January 2021 - openSUSE Kubic - openSUSE Mailing Lists

[opensuse-kubic] MicroOS error when setting container memory limit

by Sébastien 'sogal' Poher

Hi, On a fresh MicroOS install with podman, when I want to set memory limit for a container (using the -m flag) I get the following error: Error: container_linux.go:367: starting container process caused: process_linux.go:459: container init caused: process_linux.go:422: setting cgroup config for procHooks process caused: cannot set memory limit: container could not join or create cgroup: OCI runtime error I am not able to understand the nature of the error. Searching around, I found similar issue where adding cgroup_enable=memory parameter to boot settings in Grub might solve the issue. Is that correct ? If so, what is the proper way to update Grub config on a RO filesystem ? podman version 2.0.4 podman info (ociRuntime part): ociRuntime: name: runc package: runc-1.0.0~rc91-1.2.x86_64 path: /usr/bin/runc version: |- runc version 1.0.0-rc91 spec: 1.0.2-dev Regards, -- Sébastien 'sogal' Poher > When there's no more room at school, the dumb will walk the Earth!

8 hours, 16 minutes

5
9
0 0

ionotify-tools

by Anthony J Rabbito

Hello, In order to use --drop-if-no-change on transactional-update we need the inotify-tools for inotifywait. Should this be packaged by default with Micro-OS, and Kubic? Thank you, Anthony Rabbito

3 weeks, 2 days

2
1
0 0

New ARM Kubic snapshot 20210128 released!

by Guillaume Gardet

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=3&version=T… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: apparmor cockpit-podman (25 -> 26) dmidecode gettext-runtime libfido2 (1.5.0 -> 1.6.0) ncurses (6.2.20210109 -> 6.2.20210116) oath-toolkit (2.6.5 -> 2.6.6) openssh python-pyserial (3.4 -> 3.5) python-setuptools raspberrypi-firmware (2021.01.15 -> 2021.01.21) raspberrypi-firmware-config (2021.01.15 -> 2021.01.21) raspberrypi-firmware-dt rdma-core sudo (1.9.5p1 -> 1.9.5p2) system-users sysuser-tools xfsprogs (5.9.0 -> 5.10.0) === Details === ==== apparmor ==== Subpackages: apparmor-abstractions apparmor-parser apparmor-profiles apparmor-utils python3-apparmor - add apache-extra-profile-include-if-exists.diff: make <apache2.d> include in apache extra profile optional to avoid problems with empty profile directory (boo#1178527) ==== cockpit-podman ==== Version update (25 -> 26) - new version 26 https://github.com/cockpit-project/cockpit-podman/releases/tag/26 ==== dmidecode ==== 2 recommended fixes from upstream: - dmidecode-fix-the-condition-error-in-ascii_filter.patch: dmidecode: Fix the condition error in ascii_filter. - dmidecode-fix-crash-with-u-option.patch: dmidecode: Fix crash with -u option. ==== gettext-runtime ==== Subpackages: libtextstyle0 - fixup libtextstyle autofoo with adding use-acinit-for-libtextstyle.patch ==== libfido2 ==== Version update (1.5.0 -> 1.6.0) Subpackages: libfido2-1 libfido2-udev - Update to version 1.6.0: * Fix OpenSSL 1.0 and Cygwin builds. * hid_linux: fix build on 32-bit systems. * hid_osx: allow reads from spawned threads. * Documentation and reliability fixes. * New API calls: + fido_cred_authdata_raw_len; + fido_cred_authdata_raw_ptr; + fido_cred_sigcount; + fido_dev_get_uv_retry_count; + fido_dev_supports_credman. * Hardened Windows build. * Native FreeBSD and NetBSD support. * Use CTAP2 canonical CBOR when combining hmac-secret and credProtect. - Drop 7a17a4e9127fb6df6278f19396760e7d60a5862c.patch - Do not build examples as their build fails ==== ncurses ==== Version update (6.2.20210109 -> 6.2.20210116) Subpackages: libncurses6 ncurses-utils terminfo-base - Don't skip test for qemu builds - Add ncurses patch 20210116 + add comment for linux2.6 regarding CONFIG_CONSOLE_TRANSLATIONS (report by Patrick McDermott) -TD + make opts extension for getcchar work as documented for ncurses 6.1, adding "-g" flag to test/demo_new_pair to illustrate. ==== oath-toolkit ==== Version update (2.6.5 -> 2.6.6) Subpackages: liboath0 oath-toolkit-xml - Update to version 2.6.6 * oathtool: Support for reading KEY and OTP from standard input or filename. KEY and OTP may now be given as '-' to mean stdin, or @FILE to read from a particular file. This is recommended on multi-user systems, since secrets as command line parameters leak. * pam_oath: Fix unlikely logic fail on out of memory conditions. ==== openssh ==== Subpackages: openssh-clients openssh-common openssh-server - Add openssh-fix-ssh-copy-id.patch, which fixes breakage introduced in 8.4p1 (bsc#1181311). - Improve robustness of sshd init detection when upgrading from a pre-systemd distribution. - Add openssh-reenable-dh-group14-sha1-default.patch, which adds diffie-hellman-group14-sha1 key exchange back to the default list (bsc#1180958). This is needed for backwards compatibility with older platforms. - Make sure sshd is enabled correctly when upgrading from a pre-systemd distribution (bsc#1180083). ==== python-pyserial ==== Version update (3.4 -> 3.5) - update to version 3.5: New Features: [#411] Add a backend for Silicon Labs CP2110/4 HID-to-UART bridge. (depends on hid module) Improvements: [#315] Use absolute import everywhere [#354] Make ListPortInfo hashable [#372] threaded: "write" returns byte count [#400] Add bytesize and stopbits argument parser to tcp_serial_redirect [#408] loop: add out_waiting [#495] list_ports_linux: Correct "interface" property on Linux hosts [#500] Remove Python 3.2 and 3.3 from test [#261, #285, #296, #320, #333, #342, #356, #358, #389, #397, #510] doc updates miniterm: add CTRL+T Q as alternative to exit miniterm: suspend function key changed to CTRL-T Z add command line tool entries pyserial-miniterm (replaces miniterm.py) and pyserial-ports (runs serial.tools.list_ports). python -m serial opens miniterm (use w/o args and it will print port list too) [experimental] Bugfixes: [#371] Don't open port if self.port is not set while entering context manager [#437, #502] refactor: raise new instances for PortNotOpenError and SerialTimeoutException [#261, #263] list_ports: set default name attribute [#286] fix: compare only of the same type in list_ports_common.ListPortInfo rfc2217/close(): fix race-condition [#305] return b'' when connection closes on rfc2217 connection [#386] rfc2217/close(): fix race condition Fixed flush_input_buffer() for situations where the remote end has closed the socket. [#441] reset_input_buffer() can hang on sockets examples: port_publisher python 3 fixes [#324] miniterm: Fix miniterm constructor exit_character and menu_character [#326] miniterm: use exclusive access for native serial ports by default [#497] miniterm: fix double use of CTRL-T + s use z for suspend instead [#443, #444] examples: refactor wx example, use Bind to avoid deprecated warnings, IsChecked, unichr [#265] posix: fix PosixPollSerial with timeout=None and add cancel support [#290] option for low latency mode on linux [#335] Add support to xr-usb-serial ports [#494] posix: Don't catch the SerialException we just raised [#519] posix: Fix custom baud rate to not temporarily set 38400 baud rates on linux [#509 #518] list_ports: use hardcoded path to library on osx [#542] list_ports_osx: kIOMasterPortDefault no longer exported on Big Sur [#545, #545] list_ports_osx: getting USB info on BigSur/AppleSilicon ==== python-setuptools ==== - We cannot remove vendored packages when generating setuptools wheel (bsc#1177127). ==== raspberrypi-firmware ==== Version update (2021.01.15 -> 2021.01.21) - Update to 051e5e1be8 (2021-01-21) (jsc#SLE-16616): * firmware: Export bootloader config via device-tree * firmware: ISP: Colour denoise * firmware: platform: Define DVFS modes and change default to be fixed AVS voltage * firmware: arm_loader: Auto-select 64-bit for kernel8.img * firmware: hdmi: Throttle auto-i2c register writes to avoid PWM audio underrun ==== raspberrypi-firmware-config ==== Version update (2021.01.15 -> 2021.01.21) - Update to 051e5e1be8 (2021-01-21) (jsc#SLE-16616): * firmware: Export bootloader config via device-tree * firmware: ISP: Colour denoise * firmware: platform: Define DVFS modes and change default to be fixed AVS voltage * firmware: arm_loader: Auto-select 64-bit for kernel8.img * firmware: hdmi: Throttle auto-i2c register writes to avoid PWM audio underrun ==== raspberrypi-firmware-dt ==== - Introduce upstream-blconfig-rmem.patch for firmware to be able to define firmware's configuration reserved memory (jsc#SLE-16616) ==== rdma-core ==== Subpackages: libefa1 libibverbs libibverbs1 libmlx4-1 libmlx5-1 librdmacm1 - Add srp_daemon-Fix-systemd-dependency.patch to make sure srp_daemon is loaded at boot if enabled (bsc#1180196) ==== sudo ==== Version update (1.9.5p1 -> 1.9.5p2) - Update to 1.9.5.p2 * When invoked as sudoedit, the same set of command line options are now accepted as for sudo -e. The -H and -P options are now rejected for sudoedit and sudo -e which matches the sudo 1.7 behavior. This is part of the fix for CVE-2021-3156. * Fixed a potential buffer overflow when unescaping backslashes in the command's arguments. Normally, sudo escapes special characters when running a command via a shell (sudo -s or sudo -i). However, it was also possible to run sudoedit with the -s or -i flags in which case no escaping had actually been done, making a buffer overflow possible. This fixes CVE-2021-3156. (bsc#1181090) * Fixed sudo's setprogname(3) emulation on systems that don't provide it. * Fixed a problem with the sudoers log server client where a partial write to the server could result the sudo process consuming large amounts of CPU time due to a cycle in the buffer queue. Bug #954. * Added a missing dependency on libsudo_util in libsudo_eventlog. Fixes a link error when building sudo statically. * The user's KRB5CCNAME environment variable is now preserved when performing PAM authentication. This fixes GSSAPI authentication when the user has a non-default ccache. ==== system-users ==== Subpackages: system-group-hardware system-group-kvm system-user-nobody - Add system-user-vscan subpackage with vscan user and group and /var/spool/amavis as home directory - Remove kvm group from hardware subpackage, since kvm is in its own subpackage (jsc#SLE-11629). - Add qemu user to kvm group - Add system account and groups for kvm, qemu, and libvirt (jsc#SLE-11629) New files: system-group-kvm.conf, system-group-libvirt.conf, system-user-qemu.conf - Don't add group nogroup to user nobody, as many daemons misuse 'nogroup' as own group - Use test -x instead of -f - Call usermod only if installed - Align /var/lib/tss permissions with trousers (boo#1162360). - Add tss user for TPM tools (boo#1162360). - Remove s390 groups again. The s390-tools maintainer wants to add groups in s390-tools manually. - Add system-user-tftp subpackage with tftp user and group and /srv/tftpboot as home directory [bsc#1143454]. - Add cpacfstats, ts-shell, and zkeyadm groups for s390-tools (bsc#1123730) - Add "render" group in system-group-hardware (bsc#1085847) "uaccess" tag has been dropped from /dev/dri/renderD* and these devices now have 0666 permsions by default is owned by the render group. - Change home directory of user man to /var/lib/empty. Home directories below /var/cache are by definition insecure and a bad idea. - uuidd does not need group daemon, Copy&Paste error. - udev needs groups kvm and lp: [bsc#1058703] - Add group kvm to system-group-hardware - Move group lp from system-user-lp to system-group-hardware - Add system-user-uuidd.conf (boo#1057937#c3). - user nobody: move usermod to %post, else it will be executed before the user is created. - Drop pkgconfig(systemd) BuildRequires: we no longer depend on systemd-sysusers, but converted to shadow toolset. - Move group trusted into system-user-root package [bsc#1044014] - Move system-user-root into own package - Fix syntax of groups in system-user-root.conf - Add utmp to system-group-hardware.conf like systemd has - Create new system-user-root sub-package creating passwd, group and shadow files with root user. - BuildRequire pkgconfig(systemd) instead of systemd: this allows OBS to pick systemd-mini, which is still good enough. And ultimately it helps us break a build cycle (system-users - libssh2_org - curl - systemd - system-users). - BuildIgnore group(lock) and group(daemon) for ourselves, needed for bootstrap. - /bin/bash is needed as shell for user nobody - Add upsd for UPS daemon packages. - Prerequire group lock for uucp - Allow user uucp to do locking - Fix group ownership of /var/lib/wwwrun - Add group sys to system-group-obsolete - Add systemusers lp and nobody - Add systemusers wwwrun, mail and ftp - Add hardware access groups: kmem, lock, tty, audio, cdrom, dialout, disk, input, tape, video - Add group wheel - Remove /var/spool/uucp directories... - Change license to MIT - Add subpackages for obsolete groups and trusted group - Add subpackages for bin, daemon, news and man - Adjust to new sysuser-tools - Use automatic provides and generate %pre with a script - fix uids and add also groups - Create users in %pre install section - Add /etc/uucp to filelist of system-user-uucp - Add system account games - Initial version with system account uucp ==== sysuser-tools ==== - useradd_or_adduser_dep must be PreReq so ordering makes sure it gets installed before. - suggest shadow where useradd_or_adduser_dep is actually required - Avoid useless use of cat - Simplify %sysusers_requires - Drop shebang, rpm passes it to /bin/sh itself - Packages providing users need /usr/bin/cat installed to create them. Add that to the PreRequires. - Create system groups for system users - Fix bug introduced by simplification of check for useradd -g - Refactor use of sed away - Use eval set -- $LINE instead of read for parsing - Clean up sysusers2shadow and make it use only /bin/sh - Don't let busybox adduser create the home directory, it breaks permissions of e.g. /sbin (home of daemon) - Use only /bin/sh in sysusers-generate-pre and the generated code - Drop use of tail from the generated %pre scriptlets - Look for /bin/busybox, too - Add special handling for busybox and groups - Use suggests shadow to prefer that over busybox in normal systems - Add support for busybox adduser/addgroup - Change requirements from shadow to useradd_or_adduser_dep - Fix default home directory [bsc#1105934] - Use _rpmmacrodir for macro file - Further enhance sysusers-generate-pre: inside the build environment, it can be acceptable to be failing to create the users (e.g when building sysuser-tools or system-user-root, since those two packages have to be speificallty excluded). Always return with error code 0 if /.buildenv exists. - sysusers2shadow.sh: Exit if one of the useradd/groupadd/usermod call fails: the resulting system is quite undefined if this should happen. - sysusers-generate-pre: exit the pre script with the exit code of sysusers2shadow.sh. - sysuser-tools needs to require sysuser-shadow - Add requires for shadow to sysuser-shadow - Put helper script into own subpackage - Convert sysusers config file to shadow arguments and use shadow suite to create user and groups. Fixes [bsc#1041497] and serveral dependency loops. - Don't ignore errors of systemd-sysusers [bsc#1039708] - Don't remove 'm' and 'r' entries from sysusers configuration - Add macros.sysusers - initial package ==== xfsprogs ==== Version update (5.9.0 -> 5.10.0) - update to 5.10.0: - xfs_repair: remove old code for mountpoint inodes - xfsprogs: Add inode btree counter feature - xfsprogs: Add bigtime feature for Y2038 - xfsprogs: Polish translation update - mkfs.xfs: Add config file feature - mkfs.xfs: allow users to specify rtinherit=0 - xfs_repair: simplify bmap_next_offset - man: various manpage updates - libxfs: remove some old dead code - libxfs: add realtime extent tracking - libxfs changes merged from kernel 5.10 - refresh 0001-repair-shift-inode-back-into-place-if-corrupted-by-b.patch against libxfs changes

