Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&version=Tumbleweed&build=20200823 Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: MozillaThunderbird NetworkManager (1.26.0 -> 1.26.2) PackageKit-Qt (1.0.1 -> 1.0.2) aaa_base (84.87+git20200804.d7fb210 -> 84.87+git20200818.b9dd70f) babl (0.1.78 -> 0.1.80) bash-completion (2.10 -> 2.11) biosdevname fdupes (1.61 -> 2.1.2) giflib (5.1.4 -> 5.2.1) grub2 hyper-v json-c (0.14 -> 0.15) kexec-tools libimagequant (2.12.2 -> 2.12.6) libmbim (1.24.0 -> 1.24.2) libreoffice libvirt mc (4.8.24 -> 4.8.25) mutter ndctl (68 -> 69) osinfo-db pipewire (0.3.8 -> 0.3.9) pngquant (2.12.2 -> 2.12.6) polari python-kiwi (9.21.3 -> 9.21.7) qemu sane-backends (1.0.29 -> 1.0.30) systemd (245.6 -> 245.7) thin-provisioning-tools (0.8.5 -> 0.9.0) === Details === ==== MozillaThunderbird ==== Subpackages: MozillaThunderbird-translations-common - Use memoryperjob constraint instead of %limit_build macro. ==== NetworkManager ==== Version update (1.26.0 -> 1.26.2) Subpackages: NetworkManager-lang libnm0 typelib-1_0-NM-1_0 - Update to version 1.26.2: + build: various fixes for LTO. + dhcp6: export and handle the DHCPv6 FQDN option. + core: fix reapply for bond options. + core: improve "connection.wait-device-timeout" to handle matching devices not only by interface name and fix race. + libnm,core: support "clsact" qdisc. + dhcp4: fix bug in internal DHCP client on big endian systems. - Own the two empty directories pre-up.d and pre-down.d in /usr/lib/NetworkManager/dispatcher.d (boo#1173713). ==== PackageKit-Qt ==== Version update (1.0.1 -> 1.0.2) - update to 1.0.2: * Fix documentation (Aleix Pol) * Fix pkg-config include path (Matthias Klumpp) * Fix some documentation typos (Pekka Vuorela) * Make sure the build is done as c++11 (Pekka Vuorela) * Map DBusError::AccessDenied to Transaction::ErrorNotAuthorized (Raine Makelainen) - remove 0001-Fix-pkg-config-include-path.patch 0002-Fix-some-documentation-typos.patch 0003-Make-sure-the-build-is-done-as-c-11.patch: upstream ==== aaa_base ==== Version update (84.87+git20200804.d7fb210 -> 84.87+git20200818.b9dd70f) Subpackages: aaa_base-extras - Update to version 84.87+git20200818.b9dd70f: * backup-rpmdb: exit if zypp.pid is there and running (bug#1161239) - Update to version 84.87+git20200818.5220a5f: * profile and csh.login: on s390x set TERM to dumb on serial console * etc/profile add some missing ;; in case esac statements * refresh_initrd call modprobe as /sbin/modprobe (bug#1011548) * DIR_COLORS: merge TERM entries with list from (bug#1006973) * sort TERM entries in etc/DIR_COLORS * DIR_COLORS add TERM rxvt-unicode-256color (bug#1006973) * Rename path() to _path() to avoid using a general name. ==== babl ==== Version update (0.1.78 -> 0.1.80) - Update to version 0.1.80: + No upstream changes provided. ==== bash-completion ==== Version update (2.10 -> 2.11) - Update to version 2.11: * _known_hosts_real: check that ruptime is present before calling (#390) * totem: reuse kaffeine completions (#372) * __reassemble_comp_words_by_ref: avoid triggering nounset on indirect references * lintian: complete paths for Ubuntu's .ddeb and Debian's buildinfo files (#397) * ip: complete route add table arg * ip: style fixes similar to ip-netns * ip: add more completions for ip-rule * ip: add support for netns (#391) * ip: improve completion of route subcommands (#326) * unzip, zipinfo: complete *.aar (#428) * ssh: add new -Q completions in OpenSSH 8.2p1 (#400) * python: support executables with minor version (#389) * insmod, modinfo, modprobe: support xz compressed modules (#401) * tshark: complete -r arg with all filenames (#422) * openssl: update -starttls completions (#403) * _filedir*: update link to bug-bash discussion on -X (#404) * test/python: add testcase for submodule completion * Release 2.11 * extra/make-changelog: check and output usage message * pre-commit: anchor exclude patterns * pytest: rewrite in bash, support toplevel funcs, avoid nondef ones and classes * test/xfreerdp: skip --help failure cases * test/tshark: fix multiple -O completion with no http2 support * test/ant: avoid complete-ant-cmd.pl interference with ANT_ARGS * _xinetd_services: avoid nounset error on bash 4.2 * pre-commit: upgrade isort to 5.1.4 * pre-commit: upgrade pyupgrade to 2.7.2 * pre-commit: add pyupgrade, run it * test/ant: gitignore all target cache files * _known_hosts_real: exclude Host negations * pre-commit: upgrade isort to 5.0.7 * pre-commit: update shellcheck-py URL * test/inputrc: do not set print-completions-horizontally * test/inputrc: comment typo fix * pytest: complete async test class methods * __get_cword_at_cursor_by_ref: fix regression on bash 4.2 * test: upgrade markdownlint-cli to 0.23.2 * _known_hosts_real: avoid errors in nounset mode on Ubuntu 14 and 16 * _longopt: exclude too many dashes, allow underscores, require ends with alnum * _included_ssh_config_files: support globs * _known_hosts_real: prevent unwanted pathname expansion on host entries * test/shfmt: upgrade to 3.1.2, reformat with it * test/_known_hosts_real: add explicit no globbing test case * test: upgrade mypy to 0.782 * CONTRIBUTING.md: add posix and nounset mode item * test: upgrade mypy to 0.781 * test: upgrade perltidy to 20200619 * _known_hosts_real: fix completion of Host entries after a wildcard etc * _known_hosts_real: fix # handling in ssh configs * test: upgrade flake8 to 3.8.3 * test/xhost: multiple expected result handling fixes * test/slapt-src: single expected result handling fixes * test: partial hostname completion fixes * test: simplify completion parsing * test/dpkg-query: mark as xfail on non-Debian based systems * .gitignore: clean up some no longer needed ignores * test/lspci: skip -A arg test if lspci fails -A help, e.g. busybox lspci * test: regex escape our magic mark for completeness * test: upgrade mypy to 0.780 * test/_known_hosts_real: don't modify class scoped base expected list * test/_known_hosts_real: reset COMP_KNOWN_HOSTS_WITH_HOSTFILE between tests * test/_known_hosts_real: tolerate duplicates * bash_completion: trivial cleanups * gcc: avoid errors in nounset mode * pytest: fix test class method completion with BSD awk * man, mutt: avoid errors in nounset mode on Ubuntu 14 and 16 * java, make: avoid errors in nounset mode on Ubuntu 14 and 16 * README: document GNU make build requirement * pytest: add test class method completion * _known_hosts: avoid errors in nounset mode and no arguments * bash_completion: fix array set checks with empty elements in them * *: avoid more errors in nounset mode * cfrun: fix $hostfile leak * _command_offset, route: cleanups * *: avoid more errors in nounset mode * qemu: add -machine arg completion * qemu, sbopkg: avoid unintentional globbing on option arg completions * test: enable shellcheck SC2035 * *: drop support for bash 4.1 * _init_completion: fix unassigned redirect completion in nounset mode * ip: route shfmt, arithmetic evaluation * _filedir: avoid unbound variable error on Ubuntu 14 and 16 * _pids, _pgids, _pnames: improve shfmt formatting * scp, sftp, ssh: fix completion on options bundled with -4/-6 * modprobe, tshark, _included_ssh_config_files: use [[ ]] instead of [ ] * test/runLint: warn about [ ] instead of [[ ]] use * test: skip various tests if we don't get a useful usage message * *: mark nounset mode as supported, issues with it are bugs now * *: avoid more errors in nounset mode * *: avoid more errors in nounset mode * *: avoid more errors in nounset mode * test/inputrc: comment and whitespace tweaks * *: avoid more errors in nounset mode * test/unit: sort files included in dist * test/unit: include test_unit_known_hosts_real.py in dist * bash_completion: line wrapping tweaks, NFC * 7z: fix -o/-w attached arg completion * postfix: try to arrange a fake tty so we can tickle the usage message out * _bashcomp_try_faketty: new function to try running command with a fake tty * mr: avoid herestrings, simplify command parsing * test/mr: handle missing "clean" with skipif * test: mark known non-ASCII issues with test suite as xfail * dpkg-deb: add --raw-extract and -X arg completions * test: add some dpkg-query test cases * dpkg-deb: fix --show/-W completion * test: upgrade markdownlint-cli to 0.23.1 * *: use more arithmetic evaluation * test: try harder to restore environment and cwd on failures * *: use $ifs for storing/restoring $IFS * test/irb: xfail options test if --help is not available * test: upgrade flake8 to 3.8.1 * test: pre-commit config cleanups, ordering * test: upgrade pre-commit to 2.4.0+, drop shfmt kludge * test: sync shfmt and shellcheck configs * test: shfmt bashrc * test: remove unused run-shellcheck, shellcheck is in pre-commit now * test: remove old test suite code no longer used \o/ * test/_known_hosts_real: port remaining test cases to pytest+pexpect * test: remove more no longer needed old test suite code * test/_known_hosts_real: port more test cases to pytest+pexpect * test/_get_cword: port remaining test case to pytest+pexpect * test: replace some echos with printfs * test/_filedir: fix shutil.rmtree on Python < 3.6 * test/_expand: port remaining test cases to pytest+pexpect * test: drop some no longer needed old test suite code * test/_filedir: port remaining test cases to pytest+pexpect * test: run all Travis jobs on dist: bionic * test: drop not needed sudo on Travis * test/_filedir: port more test cases to pytest+pexpect * test/__expand_tilde_by_ref: port remaining test cases to pytest+pexpect * test/_get_comp_words_by_ref: convert remaining test cases to pytest+pexpect * test: run pytest --verbose in docker * lftp: use "bookmark list" command to list bookmarks * test: drop some no longer needed old test suite code * test/slapt-src: convert remaining test case to pytest+pexpect * _xfunc: simplify * apt-cache: avoid nonzero exit code from _apt_cache_packages * test/slapt-get: convert remaining test case to pytest+pexpect * test/secret-tool: add to test command list * test/scp: port remaining test case to pytest+pexpect * test/umount: convert remaining test case to pytest+pexpect * secret-tool: new completion * apt-get: complete build-dep with dirs * travis: use golang 1.14 for shfmt * *: run all shell code through shfmt -s * pre-commit etc: add shfmt * test: fix incorrect fixtures/shared/default xfails/expectations * test: upgrade markdownlint to 0.23.0 * nmap: simplify help scraping a bit, don't try to emit unnecessary newlines * test: prefix fake test commands with underscore * test: port most umount test cases to pytest+pexpect * test: add note about unescaped assert_complete single return values * editorconfig: apply yaml settings to .yaml too * pre-commit: use local perlcritic hook * *: doc and comment link updates * pre-commit, *.md: add markdownlint, address findings * README: clarify loading automatically on demand * ssh-keygen: -O arg updates and improvements * ssh-keygen: add -b arg completions according to specified -t * ssh-keygen: option and arg completion updates for new versions * _command: improve commentary * reportbug, scp, sftp, svn: use compgen -c instead of _command * find: fix -exec etc argument and its completion * extra: trigger docker builds only on test-cmd-list.txt changes * test: add script to maintain list of executables for full test coverage * test: run lint tests on Travis in a quickish separate first stage * test/make: mark more cases as requiring command * make: add bmake alias * test: run pre-commit on host instead of docker * test: add perlcritic to pre-commit, run on all perl * *: remove some unused variables, thanks to shellcheck SC2034 * *: various loop iteration improvements * crontab: fix loop over already given args * apt-cache: fix command mode handling * doc: add loop variable naming guideline * test: make at-point completion tests easier * ssh, xsltproc: address shellcheck SC2006 * scp: work around shellcheck SC1003 * mutt: address shellchec SC2236 * wget: address shellcheck SC2116 * pytest: address shellcheck SC2002 * bash_completion, java, tipc: for loop whitespace consistency tweaks * *: more arithmetic evaluation cleanups, thanks to shellcheck SC2004 * __reassemble_comp_words_by_ref, java: address and work around shellcheck SC2102 * test: enable parallel pre-commit shellcheck * test: remove shellcheck severity filter, add explicit disables instead * doc: recommend arithmetic evaluation * *: array subscript cleanups * ssh-keygen: -s and -n completion improvements * *: enable and address shellcheck SC2053 * bash_completion, invoke-rc.d, svcadm: trivial cleanups * *: replace various conditional expressions with arithmetic evaluation * carton: fix command parsing with BSD sed * nmap: fix option parsing with BSD sed * test/alias: port remaining test case to pytest+pexpect * test: generalize complete at point test * test/cd: fix test_dir_at_point for setups that repeat "trailer" * pytest: add some option arg (non-)completions * pytest: complete test classes * pgrep, pkill: add --ns and --nslist arg completions * test: run skipif and xfail commands without caring if they output or not * test: make it possible to not care whether command did output or not * test/xfreerdp: skip xfreerdp kbd test if kbd-list returns empty * test: tolerate duplicates from compgen actions * test: bump shellcheck severity to warning + some disables * *: address shellcheck SC2046 * test/lib/library.sh: address shellcheck SC2125 * java, pkgadd, sysbench: address shellchec SC2124 * scp: address shellcheck SC2089 and SC2090 * _filedir_xspec: address shellcheck SC2140 * rpm, ssh, umount.linux: address shellcheck SC2120 * cvs, modprobe, sh: address shellcheck SC2209 * mutt: address shellcheck SC2088 * _upvar, _upvars, _variables, rpm: address shellcheck SC1083 * test/run: address shellcheck SC2164 * renice: address shellcheck SC2254 * tipc: comment grammar and spelling fixes * man, perl, route, tipc: address shellcheck SC2053 * info, java: address shellcheck SC2153 * quote_readline: fix $ret leak * test: upgrade shellcheck to 0.7.1 * test/printenv: xfail if --help doesn't contain options (e.g. busybox) * test/aptitude: require command where necessary * _known_hosts_real, op: address shellcheck SC2184 * test: don't run shellcheck on completions/.gitignore * protoc: complete all --*_out without more specific handling with dirs * sysbench: add --test= deprecation TODO * pkgadd: indentation fix * chronyc, wvdial: address shellcheck SC2178 * java, pkgadd, sysbench: address shellcheck SC2124 * mplayer: address shellcheck SC1078 false positive * smartctl: hush shellcheck SC2054 false positives * *: address shellcheck SC2221 and SC2222 * bash_completion: address shellcheck SC2220 * crontab, wodim: silence shellcheck SC2191 and SC2192 * aptitude: add some option arg (non)completions * aptitude: parse options list from --help, hardcode less * test/aptitude: add some test cases * *: argument interation improvements * *: whitespace tweaks * apt-get etc: use _apt_cache_packages from apt-cache * pre-commit: run most python checks on helpers/python too * test/ldd: xfail if --help is not implemented * test/printenv: require command for arg completion test * printenv: indentation fixes * test: upgrade mypy to 0.770 * test: split dependencies requiring Python 3.6.1+ to requirements- dev.txt * git: trigger docker rebuild on pre-commit config change * test: require openssl command for option argument tests * test: move perltidy to pre-commit, run with --converge * test: move shellcheck to pre-commit * test: ignore flake8 messages that are in black's domain * _xinetd_services: look up from $BASHCOMP_XINETDDIR, add some unit tests * printenv: new completion * copyright: add 2020 * test: fix CompletionResult.