openSUSE Kubic
Threads by month
- ----- 2024 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2023 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2022 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2021 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2020 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2019 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2018 -----
- December
- November
- October
- September
- August
April 2021
- 10 participants
- 39 discussions
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
file (5.39 -> 5.40)
installation-images-MicroOS (16.72 -> 17.0)
kernel-source (5.11.16 -> 5.12.0)
krb5
openSUSE-build-key
podman (3.1.1 -> 3.1.2)
poppler
poppler-qt5
rpm
tiff (4.2.0 -> 4.3.0)
vim (8.2.2725 -> 8.2.2800)
xdg-utils
=== Details ===
==== file ====
Version update (5.39 -> 5.40)
Subpackages: file-magic libmagic1
- Add patch file-5.40-ascii.patch
* fix regressions on dection of smaller ASCII files (boo#1184899)
- Add upstream comitts as patches
* file-5.40-9b0459af.patch
put attributes inside the xz magic. (boo#1184888, boo#1184891)
* file-5.40-749e1ecf.patch
If the file is less than 3 bytes, use the file length to determine type
* file-5.40-f0601504.patch
Fix regression after unsigned/signed printing changes
* file-5.40-f7705dca.patch
fix previous (cast >>)
* file-5.40-3096f87f.patch
Correct return values to exptexted
* file-5.40-4c5fe1ad.patch
Add missing parens
- Port patch
* file-5.28-btrfs-image.dif
due patch file-5.40-f0601504.patch
- Add upstream commits as patches
* file-5.40-1c677c04.patch
Don't count each byte encounter as 1, count the total number
of bytes found (Anatol Belski). This makes it behave like 5.39
* file-5.40-6b34436a.patch
remove "u" from the pattern (Joerg Jenderek)
* file-5.40-9e2becec.patch
Encoding bug fix
- Fix offsets of patches
* file-5.17-option.dif
* file-5.19-biorad.dif
* file-5.19-printf.dif
* file-5.19-zip2.0.dif
* file-5.22-elf.dif
* file-5.23-endian.patch
* file-5.28-btrfs-image.dif
* file-5.38-allow-readlinkat.dif
* file-secure_getenv.patch
- update to 5.40:
* Add limit to the number of bytes to scan for encoding
* Fix /T (trim flag) for regex
* Trim trailing separator.
* Convert system read errors from corrupt ELF
files into human readable error messages
* Exclude surrogate pairs from utf-8 detection
- drop upstreamed patches:
* file-5.16-ocloexec.patch
* file-5.39-alternate_format.dif
==== installation-images-MicroOS ====
Version update (16.72 -> 17.0)
- merge gh#openSUSE/installation-images#498
- rescue: make sure /var/run is a link to /run
- rescue: link modules and firmware from correct location
- 17.0
- merge gh#openSUSE/installation-images#504
- no more libstoragemgmt-netapp-plugin
- 16.74
- merge gh#openSUSE/installation-images#503
- make usrmerge case depend on /lib link in filesystem package
- 16.73
- merge gh#openSUSE/installation-images#502
- extend 'exists' operator to test for a specfic type
==== kernel-source ====
Version update (5.11.16 -> 5.12.0)
- Update to 5.12 final
- refresh configs (headers only)
- commit 9683115
- rpm/kernel-binary.spec.in: Require new enough pahole.
pahole 1.21 is required for building line-next BTF
- commit 8df1aaa
- rpm/macros.kernel-source: fix KMP failure in %install (bsc#1185244)
- commit 52805ed
==== krb5 ====
- Use /run instead of /var/run for daemon PID files; (bsc#1185163);
==== openSUSE-build-key ====
- fixed s390x key install (bsc#1185245)
==== podman ====
Version update (3.1.1 -> 3.1.2)
Subpackages: podman-cni-config
- Update to version 3.1.2:
* Bump to v3.1.2
* Update release notes for v3.1.2
* Ensure mount destination is clean, no trailing slash
* Fixes podman-remote save to directories does not work
* [CI:DOCS] Add missing dash to verbose option
* [CI:DOCS] Fix Markdown table layout bugs
* [CI:DOCS] Rewrite --uidmap doc in podman-create.1.md and podman-run.1.md
* rmi: don't break when the image is missing a manifest
* Bump containers/image to v5.11.1
* Bump github.com/coreos/go-systemd from 22.2.0 to 22.3.1
* Fix lint
* Bump to v3.1.2-dev
- Split podman-remote into a subpackage
- Add missing scriptlets for systemd units
- Escape macros in comments
- Drop some obsolete workarounds, including %{go_nostrip}
==== poppler ====
Subpackages: libpoppler-cpp0 libpoppler-glib8 libpoppler109
- Add Export-SplashFont-symbols-used-by-Scribus.patch to fix
scribus' PDF import plugin
==== poppler-qt5 ====
- Add Export-SplashFont-symbols-used-by-Scribus.patch to fix
scribus' PDF import plugin
==== rpm ====
- Use --dwz-single-file-mode for packages that use
baselibs.conf mechanism.
- Add add-dwz-single-file-mode-option.patch patch.
==== tiff ====
Version update (4.2.0 -> 4.3.0)
- version update to 4.3.0
* Build and usage of the library and its utilities requires a C99
capable compiler.
* New optional codec for the LERC (Limited Error Raster Compression)
compression scheme. To have it available, configure libtiff against
the SDK available at https://github.com/esri/lerc
* Removal of unused, or now useless due to C99 availability,
functions in port/
* tiffcmp: fix comparaison with pixels that are
fractional number of bytes
* tiff2ps: exit the loop in case of error
* tiff2pdf: check that tiff_datasize fits in a signed tsize_t
==== vim ====
Version update (8.2.2725 -> 8.2.2800)
Subpackages: vim-data-common vim-small
- Updated to version 8.2.2800, fixes the following problems
* Vim9: message about compiling is wrong when using try/catch.
* Confusing error message with white space before comma in the arguments
of a function declaration.
* Function test fails.
* Special key names don't work if 'isident' is cleared.
* Vim9: wrong error message for referring to legacy script variable.
* Coverity complains about not restoring character.
* Prompt for s///c in Ex mode can be wrong.
* Detecting Lua version is not reliable.
* Vim9: cannot use legacy script-local var from :def function.
* Vim9: function reference found with prefix, not without.
* Vim9: for loop over string is a bit slow.
* Status line not updated when local 'statusline' option set.
* Extending a list with itself can give wrong result.
* Vim9: a lambda accepts too many arguments at the script level.
* Vim9: lambda with varargs doesn't work.
* Vim9: Partial call does not check right arguments.
* Vim9: when compiling a function fails it is cleared.
* Vim9: function state stuck when compiling with ":silent!".
* Vim9: no way to explicitly ignore an argument.
* Vim9: missing part of the argument change.
* Check for duplicate arguments does not work.
* Vim9: not always an error for too many function arguments.
* Vim9: memory leak when calling :def function fails.
* Vim9: test for error can be a bit flaky.
* Vim9: error for using underscore in nested function.
* Coverity warns for using NULL pointer.
* Vim9: cannot ignore an item in assignment unpack.
* :sleep! does not always hide the cursor.
* Vim9: no error for using a number in a condition.
* Vim9: blob index and slice not implemented yet.
* Vim9: blob tests for legacy and Vim9 script are separate.
* Vim9: wrong line number for autoload function with wrong name.
* Vim9: for loop infers type of loop variable.
* Vim9: no error for changing a for loop variable.
* Using "syn include" does not work properly.
* Vim9: function line truncated when compiling.
* Vim9: cannot use type in for loop unpack at script level.
* Memory leak when default function argument is allocated.
* Vim9: not all blob operations work.
* Test failure.
* Compiler warning for unused argument.
* Vim9: memory leak with blob range error.
* Modula-3 config files are not recognized.
* Vim9: type of loop variable is not used.
* Vim9: assignment not recognized if declaration was skipped.
* Problems when restoring 'runtimepath' from a session file.
* PSL filetype not recognized.
* Vim9: cannot import an existing name even when using "as".
* Vim9: wrong line number used for some commands.
* :mksession uses current value of 'splitbelow' and 'splitright' even though
"options" is not in 'sessionoptions'. (Maxim Kim)
* Vim9: blob operations not tested in all ways.
* Problem restoring 'packpath' in session.
* Memory access error in remove() for blob.
* Vim9: for loop over blob doesn't work.
* Add() silently skips when adding to null list or blob.
* Vim9: blob operations not fully tested.
* Duplicate code for setting byte in blob, blob test may fail.
* Vim9: cannot use \=expr in :substitute.
* Vim9: cannot redirect to local variable.
* Vim9: memory leak when using :s with expression.
* Raku is now the only name what once was called perl6.
* Vim9: using \=expr in :substitute does not handle jumps.
* filetype test fails
* Vim9: memory leak when using \=expr in :substitute.
* Vim9: :disas shows instructions for default args but no text.
* Linux users don't know how to get ncurses.
* Coverity warns for not using return value.
* Vim9: redir to variable does not accept an index.
* Search highlight disappears in the Visual area.
* Vim9: redir to variable with append does not accept an index.
* Vim9: type casts don't fully work at the script level.
* After a timer displays text a hit-enter prompt is given.
==== xdg-utils ====
- Add support-deepin-desktop.patch
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=1&version=T…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
file (5.39 -> 5.40)
installation-images-MicroOS (16.72 -> 17.0)
kernel-source (5.11.16 -> 5.12.0)
krb5
openSUSE-build-key
podman (3.1.1 -> 3.1.2)
rpm
tiff (4.2.0 -> 4.3.0)
vim (8.2.2725 -> 8.2.2800)
=== Details ===
==== file ====
Version update (5.39 -> 5.40)
Subpackages: file-magic libmagic1
- Add patch file-5.40-ascii.patch
* fix regressions on dection of smaller ASCII files (boo#1184899)
- Add upstream comitts as patches
* file-5.40-9b0459af.patch
put attributes inside the xz magic. (boo#1184888, boo#1184891)
* file-5.40-749e1ecf.patch
If the file is less than 3 bytes, use the file length to determine type
* file-5.40-f0601504.patch
Fix regression after unsigned/signed printing changes
* file-5.40-f7705dca.patch
fix previous (cast >>)
* file-5.40-3096f87f.patch
Correct return values to exptexted
* file-5.40-4c5fe1ad.patch
Add missing parens
- Port patch
* file-5.28-btrfs-image.dif
due patch file-5.40-f0601504.patch
- Add upstream commits as patches
* file-5.40-1c677c04.patch
Don't count each byte encounter as 1, count the total number
of bytes found (Anatol Belski). This makes it behave like 5.39
* file-5.40-6b34436a.patch
remove "u" from the pattern (Joerg Jenderek)
* file-5.40-9e2becec.patch
Encoding bug fix
- Fix offsets of patches
* file-5.17-option.dif
* file-5.19-biorad.dif
* file-5.19-printf.dif
* file-5.19-zip2.0.dif
* file-5.22-elf.dif
* file-5.23-endian.patch
* file-5.28-btrfs-image.dif
* file-5.38-allow-readlinkat.dif
* file-secure_getenv.patch
- update to 5.40:
* Add limit to the number of bytes to scan for encoding
* Fix /T (trim flag) for regex
* Trim trailing separator.
* Convert system read errors from corrupt ELF
files into human readable error messages
* Exclude surrogate pairs from utf-8 detection
- drop upstreamed patches:
* file-5.16-ocloexec.patch
* file-5.39-alternate_format.dif
==== installation-images-MicroOS ====
Version update (16.72 -> 17.0)
- merge gh#openSUSE/installation-images#498
- rescue: make sure /var/run is a link to /run
- rescue: link modules and firmware from correct location
- 17.0
- merge gh#openSUSE/installation-images#504
- no more libstoragemgmt-netapp-plugin
- 16.74
- merge gh#openSUSE/installation-images#503
- make usrmerge case depend on /lib link in filesystem package
- 16.73
- merge gh#openSUSE/installation-images#502
- extend 'exists' operator to test for a specfic type
==== kernel-source ====
Version update (5.11.16 -> 5.12.0)
- Update to 5.12 final
- refresh configs (headers only)
- commit 9683115
- rpm/kernel-binary.spec.in: Require new enough pahole.
pahole 1.21 is required for building line-next BTF
- commit 8df1aaa
- rpm/macros.kernel-source: fix KMP failure in %install (bsc#1185244)
- commit 52805ed
==== krb5 ====
- Use /run instead of /var/run for daemon PID files; (bsc#1185163);
==== openSUSE-build-key ====
- fixed s390x key install (bsc#1185245)
==== podman ====
Version update (3.1.1 -> 3.1.2)
Subpackages: podman-cni-config
- Update to version 3.1.2:
* Bump to v3.1.2
* Update release notes for v3.1.2
* Ensure mount destination is clean, no trailing slash
* Fixes podman-remote save to directories does not work
* [CI:DOCS] Add missing dash to verbose option
* [CI:DOCS] Fix Markdown table layout bugs
* [CI:DOCS] Rewrite --uidmap doc in podman-create.1.md and podman-run.1.md
* rmi: don't break when the image is missing a manifest
* Bump containers/image to v5.11.1
* Bump github.com/coreos/go-systemd from 22.2.0 to 22.3.1
* Fix lint
* Bump to v3.1.2-dev
- Split podman-remote into a subpackage
- Add missing scriptlets for systemd units
- Escape macros in comments
- Drop some obsolete workarounds, including %{go_nostrip}
==== rpm ====
Subpackages: librpmbuild9
- Use --dwz-single-file-mode for packages that use
baselibs.conf mechanism.
- Add add-dwz-single-file-mode-option.patch patch.
==== tiff ====
Version update (4.2.0 -> 4.3.0)
- version update to 4.3.0
* Build and usage of the library and its utilities requires a C99
capable compiler.
* New optional codec for the LERC (Limited Error Raster Compression)
compression scheme. To have it available, configure libtiff against
the SDK available at https://github.com/esri/lerc
* Removal of unused, or now useless due to C99 availability,
functions in port/
* tiffcmp: fix comparaison with pixels that are
fractional number of bytes
* tiff2ps: exit the loop in case of error
* tiff2pdf: check that tiff_datasize fits in a signed tsize_t
==== vim ====
Version update (8.2.2725 -> 8.2.2800)
Subpackages: vim-data-common vim-small
- Updated to version 8.2.2800, fixes the following problems
* Vim9: message about compiling is wrong when using try/catch.
* Confusing error message with white space before comma in the arguments
of a function declaration.
