openSUSE Kubic
Threads by month
- ----- 2024 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2023 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2022 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2021 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2020 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2019 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2018 -----
- December
- November
- October
- September
- August
December 2019
- 6 participants
- 26 discussions
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=1&version=T…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
patterns-base
=== Details ===
==== patterns-base ====
Subpackages: patterns-base-apparmor patterns-base-minimal_base
- Drop Obsoletes: pattern() = readonly_root_tools: RPM only honors
obsoletes against package names, so this obsoletes is in fact
useless. WithRPM 4.15, there is a syntax check which even
disallows Obsoletes against non-valid names.
--
To unsubscribe, e-mail: opensuse-kubic+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-kubic+owner(a)opensuse.org
1
0
Have a few questions around possible deployment options ...
a) Can one effectively do a multi-arch cluster deployment, say some
x86_64 and some aarch64 nodes?
- this might be relevant mostly to have designated (labeled) worker
nodes of the respective variety for targeted workloads
b) Parallel to above, would it be possible, given the kubeadm-based
approach to include a worker node based on another Linux (with
Kubernetes installed) distribution?
- as above, this might enable usage of other enabled devices like
Jetson/RPi4 which don't yet have openSUSE images available
c) From the https://en.opensuse.org/Kubic:kubeadm wiki page, it cites
being able to have a single master node (and untaint to allow workload
scheduling there). For edge computing (aka gateways), this might be a
quite valid usage scenario. Other than potential resource conflicts of
such a single node "cluster", any other considerations/caveats?
And a couple of issues ...
1) on the same wiki page cited above, for Cilium it cites using
/usr/share/k8s-yaml/cilium/cilium.yaml but the file currently residing
there is /usr/share/k8s-yaml/cilium/quick-install.yaml. Is this the
correct one to now use?
2) for some reason, all of the nodes in a recent deployed cluster show
Status = NotReady (which may be related to previously listed issue and
my assumption to use the file in that directory), since kubectl
describe node <name> shows an error ... "Missing CNI default network"
Thanks for any help / guidance
--
To unsubscribe, e-mail: opensuse-kubic+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-kubic+owner(a)opensuse.org
3
3
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
cloud-init
cyrus-sasl
gpg2 (2.2.17 -> 2.2.18)
hwdata (0.329 -> 0.330)
libnftnl (1.1.4 -> 1.1.5)
libsolv (0.7.7 -> 0.7.9)
libxml2 (2.9.9 -> 2.9.10)
libxslt (1.1.33 -> 1.1.34)
libzypp (17.15.0 -> 17.17.0)
nano (4.5 -> 4.6)
openssl
perl
permissions (1550_20191118 -> 1550_20191205)
python-PyYAML (5.1.2 -> 5.2)
read-only-root-fs (1.0+git20191112.42add9e -> 1.0+git20191203.3f7cc07)
sssd (2.2.0 -> 2.2.2)
tallow (19+git20191104.5dfb982 -> 19+git20191106.4b071b0)
transactional-update (2.17 -> 2.20)
vim (8.1.2233 -> 8.1.2383)
zypper (1.14.32 -> 1.14.33)
=== Details ===
==== cloud-init ====
- Add cloud-init-proper-ipv6-setting.patch (bsc#1156139)
+ Set proper IPv6 interface variable in ifcfg file
==== cyrus-sasl ====
Subpackages: cyrus-sasl-gssapi libsasl2-3
- added backport-patch cyrus-sasl-bug587.patch which fixes
off-by-one error in _sasl_add_string function
(see https://github.com/cyrusimap/cyrus-sasl/issues/587)
==== gpg2 ====
Version update (2.2.17 -> 2.2.18)
- Update to 2.2.18 [bsc#1157900, CVE-2019-14855]
* gpg: Changed the way keys are detected on a smartcards; this
allows the use of non-OpenPGP cards. In the case of a not very
likely regression the new option --use-only-openpgp-card is
available. [#4681]
* gpg: The commands --full-gen-key and --quick-gen-key now allow
direct key generation from supported cards. [#4681]
* gpg: Prepare against chosen-prefix SHA-1 collisions in key
signatures. This change removes all SHA-1 based key signature
newer than 2019-01-19 from the web-of-trust. Note that this
includes all key signature created with dsa1024 keys. The new
option --allow-weak-key-signatues can be used to override the new
and safer behaviour. [#4755,CVE-2019-14855]
* gpg: Improve performance for import of large keyblocks. [#4592]
* gpg: Implement a keybox compression run. [#4644]
* gpg: Show warnings from dirmngr about redirect and certificate
problems (details require --verbose as usual).
* gpg: Allow to pass the empty string for the passphrase if the
'--passphase=' syntax is used. [#4633]
* gpg: Fix printing of the KDF object attributes.
* gpg: Avoid surprises with --locate-external-key and certain
- -auto-key-locate settings. [#4662]
* gpg: Improve selection of best matching key. [#4713]
* gpg: Delete key binding signature when deletring a subkey.
[#4665,#4457]
* gpg: Fix a potential loss of key sigantures during import with
self-sigs-only active. [#4628]
* gpg: Silence "marked as ultimately trusted" diagnostics if
option --quiet is used. [#4634]
* gpg: Silence some diagnostics during in key listsing even with
option --verbose. [#4627]
* gpg, gpgsm: Change parsing of agent's pkdecrypt results. [#4652]
* gpgsm: Support AES-256 keys.
* gpgsm: Fix a bug in triggering a keybox compression run if
- -faked-system-time is used.
* dirmngr: System CA certificates are no longer used for the SKS
pool if GNUTLS instead of NTBTLS is used as TLS library. [#4594]
* dirmngr: On Windows detect usability of IPv4 and IPv6 interfaces
to avoid long timeouts. [#4165]
* scd: Fix BWI value for APDU level transfers to make Gemalto Ezio
Shield and Trustica Cryptoucan work. [#4654,#4566]
* wkd: gpg-wks-client --install-key now installs the required policy
file.
- Rebase patches:
* gnupg-2.2.8-files-are-digests.patch
* gnupg-add_legacy_FIPS_mode_option.patch
==== hwdata ====
Version update (0.329 -> 0.330)
- Update to version 0.330:
* Updated pci, usb and vendor ids.
==== libnftnl ====
Version update (1.1.4 -> 1.1.5)
- Update to release 1.1.5
* flowtable: add support for handle attribute
* obj/ct_timeout: Avoid array overrun in timeout_parse_attr_data()
==== libsolv ====
Version update (0.7.7 -> 0.7.9)
- support conda constrains dependencies
- bump version to 0.7.9
- support arch<->noarch package changes when creating patch
conflicts from the updateinfo data
- support for SOLVER_BLACKLIST jobs that block the installation
of matched packages unless they are directly selected by an
SOLVER_INSTALL job
- libsolv now also parses the patch status in the updateinfo
parser
- new solvable_matchessolvable() function
- bump version to 0.7.8
==== libxml2 ====
Version update (2.9.9 -> 2.9.10)
Subpackages: libxml2-2 libxml2-tools
- Since libxml2-2.9.10 perl-XML-LibXSLT fails to build: [bsc#1157450]
* Revert upstream commit to make xmlFreeNodeList non-recursive
https://github.com/GNOME/libxml2/commit/0762c9b69ba01628f72eada1c64ff3d361f…
- Add patch libxml2-xmlFreeNodeList-recursive.patch
- Version update to 2.9.10:
* Portability:
+ Fix exponent digits when running tests under old MSVC
+ Work around buggy ceil() function on AIX
+ Don't call printf with NULL string in runtest.c
+ Switched from unsigned long to ptrdiff_t in parser.c
+ timsort.h: support older GCCs
+ Make configure.ac work with older pkg-config
* Bug Fixes:
+ Fix for conditional sections at end of document
+ Make sure that Python tests exit with error code
+ Audit memory error handling in xpath.c
+ Fix error code in xmlTextWriterStartDocument
+ Fix integer overflow when counting written bytes
+ Fix uninitialized memory access in HTML parser
+ Fix memory leak in xmlSchemaValAtomicType
+ Disallow conditional sections in internal subset
+ Fix use-after-free in xmlTextReaderFreeNodeList
+ Fix Regextests
+ Fix empty branch in regex
+ Fix integer overflow in entity recursion check
+ Don't read external entities or XIncludes from stdin
+ Fix Schema determinism check of ##other namespaces
+ Fix potential null deref in xmlSchemaIDCFillNodeTables
+ Fix potential memory leak in xmlBufBackToBuffer
+ Fix error message when processing XIncludes with fallbacks
+ Fix memory leak in xmlRegEpxFromParse
+ 14:00 is a valid timezone for xs:dateTime
+ Fix memory leak in xmlParseBalancedChunkMemoryRecover
+ Fix potential null deref in xmlRelaxNGParsePatterns
+ Misleading error message with xs:{min|max}Inclusive
+ Fix memory leak in xmlXIncludeLoadTxt
+ Partial fix for comparison of xs:durations
+ Fix null deref in xmlreader buffer
+ Fix unability to RelaxNG-validate grammar with choice-based name class
+ Fix unability to validate ambiguously constructed interleave for RelaxNG
+ Fix possible null dereference in xmlXPathIdFunction
+ fix memory leak in xmlAllocOutputBuffer
+ Fix unsigned int overflow
+ dict.h: gcc 2.95 doesn't allow multiple storage classes
+ Fix another code path in xmlParseQName
+ Make sure that xmlParseQName returns NULL in error case
+ Fix build without reader but with pattern
+ Fix memory leak in xmlAllocOutputBufferInternal error path
+ Fix unsigned integer overflow
+ Fix return value of xmlOutputBufferWrite
+ Fix parser termination from "Double hyphen within comment" error
+ Fix call stack overflow in xmlFreePattern
+ Fix null deref in previous commit
+ Fix memory leaks in xmlXPathParseNameComplex error paths
+ Check for integer overflow in xmlXPtrEvalChildSeq
+ Fix xmllint dump of XPath namespace nodes
+ Fix float casts in xmlXPathSubstringFunction
+ Fix null deref in xmlregexp error path
+ Fix null pointer dereference in xmlTextReaderReadOuterXml
+ Fix memory leaks in xmlParseStartTag2 error paths
+ Fix memory leak in xmlSAX2StartElement
+ Fix commit "Memory leak in xmlFreeID (xmlreader.c)"
+ Fix NULL pointer deref in xmlTextReaderValidateEntity
+ Memory leak in xmlFreeTextReader
+ Memory leak in xmlFreeID (xmlreader.c)
* Improvements:
+ Propagate memory errors in valuePush
