openSUSE Kubic
Threads by month
- ----- 2024 -----
- July
- June
- May
- April
- March
- February
- January
- ----- 2023 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2022 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2021 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2020 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2019 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2018 -----
- December
- November
- October
- September
- August
April 2021
- 10 participants
- 39 discussions
Is it possible to use a custom kernel and bootloader with MicroOS? I
ask specifically because I am interested in supporting some specific
ARM devices that may require custom kernel and bootloader support.
WIth other Linux distributions, I effectively can package up my custom
kernel and bootloaders and use them instead of the stock versions. At
that point, I am mainly just using the userland software from the
distribution, of course.
If it is possible to use custom kernels and bootloaders, are there
specific changes/support required for U-Boot or the kernel to support
MicroOS and its many features beyond what a regular openSUSE
distribution might need?
Thanks!
Paul
3
5
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
AppStream (0.14.1 -> 0.14.3)
blog
giflib
grub2
harfbuzz (2.7.4 -> 2.8.0)
hwinfo (21.72 -> 21.73)
jack (1.9.17 -> 1.9.18)
ldb (2.2.1 -> 2.3.0)
libcontainers-common
libdnf (0.60.0 -> 0.62.0)
libfido2 (1.6.0 -> 1.7.0)
libqt5-qtwebengine
librepo (1.13.0 -> 1.14.0)
libvpx (1.9.0 -> 1.10.0)
libxkbcommon (1.2.0 -> 1.2.1)
lua54 (5.4.2 -> 5.4.3)
makedumpfile
microdnf (3.7.1 -> 3.8.0)
podman (3.0.1 -> 3.1.1)
qalculate (3.16.1 -> 3.18.0)
samba (4.13.4+git.199.be6e11f5ab2 -> 4.14.2+git.159.2a8872214bf)
selinux-policy (20210309 -> 20210419)
snapper (0.8.16 -> 0.9.0)
sqlite3 (3.35.2 -> 3.35.5)
sudo (1.9.5p2 -> 1.9.6p1)
xorg-x11-server (1.20.10 -> 1.20.11)
=== Details ===
==== AppStream ====
Version update (0.14.1 -> 0.14.3)
Subpackages: libAppStreamQt2 libappstream4
- Update to version 0.14.3
* spec: Mention that license-IDs are case-sensitive
* compose: Don't loop endlessly if external desktop l10n function
is set
* Never create a predictable dir in /tmp for caching
* qt: Implement missing Pool::componentsByCategories
* Share one user-owned read-only system metadata cache between all
applications
* pool: Clean up user sysdata caches if we start to use the system
cache
* Port over some parsing improvements for desktop-files from asgen
* compose: Add helper for reading desktop-entry files
* compose: Handle bad UTF-8 in desktop-entry files even better
* search: Perform partial token matches instead of prefix matches
* search: Unconditionally perform partial term matching after
exact matching
* news-to-metainfo: Recognize the "Contributors" section
* Update our own metainfo file for appstreamcli
* Read descriptions from collection XML correctly again
* search: Make whole-search string matching a lot more strict
* validator: Resolve false-positive when testing remote icon
URL validity
* utils: Improve textwrap if text is just one excessively
long word
* compose: Permit U+00AD SOFT HYPHEN in string values
* Validate our own metainfo file
* compose: Don't assume lowest priority for desktop-entry-only
components
* search: Only replace full words with greylist terms,
not partial ones
* ascli: Take all positional parameters as search terms when
searching
==== blog ====
Subpackages: libblogger2
- Fix package split done for shared library packaging guideline (bsc#1184479).
==== giflib ====
- prep section should just extract and patch,
further modifications have to be done in the build section
- Added patch:
* PIE.patch
+ build path independent objects
==== grub2 ====
Subpackages: grub2-i386-pc grub2-snapper-plugin grub2-x86_64-efi
- Fix build error on armv6/armv7 (bsc#1184712)
* 0001-emu-fix-executable-stack-marking.patch
- Fix error grub_file_filters not found in Azure virtual machine (bsc#1182012)
* 0001-Workaround-volatile-efi-boot-variable.patch
==== harfbuzz ====
Version update (2.7.4 -> 2.8.0)
Subpackages: libharfbuzz-gobject0 libharfbuzz-icu0 libharfbuzz-subset0 libharfbuzz0 typelib-1_0-HarfBuzz-0_0
- Update to version 2.8.0:
+ Shape joining scripts other than Arabic/Syriac using the
Universal Shaping Engine. Previously these were shaped using
the generalized Arabic shaper.
+ Fix regression in shaping of U+0B55 ORIYA SIGN OVERLINE.
+ Update language tags.
+ Variations: reduce error: do not round each interpolated delta.
+ Documentation improvements.
+ Subsetter improvements: subsets most, if not all, lookup types
now.
+ Fuzzer-found fixes and other improvements when memory failures
happen.
+ Removed most atomic implementations now that we have C++11
atomic impl.
+ General codebase upkeep; using more C++11 features: constexpr
constructors, etc.
==== hwinfo ====
Version update (21.72 -> 21.73)
- merge gh#openSUSE/hwinfo#95
- don't rely on select() updating its timeout arg (bsc#1184339)
- 21.73
==== jack ====
Version update (1.9.17 -> 1.9.18)
- update to 1.9.18:
* Add zalsa_in/out as internal client (based on zita-a2j/j2a and jack1 code)
* Fix jack_midi_dump deadlock on close after the jack server is restarted
* Fix interrupt signal for linux futex waits
* Fix usage of meta-data in official macOS builds (private DB errors)
* Log error message when cleaning previous DB (macOS and Windows)
==== ldb ====
Version update (2.2.1 -> 2.3.0)
Subpackages: libldb2 python3-ldb
- Update to ldb 2.3.0
==== libcontainers-common ====
- Force overlay as default storage driver if system is not btrfs
(gh#containers/buildah#3153)
- Update common to 0.36.0
- Update podman to 3.1.1
- Update storage to 1.29.0
- Update image to 5.11.0
==== libdnf ====
Version update (0.60.0 -> 0.62.0)
Subpackages: libdnf-repo-config-zypp libdnf2
- Add patch to fix crash when loading DVD repositories
+ Patch: 0001-Fix-a-crash-when-repoId-not-found-in-loaded-conf-gke.patch
- Update to 0.62.0
+ Change order of TransactionItemReason (rh#1921063)
+ Add two new comperators for security filters (rh#1918475)
+ Apply security filters for candidates with lower priority
+ Fix: Goal - translation of messages in global maps
+ Enhance description of modular solvables
+ Improve performance for module query
+ Change mechanism of modular errata applicability (rh#1804234)
+ dnf_transaction_commit(): Remove second call to rpmtsSetVSFlags
+ Fix a couple of memory leaks
+ Fix: Setting of librepo handle in newHandle function
+ Remove failsafe data when module is not enabled (rh#1847035)
+ Expose librepo's checksum functions via SWIG
+ Fix: Mising check of "hy_split_nevra()" return code
+ Do not allow 1 as installonly_limit value (rh#1926261)
+ Fix check whether the subkey can be used for signing
+ Hardening: add signature check with rpmcliVerifySignatures
(CVE-2021-3445, CVE-2021-3421, CVE-2021-20271, rh#1932079, rh#1932089, rh#1932090, boo#1183779)
+ Add a config option sslverifystatus, defaults to false (rh#1814383)
+ [context] Add API for distro-sync
==== libfido2 ====
Version update (1.6.0 -> 1.7.0)
Subpackages: libfido2-1 libfido2-udev
- Update to version 1.7.0:
* hid_win: detect devices with vendor or product IDs > 0x7fff
* Support for FIDO 2.1 authenticator configuration.
* Support for FIDO 2.1 UV token permissions.
* Support for FIDO 2.1 "credBlobs" and "largeBlobs" extensions.
* New API calls
* New fido_init flag to disable fido_dev_open?s U2F fallback
* Experimental NFC support on Linux.
- Enabled hidapi again, issues related to hidapi are fixed upstream
* Added fix-cmake-linking.patch to fix linking
==== libqt5-qtwebengine ====
- Add patch to fix build with GCC 11:
* 0001-Fix-build-with-GCC-11.patch
- Update _constraints to avoid OOM
- Add back missing part in fix1163766.patch (boo#1184610)
==== librepo ====
Version update (1.13.0 -> 1.14.0)
- Update to 1.14.0
+ Fix LRO_PRESERVETIME behavior
+ Support multiple checksums in xattr (rh#1931904)
+ Return "calculated" checksum if requested w/caching
+ Fix lr_yum_download_url in case lr_handle is NULL
==== libvpx ====
Version update (1.9.0 -> 1.10.0)
- using service/obspcio again because upstream tar ball is changing,
leading to trust validation errors
- udpate to 1.10.0:
This maintenance release adds support for darwin20 and new codec controls, as
well as numerous bug fixes.
- Upgrading:
New codec control is added to disable loopfilter for VP9.
New encoder control is added to disable feature to increase Q on overshoot
detection for CBR.
Configure support for darwin20 is added.
New codec control is added for VP9 rate control. The control ID of this
interface is VP9E_SET_EXTERNAL_RATE_CONTROL. To make VP9 use a customized
external rate control model, users will have to implement each callback
function in vpx_rc_funcs_t and register them using libvpx API
vpx_codec_control_() with the control ID.
- Enhancement:
Use -std=gnu++11 instead of -std=c++11 for c++ files.
- Bug fixes:
Override assembler with --as option of configure for MSVS.
Fix several compilation issues with gcc 4.8.5.
Fix to resetting rate control for temporal layers.
Fix to the rate control stats of SVC example encoder when number of spatial
layers is 1.
Fix to reusing motion vectors from the base spatial layer in SVC.
2 pass related flags removed from SVC example encoder.
==== libxkbcommon ====
Version update (1.2.0 -> 1.2.1)
Subpackages: libxkbcommon-x11-0 libxkbcommon0 libxkbregistry0
- Update to release 1.2.1 [boo#1184688]
* Fix `xkb_x11_keymap_new_from_device()` failing when the
keymap contains key types with missing level names, like the
one used by the `numpad:mac` option in xkeyboard-config.
(Regressed in 1.2.0.)
==== lua54 ====
Version update (5.4.2 -> 5.4.3)
Subpackages: liblua5_4-5
- Add upstream-bugs.patch and upstream-bugs-test.patch to fix
bugs 1,2,3 for build and tests respectively.
- Update to version 5.4.3:
* Fixes bugs found in Lua 5.4.2
- Removed upstream-bugs.patch: new release (no bugs found yet)
- Removed upstream-bugs-test.patch: new release (no bugs found yet)
==== makedumpfile ====
- Update patch metadata.
- Fix guessing of va_bits (bsc#1183977)
* makedumpfile-1-3-Use-vmcoreinfo-note-in-proc-kcore-for-mem-.patch
* makedumpfile-2-3-arm64-Make-use-of-NUMBER-VA_BITS-in-vmcore.patch
* makedumpfile-3-3-arm64-support-flipped-VA-and-52-bit-kernel.patch
==== microdnf ====
Version update (3.7.1 -> 3.8.0)
- Update to 3.8.0
+ Add "makecache" command
+ Add "distro-sync" command
==== podman ====
Version update (3.0.1 -> 3.1.1)
Subpackages: podman-cni-config
- Update to version 3.1.1:
* Bump to v3.1.1
* Update release notes for v3.1.1
* podman play kube apply correct log driver
* Fix build with GO111MODULE=off
* [CI:DOCS] Set all operation id to be compatibile
* Move operationIds to swagger:operation line
* swagger: add operationIds that match with docker
* Fix missing podman-remote build options
* [NO TESTS NEEDED] Shrink the size of podman-remote
* Move socket activation check into init() and set global condition.
* rootless: use is_fd_inherited
* Recreate until container prune tests for bindings
* System tests: special case for RHEL: require runc
* Document --volume from podman-remote run/create client
* Containers prune endpoint should use only prune filters
* Trim white space from /top endpoint results
* Fix unmount doc reference in image.rst
* Fix handling of remove --log-rusage param
* Makefile: introduce install.docker-full
* Makefile: ensure install.docker creates BINDIR
* Should send the OCI runtime path not just the name to buildah
* Fixed podman-remote --network flag
* podman-run.1.md, podman-create.1.md : Adjust Markdown layout for --userns
* Fix typos --uidmapping and --gidmapping
* Add default template functions
* Don't relabel volumes if running in a privileged container
* Allow users to override default storage opts with --storage-opt
* Add transport and destination info to manifest doc
* Verify existence of auth file if specified
* Ensure that `--userns=keep-id` sets user in config
* [CI:DOCS] Update swagger definition of inspect manifest
* Volumes prune endpoint should use only prune filters
* Adjust libpod API Container Wait documentation to the code
* Add missing return
* [CI:DOCS] Fix formatting of podman-build man page
* cgroups: force 64 bits to ParseUint
* Fix slashes in socket URLs
* [CI:DOCS] Correct status code for /pods/create
* cgroup: do not set cgroup parent when rootless and cgroupfs
* Reflect current state of prune implementation in docs
* Do not delete container twice
* Test that we don't error out on advertised --log-level values
* At trace log level, print error text using %+v instead of %v
* pkg/errorhandling.JoinErrors: don't throw away context for lone errors
* Recognize --log-level=trace
* Fix message about runtime to show only the actual runtime
* Fix handling of $NAME and $IMAGE in runlabel
* Fix flake on failed podman-remote build : try 2
* Fix flake on failed podman-remote build
* Update documentation of podman-run to reflect volume "U" option
* Fixes invalid expression in save command
* Fix possible panic in libpod/image/prune.go
* Update all containers/ project vendors
* Fix tests
* Bump to v3.1.1-dev
- Update to version 3.1.0:
* Bump to v3.1.0
* Fix test failure
* Update release notes for v3.1.0 final release
* [NO TESTS NEEDED] Turn on podman-remote build --isolation
* Fix long option format on docs.podman.io
* Fix containers list/prune http api filter behaviour
* [CI:DOCS] Add note to mappings for user/group userns in build
* Validate passed in timezone from tz option
* Generate Kubernetes PersistentVolumeClaims from named volumes
* libpod/image: unit tests: use a `registries.conf` for aliases
- Require systemd 241 or newer due to podman dependency go-systemd v22,
otherwise build will fail with unknown C name errors
==== qalculate ====
Version update (3.16.1 -> 3.18.0)
- Update to 3.18.0:
* Improve handling of expressions with log-based units
* Improve conversion of expression with multiple units
to a single unit (e.g. m/W to W)
* Output (kilo)gram instead of tonne with small prefix
* New functions for statistical distributions: probit(), betadist(),
cauchydist(), chisqdist(), expinv(), fdist(), gammadist(),
tdist(), wblinv(), weibulldist()
* Improve functions for statistical distribution
* Improve sexagesimal input and output, and add geodistance()
for calculation of distance between two GPS coordinates
* Add command() function, which runs an external command
and returns the output
* erfinv() function and support for solving equations
with error functions
* Fix conversion with relative temperature units activated
* Fix gammainc() function
* Fix keyboard focus when run hidden automatically at startup
* Temperature calculation modes (absolute, relative, hybrid)
* Allow prefixes, with full name, without units (e.g. kilo = 10^3)
* Extended and improved simplified Chinese translation
* Save handle vector function argument property
* Fix never ending loop when calculating []*[]
* Minor bug fixes and feature improvements
==== samba ====
Version update (4.13.4+git.199.be6e11f5ab2 -> 4.14.2+git.159.2a8872214bf)
Subpackages: libdcerpc-binding0 libdcerpc0 libndr-krb5pac0 libndr-nbt0 libndr-standard0 libndr1 libnetapi0 libsamba-errors0 libsamba-hostconfig0 libsamba-passdb0 libsamba-util0 libsamdb0 libsmbclient0 libsmbconf0 libsmbldap2 libtevent-util0 libwbclient0 samba-client samba-libs samba-libs-python3
- Update to 4.14.2
* Release with dependency on ldb version 2.3.0.