1 month

1
0
0 0

New ARM MicroOS snapshot 20210128 released!

by Guillaume Gardet

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=microos&groupid=3&version… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: alsa apparmor bluedevil5 cockpit-podman (25 -> 26) dmidecode gettext-runtime gnome-packagekit gnome-tweaks kinfocenter5 kscreen5 kwin5 libfido2 (1.5.0 -> 1.6.0) libqt5-qtmultimedia libqt5-qtquickcontrols libqt5-qtquickcontrols2 libqt5-qtsensors libqt5-qtwayland milou5 ncurses (6.2.20210109 -> 6.2.20210116) openssh pango (1.48.0 -> 1.48.1) plasma5-desktop python-pyserial (3.4 -> 3.5) python-setuptools raspberrypi-firmware (2021.01.15 -> 2021.01.21) raspberrypi-firmware-config (2021.01.15 -> 2021.01.21) raspberrypi-firmware-dt sudo (1.9.5p1 -> 1.9.5p2) system-users systemsettings5 sysuser-tools webkit2gtk3 xdg-desktop-portal-kde xfsprogs (5.9.0 -> 5.10.0) zbar === Details === ==== alsa ==== - Yet more fixes for the crash with dmix plugin (bsc#1181194): 0045-pcm-direct-Fix-the-missing-appl_ptr-update.patch 0046-pcm-ioplug-Pass-appl_ptr-and-hw_ptr-in-snd_pcm_statu.patch 0047-pcm-null-Pass-appl_ptr-and-hw_ptr-in-snd_pcm_status.patch 0048-pcm-share-Pass-appl_ptr-and-hw_ptr-in-snd_pcm_status.patch - Backport upstream fixes: yet more PCM plugin fixes, topology fixes/cleanups, UAF fix in UCM (bsc#1181194): 0004-topology-use-inclusive-language-for-bclk.patch 0005-topology-use-inclusive-language-for-fsync.patch 0006-topology-use-inclusive-language-in-documentation.patch 0034-ucm-fix-possible-memory-leak-in-parse_verb_file.patch 0035-topology-tplg_pprint_integer-fix-coverity-uninitaliz.patch 0036-topology-tplg_add_widget_object-do-not-use-invalid-e.patch 0037-topology-tplg_decode_pcm-add-missing-log-argument-co.patch 0038-topology-parse_tuple_set-remove-dead-condition-code.patch 0039-ucm-uc_mgr_substitute_tree-fix-use-after-free.patch 0040-topology-sort_config-cleanups-use-goto-for-the-error.patch 0041-conf-USB-add-Xonar-U7-MKII-to-USB-Audio.pcm.iec958_d.patch 0042-pcm_plugin-set-the-initial-hw_ptr-appl_ptr-from-the-.patch 0043-pcm-dmix-dshare-delay-calculation-fixes-and-cleanups.patch 0044-topology-fix-parse_tuple_set-remove-dead-condition-c.patch ==== apparmor ==== Subpackages: apparmor-abstractions apparmor-parser apparmor-profiles apparmor-utils python3-apparmor - add apache-extra-profile-include-if-exists.diff: make <apache2.d> include in apache extra profile optional to avoid problems with empty profile directory (boo#1178527) ==== bluedevil5 ==== - Add compatibility with qml-autoreqprov ==== cockpit-podman ==== Version update (25 -> 26) - new version 26 https://github.com/cockpit-project/cockpit-podman/releases/tag/26 ==== dmidecode ==== 2 recommended fixes from upstream: - dmidecode-fix-the-condition-error-in-ascii_filter.patch: dmidecode: Fix the condition error in ascii_filter. - dmidecode-fix-crash-with-u-option.patch: dmidecode: Fix crash with -u option. ==== gettext-runtime ==== Subpackages: libtextstyle0 - fixup libtextstyle autofoo with adding use-acinit-for-libtextstyle.patch ==== gnome-packagekit ==== - Add gnome-packagekit-define-HAVE_SYSTEMD.patch: define HAVE_SYSTEMD macro if systemd if found (glgo#GNOME/gnome-packagekit!3, bsc#1134544). ==== gnome-tweaks ==== - Add 77dde7477922f645946bfc64b1b25aeed2b01919.patch -- Update Norwegian bokmål translation. ==== kinfocenter5 ==== - Add support for qml-autoreqprov ==== kscreen5 ==== - Compatibility with qml-autoreqprov ==== kwin5 ==== - Add compatibility with qml-autoreqprov ==== libfido2 ==== Version update (1.5.0 -> 1.6.0) Subpackages: libfido2-1 libfido2-udev - Update to version 1.6.0: * Fix OpenSSL 1.0 and Cygwin builds. * hid_linux: fix build on 32-bit systems. * hid_osx: allow reads from spawned threads. * Documentation and reliability fixes. * New API calls: + fido_cred_authdata_raw_len; + fido_cred_authdata_raw_ptr; + fido_cred_sigcount; + fido_dev_get_uv_retry_count; + fido_dev_supports_credman. * Hardened Windows build. * Native FreeBSD and NetBSD support. * Use CTAP2 canonical CBOR when combining hmac-secret and credProtect. - Drop 7a17a4e9127fb6df6278f19396760e7d60a5862c.patch - Do not build examples as their build fails ==== libqt5-qtmultimedia ==== - Add compatibility with qml-autoreqprov ==== libqt5-qtquickcontrols ==== - Add compatibility with qml-autoreqprov - Add patch to fix unfullfillable import: * fix-handle-deps.patch ==== libqt5-qtquickcontrols2 ==== Subpackages: libQt5QuickControls2-5 libQt5QuickTemplates2-5 - Add compatibility with qml-autoreqprov ==== libqt5-qtsensors ==== - Add compatibility with qml-autoreqprov ==== libqt5-qtwayland ==== Subpackages: libQt5WaylandClient5 libQt5WaylandCompositor5 - Add compatibility with qml-autoreqprov ==== milou5 ==== - Backport upstream MR to avoid unfullfillable qmlimport requires ==== ncurses ==== Version update (6.2.20210109 -> 6.2.20210116) Subpackages: libncurses6 ncurses-utils terminfo-base - Don't skip test for qemu builds - Add ncurses patch 20210116 + add comment for linux2.6 regarding CONFIG_CONSOLE_TRANSLATIONS (report by Patrick McDermott) -TD + make opts extension for getcchar work as documented for ncurses 6.1, adding "-g" flag to test/demo_new_pair to illustrate. ==== openssh ==== Subpackages: openssh-clients openssh-common openssh-server - Add openssh-fix-ssh-copy-id.patch, which fixes breakage introduced in 8.4p1 (bsc#1181311). - Improve robustness of sshd init detection when upgrading from a pre-systemd distribution. - Add openssh-reenable-dh-group14-sha1-default.patch, which adds diffie-hellman-group14-sha1 key exchange back to the default list (bsc#1180958). This is needed for backwards compatibility with older platforms. - Make sure sshd is enabled correctly when upgrading from a pre-systemd distribution (bsc#1180083). ==== pango ==== Version update (1.48.0 -> 1.48.1) Subpackages: libpango-1_0-0 typelib-1_0-Pango-1_0 - Update to version 1.48.1: + Fix itemization of multi-paragraph layouts. + Fix a few memory leaks. + Fix glyph origins in vertical layout. ==== plasma5-desktop ==== - Add support for qml-autoreqprov ==== python-pyserial ==== Version update (3.4 -> 3.5) - update to version 3.5: New Features: [#411] Add a backend for Silicon Labs CP2110/4 HID-to-UART bridge. (depends on hid module) Improvements: [#315] Use absolute import everywhere [#354] Make ListPortInfo hashable [#372] threaded: "write" returns byte count [#400] Add bytesize and stopbits argument parser to tcp_serial_redirect [#408] loop: add out_waiting [#495] list_ports_linux: Correct "interface" property on Linux hosts [#500] Remove Python 3.2 and 3.3 from test [#261, #285, #296, #320, #333, #342, #356, #358, #389, #397, #510] doc updates miniterm: add CTRL+T Q as alternative to exit miniterm: suspend function key changed to CTRL-T Z add command line tool entries pyserial-miniterm (replaces miniterm.py) and pyserial-ports (runs serial.tools.list_ports). python -m serial opens miniterm (use w/o args and it will print port list too) [experimental] Bugfixes: [#371] Don't open port if self.port is not set while entering context manager [#437, #502] refactor: raise new instances for PortNotOpenError and SerialTimeoutException [#261, #263] list_ports: set default name attribute [#286] fix: compare only of the same type in list_ports_common.ListPortInfo rfc2217/close(): fix race-condition [#305] return b'' when connection closes on rfc2217 connection [#386] rfc2217/close(): fix race condition Fixed flush_input_buffer() for situations where the remote end has closed the socket. [#441] reset_input_buffer() can hang on sockets examples: port_publisher python 3 fixes [#324] miniterm: Fix miniterm constructor exit_character and menu_character [#326] miniterm: use exclusive access for native serial ports by default [#497] miniterm: fix double use of CTRL-T + s use z for suspend instead [#443, #444] examples: refactor wx example, use Bind to avoid deprecated warnings, IsChecked, unichr [#265] posix: fix PosixPollSerial with timeout=None and add cancel support [#290] option for low latency mode on linux [#335] Add support to xr-usb-serial ports [#494] posix: Don't catch the SerialException we just raised [#519] posix: Fix custom baud rate to not temporarily set 38400 baud rates on linux [#509 #518] list_ports: use hardcoded path to library on osx [#542] list_ports_osx: kIOMasterPortDefault no longer exported on Big Sur [#545, #545] list_ports_osx: getting USB info on BigSur/AppleSilicon ==== python-setuptools ==== - We cannot remove vendored packages when generating setuptools wheel (bsc#1177127). ==== raspberrypi-firmware ==== Version update (2021.01.15 -> 2021.01.21) - Update to 051e5e1be8 (2021-01-21) (jsc#SLE-16616): * firmware: Export bootloader config via device-tree * firmware: ISP: Colour denoise * firmware: platform: Define DVFS modes and change default to be fixed AVS voltage * firmware: arm_loader: Auto-select 64-bit for kernel8.img * firmware: hdmi: Throttle auto-i2c register writes to avoid PWM audio underrun ==== raspberrypi-firmware-config ==== Version update (2021.01.15 -> 2021.01.21) - Update to 051e5e1be8 (2021-01-21) (jsc#SLE-16616): * firmware: Export bootloader config via device-tree * firmware: ISP: Colour denoise * firmware: platform: Define DVFS modes and change default to be fixed AVS voltage * firmware: arm_loader: Auto-select 64-bit for kernel8.img * firmware: hdmi: Throttle auto-i2c register writes to avoid PWM audio underrun ==== raspberrypi-firmware-dt ==== - Introduce upstream-blconfig-rmem.patch for firmware to be able to define firmware's configuration reserved memory (jsc#SLE-16616) ==== sudo ==== Version update (1.9.5p1 -> 1.9.5p2) - Update to 1.9.5.p2 * When invoked as sudoedit, the same set of command line options are now accepted as for sudo -e. The -H and -P options are now rejected for sudoedit and sudo -e which matches the sudo 1.7 behavior. This is part of the fix for CVE-2021-3156. * Fixed a potential buffer overflow when unescaping backslashes in the command's arguments. Normally, sudo escapes special characters when running a command via a shell (sudo -s or sudo -i). However, it was also possible to run sudoedit with the -s or -i flags in which case no escaping had actually been done, making a buffer overflow possible. This fixes CVE-2021-3156. (bsc#1181090) * Fixed sudo's setprogname(3) emulation on systems that don't provide it. * Fixed a problem with the sudoers log server client where a partial write to the server could result the sudo process consuming large amounts of CPU time due to a cycle in the buffer queue. Bug #954. * Added a missing dependency on libsudo_util in libsudo_eventlog. Fixes a link error when building sudo statically. * The user's KRB5CCNAME environment variable is now preserved when performing PAM authentication. This fixes GSSAPI authentication when the user has a non-default ccache. ==== system-users ==== Subpackages: system-group-hardware system-group-kvm system-user-lp system-user-nobody - Add system-user-vscan subpackage with vscan user and group and /var/spool/amavis as home directory - Remove kvm group from hardware subpackage, since kvm is in its own subpackage (jsc#SLE-11629). - Add qemu user to kvm group - Add system account and groups for kvm, qemu, and libvirt (jsc#SLE-11629) New files: system-group-kvm.conf, system-group-libvirt.conf, system-user-qemu.conf - Don't add group nogroup to user nobody, as many daemons misuse 'nogroup' as own group - Use test -x instead of -f - Call usermod only if installed - Align /var/lib/tss permissions with trousers (boo#1162360). - Add tss user for TPM tools (boo#1162360). - Remove s390 groups again. The s390-tools maintainer wants to add groups in s390-tools manually. - Add system-user-tftp subpackage with tftp user and group and /srv/tftpboot as home directory [bsc#1143454]. - Add cpacfstats, ts-shell, and zkeyadm groups for s390-tools (bsc#1123730) - Add "render" group in system-group-hardware (bsc#1085847) "uaccess" tag has been dropped from /dev/dri/renderD* and these devices now have 0666 permsions by default is owned by the render group. - Change home directory of user man to /var/lib/empty. Home directories below /var/cache are by definition insecure and a bad idea. - uuidd does not need group daemon, Copy&Paste error. - udev needs groups kvm and lp: [bsc#1058703] - Add group kvm to system-group-hardware - Move group lp from system-user-lp to system-group-hardware - Add system-user-uuidd.conf (boo#1057937#c3). - user nobody: move usermod to %post, else it will be executed before the user is created. - Drop pkgconfig(systemd) BuildRequires: we no longer depend on systemd-sysusers, but converted to shadow toolset. - Move group trusted into system-user-root package [bsc#1044014] - Move system-user-root into own package - Fix syntax of groups in system-user-root.conf - Add utmp to system-group-hardware.conf like systemd has - Create new system-user-root sub-package creating passwd, group and shadow files with root user. - BuildRequire pkgconfig(systemd) instead of systemd: this allows OBS to pick systemd-mini, which is still good enough. And ultimately it helps us break a build cycle (system-users - libssh2_org - curl - systemd - system-users). - BuildIgnore group(lock) and group(daemon) for ourselves, needed for bootstrap. - /bin/bash is needed as shell for user nobody - Add upsd for UPS daemon packages. - Prerequire group lock for uucp - Allow user uucp to do locking - Fix group ownership of /var/lib/wwwrun - Add group sys to system-group-obsolete - Add systemusers lp and nobody - Add systemusers wwwrun, mail and ftp - Add hardware access groups: kmem, lock, tty, audio, cdrom, dialout, disk, input, tape, video - Add group wheel - Remove /var/spool/uucp directories... - Change license to MIT - Add subpackages for obsolete groups and trusted group - Add subpackages for bin, daemon, news and man - Adjust to new sysuser-tools - Use automatic provides and generate %pre with a script - fix uids and add also groups - Create users in %pre install section - Add /etc/uucp to filelist of system-user-uucp - Add system account games - Initial version with system account uucp ==== systemsettings5 ==== - Add QML provides ==== sysuser-tools ==== - useradd_or_adduser_dep must be PreReq so ordering makes sure it gets installed before. - suggest shadow where useradd_or_adduser_dep is actually required - Avoid useless use of cat - Simplify %sysusers_requires - Drop shebang, rpm passes it to /bin/sh itself - Packages providing users need /usr/bin/cat installed to create them. Add that to the PreRequires. - Create system groups for system users - Fix bug introduced by simplification of check for useradd -g - Refactor use of sed away - Use eval set -- $LINE instead of read for parsing - Clean up sysusers2shadow and make it use only /bin/sh - Don't let busybox adduser create the home directory, it breaks permissions of e.g. /sbin (home of daemon) - Use only /bin/sh in sysusers-generate-pre and the generated code - Drop use of tail from the generated %pre scriptlets - Look for /bin/busybox, too - Add special handling for busybox and groups - Use suggests shadow to prefer that over busybox in normal systems - Add support for busybox adduser/addgroup - Change requirements from shadow to useradd_or_adduser_dep - Fix default home directory [bsc#1105934] - Use _rpmmacrodir for macro file - Further enhance sysusers-generate-pre: inside the build environment, it can be acceptable to be failing to create the users (e.g when building sysuser-tools or system-user-root, since those two packages have to be speificallty excluded). Always return with error code 0 if /.buildenv exists. - sysusers2shadow.sh: Exit if one of the useradd/groupadd/usermod call fails: the resulting system is quite undefined if this should happen. - sysusers-generate-pre: exit the pre script with the exit code of sysusers2shadow.sh. - sysuser-tools needs to require sysuser-shadow - Add requires for shadow to sysuser-shadow - Put helper script into own subpackage - Convert sysusers config file to shadow arguments and use shadow suite to create user and groups. Fixes [bsc#1041497] and serveral dependency loops. - Don't ignore errors of systemd-sysusers [bsc#1039708] - Don't remove 'm' and 'r' entries from sysusers configuration - Add macros.sysusers - initial package ==== webkit2gtk3 ==== Subpackages: libjavascriptcoregtk-4_0-18 libwebkit2gtk-4_0-37 webkit2gtk-4_0-injected-bundles - Add webkit-font-scaling.patch: Fix system font scaling not applied to 'font-size: XXXpt'; patch taken from upstream and rebased to apply cleanly (https://bugs.webkit.org/show_bug.cgi?id=218450). - Pass `-q` to setup to disable printing long list of files extracted from source tarball. ==== xdg-desktop-portal-kde ==== - Add compatibility with qml-autoreqprov ==== xfsprogs ==== Version update (5.9.0 -> 5.10.0) - update to 5.10.0: - xfs_repair: remove old code for mountpoint inodes - xfsprogs: Add inode btree counter feature - xfsprogs: Add bigtime feature for Y2038 - xfsprogs: Polish translation update - mkfs.xfs: Add config file feature - mkfs.xfs: allow users to specify rtinherit=0 - xfs_repair: simplify bmap_next_offset - man: various manpage updates - libxfs: remove some old dead code - libxfs: add realtime extent tracking - libxfs changes merged from kernel 5.10 - refresh 0001-repair-shift-inode-back-into-place-if-corrupted-by-b.patch against libxfs changes ==== zbar ==== - Apply patch0 unconditionally and fix build on Leap

1 month

1
0
0 0

New MicroOS snapshot 20210130 released!

