Packages changed: Mesa (20.1.8 -> 20.2.1) Mesa-drivers (20.1.8 -> 20.2.1) NetworkManager (1.26.2 -> 1.26.4) PackageKit apparmor bc dmidecode (3.2 -> 3.3) dracut (050+suse.227.g7a9b782d -> 050+suse.250.ge6b6e843) ffmpeg-4 filesystem gnutls installation-images-MicroOS (16.23 -> 16.24) kactivitymanagerd kernel-default-base kwin5 ldb libcontainers-common libinput libqt5-qtbase lvm2 lvm2-device-mapper neon openldap2 (2.4.53 -> 2.4.54) openssh openssl-1_1 (1.1.1g -> 1.1.1h) permissions (1550_20200930 -> 1550_20201008) pipewire (0.3.11 -> 0.3.13) plasma-framework plasma5-workspace python38 python38-core qrencode (4.1.0 -> 4.1.1) shadow systemd talloc transactional-update (2.26 -> 2.27) vim (8.2.1775 -> 8.2.1840) yast2 (4.3.29 -> 4.3.37) === Details === ==== Mesa ==== Version update (20.1.8 -> 20.2.1) Subpackages: Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libgbm1 - reenabled U_fix-mpeg1_2-decode-mesa-20.2.patch due to regression reported in boo#1173185 - update to 20.2.1 * first bugfix release for the 20.1 branch - supersedes U_fix-mpeg1_2-decode.patch - disabled U_fix-mpeg1_2-decode-mesa-20.2.patch; likely no longer needed (boo#1173185) - U_fix-mpeg1_2-decode-mesa-20.2.patch * additional patch currently needed for Mesa 20.2 (boo#1173185) - update to 20.2.0 * includes Intel Rocket Lake Platform Support (jsc#SLE/SLE-12880, jsc#SLE/SLE-12882) - adjusted/refreshed patches: * n_add-Mesa-headers-again.patch * n_drirc-disable-rgb10-for-chromium-on-amd.patch * u_dep_xcb.patch - docs now available in .rst format (html before) - Add U_fix-mpeg1_2-decode.patch (boo#1173185) * fixes colors in kaffeine on Radeon (r600 VAAPI driver) ==== Mesa-drivers ==== Version update (20.1.8 -> 20.2.1) Subpackages: Mesa-dri Mesa-gallium - reenabled U_fix-mpeg1_2-decode-mesa-20.2.patch due to regression reported in boo#1173185 - update to 20.2.1 * first bugfix release for the 20.1 branch - supersedes U_fix-mpeg1_2-decode.patch - disabled U_fix-mpeg1_2-decode-mesa-20.2.patch; likely no longer needed (boo#1173185) - U_fix-mpeg1_2-decode-mesa-20.2.patch * additional patch currently needed for Mesa 20.2 (boo#1173185) - update to 20.2.0 * includes Intel Rocket Lake Platform Support (jsc#SLE/SLE-12880, jsc#SLE/SLE-12882) - adjusted/refreshed patches: * n_add-Mesa-headers-again.patch * n_drirc-disable-rgb10-for-chromium-on-amd.patch * u_dep_xcb.patch - docs now available in .rst format (html before) - Add U_fix-mpeg1_2-decode.patch (boo#1173185) * fixes colors in kaffeine on Radeon (r600 VAAPI driver) ==== NetworkManager ==== Version update (1.26.2 -> 1.26.4) Subpackages: libnm0 typelib-1_0-NM-1_0 - Update to version 1.26.4: + Add support for the DHCPv4 vendor class identifier option. + The initrd generator now supports specifying interfaces by MAC address. + Automatically add the wildcard DNS domain to VPNs with never-default=no and no domains. + Allow setting bond "primary" option with modes "tlb" and "alb". + Fix peer group tracking of Wi-Fi P2P connections. + Fix autoactivating virtual devices after a failure. ==== PackageKit ==== Subpackages: PackageKit-backend-zypp libpackagekit-glib2-18 - Add PackageKit-zypp-dont-refresh-repos-on-offline-update.patch: zypp: Don?t refresh repos again when actually updating packages (gh#/hughsie/PackageKit/commit/81207bd3, bsc#1173562). ==== apparmor ==== Subpackages: apparmor-abstractions apparmor-parser apparmor-profiles apparmor-utils perl-apparmor python3-apparmor - add CAP_CHECKPOINT_RESTORE to severity.db (MR 656, cap_checkpoint_restore.diff) - %service_del_postun_without_restart only works for Tumbleweed, keep using DISABLE_RESTART_ON_UPDATE for Leap 15.x ==== bc ==== - fix [bsc#1177579] -- wrong