[opensuse-factory] New Tumbleweed snapshot 20180815 released!
Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&version=Tumbleweed&build=20180815 Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: ImageMagick (7.0.8.6 -> 7.0.8.9) aspell-en (2017.08.24 -> 2018.04.16) binutils (2.30 -> 2.31) btrfsprogs (4.17 -> 4.17.1) dejagnu digikam gnu-unifont-bitmap-fonts (10.0.07 -> 11.0.02) grub2 iproute2 (4.16 -> 4.17) kernel-source (4.17.13 -> 4.17.14) krusader (2.7.0 -> 2.7.1) libstorage-ng (4.1.10 -> 4.1.11) make nut oath-toolkit qemu (2.12.0 -> 2.12.1) qemu-linux-user (2.12.0 -> 2.12.1) rubygem-autoprefixer-rails (9.1.0 -> 9.1.1) rubygem-uglifier (4.1.17 -> 4.1.18) smp_utils squid (4.1 -> 4.2) systemd-presets-common-SUSE sysvinit (2.88+ -> 2.90) tgt webkit2gtk3 (2.20.3 -> 2.20.5) xen (4.10.1_08 -> 4.11.0_02) xtables-addons (3.0_k4.17.13_1 -> 3.1_k4.17.14_1) xterm yast2-iscsi-client (4.0.1 -> 4.1.0) yast2-storage-ng (4.1.3 -> 4.1.4) === Details === ==== ImageMagick ==== Version update (7.0.8.6 -> 7.0.8.9) Subpackages: ImageMagick-extra libMagick++-7_Q16HDRI4 libMagickCore-7_Q16HDRI6 libMagickWand-7_Q16HDRI6 perl-PerlMagick - update to 7.0.8-9: * XBM coder leaves the hex image data uninitialized if hex value of the pixel is negative. * More improvements to SVG text handling. * New -range threshold option that combines hard and soft thresholding. * Non-HDRI ScaleLongToQuantum() private method no longer adds a half interval. * Fixed memset() negative-size-param (reference https://github.com/ImageMagick/ImageMagick/issues/1217). * Fixed numerous use of uninitialized values, integer overflow, memory exceeded, and timeouts (credit to OSS Fuzz). - fixed tests by ImageMagick-filter.t.patch https://github.com/ImageMagick/ImageMagick/issues/1241 ==== aspell-en ==== Version update (2017.08.24 -> 2018.04.16) - run fdupes only on dictionary data - update keyring to include all upstream signatures - update URL - Use SourceURL - Use GPG signed source - updated to 2018.04.16 * various new words (see SCOWL-README for other changes) ==== binutils ==== Version update (2.30 -> 2.31) Subpackages: binutils-devel - Update to binutils 2.31 * The AArch64 port now supports showing disassembly notes which are emitted when inconsistencies are found with the instruction that may result in the instruction being invalid. These can be turned on with the option -M notes to objdump. * The AArch64 port now emits warnings when a combination of an instruction and a named register could be invalid. * Added O modifier to ar to display member offsets inside an archive * The ADR and ADRL pseudo-instructions supported by the ARM assembler now only set the bottom bit of the address of thumb function symbols if the -mthumb-interwork command line option is active. * Add --generate-missing-build-notes=[yes|no] option to create (or not) GNU Build Attribute notes if none are present in the input sources. Add a - -enable-generate-build-notes=[yes|no] configure time option to set the default behaviour. Set the default if the configure option is not used to "no". * Remove -mold-gcc command-line option for x86 targets. * Add -O[2|s] command-line options to x86 assembler to enable alternate shorter instruction encoding. * Add support for .nops directive. It is currently supported only for x86 targets. * Speed up direct linking with DLLs for Cygwin and Mingw targets. * Add a configure option --enable-separate-code to decide whether - z separate-code should be enabled in ELF linker by default. Default to yes for Linux/x86 targets. Note that -z separate-code can increase disk and memory size. * Includes riscv-relax-size.patch, riscv-relax-relocatable.patch, riscv-relax-versioned-hidden.patch and riscv-wrap-relax.patch - Refresh enable-targets-gold.diff. - Adjust