Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&version=Tumbleweed&build=20220206 Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: Mesa (21.3.4 -> 21.3.5) Mesa-drivers (21.3.4 -> 21.3.5) argyllcms (2.2.0 -> 2.3.0) avahi bijiben cyrus-sasl dosfstools dracut (055+suse.194.gdd41932a -> 055+suse.226.g44139dde) evince gcr gdb gnome-bluetooth gnome-control-center gnome-dictionary gnome-music gnome-photos gnome-screenshot gnome-shell gnome-tweaks gnome-user-share (3.34.0 -> 3.34.0+25) gstreamer-plugins-bad gucharmap liblouis (3.16.1 -> 3.20.0) libmwaw libqt5-qtbase libqt5-qtwayland libstorage-ng (4.4.78 -> 4.4.79) libusb-1_0 (1.0.24 -> 1.0.25) libxkbcommon (1.3.1 -> 1.4.0) llvm13 (13.0.0 -> 13.0.1) lvm2 lvm2-device-mapper malcontent (0.10.1 -> 0.10.3) opensuse-welcome (0.1.7.1 -> 0.1.8+git.40.95061c3) polari pptp procps python-Pillow (8.4.0 -> 9.0.1) python-SQLAlchemy (1.4.29 -> 1.4.31) python-ipython python-kiwi (9.24.16 -> 9.24.21) python-more-itertools (8.10.0 -> 8.12.0) python-pysmbc re2 (20211101 -> 20220201) simple-scan systemd virglrenderer xwayland (21.1.4 -> 22.0.99.902) yast2-nfs-client (4.4.3 -> 4.4.4) yast2-security (4.4.10 -> 4.4.11) yast2-storage-ng (4.4.34 -> 4.4.35) yast2-ycp-ui-bindings (4.4.0 -> 4.4.1) === Details === ==== Mesa ==== Version update (21.3.4 -> 21.3.5) Subpackages: Mesa-dri-devel Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libgbm1 - update to 21.3.5 * bugfix release: mostly Zink fixes ==== Mesa-drivers ==== Version update (21.3.4 -> 21.3.5) Subpackages: Mesa-dri Mesa-gallium Mesa-libva libvdpau_r300 libvdpau_r600 libvdpau_radeonsi libvulkan_intel libvulkan_radeon libxatracker2 - update to 21.3.5 * bugfix release: mostly Zink fixes ==== argyllcms ==== Version update (2.2.0 -> 2.3.0) - Update to version 2.3.0: * Fixed spotread -YL (i1Pro1/2 lamp remediation) to function even if calibration is impossible due to the white reference being out of tolerance. * Fix SpyderX faulty initial black calibration * Added icomuf_reset_before_close flag for SpyderX, as some versions of the instrument have been reported to lock up after use. * Modified the ArgyllCMS CIECAM02 implementation to include a blue hue linearization tweak, to improve the "blue goes purple" effect when gamut mapping or clipping highly saturated blues to smaller gamuts. * Added spotread -Y y option that forces the listing of instrument specific display calibrations in the usage, even for serial instruments. * Removed native i1d3 C6 instrument support as a favor to X-Rite. * Improved cxf2ti3 so that it should cope with XML that uses "Colour" spelling rather than "Color". * Added I1D3_ESCAPE environment variable to allow a user to potentialy use any current or future OEM coded i1d3 instrument. ==== avahi ==== Subpackages: avahi-lang libavahi-client3 libavahi-client3-32bit libavahi-common3 libavahi-common3-32bit libavahi-core7 - Change to systemd-sysusers ==== bijiben ==== Subpackages: bijiben-lang gnome-shell-search-provider-bijiben - Add 158.patch: Fix build with meson 0.61.0 and newer. - Update our Supplements to current standard. - Drop update-desktop-files BuildRequires and macro, no longer needed. ==== cyrus-sasl ==== Subpackages: cyrus-sasl-crammd5 cyrus-sasl-digestmd5 cyrus-sasl-gssapi cyrus-sasl-plain libsasl2-3 libsasl2-3-32bit - cyrus-sasl: prevent fail of %pre when berkely db utils are not installed (seems like we want to use this only for upgrade so no Prereq added) - move license to licensedir - remove use of RPM_BUILD_ROOT - minimal spec cleanups - avoid bashisms ==== dosfstools ==== - Drop vim BuildRequires: the test suite passes without it present. ==== dracut ==== Version update (055+suse.194.gdd41932a -> 055+suse.226.g44139dde) Subpackages: dracut-mkinitrd-deprecated - Update to version 055+suse.226.g44139dde: * fix(zfcp_rules): remove collect based udev rule creators * fix(dasd_rules): remove collect based udev rule creators * fix(kernel-modules-extra): handle zstd module extension * fix(ifcfg): add SUSE specific write-ifcfg file (bsc#1193518) * fix(dracut-functions): skip iSCSI sessions without initiatorname (bsc#1195011) * fix(dracut-functions.sh): ip route parsing (bsc#1195011) * fix(fips): missing sourcing of dracut-lib * fix(fips): wrong error message * fix(network-legacy): install only existing SUSE specific files (bsc#1194879) * fix(network-legacy): set dhclient as optional (bsc#1194879) * fix(40network): consistent use of "$gw" for gateway (bsc#1192685) * fix(multipathd-configure.service): drop unneeded dependencies * fix(multipath): check if mpathconf is available * fix(multipathd.service): drop dependencies on iscsi and iscsid * fix(multipathd.service): adapt