- Update to 4.14.1
* CVE-2021-20277: Fix out of bounds read in ldb_handler_fold; (bso#14655);
* CVE-2020-27840: Fix unauthenticated remote heap corruption via bad DNs;
(bso#14595);
- Update to 4.14.0
* VFS layer modernized.
* Printers publishing in AD improved.
* Client group policies support for sudoers configuration and
cron jobs.
* Improved consistency of samba-tool subcommands.
* CTDB now uses the terms leader and follower instead of master and
slave. Configuration options have changed accordingly.
* The ctdb isnotrecmaster command is removed.
* For details on all items see WHATSNEW.txt in samba-doc package.
==== selinux-policy ====
Version update (20210309 -> 20210419)
Subpackages: selinux-policy-targeted
- Update to version 20210419
- Refreshed:
* fix_dbus.patch
* fix_hadoop.patch
* fix_init.patch
* fix_unprivuser.patch
==== snapper ====
Version update (0.8.16 -> 0.9.0)
Subpackages: libsnapper5
- fix build on 32 bit musl systems (gh#openSUSE/snapper#644)
- improved error handling (see gh#openSUSE/snapper#626)
- version 0.9.0
==== sqlite3 ====
Version update (3.35.2 -> 3.35.5)
- SQLite3 3.35.5:
* Fix defects in the new ALTER TABLE DROP COLUMN feature that
could corrupt the database file
* Fix an obscure query optimizer problem that might cause an
incorrect query result
- Fix build on SLE-12
- use https urls
- SQLite 3.35.4:
* Fix a defect in the query planner optimization
* Fix a defect in the new RETURNING syntax
* Fix the new RETURNING feature so that it raises an error if one
of the terms in the RETURNING clause references a unknown
table, instead of silently ignoring that error
* Fix an assertion associated with aggregate function processing
that was incorrectly triggered by the push-down optimization
- SQLite 3.35.3:
* Enhance the OP_OpenDup opcode of the bytecode engine so that
it works even if the cursor being duplicated itself came from
OP_OpenDup
* When materializing correlated common table expressions, do so
separately for each use case, as that is required for
correctness. This fixes a problem that was introduced by the
MATERIALIZED hint enhancement.
* Fix a problem in the filename normalizer of the unix VFS
* Fix the "box" output mode in the CLI so that it works with
statements that returns one or more rows of zero columns
(such as PRAGMA incremental_vacuum)
* Improvements to error messages generated by faulty common
table expressions
* Fix some incorrect assert() statements
* Fix to the SELECT statement syntax diagram so that the FROM
clause syntax is shown correctly
* Fix the EBCDIC character classifier so that it understands
newlines as whitespace
* Improvements the xBestIndex method in the implementation of the
(unsupported) wholenumber virtual table extension so that it
does a better job of convincing the query planner to avoid
trying to materialize a table with an infinite number of rows
==== sudo ====
Version update (1.9.5p2 -> 1.9.6p1)
- update to 1.9.6p1
* Fixed a regression introduced in sudo 1.9.6 that resulted in an
error message instead of a usage message when sudo is run with
no arguments.
* Fixed a sudo_sendlog compilation problem with the AIX xlC compiler.
* Fixed a regression introduced in sudo 1.9.4 where the
- -disable-root-mailer configure option had no effect.
* Added a --disable-leaks configure option that avoids some
memory leaks on exit that would otherwise occur. This is intended
to be used with development tools that measure memory leaks. It
is not safe to use in production at this time.
* Plugged some memory leaks identified by oss-fuzz and ASAN.
* Fixed the handling of sudoOptions for an LDAP sudoRole that
contains multiple sudoCommands. Previously, some of the options
would only be applied to the first sudoCommand.
* Fixed a potential out of bounds read in the parsing of NOTBEFORE
and NOTAFTER sudoers command options (and their LDAP equivalents).
* The parser used for reading I/O log JSON files is now more
resilient when processing invalid JSON.
* Fixed typos that prevented "make uninstall" from working.
* Fixed a regression introduced in sudo 1.9.4 where the last line
in a sudoers file might not have a terminating NUL character
added if no newline was present.
* Integrated oss-fuzz and LLVM's libFuzzer with sudo. The new
- -enable-fuzzer configure option can be combined with the
- -enable-sanitizer option to build sudo with fuzzing support.
Multiple fuzz targets are available for fuzzing different parts
of sudo. Fuzzers are built and tested via "make fuzz" or as part
of "make check" (even when sudo is not built with fuzzing support).
Fuzzing support currently requires the LLVM clang compiler (not gcc).
* Fixed the --enable-static-sudoers configure option.
* Fixed a potential out of bounds read sudo when is run by a user
with more groups than the value of "max_groups" in sudo.conf.
* Added an "admin_flag" sudoers option to make the use of the
~/.sudo_as_admin_successful file configurable on systems where
sudo is build with the --enable-admin-flag configure option.
This mostly affects Ubuntu and its derivatives.
* The "max_groups" setting in sudo.conf is now limited to 1024.
This setting is obsolete and should no longer be needed.
* Fixed a bug in the tilde expansion of "CHROOT=dir" and "CWD=dir"
sudoers command options. A path "~/foo" was expanded to
"/home/userfoo" instead of "/home/user/foo". This also affects
the runchroot and runcwd Defaults settings.
* Fixed a bug on systems without a native getdelim(3) function
where very long lines could cause parsing of the sudoers file
to end prematurely.
* Fixed a potential integer overflow when converting the
timestamp_timeout and passwd_timeout sudoers settings to a
timespec struct.
* The default for the "group_source" setting in sudo.conf is now
"dynamic" on macOS. Recent versions of macOS do not reliably
return all of a user's non-local groups via getgroups(2), even
when _DARWIN_UNLIMITED_GETGROUPS is defined.
* Fixed a potential use-after-free in the PAM conversation function.
* Fixed potential redefinition of sys/stat.h macros in sudo_compat.h.
==== xorg-x11-server ====
Version update (1.20.10 -> 1.20.11)
Subpackages: xorg-x11-server-Xvfb
- disable build of Xwayland, which is now being built in separate
xwayland package with more recent sources (boo#1182677)
- Update to version 1.20.11
* bugfix release
- supersedes U_Fix-XChangeFeedbackControl-request-underflow.patch,
U_xkb-Fix-heap-overflow-caused-by-optimized-away-min.patch
- U_Fix-XChangeFeedbackControl-request-underflow.patch
* Fix XChangeFeedbackControl() request underflow (CVE-2021-3472,
ZDI-CAN-1259, bsc#1180128)
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=1&version=T…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
cri-tools (1.20.0 -> 1.21.0)
etcd
grub2
hwinfo (21.72 -> 21.73)
k9s (0.24.2 -> 0.24.7)
kubectl-who-can (0.0+git20190606.c185aaa -> 0.3.0)
ldb (2.2.1 -> 2.3.0)
libcontainers-common
libdnf (0.60.0 -> 0.62.0)
libfido2 (1.6.0 -> 1.7.0)
librepo (1.13.0 -> 1.14.0)
lua54 (5.4.2 -> 5.4.3)
makedumpfile
microdnf (3.7.1 -> 3.8.0)
podman (3.0.1 -> 3.1.1)
rpcbind
salt
selinux-policy (20210309 -> 20210419)
snapper (0.8.16 -> 0.9.0)
sqlite3 (3.35.2 -> 3.35.5)
sudo (1.9.5p2 -> 1.9.6p1)
=== Details ===
==== cri-tools ====
Version update (1.20.0 -> 1.21.0)
- Update to version 1.21.0:
* Bump README versions to v1.21.0
* Update dependencies
* Add dependabot config file
* Simplify test image build process for user images
* Move from gcr.io/cri-tools to gcr.io/k8s-staging-cri-tools
* Fix UID/GID and username values for test images
* Bump gcb-docker-gcloud image to v20210331-c732583
* Fix CRI-O master installation in GitHub actions
==== etcd ====
- update etcd.service: avoid args from commandline and environment
as it leads to start failure (bsc#1183703)
==== grub2 ====
Subpackages: grub2-i386-pc grub2-snapper-plugin grub2-x86_64-efi
- Fix build error on armv6/armv7 (bsc#1184712)
* 0001-emu-fix-executable-stack-marking.patch
- Fix error grub_file_filters not found in Azure virtual machine (bsc#1182012)
* 0001-Workaround-volatile-efi-boot-variable.patch
==== hwinfo ====
Version update (21.72 -> 21.73)
- merge gh#openSUSE/hwinfo#95
- don't rely on select() updating its timeout arg (bsc#1184339)
- 21.73
==== k9s ====
Version update (0.24.2 -> 0.24.7)
- Update to version 0.24.7:
* cleaning up
* bump rev
* maintenance #1067 #1061 #1060
* rev up
* merge prs + dep updates
* ISSUE-957 - Add a simple pause button to stop auto-refresh on ConfigMap and Secrets (#1062)
* bugs #1063 #1061 #1059 #177
* Add release tag (#1058)
* fix #1056 #1024
* fix po feature col + lockouts?
- Update to version 0.24.6:
* rev up
* merge prs + dep updates
* ISSUE-957 - Add a simple pause button to stop auto-refresh on ConfigMap and Secrets (#1062)
* bugs #1063 #1061 #1059 #177
* Add release tag (#1058)
* fix #1056 #1024
* fix po feature col + lockouts?
* fix #1024
* update deps and image
- Rename Makefile.diff to Makefile.patch
==== kubectl-who-can ====
Version update (0.0+git20190606.c185aaa -> 0.3.0)
- Update to version 0.3.0:
* chore: Bump up Go to v1.15 (#82)
* feat: Add JSON export functionality (#81)
* chore: Switch to main branch (#80)
* feat: Add -o wide flag to print the ROLE column (#79)
* chore: Add krew-release-bot for publishing plugin releases (#78)
* refactor: Use KIND to run integration tests (#77)
* chore: Bump up Go from 1.12 to 1.14 (#76)
* chore: Remove Travis CI config (#75)
* chore: Migrate from Travis CI to GitHub Actions (#74)
* chore: Replace google/glog with kubernetes/klog (#71)
==== ldb ====
Version update (2.2.1 -> 2.3.0)
- Update to ldb 2.3.0
==== libcontainers-common ====
- Force overlay as default storage driver if system is not btrfs
(gh#containers/buildah#3153)
- Update common to 0.36.0
- Update podman to 3.1.1
- Update storage to 1.29.0
- Update image to 5.11.0
==== libdnf ====
Version update (0.60.0 -> 0.62.0)
Subpackages: libdnf-repo-config-zypp libdnf2
- Add patch to fix crash when loading DVD repositories
+ Patch: 0001-Fix-a-crash-when-repoId-not-found-in-loaded-conf-gke.patch
- Update to 0.62.0
+ Change order of TransactionItemReason (rh#1921063)
+ Add two new comperators for security filters (rh#1918475)
+ Apply security filters for candidates with lower priority
+ Fix: Goal - translation of messages in global maps
+ Enhance description of modular solvables
+ Improve performance for module query
+ Change mechanism of modular errata applicability (rh#1804234)
+ dnf_transaction_commit(): Remove second call to rpmtsSetVSFlags
+ Fix a couple of memory leaks
+ Fix: Setting of librepo handle in newHandle function
+ Remove failsafe data when module is not enabled (rh#1847035)
+ Expose librepo's checksum functions via SWIG
+ Fix: Mising check of "hy_split_nevra()" return code
+ Do not allow 1 as installonly_limit value (rh#1926261)
+ Fix check whether the subkey can be used for signing
+ Hardening: add signature check with rpmcliVerifySignatures
(CVE-2021-3445, CVE-2021-3421, CVE-2021-20271, rh#1932079, rh#1932089, rh#1932090, boo#1183779)
+ Add a config option sslverifystatus, defaults to false (rh#1814383)
+ [context] Add API for distro-sync
==== libfido2 ====
Version update (1.6.0 -> 1.7.0)
Subpackages: libfido2-1 libfido2-udev
- Update to version 1.7.0:
* hid_win: detect devices with vendor or product IDs > 0x7fff
* Support for FIDO 2.1 authenticator configuration.
* Support for FIDO 2.1 UV token permissions.
* Support for FIDO 2.1 "credBlobs" and "largeBlobs" extensions.
* New API calls
* New fido_init flag to disable fido_dev_open?s U2F fallback
* Experimental NFC support on Linux.
- Enabled hidapi again, issues related to hidapi are fixed upstream
* Added fix-cmake-linking.patch to fix linking
==== librepo ====
Version update (1.13.0 -> 1.14.0)
- Update to 1.14.0
+ Fix LRO_PRESERVETIME behavior
+ Support multiple checksums in xattr (rh#1931904)
+ Return "calculated" checksum if requested w/caching
+ Fix lr_yum_download_url in case lr_handle is NULL
==== lua54 ====
Version update (5.4.2 -> 5.4.3)
- Add upstream-bugs.patch and upstream-bugs-test.patch to fix
bugs 1,2,3 for build and tests respectively.
- Update to version 5.4.3:
* Fixes bugs found in Lua 5.4.2
- Removed upstream-bugs.patch: new release (no bugs found yet)
- Removed upstream-bugs-test.patch: new release (no bugs found yet)
==== makedumpfile ====
- Update patch metadata.
- Fix guessing of va_bits (bsc#1183977)
* makedumpfile-1-3-Use-vmcoreinfo-note-in-proc-kcore-for-mem-.patch
* makedumpfile-2-3-arm64-Make-use-of-NUMBER-VA_BITS-in-vmcore.patch
* makedumpfile-3-3-arm64-support-flipped-VA-and-52-bit-kernel.patch
==== microdnf ====
Version update (3.7.1 -> 3.8.0)
- Update to 3.8.0
+ Add "makecache" command
+ Add "distro-sync" command
==== podman ====
Version update (3.0.1 -> 3.1.1)
Subpackages: podman-cni-config
- Update to version 3.1.1:
* Bump to v3.1.1
* Update release notes for v3.1.1
* podman play kube apply correct log driver
* Fix build with GO111MODULE=off
* [CI:DOCS] Set all operation id to be compatibile
* Move operationIds to swagger:operation line
* swagger: add operationIds that match with docker
* Fix missing podman-remote build options
* [NO TESTS NEEDED] Shrink the size of podman-remote
* Move socket activation check into init() and set global condition.