+ Propagate memory errors in xmlXPathCompExprAdd
+ Make xmlFreeDocElementContent non-recursive
+ Avoid ignored attribute warnings under GCC
+ Make xmlDumpElementContent non-recursive
+ Make apibuild.py ignore ATTRIBUTE_NO_SANITIZE
+ Mark xmlExp* symbols as removed
+ Make xmlParseConditionalSections non-recursive
+ Adjust expected error in Python tests
+ Make xmlTextReaderFreeNodeList non-recursive
+ Make xmlFreeNodeList non-recursive
+ Make xmlParseContent and xmlParseElement non-recursive
+ Remove executable bit from non-executable files
+ Fix expected output of test/schemas/any4
+ Optimize build instructions in README
+ xml2-config.in: Output CFLAGS and LIBS on the same line
+ xml2-config: Add a --dynamic switch to print only shared libraries
+ Annotate functions with __attribute__((no_sanitize))
+ Fix warnings when compiling without reader or push parser
+ Remove unused member `doc` in xmlSaveCtxt
+ Limit recursion depth in xmlXPathCompOpEvalPredicate
+ Remove -Wno-array-bounds
+ Remove unreachable code in xmlXPathCountFunction
+ Improve XPath predicate and filter evaluation
+ Limit recursion depth in xmlXPathOptimizeExpression
+ Disable hash randomization when fuzzing
+ Optional recursion limit when parsing XPath expressions
+ Optional recursion limit when evaluating XPath expressions
+ Use break statements in xmlXPathCompOpEval
+ Optional XPath operation limit
+ Fix compilation with --with-minimum
+ Check XPath stack after calling functions
+ Remove debug printf in xmlreader.c
+ Always define LIBXML_THREAD_ENABLED when enabled
+ Fix unused function warning in testapi.c
+ Remove unneeded function pointer casts
+ Fix -Wcast-function-type warnings (GCC 8)
+ Fix -Wformat-truncation warnings (GCC 8)
* Cleanups:
+ Rebuild docs
+ Disable xmlExp regex code
+ Remove redundant code in xmlRelaxNGValidateState
+ Remove redundant code in xmlXPathCompRelationalExpr
- Rebase patch fix-perl.diff
==== libxslt ====
Version update (1.1.33 -> 1.1.34)
- Update to 1.1.34: Oct 30 2019
* Documentation:
- Fix EXSLT web pages, Regenerate web pages
- Fix Git link in news.html
- Minor documentation fixes after recent changes
- Regenerate symbols and API docs
- Regenerate EXSLT website
* Portability:
- Remove stubs when compiling without debugger or profiler
- configure.ac: Invoke PKG_CHECK_MODULES for building shared libraries
- configure.ac: Conditionally determine whether xml2-config should pass
shared libraries or static libraries
- xslt-config.in: Fix broken --prefix=DIR support
- libexslt.pc.in: Do not expose private library dependencies unless invoked
- libxslt.pc.in: Do not expose private library dependencies unless invoked
- Fix -Wformat-overflow warning (GCC 9)
- Stop including ansidecl.h
- Remove WIN32_EXTRA_* variables
- Build without winsock
* Bug Fixes:
- xsl:template without name and match attributes should not be allowed
- Make sure that Python tests exit with error code
- Improve handling of invalid UTF-8 in format-number
- Fix dangling pointer in xsltCopyText
- Fix memory leak in pattern compilation error path
- Fix uninitialized read with UTF-8 grouping chars
- Fix integer overflow in FORMAT_GYEAR
- Fix performance regression with xsl:number
- Backup XPath context node in xsltInitCtxtKey
- Fix unsigned integer overflow in date.c
- Fix insertion of xsl:fallback content
- Avoid quadratic behavior in xsltSaveResultTo
- Fix numbering in non-Latin scripts
- Fix uninitialized read of xsl:number token
- Fix integer overflow in _exsltDateDayInWeek
- Rework xsltAttrVT allocation
- Fix check of xsltTestCompMatch return value
- Fix security framework bypass
- Use xmlNewTextChild in EXSLT dyn:map
- Fix float casts in exsltDateDuration
- Always set context node before calling XPath iterators
- Fix attribute precedence with xsl:use-attribute-sets
- Backup context node in exsltFuncFunctionFunction
- Initialize ctxt->output before evaluating global vars
- Fix memory leak in EXSLT functions error path
* Improvements:
- Fix -Wimplicit-fallthrough warnings
- Adjust number of API index pages
- Make xsltCompileRelativePathPattern non-recursive
- Check that crypto:rc4_decrypt produces valid UTF-8
- Avoid recursion in keys.c:skipPredicate
- xslt-config.in: Simply handling of $all_flags
- xslt-config.in: Add a --dynamic option to --libs
- xslt-config.in: Simplify basic library handling
- xslt-config.in: Remove unused variable
- xslt-config: Simply handling of --cflags
- Improve fuzzers
- Always reuse XPath context
- Compile with -Wextra
- Make profiler support optional
- Hide unused code when compiling without debugger
- Reorganize fuzzing code
- Optional operation limit
- Improve seed corpus and dictionary
- Reuse XPath context when compiling stylesheets
- Reuse XPath context in dyn:map
- Reuse XPath context in saxon:expression
- Add libFuzzer targets
- Adjust error message in expected test output
- Change bug tracker URL
- Change git repo URL
- Regenerate NEWS
- Fix misleading indentation in security.c
* Cleanups:
- Remove empty TODO file
- Remove generated file libxsltclass.txt from version control
- Rebuild docs
- Rebase patch libxslt-config-fixes.patch
- Remove patches fixed upstream:
* libxslt-CVE-2019-11068.patch
* libxslt-CVE-2019-13117.patch
* libxslt-CVE-2019-13118.patch
* libxslt-CVE-2019-18197.patch
==== libzypp ====
Version update (17.15.0 -> 17.17.0)
- Introduce PurgeKernels class (bsc#1155198)
Adds libzypp API to mark all obsolete kernels according to the
existing purge-kernel script rules.
- Add solver jobs for retracted packages and ptfs.
Support for ptf packages and retract ed patches.
- Do not enforce 'en' being in RequestedLocales (bsc#1155678)
If the user decides to have a system without explicit language
support he may do so.
- Pass correct posttrans script argument (fixes #190)
- BuildRequires: libsolv-devel >= 0.7.8.
- version 17.17.0 (12)
- Expose new libsolv API via C++ counterparts
(openSUSE/zypper#214)
- BuildRequires: libsolv-devel >= 0.7.7
- version 17.16.0 (12)
==== nano ====
Version update (4.5 -> 4.6)
- update to 4.6:
* re-introduce the formatter command (M-F)
* ^T will try to run 'hunspell' before 'spell', because it checks
spelling for the locale's language and understands UTF-8
* Multiple errors or warnings on startup will no longer slow nano
down but will be indicated on the status bar with trailing dots
==== openssl ====
- Remove Obsoletes: pkgconfig(*): Only package names can be
obsoleted. Until RPM 4.15, those lines were simply ineffective
and being ignored, but with RPM 4.15 they result in an error.
==== perl ====
Subpackages: perl-base
- Add perl-Adapt-Configure-to-GCC-version-10.patch in order
to fix boo#1158254.
==== permissions ====
Version update (1550_20191118 -> 1550_20191205)
Subpackages: chkstat permissions-config
- Update to version 20191205:
* fix privilege escalation through untrusted symlinks (bsc#1150734,
CVE-2019-3690)
- Update to version 20191122:
* faxq-helper: correct "secure" permission for trusted group (bsc#1157498)
==== python-PyYAML ====
Version update (5.1.2 -> 5.2)
- update to 5.2
* A more flexible fix for custom tag constructors
* Change default loader for yaml.add_constructor
* Change default loader for add_implicit_resolver, add_path_resolver
* Move constructor for object/apply to UnsafeConstructor
* Fix logic for quoting special characters
==== read-only-root-fs ====
Version update (1.0+git20191112.42add9e -> 1.0+git20191203.3f7cc07)
- Update to version 1.0+git20191203.3f7cc07:
* Workaround /var being RO during systemd-journal-flush (boo#1156421)
==== sssd ====
Version update (2.2.0 -> 2.2.2)
Subpackages: libsss_certmap0 libsss_idmap0 libsss_nss_idmap0 sssd-krb5-common sssd-ldap
- Update to release 2.2.2
* New options were added which allow sssd-kcm to handle bigger
data. See manual pages for max_ccaches, max_uid_caches and
max_ccache_size.
* SSSD can now automatically refresh cached user data from
subdomains in IPA/AD trust.
* Fixed issue with SSSD hanging when connecting to
non-responsive server with ldaps://.
* SSSD is now restarted by systemd after crashes.
==== tallow ====
Version update (19+git20191104.5dfb982 -> 19+git20191106.4b071b0)
- 0001-Add-extra-path-for-firewall-cmd.patch: firewall-cmd can be
in a different path than ipset/iptables
- Update to version 19+git20191106.4b071b0:
* Need configure in this workflow.
* Fix dependency.
* Add github workflow integration.
==== transactional-update ====
Version update (2.17 -> 2.20)
Subpackages: transactional-update-zypp-config
- Update to version 2.20
- Add the option `--continue` to extend an existing snapshot. This can be
used to perform multiple operations before rebooting into the new state.
[gh#openSUSE/transactional-update#16]
- Make sure the dracut service to print warnings on /etc overlay conflicts
also runs in the pre-made images.
- Add "none" reboot method
- Remove conflicting overlay artifacts in case an existing overlay directory
will be reused
==== vim ====
Version update (8.1.2233 -> 8.1.2383)
Subpackages: vim-data-common
- Updated to version 8.1.2383, fixes the following problems
+ refreshed patches: vim-7.3-help_tags.patch
vim-7.3-name_vimrc.patch
vim-8.1.0297-dump3.patch
* Cannot get the Vim command line arguments.
* get_short_pathname() fails depending on encoding.
* "C" with 'virtualedit' set does not include multi-byte char.
* Ml_get error if pattern matches beyond last line.
* Mode() result after usign "r" depends on whether CURSOR_SHAPE is
defined. (Christian Brabandt)
* Error in docs tags goes unnoticed.
* Popup window width changes when scrolling.
* Match highlight does not combine with 'wincolor'.
* Creating docs tags uses user preferences. (Tony Mechelynck)
* 'wrapscan' is not used for "gn".
* Third character of 'listchars' tab shows in wrong place when 'breakindent'
is set.
* Some tests are still in old style.
* "make vimtags" does not work in runtime/doc.
* CTRL-W dot does not work in a terminal when modifyOtherKeys is enabled.
* "make vimtags" does not print any message.
* CTRL-U and CTRL-D don't work in popup window.
* ":term command" may not work without a shell.
* Compiler warning for int size.