to upstream multipath-tools unit file * fix(multipathd.service): remove dependency on systemd-udev-settle * fix(fips): avoid shellcheck warnings * fix(fips): get _vmname value only if it is needed * fix(fips.sh): respect rd.fips.skipkernel * fix(fips): alignment with the upstream format ==== evince ==== Subpackages: evince-lang evince-plugin-comicsdocument evince-plugin-djvudocument evince-plugin-dvidocument evince-plugin-pdfdocument evince-plugin-tiffdocument evince-plugin-xpsdocument libevdocument3-4 libevview3-3 nautilus-evince typelib-1_0-EvinceDocument-3_0 typelib-1_0-EvinceView-3_0 - Add 1060b24d051607f14220f148d2f7723b29897a54.patch: Fix build with meson 0.60.0 and newer. - Tweak our Provides/Obsolete of browser-plugin. ==== gcr ==== Subpackages: gcr-data gcr-lang gcr-prompter gcr-ssh-agent gcr-ssh-askpass gcr-viewer libgck-1-0 libgcr-3-1 typelib-1_0-Gck-1 typelib-1_0-Gcr-3 - Add b3ca1d02bb0148ca787ac4aead164d7c8ce2c4d8.patch: Fix build with meson 060.0 and newer. ==== gdb ==== - gdb-r_version-check.patch: gdb: Don't assume r_ldsomap when r_version > 1 on Linux ==== gnome-bluetooth ==== Subpackages: gnome-bluetooth-lang libgnome-bluetooth13 typelib-1_0-GnomeBluetooth-1_0 - Add 755fd758f866d3a3f7ca482942beee749f13a91e.patch Fix build with meson 0.61 and newer. ==== gnome-control-center ==== Subpackages: gnome-control-center-color gnome-control-center-goa gnome-control-center-lang gnome-control-center-user-faces - Add 4f64deb5f1bc7b83fcc4381b7dbbaf71ad4a77c8.patch: Fix build with meson 0.61.0 and newer. - Add 496c719d7b1492b54c34ace648feb3802f34f774.patch: Remove duplicate line from .desktop file - Drop some ancient Provides and Obsoletes that are no longer needed: acme, fontilus, themus, control-center2, control-center2-devel, gnome-control-center-branding, gnome-control-center-branding-openSUSE and gnome-control-center-branding-upstream. - Update our Supplements to current standard. ==== gnome-dictionary ==== Subpackages: gnome-dictionary-lang - Add gnome-dictionary-fix-meson-061.patch: Fix build with meson 0.61 and newer. - Replace update-desktop-files with desktop-file-utils BuildRequires, also add appstream-glib BuildRequires and check section and run meson_test macro during build. Validate appdata and desktop file. - Remove unused lingering service files. ==== gnome-music ==== Subpackages: gnome-music-lang - Add d9f35b542adbf6b0e1114c7c077df04212a98fc7.patch: Fix build with meson 0.61.0 and newer. ==== gnome-photos ==== Subpackages: gnome-photos-lang gnome-shell-search-provider-gnome-photos - Add a0ac868a19d55dc52100e54fe4b2d29041bc6752.patch: Fix build with meson 0.61.0 and newer. ==== gnome-screenshot ==== Subpackages: gnome-screenshot-lang - Add b60dad3c2536c17bd201f74ad8e40eb74385ed9f.patch: Fix build with meson 0.60 and newer. - Replace pkgconfig(appstream-glib) with appstream-glib and desktop-file-utils BuildRequires, and add a check section and run meson_test macro, validate metainfo and desktop file during build via upstream provided automated tests. ==== gnome-shell ==== Subpackages: gnome-extensions gnome-shell-calendar gnome-shell-lang - Disable gs-fate318433-prevent-same-account-multi-logins.patch: temporarily disable it to workaround a regression of remote connection (bsc#1195141). ==== gnome-tweaks ==== Subpackages: gnome-tweaks-lang - Add 86.patch: Fix build with meson 0.60.0 and newer. ==== gnome-user-share ==== Version update (3.34.0 -> 3.34.0+25) Subpackages: gnome-user-share-lang - Update to version 3.34.0+25: + build: correct gio_unix_dep use. + Updated translations. - Switch to gitcheckout via source service, upstream is not making releases, and we want the translations. - Add gnome-user-share-fix-meson-0_61_0.patch: Fix build with meson 0.61.0 and newer. - Drop update-desktop-files BuildRequires and its macro, no longer needed. - Stop removing non-existant la files, not built since the switch to meson buildsystem. ==== gstreamer-plugins-bad ==== Subpackages: gstreamer-plugins-bad-lang libgstadaptivedemux-1_0-0 libgstbadaudio-1_0-0 libgstbasecamerabinsrc-1_0-0 libgstcodecparsers-1_0-0 libgstcodecs-1_0-0 libgstisoff-1_0-0 libgstmpegts-1_0-0 libgstphotography-1_0-0 libgstplayer-1_0-0 libgstsctp-1_0-0 libgsturidownloader-1_0-0 libgstvulkan-1_0-0 libgstwayland-1_0-0 libgstwebrtc-1_0-0 - Go back to using pkgconfig(fdk-aac) BuildRequires. ==== gucharmap ==== Subpackages: gucharmap-lang libgucharmap_2_90-7 - Add a8ee037f8cf151b8b65354bc93c56953e41f5a22.patch: Fix build with meson 0.61 and newer. ==== liblouis ==== Version update (3.16.1 -> 3.20.0) Subpackages: liblouis-data liblouis20 python3-louis - update to 3.20.0: * This is a major release. Not