openSUSE Kubic
Threads by month
- ----- 2024 -----
- May
- April
- March
- February
- January
- ----- 2023 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2022 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2021 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2020 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2019 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2018 -----
- December
- November
- October
- September
- August
August 2019
- 5 participants
- 23 discussions
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
cni-plugins (0.8.1 -> 0.8.2)
hwdata (0.325 -> 0.326)
kernel-default-base
libcap-ng
makedumpfile
nghttp2 (1.38.0 -> 1.39.1)
pkgconf (1.6.1 -> 1.6.3)
tallow (16+git20190219.35182b8 -> 16+git20190425.e4b3977)
thin-provisioning-tools (0.8.3 -> 0.8.5)
wicked (0.6.54 -> 0.6.55)
xen (4.12.0_16 -> 4.12.1_02)
=== Details ===
==== cni-plugins ====
Version update (0.8.1 -> 0.8.2)
- Update plugins to v0.8.2
+ New features:
* Support "args" in static and tuning
* Add Loopback DSR support, allow l2tunnel networks
to be used with the l2bridge plugin
* host-local: return error if same ADD request is seen twice
* bandwidth: fix collisions
* Support ips capability in static and mac capability in tuning
* pkg/veth: Make host-side veth name configurable
+ Bug fixes:
* Fix: failed to set bridge addr: could not add IP address to "cni0": file exists
* host-device: revert name setting to make retries idempotent (#357).
* Vendor update go-iptables. Vendor update go-iptables to
obtain commit f1d0510cabcb710d5c5dd284096f81444b9d8d10
* Update go.mod & go.sub
* Remove link Down/Up in MAC address change to prevent route flush (#364).
* pkg/ip unit test: be agnostic of Linux version, on Linux 4.4 the syscall
error message is "invalid argument" not "file exists"
* bump containernetworking/cni to v0.7.1
==== hwdata ====
Version update (0.325 -> 0.326)
- Update to version 0.326:
* Updated pci, usb and vendor ids.
==== kernel-default-base ====
- Fix wildcard for ip6t_.*
==== libcap-ng ====
- Own %{_datadir}/aclocal: when we might switch to pkgconf instead
of pkg-config, nothing in the build root is 'accidentally' owning
this directory for us.
==== makedumpfile ====
- Also support extended address space with SLE 12 SP5 (bsc#1138451)
* refresh makedumpfile-ppc64-VA-range-SUSE.patch
==== nghttp2 ====
Version update (1.38.0 -> 1.39.1)
- Update to version 1.39.1:
* This release fixes the bug that log-level is not set with
cmd-line or configuration file. It also fixes FPE with default
backend.
- Changes for version 1.39.0:
* libnghttp2 now ignores content-length in 200 response to
CONNECT request as per RFC 7230.
* mruby has been upgraded to 2.0.1.
* libnghttp2-asio now supports boost-1.70.
* http-parser has been replaced with llhttp.
* nghttpx now ignores Content-Length and Transfer-Encoding in 1xx
or 200 to CONNECT.
- Drop no longer needed boost170.patch
==== pkgconf ====
Version update (1.6.1 -> 1.6.3)
Subpackages: libpkgconf3 pkgconf-m4 pkgconf-pkg-config
- Update to 1.6.3
+ Fixed a memory leak when deduplicating paths.
+ Fixed strndup-related build regression on Windows.
+ Added --modversion description to pkgconf(1) man page.
+ Properly tokenize versions. Versions cannot logically contain
whitespace, as dependency-lists would not properly tokenize if
they could. A diagnostic is generated for malformed version
strings containing whitespace when --validate is used.
- Co-own aclocal directory to avoid requiring autoconf-archive
==== tallow ====
Version update (16+git20190219.35182b8 -> 16+git20190425.e4b3977)
- Update to version 16+git20190425.e4b3977:
* Ensure we don't replay old events.
* Add example whitelist defaults.
==== thin-provisioning-tools ====
Version update (0.8.3 -> 0.8.5)
- Update to version 0.8.5
* Mostly internal changes
==== wicked ====
Version update (0.6.54 -> 0.6.55)
Subpackages: libwicked-0-6 wicked-service
- version 0.6.55
- dhcp6: do not default to a /64 address prefix-length (bsc#1132280)
Add an address-length aka DHCLIENT6_ADDRESS_LENGTH ifcfg option, which
permits to specify explicit prefix-length to use for the DHCPv6 address
and override detection using RA prefix info and a default to /128.
- time: use boot time for timer instead of real time (bsc#1129986)
- dhcp: Consistently log dhcp xid and enabled to log dhcp6 timings line.
- dhcp6: lower unexpected xid messages to debug level
- systemd: change to depend on udev settle service (bsc#1136034,bsc#1132774)
Calling udevadm settle directly caused systemd to kill wicked services.
- bridge: honour ifcfg LLADDR and set link address (bsc#1042123,boo#1142670)
- rfkill: fix switch statement to check enum variable not a constant (bsc#1140117)
- man: ifcfg-ovs-bridge(5): recommend STARTMODE=nfsroot
- dhcp4: nullify defer timer pointer when timeout (openSUSE/wicked#798)
- dhcp4: fix to request routing options when custom options are used (bsc#1132326)
- testing: add ifbind.sh helper script allowing to test hotplugging
==== xen ====
Version update (4.12.0_16 -> 4.12.1_02)
- Update to Xen 4.12.1 bug fix release (bsc#1027519)
xen-4.12.1-testing-src.tar.bz2
- Drop patches contained in new tarball
5c87b644-IOMMU-leave-enabled-for-kexec-crash.patch
5c87b6a2-x86-HVM-dont-crash-guest-in-find_mmio_cache.patch
5c87b6c8-drop-arch_evtchn_inject.patch
5c87b6e8-avoid-atomic-rmw-accesses-in-map_vcpu_info.patch
5c87e6d1-x86-TSX-controls-for-RTM-force-abort-mode.patch
5c8f752c-x86-e820-build-with-gcc9.patch
5c8fb92d-x86-HVM-split-linear-reads-and-writes.patch
5c8fb951-x86-HVM-finish-IOREQs-correctly-on-completion.patch
5c8fc6c0-x86-MSR-shorten-ARCH_CAPABILITIES.patch
5c8fc6c0-x86-SC-retpoline-safety-calculations-for-eIBRS.patch
5c9e63c5-credit2-SMT-idle-handling.patch
5ca46b68-x86emul-no-GPR-update-upon-AVX-gather-failures.patch
5ca773d1-x86emul-dont-read-mask-reg-without-AVX512F.patch
5cab1f66-timers-fix-memory-leak-with-cpu-plug.patch
5cac6cba-vmx-Fixup-removals-of-MSR-load-save-list-entries.patch
5cd921fb-trace-fix-build-with-gcc9.patch
5cd9224b-AMD-IOMMU-disable-upon-init-fail.patch
5cd922c5-x86-MTRR-recalc-p2mt-when-iocaps.patch
5cd9230f-VMX-correctly-get-GS_SHADOW-for-current.patch
5cd926d0-bitmap_fill-zero-sized.patch
5cd92724-drivers-video-drop-constraints.patch
5cd93a69-x86-MSR_INTEL_CORE_THREAD_COUNT.patch
5cd93a69-x86-boot-detect-Intel-SMT-correctly.patch
5cd93a69-x86-spec-ctrl-reposition-XPTI-parsing.patch
5cd981ff-x86-IRQ-tracing-avoid-UB-or-worse.patch
5cdad090-x86-spec-ctrl-CPUID-MSR-definitions-for-MDS.patch
5cdad090-x86-spec-ctrl-infrastructure-for-VERW-flush.patch
5cdad090-x86-spec-ctrl-misc-non-functional-cleanup.patch
5cdad090-x86-spec-ctrl-opts-to-control-VERW-flush.patch
5cdeb9fd-sched-fix-csched2_deinit_pdata.patch
5ce7a92f-x86-IO-APIC-fix-build-with-gcc9.patch
5cf0f6a4-x86-vhpet-resume-avoid-small-diff.patch
5cf16e51-x86-spec-ctrl-Knights-retpoline-safe.patch
5d03a0c4-1-Arm-add-an-isb-before-reading-CNTPCT_EL0.patch
5d03a0c4-2-gnttab-rework-prototype-of-set_status.patch
5d03a0c4-3-Arm64-rewrite-bitops-in-C.patch
5d03a0c4-4-Arm32-rewrite-bitops-in-C.patch
5d03a0c4-5-Arm-bitops-consolidate-prototypes.patch
5d03a0c4-6-Arm64-cmpxchg-simplify.patch
5d03a0c4-7-Arm32-cmpxchg-simplify.patch
5d03a0c4-8-Arm-bitops-helpers-with-timeout.patch
5d03a0c4-9-Arm-cmpxchg-helper-with-timeout.patch
5d03a0c4-A-Arm-turn-on-SILO-mode-by-default.patch
5d03a0c4-B-bitops-guest-helpers.patch
5d03a0c4-C-cmpxchg-guest-helpers.patch
5d03a0c4-D-use-guest-atomics-helpers.patch
5d03a0c4-E-Arm-add-perf-counters-in-guest-atomic-helpers.patch
5d03a0c4-F-Arm-protect-gnttab_clear_flag.patch
- Refreshed patches
libxl.pvscsi.patch
xen-tools.etc_pollution.patch
--
To unsubscribe, e-mail: opensuse-kubic+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-kubic+owner(a)opensuse.org
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=1&version=T…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
ca-certificates-mozilla (2.30 -> 2.34)
gcc9 (9.1.1+r273734 -> 9.1.1+r274111)
krb5
kubernetes
open-iscsi
patterns-base
patterns-microos
python-pytz (2019.1 -> 2019.2)
sysconfig (0.85.2 -> 0.85.3)
system-users
yast2 (4.2.17 -> 4.2.18)
=== Details ===
==== ca-certificates-mozilla ====
Version update (2.30 -> 2.34)
- update to 2.34 state of the Mozilla NSS Certificate store (bsc#1144169)
- Removed CAs:
- Certinomis - Root CA
- includes added root CAs from the 2.32 version:
- emSign ECC Root CA - C3 (email and server auth)
- emSign ECC Root CA - G3 (email and server auth)
- emSign Root CA - C1 (email and server auth)
- emSign Root CA - G1 (email and server auth)
- Hongkong Post Root CA 3 (server auth)
==== gcc9 ====
Version update (9.1.1+r273734 -> 9.1.1+r274111)
Subpackages: libgcc_s1 libstdc++6
- Enable cross compilers on riscv64
- Update to gcc-9-branch head (r274111).
* GCC 9.2 RC1.
- Remove bogus fixed include bits/statx.h from glibc 2.30. [gcc#91085]
- Update to gcc-9-branch head (r273795):
* Includes fix for LTO linker plugin heap overflow.
(bsc#1142649, CVE-2019-14250)
- Add systemtap-headers BuildRequires. [bsc#1142654]
==== krb5 ====
- Integrate pam_keyinit pam module, ksu-pam.d; (bsc#1081947);
(bsc#1144047);
==== kubernetes ====
Subpackages: kubernetes-client kubernetes-kubeadm kubernetes-kubelet
- Relax kubeadm requirements. Kubeadm accepts working with a previous
version of kubelet and this is important for performing upgrades.
See https://kubernetes.io/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade…
- Previous update to version 1.15.2 fixed:
* bsc#1144507: CVE-2019-11249 (incomplete fixes for CVE-2019-1002101 and CVE-2019-11246)
* bsc#1142423: CVE-2019-11247: kubernetes: mistaken allowing access to cluster resources
==== open-iscsi ====
Subpackages: iscsiuio libopeniscsiusr0_2_0
- Disable LTO (Link Time Optimization) on aarch64 since it seems
to fail -- iscsiadm core dumps almost immediately (bsc#1143192),
updating the SPEC file.
==== patterns-base ====
Subpackages: patterns-base-apparmor patterns-base-minimal_base
- use journal by default (boo#1143144)
- Add openSUSE Welcome to be included in the x11_enhanced pattern.
- Drop google-roboto-fonts recommends: nothing really depends on
it and roboto is not used as default font in any openSUSE setup
(boo#1144135).
==== patterns-microos ====
Subpackages: patterns-microos-alt_onlyDVD patterns-microos-apparmor patterns-microos-base patterns-microos-basesystem patterns-microos-cloud patterns-microos-defaults patterns-microos-hardware patterns-microos-ima_evm patterns-microos-onlyDVD patterns-microos-selinux patterns-microos-sssd_ldap
- MicroOS base: remove update-checker, the only on openSUSE usefull
functionality (orphaned packages) does not work due a zypper bug.
- Add zypper-needs-restarting to MicroOS base pattern
==== python-pytz ====
Version update (2019.1 -> 2019.2)
- update to 2019.2
* IANA 2019b
* Defer generating case-insensitive lookups
==== sysconfig ====
Version update (0.85.2 -> 0.85.3)
Subpackages: sysconfig-netconfig
- version 0.85.3
- boo#1123699: Use systemd's tmpfile mechanism to create the
symlink infrastructure for resolv.conf and yp.conf early during
boot.
==== system-users ====
Subpackages: system-group-hardware system-group-wheel system-user-bin system-user-daemon system-user-nobody
- Remove s390 groups again. The s390-tools maintainer wants to add groups in
s390-tools manually.
- Add system-user-tftp subpackage with tftp user and group and
/srv/tftpboot as home directory [bsc#1143454].
==== yast2 ====
Version update (4.2.17 -> 4.2.18)
- Remove the obsolete XVersion API (bsc#1144627).
