Hello!
I'm trying to set some filesystem optimizations on my MicroOS box --
namely space_cache=v2, discard=async, and compress=zstd:1. However, I
discovered when I added those to my fstab and ran
`transactional-update initrd`, only `/var` and `/var/lib/docker/btrfs`
picked up on these mount options. See
https://gist.github.com/steelcowboy/1c27196730554ca8cbb21e01643f2bc7
Is it possible to do this for other mounts? And if so, are there any
mounts that I should avoid these options on for any reason?
Thanks for your help!
Jim
---------------------------------------------------
James Heald
Production Engineer
Facebook
james.r.heald(a)gmail.com
--
To unsubscribe, e-mail: opensuse-kubic+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-kubic+owner(a)opensuse.org
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
bcache-tools
gnome-user-docs (3.36.2 -> 3.36.6)
gnutls (3.6.14 -> 3.6.15)
kbd
libarchive
libxml2
open-vm-tools
openldap2 (2.4.52 -> 2.4.53)
podman
xfsprogs (5.7.0 -> 5.8.0)
=== Details ===
==== bcache-tools ====
- Cure fallout from %_libexecdir change [boo#1174075, boo#1176244]
==== gnome-user-docs ====
Version update (3.36.2 -> 3.36.6)
- Update to version 3.36.6:
+ Various updates and corrections to GNOME Help.
+ Updated translations.
==== gnutls ====
Version update (3.6.14 -> 3.6.15)
- Update to 3.6.15
* libgnutls: Fixed "no_renegotiation" alert handling at incorrect timing.
[GNUTLS-SA-2020-09-04, CVSS: medium]
* libgnutls: If FIPS self-tests are failed, gnutls_fips140_mode_enabled() now
indicates that with a false return value (!1306).
* libgnutls: Under FIPS mode, the generated ECDH/DH public keys are checked
accordingly to SP800-56A rev 3 (!1295, !1299).
* libgnutls: gnutls_x509_crt_export2() now returns 0 upon success, rather than
the size of the internal base64 blob (#1025).
* libgnutls: Certificate verification failue due to OCSP must-stapling is not
honered is now correctly marked with the GNUTLS_CERT_INVALID flag
* libgnutls: The audit log message for weak hashes is no longer printed twice
* libgnutls: Fixed version negotiation when TLS 1.3 is enabled and TLS 1.2 is
disabled in the priority string. Previously, even when TLS 1.2 is explicitly
disabled with "-VERS-TLS1.2", the server still offered TLS 1.2 if TLS 1.3 is
enabled (#1054).
- drop upstreamed patches:
* gnutls-detect_nettle_so.patch
* 0001-crypto-api-always-allocate-memory-when-serializing-i.patch
==== kbd ====
Subpackages: kbd-legacy
- add libkeymap-Fix-mk_mapname-for-the-plain-map.patch
==== libarchive ====
- fix build with binutils submitted to Factory, adding upstream
libarchive-3.4.3-fix_test_write_disk_secure.patch
==== libxml2 ====
Subpackages: libxml2-2 libxml2-tools
- Security fix: [bsc#1176179, CVE-2020-24977]
* xmllint: global-buffer-overflow in xmlEncodeEntitiesInternal
- Add patch libxml2-CVE-2020-24977.patch
==== open-vm-tools ====
Subpackages: libvmtools0
- Use libtirpc also in SLE-15-SP3
==== openldap2 ====
Version update (2.4.52 -> 2.4.53)
- updated to 2.4.53
OpenLDAP 2.4.53 (2020/09/07)
Added slapd syncrepl additional SYNC logging (ITS#9043)
Fixed slapd syncrepl segfault on NULL cookie on REFRESH (ITS#9282)
Fixed slapd syncrepl to use fresh connection on REFRESH fallback (ITS#9338)
Fixed slapo-ppolicy race condition for pwdFailureTime (ITS#9302,ITS#9334)
Build
Require OpenSSL 1.0.2 or later (ITS#9323)
Fixed libldap compilation issue with broken C compilers (ITS#9332)
==== podman ====
Subpackages: podman-cni-config
- Cleanup %install section to use "make install"
- install missing systemd units for the new Rest API (bsc#1175957)
and a few man-pages that where missing before
- Drop varlink API related bits (in favor of the new API)
- fix install location for zsh completions
==== xfsprogs ====
Version update (5.7.0 -> 5.8.0)
- update to v5.8.0:
* xfs_db: set b_ops to NULL for types without verifiers
* mkfs: allow setting dax flag on root directory
* xfs_quota: improve reporting and messages
* xfs_db: use correct inode to set inode type
* xfs_db: fix nlink usage in check
* xfs_db: report the inode dax flag
* man: update mkfs.xfs inode flag option documentation
* xfsprogs: move custom interface def'ns to new header
* xfs_repair: check quota counters
* xfs_io: fix -D vs -R handling
* libxfs changes merged from kernel 5.8
--
To unsubscribe, e-mail: opensuse-kubic+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-kubic+owner(a)opensuse.org
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=1&version=T…https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
bcache-tools
kbd
libxml2
open-vm-tools
openldap2 (2.4.52 -> 2.4.53)
podman
python-pyzmq
salt
xfsprogs (5.7.0 -> 5.8.0)
yomi-formula (0.0.1+git.1595952633.b300be2 -> 0.0.1+git.1598948600.9a9eab0)
=== Details ===
==== bcache-tools ====
- Cure fallout from %_libexecdir change [boo#1174075, boo#1176244]
==== kbd ====
Subpackages: kbd-legacy
- add libkeymap-Fix-mk_mapname-for-the-plain-map.patch
==== libxml2 ====
Subpackages: libxml2-2 libxml2-tools
- Security fix: [bsc#1176179, CVE-2020-24977]
* xmllint: global-buffer-overflow in xmlEncodeEntitiesInternal
- Add patch libxml2-CVE-2020-24977.patch
==== open-vm-tools ====
Subpackages: libvmtools0
- Use libtirpc also in SLE-15-SP3
==== openldap2 ====
Version update (2.4.52 -> 2.4.53)
- updated to 2.4.53
OpenLDAP 2.4.53 (2020/09/07)
Added slapd syncrepl additional SYNC logging (ITS#9043)
Fixed slapd syncrepl segfault on NULL cookie on REFRESH (ITS#9282)
Fixed slapd syncrepl to use fresh connection on REFRESH fallback (ITS#9338)
Fixed slapo-ppolicy race condition for pwdFailureTime (ITS#9302,ITS#9334)
Build
Require OpenSSL 1.0.2 or later (ITS#9323)
Fixed libldap compilation issue with broken C compilers (ITS#9332)
==== podman ====
Subpackages: podman-cni-config
- Cleanup %install section to use "make install"
- install missing systemd units for the new Rest API (bsc#1175957)
and a few man-pages that where missing before
- Drop varlink API related bits (in favor of the new API)
- fix install location for zsh completions
==== python-pyzmq ====
- Add timeout to tests (boo#1176232)
==== salt ====
Subpackages: python3-salt salt-master salt-minion salt-standalone-formulas-configuration
- Reintroduces the patches from
opensuse-3000.2-virt-backports-236.patch coming from Salt 3001
- Added:
* backport-virt-patches-from-3001-256.patch
- Adding missing virt backports to 3000.3
- Added:
* opensuse-3000.2-virt-backports-236-257.patch
- Do not raise StreamClosedError traceback but only log it (bsc#1175549)
- Added:
* do-not-raise-streamclosederror-traceback-but-only-lo.patch
- Take care of failed, skipped and unreachable tasks and propagate "retcode" (bsc#1173911) (bsc#1173909)
- Added:
* ansiblegate-take-care-of-failed-skipped-and-unreacha.patch
==== xfsprogs ====
Version update (5.7.0 -> 5.8.0)
- update to v5.8.0:
* xfs_db: set b_ops to NULL for types without verifiers
* mkfs: allow setting dax flag on root directory
* xfs_quota: improve reporting and messages
* xfs_db: use correct inode to set inode type
* xfs_db: fix nlink usage in check
* xfs_db: report the inode dax flag
* man: update mkfs.xfs inode flag option documentation
* xfsprogs: move custom interface def'ns to new header
* xfs_repair: check quota counters
* xfs_io: fix -D vs -R handling
* libxfs changes merged from kernel 5.8
==== yomi-formula ====
Version update (0.0.1+git.1595952633.b300be2 -> 0.0.1+git.1598948600.9a9eab0)
- Update to version 0.0.1+git.1598948600.9a9eab0:
* Replace fdisk with parted in partitioned
--
To unsubscribe, e-mail: opensuse-kubic+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-kubic+owner(a)opensuse.org
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
apparmor
baloo5-widgets (20.08.0 -> 20.08.1)
cifs-utils
cni-plugins (0.8.6 -> 0.8.7)
dolphin (20.08.0 -> 20.08.1)
enchant
gptfdisk
gspell (1.8.3 -> 1.8.4)
kaccounts-integration (20.08.0 -> 20.08.1)
kate (20.08.0 -> 20.08.1)
kde-print-manager (20.08.0 -> 20.08.1)
kdeconnect-kde (20.08.0 -> 20.08.1)
kdialog (20.08.0 -> 20.08.1)
kernel-source (5.8.4 -> 5.8.7)
kio-extras5 (20.08.0 -> 20.08.1)
konsole (20.08.0 -> 20.08.1)
kwalletmanager5 (20.08.0 -> 20.08.1)
libgdata (0.17.12 -> 0.17.13)
libhandy0
libsrtp2 (2.2.0 -> 2.3.0)
libxkbcommon (0.10.0 -> 1.0.0)
libzypp-plugin-appdata
mozjs68 (68.9.0 -> 68.12.0)
plasma5-workspace
spandsp
=== Details ===
==== apparmor ====
Subpackages: apparmor-abstractions apparmor-parser apparmor-profiles apparmor-utils perl-apparmor python3-apparmor
- libvirt-leaseshelper.patch: add /usr/libexec as a path to the
libvirt leaseshelper script (jsc#SLE-14253)
==== baloo5-widgets ====
Version update (20.08.0 -> 20.08.1)
- Update to 20.08.1
* New bugfix release
* For more details please see:
* https://kde.org/announcements/releases/2020-09-apps-update
- Changes since 20.08.0:
* Increase min KF5 version to reflect reality
==== cifs-utils ====
- CVE-2020-14342: Shell command injection vulnerability in mount.cifs;
(bsc#1174477); (bso#14442); CVE-2020-14342.