only in terms of table additions and updates but also in the way the tables are written. Bert has replaced the ~uplow~ opcode with a more generalized ~base~ opcode. This clears up the path for a more generalized handling of emphasis and uppercase characters. In the course of this simplification some bugs with computer braille were discovered and fixed. * For this release Bert Frees has been hard at work to clean up the code base. He fixed a few bugs one of which was causing memory corruption. Others have contributed corrections to braille tables or even provided new tables. For example there are now tables for Tshivenda and for Russian contracted braille. * This release brings support for many new languages: There is support for six new languages from South Africa, Northern Kurdish, Kazakh, Tatar, Yakut, Bulgarian literary braille and finally Khmer, Burmese and Vietnamese. Aside from that there are also major improvements to Afrikaans, Russian literary braille, Uzbek and Hebrew Computer Braille. * This release stands in the tradition of small incremental improvements that make it another fine and solid release. Andrey Yakuboy put in a lot of work to improve Russian literary and computer braille. He also provided a new table for Belarusian uncontracted and computer braille. Aside from that there are numerous improvements in Braille tables such as French, Polish and Urdu. The documentation has been improved as has the table meta marking the tables whether they are geared towards forward or backwards translation. I'd like to thank everybody for helping to bring liblouis forward. ==== libmwaw ==== - Added patch: * fix-build.patch + Fix build with older compilers by helping to resolve type ambiguity. ==== libqt5-qtbase ==== Subpackages: libQt5Concurrent5 libQt5Core5 libQt5DBus5 libQt5Gui5 libQt5Network5 libQt5OpenGL5 libQt5PrintSupport5 libQt5Sql5 libQt5Sql5-mysql libQt5Sql5-sqlite libQt5Test5 libQt5Widgets5 libQt5Xml5 libqt5-qtbase-platformtheme-gtk3 - Add patch to avoid unintentionally using binaries from CWD (boo#1195386, CVE-2022-23853): * 0001-QProcess-Unix-ensure-we-don-t-accidentally-execute-s.patch ==== libqt5-qtwayland ==== Subpackages: libQt5WaylandClient5 libQt5WaylandCompositor5 - Add patches to fix applications not updating after some time (kde#449163): * 0001-Client-Remove-mWaitingForUpdateDelivery.patch * 0002-Guard-mResizeDirty-by-the-correctMutex.patch * 0003-Fix-up-mutexes-for-frame-callbacks.patch - Add patch to fix several feature detection tests: * 0001-Use-proper-dependencies-in-compile-tests.patch ==== libstorage-ng ==== Version update (4.4.78 -> 4.4.79) Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1 - Translated using Weblate (Finnish) (bsc#1149754) - 4.4.79 ==== libusb-1_0 ==== Version update (1.0.24 -> 1.0.25) - Update to version 1.0.25 * Fix regression with some particular devices * Fix regression with libusb_handle_events_timeout_completed() * Fix regression with cpu usage in libusb_bulk_transfer * New NO_DEVICE_DISCOVERY option replaces WEAK_AUTHORITY option * Various other bug fixes and improvements - Drop not longer needed patch: * 0001-fix-descriptor-parsing.patch ==== libxkbcommon ==== Version update (1.3.1 -> 1.4.0) Subpackages: libxkbcommon-x11-0 libxkbcommon0 libxkbregistry0 - Update to release 1.4.0 * In libxkbregistry, variants now inherit iso639, iso3166 and brief from parent layout if omitted. * In libxkbregistry, skip over invalid ISO-639 or ISO-3166 entries. ==== llvm13 ==== Version update (13.0.0 -> 13.0.1) Subpackages: clang-tools clang13 clang13-doc libLLVM13 libLTO13 libc++-devel libc++1 libc++abi-devel libc++abi1 libclang13 - Update to version 13.0.1. * This release contains bug-fixes for the LLVM 13.0.0 release. This release is API and ABI compatible with 13.0.0. - Rebase llvm-do-not-install-static-libraries.patch. - Drop obsolete patches: * llvm-fix-building-with-GCC-12.patch - Drop RUNPATH from packaged binaries, instead set LD_LIBRARY_PATH for building and testing to simulate behavior of actual package. - Update constraints for riscv64 ==== lvm2 ==== Subpackages: liblvm2cmd2_03 - udev: create symlinks and watch even in suspended state (bsc#1195231) + (add) 0043-udev-create-symlinks-and-watch-even-in-suspended-sta.patch ==== lvm2-device-mapper ==== Subpackages: device-mapper libdevmapper-event1_03 libdevmapper1_03 libdevmapper1_03-32bit - udev: create symlinks and watch even in suspended state (bsc#1195231) + (add) 0043-udev-create-symlinks-and-watch-even-in-suspended-sta.patch ==== malcontent ==== Version update (0.10.1 -> 0.10.3) Subpackages: libmalcontent-0-0 libmalcontent-ui-0-0 malcontent-control malcontent-lang