by Richard Brown

Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: PackageKit bluez cloud-init dolphin fftw3 (3.3.8 -> 3.3.9) flatpak (1.10.0 -> 1.10.1) hwinfo (21.71 -> 21.72) installation-images-MicroOS (16.29 -> 16.35) isl kcompletion kernel-firmware (20201218 -> 20210119) libgpg-error (1.39 -> 1.41) llvm11 mozilla-nss (3.59.1 -> 3.60.1) mozjs78 (78.6.1 -> 78.7.0) open-iscsi p11-kit (0.23.20 -> 0.23.22) patterns-base patterns-microos soundtouch (2.1.2 -> 2.2) sqlite3 (3.34.0 -> 3.34.1) upower webkit2gtk3 === Details === ==== PackageKit ==== Subpackages: PackageKit-backend-zypp libpackagekit-glib2-18 - Do not build cnf: scout-c-n-f is still pending, having PK-cnf obsolete cnf is unacceptable. - Add PackageKit-zypp-reset-update-mode-after-get-updates.patch: zypp: Reset update mode after getting updates (gh#hughsie/PackageKit/commit#b208f551, bsc#1180150). - Build command-not-found by default ==== bluez ==== Subpackages: libbluetooth3 - add bluez-test-2to3.diff to get rid of python2 dependency ==== cloud-init ==== - Add use_arroba_to_include_sudoers_directory-bsc_1181283.patchfix (bsc#1181283) - Do not including sudoers.d directory twice ==== dolphin ==== Subpackages: dolphin-part libdolphinvcs5 - Add upstream patch to properly show the network button in the URL navigator (kde#431626): - 0001-Show-button-to-open-knetattach-inline-with-URL-nav-o.patch - Refreshed patches: - 0001-Update-cached-viewContainer-geometry-every-time-they.patch ==== fftw3 ==== Version update (3.3.8 -> 3.3.9) - update to 3.3.9: * New API fftw_planner_nthreads() returns the number of threads currently being used by the planner. * Fix incorrect math in 128-bit generic SIMD * Fix wisdom for avx512. The avx512 alignment requirement was set to 64 bytes, but this is wrong. Alignment requirements are a property of the platform (e.g., x86) and not of the instruction set (e.g., AVX). Among other things, this broke wisdom with avx512. Note that avx512 support is still experimental because the FFTW authors have no avx512 hardware available for testing. * fftw_threads_set_callback function to change the threading backend at runtime. ==== flatpak ==== Version update (1.10.0 -> 1.10.1) Subpackages: libflatpak0 system-user-flatpak - Flatpak only requires glib 2.44, not 2.60 - Update ostree version required to 2020.8 - Update to version 1.10.1: + Fix flatpak build on systems with setuid bwrap + Fix some compiler warnings + Fix crash on updating apps with no deploy data + Updated translations. - Remove deprecated texinfo packaging macros. - Switch to upstream release tarball. ==== hwinfo ==== Version update (21.71 -> 21.72) - merge gh#openSUSE/hwinfo#92 - improve getting video mode info (bsc#1181101) - try harder to break out of infinite I/O loops - 21.72 ==== installation-images-MicroOS ==== Version update (16.29 -> 16.35) - merge gh#openSUSE/installation-images#439 - Don't replace directory symlinks (boo#1029961) - 16.35 - merge gh#openSUSE/installation-images#447 - aarch64: add tegra20-apb-dma module (bsc#1181463) - 16.34 - merge gh#openSUSE/installation-images#446 - work around broken plymouth (bsc#1149070) - 16.33 - merge gh#openSUSE/installation-images#445 - do not run prein script for openssh-server in root image - 16.32 - merge gh#openSUSE/installation-images#443 - revert plymouth branding for SLE to tribar - support both plymouth-theme-tribar and plymouth-theme-bgrt - 16.31 - merge gh#openSUSE/installation-images#442 - Replace tribar plymouth theme for installation with bgrt (boo#1149070) - 16.30 ==== isl ==== - Compile with %optflags ==== kcompletion ==== - Add upstream patch to fix Okular search bar no longer closed when pressing ESC (kde#431493): * 0001-Fix-regression-caused-due-to-porting-from-operator-t.patch ==== kernel-firmware ==== Version update (20201218 -> 20210119) Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network ucode-amd - Update to version 20210119 (git commit 05789708b79b): * brcm: Link RPi4's WiFi firmware with DMI machine name. * brcm: Add NVRAM for Vamrs 96boards Rock960 * brcm: Update Raspberry Pi 3B+/4B NVRAM for downstream changes * cypress: Fix link direction * cypress: Link the new cypress firmware to the old brcm files * brcm: remove old brcm firmwares that have newer cypress variants * rtl_bt: Update RTL8822C BT(UART I/F) FW to 0x059A_25CB * rtl_bt: Update RTL8822C BT(USB I/F) FW to 0x099a_7253 * rtl_bt: Add firmware and config files for RTL8852A BT USB chip * rtl_bt: Update RTL8821C BT(USB I/F) FW to 0x829a_7644 - Fix install-split.sh to deal with the quoted spaces - Update aliases ==== libgpg-error ==== Version update (1.39 -> 1.41) - update to 1.41: * Fixes another glitch in the "ignore" meta command. * Fixes two typos in the German translation. * New function gpgrt_access. * Make "ignore" meta command work correctly in the option parser. * Interface changes relative to the 1.39 release: gpgrt_access NEW. ==== llvm11 ==== - Revert changes that broke the ABI (boo#1181326). * Sema-Introduce-BuiltinAttr-per-declaration-builtin-n.patch * Sema-Handle-objc_super-special-lookup-when-checking-.patch * Recognize-setjmp-and-friends-as-builtins-even-if-jmp.patch * Don-t-reject-calls-to-MinGW-s-unusual-_setjmp-declar.patch ==== mozilla-nss ==== Version update (3.59.1 -> 3.60.1) Subpackages: libfreebl3 libsoftokn3 mozilla-nss-certs - update to NSS 3.60.1 Notable changes in NSS 3.60: * TLS 1.3 Encrypted Client Hello (draft-ietf-tls-esni-08) support has been added, replacing the previous ESNI (draft-ietf-tls-esni-01) implementation. See bmo#1654332 for more information. * December 2020 batch of Root CA changes, builtins library updated to version 2.46. See bmo#1678189, bmo#1678166, and bmo#1670769 for more information. - removed obsolete ppc-old-abi-v3.patch ==== mozjs78 ==== Version update (78.6.1 -> 78.7.0) - Update to version 78.7.0esr. ==== open-iscsi ==== Subpackages: iscsiuio libopeniscsiusr0_2_0 - Update to latest upstream (no new tag yet). To fix bsc#1181313. Changes since last update added to open-iscsi-SUSE-latest.diff.bz2: * Fix iscsiadm segfault when exiting * iscsid: Add NO_SYSTEMD to CFLAGS * Change mkdir permissions to 0770, adjust usmask * Fix typo in util.py * iscsid: Do not allow conflicting pid-file options * iscsiadm: Fix memory leak in iscsiadm * libopeniscsiusr: Fix memory leak in iscsi_sessions_get() * libopeniscsiusr: Fix memory leak in iscsi_nodes_get() * idbm: Fix memory leak and NULL pointer dereference in idbm_rec_update_param() * Add etc/systemd/iscsi-init.service to SYSTEMDFILES Makefile variable ==== p11-kit ==== Version update (0.23.20 -> 0.23.22) Subpackages: libp11-kit0 p11-kit-tools - update to 0.23.22 (bsc#1180064, bsc#1180065, bsc#1180066): * Fix memory-safety issues that affect the RPC protocol (CVE-2020-29361, CVE-2020-29362, and CVE-2020-29363), discovered and fixed by David Cook * anchor: Prefer persistent format when storing anchor [PR#329] * common: Fix infloop in p11_path_build [PR#326, PR#327] * proxy: C_CloseAllSessions: Make sure that calloc args are non-zero [PR#325] * common: Check for a NULL locale before freeing it [PR#321] * proxy: Do not assign duplicate slot IDs [PR#282] * common: Get program name based on executable path if possible [PR#307] * anchor: Exit with non-zero code, if any error occurs [PR#304] * Build and test fixes ==== patterns-base ==== Subpackages: patterns-base-base patterns-base-bootloader patterns-base-minimal_base patterns-base-x11 - bootloader pattern should not require a base pattern ==== patterns-microos ==== Subpackages: patterns-microos-alt_onlyDVD patterns-microos-apparmor patterns-microos-base patterns-microos-basesystem patterns-microos-cloud patterns-microos-cockpit patterns-microos-defaults patterns-microos-desktop-common patterns-microos-desktop-gnome patterns-microos-desktop-kde patterns-microos-hardware patterns-microos-ima_evm patterns-microos-onlyDVD patterns-microos-selinux patterns-microos-sssd_ldap - Use user(nobody) and group(nobody) - Drop autofs and nfs-client requirements, not commonly needed - Sync with openSUSE Tumleweed base pattern - Add busybox - Cleanup comments from last submission - Moved unzip and wget from gnome desktop pattern to common desktop pattern - add bash-completion, nfs-client and autofs to common desktop pattern for beginner users - remove kdeconnect-kde from kde desktop pattern as not necessary for every install ==== soundtouch ==== Version update (2.1.2 -> 2.2) - update to 2.2.0: * Improvements to help compiler autovectorization * Bugfix in integer version of calcCrossCorrAccumulate() * Compensate initial buffering of anti-alias filter and intepolator. * Tuning for ARM NEON * BPMDetect: Make conversion from size_t to int explicit * BPM PeakFinder: Fix possible reading past end of array. * Change correlation loop 'sum' variable type from double to float ==== sqlite3 ==== Version update (3.34.0 -> 3.34.1) - SQLite 3.34.1: * Fix a potential use-after-free bug when processing a a subquery with both a correlated WHERE clause and a "HAVING 0" clause and where the parent query is an aggregate (boo#1181261) * Fix documentation typos * Fix minor problems in extensions ==== upower ==== Subpackages: libupower-glib3 typelib-1_0-UpowerGlib-1_0 - Use libplist-2.0 on Tumblewewd. + upower-build-Use-a-newer-libplist-if-available.patch ==== webkit2gtk3 ==== Subpackages: libjavascriptcoregtk-4_0-18 libwebkit2gtk-4_0-37 webkit2gtk-4_0-injected-bundles - Add gir-multilib.patch: Fix multilib conflict in gir files. - Disable gold linker for ppc64le

1 month

1
0
0 0

New Kubic snapshot 20210130 released!

