February 2021 - openSUSE Kubic - openSUSE Mailing Lists

COW/noCOW on MicroOS Desktop /home subvolume
by Dario Faggioli 23 Mar '21

23 Mar '21

Hello, I've finally had the chance to put in a VM an instance of MicroOS Desktop with the new partition layout and. IMO, the fact that it has /var in a (nocow) subvolume is really a big improvement, so thanks Richard for that! We have /home in a subvolume too, which is also great, and it as well has the nocow flag set. I know this mostly come from a conversation we had on #microos-desktop on IRC but thinking more about that, and discussing this with some users, I wonder whether it is really the best choice. I mean, it sure is ok for /var, but for /home, using nocow means that we give up on some of the nicer BTRFS features, especially for home folders, wouldn't it? That might be especially true for MicroOS Desktop. E.g., think at being able to compress (if not the entire home directories or the entire subvolume) the user installed flatpaks (and using that as an argument "against" those that are still complaining that <Ah, but flatpaks takes a lot of space on disk!>> :-D). So, are there reasons why it's really preferable to keep the /home subvolume as nocow and I'm missing them? Or shall we switch it to cow? Also, while there, shall we evaluate adding other flags by default (i.e., things like autodefrag, or even compression itself)? E.g., AFAIUI, on Fedora, while not doing that right now, they're considering doing something like that, e.g.: https://pagure.io/fedora-btrfs/project/issue/5 Regards -- Dario Faggioli, Ph.D http://about.me/dario.faggioli Virtualization Software Engineer SUSE Labs, SUSE https://www.suse.com/ ------------------------------------------------------------------- <<This happens because _I_ choose it to happen!>> (Raistlin Majere)

3 4

[opensuse-kubic] MicroOS error when setting container memory limit
by Sébastien 'sogal' Poher 11 Mar '21

11 Mar '21

Hi, On a fresh MicroOS install with podman, when I want to set memory limit for a container (using the -m flag) I get the following error: Error: container_linux.go:367: starting container process caused: process_linux.go:459: container init caused: process_linux.go:422: setting cgroup config for procHooks process caused: cannot set memory limit: container could not join or create cgroup: OCI runtime error I am not able to understand the nature of the error. Searching around, I found similar issue where adding cgroup_enable=memory parameter to boot settings in Grub might solve the issue. Is that correct ? If so, what is the proper way to update Grub config on a RO filesystem ? podman version 2.0.4 podman info (ociRuntime part): ociRuntime: name: runc package: runc-1.0.0~rc91-1.2.x86_64 path: /usr/bin/runc version: |- runc version 1.0.0-rc91 spec: 1.0.2-dev Regards, -- Sébastien 'sogal' Poher > When there's no more room at school, the dumb will walk the Earth!

5 10

Error during "kubeadm init": failed to pull image registry.opensuse.org/kubic/xxx: output: Error response from daemon: manifest unknown
by Johannes Kastl 04 Mar '21

04 Mar '21

Hi all, sorry for asking here, but I guess there are more kubeadm experts than on other lists. I was just preparing a test setup of Kubernetes on openSUSE Leap 15.2 and noticed some errors: 1. Install patterns-containers-kubeadm 2. reboot 3. enable kubelet.service 4. run "kubeadm init ..." and get an error as no runtime is found 5. enable and start either docker.service or crio.service 6. re-reun "kubeadm init..." 7. Failure (see below) According to this issue at docker/hub it is a problem with tags missing on the images/registry. Any idea where to start? How to modify which containers are used? I started grepping through the system but even if I found the lines to what versions should I change them? Kind Regards, Johannes **docker**: ``` > # kubeadm init --pod-network-cidr=10.244.0.0/16 --apiserver-cert-extra-sans=81.163.192.187 > I0227 19:03:51.388635 1950 version.go:252] remote version is much newer: 1.20.2; falling back to: stable-1.18 > W0227 19:03:56.443331 1950 configset.go:202] WARNING: kubeadm cannot validate component configs for API groups [kubelet.config.k8s.io kubeproxy.config.k8s.io] > [init] Using Kubernetes version: v1.18.14 > [preflight] Running pre-flight checks > [WARNING IsDockerSystemdCheck]: detected "cgroupfs" as the Docker cgroup driver. The recommended driver is "systemd". Please follow the guide at https://kubernetes.io/docs/setup/cri/ > [preflight] Pulling images required for setting up a Kubernetes cluster > [preflight] This might take a minute or two, depending on the speed of your internet connection > [preflight] You can also perform this action in beforehand using 'kubeadm config images pull' > > > error execution phase preflight: [preflight] Some fatal errors occurred: > [ERROR ImagePull]: failed to pull image registry.opensuse.org/kubic/kube-apiserver:v1.18.14: output: Error response from daemon: manifest unknown > , error: exit status 1 > [ERROR ImagePull]: failed to pull image registry.opensuse.org/kubic/kube-controller-manager:v1.18.14: output: Error response from daemon: manifest unknown > , error: exit status 1 > [ERROR ImagePull]: failed to pull image registry.opensuse.org/kubic/kube-scheduler:v1.18.14: output: Error response from daemon: manifest unknown > , error: exit status 1 > [ERROR ImagePull]: failed to pull image registry.opensuse.org/kubic/kube-proxy:v1.18.14: output: Error response from daemon: manifest unknown > , error: exit status 1 > [ERROR ImagePull]: failed to pull image registry.opensuse.org/kubic/etcd:3.4.3-0: output: Error response from daemon: manifest unknown > , error: exit status 1 > [ERROR ImagePull]: failed to pull image registry.opensuse.org/kubic/coredns:1.6.7: output: Error response from daemon: manifest unknown > , error: exit status 1 > [preflight] If you know what you are doing, you can make a check non-fatal with `--ignore-preflight-errors=...` > To see the stack trace of this error execute with --v=5 or higher ``` **crio**: ``` > # kubeadm init --pod-network-cidr=10.244.0.0/16 --apiserver-cert-extra-sans=81.163.192.187 > I0227 19:24:42.148453 2041 version.go:252] remote version is much newer: 1.20.2; falling back to: stable-1.18 > W0227 19:24:42.202269 2041 configset.go:202] WARNING: kubeadm cannot validate component configs for API groups [kubelet.config.k8s.io kubeproxy.config.k8s.io] > [init] Using Kubernetes version: v1.18.14 > [preflight] Running pre-flight checks > [preflight] Pulling images required for setting up a Kubernetes cluster > [preflight] This might take a minute or two, depending on the speed of your internet connection > [preflight] You can also perform this action in beforehand using 'kubeadm config images pull' > error execution phase preflight: [preflight] Some fatal errors occurred: > [ERROR ImagePull]: failed to pull image registry.opensuse.org/kubic/kube-apiserver:v1.18.14: output: time="2021-02-27T19:24:44Z" level=fatal msg="pulling image failed: rpc error: code = Unknown desc = Error reading manifest v1.18.14 in registry.opensuse.org/kubic/kube-apiserver: manifest unknown" > , error: exit status 1 > [ERROR ImagePull]: failed to pull image registry.opensuse.org/kubic/kube-controller-manager:v1.18.14: output: time="2021-02-27T19:24:45Z" level=fatal msg="pulling image failed: rpc error: code = Unknown desc = Error reading manifest v1.18.14 in registry.opensuse.org/kubic/kube-controller-manager: manifest unknown" > , error: exit status 1 > [ERROR ImagePull]: failed to pull image registry.opensuse.org/kubic/kube-scheduler:v1.18.14: output: time="2021-02-27T19:24:46Z" level=fatal msg="pulling image failed: rpc error: code = Unknown desc = Error reading manifest v1.18.14 in registry.opensuse.org/kubic/kube-scheduler: manifest unknown" > , error: exit status 1 > [ERROR ImagePull]: failed to pull image registry.opensuse.org/kubic/kube-proxy:v1.18.14: output: time="2021-02-27T19:24:47Z" level=fatal msg="pulling image failed: rpc error: code = Unknown desc = Error reading manifest v1.18.14 in registry.opensuse.org/kubic/kube-proxy: manifest unknown" > , error: exit status 1 > [ERROR ImagePull]: failed to pull image registry.opensuse.org/kubic/etcd:3.4.3-0: output: time="2021-02-27T19:24:50Z" level=fatal msg="pulling image failed: rpc error: code = Unknown desc = Error reading manifest 3.4.3-0 in registry.opensuse.org/kubic/etcd: manifest unknown" > , error: exit status 1 > [ERROR ImagePull]: failed to pull image registry.opensuse.org/kubic/coredns:1.6.7: output: time="2021-02-27T19:24:51Z" level=fatal msg="pulling image failed: rpc error: code = Unknown desc = Error reading manifest 1.6.7 in registry.opensuse.org/kubic/coredns: manifest unknown" > , error: exit status 1 > [preflight] If you know what you are doing, you can make a check non-fatal with `--ignore-preflight-errors=...` > To see the stack trace of this error execute with --v=5 or higher ``` -- Johannes Kastl Linux Consultant & Trainer Tel.: +49 (0) 151 2372 5802 Mail: kastl(a)b1-systems.de B1 Systems GmbH Osterfeldstraße 7 / 85088 Vohburg http://www.b1-systems.de GF: Ralph Dehner Unternehmenssitz: Vohburg / AG: Ingolstadt,HRB 3537

2 6

kube-proxy ImagePullBackOff: kube-proxy:v1.19.4 image not present
by Robert Munteanu 03 Mar '21

03 Mar '21

Hi, I noticed that one of the nodes in my kubic cluster is limping, with the root cause being a failing kube-proxy pod. kube-system kube-proxy-p4ljp 0/1 ImagePullBackOff 0 97d 10.25.0.43 kubic- worker-1 <none> <none> The root cause seems to be Normal BackOff 19m (x11214 over 42h) kubelet Back-off pulling image "registry.opensuse.org/kubic/kube-proxy:v1.19.4" The other nodes seem to work fine, and I assume they have the images in the kubelet cache. All nodes are at version 1.19.7 $ kubectl get node NAME STATUS ROLES AGE VERSION kubic-master-1 Ready master 97d v1.19.7 kubic-worker-1 Ready <none> 97d v1.19.7 kubic-worker-2 Ready <none> 97d v1.19.7 I could edit the DaemonSet manually, but I like the kubic unattended updates too much and would like to understand the contract related to minor version updates. Should I file a bug or is this expected behaviour? Thanks, Robert

4 9

New packages libkrun, libkrunfw and krunvm for super-lightweigth virtualization and virtualization hardened containers
by Dario Faggioli 27 Feb '21

27 Feb '21

Hello, I'm about to submit two factory 3 packages, from the Virtualization Devel project: - libkrunfw https://build.opensuse.org/package/show/Virtualization/libkrunfw - libkrun https://build.opensuse.org/package/show/Virtualization/libkrun - krunvm https://build.opensuse.org/package/show/Virtualization/krunvm Libkrun is the key and the heart of everything. It's a library that enable a (OCI) runtime to start the environments that such runtimes usually handles (read: containers) inside a super-lightweight virtual machine (using KVM underneath, of course). If you're familiar with KataContainers, well, it's similar... but all done in a library, which makes things smaller and faster (at least potentially, as the project is still in early stage of development and performance is not a goal yet). This is already possible, with krunvm, which is basically a CLI for libkrun, that allows you to create lightweight VMs out of OCI images. Watch this: $ cat /etc/os-release NAME="openSUSE Tumbleweed" ID="opensuse-tumbleweed" ID_LIKE="opensuse suse" VERSION_ID="20210223" [...] $ uname -a Linux Solace 5.10.16-1-default #1 SMP Sat Feb 13 16:20:19 UTC 2021 (11381f3) x86_64 x86_64 x86_64 GNU/Linux Now, if I do: $ sudo krunvm create opensuse/leap --name leap Resolving "opensuse/leap" using unqualified-search registries (/etc/containers/registries.conf) Getting image source signatures Copying blob 99b65196a7ec done [...] Lightweight VM created with name: leap $ sudo krunvm list leap CPUs: 2 RAM (MiB): 1024 DNS server: 1.1.1.1 Buildah container: leap-working-container Workdir: /root Mapped volumes: {} Mapped ports: {} $ sudo krunvm start leap sh-4.4# cat /etc/os-release NAME="openSUSE Leap" VERSION="15.2" ID="opensuse-leap" ID_LIKE="suse opensuse" VERSION_ID="15.2" sh-4.4# uname -a Linux leap 5.10.10 #1 SMP Fri Feb 26 08:27:43 UTC 2021 x86_64 x86_64 x86_64 GNU/Linux And you can tell that it's a VM from --among other things-- the fact that the kernels (see the two `uname -a`) are different! In this example, I used `sudo`, but it does work rootless as well, like this (for now): $ buildah unshare Solace:~ # krunvm create ubuntu --name ubu Solace:~ # krunvm start ubu # apt-get update Hit:1 http://archive.ubuntu.com/ubuntu focal InRelease Get:2 http://archive.ubuntu.com/ubuntu focal-updates InRelease [114 kB] Get:3 http://security.ubuntu.com/ubuntu focal-security InRelease [109 kB] [...] Get:5 http://archive.ubuntu.com/ubuntu focal-updates/universe amd64 Packages [934 kB] Fetched 1257 kB in 3s (423 kB/s) Reading package lists... Done # ^D Solace:~ # exit $ And yes, as you see from the above example where I used apt, networking works (limited to IPv4-TCP, for now... because as I said it's early!) with zero configuration. And of course it supports bind mounting pieces of the host filesystem as well (and also with zero config needed). Note also that the crun OCI runtime already has support for libkrun, and that podman can work on top of crun. Therefore, we could one day have podman containers running as lightweight VMs! We could one day have toolbox containers (which is why I'm cross- posting to Kubic) running as lightweight VMs!! Sure, we need to have crun for that, which I don't think we do right now. But, baby steps. :-) The third package, libkrunfw, is basically where the kernel of the lightweight VM lives. Now, ideally, we would pick-up our kernel-source package, apply patches and configuration, ad build libkrunfw from it. However, this is currently not possible, due to the dependency of some of the needed patches on a specific kernel-version. We do intend, however, to fix this as soon as possible. Libkrun and krunvm are available already in Fedora, via Copr and on MacOS-aarch64 (the so-called M1). You can find more about the project at the following links: https://github.com/containers/libkrun https://github.com/containers/krunvm https://news.ycombinator.com/item?id=25939995 https://static.sched.com/hosted_files/devconfcz2021/b9/libkrun%20Virtuailza… Regards -- Dario Faggioli, Ph.D http://about.me/dario.faggioli Virtualization Software Engineer SUSE Labs, SUSE https://www.suse.com/ ------------------------------------------------------------------- <<This happens because _I_ choose it to happen!>> (Raistlin Majere)

1 2

New MicroOS snapshot 20210223 released!
by Richard Brown 26 Feb '21

26 Feb '21

Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: AppStream (0.13.1 -> 0.14.1) e2fsprogs (1.45.6 -> 1.46.1) glibc gnome-control-center (3.38.3 -> 3.38.4) grub2 kernel-firmware libgcrypt (1.9.1 -> 1.9.2) libsolv (0.7.16 -> 0.7.17) libzypp (17.25.6 -> 17.25.7) milou5 plasma5-openSUSE plasma5-workspace ucode-intel (20201118 -> 20210216) zbar (0.23.1 -> 0.23.90) === Details === ==== AppStream ==== Version update (0.13.1 -> 0.14.1) Subpackages: libAppStreamQt2 libappstream4 - Update to version 0.14.1: + Features: - Switch back from Soup to cURL for HTTP(S). - validator: Check a few more things on requires/recommends items. - Only download the first bytes of a file when checking URLs for validity. + Specification: spec: Officially mark <mimetypes/> tag as deprecated. + Bugfixes: - qt: Return better errors in AppStream::Metadata. - Do not automatically clean up errors that will be propagated. - Remove overall extern "C" to make very new (2.67+) GLib versions happy. - ascli: Don?t use GNU C extension type names. - build: Use c11 rather than gnu11 and define vendor extensions separately. - Changes from version 0.14.0: + Features: - news-to-metainfo: Interpret placeholder release dates as denoting a dev version. - Make as_utils_build_data_id public API. - Add AsReview for attaching user reviews to software components. - Add a branch element to component data-IDs. - utils: Add data-ID hashing and matching functions. - utils: Make as_gstring_replace public API. - Add branch info to on-disk cached components. - content-rating: Add as_content_rating_add_attribute API. - Rename INPUTMETHOD component kind enum to INPUT_METHOD. - Add "cabinet" bundle type for firmware deployments. - Make AsTokenMatch public API. - Add function to AsScreenshot to get image closest to preferred size. - Allow AsComponent to directly ingest desktop-entry data. - Make as_pool_build_search_tokens API public. - Add "origin" token match. - Make as_component_add_provided_item API public. - Add some useful image dimension constants. - compose: Add blur function from asglib. - Add more efficient load_from_bytes method to AsComponent. + Updated translations. - Drop fix-build-gcc7.patch: no longer applicable. - Replace pkgconfig(libsoup-2.4) with pkgconfig(libcurl) BuildRequires: follow upstreams switch back to cURL. ==== e2fsprogs ==== Version update (1.45.6 -> 1.46.1) Subpackages: libcom_err2 libext2fs2 - Remove autoreconf (and resulting dependencies) from the spec file. The upstream configure script should be fine. - Update to 1.46.1: * Fix setting extended attributes in libext2fs and debugfs * Fix e2fsck to accept large_dir directories greater than 4G * Fix fast commit support on big endian architectures * Fix mke2fs -d to correctly import a small file stored using inline_data feature and which has ACL or extended attribute * Various compilation fixes * Speedup bitmap loading for large filesystems using multiple threads * Speedup mke2fs for bigalloc filesystems * E2fsck fixes when rehashing directories * Fix e2fsck crashes on maliciously corrupted filesystems * Fix e2fsck handling of duplicated case-folded file names * Implement hashed directory support in libext2fs * Support for fast commit feature * Support for combination of casefolding and encryption * Support for stable inodes feature * Add support for per-inode DAX flag * Fix tune2fs to unlock MMP on failure * Fix e2fsck buffer overflow when scanning directory blocks * Fix resize2fs overflowing block group descriptors with 1k block size - delete e2fsprogs-1.45.2-gettext.patch - it was merged upstream - Add autoconf-archive to build requirements - Fix installation of info files for older distros ==== glibc ==== Subpackages: glibc-locale glibc-locale-base - Prepare for usrmerge (bsc#1029961) - Add --enable-memory-tagging for aarch64 ==== gnome-control-center ==== Version update (3.38.3 -> 3.38.4) Subpackages: gnome-control-center-goa - Update to version 3.38.4: + User Accounts: - Properly handle claiming errors if we're already claiming. - Always call EnrollStop on enrollment complete. + Updated translations. ==== grub2 ==== Subpackages: grub2-i386-pc grub2-snapper-plugin grub2-x86_64-efi - Fix build error in binutils 2.36 (bsc#1181741) * 0001-Fix-build-error-in-binutils-2.36.patch - Fix executable stack in grub-emu (bsc#1181696) * 0001-emu-fix-executable-stack-marking.patch - Restore compatibilty sym-links * grub2.spec - Use rpmlintrc to filter out rpmlint 2.0 error (bsc#1179044) * grub2.rpmlintrc ==== kernel-firmware ==== Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network ucode-amd - Correct the RPi4 brcm config to recover the WiFi breakage (bsc#1182320): Revert-brcm-rpi4-boardflags3-bit.patch ==== libgcrypt ==== Version update (1.9.1 -> 1.9.2) - libgcrypt 1.9.2: * Fix building with --disable-asm on x86 * Check public key for ECDSA verify operation * Make sure gcry_get_config (NULL) returns a nul-terminated string * Fix a memory leak in the ECDH code * Fix a reading beyond end of input buffer in SHA2-avx2 - remove obsolete texinfo packaging macros ==== libsolv ==== Version update (0.7.16 -> 0.7.17) - repo_write: fix handling of nested flexarray - improve choicerule generation a bit more to cover more cases - harden testcase parser against repos being added too late - support python-3.10 - check %_dbpath macro in rpmdb code - handle default/visible/langonly attributes in comps parser - support multiple collections in updateinfo parser - add '-D' option in rpmdb2solv to set the dbpath - bump version to 0.7.17 ==== libzypp ==== Version update (17.25.6 -> 17.25.7) - Patch: Identify well-known category names (bsc#117984) This allows to use the RH and SUSE patch categrory names synonymously: (recommendedi = bugfix) and (optional = feature = enhancement). - Add missing includes for GCC 11 compatibility. - Fix %posttrans script execution (fixes #265) The scripts are execuable. No need to call them through 'sh -c'. - Commit: Fix rpmdb compat symlink in case rpm got removed. - Repo: Allow multiple baseurls specified on one line (fixes #285) - Regex: Fix memory leak and undefined behavior. - Add rpm buildrequires for test suite (fixes #279) - Use rpmdb2solv new -D switch to tell the location ob the rpmdatabase to use. - BuildRequires: libsolv-devel >= 0.7.17. - version 17.25.7 (22) ==== milou5 ==== - Add patch to avoid empty queries, which causes runners to misbehave: * 0001-Fix-launching-empty-query.patch ==== plasma5-openSUSE ==== Subpackages: plasma5-defaults-openSUSE plasma5-theme-openSUSE sddm-theme-openSUSE - Drop update_diffs.sh, broken and unused ==== plasma5-workspace ==== Subpackages: gmenudbusmenuproxy plasma5-session plasma5-session-wayland plasma5-workspace-libs xembedsniproxy - Add patch to fix krunner crash caused by mismatched quotes: * 0001-locations-runner-Fix-empty-list-on-invalid-shell-quo.patch - Add patch to fix starting applications with arguments from krunner (kde#433053): * 0001-locations-runner-Fix-absolute-filepath-arguments.patch - Add patch to fix race on logout (kde#432460): * 0001-libkworkspace-Interim-fix-for-the-logout-issue.patch ==== ucode-intel ==== Version update (20201118 -> 20210216) - Updated Intel CPU Microcode to 20210216 official release. (bsc#1182347 bsc#1179224) | Processor | Stepping | F-M-S/PI | Old Ver | New Ver | Products |:---------------|:---------|:------------|:---------|:---------|:--------- | SKX-SP | H0/M0/U0 | 06-55-04/b7 | 02006a08 | 02006a0a | Xeon Scalable | SKX-D | M1 | 06-55-04/b7 | 02006a08 | 02006a0a | Xeon D-21xx | CLX-SP | B0 | 06-55-06/bf | 04003003 | 04003006 | Xeon Scalable Gen2 | CLX-SP | B1 | 06-55-07/bf | 05003003 | 05003006 | Xeon Scalable Gen2 ==== zbar ==== Version update (0.23.1 -> 0.23.90) - Update to version 0.23.90 * Fixed several issues with configure.ac, making it auto-detect most things, when possible * Fixed some build issues * Make it compatible with Python 3.9 * Fixed some Python 3.9 and Qt5 warnings * Typo fixes * Several fixes at zbarcam * zbarimg: fix stderr output when symbols are found - Drop 0001-Create-correct-pkconfig-file-for-zbar-qt5.patch and 0002-get-rid-of-gettext_h.patch (merged upstream) - Enable python3 module

1 0

New Kubic snapshot 20210223 released!
by Richard Brown 26 Feb '21

26 Feb '21

Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=1&version=T… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: e2fsprogs (1.45.6 -> 1.46.1) glibc grub2 kernel-firmware libgcrypt (1.9.1 -> 1.9.2) libsolv (0.7.16 -> 0.7.17) libzypp (17.25.6 -> 17.25.7) python-M2Crypto rdma-core (31.0 -> 31.3) ucode-intel (20201118 -> 20210216) === Details === ==== e2fsprogs ==== Version update (1.45.6 -> 1.46.1) Subpackages: libcom_err2 libext2fs2 - Remove autoreconf (and resulting dependencies) from the spec file. The upstream configure script should be fine. - Update to 1.46.1: * Fix setting extended attributes in libext2fs and debugfs * Fix e2fsck to accept large_dir directories greater than 4G * Fix fast commit support on big endian architectures * Fix mke2fs -d to correctly import a small file stored using inline_data feature and which has ACL or extended attribute * Various compilation fixes * Speedup bitmap loading for large filesystems using multiple threads * Speedup mke2fs for bigalloc filesystems * E2fsck fixes when rehashing directories * Fix e2fsck crashes on maliciously corrupted filesystems * Fix e2fsck handling of duplicated case-folded file names * Implement hashed directory support in libext2fs * Support for fast commit feature * Support for combination of casefolding and encryption * Support for stable inodes feature * Add support for per-inode DAX flag * Fix tune2fs to unlock MMP on failure * Fix e2fsck buffer overflow when scanning directory blocks * Fix resize2fs overflowing block group descriptors with 1k block size - delete e2fsprogs-1.45.2-gettext.patch - it was merged upstream - Add autoconf-archive to build requirements - Fix installation of info files for older distros ==== glibc ==== Subpackages: glibc-locale glibc-locale-base - Prepare for usrmerge (bsc#1029961) - Add --enable-memory-tagging for aarch64 ==== grub2 ==== Subpackages: grub2-i386-pc grub2-snapper-plugin grub2-x86_64-efi - Fix build error in binutils 2.36 (bsc#1181741) * 0001-Fix-build-error-in-binutils-2.36.patch - Fix executable stack in grub-emu (bsc#1181696) * 0001-emu-fix-executable-stack-marking.patch - Restore compatibilty sym-links * grub2.spec - Use rpmlintrc to filter out rpmlint 2.0 error (bsc#1179044) * grub2.rpmlintrc ==== kernel-firmware ==== Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network ucode-amd - Correct the RPi4 brcm config to recover the WiFi breakage (bsc#1182320): Revert-brcm-rpi4-boardflags3-bit.patch ==== libgcrypt ==== Version update (1.9.1 -> 1.9.2) - libgcrypt 1.9.2: * Fix building with --disable-asm on x86 * Check public key for ECDSA verify operation * Make sure gcry_get_config (NULL) returns a nul-terminated string * Fix a memory leak in the ECDH code * Fix a reading beyond end of input buffer in SHA2-avx2 - remove obsolete texinfo packaging macros ==== libsolv ==== Version update (0.7.16 -> 0.7.17) - repo_write: fix handling of nested flexarray - improve choicerule generation a bit more to cover more cases - harden testcase parser against repos being added too late - support python-3.10 - check %_dbpath macro in rpmdb code - handle default/visible/langonly attributes in comps parser - support multiple collections in updateinfo parser - add '-D' option in rpmdb2solv to set the dbpath - bump version to 0.7.17 ==== libzypp ==== Version update (17.25.6 -> 17.25.7) - Patch: Identify well-known category names (bsc#117984) This allows to use the RH and SUSE patch categrory names synonymously: (recommendedi = bugfix) and (optional = feature = enhancement). - Add missing includes for GCC 11 compatibility. - Fix %posttrans script execution (fixes #265) The scripts are execuable. No need to call them through 'sh -c'. - Commit: Fix rpmdb compat symlink in case rpm got removed. - Repo: Allow multiple baseurls specified on one line (fixes #285) - Regex: Fix memory leak and undefined behavior. - Add rpm buildrequires for test suite (fixes #279) - Use rpmdb2solv new -D switch to tell the location ob the rpmdatabase to use. - BuildRequires: libsolv-devel >= 0.7.17. - version 17.25.7 (22) ==== python-M2Crypto ==== - Add 293_sslv23_padding.patch to avoid using RSA_SSLV23_PADDING (gl#m2crypto/m2crypto#293, gh#openssl/openssl#14216). - OpenSSL allows the verificaton to continue on UNABLE_TO_VERIFY_LEAF_SIGNATURE * This unifies the behaviour of a single certificate with an unknown CA certificate with a self-signed certificate. - Add python-M2Crypto-Allow-on-UNABLE_TO_VERIFY_LEAF_SIGNATURE.patch (Thanks for Debian, https://salsa.debian.org/python-team/packages/m2crypto/-/commit/e0e9ad5cfff8) - Add source signature file ==== rdma-core ==== Version update (31.0 -> 31.3) Subpackages: libefa1 libibverbs libibverbs1 libmlx4-1 libmlx5-1 librdmacm1 - Update to rdma-core v31.3 - No release notes available - Fix patch to systemd-modules-load script (bsc#1178539) - Drop srp_daemon-Fix-systemd-dependency.patch as it was merged upstream ==== ucode-intel ==== Version update (20201118 -> 20210216) - Updated Intel CPU Microcode to 20210216 official release. (bsc#1182347 bsc#1179224) | Processor | Stepping | F-M-S/PI | Old Ver | New Ver | Products |:---------------|:---------|:------------|:---------|:---------|:--------- | SKX-SP | H0/M0/U0 | 06-55-04/b7 | 02006a08 | 02006a0a | Xeon Scalable | SKX-D | M1 | 06-55-04/b7 | 02006a08 | 02006a0a | Xeon D-21xx | CLX-SP | B0 | 06-55-06/bf | 04003003 | 04003006 | Xeon Scalable Gen2 | CLX-SP | B1 | 06-55-07/bf | 05003003 | 05003006 | Xeon Scalable Gen2

1 0

New ARM MicroOS snapshot 20210223 released!
by Guillaume Gardet 25 Feb '21

25 Feb '21

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=microos&groupid=3&version… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: AppStream (0.13.1 -> 0.14.1) avahi ca-certificates-mozilla (2.44 -> 2.46) dracut (051+suse.85.g04886430 -> 052+suse.93.g7bfaa6d9) drpm e2fsprogs (1.45.6 -> 1.46.1) ell (0.36 -> 0.38) filesystem glibc gnome-control-center (3.38.3 -> 3.38.4) gnome-desktop (3.38.3 -> 3.38.4) grub2 gtk3 (3.24.24 -> 3.24.25) ipset (7.10 -> 7.11) kernel-firmware kmod ldacBT libaio (0.3.112 -> 0.3.112+29.696a5e6483ba) libgcrypt (1.9.1 -> 1.9.2) libnettle (3.7 -> 3.7.1) libpcap (1.9.1 -> 1.10.0) libqt5-qtwebengine libsolv (0.7.16 -> 0.7.17) libzypp (17.25.6 -> 17.25.7) llvm11 milou5 mpg123 pam patterns-base pcre pipewire plasma5-openSUSE plasma5-workspace python-py (1.9.0 -> 1.10.0) supportutils systemd tar (1.33 -> 1.34) u-boot-rpiarm64 (2020.10 -> 2021.01) util-linux (2.36.1 -> 2.36.2) util-linux-systemd (2.36.1 -> 2.36.2) vim webkit2gtk3 xkeyboard-config (2.31 -> 2.32) zbar (0.23.1 -> 0.23.90) === Details === ==== AppStream ==== Version update (0.13.1 -> 0.14.1) Subpackages: libAppStreamQt2 libappstream4 - Update to version 0.14.1: + Features: - Switch back from Soup to cURL for HTTP(S). - validator: Check a few more things on requires/recommends items. - Only download the first bytes of a file when checking URLs for validity. + Specification: spec: Officially mark <mimetypes/> tag as deprecated. + Bugfixes: - qt: Return better errors in AppStream::Metadata. - Do not automatically clean up errors that will be propagated. - Remove overall extern "C" to make very new (2.67+) GLib versions happy. - ascli: Don?t use GNU C extension type names. - build: Use c11 rather than gnu11 and define vendor extensions separately. - Changes from version 0.14.0: + Features: - news-to-metainfo: Interpret placeholder release dates as denoting a dev version. - Make as_utils_build_data_id public API. - Add AsReview for attaching user reviews to software components. - Add a branch element to component data-IDs. - utils: Add data-ID hashing and matching functions. - utils: Make as_gstring_replace public API. - Add branch info to on-disk cached components. - content-rating: Add as_content_rating_add_attribute API. - Rename INPUTMETHOD component kind enum to INPUT_METHOD. - Add "cabinet" bundle type for firmware deployments. - Make AsTokenMatch public API. - Add function to AsScreenshot to get image closest to preferred size. - Allow AsComponent to directly ingest desktop-entry data. - Make as_pool_build_search_tokens API public. - Add "origin" token match. - Make as_component_add_provided_item API public. - Add some useful image dimension constants. - compose: Add blur function from asglib. - Add more efficient load_from_bytes method to AsComponent. + Updated translations. - Drop fix-build-gcc7.patch: no longer applicable. - Replace pkgconfig(libsoup-2.4) with pkgconfig(libcurl) BuildRequires: follow upstreams switch back to cURL. ==== avahi ==== Subpackages: libavahi-client3 libavahi-common3 libavahi-core7 - Update avahi-daemon-check-dns.sh from Debian. Our previous version relied on ifconfig, route, and init.d. - Rebase avahi-daemon-check-dns-suse.patch, and drop privileges when invoking avahi-daemon-check-dns.sh (boo#1180827 CVE-2021-26720). - Add sudo to requires: used to drop privileges. ==== ca-certificates-mozilla ==== Version update (2.44 -> 2.46) - Updated to 2.46 state of the Mozilla NSS Certificate store (bsc#1181994) - Added new root CAs: - NAVER Global Root Certification Authority - Removed old root CA: - GeoTrust Global CA - GeoTrust Primary Certification Authority - GeoTrust Primary Certification Authority - G3 - GeoTrust Universal CA - GeoTrust Universal CA 2 - thawte Primary Root CA - thawte Primary Root CA - G2 - thawte Primary Root CA - G3 - VeriSign Class 3 Public Primary Certification Authority - G4 - VeriSign Class 3 Public Primary Certification Authority - G5 ==== dracut ==== Version update (051+suse.85.g04886430 -> 052+suse.93.g7bfaa6d9) Subpackages: dracut-ima - Update to version 052+suse.93.g7bfaa6d9: * fix(dbus-daemon): make sure that dbus.socket is stopped before switch root (bsc#1181167) - Update to version 052+suse.91.gb30dce3c: * chore: update suse/dracut.spec - Update to version 052+suse.88.gc78b4ac8: * fix(i18n): get rid of `eval` calls * fix(i18n): create the keyboard symlinks again * docs: update NEWS.md and AUTHORS * chore: add `CONTRIBUTORS` target to Makefile * fix: shellcheck across multipl emodules * docs: fix dracut.cmdline.7 * fix: update dbus module directory in spec file * fix: add sdaskpw and sdsyctl to spec file * fix: cosmetic comment fixes * feat(systemd-ask-password): introducing systemd-ask-password module * Revert "nbd: use systemd-run to start nbd-client" * dmsquash-live-root: squashfs in bare device * feat(systemd-sysctl): introducing systemd-sysctl module * fix: adding missing efi paths * fix: correct the squash quirk * feat(systemd-modules-load): introducing systemd-modules-load module * fix(shutdown): add timeout to umount calls * fix: revise all module checks * fix: add missing line continuation * fix: BuildRequiring git-core is enough in dracut.spec * fix(kernel-modules): add reset controllers for arm * 35network-legacy: discard pointless RTNETLINK message * fix(plymouth): install binaries with dependencies * fix: correct the line continuation * fix(dbus-daemon): use uid/gid from sysroot is dracutsysrootdir is set * fix(network-manager): allow override network manager version * feat(dracut.sh): allow overriding the systemctl command for sysroot * fix: use find_binary * fix(dracut.sh): don't override path with foreign sysroot * fix: quote globbing in module-setup.sh for inst_multiple * fix(dracut-install): allow globbing for multiple sources * Fix bad ls parsing * fix: move ldconfig after library workaround * feat(kernel-modules): add driver memory * feat(systemd-repart): introducing systemd-repart module * feat(dbus-daemon): introducing the dbus-daemon module * feat(dbus-broker): introducing the dbus-broker module * feat(dbus): introducing a meta module for dbus * fix(network-legacy): silent check for leaseinfo * 95nfs: fix rpc.statd installation * fix: do not set cmdline for uefi images unless asked * feat(network-legacy): send dhcp in parallel on all devices * fix(mdraid): remove offroot * fix(mdraid): add grow continue service * fix(spec): add new systemd-coredump module to spec * fix(watchdog): replace return with echo * feat(systemd-coredump): introducing systemd-coredump module * prepare usrmerge (boo#1029961) * test: incr. disk size for TEST 35 ISCSI-MULTI * fix(skipcpio): edit skipcpio.c: strstr -> memmem * fix(1007): adding shared keyring mode to type unit * feat(systemd-sysusers): introducing systemd-sysuser module * feat(systemd-sysusers): introducing systemd-sysuser module * fix(1001): use efivars fs over the deprecated sysfs entries * fix(kernel-network-modules): also install modules from mdio subdirectory * fix(06dbus): do not hardcode path to dbus utils * fix(06dbus): do not hardcode path to systemd unit * fix(dracut-init.sh): make inst_libdir_file work with dracutsysrootdir set * fix(99squash): use kernel config instead of modprobe to check modules * fix(dracut-functions.sh): check kernel config from $dracutsysrootdir * fix(90kernel-modules): install generic crypto modules with hostonly unset * feat: add addional global variables * fix: add a missing efi support * chore(removal): eliminate bootchart module * feat: add addional global variables * feat(cli): add --no-uefi option * chore(github): add CODEOWNERS file * chore(cleanup): remove logrotate file * fix(35network-manager): avoid restarting NetworkManager * chore: Add configuration for vim * chore: Add editorconfig * chore: Editors * test(conventional): add Conventional Commits PR github action * docs(development): add HACKING.md ==== drpm ==== - skip valgrind checking on aarch64 (bsc#1182493) ==== e2fsprogs ==== Version update (1.45.6 -> 1.46.1) Subpackages: libcom_err2 libext2fs2 - Remove autoreconf (and resulting dependencies) from the spec file. The upstream configure script should be fine. - Update to 1.46.1: * Fix setting extended attributes in libext2fs and debugfs * Fix e2fsck to accept large_dir directories greater than 4G * Fix fast commit support on big endian architectures * Fix mke2fs -d to correctly import a small file stored using inline_data feature and which has ACL or extended attribute * Various compilation fixes * Speedup bitmap loading for large filesystems using multiple threads * Speedup mke2fs for bigalloc filesystems * E2fsck fixes when rehashing directories * Fix e2fsck crashes on maliciously corrupted filesystems * Fix e2fsck handling of duplicated case-folded file names * Implement hashed directory support in libext2fs * Support for fast commit feature * Support for combination of casefolding and encryption * Support for stable inodes feature * Add support for per-inode DAX flag * Fix tune2fs to unlock MMP on failure * Fix e2fsck buffer overflow when scanning directory blocks * Fix resize2fs overflowing block group descriptors with 1k block size - delete e2fsprogs-1.45.2-gettext.patch - it was merged upstream - Add autoconf-archive to build requirements - Fix installation of info files for older distros ==== ell ==== Version update (0.36 -> 0.38) - Update to release 0.38 : * Fix issue with DHCP v6 Rapid Commit option check. * Fix issue with handling RFC8018/RFC1423 padding. * Fix issue with D-Bus filter messages with no interfaces set. * Add support for PKCS#12 certification loading. ==== filesystem ==== - Add Ukrainian to the list of localized man directories. ==== glibc ==== Subpackages: glibc-locale glibc-locale-base - Prepare for usrmerge (bsc#1029961) - Add --enable-memory-tagging for aarch64 ==== gnome-control-center ==== Version update (3.38.3 -> 3.38.4) Subpackages: gnome-control-center-goa - Update to version 3.38.4: + User Accounts: - Properly handle claiming errors if we're already claiming. - Always call EnrollStop on enrollment complete. + Updated translations. ==== gnome-desktop ==== Version update (3.38.3 -> 3.38.4) Subpackages: gnome-version libgnome-desktop-3-19 libgnome-desktop-3_0-common typelib-1_0-GnomeDesktop-3_0 - Update to version 3.38.4: + Updated translations. ==== grub2 ==== Subpackages: grub2-arm64-efi grub2-snapper-plugin - Fix build error in binutils 2.36 (bsc#1181741) * 0001-Fix-build-error-in-binutils-2.36.patch - Fix executable stack in grub-emu (bsc#1181696) * 0001-emu-fix-executable-stack-marking.patch - Restore compatibilty sym-links * grub2.spec - Use rpmlintrc to filter out rpmlint 2.0 error (bsc#1179044) * grub2.rpmlintrc ==== gtk3 ==== Version update (3.24.24 -> 3.24.25) Subpackages: gtk3-data gtk3-schema gtk3-tools libgtk-3-0 typelib-1_0-Gtk-3_0 - Update to version 3.24.25: + Settings: Make cursor aspect ratio setting work. + Broadway: - Fix touchscreen event handling. - Support Android / Chrome on-screen keyboard. + Wayland: - Avoid crashes with tablet input. - Add api to support clients with subsurfaces better. + Inspector: Make the inspector available in non-debug builds. + Theme: - Make scrollbars larger. - Disable shadows on maximized, fullscreen and tiled windows. + Printing: Support Avahi-discovered printers better. + Input: - Show preedit for compose sequences. - Support long compose sequences. - Support compose sequences producing multiple characters. + Updated translations. ==== ipset ==== Version update (7.10 -> 7.11) Subpackages: libipset13 - Update to release 7.11 * Argument parsing buffer overflow in ipset_parse_argv fixed ==== kernel-firmware ==== Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network - Correct the RPi4 brcm config to recover the WiFi breakage (bsc#1182320): Revert-brcm-rpi4-boardflags3-bit.patch ==== kmod ==== Subpackages: libkmod2 - Fix grub's requoted kernel parameters (bsc#1181111) * 0001-libkmod-config-revamp-kcmdline-parsing-into-a-state-.patch * 0002-libkmod-config-re-quote-option-from-kernel-cmdline.patch ==== ldacBT ==== - Exclude building in big-endian architectures (s390 s390x ppc64) since ldacBT requires a little-endian cpu to build. ==== libaio ==== Version update (0.3.112 -> 0.3.112+29.696a5e6483ba) - Update to version libaio0.3.112+29.696a5e6483ba: * Fix test issue with gcc-11 (bsc#1181869) * harness: Skip the test if io_pgetevents() is not implemented * harness: Print better error messages on error conditions in 22.t * harness: Fix PROT_WRITE mmap check * harness: fix read into PROT_WRITE mmap test * harness: skip 22.p if async_poll isn't supported * harness: Handle -ENOTSUP from io_submit() with RWF_NOWAIT * harness: Add fallback code for filesystems not supporting O_DIRECT * harness: add support for skipping tests * harness: Make the test exit with a code matching the pass/fail state ==== libgcrypt ==== Version update (1.9.1 -> 1.9.2) - libgcrypt 1.9.2: * Fix building with --disable-asm on x86 * Check public key for ECDSA verify operation * Make sure gcry_get_config (NULL) returns a nul-terminated string * Fix a memory leak in the ECDH code * Fix a reading beyond end of input buffer in SHA2-avx2 - remove obsolete texinfo packaging macros ==== libnettle ==== Version update (3.7 -> 3.7.1) Subpackages: libhogweed6 libnettle8 - GNU Nettle 3.7.1: * Fix bug in chacha counter update logic (ppc64 and ppc64el) * Restore support for big-endian ARM platforms * Fix corner case bug in ECDSA verify, it would produce incorrect result in the unlikely case of an all-zero message hash * Support for pbkdf2_hmac_sha384 and pbkdf2_hmac_sha512 * Remove poorly performing ARM Neon code for doing single-block Salsa20 and Chacha ==== libpcap ==== Version update (1.9.1 -> 1.10.0) - Update to 1.10.0 * Require, and assume, some level of C99 support in the C compiler * Add support for capturing on DPDK devices * rpcap: support rpcap-over-TLS * Fix some memory leaks, including in pcap_compile() * Linux: handle systems without AF_INET or AF_UNIX socket support * Catch invalid IPv4 addresses in filters * Show special Linux BPF offsets symbolically in bpf_image() and bpf_dump() * Linux: get rid of Wireless Extensions for turning monitor mode on * Linux: proper memory sync for PACKET_MMAP * Linux: drop support for libnl 1 and 2. * Linux: Require PF_PACKET support, and kernel 2.6.27 or later * Add DLT_LINUX_SLL2 * Add a new filter "ifindex" for DLT_LINUX_SLL2 files and live Linux captures * optimizer: add a hack to try to catch certain optimizer loops * Probe CONFIGURATION descriptor of connected USB devices * Linux: return error on interface going away, but not if it just went down * Linux: set socket protocol only after packet ring configured, reducing bogus packet drop reports * Linux: get ifdrop stats from sysfs. * Fix various security issues reported by Charles Smith at Tangible Security * Fix various security issues reported by Include Security * rpcapd: on UN*X, don't tell the client why authentication failed * Linux: when adjusting BPF programs, do not subtract the SLL[2]_HDR_LEN if the location is negative (special metadata offset) * Linux: with a timeout of zero, wait indefinitely * Linux: clean up support for some non-GNU libc C libraries * Increase the maximum snaplen for LINKTYPE_USBPCAP/DLT_USBPCAP * Fix handling of some ioctls that fail with "permission denied" even when the ioctl isn't supported at all * Added support for ICMPv6 types 1-4 as tokens in filters * Report the DLT description in error messages * Linux: Add support for DSA data link types * Linux USB: use the snapshot length to set the buffer size, and set the len field to reflect the length in the URB * rpcapd: allow rpcapd to rebind more rapidly * Add Haiku pcap implementation * rpcap: redo protocol version negotiation to avoid problems with old servers (it still works with servers using the old negotiation, as well as servers not supporting negotiation) * Remove (unused) SITA support here. * Correctly handle pcapng captures with more than one IDB with a snspshot length greater than the supported maximum - Remove libpcap-no-old-socket.patch - Rebase libpcap-1.0.0-s390.patch ==== libqt5-qtwebengine ==== - Add patch to fix sandbox with glibc 2.33 on 32bit: * sandbox-statx-futex_time64.patch - Relax constraints for armv6 and armv7 ==== libsolv ==== Version update (0.7.16 -> 0.7.17) - repo_write: fix handling of nested flexarray - improve choicerule generation a bit more to cover more cases - harden testcase parser against repos being added too late - support python-3.10 - check %_dbpath macro in rpmdb code - handle default/visible/langonly attributes in comps parser - support multiple collections in updateinfo parser - add '-D' option in rpmdb2solv to set the dbpath - bump version to 0.7.17 ==== libzypp ==== Version update (17.25.6 -> 17.25.7) - Patch: Identify well-known category names (bsc#117984) This allows to use the RH and SUSE patch categrory names synonymously: (recommendedi = bugfix) and (optional = feature = enhancement). - Add missing includes for GCC 11 compatibility. - Fix %posttrans script execution (fixes #265) The scripts are execuable. No need to call them through 'sh -c'. - Commit: Fix rpmdb compat symlink in case rpm got removed. - Repo: Allow multiple baseurls specified on one line (fixes #285) - Regex: Fix memory leak and undefined behavior. - Add rpm buildrequires for test suite (fixes #279) - Use rpmdb2solv new -D switch to tell the location ob the rpmdatabase to use. - BuildRequires: libsolv-devel >= 0.7.17. - version 17.25.7 (22) ==== llvm11 ==== - Don't use gold and ThinLTO on ppc64le because of boo#1181621. - Fix-missing-include.patch: fix build with GCC 11. (boo#1181875) - CMake-Look-up-target-subcomponents-in-LLVM_AVAILABLE_LIBS.patch: Fix target component lookup. (boo#1180748) ==== milou5 ==== - Add patch to avoid empty queries, which causes runners to misbehave: * 0001-Fix-launching-empty-query.patch ==== mpg123 ==== - Avoid unconditional Supplements ==== pam ==== - Add missing conflicts for pam_unix-nis - Split out pam_unix module and build without NIS support ==== patterns-base ==== Subpackages: patterns-base-base patterns-base-bootloader patterns-base-minimal_base patterns-base-x11 - Don't pull in update_test pattern from sw_management - Move aaa_base-malloccheck from update_test to base ==== pcre ==== - package testsuite in a separate RPM (boo#1182235) ==== pipewire ==== Subpackages: gstreamer-plugin-pipewire libpipewire-0_3-0 pipewire-modules pipewire-spa-plugins-0_2 pipewire-spa-tools pipewire-tools - ldacBT only builds on little endian architectures, so we can't buildrequire it on big endian systems like s390, s390x or ppc64. ==== plasma5-openSUSE ==== Subpackages: plasma5-defaults-openSUSE plasma5-theme-openSUSE sddm-theme-openSUSE - Drop update_diffs.sh, broken and unused ==== plasma5-workspace ==== Subpackages: gmenudbusmenuproxy plasma5-session plasma5-session-wayland plasma5-workspace-libs xembedsniproxy - Add patch to fix krunner crash caused by mismatched quotes: * 0001-locations-runner-Fix-empty-list-on-invalid-shell-quo.patch - Add patch to fix starting applications with arguments from krunner (kde#433053): * 0001-locations-runner-Fix-absolute-filepath-arguments.patch - Add patch to fix race on logout (kde#432460): * 0001-libkworkspace-Interim-fix-for-the-logout-issue.patch ==== python-py ==== Version update (1.9.0 -> 1.10.0) - Update to 1.10.0 * Fix a regular expression DoS vulnerability in the py.path.svnwc SVN blame functionality (CVE-2020-29651) - Devendor apipkg and iniconfig - Add pr_222.patch to activate test suite ==== supportutils ==== - Additions to version 3.1.14 + [powerpc] Collect logs for power specific components (HNV) #88 (bsc#1181911) + Updated pam.txt documentation explaining GDPR + ha.txt: Fix pacemaker.log location for SLE15 #90 + supportconfig: use readlink /proc/<pid>/cwd to get cwd list instead of lsof #91 + supportconfig: sssd_info consistency #93 + Includes NVMe information with OPTION_NVME=1 in nvme.txt (bsc#1176370, SLE-15932) - No longer truncates boot log (bsc#1181610) - Require the awk, which and sed commands instead of packages to allow alternate implementations on embedded/Edge systems - Additions to version 3.1.13 + Added update-alternatives to etc.txt #82 + Collects rotated logs with different compression types (bsc#1180478) + Added GPL-2.0-only license tag to spec file - Additions to version 3.1.12 + btrfs_info: add -pce argument to qgroup show #80 + docker: add /etc/docker/daemon.json contents #81 - Additions to version 3.1.12 + Capture IBM Power bootlist (SLE-15557) + Fix spelling typos in man pages #78 + Collect multipath wwids file #77 + Removed unnecessary appname parameter from HTTP upload URL + added aa-status #74 - Additions to version 3.1.12 + [powerpc] Collect logs for power specific components #72 (bscn#1176895) + supportconfig: fs-btrfs: Add "btrfs device stats" output #73 - Additions to version 3.1.11 + Changes affecting supportconfig - disk_info: Show discard information in lsblk #70 - memory_info: Show VMware memory balloon infomation #71 - Addition to version 3.1.10 + Changes affecting analyzevmcore - Fixed typo in error message #67 + Changes affecting supportconfig - Fixed btrfs errors (bsc#1168894) - Large ntp.txt with binary data (bsc#1169122) - Check btrfs balance status #69 - Addition to version 3.1.9 + Changes affecting getappcore - Added core file validation (bsc#1166126) - Added -j <PID> to extract core from systemd journal - Capture coredumptctl info in getappcore.log + Changed filename prefixes from nts_ to scc_ (SLE-8702, SLE-6762) - The new prefix references SUSE Customer Center - Addition to version 3.1.8 + Changes affecting getappcore - Added -u for HTTPS and -f for FTPES uploads to SUSE FTP servers - Replaced Novell with SUSE FTP servers (bsc#1165475) - Uses /etc/getappcore.conf if present + Changes affecting supportconfig - Added missed Power collection per bsc#1162539 - Added zypper patterns output to updates.txt #66 - Addition to version 3.1.7 + exclude /proc/pagetypeinfo as it can be an expensive operation on some systems (bsc#1162357) + Readded LPM/DLPAR data for Power (bsc#1162539) - Addition to version 3.1.6 + Strip trailing commas from process names #64 (bsc#1156837) + Dynamically select compression method (bsc#1145233) + Updated detailed unit information fix in systemd.txt (bsc#1023308) + Fixed supportconig.conf man page with order placement + Include IPv6 routes (bsc#1089877) - Updated to version 3.1.5 + Removed root .snapshots directory from full file list (bsc#1154482) - Updated to version 3.1.4 + Removed LPM/DLPAR data for POWER (bsc#1111029) + prevent running 'systool -vb memory' by default on systems with 16TB or more #57 (bsc#1127734) + Tumbleweed support #50 + Added zypper orphaned packages check to updates.txt + Cpuset listing #52 + Docker disunite #53 + Added sed and gawk to spec requirements (bsc#1137336) + Added nstat to network + Add collection of livepatch information #63 + Check for missing ldap.conf file - Updated to version 3.1.3 + Uses SUSE FTP servers (bsc#1132865) + btrfs quota #43 + supportconfig: open-files: add file flags #44 + Merged etc_info: Add support for .cfg files in /etc dir #46 + Silence warning in rpm backup db collection path #47 + Set files in tarball to 660 instead of 600 #48 + SUSE separation finalized (bsc#1125623) + Default compression through xz, but -z forces bzip2 + Updated man pages (bsc#1088234) + Changed VAR_OPTION_BIN_TIMEOUT_SEC from 300 to 120 + Avoids some IO delays (bsc#1100529) + Corrected supported services help info for -U + Collects iSCSI Target information (bsc#1133844) + FTPES uses --ssl-reqd instead of depricated --ftp-ssl + Defaults to https FTP server uploads (bsc#1134599) - Updated to version 3.1.2 + Fixed missing sapconf and log (bsc#1081326) + Added timed_log_cmd to hwinfo and showmount commands (bsc#1120967) - Updated to version 3.1.1 + Fixed X missing /prob/fb error (bsc#1127069) + Fixed dasdview -f (bsc#1109664) + Clarified -t help description (bsc#1121043) + Fixed grep error in NTP when /etc/cron.d is empty (bsc#1127063) + Collects systemd journal with minimum install (bsc#1094225) + Supportconfig fails on bzip archives (bsc#1120049) + Get few drbd output & configuration #42 - Corrected missed SUSE separation lines - Fixed invalid exit code commands (bsc#1125666) - CVE-2018-19640: supportutils: Users can kill arbitrary processes (CVE-2018-19640 bsc#1118463) - User can overwrite arbitrary log files in support tar (CVE-2018-19638 bsc#1118460) - Code execution if run with -v (CVE-2018-19639 bsc#1118462) - Static temporary filename allows overwriting of files (CVE-2018-19637 bsc#1117776) - Included additional SUSE separation (bsc#1125609) - Merged added listing of locked packes by zypper #41 - Corrected spec file errors - Added firewall-cmd info - btrfs filesystem usage - Add ls -lA --time-style=long-iso /etc/products.d/ - Dump lsof errors - Added corosync status to ha_info - Clarified -x functionality in supportconfig(8) (bsc#1115245) - Dump find errors in ib_info - Exclude pam.txt per GDPR by default (bsc#1112461) - udev service and journal content (bsc#1051797) - supportconfig collects tuned profile settings (bsc#1071545) - sfdisk -d no disk device specified (bsc#1043311) - Added vulnerabilites check in basic-health.txt (bsc#1105849) - Added backup rpm database directory - Updated URLs in documentation - Added only sched_domain from cpu0 - Blacklist sched_domain from proc.txt (bsc#1046681) - Use %license instead of %doc [bsc#1082318] - Accounts for firewalld now (bsc#1079137) - Added dmesg taint seach - Removed mii-tool from networking - Updated HA to use chrony - Added kdumptool calibrate to crash.txt - Removed SLES_VER case for sles8,9 and 10 - Added tuned feature OPTION_TUNED tuned.txt (bsc#1071545) - Fixed udev service - Fixed no disk device with sfdisk (bsc#1078638) - Removed OPTION_SAM from man pages and resource file - Validated missing commands - Updated apparmor with systemctl service - Replaced deprecated networking commands (bsc#1078318) - Removed sam_info since suse_sam is no longer available - Assigned SLE15 to SLES_VER selections (bsc#1078168) - Includes X without display issue (bsc#1077813) - Fixes for Infiniband (bsc#1071294) - Using chrony for NTP (bsc#1077818) - Added os-release processing (bsc#1077758) - Removed invalid string tty string (bsc#1077681) - Added SLE15 taint values (bsc#1077683) - Added transactional update with OPTION_TRANSACTIONAL=1 - Updated supportconfig.conf.5 with OPTION_TRANSACTIONAL - Fixed docker package detection (bsc#1069457) - Replaced route with ip route (bsc#1070379) - Added systemd-delta to systemd.txt (bsc#1071924) - Changed repos -u to repos -d (bsc#1071926) - Added rdma-core for infiniband (bsc#1071294) ==== systemd ==== Subpackages: libsystemd0 libudev1 systemd-logger systemd-sysvinit udev - Add 0001-conf-parser-introduce-early-drop-ins.patch Introduce early configuration drop-in file. This type of drop-ins are reserved for vendor own purposes only and should never been used by users. It might be removed in the future without any notice. - Drop use of %systemd_postun in %postun This macro is supposed to operate on units but it was used without passing any parameters. This call was probably used for issuing a daemon-reload but the following calls to %systemd_postun_with_restart imply that already. So let's simply drop it. ==== tar ==== Version update (1.33 -> 1.34) - GNU tar 1.34: * Fix extraction over pipe * Fix memory leak in read_header * Fix extraction when . and .. are unreadable * Gracefully handle duplicate symlinks when extracting * Re-initialize supplementary groups when switching to user privileges ==== u-boot-rpiarm64 ==== Version update (2020.10 -> 2021.01) Subpackages: u-boot-rpiarm64-doc Fix boot for BananaPi R2 (bsc#1180732). Speed up boot time for RPi2. Patch queue updated from git://github.com/openSUSE/u-boot.git tumbleweed-2021.01 * Patches added: 0032-configs-BPI-R2-Disable-EFI-Grub-wor.patch 0033-configs-RPi2-Disable-EFI-Grub-worka.patch - Add qemu-riscv64spl Patch queue updated from git://github.com/openSUSE/u-boot.git tumbleweed-2021.01 * Patches added: 0031-efi_loader-Avoid-emitting-efi_var_b.patch - Drop pcm051rev3 for Phytec Wega board - Fix binary extension for sunxi based boards - Add Pinephone - Fix documentation location Update to v2021.01. Patch queue updated from git://github.com/openSUSE/u-boot.git tumbleweed-2021.01 * Patches dropped: 0028-usb-xhci-xhci_bulk_tx-Don-t-BUG-whe.patch 0029-Revert-Fix-data-abort-caused-by-mis.patch 0030-usb-xhci-pci-Add-DM_FLAG_OS_PREPARE.patch 0031-pci-brcmstb-Cleanup-controller-stat.patch * Patches added: 0028-usb-xhci-pci-Add-DM_FLAG_OS_PREPARE.patch 0029-pci-brcmstb-Cleanup-controller-stat.patch 0030-fs-btrfs-Select-SHA256-in-Kconfig.patch ==== util-linux ==== Version update (2.36.1 -> 2.36.2) Subpackages: libblkid1 libfdisk1 libmount1 libsmartcols1 libuuid1 - Update to version 2.36.2: * agetty: tty eol defaults to REPRINT * fsck.cramfs: fix fsck.cramfs crashes on blocksizes > 4K * lib/caputils: add fall back for last cap using prctl. * lib/signames: change license to public domain * libfdisk: * (dos) fix last possible sector calculation * (script) ignore empty values for start and size * ignore 33553920 byte optimal I/O size * libmount: * add vboxsf, virtiofs to pseudo filesystems * do not canonicalize ZFS source dataset * don't use "symfollow" for helpers on user mounts (boo#1181750, obsoletes util-linux-libmount-dont-use-symfollow.patch) * fix /{etc,proc}/filesystems use * login: use full tty path for PAM_TTY * lsblk: read SCSI_IDENT_SERIAL also from udev * rfkill: stop execution when rfkill device cannot be opened * setpriv: allow using [-+]all for capabilities. * su: use full tty path for PAM_TTY * switch_root: check if mount point to move even exists * umount: * ignore --no-canonicalize,-c for non-root users * Show the 'r' option in the help menu * Code cleanups and documentation improvements. * Translation updates. ==== util-linux-systemd ==== Version update (2.36.1 -> 2.36.2) - Update to version 2.36.2: * agetty: tty eol defaults to REPRINT * fsck.cramfs: fix fsck.cramfs crashes on blocksizes > 4K * lib/caputils: add fall back for last cap using prctl. * lib/signames: change license to public domain * libfdisk: * (dos) fix last possible sector calculation * (script) ignore empty values for start and size * ignore 33553920 byte optimal I/O size * libmount: * add vboxsf, virtiofs to pseudo filesystems * do not canonicalize ZFS source dataset * don't use "symfollow" for helpers on user mounts (boo#1181750, obsoletes util-linux-libmount-dont-use-symfollow.patch) * fix /{etc,proc}/filesystems use * login: use full tty path for PAM_TTY * lsblk: read SCSI_IDENT_SERIAL also from udev * rfkill: stop execution when rfkill device cannot be opened * setpriv: allow using [-+]all for capabilities. * su: use full tty path for PAM_TTY * switch_root: check if mount point to move even exists * umount: * ignore --no-canonicalize,-c for non-root users * Show the 'r' option in the help menu * Code cleanups and documentation improvements. * Translation updates. ==== vim ==== Subpackages: vim-data-common vim-small - source correct suse.vimrc file (boo#1182324) ==== webkit2gtk3 ==== Subpackages: libjavascriptcoregtk-4_0-18 libwebkit2gtk-4_0-37 webkit2gtk-4_0-injected-bundles - Update _constraints for armv6/armv7 ==== xkeyboard-config ==== Version update (2.31 -> 2.32) - Update to version 2.32 * latest bugfix release ==== zbar ==== Version update (0.23.1 -> 0.23.90) - Update to version 0.23.90 * Fixed several issues with configure.ac, making it auto-detect most things, when possible * Fixed some build issues * Make it compatible with Python 3.9 * Fixed some Python 3.9 and Qt5 warnings * Typo fixes * Several fixes at zbarcam * zbarimg: fix stderr output when symbols are found - Drop 0001-Create-correct-pkconfig-file-for-zbar-qt5.patch and 0002-get-rid-of-gettext_h.patch (merged upstream) - Enable python3 module

1 0

New ARM Kubic snapshot 20210223 released!
by Guillaume Gardet 25 Feb '21

25 Feb '21

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=3&version=T… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: ca-certificates-mozilla (2.44 -> 2.46) dracut (051+suse.85.g04886430 -> 052+suse.93.g7bfaa6d9) e2fsprogs (1.45.6 -> 1.46.1) filesystem glibc grub2 ipset (7.10 -> 7.11) kernel-firmware kmod libaio (0.3.112 -> 0.3.112+29.696a5e6483ba) libgcrypt (1.9.1 -> 1.9.2) libnettle (3.7 -> 3.7.1) libsolv (0.7.16 -> 0.7.17) libzypp (17.25.6 -> 17.25.7) pam patterns-base pcre python-M2Crypto python-py (1.9.0 -> 1.10.0) rdma-core (31.0 -> 31.3) supportutils systemd tar (1.33 -> 1.34) u-boot-rpiarm64 (2020.10 -> 2021.01) util-linux (2.36.1 -> 2.36.2) util-linux-systemd (2.36.1 -> 2.36.2) vim === Details === ==== ca-certificates-mozilla ==== Version update (2.44 -> 2.46) - Updated to 2.46 state of the Mozilla NSS Certificate store (bsc#1181994) - Added new root CAs: - NAVER Global Root Certification Authority - Removed old root CA: - GeoTrust Global CA - GeoTrust Primary Certification Authority - GeoTrust Primary Certification Authority - G3 - GeoTrust Universal CA - GeoTrust Universal CA 2 - thawte Primary Root CA - thawte Primary Root CA - G2 - thawte Primary Root CA - G3 - VeriSign Class 3 Public Primary Certification Authority - G4 - VeriSign Class 3 Public Primary Certification Authority - G5 ==== dracut ==== Version update (051+suse.85.g04886430 -> 052+suse.93.g7bfaa6d9) Subpackages: dracut-ima - Update to version 052+suse.93.g7bfaa6d9: * fix(dbus-daemon): make sure that dbus.socket is stopped before switch root (bsc#1181167) - Update to version 052+suse.91.gb30dce3c: * chore: update suse/dracut.spec - Update to version 052+suse.88.gc78b4ac8: * fix(i18n): get rid of `eval` calls * fix(i18n): create the keyboard symlinks again * docs: update NEWS.md and AUTHORS * chore: add `CONTRIBUTORS` target to Makefile * fix: shellcheck across multipl emodules * docs: fix dracut.cmdline.7 * fix: update dbus module directory in spec file * fix: add sdaskpw and sdsyctl to spec file * fix: cosmetic comment fixes * feat(systemd-ask-password): introducing systemd-ask-password module * Revert "nbd: use systemd-run to start nbd-client" * dmsquash-live-root: squashfs in bare device * feat(systemd-sysctl): introducing systemd-sysctl module * fix: adding missing efi paths * fix: correct the squash quirk * feat(systemd-modules-load): introducing systemd-modules-load module * fix(shutdown): add timeout to umount calls * fix: revise all module checks * fix: add missing line continuation * fix: BuildRequiring git-core is enough in dracut.spec * fix(kernel-modules): add reset controllers for arm * 35network-legacy: discard pointless RTNETLINK message * fix(plymouth): install binaries with dependencies * fix: correct the line continuation * fix(dbus-daemon): use uid/gid from sysroot is dracutsysrootdir is set * fix(network-manager): allow override network manager version * feat(dracut.sh): allow overriding the systemctl command for sysroot * fix: use find_binary * fix(dracut.sh): don't override path with foreign sysroot * fix: quote globbing in module-setup.sh for inst_multiple * fix(dracut-install): allow globbing for multiple sources * Fix bad ls parsing * fix: move ldconfig after library workaround * feat(kernel-modules): add driver memory * feat(systemd-repart): introducing systemd-repart module * feat(dbus-daemon): introducing the dbus-daemon module * feat(dbus-broker): introducing the dbus-broker module * feat(dbus): introducing a meta module for dbus * fix(network-legacy): silent check for leaseinfo * 95nfs: fix rpc.statd installation * fix: do not set cmdline for uefi images unless asked * feat(network-legacy): send dhcp in parallel on all devices * fix(mdraid): remove offroot * fix(mdraid): add grow continue service * fix(spec): add new systemd-coredump module to spec * fix(watchdog): replace return with echo * feat(systemd-coredump): introducing systemd-coredump module * prepare usrmerge (boo#1029961) * test: incr. disk size for TEST 35 ISCSI-MULTI * fix(skipcpio): edit skipcpio.c: strstr -> memmem * fix(1007): adding shared keyring mode to type unit * feat(systemd-sysusers): introducing systemd-sysuser module * feat(systemd-sysusers): introducing systemd-sysuser module * fix(1001): use efivars fs over the deprecated sysfs entries * fix(kernel-network-modules): also install modules from mdio subdirectory * fix(06dbus): do not hardcode path to dbus utils * fix(06dbus): do not hardcode path to systemd unit * fix(dracut-init.sh): make inst_libdir_file work with dracutsysrootdir set * fix(99squash): use kernel config instead of modprobe to check modules * fix(dracut-functions.sh): check kernel config from $dracutsysrootdir * fix(90kernel-modules): install generic crypto modules with hostonly unset * feat: add addional global variables * fix: add a missing efi support * chore(removal): eliminate bootchart module * feat: add addional global variables * feat(cli): add --no-uefi option * chore(github): add CODEOWNERS file * chore(cleanup): remove logrotate file * fix(35network-manager): avoid restarting NetworkManager * chore: Add configuration for vim * chore: Add editorconfig * chore: Editors * test(conventional): add Conventional Commits PR github action * docs(development): add HACKING.md ==== e2fsprogs ==== Version update (1.45.6 -> 1.46.1) Subpackages: libcom_err2 libext2fs2 - Remove autoreconf (and resulting dependencies) from the spec file. The upstream configure script should be fine. - Update to 1.46.1: * Fix setting extended attributes in libext2fs and debugfs * Fix e2fsck to accept large_dir directories greater than 4G * Fix fast commit support on big endian architectures * Fix mke2fs -d to correctly import a small file stored using inline_data feature and which has ACL or extended attribute * Various compilation fixes * Speedup bitmap loading for large filesystems using multiple threads * Speedup mke2fs for bigalloc filesystems * E2fsck fixes when rehashing directories * Fix e2fsck crashes on maliciously corrupted filesystems * Fix e2fsck handling of duplicated case-folded file names * Implement hashed directory support in libext2fs * Support for fast commit feature * Support for combination of casefolding and encryption * Support for stable inodes feature * Add support for per-inode DAX flag * Fix tune2fs to unlock MMP on failure * Fix e2fsck buffer overflow when scanning directory blocks * Fix resize2fs overflowing block group descriptors with 1k block size - delete e2fsprogs-1.45.2-gettext.patch - it was merged upstream - Add autoconf-archive to build requirements - Fix installation of info files for older distros ==== filesystem ==== - Add Ukrainian to the list of localized man directories. ==== glibc ==== Subpackages: glibc-locale glibc-locale-base - Prepare for usrmerge (bsc#1029961) - Add --enable-memory-tagging for aarch64 ==== grub2 ==== Subpackages: grub2-arm64-efi grub2-snapper-plugin - Fix build error in binutils 2.36 (bsc#1181741) * 0001-Fix-build-error-in-binutils-2.36.patch - Fix executable stack in grub-emu (bsc#1181696) * 0001-emu-fix-executable-stack-marking.patch - Restore compatibilty sym-links * grub2.spec - Use rpmlintrc to filter out rpmlint 2.0 error (bsc#1179044) * grub2.rpmlintrc ==== ipset ==== Version update (7.10 -> 7.11) Subpackages: libipset13 - Update to release 7.11 * Argument parsing buffer overflow in ipset_parse_argv fixed ==== kernel-firmware ==== Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network - Correct the RPi4 brcm config to recover the WiFi breakage (bsc#1182320): Revert-brcm-rpi4-boardflags3-bit.patch ==== kmod ==== Subpackages: libkmod2 - Fix grub's requoted kernel parameters (bsc#1181111) * 0001-libkmod-config-revamp-kcmdline-parsing-into-a-state-.patch * 0002-libkmod-config-re-quote-option-from-kernel-cmdline.patch ==== libaio ==== Version update (0.3.112 -> 0.3.112+29.696a5e6483ba) - Update to version libaio0.3.112+29.696a5e6483ba: * Fix test issue with gcc-11 (bsc#1181869) * harness: Skip the test if io_pgetevents() is not implemented * harness: Print better error messages on error conditions in 22.t * harness: Fix PROT_WRITE mmap check * harness: fix read into PROT_WRITE mmap test * harness: skip 22.p if async_poll isn't supported * harness: Handle -ENOTSUP from io_submit() with RWF_NOWAIT * harness: Add fallback code for filesystems not supporting O_DIRECT * harness: add support for skipping tests * harness: Make the test exit with a code matching the pass/fail state ==== libgcrypt ==== Version update (1.9.1 -> 1.9.2) - libgcrypt 1.9.2: * Fix building with --disable-asm on x86 * Check public key for ECDSA verify operation * Make sure gcry_get_config (NULL) returns a nul-terminated string * Fix a memory leak in the ECDH code * Fix a reading beyond end of input buffer in SHA2-avx2 - remove obsolete texinfo packaging macros ==== libnettle ==== Version update (3.7 -> 3.7.1) Subpackages: libhogweed6 libnettle8 - GNU Nettle 3.7.1: * Fix bug in chacha counter update logic (ppc64 and ppc64el) * Restore support for big-endian ARM platforms * Fix corner case bug in ECDSA verify, it would produce incorrect result in the unlikely case of an all-zero message hash * Support for pbkdf2_hmac_sha384 and pbkdf2_hmac_sha512 * Remove poorly performing ARM Neon code for doing single-block Salsa20 and Chacha ==== libsolv ==== Version update (0.7.16 -> 0.7.17) - repo_write: fix handling of nested flexarray - improve choicerule generation a bit more to cover more cases - harden testcase parser against repos being added too late - support python-3.10 - check %_dbpath macro in rpmdb code - handle default/visible/langonly attributes in comps parser - support multiple collections in updateinfo parser - add '-D' option in rpmdb2solv to set the dbpath - bump version to 0.7.17 ==== libzypp ==== Version update (17.25.6 -> 17.25.7) - Patch: Identify well-known category names (bsc#117984) This allows to use the RH and SUSE patch categrory names synonymously: (recommendedi = bugfix) and (optional = feature = enhancement). - Add missing includes for GCC 11 compatibility. - Fix %posttrans script execution (fixes #265) The scripts are execuable. No need to call them through 'sh -c'. - Commit: Fix rpmdb compat symlink in case rpm got removed. - Repo: Allow multiple baseurls specified on one line (fixes #285) - Regex: Fix memory leak and undefined behavior. - Add rpm buildrequires for test suite (fixes #279) - Use rpmdb2solv new -D switch to tell the location ob the rpmdatabase to use. - BuildRequires: libsolv-devel >= 0.7.17. - version 17.25.7 (22) ==== pam ==== - Add missing conflicts for pam_unix-nis - Split out pam_unix module and build without NIS support ==== patterns-base ==== Subpackages: patterns-base-apparmor patterns-base-bootloader patterns-base-minimal_base - Don't pull in update_test pattern from sw_management - Move aaa_base-malloccheck from update_test to base ==== pcre ==== - package testsuite in a separate RPM (boo#1182235) ==== python-M2Crypto ==== - Add 293_sslv23_padding.patch to avoid using RSA_SSLV23_PADDING (gl#m2crypto/m2crypto#293, gh#openssl/openssl#14216). - OpenSSL allows the verificaton to continue on UNABLE_TO_VERIFY_LEAF_SIGNATURE * This unifies the behaviour of a single certificate with an unknown CA certificate with a self-signed certificate. - Add python-M2Crypto-Allow-on-UNABLE_TO_VERIFY_LEAF_SIGNATURE.patch (Thanks for Debian, https://salsa.debian.org/python-team/packages/m2crypto/-/commit/e0e9ad5cfff8) - Add source signature file ==== python-py ==== Version update (1.9.0 -> 1.10.0) - Update to 1.10.0 * Fix a regular expression DoS vulnerability in the py.path.svnwc SVN blame functionality (CVE-2020-29651) - Devendor apipkg and iniconfig - Add pr_222.patch to activate test suite ==== rdma-core ==== Version update (31.0 -> 31.3) Subpackages: libefa1 libibverbs libibverbs1 libmlx4-1 libmlx5-1 librdmacm1 - Update to rdma-core v31.3 - No release notes available - Fix patch to systemd-modules-load script (bsc#1178539) - Drop srp_daemon-Fix-systemd-dependency.patch as it was merged upstream ==== supportutils ==== - Additions to version 3.1.14 + [powerpc] Collect logs for power specific components (HNV) #88 (bsc#1181911) + Updated pam.txt documentation explaining GDPR + ha.txt: Fix pacemaker.log location for SLE15 #90 + supportconfig: use readlink /proc/<pid>/cwd to get cwd list instead of lsof #91 + supportconfig: sssd_info consistency #93 + Includes NVMe information with OPTION_NVME=1 in nvme.txt (bsc#1176370, SLE-15932) - No longer truncates boot log (bsc#1181610) - Require the awk, which and sed commands instead of packages to allow alternate implementations on embedded/Edge systems - Additions to version 3.1.13 + Added update-alternatives to etc.txt #82 + Collects rotated logs with different compression types (bsc#1180478) + Added GPL-2.0-only license tag to spec file - Additions to version 3.1.12 + btrfs_info: add -pce argument to qgroup show #80 + docker: add /etc/docker/daemon.json contents #81 - Additions to version 3.1.12 + Capture IBM Power bootlist (SLE-15557) + Fix spelling typos in man pages #78 + Collect multipath wwids file #77 + Removed unnecessary appname parameter from HTTP upload URL + added aa-status #74 - Additions to version 3.1.12 + [powerpc] Collect logs for power specific components #72 (bscn#1176895) + supportconfig: fs-btrfs: Add "btrfs device stats" output #73 - Additions to version 3.1.11 + Changes affecting supportconfig - disk_info: Show discard information in lsblk #70 - memory_info: Show VMware memory balloon infomation #71 - Addition to version 3.1.10 + Changes affecting analyzevmcore - Fixed typo in error message #67 + Changes affecting supportconfig - Fixed btrfs errors (bsc#1168894) - Large ntp.txt with binary data (bsc#1169122) - Check btrfs balance status #69 - Addition to version 3.1.9 + Changes affecting getappcore - Added core file validation (bsc#1166126) - Added -j <PID> to extract core from systemd journal - Capture coredumptctl info in getappcore.log + Changed filename prefixes from nts_ to scc_ (SLE-8702, SLE-6762) - The new prefix references SUSE Customer Center - Addition to version 3.1.8 + Changes affecting getappcore - Added -u for HTTPS and -f for FTPES uploads to SUSE FTP servers - Replaced Novell with SUSE FTP servers (bsc#1165475) - Uses /etc/getappcore.conf if present + Changes affecting supportconfig - Added missed Power collection per bsc#1162539 - Added zypper patterns output to updates.txt #66 - Addition to version 3.1.7 + exclude /proc/pagetypeinfo as it can be an expensive operation on some systems (bsc#1162357) + Readded LPM/DLPAR data for Power (bsc#1162539) - Addition to version 3.1.6 + Strip trailing commas from process names #64 (bsc#1156837) + Dynamically select compression method (bsc#1145233) + Updated detailed unit information fix in systemd.txt (bsc#1023308) + Fixed supportconig.conf man page with order placement + Include IPv6 routes (bsc#1089877) - Updated to version 3.1.5 + Removed root .snapshots directory from full file list (bsc#1154482) - Updated to version 3.1.4 + Removed LPM/DLPAR data for POWER (bsc#1111029) + prevent running 'systool -vb memory' by default on systems with 16TB or more #57 (bsc#1127734) + Tumbleweed support #50 + Added zypper orphaned packages check to updates.txt + Cpuset listing #52 + Docker disunite #53 + Added sed and gawk to spec requirements (bsc#1137336) + Added nstat to network + Add collection of livepatch information #63 + Check for missing ldap.conf file - Updated to version 3.1.3 + Uses SUSE FTP servers (bsc#1132865) + btrfs quota #43 + supportconfig: open-files: add file flags #44 + Merged etc_info: Add support for .cfg files in /etc dir #46 + Silence warning in rpm backup db collection path #47 + Set files in tarball to 660 instead of 600 #48 + SUSE separation finalized (bsc#1125623) + Default compression through xz, but -z forces bzip2 + Updated man pages (bsc#1088234) + Changed VAR_OPTION_BIN_TIMEOUT_SEC from 300 to 120 + Avoids some IO delays (bsc#1100529) + Corrected supported services help info for -U + Collects iSCSI Target information (bsc#1133844) + FTPES uses --ssl-reqd instead of depricated --ftp-ssl + Defaults to https FTP server uploads (bsc#1134599) - Updated to version 3.1.2 + Fixed missing sapconf and log (bsc#1081326) + Added timed_log_cmd to hwinfo and showmount commands (bsc#1120967) - Updated to version 3.1.1 + Fixed X missing /prob/fb error (bsc#1127069) + Fixed dasdview -f (bsc#1109664) + Clarified -t help description (bsc#1121043) + Fixed grep error in NTP when /etc/cron.d is empty (bsc#1127063) + Collects systemd journal with minimum install (bsc#1094225) + Supportconfig fails on bzip archives (bsc#1120049) + Get few drbd output & configuration #42 - Corrected missed SUSE separation lines - Fixed invalid exit code commands (bsc#1125666) - CVE-2018-19640: supportutils: Users can kill arbitrary processes (CVE-2018-19640 bsc#1118463) - User can overwrite arbitrary log files in support tar (CVE-2018-19638 bsc#1118460) - Code execution if run with -v (CVE-2018-19639 bsc#1118462) - Static temporary filename allows overwriting of files (CVE-2018-19637 bsc#1117776) - Included additional SUSE separation (bsc#1125609) - Merged added listing of locked packes by zypper #41 - Corrected spec file errors - Added firewall-cmd info - btrfs filesystem usage - Add ls -lA --time-style=long-iso /etc/products.d/ - Dump lsof errors - Added corosync status to ha_info - Clarified -x functionality in supportconfig(8) (bsc#1115245) - Dump find errors in ib_info - Exclude pam.txt per GDPR by default (bsc#1112461) - udev service and journal content (bsc#1051797) - supportconfig collects tuned profile settings (bsc#1071545) - sfdisk -d no disk device specified (bsc#1043311) - Added vulnerabilites check in basic-health.txt (bsc#1105849) - Added backup rpm database directory - Updated URLs in documentation - Added only sched_domain from cpu0 - Blacklist sched_domain from proc.txt (bsc#1046681) - Use %license instead of %doc [bsc#1082318] - Accounts for firewalld now (bsc#1079137) - Added dmesg taint seach - Removed mii-tool from networking - Updated HA to use chrony - Added kdumptool calibrate to crash.txt - Removed SLES_VER case for sles8,9 and 10 - Added tuned feature OPTION_TUNED tuned.txt (bsc#1071545) - Fixed udev service - Fixed no disk device with sfdisk (bsc#1078638) - Removed OPTION_SAM from man pages and resource file - Validated missing commands - Updated apparmor with systemctl service - Replaced deprecated networking commands (bsc#1078318) - Removed sam_info since suse_sam is no longer available - Assigned SLE15 to SLES_VER selections (bsc#1078168) - Includes X without display issue (bsc#1077813) - Fixes for Infiniband (bsc#1071294) - Using chrony for NTP (bsc#1077818) - Added os-release processing (bsc#1077758) - Removed invalid string tty string (bsc#1077681) - Added SLE15 taint values (bsc#1077683) - Added transactional update with OPTION_TRANSACTIONAL=1 - Updated supportconfig.conf.5 with OPTION_TRANSACTIONAL - Fixed docker package detection (bsc#1069457) - Replaced route with ip route (bsc#1070379) - Added systemd-delta to systemd.txt (bsc#1071924) - Changed repos -u to repos -d (bsc#1071926) - Added rdma-core for infiniband (bsc#1071294) ==== systemd ==== Subpackages: libsystemd0 libudev1 systemd-logger systemd-sysvinit udev - Add 0001-conf-parser-introduce-early-drop-ins.patch Introduce early configuration drop-in file. This type of drop-ins are reserved for vendor own purposes only and should never been used by users. It might be removed in the future without any notice. - Drop use of %systemd_postun in %postun This macro is supposed to operate on units but it was used without passing any parameters. This call was probably used for issuing a daemon-reload but the following calls to %systemd_postun_with_restart imply that already. So let's simply drop it. ==== tar ==== Version update (1.33 -> 1.34) - GNU tar 1.34: * Fix extraction over pipe * Fix memory leak in read_header * Fix extraction when . and .. are unreadable * Gracefully handle duplicate symlinks when extracting * Re-initialize supplementary groups when switching to user privileges ==== u-boot-rpiarm64 ==== Version update (2020.10 -> 2021.01) Subpackages: u-boot-rpiarm64-doc Fix boot for BananaPi R2 (bsc#1180732). Speed up boot time for RPi2. Patch queue updated from git://github.com/openSUSE/u-boot.git tumbleweed-2021.01 * Patches added: 0032-configs-BPI-R2-Disable-EFI-Grub-wor.patch 0033-configs-RPi2-Disable-EFI-Grub-worka.patch - Add qemu-riscv64spl Patch queue updated from git://github.com/openSUSE/u-boot.git tumbleweed-2021.01 * Patches added: 0031-efi_loader-Avoid-emitting-efi_var_b.patch - Drop pcm051rev3 for Phytec Wega board - Fix binary extension for sunxi based boards - Add Pinephone - Fix documentation location Update to v2021.01. Patch queue updated from git://github.com/openSUSE/u-boot.git tumbleweed-2021.01 * Patches dropped: 0028-usb-xhci-xhci_bulk_tx-Don-t-BUG-whe.patch 0029-Revert-Fix-data-abort-caused-by-mis.patch 0030-usb-xhci-pci-Add-DM_FLAG_OS_PREPARE.patch 0031-pci-brcmstb-Cleanup-controller-stat.patch * Patches added: 0028-usb-xhci-pci-Add-DM_FLAG_OS_PREPARE.patch 0029-pci-brcmstb-Cleanup-controller-stat.patch 0030-fs-btrfs-Select-SHA256-in-Kconfig.patch ==== util-linux ==== Version update (2.36.1 -> 2.36.2) Subpackages: libblkid1 libfdisk1 libmount1 libsmartcols1 libuuid1 - Update to version 2.36.2: * agetty: tty eol defaults to REPRINT * fsck.cramfs: fix fsck.cramfs crashes on blocksizes > 4K * lib/caputils: add fall back for last cap using prctl. * lib/signames: change license to public domain * libfdisk: * (dos) fix last possible sector calculation * (script) ignore empty values for start and size * ignore 33553920 byte optimal I/O size * libmount: * add vboxsf, virtiofs to pseudo filesystems * do not canonicalize ZFS source dataset * don't use "symfollow" for helpers on user mounts (boo#1181750, obsoletes util-linux-libmount-dont-use-symfollow.patch) * fix /{etc,proc}/filesystems use * login: use full tty path for PAM_TTY * lsblk: read SCSI_IDENT_SERIAL also from udev * rfkill: stop execution when rfkill device cannot be opened * setpriv: allow using [-+]all for capabilities. * su: use full tty path for PAM_TTY * switch_root: check if mount point to move even exists * umount: * ignore --no-canonicalize,-c for non-root users * Show the 'r' option in the help menu * Code cleanups and documentation improvements. * Translation updates. ==== util-linux-systemd ==== Version update (2.36.1 -> 2.36.2) - Update to version 2.36.2: * agetty: tty eol defaults to REPRINT * fsck.cramfs: fix fsck.cramfs crashes on blocksizes > 4K * lib/caputils: add fall back for last cap using prctl. * lib/signames: change license to public domain * libfdisk: * (dos) fix last possible sector calculation * (script) ignore empty values for start and size * ignore 33553920 byte optimal I/O size * libmount: * add vboxsf, virtiofs to pseudo filesystems * do not canonicalize ZFS source dataset * don't use "symfollow" for helpers on user mounts (boo#1181750, obsoletes util-linux-libmount-dont-use-symfollow.patch) * fix /{etc,proc}/filesystems use * login: use full tty path for PAM_TTY * lsblk: read SCSI_IDENT_SERIAL also from udev * rfkill: stop execution when rfkill device cannot be opened * setpriv: allow using [-+]all for capabilities. * su: use full tty path for PAM_TTY * switch_root: check if mount point to move even exists * umount: * ignore --no-canonicalize,-c for non-root users * Show the 'r' option in the help menu * Code cleanups and documentation improvements. * Translation updates. ==== vim ==== Subpackages: vim-data-common vim-small - source correct suse.vimrc file (boo#1182324)

1 0

New MicroOS snapshot 20210222 released!
by Richard Brown 23 Feb '21

23 Feb '21

Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: avahi ca-certificates-mozilla (2.44 -> 2.46) dracut (051+suse.85.g04886430 -> 052+suse.93.g7bfaa6d9) drpm ell (0.36 -> 0.38) filesystem fwupd (1.5.3 -> 1.5.6) gnome-desktop (3.38.3 -> 3.38.4) gtk3 (3.24.24 -> 3.24.25) ipset (7.10 -> 7.11) kmod ldacBT libaio (0.3.112 -> 0.3.112+29.696a5e6483ba) libnettle (3.7 -> 3.7.1) libpcap (1.9.1 -> 1.10.0) libqt5-qtwebengine llvm11 mpg123 pam patterns-base pcre pipewire python-py (1.9.0 -> 1.10.0) supportutils systemd tar (1.33 -> 1.34) util-linux (2.36.1 -> 2.36.2) util-linux-systemd (2.36.1 -> 2.36.2) vim webkit2gtk3 xkeyboard-config (2.31 -> 2.32) xmlsec1 === Details === ==== avahi ==== Subpackages: libavahi-client3 libavahi-common3 libavahi-core7 - Update avahi-daemon-check-dns.sh from Debian. Our previous version relied on ifconfig, route, and init.d. - Rebase avahi-daemon-check-dns-suse.patch, and drop privileges when invoking avahi-daemon-check-dns.sh (boo#1180827 CVE-2021-26720). - Add sudo to requires: used to drop privileges. ==== ca-certificates-mozilla ==== Version update (2.44 -> 2.46) - Updated to 2.46 state of the Mozilla NSS Certificate store (bsc#1181994) - Added new root CAs: - NAVER Global Root Certification Authority - Removed old root CA: - GeoTrust Global CA - GeoTrust Primary Certification Authority - GeoTrust Primary Certification Authority - G3 - GeoTrust Universal CA - GeoTrust Universal CA 2 - thawte Primary Root CA - thawte Primary Root CA - G2 - thawte Primary Root CA - G3 - VeriSign Class 3 Public Primary Certification Authority - G4 - VeriSign Class 3 Public Primary Certification Authority - G5 ==== dracut ==== Version update (051+suse.85.g04886430 -> 052+suse.93.g7bfaa6d9) Subpackages: dracut-ima - Update to version 052+suse.93.g7bfaa6d9: * fix(dbus-daemon): make sure that dbus.socket is stopped before switch root (bsc#1181167) - Update to version 052+suse.91.gb30dce3c: * chore: update suse/dracut.spec - Update to version 052+suse.88.gc78b4ac8: * fix(i18n): get rid of `eval` calls * fix(i18n): create the keyboard symlinks again * docs: update NEWS.md and AUTHORS * chore: add `CONTRIBUTORS` target to Makefile * fix: shellcheck across multipl emodules * docs: fix dracut.cmdline.7 * fix: update dbus module directory in spec file * fix: add sdaskpw and sdsyctl to spec file * fix: cosmetic comment fixes * feat(systemd-ask-password): introducing systemd-ask-password module * Revert "nbd: use systemd-run to start nbd-client" * dmsquash-live-root: squashfs in bare device * feat(systemd-sysctl): introducing systemd-sysctl module * fix: adding missing efi paths * fix: correct the squash quirk * feat(systemd-modules-load): introducing systemd-modules-load module * fix(shutdown): add timeout to umount calls * fix: revise all module checks * fix: add missing line continuation * fix: BuildRequiring git-core is enough in dracut.spec * fix(kernel-modules): add reset controllers for arm * 35network-legacy: discard pointless RTNETLINK message * fix(plymouth): install binaries with dependencies * fix: correct the line continuation * fix(dbus-daemon): use uid/gid from sysroot is dracutsysrootdir is set * fix(network-manager): allow override network manager version * feat(dracut.sh): allow overriding the systemctl command for sysroot * fix: use find_binary * fix(dracut.sh): don't override path with foreign sysroot * fix: quote globbing in module-setup.sh for inst_multiple * fix(dracut-install): allow globbing for multiple sources * Fix bad ls parsing * fix: move ldconfig after library workaround * feat(kernel-modules): add driver memory * feat(systemd-repart): introducing systemd-repart module * feat(dbus-daemon): introducing the dbus-daemon module * feat(dbus-broker): introducing the dbus-broker module * feat(dbus): introducing a meta module for dbus * fix(network-legacy): silent check for leaseinfo * 95nfs: fix rpc.statd installation * fix: do not set cmdline for uefi images unless asked * feat(network-legacy): send dhcp in parallel on all devices * fix(mdraid): remove offroot * fix(mdraid): add grow continue service * fix(spec): add new systemd-coredump module to spec * fix(watchdog): replace return with echo * feat(systemd-coredump): introducing systemd-coredump module * prepare usrmerge (boo#1029961) * test: incr. disk size for TEST 35 ISCSI-MULTI * fix(skipcpio): edit skipcpio.c: strstr -> memmem * fix(1007): adding shared keyring mode to type unit * feat(systemd-sysusers): introducing systemd-sysuser module * feat(systemd-sysusers): introducing systemd-sysuser module * fix(1001): use efivars fs over the deprecated sysfs entries * fix(kernel-network-modules): also install modules from mdio subdirectory * fix(06dbus): do not hardcode path to dbus utils * fix(06dbus): do not hardcode path to systemd unit * fix(dracut-init.sh): make inst_libdir_file work with dracutsysrootdir set * fix(99squash): use kernel config instead of modprobe to check modules * fix(dracut-functions.sh): check kernel config from $dracutsysrootdir * fix(90kernel-modules): install generic crypto modules with hostonly unset * feat: add addional global variables * fix: add a missing efi support * chore(removal): eliminate bootchart module * feat: add addional global variables * feat(cli): add --no-uefi option * chore(github): add CODEOWNERS file * chore(cleanup): remove logrotate file * fix(35network-manager): avoid restarting NetworkManager * chore: Add configuration for vim * chore: Add editorconfig * chore: Editors * test(conventional): add Conventional Commits PR github action * docs(development): add HACKING.md ==== drpm ==== - skip valgrind checking on aarch64 (bsc#1182493) ==== ell ==== Version update (0.36 -> 0.38) - Update to release 0.38 : * Fix issue with DHCP v6 Rapid Commit option check. * Fix issue with handling RFC8018/RFC1423 padding. * Fix issue with D-Bus filter messages with no interfaces set. * Add support for PKCS#12 certification loading. ==== filesystem ==== - Add Ukrainian to the list of localized man directories. ==== fwupd ==== Version update (1.5.3 -> 1.5.6) Subpackages: libfwupd2 libfwupdplugin1 typelib-1_0-Fwupd-2_0 - Update to 1.5.6: New features: * Add SBAT metadata to the fwupd EFI binary * Add support for GD32VF103 as found in the Longan Nano * Add support for RMI PS2 devices * Add support for the System76 Keyboard * Allow downloading firmware from IPFS * Install the UX data into a single .tar.xz file * Add a plugin to update PixArt RF devices * Add new hardware to use the elantp and rts54hid plugins * Allow specifying more than one VendorID for a device * Detect the AMD TSME encryption state for HSI-4 * Detect the AMI PK test key is not installed for HSI-1 * Add Maple Ridge Thunderbolt firmware parsing support * Add --no-remote-check to ignore checking for download remotes * Allow creating FMAP and Synaptics firmware using builder.xml Fixes: * Add support for the Starlabs LabTop L4 * Allow using an external ESP again * Ask the user to reboot when required if downgrading * Be more paranoid when parsing ASCII buffers and devices * Check if the fwupd BootXXXX entry exists on failure * Clear the pending flag if restarting the system * Do not allow flashing using flashrom if BLE is enabled * Do not allow Lenovo hardware to install multiple capsules * Do not parse the OptionROM image * Do not show Unknown [***] for every client connection * Fix dnload wBlockNum wraparound for ST devices * Fix OOM when using large ArchiveSizeMax values * Fix several crashes spotted by AddressSanitizer * Fix several places where the Goodix MOC plugin could crash * Include the PCR0 to the report metadata * Report the lockdown status from UEFI and SuperIO plugins * Show a console warning if the system clock is not set * Fix flashing a fingerprint reader that is in use * Fix several critical warnings when parsing invalid firmware * Fix updating DFU devices that use DNLOAD_BUSY * Ignore the legacy UEFI OVMF dummy GUID * Make libfwupd more thread safe to fix a crash in gnome-software * Never show unprintable chars from invalid firmware in the logs * Allow using fwupdtool as non-root for firmware commands * Do not trust the Block.HintSystem boolean for ESP filtering * Fix a memory leak when parsing Synaptics firmware * Fix a possible crash when reading the Goodix MOC USB request * Fix crashes when parsing invalid FMAP, DMC, Solokey and Synaptics images - Deprecate fwupd-bsc1179790-disable-hintsystem.patch ==== gnome-desktop ==== Version update (3.38.3 -> 3.38.4) Subpackages: gnome-version libgnome-desktop-3-19 libgnome-desktop-3_0-common typelib-1_0-GnomeDesktop-3_0 - Update to version 3.38.4: + Updated translations. ==== gtk3 ==== Version update (3.24.24 -> 3.24.25) Subpackages: gtk3-data gtk3-schema gtk3-tools libgtk-3-0 typelib-1_0-Gtk-3_0 - Update to version 3.24.25: + Settings: Make cursor aspect ratio setting work. + Broadway: - Fix touchscreen event handling. - Support Android / Chrome on-screen keyboard. + Wayland: - Avoid crashes with tablet input. - Add api to support clients with subsurfaces better. + Inspector: Make the inspector available in non-debug builds. + Theme: - Make scrollbars larger. - Disable shadows on maximized, fullscreen and tiled windows. + Printing: Support Avahi-discovered printers better. + Input: - Show preedit for compose sequences. - Support long compose sequences. - Support compose sequences producing multiple characters. + Updated translations. ==== ipset ==== Version update (7.10 -> 7.11) Subpackages: libipset13 - Update to release 7.11 * Argument parsing buffer overflow in ipset_parse_argv fixed ==== kmod ==== Subpackages: libkmod2 - Fix grub's requoted kernel parameters (bsc#1181111) * 0001-libkmod-config-revamp-kcmdline-parsing-into-a-state-.patch * 0002-libkmod-config-re-quote-option-from-kernel-cmdline.patch ==== ldacBT ==== - Exclude building in big-endian architectures (s390 s390x ppc64) since ldacBT requires a little-endian cpu to build. ==== libaio ==== Version update (0.3.112 -> 0.3.112+29.696a5e6483ba) - Update to version libaio0.3.112+29.696a5e6483ba: * Fix test issue with gcc-11 (bsc#1181869) * harness: Skip the test if io_pgetevents() is not implemented * harness: Print better error messages on error conditions in 22.t * harness: Fix PROT_WRITE mmap check * harness: fix read into PROT_WRITE mmap test * harness: skip 22.p if async_poll isn't supported * harness: Handle -ENOTSUP from io_submit() with RWF_NOWAIT * harness: Add fallback code for filesystems not supporting O_DIRECT * harness: add support for skipping tests * harness: Make the test exit with a code matching the pass/fail state ==== libnettle ==== Version update (3.7 -> 3.7.1) Subpackages: libhogweed6 libnettle8 - GNU Nettle 3.7.1: * Fix bug in chacha counter update logic (ppc64 and ppc64el) * Restore support for big-endian ARM platforms * Fix corner case bug in ECDSA verify, it would produce incorrect result in the unlikely case of an all-zero message hash * Support for pbkdf2_hmac_sha384 and pbkdf2_hmac_sha512 * Remove poorly performing ARM Neon code for doing single-block Salsa20 and Chacha ==== libpcap ==== Version update (1.9.1 -> 1.10.0) - Update to 1.10.0 * Require, and assume, some level of C99 support in the C compiler * Add support for capturing on DPDK devices * rpcap: support rpcap-over-TLS * Fix some memory leaks, including in pcap_compile() * Linux: handle systems without AF_INET or AF_UNIX socket support * Catch invalid IPv4 addresses in filters * Show special Linux BPF offsets symbolically in bpf_image() and bpf_dump() * Linux: get rid of Wireless Extensions for turning monitor mode on * Linux: proper memory sync for PACKET_MMAP * Linux: drop support for libnl 1 and 2. * Linux: Require PF_PACKET support, and kernel 2.6.27 or later * Add DLT_LINUX_SLL2 * Add a new filter "ifindex" for DLT_LINUX_SLL2 files and live Linux captures * optimizer: add a hack to try to catch certain optimizer loops * Probe CONFIGURATION descriptor of connected USB devices * Linux: return error on interface going away, but not if it just went down * Linux: set socket protocol only after packet ring configured, reducing bogus packet drop reports * Linux: get ifdrop stats from sysfs. * Fix various security issues reported by Charles Smith at Tangible Security * Fix various security issues reported by Include Security * rpcapd: on UN*X, don't tell the client why authentication failed * Linux: when adjusting BPF programs, do not subtract the SLL[2]_HDR_LEN if the location is negative (special metadata offset) * Linux: with a timeout of zero, wait indefinitely * Linux: clean up support for some non-GNU libc C libraries * Increase the maximum snaplen for LINKTYPE_USBPCAP/DLT_USBPCAP * Fix handling of some ioctls that fail with "permission denied" even when the ioctl isn't supported at all * Added support for ICMPv6 types 1-4 as tokens in filters * Report the DLT description in error messages * Linux: Add support for DSA data link types * Linux USB: use the snapshot length to set the buffer size, and set the len field to reflect the length in the URB * rpcapd: allow rpcapd to rebind more rapidly * Add Haiku pcap implementation * rpcap: redo protocol version negotiation to avoid problems with old servers (it still works with servers using the old negotiation, as well as servers not supporting negotiation) * Remove (unused) SITA support here. * Correctly handle pcapng captures with more than one IDB with a snspshot length greater than the supported maximum - Remove libpcap-no-old-socket.patch - Rebase libpcap-1.0.0-s390.patch ==== libqt5-qtwebengine ==== - Add patch to fix sandbox with glibc 2.33 on 32bit: * sandbox-statx-futex_time64.patch - Relax constraints for armv6 and armv7 ==== llvm11 ==== - Don't use gold and ThinLTO on ppc64le because of boo#1181621. - Fix-missing-include.patch: fix build with GCC 11. (boo#1181875) - CMake-Look-up-target-subcomponents-in-LLVM_AVAILABLE_LIBS.patch: Fix target component lookup. (boo#1180748) ==== mpg123 ==== - Avoid unconditional Supplements ==== pam ==== - Add missing conflicts for pam_unix-nis - Split out pam_unix module and build without NIS support ==== patterns-base ==== Subpackages: patterns-base-base patterns-base-bootloader patterns-base-minimal_base patterns-base-x11 - Don't pull in update_test pattern from sw_management - Move aaa_base-malloccheck from update_test to base ==== pcre ==== - package testsuite in a separate RPM (boo#1182235) ==== pipewire ==== Subpackages: gstreamer-plugin-pipewire libpipewire-0_3-0 pipewire-modules pipewire-spa-plugins-0_2 pipewire-spa-tools pipewire-tools - ldacBT only builds on little endian architectures, so we can't buildrequire it on big endian systems like s390, s390x or ppc64. ==== python-py ==== Version update (1.9.0 -> 1.10.0) - Update to 1.10.0 * Fix a regular expression DoS vulnerability in the py.path.svnwc SVN blame functionality (CVE-2020-29651) - Devendor apipkg and iniconfig - Add pr_222.patch to activate test suite ==== supportutils ==== - Additions to version 3.1.14 + [powerpc] Collect logs for power specific components (HNV) #88 (bsc#1181911) + Updated pam.txt documentation explaining GDPR + ha.txt: Fix pacemaker.log location for SLE15 #90 + supportconfig: use readlink /proc/<pid>/cwd to get cwd list instead of lsof #91 + supportconfig: sssd_info consistency #93 + Includes NVMe information with OPTION_NVME=1 in nvme.txt (bsc#1176370, SLE-15932) - No longer truncates boot log (bsc#1181610) - Require the awk, which and sed commands instead of packages to allow alternate implementations on embedded/Edge systems - Additions to version 3.1.13 + Added update-alternatives to etc.txt #82 + Collects rotated logs with different compression types (bsc#1180478) + Added GPL-2.0-only license tag to spec file - Additions to version 3.1.12 + btrfs_info: add -pce argument to qgroup show #80 + docker: add /etc/docker/daemon.json contents #81 - Additions to version 3.1.12 + Capture IBM Power bootlist (SLE-15557) + Fix spelling typos in man pages #78 + Collect multipath wwids file #77 + Removed unnecessary appname parameter from HTTP upload URL + added aa-status #74 - Additions to version 3.1.12 + [powerpc] Collect logs for power specific components #72 (bscn#1176895) + supportconfig: fs-btrfs: Add "btrfs device stats" output #73 - Additions to version 3.1.11 + Changes affecting supportconfig - disk_info: Show discard information in lsblk #70 - memory_info: Show VMware memory balloon infomation #71 - Addition to version 3.1.10 + Changes affecting analyzevmcore - Fixed typo in error message #67 + Changes affecting supportconfig - Fixed btrfs errors (bsc#1168894) - Large ntp.txt with binary data (bsc#1169122) - Check btrfs balance status #69 - Addition to version 3.1.9 + Changes affecting getappcore - Added core file validation (bsc#1166126) - Added -j <PID> to extract core from systemd journal - Capture coredumptctl info in getappcore.log + Changed filename prefixes from nts_ to scc_ (SLE-8702, SLE-6762) - The new prefix references SUSE Customer Center - Addition to version 3.1.8 + Changes affecting getappcore - Added -u for HTTPS and -f for FTPES uploads to SUSE FTP servers - Replaced Novell with SUSE FTP servers (bsc#1165475) - Uses /etc/getappcore.conf if present + Changes affecting supportconfig - Added missed Power collection per bsc#1162539 - Added zypper patterns output to updates.txt #66 - Addition to version 3.1.7 + exclude /proc/pagetypeinfo as it can be an expensive operation on some systems (bsc#1162357) + Readded LPM/DLPAR data for Power (bsc#1162539) - Addition to version 3.1.6 + Strip trailing commas from process names #64 (bsc#1156837) + Dynamically select compression method (bsc#1145233) + Updated detailed unit information fix in systemd.txt (bsc#1023308) + Fixed supportconig.conf man page with order placement + Include IPv6 routes (bsc#1089877) - Updated to version 3.1.5 + Removed root .snapshots directory from full file list (bsc#1154482) - Updated to version 3.1.4 + Removed LPM/DLPAR data for POWER (bsc#1111029) + prevent running 'systool -vb memory' by default on systems with 16TB or more #57 (bsc#1127734) + Tumbleweed support #50 + Added zypper orphaned packages check to updates.txt + Cpuset listing #52 + Docker disunite #53 + Added sed and gawk to spec requirements (bsc#1137336) + Added nstat to network + Add collection of livepatch information #63 + Check for missing ldap.conf file - Updated to version 3.1.3 + Uses SUSE FTP servers (bsc#1132865) + btrfs quota #43 + supportconfig: open-files: add file flags #44 + Merged etc_info: Add support for .cfg files in /etc dir #46 + Silence warning in rpm backup db collection path #47 + Set files in tarball to 660 instead of 600 #48 + SUSE separation finalized (bsc#1125623) + Default compression through xz, but -z forces bzip2 + Updated man pages (bsc#1088234) + Changed VAR_OPTION_BIN_TIMEOUT_SEC from 300 to 120 + Avoids some IO delays (bsc#1100529) + Corrected supported services help info for -U + Collects iSCSI Target information (bsc#1133844) + FTPES uses --ssl-reqd instead of depricated --ftp-ssl + Defaults to https FTP server uploads (bsc#1134599) - Updated to version 3.1.2 + Fixed missing sapconf and log (bsc#1081326) + Added timed_log_cmd to hwinfo and showmount commands (bsc#1120967) - Updated to version 3.1.1 + Fixed X missing /prob/fb error (bsc#1127069) + Fixed dasdview -f (bsc#1109664) + Clarified -t help description (bsc#1121043) + Fixed grep error in NTP when /etc/cron.d is empty (bsc#1127063) + Collects systemd journal with minimum install (bsc#1094225) + Supportconfig fails on bzip archives (bsc#1120049) + Get few drbd output & configuration #42 - Corrected missed SUSE separation lines - Fixed invalid exit code commands (bsc#1125666) - CVE-2018-19640: supportutils: Users can kill arbitrary processes (CVE-2018-19640 bsc#1118463) - User can overwrite arbitrary log files in support tar (CVE-2018-19638 bsc#1118460) - Code execution if run with -v (CVE-2018-19639 bsc#1118462) - Static temporary filename allows overwriting of files (CVE-2018-19637 bsc#1117776) - Included additional SUSE separation (bsc#1125609) - Merged added listing of locked packes by zypper #41 - Corrected spec file errors - Added firewall-cmd info - btrfs filesystem usage - Add ls -lA --time-style=long-iso /etc/products.d/ - Dump lsof errors - Added corosync status to ha_info - Clarified -x functionality in supportconfig(8) (bsc#1115245) - Dump find errors in ib_info - Exclude pam.txt per GDPR by default (bsc#1112461) - udev service and journal content (bsc#1051797) - supportconfig collects tuned profile settings (bsc#1071545) - sfdisk -d no disk device specified (bsc#1043311) - Added vulnerabilites check in basic-health.txt (bsc#1105849) - Added backup rpm database directory - Updated URLs in documentation - Added only sched_domain from cpu0 - Blacklist sched_domain from proc.txt (bsc#1046681) - Use %license instead of %doc [bsc#1082318] - Accounts for firewalld now (bsc#1079137) - Added dmesg taint seach - Removed mii-tool from networking - Updated HA to use chrony - Added kdumptool calibrate to crash.txt - Removed SLES_VER case for sles8,9 and 10 - Added tuned feature OPTION_TUNED tuned.txt (bsc#1071545) - Fixed udev service - Fixed no disk device with sfdisk (bsc#1078638) - Removed OPTION_SAM from man pages and resource file - Validated missing commands - Updated apparmor with systemctl service - Replaced deprecated networking commands (bsc#1078318) - Removed sam_info since suse_sam is no longer available - Assigned SLE15 to SLES_VER selections (bsc#1078168) - Includes X without display issue (bsc#1077813) - Fixes for Infiniband (bsc#1071294) - Using chrony for NTP (bsc#1077818) - Added os-release processing (bsc#1077758) - Removed invalid string tty string (bsc#1077681) - Added SLE15 taint values (bsc#1077683) - Added transactional update with OPTION_TRANSACTIONAL=1 - Updated supportconfig.conf.5 with OPTION_TRANSACTIONAL - Fixed docker package detection (bsc#1069457) - Replaced route with ip route (bsc#1070379) - Added systemd-delta to systemd.txt (bsc#1071924) - Changed repos -u to repos -d (bsc#1071926) - Added rdma-core for infiniband (bsc#1071294) ==== systemd ==== Subpackages: libsystemd0 libudev1 systemd-logger systemd-sysvinit udev - Add 0001-conf-parser-introduce-early-drop-ins.patch Introduce early configuration drop-in file. This type of drop-ins are reserved for vendor own purposes only and should never been used by users. It might be removed in the future without any notice. - Drop use of %systemd_postun in %postun This macro is supposed to operate on units but it was used without passing any parameters. This call was probably used for issuing a daemon-reload but the following calls to %systemd_postun_with_restart imply that already. So let's simply drop it. ==== tar ==== Version update (1.33 -> 1.34) - GNU tar 1.34: * Fix extraction over pipe * Fix memory leak in read_header * Fix extraction when . and .. are unreadable * Gracefully handle duplicate symlinks when extracting * Re-initialize supplementary groups when switching to user privileges ==== util-linux ==== Version update (2.36.1 -> 2.36.2) Subpackages: libblkid1 libfdisk1 libmount1 libsmartcols1 libuuid1 - Update to version 2.36.2: * agetty: tty eol defaults to REPRINT * fsck.cramfs: fix fsck.cramfs crashes on blocksizes > 4K * lib/caputils: add fall back for last cap using prctl. * lib/signames: change license to public domain * libfdisk: * (dos) fix last possible sector calculation * (script) ignore empty values for start and size * ignore 33553920 byte optimal I/O size * libmount: * add vboxsf, virtiofs to pseudo filesystems * do not canonicalize ZFS source dataset * don't use "symfollow" for helpers on user mounts (boo#1181750, obsoletes util-linux-libmount-dont-use-symfollow.patch) * fix /{etc,proc}/filesystems use * login: use full tty path for PAM_TTY * lsblk: read SCSI_IDENT_SERIAL also from udev * rfkill: stop execution when rfkill device cannot be opened * setpriv: allow using [-+]all for capabilities. * su: use full tty path for PAM_TTY * switch_root: check if mount point to move even exists * umount: * ignore --no-canonicalize,-c for non-root users * Show the 'r' option in the help menu * Code cleanups and documentation improvements. * Translation updates. ==== util-linux-systemd ==== Version update (2.36.1 -> 2.36.2) - Update to version 2.36.2: * agetty: tty eol defaults to REPRINT * fsck.cramfs: fix fsck.cramfs crashes on blocksizes > 4K * lib/caputils: add fall back for last cap using prctl. * lib/signames: change license to public domain * libfdisk: * (dos) fix last possible sector calculation * (script) ignore empty values for start and size * ignore 33553920 byte optimal I/O size * libmount: * add vboxsf, virtiofs to pseudo filesystems * do not canonicalize ZFS source dataset * don't use "symfollow" for helpers on user mounts (boo#1181750, obsoletes util-linux-libmount-dont-use-symfollow.patch) * fix /{etc,proc}/filesystems use * login: use full tty path for PAM_TTY * lsblk: read SCSI_IDENT_SERIAL also from udev * rfkill: stop execution when rfkill device cannot be opened * setpriv: allow using [-+]all for capabilities. * su: use full tty path for PAM_TTY * switch_root: check if mount point to move even exists * umount: * ignore --no-canonicalize,-c for non-root users * Show the 'r' option in the help menu * Code cleanups and documentation improvements. * Translation updates. ==== vim ==== Subpackages: vim-data-common vim-small - source correct suse.vimrc file (boo#1182324) ==== webkit2gtk3 ==== Subpackages: libjavascriptcoregtk-4_0-18 libwebkit2gtk-4_0-37 webkit2gtk-4_0-injected-bundles - Update _constraints for armv6/armv7 ==== xkeyboard-config ==== Version update (2.31 -> 2.32) - Update to version 2.32 * latest bugfix release ==== xmlsec1 ==== Subpackages: libxmlsec1-1 libxmlsec1-openssl1 - Relax the crypto policies for the test-suite. This allows the tests using certificates with small key lengths to pass.