* add 0013-CVE-2020-14342-mount.cifs-fix-shell-command-injectio.patch
==== cni-plugins ====
Version update (0.8.6 -> 0.8.7)
- Update to version 0.8.7:
* Fix race condition in GetCurrentNS
* lo: CNI_IFNAME is no longer ignored
* cni: bump to 0.8.0
* Bump Go version to 1.13 and 1.14
* Add contact info
* Update firewall README.md CNI-ADMIN
* firewall: fix some typos in docs
* portmap DEL noop if no portMappings present
* flannel: remove net conf file after DEL succeed
==== dolphin ====
Version update (20.08.0 -> 20.08.1)
Subpackages: dolphin-part libdolphinvcs5
- Update to 20.08.1
* New bugfix release
* For more details please see:
* https://kde.org/announcements/releases/2020-09-apps-update
- Changes since 20.08.0:
* Fix file preview for desktop files with absolute icon paths (kde#423326)
* Fix nullptr crash on Windows
* Fix 'show space' setting not being re-applied (kde#425542)
* Fix i18n
==== enchant ====
Subpackages: enchant-2-backend-hunspell enchant-data libenchant-2-2
- Enable nuspell backend where it is available (openSUSE >= 1550):
+ Introduce BuildRequires: nuspell-devel and
libboost_headers-devel.
+ Split out new package enchant-2-backend-nuspell providing the
nuspell backend.
==== gptfdisk ====
- Remove old specfile constructs.
==== gspell ====
Version update (1.8.3 -> 1.8.4)
- Update to version 1.8.4:
+ Updated translations.
==== kaccounts-integration ====
Version update (20.08.0 -> 20.08.1)
- Update to 20.08.1
* New bugfix release
* For more details please see:
* https://kde.org/announcements/releases/2020-09-apps-update
- No code change since 20.08.0
==== kate ====
Version update (20.08.0 -> 20.08.1)
Subpackages: kate-plugins
- Update to 20.08.1
* New bugfix release
* For more details please see:
* https://kde.org/announcements/releases/2020-09-apps-update
- No code change since 20.08.0
==== kde-print-manager ====
Version update (20.08.0 -> 20.08.1)
- Update to 20.08.1
* New bugfix release
* For more details please see:
* https://kde.org/announcements/releases/2020-09-apps-update
- No code change since 20.08.0
==== kdeconnect-kde ====
Version update (20.08.0 -> 20.08.1)
- Update to 20.08.1
* New bugfix release
* For more details please see:
* https://kde.org/announcements/releases/2020-09-apps-update
- Changes since 20.08.0:
* [kio] Mark Class as local (kde#413477)
* Reload remote commands model when commands change
* Define content margins for settings app
* appdata: use canonical help URL
==== kdialog ====
Version update (20.08.0 -> 20.08.1)
- Update to 20.08.1
* New bugfix release
* For more details please see:
* https://kde.org/announcements/releases/2020-09-apps-update
- No code change since 20.08.0
==== kernel-source ====
Version update (5.8.4 -> 5.8.7)
- Revert "ALSA: hda: Add support for Loongson 7A1000 controller"
(git-fixes).
- commit 7fc52c0
- Linux 5.8.7 (bsc#1012628).
- scsi: target: tcmu: Optimize use of flush_dcache_page
(bsc#1012628).
- nl80211: fix NL80211_ATTR_HE_6GHZ_CAPABILITY usage
(bsc#1012628).
- sdhci: tegra: Remove SDHCI_QUIRK_DATA_TIMEOUT_USES_SDCLK for
Tegra186 (bsc#1012628).
- sdhci: tegra: Remove SDHCI_QUIRK_DATA_TIMEOUT_USES_SDCLK for
Tegra210 (bsc#1012628).
- arm64: tegra: Add missing timeout clock to Tegra210 SDMMC
(bsc#1012628).
- arm64: tegra: Add missing timeout clock to Tegra186 SDMMC nodes
(bsc#1012628).
- arm64: tegra: Add missing timeout clock to Tegra194 SDMMC nodes
(bsc#1012628).
- dt-bindings: mmc: tegra: Add tmclk for Tegra210 and later
(bsc#1012628).
- KVM: arm64: Survive synchronous exceptions caused by AT
instructions (bsc#1012628).
- KVM: arm64: Add kvm_extable for vaxorcism code (bsc#1012628).
- media: media/v4l2-core: Fix kernel-infoleak in video_put_user()
(bsc#1012628).
- perf record/stat: Explicitly call out event modifiers in the
documentation (bsc#1012628).
- selftests/x86/test_vsyscall: Improve the process_vm_readv()
test (bsc#1012628).
- mm: fix pin vs. gup mismatch with gate pages (bsc#1012628).
- netfilter: nft_set_rbtree: Handle outcomes of tree rotations
in overlap detection (bsc#1012628).
- HID: core: Sanitize event code and type when mapping input
(bsc#1012628).
- HID: core: Correctly handle ReportSize being zero (bsc#1012628).
- commit dccac66
- Linux 5.8.6 (bsc#1012628).
- ALSA: usb-audio: Update documentation comment for MS2109 quirk
(bsc#1012628).
- dma-pool: Fix an uninitialized variable bug in
atomic_pool_expand() (bsc#1012628).
- drm/vmwgfx/ldu: Use drm_mode_config_reset (bsc#1012628).
- drm/vmwgfx/sou: Use drm_mode_config_reset (bsc#1012628).
- drm/vmwgfx/stdu: Use drm_mode_config_reset (bsc#1012628).
- HID: hiddev: Fix slab-out-of-bounds write in
hiddev_ioctl_usage() (bsc#1012628).
- mm/page_counter: fix various data races at memsw (bsc#1012628).
- fbmem: pull fbcon_update_vcs() out of fb_set_var()
(bsc#1012628).
- drm/atomic-helper: reset vblank on crtc reset (bsc#1012628).
- io_uring: make offset == -1 consistent with preadv2/pwritev2
(bsc#1012628).
- io_uring: don't use poll handler if file can't be nonblocking
read/written (bsc#1012628).
- io_uring: don't recurse on tsk->sighand->siglock with signalfd
(bsc#1012628).
- usb: typec: tcpm: Fix Fix source hard reset response for TDA
2.3.1.1 and TDA 2.3.1.2 failures (bsc#1012628).
- usb: typec: ucsi: Hold con->lock for the entire duration of
ucsi_register_port() (bsc#1012628).
- usb: typec: ucsi: Rework ppm_lock handling (bsc#1012628).
- usb: typec: ucsi: Fix 2 unlocked ucsi_run_command calls
(bsc#1012628).
- usb: typec: ucsi: Fix AB BA lock inversion (bsc#1012628).
- USB: Fix device driver race (bsc#1012628).
- USB: Also match device drivers using the ->match vfunc
(bsc#1012628).
- usb: storage: Add unusual_uas entry for Sony PSZ drives
(bsc#1012628).
- USB: cdc-acm: rework notification_buffer resizing (bsc#1012628).
- usb: dwc3: gadget: Handle ZLP for sg requests (bsc#1012628).