* Function test fails.
* Special key names don't work if 'isident' is cleared.
* Vim9: wrong error message for referring to legacy script variable.
* Coverity complains about not restoring character.
* Prompt for s///c in Ex mode can be wrong.
* Detecting Lua version is not reliable.
* Vim9: cannot use legacy script-local var from :def function.
* Vim9: function reference found with prefix, not without.
* Vim9: for loop over string is a bit slow.
* Status line not updated when local 'statusline' option set.
* Extending a list with itself can give wrong result.
* Vim9: a lambda accepts too many arguments at the script level.
* Vim9: lambda with varargs doesn't work.
* Vim9: Partial call does not check right arguments.
* Vim9: when compiling a function fails it is cleared.
* Vim9: function state stuck when compiling with ":silent!".
* Vim9: no way to explicitly ignore an argument.
* Vim9: missing part of the argument change.
* Check for duplicate arguments does not work.
* Vim9: not always an error for too many function arguments.
* Vim9: memory leak when calling :def function fails.
* Vim9: test for error can be a bit flaky.
* Vim9: error for using underscore in nested function.
* Coverity warns for using NULL pointer.
* Vim9: cannot ignore an item in assignment unpack.
* :sleep! does not always hide the cursor.
* Vim9: no error for using a number in a condition.
* Vim9: blob index and slice not implemented yet.
* Vim9: blob tests for legacy and Vim9 script are separate.
* Vim9: wrong line number for autoload function with wrong name.
* Vim9: for loop infers type of loop variable.
* Vim9: no error for changing a for loop variable.
* Using "syn include" does not work properly.
* Vim9: function line truncated when compiling.
* Vim9: cannot use type in for loop unpack at script level.
* Memory leak when default function argument is allocated.
* Vim9: not all blob operations work.
* Test failure.
* Compiler warning for unused argument.
* Vim9: memory leak with blob range error.
* Modula-3 config files are not recognized.
* Vim9: type of loop variable is not used.
* Vim9: assignment not recognized if declaration was skipped.
* Problems when restoring 'runtimepath' from a session file.
* PSL filetype not recognized.
* Vim9: cannot import an existing name even when using "as".
* Vim9: wrong line number used for some commands.
* :mksession uses current value of 'splitbelow' and 'splitright' even though
"options" is not in 'sessionoptions'. (Maxim Kim)
* Vim9: blob operations not tested in all ways.
* Problem restoring 'packpath' in session.
* Memory access error in remove() for blob.
* Vim9: for loop over blob doesn't work.
* Add() silently skips when adding to null list or blob.
* Vim9: blob operations not fully tested.
* Duplicate code for setting byte in blob, blob test may fail.
* Vim9: cannot use \=expr in :substitute.
* Vim9: cannot redirect to local variable.
* Vim9: memory leak when using :s with expression.
* Raku is now the only name what once was called perl6.
* Vim9: using \=expr in :substitute does not handle jumps.
* filetype test fails
* Vim9: memory leak when using \=expr in :substitute.
* Vim9: :disas shows instructions for default args but no text.
* Linux users don't know how to get ncurses.
* Coverity warns for not using return value.
* Vim9: redir to variable does not accept an index.
* Search highlight disappears in the Visual area.
* Vim9: redir to variable with append does not accept an index.
* Vim9: type casts don't fully work at the script level.
* After a timer displays text a hit-enter prompt is given.
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
cifs-utils
curl (7.76.0 -> 7.76.1)
less (563 -> 581)
python-cryptography
python-importlib-metadata (3.7.0 -> 3.7.2)
runc
shim-leap (15+git47 -> 15.4)
sssd
=== Details ===
==== cifs-utils ====
- cifs.upcall: fix regression in kerberos mount; (bsc#1184815).
* add 0001-cifs.upcall-fix-regression-in-kerberos-mount.patch
- CVE-2021-20208: cifs-utils: cifs.upcall kerberos auth leak in
container; (bsc#1183239); CVE-2021-20208.
* add 0001-cifs.upcall-try-to-use-container-ipc-uts-net-pid-mnt.patch
==== curl ====
Version update (7.76.0 -> 7.76.1)
Subpackages: libcurl4
- update to 7.76.1:
- ngtcp2: Use ALPN h3-29 for now
- TODO: remove 18.22 --fail-with-body
==== less ====
Version update (563 -> 581)
- less 581:
* Change ESC-u command to toggle, not disable, highlighting per
man page
* Add ESC-U command
* Add ctrl-W search modifier for wrapping search
* F command can be interrupted by ^X
* Support OSC 8 hyperlinks when -R is in effect
* g command with no number will ignore -j and put first line at
top of screen
* Multiple + or -p command line options are handled better
* Add the --incsearch option
* Add the --line-num-width option
* Add the --status-col-width option
* Add the --use-color and --color options
* Display -w highlight even if highlighted line is empty
* If search result is in a long line, scroll to ensure it is
visible
* Editing the same file under different names now creates only
one entry in the file list.
* Make visual bell more visible on some terminals
* Ring end-of-file bell no more than once per second
* Build can use either Python or Perl for Makefile.aut operations
* Fix crash when using the @ search modifier.
* Fix crash in the 's' command due to duplicate free
- drop less-429-save_line_position.patch which was never accepted
upstream due to solving one problem and creating others
==== python-cryptography ====
- Remove unnecessary %ifpython3 construct
==== python-importlib-metadata ====
Version update (3.7.0 -> 3.7.2)
- update to 3.7.2:
* Cleaned up cruft in entry_points docstring.
* Internal refactoring to facilitate ``entry_points() -> dict``
deprecation.
==== runc ====
- Backport patch to fix build on SLE-12 ppc64le.
+ 0001-cloned_binary-switch-from-error-to-warning-for-SYS_m.patch
==== shim-leap ====
Version update (15+git47 -> 15.4)
- Update to shim to 15.4-lp152.4.8.1 from openSUSE Leap 15.2 for
SBAT support (bsc#1182057)
+ Version: 15.4, "Wed Apr 21 05:46:19 UTC 2021"
+ Include the fixes for bsc#1177789, CVE-2019-14584, bsc#1177315,
bsc#1175509, bsc#1173411, bsc#1177404, bsc#1174512, bsc#1184454
- Add README to note why we need shim-leap for Tumbleweed
==== sssd ====
Subpackages: libsss_certmap0 libsss_idmap0 libsss_nss_idmap0 sssd-krb5-common sssd-ldap
- Move sssctl command from sssd to sssd-tools package; (bsc#1184289);
- Add missing /var/lib/sss/pubconf/krb5.include.d directory (bsc#1184285).
- Make cifs-idmap plugin (cifs_idmap_sss.so) use update-alternatives
mechanism to be able to switch between cifs-utils and sssd;
(bsc#1182682).
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=1&version=T…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
curl (7.76.0 -> 7.76.1)
less (563 -> 581)
python-cryptography
python-importlib-metadata (3.7.0 -> 3.7.2)
runc
shim-leap (15+git47 -> 15.4)
sssd
=== Details ===
==== curl ====
Version update (7.76.0 -> 7.76.1)
Subpackages: libcurl4
- update to 7.76.1:
- ngtcp2: Use ALPN h3-29 for now
- TODO: remove 18.22 --fail-with-body
==== less ====
Version update (563 -> 581)
- less 581:
* Change ESC-u command to toggle, not disable, highlighting per
man page
* Add ESC-U command
* Add ctrl-W search modifier for wrapping search
* F command can be interrupted by ^X
* Support OSC 8 hyperlinks when -R is in effect
* g command with no number will ignore -j and put first line at
top of screen
* Multiple + or -p command line options are handled better
* Add the --incsearch option
* Add the --line-num-width option
* Add the --status-col-width option
* Add the --use-color and --color options
* Display -w highlight even if highlighted line is empty
* If search result is in a long line, scroll to ensure it is
visible
* Editing the same file under different names now creates only
one entry in the file list.
* Make visual bell more visible on some terminals
* Ring end-of-file bell no more than once per second
* Build can use either Python or Perl for Makefile.aut operations
* Fix crash when using the @ search modifier.
* Fix crash in the 's' command due to duplicate free
- drop less-429-save_line_position.patch which was never accepted
upstream due to solving one problem and creating others
==== python-cryptography ====
- Remove unnecessary %ifpython3 construct
==== python-importlib-metadata ====
Version update (3.7.0 -> 3.7.2)
- update to 3.7.2:
* Cleaned up cruft in entry_points docstring.
* Internal refactoring to facilitate ``entry_points() -> dict``
deprecation.
==== runc ====
- Backport patch to fix build on SLE-12 ppc64le.
+ 0001-cloned_binary-switch-from-error-to-warning-for-SYS_m.patch
==== shim-leap ====
Version update (15+git47 -> 15.4)
- Update to shim to 15.4-lp152.4.8.1 from openSUSE Leap 15.2 for
SBAT support (bsc#1182057)
+ Version: 15.4, "Wed Apr 21 05:46:19 UTC 2021"
+ Include the fixes for bsc#1177789, CVE-2019-14584, bsc#1177315,
bsc#1175509, bsc#1173411, bsc#1177404, bsc#1174512, bsc#1184454
- Add README to note why we need shim-leap for Tumbleweed
==== sssd ====
Subpackages: libsss_certmap0 libsss_idmap0 libsss_nss_idmap0 sssd-krb5-common sssd-ldap
- Move sssctl command from sssd to sssd-tools package; (bsc#1184289);
- Add missing /var/lib/sss/pubconf/krb5.include.d directory (bsc#1184285).
- Make cifs-idmap plugin (cifs_idmap_sss.so) use update-alternatives
mechanism to be able to switch between cifs-utils and sssd;
(bsc#1182682).
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
container-selinux (2.158.0 -> 2.160.1)
dnf (4.6.1 -> 4.7.0)
grub2
kernel-source (5.11.15 -> 5.11.16)
kexec-tools (2.0.20 -> 2.0.21)
libgcrypt (1.9.2 -> 1.9.3)
lvm2
lvm2-device-mapper
patterns-microos
pipewire (0.3.25 -> 0.3.26)
python-MarkupSafe
python-jsonpatch (1.28 -> 1.31)
suse-module-tools (15.4.0 -> 15.4.1)
xinit
=== Details ===
==== container-selinux ====
Version update (2.158.0 -> 2.160.1)
- Fix container runtime binary labels (bsc#1185030). You need to
relable at least /usr/sbin if you're affected
==== dnf ====
Version update (4.6.1 -> 4.7.0)
- Update to version 4.7.0
+ Improve repo config path ordering to fix a comps merging issue (rh#1928181)
+ Keep reason when package is removed (rh#1921063)
+ Improve mechanism for application of security filters (rh#1918475)
+ [doc] Add description for new API
+ [API] Add new method for reset of security filters
+ [doc] Improve documentation for Hotfix repositories
+ [doc] fix: "makecache" command downloads only enabled repositories
+ Use libdnf.utils.checksum_{check,value}
+ [doc] Add info that maximum parallel downloads is 20
+ Increase loglevel in case of invalid config options
+ [doc] installonly_limit documentation follows behavior
+ Prevent traceback (catch ValueError) if pkg is from cmdline
+ Add documentation for config option sslverifystatus (rh#1814383)
+ Check for specific key string when verifing signatures (rh#1915990)
+ Use rpmkeys binary to verify package signature (rh#1915990)
+ Bugs fixed (rh#1916783)
+ Preserve file mode during log rotation (rh#1910084)
==== grub2 ====
Subpackages: grub2-i386-pc grub2-snapper-plugin grub2-x86_64-efi
- Fix obsolete syslog in systemd unit file and updating to use journal as
StandardOutput (bsc#1185149)
* grub2-once.service
==== kernel-source ====
Version update (5.11.15 -> 5.11.16)
- Revert "rpm/kernel-binary.spec.in: Fix dependency of kernel-*-devel package (bsc#1184514)"
This turned out to be a bad idea: the kernel-$flavor-devel package
must be usable without kernel-$flavor, e.g. at the build of a KMP.
And this change brought superfluous installation of kernel-preempt
when a system had kernel-syms (bsc#1185113).
- commit d771304
- rpm/check-for-config-changes: add AS_HAS_* to ignores
arch/arm64/Kconfig defines a lot of these. So far our current compilers
seem to support them all. But it can quickly change with SLE later.
- commit a4d8194
- Linux 5.11.16 (bsc#1012628).
- bpf: Move sanitize_val_alu out of op switch (bsc#1012628).
- bpf: Improve verifier error messages for users (bsc#1012628).
- bpf: Rework ptr_limit into alu_limit and add common error path
(bsc#1012628).
- ARM: 9071/1: uprobes: Don't hook on thumb instructions
(bsc#1012628).
- bpf: Move off_reg into sanitize_ptr_alu (bsc#1012628).
- bpf: Ensure off_reg has no mixed signed bounds for all types
(bsc#1012628).
- r8169: don't advertise pause in jumbo mode (bsc#1012628).
- r8169: tweak max read request size for newer chips also in
jumbo mtu mode (bsc#1012628).
- kasan: remove redundant config option (bsc#1012628).
- kasan: fix hwasan build for gcc (bsc#1012628).
- KVM: VMX: Don't use vcpu->run->internal.ndata as an array index
(bsc#1012628).
- KVM: VMX: Convert vcpu_vmx.exit_reason to a union (bsc#1012628).
- bpf: Use correct permission flag for mixed signed bounds
arithmetic (bsc#1012628).
- arm64: dts: allwinner: h6: beelink-gs1: Remove ext. 32 kHz
osc reference (bsc#1012628).
- arm64: dts: allwinner: Fix SD card CD GPIO for SOPine systems
(bsc#1012628).
- ARM: OMAP2+: Fix uninitialized sr_inst (bsc#1012628).
- ARM: footbridge: fix PCI interrupt mapping (bsc#1012628).
- ARM: 9069/1: NOMMU: Fix conversion for_each_membock() to
for_each_mem_range() (bsc#1012628).
- ARM: 9063/1: mm: reduce maximum number of CPUs if
DEBUG_KMAP_LOCAL is enabled (bsc#1012628).
- ARM: OMAP2+: Fix warning for omap_init_time_of() (bsc#1012628).
- gro: ensure frag0 meets IP header alignment (bsc#1012628).
- ch_ktls: do not send snd_una update to TCB in middle
(bsc#1012628).
- ch_ktls: tcb close causes tls connection failure (bsc#1012628).
- ch_ktls: fix device connection close (bsc#1012628).