1 0

New Kubic snapshot 20210222 released!
by Richard Brown 23 Feb '21

23 Feb '21

Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=1&version=T… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: ca-certificates-mozilla (2.44 -> 2.46) dracut (051+suse.85.g04886430 -> 052+suse.93.g7bfaa6d9) filesystem ipset (7.10 -> 7.11) kmod libaio (0.3.112 -> 0.3.112+29.696a5e6483ba) libnettle (3.7 -> 3.7.1) pam patterns-base pcre python-py (1.9.0 -> 1.10.0) supportutils systemd tar (1.33 -> 1.34) util-linux (2.36.1 -> 2.36.2) util-linux-systemd (2.36.1 -> 2.36.2) vim xmlsec1 === Details === ==== ca-certificates-mozilla ==== Version update (2.44 -> 2.46) - Updated to 2.46 state of the Mozilla NSS Certificate store (bsc#1181994) - Added new root CAs: - NAVER Global Root Certification Authority - Removed old root CA: - GeoTrust Global CA - GeoTrust Primary Certification Authority - GeoTrust Primary Certification Authority - G3 - GeoTrust Universal CA - GeoTrust Universal CA 2 - thawte Primary Root CA - thawte Primary Root CA - G2 - thawte Primary Root CA - G3 - VeriSign Class 3 Public Primary Certification Authority - G4 - VeriSign Class 3 Public Primary Certification Authority - G5 ==== dracut ==== Version update (051+suse.85.g04886430 -> 052+suse.93.g7bfaa6d9) Subpackages: dracut-ima - Update to version 052+suse.93.g7bfaa6d9: * fix(dbus-daemon): make sure that dbus.socket is stopped before switch root (bsc#1181167) - Update to version 052+suse.91.gb30dce3c: * chore: update suse/dracut.spec - Update to version 052+suse.88.gc78b4ac8: * fix(i18n): get rid of `eval` calls * fix(i18n): create the keyboard symlinks again * docs: update NEWS.md and AUTHORS * chore: add `CONTRIBUTORS` target to Makefile * fix: shellcheck across multipl emodules * docs: fix dracut.cmdline.7 * fix: update dbus module directory in spec file * fix: add sdaskpw and sdsyctl to spec file * fix: cosmetic comment fixes * feat(systemd-ask-password): introducing systemd-ask-password module * Revert "nbd: use systemd-run to start nbd-client" * dmsquash-live-root: squashfs in bare device * feat(systemd-sysctl): introducing systemd-sysctl module * fix: adding missing efi paths * fix: correct the squash quirk * feat(systemd-modules-load): introducing systemd-modules-load module * fix(shutdown): add timeout to umount calls * fix: revise all module checks * fix: add missing line continuation * fix: BuildRequiring git-core is enough in dracut.spec * fix(kernel-modules): add reset controllers for arm * 35network-legacy: discard pointless RTNETLINK message * fix(plymouth): install binaries with dependencies * fix: correct the line continuation * fix(dbus-daemon): use uid/gid from sysroot is dracutsysrootdir is set * fix(network-manager): allow override network manager version * feat(dracut.sh): allow overriding the systemctl command for sysroot * fix: use find_binary * fix(dracut.sh): don't override path with foreign sysroot * fix: quote globbing in module-setup.sh for inst_multiple * fix(dracut-install): allow globbing for multiple sources * Fix bad ls parsing * fix: move ldconfig after library workaround * feat(kernel-modules): add driver memory * feat(systemd-repart): introducing systemd-repart module * feat(dbus-daemon): introducing the dbus-daemon module * feat(dbus-broker): introducing the dbus-broker module * feat(dbus): introducing a meta module for dbus * fix(network-legacy): silent check for leaseinfo * 95nfs: fix rpc.statd installation * fix: do not set cmdline for uefi images unless asked * feat(network-legacy): send dhcp in parallel on all devices * fix(mdraid): remove offroot * fix(mdraid): add grow continue service * fix(spec): add new systemd-coredump module to spec * fix(watchdog): replace return with echo * feat(systemd-coredump): introducing systemd-coredump module * prepare usrmerge (boo#1029961) * test: incr. disk size for TEST 35 ISCSI-MULTI * fix(skipcpio): edit skipcpio.c: strstr -> memmem * fix(1007): adding shared keyring mode to type unit * feat(systemd-sysusers): introducing systemd-sysuser module * feat(systemd-sysusers): introducing systemd-sysuser module * fix(1001): use efivars fs over the deprecated sysfs entries * fix(kernel-network-modules): also install modules from mdio subdirectory * fix(06dbus): do not hardcode path to dbus utils * fix(06dbus): do not hardcode path to systemd unit * fix(dracut-init.sh): make inst_libdir_file work with dracutsysrootdir set * fix(99squash): use kernel config instead of modprobe to check modules * fix(dracut-functions.sh): check kernel config from $dracutsysrootdir * fix(90kernel-modules): install generic crypto modules with hostonly unset * feat: add addional global variables * fix: add a missing efi support * chore(removal): eliminate bootchart module * feat: add addional global variables * feat(cli): add --no-uefi option * chore(github): add CODEOWNERS file * chore(cleanup): remove logrotate file * fix(35network-manager): avoid restarting NetworkManager * chore: Add configuration for vim * chore: Add editorconfig * chore: Editors * test(conventional): add Conventional Commits PR github action * docs(development): add HACKING.md ==== filesystem ==== - Add Ukrainian to the list of localized man directories. ==== ipset ==== Version update (7.10 -> 7.11) Subpackages: libipset13 - Update to release 7.11 * Argument parsing buffer overflow in ipset_parse_argv fixed ==== kmod ==== Subpackages: libkmod2 - Fix grub's requoted kernel parameters (bsc#1181111) * 0001-libkmod-config-revamp-kcmdline-parsing-into-a-state-.patch * 0002-libkmod-config-re-quote-option-from-kernel-cmdline.patch ==== libaio ==== Version update (0.3.112 -> 0.3.112+29.696a5e6483ba) - Update to version libaio0.3.112+29.696a5e6483ba: * Fix test issue with gcc-11 (bsc#1181869) * harness: Skip the test if io_pgetevents() is not implemented * harness: Print better error messages on error conditions in 22.t * harness: Fix PROT_WRITE mmap check * harness: fix read into PROT_WRITE mmap test * harness: skip 22.p if async_poll isn't supported * harness: Handle -ENOTSUP from io_submit() with RWF_NOWAIT * harness: Add fallback code for filesystems not supporting O_DIRECT * harness: add support for skipping tests * harness: Make the test exit with a code matching the pass/fail state ==== libnettle ==== Version update (3.7 -> 3.7.1) Subpackages: libhogweed6 libnettle8 - GNU Nettle 3.7.1: * Fix bug in chacha counter update logic (ppc64 and ppc64el) * Restore support for big-endian ARM platforms * Fix corner case bug in ECDSA verify, it would produce incorrect result in the unlikely case of an all-zero message hash * Support for pbkdf2_hmac_sha384 and pbkdf2_hmac_sha512 * Remove poorly performing ARM Neon code for doing single-block Salsa20 and Chacha ==== pam ==== - Add missing conflicts for pam_unix-nis - Split out pam_unix module and build without NIS support ==== patterns-base ==== Subpackages: patterns-base-apparmor patterns-base-bootloader patterns-base-minimal_base - Don't pull in update_test pattern from sw_management - Move aaa_base-malloccheck from update_test to base ==== pcre ==== - package testsuite in a separate RPM (boo#1182235) ==== python-py ==== Version update (1.9.0 -> 1.10.0) - Update to 1.10.0 * Fix a regular expression DoS vulnerability in the py.path.svnwc SVN blame functionality (CVE-2020-29651) - Devendor apipkg and iniconfig - Add pr_222.patch to activate test suite ==== supportutils ==== - Additions to version 3.1.14 + [powerpc] Collect logs for power specific components (HNV) #88 (bsc#1181911) + Updated pam.txt documentation explaining GDPR + ha.txt: Fix pacemaker.log location for SLE15 #90 + supportconfig: use readlink /proc/<pid>/cwd to get cwd list instead of lsof #91 + supportconfig: sssd_info consistency #93 + Includes NVMe information with OPTION_NVME=1 in nvme.txt (bsc#1176370, SLE-15932) - No longer truncates boot log (bsc#1181610) - Require the awk, which and sed commands instead of packages to allow alternate implementations on embedded/Edge systems - Additions to version 3.1.13 + Added update-alternatives to etc.txt #82 + Collects rotated logs with different compression types (bsc#1180478) + Added GPL-2.0-only license tag to spec file - Additions to version 3.1.12 + btrfs_info: add -pce argument to qgroup show #80 + docker: add /etc/docker/daemon.json contents #81 - Additions to version 3.1.12 + Capture IBM Power bootlist (SLE-15557) + Fix spelling typos in man pages #78 + Collect multipath wwids file #77 + Removed unnecessary appname parameter from HTTP upload URL + added aa-status #74 - Additions to version 3.1.12 + [powerpc] Collect logs for power specific components #72 (bscn#1176895) + supportconfig: fs-btrfs: Add "btrfs device stats" output #73 - Additions to version 3.1.11 + Changes affecting supportconfig - disk_info: Show discard information in lsblk #70 - memory_info: Show VMware memory balloon infomation #71 - Addition to version 3.1.10 + Changes affecting analyzevmcore - Fixed typo in error message #67 + Changes affecting supportconfig - Fixed btrfs errors (bsc#1168894) - Large ntp.txt with binary data (bsc#1169122) - Check btrfs balance status #69 - Addition to version 3.1.9 + Changes affecting getappcore - Added core file validation (bsc#1166126) - Added -j <PID> to extract core from systemd journal - Capture coredumptctl info in getappcore.log + Changed filename prefixes from nts_ to scc_ (SLE-8702, SLE-6762) - The new prefix references SUSE Customer Center - Addition to version 3.1.8 + Changes affecting getappcore - Added -u for HTTPS and -f for FTPES uploads to SUSE FTP servers - Replaced Novell with SUSE FTP servers (bsc#1165475) - Uses /etc/getappcore.conf if present + Changes affecting supportconfig - Added missed Power collection per bsc#1162539 - Added zypper patterns output to updates.txt #66 - Addition to version 3.1.7 + exclude /proc/pagetypeinfo as it can be an expensive operation on some systems (bsc#1162357) + Readded LPM/DLPAR data for Power (bsc#1162539) - Addition to version 3.1.6 + Strip trailing commas from process names #64 (bsc#1156837) + Dynamically select compression method (bsc#1145233) + Updated detailed unit information fix in systemd.txt (bsc#1023308) + Fixed supportconig.conf man page with order placement + Include IPv6 routes (bsc#1089877) - Updated to version 3.1.5 + Removed root .snapshots directory from full file list (bsc#1154482) - Updated to version 3.1.4 + Removed LPM/DLPAR data for POWER (bsc#1111029) + prevent running 'systool -vb memory' by default on systems with 16TB or more #57 (bsc#1127734) + Tumbleweed support #50 + Added zypper orphaned packages check to updates.txt + Cpuset listing #52 + Docker disunite #53 + Added sed and gawk to spec requirements (bsc#1137336) + Added nstat to network + Add collection of livepatch information #63 + Check for missing ldap.conf file - Updated to version 3.1.3 + Uses SUSE FTP servers (bsc#1132865) + btrfs quota #43 + supportconfig: open-files: add file flags #44 + Merged etc_info: Add support for .cfg files in /etc dir #46 + Silence warning in rpm backup db collection path #47 + Set files in tarball to 660 instead of 600 #48 + SUSE separation finalized (bsc#1125623) + Default compression through xz, but -z forces bzip2 + Updated man pages (bsc#1088234) + Changed VAR_OPTION_BIN_TIMEOUT_SEC from 300 to 120 + Avoids some IO delays (bsc#1100529) + Corrected supported services help info for -U + Collects iSCSI Target information (bsc#1133844) + FTPES uses --ssl-reqd instead of depricated --ftp-ssl + Defaults to https FTP server uploads (bsc#1134599) - Updated to version 3.1.2 + Fixed missing sapconf and log (bsc#1081326) + Added timed_log_cmd to hwinfo and showmount commands (bsc#1120967) - Updated to version 3.1.1 + Fixed X missing /prob/fb error (bsc#1127069) + Fixed dasdview -f (bsc#1109664) + Clarified -t help description (bsc#1121043) + Fixed grep error in NTP when /etc/cron.d is empty (bsc#1127063) + Collects systemd journal with minimum install (bsc#1094225) + Supportconfig fails on bzip archives (bsc#1120049) + Get few drbd output & configuration #42 - Corrected missed SUSE separation lines - Fixed invalid exit code commands (bsc#1125666) - CVE-2018-19640: supportutils: Users can kill arbitrary processes (CVE-2018-19640 bsc#1118463) - User can overwrite arbitrary log files in support tar (CVE-2018-19638 bsc#1118460) - Code execution if run with -v (CVE-2018-19639 bsc#1118462) - Static temporary filename allows overwriting of files (CVE-2018-19637 bsc#1117776) - Included additional SUSE separation (bsc#1125609) - Merged added listing of locked packes by zypper #41 - Corrected spec file errors - Added firewall-cmd info - btrfs filesystem usage - Add ls -lA --time-style=long-iso /etc/products.d/ - Dump lsof errors - Added corosync status to ha_info - Clarified -x functionality in supportconfig(8) (bsc#1115245) - Dump find errors in ib_info - Exclude pam.txt per GDPR by default (bsc#1112461) - udev service and journal content (bsc#1051797) - supportconfig collects tuned profile settings (bsc#1071545) - sfdisk -d no disk device specified (bsc#1043311) - Added vulnerabilites check in basic-health.txt (bsc#1105849) - Added backup rpm database directory - Updated URLs in documentation - Added only sched_domain from cpu0 - Blacklist sched_domain from proc.txt (bsc#1046681) - Use %license instead of %doc [bsc#1082318] - Accounts for firewalld now (bsc#1079137) - Added dmesg taint seach - Removed mii-tool from networking - Updated HA to use chrony - Added kdumptool calibrate to crash.txt - Removed SLES_VER case for sles8,9 and 10 - Added tuned feature OPTION_TUNED tuned.txt (bsc#1071545) - Fixed udev service - Fixed no disk device with sfdisk (bsc#1078638) - Removed OPTION_SAM from man pages and resource file - Validated missing commands - Updated apparmor with systemctl service - Replaced deprecated networking commands (bsc#1078318) - Removed sam_info since suse_sam is no longer available - Assigned SLE15 to SLES_VER selections (bsc#1078168) - Includes X without display issue (bsc#1077813) - Fixes for Infiniband (bsc#1071294) - Using chrony for NTP (bsc#1077818) - Added os-release processing (bsc#1077758) - Removed invalid string tty string (bsc#1077681) - Added SLE15 taint values (bsc#1077683) - Added transactional update with OPTION_TRANSACTIONAL=1 - Updated supportconfig.conf.5 with OPTION_TRANSACTIONAL - Fixed docker package detection (bsc#1069457) - Replaced route with ip route (bsc#1070379) - Added systemd-delta to systemd.txt (bsc#1071924) - Changed repos -u to repos -d (bsc#1071926) - Added rdma-core for infiniband (bsc#1071294) ==== systemd ==== Subpackages: libsystemd0 libudev1 systemd-logger systemd-sysvinit udev - Add 0001-conf-parser-introduce-early-drop-ins.patch Introduce early configuration drop-in file. This type of drop-ins are reserved for vendor own purposes only and should never been used by users. It might be removed in the future without any notice. - Drop use of %systemd_postun in %postun This macro is supposed to operate on units but it was used without passing any parameters. This call was probably used for issuing a daemon-reload but the following calls to %systemd_postun_with_restart imply that already. So let's simply drop it. ==== tar ==== Version update (1.33 -> 1.34) - GNU tar 1.34: * Fix extraction over pipe * Fix memory leak in read_header * Fix extraction when . and .. are unreadable * Gracefully handle duplicate symlinks when extracting * Re-initialize supplementary groups when switching to user privileges ==== util-linux ==== Version update (2.36.1 -> 2.36.2) Subpackages: libblkid1 libfdisk1 libmount1 libsmartcols1 libuuid1 - Update to version 2.36.2: * agetty: tty eol defaults to REPRINT * fsck.cramfs: fix fsck.cramfs crashes on blocksizes > 4K * lib/caputils: add fall back for last cap using prctl. * lib/signames: change license to public domain * libfdisk: * (dos) fix last possible sector calculation * (script) ignore empty values for start and size * ignore 33553920 byte optimal I/O size * libmount: * add vboxsf, virtiofs to pseudo filesystems * do not canonicalize ZFS source dataset * don't use "symfollow" for helpers on user mounts (boo#1181750, obsoletes util-linux-libmount-dont-use-symfollow.patch) * fix /{etc,proc}/filesystems use * login: use full tty path for PAM_TTY * lsblk: read SCSI_IDENT_SERIAL also from udev * rfkill: stop execution when rfkill device cannot be opened * setpriv: allow using [-+]all for capabilities. * su: use full tty path for PAM_TTY * switch_root: check if mount point to move even exists * umount: * ignore --no-canonicalize,-c for non-root users * Show the 'r' option in the help menu * Code cleanups and documentation improvements. * Translation updates. ==== util-linux-systemd ==== Version update (2.36.1 -> 2.36.2) - Update to version 2.36.2: * agetty: tty eol defaults to REPRINT * fsck.cramfs: fix fsck.cramfs crashes on blocksizes > 4K * lib/caputils: add fall back for last cap using prctl. * lib/signames: change license to public domain * libfdisk: * (dos) fix last possible sector calculation * (script) ignore empty values for start and size * ignore 33553920 byte optimal I/O size * libmount: * add vboxsf, virtiofs to pseudo filesystems * do not canonicalize ZFS source dataset * don't use "symfollow" for helpers on user mounts (boo#1181750, obsoletes util-linux-libmount-dont-use-symfollow.patch) * fix /{etc,proc}/filesystems use * login: use full tty path for PAM_TTY * lsblk: read SCSI_IDENT_SERIAL also from udev * rfkill: stop execution when rfkill device cannot be opened * setpriv: allow using [-+]all for capabilities. * su: use full tty path for PAM_TTY * switch_root: check if mount point to move even exists * umount: * ignore --no-canonicalize,-c for non-root users * Show the 'r' option in the help menu * Code cleanups and documentation improvements. * Translation updates. ==== vim ==== Subpackages: vim-data-common vim-small - source correct suse.vimrc file (boo#1182324) ==== xmlsec1 ==== Subpackages: libxmlsec1-1 libxmlsec1-openssl1 - Relax the crypto policies for the test-suite. This allows the tests using certificates with small key lengths to pass.

1 0

Correct (kubic) way to upgrade cluster from 1.18 to 1.20
by Johannes Kastl 23 Feb '21

23 Feb '21

Hi all, due to lack of time my kubernetes cluster running on Kubic is still on 1.18. What is the correct way to upgrade the cluster (from 1.18 to 1.19 to 1.20), especially on kubic? I mean the special packaing for having multiple versions available in the repositories... My idea was to install the kubernetes1.19-kubeadm package (which leads to some patterns being uninstalled, which I wanted to revert later), upgrade to 1.19, reinstall the 1.20 package and the patterns and do the jump to 1.12. Am I right? Or desastrously wrong? Kind Regards, Johannes P.S.: This would be a nice idea for a wiki page, explaining the packaging layout and how to use it for upgrades. Maybe I'll find the time... -- Johannes Kastl Linux Consultant & Trainer Tel.: +49 (0) 151 2372 5802 Mail: kastl(a)b1-systems.de B1 Systems GmbH Osterfeldstraße 7 / 85088 Vohburg http://www.b1-systems.de GF: Ralph Dehner Unternehmenssitz: Vohburg / AG: Ingolstadt,HRB 3537

2 3

New ARM MicroOS snapshot 20210221 released!
by Guillaume Gardet 22 Feb '21

22 Feb '21

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=microos&groupid=3&version… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: apparmor attica-qt5 (5.78.0 -> 5.79.0) avahi avahi-glib2 baloo5 (5.78.0 -> 5.79.0) bluedevil5 (5.20.5 -> 5.21.0) bluez-qt (5.78.0 -> 5.79.0) boost-base breeze (5.20.5 -> 5.21.0) breeze5-icons (5.78.0 -> 5.79.0) btrfsmaintenance containers-systemd (0.0+git20210118.1366ecb -> 0.0+git20210205.a4b07b6) dhcp (4.3.5 -> 4.4.2) discover (5.20.5 -> 5.21.0) dosfstools (4.1+git.1610658652.9443732 -> 4.2) drkonqi5 (5.20.5 -> 5.21.0) elfutils (0.182 -> 0.183) evolution-data-server (3.38.3 -> 3.38.4) ffmpeg-4 fftw3 frameworkintegration (5.78.0 -> 5.79.0) fuse3 (3.10.1 -> 3.10.2) gcc10 gcc11 (11.0.0+git182924 -> 11.0.0+git183291) glib2 (2.66.4 -> 2.66.7) glibc (2.32 -> 2.33) gnome-autoar (0.2.4 -> 0.3.0) gnome-software (3.38.0 -> 3.38.1) gnome-terminal (3.38.2 -> 3.38.3) gptfdisk (1.0.5 -> 1.0.6) gstreamer-plugins-bad ibus json-glib (1.6.0 -> 1.6.2) kactivities-stats (5.78.0 -> 5.79.0) kactivities5 (5.78.0 -> 5.79.0) kactivitymanagerd (5.20.5 -> 5.21.0) karchive (5.78.0 -> 5.79.0) kauth (5.78.0 -> 5.79.0) kbd (2.3.0 -> 2.4.0) kbookmarks (5.78.0 -> 5.79.0) kcmutils (5.78.0 -> 5.79.0) kcodecs (5.78.0 -> 5.79.0) kcompletion (5.78.0 -> 5.79.0) kconfig (5.78.0 -> 5.79.0) kconfigwidgets (5.78.0 -> 5.79.0) kcoreaddons (5.78.0 -> 5.79.0) kcrash (5.78.0 -> 5.79.0) kdbusaddons (5.78.0 -> 5.79.0) kde-cli-tools5 (5.20.5 -> 5.21.0) kdeclarative (5.78.0 -> 5.79.0) kded (5.78.0 -> 5.79.0) kdelibs4support (5.78.0 -> 5.79.0) kdesu (5.78.0 -> 5.79.0) kdnssd-framework (5.78.0 -> 5.79.1) kdoctools (5.78.0 -> 5.79.0) kernel-default-base (5.10.12 -> 5.10.16) kernel-firmware (20210119 -> 20210208) kernel-source (5.10.12 -> 5.10.16) kfilemetadata5 (5.78.0 -> 5.79.0) kgamma5 (5.20.5 -> 5.21.0) kglobalaccel (5.78.0 -> 5.79.0) kguiaddons (5.78.0 -> 5.79.0) kholidays (5.78.0 -> 5.79.0) khotkeys5 (5.20.5 -> 5.21.0) ki18n (5.78.0 -> 5.79.0) kiconthemes (5.78.0 -> 5.79.0) kidletime (5.78.0 -> 5.79.0) kinfocenter5 (5.20.5 -> 5.21.0) kinit (5.78.0 -> 5.79.0) kio (5.78.0 -> 5.79.0) kirigami2 (5.78.0 -> 5.79.0) kitemmodels (5.78.0 -> 5.79.0) kitemviews (5.78.0 -> 5.79.0) kjobwidgets (5.78.0 -> 5.79.0) kmenuedit5 (5.20.5 -> 5.21.0) kmod knewstuff (5.78.0 -> 5.79.0) knotifications (5.78.0 -> 5.79.0) knotifyconfig (5.78.0 -> 5.79.0) kpackage (5.78.0 -> 5.79.0) kparts (5.78.0 -> 5.79.0) kpeople5 (5.78.0 -> 5.79.0) kpty (5.78.0 -> 5.79.0) kquickcharts (5.78.0 -> 5.79.0) kross (5.78.0 -> 5.79.0) krunner (5.78.0 -> 5.79.0) kscreen5 (5.20.5 -> 5.21.0) kscreenlocker (5.20.5 -> 5.21.0) kservice (5.78.0 -> 5.79.0) ksysguard5 (5.20.5 -> 5.21.0) ktexteditor (5.78.0 -> 5.79.0) ktextwidgets (5.78.0 -> 5.79.0) kunitconversion (5.78.0 -> 5.79.0) kwallet (5.78.0 -> 5.79.0) kwayland (5.78.0 -> 5.79.0) kwayland-integration (5.20.5 -> 5.21.0) kwayland-server (5.20.5 -> 5.21.0) kwidgetsaddons (5.78.0 -> 5.79.0) kwin5 (5.20.5 -> 5.21.0) kwindowsystem (5.78.0 -> 5.79.0) kwrited5 (5.20.5 -> 5.21.0) kxmlgui (5.78.0 -> 5.79.0) libKF5ModemManagerQt (5.78.0 -> 5.79.0) libKF5NetworkManagerQt (5.78.0 -> 5.79.0) libapparmor libcap (2.47 -> 2.48) libdatrie (0.2.12 -> 0.2.13) libevdev (1.9.1 -> 1.11.0) libevent libgdata (0.17.13 -> 0.18.0) libkdecoration2 (5.20.5 -> 5.21.0) libkscreen2 (5.20.5 -> 5.21.0) libksysguard5 (5.20.5 -> 5.21.0) libqca-qt5 (2.3.1 -> 2.3.2) libqt5-qtbase libqt5-qtwebengine libquvi-scripts libressl (3.2.3 -> 3.2.4) libselinux libwebp (1.1.0 -> 1.2.0) logrotate (3.17.0 -> 3.18.0) milou5 (5.20.5 -> 5.21.0) mpfr nghttp2 (1.42.0 -> 1.43.0) openal-soft (1.21.0 -> 1.21.1) openjpeg2 (2.3.1 -> 2.4.0) openssh pango (1.48.1 -> 1.48.2) perl-Bootloader (0.932 -> 0.933) pigz (2.4 -> 2.6) pinentry pipewire (0.3.20 -> 0.3.21) plasma-browser-integration (5.20.5 -> 5.21.0) plasma-framework (5.78.0 -> 5.79.0) plasma-nm5 (5.20.5 -> 5.21.0) plasma5-addons (5.20.5 -> 5.21.0) plasma5-desktop (5.20.5 -> 5.21.0) plasma5-integration (5.20.5 -> 5.21.0) plasma5-openSUSE plasma5-pa (5.20.5 -> 5.21.0) plasma5-workspace (5.20.5 -> 5.21.0) polkit-kde-agent-5 (5.20.5 -> 5.21.0) poppler (21.01.0 -> 21.02.0) poppler-qt5 (21.01.0 -> 21.02.0) powerdevil5 (5.20.5 -> 5.21.0) prison-qt5 (5.78.0 -> 5.79.0) procps (3.3.16 -> 3.3.17) purpose (5.78.0 -> 5.79.0) python-Jinja2 (2.11.2 -> 2.11.3) python-cffi (1.14.4 -> 1.14.5) python-cryptography (3.3.1 -> 3.3.2) python-idna (2.10 -> 3.1) python-networkx python-pyrsistent python-pytz (2020.5 -> 2021.1) python-requests python38 python38-core qqc2-desktop-style (5.78.0 -> 5.79.0) re2 (20201101 -> 20210202) reiserfs rpm samba (4.13.3+git.181.fc4672a5b81 -> 4.13.4+git.187.5ad4708741a) sensors solid (5.78.0 -> 5.79.0) sonnet (5.78.0 -> 5.79.0) srt supportutils (3.1.13 -> 3.1.14) syntax-highlighting (5.78.0 -> 5.79.1) system-users systemsettings5 (5.20.5 -> 5.21.0) sysuser-tools telepathy-glib (0.24.1 -> 0.24.2) threadweaver (5.78.0 -> 5.79.0) transactional-update (2.28.3 -> 3.1.4) udisks2 (2.9.1 -> 2.9.2) util-linux util-linux-systemd vte (0.62.2 -> 0.62.3) vulkan-loader (1.2.165 -> 1.2.169) webkit2gtk3 (2.30.4 -> 2.30.5) wpa_supplicant xdg-desktop-portal-kde (5.20.5 -> 5.21.0) xterm (363 -> 366) yelp (3.38.2 -> 3.38.3) yelp-xsl (3.38.2 -> 3.38.3) zxing-cpp (1.1.0 -> 1.1.1) === Details === ==== apparmor ==== Subpackages: apparmor-abstractions apparmor-parser apparmor-profiles apparmor-utils python3-apparmor - merge libapparmor.changes into apparmor.changes ==== attica-qt5 ==== Version update (5.78.0 -> 5.79.0) Subpackages: libKF5Attica5 - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Make int -> QString conversion explicit * Port from QNetworkRequest::FollowRedirectsAttribute to QNetworkRequest::RedirectPolicyAttribute ==== avahi ==== Subpackages: libavahi-client3 libavahi-common3 libavahi-core7 - Drop configure --libexecdir variable as it does not appear to be used by the source archive. - Build python bindings subpackages for all flavors * use the python-rpm-macros singlespec system: The macro %python_subpackages together with %python_subpackage_only creates the pythonXY-avahi bindings package for all python flavors on Tumbleweed (currently python36, python38) * Put the avahi-bookmarks command under updates-alternatives control to avoid package conflicts between flavors * outside of build_core, the build continues to use but not install everything in the primary python3 flavor. * For distros without multiple python3 flavors and/or older python-rpm-macros, the status quo is unchanged. ==== avahi-glib2 ==== - Fix split-provides for python3-avahi-gtk: avahi-python is provided/obsoleted by the primary python38-avahi package. avahi-discover is the only extra file provided here, not avahi-bookmarks ==== baloo5 ==== Version update (5.78.0 -> 5.79.0) Subpackages: baloo5-imports baloo5-kioslaves libKF5Baloo5 libKF5BalooEngine5 - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Too many changes to list here. ==== bluedevil5 ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - No code changes since 5.20.90 - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Too many changes to list here ==== bluez-qt ==== Version update (5.78.0 -> 5.79.0) Subpackages: bluez-qt-imports bluez-qt-udev libKF5BluezQt6 - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Use QLatin1Char instead of wchat_t * Add missing list include * Change QStringList forward decl to include ==== boost-base ==== Subpackages: boost-license1_75_0 libboost_thread1_75_0 - Fix HPC build on ARM. It seems boost_serialization libraries are no longer implicitly build with this setup. - Add build support for gcc10 to HPC build (bsc#1174439). - Add openmpi4 flavors (jsc#SLE-16462). ==== breeze ==== Version update (5.20.5 -> 5.21.0) Subpackages: breeze5-cursors breeze5-decoration breeze5-style breeze5-wallpapers libbreezecommon5-5 - Disable the migration from the breeze color scheme to breeze. On fresh installations, the LNF is applied afterwards and so it has no effect. Switching the color scheme in the LNF would need an almost complete reneedling, so don't do that just yet. - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - Changes since 5.20.90: * Clean up listener (kde#432660) * Update users that have Breeze as colorscheme to BreezeLight (kde#432470) * Fix colors files * Don't waste a space in menus * [kstyle]: Don't attempt to adjust contentsMargins on QDialogs * [kstyle]: Don't attempt to adjust contentsMargins on QMainWindows (kde#432246) * kstyle: expand tools area 1px downwards if present (kde#431540) * [kstyle]: Don't draw line when no toolbars are present in fullscreen (kde#431969) * hotfix: remove hasHeaderColors call from ::polish * Revert "Do not draw background or line in toolbars if the color scheme has no headers group" * kde4breeze: Breeze Light is the new default (kde#431917) - Only Recommend breeze5-wallpapers, it's fairly big and by default (openSUSE look-and-feel) not used - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Too many changes to list here ==== breeze5-icons ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * new telegram-panel icons * Use correct style for align-horizontal-left-out icons (kde#432273) * Add new kickoff icons Matches the appearance of current kickoff (kde#431883) * Add rating-half, 100% opacity for rating-unrated, Text color for rating in dark theme * Remove KeePassXC icons (kde#431593) * Fix @3x icons (kde#431475) * add neochat icon ==== btrfsmaintenance ==== - Require libzypp plugin only if zypper is used (Required for e.g. image based systems). ==== containers-systemd ==== Version update (0.0+git20210118.1366ecb -> 0.0+git20210205.a4b07b6) - Update to version 0.0+git20210205.a4b07b6: * Add container-nfs-service files ==== dhcp ==== Version update (4.3.5 -> 4.4.2) Subpackages: dhcp-client - update to 4.4.2: * Please note that that ISC DHCP is now licensed under the Mozilla Public License, MPL 2.0. In general, the areas of focus for ISC DHCP 4.4 were: 1. Dynamic DNS additions 2. dhclient improvements 3. Support for dynamic shared libraries * Added the interface name to socket initialization failure log messages. Prior to this the log messages stated only the error reason without stating the target interface. * Corrected buffer pointer logic in dhcrelay functions that manipulate agent relay options. Thanks to Thomas Imbert of MSRC Vulnerabilities & Mitigations for reporting the issue. * Corrected unresolved symbol errors building relay_unittests when configured to build using libtool. * A new configuration parameter, ping-cltt-secs (v4 operation only), has been added to allow the user to specify the number of seconds that must elapse since CLTT before a ping check is conducted. Prior to this, the value was hard coded at 60 seconds. Please see the server man pages for a more detailed discussion. * A new configuration parameter, ping-timeout-ms (v4 operation only), has been added that allows the user to specify the amount of time the server waits for a ping-check response in milliseconds rather than in seconds (via ping-timeout). When greater than zero, the value of ping-timeout-ms will override the value of ping-timeout. Thanks to Jay Doran from Bluecat Networks for suggesting this feature. * An experimental tool called, Keama (KEA Migration Assistant), which helps translate ISC DHCP configurations to Kea configurations, is now included in the distribution. * Corrected a misuse of the BIND9 DDNS API which caused DDNS updates to be carried out over TCP rather than UDP. The coding error was exposed by migration to BIND9 9.11. Thanks to Jinmei Tatuya at Infoblox for reporting the issue. * Bind9 now defaults to requiring python to build. The Makefile for building Bind9 when bundled with ISC DHCP was modified to turn off this dependency. * Corrected a dual-stack mixed-mode issue that occurs when both ddns-guard-id-must-match and ddns-other-guard-is-dynamic are enabled and that caused the server to incorrectly interpret the presence of a guard record belonging to another client as a case of no guard record at all. Thanks to Fernando Soto from BlueCat Networks for reporting this issue. * Corrected a compilation issue that occurred when building without DNS update ability (e.g. by undefining NSUPDATE). * Corrected an issue that was causing the server, when running in DHPCv4 mode, to segfault when class lease limits are reached. Thanks to Peter Nagy at Porion-Digital for reporting the matter and submitting a patch. * Made minor changes to eliminate warnings when compiled with GCC 9. Thanks to Brett Neumeier for bringing the matter to our attention. * Fixed potential memory leaks in parser error message generation spotted by Coverity, CIDs: 1448191, 1448193, 1448194, 1448195 * Updated URL of IEEE oui.txt in contrib/dhcp-lease-list.pl. Thanks to Tommy Smith for contributing the patch. * Fixed define flags when using SO_BINDTODEVICE. Thanks to Joe LeVeque for reporting the issue. * Applied a patch from OpenBSD to always set the scope id of outbound DHPCv6 packets. Note this change only applies when compiling under OpenBSD. Thanks to Brad Smith at OpenBSD from bringing it to our attention. * Modified dhclient to not discard config file leases that are duplicates of server-provided leases and to retain such leases after they have been used as the fallback active lease and DHCP service has been restored. This allows them to be used more than once during the lifetime of a dhclient instance. This applies to DHCPv4 operation only. * Corrected a number of reference counter and zero-length buffer leaks. Thanks to Christopher Ertl of MSRC Vulnerabilities & Mitigations for pointing them out. * Closed a small window of time between the installation of graceful shutdown signal handlers and application context startup, during which the receipt of shutdown signal would cause a REQUIRE() assertion to occur. Note this issue is only visible when compiling with ENABLE_GENTLE_SHUTDOWN defined. * Corrected a buffer overflow that can occur when retrieving zone names that are more than 255 characters in length. * The "d" domain name option format was incorrectly handled as text instead of RFC 1035 wire format. Thanks to Jay Doran at BlueCat Networks for reporting this issue. * Improved the error message issued when a host declaration has both a uid and a dhcp-client-identifier. Server configuration parsing will now fail if a host declaration specifies more than one uid. * Updated developer's documentation on building and running unit tests. Removed support for --with-atf=bind as BIND9 no longer bundles in ATF source. * Fixed a syntax error in ldap.c which cropped up under Ubuntu 18.04.1/gcc 7.4.0. Thanks to Charles Hedrick for pointing it out. * Added clarification to dhcp-options.5 section on ip-address values describing the first-use DNS resolution of options with hostnames as values (e.g. next-server). * The option format for the server option omapi-key was changed to a format type 'k' (key name); while server options ldap-port and ldap-init-retry were changed to 'L' (unsigned 32-bit integer). These three options were inadvertantly broken when the 'd' format content was changed to comply with RFC 1035 wire format (see Gitlab #2). * A delayed-ack value of 0 (the default), now correctly disables the delayed feature. A change in 4.4.0 prohibited lease updates marking leases active from be written to the lease file when delayed-ack is 0. This in turn, caused servers to lose active lease assignments upon restart. ! Option reference count was not correctly decremented in error path when parsing buffer for options. Reported by Felix Wilhelm, Google Security Team. CVE: CVE-2018-5733 ! Corrected an issue where large sized 'X/x' format options were causing option handling logic to overwrite memory when expanding them to human readable form. Reported by Felix Wilhelm, Google Security Team. CVE: CVE-2018-5732 * Added use of new Bind9 compatibility header files, that are now necessary to supply type definitions for primitive data types, removed from Bind9 proper. Altered util/bind.sh to pull from Bind9 repo on gitlab. * Duplicate address detection when binding to a new IPv6 address was added to the following dhclient scripts: linux,freebsd,netbsd,openbsd, and macos. The scripts will check for DAD errors after binding to a new IPv6 address for at most --dad-wait-time seconds. If a DAD error is detected the script will exit with a value of 3, instructing dhclient to decline the address. If dad-wait-time is zero (the default), DAD error checking is not peformed. * Support for sending and receiving additional DHCP4 options has been added to both the dhcpd and dhclient. Specifically: option codes 93,94, and 97 (RFC 4578); code 150 (RFC 5859); and codes 209,219, and 211 (RFC 5071). Beyond configuring, sending, requesting, and receiving these options neither server nor client apply any additional logic based on their values. Thanks to Peter Lewis for requesting this change. * Added clarifying text to dhcpd.conf.5 explaining the class match expressions cannot rely on the results of executable statements. * Fixed a bug which causes dhcpd and dhclient to crash on certain systems when given relative path names for lease or pid files on the command line. Affected systems are those on which the C library function, realpath() does not support a second parameter value of NULL (see manpages for realpath(3)). * Fixed a build issue when building with embedded BIND9 under OpenBSD that was causing BIND9 build to not generate dns/enumclass.h and dns/enumtype.h. * Added <dhcp>/m4/README to the distribution tarball. Some versions of ac_local() treat the absence of the m4 subdirectory as error rather than warning. This was causing the call to autoreconf, necessary for building with libtool, to fail. * Added experimental support for relay port (draft-ietf-dhc-relay-port-10.txt) feature for DHCPv4, DHCPv6 and DHCPv4-over-DHCPv6. Relay port has to be enabled at compile time via --enable-relay-port and is fully backward compatible (i.e. works with previous implementations of servers and relays using the standard ports). A new --rp <relay-port> command line option specifies to dhcrelay an alternate source port for upstream (i.e. toward the server) messages. Thanks to Naiming Shen and Enke Chen of Cisco systems for submitting these patches. * Added --release-on-roam to dhcpd server. When enabled and the server detects that a DHCPv6 client (IAID+DUID) has roamed to a new network, it will release the pre-existing leases on the old network and emit a log statement similar to the following: "Client: <id> roamed to new network, releasing lease: <address>" The server will carry out all of the same steps that would normally occur when a client explicitly releases a lease. This behavior is disabled by default and may only be specified globally. Prior to this the server renders the leases unavailable until they expire or the server is restarted. Clients that need leases in multiple networks must supply a unique IAID in each IA. When release-on-roam is disabled (the default) the server maintains the prior behavior of making such leases unavailable until they expire or the server is restarted. Clients that need leases in multiple networks must supply a unique IAID in each IA. This parameter may only be specified at the global level. Thanks to Fernando Soto from BlueCat Networks for suggesting this change. * Support for delayed-ack is now compiled in by default. Prior to this it had to be enabled at compile time via --enable-delayed-acks. The default value for delayed-ack, however, has been changed from 28 to 0 (i.e. disabled). This was done to minimize the impact on users not currently using the feature. Please note that the delayed-ack feature is not currently compatible with support for DHPCv4-over-DHCPv6 so when a 4to6 port command line argument enables this in the server the delayed-ack value is reset to 0. * Added to the server (-6) a new statement, local-address6, which specifies the source address of packets sent by the server. An additional flag, bind-local-address6, disabled by default, binds the service socket to to local-address6. Note that bind-local-address does not work with direct clients: a relay has to forward packets to the server using the local-address6 destination. * The server now recognizes environment variables PATH_DHCPD_DB and PATH_DHCPD_PID. These had been incorrectly compiled out of the code unless DHCPv6 support was disabled. Additionally, the server man pages were corrected to accurately reflect how the server chooses file names (see lease-file-name and pid-file-name statements). Thanks to Fernando Soto at Bluecat Networks for bringing this matter to our attention. * Removed an "Impossible condition" error upon exit in the dhcpd server that has been shutdown via OMAPI. This condition was only apparent under Solaris when building with --enable-use-sockets and --enable-ipv4-pktinfo. * Corrected some minor Coverity issues: CID 1426059, 1426058, and 1426057. * Added missing text to dhclient.8 and expanded release note coverage for --address-prefix-len changes. - remove dhcp-CVE-2019-6470.patch, 0013-dhcp-4.2.x-dhcpv6-decline-on-DAD-failure.872609.patch: merged upstream - 0006-dhcp-4.3.2-dhclient-send-hostname-or-fqdn.patch 0009-dhcp-4.2.6-close-on-exec.patch 0016-infiniband-support.patch 0018-client-fail-on-script-pre-init-error-bsc-912098.patch 0021-dhcp-ip-family-symlinks.patch: refresh against newer code base - build with --enable-log-pid (log pid) and enable-binary-leases (faster binary looup for large leases files) ==== discover ==== Version update (5.20.5 -> 5.21.0) Subpackages: discover-backend-flatpak discover-notifier - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - Changes since 5.20.90: * Do not always bring refreshed resources in (kde#432654) * Don't show the search action on desktop mode (kde#432693) * pk: Don't call the size function as it triggers a details fetch * pk: no need to fetch the details of the updatable packages * odrs: Move JSON parsing to a separate thread * pk: Small optimisation * pk: Make sure that we give precedence to the first pkgid we receive * pk: remove unused method * pk: Make sure we execute absolute paths * flatpak: Make sure we refresh the size display on the views * Show a "Search" main action on mobile on the Featured page * Do not show "Sorry, nothing found" on the search page before searching * pk: also remove duplicates from accounnting for the offline upgrades * [Updates page] Match style of Kirigami.PlaceholderMessage * pk: Fix installed filtering (kde#428681) * packagekit: Don't list repeated packages several times * pk: sort the updated package in offline updates description - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Too many changes to list here - Refresh 0001-Warning-for-FlatHub.patch ==== dosfstools ==== Version update (4.1+git.1610658652.9443732 -> 4.2) - update to 4.2: * mkfs.fat: Allow to specify disk geometry via new -g option * fsck.fat: Add code for fixing first FAT cluster * fatlabel: Do not call parts of fsck repair procedure * Update warning message about lowercase labels * mkfs.fat: Read geom_start from sysfs * Add missing files into distribution tarball ==== drkonqi5 ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - Changes since 5.20.90: * discard wayland client crashes following compositor crash (kde#431561) * Fix includes order on windows * Update .gitignore file * Add pre-commit hook for clang-format * Add .git-blame-ignore-revs file * Run clang-format * Prevent clang-format uglification - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Changes since 5.20.5: * Remove duplicate line * include the drkonqi version in reports * report all reproducible selections * capitalize consistently * Layout have already a parent. Not necessary to call this method * Don't include QtTest * Modify DBus service name to allow using QDBusServiceWatcher * fix warning about unused capture * focus lineedits for bug info page (kde#428350) * Fix for Clang: ptracer.cpp needs <errno.h> * fix buttongroup state toggles (kde#428346) * Port from QStandardPaths::DataLocation to QStandardPaths::AppDataLocation * Don't use deprecated signal * If include is define in .h remove it if it's defined in .cpp too (scripted) * Remove this add_definition * Compile without deprecated method * Add .gitignore file * it depends against kf5.74 * it depends against qt5.15 * Remove not implemented method * [systeminformation] Fix cpp17+ compatibility * Remove unused forward declaration * Convert copyright statements to SPDX expressions ==== elfutils ==== Version update (0.182 -> 0.183) Subpackages: libasm1 libdw1 libelf1 - Update to version 0.183: debuginfod: New thread-busy metric and more detailed error metrics. New --fdcache-mintmp and tracking of filesystem freespace. New increased webapi concurrency while grooming. debuginfod-client: DEBUGINFOD_SONAME macro added to debuginfod.h which can be used to dlopen the libdebuginfod.so library. New function debuginfod_set_verbose_fd and DEBUGINFOD_VERBOSE environment variable. config: profile.sh and profile.csh won't export DEBUGINFOD_URLS unless configured --enable-debuginfod-urls[=URLS] elflint, readelf: Recognize SHF_GNU_RETAIN. Handle SHT_X86_64_UNWIND as valid relocation target. - Remove config-do-not-define-DEBUGINFOD_URLS-environment-var.patch patch. ==== evolution-data-server ==== Version update (3.38.3 -> 3.38.4) Subpackages: libcamel-1_2-62 libebackend-1_2-10 libebook-1_2-20 libebook-contacts-1_2-3 libecal-2_0-1 libedata-book-1_2-26 libedata-cal-2_0-1 libedataserver-1_2-25 libedataserverui-1_2-2 - Update to version 3.38.4: + CamelFolder: Cancel save of the changes early in the dispose(). + AlarmNotify: - The e_alarm_notify_activate() can be called multiple times. - Stop using g_application_register(). - The XDG_CURRENT_DESKTOP env is a list. + Bug Fixes: glgo#GNOME/evolution-data-server#293, glgo#GNOME/evolution-data-server#296, glgo#GNOME/evolution-data-server#298, glgo#GNOME/evolution-data-server#299, glgo#GNOME/evolution-data-server#300. + Updated translations. ==== ffmpeg-4 ==== Subpackages: libavcodec58_91 libavformat58_45 libavutil56_51 libswresample3_7 - Add 0001-avformat-vividas-improve-extradata-packing-checks-in.patch [boo#1180519] [CVE-2020-35964] ==== fftw3 ==== - Add build support for gcc10 to HPC build (bsc#1174439). ==== frameworkintegration ==== Version update (5.78.0 -> 5.79.0) Subpackages: frameworkintegration-plugin libKF5Style5 - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Fix window decorations not being uninstallable (kde#414570) ==== fuse3 ==== Version update (3.10.1 -> 3.10.2) - Update to release 3.10.2 * Allow "nonempty" as a mount option, for backwards compatibility with fusermount 2. The option has no effect since mounting over non-empty directories is allowed by default. * FUSE filesystems can now be mounted underneath EXFAT mountpoints. ==== gcc10 ==== - Remove include-fixed/pthread.h - Change GCC exception licenses to SPDX format ==== gcc11 ==== Version update (11.0.0+git182924 -> 11.0.0+git183291) Subpackages: libgcc_s1 libgomp1 libstdc++6 - Bump to efcd941e86b507d77e90a1b13f621e036eacdb45. - Bump to 7a18bc4ae62081021f4fd90d591a588cac931f77. - New package, inherits from gcc10 * gcc-add-defaultsspec.diff, add the ability to provide a specs file that is read by default * tls-no-direct.diff, avoid direct %fs references on x86 to not slow down Xen * gcc43-no-unwind-tables.diff, do not produce unwind tables for CRT files * gcc41-ppc32-retaddr.patch, fix expansion of __builtin_return_addr for ppc, just a testcase * gcc44-textdomain.patch, make translation files version specific and adjust textdomain to find them * gcc44-rename-info-files.patch, fix cross-references in info files when renaming them to be version specific * gcc48-libstdc++-api-reference.patch, fix link in the installed libstdc++ html documentation * gcc48-remove-mpfr-2.4.0-requirement.patch, make GCC work with earlier mpfr versions on old products * gcc5-no-return-gcc43-workaround.patch, make build work with host gcc 4.3 * gcc7-remove-Wexpansion-to-defined-from-Wextra.patch, removes new warning from -Wextra * gcc7-avoid-fixinc-error.diff * gcc9-reproducible-builds-buildid-for-checksum.patch * gcc9-reproducible-builds.patch * gcc10-amdgcn-llvm-as.patch * gcc10-foffload-default.patch - libgccjit subpackage is added. - HWASAN is built for aarch64 target. ==== glib2 ==== Version update (2.66.4 -> 2.66.7) Subpackages: glib2-tools libgio-2_0-0 libglib-2_0-0 libgmodule-2_0-0 libgobject-2_0-0 - Update to version 2.66.7: + Fix various regressions caused by rushed security fixes in 2.66.6. + Fix a silent integer truncation when calling `g_byte_array_new_take()` for byte arrays bigger than `G_MAXUINT`. + Disallow using currently-undefined D-Bus connection or server flags to prevent forward-compatibility problems with new security-sensitive flags likely to be released in GLib 2.68. + Bugs fixed: glgo#GNOME/GLib!1933, glgo#GNOME/GLib!1943, glgo#GNOME/GLib!1944, glgo#GNOME/GLib!1945. - Update to version 2.66.6: + Fix various instances within GLib where `g_memdup()` was vulnerable to a silent integer truncation and heap overflow problem (glgo#GNOME/GLib#2319). - Update to version 2.66.5: + Fix some issues with handling over-long (invalid) input when parsing for `GDate`. + Don?t load GIO modules or parse other GIO environment variables when `AT_SECURE` is set (i.e. in a setuid/setgid/setcap process). GIO has always been documented as not being safe to use in privileged processes, but people persist in using it unsafely, so these changes should harden things against potential attacks at least a little. Unfortunately they break a couple of projects which were relying on reading `DBUS_SESSION_BUS_ADDRESS`, so GIO continues to read that for setgid/setcap (but not setuid) processes. This loophole will be closed in GLib 2.70 (see issue #2316), which should give modules 6 months to change their behaviour. + Fix `g_spawn()` searching `PATH` when it wasn?t meant to. + Bugs fixed: bgo#2168, bgo#2210, bgo#2305, glgo#GNOME/GLib!1820, glgo#GNOME/GLib!1824, glgo#GNOME/GLib!1831, glgo#GNOME/GLib!1836, glgo#GNOME/GLib!1864, glgo#GNOME/GLib!1872, glgo#GNOME/GLib!1913, glgo#GNOME/GLib!1922. - Rebase/refresh patches: + glib2-dbus-socket-path.patch + glib2-fate300461-gettext-gkeyfile-suse.patch + glib2-gdbus-codegen-version.patch + glib2-suppress-schema-deprecated-path-warning.patch + glib2-bgo569829-gettext-gkeyfile.patch ==== glibc ==== Version update (2.32 -> 2.33) Subpackages: glibc-locale glibc-locale-base - Update to glibc 2.33 * The dynamic linker accepts the --list-tunables argument which prints all the supported tunables. * The dynamic linker accepts the --argv0 argument and provides opportunity to change argv[0] string. * The dynamic linker loads optimized implementations of shared objects from subdirectories under the glibc-hwcaps directory on the library search path if the system's capabilities meet the requirements for that subdirectory. * The new --help option of the dynamic linker provides usage and information and library search path diagnostics. * The mallinfo2 function is added to report statistics as per mallinfo, but with larger field widths to accurately report values that are larger than fit in an integer. * Add <sys/platform/x86.h> to provide query macros for x86 CPU features. * A new fortification level _FORTIFY_SOURCE=3 is available. * The mallinfo function is marked deprecated. * When dlopen is used in statically linked programs, alternative library implementations from HWCAP subdirectories are no longer loaded. * The deprecated <sys/vtimes.h> header and the function vtimes have been removed. * On s390(x), the type float_t is now derived from the macro __FLT_EVAL_METHOD__ that is defined by the compiler, instead of being hardcoded to double. * A future version of glibc will stop loading shared objects from the "tls" subdirectories on the library search path, the subdirectory that corresponds to the AT_PLATFORM system name, and also stop employing the legacy AT_HWCAP search mechanism. * CVE-2021-3326: An assertion failure during conversion from the ISO-20220-JP-3 character set using the iconv function has been fixed. - Remove obsolete, unused /etc/default/nss - aarch64-static-pie.patch, euc-kr-overrun.patch, get-nprocs-cpu-online-parsing.patch, iconv-redundant-shift.patch, iconv-ucs4-loop-bounds.patch, ifunc-fma4.patch, intl-codeset-suffixes.patch, nscd-gc-cycle.patch, printf-long-double-non-normal.patch, strerrorname-np.patch, syslog-locking.patch, sysvipc.patch: Removed - Remove support for %optimize_power - Move to power4 baseline on ppc ==== gnome-autoar ==== Version update (0.2.4 -> 0.3.0) - Update to version 0.3.0: + Recognize MIME type aliases of extractable archives. + Add extraction support for password-protected archives. + CVE-2020-36241: Prevent extraction outside the destination dir. ==== gnome-software ==== Version update (3.38.0 -> 3.38.1) - Update to version 3.38.1: + Fix package details not found for some packages. + Ignore harmless warnings when using unusual fwupd versions. + Updated translations. ==== gnome-terminal ==== Version update (3.38.2 -> 3.38.3) Subpackages: nautilus-extension-terminal - Update to version 3.38.3: + app: Limit the number of clipboard targets to a sensible number + Updated translations. ==== gptfdisk ==== Version update (1.0.5 -> 1.0.6) - Update to 1.0.6 * Fixed bug that could cause segfault if GPT header claimed partition entries are oversized. See: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0256 * Fixed bug that could cause a crash if a badly-formatted MBR disk was read. See: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-0308 * Renamed the partition type "Freedesktop $BOOT" to "XBOOTLDR partition". * Added several more Freedesktop partition table type codes (0x8312 through 0x831C). * Fixed type code definition in diskio-unix.cc that prevented 32-bit builds from correctly handling disks over 4 TiB in size. * Minor tweaks to get the software to compile on FreeBSD; that seems to have fallen into disrepair. ==== gstreamer-plugins-bad ==== Subpackages: libgstadaptivedemux-1_0-0 libgstbadaudio-1_0-0 libgstbasecamerabinsrc-1_0-0 libgstcodecparsers-1_0-0 libgstcodecs-1_0-0 libgstisoff-1_0-0 libgstmpegts-1_0-0 libgstphotography-1_0-0 libgstsctp-1_0-0 libgsturidownloader-1_0-0 libgstvulkan-1_0-0 libgstwayland-1_0-0 libgstwebrtc-1_0-0 - Disable the kate/libtiger plugin. Kate streams for karaoke are not used anymore, and the source tarball for libtiger is no longer available upstream. (jsc#SLE-13843) ==== ibus ==== Subpackages: libibus-1_0-5 typelib-1_0-IBus-1_0 - Fix the invalid desktop file for auto start (boo#1178447) - Fix xim.d/ibus so that a Plasma session can use XDG auto start ==== json-glib ==== Version update (1.6.0 -> 1.6.2) Subpackages: libjson-glib-1_0-0 typelib-1_0-Json-1_0 - Update to version 1.6.2: + Fix build reproducibility. + Fix parsing of UTF-16 surrogate pairs. + Ignore UTF-8 BOM. ==== kactivities-stats ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - No code change since 5.78.0 ==== kactivities5 ==== Version update (5.78.0 -> 5.79.0) Subpackages: kactivities5-imports libKF5Activities5 - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - No code change since 5.78.0 ==== kactivitymanagerd ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - No code changes since 5.20.90 - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Changes since 5.20.5: * Add trailing comma to enums * Fix Boot dependency problems and cleanup old configs * If include is define in .h remove it if it's defined in .cpp too (scripted) * Fix a dangling reference to the list of database files * Explicit lambda captures to avoid future dangling reference bugs * Fix a dangling reference to the list of database files * Convert copyright statements to SPDX expressions * Explicitly scope unit to graphical-session.target * Fix installation of the systemd unit * Use correct way to register for a shortcut (kde#374575) * systemd dbus activation ==== karchive ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Adapt to Qt6 QTextCodec changes ==== kauth ==== Version update (5.78.0 -> 5.79.0) Subpackages: libKF5Auth5 libKF5AuthCore5 - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Use QWindow instead of QWidget where possible ==== kbd ==== Version update (2.3.0 -> 2.4.0) Subpackages: kbd-legacy - Update to version 2.4.0: * po: Update cs and sr translations (from translationproject.org) * libkfont: Use only KDFONTOP * Added support for a few derivatives of neo * Fix use-after-free of pipe_cmd * Update solar24x32 font * vlock's pam config added to destination directory * Update sun12x22.psfu * libkeymap: unify non/unicode accent_table generation * libkeymap: note about --unicode use * libkeymap: remove last ushort * fi.map: use newly added deadkeys * Do not install internal library * Additional deadkeys - Remove kbd-1.15.2-setfont-no-cruft.patch The old ioctls were finally dropped. ==== kbookmarks ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - No code change since 5.78.0 ==== kcmutils ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Ensure single column mode * remove window dragging hack ==== kcodecs ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Compile benchmark tests, but don't run them automatically with ctest * Remove the usage of non-UTF-8 string literals ==== kcompletion ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Add missing include * Remove unused include * Fix regression caused due to porting from operator+ to operator| (kde#431493) - Drop upstream patch: * kcompletion/0001-Fix-regression-caused-due-to-porting-from-operator-t.patch ==== kconfig ==== Version update (5.78.0 -> 5.79.0) Subpackages: kconf_update5 libKF5ConfigCore5 libKF5ConfigGui5 - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Fix kconfig_compiler doxygen formatting * Refactor window geometry save/restore code to be less fragile * Fix restoring window size when closed while maximized (kde#430521) * Remove dead cmake code * KConfig: preserve the milliseconds component of QDateTime * Adapt to Qt6 text codec changes * Port to QRecursiveMutex * Fix window positioning regression due to incorrect fallback in fallback ==== kconfigwidgets ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Include QStringList instead of QtContainerFwd * Improve includes ==== kcoreaddons ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Too many changes to list here. ==== kcrash ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - No code change since 5.78.0 ==== kdbusaddons ==== Version update (5.78.0 -> 5.79.0) Subpackages: kdbusaddons-tools libKF5DBusAddons5 - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - No code change since 5.78.0 ==== kde-cli-tools5 ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - No code changes since 5.20.90 - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Changes since 5.20.5: * Update .gitignore * Add pre-commit hook for clang-format * Add .git-blame-ignore-revs file * Run clang-format * Prevent clang-format uglification * Add .gitignore file to ignore generated .clang-format file * kioclient: add "appmenu" command to use a kopenwith dialog as a basic launcher * Require C++17 * Avoid pointless KCModuleInfo usage * If include is define in .h remove it if it's defined in .cpp too (scripted) * Do not explicitely define Exec line for KCM * Now it depends against new version. Old code can be removed * Partly port away from KMimeTypeTrader * Documentation fixes * Ignore options after positional arguments (kde#426896) ==== kdeclarative ==== Version update (5.78.0 -> 5.79.0) Subpackages: kdeclarative-components libKF5CalendarEvents5 libKF5Declarative5 libKF5QuickAddons5 - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * 1 column lower limit on mobile 2 elsewhere * allow single column items * KeySequenceItem: Assign empty string on clear instead of undefined (kde#432106) * typo-- * Disambiguate selected vs hovered states for GridDelegate (kde#406914) * Use Single mode by default * GridDelegate: remove hover animations ==== kded ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - No code change since 5.78.0 ==== kdelibs4support ==== Version update (5.78.0 -> 5.79.0) Subpackages: libKF5KDELibs4Support5 - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - No code change since 5.78.0 ==== kdesu ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - No code change since 5.78.0 ==== kdnssd-framework ==== Version update (5.78.0 -> 5.79.1) - Update to 5.79.1 * Revert "Switch from custom K_D to Q_DECLARE_PRIVATE_D & Q_D" (kde#432949) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Replace QStringList forward decl with QtContainerFwd ==== kdoctools ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * A tag fixed ==== kernel-default-base ==== Version update (5.10.12 -> 5.10.16) - Add modules which got lost when migrating away from supported.conf (bsc#1182110): * am53c974 had a typo * cls_bpf, iscsi_ibft, libahci, libata, openvswitch, sch_ingress - Also add vport-* modules for Open vSwitch ==== kernel-firmware ==== Version update (20210119 -> 20210208) Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network - Update to version 20210208 (commit b79d2396bc63): * Mellanox: Add new mlxsw_spectrum firmware xx.2008.2304 * linux-firmware: add firmware for MT7921 * rtw88: RTL8821C: Update firmware to v24.8 * linux-firmware: Update firmware file for Intel Bluetooth AX210 * linux-firmware: Update firmware file for Intel Bluetooth AX200 * linux-firmware: Update firmware file for Intel Bluetooth AX201 * i915: Add DMC v2.01 for ADL-S * i915: Add HuC v7.7.1 for DG1 * i915: Add GuC v49.0.1 for DG1 * qcom: Add venus firmware files for VPU-1.0 * qcom: Add SM8250 Compute DSP firmware * qcom: Add SM8250 Audio DSP firmware * qcom: add firmware files for Adreno a650 ==== kernel-source ==== Version update (5.10.12 -> 5.10.16) - Linux 5.10.16 (bsc#1012628). - squashfs: add more sanity checks in xattr id lookup (bsc#1012628). - squashfs: add more sanity checks in inode lookup (bsc#1012628). - squashfs: add more sanity checks in id lookup (bsc#1012628). - squashfs: avoid out of bounds writes in decompressors (bsc#1012628). - Revert "mm: memcontrol: avoid workload stalls when lowering memory.high" (bsc#1012628). - nilfs2: make splice write available again (bsc#1012628). - drm/i915: Skip vswing programming for TBT (bsc#1012628). - drm/i915: Fix ICL MG PHY vswing handling (bsc#1012628). - bpf: Fix verifier jsgt branch analysis on max bound (bsc#1012628). - bpf: Fix 32 bit src register truncation on div/mod (bsc#1012628). - bpf: Fix verifier jmp32 pruning decision logic (bsc#1012628). - regulator: Fix lockdep warning resolving supplies (bsc#1012628). - blk-cgroup: Use cond_resched() when destroy blkgs (bsc#1012628). - i2c: mediatek: Move suspend and resume handling to NOIRQ phase (bsc#1012628). - SUNRPC: Handle 0 length opaque XDR object data properly (bsc#1012628). - SUNRPC: Move simple_get_bytes and simple_get_netobj into private header (bsc#1012628). - iwlwifi: queue: bail out on invalid freeing (bsc#1012628). - iwlwifi: mvm: guard against device removal in reprobe (bsc#1012628). - iwlwifi: pcie: add rules to match Qu with Hr2 (bsc#1012628). - iwlwifi: mvm: invalidate IDs of internal stations at mvm start (bsc#1012628). - iwlwifi: pcie: fix context info memory leak (bsc#1012628). - iwlwifi: pcie: add a NULL check in iwl_pcie_txq_unmap (bsc#1012628). - iwlwifi: mvm: take mutex for calling iwl_mvm_get_sync_time() (bsc#1012628). - iwlwifi: mvm: skip power command when unbinding vif during CSA (bsc#1012628). - ASoC: Intel: sof_sdw: set proper flags for Dell TGL-H SKU 0A5E (bsc#1012628). - ASoC: ak4458: correct reset polarity (bsc#1012628). - ALSA: hda: intel-dsp-config: add PCI id for TGL-H (bsc#1012628). - pNFS/NFSv4: Improve rejection of out-of-order layouts (bsc#1012628). - pNFS/NFSv4: Try to return invalid layout in pnfs_layout_process() (bsc#1012628). - chtls: Fix potential resource leak (bsc#1012628). - ASoC: Intel: Skylake: Zero snd_ctl_elem_value (bsc#1012628). - mac80211: 160MHz with extended NSS BW in CSA (bsc#1012628). - drm/nouveau/nvif: fix method count when pushing an array (bsc#1012628). - ASoC: wm_adsp: Fix control name parsing for multi-fw (bsc#1012628). - regulator: core: avoid regulator_resolve_supply() race condition (bsc#1012628). - af_key: relax availability checks for skb size calculation (bsc#1012628). - powerpc/64/signal: Fix regression in __kernel_sigtramp_rt64() semantics (bsc#1012628). - gpiolib: cdev: clear debounce period if line set to output (bsc#1012628). - io_uring: drop mm/files between task_work_submit (bsc#1012628). - io_uring: reinforce cancel on flush during exit (bsc#1012628). - io_uring: fix sqo ownership false positive warning (bsc#1012628). - io_uring: fix list corruption for splice file_get (bsc#1012628). - io_uring: fix flush cqring overflow list while TASK_INTERRUPTIBLE (bsc#1012628). - io_uring: fix cancellation taking mutex while TASK_UNINTERRUPTIBLE (bsc#1012628). - io_uring: replace inflight_wait with tctx->wait (bsc#1012628). - io_uring: fix __io_uring_files_cancel() with TASK_UNINTERRUPTIBLE (bsc#1012628). - io_uring: if we see flush on exit, cancel related tasks (bsc#1012628). - io_uring: account io_uring internal files as REQ_F_INFLIGHT (bsc#1012628). - io_uring: fix files cancellation (bsc#1012628). - io_uring: always batch cancel in *cancel_files() (bsc#1012628). - io_uring: pass files into kill timeouts/poll (bsc#1012628). - io_uring: don't iterate io_uring_cancel_files() (bsc#1012628). - io_uring: add a {task,files} pair matching helper (bsc#1012628). - io_uring: simplify io_task_match() (bsc#1012628). - commit 11381f3 - Update config files: enable CONFIG_SERIAL_DEV_CTRL_TTYPORT on x86 (bsc#1182035) For supporting MS Surface devices. This required CONFIG_SERIAL_DEV_BUS to be built-in. Also this allowed CONFIG_BT_HCIUART_BCM=y as well. - commit 2d8fb7a - media: pwc: Use correct device for DMA (bsc#1181133). - commit 4a7417d - Drop pwc fix patch; it'll be replaced with the upstream fix (bsc#1181133) - commit 2202405 - Update config files: armv7hl: Set ledtrig-default-on as builtin (bsc#1182128) - commit d24d9b2 - btrfs: fix crash after non-aligned direct IO write with O_DSYNC (bsc#1181605). - commit 9e44573 - Update config files: Set ledtrig-default-on as builtin (bsc#1182128) - commit 7119d5a - Update config files. Enable DWC3 on x86_64 DWC3 is now needed on x86_64, too, with the added benefit of making x86_64 and ARM64 closer (jsc#SLE-14042) - commit 7cc21b5 - Linux 5.10.15 (bsc#1012628). - USB: serial: cp210x: add pid/vid for WSDA-200-USB (bsc#1012628). - USB: serial: cp210x: add new VID/PID for supporting Teraoka AD2000 (bsc#1012628). - USB: serial: option: Adding support for Cinterion MV31 (bsc#1012628). - usb: host: xhci: mvebu: make USB 3.0 PHY optional for Armada 3720 (bsc#1012628). - USB: gadget: legacy: fix an error code in eth_bind() (bsc#1012628). - usb: gadget: aspeed: add missing of_node_put (bsc#1012628). - USB: usblp: don't call usb_set_interface if there's a single alt (bsc#1012628). - usb: renesas_usbhs: Clear pipe running flag in usbhs_pkt_pop() (bsc#1012628). - usb: dwc2: Fix endpoint direction check in ep_from_windex (bsc#1012628). - usb: dwc3: fix clock issue during resume in OTG mode (bsc#1012628). - usb: xhci-mtk: fix unreleased bandwidth data (bsc#1012628). - usb: xhci-mtk: skip dropping bandwidth of unchecked endpoints (bsc#1012628). - usb: xhci-mtk: break loop when find the endpoint to drop (bsc#1012628). - ARM: OMAP1: OSK: fix ohci-omap breakage (bsc#1012628). - arm64: dts: qcom: c630: keep both touchpad devices enabled (bsc#1012628). - Input: i8042 - unbreak Pegatron C15B (bsc#1012628). - arm64: dts: amlogic: meson-g12: Set FL-adj property value (bsc#1012628). - arm64: dts: rockchip: fix vopl iommu irq on px30 (bsc#1012628). - arm64: dts: rockchip: Use only supported PCIe link speed on Pinebook Pro (bsc#1012628). - ARM: dts: stm32: Fix polarity of the DH DRC02 uSD card detect (bsc#1012628). - ARM: dts: stm32: Connect card-detect signal on DHCOM (bsc#1012628). - ARM: dts: stm32: Disable WP on DHCOM uSD slot (bsc#1012628). - ARM: dts: stm32: Disable optional TSC2004 on DRC02 board (bsc#1012628). - ARM: dts: stm32: Fix GPIO hog flags on DHCOM DRC02 (bsc#1012628). - vdpa/mlx5: Fix memory key MTT population (bsc#1012628). - bpf, cgroup: Fix optlen WARN_ON_ONCE toctou (bsc#1012628). - bpf, cgroup: Fix problematic bounds check (bsc#1012628). - bpf, inode_storage: Put file handler if no storage was found (bsc#1012628). - um: virtio: free vu_dev only with the contained struct device (bsc#1012628). - bpf, preload: Fix build when $(O) points to a relative path (bsc#1012628). - arm64: dts: meson: switch TFLASH_VDD_EN pin to open drain on Odroid-C4 (bsc#1012628). - r8169: work around RTL8125 UDP hw bug (bsc#1012628). - rxrpc: Fix deadlock around release of dst cached on udp tunnel (bsc#1012628). - arm64: dts: ls1046a: fix dcfg address range (bsc#1012628). - SUNRPC: Fix NFS READs that start at non-page-aligned offsets (bsc#1012628). - igc: set the default return value to -IGC_ERR_NVM in igc_write_nvm_srwr (bsc#1012628). - igc: check return value of ret_val in igc_config_fc_after_link_up (bsc#1012628). - i40e: Revert "i40e: don't report link up for a VF who hasn't enabled queues" (bsc#1012628). - ibmvnic: device remove has higher precedence over reset (bsc#1012628). - net/mlx5: Fix leak upon failure of rule creation (bsc#1012628). - net/mlx5e: Update max_opened_tc also when channels are closed (bsc#1012628). - net/mlx5e: Release skb in case of failure in tc update skb (bsc#1012628). - net: lapb: Copy the skb before sending a packet (bsc#1012628). - net: mvpp2: TCAM entry enable should be written after SRAM data (bsc#1012628). - r8169: fix WoL on shutdown if CONFIG_DEBUG_SHIRQ is set (bsc#1012628). - net: ipa: pass correct dma_handle to dma_free_coherent() (bsc#1012628). - ARM: dts: sun7i: a20: bananapro: Fix ethernet phy-mode (bsc#1012628). - nvmet-tcp: fix out-of-bounds access when receiving multiple h2cdata PDUs (bsc#1012628). - vdpa/mlx5: Restore the hardware used index after change map (bsc#1012628). - memblock: do not start bottom-up allocations with kernel_end (bsc#1012628). - kbuild: fix duplicated flags in DEBUG_CFLAGS (bsc#1012628). - thunderbolt: Fix possible NULL pointer dereference in tb_acpi_add_link() (bsc#1012628). - ovl: fix dentry leak in ovl_get_redirect (bsc#1012628). - ovl: avoid deadlock on directory ioctl (bsc#1012628). - ovl: implement volatile-specific fsync error behaviour (bsc#1012628). - mac80211: fix station rate table updates on assoc (bsc#1012628). - gpiolib: free device name on error path to fix kmemleak (bsc#1012628). - fgraph: Initialize tracing_graph_pause at task creation (bsc#1012628). - tracing/kprobe: Fix to support kretprobe events on unloaded modules (bsc#1012628). - kretprobe: Avoid re-registration of the same kretprobe earlier (bsc#1012628). - tracing: Use pause-on-trace with the latency tracers (bsc#1012628). - tracepoint: Fix race between tracing and removing tracepoint (bsc#1012628). - libnvdimm/namespace: Fix visibility of namespace resource attribute (bsc#1012628). - libnvdimm/dimm: Avoid race between probe and available_slots_show() (bsc#1012628). - genirq: Prevent [devm_]irq_alloc_desc from returning irq 0 (bsc#1012628). - genirq/msi: Activate Multi-MSI early when MSI_FLAG_ACTIVATE_EARLY is set (bsc#1012628). - scripts: use pkg-config to locate libcrypto (bsc#1012628). - xhci: fix bounce buffer usage for non-sg list case (bsc#1012628). - RISC-V: Define MAXPHYSMEM_1GB only for RV32 (bsc#1012628). - cifs: report error instead of invalid when revalidating a dentry fails (bsc#1012628). - iommu: Check dev->iommu in dev_iommu_priv_get() before dereferencing it (bsc#1012628). - smb3: Fix out-of-bounds bug in SMB2_negotiate() (bsc#1012628). - smb3: fix crediting for compounding when only one request in flight (bsc#1012628). - mmc: sdhci-pltfm: Fix linking err for sdhci-brcmstb (bsc#1012628). - mmc: core: Limit retries when analyse of SDIO tuples fails (bsc#1012628). - Fix unsynchronized access to sev members through svm_register_enc_region (bsc#1012628). - drm/dp/mst: Export drm_dp_get_vc_payload_bw() (bsc#1012628). - drm/i915: Fix the MST PBN divider calculation (bsc#1012628). - drm/i915/gem: Drop lru bumping on display unpinning (bsc#1012628). - drm/i915/gt: Close race between enable_breadcrumbs and cancel_breadcrumbs (bsc#1012628). - drm/i915/display: Prevent double YUV range correction on HDR planes (bsc#1012628). - drm/i915: Extract intel_ddi_power_up_lanes() (bsc#1012628). - drm/i915: Power up combo PHY lanes for for HDMI as well (bsc#1012628). - drm/amd/display: Revert "Fix EDID parsing after resume from suspend" (bsc#1012628). - io_uring: don't modify identity's files uncess identity is cowed (bsc#1012628). - nvme-pci: avoid the deepest sleep state on Kingston A2000 SSDs (bsc#1012628). - KVM: SVM: Treat SVM as unsupported when running as an SEV guest (bsc#1012628). - KVM: x86/mmu: Fix TDP MMU zap collapsible SPTEs (bsc#1012628). - KVM: x86: Allow guests to see MSR_IA32_TSX_CTRL even if tsx=off (bsc#1012628). - KVM: x86: fix CPUID entries returned by KVM_GET_CPUID2 ioctl (bsc#1012628). - KVM: x86: Update emulator context mode if SYSENTER xfers to 64-bit mode (bsc#1012628). - KVM: x86: Set so called 'reserved CR3 bits in LM mask' at vCPU reset (bsc#1012628). - DTS: ARM: gta04: remove legacy spi-cs-high to make display work again (bsc#1012628). - ARM: dts; gta04: SPI panel chip select is active low (bsc#1012628). - ARM: footbridge: fix dc21285 PCI configuration accessors (bsc#1012628). - ARM: 9043/1: tegra: Fix misplaced tegra_uart_config in decompressor (bsc#1012628). - mm: hugetlbfs: fix cannot migrate the fallocated HugeTLB page (bsc#1012628). - mm: hugetlb: fix a race between freeing and dissolving the page (bsc#1012628). - mm: hugetlb: fix a race between isolating and freeing page (bsc#1012628). - mm: hugetlb: remove VM_BUG_ON_PAGE from page_huge_active (bsc#1012628). - mm, compaction: move high_pfn to the for loop scope (bsc#1012628). - mm/vmalloc: separate put pages and flush VM flags (bsc#1012628). - mm: thp: fix MADV_REMOVE deadlock on shmem THP (bsc#1012628). - mm/filemap: add missing mem_cgroup_uncharge() to __add_to_page_cache_locked() (bsc#1012628). - x86/build: Disable CET instrumentation in the kernel (bsc#1012628). - x86/debug: Fix DR6 handling (bsc#1012628). - x86/debug: Prevent data breakpoints on __per_cpu_offset (bsc#1012628). - x86/debug: Prevent data breakpoints on cpu_dr7 (bsc#1012628). - x86/apic: Add extra serialization for non-serializing MSRs (bsc#1012628). - Input: goodix - add support for Goodix GT9286 chip (bsc#1012628). - Input: xpad - sync supported devices with fork on GitHub (bsc#1012628). - Input: ili210x - implement pressure reporting for ILI251x (bsc#1012628). - md: Set prev_flush_start and flush_bio in an atomic way (bsc#1012628). - igc: Report speed and duplex as unknown when device is runtime suspended (bsc#1012628). - neighbour: Prevent a dead entry from updating gc_list (bsc#1012628). - net: ip_tunnel: fix mtu calculation (bsc#1012628). - udp: ipv4: manipulate network header of NATed UDP GRO fraglist (bsc#1012628). - net: dsa: mv88e6xxx: override existent unicast portvec in port_fdb_add (bsc#1012628). - net: sched: replaced invalid qdisc tree flush helper in qdisc_replace (bsc#1012628). - commit 24c2efe - Update patches.kernel.org/5.10.13-143-vsock-fix-the-race-conditions-in-multi-trans… (bsc#1012628 bsc#1181806 CVE-2021-26708). Add CVE number. - commit bf327d1 - config: arm64: Use y for CLK_RK3399 This is to fix booting on RK3399 systems (JeOS-rockpi4) When compiled as 'm' there are lots of errors related to clk and no host mmc controler initialized. - commit 52fdc54 - Linux 5.10.14 (bsc#1012628). - workqueue: Restrict affinity change to rescuer (bsc#1012628). - kthread: Extract KTHREAD_IS_PER_CPU (bsc#1012628). - x86/cpu: Add another Alder Lake CPU to the Intel family (bsc#1012628). - objtool: Don't fail the kernel build on fatal errors (bsc#1012628). - habanalabs: disable FW events on device removal (bsc#1012628). - habanalabs: fix backward compatibility of idle check (bsc#1012628). - habanalabs: zero pci counters packet before submit to FW (bsc#1012628). - drm/amd/display: Fixed corruptions on HPDRX link loss restore (bsc#1012628). - drm/amd/display: Use hardware sequencer functions for PG control (bsc#1012628). - drm/amd/display: Change function decide_dp_link_settings to avoid infinite looping (bsc#1012628). - drm/amd/display: Allow PSTATE chnage when no displays are enabled (bsc#1012628). - drm/amd/display: Update dram_clock_change_latency for DCN2.1 (bsc#1012628). - selftests/powerpc: Only test lwm/stmw on big endian (bsc#1012628). - platform/x86: thinkpad_acpi: Add P53/73 firmware to fan_quirk_table for dual fan control (bsc#1012628). - nvmet: set right status on error in id-ns handler (bsc#1012628). - nvme-pci: allow use of cmb on v1.4 controllers (bsc#1012628). - nvme-tcp: avoid request double completion for concurrent nvme_tcp_timeout (bsc#1012628). - nvme-rdma: avoid request double completion for concurrent nvme_rdma_timeout (bsc#1012628). - nvme: check the PRINFO bit before deciding the host buffer length (bsc#1012628). - udf: fix the problem that the disc content is not displayed (bsc#1012628). - i2c: tegra: Create i2c_writesl_vi() to use with VI I2C for filling TX FIFO (bsc#1012628). - ALSA: hda: Add Cometlake-R PCI ID (bsc#1012628). - scsi: ibmvfc: Set default timeout to avoid crash during migration (bsc#1012628). - mac80211: fix encryption key selection for 802.3 xmit (bsc#1012628). - mac80211: fix fast-rx encryption check (bsc#1012628). - mac80211: fix incorrect strlen of .write in debugfs (bsc#1012628). - objtool: Don't add empty symbols to the rbtree (bsc#1012628). - ALSA: hda: Add AlderLake-P PCI ID and HDMI codec vid (bsc#1012628). - ASoC: SOF: Intel: hda: Resume codec to do jack detection (bsc#1012628). - scsi: fnic: Fix memleak in vnic_dev_init_devcmd2 (bsc#1012628). - scsi: libfc: Avoid invoking response handler twice if ep is already completed (bsc#1012628). - scsi: scsi_transport_srp: Don't block target in failfast state (bsc#1012628). - x86: __always_inline __{rd,wr}msr() (bsc#1012628). - locking/lockdep: Avoid noinstr warning for DEBUG_LOCKDEP (bsc#1012628). - habanalabs: fix dma_addr passed to dma_mmap_coherent (bsc#1012628). - platform/x86: intel-vbtn: Support for tablet mode on Dell Inspiron 7352 (bsc#1012628). - platform/x86: touchscreen_dmi: Add swap-x-y quirk for Goodix touchscreen on Estar Beauty HD tablet (bsc#1012628). - tools/power/x86/intel-speed-select: Set higher of cpuinfo_max_freq or base_frequency (bsc#1012628). - tools/power/x86/intel-speed-select: Set scaling_max_freq to base_frequency (bsc#1012628). - phy: cpcap-usb: Fix warning for missing regulator_disable (bsc#1012628). - iommu/vt-d: Do not use flush-queue when caching-mode is on (bsc#1012628). - ARM: 9025/1: Kconfig: CPU_BIG_ENDIAN depends on !LD_IS_LLD (bsc#1012628). - Revert "x86/setup: don't remove E820_TYPE_RAM for pfn 0" (bsc#1012628). - arm64: Do not pass tagged addresses to __is_lm_address() (bsc#1012628). - arm64: Fix kernel address detection of __is_lm_address() (bsc#1012628). - arm64: dts: meson: Describe G12b GPU as coherent (bsc#1012628). - drm/panfrost: Support cache-coherent integrations (bsc#1012628). - iommu/io-pgtable-arm: Support coherency for Mali LPAE (bsc#1012628). - ibmvnic: Ensure that CRQ entry read are correctly ordered (bsc#1012628). - net: switchdev: don't set port_obj_info->handled true when - EOPNOTSUPP (bsc#1012628). - net: dsa: bcm_sf2: put device node before return (bsc#1012628). - mlxsw: spectrum_span: Do not overwrite policer configuration (bsc#1012628). - stmmac: intel: Configure EHL PSE0 GbE and PSE1 GbE to 32 bits DMA addressing (bsc#1012628). - net: octeontx2: Make sure the buffer is 128 byte aligned (bsc#1012628). - net: fec: put child node on error path (bsc#1012628). - net: stmmac: dwmac-intel-plat: remove config data on error (bsc#1012628). - net: dsa: microchip: Adjust reset release timing to match reference reset circuit (bsc#1012628). - commit 0a69f62 - Update patches.kernel.org/5.10.13-143-vsock-fix-the-race-conditions-in-multi-trans… (bsc#1012628 bsc#1181806). Add bsc reference. - commit 64ec974 - net/mlx5: Fix function calculation for page trees (git-fixes). - commit e976b88 - Linux 5.10.13 (bsc#1012628). - iwlwifi: provide gso_type to GSO packets (bsc#1012628). - nbd: freeze the queue while we're adding connections (bsc#1012628). - tty: avoid using vfs_iocb_iter_write() for redirected console writes (bsc#1012628). - ACPI: sysfs: Prefer "compatible" modalias (bsc#1012628). - ACPI: thermal: Do not call acpi_thermal_check() directly (bsc#1012628). - kernel: kexec: remove the lock operation of system_transition_mutex (bsc#1012628). - ALSA: hda/realtek: Enable headset of ASUS B1400CEPE with ALC256 (bsc#1012628). - parisc: Enable -mlong-calls gcc option by default when !CONFIG_MODULES (bsc#1012628). - media: cec: add stm32 driver (bsc#1012628). - media: cedrus: Fix H264 decoding (bsc#1012628). - media: hantro: Fix reset_raw_fmt initialization (bsc#1012628). - media: rc: fix timeout handling after switch to microsecond durations (bsc#1012628). - media: rc: ite-cir: fix min_timeout calculation (bsc#1012628). - media: rc: ensure that uevent can be read directly after rc device register (bsc#1012628). - ARM: dts: tbs2910: rename MMC node aliases (bsc#1012628). - ARM: dts: ux500: Reserve memory carveouts (bsc#1012628). - ARM: dts: imx6qdl-gw52xx: fix duplicate regulator naming (bsc#1012628). - wext: fix NULL-ptr-dereference with cfg80211's lack of commit() (bsc#1012628). - x86/xen: avoid warning in Xen pv guest with CONFIG_AMD_MEM_ENCRYPT enabled (bsc#1012628). - ASoC: AMD Renoir - refine DMI entries for some Lenovo products (bsc#1012628). - Revert "drm/amdgpu/swsmu: drop set_fan_speed_percent (v2)" (bsc#1012628). - drm/nouveau/kms/gk104-gp1xx: Fix > 64x64 cursors (bsc#1012628). - drm/i915: Always flush the active worker before returning from the wait (bsc#1012628). - drm/i915/gt: Always try to reserve GGTT address 0x0 (bsc#1012628). - drivers/nouveau/kms/nv50-: Reject format modifiers for cursor planes (bsc#1012628). - bcache: only check feature sets when sb->version >= BCACHE_SB_VERSION_CDEV_WITH_FEATURES (bsc#1012628). - net: usb: qmi_wwan: added support for Thales Cinterion PLSx3 modem family (bsc#1012628). - s390: uv: Fix sysfs max number of VCPUs reporting (bsc#1012628). - s390/vfio-ap: No need to disable IRQ after queue reset (bsc#1012628). - PM: hibernate: flush swap writer after marking (bsc#1012628). - x86/entry: Emit a symbol for register restoring thunk (bsc#1012628). - efi/apple-properties: Reinstate support for boolean properties (bsc#1012628). - crypto: marvel/cesa - Fix tdma descriptor on 64-bit (bsc#1012628). - drivers: soc: atmel: Avoid calling at91_soc_init on non AT91 SoCs (bsc#1012628). - drivers: soc: atmel: add null entry at the end of at91_soc_allowed_list[] (bsc#1012628). - btrfs: fix lockdep warning due to seqcount_mutex on 32bit arch (bsc#1012628). - btrfs: fix possible free space tree corruption with online conversion (bsc#1012628). - KVM: x86/pmu: Fix HW_REF_CPU_CYCLES event pseudo-encoding in intel_arch_events[] (bsc#1012628). - KVM: x86/pmu: Fix UBSAN shift-out-of-bounds warning in intel_pmu_refresh() (bsc#1012628). - KVM: arm64: Filter out v8.1+ events on v8.0 HW (bsc#1012628). - KVM: nSVM: cancel KVM_REQ_GET_NESTED_STATE_PAGES on nested vmexit (bsc#1012628). - KVM: x86: allow KVM_REQ_GET_NESTED_STATE_PAGES outside guest mode for VMX (bsc#1012628). - KVM: nVMX: Sync unsync'd vmcs02 state to vmcs12 on migration (bsc#1012628). - KVM: x86: get smi pending status correctly (bsc#1012628). - KVM: Forbid the use of tagged userspace addresses for memslots (bsc#1012628). - io_uring: fix wqe->lock/completion_lock deadlock (bsc#1012628). - xen: Fix XenStore initialisation for XS_LOCAL (bsc#1012628). - leds: trigger: fix potential deadlock with libata (bsc#1012628). - arm64: dts: broadcom: Fix USB DMA address translation for Stingray (bsc#1012628). - mt7601u: fix kernel crash unplugging the device (bsc#1012628). - mt76: mt7663s: fix rx buffer refcounting (bsc#1012628). - mt7601u: fix rx buffer refcounting (bsc#1012628). - iwlwifi: Fix IWL_SUBDEVICE_NO_160 macro to use the correct bit (bsc#1012628). - drm/i915/gt: Clear CACHE_MODE prior to clearing residuals (bsc#1012628). - drm/i915/pmu: Don't grab wakeref when enabling events (bsc#1012628). - net/mlx5e: Fix IPSEC stats (bsc#1012628). - ARM: dts: imx6qdl-kontron-samx6i: fix pwms for lcd-backlight (bsc#1012628). - drm/nouveau/svm: fail NOUVEAU_SVM_INIT ioctl on unsupported devices (bsc#1012628). - drm/vc4: Correct lbm size and calculation (bsc#1012628). - drm/vc4: Correct POS1_SCL for hvs5 (bsc#1012628). - drm/i915: Check for all subplatform bits (bsc#1012628). - drm/i915/selftest: Fix potential memory leak (bsc#1012628). - uapi: fix big endian definition of ipv6_rpl_sr_hdr (bsc#1012628). - KVM: Documentation: Fix spec for KVM_CAP_ENABLE_CAP_VM (bsc#1012628). - tee: optee: replace might_sleep with cond_resched (bsc#1012628). - xen-blkfront: allow discard-* nodes to be optional (bsc#1012628). - blk-mq: test QUEUE_FLAG_HCTX_ACTIVE for sbitmap_shared in hctx_may_queue (bsc#1012628). - clk: imx: fix Kconfig warning for i.MX SCU clk (bsc#1012628). - clk: mmp2: fix build without CONFIG_PM (bsc#1012628). - clk: qcom: gcc-sm250: Use floor ops for sdcc clks (bsc#1012628). - ARM: imx: build suspend-imx6.S with arm instruction set (bsc#1012628). - ARM: zImage: atags_to_fdt: Fix node names on added root nodes (bsc#1012628). - netfilter: nft_dynset: add timeout extension to template (bsc#1012628). - Revert "RDMA/mlx5: Fix devlink deadlock on net namespace deletion" (bsc#1012628). - Revert "block: simplify set_init_blocksize" to regain lost performance (bsc#1012628). - xfrm: Fix oops in xfrm_replay_advance_bmp (bsc#1012628). - xfrm: fix disable_xfrm sysctl when used on xfrm interfaces (bsc#1012628). - selftests: xfrm: fix test return value override issue in xfrm_policy.sh (bsc#1012628). - xfrm: Fix wraparound in xfrm_policy_addr_delta() (bsc#1012628). - arm64: dts: ls1028a: fix the offset of the reset register (bsc#1012628). - ARM: imx: fix imx8m dependencies (bsc#1012628). - ARM: dts: imx6qdl-kontron-samx6i: fix i2c_lcd/cam default status (bsc#1012628). - ARM: dts: imx6qdl-sr-som: fix some cubox-i platforms (bsc#1012628). - arm64: dts: imx8mp: Correct the gpio ranges of gpio3 (bsc#1012628). - firmware: imx: select SOC_BUS to fix firmware build (bsc#1012628). - RDMA/cxgb4: Fix the reported max_recv_sge value (bsc#1012628). - ASoC: dt-bindings: lpass: Fix and common up lpass dai ids (bsc#1012628). - ASoC: qcom: Fix incorrect volatile registers (bsc#1012628). - ASoC: qcom: Fix broken support to MI2S TERTIARY and QUATERNARY (bsc#1012628). - ASoC: qcom: lpass-ipq806x: fix bitwidth regmap field (bsc#1012628). - spi: altera: Fix memory leak on error path (bsc#1012628). - ASoC: Intel: Skylake: skl-topology: Fix OOPs ib skl_tplg_complete (bsc#1012628). - powerpc/64s: prevent recursive replay_soft_interrupts causing superfluous interrupt (bsc#1012628). - pNFS/NFSv4: Fix a layout segment leak in pnfs_layout_process() (bsc#1012628). - pNFS/NFSv4: Update the layout barrier when we schedule a layoutreturn (bsc#1012628). - ASoC: SOF: Intel: soundwire: fix select/depend unmet dependencies (bsc#1012628). - ASoC: qcom: lpass: Fix out-of-bounds DAI ID lookup (bsc#1012628). - iwlwifi: pcie: avoid potential PNVM leaks (bsc#1012628). - iwlwifi: pnvm: don't skip everything when not reloading (bsc#1012628). - iwlwifi: pnvm: don't try to load after failures (bsc#1012628). - iwlwifi: pcie: set LTR on more devices (bsc#1012628). - iwlwifi: pcie: use jiffies for memory read spin time limit (bsc#1012628). - iwlwifi: pcie: reschedule in long-running memory reads (bsc#1012628). - mac80211: pause TX while changing interface type (bsc#1012628). - ice: fix FDir IPv6 flexbyte (bsc#1012628). - ice: Implement flow for IPv6 next header (extension header) (bsc#1012628). - ice: update dev_addr in ice_set_mac_address even if HW filter exists (bsc#1012628). - ice: Don't allow more channels than LAN MSI-X available (bsc#1012628). - ice: Fix MSI-X vector fallback logic (bsc#1012628). - i40e: acquire VSI pointer only after VF is initialized (bsc#1012628). - igc: fix link speed advertising (bsc#1012628). - net/mlx5: Fix memory leak on flow table creation error flow (bsc#1012628). - net/mlx5e: E-switch, Fix rate calculation for overflow (bsc#1012628). - net/mlx5e: free page before return (bsc#1012628). - net/mlx5e: Reduce tc unsupported key print level (bsc#1012628). - net/mlx5: Maintain separate page trees for ECPF and PF functions (bsc#1012628). - net/mlx5e: Disable hw-tc-offload when MLX5_CLS_ACT config is disabled (bsc#1012628). - net/mlx5e: Fix CT rule + encap slow path offload and deletion (bsc#1012628). - net/mlx5e: Correctly handle changing the number of queues when the interface is down (bsc#1012628). - net/mlx5e: Revert parameters on errors when changing trust state without reset (bsc#1012628). - net/mlx5e: Revert parameters on errors when changing MTU and LRO state without reset (bsc#1012628). - net/mlx5: CT: Fix incorrect removal of tuple_nat_node from nat rhashtable (bsc#1012628). - can: dev: prevent potential information leak in can_fill_info() (bsc#1012628). - ACPI/IORT: Do not blindly trust DMA masks from firmware (bsc#1012628). - of/device: Update dma_range_map only when dev has valid dma-ranges (bsc#1012628). - iommu/amd: Use IVHD EFR for early initialization of IOMMU features (bsc#1012628). - iommu/vt-d: Correctly check addr alignment in qi_flush_dev_iotlb_pasid() (bsc#1012628). - nvme-multipath: Early exit if no path is available (bsc#1012628). - selftests: forwarding: Specify interface when invoking mausezahn (bsc#1012628). - rxrpc: Fix memory leak in rxrpc_lookup_local (bsc#1012628). - NFC: fix resource leak when target index is invalid (bsc#1012628). - NFC: fix possible resource leak (bsc#1012628). - ASoC: mediatek: mt8183-da7219: ignore TDM DAI link by default (bsc#1012628). - ASoC: mediatek: mt8183-mt6358: ignore TDM DAI link by default (bsc#1012628). - ASoC: topology: Properly unregister DAI on removal (bsc#1012628). - ASoC: topology: Fix memory corruption in soc_tplg_denum_create_values() (bsc#1012628). - scsi: qla2xxx: Fix description for parameter ql2xenforce_iocb_limit (bsc#1012628). - team: protect features update by RCU to avoid deadlock (bsc#1012628). - tcp: make TCP_USER_TIMEOUT accurate for zero window probes (bsc#1012628). - tcp: fix TLP timer not set when CA_STATE changes from DISORDER to OPEN (bsc#1012628). - vsock: fix the race conditions in multi-transport support (bsc#1012628). - Update patches.suse/acpi_thermal_passive_blacklist.patch (bsc#333043). - commit 3527948 ==== kfilemetadata5 ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * ffmpegextractor: Use av_find_default_stream_index to find video stream ==== kgamma5 ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - No code changes since 5.20.90 - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Changes since 5.20.5: * Update .gitignore file * Add pre-commit hook for clang-format * Add .git-blame-ignore-revs file * clang-tidy: Force braces around statements * Run clang-format * Be more consistent with includes and do not break when reordering them * Do not explicitely define Exec line for KCM * If include is define in .h remove it if it's defined in .cpp too (scripted) * Convert copyright statements to SPDX statements * Documentation fixes: Sync GUI messages ==== kglobalaccel ==== Version update (5.78.0 -> 5.79.0) Subpackages: kglobalaccel5 libKF5GlobalAccel5 libKF5GlobalAccelPrivate5 - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - No code change since 5.78.0 ==== kguiaddons ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - No code change since 5.78.0 ==== kholidays ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Update Mauritius holidays for 2021 * Update Taiwanese holidays ==== khotkeys5 ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - No code changes since 5.20.90 - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Changes since 5.20.5: * Use xtest also for sending input to the active window * Handle modifier keys with xtest in ShortcutsHandler::send_macro_key * Fix unterminated SPDX comments after last commit, fixes build * Convert copyright statements to SPDX expressions * Add .gitignore file to ignore generated .clang-format * Drop unused KF5Plasma dependency * Fix import of files (kde#428536) * Do not explicitly define Exec line for KCM * If include is define in .h remove it if it's defined in .cpp too (scripted) * Documentation fixes - Drop patches, now upstream: * 0001-Handle-modifier-keys-with-xtest-in-ShortcutsHandler-.patch * 0002-Use-xtest-also-for-sending-input-to-the-active-windo.patch ==== ki18n ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Port to QRecursiveMutex * Don't set codec for textstream when building against Qt6 ==== kiconthemes ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Compile benchmark, but don't run it automaitcally with `ctest` ==== kidletime ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - No code change since 5.78.0 ==== kinfocenter5 ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - Changes since 5.20.90: * About-distro: display Graphics Platform (X11 or Wayland) (kde#428382) - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Changes since 5.20.5: * Port away from QRegExp * typo-- * Remove unused includes * weight main categories properly (kde#429153) * If include is define in .h remove it if it's defined in .cpp too (scripted) * Now it depends against new version. Old code can be removed * Remove not implemented method * Use more correct factory name * Fix SolDevice null pointer dereference * Update device info on selection change instead of activation * There is no need for static local variables * Documentation fixes * Use correct name for new Samba Status module * port samba module to qml * Fix minor typos * [modules/nics] Use consistent name everywhere * Port nic info center module to QML ==== kinit ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - No code change since 5.78.0 ==== kio ==== Version update (5.78.0 -> 5.79.0) Subpackages: kio-core - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Too many changes since 5.78.0, only listing bugfixes: * Fix default codec being set to "US-ASCII" in KIO apps (kde#432406) * CopyJob: fix crash with skip/retry (kde#431731) * Fix lockup when renaming a file from properties dialog (kde#431902) * Tweak KFileWidget::slotOk logic when in files+directory mode (kde#431454) ==== kirigami2 ==== Version update (5.78.0 -> 5.79.0) Subpackages: libKF5Kirigami2-5 - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Too many changes since 5.78.0, only listing bugfixes: * Don't manually call reverseTwinsChanged when destructing FormLayout (kde#431419) * Don't consider Synthetized mouse events as Mouse (kde#431542) * correctly update header size (kde#429235) * [controls/OverlaySheet]: Respect Layout.maximumWidth (kde#431089) * [controls/ListItemDragHandle] Fix wrong arrangement on no-scrolling case (kde#431214) ==== kitemmodels ==== Version update (5.78.0 -> 5.79.0) Subpackages: kitemmodels-imports libKF5ItemModels5 - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Port from std::auto_ptr to std::unique_ptr * Use nullptr instead of 0 * adds additional nullptr checks * autotests: don't run the bihash benchmark automatically * autotests: add missing subdir bihash ==== kitemviews ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Add missing include ==== kjobwidgets ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Have more private classes inherit from those of the parents ==== kmenuedit5 ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - No code changes since 5.20.90 - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Changes since 5.20.5: * Autogenerate categories file * operator+/- is disabled for QFlags in qt6 * ui.rc files: consistenly use <gui> instead of deprecated <kpartgui> * If include is define in .h remove it if it's defined in .cpp too (scripted) ==== kmod ==== Subpackages: libkmod2 - Fix tests to not test disabled features. Disable zstd again. + kmod-populate-modules-Use-more-bash-more-quotes.patch + kmod-testsuite-compress-modules-if-feature-is-enabled.patch + kmod-also-test-xz-compression.patch ==== knewstuff ==== Version update (5.78.0 -> 5.79.0) Subpackages: knewstuff-imports libKF5NewStuff5 libKF5NewStuffCore5 - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Too many changes to list here. ==== knotifications ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Remove unused forward declaration * Remove obsolete QLabel mention in KNotification::event() doc * Emit NewMenu when new context menu is set. * Deprecate KPassivePopup * Make sure all backends ref the notification before doing work * Make the notification example app build and work on Android * Move notification id handling into KNotification class * Fix removing pending notification from queue (kde#423757) * Remove faulty check ==== knotifyconfig ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - No code change since 5.78.0 ==== kpackage ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Add missing includes * Document PackageStructure ownership when using PackageLoader ==== kparts ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - No code change since 5.78.0 ==== kpeople5 ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - No code change since 5.78.0 ==== kpty ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Fix generating the full path to kgrantpty in the code for ! HAVE_OPENPTY ==== kquickcharts ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Add a "first" method to ChartDataSource and use it in Legend (kde#432426) ==== kross ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - No code change since 5.78.0 ==== krunner ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Add .vscode to .gitignore file * Check for selected action in case of informational match * Fix empty result string for current activity * Deprecate overloads for QueryMatch ids * [DBus Runner] Test RemoteImage ==== kscreen5 ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - Changes since 5.20.90: * Fix osd actions not working * Fix rotation direction after change in libkscreen * [kcm] Limit maximum device combobox length (kde#432249) - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Changes since 5.20.5: * Add pre-commit hook for clang-format * Add .git-blame-ignore-revs file * clang-tidy: Force braces around statements * Run clang-format * Update .gitignore file * Add trailing comma to enums * Make orientation icons more obvious in KScreen * Autogenerate categories file * Remove unused include * Fix Connections warnings * Print debug information when something failed * Skip unneeded copies * daemon: improve consistency of the lid behaviour * Address constness of objects * If include is define in .h remove it if it's defined in .cpp too (scripted) * Do not explicitely define Exec line for KCM * refactor(kded): refactor OSD * fix(kded): move to kdirwatch to reduce inotify footprint ==== kscreenlocker ==== Version update (5.20.5 -> 5.21.0) Subpackages: libKScreenLocker5 - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - No code changes since 5.20.90 - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Changes since 5.20.5: * Add .gitignore file to ignore generated .clang-format * Fix catalog name (found by Victor Ryzhykh) * Fix view geometry updates when screens added/removed (kde#347934) * KCM KScreenLocker highlight non default settings * operator+/- is disabled for QFlags in qt6 * delay quit after successful password * Use QuickControls 2 StackView (kde#429290) * actually replace wallaper pages * Use QuickControls 2 StackView (kde#429290) * Lock the screen if necessary when connecting to logind * Require C++17 * Do not explicitly define Exec line for KCM * If include is define in .h remove it if it's defined in .cpp too (scripted) * actually replace wallaper pages ==== kservice ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Deprecate KPluginInfo::dependencies() * CMake: Specify add_custom_command() dependencies * Explicitly deprecate overload for KToolInvocation::invokeTerminal * Add unit test to command parsing in KToolInvocation * Add method to get KServicePtr of default terminal application * Add method to set workingDirectory of service * Add new method to get KServicePtr of default terminal application ==== ksysguard5 ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - Changes since 5.20.90: * Fix sensors names of aggregate disk rates (kde#432851) * Fix copy paste error resulting in total upload displaying the upload rate (kde#430676) * Fix disk speeds (kde#432637) * Check if we could open a file * Include StorageVolumes by default * Set name for temperature sensor * cmake: add URL to help packagers - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Too many changes to list here ==== ktexteditor ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Too many changes since 5.78.0, only listing bugfixes: * [Vimode] Do not switch view when changing case (~ command) (kde#432056) * Increase maximum indentation width to 200 (kde#432283) * Only show bookmark chars error when in vimode (kde#424172) * Retain replacement text as long as the power search bar is not closed (kde#338111) * Allow "Dynamic Word Wrap Align Indent" to be disabled (kde#430987) * [Vimode]Fix search inside fold ranges (kde#376934) * [Vimode] Fix Macro Completion Replay (kde#334032) ==== ktextwidgets ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Have more private classes inherit from those of the parents ==== kunitconversion ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Define variable before using it ==== kwallet ==== Version update (5.78.0 -> 5.79.0) Subpackages: kwalletd5 libKF5Wallet5 libkwalletbackend5-5 - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - No code change since 5.78.0 ==== kwayland ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - No code change since 5.78.0 ==== kwayland-integration ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - No code changes since 5.20.90 - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Changes since 5.20.5: * Now it depends against new version. Old code can be removed * Remove not implemented method * Fix shadowless context menus * Switch to SPDX license identifiers ==== kwayland-server ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - Changes since 5.20.90: * Prevent setting invalid buffer transform and scale * Initialise variable * Introduce SurfaceInterface::hasFrameCallbacks() * Print warning messages in KWAYLAND_SERVER logging category - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Too many changes to list here ==== kwidgetsaddons ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Make use of AUTORCC * Add missing includes * Port away from QDesktopWidget * Have more private classes inherit from those of the parents * Explicitly include QStringList ==== kwin5 ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - Too many changes to list here - Most parts of 0001-Use-Xauthority-for-Xwayland.patch are now upstream, replace it with just 0001-Export-consistent-hostname-as-XAUTHLOCALHOSTNAME.patch - Enable accessibility integration ==== kwindowsystem ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Add fractional opacity convenience helpers * Really fix includes * Fix includes * xcb: Work with the active screen as reported by QX11Info::appScreen(). ==== kwrited5 ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - No code changes since 5.20.90 - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - No code changes since 5.20.5 ==== kxmlgui ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Fix includes * Add KXMLGUIFactory::shortcutsSaved signal * Use the correct kde get involved url (kde#430796) ==== libKF5ModemManagerQt ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - No code change since 5.78.0 ==== libKF5NetworkManagerQt ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Add missing include ==== libapparmor ==== - merge libapparmor.changes into apparmor.changes - define %_pamdir for <= 15.x to fix the build on those releases - add apache-extra-profile-include-if-exists.diff: make <apache2.d> include in apache extra profile optional to avoid problems with empty profile directory (boo#1178527) - prepare usrmerge (boo#1029961) * use %_pamdir ==== libcap ==== Version update (2.47 -> 2.48) - update to 2.48: * More uniform use of $(MAKE) in Makefiles * No longer include symlinks in the git tree * Provide support for make GOLANG=no ... * Provide support for pointing at a specific build of the go binary * camelCase the contrib/seccomp/explore.go program * A number of documentation fixes to man pages and source code comments * Last use of GO major version 0 ==== libdatrie ==== Version update (0.2.12 -> 0.2.13) - update to 0.2.13: - Fix wrong key listing in byte trie - Fix cross-compiling issue caused by AC_FUNC_MALLOC - Fix isspace() arg problem on NetBSD. - Fix some documentations. - Really use TRIE_CHAR_TERM in TrieChar string termination. Changing TRIE_CHAR_TERM definition now won't break the code. - Fix Windows build issue by avoiding <unistd.h> include. - [New APIs] Add serialization of the trie into memory buffer. ==== libevdev ==== Version update (1.9.1 -> 1.11.0) - update to 1.11.0: * One new API, libevdev_disable_property() * Kernel 5.8 changed the SW_MAX define from 0x0f to 0x10. In some niche cases this causes issues if libevdev and the software build against different headers and thus end up with different values * include: sync event codes with kernel 5.10 * Fix included license to the "always intended" MIT license ==== libevent ==== - Drop insserv_prereq and fillup_prereq macros: there are no pre-scripts that would justify these dependencies. ==== libgdata ==== Version update (0.17.13 -> 0.18.0) - Update to version 0.18.0: + Add support for Team Drives. + Bugs fixed: glgo#GNOME/libgdata#25. + Updated translations. ==== libkdecoration2 ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - No code changes since 5.20.90 - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Changes since 5.20.5: * Use non-deprecated KDE_INSTALL_CMAKEPACKAGEDIR * Add .gitignore file to ignore generated .clang-format * bump .so number of kdecorations2private * Restore ABI of libkdecorations2.so * Add a QRect to requestShowWindowMenu * If include is define in .h remove it if it's defined in .cpp too (scripted) ==== libkscreen2 ==== Version update (5.20.5 -> 5.21.0) Subpackages: libKF5Screen7 libkscreen2-plugin - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - Changes since 5.20.90: * Fix refresh rate reported for my laptop monitor * wayland: Fix mapping between kscreen and kwayland transforms - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Changes since 5.20.5: * Update .gitignore file * Add .git-blame-ignore-revs file * clang-tidy: Force braces around statements * Run clang-format * Add missing protect header * Fix build with newer Qt * doctor: Add an option to allow excluding outputs from a dpms action * Fix build with newer Qt * ConfigMonitor: Properly combine erase and iteration * Proper variable scope * KScreen::Output debug output readability * Config: Reserve hash size before populating it * edid: Do not split strings twice unnecessarily * edid: Do not access unallocated QByteArrays * wayland: Provide the Edid when we have it * Prefer straightforward API * wayland: remove meaningless comment * doctor: do not crash when accessing dpms * Initialise the WaylandOutput::size * Use non-deprecated scale method to calculate the screen geometry * Remove unused method declaration * Include rotation in the debug output * Remove not implemented method * Use new simpler way to disable session management ==== libksysguard5 ==== Version update (5.20.5 -> 5.21.0) Subpackages: libksysguard5-helper libksysguard5-imports - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - Changes since 5.20.90: * Ensure text doesn't flow outside the Pie Chart face (kde#431995) * Respect "show title" flag for Faces' CompactRepresentation * Reduce default history amount for line charts to 60 seconds * Do the sensor setters in two stages (kde#432254) * Always reset minimum and maximum, not only when inserting * Use faster file system searcing for iterating process groups * Also require C++ 17 on stable * SensorDataModel: Cache minimum and maximum values * Fix dataChanged emitted when PIDs are loaded * Avoid formatting NaN values * Don't call update inside the application constructor * Filter our services in the application slice which don't match the app string specifier * Prevent inadvertently writing config when destroying SensorFaceController (kde#428970) - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Too many changes to list here ==== libqca-qt5 ==== Version update (2.3.1 -> 2.3.2) - Add a keyring file - Use cmake() syntax for Qt build requirements - Update to 2.3.2: * Add macOS framework major version * qca-gcrypt: Add support for HKDF * Minimum Qt updated to 5.9 * Fixed compilation with gcc 11 - Rebase qca-2.3.0-fixDSA.patch ==== libqt5-qtbase ==== Subpackages: libQt5Concurrent5 libQt5Core5 libQt5DBus5 libQt5Gui5 libQt5Network5 libQt5PrintSupport5 libQt5Sql5 libQt5Sql5-sqlite libQt5Test5 libQt5Widgets5 libQt5Xml5 - Add patch to fix build with GCC 11 (boo#1181861, QTBUG-90395): * 0001-Fix-build-with-GCC-11-include-limits.patch * 0002-Build-fixes-for-GCC-11.patch ==== libqt5-qtwebengine ==== - Add patch to fix sandbox with glibc 2.33 (boo#1182233): * chromium-glibc-2.33.patch ==== libquvi-scripts ==== - Use boolean dependencies to require the correct lua<n>-luasocket, depending on the system in use (lua53-luasocket if liblua5_3-5, lua54-luasocket if liblua5-4-5). ==== libressl ==== Version update (3.2.3 -> 3.2.4) Subpackages: libcrypto46 libssl48 libtls20 - Update to release 3.2.4 * Switch back to certificate verification code from LibreSSL 3.1.x. The new verifier is not bug compatible with the old verifier causing issues with applications expecting behavior of the old verifier. * Unbreak DTLS retransmissions for flights that include a CCS. * Implement autochain for the TLSv1.3 server. * Use the legacy verifier for autochain. * Implement exporter for TLSv1.3. * Plug leak in x509_verify_chain_dup(). ==== libselinux ==== Subpackages: libselinux1 selinux-tools - Add Recommends: selinux-autorelabel, which is very important for healthy use of the SELinux on the system (/.autorelabel mechanism) (bsc#1181837). ==== libwebp ==== Version update (1.1.0 -> 1.2.0) Subpackages: libwebp7 libwebpdemux2 libwebpmux3 - update to 1.2.0: * API changes in libwebp: encode.h: add a qmin / qmax range for quality factor (cwebp adds -qrange) * lossless encoder improvements * SIMD support for Wasm builds * import fuzzers from oss-fuzz & chromium * webpmux: add a '-set loop <value>' option ==== logrotate ==== Version update (3.17.0 -> 3.18.0) - Update to 3.18.0: * Allow UIDs and GIDs to be specified numerically * Add support for Zstandard compressed files * Make delaycompress not to fail with rotate 0 ==== milou5 ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - No code changes since 5.20.90 ==== mpfr ==== - Add cummulative patch mpfr-4.1.0-p7.diff fixing various bugs. ==== nghttp2 ==== Version update (1.42.0 -> 1.43.0) - update to 1.43.0: * doc: Make doc generation work with sphinx v3.3 * python: Require python3 for python bindings * python: Require python3 for python scripts * nghttpx: Make sure that Pool gets cleared when all buffers are returned * nghttpx: Choose ECDSA cert if compatible signature algorithm available * nghttpx: Add workaround to include ':' in backend pattern ==== openal-soft ==== Version update (1.21.0 -> 1.21.1) - update to 1.21.1: * Improved alext.h's detection of standard types. * Improved slightly the local source position when the listener and source are near each other. * Improved click/pop prevention for sounds that stop prematurely. * Fixed compilation for Windows ARM targets with MSVC. * Fixed ARM NEON detection on Windows. * Fixed CoreAudio capture when the requested sample rate doesn't match the system configuration. * Fixed OpenSL capture desyncing from the internal capture buffer. * Fixed sources missing a batch update when applied after quickly restarting the source. * Fixed missing source stop events when stopping a paused source. * Added capture support to the experimental Oboe backend. ==== openjpeg2 ==== Version update (2.3.1 -> 2.4.0) - update to 2.4.0: * Encoder: add support for multithreading #1248 * Encoder: add support for generation of PLT markers #1246 * Encoder: single-threaded performance improvements in forward DWT for 5-3 and 9-7 (and other improvements) #1253 * Encoder: support IMF profiles #1235 * Many bug fixes (including security fixes) - drop 024b8407392cb0b8.patch, 05f9b91e60debda0.patch, 21399f6b7d318fcd.patch, 3aef207f90e937d4.patch, 4cb1f663049aab96.patch: upstream ==== openssh ==== Subpackages: openssh-clients openssh-common openssh-server - Add openssh-whitelist-syscalls.patch (bsc#1182232), fixing failure to accept connections on 32-bit platforms with glibc 2.33+. ==== pango ==== Version update (1.48.1 -> 1.48.2) Subpackages: libpango-1_0-0 typelib-1_0-Pango-1_0 - Update to version 1.48.2: + Fix memory leaks reported by asan + Avoid overflow in pango_attr_list_update + Add a valgrind suppression file + Make tests more robust + Fix pango_font_describe for Emoji fonts ==== perl-Bootloader ==== Version update (0.932 -> 0.933) - merge gh#openSUSE/perl-bootloader#133 - use shim on aarch64 (jsc#SLE-15823, jsc#SLE-15020) - 0.933 ==== pigz ==== Version update (2.4 -> 2.6) - update to 2.6: * Add --huffman/-H and --rle/U strategy options * Fix issue when compiling for no threads * Fail silently on a broken pipe * Add --alias/-A option to set .zip name for stdin input * Add --comment/-C option to add comment in .gz or .zip * Several bug and behavior fixes - drop fortify.patch: obsolete ==== pinentry ==== Subpackages: pinentry-qt5 - add _multibuild to separate out gui client builds ==== pipewire ==== Version update (0.3.20 -> 0.3.21) Subpackages: gstreamer-plugin-pipewire libpipewire-0_3-0 pipewire-modules pipewire-spa-plugins-0_2 pipewire-spa-tools pipewire-tools - Remove the pulseaudio provides from pipewire-pulseaudio: We first need to ensure our KDE patterns (and others) become smart enough to favor pulseaudio until we are ready for the switch. - Update to version 0.3.21: * Highlights + Many PulseAudio compatibility fixes. Handling of corked streams, the prebuf setting, seek modes and stream flags are now implemented correctly. + Ports and Profiles are now managed by the session manager and can save and restore previous settings. ALSA device handling has been tweaked for maximum compatibility at the expense of latency. There are tuning options in the config file. + Improved Bluetooth support. HSP is disabled by default because it is old and deprecated and in some cases causes conflicts with the newer HFP profile. Codec switching is now implemented as well. PipeWire accepts donations with liberapay now. * PipeWire improvements + Improve draining in pw-stream. pw-stream now uses busy metadata by default. This makes sure that no writer can write to buffers when readers are still busy. + Fix handling of empty array/choice instead of failing. + Fix crashes when creating properties from empty strings. + Make it possible to pass an array to module-access access.allowed variables + Fix small bug in argument parsing in pw-cat * Session-manager + Restore route volumes in all cases, also when switching routes. + Use a default route volume for unknown routes instead of letting the system decide on a default. Improve profile handling. Don't try to restore unavailable profiles. Implement the profile switching in the session manager now. + Fix handling of Virtual sources as defaults. + Handle port switching in the session manager. Implement save and restore of default ports per profile. * GStreamer + Fix a crash with zero SPA_PARAM_BUFFERS_size * Device support + v4l2-source will now respect the requested memory types. + ALSA buffering has been tweaked. USB devices should have less XRuns by default. Parameters can be tweaked to decrease the latency on capable devices. Also fix a case where a quantum change would cause an xrun. + Fix mute in bluetooth devices bluetooth devices are not paused in idle anymore for improved compatibility. + Codec switching for bluetooth is implemented along with config options to select the codecs manually. + HSP for bluetooth is now disabled by default. Most devices support the newer HFP profile and some devices fail when both are available. + Reduce the amount of events the ALSA plugins emit by bundling them. * PulseAudio server + Implement the suspend command + Fixes volume in sample info + Fix playback of samples, sometimes samples would be clipped short. Also implement the target sink for the sample. + Use rate match to feed samples. This way the latency can be kept to a minimum. + Latency has been tuned some more, more closely emulating pulseaudio behaviour. + Improve default sink/source handling. Make sure all events are sent correctly when defaults change. + Handle underrun better without causing sync issues. Make sure to pause in corked state. + Implement rewind due to seeks, fixes GStreamer seeking. - Do not remove alsa-card-profiles, they are required - Provide pulseaudio by pipewire-pulseaudio: there are various packages in the distro that require pulseaudio, but essentially, they should be happy with pipewire-pulseaudio as a replacement. Do not provide the symbol though, as we do not (yet) want to automatically migrate users over. ==== plasma-browser-integration ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - Changes since 5.20.90: * Parent TasksModel to QGuiApplication and delete TasksModel after we've set the environment - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Changes since 5.20.5: * Bump manifest version * [Download Job] Show referrer instead of data URL * Open KRunner KCM in System Settings * Add .gitignore to ignore generated .clang-format * Apply autoplay prevention evasion also for Video tags * [Options Page] Provide feedback when permission was already granted * Add Microsoft Edge environment * Port from Settings::environmentDescription().icon to qApp->windowIcon().name() * Use libTaskManager for identifying the browser * [Tabs Runner] Slightly better scoring * Install messaging host for Edge * [Options Page] Force http(s) links to open in new tab * [Reminder] Add Microsoft Edge store link * [convertpottojson] Handle lines ending with " * Add Microsoft Edge extension ID * Move conversion of data URL into QImage into base class * Tabs Runner: Use KApplicationTrader::isSubsequence * Port TabsRunner to DBus runner * Add browser history runner * Introduce AbstractKRunnerPlugin for wrapping DBusRunner * [Settings] Add browser icon name * [Tabs Runner] Rework handling of favicons * If include is define in .h remove it if it's defined in .cpp too (scripted) ==== plasma-framework ==== Version update (5.78.0 -> 5.79.0) Subpackages: libKF5Plasma5 plasma-framework-components - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Too many changes since 5.78.0, only listing bugfixes: * widgets>lineedit.svg: fix pixel misalignment woes (kde#432422) * Add RESET to globalShortcut property (kde#431006) ==== plasma-nm5 ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - Changes since 5.20.90: * [applet] Make spacing for header items consistent - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Too many changes to list here - Drop patches, now upstream: * 0001-Add-support-for-the-OpenVPN-parameter-compress.patch ==== plasma5-addons ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - Changes since 5.20.90: * Copy result by default - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Too many changes to list here ==== plasma5-desktop ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - Changes since 5.20.90: * kcms/keyboard: migrate to repeat, not to accent * Correctly construct URL from local file * fix: Inconsistent effect when hover over the new Keyboard Layout applet (kde#432091) * fix: Wrong fontsize on Keyboard Layout applet (kde#431889) * Fix crash when deleting activity from activity manager (kde#426926,kde#427593) * fix: the first keyboard layout can't have variants (kde#432367) * Use ThickMargin to redirect mouse input to panel and update spacingAtMinSize value * Make the timeout for the applet actions dialog much shorter * migrate from desktops *and* panels (kde#432148) * migrate from MidButton to MiddleButton (kde#430418) * [Kickoff] Open leave menu on press * Fix drag directions for top and right panels (kde#429063) * [Kickoff] Turn off hovering to switch tabs by default * Fix display string for middle click containment action * fix: keyboard applet doesn't autoload on Wayland * [Kickoff] Reduce spacing between label and arrow alleviating elision problem * [Kickoff] Tweak padding around configure button * [Kickoff] Use RoundButton for now Right now Avatar isn't mature enough for keyboard navigation so it's best to work around touch issue for now * [applets/kickoff] Add a visible configure button * [applets/kickoff] Re-add Avatar to the focus chain * hotfix: re-add id to avatar in Kickoff * kickoff: use Kirigami.Avatar directly instead of wrapping in RoundButton * [Kickoff] Fix leave buttons not working * [Kickoff] Revamp LeaveButtons item * [Kickoff] Check for searchPage directly rather than root.state (kde#431894) * [Folder View] implement "two click rename" feature for double-click mode (kde#392731) * Enable 2 columns mode - Avoid hard dependency on plasma5-pa ==== plasma5-integration ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - Changes since 5.20.90: * Revert held-key behaviour - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Changes since 5.20.5: * x11integration: Force standalone Qt::Dialog resizable * Change default color scheme to BreezeLight * operator+/- is disabled for QFlags in qt6 * Add comment explaining the pkg-config file installed by IM module * [keyheld]: add tittleless i and s-cedilla * Add Philippine Peso to currency alternatives in plasma im module * Add some currency mappings to new key-held im module module * Add key-held behaviour * Use new standard shortcut for "Create Folder" * Enable hover effects by default * Use nullptr * Ignore files * Use Q_EMIT * initialize pointer/values * Fix typo + use direct * Now it depends against new version. Old code can be removed * kdirselectdialog: when creating a new dir that already exists, select it * QXdgDesktopPortalFileDialog: pass directory option to portal ==== plasma5-openSUSE ==== Subpackages: plasma5-defaults-openSUSE plasma5-theme-openSUSE sddm-theme-openSUSE - Update to 5.21.0 - Update to 5.20.90 ==== plasma5-pa ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - Changes since 5.20.90: * Allow to mute/unmute microphone with left-click in system tray * [StreamRestore] Fix equals check * Forward role() into PulseObjectFilterModel - Adjust dependencies to allow pipewire-pulseaudio as well - Use GSettings on Leap 15.3+ as well - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Too many changes to list here ==== plasma5-workspace ==== Version update (5.20.5 -> 5.21.0) Subpackages: gmenudbusmenuproxy plasma5-session plasma5-session-wayland plasma5-workspace-libs xembedsniproxy - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - Changes since 5.20.90: * fix restore size when float is used * show colors,icons and plasma style in plamo * [Notifications] Escape HTML in destUrl and fileName * [Notifications] When application responds to cancel request, stop kill timer * Fix condition for executable folders (kde#432653) * ksmserver: Filter out services with NoDisplay=true * Fix wallpaper paths in org.kde.slideshow package * Revert "Use subseq matching for service runner" (kde#431609,kde#432339) * [Notifications] Property is supposed to be "ProcessedItems" * remove phone specific wallpaper config ui * [applets/digital clock] Unbreak the time zone config dialog * Set add panel as an explicit menu of a panel action (kde#432250) * Wallpaper config: fix property imageModel that was missing in delegate (kde#431961) * Make ksmserver's lock screen detection automatic * [systemd] Move kwin to "wants" * [applets/systemmonitor] fix not hiding the title on vertical panels * [applets/digital clock] Restore scroll-to-change-displayed-timezone (kde#431977) * Don't crash if the panelview is not ready * [Notifications] Re-evaluate unread count when a notification is "read" * [keyboard applet] fix TypeError garbage in log * Fix condition for windowed widgets standalone mode (kde#432032) - Add patch to either get more info or work around logout not working sometimes (kde#432460): * 0001-ksmserver-Enable-debug-output-by-default.patch - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Too many changes to list here - Refresh patches: * 0001-Revert-No-icons-on-the-desktop-by-default.patch * 0001-Set-GTK_BACKEND-x11-in-a-wayland-session.patch * 0001-Use-qdbus-qt5.patch ==== polkit-kde-agent-5 ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - Changes since 5.20.90: * plasma-polkit-agent.service: fix After, BusName keys (kde#431963) - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Changes since 5.20.5: * Add pre-commit hook for clang-format * Update .gitignore file * Add .git-blame-ignore-revs file * Run clang-format * If include is define in .h remove it if it's defined in .cpp too (scripted) * Makes the polkit agent started by systemd when systemd boot is enabled. ==== poppler ==== Version update (21.01.0 -> 21.02.0) Subpackages: libpoppler-cpp0 libpoppler-glib8 - Update to 21.02.0: + core: - GfxCal*ColorSpace: introduce Bradford transform for chromatic adaptation - Fix memory leak if saving the file fails - Internal code improvements - Fix various issues handling broken files - Make checkedAdd work for long long in MSVC + qt5: - Properly export NewSignatureData class - Fix regression in QIODeviceOutStream + MSVC + qt6: - Properly export NewSignatureData class - Fix regression in QIODeviceOutStream + MSVC + utils: - pdftohtml: Fix error() parameter type ==== poppler-qt5 ==== Version update (21.01.0 -> 21.02.0) - Update to 21.02.0: + core: - GfxCal*ColorSpace: introduce Bradford transform for chromatic adaptation - Fix memory leak if saving the file fails - Internal code improvements - Fix various issues handling broken files - Make checkedAdd work for long long in MSVC + qt5: - Properly export NewSignatureData class - Fix regression in QIODeviceOutStream + MSVC + qt6: - Properly export NewSignatureData class - Fix regression in QIODeviceOutStream + MSVC + utils: - pdftohtml: Fix error() parameter type ==== powerdevil5 ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - Changes since 5.20.90: * [backlighthelper] Don't touch brightness when animation isn't running - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Changes since 5.20.5: * Autogenerate categories file * Clarify ambiguous settings entries in launchers * Clear ambiguity when searching for settings in launchers * Take into account logind sleep and idle inhibitions (kde#364067) * mobile: bind the power off key to "Turn Off Screen" * Expose screen locked state in policy agent * autostart: start powerdevil earlier in the phase 0 * Set NoDisplay=true in powerdevil autoatart * Remove use of XCB DPMS timeouts and handle it explicitly * If include is define in .h remove it if it's defined in .cpp too (scripted) * Do not explicitely define Exec lines for KCMs * Add gitignore file * Ignore player's from KDE Connect when suspending (kde#427209) * Remove XRandRBrightness * Honor animation brightness threshold also for sysfs helper (kde#426883) * Add systemd unit for powerdevil * Set correct type for autostart .desktop file * Show "you might need to reconnect charger" hint only when charging/fully charged * Take DESTDIR into account when running setcap ==== prison-qt5 ==== Version update (5.78.0 -> 5.79.0) Subpackages: libKF5Prison5 prison-qt5-imports - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - No code change since 5.78.0 ==== procps ==== Version update (3.3.16 -> 3.3.17) Subpackages: libprocps8 - Add /usr/share/man/uk dir to file list for lang sub package - Fix directory for Ukrainian man pages translations. - Move localized man pages to lang package. - Remove obsolete conditionals. - Remove obsolete --enable-oomem option. - Run spec-cleaner. - Update to procps-ng-3.3.17 * library: Incremented to 8:3:0 (no removals or additions, internal changes only) * all: properly handle utf8 cmdline translations issue #176 * kill: Pass int to signalled process merge #32 * pgrep: Pass int to signalled process merge #32 * pgrep: Check sanity of SG_ARG_MAX issue #152 * pgrep: Add older than selection merge #79 * pidof: Quiet mode merge #83 * pidof: show worker threads Redhat #1803640 * ps.1: Mention stime alias issue #164 * ps: check also match on truncated 16 char comm names * ps: Add exe output option Redhat #1399206 * ps: A lot more sorting available merge #99 * pwait: New command waits for a process merge #97 * sysctl: Match systemd directory order Debian #950788 * sysctl: Document directory order Debian #951550 * top: ensure config file backward compatibility Debian #951335 * top: add command line 'e' for symmetry with 'E' issue #165 * top: add '4' toggle for two abreast cpu display issue #172 * top: add '!' toggle for combining multiple cpus * top: fix potential SEGV involving -p switch merge #114 * vmstat: Wide mode gives wider proc columns merge #48 * watch: Add environment variable for interval merge #62 * watch: Add no linewrap option issue #182 * watch: Support more colors merge #106,#109 * free,uptime,slabtop: complain about extra ops issue #181 - Remove now obsolete upstream patches * procps-check-sanity-of-SC_ARG_MAX.patch * procps-ng-3e1c00d0.patch - Port patches * procps-ng-3.3.10-integer-overflow.patch * procps-ng-3.3.10-large_pcpu.patch * procps-ng-3.3.8-accuracy.dif * procps-ng-3.3.8-bnc634840.patch * procps-ng-3.3.8-petabytes.patch * procps-ng-3.3.8-tinfo.dif * procps-ng-3.3.9-w-notruncate.diff * procps-v3.3.3-read-sysctls-also-from-boot-sysctl.conf-kernelversion.diff ==== purpose ==== Version update (5.78.0 -> 5.79.0) Subpackages: libKF5Purpose5 libKF5PurposeWidgets5 - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * [nextcloud] Rework configuration UI * Evaluate initial configuration * Clip ListViews in kdeconnect and bluetooth config * Remove unneeded Layout attached properties * [plugins/nextcloud] Use Nextcloud icon * [cmake] Move find_package to toplevel CMakeLists.txt ==== python-Jinja2 ==== Version update (2.11.2 -> 2.11.3) - update to 2.11.3 * Improve the speed of the urlize filter by reducing regex backtracking. Email matching requires a word character at the start of the domain part and only word characters in the TLD (CVE-2020-28493 bsc#1181944). ==== python-cffi ==== Version update (1.14.4 -> 1.14.5) - update to 1.14.5: * Source fix for old gcc versions ==== python-cryptography ==== Version update (3.3.1 -> 3.3.2) - update to 3.3.2: * SECURITY ISSUE: Fixed a bug where certain sequences of update() calls when symmetrically encrypting very large payloads (>2GB) could result in an integer overflow, leading to buffer overflows. CVE-2020-36242 ==== python-idna ==== Version update (2.10 -> 3.1) - update to 3.1: - Ensure license is included in package (Thanks, Julien Schueller) - No longer mark wheel has universal (Thanks, Matthieu Darbois) - Test on PowerPC using Travis CI - Python 2 is no longer supported (the 2.x branch supports Python 2, use "idna<3" in your requirements file if you need Python 2 support) - Support for V2 UTS 46 test vectors. ==== python-networkx ==== - Disable python36 build for good. Next up is SciPy 1.6.0 dropping Python 3.6 because of NEP 29. - Mark the doc package files as doc. ==== python-pyrsistent ==== - Remove remnant requirements of six and numpy: These are neither used anywhere in the package code, nor in the tests. ==== python-pytz ==== Version update (2020.5 -> 2021.1) - update to 2021.1: * update to IANA 2021a timezone release ==== python-requests ==== - add 5711.patch from upstream instead to remove idna<3 pin - Don't pin idna<3 in the egg-info so that depending packages can install the new idna dropping python2 ==== python38 ==== - Add Obsoletes for python3-base when primary interpreter is set to properly replace it during upgrades. (bsc#1181324) - Provide %have_<flavor> for all python flavors gh#openSUSE/python-rpm-macros#96 - Add %python3_default and %default_python3 for the primary python3 flavor ==== python38-core ==== Subpackages: libpython3_8-1_0 python38-base - Add Obsoletes for python3-base when primary interpreter is set to properly replace it during upgrades. (bsc#1181324) - Provide %have_<flavor> for all python flavors gh#openSUSE/python-rpm-macros#96 - Add %python3_default and %default_python3 for the primary python3 flavor ==== qqc2-desktop-style ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * [combobox] Fix touchpad scroll speed (kde#400258) * qw can be null * Support QQuickWidget (kde#428737) * allow drag window from empty areas ==== re2 ==== Version update (20201101 -> 20210202) - Update to version 2021-02-02: * Address `-Wnull-dereference' warnings from GCC 10.x. ==== reiserfs ==== - Move soname link to library package ==== rpm ==== - Use shipped config.sub/config.guess instead of stone-aged from libtool - auto-config-update-aarch64-ppc64le.diff: update grep regex ==== samba ==== Version update (4.13.3+git.181.fc4672a5b81 -> 4.13.4+git.187.5ad4708741a) Subpackages: libdcerpc-binding0 libdcerpc0 libndr-krb5pac0 libndr-nbt0 libndr-standard0 libndr1 libnetapi0 libsamba-credentials0 libsamba-errors0 libsamba-hostconfig0 libsamba-passdb0 libsamba-util0 libsamdb0 libsmbclient0 libsmbconf0 libsmbldap2 libtevent-util0 libwbclient0 samba-client samba-libs samba-libs-python3 - Update to 4.13.4 * Work around special SMB2 IOCTL response behavior of NetApp Ontap 7.3.7; (bso#14607); * Temporary DFS share setup doesn't set case parameters in the same way as a regular share definition does; (bso#14612); * lib: Avoid declaring zero-length VLAs in various messaging functions; (bso#14605); * Do not create an empty DB when accessing a sam.ldb; (bso#14579); * vfs_fruit may close wrong backend fd; (bso#14596); * Temporary DFS share setup doesn't set case parameters in the same way as a regular share definition does; (bso#14612); * vfs_virusfilter: Allocate separate memory for config char*; (bso#14606); * vfs_fruit may close wrong backend fd; (bso#14596); * Work around special SMB2 IOCTL response behavior of NetApp Ontap 7.3.7; (bso#14607); * The cache directory for the user gencache should be created recursively; (bso#14601); * Be more flexible with repository names in CentOS 8 test environments; (bso#14594); - Uninstalling samba-client: Failed to disable unit, cifs.service does not exists; (bsc#1180388); ==== sensors ==== - pwmconfig-handle-fan-input-error.patch: pwmconfig: Deal gracefully with unreadable fan inputs (boo#1181890). - pwmconfig-raise-fan-threshold.patch: pwmconfig: Further raise the fan threshold (boo#1181890). ==== solid ==== Version update (5.78.0 -> 5.79.0) Subpackages: libKF5Solid5 solid-imports - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * CMake: use configure_file() to ensure noop incremental builds * [Fstab] Ignore docker overlay mounts (kde#422385) ==== sonnet ==== Version update (5.78.0 -> 5.79.0) Subpackages: libKF5SonnetCore5 libKF5SonnetUi5 - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Dont do multiple lookups when one is enough ==== srt ==== - Add patch to fix build with GCC 11 (boo#1181883) * 0001-Fix-build-with-GCC-11.patch ==== supportutils ==== Version update (3.1.13 -> 3.1.14) - Additions to version 3.1.14 + [powerpc] Collect logs for power specific components (HNV ) #88 (bsc#1181911) + Updated pam.txt documentation explaining GDPR - No longer truncates boot log (bsc#1181610) ==== syntax-highlighting ==== Version update (5.78.0 -> 5.79.1) Subpackages: libKF5SyntaxHighlighting5 - Update to 5.79.1 * Breeze Light: restore original black color for Control Flow - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Too many changes since 5.78.0, only listing bugfixes: * Bash, Zsh: fix cmd;; in a case (kde#430668) * email.xml: Detect nested comments and escaped characters (kde#425345) * Bash: fix } in ${!xy*} and more Parameter Expansion ==== system-users ==== Subpackages: system-group-hardware system-group-kvm system-user-lp system-user-nobody - system-user-tss.conf: Remove group entry, not needed and did contain syntax errors - remove duplicate group entry: - system-user-tftp.conf - system-user-uuidd.conf - system-user-uucp.conf - system-user-uucp.conf - system-user-ftp.conf - system-user-games.conf - system-user-news.conf ==== systemsettings5 ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - Changes since 5.20.90: * [Sidebar view] Make Intro Page icons keyboard-triggerable * Include SystemSettingsExternalApp modules in the --list output as well * Fix headers missing for non-KCM modules * [Icon View] Don't open modules twice on clicking * Fix ExternalAppModules not showing up * [sidebar view] Fix sidebar header alignment and height - Drop patches, now upstream: * 0001-Fix-ExternalAppModules-not-showing-up.patch * 0002-Icon-View-Don-t-open-modules-twice-on-clicking.patch * 0003-Fix-headers-missing-for-non-KCM-modules.patch * 0004-Include-SystemSettingsExternalApp-modules-in-the-lis.patch - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Too many changes to list here - Add patches to fix the YaST item: * 0001-Fix-ExternalAppModules-not-showing-up.patch * 0002-Icon-View-Don-t-open-modules-twice-on-clicking.patch * 0003-Fix-headers-missing-for-non-KCM-modules.patch * 0004-Include-SystemSettingsExternalApp-modules-in-the-lis.patch ==== sysuser-tools ==== - Don't abort on unbound first argument - Remove sysusers/nscd workaround - Use systemd-sysusers only if /proc is mounted, don't require it - Set --replace option for systemd-sysusers - Ignore nscd return code - If systemd-sysusers is used to create a new user/group, invalidate the nscd passwd and group cache to make the new user/group visible immediately as workaround [bsc#1181121]. Needs to be removed after sytemd-sysusers get's fixed, since we invalidate the cache even if the user/group file wasn't changed. - An "u" in a sysusers.d file will create an user and a group. Create provides for both, user and group. - Use systemd-sysusers as default to create and update the user account. Fixes the problem that a modified sysusers config file get's ignored by useradd and adduser [bsc#1180549]. ==== telepathy-glib ==== Version update (0.24.1 -> 0.24.2) Subpackages: libtelepathy-glib0 typelib-1_0-TelepathyGlib-0_12 - Update to version 0.24.2: + Enhancements: - Port build tools to Python 3 - Update and fix tests for Python 3 + Fixes: - Stop hardcoding python's path in .py scripts - Fixed some code issues discovered by compiling with clang - Replaced tp_verify_* with G_STATIC_ASSERTs, fixing the build with more recent gtk-doc - autogen.sh: run gtkdocize from $srcdir in out-of-source builds - Tests: . Fix build failure with glib >= 2.46 due to duplicate test paths . Fix a service file path to fix the build with installed tests - call-channel: fix a memory leak - debug-sender: fix messages queue locking - TpBasePasswordChannel: fix gtk-doc comment for finished signal - protocol: fix a memory leak - Fix a crash when creating a conference call ==== threadweaver ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Fix map interators when building against Qt6 * Don't explicitly init mutexes as NonRecursive * Remove unused include ==== transactional-update ==== Version update (2.28.3 -> 3.1.4) Subpackages: transactional-update-zypp-config - Version 3.1.4 - SELinux: Fix syncing of SELinux attributes when using overlays - SELinux: Tag the overlay directory itself (again) - Version 3.1.3 - Fix overlay syncing on SELinux systems - Fix resuming transactions where the parent does not exist any more - Version 3.1.2 - libtukit: Report when application was terminated due to a signal, and return the signal number as a return value. This will cause the transaction to be aborted when called via `execute`. - libtukit: Set PATH variable for internal commands to fixed value to find the helper applications, as in some environments such as PolicyKit PATH wouldn't be set. - Fix compiler warnings - Version 3.1.1 - Fix hang in tukit on aarch64 [bsc#1181844] - Prevent deletion of snapshots when resuming a snapshot where no transaction is open - Make tukit work in non-dbus environments [boo#1181934] - Version 3.1.0 - t-u: Support installing RPMs from the user's directory again - Adapt selfupdate to new packaging - Implement signal handling - Remove empty text files - Add libselinux build time dependency - Remove RPM version check - Fix libstdc++ filesystem ABI incompatibility by using newer gcc version on old distributions. [boo#1181582] - Rework packaging based on Fedora packaging to separate all the components to remove the intrinsic requirement for Zypper - Version 3.0.0 - This release changes the internal structure, but should be identical to the previous release feature wise. - Major parts of the previous Bash only application have been rewritten in C++ with the goal to provide an API around transactions; the transactional-update script is using that new interface internally already, however the API should be considered experimental for now - if you are interested to use it, please notify us in https://github.com/openSUSE/transactional-update/issues/52 - A new tool called "tukit" provides a C++ tool that can be wrapped by scripts to leverage the functionality. Please consider it experimental for now, the commands may still change. - Bugfixes: - Implement support for system offline update [boo#1180808] - Add statistics files to update environment [boo#1173282] ==== udisks2 ==== Version update (2.9.1 -> 2.9.2) Subpackages: libudisks2-0 - update to 2.9.2: * udiskslinuxblock: Survive a missing /etc/crypttab * lvm2: Fix leaking BDLVMVDOPooldata * tests: Test modules that are actually enabled during build * build: Exclude VDO module from distcheck build * udisksfstabentry: Add udisks_fstab_entry_has_opt() * udiskslinuxblock: Reflect fstab "noauto" mount option in HintAuto * udiskslinuxblock: Update hints after fstab change * tests: Add tests for Block hints * udiskslinuxfilesystemhelpers: Make TakeOwnership() race free * tests: Extend filesystem test_take_ownership tests with symlinks * mount options: Allow 'nosymfollow' mount option for unprivileged mounts * udisksstate: Silence the block device busy messages on cleanup lock * udev: Distinguish mmcblk-class device types * udev: Propagate mmcblk disk attributes to mmcblk_boot devices * udiskslinuxdrive: Tweak the 'removable'/'ejectable' hints for mmcblk-class devices * udiskslinuxblock: Tweak the hints for mmcblk-class devices * udisksdaemonutil: Refactor udisks_daemon_util_trigger_uevent() out of UDisksLinuxBlockObject * udiskslinuxmanager: Trigger uevent after loop device setup * tests: Remove scsi_debug serial number checks * tests: Skip zram tests if zram module is already loaded * treewide: Fix typos * AUTHORS: Add tbzatek as the maintainer * tests: Do not use nilfs2 as an example of non-resizable FS * Memory leak fixes * doc: Update config file path - drop udisks2-Fix-memory-leaks.patch, udisks2-lvm2-Fix-leaking-BDLVMVDOPooldata.patch (upstream) ==== util-linux ==== Subpackages: libblkid1 libfdisk1 libmount1 libsmartcols1 libuuid1 - libmount: don't use "symfollow" for helpers on user mounts (boo#1181750, util-linux-libmount-dont-use-symfollow.patch) - Override GTKDOCIZE with /bin/true so we can run autoreconf without needing gtk-doc as a dependency. ==== util-linux-systemd ==== - libmount: don't use "symfollow" for helpers on user mounts (boo#1181750, util-linux-libmount-dont-use-symfollow.patch) - Override GTKDOCIZE with /bin/true so we can run autoreconf without needing gtk-doc as a dependency. ==== vte ==== Version update (0.62.2 -> 0.62.3) - Update to version 0.62.3: + keymap: Use int8_t for the length of the short keymap strings + Revert "lib: Sanitise the passed-in font description" + Updated translations. ==== vulkan-loader ==== Version update (1.2.165 -> 1.2.169) - Update to release 1.2.169 * loader: Do not return OOM when layer count is 0 - Update to release 1.2.166 * No user-visible changes ==== webkit2gtk3 ==== Version update (2.30.4 -> 2.30.5) Subpackages: libjavascriptcoregtk-4_0-18 libwebkit2gtk-4_0-37 webkit2gtk-4_0-injected-bundles - Update to version 2.30.5: + Bring back the WebKitPluginProcess installation that was removed by mistake. + Fix RunLoop objects leaked in worker threads. + Fix aarch64 llint build with JIT disabled. + Use Internet Explorer quirk for Google Docs. - Drop gir-multilib.patch: fixed upstream. ==== wpa_supplicant ==== - Add CVE-2021-0326.patch -- P2P group information processing vulnerability (bsc#1181777) ==== xdg-desktop-portal-kde ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - No code changes since 5.20.90 - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Changes since 5.20.5: * Add X-KDE-DBUS-Restricted-Interfaces=org.kde.kwin.Screenshot to desktop file * If include is define in .h remove it if it's defined in .cpp too (scripted) * FileChooser: escape slash character in user visible filter name (kde#427306) * mobile filechooser: Make sure to also return the right folder when the folder wasn't changed * Disable X11 session management * screencast: Improve the screencasting process * mobile filechooser: Use new required property API * mobile filechooser: Don't accept empty titles ==== xterm ==== Version update (363 -> 366) - Updated to Patch#366 2021/02/10 * correct a compiler-warning fix in patch #352 which allowed sign-extension of coordinate values (report by "CismonX"). * correct upper-limit for selection buffer, accounting for combining characters (report/testcase by Tavis Ormandy). (CVE-2021-27135 bsc#1182091) * with alwaysHighlight true, xterm does not properly track focus. The screen->select FOCUS flag remains always on, which prevents bellIsUrgent from working, as the urgent WM_HINT flag is only set in setXUrgency() when the window is not focused. Fix this by updating screen->select in unselectwindow() regardless of the value of always_highlight (patch by Jiri Bohac). * improve fix for interaction between SRM and ENQ (report by Grant Taylor). * build-fix for --with-Xaw3dxft, needed when --with-toolbar is omitted (report by Jimmy Olgeni, Emanuel Haupt). - Updated to Patch #365 - 2021/02/03 * amend fix for ?word? selection in patch #364 to limit that to the insert-selectable action, which reads data from the screen. This restores the interactive behavior where double-clicking on a ?word? would make subsequent selection extensions by words as well as suppressing some boundary-checks (report by David Wolfskill, FreeBSD #253225). - Updated to Patch #364 - 2021/02/02 * add -fc option. * correct/improve limit-checks for SRM versus ENQ from patch #344 (report by Tom Szilagyi). * enable XftFont resource in Xaw3dxft configuration (patch by Tavis Ormandy). * improve quoting/escaping in build-scripts per shellcheck. * add libpcre2-posix to the packages tested for --with-pcre2 option, needed with Fedora (report by Tomas Korbar). * correct a typo in manual page, and note that KeepClipboard may not be compiled-in (report/patch by Sean C Farley). * corrected boundary-checks for ?word? selection used in onNClicks resources (report by Tavis Ormandy). * update to autoconf-2.52-20210101, to improve shellcheck warnings. * improve configure check for desktop categories. ==== yelp ==== Version update (3.38.2 -> 3.38.3) Subpackages: libyelp0 - Update to version 3.38.3: + Updated translations. ==== yelp-xsl ==== Version update (3.38.2 -> 3.38.3) - Update to version 3.38.3: + Updated translations. ==== zxing-cpp ==== Version update (1.1.0 -> 1.1.1) - Update to 1.1.1. No changelog available. - Drop fix-pkg-config-file.patch. Merged upstream - Add 0001-Fix-build-with-GCC-11.patch to fix GCC 11 build issues (boo#1181915)