typelib-1_0-Malcontent-0 - Update to version 0.10.3: + Bugs fixed: - Do not make malcontent-control user uninstallable using gui - malcontent-control: . Fix an unterminated option entry array . Focus controls rather than user selector + Updated translations. - Changes from version 0.10.2: + Hide the launcher for malcontent-control from gnome-shell if using the GNOME desktop; find it via gnome-control-center instead + Bugs fixed: - Limit depth of clone of subprojects - Rename master to main branch + Updated translations. - Add f433aaf8c8f82f0aeaedee664f08bc6fcad47b0d.patch: Fix build with meson 0.61.0. ==== opensuse-welcome ==== Version update (0.1.7.1 -> 0.1.8+git.40.95061c3) Subpackages: opensuse-welcome-lang - Update to 0.1.8+git.40.95061c3 * Translation updates - Add _service to get latest source + translations from git, fixes boo#1185893 - Update to 0.1.8 ==== polari ==== Subpackages: polari-lang - Add 0f0a4b54142d8b424969f0b6ace6fc8b53b1d05d.patch: Fix build with meson 0.61.0 and newer. ==== pptp ==== - bsc#1194714: Remove pptp-command (the former SysV init scirpt). It has been broken for a long time (seeking deprecated ifconfig in the wrong location) without any complaints, so it seems safe to assume it is not being used anymore. ==== procps ==== Subpackages: libprocps8 procps-lang - Add patch bsc1195468-23da4f40.patch to fix bsc#1195468 that is ignore SIGURG ==== python-Pillow ==== Version update (8.4.0 -> 9.0.1) Subpackages: python38-Pillow python38-Pillow-tk - update to version 9.0.1: * In show_file, use os.remove to remove temporary images. CVE-2022-24303 #6010 [radarhere, hugovk] * Restrict builtins within lambdas for ImageMath.eval. CVE-2022-22817 #6009 [radarhere] - Don't try to build on unsupported Python 3.6 - Remove python2 statements from specfile - update to 9.0.0 * Dropped support for Python 3.6 * PILLOW_VERSION has been removed. Use __version__ instead. * Support for FreeType 2.7 has been removed; FreeType 2.8 is the minimum supported. * Image.show command parameter has been removed. Use a subclass of PIL.ImageShow.Viewer instead. * Image._showxv has been removed. Use show() instead. * ImageFile.raise_ioerror: IOError was merged into OSError in Python 3.3. * So, ImageFile.raise_ioerror has been removed. Use ImageFile.raise_oserror instead. * An optional line width parameter has been added to ImageDraw.Draw.polygon. * API Addition: If xdg-open is present on Linux, this new PIL.ImageShow.Viewer subclass will be registered. It displays images using the application selected by the system. * Added support for ?title? argument to DisplayViewer ==== python-SQLAlchemy ==== Version update (1.4.29 -> 1.4.31) - specfile: * update copyright year - update to version 1.4.31: * orm + [orm] [bug] Fixed issue in Session.bulk_save_objects() where the sorting that takes place when the preserve_order parameter is set to False would sort partially on Mapper objects, which is rejected in Python 3.11. References: #7591 * postgresql + [postgresql] [bug] [regression] Fixed regression where the change in #7148 to repair ENUM handling in PostgreSQL broke the use case of an empty ARRAY of ENUM, preventing rows that contained an empty array from being handled correctly when fetching results. References: #7590 * mysql + [mysql] [bug] [regression] Fixed regression in asyncmy dialect caused by #7567 where removal of the PyMySQL dependency broke binary columns, due to the asyncmy dialect not being properly included within CI tests. References: #7593 * mssql + [mssql] Added support for FILESTREAM when using VARBINARY(max) in MSSQL. References: #7243 - changes from version 1.4.30: * orm + [orm] [bug] Fixed issue in joined-inheritance load of additional attributes functionality in deep multi-level inheritance where an intermediary table that contained no columns would not be included in the tables joined, instead linking those tables to their primary key identifiers. While this works fine, it nonetheless in 1.4 began producing the cartesian product compiler warning. The logic has been changed so that these intermediary tables are included regardless. While this does include additional tables in the query that are not technically necessary, this only occurs for the highly unusual case of deep 3+ level inheritance with intermediary tables that have no non primary key columns, potential performance impact is therefore expected to be negligible. References: #7507 + [orm] [bug] Fixed issue where calling upon registry.map_imperatively() more than once for the same class would produce an unexpected error, rather than an informative error that the target class is already mapped. This behavior differed