* Using "which" to check for an executable is not reliable.
* May get hit-enter prompt after entering a number. (Malcolm Rowe)
* Running tests may leave XfakeHOME behind.
* With modifyOtherKeys set 'noesckeys' doesn't work. (James McCoy)
* Unpack assignment in function not recognized.
* 'noesckeys' test fails in GUI.
* There are two test files for :let.
* When popup with "botleft" does not fit it flips incorrectly.
* Position unknown for a mouse click in a popup window.
* Compiler warning for uninitialized variable. (Tony Mechelynck)
* Spell file flag zero is not recognized.
* Tags file with very long line stops using binary search.
* "gf" is not tested in Visual mode.
* Build error if FEAT_TAG_BINS is not defined. (John Marriott)
* Test may hang at more prompt.
* Wrong default when "pos" is changed with popup_atcursor().
* Newlines in 'balloonexpr' result only work in the GUI.
* Using "seesion" looks like a mistake.
* Terminal window is not updated when info popup changes.
* Using "cd" with "exe" may fail.
* Computation of highlight attributes is too complicated.
* Crash when passing partial to substitute().
* 'showbreak' cannot be set for one window.
* Crash when passing many arguments through a partial. (Andy Massimino)
* Missed on use of p_sbr.
* Compiler warning for unused variable. (Tony Mechelynck)
* Padding in structures wastes memory.
* Using border highlight in popup window leaks memory.
* Using EndOfBuffer highlight in popup does not look good.
* Not using all space when popup with "topleft" flips to above.
* After :diffsplit closing the window does not disable diff.
* Autocommand test fails.
* Memory leak when executing command in a terminal.
* v:mouse_winid not set on click in popup window.
* Join adds trailing space when second line is empty. (Brennan Vincent)
* Cursor position wrong when characters are concealed and asearch causes
a scroll.
* If buffer of popup is in another window cursorline sign shows.
* Text properties are not combined with syntax by default.
* The ex_vimgrep() function is too long.
* Missing part of 8.1.2296.
* ConPTY in MS-Windows 1909 is still wrong.
* Redraw breaks going through list of popup windows.
* :lockmarks does not work for '[ and '].
* Cursor in wrong position after horizontal scroll.
* Cannot get the mouse position when getting a mouse click.
* No warning for wrong entry in translations.
* Double and triple clicks are not tested.
* Positioning popup doesn't work for buffer-local textprop.
* Deleting text before zero-width textprop removes it.
* Compiler warning for argument type.
* No proper test for directory changes in quickfix.
* Warning for missing function prototype.
* "line:" field in tags file not used.
* Debugging where a delay comes from is not easy.
* vi' sometimes does not select anything.
* Not always using the right window when jumping to an error.
* FORTIFY_SOURCE can also be present in CPPFLAGS.
* No test for spell affix file with flag on suffix.
* Compiler warning for int size.
* Insufficient test coverage for quickfix.
* Cannot select all text with the mouse. (John Marriott)
* Quickfix test fails in very big terminal.
* Width of scrollbar in popup menu not taken into account.
* Crash when using balloon with empty line.
* Cannot parse a date/time string.
* Cannot build with Hangul input.
* A few hangul input pieces remain.
* Mouse multiple click test is a bit flaky.
* vi' does not always work when 'selection' is exclusive.
* The option.c file is still very big.
* Missing file in refactoring.
* With modifyOtherKeys CTRL-^ doesn't work.
* Possible NULL pointer dereference in popup_locate(). (Coverity)
* Error message for function arguments may use NULL pointer. (Coverity)
* When an expr mapping moves the cursor it is not restored.
* Double-click time sometimes miscomputed.
* Using Visual mark sith :s gives E20 if not set.
* Insufficient testing for quickfix.
* Quickfix test fails under valgrind and asan.
* Not so easy to interrupt a script programatically.
* Random number generator in Vim script is slow.
* Using time() for srand() is not very random.
* .cjs files are not recognized as Javascript.
* CTRL-R CTRL-R doesn't work with modifyOtherKeys.
* :const cannot be followed by "| endif".
* :lockvar and :unlockvar cannot be followed by "| endif".
* Other text for CTRL-V in Insert mode with modifyOtherKeys.
* 'wincolor' not used for > for not fitting double width char. Also:
popup drawn on right half of double width character looks wrong.
* rand() does not use the best algorithm.
* No test with wrong argument for rand().
* Cannot build without FEAT_FLOAT. (John Marriott)
* Quickfix test coverage can still be improved.
* Cannot place signs in a popup window. (Maxim Kim)
* ml_get error when accessing Visual area in 'statusline'.
* Missing tests for recent popupwin changes.
* Using old C style comments.
* Registers are not sufficiently tested.
* Using old C style comments.
* Cannot build with quickfix and without text properties.
* Build problems on VMS.
* FEAT_TEXT_PROP is a confusing name.
* Cannot build with +popupwin but without +quickfix. (John Marriott)
* Unused parts of libvterm are included.
* No suffucient testing for registers.
* Preprocessor indents are incorrect.
* GUI: when losing focus a pending operator is executed.
* Using old C style comments.
* Not all register related code is covered by tests.
==== zypper ====
Version update (1.14.32 -> 1.14.33)
Subpackages: zypper-needs-restarting
- Introduce purge-kernels command (bsc#1155198)
Adds a new zypper command to cleanup all obsolete kernels as
configured by the user.
- Request root privs for zypper addlocale and removelocale.
- Load only target resolvables for removelocale.
- Load only target resolvables for zypper rm (bsc#1157377)
- Fix broken search by filelist (bsc#1135114 )
- zypper-log: Replace python by a bash script (fixes#304,
fixes#306, bsc#1156158)
- locales: do not sort out requested locales which are not
available (bsc#1155678)
- list_patches_by_issue: rewrite table output and add xml output
(bsc#1154805)
Prevent listing duplicate matches in tables. XML result is
provided within the new <list-patches-byissue> element.
- list-patches: XML add patch <issue-date> and <issue-list>
(bsc#1154805)
- Fix zypper lp --cve/bugzilla/issue options (bsc#1155298)
- Always execute commit when adding/removing locales (fixes
bsc#1155205)
- man page: fix description of --table-style,-s (bsc#1154804)
- Provide reverse search in zypper (fixes #214)
This patch adds a new set of switches to zypper to support
searching reverse dependencies for a package or a set of packages.
- BuildRequires: libzypp-devel >= 17.16.1.
- version 1.14.33
--
To unsubscribe, e-mail: opensuse-kubic+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-kubic+owner(a)opensuse.org
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=1&version=T…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
ceph (14.2.4.373+gc3e67ed133 -> 15.0.0.7456+ge089cead79)
cloud-init
cyrus-sasl
gpg2 (2.2.17 -> 2.2.18)
hwdata (0.329 -> 0.330)
libnftnl (1.1.4 -> 1.1.5)
libsolv (0.7.7 -> 0.7.9)
libxml2 (2.9.9 -> 2.9.10)
libxslt (1.1.33 -> 1.1.34)
libzypp (17.15.0 -> 17.17.0)
nano (4.5 -> 4.6)
openssl
perl
permissions (1550_20191118 -> 1550_20191205)
python-PyYAML (5.1.2 -> 5.2)
python-psutil (5.6.5 -> 5.6.7)
python-simplejson (3.16.1 -> 3.17.0)
rdma-core
read-only-root-fs (1.0+git20191112.42add9e -> 1.0+git20191203.3f7cc07)
rook (1.1.6+git0.g91d6f635 -> 1.1.7+git0.g50c6ca1f)
salt (2019.2.0 -> 2019.2.2)
sssd (2.2.0 -> 2.2.2)
tallow (19+git20191104.5dfb982 -> 19+git20191106.4b071b0)
transactional-update (2.17 -> 2.20)
vim (8.1.2233 -> 8.1.2383)
zypper (1.14.32 -> 1.14.33)
=== Details ===
==== ceph ====
Version update (14.2.4.373+gc3e67ed133 -> 15.0.0.7456+ge089cead79)
Subpackages: ceph-common libcephfs2 librados2 libradosstriper1 librbd1 librgw2 python3-ceph-argparse python3-cephfs python3-rados python3-rbd python3-rgw
- Update to 15.0.0-7456-ge089cead79:
+ rebase on tip of upstream master, SHA1 e4b3036422df70e3c911240e3bba6a8bd3e9c792
- Update to 15.0.0-7219-g353896020b:
+ rebase on tip of upstream master, SHA1 7ffb5d9e79207da81af933f4e95655e16558c739
- Update to 14.2.4-386-g73475e3ee1:
+ os/bluestore: consolidate extents from the same device only (bsc#1156282)
- Update to 14.2.4-378-gac1bcd6547:
+ qa/suse: move dashboard-e2e to tier3 and add debugging code to
src/script/dashboard_e2e_tests.sh
==== cloud-init ====
- Add cloud-init-proper-ipv6-setting.patch (bsc#1156139)
+ Set proper IPv6 interface variable in ifcfg file
==== cyrus-sasl ====
Subpackages: cyrus-sasl-gssapi libsasl2-3
- added backport-patch cyrus-sasl-bug587.patch which fixes
off-by-one error in _sasl_add_string function
(see https://github.com/cyrusimap/cyrus-sasl/issues/587)
==== gpg2 ====
Version update (2.2.17 -> 2.2.18)
- Update to 2.2.18 [bsc#1157900, CVE-2019-14855]
* gpg: Changed the way keys are detected on a smartcards; this
allows the use of non-OpenPGP cards. In the case of a not very
likely regression the new option --use-only-openpgp-card is
available. [#4681]
* gpg: The commands --full-gen-key and --quick-gen-key now allow
direct key generation from supported cards. [#4681]
* gpg: Prepare against chosen-prefix SHA-1 collisions in key
signatures. This change removes all SHA-1 based key signature
newer than 2019-01-19 from the web-of-trust. Note that this
includes all key signature created with dsa1024 keys. The new
option --allow-weak-key-signatues can be used to override the new
and safer behaviour. [#4755,CVE-2019-14855]
* gpg: Improve performance for import of large keyblocks. [#4592]
* gpg: Implement a keybox compression run. [#4644]
* gpg: Show warnings from dirmngr about redirect and certificate
problems (details require --verbose as usual).
* gpg: Allow to pass the empty string for the passphrase if the
'--passphase=' syntax is used. [#4633]
* gpg: Fix printing of the KDF object attributes.
* gpg: Avoid surprises with --locate-external-key and certain
- -auto-key-locate settings. [#4662]
* gpg: Improve selection of best matching key. [#4713]
* gpg: Delete key binding signature when deletring a subkey.