1 0

New ARM Kubic snapshot 20210221 released!
by Guillaume Gardet 22 Feb '21

22 Feb '21

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=3&version=T… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: apparmor boost-base btrfsmaintenance ceph (16.0.0.5613+gb1a0951432 -> 16.1.0.46+g571704f730) containers-systemd (0.0+git20210118.1366ecb -> 0.0+git20210205.a4b07b6) dhcp (4.3.5 -> 4.4.2) dosfstools (4.1+git.1610658652.9443732 -> 4.2) elfutils (0.182 -> 0.183) fuse3 (3.10.1 -> 3.10.2) gcc11 (11.0.0+git182924 -> 11.0.0+git183291) glib2 (2.66.4 -> 2.66.7) glibc (2.32 -> 2.33) gptfdisk (1.0.5 -> 1.0.6) haproxy (2.3.4+git0.10189c965 -> 2.3.5+git0.5902ad99b) helm (3.4.2 -> 3.5.2) json-glib (1.6.0 -> 1.6.2) kbd (2.3.0 -> 2.4.0) kernel-default-base (5.10.12 -> 5.10.16) kernel-firmware (20210119 -> 20210208) kernel-source (5.10.12 -> 5.10.16) kmod kustomize (3.9.2 -> 3.10.0) libapparmor libcap (2.47 -> 2.48) libevent libressl (3.2.3 -> 3.2.4) libselinux logrotate (3.17.0 -> 3.18.0) nfs-client-provisioner (2.3.0+git20200220.a14bfd72 -> 4.0.0+git20210204.23ecb30) nghttp2 (1.42.0 -> 1.43.0) openssh perl-Bootloader (0.932 -> 0.933) pigz (2.4 -> 2.6) pinentry procps (3.3.16 -> 3.3.17) python-Jinja2 (2.11.2 -> 2.11.3) python-cffi (1.14.4 -> 1.14.5) python-cryptography (3.3.1 -> 3.3.2) python-idna (2.10 -> 3.1) python-networkx python-pyrsistent python-pytz (2020.5 -> 2021.1) python-pyzmq (20.0.0 -> 22.0.3) python-requests python38 python38-core reiserfs rpm salt supportutils (3.1.13 -> 3.1.14) system-users sysuser-tools transactional-update (2.28.3 -> 3.1.4) util-linux util-linux-systemd weave (2.7.0 -> 2.8.1) wpa_supplicant === Details === ==== apparmor ==== Subpackages: apparmor-abstractions apparmor-parser apparmor-profiles apparmor-utils python3-apparmor - merge libapparmor.changes into apparmor.changes ==== boost-base ==== Subpackages: boost-license1_75_0 libboost_thread1_75_0 - Fix HPC build on ARM. It seems boost_serialization libraries are no longer implicitly build with this setup. - Add build support for gcc10 to HPC build (bsc#1174439). - Add openmpi4 flavors (jsc#SLE-16462). ==== btrfsmaintenance ==== - Require libzypp plugin only if zypper is used (Required for e.g. image based systems). ==== ceph ==== Version update (16.0.0.5613+gb1a0951432 -> 16.1.0.46+g571704f730) Subpackages: ceph-common libcephfs2 librados2 librbd1 librgw2 python3-ceph-argparse python3-ceph-common python3-cephfs python3-rados python3-rbd python3-rgw - Update to 16.1.0-46-g571704f730 + rebase on top of upstream v16.1.0 (Pacific release candidate) + drop obsolete downstream patches that were causing conflicts: * cephadm: use registry.suse.com by default * cephadm: add global flag --container-init * mgr/cephadm: append --container-init to basecommand * cephadm: remove container-init subparser from "deploy" - Update to 16.0.0-7500-g78f6791981: + cephadm: add global flag --container-init + mgr/cephadm: append --container-init to basecommand + cephadm: remove container-init subparser from "deploy" - Update to 16.0.0-7497-g63a0682c7e: + rebase on tip of upstream "master" branch, SHA1 8c6b533ee85e7fe2cd19e5dbb6f0363898f5a2ee - Update to 16.0.0-6239-g0c2e605e78: + rebase on tip of upstream "master" branch, SHA1 6d1f1f63b711797e21ff8ff12662d07d86546e66 * cephadm: Fix error setting 'mgr/cephadm/container_init' config (PR #37500) - Update to 16.0.0-6229-g71574673b0: + rebase on tip of upstream "master" branch, SHA1 f68197eca4b4dceef9fbf497d640b4600663d3ed * ceph-volume: don't exit before empty report can be printed (PR #37591) - Update to 16.0.0-6177-g01e4ab745b: + rebase on tip of upstream "master" branch, SHA1 f8ea1f38aee3d8715186a756331a23d4b51121f2 * ceph-volume: pass filter_for_batch as keyword argument (PR #37545) - Update to 16.0.0-6162-g892bfa3fef: + drop the following commits: + lvmcache: refactor argument parsing and add -h flag + ceph-volume: install lvmcache plugin + ceph-volume: add lvmcache plugin and its tests + rebase on tip of upstream "master" branch, SHA1 0a92d5094fc0baae3af223aa16b271d2e5e6f349 + mgr/devicehealth: device_health_metrics pool gets created even without any OSDs in the cluster (bsc#1173079) ==== containers-systemd ==== Version update (0.0+git20210118.1366ecb -> 0.0+git20210205.a4b07b6) - Update to version 0.0+git20210205.a4b07b6: * Add container-nfs-service files ==== dhcp ==== Version update (4.3.5 -> 4.4.2) Subpackages: dhcp-client - update to 4.4.2: * Please note that that ISC DHCP is now licensed under the Mozilla Public License, MPL 2.0. In general, the areas of focus for ISC DHCP 4.4 were: 1. Dynamic DNS additions 2. dhclient improvements 3. Support for dynamic shared libraries * Added the interface name to socket initialization failure log messages. Prior to this the log messages stated only the error reason without stating the target interface. * Corrected buffer pointer logic in dhcrelay functions that manipulate agent relay options. Thanks to Thomas Imbert of MSRC Vulnerabilities & Mitigations for reporting the issue. * Corrected unresolved symbol errors building relay_unittests when configured to build using libtool. * A new configuration parameter, ping-cltt-secs (v4 operation only), has been added to allow the user to specify the number of seconds that must elapse since CLTT before a ping check is conducted. Prior to this, the value was hard coded at 60 seconds. Please see the server man pages for a more detailed discussion. * A new configuration parameter, ping-timeout-ms (v4 operation only), has been added that allows the user to specify the amount of time the server waits for a ping-check response in milliseconds rather than in seconds (via ping-timeout). When greater than zero, the value of ping-timeout-ms will override the value of ping-timeout. Thanks to Jay Doran from Bluecat Networks for suggesting this feature. * An experimental tool called, Keama (KEA Migration Assistant), which helps translate ISC DHCP configurations to Kea configurations, is now included in the distribution. * Corrected a misuse of the BIND9 DDNS API which caused DDNS updates to be carried out over TCP rather than UDP. The coding error was exposed by migration to BIND9 9.11. Thanks to Jinmei Tatuya at Infoblox for reporting the issue. * Bind9 now defaults to requiring python to build. The Makefile for building Bind9 when bundled with ISC DHCP was modified to turn off this dependency. * Corrected a dual-stack mixed-mode issue that occurs when both ddns-guard-id-must-match and ddns-other-guard-is-dynamic are enabled and that caused the server to incorrectly interpret the presence of a guard record belonging to another client as a case of no guard record at all. Thanks to Fernando Soto from BlueCat Networks for reporting this issue. * Corrected a compilation issue that occurred when building without DNS update ability (e.g. by undefining NSUPDATE). * Corrected an issue that was causing the server, when running in DHPCv4 mode, to segfault when class lease limits are reached. Thanks to Peter Nagy at Porion-Digital for reporting the matter and submitting a patch. * Made minor changes to eliminate warnings when compiled with GCC 9. Thanks to Brett Neumeier for bringing the matter to our attention. * Fixed potential memory leaks in parser error message generation spotted by Coverity, CIDs: 1448191, 1448193, 1448194, 1448195 * Updated URL of IEEE oui.txt in contrib/dhcp-lease-list.pl. Thanks to Tommy Smith for contributing the patch. * Fixed define flags when using SO_BINDTODEVICE. Thanks to Joe LeVeque for reporting the issue. * Applied a patch from OpenBSD to always set the scope id of outbound DHPCv6 packets. Note this change only applies when compiling under OpenBSD. Thanks to Brad Smith at OpenBSD from bringing it to our attention. * Modified dhclient to not discard config file leases that are duplicates of server-provided leases and to retain such leases after they have been used as the fallback active lease and DHCP service has been restored. This allows them to be used more than once during the lifetime of a dhclient instance. This applies to DHCPv4 operation only. * Corrected a number of reference counter and zero-length buffer leaks. Thanks to Christopher Ertl of MSRC Vulnerabilities & Mitigations for pointing them out. * Closed a small window of time between the installation of graceful shutdown signal handlers and application context startup, during which the receipt of shutdown signal would cause a REQUIRE() assertion to occur. Note this issue is only visible when compiling with ENABLE_GENTLE_SHUTDOWN defined. * Corrected a buffer overflow that can occur when retrieving zone names that are more than 255 characters in length. * The "d" domain name option format was incorrectly handled as text instead of RFC 1035 wire format. Thanks to Jay Doran at BlueCat Networks for reporting this issue. * Improved the error message issued when a host declaration has both a uid and a dhcp-client-identifier. Server configuration parsing will now fail if a host declaration specifies more than one uid. * Updated developer's documentation on building and running unit tests. Removed support for --with-atf=bind as BIND9 no longer bundles in ATF source. * Fixed a syntax error in ldap.c which cropped up under Ubuntu 18.04.1/gcc 7.4.0. Thanks to Charles Hedrick for pointing it out. * Added clarification to dhcp-options.5 section on ip-address values describing the first-use DNS resolution of options with hostnames as values (e.g. next-server). * The option format for the server option omapi-key was changed to a format type 'k' (key name); while server options ldap-port and ldap-init-retry were changed to 'L' (unsigned 32-bit integer). These three options were inadvertantly broken when the 'd' format content was changed to comply with RFC 1035 wire format (see Gitlab #2). * A delayed-ack value of 0 (the default), now correctly disables the delayed feature. A change in 4.4.0 prohibited lease updates marking leases active from be written to the lease file when delayed-ack is 0. This in turn, caused servers to lose active lease assignments upon restart. ! Option reference count was not correctly decremented in error path when parsing buffer for options. Reported by Felix Wilhelm, Google Security Team. CVE: CVE-2018-5733 ! Corrected an issue where large sized 'X/x' format options were causing option handling logic to overwrite memory when expanding them to human readable form. Reported by Felix Wilhelm, Google Security Team. CVE: CVE-2018-5732 * Added use of new Bind9 compatibility header files, that are now necessary to supply type definitions for primitive data types, removed from Bind9 proper. Altered util/bind.sh to pull from Bind9 repo on gitlab. * Duplicate address detection when binding to a new IPv6 address was added to the following dhclient scripts: linux,freebsd,netbsd,openbsd, and macos. The scripts will check for DAD errors after binding to a new IPv6 address for at most --dad-wait-time seconds. If a DAD error is detected the script will exit with a value of 3, instructing dhclient to decline the address. If dad-wait-time is zero (the default), DAD error checking is not peformed. * Support for sending and receiving additional DHCP4 options has been added to both the dhcpd and dhclient. Specifically: option codes 93,94, and 97 (RFC 4578); code 150 (RFC 5859); and codes 209,219, and 211 (RFC 5071). Beyond configuring, sending, requesting, and receiving these options neither server nor client apply any additional logic based on their values. Thanks to Peter Lewis for requesting this change. * Added clarifying text to dhcpd.conf.5 explaining the class match expressions cannot rely on the results of executable statements. * Fixed a bug which causes dhcpd and dhclient to crash on certain systems when given relative path names for lease or pid files on the command line. Affected systems are those on which the C library function, realpath() does not support a second parameter value of NULL (see manpages for realpath(3)). * Fixed a build issue when building with embedded BIND9 under OpenBSD that was causing BIND9 build to not generate dns/enumclass.h and dns/enumtype.h. * Added <dhcp>/m4/README to the distribution tarball. Some versions of ac_local() treat the absence of the m4 subdirectory as error rather than warning. This was causing the call to autoreconf, necessary for building with libtool, to fail. * Added experimental support for relay port (draft-ietf-dhc-relay-port-10.txt) feature for DHCPv4, DHCPv6 and DHCPv4-over-DHCPv6. Relay port has to be enabled at compile time via --enable-relay-port and is fully backward compatible (i.e. works with previous implementations of servers and relays using the standard ports). A new --rp <relay-port> command line option specifies to dhcrelay an alternate source port for upstream (i.e. toward the server) messages. Thanks to Naiming Shen and Enke Chen of Cisco systems for submitting these patches. * Added --release-on-roam to dhcpd server. When enabled and the server detects that a DHCPv6 client (IAID+DUID) has roamed to a new network, it will release the pre-existing leases on the old network and emit a log statement similar to the following: "Client: <id> roamed to new network, releasing lease: <address>" The server will carry out all of the same steps that would normally occur when a client explicitly releases a lease. This behavior is disabled by default and may only be specified globally. Prior to this the server renders the leases unavailable until they expire or the server is restarted. Clients that need leases in multiple networks must supply a unique IAID in each IA. When release-on-roam is disabled (the default) the server maintains the prior behavior of making such leases unavailable until they expire or the server is restarted. Clients that need leases in multiple networks must supply a unique IAID in each IA. This parameter may only be specified at the global level. Thanks to Fernando Soto from BlueCat Networks for suggesting this change. * Support for delayed-ack is now compiled in by default. Prior to this it had to be enabled at compile time via --enable-delayed-acks. The default value for delayed-ack, however, has been changed from 28 to 0 (i.e. disabled). This was done to minimize the impact on users not currently using the feature. Please note that the delayed-ack feature is not currently compatible with support for DHPCv4-over-DHCPv6 so when a 4to6 port command line argument enables this in the server the delayed-ack value is reset to 0. * Added to the server (-6) a new statement, local-address6, which specifies the source address of packets sent by the server. An additional flag, bind-local-address6, disabled by default, binds the service socket to to local-address6. Note that bind-local-address does not work with direct clients: a relay has to forward packets to the server using the local-address6 destination. * The server now recognizes environment variables PATH_DHCPD_DB and PATH_DHCPD_PID. These had been incorrectly compiled out of the code unless DHCPv6 support was disabled. Additionally, the server man pages were corrected to accurately reflect how the server chooses file names (see lease-file-name and pid-file-name statements). Thanks to Fernando Soto at Bluecat Networks for bringing this matter to our attention. * Removed an "Impossible condition" error upon exit in the dhcpd server that has been shutdown via OMAPI. This condition was only apparent under Solaris when building with --enable-use-sockets and --enable-ipv4-pktinfo. * Corrected some minor Coverity issues: CID 1426059, 1426058, and 1426057. * Added missing text to dhclient.8 and expanded release note coverage for --address-prefix-len changes. - remove dhcp-CVE-2019-6470.patch, 0013-dhcp-4.2.x-dhcpv6-decline-on-DAD-failure.872609.patch: merged upstream - 0006-dhcp-4.3.2-dhclient-send-hostname-or-fqdn.patch 0009-dhcp-4.2.6-close-on-exec.patch 0016-infiniband-support.patch 0018-client-fail-on-script-pre-init-error-bsc-912098.patch 0021-dhcp-ip-family-symlinks.patch: refresh against newer code base - build with --enable-log-pid (log pid) and enable-binary-leases (faster binary looup for large leases files) ==== dosfstools ==== Version update (4.1+git.1610658652.9443732 -> 4.2) - update to 4.2: * mkfs.fat: Allow to specify disk geometry via new -g option * fsck.fat: Add code for fixing first FAT cluster * fatlabel: Do not call parts of fsck repair procedure * Update warning message about lowercase labels * mkfs.fat: Read geom_start from sysfs * Add missing files into distribution tarball ==== elfutils ==== Version update (0.182 -> 0.183) Subpackages: libasm1 libdw1 libelf1 - Update to version 0.183: debuginfod: New thread-busy metric and more detailed error metrics. New --fdcache-mintmp and tracking of filesystem freespace. New increased webapi concurrency while grooming. debuginfod-client: DEBUGINFOD_SONAME macro added to debuginfod.h which can be used to dlopen the libdebuginfod.so library. New function debuginfod_set_verbose_fd and DEBUGINFOD_VERBOSE environment variable. config: profile.sh and profile.csh won't export DEBUGINFOD_URLS unless configured --enable-debuginfod-urls[=URLS] elflint, readelf: Recognize SHF_GNU_RETAIN. Handle SHT_X86_64_UNWIND as valid relocation target. - Remove config-do-not-define-DEBUGINFOD_URLS-environment-var.patch patch. ==== fuse3 ==== Version update (3.10.1 -> 3.10.2) - Update to release 3.10.2 * Allow "nonempty" as a mount option, for backwards compatibility with fusermount 2. The option has no effect since mounting over non-empty directories is allowed by default. * FUSE filesystems can now be mounted underneath EXFAT mountpoints. ==== gcc11 ==== Version update (11.0.0+git182924 -> 11.0.0+git183291) Subpackages: libgcc_s1 libgomp1 libstdc++6 - Bump to efcd941e86b507d77e90a1b13f621e036eacdb45. - Bump to 7a18bc4ae62081021f4fd90d591a588cac931f77. - New package, inherits from gcc10 * gcc-add-defaultsspec.diff, add the ability to provide a specs file that is read by default * tls-no-direct.diff, avoid direct %fs references on x86 to not slow down Xen * gcc43-no-unwind-tables.diff, do not produce unwind tables for CRT files * gcc41-ppc32-retaddr.patch, fix expansion of __builtin_return_addr for ppc, just a testcase * gcc44-textdomain.patch, make translation files version specific and adjust textdomain to find them * gcc44-rename-info-files.patch, fix cross-references in info files when renaming them to be version specific * gcc48-libstdc++-api-reference.patch, fix link in the installed libstdc++ html documentation * gcc48-remove-mpfr-2.4.0-requirement.patch, make GCC work with earlier mpfr versions on old products * gcc5-no-return-gcc43-workaround.patch, make build work with host gcc 4.3 * gcc7-remove-Wexpansion-to-defined-from-Wextra.patch, removes new warning from -Wextra * gcc7-avoid-fixinc-error.diff * gcc9-reproducible-builds-buildid-for-checksum.patch * gcc9-reproducible-builds.patch * gcc10-amdgcn-llvm-as.patch * gcc10-foffload-default.patch - libgccjit subpackage is added. - HWASAN is built for aarch64 target. ==== glib2 ==== Version update (2.66.4 -> 2.66.7) Subpackages: glib2-tools libgio-2_0-0 libglib-2_0-0 libgmodule-2_0-0 libgobject-2_0-0 - Update to version 2.66.7: + Fix various regressions caused by rushed security fixes in 2.66.6. + Fix a silent integer truncation when calling `g_byte_array_new_take()` for byte arrays bigger than `G_MAXUINT`. + Disallow using currently-undefined D-Bus connection or server flags to prevent forward-compatibility problems with new security-sensitive flags likely to be released in GLib 2.68. + Bugs fixed: glgo#GNOME/GLib!1933, glgo#GNOME/GLib!1943, glgo#GNOME/GLib!1944, glgo#GNOME/GLib!1945. - Update to version 2.66.6: + Fix various instances within GLib where `g_memdup()` was vulnerable to a silent integer truncation and heap overflow problem (glgo#GNOME/GLib#2319). - Update to version 2.66.5: + Fix some issues with handling over-long (invalid) input when parsing for `GDate`. + Don?t load GIO modules or parse other GIO environment variables when `AT_SECURE` is set (i.e. in a setuid/setgid/setcap process). GIO has always been documented as not being safe to use in privileged processes, but people persist in using it unsafely, so these changes should harden things against potential attacks at least a little. Unfortunately they break a couple of projects which were relying on reading `DBUS_SESSION_BUS_ADDRESS`, so GIO continues to read that for setgid/setcap (but not setuid) processes. This loophole will be closed in GLib 2.70 (see issue #2316), which should give modules 6 months to change their behaviour. + Fix `g_spawn()` searching `PATH` when it wasn?t meant to. + Bugs fixed: bgo#2168, bgo#2210, bgo#2305, glgo#GNOME/GLib!1820, glgo#GNOME/GLib!1824, glgo#GNOME/GLib!1831, glgo#GNOME/GLib!1836, glgo#GNOME/GLib!1864, glgo#GNOME/GLib!1872, glgo#GNOME/GLib!1913, glgo#GNOME/GLib!1922. - Rebase/refresh patches: + glib2-dbus-socket-path.patch + glib2-fate300461-gettext-gkeyfile-suse.patch + glib2-gdbus-codegen-version.patch + glib2-suppress-schema-deprecated-path-warning.patch + glib2-bgo569829-gettext-gkeyfile.patch ==== glibc ==== Version update (2.32 -> 2.33) Subpackages: glibc-locale glibc-locale-base - Update to glibc 2.33 * The dynamic linker accepts the --list-tunables argument which prints all the supported tunables. * The dynamic linker accepts the --argv0 argument and provides opportunity to change argv[0] string. * The dynamic linker loads optimized implementations of shared objects from subdirectories under the glibc-hwcaps directory on the library search path if the system's capabilities meet the requirements for that subdirectory. * The new --help option of the dynamic linker provides usage and information and library search path diagnostics. * The mallinfo2 function is added to report statistics as per mallinfo, but with larger field widths to accurately report values that are larger than fit in an integer. * Add <sys/platform/x86.h> to provide query macros for x86 CPU features. * A new fortification level _FORTIFY_SOURCE=3 is available. * The mallinfo function is marked deprecated. * When dlopen is used in statically linked programs, alternative library implementations from HWCAP subdirectories are no longer loaded. * The deprecated <sys/vtimes.h> header and the function vtimes have been removed. * On s390(x), the type float_t is now derived from the macro __FLT_EVAL_METHOD__ that is defined by the compiler, instead of being hardcoded to double. * A future version of glibc will stop loading shared objects from the "tls" subdirectories on the library search path, the subdirectory that corresponds to the AT_PLATFORM system name, and also stop employing the legacy AT_HWCAP search mechanism. * CVE-2021-3326: An assertion failure during conversion from the ISO-20220-JP-3 character set using the iconv function has been fixed. - Remove obsolete, unused /etc/default/nss - aarch64-static-pie.patch, euc-kr-overrun.patch, get-nprocs-cpu-online-parsing.patch, iconv-redundant-shift.patch, iconv-ucs4-loop-bounds.patch, ifunc-fma4.patch, intl-codeset-suffixes.patch, nscd-gc-cycle.patch, printf-long-double-non-normal.patch, strerrorname-np.patch, syslog-locking.patch, sysvipc.patch: Removed - Remove support for %optimize_power - Move to power4 baseline on ppc ==== gptfdisk ==== Version update (1.0.5 -> 1.0.6) - Update to 1.0.6 * Fixed bug that could cause segfault if GPT header claimed partition entries are oversized. See: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0256 * Fixed bug that could cause a crash if a badly-formatted MBR disk was read. See: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-0308 * Renamed the partition type "Freedesktop $BOOT" to "XBOOTLDR partition". * Added several more Freedesktop partition table type codes (0x8312 through 0x831C). * Fixed type code definition in diskio-unix.cc that prevented 32-bit builds from correctly handling disks over 4 TiB in size. * Minor tweaks to get the software to compile on FreeBSD; that seems to have fallen into disrepair. ==== haproxy ==== Version update (2.3.4+git0.10189c965 -> 2.3.5+git0.5902ad99b) - Update to version 2.3.5+git0.5902ad99b: * [RELEASE] Released version 2.3.5 * MINOR: config: Deprecate and ignore tune.chksize global option * BUG/MINOR: sock: Unclosed fd in case of connection allocation failure * BUG/MEDIUM: mux-h2: do not quit the demux loop before setting END_REACHED * BUG/MEDIUM: mux-h2: handle remaining read0 cases * BUILD: Makefile: move REGTESTST_TYPE default setting * MINOR: cli/show_fd: report local and report ports when known * BUILD: ssl: fix build breakage with last commit * BUG/MINOR: ssl: do not try to use early data if not configured * BUG/MINOR: xxhash: make sure armv6 uses memcpy() * BUG/MINOR: mux_h2: fix incorrect stat titles * BUG/MEDIUM: ssl: check a connection's status before computing a handshake * BUG/MEDIUM: ssl/cli: abort ssl cert is freeing the old store * BUG/MINOR: stick-table: Always call smp_fetch_src() with a valid arg list * DOC: management: fix "show resolvers" alphabetical ordering * MINOR: h1: Raise the chunk size limit up to (2^52 - 1) * MINOR: mux-h1/show_fd: report as suspicious an entry with too many calls * MINOR: mux-h2/show_fd: report as suspicious an entry with too many calls * MINOR: ssl/show_fd: report some FDs as suspicious when possible * MINOR: cli/show_fd: report some easily detectable suspicious states * MINOR: cli: give the show_fd helpers the ability to report a suspicious entry * MINOR: mux-fcgi: make the "show fd" helper also decode the fstrm subscriber when known * MINOR: mux-h1: make the "show fd" helper also decode the h1s subscriber when known * MINOR: mux-h2: make the "show fd" helper also decode the h2s subscriber when known * MINOR: xprt/mux: export all *_io_cb functions so that "show fd" resolves them * MINOR: ssl: provide a "show fd" helper to report important SSL information * MINOR: xprt: add a new show_fd() helper to complete some "show fd" dumps. * MINOR: cli: make "show fd" also report the xprt and xprt_ctx * CLEANUP: cli: make "show fd" use a const connection to access other fields * CLEANUP: tools: make resolve_sym_name() take a const pointer * MINOR: contrib: Make the wireshark peers dissector compile for more distribs. * BUG/MINOR: backend: check available list allocation for reuse * BUG/MEDIUM: backend: never reuse a connection for tcp mode * REORG: backend: simplify conn_backend_get * BUG/MEDIUM: session: only retrieve ready idle conn from session * BUG/MINOR: ssl: init tmp chunk correctly in ssl_sock_load_sctl_from_file() * BUG/MINOR: config: fix leak on proxy.conn_src.bind_hdr_name * BUG/MEDIUM: filters/htx: Fix data forwarding when payload length is unknown * DOC: Improve documentation of the various hdr() fetches * BUILD/MINOR: lua: define _GNU_SOURCE for LLONG_MAX * BUG/MEDIUM: mux-h2: fix read0 handling on partial frames * BUG/MEDIUM: tcpcheck: Don't destroy connection in the wake callback context * BUG/MINOR: mworker: define _GNU_SOURCE for strsignal() * BUG/MINOR: mux_h2: missing space between "st" and ".flg" in the "show fd" helper * BUG/MINOR: peers: Wrong "new_conn" value for "show peers" CLI command. * MINOR: build: discard echoing in help target * BUG/MINOR: peers: Possible appctx pointer dereference. * BUG/MEDIUM: stats: add missing INF_BUILD_INFO definition * BUILD: peers: fix build warning about unused variable * BUG/MINOR: dns: SRV records ignores duplicated AR records (v2) * MINOR: peers: Add traces for peer control messages. * BUG/MINOR: threads: Fixes the number of possible cpus report for Mac. * MINOR: server: Forbid server definitions in frontend sections * MINOR: config: Add failifnotcap() to emit an alert on proxy capabilities * BUG/MINOR: init: Use a dynamic buffer to set HAPROXY_CFGFILES env variable ==== helm ==== Version update (3.4.2 -> 3.5.2) - Update to version 3.5.2: * Upgrade to oras v0.9.0 (#9269) * Adding missing replace directive for oras * chore(go.mod): bump Masterminds/{spring,goutils} and deislabs/oras * fix(*): Validate metadata semver and printable characters * Fix dep build with OCI based charts * bump version to * Adding apiserver to mod/sum * Reduce linting severity for users of out-of-date kubernetes (#8608) * Bumping kubernetes to 1.20.1 * Add explanatory comments to action.List and action.History * Address error on deletion of old dependencies * Fixed bug - The flags --cert-file/--key-file where ignored when --insecure-skip-tls-verify flag is set (#9070) * Replace Helm Hub with Artifact Hub (#8626) * fix(pkg/chartutil): Remove warning for nils * Updating to sprig 3.2.0 * Updating to Kuberentes 1.20 packages * Bump github.com/Masterminds/semver/v3 from 3.1.0 to 3.1.1 (#9109) * Bump github.com/Masterminds/squirrel from 1.4.0 to 1.5.0 (#9108) * Bump github.com/lib/pq from 1.8.0 to 1.9.0 (#9107) * Remove OCI boolean from struct * Clean up imports and add doc comments * Implement `helm pull` for OCI registries * Adds the option kube-cafile and env variable HELM_KUBECAFILE for a overwrite of the certificate authority file * Builds with go 1.15 * Updating to Kubernetes 1.19.4 package versions * Add CodeQL Security Scanning * Fix test * Fixes #9083 * [COMMENT]fix comment * Fix typo * fix: ingress path issue * Revert "Add support to judge whether desired version is available or not" * Cleanup tempfiles introduced by unit tests under pkg/ * bump actions/stale to v3.0.14 * increase number of operations per run to 100 * feat(helm): Allow generating markdown docs headers * chore(comp): Remove unnecessary completion code * Added tests for PR 8948 * add unittes for 'helm dep build' with --skip-refresh flag. * Updating to k8s 1.19.3 based packages * lint: lint all documents in a multi-doc yaml file * fix(helm): flag descriptions start with lowercase * List either incubator or stable. * add waitwithjobs instead of changing wait api * add wait-for-jobs flag * fix style conformance * fix test-style error * add test cases * helm upgrade with --wait support jobs in manifest to be completed * completion: move to native zshCompletion * Add remaining tests in TestDependentChartAliases * Clarifies action needed to list new stable repo * feat: Allow helm test to run a subset of tests * Fix that the invalid version number of the helm package command will escape * Updating descriptions * Add support to judge whether desired version is available or not * Add test case for LoadFiles * Fixes Error: could not find protocol handler for * [#7696] Avoid crash in chart loader on unexpected file sequence * helm search supports semver pre version numbers starting with 0 * added test for https://github.com/helm/helm/pull/8913 related to https://github.com/helm/helm/issues/8621 * [#7696] Avoid crash in chart loader on unexpected file sequence * feat(test): Adapt completion tests to Cobra 1.1 * Bump github.com/spf13/cobra from 1.0.0 to 1.1.1 * Update err message to use the regex pattern directly * Fix the lint error message for valid names * do not check YAML if nothing was parsed * fix(test): display error message * bump version to v3.4.0 * Skip tests when running helm template * Add --skip-refresh option in helm dep build * Adjusted import * Reuse kube-client * fix(helm): allow skipping manifests in tests directories * prepare testdata * Bugfix: panic when chart contains requirements.lock ==== json-glib ==== Version update (1.6.0 -> 1.6.2) - Update to version 1.6.2: + Fix build reproducibility. + Fix parsing of UTF-16 surrogate pairs. + Ignore UTF-8 BOM. ==== kbd ==== Version update (2.3.0 -> 2.4.0) Subpackages: kbd-legacy - Update to version 2.4.0: * po: Update cs and sr translations (from translationproject.org) * libkfont: Use only KDFONTOP * Added support for a few derivatives of neo * Fix use-after-free of pipe_cmd * Update solar24x32 font * vlock's pam config added to destination directory * Update sun12x22.psfu * libkeymap: unify non/unicode accent_table generation * libkeymap: note about --unicode use * libkeymap: remove last ushort * fi.map: use newly added deadkeys * Do not install internal library * Additional deadkeys - Remove kbd-1.15.2-setfont-no-cruft.patch The old ioctls were finally dropped. ==== kernel-default-base ==== Version update (5.10.12 -> 5.10.16) - Add modules which got lost when migrating away from supported.conf (bsc#1182110): * am53c974 had a typo * cls_bpf, iscsi_ibft, libahci, libata, openvswitch, sch_ingress - Also add vport-* modules for Open vSwitch ==== kernel-firmware ==== Version update (20210119 -> 20210208) Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network - Update to version 20210208 (commit b79d2396bc63): * Mellanox: Add new mlxsw_spectrum firmware xx.2008.2304 * linux-firmware: add firmware for MT7921 * rtw88: RTL8821C: Update firmware to v24.8 * linux-firmware: Update firmware file for Intel Bluetooth AX210 * linux-firmware: Update firmware file for Intel Bluetooth AX200 * linux-firmware: Update firmware file for Intel Bluetooth AX201 * i915: Add DMC v2.01 for ADL-S * i915: Add HuC v7.7.1 for DG1 * i915: Add GuC v49.0.1 for DG1 * qcom: Add venus firmware files for VPU-1.0 * qcom: Add SM8250 Compute DSP firmware * qcom: Add SM8250 Audio DSP firmware * qcom: add firmware files for Adreno a650 ==== kernel-source ==== Version update (5.10.12 -> 5.10.16) - Linux 5.10.16 (bsc#1012628). - squashfs: add more sanity checks in xattr id lookup (bsc#1012628). - squashfs: add more sanity checks in inode lookup (bsc#1012628). - squashfs: add more sanity checks in id lookup (bsc#1012628). - squashfs: avoid out of bounds writes in decompressors (bsc#1012628). - Revert "mm: memcontrol: avoid workload stalls when lowering memory.high" (bsc#1012628). - nilfs2: make splice write available again (bsc#1012628). - drm/i915: Skip vswing programming for TBT (bsc#1012628). - drm/i915: Fix ICL MG PHY vswing handling (bsc#1012628). - bpf: Fix verifier jsgt branch analysis on max bound (bsc#1012628). - bpf: Fix 32 bit src register truncation on div/mod (bsc#1012628). - bpf: Fix verifier jmp32 pruning decision logic (bsc#1012628). - regulator: Fix lockdep warning resolving supplies (bsc#1012628). - blk-cgroup: Use cond_resched() when destroy blkgs (bsc#1012628). - i2c: mediatek: Move suspend and resume handling to NOIRQ phase (bsc#1012628). - SUNRPC: Handle 0 length opaque XDR object data properly (bsc#1012628). - SUNRPC: Move simple_get_bytes and simple_get_netobj into private header (bsc#1012628). - iwlwifi: queue: bail out on invalid freeing (bsc#1012628). - iwlwifi: mvm: guard against device removal in reprobe (bsc#1012628). - iwlwifi: pcie: add rules to match Qu with Hr2 (bsc#1012628). - iwlwifi: mvm: invalidate IDs of internal stations at mvm start (bsc#1012628). - iwlwifi: pcie: fix context info memory leak (bsc#1012628). - iwlwifi: pcie: add a NULL check in iwl_pcie_txq_unmap (bsc#1012628). - iwlwifi: mvm: take mutex for calling iwl_mvm_get_sync_time() (bsc#1012628). - iwlwifi: mvm: skip power command when unbinding vif during CSA (bsc#1012628). - ASoC: Intel: sof_sdw: set proper flags for Dell TGL-H SKU 0A5E (bsc#1012628). - ASoC: ak4458: correct reset polarity (bsc#1012628). - ALSA: hda: intel-dsp-config: add PCI id for TGL-H (bsc#1012628). - pNFS/NFSv4: Improve rejection of out-of-order layouts (bsc#1012628). - pNFS/NFSv4: Try to return invalid layout in pnfs_layout_process() (bsc#1012628). - chtls: Fix potential resource leak (bsc#1012628). - ASoC: Intel: Skylake: Zero snd_ctl_elem_value (bsc#1012628). - mac80211: 160MHz with extended NSS BW in CSA (bsc#1012628). - drm/nouveau/nvif: fix method count when pushing an array (bsc#1012628). - ASoC: wm_adsp: Fix control name parsing for multi-fw (bsc#1012628). - regulator: core: avoid regulator_resolve_supply() race condition (bsc#1012628). - af_key: relax availability checks for skb size calculation (bsc#1012628). - powerpc/64/signal: Fix regression in __kernel_sigtramp_rt64() semantics (bsc#1012628). - gpiolib: cdev: clear debounce period if line set to output (bsc#1012628). - io_uring: drop mm/files between task_work_submit (bsc#1012628). - io_uring: reinforce cancel on flush during exit (bsc#1012628). - io_uring: fix sqo ownership false positive warning (bsc#1012628). - io_uring: fix list corruption for splice file_get (bsc#1012628). - io_uring: fix flush cqring overflow list while TASK_INTERRUPTIBLE (bsc#1012628). - io_uring: fix cancellation taking mutex while TASK_UNINTERRUPTIBLE (bsc#1012628). - io_uring: replace inflight_wait with tctx->wait (bsc#1012628). - io_uring: fix __io_uring_files_cancel() with TASK_UNINTERRUPTIBLE (bsc#1012628). - io_uring: if we see flush on exit, cancel related tasks (bsc#1012628). - io_uring: account io_uring internal files as REQ_F_INFLIGHT (bsc#1012628). - io_uring: fix files cancellation (bsc#1012628). - io_uring: always batch cancel in *cancel_files() (bsc#1012628). - io_uring: pass files into kill timeouts/poll (bsc#1012628). - io_uring: don't iterate io_uring_cancel_files() (bsc#1012628). - io_uring: add a {task,files} pair matching helper (bsc#1012628). - io_uring: simplify io_task_match() (bsc#1012628). - commit 11381f3 - Update config files: enable CONFIG_SERIAL_DEV_CTRL_TTYPORT on x86 (bsc#1182035) For supporting MS Surface devices. This required CONFIG_SERIAL_DEV_BUS to be built-in. Also this allowed CONFIG_BT_HCIUART_BCM=y as well. - commit 2d8fb7a - media: pwc: Use correct device for DMA (bsc#1181133). - commit 4a7417d - Drop pwc fix patch; it'll be replaced with the upstream fix (bsc#1181133) - commit 2202405 - Update config files: armv7hl: Set ledtrig-default-on as builtin (bsc#1182128) - commit d24d9b2 - btrfs: fix crash after non-aligned direct IO write with O_DSYNC (bsc#1181605). - commit 9e44573 - Update config files: Set ledtrig-default-on as builtin (bsc#1182128) - commit 7119d5a - Update config files. Enable DWC3 on x86_64 DWC3 is now needed on x86_64, too, with the added benefit of making x86_64 and ARM64 closer (jsc#SLE-14042) - commit 7cc21b5 - Linux 5.10.15 (bsc#1012628). - USB: serial: cp210x: add pid/vid for WSDA-200-USB (bsc#1012628). - USB: serial: cp210x: add new VID/PID for supporting Teraoka AD2000 (bsc#1012628). - USB: serial: option: Adding support for Cinterion MV31 (bsc#1012628). - usb: host: xhci: mvebu: make USB 3.0 PHY optional for Armada 3720 (bsc#1012628). - USB: gadget: legacy: fix an error code in eth_bind() (bsc#1012628). - usb: gadget: aspeed: add missing of_node_put (bsc#1012628). - USB: usblp: don't call usb_set_interface if there's a single alt (bsc#1012628). - usb: renesas_usbhs: Clear pipe running flag in usbhs_pkt_pop() (bsc#1012628). - usb: dwc2: Fix endpoint direction check in ep_from_windex (bsc#1012628). - usb: dwc3: fix clock issue during resume in OTG mode (bsc#1012628). - usb: xhci-mtk: fix unreleased bandwidth data (bsc#1012628). - usb: xhci-mtk: skip dropping bandwidth of unchecked endpoints (bsc#1012628). - usb: xhci-mtk: break loop when find the endpoint to drop (bsc#1012628). - ARM: OMAP1: OSK: fix ohci-omap breakage (bsc#1012628). - arm64: dts: qcom: c630: keep both touchpad devices enabled (bsc#1012628). - Input: i8042 - unbreak Pegatron C15B (bsc#1012628). - arm64: dts: amlogic: meson-g12: Set FL-adj property value (bsc#1012628). - arm64: dts: rockchip: fix vopl iommu irq on px30 (bsc#1012628). - arm64: dts: rockchip: Use only supported PCIe link speed on Pinebook Pro (bsc#1012628). - ARM: dts: stm32: Fix polarity of the DH DRC02 uSD card detect (bsc#1012628). - ARM: dts: stm32: Connect card-detect signal on DHCOM (bsc#1012628). - ARM: dts: stm32: Disable WP on DHCOM uSD slot (bsc#1012628). - ARM: dts: stm32: Disable optional TSC2004 on DRC02 board (bsc#1012628). - ARM: dts: stm32: Fix GPIO hog flags on DHCOM DRC02 (bsc#1012628). - vdpa/mlx5: Fix memory key MTT population (bsc#1012628). - bpf, cgroup: Fix optlen WARN_ON_ONCE toctou (bsc#1012628). - bpf, cgroup: Fix problematic bounds check (bsc#1012628). - bpf, inode_storage: Put file handler if no storage was found (bsc#1012628). - um: virtio: free vu_dev only with the contained struct device (bsc#1012628). - bpf, preload: Fix build when $(O) points to a relative path (bsc#1012628). - arm64: dts: meson: switch TFLASH_VDD_EN pin to open drain on Odroid-C4 (bsc#1012628). - r8169: work around RTL8125 UDP hw bug (bsc#1012628). - rxrpc: Fix deadlock around release of dst cached on udp tunnel (bsc#1012628). - arm64: dts: ls1046a: fix dcfg address range (bsc#1012628). - SUNRPC: Fix NFS READs that start at non-page-aligned offsets (bsc#1012628). - igc: set the default return value to -IGC_ERR_NVM in igc_write_nvm_srwr (bsc#1012628). - igc: check return value of ret_val in igc_config_fc_after_link_up (bsc#1012628). - i40e: Revert "i40e: don't report link up for a VF who hasn't enabled queues" (bsc#1012628). - ibmvnic: device remove has higher precedence over reset (bsc#1012628). - net/mlx5: Fix leak upon failure of rule creation (bsc#1012628). - net/mlx5e: Update max_opened_tc also when channels are closed (bsc#1012628). - net/mlx5e: Release skb in case of failure in tc update skb (bsc#1012628). - net: lapb: Copy the skb before sending a packet (bsc#1012628). - net: mvpp2: TCAM entry enable should be written after SRAM data (bsc#1012628). - r8169: fix WoL on shutdown if CONFIG_DEBUG_SHIRQ is set (bsc#1012628). - net: ipa: pass correct dma_handle to dma_free_coherent() (bsc#1012628). - ARM: dts: sun7i: a20: bananapro: Fix ethernet phy-mode (bsc#1012628). - nvmet-tcp: fix out-of-bounds access when receiving multiple h2cdata PDUs (bsc#1012628). - vdpa/mlx5: Restore the hardware used index after change map (bsc#1012628). - memblock: do not start bottom-up allocations with kernel_end (bsc#1012628). - kbuild: fix duplicated flags in DEBUG_CFLAGS (bsc#1012628). - thunderbolt: Fix possible NULL pointer dereference in tb_acpi_add_link() (bsc#1012628). - ovl: fix dentry leak in ovl_get_redirect (bsc#1012628). - ovl: avoid deadlock on directory ioctl (bsc#1012628). - ovl: implement volatile-specific fsync error behaviour (bsc#1012628). - mac80211: fix station rate table updates on assoc (bsc#1012628). - gpiolib: free device name on error path to fix kmemleak (bsc#1012628). - fgraph: Initialize tracing_graph_pause at task creation (bsc#1012628). - tracing/kprobe: Fix to support kretprobe events on unloaded modules (bsc#1012628). - kretprobe: Avoid re-registration of the same kretprobe earlier (bsc#1012628). - tracing: Use pause-on-trace with the latency tracers (bsc#1012628). - tracepoint: Fix race between tracing and removing tracepoint (bsc#1012628). - libnvdimm/namespace: Fix visibility of namespace resource attribute (bsc#1012628). - libnvdimm/dimm: Avoid race between probe and available_slots_show() (bsc#1012628). - genirq: Prevent [devm_]irq_alloc_desc from returning irq 0 (bsc#1012628). - genirq/msi: Activate Multi-MSI early when MSI_FLAG_ACTIVATE_EARLY is set (bsc#1012628). - scripts: use pkg-config to locate libcrypto (bsc#1012628). - xhci: fix bounce buffer usage for non-sg list case (bsc#1012628). - RISC-V: Define MAXPHYSMEM_1GB only for RV32 (bsc#1012628). - cifs: report error instead of invalid when revalidating a dentry fails (bsc#1012628). - iommu: Check dev->iommu in dev_iommu_priv_get() before dereferencing it (bsc#1012628). - smb3: Fix out-of-bounds bug in SMB2_negotiate() (bsc#1012628). - smb3: fix crediting for compounding when only one request in flight (bsc#1012628). - mmc: sdhci-pltfm: Fix linking err for sdhci-brcmstb (bsc#1012628). - mmc: core: Limit retries when analyse of SDIO tuples fails (bsc#1012628). - Fix unsynchronized access to sev members through svm_register_enc_region (bsc#1012628). - drm/dp/mst: Export drm_dp_get_vc_payload_bw() (bsc#1012628). - drm/i915: Fix the MST PBN divider calculation (bsc#1012628). - drm/i915/gem: Drop lru bumping on display unpinning (bsc#1012628). - drm/i915/gt: Close race between enable_breadcrumbs and cancel_breadcrumbs (bsc#1012628). - drm/i915/display: Prevent double YUV range correction on HDR planes (bsc#1012628). - drm/i915: Extract intel_ddi_power_up_lanes() (bsc#1012628). - drm/i915: Power up combo PHY lanes for for HDMI as well (bsc#1012628). - drm/amd/display: Revert "Fix EDID parsing after resume from suspend" (bsc#1012628). - io_uring: don't modify identity's files uncess identity is cowed (bsc#1012628). - nvme-pci: avoid the deepest sleep state on Kingston A2000 SSDs (bsc#1012628). - KVM: SVM: Treat SVM as unsupported when running as an SEV guest (bsc#1012628). - KVM: x86/mmu: Fix TDP MMU zap collapsible SPTEs (bsc#1012628). - KVM: x86: Allow guests to see MSR_IA32_TSX_CTRL even if tsx=off (bsc#1012628). - KVM: x86: fix CPUID entries returned by KVM_GET_CPUID2 ioctl (bsc#1012628). - KVM: x86: Update emulator context mode if SYSENTER xfers to 64-bit mode (bsc#1012628). - KVM: x86: Set so called 'reserved CR3 bits in LM mask' at vCPU reset (bsc#1012628). - DTS: ARM: gta04: remove legacy spi-cs-high to make display work again (bsc#1012628). - ARM: dts; gta04: SPI panel chip select is active low (bsc#1012628). - ARM: footbridge: fix dc21285 PCI configuration accessors (bsc#1012628). - ARM: 9043/1: tegra: Fix misplaced tegra_uart_config in decompressor (bsc#1012628). - mm: hugetlbfs: fix cannot migrate the fallocated HugeTLB page (bsc#1012628). - mm: hugetlb: fix a race between freeing and dissolving the page (bsc#1012628). - mm: hugetlb: fix a race between isolating and freeing page (bsc#1012628). - mm: hugetlb: remove VM_BUG_ON_PAGE from page_huge_active (bsc#1012628). - mm, compaction: move high_pfn to the for loop scope (bsc#1012628). - mm/vmalloc: separate put pages and flush VM flags (bsc#1012628). - mm: thp: fix MADV_REMOVE deadlock on shmem THP (bsc#1012628). - mm/filemap: add missing mem_cgroup_uncharge() to __add_to_page_cache_locked() (bsc#1012628). - x86/build: Disable CET instrumentation in the kernel (bsc#1012628). - x86/debug: Fix DR6 handling (bsc#1012628). - x86/debug: Prevent data breakpoints on __per_cpu_offset (bsc#1012628). - x86/debug: Prevent data breakpoints on cpu_dr7 (bsc#1012628). - x86/apic: Add extra serialization for non-serializing MSRs (bsc#1012628). - Input: goodix - add support for Goodix GT9286 chip (bsc#1012628). - Input: xpad - sync supported devices with fork on GitHub (bsc#1012628). - Input: ili210x - implement pressure reporting for ILI251x (bsc#1012628). - md: Set prev_flush_start and flush_bio in an atomic way (bsc#1012628). - igc: Report speed and duplex as unknown when device is runtime suspended (bsc#1012628). - neighbour: Prevent a dead entry from updating gc_list (bsc#1012628). - net: ip_tunnel: fix mtu calculation (bsc#1012628). - udp: ipv4: manipulate network header of NATed UDP GRO fraglist (bsc#1012628). - net: dsa: mv88e6xxx: override existent unicast portvec in port_fdb_add (bsc#1012628). - net: sched: replaced invalid qdisc tree flush helper in qdisc_replace (bsc#1012628). - commit 24c2efe - Update patches.kernel.org/5.10.13-143-vsock-fix-the-race-conditions-in-multi-trans… (bsc#1012628 bsc#1181806 CVE-2021-26708). Add CVE number. - commit bf327d1 - config: arm64: Use y for CLK_RK3399 This is to fix booting on RK3399 systems (JeOS-rockpi4) When compiled as 'm' there are lots of errors related to clk and no host mmc controler initialized. - commit 52fdc54 - Linux 5.10.14 (bsc#1012628). - workqueue: Restrict affinity change to rescuer (bsc#1012628). - kthread: Extract KTHREAD_IS_PER_CPU (bsc#1012628). - x86/cpu: Add another Alder Lake CPU to the Intel family (bsc#1012628). - objtool: Don't fail the kernel build on fatal errors (bsc#1012628). - habanalabs: disable FW events on device removal (bsc#1012628). - habanalabs: fix backward compatibility of idle check (bsc#1012628). - habanalabs: zero pci counters packet before submit to FW (bsc#1012628). - drm/amd/display: Fixed corruptions on HPDRX link loss restore (bsc#1012628). - drm/amd/display: Use hardware sequencer functions for PG control (bsc#1012628). - drm/amd/display: Change function decide_dp_link_settings to avoid infinite looping (bsc#1012628). - drm/amd/display: Allow PSTATE chnage when no displays are enabled (bsc#1012628). - drm/amd/display: Update dram_clock_change_latency for DCN2.1 (bsc#1012628). - selftests/powerpc: Only test lwm/stmw on big endian (bsc#1012628). - platform/x86: thinkpad_acpi: Add P53/73 firmware to fan_quirk_table for dual fan control (bsc#1012628). - nvmet: set right status on error in id-ns handler (bsc#1012628). - nvme-pci: allow use of cmb on v1.4 controllers (bsc#1012628). - nvme-tcp: avoid request double completion for concurrent nvme_tcp_timeout (bsc#1012628). - nvme-rdma: avoid request double completion for concurrent nvme_rdma_timeout (bsc#1012628). - nvme: check the PRINFO bit before deciding the host buffer length (bsc#1012628). - udf: fix the problem that the disc content is not displayed (bsc#1012628). - i2c: tegra: Create i2c_writesl_vi() to use with VI I2C for filling TX FIFO (bsc#1012628). - ALSA: hda: Add Cometlake-R PCI ID (bsc#1012628). - scsi: ibmvfc: Set default timeout to avoid crash during migration (bsc#1012628). - mac80211: fix encryption key selection for 802.3 xmit (bsc#1012628). - mac80211: fix fast-rx encryption check (bsc#1012628). - mac80211: fix incorrect strlen of .write in debugfs (bsc#1012628). - objtool: Don't add empty symbols to the rbtree (bsc#1012628). - ALSA: hda: Add AlderLake-P PCI ID and HDMI codec vid (bsc#1012628). - ASoC: SOF: Intel: hda: Resume codec to do jack detection (bsc#1012628). - scsi: fnic: Fix memleak in vnic_dev_init_devcmd2 (bsc#1012628). - scsi: libfc: Avoid invoking response handler twice if ep is already completed (bsc#1012628). - scsi: scsi_transport_srp: Don't block target in failfast state (bsc#1012628). - x86: __always_inline __{rd,wr}msr() (bsc#1012628). - locking/lockdep: Avoid noinstr warning for DEBUG_LOCKDEP (bsc#1012628). - habanalabs: fix dma_addr passed to dma_mmap_coherent (bsc#1012628). - platform/x86: intel-vbtn: Support for tablet mode on Dell Inspiron 7352 (bsc#1012628). - platform/x86: touchscreen_dmi: Add swap-x-y quirk for Goodix touchscreen on Estar Beauty HD tablet (bsc#1012628). - tools/power/x86/intel-speed-select: Set higher of cpuinfo_max_freq or base_frequency (bsc#1012628). - tools/power/x86/intel-speed-select: Set scaling_max_freq to base_frequency (bsc#1012628). - phy: cpcap-usb: Fix warning for missing regulator_disable (bsc#1012628). - iommu/vt-d: Do not use flush-queue when caching-mode is on (bsc#1012628). - ARM: 9025/1: Kconfig: CPU_BIG_ENDIAN depends on !LD_IS_LLD (bsc#1012628). - Revert "x86/setup: don't remove E820_TYPE_RAM for pfn 0" (bsc#1012628). - arm64: Do not pass tagged addresses to __is_lm_address() (bsc#1012628). - arm64: Fix kernel address detection of __is_lm_address() (bsc#1012628). - arm64: dts: meson: Describe G12b GPU as coherent (bsc#1012628). - drm/panfrost: Support cache-coherent integrations (bsc#1012628). - iommu/io-pgtable-arm: Support coherency for Mali LPAE (bsc#1012628). - ibmvnic: Ensure that CRQ entry read are correctly ordered (bsc#1012628). - net: switchdev: don't set port_obj_info->handled true when - EOPNOTSUPP (bsc#1012628). - net: dsa: bcm_sf2: put device node before return (bsc#1012628). - mlxsw: spectrum_span: Do not overwrite policer configuration (bsc#1012628). - stmmac: intel: Configure EHL PSE0 GbE and PSE1 GbE to 32 bits DMA addressing (bsc#1012628). - net: octeontx2: Make sure the buffer is 128 byte aligned (bsc#1012628). - net: fec: put child node on error path (bsc#1012628). - net: stmmac: dwmac-intel-plat: remove config data on error (bsc#1012628). - net: dsa: microchip: Adjust reset release timing to match reference reset circuit (bsc#1012628). - commit 0a69f62 - Update patches.kernel.org/5.10.13-143-vsock-fix-the-race-conditions-in-multi-trans… (bsc#1012628 bsc#1181806). Add bsc reference. - commit 64ec974 - net/mlx5: Fix function calculation for page trees (git-fixes). - commit e976b88 - Linux 5.10.13 (bsc#1012628). - iwlwifi: provide gso_type to GSO packets (bsc#1012628). - nbd: freeze the queue while we're adding connections (bsc#1012628). - tty: avoid using vfs_iocb_iter_write() for redirected console writes (bsc#1012628). - ACPI: sysfs: Prefer "compatible" modalias (bsc#1012628). - ACPI: thermal: Do not call acpi_thermal_check() directly (bsc#1012628). - kernel: kexec: remove the lock operation of system_transition_mutex (bsc#1012628). - ALSA: hda/realtek: Enable headset of ASUS B1400CEPE with ALC256 (bsc#1012628). - parisc: Enable -mlong-calls gcc option by default when !CONFIG_MODULES (bsc#1012628). - media: cec: add stm32 driver (bsc#1012628). - media: cedrus: Fix H264 decoding (bsc#1012628). - media: hantro: Fix reset_raw_fmt initialization (bsc#1012628). - media: rc: fix timeout handling after switch to microsecond durations (bsc#1012628). - media: rc: ite-cir: fix min_timeout calculation (bsc#1012628). - media: rc: ensure that uevent can be read directly after rc device register (bsc#1012628). - ARM: dts: tbs2910: rename MMC node aliases (bsc#1012628). - ARM: dts: ux500: Reserve memory carveouts (bsc#1012628). - ARM: dts: imx6qdl-gw52xx: fix duplicate regulator naming (bsc#1012628). - wext: fix NULL-ptr-dereference with cfg80211's lack of commit() (bsc#1012628). - x86/xen: avoid warning in Xen pv guest with CONFIG_AMD_MEM_ENCRYPT enabled (bsc#1012628). - ASoC: AMD Renoir - refine DMI entries for some Lenovo products (bsc#1012628). - Revert "drm/amdgpu/swsmu: drop set_fan_speed_percent (v2)" (bsc#1012628). - drm/nouveau/kms/gk104-gp1xx: Fix > 64x64 cursors (bsc#1012628). - drm/i915: Always flush the active worker before returning from the wait (bsc#1012628). - drm/i915/gt: Always try to reserve GGTT address 0x0 (bsc#1012628). - drivers/nouveau/kms/nv50-: Reject format modifiers for cursor planes (bsc#1012628). - bcache: only check feature sets when sb->version >= BCACHE_SB_VERSION_CDEV_WITH_FEATURES (bsc#1012628). - net: usb: qmi_wwan: added support for Thales Cinterion PLSx3 modem family (bsc#1012628). - s390: uv: Fix sysfs max number of VCPUs reporting (bsc#1012628). - s390/vfio-ap: No need to disable IRQ after queue reset (bsc#1012628). - PM: hibernate: flush swap writer after marking (bsc#1012628). - x86/entry: Emit a symbol for register restoring thunk (bsc#1012628). - efi/apple-properties: Reinstate support for boolean properties (bsc#1012628). - crypto: marvel/cesa - Fix tdma descriptor on 64-bit (bsc#1012628). - drivers: soc: atmel: Avoid calling at91_soc_init on non AT91 SoCs (bsc#1012628). - drivers: soc: atmel: add null entry at the end of at91_soc_allowed_list[] (bsc#1012628). - btrfs: fix lockdep warning due to seqcount_mutex on 32bit arch (bsc#1012628). - btrfs: fix possible free space tree corruption with online conversion (bsc#1012628). - KVM: x86/pmu: Fix HW_REF_CPU_CYCLES event pseudo-encoding in intel_arch_events[] (bsc#1012628). - KVM: x86/pmu: Fix UBSAN shift-out-of-bounds warning in intel_pmu_refresh() (bsc#1012628). - KVM: arm64: Filter out v8.1+ events on v8.0 HW (bsc#1012628). - KVM: nSVM: cancel KVM_REQ_GET_NESTED_STATE_PAGES on nested vmexit (bsc#1012628). - KVM: x86: allow KVM_REQ_GET_NESTED_STATE_PAGES outside guest mode for VMX (bsc#1012628). - KVM: nVMX: Sync unsync'd vmcs02 state to vmcs12 on migration (bsc#1012628). - KVM: x86: get smi pending status correctly (bsc#1012628). - KVM: Forbid the use of tagged userspace addresses for memslots (bsc#1012628). - io_uring: fix wqe->lock/completion_lock deadlock (bsc#1012628). - xen: Fix XenStore initialisation for XS_LOCAL (bsc#1012628). - leds: trigger: fix potential deadlock with libata (bsc#1012628). - arm64: dts: broadcom: Fix USB DMA address translation for Stingray (bsc#1012628). - mt7601u: fix kernel crash unplugging the device (bsc#1012628). - mt76: mt7663s: fix rx buffer refcounting (bsc#1012628). - mt7601u: fix rx buffer refcounting (bsc#1012628). - iwlwifi: Fix IWL_SUBDEVICE_NO_160 macro to use the correct bit (bsc#1012628). - drm/i915/gt: Clear CACHE_MODE prior to clearing residuals (bsc#1012628). - drm/i915/pmu: Don't grab wakeref when enabling events (bsc#1012628). - net/mlx5e: Fix IPSEC stats (bsc#1012628). - ARM: dts: imx6qdl-kontron-samx6i: fix pwms for lcd-backlight (bsc#1012628). - drm/nouveau/svm: fail NOUVEAU_SVM_INIT ioctl on unsupported devices (bsc#1012628). - drm/vc4: Correct lbm size and calculation (bsc#1012628). - drm/vc4: Correct POS1_SCL for hvs5 (bsc#1012628). - drm/i915: Check for all subplatform bits (bsc#1012628). - drm/i915/selftest: Fix potential memory leak (bsc#1012628). - uapi: fix big endian definition of ipv6_rpl_sr_hdr (bsc#1012628). - KVM: Documentation: Fix spec for KVM_CAP_ENABLE_CAP_VM (bsc#1012628). - tee: optee: replace might_sleep with cond_resched (bsc#1012628). - xen-blkfront: allow discard-* nodes to be optional (bsc#1012628). - blk-mq: test QUEUE_FLAG_HCTX_ACTIVE for sbitmap_shared in hctx_may_queue (bsc#1012628). - clk: imx: fix Kconfig warning for i.MX SCU clk (bsc#1012628). - clk: mmp2: fix build without CONFIG_PM (bsc#1012628). - clk: qcom: gcc-sm250: Use floor ops for sdcc clks (bsc#1012628). - ARM: imx: build suspend-imx6.S with arm instruction set (bsc#1012628). - ARM: zImage: atags_to_fdt: Fix node names on added root nodes (bsc#1012628). - netfilter: nft_dynset: add timeout extension to template (bsc#1012628). - Revert "RDMA/mlx5: Fix devlink deadlock on net namespace deletion" (bsc#1012628). - Revert "block: simplify set_init_blocksize" to regain lost performance (bsc#1012628). - xfrm: Fix oops in xfrm_replay_advance_bmp (bsc#1012628). - xfrm: fix disable_xfrm sysctl when used on xfrm interfaces (bsc#1012628). - selftests: xfrm: fix test return value override issue in xfrm_policy.sh (bsc#1012628). - xfrm: Fix wraparound in xfrm_policy_addr_delta() (bsc#1012628). - arm64: dts: ls1028a: fix the offset of the reset register (bsc#1012628). - ARM: imx: fix imx8m dependencies (bsc#1012628). - ARM: dts: imx6qdl-kontron-samx6i: fix i2c_lcd/cam default status (bsc#1012628). - ARM: dts: imx6qdl-sr-som: fix some cubox-i platforms (bsc#1012628). - arm64: dts: imx8mp: Correct the gpio ranges of gpio3 (bsc#1012628). - firmware: imx: select SOC_BUS to fix firmware build (bsc#1012628). - RDMA/cxgb4: Fix the reported max_recv_sge value (bsc#1012628). - ASoC: dt-bindings: lpass: Fix and common up lpass dai ids (bsc#1012628). - ASoC: qcom: Fix incorrect volatile registers (bsc#1012628). - ASoC: qcom: Fix broken support to MI2S TERTIARY and QUATERNARY (bsc#1012628). - ASoC: qcom: lpass-ipq806x: fix bitwidth regmap field (bsc#1012628). - spi: altera: Fix memory leak on error path (bsc#1012628). - ASoC: Intel: Skylake: skl-topology: Fix OOPs ib skl_tplg_complete (bsc#1012628). - powerpc/64s: prevent recursive replay_soft_interrupts causing superfluous interrupt (bsc#1012628). - pNFS/NFSv4: Fix a layout segment leak in pnfs_layout_process() (bsc#1012628). - pNFS/NFSv4: Update the layout barrier when we schedule a layoutreturn (bsc#1012628). - ASoC: SOF: Intel: soundwire: fix select/depend unmet dependencies (bsc#1012628). - ASoC: qcom: lpass: Fix out-of-bounds DAI ID lookup (bsc#1012628). - iwlwifi: pcie: avoid potential PNVM leaks (bsc#1012628). - iwlwifi: pnvm: don't skip everything when not reloading (bsc#1012628). - iwlwifi: pnvm: don't try to load after failures (bsc#1012628). - iwlwifi: pcie: set LTR on more devices (bsc#1012628). - iwlwifi: pcie: use jiffies for memory read spin time limit (bsc#1012628). - iwlwifi: pcie: reschedule in long-running memory reads (bsc#1012628). - mac80211: pause TX while changing interface type (bsc#1012628). - ice: fix FDir IPv6 flexbyte (bsc#1012628). - ice: Implement flow for IPv6 next header (extension header) (bsc#1012628). - ice: update dev_addr in ice_set_mac_address even if HW filter exists (bsc#1012628). - ice: Don't allow more channels than LAN MSI-X available (bsc#1012628). - ice: Fix MSI-X vector fallback logic (bsc#1012628). - i40e: acquire VSI pointer only after VF is initialized (bsc#1012628). - igc: fix link speed advertising (bsc#1012628). - net/mlx5: Fix memory leak on flow table creation error flow (bsc#1012628). - net/mlx5e: E-switch, Fix rate calculation for overflow (bsc#1012628). - net/mlx5e: free page before return (bsc#1012628). - net/mlx5e: Reduce tc unsupported key print level (bsc#1012628). - net/mlx5: Maintain separate page trees for ECPF and PF functions (bsc#1012628). - net/mlx5e: Disable hw-tc-offload when MLX5_CLS_ACT config is disabled (bsc#1012628). - net/mlx5e: Fix CT rule + encap slow path offload and deletion (bsc#1012628). - net/mlx5e: Correctly handle changing the number of queues when the interface is down (bsc#1012628). - net/mlx5e: Revert parameters on errors when changing trust state without reset (bsc#1012628). - net/mlx5e: Revert parameters on errors when changing MTU and LRO state without reset (bsc#1012628). - net/mlx5: CT: Fix incorrect removal of tuple_nat_node from nat rhashtable (bsc#1012628). - can: dev: prevent potential information leak in can_fill_info() (bsc#1012628). - ACPI/IORT: Do not blindly trust DMA masks from firmware (bsc#1012628). - of/device: Update dma_range_map only when dev has valid dma-ranges (bsc#1012628). - iommu/amd: Use IVHD EFR for early initialization of IOMMU features (bsc#1012628). - iommu/vt-d: Correctly check addr alignment in qi_flush_dev_iotlb_pasid() (bsc#1012628). - nvme-multipath: Early exit if no path is available (bsc#1012628). - selftests: forwarding: Specify interface when invoking mausezahn (bsc#1012628). - rxrpc: Fix memory leak in rxrpc_lookup_local (bsc#1012628). - NFC: fix resource leak when target index is invalid (bsc#1012628). - NFC: fix possible resource leak (bsc#1012628). - ASoC: mediatek: mt8183-da7219: ignore TDM DAI link by default (bsc#1012628). - ASoC: mediatek: mt8183-mt6358: ignore TDM DAI link by default (bsc#1012628). - ASoC: topology: Properly unregister DAI on removal (bsc#1012628). - ASoC: topology: Fix memory corruption in soc_tplg_denum_create_values() (bsc#1012628). - scsi: qla2xxx: Fix description for parameter ql2xenforce_iocb_limit (bsc#1012628). - team: protect features update by RCU to avoid deadlock (bsc#1012628). - tcp: make TCP_USER_TIMEOUT accurate for zero window probes (bsc#1012628). - tcp: fix TLP timer not set when CA_STATE changes from DISORDER to OPEN (bsc#1012628). - vsock: fix the race conditions in multi-transport support (bsc#1012628). - Update patches.suse/acpi_thermal_passive_blacklist.patch (bsc#333043). - commit 3527948 ==== kmod ==== Subpackages: libkmod2 - Fix tests to not test disabled features. Disable zstd again. + kmod-populate-modules-Use-more-bash-more-quotes.patch + kmod-testsuite-compress-modules-if-feature-is-enabled.patch + kmod-also-test-xz-compression.patch ==== kustomize ==== Version update (3.9.2 -> 3.10.0) - Update to version 3.10.0 - Pin to api v0.8.0 - Delete dependence on k8s.io/... - Unpin from api. - Refresh vendor.tar.xz ==== libapparmor ==== - merge libapparmor.changes into apparmor.changes - define %_pamdir for <= 15.x to fix the build on those releases - add apache-extra-profile-include-if-exists.diff: make <apache2.d> include in apache extra profile optional to avoid problems with empty profile directory (boo#1178527) - prepare usrmerge (boo#1029961) * use %_pamdir ==== libcap ==== Version update (2.47 -> 2.48) - update to 2.48: * More uniform use of $(MAKE) in Makefiles * No longer include symlinks in the git tree * Provide support for make GOLANG=no ... * Provide support for pointing at a specific build of the go binary * camelCase the contrib/seccomp/explore.go program * A number of documentation fixes to man pages and source code comments * Last use of GO major version 0 ==== libevent ==== - Drop insserv_prereq and fillup_prereq macros: there are no pre-scripts that would justify these dependencies. ==== libressl ==== Version update (3.2.3 -> 3.2.4) Subpackages: libcrypto46 libssl48 libtls20 - Update to release 3.2.4 * Switch back to certificate verification code from LibreSSL 3.1.x. The new verifier is not bug compatible with the old verifier causing issues with applications expecting behavior of the old verifier. * Unbreak DTLS retransmissions for flights that include a CCS. * Implement autochain for the TLSv1.3 server. * Use the legacy verifier for autochain. * Implement exporter for TLSv1.3. * Plug leak in x509_verify_chain_dup(). ==== libselinux ==== Subpackages: libselinux1 selinux-tools - Add Recommends: selinux-autorelabel, which is very important for healthy use of the SELinux on the system (/.autorelabel mechanism) (bsc#1181837). ==== logrotate ==== Version update (3.17.0 -> 3.18.0) - Update to 3.18.0: * Allow UIDs and GIDs to be specified numerically * Add support for Zstandard compressed files * Make delaycompress not to fail with rotate 0 ==== nfs-client-provisioner ==== Version update (2.3.0+git20200220.a14bfd72 -> 4.0.0+git20210204.23ecb30) - Switch to kubernetes-sigs/nfs-subdir-external-provisioner - Update to version 4.0.0+git20210204.23ecb30: * Fix typo in CHANGELOG and change provisioner name to use the sigs namespace * Change the helm chart kubeVersion semver to include pre-releases * Update the README and deploy objects with better class names as examples ==== nghttp2 ==== Version update (1.42.0 -> 1.43.0) - update to 1.43.0: * doc: Make doc generation work with sphinx v3.3 * python: Require python3 for python bindings * python: Require python3 for python scripts * nghttpx: Make sure that Pool gets cleared when all buffers are returned * nghttpx: Choose ECDSA cert if compatible signature algorithm available * nghttpx: Add workaround to include ':' in backend pattern ==== openssh ==== Subpackages: openssh-clients openssh-common openssh-server - Add openssh-whitelist-syscalls.patch (bsc#1182232), fixing failure to accept connections on 32-bit platforms with glibc 2.33+. ==== perl-Bootloader ==== Version update (0.932 -> 0.933) - merge gh#openSUSE/perl-bootloader#133 - use shim on aarch64 (jsc#SLE-15823, jsc#SLE-15020) - 0.933 ==== pigz ==== Version update (2.4 -> 2.6) - update to 2.6: * Add --huffman/-H and --rle/U strategy options * Fix issue when compiling for no threads * Fail silently on a broken pipe * Add --alias/-A option to set .zip name for stdin input * Add --comment/-C option to add comment in .gz or .zip * Several bug and behavior fixes - drop fortify.patch: obsolete ==== pinentry ==== - add _multibuild to separate out gui client builds ==== procps ==== Version update (3.3.16 -> 3.3.17) Subpackages: libprocps8 - Add /usr/share/man/uk dir to file list for lang sub package - Fix directory for Ukrainian man pages translations. - Move localized man pages to lang package. - Remove obsolete conditionals. - Remove obsolete --enable-oomem option. - Run spec-cleaner. - Update to procps-ng-3.3.17 * library: Incremented to 8:3:0 (no removals or additions, internal changes only) * all: properly handle utf8 cmdline translations issue #176 * kill: Pass int to signalled process merge #32 * pgrep: Pass int to signalled process merge #32 * pgrep: Check sanity of SG_ARG_MAX issue #152 * pgrep: Add older than selection merge #79 * pidof: Quiet mode merge #83 * pidof: show worker threads Redhat #1803640 * ps.1: Mention stime alias issue #164 * ps: check also match on truncated 16 char comm names * ps: Add exe output option Redhat #1399206 * ps: A lot more sorting available merge #99 * pwait: New command waits for a process merge #97 * sysctl: Match systemd directory order Debian #950788 * sysctl: Document directory order Debian #951550 * top: ensure config file backward compatibility Debian #951335 * top: add command line 'e' for symmetry with 'E' issue #165 * top: add '4' toggle for two abreast cpu display issue #172 * top: add '!' toggle for combining multiple cpus * top: fix potential SEGV involving -p switch merge #114 * vmstat: Wide mode gives wider proc columns merge #48 * watch: Add environment variable for interval merge #62 * watch: Add no linewrap option issue #182 * watch: Support more colors merge #106,#109 * free,uptime,slabtop: complain about extra ops issue #181 - Remove now obsolete upstream patches * procps-check-sanity-of-SC_ARG_MAX.patch * procps-ng-3e1c00d0.patch - Port patches * procps-ng-3.3.10-integer-overflow.patch * procps-ng-3.3.10-large_pcpu.patch * procps-ng-3.3.8-accuracy.dif * procps-ng-3.3.8-bnc634840.patch * procps-ng-3.3.8-petabytes.patch * procps-ng-3.3.8-tinfo.dif * procps-ng-3.3.9-w-notruncate.diff * procps-v3.3.3-read-sysctls-also-from-boot-sysctl.conf-kernelversion.diff ==== python-Jinja2 ==== Version update (2.11.2 -> 2.11.3) - update to 2.11.3 * Improve the speed of the urlize filter by reducing regex backtracking. Email matching requires a word character at the start of the domain part and only word characters in the TLD (CVE-2020-28493 bsc#1181944). ==== python-cffi ==== Version update (1.14.4 -> 1.14.5) - update to 1.14.5: * Source fix for old gcc versions ==== python-cryptography ==== Version update (3.3.1 -> 3.3.2) - update to 3.3.2: * SECURITY ISSUE: Fixed a bug where certain sequences of update() calls when symmetrically encrypting very large payloads (>2GB) could result in an integer overflow, leading to buffer overflows. CVE-2020-36242 ==== python-idna ==== Version update (2.10 -> 3.1) - update to 3.1: - Ensure license is included in package (Thanks, Julien Schueller) - No longer mark wheel has universal (Thanks, Matthieu Darbois) - Test on PowerPC using Travis CI - Python 2 is no longer supported (the 2.x branch supports Python 2, use "idna<3" in your requirements file if you need Python 2 support) - Support for V2 UTS 46 test vectors. ==== python-networkx ==== - Disable python36 build for good. Next up is SciPy 1.6.0 dropping Python 3.6 because of NEP 29. - Mark the doc package files as doc. ==== python-pyrsistent ==== - Remove remnant requirements of six and numpy: These are neither used anywhere in the package code, nor in the tests. ==== python-pytz ==== Version update (2020.5 -> 2021.1) - update to 2021.1: * update to IANA 2021a timezone release ==== python-pyzmq ==== Version update (20.0.0 -> 22.0.3) - Update to 22.0.3 * Fix fork-safety bug in garbage collection thread (regression in 20.0) when using subprocesses. - Changes in 22.0.1 * Fix type of Frame.bytes for non-copying recvs with CFFI backend (regression in 21.0) - Changes in 22.0.0 * This is a major release due to changes in wheels and building on Windows. Code changes from 21.0 are minimal. * Some typing fixes * Bump bundled libzmq to 4.3.4 - Relevant Changes in 21.0 * pyzmq 21 is a major version bump because of dropped support for old Pythons and some changes in packaging. CPython users should not face major compatibility issues if installation works at all :) PyPy users may see issues with the new implementation of send/recv. If you do, please report them! The big changes are: * drop support for Python 3.5. Python >= 3.6 is required * mypy type stubs, which should improve static analysis of pyzmq, especially for dynamically defined attributes such as zmq constants. These are new! Let us know if you find any issues. * support for zero-copy and sending bufferables with cffi backend. This is experimental! Please report issues. Packaging updates: * Require Python >= 3.6, required for good type annotation support * rework cffi backend in setup.py New features: * zero-copy support in CFFI backend (send(copy=False) now does something). * Support sending any buffer-interface-providing objects in CFFI backend. Bugs fixed: * Errors during teardown of asyncio Sockets - Don't test numpy on python36 flavor, because python36-numpy is no longer available in Tumbleweed (NEP 29) - Make sure we use the Cython backend, not CFFI, wich is for PyPy. * fixes gh#zeromq/pyzmq#1431 and gh#zeromq/pyzmq#1432 - Remove skip_test_tracker.patch - Got an oom error on the build service: Require at least 8GB of RAM through _constraints file ==== python-requests ==== - add 5711.patch from upstream instead to remove idna<3 pin - Don't pin idna<3 in the egg-info so that depending packages can install the new idna dropping python2 ==== python38 ==== - Add Obsoletes for python3-base when primary interpreter is set to properly replace it during upgrades. (bsc#1181324) - Provide %have_<flavor> for all python flavors gh#openSUSE/python-rpm-macros#96 - Add %python3_default and %default_python3 for the primary python3 flavor ==== python38-core ==== Subpackages: libpython3_8-1_0 python38-base - Add Obsoletes for python3-base when primary interpreter is set to properly replace it during upgrades. (bsc#1181324) - Provide %have_<flavor> for all python flavors gh#openSUSE/python-rpm-macros#96 - Add %python3_default and %default_python3 for the primary python3 flavor ==== reiserfs ==== - Move soname link to library package ==== rpm ==== Subpackages: librpmbuild9 - Use shipped config.sub/config.guess instead of stone-aged from libtool - auto-config-update-aarch64-ppc64le.diff: update grep regex ==== salt ==== Subpackages: python3-salt salt-master salt-minion salt-standalone-formulas-configuration - virt: search for grub.xen path - Xen spicevmc, DNS SRV records backports: Fix virtual network generated DNS XML for SRV records Don't add spicevmc channel to xen VMs - virt UEFI fix: virt.update when efi=True - Added: * virt-uefi-fix-backport-312.patch * 3002.2-xen-spicevmc-dns-srv-records-backports-314.patch * open-suse-3002.2-xen-grub-316.patch - Do not crash when unexpected cmd output at listing patches (bsc#1181290) - Added: * do-not-crash-when-unexpected-cmd-output-at-listing-p.patch - Fix behavior for "onlyif/unless" when multiple conditions (bsc#1180818) - Added: * fix-onlyif-unless-when-multiple-conditions-bsc-11808.patch ==== supportutils ==== Version update (3.1.13 -> 3.1.14) - Additions to version 3.1.14 + [powerpc] Collect logs for power specific components (HNV ) #88 (bsc#1181911) + Updated pam.txt documentation explaining GDPR - No longer truncates boot log (bsc#1181610) ==== system-users ==== Subpackages: system-group-hardware system-group-kvm system-user-nobody - system-user-tss.conf: Remove group entry, not needed and did contain syntax errors - remove duplicate group entry: - system-user-tftp.conf - system-user-uuidd.conf - system-user-uucp.conf - system-user-uucp.conf - system-user-ftp.conf - system-user-games.conf - system-user-news.conf ==== sysuser-tools ==== - Don't abort on unbound first argument - Remove sysusers/nscd workaround - Use systemd-sysusers only if /proc is mounted, don't require it - Set --replace option for systemd-sysusers - Ignore nscd return code - If systemd-sysusers is used to create a new user/group, invalidate the nscd passwd and group cache to make the new user/group visible immediately as workaround [bsc#1181121]. Needs to be removed after sytemd-sysusers get's fixed, since we invalidate the cache even if the user/group file wasn't changed. - An "u" in a sysusers.d file will create an user and a group. Create provides for both, user and group. - Use systemd-sysusers as default to create and update the user account. Fixes the problem that a modified sysusers config file get's ignored by useradd and adduser [bsc#1180549]. ==== transactional-update ==== Version update (2.28.3 -> 3.1.4) Subpackages: transactional-update-zypp-config - Version 3.1.4 - SELinux: Fix syncing of SELinux attributes when using overlays - SELinux: Tag the overlay directory itself (again) - Version 3.1.3 - Fix overlay syncing on SELinux systems - Fix resuming transactions where the parent does not exist any more - Version 3.1.2 - libtukit: Report when application was terminated due to a signal, and return the signal number as a return value. This will cause the transaction to be aborted when called via `execute`. - libtukit: Set PATH variable for internal commands to fixed value to find the helper applications, as in some environments such as PolicyKit PATH wouldn't be set. - Fix compiler warnings - Version 3.1.1 - Fix hang in tukit on aarch64 [bsc#1181844] - Prevent deletion of snapshots when resuming a snapshot where no transaction is open - Make tukit work in non-dbus environments [boo#1181934] - Version 3.1.0 - t-u: Support installing RPMs from the user's directory again - Adapt selfupdate to new packaging - Implement signal handling - Remove empty text files - Add libselinux build time dependency - Remove RPM version check - Fix libstdc++ filesystem ABI incompatibility by using newer gcc version on old distributions. [boo#1181582] - Rework packaging based on Fedora packaging to separate all the components to remove the intrinsic requirement for Zypper - Version 3.0.0 - This release changes the internal structure, but should be identical to the previous release feature wise. - Major parts of the previous Bash only application have been rewritten in C++ with the goal to provide an API around transactions; the transactional-update script is using that new interface internally already, however the API should be considered experimental for now - if you are interested to use it, please notify us in https://github.com/openSUSE/transactional-update/issues/52 - A new tool called "tukit" provides a C++ tool that can be wrapped by scripts to leverage the functionality. Please consider it experimental for now, the commands may still change. - Bugfixes: - Implement support for system offline update [boo#1180808] - Add statistics files to update environment [boo#1173282] ==== util-linux ==== Subpackages: libblkid1 libfdisk1 libmount1 libsmartcols1 libuuid1 - libmount: don't use "symfollow" for helpers on user mounts (boo#1181750, util-linux-libmount-dont-use-symfollow.patch) - Override GTKDOCIZE with /bin/true so we can run autoreconf without needing gtk-doc as a dependency. ==== util-linux-systemd ==== - libmount: don't use "symfollow" for helpers on user mounts (boo#1181750, util-linux-libmount-dont-use-symfollow.patch) - Override GTKDOCIZE with /bin/true so we can run autoreconf without needing gtk-doc as a dependency. ==== weave ==== Version update (2.7.0 -> 2.8.1) - Add init.sh for init container - Update to version 2.8.1 - Kubernetes: move kernel and CNI setup to init container - For K8s, stop running in host PID namespace - NetworkPolicy: avoid logging dropped packets that were not actually dropped - Use go 1.15 ==== wpa_supplicant ==== - Add CVE-2021-0326.patch -- P2P group information processing vulnerability (bsc#1181777)

1 0

Initial release of transactional update plugin for libdnf submitted to Factory
by Neal Gompa 22 Feb '21

22 Feb '21

Hey all, I've just made the initial release of the transactional update plugin for libdnf[1]. Along with that, I've submitted libdnf-plugin-txnupd to Factory[2]. This plugin leverages the new tukit library that's part of transactional-update since version 3.0 to implement transactional updates as part of the natural operation of package managers that use the libdnf library's C API. Today, that means that PackageKit (when using the DNF backend) and Micro DNF are transparently able to do the correct thing and execute transactions in an atomic fashion. I have demo images with microdnf(8) used instead of transactional-update(8) to show off the new plugin[3], for those interested in seeing how it works. Though there isn't much to see, since everything happens transparently. I'd like to integrate my changes to patterns-microos[4] into the mainline pattern somehow, and then get official images building using this as an alternative to the classic transactional-update mechanism. For MicroOS Desktop, I think it would make sense to switch it to using this and focus on making sure Plasma Discover and GNOME Software can do system updates properly through this mechanism. I've currently only tested doing updates with pkcon(1) with success, and I'd like to move forward with testing with other frontends. Personally, I'm very excited that I've reached this milestone. If it weren't for all of you folks (especially Richard and Ignaz!), I wouldn't have made it this far. I'm looking forward to continuing to make this even better! What do y'all think? [1]: https://code.opensuse.org/microos/libdnf-plugin-txnupd/c/9cb8e54ba7caa3c898… [2]: https://build.opensuse.org/request/show/873593 [3]: https://download.opensuse.org/repositories/home:/Pharaoh_Atem:/DNF_SUSE:/Mi… [4]: https://build.opensuse.org/package/rdiff/home:Pharaoh_Atem:DNF_SUSE:MicroOS… -- 真実はいつも一つ！/ Always, there's only one truth!