clamping of hexadecimal digits in dc - deleted patches - bc-1.06-dc_ibase.patch (upstreamed) ==== dmidecode ==== Version update (3.2 -> 3.3) - Update to upstream version 3.3: * [COMPATIBILITY] Document how the UUID fields are interpreted. * [PORTABILITY] Don't use memcpy on /dev/mem on arm64. * Add bios-revision, firmware-revision and system-sku-number to -s option. * Use the most appropriate unit for cache size. * Decode system slot base bus width and peers. * Obsoletes dmidecode-add-enumerated-values-from-smbios-3.3.0.patch, dmidecode-add-logical-non-volatile-device.patch, dmidecode-allow-overriding-build-settings-from-env.patch, dmidecode-dont-choke-on-invalid-processor-voltage.patch, dmidecode-fix-formatting-of-tpm-table-output.patch, dmidecode-fix-redfish-hostname-print-length.patch, dmidecode-fix-system-slot-information-for-pcie-ssd.patch, dmidecode-fix-the-alignment-of-type-25-name.patch, dmidecode-only-scan-dev-mem-for-entry-point-on-x86.patch, and dmidecode-print-type-33-name-unconditionally.patch. ==== dracut ==== Version update (050+suse.227.g7a9b782d -> 050+suse.250.ge6b6e843) Subpackages: dracut-ima - Update to version 050+suse.250.ge6b6e843: * Revert "Revert "install: also install post weak dependencies of kernel modules"" * 98dracut-systemd: don't wait for root device if remote cryptsetup active * cryptroot-ask: unify /etc/crypttab and rd.luks.key * 90kernel-modules: arm: add drivers/hwmon for arm/arm64 * rootfs-block: only write root argument for block device * 90crypt: pull in remote-cryptsetup.target enablement * 00systemd: add missing cryptsetup-related targets * 95nvmf: Implement 'fc,auto' commandline syntax * 95nvmf: add nvmf-autoconnect script * 95nvmf: Fixup FC connections * 95nvmf: add documentation * 95nvmf: rework parameter handling * dracut-install: fix edge-case regression with weak modules * dracut-install: ignore bogus preload libs * dracut.spec: Use make macros * dracut.spec: remove fedora pre 30 quirks * 50drm: Check drm_encoder_init along drm_crtc_init * 50drm: Include drm platform drivers in hostonly * 50drm: fix ambiguous redirects * Include devfreq drivers in initrd * dracut.spec: include the 04watchdog-modules module - Update to version 050+suse.228.gd0d6792d: * 99memstrack: use /bin/bash ==== ffmpeg-4 ==== Subpackages: libavcodec58_91 libavformat58_45 libavutil56_51 libswresample3_7 - Adjust soversion.patch to include a symlink [boo#1177667] - Add 0001-lavf-srt-fix-build-fail-when-used-the-libsrt-1.4.1.patch ==== filesystem ==== - Add /usr/etc/X11 (boo#1173049) - Add /usr/etc/xdg (boo#1173316) - Add /usr/etc/profile.d (boo#1173310) ==== gnutls ==== - Escape rpm command %%expand when used in comment. ==== installation-images-MicroOS ==== Version update (16.23 -> 16.24) - merge gh#openSUSE/installation-images#430 - Refresh spec file. - Support 32bit ARM (boo#1177264). - 16.24 ==== kactivitymanagerd ==== - Add Fix-a-dangling-reference-to-the-list-of-database-files.patch to fix possible crashes (kde#427650) ==== kernel-default-base ==== - Create the list of crypto modules dynamically, supersedes hardcoded list of crc32 implementations (boo#1177577) ==== kwin5 ==== - Add patch to fix software rendering detection with Mesa 20.2+: * 0001-Detect-softpipe-and-llvmpipe-on-Mesa-20.2.patch ==== ldb ==== Subpackages: libldb2 python3-ldb - Remove old if suse_version != 1110 || arch != i386 construct: unlikely the current package ever builds for 1110 && 386. ==== libcontainers-common ==== - Simplify %setup statements. ==== libinput ==== - Split libinput-debug-gui from the library package build, removes GTK3 and transient build dependencies from libinput. - Fix cleanup of