- ch_ktls: Fix kernel panic (bsc#1012628).
- ibmvnic: remove duplicate napi_schedule call in open function
(bsc#1012628).
- ibmvnic: remove duplicate napi_schedule call in do_reset
function (bsc#1012628).
- ibmvnic: avoid calling napi_disable() twice (bsc#1012628).
- ia64: tools: remove inclusion of ia64-specific version of
errno.h header (bsc#1012628).
- ia64: remove duplicate entries in generic_defconfig
(bsc#1012628).
- ethtool: pause: make sure we init driver stats (bsc#1012628).
- i40e: fix the panic when running bpf in xdpdrv mode
(bsc#1012628).
- ibmvnic: correctly use dev_consume/free_skb_irq (bsc#1012628).
- net: Make tcp_allowed_congestion_control readonly in non-init
netns (bsc#1012628).
- mm: ptdump: fix build failure (bsc#1012628).
- net: ip6_tunnel: Unregister catch-all devices (bsc#1012628).
- net: sit: Unregister catch-all devices (bsc#1012628).
- net: phy: marvell: fix detection of PHY on Topaz switches
(bsc#1012628).
- net: davicom: Fix regulator not turned off on failed probe
(bsc#1012628).
- net/mlx5e: Fix setting of RS FEC mode (bsc#1012628).
- netfilter: nftables: clone set element expression template
(bsc#1012628).
- netfilter: nft_limit: avoid possible divide error in
nft_limit_init (bsc#1012628).
- net/mlx5e: fix ingress_ifindex check in mlx5e_flower_parse_meta
(bsc#1012628).
- net: macb: fix the restore of cmp registers (bsc#1012628).
- drm/i915/display/vlv_dsi: Do not skip panel_pwr_cycle_delay
when disabling the panel (bsc#1012628).
- libbpf: Fix potential NULL pointer dereference (bsc#1012628).
- netfilter: arp_tables: add pre_exit hook for table unregister
(bsc#1012628).
- netfilter: bridge: add pre_exit hooks for ebtable unregistration
(bsc#1012628).
- libnvdimm/region: Fix nvdimm_has_flush() to handle
ND_REGION_ASYNC (bsc#1012628).
- ice: Fix potential infinite loop when using u8 loop counter
(bsc#1012628).
- netfilter: conntrack: do not print icmpv6 as unknown via /proc
(bsc#1012628).
- netfilter: flowtable: fix NAT IPv6 offload mangling
(bsc#1012628).
- ixgbe: fix unbalanced device enable/disable in suspend/resume
(bsc#1012628).
- ixgbe: Fix NULL pointer dereference in ethtool loopback test
(bsc#1012628).
- drm/vmwgfx: Make sure we unpin no longer needed buffers
(bsc#1012628).
- scsi: libsas: Reset num_scatter if libata marks qc as NODATA
(bsc#1012628).
- riscv: Fix spelling mistake "SPARSEMEM" to "SPARSMEM"
(bsc#1012628).
- vfio/pci: Add missing range check in vfio_pci_mmap
(bsc#1012628).
- arm64: alternatives: Move length validation in
alternative_{insn, endif} (bsc#1012628).
- arm64: mte: Ensure TIF_MTE_ASYNC_FAULT is set atomically
(bsc#1012628).
- Update config files.
- arm64: fix inline asm in load_unaligned_zeropad() (bsc#1012628).
- drm/i915: Don't zero out the Y plane's watermarks (bsc#1012628).
- readdir: make sure to verify directory entry for legacy
interfaces too (bsc#1012628).
- dm verity fec: fix misaligned RS roots IO (bsc#1012628).
- HID: wacom: set EV_KEY and EV_ABS only for non-HID_GENERIC
type of devices (bsc#1012628).
- Input: i8042 - fix Pegatron C15B ID entry (bsc#1012628).
- Input: s6sy761 - fix coordinate read bit shift (bsc#1012628).
- net/sctp: fix race condition in sctp_destroy_sock (bsc#1012628).
- lib: fix kconfig dependency on ARCH_WANT_FRAME_POINTERS
(bsc#1012628).
- virt_wifi: Return micros for BSS TSF values (bsc#1012628).
- mac80211: clear sta->fast_rx when STA removed from 4-addr VLAN
(bsc#1012628).
- drm/amd/display: Add missing mask for DCN3 (bsc#1012628).
- pcnet32: Use pci_resource_len to validate PCI resource
(bsc#1012628).
- net: ieee802154: forbid monitor for add llsec seclevel
(bsc#1012628).
- net: ieee802154: stop dump llsec seclevels for monitors
(bsc#1012628).
- net: ieee802154: forbid monitor for del llsec devkey
(bsc#1012628).
- net: ieee802154: forbid monitor for add llsec devkey
(bsc#1012628).
- net: ieee802154: stop dump llsec devkeys for monitors
(bsc#1012628).
- net: ieee802154: forbid monitor for del llsec dev (bsc#1012628).
- net: ieee802154: forbid monitor for add llsec dev (bsc#1012628).
- net: ieee802154: stop dump llsec devs for monitors
(bsc#1012628).
- net: ieee802154: forbid monitor for del llsec key (bsc#1012628).
- net: ieee802154: forbid monitor for add llsec key (bsc#1012628).
- net: ieee802154: stop dump llsec keys for monitors
(bsc#1012628).
- iwlwifi: add support for Qu with AX201 device (bsc#1012628).
- scsi: scsi_transport_srp: Don't block target in SRP_PORT_LOST
state (bsc#1012628).
- ASoC: fsl_esai: Fix TDM slot setup for I2S mode (bsc#1012628).
- drm/msm: Fix a5xx/a6xx timestamps (bsc#1012628).
- ARM: omap1: fix building with clang IAS (bsc#1012628).
- ARM: keystone: fix integer overflow warning (bsc#1012628).
- powerpc/signal32: Fix Oops on sigreturn with unmapped VDSO
(bsc#1012628).
- neighbour: Disregard DEAD dst in neigh_update (bsc#1012628).
- bpf: Take module reference for trampoline in module
(bsc#1012628).
- gpu/xen: Fix a use after free in xen_drm_drv_init (bsc#1012628).
- net: axienet: allow setups without MDIO (bsc#1012628).
- ASoC: max98373: Added 30ms turn on/off time delay (bsc#1012628).
- ASoC: max98373: Changed amp shutdown register as volatile
(bsc#1012628).
- xfrm: BEET mode doesn't support fragments for inner packets
(bsc#1012628).
- iwlwifi: Fix softirq/hardirq disabling in
iwl_pcie_enqueue_hcmd() (bsc#1012628).
- arc: kernel: Return -EFAULT if copy_to_user() fails
(bsc#1012628).
- lockdep: Add a missing initialization hint to the "INFO:
Trying to register non-static key" message (bsc#1012628).
- remoteproc: pru: Fix loading of GNU Binutils ELF (bsc#1012628).
- ARM: dts: Fix moving mmc devices with aliases for omap4 & 5
(bsc#1012628).
- ARM: dts: Drop duplicate sha2md5_fck to fix clk_disable race
(bsc#1012628).
- ACPI: x86: Call acpi_boot_table_init() after
acpi_table_upgrade() (bsc#1012628).
- dmaengine: idxd: fix wq cleanup of WQCFG registers
(bsc#1012628).
- dmaengine: idxd: clear MSIX permission entry on shutdown
(bsc#1012628).
- dmaengine: plx_dma: add a missing put_device() on error path
(bsc#1012628).
- dmaengine: Fix a double free in dma_async_device_register
(bsc#1012628).
- dmaengine: dw: Make it dependent to HAS_IOMEM (bsc#1012628).
- dmaengine: idxd: fix wq size store permission state
(bsc#1012628).
- dmaengine: idxd: fix opcap sysfs attribute output (bsc#1012628).
- dmaengine: idxd: fix delta_rec and crc size field for completion
record (bsc#1012628).
- dmaengine: idxd: Fix clobbering of SWERR overflow bit on
writeback (bsc#1012628).
- gpio: sysfs: Obey valid_mask (bsc#1012628).
- Input: nspire-keypad - enable interrupts only when opened
(bsc#1012628).
- mtd: rawnand: mtk: Fix WAITRDY break condition and timeout
(bsc#1012628).
- AMD_SFH: Add DMI quirk table for BIOS-es which don't set the
activestatus bits (bsc#1012628).
- AMD_SFH: Add sensor_mask module parameter (bsc#1012628).
- AMD_SFH: Removed unused activecontrolstatus member from the
amd_mp2_dev struct (bsc#1012628).
- commit d57ad55
==== kexec-tools ====
Version update (2.0.20 -> 2.0.21)
- kexec-tools-remove-duplicate-ramdisk-definition.patch:
Remove duplicate definition of ramdisk (fix ppc build).
- Bump version to 2.0.21
- Drop patches from upstream git:
* kexec-tools-add-variant-helper-functions.patch
* kexec-tools-arm64-kexec-allocate-memory-space-avoiding-reserved-regions.patch
* kexec-tools-arm64-kdump-deal-with-resource-entries-in-proc-iomem.patch
* kexec-tools-build-multiboot2-for-i386.patch
* kexec-tools-fix-kexec_file_load-error-handling.patch
* kexec-tools-reset-getopt-before-falling-back-to-legacy.patch
* kexec-tools-s390-Reset-kernel-command-line-on-syscal.patch
* kexec-tools-Remove-duplicated-variable-declarations.patch
- Hardening: Link as PIE (bsc#1185020).
==== libgcrypt ====
Version update (1.9.2 -> 1.9.3)
- libgcrypt 1.9.3:
* Bug fixes:
- Fix build problems on i386 using gcc-4.7.
- Fix checksum calculation in OCB decryption for AES on s390.
- Fix a regression in gcry_mpi_ec_add related to certain usages
of curve 25519.
- Fix a symbol not found problem on Apple M1.
- Fix for Apple iOS getentropy peculiarity.
- Make keygrip computation work for compressed points.
* Performance:
- Add x86_64 VAES/AVX2 accelerated implementation of Camellia.
- Add x86_64 VAES/AVX2 accelerated implementation of AES.
- Add VPMSUMD acceleration for GCM mode on PPC.
* Internal changes.
- Harden MPI conditional code against EM leakage.
- Harden Elgamal by introducing exponent blinding.
==== lvm2 ====
Subpackages: liblvm2cmd2_03
- Honor lvm.conf event_activation=0 on "pvscan --cache -aay" (bsc#1185190)
+ bug-1185190_01-pvscan-support-disabled-event_activation.patch
+ bug-1185190_02-config-improve-description-for-event_activation.patch
- LVM cannot be disabled on boot (bsc#1184687)
+ bug-1184687_Add-nolvm-for-kernel-cmdline.patch
- Update patch for avoiding apply warning message
+ bug-1012973_simplify-special-case-for-md-in-69-dm-lvm-metadata.patch
- Add metadata-based autoactivation property for VG and LV (bsc#1178680)
+ bug-1178680_add-metadata-based-autoactivation-property-for-VG-an.patch
==== lvm2-device-mapper ====
Subpackages: device-mapper libdevmapper-event1_03 libdevmapper1_03
- Honor lvm.conf event_activation=0 on "pvscan --cache -aay" (bsc#1185190)
+ bug-1185190_01-pvscan-support-disabled-event_activation.patch
+ bug-1185190_02-config-improve-description-for-event_activation.patch
- LVM cannot be disabled on boot (bsc#1184687)
+ bug-1184687_Add-nolvm-for-kernel-cmdline.patch
- Update patch for avoiding apply warning message
+ bug-1012973_simplify-special-case-for-md-in-69-dm-lvm-metadata.patch
- Add metadata-based autoactivation property for VG and LV (bsc#1178680)
+ bug-1178680_add-metadata-based-autoactivation-property-for-VG-an.patch
==== patterns-microos ====
Subpackages: patterns-microos-alt_onlyDVD patterns-microos-apparmor patterns-microos-base patterns-microos-base-microdnf patterns-microos-base-packagekit patterns-microos-base-zypper patterns-microos-basesystem patterns-microos-cloud patterns-microos-cockpit patterns-microos-defaults patterns-microos-desktop-common patterns-microos-desktop-gnome patterns-microos-desktop-kde patterns-microos-hardware patterns-microos-ima_evm patterns-microos-onlyDVD patterns-microos-selinux patterns-microos-sssd_ldap
- Suggest libdnf-repo-config-zypp explicitly
- Fix dependency on systemd-icon-branding-openSUSE
- Use only kernel-firmware-all instead of kernel-firmware to avoid
duplicate firmware on the DVD
- spice-vdagent is available on all archs
- hyper-v and open-vm-tools are available on AArch64 as well
- A fresh install does not have xdg-open & friends. Fix by adding xdg-utils
- while there, fix the comment, as they're common tools, but not
necessarily useful only "during initial setup"
- Add packages to the desktop commons pattern:
systemd-icons-branding-openSUSE (to list the MicroOS logo on the
Gnome Settings About page)
- Add packages to the DVD:
- instead of adding firmware-all, add specific firmware packages for
common hardware (or at least, for hardware for which we have bugs
open, see bsc#1184767 and bsc#1184403)
- Add some packages in the DVD:
- Spice guest driver so graphics works properly out of the box,
when installing in VMs (mostly for desktops)
- firmwares so that (wireless mostly, bot also wired) networking
works in the installer and on the installed system
==== pipewire ====
Version update (0.3.25 -> 0.3.26)
Subpackages: gstreamer-plugin-pipewire libpipewire-0_3-0 pipewire-modules pipewire-spa-plugins-0_2 pipewire-spa-tools pipewire-tools
- Update to 0.3.26:
+ Highlights:
- I18n support, with translations merged from PulseAudio.
- New pw-link tool.
- Many Bluetooth improvements, support for hardware volumes.
- Support for 64 channel devices.
- Stability fixes and improvements.
+ PipeWire improvements:
- The link factory can now also make links between nodes and
ports by name so that it can be used in scripts.
- Add module-protocol-simple that can stream raw audio on a
socket.
- Added i18n support. Merge PulseAudio translations for the ACP
library so that we don't cause regressions.
- Support more than 19 channels in the channel mixer. This
makes all channels usable on 32 and 64 channel cards.
- Detect if we're running in a VM and allow for tweaking some
settings such as the max-quantum to make things work better
in VMs.
- Fix a potential crash when connecting a client and updating
permissions.
- Fix a potential crash when trying to link incompatible ports.
- Lingering links in error will now be destroyed automatically.