4 5

New MicroOS snapshot 20210218 released!
by Richard Brown 19 Feb '21

19 Feb '21

Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: evolution-data-server (3.38.3 -> 3.38.4) glib2 (2.66.6 -> 2.66.7) gnome-autoar (0.2.4 -> 0.3.0) gnome-terminal (3.38.2 -> 3.38.3) gptfdisk (1.0.5 -> 1.0.6) kbd (2.3.0 -> 2.4.0) libgdata (0.17.13 -> 0.18.0) openal-soft (1.21.0 -> 1.21.1) samba (4.13.3+git.181.fc4672a5b81 -> 4.13.4+git.187.5ad4708741a) sensors transactional-update (2.28.3 -> 3.1.4) udisks2 (2.9.1 -> 2.9.2) vte (0.62.2 -> 0.62.3) webkit2gtk3 (2.30.4 -> 2.30.5) yelp (3.38.2 -> 3.38.3) yelp-xsl (3.38.2 -> 3.38.3) === Details === ==== evolution-data-server ==== Version update (3.38.3 -> 3.38.4) Subpackages: libcamel-1_2-62 libebackend-1_2-10 libebook-1_2-20 libebook-contacts-1_2-3 libecal-2_0-1 libedata-book-1_2-26 libedata-cal-2_0-1 libedataserver-1_2-25 libedataserverui-1_2-2 - Update to version 3.38.4: + CamelFolder: Cancel save of the changes early in the dispose(). + AlarmNotify: - The e_alarm_notify_activate() can be called multiple times. - Stop using g_application_register(). - The XDG_CURRENT_DESKTOP env is a list. + Bug Fixes: glgo#GNOME/evolution-data-server#293, glgo#GNOME/evolution-data-server#296, glgo#GNOME/evolution-data-server#298, glgo#GNOME/evolution-data-server#299, glgo#GNOME/evolution-data-server#300. + Updated translations. ==== glib2 ==== Version update (2.66.6 -> 2.66.7) Subpackages: glib2-tools libgio-2_0-0 libglib-2_0-0 libgmodule-2_0-0 libgobject-2_0-0 - Update to version 2.66.7: + Fix various regressions caused by rushed security fixes in 2.66.6. + Fix a silent integer truncation when calling `g_byte_array_new_take()` for byte arrays bigger than `G_MAXUINT`. + Disallow using currently-undefined D-Bus connection or server flags to prevent forward-compatibility problems with new security-sensitive flags likely to be released in GLib 2.68. + Bugs fixed: glgo#GNOME/GLib!1933, glgo#GNOME/GLib!1943, glgo#GNOME/GLib!1944, glgo#GNOME/GLib!1945. ==== gnome-autoar ==== Version update (0.2.4 -> 0.3.0) - Update to version 0.3.0: + Recognize MIME type aliases of extractable archives. + Add extraction support for password-protected archives. + CVE-2020-36241: Prevent extraction outside the destination dir. ==== gnome-terminal ==== Version update (3.38.2 -> 3.38.3) Subpackages: nautilus-extension-terminal - Update to version 3.38.3: + app: Limit the number of clipboard targets to a sensible number + Updated translations. ==== gptfdisk ==== Version update (1.0.5 -> 1.0.6) - Update to 1.0.6 * Fixed bug that could cause segfault if GPT header claimed partition entries are oversized. See: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0256 * Fixed bug that could cause a crash if a badly-formatted MBR disk was read. See: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-0308 * Renamed the partition type "Freedesktop $BOOT" to "XBOOTLDR partition". * Added several more Freedesktop partition table type codes (0x8312 through 0x831C). * Fixed type code definition in diskio-unix.cc that prevented 32-bit builds from correctly handling disks over 4 TiB in size. * Minor tweaks to get the software to compile on FreeBSD; that seems to have fallen into disrepair. ==== kbd ==== Version update (2.3.0 -> 2.4.0) Subpackages: kbd-legacy - Update to version 2.4.0: * po: Update cs and sr translations (from translationproject.org) * libkfont: Use only KDFONTOP * Added support for a few derivatives of neo * Fix use-after-free of pipe_cmd * Update solar24x32 font * vlock's pam config added to destination directory * Update sun12x22.psfu * libkeymap: unify non/unicode accent_table generation * libkeymap: note about --unicode use * libkeymap: remove last ushort * fi.map: use newly added deadkeys * Do not install internal library * Additional deadkeys - Remove kbd-1.15.2-setfont-no-cruft.patch The old ioctls were finally dropped. ==== libgdata ==== Version update (0.17.13 -> 0.18.0) - Update to version 0.18.0: + Add support for Team Drives. + Bugs fixed: glgo#GNOME/libgdata#25. + Updated translations. ==== openal-soft ==== Version update (1.21.0 -> 1.21.1) - update to 1.21.1: * Improved alext.h's detection of standard types. * Improved slightly the local source position when the listener and source are near each other. * Improved click/pop prevention for sounds that stop prematurely. * Fixed compilation for Windows ARM targets with MSVC. * Fixed ARM NEON detection on Windows. * Fixed CoreAudio capture when the requested sample rate doesn't match the system configuration. * Fixed OpenSL capture desyncing from the internal capture buffer. * Fixed sources missing a batch update when applied after quickly restarting the source. * Fixed missing source stop events when stopping a paused source. * Added capture support to the experimental Oboe backend. ==== samba ==== Version update (4.13.3+git.181.fc4672a5b81 -> 4.13.4+git.187.5ad4708741a) Subpackages: libdcerpc-binding0 libdcerpc0 libndr-krb5pac0 libndr-nbt0 libndr-standard0 libndr1 libnetapi0 libsamba-credentials0 libsamba-errors0 libsamba-hostconfig0 libsamba-passdb0 libsamba-util0 libsamdb0 libsmbclient0 libsmbconf0 libsmbldap2 libtevent-util0 libwbclient0 samba-client samba-libs samba-libs-python3 - Update to 4.13.4 * Work around special SMB2 IOCTL response behavior of NetApp Ontap 7.3.7; (bso#14607); * Temporary DFS share setup doesn't set case parameters in the same way as a regular share definition does; (bso#14612); * lib: Avoid declaring zero-length VLAs in various messaging functions; (bso#14605); * Do not create an empty DB when accessing a sam.ldb; (bso#14579); * vfs_fruit may close wrong backend fd; (bso#14596); * Temporary DFS share setup doesn't set case parameters in the same way as a regular share definition does; (bso#14612); * vfs_virusfilter: Allocate separate memory for config char*; (bso#14606); * vfs_fruit may close wrong backend fd; (bso#14596); * Work around special SMB2 IOCTL response behavior of NetApp Ontap 7.3.7; (bso#14607); * The cache directory for the user gencache should be created recursively; (bso#14601); * Be more flexible with repository names in CentOS 8 test environments; (bso#14594); - Uninstalling samba-client: Failed to disable unit, cifs.service does not exists; (bsc#1180388); ==== sensors ==== - pwmconfig-handle-fan-input-error.patch: pwmconfig: Deal gracefully with unreadable fan inputs (boo#1181890). - pwmconfig-raise-fan-threshold.patch: pwmconfig: Further raise the fan threshold (boo#1181890). ==== transactional-update ==== Version update (2.28.3 -> 3.1.4) Subpackages: transactional-update-zypp-config - Version 3.1.4 - SELinux: Fix syncing of SELinux attributes when using overlays - SELinux: Tag the overlay directory itself (again) - Version 3.1.3 - Fix overlay syncing on SELinux systems - Fix resuming transactions where the parent does not exist any more - Version 3.1.2 - libtukit: Report when application was terminated due to a signal, and return the signal number as a return value. This will cause the transaction to be aborted when called via `execute`. - libtukit: Set PATH variable for internal commands to fixed value to find the helper applications, as in some environments such as PolicyKit PATH wouldn't be set. - Fix compiler warnings - Version 3.1.1 - Fix hang in tukit on aarch64 [bsc#1181844] - Prevent deletion of snapshots when resuming a snapshot where no transaction is open - Make tukit work in non-dbus environments [boo#1181934] - Version 3.1.0 - t-u: Support installing RPMs from the user's directory again - Adapt selfupdate to new packaging - Implement signal handling - Remove empty text files - Add libselinux build time dependency - Remove RPM version check - Fix libstdc++ filesystem ABI incompatibility by using newer gcc version on old distributions. [boo#1181582] - Rework packaging based on Fedora packaging to separate all the components to remove the intrinsic requirement for Zypper - Version 3.0.0 - This release changes the internal structure, but should be identical to the previous release feature wise. - Major parts of the previous Bash only application have been rewritten in C++ with the goal to provide an API around transactions; the transactional-update script is using that new interface internally already, however the API should be considered experimental for now - if you are interested to use it, please notify us in https://github.com/openSUSE/transactional-update/issues/52 - A new tool called "tukit" provides a C++ tool that can be wrapped by scripts to leverage the functionality. Please consider it experimental for now, the commands may still change. - Bugfixes: - Implement support for system offline update [boo#1180808] - Add statistics files to update environment [boo#1173282] ==== udisks2 ==== Version update (2.9.1 -> 2.9.2) Subpackages: libudisks2-0 - update to 2.9.2: * udiskslinuxblock: Survive a missing /etc/crypttab * lvm2: Fix leaking BDLVMVDOPooldata * tests: Test modules that are actually enabled during build * build: Exclude VDO module from distcheck build * udisksfstabentry: Add udisks_fstab_entry_has_opt() * udiskslinuxblock: Reflect fstab "noauto" mount option in HintAuto * udiskslinuxblock: Update hints after fstab change * tests: Add tests for Block hints * udiskslinuxfilesystemhelpers: Make TakeOwnership() race free * tests: Extend filesystem test_take_ownership tests with symlinks * mount options: Allow 'nosymfollow' mount option for unprivileged mounts * udisksstate: Silence the block device busy messages on cleanup lock * udev: Distinguish mmcblk-class device types * udev: Propagate mmcblk disk attributes to mmcblk_boot devices * udiskslinuxdrive: Tweak the 'removable'/'ejectable' hints for mmcblk-class devices * udiskslinuxblock: Tweak the hints for mmcblk-class devices * udisksdaemonutil: Refactor udisks_daemon_util_trigger_uevent() out of UDisksLinuxBlockObject * udiskslinuxmanager: Trigger uevent after loop device setup * tests: Remove scsi_debug serial number checks * tests: Skip zram tests if zram module is already loaded * treewide: Fix typos * AUTHORS: Add tbzatek as the maintainer * tests: Do not use nilfs2 as an example of non-resizable FS * Memory leak fixes * doc: Update config file path - drop udisks2-Fix-memory-leaks.patch, udisks2-lvm2-Fix-leaking-BDLVMVDOPooldata.patch (upstream) ==== vte ==== Version update (0.62.2 -> 0.62.3) - Update to version 0.62.3: + keymap: Use int8_t for the length of the short keymap strings + Revert "lib: Sanitise the passed-in font description" + Updated translations. ==== webkit2gtk3 ==== Version update (2.30.4 -> 2.30.5) Subpackages: libjavascriptcoregtk-4_0-18 libwebkit2gtk-4_0-37 webkit2gtk-4_0-injected-bundles - Update to version 2.30.5: + Bring back the WebKitPluginProcess installation that was removed by mistake. + Fix RunLoop objects leaked in worker threads. + Fix aarch64 llint build with JIT disabled. + Use Internet Explorer quirk for Google Docs. - Drop gir-multilib.patch: fixed upstream. ==== yelp ==== Version update (3.38.2 -> 3.38.3) Subpackages: libyelp0 - Update to version 3.38.3: + Updated translations. ==== yelp-xsl ==== Version update (3.38.2 -> 3.38.3) - Update to version 3.38.3: + Updated translations.

1 0

New Kubic snapshot 20210218 released!
by Richard Brown 19 Feb '21

19 Feb '21

Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=1&version=T… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: glib2 (2.66.6 -> 2.66.7) gptfdisk (1.0.5 -> 1.0.6) helm (3.4.2 -> 3.5.2) kbd (2.3.0 -> 2.4.0) kustomize (3.9.2 -> 3.10.0) transactional-update (2.28.3 -> 3.1.4) === Details === ==== glib2 ==== Version update (2.66.6 -> 2.66.7) Subpackages: glib2-tools libgio-2_0-0 libglib-2_0-0 libgmodule-2_0-0 libgobject-2_0-0 - Update to version 2.66.7: + Fix various regressions caused by rushed security fixes in 2.66.6. + Fix a silent integer truncation when calling `g_byte_array_new_take()` for byte arrays bigger than `G_MAXUINT`. + Disallow using currently-undefined D-Bus connection or server flags to prevent forward-compatibility problems with new security-sensitive flags likely to be released in GLib 2.68. + Bugs fixed: glgo#GNOME/GLib!1933, glgo#GNOME/GLib!1943, glgo#GNOME/GLib!1944, glgo#GNOME/GLib!1945. ==== gptfdisk ==== Version update (1.0.5 -> 1.0.6) - Update to 1.0.6 * Fixed bug that could cause segfault if GPT header claimed partition entries are oversized. See: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0256 * Fixed bug that could cause a crash if a badly-formatted MBR disk was read. See: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-0308 * Renamed the partition type "Freedesktop $BOOT" to "XBOOTLDR partition". * Added several more Freedesktop partition table type codes (0x8312 through 0x831C). * Fixed type code definition in diskio-unix.cc that prevented 32-bit builds from correctly handling disks over 4 TiB in size. * Minor tweaks to get the software to compile on FreeBSD; that seems to have fallen into disrepair. ==== helm ==== Version update (3.4.2 -> 3.5.2) - Update to version 3.5.2: * Upgrade to oras v0.9.0 (#9269) * Adding missing replace directive for oras * chore(go.mod): bump Masterminds/{spring,goutils} and deislabs/oras * fix(*): Validate metadata semver and printable characters * Fix dep build with OCI based charts * bump version to * Adding apiserver to mod/sum * Reduce linting severity for users of out-of-date kubernetes (#8608) * Bumping kubernetes to 1.20.1 * Add explanatory comments to action.List and action.History * Address error on deletion of old dependencies * Fixed bug - The flags --cert-file/--key-file where ignored when --insecure-skip-tls-verify flag is set (#9070) * Replace Helm Hub with Artifact Hub (#8626) * fix(pkg/chartutil): Remove warning for nils * Updating to sprig 3.2.0 * Updating to Kuberentes 1.20 packages * Bump github.com/Masterminds/semver/v3 from 3.1.0 to 3.1.1 (#9109) * Bump github.com/Masterminds/squirrel from 1.4.0 to 1.5.0 (#9108) * Bump github.com/lib/pq from 1.8.0 to 1.9.0 (#9107) * Remove OCI boolean from struct * Clean up imports and add doc comments * Implement `helm pull` for OCI registries * Adds the option kube-cafile and env variable HELM_KUBECAFILE for a overwrite of the certificate authority file * Builds with go 1.15 * Updating to Kubernetes 1.19.4 package versions * Add CodeQL Security Scanning * Fix test * Fixes #9083 * [COMMENT]fix comment * Fix typo * fix: ingress path issue * Revert "Add support to judge whether desired version is available or not" * Cleanup tempfiles introduced by unit tests under pkg/ * bump actions/stale to v3.0.14 * increase number of operations per run to 100 * feat(helm): Allow generating markdown docs headers * chore(comp): Remove unnecessary completion code * Added tests for PR 8948 * add unittes for 'helm dep build' with --skip-refresh flag. * Updating to k8s 1.19.3 based packages * lint: lint all documents in a multi-doc yaml file * fix(helm): flag descriptions start with lowercase * List either incubator or stable. * add waitwithjobs instead of changing wait api * add wait-for-jobs flag * fix style conformance * fix test-style error * add test cases * helm upgrade with --wait support jobs in manifest to be completed * completion: move to native zshCompletion * Add remaining tests in TestDependentChartAliases * Clarifies action needed to list new stable repo * feat: Allow helm test to run a subset of tests * Fix that the invalid version number of the helm package command will escape * Updating descriptions * Add support to judge whether desired version is available or not * Add test case for LoadFiles * Fixes Error: could not find protocol handler for * [#7696] Avoid crash in chart loader on unexpected file sequence * helm search supports semver pre version numbers starting with 0 * added test for https://github.com/helm/helm/pull/8913 related to https://github.com/helm/helm/issues/8621 * [#7696] Avoid crash in chart loader on unexpected file sequence * feat(test): Adapt completion tests to Cobra 1.1 * Bump github.com/spf13/cobra from 1.0.0 to 1.1.1 * Update err message to use the regex pattern directly * Fix the lint error message for valid names * do not check YAML if nothing was parsed * fix(test): display error message * bump version to v3.4.0 * Skip tests when running helm template * Add --skip-refresh option in helm dep build * Adjusted import * Reuse kube-client * fix(helm): allow skipping manifests in tests directories * prepare testdata * Bugfix: panic when chart contains requirements.lock ==== kbd ==== Version update (2.3.0 -> 2.4.0) Subpackages: kbd-legacy - Update to version 2.4.0: * po: Update cs and sr translations (from translationproject.org) * libkfont: Use only KDFONTOP * Added support for a few derivatives of neo * Fix use-after-free of pipe_cmd * Update solar24x32 font * vlock's pam config added to destination directory * Update sun12x22.psfu * libkeymap: unify non/unicode accent_table generation * libkeymap: note about --unicode use * libkeymap: remove last ushort * fi.map: use newly added deadkeys * Do not install internal library * Additional deadkeys - Remove kbd-1.15.2-setfont-no-cruft.patch The old ioctls were finally dropped. ==== kustomize ==== Version update (3.9.2 -> 3.10.0) - Update to version 3.10.0 - Pin to api v0.8.0 - Delete dependence on k8s.io/... - Unpin from api. - Refresh vendor.tar.xz ==== transactional-update ==== Version update (2.28.3 -> 3.1.4) Subpackages: transactional-update-zypp-config - Version 3.1.4 - SELinux: Fix syncing of SELinux attributes when using overlays - SELinux: Tag the overlay directory itself (again) - Version 3.1.3 - Fix overlay syncing on SELinux systems - Fix resuming transactions where the parent does not exist any more - Version 3.1.2 - libtukit: Report when application was terminated due to a signal, and return the signal number as a return value. This will cause the transaction to be aborted when called via `execute`. - libtukit: Set PATH variable for internal commands to fixed value to find the helper applications, as in some environments such as PolicyKit PATH wouldn't be set. - Fix compiler warnings - Version 3.1.1 - Fix hang in tukit on aarch64 [bsc#1181844] - Prevent deletion of snapshots when resuming a snapshot where no transaction is open - Make tukit work in non-dbus environments [boo#1181934] - Version 3.1.0 - t-u: Support installing RPMs from the user's directory again - Adapt selfupdate to new packaging - Implement signal handling - Remove empty text files - Add libselinux build time dependency - Remove RPM version check - Fix libstdc++ filesystem ABI incompatibility by using newer gcc version on old distributions. [boo#1181582] - Rework packaging based on Fedora packaging to separate all the components to remove the intrinsic requirement for Zypper - Version 3.0.0 - This release changes the internal structure, but should be identical to the previous release feature wise. - Major parts of the previous Bash only application have been rewritten in C++ with the goal to provide an API around transactions; the transactional-update script is using that new interface internally already, however the API should be considered experimental for now - if you are interested to use it, please notify us in https://github.com/openSUSE/transactional-update/issues/52 - A new tool called "tukit" provides a C++ tool that can be wrapped by scripts to leverage the functionality. Please consider it experimental for now, the commands may still change. - Bugfixes: - Implement support for system offline update [boo#1180808] - Add statistics files to update environment [boo#1173282]

1 0

New MicroOS snapshot 20210217 released!
by Richard Brown 18 Feb '21

18 Feb '21

Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: attica-qt5 (5.78.0 -> 5.79.0) avahi avahi-glib2 baloo5 (5.78.0 -> 5.79.0) bluez-qt (5.78.0 -> 5.79.0) breeze5-icons (5.78.0 -> 5.79.0) btrfsmaintenance dhcp (4.3.5 -> 4.4.2) elfutils (0.182 -> 0.183) frameworkintegration (5.78.0 -> 5.79.0) fuse3 (3.10.1 -> 3.10.2) gnome-software (3.38.0 -> 3.38.1) json-glib (1.6.0 -> 1.6.2) kactivities-stats (5.78.0 -> 5.79.0) kactivities5 (5.78.0 -> 5.79.0) karchive (5.78.0 -> 5.79.0) kauth (5.78.0 -> 5.79.0) kbookmarks (5.78.0 -> 5.79.0) kcmutils (5.78.0 -> 5.79.0) kcodecs (5.78.0 -> 5.79.0) kcompletion (5.78.0 -> 5.79.0) kconfig (5.78.0 -> 5.79.0) kconfigwidgets (5.78.0 -> 5.79.0) kcoreaddons (5.78.0 -> 5.79.0) kcrash (5.78.0 -> 5.79.0) kdbusaddons (5.78.0 -> 5.79.0) kdeclarative (5.78.0 -> 5.79.0) kded (5.78.0 -> 5.79.0) kdelibs4support (5.78.0 -> 5.79.0) kdesu (5.78.0 -> 5.79.0) kdnssd-framework (5.78.0 -> 5.79.1) kdoctools (5.78.0 -> 5.79.0) kfilemetadata5 (5.78.0 -> 5.79.0) kglobalaccel (5.78.0 -> 5.79.0) kguiaddons (5.78.0 -> 5.79.0) kholidays (5.78.0 -> 5.79.0) ki18n (5.78.0 -> 5.79.0) kiconthemes (5.78.0 -> 5.79.0) kidletime (5.78.0 -> 5.79.0) kinit (5.78.0 -> 5.79.0) kio (5.78.0 -> 5.79.0) kirigami2 (5.78.0 -> 5.79.0) kitemmodels (5.78.0 -> 5.79.0) kitemviews (5.78.0 -> 5.79.0) kjobwidgets (5.78.0 -> 5.79.0) knewstuff (5.78.0 -> 5.79.0) knotifications (5.78.0 -> 5.79.0) knotifyconfig (5.78.0 -> 5.79.0) kpackage (5.78.0 -> 5.79.0) kparts (5.78.0 -> 5.79.0) kpeople5 (5.78.0 -> 5.79.0) kpty (5.78.0 -> 5.79.0) kquickcharts (5.78.0 -> 5.79.0) kross (5.78.0 -> 5.79.0) krunner (5.78.0 -> 5.79.0) kservice (5.78.0 -> 5.79.0) ktexteditor (5.78.0 -> 5.79.0) ktextwidgets (5.78.0 -> 5.79.0) kunitconversion (5.78.0 -> 5.79.0) kwallet (5.78.0 -> 5.79.0) kwayland (5.78.0 -> 5.79.0) kwidgetsaddons (5.78.0 -> 5.79.0) kwindowsystem (5.78.0 -> 5.79.0) kxmlgui (5.78.0 -> 5.79.0) libKF5ModemManagerQt (5.78.0 -> 5.79.0) libKF5NetworkManagerQt (5.78.0 -> 5.79.0) libcap (2.47 -> 2.48) libdatrie (0.2.12 -> 0.2.13) libevdev (1.9.1 -> 1.11.0) libmfx mpfr openjpeg2 (2.3.1 -> 2.4.0) pipewire (0.3.20 -> 0.3.21) plasma-framework (5.78.0 -> 5.79.0) prison-qt5 (5.78.0 -> 5.79.0) procps (3.3.16 -> 3.3.17) purpose (5.78.0 -> 5.79.0) python-Jinja2 (2.11.2 -> 2.11.3) python-cffi (1.14.4 -> 1.14.5) python-cryptography (3.3.1 -> 3.3.2) python-idna (2.10 -> 3.1) python-pyrsistent python-pytz (2020.5 -> 2021.1) qqc2-desktop-style (5.78.0 -> 5.79.0) reiserfs solid (5.78.0 -> 5.79.0) sonnet (5.78.0 -> 5.79.0) srt syntax-highlighting (5.78.0 -> 5.79.1) system-users sysuser-tools telepathy-glib (0.24.1 -> 0.24.2) threadweaver (5.78.0 -> 5.79.0) util-linux util-linux-systemd vulkan-loader (1.2.165 -> 1.2.169) xen (4.14.1_08 -> 4.14.1_11) zxing-cpp (1.1.0 -> 1.1.1) === Details === ==== attica-qt5 ==== Version update (5.78.0 -> 5.79.0) Subpackages: libKF5Attica5 - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Make int -> QString conversion explicit * Port from QNetworkRequest::FollowRedirectsAttribute to QNetworkRequest::RedirectPolicyAttribute ==== avahi ==== Subpackages: libavahi-client3 libavahi-common3 libavahi-core7 - Drop configure --libexecdir variable as it does not appear to be used by the source archive. - Build python bindings subpackages for all flavors * use the python-rpm-macros singlespec system: The macro %python_subpackages together with %python_subpackage_only creates the pythonXY-avahi bindings package for all python flavors on Tumbleweed (currently python36, python38) * Put the avahi-bookmarks command under updates-alternatives control to avoid package conflicts between flavors * outside of build_core, the build continues to use but not install everything in the primary python3 flavor. * For distros without multiple python3 flavors and/or older python-rpm-macros, the status quo is unchanged. ==== avahi-glib2 ==== - Fix split-provides for python3-avahi-gtk: avahi-python is provided/obsoleted by the primary python38-avahi package. avahi-discover is the only extra file provided here, not avahi-bookmarks ==== baloo5 ==== Version update (5.78.0 -> 5.79.0) Subpackages: baloo5-imports baloo5-kioslaves libKF5Baloo5 libKF5BalooEngine5 - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Too many changes to list here. ==== bluez-qt ==== Version update (5.78.0 -> 5.79.0) Subpackages: bluez-qt-imports bluez-qt-udev libKF5BluezQt6 - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Use QLatin1Char instead of wchat_t * Add missing list include * Change QStringList forward decl to include ==== breeze5-icons ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * new telegram-panel icons * Use correct style for align-horizontal-left-out icons (kde#432273) * Add new kickoff icons Matches the appearance of current kickoff (kde#431883) * Add rating-half, 100% opacity for rating-unrated, Text color for rating in dark theme * Remove KeePassXC icons (kde#431593) * Fix @3x icons (kde#431475) * add neochat icon ==== btrfsmaintenance ==== - Require libzypp plugin only if zypper is used (Required for e.g. image based systems). ==== dhcp ==== Version update (4.3.5 -> 4.4.2) Subpackages: dhcp-client - update to 4.4.2: * Please note that that ISC DHCP is now licensed under the Mozilla Public License, MPL 2.0. In general, the areas of focus for ISC DHCP 4.4 were: 1. Dynamic DNS additions 2. dhclient improvements 3. Support for dynamic shared libraries * Added the interface name to socket initialization failure log messages. Prior to this the log messages stated only the error reason without stating the target interface. * Corrected buffer pointer logic in dhcrelay functions that manipulate agent relay options. Thanks to Thomas Imbert of MSRC Vulnerabilities & Mitigations for reporting the issue. * Corrected unresolved symbol errors building relay_unittests when configured to build using libtool. * A new configuration parameter, ping-cltt-secs (v4 operation only), has been added to allow the user to specify the number of seconds that must elapse since CLTT before a ping check is conducted. Prior to this, the value was hard coded at 60 seconds. Please see the server man pages for a more detailed discussion. * A new configuration parameter, ping-timeout-ms (v4 operation only), has been added that allows the user to specify the amount of time the server waits for a ping-check response in milliseconds rather than in seconds (via ping-timeout). When greater than zero, the value of ping-timeout-ms will override the value of ping-timeout. Thanks to Jay Doran from Bluecat Networks for suggesting this feature. * An experimental tool called, Keama (KEA Migration Assistant), which helps translate ISC DHCP configurations to Kea configurations, is now included in the distribution. * Corrected a misuse of the BIND9 DDNS API which caused DDNS updates to be carried out over TCP rather than UDP. The coding error was exposed by migration to BIND9 9.11. Thanks to Jinmei Tatuya at Infoblox for reporting the issue. * Bind9 now defaults to requiring python to build. The Makefile for building Bind9 when bundled with ISC DHCP was modified to turn off this dependency. * Corrected a dual-stack mixed-mode issue that occurs when both ddns-guard-id-must-match and ddns-other-guard-is-dynamic are enabled and that caused the server to incorrectly interpret the presence of a guard record belonging to another client as a case of no guard record at all. Thanks to Fernando Soto from BlueCat Networks for reporting this issue. * Corrected a compilation issue that occurred when building without DNS update ability (e.g. by undefining NSUPDATE). * Corrected an issue that was causing the server, when running in DHPCv4 mode, to segfault when class lease limits are reached. Thanks to Peter Nagy at Porion-Digital for reporting the matter and submitting a patch. * Made minor changes to eliminate warnings when compiled with GCC 9. Thanks to Brett Neumeier for bringing the matter to our attention. * Fixed potential memory leaks in parser error message generation spotted by Coverity, CIDs: 1448191, 1448193, 1448194, 1448195 * Updated URL of IEEE oui.txt in contrib/dhcp-lease-list.pl. Thanks to Tommy Smith for contributing the patch. * Fixed define flags when using SO_BINDTODEVICE. Thanks to Joe LeVeque for reporting the issue. * Applied a patch from OpenBSD to always set the scope id of outbound DHPCv6 packets. Note this change only applies when compiling under OpenBSD. Thanks to Brad Smith at OpenBSD from bringing it to our attention. * Modified dhclient to not discard config file leases that are duplicates of server-provided leases and to retain such leases after they have been used as the fallback active lease and DHCP service has been restored. This allows them to be used more than once during the lifetime of a dhclient instance. This applies to DHCPv4 operation only. * Corrected a number of reference counter and zero-length buffer leaks. Thanks to Christopher Ertl of MSRC Vulnerabilities & Mitigations for pointing them out. * Closed a small window of time between the installation of graceful shutdown signal handlers and application context startup, during which the receipt of shutdown signal would cause a REQUIRE() assertion to occur. Note this issue is only visible when compiling with ENABLE_GENTLE_SHUTDOWN defined. * Corrected a buffer overflow that can occur when retrieving zone names that are more than 255 characters in length. * The "d" domain name option format was incorrectly handled as text instead of RFC 1035 wire format. Thanks to Jay Doran at BlueCat Networks for reporting this issue. * Improved the error message issued when a host declaration has both a uid and a dhcp-client-identifier. Server configuration parsing will now fail if a host declaration specifies more than one uid. * Updated developer's documentation on building and running unit tests. Removed support for --with-atf=bind as BIND9 no longer bundles in ATF source. * Fixed a syntax error in ldap.c which cropped up under Ubuntu 18.04.1/gcc 7.4.0. Thanks to Charles Hedrick for pointing it out. * Added clarification to dhcp-options.5 section on ip-address values describing the first-use DNS resolution of options with hostnames as values (e.g. next-server). * The option format for the server option omapi-key was changed to a format type 'k' (key name); while server options ldap-port and ldap-init-retry were changed to 'L' (unsigned 32-bit integer). These three options were inadvertantly broken when the 'd' format content was changed to comply with RFC 1035 wire format (see Gitlab #2). * A delayed-ack value of 0 (the default), now correctly disables the delayed feature. A change in 4.4.0 prohibited lease updates marking leases active from be written to the lease file when delayed-ack is 0. This in turn, caused servers to lose active lease assignments upon restart. ! Option reference count was not correctly decremented in error path when parsing buffer for options. Reported by Felix Wilhelm, Google Security Team. CVE: CVE-2018-5733 ! Corrected an issue where large sized 'X/x' format options were causing option handling logic to overwrite memory when expanding them to human readable form. Reported by Felix Wilhelm, Google Security Team. CVE: CVE-2018-5732 * Added use of new Bind9 compatibility header files, that are now necessary to supply type definitions for primitive data types, removed from Bind9 proper. Altered util/bind.sh to pull from Bind9 repo on gitlab. * Duplicate address detection when binding to a new IPv6 address was added to the following dhclient scripts: linux,freebsd,netbsd,openbsd, and macos. The scripts will check for DAD errors after binding to a new IPv6 address for at most --dad-wait-time seconds. If a DAD error is detected the script will exit with a value of 3, instructing dhclient to decline the address. If dad-wait-time is zero (the default), DAD error checking is not peformed. * Support for sending and receiving additional DHCP4 options has been added to both the dhcpd and dhclient. Specifically: option codes 93,94, and 97 (RFC 4578); code 150 (RFC 5859); and codes 209,219, and 211 (RFC 5071). Beyond configuring, sending, requesting, and receiving these options neither server nor client apply any additional logic based on their values. Thanks to Peter Lewis for requesting this change. * Added clarifying text to dhcpd.conf.5 explaining the class match expressions cannot rely on the results of executable statements. * Fixed a bug which causes dhcpd and dhclient to crash on certain systems when given relative path names for lease or pid files on the command line. Affected systems are those on which the C library function, realpath() does not support a second parameter value of NULL (see manpages for realpath(3)). * Fixed a build issue when building with embedded BIND9 under OpenBSD that was causing BIND9 build to not generate dns/enumclass.h and dns/enumtype.h. * Added <dhcp>/m4/README to the distribution tarball. Some versions of ac_local() treat the absence of the m4 subdirectory as error rather than warning. This was causing the call to autoreconf, necessary for building with libtool, to fail. * Added experimental support for relay port (draft-ietf-dhc-relay-port-10.txt) feature for DHCPv4, DHCPv6 and DHCPv4-over-DHCPv6. Relay port has to be enabled at compile time via --enable-relay-port and is fully backward compatible (i.e. works with previous implementations of servers and relays using the standard ports). A new --rp <relay-port> command line option specifies to dhcrelay an alternate source port for upstream (i.e. toward the server) messages. Thanks to Naiming Shen and Enke Chen of Cisco systems for submitting these patches. * Added --release-on-roam to dhcpd server. When enabled and the server detects that a DHCPv6 client (IAID+DUID) has roamed to a new network, it will release the pre-existing leases on the old network and emit a log statement similar to the following: "Client: <id> roamed to new network, releasing lease: <address>" The server will carry out all of the same steps that would normally occur when a client explicitly releases a lease. This behavior is disabled by default and may only be specified globally. Prior to this the server renders the leases unavailable until they expire or the server is restarted. Clients that need leases in multiple networks must supply a unique IAID in each IA. When release-on-roam is disabled (the default) the server maintains the prior behavior of making such leases unavailable until they expire or the server is restarted. Clients that need leases in multiple networks must supply a unique IAID in each IA. This parameter may only be specified at the global level. Thanks to Fernando Soto from BlueCat Networks for suggesting this change. * Support for delayed-ack is now compiled in by default. Prior to this it had to be enabled at compile time via --enable-delayed-acks. The default value for delayed-ack, however, has been changed from 28 to 0 (i.e. disabled). This was done to minimize the impact on users not currently using the feature. Please note that the delayed-ack feature is not currently compatible with support for DHPCv4-over-DHCPv6 so when a 4to6 port command line argument enables this in the server the delayed-ack value is reset to 0. * Added to the server (-6) a new statement, local-address6, which specifies the source address of packets sent by the server. An additional flag, bind-local-address6, disabled by default, binds the service socket to to local-address6. Note that bind-local-address does not work with direct clients: a relay has to forward packets to the server using the local-address6 destination. * The server now recognizes environment variables PATH_DHCPD_DB and PATH_DHCPD_PID. These had been incorrectly compiled out of the code unless DHCPv6 support was disabled. Additionally, the server man pages were corrected to accurately reflect how the server chooses file names (see lease-file-name and pid-file-name statements). Thanks to Fernando Soto at Bluecat Networks for bringing this matter to our attention. * Removed an "Impossible condition" error upon exit in the dhcpd server that has been shutdown via OMAPI. This condition was only apparent under Solaris when building with --enable-use-sockets and --enable-ipv4-pktinfo. * Corrected some minor Coverity issues: CID 1426059, 1426058, and 1426057. * Added missing text to dhclient.8 and expanded release note coverage for --address-prefix-len changes. - remove dhcp-CVE-2019-6470.patch, 0013-dhcp-4.2.x-dhcpv6-decline-on-DAD-failure.872609.patch: merged upstream - 0006-dhcp-4.3.2-dhclient-send-hostname-or-fqdn.patch 0009-dhcp-4.2.6-close-on-exec.patch 0016-infiniband-support.patch 0018-client-fail-on-script-pre-init-error-bsc-912098.patch 0021-dhcp-ip-family-symlinks.patch: refresh against newer code base - build with --enable-log-pid (log pid) and enable-binary-leases (faster binary looup for large leases files) ==== elfutils ==== Version update (0.182 -> 0.183) Subpackages: libasm1 libdw1 libelf1 - Update to version 0.183: debuginfod: New thread-busy metric and more detailed error metrics. New --fdcache-mintmp and tracking of filesystem freespace. New increased webapi concurrency while grooming. debuginfod-client: DEBUGINFOD_SONAME macro added to debuginfod.h which can be used to dlopen the libdebuginfod.so library. New function debuginfod_set_verbose_fd and DEBUGINFOD_VERBOSE environment variable. config: profile.sh and profile.csh won't export DEBUGINFOD_URLS unless configured --enable-debuginfod-urls[=URLS] elflint, readelf: Recognize SHF_GNU_RETAIN. Handle SHT_X86_64_UNWIND as valid relocation target. - Remove config-do-not-define-DEBUGINFOD_URLS-environment-var.patch patch. ==== frameworkintegration ==== Version update (5.78.0 -> 5.79.0) Subpackages: frameworkintegration-plugin libKF5Style5 - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Fix window decorations not being uninstallable (kde#414570) ==== fuse3 ==== Version update (3.10.1 -> 3.10.2) - Update to release 3.10.2 * Allow "nonempty" as a mount option, for backwards compatibility with fusermount 2. The option has no effect since mounting over non-empty directories is allowed by default. * FUSE filesystems can now be mounted underneath EXFAT mountpoints. ==== gnome-software ==== Version update (3.38.0 -> 3.38.1) - Update to version 3.38.1: + Fix package details not found for some packages. + Ignore harmless warnings when using unusual fwupd versions. + Updated translations. ==== json-glib ==== Version update (1.6.0 -> 1.6.2) Subpackages: libjson-glib-1_0-0 typelib-1_0-Json-1_0 - Update to version 1.6.2: + Fix build reproducibility. + Fix parsing of UTF-16 surrogate pairs. + Ignore UTF-8 BOM. ==== kactivities-stats ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - No code change since 5.78.0 ==== kactivities5 ==== Version update (5.78.0 -> 5.79.0) Subpackages: kactivities5-imports libKF5Activities5 - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - No code change since 5.78.0 ==== karchive ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Adapt to Qt6 QTextCodec changes ==== kauth ==== Version update (5.78.0 -> 5.79.0) Subpackages: libKF5Auth5 libKF5AuthCore5 - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Use QWindow instead of QWidget where possible ==== kbookmarks ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - No code change since 5.78.0 ==== kcmutils ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Ensure single column mode * remove window dragging hack ==== kcodecs ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Compile benchmark tests, but don't run them automatically with ctest * Remove the usage of non-UTF-8 string literals ==== kcompletion ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Add missing include * Remove unused include * Fix regression caused due to porting from operator+ to operator| (kde#431493) - Drop upstream patch: * kcompletion/0001-Fix-regression-caused-due-to-porting-from-operator-t.patch ==== kconfig ==== Version update (5.78.0 -> 5.79.0) Subpackages: kconf_update5 libKF5ConfigCore5 libKF5ConfigGui5 - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Fix kconfig_compiler doxygen formatting * Refactor window geometry save/restore code to be less fragile * Fix restoring window size when closed while maximized (kde#430521) * Remove dead cmake code * KConfig: preserve the milliseconds component of QDateTime * Adapt to Qt6 text codec changes * Port to QRecursiveMutex * Fix window positioning regression due to incorrect fallback in fallback ==== kconfigwidgets ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Include QStringList instead of QtContainerFwd * Improve includes ==== kcoreaddons ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Too many changes to list here. ==== kcrash ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - No code change since 5.78.0 ==== kdbusaddons ==== Version update (5.78.0 -> 5.79.0) Subpackages: kdbusaddons-tools libKF5DBusAddons5 - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - No code change since 5.78.0 ==== kdeclarative ==== Version update (5.78.0 -> 5.79.0) Subpackages: kdeclarative-components libKF5CalendarEvents5 libKF5Declarative5 libKF5QuickAddons5 - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * 1 column lower limit on mobile 2 elsewhere * allow single column items * KeySequenceItem: Assign empty string on clear instead of undefined (kde#432106) * typo-- * Disambiguate selected vs hovered states for GridDelegate (kde#406914) * Use Single mode by default * GridDelegate: remove hover animations ==== kded ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - No code change since 5.78.0 ==== kdelibs4support ==== Version update (5.78.0 -> 5.79.0) Subpackages: libKF5KDELibs4Support5 - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - No code change since 5.78.0 ==== kdesu ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - No code change since 5.78.0 ==== kdnssd-framework ==== Version update (5.78.0 -> 5.79.1) - Update to 5.79.1 * Revert "Switch from custom K_D to Q_DECLARE_PRIVATE_D & Q_D" (kde#432949) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Replace QStringList forward decl with QtContainerFwd ==== kdoctools ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * A tag fixed ==== kfilemetadata5 ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * ffmpegextractor: Use av_find_default_stream_index to find video stream ==== kglobalaccel ==== Version update (5.78.0 -> 5.79.0) Subpackages: kglobalaccel5 libKF5GlobalAccel5 libKF5GlobalAccelPrivate5 - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - No code change since 5.78.0 ==== kguiaddons ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - No code change since 5.78.0 ==== kholidays ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Update Mauritius holidays for 2021 * Update Taiwanese holidays ==== ki18n ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Port to QRecursiveMutex * Don't set codec for textstream when building against Qt6 ==== kiconthemes ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Compile benchmark, but don't run it automaitcally with `ctest` ==== kidletime ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - No code change since 5.78.0 ==== kinit ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - No code change since 5.78.0 ==== kio ==== Version update (5.78.0 -> 5.79.0) Subpackages: kio-core - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Too many changes since 5.78.0, only listing bugfixes: * Fix default codec being set to "US-ASCII" in KIO apps (kde#432406) * CopyJob: fix crash with skip/retry (kde#431731) * Fix lockup when renaming a file from properties dialog (kde#431902) * Tweak KFileWidget::slotOk logic when in files+directory mode (kde#431454) ==== kirigami2 ==== Version update (5.78.0 -> 5.79.0) Subpackages: libKF5Kirigami2-5 - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Too many changes since 5.78.0, only listing bugfixes: * Don't manually call reverseTwinsChanged when destructing FormLayout (kde#431419) * Don't consider Synthetized mouse events as Mouse (kde#431542) * correctly update header size (kde#429235) * [controls/OverlaySheet]: Respect Layout.maximumWidth (kde#431089) * [controls/ListItemDragHandle] Fix wrong arrangement on no-scrolling case (kde#431214) ==== kitemmodels ==== Version update (5.78.0 -> 5.79.0) Subpackages: kitemmodels-imports libKF5ItemModels5 - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Port from std::auto_ptr to std::unique_ptr * Use nullptr instead of 0 * adds additional nullptr checks * autotests: don't run the bihash benchmark automatically * autotests: add missing subdir bihash ==== kitemviews ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Add missing include ==== kjobwidgets ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Have more private classes inherit from those of the parents ==== knewstuff ==== Version update (5.78.0 -> 5.79.0) Subpackages: knewstuff-imports libKF5NewStuff5 libKF5NewStuffCore5 - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Too many changes to list here. ==== knotifications ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Remove unused forward declaration * Remove obsolete QLabel mention in KNotification::event() doc * Emit NewMenu when new context menu is set. * Deprecate KPassivePopup * Make sure all backends ref the notification before doing work * Make the notification example app build and work on Android * Move notification id handling into KNotification class * Fix removing pending notification from queue (kde#423757) * Remove faulty check ==== knotifyconfig ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - No code change since 5.78.0 ==== kpackage ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Add missing includes * Document PackageStructure ownership when using PackageLoader ==== kparts ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - No code change since 5.78.0 ==== kpeople5 ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - No code change since 5.78.0 ==== kpty ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Fix generating the full path to kgrantpty in the code for ! HAVE_OPENPTY ==== kquickcharts ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Add a "first" method to ChartDataSource and use it in Legend (kde#432426) ==== kross ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - No code change since 5.78.0 ==== krunner ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Add .vscode to .gitignore file * Check for selected action in case of informational match * Fix empty result string for current activity * Deprecate overloads for QueryMatch ids * [DBus Runner] Test RemoteImage ==== kservice ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Deprecate KPluginInfo::dependencies() * CMake: Specify add_custom_command() dependencies * Explicitly deprecate overload for KToolInvocation::invokeTerminal * Add unit test to command parsing in KToolInvocation * Add method to get KServicePtr of default terminal application * Add method to set workingDirectory of service * Add new method to get KServicePtr of default terminal application ==== ktexteditor ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Too many changes since 5.78.0, only listing bugfixes: * [Vimode] Do not switch view when changing case (~ command) (kde#432056) * Increase maximum indentation width to 200 (kde#432283) * Only show bookmark chars error when in vimode (kde#424172) * Retain replacement text as long as the power search bar is not closed (kde#338111) * Allow "Dynamic Word Wrap Align Indent" to be disabled (kde#430987) * [Vimode]Fix search inside fold ranges (kde#376934) * [Vimode] Fix Macro Completion Replay (kde#334032) ==== ktextwidgets ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Have more private classes inherit from those of the parents ==== kunitconversion ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Define variable before using it ==== kwallet ==== Version update (5.78.0 -> 5.79.0) Subpackages: kwalletd5 libKF5Wallet5 libkwalletbackend5-5 - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - No code change since 5.78.0 ==== kwayland ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - No code change since 5.78.0 ==== kwidgetsaddons ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Make use of AUTORCC * Add missing includes * Port away from QDesktopWidget * Have more private classes inherit from those of the parents * Explicitly include QStringList ==== kwindowsystem ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Add fractional opacity convenience helpers * Really fix includes * Fix includes * xcb: Work with the active screen as reported by QX11Info::appScreen(). ==== kxmlgui ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Fix includes * Add KXMLGUIFactory::shortcutsSaved signal * Use the correct kde get involved url (kde#430796) ==== libKF5ModemManagerQt ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - No code change since 5.78.0 ==== libKF5NetworkManagerQt ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Add missing include ==== libcap ==== Version update (2.47 -> 2.48) - update to 2.48: * More uniform use of $(MAKE) in Makefiles * No longer include symlinks in the git tree * Provide support for make GOLANG=no ... * Provide support for pointing at a specific build of the go binary * camelCase the contrib/seccomp/explore.go program * A number of documentation fixes to man pages and source code comments * Last use of GO major version 0 ==== libdatrie ==== Version update (0.2.12 -> 0.2.13) - update to 0.2.13: - Fix wrong key listing in byte trie - Fix cross-compiling issue caused by AC_FUNC_MALLOC - Fix isspace() arg problem on NetBSD. - Fix some documentations. - Really use TRIE_CHAR_TERM in TrieChar string termination. Changing TRIE_CHAR_TERM definition now won't break the code. - Fix Windows build issue by avoiding <unistd.h> include. - [New APIs] Add serialization of the trie into memory buffer. ==== libevdev ==== Version update (1.9.1 -> 1.11.0) - update to 1.11.0: * One new API, libevdev_disable_property() * Kernel 5.8 changed the SW_MAX define from 0x0f to 0x10. In some niche cases this causes issues if libevdev and the software build against different headers and thus end up with different values * include: sync event codes with kernel 5.10 * Fix included license to the "always intended" MIT license ==== libmfx ==== - u_gcc11.patch * fixes build against gcc11 (boo#1181871) ==== mpfr ==== - Add cummulative patch mpfr-4.1.0-p7.diff fixing various bugs. ==== openjpeg2 ==== Version update (2.3.1 -> 2.4.0) - update to 2.4.0: * Encoder: add support for multithreading #1248 * Encoder: add support for generation of PLT markers #1246 * Encoder: single-threaded performance improvements in forward DWT for 5-3 and 9-7 (and other improvements) #1253 * Encoder: support IMF profiles #1235 * Many bug fixes (including security fixes) - drop 024b8407392cb0b8.patch, 05f9b91e60debda0.patch, 21399f6b7d318fcd.patch, 3aef207f90e937d4.patch, 4cb1f663049aab96.patch: upstream ==== pipewire ==== Version update (0.3.20 -> 0.3.21) Subpackages: gstreamer-plugin-pipewire libpipewire-0_3-0 pipewire-modules pipewire-spa-plugins-0_2 pipewire-spa-tools pipewire-tools - Remove the pulseaudio provides from pipewire-pulseaudio: We first need to ensure our KDE patterns (and others) become smart enough to favor pulseaudio until we are ready for the switch. - Update to version 0.3.21: * Highlights + Many PulseAudio compatibility fixes. Handling of corked streams, the prebuf setting, seek modes and stream flags are now implemented correctly. + Ports and Profiles are now managed by the session manager and can save and restore previous settings. ALSA device handling has been tweaked for maximum compatibility at the expense of latency. There are tuning options in the config file. + Improved Bluetooth support. HSP is disabled by default because it is old and deprecated and in some cases causes conflicts with the newer HFP profile. Codec switching is now implemented as well. PipeWire accepts donations with liberapay now. * PipeWire improvements + Improve draining in pw-stream. pw-stream now uses busy metadata by default. This makes sure that no writer can write to buffers when readers are still busy. + Fix handling of empty array/choice instead of failing. + Fix crashes when creating properties from empty strings. + Make it possible to pass an array to module-access access.allowed variables + Fix small bug in argument parsing in pw-cat * Session-manager + Restore route volumes in all cases, also when switching routes. + Use a default route volume for unknown routes instead of letting the system decide on a default. Improve profile handling. Don't try to restore unavailable profiles. Implement the profile switching in the session manager now. + Fix handling of Virtual sources as defaults. + Handle port switching in the session manager. Implement save and restore of default ports per profile. * GStreamer + Fix a crash with zero SPA_PARAM_BUFFERS_size * Device support + v4l2-source will now respect the requested memory types. + ALSA buffering has been tweaked. USB devices should have less XRuns by default. Parameters can be tweaked to decrease the latency on capable devices. Also fix a case where a quantum change would cause an xrun. + Fix mute in bluetooth devices bluetooth devices are not paused in idle anymore for improved compatibility. + Codec switching for bluetooth is implemented along with config options to select the codecs manually. + HSP for bluetooth is now disabled by default. Most devices support the newer HFP profile and some devices fail when both are available. + Reduce the amount of events the ALSA plugins emit by bundling them. * PulseAudio server + Implement the suspend command + Fixes volume in sample info + Fix playback of samples, sometimes samples would be clipped short. Also implement the target sink for the sample. + Use rate match to feed samples. This way the latency can be kept to a minimum. + Latency has been tuned some more, more closely emulating pulseaudio behaviour. + Improve default sink/source handling. Make sure all events are sent correctly when defaults change. + Handle underrun better without causing sync issues. Make sure to pause in corked state. + Implement rewind due to seeks, fixes GStreamer seeking. - Do not remove alsa-card-profiles, they are required - Provide pulseaudio by pipewire-pulseaudio: there are various packages in the distro that require pulseaudio, but essentially, they should be happy with pipewire-pulseaudio as a replacement. Do not provide the symbol though, as we do not (yet) want to automatically migrate users over. ==== plasma-framework ==== Version update (5.78.0 -> 5.79.0) Subpackages: libKF5Plasma5 plasma-framework-components - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Too many changes since 5.78.0, only listing bugfixes: * widgets>lineedit.svg: fix pixel misalignment woes (kde#432422) * Add RESET to globalShortcut property (kde#431006) ==== prison-qt5 ==== Version update (5.78.0 -> 5.79.0) Subpackages: libKF5Prison5 prison-qt5-imports - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - No code change since 5.78.0 ==== procps ==== Version update (3.3.16 -> 3.3.17) Subpackages: libprocps8 - Add /usr/share/man/uk dir to file list for lang sub package - Fix directory for Ukrainian man pages translations. - Move localized man pages to lang package. - Remove obsolete conditionals. - Remove obsolete --enable-oomem option. - Run spec-cleaner. - Update to procps-ng-3.3.17 * library: Incremented to 8:3:0 (no removals or additions, internal changes only) * all: properly handle utf8 cmdline translations issue #176 * kill: Pass int to signalled process merge #32 * pgrep: Pass int to signalled process merge #32 * pgrep: Check sanity of SG_ARG_MAX issue #152 * pgrep: Add older than selection merge #79 * pidof: Quiet mode merge #83 * pidof: show worker threads Redhat #1803640 * ps.1: Mention stime alias issue #164 * ps: check also match on truncated 16 char comm names * ps: Add exe output option Redhat #1399206 * ps: A lot more sorting available merge #99 * pwait: New command waits for a process merge #97 * sysctl: Match systemd directory order Debian #950788 * sysctl: Document directory order Debian #951550 * top: ensure config file backward compatibility Debian #951335 * top: add command line 'e' for symmetry with 'E' issue #165 * top: add '4' toggle for two abreast cpu display issue #172 * top: add '!' toggle for combining multiple cpus * top: fix potential SEGV involving -p switch merge #114 * vmstat: Wide mode gives wider proc columns merge #48 * watch: Add environment variable for interval merge #62 * watch: Add no linewrap option issue #182 * watch: Support more colors merge #106,#109 * free,uptime,slabtop: complain about extra ops issue #181 - Remove now obsolete upstream patches * procps-check-sanity-of-SC_ARG_MAX.patch * procps-ng-3e1c00d0.patch - Port patches * procps-ng-3.3.10-integer-overflow.patch * procps-ng-3.3.10-large_pcpu.patch * procps-ng-3.3.8-accuracy.dif * procps-ng-3.3.8-bnc634840.patch * procps-ng-3.3.8-petabytes.patch * procps-ng-3.3.8-tinfo.dif * procps-ng-3.3.9-w-notruncate.diff * procps-v3.3.3-read-sysctls-also-from-boot-sysctl.conf-kernelversion.diff ==== purpose ==== Version update (5.78.0 -> 5.79.0) Subpackages: libKF5Purpose5 libKF5PurposeWidgets5 - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * [nextcloud] Rework configuration UI * Evaluate initial configuration * Clip ListViews in kdeconnect and bluetooth config * Remove unneeded Layout attached properties * [plugins/nextcloud] Use Nextcloud icon * [cmake] Move find_package to toplevel CMakeLists.txt ==== python-Jinja2 ==== Version update (2.11.2 -> 2.11.3) - update to 2.11.3 * Improve the speed of the urlize filter by reducing regex backtracking. Email matching requires a word character at the start of the domain part and only word characters in the TLD (CVE-2020-28493 bsc#1181944). ==== python-cffi ==== Version update (1.14.4 -> 1.14.5) - update to 1.14.5: * Source fix for old gcc versions ==== python-cryptography ==== Version update (3.3.1 -> 3.3.2) - update to 3.3.2: * SECURITY ISSUE: Fixed a bug where certain sequences of update() calls when symmetrically encrypting very large payloads (>2GB) could result in an integer overflow, leading to buffer overflows. CVE-2020-36242 ==== python-idna ==== Version update (2.10 -> 3.1) - update to 3.1: - Ensure license is included in package (Thanks, Julien Schueller) - No longer mark wheel has universal (Thanks, Matthieu Darbois) - Test on PowerPC using Travis CI - Python 2 is no longer supported (the 2.x branch supports Python 2, use "idna<3" in your requirements file if you need Python 2 support) - Support for V2 UTS 46 test vectors. ==== python-pyrsistent ==== - Remove remnant requirements of six and numpy: These are neither used anywhere in the package code, nor in the tests. ==== python-pytz ==== Version update (2020.5 -> 2021.1) - update to 2021.1: * update to IANA 2021a timezone release ==== qqc2-desktop-style ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * [combobox] Fix touchpad scroll speed (kde#400258) * qw can be null * Support QQuickWidget (kde#428737) * allow drag window from empty areas ==== reiserfs ==== - Move soname link to library package ==== solid ==== Version update (5.78.0 -> 5.79.0) Subpackages: libKF5Solid5 solid-imports - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * CMake: use configure_file() to ensure noop incremental builds * [Fstab] Ignore docker overlay mounts (kde#422385) ==== sonnet ==== Version update (5.78.0 -> 5.79.0) Subpackages: libKF5SonnetCore5 libKF5SonnetUi5 - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Dont do multiple lookups when one is enough ==== srt ==== - Add patch to fix build with GCC 11 (boo#1181883) * 0001-Fix-build-with-GCC-11.patch ==== syntax-highlighting ==== Version update (5.78.0 -> 5.79.1) Subpackages: libKF5SyntaxHighlighting5 - Update to 5.79.1 * Breeze Light: restore original black color for Control Flow - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Too many changes since 5.78.0, only listing bugfixes: * Bash, Zsh: fix cmd;; in a case (kde#430668) * email.xml: Detect nested comments and escaped characters (kde#425345) * Bash: fix } in ${!xy*} and more Parameter Expansion ==== system-users ==== Subpackages: system-group-hardware system-group-kvm system-user-lp system-user-nobody - system-user-tss.conf: Remove group entry, not needed and did contain syntax errors - remove duplicate group entry: - system-user-tftp.conf - system-user-uuidd.conf - system-user-uucp.conf - system-user-uucp.conf - system-user-ftp.conf - system-user-games.conf - system-user-news.conf ==== sysuser-tools ==== - Don't abort on unbound first argument - Remove sysusers/nscd workaround - Use systemd-sysusers only if /proc is mounted, don't require it - Set --replace option for systemd-sysusers - Ignore nscd return code - If systemd-sysusers is used to create a new user/group, invalidate the nscd passwd and group cache to make the new user/group visible immediately as workaround [bsc#1181121]. Needs to be removed after sytemd-sysusers get's fixed, since we invalidate the cache even if the user/group file wasn't changed. - An "u" in a sysusers.d file will create an user and a group. Create provides for both, user and group. - Use systemd-sysusers as default to create and update the user account. Fixes the problem that a modified sysusers config file get's ignored by useradd and adduser [bsc#1180549]. ==== telepathy-glib ==== Version update (0.24.1 -> 0.24.2) Subpackages: libtelepathy-glib0 typelib-1_0-TelepathyGlib-0_12 - Update to version 0.24.2: + Enhancements: - Port build tools to Python 3 - Update and fix tests for Python 3 + Fixes: - Stop hardcoding python's path in .py scripts - Fixed some code issues discovered by compiling with clang - Replaced tp_verify_* with G_STATIC_ASSERTs, fixing the build with more recent gtk-doc - autogen.sh: run gtkdocize from $srcdir in out-of-source builds - Tests: . Fix build failure with glib >= 2.46 due to duplicate test paths . Fix a service file path to fix the build with installed tests - call-channel: fix a memory leak - debug-sender: fix messages queue locking - TpBasePasswordChannel: fix gtk-doc comment for finished signal - protocol: fix a memory leak - Fix a crash when creating a conference call ==== threadweaver ==== Version update (5.78.0 -> 5.79.0) - Update to 5.79.0 * New feature release * For more details please see: * https://kde.org/announcements/kde-frameworks-5.79.0 - Changes since 5.78.0: * Fix map interators when building against Qt6 * Don't explicitly init mutexes as NonRecursive * Remove unused include ==== util-linux ==== Subpackages: libblkid1 libfdisk1 libmount1 libsmartcols1 libuuid1 - libmount: don't use "symfollow" for helpers on user mounts (boo#1181750, util-linux-libmount-dont-use-symfollow.patch) - Override GTKDOCIZE with /bin/true so we can run autoreconf without needing gtk-doc as a dependency. ==== util-linux-systemd ==== - libmount: don't use "symfollow" for helpers on user mounts (boo#1181750, util-linux-libmount-dont-use-symfollow.patch) - Override GTKDOCIZE with /bin/true so we can run autoreconf without needing gtk-doc as a dependency. ==== vulkan-loader ==== Version update (1.2.165 -> 1.2.169) - Update to release 1.2.169 * loader: Do not return OOM when layer count is 0 - Update to release 1.2.166 * No user-visible changes ==== xen ==== Version update (4.14.1_08 -> 4.14.1_11) - bsc#1181921 - GCC 11: xen package fails gcc11-fixes.patch - Drop gcc10-fixes.patch - Upstream bug fixes (bsc#1027519) 5fedf9f4-x86-hpet_setup-fix-retval.patch 5ff458f2-x86-vPCI-tolerate-disabled-MSI-X-entry.patch 5ff71655-x86-dpci-EOI-regardless-of-masking.patch 5ffc58e8-x86-ACPI-dont-overwrite-FADT.patch 600999ad-x86-dpci-do-not-remove-pirqs-from.patch (Replaces xsa360.patch) 600ab341-x86-vioapic-EOI-check-IRR-before-inject.patch 6013e4bd-memory-bail-from-page-scrub-when-CPU-offline.patch 6013e546-x86-HVM-reorder-domain-init-error-path.patch - bsc#1180491 - "Panic on CPU 0: IO-APIC + timer doesn't work!" 6011bbc7-x86-timer-fix-boot-without-PIT.patch ==== zxing-cpp ==== Version update (1.1.0 -> 1.1.1) - Update to 1.1.1. No changelog available. - Drop fix-pkg-config-file.patch. Merged upstream - Add 0001-Fix-build-with-GCC-11.patch to fix GCC 11 build issues (boo#1181915)

1 0

New Kubic snapshot 20210217 released!
by Richard Brown 18 Feb '21

18 Feb '21

Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=1&version=T… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: btrfsmaintenance dhcp (4.3.5 -> 4.4.2) elfutils (0.182 -> 0.183) fuse3 (3.10.1 -> 3.10.2) json-glib (1.6.0 -> 1.6.2) libcap (2.47 -> 2.48) procps (3.3.16 -> 3.3.17) python-Jinja2 (2.11.2 -> 2.11.3) python-cffi (1.14.4 -> 1.14.5) python-cryptography (3.3.1 -> 3.3.2) python-idna (2.10 -> 3.1) python-pyrsistent python-pytz (2020.5 -> 2021.1) python-pyzmq (20.0.0 -> 22.0.3) reiserfs salt system-users sysuser-tools util-linux util-linux-systemd xen (4.14.1_08 -> 4.14.1_11) === Details === ==== btrfsmaintenance ==== - Require libzypp plugin only if zypper is used (Required for e.g. image based systems). ==== dhcp ==== Version update (4.3.5 -> 4.4.2) Subpackages: dhcp-client - update to 4.4.2: * Please note that that ISC DHCP is now licensed under the Mozilla Public License, MPL 2.0. In general, the areas of focus for ISC DHCP 4.4 were: 1. Dynamic DNS additions 2. dhclient improvements 3. Support for dynamic shared libraries * Added the interface name to socket initialization failure log messages. Prior to this the log messages stated only the error reason without stating the target interface. * Corrected buffer pointer logic in dhcrelay functions that manipulate agent relay options. Thanks to Thomas Imbert of MSRC Vulnerabilities & Mitigations for reporting the issue. * Corrected unresolved symbol errors building relay_unittests when configured to build using libtool. * A new configuration parameter, ping-cltt-secs (v4 operation only), has been added to allow the user to specify the number of seconds that must elapse since CLTT before a ping check is conducted. Prior to this, the value was hard coded at 60 seconds. Please see the server man pages for a more detailed discussion. * A new configuration parameter, ping-timeout-ms (v4 operation only), has been added that allows the user to specify the amount of time the server waits for a ping-check response in milliseconds rather than in seconds (via ping-timeout). When greater than zero, the value of ping-timeout-ms will override the value of ping-timeout. Thanks to Jay Doran from Bluecat Networks for suggesting this feature. * An experimental tool called, Keama (KEA Migration Assistant), which helps translate ISC DHCP configurations to Kea configurations, is now included in the distribution. * Corrected a misuse of the BIND9 DDNS API which caused DDNS updates to be carried out over TCP rather than UDP. The coding error was exposed by migration to BIND9 9.11. Thanks to Jinmei Tatuya at Infoblox for reporting the issue. * Bind9 now defaults to requiring python to build. The Makefile for building Bind9 when bundled with ISC DHCP was modified to turn off this dependency. * Corrected a dual-stack mixed-mode issue that occurs when both ddns-guard-id-must-match and ddns-other-guard-is-dynamic are enabled and that caused the server to incorrectly interpret the presence of a guard record belonging to another client as a case of no guard record at all. Thanks to Fernando Soto from BlueCat Networks for reporting this issue. * Corrected a compilation issue that occurred when building without DNS update ability (e.g. by undefining NSUPDATE). * Corrected an issue that was causing the server, when running in DHPCv4 mode, to segfault when class lease limits are reached. Thanks to Peter Nagy at Porion-Digital for reporting the matter and submitting a patch. * Made minor changes to eliminate warnings when compiled with GCC 9. Thanks to Brett Neumeier for bringing the matter to our attention. * Fixed potential memory leaks in parser error message generation spotted by Coverity, CIDs: 1448191, 1448193, 1448194, 1448195 * Updated URL of IEEE oui.txt in contrib/dhcp-lease-list.pl. Thanks to Tommy Smith for contributing the patch. * Fixed define flags when using SO_BINDTODEVICE. Thanks to Joe LeVeque for reporting the issue. * Applied a patch from OpenBSD to always set the scope id of outbound DHPCv6 packets. Note this change only applies when compiling under OpenBSD. Thanks to Brad Smith at OpenBSD from bringing it to our attention. * Modified dhclient to not discard config file leases that are duplicates of server-provided leases and to retain such leases after they have been used as the fallback active lease and DHCP service has been restored. This allows them to be used more than once during the lifetime of a dhclient instance. This applies to DHCPv4 operation only. * Corrected a number of reference counter and zero-length buffer leaks. Thanks to Christopher Ertl of MSRC Vulnerabilities & Mitigations for pointing them out. * Closed a small window of time between the installation of graceful shutdown signal handlers and application context startup, during which the receipt of shutdown signal would cause a REQUIRE() assertion to occur. Note this issue is only visible when compiling with ENABLE_GENTLE_SHUTDOWN defined. * Corrected a buffer overflow that can occur when retrieving zone names that are more than 255 characters in length. * The "d" domain name option format was incorrectly handled as text instead of RFC 1035 wire format. Thanks to Jay Doran at BlueCat Networks for reporting this issue. * Improved the error message issued when a host declaration has both a uid and a dhcp-client-identifier. Server configuration parsing will now fail if a host declaration specifies more than one uid. * Updated developer's documentation on building and running unit tests. Removed support for --with-atf=bind as BIND9 no longer bundles in ATF source. * Fixed a syntax error in ldap.c which cropped up under Ubuntu 18.04.1/gcc 7.4.0. Thanks to Charles Hedrick for pointing it out. * Added clarification to dhcp-options.5 section on ip-address values describing the first-use DNS resolution of options with hostnames as values (e.g. next-server). * The option format for the server option omapi-key was changed to a format type 'k' (key name); while server options ldap-port and ldap-init-retry were changed to 'L' (unsigned 32-bit integer). These three options were inadvertantly broken when the 'd' format content was changed to comply with RFC 1035 wire format (see Gitlab #2). * A delayed-ack value of 0 (the default), now correctly disables the delayed feature. A change in 4.4.0 prohibited lease updates marking leases active from be written to the lease file when delayed-ack is 0. This in turn, caused servers to lose active lease assignments upon restart. ! Option reference count was not correctly decremented in error path when parsing buffer for options. Reported by Felix Wilhelm, Google Security Team. CVE: CVE-2018-5733 ! Corrected an issue where large sized 'X/x' format options were causing option handling logic to overwrite memory when expanding them to human readable form. Reported by Felix Wilhelm, Google Security Team. CVE: CVE-2018-5732 * Added use of new Bind9 compatibility header files, that are now necessary to supply type definitions for primitive data types, removed from Bind9 proper. Altered util/bind.sh to pull from Bind9 repo on gitlab. * Duplicate address detection when binding to a new IPv6 address was added to the following dhclient scripts: linux,freebsd,netbsd,openbsd, and macos. The scripts will check for DAD errors after binding to a new IPv6 address for at most --dad-wait-time seconds. If a DAD error is detected the script will exit with a value of 3, instructing dhclient to decline the address. If dad-wait-time is zero (the default), DAD error checking is not peformed. * Support for sending and receiving additional DHCP4 options has been added to both the dhcpd and dhclient. Specifically: option codes 93,94, and 97 (RFC 4578); code 150 (RFC 5859); and codes 209,219, and 211 (RFC 5071). Beyond configuring, sending, requesting, and receiving these options neither server nor client apply any additional logic based on their values. Thanks to Peter Lewis for requesting this change. * Added clarifying text to dhcpd.conf.5 explaining the class match expressions cannot rely on the results of executable statements. * Fixed a bug which causes dhcpd and dhclient to crash on certain systems when given relative path names for lease or pid files on the command line. Affected systems are those on which the C library function, realpath() does not support a second parameter value of NULL (see manpages for realpath(3)). * Fixed a build issue when building with embedded BIND9 under OpenBSD that was causing BIND9 build to not generate dns/enumclass.h and dns/enumtype.h. * Added <dhcp>/m4/README to the distribution tarball. Some versions of ac_local() treat the absence of the m4 subdirectory as error rather than warning. This was causing the call to autoreconf, necessary for building with libtool, to fail. * Added experimental support for relay port (draft-ietf-dhc-relay-port-10.txt) feature for DHCPv4, DHCPv6 and DHCPv4-over-DHCPv6. Relay port has to be enabled at compile time via --enable-relay-port and is fully backward compatible (i.e. works with previous implementations of servers and relays using the standard ports). A new --rp <relay-port> command line option specifies to dhcrelay an alternate source port for upstream (i.e. toward the server) messages. Thanks to Naiming Shen and Enke Chen of Cisco systems for submitting these patches. * Added --release-on-roam to dhcpd server. When enabled and the server detects that a DHCPv6 client (IAID+DUID) has roamed to a new network, it will release the pre-existing leases on the old network and emit a log statement similar to the following: "Client: <id> roamed to new network, releasing lease: <address>" The server will carry out all of the same steps that would normally occur when a client explicitly releases a lease. This behavior is disabled by default and may only be specified globally. Prior to this the server renders the leases unavailable until they expire or the server is restarted. Clients that need leases in multiple networks must supply a unique IAID in each IA. When release-on-roam is disabled (the default) the server maintains the prior behavior of making such leases unavailable until they expire or the server is restarted. Clients that need leases in multiple networks must supply a unique IAID in each IA. This parameter may only be specified at the global level. Thanks to Fernando Soto from BlueCat Networks for suggesting this change. * Support for delayed-ack is now compiled in by default. Prior to this it had to be enabled at compile time via --enable-delayed-acks. The default value for delayed-ack, however, has been changed from 28 to 0 (i.e. disabled). This was done to minimize the impact on users not currently using the feature. Please note that the delayed-ack feature is not currently compatible with support for DHPCv4-over-DHCPv6 so when a 4to6 port command line argument enables this in the server the delayed-ack value is reset to 0. * Added to the server (-6) a new statement, local-address6, which specifies the source address of packets sent by the server. An additional flag, bind-local-address6, disabled by default, binds the service socket to to local-address6. Note that bind-local-address does not work with direct clients: a relay has to forward packets to the server using the local-address6 destination. * The server now recognizes environment variables PATH_DHCPD_DB and PATH_DHCPD_PID. These had been incorrectly compiled out of the code unless DHCPv6 support was disabled. Additionally, the server man pages were corrected to accurately reflect how the server chooses file names (see lease-file-name and pid-file-name statements). Thanks to Fernando Soto at Bluecat Networks for bringing this matter to our attention. * Removed an "Impossible condition" error upon exit in the dhcpd server that has been shutdown via OMAPI. This condition was only apparent under Solaris when building with --enable-use-sockets and --enable-ipv4-pktinfo. * Corrected some minor Coverity issues: CID 1426059, 1426058, and 1426057. * Added missing text to dhclient.8 and expanded release note coverage for --address-prefix-len changes. - remove dhcp-CVE-2019-6470.patch, 0013-dhcp-4.2.x-dhcpv6-decline-on-DAD-failure.872609.patch: merged upstream - 0006-dhcp-4.3.2-dhclient-send-hostname-or-fqdn.patch 0009-dhcp-4.2.6-close-on-exec.patch 0016-infiniband-support.patch 0018-client-fail-on-script-pre-init-error-bsc-912098.patch 0021-dhcp-ip-family-symlinks.patch: refresh against newer code base - build with --enable-log-pid (log pid) and enable-binary-leases (faster binary looup for large leases files) ==== elfutils ==== Version update (0.182 -> 0.183) Subpackages: libasm1 libdw1 libelf1 - Update to version 0.183: debuginfod: New thread-busy metric and more detailed error metrics. New --fdcache-mintmp and tracking of filesystem freespace. New increased webapi concurrency while grooming. debuginfod-client: DEBUGINFOD_SONAME macro added to debuginfod.h which can be used to dlopen the libdebuginfod.so library. New function debuginfod_set_verbose_fd and DEBUGINFOD_VERBOSE environment variable. config: profile.sh and profile.csh won't export DEBUGINFOD_URLS unless configured --enable-debuginfod-urls[=URLS] elflint, readelf: Recognize SHF_GNU_RETAIN. Handle SHT_X86_64_UNWIND as valid relocation target. - Remove config-do-not-define-DEBUGINFOD_URLS-environment-var.patch patch. ==== fuse3 ==== Version update (3.10.1 -> 3.10.2) - Update to release 3.10.2 * Allow "nonempty" as a mount option, for backwards compatibility with fusermount 2. The option has no effect since mounting over non-empty directories is allowed by default. * FUSE filesystems can now be mounted underneath EXFAT mountpoints. ==== json-glib ==== Version update (1.6.0 -> 1.6.2) - Update to version 1.6.2: + Fix build reproducibility. + Fix parsing of UTF-16 surrogate pairs. + Ignore UTF-8 BOM. ==== libcap ==== Version update (2.47 -> 2.48) - update to 2.48: * More uniform use of $(MAKE) in Makefiles * No longer include symlinks in the git tree * Provide support for make GOLANG=no ... * Provide support for pointing at a specific build of the go binary * camelCase the contrib/seccomp/explore.go program * A number of documentation fixes to man pages and source code comments * Last use of GO major version 0 ==== procps ==== Version update (3.3.16 -> 3.3.17) Subpackages: libprocps8 - Add /usr/share/man/uk dir to file list for lang sub package - Fix directory for Ukrainian man pages translations. - Move localized man pages to lang package. - Remove obsolete conditionals. - Remove obsolete --enable-oomem option. - Run spec-cleaner. - Update to procps-ng-3.3.17 * library: Incremented to 8:3:0 (no removals or additions, internal changes only) * all: properly handle utf8 cmdline translations issue #176 * kill: Pass int to signalled process merge #32 * pgrep: Pass int to signalled process merge #32 * pgrep: Check sanity of SG_ARG_MAX issue #152 * pgrep: Add older than selection merge #79 * pidof: Quiet mode merge #83 * pidof: show worker threads Redhat #1803640 * ps.1: Mention stime alias issue #164 * ps: check also match on truncated 16 char comm names * ps: Add exe output option Redhat #1399206 * ps: A lot more sorting available merge #99 * pwait: New command waits for a process merge #97 * sysctl: Match systemd directory order Debian #950788 * sysctl: Document directory order Debian #951550 * top: ensure config file backward compatibility Debian #951335 * top: add command line 'e' for symmetry with 'E' issue #165 * top: add '4' toggle for two abreast cpu display issue #172 * top: add '!' toggle for combining multiple cpus * top: fix potential SEGV involving -p switch merge #114 * vmstat: Wide mode gives wider proc columns merge #48 * watch: Add environment variable for interval merge #62 * watch: Add no linewrap option issue #182 * watch: Support more colors merge #106,#109 * free,uptime,slabtop: complain about extra ops issue #181 - Remove now obsolete upstream patches * procps-check-sanity-of-SC_ARG_MAX.patch * procps-ng-3e1c00d0.patch - Port patches * procps-ng-3.3.10-integer-overflow.patch * procps-ng-3.3.10-large_pcpu.patch * procps-ng-3.3.8-accuracy.dif * procps-ng-3.3.8-bnc634840.patch * procps-ng-3.3.8-petabytes.patch * procps-ng-3.3.8-tinfo.dif * procps-ng-3.3.9-w-notruncate.diff * procps-v3.3.3-read-sysctls-also-from-boot-sysctl.conf-kernelversion.diff ==== python-Jinja2 ==== Version update (2.11.2 -> 2.11.3) - update to 2.11.3 * Improve the speed of the urlize filter by reducing regex backtracking. Email matching requires a word character at the start of the domain part and only word characters in the TLD (CVE-2020-28493 bsc#1181944). ==== python-cffi ==== Version update (1.14.4 -> 1.14.5) - update to 1.14.5: * Source fix for old gcc versions ==== python-cryptography ==== Version update (3.3.1 -> 3.3.2) - update to 3.3.2: * SECURITY ISSUE: Fixed a bug where certain sequences of update() calls when symmetrically encrypting very large payloads (>2GB) could result in an integer overflow, leading to buffer overflows. CVE-2020-36242 ==== python-idna ==== Version update (2.10 -> 3.1) - update to 3.1: - Ensure license is included in package (Thanks, Julien Schueller) - No longer mark wheel has universal (Thanks, Matthieu Darbois) - Test on PowerPC using Travis CI - Python 2 is no longer supported (the 2.x branch supports Python 2, use "idna<3" in your requirements file if you need Python 2 support) - Support for V2 UTS 46 test vectors. ==== python-pyrsistent ==== - Remove remnant requirements of six and numpy: These are neither used anywhere in the package code, nor in the tests. ==== python-pytz ==== Version update (2020.5 -> 2021.1) - update to 2021.1: * update to IANA 2021a timezone release ==== python-pyzmq ==== Version update (20.0.0 -> 22.0.3) - Update to 22.0.3 * Fix fork-safety bug in garbage collection thread (regression in 20.0) when using subprocesses. - Changes in 22.0.1 * Fix type of Frame.bytes for non-copying recvs with CFFI backend (regression in 21.0) - Changes in 22.0.0 * This is a major release due to changes in wheels and building on Windows. Code changes from 21.0 are minimal. * Some typing fixes * Bump bundled libzmq to 4.3.4 - Relevant Changes in 21.0 * pyzmq 21 is a major version bump because of dropped support for old Pythons and some changes in packaging. CPython users should not face major compatibility issues if installation works at all :) PyPy users may see issues with the new implementation of send/recv. If you do, please report them! The big changes are: * drop support for Python 3.5. Python >= 3.6 is required * mypy type stubs, which should improve static analysis of pyzmq, especially for dynamically defined attributes such as zmq constants. These are new! Let us know if you find any issues. * support for zero-copy and sending bufferables with cffi backend. This is experimental! Please report issues. Packaging updates: * Require Python >= 3.6, required for good type annotation support * rework cffi backend in setup.py New features: * zero-copy support in CFFI backend (send(copy=False) now does something). * Support sending any buffer-interface-providing objects in CFFI backend. Bugs fixed: * Errors during teardown of asyncio Sockets - Don't test numpy on python36 flavor, because python36-numpy is no longer available in Tumbleweed (NEP 29) - Make sure we use the Cython backend, not CFFI, wich is for PyPy. * fixes gh#zeromq/pyzmq#1431 and gh#zeromq/pyzmq#1432 - Remove skip_test_tracker.patch - Got an oom error on the build service: Require at least 8GB of RAM through _constraints file ==== reiserfs ==== - Move soname link to library package ==== salt ==== Subpackages: python3-salt salt-master salt-minion salt-standalone-formulas-configuration - virt: search for grub.xen path - Xen spicevmc, DNS SRV records backports: Fix virtual network generated DNS XML for SRV records Don't add spicevmc channel to xen VMs - virt UEFI fix: virt.update when efi=True - Added: * virt-uefi-fix-backport-312.patch * 3002.2-xen-spicevmc-dns-srv-records-backports-314.patch * open-suse-3002.2-xen-grub-316.patch - Do not crash when unexpected cmd output at listing patches (bsc#1181290) - Added: * do-not-crash-when-unexpected-cmd-output-at-listing-p.patch - Fix behavior for "onlyif/unless" when multiple conditions (bsc#1180818) - Added: * fix-onlyif-unless-when-multiple-conditions-bsc-11808.patch ==== system-users ==== Subpackages: system-group-hardware system-group-kvm system-user-nobody - system-user-tss.conf: Remove group entry, not needed and did contain syntax errors - remove duplicate group entry: - system-user-tftp.conf - system-user-uuidd.conf - system-user-uucp.conf - system-user-uucp.conf - system-user-ftp.conf - system-user-games.conf - system-user-news.conf ==== sysuser-tools ==== - Don't abort on unbound first argument - Remove sysusers/nscd workaround - Use systemd-sysusers only if /proc is mounted, don't require it - Set --replace option for systemd-sysusers - Ignore nscd return code - If systemd-sysusers is used to create a new user/group, invalidate the nscd passwd and group cache to make the new user/group visible immediately as workaround [bsc#1181121]. Needs to be removed after sytemd-sysusers get's fixed, since we invalidate the cache even if the user/group file wasn't changed. - An "u" in a sysusers.d file will create an user and a group. Create provides for both, user and group. - Use systemd-sysusers as default to create and update the user account. Fixes the problem that a modified sysusers config file get's ignored by useradd and adduser [bsc#1180549]. ==== util-linux ==== Subpackages: libblkid1 libfdisk1 libmount1 libsmartcols1 libuuid1 - libmount: don't use "symfollow" for helpers on user mounts (boo#1181750, util-linux-libmount-dont-use-symfollow.patch) - Override GTKDOCIZE with /bin/true so we can run autoreconf without needing gtk-doc as a dependency. ==== util-linux-systemd ==== - libmount: don't use "symfollow" for helpers on user mounts (boo#1181750, util-linux-libmount-dont-use-symfollow.patch) - Override GTKDOCIZE with /bin/true so we can run autoreconf without needing gtk-doc as a dependency. ==== xen ==== Version update (4.14.1_08 -> 4.14.1_11) - bsc#1181921 - GCC 11: xen package fails gcc11-fixes.patch - Drop gcc10-fixes.patch - Upstream bug fixes (bsc#1027519) 5fedf9f4-x86-hpet_setup-fix-retval.patch 5ff458f2-x86-vPCI-tolerate-disabled-MSI-X-entry.patch 5ff71655-x86-dpci-EOI-regardless-of-masking.patch 5ffc58e8-x86-ACPI-dont-overwrite-FADT.patch 600999ad-x86-dpci-do-not-remove-pirqs-from.patch (Replaces xsa360.patch) 600ab341-x86-vioapic-EOI-check-IRR-before-inject.patch 6013e4bd-memory-bail-from-page-scrub-when-CPU-offline.patch 6013e546-x86-HVM-reorder-domain-init-error-path.patch - bsc#1180491 - "Panic on CPU 0: IO-APIC + timer doesn't work!" 6011bbc7-x86-timer-fix-boot-without-PIT.patch

1 0

Streamlining distribution pages
by Sasi Olin 17 Feb '21

17 Feb '21

Hi, I'm gonna annoy you some more ;) I've been working on getting get-o-o into a page that helps people understand the distributions, not just download them. I became kinda worried, albeit inspired, that we were going into the wrong direction after microos.opensuse.org became a thing. So on a separate branch I started revamping some of it to better represent the distros by themselves: https://github.com/openSUSE/get-o-o/tree/hellcp/revamp And this is what it currently looks like (it's highly subject to change depending on discussions): Kubic Overview https://i.imgur.com/py0pbuH.png Kubic Downloads https://i.imgur.com/xmsG91V.png MicroOS Overview https://i.imgur.com/MjZQAlB.png MicroOS Downloads https://i.imgur.com/OymKYR4.png I do want to also have a set of points for Kubic (and Leap), but I haven't gotten around to adding them Some people indicated to me that while this style of download may work perfectly fine for Tumbleweed and Leap, it's gonna be (and visibly already is) a nightmare for Kubic and MicroOS. There are a few ways I'm considering fixing it, but I still would appreciate feedback if you have any. At the end of the day I want those pages to function as a combination (and replacement) of Portal:$distribution pages, the current get.opensuse.org pages as well as marketing material, informing the user of what the point is to begin with, and so we have single clear place for informing the users of everything that goes on with the distributions without having 10 different places for it. LCP [Sasi] https://lcp.world

4 6

New MicroOS snapshot 20210215 released!
by Richard Brown 17 Feb '21

17 Feb '21

Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: apparmor bluedevil5 (5.20.5 -> 5.21.0) boost-base breeze (5.20.5 -> 5.21.0) discover (5.20.5 -> 5.21.0) drkonqi5 (5.20.5 -> 5.21.0) gstreamer-plugins-bad kactivitymanagerd (5.20.5 -> 5.21.0) kde-cli-tools5 (5.20.5 -> 5.21.0) kernel-default-base (5.10.14 -> 5.10.16) kernel-firmware (20210119 -> 20210208) kernel-source (5.10.14 -> 5.10.16) kgamma5 (5.20.5 -> 5.21.0) khotkeys5 (5.20.5 -> 5.21.0) kinfocenter5 (5.20.5 -> 5.21.0) kmenuedit5 (5.20.5 -> 5.21.0) kmod kscreen5 (5.20.5 -> 5.21.0) kscreenlocker (5.20.5 -> 5.21.0) ksysguard5 (5.20.5 -> 5.21.0) kwayland-integration (5.20.5 -> 5.21.0) kwayland-server (5.20.5 -> 5.21.0) kwin5 (5.20.5 -> 5.21.0) kwrited5 (5.20.5 -> 5.21.0) libapparmor libkdecoration2 (5.20.5 -> 5.21.0) libkscreen2 (5.20.5 -> 5.21.0) libksysguard5 (5.20.5 -> 5.21.0) libqca-qt5 (2.3.1 -> 2.3.2) libqt5-qtwebengine libquvi-scripts libressl (3.2.3 -> 3.2.4) milou5 (5.20.5 -> 5.21.0) pango (1.48.1 -> 1.48.2) perl-Bootloader (0.932 -> 0.933) plasma-browser-integration (5.20.5 -> 5.21.0) plasma-nm5 (5.20.5 -> 5.21.0) plasma5-addons (5.20.5 -> 5.21.0) plasma5-desktop (5.20.5 -> 5.21.0) plasma5-integration (5.20.5 -> 5.21.0) plasma5-openSUSE plasma5-pa (5.20.5 -> 5.21.0) plasma5-workspace (5.20.5 -> 5.21.0) polkit-kde-agent-5 (5.20.5 -> 5.21.0) poppler (21.01.0 -> 21.02.0) poppler-qt5 (21.01.0 -> 21.02.0) powerdevil5 (5.20.5 -> 5.21.0) python-requests python38 python38-core rpm systemsettings5 (5.20.5 -> 5.21.0) xdg-desktop-portal-kde (5.20.5 -> 5.21.0) xterm (363 -> 366) === Details === ==== apparmor ==== Subpackages: apparmor-abstractions apparmor-parser apparmor-profiles apparmor-utils python3-apparmor - merge libapparmor.changes into apparmor.changes ==== bluedevil5 ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - No code changes since 5.20.90 - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Too many changes to list here ==== boost-base ==== Subpackages: boost-license1_75_0 libboost_thread1_75_0 - Fix HPC build on ARM. It seems boost_serialization libraries are no longer implicitly build with this setup. - Add build support for gcc10 to HPC build (bsc#1174439). - Add openmpi4 flavors (jsc#SLE-16462). ==== breeze ==== Version update (5.20.5 -> 5.21.0) Subpackages: breeze5-cursors breeze5-decoration breeze5-style breeze5-wallpapers libbreezecommon5-5 - Disable the migration from the breeze color scheme to breeze. On fresh installations, the LNF is applied afterwards and so it has no effect. Switching the color scheme in the LNF would need an almost complete reneedling, so don't do that just yet. - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - Changes since 5.20.90: * Clean up listener (kde#432660) * Update users that have Breeze as colorscheme to BreezeLight (kde#432470) * Fix colors files * Don't waste a space in menus * [kstyle]: Don't attempt to adjust contentsMargins on QDialogs * [kstyle]: Don't attempt to adjust contentsMargins on QMainWindows (kde#432246) * kstyle: expand tools area 1px downwards if present (kde#431540) * [kstyle]: Don't draw line when no toolbars are present in fullscreen (kde#431969) * hotfix: remove hasHeaderColors call from ::polish * Revert "Do not draw background or line in toolbars if the color scheme has no headers group" * kde4breeze: Breeze Light is the new default (kde#431917) - Only Recommend breeze5-wallpapers, it's fairly big and by default (openSUSE look-and-feel) not used - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Too many changes to list here ==== discover ==== Version update (5.20.5 -> 5.21.0) Subpackages: discover-backend-flatpak discover-notifier - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - Changes since 5.20.90: * Do not always bring refreshed resources in (kde#432654) * Don't show the search action on desktop mode (kde#432693) * pk: Don't call the size function as it triggers a details fetch * pk: no need to fetch the details of the updatable packages * odrs: Move JSON parsing to a separate thread * pk: Small optimisation * pk: Make sure that we give precedence to the first pkgid we receive * pk: remove unused method * pk: Make sure we execute absolute paths * flatpak: Make sure we refresh the size display on the views * Show a "Search" main action on mobile on the Featured page * Do not show "Sorry, nothing found" on the search page before searching * pk: also remove duplicates from accounnting for the offline upgrades * [Updates page] Match style of Kirigami.PlaceholderMessage * pk: Fix installed filtering (kde#428681) * packagekit: Don't list repeated packages several times * pk: sort the updated package in offline updates description - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Too many changes to list here - Refresh 0001-Warning-for-FlatHub.patch ==== drkonqi5 ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - Changes since 5.20.90: * discard wayland client crashes following compositor crash (kde#431561) * Fix includes order on windows * Update .gitignore file * Add pre-commit hook for clang-format * Add .git-blame-ignore-revs file * Run clang-format * Prevent clang-format uglification - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Changes since 5.20.5: * Remove duplicate line * include the drkonqi version in reports * report all reproducible selections * capitalize consistently * Layout have already a parent. Not necessary to call this method * Don't include QtTest * Modify DBus service name to allow using QDBusServiceWatcher * fix warning about unused capture * focus lineedits for bug info page (kde#428350) * Fix for Clang: ptracer.cpp needs <errno.h> * fix buttongroup state toggles (kde#428346) * Port from QStandardPaths::DataLocation to QStandardPaths::AppDataLocation * Don't use deprecated signal * If include is define in .h remove it if it's defined in .cpp too (scripted) * Remove this add_definition * Compile without deprecated method * Add .gitignore file * it depends against kf5.74 * it depends against qt5.15 * Remove not implemented method * [systeminformation] Fix cpp17+ compatibility * Remove unused forward declaration * Convert copyright statements to SPDX expressions ==== gstreamer-plugins-bad ==== Subpackages: libgstadaptivedemux-1_0-0 libgstbadaudio-1_0-0 libgstbasecamerabinsrc-1_0-0 libgstcodecparsers-1_0-0 libgstcodecs-1_0-0 libgstisoff-1_0-0 libgstmpegts-1_0-0 libgstphotography-1_0-0 libgstsctp-1_0-0 libgsturidownloader-1_0-0 libgstvulkan-1_0-0 libgstwayland-1_0-0 libgstwebrtc-1_0-0 - Disable the kate/libtiger plugin. Kate streams for karaoke are not used anymore, and the source tarball for libtiger is no longer available upstream. ==== kactivitymanagerd ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - No code changes since 5.20.90 - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Changes since 5.20.5: * Add trailing comma to enums * Fix Boot dependency problems and cleanup old configs * If include is define in .h remove it if it's defined in .cpp too (scripted) * Fix a dangling reference to the list of database files * Explicit lambda captures to avoid future dangling reference bugs * Fix a dangling reference to the list of database files * Convert copyright statements to SPDX expressions * Explicitly scope unit to graphical-session.target * Fix installation of the systemd unit * Use correct way to register for a shortcut (kde#374575) * systemd dbus activation ==== kde-cli-tools5 ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - No code changes since 5.20.90 - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Changes since 5.20.5: * Update .gitignore * Add pre-commit hook for clang-format * Add .git-blame-ignore-revs file * Run clang-format * Prevent clang-format uglification * Add .gitignore file to ignore generated .clang-format file * kioclient: add "appmenu" command to use a kopenwith dialog as a basic launcher * Require C++17 * Avoid pointless KCModuleInfo usage * If include is define in .h remove it if it's defined in .cpp too (scripted) * Do not explicitely define Exec line for KCM * Now it depends against new version. Old code can be removed * Partly port away from KMimeTypeTrader * Documentation fixes * Ignore options after positional arguments (kde#426896) ==== kernel-default-base ==== Version update (5.10.14 -> 5.10.16) - Add modules which got lost when migrating away from supported.conf (bsc#1182110): * am53c974 had a typo * cls_bpf, iscsi_ibft, libahci, libata, openvswitch, sch_ingress - Also add vport-* modules for Open vSwitch ==== kernel-firmware ==== Version update (20210119 -> 20210208) Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network ucode-amd - Update to version 20210208 (commit b79d2396bc63): * Mellanox: Add new mlxsw_spectrum firmware xx.2008.2304 * linux-firmware: add firmware for MT7921 * rtw88: RTL8821C: Update firmware to v24.8 * linux-firmware: Update firmware file for Intel Bluetooth AX210 * linux-firmware: Update firmware file for Intel Bluetooth AX200 * linux-firmware: Update firmware file for Intel Bluetooth AX201 * i915: Add DMC v2.01 for ADL-S * i915: Add HuC v7.7.1 for DG1 * i915: Add GuC v49.0.1 for DG1 * qcom: Add venus firmware files for VPU-1.0 * qcom: Add SM8250 Compute DSP firmware * qcom: Add SM8250 Audio DSP firmware * qcom: add firmware files for Adreno a650 ==== kernel-source ==== Version update (5.10.14 -> 5.10.16) - Linux 5.10.16 (bsc#1012628). - squashfs: add more sanity checks in xattr id lookup (bsc#1012628). - squashfs: add more sanity checks in inode lookup (bsc#1012628). - squashfs: add more sanity checks in id lookup (bsc#1012628). - squashfs: avoid out of bounds writes in decompressors (bsc#1012628). - Revert "mm: memcontrol: avoid workload stalls when lowering memory.high" (bsc#1012628). - nilfs2: make splice write available again (bsc#1012628). - drm/i915: Skip vswing programming for TBT (bsc#1012628). - drm/i915: Fix ICL MG PHY vswing handling (bsc#1012628). - bpf: Fix verifier jsgt branch analysis on max bound (bsc#1012628). - bpf: Fix 32 bit src register truncation on div/mod (bsc#1012628). - bpf: Fix verifier jmp32 pruning decision logic (bsc#1012628). - regulator: Fix lockdep warning resolving supplies (bsc#1012628). - blk-cgroup: Use cond_resched() when destroy blkgs (bsc#1012628). - i2c: mediatek: Move suspend and resume handling to NOIRQ phase (bsc#1012628). - SUNRPC: Handle 0 length opaque XDR object data properly (bsc#1012628). - SUNRPC: Move simple_get_bytes and simple_get_netobj into private header (bsc#1012628). - iwlwifi: queue: bail out on invalid freeing (bsc#1012628). - iwlwifi: mvm: guard against device removal in reprobe (bsc#1012628). - iwlwifi: pcie: add rules to match Qu with Hr2 (bsc#1012628). - iwlwifi: mvm: invalidate IDs of internal stations at mvm start (bsc#1012628). - iwlwifi: pcie: fix context info memory leak (bsc#1012628). - iwlwifi: pcie: add a NULL check in iwl_pcie_txq_unmap (bsc#1012628). - iwlwifi: mvm: take mutex for calling iwl_mvm_get_sync_time() (bsc#1012628). - iwlwifi: mvm: skip power command when unbinding vif during CSA (bsc#1012628). - ASoC: Intel: sof_sdw: set proper flags for Dell TGL-H SKU 0A5E (bsc#1012628). - ASoC: ak4458: correct reset polarity (bsc#1012628). - ALSA: hda: intel-dsp-config: add PCI id for TGL-H (bsc#1012628). - pNFS/NFSv4: Improve rejection of out-of-order layouts (bsc#1012628). - pNFS/NFSv4: Try to return invalid layout in pnfs_layout_process() (bsc#1012628). - chtls: Fix potential resource leak (bsc#1012628). - ASoC: Intel: Skylake: Zero snd_ctl_elem_value (bsc#1012628). - mac80211: 160MHz with extended NSS BW in CSA (bsc#1012628). - drm/nouveau/nvif: fix method count when pushing an array (bsc#1012628). - ASoC: wm_adsp: Fix control name parsing for multi-fw (bsc#1012628). - regulator: core: avoid regulator_resolve_supply() race condition (bsc#1012628). - af_key: relax availability checks for skb size calculation (bsc#1012628). - powerpc/64/signal: Fix regression in __kernel_sigtramp_rt64() semantics (bsc#1012628). - gpiolib: cdev: clear debounce period if line set to output (bsc#1012628). - io_uring: drop mm/files between task_work_submit (bsc#1012628). - io_uring: reinforce cancel on flush during exit (bsc#1012628). - io_uring: fix sqo ownership false positive warning (bsc#1012628). - io_uring: fix list corruption for splice file_get (bsc#1012628). - io_uring: fix flush cqring overflow list while TASK_INTERRUPTIBLE (bsc#1012628). - io_uring: fix cancellation taking mutex while TASK_UNINTERRUPTIBLE (bsc#1012628). - io_uring: replace inflight_wait with tctx->wait (bsc#1012628). - io_uring: fix __io_uring_files_cancel() with TASK_UNINTERRUPTIBLE (bsc#1012628). - io_uring: if we see flush on exit, cancel related tasks (bsc#1012628). - io_uring: account io_uring internal files as REQ_F_INFLIGHT (bsc#1012628). - io_uring: fix files cancellation (bsc#1012628). - io_uring: always batch cancel in *cancel_files() (bsc#1012628). - io_uring: pass files into kill timeouts/poll (bsc#1012628). - io_uring: don't iterate io_uring_cancel_files() (bsc#1012628). - io_uring: add a {task,files} pair matching helper (bsc#1012628). - io_uring: simplify io_task_match() (bsc#1012628). - commit 11381f3 - Update config files: enable CONFIG_SERIAL_DEV_CTRL_TTYPORT on x86 (bsc#1182035) For supporting MS Surface devices. This required CONFIG_SERIAL_DEV_BUS to be built-in. Also this allowed CONFIG_BT_HCIUART_BCM=y as well. - commit 2d8fb7a - media: pwc: Use correct device for DMA (bsc#1181133). - commit 4a7417d - Drop pwc fix patch; it'll be replaced with the upstream fix (bsc#1181133) - commit 2202405 - Update config files: armv7hl: Set ledtrig-default-on as builtin (bsc#1182128) - commit d24d9b2 - btrfs: fix crash after non-aligned direct IO write with O_DSYNC (bsc#1181605). - commit 9e44573 - Update config files: Set ledtrig-default-on as builtin (bsc#1182128) - commit 7119d5a - Update config files. Enable DWC3 on x86_64 DWC3 is now needed on x86_64, too, with the added benefit of making x86_64 and ARM64 closer (jsc#SLE-14042) - commit 7cc21b5 - Linux 5.10.15 (bsc#1012628). - USB: serial: cp210x: add pid/vid for WSDA-200-USB (bsc#1012628). - USB: serial: cp210x: add new VID/PID for supporting Teraoka AD2000 (bsc#1012628). - USB: serial: option: Adding support for Cinterion MV31 (bsc#1012628). - usb: host: xhci: mvebu: make USB 3.0 PHY optional for Armada 3720 (bsc#1012628). - USB: gadget: legacy: fix an error code in eth_bind() (bsc#1012628). - usb: gadget: aspeed: add missing of_node_put (bsc#1012628). - USB: usblp: don't call usb_set_interface if there's a single alt (bsc#1012628). - usb: renesas_usbhs: Clear pipe running flag in usbhs_pkt_pop() (bsc#1012628). - usb: dwc2: Fix endpoint direction check in ep_from_windex (bsc#1012628). - usb: dwc3: fix clock issue during resume in OTG mode (bsc#1012628). - usb: xhci-mtk: fix unreleased bandwidth data (bsc#1012628). - usb: xhci-mtk: skip dropping bandwidth of unchecked endpoints (bsc#1012628). - usb: xhci-mtk: break loop when find the endpoint to drop (bsc#1012628). - ARM: OMAP1: OSK: fix ohci-omap breakage (bsc#1012628). - arm64: dts: qcom: c630: keep both touchpad devices enabled (bsc#1012628). - Input: i8042 - unbreak Pegatron C15B (bsc#1012628). - arm64: dts: amlogic: meson-g12: Set FL-adj property value (bsc#1012628). - arm64: dts: rockchip: fix vopl iommu irq on px30 (bsc#1012628). - arm64: dts: rockchip: Use only supported PCIe link speed on Pinebook Pro (bsc#1012628). - ARM: dts: stm32: Fix polarity of the DH DRC02 uSD card detect (bsc#1012628). - ARM: dts: stm32: Connect card-detect signal on DHCOM (bsc#1012628). - ARM: dts: stm32: Disable WP on DHCOM uSD slot (bsc#1012628). - ARM: dts: stm32: Disable optional TSC2004 on DRC02 board (bsc#1012628). - ARM: dts: stm32: Fix GPIO hog flags on DHCOM DRC02 (bsc#1012628). - vdpa/mlx5: Fix memory key MTT population (bsc#1012628). - bpf, cgroup: Fix optlen WARN_ON_ONCE toctou (bsc#1012628). - bpf, cgroup: Fix problematic bounds check (bsc#1012628). - bpf, inode_storage: Put file handler if no storage was found (bsc#1012628). - um: virtio: free vu_dev only with the contained struct device (bsc#1012628). - bpf, preload: Fix build when $(O) points to a relative path (bsc#1012628). - arm64: dts: meson: switch TFLASH_VDD_EN pin to open drain on Odroid-C4 (bsc#1012628). - r8169: work around RTL8125 UDP hw bug (bsc#1012628). - rxrpc: Fix deadlock around release of dst cached on udp tunnel (bsc#1012628). - arm64: dts: ls1046a: fix dcfg address range (bsc#1012628). - SUNRPC: Fix NFS READs that start at non-page-aligned offsets (bsc#1012628). - igc: set the default return value to -IGC_ERR_NVM in igc_write_nvm_srwr (bsc#1012628). - igc: check return value of ret_val in igc_config_fc_after_link_up (bsc#1012628). - i40e: Revert "i40e: don't report link up for a VF who hasn't enabled queues" (bsc#1012628). - ibmvnic: device remove has higher precedence over reset (bsc#1012628). - net/mlx5: Fix leak upon failure of rule creation (bsc#1012628). - net/mlx5e: Update max_opened_tc also when channels are closed (bsc#1012628). - net/mlx5e: Release skb in case of failure in tc update skb (bsc#1012628). - net: lapb: Copy the skb before sending a packet (bsc#1012628). - net: mvpp2: TCAM entry enable should be written after SRAM data (bsc#1012628). - r8169: fix WoL on shutdown if CONFIG_DEBUG_SHIRQ is set (bsc#1012628). - net: ipa: pass correct dma_handle to dma_free_coherent() (bsc#1012628). - ARM: dts: sun7i: a20: bananapro: Fix ethernet phy-mode (bsc#1012628). - nvmet-tcp: fix out-of-bounds access when receiving multiple h2cdata PDUs (bsc#1012628). - vdpa/mlx5: Restore the hardware used index after change map (bsc#1012628). - memblock: do not start bottom-up allocations with kernel_end (bsc#1012628). - kbuild: fix duplicated flags in DEBUG_CFLAGS (bsc#1012628). - thunderbolt: Fix possible NULL pointer dereference in tb_acpi_add_link() (bsc#1012628). - ovl: fix dentry leak in ovl_get_redirect (bsc#1012628). - ovl: avoid deadlock on directory ioctl (bsc#1012628). - ovl: implement volatile-specific fsync error behaviour (bsc#1012628). - mac80211: fix station rate table updates on assoc (bsc#1012628). - gpiolib: free device name on error path to fix kmemleak (bsc#1012628). - fgraph: Initialize tracing_graph_pause at task creation (bsc#1012628). - tracing/kprobe: Fix to support kretprobe events on unloaded modules (bsc#1012628). - kretprobe: Avoid re-registration of the same kretprobe earlier (bsc#1012628). - tracing: Use pause-on-trace with the latency tracers (bsc#1012628). - tracepoint: Fix race between tracing and removing tracepoint (bsc#1012628). - libnvdimm/namespace: Fix visibility of namespace resource attribute (bsc#1012628). - libnvdimm/dimm: Avoid race between probe and available_slots_show() (bsc#1012628). - genirq: Prevent [devm_]irq_alloc_desc from returning irq 0 (bsc#1012628). - genirq/msi: Activate Multi-MSI early when MSI_FLAG_ACTIVATE_EARLY is set (bsc#1012628). - scripts: use pkg-config to locate libcrypto (bsc#1012628). - xhci: fix bounce buffer usage for non-sg list case (bsc#1012628). - RISC-V: Define MAXPHYSMEM_1GB only for RV32 (bsc#1012628). - cifs: report error instead of invalid when revalidating a dentry fails (bsc#1012628). - iommu: Check dev->iommu in dev_iommu_priv_get() before dereferencing it (bsc#1012628). - smb3: Fix out-of-bounds bug in SMB2_negotiate() (bsc#1012628). - smb3: fix crediting for compounding when only one request in flight (bsc#1012628). - mmc: sdhci-pltfm: Fix linking err for sdhci-brcmstb (bsc#1012628). - mmc: core: Limit retries when analyse of SDIO tuples fails (bsc#1012628). - Fix unsynchronized access to sev members through svm_register_enc_region (bsc#1012628). - drm/dp/mst: Export drm_dp_get_vc_payload_bw() (bsc#1012628). - drm/i915: Fix the MST PBN divider calculation (bsc#1012628). - drm/i915/gem: Drop lru bumping on display unpinning (bsc#1012628). - drm/i915/gt: Close race between enable_breadcrumbs and cancel_breadcrumbs (bsc#1012628). - drm/i915/display: Prevent double YUV range correction on HDR planes (bsc#1012628). - drm/i915: Extract intel_ddi_power_up_lanes() (bsc#1012628). - drm/i915: Power up combo PHY lanes for for HDMI as well (bsc#1012628). - drm/amd/display: Revert "Fix EDID parsing after resume from suspend" (bsc#1012628). - io_uring: don't modify identity's files uncess identity is cowed (bsc#1012628). - nvme-pci: avoid the deepest sleep state on Kingston A2000 SSDs (bsc#1012628). - KVM: SVM: Treat SVM as unsupported when running as an SEV guest (bsc#1012628). - KVM: x86/mmu: Fix TDP MMU zap collapsible SPTEs (bsc#1012628). - KVM: x86: Allow guests to see MSR_IA32_TSX_CTRL even if tsx=off (bsc#1012628). - KVM: x86: fix CPUID entries returned by KVM_GET_CPUID2 ioctl (bsc#1012628). - KVM: x86: Update emulator context mode if SYSENTER xfers to 64-bit mode (bsc#1012628). - KVM: x86: Set so called 'reserved CR3 bits in LM mask' at vCPU reset (bsc#1012628). - DTS: ARM: gta04: remove legacy spi-cs-high to make display work again (bsc#1012628). - ARM: dts; gta04: SPI panel chip select is active low (bsc#1012628). - ARM: footbridge: fix dc21285 PCI configuration accessors (bsc#1012628). - ARM: 9043/1: tegra: Fix misplaced tegra_uart_config in decompressor (bsc#1012628). - mm: hugetlbfs: fix cannot migrate the fallocated HugeTLB page (bsc#1012628). - mm: hugetlb: fix a race between freeing and dissolving the page (bsc#1012628). - mm: hugetlb: fix a race between isolating and freeing page (bsc#1012628). - mm: hugetlb: remove VM_BUG_ON_PAGE from page_huge_active (bsc#1012628). - mm, compaction: move high_pfn to the for loop scope (bsc#1012628). - mm/vmalloc: separate put pages and flush VM flags (bsc#1012628). - mm: thp: fix MADV_REMOVE deadlock on shmem THP (bsc#1012628). - mm/filemap: add missing mem_cgroup_uncharge() to __add_to_page_cache_locked() (bsc#1012628). - x86/build: Disable CET instrumentation in the kernel (bsc#1012628). - x86/debug: Fix DR6 handling (bsc#1012628). - x86/debug: Prevent data breakpoints on __per_cpu_offset (bsc#1012628). - x86/debug: Prevent data breakpoints on cpu_dr7 (bsc#1012628). - x86/apic: Add extra serialization for non-serializing MSRs (bsc#1012628). - Input: goodix - add support for Goodix GT9286 chip (bsc#1012628). - Input: xpad - sync supported devices with fork on GitHub (bsc#1012628). - Input: ili210x - implement pressure reporting for ILI251x (bsc#1012628). - md: Set prev_flush_start and flush_bio in an atomic way (bsc#1012628). - igc: Report speed and duplex as unknown when device is runtime suspended (bsc#1012628). - neighbour: Prevent a dead entry from updating gc_list (bsc#1012628). - net: ip_tunnel: fix mtu calculation (bsc#1012628). - udp: ipv4: manipulate network header of NATed UDP GRO fraglist (bsc#1012628). - net: dsa: mv88e6xxx: override existent unicast portvec in port_fdb_add (bsc#1012628). - net: sched: replaced invalid qdisc tree flush helper in qdisc_replace (bsc#1012628). - commit 24c2efe - Update patches.kernel.org/5.10.13-143-vsock-fix-the-race-conditions-in-multi-trans… (bsc#1012628 bsc#1181806 CVE-2021-26708). Add CVE number. - commit bf327d1 - config: arm64: Use y for CLK_RK3399 This is to fix booting on RK3399 systems (JeOS-rockpi4) When compiled as 'm' there are lots of errors related to clk and no host mmc controler initialized. - commit 52fdc54 ==== kgamma5 ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - No code changes since 5.20.90 - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Changes since 5.20.5: * Update .gitignore file * Add pre-commit hook for clang-format * Add .git-blame-ignore-revs file * clang-tidy: Force braces around statements * Run clang-format * Be more consistent with includes and do not break when reordering them * Do not explicitely define Exec line for KCM * If include is define in .h remove it if it's defined in .cpp too (scripted) * Convert copyright statements to SPDX statements * Documentation fixes: Sync GUI messages ==== khotkeys5 ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - No code changes since 5.20.90 - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Changes since 5.20.5: * Use xtest also for sending input to the active window * Handle modifier keys with xtest in ShortcutsHandler::send_macro_key * Fix unterminated SPDX comments after last commit, fixes build * Convert copyright statements to SPDX expressions * Add .gitignore file to ignore generated .clang-format * Drop unused KF5Plasma dependency * Fix import of files (kde#428536) * Do not explicitly define Exec line for KCM * If include is define in .h remove it if it's defined in .cpp too (scripted) * Documentation fixes - Drop patches, now upstream: * 0001-Handle-modifier-keys-with-xtest-in-ShortcutsHandler-.patch * 0002-Use-xtest-also-for-sending-input-to-the-active-windo.patch ==== kinfocenter5 ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - Changes since 5.20.90: * About-distro: display Graphics Platform (X11 or Wayland) (kde#428382) - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Changes since 5.20.5: * Port away from QRegExp * typo-- * Remove unused includes * weight main categories properly (kde#429153) * If include is define in .h remove it if it's defined in .cpp too (scripted) * Now it depends against new version. Old code can be removed * Remove not implemented method * Use more correct factory name * Fix SolDevice null pointer dereference * Update device info on selection change instead of activation * There is no need for static local variables * Documentation fixes * Use correct name for new Samba Status module * port samba module to qml * Fix minor typos * [modules/nics] Use consistent name everywhere * Port nic info center module to QML ==== kmenuedit5 ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - No code changes since 5.20.90 - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Changes since 5.20.5: * Autogenerate categories file * operator+/- is disabled for QFlags in qt6 * ui.rc files: consistenly use <gui> instead of deprecated <kpartgui> * If include is define in .h remove it if it's defined in .cpp too (scripted) ==== kmod ==== Subpackages: libkmod2 - Fix tests to not test disabled features. Disable zstd again. + kmod-populate-modules-Use-more-bash-more-quotes.patch + kmod-testsuite-compress-modules-if-feature-is-enabled.patch + kmod-also-test-xz-compression.patch ==== kscreen5 ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - Changes since 5.20.90: * Fix osd actions not working * Fix rotation direction after change in libkscreen * [kcm] Limit maximum device combobox length (kde#432249) - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Changes since 5.20.5: * Add pre-commit hook for clang-format * Add .git-blame-ignore-revs file * clang-tidy: Force braces around statements * Run clang-format * Update .gitignore file * Add trailing comma to enums * Make orientation icons more obvious in KScreen * Autogenerate categories file * Remove unused include * Fix Connections warnings * Print debug information when something failed * Skip unneeded copies * daemon: improve consistency of the lid behaviour * Address constness of objects * If include is define in .h remove it if it's defined in .cpp too (scripted) * Do not explicitely define Exec line for KCM * refactor(kded): refactor OSD * fix(kded): move to kdirwatch to reduce inotify footprint ==== kscreenlocker ==== Version update (5.20.5 -> 5.21.0) Subpackages: libKScreenLocker5 - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - No code changes since 5.20.90 - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Changes since 5.20.5: * Add .gitignore file to ignore generated .clang-format * Fix catalog name (found by Victor Ryzhykh) * Fix view geometry updates when screens added/removed (kde#347934) * KCM KScreenLocker highlight non default settings * operator+/- is disabled for QFlags in qt6 * delay quit after successful password * Use QuickControls 2 StackView (kde#429290) * actually replace wallaper pages * Use QuickControls 2 StackView (kde#429290) * Lock the screen if necessary when connecting to logind * Require C++17 * Do not explicitly define Exec line for KCM * If include is define in .h remove it if it's defined in .cpp too (scripted) * actually replace wallaper pages ==== ksysguard5 ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - Changes since 5.20.90: * Fix sensors names of aggregate disk rates (kde#432851) * Fix copy paste error resulting in total upload displaying the upload rate (kde#430676) * Fix disk speeds (kde#432637) * Check if we could open a file * Include StorageVolumes by default * Set name for temperature sensor * cmake: add URL to help packagers - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Too many changes to list here ==== kwayland-integration ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - No code changes since 5.20.90 - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Changes since 5.20.5: * Now it depends against new version. Old code can be removed * Remove not implemented method * Fix shadowless context menus * Switch to SPDX license identifiers ==== kwayland-server ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - Changes since 5.20.90: * Prevent setting invalid buffer transform and scale * Initialise variable * Introduce SurfaceInterface::hasFrameCallbacks() * Print warning messages in KWAYLAND_SERVER logging category - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Too many changes to list here ==== kwin5 ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - Too many changes to list here - Most parts of 0001-Use-Xauthority-for-Xwayland.patch are now upstream, replace it with just 0001-Export-consistent-hostname-as-XAUTHLOCALHOSTNAME.patch - Enable accessibility integration ==== kwrited5 ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - No code changes since 5.20.90 - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - No code changes since 5.20.5 ==== libapparmor ==== - merge libapparmor.changes into apparmor.changes - define %_pamdir for <= 15.x to fix the build on those releases - add apache-extra-profile-include-if-exists.diff: make <apache2.d> include in apache extra profile optional to avoid problems with empty profile directory (boo#1178527) - prepare usrmerge (boo#1029961) * use %_pamdir ==== libkdecoration2 ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - No code changes since 5.20.90 - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Changes since 5.20.5: * Use non-deprecated KDE_INSTALL_CMAKEPACKAGEDIR * Add .gitignore file to ignore generated .clang-format * bump .so number of kdecorations2private * Restore ABI of libkdecorations2.so * Add a QRect to requestShowWindowMenu * If include is define in .h remove it if it's defined in .cpp too (scripted) ==== libkscreen2 ==== Version update (5.20.5 -> 5.21.0) Subpackages: libKF5Screen7 libkscreen2-plugin - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - Changes since 5.20.90: * Fix refresh rate reported for my laptop monitor * wayland: Fix mapping between kscreen and kwayland transforms - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Changes since 5.20.5: * Update .gitignore file * Add .git-blame-ignore-revs file * clang-tidy: Force braces around statements * Run clang-format * Add missing protect header * Fix build with newer Qt * doctor: Add an option to allow excluding outputs from a dpms action * Fix build with newer Qt * ConfigMonitor: Properly combine erase and iteration * Proper variable scope * KScreen::Output debug output readability * Config: Reserve hash size before populating it * edid: Do not split strings twice unnecessarily * edid: Do not access unallocated QByteArrays * wayland: Provide the Edid when we have it * Prefer straightforward API * wayland: remove meaningless comment * doctor: do not crash when accessing dpms * Initialise the WaylandOutput::size * Use non-deprecated scale method to calculate the screen geometry * Remove unused method declaration * Include rotation in the debug output * Remove not implemented method * Use new simpler way to disable session management ==== libksysguard5 ==== Version update (5.20.5 -> 5.21.0) Subpackages: libksysguard5-helper libksysguard5-imports - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - Changes since 5.20.90: * Ensure text doesn't flow outside the Pie Chart face (kde#431995) * Respect "show title" flag for Faces' CompactRepresentation * Reduce default history amount for line charts to 60 seconds * Do the sensor setters in two stages (kde#432254) * Always reset minimum and maximum, not only when inserting * Use faster file system searcing for iterating process groups * Also require C++ 17 on stable * SensorDataModel: Cache minimum and maximum values * Fix dataChanged emitted when PIDs are loaded * Avoid formatting NaN values * Don't call update inside the application constructor * Filter our services in the application slice which don't match the app string specifier * Prevent inadvertently writing config when destroying SensorFaceController (kde#428970) - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Too many changes to list here ==== libqca-qt5 ==== Version update (2.3.1 -> 2.3.2) - Add a keyring file - Use cmake() syntax for Qt build requirements - Update to 2.3.2: * Add macOS framework major version * qca-gcrypt: Add support for HKDF * Minimum Qt updated to 5.9 * Fixed compilation with gcc 11 - Rebase qca-2.3.0-fixDSA.patch ==== libqt5-qtwebengine ==== - Add patch to fix sandbox with glibc 2.33 (boo#1182233): * chromium-glibc-2.33.patch ==== libquvi-scripts ==== - Use boolean dependencies to require the correct lua<n>-luasocket, depending on the system in use (lua53-luasocket if liblua5_3-5, lua54-luasocket if liblua5-4-5). ==== libressl ==== Version update (3.2.3 -> 3.2.4) Subpackages: libcrypto46 libssl48 libtls20 - Update to release 3.2.4 * Switch back to certificate verification code from LibreSSL 3.1.x. The new verifier is not bug compatible with the old verifier causing issues with applications expecting behavior of the old verifier. * Unbreak DTLS retransmissions for flights that include a CCS. * Implement autochain for the TLSv1.3 server. * Use the legacy verifier for autochain. * Implement exporter for TLSv1.3. * Plug leak in x509_verify_chain_dup(). ==== milou5 ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - No code changes since 5.20.90 ==== pango ==== Version update (1.48.1 -> 1.48.2) Subpackages: libpango-1_0-0 typelib-1_0-Pango-1_0 - Update to version 1.48.2: + Fix memory leaks reported by asan + Avoid overflow in pango_attr_list_update + Add a valgrind suppression file + Make tests more robust + Fix pango_font_describe for Emoji fonts ==== perl-Bootloader ==== Version update (0.932 -> 0.933) - merge gh#openSUSE/perl-bootloader#133 - use shim on aarch64 (jsc#SLE-15823, jsc#SLE-15020) - 0.933 ==== plasma-browser-integration ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - Changes since 5.20.90: * Parent TasksModel to QGuiApplication and delete TasksModel after we've set the environment - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Changes since 5.20.5: * Bump manifest version * [Download Job] Show referrer instead of data URL * Open KRunner KCM in System Settings * Add .gitignore to ignore generated .clang-format * Apply autoplay prevention evasion also for Video tags * [Options Page] Provide feedback when permission was already granted * Add Microsoft Edge environment * Port from Settings::environmentDescription().icon to qApp->windowIcon().name() * Use libTaskManager for identifying the browser * [Tabs Runner] Slightly better scoring * Install messaging host for Edge * [Options Page] Force http(s) links to open in new tab * [Reminder] Add Microsoft Edge store link * [convertpottojson] Handle lines ending with " * Add Microsoft Edge extension ID * Move conversion of data URL into QImage into base class * Tabs Runner: Use KApplicationTrader::isSubsequence * Port TabsRunner to DBus runner * Add browser history runner * Introduce AbstractKRunnerPlugin for wrapping DBusRunner * [Settings] Add browser icon name * [Tabs Runner] Rework handling of favicons * If include is define in .h remove it if it's defined in .cpp too (scripted) ==== plasma-nm5 ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - Changes since 5.20.90: * [applet] Make spacing for header items consistent - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Too many changes to list here - Drop patches, now upstream: * 0001-Add-support-for-the-OpenVPN-parameter-compress.patch ==== plasma5-addons ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - Changes since 5.20.90: * Copy result by default - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Too many changes to list here ==== plasma5-desktop ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - Changes since 5.20.90: * kcms/keyboard: migrate to repeat, not to accent * Correctly construct URL from local file * fix: Inconsistent effect when hover over the new Keyboard Layout applet (kde#432091) * fix: Wrong fontsize on Keyboard Layout applet (kde#431889) * Fix crash when deleting activity from activity manager (kde#426926,kde#427593) * fix: the first keyboard layout can't have variants (kde#432367) * Use ThickMargin to redirect mouse input to panel and update spacingAtMinSize value * Make the timeout for the applet actions dialog much shorter * migrate from desktops *and* panels (kde#432148) * migrate from MidButton to MiddleButton (kde#430418) * [Kickoff] Open leave menu on press * Fix drag directions for top and right panels (kde#429063) * [Kickoff] Turn off hovering to switch tabs by default * Fix display string for middle click containment action * fix: keyboard applet doesn't autoload on Wayland * [Kickoff] Reduce spacing between label and arrow alleviating elision problem * [Kickoff] Tweak padding around configure button * [Kickoff] Use RoundButton for now Right now Avatar isn't mature enough for keyboard navigation so it's best to work around touch issue for now * [applets/kickoff] Add a visible configure button * [applets/kickoff] Re-add Avatar to the focus chain * hotfix: re-add id to avatar in Kickoff * kickoff: use Kirigami.Avatar directly instead of wrapping in RoundButton * [Kickoff] Fix leave buttons not working * [Kickoff] Revamp LeaveButtons item * [Kickoff] Check for searchPage directly rather than root.state (kde#431894) * [Folder View] implement "two click rename" feature for double-click mode (kde#392731) * Enable 2 columns mode - Avoid hard dependency on plasma5-pa ==== plasma5-integration ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - Changes since 5.20.90: * Revert held-key behaviour - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Changes since 5.20.5: * x11integration: Force standalone Qt::Dialog resizable * Change default color scheme to BreezeLight * operator+/- is disabled for QFlags in qt6 * Add comment explaining the pkg-config file installed by IM module * [keyheld]: add tittleless i and s-cedilla * Add Philippine Peso to currency alternatives in plasma im module * Add some currency mappings to new key-held im module module * Add key-held behaviour * Use new standard shortcut for "Create Folder" * Enable hover effects by default * Use nullptr * Ignore files * Use Q_EMIT * initialize pointer/values * Fix typo + use direct * Now it depends against new version. Old code can be removed * kdirselectdialog: when creating a new dir that already exists, select it * QXdgDesktopPortalFileDialog: pass directory option to portal ==== plasma5-openSUSE ==== Subpackages: plasma5-defaults-openSUSE plasma5-theme-openSUSE sddm-theme-openSUSE - Update to 5.21.0 - Update to 5.20.90 ==== plasma5-pa ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - Changes since 5.20.90: * Allow to mute/unmute microphone with left-click in system tray * [StreamRestore] Fix equals check * Forward role() into PulseObjectFilterModel - Adjust dependencies to allow pipewire-pulseaudio as well - Use GSettings on Leap 15.3+ as well - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Too many changes to list here ==== plasma5-workspace ==== Version update (5.20.5 -> 5.21.0) Subpackages: gmenudbusmenuproxy plasma5-session plasma5-session-wayland plasma5-workspace-libs xembedsniproxy - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - Changes since 5.20.90: * fix restore size when float is used * show colors,icons and plasma style in plamo * [Notifications] Escape HTML in destUrl and fileName * [Notifications] When application responds to cancel request, stop kill timer * Fix condition for executable folders (kde#432653) * ksmserver: Filter out services with NoDisplay=true * Fix wallpaper paths in org.kde.slideshow package * Revert "Use subseq matching for service runner" (kde#431609,kde#432339) * [Notifications] Property is supposed to be "ProcessedItems" * remove phone specific wallpaper config ui * [applets/digital clock] Unbreak the time zone config dialog * Set add panel as an explicit menu of a panel action (kde#432250) * Wallpaper config: fix property imageModel that was missing in delegate (kde#431961) * Make ksmserver's lock screen detection automatic * [systemd] Move kwin to "wants" * [applets/systemmonitor] fix not hiding the title on vertical panels * [applets/digital clock] Restore scroll-to-change-displayed-timezone (kde#431977) * Don't crash if the panelview is not ready * [Notifications] Re-evaluate unread count when a notification is "read" * [keyboard applet] fix TypeError garbage in log * Fix condition for windowed widgets standalone mode (kde#432032) - Add patch to either get more info or work around logout not working sometimes (kde#432460): * 0001-ksmserver-Enable-debug-output-by-default.patch - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Too many changes to list here - Refresh patches: * 0001-Revert-No-icons-on-the-desktop-by-default.patch * 0001-Set-GTK_BACKEND-x11-in-a-wayland-session.patch * 0001-Use-qdbus-qt5.patch ==== polkit-kde-agent-5 ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - Changes since 5.20.90: * plasma-polkit-agent.service: fix After, BusName keys (kde#431963) - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Changes since 5.20.5: * Add pre-commit hook for clang-format * Update .gitignore file * Add .git-blame-ignore-revs file * Run clang-format * If include is define in .h remove it if it's defined in .cpp too (scripted) * Makes the polkit agent started by systemd when systemd boot is enabled. ==== poppler ==== Version update (21.01.0 -> 21.02.0) Subpackages: libpoppler-cpp0 libpoppler-glib8 - Update to 21.02.0: + core: - GfxCal*ColorSpace: introduce Bradford transform for chromatic adaptation - Fix memory leak if saving the file fails - Internal code improvements - Fix various issues handling broken files - Make checkedAdd work for long long in MSVC + qt5: - Properly export NewSignatureData class - Fix regression in QIODeviceOutStream + MSVC + qt6: - Properly export NewSignatureData class - Fix regression in QIODeviceOutStream + MSVC + utils: - pdftohtml: Fix error() parameter type ==== poppler-qt5 ==== Version update (21.01.0 -> 21.02.0) - Update to 21.02.0: + core: - GfxCal*ColorSpace: introduce Bradford transform for chromatic adaptation - Fix memory leak if saving the file fails - Internal code improvements - Fix various issues handling broken files - Make checkedAdd work for long long in MSVC + qt5: - Properly export NewSignatureData class - Fix regression in QIODeviceOutStream + MSVC + qt6: - Properly export NewSignatureData class - Fix regression in QIODeviceOutStream + MSVC + utils: - pdftohtml: Fix error() parameter type ==== powerdevil5 ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - Changes since 5.20.90: * [backlighthelper] Don't touch brightness when animation isn't running - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Changes since 5.20.5: * Autogenerate categories file * Clarify ambiguous settings entries in launchers * Clear ambiguity when searching for settings in launchers * Take into account logind sleep and idle inhibitions (kde#364067) * mobile: bind the power off key to "Turn Off Screen" * Expose screen locked state in policy agent * autostart: start powerdevil earlier in the phase 0 * Set NoDisplay=true in powerdevil autoatart * Remove use of XCB DPMS timeouts and handle it explicitly * If include is define in .h remove it if it's defined in .cpp too (scripted) * Do not explicitely define Exec lines for KCMs * Add gitignore file * Ignore player's from KDE Connect when suspending (kde#427209) * Remove XRandRBrightness * Honor animation brightness threshold also for sysfs helper (kde#426883) * Add systemd unit for powerdevil * Set correct type for autostart .desktop file * Show "you might need to reconnect charger" hint only when charging/fully charged * Take DESTDIR into account when running setcap ==== python-requests ==== - add 5711.patch from upstream instead to remove idna<3 pin ==== python38 ==== - Add Obsoletes for python3-base when primary interpreter is set to properly replace it during upgrades. (bsc#1181324) - Provide %have_<flavor> for all python flavors gh#openSUSE/python-rpm-macros#96 - Add %python3_default and %default_python3 for the primary python3 flavor ==== python38-core ==== Subpackages: libpython3_8-1_0 python38-base - Add Obsoletes for python3-base when primary interpreter is set to properly replace it during upgrades. (bsc#1181324) - Provide %have_<flavor> for all python flavors gh#openSUSE/python-rpm-macros#96 - Add %python3_default and %default_python3 for the primary python3 flavor ==== rpm ==== - Use shipped config.sub/config.guess instead of stone-aged from libtool - auto-config-update-aarch64-ppc64le.diff: update grep regex ==== systemsettings5 ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - Changes since 5.20.90: * [Sidebar view] Make Intro Page icons keyboard-triggerable * Include SystemSettingsExternalApp modules in the --list output as well * Fix headers missing for non-KCM modules * [Icon View] Don't open modules twice on clicking * Fix ExternalAppModules not showing up * [sidebar view] Fix sidebar header alignment and height - Drop patches, now upstream: * 0001-Fix-ExternalAppModules-not-showing-up.patch * 0002-Icon-View-Don-t-open-modules-twice-on-clicking.patch * 0003-Fix-headers-missing-for-non-KCM-modules.patch * 0004-Include-SystemSettingsExternalApp-modules-in-the-lis.patch - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Too many changes to list here - Add patches to fix the YaST item: * 0001-Fix-ExternalAppModules-not-showing-up.patch * 0002-Icon-View-Don-t-open-modules-twice-on-clicking.patch * 0003-Fix-headers-missing-for-non-KCM-modules.patch * 0004-Include-SystemSettingsExternalApp-modules-in-the-lis.patch ==== xdg-desktop-portal-kde ==== Version update (5.20.5 -> 5.21.0) - Update to 5.21.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.21.0 - No code changes since 5.20.90 - Update to 5.20.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/20.90/ - Changes since 5.20.5: * Add X-KDE-DBUS-Restricted-Interfaces=org.kde.kwin.Screenshot to desktop file * If include is define in .h remove it if it's defined in .cpp too (scripted) * FileChooser: escape slash character in user visible filter name (kde#427306) * mobile filechooser: Make sure to also return the right folder when the folder wasn't changed * Disable X11 session management * screencast: Improve the screencasting process * mobile filechooser: Use new required property API * mobile filechooser: Don't accept empty titles ==== xterm ==== Version update (363 -> 366) - Updated to Patch#366 2021/02/10 * correct a compiler-warning fix in patch #352 which allowed sign-extension of coordinate values (report by "CismonX"). * correct upper-limit for selection buffer, accounting for combining characters (report/testcase by Tavis Ormandy). (CVE-2021-27135 bsc#1182091) * with alwaysHighlight true, xterm does not properly track focus. The screen->select FOCUS flag remains always on, which prevents bellIsUrgent from working, as the urgent WM_HINT flag is only set in setXUrgency() when the window is not focused. Fix this by updating screen->select in unselectwindow() regardless of the value of always_highlight (patch by Jiri Bohac). * improve fix for interaction between SRM and ENQ (report by Grant Taylor). * build-fix for --with-Xaw3dxft, needed when --with-toolbar is omitted (report by Jimmy Olgeni, Emanuel Haupt). - Updated to Patch #365 - 2021/02/03 * amend fix for ?word? selection in patch #364 to limit that to the insert-selectable action, which reads data from the screen. This restores the interactive behavior where double-clicking on a ?word? would make subsequent selection extensions by words as well as suppressing some boundary-checks (report by David Wolfskill, FreeBSD #253225). - Updated to Patch #364 - 2021/02/02 * add -fc option. * correct/improve limit-checks for SRM versus ENQ from patch #344 (report by Tom Szilagyi). * enable XftFont resource in Xaw3dxft configuration (patch by Tavis Ormandy). * improve quoting/escaping in build-scripts per shellcheck. * add libpcre2-posix to the packages tested for --with-pcre2 option, needed with Fedora (report by Tomas Korbar). * correct a typo in manual page, and note that KeepClipboard may not be compiled-in (report/patch by Sean C Farley). * corrected boundary-checks for ?word? selection used in onNClicks resources (report by Tavis Ormandy). * update to autoconf-2.52-20210101, to improve shellcheck warnings. * improve configure check for desktop categories.