python3-libevdev dependent helpers, now located under libexecdir - Fix installation path of zsh-completion helpers, move to tools package. ==== libqt5-qtbase ==== Subpackages: libQt5Concurrent5 libQt5Core5 libQt5DBus5 libQt5Gui5 libQt5Network5 libQt5PrintSupport5 libQt5Sql5 libQt5Sql5-sqlite libQt5Test5 libQt5Widgets5 libQt5Xml5 - Silence xcb errors and qml connection warnings by default, see boo#1115541 (xcb) and kde#418793. ==== lvm2 ==== Subpackages: liblvm2cmd2_03 - Update lvm2.spec file (bsc#1174336) - enable lvmlockd remote refresh using libdlmcontrol - update libdlm dependency relationship ==== lvm2-device-mapper ==== Subpackages: device-mapper libdevmapper-event1_03 libdevmapper1_03 - Update lvm2.spec file (bsc#1174336) - enable lvmlockd remote refresh using libdlmcontrol - update libdlm dependency relationship ==== neon ==== - Disable tests fail_ca_* that fail since OpenSSL update to 1.1.1h. * Upstream report: https://github.com/notroj/neon/issues/38 - Add neon-0.31.2-CA-tests.patch - Disable fail_nul_* tests broken with OpenSSL configured to reject certificates created with a SHA1. - Add neon-0.31.2-sha1-tests.patch ==== openldap2 ==== Version update (2.4.53 -> 2.4.54) - updated to 2.4.54 OpenLDAP 2.4.54 Release (2020/10/12) Fixed slapd delta-syncrepl to ignore delete ops on deleted entry (ITS#9342) Fixed slapd delta-syncrepl to be fully serialized (ITS#9330) Fixed slapd delta-syncrepl MOD on zero-length context entry (ITS#9352) Fixed slapd sessionlog to use a TAVL tree (ITS#8486) Fixed slapd syncrepl to be fully serialized (ITS#8102) Fixed slapd syncrepl to call check_syncprov on fresh consumer (ITS#9345) Fixed slapd syncrepl to propagate errors from overlay_entry_get_ov (ITS#9355) Fixed slapd syncrepl to not create empty ADD ops (ITS#9359) Fixed slapd syncrepl replace usage on single valued attrs (ITS#9295) Fixed slapd-monitor fix monitor_back_register_database for empty suffix DB (ITS#9353) Fixed slapo-accesslog normalizer for reqStart (ITS#9358) Fixed slapo-accesslog to not generate new contextCSN on purge (ITS#9361) Fixed slapo-syncprov contextCSN generation with empty suffix (ITS#9015) ==== openssh ==== - Work around %service_add_post disabling sshd on upgrade with package name change (bsc#1177039). - Fix fillup-template usage: + %post server needs to reference ssh (not sshd), which matches the sysconfig.ssh file name the package ships. + %post client does not need any fillup_ calls, as there is no client-relevant sysconfig file present. The naming of the sysconfig file (ssh instead of sshd) is unfortunate. - Use of DISABLE_RESTART_ON_UPDATE is deprecated. Replace it with %service_del_postun_without_restart - Move some Requires to the right subpackage. - Avoid ">&" bashism in %post. - Upgrade some old specfile constructs/macros and drop unnecessary %{?systemd_*}. - Trim descriptions and straighten out the grammar. - Split openssh package into openssh, openssh-common, openssh-server and openssh-clients. This allows for the ssh clients to be installed without the server component (bsc#1176434). ==== openssl-1_1 ==== Version update (1.1.1g -> 1.1.1h) - Escape rpm command %%expand when used in comment. - Update to 1.1.1h * Disallow explicit curve parameters in verifications chains when X509_V_FLAG_X509_STRICT is used * Enable 'MinProtocol' and 'MaxProtocol' to configure both TLS and DTLS contexts - refresh openssl-fips_selftest_upstream_drbg.patch * DRBG internals got renamed back: reseed_gen_counter -> generate_counter reseed_prop_counter -> reseed_counter ==== permissions ==== Version update (1550_20200930 -> 1550_20201008) Subpackages: chkstat permissions-config - Update to version 