__eq__ UnboundLocalError * test: run pre-commit in tools container * test: shellcheck tweaks * test: add isort to pre-commit, run it * test: add flake8-bugbear * test: install black for Python 3.6 too * pre-commit: add config with black, flake8, and mypy * test: drop redundant black args from docker runs * *: python type hint fixes and improvements * extra/make-changelog: run through black * test/totem: add basic test case * test/cd: remove unused import * openssl: complete -writerand with filenames * openssl: parse available options from $command -help * openssl: support getting digest list from more recent openssl versions * nmap: handle options split on equals sign * nmap: parse options from -h output * test/cd: make dir_at_point produce better debuggable failures * test/cd: convert remaining test case to pytest+pexpect * test: remove some no longer needed old test suite code * test/chown,sudo: parametrize special case test, improve xfail targeting * test/tsig-keygen: require command for test_options * test/upgradepkg: port remaining test case to pytest+pexpect * tsig-keygen: new completion * test: host helper lint and usage fixes * test: port some _known_hosts_real unit tests to pytest+pexpect * test: remove some no longer needed tcl/expect code * test: fix spurious hosts fixture failure without avahi-browse installed * test: port some scp test cases to pytest+pexpect * test: port remaining finger, sftp, ssh, and xhost cases to pytest+pexpect * lilo: work around shellcheck false positive * test/ipcalc: fix tests with busybox ipcalc * chromium-browser, firefox: complete on *.txt (#379) * README.md: add introduction * ipcalc: new completion * *: complete commands when prefixed with a backslash * test/wol: don't fail MAC test if test system has /etc/ethers entries * test/dnssec-keygen: allow more alternatives in algorithm completion * lilo: don't complete on commented out labels * lilo: honor -C when completing labels * lilo: add -B and -E completions * Source user completion only if it's a file (#409) * jarsigner: complete on *.apk too (#386) * cryptsetup: add luksChangeKey arg completion (#380) - Refresh and reorder all patches and use autosetup macro - Run spec-cleaner * Remove rpm groups ==== biosdevname ==== - Add support for SMBIOS 3. * biosdevname-Add-SMBIOS-3.x-support.patch - Fix URL in specfile. It should be readable to developers. - Read DMI info rom sysfs (bsc#1174491). * biosdevname-Add-buffer-read-helper-using-read-explicitly.patch * biosdevname-Read-DMI-entries-from-sys-firmware-dmi-tables-DMI.patch ==== fdupes ==== Version update (1.61 -> 2.1.2) - update to 2.1.2: * Do not enter ncurses mode when --immediate option given. * Fix logging/memory corruption bug when using --log with --immediate. * Break mtime ties using ctime when sorting by time. * Reduce number of calls to stat(), for speed. * Clear last command status when new command is entered. * Rename cs command ("clear all selections") from cs to csel. * Rename igs command ("invert selections") from igs to isel. * Add "prune" command as synonym for DELETE key. * Clear selections after deleting files via prune/DELETE. * Fix dependency issues when fdupes is configured to not use ncurses. - build without ncurses for now until buildcycles can be solved - Use noun phrase in summary. Drop old specfile constructs. - Update to v2.0.0 * Add ncurses mode for interactive file deletion (plain mode still available via --plain or ./configure). * Add --minsize option. * Add --maxsize option. * Add --time option. * Add --order=ctime option. * Add --log option. * Use configure script for installation (Autotools/Automake). - Remove fdupes-makefile.patch ==== giflib ==== Version update (5.1.4 -> 5.2.1) - Update to version 5.2.1 * In gifbuild.c, avoid a core dump on no color map. * Restore inadvertently removed library version numbers in Makefile. - Changes in version 5.2.0 * The undocumented and deprecated GifQuantizeBuffer() entry point has been moved to the util library to reduce libgif size and attack surface. Applications needing this function are couraged to link the util library or make their own copy. * The following obsolete utility programs are no longer installed: gifecho, giffilter, gifinto, gifsponge. These were either installed in error or have been obsolesced by modern image-transformmation tools like ImageMagick convert. They may be removed entirely in a future release. * Address SourceForge issue #136: Stack-buffer-overflow in gifcolor.c:84 * Address SF bug #134: Giflib fails to slurp significant number of gifs * Apply SPDX convention for license tagging. - Changes in version 5.1.9 * The documentation directory now includes an HTMlified version of the GIF89 standard, and a more detailed description of how LZW compression is applied to GIFs. * Address SF bug #129: The latest version of giflib cannot be build on windows. * Address SF bug #126: Cannot compile giflib using c89 - Changes in version 5.1.8 * Address SF bug #119: MemorySanitizer: FPE on unknown address * Address SF bug #125: 5.1.7: xmlto is still required for tarball * Address SF bug #124: 5.1.7: ar invocation is not crosscompile compatible * Address SF bug #122: 5.1.7 installs manpages to wrong