- usb: dwc3: gadget: Fix handling ZLP (bsc#1012628).
- usb: dwc3: gadget: Don't setup more than requested
(bsc#1012628).
- USB: gadget: u_f: Unbreak offset calculation in VLAs
(bsc#1012628).
- USB: gadget: f_ncm: add bounds checks to ncm_unwrap_ntb()
(bsc#1012628).
- USB: gadget: u_f: add overflow checks to VLA macros
(bsc#1012628).
- usb: host: ohci-exynos: Fix error handling in
exynos_ohci_probe() (bsc#1012628).
- USB: Ignore UAS for JMicron JMS567 ATA/ATAPI Bridge
(bsc#1012628).
- USB: quirks: Ignore duplicate endpoint on Sound Devices MixPre-D
(bsc#1012628).
- USB: quirks: Add no-lpm quirk for another Raydium touchscreen
(bsc#1012628).
- usb: uas: Add quirk for PNY Pro Elite (bsc#1012628).
- USB: yurex: Fix bad gfp argument (bsc#1012628).
- drm/amd/pm: correct the thermal alert temperature limit settings
(bsc#1012628).
- drm/amd/pm: correct Vega20 swctf limit setting (bsc#1012628).
- drm/amd/pm: correct Vega12 swctf limit setting (bsc#1012628).
- drm/amd/pm: correct Vega10 swctf limit setting (bsc#1012628).
- drm/amd/powerplay: Fix hardmins not being sent to SMU for RV
(bsc#1012628).
- drm/amdgpu/gfx10: refine mgcg setting (bsc#1012628).
- drm/amd/display: use correct scale for actual_brightness
(bsc#1012628).
- drm/amdgpu: Fix buffer overflow in INFO ioctl (bsc#1012628).
- drm/modeset-lock: Take the modeset BKL for legacy drivers
(bsc#1012628).
- drm/dp_mst: Don't return error code when crtc is null
(bsc#1012628).
- drm/etnaviv: fix external abort seen on GC600 rev 0x19
(bsc#1012628).
- drm/i915: Fix cmd parser desc matching with masks (bsc#1012628).
- x86/hotplug: Silence APIC only after all interrupts are migrated
(bsc#1012628).
- x86/irq: Unbreak interrupt affinity setting (bsc#1012628).
- irqchip/stm32-exti: Avoid losing interrupts due to clearing
pending bits by mistake (bsc#1012628).
- genirq/matrix: Deal with the sillyness of for_each_cpu() on UP
(bsc#1012628).
- usbip: Implement a match function to fix usbip (bsc#1012628).
- crypto: af_alg - Work around empty control messages without
MSG_MORE (bsc#1012628).
- device property: Fix the secondary firmware node handling in
set_primary_fwnode() (bsc#1012628).
- powerpc/perf: Fix crashes with generic_compat_pmu & BHRB
(bsc#1012628).
- powerpc/32s: Disable VMAP stack which CONFIG_ADB_PMU
(bsc#1012628).
- PM: sleep: core: Fix the handling of pending runtime resume
requests (bsc#1012628).
- arm64: vdso32: make vdso32 install conditional (bsc#1012628).
- KVM: arm64: Set HCR_EL2.PTW to prevent AT taking synchronous
exception (bsc#1012628).
- io-wq: fix hang after cancelling pending hashed work
(bsc#1012628).
- xhci: Always restore EP_SOFT_CLEAR_TOGGLE even if ep reset
failed (bsc#1012628).
- xhci: Do warm-reset when both CAS and XDEV_RESUME are set
(bsc#1012628).
- usb: host: xhci: fix ep context print mismatch in debugfs
(bsc#1012628).
- usb: host: xhci-tegra: fix tegra_xusb_get_phy() (bsc#1012628).
- usb: host: xhci-tegra: otg usb2/usb3 port init (bsc#1012628).
- usb: renesas-xhci: remove version check (bsc#1012628).
- XEN uses irqdesc::irq_data_common::handler_data to store a
per interrupt XEN data pointer which contains XEN specific
information (bsc#1012628).
- writeback: Fix sync livelock due to b_dirty_time processing
(bsc#1012628).
- writeback: Avoid skipping inode writeback (bsc#1012628).
- writeback: Protect inode->i_io_list with inode->i_lock
(bsc#1012628).
- io_uring: clear req->result on IOPOLL re-issue (bsc#1012628).
- serial: 8250: change lock order in serial8250_do_startup()
(bsc#1012628).
- serial: 8250_exar: Fix number of ports for Commtech PCIe cards
(bsc#1012628).
- serial: stm32: avoid kernel warning on absence of optional IRQ
(bsc#1012628).
- serial: pl011: Don't leak amba_ports entry on driver register
error (bsc#1012628).
- serial: pl011: Fix oops on -EPROBE_DEFER (bsc#1012628).
- serial: samsung: Removes the IRQ not found warning
(bsc#1012628).
- vt_ioctl: change VT_RESIZEX ioctl to check for error return
from vc_resize() (bsc#1012628).
- vt: defer kfree() of vc_screenbuf in vc_do_resize()
(bsc#1012628).
- USB: lvtest: return proper error code in probe (bsc#1012628).
- fbcon: prevent user font height or width change from causing
potential out-of-bounds access (bsc#1012628).
- btrfs: detect nocow for swap after snapshot delete
(bsc#1012628).
- btrfs: fix space cache memory leak after transaction abort
(bsc#1012628).
- btrfs: check the right error variable in
btrfs_del_dir_entries_in_log (bsc#1012628).
- btrfs: reset compression level for lzo on remount (bsc#1012628).
- blk-mq: order adding requests to hctx->dispatch and checking
SCHED_RESTART (bsc#1012628).
- HID: i2c-hid: Always sleep 60ms after I2C_HID_PWR_ON commands
(bsc#1012628).
- block: loop: set discard granularity and alignment for block
device backed loop (bsc#1012628).
- block: fix get_max_io_size() (bsc#1012628).
- hwmon: (gsc-hwmon) Scale temperature to millidegrees
(bsc#1012628).
- arm64: Allow booting of late CPUs affected by erratum 1418040
(bsc#1012628).
- arm64: Move handling of erratum 1418040 into C code
(bsc#1012628).
- bpf: selftests: global_funcs: Check err_str before strstr
(bsc#1012628).
- libbpf: Fix map index used in error message (bsc#1012628).
- powerpc/perf: Fix soft lockups due to missed interrupt
accounting (bsc#1012628).
- ext4: limit the length of per-inode prealloc list (bsc#1012628).
- bpf: Avoid visit same object multiple times (bsc#1012628).
- bpf: Fix a rcu_sched stall issue with bpf task/task_file
iterator (bsc#1012628).
- drm/amdkfd: fix the wrong sdma instance query for renoir
(bsc#1012628).
- drm/amdgpu: fix NULL pointer access issue when unloading driver
(bsc#1012628).
- net: gianfar: Add of_node_put() before goto statement
(bsc#1012628).
- macvlan: validate setting of multiple remote source MAC
addresses (bsc#1012628).
- Revert "scsi: qla2xxx: Fix crash on qla2x00_mailbox_command"
(bsc#1012628).
- scsi: qla2xxx: Fix null pointer access during disconnect from
subsystem (bsc#1012628).
- scsi: qla2xxx: Check if FW supports MQ before enabling
(bsc#1012628).
- scsi: qla2xxx: Fix login timeout (bsc#1012628).
- scsi: qla2xxx: Indicate correct supported speeds for Mezz card
(bsc#1012628).
- scsi: qla2xxx: Flush I/O on zone disable (bsc#1012628).
- scsi: qla2xxx: Flush all sessions on zone disable (bsc#1012628).
- scsi: scsi_debug: Fix scp is NULL errors (bsc#1012628).
- scsi: ufs: Clean up completed request without interrupt
notification (bsc#1012628).
- scsi: ufs: Improve interrupt handling for shared interrupts
(bsc#1012628).
- scsi: ufs: Fix possible infinite loop in ufshcd_hold
(bsc#1012628).
- scsi: fcoe: Fix I/O path allocation (bsc#1012628).
- selftests: disable rp_filter for icmp_redirect.sh (bsc#1012628).
- ALSA: usb-audio: ignore broken processing/extension unit
(bsc#1012628).
- ASoC: wm8994: Avoid attempts to read unreadable registers
(bsc#1012628).
- s390/cio: add cond_resched() in the slow_eval_known_fn() loop
(bsc#1012628).
- ALSA: hda/realtek: Add model alc298-samsung-headphone
(bsc#1012628).
- drivers/net/wan/hdlc_x25: Added needed_headroom and a skb->len
check (bsc#1012628).
- dma-pool: Only allocate from CMA when in same memory zone
(bsc#1012628).
- dma-pool: fix coherent pool allocations for IOMMU mappings
(bsc#1012628).