cross-avr-omit_section_dynsym.patch. - Remove binutils-2.30-branch.diff. ==== btrfsprogs ==== Version update (4.17 -> 4.17.1) Subpackages: btrfsprogs-udev-rules libbtrfs0 - update to version 4.17.1 * check: * add ability to fix wrong ram_bytes for compressed inline files * beautify progress output * btrfstune: allow to continue uuid change after unclean interruption * several fuzz fixes: * detect overalpping chunks * chunk loading error handling * don't crash with unexpected root refs to extents * relax option parsing again to allow mixing options and non-options arguments * fix qgroup rescan status reporting * build: * drop obsolete dir-test * new configure option to disable building of tools * add compatibility options --disable-static and --disable-shared * other: * cleanups and preparatory work * new test images - spec cleanup ==== dejagnu ==== - Adjust license - close-wait-program.patch: Use separate kill command for each pid (bsc#1100206) - Use %license. ==== digikam ==== Subpackages: kipi-plugins kipi-plugins-lang - Require libQt5Sql5-sqlite (boo#1095688) - Use %license ==== gnu-unifont-bitmap-fonts ==== Version update (10.0.07 -> 11.0.02) - unifont 11.0.02: * Additions and updates to various scripts and glyphs, including new scripts included in Unocide 11.0.0 - add upstream signing key and verify signature ==== grub2 ==== Subpackages: grub2-i386-pc grub2-snapper-plugin grub2-systemd-sleep-plugin grub2-x86_64-efi grub2-x86_64-xen - Downgrade libburnia-tools to suggest as minimal system can't afford pulling in tcl/tk and half of the x11 stack (bsc#1102515) * modified grub2.spec - Add grub2-binutils2.31.patch: x86-64: Treat R_X86_64_PLT32 as R_X86_64_PC32. Starting from binutils commit bd7ab16b x86-64 assembler generates R_X86_64_PLT32, instead of R_X86_64_PC32, for 32-bit PC-relative branches. Grub2 should treat R_X86_64_PLT32 as R_X86_64_PC32. - The grubxenarch packages are now architecture-independent. [bsc#953297, grub2.spec, grub2-rpmlintrc] ==== iproute2 ==== Version update (4.16 -> 4.17) - Update to new upstream release 4.17 * use netlink rather than proc and sysfs for tunnels * man: document -json and -pretty options * ip, tc: JSON and color output for more subcommands * bridge: implement JSON and color output * tc: implement color output * rdma: Add batch command support * ss: print skmeminfo for packet sockets * ip: link_gre6.c: Support IP6_TNL_F_ALLOW_LOCAL_REMOTE flag * tc: support the ipt ematch * ip rule: let user see and use protocol keyword * rdma: update device capabilities flags (PCI write end padding) * tc: f_flower: Add support for matching first frag packets * bridge: add option extern_learn * ss: Add support for TIPC socket diag * tipc: introduce command for handling a new 128-bit node identity * tc: add oneline mode * rdma: ad PD, MR, CQ and CM_ID resource tracking information * rdma: Ignore unknown netlink attributes * ip/l2tp: remove offset and peer-offset options * ss: drop slabinfo based statistics * ip: don't lookup interface index until needed * rt_protos: drop old experimental gated names * ip: IFLA_NEW_NETNSID/IFLA_NEW_IFINDEX support * devlink: do not require NETLINK_{CAP,EXT}_ACK * ip: display netns name instead of nsid * ip link: enable to specify a name for the link-netns - rdma-sync-some-IP-headers-with-glibc.patch: fix build on Leap 42.3 and SLE12 - utils-Do-not-reset-family-for-default-any-all-addres.patch: drop (present in 4.17) - adjust-installation-directories-for-openSUSE-SLE.patch: refresh - split-link-and-compile-steps-for-binaries.patch: refresh ==== kernel-source ==== Version update (4.17.13 -> 4.17.14) Subpackages: kernel-default kernel-default-devel kernel-devel kernel-docs kernel-macros kernel-syms - Linux 4.17.14 (bnc#1012628). - jfs: Fix inconsistency between memory allocation and ea_buf->max_size (bnc#1012628). - xfs: validate cached inodes are free when allocated (bnc#1012628). - xfs: don't call xfs_da_shrink_inode with NULL bp (bnc#1012628). - Partially revert "block: fail op_is_write() requests to read-only partitions" (bnc#1012628). - Btrfs: fix file data corruption after cloning a range and fsync (bnc#1012628). - i2c: imx: Fix reinit_completion() use (bnc#1012628). - ring_buffer: tracing: Inherit the tracing setting to next ring buffer (bnc#1012628). - netlink: Don't shift on 64 for ngroups (bnc#1012628). - nohz: Fix missing tick reprogram when interrupting an inline softirq (bnc#1012628). - nohz: Fix local_timer_softirq_pending() (bnc#1012628). - perf/x86/intel/uncore: Fix hardcoded index of Broadwell extra PCI devices (bnc#1012628). - genirq: Make force irq threading setup more robust (bnc#1012628). - jfs: Fix usercopy whitelist for inline inode data (bnc#1012628). - scsi: qla2xxx: Return error when TMF returns (bnc#1012628). - scsi: qla2xxx: Fix ISP recovery on unload (bnc#1012628). - scsi: qla2xxx: Fix driver unload by shutting down chip (bnc#1012628). - scsi: qla2xxx: Fix NPIV deletion by calling wait_for_sess_deletion (bnc#1012628). - scsi: qla2xxx: Fix unintialized List head crash (bnc#1012628). - commit dc49b43 ==== krusader ==== Version update (2.7.0 -> 2.7.1) Subpackages: kio_iso - Update to 2.7.1 * ADDED: Default shortcut for quick selection mode = Ctrl+Shift+S * FIXED: When calculating occupied space of ".." , krusader selects all directories (kde#150247) * FIXED: Bad default in the New Text File dialog (kde#282069) * FIXED: ISO files listing/extracting broken (kde#372023) * FIXED: Details section is empty in 'Do not know which files to compare.' window (kde#383567) * FIXED: Default mode in 'Find in folder' is not preserved (kde#391946) * FIXED: Files fed to listbox (and all other files in virt://) cannot be deleted (kde#394896) * FIXED: Enter key not working when cursor in search bar (kde#394939) * FIXED: The quicksearch bar is still opened after deleting a file (kde#395285) * FIXED: In the Manage User Actions dialog: the tab order is not the expected one (kde#396652) ==== libstorage-ng ==== Version update (4.1.10 -> 4.1.11) Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1 - Translated using Weblate (Slovak) - 4.1.11 ==== make ==== Subpackages: make-lang - Avoid bashisms in spec ==== nut ==== Subpackages: libupsclient1 nut-cgi - Add reproducible.patch to sort input file list to make package build reproducible (boo#1041090) ==== oath-toolkit ==== - gnulib-libio.patch: Update gnulib for libio.h removal ==== qemu ==== Version update (2.12.0 -> 2.12.1) Subpackages: qemu-arm qemu-block-curl qemu-block-dmg qemu-block-gluster qemu-block-iscsi qemu-block-rbd qemu-block-ssh qemu-extra qemu-guest-agent qemu-ipxe qemu-ksm qemu-kvm qemu-lang qemu-ppc qemu-s390 qemu-seabios qemu-sgabios qemu-tools qemu-ui-curses qemu-ui-gtk qemu-ui-sdl qemu-vgabios qemu-x86 - Update to v2.12.1, a stable, (mostly) bug-fix-only release * This update contains new mitigation functionality for CVE-2018-3639 (Speculative Store Bypass) in x86. There are also bug fixes for migration, Intel IOMMU emulation, block layer/image handling, ARM emulation, and various other areas. (Note that a number of 2.12.1 patches were already included by us previously) (CVE-2018-3639 bsc#1092885) * Patches dropped (subsumed by stable update): 0039-device_tree-Increase-FDT_MAX_SIZE-t.patch 0040-vnc-fix-use-after-free.patch 0041-ccid-Fix-dwProtocols-advertisement-.patch 0042-tcg-arm-Fix-memory-barrier-encoding.patch 0043-s390-ccw-force-diag-308-subcode-to-.patch 0044-nbd-client-fix-nbd_negotiate_simple.patch 0045-migration-block-dirty-bitmap-fix-me.patch 