- Detect missing textdomain during testing (bsc#1130822)
- 4.2.18
--
To unsubscribe, e-mail: opensuse-kubic+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-kubic+owner(a)opensuse.org
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
ca-certificates-mozilla (2.30 -> 2.34)
gcc9 (9.1.1+r273734 -> 9.1.1+r274111)
krb5
open-iscsi
patterns-microos
python-pytz (2019.1 -> 2019.2)
sysconfig (0.85.2 -> 0.85.3)
system-users
yast2 (4.2.17 -> 4.2.18)
=== Details ===
==== ca-certificates-mozilla ====
Version update (2.30 -> 2.34)
- update to 2.34 state of the Mozilla NSS Certificate store (bsc#1144169)
- Removed CAs:
- Certinomis - Root CA
- includes added root CAs from the 2.32 version:
- emSign ECC Root CA - C3 (email and server auth)
- emSign ECC Root CA - G3 (email and server auth)
- emSign Root CA - C1 (email and server auth)
- emSign Root CA - G1 (email and server auth)
- Hongkong Post Root CA 3 (server auth)
==== gcc9 ====
Version update (9.1.1+r273734 -> 9.1.1+r274111)
Subpackages: libgcc_s1 libstdc++6
- Enable cross compilers on riscv64
- Update to gcc-9-branch head (r274111).
* GCC 9.2 RC1.
- Remove bogus fixed include bits/statx.h from glibc 2.30. [gcc#91085]
- Update to gcc-9-branch head (r273795):
* Includes fix for LTO linker plugin heap overflow.
(bsc#1142649, CVE-2019-14250)
- Add systemtap-headers BuildRequires. [bsc#1142654]
==== krb5 ====
- Integrate pam_keyinit pam module, ksu-pam.d; (bsc#1081947);
(bsc#1144047);
==== open-iscsi ====
Subpackages: iscsiuio libopeniscsiusr0_2_0
- Disable LTO (Link Time Optimization) on aarch64 since it seems
to fail -- iscsiadm core dumps almost immediately (bsc#1143192),
updating the SPEC file.
==== patterns-microos ====
Subpackages: patterns-microos-alt_onlyDVD patterns-microos-apparmor patterns-microos-base patterns-microos-basesystem patterns-microos-cloud patterns-microos-defaults patterns-microos-hardware patterns-microos-ima_evm patterns-microos-onlyDVD patterns-microos-selinux patterns-microos-sssd_ldap
- MicroOS base: remove update-checker, the only on openSUSE usefull
functionality (orphaned packages) does not work due a zypper bug.
- Add zypper-needs-restarting to MicroOS base pattern
==== python-pytz ====
Version update (2019.1 -> 2019.2)
- update to 2019.2
* IANA 2019b
* Defer generating case-insensitive lookups
==== sysconfig ====
Version update (0.85.2 -> 0.85.3)
Subpackages: sysconfig-netconfig
- version 0.85.3
- boo#1123699: Use systemd's tmpfile mechanism to create the
symlink infrastructure for resolv.conf and yp.conf early during
boot.
==== system-users ====
Subpackages: system-group-hardware system-group-wheel system-user-nobody
- Remove s390 groups again. The s390-tools maintainer wants to add groups in
s390-tools manually.
- Add system-user-tftp subpackage with tftp user and group and
/srv/tftpboot as home directory [bsc#1143454].
==== yast2 ====
Version update (4.2.17 -> 4.2.18)
- Remove the obsolete XVersion API (bsc#1144627).
- Detect missing textdomain during testing (bsc#1130822)
- 4.2.18
--
To unsubscribe, e-mail: opensuse-kubic+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-kubic+owner(a)opensuse.org
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=1&version=T…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
ima-evm-utils (1.1 -> 1.2.1)
kail (0.10.1 -> 0.11.0)
kernel-default-base (5.2.7 -> 5.2.8)
kernel-source (5.2.7 -> 5.2.8)
kubic-control (0.7.0 -> 0.8.2)
libseccomp
open-vm-tools
=== Details ===
==== ima-evm-utils ====
Version update (1.1 -> 1.2.1)
- Update to version 1.2.1 (included changes of unreleased v1.2)
version 1.2 new features:
* Generate EVM signatures based on the specified hash algorithm
* include "security.apparmor" in EVM signature
* Add support for writing & verifying "user.xxxx" xattrs for testing
* Support Strebog/Gost hash functions
* Add OpenSSL engine support
* Use of EVP_PKEY OpenSSL API to generate/verify v2 signatures
* Support verifying multiple signatures at once
* Support new template "buf" field and warn about other unknown fields
* Improve OpenSSL error reporting
* Support reading TPM 2.0 PCRs using tsspcrread
Bug fixes and code cleanup:
* Update manpage stylesheet detection
* Fix xattr.h include file
* On error when reading TPM PCRs, don't log gargabe
* Properly return keyid string to calc_keyid_v1/v2 callers, caused by
limiting keyid output to verbose mode
* Fix hash buffer overflow caused by EVM support for larger hashes,
defined MAX_DIGEST_SIZE and MAX_SIGNATURE_SIZE, and added "asserts".
* Linked with libcrypto instead of OpenSSL
* Updated Autotools, replacing INCLUDES with AM_CPPFLAGS
* Include new "hash-info.gen" in tar
* Log the hash algorithm, not just the hash value
* Fixed memory leaks in: EV_MD_CTX, init_public_keys
* Fixed other warnings/bugs discovered by clang, coverity
* Remove indirect calls in verify_hash() to improve code readability
* Don't fallback to using sha1
* Namespace some too generic object names
* Make functions/arrays static if possible
- Upstream bumped soname to 1.0.0 in v1.2
- Drop ima-evm-utils-xattr.patch and ima-evm-utils-fix-docbook-xsl-directory.patch (included in v1.2)
==== kail ====
Version update (0.10.1 -> 0.11.0)
- Update to version 0.11.0
- Write to /dev/stderr in a cross-platform way by default (#41)
==== kernel-default-base ====
Version update (5.2.7 -> 5.2.8)
- Shorten module list by using wildcards.
==== kernel-source ====
Version update (5.2.7 -> 5.2.8)
Subpackages: kernel-debug kernel-default
- Linux 5.2.8 (bnc#1012628).
- scsi: fcoe: Embed fc_rport_priv in fcoe_rport structure
(bnc#1012628).
- libnvdimm/bus: Prepare the nd_ioctl() path to be re-entrant
(bnc#1012628).
- libnvdimm/bus: Fix wait_nvdimm_bus_probe_idle() ABBA deadlock
(bnc#1012628).
- ALSA: usb-audio: Sanity checks for each pipe and EP types
(bnc#1012628).
- ALSA: usb-audio: Fix gpf in snd_usb_pipe_sanity_check
(bnc#1012628).
- HID: wacom: fix bit shift for Cintiq Companion 2 (bnc#1012628).
- HID: Add quirk for HP X1200 PIXART OEM mouse (bnc#1012628).
- atm: iphase: Fix Spectre v1 vulnerability (bnc#1012628).
- bnx2x: Disable multi-cos feature (bnc#1012628).
- drivers/net/ethernet/marvell/mvmdio.c: Fix non OF case
(bnc#1012628).
- ife: error out when nla attributes are empty (bnc#1012628).
- ip6_gre: reload ipv6h in prepare_ip6gre_xmit_ipv6 (bnc#1012628).
- ip6_tunnel: fix possible use-after-free on xmit (bnc#1012628).
- ipip: validate header length in ipip_tunnel_xmit (bnc#1012628).
- mlxsw: spectrum: Fix error path in mlxsw_sp_module_init()
(bnc#1012628).
- mvpp2: fix panic on module removal (bnc#1012628).
- mvpp2: refactor MTU change code (bnc#1012628).
- net: bridge: delete local fdb on device init failure
(bnc#1012628).
- net: bridge: mcast: don't delete permanent entries when fast
leave is enabled (bnc#1012628).
- net: bridge: move default pvid init/deinit to
NETDEV_REGISTER/UNREGISTER (bnc#1012628).
- net: fix ifindex collision during namespace removal
(bnc#1012628).
- net/mlx5e: always initialize frag->last_in_page (bnc#1012628).
- net/mlx5: Use reversed order when unregister devices
(bnc#1012628).
- net: phy: fixed_phy: print gpio error only if gpio node is
present (bnc#1012628).
- net: phylink: don't start and stop SGMII PHYs in SFP modules
twice (bnc#1012628).
- net: phylink: Fix flow control for fixed-link (bnc#1012628).
- net: phy: mscc: initialize stats array (bnc#1012628).
- net: qualcomm: rmnet: Fix incorrect UL checksum offload logic
(bnc#1012628).
- net: sched: Fix a possible null-pointer dereference in
dequeue_func() (bnc#1012628).
- net sched: update vlan action for batched events operations
(bnc#1012628).
- net: sched: use temporary variable for actions indexes
(bnc#1012628).
- net/smc: do not schedule tx_work in SMC_CLOSED state
(bnc#1012628).
- net: stmmac: Use netif_tx_napi_add() for TX polling function
(bnc#1012628).
- NFC: nfcmrvl: fix gpio-handling regression (bnc#1012628).
- ocelot: Cancel delayed work before wq destruction (bnc#1012628).
- tipc: compat: allow tipc commands without arguments
(bnc#1012628).
- tipc: fix unitilized skb list crash (bnc#1012628).
- tun: mark small packets as owned by the tap sock (bnc#1012628).
- net/mlx5: Fix modify_cq_in alignment (bnc#1012628).
- net/mlx5e: Prevent encap flow counter update async to user query
(bnc#1012628).
- r8169: don't use MSI before RTL8168d (bnc#1012628).
- bpf: fix XDP vlan selftests test_xdp_vlan.sh (bnc#1012628).
- selftests/bpf: add wrapper scripts for test_xdp_vlan.sh
(bnc#1012628).
- selftests/bpf: reduce time to execute test_xdp_vlan.sh
(bnc#1012628).
- net: fix bpf_xdp_adjust_head regression for generic-XDP
(bnc#1012628).
- hv_sock: Fix hang when a connection is closed (bnc#1012628).
- net: phy: fix race in genphy_update_link (bnc#1012628).
- net/smc: avoid fallback in case of non-blocking connect
(bnc#1012628).
- rocker: fix memory leaks of fib_work on two error return paths
(bnc#1012628).
- mlxsw: spectrum_buffers: Further reduce pool size on Spectrum-2
(bnc#1012628).
- net/mlx5: Add missing RDMA_RX capabilities (bnc#1012628).
- net/mlx5e: Fix matching of speed to PRM link modes
(bnc#1012628).
- compat_ioctl: pppoe: fix PPPOEIOCSFWD handling (bnc#1012628).
- Revert "mac80211: set NETIF_F_LLTX when using intermediate tx
queues" (bnc#1012628).
- spi: bcm2835: Fix 3-wire mode if DMA is enabled (bnc#1012628).
- commit bf37e83
- Use the upstream patch.
(Including the tags.)
- commit 5dd5b2d
- s390: enable detection of kernel version from bzImage
(bnc#1139939).
- commit 8434c05
- drm/i915/vbt: Fix VBT parsing for the PSR section (bsc#1143139).
- commit 0bef772
- rpm/kernel-binary.spec.in: support partial rt debug config.
- commit af37821
==== kubic-control ====
Version update (0.7.0 -> 0.8.2)
Subpackages: kubicctl kubicd
- Update to version 0.8.2
- Implement new status API call
- Update pod network and kured daemonsets in case of kubernetes
upgrade
- Update to version 0.8.1
- Unify and fix kubernetes version handling for installation
and upgrade
- Update to version 0.8.0
- Rework adding and removing of nodes to make this more
robust and support master nodes
==== libseccomp ====
- ignore make check error for ppc64/ppc64le, bypass boo#1142614
==== open-vm-tools ====
Subpackages: libvmtools0
- Revert change from (bsc#1133623) update vmtoolsd.service tools to run after
the network service is ready. This updated caused cyclic dependencies as
reported by bugs (bsc#1143452) and (bsc#1141969)
--
To unsubscribe, e-mail: opensuse-kubic+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-kubic+owner(a)opensuse.org
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
ima-evm-utils (1.1 -> 1.2.1)
kernel-default-base (5.2.7 -> 5.2.8)
kernel-source (5.2.7 -> 5.2.8)
libseccomp
open-vm-tools
=== Details ===
==== ima-evm-utils ====
Version update (1.1 -> 1.2.1)
- Update to version 1.2.1 (included changes of unreleased v1.2)
version 1.2 new features:
* Generate EVM signatures based on the specified hash algorithm
* include "security.apparmor" in EVM signature
* Add support for writing & verifying "user.xxxx" xattrs for testing
* Support Strebog/Gost hash functions
* Add OpenSSL engine support
* Use of EVP_PKEY OpenSSL API to generate/verify v2 signatures
* Support verifying multiple signatures at once
* Support new template "buf" field and warn about other unknown fields
* Improve OpenSSL error reporting
* Support reading TPM 2.0 PCRs using tsspcrread
Bug fixes and code cleanup:
* Update manpage stylesheet detection
* Fix xattr.h include file
* On error when reading TPM PCRs, don't log gargabe
* Properly return keyid string to calc_keyid_v1/v2 callers, caused by
limiting keyid output to verbose mode
* Fix hash buffer overflow caused by EVM support for larger hashes,
defined MAX_DIGEST_SIZE and MAX_SIGNATURE_SIZE, and added "asserts".
* Linked with libcrypto instead of OpenSSL
* Updated Autotools, replacing INCLUDES with AM_CPPFLAGS
* Include new "hash-info.gen" in tar
* Log the hash algorithm, not just the hash value
* Fixed memory leaks in: EV_MD_CTX, init_public_keys
* Fixed other warnings/bugs discovered by clang, coverity
* Remove indirect calls in verify_hash() to improve code readability
* Don't fallback to using sha1
* Namespace some too generic object names
* Make functions/arrays static if possible
- Upstream bumped soname to 1.0.0 in v1.2
- Drop ima-evm-utils-xattr.patch and ima-evm-utils-fix-docbook-xsl-directory.patch (included in v1.2)
==== kernel-default-base ====
Version update (5.2.7 -> 5.2.8)
- Shorten module list by using wildcards.
==== kernel-source ====
Version update (5.2.7 -> 5.2.8)
Subpackages: kernel-debug kernel-default
- Linux 5.2.8 (bnc#1012628).
- scsi: fcoe: Embed fc_rport_priv in fcoe_rport structure
(bnc#1012628).
- libnvdimm/bus: Prepare the nd_ioctl() path to be re-entrant
(bnc#1012628).