1 0

New Kubic snapshot 20210215 released!
by Richard Brown 17 Feb '21

17 Feb '21

Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=1&version=T… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: apparmor boost-base kernel-default-base (5.10.14 -> 5.10.16) kernel-firmware (20210119 -> 20210208) kernel-source (5.10.14 -> 5.10.16) kmod libapparmor libressl (3.2.3 -> 3.2.4) perl-Bootloader (0.932 -> 0.933) python-requests python38 python38-core rpm === Details === ==== apparmor ==== Subpackages: apparmor-abstractions apparmor-parser apparmor-profiles apparmor-utils python3-apparmor - merge libapparmor.changes into apparmor.changes ==== boost-base ==== Subpackages: boost-license1_75_0 libboost_thread1_75_0 - Fix HPC build on ARM. It seems boost_serialization libraries are no longer implicitly build with this setup. - Add build support for gcc10 to HPC build (bsc#1174439). - Add openmpi4 flavors (jsc#SLE-16462). ==== kernel-default-base ==== Version update (5.10.14 -> 5.10.16) - Add modules which got lost when migrating away from supported.conf (bsc#1182110): * am53c974 had a typo * cls_bpf, iscsi_ibft, libahci, libata, openvswitch, sch_ingress - Also add vport-* modules for Open vSwitch ==== kernel-firmware ==== Version update (20210119 -> 20210208) Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network ucode-amd - Update to version 20210208 (commit b79d2396bc63): * Mellanox: Add new mlxsw_spectrum firmware xx.2008.2304 * linux-firmware: add firmware for MT7921 * rtw88: RTL8821C: Update firmware to v24.8 * linux-firmware: Update firmware file for Intel Bluetooth AX210 * linux-firmware: Update firmware file for Intel Bluetooth AX200 * linux-firmware: Update firmware file for Intel Bluetooth AX201 * i915: Add DMC v2.01 for ADL-S * i915: Add HuC v7.7.1 for DG1 * i915: Add GuC v49.0.1 for DG1 * qcom: Add venus firmware files for VPU-1.0 * qcom: Add SM8250 Compute DSP firmware * qcom: Add SM8250 Audio DSP firmware * qcom: add firmware files for Adreno a650 ==== kernel-source ==== Version update (5.10.14 -> 5.10.16) - Linux 5.10.16 (bsc#1012628). - squashfs: add more sanity checks in xattr id lookup (bsc#1012628). - squashfs: add more sanity checks in inode lookup (bsc#1012628). - squashfs: add more sanity checks in id lookup (bsc#1012628). - squashfs: avoid out of bounds writes in decompressors (bsc#1012628). - Revert "mm: memcontrol: avoid workload stalls when lowering memory.high" (bsc#1012628). - nilfs2: make splice write available again (bsc#1012628). - drm/i915: Skip vswing programming for TBT (bsc#1012628). - drm/i915: Fix ICL MG PHY vswing handling (bsc#1012628). - bpf: Fix verifier jsgt branch analysis on max bound (bsc#1012628). - bpf: Fix 32 bit src register truncation on div/mod (bsc#1012628). - bpf: Fix verifier jmp32 pruning decision logic (bsc#1012628). - regulator: Fix lockdep warning resolving supplies (bsc#1012628). - blk-cgroup: Use cond_resched() when destroy blkgs (bsc#1012628). - i2c: mediatek: Move suspend and resume handling to NOIRQ phase (bsc#1012628). - SUNRPC: Handle 0 length opaque XDR object data properly (bsc#1012628). - SUNRPC: Move simple_get_bytes and simple_get_netobj into private header (bsc#1012628). - iwlwifi: queue: bail out on invalid freeing (bsc#1012628). - iwlwifi: mvm: guard against device removal in reprobe (bsc#1012628). - iwlwifi: pcie: add rules to match Qu with Hr2 (bsc#1012628). - iwlwifi: mvm: invalidate IDs of internal stations at mvm start (bsc#1012628). - iwlwifi: pcie: fix context info memory leak (bsc#1012628). - iwlwifi: pcie: add a NULL check in iwl_pcie_txq_unmap (bsc#1012628). - iwlwifi: mvm: take mutex for calling iwl_mvm_get_sync_time() (bsc#1012628). - iwlwifi: mvm: skip power command when unbinding vif during CSA (bsc#1012628). - ASoC: Intel: sof_sdw: set proper flags for Dell TGL-H SKU 0A5E (bsc#1012628). - ASoC: ak4458: correct reset polarity (bsc#1012628). - ALSA: hda: intel-dsp-config: add PCI id for TGL-H (bsc#1012628). - pNFS/NFSv4: Improve rejection of out-of-order layouts (bsc#1012628). - pNFS/NFSv4: Try to return invalid layout in pnfs_layout_process() (bsc#1012628). - chtls: Fix potential resource leak (bsc#1012628). - ASoC: Intel: Skylake: Zero snd_ctl_elem_value (bsc#1012628). - mac80211: 160MHz with extended NSS BW in CSA (bsc#1012628). - drm/nouveau/nvif: fix method count when pushing an array (bsc#1012628). - ASoC: wm_adsp: Fix control name parsing for multi-fw (bsc#1012628). - regulator: core: avoid regulator_resolve_supply() race condition (bsc#1012628). - af_key: relax availability checks for skb size calculation (bsc#1012628). - powerpc/64/signal: Fix regression in __kernel_sigtramp_rt64() semantics (bsc#1012628). - gpiolib: cdev: clear debounce period if line set to output (bsc#1012628). - io_uring: drop mm/files between task_work_submit (bsc#1012628). - io_uring: reinforce cancel on flush during exit (bsc#1012628). - io_uring: fix sqo ownership false positive warning (bsc#1012628). - io_uring: fix list corruption for splice file_get (bsc#1012628). - io_uring: fix flush cqring overflow list while TASK_INTERRUPTIBLE (bsc#1012628). - io_uring: fix cancellation taking mutex while TASK_UNINTERRUPTIBLE (bsc#1012628). - io_uring: replace inflight_wait with tctx->wait (bsc#1012628). - io_uring: fix __io_uring_files_cancel() with TASK_UNINTERRUPTIBLE (bsc#1012628). - io_uring: if we see flush on exit, cancel related tasks (bsc#1012628). - io_uring: account io_uring internal files as REQ_F_INFLIGHT (bsc#1012628). - io_uring: fix files cancellation (bsc#1012628). - io_uring: always batch cancel in *cancel_files() (bsc#1012628). - io_uring: pass files into kill timeouts/poll (bsc#1012628). - io_uring: don't iterate io_uring_cancel_files() (bsc#1012628). - io_uring: add a {task,files} pair matching helper (bsc#1012628). - io_uring: simplify io_task_match() (bsc#1012628). - commit 11381f3 - Update config files: enable CONFIG_SERIAL_DEV_CTRL_TTYPORT on x86 (bsc#1182035) For supporting MS Surface devices. This required CONFIG_SERIAL_DEV_BUS to be built-in. Also this allowed CONFIG_BT_HCIUART_BCM=y as well. - commit 2d8fb7a - media: pwc: Use correct device for DMA (bsc#1181133). - commit 4a7417d - Drop pwc fix patch; it'll be replaced with the upstream fix (bsc#1181133) - commit 2202405 - Update config files: armv7hl: Set ledtrig-default-on as builtin (bsc#1182128) - commit d24d9b2 - btrfs: fix crash after non-aligned direct IO write with O_DSYNC (bsc#1181605). - commit 9e44573 - Update config files: Set ledtrig-default-on as builtin (bsc#1182128) - commit 7119d5a - Update config files. Enable DWC3 on x86_64 DWC3 is now needed on x86_64, too, with the added benefit of making x86_64 and ARM64 closer (jsc#SLE-14042) - commit 7cc21b5 - Linux 5.10.15 (bsc#1012628). - USB: serial: cp210x: add pid/vid for WSDA-200-USB (bsc#1012628). - USB: serial: cp210x: add new VID/PID for supporting Teraoka AD2000 (bsc#1012628). - USB: serial: option: Adding support for Cinterion MV31 (bsc#1012628). - usb: host: xhci: mvebu: make USB 3.0 PHY optional for Armada 3720 (bsc#1012628). - USB: gadget: legacy: fix an error code in eth_bind() (bsc#1012628). - usb: gadget: aspeed: add missing of_node_put (bsc#1012628). - USB: usblp: don't call usb_set_interface if there's a single alt (bsc#1012628). - usb: renesas_usbhs: Clear pipe running flag in usbhs_pkt_pop() (bsc#1012628). - usb: dwc2: Fix endpoint direction check in ep_from_windex (bsc#1012628). - usb: dwc3: fix clock issue during resume in OTG mode (bsc#1012628). - usb: xhci-mtk: fix unreleased bandwidth data (bsc#1012628). - usb: xhci-mtk: skip dropping bandwidth of unchecked endpoints (bsc#1012628). - usb: xhci-mtk: break loop when find the endpoint to drop (bsc#1012628). - ARM: OMAP1: OSK: fix ohci-omap breakage (bsc#1012628). - arm64: dts: qcom: c630: keep both touchpad devices enabled (bsc#1012628). - Input: i8042 - unbreak Pegatron C15B (bsc#1012628). - arm64: dts: amlogic: meson-g12: Set FL-adj property value (bsc#1012628). - arm64: dts: rockchip: fix vopl iommu irq on px30 (bsc#1012628). - arm64: dts: rockchip: Use only supported PCIe link speed on Pinebook Pro (bsc#1012628). - ARM: dts: stm32: Fix polarity of the DH DRC02 uSD card detect (bsc#1012628). - ARM: dts: stm32: Connect card-detect signal on DHCOM (bsc#1012628). - ARM: dts: stm32: Disable WP on DHCOM uSD slot (bsc#1012628). - ARM: dts: stm32: Disable optional TSC2004 on DRC02 board (bsc#1012628). - ARM: dts: stm32: Fix GPIO hog flags on DHCOM DRC02 (bsc#1012628). - vdpa/mlx5: Fix memory key MTT population (bsc#1012628). - bpf, cgroup: Fix optlen WARN_ON_ONCE toctou (bsc#1012628). - bpf, cgroup: Fix problematic bounds check (bsc#1012628). - bpf, inode_storage: Put file handler if no storage was found (bsc#1012628). - um: virtio: free vu_dev only with the contained struct device (bsc#1012628). - bpf, preload: Fix build when $(O) points to a relative path (bsc#1012628). - arm64: dts: meson: switch TFLASH_VDD_EN pin to open drain on Odroid-C4 (bsc#1012628). - r8169: work around RTL8125 UDP hw bug (bsc#1012628). - rxrpc: Fix deadlock around release of dst cached on udp tunnel (bsc#1012628). - arm64: dts: ls1046a: fix dcfg address range (bsc#1012628). - SUNRPC: Fix NFS READs that start at non-page-aligned offsets (bsc#1012628). - igc: set the default return value to -IGC_ERR_NVM in igc_write_nvm_srwr (bsc#1012628). - igc: check return value of ret_val in igc_config_fc_after_link_up (bsc#1012628). - i40e: Revert "i40e: don't report link up for a VF who hasn't enabled queues" (bsc#1012628). - ibmvnic: device remove has higher precedence over reset (bsc#1012628). - net/mlx5: Fix leak upon failure of rule creation (bsc#1012628). - net/mlx5e: Update max_opened_tc also when channels are closed (bsc#1012628). - net/mlx5e: Release skb in case of failure in tc update skb (bsc#1012628). - net: lapb: Copy the skb before sending a packet (bsc#1012628). - net: mvpp2: TCAM entry enable should be written after SRAM data (bsc#1012628). - r8169: fix WoL on shutdown if CONFIG_DEBUG_SHIRQ is set (bsc#1012628). - net: ipa: pass correct dma_handle to dma_free_coherent() (bsc#1012628). - ARM: dts: sun7i: a20: bananapro: Fix ethernet phy-mode (bsc#1012628). - nvmet-tcp: fix out-of-bounds access when receiving multiple h2cdata PDUs (bsc#1012628). - vdpa/mlx5: Restore the hardware used index after change map (bsc#1012628). - memblock: do not start bottom-up allocations with kernel_end (bsc#1012628). - kbuild: fix duplicated flags in DEBUG_CFLAGS (bsc#1012628). - thunderbolt: Fix possible NULL pointer dereference in tb_acpi_add_link() (bsc#1012628). - ovl: fix dentry leak in ovl_get_redirect (bsc#1012628). - ovl: avoid deadlock on directory ioctl (bsc#1012628). - ovl: implement volatile-specific fsync error behaviour (bsc#1012628). - mac80211: fix station rate table updates on assoc (bsc#1012628). - gpiolib: free device name on error path to fix kmemleak (bsc#1012628). - fgraph: Initialize tracing_graph_pause at task creation (bsc#1012628). - tracing/kprobe: Fix to support kretprobe events on unloaded modules (bsc#1012628). - kretprobe: Avoid re-registration of the same kretprobe earlier (bsc#1012628). - tracing: Use pause-on-trace with the latency tracers (bsc#1012628). - tracepoint: Fix race between tracing and removing tracepoint (bsc#1012628). - libnvdimm/namespace: Fix visibility of namespace resource attribute (bsc#1012628). - libnvdimm/dimm: Avoid race between probe and available_slots_show() (bsc#1012628). - genirq: Prevent [devm_]irq_alloc_desc from returning irq 0 (bsc#1012628). - genirq/msi: Activate Multi-MSI early when MSI_FLAG_ACTIVATE_EARLY is set (bsc#1012628). - scripts: use pkg-config to locate libcrypto (bsc#1012628). - xhci: fix bounce buffer usage for non-sg list case (bsc#1012628). - RISC-V: Define MAXPHYSMEM_1GB only for RV32 (bsc#1012628). - cifs: report error instead of invalid when revalidating a dentry fails (bsc#1012628). - iommu: Check dev->iommu in dev_iommu_priv_get() before dereferencing it (bsc#1012628). - smb3: Fix out-of-bounds bug in SMB2_negotiate() (bsc#1012628). - smb3: fix crediting for compounding when only one request in flight (bsc#1012628). - mmc: sdhci-pltfm: Fix linking err for sdhci-brcmstb (bsc#1012628). - mmc: core: Limit retries when analyse of SDIO tuples fails (bsc#1012628). - Fix unsynchronized access to sev members through svm_register_enc_region (bsc#1012628). - drm/dp/mst: Export drm_dp_get_vc_payload_bw() (bsc#1012628). - drm/i915: Fix the MST PBN divider calculation (bsc#1012628). - drm/i915/gem: Drop lru bumping on display unpinning (bsc#1012628). - drm/i915/gt: Close race between enable_breadcrumbs and cancel_breadcrumbs (bsc#1012628). - drm/i915/display: Prevent double YUV range correction on HDR planes (bsc#1012628). - drm/i915: Extract intel_ddi_power_up_lanes() (bsc#1012628). - drm/i915: Power up combo PHY lanes for for HDMI as well (bsc#1012628). - drm/amd/display: Revert "Fix EDID parsing after resume from suspend" (bsc#1012628). - io_uring: don't modify identity's files uncess identity is cowed (bsc#1012628). - nvme-pci: avoid the deepest sleep state on Kingston A2000 SSDs (bsc#1012628). - KVM: SVM: Treat SVM as unsupported when running as an SEV guest (bsc#1012628). - KVM: x86/mmu: Fix TDP MMU zap collapsible SPTEs (bsc#1012628). - KVM: x86: Allow guests to see MSR_IA32_TSX_CTRL even if tsx=off (bsc#1012628). - KVM: x86: fix CPUID entries returned by KVM_GET_CPUID2 ioctl (bsc#1012628). - KVM: x86: Update emulator context mode if SYSENTER xfers to 64-bit mode (bsc#1012628). - KVM: x86: Set so called 'reserved CR3 bits in LM mask' at vCPU reset (bsc#1012628). - DTS: ARM: gta04: remove legacy spi-cs-high to make display work again (bsc#1012628). - ARM: dts; gta04: SPI panel chip select is active low (bsc#1012628). - ARM: footbridge: fix dc21285 PCI configuration accessors (bsc#1012628). - ARM: 9043/1: tegra: Fix misplaced tegra_uart_config in decompressor (bsc#1012628). - mm: hugetlbfs: fix cannot migrate the fallocated HugeTLB page (bsc#1012628). - mm: hugetlb: fix a race between freeing and dissolving the page (bsc#1012628). - mm: hugetlb: fix a race between isolating and freeing page (bsc#1012628). - mm: hugetlb: remove VM_BUG_ON_PAGE from page_huge_active (bsc#1012628). - mm, compaction: move high_pfn to the for loop scope (bsc#1012628). - mm/vmalloc: separate put pages and flush VM flags (bsc#1012628). - mm: thp: fix MADV_REMOVE deadlock on shmem THP (bsc#1012628). - mm/filemap: add missing mem_cgroup_uncharge() to __add_to_page_cache_locked() (bsc#1012628). - x86/build: Disable CET instrumentation in the kernel (bsc#1012628). - x86/debug: Fix DR6 handling (bsc#1012628). - x86/debug: Prevent data breakpoints on __per_cpu_offset (bsc#1012628). - x86/debug: Prevent data breakpoints on cpu_dr7 (bsc#1012628). - x86/apic: Add extra serialization for non-serializing MSRs (bsc#1012628). - Input: goodix - add support for Goodix GT9286 chip (bsc#1012628). - Input: xpad - sync supported devices with fork on GitHub (bsc#1012628). - Input: ili210x - implement pressure reporting for ILI251x (bsc#1012628). - md: Set prev_flush_start and flush_bio in an atomic way (bsc#1012628). - igc: Report speed and duplex as unknown when device is runtime suspended (bsc#1012628). - neighbour: Prevent a dead entry from updating gc_list (bsc#1012628). - net: ip_tunnel: fix mtu calculation (bsc#1012628). - udp: ipv4: manipulate network header of NATed UDP GRO fraglist (bsc#1012628). - net: dsa: mv88e6xxx: override existent unicast portvec in port_fdb_add (bsc#1012628). - net: sched: replaced invalid qdisc tree flush helper in qdisc_replace (bsc#1012628). - commit 24c2efe - Update patches.kernel.org/5.10.13-143-vsock-fix-the-race-conditions-in-multi-trans… (bsc#1012628 bsc#1181806 CVE-2021-26708). Add CVE number. - commit bf327d1 - config: arm64: Use y for CLK_RK3399 This is to fix booting on RK3399 systems (JeOS-rockpi4) When compiled as 'm' there are lots of errors related to clk and no host mmc controler initialized. - commit 52fdc54 ==== kmod ==== Subpackages: libkmod2 - Fix tests to not test disabled features. Disable zstd again. + kmod-populate-modules-Use-more-bash-more-quotes.patch + kmod-testsuite-compress-modules-if-feature-is-enabled.patch + kmod-also-test-xz-compression.patch ==== libapparmor ==== - merge libapparmor.changes into apparmor.changes - define %_pamdir for <= 15.x to fix the build on those releases - add apache-extra-profile-include-if-exists.diff: make <apache2.d> include in apache extra profile optional to avoid problems with empty profile directory (boo#1178527) - prepare usrmerge (boo#1029961) * use %_pamdir ==== libressl ==== Version update (3.2.3 -> 3.2.4) Subpackages: libcrypto46 libssl48 libtls20 - Update to release 3.2.4 * Switch back to certificate verification code from LibreSSL 3.1.x. The new verifier is not bug compatible with the old verifier causing issues with applications expecting behavior of the old verifier. * Unbreak DTLS retransmissions for flights that include a CCS. * Implement autochain for the TLSv1.3 server. * Use the legacy verifier for autochain. * Implement exporter for TLSv1.3. * Plug leak in x509_verify_chain_dup(). ==== perl-Bootloader ==== Version update (0.932 -> 0.933) - merge gh#openSUSE/perl-bootloader#133 - use shim on aarch64 (jsc#SLE-15823, jsc#SLE-15020) - 0.933 ==== python-requests ==== - add 5711.patch from upstream instead to remove idna<3 pin ==== python38 ==== - Add Obsoletes for python3-base when primary interpreter is set to properly replace it during upgrades. (bsc#1181324) - Provide %have_<flavor> for all python flavors gh#openSUSE/python-rpm-macros#96 - Add %python3_default and %default_python3 for the primary python3 flavor ==== python38-core ==== Subpackages: libpython3_8-1_0 python38-base - Add Obsoletes for python3-base when primary interpreter is set to properly replace it during upgrades. (bsc#1181324) - Provide %have_<flavor> for all python flavors gh#openSUSE/python-rpm-macros#96 - Add %python3_default and %default_python3 for the primary python3 flavor ==== rpm ==== Subpackages: librpmbuild9 - Use shipped config.sub/config.guess instead of stone-aged from libtool - auto-config-update-aarch64-ppc64le.diff: update grep regex

1 0

New MicroOS snapshot 20210212 released!
by Richard Brown 16 Feb '21

16 Feb '21

Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: containers-systemd (0.0+git20210118.1366ecb -> 0.0+git20210205.a4b07b6) dosfstools (4.1+git.1610658652.9443732 -> 4.2) ffmpeg-4 fftw3 gcc10 gcc11 (11.0.0+git182924 -> 11.0.0+git183291) glib2 (2.66.4 -> 2.66.6) glibc (2.32 -> 2.33) ibus kernel-source (5.10.12 -> 5.10.14) libevent libqt5-qtbase libselinux libwebp (1.1.0 -> 1.2.0) logrotate (3.17.0 -> 3.18.0) nghttp2 (1.42.0 -> 1.43.0) openssh pigz (2.4 -> 2.6) pinentry python-requests re2 (20201101 -> 20210202) supportutils (3.1.13 -> 3.1.14) wpa_supplicant === Details === ==== containers-systemd ==== Version update (0.0+git20210118.1366ecb -> 0.0+git20210205.a4b07b6) - Update to version 0.0+git20210205.a4b07b6: * Add container-nfs-service files ==== dosfstools ==== Version update (4.1+git.1610658652.9443732 -> 4.2) - update to 4.2: * mkfs.fat: Allow to specify disk geometry via new -g option * fsck.fat: Add code for fixing first FAT cluster * fatlabel: Do not call parts of fsck repair procedure * Update warning message about lowercase labels * mkfs.fat: Read geom_start from sysfs * Add missing files into distribution tarball ==== ffmpeg-4 ==== Subpackages: libavcodec58_91 libavformat58_45 libavutil56_51 libswresample3_7 - Add 0001-avformat-vividas-improve-extradata-packing-checks-in.patch [boo#1180519] [CVE-2020-35964] ==== fftw3 ==== - Add build support for gcc10 to HPC build (bsc#1174439). ==== gcc10 ==== - Remove include-fixed/pthread.h - Change GCC exception licenses to SPDX format ==== gcc11 ==== Version update (11.0.0+git182924 -> 11.0.0+git183291) Subpackages: libgcc_s1 libgomp1 libstdc++6 - Bump to efcd941e86b507d77e90a1b13f621e036eacdb45. - Bump to 7a18bc4ae62081021f4fd90d591a588cac931f77. - New package, inherits from gcc10 * gcc-add-defaultsspec.diff, add the ability to provide a specs file that is read by default * tls-no-direct.diff, avoid direct %fs references on x86 to not slow down Xen * gcc43-no-unwind-tables.diff, do not produce unwind tables for CRT files * gcc41-ppc32-retaddr.patch, fix expansion of __builtin_return_addr for ppc, just a testcase * gcc44-textdomain.patch, make translation files version specific and adjust textdomain to find them * gcc44-rename-info-files.patch, fix cross-references in info files when renaming them to be version specific * gcc48-libstdc++-api-reference.patch, fix link in the installed libstdc++ html documentation * gcc48-remove-mpfr-2.4.0-requirement.patch, make GCC work with earlier mpfr versions on old products * gcc5-no-return-gcc43-workaround.patch, make build work with host gcc 4.3 * gcc7-remove-Wexpansion-to-defined-from-Wextra.patch, removes new warning from -Wextra * gcc7-avoid-fixinc-error.diff * gcc9-reproducible-builds-buildid-for-checksum.patch * gcc9-reproducible-builds.patch * gcc10-amdgcn-llvm-as.patch * gcc10-foffload-default.patch - libgccjit subpackage is added. - HWASAN is built for aarch64 target. ==== glib2 ==== Version update (2.66.4 -> 2.66.6) Subpackages: glib2-tools libgio-2_0-0 libglib-2_0-0 libgmodule-2_0-0 libgobject-2_0-0 - Update to version 2.66.6: + Fix various instances within GLib where `g_memdup()` was vulnerable to a silent integer truncation and heap overflow problem (glgo#GNOME/GLib#2319). - Update to version 2.66.5: + Fix some issues with handling over-long (invalid) input when parsing for `GDate`. + Don?t load GIO modules or parse other GIO environment variables when `AT_SECURE` is set (i.e. in a setuid/setgid/setcap process). GIO has always been documented as not being safe to use in privileged processes, but people persist in using it unsafely, so these changes should harden things against potential attacks at least a little. Unfortunately they break a couple of projects which were relying on reading `DBUS_SESSION_BUS_ADDRESS`, so GIO continues to read that for setgid/setcap (but not setuid) processes. This loophole will be closed in GLib 2.70 (see issue #2316), which should give modules 6 months to change their behaviour. + Fix `g_spawn()` searching `PATH` when it wasn?t meant to. + Bugs fixed: bgo#2168, bgo#2210, bgo#2305, glgo#GNOME/GLib!1820, glgo#GNOME/GLib!1824, glgo#GNOME/GLib!1831, glgo#GNOME/GLib!1836, glgo#GNOME/GLib!1864, glgo#GNOME/GLib!1872, glgo#GNOME/GLib!1913, glgo#GNOME/GLib!1922. - Rebase/refresh patches: + glib2-dbus-socket-path.patch + glib2-fate300461-gettext-gkeyfile-suse.patch + glib2-gdbus-codegen-version.patch + glib2-suppress-schema-deprecated-path-warning.patch + glib2-bgo569829-gettext-gkeyfile.patch ==== glibc ==== Version update (2.32 -> 2.33) Subpackages: glibc-locale glibc-locale-base - Update to glibc 2.33 * The dynamic linker accepts the --list-tunables argument which prints all the supported tunables. * The dynamic linker accepts the --argv0 argument and provides opportunity to change argv[0] string. * The dynamic linker loads optimized implementations of shared objects from subdirectories under the glibc-hwcaps directory on the library search path if the system's capabilities meet the requirements for that subdirectory. * The new --help option of the dynamic linker provides usage and information and library search path diagnostics. * The mallinfo2 function is added to report statistics as per mallinfo, but with larger field widths to accurately report values that are larger than fit in an integer. * Add <sys/platform/x86.h> to provide query macros for x86 CPU features. * A new fortification level _FORTIFY_SOURCE=3 is available. * The mallinfo function is marked deprecated. * When dlopen is used in statically linked programs, alternative library implementations from HWCAP subdirectories are no longer loaded. * The deprecated <sys/vtimes.h> header and the function vtimes have been removed. * On s390(x), the type float_t is now derived from the macro __FLT_EVAL_METHOD__ that is defined by the compiler, instead of being hardcoded to double. * A future version of glibc will stop loading shared objects from the "tls" subdirectories on the library search path, the subdirectory that corresponds to the AT_PLATFORM system name, and also stop employing the legacy AT_HWCAP search mechanism. * CVE-2021-3326: An assertion failure during conversion from the ISO-20220-JP-3 character set using the iconv function has been fixed. - Remove obsolete, unused /etc/default/nss - aarch64-static-pie.patch, euc-kr-overrun.patch, get-nprocs-cpu-online-parsing.patch, iconv-redundant-shift.patch, iconv-ucs4-loop-bounds.patch, ifunc-fma4.patch, intl-codeset-suffixes.patch, nscd-gc-cycle.patch, printf-long-double-non-normal.patch, strerrorname-np.patch, syslog-locking.patch, sysvipc.patch: Removed - Remove support for %optimize_power - Move to power4 baseline on ppc ==== ibus ==== Subpackages: libibus-1_0-5 typelib-1_0-IBus-1_0 - Fix the invalid desktop file for auto start (boo#1178447) - Fix xim.d/ibus so that a Plasma session can use XDG auto start ==== kernel-source ==== Version update (5.10.12 -> 5.10.14) - Linux 5.10.14 (bsc#1012628). - workqueue: Restrict affinity change to rescuer (bsc#1012628). - kthread: Extract KTHREAD_IS_PER_CPU (bsc#1012628). - x86/cpu: Add another Alder Lake CPU to the Intel family (bsc#1012628). - objtool: Don't fail the kernel build on fatal errors (bsc#1012628). - habanalabs: disable FW events on device removal (bsc#1012628). - habanalabs: fix backward compatibility of idle check (bsc#1012628). - habanalabs: zero pci counters packet before submit to FW (bsc#1012628). - drm/amd/display: Fixed corruptions on HPDRX link loss restore (bsc#1012628). - drm/amd/display: Use hardware sequencer functions for PG control (bsc#1012628). - drm/amd/display: Change function decide_dp_link_settings to avoid infinite looping (bsc#1012628). - drm/amd/display: Allow PSTATE chnage when no displays are enabled (bsc#1012628). - drm/amd/display: Update dram_clock_change_latency for DCN2.1 (bsc#1012628). - selftests/powerpc: Only test lwm/stmw on big endian (bsc#1012628). - platform/x86: thinkpad_acpi: Add P53/73 firmware to fan_quirk_table for dual fan control (bsc#1012628). - nvmet: set right status on error in id-ns handler (bsc#1012628). - nvme-pci: allow use of cmb on v1.4 controllers (bsc#1012628). - nvme-tcp: avoid request double completion for concurrent nvme_tcp_timeout (bsc#1012628). - nvme-rdma: avoid request double completion for concurrent nvme_rdma_timeout (bsc#1012628). - nvme: check the PRINFO bit before deciding the host buffer length (bsc#1012628). - udf: fix the problem that the disc content is not displayed (bsc#1012628). - i2c: tegra: Create i2c_writesl_vi() to use with VI I2C for filling TX FIFO (bsc#1012628). - ALSA: hda: Add Cometlake-R PCI ID (bsc#1012628). - scsi: ibmvfc: Set default timeout to avoid crash during migration (bsc#1012628). - mac80211: fix encryption key selection for 802.3 xmit (bsc#1012628). - mac80211: fix fast-rx encryption check (bsc#1012628). - mac80211: fix incorrect strlen of .write in debugfs (bsc#1012628). - objtool: Don't add empty symbols to the rbtree (bsc#1012628). - ALSA: hda: Add AlderLake-P PCI ID and HDMI codec vid (bsc#1012628). - ASoC: SOF: Intel: hda: Resume codec to do jack detection (bsc#1012628). - scsi: fnic: Fix memleak in vnic_dev_init_devcmd2 (bsc#1012628). - scsi: libfc: Avoid invoking response handler twice if ep is already completed (bsc#1012628). - scsi: scsi_transport_srp: Don't block target in failfast state (bsc#1012628). - x86: __always_inline __{rd,wr}msr() (bsc#1012628). - locking/lockdep: Avoid noinstr warning for DEBUG_LOCKDEP (bsc#1012628). - habanalabs: fix dma_addr passed to dma_mmap_coherent (bsc#1012628). - platform/x86: intel-vbtn: Support for tablet mode on Dell Inspiron 7352 (bsc#1012628). - platform/x86: touchscreen_dmi: Add swap-x-y quirk for Goodix touchscreen on Estar Beauty HD tablet (bsc#1012628). - tools/power/x86/intel-speed-select: Set higher of cpuinfo_max_freq or base_frequency (bsc#1012628). - tools/power/x86/intel-speed-select: Set scaling_max_freq to base_frequency (bsc#1012628). - phy: cpcap-usb: Fix warning for missing regulator_disable (bsc#1012628). - iommu/vt-d: Do not use flush-queue when caching-mode is on (bsc#1012628). - ARM: 9025/1: Kconfig: CPU_BIG_ENDIAN depends on !LD_IS_LLD (bsc#1012628). - Revert "x86/setup: don't remove E820_TYPE_RAM for pfn 0" (bsc#1012628). - arm64: Do not pass tagged addresses to __is_lm_address() (bsc#1012628). - arm64: Fix kernel address detection of __is_lm_address() (bsc#1012628). - arm64: dts: meson: Describe G12b GPU as coherent (bsc#1012628). - drm/panfrost: Support cache-coherent integrations (bsc#1012628). - iommu/io-pgtable-arm: Support coherency for Mali LPAE (bsc#1012628). - ibmvnic: Ensure that CRQ entry read are correctly ordered (bsc#1012628). - net: switchdev: don't set port_obj_info->handled true when - EOPNOTSUPP (bsc#1012628). - net: dsa: bcm_sf2: put device node before return (bsc#1012628). - mlxsw: spectrum_span: Do not overwrite policer configuration (bsc#1012628). - stmmac: intel: Configure EHL PSE0 GbE and PSE1 GbE to 32 bits DMA addressing (bsc#1012628). - net: octeontx2: Make sure the buffer is 128 byte aligned (bsc#1012628). - net: fec: put child node on error path (bsc#1012628). - net: stmmac: dwmac-intel-plat: remove config data on error (bsc#1012628). - net: dsa: microchip: Adjust reset release timing to match reference reset circuit (bsc#1012628). - commit 0a69f62 - Update patches.kernel.org/5.10.13-143-vsock-fix-the-race-conditions-in-multi-trans… (bsc#1012628 bsc#1181806). Add bsc reference. - commit 64ec974 - net/mlx5: Fix function calculation for page trees (git-fixes). - commit e976b88 - Linux 5.10.13 (bsc#1012628). - iwlwifi: provide gso_type to GSO packets (bsc#1012628). - nbd: freeze the queue while we're adding connections (bsc#1012628). - tty: avoid using vfs_iocb_iter_write() for redirected console writes (bsc#1012628). - ACPI: sysfs: Prefer "compatible" modalias (bsc#1012628). - ACPI: thermal: Do not call acpi_thermal_check() directly (bsc#1012628). - kernel: kexec: remove the lock operation of system_transition_mutex (bsc#1012628). - ALSA: hda/realtek: Enable headset of ASUS B1400CEPE with ALC256 (bsc#1012628). - parisc: Enable -mlong-calls gcc option by default when !CONFIG_MODULES (bsc#1012628). - media: cec: add stm32 driver (bsc#1012628). - media: cedrus: Fix H264 decoding (bsc#1012628). - media: hantro: Fix reset_raw_fmt initialization (bsc#1012628). - media: rc: fix timeout handling after switch to microsecond durations (bsc#1012628). - media: rc: ite-cir: fix min_timeout calculation (bsc#1012628). - media: rc: ensure that uevent can be read directly after rc device register (bsc#1012628). - ARM: dts: tbs2910: rename MMC node aliases (bsc#1012628). - ARM: dts: ux500: Reserve memory carveouts (bsc#1012628). - ARM: dts: imx6qdl-gw52xx: fix duplicate regulator naming (bsc#1012628). - wext: fix NULL-ptr-dereference with cfg80211's lack of commit() (bsc#1012628). - x86/xen: avoid warning in Xen pv guest with CONFIG_AMD_MEM_ENCRYPT enabled (bsc#1012628). - ASoC: AMD Renoir - refine DMI entries for some Lenovo products (bsc#1012628). - Revert "drm/amdgpu/swsmu: drop set_fan_speed_percent (v2)" (bsc#1012628). - drm/nouveau/kms/gk104-gp1xx: Fix > 64x64 cursors (bsc#1012628). - drm/i915: Always flush the active worker before returning from the wait (bsc#1012628). - drm/i915/gt: Always try to reserve GGTT address 0x0 (bsc#1012628). - drivers/nouveau/kms/nv50-: Reject format modifiers for cursor planes (bsc#1012628). - bcache: only check feature sets when sb->version >= BCACHE_SB_VERSION_CDEV_WITH_FEATURES (bsc#1012628). - net: usb: qmi_wwan: added support for Thales Cinterion PLSx3 modem family (bsc#1012628). - s390: uv: Fix sysfs max number of VCPUs reporting (bsc#1012628). - s390/vfio-ap: No need to disable IRQ after queue reset (bsc#1012628). - PM: hibernate: flush swap writer after marking (bsc#1012628). - x86/entry: Emit a symbol for register restoring thunk (bsc#1012628). - efi/apple-properties: Reinstate support for boolean properties (bsc#1012628). - crypto: marvel/cesa - Fix tdma descriptor on 64-bit (bsc#1012628). - drivers: soc: atmel: Avoid calling at91_soc_init on non AT91 SoCs (bsc#1012628). - drivers: soc: atmel: add null entry at the end of at91_soc_allowed_list[] (bsc#1012628). - btrfs: fix lockdep warning due to seqcount_mutex on 32bit arch (bsc#1012628). - btrfs: fix possible free space tree corruption with online conversion (bsc#1012628). - KVM: x86/pmu: Fix HW_REF_CPU_CYCLES event pseudo-encoding in intel_arch_events[] (bsc#1012628). - KVM: x86/pmu: Fix UBSAN shift-out-of-bounds warning in intel_pmu_refresh() (bsc#1012628). - KVM: arm64: Filter out v8.1+ events on v8.0 HW (bsc#1012628). - KVM: nSVM: cancel KVM_REQ_GET_NESTED_STATE_PAGES on nested vmexit (bsc#1012628). - KVM: x86: allow KVM_REQ_GET_NESTED_STATE_PAGES outside guest mode for VMX (bsc#1012628). - KVM: nVMX: Sync unsync'd vmcs02 state to vmcs12 on migration (bsc#1012628). - KVM: x86: get smi pending status correctly (bsc#1012628). - KVM: Forbid the use of tagged userspace addresses for memslots (bsc#1012628). - io_uring: fix wqe->lock/completion_lock deadlock (bsc#1012628). - xen: Fix XenStore initialisation for XS_LOCAL (bsc#1012628). - leds: trigger: fix potential deadlock with libata (bsc#1012628). - arm64: dts: broadcom: Fix USB DMA address translation for Stingray (bsc#1012628). - mt7601u: fix kernel crash unplugging the device (bsc#1012628). - mt76: mt7663s: fix rx buffer refcounting (bsc#1012628). - mt7601u: fix rx buffer refcounting (bsc#1012628). - iwlwifi: Fix IWL_SUBDEVICE_NO_160 macro to use the correct bit (bsc#1012628). - drm/i915/gt: Clear CACHE_MODE prior to clearing residuals (bsc#1012628). - drm/i915/pmu: Don't grab wakeref when enabling events (bsc#1012628). - net/mlx5e: Fix IPSEC stats (bsc#1012628). - ARM: dts: imx6qdl-kontron-samx6i: fix pwms for lcd-backlight (bsc#1012628). - drm/nouveau/svm: fail NOUVEAU_SVM_INIT ioctl on unsupported devices (bsc#1012628). - drm/vc4: Correct lbm size and calculation (bsc#1012628). - drm/vc4: Correct POS1_SCL for hvs5 (bsc#1012628). - drm/i915: Check for all subplatform bits (bsc#1012628). - drm/i915/selftest: Fix potential memory leak (bsc#1012628). - uapi: fix big endian definition of ipv6_rpl_sr_hdr (bsc#1012628). - KVM: Documentation: Fix spec for KVM_CAP_ENABLE_CAP_VM (bsc#1012628). - tee: optee: replace might_sleep with cond_resched (bsc#1012628). - xen-blkfront: allow discard-* nodes to be optional (bsc#1012628). - blk-mq: test QUEUE_FLAG_HCTX_ACTIVE for sbitmap_shared in hctx_may_queue (bsc#1012628). - clk: imx: fix Kconfig warning for i.MX SCU clk (bsc#1012628). - clk: mmp2: fix build without CONFIG_PM (bsc#1012628). - clk: qcom: gcc-sm250: Use floor ops for sdcc clks (bsc#1012628). - ARM: imx: build suspend-imx6.S with arm instruction set (bsc#1012628). - ARM: zImage: atags_to_fdt: Fix node names on added root nodes (bsc#1012628). - netfilter: nft_dynset: add timeout extension to template (bsc#1012628). - Revert "RDMA/mlx5: Fix devlink deadlock on net namespace deletion" (bsc#1012628). - Revert "block: simplify set_init_blocksize" to regain lost performance (bsc#1012628). - xfrm: Fix oops in xfrm_replay_advance_bmp (bsc#1012628). - xfrm: fix disable_xfrm sysctl when used on xfrm interfaces (bsc#1012628). - selftests: xfrm: fix test return value override issue in xfrm_policy.sh (bsc#1012628). - xfrm: Fix wraparound in xfrm_policy_addr_delta() (bsc#1012628). - arm64: dts: ls1028a: fix the offset of the reset register (bsc#1012628). - ARM: imx: fix imx8m dependencies (bsc#1012628). - ARM: dts: imx6qdl-kontron-samx6i: fix i2c_lcd/cam default status (bsc#1012628). - ARM: dts: imx6qdl-sr-som: fix some cubox-i platforms (bsc#1012628). - arm64: dts: imx8mp: Correct the gpio ranges of gpio3 (bsc#1012628). - firmware: imx: select SOC_BUS to fix firmware build (bsc#1012628). - RDMA/cxgb4: Fix the reported max_recv_sge value (bsc#1012628). - ASoC: dt-bindings: lpass: Fix and common up lpass dai ids (bsc#1012628). - ASoC: qcom: Fix incorrect volatile registers (bsc#1012628). - ASoC: qcom: Fix broken support to MI2S TERTIARY and QUATERNARY (bsc#1012628). - ASoC: qcom: lpass-ipq806x: fix bitwidth regmap field (bsc#1012628). - spi: altera: Fix memory leak on error path (bsc#1012628). - ASoC: Intel: Skylake: skl-topology: Fix OOPs ib skl_tplg_complete (bsc#1012628). - powerpc/64s: prevent recursive replay_soft_interrupts causing superfluous interrupt (bsc#1012628). - pNFS/NFSv4: Fix a layout segment leak in pnfs_layout_process() (bsc#1012628). - pNFS/NFSv4: Update the layout barrier when we schedule a layoutreturn (bsc#1012628). - ASoC: SOF: Intel: soundwire: fix select/depend unmet dependencies (bsc#1012628). - ASoC: qcom: lpass: Fix out-of-bounds DAI ID lookup (bsc#1012628). - iwlwifi: pcie: avoid potential PNVM leaks (bsc#1012628). - iwlwifi: pnvm: don't skip everything when not reloading (bsc#1012628). - iwlwifi: pnvm: don't try to load after failures (bsc#1012628). - iwlwifi: pcie: set LTR on more devices (bsc#1012628). - iwlwifi: pcie: use jiffies for memory read spin time limit (bsc#1012628). - iwlwifi: pcie: reschedule in long-running memory reads (bsc#1012628). - mac80211: pause TX while changing interface type (bsc#1012628). - ice: fix FDir IPv6 flexbyte (bsc#1012628). - ice: Implement flow for IPv6 next header (extension header) (bsc#1012628). - ice: update dev_addr in ice_set_mac_address even if HW filter exists (bsc#1012628). - ice: Don't allow more channels than LAN MSI-X available (bsc#1012628). - ice: Fix MSI-X vector fallback logic (bsc#1012628). - i40e: acquire VSI pointer only after VF is initialized (bsc#1012628). - igc: fix link speed advertising (bsc#1012628). - net/mlx5: Fix memory leak on flow table creation error flow (bsc#1012628). - net/mlx5e: E-switch, Fix rate calculation for overflow (bsc#1012628). - net/mlx5e: free page before return (bsc#1012628). - net/mlx5e: Reduce tc unsupported key print level (bsc#1012628). - net/mlx5: Maintain separate page trees for ECPF and PF functions (bsc#1012628). - net/mlx5e: Disable hw-tc-offload when MLX5_CLS_ACT config is disabled (bsc#1012628). - net/mlx5e: Fix CT rule + encap slow path offload and deletion (bsc#1012628). - net/mlx5e: Correctly handle changing the number of queues when the interface is down (bsc#1012628). - net/mlx5e: Revert parameters on errors when changing trust state without reset (bsc#1012628). - net/mlx5e: Revert parameters on errors when changing MTU and LRO state without reset (bsc#1012628). - net/mlx5: CT: Fix incorrect removal of tuple_nat_node from nat rhashtable (bsc#1012628). - can: dev: prevent potential information leak in can_fill_info() (bsc#1012628). - ACPI/IORT: Do not blindly trust DMA masks from firmware (bsc#1012628). - of/device: Update dma_range_map only when dev has valid dma-ranges (bsc#1012628). - iommu/amd: Use IVHD EFR for early initialization of IOMMU features (bsc#1012628). - iommu/vt-d: Correctly check addr alignment in qi_flush_dev_iotlb_pasid() (bsc#1012628). - nvme-multipath: Early exit if no path is available (bsc#1012628). - selftests: forwarding: Specify interface when invoking mausezahn (bsc#1012628). - rxrpc: Fix memory leak in rxrpc_lookup_local (bsc#1012628). - NFC: fix resource leak when target index is invalid (bsc#1012628). - NFC: fix possible resource leak (bsc#1012628). - ASoC: mediatek: mt8183-da7219: ignore TDM DAI link by default (bsc#1012628). - ASoC: mediatek: mt8183-mt6358: ignore TDM DAI link by default (bsc#1012628). - ASoC: topology: Properly unregister DAI on removal (bsc#1012628). - ASoC: topology: Fix memory corruption in soc_tplg_denum_create_values() (bsc#1012628). - scsi: qla2xxx: Fix description for parameter ql2xenforce_iocb_limit (bsc#1012628). - team: protect features update by RCU to avoid deadlock (bsc#1012628). - tcp: make TCP_USER_TIMEOUT accurate for zero window probes (bsc#1012628). - tcp: fix TLP timer not set when CA_STATE changes from DISORDER to OPEN (bsc#1012628). - vsock: fix the race conditions in multi-transport support (bsc#1012628). - Update patches.suse/acpi_thermal_passive_blacklist.patch (bsc#333043). - commit 3527948 ==== libevent ==== - Drop insserv_prereq and fillup_prereq macros: there are no pre-scripts that would justify these dependencies. ==== libqt5-qtbase ==== Subpackages: libQt5Concurrent5 libQt5Core5 libQt5DBus5 libQt5Gui5 libQt5Network5 libQt5OpenGL5 libQt5PrintSupport5 libQt5Sql5 libQt5Sql5-sqlite libQt5Test5 libQt5Widgets5 libQt5Xml5 - Add patch to fix build with GCC 11 (boo#1181861, QTBUG-90395): * 0001-Fix-build-with-GCC-11-include-limits.patch * 0002-Build-fixes-for-GCC-11.patch ==== libselinux ==== Subpackages: libselinux1 selinux-tools - Add Recommends: selinux-autorelabel, which is very important for healthy use of the SELinux on the system (/.autorelabel mechanism) (bsc#1181837). ==== libwebp ==== Version update (1.1.0 -> 1.2.0) Subpackages: libwebp7 libwebpdemux2 libwebpmux3 - update to 1.2.0: * API changes in libwebp: encode.h: add a qmin / qmax range for quality factor (cwebp adds -qrange) * lossless encoder improvements * SIMD support for Wasm builds * import fuzzers from oss-fuzz & chromium * webpmux: add a '-set loop <value>' option ==== logrotate ==== Version update (3.17.0 -> 3.18.0) - Update to 3.18.0: * Allow UIDs and GIDs to be specified numerically * Add support for Zstandard compressed files * Make delaycompress not to fail with rotate 0 ==== nghttp2 ==== Version update (1.42.0 -> 1.43.0) - update to 1.43.0: * doc: Make doc generation work with sphinx v3.3 * python: Require python3 for python bindings * python: Require python3 for python scripts * nghttpx: Make sure that Pool gets cleared when all buffers are returned * nghttpx: Choose ECDSA cert if compatible signature algorithm available * nghttpx: Add workaround to include ':' in backend pattern ==== openssh ==== Subpackages: openssh-clients openssh-common openssh-server - Add openssh-whitelist-syscalls.patch (bsc#1182232), fixing failure to accept connections on 32-bit platforms with glibc 2.33+. ==== pigz ==== Version update (2.4 -> 2.6) - update to 2.6: * Add --huffman/-H and --rle/U strategy options * Fix issue when compiling for no threads * Fail silently on a broken pipe * Add --alias/-A option to set .zip name for stdin input * Add --comment/-C option to add comment in .gz or .zip * Several bug and behavior fixes - drop fortify.patch: obsolete ==== pinentry ==== Subpackages: pinentry-qt5 - add _multibuild to separate out gui client builds ==== python-requests ==== - Don't pin idna<3 in the egg-info so that depending packages can install the new idna dropping python2 ==== re2 ==== Version update (20201101 -> 20210202) - Update to version 2021-02-02: * Address `-Wnull-dereference' warnings from GCC 10.x. ==== supportutils ==== Version update (3.1.13 -> 3.1.14) - Additions to version 3.1.14 + [powerpc] Collect logs for power specific components (HNV ) #88 (bsc#1181911) + Updated pam.txt documentation explaining GDPR - No longer truncates boot log (bsc#1181610) ==== wpa_supplicant ==== - Add CVE-2021-0326.patch -- P2P group information processing vulnerability (bsc#1181777)

1 0

New Kubic snapshot 20210212 released!
by Richard Brown 16 Feb '21

16 Feb '21

Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=1&version=T… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: ceph (16.0.0.5613+gb1a0951432 -> 16.1.0.46+g571704f730) containers-systemd (0.0+git20210118.1366ecb -> 0.0+git20210205.a4b07b6) dosfstools (4.1+git.1610658652.9443732 -> 4.2) gcc11 (11.0.0+git182924 -> 11.0.0+git183291) glib2 (2.66.4 -> 2.66.6) glibc (2.32 -> 2.33) haproxy (2.3.4+git0.10189c965 -> 2.3.5+git0.5902ad99b) kernel-source (5.10.12 -> 5.10.14) libevent libselinux logrotate (3.17.0 -> 3.18.0) nfs-client-provisioner (2.3.0+git20200220.a14bfd72 -> 4.0.0+git20210204.23ecb30) nghttp2 (1.42.0 -> 1.43.0) openssh pigz (2.4 -> 2.6) pinentry python-requests supportutils (3.1.13 -> 3.1.14) weave (2.7.0 -> 2.8.1) wpa_supplicant === Details === ==== ceph ==== Version update (16.0.0.5613+gb1a0951432 -> 16.1.0.46+g571704f730) Subpackages: ceph-common libcephfs2 librados2 librbd1 librgw2 python3-ceph-argparse python3-ceph-common python3-cephfs python3-rados python3-rbd python3-rgw - Update to 16.1.0-46-g571704f730 + rebase on top of upstream v16.1.0 (Pacific release candidate) + drop obsolete downstream patches that were causing conflicts: * cephadm: use registry.suse.com by default * cephadm: add global flag --container-init * mgr/cephadm: append --container-init to basecommand * cephadm: remove container-init subparser from "deploy" - Update to 16.0.0-7500-g78f6791981: + cephadm: add global flag --container-init + mgr/cephadm: append --container-init to basecommand + cephadm: remove container-init subparser from "deploy" - Update to 16.0.0-7497-g63a0682c7e: + rebase on tip of upstream "master" branch, SHA1 8c6b533ee85e7fe2cd19e5dbb6f0363898f5a2ee - Update to 16.0.0-6239-g0c2e605e78: + rebase on tip of upstream "master" branch, SHA1 6d1f1f63b711797e21ff8ff12662d07d86546e66 * cephadm: Fix error setting 'mgr/cephadm/container_init' config (PR #37500) - Update to 16.0.0-6229-g71574673b0: + rebase on tip of upstream "master" branch, SHA1 f68197eca4b4dceef9fbf497d640b4600663d3ed * ceph-volume: don't exit before empty report can be printed (PR #37591) - Update to 16.0.0-6177-g01e4ab745b: + rebase on tip of upstream "master" branch, SHA1 f8ea1f38aee3d8715186a756331a23d4b51121f2 * ceph-volume: pass filter_for_batch as keyword argument (PR #37545) - Update to 16.0.0-6162-g892bfa3fef: + drop the following commits: + lvmcache: refactor argument parsing and add -h flag + ceph-volume: install lvmcache plugin + ceph-volume: add lvmcache plugin and its tests + rebase on tip of upstream "master" branch, SHA1 0a92d5094fc0baae3af223aa16b271d2e5e6f349 + mgr/devicehealth: device_health_metrics pool gets created even without any OSDs in the cluster (bsc#1173079) ==== containers-systemd ==== Version update (0.0+git20210118.1366ecb -> 0.0+git20210205.a4b07b6) - Update to version 0.0+git20210205.a4b07b6: * Add container-nfs-service files ==== dosfstools ==== Version update (4.1+git.1610658652.9443732 -> 4.2) - update to 4.2: * mkfs.fat: Allow to specify disk geometry via new -g option * fsck.fat: Add code for fixing first FAT cluster * fatlabel: Do not call parts of fsck repair procedure * Update warning message about lowercase labels * mkfs.fat: Read geom_start from sysfs * Add missing files into distribution tarball ==== gcc11 ==== Version update (11.0.0+git182924 -> 11.0.0+git183291) Subpackages: libgcc_s1 libgomp1 libstdc++6 - Bump to efcd941e86b507d77e90a1b13f621e036eacdb45. - Bump to 7a18bc4ae62081021f4fd90d591a588cac931f77. - New package, inherits from gcc10 * gcc-add-defaultsspec.diff, add the ability to provide a specs file that is read by default * tls-no-direct.diff, avoid direct %fs references on x86 to not slow down Xen * gcc43-no-unwind-tables.diff, do not produce unwind tables for CRT files * gcc41-ppc32-retaddr.patch, fix expansion of __builtin_return_addr for ppc, just a testcase * gcc44-textdomain.patch, make translation files version specific and adjust textdomain to find them * gcc44-rename-info-files.patch, fix cross-references in info files when renaming them to be version specific * gcc48-libstdc++-api-reference.patch, fix link in the installed libstdc++ html documentation * gcc48-remove-mpfr-2.4.0-requirement.patch, make GCC work with earlier mpfr versions on old products * gcc5-no-return-gcc43-workaround.patch, make build work with host gcc 4.3 * gcc7-remove-Wexpansion-to-defined-from-Wextra.patch, removes new warning from -Wextra * gcc7-avoid-fixinc-error.diff * gcc9-reproducible-builds-buildid-for-checksum.patch * gcc9-reproducible-builds.patch * gcc10-amdgcn-llvm-as.patch * gcc10-foffload-default.patch - libgccjit subpackage is added. - HWASAN is built for aarch64 target. ==== glib2 ==== Version update (2.66.4 -> 2.66.6) Subpackages: glib2-tools libgio-2_0-0 libglib-2_0-0 libgmodule-2_0-0 libgobject-2_0-0 - Update to version 2.66.6: + Fix various instances within GLib where `g_memdup()` was vulnerable to a silent integer truncation and heap overflow problem (glgo#GNOME/GLib#2319). - Update to version 2.66.5: + Fix some issues with handling over-long (invalid) input when parsing for `GDate`. + Don?t load GIO modules or parse other GIO environment variables when `AT_SECURE` is set (i.e. in a setuid/setgid/setcap process). GIO has always been documented as not being safe to use in privileged processes, but people persist in using it unsafely, so these changes should harden things against potential attacks at least a little. Unfortunately they break a couple of projects which were relying on reading `DBUS_SESSION_BUS_ADDRESS`, so GIO continues to read that for setgid/setcap (but not setuid) processes. This loophole will be closed in GLib 2.70 (see issue #2316), which should give modules 6 months to change their behaviour. + Fix `g_spawn()` searching `PATH` when it wasn?t meant to. + Bugs fixed: bgo#2168, bgo#2210, bgo#2305, glgo#GNOME/GLib!1820, glgo#GNOME/GLib!1824, glgo#GNOME/GLib!1831, glgo#GNOME/GLib!1836, glgo#GNOME/GLib!1864, glgo#GNOME/GLib!1872, glgo#GNOME/GLib!1913, glgo#GNOME/GLib!1922. - Rebase/refresh patches: + glib2-dbus-socket-path.patch + glib2-fate300461-gettext-gkeyfile-suse.patch + glib2-gdbus-codegen-version.patch + glib2-suppress-schema-deprecated-path-warning.patch + glib2-bgo569829-gettext-gkeyfile.patch ==== glibc ==== Version update (2.32 -> 2.33) Subpackages: glibc-locale glibc-locale-base - Update to glibc 2.33 * The dynamic linker accepts the --list-tunables argument which prints all the supported tunables. * The dynamic linker accepts the --argv0 argument and provides opportunity to change argv[0] string. * The dynamic linker loads optimized implementations of shared objects from subdirectories under the glibc-hwcaps directory on the library search path if the system's capabilities meet the requirements for that subdirectory. * The new --help option of the dynamic linker provides usage and information and library search path diagnostics. * The mallinfo2 function is added to report statistics as per mallinfo, but with larger field widths to accurately report values that are larger than fit in an integer. * Add <sys/platform/x86.h> to provide query macros for x86 CPU features. * A new fortification level _FORTIFY_SOURCE=3 is available. * The mallinfo function is marked deprecated. * When dlopen is used in statically linked programs, alternative library implementations from HWCAP subdirectories are no longer loaded. * The deprecated <sys/vtimes.h> header and the function vtimes have been removed. * On s390(x), the type float_t is now derived from the macro __FLT_EVAL_METHOD__ that is defined by the compiler, instead of being hardcoded to double. * A future version of glibc will stop loading shared objects from the "tls" subdirectories on the library search path, the subdirectory that corresponds to the AT_PLATFORM system name, and also stop employing the legacy AT_HWCAP search mechanism. * CVE-2021-3326: An assertion failure during conversion from the ISO-20220-JP-3 character set using the iconv function has been fixed. - Remove obsolete, unused /etc/default/nss - aarch64-static-pie.patch, euc-kr-overrun.patch, get-nprocs-cpu-online-parsing.patch, iconv-redundant-shift.patch, iconv-ucs4-loop-bounds.patch, ifunc-fma4.patch, intl-codeset-suffixes.patch, nscd-gc-cycle.patch, printf-long-double-non-normal.patch, strerrorname-np.patch, syslog-locking.patch, sysvipc.patch: Removed - Remove support for %optimize_power - Move to power4 baseline on ppc ==== haproxy ==== Version update (2.3.4+git0.10189c965 -> 2.3.5+git0.5902ad99b) - Update to version 2.3.5+git0.5902ad99b: * [RELEASE] Released version 2.3.5 * MINOR: config: Deprecate and ignore tune.chksize global option * BUG/MINOR: sock: Unclosed fd in case of connection allocation failure * BUG/MEDIUM: mux-h2: do not quit the demux loop before setting END_REACHED * BUG/MEDIUM: mux-h2: handle remaining read0 cases * BUILD: Makefile: move REGTESTST_TYPE default setting * MINOR: cli/show_fd: report local and report ports when known * BUILD: ssl: fix build breakage with last commit * BUG/MINOR: ssl: do not try to use early data if not configured * BUG/MINOR: xxhash: make sure armv6 uses memcpy() * BUG/MINOR: mux_h2: fix incorrect stat titles * BUG/MEDIUM: ssl: check a connection's status before computing a handshake * BUG/MEDIUM: ssl/cli: abort ssl cert is freeing the old store * BUG/MINOR: stick-table: Always call smp_fetch_src() with a valid arg list * DOC: management: fix "show resolvers" alphabetical ordering * MINOR: h1: Raise the chunk size limit up to (2^52 - 1) * MINOR: mux-h1/show_fd: report as suspicious an entry with too many calls * MINOR: mux-h2/show_fd: report as suspicious an entry with too many calls * MINOR: ssl/show_fd: report some FDs as suspicious when possible * MINOR: cli/show_fd: report some easily detectable suspicious states * MINOR: cli: give the show_fd helpers the ability to report a suspicious entry * MINOR: mux-fcgi: make the "show fd" helper also decode the fstrm subscriber when known * MINOR: mux-h1: make the "show fd" helper also decode the h1s subscriber when known * MINOR: mux-h2: make the "show fd" helper also decode the h2s subscriber when known * MINOR: xprt/mux: export all *_io_cb functions so that "show fd" resolves them * MINOR: ssl: provide a "show fd" helper to report important SSL information * MINOR: xprt: add a new show_fd() helper to complete some "show fd" dumps. * MINOR: cli: make "show fd" also report the xprt and xprt_ctx * CLEANUP: cli: make "show fd" use a const connection to access other fields * CLEANUP: tools: make resolve_sym_name() take a const pointer * MINOR: contrib: Make the wireshark peers dissector compile for more distribs. * BUG/MINOR: backend: check available list allocation for reuse * BUG/MEDIUM: backend: never reuse a connection for tcp mode * REORG: backend: simplify conn_backend_get * BUG/MEDIUM: session: only retrieve ready idle conn from session * BUG/MINOR: ssl: init tmp chunk correctly in ssl_sock_load_sctl_from_file() * BUG/MINOR: config: fix leak on proxy.conn_src.bind_hdr_name * BUG/MEDIUM: filters/htx: Fix data forwarding when payload length is unknown * DOC: Improve documentation of the various hdr() fetches * BUILD/MINOR: lua: define _GNU_SOURCE for LLONG_MAX * BUG/MEDIUM: mux-h2: fix read0 handling on partial frames * BUG/MEDIUM: tcpcheck: Don't destroy connection in the wake callback context * BUG/MINOR: mworker: define _GNU_SOURCE for strsignal() * BUG/MINOR: mux_h2: missing space between "st" and ".flg" in the "show fd" helper * BUG/MINOR: peers: Wrong "new_conn" value for "show peers" CLI command. * MINOR: build: discard echoing in help target * BUG/MINOR: peers: Possible appctx pointer dereference. * BUG/MEDIUM: stats: add missing INF_BUILD_INFO definition * BUILD: peers: fix build warning about unused variable * BUG/MINOR: dns: SRV records ignores duplicated AR records (v2) * MINOR: peers: Add traces for peer control messages. * BUG/MINOR: threads: Fixes the number of possible cpus report for Mac. * MINOR: server: Forbid server definitions in frontend sections * MINOR: config: Add failifnotcap() to emit an alert on proxy capabilities * BUG/MINOR: init: Use a dynamic buffer to set HAPROXY_CFGFILES env variable ==== kernel-source ==== Version update (5.10.12 -> 5.10.14) - Linux 5.10.14 (bsc#1012628). - workqueue: Restrict affinity change to rescuer (bsc#1012628). - kthread: Extract KTHREAD_IS_PER_CPU (bsc#1012628). - x86/cpu: Add another Alder Lake CPU to the Intel family (bsc#1012628). - objtool: Don't fail the kernel build on fatal errors (bsc#1012628). - habanalabs: disable FW events on device removal (bsc#1012628). - habanalabs: fix backward compatibility of idle check (bsc#1012628). - habanalabs: zero pci counters packet before submit to FW (bsc#1012628). - drm/amd/display: Fixed corruptions on HPDRX link loss restore (bsc#1012628). - drm/amd/display: Use hardware sequencer functions for PG control (bsc#1012628). - drm/amd/display: Change function decide_dp_link_settings to avoid infinite looping (bsc#1012628). - drm/amd/display: Allow PSTATE chnage when no displays are enabled (bsc#1012628). - drm/amd/display: Update dram_clock_change_latency for DCN2.1 (bsc#1012628). - selftests/powerpc: Only test lwm/stmw on big endian (bsc#1012628). - platform/x86: thinkpad_acpi: Add P53/73 firmware to fan_quirk_table for dual fan control (bsc#1012628). - nvmet: set right status on error in id-ns handler (bsc#1012628). - nvme-pci: allow use of cmb on v1.4 controllers (bsc#1012628). - nvme-tcp: avoid request double completion for concurrent nvme_tcp_timeout (bsc#1012628). - nvme-rdma: avoid request double completion for concurrent nvme_rdma_timeout (bsc#1012628). - nvme: check the PRINFO bit before deciding the host buffer length (bsc#1012628). - udf: fix the problem that the disc content is not displayed (bsc#1012628). - i2c: tegra: Create i2c_writesl_vi() to use with VI I2C for filling TX FIFO (bsc#1012628). - ALSA: hda: Add Cometlake-R PCI ID (bsc#1012628). - scsi: ibmvfc: Set default timeout to avoid crash during migration (bsc#1012628). - mac80211: fix encryption key selection for 802.3 xmit (bsc#1012628). - mac80211: fix fast-rx encryption check (bsc#1012628). - mac80211: fix incorrect strlen of .write in debugfs (bsc#1012628). - objtool: Don't add empty symbols to the rbtree (bsc#1012628). - ALSA: hda: Add AlderLake-P PCI ID and HDMI codec vid (bsc#1012628). - ASoC: SOF: Intel: hda: Resume codec to do jack detection (bsc#1012628). - scsi: fnic: Fix memleak in vnic_dev_init_devcmd2 (bsc#1012628). - scsi: libfc: Avoid invoking response handler twice if ep is already completed (bsc#1012628). - scsi: scsi_transport_srp: Don't block target in failfast state (bsc#1012628). - x86: __always_inline __{rd,wr}msr() (bsc#1012628). - locking/lockdep: Avoid noinstr warning for DEBUG_LOCKDEP (bsc#1012628). - habanalabs: fix dma_addr passed to dma_mmap_coherent (bsc#1012628). - platform/x86: intel-vbtn: Support for tablet mode on Dell Inspiron 7352 (bsc#1012628). - platform/x86: touchscreen_dmi: Add swap-x-y quirk for Goodix touchscreen on Estar Beauty HD tablet (bsc#1012628). - tools/power/x86/intel-speed-select: Set higher of cpuinfo_max_freq or base_frequency (bsc#1012628). - tools/power/x86/intel-speed-select: Set scaling_max_freq to base_frequency (bsc#1012628). - phy: cpcap-usb: Fix warning for missing regulator_disable (bsc#1012628). - iommu/vt-d: Do not use flush-queue when caching-mode is on (bsc#1012628). - ARM: 9025/1: Kconfig: CPU_BIG_ENDIAN depends on !LD_IS_LLD (bsc#1012628). - Revert "x86/setup: don't remove E820_TYPE_RAM for pfn 0" (bsc#1012628). - arm64: Do not pass tagged addresses to __is_lm_address() (bsc#1012628). - arm64: Fix kernel address detection of __is_lm_address() (bsc#1012628). - arm64: dts: meson: Describe G12b GPU as coherent (bsc#1012628). - drm/panfrost: Support cache-coherent integrations (bsc#1012628). - iommu/io-pgtable-arm: Support coherency for Mali LPAE (bsc#1012628). - ibmvnic: Ensure that CRQ entry read are correctly ordered (bsc#1012628). - net: switchdev: don't set port_obj_info->handled true when - EOPNOTSUPP (bsc#1012628). - net: dsa: bcm_sf2: put device node before return (bsc#1012628). - mlxsw: spectrum_span: Do not overwrite policer configuration (bsc#1012628). - stmmac: intel: Configure EHL PSE0 GbE and PSE1 GbE to 32 bits DMA addressing (bsc#1012628). - net: octeontx2: Make sure the buffer is 128 byte aligned (bsc#1012628). - net: fec: put child node on error path (bsc#1012628). - net: stmmac: dwmac-intel-plat: remove config data on error (bsc#1012628). - net: dsa: microchip: Adjust reset release timing to match reference reset circuit (bsc#1012628). - commit 0a69f62 - Update patches.kernel.org/5.10.13-143-vsock-fix-the-race-conditions-in-multi-trans… (bsc#1012628 bsc#1181806). Add bsc reference. - commit 64ec974 - net/mlx5: Fix function calculation for page trees (git-fixes). - commit e976b88 - Linux 5.10.13 (bsc#1012628). - iwlwifi: provide gso_type to GSO packets (bsc#1012628). - nbd: freeze the queue while we're adding connections (bsc#1012628). - tty: avoid using vfs_iocb_iter_write() for redirected console writes (bsc#1012628). - ACPI: sysfs: Prefer "compatible" modalias (bsc#1012628). - ACPI: thermal: Do not call acpi_thermal_check() directly (bsc#1012628). - kernel: kexec: remove the lock operation of system_transition_mutex (bsc#1012628). - ALSA: hda/realtek: Enable headset of ASUS B1400CEPE with ALC256 (bsc#1012628). - parisc: Enable -mlong-calls gcc option by default when !CONFIG_MODULES (bsc#1012628). - media: cec: add stm32 driver (bsc#1012628). - media: cedrus: Fix H264 decoding (bsc#1012628). - media: hantro: Fix reset_raw_fmt initialization (bsc#1012628). - media: rc: fix timeout handling after switch to microsecond durations (bsc#1012628). - media: rc: ite-cir: fix min_timeout calculation (bsc#1012628). - media: rc: ensure that uevent can be read directly after rc device register (bsc#1012628). - ARM: dts: tbs2910: rename MMC node aliases (bsc#1012628). - ARM: dts: ux500: Reserve memory carveouts (bsc#1012628). - ARM: dts: imx6qdl-gw52xx: fix duplicate regulator naming (bsc#1012628). - wext: fix NULL-ptr-dereference with cfg80211's lack of commit() (bsc#1012628). - x86/xen: avoid warning in Xen pv guest with CONFIG_AMD_MEM_ENCRYPT enabled (bsc#1012628). - ASoC: AMD Renoir - refine DMI entries for some Lenovo products (bsc#1012628). - Revert "drm/amdgpu/swsmu: drop set_fan_speed_percent (v2)" (bsc#1012628). - drm/nouveau/kms/gk104-gp1xx: Fix > 64x64 cursors (bsc#1012628). - drm/i915: Always flush the active worker before returning from the wait (bsc#1012628). - drm/i915/gt: Always try to reserve GGTT address 0x0 (bsc#1012628). - drivers/nouveau/kms/nv50-: Reject format modifiers for cursor planes (bsc#1012628). - bcache: only check feature sets when sb->version >= BCACHE_SB_VERSION_CDEV_WITH_FEATURES (bsc#1012628). - net: usb: qmi_wwan: added support for Thales Cinterion PLSx3 modem family (bsc#1012628). - s390: uv: Fix sysfs max number of VCPUs reporting (bsc#1012628). - s390/vfio-ap: No need to disable IRQ after queue reset (bsc#1012628). - PM: hibernate: flush swap writer after marking (bsc#1012628). - x86/entry: Emit a symbol for register restoring thunk (bsc#1012628). - efi/apple-properties: Reinstate support for boolean properties (bsc#1012628). - crypto: marvel/cesa - Fix tdma descriptor on 64-bit (bsc#1012628). - drivers: soc: atmel: Avoid calling at91_soc_init on non AT91 SoCs (bsc#1012628). - drivers: soc: atmel: add null entry at the end of at91_soc_allowed_list[] (bsc#1012628). - btrfs: fix lockdep warning due to seqcount_mutex on 32bit arch (bsc#1012628). - btrfs: fix possible free space tree corruption with online conversion (bsc#1012628). - KVM: x86/pmu: Fix HW_REF_CPU_CYCLES event pseudo-encoding in intel_arch_events[] (bsc#1012628). - KVM: x86/pmu: Fix UBSAN shift-out-of-bounds warning in intel_pmu_refresh() (bsc#1012628). - KVM: arm64: Filter out v8.1+ events on v8.0 HW (bsc#1012628). - KVM: nSVM: cancel KVM_REQ_GET_NESTED_STATE_PAGES on nested vmexit (bsc#1012628). - KVM: x86: allow KVM_REQ_GET_NESTED_STATE_PAGES outside guest mode for VMX (bsc#1012628). - KVM: nVMX: Sync unsync'd vmcs02 state to vmcs12 on migration (bsc#1012628). - KVM: x86: get smi pending status correctly (bsc#1012628). - KVM: Forbid the use of tagged userspace addresses for memslots (bsc#1012628). - io_uring: fix wqe->lock/completion_lock deadlock (bsc#1012628). - xen: Fix XenStore initialisation for XS_LOCAL (bsc#1012628). - leds: trigger: fix potential deadlock with libata (bsc#1012628). - arm64: dts: broadcom: Fix USB DMA address translation for Stingray (bsc#1012628). - mt7601u: fix kernel crash unplugging the device (bsc#1012628). - mt76: mt7663s: fix rx buffer refcounting (bsc#1012628). - mt7601u: fix rx buffer refcounting (bsc#1012628). - iwlwifi: Fix IWL_SUBDEVICE_NO_160 macro to use the correct bit (bsc#1012628). - drm/i915/gt: Clear CACHE_MODE prior to clearing residuals (bsc#1012628). - drm/i915/pmu: Don't grab wakeref when enabling events (bsc#1012628). - net/mlx5e: Fix IPSEC stats (bsc#1012628). - ARM: dts: imx6qdl-kontron-samx6i: fix pwms for lcd-backlight (bsc#1012628). - drm/nouveau/svm: fail NOUVEAU_SVM_INIT ioctl on unsupported devices (bsc#1012628). - drm/vc4: Correct lbm size and calculation (bsc#1012628). - drm/vc4: Correct POS1_SCL for hvs5 (bsc#1012628). - drm/i915: Check for all subplatform bits (bsc#1012628). - drm/i915/selftest: Fix potential memory leak (bsc#1012628). - uapi: fix big endian definition of ipv6_rpl_sr_hdr (bsc#1012628). - KVM: Documentation: Fix spec for KVM_CAP_ENABLE_CAP_VM (bsc#1012628). - tee: optee: replace might_sleep with cond_resched (bsc#1012628). - xen-blkfront: allow discard-* nodes to be optional (bsc#1012628). - blk-mq: test QUEUE_FLAG_HCTX_ACTIVE for sbitmap_shared in hctx_may_queue (bsc#1012628). - clk: imx: fix Kconfig warning for i.MX SCU clk (bsc#1012628). - clk: mmp2: fix build without CONFIG_PM (bsc#1012628). - clk: qcom: gcc-sm250: Use floor ops for sdcc clks (bsc#1012628). - ARM: imx: build suspend-imx6.S with arm instruction set (bsc#1012628). - ARM: zImage: atags_to_fdt: Fix node names on added root nodes (bsc#1012628). - netfilter: nft_dynset: add timeout extension to template (bsc#1012628). - Revert "RDMA/mlx5: Fix devlink deadlock on net namespace deletion" (bsc#1012628). - Revert "block: simplify set_init_blocksize" to regain lost performance (bsc#1012628). - xfrm: Fix oops in xfrm_replay_advance_bmp (bsc#1012628). - xfrm: fix disable_xfrm sysctl when used on xfrm interfaces (bsc#1012628). - selftests: xfrm: fix test return value override issue in xfrm_policy.sh (bsc#1012628). - xfrm: Fix wraparound in xfrm_policy_addr_delta() (bsc#1012628). - arm64: dts: ls1028a: fix the offset of the reset register (bsc#1012628). - ARM: imx: fix imx8m dependencies (bsc#1012628). - ARM: dts: imx6qdl-kontron-samx6i: fix i2c_lcd/cam default status (bsc#1012628). - ARM: dts: imx6qdl-sr-som: fix some cubox-i platforms (bsc#1012628). - arm64: dts: imx8mp: Correct the gpio ranges of gpio3 (bsc#1012628). - firmware: imx: select SOC_BUS to fix firmware build (bsc#1012628). - RDMA/cxgb4: Fix the reported max_recv_sge value (bsc#1012628). - ASoC: dt-bindings: lpass: Fix and common up lpass dai ids (bsc#1012628). - ASoC: qcom: Fix incorrect volatile registers (bsc#1012628). - ASoC: qcom: Fix broken support to MI2S TERTIARY and QUATERNARY (bsc#1012628). - ASoC: qcom: lpass-ipq806x: fix bitwidth regmap field (bsc#1012628). - spi: altera: Fix memory leak on error path (bsc#1012628). - ASoC: Intel: Skylake: skl-topology: Fix OOPs ib skl_tplg_complete (bsc#1012628). - powerpc/64s: prevent recursive replay_soft_interrupts causing superfluous interrupt (bsc#1012628). - pNFS/NFSv4: Fix a layout segment leak in pnfs_layout_process() (bsc#1012628). - pNFS/NFSv4: Update the layout barrier when we schedule a layoutreturn (bsc#1012628). - ASoC: SOF: Intel: soundwire: fix select/depend unmet dependencies (bsc#1012628). - ASoC: qcom: lpass: Fix out-of-bounds DAI ID lookup (bsc#1012628). - iwlwifi: pcie: avoid potential PNVM leaks (bsc#1012628). - iwlwifi: pnvm: don't skip everything when not reloading (bsc#1012628). - iwlwifi: pnvm: don't try to load after failures (bsc#1012628). - iwlwifi: pcie: set LTR on more devices (bsc#1012628). - iwlwifi: pcie: use jiffies for memory read spin time limit (bsc#1012628). - iwlwifi: pcie: reschedule in long-running memory reads (bsc#1012628). - mac80211: pause TX while changing interface type (bsc#1012628). - ice: fix FDir IPv6 flexbyte (bsc#1012628). - ice: Implement flow for IPv6 next header (extension header) (bsc#1012628). - ice: update dev_addr in ice_set_mac_address even if HW filter exists (bsc#1012628). - ice: Don't allow more channels than LAN MSI-X available (bsc#1012628). - ice: Fix MSI-X vector fallback logic (bsc#1012628). - i40e: acquire VSI pointer only after VF is initialized (bsc#1012628). - igc: fix link speed advertising (bsc#1012628). - net/mlx5: Fix memory leak on flow table creation error flow (bsc#1012628). - net/mlx5e: E-switch, Fix rate calculation for overflow (bsc#1012628). - net/mlx5e: free page before return (bsc#1012628). - net/mlx5e: Reduce tc unsupported key print level (bsc#1012628). - net/mlx5: Maintain separate page trees for ECPF and PF functions (bsc#1012628). - net/mlx5e: Disable hw-tc-offload when MLX5_CLS_ACT config is disabled (bsc#1012628). - net/mlx5e: Fix CT rule + encap slow path offload and deletion (bsc#1012628). - net/mlx5e: Correctly handle changing the number of queues when the interface is down (bsc#1012628). - net/mlx5e: Revert parameters on errors when changing trust state without reset (bsc#1012628). - net/mlx5e: Revert parameters on errors when changing MTU and LRO state without reset (bsc#1012628). - net/mlx5: CT: Fix incorrect removal of tuple_nat_node from nat rhashtable (bsc#1012628). - can: dev: prevent potential information leak in can_fill_info() (bsc#1012628). - ACPI/IORT: Do not blindly trust DMA masks from firmware (bsc#1012628). - of/device: Update dma_range_map only when dev has valid dma-ranges (bsc#1012628). - iommu/amd: Use IVHD EFR for early initialization of IOMMU features (bsc#1012628). - iommu/vt-d: Correctly check addr alignment in qi_flush_dev_iotlb_pasid() (bsc#1012628). - nvme-multipath: Early exit if no path is available (bsc#1012628). - selftests: forwarding: Specify interface when invoking mausezahn (bsc#1012628). - rxrpc: Fix memory leak in rxrpc_lookup_local (bsc#1012628). - NFC: fix resource leak when target index is invalid (bsc#1012628). - NFC: fix possible resource leak (bsc#1012628). - ASoC: mediatek: mt8183-da7219: ignore TDM DAI link by default (bsc#1012628). - ASoC: mediatek: mt8183-mt6358: ignore TDM DAI link by default (bsc#1012628). - ASoC: topology: Properly unregister DAI on removal (bsc#1012628). - ASoC: topology: Fix memory corruption in soc_tplg_denum_create_values() (bsc#1012628). - scsi: qla2xxx: Fix description for parameter ql2xenforce_iocb_limit (bsc#1012628). - team: protect features update by RCU to avoid deadlock (bsc#1012628). - tcp: make TCP_USER_TIMEOUT accurate for zero window probes (bsc#1012628). - tcp: fix TLP timer not set when CA_STATE changes from DISORDER to OPEN (bsc#1012628). - vsock: fix the race conditions in multi-transport support (bsc#1012628). - Update patches.suse/acpi_thermal_passive_blacklist.patch (bsc#333043). - commit 3527948 ==== libevent ==== - Drop insserv_prereq and fillup_prereq macros: there are no pre-scripts that would justify these dependencies. ==== libselinux ==== Subpackages: libselinux1 selinux-tools - Add Recommends: selinux-autorelabel, which is very important for healthy use of the SELinux on the system (/.autorelabel mechanism) (bsc#1181837). ==== logrotate ==== Version update (3.17.0 -> 3.18.0) - Update to 3.18.0: * Allow UIDs and GIDs to be specified numerically * Add support for Zstandard compressed files * Make delaycompress not to fail with rotate 0 ==== nfs-client-provisioner ==== Version update (2.3.0+git20200220.a14bfd72 -> 4.0.0+git20210204.23ecb30) - Switch to kubernetes-sigs/nfs-subdir-external-provisioner - Update to version 4.0.0+git20210204.23ecb30: * Fix typo in CHANGELOG and change provisioner name to use the sigs namespace * Change the helm chart kubeVersion semver to include pre-releases * Update the README and deploy objects with better class names as examples ==== nghttp2 ==== Version update (1.42.0 -> 1.43.0) - update to 1.43.0: * doc: Make doc generation work with sphinx v3.3 * python: Require python3 for python bindings * python: Require python3 for python scripts * nghttpx: Make sure that Pool gets cleared when all buffers are returned * nghttpx: Choose ECDSA cert if compatible signature algorithm available * nghttpx: Add workaround to include ':' in backend pattern ==== openssh ==== Subpackages: openssh-clients openssh-common openssh-server - Add openssh-whitelist-syscalls.patch (bsc#1182232), fixing failure to accept connections on 32-bit platforms with glibc 2.33+. ==== pigz ==== Version update (2.4 -> 2.6) - update to 2.6: * Add --huffman/-H and --rle/U strategy options * Fix issue when compiling for no threads * Fail silently on a broken pipe * Add --alias/-A option to set .zip name for stdin input * Add --comment/-C option to add comment in .gz or .zip * Several bug and behavior fixes - drop fortify.patch: obsolete ==== pinentry ==== - add _multibuild to separate out gui client builds ==== python-requests ==== - Don't pin idna<3 in the egg-info so that depending packages can install the new idna dropping python2 ==== supportutils ==== Version update (3.1.13 -> 3.1.14) - Additions to version 3.1.14 + [powerpc] Collect logs for power specific components (HNV ) #88 (bsc#1181911) + Updated pam.txt documentation explaining GDPR - No longer truncates boot log (bsc#1181610) ==== weave ==== Version update (2.7.0 -> 2.8.1) - Add init.sh for init container - Update to version 2.8.1 - Kubernetes: move kernel and CNI setup to init container - For K8s, stop running in host PID namespace - NetworkPolicy: avoid logging dropped packets that were not actually dropped - Use go 1.15 ==== wpa_supplicant ==== - Add CVE-2021-0326.patch -- P2P group information processing vulnerability (bsc#1181777)

1 0

New ARM Kubic snapshot 20210209 released!
by Guillaume Gardet 15 Feb '21

15 Feb '21

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=3&version=T… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: acl apparmor audit-secondary busybox (1.32.1 -> 1.33.0) busybox-links (1.32.1 -> 1.33.0) dracut (051+suse.84.gc6bd70b8 -> 051+suse.85.g04886430) e2fsprogs elfutils filesystem gawk gcc11 (10.2.1+git1030 -> 11.0.0+git182924) grub2 haproxy hostname installation-images-MicroOS (16.35 -> 16.36) iputils (s20200821 -> 20210202) kured (1.5.1 -> 1.6.1) libcap (2.46 -> 2.47) libgcrypt (1.8.7 -> 1.9.1) lvm2 lvm2-device-mapper lzo ncurses (6.2.20210116 -> 6.2.20210130) net-tools (2.0+git20180626.aebd88e -> 2.10) procps python-PyJWT (1.7.1 -> 2.0.1) python-pyOpenSSL (20.0.0 -> 20.0.1) runc (1.0.0~rc92 -> 1.0.0~rc93) snapper system-users systemd (246.9 -> 246.10) toolbox (2.0+git20210125.50611db -> 2.1+git20210203.a669e3a) update-alternatives util-linux util-linux-systemd vim (8.2.2327 -> 8.2.2411) wget (1.21 -> 1.21.1) === Details === ==== acl ==== - Replace system-user-{bin,daemon} with user({bin,daemon}): be resilient to package name changes. ==== apparmor ==== Subpackages: apparmor-abstractions apparmor-parser apparmor-profiles apparmor-utils python3-apparmor - define %_pamdir for <= 15.x to fix the build on those releases ==== audit-secondary ==== Subpackages: audit python3-audit - Do not explicitly provide group(audit) in system-users-audit: this is automatically handled by rpm/providers. - Create new "audit" group for read access to logs (bsc#1178154) * add change-default-log_group.patch * update audit-secondary.spec ==== busybox ==== Version update (1.32.1 -> 1.33.0) - Update to version 1.33.0 - many bug fixes and new features - update_passwd_selinux_fix.patch upstream compile fix for SELinux ==== busybox-links ==== Version update (1.32.1 -> 1.33.0) Subpackages: busybox-coreutils busybox-gawk busybox-grep busybox-gzip busybox-sed - Add zmore and zless ==== dracut ==== Version update (051+suse.84.gc6bd70b8 -> 051+suse.85.g04886430) Subpackages: dracut-ima - Update to version 051+suse.85.g04886430: * prepare usrmerge (boo#1029961) ==== e2fsprogs ==== Subpackages: libcom_err2 libext2fs2 - Fix usage of info macros on openSUSE, we use file triggers today - Use file requires for post section ==== elfutils ==== Subpackages: libasm1 libdw1 libelf1 - Enable LTO (boo#1138796) for elfutils.spec. ==== filesystem ==== - add /usr/etc/skel/.cache with perm 0700 (boo#1181011) - Set correct permissions when creating /proc and /sys ==== gawk ==== - fix update-alternatives usage. Needs to be in %postun according to https://en.opensuse.org/openSUSE:Packaging_Multiple_Version_guidelines#upda… - prepare usrmerge (boo#1029961) - remove use of obsolete %install_info ==== gcc11 ==== Version update (10.2.1+git1030 -> 11.0.0+git182924) Subpackages: libgcc_s1 libgomp1 libstdc++6 - New packages inherits from gcc10 package. ==== grub2 ==== Subpackages: grub2-arm64-efi grub2-snapper-plugin - Complete Secure Boot support on aarch64 (jsc#SLE-15020) * 0001-Add-support-for-Linux-EFI-stub-loading-on-aarch64.patch * 0002-arm64-make-sure-fdt-has-address-cells-and-size-cells.patch * 0003-Make-grub_error-more-verbose.patch * 0004-arm-arm64-loader-Better-memory-allocation-and-error-.patch * 0005-Make-linux_arm_kernel_header.hdr_offset-be-at-the-ri.patch * 0006-efi-Set-image-base-address-before-jumping-to-the-PE-.patch * 0007-linuxefi-fail-kernel-validation-without-shim-protoco.patch * 0008-squash-Add-support-for-Linux-EFI-stub-loading-on-aar.patch * 0009-squash-Add-support-for-linuxefi.patch - Fix rpmlint 2.0 error for having arch specific path in noarch package aiming for compatibility with old package (bsc#1179044) * grub2.spec - Fix non POSIX sed argument which failed in sed from busybox (bsc#1181091) * grub2-check-default.sh ==== haproxy ==== - Add lua54.patch to fix building with lua 5.4 ==== hostname ==== - prepare usrmerge (boo#1029961) ==== installation-images-MicroOS ==== Version update (16.35 -> 16.36) - merge gh#openSUSE/installation-images#448 - Switch to vim-small (boo#1181633) - 16.36 ==== iputils ==== Version update (s20200821 -> 20210202) - Update to version 20210202 https://github.com/iputils/iputils/releases/tag/20210202 - Version scheme change: dropped leading 's', update that change ==== kured ==== Version update (1.5.1 -> 1.6.1) - Update to version 1.6.1: - add additional parameters to override the drain/reboot slack messages - rename message template parameters so they are not related to slack - Improve coordinated reboot output - Add more logs into gates - Added support for time wrap in timewindow.Contains ==== libcap ==== Version update (2.46 -> 2.47) - update to 2.47: * Restructured gowns to default to uid base of getuid(). * Augment NOPRIV libcap mode with the sticky NO_NEW_PRIVS prctl bit. * Improve the usage and diagnostic message for setcap * Documentation fixes, license declarations, example updates ==== libgcrypt ==== Version update (1.8.7 -> 1.9.1) - Update to 1.9.1 * *Fix exploitable bug* in hash functions introduced with 1.9.0. [bsc#1181632, CVE-2021-3345] * Return an error if a negative MPI is used with sexp scan functions. * Check for operational FIPS in the random and KDF functions. * Fix compile error on ARMv7 with NEON disabled. * Fix self-test in KDF module. * Improve assembler checks for better LTO support. * Fix 32-bit cross build on x86. * Fix non-NEON ARM assembly implementation for SHA512. * Fix build problems with the cipher_bulk_ops_t typedef. * Fix Ed25519 private key handling for preceding ZEROs. * Fix overflow in modular inverse implementation. * Fix register access for AVX/AVX2 implementations of Blake2. * Add optimized cipher and hash functions for s390x/zSeries. * Use hardware bit counting functionx when available. * Update DSA functions to match FIPS 186-3. * New self-tests for CMACs and KDFs. * Add bulk cipher functions for OFB and GCM modes. - Update libgpg-error required version - Use the suffix variable correctly in get_hmac_path() - Rebase libgcrypt-fips_selftest_trigger_file.patch - Add the global config file /etc/gcrypt/random.conf * This file can be used to globally change parameters of the random generator with the options: only-urandom and disable-jent. - Update to 1.9.0: New stable branch of Libgcrypt with full API and ABI compatibility to the 1.8 series. Release-info: https://dev.gnupg.org/T4294 * New and extended interfaces: - New curves Ed448, X448, and SM2. - New cipher mode EAX. - New cipher algo SM4. - New hash algo SM3. - New hash algo variants SHA512/224 and SHA512/256. - New MAC algos for Blake-2 algorithms, the new SHA512 variants, SM3, SM4 and for a GOST variant. - New convenience function gcry_mpi_get_ui. - gcry_sexp_extract_param understands new format specifiers to directly store to integers and strings. - New function gcry_ecc_mul_point and curve constants for Curve448 and Curve25519. - New function gcry_ecc_get_algo_keylen. - New control code GCRYCTL_AUTO_EXPAND_SECMEM to allow growing the secure memory area. * Performance optimizations and bug fixes: See Release-info. * Other features: - Add OIDs from RFC-8410 as aliases for Ed25519 and Curve25519. - Add mitigation against ECC timing attack CVE-2019-13627. - Internal cleanup of the ECC implementation. - Support reading EC point in compressed format for some curves. - Rebase patches: * libgcrypt-1.4.1-rijndael_no_strict_aliasing.patch * libgcrypt-1.5.0-LIBGCRYPT_FORCE_FIPS_MODE-env.diff * libgcrypt-1.6.1-use-fipscheck.patch * drbg_test.patch * libgcrypt-fipsdrv-enable-algo-for-dsa-sign.patch * libgcrypt-FIPS-RSA-DSA-ECDSA-hashing-operation.patch * libgcrypt-1.8.4-fips-keygen.patch * libgcrypt-1.8.4-getrandom.patch * libgcrypt-fix-tests-fipsmode.patch * libgcrypt-global_init-constructor.patch * libgcrypt-ecc-ecdsa-no-blinding.patch * libgcrypt-PCT-RSA.patch * libgcrypt-PCT-ECC.patch - Remove patches: * libgcrypt-unresolved-dladdr.patch * libgcrypt-CVE-2019-12904-GCM-Prefetch.patch * libgcrypt-CVE-2019-12904-GCM.patch * libgcrypt-CVE-2019-12904-AES.patch * libgcrypt-CMAC-AES-TDES-selftest.patch * libgcrypt-1.6.1-fips-cfgrandom.patch * libgcrypt-fips_rsa_no_enforced_mode.patch ==== lvm2 ==== Subpackages: liblvm2cmd2_03 - lvm2 should use 'external_device_info_source="udev"' by default (bsc#1179691) - add SUSE special patch to void issues in non udev env + bug-1179691_config-set-external_device_info_source-none.patch ==== lvm2-device-mapper ==== Subpackages: device-mapper libdevmapper-event1_03 libdevmapper1_03 - lvm2 should use 'external_device_info_source="udev"' by default (bsc#1179691) - add SUSE special patch to void issues in non udev env + bug-1179691_config-set-external_device_info_source-none.patch ==== lzo ==== - add lzo-2.08-rhbz1309225.patch to avoid aliasing issues ==== ncurses ==== Version update (6.2.20210116 -> 6.2.20210130) Subpackages: libncurses6 ncurses-utils terminfo-base - Add ncurses patch 20210130 + correct an off-by-one in comparison in waddch_literal() which caused scrolling when a double-cell character would not fit at the lower right corner of the screen (report by Benno Schulenberg). + split-out att610+cvis, vt220+cvis, vt220+cvis8 -TD + add vt220-base, for terminal emulators which generally have not supported att610's blinking cursor control -TD + use vt220+cvis in vt220, etc -TD + use att610+cvis, xterm+tmux and ansi+enq in kitty -TD + use vt220+cvis in st, terminology, termite since they ignore blinking-cursor detail in att610+cvis -TD - Port patch ncurses-6.2.dif * Skip cvvis entries where vt220+cvis is used * Skip function keys in rxvt-basic as rxvt+pcfkeys and use=vt220+keypadcw is used - Add ncurses patch 20210123 + modify package/config scripts to provide an explicit -L option for cases when the loader search path has other directories preceding the one in which ncurses is installed (report by Yuri Victorovich). + minor build-fixes in configure script and makefiles to work around quirks of pmake. ==== net-tools ==== Version update (2.0+git20180626.aebd88e -> 2.10) - update to 2.10: * man: pt_BR: ifconfig: fix procmisc option typo * netstat: exit non-zero when sctp protocols are not supported * man: route: add single route del example * ifconfig: accept "pointtopoint" as an alias to "pointopoint" * man: netstat: fill out Timers section * man: ethers: remove funky comment blocks * man: standardize SEE ALSO across all pages & translations * netstat: fix iface truncation with -i * ifconfig: fix exabyte statistic handling * man: ipmaddr/iptunnel: new stub man pages * man: route: use standard .BR for SEE ALSO * netstat: fix iface truncation with -g * po: rename et_EE to et * README/INSTALL: refresh for the modern times * THANKS: add a few more people from `git-log` * netstat: Set SCTP report compliant with -l/--listening option. * Describe "hyphen" program in man page. * man: cleanup ipfw & ipchains refs * ipv6: fix memmove usage with overlapping memory * build: drop support for backing up programs * netstat: add ROSE print support * remove ancient "register" markings * hostname: constify a few string arguments * hostname: add fallback errno decoding on failure * de.po: fix typo "Processe" -> "Prozesse" * route: Fix a missing space in the ipv6 route output * util: drop new() helper * proc: constify filename arg * nameif: add printf attributes to helper funcs * nameif: mark local vars/funcs as static * nameif: fix memory corruption and increase maximum MAC address length * inet_gr: tweak formatting to avoid confusing the compiler * ipmaddr: use safe_strncpy for ifr_name * ifconfig: fix confusing error message logic * ifconfig: add name subcommand to rename an interface * statistics: Fix ipFragOKs and ipFragFails verbiage * statistics: fix packets typo * fix minor mistakes in Czech translation - drop 0003-Add-support-for-EiB-in-interface.c.patch 0005-Add-support-for-interface-rename-in-nameif.patch: upstream - net-tools-configure.patch: refresh ==== procps ==== Subpackages: libprocps8 - Package translations in procps-lang. ==== python-PyJWT ==== Version update (1.7.1 -> 2.0.1) - update to 2.0.1: * Drop support for Python 2 and Python 3.0-3.5 * Require cryptography >= 3 * Drop support for PyCrypto and ECDSA * Drop CLI * Improve typings * Dropped deprecated errors * Dropped deprecated ``verify_expiration`` param in ``jwt.decode(...)`` * Dropped deprecated ``verify`` param in ``jwt.decode(...)`` * Require explicit ``algorithms`` in ``jwt.decode(...)`` by default * Dropped deprecated ``require_*`` options in ``jwt.decode(...)`` * Introduce better experience for JWKs * further details see included CHANGELOG.rst - drop 0001-Catch-BadSignatureError-raised-by-ecdsa-0.13.3.patch (obsolete) ==== python-pyOpenSSL ==== Version update (20.0.0 -> 20.0.1) - update to 20.0.1: - Fixed compatibility with OpenSSL 1.1.0. ==== runc ==== Version update (1.0.0~rc92 -> 1.0.0~rc93) - Update to runc v1.0.0~rc93. Upstream changelog is available from https://github.com/opencontainers/runc/releases/tag/v1.0.0-rc93 * Cgroupv2 support is no longer considered experimental. * Mountinfo parsing code has been reworked significantly. * Special ENOSYS handling for seccomp profiles to avoid making new syscalls unusable for glibc. * Various rootless containers improvements. * The "selinux" and "apparmor" buildtags have been removed, and now all runc builds will have SELinux and AppArmor support enabled. - Update to handle the docker-runc removal. bsc#1181677 - Modernise go building for runc now that it has go.mod. ==== snapper ==== Subpackages: libsnapper5 - fixed testsuite for equal-date (gh#openSUSE/snapper#526) ==== system-users ==== Subpackages: system-group-hardware system-group-kvm system-user-nobody - Add system-user-ntp subpackage with ntp user and group and /var/lib/ntp as home directory ==== systemd ==== Version update (246.9 -> 246.10) Subpackages: libsystemd0 libudev1 systemd-logger systemd-sysvinit udev - systemd-sysv-convert: handle the case when services are migrated from SysV scripts to systemd units and are renamed at the same time (bsc#1181788) The list of such services is hard coded and contains only the 'ntp->ntpd' translation. - Import commit 134cf1c8bc3e361a2641161aa11ac2b5b990480b (merge of v246.10) 25f220eafb sysusers: flush nscd's caches whenever /etc/{passwd,group} are modified (bsc#1181121) 4a543f0257 journal: send journald logs to kmsg again 26df96473f busctl: add a timestamp to the output of the busctl monitor command (bsc#1180225) For a complete list of changes, visit: https://github.com/openSUSE/systemd/compare/520e53b6d85087b05892ee637ae93f1… - prepare usrmerge (boo#1029961) * don't install legacy symlinks to / * use %_pamdir to install pam modules * leave nss files in /usr/lib*, glibc loads them from there just fine independent of usrmerge ==== toolbox ==== Version update (2.0+git20210125.50611db -> 2.1+git20210203.a669e3a) - Update to version 2.1+git20210203.a669e3a: * Fix formatting * Enhance alternate UI docu * Ignore podman runlabel error if no RUN label exist * Enhance documentation * Check existence of volume directories (#15) ==== update-alternatives ==== - don't remove slave links that turned into master. Happens on usrmerge (boo#1180939, update-alternatives-slavetomaster.patch) ==== util-linux ==== Subpackages: libblkid1 libfdisk1 libmount1 libsmartcols1 libuuid1 - Merge package with SLE15 SP3 and openSUSE Leap 15.3: Obsoletes upstreamed patches: - libblkid: Do not trigger CDROM autoclose (v2.35, bsc#1084671, util-linux-libblkid-cdrom-autoclose-1.patch, util-linux-libblkid-cdrom-autoclose-2.patch, util-linux-libblkid-cdrom-autoclose-3.patch). - lscpu: avoid segfault on PowerPC systems with valid hardware configurations (v2.36.1, bsc#1175623, bsc#1178554, bsc#1178825, lscpu-avoid-segfault-on-PowerPC-systems-with-valid-h.patch) - Fix for SG#57988, bsc#1174942 (v2.36): libmount-fix-mount-a-EBUSY-for-cifs.patch: Fix warning on mounts to CIFS with mount ?a. - blockdev: Do not fail --report on kpartx-style partitions on multipath (v2.36, bsc#1168235, util-linux-blockdev-report-dm.patch). - nologin: Add support for -c to prevent error from su -c (v2.35, bsc#1151708, util-linux-nologin-su-c.patch). - Add libmount-Avoid-triggering-autofs-in-lookup_umount_fs.patch: Avoid triggering autofs in lookup_umount_fs_by_statfs (v2.36 boo#1168389) - mount: fall back to device node name if /dev/mapper link not found (v2.34, bsc#1149911) * Add patch: util-linux-canonicalize-coverity-scan.patch - De-duplicate fstrim -A properly (v2.34, bsc#1127701, util-linux-fstrim-A-1.patch, util-linux-fstrim-A-3.patch, util-linux-fstrim-A-4.patch). - Do not trim read-only volumes (v2.34, boo#1106214, util-linux-fstrim-A-2.patch, util-linux-fstrim-A-4.patch). - libmount: To prevent incorrect behavior, recognize more pseudofs and netfs (v2.34, bsc#1122417, util-linux-libmount-pseudofs.patch). - agetty: Return previous response of agetty for special characters (v2.34, bsc#1085196, bsc#1125886, util-linux-agetty-smart-reload-13.patch, util-linux-agetty-smart-reload-14.patch). - Fix problems in reading of login.defs values (v2.34, bsc#1121197, util-linux-login_defs-priority1.patch, util-linux-login_defs-priority2.patch, util-linux-login_defs-SYS_UID.patch). - Build with libudev support to support non-root users (boo#1169006). - Move findmnt and lsblk to util-linux-systemd, as they use libudev (bsc#1169006#c10). ==== util-linux-systemd ==== - Merge package with SLE15 SP3 and openSUSE Leap 15.3: Obsoletes upstreamed patches: - libblkid: Do not trigger CDROM autoclose (v2.35, bsc#1084671, util-linux-libblkid-cdrom-autoclose-1.patch, util-linux-libblkid-cdrom-autoclose-2.patch, util-linux-libblkid-cdrom-autoclose-3.patch). - lscpu: avoid segfault on PowerPC systems with valid hardware configurations (v2.36.1, bsc#1175623, bsc#1178554, bsc#1178825, lscpu-avoid-segfault-on-PowerPC-systems-with-valid-h.patch) - Fix for SG#57988, bsc#1174942 (v2.36): libmount-fix-mount-a-EBUSY-for-cifs.patch: Fix warning on mounts to CIFS with mount ?a. - blockdev: Do not fail --report on kpartx-style partitions on multipath (v2.36, bsc#1168235, util-linux-blockdev-report-dm.patch). - nologin: Add support for -c to prevent error from su -c (v2.35, bsc#1151708, util-linux-nologin-su-c.patch). - Add libmount-Avoid-triggering-autofs-in-lookup_umount_fs.patch: Avoid triggering autofs in lookup_umount_fs_by_statfs (v2.36 boo#1168389) - mount: fall back to device node name if /dev/mapper link not found (v2.34, bsc#1149911) * Add patch: util-linux-canonicalize-coverity-scan.patch - De-duplicate fstrim -A properly (v2.34, bsc#1127701, util-linux-fstrim-A-1.patch, util-linux-fstrim-A-3.patch, util-linux-fstrim-A-4.patch). - Do not trim read-only volumes (v2.34, boo#1106214, util-linux-fstrim-A-2.patch, util-linux-fstrim-A-4.patch). - libmount: To prevent incorrect behavior, recognize more pseudofs and netfs (v2.34, bsc#1122417, util-linux-libmount-pseudofs.patch). - agetty: Return previous response of agetty for special characters (v2.34, bsc#1085196, bsc#1125886, util-linux-agetty-smart-reload-13.patch, util-linux-agetty-smart-reload-14.patch). - Fix problems in reading of login.defs values (v2.34, bsc#1121197, util-linux-login_defs-priority1.patch, util-linux-login_defs-priority2.patch, util-linux-login_defs-SYS_UID.patch). - Build with libudev support to support non-root users (boo#1169006). - Move findmnt and lsblk to util-linux-systemd, as they use libudev (bsc#1169006#c10). ==== vim ==== Version update (8.2.2327 -> 8.2.2411) Subpackages: vim-data-common vim-small Updated to version 8.2.2411, fixes the following problems * Debugging code included. * Some test files may not be deleted. * Not all ways Vim can be started are tested. * Vim9: crash when using :trow in a not executed block. * Vim9: wrong error when modifying dict declared with :final. * Vim9: missing :endif not reported when using :windo. * Vim9: warning for uninitialized variable. (Tony Mechelynck) * Pascal-like filetypes not always detected. * Vim9: "silent return" does not restore command modifiers. * Vim9: it is not possible to extend a dictionary with different item types. * Configure test for GTK only says "no". (Harm te Hennepe) * Vim9: no error if using job_info() result wrongly. * Cannot get the type of a value as a string. * win_execute() unexpectedly returns number zero when failing. * Expression command line completion shows variables but not functions after "g:". (Gary Johnson) * "char" functions return the wront column in Insert mode when the cursor is beyond the end of the line. * Vim9: return type of readfile() is any. * Using inclusive index for slice is not always desired. * No focus events in a terminal. * Codecov reports every little coverage drop. * Build failure without GUI. * No check for modified files after focus gained. (Mathias Stearn) * Vim9: cannot handle line break after parenthesis at line end. * Using "void" for no reason. * Vim9: error message for "throw" in function that was called with "silent!". * If the focus lost/gained escape sequence is received twice it is not ignored. (Christ van Willigen) * Spartql files are not detected. * Crash with a weird combination of autocommands. * Stray test failure on Appveyor. * Vim9: ":put =expr" does not handle a list properly. * Vim9: crash when parsing function return type fails. * Wrong #ifdef for use_xterm_like_mouse(). * Strange test failure with MS-Windows. * Test leaves file behind. * Vim9: no highlight for "s///gc" when using 'opfunc'. * Vim9: check of builtin function argument type is incomplete. * Vim9: line break in lambda accesses freed memory. * Vim9: no check for map() changing item type at script level. * When using ":sleep" the cursor is always displayed. * Test failures on some less often used systems. * Insufficient tests for setting options. * Vim9: functions return true/false but can't be used as bool. * Vim9: command fails in catch block. * Vim9: crash when using types in :for with unpack. * Confusing error message for wrong :let command. * Vim9: list assignment only accepts a number index. * Accessing uninitialized memory in test_undo. * Test for RGB color skipped in the terminal. * Vim9: crash when dividing by zero in compiled code using constants. * Vim9: crash when using a range after another expression. * Vim9: no error message for dividing by zero. * Finding spell suggestions twice if 'spellsuggest' contains number. * Vim9: occasional crash when using try/catch and a timer. * Vim9: divide by zero does not abort expression execution. * Build failure. * Focus escape sequences are not named in ":set termcap" output. * Turtle filetype not recognized. * "gj" and "gk" do not work correctly when inside a fold. * Vim9: crash when using ":silent! put". * Runtime type check does not mention argument index. * No easy way to get the maximum or mininum number value. * Test failure on a few systems. * Vim9: using positive offset is unexpected. * Memory leak when creating a global function with closure. * Fennel filetype not recognized. * Vim9: error message when script line starts with "[{". * Vim9: min() and max() return type is "any". * Vim9: error for wrong type may report wrong line number. * Vim9: no white space allowed before "->". * Vim9: "%%" not seen as alternate file name for commands with a buffer name argument. * Method test fails. * Fold test fails in wide terminal. * Vim9: compiled functions are not profiled. * Build fails without +profiling feature. * Some filetypes not detected. * Vim9: profiling if/elseif/endif not correct. * Vim9: profiling try/catch not correct. * Vim9: no need to allow white space before "(" for :def. * Vim9: profiled :def function leaks memory. * Old jumplist code is never used. * MinGW: "--preprocessor" flag no longer supported. * Vim9: profiling only works for one function. * Build failure without the +profiling feature. * Profile test fails on MS-Windows. - remove forcing /usr/bin/vi -> vim symlink. Previous line linked to /etc/alternatives already. ==== wget ==== Version update (1.21 -> 1.21.1) - update to 1.21.1: * Fix compilation on MacOS and Solaris 9 * Resove bashism from configure.ac * Fix a compilation warning on 32-bit systems - remove-env-from-shebang.patch: refresh