- can: j1939: transport: j1939_xtp_rx_dat_one(): compare own
packets to detect corruptions (bsc#1012628).
- selftests/bpf: Correct various core_reloc 64-bit assumptions
(bsc#1012628).
- selftests/bpf: Fix btf_dump test cases on 32-bit arches
(bsc#1012628).
- selftest/bpf: Fix compilation warnings in 32-bit mode
(bsc#1012628).
- tools/bpftool: Fix compilation warnings in 32-bit mode
(bsc#1012628).
- libbpf: Prevent overriding errno when logging errors
(bsc#1012628).
- netfilter: avoid ipv6 -> nf_defrag_ipv6 module dependency
(bsc#1012628).
- selftests/bpf: Fix segmentation fault in test_progs
(bsc#1012628).
- drm/amd/display: Switch to immediate mode for updating
infopackets (bsc#1012628).
- drm/amd/display: Fix LFC multiplier changing erratically
(bsc#1012628).
- drm/amd/powerplay: correct UVD/VCE PG state on custom pptable
uploading (bsc#1012628).
- drm/amd/powerplay: correct Vega20 cached smu feature state
(bsc#1012628).
- spi: stm32: always perform registers configuration prior to
transfer (bsc#1012628).
- spi: stm32: fix stm32_spi_prepare_mbr in case of odd clk_rate
(bsc#1012628).
- spi: stm32: fix fifo threshold level in case of short transfer
(bsc#1012628).
- spi: stm32h7: fix race condition at end of transfer
(bsc#1012628).
- fs: prevent BUG_ON in submit_bh_wbc() (bsc#1012628).
- ext4: correctly restore system zone info when remount fails
(bsc#1012628).
- ext4: handle error of ext4_setup_system_zone() on remount
(bsc#1012628).
- ext4: handle option set by mount flags correctly (bsc#1012628).
- jbd2: abort journal if free a async write error metadata buffer
(bsc#1012628).
- ext4: abort the filesystem if failed to async write metadata
buffer (bsc#1012628).
- drm/virtio: fix memory leak in virtio_gpu_cleanup_object()
(bsc#1012628).
- ext4: skip non-loaded groups at cr=0/1 when scanning for good
groups (bsc#1012628).
- ext4: handle read only external journal device (bsc#1012628).
- ext4: don't BUG on inconsistent journal feature (bsc#1012628).
- jbd2: make sure jh have b_transaction set in
refile/unfile_buffer (bsc#1012628).
- spi: stm32: clear only asserted irq flags on interrupt
(bsc#1012628).
- video: fbdev: controlfb: Fix build for COMPILE_TEST=y &&
PPC_PMAC=n (bsc#1012628).
- usb: gadget: f_tcm: Fix some resource leaks in some error paths
(bsc#1012628).
- vdpa: ifcvf: free config irq in ifcvf_free_irq() (bsc#1012628).
- vdpa: ifcvf: return err when fail to request config irq
(bsc#1012628).
- i2c: rcar: in slave mode, clear NACK earlier (bsc#1012628).
- i2c: core: Don't fail PRP0001 enumeration when no ID table exist
(bsc#1012628).
- drm/etnaviv: always start/stop scheduler in timeout processing
(bsc#1012628).
- habanalabs: Fix memory corruption in debugfs (bsc#1012628).
- null_blk: fix passing of REQ_FUA flag in null_handle_rq
(bsc#1012628).
- nvme: multipath: round-robin: fix single non-optimized path case
(bsc#1012628).
- nvme-fc: Fix wrong return value in __nvme_fc_init_request()
(bsc#1012628).
- nvmet: fix a memory leak (bsc#1012628).
- blkcg: fix memleak for iolatency (bsc#1012628).
- blk-mq: insert request not through ->queue_rq into sw/scheduler
queue (bsc#1012628).
- hwmon: (nct7904) Correct divide by 0 (bsc#1012628).
- bfq: fix blkio cgroup leakage v4 (bsc#1012628).
- block: Fix page_is_mergeable() for compound pages (bsc#1012628).
- drm/msm/adreno: fix updating ring fence (bsc#1012628).
- block: virtio_blk: fix handling single range discard request
(bsc#1012628).
- block: respect queue limit of max discard segment (bsc#1012628).
- nfsd: fix oops on mixed NFSv4/NFSv3 client access (bsc#1012628).
- ALSA: usb-audio: Add capture support for Saffire 6 (USB 1.1)
(bsc#1012628).
- cpufreq: intel_pstate: Fix EPP setting via sysfs in active mode
(bsc#1012628).
- PM / devfreq: Fix the wrong end with semicolon (bsc#1012628).
- PCI: qcom: Add missing reset for ipq806x (bsc#1012628).
- PCI: qcom: Change duplicate PCI reset to phy reset
(bsc#1012628).
- PCI: qcom: Add missing ipq806x clocks in PCIe driver
(bsc#1012628).
- net: openvswitch: introduce common code for flushing flows
(bsc#1012628).
- arm64: Fix __cpu_logical_map undefined issue (bsc#1012628).
- efi: provide empty efi_enter_virtual_mode implementation
(bsc#1012628).
- pinctrl: mediatek: fix build for tristate changes (bsc#1012628).
- pinctrl: mediatek: avoid virtual gpio trying to set reg
(bsc#1012628).
- brcmfmac: Set timeout value when configuring power save
(bsc#1012628).
- mmc: sdhci-of-arasan: fix timings allocation code (bsc#1012628).
- USB: sisusbvga: Fix a potential UB casued by left shifting a
negative value (bsc#1012628).
- dmaengine: idxd: fix PCI_MSI build errors (bsc#1012628).
- powerpc/spufs: add CONFIG_COREDUMP dependency (bsc#1012628).
- KVM: arm64: Fix symbol dependency in __hyp_call_panic_nvhe
(bsc#1012628).
- drm/amd/display: fix compilation error on allmodconfig
(bsc#1012628).
- drm/amd/display: change global buffer to local buffer
(bsc#1012628).
- media: i2c: imx290: fix reset GPIO pin handling (bsc#1012628).
- media: davinci: vpif_capture: fix potential double free
(bsc#1012628).
- hugetlbfs: prevent filesystem stacking of hugetlbfs
(bsc#1012628).
- EDAC/ie31200: Fallback if host bridge device is already
initialized (bsc#1012628).
- i2c: i801: Add support for Intel Tiger Lake PCH-H (bsc#1012628).
- scsi: fcoe: Memory leak fix in fcoe_sysfs_fcf_del()
(bsc#1012628).
- ceph: do not access the kiocb after aio requests (bsc#1012628).
- ceph: fix potential mdsc use-after-free crash (bsc#1012628).
- netfilter: nf_tables: report EEXIST on overlaps (bsc#1012628).
- scsi: iscsi: Do not put host in iscsi_set_flashnode_param()
(bsc#1012628).
- btrfs: make btrfs_qgroup_check_reserved_leak take btrfs_inode
(bsc#1012628).
- btrfs: file: reserve qgroup space after the hole punch range
is locked (bsc#1012628).
- locking/lockdep: Fix overflow in presentation of average
lock-time (bsc#1012628).
- drm/nouveau: Fix reference count leak in
nouveau_connector_detect (bsc#1012628).
- drm/nouveau: fix reference count leak in nv50_disp_atomic_commit
(bsc#1012628).
- drm/nouveau/drm/noveau: fix reference count leak in
nouveau_fbcon_open (bsc#1012628).
- f2fs: fix use-after-free issue (bsc#1012628).
- HID: quirks: add NOGET quirk for Logitech GROUP (bsc#1012628).
- ASoC: Intel: sof_sdw_rt711: remove properties in card remove
(bsc#1012628).
- cec-api: prevent leaking memory through hole in structure
(bsc#1012628).
- gpu: host1x: Put gather's BO on pinning error (bsc#1012628).
- ALSA: hda: Add support for Loongson 7A1000 controller
(bsc#1012628).
- mips/vdso: Fix resource leaks in genvdso.c (bsc#1012628).
- rtlwifi: rtl8192cu: Prevent leaking urb (bsc#1012628).
- ARM: dts: ls1021a: output PPS signal on FIPER2 (bsc#1012628).
- PCI: Fix pci_create_slot() reference count leak (bsc#1012628).
- omapfb: fix multiple reference count leaks due to
pm_runtime_get_sync (bsc#1012628).
- MIPS: KVM: Limit Trap-and-Emulate to MIPS32R2 only
(bsc#1012628).
- f2fs: fix error path in do_recover_data() (bsc#1012628).
- f2fs: remove write attribute of main_blkaddr sysfs node
(bsc#1012628).
- selftests/powerpc: Purge extra count_pmc() calls of ebb
selftests (bsc#1012628).
- scsi: target: Fix xcopy sess release leak (bsc#1012628).