[#4665,#4457]
* gpg: Fix a potential loss of key sigantures during import with
self-sigs-only active. [#4628]
* gpg: Silence "marked as ultimately trusted" diagnostics if
option --quiet is used. [#4634]
* gpg: Silence some diagnostics during in key listsing even with
option --verbose. [#4627]
* gpg, gpgsm: Change parsing of agent's pkdecrypt results. [#4652]
* gpgsm: Support AES-256 keys.
* gpgsm: Fix a bug in triggering a keybox compression run if
- -faked-system-time is used.
* dirmngr: System CA certificates are no longer used for the SKS
pool if GNUTLS instead of NTBTLS is used as TLS library. [#4594]
* dirmngr: On Windows detect usability of IPv4 and IPv6 interfaces
to avoid long timeouts. [#4165]
* scd: Fix BWI value for APDU level transfers to make Gemalto Ezio
Shield and Trustica Cryptoucan work. [#4654,#4566]
* wkd: gpg-wks-client --install-key now installs the required policy
file.
- Rebase patches:
* gnupg-2.2.8-files-are-digests.patch
* gnupg-add_legacy_FIPS_mode_option.patch
==== hwdata ====
Version update (0.329 -> 0.330)
- Update to version 0.330:
* Updated pci, usb and vendor ids.
==== libnftnl ====
Version update (1.1.4 -> 1.1.5)
- Update to release 1.1.5
* flowtable: add support for handle attribute
* obj/ct_timeout: Avoid array overrun in timeout_parse_attr_data()
==== libsolv ====
Version update (0.7.7 -> 0.7.9)
- support conda constrains dependencies
- bump version to 0.7.9
- support arch<->noarch package changes when creating patch
conflicts from the updateinfo data
- support for SOLVER_BLACKLIST jobs that block the installation
of matched packages unless they are directly selected by an
SOLVER_INSTALL job
- libsolv now also parses the patch status in the updateinfo
parser
- new solvable_matchessolvable() function
- bump version to 0.7.8
==== libxml2 ====
Version update (2.9.9 -> 2.9.10)
Subpackages: libxml2-2 libxml2-tools
- Since libxml2-2.9.10 perl-XML-LibXSLT fails to build: [bsc#1157450]
* Revert upstream commit to make xmlFreeNodeList non-recursive
https://github.com/GNOME/libxml2/commit/0762c9b69ba01628f72eada1c64ff3d361f…
- Add patch libxml2-xmlFreeNodeList-recursive.patch
- Version update to 2.9.10:
* Portability:
+ Fix exponent digits when running tests under old MSVC
+ Work around buggy ceil() function on AIX
+ Don't call printf with NULL string in runtest.c
+ Switched from unsigned long to ptrdiff_t in parser.c
+ timsort.h: support older GCCs
+ Make configure.ac work with older pkg-config
* Bug Fixes:
+ Fix for conditional sections at end of document
+ Make sure that Python tests exit with error code
+ Audit memory error handling in xpath.c
+ Fix error code in xmlTextWriterStartDocument
+ Fix integer overflow when counting written bytes
+ Fix uninitialized memory access in HTML parser
+ Fix memory leak in xmlSchemaValAtomicType
+ Disallow conditional sections in internal subset
+ Fix use-after-free in xmlTextReaderFreeNodeList
+ Fix Regextests
+ Fix empty branch in regex
+ Fix integer overflow in entity recursion check
+ Don't read external entities or XIncludes from stdin
+ Fix Schema determinism check of ##other namespaces
+ Fix potential null deref in xmlSchemaIDCFillNodeTables
+ Fix potential memory leak in xmlBufBackToBuffer
+ Fix error message when processing XIncludes with fallbacks
+ Fix memory leak in xmlRegEpxFromParse
+ 14:00 is a valid timezone for xs:dateTime
+ Fix memory leak in xmlParseBalancedChunkMemoryRecover
+ Fix potential null deref in xmlRelaxNGParsePatterns
+ Misleading error message with xs:{min|max}Inclusive
+ Fix memory leak in xmlXIncludeLoadTxt
+ Partial fix for comparison of xs:durations
+ Fix null deref in xmlreader buffer
+ Fix unability to RelaxNG-validate grammar with choice-based name class
+ Fix unability to validate ambiguously constructed interleave for RelaxNG
+ Fix possible null dereference in xmlXPathIdFunction
+ fix memory leak in xmlAllocOutputBuffer
+ Fix unsigned int overflow
+ dict.h: gcc 2.95 doesn't allow multiple storage classes
+ Fix another code path in xmlParseQName
+ Make sure that xmlParseQName returns NULL in error case
+ Fix build without reader but with pattern
+ Fix memory leak in xmlAllocOutputBufferInternal error path
+ Fix unsigned integer overflow
+ Fix return value of xmlOutputBufferWrite
+ Fix parser termination from "Double hyphen within comment" error
+ Fix call stack overflow in xmlFreePattern
+ Fix null deref in previous commit
+ Fix memory leaks in xmlXPathParseNameComplex error paths
+ Check for integer overflow in xmlXPtrEvalChildSeq
+ Fix xmllint dump of XPath namespace nodes
+ Fix float casts in xmlXPathSubstringFunction
+ Fix null deref in xmlregexp error path
+ Fix null pointer dereference in xmlTextReaderReadOuterXml
+ Fix memory leaks in xmlParseStartTag2 error paths
+ Fix memory leak in xmlSAX2StartElement
+ Fix commit "Memory leak in xmlFreeID (xmlreader.c)"
+ Fix NULL pointer deref in xmlTextReaderValidateEntity
+ Memory leak in xmlFreeTextReader
+ Memory leak in xmlFreeID (xmlreader.c)
* Improvements:
+ Propagate memory errors in valuePush
+ Propagate memory errors in xmlXPathCompExprAdd
+ Make xmlFreeDocElementContent non-recursive
+ Avoid ignored attribute warnings under GCC
+ Make xmlDumpElementContent non-recursive
+ Make apibuild.py ignore ATTRIBUTE_NO_SANITIZE
+ Mark xmlExp* symbols as removed
+ Make xmlParseConditionalSections non-recursive
+ Adjust expected error in Python tests
+ Make xmlTextReaderFreeNodeList non-recursive
+ Make xmlFreeNodeList non-recursive
+ Make xmlParseContent and xmlParseElement non-recursive
+ Remove executable bit from non-executable files
+ Fix expected output of test/schemas/any4
+ Optimize build instructions in README
+ xml2-config.in: Output CFLAGS and LIBS on the same line
+ xml2-config: Add a --dynamic switch to print only shared libraries
+ Annotate functions with __attribute__((no_sanitize))
+ Fix warnings when compiling without reader or push parser
+ Remove unused member `doc` in xmlSaveCtxt
+ Limit recursion depth in xmlXPathCompOpEvalPredicate
+ Remove -Wno-array-bounds
+ Remove unreachable code in xmlXPathCountFunction
+ Improve XPath predicate and filter evaluation
+ Limit recursion depth in xmlXPathOptimizeExpression
+ Disable hash randomization when fuzzing
+ Optional recursion limit when parsing XPath expressions
+ Optional recursion limit when evaluating XPath expressions
+ Use break statements in xmlXPathCompOpEval
+ Optional XPath operation limit
+ Fix compilation with --with-minimum
+ Check XPath stack after calling functions
+ Remove debug printf in xmlreader.c
+ Always define LIBXML_THREAD_ENABLED when enabled
+ Fix unused function warning in testapi.c
+ Remove unneeded function pointer casts
+ Fix -Wcast-function-type warnings (GCC 8)
+ Fix -Wformat-truncation warnings (GCC 8)
* Cleanups:
+ Rebuild docs
+ Disable xmlExp regex code
+ Remove redundant code in xmlRelaxNGValidateState
+ Remove redundant code in xmlXPathCompRelationalExpr
- Rebase patch fix-perl.diff
==== libxslt ====
Version update (1.1.33 -> 1.1.34)
- Update to 1.1.34: Oct 30 2019
* Documentation:
- Fix EXSLT web pages, Regenerate web pages
- Fix Git link in news.html
- Minor documentation fixes after recent changes
- Regenerate symbols and API docs
- Regenerate EXSLT website
* Portability:
- Remove stubs when compiling without debugger or profiler
- configure.ac: Invoke PKG_CHECK_MODULES for building shared libraries
- configure.ac: Conditionally determine whether xml2-config should pass
shared libraries or static libraries
- xslt-config.in: Fix broken --prefix=DIR support
- libexslt.pc.in: Do not expose private library dependencies unless invoked
- libxslt.pc.in: Do not expose private library dependencies unless invoked
- Fix -Wformat-overflow warning (GCC 9)
- Stop including ansidecl.h
- Remove WIN32_EXTRA_* variables
- Build without winsock
* Bug Fixes:
- xsl:template without name and match attributes should not be allowed
- Make sure that Python tests exit with error code
- Improve handling of invalid UTF-8 in format-number
- Fix dangling pointer in xsltCopyText
- Fix memory leak in pattern compilation error path
- Fix uninitialized read with UTF-8 grouping chars
- Fix integer overflow in FORMAT_GYEAR
- Fix performance regression with xsl:number
- Backup XPath context node in xsltInitCtxtKey
- Fix unsigned integer overflow in date.c
- Fix insertion of xsl:fallback content
- Avoid quadratic behavior in xsltSaveResultTo
- Fix numbering in non-Latin scripts
- Fix uninitialized read of xsl:number token
- Fix integer overflow in _exsltDateDayInWeek
- Rework xsltAttrVT allocation
- Fix check of xsltTestCompMatch return value
- Fix security framework bypass
- Use xmlNewTextChild in EXSLT dyn:map
- Fix float casts in exsltDateDuration
- Always set context node before calling XPath iterators
- Fix attribute precedence with xsl:use-attribute-sets
- Backup context node in exsltFuncFunctionFunction
- Initialize ctxt->output before evaluating global vars
- Fix memory leak in EXSLT functions error path
* Improvements:
- Fix -Wimplicit-fallthrough warnings
- Adjust number of API index pages
- Make xsltCompileRelativePathPattern non-recursive
- Check that crypto:rc4_decrypt produces valid UTF-8
- Avoid recursion in keys.c:skipPredicate
- xslt-config.in: Simply handling of $all_flags
- xslt-config.in: Add a --dynamic option to --libs
- xslt-config.in: Simplify basic library handling
- xslt-config.in: Remove unused variable
- xslt-config: Simply handling of --cflags
- Improve fuzzers
- Always reuse XPath context
- Compile with -Wextra
- Make profiler support optional
- Hide unused code when compiling without debugger
- Reorganize fuzzing code
- Optional operation limit
- Improve seed corpus and dictionary
- Reuse XPath context when compiling stylesheets
- Reuse XPath context in dyn:map
- Reuse XPath context in saxon:expression
- Add libFuzzer targets
- Adjust error message in expected test output
- Change bug tracker URL
- Change git repo URL
- Regenerate NEWS
- Fix misleading indentation in security.c
* Cleanups:
- Remove empty TODO file
- Remove generated file libxsltclass.txt from version control
- Rebuild docs
- Rebase patch libxslt-config-fixes.patch
- Remove patches fixed upstream:
* libxslt-CVE-2019-11068.patch
* libxslt-CVE-2019-13117.patch
* libxslt-CVE-2019-13118.patch
* libxslt-CVE-2019-18197.patch
==== libzypp ====
Version update (17.15.0 -> 17.17.0)
- Introduce PurgeKernels class (bsc#1155198)
Adds libzypp API to mark all obsolete kernels according to the
existing purge-kernel script rules.