- libnvdimm/bus: Fix wait_nvdimm_bus_probe_idle() ABBA deadlock
(bnc#1012628).
- ALSA: usb-audio: Sanity checks for each pipe and EP types
(bnc#1012628).
- ALSA: usb-audio: Fix gpf in snd_usb_pipe_sanity_check
(bnc#1012628).
- HID: wacom: fix bit shift for Cintiq Companion 2 (bnc#1012628).
- HID: Add quirk for HP X1200 PIXART OEM mouse (bnc#1012628).
- atm: iphase: Fix Spectre v1 vulnerability (bnc#1012628).
- bnx2x: Disable multi-cos feature (bnc#1012628).
- drivers/net/ethernet/marvell/mvmdio.c: Fix non OF case
(bnc#1012628).
- ife: error out when nla attributes are empty (bnc#1012628).
- ip6_gre: reload ipv6h in prepare_ip6gre_xmit_ipv6 (bnc#1012628).
- ip6_tunnel: fix possible use-after-free on xmit (bnc#1012628).
- ipip: validate header length in ipip_tunnel_xmit (bnc#1012628).
- mlxsw: spectrum: Fix error path in mlxsw_sp_module_init()
(bnc#1012628).
- mvpp2: fix panic on module removal (bnc#1012628).
- mvpp2: refactor MTU change code (bnc#1012628).
- net: bridge: delete local fdb on device init failure
(bnc#1012628).
- net: bridge: mcast: don't delete permanent entries when fast
leave is enabled (bnc#1012628).
- net: bridge: move default pvid init/deinit to
NETDEV_REGISTER/UNREGISTER (bnc#1012628).
- net: fix ifindex collision during namespace removal
(bnc#1012628).
- net/mlx5e: always initialize frag->last_in_page (bnc#1012628).
- net/mlx5: Use reversed order when unregister devices
(bnc#1012628).
- net: phy: fixed_phy: print gpio error only if gpio node is
present (bnc#1012628).
- net: phylink: don't start and stop SGMII PHYs in SFP modules
twice (bnc#1012628).
- net: phylink: Fix flow control for fixed-link (bnc#1012628).
- net: phy: mscc: initialize stats array (bnc#1012628).
- net: qualcomm: rmnet: Fix incorrect UL checksum offload logic
(bnc#1012628).
- net: sched: Fix a possible null-pointer dereference in
dequeue_func() (bnc#1012628).
- net sched: update vlan action for batched events operations
(bnc#1012628).
- net: sched: use temporary variable for actions indexes
(bnc#1012628).
- net/smc: do not schedule tx_work in SMC_CLOSED state
(bnc#1012628).
- net: stmmac: Use netif_tx_napi_add() for TX polling function
(bnc#1012628).
- NFC: nfcmrvl: fix gpio-handling regression (bnc#1012628).
- ocelot: Cancel delayed work before wq destruction (bnc#1012628).
- tipc: compat: allow tipc commands without arguments
(bnc#1012628).
- tipc: fix unitilized skb list crash (bnc#1012628).
- tun: mark small packets as owned by the tap sock (bnc#1012628).
- net/mlx5: Fix modify_cq_in alignment (bnc#1012628).
- net/mlx5e: Prevent encap flow counter update async to user query
(bnc#1012628).
- r8169: don't use MSI before RTL8168d (bnc#1012628).
- bpf: fix XDP vlan selftests test_xdp_vlan.sh (bnc#1012628).
- selftests/bpf: add wrapper scripts for test_xdp_vlan.sh
(bnc#1012628).
- selftests/bpf: reduce time to execute test_xdp_vlan.sh
(bnc#1012628).
- net: fix bpf_xdp_adjust_head regression for generic-XDP
(bnc#1012628).
- hv_sock: Fix hang when a connection is closed (bnc#1012628).
- net: phy: fix race in genphy_update_link (bnc#1012628).
- net/smc: avoid fallback in case of non-blocking connect
(bnc#1012628).
- rocker: fix memory leaks of fib_work on two error return paths
(bnc#1012628).
- mlxsw: spectrum_buffers: Further reduce pool size on Spectrum-2
(bnc#1012628).
- net/mlx5: Add missing RDMA_RX capabilities (bnc#1012628).
- net/mlx5e: Fix matching of speed to PRM link modes
(bnc#1012628).
- compat_ioctl: pppoe: fix PPPOEIOCSFWD handling (bnc#1012628).
- Revert "mac80211: set NETIF_F_LLTX when using intermediate tx
queues" (bnc#1012628).
- spi: bcm2835: Fix 3-wire mode if DMA is enabled (bnc#1012628).
- commit bf37e83
- Use the upstream patch.
(Including the tags.)
- commit 5dd5b2d
- s390: enable detection of kernel version from bzImage
(bnc#1139939).
- commit 8434c05
- drm/i915/vbt: Fix VBT parsing for the PSR section (bsc#1143139).
- commit 0bef772
- rpm/kernel-binary.spec.in: support partial rt debug config.
- commit af37821
==== libseccomp ====
- ignore make check error for ppc64/ppc64le, bypass boo#1142614
==== open-vm-tools ====
Subpackages: libvmtools0
- Revert change from (bsc#1133623) update vmtoolsd.service tools to run after
the network service is ready. This updated caused cyclic dependencies as
reported by bugs (bsc#1143452) and (bsc#1141969)
--
To unsubscribe, e-mail: opensuse-kubic+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-kubic+owner(a)opensuse.org
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=1&version=T…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
branding-openSUSE
cri-o
kernel-source (5.2.5 -> 5.2.7)
libcontainers-common
slirp4netns
=== Details ===
==== branding-openSUSE ====
- Add patch to fix parallel build:
* fix-parallel-build.patch
==== cri-o ====
Subpackages: cri-o-kubeadm-criconfig
- Update crio.conf to:
* use `127.0.0.1` as streaming address
* use any ephemeral port for streaming server
==== kernel-source ====
Version update (5.2.5 -> 5.2.7)
Subpackages: kernel-debug kernel-default
- Linux 5.2.7 (bnc#1012628).
- Documentation: Add swapgs description to the Spectre v1
documentation (bnc#1012628).
- x86/speculation/swapgs: Exclude ATOMs from speculation through
SWAPGS (bnc#1012628).
- x86/entry/64: Use JMP instead of JMPQ (bnc#1012628).
- x86/speculation: Enable Spectre v1 swapgs mitigations
(bnc#1012628).
- x86/speculation: Prepare entry code for Spectre v1 swapgs
mitigations (bnc#1012628).
- x86/cpufeatures: Combine word 11 and 12 into a new scattered
features word (bnc#1012628).
- x86/cpufeatures: Carve out CQM features retrieval (bnc#1012628).
- drm/i915/gvt: fix incorrect cache entry for guest page mapping
(bnc#1012628).
- drm/i915/perf: fix ICL perf register offsets (bnc#1012628).
- IB/hfi1: Field not zero-ed when allocating TID flow memory
(bnc#1012628).
- IB/hfi1: Drop all TID RDMA READ RESP packets after r_next_psn
(bnc#1012628).
- IB/hfi1: Check for error on call to alloc_rsm_map_table
(bnc#1012628).
- IB/mlx5: Fix RSS Toeplitz setup to be aligned with the HW
specification (bnc#1012628).
- IB/mlx5: Fix clean_mr() to work in the expected order
(bnc#1012628).
- IB/mlx5: Move MRs to a kernel PD when freeing them to the MR
cache (bnc#1012628).
- IB/mlx5: Use direct mkey destroy command upon UMR unreg failure
(bnc#1012628).
- IB/mlx5: Fix unreg_umr to ignore the mkey state (bnc#1012628).
- RDMA/devices: Do not deadlock during client removal
(bnc#1012628).
- RDMA/bnxt_re: Honor vlan_id in GID entry comparison
(bnc#1012628).
- xen/gntdev.c: Replace vm_map_pages() with vm_map_pages_zero()
(bnc#1012628).
- xen/swiotlb: fix condition for calling
xen_destroy_contiguous_region() (bnc#1012628).
- nbd: replace kill_bdev() with __invalidate_device() again
(bnc#1012628).
- scsi: mpt3sas: Use 63-bit DMA addressing on SAS35 HBA
(bnc#1012628).
- clk: mediatek: mt8183: Register 13MHz clock earlier for
clocksource (bnc#1012628).
- io_uring: fix KASAN use after free in io_sq_wq_submit_work
(bnc#1012628).
- arm64: cpufeature: Fix feature comparison for CTR_EL0.{CWG,ERG}
(bnc#1012628).
- arm64: compat: Allow single-byte watchpoints on all addresses
(bnc#1012628).
- drivers/perf: arm_pmu: Fix failure path in PM notifier
(bnc#1012628).
- parisc: Fix build of compressed kernel even with debug enabled
(bnc#1012628).
- parisc: Strip debug info from kernel before creating compressed
vmlinuz (bnc#1012628).
- parisc: Add archclean Makefile target (bnc#1012628).
- cgroup: kselftest: relax fs_spec checks (bnc#1012628).
- s390/dasd: fix endless loop after read unit address
configuration (bnc#1012628).
- loop: Fix mount(2) failure due to race with LOOP_SET_FD
(bnc#1012628).
- mm/migrate.c: initialize pud_entry in migrate_vma()
(bnc#1012628).
- ubsan: build ubsan.c more conservatively (bnc#1012628).
- mm: compaction: avoid 100% CPU usage during compaction when
a task is killed (bnc#1012628).
- mm: migrate: fix reference check race between __find_get_block()
and migration (bnc#1012628).
- mm: vmscan: check if mem cgroup is disabled or not before
calling memcg slab shrinker (bnc#1012628).
- ALSA: hda: Fix 1-minute detection delay when i915 module is
not available (bnc#1012628).
- selinux: fix memory leak in policydb_init() (bnc#1012628).
- powerpc/kasan: fix early boot failure on PPC32 (bnc#1012628).
- i2c: at91: fix clk_offset for sama5d2 (bnc#1012628).
- i2c: at91: disable TXRDY interrupt after sending data
(bnc#1012628).
- i2c: iproc: Fix i2c master read more than 63 bytes
(bnc#1012628).
- eeprom: at24: make spd world-readable again (bnc#1012628).
- mtd: rawnand: micron: handle on-die "ECC-off" devices correctly
(bnc#1012628).
- drm/nouveau: Only release VCPI slots on mode changes
(bnc#1012628).
- IB/hfi1: Fix Spectre v1 vulnerability (bnc#1012628).
- gpiolib: fix incorrect IRQ requesting of an active-low lineevent
(bnc#1012628).
- gpio: don't WARN() on NULL descs if gpiolib is disabled
(bnc#1012628).
- gpiolib: Preserve desc->flags when setting state (bnc#1012628).
- mmc: mmc_spi: Enable stable writes (bnc#1012628).
- mmc: host: sdhci-sprd: Fix the missing pm_runtime_put_noidle()
(bnc#1012628).
- mmc: meson-mx-sdio: Fix misuse of GENMASK macro (bnc#1012628).
- mmc: dw_mmc: Fix occasional hang after tuning on eMMC
(bnc#1012628).
- fgraph: Remove redundant ftrace_graph_notrace_addr() test
(bnc#1012628).
- dax: Fix missed wakeup in put_unlocked_entry() (bnc#1012628).
- Btrfs: fix race leading to fs corruption after transaction abort
(bnc#1012628).
- Btrfs: fix incremental send failure after deduplication
(bnc#1012628).
- tpm: Fix null pointer dereference on chip register error path
(bnc#1012628).
- kbuild: modpost: include .*.cmd files only when targets exist
(bnc#1012628).
- kbuild: initialize CLANG_FLAGS correctly in the top Makefile
(bnc#1012628).
- kconfig: Clear "written" flag to avoid data loss (bnc#1012628).
- drm/nouveau/dmem: missing mutex_lock in error path
(bnc#1012628).
- drm/nouveau: fix memory leak in nouveau_conn_reset()
(bnc#1012628).
- bpf: Disable GCC -fgcse optimization for ___bpf_prog_run()
(bnc#1012628).
- x86, boot: Remove multiple copy of static function
sanitize_boot_params() (bnc#1012628).
- x86/paravirt: Fix callee-saved function ELF sizes (bnc#1012628).
- x86/kvm: Don't call kvm_spurious_fault() from .fixup
(bnc#1012628).
- xen/pv: Fix a boot up hang revealed by int3 self test
(bnc#1012628).
- crypto: ccp - Fix SEV_VERSION_GREATER_OR_EQUAL (bnc#1012628).
- stacktrace: Force USER_DS for stack_trace_save_user()
(bnc#1012628).
- mm/hotplug: make remove_memory() interface usable (bnc#1012628).
- device-dax: fix memory and resource leak if hotplug fails
(bnc#1012628).
- nds32: fix asm/syscall.h (bnc#1012628).
- ipc/mqueue.c: only perform resource calculation if user valid
(bnc#1012628).
- drivers/rapidio/devices/rio_mport_cdev.c: NUL terminate some
strings (bnc#1012628).
- uapi linux/coda_psdev.h: move upc_req definition from uapi to
kernel side headers (bnc#1012628).
- coda: fix build using bare-metal toolchain (bnc#1012628).
- coda: add error handling for fget (bnc#1012628).
- mm/ioremap: check virtual address alignment while creating
huge mappings (bnc#1012628).
- lib/test_string.c: avoid masking memset16/32/64 failures
(bnc#1012628).
- lib/test_overflow.c: avoid tainting the kernel and fix wrap size
(bnc#1012628).
- mm/cma.c: fail if fixed declaration can't be honored
(bnc#1012628).
- x86: math-emu: Hide clang warnings for 16-bit overflow
(bnc#1012628).
- x86/apic: Silence -Wtype-limits compiler warnings (bnc#1012628).
- mm/z3fold.c: reinitialize zhdr structs after migration
(bnc#1012628).
- mm/memcontrol.c: keep local VM counters in sync with the
hierarchical ones (bnc#1012628).
- mm/slab_common.c: work around clang bug #42570 (bnc#1012628).
- mm/z3fold: don't try to use buddy slots after free
(bnc#1012628).
