsolv-devel >= 0.7.17.
- version 17.25.7 (22)
==== linux-glibc-devel ====
Version update (5.10 -> 5.11)
- Update to kernel headers 5.11
==== milou5 ====
Subpackages: milou5-lang
- Add patch to avoid empty queries, which causes runners to misbehave:
* 0001-Fix-launching-empty-query.patch
==== nodejs-common ====
- Fix typo in Requires
==== openafs ====
Subpackages: openafs-client openafs-kmp-default
- kernel-source.build-modules.sh: choose safe CWD while executing the build to
prevent files being created in unsafe locations. Use new SUSE naming
convention and rely on /etc/os-release, since /etc/SuSE-release no longer
exists.
==== plasma5-openSUSE ====
Subpackages: plasma5-defaults-openSUSE plasma5-theme-openSUSE plasma5-workspace-branding-openSUSE sddm-theme-openSUSE
- Drop update_diffs.sh, broken and unused
==== plasma5-workspace ====
Subpackages: gmenudbusmenuproxy plasma5-session plasma5-session-wayland plasma5-workspace-lang plasma5-workspace-libs xembedsniproxy
- Add patch to fix krunner crash caused by mismatched quotes:
* 0001-locations-runner-Fix-empty-list-on-invalid-shell-quo.patch
- Add patch to fix starting applications with arguments from krunner
(kde#433053):
* 0001-locations-runner-Fix-absolute-filepath-arguments.patch
- Add patch to fix race on logout (kde#432460):
* 0001-libkworkspace-Interim-fix-for-the-logout-issue.patch
==== postgresql13 ====
Version update (13.1 -> 13.2)
Subpackages: libpq5 postgresql13-contrib postgresql13-docs postgresql13-llvmjit postgresql13-server
- boo#1179945: Disable icu for PostgreSQL 10 (and older) on TW.
- Upgrade to version 13.2:
* https://www.postgresql.org/docs/13/release-13-2.html
* Updating stored views and reindexing might be needed after
applying this update.
* CVE-2021-3393, bsc#1182040: Fix information leakage in
constraint-violation error messages.
* CVE-2021-20229, bsc#1182039: Fix failure to check per-column
SELECT privileges in some join queries.
* Obsoletes postgresql-icu68.patch.
==== python-M2Crypto ====
- Add 293_sslv23_padding.patch to avoid using RSA_SSLV23_PADDING
(gl#m2crypto/m2crypto#293, gh#openssl/openssl#14216).
- OpenSSL allows the verificaton to continue on
UNABLE_TO_VERIFY_LEAF_SIGNATURE
* This unifies the behaviour of a single certificate with an
unknown CA certificate with a self-signed certificate.
- Add python-M2Crypto-Allow-on-UNABLE_TO_VERIFY_LEAF_SIGNATURE.patch
(Thanks for Debian,
https://salsa.debian.org/python-team/packages/m2crypto/-/commit/e0e9ad5cfff8)
- Add source signature file
==== python-kiwi ====
Version update (9.23.12 -> 9.23.16)
- Bump version: 9.23.15 ? 9.23.16
- Fix lsblk flags to get sorted output
This commit modifies the lsblk command flags to get a sorted output
according to the disk layout.
This is related to 176c7eab commita and it fixes bsc#1182264
- Fixed kiwi-systemdeps-filesystems requires
The filesystems requires list also contains low level
tools to manage partitions, loops and subsystems. The tools
to manage LUKS(cryptsetup) are missing and imho belongs there
along with the LVM tools which are listed
- Add strong typing for filesystem classes
This commit strong typing for FileSystem* classes.
Part of #1644
- Added ca-certificates-mozilla to build tests
ca-certificates-mozilla provides the issuer CERT to allow
for https repo connections. The standard ca-certificates is
not enough on suse/leap/sles based integration tests
- Fixed packaging metadata for pypi
Include the README as long description in the metadata
for pypi. The change causes the description on pypi.org
to show the ReST rendered README instead of a message
that the author of the module hasn't provided a description
- Delete legacy oem build test from leap
The legacy custom kiwi boot test will only continue
to exist on tumbleweed without any warranty
- Include a note about rpm's curl requirement to import remote keys
This commits add a note in the KIWI installation page to warn users rpm
requires curl utility in order to import remote keys from a URI.