+ Tools:
- Added new pw-link tool to list and monitor ports and to list,
monitor, create and destroy links between them.
- pw-cli can now also list params by name.
- pw-dump now outputs Spa:String:JSON types in metadata as
properly parsed and formatted JSON so that tools can parse
the metadata values using a JSON parser.
+ Session-manager:
- Add logind support. The bluetooth monitor can only be started
for one user at the time, so use logind detect active seats.
- ALSA icon names were improved to match what PulseAudio does.
- Improve the bluetooth icon name. Also use the device alias as
the device description, like PulseAudio.
+ Device support:
- When devices become inaccessible, they are now removed from
the PipeWire graph.
- Fix datatype selection for buffers in v4l2 and libcamera.
+ Bluetooth:
- Various memory leaks and crashes are fixed.
- Added support for AVRCP hardware volume.
- Added support for HSP/HFP hardware volume.
+ PulseAudio server:
- Fix module-loopback connections to monitor ports.
- Implement module-native-protocol-tcp.
- Handle nodes and streams with > 32 channels. The PulseAudio
API only supports up to 32 channels so only make those 32
first channels available with the PA API.
- Implement module-simple-protocol-tcp.
- Improve events emitted by the server.
- Improvements to channels and channel_map properties on
modules. One can imply the other and they should match when
both given.
- null-sink will now have their volume work correctly by
default.
+ JACK: JACK developement files can now optionally be installed.
==== python-MarkupSafe ====
- allow tests to be disabled (still on by default)
==== python-jsonpatch ====
Version update (1.28 -> 1.31)
- update to 1.31:
* Add support for preserving Unicode charaters
* remove pypy build
==== suse-module-tools ====
Version update (15.4.0 -> 15.4.1)
- Update to version 15.4.1:
* dm-crypt requires essiv in SLE15 SP3 (boo#1183063 bsc#1184134 ltc#192244).
==== xinit ====
- modernize spec file (move license to licensedir, use https)
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=1&version=T…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
container-selinux (2.158.0 -> 2.160.1)
cri-o (1.20.2 -> 1.21.0)
dnf (4.6.1 -> 4.7.0)
grub2
kernel-source (5.11.15 -> 5.11.16)
kexec-tools (2.0.20 -> 2.0.21)
kubernetes (1.20.2 -> 1.21.0)
kubernetes1.20 (1.20.2 -> 1.20.6)
libgcrypt (1.9.2 -> 1.9.3)
lvm2
lvm2-device-mapper
patterns-microos
python-M2Crypto
python-MarkupSafe
python-jsonpatch (1.28 -> 1.31)
rook (1.5.7+git4.gae949004e -> 1.5.10+git4.g309ad2f64)
suse-module-tools (15.4.0 -> 15.4.1)
=== Details ===
==== container-selinux ====
Version update (2.158.0 -> 2.160.1)
- Fix container runtime binary labels (bsc#1185030). You need to
relable at least /usr/sbin if you're affected
==== cri-o ====
Version update (1.20.2 -> 1.21.0)
Subpackages: cri-o-kubeadm-criconfig
- Update to version 1.21.0:
* bump to v1.21.0
* config: drop registries field as it is no longer supported
* Revert "test: drop unneeded sed statement"
* WIP: add debug print
* test: drop unneeded sed statement
* config: fix template insecure_registries field
* config: drop commented config lines
* build(deps): bump google.golang.org/grpc from 1.36.1 to 1.37.0
* Bump OpenShift CI cri-tools version and fix build path
* build(deps): bump github.com/containers/image/v5 from 5.10.5 to 5.11.0
* Bump cri-tools to v1.21.0
* Update Kubernetes to v1.21.0
* Add container out of memory metrics
* [CLI] "crio config" only prints the fields that are differet than the default.
* Set short name mode to permissive
* docs-validation: update to handle workloads
* Fix unnecessary conversion lint report
* add tests for workloads
* integrate with server
* config: update workloads structure
* Clarify release cadence and version skew
* Add correct start time to initial log output
* Add support for workload settings
* refactor handling of allowed_annotations
* Do not push main binary into cachix cache
* resourcestore: introduce ResourceCleaner
* Use internal logging when context available
* build(deps): bump github.com/coreos/go-systemd/v22 from 22.3.0 to 22.3.1
* server: remove dead code
* sandbox: use defined CRI type for NamespaceOption
* config: remove dead code
* oci: remove dead code
* lib: remove dead code
* build(deps): bump github.com/containers/podman/v3
* build(deps): bump k8s.io/client-go from 0.20.1 to 0.20.5
* update pause image to 3.5 for non-root
* build(deps): bump github.com/soheilhy/cmux from 0.1.4 to 0.1.5
* build(deps): bump google.golang.org/grpc from 1.34.0 to 1.36.1
* build(deps): bump github.com/containers/buildah from 1.19.8 to 1.20.0
* build(deps): bump github.com/prometheus/client_golang
* build(deps): bump github.com/godbus/dbus/v5 from 5.0.3 to 5.0.4
* build(deps): bump k8s.io/cri-api from 0.20.1 to 0.20.5
* build(deps): bump github.com/containers/podman/v3
* build(deps): bump k8s.io/kubernetes from 1.13.0 to 1.20.5
* crio-wipe: only clear storage if CleanShutdownFile is supported
* Add static bundle node e2e tests to GitHub actions
* Reload the main config file when reloading configs
* crio wipe: only completely wipe storage after a reboot
* Bump static binary dependency versions
* Add dependabot config file
* runtimeVM: Fix shimv2 binary name construction
* config,runtimeVM: Improve runtime_path validation
* oci_test: Add basic coverage to "RuntimeType()"
* oci_test: Add basic coverage to "privileged_without_host_devices"
* oci_test: Leave invalidRuntime on its own line
* tweak scope dependencies
* Do not return `<none>` placeholders for images any more
* Fix invalid libcontainer GetExecUser call
* Update dependencies
* config: Don't fail if the non default runtime doesn't pass validation
* Remove check for CI env variable for release-notes and dependencies
* cgmgr: add CreateSandboxCgroup method
* inspect: send container PID for dropped infra sandbox
* oci: specify sbox id when creating spoofed container
* Run GitHub actions on release branches
* Update bats to v1.3.0 (#4661)
* use happy-eyeballs for port-forwarding
* fix mock issues
* fix lint issues
* install: drop support matrix and update instructions
* do not store context in runtime vm
* Fix lint GitHub action
* pkg/container: take process args
* Use and publish version marker for CRI-O
* Add GitHub API pages support to `get` script
* add libbtrfs-dev to unit tests
* Revert "server: use IsAlive() more"
* Fix GitHub actions cache key
* Bug 1881694: Add pull source as info level log
* test: use latest conmon
* runtime_vm: Create the global fifo inside the runtime root path
* stats: fix log spam
* Support CRI seccomp security profiles
* oci: add unit tests for stop timeouts
* oci: don't update stop timeout if it's earlier than old one
* oci: update timeout even if we're ignoring kill
* oci: don't wait too long on a long stop
* oci: check process is still around with kill
* Add integration test for started/finished container time
* fix: Don't set `image-endpoint` in crictl config
* feat: Add CLI option to set registries.conf.d path
* Add allowed io.containers.trace-syscall annotation to static bundle
* Make `get` script independent from `make`
* test: correct the env variable for dropping the infra container
* Add metric to grab latency of individual cri calls
* Fix `get` script commit SHA retrieval
* Add arm64 static build to GitHub actions
* Fix GitHub actions workflow syntax
* Updates yq commnands for yq v4
* gh-actions: also run on release branches
* pkg/sandbox: add InitInfraContainer endpoint
* test: reconfigure how runtimes are passed in
* test: add runtime() function
* sandbox/container: drop context
* test: drop workaround for crun
* pkg/sandbox: cleanup unused funcs/files
* fix doc log_level adding trace option
* Fix oci container update config
* Update e2e-aws logic for 4.8
* nsmgr: take Initalize method
* Switch to go 1.16 for GitHub actions and remove scripts/build-test-image
* config: remove and create the correct dir
* Update nix pin with `make nixpkgs`
* server: mount cgroup with rslave
* crio wipe: ensure a clean shutdown
* Move integration tests to GitHub actions
* Run release-notes GitHub action after dependencies
* Bumps github.com/containers/ocicrypt from 1.0.3 to 1.1.0.
* config/node: refactor checking for CollectMode
* Fix GitHub actions checkout permissions
* change binary version to 1.21.0-dev
* Set conmon scope KillSignal to SIGPIPE
* Move repo modification jobs to GitHub actions
* bump protobuf to 1.3.2
* Log container stop timeout
* ResourceStore: add close method
* Allow seccomp hook tracing for separate containers
* ResourceStore: extend tests to test WatcherForResource
* ResourceStore: update tests to all run
* ResourceStore: update docs for WatcherForResource
* ResourceStore: don't segfault
* server: support setting raw unified cgroupv2 settings
* vendor: update runtime-specs
* cgroup: implement fix for swap memcg on cgroup v2
* server: leave swap mem limit unset if not supported
* test: skip ServiceAccountIssuerDiscovery test
* hostport manager clean up host ports
* allows stream timeout to be set from config
* config: pre-create pinns directories
* Bump containers image to v5.10.1
* Move unit tests to GitHub actions
* Move go1.14 and 386 builds to GitHub actions
* set kubelet node IP
* Fix validate-completions GitHub action
* Add integration test for pprof over unix socket
* Add a flag for enabling profile over unix socket
* Lookup echo command for unit tests
* Move static build to GitHub actions
* pinns: Fixup 'pwarn' output to match 'pwarnf' output
* pinns: Don't put errno in the exit message for argument checks
* nsmgr: use host option
* nsmgr: Use config struct for NewPodNamespaces
* pinns: support pinning host ns
* Remove implicit GitHub action `name` fields
* Move docs and completions validation to GitHub actions
* Bump golangci-lint to v1.35.2
* Make config tests work rootless
* Make rootless namespace unit test execution work
* config: fix template to show infra_ctr_cpus option
* Do not log file path on ioutil.ReadFile
* fixes version_test.go
* Close the stdin/tty on server start to avoid shortname prompts
* docs: fix http link
* docs: update kubeadm tutorial
* Fix `make lint`
* Return runtime API version based on protocol
* Update compatibility matrix to mention v1.20
* add method comment
* restore irqbalance config only on system restart
* add blurb in doc and more informative name for unit tests
* add is-enabled check for irqbalance service
* fix unit tests
* add unit tests
* fix bash/zsh completions
* fix the docs validation
* handle irqbalance service
* runtime_vm: set finished time when containers stop
* nsmgr: fix/add calls to GetNamespace
* managed namespaces: move to dedicated package
* Provide integration test for infra-ctr-cpuset feature
* Set CPUs for the infra containers during the creation
* Add shell completion for infra-containers-cpu flag
* Add new infra-containers-cpus to the CLI and config file
* refine `registries` deprecation message
* Circle CI: install test/registries.conf
* crio.8.md: runroot defaults to /run/containers/storage
* support short-name aliases
* pull: do check for blocked registries
* config: deprecate registries
* Rollback gocapability vendor bump
* vendor: bump containers/storage to v1.24.4
* Update nix pin with `make nixpkgs`
* contrib/test/int: add Kata Containers runtime support
* contrib/test/int: enforce linking in parallel build process
* contrib/test/int: build parallel from sources in CentOS
* contrib/test/int: allow to skip user namespace testing
* contrib/test/int: allow to configure test timeout
* Capitalize Kubernetes
* modify the error url of podctl
* Add Digital Science to adopters
* crio.service: Request to be run before kubelet.service
* pinns: make binary not always static
* server: use IsAlive() more
* Support CRI v1 and v1alpha2 at the same time
* drop support for ManageNSLifecycle
* test/timeout.bats: increase timeout to fix flakes
* release-notes: fix flags
* test/timeout.bats: fix comments
* int/resourcestore: fix comment about Put
* test/image.bats: simplify some loops
* test/helpers.bats: simplify cleanup_*
* contrib/test/int: rm node-e2e test
* contrib/test/int: fix iptables rule
* critest: add unix:// prefix
* critest.yml: don't skip test on RHEL
* test: add timeout.bats
* bump network creation timeout to 5 minutes
* resourcecache: add watcher idiom
* server: use ResourceCache instead of dropping progress
* Add unit tests for ResourceCache
* Introduce ResourceCache
* moves shmsize to a handler allowed annotation
* image pull: close progress chan
* test/ctr.bats: fix a "ctr execsync" flake
* Fix the functions' name in completions
* make: drop link to crio.service
* test: rm "run ctr with image with Config.Volumes"
* test: add no-pull-on-run=true
* test/devices.bats: fix "additional device permissions" case
* test/devices.bats: rm unneeded run
* test/devices.bats: skip earlier
* Bandwidht CNI plugin reserved an upper limit on burst,in which banned include boundary. See: https://github.com/containernetworking/plugins/blob/v0.8.7/plugins/meta/ban…
- Drop config-fix-tz.patch as upstream dependency was patched
==== dnf ====
Version update (4.6.1 -> 4.7.0)
- Update to version 4.7.0
+ Improve repo config path ordering to fix a comps merging issue (rh#1928181)
+ Keep reason when package is removed (rh#1921063)
+ Improve mechanism for application of security filters (rh#1918475)
+ [doc] Add description for new API
+ [API] Add new method for reset of security filters
+ [doc] Improve documentation for Hotfix repositories
+ [doc] fix: "makecache" command downloads only enabled repositories
+ Use libdnf.utils.checksum_{check,value}
+ [doc] Add info that maximum parallel downloads is 20
+ Increase loglevel in case of invalid config options
+ [doc] installonly_limit documentation follows behavior
+ Prevent traceback (catch ValueError) if pkg is from cmdline
+ Add documentation for config option sslverifystatus (rh#1814383)
+ Check for specific key string when verifing signatures (rh#1915990)
+ Use rpmkeys binary to verify package signature (rh#1915990)
+ Bugs fixed (rh#1916783)
+ Preserve file mode during log rotation (rh#1910084)
==== grub2 ====
Subpackages: grub2-i386-pc grub2-snapper-plugin grub2-x86_64-efi
- Fix obsolete syslog in systemd unit file and updating to use journal as
StandardOutput (bsc#1185149)
* grub2-once.service
==== kernel-source ====
Version update (5.11.15 -> 5.11.16)
- Revert "rpm/kernel-binary.spec.in: Fix dependency of kernel-*-devel package (bsc#1184514)"
This turned out to be a bad idea: the kernel-$flavor-devel package
must be usable without kernel-$flavor, e.g. at the build of a KMP.