20201008: * cleanup now useless /usr/lib entries after move to /usr/libexec (bsc#1171164) * drop (f)ping capabilities in favor of ICMP_PROTO sockets (bsc#1174504) ==== pipewire ==== Version update (0.3.11 -> 0.3.13) Subpackages: libpipewire-0_3-0 pipewire-modules pipewire-spa-plugins-0_2 pipewire-spa-tools pipewire-tools - Update to version 0.3.13: * PipeWire improvements + Add pw-reserve tool to reserve or monitor a device on DBus. + Install spa-resample, a tool to resample a file. + Install spa-acp-tool, a tool to inspect the card profile. + Various fixes and improvements + Fix a bug in pw-stream where a capture stream could run out of buffers and become silent. + Rework the processing loops in the adapter and stream. There is now less latency in PulseAudio and ALSA layers. * Session manager improvements + Improve the device reservation code. We now try to acquire the device using the dbus device reservation API before we probe the device. This avoids conflicts with a running PulseAudio where devices would disappear (because they were locked by the other process). + Don't fail on invalid input from the config files. + Audio devices now have the same name as what PulseAudio would assign. * Device support + v4l2: try to use the format before enumerating the size and framerate. Some drivers don't check the format and might now work better. + v4l2: Fall back to MMAP when EXPBUF fails. Fix MMAP access, just export the fd and the mapoffset. This should make more devices work. + Fix crash in ALSA Card Profile (ACP) code. + ACP: fix selection of default profile. Prefer any possibly available profile over 'Off'. This makes some card at least start with something. + Fix soft volume. After setting the volume to 0, it would stay at 0 until pushed over the max volume. This should fix various volume related issues. * PulseAudio layer improvements + Rework the buffering and latency measurements and tweak the buffer attributes. This should make browsers and media players work better. This should also improve speechd performance. * JACK layer improvements + Fix compilation against newer JACK. - Rebase patch: * do-not-install-alsa-config-files.patch - Update to version 0.3.12: * PipeWire improvements + The channelmap converter now handles unknown and strange channel layouts much better. + The resampler is now cleared correctly, avoiding clicks and pops at the start of sound. + Fixes for various crasher bugs. (paplay drain, vlc shutdown, pactl info, ...) + Fix a race condition in the node state changes that caused all kinds of sync and other issues (vlc, mpv, ...) + Improve the binary name property of applications + Fix the scheduling again of nodes that always need a driver such as the jack clients. * Session manager improvements + Fix routing to default nodes. Sometimes nodes were not routed to the default node (bluetooth) * Device support + Disable channelmap from ALSA by default. This is what PulseAudio does and thus provides better compatibility. + Fix a bug in how the resampler was used in the ALSA source, causing distortion and errors when using low latency capture clients. (Discord, webrtc, ...) + Small bluetooth improvements. More work is needed for reliable bluetooth playback. * GStreamer plugins + The device provider now stops the processing loop before shutting down, which avoids crashes (gnome-initial-setup). * PulseAudio layer improvements + The buffer attributes were reworked to ensure compatibility with many more applications such as mpv and audacious. + The pulseaudio layer will now try hard to not hand out invalid channel maps to the application. (avoids crashes in gnome-volume-control). The channel map