* rootless: use is_fd_inherited
* Recreate until container prune tests for bindings
* System tests: special case for RHEL: require runc
* Document --volume from podman-remote run/create client
* Containers prune endpoint should use only prune filters
* Trim white space from /top endpoint results
* Fix unmount doc reference in image.rst
* Fix handling of remove --log-rusage param
* Makefile: introduce install.docker-full
* Makefile: ensure install.docker creates BINDIR
* Should send the OCI runtime path not just the name to buildah
* Fixed podman-remote --network flag
* podman-run.1.md, podman-create.1.md : Adjust Markdown layout for --userns
* Fix typos --uidmapping and --gidmapping
* Add default template functions
* Don't relabel volumes if running in a privileged container
* Allow users to override default storage opts with --storage-opt
* Add transport and destination info to manifest doc
* Verify existence of auth file if specified
* Ensure that `--userns=keep-id` sets user in config
* [CI:DOCS] Update swagger definition of inspect manifest
* Volumes prune endpoint should use only prune filters
* Adjust libpod API Container Wait documentation to the code
* Add missing return
* [CI:DOCS] Fix formatting of podman-build man page
* cgroups: force 64 bits to ParseUint
* Fix slashes in socket URLs
* [CI:DOCS] Correct status code for /pods/create
* cgroup: do not set cgroup parent when rootless and cgroupfs
* Reflect current state of prune implementation in docs
* Do not delete container twice
* Test that we don't error out on advertised --log-level values
* At trace log level, print error text using %+v instead of %v
* pkg/errorhandling.JoinErrors: don't throw away context for lone errors
* Recognize --log-level=trace
* Fix message about runtime to show only the actual runtime
* Fix handling of $NAME and $IMAGE in runlabel
* Fix flake on failed podman-remote build : try 2
* Fix flake on failed podman-remote build
* Update documentation of podman-run to reflect volume "U" option
* Fixes invalid expression in save command
* Fix possible panic in libpod/image/prune.go
* Update all containers/ project vendors
* Fix tests
* Bump to v3.1.1-dev
- Update to version 3.1.0:
* Bump to v3.1.0
* Fix test failure
* Update release notes for v3.1.0 final release
* [NO TESTS NEEDED] Turn on podman-remote build --isolation
* Fix long option format on docs.podman.io
* Fix containers list/prune http api filter behaviour
* [CI:DOCS] Add note to mappings for user/group userns in build
* Validate passed in timezone from tz option
* Generate Kubernetes PersistentVolumeClaims from named volumes
* libpod/image: unit tests: use a `registries.conf` for aliases
- Require systemd 241 or newer due to podman dependency go-systemd v22,
otherwise build will fail with unknown C name errors
==== rpcbind ====
- Specify the appropriate set of local nss modules (boo#1177461)
==== salt ====
Subpackages: python3-salt salt-master salt-minion salt-standalone-formulas-configuration
- Improvements on "ansiblegate" module:
* New methods: ansible.targets / ansible.discover_playbooks
* General bugfixes
- Added:
* improvements-on-ansiblegate-module-354.patch
- Regression fix of salt-ssh on processing some targets
- Added:
* regression-fix-of-salt-ssh-on-processing-targets-353.patch
- Add support for Alibaba Cloud Linux 2 (Aliyun Linux)
- Added:
* add-alibaba-cloud-linux-2-by-backporting-upstream-s-.patch
- Update target fix for salt-ssh to process targets list (bsc#1179831)
- Added:
* update-target-fix-for-salt-ssh-to-process-targets-li.patch
- Add notify beacon for Debian/Ubuntu systems
- Add core grains support for AlmaLinux and Alibaba Could Linux
- Added:
* add-almalinux-and-alibaba-cloud-linux-to-the-os-fami.patch
* notify-beacon-for-debian-ubuntu-systems-347.patch
- Allow vendor change option with zypper
- Added:
* allow-vendor-change-option-with-zypper-313.patch
==== selinux-policy ====
Version update (20210309 -> 20210419)
Subpackages: selinux-policy-targeted
- Update to version 20210419
- Refreshed:
* fix_dbus.patch
* fix_hadoop.patch
* fix_init.patch
* fix_unprivuser.patch
==== snapper ====
Version update (0.8.16 -> 0.9.0)
Subpackages: libsnapper5
- fix build on 32 bit musl systems (gh#openSUSE/snapper#644)
- improved error handling (see gh#openSUSE/snapper#626)
- version 0.9.0
==== sqlite3 ====
Version update (3.35.2 -> 3.35.5)
- SQLite3 3.35.5:
* Fix defects in the new ALTER TABLE DROP COLUMN feature that
could corrupt the database file
* Fix an obscure query optimizer problem that might cause an
incorrect query result
- Fix build on SLE-12
- use https urls
- SQLite 3.35.4:
* Fix a defect in the query planner optimization
* Fix a defect in the new RETURNING syntax
* Fix the new RETURNING feature so that it raises an error if one
of the terms in the RETURNING clause references a unknown
table, instead of silently ignoring that error
* Fix an assertion associated with aggregate function processing
that was incorrectly triggered by the push-down optimization
- SQLite 3.35.3:
* Enhance the OP_OpenDup opcode of the bytecode engine so that
it works even if the cursor being duplicated itself came from
OP_OpenDup
* When materializing correlated common table expressions, do so
separately for each use case, as that is required for
correctness. This fixes a problem that was introduced by the
MATERIALIZED hint enhancement.
* Fix a problem in the filename normalizer of the unix VFS
* Fix the "box" output mode in the CLI so that it works with
statements that returns one or more rows of zero columns
(such as PRAGMA incremental_vacuum)
* Improvements to error messages generated by faulty common
table expressions
* Fix some incorrect assert() statements
* Fix to the SELECT statement syntax diagram so that the FROM
clause syntax is shown correctly
* Fix the EBCDIC character classifier so that it understands
newlines as whitespace
* Improvements the xBestIndex method in the implementation of the
(unsupported) wholenumber virtual table extension so that it
does a better job of convincing the query planner to avoid
trying to materialize a table with an infinite number of rows
==== sudo ====
Version update (1.9.5p2 -> 1.9.6p1)
- update to 1.9.6p1
* Fixed a regression introduced in sudo 1.9.6 that resulted in an
error message instead of a usage message when sudo is run with
no arguments.
* Fixed a sudo_sendlog compilation problem with the AIX xlC compiler.
* Fixed a regression introduced in sudo 1.9.4 where the
- -disable-root-mailer configure option had no effect.
* Added a --disable-leaks configure option that avoids some
memory leaks on exit that would otherwise occur. This is intended
to be used with development tools that measure memory leaks. It
is not safe to use in production at this time.
* Plugged some memory leaks identified by oss-fuzz and ASAN.
* Fixed the handling of sudoOptions for an LDAP sudoRole that
contains multiple sudoCommands. Previously, some of the options
would only be applied to the first sudoCommand.
* Fixed a potential out of bounds read in the parsing of NOTBEFORE
and NOTAFTER sudoers command options (and their LDAP equivalents).
* The parser used for reading I/O log JSON files is now more
resilient when processing invalid JSON.
* Fixed typos that prevented "make uninstall" from working.
* Fixed a regression introduced in sudo 1.9.4 where the last line
in a sudoers file might not have a terminating NUL character
added if no newline was present.
* Integrated oss-fuzz and LLVM's libFuzzer with sudo. The new
- -enable-fuzzer configure option can be combined with the
- -enable-sanitizer option to build sudo with fuzzing support.
Multiple fuzz targets are available for fuzzing different parts
of sudo. Fuzzers are built and tested via "make fuzz" or as part
of "make check" (even when sudo is not built with fuzzing support).
Fuzzing support currently requires the LLVM clang compiler (not gcc).
* Fixed the --enable-static-sudoers configure option.
* Fixed a potential out of bounds read sudo when is run by a user
with more groups than the value of "max_groups" in sudo.conf.
* Added an "admin_flag" sudoers option to make the use of the
~/.sudo_as_admin_successful file configurable on systems where
sudo is build with the --enable-admin-flag configure option.
This mostly affects Ubuntu and its derivatives.
* The "max_groups" setting in sudo.conf is now limited to 1024.
This setting is obsolete and should no longer be needed.
* Fixed a bug in the tilde expansion of "CHROOT=dir" and "CWD=dir"
sudoers command options. A path "~/foo" was expanded to
"/home/userfoo" instead of "/home/user/foo". This also affects
the runchroot and runcwd Defaults settings.
* Fixed a bug on systems without a native getdelim(3) function
where very long lines could cause parsing of the sudoers file
to end prematurely.
* Fixed a potential integer overflow when converting the
timestamp_timeout and passwd_timeout sudoers settings to a
timespec struct.
* The default for the "group_source" setting in sudo.conf is now
"dynamic" on macOS. Recent versions of macOS do not reliably
return all of a user's non-local groups via getgroups(2), even
when _DARWIN_UNLIMITED_GETGROUPS is defined.
* Fixed a potential use-after-free in the PAM conversation function.
* Fixed potential redefinition of sys/stat.h macros in sudo_compat.h.
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
filesystem
gcc10 (10.2.1+git1574 -> 10.3.0+git1587)
irqbalance (1.7.0+git20210222.9db8d5c -> 1.8.0)
libcap
libeconf (0.3.8+git20200710.5126fff -> 0.4.0+git20210413.fdb8025)
libqt5-qtsvg
pcre2
pkgconf
rpm (4.16.0 -> 4.16.1.3)
xf86-input-libinput (1.0.0 -> 1.0.1)
=== Details ===
==== filesystem ====
- also fix /var/lib/empty to be readonly
- make bindir/ _lib and _libdir readonly (mode 0555) to avoid
runpath-to-writeable-directory warning
==== gcc10 ====
Version update (10.2.1+git1574 -> 10.3.0+git1587)
- Update to GCC 10.3.0 release (63fa67847628e5f358e7e2e7e), git1587
- Disable nvptx offloading for aarch64 again since it doesn't work
==== irqbalance ====
Version update (1.7.0+git20210222.9db8d5c -> 1.8.0)
- Add _service file pointing to github sources
A _service
- Update to version 1.8.0:
* Add return value check of opendir in do_one_cpu
* Hotplug may occur again during sleep, so wait until there is no hotplug
==== libcap ====
- Add explicit dependency on libcap2 with version to libcap-progs
(bsc#1184690)
==== libeconf ====
Version update (0.3.8+git20200710.5126fff -> 0.4.0+git20210413.fdb8025)
- Removed doxygen from build requires.
- Update to version 0.4.0+git20210413.fdb8025:
* Installing man pages via meson. (#147)
- Update to version 0.4.0+git20210412.1513a26:
* Added econftool cat option (#146)
* new API call: econf_readDirsHistory (showing ALL locations)
* new API call: econf_getPath (absolute path of the configuration file)
- Update to version 0.4.0+git20210408.6d33e5e:
* Man pages libeconf.3 and econftool.8.
* Handling multiline strings.
* Added libeconf_ext which returns more information like
line_nr, comments, path of the configuration file,...
* Econftool, an command line interface for handling configuration
files.
* Generating HTML API documentation with doxygen.
* Improving error handling and semantic file check.
* Joining entries with the same key to one single entry if
env variable ECONF_JOIN_SAME_ENTRIES has been set.
==== libqt5-qtsvg ====
- Add commits from kde's 5.15 branch:
* 0001-Improve-handling-of-malformed-numeric-values-in-svg-.patch
* 0002-Clamp-parsed-doubles-to-float-representable-values.patch
(bsc#1184783, QTBUG-91507, CVE-2021-3481)
* 0003-Avoid-buffer-overflow-in-isSupportedSvgFeature.patch
* 0004-Make-image-handler-accept-UTF-16-UTF-32-encoded-SVGs.patch
(QTBUG-90744)
==== pcre2 ====
Subpackages: libpcre2-16-0 libpcre2-8-0
- Remove regcomp, regexec etc. from libpcre2-posix.
(Add pcre2-symbol-clash.patch)
==== pkgconf ====
Subpackages: libpkgconf3 pkgconf-m4 pkgconf-pkg-config
- do not own directories provided by filesystem
- small cleanups inspired by spec-cleaner
==== rpm ====
Version update (4.16.0 -> 4.16.1.3)
- change dump_posttrans mechanism to imply --noposttrans so that
libzypp can be compatible with older rpm versions
changed patch: posttrans.diff
- auto-config-update-aarch64-ppc64le.diff: Use timestamp in file instead
of searching for arch name, which cannot handle all cases
- update to rpm-4.16.1.3
* security fixes for CVE-2021-3421, CVE-2021-20271, CVE-2021-20266
* fix bdb_ro failing to open database with missing secondary indexes
* dropped: finddebuginfo-check-res-file.patch
* dropped: empty_dbbackend.diff
- require the exact version of librpmbuild in the rpm-build
package [bnc#1180965]
- reformat dwarf5.diff
- add dump_posttrans and --runposttrans options to make it possible
for libzypp to implement file triggers
new patch: posttrans.diff
==== xf86-input-libinput ====
Version update (1.0.0 -> 1.0.1)
- Update to version 1.0.1
* Only one fix, the code to set the tap button mapping property
didn't correctly check for a valid device, causing memory
corruption and a crash if called after a device was disabled.
Or, in more user-friendly terms: if your X session crashed
after calling `xinput disable $touchpad-device`, this release
has the fix for it.
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=1&version=T…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
filesystem
irqbalance (1.7.0+git20210222.9db8d5c -> 1.8.0)
libcap
libeconf (0.3.8+git20200710.5126fff -> 0.4.0+git20210413.fdb8025)
pcre2
pkgconf
python-rpm (4.16.0 -> 4.16.1.3)
rpm (4.16.0 -> 4.16.1.3)
=== Details ===
==== filesystem ====
- also fix /var/lib/empty to be readonly
- make bindir/ _lib and _libdir readonly (mode 0555) to avoid
runpath-to-writeable-directory warning
==== irqbalance ====
Version update (1.7.0+git20210222.9db8d5c -> 1.8.0)
- Add _service file pointing to github sources
A _service
- Update to version 1.8.0:
* Add return value check of opendir in do_one_cpu
* Hotplug may occur again during sleep, so wait until there is no hotplug
==== libcap ====
- Add explicit dependency on libcap2 with version to libcap-progs
(bsc#1184690)
==== libeconf ====
Version update (0.3.8+git20200710.5126fff -> 0.4.0+git20210413.fdb8025)
- Removed doxygen from build requires.
- Update to version 0.4.0+git20210413.fdb8025:
* Installing man pages via meson. (#147)
- Update to version 0.4.0+git20210412.1513a26:
* Added econftool cat option (#146)
* new API call: econf_readDirsHistory (showing ALL locations)
* new API call: econf_getPath (absolute path of the configuration file)
- Update to version 0.4.0+git20210408.6d33e5e:
* Man pages libeconf.3 and econftool.8.
* Handling multiline strings.
* Added libeconf_ext which returns more information like
line_nr, comments, path of the configuration file,...
* Econftool, an command line interface for handling configuration
files.
* Generating HTML API documentation with doxygen.
* Improving error handling and semantic file check.
* Joining entries with the same key to one single entry if
env variable ECONF_JOIN_SAME_ENTRIES has been set.
==== pcre2 ====
- Remove regcomp, regexec etc. from libpcre2-posix.