0046-nbd-client-Fix-error-messages-durin.patch 0047-nbd-client-Relax-handling-of-large-.patch 0048-qxl-fix-local-renderer-crash.patch 0049-tcg-Limit-the-number-of-ops-in-a-TB.patch 0050-target-arm-Clear-SVE-high-bits-for-.patch 0051-cpus-tcg-fix-never-exiting-loop-on-.patch 0052-s390x-css-disabled-subchannels-cann.patch 0053-pc-bios-s390-ccw-struct-tpi_info-mu.patch 0054-virtio-ccw-common-reset-handler.patch 0055-s390x-ccw-make-sure-all-ccw-devices.patch 0056-blockjob-expose-error-string-via-qu.patch 0058-qemu-io-Use-purely-string-blockdev-.patch 0059-qemu-img-Use-only-string-options-in.patch 0060-nfs-Remove-processed-options-from-Q.patch 0061-i386-define-the-ssbd-CPUID-feature-.patch 0062-i386-Define-the-Virt-SSBD-MSR-and-h.patch 0063-i386-define-the-AMD-virt-ssbd-CPUID.patch 0064-ahci-fix-PxCI-register-race.patch 0065-ccid-card-passthru-fix-regression-i.patch * Patches renamed: 0057-blockjob-Fix-assertion-in-block_job.patch - > 0039-blockjob-Fix-assertion-in-block_job.patch 0066-xen-add-block-resize-support-for-xe.patch - > 0040-xen-add-block-resize-support-for-xe.patch 0067-seccomp-allow-sched_setscheduler-wi.patch - > 0041-seccomp-allow-sched_setscheduler-wi.patch - Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.12 ==== qemu-linux-user ==== Version update (2.12.0 -> 2.12.1) - Update to v2.12.1, a stable, (mostly) bug-fix-only release * This update contains new mitigation functionality for CVE-2018-3639 (Speculative Store Bypass) in x86. There are also bug fixes for migration, Intel IOMMU emulation, block layer/image handling, ARM emulation, and various other areas. (Note that a number of 2.12.1 patches were already included by us previously) (CVE-2018-3639 bsc#1092885) * Patches dropped (subsumed by stable update): 0039-device_tree-Increase-FDT_MAX_SIZE-t.patch 0040-vnc-fix-use-after-free.patch 0041-ccid-Fix-dwProtocols-advertisement-.patch 0042-tcg-arm-Fix-memory-barrier-encoding.patch 0043-s390-ccw-force-diag-308-subcode-to-.patch 0044-nbd-client-fix-nbd_negotiate_simple.patch 0045-migration-block-dirty-bitmap-fix-me.patch 0046-nbd-client-Fix-error-messages-durin.patch 0047-nbd-client-Relax-handling-of-large-.patch 0048-qxl-fix-local-renderer-crash.patch 0049-tcg-Limit-the-number-of-ops-in-a-TB.patch 0050-target-arm-Clear-SVE-high-bits-for-.patch 0051-cpus-tcg-fix-never-exiting-loop-on-.patch 0052-s390x-css-disabled-subchannels-cann.patch 0053-pc-bios-s390-ccw-struct-tpi_info-mu.patch 0054-virtio-ccw-common-reset-handler.patch 0055-s390x-ccw-make-sure-all-ccw-devices.patch 0056-blockjob-expose-error-string-via-qu.patch 0058-qemu-io-Use-purely-string-blockdev-.patch 0059-qemu-img-Use-only-string-options-in.patch 0060-nfs-Remove-processed-options-from-Q.patch 0061-i386-define-the-ssbd-CPUID-feature-.patch 0062-i386-Define-the-Virt-SSBD-MSR-and-h.patch 0063-i386-define-the-AMD-virt-ssbd-CPUID.patch 0064-ahci-fix-PxCI-register-race.patch 0065-ccid-card-passthru-fix-regression-i.patch * Patches renamed: 0057-blockjob-Fix-assertion-in-block_job.patch - > 0039-blockjob-Fix-assertion-in-block_job.patch 0066-xen-add-block-resize-support-for-xe.patch - > 0040-xen-add-block-resize-support-for-xe.patch 0067-seccomp-allow-sched_setscheduler-wi.patch - > 0041-seccomp-allow-sched_setscheduler-wi.patch - Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.12 ==== rubygem-autoprefixer-rails ==== Version update (9.1.0 -> 9.1.1) - updated to version 9.1.1 * Retain `grid-gap` through `@media` (by Bogdan Dolin). * Fix `grid-template` and `@media` (by Bogdan Dolin). * Fix Grid areas searching error (by Bogdan Dolin). * Fix `span X` Grid prefix (by Bogdan Dolin). * Fix `log2` error. ==== rubygem-uglifier ==== Version update (4.1.17 -> 4.1.18) - updated to version 4.1.18 * update UglifyJS to [3.4.7](https://github.com/mishoo/UglifyJS2/compare/v3.4.6...v3.4.7) ==== smp_utils ==== Subpackages: libsmputils1-1 - sysmacros.patch: Include <sys/sysmacros.h> for major/minor/makedev ==== squid ==== Version update (4.1 -> 4.2) - New upstream stable version 4.2: + fix HTTPMSGLOCK missing pointer safety + gcc-8 fixes + fix milliseconds logformats prepend 0s instead of spaces + fix %>ru logging of huge URLs ==== systemd-presets-common-SUSE ==== - Eanble smartd_generate_opts.path: generate new smartd option file if sysconfig variables changes. ==== sysvinit ==== Version update (2.88+ -> 2.90) - Update to sysvinit 2.90 - Remove now upstream patches * sysvinit-2.88+dsf-dostat.patch * sysvinit-2.88+dsf-sulogin.diff * sysvinit-2.88+dsf.tar.bz2 * sysvinit-2.88dsf-scripts2.patch - Port our patches sysvinit-2.88dsf-no-kill.patch becomes sysvinit-2.90-no-kill.patch sysvinit-2.88+dsf.dif becomes sysvinit-2.90.dif ==== tgt ==== - Fixing build issue with "major()" and a pointer comparison warning while I was at it, adding patches: * tgt-include-sys-macros-for-major.patch * tgt-compare-pointer-to-null.patch ==== webkit2gtk3 ==== Version update (2.20.3 -> 2.20.5) Subpackages: libjavascriptcoregtk-4_0-18 libwebkit2gtk-4_0-37 libwebkit2gtk3-lang typelib-1_0-JavaScriptCore-4_0 typelib-1_0-WebKit2-4_0 webkit2gtk-4_0-injected-bundles - Update to version 2.20.5: + Fix rendering artifacts in some web sites due to a bug introduced in 2.20.4. - Update to version 2.20.4: + Fix a crash when leaving accelerated compositing mode. + Fix non-deterministic build failure due to missing JavaScriptCore/JSContextRef.h. + Security fixes: CVE-2018-4261, CVE-2018-4262, CVE-2018-4263, CVE-2018-4264, CVE-2018-4265, CVE-2018-4266, CVE-2018-4267, CVE-2018-4270, CVE-2018-4272, CVE-2018-4273, CVE-2018-4278, CVE-2018-4284. - Drop webkit2gtk3-boo1101999-off-by-one.patch: Fixed upstream. ==== xen ==== Version update (4.10.1_08 -> 4.11.0_02) Subpackages: xen-doc-html xen-libs xen-tools xen-tools-domU - Upstream patches from Jan (bsc#1027519) 5b3f8fa5-port-array_index_nospec-from-Linux.patch 5b4488e7-x86-spec-ctrl-cmdline-handling.patch 5b471517-page_alloc-correct-first_dirty-calc-in-block-merging.patch 5b4c9a60-allow-cpu_down-to-be-called-earlier.patch 5b4db308-SVM-fix-cleanup-svm_inject_event.patch 5b5040c3-cpupools-fix-state-when-downing-a-CPU-failed.patch 5b5040f2-x86-AMD-distinguish-CU-from-HT.patch 5b508775-1-x86-distinguish-CPU-offlining-and-removal.patch 5b508775-2-x86-possibly-bring-up-all-CPUs.patch 5b508775-3-x86-cmdline-opt-to-avoid-use-of-secondary-HTs.patch 5b508ce8-VMX-dont-clobber-dr6-while-debug-state-is-lazy.patch 5b50df16-1-x86-xstate-use-guest-CPUID-policy.patch 5b50df16-2-x86-make-xstate-calculation-errors-more-obvious.patch gcc8-fix-format-warning-on-i586.patch gcc8-fix-array-warning-on-i586.patch - Drop xen.fuzz-_FORTIFY_SOURCE.patch gcc8-fix-warning-on-i586.patch - Update to Xen 4.11.0 FCS (fate#325202, fate#325123) xen-4.11.0-testing-src.tar.bz2 disable-building-pv-shim.patch - Dropped patches 5a33a12f-domctl-improve-locking-during-domain-destruction.patch 5a6703cb-x86-move-invocations-of-hvm_flush_guest_tlbs.patch 5a79d7ed-libxc-packed-initrd-dont-fail-domain-creation.patch 5a9985bd-x86-invpcid-support.patch 5ac72a48-gcc8.patch 5ac72a5f-gcc8.patch 5ac72a64-gcc8.patch 5ac72a69-gcc8.patch 5ac72a6e-gcc8.patch 5ac72a74-gcc8.patch 5ac72a7b-gcc8.patch 5ad4923e-x86-correct-S3-resume-ordering.patch 5ad49293-x86-suppress-BTI-mitigations-around-S3.patch 5ad600d4-x86-pv-introduce-x86emul_read_dr.patch 5ad600d4-x86-pv-introduce-x86emul_write_dr.patch 5ad8c3a7-x86-spec_ctrl-update-retpoline-decision-making.patch 5adda097-x86-HPET-fix-race-triggering-ASSERT.patch 5adda0d5-x86-HVM-never-retain-emulated-insn-cache.patch 5adde9ed-xpti-fix-double-fault-handling.patch 