- xfs: Don't allow logging of XFS_ISTALE inodes (bsc#1012628).
- scsi: lpfc: Fix shost refcount mismatch when deleting vport
(bsc#1012628).
- drm/amdgpu/pm: fix ref count leak when pm_runtime_get_sync fails
(bsc#1012628).
- drm/amdkfd: fix ref count leak when pm_runtime_get_sync fails
(bsc#1012628).
- drm/amdgpu/fence: fix ref count leak when pm_runtime_get_sync
fails (bsc#1012628).
- drm/amdgpu/display: fix ref count leak when pm_runtime_get_sync
fails (bsc#1012628).
- drm/amdgpu: fix ref count leak in amdgpu_display_crtc_set_config
(bsc#1012628).
- drm/amd/display: fix ref count leak in amdgpu_drm_ioctl
(bsc#1012628).
- drm/amdgpu: fix ref count leak in amdgpu_driver_open_kms
(bsc#1012628).
- drm/radeon: fix multiple reference count leak (bsc#1012628).
- drm/amdkfd: Fix reference count leaks (bsc#1012628).
- platform/chrome: cros_ec_sensorhub: Fix EC timestamp overflow
(bsc#1012628).
- iommu/iova: Don't BUG on invalid PFNs (bsc#1012628).
- mfd: intel-lpss: Add Intel Tiger Lake PCH-H PCI IDs
(bsc#1012628).
- scsi: target: tcmu: Fix crash on ARM during cmd completion
(bsc#1012628).
- staging: rts5208: fix memleaks on error handling paths in probe
(bsc#1012628).
- blktrace: ensure our debugfs dir exists (bsc#1012628).
- gcc-plugins/stackleak: Don't instrument itself (bsc#1012628).
- media: pci: ttpci: av7110: fix possible buffer overflow caused
by bad DMA value in debiirq() (bsc#1012628).
- powerpc/xive: Ignore kmemleak false positives (bsc#1012628).
- arm64: dts: qcom: msm8916: Pull down PDM GPIOs during sleep
(bsc#1012628).
- mfd: intel-lpss: Add Intel Emmitsburg PCH PCI IDs (bsc#1012628).
- ASoC: tegra: Fix reference count leaks (bsc#1012628).
- ASoC: img-parallel-out: Fix a reference count leak
(bsc#1012628).
- ASoC: img: Fix a reference count leak in img_i2s_in_set_fmt
(bsc#1012628).
- EDAC/mc: Call edac_inc_ue_error() before panic (bsc#1012628).
- drm/amdgpu: fix RAS memory leak in error case (bsc#1012628).
- ALSA: hda/hdmi: Use force connectivity quirk on another HP
desktop (bsc#1012628).
- ALSA: hda/realtek: Fix pin default on Intel NUC 8 Rugged
(bsc#1012628).
- ALSA: pci: delete repeated words in comments (bsc#1012628).
- ALSA: hda/hdmi: Add quirk to force connectivity (bsc#1012628).
- ASoC: intel/skl/hda - fix probe regression on systems without
i915 (bsc#1012628).
- khugepaged: khugepaged_test_exit() check mmget_still_valid()
(bsc#1012628).
- commit 6e8d15c
- net/packet: fix overflow in tpacket_rcv (CVE-2020-14386
bsc#1176069).
- commit eba56bd
- fs/cachefiles: Drop superfluous readpages aops NULL check
(bsc#1175245).
- commit 34111a4
- Linux 5.8.5 (bsc#1012628).
- binfmt_flat: revert "binfmt_flat: don't offset the data start"
(bsc#1012628).
- io_uring: fix missing ->mm on exit (bsc#1012628).
- netlink: fix state reallocation in policy export (bsc#1012628).
- ethtool: Don't omit the netlink reply if no features were
changed (bsc#1012628).
- ethtool: Account for hw_features in netlink interface
(bsc#1012628).
- ethtool: Fix preserving of wanted feature bits in netlink
interface (bsc#1012628).
- net: ena: Make missed_tx stat incremental (bsc#1012628).
- tipc: fix uninit skb->data in tipc_nl_compat_dumpit()
(bsc#1012628).
- tipc: call rcu_read_lock() in tipc_aead_encrypt_done()
(bsc#1012628).
- net/smc: Prevent kernel-infoleak in __smc_diag_dump()
(bsc#1012628).
- net: sctp: Fix negotiation of the number of data streams
(bsc#1012628).
- net/sched: act_ct: Fix skb double-free in
tcf_ct_handle_fragments() error flow (bsc#1012628).
- net: qrtr: fix usage of idr in port assignment to socket
(bsc#1012628).
- net: nexthop: don't allow empty NHA_GROUP (bsc#1012628).
- net: Fix potential wrong skb->protocol in skb_vlan_untag()
(bsc#1012628).
- gre6: Fix reception with IP6_TNL_F_RCV_DSCP_COPY (bsc#1012628).
- commit 4d7a832
==== kio-extras5 ====
Version update (20.08.0 -> 20.08.1)
Subpackages: libkioarchive5
- Update to 20.08.1
* New bugfix release
* For more details please see:
* https://kde.org/announcements/releases/2020-09-apps-update
- No code change since 20.08.0
==== konsole ====
Version update (20.08.0 -> 20.08.1)
Subpackages: konsole-part
- Update to 20.08.1
* New bugfix release
* For more details please see:
* https://kde.org/announcements/releases/2020-09-apps-update
- Changes since 20.08.0:
* Add OARS
==== kwalletmanager5 ====
Version update (20.08.0 -> 20.08.1)
- Update to 20.08.1
* New bugfix release
* For more details please see:
* https://kde.org/announcements/releases/2020-09-apps-update
- Changes since 20.08.0:
* Fix memory leak
==== libgdata ====
Version update (0.17.12 -> 0.17.13)
- Update to version 0.17.13:
+ Default to not installing installed-tests.
+ Default to not building documentation.
+ Bugs fixed:
- build: Disable the gtk-doc documentation by default.
- Various minor fixes to meson_options.txt.
- all: Fix various typos and incorrect terminology.
- core: Add g_autoptr() support for GDataUploadStream.
+ Updated translations.
==== libhandy0 ====
Subpackages: libhandy-0_0-0 typelib-1_0-Handy-0_0
- Rename to libhandy0, as libhandy moves to a newer version with a
new ABI/API, but the world is only slowly catching up.
==== libsrtp2 ====
Version update (2.2.0 -> 2.3.0)
- Update to release 2.3.0
* Changes to build system: fuzzer for libsrtp, NSS
as optional crypto back end and cmake build support.
==== libxkbcommon ====
Version update (0.10.0 -> 1.0.0)
Subpackages: libxkbcommon-x11-0 libxkbcommon0
- Update to release 1.0.0
* Now it is possible to add custom layouts and options at the
system (/etc) and user (~/.config) level, at least when
libxkbcommon is in use.
* libxkbregistry is a C library that lists available XKB
models, layouts and variants for a given ruleset. This is a
separate library (.so/.pc files) and aimed at tools that
provide a listing of available keyboard layouts to the user.
* Add an `xkbcli` command-line utility.
==== libzypp-plugin-appdata ====
- Install ASHelper to %{_prefix}/lib: the scripts hardcode this
path.
==== mozjs68 ====
Version update (68.9.0 -> 68.12.0)
- Update to version 68.12.0esr:
* CVE-2020-15663: Downgrade attack on the Mozilla Maintenance
Service could have resulted in escalation of privilege.
* CVE-2020-15664: Attacker-induced prompt for extension
installation.
* CVE-2020-15669: Use-After-Free when aborting an operation.
- Changes from version 68.11.0esr:
* CVE-2020-15659: Memory safety bugs fixed in Firefox 79 and
Firefox ESR 68.11.
* CVE-2020-15649: Exfiltrating local files through malicious file
picker application.
* CVE-2020-15650: Overwriting local files through malicious file
picker application.
* CVE-2020-6463: Use-after-free in ANGLE
gl::Texture::onUnbindAsSamplerTexture.
* CVE-2020-6514: WebRTC data channel leaks internal address to
peer.
* CVE-2020-15652: Potential leak of redirect targets when loading
scripts in a worker.
- Changes from version 68.10.0esr:
* CVE-2020-12421: Add-On updates did not respect the same
certificate trust rules as software updates.
* CVE-2020-12420: Use-After-Free when trying to connect to a STUN
server.
* CVE-2020-12419: Use-after-free in nsGlobalWindowInner.
* CVE-2020-12418: Information disclosure due to manipulated URL
object.
* CVE-2020-12417: Memory corruption due to missing sign-extension
for ValueTags on ARM64.