And this change brought superfluous installation of kernel-preempt
when a system had kernel-syms (bsc#1185113).
- commit d771304
- rpm/check-for-config-changes: add AS_HAS_* to ignores
arch/arm64/Kconfig defines a lot of these. So far our current compilers
seem to support them all. But it can quickly change with SLE later.
- commit a4d8194
- Linux 5.11.16 (bsc#1012628).
- bpf: Move sanitize_val_alu out of op switch (bsc#1012628).
- bpf: Improve verifier error messages for users (bsc#1012628).
- bpf: Rework ptr_limit into alu_limit and add common error path
(bsc#1012628).
- ARM: 9071/1: uprobes: Don't hook on thumb instructions
(bsc#1012628).
- bpf: Move off_reg into sanitize_ptr_alu (bsc#1012628).
- bpf: Ensure off_reg has no mixed signed bounds for all types
(bsc#1012628).
- r8169: don't advertise pause in jumbo mode (bsc#1012628).
- r8169: tweak max read request size for newer chips also in
jumbo mtu mode (bsc#1012628).
- kasan: remove redundant config option (bsc#1012628).
- kasan: fix hwasan build for gcc (bsc#1012628).
- KVM: VMX: Don't use vcpu->run->internal.ndata as an array index
(bsc#1012628).
- KVM: VMX: Convert vcpu_vmx.exit_reason to a union (bsc#1012628).
- bpf: Use correct permission flag for mixed signed bounds
arithmetic (bsc#1012628).
- arm64: dts: allwinner: h6: beelink-gs1: Remove ext. 32 kHz
osc reference (bsc#1012628).
- arm64: dts: allwinner: Fix SD card CD GPIO for SOPine systems
(bsc#1012628).
- ARM: OMAP2+: Fix uninitialized sr_inst (bsc#1012628).
- ARM: footbridge: fix PCI interrupt mapping (bsc#1012628).
- ARM: 9069/1: NOMMU: Fix conversion for_each_membock() to
for_each_mem_range() (bsc#1012628).
- ARM: 9063/1: mm: reduce maximum number of CPUs if
DEBUG_KMAP_LOCAL is enabled (bsc#1012628).
- ARM: OMAP2+: Fix warning for omap_init_time_of() (bsc#1012628).
- gro: ensure frag0 meets IP header alignment (bsc#1012628).
- ch_ktls: do not send snd_una update to TCB in middle
(bsc#1012628).
- ch_ktls: tcb close causes tls connection failure (bsc#1012628).
- ch_ktls: fix device connection close (bsc#1012628).
- ch_ktls: Fix kernel panic (bsc#1012628).
- ibmvnic: remove duplicate napi_schedule call in open function
(bsc#1012628).
- ibmvnic: remove duplicate napi_schedule call in do_reset
function (bsc#1012628).
- ibmvnic: avoid calling napi_disable() twice (bsc#1012628).
- ia64: tools: remove inclusion of ia64-specific version of
errno.h header (bsc#1012628).
- ia64: remove duplicate entries in generic_defconfig
(bsc#1012628).
- ethtool: pause: make sure we init driver stats (bsc#1012628).
- i40e: fix the panic when running bpf in xdpdrv mode
(bsc#1012628).
- ibmvnic: correctly use dev_consume/free_skb_irq (bsc#1012628).
- net: Make tcp_allowed_congestion_control readonly in non-init
netns (bsc#1012628).
- mm: ptdump: fix build failure (bsc#1012628).
- net: ip6_tunnel: Unregister catch-all devices (bsc#1012628).
- net: sit: Unregister catch-all devices (bsc#1012628).
- net: phy: marvell: fix detection of PHY on Topaz switches
(bsc#1012628).
- net: davicom: Fix regulator not turned off on failed probe
(bsc#1012628).
- net/mlx5e: Fix setting of RS FEC mode (bsc#1012628).
- netfilter: nftables: clone set element expression template
(bsc#1012628).
- netfilter: nft_limit: avoid possible divide error in
nft_limit_init (bsc#1012628).
- net/mlx5e: fix ingress_ifindex check in mlx5e_flower_parse_meta
(bsc#1012628).
- net: macb: fix the restore of cmp registers (bsc#1012628).
- drm/i915/display/vlv_dsi: Do not skip panel_pwr_cycle_delay
when disabling the panel (bsc#1012628).
- libbpf: Fix potential NULL pointer dereference (bsc#1012628).
- netfilter: arp_tables: add pre_exit hook for table unregister
(bsc#1012628).
- netfilter: bridge: add pre_exit hooks for ebtable unregistration
(bsc#1012628).
- libnvdimm/region: Fix nvdimm_has_flush() to handle
ND_REGION_ASYNC (bsc#1012628).
- ice: Fix potential infinite loop when using u8 loop counter
(bsc#1012628).
- netfilter: conntrack: do not print icmpv6 as unknown via /proc
(bsc#1012628).
- netfilter: flowtable: fix NAT IPv6 offload mangling
(bsc#1012628).
- ixgbe: fix unbalanced device enable/disable in suspend/resume
(bsc#1012628).
- ixgbe: Fix NULL pointer dereference in ethtool loopback test
(bsc#1012628).
- drm/vmwgfx: Make sure we unpin no longer needed buffers
(bsc#1012628).
- scsi: libsas: Reset num_scatter if libata marks qc as NODATA
(bsc#1012628).
- riscv: Fix spelling mistake "SPARSEMEM" to "SPARSMEM"
(bsc#1012628).
- vfio/pci: Add missing range check in vfio_pci_mmap
(bsc#1012628).
- arm64: alternatives: Move length validation in
alternative_{insn, endif} (bsc#1012628).
- arm64: mte: Ensure TIF_MTE_ASYNC_FAULT is set atomically
(bsc#1012628).
- Update config files.
- arm64: fix inline asm in load_unaligned_zeropad() (bsc#1012628).
- drm/i915: Don't zero out the Y plane's watermarks (bsc#1012628).
- readdir: make sure to verify directory entry for legacy
interfaces too (bsc#1012628).
- dm verity fec: fix misaligned RS roots IO (bsc#1012628).
- HID: wacom: set EV_KEY and EV_ABS only for non-HID_GENERIC
type of devices (bsc#1012628).
- Input: i8042 - fix Pegatron C15B ID entry (bsc#1012628).
- Input: s6sy761 - fix coordinate read bit shift (bsc#1012628).
- net/sctp: fix race condition in sctp_destroy_sock (bsc#1012628).
- lib: fix kconfig dependency on ARCH_WANT_FRAME_POINTERS
(bsc#1012628).
- virt_wifi: Return micros for BSS TSF values (bsc#1012628).
- mac80211: clear sta->fast_rx when STA removed from 4-addr VLAN
(bsc#1012628).
- drm/amd/display: Add missing mask for DCN3 (bsc#1012628).
- pcnet32: Use pci_resource_len to validate PCI resource
(bsc#1012628).
- net: ieee802154: forbid monitor for add llsec seclevel
(bsc#1012628).
- net: ieee802154: stop dump llsec seclevels for monitors
(bsc#1012628).
- net: ieee802154: forbid monitor for del llsec devkey
(bsc#1012628).
- net: ieee802154: forbid monitor for add llsec devkey
(bsc#1012628).
- net: ieee802154: stop dump llsec devkeys for monitors
(bsc#1012628).
- net: ieee802154: forbid monitor for del llsec dev (bsc#1012628).
- net: ieee802154: forbid monitor for add llsec dev (bsc#1012628).
- net: ieee802154: stop dump llsec devs for monitors
(bsc#1012628).
- net: ieee802154: forbid monitor for del llsec key (bsc#1012628).
- net: ieee802154: forbid monitor for add llsec key (bsc#1012628).
- net: ieee802154: stop dump llsec keys for monitors
(bsc#1012628).
- iwlwifi: add support for Qu with AX201 device (bsc#1012628).
- scsi: scsi_transport_srp: Don't block target in SRP_PORT_LOST
state (bsc#1012628).
- ASoC: fsl_esai: Fix TDM slot setup for I2S mode (bsc#1012628).
- drm/msm: Fix a5xx/a6xx timestamps (bsc#1012628).
- ARM: omap1: fix building with clang IAS (bsc#1012628).
- ARM: keystone: fix integer overflow warning (bsc#1012628).
- powerpc/signal32: Fix Oops on sigreturn with unmapped VDSO
(bsc#1012628).
- neighbour: Disregard DEAD dst in neigh_update (bsc#1012628).
- bpf: Take module reference for trampoline in module
(bsc#1012628).
- gpu/xen: Fix a use after free in xen_drm_drv_init (bsc#1012628).
- net: axienet: allow setups without MDIO (bsc#1012628).
- ASoC: max98373: Added 30ms turn on/off time delay (bsc#1012628).
- ASoC: max98373: Changed amp shutdown register as volatile
(bsc#1012628).
- xfrm: BEET mode doesn't support fragments for inner packets
(bsc#1012628).
- iwlwifi: Fix softirq/hardirq disabling in
iwl_pcie_enqueue_hcmd() (bsc#1012628).
- arc: kernel: Return -EFAULT if copy_to_user() fails
(bsc#1012628).
- lockdep: Add a missing initialization hint to the "INFO:
Trying to register non-static key" message (bsc#1012628).
- remoteproc: pru: Fix loading of GNU Binutils ELF (bsc#1012628).
- ARM: dts: Fix moving mmc devices with aliases for omap4 & 5
(bsc#1012628).
- ARM: dts: Drop duplicate sha2md5_fck to fix clk_disable race
(bsc#1012628).
- ACPI: x86: Call acpi_boot_table_init() after
acpi_table_upgrade() (bsc#1012628).
- dmaengine: idxd: fix wq cleanup of WQCFG registers
(bsc#1012628).
- dmaengine: idxd: clear MSIX permission entry on shutdown
(bsc#1012628).
- dmaengine: plx_dma: add a missing put_device() on error path
(bsc#1012628).
- dmaengine: Fix a double free in dma_async_device_register
(bsc#1012628).
- dmaengine: dw: Make it dependent to HAS_IOMEM (bsc#1012628).
- dmaengine: idxd: fix wq size store permission state
(bsc#1012628).
- dmaengine: idxd: fix opcap sysfs attribute output (bsc#1012628).
- dmaengine: idxd: fix delta_rec and crc size field for completion
record (bsc#1012628).
- dmaengine: idxd: Fix clobbering of SWERR overflow bit on
writeback (bsc#1012628).
- gpio: sysfs: Obey valid_mask (bsc#1012628).
- Input: nspire-keypad - enable interrupts only when opened
(bsc#1012628).
- mtd: rawnand: mtk: Fix WAITRDY break condition and timeout
(bsc#1012628).
- AMD_SFH: Add DMI quirk table for BIOS-es which don't set the
activestatus bits (bsc#1012628).
- AMD_SFH: Add sensor_mask module parameter (bsc#1012628).
- AMD_SFH: Removed unused activecontrolstatus member from the
amd_mp2_dev struct (bsc#1012628).
- commit d57ad55
==== kexec-tools ====
Version update (2.0.20 -> 2.0.21)
- kexec-tools-remove-duplicate-ramdisk-definition.patch:
Remove duplicate definition of ramdisk (fix ppc build).
- Bump version to 2.0.21
- Drop patches from upstream git:
* kexec-tools-add-variant-helper-functions.patch
* kexec-tools-arm64-kexec-allocate-memory-space-avoiding-reserved-regions.patch
* kexec-tools-arm64-kdump-deal-with-resource-entries-in-proc-iomem.patch
* kexec-tools-build-multiboot2-for-i386.patch
* kexec-tools-fix-kexec_file_load-error-handling.patch
* kexec-tools-reset-getopt-before-falling-back-to-legacy.patch
* kexec-tools-s390-Reset-kernel-command-line-on-syscal.patch
* kexec-tools-Remove-duplicated-variable-declarations.patch
- Hardening: Link as PIE (bsc#1185020).
==== kubernetes ====
Version update (1.20.2 -> 1.21.0)
Subpackages: kubernetes-client kubernetes-kubeadm kubernetes-kubelet
- Remove BuildRequires for Go, bump kubernetes to 1.21.0 and 1.20.5
- add BuildRequires for go >= 1.15.5, to align with kubernetes1.20 package
==== kubernetes1.20 ====
Version update (1.20.2 -> 1.20.6)
- Update to version 1.20.6:
* azure: fix node public IP not able to fetch issues from IMDS
* Fix test now that empty struct are tracked in mangaed fields
* make generated_files
* Update bazel and dependencies.
* Update to use cliflag.NamedFlagSets
* Address comments.
* Update NodeIPAM wrapper
* Delete build file based on latest changes.
* Update extension mechanism and related sample.
* Address review comments
* Address review comments
* Modify integration test to fill CCM test gap
* Update test
* Move initialize cloud provider with client builder reference inside controller start func
* Separate example func and add README.md
* Separate func
* Add demonstration of wiring nodeIPAMController config object
* Remove cloud provider name as input parameter.
* Fix flag passing in CCM.
* Use apply to create objects in TestApplyStatus
* Stop skipping APIService in apply test
* Stop clearing OpenAPIConfig for kube-aggregator
* Declare TCP default for service port protocol
* Add ability to skip OpenAPI handler installation
* do not tag user created public IPs
* apf: fix test flake
* update gogo/protobuf to v1.3.2
* Fixed describe ingress causing SEGFAULT
* Update sigs.k8s.io/structured-merge-diff to v4.0.3
* Stop probing a pod during graceful shutdown
* apf: handle error from PollImmediateUntil
* staging/publishing: Set default go version to go1.15.10
* webhook config manager: HasSynced returns true when the manager is synced with existing webhookconfig objects at startup
* update metadata-concealment to 1.6 for removing legacy checking
* slice mirroring controller mirror annotations
* additional subnet configuration for AWS ELB
* Revert "Automated cherry pick of #97417: fix azure file secret not found issue"
* Use the correct volum handle format for GCE regional PD.
* Increasing maximum number of ports allowed in EndpointSlice
* Support > 5 ports in L4 ILB.