by Richard Brown

Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=1&version=T… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: cloud-init hwinfo (21.71 -> 21.72) installation-images-MicroOS (16.29 -> 16.35) kernel-firmware (20201218 -> 20210119) libgpg-error (1.39 -> 1.41) mozilla-nss (3.59.1 -> 3.60.1) mozjs78 (78.6.1 -> 78.7.0) open-iscsi p11-kit (0.23.20 -> 0.23.22) patterns-base patterns-microos sqlite3 (3.34.0 -> 3.34.1) === Details === ==== cloud-init ==== - Add use_arroba_to_include_sudoers_directory-bsc_1181283.patchfix (bsc#1181283) - Do not including sudoers.d directory twice ==== hwinfo ==== Version update (21.71 -> 21.72) - merge gh#openSUSE/hwinfo#92 - improve getting video mode info (bsc#1181101) - try harder to break out of infinite I/O loops - 21.72 ==== installation-images-MicroOS ==== Version update (16.29 -> 16.35) - merge gh#openSUSE/installation-images#439 - Don't replace directory symlinks (boo#1029961) - 16.35 - merge gh#openSUSE/installation-images#447 - aarch64: add tegra20-apb-dma module (bsc#1181463) - 16.34 - merge gh#openSUSE/installation-images#446 - work around broken plymouth (bsc#1149070) - 16.33 - merge gh#openSUSE/installation-images#445 - do not run prein script for openssh-server in root image - 16.32 - merge gh#openSUSE/installation-images#443 - revert plymouth branding for SLE to tribar - support both plymouth-theme-tribar and plymouth-theme-bgrt - 16.31 - merge gh#openSUSE/installation-images#442 - Replace tribar plymouth theme for installation with bgrt (boo#1149070) - 16.30 ==== kernel-firmware ==== Version update (20201218 -> 20210119) Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network ucode-amd - Update to version 20210119 (git commit 05789708b79b): * brcm: Link RPi4's WiFi firmware with DMI machine name. * brcm: Add NVRAM for Vamrs 96boards Rock960 * brcm: Update Raspberry Pi 3B+/4B NVRAM for downstream changes * cypress: Fix link direction * cypress: Link the new cypress firmware to the old brcm files * brcm: remove old brcm firmwares that have newer cypress variants * rtl_bt: Update RTL8822C BT(UART I/F) FW to 0x059A_25CB * rtl_bt: Update RTL8822C BT(USB I/F) FW to 0x099a_7253 * rtl_bt: Add firmware and config files for RTL8852A BT USB chip * rtl_bt: Update RTL8821C BT(USB I/F) FW to 0x829a_7644 - Fix install-split.sh to deal with the quoted spaces - Update aliases ==== libgpg-error ==== Version update (1.39 -> 1.41) - update to 1.41: * Fixes another glitch in the "ignore" meta command. * Fixes two typos in the German translation. * New function gpgrt_access. * Make "ignore" meta command work correctly in the option parser. * Interface changes relative to the 1.39 release: gpgrt_access NEW. ==== mozilla-nss ==== Version update (3.59.1 -> 3.60.1) - update to NSS 3.60.1 Notable changes in NSS 3.60: * TLS 1.3 Encrypted Client Hello (draft-ietf-tls-esni-08) support has been added, replacing the previous ESNI (draft-ietf-tls-esni-01) implementation. See bmo#1654332 for more information. * December 2020 batch of Root CA changes, builtins library updated to version 2.46. See bmo#1678189, bmo#1678166, and bmo#1670769 for more information. - removed obsolete ppc-old-abi-v3.patch ==== mozjs78 ==== Version update (78.6.1 -> 78.7.0) - Update to version 78.7.0esr. ==== open-iscsi ==== Subpackages: iscsiuio libopeniscsiusr0_2_0 - Update to latest upstream (no new tag yet). To fix bsc#1181313. Changes since last update added to open-iscsi-SUSE-latest.diff.bz2: * Fix iscsiadm segfault when exiting * iscsid: Add NO_SYSTEMD to CFLAGS * Change mkdir permissions to 0770, adjust usmask * Fix typo in util.py * iscsid: Do not allow conflicting pid-file options * iscsiadm: Fix memory leak in iscsiadm * libopeniscsiusr: Fix memory leak in iscsi_sessions_get() * libopeniscsiusr: Fix memory leak in iscsi_nodes_get() * idbm: Fix memory leak and NULL pointer dereference in idbm_rec_update_param() * Add etc/systemd/iscsi-init.service to SYSTEMDFILES Makefile variable ==== p11-kit ==== Version update (0.23.20 -> 0.23.22) Subpackages: libp11-kit0 p11-kit-tools - update to 0.23.22 (bsc#1180064, bsc#1180065, bsc#1180066): * Fix memory-safety issues that affect the RPC protocol (CVE-2020-29361, CVE-2020-29362, and CVE-2020-29363), discovered and fixed by David Cook * anchor: Prefer persistent format when storing anchor [PR#329] * common: Fix infloop in p11_path_build [PR#326, PR#327] * proxy: C_CloseAllSessions: Make sure that calloc args are non-zero [PR#325] * common: Check for a NULL locale before freeing it [PR#321] * proxy: Do not assign duplicate slot IDs [PR#282] * common: Get program name based on executable path if possible [PR#307] * anchor: Exit with non-zero code, if any error occurs [PR#304] * Build and test fixes ==== patterns-base ==== Subpackages: patterns-base-apparmor patterns-base-bootloader patterns-base-minimal_base - bootloader pattern should not require a base pattern ==== patterns-microos ==== Subpackages: patterns-microos-alt_onlyDVD patterns-microos-apparmor patterns-microos-base patterns-microos-basesystem patterns-microos-cloud patterns-microos-cockpit patterns-microos-defaults patterns-microos-hardware patterns-microos-ima_evm patterns-microos-onlyDVD patterns-microos-selinux patterns-microos-sssd_ldap - Use user(nobody) and group(nobody) - Drop autofs and nfs-client requirements, not commonly needed - Sync with openSUSE Tumleweed base pattern - Add busybox - Cleanup comments from last submission - Moved unzip and wget from gnome desktop pattern to common desktop pattern - add bash-completion, nfs-client and autofs to common desktop pattern for beginner users - remove kdeconnect-kde from kde desktop pattern as not necessary for every install ==== sqlite3 ==== Version update (3.34.0 -> 3.34.1) - SQLite 3.34.1: * Fix a potential use-after-free bug when processing a a subquery with both a correlated WHERE clause and a "HAVING 0" clause and where the parent query is an aggregate (boo#1181261) * Fix documentation typos * Fix minor problems in extensions

1 month

1
0
0 0

Alternative to install Gnome Extensions

by Syds Bearda

Hi All, I recently heard about a new possibility to install Gnome Extensions, without the need of a RPM installed browser. It's currently under development at [Github](https://github.com/ekistece/GetExtensions) You can even install it via a toolbox; the commands are as follows: $ toolbox -u $ sudo zypper in git python38-pip $ cd /tmp $ git clone https://github.com/ekistece/GetExtensions.git $ pip3 install ./GetExtensions --user $ exit You can then open the application Get Extensions that is available in your launchpad. To uninstall: pip3 uninstall getextensions Is there someone that is able to package this application in OBS so we can include it in the MicroOS installation? /Syds

1 month

4
6
0 0

New MicroOS snapshot 20210127 released!

by Richard Brown

Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: apparmor cockpit-podman (25 -> 26) sudo (1.9.5p1 -> 1.9.5p2) zbar === Details === ==== apparmor ==== Subpackages: apparmor-abstractions apparmor-parser apparmor-profiles apparmor-utils python3-apparmor - add apache-extra-profile-include-if-exists.diff: make <apache2.d> include in apache extra profile optional to avoid problems with empty profile directory (boo#1178527) ==== cockpit-podman ==== Version update (25 -> 26) - new version 26 https://github.com/cockpit-project/cockpit-podman/releases/tag/26 ==== sudo ==== Version update (1.9.5p1 -> 1.9.5p2) - Update to 1.9.5.p2 * When invoked as sudoedit, the same set of command line options are now accepted as for sudo -e. The -H and -P options are now rejected for sudoedit and sudo -e which matches the sudo 1.7 behavior. This is part of the fix for CVE-2021-3156. * Fixed a potential buffer overflow when unescaping backslashes in the command's arguments. Normally, sudo escapes special characters when running a command via a shell (sudo -s or sudo -i). However, it was also possible to run sudoedit with the -s or -i flags in which case no escaping had actually been done, making a buffer overflow possible. This fixes CVE-2021-3156. (bsc#1181090) * Fixed sudo's setprogname(3) emulation on systems that don't provide it. * Fixed a problem with the sudoers log server client where a partial write to the server could result the sudo process consuming large amounts of CPU time due to a cycle in the buffer queue. Bug #954. * Added a missing dependency on libsudo_util in libsudo_eventlog. Fixes a link error when building sudo statically. * The user's KRB5CCNAME environment variable is now preserved when performing PAM authentication. This fixes GSSAPI authentication when the user has a non-default ccache. ==== zbar ==== - Apply patch0 unconditionally and fix build on Leap

1 month

1
0
0 0

New Kubic snapshot 20210127 released!

by Richard Brown

Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=1&version=T… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: apparmor cockpit-podman (25 -> 26) rdma-core sudo (1.9.5p1 -> 1.9.5p2) === Details === ==== apparmor ==== Subpackages: apparmor-abstractions apparmor-parser apparmor-profiles apparmor-utils python3-apparmor - add apache-extra-profile-include-if-exists.diff: make <apache2.d> include in apache extra profile optional to avoid problems with empty profile directory (boo#1178527) ==== cockpit-podman ==== Version update (25 -> 26) - new version 26 https://github.com/cockpit-project/cockpit-podman/releases/tag/26 ==== rdma-core ==== Subpackages: libefa1 libibverbs libibverbs1 libmlx4-1 libmlx5-1 librdmacm1 - Add srp_daemon-Fix-systemd-dependency.patch to make sure srp_daemon is loaded at boot if enabled (bsc#1180196) ==== sudo ==== Version update (1.9.5p1 -> 1.9.5p2) - Update to 1.9.5.p2 * When invoked as sudoedit, the same set of command line options are now accepted as for sudo -e. The -H and -P options are now rejected for sudoedit and sudo -e which matches the sudo 1.7 behavior. This is part of the fix for CVE-2021-3156. * Fixed a potential buffer overflow when unescaping backslashes in the command's arguments. Normally, sudo escapes special characters when running a command via a shell (sudo -s or sudo -i). However, it was also possible to run sudoedit with the -s or -i flags in which case no escaping had actually been done, making a buffer overflow possible. This fixes CVE-2021-3156. (bsc#1181090) * Fixed sudo's setprogname(3) emulation on systems that don't provide it. * Fixed a problem with the sudoers log server client where a partial write to the server could result the sudo process consuming large amounts of CPU time due to a cycle in the buffer queue. Bug #954. * Added a missing dependency on libsudo_util in libsudo_eventlog. Fixes a link error when building sudo statically. * The user's KRB5CCNAME environment variable is now preserved when performing PAM authentication. This fixes GSSAPI authentication when the user has a non-default ccache.

1 month

1
0
0 0

New MicroOS snapshot 20210126 released!