(Add pcre2-symbol-clash.patch)
==== pkgconf ====
Subpackages: libpkgconf3 pkgconf-m4 pkgconf-pkg-config
- do not own directories provided by filesystem
- small cleanups inspired by spec-cleaner
==== python-rpm ====
Version update (4.16.0 -> 4.16.1.3)
- update to rpm-4.16.1.3
==== rpm ====
Version update (4.16.0 -> 4.16.1.3)
Subpackages: librpmbuild9
- change dump_posttrans mechanism to imply --noposttrans so that
libzypp can be compatible with older rpm versions
changed patch: posttrans.diff
- auto-config-update-aarch64-ppc64le.diff: Use timestamp in file instead
of searching for arch name, which cannot handle all cases
- update to rpm-4.16.1.3
* security fixes for CVE-2021-3421, CVE-2021-20271, CVE-2021-20266
* fix bdb_ro failing to open database with missing secondary indexes
* dropped: finddebuginfo-check-res-file.patch
* dropped: empty_dbbackend.diff
- require the exact version of librpmbuild in the rpm-build
package [bnc#1180965]
- reformat dwarf5.diff
- add dump_posttrans and --runposttrans options to make it possible
for libzypp to implement file triggers
new patch: posttrans.diff
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
Mesa (20.3.5 -> 21.0.2)
Mesa-drivers (20.3.5 -> 21.0.2)
NetworkManager
cloud-init
expat (2.2.10 -> 2.3.0)
gdk-pixbuf (2.42.4 -> 2.42.6)
glibc
gnome-autoar (0.3.0 -> 0.3.1)
graphene (1.10.2 -> 1.10.6)
gstreamer-plugins-bad
gstreamer-plugins-good
gvfs
gzip
iso-codes (4.5.0 -> 4.6.0)
kernel-source (5.11.12 -> 5.11.15)
librsvg (2.50.3 -> 2.50.4)
libxcrypt (4.4.18 -> 4.4.19)
patterns-kde
perl-Bootloader (0.933 -> 0.934)
pipewire (0.3.24 -> 0.3.25)
polkit-default-privs (1550+20210111.f725c25 -> 1550+20210409.c29362e)
re2 (20210202 -> 20210401)
rpm-config-SUSE (0.g64 -> 0.g76)
suse-module-tools (15.3.5 -> 15.4.0)
xmessage
xmodmap
=== Details ===
==== Mesa ====
Version update (20.3.5 -> 21.0.2)
Subpackages: Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libgbm1
- Move osmesa build back to Mesa, which we can now do after
choosing another dummy driver there.
- Use LLVM-versioned libclc runtime dependency to ensure
bitcode compatibility. We have that in Tumbleweed and soon Leap.
- U_clover-Fix-build-with-llvm-12.patch
* Fixes build with LLVM 12.
- U_clover-Add-missing-include-for-llvm-12-build-fix.patch
* Fixes a missing header in the previous patch.
- Mesa-devel: no longer require libOSMesa-devel, since it's now
built in Mesa-drivers; packages should require it directly now,
preferrably via pkconfig(osmesa) ...
- Switch dummy driver for mesa package from "auto" xorg driver (i965) to
gallium swrast driver
- update to 21.0.2
* many additions especially on the Radeon Vulkan (RADV) driver
front where sparse memory support is in place, AMD Smart Access
Memory / Resizable BAR optimizations, various RDNA 2
improvements, rapid packed math for ACO, and more.
Elsewhere in Mesa 21.0 there are continued RadeonSI
optimizations, many Intel ANV and Iris improvements, OpenGL 3.3
for Freedreno, DXGI Winsys was added and initial Direct3D 12
code for WSL, OpenGL 4.1 for Zink, and more.
- moved osmesa build to Mesa-drivers since swrast driver has been
removed from Mesa
==== Mesa-drivers ====
Version update (20.3.5 -> 21.0.2)
Subpackages: Mesa-dri Mesa-gallium
- Move osmesa build back to Mesa, which we can now do after
choosing another dummy driver there.
- Use LLVM-versioned libclc runtime dependency to ensure
bitcode compatibility. We have that in Tumbleweed and soon Leap.
- U_clover-Fix-build-with-llvm-12.patch
* Fixes build with LLVM 12.
- U_clover-Add-missing-include-for-llvm-12-build-fix.patch
* Fixes a missing header in the previous patch.
- Mesa-devel: no longer require libOSMesa-devel, since it's now
built in Mesa-drivers; packages should require it directly now,
preferrably via pkconfig(osmesa) ...
- Switch dummy driver for mesa package from "auto" xorg driver (i965) to
gallium swrast driver
- update to 21.0.2
* many additions especially on the Radeon Vulkan (RADV) driver
front where sparse memory support is in place, AMD Smart Access
Memory / Resizable BAR optimizations, various RDNA 2
improvements, rapid packed math for ACO, and more.
Elsewhere in Mesa 21.0 there are continued RadeonSI
optimizations, many Intel ANV and Iris improvements, OpenGL 3.3
for Freedreno, DXGI Winsys was added and initial Direct3D 12
code for WSL, OpenGL 4.1 for Zink, and more.
- moved osmesa build to Mesa-drivers since swrast driver has been
removed from Mesa
==== NetworkManager ====
Subpackages: libnm0 typelib-1_0-NM-1_0
- Modified NetworkManager.conf: Use dhclient as the default dhcp
client(bsc#1183202).
==== cloud-init ====
- Add cloud-init-bonding-opts.patch (bsc#1184085)
+ Write proper bonding option configuration for SLE/openSUSE
- Fix application and inclusion of
use_arroba_to_include_sudoers_directory-bsc_1181283.patchfix (bsc#1181283)
==== expat ====
Version update (2.2.10 -> 2.3.0)
- Do not BuildRequire cmake: expat is part of the distro bootstrap
cycle and any additional dependency makes the ring larger. In
this case here, cmake was even only used to own a directory.
- update to 2.3.0:
* When calling XML_ParseBuffer without a prior successful call to
XML_GetBuffer as a user, no longer trigger undefined behavior
(by adding an integer to a NULL pointer) but rather return
XML_STATUS_ERROR and set the error code to (new) code
XML_ERROR_NO_BUFFER. Found by UBSan (UndefinedBehaviorSanitizer)
of Clang 11 (but not Clang 9).
* xmlwf: Exit status 2 was used for both:
- malformed input files (documented) and
- invalid command-line arguments (undocumented).
case of invalid command-line arguments now
has its own exit status 4, resolving the ambiguity.
* Other changes
==== gdk-pixbuf ====
Version update (2.42.4 -> 2.42.6)
Subpackages: gdk-pixbuf-query-loaders gdk-pixbuf-thumbnailer libgdk_pixbuf-2_0-0 typelib-1_0-GdkPixbuf-2_0
- Update to stable 2.42.6
+ Yield gtk_doc option value in subprojects
+ Always initialise locale on thumbnailer startup
+ Add fallback subproject for libjpeg
+ Use type:array for the builtin_loaders option
+ Default to using builtin png and jpeg loaders
==== glibc ====
Subpackages: glibc-locale glibc-locale-base
- Enable support for static PIE (bsc#1184646)
- select-modify-timeout.patch: linux: always update select timeout
(bsc#1184339, BZ #27706)
- Don't remove -f[asynchronous-]unwind-tables during configure run, no
longer needed
==== gnome-autoar ====
Version update (0.3.0 -> 0.3.1)
- Update to version 0.3.1:
+ Disallow symlinks in parents completely when extracting
( CVE-2021-28650 )
+ Drop recursive delete on failure to prevent data loss
+ Add back RAR support
==== graphene ====
Version update (1.10.2 -> 1.10.6)
Subpackages: libgraphene-1_0-0 typelib-1_0-Graphene-1_0
- Update to version 1.10.6:
+ Hide GRAPHENE_SIMD_S from the introspection data.
+ Nudge ray axis when intersecting a box.
- Changes from version 1.10.4:
+ Add ARM NEON support when building with Visual Studio.
+ Build fix on ARM64 Windows.
+ Drop deprecated "python3" Meson module.
+ Fix detection of non-intersecting boxes.
+ Only enable SSE2 on x86_64.
+ Use the compiler-appropriate alignment attributes.
+ Change introspection option to a yielding feature.
- Change -Dintrospection=true meson parameter to
- Dintrospection=enabled: follow upstream build system changes.
- Wrap -Dsse2=true meson parameter into %ifarch x86_64: 32bit
builds for example do not support sse2 (likely boo#1184678).
==== gstreamer-plugins-bad ====
Subpackages: libgstadaptivedemux-1_0-0 libgstbadaudio-1_0-0 libgstbasecamerabinsrc-1_0-0 libgstcodecparsers-1_0-0 libgstcodecs-1_0-0 libgstisoff-1_0-0 libgstmpegts-1_0-0 libgstphotography-1_0-0 libgstplayer-1_0-0 libgstsctp-1_0-0 libgsturidownloader-1_0-0 libgstvulkan-1_0-0 libgstwayland-1_0-0 libgstwebrtc-1_0-0
- added patches
fix https://gitlab.freedesktop.org/gstreamer/gst-plugins-bad/-/issues/1574
+ gstreamer-plugins-bad-openexr3.patch
==== gstreamer-plugins-good ====
- Add 612102fdbc3f813bf9d3406165692b5f742e51a6.patch: Fix build
with gcc 11, based on upstream git.
==== gvfs ====
Subpackages: gvfs-backends
- Rebase SLE patches gvfs-nds.patch and gvfs-nvvfs.patch for version
1.48.0:
+ Use meson summary function instead of custom output(boo#1184104).
==== gzip ====
- fix DFLTCC segfault [bsc#1177047]
- added patches
fix https://git.savannah.gnu.org/cgit/gzip.git/commit/?id=be0a534ba2b6e77da289d…
+ gzip-1.10-fix-DFLTCC-segfault.patch
==== iso-codes ====
Version update (4.5.0 -> 4.6.0)
- update to 4.6.0:
* Many translation updates, see included ChangeLog
==== kernel-source ====
Version update (5.11.12 -> 5.11.15)
- Linux 5.11.15 (bsc#1012628).
- net: sfp: cope with SFPs that set both LOS normal and LOS
inverted (bsc#1012628).
- perf map: Tighten snprintf() string precision to pass gcc
check on some 32-bit arches (bsc#1012628).
- netfilter: x_tables: fix compat match/target pad out-of-bound
write (bsc#1012628).
- block: don't ignore REQ_NOWAIT for direct IO (bsc#1012628).
- riscv,entry: fix misaligned base for excp_vect_table
(bsc#1012628).
- io_uring: don't mark S_ISBLK async work as unbounded
(bsc#1012628).
- null_blk: fix command timeout completion handling (bsc#1012628).
- idr test suite: Create anchor before launching throbber
(bsc#1012628).
- idr test suite: Take RCU read lock in idr_find_test_1
(bsc#1012628).
- radix tree test suite: Register the main thread with the RCU
library (bsc#1012628).
- block: only update parent bi_status when bio fail (bsc#1012628).
- radix tree test suite: Fix compilation (bsc#1012628).
- XArray: Fix splitting to non-zero orders (bsc#1012628).
- gpu: host1x: Use different lock classes for each client
(bsc#1012628).
- drm/tegra: dc: Don't set PLL clock to 0Hz (bsc#1012628).
- tools/kvm_stat: Add restart delay (bsc#1012628).
- ftrace: Check if pages were allocated before calling
free_pages() (bsc#1012628).
- gfs2: report "already frozen/thawed" errors (bsc#1012628).
- drm/imx: imx-ldb: fix out of bounds array access warning
(bsc#1012628).
- KVM: arm64: Disable guest access to trace filter controls
(bsc#1012628).
- KVM: arm64: Hide system instruction access to Trace registers
(bsc#1012628).
- gfs2: Flag a withdraw if init_threads() fails (bsc#1012628).
- interconnect: core: fix error return code of icc_link_destroy()
(bsc#1012628).
- commit 64fb5bf
- Linux 5.11.14 (bsc#1012628).
- xfrm/compat: Cleanup WARN()s that can be user-triggered
(bsc#1012628).
- ALSA: aloop: Fix initialization of controls (bsc#1012628).
- ALSA: hda/realtek: Fix speaker amp setup on Acer Aspire E1
(bsc#1012628).
- ALSA: hda/conexant: Apply quirk for another HP ZBook G5 model
(bsc#1012628).
- file: fix close_range() for unshare+cloexec (bsc#1012628).
- ASoC: intel: atom: Stop advertising non working S24LE support
(bsc#1012628).
- nfc: fix refcount leak in llcp_sock_bind() (bsc#1012628).
- nfc: fix refcount leak in llcp_sock_connect() (bsc#1012628).
- nfc: fix memory leak in llcp_sock_connect() (bsc#1012628).
- nfc: Avoid endless loops caused by repeated llcp_sock_connect()
(bsc#1012628).
- selinux: make nslot handling in avtab more robust (bsc#1012628).
- selinux: fix cond_list corruption when changing booleans
(bsc#1012628).
- selinux: fix race between old and new sidtab (bsc#1012628).
- xen/evtchn: Change irq_info lock to raw_spinlock_t
(bsc#1012628).
- net: ipv6: check for validity before dereferencing
cfg->fc_nlinfo.nlh (bsc#1012628).
- net: dsa: lantiq_gswip: Let GSWIP automatically set the xMII
clock (bsc#1012628).
- net: dsa: lantiq_gswip: Don't use PHY auto polling
(bsc#1012628).
- net: dsa: lantiq_gswip: Configure all remaining GSWIP_MII_CFG
bits (bsc#1012628).
- ACPI: processor: Fix build when CONFIG_ACPI_PROCESSOR=m
(bsc#1012628).
- drm/radeon: Fix size overflow (bsc#1012628).
- drm/amdgpu: Fix size overflow (bsc#1012628).
- drm/amdgpu/smu7: fix CAC setting on TOPAZ (bsc#1012628).
- rfkill: revert back to old userspace API by default
(bsc#1012628).
- cifs: escape spaces in share names (bsc#1012628).
- cifs: On cifs_reconnect, resolve the hostname again
(bsc#1012628).
- IB/hfi1: Fix probe time panic when AIP is enabled with a buggy
BIOS (bsc#1012628).
- LOOKUP_MOUNTPOINT: we are cleaning "jumped" flag too late
(bsc#1012628).
- gcov: re-fix clang-11+ support (bsc#1012628).
- ia64: fix user_stack_pointer() for ptrace() (bsc#1012628).
- nds32: flush_dcache_page: use page_mapping_file to avoid races
with swapoff (bsc#1012628).
- ocfs2: fix deadlock between setattr and dio_end_io_write
(bsc#1012628).
- fs: direct-io: fix missing sdio->boundary (bsc#1012628).
- ethtool: fix incorrect datatype in set_eee ops (bsc#1012628).
- of: property: fw_devlink: do not link ".*,nr-gpios"
(bsc#1012628).
- parisc: parisc-agp requires SBA IOMMU driver (bsc#1012628).
- parisc: avoid a warning on u8 cast for cmpxchg on u8 pointers
(bsc#1012628).
- ARM: dts: turris-omnia: configure LED[2]/INTn pin as interrupt
pin (bsc#1012628).
- batman-adv: initialize "struct
batadv_tvlv_tt_vlan_data"->reserved field (bsc#1012628).
- ice: Continue probe on link/PHY errors (bsc#1012628).
- ice: Increase control queue timeout (bsc#1012628).
- ice: prevent ice_open and ice_stop during reset (bsc#1012628).
- ice: fix memory allocation call (bsc#1012628).
- ice: remove DCBNL_DEVRESET bit from PF state (bsc#1012628).
- ice: Fix for dereference of NULL pointer (bsc#1012628).
- ice: Use port number instead of PF ID for WoL (bsc#1012628).
- ice: Cleanup fltr list in case of allocation issues
(bsc#1012628).
- iwlwifi: pcie: properly set LTR workarounds on 22000 devices
(bsc#1012628).
- ice: fix memory leak of aRFS after resuming from suspend
(bsc#1012628).
- net: hso: fix null-ptr-deref during tty device unregistration
(bsc#1012628).