- Add solver jobs for retracted packages and ptfs.
Support for ptf packages and retract ed patches.
- Do not enforce 'en' being in RequestedLocales (bsc#1155678)
If the user decides to have a system without explicit language
support he may do so.
- Pass correct posttrans script argument (fixes #190)
- BuildRequires: libsolv-devel >= 0.7.8.
- version 17.17.0 (12)
- Expose new libsolv API via C++ counterparts
(openSUSE/zypper#214)
- BuildRequires: libsolv-devel >= 0.7.7
- version 17.16.0 (12)
==== nano ====
Version update (4.5 -> 4.6)
- update to 4.6:
* re-introduce the formatter command (M-F)
* ^T will try to run 'hunspell' before 'spell', because it checks
spelling for the locale's language and understands UTF-8
* Multiple errors or warnings on startup will no longer slow nano
down but will be indicated on the status bar with trailing dots
==== openssl ====
- Remove Obsoletes: pkgconfig(*): Only package names can be
obsoleted. Until RPM 4.15, those lines were simply ineffective
and being ignored, but with RPM 4.15 they result in an error.
==== perl ====
Subpackages: perl-base
- Add perl-Adapt-Configure-to-GCC-version-10.patch in order
to fix boo#1158254.
==== permissions ====
Version update (1550_20191118 -> 1550_20191205)
Subpackages: chkstat permissions-config
- Update to version 20191205:
* fix privilege escalation through untrusted symlinks (bsc#1150734,
CVE-2019-3690)
- Update to version 20191122:
* faxq-helper: correct "secure" permission for trusted group (bsc#1157498)
==== python-PyYAML ====
Version update (5.1.2 -> 5.2)
- update to 5.2
* A more flexible fix for custom tag constructors
* Change default loader for yaml.add_constructor
* Change default loader for add_implicit_resolver, add_path_resolver
* Move constructor for object/apply to UnsafeConstructor
* Fix logic for quoting special characters
==== python-psutil ====
Version update (5.6.5 -> 5.6.7)
- update to version 5.6.7:
* Bug fixes
+ 1630: [Windows] can't compile source distribution due to C
syntax error.
- changes from version 5.6.6:
* Bug fixes
+ 1179: [Linux] Process cmdline() now takes into account
misbehaving processes renaming the command line and using
inappropriate chars to separate args.
+ 1616: use of Py_DECREF instead of Py_CLEAR will result in double
free and segfault (CVE). (patch by Riccardo Schirone)
+ 1619: [OpenBSD] compilation fails due to C syntax error. (patch
by Nathan Houghton)
==== python-simplejson ====
Version update (3.16.1 -> 3.17.0)
- specfile:
* update copyright year
- update to version 3.17.0:
* Updated documentation to be Python 3 first, and
have removed documentation notes about version changes
that occurred more than five years ago.
https://github.com/simplejson/simplejson/pull/257
https://github.com/simplejson/simplejson/pull/254
* Update build matrix for Python 3.8
https://github.com/simplejson/simplejson/pull/255
https://github.com/simplejson/simplejson/pull/256
==== rdma-core ====
Subpackages: libefa1 libibverbs libibverbs1 libmlx4-1 libmlx5-1 librdmacm1
- Add Broadcom fixes (bsc#1157891)
- bnxt_re-lib-Add-remaining-pci-ids-for-gen-P5-devices.patch
- bnxt_re-lib-Recognize-additional-5750x-device-ID-s.patch
==== read-only-root-fs ====
Version update (1.0+git20191112.42add9e -> 1.0+git20191203.3f7cc07)
- Update to version 1.0+git20191203.3f7cc07:
* Workaround /var being RO during systemd-journal-flush (boo#1156421)
==== rook ====
Version update (1.1.6+git0.g91d6f635 -> 1.1.7+git0.g50c6ca1f)
- Update rook to v1.1.7:
* Skip osd prepare job creation if osd daemon exists for the pvc (#4277)
* Stop osd process more quickly during pod shutdown to reduce IO unresponsiveness (#4328)
* Add osd anti-affinity to the example of OSDs on PVCs (#4326)
* Properly set app name on the cmdreporter (#4323)
* Ensure disruption draining state is set and checked correctly (#4319)
* Update LVM filter for OSDs on PVCs (#4312)
* Fix topology logic for disruption drains (#4221)
* Skip restorecon during ceph-volume configuration (#4260)
* Added a note around snapshot CRD cleanup (#4302)
* Storage utilization alert threshold and timing updated (#4286)
* Silence disruption errors if necessary and add missing errors (#4288)
* Create csi keys and secrets for external cluster (#4276)
* Add retry to ObjectUser creation (#4149)
==== salt ====
Version update (2019.2.0 -> 2019.2.2)
Subpackages: python3-salt salt-master salt-minion salt-standalone-formulas-configuration
- Prevent test_mod_del_repo_multiline_values to fail
- Read repo info without using interpolation (bsc#1135656)
- Requires vs BuildRequires
- Limiting M2Crypto to >= SLE15
- Replacing pycrypto with M2Crypto
- Fix for log checking in x509 test
- Update to 2019.2.2 release
- Added:
* fix-for-log-checking-in-x509-test.patch
* prevent-test_mod_del_repo_multiline_values-to-fail.patch
* read-repo-info-without-using-interpolation-bsc-11356.patch
- Modified:
* async-batch-implementation.patch
* add-hold-unhold-functions.patch
* adds-the-possibility-to-also-use-downloadonly-in-kwa.patch
* decide-if-the-source-should-be-actually-skipped.patch
* allow-passing-kwargs-to-pkg.list_downloaded-bsc-1140.patch
* add-batch_presence_ping_timeout-and-batch_presence_p.patch
* run-salt-master-as-dedicated-salt-user.patch
* run-salt-api-as-user-salt-bsc-1064520.patch
* fix-unit-test-for-grains-core.patch
* add-environment-variable-to-know-if-yum-is-invoked-f.patch
* fix-async-batch-multiple-done-events.patch
* activate-all-beacons-sources-config-pillar-grains.patch
* fix-for-older-mock-module.patch
* do-not-break-repo-files-with-multiple-line-values-on.patch
* fall-back-to-pymysql.patch
* add-missing-fun-for-returns-from-wfunc-executions.patch
* loosen-azure-sdk-dependencies-in-azurearm-cloud-driv.patch
* add-virt.volume_infos-and-virt.volume_delete.patch
* fix-issue-2068-test.patch
* switch-firewalld-state-to-use-change_interface.patch
* make-aptpkg.list_repos-compatible-on-enabled-disable.patch
* fix-ipv6-scope-bsc-1108557.patch
* 2019.2.0-pr-54196-backport-173.patch
* do-not-make-ansiblegate-to-crash-on-python3-minions.patch
* x509-fixes-111.patch
* prevent-ansiblegate-unit-tests-to-fail-on-ubuntu.patch
* fix-zypper.list_pkgs-to-be-aligned-with-pkg-state.patch
* add-cpe_name-for-osversion-grain-parsing-u-49946.patch
* fix-failing-unit-tests-for-batch-async.patch
* temporary-fix-extend-the-whitelist-of-allowed-comman.patch
* improve-batch_async-to-release-consumed-memory-bsc-1.patch
* batch.py-avoid-exception-when-minion-does-not-respon.patch
* preserve-already-defined-destructive_tests-and-expen.patch
* virt.volume_infos-fix-for-single-vm.patch
* move-server_id-deprecation-warning-to-reduce-log-spa.patch
* include-aliases-in-the-fqdns-grains.patch
* don-t-call-zypper-with-more-than-one-no-refresh.patch
* add-custom-suse-capabilities-as-grains.patch
* get-os_arch-also-without-rpm-package-installed.patch
* add-saltssh-multi-version-support-across-python-inte.patch
* accumulated-changes-required-for-yomi-165.patch
* use-adler32-algorithm-to-compute-string-checksums.patch
* remove-arch-from-name-when-pkg.list_pkgs-is-called-w.patch
* use-current-ioloop-for-the-localclient-instance-of-b.patch
* remove-virt.pool_delete-fast-parameter-178.patch
* add-multi-file-support-and-globbing-to-the-filetree-.patch
* use-threadpool-from-multiprocessing.pool-to-avoid-le.patch
* prevent-systemd-run-description-issue-when-running-a.patch
* integration-of-msi-authentication-with-azurearm-clou.patch
* virt.volume_infos-needs-to-ignore-inactive-pools-174.patch
* virt-1.volume_infos-fix-for-single-vm.patch
* add-supportconfig-module-for-remote-calls-and-saltss.patch
* avoid-excessive-syslogging-by-watchdog-cronjob-58.patch
* strip-trailing-from-repo.uri-when-comparing-repos-in.patch
* preserving-signature-in-module.run-state-u-50049.patch
* fix-zypper-pkg.list_pkgs-expectation-and-dpkg-mockin.patch
* fix-aptpkg-systemd-call-bsc-1143301.patch
* calculate-fqdns-in-parallel-to-avoid-blockings-bsc-1.patch
* remove-unnecessary-yield-causing-badyielderror-bsc-1.patch
* debian-info_installed-compatibility-50453.patch
* add-standalone-configuration-file-for-enabling-packa.patch
* accumulated-changes-from-yomi-167.patch
* add-virt.all_capabilities.patch
* fix-memory-leak-produced-by-batch-async-find_jobs-me.patch
* do-not-report-patches-as-installed-when-not-all-the-.patch
* support-config-non-root-permission-issues-fixes-u-50.patch
* add-all_versions-parameter-to-include-all-installed-.patch
* fixes-cve-2018-15750-cve-2018-15751.patch
* fix-bsc-1065792.patch
* enable-passing-a-unix_socket-for-mysql-returners-bsc.patch
* avoid-traceback-when-http.query-request-cannot-be-pe.patch
* restore-default-behaviour-of-pkg-list-return.patch
* take-checksums-arg-into-account-for-postgres.datadir.patch
* early-feature-support-config.patch
* provide-the-missing-features-required-for-yomi-yet-o.patch
* implement-network.fqdns-module-function-bsc-1134860-.patch
* fix-virt.full_info-176.patch
* checking-for-jid-before-returning-data.patch
* virt.volume_infos-silence-libvirt-error-message-175.patch
* do-not-crash-when-there-are-ipv6-established-connect.patch
* fix-for-suse-expanded-support-detection.patch
* fix-a-wrong-rebase-in-test_core.py-180.patch
* add-ppc64le-as-a-valid-rpm-package-architecture.patch
* make-profiles-a-package.patch
* bugfix-any-unicode-string-of-length-16-will-raise-ty.patch
* fix-git_pillar-merging-across-multiple-__env__-repos.patch
* return-the-expected-powerpc-os-arch-bsc-1117995.patch
* fix-async-batch-race-conditions.patch
* do-not-load-pip-state-if-there-is-no-3rd-party-depen.patch
- Removed:
* fix-syndic-start-issue.patch
* prevent-already-reading-continuous-exception-message.patch
* virt.pool_running-fix-pool-start.patch
* azurefs-gracefully-handle-attributeerror.patch
* virt-handle-whitespaces-in-vm-names.patch
* mount-fix-extra-t-parameter.patch
* try-except-undefineflags-as-this-operation-is-not-su.patch
==== sssd ====
Version update (2.2.0 -> 2.2.2)
Subpackages: libsss_certmap0 libsss_idmap0 libsss_nss_idmap0 sssd-krb5-common sssd-ldap
- Update to release 2.2.2
* New options were added which allow sssd-kcm to handle bigger
data. See manual pages for max_ccaches, max_uid_caches and
max_ccache_size.