by Richard Brown

Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: alsa bluedevil5 desktop-data-openSUSE dmidecode findutils (4.7.0 -> 4.8.0) gettext-runtime gnome-packagekit gnome-tweaks kernel-source (5.10.7 -> 5.10.9) kinfocenter5 kscreen5 kwin5 libblockdev (2.24 -> 2.25) libcap (2.44 -> 2.46) libfido2 (1.5.0 -> 1.6.0) libqt5-qtmultimedia libqt5-qtquickcontrols libqt5-qtquickcontrols2 libqt5-qtsensors libqt5-qtwayland libxkbcommon milou5 ncurses (6.2.20210109 -> 6.2.20210116) open-vm-tools (11.2.0 -> 11.2.5) openssh pango (1.48.0 -> 1.48.1) plasma5-desktop python-pyserial (3.4 -> 3.5) python-setuptools shared-mime-info (2.0 -> 2.1) sord (0.16.6 -> 0.16.8) systemsettings5 tar (1.32 -> 1.33) toolbox (1.0+git20201126.3d26283 -> 1.0+git20210119.b5acdcf) webkit2gtk3 xdg-desktop-portal-kde xen (4.14.1_05 -> 4.14.1_08) xfsprogs (5.9.0 -> 5.10.0) === Details === ==== alsa ==== - Yet more fixes for the crash with dmix plugin (bsc#1181194): 0045-pcm-direct-Fix-the-missing-appl_ptr-update.patch 0046-pcm-ioplug-Pass-appl_ptr-and-hw_ptr-in-snd_pcm_statu.patch 0047-pcm-null-Pass-appl_ptr-and-hw_ptr-in-snd_pcm_status.patch 0048-pcm-share-Pass-appl_ptr-and-hw_ptr-in-snd_pcm_status.patch - Backport upstream fixes: yet more PCM plugin fixes, topology fixes/cleanups, UAF fix in UCM (bsc#1181194): 0004-topology-use-inclusive-language-for-bclk.patch 0005-topology-use-inclusive-language-for-fsync.patch 0006-topology-use-inclusive-language-in-documentation.patch 0034-ucm-fix-possible-memory-leak-in-parse_verb_file.patch 0035-topology-tplg_pprint_integer-fix-coverity-uninitaliz.patch 0036-topology-tplg_add_widget_object-do-not-use-invalid-e.patch 0037-topology-tplg_decode_pcm-add-missing-log-argument-co.patch 0038-topology-parse_tuple_set-remove-dead-condition-code.patch 0039-ucm-uc_mgr_substitute_tree-fix-use-after-free.patch 0040-topology-sort_config-cleanups-use-goto-for-the-error.patch 0041-conf-USB-add-Xonar-U7-MKII-to-USB-Audio.pcm.iec958_d.patch 0042-pcm_plugin-set-the-initial-hw_ptr-appl_ptr-from-the-.patch 0043-pcm-dmix-dshare-delay-calculation-fixes-and-cleanups.patch 0044-topology-fix-parse_tuple_set-remove-dead-condition-c.patch ==== bluedevil5 ==== - Add compatibility with qml-autoreqprov ==== desktop-data-openSUSE ==== - Move call-browser and desktop-launch symlink to xdg-utils. ==== dmidecode ==== 2 recommended fixes from upstream: - dmidecode-fix-the-condition-error-in-ascii_filter.patch: dmidecode: Fix the condition error in ascii_filter. - dmidecode-fix-crash-with-u-option.patch: dmidecode: Fix crash with -u option. ==== findutils ==== Version update (4.7.0 -> 4.8.0) - update upstream signing key - remove deprecated texinfo packaging macros - run spec-cleaner - Update to 4.8.0. Announcement: https://savannah.gnu.org/forum/forum.php?forum_id=9914 - findutils.spec: - Source0: Fix download URL: remove "pub/". - %check: Output the content of all test-suite files in case of errors. - Remove now-upstream patches: - disable-null-ptr-test.patch - findutils-gnulib-disable-test-float.patch - findutils-gnulib-test-avoid-FP-perror-strerror.patch ==== gettext-runtime ==== Subpackages: libtextstyle0 - fixup libtextstyle autofoo with adding use-acinit-for-libtextstyle.patch ==== gnome-packagekit ==== - Add gnome-packagekit-define-HAVE_SYSTEMD.patch: define HAVE_SYSTEMD macro if systemd if found (glgo#GNOME/gnome-packagekit!3, bsc#1134544). ==== gnome-tweaks ==== - Add 77dde7477922f645946bfc64b1b25aeed2b01919.patch -- Update Norwegian bokmål translation. ==== kernel-source ==== Version update (5.10.7 -> 5.10.9) - Linux 5.10.9 (bsc#1012628). - btrfs: reloc: fix wrong file extent type check to avoid false ENOENT (bsc#1012628). - btrfs: prevent NULL pointer dereference in extent_io_tree_panic (bsc#1012628). - ALSA: hda/realtek: fix right sounds and mute/micmute LEDs for HP machines (bsc#1012628). - ALSA: doc: Fix reference to mixart.rst (bsc#1012628). - ASoC: AMD Renoir - add DMI entry for Lenovo ThinkPad X395 (bsc#1012628). - ASoC: dapm: remove widget from dirty list on free (bsc#1012628). - x86/hyperv: check cpu mask after interrupt has been disabled (bsc#1012628). - drm/amdgpu: add green_sardine device id (v2) (bsc#1012628). - drm/amdgpu: fix DRM_INFO flood if display core is not supported (bug 210921) (bsc#1012628). - drm/amdgpu: add new device id for Renior (bsc#1012628). - drm/i915: Allow the sysadmin to override security mitigations (bsc#1012628). - drm/i915/gt: Limit VFE threads based on GT (bsc#1012628). - drm/i915/backlight: fix CPU mode backlight takeover on LPT (bsc#1012628). - drm/bridge: sii902x: Refactor init code into separate function (bsc#1012628). - dt-bindings: display: sii902x: Add supply bindings (bsc#1012628). - drm/bridge: sii902x: Enable I/O and core VCC supplies if present (bsc#1012628). - tracing/kprobes: Do the notrace functions check without kprobes on ftrace (bsc#1012628). - tools/bootconfig: Add tracing_on support to helper scripts (bsc#1012628). - ext4: use IS_ERR instead of IS_ERR_OR_NULL and set inode null when IS_ERR (bsc#1012628). - ext4: fix wrong list_splice in ext4_fc_cleanup (bsc#1012628). - ext4: fix bug for rename with RENAME_WHITEOUT (bsc#1012628). - cifs: check pointer before freeing (bsc#1012628). - cifs: fix interrupted close commands (bsc#1012628). - riscv: Drop a duplicated PAGE_KERNEL_EXEC (bsc#1012628). - riscv: return -ENOSYS for syscall -1 (bsc#1012628). - riscv: Fixup CONFIG_GENERIC_TIME_VSYSCALL (bsc#1012628). - riscv: Fix KASAN memory mapping (bsc#1012628). - mips: fix Section mismatch in reference (bsc#1012628). - mips: lib: uncached: fix non-standard usage of variable 'sp' (bsc#1012628). - MIPS: boot: Fix unaligned access with CONFIG_MIPS_RAW_APPENDED_DTB (bsc#1012628). - MIPS: Fix malformed NT_FILE and NT_SIGINFO in 32bit coredumps (bsc#1012628). - MIPS: relocatable: fix possible boot hangup with KASLR enabled (bsc#1012628). - RDMA/ocrdma: Fix use after free in ocrdma_dealloc_ucontext_pd() (bsc#1012628). - ACPI: scan: Harden acpi_device_add() against device ID overflows (bsc#1012628). - xen/privcmd: allow fetching resource sizes (bsc#1012628). - compiler.h: Raise minimum version of GCC to 5.1 for arm64 (bsc#1012628). - mm/vmalloc.c: fix potential memory leak (bsc#1012628). - mm/hugetlb: fix potential missing huge page size info (bsc#1012628). - mm/process_vm_access.c: include compat.h (bsc#1012628). - dm raid: fix discard limits for raid1 (bsc#1012628). - dm snapshot: flush merged data before committing metadata (bsc#1012628). - dm integrity: fix flush with external metadata device (bsc#1012628). - dm integrity: fix the maximum number of arguments (bsc#1012628). - dm crypt: use GFP_ATOMIC when allocating crypto requests from softirq (bsc#1012628). - dm crypt: do not wait for backlogged crypto request completion in softirq (bsc#1012628). - dm crypt: do not call bio_endio() from the dm-crypt tasklet (bsc#1012628). - dm crypt: defer decryption to a tasklet if interrupts disabled (bsc#1012628). - stmmac: intel: change all EHL/TGL to auto detect phy addr (bsc#1012628). - r8152: Add Lenovo Powered USB-C Travel Hub (bsc#1012628). - btrfs: tree-checker: check if chunk item end overflows (bsc#1012628). - ext4: don't leak old mountpoint samples (bsc#1012628). - io_uring: don't take files/mm for a dead task (bsc#1012628). - io_uring: drop mm and files after task_work_run (bsc#1012628). - ARC: build: remove non-existing bootpImage from KBUILD_IMAGE (bsc#1012628). - ARC: build: add uImage.lzma to the top-level target (bsc#1012628). - ARC: build: add boot_targets to PHONY (bsc#1012628). - ARC: build: move symlink creation to arch/arc/Makefile to avoid race (bsc#1012628). - ARM: omap2: pmic-cpcap: fix maximum voltage to be consistent with defaults on xt875 (bsc#1012628). - ath11k: fix crash caused by NULL rx_channel (bsc#1012628). - netfilter: ipset: fixes possible oops in mtype_resize (bsc#1012628). - ath11k: qmi: try to allocate a big block of DMA memory first (bsc#1012628). - btrfs: fix async discard stall (bsc#1012628). - btrfs: merge critical sections of discard lock in workfn (bsc#1012628). - btrfs: fix transaction leak and crash after RO remount caused by qgroup rescan (bsc#1012628). - regulator: bd718x7: Add enable times (bsc#1012628). - ethernet: ucc_geth: fix definition and size of ucc_geth_tx_global_pram (bsc#1012628). - ARM: dts: ux500/golden: Set display max brightness (bsc#1012628). - habanalabs: adjust pci controller init to new firmware (bsc#1012628). - habanalabs/gaudi: retry loading TPC f/w on -EINTR (bsc#1012628). - habanalabs: register to pci shutdown callback (bsc#1012628). - staging: spmi: hisi-spmi-controller: Fix some error handling paths (bsc#1012628). - spi: altera: fix return value for altera_spi_txrx() (bsc#1012628). - habanalabs: Fix memleak in hl_device_reset (bsc#1012628). - hwmon: (pwm-fan) Ensure that calculation doesn't discard big period values (bsc#1012628). - lib/raid6: Let $(UNROLL) rules work with macOS userland (bsc#1012628). - kconfig: remove 'kvmconfig' and 'xenconfig' shorthands (bsc#1012628). - spi: fix the divide by 0 error when calculating xfer waiting time (bsc#1012628). - io_uring: drop file refs after task cancel (bsc#1012628). - bfq: Fix computation of shallow depth (bsc#1012628). - arch/arc: add copy_user_page() to <asm/page.h> to fix build error on ARC (bsc#1012628). - misdn: dsp: select CONFIG_BITREVERSE (bsc#1012628). - net: ethernet: fs_enet: Add missing MODULE_LICENSE (bsc#1012628). - selftests: fix the return value for UDP GRO test (bsc#1012628). - nvme-pci: mark Samsung PM1725a as IGNORE_DEV_SUBNQN (bsc#1012628). - nvme: avoid possible double fetch in handling CQE (bsc#1012628). - nvmet-rdma: Fix list_del corruption on queue establishment failure (bsc#1012628). - drm/amd/display: fix sysfs amdgpu_current_backlight_pwm NULL pointer issue (bsc#1012628). - drm/amdgpu: fix a GPU hang issue when remove device (bsc#1012628). - drm/amd/pm: fix the failure when change power profile for renoir (bsc#1012628). - drm/amdgpu: fix potential memory leak during navi12 deinitialization (bsc#1012628). - usb: typec: Fix copy paste error for NVIDIA alt-mode description (bsc#1012628). - iommu/vt-d: Fix lockdep splat in sva bind()/unbind() (bsc#1012628). - ACPI: scan: add stub acpi_create_platform_device() for !CONFIG_ACPI (bsc#1012628). - drm/msm: Call msm_init_vram before binding the gpu (bsc#1012628). - ARM: picoxcell: fix missing interrupt-parent properties (bsc#1012628). - poll: fix performance regression due to out-of-line __put_user() (bsc#1012628). - rcu-tasks: Move RCU-tasks initialization to before early_initcall() (bsc#1012628). - bpf: Simplify task_file_seq_get_next() (bsc#1012628). - bpf: Save correct stopping point in file seq iteration (bsc#1012628). - x86/sev-es: Fix SEV-ES OUT/IN immediate opcode vc handling (bsc#1012628). - cfg80211: select CONFIG_CRC32 (bsc#1012628). - nvme-fc: avoid calling _nvme_fc_abort_outstanding_ios from interrupt context (bsc#1012628). - iommu/vt-d: Update domain geometry in iommu_ops.at(de)tach_dev (bsc#1012628). - net/mlx5e: CT: Use per flow counter when CT flow accounting is enabled (bsc#1012628). - net/mlx5: Fix passing zero to 'PTR_ERR' (bsc#1012628). - net/mlx5: E-Switch, fix changing vf VLANID (bsc#1012628). - blk-mq-debugfs: Add decode for BLK_MQ_F_TAG_HCTX_SHARED (bsc#1012628). - mm: fix clear_refs_write locking (bsc#1012628). - mm: don't play games with pinned pages in clear_page_refs (bsc#1012628). - mm: don't put pinned pages into the swap cache (bsc#1012628). - perf intel-pt: Fix 'CPU too large' error (bsc#1012628). - dump_common_audit_data(): fix racy accesses to ->d_name (bsc#1012628). - ASoC: meson: axg-tdm-interface: fix loopback (bsc#1012628). - ASoC: meson: axg-tdmin: fix axg skew offset (bsc#1012628). - ASoC: Intel: fix error code cnl_set_dsp_D0() (bsc#1012628). - nvmet-rdma: Fix NULL deref when setting pi_enable and traddr INADDR_ANY (bsc#1012628). - nvme: don't intialize hwmon for discovery controllers (bsc#1012628). - nvme-tcp: fix possible data corruption with bio merges (bsc#1012628). - nvme-tcp: Fix warning with CONFIG_DEBUG_PREEMPT (bsc#1012628). - NFS4: Fix use-after-free in trace_event_raw_event_nfs4_set_lock (bsc#1012628). - pNFS: We want return-on-close to complete when evicting the inode (bsc#1012628). - pNFS: Mark layout for return if return-on-close was not sent (bsc#1012628). - pNFS: Stricter ordering of layoutget and layoutreturn (bsc#1012628). - NFS: Adjust fs_context error logging (bsc#1012628). - NFS/pNFS: Don't call pnfs_free_bucket_lseg() before removing the request (bsc#1012628). - NFS/pNFS: Don't leak DS commits in pnfs_generic_retry_commit() (bsc#1012628). - NFS/pNFS: Fix a leak of the layout 'plh_outstanding' counter (bsc#1012628). - NFS: nfs_delegation_find_inode_server must first reference the superblock (bsc#1012628). - NFS: nfs_igrab_and_active must first reference the superblock (bsc#1012628). - scsi: ufs: Fix possible power drain during system suspend (bsc#1012628). - ext4: fix superblock checksum failure when setting password salt (bsc#1012628). - RDMA/restrack: Don't treat as an error allocation ID wrapping (bsc#1012628). - RDMA/usnic: Fix memleak in find_free_vf_and_create_qp_grp (bsc#1012628). - bnxt_en: Improve stats context resource accounting with RDMA driver loaded (bsc#1012628). - RDMA/mlx5: Fix wrong free of blue flame register on error (bsc#1012628). - IB/mlx5: Fix error unwinding when set_has_smi_cap fails (bsc#1012628). - umount(2): move the flag validity checks first (bsc#1012628). - dm zoned: select CONFIG_CRC32 (bsc#1012628). - drm/i915/dsi: Use unconditional msleep for the panel_on_delay when there is no reset-deassert MIPI-sequence (bsc#1012628). - drm/i915/icl: Fix initing the DSI DSC power refcount during HW readout (bsc#1012628). - drm/i915/gt: Restore clear-residual mitigations for Ivybridge, Baytrail (bsc#1012628). - mm, slub: consider rest of partial list if acquire_slab() fails (bsc#1012628). - riscv: Trace irq on only interrupt is enabled (bsc#1012628). - iommu/vt-d: Fix unaligned addresses for intel_flush_svm_range_dev() (bsc#1012628). - net: sunrpc: interpret the return value of kstrtou32 correctly (bsc#1012628). - selftests: netfilter: Pass family parameter "-f" to conntrack tool (bsc#1012628). - dm: eliminate potential source of excessive kernel log noise (bsc#1012628). - ALSA: fireface: Fix integer overflow in transmit_midi_msg() (bsc#1012628). - ALSA: firewire-tascam: Fix integer overflow in midi_port_work() (bsc#1012628). - netfilter: conntrack: fix reading nf_conntrack_buckets (bsc#1012628). - netfilter: nf_nat: Fix memleak in nf_nat_init (bsc#1012628). - Update config files. - commit b7732a5 - Linux 5.10.8 (bsc#1012628). - powerpc/32s: Fix RTAS machine check with VMAP stack (bsc#1012628). - io_uring: synchronise IOPOLL on task_submit fail (bsc#1012628). - io_uring: limit {io|sq}poll submit locking scope (bsc#1012628). - io_uring: patch up IOPOLL overflow_flush sync (bsc#1012628). - iommu/arm-smmu-qcom: Initialize SCTLR of the bypass context (bsc#1012628). - io_uring: Fix return value from alloc_fixed_file_ref_node (bsc#1012628). - btrfs: skip unnecessary searches for xattrs when logging an inode (bsc#1012628). - btrfs: fix deadlock when cloning inline extent and low on free metadata space (bsc#1012628). - btrfs: shrink delalloc pages instead of full inodes (bsc#1012628). - net: cdc_ncm: correct overhead in delayed_ndp_size (bsc#1012628). - net: hns3: fix incorrect handling of sctp6 rss tuple (bsc#1012628). - net: hns3: fix the number of queues actually used by ARQ (bsc#1012628). - net: hns3: fix a phy loopback fail issue (bsc#1012628). - net: stmmac: dwmac-sun8i: Fix probe error handling (bsc#1012628). - net: stmmac: dwmac-sun8i: Balance internal PHY resource references (bsc#1012628). - net: stmmac: dwmac-sun8i: Balance internal PHY power (bsc#1012628). - net: stmmac: dwmac-sun8i: Balance syscon (de)initialization (bsc#1012628). - net: vlan: avoid leaks on register_vlan_dev() failures (bsc#1012628). - net/sonic: Fix some resource leaks in error handling paths (bsc#1012628). - net: bareudp: add missing error handling for bareudp_link_config() (bsc#1012628). - ptp: ptp_ines: prevent build when HAS_IOMEM is not set (bsc#1012628). - net: ipv6: fib: flush exceptions when purging route (bsc#1012628). - tools: selftests: add test for changing routes with PTMU exceptions (bsc#1012628). - net: fix pmtu check in nopmtudisc mode (bsc#1012628). - net: ip: always refragment ip defragmented packets (bsc#1012628). - chtls: Fix hardware tid leak (bsc#1012628). - chtls: Remove invalid set_tcb call (bsc#1012628). - chtls: Fix panic when route to peer not configured (bsc#1012628). - chtls: Avoid unnecessary freeing of oreq pointer (bsc#1012628). - chtls: Replace skb_dequeue with skb_peek (bsc#1012628). - chtls: Added a check to avoid NULL pointer dereference (bsc#1012628). - chtls: Fix chtls resources release sequence (bsc#1012628). - octeontx2-af: fix memory leak of lmac and lmac->name (bsc#1012628). - nexthop: Fix off-by-one error in error path (bsc#1012628). - nexthop: Unlink nexthop group entry in error path (bsc#1012628). - nexthop: Bounce NHA_GATEWAY in FDB nexthop groups (bsc#1012628). - s390/qeth: fix deadlock during recovery (bsc#1012628). - s390/qeth: fix locking for discipline setup / removal (bsc#1012628). - s390/qeth: fix L2 header access in qeth_l3_osa_features_check() (bsc#1012628). - net: dsa: lantiq_gswip: Exclude RMII from modes that report 1 GbE (bsc#1012628). - net/mlx5: Use port_num 1 instead of 0 when delete a RoCE address (bsc#1012628). - net/mlx5e: ethtool, Fix restriction of autoneg with 56G (bsc#1012628). - net/mlx5e: In skb build skip setting mark in switchdev mode (bsc#1012628). - net/mlx5: Check if lag is supported before creating one (bsc#1012628). - ionic: start queues before announcing link up (bsc#1012628). - HID: wacom: Fix memory leakage caused by kfifo_alloc (bsc#1012628). - fanotify: Fix sys_fanotify_mark() on native x86-32 (bsc#1012628). - ARM: OMAP2+: omap_device: fix idling of devices during probe (bsc#1012628). - i2c: sprd: use a specific timeout to avoid system hang up issue (bsc#1012628). - dmaengine: dw-edma: Fix use after free in dw_edma_alloc_chunk() (bsc#1012628). - selftests/bpf: Clarify build error if no vmlinux (bsc#1012628). - can: tcan4x5x: fix bittiming const, use common bittiming from m_can driver (bsc#1012628). - can: m_can: m_can_class_unregister(): remove erroneous m_can_clk_stop() (bsc#1012628). - can: kvaser_pciefd: select CONFIG_CRC32 (bsc#1012628). - spi: spi-geni-qcom: Fail new xfers if xfer/cancel/abort pending (bsc#1012628). - cpufreq: powernow-k8: pass policy rather than use cpufreq_cpu_get() (bsc#1012628). - spi: spi-geni-qcom: Fix geni_spi_isr() NULL dereference in timeout case (bsc#1012628). - spi: stm32: FIFO threshold level - fix align packet size (bsc#1012628). - i2c: i801: Fix the i2c-mux gpiod_lookup_table not being properly terminated (bsc#1012628). - i2c: mediatek: Fix apdma and i2c hand-shake timeout (bsc#1012628). - bcache: set bcache device into read-only mode for BCH_FEATURE_INCOMPAT_OBSO_LARGE_BUCKET (bsc#1012628). - interconnect: imx: Add a missing of_node_put after of_device_is_available (bsc#1012628). - interconnect: qcom: fix rpmh link failures (bsc#1012628). - dmaengine: mediatek: mtk-hsdma: Fix a resource leak in the error handling path of the probe function (bsc#1012628). - dmaengine: milbeaut-xdmac: Fix a resource leak in the error handling path of the probe function (bsc#1012628). - dmaengine: xilinx_dma: check dma_async_device_register return value (bsc#1012628). - dmaengine: xilinx_dma: fix incompatible param warning in _child_probe() (bsc#1012628). - dmaengine: xilinx_dma: fix mixed_enum_type coverity warning (bsc#1012628). - arm64: mm: Fix ARCH_LOW_ADDRESS_LIMIT when !CONFIG_ZONE_DMA (bsc#1012628). - qed: select CONFIG_CRC32 (bsc#1012628). - phy: dp83640: select CONFIG_CRC32 (bsc#1012628). - wil6210: select CONFIG_CRC32 (bsc#1012628). - block: rsxx: select CONFIG_CRC32 (bsc#1012628). - lightnvm: select CONFIG_CRC32 (bsc#1012628). - zonefs: select CONFIG_CRC32 (bsc#1012628). - iommu/vt-d: Fix misuse of ALIGN in qi_flush_piotlb() (bsc#1012628). - iommu/intel: Fix memleak in intel_irq_remapping_alloc (bsc#1012628). - bpftool: Fix compilation failure for net.o with older glibc (bsc#1012628). - nvme-tcp: Fix possible race of io_work and direct send (bsc#1012628). - net/mlx5e: Fix memleak in mlx5e_create_l2_table_groups (bsc#1012628). - net/mlx5e: Fix two double free cases (bsc#1012628). - regmap: debugfs: Fix a memory leak when calling regmap_attach_dev (bsc#1012628). - wan: ds26522: select CONFIG_BITREVERSE (bsc#1012628). - arm64: cpufeature: remove non-exist CONFIG_KVM_ARM_HOST (bsc#1012628). - regulator: qcom-rpmh-regulator: correct hfsmps515 definition (bsc#1012628). - net: mvpp2: disable force link UP during port init procedure (bsc#1012628). - drm/i915/dp: Track pm_qos per connector (bsc#1012628). - net: mvneta: fix error message when MTU too large for XDP (bsc#1012628). - selftests: fib_nexthops: Fix wrong mausezahn invocation (bsc#1012628). - KVM: arm64: Don't access PMCR_EL0 when no PMU is available (bsc#1012628). - xsk: Fix race in SKB mode transmit with shared cq (bsc#1012628). - xsk: Rollback reservation at NETDEV_TX_BUSY (bsc#1012628). - block/rnbd-clt: avoid module unload race with close confirmation (bsc#1012628). - can: isotp: isotp_getname(): fix kernel information leak (bsc#1012628). - block: fix use-after-free in disk_part_iter_next (bsc#1012628). - net: drop bogus skb with CHECKSUM_PARTIAL and offset beyond end of trimmed packet (bsc#1012628). - regmap: debugfs: Fix a reversed if statement in regmap_debugfs_init() (bsc#1012628). - tools headers UAPI: Sync linux/fscrypt.h with the kernel sources (bsc#1012628). - Update config files. - commit 8611168 ==== kinfocenter5 ==== - Add support for qml-autoreqprov ==== kscreen5 ==== - Compatibility with qml-autoreqprov ==== kwin5 ==== - Add compatibility with qml-autoreqprov ==== libblockdev ==== Version update (2.24 -> 2.25) Subpackages: libbd_crypto2 libbd_fs2 libbd_loop2 libbd_mdraid2 libbd_part2 libbd_swap2 libbd_utils2 libblockdev2 - update to 2.25: * exec: Fix polling for stdout and stderr * exec: Use non-blocking read and process the buffer manually * exec: Clarify the BDUtilsProgExtract callback documentation * tests: Add bufferbloat exec tests * tests: Add null-byte exec tests * lvm: Fix bd_lvm_vdopooldata_* symbols * exec: Fix setting locale for util calls * fs: Do not report error when errors were fixed by e2fsck * README: Use CI status image