- libbpf: Fix bail out from 'ringbuf_process_ring()' on error
(bsc#1012628).
- bpf: Enforce that struct_ops programs be GPL-only (bsc#1012628).
- bpf: link: Refuse non-O_RDWR flags in BPF_OBJ_GET (bsc#1012628).
- ethernet/netronome/nfp: Fix a use after free in
nfp_bpf_ctrl_msg_rx (bsc#1012628).
- libbpf: Ensure umem pointer is non-NULL before dereferencing
(bsc#1012628).
- libbpf: Restore umem state after socket create failure
(bsc#1012628).
- libbpf: Only create rx and tx XDP rings when necessary
(bsc#1012628).
- bpf: Refcount task stack in bpf_get_task_stack (bsc#1012628).
- bpf, sockmap: Fix sk->prot unhash op reset (bsc#1012628).
- bpf, sockmap: Fix incorrect fwd_alloc accounting (bsc#1012628).
- net: ensure mac header is set in virtio_net_hdr_to_skb()
(bsc#1012628).
- i40e: Fix sparse warning: missing error code 'err'
(bsc#1012628).
- i40e: Fix sparse error: 'vsi->netdev' could be null
(bsc#1012628).
- i40e: Fix sparse error: uninitialized symbol 'ring'
(bsc#1012628).
- i40e: Fix sparse errors in i40e_txrx.c (bsc#1012628).
- vdpa/mlx5: Fix suspend/resume index restoration (bsc#1012628).
- net: sched: sch_teql: fix null-pointer dereference
(bsc#1012628).
- net: sched: fix action overwrite reference counting
(bsc#1012628).
- nl80211: fix beacon head validation (bsc#1012628).
- nl80211: fix potential leak of ACL params (bsc#1012628).
- cfg80211: check S1G beacon compat element length (bsc#1012628).
- mac80211: fix time-is-after bug in mlme (bsc#1012628).
- mac80211: fix TXQ AC confusion (bsc#1012628).
- net: hsr: Reset MAC header for Tx path (bsc#1012628).
- net-ipv6: bugfix - raw & sctp - switch to
ipv6_can_nonlocal_bind() (bsc#1012628).
- net: let skb_orphan_partial wake-up waiters (bsc#1012628).
- thunderbolt: Fix a leak in tb_retimer_add() (bsc#1012628).
- thunderbolt: Fix off by one in tb_port_find_retimer()
(bsc#1012628).
- usbip: add sysfs_lock to synchronize sysfs code paths
(bsc#1012628).
- usbip: stub-dev synchronize sysfs code paths (bsc#1012628).
- usbip: vudc synchronize sysfs code paths (bsc#1012628).
- usbip: synchronize event handler with sysfs code paths
(bsc#1012628).
- driver core: Fix locking bug in
deferred_probe_timeout_work_func() (bsc#1012628).
- scsi: pm80xx: Fix chip initialization failure (bsc#1012628).
- scsi: target: iscsi: Fix zero tag inside a trace event
(bsc#1012628).
- percpu: make pcpu_nr_empty_pop_pages per chunk type
(bsc#1012628).
- i2c: turn recovery error on init to debug (bsc#1012628).
- powerpc/vdso: Make sure vdso_wrapper.o is rebuilt everytime
vdso.so is rebuilt (bsc#1012628).
- powerpc/ptrace: Don't return error when getting/setting FP
regs without CONFIG_PPC_FPU_REGS (bsc#1012628).
- KVM: x86/mmu: change TDP MMU yield function returns to match
cond_resched (bsc#1012628).
- KVM: x86/mmu: Merge flush and non-flush
tdp_mmu_iter_cond_resched (bsc#1012628).
- KVM: x86/mmu: Rename goal_gfn to next_last_level_gfn
(bsc#1012628).
- KVM: x86/mmu: Ensure forward progress when yielding in TDP
MMU iter (bsc#1012628).
- KVM: x86/mmu: Yield in TDU MMU iter even if no SPTES changed
(bsc#1012628).
- KVM: x86/mmu: Ensure TLBs are flushed when yielding during
GFN range zap (bsc#1012628).
- KVM: x86/mmu: Ensure TLBs are flushed for TDP MMU during NX
zapping (bsc#1012628).
- KVM: x86/mmu: Don't allow TDP MMU to yield when recovering NX
pages (bsc#1012628).
- KVM: x86/mmu: preserve pending TLB flush across calls to
kvm_tdp_mmu_zap_sp (bsc#1012628).
- net: sched: fix err handler in tcf_action_init() (bsc#1012628).
- ice: Refactor DCB related variables out of the ice_port_info
struct (bsc#1012628).
- ice: Recognize 860 as iSCSI port in CEE mode (bsc#1012628).
- xfrm: interface: fix ipv4 pmtu check to honor ip header df
(bsc#1012628).
- xfrm: Use actual socket sk instead of skb socket for
xfrm_output_resume (bsc#1012628).
- remoteproc: qcom: pil_info: avoid 64-bit division (bsc#1012628).
- regulator: bd9571mwv: Fix AVS and DVFS voltage range
(bsc#1012628).
- ARM: OMAP4: Fix PMIC voltage domains for bionic (bsc#1012628).
- ARM: OMAP4: PM: update ROM return address for OSWR and OFF
(bsc#1012628).
- remoteproc: pru: Fix firmware loading crashes on K3 SoCs
(bsc#1012628).
- net: xfrm: Localize sequence counter per network namespace
(bsc#1012628).
- esp: delete NETIF_F_SCTP_CRC bit from features for esp offload
(bsc#1012628).
- ASoC: SOF: Intel: HDA: fix core status verification
(bsc#1012628).
- ASoC: wm8960: Fix wrong bclk and lrclk with pll enabled for
some chips (bsc#1012628).
- xfrm: Fix NULL pointer dereference on policy lookup
(bsc#1012628).
- virtchnl: Fix layout of RSS structures (bsc#1012628).
- i40e: Added Asym_Pause to supported link modes (bsc#1012628).
- i40e: Fix kernel oops when i40e driver removes VF's
(bsc#1012628).
- hostfs: fix memory handling in follow_link() (bsc#1012628).
- amd-xgbe: Update DMA coherency values (bsc#1012628).
- vxlan: do not modify the shared tunnel info when PMTU triggers
an ICMP reply (bsc#1012628).
- geneve: do not modify the shared tunnel info when PMTU triggers
an ICMP reply (bsc#1012628).
- sch_red: fix off-by-one checks in red_check_params()
(bsc#1012628).
- drivers/net/wan/hdlc_fr: Fix a double free in pvc_xmit
(bsc#1012628).
- arm64: dts: imx8mm/q: Fix pad control of SD1_DATA0
(bsc#1012628).
- xfrm: Provide private skb extensions for segmented and hw
offloaded ESP packets (bsc#1012628).
- can: bcm/raw: fix msg_namelen values depending on
CAN_REQUIRED_SIZE (bsc#1012628).
- can: isotp: fix msg_namelen values depending on
CAN_REQUIRED_SIZE (bsc#1012628).
- can: uapi: can.h: mark union inside struct can_frame packed
(bsc#1012628).
- mlxsw: spectrum: Fix ECN marking in tunnel decapsulation
(bsc#1012628).
- ethernet: myri10ge: Fix a use after free in myri10ge_sw_tso
(bsc#1012628).
- gianfar: Handle error code at MAC address change (bsc#1012628).
- net: dsa: Fix type was not set for devlink port (bsc#1012628).
- clk: qcom: camcc: Update the clock ops for the SC7180
(bsc#1012628).
- cxgb4: avoid collecting SGE_QBASE regs during traffic
(bsc#1012628).
- net:tipc: Fix a double free in tipc_sk_mcast_rcv (bsc#1012628).
- ARM: dts: imx6: pbab01: Set vmmc supply for both SD interfaces
(bsc#1012628).
- net/ncsi: Avoid channel_monitor hrtimer deadlock (bsc#1012628).
- net: qrtr: Fix memory leak on qrtr_tx_wait failure
(bsc#1012628).
- nfp: flower: ignore duplicate merge hints from FW (bsc#1012628).
- net: phy: broadcom: Only advertise EEE for supported modes
(bsc#1012628).
- I2C: JZ4780: Fix bug for Ingenic X1000 (bsc#1012628).
- ASoC: sunxi: sun4i-codec: fill ASoC card owner (bsc#1012628).
- net/mlx5e: Fix mapping of ct_label zero (bsc#1012628).
- net/mlx5: Delete auxiliary bus driver eth-rep first
(bsc#1012628).
- net/mlx5e: Fix ethtool indication of connector type
(bsc#1012628).
- net/mlx5: Don't request more than supported EQs (bsc#1012628).
- net/mlx5e: Guarantee room for XSK wakeup NOP on async ICOSQ
(bsc#1012628).
- net/rds: Fix a use after free in rds_message_map_pages
(bsc#1012628).
- xdp: fix xdp_return_frame() kernel BUG throw for page_pool
memory model (bsc#1012628).
- soc/fsl: qbman: fix conflicting alignment attributes
(bsc#1012628).
- i40e: fix receiving of single packets in xsk zero-copy mode
(bsc#1012628).
- i40e: Fix display statistics for veb_tc (bsc#1012628).
- RDMA/rtrs-clt: Close rtrs client conn before destroying rtrs
clt session files (bsc#1012628).
- drm/msm: Set drvdata to NULL when msm_drm_init() fails
(bsc#1012628).
- net: udp: Add support for getsockopt(..., ..., UDP_GRO, ...,
...); (bsc#1012628).
- mptcp: forbit mcast-related sockopt on MPTCP sockets
(bsc#1012628).
- mptcp: revert "mptcp: provide subflow aware release function"
(bsc#1012628).
- scsi: ufs: core: Fix task management request completion timeout
(bsc#1012628).
- scsi: ufs: core: Fix wrong Task Tag used in task management
request UPIUs (bsc#1012628).
- drm/msm/disp/dpu1: program 3d_merge only if block is attached
(bsc#1012628).
- Revert "arm64: dts: marvell: armada-cp110: Switch to per-port
SATA interrupts" (bsc#1012628).
- ARM: dts: turris-omnia: fix hardware buffer management
(bsc#1012628).
- net: cls_api: Fix uninitialised struct field
bo->unlocked_driver_cb (bsc#1012628).
- net: macb: restore cmp registers on resume path (bsc#1012628).
- clk: fix invalid usage of list cursor in register (bsc#1012628).
- clk: fix invalid usage of list cursor in unregister
(bsc#1012628).
- workqueue: Move the position of debug_work_activate() in
__queue_work() (bsc#1012628).
- s390/cpcmd: fix inline assembly register clobbering
(bsc#1012628).
- perf inject: Fix repipe usage (bsc#1012628).
- openvswitch: fix send of uninitialized stack memory in ct
limit reply (bsc#1012628).
- i2c: designware: Adjust bus_freq_hz when refuse high speed
mode set (bsc#1012628).
- iwlwifi: fix 11ax disabled bit in the regulatory capability
flags (bsc#1012628).
- can: mcp251x: fix support for half duplex SPI host controllers
(bsc#1012628).
- platform/x86: intel-hid: Fix spurious wakeups caused by
tablet-mode events during suspend (bsc#1012628).
- tipc: increment the tmp aead refcnt before attaching it
(bsc#1012628).
- net: hns3: clear VF down state bit before request link status
(bsc#1012628).
- net/mlx5: Fix HW spec violation configuring uplink
(bsc#1012628).
- net/mlx5: Fix placement of log_max_flow_counter (bsc#1012628).
- net/mlx5: Fix PPLM register mapping (bsc#1012628).
- net/mlx5: Fix PBMC register mapping (bsc#1012628).
- RDMA/cxgb4: check for ipv6 address properly while destroying
listener (bsc#1012628).
- perf report: Fix wrong LBR block sorting (bsc#1012628).
- RDMA/qedr: Fix kernel panic when trying to access recv_cq
(bsc#1012628).
- drm/vc4: crtc: Reduce PV fifo threshold on hvs4 (bsc#1012628).
- i40e: Fix parameters in aq_get_phy_register() (bsc#1012628).
- RDMA/addr: Be strict with gid size (bsc#1012628).
- vdpa/mlx5: should exclude header length and fcs from mtu
(bsc#1012628).
- vdpa/mlx5: Fix wrong use of bit numbers (bsc#1012628).
- RAS/CEC: Correct ce_add_elem()'s returned values (bsc#1012628).
- clk: socfpga: fix iomem pointer cast on 64-bit (bsc#1012628).
- lockdep: Address clang -Wformat warning printing for %hd
(bsc#1012628).
- dt-bindings: net: ethernet-controller: fix typo in NVMEM
(bsc#1012628).
- net: sched: bump refcount for new action in ACT replace mode
(bsc#1012628).
- x86/traps: Correct exc_general_protection() and math_error()
return paths (bsc#1012628).
- gpiolib: Read "gpio-line-names" from a firmware node
(bsc#1012628).
- cfg80211: remove WARN_ON() in cfg80211_sme_connect
(bsc#1012628).
- net: tun: set tun->dev->addr_len during TUNSETLINK processing
(bsc#1012628).
- drivers: net: fix memory leak in atusb_probe (bsc#1012628).
- drivers: net: fix memory leak in peak_usb_create_dev
(bsc#1012628).
- net: mac802154: Fix general protection fault (bsc#1012628).
- net: ieee802154: nl-mac: fix check on panid (bsc#1012628).
- net: ieee802154: fix nl802154 del llsec key (bsc#1012628).
- net: ieee802154: fix nl802154 del llsec dev (bsc#1012628).
- net: ieee802154: fix nl802154 add llsec key (bsc#1012628).
- net: ieee802154: fix nl802154 del llsec devkey (bsc#1012628).
- net: ieee802154: forbid monitor for set llsec params
(bsc#1012628).
- net: ieee802154: forbid monitor for del llsec seclevel
(bsc#1012628).
- net: ieee802154: stop dump llsec params for monitors
(bsc#1012628).
- Revert "net: sched: bump refcount for new action in ACT replace
mode" (bsc#1012628).
- commit f68b7e1
- rpm/kernel-binary.spec.in: Fix dependency of kernel-*-devel package (bsc#1184514)
The devel package requires the kernel binary package itself for building
modules externally.
- commit 794be7b
- drm/msm: a6xx: fix version check for the A650 SQE microcode
(git-fixes).
- commit b15020c
- Linux 5.11.13 (bsc#1012628).
- init/Kconfig: make COMPILE_TEST depend on HAS_IOMEM
(bsc#1012628).
- Update config files.
- bpf, x86: Validate computation of branch displacements for
x86-32 (bsc#1012628).
- bpf, x86: Validate computation of branch displacements for
x86-64 (bsc#1012628).
- tools/resolve_btfids: Add /libbpf to .gitignore (bsc#1012628).
- kbuild: Do not clean resolve_btfids if the output does not exist
(bsc#1012628).
- kbuild: Add resolve_btfids clean to root clean target
(bsc#1012628).
- tools/resolve_btfids: Set srctree variable unconditionally
(bsc#1012628).
- tools/resolve_btfids: Check objects before removing
(bsc#1012628).
- tools/resolve_btfids: Build libbpf and libsubcmd in separate
directories (bsc#1012628).
- math: Export mul_u64_u64_div_u64 (bsc#1012628).
- io_uring: fix timeout cancel return code (bsc#1012628).
- cifs: Silently ignore unknown oplock break handle (bsc#1012628).