5ae06fad-SVM-fix-intercepts-for-SYS-CALL-ENTER-MSRs.patch 5ae31917-x86-cpuidle-init-stats-lock-once.patch 5aeaeae4-introduce-vcpu_sleep_nosync_locked.patch 5aeaeaf0-sched-fix-races-in-vcpu-migration.patch 5aeb2c57-x86-retval-checks-of-set-guest-trapbounce.patch 5aec7393-1-x86-xpti-avoid-copy.patch 5aec7393-2-x86-xpti-write-cr3.patch 5aec744a-3-x86-xpti-per-domain-flag.patch 5aec744a-4-x86-xpti-use-invpcid.patch 5aec744a-5-x86-xpti-no-global-pages.patch 5aec744a-6-x86-xpti-cr3-valid-flag.patch 5aec744a-7-x86-xpti-pv_guest_cr4_to_real_cr4.patch 5aec744b-8-x86-xpti-cr3-helpers.patch 5aec74a8-9-x86-xpti-use-pcid.patch 5af1daa9-1-x86-traps-fix-dr6-handing-in-DB-handler.patch 5af1daa9-2-x86-pv-move-exception-injection-into-test_all_events.patch 5af1daa9-3-x86-traps-use-IST-for-DB.patch 5af1daa9-4-x86-traps-fix-handling-of-DB-in-hypervisor-context.patch 5af1daa9-x86-HVM-guard-against-bogus-emulator-ioreq-state.patch 5af1daa9-x86-vpt-support-IO-APIC-routed-intr.patch 5af97999-viridian-cpuid-leaf-40000003.patch 5afc13ae-1-x86-read-MSR_ARCH_CAPABILITIES-once.patch 5afc13ae-2-x86-express-Xen-SPEC_CTRL-choice-as-variable.patch 5afc13ae-3-x86-merge-bti_ist_info-use_shadow_spec_ctrl.patch 5afc13ae-4-x86-fold-XEN_IBRS-ALTERNATIVES.patch 5afc13ae-5-x86-rename-bits-of-spec_ctrl-infrastructure.patch 5afc13ae-6-x86-elide-MSR_SPEC_CTRL-handling-in-idle.patch 5afc13ae-7-x86-split-X86_FEATURE_SC_MSR.patch 5afc13ae-8-x86-explicitly-set-Xen-default-SPEC_CTRL.patch 5afc13ae-9-x86-cpuid-improve-guest-policies-for-speculative.patch 5afc13ae-A-x86-introduce-spec-ctrl-cmdline-opt.patch 5b02c786-x86-AMD-mitigations-for-GPZ-SP4.patch 5b02c786-x86-Intel-mitigations-for-GPZ-SP4.patch 5b02c786-x86-msr-virtualise-SPEC_CTRL-SSBD.patch 5b0bc9da-x86-XPTI-fix-S3-resume.patch 5b0d2286-libxc-x86-PV-dont-hand-through-CPUID-leaf-0x80000008.patch 5b0d2d91-x86-suppress-sync-when-XPTI-off.patch 5b0d2dbc-x86-correct-default_xen_spec_ctrl.patch 5b0d2ddc-x86-CPUID-dont-override-tool-stack-hidden-STIBP.patch 5b150ef9-x86-fix-error-handling-of-pv-dr7-shadow.patch 5b21825d-1-x86-support-fully-eager-FPU-context-switching.patch 5b21825d-2-x86-spec-ctrl-mitigations-for-LazyFPU.patch 5b238b92-x86-HVM-account-for-fully-eager-FPU.patch 5b2b7172-x86-EFI-fix-FPU-state-handling-around-runtime-calls.patch 5b31e004-x86-HVM-emul-attempts-FPU-set-fpu_initialised.patch 5b323e3c-x86-EFI-fix-FPU-state-handling-around-runtime-calls.patch 5b34882d-x86-mm-dont-bypass-preemption-checks.patch 5b348874-x86-refine-checks-in-DB-handler.patch 5b348897-libxl-qemu_disk_scsi_drive_string-break-out-common.patch 5b3488a2-libxl-restore-passing-ro-to-qemu-for-SCSI-disks.patch 5b34891a-x86-HVM-dont-cause-NM-to-be-raised.patch 5b348954-x86-guard-against-NM.patch libxl.Add-a-version-check-of-QEMU-for-QMP-commands.patch libxl.LIBXL_DESTROY_TIMEOUT.patch libxl.qmp-Tell-QEMU-about-live-migration-or-snapshot.patch xen_fix_build_with_acpica_20180427_and_new_packages.patch ==== xtables-addons ==== Version update (3.0_k4.17.13_1 -> 3.1_k4.17.14_1) - Update to new upstream release 3.1 [boo#1104749] * Support for Linux 4.18 ==== xterm ==== Subpackages: xterm-bin - xterm-better-fonts.patch: Adjust the defaults fonts a bit so some chinese letters are displayed better (bsc#1089049) ==== yast2-iscsi-client ==== Version update (4.0.1 -> 4.1.0) - Use Yast2::ServiceWidget to manage the service status (part of fate#319428) - 4.1.0 - Fix detection of service current status (bsc#1103681). - 4.0.2 ==== yast2-storage-ng ==== Version update (4.1.3 -> 4.1.4) - Fixed the warning about overwriting a manually edited partition layout. Now it works even after going back and forth in the installer steps (bsc#1055756). - 4.1.4 - Partitioner: display Xen virtual partitions and allow to format and mount them (bsc#1085134). -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org