from that of the mapper() function which does report an informative message already. References: #7579 + [orm] [bug] [asyncio] Added missing method AsyncSession.invalidate() to the AsyncSession class. References: #7524 + [orm] [bug] [regression] Fixed regression which appeared in 1.4.23 which could cause loader options to be mis-handled in some cases, in particular when using joined table inheritance in combination with the polymorphic_load="selectin" option as well as relationship lazy loading, leading to a TypeError. References: #7557 + [orm] [bug] [regression] Fixed ORM regression where calling the aliased() function against an existing aliased() construct would fail to produce correct SQL if the existing construct were against a fixed table. The fix allows that the original aliased() construct is disregarded if it were only against a table that?s now being replaced. It also allows for correct behavior when constructing a aliased() without a selectable argument against a aliased() that?s against a subuquery, to create an alias of that subquery (i.e. to change its name). The nesting behavior of aliased() remains in place for the case where the outer aliased() object is against a subquery which in turn refers to the inner aliased() object. This is a relatively new 1.4 feature that helps to suit use cases that were previously served by the deprecated Query.from_self() method. References: #7576 + [orm] [bug] Fixed issue where Select.correlate_except() method, when passed either the None value or no arguments, would not correlate any elements when used in an ORM context (that is, passing ORM entities as FROM clauses), rather than causing all FROM elements to be considered as ?correlated? in the same way which occurs when using Core-only constructs. References: #7514 + [orm] [bug] [regression] Fixed regression from 1.3 where the ?subqueryload? loader strategy would fail with a stack trace if used against a query that made use of Query.from_statement() or Select.from_statement(). As subqueryload requires modifying the original statement, it?s not compatible with the ?from_statement? use case, especially for statements made against the text() construct. The behavior now is equivalent to that of 1.3 and previously, which is that the loader strategy silently degrades to not be used for such statements, typically falling back to using the lazyload strategy. References: #7505 * sql + [sql] [bug] [postgresql] Added additional rule to the system that determines TypeEngine implementations from Python literals to apply a second level of adjustment to the type, so that a Python datetime with or without tzinfo can set the timezone=True parameter on the returned DateTime object, as well as Time. This helps with some round-trip scenarios on type-sensitive PostgreSQL dialects such as asyncpg, psycopg3 (2.0 only). References: #7537 + [sql] [bug] Added an informative error message when a method object is passed to a SQL construct. Previously, when such a callable were passed, as is a common typographical error when dealing with method-chained SQL constructs, they were interpreted as ?lambda SQL? targets to be invoked at compilation time, which would lead to silent failures. As this feature was not intended to be used with methods, method objects are now rejected. References: #7032 * mypy + [mypy] [bug] Fixed Mypy crash when running id daemon mode caused by a missing attribute on an internal mypy Var instance. References: #7321 * asyncio + [asyncio] [usecase] Added new method AdaptedConnection.run_async() to the DBAPI connection interface used by asyncio drivers, which allows methods to be called against the underlying ?driver? connection directly within a sync-style function where the await keyword can?t be used, such as within SQLAlchemy event handler functions. The method is analogous to the AsyncConnection.run_sync() method which translates async-style calls to sync-style. The method is useful for things like connection-pool on-connect handlers that need to invoke awaitable methods on the driver connection when it?s first created. References: #7580 * postgresql + [postgresql] [usecase] Added string rendering to the UUID datatype, so that stringifying a statement with ?literal_binds? that uses this type will render an appropriate string value for the PostgreSQL backend. Pull request courtesy José Duarte. References: #7561 + [postgresql] [bug] [asyncpg] Improved support for asyncpg handling of TIME WITH TIMEZONE, which was not fully implemented. References: #7537 + [postgresql] [bug] [mssql] [reflection] Fixed reflection of covering indexes to report include_columns as part of the dialect_options