- cifs: revalidate mapping when we open files for SMB1 POSIX
(bsc#1012628).
- ia64: fix format strings for err_inject (bsc#1012628).
- ia64: mca: allocate early mca with GFP_ATOMIC (bsc#1012628).
- selftests/vm: fix out-of-tree build (bsc#1012628).
- arm64: kernel: disable CNP on Carmel (bsc#1012628).
- Update config files.
- scsi: target: pscsi: Clean up after failure in pscsi_map_sg()
(bsc#1012628).
- ptp_qoriq: fix overflow in ptp_qoriq_adjfine() u64 calcalation
(bsc#1012628).
- platform/x86: intel_pmc_core: Ignore GBE LTR on Tiger Lake
platforms (bsc#1012628).
- platform/x86: intel_pmt_class: Initial resource to 0
(bsc#1012628).
- block: clear GD_NEED_PART_SCAN later in bdev_disk_changed
(bsc#1012628).
- x86/build: Turn off -fcf-protection for realmode targets
(bsc#1012628).
- drm/msm/disp/dpu1: icc path needs to be set before dpu runtime
resume (bsc#1012628).
- kselftest/arm64: sve: Do not use non-canonical FFR register
value (bsc#1012628).
- platform/x86: thinkpad_acpi: Allow the FnLock LED to change
state (bsc#1012628).
- net: ipa: fix init header command validation (bsc#1012628).
- netfilter: nftables: skip hook overlap logic if flowtable is
stale (bsc#1012628).
- netfilter: conntrack: Fix gre tunneling over ipv6 (bsc#1012628).
- drm/msm: Ratelimit invalid-fence message (bsc#1012628).
- drm/msm/adreno: a5xx_power: Don't apply A540 lm_setup to other
GPUs (bsc#1012628).
- drm/msm/dsi_pll_7nm: Fix variable usage for pll_lockdet_rate
(bsc#1012628).
- mac80211: choose first enabled channel for monitor
(bsc#1012628).
- mac80211: Check crypto_aead_encrypt for errors (bsc#1012628).
- can: kvaser_usb: Add support for USBcan Pro 4xHS (bsc#1012628).
- net: arcnet: com20020 fix error handling (bsc#1012628).
- mISDN: fix crash in fritzpci (bsc#1012628).
- kunit: tool: Fix a python tuple typing error (bsc#1012628).
- net: pxa168_eth: Fix a potential data race in pxa168_eth_remove
(bsc#1012628).
- net/mlx5e: Enforce minimum value check for ICOSQ size
(bsc#1012628).
- bpf, x86: Use kvmalloc_array instead kmalloc_array in
bpf_jit_comp (bsc#1012628).
- platform/x86: intel-hid: Support Lenovo ThinkPad X1 Tablet Gen 2
(bsc#1012628).
- drm/msm: a6xx: Make sure the SQE microcode is safe
(bsc#1012628).
- bus: ti-sysc: Fix warning on unbind if reset is not deasserted
(bsc#1012628).
- ARM: dts: am33xx: add aliases for mmc interfaces (bsc#1012628).
- commit 0ea11a6
- rpm/check-for-config-changes: Also ignore AS_VERSION added in 5.12.
- commit bd64cb2
- post.sh: Return an error when module update fails (bsc#1047233 bsc#1184388).
- commit 18f65df
- Update
patches.kernel.org/5.11.9-100-perf-x86-intel-Fix-a-crash-caused-by-zero-PEB…
(bsc#1012628 CVE-2021-28971 bsc#1184196).
Add a CVE reference.
- commit 1b6b086
==== librsvg ====
Version update (2.50.3 -> 2.50.4)
Subpackages: gdk-pixbuf-loader-rsvg librsvg-2-2 rsvg-thumbnailer typelib-1_0-Rsvg-2_0
- Update to version 2.50.4:
+ Update dependent crates that had security vulnerabilities:
- generic-array to 0.13.3 - RUSTSEC-2020-0146
+ Reduced stack usage
+ Add limit for too-large radiuses on the feMorphology filter
+ Properly ignore elements in an error state inside
the "switch" element
==== libxcrypt ====
Version update (4.4.18 -> 4.4.19)
- Update to 4.4.19
* Improve fallback implementation of explicit_bzero.
* Add glibc-on-CSKY, ARC, and RISCV-32 entries to libcrypt.minver.
These were added in GNU libc 2.29, 2.32, and 2.33 respectively
* Do not build xcrypt.h if we?re not going to install it.
* Do not apply --enable-obsolete-api-enosys mode to fcrypt.
* Compilation fix for NetBSD. NetBSD?s <unistd.h> declares encrypt
and setkey to return int, contrary to POSIX (which says they return
void). Rename those declarations out of the way with macros.
* Compilation fixes for building with GCC 11.
Basically fixes for explicit type-casting.
* Force update of existing symlinks during installation
==== patterns-kde ====
- Recommend plasma5-systemmonitor in kde_plasma
==== perl-Bootloader ====
Version update (0.933 -> 0.934)
- merge gh#openSUSE/perl-bootloader#134
- install with --removable if efivars are not writable
(bsc#1182749, bsc#1174111, bsc#1184160)
- fix whitespace
- 0.934
==== pipewire ====
Version update (0.3.24 -> 0.3.25)
Subpackages: gstreamer-plugin-pipewire libpipewire-0_3-0 pipewire-modules pipewire-spa-plugins-0_2 pipewire-spa-tools pipewire-tools
- Update to 0.3.25:
+ This is a bugfix release that is API and ABI compatible with
- previous 0.3.x releases.
+ Highlights
- Many stability improvements.
- Plug fd leak in flatpak detection
- add pw-loopback tool and support module-loopback
- volume restore for virtual sinks/sources or other sink/sources
without hardware volume.
- Fix cracks and pops in audio capture.
- Many bluetooth improvements and compatibity fixes.
+ PipeWire improvements
- Hex encode invalid SEC_LABEL properties to avoid generating invalid json.
- Small fixes to how nodes are started to avoid crashes.
- Make sure ports are only scheduled after being fully negotiated
to avoid crashes.
- Implement coverity into CI, fix some bugs detected by coverity.
- Plug leak in flatpak detection.
- Fix crash when removing globals in some cases.
- Fix crash because the mixer info was not removed from a port in all cases.
- Add PIPEWIRE_AUTOCONNECT environment variable to disable stream autoconnect.
Also add a config option to disable autoconnect.
- Improve wildcard in format helpers.
- Add env variable to disable journald logging.
+ Tools
- Add a new pw-loopback tool to loop a capture device to a playback device.
- Display localized strings correctly in pw-top
- Add some more options to pw-dot
+ Session-manager
- When a new node is configured and some stream have this as the
default target, move them to it.
- Fix some crashes.
- Implement volume restore on nodes without routes. This makes it
possible to restore volume on purely software nodes like null-sinks.
- Also try to suspend errored nodes so that they may leave the
error state and be reused again.
- Break endless link loops when something went wrong.
+ Device support
- Fix monitor volumes, they are now separate from the hardware volume.
- Fix cracks and pops in alsa capture caused by mismatch between
resampler and capture source.
- Add start-delay config option to alsa sink.
- Ensure the PipeWire midi ports start from a higher number so that the
lower port numbers are available to apps as before.
+ Bluetooth
- source devices are now removed when idle
- Support using pipewire as Audio Gateway.
- LDAC encoding quality can be configured now
- Implement codec switching for HFP
- Implement codec switching with new device property.
- Improved stability and compatibility
- Autoconnect device profiles at startup
- Add AAC bitrate mode configuration
- Make it possible to use an A2DP source as an input device.
You can then use your phone as an A2DP microphone, for example.
- Remove battery reporting when RFCOMM connections is closed.
+ PulseAudio server
- Add some workarounds for Blueman
- Set correct errno values, fixes a hang in load-module of a non-existing module
- Try to not send inconsistent information to clients.
- Fix some crashes.
- Add support for the new send-message API, use this to switch bluetooth codecs.
- Fix draining by making sure we are started.
- Handle 0 sink and source as the default sink/source.
- Implement module-loopback
+ JACK
- Fix some memory leaks when closing a client
- Add self-connect config option to limit where clients can connect themselves.
- Don't crash when apps call _port_get_buffer() on a port that is not their
own but simply return NULL. This fixes a crash in Ardour6.
- Improve client added/removed callbacks. Sometimes it would emit a client
remove when there were still ports for the client.
- make sure midi port names are stable across reboots.
==== polkit-default-privs ====
Version update (1550+20210111.f725c25 -> 1550+20210409.c29362e)
- Update to version 1550+20210409.c29362e:
* profiles: add KDiskMark (bsc#1182521)
* profiles: add kdenetwork-filesharing (bsc#1175633) (#37)
==== re2 ====
Version update (20210202 -> 20210401)
- Update to 2021-04-01:
* Make cached benchmarks actually use cached objects
* Address some -Wmissing-field-initializers warnings
* Make it easier to swap in a scalable reaer-writer mutex
* In the shared library, set compatibility version and
current version
==== rpm-config-SUSE ====
Version update (0.g64 -> 0.g76)
- Update to version 0.g76:
* Prepare usrmerge (boo#1029961)
* scripts/find-provides.ksyms: Handle XZ compressed kernel (boo#1179251).
* find-requires.ksyms: use "if kernel" conditional for modules-load.d
* find-requires.ksyms: actually generate modules-load.d dependencies
* find-requires.ksyms: Silence the awk warning
* find-provides.ksyms: Fix kernel version test
* find-provides.ksyms: Fix ksym-provides test
==== suse-module-tools ====
Version update (15.3.5 -> 15.4.0)
- Update to version 15.4.0:
* Enable f2fs (bsc#1184415)
==== xmessage ====
- modernize spec file (move license to licensedir)
==== xmodmap ====
- modernize spec-file (move license to licensedir)
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=1&version=T…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
cloud-init
expat (2.2.10 -> 2.3.0)
gdk-pixbuf (2.42.4 -> 2.42.6)
glibc
kernel-source (5.11.12 -> 5.11.15)
libxcrypt (4.4.18 -> 4.4.19)
perl-Bootloader (0.933 -> 0.934)
rpm-config-SUSE (0.g64 -> 0.g76)
suse-module-tools (15.3.5 -> 15.4.0)
=== Details ===
==== cloud-init ====
- Add cloud-init-bonding-opts.patch (bsc#1184085)
+ Write proper bonding option configuration for SLE/openSUSE
- Fix application and inclusion of
use_arroba_to_include_sudoers_directory-bsc_1181283.patchfix (bsc#1181283)
==== expat ====
Version update (2.2.10 -> 2.3.0)
- Do not BuildRequire cmake: expat is part of the distro bootstrap
cycle and any additional dependency makes the ring larger. In
this case here, cmake was even only used to own a directory.
- update to 2.3.0:
* When calling XML_ParseBuffer without a prior successful call to
XML_GetBuffer as a user, no longer trigger undefined behavior
(by adding an integer to a NULL pointer) but rather return
XML_STATUS_ERROR and set the error code to (new) code
XML_ERROR_NO_BUFFER. Found by UBSan (UndefinedBehaviorSanitizer)
of Clang 11 (but not Clang 9).
* xmlwf: Exit status 2 was used for both:
- malformed input files (documented) and
- invalid command-line arguments (undocumented).
case of invalid command-line arguments now
has its own exit status 4, resolving the ambiguity.
* Other changes
==== gdk-pixbuf ====
Version update (2.42.4 -> 2.42.6)
Subpackages: gdk-pixbuf-query-loaders libgdk_pixbuf-2_0-0
- Update to stable 2.42.6
+ Yield gtk_doc option value in subprojects
+ Always initialise locale on thumbnailer startup
+ Add fallback subproject for libjpeg
+ Use type:array for the builtin_loaders option
+ Default to using builtin png and jpeg loaders
==== glibc ====
Subpackages: glibc-locale glibc-locale-base
- Enable support for static PIE (bsc#1184646)
- select-modify-timeout.patch: linux: always update select timeout
(bsc#1184339, BZ #27706)
- Don't remove -f[asynchronous-]unwind-tables during configure run, no
longer needed
==== kernel-source ====
Version update (5.11.12 -> 5.11.15)
- Linux 5.11.15 (bsc#1012628).
- net: sfp: cope with SFPs that set both LOS normal and LOS
inverted (bsc#1012628).
- perf map: Tighten snprintf() string precision to pass gcc
check on some 32-bit arches (bsc#1012628).
- netfilter: x_tables: fix compat match/target pad out-of-bound
write (bsc#1012628).
- block: don't ignore REQ_NOWAIT for direct IO (bsc#1012628).
- riscv,entry: fix misaligned base for excp_vect_table
(bsc#1012628).
- io_uring: don't mark S_ISBLK async work as unbounded
(bsc#1012628).
- null_blk: fix command timeout completion handling (bsc#1012628).
- idr test suite: Create anchor before launching throbber
(bsc#1012628).
- idr test suite: Take RCU read lock in idr_find_test_1
(bsc#1012628).
- radix tree test suite: Register the main thread with the RCU
library (bsc#1012628).
- block: only update parent bi_status when bio fail (bsc#1012628).
- radix tree test suite: Fix compilation (bsc#1012628).
- XArray: Fix splitting to non-zero orders (bsc#1012628).
- gpu: host1x: Use different lock classes for each client
(bsc#1012628).
- drm/tegra: dc: Don't set PLL clock to 0Hz (bsc#1012628).
- tools/kvm_stat: Add restart delay (bsc#1012628).
- ftrace: Check if pages were allocated before calling
free_pages() (bsc#1012628).
- gfs2: report "already frozen/thawed" errors (bsc#1012628).
- drm/imx: imx-ldb: fix out of bounds array access warning
(bsc#1012628).
- KVM: arm64: Disable guest access to trace filter controls
(bsc#1012628).
- KVM: arm64: Hide system instruction access to Trace registers
(bsc#1012628).
- gfs2: Flag a withdraw if init_threads() fails (bsc#1012628).
- interconnect: core: fix error return code of icc_link_destroy()
(bsc#1012628).
- commit 64fb5bf
- Linux 5.11.14 (bsc#1012628).
- xfrm/compat: Cleanup WARN()s that can be user-triggered
(bsc#1012628).
- ALSA: aloop: Fix initialization of controls (bsc#1012628).
- ALSA: hda/realtek: Fix speaker amp setup on Acer Aspire E1
(bsc#1012628).
- ALSA: hda/conexant: Apply quirk for another HP ZBook G5 model
(bsc#1012628).
- file: fix close_range() for unshare+cloexec (bsc#1012628).
- ASoC: intel: atom: Stop advertising non working S24LE support
(bsc#1012628).
- nfc: fix refcount leak in llcp_sock_bind() (bsc#1012628).
- nfc: fix refcount leak in llcp_sock_connect() (bsc#1012628).
- nfc: fix memory leak in llcp_sock_connect() (bsc#1012628).
- nfc: Avoid endless loops caused by repeated llcp_sock_connect()
(bsc#1012628).
- selinux: make nslot handling in avtab more robust (bsc#1012628).
- selinux: fix cond_list corruption when changing booleans
(bsc#1012628).
- selinux: fix race between old and new sidtab (bsc#1012628).
- xen/evtchn: Change irq_info lock to raw_spinlock_t
(bsc#1012628).
- net: ipv6: check for validity before dereferencing
cfg->fc_nlinfo.nlh (bsc#1012628).