- be2net: Signal that the device cannot transmit during
reconfiguration (bnc#1012628).
- bpf: fix BTF verifier size resolution logic (bnc#1012628).
- KVM: nVMX: Ignore segment base for VMX memory operand when
segment not FS or GS (bnc#1012628).
- ACPI: fix false-positive -Wuninitialized warning (bnc#1012628).
- x86: kvm: avoid constant-conversion warning (bnc#1012628).
- perf version: Fix segfault due to missing OPT_END()
(bnc#1012628).
- cifs: fix crash in cifs_dfs_do_automount (bnc#1012628).
- drm/amd/display: Expose audio inst from DC to DM (bnc#1012628).
- selftests/bpf: do not ignore clang failures (bnc#1012628).
- scsi: zfcp: fix GCC compiler warning emitted with
- Wmaybe-uninitialized (bnc#1012628).
- ACPI: blacklist: fix clang warning for unused DMI table
(bnc#1012628).
- virtio-mmio: add error check for platform_get_irq (bnc#1012628).
- ceph: return -ERANGE if virtual xattr value didn't fit in buffer
(bnc#1012628).
- ceph: fix dir_lease_is_valid() (bnc#1012628).
- ceph: fix improper use of smp_mb__before_atomic() (bnc#1012628).
- cifs: Fix a race condition with cifs_echo_request (bnc#1012628).
- btrfs: qgroup: Don't hold qgroup_ioctl_lock in
btrfs_qgroup_inherit() (bnc#1012628).
- remoteproc: copy parent dma_pfn_offset for vdev (bnc#1012628).
- btrfs: Flush before reflinking any extent to prevent NOCOW write
falling back to COW without data reservation (bnc#1012628).
- btrfs: fix minimum number of chunk errors for DUP (bnc#1012628).
- btrfs: tree-checker: Check if the file extent end overflows
(bnc#1012628).
- arm64: dts: rockchip: Fix USB3 Type-C on rk3399-sapphire
(bnc#1012628).
- clk: sprd: Add check for return value of sprd_clk_regmap_init()
(bnc#1012628).
- fs/adfs: super: fix use-after-free bug (bnc#1012628).
- clk: tegra210: fix PLLU and PLLU_OUT1 (bnc#1012628).
- ARM: exynos: Only build MCPM support if used (bnc#1012628).
- Update config files.
- dmaengine: rcar-dmac: Reject zero-length slave DMA requests
(bnc#1012628).
- MIPS: lantiq: Fix bitfield masking (bnc#1012628).
- swiotlb: fix phys_addr_t overflow warning (bnc#1012628).
- arm64: qcom: qcs404: Add reset-cells to GCC node (bnc#1012628).
- soc: imx8: Fix potential kernel dump in error path
(bnc#1012628).
- firmware/psci: psci_checker: Park kthreads before stopping them
(bnc#1012628).
- PCI: OF: Initialize dev->fwnode appropriately (bnc#1012628).
- kernel/module.c: Only return -EEXIST for modules that have
finished loading (bnc#1012628).
- arm64: dts: rockchip: fix isp iommu clocks and power domain
(bnc#1012628).
- dmaengine: tegra-apb: Error out if DMA_PREP_INTERRUPT flag is
unset (bnc#1012628).
- soc: imx: soc-imx8: Correct return value of error handle
(bnc#1012628).
- arm64: dts: marvell: mcbin: enlarge PCI memory window
(bnc#1012628).
- soc: qcom: rpmpd: fixup rpmpd set performance state
(bnc#1012628).
- arm64: dts: qcom: qcs404-evb: fix l3 min voltage (bnc#1012628).
- ftrace: Enable trampoline when rec count returns back to one
(bnc#1012628).
- ARM: dts: rockchip: Mark that the rk3288 timer might stop in
suspend (bnc#1012628).
- clk: meson: mpll: properly handle spread spectrum (bnc#1012628).
- ARM: dts: rockchip: Make rk3288-veyron-mickey's emmc work again
(bnc#1012628).
- ARM: dts: rockchip: Make rk3288-veyron-minnie run at hs200
(bnc#1012628).
- ARM: riscpc: fix DMA (bnc#1012628).
- commit a3e04b1
- Linux 5.2.6 (bnc#1012628).
- vsock: correct removal of socket from the list (bnc#1012628).
- ISDN: hfcsusb: checking idx of ep configuration (bnc#1012628).
- bpf: fix NULL deref in btf_type_is_resolve_source_only
(bnc#1012628).
- media: au0828: fix null dereference in error path (bnc#1012628).
- ath10k: Change the warning message string (bnc#1012628).
- media: cpia2_usb: first wake up, then free in disconnect
(bnc#1012628).
- media: pvrusb2: use a different format for warnings
(bnc#1012628).
- NFS: Cleanup if nfs_match_client is interrupted (bnc#1012628).
- media: radio-raremono: change devm_k*alloc to k*alloc
(bnc#1012628).
- xfrm: policy: fix bydst hlist corruption on hash rebuild
(bnc#1012628).
- nvme: fix multipath crash when ANA is deactivated (bnc#1012628).
- sched/fair: Don't free p->numa_faults with concurrent readers
(bnc#1012628).
- sched/fair: Use RCU accessors consistently for ->numa_group
(bnc#1012628).
- /proc/<pid>/cmdline: remove all the special cases (bnc#1012628).
- /proc/<pid>/cmdline: add back the setproctitle() special case
(bnc#1012628).
- drivers/pps/pps.c: clear offset flags in PPS_SETPARAMS ioctl
(bnc#1012628).
- Fix allyesconfig output (bnc#1012628).
- ceph: hold i_ceph_lock when removing caps for freeing inode
(bnc#1012628).
- commit 187170c
==== libcontainers-common ====
- Add missing licenses to spec file
- Add a default registries.d configuration file, used to specify images
signatures storage location.
==== slirp4netns ====
- Add missing licenses to spec file
--
To unsubscribe, e-mail: opensuse-kubic+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-kubic+owner(a)opensuse.org
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
branding-openSUSE
kernel-source (5.2.5 -> 5.2.7)
libcontainers-common
slirp4netns
=== Details ===
==== branding-openSUSE ====
- Add patch to fix parallel build:
* fix-parallel-build.patch
==== kernel-source ====
Version update (5.2.5 -> 5.2.7)
Subpackages: kernel-debug kernel-default
- Linux 5.2.7 (bnc#1012628).
- Documentation: Add swapgs description to the Spectre v1
documentation (bnc#1012628).
- x86/speculation/swapgs: Exclude ATOMs from speculation through
SWAPGS (bnc#1012628).
- x86/entry/64: Use JMP instead of JMPQ (bnc#1012628).
- x86/speculation: Enable Spectre v1 swapgs mitigations
(bnc#1012628).
- x86/speculation: Prepare entry code for Spectre v1 swapgs
mitigations (bnc#1012628).
- x86/cpufeatures: Combine word 11 and 12 into a new scattered
features word (bnc#1012628).
- x86/cpufeatures: Carve out CQM features retrieval (bnc#1012628).
- drm/i915/gvt: fix incorrect cache entry for guest page mapping
(bnc#1012628).
- drm/i915/perf: fix ICL perf register offsets (bnc#1012628).
- IB/hfi1: Field not zero-ed when allocating TID flow memory
(bnc#1012628).
- IB/hfi1: Drop all TID RDMA READ RESP packets after r_next_psn
(bnc#1012628).
- IB/hfi1: Check for error on call to alloc_rsm_map_table
(bnc#1012628).
- IB/mlx5: Fix RSS Toeplitz setup to be aligned with the HW
specification (bnc#1012628).
- IB/mlx5: Fix clean_mr() to work in the expected order
(bnc#1012628).
- IB/mlx5: Move MRs to a kernel PD when freeing them to the MR
cache (bnc#1012628).
- IB/mlx5: Use direct mkey destroy command upon UMR unreg failure
(bnc#1012628).
- IB/mlx5: Fix unreg_umr to ignore the mkey state (bnc#1012628).
- RDMA/devices: Do not deadlock during client removal
(bnc#1012628).
- RDMA/bnxt_re: Honor vlan_id in GID entry comparison
(bnc#1012628).
- xen/gntdev.c: Replace vm_map_pages() with vm_map_pages_zero()
(bnc#1012628).
- xen/swiotlb: fix condition for calling
xen_destroy_contiguous_region() (bnc#1012628).
- nbd: replace kill_bdev() with __invalidate_device() again
(bnc#1012628).
- scsi: mpt3sas: Use 63-bit DMA addressing on SAS35 HBA
(bnc#1012628).
- clk: mediatek: mt8183: Register 13MHz clock earlier for
clocksource (bnc#1012628).
- io_uring: fix KASAN use after free in io_sq_wq_submit_work
(bnc#1012628).
- arm64: cpufeature: Fix feature comparison for CTR_EL0.{CWG,ERG}
(bnc#1012628).
- arm64: compat: Allow single-byte watchpoints on all addresses
(bnc#1012628).
- drivers/perf: arm_pmu: Fix failure path in PM notifier
(bnc#1012628).
- parisc: Fix build of compressed kernel even with debug enabled
(bnc#1012628).
- parisc: Strip debug info from kernel before creating compressed
vmlinuz (bnc#1012628).
- parisc: Add archclean Makefile target (bnc#1012628).
- cgroup: kselftest: relax fs_spec checks (bnc#1012628).
- s390/dasd: fix endless loop after read unit address
configuration (bnc#1012628).
- loop: Fix mount(2) failure due to race with LOOP_SET_FD
(bnc#1012628).
- mm/migrate.c: initialize pud_entry in migrate_vma()
(bnc#1012628).
- ubsan: build ubsan.c more conservatively (bnc#1012628).
- mm: compaction: avoid 100% CPU usage during compaction when
a task is killed (bnc#1012628).
- mm: migrate: fix reference check race between __find_get_block()
and migration (bnc#1012628).
- mm: vmscan: check if mem cgroup is disabled or not before
calling memcg slab shrinker (bnc#1012628).
- ALSA: hda: Fix 1-minute detection delay when i915 module is
not available (bnc#1012628).
- selinux: fix memory leak in policydb_init() (bnc#1012628).
- powerpc/kasan: fix early boot failure on PPC32 (bnc#1012628).
- i2c: at91: fix clk_offset for sama5d2 (bnc#1012628).
- i2c: at91: disable TXRDY interrupt after sending data
(bnc#1012628).
- i2c: iproc: Fix i2c master read more than 63 bytes
(bnc#1012628).
- eeprom: at24: make spd world-readable again (bnc#1012628).
- mtd: rawnand: micron: handle on-die "ECC-off" devices correctly
(bnc#1012628).
- drm/nouveau: Only release VCPI slots on mode changes
(bnc#1012628).
- IB/hfi1: Fix Spectre v1 vulnerability (bnc#1012628).
- gpiolib: fix incorrect IRQ requesting of an active-low lineevent
(bnc#1012628).
- gpio: don't WARN() on NULL descs if gpiolib is disabled
(bnc#1012628).
- gpiolib: Preserve desc->flags when setting state (bnc#1012628).
- mmc: mmc_spi: Enable stable writes (bnc#1012628).
- mmc: host: sdhci-sprd: Fix the missing pm_runtime_put_noidle()
(bnc#1012628).
- mmc: meson-mx-sdio: Fix misuse of GENMASK macro (bnc#1012628).
- mmc: dw_mmc: Fix occasional hang after tuning on eMMC
(bnc#1012628).
- fgraph: Remove redundant ftrace_graph_notrace_addr() test
(bnc#1012628).
- dax: Fix missed wakeup in put_unlocked_entry() (bnc#1012628).
- Btrfs: fix race leading to fs corruption after transaction abort
(bnc#1012628).
- Btrfs: fix incremental send failure after deduplication
(bnc#1012628).
- tpm: Fix null pointer dereference on chip register error path
(bnc#1012628).
- kbuild: modpost: include .*.cmd files only when targets exist
(bnc#1012628).
- kbuild: initialize CLANG_FLAGS correctly in the top Makefile
(bnc#1012628).
- kconfig: Clear "written" flag to avoid data loss (bnc#1012628).
- drm/nouveau/dmem: missing mutex_lock in error path
(bnc#1012628).
- drm/nouveau: fix memory leak in nouveau_conn_reset()
(bnc#1012628).
- bpf: Disable GCC -fgcse optimization for ___bpf_prog_run()
(bnc#1012628).
- x86, boot: Remove multiple copy of static function
sanitize_boot_params() (bnc#1012628).
- x86/paravirt: Fix callee-saved function ELF sizes (bnc#1012628).
- x86/kvm: Don't call kvm_spurious_fault() from .fixup
(bnc#1012628).
- xen/pv: Fix a boot up hang revealed by int3 self test
(bnc#1012628).
- crypto: ccp - Fix SEV_VERSION_GREATER_OR_EQUAL (bnc#1012628).
- stacktrace: Force USER_DS for stack_trace_save_user()
(bnc#1012628).
- mm/hotplug: make remove_memory() interface usable (bnc#1012628).
- device-dax: fix memory and resource leak if hotplug fails
(bnc#1012628).
- nds32: fix asm/syscall.h (bnc#1012628).
- ipc/mqueue.c: only perform resource calculation if user valid
(bnc#1012628).
- drivers/rapidio/devices/rio_mport_cdev.c: NUL terminate some
strings (bnc#1012628).
- uapi linux/coda_psdev.h: move upc_req definition from uapi to
kernel side headers (bnc#1012628).
- coda: fix build using bare-metal toolchain (bnc#1012628).
- coda: add error handling for fget (bnc#1012628).
- mm/ioremap: check virtual address alignment while creating
huge mappings (bnc#1012628).
- lib/test_string.c: avoid masking memset16/32/64 failures
(bnc#1012628).
- lib/test_overflow.c: avoid tainting the kernel and fix wrap size
(bnc#1012628).
- mm/cma.c: fail if fixed declaration can't be honored
(bnc#1012628).
- x86: math-emu: Hide clang warnings for 16-bit overflow
(bnc#1012628).
- x86/apic: Silence -Wtype-limits compiler warnings (bnc#1012628).