directory * Address SF bug #121: make: getversion: Command not found * Address SF bug #120: 5.1.7 does not build a proper library - no - Changes in version 5.1.7 * Correct a minor packaging error (superfluous symlinks) in the 5.1.6 tarballs. - Changes in version 5.1.6 * Fix library installation in the Makefile. - Changes in version 5.1.5 * Fix SF bug #114: Null dereferences in main() of gifclrmp * Fix SF bug #113: Heap Buffer Overflow-2 in function DGifDecompressLine() in cgif.c. This had been assigned (CVE-2018-11490). * Fix SF bug #111: segmentation fault in PrintCodeBlock * Fix SF bug #109: Segmentation fault of giftool reading a crafted file * Fix SF bug #107: Floating point exception in giftext utility * Fix SF bug #105: heap buffer overflow in DumpScreen2RGB in gif2rgb.c:317 * Fix SF bug #104: Ineffective bounds check in DGifSlurp * Fix SF bug #103: GIFLIB 5.1.4: DGifSlurp fails on empty comment * Fix SF bug #87: Heap buffer overflow in 5.1.2 (gif2rgb). * The horrible old autoconf build system has been removed with extreme prejudice. You now build this simply by running "make" from the top-level directory. - Run spec-cleaner - Drop patches fixed upstream: * giflib-visibility.patch * giflib-automake-1_13.patch * giflib-CVE-2016-3977.patch * fix-autoconf11.patch - Change build system to Make only (upstream not using autoconf) ==== grub2 ==== Subpackages: grub2-i386-pc grub2-snapper-plugin grub2-systemd-sleep-plugin grub2-x86_64-efi grub2-x86_64-xen - Add fibre channel device's ofpath support to grub-ofpathname and search hint to speed up root device discovery (bsc#1172745) * 0001-ieee1275-powerpc-implements-fibre-channel-discovery-.patch * 0002-ieee1275-powerpc-enables-device-mapper-discovery.patch - Fix for CVE-2020-15705 (bsc#1174421) * 0001-linuxefi-fail-kernel-validation-without-shim-protoco.patch * 0002-cmdline-Provide-cmdline-functions-as-module.patch ==== hyper-v ==== - Allow daemon restart again (bsc#1116957) Since some time the kernel moved from netlink sockets to char devices, which is supposed to handle a connection reopen for the kernel<->daemon interface ==== json-c ==== Version update (0.14 -> 0.15) Subpackages: libjson-c5 libjson-c5-32bit - update to 0.15: * Deprecate `array_list_new()` in favor of `array_list_new2()` * Remove the THIS_FUNCTION_IS_DEPRECATED define. * Remove config.h.win32 * Add a `JSON_TOKENER_ALLOW_TRAILING_CHARS` flag to allow multiple objects to be parsed even when `JSON_TOKENER_STRICT` is set. * Add `json_object_new_array_ext(int)` and `array_list_new_2(int)` to allow arrays to be allocated with the exact size needed, when known. * Add `json_object_array_shrink()` (and `array_list_shrink()`) and use it in json_tokener to minimize the amount of memory used. * Add a json_parse binary, for use in testing changes (not installed, but available in the apps directory). * Split the internal json_object structure into several sub-types, one for each json_type (json_object_object, json_object_string, etc...). This improves memory usage and speed, with the benchmark under bench/ report 5.8% faster test time and 6%(max RSS)-12%(peak heap) less memory usage. Memory used just for json_object structures decreased 27%, so use cases with fewer arrays and/or strings would benefit more. * Minimize memory usage in array handling in json_tokener by shrinking arrays to the exact number of elements parsed. On bench/ benchmark: 9% faster test time, 39%(max RSS)-50%(peak heap) less memory usage. Add json_object_array_shrink() and array_list_shrink() functions. * #616 - Parsing of surrogate pairs in unicode escapes now properly handles incremental parsing. * Fix incremental parsing of numbers, especially those with exponents, e.g. so parsing "[0", "e+", "-]" now properly returns an error. Strict mode now rejects missing exponents ("0e"). * Successfully return number objects at the top level even when they are followed by a "-", "." or "e". This makes parsing things like "123-45" behave consistently with things like "123xyz". * #589 - Detect broken RDRAND during initialization; also, fix segfault in the CPUID check. * #592 - Fix integer overflows to prevert out of bounds write on large input. * Protect against division by zero in linkhash, when creaed with zero size. * #602 - Fix json_parse_uint64() internal error checking, leaving the retval untouched in more failure cases. * #614 - Prevent truncation when custom double formatters insert extra \0's - remove 0001-Detect-broken-RDRAND-during-initialization.patch (upstream) ==== kexec-tools ==== - Make kexec-bootloader work without 'which' package (boo#1172501) ==== libimagequant ==== Version update (2.12.2 -> 2.12.6) - update to 2.12.6: * Use size_t for malloc_sizes - remove gcc9-Update-const-var-openmp-const-var-handling.patch (upstream) ==== libmbim ==== Version update (1.24.0 -> 1.24.2) Subpackages: libmbim-glib4 mbimcli-bash-completion - Upate to version 1.24.2: + libmbim-glib: - Fixed several issues in the logic that merges the service subscribe list. - Improved message reading logic to skip malformed MBIM messages (e.g. AT URCs emitted wrongly in the MBIM port by some Cinterion modules). ==== libreoffice ==== Subpackages: libreoffice-base libreoffice-base-drivers-firebird