HI! After update to snapshot 20180815 I cannot connect to local libvirtd with virt-manager anymore (see traceback attached below). It does not ask for root password like it did before. /usr/lib/polkit-1/polkitd seems to be running. Hmm, I'm not sure whether this was still working with the recent snapshots before. Machine was rebooted after zypper dup and connecting to a remote libvirtd via SSH works just fine. There are some more strange things with some VMs but I have to investigate this a bit further. As the same normal user this works: $ virsh -c qemu:///system list ==== AUTHENTICATING FOR org.libvirt.unix.manage ==== System policy prevents management of local virtualized systems Authenticating as: root Password: ==== AUTHENTICATION COMPLETE ==== Id Name State ---------------------------------------------------- [..VM listed here..] Ciao, Michael. ------------------------ traceback virt-manager ------------------------ Unable to connect to libvirt qemu:///system. authentication unavailable: no polkit agent available to authenticate action 'org.libvirt.unix.manage' Libvirt URI is: qemu:///system Traceback (most recent call last): File "/usr/share/virt-manager/virtManager/connection.py", line 1036, in _do_open self._backend.open(self._do_creds_password) File "/usr/share/virt-manager/virtinst/connection.py", line 144, in open open_flags) File "/usr/lib64/python3.6/site-packages/libvirt.py", line 104, in openAuth if ret is None:raise libvirtError('virConnectOpenAuth() failed') libvirt.libvirtError: authentication unavailable: no polkit agent available to authenticate action 'org.libvirt.unix.manage'
Hi This email fits into the category of being better created as a bugreport rather then an email to this list. Cheers On 18/08/18 21:29, Michael Ströder wrote:
HI!
After update to snapshot 20180815 I cannot connect to local libvirtd with virt-manager anymore (see traceback attached below). It does not ask for root password like it did before. /usr/lib/polkit-1/polkitd seems to be running. Hmm, I'm not sure whether this was still working with the recent snapshots before.
Machine was rebooted after zypper dup and connecting to a remote libvirtd via SSH works just fine.
There are some more strange things with some VMs but I have to investigate this a bit further.
As the same normal user this works:
$ virsh -c qemu:///system list ==== AUTHENTICATING FOR org.libvirt.unix.manage ==== System policy prevents management of local virtualized systems Authenticating as: root Password: ==== AUTHENTICATION COMPLETE ==== Id Name State ---------------------------------------------------- [..VM listed here..]
Ciao, Michael.
------------------------ traceback virt-manager ------------------------ Unable to connect to libvirt qemu:///system.
authentication unavailable: no polkit agent available to authenticate action 'org.libvirt.unix.manage'
Libvirt URI is: qemu:///system
Traceback (most recent call last): File "/usr/share/virt-manager/virtManager/connection.py", line 1036, in _do_open self._backend.open(self._do_creds_password) File "/usr/share/virt-manager/virtinst/connection.py", line 144, in open open_flags) File "/usr/lib64/python3.6/site-packages/libvirt.py", line 104, in openAuth if ret is None:raise libvirtError('virConnectOpenAuth() failed') libvirt.libvirtError: authentication unavailable: no polkit agent available to authenticate action 'org.libvirt.unix.manage'
-- Simon Lees (Simotek) http://simotek.net Emergency Update Team keybase.io/simotek SUSE Linux Adelaide Australia, UTC+10:30 GPG Fingerprint: 5B87 DB9D 88DC F606 E489 CEC5 0922 C246 02F0 014B
On samedi, 18 août 2018 13.59:35 h CEST Michael Ströder wrote:
HI!