- mm/z3fold.c: reinitialize zhdr structs after migration
(bnc#1012628).
- mm/memcontrol.c: keep local VM counters in sync with the
hierarchical ones (bnc#1012628).
- mm/slab_common.c: work around clang bug #42570 (bnc#1012628).
- mm/z3fold: don't try to use buddy slots after free
(bnc#1012628).
- be2net: Signal that the device cannot transmit during
reconfiguration (bnc#1012628).
- bpf: fix BTF verifier size resolution logic (bnc#1012628).
- KVM: nVMX: Ignore segment base for VMX memory operand when
segment not FS or GS (bnc#1012628).
- ACPI: fix false-positive -Wuninitialized warning (bnc#1012628).
- x86: kvm: avoid constant-conversion warning (bnc#1012628).
- perf version: Fix segfault due to missing OPT_END()
(bnc#1012628).
- cifs: fix crash in cifs_dfs_do_automount (bnc#1012628).
- drm/amd/display: Expose audio inst from DC to DM (bnc#1012628).
- selftests/bpf: do not ignore clang failures (bnc#1012628).
- scsi: zfcp: fix GCC compiler warning emitted with
- Wmaybe-uninitialized (bnc#1012628).
- ACPI: blacklist: fix clang warning for unused DMI table
(bnc#1012628).
- virtio-mmio: add error check for platform_get_irq (bnc#1012628).
- ceph: return -ERANGE if virtual xattr value didn't fit in buffer
(bnc#1012628).
- ceph: fix dir_lease_is_valid() (bnc#1012628).
- ceph: fix improper use of smp_mb__before_atomic() (bnc#1012628).
- cifs: Fix a race condition with cifs_echo_request (bnc#1012628).
- btrfs: qgroup: Don't hold qgroup_ioctl_lock in
btrfs_qgroup_inherit() (bnc#1012628).
- remoteproc: copy parent dma_pfn_offset for vdev (bnc#1012628).
- btrfs: Flush before reflinking any extent to prevent NOCOW write
falling back to COW without data reservation (bnc#1012628).
- btrfs: fix minimum number of chunk errors for DUP (bnc#1012628).
- btrfs: tree-checker: Check if the file extent end overflows
(bnc#1012628).
- arm64: dts: rockchip: Fix USB3 Type-C on rk3399-sapphire
(bnc#1012628).
- clk: sprd: Add check for return value of sprd_clk_regmap_init()
(bnc#1012628).
- fs/adfs: super: fix use-after-free bug (bnc#1012628).
- clk: tegra210: fix PLLU and PLLU_OUT1 (bnc#1012628).
- ARM: exynos: Only build MCPM support if used (bnc#1012628).
- Update config files.
- dmaengine: rcar-dmac: Reject zero-length slave DMA requests
(bnc#1012628).
- MIPS: lantiq: Fix bitfield masking (bnc#1012628).
- swiotlb: fix phys_addr_t overflow warning (bnc#1012628).
- arm64: qcom: qcs404: Add reset-cells to GCC node (bnc#1012628).
- soc: imx8: Fix potential kernel dump in error path
(bnc#1012628).
- firmware/psci: psci_checker: Park kthreads before stopping them
(bnc#1012628).
- PCI: OF: Initialize dev->fwnode appropriately (bnc#1012628).
- kernel/module.c: Only return -EEXIST for modules that have
finished loading (bnc#1012628).
- arm64: dts: rockchip: fix isp iommu clocks and power domain
(bnc#1012628).
- dmaengine: tegra-apb: Error out if DMA_PREP_INTERRUPT flag is
unset (bnc#1012628).
- soc: imx: soc-imx8: Correct return value of error handle
(bnc#1012628).
- arm64: dts: marvell: mcbin: enlarge PCI memory window
(bnc#1012628).
- soc: qcom: rpmpd: fixup rpmpd set performance state
(bnc#1012628).
- arm64: dts: qcom: qcs404-evb: fix l3 min voltage (bnc#1012628).
- ftrace: Enable trampoline when rec count returns back to one
(bnc#1012628).
- ARM: dts: rockchip: Mark that the rk3288 timer might stop in
suspend (bnc#1012628).
- clk: meson: mpll: properly handle spread spectrum (bnc#1012628).
- ARM: dts: rockchip: Make rk3288-veyron-mickey's emmc work again
(bnc#1012628).
- ARM: dts: rockchip: Make rk3288-veyron-minnie run at hs200
(bnc#1012628).
- ARM: riscpc: fix DMA (bnc#1012628).
- commit a3e04b1
- Linux 5.2.6 (bnc#1012628).
- vsock: correct removal of socket from the list (bnc#1012628).
- ISDN: hfcsusb: checking idx of ep configuration (bnc#1012628).
- bpf: fix NULL deref in btf_type_is_resolve_source_only
(bnc#1012628).
- media: au0828: fix null dereference in error path (bnc#1012628).
- ath10k: Change the warning message string (bnc#1012628).
- media: cpia2_usb: first wake up, then free in disconnect
(bnc#1012628).
- media: pvrusb2: use a different format for warnings
(bnc#1012628).
- NFS: Cleanup if nfs_match_client is interrupted (bnc#1012628).
- media: radio-raremono: change devm_k*alloc to k*alloc
(bnc#1012628).
- xfrm: policy: fix bydst hlist corruption on hash rebuild
(bnc#1012628).
- nvme: fix multipath crash when ANA is deactivated (bnc#1012628).
- sched/fair: Don't free p->numa_faults with concurrent readers
(bnc#1012628).
- sched/fair: Use RCU accessors consistently for ->numa_group
(bnc#1012628).
- /proc/<pid>/cmdline: remove all the special cases (bnc#1012628).
- /proc/<pid>/cmdline: add back the setproctitle() special case
(bnc#1012628).
- drivers/pps/pps.c: clear offset flags in PPS_SETPARAMS ioctl
(bnc#1012628).
- Fix allyesconfig output (bnc#1012628).
- ceph: hold i_ceph_lock when removing caps for freeing inode
(bnc#1012628).
- commit 187170c
==== libcontainers-common ====
- Add missing licenses to spec file
- Add a default registries.d configuration file, used to specify images
signatures storage location.
==== slirp4netns ====
- Add missing licenses to spec file
--
To unsubscribe, e-mail: opensuse-kubic+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-kubic+owner(a)opensuse.org
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=1&version=T…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
btrfsprogs (5.1 -> 5.2.1)
gnutls (3.6.7 -> 3.6.9)
kubernetes (1.15.0 -> 1.15.2)
libaio (0.3.109 -> 0.3.112)
libcontainers-common (20190401 -> 20190802)
libtasn1 (4.13 -> 4.14)
libyaml
libzypp (17.12.0 -> 17.14.0)
patterns-containers
python-PyYAML (5.1.1 -> 5.1.2)
python-pyparsing (2.4.0 -> 2.4.2)
rakkess (0.4.0 -> 0.4.1)
slirp4netns (0.3.0 -> 0.3.2)
thin-provisioning-tools
xen (4.12.0_12 -> 4.12.0_16)
zypper (1.14.28 -> 1.14.29)
=== Details ===
==== btrfsprogs ====
Version update (5.1 -> 5.2.1)
Subpackages: btrfsprogs-udev-rules libbtrfs0
- update to 5.2.1
* scrub status: fix ETA calculation after resume
* check: fix crash when using -Q
* restore: fix symlink owner restoration
* mkfs: fix regression with mixed block groups
* core: fix commit to process all delayed refs
* other:
* minor cleanups
* test updates
- update to 5.2
* subvol show: print qgroup information when available
* scrub:
* status: show ETA, revamp the whole output
* fix reading/writing of last position on resume/cancel, potentially
skipping part of the filesystem on next resume
* dump-tree: add new option --noscan to use only devices given on the
commandline
* all-in-one binary (busybox style) with mkfs.btrfs, btrfs-image,
btrfs-convert, btrfstune
* image: fix hang when there are more than 32 cpus online and compression is
requested
* convert: fix some false ENOSPC errors when --rootdir is used
* build: fix gcc9 warnings
* core changes
* command handling cleanups
* dead code removal
* cmds-* files moved to cmds/
* other shared userspace files moved to common/
* utils.c split into more files
* preparatory work for more output formats
* libbtrfsutil: fix unaligned access
* other
* new and updated tests
* fix tests so CI passes again
* sb-mod can modify more superblock items
==== gnutls ====
Version update (3.6.7 -> 3.6.9)
- gnutls 3.6.9:
* add support for copying digest or MAC contexts
* Mark the crypto implementation override APIs as deprecated
* Add support for AES-GMAC, as a separate to GCM, MAC algorithm
* Add support for Generalname registeredID
* The priority configuration was enhanced to allow more elaborate
system-wide configuration of the library
- includes changes from 3.6.8:
* Add support for AES-XTS cipher
* Fix calculation of Streebog digests
* During Diffie-Hellman operations in TLS, verify that the peer's
public key is on the right subgroup (y^q=1 mod p), when q is
available (under TLS 1.3 and under earlier versions when RFC7919
parameters are used).
* Apply STD3 ASCII rules in gnutls_idna_map() to prevent
hostname/domain crafting via IDNA conversion
* certtool: allow the digital signature key usage flag in CA
certificates
* gnutls-cli/serv: add the --keymatexport and --keymatexportsize
options. These allow testing the RFC5705 using these tools
- drop patches to re-enable tests:
* disable-psk-file-test.patch
* gnutls-3.6.0-disable-flaky-dtls_resume-test.patch
==== kubernetes ====
Version update (1.15.0 -> 1.15.2)
Subpackages: kubernetes-client kubernetes-kubeadm kubernetes-kubelet
- Add opensuse-version-checks.patch to use kubic.opensuse.org to control container control plane downloads
- Update to version 1.15.2:
* refactors to kubernetes cp command
* refactors to kubernetes CP command
* apiextensions: 404 if request scope does not match crd scope
* apiextensions: add scope tests
* Add/Update CHANGELOG-1.15.md for v1.15.1.
* Kubernetes version v1.15.2-beta.0 openapi-spec file updates
- Update to version 1.15.1:
* apiaggregation available controller should only hit required endpoint
* kubeadm: run MemberAdd/Remove for etcd clients with exp-backoff retry
* skip test if the server does not serve extensions/v1beta1 since this is deprecated
* use apps/v1 instead apps/v1beta1 since that is deprecated - issue 79533
* fix: change timeout value in csi plugin
* edit google dns hostname
* Test kubectl with x-kubernetes-preserve-unknown-fields
* There are various reasons that the HPA will decide not the change the current scale. Two important ones are when missing metrics might change the direction of scaling, and when the recommended scale is within tolerance of the current scale.
* Fix closing of dirs in doSafeMakeDir
* Fix publishing x-kubernetes-preserve-unknown-fields working with kubectl
* Fix AWS DHCP option set domain names causing garbled InternalDNS or Hostname addresses on Node
* kubeadm: fix bug for --cri-socket flag processing logic
* fix kubelet can not delete orphaned pod directory when the kubelet's root directory symbolically links to another device's directory
* Add HEAD fixtures
* Add v1.14.0 fixtures
* Add missing API groups to compatibility test
* Move KubeletPodResources to the Beta section
* Default resourceGroup should be used when value of annotation azure-load-balancer-resource-group is empty string
* kubelet: retry pod sandbox creation when containers were never created
* fix flexvol stuck issue due to corrupted mnt point
* crd-handler: level-trigger storage recreation and fix a race
* fix KubeletConfiguration apiVersion
* kubeadm: improve kubeadm command output
* Ignore cgroup pid support if related feature gates are disabled
* fix: Use correct function to remove etcd member
* Add/Update CHANGELOG-1.15.md for v1.15.0.
* Kubernetes version v1.15.1-beta.0 openapi-spec file updates
- Change VolumePluginDir to writable location so containers could install their drivers there
- kubeadm-opensuse-registry.patch: change on openSUSE the default
registry for the control-plane containers to
registry.opensuse.org/kubic
- kubelet.tmp.conf: split kubelet part out of kubernetes.tmp.conf
to fix file conflict problems during upgrade and avoid creation
of unneeded system users.
- Add --volume-plugin-dir so dir would be exposed through api
==== libaio ====
Version update (0.3.109 -> 0.3.112)
- Update to 0.3.112:
* Various patches for architectures/etc
- Update url
- Update install
- Enable tests
- Remove mostly merged patches or differently fixed issues:
* libaio-aarch64-support.diff
* libaio-generic-arch.diff
* libaio-optflags.diff
* 00_arches.patch
* 00_arches_sh.patch
* 01_link_libgcc.patch
* 02_libdevdir.patch
* 03_man_errors.patch
* riscv-support.patch
==== libcontainers-common ====
Version update (20190401 -> 20190802)
- Update to image v3.0.0
- Add "Env" to ImageInspectInfo
- Add API function TryUpdatingCache
- Add ability to install man pages
- Add user registry auth to kernel keyring
- Fix policy.json.md -> containers-policy.json.5.md references
- Fix typo in docs/containers-registries.conf.5.md
- Remove pkg/sysregistries
- Touch up transport man page
- Try harder in storageImageDestination.TryReusingBlob
- Use the same HTTP client for contacting the bearer token server and the
registry
- ci: change GOCACHE to a writeable path
- config.go: improve debug message
- config.go: log where credentials come from
- docker client: error if registry is blocked
- docker: allow deleting OCI images
- docker: delete: support all MIME types
- ostree: default is no OStree support
- ostree: improve error message
- progress bar: use spinners for unknown blob sizes
- use 'containers_image_ostree' as build tag
- use keyring when authfile empty
- Update to storage v1.12.16
- Add cirrus vendor check
- Add storage options to IgnoreChownErrors
- Add support for UID as well as UserName in /etc/subuid files.