libreoffice-calc libreoffice-draw libreoffice-filters-optional libreoffice-gnome libreoffice-gtk3 libreoffice-icon-themes libreoffice-impress libreoffice-l10n-cs libreoffice-l10n-da libreoffice-l10n-de libreoffice-l10n-el libreoffice-l10n-en libreoffice-l10n-en_GB libreoffice-l10n-es libreoffice-l10n-fr libreoffice-l10n-hu libreoffice-l10n-it libreoffice-l10n-ja libreoffice-l10n-pl libreoffice-l10n-pt_BR libreoffice-l10n-ru libreoffice-l10n-zh_CN libreoffice-l10n-zh_TW libreoffice-mailmerge libreoffice-math libreoffice-pyuno libreoffice-qt5 libreoffice-writer libreofficekit - Use memoryperjob constraint instead of %limit_build macro. ==== libvirt ==== Subpackages: libvirt-bash-completion libvirt-client libvirt-daemon libvirt-daemon-driver-interface libvirt-daemon-driver-libxl libvirt-daemon-driver-lxc libvirt-daemon-driver-network libvirt-daemon-driver-nodedev libvirt-daemon-driver-nwfilter libvirt-daemon-driver-qemu libvirt-daemon-driver-secret libvirt-daemon-driver-storage libvirt-daemon-driver-storage-core libvirt-daemon-driver-storage-disk libvirt-daemon-driver-storage-gluster libvirt-daemon-driver-storage-iscsi libvirt-daemon-driver-storage-iscsi-direct libvirt-daemon-driver-storage-logical libvirt-daemon-driver-storage-mpath libvirt-daemon-driver-storage-rbd libvirt-daemon-driver-storage-scsi libvirt-daemon-lxc libvirt-daemon-qemu libvirt-daemon-xen libvirt-libs - virdevmapper: Handle kernel without device-mapper support 82bb167f-dont-cache-devmapper-major.patch, feb8564a-handle-no-devmapper.patch, 53d9af1e-ignore-devmapper-open-errors.patch boo#1175465 - util: Fix logic in virFileSetCOW 2edd63a0-fix-virFileSetCOW-logic.patch boo#1175463 ==== mc ==== Version update (4.8.24 -> 4.8.25) Subpackages: mc-lang - Update to 4.8.25 * Avoid subshell warning for standalone mcedit/mcview/mcdiffview run from mc * Implement chattr command (change ext{2,3,4}fs extended attributes) * New syntax highlighting: Kotlin and ino * File highlighting updates * Lots of other fixes - Updated mc-ext-audio.patch - Updated mc-extd-sound.patch - Removed mc-rpm.patch ==== mutter ==== Subpackages: libmutter-6-0 mutter-data mutter-lang - Add mutter-meson_options-Use-libGLESv2.so.2-for-COGL_DRIVER-gle.patch: don't use libGLESv2.so but libGLESv2.so.2 for COGL driver (boo#1175559 glgo#GNOME/mutter!1282). ==== ndctl ==== Version update (68 -> 69) - Update to v69 (jsc#SLE-13824, jsc#SLE-12770, jsc#SLE-15065): * infoblock: Set the default alignment to the platform alignment * libndctl/papr_scm: Add support for reporting "life_used_percentage" metric * Skip region filtering if numa_node attribute is not present * libndctl,papr_scm: Implement support for PAPR_PDSM_HEALTH * miscellaneous bugfixes - Removed ndctl-Documentation-use-includes-in-more-ndctl-command-pag.patch - Clarify documentation about filtering options (bsc#1173861) + ndctl-Documentation-use-includes-in-more-ndctl-command-pag.patch ==== osinfo-db ==== - Add support for openSUSE Leap 15.3 and SLE15-SP3 add-leap15.3-support.patch add-sle15sp3-support.patch ==== pipewire ==== Version update (0.3.8 -> 0.3.9) Subpackages: libpipewire-0_3-0 pipewire-modules pipewire-spa-plugins-0_2 pipewire-spa-tools pipewire-tools - Update to version 0.3.9: * Fix bad audio in chrome * Remove some errors that are not real errors. * Fix 100% cpu when disconnecting devices. * Improve pulseaudio introspection of formats * Fix JACK metadata handling, carla can now monitor the port it creates and insert midi. * Add a new permission bit (M) that is needed to be able to configure metadata on an object. Improve security of metadata some more, only allow metadata on objects that are visible to the client setting the metadata. * Add support for videocrop in the GStreamer elements. * Improve handling of the runtime directory for the server sockets. Add some reasonable fallback when XDG_RUNTIME_DIR is not set, as suggested in the spec. * Improve ALSA device names from ACP. * Fix various crasher bugs. One in the pulse layer, one in the session manager. * Make alsa plugin respect the PIPEWIRE_REMOTE env variable. * Various compile fixes. ==== pngquant ==== Version update (2.12.2 -> 2.12.6) - update to 2.12.6 * Warn about GCC 4 being too old * Use size_t for malloc sizes ==== polari ==== Subpackages: polari-lang typelib-1_0-Polari-1_0 - Drop mozjs68 BuildRequires: it is only required to syntax check the .js files during build. As we use pristine upstream sources, we can assume them to be tested by the CI already. ==== python-kiwi ==== Version update (9.21.3 -> 9.21.7) - Bump version: 9.21.6 ? 9.21.7 - Fixed archlinux integration test build The setup of the locale via systemd-firstboot --locale=en_US.UTF-8 failed on archlinux with the error message Locale en_US.UTF-8 is not installed. This commit sets the locale explicitly - Fixed GCE integration test build nothing provides google-compute-engine-init - Fixed bootloader grub copy SameFileError exception Only copy the file if the given source and destination are not the same file - Simplify build_status helper Instead of a static list with all integration test build names only maintain a list of integration test build project names - Bump version: 9.21.5 ? 