will now also look more like what PulseAudio does. + The @DEFAULT_SINK/SOURCE/MONITOR@ wildcards now work. This fixes the problem with volume keys when they are bound to scripts using pactl and the default sink/source wildcards. + The PIPEWIRE_LATENCY environment variable now works again + Fix some leaks of ports and port info. Also fix the leak of the context when the mainloop is stopped. + The sink/source format_info array is now filled up completely, this is actually not implemented yet in the real PulseAudio. * JACK layer improvements + jack now returns version 3.0.0 and has PipeWire in the version string so that apps can report this. - Drop patch: * 0001-alsa-dont-change-the-resampler-delay-value.patch ==== plasma-framework ==== Subpackages: libKF5Plasma5 plasma-framework-components - Add patch to avoid 100% CPU usage by plasmashell: * 0001-Fix-BusyIndicator-rotating-even-when-invisible-again.patch - Add patch to improve krunner responsiveness on wayland (kde#426746): * 0001-BusyIndicator-Do-not-rotate-when-invisible.patch ==== plasma5-workspace ==== Subpackages: gmenudbusmenuproxy plasma5-session plasma5-session-wayland plasma5-workspace-libs xembedsniproxy - Generate plasmafullwayland.desktop by editing plasmawayland.desktop - Make plasma5-session-wayland arch-dependent as it contains %{_libdir} - Add BuildRequires for pipewire and libdrm - Don't use %fdupes -s, kpackage doesn't like it and so this broke the slideshow wallpaper ==== python38 ==== - Buildrequire timezone only for general flavor. It's used in this flavor for the test suite. ==== python38-core ==== Subpackages: libpython3_8-1_0 python38-base - Buildrequire timezone only for general flavor. It's used in this flavor for the test suite. ==== qrencode ==== Version update (4.1.0 -> 4.1.1) - update to 4.1.1: * Some minor bugs in Micro QR Code generation have been fixed. * The data capacity calculations are now correct. These bugs probably did not affect the Micro QR Code generation. ==== shadow ==== - Add support for /usr/etc/skel to useradd.local script (boo#1173321) - shadow-login_defs-check.sh: Fix the regexp to get a real variable list (boo#1164274). ==== systemd ==== Subpackages: libsystemd0 libudev1 systemd-logger systemd-sysvinit udev - Do not include %{release} in a few places where we explicitly mention package versions It's usually not a good idea especially when used with conflicts. - Rely on systemd-default-settings for overriding system default settings The new branding packages now ships the drop-ins to customize systemd either for an openSUSE or a SLE ditro. ==== talloc ==== Subpackages: libtalloc2 python3-talloc - Fix build with RPM 4.16: bad %if condition: 01550 != 1110 || "x86_64" == x86_64 no bare word support, x86_64 needs to be quoted ==== transactional-update ==== Version update (2.26 -> 2.27) Subpackages: transactional-update-zypp-config - Version 2.27 - Add support for network systemd-resolvd network connections in t-u environment - Mount /var/lib/ca-certificates read-write to prevent SELinux error - Prevent calling transactional-update from within transactional-update ==== vim ==== Version update (8.2.1775 -> 8.2.1840) Subpackages: vim-data-common vim-small - Updated to version 8.2.1840, fixes the following problems - refreshed vim-7.3-filetype_changes.patch and vim-8.0.1568-defaults.patch * Filetype.vim may be loaded twice. * Vim9: some assignment tests in the wrong file. * Vim9: returning from a partial call clears outer context, causing a crash. * Some debian changelog files are not recognized. * Statusline not updated when splitting windows. * Writing to prompt buffer interferes with insert mode. * Vim9: cannot