* SSSD can now automatically refresh cached user data from
subdomains in IPA/AD trust.
* Fixed issue with SSSD hanging when connecting to
non-responsive server with ldaps://.
* SSSD is now restarted by systemd after crashes.
==== tallow ====
Version update (19+git20191104.5dfb982 -> 19+git20191106.4b071b0)
- 0001-Add-extra-path-for-firewall-cmd.patch: firewall-cmd can be
in a different path than ipset/iptables
- Update to version 19+git20191106.4b071b0:
* Need configure in this workflow.
* Fix dependency.
* Add github workflow integration.
==== transactional-update ====
Version update (2.17 -> 2.20)
Subpackages: transactional-update-zypp-config
- Update to version 2.20
- Add the option `--continue` to extend an existing snapshot. This can be
used to perform multiple operations before rebooting into the new state.
[gh#openSUSE/transactional-update#16]
- Make sure the dracut service to print warnings on /etc overlay conflicts
also runs in the pre-made images.
- Add "none" reboot method
- Remove conflicting overlay artifacts in case an existing overlay directory
will be reused
==== vim ====
Version update (8.1.2233 -> 8.1.2383)
Subpackages: vim-data-common
- Updated to version 8.1.2383, fixes the following problems
+ refreshed patches: vim-7.3-help_tags.patch
vim-7.3-name_vimrc.patch
vim-8.1.0297-dump3.patch
* Cannot get the Vim command line arguments.
* get_short_pathname() fails depending on encoding.
* "C" with 'virtualedit' set does not include multi-byte char.
* Ml_get error if pattern matches beyond last line.
* Mode() result after usign "r" depends on whether CURSOR_SHAPE is
defined. (Christian Brabandt)
* Error in docs tags goes unnoticed.
* Popup window width changes when scrolling.
* Match highlight does not combine with 'wincolor'.
* Creating docs tags uses user preferences. (Tony Mechelynck)
* 'wrapscan' is not used for "gn".
* Third character of 'listchars' tab shows in wrong place when 'breakindent'
is set.
* Some tests are still in old style.
* "make vimtags" does not work in runtime/doc.
* CTRL-W dot does not work in a terminal when modifyOtherKeys is enabled.
* "make vimtags" does not print any message.
* CTRL-U and CTRL-D don't work in popup window.
* ":term command" may not work without a shell.
* Compiler warning for int size.
* Using "which" to check for an executable is not reliable.
* May get hit-enter prompt after entering a number. (Malcolm Rowe)
* Running tests may leave XfakeHOME behind.
* With modifyOtherKeys set 'noesckeys' doesn't work. (James McCoy)
* Unpack assignment in function not recognized.
* 'noesckeys' test fails in GUI.
* There are two test files for :let.
* When popup with "botleft" does not fit it flips incorrectly.
* Position unknown for a mouse click in a popup window.
* Compiler warning for uninitialized variable. (Tony Mechelynck)
* Spell file flag zero is not recognized.
* Tags file with very long line stops using binary search.
* "gf" is not tested in Visual mode.
* Build error if FEAT_TAG_BINS is not defined. (John Marriott)
* Test may hang at more prompt.
* Wrong default when "pos" is changed with popup_atcursor().
* Newlines in 'balloonexpr' result only work in the GUI.
* Using "seesion" looks like a mistake.
* Terminal window is not updated when info popup changes.
* Using "cd" with "exe" may fail.
* Computation of highlight attributes is too complicated.
* Crash when passing partial to substitute().
* 'showbreak' cannot be set for one window.
* Crash when passing many arguments through a partial. (Andy Massimino)
* Missed on use of p_sbr.
* Compiler warning for unused variable. (Tony Mechelynck)
* Padding in structures wastes memory.
* Using border highlight in popup window leaks memory.
* Using EndOfBuffer highlight in popup does not look good.
* Not using all space when popup with "topleft" flips to above.
* After :diffsplit closing the window does not disable diff.
* Autocommand test fails.
* Memory leak when executing command in a terminal.
* v:mouse_winid not set on click in popup window.
* Join adds trailing space when second line is empty. (Brennan Vincent)
* Cursor position wrong when characters are concealed and asearch causes
a scroll.
* If buffer of popup is in another window cursorline sign shows.
* Text properties are not combined with syntax by default.
* The ex_vimgrep() function is too long.
* Missing part of 8.1.2296.
* ConPTY in MS-Windows 1909 is still wrong.
* Redraw breaks going through list of popup windows.
* :lockmarks does not work for '[ and '].
* Cursor in wrong position after horizontal scroll.
* Cannot get the mouse position when getting a mouse click.
* No warning for wrong entry in translations.
* Double and triple clicks are not tested.
* Positioning popup doesn't work for buffer-local textprop.
* Deleting text before zero-width textprop removes it.
* Compiler warning for argument type.
* No proper test for directory changes in quickfix.
* Warning for missing function prototype.
* "line:" field in tags file not used.
* Debugging where a delay comes from is not easy.
* vi' sometimes does not select anything.
* Not always using the right window when jumping to an error.
* FORTIFY_SOURCE can also be present in CPPFLAGS.
* No test for spell affix file with flag on suffix.
* Compiler warning for int size.
* Insufficient test coverage for quickfix.
* Cannot select all text with the mouse. (John Marriott)
* Quickfix test fails in very big terminal.
* Width of scrollbar in popup menu not taken into account.
* Crash when using balloon with empty line.
* Cannot parse a date/time string.
* Cannot build with Hangul input.
* A few hangul input pieces remain.
* Mouse multiple click test is a bit flaky.
* vi' does not always work when 'selection' is exclusive.
* The option.c file is still very big.
* Missing file in refactoring.
* With modifyOtherKeys CTRL-^ doesn't work.
* Possible NULL pointer dereference in popup_locate(). (Coverity)
* Error message for function arguments may use NULL pointer. (Coverity)
* When an expr mapping moves the cursor it is not restored.
* Double-click time sometimes miscomputed.
* Using Visual mark sith :s gives E20 if not set.
* Insufficient testing for quickfix.
* Quickfix test fails under valgrind and asan.
* Not so easy to interrupt a script programatically.
* Random number generator in Vim script is slow.
* Using time() for srand() is not very random.
* .cjs files are not recognized as Javascript.
* CTRL-R CTRL-R doesn't work with modifyOtherKeys.
* :const cannot be followed by "| endif".
* :lockvar and :unlockvar cannot be followed by "| endif".
* Other text for CTRL-V in Insert mode with modifyOtherKeys.
* 'wincolor' not used for > for not fitting double width char. Also:
popup drawn on right half of double width character looks wrong.
* rand() does not use the best algorithm.
* No test with wrong argument for rand().
* Cannot build without FEAT_FLOAT. (John Marriott)
* Quickfix test coverage can still be improved.
* Cannot place signs in a popup window. (Maxim Kim)
* ml_get error when accessing Visual area in 'statusline'.
* Missing tests for recent popupwin changes.
* Using old C style comments.
* Registers are not sufficiently tested.
* Using old C style comments.
* Cannot build with quickfix and without text properties.
* Build problems on VMS.
* FEAT_TEXT_PROP is a confusing name.
* Cannot build with +popupwin but without +quickfix. (John Marriott)
* Unused parts of libvterm are included.
* No suffucient testing for registers.
* Preprocessor indents are incorrect.
* GUI: when losing focus a pending operator is executed.
* Using old C style comments.
* Not all register related code is covered by tests.
==== zypper ====
Version update (1.14.32 -> 1.14.33)
Subpackages: zypper-needs-restarting
- Introduce purge-kernels command (bsc#1155198)
Adds a new zypper command to cleanup all obsolete kernels as
configured by the user.
- Request root privs for zypper addlocale and removelocale.
- Load only target resolvables for removelocale.
- Load only target resolvables for zypper rm (bsc#1157377)
- Fix broken search by filelist (bsc#1135114 )
- zypper-log: Replace python by a bash script (fixes#304,
fixes#306, bsc#1156158)
- locales: do not sort out requested locales which are not
available (bsc#1155678)
- list_patches_by_issue: rewrite table output and add xml output
(bsc#1154805)
Prevent listing duplicate matches in tables. XML result is
provided within the new <list-patches-byissue> element.
- list-patches: XML add patch <issue-date> and <issue-list>
(bsc#1154805)
- Fix zypper lp --cve/bugzilla/issue options (bsc#1155298)
- Always execute commit when adding/removing locales (fixes
bsc#1155205)
- man page: fix description of --table-style,-s (bsc#1154804)
- Provide reverse search in zypper (fixes #214)
This patch adds a new set of switches to zypper to support
searching reverse dependencies for a package or a set of packages.
- BuildRequires: libzypp-devel >= 17.16.1.