Fixes #1680
- Bump version: 9.23.14 ? 9.23.15
- Update documentation
Mention the cross arch build capability of the boxbuild
command. Also update the example box used in the self
container build chapter
- Allow to specify OBS credentials in runtime config
In preparation to the new obs kiwi plugin this commit adds
an opportunity to store obs credentials such that the plugin
could also be used in a non-interactive way
- Add strong typing for the following API methods
kiwi/storage/device_provider
kiwi/storage/disk
kiwi/storage/loop_device
kiwi/storage/luks_device
kiwi/storage/mapped_device
This references issue #1644
- Update build_status helper for box plugin
The suse box has been renamed to tumbleweed
- Update documentation
Fixed link list to integration tests
- Added rawhide test status to build_status helper
- Added Fedora Rawhide integration tests
- Followup fix for RuntimeConfig refactor
The refactor of the RuntimeConfig made sure the runtime config
file is read in only once. But if the file exists and is empty
after yaml.safe_load like in the kiwi package provided
/etc/kiwi.yml which contains all config options as comments,
the code still reads in the file with every new instance of
RuntimeConfig. This commit fixes this condition
- Fixed test-image-vagrant for Leap
Use the correct release package
- Fixed test-image-docker-derived for Leap
Use the right derived from location
- Fixed test-image-docker for Leap
Nothing provides grub
- Delete test-image-pxe from leap tests
We don't continue development of netboot code. Thus there is
only one test for the old netboot system on TW. People are
advised to move to oem remote deployment or the kis type
using custom(non kiwi) dracut extensions
- test-image-MicroOS does not build for leap
Looks like this concept is not available on Leap
- Added integration tests for Leap
- Update documentation
Location for integration tests has changed
- Deleted x86/suse integration tests
- Moving x86/suse -> x86/tumbleweed
This is in fact a copy of the build-tests for x86/suse
to x86/tumbleweed. Once the tests in OBS are building
x86/suse and the respective project will be deleted
- Deleted s390/suse integration tests
- Moving s390/suse -> s390/tumbleweed
This is in fact a copy of the build-tests for s390/suse
to s390/tumbleweed. Once the tests in OBS are building
s390/suse and the respective project will be deleted
- Delete ppc/suse from build_status helper
- Deleted ppc/suse integration tests
- Moving ppc/suse -> ppc/tumbleweed
This is in fact a copy of the build-tests for ppc/suse
to ppc/tumbleweed. Once the tests in OBS are building
ppc/suse and the respective project will be deleted
- Fixed Debian integration test
The test was not using the Staging kiwi to build
- Deleted arm/suse integration tests
- Moving arm/suse -> arm/tumbleweed
This is in fact a copy of the build-tests for arm/suse
to arm/tumbleweed. Once the tests in OBS are building
arm/suse and the respective project will be deleted
- Update tuples to enforce type hints
- Fixed use of BIOS grub image on ISO media
Not all systems (e.g Debian) creates the boot/grub|grub2 directory.
In kiwi when we need to create a custom grub image because we did
not find the distro provided one, an earlyboot.cfg file is created
and embedded into the grub image. The locaton to store that file
is below boot/grub|grub2. However if the directory does not exist
the build will fail as with the current Debian Live integration
test.
- Added debian integration tests to build_status
The debian build tests were not taken into account by
the build_status helper
- Moved ARM fedora integration test to latest stable
- Update suse build tests
Deleted old and obsolete configuration setup. Use generic
description information as much as possible
- Move fedora integration tests to stable release
Instead of building against the rolling release (rawhide)
we build the integration tests for non suse tests against
the stable release of distributions. The reason is except
for suse we don't have influence and resources on the
distribution development and sometimes facing the problem
that we can only sit and pray for a self healing of the
rolling distro releases. From a kiwi release perspective
this blocks us too often
- Fixed tbz integration test
It seems /bin/sh has been moved into a file provides that
cannot be solved by the obs solver. Therefore a package
providing it needs to be added explicitly.