pass boolean to mapset(). * Try-catch test fails. * commits are not scanned for security problems * Compiler warning for strcp() out of bounds. (Christian Brabandt) * Various Normal mode commands not fully tested. * Crash with 'incsearch' and very long line. * Vim9: still allows :let for declarations. * Vim9: crash with invalid list constant. (Dhiraj Mishra) * Vim9: debugger test fails. * Configure does not recognize Racket 6.1+. * Not consistently giving the "is a directory" warning. * No falsy Coalescing operator. * Vim9: operators && and || have a confusing result. * Vim9: invalid memory access with weird function name. (Dhiraj Mishra) * Vim9: some parts of the code not tested. * Vim9: trinary operator condition is too permissive. * Some Normal mode commands not fully tested. * Vim9: memory leak if "if" condition is invalid. * Undo file not found when using ":args" or ":next". * Vim9: crash with unterminated dict. (Dhiraj Mishra) * A few failures are not tested. * resolve('/') returns an empty string. * Unix: terminal mode changed when using ":shell". * Can use :help in a terminal popup window. * No test coverage for ":spelldump!". * Mapping some keys with Ctrl does not work properly. * Some code in normal.c not covered by tests. * Mapping Ctrl-key does not work for '{', '}' and '|'. * Vim9: nested closure throws an internal error. * Vim9: can assign wrong type to script dict. (Christian J. Robinson) * Missing change to remove "static". * Vim9: memory leak when using function reference. * Vim9: another memory leak when using function reference. * Vim9: wrong instruction when reusing a local variable spot. * SE Linux: deprecation warning for security_context_t. * Vim9: Memory leak when using a closure. * Vim9: crash when error happens in timer callback. * Vim9: concatenating to a NULL list doesn't work. * List test doesn't fail. * "gN" does not select the matched string. * Vim9: variables at the script level escape their scope. * Vim9: accessing freed memory. * Vim9: cannot use a {} block at script level. * Filetype detection does not test enough file names. * Build failure without the +eval feature. * Warnings when executing Github actions. * File missing from distribution. * readdirex() error is displayed as a message. (Yegappan Lakshmanan) * When reading from stdin dup() is called twice. * PyEval_InitThreads() is deprecated in Python 3.9. * ":help ??" finds the "!!" tag. * Autocmd test fails on pacifist systems. * Using "gn" after "gN" does not work. * Vim9: cannot insert a comment line in an expression. * Vim9: memory leaks reported in assign test. * Vim9: error message is not clear about compilation error. ==== yast2 ==== Version update (4.3.29 -> 4.3.37) - Revert changes for hiding the heading of the dialog in text mode (the heading has no height if the title is empty). - bsc#1176808 - 4.3.37 - AutoYaST: SectionWithAttributes#new_from_hashes accepts an enumerable as first element (related to bsc#1177405). - 4.3.36 - AutoYaST: do not crash when sections like 'raid_options' are empty (bsc#1177405). - 4.3.35 - Revert the drop of SuSEFirewall2 as there are still some packages which need to be adapted (bsc#1177160) - 4.3.34 - Drop SuSEFirewall2 code completely (fate#323460) - 4.3.33 - Fix non-editable ComboBox handling (bsc#1136454). - 4.3.32 - Small improvements to CWM based widgets (related to bsc#1136454): - An editable ComboBox will refresh the list of items when a new one is given as its current value. - By default, a MenuButton widget listens to events from all its buttons. - 4.3.31 - Do not crash when trying to parse non-existing ("nil") add-on product control XML file (bsc#1176593) - 4.3.30