- Add support for ignoreChownErrors to vfs
- Add support for installing man pages
- Fix cross-compilation
- Keep track of the UIDs and GIDs used in applied layers
- Move lockfiles to their own package
- Remove merged directory when it is unmounted
- Switch to go modules
- Switch to golangci-lint
- Update generated files
- Use same variable name on both commands
- cirrus: ubuntu: try removing cryptsetup-initramfs
- compression: add support for the zstd algorithm
- getLockfile(): use the absolute path
- loadMounts(): reset counts before merging just-loaded data
- lockfile: don't bother releasing a lock when closing a file
- locking test updates
- locking: take read locks on read-only stores
- make local-cross more reliable for CI
- overlay: cache the results of supported/using-metacopy/use-naive-diff
feature tests
- overlay: fix small piece of repeated work
- utils: fix check for missing conf file
- zstd: use github.com/klauspost/compress directly
==== libtasn1 ====
Version update (4.13 -> 4.14)
Subpackages: libtasn1-6
- libtasn1 4.14:
* New #defines for version checking
* other developer visible changes
- drop libtasn1-object-id-recursion.patch, incorporating the
upstream fix for boo#1105435 CVE-2018-1000654
==== libyaml ====
- Remove patch
* Patch libyaml-revert-emitter-changes.patch is not needed anymore
==== libzypp ====
Version update (17.12.0 -> 17.14.0)
- PublicKey::algoName: supply key algorithm and length
- version 17.14.0 (12)
- MediaCurl: Fix leaking filedescriptors (bsc#1116995)
- commit: Run file conflict check on dry-run (best with download-only)
(bsc#1140039)
- commit: do not remove orphan products if the .prod file is owned by
a package (bsc#1139795)
- version 17.13.0 (12)
==== patterns-containers ====
Subpackages: patterns-containers-container_runtime patterns-containers-container_runtime_kubernetes patterns-containers-kubeadm patterns-containers-kubernetes_utilities patterns-containers-kubic_admin patterns-containers-kubic_worker
- Add yomi salt states to Kubic admin node
- Add kubic loadbalancer pattern
==== python-PyYAML ====
Version update (5.1.1 -> 5.1.2)
- update to 5.1.2
* Re-release of 5.1 with regenerated Cython sources to build properly for Python 3.8b2+
==== python-pyparsing ====
Version update (2.4.0 -> 2.4.2)
- update to 2.4.2:
- Updated the shorthand notation that has been added for repetition
expressions: expr[min, max], with '...' valid as a min or max value
- The defaults on all the `__diag__` switches have been set to False,
to avoid getting alarming warnings. To use these diagnostics, set
them to True after importing pyparsing.
- Fixed bug introduced by the use of __getitem__ for repetition,
overlooking Python's legacy implementation of iteration
by sequentially calling __getitem__ with increasing numbers until
getting an IndexError. Found during investigation of problem
reported by murlock, merci!
- Changed [...] to emit ZeroOrMore instead of OneOrMore.
- Removed code that treats ParserElements like iterables.
- Change all __diag__ switches to False.
- update to 2.4.1.1:
- API change adding support for `expr[...]` - the original
code in 2.4.1 incorrectly implemented this as OneOrMore.
Code using this feature under this relase should explicitly
use `expr[0, ...]` for ZeroOrMore and `expr[1, ...]` for
OneOrMore. In 2.4.2 you will be able to write `expr[...]`
equivalent to `ZeroOrMore(expr)`.
- Bug if composing And, Or, MatchFirst, or Each expressions
using an expression. This only affects code which uses
explicit expression construction using the And, Or, etc.
classes instead of using overloaded operators '+', '^', and
so on. If constructing an And using a single expression,
you may get an error that "cannot multiply ParserElement by
0 or (0, 0)" or a Python `IndexError`.
- Some newly-added `__diag__` switches are enabled by default,
which may give rise to noisy user warnings for existing parsers.
- update to 2.4.1:
- A new shorthand notation has been added for repetition
expressions: expr[min, max], with '...' valid as a min
- '...' can also be used as short hand for SkipTo when used
in adding parse expressions to compose an And expression.
- '...' can also be used as a "skip forward in case of error" expression
- Improved exception messages to show what was actually found, not
just what was expected.
- Added diagnostic switches to help detect and warn about common
parser construction mistakes, or enable additional parse
debugging. Switches are attached to the pyparsing.__diag__
namespace object
- Added ParseResults.from_dict classmethod, to simplify creation
of a ParseResults with results names using a dict, which may be nested.
This makes it easy to add a sub-level of named items to the parsed
tokens in a parse action.
- Added asKeyword argument (default=False) to oneOf, to force
keyword-style matching on the generated expressions.
- ParserElement.runTests now accepts an optional 'file' argument to
redirect test output to a file-like object (such as a StringIO,
or opened file). Default is to write to sys.stdout.
- conditionAsParseAction is a helper method for constructing a
parse action method from a predicate function that simply
returns a boolean result. Useful for those places where a
predicate cannot be added using addCondition, but must be
converted to a parse action (such as in infixNotation). May be
used as a decorator if default message and exception types
can be used. See ParserElement.addCondition for more details
about the expected signature and behavior for predicate condition
methods.
- While investigating issue #93, I found that Or and
addCondition could interact to select an alternative that
is not the longest match. This is because Or first checks
all alternatives for matches without running attached
parse actions or conditions, orders by longest match, and
then rechecks for matches with conditions and parse actions.
Some expressions, when checking with conditions, may end
up matching on a shorter token list than originally matched,
but would be selected because of its original priority.
This matching code has been expanded to do more extensive
searching for matches when a second-pass check matches a
smaller list than in the first pass.
- Fixed issue #87, a regression in indented block.
Reported by Renz Bagaporo, who submitted a very nice repro
example, which makes the bug-fixing process a lot easier,
thanks!
- Fixed MemoryError issue #85 and #91 with str generation for
Forwards. Thanks decalage2 and Harmon758 for your patience.
- Modified setParseAction to accept None as an argument,
indicating that all previously-defined parse actions for the
expression should be cleared.
- Modified pyparsing_common.real and sci_real to parse reals
without leading integer digits before the decimal point,
consistent with Python real number formats. Original PR #98
submitted by ansobolev.
- Modified runTests to call postParse function before dumping out
the parsed results - allows for postParse to add further results,
such as indications of additional validation success/failure.
- Updated statemachine example: refactored state transitions to use
overridden classmethods; added <statename>Mixin class to simplify
definition of application classes that "own" the state object and
delegate to it to model state-specific properties and behavior.
- Added example nested_markup.py, showing a simple wiki markup with
nested markup directives, and illustrating the use of '...' for
skipping over input to match the next expression. (This example
uses syntax that is not valid under Python 2.)
- Rewrote delta_time.py example (renamed from deltaTime.py) to
fix some omitted formats and upgrade to latest pyparsing idioms,
beginning with writing an actual BNF.
- With the help and encouragement from several contributors, including
Mat?j Cepl and Cengiz Kaygusuz, I've started cleaning up the internal
coding styles in core pyparsing, bringing it up to modern coding
practices from pyparsing's early development days dating back to
2003. Whitespace has been largely standardized along PEP8 guidelines,
removing extra spaces around parentheses, and adding them around
arithmetic operators and after colons and commas. I was going to hold
off on doing this work until after 2.4.1, but after cleaning up a
few trial classes, the difference was so significant that I continued
on to the rest of the core code base. This should facilitate future
work and submitted PRs, allowing them to focus on substantive code
changes, and not get sidetracked by whitespace issues.
==== rakkess ====
Version update (0.4.0 -> 0.4.1)
- Update to version 0.4.1
- Update kubernetes dependencies to 1.15
- Allow arbitrary verbs in the resource subcommand #32
- Remove golang-packaging, does more harm than helps
(e.g. bsc#1132101)
==== slirp4netns ====
Version update (0.3.0 -> 0.3.2)
- Update to 0.3.2
* Fix heap overflow in `ip_reass` on big packet input
- Update to 0.3.1
* Fix use-after-free
==== thin-provisioning-tools ====
- Fix name clash with raise() from signal.h, add
ft-lib_bcache-rename-raise-raise_.patch
==== xen ====
Version update (4.12.0_12 -> 4.12.0_16)
- Update xen-dom0-modules.service (bsc#1137251)
Map backend module names from pvops and xenlinux kernels to a
module alias. This avoids errors from modprobe about unknown
modules. Ignore a few xenlinux modules that lack aliases.
- Gcc9 warnings seem to be cleared up with upstream fixes.
Drop gcc9-ignore-warnings.patch
- bsc#1138563 - L3: xenpvnetboot improperly ported to Python 3
fix-xenpvnetboot.patch
- Move /etc/modprobe.d/xen_loop.conf to /lib/modprobe.d/xen_loop.conf
- Remove /etc/xen/xenapiusers and /etc/pam.d/xen-api
- Remove all upstream provided files in /etc/xen
They are not required at runtime. The host admin is now
responsible if he really needs anything in this subdirectory.
- In our effort to make /etc fully admin controlled, move /etc/xen/scripts
to libexec/xen/scripts with xen-tools.etc_pollution.patch
- Move /etc/bash_completion.d/xl.sh to %{_datadir}/bash-completion/completions
- bsc#1138294 - VUL-0: XSA-295: Unlimited Arm Atomics Operations
5d03a0c4-1-Arm-add-an-isb-before-reading-CNTPCT_EL0.patch
5d03a0c4-2-gnttab-rework-prototype-of-set_status.patch
5d03a0c4-3-Arm64-rewrite-bitops-in-C.patch
5d03a0c4-4-Arm32-rewrite-bitops-in-C.patch
5d03a0c4-5-Arm-bitops-consolidate-prototypes.patch
5d03a0c4-6-Arm64-cmpxchg-simplify.patch
5d03a0c4-7-Arm32-cmpxchg-simplify.patch
5d03a0c4-8-Arm-bitops-helpers-with-timeout.patch
5d03a0c4-9-Arm-cmpxchg-helper-with-timeout.patch
5d03a0c4-A-Arm-turn-on-SILO-mode-by-default.patch
5d03a0c4-B-bitops-guest-helpers.patch
5d03a0c4-C-cmpxchg-guest-helpers.patch
5d03a0c4-D-use-guest-atomics-helpers.patch
5d03a0c4-E-Arm-add-perf-counters-in-guest-atomic-helpers.patch
5d03a0c4-F-Arm-protect-gnttab_clear_flag.patch
- Upstream bug fixes (bsc#1027519)
5c87b6c8-drop-arch_evtchn_inject.patch
5c87b6e8-avoid-atomic-rmw-accesses-in-map_vcpu_info.patch
5cd921fb-trace-fix-build-with-gcc9.patch
5cd9224b-AMD-IOMMU-disable-upon-init-fail.patch
5cd922c5-x86-MTRR-recalc-p2mt-when-iocaps.patch
5cd9230f-VMX-correctly-get-GS_SHADOW-for-current.patch
5cd926d0-bitmap_fill-zero-sized.patch
5cd92724-drivers-video-drop-constraints.patch
5cd93a69-x86-spec-ctrl-reposition-XPTI-parsing.patch (Replaces xsa297-0a.patch)
5cd93a69-x86-MSR_INTEL_CORE_THREAD_COUNT.patch (Replaces xsa297-0b.patch)
5cd93a69-x86-boot-detect-Intel-SMT-correctly.patch (Replaces xsa297-0c.patch)
5cdad090-x86-spec-ctrl-misc-non-functional-cleanup.patch (Replaces xsa297-0d.patch)
5cdad090-x86-spec-ctrl-CPUID-MSR-definitions-for-MDS.patch (Replaces xsa297-1.patch)
5cdad090-x86-spec-ctrl-infrastructure-for-VERW-flush.patch (Replaces xsa297-2.patch)
5cdad090-x86-spec-ctrl-opts-to-control-VERW-flush.patch (Replaces xsa297-3.patch)
5cd981ff-x86-IRQ-tracing-avoid-UB-or-worse.patch
5cdeb9fd-sched-fix-csched2_deinit_pdata.patch
5ce7a92f-x86-IO-APIC-fix-build-with-gcc9.patch
5cf0f6a4-x86-vhpet-resume-avoid-small-diff.patch
5cf16e51-x86-spec-ctrl-Knights-retpoline-safe.patch
- Fix some outdated information in the readme
README.SUSE
==== zypper ====
Version update (1.14.28 -> 1.14.29)
- Fix local/remote url classification.
- Rephrase file conflict check summary (bsc#1140039)
- Fix bash completions option detection (bsc#1049825)
- BuildRequires: libzypp-devel >= 17.14.0
- version 1.14.29
--
To unsubscribe, e-mail: opensuse-kubic+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-kubic+owner(a)opensuse.org
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
btrfsprogs (5.1 -> 5.2.1)
gnutls (3.6.7 -> 3.6.9)
libaio (0.3.109 -> 0.3.112)
libcontainers-common (20190401 -> 20190802)
libtasn1 (4.13 -> 4.14)
libyaml
libzypp (17.12.0 -> 17.14.0)
patterns-containers
python-PyYAML (5.1.1 -> 5.1.2)
python-pyparsing (2.4.0 -> 2.4.2)
slirp4netns (0.3.0 -> 0.3.2)
thin-provisioning-tools
xen (4.12.0_12 -> 4.12.0_16)
zypper (1.14.28 -> 1.14.29)
=== Details ===
==== btrfsprogs ====
Version update (5.1 -> 5.2.1)
Subpackages: btrfsprogs-udev-rules libbtrfs0
- update to 5.2.1
* scrub status: fix ETA calculation after resume
* check: fix crash when using -Q
* restore: fix symlink owner restoration
* mkfs: fix regression with mixed block groups
* core: fix commit to process all delayed refs
* other:
* minor cleanups
* test updates
- update to 5.2
* subvol show: print qgroup information when available
* scrub:
* status: show ETA, revamp the whole output
* fix reading/writing of last position on resume/cancel, potentially
skipping part of the filesystem on next resume
* dump-tree: add new option --noscan to use only devices given on the
commandline
* all-in-one binary (busybox style) with mkfs.btrfs, btrfs-image,
btrfs-convert, btrfstune
* image: fix hang when there are more than 32 cpus online and compression is
requested
* convert: fix some false ENOSPC errors when --rootdir is used
* build: fix gcc9 warnings
* core changes
* command handling cleanups
* dead code removal
* cmds-* files moved to cmds/
* other shared userspace files moved to common/
* utils.c split into more files
* preparatory work for more output formats
* libbtrfsutil: fix unaligned access
* other
* new and updated tests
* fix tests so CI passes again
* sb-mod can modify more superblock items
==== gnutls ====
Version update (3.6.7 -> 3.6.9)
- gnutls 3.6.9:
* add support for copying digest or MAC contexts
* Mark the crypto implementation override APIs as deprecated
* Add support for AES-GMAC, as a separate to GCM, MAC algorithm
* Add support for Generalname registeredID
* The priority configuration was enhanced to allow more elaborate
system-wide configuration of the library
- includes changes from 3.6.8:
* Add support for AES-XTS cipher
* Fix calculation of Streebog digests
* During Diffie-Hellman operations in TLS, verify that the peer's
public key is on the right subgroup (y^q=1 mod p), when q is
available (under TLS 1.3 and under earlier versions when RFC7919
parameters are used).