* build: Update to k/repo-infra(a)v0.1.5 (supports go1.15.10)
* Use go-runner:v2.3.1-go1.15.10-buster.0 image (built on go1.15.10)
* Update to go1.15.10
* Update CHANGELOG/CHANGELOG-1.20.md for v1.20.5
* fix a bug where only service with less than 100 ports can have GCE load balancer
* bazel
* deepcopy statefulsets
* full deepcopy on munged pod spec
* remove pod toleration toleration seconds mutation
* add markers for inspected validation mutation hits
* move secret mutation from validation to prepareforupdate
* remove unnecessary mutations in validation
* tweak validation to avoid mutation
* For LoadBalancer Service type don't create a HNS policy for empty or invalid external loadbalancer IP
* Moving docker options to daemon.json
* e2e fix: loosen configmap to 10 in resource quota
* api-server add --lease-max-object-count
* apiserver add metric etcd_lease_object_counts
* apiserver add --lease-reuse-duration-seconds to config lease reuse duration
* Bump Cluster Autoscaler to v1.20.0
- Rebase opensuse-version-checks.patch
- Update to version 1.20.5:
* Updating EndpointSliceMirroring controller to wait for cache to be updated
* Updating EndpointSlice controller to wait for cache to be updated
* Add tests for populated volumes
* Fix comment on getPodVolumeSubpathListFromDisk
* Fix tests to test for new behavior
* Add warnings after cleanup back
* Automatically remove orphaned pod's dangling volumes
* Count pod overhead as an entity's resource usage
* Ensure only one LoadBalancer rule is created when HA mode is enabled
* Fix issue in checking domain socket for plugin watcher
* Use Lstat in plugin watcher to avoid Windows problem
* Skip visiting empty secret and configmap names
* Number of sockets is assumed to be same as NUMA nodes
* disables APF if the aggregated apiserver cannot locate the core kube-apiserver
* Fix repeatedly aquire the inhibit lock
* Sync node status during kubelet node shutdown
* remove executable permission bits
* Upgrading vendored dependencies
* Upgrading cAdvisor to 0.38.8
* Update CHANGELOG/CHANGELOG-1.20.md for v1.20.4
* build/OWNERS: Add Dan and Sascha as reviewers
* OWNERS(CHANGELOG): Move reviewers/approvers to CHANGELOG/ dir
* Bump konnectivity-client to v0.0.15 in release-1.20
* Storage e2e: Remove pd csi driver installation in GKE
* Update CHANGELOG/CHANGELOG-1.20.md for v1.20.3
* kube-cross: update image to use v1.15.8-legacy-1
* [go1.15] build: Update to k/repo-infra(a)v0.1.4 (supports go1.15.8)
* Use go-runner:buster-v2.3.1 image (built on go1.15.8)
* staging/publishing: Set default go version to go1.15.8
* Update to go1.15.8
* Fix dbus shutdown events not continuing if they are not valid
* Revert "make hostPort match test linuxonly"
* Revert "conformance changes"
* kube-proxy: clear conntrack entries after rules are in place
* Use -LiteralPath instead of -Path
* Escape the special character in vsphere windows path
* Include unit test
* Adjust defer to correctly call
* do not remove volume dir when saveVolumeData fails
* kubeadm: drop explicit constant override in version test
* kubeadm: get k8s CI version markers from k8s infra bucket
* dockershim hostport respect IPFamily
* dockershim hostport manager use HostIP
* Balance nodes in scheduling e2e
* e2e: Pod should avoid nodes that have avoidPod annotation: clean remaining pods
* Cherry pick of #98254:Fix the kube-scheduler binary's description of the --config parameter is inaccurate
* fix kube-scheduler cannot send event because the Note field is too large
* Fix nil pointer dereference in disruption controller
* Update region_pd e2e test to support PV have GA topology
* Recover CSI volumes from dangling attachments
* IsVolumeAttachedToNode() renamed to GetAttachState(), and returns 3 states instead of combining "uncertain" and "detached" into "false"
* Fixes Attach Detach Controller reconciler race reading ActualStateOfWorld and operation pending states; fixes reconciler_test mock detach to account for multiple attaches on a node
* Fix translation of Cinder storage classess to CSI
* OWNERS(CHANGELOG): Add release-engineering-reviewers as reviewers
* OWNERS(CHANGELOG): Add release-engineering-reviewers as approvers
* Resolve IP addresses of host-only in filtered dialer
* Deflake ingress updates
* make podTopologyHints protected by lock
* ignore cgroup driver check in windows node upgrade
* OWNERS(sig-release): Add CHANGELOG aliases
* OWNERS(build-image): Add Release Managers as reviewers
* OWNERS(releng): Sync Release Managers
* OWNERS(sig-release): Remove SIG Release approvers alias
* aggregate errors when putting vmss
* fix azure file migration issue
* kubelet: Fix mirrorPodTerminationMap leak
* kubelet: Delete static pods gracefully
* kubeadm: change the default image repository for CI images from gcr.io/kubernetes-ci-images to gcr.io/k8s-staging-ci-images
* kubelet logs print 'kubelet nodes sync' frequently
* reduce buckets for etcd_request_duration_seconds
* Merge pull request #96876 from howieyuen/no-execute-taint-missing
* cleanup subnet in frontend ip configs
* conformance changes
* make hostPort match test linuxonly
* Clean up namespaced children of missing virtual parents with incorrectly cluster-scoped nodes
* Add unit test for child scope mismatch with missing parent
* vendor: update cAdvisor to v0.38.7
* Use volumeHandle as PV name when translating EBS inline volume
* Update CHANGELOG/CHANGELOG-1.20.md for v1.20.2
* kubectl-convert import known versions
* Revert "Merge pull request #92817 from kmala/kubelet"
* WIP: node sync at least once
* fixes nil panic for nil delegated auth options
* Lower the frequency of volume plugin deprecation warning
* handle webhook authenticator and authorizer error
* fix the panic when kubelet registers if a node object already exists with no Status.Capacity or Status.Allocatable
* Avoid checking the entire backend service URL for FR equality.
* Use non privileged ports
==== libgcrypt ====
Version update (1.9.2 -> 1.9.3)
- libgcrypt 1.9.3:
* Bug fixes:
- Fix build problems on i386 using gcc-4.7.
- Fix checksum calculation in OCB decryption for AES on s390.
- Fix a regression in gcry_mpi_ec_add related to certain usages
of curve 25519.
- Fix a symbol not found problem on Apple M1.
- Fix for Apple iOS getentropy peculiarity.
- Make keygrip computation work for compressed points.
* Performance:
- Add x86_64 VAES/AVX2 accelerated implementation of Camellia.
- Add x86_64 VAES/AVX2 accelerated implementation of AES.
- Add VPMSUMD acceleration for GCM mode on PPC.
* Internal changes.
- Harden MPI conditional code against EM leakage.
- Harden Elgamal by introducing exponent blinding.
==== lvm2 ====
Subpackages: liblvm2cmd2_03
- Honor lvm.conf event_activation=0 on "pvscan --cache -aay" (bsc#1185190)
+ bug-1185190_01-pvscan-support-disabled-event_activation.patch
+ bug-1185190_02-config-improve-description-for-event_activation.patch
- LVM cannot be disabled on boot (bsc#1184687)
+ bug-1184687_Add-nolvm-for-kernel-cmdline.patch
- Update patch for avoiding apply warning message
+ bug-1012973_simplify-special-case-for-md-in-69-dm-lvm-metadata.patch
- Add metadata-based autoactivation property for VG and LV (bsc#1178680)
+ bug-1178680_add-metadata-based-autoactivation-property-for-VG-an.patch
==== lvm2-device-mapper ====
Subpackages: device-mapper libdevmapper-event1_03 libdevmapper1_03
- Honor lvm.conf event_activation=0 on "pvscan --cache -aay" (bsc#1185190)
+ bug-1185190_01-pvscan-support-disabled-event_activation.patch
+ bug-1185190_02-config-improve-description-for-event_activation.patch
- LVM cannot be disabled on boot (bsc#1184687)
+ bug-1184687_Add-nolvm-for-kernel-cmdline.patch
- Update patch for avoiding apply warning message
+ bug-1012973_simplify-special-case-for-md-in-69-dm-lvm-metadata.patch
- Add metadata-based autoactivation property for VG and LV (bsc#1178680)
+ bug-1178680_add-metadata-based-autoactivation-property-for-VG-an.patch
==== patterns-microos ====
Subpackages: patterns-microos-alt_onlyDVD patterns-microos-apparmor patterns-microos-base patterns-microos-base-microdnf patterns-microos-base-packagekit patterns-microos-base-zypper patterns-microos-basesystem patterns-microos-cloud patterns-microos-cockpit patterns-microos-defaults patterns-microos-hardware patterns-microos-ima_evm patterns-microos-onlyDVD patterns-microos-selinux patterns-microos-sssd_ldap
- Suggest libdnf-repo-config-zypp explicitly
- Fix dependency on systemd-icon-branding-openSUSE
- Use only kernel-firmware-all instead of kernel-firmware to avoid
duplicate firmware on the DVD
- spice-vdagent is available on all archs
- hyper-v and open-vm-tools are available on AArch64 as well
- A fresh install does not have xdg-open & friends. Fix by adding xdg-utils
- while there, fix the comment, as they're common tools, but not
necessarily useful only "during initial setup"
- Add packages to the desktop commons pattern:
systemd-icons-branding-openSUSE (to list the MicroOS logo on the
Gnome Settings About page)
- Add packages to the DVD:
- instead of adding firmware-all, add specific firmware packages for
common hardware (or at least, for hardware for which we have bugs
open, see bsc#1184767 and bsc#1184403)
- Add some packages in the DVD:
- Spice guest driver so graphics works properly out of the box,
when installing in VMs (mostly for desktops)
- firmwares so that (wireless mostly, bot also wired) networking
works in the installer and on the installed system
==== python-M2Crypto ====
- Add no-need-parameterized.patch ... we don't need run-time requirement
of parameterized package (bsc#1185150).
==== python-MarkupSafe ====
- allow tests to be disabled (still on by default)
==== python-jsonpatch ====
Version update (1.28 -> 1.31)
- update to 1.31:
* Add support for preserving Unicode charaters
* remove pypy build
==== rook ====
Version update (1.5.7+git4.gae949004e -> 1.5.10+git4.g309ad2f64)
- Update to v1.5.8
* Ceph
* Update Ceph-CSI to v3.2.1 (#7506)
* Use latest Ceph API for setting dashboard and rgw credentials (#7641)
* Redact secret info from reconcile diffs in debug logs (#7630)
* Continue to get available devices if failed to get a device info (#7608)
* Include RGW pods in list for rescheduling from failed node (#7537)
* Enforce pg_auto_scaler on rgw pools (#7513)
* Prevent voluntary mon drain while another mon is failing over (#7442)
* Avoid restarting all encrypted OSDs on cluster growth (#7489)
* Set secret type on external cluster script (#7473)
* Fix init container "expand-encrypted-bluefs" for encrypted OSDs (#7466)
* Fail pool creation if the sub failure domain is the same as the failure domain (#7284)
* Set default backend for vault and remove temp key for encrypted OSDs (#7454)
==== suse-module-tools ====
Version update (15.4.0 -> 15.4.1)
- Update to version 15.4.1:
* dm-crypt requires essiv in SLE15 SP3 (boo#1183063 bsc#1184134 ltc#192244).
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
NetworkManager (1.30.0 -> 1.30.4)
adwaita-icon-theme (40.rc -> 40.0)
avahi
baloo5-widgets (20.12.3 -> 21.04.0)
cups-filters
dolphin (20.12.3 -> 21.04.0)
gcr (3.38.1 -> 3.40.0)
glib2 (2.68.0 -> 2.68.1)
gnome-keyring (3.36.0 -> 40.0)
gnome-session (40.beta -> 40.0)
gnome-settings-daemon (40.0 -> 40.0.1)
gnome-shell-extensions
gnome-tweaks (40.beta -> 40.0)
gtk3 (3.24.27 -> 3.24.28)
gtk4 (4.1.2 -> 4.2.0)
kaccounts-integration (20.12.3 -> 21.04.0)
kate (20.12.3 -> 21.04.0)
kde-print-manager (20.12.3 -> 21.04.0)
kdialog (20.12.3 -> 21.04.0)
kio-extras5 (20.12.3 -> 21.04.0)
konsole (20.12.3 -> 21.04.0)
kwalletmanager5 (20.12.3 -> 21.04.0)
libgweather (40.beta -> 40.0)
libhandy (1.2.0 -> 1.2.1)
libhugetlbfs
libqt5-qtdeclarative
libzypp (17.25.8 -> 17.25.9)
mutter
nautilus
pango (1.48.3 -> 1.48.4)
python-gobject (3.40.0 -> 3.40.1)
tracker (3.1.0 -> 3.1.1)
tracker-miners (3.1.0 -> 3.1.1)
=== Details ===
==== NetworkManager ====
Version update (1.30.0 -> 1.30.4)
Subpackages: libnm0 typelib-1_0-NM-1_0
- Update to version 1.30.4:
+ Fix crash evaluating match setting properties (CVE-2021-20297).
+ Fix leak of local route added by NetworkManager for configured
addresses.
+ Fix name of the device autoconnect D-Bus property.
+ Multiple bugfixes in the initrd generator.
+ Various minor bugfixes.
- Update to version 1.30.2:
+ Increase the limit of open file descriptors in
NetworkManager.service.
+ Fix hostname lookup via DNS when resolv.conf is managed by
systemd-resolved.
+ Enable WPA3 for Wi-Fi connections with key_mgmt=WPA-PSK.
+ Fix crash with the IWD Wi-Fi backend.
+ Avoid logging warning when setting bond option
"ad_actor_system=00:00:00:00:00:00".
+ Update SpecificObject D-Bus property of ActiveConnection after
WiFi roaming.
+ Multiple bugfixes in the initrd generator.
+ Various minor bugfixes.
- Drop NM-restore-MAC-on-release-only-when-cloned.patch: fixed
upstream.
==== adwaita-icon-theme ====
Version update (40.rc -> 40.0)
- Update to version 40.0:
+ No changes compared to 40.rc.