==== plasma5-workspace ====
Subpackages: gmenudbusmenuproxy plasma5-session plasma5-session-wayland plasma5-workspace-libs xembedsniproxy
- apply 0001-ksmserver-Use-UpdateLaunchEnvJob-to-sync-SESSION_MAN.patch,
that fixes the broken session restore
==== spandsp ====
- More specfile modernization.
--
To unsubscribe, e-mail: opensuse-kubic+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-kubic+owner(a)opensuse.org
Please note that this mail was generated by a script.
The described changes are computed based on the aarch64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=3&version…https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
cryptsetup (2.3.3 -> 2.3.4)
dracut
filesystem
fwupd
gzip
libcap (2.42 -> 2.43)
libgpg-error (1.38 -> 1.39)
libssh2_org
libxcrypt (4.4.15 -> 4.4.17)
lvm2
lvm2-device-mapper
npth
permissions (1550_20200826 -> 1550_20200904)
python38
python38-core
rsync
toolbox (1.0+git20200803.7ff20b6 -> 1.0+git20200831.d2d2e5d)
utempter
=== Details ===
==== cryptsetup ====
Version update (2.3.3 -> 2.3.4)
Subpackages: libcryptsetup12
- Update to 2.3.4:
* Fix a possible out-of-bounds memory write while validating LUKS2 data
segments metadata (CVE-2020-14382, boo#1176128).
* Ignore reported optimal IO size if not aligned to minimal page size.
* Added support for new no_read/write_wrokqueue dm-crypt options (kernel 5.9).
* Added support panic_on_corruption option for dm-verity devices (kernel 5.9).
* Support --master-key-file option for online LUKS2 reencryption
* Always return EEXIST error code if a device already exists.
* Fix a problem in integritysetup if a hash algorithm has dash in the name.
* Fix crypto backend to properly handle ECB mode.
* TrueCrypt/VeraCrypt compatible mode now supports the activation of devices
with a larger sector.
* LUKS2: Do not create excessively large headers.
* Fix unspecified sector size for BitLocker compatible mode.
* Fix reading key data size in metadata for BitLocker compatible mode.
==== dracut ====
Subpackages: dracut-ima
- Generate the tarball during buildtime. Tracking both the tarball
and the .obscpio combines the worst of both.
==== filesystem ====
- Split /var/tmp out of fs-var.conf, new file is fs-var-tmp.conf.
Allows to override config to add cleanup options of /var/tmp
[bsc#1078466]
- Create fs-tmp.conf to cleanup /tmp regular (required with tmpfs)
[bsc#1175519]
- Fix bug about missing group in tmpfiles.d files
- Generic cleanup:
- Remove /usr/local/games
- /etc/java was moved to javapackages-filesystem long ago
- Remove unused languages: en@IPA, it_CH, ja_JP.EUC, ja_JP.SJIS,
ja_JP.eucJP, nds_DE
- Remove %ghost entries for /tmp, /tmp is now tmpfs and the files
are handled by systemd since a long time
- Add /usr/etc/default.
==== fwupd ====
Subpackages: libfwupd2 libfwupdplugin1 typelib-1_0-Fwupd-2_0
- Add fwupd-jscSLE-11766-close-efidir-leap-gap.patch: Set SLE and
openSUSE esp os dir at runtime (jsc#SLE-11766)
- Drop _multibuild and build option -Defi_os_dir="%{efidir}": with
the above patch fwupd can detect esp os dir dynamically
- Update the efidir related %post and %postun scripts in spec file
==== gzip ====
- Enable DFLTCC compression for s390x for levels 1-6 (i. e. to make
it used by default) by adding -DDFLTCC_LEVEL_MASK=0x7e to CLFAGS.
[jsc#SLE-13775]
==== libcap ====
Version update (2.42 -> 2.43)
- update to 2.43
* Linus' kernel tree defines CAP_CHECKPOINT_RESTORE (40) so support it.
* Fix the creation of the $(FAKEROOT)$(LIBDIR) for split install targets
* Clean up a binary from the distribution
* Added some more release time checks for non-git tracked files.
* Fix a deadlock in libpsx that surfaced with a set of compiler optimizations by removing the psx wrapping harder.
==== libgpg-error ====
Version update (1.38 -> 1.39)
- Update to 1.39:
* "gpg-error --lib-version" works again.
* New function gpgrt_fcancel as alternative to gpgrt_close. This
function avoid flushing out buffered data and also tries to delete
a newly created file.
* Update the gnupg project keyring
* Interface changes relative to the 1.38 release:
- gpgrt_fcancel: NEW.
==== libssh2_org ====
- Drop man and groff BuildRequires: both are no longer used in
current versions.
==== libxcrypt ====
Version update (4.4.15 -> 4.4.17)
- Add compatibility provides for SLE15
- Update to version 4.4.17
* Salt string compatibility with generic implementations
==== lvm2 ====
Subpackages: liblvm2cmd2_03
- lvm can't pass build with gcc option Wstringop-overflow (bsc#1175565)
- remove suse speical patch
- bug-1175565_lvm-cant-pass-build-with-gcc-option-Wstringop-overflow.patch
- add upstream patch
+ bug-1175565_01-tools-move-struct-element-before-variable-lenght-lis.patch
+ bug-1175565_02-gcc-change-zero-sized-array-to-fexlible-array.patch
+ bug-1175565_03-gcc-zero-sized-array-to-fexlible-array-C99.patch
==== lvm2-device-mapper ====
Subpackages: device-mapper libdevmapper-event1_03 libdevmapper1_03
- lvm can't pass build with gcc option Wstringop-overflow (bsc#1175565)
- remove suse speical patch
- bug-1175565_lvm-cant-pass-build-with-gcc-option-Wstringop-overflow.patch
- add upstream patch
+ bug-1175565_01-tools-move-struct-element-before-variable-lenght-lis.patch
+ bug-1175565_02-gcc-change-zero-sized-array-to-fexlible-array.patch
+ bug-1175565_03-gcc-zero-sized-array-to-fexlible-array-C99.patch
==== npth ====
- Remove old specfile constructs and doubleshipping of docs.
==== permissions ====
Version update (1550_20200826 -> 1550_20200904)
Subpackages: chkstat permissions-config
- Update to version 20200904:
* Add /usr/libexec for cockpit-session as new path
* physlock: whitelist with tight restrictions (bsc#1175720)
==== python38 ====
- Just cleanup and reordering items to synchronize with python39
==== python38-core ====
Subpackages: libpython3_8-1_0 python38-base
- Just cleanup and reordering items to synchronize with python39
==== rsync ====
- Security fix: [bsc#1176160, CVE-2020-14387]
* rsync-ssl: Verify the hostname in the certificate when using openssl.
- Add rsync-CVE-2020-14387.patch
==== toolbox ====
Version update (1.0+git20200803.7ff20b6 -> 1.0+git20200831.d2d2e5d)
- Update to version 1.0+git20200831.d2d2e5d:
* Allow graphical applications from inside a user toolbox to run
==== utempter ====
- fixed utempter location after libexecdir change (bsc#1175925)
--
To unsubscribe, e-mail: opensuse-kubic+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-kubic+owner(a)opensuse.org
Please note that this mail was generated by a script.
The described changes are computed based on the aarch64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=3&version=T…https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
cryptsetup (2.3.3 -> 2.3.4)
dracut
filesystem
gzip
kubernetes1.18
kubernetes1.19
libcap (2.42 -> 2.43)
libgpg-error (1.38 -> 1.39)
libxcrypt (4.4.15 -> 4.4.17)
lvm2
lvm2-device-mapper
npth
permissions (1550_20200826 -> 1550_20200904)
python38
python38-core
rsync
toolbox (1.0+git20200803.7ff20b6 -> 1.0+git20200831.d2d2e5d)
utempter
=== Details ===
==== cryptsetup ====
Version update (2.3.3 -> 2.3.4)
Subpackages: libcryptsetup12
- Update to 2.3.4:
* Fix a possible out-of-bounds memory write while validating LUKS2 data
segments metadata (CVE-2020-14382, boo#1176128).
* Ignore reported optimal IO size if not aligned to minimal page size.
* Added support for new no_read/write_wrokqueue dm-crypt options (kernel 5.9).
* Added support panic_on_corruption option for dm-verity devices (kernel 5.9).
* Support --master-key-file option for online LUKS2 reencryption
* Always return EEXIST error code if a device already exists.
* Fix a problem in integritysetup if a hash algorithm has dash in the name.
* Fix crypto backend to properly handle ECB mode.
* TrueCrypt/VeraCrypt compatible mode now supports the activation of devices
with a larger sector.
* LUKS2: Do not create excessively large headers.
* Fix unspecified sector size for BitLocker compatible mode.
* Fix reading key data size in metadata for BitLocker compatible mode.
==== dracut ====
Subpackages: dracut-ima
- Generate the tarball during buildtime. Tracking both the tarball
and the .obscpio combines the worst of both.