* Apply STD3 ASCII rules in gnutls_idna_map() to prevent
hostname/domain crafting via IDNA conversion
* certtool: allow the digital signature key usage flag in CA
certificates
* gnutls-cli/serv: add the --keymatexport and --keymatexportsize
options. These allow testing the RFC5705 using these tools
- drop patches to re-enable tests:
* disable-psk-file-test.patch
* gnutls-3.6.0-disable-flaky-dtls_resume-test.patch
==== libaio ====
Version update (0.3.109 -> 0.3.112)
- Update to 0.3.112:
* Various patches for architectures/etc
- Update url
- Update install
- Enable tests
- Remove mostly merged patches or differently fixed issues:
* libaio-aarch64-support.diff
* libaio-generic-arch.diff
* libaio-optflags.diff
* 00_arches.patch
* 00_arches_sh.patch
* 01_link_libgcc.patch
* 02_libdevdir.patch
* 03_man_errors.patch
* riscv-support.patch
==== libcontainers-common ====
Version update (20190401 -> 20190802)
- Update to image v3.0.0
- Add "Env" to ImageInspectInfo
- Add API function TryUpdatingCache
- Add ability to install man pages
- Add user registry auth to kernel keyring
- Fix policy.json.md -> containers-policy.json.5.md references
- Fix typo in docs/containers-registries.conf.5.md
- Remove pkg/sysregistries
- Touch up transport man page
- Try harder in storageImageDestination.TryReusingBlob
- Use the same HTTP client for contacting the bearer token server and the
registry
- ci: change GOCACHE to a writeable path
- config.go: improve debug message
- config.go: log where credentials come from
- docker client: error if registry is blocked
- docker: allow deleting OCI images
- docker: delete: support all MIME types
- ostree: default is no OStree support
- ostree: improve error message
- progress bar: use spinners for unknown blob sizes
- use 'containers_image_ostree' as build tag
- use keyring when authfile empty
- Update to storage v1.12.16
- Add cirrus vendor check
- Add storage options to IgnoreChownErrors
- Add support for UID as well as UserName in /etc/subuid files.
- Add support for ignoreChownErrors to vfs
- Add support for installing man pages
- Fix cross-compilation
- Keep track of the UIDs and GIDs used in applied layers
- Move lockfiles to their own package
- Remove merged directory when it is unmounted
- Switch to go modules
- Switch to golangci-lint
- Update generated files
- Use same variable name on both commands
- cirrus: ubuntu: try removing cryptsetup-initramfs
- compression: add support for the zstd algorithm
- getLockfile(): use the absolute path
- loadMounts(): reset counts before merging just-loaded data
- lockfile: don't bother releasing a lock when closing a file
- locking test updates
- locking: take read locks on read-only stores
- make local-cross more reliable for CI
- overlay: cache the results of supported/using-metacopy/use-naive-diff
feature tests
- overlay: fix small piece of repeated work
- utils: fix check for missing conf file
- zstd: use github.com/klauspost/compress directly
==== libtasn1 ====
Version update (4.13 -> 4.14)
Subpackages: libtasn1-6
- libtasn1 4.14:
* New #defines for version checking
* other developer visible changes
- drop libtasn1-object-id-recursion.patch, incorporating the
upstream fix for boo#1105435 CVE-2018-1000654
==== libyaml ====
- Remove patch
* Patch libyaml-revert-emitter-changes.patch is not needed anymore
==== libzypp ====
Version update (17.12.0 -> 17.14.0)
- PublicKey::algoName: supply key algorithm and length
- version 17.14.0 (12)
- MediaCurl: Fix leaking filedescriptors (bsc#1116995)
- commit: Run file conflict check on dry-run (best with download-only)
(bsc#1140039)
- commit: do not remove orphan products if the .prod file is owned by
a package (bsc#1139795)
- version 17.13.0 (12)
==== patterns-containers ====
- Add yomi salt states to Kubic admin node
- Add kubic loadbalancer pattern
==== python-PyYAML ====
Version update (5.1.1 -> 5.1.2)
- update to 5.1.2
* Re-release of 5.1 with regenerated Cython sources to build properly for Python 3.8b2+
==== python-pyparsing ====
Version update (2.4.0 -> 2.4.2)
- update to 2.4.2:
- Updated the shorthand notation that has been added for repetition
expressions: expr[min, max], with '...' valid as a min or max value
- The defaults on all the `__diag__` switches have been set to False,
to avoid getting alarming warnings. To use these diagnostics, set
them to True after importing pyparsing.
- Fixed bug introduced by the use of __getitem__ for repetition,
overlooking Python's legacy implementation of iteration
by sequentially calling __getitem__ with increasing numbers until
getting an IndexError. Found during investigation of problem
reported by murlock, merci!
- Changed [...] to emit ZeroOrMore instead of OneOrMore.
- Removed code that treats ParserElements like iterables.
- Change all __diag__ switches to False.
- update to 2.4.1.1:
- API change adding support for `expr[...]` - the original
code in 2.4.1 incorrectly implemented this as OneOrMore.
Code using this feature under this relase should explicitly
use `expr[0, ...]` for ZeroOrMore and `expr[1, ...]` for
OneOrMore. In 2.4.2 you will be able to write `expr[...]`
equivalent to `ZeroOrMore(expr)`.
- Bug if composing And, Or, MatchFirst, or Each expressions
using an expression. This only affects code which uses
explicit expression construction using the And, Or, etc.
classes instead of using overloaded operators '+', '^', and
so on. If constructing an And using a single expression,
you may get an error that "cannot multiply ParserElement by
0 or (0, 0)" or a Python `IndexError`.
- Some newly-added `__diag__` switches are enabled by default,
which may give rise to noisy user warnings for existing parsers.
- update to 2.4.1:
- A new shorthand notation has been added for repetition
expressions: expr[min, max], with '...' valid as a min
- '...' can also be used as short hand for SkipTo when used
in adding parse expressions to compose an And expression.
- '...' can also be used as a "skip forward in case of error" expression
- Improved exception messages to show what was actually found, not
just what was expected.
- Added diagnostic switches to help detect and warn about common
parser construction mistakes, or enable additional parse
debugging. Switches are attached to the pyparsing.__diag__
namespace object
- Added ParseResults.from_dict classmethod, to simplify creation
of a ParseResults with results names using a dict, which may be nested.
This makes it easy to add a sub-level of named items to the parsed
tokens in a parse action.
- Added asKeyword argument (default=False) to oneOf, to force
keyword-style matching on the generated expressions.
- ParserElement.runTests now accepts an optional 'file' argument to
redirect test output to a file-like object (such as a StringIO,
or opened file). Default is to write to sys.stdout.
- conditionAsParseAction is a helper method for constructing a
parse action method from a predicate function that simply
returns a boolean result. Useful for those places where a
predicate cannot be added using addCondition, but must be
converted to a parse action (such as in infixNotation). May be
used as a decorator if default message and exception types
can be used. See ParserElement.addCondition for more details
about the expected signature and behavior for predicate condition
methods.
- While investigating issue #93, I found that Or and
addCondition could interact to select an alternative that
is not the longest match. This is because Or first checks
all alternatives for matches without running attached
parse actions or conditions, orders by longest match, and
then rechecks for matches with conditions and parse actions.
Some expressions, when checking with conditions, may end
up matching on a shorter token list than originally matched,
but would be selected because of its original priority.
This matching code has been expanded to do more extensive
searching for matches when a second-pass check matches a
smaller list than in the first pass.
- Fixed issue #87, a regression in indented block.
Reported by Renz Bagaporo, who submitted a very nice repro
example, which makes the bug-fixing process a lot easier,
thanks!
- Fixed MemoryError issue #85 and #91 with str generation for
Forwards. Thanks decalage2 and Harmon758 for your patience.
- Modified setParseAction to accept None as an argument,
indicating that all previously-defined parse actions for the
expression should be cleared.
- Modified pyparsing_common.real and sci_real to parse reals
without leading integer digits before the decimal point,
consistent with Python real number formats. Original PR #98
submitted by ansobolev.
- Modified runTests to call postParse function before dumping out
the parsed results - allows for postParse to add further results,
such as indications of additional validation success/failure.
- Updated statemachine example: refactored state transitions to use
overridden classmethods; added <statename>Mixin class to simplify
definition of application classes that "own" the state object and
delegate to it to model state-specific properties and behavior.
- Added example nested_markup.py, showing a simple wiki markup with
nested markup directives, and illustrating the use of '...' for
skipping over input to match the next expression. (This example
uses syntax that is not valid under Python 2.)
- Rewrote delta_time.py example (renamed from deltaTime.py) to
fix some omitted formats and upgrade to latest pyparsing idioms,
beginning with writing an actual BNF.
- With the help and encouragement from several contributors, including
Mat?j Cepl and Cengiz Kaygusuz, I've started cleaning up the internal
coding styles in core pyparsing, bringing it up to modern coding
practices from pyparsing's early development days dating back to
2003. Whitespace has been largely standardized along PEP8 guidelines,
removing extra spaces around parentheses, and adding them around
arithmetic operators and after colons and commas. I was going to hold
off on doing this work until after 2.4.1, but after cleaning up a
few trial classes, the difference was so significant that I continued
on to the rest of the core code base. This should facilitate future
work and submitted PRs, allowing them to focus on substantive code
changes, and not get sidetracked by whitespace issues.
==== slirp4netns ====
Version update (0.3.0 -> 0.3.2)
- Update to 0.3.2
* Fix heap overflow in `ip_reass` on big packet input
- Update to 0.3.1
* Fix use-after-free
==== thin-provisioning-tools ====
- Fix name clash with raise() from signal.h, add
ft-lib_bcache-rename-raise-raise_.patch
==== xen ====
Version update (4.12.0_12 -> 4.12.0_16)
- Update xen-dom0-modules.service (bsc#1137251)
Map backend module names from pvops and xenlinux kernels to a
module alias. This avoids errors from modprobe about unknown
modules. Ignore a few xenlinux modules that lack aliases.
- Gcc9 warnings seem to be cleared up with upstream fixes.
Drop gcc9-ignore-warnings.patch
- bsc#1138563 - L3: xenpvnetboot improperly ported to Python 3
fix-xenpvnetboot.patch
- Move /etc/modprobe.d/xen_loop.conf to /lib/modprobe.d/xen_loop.conf
- Remove /etc/xen/xenapiusers and /etc/pam.d/xen-api
- Remove all upstream provided files in /etc/xen
They are not required at runtime. The host admin is now
responsible if he really needs anything in this subdirectory.
- In our effort to make /etc fully admin controlled, move /etc/xen/scripts
to libexec/xen/scripts with xen-tools.etc_pollution.patch
- Move /etc/bash_completion.d/xl.sh to %{_datadir}/bash-completion/completions
- bsc#1138294 - VUL-0: XSA-295: Unlimited Arm Atomics Operations
5d03a0c4-1-Arm-add-an-isb-before-reading-CNTPCT_EL0.patch
5d03a0c4-2-gnttab-rework-prototype-of-set_status.patch
5d03a0c4-3-Arm64-rewrite-bitops-in-C.patch
5d03a0c4-4-Arm32-rewrite-bitops-in-C.patch
5d03a0c4-5-Arm-bitops-consolidate-prototypes.patch
5d03a0c4-6-Arm64-cmpxchg-simplify.patch
5d03a0c4-7-Arm32-cmpxchg-simplify.patch
5d03a0c4-8-Arm-bitops-helpers-with-timeout.patch
5d03a0c4-9-Arm-cmpxchg-helper-with-timeout.patch
5d03a0c4-A-Arm-turn-on-SILO-mode-by-default.patch
5d03a0c4-B-bitops-guest-helpers.patch
5d03a0c4-C-cmpxchg-guest-helpers.patch
5d03a0c4-D-use-guest-atomics-helpers.patch
5d03a0c4-E-Arm-add-perf-counters-in-guest-atomic-helpers.patch
5d03a0c4-F-Arm-protect-gnttab_clear_flag.patch
- Upstream bug fixes (bsc#1027519)
5c87b6c8-drop-arch_evtchn_inject.patch
5c87b6e8-avoid-atomic-rmw-accesses-in-map_vcpu_info.patch
5cd921fb-trace-fix-build-with-gcc9.patch
5cd9224b-AMD-IOMMU-disable-upon-init-fail.patch
5cd922c5-x86-MTRR-recalc-p2mt-when-iocaps.patch
5cd9230f-VMX-correctly-get-GS_SHADOW-for-current.patch
5cd926d0-bitmap_fill-zero-sized.patch
5cd92724-drivers-video-drop-constraints.patch
5cd93a69-x86-spec-ctrl-reposition-XPTI-parsing.patch (Replaces xsa297-0a.patch)
5cd93a69-x86-MSR_INTEL_CORE_THREAD_COUNT.patch (Replaces xsa297-0b.patch)
5cd93a69-x86-boot-detect-Intel-SMT-correctly.patch (Replaces xsa297-0c.patch)
5cdad090-x86-spec-ctrl-misc-non-functional-cleanup.patch (Replaces xsa297-0d.patch)
5cdad090-x86-spec-ctrl-CPUID-MSR-definitions-for-MDS.patch (Replaces xsa297-1.patch)
5cdad090-x86-spec-ctrl-infrastructure-for-VERW-flush.patch (Replaces xsa297-2.patch)
5cdad090-x86-spec-ctrl-opts-to-control-VERW-flush.patch (Replaces xsa297-3.patch)
5cd981ff-x86-IRQ-tracing-avoid-UB-or-worse.patch
5cdeb9fd-sched-fix-csched2_deinit_pdata.patch
5ce7a92f-x86-IO-APIC-fix-build-with-gcc9.patch
5cf0f6a4-x86-vhpet-resume-avoid-small-diff.patch
5cf16e51-x86-spec-ctrl-Knights-retpoline-safe.patch
- Fix some outdated information in the readme
README.SUSE
==== zypper ====
Version update (1.14.28 -> 1.14.29)
- Fix local/remote url classification.