- Bump version: 9.23.13 ? 9.23.14
- Remove files or folders that conflict with debootstrap
This commit makes use of Path.wipe method instead of os.unlink. This way
we are certain the path is removed regardless being a directory or a
file.
fixes #1718
- Clean some copy and paste leftover from doc strings
- Fixed ramdisk deployment from install ISO
The dracut mount hook is only called if NO root= information
is provided from the cmdline. In a PXE deployment this is the
case but in an install ISO deployment not. This commit re-adds
the sysroot mount generator approach but only applies on the
condition rd.kiwi.ramdisk is set and root= is specified. Only
in this case we know config.bootoptions is present in the
initrd and will not be provided from an outside service
- Added dolly support
Allow dolly as alternative download protocol
- Bump version: 9.23.12 ? 9.23.13
- Refactor RuntimeConfig class
The former implementation read the runtime config file every
time a new RuntimeConfig instance was created. The runtime
config is however static during the runtime of an image build
process and not supposed to change. Therefore the file should
be read in once and any new instance of RuntimConfig should
just use what has been read in at the first invocation. This
commit refactors the RuntimeConfig class to hold an application
global RUNTIME_CONFIG variable and allows to reread the
config on explicit request.
- Added option to setup OBS API server in config
Allow to specify the open build service API server
in the kiwi runtime configuration file
- Allow to specify config file on the command line
The optional kiwi runtime config file (kiwi.yml) could
only be read from ~/.config/kiwi/config.yml or /etc/kiwi.yml
This commits adds the global option --config which allows
to specify a custom runtime configuration as well.
- Fixed detection for pacman repo type
grep the directory listing for a .db.sig metadata file
to identify a pacman repo
- Cleanup CliTask doc strings and code duplication
Introduce a tuple method to handle arguments with [n]
comma separated elements. Also fix method docstrings
with wrong type information.
- Fixed typing for add_repository in XMLState class
mypy reported further issues on XMLState class which
are fixed by this commit
- Fixed type annotations and docs for Uri class
The constructor used a wrong type for the repo_type variable
and the doc string for the class was invalid
- Added get_repo_type method to SolverRepository
In preparation of a plugin to handle external service
repositories a method to check for the repository type
was added. The detection is based on a search for a
specific metadata file which is an indicator for the
type of a repository.
- Update manual pages
The system build and prepare commands have received options
which were not mentioned in the manual pages. This commit
updates the pages to be in line with the code
==== qemu ====
Subpackages: qemu-arm qemu-audio-spice qemu-block-curl qemu-block-dmg qemu-block-gluster qemu-block-iscsi qemu-block-nfs qemu-block-rbd qemu-block-ssh qemu-chardev-baum qemu-chardev-spice qemu-guest-agent qemu-hw-display-qxl qemu-hw-display-virtio-gpu qemu-hw-display-virtio-gpu-pci qemu-hw-display-virtio-vga qemu-hw-usb-redirect qemu-hw-usb-smartcard qemu-ipxe qemu-ksm qemu-kvm qemu-lang qemu-microvm qemu-ppc qemu-s390x qemu-seabios qemu-sgabios qemu-skiboot qemu-tools qemu-ui-curses qemu-ui-gtk qemu-ui-opengl qemu-ui-spice-app qemu-ui-spice-core qemu-vgabios qemu-vhost-user-gpu qemu-x86
- Fix uninitialized variable in ipxe driver code (boo#1181922)
ath5k-Add-missing-AR5K_EEPROM_READ-in-at.patch
- Add a few improvements to the git-based package workflow scripts
- Include additional upstream patches designated as stable material
and reviewed for applicability to include here
blockjob-Fix-crash-with-IOthread-when-bl.patch
monitor-Fix-assertion-failure-on-shutdow.patch
qemu-nbd-Use-SOMAXCONN-for-socket-listen.patch
qemu-storage-daemon-Enable-object-add.patch
==== rdma-core ====
Version update (31.0 -> 31.3)
Subpackages: libefa1 libibverbs libibverbs1 libmlx4-1 libmlx5-1 librdmacm1
- Update to rdma-core v31.3
- No release notes available
- Fix patch to systemd-modules-load script (bsc#1178539)
- Drop srp_daemon-Fix-systemd-dependency.patch as it was merged upstream
==== redis ====
- Enable TLS support and add BuildRequires libopenssl-devel (bsc#1181830)
- Make tests run by adding BuildRequires tcl and procps
==== rygel ====
Version update (0.40.0 -> 0.40.1)
Subpackages: librygel-core-2_6-2 librygel-server-2_6-2
- Update to version 0.40.1:
+ Server: Set albumArtUri on Videos to provide thumbnails for the
PS4
+ MediaExport: Strip xml suffix when generating titles from
filenames
+ Documentation: Fix generation and install location
+ Tracker3: Add section to the default configuration file
+ Updated translations.