1 0

New ARM MicroOS snapshot 20210209 released!
by Guillaume Gardet 15 Feb '21

15 Feb '21

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=microos&groupid=3&version… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: Mesa (20.3.3 -> 20.3.4) Mesa-drivers (20.3.3 -> 20.3.4) acl apparmor audit-secondary baloo5-widgets (20.12.1 -> 20.12.2) busybox (1.32.1 -> 1.33.0) busybox-links (1.32.1 -> 1.33.0) cups dolphin (20.12.1 -> 20.12.2) dracut (051+suse.84.gc6bd70b8 -> 051+suse.85.g04886430) e2fsprogs elfutils filesystem gawk gcc11 (10.2.1+git1030 -> 11.0.0+git182924) grub2 hostname hwdata (0.343 -> 0.344) ibus installation-images-MicroOS (16.35 -> 16.36) iputils (s20200821 -> 20210202) kaccounts-integration (20.12.1 -> 20.12.2) kate (20.12.1 -> 20.12.2) kde-print-manager (20.12.1 -> 20.12.2) kdialog (20.12.1 -> 20.12.2) kio-extras5 (20.12.1 -> 20.12.2) konsole (20.12.1 -> 20.12.2) kwalletmanager5 (20.12.1 -> 20.12.2) libcap (2.46 -> 2.47) libgcrypt (1.8.7 -> 1.9.1) libgudev (233 -> 234) libmodulemd (2.10.0 -> 2.12.0) libopenmpt (0.5.4 -> 0.5.5) libqt5-qtlocation libquvi lua53-luasocket lvm2 lvm2-device-mapper lzo ncurses (6.2.20210116 -> 6.2.20210130) net-snmp (5.8 -> 5.9) net-tools (2.0+git20180626.aebd88e -> 2.10) plasma5-desktop procps purpose python-PyJWT (1.7.1 -> 2.0.1) python-pyOpenSSL (20.0.0 -> 20.0.1) runc (1.0.0~rc92 -> 1.0.0~rc93) snapper system-users systemd (246.9 -> 246.10) toolbox (2.0+git20210125.50611db -> 2.1+git20210203.a669e3a) update-alternatives util-linux util-linux-systemd vim (8.2.2327 -> 8.2.2411) wget (1.21 -> 1.21.1) === Details === ==== Mesa ==== Version update (20.3.3 -> 20.3.4) Subpackages: Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libgbm1 - update to 20.3.4 * fourth bugfix release for the 20.3 branch - removed no longer needed buildfix-ppc64le.patch; build failed on ppc64 due to this patch (bsc#1181439) ==== Mesa-drivers ==== Version update (20.3.3 -> 20.3.4) Subpackages: Mesa-dri Mesa-gallium - update to 20.3.4 * fourth bugfix release for the 20.3 branch - removed no longer needed buildfix-ppc64le.patch; build failed on ppc64 due to this patch (bsc#1181439) ==== acl ==== - Replace system-user-{bin,daemon} with user({bin,daemon}): be resilient to package name changes. ==== apparmor ==== Subpackages: apparmor-abstractions apparmor-parser apparmor-profiles apparmor-utils python3-apparmor - define %_pamdir for <= 15.x to fix the build on those releases ==== audit-secondary ==== Subpackages: audit python3-audit - Do not explicitly provide group(audit) in system-users-audit: this is automatically handled by rpm/providers. - Create new "audit" group for read access to logs (bsc#1178154) * add change-default-log_group.patch * update audit-secondary.spec ==== baloo5-widgets ==== Version update (20.12.1 -> 20.12.2) - Update to 20.12.2 * New bugfix release * For more details please see: * https://kde.org/announcements/releases/2021-02-apps-update - No code change since 20.12.1 ==== busybox ==== Version update (1.32.1 -> 1.33.0) - Update to version 1.33.0 - many bug fixes and new features - update_passwd_selinux_fix.patch upstream compile fix for SELinux ==== busybox-links ==== Version update (1.32.1 -> 1.33.0) Subpackages: busybox-coreutils busybox-gawk busybox-grep busybox-gzip busybox-psmisc busybox-sed - Add zmore and zless ==== cups ==== Subpackages: cups-client cups-config libcups2 libcupsimage2 - CVE-2020-10001.patch fixes CVE-2020-10001 (bsc#1180520) access to uninitialized buffer in ipp.c ==== dolphin ==== Version update (20.12.1 -> 20.12.2) Subpackages: dolphin-part libdolphinvcs5 - Update to 20.12.2 * New bugfix release * For more details please see: * https://kde.org/announcements/releases/2021-02-apps-update - Changes since 20.12.1: * don't crash when building without baloo (kde#431730) * Show button to open knetattach inline with URL nav on remove:// view (kde#431626) * fix folder size calculation on FUSE and network file systems (kde#430778) * Change copy location shortcut in dolphin so as to not conflict with Konsole panel (kde#426461) - Drop upstream patch: * 0001-Show-button-to-open-knetattach-inline-with-URL-nav-o.patch ==== dracut ==== Version update (051+suse.84.gc6bd70b8 -> 051+suse.85.g04886430) Subpackages: dracut-ima - Update to version 051+suse.85.g04886430: * prepare usrmerge (boo#1029961) ==== e2fsprogs ==== Subpackages: libcom_err2 libext2fs2 - Fix usage of info macros on openSUSE, we use file triggers today - Use file requires for post section ==== elfutils ==== Subpackages: libasm1 libdw1 libelf1 - Enable LTO (boo#1138796) for elfutils.spec. ==== filesystem ==== - add /usr/etc/skel/.cache with perm 0700 (boo#1181011) - Set correct permissions when creating /proc and /sys ==== gawk ==== - fix update-alternatives usage. Needs to be in %postun according to https://en.opensuse.org/openSUSE:Packaging_Multiple_Version_guidelines#upda… - prepare usrmerge (boo#1029961) - remove use of obsolete %install_info ==== gcc11 ==== Version update (10.2.1+git1030 -> 11.0.0+git182924) Subpackages: libgcc_s1 libgomp1 libstdc++6 - New packages inherits from gcc10 package. ==== grub2 ==== Subpackages: grub2-arm64-efi grub2-snapper-plugin - Complete Secure Boot support on aarch64 (jsc#SLE-15020) * 0001-Add-support-for-Linux-EFI-stub-loading-on-aarch64.patch * 0002-arm64-make-sure-fdt-has-address-cells-and-size-cells.patch * 0003-Make-grub_error-more-verbose.patch * 0004-arm-arm64-loader-Better-memory-allocation-and-error-.patch * 0005-Make-linux_arm_kernel_header.hdr_offset-be-at-the-ri.patch * 0006-efi-Set-image-base-address-before-jumping-to-the-PE-.patch * 0007-linuxefi-fail-kernel-validation-without-shim-protoco.patch * 0008-squash-Add-support-for-Linux-EFI-stub-loading-on-aar.patch * 0009-squash-Add-support-for-linuxefi.patch - Fix rpmlint 2.0 error for having arch specific path in noarch package aiming for compatibility with old package (bsc#1179044) * grub2.spec - Fix non POSIX sed argument which failed in sed from busybox (bsc#1181091) * grub2-check-default.sh ==== hostname ==== - prepare usrmerge (boo#1029961) ==== hwdata ==== Version update (0.343 -> 0.344) - Update to version 0.344: + Updated pci, usb and vendor ids. ==== ibus ==== Subpackages: libibus-1_0-5 typelib-1_0-IBus-1_0 - Do not build in parallel for reproducible build results (boo#1102408) ==== installation-images-MicroOS ==== Version update (16.35 -> 16.36) - merge gh#openSUSE/installation-images#448 - Switch to vim-small (boo#1181633) - 16.36 ==== iputils ==== Version update (s20200821 -> 20210202) - Update to version 20210202 https://github.com/iputils/iputils/releases/tag/20210202 - Version scheme change: dropped leading 's', update that change ==== kaccounts-integration ==== Version update (20.12.1 -> 20.12.2) - Update to 20.12.2 * New bugfix release * For more details please see: * https://kde.org/announcements/releases/2021-02-apps-update - No code change since 20.12.1 ==== kate ==== Version update (20.12.1 -> 20.12.2) Subpackages: kate-plugins - Update to 20.12.2 * New bugfix release * For more details please see: * https://kde.org/announcements/releases/2021-02-apps-update - No code change since 20.12.1 ==== kde-print-manager ==== Version update (20.12.1 -> 20.12.2) - Update to 20.12.2 * New bugfix release * For more details please see: * https://kde.org/announcements/releases/2021-02-apps-update - No code change since 20.12.1 ==== kdialog ==== Version update (20.12.1 -> 20.12.2) - Update to 20.12.2 * New bugfix release * For more details please see: * https://kde.org/announcements/releases/2021-02-apps-update - No code change since 20.12.1 ==== kio-extras5 ==== Version update (20.12.1 -> 20.12.2) Subpackages: libkioarchive5 - Update to 20.12.2 * New bugfix release * For more details please see: * https://kde.org/announcements/releases/2021-02-apps-update - Changes since 20.12.1: * don't log passwords ==== konsole ==== Version update (20.12.1 -> 20.12.2) Subpackages: konsole-part - Update to 20.12.2 * New bugfix release * For more details please see: * https://kde.org/announcements/releases/2021-02-apps-update - Changes since 20.12.1: * Fix the handbook URL in the maintainer README * Fix crash exiting all tabs at the same time (kde#431827) * Fix "Remember window size" not working when unchecked (kde#427610) ==== kwalletmanager5 ==== Version update (20.12.1 -> 20.12.2) - Update to 20.12.2 * New bugfix release * For more details please see: * https://kde.org/announcements/releases/2021-02-apps-update - No code change since 20.12.1 ==== libcap ==== Version update (2.46 -> 2.47) - update to 2.47: * Restructured gowns to default to uid base of getuid(). * Augment NOPRIV libcap mode with the sticky NO_NEW_PRIVS prctl bit. * Improve the usage and diagnostic message for setcap * Documentation fixes, license declarations, example updates ==== libgcrypt ==== Version update (1.8.7 -> 1.9.1) - Update to 1.9.1 * *Fix exploitable bug* in hash functions introduced with 1.9.0. [bsc#1181632, CVE-2021-3345] * Return an error if a negative MPI is used with sexp scan functions. * Check for operational FIPS in the random and KDF functions. * Fix compile error on ARMv7 with NEON disabled. * Fix self-test in KDF module. * Improve assembler checks for better LTO support. * Fix 32-bit cross build on x86. * Fix non-NEON ARM assembly implementation for SHA512. * Fix build problems with the cipher_bulk_ops_t typedef. * Fix Ed25519 private key handling for preceding ZEROs. * Fix overflow in modular inverse implementation. * Fix register access for AVX/AVX2 implementations of Blake2. * Add optimized cipher and hash functions for s390x/zSeries. * Use hardware bit counting functionx when available. * Update DSA functions to match FIPS 186-3. * New self-tests for CMACs and KDFs. * Add bulk cipher functions for OFB and GCM modes. - Update libgpg-error required version - Use the suffix variable correctly in get_hmac_path() - Rebase libgcrypt-fips_selftest_trigger_file.patch - Add the global config file /etc/gcrypt/random.conf * This file can be used to globally change parameters of the random generator with the options: only-urandom and disable-jent. - Update to 1.9.0: New stable branch of Libgcrypt with full API and ABI compatibility to the 1.8 series. Release-info: https://dev.gnupg.org/T4294 * New and extended interfaces: - New curves Ed448, X448, and SM2. - New cipher mode EAX. - New cipher algo SM4. - New hash algo SM3. - New hash algo variants SHA512/224 and SHA512/256. - New MAC algos for Blake-2 algorithms, the new SHA512 variants, SM3, SM4 and for a GOST variant. - New convenience function gcry_mpi_get_ui. - gcry_sexp_extract_param understands new format specifiers to directly store to integers and strings. - New function gcry_ecc_mul_point and curve constants for Curve448 and Curve25519. - New function gcry_ecc_get_algo_keylen. - New control code GCRYCTL_AUTO_EXPAND_SECMEM to allow growing the secure memory area. * Performance optimizations and bug fixes: See Release-info. * Other features: - Add OIDs from RFC-8410 as aliases for Ed25519 and Curve25519. - Add mitigation against ECC timing attack CVE-2019-13627. - Internal cleanup of the ECC implementation. - Support reading EC point in compressed format for some curves. - Rebase patches: * libgcrypt-1.4.1-rijndael_no_strict_aliasing.patch * libgcrypt-1.5.0-LIBGCRYPT_FORCE_FIPS_MODE-env.diff * libgcrypt-1.6.1-use-fipscheck.patch * drbg_test.patch * libgcrypt-fipsdrv-enable-algo-for-dsa-sign.patch * libgcrypt-FIPS-RSA-DSA-ECDSA-hashing-operation.patch * libgcrypt-1.8.4-fips-keygen.patch * libgcrypt-1.8.4-getrandom.patch * libgcrypt-fix-tests-fipsmode.patch * libgcrypt-global_init-constructor.patch * libgcrypt-ecc-ecdsa-no-blinding.patch * libgcrypt-PCT-RSA.patch * libgcrypt-PCT-ECC.patch - Remove patches: * libgcrypt-unresolved-dladdr.patch * libgcrypt-CVE-2019-12904-GCM-Prefetch.patch * libgcrypt-CVE-2019-12904-GCM.patch * libgcrypt-CVE-2019-12904-AES.patch * libgcrypt-CMAC-AES-TDES-selftest.patch * libgcrypt-1.6.1-fips-cfgrandom.patch * libgcrypt-fips_rsa_no_enforced_mode.patch ==== libgudev ==== Version update (233 -> 234) - update to 234: * Clarify that _get_sysfs_attr() functions are cached * Add functions to get uncached sysfs attributes ==== libmodulemd ==== Version update (2.10.0 -> 2.12.0) - Update to 2.12.0 + Add support for 'buildorder' to Packager documents + Fix issue with ModuleIndex when input contains only Obsoletes documents + Extend read_packager_[file|string]() to support overriding the module name and stream. + Ignore Packager documents when running ModuleIndex.update_from_*() + Add python overrides for XMD in PackagerV3 + Add python override to ignore the GType return when reading packager files + Add PackagerV3.get_mdversion() - Drop patch incorporated in this release + Patch: 0001-Fix-integer-size-issue-on-32-bit-platforms.patch ==== libopenmpt ==== Version update (0.5.4 -> 0.5.5) - Update to 0.5.5: * [Bug] stb_vorbis: Fix decoding of Vorbis streams without comments which affected most Vorbis samples since stb_vorbis v1.20. * openmpt::ext::interactive::set_pitch_factor wasn?t applied to OPL voices. * OPL channel state (in particular current patch) is now updated when seeking. * The FT2 tremolo quirk is now also applied to MOD files. FT2 just copied the quirky code from ProTracker! * DMF: Preserve effects better in some situations where there is more than one effect in a pattern cell. * DMF: Improve import of finetune effect with parameters larger than +/-15. ==== libqt5-qtlocation ==== - Add compatibility with qml-autoreqprov ==== libquvi ==== - Correct misspelling in libquvi-0.9.4-lua-5.2.patch ==== lua53-luasocket ==== - Use %lua_provides macro ==== lvm2 ==== Subpackages: liblvm2cmd2_03 - lvm2 should use 'external_device_info_source="udev"' by default (bsc#1179691) - add SUSE special patch to void issues in non udev env + bug-1179691_config-set-external_device_info_source-none.patch ==== lvm2-device-mapper ==== Subpackages: device-mapper libdevmapper-event1_03 libdevmapper1_03 - lvm2 should use 'external_device_info_source="udev"' by default (bsc#1179691) - add SUSE special patch to void issues in non udev env + bug-1179691_config-set-external_device_info_source-none.patch ==== lzo ==== - add lzo-2.08-rhbz1309225.patch to avoid aliasing issues ==== ncurses ==== Version update (6.2.20210116 -> 6.2.20210130) Subpackages: libncurses6 ncurses-utils terminfo-base - Add ncurses patch 20210130 + correct an off-by-one in comparison in waddch_literal() which caused scrolling when a double-cell character would not fit at the lower right corner of the screen (report by Benno Schulenberg). + split-out att610+cvis, vt220+cvis, vt220+cvis8 -TD + add vt220-base, for terminal emulators which generally have not supported att610's blinking cursor control -TD + use vt220+cvis in vt220, etc -TD + use att610+cvis, xterm+tmux and ansi+enq in kitty -TD + use vt220+cvis in st, terminology, termite since they ignore blinking-cursor detail in att610+cvis -TD - Port patch ncurses-6.2.dif * Skip cvvis entries where vt220+cvis is used * Skip function keys in rxvt-basic as rxvt+pcfkeys and use=vt220+keypadcw is used - Add ncurses patch 20210123 + modify package/config scripts to provide an explicit -L option for cases when the loader search path has other directories preceding the one in which ncurses is installed (report by Yuri Victorovich). + minor build-fixes in configure script and makefiles to work around quirks of pmake. ==== net-snmp ==== Version update (5.8 -> 5.9) Subpackages: libsnmp30 snmp-mibs - update to 5.9: snmplib: - Add IPv6 support to DTLSUDP transport CHANGES: snmplib: use new netsnmp_sockaddr_storage in netsnmp_addr_pair CHANGES: snmplib: add base_transport ptr for tunneled transports snmpd: - Security vulnerabilty in the ping MIB reported by Christopher Ertl from Microsoft fixed - Changing to a different uid/gid can only be done once - The extend mib is now read-only by default snmptrap: - BUG: 2899: Patch from Drew Roedersheimer to set library engineboots/time values before sending unspecified: - Add pkg-config support for building applications and sub-agents Use the netsnmp package when building Net-SNMP applications. Use the netsnmp-agent package when building Net-SNMP subagents. - drop net-snmp-5.8-fix-python3.patch, net-snmp-5.8-netgroups.patch: obsolete ==== net-tools ==== Version update (2.0+git20180626.aebd88e -> 2.10) - update to 2.10: * man: pt_BR: ifconfig: fix procmisc option typo * netstat: exit non-zero when sctp protocols are not supported * man: route: add single route del example * ifconfig: accept "pointtopoint" as an alias to "pointopoint" * man: netstat: fill out Timers section * man: ethers: remove funky comment blocks * man: standardize SEE ALSO across all pages & translations * netstat: fix iface truncation with -i * ifconfig: fix exabyte statistic handling * man: ipmaddr/iptunnel: new stub man pages * man: route: use standard .BR for SEE ALSO * netstat: fix iface truncation with -g * po: rename et_EE to et * README/INSTALL: refresh for the modern times * THANKS: add a few more people from `git-log` * netstat: Set SCTP report compliant with -l/--listening option. * Describe "hyphen" program in man page. * man: cleanup ipfw & ipchains refs * ipv6: fix memmove usage with overlapping memory * build: drop support for backing up programs * netstat: add ROSE print support * remove ancient "register" markings * hostname: constify a few string arguments * hostname: add fallback errno decoding on failure * de.po: fix typo "Processe" -> "Prozesse" * route: Fix a missing space in the ipv6 route output * util: drop new() helper * proc: constify filename arg * nameif: add printf attributes to helper funcs * nameif: mark local vars/funcs as static * nameif: fix memory corruption and increase maximum MAC address length * inet_gr: tweak formatting to avoid confusing the compiler * ipmaddr: use safe_strncpy for ifr_name * ifconfig: fix confusing error message logic * ifconfig: add name subcommand to rename an interface * statistics: Fix ipFragOKs and ipFragFails verbiage * statistics: fix packets typo * fix minor mistakes in Czech translation - drop 0003-Add-support-for-EiB-in-interface.c.patch 0005-Add-support-for-interface-rename-in-nameif.patch: upstream - net-tools-configure.patch: refresh ==== plasma5-desktop ==== - signon-plugin-oauth2 is a runtime dep ==== procps ==== Subpackages: libprocps8 - Package translations in procps-lang. ==== purpose ==== Subpackages: libKF5Purpose5 libKF5PurposeWidgets5 - Avoid hard dependency of optional plugin requirements ==== python-PyJWT ==== Version update (1.7.1 -> 2.0.1) - update to 2.0.1: * Drop support for Python 2 and Python 3.0-3.5 * Require cryptography >= 3 * Drop support for PyCrypto and ECDSA * Drop CLI * Improve typings * Dropped deprecated errors * Dropped deprecated ``verify_expiration`` param in ``jwt.decode(...)`` * Dropped deprecated ``verify`` param in ``jwt.decode(...)`` * Require explicit ``algorithms`` in ``jwt.decode(...)`` by default * Dropped deprecated ``require_*`` options in ``jwt.decode(...)`` * Introduce better experience for JWKs * further details see included CHANGELOG.rst - drop 0001-Catch-BadSignatureError-raised-by-ecdsa-0.13.3.patch (obsolete) ==== python-pyOpenSSL ==== Version update (20.0.0 -> 20.0.1) - update to 20.0.1: - Fixed compatibility with OpenSSL 1.1.0. ==== runc ==== Version update (1.0.0~rc92 -> 1.0.0~rc93) - Update to runc v1.0.0~rc93. Upstream changelog is available from https://github.com/opencontainers/runc/releases/tag/v1.0.0-rc93 * Cgroupv2 support is no longer considered experimental. * Mountinfo parsing code has been reworked significantly. * Special ENOSYS handling for seccomp profiles to avoid making new syscalls unusable for glibc. * Various rootless containers improvements. * The "selinux" and "apparmor" buildtags have been removed, and now all runc builds will have SELinux and AppArmor support enabled. - Update to handle the docker-runc removal. bsc#1181677 - Modernise go building for runc now that it has go.mod. ==== snapper ==== Subpackages: libsnapper5 - fixed testsuite for equal-date (gh#openSUSE/snapper#526) ==== system-users ==== Subpackages: system-group-hardware system-group-kvm system-user-lp system-user-nobody - Add system-user-ntp subpackage with ntp user and group and /var/lib/ntp as home directory ==== systemd ==== Version update (246.9 -> 246.10) Subpackages: libsystemd0 libudev1 systemd-logger systemd-sysvinit udev - systemd-sysv-convert: handle the case when services are migrated from SysV scripts to systemd units and are renamed at the same time (bsc#1181788) The list of such services is hard coded and contains only the 'ntp->ntpd' translation. - Import commit 134cf1c8bc3e361a2641161aa11ac2b5b990480b (merge of v246.10) 25f220eafb sysusers: flush nscd's caches whenever /etc/{passwd,group} are modified (bsc#1181121) 4a543f0257 journal: send journald logs to kmsg again 26df96473f busctl: add a timestamp to the output of the busctl monitor command (bsc#1180225) For a complete list of changes, visit: https://github.com/openSUSE/systemd/compare/520e53b6d85087b05892ee637ae93f1… - prepare usrmerge (boo#1029961) * don't install legacy symlinks to / * use %_pamdir to install pam modules * leave nss files in /usr/lib*, glibc loads them from there just fine independent of usrmerge ==== toolbox ==== Version update (2.0+git20210125.50611db -> 2.1+git20210203.a669e3a) - Update to version 2.1+git20210203.a669e3a: * Fix formatting * Enhance alternate UI docu * Ignore podman runlabel error if no RUN label exist * Enhance documentation * Check existence of volume directories (#15) ==== update-alternatives ==== - don't remove slave links that turned into master. Happens on usrmerge (boo#1180939, update-alternatives-slavetomaster.patch) ==== util-linux ==== Subpackages: libblkid1 libfdisk1 libmount1 libsmartcols1 libuuid1 - Merge package with SLE15 SP3 and openSUSE Leap 15.3: Obsoletes upstreamed patches: - libblkid: Do not trigger CDROM autoclose (v2.35, bsc#1084671, util-linux-libblkid-cdrom-autoclose-1.patch, util-linux-libblkid-cdrom-autoclose-2.patch, util-linux-libblkid-cdrom-autoclose-3.patch). - lscpu: avoid segfault on PowerPC systems with valid hardware configurations (v2.36.1, bsc#1175623, bsc#1178554, bsc#1178825, lscpu-avoid-segfault-on-PowerPC-systems-with-valid-h.patch) - Fix for SG#57988, bsc#1174942 (v2.36): libmount-fix-mount-a-EBUSY-for-cifs.patch: Fix warning on mounts to CIFS with mount ?a. - blockdev: Do not fail --report on kpartx-style partitions on multipath (v2.36, bsc#1168235, util-linux-blockdev-report-dm.patch). - nologin: Add support for -c to prevent error from su -c (v2.35, bsc#1151708, util-linux-nologin-su-c.patch). - Add libmount-Avoid-triggering-autofs-in-lookup_umount_fs.patch: Avoid triggering autofs in lookup_umount_fs_by_statfs (v2.36 boo#1168389) - mount: fall back to device node name if /dev/mapper link not found (v2.34, bsc#1149911) * Add patch: util-linux-canonicalize-coverity-scan.patch - De-duplicate fstrim -A properly (v2.34, bsc#1127701, util-linux-fstrim-A-1.patch, util-linux-fstrim-A-3.patch, util-linux-fstrim-A-4.patch). - Do not trim read-only volumes (v2.34, boo#1106214, util-linux-fstrim-A-2.patch, util-linux-fstrim-A-4.patch). - libmount: To prevent incorrect behavior, recognize more pseudofs and netfs (v2.34, bsc#1122417, util-linux-libmount-pseudofs.patch). - agetty: Return previous response of agetty for special characters (v2.34, bsc#1085196, bsc#1125886, util-linux-agetty-smart-reload-13.patch, util-linux-agetty-smart-reload-14.patch). - Fix problems in reading of login.defs values (v2.34, bsc#1121197, util-linux-login_defs-priority1.patch, util-linux-login_defs-priority2.patch, util-linux-login_defs-SYS_UID.patch). - Build with libudev support to support non-root users (boo#1169006). - Move findmnt and lsblk to util-linux-systemd, as they use libudev (bsc#1169006#c10). ==== util-linux-systemd ==== - Merge package with SLE15 SP3 and openSUSE Leap 15.3: Obsoletes upstreamed patches: - libblkid: Do not trigger CDROM autoclose (v2.35, bsc#1084671, util-linux-libblkid-cdrom-autoclose-1.patch, util-linux-libblkid-cdrom-autoclose-2.patch, util-linux-libblkid-cdrom-autoclose-3.patch). - lscpu: avoid segfault on PowerPC systems with valid hardware configurations (v2.36.1, bsc#1175623, bsc#1178554, bsc#1178825, lscpu-avoid-segfault-on-PowerPC-systems-with-valid-h.patch) - Fix for SG#57988, bsc#1174942 (v2.36): libmount-fix-mount-a-EBUSY-for-cifs.patch: Fix warning on mounts to CIFS with mount ?a. - blockdev: Do not fail --report on kpartx-style partitions on multipath (v2.36, bsc#1168235, util-linux-blockdev-report-dm.patch). - nologin: Add support for -c to prevent error from su -c (v2.35, bsc#1151708, util-linux-nologin-su-c.patch). - Add libmount-Avoid-triggering-autofs-in-lookup_umount_fs.patch: Avoid triggering autofs in lookup_umount_fs_by_statfs (v2.36 boo#1168389) - mount: fall back to device node name if /dev/mapper link not found (v2.34, bsc#1149911) * Add patch: util-linux-canonicalize-coverity-scan.patch - De-duplicate fstrim -A properly (v2.34, bsc#1127701, util-linux-fstrim-A-1.patch, util-linux-fstrim-A-3.patch, util-linux-fstrim-A-4.patch). - Do not trim read-only volumes (v2.34, boo#1106214, util-linux-fstrim-A-2.patch, util-linux-fstrim-A-4.patch). - libmount: To prevent incorrect behavior, recognize more pseudofs and netfs (v2.34, bsc#1122417, util-linux-libmount-pseudofs.patch). - agetty: Return previous response of agetty for special characters (v2.34, bsc#1085196, bsc#1125886, util-linux-agetty-smart-reload-13.patch, util-linux-agetty-smart-reload-14.patch). - Fix problems in reading of login.defs values (v2.34, bsc#1121197, util-linux-login_defs-priority1.patch, util-linux-login_defs-priority2.patch, util-linux-login_defs-SYS_UID.patch). - Build with libudev support to support non-root users (boo#1169006). - Move findmnt and lsblk to util-linux-systemd, as they use libudev (bsc#1169006#c10). ==== vim ==== Version update (8.2.2327 -> 8.2.2411) Subpackages: vim-data-common vim-small Updated to version 8.2.2411, fixes the following problems * Debugging code included. * Some test files may not be deleted. * Not all ways Vim can be started are tested. * Vim9: crash when using :trow in a not executed block. * Vim9: wrong error when modifying dict declared with :final. * Vim9: missing :endif not reported when using :windo. * Vim9: warning for uninitialized variable. (Tony Mechelynck) * Pascal-like filetypes not always detected. * Vim9: "silent return" does not restore command modifiers. * Vim9: it is not possible to extend a dictionary with different item types. * Configure test for GTK only says "no". (Harm te Hennepe) * Vim9: no error if using job_info() result wrongly. * Cannot get the type of a value as a string. * win_execute() unexpectedly returns number zero when failing. * Expression command line completion shows variables but not functions after "g:". (Gary Johnson) * "char" functions return the wront column in Insert mode when the cursor is beyond the end of the line. * Vim9: return type of readfile() is any. * Using inclusive index for slice is not always desired. * No focus events in a terminal. * Codecov reports every little coverage drop. * Build failure without GUI. * No check for modified files after focus gained. (Mathias Stearn) * Vim9: cannot handle line break after parenthesis at line end. * Using "void" for no reason. * Vim9: error message for "throw" in function that was called with "silent!". * If the focus lost/gained escape sequence is received twice it is not ignored. (Christ van Willigen) * Spartql files are not detected. * Crash with a weird combination of autocommands. * Stray test failure on Appveyor. * Vim9: ":put =expr" does not handle a list properly. * Vim9: crash when parsing function return type fails. * Wrong #ifdef for use_xterm_like_mouse(). * Strange test failure with MS-Windows. * Test leaves file behind. * Vim9: no highlight for "s///gc" when using 'opfunc'. * Vim9: check of builtin function argument type is incomplete. * Vim9: line break in lambda accesses freed memory. * Vim9: no check for map() changing item type at script level. * When using ":sleep" the cursor is always displayed. * Test failures on some less often used systems. * Insufficient tests for setting options. * Vim9: functions return true/false but can't be used as bool. * Vim9: command fails in catch block. * Vim9: crash when using types in :for with unpack. * Confusing error message for wrong :let command. * Vim9: list assignment only accepts a number index. * Accessing uninitialized memory in test_undo. * Test for RGB color skipped in the terminal. * Vim9: crash when dividing by zero in compiled code using constants. * Vim9: crash when using a range after another expression. * Vim9: no error message for dividing by zero. * Finding spell suggestions twice if 'spellsuggest' contains number. * Vim9: occasional crash when using try/catch and a timer. * Vim9: divide by zero does not abort expression execution. * Build failure. * Focus escape sequences are not named in ":set termcap" output. * Turtle filetype not recognized. * "gj" and "gk" do not work correctly when inside a fold. * Vim9: crash when using ":silent! put". * Runtime type check does not mention argument index. * No easy way to get the maximum or mininum number value. * Test failure on a few systems. * Vim9: using positive offset is unexpected. * Memory leak when creating a global function with closure. * Fennel filetype not recognized. * Vim9: error message when script line starts with "[{". * Vim9: min() and max() return type is "any". * Vim9: error for wrong type may report wrong line number. * Vim9: no white space allowed before "->". * Vim9: "%%" not seen as alternate file name for commands with a buffer name argument. * Method test fails. * Fold test fails in wide terminal. * Vim9: compiled functions are not profiled. * Build fails without +profiling feature. * Some filetypes not detected. * Vim9: profiling if/elseif/endif not correct. * Vim9: profiling try/catch not correct. * Vim9: no need to allow white space before "(" for :def. * Vim9: profiled :def function leaks memory. * Old jumplist code is never used. * MinGW: "--preprocessor" flag no longer supported. * Vim9: profiling only works for one function. * Build failure without the +profiling feature. * Profile test fails on MS-Windows. - remove forcing /usr/bin/vi -> vim symlink. Previous line linked to /etc/alternatives already. ==== wget ==== Version update (1.21 -> 1.21.1) - update to 1.21.1: * Fix compilation on MacOS and Solaris 9 * Resove bashism from configure.ac * Fix a compilation warning on 32-bit systems - remove-env-from-shebang.patch: refresh

1 0

New MicroOS snapshot 20210210 released!
by Richard Brown 11 Feb '21

11 Feb '21

Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: python-networkx === Details === ==== python-networkx ==== - Disable python36 build for good. Next up is SciPy 1.6.0 dropping Python 3.6 because of NEP 29. - Mark the doc package files as doc.

1 0

New Kubic snapshot 20210210 released!
by Richard Brown 11 Feb '21

11 Feb '21

Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=1&version=T… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: python-networkx === Details === ==== python-networkx ==== - Disable python36 build for good. Next up is SciPy 1.6.0 dropping Python 3.6 because of NEP 29. - Mark the doc package files as doc.

1 0

ionotify-tools
by Anthony J Rabbito 10 Feb '21

10 Feb '21

Hello, In order to use --drop-if-no-change on transactional-update we need the inotify-tools for inotifywait. Should this be packaged by default with Micro-OS, and Kubic? Thank you, Anthony Rabbito

2 1

New MicroOS snapshot 20210208 released!
by Richard Brown 09 Feb '21

09 Feb '21

Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: acl audit-secondary baloo5-widgets (20.12.1 -> 20.12.2) busybox (1.32.1 -> 1.33.0) busybox-links (1.32.1 -> 1.33.0) cups dolphin (20.12.1 -> 20.12.2) dracut (051+suse.84.gc6bd70b8 -> 051+suse.85.g04886430) elfutils filesystem gawk grub2 hostname hwdata (0.343 -> 0.344) iputils (s20200821 -> 20210202) kaccounts-integration (20.12.1 -> 20.12.2) kate (20.12.1 -> 20.12.2) kde-print-manager (20.12.1 -> 20.12.2) kdialog (20.12.1 -> 20.12.2) kio-extras5 (20.12.1 -> 20.12.2) konsole (20.12.1 -> 20.12.2) kwalletmanager5 (20.12.1 -> 20.12.2) libcap (2.46 -> 2.47) libgcrypt (1.8.7 -> 1.9.1) libgudev (233 -> 234) libmodulemd (2.10.0 -> 2.12.0) libopenmpt (0.5.4 -> 0.5.5) lvm2 lvm2-device-mapper lzo ncurses (6.2.20210116 -> 6.2.20210130) net-snmp (5.8 -> 5.9) net-tools (2.0+git20180626.aebd88e -> 2.10) procps systemd (246.9 -> 246.10) toolbox (2.0+git20210125.50611db -> 2.1+git20210203.a669e3a) update-alternatives util-linux util-linux-systemd === Details === ==== acl ==== - Replace system-user-{bin,daemon} with user({bin,daemon}): be resilient to package name changes. ==== audit-secondary ==== Subpackages: audit python3-audit - Do not explicitly provide group(audit) in system-users-audit: this is automatically handled by rpm/providers. - Create new "audit" group for read access to logs (bsc#1178154) * add change-default-log_group.patch * update audit-secondary.spec ==== baloo5-widgets ==== Version update (20.12.1 -> 20.12.2) - Update to 20.12.2 * New bugfix release * For more details please see: * https://kde.org/announcements/releases/2021-02-apps-update - No code change since 20.12.1 ==== busybox ==== Version update (1.32.1 -> 1.33.0) - Update to version 1.33.0 - many bug fixes and new features - update_passwd_selinux_fix.patch upstream compile fix for SELinux ==== busybox-links ==== Version update (1.32.1 -> 1.33.0) Subpackages: busybox-coreutils busybox-gawk busybox-grep busybox-gzip busybox-psmisc busybox-sed - Add zmore and zless ==== cups ==== Subpackages: cups-client cups-config libcups2 libcupsimage2 - CVE-2020-10001.patch fixes CVE-2020-10001 (bsc#1180520) access to uninitialized buffer in ipp.c ==== dolphin ==== Version update (20.12.1 -> 20.12.2) Subpackages: dolphin-part libdolphinvcs5 - Update to 20.12.2 * New bugfix release * For more details please see: * https://kde.org/announcements/releases/2021-02-apps-update - Changes since 20.12.1: * don't crash when building without baloo (kde#431730) * Show button to open knetattach inline with URL nav on remove:// view (kde#431626) * fix folder size calculation on FUSE and network file systems (kde#430778) * Change copy location shortcut in dolphin so as to not conflict with Konsole panel (kde#426461) - Drop upstream patch: * 0001-Show-button-to-open-knetattach-inline-with-URL-nav-o.patch ==== dracut ==== Version update (051+suse.84.gc6bd70b8 -> 051+suse.85.g04886430) Subpackages: dracut-ima - Update to version 051+suse.85.g04886430: * prepare usrmerge (boo#1029961) ==== elfutils ==== Subpackages: libasm1 libdw1 libelf1 - Enable LTO (boo#1138796) for elfutils.spec. ==== filesystem ==== - add /usr/etc/skel/.cache with perm 0700 (boo#1181011) - Set correct permissions when creating /proc and /sys ==== gawk ==== - fix update-alternatives usage. Needs to be in %postun according to https://en.opensuse.org/openSUSE:Packaging_Multiple_Version_guidelines#upda… - prepare usrmerge (boo#1029961) - remove use of obsolete %install_info ==== grub2 ==== Subpackages: grub2-i386-pc grub2-snapper-plugin grub2-x86_64-efi - Complete Secure Boot support on aarch64 (jsc#SLE-15020) * 0001-Add-support-for-Linux-EFI-stub-loading-on-aarch64.patch * 0002-arm64-make-sure-fdt-has-address-cells-and-size-cells.patch * 0003-Make-grub_error-more-verbose.patch * 0004-arm-arm64-loader-Better-memory-allocation-and-error-.patch * 0005-Make-linux_arm_kernel_header.hdr_offset-be-at-the-ri.patch * 0006-efi-Set-image-base-address-before-jumping-to-the-PE-.patch * 0007-linuxefi-fail-kernel-validation-without-shim-protoco.patch * 0008-squash-Add-support-for-Linux-EFI-stub-loading-on-aar.patch * 0009-squash-Add-support-for-linuxefi.patch - Fix rpmlint 2.0 error for having arch specific path in noarch package aiming for compatibility with old package (bsc#1179044) * grub2.spec - Fix non POSIX sed argument which failed in sed from busybox (bsc#1181091) * grub2-check-default.sh ==== hostname ==== - prepare usrmerge (boo#1029961) ==== hwdata ==== Version update (0.343 -> 0.344) - Update to version 0.344: + Updated pci, usb and vendor ids. ==== iputils ==== Version update (s20200821 -> 20210202) - Update to version 20210202 https://github.com/iputils/iputils/releases/tag/20210202 - Version scheme change: dropped leading 's', update that change ==== kaccounts-integration ==== Version update (20.12.1 -> 20.12.2) - Update to 20.12.2 * New bugfix release * For more details please see: * https://kde.org/announcements/releases/2021-02-apps-update - No code change since 20.12.1 ==== kate ==== Version update (20.12.1 -> 20.12.2) Subpackages: kate-plugins - Update to 20.12.2 * New bugfix release * For more details please see: * https://kde.org/announcements/releases/2021-02-apps-update - No code change since 20.12.1 ==== kde-print-manager ==== Version update (20.12.1 -> 20.12.2) - Update to 20.12.2 * New bugfix release * For more details please see: * https://kde.org/announcements/releases/2021-02-apps-update - No code change since 20.12.1 ==== kdialog ==== Version update (20.12.1 -> 20.12.2) - Update to 20.12.2 * New bugfix release * For more details please see: * https://kde.org/announcements/releases/2021-02-apps-update - No code change since 20.12.1 ==== kio-extras5 ==== Version update (20.12.1 -> 20.12.2) Subpackages: libkioarchive5 - Update to 20.12.2 * New bugfix release * For more details please see: * https://kde.org/announcements/releases/2021-02-apps-update - Changes since 20.12.1: * don't log passwords ==== konsole ==== Version update (20.12.1 -> 20.12.2) Subpackages: konsole-part - Update to 20.12.2 * New bugfix release * For more details please see: * https://kde.org/announcements/releases/2021-02-apps-update - Changes since 20.12.1: * Fix the handbook URL in the maintainer README * Fix crash exiting all tabs at the same time (kde#431827) * Fix "Remember window size" not working when unchecked (kde#427610) ==== kwalletmanager5 ==== Version update (20.12.1 -> 20.12.2) - Update to 20.12.2 * New bugfix release * For more details please see: * https://kde.org/announcements/releases/2021-02-apps-update - No code change since 20.12.1 ==== libcap ==== Version update (2.46 -> 2.47) - update to 2.47: * Restructured gowns to default to uid base of getuid(). * Augment NOPRIV libcap mode with the sticky NO_NEW_PRIVS prctl bit. * Improve the usage and diagnostic message for setcap * Documentation fixes, license declarations, example updates ==== libgcrypt ==== Version update (1.8.7 -> 1.9.1) - Update to 1.9.1 * *Fix exploitable bug* in hash functions introduced with 1.9.0. [bsc#1181632, CVE-2021-3345] * Return an error if a negative MPI is used with sexp scan functions. * Check for operational FIPS in the random and KDF functions. * Fix compile error on ARMv7 with NEON disabled. * Fix self-test in KDF module. * Improve assembler checks for better LTO support. * Fix 32-bit cross build on x86. * Fix non-NEON ARM assembly implementation for SHA512. * Fix build problems with the cipher_bulk_ops_t typedef. * Fix Ed25519 private key handling for preceding ZEROs. * Fix overflow in modular inverse implementation. * Fix register access for AVX/AVX2 implementations of Blake2. * Add optimized cipher and hash functions for s390x/zSeries. * Use hardware bit counting functionx when available. * Update DSA functions to match FIPS 186-3. * New self-tests for CMACs and KDFs. * Add bulk cipher functions for OFB and GCM modes. - Update libgpg-error required version - Use the suffix variable correctly in get_hmac_path() - Rebase libgcrypt-fips_selftest_trigger_file.patch - Add the global config file /etc/gcrypt/random.conf * This file can be used to globally change parameters of the random generator with the options: only-urandom and disable-jent. - Update to 1.9.0: New stable branch of Libgcrypt with full API and ABI compatibility to the 1.8 series. Release-info: https://dev.gnupg.org/T4294 * New and extended interfaces: - New curves Ed448, X448, and SM2. - New cipher mode EAX. - New cipher algo SM4. - New hash algo SM3. - New hash algo variants SHA512/224 and SHA512/256. - New MAC algos for Blake-2 algorithms, the new SHA512 variants, SM3, SM4 and for a GOST variant. - New convenience function gcry_mpi_get_ui. - gcry_sexp_extract_param understands new format specifiers to directly store to integers and strings. - New function gcry_ecc_mul_point and curve constants for Curve448 and Curve25519. - New function gcry_ecc_get_algo_keylen. - New control code GCRYCTL_AUTO_EXPAND_SECMEM to allow growing the secure memory area. * Performance optimizations and bug fixes: See Release-info. * Other features: - Add OIDs from RFC-8410 as aliases for Ed25519 and Curve25519. - Add mitigation against ECC timing attack CVE-2019-13627. - Internal cleanup of the ECC implementation. - Support reading EC point in compressed format for some curves. - Rebase patches: * libgcrypt-1.4.1-rijndael_no_strict_aliasing.patch * libgcrypt-1.5.0-LIBGCRYPT_FORCE_FIPS_MODE-env.diff * libgcrypt-1.6.1-use-fipscheck.patch * drbg_test.patch * libgcrypt-fipsdrv-enable-algo-for-dsa-sign.patch * libgcrypt-FIPS-RSA-DSA-ECDSA-hashing-operation.patch * libgcrypt-1.8.4-fips-keygen.patch * libgcrypt-1.8.4-getrandom.patch * libgcrypt-fix-tests-fipsmode.patch * libgcrypt-global_init-constructor.patch * libgcrypt-ecc-ecdsa-no-blinding.patch * libgcrypt-PCT-RSA.patch * libgcrypt-PCT-ECC.patch - Remove patches: * libgcrypt-unresolved-dladdr.patch * libgcrypt-CVE-2019-12904-GCM-Prefetch.patch * libgcrypt-CVE-2019-12904-GCM.patch * libgcrypt-CVE-2019-12904-AES.patch * libgcrypt-CMAC-AES-TDES-selftest.patch * libgcrypt-1.6.1-fips-cfgrandom.patch * libgcrypt-fips_rsa_no_enforced_mode.patch ==== libgudev ==== Version update (233 -> 234) - update to 234: * Clarify that _get_sysfs_attr() functions are cached * Add functions to get uncached sysfs attributes ==== libmodulemd ==== Version update (2.10.0 -> 2.12.0) - Update to 2.12.0 + Add support for 'buildorder' to Packager documents + Fix issue with ModuleIndex when input contains only Obsoletes documents + Extend read_packager_[file|string]() to support overriding the module name and stream. + Ignore Packager documents when running ModuleIndex.update_from_*() + Add python overrides for XMD in PackagerV3 + Add python override to ignore the GType return when reading packager files + Add PackagerV3.get_mdversion() - Drop patch incorporated in this release + Patch: 0001-Fix-integer-size-issue-on-32-bit-platforms.patch ==== libopenmpt ==== Version update (0.5.4 -> 0.5.5) - Update to 0.5.5: * [Bug] stb_vorbis: Fix decoding of Vorbis streams without comments which affected most Vorbis samples since stb_vorbis v1.20. * openmpt::ext::interactive::set_pitch_factor wasn?t applied to OPL voices. * OPL channel state (in particular current patch) is now updated when seeking. * The FT2 tremolo quirk is now also applied to MOD files. FT2 just copied the quirky code from ProTracker! * DMF: Preserve effects better in some situations where there is more than one effect in a pattern cell. * DMF: Improve import of finetune effect with parameters larger than +/-15. ==== lvm2 ==== Subpackages: liblvm2cmd2_03 - lvm2 should use 'external_device_info_source="udev"' by default (bsc#1179691) - add SUSE special patch to void issues in non udev env + bug-1179691_config-set-external_device_info_source-none.patch ==== lvm2-device-mapper ==== Subpackages: device-mapper libdevmapper-event1_03 libdevmapper1_03 - lvm2 should use 'external_device_info_source="udev"' by default (bsc#1179691) - add SUSE special patch to void issues in non udev env + bug-1179691_config-set-external_device_info_source-none.patch ==== lzo ==== - add lzo-2.08-rhbz1309225.patch to avoid aliasing issues ==== ncurses ==== Version update (6.2.20210116 -> 6.2.20210130) Subpackages: libncurses6 ncurses-utils terminfo-base - Add ncurses patch 20210130 + correct an off-by-one in comparison in waddch_literal() which caused scrolling when a double-cell character would not fit at the lower right corner of the screen (report by Benno Schulenberg). + split-out att610+cvis, vt220+cvis, vt220+cvis8 -TD + add vt220-base, for terminal emulators which generally have not supported att610's blinking cursor control -TD + use vt220+cvis in vt220, etc -TD + use att610+cvis, xterm+tmux and ansi+enq in kitty -TD + use vt220+cvis in st, terminology, termite since they ignore blinking-cursor detail in att610+cvis -TD - Port patch ncurses-6.2.dif * Skip cvvis entries where vt220+cvis is used * Skip function keys in rxvt-basic as rxvt+pcfkeys and use=vt220+keypadcw is used - Add ncurses patch 20210123 + modify package/config scripts to provide an explicit -L option for cases when the loader search path has other directories preceding the one in which ncurses is installed (report by Yuri Victorovich). + minor build-fixes in configure script and makefiles to work around quirks of pmake. ==== net-snmp ==== Version update (5.8 -> 5.9) Subpackages: libsnmp30 snmp-mibs - update to 5.9: snmplib: - Add IPv6 support to DTLSUDP transport CHANGES: snmplib: use new netsnmp_sockaddr_storage in netsnmp_addr_pair CHANGES: snmplib: add base_transport ptr for tunneled transports snmpd: - Security vulnerabilty in the ping MIB reported by Christopher Ertl from Microsoft fixed - Changing to a different uid/gid can only be done once - The extend mib is now read-only by default snmptrap: - BUG: 2899: Patch from Drew Roedersheimer to set library engineboots/time values before sending unspecified: - Add pkg-config support for building applications and sub-agents Use the netsnmp package when building Net-SNMP applications. Use the netsnmp-agent package when building Net-SNMP subagents. - drop net-snmp-5.8-fix-python3.patch, net-snmp-5.8-netgroups.patch: obsolete ==== net-tools ==== Version update (2.0+git20180626.aebd88e -> 2.10) - update to 2.10: * man: pt_BR: ifconfig: fix procmisc option typo * netstat: exit non-zero when sctp protocols are not supported * man: route: add single route del example * ifconfig: accept "pointtopoint" as an alias to "pointopoint" * man: netstat: fill out Timers section * man: ethers: remove funky comment blocks * man: standardize SEE ALSO across all pages & translations * netstat: fix iface truncation with -i * ifconfig: fix exabyte statistic handling * man: ipmaddr/iptunnel: new stub man pages * man: route: use standard .BR for SEE ALSO * netstat: fix iface truncation with -g * po: rename et_EE to et * README/INSTALL: refresh for the modern times * THANKS: add a few more people from `git-log` * netstat: Set SCTP report compliant with -l/--listening option. * Describe "hyphen" program in man page. * man: cleanup ipfw & ipchains refs * ipv6: fix memmove usage with overlapping memory * build: drop support for backing up programs * netstat: add ROSE print support * remove ancient "register" markings * hostname: constify a few string arguments * hostname: add fallback errno decoding on failure * de.po: fix typo "Processe" -> "Prozesse" * route: Fix a missing space in the ipv6 route output * util: drop new() helper * proc: constify filename arg * nameif: add printf attributes to helper funcs * nameif: mark local vars/funcs as static * nameif: fix memory corruption and increase maximum MAC address length * inet_gr: tweak formatting to avoid confusing the compiler * ipmaddr: use safe_strncpy for ifr_name * ifconfig: fix confusing error message logic * ifconfig: add name subcommand to rename an interface * statistics: Fix ipFragOKs and ipFragFails verbiage * statistics: fix packets typo * fix minor mistakes in Czech translation - drop 0003-Add-support-for-EiB-in-interface.c.patch 0005-Add-support-for-interface-rename-in-nameif.patch: upstream - net-tools-configure.patch: refresh ==== procps ==== Subpackages: libprocps8 - Package translations in procps-lang. ==== systemd ==== Version update (246.9 -> 246.10) Subpackages: libsystemd0 libudev1 systemd-logger systemd-sysvinit udev - systemd-sysv-convert: handle the case when services are migrated from SysV scripts to systemd units and are renamed at the same time (bsc#1181788) The list of such services is hard coded and contains only the 'ntp->ntpd' translation. - Import commit 134cf1c8bc3e361a2641161aa11ac2b5b990480b (merge of v246.10) 25f220eafb sysusers: flush nscd's caches whenever /etc/{passwd,group} are modified (bsc#1181121) 4a543f0257 journal: send journald logs to kmsg again 26df96473f busctl: add a timestamp to the output of the busctl monitor command (bsc#1180225) For a complete list of changes, visit: https://github.com/openSUSE/systemd/compare/520e53b6d85087b05892ee637ae93f1… - prepare usrmerge (boo#1029961) * don't install legacy symlinks to / * use %_pamdir to install pam modules * leave nss files in /usr/lib*, glibc loads them from there just fine independent of usrmerge ==== toolbox ==== Version update (2.0+git20210125.50611db -> 2.1+git20210203.a669e3a) - Update to version 2.1+git20210203.a669e3a: * Fix formatting * Enhance alternate UI docu * Ignore podman runlabel error if no RUN label exist * Enhance documentation * Check existence of volume directories (#15) ==== update-alternatives ==== - don't remove slave links that turned into master. Happens on usrmerge (boo#1180939, update-alternatives-slavetomaster.patch) ==== util-linux ==== Subpackages: libblkid1 libfdisk1 libmount1 libsmartcols1 libuuid1 - Merge package with SLE15 SP3 and openSUSE Leap 15.3: Obsoletes upstreamed patches: - libblkid: Do not trigger CDROM autoclose (v2.35, bsc#1084671, util-linux-libblkid-cdrom-autoclose-1.patch, util-linux-libblkid-cdrom-autoclose-2.patch, util-linux-libblkid-cdrom-autoclose-3.patch). - lscpu: avoid segfault on PowerPC systems with valid hardware configurations (v2.36.1, bsc#1175623, bsc#1178554, bsc#1178825, lscpu-avoid-segfault-on-PowerPC-systems-with-valid-h.patch) - Fix for SG#57988, bsc#1174942 (v2.36): libmount-fix-mount-a-EBUSY-for-cifs.patch: Fix warning on mounts to CIFS with mount ?a. - blockdev: Do not fail --report on kpartx-style partitions on multipath (v2.36, bsc#1168235, util-linux-blockdev-report-dm.patch). - nologin: Add support for -c to prevent error from su -c (v2.35, bsc#1151708, util-linux-nologin-su-c.patch). - Add libmount-Avoid-triggering-autofs-in-lookup_umount_fs.patch: Avoid triggering autofs in lookup_umount_fs_by_statfs (v2.36 boo#1168389) - mount: fall back to device node name if /dev/mapper link not found (v2.34, bsc#1149911) * Add patch: util-linux-canonicalize-coverity-scan.patch - De-duplicate fstrim -A properly (v2.34, bsc#1127701, util-linux-fstrim-A-1.patch, util-linux-fstrim-A-3.patch, util-linux-fstrim-A-4.patch). - Do not trim read-only volumes (v2.34, boo#1106214, util-linux-fstrim-A-2.patch, util-linux-fstrim-A-4.patch). - libmount: To prevent incorrect behavior, recognize more pseudofs and netfs (v2.34, bsc#1122417, util-linux-libmount-pseudofs.patch). - agetty: Return previous response of agetty for special characters (v2.34, bsc#1085196, bsc#1125886, util-linux-agetty-smart-reload-13.patch, util-linux-agetty-smart-reload-14.patch). - Fix problems in reading of login.defs values (v2.34, bsc#1121197, util-linux-login_defs-priority1.patch, util-linux-login_defs-priority2.patch, util-linux-login_defs-SYS_UID.patch). - Build with libudev support to support non-root users (boo#1169006). - Move findmnt and lsblk to util-linux-systemd, as they use libudev (bsc#1169006#c10). ==== util-linux-systemd ==== - Merge package with SLE15 SP3 and openSUSE Leap 15.3: Obsoletes upstreamed patches: - libblkid: Do not trigger CDROM autoclose (v2.35, bsc#1084671, util-linux-libblkid-cdrom-autoclose-1.patch, util-linux-libblkid-cdrom-autoclose-2.patch, util-linux-libblkid-cdrom-autoclose-3.patch). - lscpu: avoid segfault on PowerPC systems with valid hardware configurations (v2.36.1, bsc#1175623, bsc#1178554, bsc#1178825, lscpu-avoid-segfault-on-PowerPC-systems-with-valid-h.patch) - Fix for SG#57988, bsc#1174942 (v2.36): libmount-fix-mount-a-EBUSY-for-cifs.patch: Fix warning on mounts to CIFS with mount ?a. - blockdev: Do not fail --report on kpartx-style partitions on multipath (v2.36, bsc#1168235, util-linux-blockdev-report-dm.patch). - nologin: Add support for -c to prevent error from su -c (v2.35, bsc#1151708, util-linux-nologin-su-c.patch). - Add libmount-Avoid-triggering-autofs-in-lookup_umount_fs.patch: Avoid triggering autofs in lookup_umount_fs_by_statfs (v2.36 boo#1168389) - mount: fall back to device node name if /dev/mapper link not found (v2.34, bsc#1149911) * Add patch: util-linux-canonicalize-coverity-scan.patch - De-duplicate fstrim -A properly (v2.34, bsc#1127701, util-linux-fstrim-A-1.patch, util-linux-fstrim-A-3.patch, util-linux-fstrim-A-4.patch). - Do not trim read-only volumes (v2.34, boo#1106214, util-linux-fstrim-A-2.patch, util-linux-fstrim-A-4.patch). - libmount: To prevent incorrect behavior, recognize more pseudofs and netfs (v2.34, bsc#1122417, util-linux-libmount-pseudofs.patch). - agetty: Return previous response of agetty for special characters (v2.34, bsc#1085196, bsc#1125886, util-linux-agetty-smart-reload-13.patch, util-linux-agetty-smart-reload-14.patch). - Fix problems in reading of login.defs values (v2.34, bsc#1121197, util-linux-login_defs-priority1.patch, util-linux-login_defs-priority2.patch, util-linux-login_defs-SYS_UID.patch). - Build with libudev support to support non-root users (boo#1169006). - Move findmnt and lsblk to util-linux-systemd, as they use libudev (bsc#1169006#c10).

1 0

New Kubic snapshot 20210208 released!
by Richard Brown 09 Feb '21

09 Feb '21

Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=1&version=T… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: acl audit-secondary busybox (1.32.1 -> 1.33.0) busybox-links (1.32.1 -> 1.33.0) dracut (051+suse.84.gc6bd70b8 -> 051+suse.85.g04886430) elfutils filesystem gawk grub2 hostname iputils (s20200821 -> 20210202) kured (1.5.1 -> 1.6.1) libcap (2.46 -> 2.47) libgcrypt (1.8.7 -> 1.9.1) lvm2 lvm2-device-mapper lzo ncurses (6.2.20210116 -> 6.2.20210130) net-tools (2.0+git20180626.aebd88e -> 2.10) procps systemd (246.9 -> 246.10) toolbox (2.0+git20210125.50611db -> 2.1+git20210203.a669e3a) update-alternatives util-linux util-linux-systemd === Details === ==== acl ==== - Replace system-user-{bin,daemon} with user({bin,daemon}): be resilient to package name changes. ==== audit-secondary ==== Subpackages: audit python3-audit - Do not explicitly provide group(audit) in system-users-audit: this is automatically handled by rpm/providers. - Create new "audit" group for read access to logs (bsc#1178154) * add change-default-log_group.patch * update audit-secondary.spec ==== busybox ==== Version update (1.32.1 -> 1.33.0) - Update to version 1.33.0 - many bug fixes and new features - update_passwd_selinux_fix.patch upstream compile fix for SELinux ==== busybox-links ==== Version update (1.32.1 -> 1.33.0) Subpackages: busybox-coreutils busybox-gawk busybox-grep busybox-gzip busybox-sed - Add zmore and zless ==== dracut ==== Version update (051+suse.84.gc6bd70b8 -> 051+suse.85.g04886430) Subpackages: dracut-ima - Update to version 051+suse.85.g04886430: * prepare usrmerge (boo#1029961) ==== elfutils ==== Subpackages: libasm1 libdw1 libelf1 - Enable LTO (boo#1138796) for elfutils.spec. ==== filesystem ==== - add /usr/etc/skel/.cache with perm 0700 (boo#1181011) - Set correct permissions when creating /proc and /sys ==== gawk ==== - fix update-alternatives usage. Needs to be in %postun according to https://en.opensuse.org/openSUSE:Packaging_Multiple_Version_guidelines#upda… - prepare usrmerge (boo#1029961) - remove use of obsolete %install_info ==== grub2 ==== Subpackages: grub2-i386-pc grub2-snapper-plugin grub2-x86_64-efi - Complete Secure Boot support on aarch64 (jsc#SLE-15020) * 0001-Add-support-for-Linux-EFI-stub-loading-on-aarch64.patch * 0002-arm64-make-sure-fdt-has-address-cells-and-size-cells.patch * 0003-Make-grub_error-more-verbose.patch * 0004-arm-arm64-loader-Better-memory-allocation-and-error-.patch * 0005-Make-linux_arm_kernel_header.hdr_offset-be-at-the-ri.patch * 0006-efi-Set-image-base-address-before-jumping-to-the-PE-.patch * 0007-linuxefi-fail-kernel-validation-without-shim-protoco.patch * 0008-squash-Add-support-for-Linux-EFI-stub-loading-on-aar.patch * 0009-squash-Add-support-for-linuxefi.patch - Fix rpmlint 2.0 error for having arch specific path in noarch package aiming for compatibility with old package (bsc#1179044) * grub2.spec - Fix non POSIX sed argument which failed in sed from busybox (bsc#1181091) * grub2-check-default.sh ==== hostname ==== - prepare usrmerge (boo#1029961) ==== iputils ==== Version update (s20200821 -> 20210202) - Update to version 20210202 https://github.com/iputils/iputils/releases/tag/20210202 - Version scheme change: dropped leading 's', update that change ==== kured ==== Version update (1.5.1 -> 1.6.1) - Update to version 1.6.1: - add additional parameters to override the drain/reboot slack messages - rename message template parameters so they are not related to slack - Improve coordinated reboot output - Add more logs into gates - Added support for time wrap in timewindow.Contains ==== libcap ==== Version update (2.46 -> 2.47) - update to 2.47: * Restructured gowns to default to uid base of getuid(). * Augment NOPRIV libcap mode with the sticky NO_NEW_PRIVS prctl bit. * Improve the usage and diagnostic message for setcap * Documentation fixes, license declarations, example updates ==== libgcrypt ==== Version update (1.8.7 -> 1.9.1) - Update to 1.9.1 * *Fix exploitable bug* in hash functions introduced with 1.9.0. [bsc#1181632, CVE-2021-3345] * Return an error if a negative MPI is used with sexp scan functions. * Check for operational FIPS in the random and KDF functions. * Fix compile error on ARMv7 with NEON disabled. * Fix self-test in KDF module. * Improve assembler checks for better LTO support. * Fix 32-bit cross build on x86. * Fix non-NEON ARM assembly implementation for SHA512. * Fix build problems with the cipher_bulk_ops_t typedef. * Fix Ed25519 private key handling for preceding ZEROs. * Fix overflow in modular inverse implementation. * Fix register access for AVX/AVX2 implementations of Blake2. * Add optimized cipher and hash functions for s390x/zSeries. * Use hardware bit counting functionx when available. * Update DSA functions to match FIPS 186-3. * New self-tests for CMACs and KDFs. * Add bulk cipher functions for OFB and GCM modes. - Update libgpg-error required version - Use the suffix variable correctly in get_hmac_path() - Rebase libgcrypt-fips_selftest_trigger_file.patch - Add the global config file /etc/gcrypt/random.conf * This file can be used to globally change parameters of the random generator with the options: only-urandom and disable-jent. - Update to 1.9.0: New stable branch of Libgcrypt with full API and ABI compatibility to the 1.8 series. Release-info: https://dev.gnupg.org/T4294 * New and extended interfaces: - New curves Ed448, X448, and SM2. - New cipher mode EAX. - New cipher algo SM4. - New hash algo SM3. - New hash algo variants SHA512/224 and SHA512/256. - New MAC algos for Blake-2 algorithms, the new SHA512 variants, SM3, SM4 and for a GOST variant. - New convenience function gcry_mpi_get_ui. - gcry_sexp_extract_param understands new format specifiers to directly store to integers and strings. - New function gcry_ecc_mul_point and curve constants for Curve448 and Curve25519. - New function gcry_ecc_get_algo_keylen. - New control code GCRYCTL_AUTO_EXPAND_SECMEM to allow growing the secure memory area. * Performance optimizations and bug fixes: See Release-info. * Other features: - Add OIDs from RFC-8410 as aliases for Ed25519 and Curve25519. - Add mitigation against ECC timing attack CVE-2019-13627. - Internal cleanup of the ECC implementation. - Support reading EC point in compressed format for some curves. - Rebase patches: * libgcrypt-1.4.1-rijndael_no_strict_aliasing.patch * libgcrypt-1.5.0-LIBGCRYPT_FORCE_FIPS_MODE-env.diff * libgcrypt-1.6.1-use-fipscheck.patch * drbg_test.patch * libgcrypt-fipsdrv-enable-algo-for-dsa-sign.patch * libgcrypt-FIPS-RSA-DSA-ECDSA-hashing-operation.patch * libgcrypt-1.8.4-fips-keygen.patch * libgcrypt-1.8.4-getrandom.patch * libgcrypt-fix-tests-fipsmode.patch * libgcrypt-global_init-constructor.patch * libgcrypt-ecc-ecdsa-no-blinding.patch * libgcrypt-PCT-RSA.patch * libgcrypt-PCT-ECC.patch - Remove patches: * libgcrypt-unresolved-dladdr.patch * libgcrypt-CVE-2019-12904-GCM-Prefetch.patch * libgcrypt-CVE-2019-12904-GCM.patch * libgcrypt-CVE-2019-12904-AES.patch * libgcrypt-CMAC-AES-TDES-selftest.patch * libgcrypt-1.6.1-fips-cfgrandom.patch * libgcrypt-fips_rsa_no_enforced_mode.patch ==== lvm2 ==== Subpackages: liblvm2cmd2_03 - lvm2 should use 'external_device_info_source="udev"' by default (bsc#1179691) - add SUSE special patch to void issues in non udev env + bug-1179691_config-set-external_device_info_source-none.patch ==== lvm2-device-mapper ==== Subpackages: device-mapper libdevmapper-event1_03 libdevmapper1_03 - lvm2 should use 'external_device_info_source="udev"' by default (bsc#1179691) - add SUSE special patch to void issues in non udev env + bug-1179691_config-set-external_device_info_source-none.patch ==== lzo ==== - add lzo-2.08-rhbz1309225.patch to avoid aliasing issues ==== ncurses ==== Version update (6.2.20210116 -> 6.2.20210130) Subpackages: libncurses6 ncurses-utils terminfo-base - Add ncurses patch 20210130 + correct an off-by-one in comparison in waddch_literal() which caused scrolling when a double-cell character would not fit at the lower right corner of the screen (report by Benno Schulenberg). + split-out att610+cvis, vt220+cvis, vt220+cvis8 -TD + add vt220-base, for terminal emulators which generally have not supported att610's blinking cursor control -TD + use vt220+cvis in vt220, etc -TD + use att610+cvis, xterm+tmux and ansi+enq in kitty -TD + use vt220+cvis in st, terminology, termite since they ignore blinking-cursor detail in att610+cvis -TD - Port patch ncurses-6.2.dif * Skip cvvis entries where vt220+cvis is used * Skip function keys in rxvt-basic as rxvt+pcfkeys and use=vt220+keypadcw is used - Add ncurses patch 20210123 + modify package/config scripts to provide an explicit -L option for cases when the loader search path has other directories preceding the one in which ncurses is installed (report by Yuri Victorovich). + minor build-fixes in configure script and makefiles to work around quirks of pmake. ==== net-tools ==== Version update (2.0+git20180626.aebd88e -> 2.10) - update to 2.10: * man: pt_BR: ifconfig: fix procmisc option typo * netstat: exit non-zero when sctp protocols are not supported * man: route: add single route del example * ifconfig: accept "pointtopoint" as an alias to "pointopoint" * man: netstat: fill out Timers section * man: ethers: remove funky comment blocks * man: standardize SEE ALSO across all pages & translations * netstat: fix iface truncation with -i * ifconfig: fix exabyte statistic handling * man: ipmaddr/iptunnel: new stub man pages * man: route: use standard .BR for SEE ALSO * netstat: fix iface truncation with -g * po: rename et_EE to et * README/INSTALL: refresh for the modern times * THANKS: add a few more people from `git-log` * netstat: Set SCTP report compliant with -l/--listening option. * Describe "hyphen" program in man page. * man: cleanup ipfw & ipchains refs * ipv6: fix memmove usage with overlapping memory * build: drop support for backing up programs * netstat: add ROSE print support * remove ancient "register" markings * hostname: constify a few string arguments * hostname: add fallback errno decoding on failure * de.po: fix typo "Processe" -> "Prozesse" * route: Fix a missing space in the ipv6 route output * util: drop new() helper * proc: constify filename arg * nameif: add printf attributes to helper funcs * nameif: mark local vars/funcs as static * nameif: fix memory corruption and increase maximum MAC address length * inet_gr: tweak formatting to avoid confusing the compiler * ipmaddr: use safe_strncpy for ifr_name * ifconfig: fix confusing error message logic * ifconfig: add name subcommand to rename an interface * statistics: Fix ipFragOKs and ipFragFails verbiage * statistics: fix packets typo * fix minor mistakes in Czech translation - drop 0003-Add-support-for-EiB-in-interface.c.patch 0005-Add-support-for-interface-rename-in-nameif.patch: upstream - net-tools-configure.patch: refresh ==== procps ==== Subpackages: libprocps8 - Package translations in procps-lang. ==== systemd ==== Version update (246.9 -> 246.10) Subpackages: libsystemd0 libudev1 systemd-logger systemd-sysvinit udev - systemd-sysv-convert: handle the case when services are migrated from SysV scripts to systemd units and are renamed at the same time (bsc#1181788) The list of such services is hard coded and contains only the 'ntp->ntpd' translation. - Import commit 134cf1c8bc3e361a2641161aa11ac2b5b990480b (merge of v246.10) 25f220eafb sysusers: flush nscd's caches whenever /etc/{passwd,group} are modified (bsc#1181121) 4a543f0257 journal: send journald logs to kmsg again 26df96473f busctl: add a timestamp to the output of the busctl monitor command (bsc#1180225) For a complete list of changes, visit: https://github.com/openSUSE/systemd/compare/520e53b6d85087b05892ee637ae93f1… - prepare usrmerge (boo#1029961) * don't install legacy symlinks to / * use %_pamdir to install pam modules * leave nss files in /usr/lib*, glibc loads them from there just fine independent of usrmerge ==== toolbox ==== Version update (2.0+git20210125.50611db -> 2.1+git20210203.a669e3a) - Update to version 2.1+git20210203.a669e3a: * Fix formatting * Enhance alternate UI docu * Ignore podman runlabel error if no RUN label exist * Enhance documentation * Check existence of volume directories (#15) ==== update-alternatives ==== - don't remove slave links that turned into master. Happens on usrmerge (boo#1180939, update-alternatives-slavetomaster.patch) ==== util-linux ==== Subpackages: libblkid1 libfdisk1 libmount1 libsmartcols1 libuuid1 - Merge package with SLE15 SP3 and openSUSE Leap 15.3: Obsoletes upstreamed patches: - libblkid: Do not trigger CDROM autoclose (v2.35, bsc#1084671, util-linux-libblkid-cdrom-autoclose-1.patch, util-linux-libblkid-cdrom-autoclose-2.patch, util-linux-libblkid-cdrom-autoclose-3.patch). - lscpu: avoid segfault on PowerPC systems with valid hardware configurations (v2.36.1, bsc#1175623, bsc#1178554, bsc#1178825, lscpu-avoid-segfault-on-PowerPC-systems-with-valid-h.patch) - Fix for SG#57988, bsc#1174942 (v2.36): libmount-fix-mount-a-EBUSY-for-cifs.patch: Fix warning on mounts to CIFS with mount ?a. - blockdev: Do not fail --report on kpartx-style partitions on multipath (v2.36, bsc#1168235, util-linux-blockdev-report-dm.patch). - nologin: Add support for -c to prevent error from su -c (v2.35, bsc#1151708, util-linux-nologin-su-c.patch). - Add libmount-Avoid-triggering-autofs-in-lookup_umount_fs.patch: Avoid triggering autofs in lookup_umount_fs_by_statfs (v2.36 boo#1168389) - mount: fall back to device node name if /dev/mapper link not found (v2.34, bsc#1149911) * Add patch: util-linux-canonicalize-coverity-scan.patch - De-duplicate fstrim -A properly (v2.34, bsc#1127701, util-linux-fstrim-A-1.patch, util-linux-fstrim-A-3.patch, util-linux-fstrim-A-4.patch). - Do not trim read-only volumes (v2.34, boo#1106214, util-linux-fstrim-A-2.patch, util-linux-fstrim-A-4.patch). - libmount: To prevent incorrect behavior, recognize more pseudofs and netfs (v2.34, bsc#1122417, util-linux-libmount-pseudofs.patch). - agetty: Return previous response of agetty for special characters (v2.34, bsc#1085196, bsc#1125886, util-linux-agetty-smart-reload-13.patch, util-linux-agetty-smart-reload-14.patch). - Fix problems in reading of login.defs values (v2.34, bsc#1121197, util-linux-login_defs-priority1.patch, util-linux-login_defs-priority2.patch, util-linux-login_defs-SYS_UID.patch). - Build with libudev support to support non-root users (boo#1169006). - Move findmnt and lsblk to util-linux-systemd, as they use libudev (bsc#1169006#c10). ==== util-linux-systemd ==== - Merge package with SLE15 SP3 and openSUSE Leap 15.3: Obsoletes upstreamed patches: - libblkid: Do not trigger CDROM autoclose (v2.35, bsc#1084671, util-linux-libblkid-cdrom-autoclose-1.patch, util-linux-libblkid-cdrom-autoclose-2.patch, util-linux-libblkid-cdrom-autoclose-3.patch). - lscpu: avoid segfault on PowerPC systems with valid hardware configurations (v2.36.1, bsc#1175623, bsc#1178554, bsc#1178825, lscpu-avoid-segfault-on-PowerPC-systems-with-valid-h.patch) - Fix for SG#57988, bsc#1174942 (v2.36): libmount-fix-mount-a-EBUSY-for-cifs.patch: Fix warning on mounts to CIFS with mount ?a. - blockdev: Do not fail --report on kpartx-style partitions on multipath (v2.36, bsc#1168235, util-linux-blockdev-report-dm.patch). - nologin: Add support for -c to prevent error from su -c (v2.35, bsc#1151708, util-linux-nologin-su-c.patch). - Add libmount-Avoid-triggering-autofs-in-lookup_umount_fs.patch: Avoid triggering autofs in lookup_umount_fs_by_statfs (v2.36 boo#1168389) - mount: fall back to device node name if /dev/mapper link not found (v2.34, bsc#1149911) * Add patch: util-linux-canonicalize-coverity-scan.patch - De-duplicate fstrim -A properly (v2.34, bsc#1127701, util-linux-fstrim-A-1.patch, util-linux-fstrim-A-3.patch, util-linux-fstrim-A-4.patch). - Do not trim read-only volumes (v2.34, boo#1106214, util-linux-fstrim-A-2.patch, util-linux-fstrim-A-4.patch). - libmount: To prevent incorrect behavior, recognize more pseudofs and netfs (v2.34, bsc#1122417, util-linux-libmount-pseudofs.patch). - agetty: Return previous response of agetty for special characters (v2.34, bsc#1085196, bsc#1125886, util-linux-agetty-smart-reload-13.patch, util-linux-agetty-smart-reload-14.patch). - Fix problems in reading of login.defs values (v2.34, bsc#1121197, util-linux-login_defs-priority1.patch, util-linux-login_defs-priority2.patch, util-linux-login_defs-SYS_UID.patch). - Build with libudev support to support non-root users (boo#1169006). - Move findmnt and lsblk to util-linux-systemd, as they use libudev (bsc#1169006#c10).

1 0

New MicroOS snapshot 20210205 released!
by Richard Brown 07 Feb '21

07 Feb '21

Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: Mesa (20.3.3 -> 20.3.4) Mesa-drivers (20.3.3 -> 20.3.4) apparmor e2fsprogs gcc11 (10.2.1+git1030 -> 11.0.0+git182924) ibus installation-images-MicroOS (16.35 -> 16.36) libqt5-qtlocation libquvi lua53-luasocket plasma5-desktop purpose python-PyJWT (1.7.1 -> 2.0.1) python-pyOpenSSL (20.0.0 -> 20.0.1) runc (1.0.0~rc92 -> 1.0.0~rc93) snapper system-users vim (8.2.2327 -> 8.2.2411) wget (1.21 -> 1.21.1) === Details === ==== Mesa ==== Version update (20.3.3 -> 20.3.4) Subpackages: Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libgbm1 - update to 20.3.4 * fourth bugfix release for the 20.3 branch - removed no longer needed buildfix-ppc64le.patch; build failed on ppc64 due to this patch (bsc#1181439) ==== Mesa-drivers ==== Version update (20.3.3 -> 20.3.4) Subpackages: Mesa-dri Mesa-gallium - update to 20.3.4 * fourth bugfix release for the 20.3 branch - removed no longer needed buildfix-ppc64le.patch; build failed on ppc64 due to this patch (bsc#1181439) ==== apparmor ==== Subpackages: apparmor-abstractions apparmor-parser apparmor-profiles apparmor-utils python3-apparmor - define %_pamdir for <= 15.x to fix the build on those releases ==== e2fsprogs ==== Subpackages: libcom_err2 libext2fs2 - Fix usage of info macros on openSUSE, we use file triggers today - Use file requires for post section ==== gcc11 ==== Version update (10.2.1+git1030 -> 11.0.0+git182924) Subpackages: libgcc_s1 libgomp1 libstdc++6 - New packages inherits from gcc10 package. ==== ibus ==== Subpackages: libibus-1_0-5 typelib-1_0-IBus-1_0 - Do not build in parallel for reproducible build results (boo#1102408) ==== installation-images-MicroOS ==== Version update (16.35 -> 16.36) - merge gh#openSUSE/installation-images#448 - Switch to vim-small (boo#1181633) - 16.36 ==== libqt5-qtlocation ==== - Add compatibility with qml-autoreqprov ==== libquvi ==== - Correct misspelling in libquvi-0.9.4-lua-5.2.patch ==== lua53-luasocket ==== - Use %lua_provides macro ==== plasma5-desktop ==== - signon-plugin-oauth2 is a runtime dep ==== purpose ==== Subpackages: libKF5Purpose5 libKF5PurposeWidgets5 - Avoid hard dependency of optional plugin requirements ==== python-PyJWT ==== Version update (1.7.1 -> 2.0.1) - update to 2.0.1: * Drop support for Python 2 and Python 3.0-3.5 * Require cryptography >= 3 * Drop support for PyCrypto and ECDSA * Drop CLI * Improve typings * Dropped deprecated errors * Dropped deprecated ``verify_expiration`` param in ``jwt.decode(...)`` * Dropped deprecated ``verify`` param in ``jwt.decode(...)`` * Require explicit ``algorithms`` in ``jwt.decode(...)`` by default * Dropped deprecated ``require_*`` options in ``jwt.decode(...)`` * Introduce better experience for JWKs * further details see included CHANGELOG.rst - drop 0001-Catch-BadSignatureError-raised-by-ecdsa-0.13.3.patch (obsolete) ==== python-pyOpenSSL ==== Version update (20.0.0 -> 20.0.1) - update to 20.0.1: - Fixed compatibility with OpenSSL 1.1.0. ==== runc ==== Version update (1.0.0~rc92 -> 1.0.0~rc93) - Update to runc v1.0.0~rc93. Upstream changelog is available from https://github.com/opencontainers/runc/releases/tag/v1.0.0-rc93 * Cgroupv2 support is no longer considered experimental. * Mountinfo parsing code has been reworked significantly. * Special ENOSYS handling for seccomp profiles to avoid making new syscalls unusable for glibc. * Various rootless containers improvements. * The "selinux" and "apparmor" buildtags have been removed, and now all runc builds will have SELinux and AppArmor support enabled. - Update to handle the docker-runc removal. bsc#1181677 - Modernise go building for runc now that it has go.mod. ==== snapper ==== Subpackages: libsnapper5 - fixed testsuite for equal-date (gh#openSUSE/snapper#526) ==== system-users ==== Subpackages: system-group-hardware system-group-kvm system-user-lp system-user-nobody - Add system-user-ntp subpackage with ntp user and group and /var/lib/ntp as home directory ==== vim ==== Version update (8.2.2327 -> 8.2.2411) Subpackages: vim-data-common vim-small Updated to version 8.2.2411, fixes the following problems * Debugging code included. * Some test files may not be deleted. * Not all ways Vim can be started are tested. * Vim9: crash when using :trow in a not executed block. * Vim9: wrong error when modifying dict declared with :final. * Vim9: missing :endif not reported when using :windo. * Vim9: warning for uninitialized variable. (Tony Mechelynck) * Pascal-like filetypes not always detected. * Vim9: "silent return" does not restore command modifiers. * Vim9: it is not possible to extend a dictionary with different item types. * Configure test for GTK only says "no". (Harm te Hennepe) * Vim9: no error if using job_info() result wrongly. * Cannot get the type of a value as a string. * win_execute() unexpectedly returns number zero when failing. * Expression command line completion shows variables but not functions after "g:". (Gary Johnson) * "char" functions return the wront column in Insert mode when the cursor is beyond the end of the line. * Vim9: return type of readfile() is any. * Using inclusive index for slice is not always desired. * No focus events in a terminal. * Codecov reports every little coverage drop. * Build failure without GUI. * No check for modified files after focus gained. (Mathias Stearn) * Vim9: cannot handle line break after parenthesis at line end. * Using "void" for no reason. * Vim9: error message for "throw" in function that was called with "silent!". * If the focus lost/gained escape sequence is received twice it is not ignored. (Christ van Willigen) * Spartql files are not detected. * Crash with a weird combination of autocommands. * Stray test failure on Appveyor. * Vim9: ":put =expr" does not handle a list properly. * Vim9: crash when parsing function return type fails. * Wrong #ifdef for use_xterm_like_mouse(). * Strange test failure with MS-Windows. * Test leaves file behind. * Vim9: no highlight for "s///gc" when using 'opfunc'. * Vim9: check of builtin function argument type is incomplete. * Vim9: line break in lambda accesses freed memory. * Vim9: no check for map() changing item type at script level. * When using ":sleep" the cursor is always displayed. * Test failures on some less often used systems. * Insufficient tests for setting options. * Vim9: functions return true/false but can't be used as bool. * Vim9: command fails in catch block. * Vim9: crash when using types in :for with unpack. * Confusing error message for wrong :let command. * Vim9: list assignment only accepts a number index. * Accessing uninitialized memory in test_undo. * Test for RGB color skipped in the terminal. * Vim9: crash when dividing by zero in compiled code using constants. * Vim9: crash when using a range after another expression. * Vim9: no error message for dividing by zero. * Finding spell suggestions twice if 'spellsuggest' contains number. * Vim9: occasional crash when using try/catch and a timer. * Vim9: divide by zero does not abort expression execution. * Build failure. * Focus escape sequences are not named in ":set termcap" output. * Turtle filetype not recognized. * "gj" and "gk" do not work correctly when inside a fold. * Vim9: crash when using ":silent! put". * Runtime type check does not mention argument index. * No easy way to get the maximum or mininum number value. * Test failure on a few systems. * Vim9: using positive offset is unexpected. * Memory leak when creating a global function with closure. * Fennel filetype not recognized. * Vim9: error message when script line starts with "[{". * Vim9: min() and max() return type is "any". * Vim9: error for wrong type may report wrong line number. * Vim9: no white space allowed before "->". * Vim9: "%%" not seen as alternate file name for commands with a buffer name argument. * Method test fails. * Fold test fails in wide terminal. * Vim9: compiled functions are not profiled. * Build fails without +profiling feature. * Some filetypes not detected. * Vim9: profiling if/elseif/endif not correct. * Vim9: profiling try/catch not correct. * Vim9: no need to allow white space before "(" for :def. * Vim9: profiled :def function leaks memory. * Old jumplist code is never used. * MinGW: "--preprocessor" flag no longer supported. * Vim9: profiling only works for one function. * Build failure without the +profiling feature. * Profile test fails on MS-Windows. - remove forcing /usr/bin/vi -> vim symlink. Previous line linked to /etc/alternatives already. ==== wget ==== Version update (1.21 -> 1.21.1) - update to 1.21.1: * Fix compilation on MacOS and Solaris 9 * Resove bashism from configure.ac * Fix a compilation warning on 32-bit systems - remove-env-from-shebang.patch: refresh

1 0

New Kubic snapshot 20210205 released!
by Richard Brown 07 Feb '21

07 Feb '21

Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=1&version=T… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: apparmor e2fsprogs gcc11 (10.2.1+git1030 -> 11.0.0+git182924) haproxy installation-images-MicroOS (16.35 -> 16.36) python-PyJWT (1.7.1 -> 2.0.1) python-pyOpenSSL (20.0.0 -> 20.0.1) runc (1.0.0~rc92 -> 1.0.0~rc93) snapper system-users vim (8.2.2327 -> 8.2.2411) wget (1.21 -> 1.21.1) === Details === ==== apparmor ==== Subpackages: apparmor-abstractions apparmor-parser apparmor-profiles apparmor-utils python3-apparmor - define %_pamdir for <= 15.x to fix the build on those releases ==== e2fsprogs ==== Subpackages: libcom_err2 libext2fs2 - Fix usage of info macros on openSUSE, we use file triggers today - Use file requires for post section ==== gcc11 ==== Version update (10.2.1+git1030 -> 11.0.0+git182924) Subpackages: libgcc_s1 libgomp1 libstdc++6 - New packages inherits from gcc10 package. ==== haproxy ==== - Add lua54.patch to fix building with lua 5.4 ==== installation-images-MicroOS ==== Version update (16.35 -> 16.36) - merge gh#openSUSE/installation-images#448 - Switch to vim-small (boo#1181633) - 16.36 ==== python-PyJWT ==== Version update (1.7.1 -> 2.0.1) - update to 2.0.1: * Drop support for Python 2 and Python 3.0-3.5 * Require cryptography >= 3 * Drop support for PyCrypto and ECDSA * Drop CLI * Improve typings * Dropped deprecated errors * Dropped deprecated ``verify_expiration`` param in ``jwt.decode(...)`` * Dropped deprecated ``verify`` param in ``jwt.decode(...)`` * Require explicit ``algorithms`` in ``jwt.decode(...)`` by default * Dropped deprecated ``require_*`` options in ``jwt.decode(...)`` * Introduce better experience for JWKs * further details see included CHANGELOG.rst - drop 0001-Catch-BadSignatureError-raised-by-ecdsa-0.13.3.patch (obsolete) ==== python-pyOpenSSL ==== Version update (20.0.0 -> 20.0.1) - update to 20.0.1: - Fixed compatibility with OpenSSL 1.1.0. ==== runc ==== Version update (1.0.0~rc92 -> 1.0.0~rc93) - Update to runc v1.0.0~rc93. Upstream changelog is available from https://github.com/opencontainers/runc/releases/tag/v1.0.0-rc93 * Cgroupv2 support is no longer considered experimental. * Mountinfo parsing code has been reworked significantly. * Special ENOSYS handling for seccomp profiles to avoid making new syscalls unusable for glibc. * Various rootless containers improvements. * The "selinux" and "apparmor" buildtags have been removed, and now all runc builds will have SELinux and AppArmor support enabled. - Update to handle the docker-runc removal. bsc#1181677 - Modernise go building for runc now that it has go.mod. ==== snapper ==== Subpackages: libsnapper5 - fixed testsuite for equal-date (gh#openSUSE/snapper#526) ==== system-users ==== Subpackages: system-group-hardware system-group-kvm system-user-nobody - Add system-user-ntp subpackage with ntp user and group and /var/lib/ntp as home directory ==== vim ==== Version update (8.2.2327 -> 8.2.2411) Subpackages: vim-data-common vim-small Updated to version 8.2.2411, fixes the following problems * Debugging code included. * Some test files may not be deleted. * Not all ways Vim can be started are tested. * Vim9: crash when using :trow in a not executed block. * Vim9: wrong error when modifying dict declared with :final. * Vim9: missing :endif not reported when using :windo. * Vim9: warning for uninitialized variable. (Tony Mechelynck) * Pascal-like filetypes not always detected. * Vim9: "silent return" does not restore command modifiers. * Vim9: it is not possible to extend a dictionary with different item types. * Configure test for GTK only says "no". (Harm te Hennepe) * Vim9: no error if using job_info() result wrongly. * Cannot get the type of a value as a string. * win_execute() unexpectedly returns number zero when failing. * Expression command line completion shows variables but not functions after "g:". (Gary Johnson) * "char" functions return the wront column in Insert mode when the cursor is beyond the end of the line. * Vim9: return type of readfile() is any. * Using inclusive index for slice is not always desired. * No focus events in a terminal. * Codecov reports every little coverage drop. * Build failure without GUI. * No check for modified files after focus gained. (Mathias Stearn) * Vim9: cannot handle line break after parenthesis at line end. * Using "void" for no reason. * Vim9: error message for "throw" in function that was called with "silent!". * If the focus lost/gained escape sequence is received twice it is not ignored. (Christ van Willigen) * Spartql files are not detected. * Crash with a weird combination of autocommands. * Stray test failure on Appveyor. * Vim9: ":put =expr" does not handle a list properly. * Vim9: crash when parsing function return type fails. * Wrong #ifdef for use_xterm_like_mouse(). * Strange test failure with MS-Windows. * Test leaves file behind. * Vim9: no highlight for "s///gc" when using 'opfunc'. * Vim9: check of builtin function argument type is incomplete. * Vim9: line break in lambda accesses freed memory. * Vim9: no check for map() changing item type at script level. * When using ":sleep" the cursor is always displayed. * Test failures on some less often used systems. * Insufficient tests for setting options. * Vim9: functions return true/false but can't be used as bool. * Vim9: command fails in catch block. * Vim9: crash when using types in :for with unpack. * Confusing error message for wrong :let command. * Vim9: list assignment only accepts a number index. * Accessing uninitialized memory in test_undo. * Test for RGB color skipped in the terminal. * Vim9: crash when dividing by zero in compiled code using constants. * Vim9: crash when using a range after another expression. * Vim9: no error message for dividing by zero. * Finding spell suggestions twice if 'spellsuggest' contains number. * Vim9: occasional crash when using try/catch and a timer. * Vim9: divide by zero does not abort expression execution. * Build failure. * Focus escape sequences are not named in ":set termcap" output. * Turtle filetype not recognized. * "gj" and "gk" do not work correctly when inside a fold. * Vim9: crash when using ":silent! put". * Runtime type check does not mention argument index. * No easy way to get the maximum or mininum number value. * Test failure on a few systems. * Vim9: using positive offset is unexpected. * Memory leak when creating a global function with closure. * Fennel filetype not recognized. * Vim9: error message when script line starts with "[{". * Vim9: min() and max() return type is "any". * Vim9: error for wrong type may report wrong line number. * Vim9: no white space allowed before "->". * Vim9: "%%" not seen as alternate file name for commands with a buffer name argument. * Method test fails. * Fold test fails in wide terminal. * Vim9: compiled functions are not profiled. * Build fails without +profiling feature. * Some filetypes not detected. * Vim9: profiling if/elseif/endif not correct. * Vim9: profiling try/catch not correct. * Vim9: no need to allow white space before "(" for :def. * Vim9: profiled :def function leaks memory. * Old jumplist code is never used. * MinGW: "--preprocessor" flag no longer supported. * Vim9: profiling only works for one function. * Build failure without the +profiling feature. * Profile test fails on MS-Windows. - remove forcing /usr/bin/vi -> vim symlink. Previous line linked to /etc/alternatives already. ==== wget ==== Version update (1.21 -> 1.21.1) - update to 1.21.1: * Fix compilation on MacOS and Solaris 9 * Resove bashism from configure.ac * Fix a compilation warning on 32-bit systems - remove-env-from-shebang.patch: refresh