- Rephrase file conflict check summary (bsc#1140039)
- Fix bash completions option detection (bsc#1049825)
- BuildRequires: libzypp-devel >= 17.14.0
- version 1.14.29
--
To unsubscribe, e-mail: opensuse-kubic+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-kubic+owner(a)opensuse.org
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=1&version=T…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
cilium (1.5.3 -> 1.5.5)
helm (3.0.0alpha.1 -> 3.0.0alpha.2)
kernel-default-base
pkgconf
=== Details ===
==== cilium ====
Version update (1.5.3 -> 1.5.5)
- Update to version 1.5.5:
* lbmap: Get rid of bpfService cache lock
* retry vm provisioning, increase timeout
* daemon: Remove svc-v2 maps when restore is disabled
* daemon: Do not remove revNAT if removing svc fails
* pkg/k8s: add conversion for DeleteFinalStateUnknown objects
* cli: fix panic in cilium bpf sha get command
* Retry provisioning vagrant vms in CI
* pkg/k8s: hold mutex while adding events to the queue
* Change nightly CI job label from fixed to baremetal
* test: set 1.15 by default in CI Vagrantfile
* daemon: Change loglevel of "ipcache entry owned by kvstore or agent"
* pkg/kvstore: add etcd lease information into cilium status
* pkg/k8s: do not parse empty annotations
* maps/lbmap: protect service cache refcount with concurrent access
* operator: add warning message if status returns an error
* pkg/kvstore: fix nil pointer in error while doing a transaction in etcd
* examples/kubernetes: bump cilium to v1.5.4
* bpf: Remove unneeded debug instructions to stay below instruction limit
* bpf: Prohibit encapsulation traffic from pod when running in encapsulation mode
* pkg/endpointmanager: protecting endpoints against concurrent access
* test: set k8s 1.15 as default k8s version
* CI: Clean VMs and reclaim disk in nightly test
* allocator: fix race condition when allocating local identities upon bootstrap
* identity: Initialize well-known identities before the policy repository.
* cilium: docker.go ineffectual assignment
* Disable automatic direct node routes test
* kubernetes-upstream: add seperate stage to run tests
* docs: update documentation with k8s 1.15 support
* test: run k8s 1.15.0 by default in all PRs
* test: test against 1.15.0
* vendor: update k8s to v1.15.0
* bpf: Set random MAC addrs for cilium interfaces
* endpoint: Set random MAC addrs for veth when creating it
* vendor: Update vishvananda/netlink
* mac: Add function to generate a random MAC addr
* test: remove unused function
* test: introduce `ExecShort` function
* docs: Clarify about legacy services enabled by default
* pkg/metrics: re-register newStatusCollector function
* CI: Clean workspace when all stages complete
* CI: Clean VMs and reclaim disk after jobs complete
* CI: Report last seen error in CiliumPreFlightCheck
* fqdn: correctly populate Source IP and Port in `notifyOnDNSMsg`
* test: do not overwrite context in `GetPodNamesContext`
* test: change `GetPodNames` to have a timeout
* test: make sure that `GetPodNames` times out after 30 seconds
* CI: Ensure k8s execs cancel contexts
* test: Fix NodeCleanMetadata by using --overwrite
* test: add timeout to `waitToDeleteCilium` helper function
* .travis: update travis golang to 1.12.5
* Don't set debug to true in monitor test
* pkg/lock: fix RUnlockIgnoreTime
* daemon: fix endpoint restore when endpoints are not available
* Preload vagrant boxes in k8s upstream jenkinsfile
* pkg/health: Fix IPv6 URL format in HTTP probe
* test: use context with timeout to ensure that Cilium log gathering takes <= 5 minutes
* k8s: Introduce test for multiple From/To selectors
* k8s: Fix policies with multiple From/To selectors
* test: create session and run commands asynchronously
* test: bump to k8s 1.14.3
* test: error out if no-spec policies is allowed in k8s >= 1.15
* test/provision: upgrade k8s 1.15 to 1.15.0-beta.2
* test: have timeout for `Exec`
* pkg/kvstore: introduced a dedicated session for locks
* pkg/kvstore: implement new *IfLocked methods for etcd
* kvstore/allocator: make the allocator aware of kvstore lock holding
* pkg/kvstore: add Comparator() to KVLocker
* pkg/kvstore: add new *IfLocked methods to perform txns
* test: bump k8s 1.13 to 1.13.7
* test: Enable IPv6 forwarding in test VMs
* docs: Remove architecture target links
* test: add serial ports to CI VMs
* *.Jenkinsfile: remove leftover failFast
* endpoint: make sure `updateRegenerationStatistics` is called within anonymous function
* Prepare for v1.5.3
* test: do not spawn goroutines to wait for canceled context in `RunCommandContext`
* node/store: Do not delete node key in kvstore on node registration failure
* kvstore/store: Do not remove local key on sync failure
* node: Delay handling of node delete events received via kvstore
* test/provision: bump k8s 1.12 to 1.12.9
* pkg/kvstore: do not always UpdateIfDifferent with and without lease
* Don't overwrite minRequired in WaitforNPods
* daemon: Don't log endpoint restore if IP alloc fails
* daemon: Refactor individual endpoint restore
* test: provide context which will be cancled to `CiliumExecContext`
* Jenkinsfile: backport all Jenkinsfile from master
* doc: Document regressions in 1.5.0 and 1.5.1
* Prepare for release v1.5.2
* test: Disable unstable K8sDatapathConfig Encapsulation Check connectivity with transparent encryption and VXLAN encapsulation
* Add kvstore quorum check to Cilium precheck
* pkg/kvstore: acquire a random initlock
* kvstore: Wait for kvstore to reach quorum
* ipcache: Fix automatic recovery of deleted ipcache entries
* tests, k8s: add monitor dump helper for debugging
* bugtool: add raw dumps of all lb and lb-related maps
* pkg/labels: ignore all labels that match the regex "annotation.*"
* docs: Add note about keeping enable-legacy-services
* docs: Add note about running preflight-with-rm-svc-v2.yaml
* examples: Add preflight DaemonSet for svc-v2 removal
* operator: Fix health check API
* doc: Add EKS node-init DaemonSet to mount BPF filesystem
* pkg/kvstore: perform update if value or lease are different
* kvstore/allocator: do not immediately delete master keys if unused
* pkg/kvstore: store Modified Revision number KeyValuePairs map
* kvstore/allocator: do not re-allocate localKeys
* kvstore/allocator: move invalidKey to cache.go
* kvstore/allocator: add lookupKey method
* allocator: Provide additional info message on key allocation and deletion
* allocator: Fix garbage collector to compare prefix
* allocator: Make GetNoCache() deterministic
* kvstore/allocator: protect concurrent access of slave keys
* kvstore/allocator: release ID from idpool on error
* kvstore/allocator: do not re-get slave key on allocation
* pkg/kvstore: Run GetPrefix with limit of 1
* allocator: Verify locally allocated key
* envoy: Prevent resending NACKed resources also when there are no ACK observers.
* endpoint: Guard against deleted endpoints in regenerate
* service: Reduce backend ID allocation space
* cilium: fix up source address selection for cluster ip
* CI: Log at INFO and above for all unit tests
* bpf: Fix dump parsers of encrypt and sockmap maps
* pkg/maps: use pointer in receivers for GetKeyPtr and GetValuePtr
* test: fix incorrect deletion statement for policy
* proxylib: Fix egress enforcement
* Recover from ginkgo fail in WithTimeout helper
* docs: move well known identities to the concepts section
* docs: update well-known-identities documentation
* add support for k8s 1.14.2
* test: add v1.15.0-beta.0 to the CI
* cni: Fix incorrect logging in failure case
* daemon: Make policymap size configurable
* Add jenkins stage for loading vagrant boxes
* bpf: Remove several debug messages
* Revert "pkg/bpf: add DeepCopyMapKey and DeepCopyMapValue"
* Revert "pkg/{bpf,datapath,maps}: use same MapKey and MapValue in map iterations"
* Revert "pkg/bpf: add newer LookupElement, GetNextKey and UpdateElement functions"
* Revert "pkg/bpf: use own binary which does not require to create buffers"
* Revert "maps/ctmap: add ctmap benchmark"
* bpf: force recreation of regular ct entry upon service collision
* pkg/endpoint: fix assignment in nil map on restore
* pkg/ipcache: initialize globalmap at import time
* test/provision: bump k8s testing to v1.13.6
* bpf: do propagate backend, and rev nat to new entry
* datapath: Redo backend selection if stale CT_SERVICE entry is found
* daemon/Makefile: rm -f on make clean for links
* CI: Consolidate Vagrant box information into 1 file
* cilium: encode table attribute in Route delete
* daemon: Remove stale maps only after restoring all endpoints
* envoy: Do not use deprecated configuration options.
* cilium: IsLocal() needs to compare both Name and Cluster
* daemon: Do not restore service if adding to cache fails
* daemon: Improve logging of service restoration
* doc: Adjust documentation with new dynamic gc interval
* ctmap: Introduce variable conntrack gc interval
* pkg/envoy: use proto.Equal instead comparing strings
* test: replace guestbook test docker image
* docs: give better troubleshooting for conntrack-gc-interval
* operator: fix concurrent access of variable in cnp garbage collection
* Bump vagrant box version for tests to 151
* cni: Fix unexpected end of JSON input on errors
* docs: add missing cilium-operator-sa.yaml for k8s 1.14 upgrade guide
* maps: Remove disabled svc v2 maps
* fqdn: DNSProxy does not fold similar DNS requests
* docs: fix architecture images' URL
* CI: Consolidate WaitforNPods and WaitForPodsRunning
* CI: WaitForNPods uses count of pods
* Dockerfile: update golang to 1.12.5
* metrics: add map_ops_total by default
* Bump vagrant box versions for tests
* Jenkins separate directories for parallel builds
==== helm ====
Version update (3.0.0alpha.1 -> 3.0.0alpha.2)
- Update to version 3.0.0alpha.2:
* Fix paths in the ingress template and values file written by helm create
* docs(CONTRIBUTING): one LGTM for maintainers, remove "always 2 LGTMs" policy
* chore(docs): move docs to helm-www
* chore(deps): bump kubernetes to v1.15
* Added HorizontalPodAutoscaler to sort order.
* feat(template): introduce --validate
* fix(kube): remove namespace enforcement
* ref(getter): change NewHTTPGetter and NewPluginGetter to return type Getter
* ref(downloader): pass in options to ChartDownloader
* support writing multiple resources to the same file
* chartutil.ReadValues is forced to unmarshal numbers into json.Number refs #1707 [dev-v3]
* fix(client): Fixes a timing issue with reading client flags
* Add sub-command support to plugin downloader
* Replaced ghodss/yaml with sigs.k8s.io/yaml
* feat(action): Refactors unit tests with better fakes
* feat(*): Adds back --atomic functionality to Helm 3
* chore: add ValueOptions constructor
* ref(*): Refactors the history action to return releases instead of formatted output
* feat(wait): Adds smarter waiting for DaemonSets and StatefulSets
* Fix linter issuers
* Helm 3: set custom manifest config media type on chart push (#5719)
* fix(pkg/action): Adds back in missing wait functionality
* fix(pkg/kube): Fixes wait functionality
* ref(getter): introduce Options for passing in getter parameters
* Expose the resource types in addition to the api group/version in templates
* Redo the same fix with #3915 in dev-v3 branch
* Fix linter issues
* Updating to newer version of sprig
* Restoring the Release.Namespace docs
* Updating to the new Ingress group version
* Stop Lint from breaking when using required
* Remove mention of the execute flag
* Fix the build section in the developer doc
* fix(resolver): compare hash of lockfile against resolved dependencies
* ref(version): catch some edge cases
* Add documentation on registries (#5754)
* add go version to version cmd output of helm
* ref(urlutil): remove stripPort
* ref(downloader): remove ResolveChartVersionAndGetRepo
* chore(testdata): remove stale test output
* fix(circle): only upload packages and checksums, not cross-builds
* fix and add test cases
* Revert "do not write empty templates to disk"
* add test for output-dir
* Add dynamic completion for release names
* (helm): update Cobra to version 0.0.4
* fix issue 5792
* ref(*): expose klog flags
* do not write empty templates to disk
* use outputDir instead of hardcoded value
* docs(faq): add namespace changes for non existing namespaces
* ref(pkg/chartutil): break up chartutil into logical files
* support --output-dir option for helm3 template
* fix missing package name
* ref(pkg/chart): remove unused chart.RawValues
* docs(install): fix release links
* fix(docs): fix `helm install` usage
* fix ByDate sorter to use Time.Unix()
* update list tests expected output files
* fix test cases for list.AllNamespaces
* remove unnecessary setting of list.All flag
* add superseded to list filter mask
* add more releases to list tests
* fix docs for helm list
* Remove redundant ByNameAsc enum value. Handled by default sorting
* handle default list sort order through enum order
* fix test cases for sort list with options
* fix sort list with options bug
==== kernel-default-base ====
- Add all netfilter and xfrm modules (boo#1142841)
==== pkgconf ====
Subpackages: libpkgconf3 pkgconf-m4 pkgconf-pkg-config
- Add missing -gnu ABI suffix to platform names in pkgconf-pkg-config (boo#1144318)
--
To unsubscribe, e-mail: opensuse-kubic+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-kubic+owner(a)opensuse.org
1
0