==== strace ====
Version update (5.10 -> 5.11)
- Add strace-readelf-debug-dump-info-wide-output-changes-in-2.36.patch
in order to workaround gh#171 issue related to the latest
binutils release (https://sourceware.org/bugzilla/show_bug.cgi?id=27309).
- Update to strace 5.11
* Improvements
* Implemented poke injection (--inject=SET:poke_enter= and
- -inject=SET:poke_exit= options).
* Implemented decoding of epoll_pwait2 syscall introduced in Linux 5.11.
* Implemented decoding of GPIO_* ioctl commands.
* Implemented decoding of FS_IOC_FS[GS]ETXATTR, FS_IOC_[GS]ETFLAGS,
and FS_IOC32_[GS]ETFLAGS ioctl commands.
* Implemented decoding of SIOCADDMULTI, SIOCDELMULTI, SIOCGIFENCAP,
SIOCOUTQNSD, SIOCSIFENCAP, and SIOCSIFHWBROADCAST ioctl commands.
* Implemented decoding of UBI_IOCRPEB and UBI_IOCSPEB ioctl commands.
* Implemented decoding of V4L2_BUF_TYPE_META_CAPTURE,
V4L2_BUF_TYPE_META_OUTPUT, and VIDIOC_QUERY_EXT_CTRL ioctl commands.
* Updated lists of BPF_*, BTRFS_*, CLOSE_RANGE_*, ETH_*, IORING_*, KVM_*,
PR_*, PTRACE_*, RTA_*, RTAX_*, RTM_*, RTNH_*, SCTP_*, SO_*, SYS_*, UFFD_*,
and V4L2_* constants.
* Updated lists of ioctl commands from Linux 5.11.
* Bug fixes
* Fixed decoding of SIOCGIFINDEX, SIOCBRADDIF, and SIOCBRDELIF ioctl
commands.
==== ucode-intel ====
Version update (20201118 -> 20210216)
- Updated Intel CPU Microcode to 20210216 official release. (bsc#1182347 bsc#1179224)
| Processor | Stepping | F-M-S/PI | Old Ver | New Ver | Products
|:---------------|:---------|:------------|:---------|:---------|:---------
| SKX-SP | H0/M0/U0 | 06-55-04/b7 | 02006a08 | 02006a0a | Xeon Scalable
| SKX-D | M1 | 06-55-04/b7 | 02006a08 | 02006a0a | Xeon D-21xx
| CLX-SP | B0 | 06-55-06/bf | 04003003 | 04003006 | Xeon Scalable Gen2
| CLX-SP | B1 | 06-55-07/bf | 05003003 | 05003006 | Xeon Scalable Gen2
==== wireless-regdb ====
Version update (20201120 -> 20210129)
- Update to version 20210129:
* wireless-regdb: Update regulatory rules for Ukraine (UA)
* wireless-regdb: update CNAF regulation url for ES
==== zbar ====
Version update (0.23.1 -> 0.23.90)
- Update to version 0.23.90
* Fixed several issues with configure.ac, making it auto-detect
most things, when possible
* Fixed some build issues
* Make it compatible with Python 3.9
* Fixed some Python 3.9 and Qt5 warnings
* Typo fixes
* Several fixes at zbarcam
* zbarimg: fix stderr output when symbols are found
- Drop 0001-Create-correct-pkconfig-file-for-zbar-qt5.patch and
0002-get-rid-of-gettext_h.patch (merged upstream)
- Enable python3 module
Hi,
Soon the last fixes for packages that were incompatible with UsrMerge
will enter Factory. Time to think about the conversion plan. I've
updated the wiki page¹ to describe how projects in the build service can
transition to UsrMerge and how to do the conversion at run time.