9.21.6 - Skip filesystem check for XFS prior xfs_grow running xfs_repair check isn't strictly necessary before resizing, and in some cases it may even prevent resizing by giving an error that would be cleared through mounting the fs (e.g. when the fs wasn't cleanly umounted, and thus letting xfs recover and replay its journal). Given that xfs can only grow online (while being mounted), this is sufficient to ensure that the fs is in a state where it can be resized. This is related to bsc#1174009 - Fixed code logic in resize_filesystem method resize_filesystem runs fs-check on the filesytem prior to resize. This check however should not be done if the filesystem got deployed on a ramdisk. For that purpose the _is_ramdisk_device method exists. The logic in the method as well as the call were wrong. This in the end lead to a correct logic but is completely confusing. This commit fixes and simplifies the _is_ramdisk_device method and corrects the caller logic - Make sure kernel options are respected by grub Set options variable in grub loader/entries to match the kiwi image description setup. This adaption currently happens only when building in OBS because in this env the options setup done by grub is a complete mess. - Fixed root replace for grub menu entries The root device spec in the grub boot/loader/entries/*.conf files when building in OBS is not matching the loop mapped image root device but matches the root device of the OBS worker. Very strange behavior and of course wrong. Because of that the expression to replace the wrong device with the correct one must be a regular expression and cannot be based on the loop mapped image root device. - Fixed path to search for grub menu entries - Fixed scope of remove_hierarchy The remove_hierarchy method walked through the entire path it was given. That included the root path which is beyond its scope. This Fixes #1515 - Fixed corrections in BootLoaderSpec grub config Distributions like Fedora RawHide or CentOS8 applies to the grub BootLoaderSpec as described here: https://www.freedesktop.org/wiki/Specifications/BootLoaderSpec Part of the spec is that menu entries are handled in extra files below /boot/loader/entries. Unfortunately the grub2-mkconfig code has still no clue how to find the correct root device in special environments like obs workers or in overlay systems. To fixup the result of grub2-mkconfig there is code in kiwi which needs to be adapted because the file that contains the wrong information is now no longer grub.cfg but some /boot/loader/entries/*.conf file. This commit solves the issue. - Fixed grub setup in EFI/BOOT directory kiwi copied the same grub.cfg file as it exists in boot/grub2 to the efi path. This is wrong as the setup in the efi boot directory is used to enable normal grub loading and not providing the user grub configuration. In addition the changes here makes sure that the early grub boot code is placed into the system in any EFI case except for secure boot when shim-install is present. If shim-install is present it also creates the early grub boot setup such that kiwi doesn't have to do it. This Fixes #1491 and Fixes bsc#1172908 - Use rsync in inplace transfer mode Using the --inplace option in rsync helps to save space on syncing the rootfs data and prevents e.g OBS workers from running out of VM space when transfering root filesystem data. Also using --inplace allows to keep hardlinks intact. This is related to bsc#1096738 - Don't keep copy of grub2-install in the system To prevent shim-install from calling grub2-install in uefi mode kiwi temporary replaces the tool by a noop. This acts as a workaround for an issue in shim-install. However the workaround left a file copy of grub2-install in the system which should not happen. This commit Fixes bsc#1173226 and Fixes #1490 - Rename CentOS 7 test and add CentOS 8 test This commit renames the CentOS 7 test and adds a new CentOS 8 test Related to #1468 - Update Ubuntu and Debian image tests This commit updates Ubuntu test to Focal distribution and adds an additional Debian Buster image test. Related to #1468 - Include CentOS vendor in grub2 configuration This commit ensures the vendor files for grubenv consider CentOS vendoring. - Fixed documentation for OEM swap partition A swap partition in an OEM deployment is only created if that is explicitly requested via the oem-swap element - Bump version: 9.21.4 ? 9.21.5 - Do not create a md5 checksum output file for archive images This commit removes the creation of the md5 file that includes a checksum of the image binary for the `tbz` image type. Removing it as this is the only image type that includes it as part of the result and because the bundle procedure already creates a sha256 file out of the results, so there is still the chance to produce validation checksums. - Document output files KIWI produces This commits adds a chapter to describe the ouput files that are part of any image build. - Fixed oem recovery tar parameter order Reorder tar parameters When building an oem-image with oem-recovery set to true a tar error appears saying: "The following options were used after any non-optional arguments in archive create or update mode". This commit fixes the order of arguments to tar to avoid the error condition. Fixes #1501 - Fixed tox min version - Cleanup setup.py The way kiwi uses setup.py assumes that pip runs this script like a spec file in rpm is processed. However this is not the case given that pip implicitly creates a static zip file called wheel which looses all the code logic done in setup.py. Therefore setup.py should not contain code that needs to run at install time. Of course this change comes with an effect which is that the following files will not be available when installing kiwi from pip: * man pages: /usr/share/man/man8/... * command completion: /etc/bash_completion.d/kiwi-ng.sh * kiwi default config file: /etc/kiwi.yml * package docs: /usr/share/doc/packages/kiwi-ng/... (kiwi.pdf, LICENSE, README) kiwi stays fully functional without this information. It is expected that the installation of kiwi as a service will be done by a package and its package manager. When using kiwi from pip it is designed to provide a python module but not a complete user application. The way pip and wheels interact with each other seems to demonstrate that pip is not a package manager but more a python module manager. This Fixes #1415 - Describe targets in tox.ini * Make use of description to show them with "tox -av" * Use comments as "description" lines * Define minimal tox version (3.5.0) - Bump version: 9.21.3 ? 9.21.4 - Refactor FileSystem Factory With regards to Issue #1486 a discussion came up that the way factories are implemented are questionable when thinking about strong typing for the public kiwi interface. This commit refactors the FileSystem factory to be a real factory and to add type hints such that its use from an api perspective is clear and enforced. ==== qemu ==== Subpackages: qemu-arm qemu-block-curl qemu-block-dmg qemu-block-gluster qemu-block-iscsi qemu-block-nfs qemu-block-rbd qemu-block-ssh qemu-chardev-baum qemu-extra qemu-guest-agent qemu-hw-display-qxl qemu-hw-usb-redirect qemu-hw-usb-smartcard qemu-ipxe qemu-ksm qemu-kvm qemu-lang qemu-microvm qemu-ppc qemu-s390 qemu-seabios qemu-sgabios qemu-tools qemu-ui-curses qemu-ui-gtk qemu-ui-sdl qemu-ui-spice-app qemu-vgabios qemu-vhost-user-gpu qemu-x86 - Fix compilation errors seen with pre-release gcc 11 qht-Revert-some-constification-in-qht.c.patch Revert-qht-constify-qht_statistics_init.patch help-compiler-out-by-initializing-array.patch s390x-Fix-stringop-truncation-issue-repo.patch - Add Split-Provides mechanism, using doc files which were moved in v5.1.0. This allows for the new subpackages to be selected for install when the v5.0.0 qemu is updated. These new subpackages are not marked as "Required" by any packages, in an effort to reduce the dependencies of the core qemu components (boo#1175320) v5.0.0 qemu file mapping is provided as follows: subpackage continuity file provided (files are dummies) ========== ============================================ qemu-chardev-baum /usr/share/doc/packages/qemu/qemu-ga-ref.html qemu-hw-display-qxl /usr/share/doc/packages/qemu/qemu-ga-ref.txt qemu-hw-usb-redirect /usr/share/doc/packages/qemu/qemu-qmp-ref.html qemu-hw-usb-smartcard /usr/share/doc/packages/qemu/qemu-qmp-ref.txt - Fix wrong usage of %{_libexecdir} for systemd owned paths below %{_prefix}/lib. ==== sane-backends ==== Version update (1.0.29 -> 1.0.30) Subpackages: libsane1 sane-backends-autoconfig - Update to 1.0.30: * epson2: fixes CVE-2020-12867 (GHSL-2020-075) and several memory management issues found while addressing that CVE * epsonds: addresses out-of-bound memory access issues to fix CVE-2020-12862 (GHSL-2020-082) and CVE-2020-12863 (GHSL-2020-083), addresses a buffer overflow fixing CVE-2020-12865 (GHSL-2020-084) and disables network autodiscovery to mitigate CVE-2020-12866 (GHSL-2020-079), CVE-2020-12861 (GHSL-2020-080) and CVE-2020-12864 (GHSL-2020-081). Note that this backend does not support network scanners to begin with. * magicolor: fixes a floating point exception and uninitialized data read * fixes an overflow in sanei_tcp_read() - Move saned to a separate package - Cleanup spec file, remove some obsolete mangling of udev rules ==== systemd ==== Version update (245.6 -> 245.7) Subpackages: libsystemd0 libsystemd0-32bit libudev-devel libudev1 libudev1-32bit systemd-32bit systemd-container systemd-doc systemd-lang systemd-logger systemd-sysvinit udev - Import commit 6d6d92930acad63f9b9029c305a672c32c550d2d (include merge of v245.7) 797ad47d3e vconsole-setup: downgrade log message when setting font fails on dummy console (bsc#1172195 bsc#1173539) [...] For a complete list of changes, visit: https://github.com/openSUSE/systemd/compare/b12cd8b89b4bccfcf972b47153a2b01c... - Drop 0001-Revert-job-Don-t-mark-as-redundant-if-deps-are-relev.patch Upstream finally reverted it and it's part of both v245.7 and master. ==== thin-provisioning-tools ==== Version update (0.8.5 -> 0.9.0) - Update to version 0.9.0: * New support tools: thin_metadata_{pack,unpack}. * thin_check can now check metadata snapshots. * some metadata space map bug fixes. * thin_check --auto-repair * Stop thin_dump --repair/thin_repair ignoring under populated nodes. - Drop no longer needed patches: * boost_168.patch * ft-lib_bcache-rename-raise-raise_.patch -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org