- version 1.14.33
--
To unsubscribe, e-mail: opensuse-kubic+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-kubic+owner(a)opensuse.org
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
aaa_base (84.87+git20191017.bf0a315 -> 84.87+git20191120.98f1524)
ca-certificates-mozilla
dracut (049+git114.058e566c -> 049+git115.c2d8d6fb)
findutils
glib2 (2.62.2 -> 2.62.3)
growpart
hyper-v
libtirpc (1.0.3 -> 1.1.4)
lzo
mozilla-nss (3.46.1 -> 3.47.1)
pam-config
patterns-containers
pcre2 (10.33 -> 10.34)
perl (5.28.1 -> 5.30.1)
sed
shared-mime-info
xen (4.13.0_02 -> 4.13.0_03)
=== Details ===
==== aaa_base ====
Version update (84.87+git20191017.bf0a315 -> 84.87+git20191120.98f1524)
- Update to version 84.87+git20191120.98f1524:
* merged PR 65
* dash fixes
* handle /usr/etc/login.defs for wsl
==== ca-certificates-mozilla ====
- export correct p11kit trust attributes so Firefox detects built in
certificates (boo#1154871). Courtesy of Fedora.
==== dracut ====
Version update (049+git114.058e566c -> 049+git115.c2d8d6fb)
Subpackages: dracut-ima
- Update to version 049+git115.c2d8d6fb:
* suse: Remove incorrect usage of %_libexecdir (boo#1155785)
==== findutils ====
- Add disable-null-ptr-test.patch in order to fix boo#1157342.
==== glib2 ====
Version update (2.62.2 -> 2.62.3)
Subpackages: glib2-tools libgio-2_0-0 libglib-2_0-0 libgmodule-2_0-0 libgobject-2_0-0
- Update to version 2.62.3:
+ Use `poll()` in `g_spawn_sync()` rather than `select()`, which
is subject to FD limits.
+ Fix undefined behaviour with `g_utf8_find_prev_char()`.
+ Bugs fixed: glgo#GNOME/GLib#954, glgo#GNOME/GLib#1318,
glgo#GNOME/GLib#1897, glgo#GNOME/GLib#1903,
glgo#GNOME/GLib#1916, glgo#GNOME/GLib#1917,
glgo#GNOME/GLib!1174, glgo#GNOME/GLib!1184,
glgo#GNOME/GLib!1194, glgo#GNOME/GLib!1203,
glgo#GNOME/GLib!1207, glgo#GNOME/GLib!1215,
glgo#GNOME/GLib!1219, glgo#GNOME/GLib!1222,
glgo#GNOME/GLib!1228.
==== growpart ====
- Clean growpart.spec:
* Drop obsolete tags
* Use install instead of mkdir+cp+chmod
* Fix build on SLE 12 SP4
- Replaced hardcoded systemd paths with macros in spec file
- Reference entry for maintenance
Tracker bug for the submission set to: bsc#1154357
- Deleted rootgrow source and sub-package build
rootgrow is provided on github: https://github.com/SUSE-Enceladus/rootgrow
and builds a standalone package now
==== hyper-v ====
- Update lsvmbus interpreter from python(1) to python3(1) again
because only SLE12 lacked proper python3 support (bsc#1093910)
- async name resolution in kvp_daemon (bsc#1100758)
- kvp: eliminate 'may be used uninitialized' warning (89eb4d8d)
- fix typos in toolchain (2d35c660)
- fixed Python pep8/flake8 warnings for lsvmbus (5912e791)
- Replace GPLv2 boilerplate/reference with SPDX (43aa3132)
- Fix a warning of buffer overflow with gcc 8.0.1 (4fcba780)
==== libtirpc ====
Version update (1.0.3 -> 1.1.4)
Subpackages: libtirpc-netconfig libtirpc3
- Fix previous version:
- actually delete
0001-xdrstdio_create-buffers-do-not-output-encoded-values.patch
- use 0001-Makefile.am-Use-LIBADD-instead-of-LDFLAGS-to-link-ag.patch
- use 0002-man-rpc_secure.3t-Fix-typo-in-manpage.patch (renamed from
0003-man-rpc_secure.3t-Fix-typo-in-manpage.patch)
- use 0003-xdr-add-a-defensive-mask-in-xdr_int64_t-and-xdr_u_in.patch
(renamed from
0004-xdr-add-a-defensive-mask-in-xdr_int64_t-and-xdr_u_in.patch)
- Updated to libtirpc 1.1.5 rc2 (this includes changes in 1.1.4 release)
- add libtirpc-1-1-5-rc1.patch and libtirpc-1-1-5-rc2.patch to reflect
upstream changes after 1.1.4 release
- remove /etc/bindresvport.blacklist as it's still supported by glibc
although it's not compiled with --enable-obsolete-rpc
- Drop patches accepted in previous releases or not needed
- 000-bindresvport_blacklist.patch (accepted in 5b037cc9, libtirpc 1.1.4)
- 001-new-rpcbindsock-path.patch (not needed, rpcbind now uses /var/run directory)
- 002-revert-binddynport.patch (fixed in 2802259, libtirpc-1-0-4-rc1)
- 0001-Fix-regression-introduced-by-change-rpc-version-orde.patch
(backport of 25d38d7, libtirpc-1-0-4-rc1)
- 0001-xdrstdio_create-buffers-do-not-output-encoded-values.patch
(backport of 145272c, libtirpc-1-0-4-rc2)
- Add fixes from upcomming release
- 0001-Makefile.am-Use-LIBADD-instead-of-LDFLAGS-to-link-ag.patch
- 0003-man-rpc_secure.3t-Fix-typo-in-manpage.patch
- 0004-xdr-add-a-defensive-mask-in-xdr_int64_t-and-xdr_u_in.patch
==== lzo ====
- Disable strict aliasing due to its violation
(boo#1157271).
==== mozilla-nss ====
Version update (3.46.1 -> 3.47.1)
- update to NSS 3.47.1
* CVE-2019-11745 - EncryptUpdate should use maxout, not block size
* Fix a crash that could be caused by client certificates during startup
(bmo#1590495)
* Fix compile-time warnings from uninitialized variables in a perl script
(bmo#1589810)
- update to NSS 3.47
* required by Firefox 71.0
Notable changes
* Support AES HW acceleration on ARMv8 (bmo#1152625)
* Allow per-socket run-time ordering of the cipher suites presented
in ClientHello (bmo#1267894)
* Add CMAC to FreeBL and PKCS #11 libraries (bmo#1570501)
Bugfixes
https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.47_rele…
- requires NSPR 4.23
==== pam-config ====
- Prevent systemd-user to call pam_mount when opening/closing a
(PAM) session as it drops privileges in between and so when closing
it may be unable to undo things set up during opening.
[bsc#1153630, bsc1153630-prevent-systemd-pam_mount.patch]
==== patterns-containers ====
- Add k9s to kubernetes utilities pattern
==== pcre2 ====
Version update (10.33 -> 10.34)
- Enable JIT on aarch64
- pcre2 10.34:
* implement the documented maximum number of capturing
subpatterns of 65535
* Improve the invalid utf32 support of the JIT compiler
* Add support for matching in invalid UTF strings to the pcre2_match()
* Give more error detail for invalid UTF-8 when detected in pcre2grep
* support for invalid UTF-8 to pcre2grep.
* Adjust the limit for "must have" code unit searching, in particular,
* increase it substantially for non-anchored patterns.
* Allow (*ACCEPT) to be quantified, because an ungreedy quantifier
with a zero minimum is potentially useful.
* Some changes to the way the minimum subject length is handled
* Check for integer overflow when computing lookbehind lengths
* Implement non-atomic positive lookaround assertions
* Upgraded to Unicode 12.1.0
* Make pcre2test -C show if libreadline or libedit is supported
* Various bug fixes and improvements
==== perl ====
Version update (5.28.1 -> 5.30.1)
Subpackages: perl-base
- update to perl-5.30.1
* unicode 12.1 is supported
* turkic UTF-8 locales are now seamlessly supported
* assigning non-zero to $[ is fatal
* some formerly deprecated uses of an unescaped left brace "{" in
regular expression patterns are now illegal
* previously deprecated sysread()/syswrite() on :utf8 handles is
now fatal
* my() in false conditional prohibited
* remove File::Glob::glob()
* various performance enhancements
- updated patches:
* perl-5.22.0_wrong_rpm_provides.diff
* perl-gdbm-test-no-mmap.diff
* perl-fix2020.patch
* perl-reproducible2.patch
- dropped patches:
* perl-revert-caretx.diff
* perl-regexp-refoverflow.diff
==== sed ====
- Add disable-null-ptr-argument.patch in order to fix
boo#1157218.
==== shared-mime-info ====
- Drop no longer required PreReq's, obsolete with switch to file
trigger based pre/post scripts.
==== xen ====
Version update (4.13.0_02 -> 4.13.0_03)
- Update to Xen 4.13.0 RC3 release
xen-4.13.0-testing-src.tar.bz2
- Drop python38-build.patch
--
To unsubscribe, e-mail: opensuse-kubic+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-kubic+owner(a)opensuse.org
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=1&version=T…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
aaa_base (84.87+git20191017.bf0a315 -> 84.87+git20191120.98f1524)
ca-certificates-mozilla
cri-o (1.16.0 -> 1.16.1)
dracut (049+git114.058e566c -> 049+git115.c2d8d6fb)
findutils
glib2 (2.62.2 -> 2.62.3)
growpart
hyper-v
kubernetes (1.16.2 -> 1.16.3)
libtirpc (1.0.3 -> 1.1.4)
lzo
mozilla-nspr (4.22 -> 4.23)
mozilla-nss (3.46.1 -> 3.47.1)
pam-config
patterns-containers
pcre2 (10.33 -> 10.34)
perl (5.28.1 -> 5.30.1)
sed
shared-mime-info
xen (4.13.0_02 -> 4.13.0_03)
=== Details ===
==== aaa_base ====
Version update (84.87+git20191017.bf0a315 -> 84.87+git20191120.98f1524)
- Update to version 84.87+git20191120.98f1524:
* merged PR 65
* dash fixes
* handle /usr/etc/login.defs for wsl
==== ca-certificates-mozilla ====
- export correct p11kit trust attributes so Firefox detects built in
certificates (boo#1154871). Courtesy of Fedora.
==== cri-o ====
Version update (1.16.0 -> 1.16.1)
Subpackages: cri-o-kubeadm-criconfig
- Update to v1.16.1:
* Add manifest list support
* Default to system.slice for conmon cgroup
* Don't set PodIPs on host network pods
- switch to libcontainers-common requires, as the other two are
provided by it already (avant-garde#1056)
- Revert cgroup_manager from systemd to cgroupsfs for SLE15
k8s default is cgroupfs and in can be modified at runtime by the
`--kubelet-cgroups` flag. However this flag is deprecated and
avoinding it is currently preferred over introducing it. In order
to switch to systemd as the cgroups manager in SLE15 further analysis is
required to find a suitable configuration strategy.