Instead of triggering it manually in the initrd like Fedora did, the
idea here basically is to leverage the renameat2(2) syscall in %pretrans
of the file system package. So there is no intermediate, half merged
state. Works fine in my test setups at least. It relies on coreutils' cp
though. Can we live with that? I'm not a aware of library that could be
used instead and obviously don't really want to re-implement cp just for
this :-)
An open question is file provides. Atm I'm using a provides generator
that automatically adds the legacy /bin provides to well known packages.
Do we want to do it that way or manually add file provides to packages?
cu
Ludwig
[1] https://en.opensuse.org/openSUSE:Usr_merge
--
(o_ Ludwig Nussel
//\
V_/_ http://www.suse.com/
SUSE Software Solutions Germany GmbH, GF: Felix Imendörffer
HRB 36809 (AG Nürnberg)
Hi,
I've just upgraded to snapshot 20210222 and my system doesn't boot anymore.
I have success booting into kernel 5.10.12.
No time to investigate now.
cheers
--
Daniele
Hi :)
Last email from me, promise!
Did you see my email? Love to hear your thoughts!
Cheers,
Kate
On Thu, Feb 18, 2021 6:28 PM, Katelyn Wilson <authorkatelyn(a)gmail.com>
wrote:
> Hey,
>
> Just wanted to check if you have read the above email :)
>
> Cheers,
> Kate
> On Mon, Feb 15, 2021 4:07 PM, Katelyn Wilson <authorkatelyn(a)gmail.com>
> wrote:
>
>> Hello,
>>
>> I know you're busy so I'll cut right to it.
>>
>> I'm a blogger and freelance writer. I'm looking for a link to my site
>> with a reasonable fee from: en.opensuse.org
>>
>> If this is something that interests you, please let me know how much this
>> would be.
>>
>> I think it would be a great fit considering the relevancy.
>>
>> Please let me know what you think.
>>
>> Cheers,
>> Kate
>>
> [image: picture] [image: logo]
Hi all,
I just noticed that a build for SLES12 threw the following warning:
gcc -DHAVE_CONFIG_H -I. -I.. -DCONFDIR='"/etc"' -fmessage-length=0
-grecord-gcc-switches -fstack-protector -O2 -Wall -D_FORTIFY_SOURCE=2
-funwind-tables -fasynchronous-unwind-tables -g -c -o pdnsd-list.o `test
-f 'list.c' || echo './'`list.c
list.c: In function 'dlist_grow':
list.c:113:3: warning: dereferencing type-punned pointer will break
strict-aliasing rules [-Wstrict-aliasing]
*((size_t *)&a->data[a->last])=a->lastsz;
^
While when build for SLES15, with similar CFLAGS="-fmessage-length=0
-grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2
-fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables
-fstack-clash-protection -g" it does not warn.
The code is like:
109 size_t sz=0, allocsz=0, szincr, newsz;
110 if(a) {
111 sz=a->last+a->lastsz;
112 allocsz = (sz+DLISTCHUNKSIZEMASK)&(~DLISTCHUNKSIZEMASK);
113 *((size_t *)&a->data[a->last])=a->lastsz;
114 }
I was just starting to patch this, then I noticed that I could not even
get the warning to show on newer distributions.
(My OBS instance does not have factory available easily, so I just
tested OBS build on SLES12 and SLES15, but the warning does not trigger
on current Tumbleweed, too, even with "-Wstrict-aliasing" added to the
CFLAGS mix.
What has changed?
The rpmlint check said "this will break with future compilers" in
SLES12. Is it now broken or have the compilers been fixed?
--
Stefan Seyfried
"For a successful technology, reality must take precedence over
public relations, for nature cannot be fooled." -- Richard Feynman
All meeting minutes can be found here:
https://etherpad.opensuse.org/p/ReleaseEngineering-meeting
## Participants ddemaio, guillaumeg, dleuenberger, wengel, skriesch,
lkocman, dirk, maxlin
!!! Please be aware that this meeting is hosted on
https://meet.opensuse.org/ReleaseEngineeringMeeting
## Leap
CtLG update:
createrepo_c will drop drpm support in Leap as we couldn't get buy-in
for maintenance of drpm internally. We expect that SUMA/cobbler will
introduce it via a maint-update. cobbler maintainer seems to be
interested in the support for the cobbler/SUMA usecase.