- net: dsa: lantiq_gswip: Let GSWIP automatically set the xMII
clock (bsc#1012628).
- net: dsa: lantiq_gswip: Don't use PHY auto polling
(bsc#1012628).
- net: dsa: lantiq_gswip: Configure all remaining GSWIP_MII_CFG
bits (bsc#1012628).
- ACPI: processor: Fix build when CONFIG_ACPI_PROCESSOR=m
(bsc#1012628).
- drm/radeon: Fix size overflow (bsc#1012628).
- drm/amdgpu: Fix size overflow (bsc#1012628).
- drm/amdgpu/smu7: fix CAC setting on TOPAZ (bsc#1012628).
- rfkill: revert back to old userspace API by default
(bsc#1012628).
- cifs: escape spaces in share names (bsc#1012628).
- cifs: On cifs_reconnect, resolve the hostname again
(bsc#1012628).
- IB/hfi1: Fix probe time panic when AIP is enabled with a buggy
BIOS (bsc#1012628).
- LOOKUP_MOUNTPOINT: we are cleaning "jumped" flag too late
(bsc#1012628).
- gcov: re-fix clang-11+ support (bsc#1012628).
- ia64: fix user_stack_pointer() for ptrace() (bsc#1012628).
- nds32: flush_dcache_page: use page_mapping_file to avoid races
with swapoff (bsc#1012628).
- ocfs2: fix deadlock between setattr and dio_end_io_write
(bsc#1012628).
- fs: direct-io: fix missing sdio->boundary (bsc#1012628).
- ethtool: fix incorrect datatype in set_eee ops (bsc#1012628).
- of: property: fw_devlink: do not link ".*,nr-gpios"
(bsc#1012628).
- parisc: parisc-agp requires SBA IOMMU driver (bsc#1012628).
- parisc: avoid a warning on u8 cast for cmpxchg on u8 pointers
(bsc#1012628).
- ARM: dts: turris-omnia: configure LED[2]/INTn pin as interrupt
pin (bsc#1012628).
- batman-adv: initialize "struct
batadv_tvlv_tt_vlan_data"->reserved field (bsc#1012628).
- ice: Continue probe on link/PHY errors (bsc#1012628).
- ice: Increase control queue timeout (bsc#1012628).
- ice: prevent ice_open and ice_stop during reset (bsc#1012628).
- ice: fix memory allocation call (bsc#1012628).
- ice: remove DCBNL_DEVRESET bit from PF state (bsc#1012628).
- ice: Fix for dereference of NULL pointer (bsc#1012628).
- ice: Use port number instead of PF ID for WoL (bsc#1012628).
- ice: Cleanup fltr list in case of allocation issues
(bsc#1012628).
- iwlwifi: pcie: properly set LTR workarounds on 22000 devices
(bsc#1012628).
- ice: fix memory leak of aRFS after resuming from suspend
(bsc#1012628).
- net: hso: fix null-ptr-deref during tty device unregistration
(bsc#1012628).
- libbpf: Fix bail out from 'ringbuf_process_ring()' on error
(bsc#1012628).
- bpf: Enforce that struct_ops programs be GPL-only (bsc#1012628).
- bpf: link: Refuse non-O_RDWR flags in BPF_OBJ_GET (bsc#1012628).
- ethernet/netronome/nfp: Fix a use after free in
nfp_bpf_ctrl_msg_rx (bsc#1012628).
- libbpf: Ensure umem pointer is non-NULL before dereferencing
(bsc#1012628).
- libbpf: Restore umem state after socket create failure
(bsc#1012628).
- libbpf: Only create rx and tx XDP rings when necessary
(bsc#1012628).
- bpf: Refcount task stack in bpf_get_task_stack (bsc#1012628).
- bpf, sockmap: Fix sk->prot unhash op reset (bsc#1012628).
- bpf, sockmap: Fix incorrect fwd_alloc accounting (bsc#1012628).
- net: ensure mac header is set in virtio_net_hdr_to_skb()
(bsc#1012628).
- i40e: Fix sparse warning: missing error code 'err'
(bsc#1012628).
- i40e: Fix sparse error: 'vsi->netdev' could be null
(bsc#1012628).
- i40e: Fix sparse error: uninitialized symbol 'ring'
(bsc#1012628).
- i40e: Fix sparse errors in i40e_txrx.c (bsc#1012628).
- vdpa/mlx5: Fix suspend/resume index restoration (bsc#1012628).
- net: sched: sch_teql: fix null-pointer dereference
(bsc#1012628).
- net: sched: fix action overwrite reference counting
(bsc#1012628).
- nl80211: fix beacon head validation (bsc#1012628).
- nl80211: fix potential leak of ACL params (bsc#1012628).
- cfg80211: check S1G beacon compat element length (bsc#1012628).
- mac80211: fix time-is-after bug in mlme (bsc#1012628).
- mac80211: fix TXQ AC confusion (bsc#1012628).
- net: hsr: Reset MAC header for Tx path (bsc#1012628).
- net-ipv6: bugfix - raw & sctp - switch to
ipv6_can_nonlocal_bind() (bsc#1012628).
- net: let skb_orphan_partial wake-up waiters (bsc#1012628).
- thunderbolt: Fix a leak in tb_retimer_add() (bsc#1012628).
- thunderbolt: Fix off by one in tb_port_find_retimer()
(bsc#1012628).
- usbip: add sysfs_lock to synchronize sysfs code paths
(bsc#1012628).
- usbip: stub-dev synchronize sysfs code paths (bsc#1012628).
- usbip: vudc synchronize sysfs code paths (bsc#1012628).
- usbip: synchronize event handler with sysfs code paths
(bsc#1012628).
- driver core: Fix locking bug in
deferred_probe_timeout_work_func() (bsc#1012628).
- scsi: pm80xx: Fix chip initialization failure (bsc#1012628).
- scsi: target: iscsi: Fix zero tag inside a trace event
(bsc#1012628).
- percpu: make pcpu_nr_empty_pop_pages per chunk type
(bsc#1012628).
- i2c: turn recovery error on init to debug (bsc#1012628).
- powerpc/vdso: Make sure vdso_wrapper.o is rebuilt everytime
vdso.so is rebuilt (bsc#1012628).
- powerpc/ptrace: Don't return error when getting/setting FP
regs without CONFIG_PPC_FPU_REGS (bsc#1012628).
- KVM: x86/mmu: change TDP MMU yield function returns to match
cond_resched (bsc#1012628).
- KVM: x86/mmu: Merge flush and non-flush
tdp_mmu_iter_cond_resched (bsc#1012628).
- KVM: x86/mmu: Rename goal_gfn to next_last_level_gfn
(bsc#1012628).
- KVM: x86/mmu: Ensure forward progress when yielding in TDP
MMU iter (bsc#1012628).
- KVM: x86/mmu: Yield in TDU MMU iter even if no SPTES changed
(bsc#1012628).
- KVM: x86/mmu: Ensure TLBs are flushed when yielding during
GFN range zap (bsc#1012628).
- KVM: x86/mmu: Ensure TLBs are flushed for TDP MMU during NX
zapping (bsc#1012628).
- KVM: x86/mmu: Don't allow TDP MMU to yield when recovering NX
pages (bsc#1012628).
- KVM: x86/mmu: preserve pending TLB flush across calls to
kvm_tdp_mmu_zap_sp (bsc#1012628).
- net: sched: fix err handler in tcf_action_init() (bsc#1012628).
- ice: Refactor DCB related variables out of the ice_port_info
struct (bsc#1012628).
- ice: Recognize 860 as iSCSI port in CEE mode (bsc#1012628).
- xfrm: interface: fix ipv4 pmtu check to honor ip header df
(bsc#1012628).
- xfrm: Use actual socket sk instead of skb socket for
xfrm_output_resume (bsc#1012628).
- remoteproc: qcom: pil_info: avoid 64-bit division (bsc#1012628).
- regulator: bd9571mwv: Fix AVS and DVFS voltage range
(bsc#1012628).
- ARM: OMAP4: Fix PMIC voltage domains for bionic (bsc#1012628).
- ARM: OMAP4: PM: update ROM return address for OSWR and OFF
(bsc#1012628).
- remoteproc: pru: Fix firmware loading crashes on K3 SoCs
(bsc#1012628).
- net: xfrm: Localize sequence counter per network namespace
(bsc#1012628).
- esp: delete NETIF_F_SCTP_CRC bit from features for esp offload
(bsc#1012628).
- ASoC: SOF: Intel: HDA: fix core status verification
(bsc#1012628).
- ASoC: wm8960: Fix wrong bclk and lrclk with pll enabled for
some chips (bsc#1012628).
- xfrm: Fix NULL pointer dereference on policy lookup
(bsc#1012628).
- virtchnl: Fix layout of RSS structures (bsc#1012628).
- i40e: Added Asym_Pause to supported link modes (bsc#1012628).
- i40e: Fix kernel oops when i40e driver removes VF's
(bsc#1012628).
- hostfs: fix memory handling in follow_link() (bsc#1012628).
- amd-xgbe: Update DMA coherency values (bsc#1012628).
- vxlan: do not modify the shared tunnel info when PMTU triggers
an ICMP reply (bsc#1012628).
- geneve: do not modify the shared tunnel info when PMTU triggers
an ICMP reply (bsc#1012628).
- sch_red: fix off-by-one checks in red_check_params()
(bsc#1012628).
- drivers/net/wan/hdlc_fr: Fix a double free in pvc_xmit
(bsc#1012628).
- arm64: dts: imx8mm/q: Fix pad control of SD1_DATA0
(bsc#1012628).
- xfrm: Provide private skb extensions for segmented and hw
offloaded ESP packets (bsc#1012628).
- can: bcm/raw: fix msg_namelen values depending on
CAN_REQUIRED_SIZE (bsc#1012628).
- can: isotp: fix msg_namelen values depending on
CAN_REQUIRED_SIZE (bsc#1012628).
- can: uapi: can.h: mark union inside struct can_frame packed
(bsc#1012628).
- mlxsw: spectrum: Fix ECN marking in tunnel decapsulation
(bsc#1012628).
- ethernet: myri10ge: Fix a use after free in myri10ge_sw_tso
(bsc#1012628).
- gianfar: Handle error code at MAC address change (bsc#1012628).
- net: dsa: Fix type was not set for devlink port (bsc#1012628).
- clk: qcom: camcc: Update the clock ops for the SC7180
(bsc#1012628).
- cxgb4: avoid collecting SGE_QBASE regs during traffic
(bsc#1012628).
- net:tipc: Fix a double free in tipc_sk_mcast_rcv (bsc#1012628).
- ARM: dts: imx6: pbab01: Set vmmc supply for both SD interfaces
(bsc#1012628).
- net/ncsi: Avoid channel_monitor hrtimer deadlock (bsc#1012628).
- net: qrtr: Fix memory leak on qrtr_tx_wait failure
(bsc#1012628).
- nfp: flower: ignore duplicate merge hints from FW (bsc#1012628).
- net: phy: broadcom: Only advertise EEE for supported modes
(bsc#1012628).
- I2C: JZ4780: Fix bug for Ingenic X1000 (bsc#1012628).
- ASoC: sunxi: sun4i-codec: fill ASoC card owner (bsc#1012628).
- net/mlx5e: Fix mapping of ct_label zero (bsc#1012628).
- net/mlx5: Delete auxiliary bus driver eth-rep first
(bsc#1012628).
- net/mlx5e: Fix ethtool indication of connector type
(bsc#1012628).
- net/mlx5: Don't request more than supported EQs (bsc#1012628).
- net/mlx5e: Guarantee room for XSK wakeup NOP on async ICOSQ
(bsc#1012628).
- net/rds: Fix a use after free in rds_message_map_pages
(bsc#1012628).
- xdp: fix xdp_return_frame() kernel BUG throw for page_pool
memory model (bsc#1012628).
- soc/fsl: qbman: fix conflicting alignment attributes
(bsc#1012628).
- i40e: fix receiving of single packets in xsk zero-copy mode
(bsc#1012628).
- i40e: Fix display statistics for veb_tc (bsc#1012628).
- RDMA/rtrs-clt: Close rtrs client conn before destroying rtrs
clt session files (bsc#1012628).
- drm/msm: Set drvdata to NULL when msm_drm_init() fails
(bsc#1012628).
- net: udp: Add support for getsockopt(..., ..., UDP_GRO, ...,
...); (bsc#1012628).
- mptcp: forbit mcast-related sockopt on MPTCP sockets
(bsc#1012628).
- mptcp: revert "mptcp: provide subflow aware release function"
(bsc#1012628).
- scsi: ufs: core: Fix task management request completion timeout
(bsc#1012628).
- scsi: ufs: core: Fix wrong Task Tag used in task management
request UPIUs (bsc#1012628).
- drm/msm/disp/dpu1: program 3d_merge only if block is attached
(bsc#1012628).
- Revert "arm64: dts: marvell: armada-cp110: Switch to per-port
SATA interrupts" (bsc#1012628).
- ARM: dts: turris-omnia: fix hardware buffer management
(bsc#1012628).
- net: cls_api: Fix uninitialised struct field
bo->unlocked_driver_cb (bsc#1012628).
- net: macb: restore cmp registers on resume path (bsc#1012628).
- clk: fix invalid usage of list cursor in register (bsc#1012628).
- clk: fix invalid usage of list cursor in unregister
(bsc#1012628).
- workqueue: Move the position of debug_work_activate() in
__queue_work() (bsc#1012628).
- s390/cpcmd: fix inline assembly register clobbering
(bsc#1012628).
- perf inject: Fix repipe usage (bsc#1012628).
- openvswitch: fix send of uninitialized stack memory in ct
limit reply (bsc#1012628).
- i2c: designware: Adjust bus_freq_hz when refuse high speed
mode set (bsc#1012628).
- iwlwifi: fix 11ax disabled bit in the regulatory capability
flags (bsc#1012628).
- can: mcp251x: fix support for half duplex SPI host controllers
(bsc#1012628).
- platform/x86: intel-hid: Fix spurious wakeups caused by
tablet-mode events during suspend (bsc#1012628).
- tipc: increment the tmp aead refcnt before attaching it
(bsc#1012628).
- net: hns3: clear VF down state bit before request link status
(bsc#1012628).
- net/mlx5: Fix HW spec violation configuring uplink
(bsc#1012628).
- net/mlx5: Fix placement of log_max_flow_counter (bsc#1012628).
- net/mlx5: Fix PPLM register mapping (bsc#1012628).
- net/mlx5: Fix PBMC register mapping (bsc#1012628).
- RDMA/cxgb4: check for ipv6 address properly while destroying
listener (bsc#1012628).
- perf report: Fix wrong LBR block sorting (bsc#1012628).
- RDMA/qedr: Fix kernel panic when trying to access recv_cq
(bsc#1012628).
- drm/vc4: crtc: Reduce PV fifo threshold on hvs4 (bsc#1012628).
- i40e: Fix parameters in aq_get_phy_register() (bsc#1012628).
- RDMA/addr: Be strict with gid size (bsc#1012628).
- vdpa/mlx5: should exclude header length and fcs from mtu
(bsc#1012628).
- vdpa/mlx5: Fix wrong use of bit numbers (bsc#1012628).
- RAS/CEC: Correct ce_add_elem()'s returned values (bsc#1012628).
- clk: socfpga: fix iomem pointer cast on 64-bit (bsc#1012628).
- lockdep: Address clang -Wformat warning printing for %hd
(bsc#1012628).