for 2.x-branch on 2.x * fs: Fix compile error in ext_repair caused by cherry pick from master * Mark all GIR file constants as guint64 * lvm: Set thin metadata limits to match limits LVM uses in lvcreate * lvm: Do not use thin_metadata_size to recommend thin metadata size * lvm: Use the UNUSED macro instead of __attribute__((unused)) * Fix max size limit for LVM thinpool metadata * loop: Retry LOOP_SET_STATUS64 on EAGAIN ==== libcap ==== Version update (2.44 -> 2.46) - update to 2.46: * The bulk of this release concerns fixes and improvements to libpsx * Fix the capsh == argument handling and add a test case * Added build support for systems that do not support libpthread * Added build support for not building shared libraries ==== libfido2 ==== Version update (1.5.0 -> 1.6.0) Subpackages: libfido2-1 libfido2-udev - Update to version 1.6.0: * Fix OpenSSL 1.0 and Cygwin builds. * hid_linux: fix build on 32-bit systems. * hid_osx: allow reads from spawned threads. * Documentation and reliability fixes. * New API calls: + fido_cred_authdata_raw_len; + fido_cred_authdata_raw_ptr; + fido_cred_sigcount; + fido_dev_get_uv_retry_count; + fido_dev_supports_credman. * Hardened Windows build. * Native FreeBSD and NetBSD support. * Use CTAP2 canonical CBOR when combining hmac-secret and credProtect. - Drop 7a17a4e9127fb6df6278f19396760e7d60a5862c.patch - Do not build examples as their build fails ==== libqt5-qtmultimedia ==== - Add compatibility with qml-autoreqprov ==== libqt5-qtquickcontrols ==== - Add compatibility with qml-autoreqprov - Add patch to fix unfullfillable import: * fix-handle-deps.patch ==== libqt5-qtquickcontrols2 ==== Subpackages: libQt5QuickControls2-5 libQt5QuickTemplates2-5 - Add compatibility with qml-autoreqprov ==== libqt5-qtsensors ==== - Add compatibility with qml-autoreqprov ==== libqt5-qtwayland ==== Subpackages: libQt5WaylandClient5 libQt5WaylandCompositor5 - Add compatibility with qml-autoreqprov ==== libxkbcommon ==== Subpackages: libxkbcommon-x11-0 libxkbcommon0 - Fix dependency of libxkbregistry-devel: the devel package must require the library libxkbregistry0. ==== milou5 ==== - Backport upstream MR to avoid unfullfillable qmlimport requires ==== ncurses ==== Version update (6.2.20210109 -> 6.2.20210116) Subpackages: libncurses6 ncurses-utils terminfo-base - Don't skip test for qemu builds - Add ncurses patch 20210116 + add comment for linux2.6 regarding CONFIG_CONSOLE_TRANSLATIONS (report by Patrick McDermott) -TD + make opts extension for getcchar work as documented for ncurses 6.1, adding "-g" flag to test/demo_new_pair to illustrate. ==== open-vm-tools ==== Version update (11.2.0 -> 11.2.5) Subpackages: libvmtools0 - Update to 11.2.5 (build 17337674) (boo#1180997) + Resolved issues: - The SUSE specific vmtoolsd PAM configuration file incorrectly referenced pam_securetty.so. - The following issues and pull requests reported on https://github.com/vmware/open-vm-tools have been addressed: https://github.com/vmware/open-vm-tools/issues/467 https://github.com/vmware/open-vm-tools/issues/468 https://github.com/vmware/open-vm-tools/pull/469 - A number of Coverity reported errors and false positives have been addressed. - A complete list of the granular changes that are in the open-vm-tools 11.2.5 release is available at: https://github.com/vmware/open-vm-tools/blob/stable-11.2.5/open-vm-tools/Ch… - Update pam-vmtoolsd.patch: With the pam_securetty.so entry fixed, only need the modified Makefile.am portion of the patch which copies the suse file to the /etc/pam.d/vmtoolsd file rather than the default generic file. ==== openssh ==== Subpackages: openssh-clients openssh-common openssh-server - Add openssh-fix-ssh-copy-id.patch, which fixes breakage introduced in 8.4p1 (bsc#1181311). - Improve robustness of sshd init detection when upgrading from a pre-systemd distribution. - Add openssh-reenable-dh-group14-sha1-default.patch, which adds diffie-hellman-group14-sha1 key exchange back to the default list (bsc#1180958). This is needed for backwards compatibility with older platforms. - Make sure sshd is enabled correctly when upgrading from a pre-systemd distribution (bsc#1180083). ==== pango ==== Version update (1.48.0 -> 1.48.1) Subpackages: libpango-1_0-0 typelib-1_0-Pango-1_0 - Update to version 1.48.1: + Fix itemization of multi-paragraph layouts. + Fix a few memory leaks. + Fix glyph origins in vertical layout. ==== plasma5-desktop ==== - Add support for qml-autoreqprov ==== python-pyserial ==== Version update (3.4 -> 3.5) - update to version 3.5: New Features: [#411] Add a backend for Silicon Labs CP2110/4 HID-to-UART bridge. (depends on hid module) Improvements: [#315] Use absolute import everywhere [#354] Make ListPortInfo hashable [#372] threaded: "write" returns byte count [#400] Add bytesize and stopbits argument parser to tcp_serial_redirect [#408] loop: add out_waiting [#495] list_ports_linux: Correct "interface" property on Linux hosts [#500] Remove Python 3.2 and 3.3 from test [#261, #285, #296, #320, #333, #342, #356, #358, #389, #397, #510] doc updates miniterm: add CTRL+T Q as alternative to exit miniterm: suspend function key changed to CTRL-T Z add command line tool entries pyserial-miniterm (replaces miniterm.py) and pyserial-ports (runs serial.tools.list_ports). python -m serial opens miniterm (use w/o args and it will print port list too) [experimental] Bugfixes: [#371] Don't open port if self.port is not set while entering context manager [#437, #502] refactor: raise new instances for PortNotOpenError and SerialTimeoutException [#261, #263] list_ports: set default name attribute [#286] fix: compare only of the same type in list_ports_common.ListPortInfo rfc2217/close(): fix race-condition [#305] return b'' when connection closes on rfc2217 connection [#386] rfc2217/close(): fix race condition Fixed flush_input_buffer() for situations where the remote end has closed the socket. [#441] reset_input_buffer() can hang on sockets examples: port_publisher python 3 fixes [#324] miniterm: Fix miniterm constructor exit_character and menu_character [#326] miniterm: use exclusive access for native serial ports by default [#497] miniterm: fix double use of CTRL-T + s use z for suspend instead [#443, #444] examples: refactor wx example, use Bind to avoid deprecated warnings, IsChecked, unichr [#265] posix: fix PosixPollSerial with timeout=None and add cancel support [#290] option for low latency mode on linux [#335] Add support to xr-usb-serial ports [#494] posix: Don't catch the SerialException we just raised [#519] posix: Fix custom baud rate to not temporarily set 38400 baud rates on linux [#509 #518] list_ports: use hardcoded path to library on osx [#542] list_ports_osx: kIOMasterPortDefault no longer exported on Big Sur [#545, #545] list_ports_osx: getting USB info on BigSur/AppleSilicon ==== python-setuptools ==== - We cannot remove vendored packages when generating setuptools wheel (bsc#1177127). ==== shared-mime-info ==== Version update (2.0 -> 2.1) - update to 2.1: * New maintainers: David Faure and Ville Skyttä * Adapt to xdgmime behaviour change: in case of multiple glob matches, and the magic match is unrelated to all of them, ignore the magic and pick one of the glob matches. xdgmime was actually deviating from the spec on this. (#138) * Improve text/vnd.trolltech.linguist magic to reduce false positives for MPEG TS files (#10) * audio/mpeg: add layer 2, 2.5, and 1 protected magics (#46) * Add many aliases for image/x-tga * audio/x-mod: improve magic for 669 Composer files (#144) * Add mime-type image/ktx2 (Khronos image texture format version 2) * application/oxps: differentiate from /vnd.ms-xpsdocument * Make image/g3fax the canonical name for image/fax-g3 * Make text/vnd.trolltech.linguist the canonical name for text/vnd.qt.linguist * Make application/vnd.smaf the canonical name for application/x-smaf * Make application/vnd.apple.keynote the canonical name for application/x-iwork-keynote-sffkey * Add mime-type image/astc (Adaptive Scalable Texture Compression files) * Add mime-type for SageMath script files (*.sage) * Add mime-type for Kaitai Struct * Remove application/x-dc-rom * Add mime-type for MAME compressed hard disk image (application/x-mame-chd) * Add mime-types application/nintendo-3ds-executable, application/x-nintendo-3ds-rom * Add mime-types application/x-dreamcast-rom, application/x-gd-rom-cue, application/x-discjuggler-cd-image * Add mime-type application/x-compressed-iso (*.cso) * Remove image/avif-sequence * Fix application/x-sharedlib vs application/x-executable confusion for PIE executables (#11) - drop smi-Fix-pkg-config-installation-path.patch (obsolete) ==== sord ==== Version update (0.16.6 -> 0.16.8) - update to 0.16.8: * Clean up code * Fix potential undefined behavior * Fix potentially incorrect search results * Remove the need for a generated configuration header ==== systemsettings5 ==== - Add QML provides ==== tar ==== Version update (1.32 -> 1.33) - GNU tar 1.33: * POSIX extended format headers do not include PID by default * --delay-directory-restore works for archives with reversed member ordering * Fix extraction of a symbolic link hardlinked to another symbolic link * Wildcards in exclude-vcs-ignore mode don't match slash * Fix the --no-overwrite-dir option * Fix handling of chained renames in incremental backups * Link counting works for file names supplied with -T * Accept only position-sensitive (file-selection) options in file list files - remove deprecated texinfo packaging macros ==== toolbox ==== Version update (1.0+git20201126.3d26283 -> 1.0+git20210119.b5acdcf) - Add a group tag for SLE Micro - Mark toolboxrc as %config and add it is Source - Update to version 1.0+git20210119.b5acdcf: * Dynamically set REGISTRY and IMAGE (#11) ==== webkit2gtk3 ==== Subpackages: libjavascriptcoregtk-4_0-18 libwebkit2gtk-4_0-37 webkit2gtk-4_0-injected-bundles - Add webkit-font-scaling.patch: Fix system font scaling not applied to 'font-size: XXXpt'; patch taken from upstream and rebased to apply cleanly (https://bugs.webkit.org/show_bug.cgi?id=218450). - Pass `-q` to setup to disable printing long list of files extracted from source tarball. ==== xdg-desktop-portal-kde ==== - Add compatibility with qml-autoreqprov ==== xen ==== Version update (4.14.1_05 -> 4.14.1_08) - bsc#1181254 - VUL-0: xen: IRQ vector leak on x86 (XSA-360) xsa360.patch - bsc#1180794 - bogus qemu binary path used when creating fv guest under xen xen.spec - bsc#1180690 - L3-Question: xen: no needsreboot flag set Add Provides: installhint(reboot-needed) in xen.spec for libzypp ==== xfsprogs ==== Version update (5.9.0 -> 5.10.0) - update to 5.10.0: - xfs_repair: remove old code for mountpoint inodes - xfsprogs: Add inode btree counter feature - xfsprogs: Add bigtime feature for Y2038 - xfsprogs: Polish translation update - mkfs.xfs: Add config file feature - mkfs.xfs: allow users to specify rtinherit=0 - xfs_repair: simplify bmap_next_offset - man: various manpage updates - libxfs: remove some old dead code - libxfs: add realtime extent tracking - libxfs changes merged from kernel 5.10 - refresh 0001-repair-shift-inode-back-into-place-if-corrupted-by-b.patch against libxfs changes

1 month, 1 week

1
0
0 0

2021

2020

2019

2018

openSUSE Kubic January 2021