1 0

New ARM MicroOS snapshot 20210203 released!
by Guillaume Gardet 05 Feb '21

05 Feb '21

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=microos&groupid=3&version… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: PackageKit bluez cloud-init cockpit (232 -> 235) containers-systemd (0.0+git20210107.f55f4b3 -> 0.0+git20210118.1366ecb) dolphin ffmpeg-4 fftw3 (3.3.8 -> 3.3.9) flatpak (1.10.0 -> 1.10.1) gdm glibmm2_4 (2.64.5 -> 2.66.0) gnome-software graphene hwinfo (21.71 -> 21.72) installation-images-MicroOS (16.29 -> 16.35) iproute2 (5.9.0 -> 5.10.0) isl jack (1.9.16 -> 1.9.17) kcompletion kernel-firmware (20201218 -> 20210119) kernel-source (5.10.9 -> 5.10.12) kmod (27 -> 28) libXt (1.2.0 -> 1.2.1) libdrm (2.4.103 -> 2.4.104) libgpg-error (1.39 -> 1.41) libqt5-qtwebengine librsvg (2.50.2 -> 2.50.3) libunwind (1.4.0 -> 1.5.0) llvm11 mozilla-nss (3.59.1 -> 3.60.1) mozjs78 (78.6.1 -> 78.7.0) open-iscsi openssh p11-kit (0.23.20 -> 0.23.22) pangomm1_4 (2.42.2 -> 2.46.0) patterns-base patterns-microos permissions (1550_20201111 -> 1550_20210125) pinentry (1.1.0 -> 1.1.1) pipewire (0.3.15 -> 0.3.20) pulseaudio (14.0 -> 14.2) python-PyYAML (5.3.1 -> 5.4.1) python-importlib-metadata (3.3.0 -> 3.4.0) python-networkx python-packaging (20.4 -> 20.8) python-psutil (5.7.3 -> 5.8.0) python-urllib3 (1.26.2 -> 1.26.3) python38 (3.8.6 -> 3.8.7) python38-core (3.8.6 -> 3.8.7) raspberrypi-firmware raspberrypi-firmware-config raspberrypi-firmware-dt (2020.12.07 -> 2021.01.22) rpm soundtouch (2.1.2 -> 2.2) sqlite3 (3.34.0 -> 3.34.1) supportutils timezone (2020f -> 2021a) toolbox (1.0+git20210119.b5acdcf -> 2.0+git20210125.50611db) tpm2-0-tss (3.0.1 -> 3.0.3) tracker2 upower util-linux (2.35.1 -> 2.36.1) util-linux-systemd (2.35.1 -> 2.36.1) wayland (1.18.0 -> 1.19.0) webkit2gtk3 xterm (359 -> 363) yast2 (4.3.49 -> 4.3.51) zeromq (4.3.3 -> 4.3.4) zstd === Details === ==== PackageKit ==== Subpackages: PackageKit-backend-zypp libpackagekit-glib2-18 - Do not build cnf: scout-c-n-f is still pending, having PK-cnf obsolete cnf is unacceptable. - Add PackageKit-zypp-reset-update-mode-after-get-updates.patch: zypp: Reset update mode after getting updates (gh#hughsie/PackageKit/commit#b208f551, bsc#1180150). - Build command-not-found by default ==== bluez ==== Subpackages: libbluetooth3 - add bluez-test-2to3.diff to get rid of python2 dependency ==== cloud-init ==== - Add use_arroba_to_include_sudoers_directory-bsc_1181283.patchfix (bsc#1181283) - Do not including sudoers.d directory twice ==== cockpit ==== Version update (232 -> 235) Subpackages: cockpit-bridge cockpit-system - new version 235 https://cockpit-project.org/blog/cockpit-235.html https://cockpit-project.org/blog/cockpit-234.html https://cockpit-project.org/blog/cockpit-233.html ==== containers-systemd ==== Version update (0.0+git20210107.f55f4b3 -> 0.0+git20210118.1366ecb) - Update to version 0.0+git20210118.1366ecb: * postfix: provide SPAMASSASSIN_HOST environment variable ==== dolphin ==== Subpackages: dolphin-part libdolphinvcs5 - Add upstream patch to properly show the network button in the URL navigator (kde#431626): - 0001-Show-button-to-open-knetattach-inline-with-URL-nav-o.patch - Refreshed patches: - 0001-Update-cached-viewContainer-geometry-every-time-they.patch ==== ffmpeg-4 ==== Subpackages: libavcodec58_91 libavformat58_45 libavutil56_51 libswresample3_7 - remove dependency on OpenJPEG, this is obsolete since ffmpeg 4.0, we already build against OpenJPEG 2.1. see changes: - Dropped support for OpenJPEG versions 2.0 and below. Using OpenJPEG now requires 2.1 (or later) and pkg-config. ==== fftw3 ==== Version update (3.3.8 -> 3.3.9) - update to 3.3.9: * New API fftw_planner_nthreads() returns the number of threads currently being used by the planner. * Fix incorrect math in 128-bit generic SIMD * Fix wisdom for avx512. The avx512 alignment requirement was set to 64 bytes, but this is wrong. Alignment requirements are a property of the platform (e.g., x86) and not of the instruction set (e.g., AVX). Among other things, this broke wisdom with avx512. Note that avx512 support is still experimental because the FFTW authors have no avx512 hardware available for testing. * fftw_threads_set_callback function to change the threading backend at runtime. ==== flatpak ==== Version update (1.10.0 -> 1.10.1) Subpackages: libflatpak0 system-user-flatpak - Flatpak only requires glib 2.44, not 2.60 - Update ostree version required to 2020.8 - Update to version 1.10.1: + Fix flatpak build on systems with setuid bwrap + Fix some compiler warnings + Fix crash on updating apps with no deploy data + Updated translations. - Remove deprecated texinfo packaging macros. - Switch to upstream release tarball. ==== gdm ==== Subpackages: gdmflexiserver libgdm1 typelib-1_0-Gdm-1_0 - Fixup gdm.sysyers: gecos field needs to be quoted for multi-word value. - Use sysusers config file to generate gdm user ==== glibmm2_4 ==== Version update (2.64.5 -> 2.66.0) Subpackages: libgiomm-2_4-1 libglibmm-2_4-1 - Update to version 2.66.0: + Glib: - Binding: Add set_manage() and Glib::manage(). - Deprecate BalancedTree in favour of std::map and std::unordered_map. + Gio: - ListStore: Accept interfaces. - MenuAttribute: Add new enum values. - SettingsSchemaSource: Wrap new_from_directory() and list_schemas(). ==== gnome-software ==== Subpackages: libgnomesoftware-3_38_0 - Remove hard dependency on zypp appdata plugin if other PackageKit backend is used ==== graphene ==== Subpackages: libgraphene-1_0-0 typelib-1_0-Graphene-1_0 - Pass conditional Darm_neon=false instead of Darm-neon=true to meson, fix build for armv7. - Stop passing Dbenchmarks=true, no longer recognized nor used. ==== hwinfo ==== Version update (21.71 -> 21.72) - merge gh#openSUSE/hwinfo#92 - improve getting video mode info (bsc#1181101) - try harder to break out of infinite I/O loops - 21.72 ==== installation-images-MicroOS ==== Version update (16.29 -> 16.35) - merge gh#openSUSE/installation-images#439 - Don't replace directory symlinks (boo#1029961) - 16.35 - merge gh#openSUSE/installation-images#447 - aarch64: add tegra20-apb-dma module (bsc#1181463) - 16.34 - merge gh#openSUSE/installation-images#446 - work around broken plymouth (bsc#1149070) - 16.33 - merge gh#openSUSE/installation-images#445 - do not run prein script for openssh-server in root image - 16.32 - merge gh#openSUSE/installation-images#443 - revert plymouth branding for SLE to tribar - support both plymouth-theme-tribar and plymouth-theme-bgrt - 16.31 - merge gh#openSUSE/installation-images#442 - Replace tribar plymouth theme for installation with bgrt (boo#1149070) - 16.30 ==== iproute2 ==== Version update (5.9.0 -> 5.10.0) - Update to release 5.10 * iplink: add support for protodown reason * ss: add support to expose various inet sockopts * ss: add support for XDP statistics * bridge: mdb: add support for source address ==== isl ==== - Compile with %optflags ==== jack ==== Version update (1.9.16 -> 1.9.17) - update to 1.9.17: * Fix jack_control stopping after first command iteration * Fix registry keys for Windows, add 32bit compat ones on 64bit * Fix library compat/current version under macOS * Fix return codes of jackd on success * Ignore DB_VERSION_MISMATCH error on windows, it is expected * Remove old workaround for asio4all, as it breaks with jack-router ==== kcompletion ==== - Add upstream patch to fix Okular search bar no longer closed when pressing ESC (kde#431493): * 0001-Fix-regression-caused-due-to-porting-from-operator-t.patch ==== kernel-firmware ==== Version update (20201218 -> 20210119) Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network - Update to version 20210119 (git commit 05789708b79b): * brcm: Link RPi4's WiFi firmware with DMI machine name. * brcm: Add NVRAM for Vamrs 96boards Rock960 * brcm: Update Raspberry Pi 3B+/4B NVRAM for downstream changes * cypress: Fix link direction * cypress: Link the new cypress firmware to the old brcm files * brcm: remove old brcm firmwares that have newer cypress variants * rtl_bt: Update RTL8822C BT(UART I/F) FW to 0x059A_25CB * rtl_bt: Update RTL8822C BT(USB I/F) FW to 0x099a_7253 * rtl_bt: Add firmware and config files for RTL8852A BT USB chip * rtl_bt: Update RTL8821C BT(USB I/F) FW to 0x829a_7644 - Fix install-split.sh to deal with the quoted spaces - Update aliases ==== kernel-source ==== Version update (5.10.9 -> 5.10.12) - Linux 5.10.12 (bsc#1012628). - gpio: mvebu: fix pwm .get_state period calculation (bsc#1012628). - Revert "mm/slub: fix a memory leak in sysfs_slab_add()" (bsc#1012628). - futex: Ensure the correct return value from futex_lock_pi() (bsc#1012628). - futex: Replace pointless printk in fixup_owner() (bsc#1012628). - futex: Provide and use pi_state_update_owner() (bsc#1012628). - rtmutex: Remove unused argument from rt_mutex_proxy_unlock() (bsc#1012628). - futex: Use pi_state_update_owner() in put_pi_state() (bsc#1012628). - futex: Simplify fixup_pi_state_owner() (bsc#1012628). - futex: Handle faults correctly for PI futexes (bsc#1012628). - HID: wacom: Correct NULL dereference on AES pen proximity (bsc#1012628). - HID: multitouch: Apply MT_QUIRK_CONFIDENCE quirk for multi-input devices (bsc#1012628). - media: Revert "media: videobuf2: Fix length check for single plane dmabuf queueing" (bsc#1012628). - media: v4l2-subdev.h: BIT() is not available in userspace (bsc#1012628). - RDMA/vmw_pvrdma: Fix network_hdr_type reported in WC (bsc#1012628). - kernel/io_uring: cancel io_uring before task works (bsc#1012628). - io_uring: inline io_uring_attempt_task_drop() (bsc#1012628). - io_uring: add warn_once for io_uring_flush() (bsc#1012628). - io_uring: stop SQPOLL submit on creator's death (bsc#1012628). - io_uring: fix null-deref in io_disable_sqo_submit (bsc#1012628). - io_uring: do sqo disable on install_fd error (bsc#1012628). - io_uring: fix false positive sqo warning on flush (bsc#1012628). - io_uring: fix uring_flush in exit_files() warning (bsc#1012628). - io_uring: fix skipping disabling sqo on exec (bsc#1012628). - io_uring: dont kill fasync under completion_lock (bsc#1012628). - io_uring: fix sleeping under spin in __io_clean_op (bsc#1012628). - objtool: Don't fail on missing symbol table (bsc#1012628). - mm/page_alloc: add a missing mm_page_alloc_zone_locked() tracepoint (bsc#1012628). - mm: fix a race on nr_swap_pages (bsc#1012628). - tools: Factor HOSTCC, HOSTLD, HOSTAR definitions (bsc#1012628). - printk: fix buffer overflow potential for print_text() (bsc#1012628). - printk: fix string termination for record_print_text() (bsc#1012628). - commit a3c8888 - floppy: reintroduce O_NDELAY fix (boo#1181018). - commit fcfe481 - Update config files. Only refresh after 5.10.11. - commit 90db4e6 - Linux 5.10.11 (bsc#1012628). - scsi: target: tcmu: Fix use-after-free of se_cmd->priv (bsc#1012628). - mtd: rawnand: gpmi: fix dst bit offset when extracting raw payload (bsc#1012628). - mtd: rawnand: nandsim: Fix the logic when selecting Hamming soft ECC engine (bsc#1012628). - i2c: tegra: Wait for config load atomically while in ISR (bsc#1012628). - i2c: bpmp-tegra: Ignore unknown I2C_M flags (bsc#1012628). - platform/x86: i2c-multi-instantiate: Don't create platform device for INT3515 ACPI nodes (bsc#1012628). - platform/x86: ideapad-laptop: Disable touchpad_switch for ELAN0634 (bsc#1012628). - ALSA: seq: oss: Fix missing error check in snd_seq_oss_synth_make_info() (bsc#1012628). - ALSA: hda/realtek - Limit int mic boost on Acer Aspire E5-575T (bsc#1012628). - ALSA: hda/via: Add minimum mute flag (bsc#1012628). - crypto: xor - Fix divide error in do_xor_speed() (bsc#1012628). - dm crypt: fix copy and paste bug in crypt_alloc_req_aead (bsc#1012628). - ACPI: scan: Make acpi_bus_get_device() clear return pointer on error (bsc#1012628). - btrfs: don't get an EINTR during drop_snapshot for reloc (bsc#1012628). - btrfs: do not double free backref nodes on error (bsc#1012628). - btrfs: fix lockdep splat in btrfs_recover_relocation (bsc#1012628). - btrfs: don't clear ret in btrfs_start_dirty_block_groups (bsc#1012628). - btrfs: send: fix invalid clone operations when cloning from the same file and root (bsc#1012628). - fs: fix lazytime expiration handling in __writeback_single_inode() (bsc#1012628). - pinctrl: ingenic: Fix JZ4760 support (bsc#1012628). - mmc: core: don't initialize block size from ext_csd if not present (bsc#1012628). - mmc: sdhci-of-dwcmshc: fix rpmb access (bsc#1012628). - mmc: sdhci-xenon: fix 1.8v regulator stabilization (bsc#1012628). - mmc: sdhci-brcmstb: Fix mmc timeout errors on S5 suspend (bsc#1012628). - dm: avoid filesystem lookup in dm_get_dev_t() (bsc#1012628). - dm integrity: fix a crash if "recalculate" used without "internal_hash" (bsc#1012628). - dm integrity: conditionally disable "recalculate" feature (bsc#1012628). - drm/atomic: put state on error path (bsc#1012628). - drm/syncobj: Fix use-after-free (bsc#1012628). - drm/amdgpu: remove gpu info firmware of green sardine (bsc#1012628). - drm/amd/display: DCN2X Find Secondary Pipe properly in MPO + ODM Case (bsc#1012628). - drm/i915/gt: Prevent use of engine->wa_ctx after error (bsc#1012628). - drm/i915: Check for rq->hwsp validity after acquiring RCU lock (bsc#1012628). - ASoC: Intel: haswell: Add missing pm_ops (bsc#1012628). - ASoC: rt711: mutex between calibration and power state changes (bsc#1012628). - SUNRPC: Handle TCP socket sends with kernel_sendpage() again (bsc#1012628). - HID: multitouch: Enable multi-input for Synaptics pointstick/touchpad device (bsc#1012628). - HID: sony: select CONFIG_CRC32 (bsc#1012628). - dm integrity: select CRYPTO_SKCIPHER (bsc#1012628). - x86/hyperv: Fix kexec panic/hang issues (bsc#1012628). - scsi: ufs: Relax the condition of UFSHCI_QUIRK_SKIP_MANUAL_WB_FLUSH_CTRL (bsc#1012628). - scsi: ufs: Correct the LUN used in eh_device_reset_handler() callback (bsc#1012628). - scsi: qedi: Correct max length of CHAP secret (bsc#1012628). - scsi: scsi_debug: Fix memleak in scsi_debug_init() (bsc#1012628). - scsi: sd: Suppress spurious errors when WRITE SAME is being disabled (bsc#1012628). - riscv: Fix kernel time_init() (bsc#1012628). - riscv: Fix sifive serial driver (bsc#1012628). - riscv: Enable interrupts during syscalls with M-Mode (bsc#1012628). - HID: logitech-dj: add the G602 receiver (bsc#1012628). - HID: Ignore battery for Elan touchscreen on ASUS UX550 (bsc#1012628). - clk: tegra30: Add hda clock default rates to clock driver (bsc#1012628). - ALSA: hda/tegra: fix tegra-hda on tegra30 soc (bsc#1012628). - riscv: cacheinfo: Fix using smp_processor_id() in preemptible (bsc#1012628). - arm64: make atomic helpers __always_inline (bsc#1012628). - xen: Fix event channel callback via INTX/GSI (bsc#1012628). - x86/xen: Add xen_no_vector_callback option to test PCI INTX delivery (bsc#1012628). - x86/xen: Fix xen_hvm_smp_init() when vector callback not available (bsc#1012628). - dts: phy: fix missing mdio device and probe failure of vsc8541-01 device (bsc#1012628). - dts: phy: add GPIO number and active state used for phy reset (bsc#1012628). - riscv: defconfig: enable gpio support for HiFive Unleashed (bsc#1012628). - drm/amdgpu/psp: fix psp gfx ctrl cmds (bsc#1012628). - drm/amd/display: disable dcn10 pipe split by default (bsc#1012628). - HID: logitech-hidpp: Add product ID for MX Ergo in Bluetooth mode (bsc#1012628). - drm/amd/display: Fix to be able to stop crc calculation (bsc#1012628). - drm/nouveau/bios: fix issue shadowing expansion ROMs (bsc#1012628). - drm/nouveau/privring: ack interrupts the same way as RM (bsc#1012628). - drm/nouveau/i2c/gm200: increase width of aux semaphore owner fields (bsc#1012628). - drm/nouveau/mmu: fix vram heap sizing (bsc#1012628). - drm/nouveau/kms/nv50-: fix case where notifier buffer is at offset 0 (bsc#1012628). - io_uring: flush timeouts that should already have expired (bsc#1012628). - libperf tests: If a test fails return non-zero (bsc#1012628). - libperf tests: Fail when failing to get a tracepoint id (bsc#1012628). - RISC-V: Set current memblock limit (bsc#1012628). - RISC-V: Fix maximum allowed phsyical memory for RV32 (bsc#1012628). - x86/xen: fix 'nopvspin' build error (bsc#1012628). - nfsd: Fixes for nfsd4_encode_read_plus_data() (bsc#1012628). - nfsd: Don't set eof on a truncated READ_PLUS (bsc#1012628). - gpiolib: cdev: fix frame size warning in gpio_ioctl() (bsc#1012628). - pinctrl: aspeed: g6: Fix PWMG0 pinctrl setting (bsc#1012628). - pinctrl: mediatek: Fix fallback call path (bsc#1012628). - RDMA/ucma: Do not miss ctx destruction steps in some cases (bsc#1012628). - btrfs: print the actual offset in btrfs_root_name (bsc#1012628). - scsi: megaraid_sas: Fix MEGASAS_IOC_FIRMWARE regression (bsc#1012628). - scsi: ufs: ufshcd-pltfrm depends on HAS_IOMEM (bsc#1012628). - scsi: ufs: Fix tm request when non-fatal error happens (bsc#1012628). - crypto: omap-sham - Fix link error without crypto-engine (bsc#1012628). - bpf: Prevent double bpf_prog_put call from bpf_tracing_prog_attach (bsc#1012628). - powerpc: Use the common INIT_DATA_SECTION macro in vmlinux.lds.S (bsc#1012628). - powerpc: Fix alignment bug within the init sections (bsc#1012628). - arm64: entry: remove redundant IRQ flag tracing (bsc#1012628). - bpf: Reject too big ctx_size_in for raw_tp test run (bsc#1012628). - drm/amdkfd: Fix out-of-bounds read in kdf_create_vcrat_image_cpu() (bsc#1012628). - RDMA/umem: Avoid undefined behavior of rounddown_pow_of_two() (bsc#1012628). - RDMA/cma: Fix error flow in default_roce_mode_store (bsc#1012628). - printk: ringbuffer: fix line counting (bsc#1012628). - printk: fix kmsg_dump_get_buffer length calulations (bsc#1012628). - iov_iter: fix the uaccess area in copy_compat_iovec_from_user (bsc#1012628). - i2c: octeon: check correct size of maximum RECV_LEN packet (bsc#1012628). - drm/vc4: Unify PCM card's driver_name (bsc#1012628). - platform/x86: intel-vbtn: Drop HP Stream x360 Convertible PC 11 from allow-list (bsc#1012628). - platform/x86: hp-wmi: Don't log a warning on HPWMI_RET_UNKNOWN_COMMAND errors (bsc#1012628). - gpio: sifive: select IRQ_DOMAIN_HIERARCHY rather than depend on it (bsc#1012628). - ALSA: hda: Balance runtime/system PM if direct-complete is disabled (bsc#1012628). - xsk: Clear pool even for inactive queues (bsc#1012628). - selftests: net: fib_tests: remove duplicate log test (bsc#1012628). - can: dev: can_restart: fix use after free bug (bsc#1012628). - can: vxcan: vxcan_xmit: fix use after free bug (bsc#1012628). - can: peak_usb: fix use after free bugs (bsc#1012628). - perf evlist: Fix id index for heterogeneous systems (bsc#1012628). - i2c: sprd: depend on COMMON_CLK to fix compile tests (bsc#1012628). - iio: common: st_sensors: fix possible infinite loop in st_sensors_irq_thread (bsc#1012628). - iio: ad5504: Fix setting power-down state (bsc#1012628). - drivers: iio: temperature: Add delay after the addressed reset command in mlx90632.c (bsc#1012628). - iio: adc: ti_am335x_adc: remove omitted iio_kfifo_free() (bsc#1012628). - counter:ti-eqep: remove floor (bsc#1012628). - powerpc/64s: fix scv entry fallback flush vs interrupt (bsc#1012628). - cifs: do not fail __smb_send_rqst if non-fatal signals are pending (bsc#1012628). - irqchip/mips-cpu: Set IPI domain parent chip (bsc#1012628). - x86/fpu: Add kernel_fpu_begin_mask() to selectively initialize state (bsc#1012628). - x86/topology: Make __max_die_per_package available unconditionally (bsc#1012628). - x86/mmx: Use KFPU_387 for MMX string operations (bsc#1012628). - x86/setup: don't remove E820_TYPE_RAM for pfn 0 (bsc#1012628). - proc_sysctl: fix oops caused by incorrect command parameters (bsc#1012628). - mm: memcg/slab: optimize objcg stock draining (bsc#1012628). - mm: memcg: fix memcg file_dirty numa stat (bsc#1012628). - mm: fix numa stats for thp migration (bsc#1012628). - io_uring: iopoll requests should also wake task ->in_idle state (bsc#1012628). - io_uring: fix SQPOLL IORING_OP_CLOSE cancelation state (bsc#1012628). - io_uring: fix short read retries for non-reg files (bsc#1012628). - intel_th: pci: Add Alder Lake-P support (bsc#1012628). - stm class: Fix module init return on allocation failure (bsc#1012628). - serial: mvebu-uart: fix tx lost characters at power off (bsc#1012628). - ehci: fix EHCI host controller initialization sequence (bsc#1012628). - USB: ehci: fix an interrupt calltrace error (bsc#1012628). - usb: gadget: aspeed: fix stop dma register setting (bsc#1012628). - USB: gadget: dummy-hcd: Fix errors in port-reset handling (bsc#1012628). - usb: udc: core: Use lock when write to soft_connect (bsc#1012628). - usb: bdc: Make bdc pci driver depend on BROKEN (bsc#1012628). - usb: cdns3: imx: fix writing read-only memory issue (bsc#1012628). - usb: cdns3: imx: fix can't create core device the second time issue (bsc#1012628). - xhci: make sure TRB is fully written before giving it to the controller (bsc#1012628). - xhci: tegra: Delay for disabling LFPS detector (bsc#1012628). - drivers core: Free dma_range_map when driver probe failed (bsc#1012628). - driver core: Fix device link device name collision (bsc#1012628). - driver core: Extend device_is_dependent() (bsc#1012628). - drm/i915: s/intel_dp_sink_dpms/intel_dp_set_power/ (bsc#1012628). - drm/i915: Only enable DFP 4:4:4->4:2:0 conversion when outputting YCbCr 4:4:4 (bsc#1012628). - x86/entry: Fix noinstr fail (bsc#1012628). - x86/cpu/amd: Set __max_die_per_package on AMD (bsc#1012628). - cls_flower: call nla_ok() before nla_next() (bsc#1012628). - netfilter: rpfilter: mask ecn bits before fib lookup (bsc#1012628). - tools: gpio: fix %llu warning in gpio-event-mon.c (bsc#1012628). - tools: gpio: fix %llu warning in gpio-watch.c (bsc#1012628). - drm/i915/hdcp: Update CP property in update_pipe (bsc#1012628). - sh: dma: fix kconfig dependency for G2_DMA (bsc#1012628). - sh: Remove unused HAVE_COPY_THREAD_TLS macro (bsc#1012628). - locking/lockdep: Cure noinstr fail (bsc#1012628). - ASoC: SOF: Intel: fix page fault at probe if i915 init fails (bsc#1012628). - octeontx2-af: Fix missing check bugs in rvu_cgx.c (bsc#1012628). - net: dsa: mv88e6xxx: also read STU state in mv88e6250_g1_vtu_getnext (bsc#1012628). - selftests/powerpc: Fix exit status of pkey tests (bsc#1012628). - sh_eth: Fix power down vs. is_opened flag ordering (bsc#1012628). - nvme-pci: refactor nvme_unmap_data (bsc#1012628). - nvme-pci: fix error unwind in nvme_map_data (bsc#1012628). - cachefiles: Drop superfluous readpages aops NULL check (bsc#1012628 bsc#1175245). - lightnvm: fix memory leak when submit fails (bsc#1012628). - skbuff: back tiny skbs with kmalloc() in __netdev_alloc_skb() too (bsc#1012628). - kasan: fix unaligned address is unhandled in kasan_remove_zero_shadow (bsc#1012628). - kasan: fix incorrect arguments passing in kasan_add_zero_shadow (bsc#1012628). - tcp: fix TCP socket rehash stats mis-accounting (bsc#1012628). - net_sched: gen_estimator: support large ewma log (bsc#1012628). - udp: mask TOS bits in udp_v4_early_demux() (bsc#1012628). - ipv6: create multicast route with RTPROT_KERNEL (bsc#1012628). - net_sched: avoid shift-out-of-bounds in tcindex_set_parms() (bsc#1012628). - net_sched: reject silly cell_log in qdisc_get_rtab() (bsc#1012628). - ipv6: set multicast flag on the multicast route (bsc#1012628). - net: mscc: ocelot: allow offloading of bridge on top of LAG (bsc#1012628). - net: Disable NETIF_F_HW_TLS_RX when RXCSUM is disabled (bsc#1012628). - net: dsa: b53: fix an off by one in checking "vlan->vid" (bsc#1012628). - tcp: do not mess with cloned skbs in tcp_add_backlog() (bsc#1012628). - tcp: fix TCP_USER_TIMEOUT with zero window (bsc#1012628). - net: mscc: ocelot: Fix multicast to the CPU port (bsc#1012628). - net: core: devlink: use right genl user_ptr when handling port param get/set (bsc#1012628). - pinctrl: qcom: Allow SoCs to specify a GPIO function that's not 0 (bsc#1012628). - pinctrl: qcom: No need to read-modify-write the interrupt status (bsc#1012628). - pinctrl: qcom: Properly clear "intr_ack_high" interrupts when unmasking (bsc#1012628). - pinctrl: qcom: Don't clear pending interrupts when enabling (bsc#1012628). - x86/sev: Fix nonistr violation (bsc#1012628). - tty: implement write_iter (bsc#1012628). - tty: fix up hung_up_tty_write() conversion (bsc#1012628). - net: systemport: free dev before on error path (bsc#1012628). - x86/sev-es: Handle string port IO to kernel memory properly (bsc#1012628). - tcp: Fix potential use-after-free due to double kfree() (bsc#1012628). - ASoC: SOF: Intel: hda: Avoid checking jack on system suspend (bsc#1012628). - drm/i915/hdcp: Get conn while content_type changed (bsc#1012628). - bpf: Local storage helpers should check nullness of owner ptr passed (bsc#1012628). - kernfs: implement ->read_iter (bsc#1012628). - kernfs: implement ->write_iter (bsc#1012628). - kernfs: wire up ->splice_read and ->splice_write (bsc#1012628). - interconnect: imx8mq: Use icc_sync_state (bsc#1012628). - fs/pipe: allow sendfile() to pipe again (bsc#1012628). - Commit 9bb48c82aced ("tty: implement write_iter") converted the tty layer to use write_iter. Fix the redirected_tty_write declaration also in n_tty and change the comparisons to use write_iter instead of write. also in n_tty and change the comparisons to use write_iter instead of write (bsc#1012628). - mm: fix initialization of struct page for holes in memory layout (bsc#1012628). - Revert "mm: fix initialization of struct page for holes in memory layout" (bsc#1012628). - Delete patches.suse/fs-cachefs-Drop-superfluous-readpages-aops-NULL-chec.patch. - commit 7d05541 - ALSA: hda/via: Apply the workaround generically for Clevo machines (bsc#1181330). - commit 87d962b - Linux 5.10.10 (bsc#1012628). - spi: cadence: cache reference clock rate during probe (bsc#1012628). - spi: fsl: Fix driver breakage when SPI_CS_HIGH is not set in spi->mode (bsc#1012628). - cxgb4/chtls: Fix tid stuck due to wrong update of qid (bsc#1012628). - net: dsa: unbind all switches from tree when DSA master unbinds (bsc#1012628). - mac80211: check if atf has been disabled in __ieee80211_schedule_txq (bsc#1012628). - mac80211: do not drop tx nulldata packets on encrypted links (bsc#1012628). - drm/panel: otm8009a: allow using non-continuous dsi clock (bsc#1012628). - can: mcp251xfd: mcp251xfd_handle_rxif_one(): fix wrong NULL pointer check (bsc#1012628). - net: stmmac: use __napi_schedule() for PREEMPT_RT (bsc#1012628). - rxrpc: Fix handling of an unsupported token type in rxrpc_read() (bsc#1012628). - net: dsa: clear devlink port type before unregistering slave netdevs (bsc#1012628). - net: phy: smsc: fix clk error handling (bsc#1012628). - dt-bindings: net: renesas,etheravb: RZ/G2H needs tx-internal-delay-ps (bsc#1012628). - net: avoid 32 x truesize under-estimation for tiny skbs (bsc#1012628). - net: stmmac: fix taprio configuration when base_time is in the past (bsc#1012628). - net: stmmac: fix taprio schedule configuration (bsc#1012628). - net: sit: unregister_netdevice on newlink's error path (bsc#1012628). - net: stmmac: Fixed mtu channged by cache aligned (bsc#1012628). - i40e: fix potential NULL pointer dereferencing (bsc#1012628). - rxrpc: Call state should be read with READ_ONCE() under some circumstances (bsc#1012628). - net: dcb: Accept RTM_GETDCB messages carrying set-like DCB commands (bsc#1012628). - net: dcb: Validate netlink message in DCB handler (bsc#1012628). - esp: avoid unneeded kmap_atomic call (bsc#1012628). - rndis_host: set proper input size for OID_GEN_PHYSICAL_MEDIUM request (bsc#1012628). - net: mvpp2: Remove Pause and Asym_Pause support (bsc#1012628). - mlxsw: core: Increase critical threshold for ASIC thermal zone (bsc#1012628). - mlxsw: core: Add validation of transceiver temperature thresholds (bsc#1012628). - tipc: fix NULL deref in tipc_link_xmit() (bsc#1012628). - net: ipv6: Validate GSO SKB before finish IPv6 processing (bsc#1012628). - netxen_nic: fix MSI/MSI-x interrupts (bsc#1012628). - udp: Prevent reuseport_select_sock from reading uninitialized socks (bsc#1012628). - net: fix use-after-free when UDP GRO with shared fraglist (bsc#1012628). - net: ipa: modem: add missing SET_NETDEV_DEV() for proper sysfs links (bsc#1012628). - bpf: Fix helper bpf_map_peek_elem_proto pointing to wrong callback (bsc#1012628). - bpf: Support PTR_TO_MEM{,_OR_NULL} register spilling (bsc#1012628). - bpf: Don't leak memory in bpf getsockopt when optlen == 0 (bsc#1012628). - nfsd4: readdirplus shouldn't return parent of export (bsc#1012628). - X.509: Fix crash caused by NULL pointer (bsc#1012628). - bpf: Fix signed_{sub,add32}_overflows type handling (bsc#1012628). - drm/amdgpu/display: drop DCN support for aarch64 (bsc#1012628). - Update config files. - x86/hyperv: Initialize clockevents after LAPIC is initialized (bsc#1012628). - bpf: Fix selftest compilation on clang 11 (bsc#1012628). - Revert "kconfig: remove 'kvmconfig' and 'xenconfig' shorthands" (bsc#1012628). - commit 167b75d - drm/gpu/nouveau/dispnv50: Restore pushing of all data (boo#1181271). - commit c3f7185 - media: pwc: Fix the URB buffer allocation (bsc#1181133). - commit a9c85b1 - media: dvb-usb: Fix use-after-free access (bsc#1181104). - media: dvb-usb: Fix memory leak at error in dvb_usb_device_init() (bsc#1181104). - commit 807ed8c ==== kmod ==== Version update (27 -> 28) Subpackages: libkmod2 - Supplement bash-completion subpackage against the main package and bash-completion. - Also require the main package plus bash-completion: the completion package is useless without either of the two. - Update to v28 * Add Zstandard to the supported compression formats using libzstd (tests only - cannot be disabled in tests) * Ignore ill-formed kernel command line, e.g. with "ivrs_acpihid[00:14.5]=AMD0020:0" option in it * Fix some memory leaks * Fix 0-length builtin.alias.bin: it needs at least the index header - Backport upstream fix 0001-Fix-modinfo-F-always-shows-name-for-built-ins.patch ==== libXt ==== Version update (1.2.0 -> 1.2.1) - update to 1.2.1: * _XtCalloc actually uses a Cardinal, not size_t * add errorhandling to _XtVaToTypedArgList() * refactoring, reduce indent level * work within existing interface which attempts to obtain the display-pointer from the screen-pointer but fails when the screen-pointer itself is invalid. Ensure that the screen-pointer is valid by checking the default_screen value against the valid range, and forcing it to zero if it is out of bounds. * indent ==== libdrm ==== Version update (2.4.103 -> 2.4.104) Subpackages: libdrm2 libdrm_amdgpu1 libdrm_nouveau2 libdrm_radeon1 - reenabled build of manual pages (switch from xsltproc to rst2man) - update to 2.4.104: * headers: drm: Sync with drm-next * Remove outdated comments about stdint.h * Remove definitions duplicated from drm_mode.h * xf86drmMode.h use ANSI C99 arrays * Document drmModeConnection * man: convert to reSTructuredText * testsuite fixes ==== libgpg-error ==== Version update (1.39 -> 1.41) - update to 1.41: * Fixes another glitch in the "ignore" meta command. * Fixes two typos in the German translation. * New function gpgrt_access. * Make "ignore" meta command work correctly in the option parser. * Interface changes relative to the 1.39 release: gpgrt_access NEW. ==== libqt5-qtwebengine ==== - Bump _constraints and %limit_build, hopefully avoid occasional OOM and make the build quicker - Drop obsolete conditions ==== librsvg ==== Version update (2.50.2 -> 2.50.3) Subpackages: gdk-pixbuf-loader-rsvg librsvg-2-2 rsvg-thumbnailer typelib-1_0-Rsvg-2_0 - Update to version 2.50.3: + Compute correct bounds for objects with stroke-width=0. + Fix test suite on Rust 1.49. ==== libunwind ==== Version update (1.4.0 -> 1.5.0) - update to 1.5.0: * dwarf: clang doesn't respect the static alias * Fixed a missing dependency in dwarf-eh.h * x86_64: Fix tdep_init_done when built with libatomic_ops * mips: make _step_n64 as a static function * Added braces to suppress empty if/else warnings * Delete hardcode of address size to support MIPS64. * Fix format specifier for int64_t:29 * Add initial support for Solaris x86-64 * x86_64: Add fixup code if previous RIP was invalid * x86-64: make `is_cached_valid_mem` functional * arm: clear ip thumb/arm mode bit before move to previous instruction * Fix compilation with -fno-common. * Fix off-by-one error in x86_64 stack frames * aarch64: Fix __sigset build issue on muslC * Make SHF_COMPRESSED use contingent on its existence - remove libunwind_U_dyn_info_list.patch (upstream) ==== llvm11 ==== - Revert changes that broke the ABI (boo#1181326). * Sema-Introduce-BuiltinAttr-per-declaration-builtin-n.patch * Sema-Handle-objc_super-special-lookup-when-checking-.patch * Recognize-setjmp-and-friends-as-builtins-even-if-jmp.patch * Don-t-reject-calls-to-MinGW-s-unusual-_setjmp-declar.patch ==== mozilla-nss ==== Version update (3.59.1 -> 3.60.1) Subpackages: libfreebl3 libsoftokn3 mozilla-nss-certs - update to NSS 3.60.1 Notable changes in NSS 3.60: * TLS 1.3 Encrypted Client Hello (draft-ietf-tls-esni-08) support has been added, replacing the previous ESNI (draft-ietf-tls-esni-01) implementation. See bmo#1654332 for more information. * December 2020 batch of Root CA changes, builtins library updated to version 2.46. See bmo#1678189, bmo#1678166, and bmo#1670769 for more information. - removed obsolete ppc-old-abi-v3.patch ==== mozjs78 ==== Version update (78.6.1 -> 78.7.0) - Update to version 78.7.0esr. ==== open-iscsi ==== Subpackages: iscsiuio libopeniscsiusr0_2_0 - Update to latest upstream (no new tag yet). To fix bsc#1181313. Changes since last update added to open-iscsi-SUSE-latest.diff.bz2: * Fix iscsiadm segfault when exiting * iscsid: Add NO_SYSTEMD to CFLAGS * Change mkdir permissions to 0770, adjust usmask * Fix typo in util.py * iscsid: Do not allow conflicting pid-file options * iscsiadm: Fix memory leak in iscsiadm * libopeniscsiusr: Fix memory leak in iscsi_sessions_get() * libopeniscsiusr: Fix memory leak in iscsi_nodes_get() * idbm: Fix memory leak and NULL pointer dereference in idbm_rec_update_param() * Add etc/systemd/iscsi-init.service to SYSTEMDFILES Makefile variable ==== openssh ==== Subpackages: openssh-clients openssh-common openssh-server - Add support for /etc/ssh/ssh_config.d and /etc/ssh/sshd_config.d (openssh-8.4p1-ssh_config_d.patch) ==== p11-kit ==== Version update (0.23.20 -> 0.23.22) Subpackages: libp11-kit0 p11-kit-tools - update to 0.23.22 (bsc#1180064, bsc#1180065, bsc#1180066): * Fix memory-safety issues that affect the RPC protocol (CVE-2020-29361, CVE-2020-29362, and CVE-2020-29363), discovered and fixed by David Cook * anchor: Prefer persistent format when storing anchor [PR#329] * common: Fix infloop in p11_path_build [PR#326, PR#327] * proxy: C_CloseAllSessions: Make sure that calloc args are non-zero [PR#325] * common: Check for a NULL locale before freeing it [PR#321] * proxy: Do not assign duplicate slot IDs [PR#282] * common: Get program name based on executable path if possible [PR#307] * anchor: Exit with non-zero code, if any error occurs [PR#304] * Build and test fixes ==== pangomm1_4 ==== Version update (2.42.2 -> 2.46.0) - Update to version 2.46.0: + Attribute: Add Overline and ShowFlags enums and some create*() methods. + Font, FontFace, FontFamily, FontMetrics: Add new methods. + LayoutIter: Fix get_run(). + LayoutRun: - Fix a memory leak in split(). - Make most methods public. + GlyphString, Item: Wrap pango_shape_with_flags(). + Layout: - Add set/get_line_spacing(). - Add get_const_line() and get_const_lines(). + Coverage: Deprecate create(bytes, n_bytes), max(), to_bytes(). + Build: Requires pango >= 1.45.1 because of Overline. ==== patterns-base ==== Subpackages: patterns-base-base patterns-base-bootloader patterns-base-minimal_base patterns-base-x11 - bootloader pattern should not require a base pattern ==== patterns-microos ==== Subpackages: patterns-microos-alt_onlyDVD patterns-microos-apparmor patterns-microos-base patterns-microos-basesystem patterns-microos-cloud patterns-microos-cockpit patterns-microos-defaults patterns-microos-desktop-common patterns-microos-desktop-gnome patterns-microos-desktop-kde patterns-microos-hardware patterns-microos-ima_evm patterns-microos-onlyDVD patterns-microos-selinux patterns-microos-sssd_ldap - Use user(nobody) and group(nobody) - Drop autofs and nfs-client requirements, not commonly needed - Sync with openSUSE Tumleweed base pattern - Add busybox - Cleanup comments from last submission - Moved unzip and wget from gnome desktop pattern to common desktop pattern - add bash-completion, nfs-client and autofs to common desktop pattern for beginner users - remove kdeconnect-kde from kde desktop pattern as not necessary for every install ==== permissions ==== Version update (1550_20201111 -> 1550_20210125) Subpackages: chkstat permissions-config - Update to version 20210125: * usbauth: drop compatibility variable for libexec * usbauth: Updated path for usbauth-npriv * profiles: finish usage of variable for polkit-agent-helper-1 ==== pinentry ==== Version update (1.1.0 -> 1.1.1) Subpackages: pinentry-qt5 - actually build efl based pinentry - re-enable validation of upstream signing key - update to 1.1.1: * A EFL-based pinentry has been contributed. * Disable echoing in backspace key is pressed first (GTK, Qt, TQt, and ncurses pinentries). * Support line editing in TTY pinentry. * Remove support for old GTK+2 (< 2.12.0). * Various minor fixes. - drop pinentry-qt-Fix-use-of-dangling-pointer.patch (upstream) - drop pinentry-ncurses6.diff: obsolete ==== pipewire ==== Version update (0.3.15 -> 0.3.20) Subpackages: gstreamer-plugin-pipewire libpipewire-0_3-0 pipewire-modules pipewire-spa-plugins-0_2 pipewire-spa-tools pipewire-tools - Add pkgconfig(ldacBT-abr) and pkgconfig(ldacBT-enc) BuildRequires: Build bluetooth ldac codec support. - Update to version 0.3.20: * Highlights + Latency was reduced in ALSA and PulseAudio and time reporting has improved a lot. + Bluetooth now has a native HFP backed, SBC XQ and mSBC support. + Many bugfixes and improvements, improved device support. * PipeWire improvements + pw-dump can now dump all objects such as Endpoints + pw-dump has a -m option to monitor changes + pw-dump can now dump metadata + pw-stream can now use the rate-match io to exactly produce the required number of samples for the current cycle. When using this feature, a stream can achieve the same low-latency as pw-filter. + spa-acp-tool can now load a custom profile-set and correctly parses the volume updates + There is now a nofail option when loading modules + The connection has been made reentrant to fix some strange random problems with metadata. + Turn some errors into warnings or simply info. + Executables are now built with PIE + S24OE formats should work now (MAudio FastTrack Pro) + Remove mlock warnings. Add support for mlockall with a config option. * Session-manager + There are now config files for bluez and v4l2 modules + Improve ALSA device and node properties + Bluetooth devices have better properties now. + The default device routing has been improved. * Device support + Port priorities are updated for UCM devices + ACP devices notify change in routes in all cases + There is now RW support in ALSA devices to increase compatibility. + Many improvements to Bluetooth. SBC XQ support can now be enabled with a config option. mSBC can be enabled with an option. + Bluetooth devices not expose Routes so that they look more like how PulseAudio handles them + Gracefully handle missing profile-sets + There is now a native HFP backend + Improve card names in some cases. + pause-on-idle is now disabled for ALSA devices. This can reduce pops and clicks when the device is stopped. * ALSA plugin + Use rate-match to reduce the latency + Implement a _delay() function to get smoother timestamps. + Fix property parsing. Fixes volume changes in alsamixer. * PulseAudio server + Use rate-match to reduce the latency. This also reduces the buffering in audioconvert and improves timestamp reporting. + Implement rate changes now that we have rate-match support. + pactl stats will now work + Fix excessive memory usage when a capture client doesn't read fast enough. - Update to version 0.3.19: * Highlights - Startup after login should be fixed now with inotify used to wait for permissions. - Channels should be mapped correctly now. - Many bluetooth improvements in LDAC, AptX-HD. AAC was also added. Headsets should work better now. - pipewire-libpulse was removed. It is now completely replaced by pipewire-pulse. - Fix a crasher bug in pipewire-pulse and some memory leaks. - Fix a bug with feedback loop that would cause 100% CPU. - A new pw-top tool to display real-time graph performance. - The example session manager now has config files. - The config file format was changed to use the SPA JSON tokenizer. This makes it more flexible and extensible. * PipeWire improvements - Fix debug of id in format channels - Audioconvert should now remap channels correctly in all cases. - Feedback loops were not scheduled correctly and would cause 100% CPU usage. - Small improvements to the profiler to also log incomplete graph status. - a new tool pw-top was added that prints real-time performance stats of the graph. - the rtkit module now sets the nice level to -11 * Session-manager - The session manager would sometimes link dont-reconnect nodes to another node, which would leak monitor streams in pipewire-pulse. - The session manager now has configuration files. Config files can also be placed in the user home directory to make custom configurations. - The session managers now creates unique device and node names for alsa and v4l2 devices. * Device support - Many improvements in Bluetooth codecs, LDAC stuttering, AptX-HD negotiation, LDAC ABR support - Bluetooth supports AAC audio now. - Many fixes to Bluetooth SCO transport used in headsets. - inotify support in device monitors - ACP was synced with the latest pulseaudio code - Fix a bug in enumeration of device ports. - PulseAudio server - seek flags and offset are now supported, making gstreamer pulse elements work better. - Fix a crasher bug in pipewire-pulse, we sometimes would write too much to the ringbuffer - Fix some memory leaks in error cases. - Fix handling of NULL string to locate default sink/source * JACK layer - Ports can also be found with the aliases now, making qjackctl work in more cases. - Changes from PipeWire 0.3.18: * Highlights - More work in the PulseAudio server. It should be compatible with more applications. - Bluetooth now support extra codecs such as AptX/HD and LDAC. - Support for virtual sources and sink was improved a lot. - Added a new pw-dump tool to dump the objects in JSON formats and for filtering them with tools like jq. - Many more stability fixes and improvements. * PipeWire improvements - Silence some harmless warnings - pw-cli can now be used to set parameters. - Streams now perform the correct channel mapping when linked to non-standard multichannel devices. Previously channels would get swapped. - port, node and device params are now cached in the server. This avoids opening and closing devices whenever some client enumerates formats, which improves performance a lot, especially in cases where opening a device is slow. - Add a command to keep a device open during negotiation. This is used to enumerate and set a format while opening the device just once, improving performance. - The null-sink scheduling was fixed. - A memory corruption bug was fixed in format conversion, this could cause crashes, silent channels or other undefined behaviour. - There is now a simple JSON parser. * Session-manager - Settings files are now stored in JSON. With the json parser this is easier to parse and extend * Device support - Bluetooth now supports additional codecs: LDAC, AptX and AptX HD. LDAC is known to not work very well yet. - ALSA devices will now default to the max supported channels if nothing else is specified. This makes it possible to use 8+ channel cards with the alsa-pcm module, which is not supported with the default alsa-acp module. - Enable mSBC support in oFono. - Add an option to disable hardware mixers - ALSA now improves support for batch devices. - The udev rules had references to Pulseaudio removed in order to not create conflicts. - Fix a potential crash in bluetooth devices when disconnecting. - UCM cards now use HW volume when possible. * PulseAudio server - The id can now be used as the name to locate cards and devices - Report streams with planar formats as well - Better error reporting when stream create fails - module-null-sink can now handle channels, rate and channel_map properties - Add support for 3 types of virtual devices: source, sink and duplex. - set-port was fixed - Some buffer parameters were tweaked to improve performance, compatibility and stuttering with lower latency. - NULL can be used as a name for the device sink/source - Support lookup of monitor names - Set properties more like pulseaudio so that some clients (Teamspeak) don't crash anymore - Changes from PipeWire 0.3.17: * Highlights - Fix crasher bug for kwin when screensharing stopped. - Massive improvements and compatibility fixes in the PulseAudio server. - The session manager now has a config directory in /etc/pipewire/media-session.d/ It will look for files there to activate session manager modules. Packagers can use this to only activate the audio modules when the PulseAudio server, libjack.so or the alsa modules are installed. * PipeWire improvements - We now clear hooks before adding them. Some application did not clear them and had random data for the destroy callback. - Return -ENOENT from unknown resources so apps can handle this better. It's a common problem when an app tries to introspect and object but it disappeared before the message reached the server. Apps should ignore this. - channelmap information is now passed with the volume settings. - DMABuf is not mmapp()ed anymore with the FLAG_MAP_BUFFERS in the stream or filter. This is because DMABuf usually requires more that just a simple mmap and is better left for the application. - increase the maximum number of ports for a client-node. - adapter and node-factory now support the linger option to keep the objects alive after the creating client disconnected. * Device support - ALSA now handles error in close(), like when unplugging a USB device. * Session-manager - The session manager is now handling DONT_RECONNECT streams without a target node. They get connected to a default node once and then fail to reconnect. - The session manager now exposes the stream setting as metadata. This makes it possible for other components, such as pulse-server to use this information. Information is stored as a json object for easier consumption. - The session manager now has a config directory in /etc/pipewire/media-session.d/ packagers can use this * PulseAudio server - Pulse server now acquire the dbus name. - Improvements in timing and compatibility with many apps. - The stream-restore extension is now implemented so that the event volume can be configured. - Many stability fixes and improvements. - Fix some issues with module-load/unload - Changes from PipeWire 0.3.16: * Highlights - Fix screensharing for old 0.2 clients - Many pulse-server improvements. There is now a pipewire-pulse binary that is the prefered solution for PulseAudio compatibility. The replacement libpulse libraries are now deprecated. This also makes audio in Flatpak work. * PipeWire improvements - Fix cleanup of listeners everywhere. Force remove of listeners in _destroy to avoid crashes. - Add support for a journald logger module. - Various memory leak fixes - Silence some warnings that spammed the logs. - Fix flush in pw_stream. This fixes small glitches when switching streams in music players. - Various FreeBSD fixes and improvements. - Fix some crashes when destroying objects. * Device support - Reload the ALSA configuration when creating a node so that hotplugged devices work in all cases. - Fix memory leaks in ACP library. This also fixes issues where the mixer device was not closed. - Bluetooth now has support for the mSBC codec for SCO source and sink. * pulse-server - Many introspection and compatibility improvements. It should now be as good or better than the replacement library. - Implement sample cache to make notification events work. * JACK layer - handle errors when linking, fixes jack_connect hang when the ports were already linked. - Drop patches do-not-use-snd_pcm_ioplug_hw_avail.patch and fix-memfd_create-call.patch, no longer needed on SLE/Leap which have updated glibc / alsa. - Drop do-not-install-alsa-config-files.patch, remove files at install time instead. - pw-pulse wrapper is gone, remove all mentions of it. - Package pulseaudio replacement in a subpackage and drop pipewire-libpulse-0_3 (pipewire will use pulseaudio libraries directly). - Create an alsa subpackage and move alsa pipewire plugin to this subpackage. ==== pulseaudio ==== Version update (14.0 -> 14.2) Subpackages: libpulse-mainloop-glib0 libpulse0 pulseaudio-module-bluetooth pulseaudio-module-gsettings pulseaudio-module-x11 pulseaudio-module-zeroconf pulseaudio-utils - Drop the bad patch: pulseaudio-wrong-memset.patch the patch has been wrongly refreshed, mutated into a harmful form. The original bug has been already fixed in the upstream commit 764eabd10. - Supplement pulseaudio-bash-completion against bash-completion, not bash. - Disable LTO on armv7 as it breaks the build - udpate to 14.2: * Support upto 8 mixer channels on ALSA devices * Handle ALSA jacks with the same name but different index values * Switch to plugged-in headset when mic availability is unknown * Fix a potential segfault in the Bluetooth oFono HFP backend * Fix a problem with module-ladspa-sink when avoid-resampling=true * Update to the NEWS file for 14.0 (and 14.1) * Fix database names containing canonical host for meson builds ==== python-PyYAML ==== Version update (5.3.1 -> 5.4.1) - update to 5.4.1 (bsc#1174514, CVE-2020-14343): * Fix stub compat with older pyyaml versions that may unwittingly load it * Build modernization, remove distutils, fix metadata, build wheels, CI to GHA * Fix for CVE-2020-14343, moves arbitrary python tags to UnsafeLoader * Fix memory leak in implicit resolver setup * Fix py2 copy support for timezone objects * Fix compatibility with Jython ==== python-importlib-metadata ==== Version update (3.3.0 -> 3.4.0) - update to 3.4.0: * Project now declares itself as being typed. * Additional performance enhancements to distribution discovery. * For PyPA projects, add test ensuring that ``MetadataPathFinder._search_paths`` honors the needed interface. Method is still private. ==== python-networkx ==== - Temporarily reenable python36 build until SciPy is updated, because the PyYAML fix needs to be merged first - Add yaml-loader.patch adding support for new PyYAML - Skip python36 because of SciPy 1.6.0 ==== python-packaging ==== Version update (20.4 -> 20.8) - update to 20.8: * Revert back to setuptools for compatibility purposes for some Linux distros (:issue:`363`) * Do not insert an underscore in wheel tags when the interpreter version number is more than 2 digits (:issue:`372`) * Fix flit configuration, to include LICENSE files (:issue:`357`) * Make `intel` a recognized CPU architecture for the `universal` macOS platform tag (:issue:`361`) * Add some missing type hints to `packaging.requirements` (issue:`350`) * Officially support Python 3.9 (:issue:`343`) * Deprecate the ``LegacyVersion`` and ``LegacySpecifier`` classes (:issue:`321`) * Handle ``OSError`` on non-dynamic executables when attempting to resolve the glibc version string. ==== python-psutil ==== Version update (5.7.3 -> 5.8.0) - Do not install tests (and change the way they're run since they were run from %{buildroot}) - Add patch to skip tests related to rlimit and zombie processes that fail when building for python2 on i586: * skip_rlimit_tests_on_python2.patch - update to 5.8.0: * Enhancements: - 1863: disk_partitions() exposes 2 extra fields: maxfile and maxpath, which are the maximum file name and path name length. - 1872: [Windows] added support for PyPy 2.7. - 1879: provide pre-compiled wheels for Linux and macOS. - 1880: get rid of Travis and Cirrus CI services (they are no longer free). CI testing is now done by GitHub Actions on Linux, macOS and FreeBSD (yes). AppVeyor is still being used for Windows CI. * Bug fixes: - 1708: [Linux] get rid of sensors_temperatures() duplicates. (patch by Tim Schlueter). - 1839: [Windows] always raise AccessDenied when failing to query 64 processes from 32 bit ones (NtWoW64 APIs). - 1866: [Windows] process exe(), cmdline(), environ() may raise "invalid access to memory location" on Python 3.9. - 1874: [Solaris] wrong swap output given when encrypted column is present. - 1875: [Windows] process username() may raise ERROR_NONE_MAPPED if the SID has no corresponding account name. In this case AccessDenied is now raised. - 1877: [Windows] OpenProcess may fail with ERROR_SUCCESS. Turn it into AccessDenied or NoSuchProcess depending on whether the PID is alive. - 1886: [macOS] EIO error may be raised on cmdline() and environment(). Now it gets translated into AccessDenied. - 1891: [macOS] get rid of deprecated getpagesize(). - Rebase patch and skip three other tests that fail on obs * skip-obs.patch ==== python-urllib3 ==== Version update (1.26.2 -> 1.26.3) - update to 1.26.3: * Fixed bytes and string comparison issue with headers (Pull #2141) * Changed ``ProxySchemeUnknown`` error message to be more actionable if the user supplies a proxy URL without a scheme. (Pull #2107) ==== python38 ==== Version update (3.8.6 -> 3.8.7) - Add CVE-2021-3177-buf_ovrfl_PyCArg_repr.patch fixing bsc#1181126 (CVE-2021-3177) buffer overflow in PyCArg_repr in _ctypes/callproc.c, which may lead to remote code execution. - (bsc#1180125) We really don't Require python-rpm-macros package. Unnecessary dependency. - Update to 3.8.7: - bugfix release - multiple patches realigned: - F00102-lib64.patch - SUSE-FEDORA-multilib.patch - bpo-31046_ensurepip_honours_prefix.patch - skip_random_failing_tests.patch - Last try before this results in an editwar: * remove importlib_resources and importlib-metadata provides/obsoletes * import importlib_resources is not the same as import importlib.resources, same for metadata * The backport packages from PyPI needed for older flavors are specified as such for setuptools or in pyproject.toml. If a package requires them they typically add them with a python version qualifier and the packages have their own version numbers. - Add patch sphinx-update-removed-function.patch to no longer call a now removed function and to make documentation build independent of the Sphinx version (bsc#1179630, gh#python/cpython#13236). - Add importlib_resources provide/obsolete as it is integral part of the lang since 3.7 release ==== python38-core ==== Version update (3.8.6 -> 3.8.7) Subpackages: libpython3_8-1_0 python38-base - Add CVE-2021-3177-buf_ovrfl_PyCArg_repr.patch fixing bsc#1181126 (CVE-2021-3177) buffer overflow in PyCArg_repr in _ctypes/callproc.c, which may lead to remote code execution. - (bsc#1180125) We really don't Require python-rpm-macros package. Unnecessary dependency. - Update to 3.8.7: - bugfix release - multiple patches realigned: - F00102-lib64.patch - SUSE-FEDORA-multilib.patch - bpo-31046_ensurepip_honours_prefix.patch - skip_random_failing_tests.patch - Last try before this results in an editwar: * remove importlib_resources and importlib-metadata provides/obsoletes * import importlib_resources is not the same as import importlib.resources, same for metadata * The backport packages from PyPI needed for older flavors are specified as such for setuptools or in pyproject.toml. If a package requires them they typically add them with a python version qualifier and the packages have their own version numbers. - Add patch sphinx-update-removed-function.patch to no longer call a now removed function and to make documentation build independent of the Sphinx version (bsc#1179630, gh#python/cpython#13236). - Add importlib_resources provide/obsolete as it is integral part of the lang since 3.7 release ==== raspberrypi-firmware ==== - Use disable-v3d overlay, it isn't ready for users to use but soon good enough for a technology preview. (jsc#SLE-15928) ==== raspberrypi-firmware-config ==== - Use disable-v3d overlay, it isn't ready for users to use but soon good enough for a technology preview. (jsc#SLE-15928) ==== raspberrypi-firmware-dt ==== Version update (2020.12.07 -> 2021.01.22) - Introduce disable-v3d-overlay.dts, in order to be able to selectively disable v3d while using vc4 as the display controller (jsc#SLE-15928). - Update to 02dbfea28f (2021-01-22): * Add reserved memory template to hold firmware configuration - Drop upstream-blconfig-rmem.patch as it's now available upstream. ==== rpm ==== - Add explicit requirement on python-rpm-macros to avoid widespread breakage by package mistakenly ignoring their requirement of python-rpm-macros (bsc#1180125). ==== soundtouch ==== Version update (2.1.2 -> 2.2) - update to 2.2.0: * Improvements to help compiler autovectorization * Bugfix in integer version of calcCrossCorrAccumulate() * Compensate initial buffering of anti-alias filter and intepolator. * Tuning for ARM NEON * BPMDetect: Make conversion from size_t to int explicit * BPM PeakFinder: Fix possible reading past end of array. * Change correlation loop 'sum' variable type from double to float ==== sqlite3 ==== Version update (3.34.0 -> 3.34.1) - SQLite 3.34.1: * Fix a potential use-after-free bug when processing a a subquery with both a correlated WHERE clause and a "HAVING 0" clause and where the parent query is an aggregate (boo#1181261) * Fix documentation typos * Fix minor problems in extensions ==== supportutils ==== - Require the awk, which and sed commands instead of packages to allow alternate implementations on embedded/Edge systems ==== timezone ==== Version update (2020f -> 2021a) - timezone update 2021a (bsc#1177460) * South Sudan changes from +03 to +02 on 2021-02-01 at 00:00. ==== toolbox ==== Version update (1.0+git20210119.b5acdcf -> 2.0+git20210125.50611db) - Update to version 2.0+git20210125.50611db: * Document configuration files, add /usr/etc/toolboxrc * Update README to include commands * Update the README * Be even more compatible with Silverblue Toolbox * Introduce commands, for compatibility with Silverblue's toolbox * Mount /run/media and and /tmp inside a user toolbox * Export more env variables inside (user) toolboxes ==== tpm2-0-tss ==== Version update (3.0.1 -> 3.0.3) Subpackages: libtss2-esys0 libtss2-mu0 libtss2-rc0 libtss2-sys1 - update to 3.0.3: - changes in 3.0.3: * Fix Regression in Fapi_List * Fix memory leak in policy calculation - changes in 3.0.2: * FAPI: Fix setting of the system flag of NV objects * This will let NV object metadata be created system-wide always instead of * locally in the user. Existing metadata will remain in the user directory. * It can be moved to the corresponding systemstore manually if needed. * FAPI: Fix policy searching, when a policyRef was provided * FAPI: Accept EK-Certs without CRL dist point * FAPI: Fix return codes of Fapi_List * FAPI: Fix memleak in policy execution * FAPI: Fix coverity NULL-pointer check * FAPI: Set the written flag of NV objects in FAPI PolicyNV commands * FAPI: Fix deleting of policy files. * FAPI: Fix wrong file loading during object search. * Fapi: Fix memory leak * Fapi: Fix potential NULL-Dereference * Fapi: Remove superfluous NULL check * Fix a memory leak in async keystore load. ==== tracker2 ==== Subpackages: libtracker-common-2_0 libtracker-control-2_0-0 libtracker-sparql-2_0-0 - Add tracker2-Avoid-deletion-empty-rows.patch: libtracker-data: Avoid deletion of empty rows in FTS table. Starting with SQLite 3.34.0, this turns into a consistency error. Ensure rows being deleted have actually some content before proceeding to deletion, and ensure we don't process individual properties one by one in the course of a whole rdfs:Resource deletion. ==== upower ==== Subpackages: libupower-glib3 typelib-1_0-UpowerGlib-1_0 - Use libplist-2.0 on Tumblewewd. + upower-build-Use-a-newer-libplist-if-available.patch ==== util-linux ==== Version update (2.35.1 -> 2.36.1) Subpackages: libblkid1 libfdisk1 libmount1 libsmartcols1 libuuid1 - Do not require libeconf-devel on products without /usr/etc. - s/--enable-vendordir/--with-vendordir/ - remove pam_securetty line again. As long as there is no agreement from pam side having it would fail openQA (boo#1033626) - Update to version 2.36.1: * chrt: use SCHED_FLAG_RESET_ON_FORK for sched_setattr() * fallocate: fix --dig-holes at end of files * fdisk: always report fdisk_create_disklabel() errors * flock: keep -E exit status more restrictive * fstrim: remove fstab condition from fstrim.timer * hexdump: automatically use -C when called as hd * hwclock: add fallback if SYS_settimeofday does not exist, fix SYS_settimeofday fallback * libblkid: allow a lot of mac partitions, fix Atari prober logic, limit amount of parsed partitions * more libfdisk improvements * losetup: avoid infinite busy loop, increase limit of setup attempts * lsblk: fix -T optional argument, fix SCSI_IDENT_SERIAL, print zero rather than empty SIZE, read ID_SCSI_IDENT_SERIAL if available * lscpu: Add FUJITSU aarch64 A64FX cpupart, Even more Arm part numbers, avoid segfault on PowerPC systems with valid hardware configurations (bsc#1175623) * mount: Add support for "nosymfollow" mount option. * pg: fix wcstombs() * sfdisk: correct --json --dump false exclusive, fix backward - -move-data * vipw: fix short write handling in copyfile * whereis: fix out of boundary read, support zst compressed man pages * minor code improvements and fixes * minor licensing changes * improve docs - Require both group(uuidd) and user(uuidd). - Do search /usr/sbin for mount helpers. (This drops /sbin/fs, /sbin/fs.d, which we do not use in openSUSE.) - prepare usrmerge (boo#1029961) - Modernize patch util-linux-sulogin4bsc1175514.patch * Try to autoconfigure broken serial lines - Add patch util-linux-sulogin4bsc1175514.patch Avoid sulogin failing on not existing or not functional console devices (bsc#1175514) - Fix default permissions of wall and write. - Update to version 2.36: * blkdiscard(8) refuses to proceed if filesystem or RAID signatures are found in interactive mode (executed on a terminal). The option --force is required to the discard data. * new commands irqtop(1) and lsirq(1)to monitor kernel interrupts. * cal(1) provides a new --vertical command line option. * blkzone(8) implements open/close/finish commands now. * unshare(1) and nsenter(1) commands support the time namespace now. * agetty(8) now supports multiple paths in the option - -issue-file. * fdisk(8), sfdisk(8), cfdisk(8), mkswap(8) and wipefs(8) now support block devices locking by flock(2), new command line option --lock and $LOCK_BLOCK_DEVICE environmental variable. * dmesg(1) new command line option --follow-new to wait and print only new kernel messages. * fdisk(8) new command line option --list-details and - -noauto-pt. * fdisk(8) and sfdisk(8) support user-friendly aliases for partition types. * fstrim(8) supports new command line option --listed-in. * libfdisk provides API to relocate GPT backup header. New command line option "sfdisk --relocate". * mount(8) now supports mount by ID= tag. * login(1) supports list of "message of the day". * All tools which read /etc/login.defs is possible to compile with libeconf now. * more(1) has been refactored. * man pages cleanup * other fixes and improvements, see: https://mirrors.edge.kernel.org/pub/linux/utils/util-linux/v2.36/v2.36-Rele… - Refresh Add-documentation-on-blacklisted-modules-to-mount-8-.patch. - Drop upstreamed libeconf.patch, libmount-Avoid-triggering-autofs-in-lookup_umount_fs.patch. - util-linux-login_defs-check.sh: Perform all steps to integrate MOTD_FIRSTONLY. - Update baselibs.conf. - Use plain #!/bin/sh for flushb - Include pam_securetty in login.pamd again (bsc#1033626) - Update to 2.35.2 * make glibc 2.31 compatible - Dropped unneeded patch libfdisk-script-accept-sector-size.patch ==== util-linux-systemd ==== Version update (2.35.1 -> 2.36.1) - Do not require libeconf-devel on products without /usr/etc. - s/--enable-vendordir/--with-vendordir/ - remove pam_securetty line again. As long as there is no agreement from pam side having it would fail openQA (boo#1033626) - Update to version 2.36.1: * chrt: use SCHED_FLAG_RESET_ON_FORK for sched_setattr() * fallocate: fix --dig-holes at end of files * fdisk: always report fdisk_create_disklabel() errors * flock: keep -E exit status more restrictive * fstrim: remove fstab condition from fstrim.timer * hexdump: automatically use -C when called as hd * hwclock: add fallback if SYS_settimeofday does not exist, fix SYS_settimeofday fallback * libblkid: allow a lot of mac partitions, fix Atari prober logic, limit amount of parsed partitions * more libfdisk improvements * losetup: avoid infinite busy loop, increase limit of setup attempts * lsblk: fix -T optional argument, fix SCSI_IDENT_SERIAL, print zero rather than empty SIZE, read ID_SCSI_IDENT_SERIAL if available * lscpu: Add FUJITSU aarch64 A64FX cpupart, Even more Arm part numbers, avoid segfault on PowerPC systems with valid hardware configurations (bsc#1175623) * mount: Add support for "nosymfollow" mount option. * pg: fix wcstombs() * sfdisk: correct --json --dump false exclusive, fix backward - -move-data * vipw: fix short write handling in copyfile * whereis: fix out of boundary read, support zst compressed man pages * minor code improvements and fixes * minor licensing changes * improve docs - Require both group(uuidd) and user(uuidd). - Do search /usr/sbin for mount helpers. (This drops /sbin/fs, /sbin/fs.d, which we do not use in openSUSE.) - prepare usrmerge (boo#1029961) - Modernize patch util-linux-sulogin4bsc1175514.patch * Try to autoconfigure broken serial lines - Add patch util-linux-sulogin4bsc1175514.patch Avoid sulogin failing on not existing or not functional console devices (bsc#1175514) - Fix default permissions of wall and write. - Update to version 2.36: * blkdiscard(8) refuses to proceed if filesystem or RAID signatures are found in interactive mode (executed on a terminal). The option --force is required to the discard data. * new commands irqtop(1) and lsirq(1)to monitor kernel interrupts. * cal(1) provides a new --vertical command line option. * blkzone(8) implements open/close/finish commands now. * unshare(1) and nsenter(1) commands support the time namespace now. * agetty(8) now supports multiple paths in the option - -issue-file. * fdisk(8), sfdisk(8), cfdisk(8), mkswap(8) and wipefs(8) now support block devices locking by flock(2), new command line option --lock and $LOCK_BLOCK_DEVICE environmental variable. * dmesg(1) new command line option --follow-new to wait and print only new kernel messages. * fdisk(8) new command line option --list-details and - -noauto-pt. * fdisk(8) and sfdisk(8) support user-friendly aliases for partition types. * fstrim(8) supports new command line option --listed-in. * libfdisk provides API to relocate GPT backup header. New command line option "sfdisk --relocate". * mount(8) now supports mount by ID= tag. * login(1) supports list of "message of the day". * All tools which read /etc/login.defs is possible to compile with libeconf now. * more(1) has been refactored. * man pages cleanup * other fixes and improvements, see: https://mirrors.edge.kernel.org/pub/linux/utils/util-linux/v2.36/v2.36-Rele… - Refresh Add-documentation-on-blacklisted-modules-to-mount-8-.patch. - Drop upstreamed libeconf.patch, libmount-Avoid-triggering-autofs-in-lookup_umount_fs.patch. - util-linux-login_defs-check.sh: Perform all steps to integrate MOTD_FIRSTONLY. - Update baselibs.conf. - Use plain #!/bin/sh for flushb - Include pam_securetty in login.pamd again (bsc#1033626) - Update to 2.35.2 * make glibc 2.31 compatible - Dropped unneeded patch libfdisk-script-accept-sector-size.patch ==== wayland ==== Version update (1.18.0 -> 1.19.0) Subpackages: libwayland-client0 libwayland-cursor0 libwayland-egl1 libwayland-server0 - Update to release 1.19 * This release mostly contains bug fixes and minor protocol updates. ==== webkit2gtk3 ==== Subpackages: libjavascriptcoregtk-4_0-18 libwebkit2gtk-4_0-37 webkit2gtk-4_0-injected-bundles - Add gir-multilib.patch: Fix multilib conflict in gir files. - Disable gold linker for ppc64le ==== xterm ==== Version update (359 -> 363) - Update to Patch#363 - 2020/12/26 * disable groff hyphenation in generated html when using man2html. * change SCS ?&4? Cyrillic to non-NRCS, per VT520 manual. * amend fix for SCS in patch #198 to remove DEL rather than converting it to a space (report by Thomas Wolff). * modify state transitions for selecting character sets to eliminate an ambiguity between the ?A? used in VT220 versus VT320. improve error recovery when selecting characters by resetting to US ASCII when no suitable encoding is found, e.g., attempting to use an NRCS sequence when NRCS is not enabled. * turn off hyphenation in ?.txt? conversion, prompted by groff changes. * add VT5xx ISO Latin-2 (prompted by discussion with Thomas Wolff). * amend change from patch #361 to event-handling in CopyWait to handle active-icon as a special case (Debian #975687). * add call to loadColorTable to get the visual information needed to decode BE RGBA32 color format (patch by Leandro Lupori). * modify the resource-parsing for disallowedPasteControls and similar lists of names/numbers to recognize ?~;? (tilde) for cancelling a given name/number. * add ENQ, EOT and NUL to default for disallowedPasteControls. * change default for disallowedPasteControls to omit the tab character (suggested by Harald Dunkel). * fix swapped height/width in regisScreenSize and maxGraphicSize resources using "auto" value, from patch #314 (report by Anton Lavrentiev) * revise patch #362 change for shift-modifier versus mouse protocol and select/paste by adding resource shiftEscape, which can be enabled via a control sequence (prompted by discussion with Matthijs van Duin). * simplify/improve ifdef in trace code for using a separate set of files for each run of xterm. * add options -r and -t to vttests/query-color.pl to show the 6-digit RGB code and actual colors. * add nel to xterm-basic terminfo. * alter vttests/modify-keys.pl to omit HTML reference links to the modified-keys table where no keycode was available. - includes Patch #361 - 2020/10/14 * treat the return value of strerror as readonly (patch by Philipp Klaus Krause). * modify event-handling in CopyWait to work around hanging while writing large amounts of text to an active icon and at the same time iconifying/ deiconifying (report by Dave Kemper). * initialize double-buffer for active-icon window. * improve manual page description of scrollbar resources (report by Brian Lindholm). correct ifdef for menu entry for active-icon, when initializing it with toolbar configuration. * add preprocessor option to makefile to set internal definition of pixmaps directory to match the install-configuration (FreeBSD #250036) * cleanup of calls to free, removing checks for null (Walter Harms) * add fallback actions pointer-button and pointer-motion which handle events for the mouse control-sequences protocol if the select-related translations are omitted with *omitTranslation:select (prompted by discussion with "Ergus") * amend rule for using shift-key to override mouse-protocol for select/ paste to limit that feature to mouse-buttons which are actually bound to select/paste actions (prompted by discussion with "Ergus"). * corrected mapping in special case for repainting wrap-marks when viewing the scrollback area. * use separate GCs for showWrapMarks feature, to work around cursor coloring change in patch #345 (report by Paulo Silva de Alíbano). - includes Patch #360 - 2020/09/20 * mention decGraphicsID in ctlseqs.ms (suggested by Thomas Wolff). * modify pixel-coordinate mouse reponse to use as origin the VT100- window rather than the underlying widget, which includes the scrollbar (report by Thomas Wolff). * add configure option --disable-print-graphics (Ross Combs). * add test_ptydata to ?make check? rule. * minor fixes for ctlseqs.ms (report by Jean-Marc Bourguet). * minor fixes for manpage style (report/patch by "a1346054"). * correct cleanup from switch between italics/normal font in the show/ hide cursor functions (report/testcase by Peter Fabinski) * integrated patch by Ross Combs: internal renaming of GraphicsID symbols, for readability. adjust logic for VT125, treating it as a ReGIS terminal. * update configure macros, for compiler-warning fixes. * integrated patch by Ross Combs: add control sequence modes for graphics printing. improve conversion to bitmaps for TrueType fonts in ReGIS add font7 resource, for an ?enormous? bitmap font. do not reset graphics in a soft-reset. add pointerFont resource, and -pf command-line option. * improve typography of manual page (patch by Branden Robinson). * amend patch #359 change to df-install.in to ignore a command-line assignment to DESTDIR if followed by an explicit --dir (report by Sven Joachim) - merged 2 patches to form xterm-suse.patch - remove xterm-settings.patch - remove xterm-better-fonts.patch - rebase xterm-sigwinch.patch - cleanup spec ==== yast2 ==== Version update (4.3.49 -> 4.3.51) - Do not propose hibernation when running over a virtualized setup (bsc#1180982). - 4.3.51 - Fixed Resolvables class to uniqely identify the libzypp objects to avoid random failures (related to bsc#1178688) - 4.3.50 ==== zeromq ==== Version update (4.3.3 -> 4.3.4) - update to 4.3.4: * ZMQ_PRIORITY will set the SO_PRIORITY socket option on the underlying sockets. Only supported on Linux. * Fixed compilation errors on kFreeBSD and GNU/Hurd * Fixed excessive amount of socket files left behind in Windows TMP * Fixed regression that breaks using IPv6 link-local addresses on Linux * Fixed compilation errors on Android * Fixed compilation error with ulibc and libbsd * Fixed stack overflow on Windows x64 * Fixed various compilation errors on Windows ARM 32bit * Fixed various compilation warnings with XCode * Fixed return value of zmq_ctx_get changed unintentionally ==== zstd ==== - Add libzstd-devel-32bit (boo#1181272)

1 0

New ARM Kubic snapshot 20210203 released!
by Guillaume Gardet 05 Feb '21

05 Feb '21

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=3&version=T… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: cloud-init cockpit (232 -> 235) containers-systemd (0.0+git20210107.f55f4b3 -> 0.0+git20210118.1366ecb) hwinfo (21.71 -> 21.72) installation-images-MicroOS (16.29 -> 16.35) iproute2 (5.9.0 -> 5.10.0) kernel-firmware (20201218 -> 20210119) kernel-source (5.10.9 -> 5.10.12) kmod (27 -> 28) libgpg-error (1.39 -> 1.41) libunwind (1.4.0 -> 1.5.0) mozilla-nss (3.59.1 -> 3.60.1) mozjs78 (78.6.1 -> 78.7.0) open-iscsi openssh p11-kit (0.23.20 -> 0.23.22) patterns-base patterns-microos permissions (1550_20201111 -> 1550_20210125) pinentry (1.1.0 -> 1.1.1) python-PyYAML (5.3.1 -> 5.4.1) python-importlib-metadata (3.3.0 -> 3.4.0) python-networkx python-packaging (20.4 -> 20.8) python-psutil (5.7.3 -> 5.8.0) python-urllib3 (1.26.2 -> 1.26.3) python38 (3.8.6 -> 3.8.7) python38-core (3.8.6 -> 3.8.7) raspberrypi-firmware raspberrypi-firmware-config raspberrypi-firmware-dt (2020.12.07 -> 2021.01.22) rpm socat (1.7.3.4 -> 1.7.4.1) sqlite3 (3.34.0 -> 3.34.1) supportutils timezone (2020f -> 2021a) toolbox (1.0+git20210119.b5acdcf -> 2.0+git20210125.50611db) tpm2-0-tss (3.0.1 -> 3.0.3) util-linux (2.35.1 -> 2.36.1) util-linux-systemd (2.35.1 -> 2.36.1) yast2 (4.3.49 -> 4.3.51) zeromq (4.3.3 -> 4.3.4) zstd === Details === ==== cloud-init ==== - Add use_arroba_to_include_sudoers_directory-bsc_1181283.patchfix (bsc#1181283) - Do not including sudoers.d directory twice ==== cockpit ==== Version update (232 -> 235) Subpackages: cockpit-bridge cockpit-system - new version 235 https://cockpit-project.org/blog/cockpit-235.html https://cockpit-project.org/blog/cockpit-234.html https://cockpit-project.org/blog/cockpit-233.html ==== containers-systemd ==== Version update (0.0+git20210107.f55f4b3 -> 0.0+git20210118.1366ecb) - Update to version 0.0+git20210118.1366ecb: * postfix: provide SPAMASSASSIN_HOST environment variable ==== hwinfo ==== Version update (21.71 -> 21.72) - merge gh#openSUSE/hwinfo#92 - improve getting video mode info (bsc#1181101) - try harder to break out of infinite I/O loops - 21.72 ==== installation-images-MicroOS ==== Version update (16.29 -> 16.35) - merge gh#openSUSE/installation-images#439 - Don't replace directory symlinks (boo#1029961) - 16.35 - merge gh#openSUSE/installation-images#447 - aarch64: add tegra20-apb-dma module (bsc#1181463) - 16.34 - merge gh#openSUSE/installation-images#446 - work around broken plymouth (bsc#1149070) - 16.33 - merge gh#openSUSE/installation-images#445 - do not run prein script for openssh-server in root image - 16.32 - merge gh#openSUSE/installation-images#443 - revert plymouth branding for SLE to tribar - support both plymouth-theme-tribar and plymouth-theme-bgrt - 16.31 - merge gh#openSUSE/installation-images#442 - Replace tribar plymouth theme for installation with bgrt (boo#1149070) - 16.30 ==== iproute2 ==== Version update (5.9.0 -> 5.10.0) - Update to release 5.10 * iplink: add support for protodown reason * ss: add support to expose various inet sockopts * ss: add support for XDP statistics * bridge: mdb: add support for source address ==== kernel-firmware ==== Version update (20201218 -> 20210119) Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network - Update to version 20210119 (git commit 05789708b79b): * brcm: Link RPi4's WiFi firmware with DMI machine name. * brcm: Add NVRAM for Vamrs 96boards Rock960 * brcm: Update Raspberry Pi 3B+/4B NVRAM for downstream changes * cypress: Fix link direction * cypress: Link the new cypress firmware to the old brcm files * brcm: remove old brcm firmwares that have newer cypress variants * rtl_bt: Update RTL8822C BT(UART I/F) FW to 0x059A_25CB * rtl_bt: Update RTL8822C BT(USB I/F) FW to 0x099a_7253 * rtl_bt: Add firmware and config files for RTL8852A BT USB chip * rtl_bt: Update RTL8821C BT(USB I/F) FW to 0x829a_7644 - Fix install-split.sh to deal with the quoted spaces - Update aliases ==== kernel-source ==== Version update (5.10.9 -> 5.10.12) - Linux 5.10.12 (bsc#1012628). - gpio: mvebu: fix pwm .get_state period calculation (bsc#1012628). - Revert "mm/slub: fix a memory leak in sysfs_slab_add()" (bsc#1012628). - futex: Ensure the correct return value from futex_lock_pi() (bsc#1012628). - futex: Replace pointless printk in fixup_owner() (bsc#1012628). - futex: Provide and use pi_state_update_owner() (bsc#1012628). - rtmutex: Remove unused argument from rt_mutex_proxy_unlock() (bsc#1012628). - futex: Use pi_state_update_owner() in put_pi_state() (bsc#1012628). - futex: Simplify fixup_pi_state_owner() (bsc#1012628). - futex: Handle faults correctly for PI futexes (bsc#1012628). - HID: wacom: Correct NULL dereference on AES pen proximity (bsc#1012628). - HID: multitouch: Apply MT_QUIRK_CONFIDENCE quirk for multi-input devices (bsc#1012628). - media: Revert "media: videobuf2: Fix length check for single plane dmabuf queueing" (bsc#1012628). - media: v4l2-subdev.h: BIT() is not available in userspace (bsc#1012628). - RDMA/vmw_pvrdma: Fix network_hdr_type reported in WC (bsc#1012628). - kernel/io_uring: cancel io_uring before task works (bsc#1012628). - io_uring: inline io_uring_attempt_task_drop() (bsc#1012628). - io_uring: add warn_once for io_uring_flush() (bsc#1012628). - io_uring: stop SQPOLL submit on creator's death (bsc#1012628). - io_uring: fix null-deref in io_disable_sqo_submit (bsc#1012628). - io_uring: do sqo disable on install_fd error (bsc#1012628). - io_uring: fix false positive sqo warning on flush (bsc#1012628). - io_uring: fix uring_flush in exit_files() warning (bsc#1012628). - io_uring: fix skipping disabling sqo on exec (bsc#1012628). - io_uring: dont kill fasync under completion_lock (bsc#1012628). - io_uring: fix sleeping under spin in __io_clean_op (bsc#1012628). - objtool: Don't fail on missing symbol table (bsc#1012628). - mm/page_alloc: add a missing mm_page_alloc_zone_locked() tracepoint (bsc#1012628). - mm: fix a race on nr_swap_pages (bsc#1012628). - tools: Factor HOSTCC, HOSTLD, HOSTAR definitions (bsc#1012628). - printk: fix buffer overflow potential for print_text() (bsc#1012628). - printk: fix string termination for record_print_text() (bsc#1012628). - commit a3c8888 - floppy: reintroduce O_NDELAY fix (boo#1181018). - commit fcfe481 - Update config files. Only refresh after 5.10.11. - commit 90db4e6 - Linux 5.10.11 (bsc#1012628). - scsi: target: tcmu: Fix use-after-free of se_cmd->priv (bsc#1012628). - mtd: rawnand: gpmi: fix dst bit offset when extracting raw payload (bsc#1012628). - mtd: rawnand: nandsim: Fix the logic when selecting Hamming soft ECC engine (bsc#1012628). - i2c: tegra: Wait for config load atomically while in ISR (bsc#1012628). - i2c: bpmp-tegra: Ignore unknown I2C_M flags (bsc#1012628). - platform/x86: i2c-multi-instantiate: Don't create platform device for INT3515 ACPI nodes (bsc#1012628). - platform/x86: ideapad-laptop: Disable touchpad_switch for ELAN0634 (bsc#1012628). - ALSA: seq: oss: Fix missing error check in snd_seq_oss_synth_make_info() (bsc#1012628). - ALSA: hda/realtek - Limit int mic boost on Acer Aspire E5-575T (bsc#1012628). - ALSA: hda/via: Add minimum mute flag (bsc#1012628). - crypto: xor - Fix divide error in do_xor_speed() (bsc#1012628). - dm crypt: fix copy and paste bug in crypt_alloc_req_aead (bsc#1012628). - ACPI: scan: Make acpi_bus_get_device() clear return pointer on error (bsc#1012628). - btrfs: don't get an EINTR during drop_snapshot for reloc (bsc#1012628). - btrfs: do not double free backref nodes on error (bsc#1012628). - btrfs: fix lockdep splat in btrfs_recover_relocation (bsc#1012628). - btrfs: don't clear ret in btrfs_start_dirty_block_groups (bsc#1012628). - btrfs: send: fix invalid clone operations when cloning from the same file and root (bsc#1012628). - fs: fix lazytime expiration handling in __writeback_single_inode() (bsc#1012628). - pinctrl: ingenic: Fix JZ4760 support (bsc#1012628). - mmc: core: don't initialize block size from ext_csd if not present (bsc#1012628). - mmc: sdhci-of-dwcmshc: fix rpmb access (bsc#1012628). - mmc: sdhci-xenon: fix 1.8v regulator stabilization (bsc#1012628). - mmc: sdhci-brcmstb: Fix mmc timeout errors on S5 suspend (bsc#1012628). - dm: avoid filesystem lookup in dm_get_dev_t() (bsc#1012628). - dm integrity: fix a crash if "recalculate" used without "internal_hash" (bsc#1012628). - dm integrity: conditionally disable "recalculate" feature (bsc#1012628). - drm/atomic: put state on error path (bsc#1012628). - drm/syncobj: Fix use-after-free (bsc#1012628). - drm/amdgpu: remove gpu info firmware of green sardine (bsc#1012628). - drm/amd/display: DCN2X Find Secondary Pipe properly in MPO + ODM Case (bsc#1012628). - drm/i915/gt: Prevent use of engine->wa_ctx after error (bsc#1012628). - drm/i915: Check for rq->hwsp validity after acquiring RCU lock (bsc#1012628). - ASoC: Intel: haswell: Add missing pm_ops (bsc#1012628). - ASoC: rt711: mutex between calibration and power state changes (bsc#1012628). - SUNRPC: Handle TCP socket sends with kernel_sendpage() again (bsc#1012628). - HID: multitouch: Enable multi-input for Synaptics pointstick/touchpad device (bsc#1012628). - HID: sony: select CONFIG_CRC32 (bsc#1012628). - dm integrity: select CRYPTO_SKCIPHER (bsc#1012628). - x86/hyperv: Fix kexec panic/hang issues (bsc#1012628). - scsi: ufs: Relax the condition of UFSHCI_QUIRK_SKIP_MANUAL_WB_FLUSH_CTRL (bsc#1012628). - scsi: ufs: Correct the LUN used in eh_device_reset_handler() callback (bsc#1012628). - scsi: qedi: Correct max length of CHAP secret (bsc#1012628). - scsi: scsi_debug: Fix memleak in scsi_debug_init() (bsc#1012628). - scsi: sd: Suppress spurious errors when WRITE SAME is being disabled (bsc#1012628). - riscv: Fix kernel time_init() (bsc#1012628). - riscv: Fix sifive serial driver (bsc#1012628). - riscv: Enable interrupts during syscalls with M-Mode (bsc#1012628). - HID: logitech-dj: add the G602 receiver (bsc#1012628). - HID: Ignore battery for Elan touchscreen on ASUS UX550 (bsc#1012628). - clk: tegra30: Add hda clock default rates to clock driver (bsc#1012628). - ALSA: hda/tegra: fix tegra-hda on tegra30 soc (bsc#1012628). - riscv: cacheinfo: Fix using smp_processor_id() in preemptible (bsc#1012628). - arm64: make atomic helpers __always_inline (bsc#1012628). - xen: Fix event channel callback via INTX/GSI (bsc#1012628). - x86/xen: Add xen_no_vector_callback option to test PCI INTX delivery (bsc#1012628). - x86/xen: Fix xen_hvm_smp_init() when vector callback not available (bsc#1012628). - dts: phy: fix missing mdio device and probe failure of vsc8541-01 device (bsc#1012628). - dts: phy: add GPIO number and active state used for phy reset (bsc#1012628). - riscv: defconfig: enable gpio support for HiFive Unleashed (bsc#1012628). - drm/amdgpu/psp: fix psp gfx ctrl cmds (bsc#1012628). - drm/amd/display: disable dcn10 pipe split by default (bsc#1012628). - HID: logitech-hidpp: Add product ID for MX Ergo in Bluetooth mode (bsc#1012628). - drm/amd/display: Fix to be able to stop crc calculation (bsc#1012628). - drm/nouveau/bios: fix issue shadowing expansion ROMs (bsc#1012628). - drm/nouveau/privring: ack interrupts the same way as RM (bsc#1012628). - drm/nouveau/i2c/gm200: increase width of aux semaphore owner fields (bsc#1012628). - drm/nouveau/mmu: fix vram heap sizing (bsc#1012628). - drm/nouveau/kms/nv50-: fix case where notifier buffer is at offset 0 (bsc#1012628). - io_uring: flush timeouts that should already have expired (bsc#1012628). - libperf tests: If a test fails return non-zero (bsc#1012628). - libperf tests: Fail when failing to get a tracepoint id (bsc#1012628). - RISC-V: Set current memblock limit (bsc#1012628). - RISC-V: Fix maximum allowed phsyical memory for RV32 (bsc#1012628). - x86/xen: fix 'nopvspin' build error (bsc#1012628). - nfsd: Fixes for nfsd4_encode_read_plus_data() (bsc#1012628). - nfsd: Don't set eof on a truncated READ_PLUS (bsc#1012628). - gpiolib: cdev: fix frame size warning in gpio_ioctl() (bsc#1012628). - pinctrl: aspeed: g6: Fix PWMG0 pinctrl setting (bsc#1012628). - pinctrl: mediatek: Fix fallback call path (bsc#1012628). - RDMA/ucma: Do not miss ctx destruction steps in some cases (bsc#1012628). - btrfs: print the actual offset in btrfs_root_name (bsc#1012628). - scsi: megaraid_sas: Fix MEGASAS_IOC_FIRMWARE regression (bsc#1012628). - scsi: ufs: ufshcd-pltfrm depends on HAS_IOMEM (bsc#1012628). - scsi: ufs: Fix tm request when non-fatal error happens (bsc#1012628). - crypto: omap-sham - Fix link error without crypto-engine (bsc#1012628). - bpf: Prevent double bpf_prog_put call from bpf_tracing_prog_attach (bsc#1012628). - powerpc: Use the common INIT_DATA_SECTION macro in vmlinux.lds.S (bsc#1012628). - powerpc: Fix alignment bug within the init sections (bsc#1012628). - arm64: entry: remove redundant IRQ flag tracing (bsc#1012628). - bpf: Reject too big ctx_size_in for raw_tp test run (bsc#1012628). - drm/amdkfd: Fix out-of-bounds read in kdf_create_vcrat_image_cpu() (bsc#1012628). - RDMA/umem: Avoid undefined behavior of rounddown_pow_of_two() (bsc#1012628). - RDMA/cma: Fix error flow in default_roce_mode_store (bsc#1012628). - printk: ringbuffer: fix line counting (bsc#1012628). - printk: fix kmsg_dump_get_buffer length calulations (bsc#1012628). - iov_iter: fix the uaccess area in copy_compat_iovec_from_user (bsc#1012628). - i2c: octeon: check correct size of maximum RECV_LEN packet (bsc#1012628). - drm/vc4: Unify PCM card's driver_name (bsc#1012628). - platform/x86: intel-vbtn: Drop HP Stream x360 Convertible PC 11 from allow-list (bsc#1012628). - platform/x86: hp-wmi: Don't log a warning on HPWMI_RET_UNKNOWN_COMMAND errors (bsc#1012628). - gpio: sifive: select IRQ_DOMAIN_HIERARCHY rather than depend on it (bsc#1012628). - ALSA: hda: Balance runtime/system PM if direct-complete is disabled (bsc#1012628). - xsk: Clear pool even for inactive queues (bsc#1012628). - selftests: net: fib_tests: remove duplicate log test (bsc#1012628). - can: dev: can_restart: fix use after free bug (bsc#1012628). - can: vxcan: vxcan_xmit: fix use after free bug (bsc#1012628). - can: peak_usb: fix use after free bugs (bsc#1012628). - perf evlist: Fix id index for heterogeneous systems (bsc#1012628). - i2c: sprd: depend on COMMON_CLK to fix compile tests (bsc#1012628). - iio: common: st_sensors: fix possible infinite loop in st_sensors_irq_thread (bsc#1012628). - iio: ad5504: Fix setting power-down state (bsc#1012628). - drivers: iio: temperature: Add delay after the addressed reset command in mlx90632.c (bsc#1012628). - iio: adc: ti_am335x_adc: remove omitted iio_kfifo_free() (bsc#1012628). - counter:ti-eqep: remove floor (bsc#1012628). - powerpc/64s: fix scv entry fallback flush vs interrupt (bsc#1012628). - cifs: do not fail __smb_send_rqst if non-fatal signals are pending (bsc#1012628). - irqchip/mips-cpu: Set IPI domain parent chip (bsc#1012628). - x86/fpu: Add kernel_fpu_begin_mask() to selectively initialize state (bsc#1012628). - x86/topology: Make __max_die_per_package available unconditionally (bsc#1012628). - x86/mmx: Use KFPU_387 for MMX string operations (bsc#1012628). - x86/setup: don't remove E820_TYPE_RAM for pfn 0 (bsc#1012628). - proc_sysctl: fix oops caused by incorrect command parameters (bsc#1012628). - mm: memcg/slab: optimize objcg stock draining (bsc#1012628). - mm: memcg: fix memcg file_dirty numa stat (bsc#1012628). - mm: fix numa stats for thp migration (bsc#1012628). - io_uring: iopoll requests should also wake task ->in_idle state (bsc#1012628). - io_uring: fix SQPOLL IORING_OP_CLOSE cancelation state (bsc#1012628). - io_uring: fix short read retries for non-reg files (bsc#1012628). - intel_th: pci: Add Alder Lake-P support (bsc#1012628). - stm class: Fix module init return on allocation failure (bsc#1012628). - serial: mvebu-uart: fix tx lost characters at power off (bsc#1012628). - ehci: fix EHCI host controller initialization sequence (bsc#1012628). - USB: ehci: fix an interrupt calltrace error (bsc#1012628). - usb: gadget: aspeed: fix stop dma register setting (bsc#1012628). - USB: gadget: dummy-hcd: Fix errors in port-reset handling (bsc#1012628). - usb: udc: core: Use lock when write to soft_connect (bsc#1012628). - usb: bdc: Make bdc pci driver depend on BROKEN (bsc#1012628). - usb: cdns3: imx: fix writing read-only memory issue (bsc#1012628). - usb: cdns3: imx: fix can't create core device the second time issue (bsc#1012628). - xhci: make sure TRB is fully written before giving it to the controller (bsc#1012628). - xhci: tegra: Delay for disabling LFPS detector (bsc#1012628). - drivers core: Free dma_range_map when driver probe failed (bsc#1012628). - driver core: Fix device link device name collision (bsc#1012628). - driver core: Extend device_is_dependent() (bsc#1012628). - drm/i915: s/intel_dp_sink_dpms/intel_dp_set_power/ (bsc#1012628). - drm/i915: Only enable DFP 4:4:4->4:2:0 conversion when outputting YCbCr 4:4:4 (bsc#1012628). - x86/entry: Fix noinstr fail (bsc#1012628). - x86/cpu/amd: Set __max_die_per_package on AMD (bsc#1012628). - cls_flower: call nla_ok() before nla_next() (bsc#1012628). - netfilter: rpfilter: mask ecn bits before fib lookup (bsc#1012628). - tools: gpio: fix %llu warning in gpio-event-mon.c (bsc#1012628). - tools: gpio: fix %llu warning in gpio-watch.c (bsc#1012628). - drm/i915/hdcp: Update CP property in update_pipe (bsc#1012628). - sh: dma: fix kconfig dependency for G2_DMA (bsc#1012628). - sh: Remove unused HAVE_COPY_THREAD_TLS macro (bsc#1012628). - locking/lockdep: Cure noinstr fail (bsc#1012628). - ASoC: SOF: Intel: fix page fault at probe if i915 init fails (bsc#1012628). - octeontx2-af: Fix missing check bugs in rvu_cgx.c (bsc#1012628). - net: dsa: mv88e6xxx: also read STU state in mv88e6250_g1_vtu_getnext (bsc#1012628). - selftests/powerpc: Fix exit status of pkey tests (bsc#1012628). - sh_eth: Fix power down vs. is_opened flag ordering (bsc#1012628). - nvme-pci: refactor nvme_unmap_data (bsc#1012628). - nvme-pci: fix error unwind in nvme_map_data (bsc#1012628). - cachefiles: Drop superfluous readpages aops NULL check (bsc#1012628 bsc#1175245). - lightnvm: fix memory leak when submit fails (bsc#1012628). - skbuff: back tiny skbs with kmalloc() in __netdev_alloc_skb() too (bsc#1012628). - kasan: fix unaligned address is unhandled in kasan_remove_zero_shadow (bsc#1012628). - kasan: fix incorrect arguments passing in kasan_add_zero_shadow (bsc#1012628). - tcp: fix TCP socket rehash stats mis-accounting (bsc#1012628). - net_sched: gen_estimator: support large ewma log (bsc#1012628). - udp: mask TOS bits in udp_v4_early_demux() (bsc#1012628). - ipv6: create multicast route with RTPROT_KERNEL (bsc#1012628). - net_sched: avoid shift-out-of-bounds in tcindex_set_parms() (bsc#1012628). - net_sched: reject silly cell_log in qdisc_get_rtab() (bsc#1012628). - ipv6: set multicast flag on the multicast route (bsc#1012628). - net: mscc: ocelot: allow offloading of bridge on top of LAG (bsc#1012628). - net: Disable NETIF_F_HW_TLS_RX when RXCSUM is disabled (bsc#1012628). - net: dsa: b53: fix an off by one in checking "vlan->vid" (bsc#1012628). - tcp: do not mess with cloned skbs in tcp_add_backlog() (bsc#1012628). - tcp: fix TCP_USER_TIMEOUT with zero window (bsc#1012628). - net: mscc: ocelot: Fix multicast to the CPU port (bsc#1012628). - net: core: devlink: use right genl user_ptr when handling port param get/set (bsc#1012628). - pinctrl: qcom: Allow SoCs to specify a GPIO function that's not 0 (bsc#1012628). - pinctrl: qcom: No need to read-modify-write the interrupt status (bsc#1012628). - pinctrl: qcom: Properly clear "intr_ack_high" interrupts when unmasking (bsc#1012628). - pinctrl: qcom: Don't clear pending interrupts when enabling (bsc#1012628). - x86/sev: Fix nonistr violation (bsc#1012628). - tty: implement write_iter (bsc#1012628). - tty: fix up hung_up_tty_write() conversion (bsc#1012628). - net: systemport: free dev before on error path (bsc#1012628). - x86/sev-es: Handle string port IO to kernel memory properly (bsc#1012628). - tcp: Fix potential use-after-free due to double kfree() (bsc#1012628). - ASoC: SOF: Intel: hda: Avoid checking jack on system suspend (bsc#1012628). - drm/i915/hdcp: Get conn while content_type changed (bsc#1012628). - bpf: Local storage helpers should check nullness of owner ptr passed (bsc#1012628). - kernfs: implement ->read_iter (bsc#1012628). - kernfs: implement ->write_iter (bsc#1012628). - kernfs: wire up ->splice_read and ->splice_write (bsc#1012628). - interconnect: imx8mq: Use icc_sync_state (bsc#1012628). - fs/pipe: allow sendfile() to pipe again (bsc#1012628). - Commit 9bb48c82aced ("tty: implement write_iter") converted the tty layer to use write_iter. Fix the redirected_tty_write declaration also in n_tty and change the comparisons to use write_iter instead of write. also in n_tty and change the comparisons to use write_iter instead of write (bsc#1012628). - mm: fix initialization of struct page for holes in memory layout (bsc#1012628). - Revert "mm: fix initialization of struct page for holes in memory layout" (bsc#1012628). - Delete patches.suse/fs-cachefs-Drop-superfluous-readpages-aops-NULL-chec.patch. - commit 7d05541 - ALSA: hda/via: Apply the workaround generically for Clevo machines (bsc#1181330). - commit 87d962b - Linux 5.10.10 (bsc#1012628). - spi: cadence: cache reference clock rate during probe (bsc#1012628). - spi: fsl: Fix driver breakage when SPI_CS_HIGH is not set in spi->mode (bsc#1012628). - cxgb4/chtls: Fix tid stuck due to wrong update of qid (bsc#1012628). - net: dsa: unbind all switches from tree when DSA master unbinds (bsc#1012628). - mac80211: check if atf has been disabled in __ieee80211_schedule_txq (bsc#1012628). - mac80211: do not drop tx nulldata packets on encrypted links (bsc#1012628). - drm/panel: otm8009a: allow using non-continuous dsi clock (bsc#1012628). - can: mcp251xfd: mcp251xfd_handle_rxif_one(): fix wrong NULL pointer check (bsc#1012628). - net: stmmac: use __napi_schedule() for PREEMPT_RT (bsc#1012628). - rxrpc: Fix handling of an unsupported token type in rxrpc_read() (bsc#1012628). - net: dsa: clear devlink port type before unregistering slave netdevs (bsc#1012628). - net: phy: smsc: fix clk error handling (bsc#1012628). - dt-bindings: net: renesas,etheravb: RZ/G2H needs tx-internal-delay-ps (bsc#1012628). - net: avoid 32 x truesize under-estimation for tiny skbs (bsc#1012628). - net: stmmac: fix taprio configuration when base_time is in the past (bsc#1012628). - net: stmmac: fix taprio schedule configuration (bsc#1012628). - net: sit: unregister_netdevice on newlink's error path (bsc#1012628). - net: stmmac: Fixed mtu channged by cache aligned (bsc#1012628). - i40e: fix potential NULL pointer dereferencing (bsc#1012628). - rxrpc: Call state should be read with READ_ONCE() under some circumstances (bsc#1012628). - net: dcb: Accept RTM_GETDCB messages carrying set-like DCB commands (bsc#1012628). - net: dcb: Validate netlink message in DCB handler (bsc#1012628). - esp: avoid unneeded kmap_atomic call (bsc#1012628). - rndis_host: set proper input size for OID_GEN_PHYSICAL_MEDIUM request (bsc#1012628). - net: mvpp2: Remove Pause and Asym_Pause support (bsc#1012628). - mlxsw: core: Increase critical threshold for ASIC thermal zone (bsc#1012628). - mlxsw: core: Add validation of transceiver temperature thresholds (bsc#1012628). - tipc: fix NULL deref in tipc_link_xmit() (bsc#1012628). - net: ipv6: Validate GSO SKB before finish IPv6 processing (bsc#1012628). - netxen_nic: fix MSI/MSI-x interrupts (bsc#1012628). - udp: Prevent reuseport_select_sock from reading uninitialized socks (bsc#1012628). - net: fix use-after-free when UDP GRO with shared fraglist (bsc#1012628). - net: ipa: modem: add missing SET_NETDEV_DEV() for proper sysfs links (bsc#1012628). - bpf: Fix helper bpf_map_peek_elem_proto pointing to wrong callback (bsc#1012628). - bpf: Support PTR_TO_MEM{,_OR_NULL} register spilling (bsc#1012628). - bpf: Don't leak memory in bpf getsockopt when optlen == 0 (bsc#1012628). - nfsd4: readdirplus shouldn't return parent of export (bsc#1012628). - X.509: Fix crash caused by NULL pointer (bsc#1012628). - bpf: Fix signed_{sub,add32}_overflows type handling (bsc#1012628). - drm/amdgpu/display: drop DCN support for aarch64 (bsc#1012628). - Update config files. - x86/hyperv: Initialize clockevents after LAPIC is initialized (bsc#1012628). - bpf: Fix selftest compilation on clang 11 (bsc#1012628). - Revert "kconfig: remove 'kvmconfig' and 'xenconfig' shorthands" (bsc#1012628). - commit 167b75d - drm/gpu/nouveau/dispnv50: Restore pushing of all data (boo#1181271). - commit c3f7185 - media: pwc: Fix the URB buffer allocation (bsc#1181133). - commit a9c85b1 - media: dvb-usb: Fix use-after-free access (bsc#1181104). - media: dvb-usb: Fix memory leak at error in dvb_usb_device_init() (bsc#1181104). - commit 807ed8c ==== kmod ==== Version update (27 -> 28) Subpackages: libkmod2 - Supplement bash-completion subpackage against the main package and bash-completion. - Also require the main package plus bash-completion: the completion package is useless without either of the two. - Update to v28 * Add Zstandard to the supported compression formats using libzstd (tests only - cannot be disabled in tests) * Ignore ill-formed kernel command line, e.g. with "ivrs_acpihid[00:14.5]=AMD0020:0" option in it * Fix some memory leaks * Fix 0-length builtin.alias.bin: it needs at least the index header - Backport upstream fix 0001-Fix-modinfo-F-always-shows-name-for-built-ins.patch ==== libgpg-error ==== Version update (1.39 -> 1.41) - update to 1.41: * Fixes another glitch in the "ignore" meta command. * Fixes two typos in the German translation. * New function gpgrt_access. * Make "ignore" meta command work correctly in the option parser. * Interface changes relative to the 1.39 release: gpgrt_access NEW. ==== libunwind ==== Version update (1.4.0 -> 1.5.0) - update to 1.5.0: * dwarf: clang doesn't respect the static alias * Fixed a missing dependency in dwarf-eh.h * x86_64: Fix tdep_init_done when built with libatomic_ops * mips: make _step_n64 as a static function * Added braces to suppress empty if/else warnings * Delete hardcode of address size to support MIPS64. * Fix format specifier for int64_t:29 * Add initial support for Solaris x86-64 * x86_64: Add fixup code if previous RIP was invalid * x86-64: make `is_cached_valid_mem` functional * arm: clear ip thumb/arm mode bit before move to previous instruction * Fix compilation with -fno-common. * Fix off-by-one error in x86_64 stack frames * aarch64: Fix __sigset build issue on muslC * Make SHF_COMPRESSED use contingent on its existence - remove libunwind_U_dyn_info_list.patch (upstream) ==== mozilla-nss ==== Version update (3.59.1 -> 3.60.1) - update to NSS 3.60.1 Notable changes in NSS 3.60: * TLS 1.3 Encrypted Client Hello (draft-ietf-tls-esni-08) support has been added, replacing the previous ESNI (draft-ietf-tls-esni-01) implementation. See bmo#1654332 for more information. * December 2020 batch of Root CA changes, builtins library updated to version 2.46. See bmo#1678189, bmo#1678166, and bmo#1670769 for more information. - removed obsolete ppc-old-abi-v3.patch ==== mozjs78 ==== Version update (78.6.1 -> 78.7.0) - Update to version 78.7.0esr. ==== open-iscsi ==== Subpackages: iscsiuio libopeniscsiusr0_2_0 - Update to latest upstream (no new tag yet). To fix bsc#1181313. Changes since last update added to open-iscsi-SUSE-latest.diff.bz2: * Fix iscsiadm segfault when exiting * iscsid: Add NO_SYSTEMD to CFLAGS * Change mkdir permissions to 0770, adjust usmask * Fix typo in util.py * iscsid: Do not allow conflicting pid-file options * iscsiadm: Fix memory leak in iscsiadm * libopeniscsiusr: Fix memory leak in iscsi_sessions_get() * libopeniscsiusr: Fix memory leak in iscsi_nodes_get() * idbm: Fix memory leak and NULL pointer dereference in idbm_rec_update_param() * Add etc/systemd/iscsi-init.service to SYSTEMDFILES Makefile variable ==== openssh ==== Subpackages: openssh-clients openssh-common openssh-server - Add support for /etc/ssh/ssh_config.d and /etc/ssh/sshd_config.d (openssh-8.4p1-ssh_config_d.patch) ==== p11-kit ==== Version update (0.23.20 -> 0.23.22) Subpackages: libp11-kit0 p11-kit-tools - update to 0.23.22 (bsc#1180064, bsc#1180065, bsc#1180066): * Fix memory-safety issues that affect the RPC protocol (CVE-2020-29361, CVE-2020-29362, and CVE-2020-29363), discovered and fixed by David Cook * anchor: Prefer persistent format when storing anchor [PR#329] * common: Fix infloop in p11_path_build [PR#326, PR#327] * proxy: C_CloseAllSessions: Make sure that calloc args are non-zero [PR#325] * common: Check for a NULL locale before freeing it [PR#321] * proxy: Do not assign duplicate slot IDs [PR#282] * common: Get program name based on executable path if possible [PR#307] * anchor: Exit with non-zero code, if any error occurs [PR#304] * Build and test fixes ==== patterns-base ==== Subpackages: patterns-base-apparmor patterns-base-bootloader patterns-base-minimal_base - bootloader pattern should not require a base pattern ==== patterns-microos ==== Subpackages: patterns-microos-alt_onlyDVD patterns-microos-apparmor patterns-microos-base patterns-microos-basesystem patterns-microos-cloud patterns-microos-cockpit patterns-microos-defaults patterns-microos-hardware patterns-microos-ima_evm patterns-microos-onlyDVD patterns-microos-selinux patterns-microos-sssd_ldap - Use user(nobody) and group(nobody) - Drop autofs and nfs-client requirements, not commonly needed - Sync with openSUSE Tumleweed base pattern - Add busybox - Cleanup comments from last submission - Moved unzip and wget from gnome desktop pattern to common desktop pattern - add bash-completion, nfs-client and autofs to common desktop pattern for beginner users - remove kdeconnect-kde from kde desktop pattern as not necessary for every install ==== permissions ==== Version update (1550_20201111 -> 1550_20210125) Subpackages: chkstat permissions-config - Update to version 20210125: * usbauth: drop compatibility variable for libexec * usbauth: Updated path for usbauth-npriv * profiles: finish usage of variable for polkit-agent-helper-1 ==== pinentry ==== Version update (1.1.0 -> 1.1.1) - actually build efl based pinentry - re-enable validation of upstream signing key - update to 1.1.1: * A EFL-based pinentry has been contributed. * Disable echoing in backspace key is pressed first (GTK, Qt, TQt, and ncurses pinentries). * Support line editing in TTY pinentry. * Remove support for old GTK+2 (< 2.12.0). * Various minor fixes. - drop pinentry-qt-Fix-use-of-dangling-pointer.patch (upstream) - drop pinentry-ncurses6.diff: obsolete ==== python-PyYAML ==== Version update (5.3.1 -> 5.4.1) - update to 5.4.1 (bsc#1174514, CVE-2020-14343): * Fix stub compat with older pyyaml versions that may unwittingly load it * Build modernization, remove distutils, fix metadata, build wheels, CI to GHA * Fix for CVE-2020-14343, moves arbitrary python tags to UnsafeLoader * Fix memory leak in implicit resolver setup * Fix py2 copy support for timezone objects * Fix compatibility with Jython ==== python-importlib-metadata ==== Version update (3.3.0 -> 3.4.0) - update to 3.4.0: * Project now declares itself as being typed. * Additional performance enhancements to distribution discovery. * For PyPA projects, add test ensuring that ``MetadataPathFinder._search_paths`` honors the needed interface. Method is still private. ==== python-networkx ==== - Temporarily reenable python36 build until SciPy is updated, because the PyYAML fix needs to be merged first - Add yaml-loader.patch adding support for new PyYAML - Skip python36 because of SciPy 1.6.0 ==== python-packaging ==== Version update (20.4 -> 20.8) - update to 20.8: * Revert back to setuptools for compatibility purposes for some Linux distros (:issue:`363`) * Do not insert an underscore in wheel tags when the interpreter version number is more than 2 digits (:issue:`372`) * Fix flit configuration, to include LICENSE files (:issue:`357`) * Make `intel` a recognized CPU architecture for the `universal` macOS platform tag (:issue:`361`) * Add some missing type hints to `packaging.requirements` (issue:`350`) * Officially support Python 3.9 (:issue:`343`) * Deprecate the ``LegacyVersion`` and ``LegacySpecifier`` classes (:issue:`321`) * Handle ``OSError`` on non-dynamic executables when attempting to resolve the glibc version string. ==== python-psutil ==== Version update (5.7.3 -> 5.8.0) - Do not install tests (and change the way they're run since they were run from %{buildroot}) - Add patch to skip tests related to rlimit and zombie processes that fail when building for python2 on i586: * skip_rlimit_tests_on_python2.patch - update to 5.8.0: * Enhancements: - 1863: disk_partitions() exposes 2 extra fields: maxfile and maxpath, which are the maximum file name and path name length. - 1872: [Windows] added support for PyPy 2.7. - 1879: provide pre-compiled wheels for Linux and macOS. - 1880: get rid of Travis and Cirrus CI services (they are no longer free). CI testing is now done by GitHub Actions on Linux, macOS and FreeBSD (yes). AppVeyor is still being used for Windows CI. * Bug fixes: - 1708: [Linux] get rid of sensors_temperatures() duplicates. (patch by Tim Schlueter). - 1839: [Windows] always raise AccessDenied when failing to query 64 processes from 32 bit ones (NtWoW64 APIs). - 1866: [Windows] process exe(), cmdline(), environ() may raise "invalid access to memory location" on Python 3.9. - 1874: [Solaris] wrong swap output given when encrypted column is present. - 1875: [Windows] process username() may raise ERROR_NONE_MAPPED if the SID has no corresponding account name. In this case AccessDenied is now raised. - 1877: [Windows] OpenProcess may fail with ERROR_SUCCESS. Turn it into AccessDenied or NoSuchProcess depending on whether the PID is alive. - 1886: [macOS] EIO error may be raised on cmdline() and environment(). Now it gets translated into AccessDenied. - 1891: [macOS] get rid of deprecated getpagesize(). - Rebase patch and skip three other tests that fail on obs * skip-obs.patch ==== python-urllib3 ==== Version update (1.26.2 -> 1.26.3) - update to 1.26.3: * Fixed bytes and string comparison issue with headers (Pull #2141) * Changed ``ProxySchemeUnknown`` error message to be more actionable if the user supplies a proxy URL without a scheme. (Pull #2107) ==== python38 ==== Version update (3.8.6 -> 3.8.7) - Add CVE-2021-3177-buf_ovrfl_PyCArg_repr.patch fixing bsc#1181126 (CVE-2021-3177) buffer overflow in PyCArg_repr in _ctypes/callproc.c, which may lead to remote code execution. - (bsc#1180125) We really don't Require python-rpm-macros package. Unnecessary dependency. - Update to 3.8.7: - bugfix release - multiple patches realigned: - F00102-lib64.patch - SUSE-FEDORA-multilib.patch - bpo-31046_ensurepip_honours_prefix.patch - skip_random_failing_tests.patch - Last try before this results in an editwar: * remove importlib_resources and importlib-metadata provides/obsoletes * import importlib_resources is not the same as import importlib.resources, same for metadata * The backport packages from PyPI needed for older flavors are specified as such for setuptools or in pyproject.toml. If a package requires them they typically add them with a python version qualifier and the packages have their own version numbers. - Add patch sphinx-update-removed-function.patch to no longer call a now removed function and to make documentation build independent of the Sphinx version (bsc#1179630, gh#python/cpython#13236). - Add importlib_resources provide/obsolete as it is integral part of the lang since 3.7 release ==== python38-core ==== Version update (3.8.6 -> 3.8.7) Subpackages: libpython3_8-1_0 python38-base - Add CVE-2021-3177-buf_ovrfl_PyCArg_repr.patch fixing bsc#1181126 (CVE-2021-3177) buffer overflow in PyCArg_repr in _ctypes/callproc.c, which may lead to remote code execution. - (bsc#1180125) We really don't Require python-rpm-macros package. Unnecessary dependency. - Update to 3.8.7: - bugfix release - multiple patches realigned: - F00102-lib64.patch - SUSE-FEDORA-multilib.patch - bpo-31046_ensurepip_honours_prefix.patch - skip_random_failing_tests.patch - Last try before this results in an editwar: * remove importlib_resources and importlib-metadata provides/obsoletes * import importlib_resources is not the same as import importlib.resources, same for metadata * The backport packages from PyPI needed for older flavors are specified as such for setuptools or in pyproject.toml. If a package requires them they typically add them with a python version qualifier and the packages have their own version numbers. - Add patch sphinx-update-removed-function.patch to no longer call a now removed function and to make documentation build independent of the Sphinx version (bsc#1179630, gh#python/cpython#13236). - Add importlib_resources provide/obsolete as it is integral part of the lang since 3.7 release ==== raspberrypi-firmware ==== - Use disable-v3d overlay, it isn't ready for users to use but soon good enough for a technology preview. (jsc#SLE-15928) ==== raspberrypi-firmware-config ==== - Use disable-v3d overlay, it isn't ready for users to use but soon good enough for a technology preview. (jsc#SLE-15928) ==== raspberrypi-firmware-dt ==== Version update (2020.12.07 -> 2021.01.22) - Introduce disable-v3d-overlay.dts, in order to be able to selectively disable v3d while using vc4 as the display controller (jsc#SLE-15928). - Update to 02dbfea28f (2021-01-22): * Add reserved memory template to hold firmware configuration - Drop upstream-blconfig-rmem.patch as it's now available upstream. ==== rpm ==== Subpackages: librpmbuild9 - Add explicit requirement on python-rpm-macros to avoid widespread breakage by package mistakenly ignoring their requirement of python-rpm-macros (bsc#1180125). ==== socat ==== Version update (1.7.3.4 -> 1.7.4.1) - update to 1.7.4.1: Security: * Buffer size option (-b) is internally doubled for CR-CRLF conversion, but not checked for integer overflow. This could lead to heap based buffer overflow, assuming the attacker could provide this parameter. * Many further bugfixes and new features, see the CHANGES file ==== sqlite3 ==== Version update (3.34.0 -> 3.34.1) - SQLite 3.34.1: * Fix a potential use-after-free bug when processing a a subquery with both a correlated WHERE clause and a "HAVING 0" clause and where the parent query is an aggregate (boo#1181261) * Fix documentation typos * Fix minor problems in extensions ==== supportutils ==== - Require the awk, which and sed commands instead of packages to allow alternate implementations on embedded/Edge systems ==== timezone ==== Version update (2020f -> 2021a) - timezone update 2021a (bsc#1177460) * South Sudan changes from +03 to +02 on 2021-02-01 at 00:00. ==== toolbox ==== Version update (1.0+git20210119.b5acdcf -> 2.0+git20210125.50611db) - Update to version 2.0+git20210125.50611db: * Document configuration files, add /usr/etc/toolboxrc * Update README to include commands * Update the README * Be even more compatible with Silverblue Toolbox * Introduce commands, for compatibility with Silverblue's toolbox * Mount /run/media and and /tmp inside a user toolbox * Export more env variables inside (user) toolboxes ==== tpm2-0-tss ==== Version update (3.0.1 -> 3.0.3) Subpackages: libtss2-esys0 libtss2-mu0 libtss2-rc0 libtss2-sys1 - update to 3.0.3: - changes in 3.0.3: * Fix Regression in Fapi_List * Fix memory leak in policy calculation - changes in 3.0.2: * FAPI: Fix setting of the system flag of NV objects * This will let NV object metadata be created system-wide always instead of * locally in the user. Existing metadata will remain in the user directory. * It can be moved to the corresponding systemstore manually if needed. * FAPI: Fix policy searching, when a policyRef was provided * FAPI: Accept EK-Certs without CRL dist point * FAPI: Fix return codes of Fapi_List * FAPI: Fix memleak in policy execution * FAPI: Fix coverity NULL-pointer check * FAPI: Set the written flag of NV objects in FAPI PolicyNV commands * FAPI: Fix deleting of policy files. * FAPI: Fix wrong file loading during object search. * Fapi: Fix memory leak * Fapi: Fix potential NULL-Dereference * Fapi: Remove superfluous NULL check * Fix a memory leak in async keystore load. ==== util-linux ==== Version update (2.35.1 -> 2.36.1) Subpackages: libblkid1 libfdisk1 libmount1 libsmartcols1 libuuid1 - Do not require libeconf-devel on products without /usr/etc. - s/--enable-vendordir/--with-vendordir/ - remove pam_securetty line again. As long as there is no agreement from pam side having it would fail openQA (boo#1033626) - Update to version 2.36.1: * chrt: use SCHED_FLAG_RESET_ON_FORK for sched_setattr() * fallocate: fix --dig-holes at end of files * fdisk: always report fdisk_create_disklabel() errors * flock: keep -E exit status more restrictive * fstrim: remove fstab condition from fstrim.timer * hexdump: automatically use -C when called as hd * hwclock: add fallback if SYS_settimeofday does not exist, fix SYS_settimeofday fallback * libblkid: allow a lot of mac partitions, fix Atari prober logic, limit amount of parsed partitions * more libfdisk improvements * losetup: avoid infinite busy loop, increase limit of setup attempts * lsblk: fix -T optional argument, fix SCSI_IDENT_SERIAL, print zero rather than empty SIZE, read ID_SCSI_IDENT_SERIAL if available * lscpu: Add FUJITSU aarch64 A64FX cpupart, Even more Arm part numbers, avoid segfault on PowerPC systems with valid hardware configurations (bsc#1175623) * mount: Add support for "nosymfollow" mount option. * pg: fix wcstombs() * sfdisk: correct --json --dump false exclusive, fix backward - -move-data * vipw: fix short write handling in copyfile * whereis: fix out of boundary read, support zst compressed man pages * minor code improvements and fixes * minor licensing changes * improve docs - Require both group(uuidd) and user(uuidd). - Do search /usr/sbin for mount helpers. (This drops /sbin/fs, /sbin/fs.d, which we do not use in openSUSE.) - prepare usrmerge (boo#1029961) - Modernize patch util-linux-sulogin4bsc1175514.patch * Try to autoconfigure broken serial lines - Add patch util-linux-sulogin4bsc1175514.patch Avoid sulogin failing on not existing or not functional console devices (bsc#1175514) - Fix default permissions of wall and write. - Update to version 2.36: * blkdiscard(8) refuses to proceed if filesystem or RAID signatures are found in interactive mode (executed on a terminal). The option --force is required to the discard data. * new commands irqtop(1) and lsirq(1)to monitor kernel interrupts. * cal(1) provides a new --vertical command line option. * blkzone(8) implements open/close/finish commands now. * unshare(1) and nsenter(1) commands support the time namespace now. * agetty(8) now supports multiple paths in the option - -issue-file. * fdisk(8), sfdisk(8), cfdisk(8), mkswap(8) and wipefs(8) now support block devices locking by flock(2), new command line option --lock and $LOCK_BLOCK_DEVICE environmental variable. * dmesg(1) new command line option --follow-new to wait and print only new kernel messages. * fdisk(8) new command line option --list-details and - -noauto-pt. * fdisk(8) and sfdisk(8) support user-friendly aliases for partition types. * fstrim(8) supports new command line option --listed-in. * libfdisk provides API to relocate GPT backup header. New command line option "sfdisk --relocate". * mount(8) now supports mount by ID= tag. * login(1) supports list of "message of the day". * All tools which read /etc/login.defs is possible to compile with libeconf now. * more(1) has been refactored. * man pages cleanup * other fixes and improvements, see: https://mirrors.edge.kernel.org/pub/linux/utils/util-linux/v2.36/v2.36-Rele… - Refresh Add-documentation-on-blacklisted-modules-to-mount-8-.patch. - Drop upstreamed libeconf.patch, libmount-Avoid-triggering-autofs-in-lookup_umount_fs.patch. - util-linux-login_defs-check.sh: Perform all steps to integrate MOTD_FIRSTONLY. - Update baselibs.conf. - Use plain #!/bin/sh for flushb - Include pam_securetty in login.pamd again (bsc#1033626) - Update to 2.35.2 * make glibc 2.31 compatible - Dropped unneeded patch libfdisk-script-accept-sector-size.patch ==== util-linux-systemd ==== Version update (2.35.1 -> 2.36.1) - Do not require libeconf-devel on products without /usr/etc. - s/--enable-vendordir/--with-vendordir/ - remove pam_securetty line again. As long as there is no agreement from pam side having it would fail openQA (boo#1033626) - Update to version 2.36.1: * chrt: use SCHED_FLAG_RESET_ON_FORK for sched_setattr() * fallocate: fix --dig-holes at end of files * fdisk: always report fdisk_create_disklabel() errors * flock: keep -E exit status more restrictive * fstrim: remove fstab condition from fstrim.timer * hexdump: automatically use -C when called as hd * hwclock: add fallback if SYS_settimeofday does not exist, fix SYS_settimeofday fallback * libblkid: allow a lot of mac partitions, fix Atari prober logic, limit amount of parsed partitions * more libfdisk improvements * losetup: avoid infinite busy loop, increase limit of setup attempts * lsblk: fix -T optional argument, fix SCSI_IDENT_SERIAL, print zero rather than empty SIZE, read ID_SCSI_IDENT_SERIAL if available * lscpu: Add FUJITSU aarch64 A64FX cpupart, Even more Arm part numbers, avoid segfault on PowerPC systems with valid hardware configurations (bsc#1175623) * mount: Add support for "nosymfollow" mount option. * pg: fix wcstombs() * sfdisk: correct --json --dump false exclusive, fix backward - -move-data * vipw: fix short write handling in copyfile * whereis: fix out of boundary read, support zst compressed man pages * minor code improvements and fixes * minor licensing changes * improve docs - Require both group(uuidd) and user(uuidd). - Do search /usr/sbin for mount helpers. (This drops /sbin/fs, /sbin/fs.d, which we do not use in openSUSE.) - prepare usrmerge (boo#1029961) - Modernize patch util-linux-sulogin4bsc1175514.patch * Try to autoconfigure broken serial lines - Add patch util-linux-sulogin4bsc1175514.patch Avoid sulogin failing on not existing or not functional console devices (bsc#1175514) - Fix default permissions of wall and write. - Update to version 2.36: * blkdiscard(8) refuses to proceed if filesystem or RAID signatures are found in interactive mode (executed on a terminal). The option --force is required to the discard data. * new commands irqtop(1) and lsirq(1)to monitor kernel interrupts. * cal(1) provides a new --vertical command line option. * blkzone(8) implements open/close/finish commands now. * unshare(1) and nsenter(1) commands support the time namespace now. * agetty(8) now supports multiple paths in the option - -issue-file. * fdisk(8), sfdisk(8), cfdisk(8), mkswap(8) and wipefs(8) now support block devices locking by flock(2), new command line option --lock and $LOCK_BLOCK_DEVICE environmental variable. * dmesg(1) new command line option --follow-new to wait and print only new kernel messages. * fdisk(8) new command line option --list-details and - -noauto-pt. * fdisk(8) and sfdisk(8) support user-friendly aliases for partition types. * fstrim(8) supports new command line option --listed-in. * libfdisk provides API to relocate GPT backup header. New command line option "sfdisk --relocate". * mount(8) now supports mount by ID= tag. * login(1) supports list of "message of the day". * All tools which read /etc/login.defs is possible to compile with libeconf now. * more(1) has been refactored. * man pages cleanup * other fixes and improvements, see: https://mirrors.edge.kernel.org/pub/linux/utils/util-linux/v2.36/v2.36-Rele… - Refresh Add-documentation-on-blacklisted-modules-to-mount-8-.patch. - Drop upstreamed libeconf.patch, libmount-Avoid-triggering-autofs-in-lookup_umount_fs.patch. - util-linux-login_defs-check.sh: Perform all steps to integrate MOTD_FIRSTONLY. - Update baselibs.conf. - Use plain #!/bin/sh for flushb - Include pam_securetty in login.pamd again (bsc#1033626) - Update to 2.35.2 * make glibc 2.31 compatible - Dropped unneeded patch libfdisk-script-accept-sector-size.patch ==== yast2 ==== Version update (4.3.49 -> 4.3.51) - Do not propose hibernation when running over a virtualized setup (bsc#1180982). - 4.3.51 - Fixed Resolvables class to uniqely identify the libzypp objects to avoid random failures (related to bsc#1178688) - 4.3.50 ==== zeromq ==== Version update (4.3.3 -> 4.3.4) - update to 4.3.4: * ZMQ_PRIORITY will set the SO_PRIORITY socket option on the underlying sockets. Only supported on Linux. * Fixed compilation errors on kFreeBSD and GNU/Hurd * Fixed excessive amount of socket files left behind in Windows TMP * Fixed regression that breaks using IPv6 link-local addresses on Linux * Fixed compilation errors on Android * Fixed compilation error with ulibc and libbsd * Fixed stack overflow on Windows x64 * Fixed various compilation errors on Windows ARM 32bit * Fixed various compilation warnings with XCode * Fixed return value of zmq_ctx_get changed unintentionally ==== zstd ==== - Add libzstd-devel-32bit (boo#1181272)