entry in the reflected index dictionary, thereby enabling round trips from reflection->create to be complete. Included columns continue to also be present under the include_columns key for backwards compatibility. References: [#7382] + [postgresql] [bug] Fixed handling of array of enum values which require escape characters. References: #7418 + mysql + [mysql] [change] Replace SHOW VARIABLES LIKE statement with equivalent SELECT @@variable in MySQL and MariaDB dialect initialization. This should avoid mutex contention caused by SHOW VARIABLES, improving initialization performance. References: #7518 + [mysql] [bug] Removed unnecessary dependency on PyMySQL from the asyncmy dialect. Pull request courtesy long2ice. References: [#7567] ==== python-ipython ==== - Add ipython-pr13466-display.patch -- gh#ipython/ipython#13466 * fixes plotly test failures ==== python-kiwi ==== Version update (9.24.16 -> 9.24.21) - Bump version: 9.24.20 ? 9.24.21 - Fixed UUID used in grub early boot script In case the system is luks encrypted the UUID of the root partition was used in the grub early boot script. However, this condition is only correct if in addition to the luks encryption the boot area is on crypto too. If boot is not on crypto the UUID must be the boot partition and not root. Only if root AND boot is on crypto the kiwi created early boot script includes the grub cryptomount calls. - Bump version: 9.24.19 ? 9.24.20 - Followup fix for force deleting debian packages The force uninstall deletes pre scripts prior removal because if they fail the package will not be removed. For a force uninstall we consider this ok. However, the deletion of the scripts did not happen in the image root. This patch fixes it - Followup fix for force deleting debian packages Pass --force-depends to allow uninstall even if the dependency checker complains - Fix use of xattrs for container sync when syncing data for containers only a subset of xattr attributes can be applied. This Fixes #2009 - Bump version: 9.24.18 ? 9.24.19 - Ensure SELinux labels are set based on the policy When running kiwi from a filesystem tree that has custom labels applied (such as when using kiwi from within a container on an SELinux-enabled host), the filesystem labeling doesn't correctly apply on some files and folders with a warning about the location being customized by the administrator. This causes all kinds of strange results with the built images and makes them unbootable. To resolve this, tell setfiles to forcibly set files and folders with the default context from the installed policy. - Extend and update documentation about /etc/machine-id setup - Fix ordered list in shell_scripts.rst Ordered lists must be indented by three spaces, otherwise the numbering breaks. - Bump version: 9.24.17 ? 9.24.18 - Fix ramdisk deployments from PXE This commit fixes PXE deployments on ramdisk. In such cases the former fix from df4e62a4 is not sufficient as there is no `root=` parameter within the kernel cmd line and hence this logic is never executed. Signed-off-by: David Cassany <dcassany@suse.com> - Update outdated PKGBUILD for Arch Linux Signed-off-by: David Cassany <dcassany@suse.com> - Fixed unit test race condition - Fixed grub loader/entries setup If called in non standard environments like an OBS worker the grub tooling does not work correctly and produces invalid results. For these cases kiwi provides a collection of fix_ methods to change the produced results. This commit covers the invalid path in loader/entries/*.conf files pointing to the kernel and the initrd as they exist in the image-root directory. This results for example in settings like: linux /usr/src/packages/KIWI-oem/build/image-root/boot/vmlinuz-5.14.0-43.el9.x86_64 when it should be: linux /boot/vmlinuz-5.14.0-43.el9.x86_64 This Fixes #2038 - Set /.snapshots subvolume to mode 0700 (bsc#1194992) Avoid that users other than root can enter or even change the content. This is what snapper does as well. - Fixed build_status helper output issue Starting with CentOS stream 9 integration tests a new layer in the project that builds it was added. This changed the osc results output and messed up the build_status helper output a bit. This commit fixes it - Fix the uninstall(force) on Debian based dists Packages marked for uninstall via <package name="delete|uninstall"/> failed to become removed for several reasons. The way this was done in kiwi did not work because dpkg needs to be called differently and with some nasty pre-processing in order to allow for force deletion. In force mode we also allow to remove packages marked as essential. In gracefull uninstall mode this commit makes sure the environment is prepared and does not fail for false-positive reasons. - Added mail map Added information about my private e-mail being the successor for the work done when I was an employee of SUSE - Allow calling podman within chroot Added helper functions and env preparation code to allow calling podman from within a chroot. This allows to run podman from e.g config.sh and also inside of OBS workers - Fix requirements for kiwi-systemdeps-filesystems Extend btrfs condition applying for EL8 to apply for EL9 too - Bump version: 9.24.16 ? 