We were waiting until yesterday for Staging:Y from SLE-15-SP3 to be
merged. This has happened. It contains some some tweaks required for
seamless migration
We have found a librepo maintainer (blocks OPENSUSE-18)
Requested Yast CI (practically just for skelcd-control) but there were
some issues with deployment. lslezak should be on it.
Still working on issue with publishing ftp-trees
Missing debuginfo is waiting for a publish of a new build
https://bugzilla.suse.com/show_bug.cgi?id=1182609
Text for kernel ReleaseNotes entry:
https://etherpad.opensuse.org/p/leap-153-kernel-paragraph
jsegnitz is working on the Security Audit for Beta (bsc#1182319)
## openSUSE Tumbleweed
* glibc 2.33 is in Tumbleweed, a full snapshot rebuild was kicked (for
all ports); i586 is 'a mess' (bug reports and possible mitigations are
being discussed)
* Usual churn of KDE Plasma and Frameworks updates
* Kernel 5.11 is on the horizon
* GNOME 40.beta is ready in the GNOME:Next repo (UI changes, dock now
at the bottom; TW will see it end in March/April timeframe if nothing
bad comes up)
* GCC11 as the default compiler is being tested in a Staging
* Autoconf 2.71: some backwards incompatible changes, and implicitly
starts gtkdocize in case configure.ac contains GTK_DOC_CHECK;
Especially for ring0 packages, this is painful, as we cannot add gtk-
doc dependenices there. Those packages need to GTKDOCIZE=true before
running autoreconf (most don't need to run autoreconf, unless they
patch configure - upstream your patches!)
Dirk: I would wait for the next release, there is a couple of breakages
being reverted upstream. Let's not spend much time on fixing stuff
right now.
## Richard (Kubic/TW MicroOS)
New co-maintainers would be appreciated for the following packages:
podman, conmon, libcontainers-common, cri-o, katacontainers*, buildah.
Please join the kubic(a)lists.opensuse.org mailinglist and state your
intentions to help out, or even better, just send package submissions.
Working on integrating changes to enable DNF transactional-updates as
an option for MicroOS and possibly the default for MicroOS Desktop
MicroOS for Rock64 Image still in in testing
Team awaiting news regarding NVIDIA Jetson Nano purchase/sponsorship
options
SELinux-by-default tests reviewed, changes still required, WIP
lkocman: default selinux policy for Leap and TW was agreed to be
permissive (yesterday)
Research into checksumming entire filesystems proving fruitful, found
legitimate issues with some filesystem cloning tools, still looking
into ways of smoothly integrating it into MicroOS/Kubic.
## Max
* Disabled python package and wipe its binaries in Backprots if it was
SLE-origin and is only generates src.rpm or only python2 rpm
* Fixed openstack python packages in Backports since SLE mu#15928, most
of pacakge up to Ussuri version or a patched version
* Cleanup obsoleted package in Backports: failed and unmaintained
* Bump beta version to Beta from Alpha
* Preparing Beta build
Publishing is weird, we're waiting for new build to be published we
have temporarily set "set -x" to the publish_distro so we can see why
the tree is not in sync with with DVD after "initial publish". The
first run must got some problem while thru repo/oss, the next run then
gets skipped because isos were already published. (Max feel free to
rewrite my comment).
live images get published into dvd-area which is probably a bug too
(this is wrong also on ftp-stage).
Adrian: Adrian will check. We'll see if we keep it this way or will
change that back. Lubos will then
inform mirrors@. Live images will be published as rest of appliances.
This is the current strategy. Lubos will check how is it with rsync can
we actually do it this way ... after GA.
Guillaume: keep in mind live images will be updated after the release,
so likely better to keep it separated
Max: we have to add vendor change config to openSUSE-release package in
15.2 Update and 15.1 Update(if want to supprot 42.x then we should do
so too), or users have to add it to vendors.d manually(we should
docement it on release-notes). Otherwise zypper dup will require --
allow-vendor change https://bugzilla.suse.com/show_bug.cgi?id=1182629.
Lubos will work on it, as Max has already a huge backlog.
## Guillaume - Arm
Tumbleweed:
* glibc 2.33 update has been released as part of snapshot 20210221.