1 0

New MicroOS snapshot 20210202 released!
by Richard Brown 03 Feb '21

03 Feb '21

Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: cockpit (232 -> 235) containers-systemd (0.0+git20210107.f55f4b3 -> 0.0+git20210118.1366ecb) ffmpeg-4 gdm glibmm2_4 (2.64.5 -> 2.66.0) gnome-software graphene iproute2 (5.9.0 -> 5.10.0) jack (1.9.16 -> 1.9.17) kernel-source (5.10.9 -> 5.10.12) kmod (27 -> 28) libXt (1.2.0 -> 1.2.1) libdrm (2.4.103 -> 2.4.104) libqt5-qtwebengine librsvg (2.50.2 -> 2.50.3) libunwind (1.4.0 -> 1.5.0) openssh pangomm1_4 (2.42.2 -> 2.46.0) permissions (1550_20201111 -> 1550_20210125) pinentry (1.1.0 -> 1.1.1) pipewire (0.3.15 -> 0.3.20) pulseaudio (14.0 -> 14.2) python-PyYAML (5.3.1 -> 5.4.1) python-importlib-metadata (3.3.0 -> 3.4.0) python-networkx python-packaging (20.4 -> 20.8) python-psutil (5.7.3 -> 5.8.0) python-urllib3 (1.26.2 -> 1.26.3) python38 (3.8.6 -> 3.8.7) python38-core (3.8.6 -> 3.8.7) rpm supportutils timezone (2020f -> 2021a) toolbox (1.0+git20210119.b5acdcf -> 2.0+git20210125.50611db) tpm2-0-tss (3.0.1 -> 3.0.3) util-linux (2.35.1 -> 2.36.1) util-linux-systemd (2.35.1 -> 2.36.1) wayland (1.18.0 -> 1.19.0) xterm (359 -> 363) yast2 (4.3.49 -> 4.3.51) zeromq (4.3.3 -> 4.3.4) zstd === Details === ==== cockpit ==== Version update (232 -> 235) Subpackages: cockpit-bridge cockpit-system - new version 235 https://cockpit-project.org/blog/cockpit-235.html https://cockpit-project.org/blog/cockpit-234.html https://cockpit-project.org/blog/cockpit-233.html ==== containers-systemd ==== Version update (0.0+git20210107.f55f4b3 -> 0.0+git20210118.1366ecb) - Update to version 0.0+git20210118.1366ecb: * postfix: provide SPAMASSASSIN_HOST environment variable ==== ffmpeg-4 ==== Subpackages: libavcodec58_91 libavformat58_45 libavutil56_51 libswresample3_7 - remove dependency on OpenJPEG, this is obsolete since ffmpeg 4.0, we already build against OpenJPEG 2.1. see changes: - Dropped support for OpenJPEG versions 2.0 and below. Using OpenJPEG now requires 2.1 (or later) and pkg-config. ==== gdm ==== Subpackages: gdmflexiserver libgdm1 typelib-1_0-Gdm-1_0 - Fixup gdm.sysyers: gecos field needs to be quoted for multi-word value. - Use sysusers config file to generate gdm user ==== glibmm2_4 ==== Version update (2.64.5 -> 2.66.0) Subpackages: libgiomm-2_4-1 libglibmm-2_4-1 - Update to version 2.66.0: + Glib: - Binding: Add set_manage() and Glib::manage(). - Deprecate BalancedTree in favour of std::map and std::unordered_map. + Gio: - ListStore: Accept interfaces. - MenuAttribute: Add new enum values. - SettingsSchemaSource: Wrap new_from_directory() and list_schemas(). ==== gnome-software ==== Subpackages: libgnomesoftware-3_38_0 - Remove hard dependency on zypp appdata plugin if other PackageKit backend is used ==== graphene ==== Subpackages: libgraphene-1_0-0 typelib-1_0-Graphene-1_0 - Pass conditional Darm_neon=false instead of Darm-neon=true to meson, fix build for armv7. - Stop passing Dbenchmarks=true, no longer recognized nor used. ==== iproute2 ==== Version update (5.9.0 -> 5.10.0) - Update to release 5.10 * iplink: add support for protodown reason * ss: add support to expose various inet sockopts * ss: add support for XDP statistics * bridge: mdb: add support for source address ==== jack ==== Version update (1.9.16 -> 1.9.17) - update to 1.9.17: * Fix jack_control stopping after first command iteration * Fix registry keys for Windows, add 32bit compat ones on 64bit * Fix library compat/current version under macOS * Fix return codes of jackd on success * Ignore DB_VERSION_MISMATCH error on windows, it is expected * Remove old workaround for asio4all, as it breaks with jack-router ==== kernel-source ==== Version update (5.10.9 -> 5.10.12) - Linux 5.10.12 (bsc#1012628). - gpio: mvebu: fix pwm .get_state period calculation (bsc#1012628). - Revert "mm/slub: fix a memory leak in sysfs_slab_add()" (bsc#1012628). - futex: Ensure the correct return value from futex_lock_pi() (bsc#1012628). - futex: Replace pointless printk in fixup_owner() (bsc#1012628). - futex: Provide and use pi_state_update_owner() (bsc#1012628). - rtmutex: Remove unused argument from rt_mutex_proxy_unlock() (bsc#1012628). - futex: Use pi_state_update_owner() in put_pi_state() (bsc#1012628). - futex: Simplify fixup_pi_state_owner() (bsc#1012628). - futex: Handle faults correctly for PI futexes (bsc#1012628). - HID: wacom: Correct NULL dereference on AES pen proximity (bsc#1012628). - HID: multitouch: Apply MT_QUIRK_CONFIDENCE quirk for multi-input devices (bsc#1012628). - media: Revert "media: videobuf2: Fix length check for single plane dmabuf queueing" (bsc#1012628). - media: v4l2-subdev.h: BIT() is not available in userspace (bsc#1012628). - RDMA/vmw_pvrdma: Fix network_hdr_type reported in WC (bsc#1012628). - kernel/io_uring: cancel io_uring before task works (bsc#1012628). - io_uring: inline io_uring_attempt_task_drop() (bsc#1012628). - io_uring: add warn_once for io_uring_flush() (bsc#1012628). - io_uring: stop SQPOLL submit on creator's death (bsc#1012628). - io_uring: fix null-deref in io_disable_sqo_submit (bsc#1012628). - io_uring: do sqo disable on install_fd error (bsc#1012628). - io_uring: fix false positive sqo warning on flush (bsc#1012628). - io_uring: fix uring_flush in exit_files() warning (bsc#1012628). - io_uring: fix skipping disabling sqo on exec (bsc#1012628). - io_uring: dont kill fasync under completion_lock (bsc#1012628). - io_uring: fix sleeping under spin in __io_clean_op (bsc#1012628). - objtool: Don't fail on missing symbol table (bsc#1012628). - mm/page_alloc: add a missing mm_page_alloc_zone_locked() tracepoint (bsc#1012628). - mm: fix a race on nr_swap_pages (bsc#1012628). - tools: Factor HOSTCC, HOSTLD, HOSTAR definitions (bsc#1012628). - printk: fix buffer overflow potential for print_text() (bsc#1012628). - printk: fix string termination for record_print_text() (bsc#1012628). - commit a3c8888 - floppy: reintroduce O_NDELAY fix (boo#1181018). - commit fcfe481 - Update config files. Only refresh after 5.10.11. - commit 90db4e6 - Linux 5.10.11 (bsc#1012628). - scsi: target: tcmu: Fix use-after-free of se_cmd->priv (bsc#1012628). - mtd: rawnand: gpmi: fix dst bit offset when extracting raw payload (bsc#1012628). - mtd: rawnand: nandsim: Fix the logic when selecting Hamming soft ECC engine (bsc#1012628). - i2c: tegra: Wait for config load atomically while in ISR (bsc#1012628). - i2c: bpmp-tegra: Ignore unknown I2C_M flags (bsc#1012628). - platform/x86: i2c-multi-instantiate: Don't create platform device for INT3515 ACPI nodes (bsc#1012628). - platform/x86: ideapad-laptop: Disable touchpad_switch for ELAN0634 (bsc#1012628). - ALSA: seq: oss: Fix missing error check in snd_seq_oss_synth_make_info() (bsc#1012628). - ALSA: hda/realtek - Limit int mic boost on Acer Aspire E5-575T (bsc#1012628). - ALSA: hda/via: Add minimum mute flag (bsc#1012628). - crypto: xor - Fix divide error in do_xor_speed() (bsc#1012628). - dm crypt: fix copy and paste bug in crypt_alloc_req_aead (bsc#1012628). - ACPI: scan: Make acpi_bus_get_device() clear return pointer on error (bsc#1012628). - btrfs: don't get an EINTR during drop_snapshot for reloc (bsc#1012628). - btrfs: do not double free backref nodes on error (bsc#1012628). - btrfs: fix lockdep splat in btrfs_recover_relocation (bsc#1012628). - btrfs: don't clear ret in btrfs_start_dirty_block_groups (bsc#1012628). - btrfs: send: fix invalid clone operations when cloning from the same file and root (bsc#1012628). - fs: fix lazytime expiration handling in __writeback_single_inode() (bsc#1012628). - pinctrl: ingenic: Fix JZ4760 support (bsc#1012628). - mmc: core: don't initialize block size from ext_csd if not present (bsc#1012628). - mmc: sdhci-of-dwcmshc: fix rpmb access (bsc#1012628). - mmc: sdhci-xenon: fix 1.8v regulator stabilization (bsc#1012628). - mmc: sdhci-brcmstb: Fix mmc timeout errors on S5 suspend (bsc#1012628). - dm: avoid filesystem lookup in dm_get_dev_t() (bsc#1012628). - dm integrity: fix a crash if "recalculate" used without "internal_hash" (bsc#1012628). - dm integrity: conditionally disable "recalculate" feature (bsc#1012628). - drm/atomic: put state on error path (bsc#1012628). - drm/syncobj: Fix use-after-free (bsc#1012628). - drm/amdgpu: remove gpu info firmware of green sardine (bsc#1012628). - drm/amd/display: DCN2X Find Secondary Pipe properly in MPO + ODM Case (bsc#1012628). - drm/i915/gt: Prevent use of engine->wa_ctx after error (bsc#1012628). - drm/i915: Check for rq->hwsp validity after acquiring RCU lock (bsc#1012628). - ASoC: Intel: haswell: Add missing pm_ops (bsc#1012628). - ASoC: rt711: mutex between calibration and power state changes (bsc#1012628). - SUNRPC: Handle TCP socket sends with kernel_sendpage() again (bsc#1012628). - HID: multitouch: Enable multi-input for Synaptics pointstick/touchpad device (bsc#1012628). - HID: sony: select CONFIG_CRC32 (bsc#1012628). - dm integrity: select CRYPTO_SKCIPHER (bsc#1012628). - x86/hyperv: Fix kexec panic/hang issues (bsc#1012628). - scsi: ufs: Relax the condition of UFSHCI_QUIRK_SKIP_MANUAL_WB_FLUSH_CTRL (bsc#1012628). - scsi: ufs: Correct the LUN used in eh_device_reset_handler() callback (bsc#1012628). - scsi: qedi: Correct max length of CHAP secret (bsc#1012628). - scsi: scsi_debug: Fix memleak in scsi_debug_init() (bsc#1012628). - scsi: sd: Suppress spurious errors when WRITE SAME is being disabled (bsc#1012628). - riscv: Fix kernel time_init() (bsc#1012628). - riscv: Fix sifive serial driver (bsc#1012628). - riscv: Enable interrupts during syscalls with M-Mode (bsc#1012628). - HID: logitech-dj: add the G602 receiver (bsc#1012628). - HID: Ignore battery for Elan touchscreen on ASUS UX550 (bsc#1012628). - clk: tegra30: Add hda clock default rates to clock driver (bsc#1012628). - ALSA: hda/tegra: fix tegra-hda on tegra30 soc (bsc#1012628). - riscv: cacheinfo: Fix using smp_processor_id() in preemptible (bsc#1012628). - arm64: make atomic helpers __always_inline (bsc#1012628). - xen: Fix event channel callback via INTX/GSI (bsc#1012628). - x86/xen: Add xen_no_vector_callback option to test PCI INTX delivery (bsc#1012628). - x86/xen: Fix xen_hvm_smp_init() when vector callback not available (bsc#1012628). - dts: phy: fix missing mdio device and probe failure of vsc8541-01 device (bsc#1012628). - dts: phy: add GPIO number and active state used for phy reset (bsc#1012628). - riscv: defconfig: enable gpio support for HiFive Unleashed (bsc#1012628). - drm/amdgpu/psp: fix psp gfx ctrl cmds (bsc#1012628). - drm/amd/display: disable dcn10 pipe split by default (bsc#1012628). - HID: logitech-hidpp: Add product ID for MX Ergo in Bluetooth mode (bsc#1012628). - drm/amd/display: Fix to be able to stop crc calculation (bsc#1012628). - drm/nouveau/bios: fix issue shadowing expansion ROMs (bsc#1012628). - drm/nouveau/privring: ack interrupts the same way as RM (bsc#1012628). - drm/nouveau/i2c/gm200: increase width of aux semaphore owner fields (bsc#1012628). - drm/nouveau/mmu: fix vram heap sizing (bsc#1012628). - drm/nouveau/kms/nv50-: fix case where notifier buffer is at offset 0 (bsc#1012628). - io_uring: flush timeouts that should already have expired (bsc#1012628). - libperf tests: If a test fails return non-zero (bsc#1012628). - libperf tests: Fail when failing to get a tracepoint id (bsc#1012628). - RISC-V: Set current memblock limit (bsc#1012628). - RISC-V: Fix maximum allowed phsyical memory for RV32 (bsc#1012628). - x86/xen: fix 'nopvspin' build error (bsc#1012628). - nfsd: Fixes for nfsd4_encode_read_plus_data() (bsc#1012628). - nfsd: Don't set eof on a truncated READ_PLUS (bsc#1012628). - gpiolib: cdev: fix frame size warning in gpio_ioctl() (bsc#1012628). - pinctrl: aspeed: g6: Fix PWMG0 pinctrl setting (bsc#1012628). - pinctrl: mediatek: Fix fallback call path (bsc#1012628). - RDMA/ucma: Do not miss ctx destruction steps in some cases (bsc#1012628). - btrfs: print the actual offset in btrfs_root_name (bsc#1012628). - scsi: megaraid_sas: Fix MEGASAS_IOC_FIRMWARE regression (bsc#1012628). - scsi: ufs: ufshcd-pltfrm depends on HAS_IOMEM (bsc#1012628). - scsi: ufs: Fix tm request when non-fatal error happens (bsc#1012628). - crypto: omap-sham - Fix link error without crypto-engine (bsc#1012628). - bpf: Prevent double bpf_prog_put call from bpf_tracing_prog_attach (bsc#1012628). - powerpc: Use the common INIT_DATA_SECTION macro in vmlinux.lds.S (bsc#1012628). - powerpc: Fix alignment bug within the init sections (bsc#1012628). - arm64: entry: remove redundant IRQ flag tracing (bsc#1012628). - bpf: Reject too big ctx_size_in for raw_tp test run (bsc#1012628). - drm/amdkfd: Fix out-of-bounds read in kdf_create_vcrat_image_cpu() (bsc#1012628). - RDMA/umem: Avoid undefined behavior of rounddown_pow_of_two() (bsc#1012628). - RDMA/cma: Fix error flow in default_roce_mode_store (bsc#1012628). - printk: ringbuffer: fix line counting (bsc#1012628). - printk: fix kmsg_dump_get_buffer length calulations (bsc#1012628). - iov_iter: fix the uaccess area in copy_compat_iovec_from_user (bsc#1012628). - i2c: octeon: check correct size of maximum RECV_LEN packet (bsc#1012628). - drm/vc4: Unify PCM card's driver_name (bsc#1012628). - platform/x86: intel-vbtn: Drop HP Stream x360 Convertible PC 11 from allow-list (bsc#1012628). - platform/x86: hp-wmi: Don't log a warning on HPWMI_RET_UNKNOWN_COMMAND errors (bsc#1012628). - gpio: sifive: select IRQ_DOMAIN_HIERARCHY rather than depend on it (bsc#1012628). - ALSA: hda: Balance runtime/system PM if direct-complete is disabled (bsc#1012628). - xsk: Clear pool even for inactive queues (bsc#1012628). - selftests: net: fib_tests: remove duplicate log test (bsc#1012628). - can: dev: can_restart: fix use after free bug (bsc#1012628). - can: vxcan: vxcan_xmit: fix use after free bug (bsc#1012628). - can: peak_usb: fix use after free bugs (bsc#1012628). - perf evlist: Fix id index for heterogeneous systems (bsc#1012628). - i2c: sprd: depend on COMMON_CLK to fix compile tests (bsc#1012628). - iio: common: st_sensors: fix possible infinite loop in st_sensors_irq_thread (bsc#1012628). - iio: ad5504: Fix setting power-down state (bsc#1012628). - drivers: iio: temperature: Add delay after the addressed reset command in mlx90632.c (bsc#1012628). - iio: adc: ti_am335x_adc: remove omitted iio_kfifo_free() (bsc#1012628). - counter:ti-eqep: remove floor (bsc#1012628). - powerpc/64s: fix scv entry fallback flush vs interrupt (bsc#1012628). - cifs: do not fail __smb_send_rqst if non-fatal signals are pending (bsc#1012628). - irqchip/mips-cpu: Set IPI domain parent chip (bsc#1012628). - x86/fpu: Add kernel_fpu_begin_mask() to selectively initialize state (bsc#1012628). - x86/topology: Make __max_die_per_package available unconditionally (bsc#1012628). - x86/mmx: Use KFPU_387 for MMX string operations (bsc#1012628). - x86/setup: don't remove E820_TYPE_RAM for pfn 0 (bsc#1012628). - proc_sysctl: fix oops caused by incorrect command parameters (bsc#1012628). - mm: memcg/slab: optimize objcg stock draining (bsc#1012628). - mm: memcg: fix memcg file_dirty numa stat (bsc#1012628). - mm: fix numa stats for thp migration (bsc#1012628). - io_uring: iopoll requests should also wake task ->in_idle state (bsc#1012628). - io_uring: fix SQPOLL IORING_OP_CLOSE cancelation state (bsc#1012628). - io_uring: fix short read retries for non-reg files (bsc#1012628). - intel_th: pci: Add Alder Lake-P support (bsc#1012628). - stm class: Fix module init return on allocation failure (bsc#1012628). - serial: mvebu-uart: fix tx lost characters at power off (bsc#1012628). - ehci: fix EHCI host controller initialization sequence (bsc#1012628). - USB: ehci: fix an interrupt calltrace error (bsc#1012628). - usb: gadget: aspeed: fix stop dma register setting (bsc#1012628). - USB: gadget: dummy-hcd: Fix errors in port-reset handling (bsc#1012628). - usb: udc: core: Use lock when write to soft_connect (bsc#1012628). - usb: bdc: Make bdc pci driver depend on BROKEN (bsc#1012628). - usb: cdns3: imx: fix writing read-only memory issue (bsc#1012628). - usb: cdns3: imx: fix can't create core device the second time issue (bsc#1012628). - xhci: make sure TRB is fully written before giving it to the controller (bsc#1012628). - xhci: tegra: Delay for disabling LFPS detector (bsc#1012628). - drivers core: Free dma_range_map when driver probe failed (bsc#1012628). - driver core: Fix device link device name collision (bsc#1012628). - driver core: Extend device_is_dependent() (bsc#1012628). - drm/i915: s/intel_dp_sink_dpms/intel_dp_set_power/ (bsc#1012628). - drm/i915: Only enable DFP 4:4:4->4:2:0 conversion when outputting YCbCr 4:4:4 (bsc#1012628). - x86/entry: Fix noinstr fail (bsc#1012628). - x86/cpu/amd: Set __max_die_per_package on AMD (bsc#1012628). - cls_flower: call nla_ok() before nla_next() (bsc#1012628). - netfilter: rpfilter: mask ecn bits before fib lookup (bsc#1012628). - tools: gpio: fix %llu warning in gpio-event-mon.c (bsc#1012628). - tools: gpio: fix %llu warning in gpio-watch.c (bsc#1012628). - drm/i915/hdcp: Update CP property in update_pipe (bsc#1012628). - sh: dma: fix kconfig dependency for G2_DMA (bsc#1012628). - sh: Remove unused HAVE_COPY_THREAD_TLS macro (bsc#1012628). - locking/lockdep: Cure noinstr fail (bsc#1012628). - ASoC: SOF: Intel: fix page fault at probe if i915 init fails (bsc#1012628). - octeontx2-af: Fix missing check bugs in rvu_cgx.c (bsc#1012628). - net: dsa: mv88e6xxx: also read STU state in mv88e6250_g1_vtu_getnext (bsc#1012628). - selftests/powerpc: Fix exit status of pkey tests (bsc#1012628). - sh_eth: Fix power down vs. is_opened flag ordering (bsc#1012628). - nvme-pci: refactor nvme_unmap_data (bsc#1012628). - nvme-pci: fix error unwind in nvme_map_data (bsc#1012628). - cachefiles: Drop superfluous readpages aops NULL check (bsc#1012628 bsc#1175245). - lightnvm: fix memory leak when submit fails (bsc#1012628). - skbuff: back tiny skbs with kmalloc() in __netdev_alloc_skb() too (bsc#1012628). - kasan: fix unaligned address is unhandled in kasan_remove_zero_shadow (bsc#1012628). - kasan: fix incorrect arguments passing in kasan_add_zero_shadow (bsc#1012628). - tcp: fix TCP socket rehash stats mis-accounting (bsc#1012628). - net_sched: gen_estimator: support large ewma log (bsc#1012628). - udp: mask TOS bits in udp_v4_early_demux() (bsc#1012628). - ipv6: create multicast route with RTPROT_KERNEL (bsc#1012628). - net_sched: avoid shift-out-of-bounds in tcindex_set_parms() (bsc#1012628). - net_sched: reject silly cell_log in qdisc_get_rtab() (bsc#1012628). - ipv6: set multicast flag on the multicast route (bsc#1012628). - net: mscc: ocelot: allow offloading of bridge on top of LAG (bsc#1012628). - net: Disable NETIF_F_HW_TLS_RX when RXCSUM is disabled (bsc#1012628). - net: dsa: b53: fix an off by one in checking "vlan->vid" (bsc#1012628). - tcp: do not mess with cloned skbs in tcp_add_backlog() (bsc#1012628). - tcp: fix TCP_USER_TIMEOUT with zero window (bsc#1012628). - net: mscc: ocelot: Fix multicast to the CPU port (bsc#1012628). - net: core: devlink: use right genl user_ptr when handling port param get/set (bsc#1012628). - pinctrl: qcom: Allow SoCs to specify a GPIO function that's not 0 (bsc#1012628). - pinctrl: qcom: No need to read-modify-write the interrupt status (bsc#1012628). - pinctrl: qcom: Properly clear "intr_ack_high" interrupts when unmasking (bsc#1012628). - pinctrl: qcom: Don't clear pending interrupts when enabling (bsc#1012628). - x86/sev: Fix nonistr violation (bsc#1012628). - tty: implement write_iter (bsc#1012628). - tty: fix up hung_up_tty_write() conversion (bsc#1012628). - net: systemport: free dev before on error path (bsc#1012628). - x86/sev-es: Handle string port IO to kernel memory properly (bsc#1012628). - tcp: Fix potential use-after-free due to double kfree() (bsc#1012628). - ASoC: SOF: Intel: hda: Avoid checking jack on system suspend (bsc#1012628). - drm/i915/hdcp: Get conn while content_type changed (bsc#1012628). - bpf: Local storage helpers should check nullness of owner ptr passed (bsc#1012628). - kernfs: implement ->read_iter (bsc#1012628). - kernfs: implement ->write_iter (bsc#1012628). - kernfs: wire up ->splice_read and ->splice_write (bsc#1012628). - interconnect: imx8mq: Use icc_sync_state (bsc#1012628). - fs/pipe: allow sendfile() to pipe again (bsc#1012628). - Commit 9bb48c82aced ("tty: implement write_iter") converted the tty layer to use write_iter. Fix the redirected_tty_write declaration also in n_tty and change the comparisons to use write_iter instead of write. also in n_tty and change the comparisons to use write_iter instead of write (bsc#1012628). - mm: fix initialization of struct page for holes in memory layout (bsc#1012628). - Revert "mm: fix initialization of struct page for holes in memory layout" (bsc#1012628). - Delete patches.suse/fs-cachefs-Drop-superfluous-readpages-aops-NULL-chec.patch. - commit 7d05541 - ALSA: hda/via: Apply the workaround generically for Clevo machines (bsc#1181330). - commit 87d962b - Linux 5.10.10 (bsc#1012628). - spi: cadence: cache reference clock rate during probe (bsc#1012628). - spi: fsl: Fix driver breakage when SPI_CS_HIGH is not set in spi->mode (bsc#1012628). - cxgb4/chtls: Fix tid stuck due to wrong update of qid (bsc#1012628). - net: dsa: unbind all switches from tree when DSA master unbinds (bsc#1012628). - mac80211: check if atf has been disabled in __ieee80211_schedule_txq (bsc#1012628). - mac80211: do not drop tx nulldata packets on encrypted links (bsc#1012628). - drm/panel: otm8009a: allow using non-continuous dsi clock (bsc#1012628). - can: mcp251xfd: mcp251xfd_handle_rxif_one(): fix wrong NULL pointer check (bsc#1012628). - net: stmmac: use __napi_schedule() for PREEMPT_RT (bsc#1012628). - rxrpc: Fix handling of an unsupported token type in rxrpc_read() (bsc#1012628). - net: dsa: clear devlink port type before unregistering slave netdevs (bsc#1012628). - net: phy: smsc: fix clk error handling (bsc#1012628). - dt-bindings: net: renesas,etheravb: RZ/G2H needs tx-internal-delay-ps (bsc#1012628). - net: avoid 32 x truesize under-estimation for tiny skbs (bsc#1012628). - net: stmmac: fix taprio configuration when base_time is in the past (bsc#1012628). - net: stmmac: fix taprio schedule configuration (bsc#1012628). - net: sit: unregister_netdevice on newlink's error path (bsc#1012628). - net: stmmac: Fixed mtu channged by cache aligned (bsc#1012628). - i40e: fix potential NULL pointer dereferencing (bsc#1012628). - rxrpc: Call state should be read with READ_ONCE() under some circumstances (bsc#1012628). - net: dcb: Accept RTM_GETDCB messages carrying set-like DCB commands (bsc#1012628). - net: dcb: Validate netlink message in DCB handler (bsc#1012628). - esp: avoid unneeded kmap_atomic call (bsc#1012628). - rndis_host: set proper input size for OID_GEN_PHYSICAL_MEDIUM request (bsc#1012628). - net: mvpp2: Remove Pause and Asym_Pause support (bsc#1012628). - mlxsw: core: Increase critical threshold for ASIC thermal zone (bsc#1012628). - mlxsw: core: Add validation of transceiver temperature thresholds (bsc#1012628). - tipc: fix NULL deref in tipc_link_xmit() (bsc#1012628). - net: ipv6: Validate GSO SKB before finish IPv6 processing (bsc#1012628). - netxen_nic: fix MSI/MSI-x interrupts (bsc#1012628). - udp: Prevent reuseport_select_sock from reading uninitialized socks (bsc#1012628). - net: fix use-after-free when UDP GRO with shared fraglist (bsc#1012628). - net: ipa: modem: add missing SET_NETDEV_DEV() for proper sysfs links (bsc#1012628). - bpf: Fix helper bpf_map_peek_elem_proto pointing to wrong callback (bsc#1012628). - bpf: Support PTR_TO_MEM{,_OR_NULL} register spilling (bsc#1012628). - bpf: Don't leak memory in bpf getsockopt when optlen == 0 (bsc#1012628). - nfsd4: readdirplus shouldn't return parent of export (bsc#1012628). - X.509: Fix crash caused by NULL pointer (bsc#1012628). - bpf: Fix signed_{sub,add32}_overflows type handling (bsc#1012628). - drm/amdgpu/display: drop DCN support for aarch64 (bsc#1012628). - Update config files. - x86/hyperv: Initialize clockevents after LAPIC is initialized (bsc#1012628). - bpf: Fix selftest compilation on clang 11 (bsc#1012628). - Revert "kconfig: remove 'kvmconfig' and 'xenconfig' shorthands" (bsc#1012628). - commit 167b75d - drm/gpu/nouveau/dispnv50: Restore pushing of all data (boo#1181271). - commit c3f7185 - media: pwc: Fix the URB buffer allocation (bsc#1181133). - commit a9c85b1 - media: dvb-usb: Fix use-after-free access (bsc#1181104). - media: dvb-usb: Fix memory leak at error in dvb_usb_device_init() (bsc#1181104). - commit 807ed8c ==== kmod ==== Version update (27 -> 28) Subpackages: libkmod2 - Supplement bash-completion subpackage against the main package and bash-completion. - Also require the main package plus bash-completion: the completion package is useless without either of the two. - Update to v28 * Add Zstandard to the supported compression formats using libzstd (tests only - cannot be disabled in tests) * Ignore ill-formed kernel command line, e.g. with "ivrs_acpihid[00:14.5]=AMD0020:0" option in it * Fix some memory leaks * Fix 0-length builtin.alias.bin: it needs at least the index header - Backport upstream fix 0001-Fix-modinfo-F-always-shows-name-for-built-ins.patch ==== libXt ==== Version update (1.2.0 -> 1.2.1) - update to 1.2.1: * _XtCalloc actually uses a Cardinal, not size_t * add errorhandling to _XtVaToTypedArgList() * refactoring, reduce indent level * work within existing interface which attempts to obtain the display-pointer from the screen-pointer but fails when the screen-pointer itself is invalid. Ensure that the screen-pointer is valid by checking the default_screen value against the valid range, and forcing it to zero if it is out of bounds. * indent ==== libdrm ==== Version update (2.4.103 -> 2.4.104) Subpackages: libdrm2 libdrm_amdgpu1 libdrm_intel1 libdrm_nouveau2 libdrm_radeon1 - reenabled build of manual pages (switch from xsltproc to rst2man) - update to 2.4.104: * headers: drm: Sync with drm-next * Remove outdated comments about stdint.h * Remove definitions duplicated from drm_mode.h * xf86drmMode.h use ANSI C99 arrays * Document drmModeConnection * man: convert to reSTructuredText * testsuite fixes ==== libqt5-qtwebengine ==== - Bump _constraints and %limit_build, hopefully avoid occasional OOM and make the build quicker - Drop obsolete conditions ==== librsvg ==== Version update (2.50.2 -> 2.50.3) Subpackages: gdk-pixbuf-loader-rsvg librsvg-2-2 rsvg-thumbnailer typelib-1_0-Rsvg-2_0 - Update to version 2.50.3: + Compute correct bounds for objects with stroke-width=0. + Fix test suite on Rust 1.49. ==== libunwind ==== Version update (1.4.0 -> 1.5.0) - update to 1.5.0: * dwarf: clang doesn't respect the static alias * Fixed a missing dependency in dwarf-eh.h * x86_64: Fix tdep_init_done when built with libatomic_ops * mips: make _step_n64 as a static function * Added braces to suppress empty if/else warnings * Delete hardcode of address size to support MIPS64. * Fix format specifier for int64_t:29 * Add initial support for Solaris x86-64 * x86_64: Add fixup code if previous RIP was invalid * x86-64: make `is_cached_valid_mem` functional * arm: clear ip thumb/arm mode bit before move to previous instruction * Fix compilation with -fno-common. * Fix off-by-one error in x86_64 stack frames * aarch64: Fix __sigset build issue on muslC * Make SHF_COMPRESSED use contingent on its existence - remove libunwind_U_dyn_info_list.patch (upstream) ==== openssh ==== Subpackages: openssh-clients openssh-common openssh-server - Add support for /etc/ssh/ssh_config.d and /etc/ssh/sshd_config.d (openssh-8.4p1-ssh_config_d.patch) ==== pangomm1_4 ==== Version update (2.42.2 -> 2.46.0) - Update to version 2.46.0: + Attribute: Add Overline and ShowFlags enums and some create*() methods. + Font, FontFace, FontFamily, FontMetrics: Add new methods. + LayoutIter: Fix get_run(). + LayoutRun: - Fix a memory leak in split(). - Make most methods public. + GlyphString, Item: Wrap pango_shape_with_flags(). + Layout: - Add set/get_line_spacing(). - Add get_const_line() and get_const_lines(). + Coverage: Deprecate create(bytes, n_bytes), max(), to_bytes(). + Build: Requires pango >= 1.45.1 because of Overline. ==== permissions ==== Version update (1550_20201111 -> 1550_20210125) Subpackages: chkstat permissions-config - Update to version 20210125: * usbauth: drop compatibility variable for libexec * usbauth: Updated path for usbauth-npriv * profiles: finish usage of variable for polkit-agent-helper-1 ==== pinentry ==== Version update (1.1.0 -> 1.1.1) Subpackages: pinentry-qt5 - actually build efl based pinentry - re-enable validation of upstream signing key - update to 1.1.1: * A EFL-based pinentry has been contributed. * Disable echoing in backspace key is pressed first (GTK, Qt, TQt, and ncurses pinentries). * Support line editing in TTY pinentry. * Remove support for old GTK+2 (< 2.12.0). * Various minor fixes. - drop pinentry-qt-Fix-use-of-dangling-pointer.patch (upstream) - drop pinentry-ncurses6.diff: obsolete ==== pipewire ==== Version update (0.3.15 -> 0.3.20) Subpackages: gstreamer-plugin-pipewire libpipewire-0_3-0 pipewire-modules pipewire-spa-plugins-0_2 pipewire-spa-tools pipewire-tools - Add pkgconfig(ldacBT-abr) and pkgconfig(ldacBT-enc) BuildRequires: Build bluetooth ldac codec support. - Update to version 0.3.20: * Highlights + Latency was reduced in ALSA and PulseAudio and time reporting has improved a lot. + Bluetooth now has a native HFP backed, SBC XQ and mSBC support. + Many bugfixes and improvements, improved device support. * PipeWire improvements + pw-dump can now dump all objects such as Endpoints + pw-dump has a -m option to monitor changes + pw-dump can now dump metadata + pw-stream can now use the rate-match io to exactly produce the required number of samples for the current cycle. When using this feature, a stream can achieve the same low-latency as pw-filter. + spa-acp-tool can now load a custom profile-set and correctly parses the volume updates + There is now a nofail option when loading modules + The connection has been made reentrant to fix some strange random problems with metadata. + Turn some errors into warnings or simply info. + Executables are now built with PIE + S24OE formats should work now (MAudio FastTrack Pro) + Remove mlock warnings. Add support for mlockall with a config option. * Session-manager + There are now config files for bluez and v4l2 modules + Improve ALSA device and node properties + Bluetooth devices have better properties now. + The default device routing has been improved. * Device support + Port priorities are updated for UCM devices + ACP devices notify change in routes in all cases + There is now RW support in ALSA devices to increase compatibility. + Many improvements to Bluetooth. SBC XQ support can now be enabled with a config option. mSBC can be enabled with an option. + Bluetooth devices not expose Routes so that they look more like how PulseAudio handles them + Gracefully handle missing profile-sets + There is now a native HFP backend + Improve card names in some cases. + pause-on-idle is now disabled for ALSA devices. This can reduce pops and clicks when the device is stopped. * ALSA plugin + Use rate-match to reduce the latency + Implement a _delay() function to get smoother timestamps. + Fix property parsing. Fixes volume changes in alsamixer. * PulseAudio server + Use rate-match to reduce the latency. This also reduces the buffering in audioconvert and improves timestamp reporting. + Implement rate changes now that we have rate-match support. + pactl stats will now work + Fix excessive memory usage when a capture client doesn't read fast enough. - Update to version 0.3.19: * Highlights - Startup after login should be fixed now with inotify used to wait for permissions. - Channels should be mapped correctly now. - Many bluetooth improvements in LDAC, AptX-HD. AAC was also added. Headsets should work better now. - pipewire-libpulse was removed. It is now completely replaced by pipewire-pulse. - Fix a crasher bug in pipewire-pulse and some memory leaks. - Fix a bug with feedback loop that would cause 100% CPU. - A new pw-top tool to display real-time graph performance. - The example session manager now has config files. - The config file format was changed to use the SPA JSON tokenizer. This makes it more flexible and extensible. * PipeWire improvements - Fix debug of id in format channels - Audioconvert should now remap channels correctly in all cases. - Feedback loops were not scheduled correctly and would cause 100% CPU usage. - Small improvements to the profiler to also log incomplete graph status. - a new tool pw-top was added that prints real-time performance stats of the graph. - the rtkit module now sets the nice level to -11 * Session-manager - The session manager would sometimes link dont-reconnect nodes to another node, which would leak monitor streams in pipewire-pulse. - The session manager now has configuration files. Config files can also be placed in the user home directory to make custom configurations. - The session managers now creates unique device and node names for alsa and v4l2 devices. * Device support - Many improvements in Bluetooth codecs, LDAC stuttering, AptX-HD negotiation, LDAC ABR support - Bluetooth supports AAC audio now. - Many fixes to Bluetooth SCO transport used in headsets. - inotify support in device monitors - ACP was synced with the latest pulseaudio code - Fix a bug in enumeration of device ports. - PulseAudio server - seek flags and offset are now supported, making gstreamer pulse elements work better. - Fix a crasher bug in pipewire-pulse, we sometimes would write too much to the ringbuffer - Fix some memory leaks in error cases. - Fix handling of NULL string to locate default sink/source * JACK layer - Ports can also be found with the aliases now, making qjackctl work in more cases. - Changes from PipeWire 0.3.18: * Highlights - More work in the PulseAudio server. It should be compatible with more applications. - Bluetooth now support extra codecs such as AptX/HD and LDAC. - Support for virtual sources and sink was improved a lot. - Added a new pw-dump tool to dump the objects in JSON formats and for filtering them with tools like jq. - Many more stability fixes and improvements. * PipeWire improvements - Silence some harmless warnings - pw-cli can now be used to set parameters. - Streams now perform the correct channel mapping when linked to non-standard multichannel devices. Previously channels would get swapped. - port, node and device params are now cached in the server. This avoids opening and closing devices whenever some client enumerates formats, which improves performance a lot, especially in cases where opening a device is slow. - Add a command to keep a device open during negotiation. This is used to enumerate and set a format while opening the device just once, improving performance. - The null-sink scheduling was fixed. - A memory corruption bug was fixed in format conversion, this could cause crashes, silent channels or other undefined behaviour. - There is now a simple JSON parser. * Session-manager - Settings files are now stored in JSON. With the json parser this is easier to parse and extend * Device support - Bluetooth now supports additional codecs: LDAC, AptX and AptX HD. LDAC is known to not work very well yet. - ALSA devices will now default to the max supported channels if nothing else is specified. This makes it possible to use 8+ channel cards with the alsa-pcm module, which is not supported with the default alsa-acp module. - Enable mSBC support in oFono. - Add an option to disable hardware mixers - ALSA now improves support for batch devices. - The udev rules had references to Pulseaudio removed in order to not create conflicts. - Fix a potential crash in bluetooth devices when disconnecting. - UCM cards now use HW volume when possible. * PulseAudio server - The id can now be used as the name to locate cards and devices - Report streams with planar formats as well - Better error reporting when stream create fails - module-null-sink can now handle channels, rate and channel_map properties - Add support for 3 types of virtual devices: source, sink and duplex. - set-port was fixed - Some buffer parameters were tweaked to improve performance, compatibility and stuttering with lower latency. - NULL can be used as a name for the device sink/source - Support lookup of monitor names - Set properties more like pulseaudio so that some clients (Teamspeak) don't crash anymore - Changes from PipeWire 0.3.17: * Highlights - Fix crasher bug for kwin when screensharing stopped. - Massive improvements and compatibility fixes in the PulseAudio server. - The session manager now has a config directory in /etc/pipewire/media-session.d/ It will look for files there to activate session manager modules. Packagers can use this to only activate the audio modules when the PulseAudio server, libjack.so or the alsa modules are installed. * PipeWire improvements - We now clear hooks before adding them. Some application did not clear them and had random data for the destroy callback. - Return -ENOENT from unknown resources so apps can handle this better. It's a common problem when an app tries to introspect and object but it disappeared before the message reached the server. Apps should ignore this. - channelmap information is now passed with the volume settings. - DMABuf is not mmapp()ed anymore with the FLAG_MAP_BUFFERS in the stream or filter. This is because DMABuf usually requires more that just a simple mmap and is better left for the application. - increase the maximum number of ports for a client-node. - adapter and node-factory now support the linger option to keep the objects alive after the creating client disconnected. * Device support - ALSA now handles error in close(), like when unplugging a USB device. * Session-manager - The session manager is now handling DONT_RECONNECT streams without a target node. They get connected to a default node once and then fail to reconnect. - The session manager now exposes the stream setting as metadata. This makes it possible for other components, such as pulse-server to use this information. Information is stored as a json object for easier consumption. - The session manager now has a config directory in /etc/pipewire/media-session.d/ packagers can use this * PulseAudio server - Pulse server now acquire the dbus name. - Improvements in timing and compatibility with many apps. - The stream-restore extension is now implemented so that the event volume can be configured. - Many stability fixes and improvements. - Fix some issues with module-load/unload - Changes from PipeWire 0.3.16: * Highlights - Fix screensharing for old 0.2 clients - Many pulse-server improvements. There is now a pipewire-pulse binary that is the prefered solution for PulseAudio compatibility. The replacement libpulse libraries are now deprecated. This also makes audio in Flatpak work. * PipeWire improvements - Fix cleanup of listeners everywhere. Force remove of listeners in _destroy to avoid crashes. - Add support for a journald logger module. - Various memory leak fixes - Silence some warnings that spammed the logs. - Fix flush in pw_stream. This fixes small glitches when switching streams in music players. - Various FreeBSD fixes and improvements. - Fix some crashes when destroying objects. * Device support - Reload the ALSA configuration when creating a node so that hotplugged devices work in all cases. - Fix memory leaks in ACP library. This also fixes issues where the mixer device was not closed. - Bluetooth now has support for the mSBC codec for SCO source and sink. * pulse-server - Many introspection and compatibility improvements. It should now be as good or better than the replacement library. - Implement sample cache to make notification events work. * JACK layer - handle errors when linking, fixes jack_connect hang when the ports were already linked. - Drop patches do-not-use-snd_pcm_ioplug_hw_avail.patch and fix-memfd_create-call.patch, no longer needed on SLE/Leap which have updated glibc / alsa. - Drop do-not-install-alsa-config-files.patch, remove files at install time instead. - pw-pulse wrapper is gone, remove all mentions of it. - Package pulseaudio replacement in a subpackage and drop pipewire-libpulse-0_3 (pipewire will use pulseaudio libraries directly). - Create an alsa subpackage and move alsa pipewire plugin to this subpackage. ==== pulseaudio ==== Version update (14.0 -> 14.2) Subpackages: libpulse-mainloop-glib0 libpulse0 pulseaudio-module-bluetooth pulseaudio-module-gsettings pulseaudio-module-x11 pulseaudio-module-zeroconf pulseaudio-utils - Drop the bad patch: pulseaudio-wrong-memset.patch the patch has been wrongly refreshed, mutated into a harmful form. The original bug has been already fixed in the upstream commit 764eabd10. - Supplement pulseaudio-bash-completion against bash-completion, not bash. - Disable LTO on armv7 as it breaks the build - udpate to 14.2: * Support upto 8 mixer channels on ALSA devices * Handle ALSA jacks with the same name but different index values * Switch to plugged-in headset when mic availability is unknown * Fix a potential segfault in the Bluetooth oFono HFP backend * Fix a problem with module-ladspa-sink when avoid-resampling=true * Update to the NEWS file for 14.0 (and 14.1) * Fix database names containing canonical host for meson builds ==== python-PyYAML ==== Version update (5.3.1 -> 5.4.1) - update to 5.4.1 (bsc#1174514, CVE-2020-14343): * Fix stub compat with older pyyaml versions that may unwittingly load it * Build modernization, remove distutils, fix metadata, build wheels, CI to GHA * Fix for CVE-2020-14343, moves arbitrary python tags to UnsafeLoader * Fix memory leak in implicit resolver setup * Fix py2 copy support for timezone objects * Fix compatibility with Jython ==== python-importlib-metadata ==== Version update (3.3.0 -> 3.4.0) - update to 3.4.0: * Project now declares itself as being typed. * Additional performance enhancements to distribution discovery. * For PyPA projects, add test ensuring that ``MetadataPathFinder._search_paths`` honors the needed interface. Method is still private. ==== python-networkx ==== - Temporarily reenable python36 build until SciPy is updated, because the PyYAML fix needs to be merged first - Add yaml-loader.patch adding support for new PyYAML - Skip python36 because of SciPy 1.6.0 ==== python-packaging ==== Version update (20.4 -> 20.8) - update to 20.8: * Revert back to setuptools for compatibility purposes for some Linux distros (:issue:`363`) * Do not insert an underscore in wheel tags when the interpreter version number is more than 2 digits (:issue:`372`) * Fix flit configuration, to include LICENSE files (:issue:`357`) * Make `intel` a recognized CPU architecture for the `universal` macOS platform tag (:issue:`361`) * Add some missing type hints to `packaging.requirements` (issue:`350`) * Officially support Python 3.9 (:issue:`343`) * Deprecate the ``LegacyVersion`` and ``LegacySpecifier`` classes (:issue:`321`) * Handle ``OSError`` on non-dynamic executables when attempting to resolve the glibc version string. ==== python-psutil ==== Version update (5.7.3 -> 5.8.0) - Do not install tests (and change the way they're run since they were run from %{buildroot}) - Add patch to skip tests related to rlimit and zombie processes that fail when building for python2 on i586: * skip_rlimit_tests_on_python2.patch - update to 5.8.0: * Enhancements: - 1863: disk_partitions() exposes 2 extra fields: maxfile and maxpath, which are the maximum file name and path name length. - 1872: [Windows] added support for PyPy 2.7. - 1879: provide pre-compiled wheels for Linux and macOS. - 1880: get rid of Travis and Cirrus CI services (they are no longer free). CI testing is now done by GitHub Actions on Linux, macOS and FreeBSD (yes). AppVeyor is still being used for Windows CI. * Bug fixes: - 1708: [Linux] get rid of sensors_temperatures() duplicates. (patch by Tim Schlueter). - 1839: [Windows] always raise AccessDenied when failing to query 64 processes from 32 bit ones (NtWoW64 APIs). - 1866: [Windows] process exe(), cmdline(), environ() may raise "invalid access to memory location" on Python 3.9. - 1874: [Solaris] wrong swap output given when encrypted column is present. - 1875: [Windows] process username() may raise ERROR_NONE_MAPPED if the SID has no corresponding account name. In this case AccessDenied is now raised. - 1877: [Windows] OpenProcess may fail with ERROR_SUCCESS. Turn it into AccessDenied or NoSuchProcess depending on whether the PID is alive. - 1886: [macOS] EIO error may be raised on cmdline() and environment(). Now it gets translated into AccessDenied. - 1891: [macOS] get rid of deprecated getpagesize(). - Rebase patch and skip three other tests that fail on obs * skip-obs.patch ==== python-urllib3 ==== Version update (1.26.2 -> 1.26.3) - update to 1.26.3: * Fixed bytes and string comparison issue with headers (Pull #2141) * Changed ``ProxySchemeUnknown`` error message to be more actionable if the user supplies a proxy URL without a scheme. (Pull #2107) ==== python38 ==== Version update (3.8.6 -> 3.8.7) - Add CVE-2021-3177-buf_ovrfl_PyCArg_repr.patch fixing bsc#1181126 (CVE-2021-3177) buffer overflow in PyCArg_repr in _ctypes/callproc.c, which may lead to remote code execution. - (bsc#1180125) We really don't Require python-rpm-macros package. Unnecessary dependency. - Update to 3.8.7: - bugfix release - multiple patches realigned: - F00102-lib64.patch - SUSE-FEDORA-multilib.patch - bpo-31046_ensurepip_honours_prefix.patch - skip_random_failing_tests.patch - Last try before this results in an editwar: * remove importlib_resources and importlib-metadata provides/obsoletes * import importlib_resources is not the same as import importlib.resources, same for metadata * The backport packages from PyPI needed for older flavors are specified as such for setuptools or in pyproject.toml. If a package requires them they typically add them with a python version qualifier and the packages have their own version numbers. - Add patch sphinx-update-removed-function.patch to no longer call a now removed function and to make documentation build independent of the Sphinx version (bsc#1179630, gh#python/cpython#13236). - Add importlib_resources provide/obsolete as it is integral part of the lang since 3.7 release ==== python38-core ==== Version update (3.8.6 -> 3.8.7) Subpackages: libpython3_8-1_0 python38-base - Add CVE-2021-3177-buf_ovrfl_PyCArg_repr.patch fixing bsc#1181126 (CVE-2021-3177) buffer overflow in PyCArg_repr in _ctypes/callproc.c, which may lead to remote code execution. - (bsc#1180125) We really don't Require python-rpm-macros package. Unnecessary dependency. - Update to 3.8.7: - bugfix release - multiple patches realigned: - F00102-lib64.patch - SUSE-FEDORA-multilib.patch - bpo-31046_ensurepip_honours_prefix.patch - skip_random_failing_tests.patch - Last try before this results in an editwar: * remove importlib_resources and importlib-metadata provides/obsoletes * import importlib_resources is not the same as import importlib.resources, same for metadata * The backport packages from PyPI needed for older flavors are specified as such for setuptools or in pyproject.toml. If a package requires them they typically add them with a python version qualifier and the packages have their own version numbers. - Add patch sphinx-update-removed-function.patch to no longer call a now removed function and to make documentation build independent of the Sphinx version (bsc#1179630, gh#python/cpython#13236). - Add importlib_resources provide/obsolete as it is integral part of the lang since 3.7 release ==== rpm ==== - Add explicit requirement on python-rpm-macros to avoid widespread breakage by package mistakenly ignoring their requirement of python-rpm-macros (bsc#1180125). ==== supportutils ==== - Require the awk, which and sed commands instead of packages to allow alternate implementations on embedded/Edge systems ==== timezone ==== Version update (2020f -> 2021a) - timezone update 2021a (bsc#1177460) * South Sudan changes from +03 to +02 on 2021-02-01 at 00:00. ==== toolbox ==== Version update (1.0+git20210119.b5acdcf -> 2.0+git20210125.50611db) - Update to version 2.0+git20210125.50611db: * Document configuration files, add /usr/etc/toolboxrc * Update README to include commands * Update the README * Be even more compatible with Silverblue Toolbox * Introduce commands, for compatibility with Silverblue's toolbox * Mount /run/media and and /tmp inside a user toolbox * Export more env variables inside (user) toolboxes ==== tpm2-0-tss ==== Version update (3.0.1 -> 3.0.3) Subpackages: libtss2-esys0 libtss2-mu0 libtss2-rc0 libtss2-sys1 - update to 3.0.3: - changes in 3.0.3: * Fix Regression in Fapi_List * Fix memory leak in policy calculation - changes in 3.0.2: * FAPI: Fix setting of the system flag of NV objects * This will let NV object metadata be created system-wide always instead of * locally in the user. Existing metadata will remain in the user directory. * It can be moved to the corresponding systemstore manually if needed. * FAPI: Fix policy searching, when a policyRef was provided * FAPI: Accept EK-Certs without CRL dist point * FAPI: Fix return codes of Fapi_List * FAPI: Fix memleak in policy execution * FAPI: Fix coverity NULL-pointer check * FAPI: Set the written flag of NV objects in FAPI PolicyNV commands * FAPI: Fix deleting of policy files. * FAPI: Fix wrong file loading during object search. * Fapi: Fix memory leak * Fapi: Fix potential NULL-Dereference * Fapi: Remove superfluous NULL check * Fix a memory leak in async keystore load. ==== util-linux ==== Version update (2.35.1 -> 2.36.1) Subpackages: libblkid1 libfdisk1 libmount1 libsmartcols1 libuuid1 - Do not require libeconf-devel on products without /usr/etc. - s/--enable-vendordir/--with-vendordir/ - remove pam_securetty line again. As long as there is no agreement from pam side having it would fail openQA (boo#1033626) - Update to version 2.36.1: * chrt: use SCHED_FLAG_RESET_ON_FORK for sched_setattr() * fallocate: fix --dig-holes at end of files * fdisk: always report fdisk_create_disklabel() errors * flock: keep -E exit status more restrictive * fstrim: remove fstab condition from fstrim.timer * hexdump: automatically use -C when called as hd * hwclock: add fallback if SYS_settimeofday does not exist, fix SYS_settimeofday fallback * libblkid: allow a lot of mac partitions, fix Atari prober logic, limit amount of parsed partitions * more libfdisk improvements * losetup: avoid infinite busy loop, increase limit of setup attempts * lsblk: fix -T optional argument, fix SCSI_IDENT_SERIAL, print zero rather than empty SIZE, read ID_SCSI_IDENT_SERIAL if available * lscpu: Add FUJITSU aarch64 A64FX cpupart, Even more Arm part numbers, avoid segfault on PowerPC systems with valid hardware configurations (bsc#1175623) * mount: Add support for "nosymfollow" mount option. * pg: fix wcstombs() * sfdisk: correct --json --dump false exclusive, fix backward - -move-data * vipw: fix short write handling in copyfile * whereis: fix out of boundary read, support zst compressed man pages * minor code improvements and fixes * minor licensing changes * improve docs - Require both group(uuidd) and user(uuidd). - Do search /usr/sbin for mount helpers. (This drops /sbin/fs, /sbin/fs.d, which we do not use in openSUSE.) - prepare usrmerge (boo#1029961) - Modernize patch util-linux-sulogin4bsc1175514.patch * Try to autoconfigure broken serial lines - Add patch util-linux-sulogin4bsc1175514.patch Avoid sulogin failing on not existing or not functional console devices (bsc#1175514) - Fix default permissions of wall and write. - Update to version 2.36: * blkdiscard(8) refuses to proceed if filesystem or RAID signatures are found in interactive mode (executed on a terminal). The option --force is required to the discard data. * new commands irqtop(1) and lsirq(1)to monitor kernel interrupts. * cal(1) provides a new --vertical command line option. * blkzone(8) implements open/close/finish commands now. * unshare(1) and nsenter(1) commands support the time namespace now. * agetty(8) now supports multiple paths in the option - -issue-file. * fdisk(8), sfdisk(8), cfdisk(8), mkswap(8) and wipefs(8) now support block devices locking by flock(2), new command line option --lock and $LOCK_BLOCK_DEVICE environmental variable. * dmesg(1) new command line option --follow-new to wait and print only new kernel messages. * fdisk(8) new command line option --list-details and - -noauto-pt. * fdisk(8) and sfdisk(8) support user-friendly aliases for partition types. * fstrim(8) supports new command line option --listed-in. * libfdisk provides API to relocate GPT backup header. New command line option "sfdisk --relocate". * mount(8) now supports mount by ID= tag. * login(1) supports list of "message of the day". * All tools which read /etc/login.defs is possible to compile with libeconf now. * more(1) has been refactored. * man pages cleanup * other fixes and improvements, see: https://mirrors.edge.kernel.org/pub/linux/utils/util-linux/v2.36/v2.36-Rele… - Refresh Add-documentation-on-blacklisted-modules-to-mount-8-.patch. - Drop upstreamed libeconf.patch, libmount-Avoid-triggering-autofs-in-lookup_umount_fs.patch. - util-linux-login_defs-check.sh: Perform all steps to integrate MOTD_FIRSTONLY. - Update baselibs.conf. - Use plain #!/bin/sh for flushb - Include pam_securetty in login.pamd again (bsc#1033626) - Update to 2.35.2 * make glibc 2.31 compatible - Dropped unneeded patch libfdisk-script-accept-sector-size.patch ==== util-linux-systemd ==== Version update (2.35.1 -> 2.36.1) - Do not require libeconf-devel on products without /usr/etc. - s/--enable-vendordir/--with-vendordir/ - remove pam_securetty line again. As long as there is no agreement from pam side having it would fail openQA (boo#1033626) - Update to version 2.36.1: * chrt: use SCHED_FLAG_RESET_ON_FORK for sched_setattr() * fallocate: fix --dig-holes at end of files * fdisk: always report fdisk_create_disklabel() errors * flock: keep -E exit status more restrictive * fstrim: remove fstab condition from fstrim.timer * hexdump: automatically use -C when called as hd * hwclock: add fallback if SYS_settimeofday does not exist, fix SYS_settimeofday fallback * libblkid: allow a lot of mac partitions, fix Atari prober logic, limit amount of parsed partitions * more libfdisk improvements * losetup: avoid infinite busy loop, increase limit of setup attempts * lsblk: fix -T optional argument, fix SCSI_IDENT_SERIAL, print zero rather than empty SIZE, read ID_SCSI_IDENT_SERIAL if available * lscpu: Add FUJITSU aarch64 A64FX cpupart, Even more Arm part numbers, avoid segfault on PowerPC systems with valid hardware configurations (bsc#1175623) * mount: Add support for "nosymfollow" mount option. * pg: fix wcstombs() * sfdisk: correct --json --dump false exclusive, fix backward - -move-data * vipw: fix short write handling in copyfile * whereis: fix out of boundary read, support zst compressed man pages * minor code improvements and fixes * minor licensing changes * improve docs - Require both group(uuidd) and user(uuidd). - Do search /usr/sbin for mount helpers. (This drops /sbin/fs, /sbin/fs.d, which we do not use in openSUSE.) - prepare usrmerge (boo#1029961) - Modernize patch util-linux-sulogin4bsc1175514.patch * Try to autoconfigure broken serial lines - Add patch util-linux-sulogin4bsc1175514.patch Avoid sulogin failing on not existing or not functional console devices (bsc#1175514) - Fix default permissions of wall and write. - Update to version 2.36: * blkdiscard(8) refuses to proceed if filesystem or RAID signatures are found in interactive mode (executed on a terminal). The option --force is required to the discard data. * new commands irqtop(1) and lsirq(1)to monitor kernel interrupts. * cal(1) provides a new --vertical command line option. * blkzone(8) implements open/close/finish commands now. * unshare(1) and nsenter(1) commands support the time namespace now. * agetty(8) now supports multiple paths in the option - -issue-file. * fdisk(8), sfdisk(8), cfdisk(8), mkswap(8) and wipefs(8) now support block devices locking by flock(2), new command line option --lock and $LOCK_BLOCK_DEVICE environmental variable. * dmesg(1) new command line option --follow-new to wait and print only new kernel messages. * fdisk(8) new command line option --list-details and - -noauto-pt. * fdisk(8) and sfdisk(8) support user-friendly aliases for partition types. * fstrim(8) supports new command line option --listed-in. * libfdisk provides API to relocate GPT backup header. New command line option "sfdisk --relocate". * mount(8) now supports mount by ID= tag. * login(1) supports list of "message of the day". * All tools which read /etc/login.defs is possible to compile with libeconf now. * more(1) has been refactored. * man pages cleanup * other fixes and improvements, see: https://mirrors.edge.kernel.org/pub/linux/utils/util-linux/v2.36/v2.36-Rele… - Refresh Add-documentation-on-blacklisted-modules-to-mount-8-.patch. - Drop upstreamed libeconf.patch, libmount-Avoid-triggering-autofs-in-lookup_umount_fs.patch. - util-linux-login_defs-check.sh: Perform all steps to integrate MOTD_FIRSTONLY. - Update baselibs.conf. - Use plain #!/bin/sh for flushb - Include pam_securetty in login.pamd again (bsc#1033626) - Update to 2.35.2 * make glibc 2.31 compatible - Dropped unneeded patch libfdisk-script-accept-sector-size.patch ==== wayland ==== Version update (1.18.0 -> 1.19.0) Subpackages: libwayland-client0 libwayland-cursor0 libwayland-egl1 libwayland-server0 - Update to release 1.19 * This release mostly contains bug fixes and minor protocol updates. ==== xterm ==== Version update (359 -> 363) - Update to Patch#363 - 2020/12/26 * disable groff hyphenation in generated html when using man2html. * change SCS ?&4? Cyrillic to non-NRCS, per VT520 manual. * amend fix for SCS in patch #198 to remove DEL rather than converting it to a space (report by Thomas Wolff). * modify state transitions for selecting character sets to eliminate an ambiguity between the ?A? used in VT220 versus VT320. improve error recovery when selecting characters by resetting to US ASCII when no suitable encoding is found, e.g., attempting to use an NRCS sequence when NRCS is not enabled. * turn off hyphenation in ?.txt? conversion, prompted by groff changes. * add VT5xx ISO Latin-2 (prompted by discussion with Thomas Wolff). * amend change from patch #361 to event-handling in CopyWait to handle active-icon as a special case (Debian #975687). * add call to loadColorTable to get the visual information needed to decode BE RGBA32 color format (patch by Leandro Lupori). * modify the resource-parsing for disallowedPasteControls and similar lists of names/numbers to recognize ?~;? (tilde) for cancelling a given name/number. * add ENQ, EOT and NUL to default for disallowedPasteControls. * change default for disallowedPasteControls to omit the tab character (suggested by Harald Dunkel). * fix swapped height/width in regisScreenSize and maxGraphicSize resources using "auto" value, from patch #314 (report by Anton Lavrentiev) * revise patch #362 change for shift-modifier versus mouse protocol and select/paste by adding resource shiftEscape, which can be enabled via a control sequence (prompted by discussion with Matthijs van Duin). * simplify/improve ifdef in trace code for using a separate set of files for each run of xterm. * add options -r and -t to vttests/query-color.pl to show the 6-digit RGB code and actual colors. * add nel to xterm-basic terminfo. * alter vttests/modify-keys.pl to omit HTML reference links to the modified-keys table where no keycode was available. - includes Patch #361 - 2020/10/14 * treat the return value of strerror as readonly (patch by Philipp Klaus Krause). * modify event-handling in CopyWait to work around hanging while writing large amounts of text to an active icon and at the same time iconifying/ deiconifying (report by Dave Kemper). * initialize double-buffer for active-icon window. * improve manual page description of scrollbar resources (report by Brian Lindholm). correct ifdef for menu entry for active-icon, when initializing it with toolbar configuration. * add preprocessor option to makefile to set internal definition of pixmaps directory to match the install-configuration (FreeBSD #250036) * cleanup of calls to free, removing checks for null (Walter Harms) * add fallback actions pointer-button and pointer-motion which handle events for the mouse control-sequences protocol if the select-related translations are omitted with *omitTranslation:select (prompted by discussion with "Ergus") * amend rule for using shift-key to override mouse-protocol for select/ paste to limit that feature to mouse-buttons which are actually bound to select/paste actions (prompted by discussion with "Ergus"). * corrected mapping in special case for repainting wrap-marks when viewing the scrollback area. * use separate GCs for showWrapMarks feature, to work around cursor coloring change in patch #345 (report by Paulo Silva de Alíbano). - includes Patch #360 - 2020/09/20 * mention decGraphicsID in ctlseqs.ms (suggested by Thomas Wolff). * modify pixel-coordinate mouse reponse to use as origin the VT100- window rather than the underlying widget, which includes the scrollbar (report by Thomas Wolff). * add configure option --disable-print-graphics (Ross Combs). * add test_ptydata to ?make check? rule. * minor fixes for ctlseqs.ms (report by Jean-Marc Bourguet). * minor fixes for manpage style (report/patch by "a1346054"). * correct cleanup from switch between italics/normal font in the show/ hide cursor functions (report/testcase by Peter Fabinski) * integrated patch by Ross Combs: internal renaming of GraphicsID symbols, for readability. adjust logic for VT125, treating it as a ReGIS terminal. * update configure macros, for compiler-warning fixes. * integrated patch by Ross Combs: add control sequence modes for graphics printing. improve conversion to bitmaps for TrueType fonts in ReGIS add font7 resource, for an ?enormous? bitmap font. do not reset graphics in a soft-reset. add pointerFont resource, and -pf command-line option. * improve typography of manual page (patch by Branden Robinson). * amend patch #359 change to df-install.in to ignore a command-line assignment to DESTDIR if followed by an explicit --dir (report by Sven Joachim) - merged 2 patches to form xterm-suse.patch - remove xterm-settings.patch - remove xterm-better-fonts.patch - rebase xterm-sigwinch.patch - cleanup spec ==== yast2 ==== Version update (4.3.49 -> 4.3.51) - Do not propose hibernation when running over a virtualized setup (bsc#1180982). - 4.3.51 - Fixed Resolvables class to uniqely identify the libzypp objects to avoid random failures (related to bsc#1178688) - 4.3.50 ==== zeromq ==== Version update (4.3.3 -> 4.3.4) - update to 4.3.4: * ZMQ_PRIORITY will set the SO_PRIORITY socket option on the underlying sockets. Only supported on Linux. * Fixed compilation errors on kFreeBSD and GNU/Hurd * Fixed excessive amount of socket files left behind in Windows TMP * Fixed regression that breaks using IPv6 link-local addresses on Linux * Fixed compilation errors on Android * Fixed compilation error with ulibc and libbsd * Fixed stack overflow on Windows x64 * Fixed various compilation errors on Windows ARM 32bit * Fixed various compilation warnings with XCode * Fixed return value of zmq_ctx_get changed unintentionally ==== zstd ==== - Add libzstd-devel-32bit (boo#1181272)

1 0

New Kubic snapshot 20210202 released!
by Richard Brown 03 Feb '21

03 Feb '21

Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=1&version=T… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: cockpit (232 -> 235) containers-systemd (0.0+git20210107.f55f4b3 -> 0.0+git20210118.1366ecb) iproute2 (5.9.0 -> 5.10.0) kernel-source (5.10.9 -> 5.10.12) kmod (27 -> 28) libunwind (1.4.0 -> 1.5.0) openssh permissions (1550_20201111 -> 1550_20210125) pinentry (1.1.0 -> 1.1.1) python-PyYAML (5.3.1 -> 5.4.1) python-importlib-metadata (3.3.0 -> 3.4.0) python-networkx python-packaging (20.4 -> 20.8) python-psutil (5.7.3 -> 5.8.0) python-urllib3 (1.26.2 -> 1.26.3) python38 (3.8.6 -> 3.8.7) python38-core (3.8.6 -> 3.8.7) rpm socat (1.7.3.4 -> 1.7.4.1) supportutils timezone (2020f -> 2021a) toolbox (1.0+git20210119.b5acdcf -> 2.0+git20210125.50611db) tpm2-0-tss (3.0.1 -> 3.0.3) util-linux (2.35.1 -> 2.36.1) util-linux-systemd (2.35.1 -> 2.36.1) yast2 (4.3.49 -> 4.3.51) zeromq (4.3.3 -> 4.3.4) zstd === Details === ==== cockpit ==== Version update (232 -> 235) Subpackages: cockpit-bridge cockpit-system - new version 235 https://cockpit-project.org/blog/cockpit-235.html https://cockpit-project.org/blog/cockpit-234.html https://cockpit-project.org/blog/cockpit-233.html ==== containers-systemd ==== Version update (0.0+git20210107.f55f4b3 -> 0.0+git20210118.1366ecb) - Update to version 0.0+git20210118.1366ecb: * postfix: provide SPAMASSASSIN_HOST environment variable ==== iproute2 ==== Version update (5.9.0 -> 5.10.0) - Update to release 5.10 * iplink: add support for protodown reason * ss: add support to expose various inet sockopts * ss: add support for XDP statistics * bridge: mdb: add support for source address ==== kernel-source ==== Version update (5.10.9 -> 5.10.12) - Linux 5.10.12 (bsc#1012628). - gpio: mvebu: fix pwm .get_state period calculation (bsc#1012628). - Revert "mm/slub: fix a memory leak in sysfs_slab_add()" (bsc#1012628). - futex: Ensure the correct return value from futex_lock_pi() (bsc#1012628). - futex: Replace pointless printk in fixup_owner() (bsc#1012628). - futex: Provide and use pi_state_update_owner() (bsc#1012628). - rtmutex: Remove unused argument from rt_mutex_proxy_unlock() (bsc#1012628). - futex: Use pi_state_update_owner() in put_pi_state() (bsc#1012628). - futex: Simplify fixup_pi_state_owner() (bsc#1012628). - futex: Handle faults correctly for PI futexes (bsc#1012628). - HID: wacom: Correct NULL dereference on AES pen proximity (bsc#1012628). - HID: multitouch: Apply MT_QUIRK_CONFIDENCE quirk for multi-input devices (bsc#1012628). - media: Revert "media: videobuf2: Fix length check for single plane dmabuf queueing" (bsc#1012628). - media: v4l2-subdev.h: BIT() is not available in userspace (bsc#1012628). - RDMA/vmw_pvrdma: Fix network_hdr_type reported in WC (bsc#1012628). - kernel/io_uring: cancel io_uring before task works (bsc#1012628). - io_uring: inline io_uring_attempt_task_drop() (bsc#1012628). - io_uring: add warn_once for io_uring_flush() (bsc#1012628). - io_uring: stop SQPOLL submit on creator's death (bsc#1012628). - io_uring: fix null-deref in io_disable_sqo_submit (bsc#1012628). - io_uring: do sqo disable on install_fd error (bsc#1012628). - io_uring: fix false positive sqo warning on flush (bsc#1012628). - io_uring: fix uring_flush in exit_files() warning (bsc#1012628). - io_uring: fix skipping disabling sqo on exec (bsc#1012628). - io_uring: dont kill fasync under completion_lock (bsc#1012628). - io_uring: fix sleeping under spin in __io_clean_op (bsc#1012628). - objtool: Don't fail on missing symbol table (bsc#1012628). - mm/page_alloc: add a missing mm_page_alloc_zone_locked() tracepoint (bsc#1012628). - mm: fix a race on nr_swap_pages (bsc#1012628). - tools: Factor HOSTCC, HOSTLD, HOSTAR definitions (bsc#1012628). - printk: fix buffer overflow potential for print_text() (bsc#1012628). - printk: fix string termination for record_print_text() (bsc#1012628). - commit a3c8888 - floppy: reintroduce O_NDELAY fix (boo#1181018). - commit fcfe481 - Update config files. Only refresh after 5.10.11. - commit 90db4e6 - Linux 5.10.11 (bsc#1012628). - scsi: target: tcmu: Fix use-after-free of se_cmd->priv (bsc#1012628). - mtd: rawnand: gpmi: fix dst bit offset when extracting raw payload (bsc#1012628). - mtd: rawnand: nandsim: Fix the logic when selecting Hamming soft ECC engine (bsc#1012628). - i2c: tegra: Wait for config load atomically while in ISR (bsc#1012628). - i2c: bpmp-tegra: Ignore unknown I2C_M flags (bsc#1012628). - platform/x86: i2c-multi-instantiate: Don't create platform device for INT3515 ACPI nodes (bsc#1012628). - platform/x86: ideapad-laptop: Disable touchpad_switch for ELAN0634 (bsc#1012628). - ALSA: seq: oss: Fix missing error check in snd_seq_oss_synth_make_info() (bsc#1012628). - ALSA: hda/realtek - Limit int mic boost on Acer Aspire E5-575T (bsc#1012628). - ALSA: hda/via: Add minimum mute flag (bsc#1012628). - crypto: xor - Fix divide error in do_xor_speed() (bsc#1012628). - dm crypt: fix copy and paste bug in crypt_alloc_req_aead (bsc#1012628). - ACPI: scan: Make acpi_bus_get_device() clear return pointer on error (bsc#1012628). - btrfs: don't get an EINTR during drop_snapshot for reloc (bsc#1012628). - btrfs: do not double free backref nodes on error (bsc#1012628). - btrfs: fix lockdep splat in btrfs_recover_relocation (bsc#1012628). - btrfs: don't clear ret in btrfs_start_dirty_block_groups (bsc#1012628). - btrfs: send: fix invalid clone operations when cloning from the same file and root (bsc#1012628). - fs: fix lazytime expiration handling in __writeback_single_inode() (bsc#1012628). - pinctrl: ingenic: Fix JZ4760 support (bsc#1012628). - mmc: core: don't initialize block size from ext_csd if not present (bsc#1012628). - mmc: sdhci-of-dwcmshc: fix rpmb access (bsc#1012628). - mmc: sdhci-xenon: fix 1.8v regulator stabilization (bsc#1012628). - mmc: sdhci-brcmstb: Fix mmc timeout errors on S5 suspend (bsc#1012628). - dm: avoid filesystem lookup in dm_get_dev_t() (bsc#1012628). - dm integrity: fix a crash if "recalculate" used without "internal_hash" (bsc#1012628). - dm integrity: conditionally disable "recalculate" feature (bsc#1012628). - drm/atomic: put state on error path (bsc#1012628). - drm/syncobj: Fix use-after-free (bsc#1012628). - drm/amdgpu: remove gpu info firmware of green sardine (bsc#1012628). - drm/amd/display: DCN2X Find Secondary Pipe properly in MPO + ODM Case (bsc#1012628). - drm/i915/gt: Prevent use of engine->wa_ctx after error (bsc#1012628). - drm/i915: Check for rq->hwsp validity after acquiring RCU lock (bsc#1012628). - ASoC: Intel: haswell: Add missing pm_ops (bsc#1012628). - ASoC: rt711: mutex between calibration and power state changes (bsc#1012628). - SUNRPC: Handle TCP socket sends with kernel_sendpage() again (bsc#1012628). - HID: multitouch: Enable multi-input for Synaptics pointstick/touchpad device (bsc#1012628). - HID: sony: select CONFIG_CRC32 (bsc#1012628). - dm integrity: select CRYPTO_SKCIPHER (bsc#1012628). - x86/hyperv: Fix kexec panic/hang issues (bsc#1012628). - scsi: ufs: Relax the condition of UFSHCI_QUIRK_SKIP_MANUAL_WB_FLUSH_CTRL (bsc#1012628). - scsi: ufs: Correct the LUN used in eh_device_reset_handler() callback (bsc#1012628). - scsi: qedi: Correct max length of CHAP secret (bsc#1012628). - scsi: scsi_debug: Fix memleak in scsi_debug_init() (bsc#1012628). - scsi: sd: Suppress spurious errors when WRITE SAME is being disabled (bsc#1012628). - riscv: Fix kernel time_init() (bsc#1012628). - riscv: Fix sifive serial driver (bsc#1012628). - riscv: Enable interrupts during syscalls with M-Mode (bsc#1012628). - HID: logitech-dj: add the G602 receiver (bsc#1012628). - HID: Ignore battery for Elan touchscreen on ASUS UX550 (bsc#1012628). - clk: tegra30: Add hda clock default rates to clock driver (bsc#1012628). - ALSA: hda/tegra: fix tegra-hda on tegra30 soc (bsc#1012628). - riscv: cacheinfo: Fix using smp_processor_id() in preemptible (bsc#1012628). - arm64: make atomic helpers __always_inline (bsc#1012628). - xen: Fix event channel callback via INTX/GSI (bsc#1012628). - x86/xen: Add xen_no_vector_callback option to test PCI INTX delivery (bsc#1012628). - x86/xen: Fix xen_hvm_smp_init() when vector callback not available (bsc#1012628). - dts: phy: fix missing mdio device and probe failure of vsc8541-01 device (bsc#1012628). - dts: phy: add GPIO number and active state used for phy reset (bsc#1012628). - riscv: defconfig: enable gpio support for HiFive Unleashed (bsc#1012628). - drm/amdgpu/psp: fix psp gfx ctrl cmds (bsc#1012628). - drm/amd/display: disable dcn10 pipe split by default (bsc#1012628). - HID: logitech-hidpp: Add product ID for MX Ergo in Bluetooth mode (bsc#1012628). - drm/amd/display: Fix to be able to stop crc calculation (bsc#1012628). - drm/nouveau/bios: fix issue shadowing expansion ROMs (bsc#1012628). - drm/nouveau/privring: ack interrupts the same way as RM (bsc#1012628). - drm/nouveau/i2c/gm200: increase width of aux semaphore owner fields (bsc#1012628). - drm/nouveau/mmu: fix vram heap sizing (bsc#1012628). - drm/nouveau/kms/nv50-: fix case where notifier buffer is at offset 0 (bsc#1012628). - io_uring: flush timeouts that should already have expired (bsc#1012628). - libperf tests: If a test fails return non-zero (bsc#1012628). - libperf tests: Fail when failing to get a tracepoint id (bsc#1012628). - RISC-V: Set current memblock limit (bsc#1012628). - RISC-V: Fix maximum allowed phsyical memory for RV32 (bsc#1012628). - x86/xen: fix 'nopvspin' build error (bsc#1012628). - nfsd: Fixes for nfsd4_encode_read_plus_data() (bsc#1012628). - nfsd: Don't set eof on a truncated READ_PLUS (bsc#1012628). - gpiolib: cdev: fix frame size warning in gpio_ioctl() (bsc#1012628). - pinctrl: aspeed: g6: Fix PWMG0 pinctrl setting (bsc#1012628). - pinctrl: mediatek: Fix fallback call path (bsc#1012628). - RDMA/ucma: Do not miss ctx destruction steps in some cases (bsc#1012628). - btrfs: print the actual offset in btrfs_root_name (bsc#1012628). - scsi: megaraid_sas: Fix MEGASAS_IOC_FIRMWARE regression (bsc#1012628). - scsi: ufs: ufshcd-pltfrm depends on HAS_IOMEM (bsc#1012628). - scsi: ufs: Fix tm request when non-fatal error happens (bsc#1012628). - crypto: omap-sham - Fix link error without crypto-engine (bsc#1012628). - bpf: Prevent double bpf_prog_put call from bpf_tracing_prog_attach (bsc#1012628). - powerpc: Use the common INIT_DATA_SECTION macro in vmlinux.lds.S (bsc#1012628). - powerpc: Fix alignment bug within the init sections (bsc#1012628). - arm64: entry: remove redundant IRQ flag tracing (bsc#1012628). - bpf: Reject too big ctx_size_in for raw_tp test run (bsc#1012628). - drm/amdkfd: Fix out-of-bounds read in kdf_create_vcrat_image_cpu() (bsc#1012628). - RDMA/umem: Avoid undefined behavior of rounddown_pow_of_two() (bsc#1012628). - RDMA/cma: Fix error flow in default_roce_mode_store (bsc#1012628). - printk: ringbuffer: fix line counting (bsc#1012628). - printk: fix kmsg_dump_get_buffer length calulations (bsc#1012628). - iov_iter: fix the uaccess area in copy_compat_iovec_from_user (bsc#1012628). - i2c: octeon: check correct size of maximum RECV_LEN packet (bsc#1012628). - drm/vc4: Unify PCM card's driver_name (bsc#1012628). - platform/x86: intel-vbtn: Drop HP Stream x360 Convertible PC 11 from allow-list (bsc#1012628). - platform/x86: hp-wmi: Don't log a warning on HPWMI_RET_UNKNOWN_COMMAND errors (bsc#1012628). - gpio: sifive: select IRQ_DOMAIN_HIERARCHY rather than depend on it (bsc#1012628). - ALSA: hda: Balance runtime/system PM if direct-complete is disabled (bsc#1012628). - xsk: Clear pool even for inactive queues (bsc#1012628). - selftests: net: fib_tests: remove duplicate log test (bsc#1012628). - can: dev: can_restart: fix use after free bug (bsc#1012628). - can: vxcan: vxcan_xmit: fix use after free bug (bsc#1012628). - can: peak_usb: fix use after free bugs (bsc#1012628). - perf evlist: Fix id index for heterogeneous systems (bsc#1012628). - i2c: sprd: depend on COMMON_CLK to fix compile tests (bsc#1012628). - iio: common: st_sensors: fix possible infinite loop in st_sensors_irq_thread (bsc#1012628). - iio: ad5504: Fix setting power-down state (bsc#1012628). - drivers: iio: temperature: Add delay after the addressed reset command in mlx90632.c (bsc#1012628). - iio: adc: ti_am335x_adc: remove omitted iio_kfifo_free() (bsc#1012628). - counter:ti-eqep: remove floor (bsc#1012628). - powerpc/64s: fix scv entry fallback flush vs interrupt (bsc#1012628). - cifs: do not fail __smb_send_rqst if non-fatal signals are pending (bsc#1012628). - irqchip/mips-cpu: Set IPI domain parent chip (bsc#1012628). - x86/fpu: Add kernel_fpu_begin_mask() to selectively initialize state (bsc#1012628). - x86/topology: Make __max_die_per_package available unconditionally (bsc#1012628). - x86/mmx: Use KFPU_387 for MMX string operations (bsc#1012628). - x86/setup: don't remove E820_TYPE_RAM for pfn 0 (bsc#1012628). - proc_sysctl: fix oops caused by incorrect command parameters (bsc#1012628). - mm: memcg/slab: optimize objcg stock draining (bsc#1012628). - mm: memcg: fix memcg file_dirty numa stat (bsc#1012628). - mm: fix numa stats for thp migration (bsc#1012628). - io_uring: iopoll requests should also wake task ->in_idle state (bsc#1012628). - io_uring: fix SQPOLL IORING_OP_CLOSE cancelation state (bsc#1012628). - io_uring: fix short read retries for non-reg files (bsc#1012628). - intel_th: pci: Add Alder Lake-P support (bsc#1012628). - stm class: Fix module init return on allocation failure (bsc#1012628). - serial: mvebu-uart: fix tx lost characters at power off (bsc#1012628). - ehci: fix EHCI host controller initialization sequence (bsc#1012628). - USB: ehci: fix an interrupt calltrace error (bsc#1012628). - usb: gadget: aspeed: fix stop dma register setting (bsc#1012628). - USB: gadget: dummy-hcd: Fix errors in port-reset handling (bsc#1012628). - usb: udc: core: Use lock when write to soft_connect (bsc#1012628). - usb: bdc: Make bdc pci driver depend on BROKEN (bsc#1012628). - usb: cdns3: imx: fix writing read-only memory issue (bsc#1012628). - usb: cdns3: imx: fix can't create core device the second time issue (bsc#1012628). - xhci: make sure TRB is fully written before giving it to the controller (bsc#1012628). - xhci: tegra: Delay for disabling LFPS detector (bsc#1012628). - drivers core: Free dma_range_map when driver probe failed (bsc#1012628). - driver core: Fix device link device name collision (bsc#1012628). - driver core: Extend device_is_dependent() (bsc#1012628). - drm/i915: s/intel_dp_sink_dpms/intel_dp_set_power/ (bsc#1012628). - drm/i915: Only enable DFP 4:4:4->4:2:0 conversion when outputting YCbCr 4:4:4 (bsc#1012628). - x86/entry: Fix noinstr fail (bsc#1012628). - x86/cpu/amd: Set __max_die_per_package on AMD (bsc#1012628). - cls_flower: call nla_ok() before nla_next() (bsc#1012628). - netfilter: rpfilter: mask ecn bits before fib lookup (bsc#1012628). - tools: gpio: fix %llu warning in gpio-event-mon.c (bsc#1012628). - tools: gpio: fix %llu warning in gpio-watch.c (bsc#1012628). - drm/i915/hdcp: Update CP property in update_pipe (bsc#1012628). - sh: dma: fix kconfig dependency for G2_DMA (bsc#1012628). - sh: Remove unused HAVE_COPY_THREAD_TLS macro (bsc#1012628). - locking/lockdep: Cure noinstr fail (bsc#1012628). - ASoC: SOF: Intel: fix page fault at probe if i915 init fails (bsc#1012628). - octeontx2-af: Fix missing check bugs in rvu_cgx.c (bsc#1012628). - net: dsa: mv88e6xxx: also read STU state in mv88e6250_g1_vtu_getnext (bsc#1012628). - selftests/powerpc: Fix exit status of pkey tests (bsc#1012628). - sh_eth: Fix power down vs. is_opened flag ordering (bsc#1012628). - nvme-pci: refactor nvme_unmap_data (bsc#1012628). - nvme-pci: fix error unwind in nvme_map_data (bsc#1012628). - cachefiles: Drop superfluous readpages aops NULL check (bsc#1012628 bsc#1175245). - lightnvm: fix memory leak when submit fails (bsc#1012628). - skbuff: back tiny skbs with kmalloc() in __netdev_alloc_skb() too (bsc#1012628). - kasan: fix unaligned address is unhandled in kasan_remove_zero_shadow (bsc#1012628). - kasan: fix incorrect arguments passing in kasan_add_zero_shadow (bsc#1012628). - tcp: fix TCP socket rehash stats mis-accounting (bsc#1012628). - net_sched: gen_estimator: support large ewma log (bsc#1012628). - udp: mask TOS bits in udp_v4_early_demux() (bsc#1012628). - ipv6: create multicast route with RTPROT_KERNEL (bsc#1012628). - net_sched: avoid shift-out-of-bounds in tcindex_set_parms() (bsc#1012628). - net_sched: reject silly cell_log in qdisc_get_rtab() (bsc#1012628). - ipv6: set multicast flag on the multicast route (bsc#1012628). - net: mscc: ocelot: allow offloading of bridge on top of LAG (bsc#1012628). - net: Disable NETIF_F_HW_TLS_RX when RXCSUM is disabled (bsc#1012628). - net: dsa: b53: fix an off by one in checking "vlan->vid" (bsc#1012628). - tcp: do not mess with cloned skbs in tcp_add_backlog() (bsc#1012628). - tcp: fix TCP_USER_TIMEOUT with zero window (bsc#1012628). - net: mscc: ocelot: Fix multicast to the CPU port (bsc#1012628). - net: core: devlink: use right genl user_ptr when handling port param get/set (bsc#1012628). - pinctrl: qcom: Allow SoCs to specify a GPIO function that's not 0 (bsc#1012628). - pinctrl: qcom: No need to read-modify-write the interrupt status (bsc#1012628). - pinctrl: qcom: Properly clear "intr_ack_high" interrupts when unmasking (bsc#1012628). - pinctrl: qcom: Don't clear pending interrupts when enabling (bsc#1012628). - x86/sev: Fix nonistr violation (bsc#1012628). - tty: implement write_iter (bsc#1012628). - tty: fix up hung_up_tty_write() conversion (bsc#1012628). - net: systemport: free dev before on error path (bsc#1012628). - x86/sev-es: Handle string port IO to kernel memory properly (bsc#1012628). - tcp: Fix potential use-after-free due to double kfree() (bsc#1012628). - ASoC: SOF: Intel: hda: Avoid checking jack on system suspend (bsc#1012628). - drm/i915/hdcp: Get conn while content_type changed (bsc#1012628). - bpf: Local storage helpers should check nullness of owner ptr passed (bsc#1012628). - kernfs: implement ->read_iter (bsc#1012628). - kernfs: implement ->write_iter (bsc#1012628). - kernfs: wire up ->splice_read and ->splice_write (bsc#1012628). - interconnect: imx8mq: Use icc_sync_state (bsc#1012628). - fs/pipe: allow sendfile() to pipe again (bsc#1012628). - Commit 9bb48c82aced ("tty: implement write_iter") converted the tty layer to use write_iter. Fix the redirected_tty_write declaration also in n_tty and change the comparisons to use write_iter instead of write. also in n_tty and change the comparisons to use write_iter instead of write (bsc#1012628). - mm: fix initialization of struct page for holes in memory layout (bsc#1012628). - Revert "mm: fix initialization of struct page for holes in memory layout" (bsc#1012628). - Delete patches.suse/fs-cachefs-Drop-superfluous-readpages-aops-NULL-chec.patch. - commit 7d05541 - ALSA: hda/via: Apply the workaround generically for Clevo machines (bsc#1181330). - commit 87d962b - Linux 5.10.10 (bsc#1012628). - spi: cadence: cache reference clock rate during probe (bsc#1012628). - spi: fsl: Fix driver breakage when SPI_CS_HIGH is not set in spi->mode (bsc#1012628). - cxgb4/chtls: Fix tid stuck due to wrong update of qid (bsc#1012628). - net: dsa: unbind all switches from tree when DSA master unbinds (bsc#1012628). - mac80211: check if atf has been disabled in __ieee80211_schedule_txq (bsc#1012628). - mac80211: do not drop tx nulldata packets on encrypted links (bsc#1012628). - drm/panel: otm8009a: allow using non-continuous dsi clock (bsc#1012628). - can: mcp251xfd: mcp251xfd_handle_rxif_one(): fix wrong NULL pointer check (bsc#1012628). - net: stmmac: use __napi_schedule() for PREEMPT_RT (bsc#1012628). - rxrpc: Fix handling of an unsupported token type in rxrpc_read() (bsc#1012628). - net: dsa: clear devlink port type before unregistering slave netdevs (bsc#1012628). - net: phy: smsc: fix clk error handling (bsc#1012628). - dt-bindings: net: renesas,etheravb: RZ/G2H needs tx-internal-delay-ps (bsc#1012628). - net: avoid 32 x truesize under-estimation for tiny skbs (bsc#1012628). - net: stmmac: fix taprio configuration when base_time is in the past (bsc#1012628). - net: stmmac: fix taprio schedule configuration (bsc#1012628). - net: sit: unregister_netdevice on newlink's error path (bsc#1012628). - net: stmmac: Fixed mtu channged by cache aligned (bsc#1012628). - i40e: fix potential NULL pointer dereferencing (bsc#1012628). - rxrpc: Call state should be read with READ_ONCE() under some circumstances (bsc#1012628). - net: dcb: Accept RTM_GETDCB messages carrying set-like DCB commands (bsc#1012628). - net: dcb: Validate netlink message in DCB handler (bsc#1012628). - esp: avoid unneeded kmap_atomic call (bsc#1012628). - rndis_host: set proper input size for OID_GEN_PHYSICAL_MEDIUM request (bsc#1012628). - net: mvpp2: Remove Pause and Asym_Pause support (bsc#1012628). - mlxsw: core: Increase critical threshold for ASIC thermal zone (bsc#1012628). - mlxsw: core: Add validation of transceiver temperature thresholds (bsc#1012628). - tipc: fix NULL deref in tipc_link_xmit() (bsc#1012628). - net: ipv6: Validate GSO SKB before finish IPv6 processing (bsc#1012628). - netxen_nic: fix MSI/MSI-x interrupts (bsc#1012628). - udp: Prevent reuseport_select_sock from reading uninitialized socks (bsc#1012628). - net: fix use-after-free when UDP GRO with shared fraglist (bsc#1012628). - net: ipa: modem: add missing SET_NETDEV_DEV() for proper sysfs links (bsc#1012628). - bpf: Fix helper bpf_map_peek_elem_proto pointing to wrong callback (bsc#1012628). - bpf: Support PTR_TO_MEM{,_OR_NULL} register spilling (bsc#1012628). - bpf: Don't leak memory in bpf getsockopt when optlen == 0 (bsc#1012628). - nfsd4: readdirplus shouldn't return parent of export (bsc#1012628). - X.509: Fix crash caused by NULL pointer (bsc#1012628). - bpf: Fix signed_{sub,add32}_overflows type handling (bsc#1012628). - drm/amdgpu/display: drop DCN support for aarch64 (bsc#1012628). - Update config files. - x86/hyperv: Initialize clockevents after LAPIC is initialized (bsc#1012628). - bpf: Fix selftest compilation on clang 11 (bsc#1012628). - Revert "kconfig: remove 'kvmconfig' and 'xenconfig' shorthands" (bsc#1012628). - commit 167b75d - drm/gpu/nouveau/dispnv50: Restore pushing of all data (boo#1181271). - commit c3f7185 - media: pwc: Fix the URB buffer allocation (bsc#1181133). - commit a9c85b1 - media: dvb-usb: Fix use-after-free access (bsc#1181104). - media: dvb-usb: Fix memory leak at error in dvb_usb_device_init() (bsc#1181104). - commit 807ed8c ==== kmod ==== Version update (27 -> 28) Subpackages: libkmod2 - Supplement bash-completion subpackage against the main package and bash-completion. - Also require the main package plus bash-completion: the completion package is useless without either of the two. - Update to v28 * Add Zstandard to the supported compression formats using libzstd (tests only - cannot be disabled in tests) * Ignore ill-formed kernel command line, e.g. with "ivrs_acpihid[00:14.5]=AMD0020:0" option in it * Fix some memory leaks * Fix 0-length builtin.alias.bin: it needs at least the index header - Backport upstream fix 0001-Fix-modinfo-F-always-shows-name-for-built-ins.patch ==== libunwind ==== Version update (1.4.0 -> 1.5.0) - update to 1.5.0: * dwarf: clang doesn't respect the static alias * Fixed a missing dependency in dwarf-eh.h * x86_64: Fix tdep_init_done when built with libatomic_ops * mips: make _step_n64 as a static function * Added braces to suppress empty if/else warnings * Delete hardcode of address size to support MIPS64. * Fix format specifier for int64_t:29 * Add initial support for Solaris x86-64 * x86_64: Add fixup code if previous RIP was invalid * x86-64: make `is_cached_valid_mem` functional * arm: clear ip thumb/arm mode bit before move to previous instruction * Fix compilation with -fno-common. * Fix off-by-one error in x86_64 stack frames * aarch64: Fix __sigset build issue on muslC * Make SHF_COMPRESSED use contingent on its existence - remove libunwind_U_dyn_info_list.patch (upstream) ==== openssh ==== Subpackages: openssh-clients openssh-common openssh-server - Add support for /etc/ssh/ssh_config.d and /etc/ssh/sshd_config.d (openssh-8.4p1-ssh_config_d.patch) ==== permissions ==== Version update (1550_20201111 -> 1550_20210125) Subpackages: chkstat permissions-config - Update to version 20210125: * usbauth: drop compatibility variable for libexec * usbauth: Updated path for usbauth-npriv * profiles: finish usage of variable for polkit-agent-helper-1 ==== pinentry ==== Version update (1.1.0 -> 1.1.1) - actually build efl based pinentry - re-enable validation of upstream signing key - update to 1.1.1: * A EFL-based pinentry has been contributed. * Disable echoing in backspace key is pressed first (GTK, Qt, TQt, and ncurses pinentries). * Support line editing in TTY pinentry. * Remove support for old GTK+2 (< 2.12.0). * Various minor fixes. - drop pinentry-qt-Fix-use-of-dangling-pointer.patch (upstream) - drop pinentry-ncurses6.diff: obsolete ==== python-PyYAML ==== Version update (5.3.1 -> 5.4.1) - update to 5.4.1 (bsc#1174514, CVE-2020-14343): * Fix stub compat with older pyyaml versions that may unwittingly load it * Build modernization, remove distutils, fix metadata, build wheels, CI to GHA * Fix for CVE-2020-14343, moves arbitrary python tags to UnsafeLoader * Fix memory leak in implicit resolver setup * Fix py2 copy support for timezone objects * Fix compatibility with Jython ==== python-importlib-metadata ==== Version update (3.3.0 -> 3.4.0) - update to 3.4.0: * Project now declares itself as being typed. * Additional performance enhancements to distribution discovery. * For PyPA projects, add test ensuring that ``MetadataPathFinder._search_paths`` honors the needed interface. Method is still private. ==== python-networkx ==== - Temporarily reenable python36 build until SciPy is updated, because the PyYAML fix needs to be merged first - Add yaml-loader.patch adding support for new PyYAML - Skip python36 because of SciPy 1.6.0 ==== python-packaging ==== Version update (20.4 -> 20.8) - update to 20.8: * Revert back to setuptools for compatibility purposes for some Linux distros (:issue:`363`) * Do not insert an underscore in wheel tags when the interpreter version number is more than 2 digits (:issue:`372`) * Fix flit configuration, to include LICENSE files (:issue:`357`) * Make `intel` a recognized CPU architecture for the `universal` macOS platform tag (:issue:`361`) * Add some missing type hints to `packaging.requirements` (issue:`350`) * Officially support Python 3.9 (:issue:`343`) * Deprecate the ``LegacyVersion`` and ``LegacySpecifier`` classes (:issue:`321`) * Handle ``OSError`` on non-dynamic executables when attempting to resolve the glibc version string. ==== python-psutil ==== Version update (5.7.3 -> 5.8.0) - Do not install tests (and change the way they're run since they were run from %{buildroot}) - Add patch to skip tests related to rlimit and zombie processes that fail when building for python2 on i586: * skip_rlimit_tests_on_python2.patch - update to 5.8.0: * Enhancements: - 1863: disk_partitions() exposes 2 extra fields: maxfile and maxpath, which are the maximum file name and path name length. - 1872: [Windows] added support for PyPy 2.7. - 1879: provide pre-compiled wheels for Linux and macOS. - 1880: get rid of Travis and Cirrus CI services (they are no longer free). CI testing is now done by GitHub Actions on Linux, macOS and FreeBSD (yes). AppVeyor is still being used for Windows CI. * Bug fixes: - 1708: [Linux] get rid of sensors_temperatures() duplicates. (patch by Tim Schlueter). - 1839: [Windows] always raise AccessDenied when failing to query 64 processes from 32 bit ones (NtWoW64 APIs). - 1866: [Windows] process exe(), cmdline(), environ() may raise "invalid access to memory location" on Python 3.9. - 1874: [Solaris] wrong swap output given when encrypted column is present. - 1875: [Windows] process username() may raise ERROR_NONE_MAPPED if the SID has no corresponding account name. In this case AccessDenied is now raised. - 1877: [Windows] OpenProcess may fail with ERROR_SUCCESS. Turn it into AccessDenied or NoSuchProcess depending on whether the PID is alive. - 1886: [macOS] EIO error may be raised on cmdline() and environment(). Now it gets translated into AccessDenied. - 1891: [macOS] get rid of deprecated getpagesize(). - Rebase patch and skip three other tests that fail on obs * skip-obs.patch ==== python-urllib3 ==== Version update (1.26.2 -> 1.26.3) - update to 1.26.3: * Fixed bytes and string comparison issue with headers (Pull #2141) * Changed ``ProxySchemeUnknown`` error message to be more actionable if the user supplies a proxy URL without a scheme. (Pull #2107) ==== python38 ==== Version update (3.8.6 -> 3.8.7) - Add CVE-2021-3177-buf_ovrfl_PyCArg_repr.patch fixing bsc#1181126 (CVE-2021-3177) buffer overflow in PyCArg_repr in _ctypes/callproc.c, which may lead to remote code execution. - (bsc#1180125) We really don't Require python-rpm-macros package. Unnecessary dependency. - Update to 3.8.7: - bugfix release - multiple patches realigned: - F00102-lib64.patch - SUSE-FEDORA-multilib.patch - bpo-31046_ensurepip_honours_prefix.patch - skip_random_failing_tests.patch - Last try before this results in an editwar: * remove importlib_resources and importlib-metadata provides/obsoletes * import importlib_resources is not the same as import importlib.resources, same for metadata * The backport packages from PyPI needed for older flavors are specified as such for setuptools or in pyproject.toml. If a package requires them they typically add them with a python version qualifier and the packages have their own version numbers. - Add patch sphinx-update-removed-function.patch to no longer call a now removed function and to make documentation build independent of the Sphinx version (bsc#1179630, gh#python/cpython#13236). - Add importlib_resources provide/obsolete as it is integral part of the lang since 3.7 release ==== python38-core ==== Version update (3.8.6 -> 3.8.7) Subpackages: libpython3_8-1_0 python38-base - Add CVE-2021-3177-buf_ovrfl_PyCArg_repr.patch fixing bsc#1181126 (CVE-2021-3177) buffer overflow in PyCArg_repr in _ctypes/callproc.c, which may lead to remote code execution. - (bsc#1180125) We really don't Require python-rpm-macros package. Unnecessary dependency. - Update to 3.8.7: - bugfix release - multiple patches realigned: - F00102-lib64.patch - SUSE-FEDORA-multilib.patch - bpo-31046_ensurepip_honours_prefix.patch - skip_random_failing_tests.patch - Last try before this results in an editwar: * remove importlib_resources and importlib-metadata provides/obsoletes * import importlib_resources is not the same as import importlib.resources, same for metadata * The backport packages from PyPI needed for older flavors are specified as such for setuptools or in pyproject.toml. If a package requires them they typically add them with a python version qualifier and the packages have their own version numbers. - Add patch sphinx-update-removed-function.patch to no longer call a now removed function and to make documentation build independent of the Sphinx version (bsc#1179630, gh#python/cpython#13236). - Add importlib_resources provide/obsolete as it is integral part of the lang since 3.7 release ==== rpm ==== Subpackages: librpmbuild9 - Add explicit requirement on python-rpm-macros to avoid widespread breakage by package mistakenly ignoring their requirement of python-rpm-macros (bsc#1180125). ==== socat ==== Version update (1.7.3.4 -> 1.7.4.1) - update to 1.7.4.1: Security: * Buffer size option (-b) is internally doubled for CR-CRLF conversion, but not checked for integer overflow. This could lead to heap based buffer overflow, assuming the attacker could provide this parameter. * Many further bugfixes and new features, see the CHANGES file ==== supportutils ==== - Require the awk, which and sed commands instead of packages to allow alternate implementations on embedded/Edge systems ==== timezone ==== Version update (2020f -> 2021a) - timezone update 2021a (bsc#1177460) * South Sudan changes from +03 to +02 on 2021-02-01 at 00:00. ==== toolbox ==== Version update (1.0+git20210119.b5acdcf -> 2.0+git20210125.50611db) - Update to version 2.0+git20210125.50611db: * Document configuration files, add /usr/etc/toolboxrc * Update README to include commands * Update the README * Be even more compatible with Silverblue Toolbox * Introduce commands, for compatibility with Silverblue's toolbox * Mount /run/media and and /tmp inside a user toolbox * Export more env variables inside (user) toolboxes ==== tpm2-0-tss ==== Version update (3.0.1 -> 3.0.3) Subpackages: libtss2-esys0 libtss2-mu0 libtss2-rc0 libtss2-sys1 - update to 3.0.3: - changes in 3.0.3: * Fix Regression in Fapi_List * Fix memory leak in policy calculation - changes in 3.0.2: * FAPI: Fix setting of the system flag of NV objects * This will let NV object metadata be created system-wide always instead of * locally in the user. Existing metadata will remain in the user directory. * It can be moved to the corresponding systemstore manually if needed. * FAPI: Fix policy searching, when a policyRef was provided * FAPI: Accept EK-Certs without CRL dist point * FAPI: Fix return codes of Fapi_List * FAPI: Fix memleak in policy execution * FAPI: Fix coverity NULL-pointer check * FAPI: Set the written flag of NV objects in FAPI PolicyNV commands * FAPI: Fix deleting of policy files. * FAPI: Fix wrong file loading during object search. * Fapi: Fix memory leak * Fapi: Fix potential NULL-Dereference * Fapi: Remove superfluous NULL check * Fix a memory leak in async keystore load. ==== util-linux ==== Version update (2.35.1 -> 2.36.1) Subpackages: libblkid1 libfdisk1 libmount1 libsmartcols1 libuuid1 - Do not require libeconf-devel on products without /usr/etc. - s/--enable-vendordir/--with-vendordir/ - remove pam_securetty line again. As long as there is no agreement from pam side having it would fail openQA (boo#1033626) - Update to version 2.36.1: * chrt: use SCHED_FLAG_RESET_ON_FORK for sched_setattr() * fallocate: fix --dig-holes at end of files * fdisk: always report fdisk_create_disklabel() errors * flock: keep -E exit status more restrictive * fstrim: remove fstab condition from fstrim.timer * hexdump: automatically use -C when called as hd * hwclock: add fallback if SYS_settimeofday does not exist, fix SYS_settimeofday fallback * libblkid: allow a lot of mac partitions, fix Atari prober logic, limit amount of parsed partitions * more libfdisk improvements * losetup: avoid infinite busy loop, increase limit of setup attempts * lsblk: fix -T optional argument, fix SCSI_IDENT_SERIAL, print zero rather than empty SIZE, read ID_SCSI_IDENT_SERIAL if available * lscpu: Add FUJITSU aarch64 A64FX cpupart, Even more Arm part numbers, avoid segfault on PowerPC systems with valid hardware configurations (bsc#1175623) * mount: Add support for "nosymfollow" mount option. * pg: fix wcstombs() * sfdisk: correct --json --dump false exclusive, fix backward - -move-data * vipw: fix short write handling in copyfile * whereis: fix out of boundary read, support zst compressed man pages * minor code improvements and fixes * minor licensing changes * improve docs - Require both group(uuidd) and user(uuidd). - Do search /usr/sbin for mount helpers. (This drops /sbin/fs, /sbin/fs.d, which we do not use in openSUSE.) - prepare usrmerge (boo#1029961) - Modernize patch util-linux-sulogin4bsc1175514.patch * Try to autoconfigure broken serial lines - Add patch util-linux-sulogin4bsc1175514.patch Avoid sulogin failing on not existing or not functional console devices (bsc#1175514) - Fix default permissions of wall and write. - Update to version 2.36: * blkdiscard(8) refuses to proceed if filesystem or RAID signatures are found in interactive mode (executed on a terminal). The option --force is required to the discard data. * new commands irqtop(1) and lsirq(1)to monitor kernel interrupts. * cal(1) provides a new --vertical command line option. * blkzone(8) implements open/close/finish commands now. * unshare(1) and nsenter(1) commands support the time namespace now. * agetty(8) now supports multiple paths in the option - -issue-file. * fdisk(8), sfdisk(8), cfdisk(8), mkswap(8) and wipefs(8) now support block devices locking by flock(2), new command line option --lock and $LOCK_BLOCK_DEVICE environmental variable. * dmesg(1) new command line option --follow-new to wait and print only new kernel messages. * fdisk(8) new command line option --list-details and - -noauto-pt. * fdisk(8) and sfdisk(8) support user-friendly aliases for partition types. * fstrim(8) supports new command line option --listed-in. * libfdisk provides API to relocate GPT backup header. New command line option "sfdisk --relocate". * mount(8) now supports mount by ID= tag. * login(1) supports list of "message of the day". * All tools which read /etc/login.defs is possible to compile with libeconf now. * more(1) has been refactored. * man pages cleanup * other fixes and improvements, see: https://mirrors.edge.kernel.org/pub/linux/utils/util-linux/v2.36/v2.36-Rele… - Refresh Add-documentation-on-blacklisted-modules-to-mount-8-.patch. - Drop upstreamed libeconf.patch, libmount-Avoid-triggering-autofs-in-lookup_umount_fs.patch. - util-linux-login_defs-check.sh: Perform all steps to integrate MOTD_FIRSTONLY. - Update baselibs.conf. - Use plain #!/bin/sh for flushb - Include pam_securetty in login.pamd again (bsc#1033626) - Update to 2.35.2 * make glibc 2.31 compatible - Dropped unneeded patch libfdisk-script-accept-sector-size.patch ==== util-linux-systemd ==== Version update (2.35.1 -> 2.36.1) - Do not require libeconf-devel on products without /usr/etc. - s/--enable-vendordir/--with-vendordir/ - remove pam_securetty line again. As long as there is no agreement from pam side having it would fail openQA (boo#1033626) - Update to version 2.36.1: * chrt: use SCHED_FLAG_RESET_ON_FORK for sched_setattr() * fallocate: fix --dig-holes at end of files * fdisk: always report fdisk_create_disklabel() errors * flock: keep -E exit status more restrictive * fstrim: remove fstab condition from fstrim.timer * hexdump: automatically use -C when called as hd * hwclock: add fallback if SYS_settimeofday does not exist, fix SYS_settimeofday fallback * libblkid: allow a lot of mac partitions, fix Atari prober logic, limit amount of parsed partitions * more libfdisk improvements * losetup: avoid infinite busy loop, increase limit of setup attempts * lsblk: fix -T optional argument, fix SCSI_IDENT_SERIAL, print zero rather than empty SIZE, read ID_SCSI_IDENT_SERIAL if available * lscpu: Add FUJITSU aarch64 A64FX cpupart, Even more Arm part numbers, avoid segfault on PowerPC systems with valid hardware configurations (bsc#1175623) * mount: Add support for "nosymfollow" mount option. * pg: fix wcstombs() * sfdisk: correct --json --dump false exclusive, fix backward - -move-data * vipw: fix short write handling in copyfile * whereis: fix out of boundary read, support zst compressed man pages * minor code improvements and fixes * minor licensing changes * improve docs - Require both group(uuidd) and user(uuidd). - Do search /usr/sbin for mount helpers. (This drops /sbin/fs, /sbin/fs.d, which we do not use in openSUSE.) - prepare usrmerge (boo#1029961) - Modernize patch util-linux-sulogin4bsc1175514.patch * Try to autoconfigure broken serial lines - Add patch util-linux-sulogin4bsc1175514.patch Avoid sulogin failing on not existing or not functional console devices (bsc#1175514) - Fix default permissions of wall and write. - Update to version 2.36: * blkdiscard(8) refuses to proceed if filesystem or RAID signatures are found in interactive mode (executed on a terminal). The option --force is required to the discard data. * new commands irqtop(1) and lsirq(1)to monitor kernel interrupts. * cal(1) provides a new --vertical command line option. * blkzone(8) implements open/close/finish commands now. * unshare(1) and nsenter(1) commands support the time namespace now. * agetty(8) now supports multiple paths in the option - -issue-file. * fdisk(8), sfdisk(8), cfdisk(8), mkswap(8) and wipefs(8) now support block devices locking by flock(2), new command line option --lock and $LOCK_BLOCK_DEVICE environmental variable. * dmesg(1) new command line option --follow-new to wait and print only new kernel messages. * fdisk(8) new command line option --list-details and - -noauto-pt. * fdisk(8) and sfdisk(8) support user-friendly aliases for partition types. * fstrim(8) supports new command line option --listed-in. * libfdisk provides API to relocate GPT backup header. New command line option "sfdisk --relocate". * mount(8) now supports mount by ID= tag. * login(1) supports list of "message of the day". * All tools which read /etc/login.defs is possible to compile with libeconf now. * more(1) has been refactored. * man pages cleanup * other fixes and improvements, see: https://mirrors.edge.kernel.org/pub/linux/utils/util-linux/v2.36/v2.36-Rele… - Refresh Add-documentation-on-blacklisted-modules-to-mount-8-.patch. - Drop upstreamed libeconf.patch, libmount-Avoid-triggering-autofs-in-lookup_umount_fs.patch. - util-linux-login_defs-check.sh: Perform all steps to integrate MOTD_FIRSTONLY. - Update baselibs.conf. - Use plain #!/bin/sh for flushb - Include pam_securetty in login.pamd again (bsc#1033626) - Update to 2.35.2 * make glibc 2.31 compatible - Dropped unneeded patch libfdisk-script-accept-sector-size.patch ==== yast2 ==== Version update (4.3.49 -> 4.3.51) - Do not propose hibernation when running over a virtualized setup (bsc#1180982). - 4.3.51 - Fixed Resolvables class to uniqely identify the libzypp objects to avoid random failures (related to bsc#1178688) - 4.3.50 ==== zeromq ==== Version update (4.3.3 -> 4.3.4) - update to 4.3.4: * ZMQ_PRIORITY will set the SO_PRIORITY socket option on the underlying sockets. Only supported on Linux. * Fixed compilation errors on kFreeBSD and GNU/Hurd * Fixed excessive amount of socket files left behind in Windows TMP * Fixed regression that breaks using IPv6 link-local addresses on Linux * Fixed compilation errors on Android * Fixed compilation error with ulibc and libbsd * Fixed stack overflow on Windows x64 * Fixed various compilation errors on Windows ARM 32bit * Fixed various compilation warnings with XCode * Fixed return value of zmq_ctx_get changed unintentionally ==== zstd ==== - Add libzstd-devel-32bit (boo#1181272)

1 0