9.24.17 - Fixed image builds without kernel If an image is build without a kernel kiwi fails due to some code paths expecting the presence of kernel modules and or kernel binaries. This commit fixes this and allows creating an image without installing a kernel. - Added CentOS Stream 9 integration tests - Allow "uninitialized" as content of /etc/machine-id According to machine-id(5), an empty file does not signal that this is the first boot of the system. Instead, the file needs to be missing or contain the string "uninitialized". A missing file does not work if the filesystem is initially mounted read-only, so allow "uninitialized" as well, instead of truncating it. Improve the documentation of the method, e.g. dracut is not involved. - Fix booting GRUB submenu entries with hybrid images (linux/linuxefi) Variables assigned with "set" are not visible in submenus for some reason. Export $linux and $initrd, so that they also work in submenu entries. Fixes bsc#1192523 - Don't copy GRUB modules for EFI with secure boot enabled When booting grub.efi with secure boot enabled, modules can't be loaded and thus the grub.efi image needs to be complete. Save some space in live images by not copying them into the ISO filesystem. Fixes part of #1750 - Don't include the ESP in the ISO9660 partition as well (#1750) Previously the image for the ESP was created inside the source directory for the ISO9660 filesystem, so it ended up there as well as a separate partition. Fix that by creating it as a temporary file instead. - Automate build-tests OBS service refresh This commit provides a new github action which sends API requests to the OBS api to refresh the source services for the integration tests on the OBS server side. This Fixes #1980 - Added docker integration test for Ubuntu - Update ubuntu integration test to Hirsute(21.04) ==== python-more-itertools ==== Version update (8.10.0 -> 8.12.0) - specfile: * update copyright year - update to version 8.12.0: * Bug fixes + Some documentation issues were fixed (thanks to Masynchin, spookylukey, astrojuanlu, and stephengmatthews) + Python 3.5 support was temporarily restored (thanks to mattbonnell) - changes from version 8.11.0: * New functions + The before_and_after, sliding_window, and triplewise recipes from the Python 3.10 docs were added + duplicates_everseen and duplicates_justseen (thanks to OrBin and DavidPratt512) + minmax (thanks to Ricocotam, MSeifert04, and ruancomelli) + strictly_n (thanks to hwalinga and NotWearingPants) + unique_in_window * Changes to existing functions + groupby_transform had its type stub improved (thanks to mjk4 and ruancomelli) + is_sorted now accepts a strict parameter (thanks to Dutcho and ruancomelli) + zip_broadcast was updated to fix a bug (thanks to kalekundert) ==== python-pysmbc ==== - Remove libsmbclient-devel BuildRequires in favor of pkgconfig(smbclient); (jsc#SLE-20577); ==== re2 ==== Version update (20211101 -> 20220201) - Update to 2022-02-01: * Address a `-Wunused-but-set-variable' warning from Clang 13.x * Don't specify the -std flag in Makefile or re2.pc * Remove a redundant map access ==== simple-scan ==== Subpackages: simple-scan-lang - Add da6626debe00be1a0660f30cf2bf7629186c01d5.patch: Fix build with meson 0.61.0 and newer. ==== systemd ==== Subpackages: libsystemd0 libsystemd0-32bit libudev1 libudev1-32bit systemd-32bit systemd-container systemd-lang systemd-sysvinit udev - Always create systemd-network system user, even if systemd-networkd is not installed (bsc#1195559) - Make more use of %{_unitdir} in files.