After update to snapshot 20180815 I cannot connect to local libvirtd with virt-manager anymore (see traceback attached below). It does not ask for root password like it did before. /usr/lib/polkit-1/polkitd seems to be running. Hmm, I'm not sure whether this was still working with the recent snapshots before.
Machine was rebooted after zypper dup and connecting to a remote libvirtd via SSH works just fine.
There are some more strange things with some VMs but I have to investigate this a bit further.
As the same normal user this works:
$ virsh -c qemu:///system list ==== AUTHENTICATING FOR org.libvirt.unix.manage ==== System policy prevents management of local virtualized systems Authenticating as: root Password: ==== AUTHENTICATION COMPLETE ==== Id Name State ---------------------------------------------------- [..VM listed here..]
Ciao, Michael.
------------------------ traceback virt-manager ------------------------ Unable to connect to libvirt qemu:///system.
authentication unavailable: no polkit agent available to authenticate action 'org.libvirt.unix.manage'
Libvirt URI is: qemu:///system
Traceback (most recent call last): File "/usr/share/virt-manager/virtManager/connection.py", line 1036, in _do_open self._backend.open(self._do_creds_password) File "/usr/share/virt-manager/virtinst/connection.py", line 144, in open open_flags) File "/usr/lib64/python3.6/site-packages/libvirt.py", line 104, in openAuth if ret is None:raise libvirtError('virConnectOpenAuth() failed') libvirt.libvirtError: authentication unavailable: no polkit agent available to authenticate action 'org.libvirt.unix.manage'
Hello Michael, thanks for reporting this, as I will need it monday morning I give it a try directly. Starting libvirtd give a chunk of strange errors and warnings journalctl -b -u libvirtd.service --no-pager journalctl -b -u libvirtd.service --no-pager -- Logs begin at Fri 2017-12-22 19:00:55 CET, end at Sat 2018-08-18 16:45:11 CEST. -- systemd[1]: Starting Virtualization daemon... libvirtd[20889]: 2018-08-18 14:45:00.119+0000: 20889: info : libvirt version: 4.6.0 libvirtd[20889]: 2018-08-18 14:45:00.119+0000: 20889: info : hostname: qt-kt libvirtd[20889]: 2018-08-18 14:45:00.119+0000: 20889: warning : netcfIfaceRegister:1275 : Failed to intialize libnetcontrol. Management of interface devices is disabled systemd[1]: Started Virtualization daemon. libvirtd[20889]: 2018-08-18 14:45:00.392+0000: 20909: error : virGetUserID: 1043 : invalid argument: Failed to parse user 'tss' libvirtd[20889]: 2018-08-18 14:45:00.392+0000: 20909: error : virGetGroupID: 1123 : invalid argument: Failed to parse group 'tss' dnsmasq[21214]: started, version 2.78 cachesize 2000 dnsmasq[21214]: compile time options: IPv6 GNU-getopt DBus i18n IDN DHCP DHCPv6 no-Lua TFTP conntrack ipset auth DNSSEC loop-detect inotify dnsmasq-dhcp[21214]: DHCP, IP range 192.168.122.2 -- 192.168.122.254, lease time 1h dnsmasq-dhcp[21214]: DHCP, sockets bound exclusively to interface virbr0 dnsmasq[21214]: reading /etc/resolv.conf dnsmasq[21214]: using nameserver 192.168.50.1#53 dnsmasq[21214]: using nameserver 213.200.217.221#53 dnsmasq[21214]: using nameserver 10.26.8.1#53 dnsmasq[21214]: read /etc/hosts - 34 addresses dnsmasq[21214]: read /var/lib/libvirt/dnsmasq/default.addnhosts - 0 addresses dnsmasq-dhcp[21214]: read /var/lib/libvirt/dnsmasq/default.hostsfile but I can still access to virtuals vm with virsh on command line virsh list --all Id Name State ---------------------------------------------------- - leap-test shut off - win764 shut off Also a test with virt-manager connecting to local qemu still ask the root password (policy ok). So mainly not a "pure" TW problem but some configuration on your side perhaps having a look at all those rpmnew rpmsave in /etc ? I guess if more support is needed, to not bother people, the thread should move to the new o-support ml ;-) -- Bruno Friedmann Ioda-Net Sàrl www.ioda-net.ch Bareos Partner, openSUSE Member, fsfe supporter GPG KEY : D5C9B751C4653227 irc: tigerfoot -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org
participants (4)
-
Bruno Friedmann
-
Dominique Leuenberger
-
Michael Ströder
-
Simon Lees