==== filesystem ====
- Split /var/tmp out of fs-var.conf, new file is fs-var-tmp.conf.
Allows to override config to add cleanup options of /var/tmp
[bsc#1078466]
- Create fs-tmp.conf to cleanup /tmp regular (required with tmpfs)
[bsc#1175519]
- Fix bug about missing group in tmpfiles.d files
- Generic cleanup:
- Remove /usr/local/games
- /etc/java was moved to javapackages-filesystem long ago
- Remove unused languages: en@IPA, it_CH, ja_JP.EUC, ja_JP.SJIS,
ja_JP.eucJP, nds_DE
- Remove %ghost entries for /tmp, /tmp is now tmpfs and the files
are handled by systemd since a long time
- Add /usr/etc/default.
==== gzip ====
- Enable DFLTCC compression for s390x for levels 1-6 (i. e. to make
it used by default) by adding -DDFLTCC_LEVEL_MASK=0x7e to CLFAGS.
[jsc#SLE-13775]
==== kubernetes1.18 ====
- kubernetes%{baseversion}-kubeadm now obsoletes kubernetes%{baseversionminus1}-kubeadm
==== kubernetes1.19 ====
Subpackages: kubernetes1.19-client kubernetes1.19-client-common kubernetes1.19-kubeadm kubernetes1.19-kubelet kubernetes1.19-kubelet-common
- kubernetes%{baseversion}-kubeadm now obsoletes kubernetes%{baseversionminus1}-kubeadm
==== libcap ====
Version update (2.42 -> 2.43)
- update to 2.43
* Linus' kernel tree defines CAP_CHECKPOINT_RESTORE (40) so support it.
* Fix the creation of the $(FAKEROOT)$(LIBDIR) for split install targets
* Clean up a binary from the distribution
* Added some more release time checks for non-git tracked files.
* Fix a deadlock in libpsx that surfaced with a set of compiler optimizations by removing the psx wrapping harder.
==== libgpg-error ====
Version update (1.38 -> 1.39)
- Update to 1.39:
* "gpg-error --lib-version" works again.
* New function gpgrt_fcancel as alternative to gpgrt_close. This
function avoid flushing out buffered data and also tries to delete
a newly created file.
* Update the gnupg project keyring
* Interface changes relative to the 1.38 release:
- gpgrt_fcancel: NEW.
==== libxcrypt ====
Version update (4.4.15 -> 4.4.17)
- Add compatibility provides for SLE15
- Update to version 4.4.17
* Salt string compatibility with generic implementations
==== lvm2 ====
Subpackages: liblvm2cmd2_03
- lvm can't pass build with gcc option Wstringop-overflow (bsc#1175565)
- remove suse speical patch
- bug-1175565_lvm-cant-pass-build-with-gcc-option-Wstringop-overflow.patch
- add upstream patch
+ bug-1175565_01-tools-move-struct-element-before-variable-lenght-lis.patch
+ bug-1175565_02-gcc-change-zero-sized-array-to-fexlible-array.patch
+ bug-1175565_03-gcc-zero-sized-array-to-fexlible-array-C99.patch
==== lvm2-device-mapper ====
Subpackages: device-mapper libdevmapper-event1_03 libdevmapper1_03
- lvm can't pass build with gcc option Wstringop-overflow (bsc#1175565)
- remove suse speical patch
- bug-1175565_lvm-cant-pass-build-with-gcc-option-Wstringop-overflow.patch
- add upstream patch
+ bug-1175565_01-tools-move-struct-element-before-variable-lenght-lis.patch
+ bug-1175565_02-gcc-change-zero-sized-array-to-fexlible-array.patch
+ bug-1175565_03-gcc-zero-sized-array-to-fexlible-array-C99.patch
==== npth ====
- Remove old specfile constructs and doubleshipping of docs.
==== permissions ====
Version update (1550_20200826 -> 1550_20200904)
Subpackages: chkstat permissions-config
- Update to version 20200904:
* Add /usr/libexec for cockpit-session as new path
* physlock: whitelist with tight restrictions (bsc#1175720)
==== python38 ====
- Just cleanup and reordering items to synchronize with python39
==== python38-core ====
Subpackages: libpython3_8-1_0 python38-base
- Just cleanup and reordering items to synchronize with python39
==== rsync ====
- Security fix: [bsc#1176160, CVE-2020-14387]
* rsync-ssl: Verify the hostname in the certificate when using openssl.
- Add rsync-CVE-2020-14387.patch
==== toolbox ====
Version update (1.0+git20200803.7ff20b6 -> 1.0+git20200831.d2d2e5d)
- Update to version 1.0+git20200831.d2d2e5d:
* Allow graphical applications from inside a user toolbox to run
==== utempter ====
- fixed utempter location after libexecdir change (bsc#1175925)
--
To unsubscribe, e-mail: opensuse-kubic+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-kubic+owner(a)opensuse.org
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
cryptsetup (2.3.3 -> 2.3.4)
dracut
filesystem
fwupd
gzip
libcap (2.42 -> 2.43)
libgpg-error (1.38 -> 1.39)
libxcrypt (4.4.15 -> 4.4.17)
lvm2
lvm2-device-mapper
npth
permissions (1550_20200826 -> 1550_20200904)
python38
python38-core
rsync
utempter
=== Details ===
==== cryptsetup ====
Version update (2.3.3 -> 2.3.4)
Subpackages: libcryptsetup12
- Update to 2.3.4:
* Fix a possible out-of-bounds memory write while validating LUKS2 data
segments metadata (CVE-2020-14382, boo#1176128).
* Ignore reported optimal IO size if not aligned to minimal page size.
* Added support for new no_read/write_wrokqueue dm-crypt options (kernel 5.9).
* Added support panic_on_corruption option for dm-verity devices (kernel 5.9).
* Support --master-key-file option for online LUKS2 reencryption
* Always return EEXIST error code if a device already exists.
* Fix a problem in integritysetup if a hash algorithm has dash in the name.
* Fix crypto backend to properly handle ECB mode.
* TrueCrypt/VeraCrypt compatible mode now supports the activation of devices
with a larger sector.
* LUKS2: Do not create excessively large headers.
* Fix unspecified sector size for BitLocker compatible mode.
* Fix reading key data size in metadata for BitLocker compatible mode.
==== dracut ====
Subpackages: dracut-ima
- Generate the tarball during buildtime. Tracking both the tarball
and the .obscpio combines the worst of both.
==== filesystem ====
- Split /var/tmp out of fs-var.conf, new file is fs-var-tmp.conf.
Allows to override config to add cleanup options of /var/tmp
[bsc#1078466]
- Create fs-tmp.conf to cleanup /tmp regular (required with tmpfs)
[bsc#1175519]
- Fix bug about missing group in tmpfiles.d files
- Generic cleanup:
- Remove /usr/local/games
- /etc/java was moved to javapackages-filesystem long ago
- Remove unused languages: en@IPA, it_CH, ja_JP.EUC, ja_JP.SJIS,
ja_JP.eucJP, nds_DE
- Remove %ghost entries for /tmp, /tmp is now tmpfs and the files
are handled by systemd since a long time
- Add /usr/etc/default.
==== fwupd ====
Subpackages: libfwupd2 libfwupdplugin1 typelib-1_0-Fwupd-2_0
- Add fwupd-jscSLE-11766-close-efidir-leap-gap.patch: Set SLE and
openSUSE esp os dir at runtime (jsc#SLE-11766)
- Drop _multibuild and build option -Defi_os_dir="%{efidir}": with
the above patch fwupd can detect esp os dir dynamically
- Update the efidir related %post and %postun scripts in spec file
==== gzip ====
- Enable DFLTCC compression for s390x for levels 1-6 (i. e. to make
it used by default) by adding -DDFLTCC_LEVEL_MASK=0x7e to CLFAGS.
[jsc#SLE-13775]
==== libcap ====
Version update (2.42 -> 2.43)
- update to 2.43
* Linus' kernel tree defines CAP_CHECKPOINT_RESTORE (40) so support it.
* Fix the creation of the $(FAKEROOT)$(LIBDIR) for split install targets
* Clean up a binary from the distribution
* Added some more release time checks for non-git tracked files.
* Fix a deadlock in libpsx that surfaced with a set of compiler optimizations by removing the psx wrapping harder.
==== libgpg-error ====
Version update (1.38 -> 1.39)
- Update to 1.39:
* "gpg-error --lib-version" works again.
* New function gpgrt_fcancel as alternative to gpgrt_close. This
function avoid flushing out buffered data and also tries to delete
a newly created file.
* Update the gnupg project keyring
* Interface changes relative to the 1.38 release:
- gpgrt_fcancel: NEW.