==== avahi ====
Subpackages: libavahi-client3 libavahi-common3 libavahi-core7
- Add avahi-CVE-2021-3468.patch: avoid infinite loop by handling
HUP event in client_work (boo#1184521 CVE-2021-3468).
https://github.com/lathiat/avahi/pull/330
==== baloo5-widgets ====
Version update (20.12.3 -> 21.04.0)
- Update to 21.04.0
* New feature release
* For more details please see:
* https://kde.org/announcements/gear/21.04
- No code change since 21.03.90
- Update to 21.03.90
* New feature release
- No code change since 21.03.80
- Update to 21.03.80
* New feature release
- Changes since 20.12.3:
* TagsFileItemAction: add Menu windowflag
* Tagging fileitemplugin: use parent Widget as menu parent
* Remove unused includes
==== cups-filters ====
- fix_upstream_issue348.patch fixes
https://github.com/OpenPrinting/cups-filters/issues/348
foomatic-rip segfaults with 'job-sheets=none,none'
but works with 'job-sheets=none'
(bsc#1182893)
==== dolphin ====
Version update (20.12.3 -> 21.04.0)
Subpackages: dolphin-part libdolphinvcs5
- Update to 21.04.0
* New feature release
* For more details please see:
* https://kde.org/announcements/gear/21.04
- No code change since 21.03.90
- Stop owning directories provided by the filesystem package (boo#1184786)
- Update to 21.03.90
* New feature release
- Changes since 21.03.80:
* KFileItemModel: DetailsModeSettings::directorySizeCount forces m_sortDirsFirst
* appstream: fix homepage url
* Fix crash calling openDirectories() in various cases
* Don't re-open already-open URLs when using session-restore feature (kde#434911)
- Update to 21.03.80
* New feature release
- Too many changes to list here.
- Drop 0001-Update-cached-viewContainer-geometry-every-time-they.patch
==== gcr ====
Version update (3.38.1 -> 3.40.0)
Subpackages: gcr-data gcr-prompter gcr-ssh-askpass libgck-1-0 libgcr-3-1 typelib-1_0-Gck-1 typelib-1_0-Gcr-3
- Update to version 3.40.0:
+ FEATURE: add hkps://keys.openpgp.org to keyserver defaults.
+ gcr/key-mechanism: Port to GTask.
+ GckCall: Simplify the code by using GTask based implementation.
+ Updated translations.
- Make use of the new gpg_path meson option by passing
%{_bindir}/gpg2 as value to it: We know that openSUSE installs
gpg2 to this path. Allows to drop gpg2 BuildRequires.
- Drop pkgconfig(gtk+-x11-3.0) BuildRequires: no longer needed.
==== glib2 ====
Version update (2.68.0 -> 2.68.1)
Subpackages: glib2-tools libgio-2_0-0 libglib-2_0-0 libgmodule-2_0-0 libgobject-2_0-0
- Update to version 2.68.1:
+ Fix a crash in `GKeyFile` when parsing a file which contains
translations using a `GKeyFile` instance which has loaded
another file previously.
+ Pin GIO DLL in memory on Windows.
+ Updated translations.
==== gnome-keyring ====
Version update (3.36.0 -> 40.0)
Subpackages: gnome-keyring-pam libgck-modules-gnome-keyring
- Update to version 40.0:
+ Update libcap-ng capability handling.
+ UPdated translations.
==== gnome-session ====
Version update (40.beta -> 40.0)
Subpackages: gnome-session-core gnome-session-default-session gnome-session-wayland
- Add gnome-session-avoid-blocking-when-connecting-dbus.patch: Fix
the login delay, avoid the blocking when connecting to
ScreenSaver dbus(bsc#1184698 glgo#GNOME/gnome-session#88).
- Update to version 40.0:
+ util: Remove undesired variables from activation environment.
==== gnome-settings-daemon ====
Version update (40.0 -> 40.0.1)
- Update to version 40.0.1:
+ rfkill: Fix reading /dev/rfkill on newer kernels.
==== gnome-shell-extensions ====
- Remove gnome-shell-classic-session package: From the upstream
commit 9a78c7e4, the gnome-classic.session was not used anymore,
we can remove gnome-shell-classic-session package now
(bsc#1184933).
==== gnome-tweaks ====
Version update (40.beta -> 40.0)
- Update to version 40.0:
+ Fix "Fails to recognize GNOME Shell 40.rc running"
+ Updated translations.
- Drop 70.patch: fixed upstream.
==== gtk3 ====
Version update (3.24.27 -> 3.24.28)
Subpackages: gtk3-data gtk3-schema gtk3-tools libgtk-3-0 typelib-1_0-Gtk-3_0
- Update to version 3.24.28:
+ Input: Improve dead key handling.
+ CSS: Fix rendering of scaled text shadows.
+ Wayland: Fix matching of accelerators with multiple layouts.
+ X11: Trap errors from the COW.
+ Build: Make gtk3-update-icon-cache output reproducible.
+ Updated translations.
- Add gtk3-prevent-g_file_get_basename-return-NULL.patch:
+ Fix a possible crash in gtk_show_uri
(boo#1185082, glgo#GNOME/gtk!3458).
==== gtk4 ====
Version update (4.1.2 -> 4.2.0)
Subpackages: gtk4-schema libgtk-4-1 typelib-1_0-Gtk-4_0
- Update to version 4.2.0:
+ GtkFileChooser: Make the location entry work again.
+ GtlLabel: Fix tooltips on links.
+ GtkTextView: Make scrolling work better with renderers.
+ X11:
- Fix damage handling.
- Trap errors from the COW.
+ Wayland: Fix key event matching with mismatched layouts.
+ Inspector: Allow inspecting Unicode.
+ Input:
- Improve dead key handling.
- Regenerate compose sequence table.
+ Updated translations.
==== kaccounts-integration ====
Version update (20.12.3 -> 21.04.0)
- Update to 21.04.0
* New feature release
* For more details please see:
* https://kde.org/announcements/gear/21.04
- No code change since 21.03.90
- Update to 21.03.90
* New feature release
- No code change since 21.03.80
- Update to 21.03.80
* New feature release
- Too many changes to list here.
==== kate ====
Version update (20.12.3 -> 21.04.0)
Subpackages: kate-plugins
- Update to 21.04.0
* New feature release
* For more details please see:
* https://kde.org/announcements/gear/21.04
- Changes since 21.03.90:
* Fix S&R not recovering from canceled folder search (kde#435689)
- Stop owning directories provided by the filesystem package (boo#1184786)
- Update to 21.03.90
* New feature release
- Too many changes to list here.
- Update to 21.03.80
* New feature release
- Too many changes to list here.
- Rebase 0001-Defuse-root-block.patch
==== kde-print-manager ====
Version update (20.12.3 -> 21.04.0)
- Update to 21.04.0
* New feature release
* For more details please see:
* https://kde.org/announcements/gear/21.04
- No code change since 21.03.90
- Update to 21.03.90
* New feature release
- No code change since 21.03.80
- Update to 21.03.80
* New feature release
- Changes since 20.12.3:
* Remove unused CMake include
* Manually bind width of list item
==== kdialog ====
Version update (20.12.3 -> 21.04.0)
- Update to 21.04.0
* New feature release
* For more details please see:
* https://kde.org/announcements/gear/21.04
- No code change since 21.03.90
- Update to 21.03.90
* New feature release
- No code change since 21.03.80
- Update to 21.03.80
* New feature release
- No code change since 20.12.3
==== kio-extras5 ====
Version update (20.12.3 -> 21.04.0)
Subpackages: libkioarchive5
- Update to 21.04.0
* New feature release
* For more details please see:
* https://kde.org/announcements/gear/21.04
- No code change since 21.03.90
- Skip the openEXR optional dependency for Leap builds
- Update to 21.03.90
* New feature release
- No code change since 21.03.80
- Update to 21.03.80
* New feature release
- Too many changes since 20.12.3, only listing bugfixes:
* smb: do not assume rename files are different based on name (kde#430585)
* nfs: Do not set UDS_CREATION_TIME (kde#318821)
==== konsole ====
Version update (20.12.3 -> 21.04.0)
Subpackages: konsole-part
- Update to 21.04.0
* New feature release
* For more details please see:
* https://kde.org/announcements/gear/21.04
- No code change since 21.03.90
- Stop owning directories provided by the filesystem package (boo#1184786)
- Update to 21.03.90
* New feature release
- Changes since 21.03.80:
* Always sort the profiles by name in 'File -> New Tab'
* Fix crash in ProfileSettings; clone selected profile settings to new profile
* Unmaximize terminal before moving to new tab
* ProfileSettings: use generateUniqueName() when creating new profiles
* ProfileManager: remove some fallback-profile-related code
* Don't edit the Fallback profile, instead create a new one
* Clean up some more "favourite profile"-related code
- Update to 21.03.80
* New feature release
- Too many changes to list here.
==== kwalletmanager5 ====
Version update (20.12.3 -> 21.04.0)
- Update to 21.04.0
* New feature release
* For more details please see:
* https://kde.org/announcements/gear/21.04
- No code change since 21.03.90
- Update to 21.03.90
* New feature release
- No code change since 21.03.80
- Update to 21.03.80
* New feature release
- Changes since 20.12.3:
* Add CMakePresets support
* Increase mini cmake version + allow to install po file too
* Add missing override
* Not necessary now
* Convert license statements to SPDX expressions
* Autogenerate categories file
* operator+/- is disabled for QFlags in qt6
* Remove unused include
==== libgweather ====
Version update (40.beta -> 40.0)
Subpackages: gweather-data libgweather-3-16 typelib-1_0-GWeather-3_0
- Update to version 40.0:
+ Fix possible uninitialized variable in location entry.
+ Updated translations.
==== libhandy ====
Version update (1.2.0 -> 1.2.1)
Subpackages: libhandy-1-0 typelib-1_0-Handy-1_0
- Update to version 1.2.1:
+ hdydeck and hdyleaflet:
- Skip the unfolded allocation phase if there are no visible
children, fixing a crash.
- Fix the reverse child order.
+ hdyheaderbar: stop force centering an expanded title when
loose.
+ hdyflap: fix shadow glitches on flap child resizes.
+ hdypreferenceswindow:
- give the window the .preferences style class.
- make the search results page's margins adaptive.
+ demo: fix a memory leak in the view switcher demo.
+ meson: avoid trailing slashes in directories if package_subdir
is empty.
==== libhugetlbfs ====
- Hardening: Link as PIE (bsc#1184123).
==== libqt5-qtdeclarative ====
- Add patch to fix build with GCC 11 (boo#1185100):
* 0001-Include-limits-to-fix-build-with-GCC-11.patch
==== libzypp ====
Version update (17.25.8 -> 17.25.9)
- Add missing includes for GCC 11 (bsc#1181874)
- Fix unsafe usage of static in media verifier.
- Solver: Avoid segfault if no system is loaded (bsc#1183628)
- MediaVerifier: Relax media set verification in case of a single
not-volatile medium (bsc#1180851)
- Do no cleanup in custom cache dirs (bsc#1182936)
- ZConfig: let pubkeyCachePath follow repoCachePath.
- version 17.25.9 (22)
==== mutter ====
Subpackages: libmutter-8-0 mutter-data
- Rebase mutter-SLE-bsc984738-grab-display.patch and
mutter-SLE-bell.patch.
==== nautilus ====
Subpackages: gnome-shell-search-provider-nautilus libnautilus-extension1
- Update set_trusted.sh: Use the right value in gio command
(bsc#1185026).
==== pango ====
Version update (1.48.3 -> 1.48.4)
Subpackages: libpango-1_0-0 typelib-1_0-Pango-1_0
- Update to version 1.48.4:
+ Include docs in the dist tarball.
+ Include gi-docgen in the dist tarball, too.
+ win32: Fix 'Cursive' fallback.
+ Fix placement of marks in vertical text.
+ Cache metrics for the current font.
+ Improve letterspacing with combining marks.
==== python-gobject ====
Version update (3.40.0 -> 3.40.1)
Subpackages: python38-gobject python38-gobject-Gdk python38-gobject-cairo
- Update to version 3.40.1:
+ Fix tests with glib 2.68.
+ Fix a regression with marshalling partial() objects.
==== tracker ====
Version update (3.1.0 -> 3.1.1)
Subpackages: libtracker-sparql-3_0-0 tracker-data-files
- Update to version 3.1.1:
+ Better error handling during database initialization.
+ Implemented tracker_sparql_connection_update_array_async
over TrackerBatch, resulting in lower memory usage.
+ VAPI updates.
+ Updated tracker_sparql_connection_update_array docs.
+ Leak and double free fixes.
==== tracker-miners ====
Version update (3.1.0 -> 3.1.1)
Subpackages: tracker-miner-files
- Update to version 3.1.1:
+ Block gstreamer nvcodec decoders.
+ Fall back if no modification date is found.
+ Handle new poppler enum value.
+ Be more robust with broken EXIF GPS metadata.
+ Test suite improvements.
+ Updated translations.
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=1&version=T…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
glib2 (2.68.0 -> 2.68.1)
libhugetlbfs
libzypp (17.25.8 -> 17.25.9)
python-gobject (3.40.0 -> 3.40.1)
=== Details ===
==== glib2 ====
Version update (2.68.0 -> 2.68.1)
Subpackages: glib2-tools libgio-2_0-0 libglib-2_0-0 libgmodule-2_0-0 libgobject-2_0-0
- Update to version 2.68.1:
+ Fix a crash in `GKeyFile` when parsing a file which contains
translations using a `GKeyFile` instance which has loaded
another file previously.
+ Pin GIO DLL in memory on Windows.
+ Updated translations.
==== libhugetlbfs ====
- Hardening: Link as PIE (bsc#1184123).
==== libzypp ====
Version update (17.25.8 -> 17.25.9)
- Add missing includes for GCC 11 (bsc#1181874)
- Fix unsafe usage of static in media verifier.
- Solver: Avoid segfault if no system is loaded (bsc#1183628)
- MediaVerifier: Relax media set verification in case of a single
not-volatile medium (bsc#1180851)
- Do no cleanup in custom cache dirs (bsc#1182936)
- ZConfig: let pubkeyCachePath follow repoCachePath.
- version 17.25.9 (22)
==== python-gobject ====
Version update (3.40.0 -> 3.40.1)
- Update to version 3.40.1:
+ Fix tests with glib 2.68.
+ Fix a regression with marshalling partial() objects.