{systemd,container} - Installation of libnss_mymachines.so depended on %{bootstrap} but it is actually installed when %{with machined} is true. - Call ldconfig when container subpackage is installed since it ships nss-mymachines NSS plug-in module. - Import commit 117bd7f14aa7834d85a4306cd380d292bec04108 1395c74be7 udevadm: cleanup-db: don't delete information for kept db entries (bsc#1194912) bbafc8092a udevadm: cleanup_dir: use dot_or_dot_dot() - Drop 0006-sysv-generator-add-back-support-for-SysV-scripts-for.patch 0009-sysv-add-back-support-for-all-virtual-facility-and-f.patch Given the fact that Factory no more ship SysV init scripts since several months, only scripts coming from 3rd party applications should remain which are unlikely to rely on the SUSE specifities implemented by these patches. This change was announced on the Factory mailing list: https://lists.opensuse.org/archives/list/factory@lists.opensuse.org/thread/3... - Import commit 885e0b9126bd2cf1e3f6b147c45ec58a5550c75c 41334be59e meson: minor cleanup 3db0c28462 sysusers: split up systemd.conf - Drop 0012-resolved-create-etc-resolv.conf-symlink-at-runtime.patch (bsc#1195153) Since v241, the patch isn't useful anymore because resolved is no more able to create /etc/resolv.conf symlink by itself,it runs as 'systemd-resolve' user. The symlink is now handled by a tmpfiles config file which is only installed when systemd-resolved is. The tmpfiles config file has currently a lower priority than the one shipped by netconfig. - Make use of %ldconfig_scriptlets - Merge nss-resolved and nss-mymachines NSS plug-in modules into systemd-network and systemd-container respectively. These modules are plug-in modules hence the shared library packaging policy doesn't apply for them. Moreover they're pretty useless alone without their respective systemd services, Hence let's reduce the number of sub-packages as the list keeps increasing. - Merge libudev-devel into systemd-devel - Make sure that libopenssl-devel is installed when building resolved. Openssl was implictly pulled in by systemd-experimental subpackage but could be missing if the build of this subpackage was disabled. - resolved: disable fallback DNS servers and fail when no DNS server info could be obtained from the links. It's better to let the sysadmin know that something is likely misconfigured rather than silently handing over the DNS queries to Google or Cloudflare. - resolved: disable DNSSEC until the following issue is solved: https://github.com/systemd/systemd/issues/10579 - Replace '%setup+%autopatch' with '%autosetup' - systemd.spec: explicitely list all files for each main (sub) packages Using glob patterns in %files section to reduce the number of listed files was error-prone as some introduced files could silently be placed in the wrong subpackage. The sections were also hard to read and many files needed to be excluded from the main package making the point of glob pattern usage moot. systemd, udev, systemd-container and systemd-network packages have now their list of files described in a dedicated file. The lists are kept sorted to make them easy to parse. The size of the files, especially the one for the main package, is still reasonable and much easier to read now. During this rework, a couple of cleanups happened: more use of %{_systemd_util_dir}, some files was incorrectly owned by the main package and have been moved to the correct sub-package, etc... Note: the rest of the subpackages might be addressed later but let's find how it goes for now. ==== virglrenderer ==== - security update * Fix OOB in read_transfer_data() (CVE-2022-0135 bsc#1195389) Add virglrenderer-CVE-2022-0135.patch ==== xwayland ==== Version update (21.1.4 -> 22.0.99.902) - Update to version 22.0.99.902 * render: Fix build with gcc 12 - Update to version 22.0.99.901 * DRM lease support * Enables sRGB fbconfigs in GLX * Requires libxcvt * Refactoring of the present code in Xwayland * Implements support for touchpad gestures * Support for xfixes's ClientDisconnectMode and optional terminate delay - Add pkgconfig(libxcvt) BuildRequires: New dependency. - Add xwayland.keyring, use url for sources, validate sig. - Move man pages from devel to main binary package. - Enable LTO, no longer disable LTO via macro. ==== yast2-nfs-client ==== Version update (4.4.3 -> 4.4.4) - Adapt code for a better integration with the storage Expert Partitioner (related to fate#318196). - Provide a new NfsForm to be used from the Expert Partitioner and move code to yast-storage-ng. - 4.4.4 ==== yast2-security ==== Version update (4.4.10 -> 4.4.11) - Fixed Export unit test (related to jsc#SLE-22069). - 4.4.11 ==== yast2-storage-ng ==== Version update (4.4.34 -> 4.4.35) - Partitioner: use 'defaults' for empty mount options in the details popup of a NFS (related to fate#318196). - Partitioner: improve integration with yast2-nfs-client to offer a consistent user experience (related to fate#318196 and bsc#1156446). - 4.4.35 ==== yast2-ycp-ui-bindings ==== Version update (4.4.0 -> 4.4.1) - Added UI.AskForWidgetStyle() (jsc#SLE-20564) - Added HasWidgetStyleSupport capability to UI.GetDisplayInfo() - Adapted to libyui SO bump 15 -> 16 - 4.4.1