- dt-bindings: net: ethernet-controller: fix typo in NVMEM
(bsc#1012628).
- net: sched: bump refcount for new action in ACT replace mode
(bsc#1012628).
- x86/traps: Correct exc_general_protection() and math_error()
return paths (bsc#1012628).
- gpiolib: Read "gpio-line-names" from a firmware node
(bsc#1012628).
- cfg80211: remove WARN_ON() in cfg80211_sme_connect
(bsc#1012628).
- net: tun: set tun->dev->addr_len during TUNSETLINK processing
(bsc#1012628).
- drivers: net: fix memory leak in atusb_probe (bsc#1012628).
- drivers: net: fix memory leak in peak_usb_create_dev
(bsc#1012628).
- net: mac802154: Fix general protection fault (bsc#1012628).
- net: ieee802154: nl-mac: fix check on panid (bsc#1012628).
- net: ieee802154: fix nl802154 del llsec key (bsc#1012628).
- net: ieee802154: fix nl802154 del llsec dev (bsc#1012628).
- net: ieee802154: fix nl802154 add llsec key (bsc#1012628).
- net: ieee802154: fix nl802154 del llsec devkey (bsc#1012628).
- net: ieee802154: forbid monitor for set llsec params
(bsc#1012628).
- net: ieee802154: forbid monitor for del llsec seclevel
(bsc#1012628).
- net: ieee802154: stop dump llsec params for monitors
(bsc#1012628).
- Revert "net: sched: bump refcount for new action in ACT replace
mode" (bsc#1012628).
- commit f68b7e1
- rpm/kernel-binary.spec.in: Fix dependency of kernel-*-devel package (bsc#1184514)
The devel package requires the kernel binary package itself for building
modules externally.
- commit 794be7b
- drm/msm: a6xx: fix version check for the A650 SQE microcode
(git-fixes).
- commit b15020c
- Linux 5.11.13 (bsc#1012628).
- init/Kconfig: make COMPILE_TEST depend on HAS_IOMEM
(bsc#1012628).
- Update config files.
- bpf, x86: Validate computation of branch displacements for
x86-32 (bsc#1012628).
- bpf, x86: Validate computation of branch displacements for
x86-64 (bsc#1012628).
- tools/resolve_btfids: Add /libbpf to .gitignore (bsc#1012628).
- kbuild: Do not clean resolve_btfids if the output does not exist
(bsc#1012628).
- kbuild: Add resolve_btfids clean to root clean target
(bsc#1012628).
- tools/resolve_btfids: Set srctree variable unconditionally
(bsc#1012628).
- tools/resolve_btfids: Check objects before removing
(bsc#1012628).
- tools/resolve_btfids: Build libbpf and libsubcmd in separate
directories (bsc#1012628).
- math: Export mul_u64_u64_div_u64 (bsc#1012628).
- io_uring: fix timeout cancel return code (bsc#1012628).
- cifs: Silently ignore unknown oplock break handle (bsc#1012628).
- cifs: revalidate mapping when we open files for SMB1 POSIX
(bsc#1012628).
- ia64: fix format strings for err_inject (bsc#1012628).
- ia64: mca: allocate early mca with GFP_ATOMIC (bsc#1012628).
- selftests/vm: fix out-of-tree build (bsc#1012628).
- arm64: kernel: disable CNP on Carmel (bsc#1012628).
- Update config files.
- scsi: target: pscsi: Clean up after failure in pscsi_map_sg()
(bsc#1012628).
- ptp_qoriq: fix overflow in ptp_qoriq_adjfine() u64 calcalation
(bsc#1012628).
- platform/x86: intel_pmc_core: Ignore GBE LTR on Tiger Lake
platforms (bsc#1012628).
- platform/x86: intel_pmt_class: Initial resource to 0
(bsc#1012628).
- block: clear GD_NEED_PART_SCAN later in bdev_disk_changed
(bsc#1012628).
- x86/build: Turn off -fcf-protection for realmode targets
(bsc#1012628).
- drm/msm/disp/dpu1: icc path needs to be set before dpu runtime
resume (bsc#1012628).
- kselftest/arm64: sve: Do not use non-canonical FFR register
value (bsc#1012628).
- platform/x86: thinkpad_acpi: Allow the FnLock LED to change
state (bsc#1012628).
- net: ipa: fix init header command validation (bsc#1012628).
- netfilter: nftables: skip hook overlap logic if flowtable is
stale (bsc#1012628).
- netfilter: conntrack: Fix gre tunneling over ipv6 (bsc#1012628).
- drm/msm: Ratelimit invalid-fence message (bsc#1012628).
- drm/msm/adreno: a5xx_power: Don't apply A540 lm_setup to other
GPUs (bsc#1012628).
- drm/msm/dsi_pll_7nm: Fix variable usage for pll_lockdet_rate
(bsc#1012628).
- mac80211: choose first enabled channel for monitor
(bsc#1012628).
- mac80211: Check crypto_aead_encrypt for errors (bsc#1012628).
- can: kvaser_usb: Add support for USBcan Pro 4xHS (bsc#1012628).
- net: arcnet: com20020 fix error handling (bsc#1012628).
- mISDN: fix crash in fritzpci (bsc#1012628).
- kunit: tool: Fix a python tuple typing error (bsc#1012628).
- net: pxa168_eth: Fix a potential data race in pxa168_eth_remove
(bsc#1012628).
- net/mlx5e: Enforce minimum value check for ICOSQ size
(bsc#1012628).
- bpf, x86: Use kvmalloc_array instead kmalloc_array in
bpf_jit_comp (bsc#1012628).
- platform/x86: intel-hid: Support Lenovo ThinkPad X1 Tablet Gen 2
(bsc#1012628).
- drm/msm: a6xx: Make sure the SQE microcode is safe
(bsc#1012628).
- bus: ti-sysc: Fix warning on unbind if reset is not deasserted
(bsc#1012628).
- ARM: dts: am33xx: add aliases for mmc interfaces (bsc#1012628).
- commit 0ea11a6
- rpm/check-for-config-changes: Also ignore AS_VERSION added in 5.12.
- commit bd64cb2
- post.sh: Return an error when module update fails (bsc#1047233 bsc#1184388).
- commit 18f65df
- Update
patches.kernel.org/5.11.9-100-perf-x86-intel-Fix-a-crash-caused-by-zero-PEB…
(bsc#1012628 CVE-2021-28971 bsc#1184196).
Add a CVE reference.
- commit 1b6b086
==== libxcrypt ====
Version update (4.4.18 -> 4.4.19)
- Update to 4.4.19
* Improve fallback implementation of explicit_bzero.
* Add glibc-on-CSKY, ARC, and RISCV-32 entries to libcrypt.minver.
These were added in GNU libc 2.29, 2.32, and 2.33 respectively
* Do not build xcrypt.h if we?re not going to install it.
* Do not apply --enable-obsolete-api-enosys mode to fcrypt.
* Compilation fix for NetBSD. NetBSD?s <unistd.h> declares encrypt
and setkey to return int, contrary to POSIX (which says they return
void). Rename those declarations out of the way with macros.
* Compilation fixes for building with GCC 11.
Basically fixes for explicit type-casting.
* Force update of existing symlinks during installation
==== perl-Bootloader ====
Version update (0.933 -> 0.934)
- merge gh#openSUSE/perl-bootloader#134
- install with --removable if efivars are not writable
(bsc#1182749, bsc#1174111, bsc#1184160)
- fix whitespace
- 0.934
==== rpm-config-SUSE ====
Version update (0.g64 -> 0.g76)
- Update to version 0.g76:
* Prepare usrmerge (boo#1029961)
* scripts/find-provides.ksyms: Handle XZ compressed kernel (boo#1179251).
* find-requires.ksyms: use "if kernel" conditional for modules-load.d
* find-requires.ksyms: actually generate modules-load.d dependencies
* find-requires.ksyms: Silence the awk warning
* find-provides.ksyms: Fix kernel version test
* find-provides.ksyms: Fix ksym-provides test
==== suse-module-tools ====
Version update (15.3.5 -> 15.4.0)
- Update to version 15.4.0:
* Enable f2fs (bsc#1184415)
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
fuse3 (3.10.2 -> 3.10.3)
krb5
libksba (1.5.0 -> 1.5.1)
libsolv (0.7.17 -> 0.7.19)
poppler (21.03.0 -> 21.04.0)
poppler-qt5 (21.03.0 -> 21.04.0)
shadow
=== Details ===
==== fuse3 ====
Version update (3.10.2 -> 3.10.3)
- Update to release 3.10.3
* Fix returning d_ino and d_type from readdir(3) in non-plus mode
==== krb5 ====
- do not own %sbindir, it comes from filesystem package
==== libksba ====
Version update (1.5.0 -> 1.5.1)
- libksba 1.5.1:
* Support Brainpool curves specified by ECDomainParameters
==== libsolv ====
Version update (0.7.17 -> 0.7.19)
- fix rare segfault in resolve_jobrules() that could happen
if new rules are learnt
- fix a couple of memory leaks in error cases
- fix error handling in solv_xfopen_fd()
- bump version to 0.7.19
- fixed regex code on win32
- fixed memory leak in choice rule generation
- repo_add_conda: add flag to skip v2 packages
- bump version to 0.7.18
==== poppler ====
Version update (21.03.0 -> 21.04.0)
Subpackages: libpoppler-cpp0 libpoppler-glib8
- update to 21.04.0
core:
* Hide symbols by default
* TextSelectionDumper: fix word order for RTL text
* Fix rendering of text in some files. Issue #1052
* Implement rendering of Masks of Image subtype. Issue #1058
* Forms: fix unclicking standalone form buttons. Issue #1034
glib:
* Expose more fields from MediaRendition in PopplerMedia
* Use stock glib macro to define boxed type
* Remove incorrecly used volatile from enum type registration code
qt5:
* Fix crash in files with malformed signatures
* Fix memory leak when QImage constructor "fails"
qt6:
* Fix crash in files with malformed signatures
* Fix memory leak when QImage constructor "fails"
utils:
* pdfsig: New paragraph for "-sign" in manpage
* pdfimages: Do not assert in "too big images". Issue #1061
- Add a Qt6 flavor to poppler
==== poppler-qt5 ====
Version update (21.03.0 -> 21.04.0)
- update to 21.04.0
core:
* Hide symbols by default
* TextSelectionDumper: fix word order for RTL text
* Fix rendering of text in some files. Issue #1052
* Implement rendering of Masks of Image subtype. Issue #1058
* Forms: fix unclicking standalone form buttons. Issue #1034
glib:
* Expose more fields from MediaRendition in PopplerMedia
* Use stock glib macro to define boxed type
* Remove incorrecly used volatile from enum type registration code
qt5:
* Fix crash in files with malformed signatures
* Fix memory leak when QImage constructor "fails"
qt6:
* Fix crash in files with malformed signatures
* Fix memory leak when QImage constructor "fails"
utils:
* pdfsig: New paragraph for "-sign" in manpage
* pdfimages: Do not assert in "too big images". Issue #1061
- Add a Qt6 flavor to poppler
==== shadow ====
- Do not require libeconf-devel on products without /usr/etc.
- Split login.defs configuration file into own sub-package, which
allows to install util-linux or pam on small embedded/edge
systems or container without the need to pull in the full shadow
suite.
- Amend patches/useradd-userkeleton.patch to also write into
existing directories and prefer files from /etc
- Add patch useradd-userkeleton.patch to extend original C code
of useradd to handle /usr/etc/skel (boo#1173321)
- Remove /usr/etc/skel support in useradd.local script
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=1&version=T…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
ceph (16.1.0.1217+g8e1da7347e -> 16.2.0.91+g24bd0c4acf)
cri-o (1.19.1 -> 1.20.2)
fuse3 (3.10.2 -> 3.10.3)
krb5
libksba (1.5.0 -> 1.5.1)
libsolv (0.7.17 -> 0.7.19)
shadow
=== Details ===
==== ceph ====
Version update (16.1.0.1217+g8e1da7347e -> 16.2.0.91+g24bd0c4acf)
Subpackages: ceph-common libcephfs2 librados2 librbd1 librgw2 python3-ceph-argparse python3-ceph-common python3-cephfs python3-rados python3-rbd python3-rgw
- Update to 16.2.0-91-g24bd0c4acf:
+ rebase on top of upstream pacific SHA1 4cbaf866034715d053e6259dcd5bd8e4e1d1e1ed
- Update to 16.2.0-31-g5922b2b9c1:
+ rebase on top of upstream v16.2.0 (first stable release in Pacific series)
see https://ceph.io/releases/v16-2-0-pacific-released/
==== cri-o ====
Version update (1.19.1 -> 1.20.2)
Subpackages: cri-o-kubeadm-criconfig
- Update to version 1.20.2:
* bump to latest c/storage 1.24 branch
* Remove check for CI env variable for release-notes and dependencies
* fix lint
* test: pin cri-tools to 1.20
* bump to v1.20.2
* Run GitHub actions on release branches
* Pin gocapability to v0.0.0-20180916011248-d98352740cb2
* [PATCH 9/9] add method comment
* [PATCH 8/9] restore irqbalance config only on system restart
- Add vendor.tar.gz to avoid dependency downloads
- Add config-fix-tz.patch to fix crio validation error while building
==== fuse3 ====
Version update (3.10.2 -> 3.10.3)
- Update to release 3.10.3
* Fix returning d_ino and d_type from readdir(3) in non-plus mode
==== krb5 ====
- do not own %sbindir, it comes from filesystem package
==== libksba ====
Version update (1.5.0 -> 1.5.1)
- libksba 1.5.1:
* Support Brainpool curves specified by ECDomainParameters
==== libsolv ====
Version update (0.7.17 -> 0.7.19)
- fix rare segfault in resolve_jobrules() that could happen
if new rules are learnt
- fix a couple of memory leaks in error cases
- fix error handling in solv_xfopen_fd()
- bump version to 0.7.19
- fixed regex code on win32
- fixed memory leak in choice rule generation
- repo_add_conda: add flag to skip v2 packages
- bump version to 0.7.18
==== shadow ====
- Do not require libeconf-devel on products without /usr/etc.
- Split login.defs configuration file into own sub-package, which
allows to install util-linux or pam on small embedded/edge
systems or container without the need to pull in the full shadow
suite.
- Amend patches/useradd-userkeleton.patch to also write into
existing directories and prefer files from /etc
- Add patch useradd-userkeleton.patch to extend original C code
of useradd to handle /usr/etc/skel (boo#1173321)
- Remove /usr/etc/skel support in useradd.local script
1
0
Hi everyone;
I'm trying to set up a private registry because the installation of the k8s
cluster on opensuse kubic has no access to the internet... so I found this
blog entry "Private and Air-Gap registry for openSUSE Kubic - openSUSE Kubic
<https://kubic.opensuse.org/blog/2019-11-15-private-registry/>" everything
is going smoothly, when I try to do the sync with skopeo...
# skopeo sync --scoped --src yaml --dest docker --dest-creds admin:password
kubic-small.yaml registry.local
this message is shown
Getting image source signatures
FATA[0000] Error copying ref "docker://
registry.opensuse.org/opensuse/nginx:1.19.8": Error trying to reuse blob
sha256:d450b5a5c495edd26e5c2c1ce7281ca6d59ebc05d84eb3f0e330e0cb086d9120 at
destination: unable to retrieve auth token: invalid username/password:
unauthorized: authentication required
What I'm doing wrong??
Regards
--
Gustavo Ezquerro Morales
2
1