* Renamed Raspberry Pi 3 and 4 images to a single 'raspberrypi'
(without 3 or 4 suffix) image
* MicroOS images for Rock64 are still failing in Factory because we
need to build u-boot against arm-trusted-firmware package which is on
the way to Factory. edk2 package (dependency for 3 arm-trusted-firmware
falvors) is still blocked in legal queue (Staging:adi:57).
Leap 15.3 ARM:
* Need to setup openQA to test JeOS images.
* Armv7: openSUSE Step is setup in OBS. openSUSE:SLE-15-
SP3:Backports includes ports/armv7l. Still a huge backlog for armv7 in
OBS. More build power to build armv7 would be very useful. openQA setup
needs to be done once we have something to test.
WSL: WIP to have WSL on aarch64 on
https://build.opensuse.org/project/show/home:Guillaume_G:WSL The goal
is to have WSL-DistroLauncher package built for aarch64. Help welcomed.
## Michel ppc64le
lkocman: I think we already have access to the serial console I just
need to create ticket in progress to get host provisioned and
configured for openQA
Michel was not present today
## Sarah - s390x
* Fixed rpm bug and new Tumbleweed releases
* Improvements of tests
Lubos: you might want to to talk to our s390x/openQA point of contact
(perhaps reuse of tests in between SLE/Leap). I believe it's Sergio.
* No approvals from IBM side to fix tests for openSUSE Leap
## Doug
* Leap 15.3
* Beta Article Ready, SUSE's CTLG blog to support also ready
* Marketing workgroup scheduled for next week -
https://etherpad.opensuse.org/p/153wg
* openSUSE Conference
* Dates sometime in June 18- 20 or early July.
* https://demo.venueless.events/
* Shells.com looks to be a viable solution to help increase use (VDI
solution)
lubos: I know about it I just didn't get to this yet. Sorry :/
Perhaps something we want to add to
https://en.opensuse.org/Portal:15.3/Features if we plan to support it
in 15.3
Dominique: images will be built in OBS. Seems like our initial image
based on JeOS seems to work.
* Calendar on landing page. Planning to use https://code.opensuse.org/
like https://apps.fedoraproject.org/calendar
* Status on software.o.o to deploy s390x for TW & get.o.o. to list
armv7 (32 bit) for TW and Leap
blocked on Lubos. I'll try to get this done today.
Lubos to share outcome of SUSE and Rancher Community + openSUSE
Community communication internal workshop that happened last Wednesday.
I received approval from SUSE PM to pass over all information (just
need to strip employee names from ideas).
## Dirk
Working on openSUSE:Step bootstrap for i586 and armv7l. Still > 200
build failures to resolve including many core packages. coordinated via
#opensuse-step on freenode.
Very slow progress on openSUSE:SLE-15-SP3:Backports for armv7l build
due to lack of build resources and underlying build failures that block
progress. Filed ticket for Leap armv7l publishing but no progress so
far.
Lubos todo: add Step to Leap project structure in
https://en.opensuse.org/openSUSE:Packaging_for_Leap
## Gerald or any Board representative
A warm welcome to our New treasurer! Syds Bearda!
Big thank you to the previous treasurer Andrew Wafaa
## Wolfgang (Package Hub)
Testing in progress, ~1703 packages are not able to install on x86_64
because of missing dependencies
(some of the missing dependencies are in Workstation Extension)
Lubos: Wolfgang/Adrian should we open an internal feature for the
x86_64-only WE problem?
Wolfgang: Releasing is the issue, not building. We have to decide case
by case which rpms should be released or not.
Dirk: is there some filter up there? We'll have to do it for ARMv7 as
well.
Woflgang: in .product file for corresponding release we have a file
that (Wolfgang please fill in text, I was too slow :-)
Adrian raised a proposal to reduce amount of blacklisted packages it
seems to be too long for no good reason:
https://en.opensuse.org/Portal:Leap:Jump/OBS/Blacklist
## Adrian - CtLG or openSUSE Step
The last part which is missing is the patchinfo. This blocks zypper
patch usecase. zypper up works as expected.
We would need to have a maintenance incident for every update, which is
not the case. So we have to reconstruct this somehow.
Finished the SR mirroring tool for OBS -> IBS SRs including the server
sid state changes and review bot messages.
Lubos will ask SUMA people if they would be willing to help.
Discussion about openSUSE Step happens in between Adrian, Gerald, and
Dirk