==== dracut ====
Version update (049+git114.058e566c -> 049+git115.c2d8d6fb)
Subpackages: dracut-ima
- Update to version 049+git115.c2d8d6fb:
* suse: Remove incorrect usage of %_libexecdir (boo#1155785)
==== findutils ====
- Add disable-null-ptr-test.patch in order to fix boo#1157342.
==== glib2 ====
Version update (2.62.2 -> 2.62.3)
Subpackages: glib2-tools libgio-2_0-0 libglib-2_0-0 libgmodule-2_0-0 libgobject-2_0-0
- Update to version 2.62.3:
+ Use `poll()` in `g_spawn_sync()` rather than `select()`, which
is subject to FD limits.
+ Fix undefined behaviour with `g_utf8_find_prev_char()`.
+ Bugs fixed: glgo#GNOME/GLib#954, glgo#GNOME/GLib#1318,
glgo#GNOME/GLib#1897, glgo#GNOME/GLib#1903,
glgo#GNOME/GLib#1916, glgo#GNOME/GLib#1917,
glgo#GNOME/GLib!1174, glgo#GNOME/GLib!1184,
glgo#GNOME/GLib!1194, glgo#GNOME/GLib!1203,
glgo#GNOME/GLib!1207, glgo#GNOME/GLib!1215,
glgo#GNOME/GLib!1219, glgo#GNOME/GLib!1222,
glgo#GNOME/GLib!1228.
==== growpart ====
- Clean growpart.spec:
* Drop obsolete tags
* Use install instead of mkdir+cp+chmod
* Fix build on SLE 12 SP4
- Replaced hardcoded systemd paths with macros in spec file
- Reference entry for maintenance
Tracker bug for the submission set to: bsc#1154357
- Deleted rootgrow source and sub-package build
rootgrow is provided on github: https://github.com/SUSE-Enceladus/rootgrow
and builds a standalone package now
==== hyper-v ====
- Update lsvmbus interpreter from python(1) to python3(1) again
because only SLE12 lacked proper python3 support (bsc#1093910)
- async name resolution in kvp_daemon (bsc#1100758)
- kvp: eliminate 'may be used uninitialized' warning (89eb4d8d)
- fix typos in toolchain (2d35c660)
- fixed Python pep8/flake8 warnings for lsvmbus (5912e791)
- Replace GPLv2 boilerplate/reference with SPDX (43aa3132)
- Fix a warning of buffer overflow with gcc 8.0.1 (4fcba780)
==== kubernetes ====
Version update (1.16.2 -> 1.16.3)
Subpackages: kubernetes-client kubernetes-kubeadm kubernetes-kubelet
- Convert changes file to proper UTF-8 format: new
version of RPM are getting strict in interpreting files.
- Update to version 1.16.3:
* kubeadm: fix skipped etcd upgrade on secondary cp nodes
* Add testcases covering large valid patches
* json unmarshal coded error at function applyJSPatch()
* Stop Watching when there is encoding error
* Remove HostPathV0 tests in preparation for removal in 1.17. This is so that upgrade tests dont fail when support for v0 drivers are removed in k8s 1.17
* add cache read type prefix for const
* update getmetadata to use unsafe read
* add allowunsafe read
* Flush data cache during unmount device for GCE-PD in Windows
* add a fallback for kube-scheduler when events.k8s.io is disabled
* modify detach timeout to be csiTimeout
* fix windows performance counter father information failed on Non-English environment
* bump metrics server version o v0.3.6
* Bump metrics-server version to v0.3.5
* rename metric for apiserver request terminations and reword corresponding documentation
* pluralize error metric name
* Fix double counting issue for request metrics on timeout.
* Do not bind block PV/PVCs when block feature gate is off
* Return an error when zone info is not found.
* Use --stamp flag in bazel builds
* Update to use go1.12.12
* Update Cluster Autoscaler version to 1.16.2
* add tombstoones handle for pdb
* Amend CHANGELOG-1.16.md for v1.16.2
* Fix proto.Merge of IntOrString type
* Bump to etcd 3.3.17 and bbolt v1.3.3
* Add/Update CHANGELOG-1.16.md for v1.16.2.
* Kubernetes version v1.16.3-beta.0 openapi-spec file updates
* release: lib: revert docker_registry to constant k8s.gcr.io
* Remove check causing informers to miss notifications
* auth/cloud-platform is a superset of devstorage.
* Remove e2e/common package usage in volumemode testsuite
* Mark startupProbe test as NodeAlphaFeature and fix podClient instanciation
==== libtirpc ====
Version update (1.0.3 -> 1.1.4)
Subpackages: libtirpc-netconfig libtirpc3
- Fix previous version:
- actually delete
0001-xdrstdio_create-buffers-do-not-output-encoded-values.patch
- use 0001-Makefile.am-Use-LIBADD-instead-of-LDFLAGS-to-link-ag.patch
- use 0002-man-rpc_secure.3t-Fix-typo-in-manpage.patch (renamed from
0003-man-rpc_secure.3t-Fix-typo-in-manpage.patch)
- use 0003-xdr-add-a-defensive-mask-in-xdr_int64_t-and-xdr_u_in.patch
(renamed from
0004-xdr-add-a-defensive-mask-in-xdr_int64_t-and-xdr_u_in.patch)
- Updated to libtirpc 1.1.5 rc2 (this includes changes in 1.1.4 release)
- add libtirpc-1-1-5-rc1.patch and libtirpc-1-1-5-rc2.patch to reflect
upstream changes after 1.1.4 release
- remove /etc/bindresvport.blacklist as it's still supported by glibc
although it's not compiled with --enable-obsolete-rpc
- Drop patches accepted in previous releases or not needed
- 000-bindresvport_blacklist.patch (accepted in 5b037cc9, libtirpc 1.1.4)
- 001-new-rpcbindsock-path.patch (not needed, rpcbind now uses /var/run directory)
- 002-revert-binddynport.patch (fixed in 2802259, libtirpc-1-0-4-rc1)
- 0001-Fix-regression-introduced-by-change-rpc-version-orde.patch
(backport of 25d38d7, libtirpc-1-0-4-rc1)
- 0001-xdrstdio_create-buffers-do-not-output-encoded-values.patch
(backport of 145272c, libtirpc-1-0-4-rc2)
- Add fixes from upcomming release
- 0001-Makefile.am-Use-LIBADD-instead-of-LDFLAGS-to-link-ag.patch
- 0003-man-rpc_secure.3t-Fix-typo-in-manpage.patch
- 0004-xdr-add-a-defensive-mask-in-xdr_int64_t-and-xdr_u_in.patch
==== lzo ====
- Disable strict aliasing due to its violation
(boo#1157271).
==== mozilla-nspr ====
Version update (4.22 -> 4.23)
- update to version 4.23
* fixed a build failure that was introduced in 4.22
* correctness fix for Win64 socket polling
* whitespace in C files was cleaned up and no longer uses
tab characters for indenting
==== mozilla-nss ====
Version update (3.46.1 -> 3.47.1)
Subpackages: libfreebl3 libsoftokn3 mozilla-nss-certs
- update to NSS 3.47.1
* CVE-2019-11745 - EncryptUpdate should use maxout, not block size
* Fix a crash that could be caused by client certificates during startup
(bmo#1590495)
* Fix compile-time warnings from uninitialized variables in a perl script
(bmo#1589810)
- update to NSS 3.47
* required by Firefox 71.0
Notable changes
* Support AES HW acceleration on ARMv8 (bmo#1152625)
* Allow per-socket run-time ordering of the cipher suites presented
in ClientHello (bmo#1267894)
* Add CMAC to FreeBL and PKCS #11 libraries (bmo#1570501)
Bugfixes
https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.47_rele…
- requires NSPR 4.23
==== pam-config ====
- Prevent systemd-user to call pam_mount when opening/closing a
(PAM) session as it drops privileges in between and so when closing
it may be unable to undo things set up during opening.
[bsc#1153630, bsc1153630-prevent-systemd-pam_mount.patch]
==== patterns-containers ====
Subpackages: patterns-containers-container_runtime patterns-containers-container_runtime_kubernetes patterns-containers-kubeadm patterns-containers-kubernetes_utilities patterns-containers-kubic_admin patterns-containers-kubic_loadbalancer patterns-containers-kubic_worker
- Add k9s to kubernetes utilities pattern
==== pcre2 ====
Version update (10.33 -> 10.34)
- Enable JIT on aarch64
- pcre2 10.34:
* implement the documented maximum number of capturing
subpatterns of 65535
* Improve the invalid utf32 support of the JIT compiler
* Add support for matching in invalid UTF strings to the pcre2_match()
* Give more error detail for invalid UTF-8 when detected in pcre2grep
* support for invalid UTF-8 to pcre2grep.
* Adjust the limit for "must have" code unit searching, in particular,
* increase it substantially for non-anchored patterns.
* Allow (*ACCEPT) to be quantified, because an ungreedy quantifier
with a zero minimum is potentially useful.
* Some changes to the way the minimum subject length is handled
* Check for integer overflow when computing lookbehind lengths
* Implement non-atomic positive lookaround assertions
* Upgraded to Unicode 12.1.0
* Make pcre2test -C show if libreadline or libedit is supported
* Various bug fixes and improvements
==== perl ====
Version update (5.28.1 -> 5.30.1)
Subpackages: perl-base
- update to perl-5.30.1
* unicode 12.1 is supported
* turkic UTF-8 locales are now seamlessly supported
* assigning non-zero to $[ is fatal
* some formerly deprecated uses of an unescaped left brace "{" in
regular expression patterns are now illegal
* previously deprecated sysread()/syswrite() on :utf8 handles is
now fatal
* my() in false conditional prohibited
* remove File::Glob::glob()
* various performance enhancements
- updated patches:
* perl-5.22.0_wrong_rpm_provides.diff
* perl-gdbm-test-no-mmap.diff
* perl-fix2020.patch
* perl-reproducible2.patch
- dropped patches:
* perl-revert-caretx.diff
* perl-regexp-refoverflow.diff
==== sed ====
- Add disable-null-ptr-argument.patch in order to fix
boo#1157218.
==== shared-mime-info ====
- Drop no longer required PreReq's, obsolete with switch to file
trigger based pre/post scripts.
==== xen ====
Version update (4.13.0_02 -> 4.13.0_03)
- Update to Xen 4.13.0 RC3 release
xen-4.13.0-testing-src.tar.bz2
- Drop python38-build.patch
--
To unsubscribe, e-mail: opensuse-kubic+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-kubic+owner(a)opensuse.org
1
0