==== libxcrypt ====
Version update (4.4.15 -> 4.4.17)
- Add compatibility provides for SLE15
- Update to version 4.4.17
* Salt string compatibility with generic implementations
==== lvm2 ====
Subpackages: liblvm2cmd2_03
- lvm can't pass build with gcc option Wstringop-overflow (bsc#1175565)
- remove suse speical patch
- bug-1175565_lvm-cant-pass-build-with-gcc-option-Wstringop-overflow.patch
- add upstream patch
+ bug-1175565_01-tools-move-struct-element-before-variable-lenght-lis.patch
+ bug-1175565_02-gcc-change-zero-sized-array-to-fexlible-array.patch
+ bug-1175565_03-gcc-zero-sized-array-to-fexlible-array-C99.patch
==== lvm2-device-mapper ====
Subpackages: device-mapper libdevmapper-event1_03 libdevmapper1_03
- lvm can't pass build with gcc option Wstringop-overflow (bsc#1175565)
- remove suse speical patch
- bug-1175565_lvm-cant-pass-build-with-gcc-option-Wstringop-overflow.patch
- add upstream patch
+ bug-1175565_01-tools-move-struct-element-before-variable-lenght-lis.patch
+ bug-1175565_02-gcc-change-zero-sized-array-to-fexlible-array.patch
+ bug-1175565_03-gcc-zero-sized-array-to-fexlible-array-C99.patch
==== npth ====
- Remove old specfile constructs and doubleshipping of docs.
==== permissions ====
Version update (1550_20200826 -> 1550_20200904)
Subpackages: chkstat permissions-config
- Update to version 20200904:
* Add /usr/libexec for cockpit-session as new path
* physlock: whitelist with tight restrictions (bsc#1175720)
==== python38 ====
- Just cleanup and reordering items to synchronize with python39
==== python38-core ====
Subpackages: libpython3_8-1_0 python38-base
- Just cleanup and reordering items to synchronize with python39
==== rsync ====
- Security fix: [bsc#1176160, CVE-2020-14387]
* rsync-ssl: Verify the hostname in the certificate when using openssl.
- Add rsync-CVE-2020-14387.patch
==== utempter ====
- fixed utempter location after libexecdir change (bsc#1175925)
--
To unsubscribe, e-mail: opensuse-kubic+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-kubic+owner(a)opensuse.org
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=1&version=T…https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
cryptsetup (2.3.3 -> 2.3.4)
dracut
filesystem
gzip
libcap (2.42 -> 2.43)
libgpg-error (1.38 -> 1.39)
libxcrypt (4.4.15 -> 4.4.17)
lvm2
lvm2-device-mapper
npth
permissions (1550_20200826 -> 1550_20200904)
python38
python38-core
rsync
utempter
=== Details ===
==== cryptsetup ====
Version update (2.3.3 -> 2.3.4)
Subpackages: libcryptsetup12
- Update to 2.3.4:
* Fix a possible out-of-bounds memory write while validating LUKS2 data
segments metadata (CVE-2020-14382, boo#1176128).
* Ignore reported optimal IO size if not aligned to minimal page size.
* Added support for new no_read/write_wrokqueue dm-crypt options (kernel 5.9).
* Added support panic_on_corruption option for dm-verity devices (kernel 5.9).
* Support --master-key-file option for online LUKS2 reencryption
* Always return EEXIST error code if a device already exists.
* Fix a problem in integritysetup if a hash algorithm has dash in the name.
* Fix crypto backend to properly handle ECB mode.
* TrueCrypt/VeraCrypt compatible mode now supports the activation of devices
with a larger sector.
* LUKS2: Do not create excessively large headers.
* Fix unspecified sector size for BitLocker compatible mode.
* Fix reading key data size in metadata for BitLocker compatible mode.
==== dracut ====
Subpackages: dracut-ima
- Generate the tarball during buildtime. Tracking both the tarball
and the .obscpio combines the worst of both.
==== filesystem ====
- Split /var/tmp out of fs-var.conf, new file is fs-var-tmp.conf.
Allows to override config to add cleanup options of /var/tmp
[bsc#1078466]
- Create fs-tmp.conf to cleanup /tmp regular (required with tmpfs)
[bsc#1175519]
- Fix bug about missing group in tmpfiles.d files
- Generic cleanup:
- Remove /usr/local/games
- /etc/java was moved to javapackages-filesystem long ago
- Remove unused languages: en@IPA, it_CH, ja_JP.EUC, ja_JP.SJIS,
ja_JP.eucJP, nds_DE
- Remove %ghost entries for /tmp, /tmp is now tmpfs and the files
are handled by systemd since a long time
- Add /usr/etc/default.
==== gzip ====
- Enable DFLTCC compression for s390x for levels 1-6 (i. e. to make
it used by default) by adding -DDFLTCC_LEVEL_MASK=0x7e to CLFAGS.
[jsc#SLE-13775]
==== libcap ====
Version update (2.42 -> 2.43)
- update to 2.43
* Linus' kernel tree defines CAP_CHECKPOINT_RESTORE (40) so support it.
* Fix the creation of the $(FAKEROOT)$(LIBDIR) for split install targets
* Clean up a binary from the distribution
* Added some more release time checks for non-git tracked files.
* Fix a deadlock in libpsx that surfaced with a set of compiler optimizations by removing the psx wrapping harder.
==== libgpg-error ====
Version update (1.38 -> 1.39)
- Update to 1.39:
* "gpg-error --lib-version" works again.
* New function gpgrt_fcancel as alternative to gpgrt_close. This
function avoid flushing out buffered data and also tries to delete
a newly created file.
* Update the gnupg project keyring
* Interface changes relative to the 1.38 release:
- gpgrt_fcancel: NEW.
==== libxcrypt ====
Version update (4.4.15 -> 4.4.17)
- Add compatibility provides for SLE15
- Update to version 4.4.17
* Salt string compatibility with generic implementations
==== lvm2 ====
Subpackages: liblvm2cmd2_03
- lvm can't pass build with gcc option Wstringop-overflow (bsc#1175565)
- remove suse speical patch
- bug-1175565_lvm-cant-pass-build-with-gcc-option-Wstringop-overflow.patch
- add upstream patch
+ bug-1175565_01-tools-move-struct-element-before-variable-lenght-lis.patch
+ bug-1175565_02-gcc-change-zero-sized-array-to-fexlible-array.patch
+ bug-1175565_03-gcc-zero-sized-array-to-fexlible-array-C99.patch
==== lvm2-device-mapper ====
Subpackages: device-mapper libdevmapper-event1_03 libdevmapper1_03
- lvm can't pass build with gcc option Wstringop-overflow (bsc#1175565)
- remove suse speical patch
- bug-1175565_lvm-cant-pass-build-with-gcc-option-Wstringop-overflow.patch
- add upstream patch
+ bug-1175565_01-tools-move-struct-element-before-variable-lenght-lis.patch
+ bug-1175565_02-gcc-change-zero-sized-array-to-fexlible-array.patch
+ bug-1175565_03-gcc-zero-sized-array-to-fexlible-array-C99.patch
==== npth ====
- Remove old specfile constructs and doubleshipping of docs.
==== permissions ====
Version update (1550_20200826 -> 1550_20200904)
Subpackages: chkstat permissions-config
- Update to version 20200904:
* Add /usr/libexec for cockpit-session as new path
* physlock: whitelist with tight restrictions (bsc#1175720)
==== python38 ====
- Just cleanup and reordering items to synchronize with python39
==== python38-core ====
Subpackages: libpython3_8-1_0 python38-base
- Just cleanup and reordering items to synchronize with python39
==== rsync ====
- Security fix: [bsc#1176160, CVE-2020-14387]
* rsync-ssl: Verify the hostname in the certificate when using openssl.
- Add rsync-CVE-2020-14387.patch
==== utempter ====
- fixed utempter location after libexecdir change (bsc#1175925)
--
To unsubscribe, e-mail: opensuse-kubic+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-kubic+owner(a)opensuse.org
Hi All,
As announced on kubic.opensuse.org [1], Kubic now has kubernetes 1.19
All existing clusters will need to be upgraded to take advantage of
this version.
Please follow the steps on
https://en.opensuse.org/Kubic:Upgrading_kubeadm_clusters to upgrade
your clusters.
Feel free to reply here if any help is required, or even better file
bugs in the usual place [2]
[1] https://kubic.opensuse.org/blog/2020-09-09-k8s-119/
[2]
https://bugzilla.opensuse.org/enter_bug.cgi?component=Kubic&product=openSUS…
--
Richard Brown
Linux Distribution Engineer - Future Technology Team
Phone +4991174053-361
SUSE Software Solutions Germany GmbH, Maxfeldstr. 5, D-90409
Nuernberg
(HRB 36809, AG Nürnberg)
Geschäftsführer: Felix Imendörffer
--
To unsubscribe, e-mail: opensuse-kubic+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-kubic+owner(a)opensuse.org