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
findutils
gmp
installation-images-MicroOS (16.62 -> 16.72)
kernel-firmware (20210315 -> 20210419)
mozilla-nspr (4.29 -> 4.30)
mozilla-nss (3.62 -> 3.63.1)
pulseaudio
xen (4.14.1_14 -> 4.14.1_16)
yast2 (4.3.60 -> 4.4.1)
=== Details ===
==== findutils ====
- Use new Group Release Keyring
==== gmp ====
- Compute FIPS hmac for libgmp.so.10 [bsc#1184555]
- do not break SLE 12 build when applying spec-cleaner
==== installation-images-MicroOS ====
Version update (16.62 -> 16.72)
- merge gh#openSUSE/installation-images#500
- fix NVMf autoconnect udev rule (bsc#1184908)
- 16.72
- merge gh#openSUSE/installation-images#490
- re-enable SecureBoot on AARCH64 on SLE Micro enable building the
SLE Micro flavor based on OBS macro
- 16.71
- merge gh#openSUSE/installation-images#497
- add udev rules for NVMf autoconnect in the installation system
(bsc#1184908)
- 16.70
- merge gh#openSUSE/installation-images#496
- add even more USB Type-C modules (bsc#1185010)
- 16.69
- merge gh#openSUSE/installation-images#492
- allow loading of unsupported modules (bsc#1184413, bsc#1183140)
- 16.68
- merge gh#openSUSE/installation-images#491
- build with kernel-default-optional on Leap (bsc#1184413)
- 16.67
- merge gh#openSUSE/installation-images#487
- gefrickel: don't skip non-existing
- 16.66
- merge gh#openSUSE/installation-images#484
- add USB Type-C modules (bsc#1184867)
- 16.65
- merge gh#openSUSE/installation-images#481
- enable multipathd in rescue system (bsc#1184686)
- merge gh#openSUSE/installation-images#480
- build with kernel-default-extra on Leap (bsc#1184413, bsc#1183140)
- 16.64
- merge gh#openSUSE/installation-images#478
- Fix grub branding for %{arm}
- 16.63
==== kernel-firmware ====
Version update (20210315 -> 20210419)
Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network ucode-amd
- Update to version 20210419 (git commit 940b7f42d45d):
* cxgb4: Update firmware to revision 1.25.4.0
* Mellanox: Add new mlxsw_spectrum firmware xx.2008.2438
* brcm: Link CM4's WiFi firmware with DMI machine name.
* linux-firmware: Update firmware file for Intel Bluetooth AX201
* amdgpu: update navi14 smc firmware
* amdgpu: update navi10 SMC firmware
* QCA: Update Bluetooth firmware for QCA6174
* WHENCE: link to similar config file for rtl8821a support
* nfp: update Agilio SmartNIC flower firmware to rev AOTC-2.14.A.6
* amdgpu: add arcturus firmware
* rtl_bt: Add rtl8723bs_config-OBDA0623.bin symlink
* brcm: Add nvram for the Chuwi Hi8 (CWI509) tablet
* brcm: Add nvram for the Predia Basic tablet
* qcom: sm8250: update remoteproc firmware
* qcom: update a650 firmware files
* rtl_bt: Update RTL8822C BT(UART I/F) FW to 0x59A_76A3
* amdgpu: update sienna cichlid firmware for 20.50
* amdgpu: update vega20 firmware for 20.50
* amdgpu: update picasso firmware for 20.50
* amdgpu: update navi14 firmware for 20.50
* amdgpu: update vega12 firmware for 20.50
* amdgpu: update navi12 firmware for 20.50
* amdgpu: update vega10 firmware for 20.50
* amdgpu: update renoir firmware for 20.50
* amdgpu: update navi10 firmware for 20.50
* amdgpu: update raven2 firmware for 20.50
* amdgpu: update raven firmware for 20.50
* amdgpu: add initial support for navy flounder
- Update aliases
==== mozilla-nspr ====
Version update (4.29 -> 4.30)
- update to version 4.30
* support longer thread names on macOS
* fix a build failure on OpenBSD
==== mozilla-nss ====
Version update (3.62 -> 3.63.1)
Subpackages: libfreebl3 libsoftokn3 mozilla-nss-certs
- update to NSS 3.63.1
* no upstream release notes for 3.63.1 (yet)
Fixed in 3.63
* bmo#1697380 - Make a clang-format run on top of helpful contributions.
* bmo#1683520 - ECCKiila P384, change syntax of nested structs
initialization to prevent build isses with GCC 4.8.
* bmo#1683520 - [lib/freebl/ecl] P-384: allow zero scalars in dual
scalar multiplication.
* bmo#1683520 - ECCKiila P521, change syntax of nested structs
initialization to prevent build isses with GCC 4.8.
* bmo#1683520 - [lib/freebl/ecl] P-521: allow zero scalars in dual
scalar multiplication.
* bmo#1696800 - HACL* update March 2021 - c95ab70fcb2bc21025d8845281bc4bc8987ca683.
* bmo#1694214 - tstclnt can't enable middlebox compat mode.
* bmo#1694392 - NSS does not work with PKCS #11 modules not supporting
profiles.
* bmo#1685880 - Minor fix to prevent unused variable on early return.
* bmo#1685880 - Fix for the gcc compiler version 7 to support setenv
with nss build.
* bmo#1693217 - Increase nssckbi.h version number for March 2021 batch
of root CA changes, CA list version 2.48.
* bmo#1692094 - Set email distrust after to 21-03-01 for Camerfirma's
'Chambers of Commerce' and 'Global Chambersign' roots.
* bmo#1618407 - Symantec root certs - Set CKA_NSS_EMAIL_DISTRUST_AFTER.
* bmo#1693173 - Add GlobalSign R45, E45, R46, and E46 root certs to NSS.
* bmo#1683738 - Add AC RAIZ FNMT-RCM SERVIDORES SEGUROS root cert to NSS.
* bmo#1686854 - Remove GeoTrust PCA-G2 and VeriSign Universal root certs
from NSS.
* bmo#1687822 - Turn off Websites trust bit for the ?Staat der
Nederlanden Root CA - G3? root cert in NSS.
* bmo#1692094 - Turn off Websites Trust Bit for 'Chambers of Commerce
Root - 2008' and 'Global Chambersign Root - 2008?.
* bmo#1694291 - Tracing fixes for ECH.
- required for Firefox 88
==== pulseaudio ====
Subpackages: libpulse-mainloop-glib0 libpulse0 pulseaudio-module-bluetooth pulseaudio-module-gsettings pulseaudio-module-x11 pulseaudio-module-zeroconf pulseaudio-utils
- Really fix recording OGG with parecord (bsc#1183546)
parecord-really-fix-recording-OGG.patch
==== xen ====
Version update (4.14.1_14 -> 4.14.1_16)
- bsc#1180491 - "Panic on CPU 0: IO-APIC + timer doesn't work!"
60787714-x86-HPET-avoid-legacy-replacement-mode.patch
60787714-x86-HPET-factor-legacy-replacement-mode-enabling.patch
- Upstream bug fixes (bsc#1027519)
60410127-gcc11-adjust-rijndaelEncrypt.patch
60422428-x86-shadow-avoid-fast-fault-path.patch
604b9070-VT-d-disable-QI-IR-before-init.patch
60535c11-libxl-domain-soft-reset.patch (Replaces xsa368.patch)
60700077-x86-vpt-avoid-pt_migrate-rwlock.patch
- bsc#1137251 - Restore changes for xen-dom0-modules.service which
were silently removed on 2019-10-17
==== yast2 ====
Version update (4.3.60 -> 4.4.1)
- Add a mechanism to report issues to the user (related to
bsc#1181295).
- 4.4.1
- Updated manual page ("man yast2") (bsc#1184681)
- 4.4.0
- Add a default value for file_path argument in ::new and ::load
methods of CFA::LoginDefs class.
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=1&version=T…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
ceph
findutils
gmp
installation-images-MicroOS (16.62 -> 16.72)
kernel-firmware (20210315 -> 20210419)
mozilla-nss (3.62 -> 3.63.1)
xen (4.14.1_14 -> 4.14.1_16)
yast2 (4.3.60 -> 4.4.1)
=== Details ===
==== ceph ====
Subpackages: ceph-common libcephfs2 librados2 librbd1 librgw2 python3-ceph-argparse python3-ceph-common python3-cephfs python3-rados python3-rbd python3-rgw
- _constraints: raise s390x disk constraint to 42G after seeing a build fail
with "write error: No space left on device"
==== findutils ====
- Use new Group Release Keyring
==== gmp ====
- Compute FIPS hmac for libgmp.so.10 [bsc#1184555]
- do not break SLE 12 build when applying spec-cleaner
==== installation-images-MicroOS ====
Version update (16.62 -> 16.72)
- merge gh#openSUSE/installation-images#500
- fix NVMf autoconnect udev rule (bsc#1184908)
- 16.72
- merge gh#openSUSE/installation-images#490
- re-enable SecureBoot on AARCH64 on SLE Micro enable building the
SLE Micro flavor based on OBS macro
- 16.71
- merge gh#openSUSE/installation-images#497
- add udev rules for NVMf autoconnect in the installation system
(bsc#1184908)
- 16.70
- merge gh#openSUSE/installation-images#496
- add even more USB Type-C modules (bsc#1185010)
- 16.69
- merge gh#openSUSE/installation-images#492
- allow loading of unsupported modules (bsc#1184413, bsc#1183140)
- 16.68
- merge gh#openSUSE/installation-images#491
- build with kernel-default-optional on Leap (bsc#1184413)
- 16.67
- merge gh#openSUSE/installation-images#487
- gefrickel: don't skip non-existing
- 16.66
- merge gh#openSUSE/installation-images#484
- add USB Type-C modules (bsc#1184867)
- 16.65
- merge gh#openSUSE/installation-images#481
- enable multipathd in rescue system (bsc#1184686)
- merge gh#openSUSE/installation-images#480
- build with kernel-default-extra on Leap (bsc#1184413, bsc#1183140)
- 16.64
- merge gh#openSUSE/installation-images#478
- Fix grub branding for %{arm}
- 16.63
==== kernel-firmware ====
Version update (20210315 -> 20210419)
Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network ucode-amd
- Update to version 20210419 (git commit 940b7f42d45d):
* cxgb4: Update firmware to revision 1.25.4.0
* Mellanox: Add new mlxsw_spectrum firmware xx.2008.2438
* brcm: Link CM4's WiFi firmware with DMI machine name.
* linux-firmware: Update firmware file for Intel Bluetooth AX201
* amdgpu: update navi14 smc firmware
* amdgpu: update navi10 SMC firmware
* QCA: Update Bluetooth firmware for QCA6174
* WHENCE: link to similar config file for rtl8821a support
* nfp: update Agilio SmartNIC flower firmware to rev AOTC-2.14.A.6
* amdgpu: add arcturus firmware
* rtl_bt: Add rtl8723bs_config-OBDA0623.bin symlink
* brcm: Add nvram for the Chuwi Hi8 (CWI509) tablet
* brcm: Add nvram for the Predia Basic tablet
* qcom: sm8250: update remoteproc firmware
* qcom: update a650 firmware files
* rtl_bt: Update RTL8822C BT(UART I/F) FW to 0x59A_76A3
* amdgpu: update sienna cichlid firmware for 20.50
* amdgpu: update vega20 firmware for 20.50
* amdgpu: update picasso firmware for 20.50
* amdgpu: update navi14 firmware for 20.50
* amdgpu: update vega12 firmware for 20.50
* amdgpu: update navi12 firmware for 20.50
* amdgpu: update vega10 firmware for 20.50
* amdgpu: update renoir firmware for 20.50
* amdgpu: update navi10 firmware for 20.50
* amdgpu: update raven2 firmware for 20.50
* amdgpu: update raven firmware for 20.50
* amdgpu: add initial support for navy flounder
- Update aliases
==== mozilla-nss ====
Version update (3.62 -> 3.63.1)
- update to NSS 3.63.1
* no upstream release notes for 3.63.1 (yet)
Fixed in 3.63
* bmo#1697380 - Make a clang-format run on top of helpful contributions.
* bmo#1683520 - ECCKiila P384, change syntax of nested structs
initialization to prevent build isses with GCC 4.8.
* bmo#1683520 - [lib/freebl/ecl] P-384: allow zero scalars in dual
scalar multiplication.
* bmo#1683520 - ECCKiila P521, change syntax of nested structs
initialization to prevent build isses with GCC 4.8.
* bmo#1683520 - [lib/freebl/ecl] P-521: allow zero scalars in dual
scalar multiplication.
* bmo#1696800 - HACL* update March 2021 - c95ab70fcb2bc21025d8845281bc4bc8987ca683.
* bmo#1694214 - tstclnt can't enable middlebox compat mode.
* bmo#1694392 - NSS does not work with PKCS #11 modules not supporting
profiles.
* bmo#1685880 - Minor fix to prevent unused variable on early return.
* bmo#1685880 - Fix for the gcc compiler version 7 to support setenv
with nss build.
* bmo#1693217 - Increase nssckbi.h version number for March 2021 batch
of root CA changes, CA list version 2.48.
* bmo#1692094 - Set email distrust after to 21-03-01 for Camerfirma's
'Chambers of Commerce' and 'Global Chambersign' roots.
* bmo#1618407 - Symantec root certs - Set CKA_NSS_EMAIL_DISTRUST_AFTER.
* bmo#1693173 - Add GlobalSign R45, E45, R46, and E46 root certs to NSS.
* bmo#1683738 - Add AC RAIZ FNMT-RCM SERVIDORES SEGUROS root cert to NSS.
* bmo#1686854 - Remove GeoTrust PCA-G2 and VeriSign Universal root certs
from NSS.
* bmo#1687822 - Turn off Websites trust bit for the ?Staat der
Nederlanden Root CA - G3? root cert in NSS.
* bmo#1692094 - Turn off Websites Trust Bit for 'Chambers of Commerce
Root - 2008' and 'Global Chambersign Root - 2008?.
* bmo#1694291 - Tracing fixes for ECH.
- required for Firefox 88
==== xen ====
Version update (4.14.1_14 -> 4.14.1_16)
- bsc#1180491 - "Panic on CPU 0: IO-APIC + timer doesn't work!"
60787714-x86-HPET-avoid-legacy-replacement-mode.patch
60787714-x86-HPET-factor-legacy-replacement-mode-enabling.patch
- Upstream bug fixes (bsc#1027519)
60410127-gcc11-adjust-rijndaelEncrypt.patch
60422428-x86-shadow-avoid-fast-fault-path.patch
604b9070-VT-d-disable-QI-IR-before-init.patch
60535c11-libxl-domain-soft-reset.patch (Replaces xsa368.patch)
60700077-x86-vpt-avoid-pt_migrate-rwlock.patch
- bsc#1137251 - Restore changes for xen-dom0-modules.service which
were silently removed on 2019-10-17
==== yast2 ====
Version update (4.3.60 -> 4.4.1)
- Add a mechanism to report issues to the user (related to
bsc#1181295).
- 4.4.1
- Updated manual page ("man yast2") (bsc#1184681)
- 4.4.0
- Add a default value for file_path argument in ::new and ::load
methods of CFA::LoginDefs class.
1
0