Packages changed: gawk (5.2.1 -> 5.2.2) libostree libstorage-ng (4.5.101 -> 4.5.103) multipath-tools (0.9.4+86+suse.4d8901e -> 0.9.5+68+suse.d1b6a1c) nautilus openvpn (2.6.3 -> 2.6.4) pam (1.5.2.90 -> 1.5.3) pam-full-src (1.5.2.90 -> 1.5.3) python-numpy qemu sssd (2.8.2 -> 2.9.0) util-linux util-linux-systemd yaml-cpp zstd === Details === ==== gawk ==== Version update (5.2.1 -> 5.2.2) - Update to gawk 5.2.2 * will now diagnose if a heap file was created with a different setting of -M/--bignum than in the current invocation and exit with a fatal message if so. * no longer "leaks" its free list of NODEs in the heap file, resulting in much more efficient usage of persistent storage * PROCINFO["pma"] exists if the PMA allocator is compiled into gawk. Its value is the PMA version. * The time extension is no longer deprecated. The strptime() function from gawkextlib's timex extension has been added to it. * Better information is passed to input parsers for when they want to decide whether or not to take control of a file. * The various PNG files are now installed for Info and HTML * Bug fixes and developer visible fixes ==== libostree ==== Subpackages: libostree-1-1 - Make gjs BuildRequires conditional if tests are built and used. ==== libstorage-ng ==== Version update (4.5.101 -> 4.5.103) Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1 - Translated using Weblate (German) (bsc#1149754) - 4.5.103 - merge gh#openSUSE/libstorage-ng#929 - check for aliases when looking up blk devices - check for aliases when looking up udev info - remove now unneeded mockups - speed up probing - 4.5.102 ==== multipath-tools ==== Version update (0.9.4+86+suse.4d8901e -> 0.9.5+68+suse.d1b6a1c) Subpackages: kpartx libmpath0 - Update to version 0.9.5+68+suse.d1b6a1c: Upstream bugfixes: * libmultipath: use directio checker for LIO targets (gh#opensvc/multipath-tools#54) * multipathd.service: remove "Also=multipathd.socket" (gh#opensvc/multipath-tools#65) * libmultipathd: Avoid parsing errors due to unsupported designators ==== nautilus ==== Subpackages: gnome-shell-search-provider-nautilus libnautilus-extension4 nautilus-lang - Add upstream bug fix patches: + 0e5b4c34.patch general: Use GtkSwitch active property consistently. app-chooser sets the state instead of active property. Similar to d7af60161d30c885ebab69c58b346896f1565387, we really meant to set active (whether the switch is toggled) and not the state (i.e. the color of the switch). Use gtk_switch_set_active(). In properties we've already fixed this, but there's a lingering call to gtk_switch_get_state(). This is probably fine because state is in sync with active when the default handler is used, but let's get :active, to be consistent and safe. + 6e37d15f.patch window-slot: Manage search props set with action. Manages search property change through "search-visible" action. The action triggers other related functions that if not executed will causes buggy behavior. Fixes https://gitlab.gnome.org/GNOME/nautilus/-/issues/2875 ==== openvpn ==== Version update (2.6.3 -> 2.6.4) Subpackages: openvpn-auth-pam-plugin - Update to 2.6.4: * DCO: support kernel-triggered key rotation (avoid IV reuse after 2^32 packets). This is the userland side, accepting a message from kernel, and initiating a TLS renegotiation. As of release, * fix pkcs#11 usage with OpenSSL 3.x and PSS signing (Github #323) * fix compile error on TARGET_ANDROID * fix typo in help text * manpage updates (--topology) * encoding of non-ASCII windows error messages in log + management fixed - Update openvpn.keyring ==== pam ==== Version update (1.5.2.90 -> 1.5.3) - Update to final 1.5.3 release: - configure: added --enable-logind option to use logind instead of utmp in pam_issue and pam_timestamp. - pam_modutil_getlogin: changed to use getlogin() from libc instead of parsing utmp. - Added libeconf support to pam_env and pam_shells. - Added vendor directory support to pam_access, pam_env, pam_group, pam_faillock, pam_limits, pam_namespace, pam_pwhistory, pam_sepermit, pam_shells, and pam_time. - pam_limits: changed to not fail on missing config files. - pam_pwhistory: added conf= option to specify config file location. - pam_pwhistory: added file= option to specify password history file location. - pam_shells: added shells.d support when libeconf and vendordir are enabled. - Deprecated pam_lastlog: this module is no longer built by default because it uses utmp, wtmp, btmp and lastlog, but none of them are Y2038 safe, even on 64bit architectures. pam_lastlog will be removed in one of the next releases, consider using pam_lastlog2 (from https://github.com/thkukuk/lastlog2) and/or pam_wtmpdb (from https://github.com/thkukuk/wtmpdb) instead. - Deprecated _pam_overwrite(), _pam_overwrite_n(), and _pam_drop_reply() macros provided by _pam_macros.h; the memory override performed by these macros can be optimized out by the compiler and therefore can no longer be relied upon. ==== pam-full-src ==== Version update (1.5.2.90 -> 1.5.3) - Update to final 1.5.3 release: - configure: added --enable-logind option to use logind instead of utmp in pam_issue and pam_timestamp. - pam_modutil_getlogin: changed to use getlogin() from libc instead of parsing utmp. - Added libeconf support to pam_env and pam_shells. - Added vendor directory support to pam_access, pam_env, pam_group, pam_faillock, pam_limits, pam_namespace, pam_pwhistory, pam_sepermit, pam_shells, and pam_time. - pam_limits: changed to not fail on missing config files. - pam_pwhistory: added conf= option to specify config file location. - pam_pwhistory: added file= option to specify password history file location. - pam_shells: added shells.d support when libeconf and vendordir are enabled. - Deprecated pam_lastlog: this module is no longer built by default because it uses utmp, wtmp, btmp and lastlog, but none of them are Y2038 safe, even on 64bit architectures. pam_lastlog will be removed in one of the next releases, consider using pam_lastlog2 (from https://github.com/thkukuk/lastlog2) and/or pam_wtmpdb (from https://github.com/thkukuk/wtmpdb) instead. - Deprecated _pam_overwrite(), _pam_overwrite_n(), and _pam_drop_reply() macros provided by _pam_macros.h; the memory override performed by these macros can be optimized out by the compiler and therefore can no longer be relied upon. ==== python-numpy ==== - Add patch remove-deprecated-hypothesis-funcs.patch: * Change to a non-deprecated function from hypothesis. ==== qemu ==== - (Radical!) Change of packaging workflow. Now pretty much everything happens via git, and interacting with https://github.com/openSUSE/qemu.git. See README.PACKAGING for details * Patches added: linux-user: Add pidfd_open(), pidfd_send_signal() and pidfd_getfd() syscalls linux-user: fill out task state in /proc/self/stat linux-user: Emulate CLONE_PIDFD flag in clone() * Patches transformed in git commits: Disable-some-tests-that-have-problems-in.patch Make-char-muxer-more-robust-wrt-small-FI.patch Make-installed-scripts-explicitly-python.patch Makefile-fix-build-with-binutils-2.38.patch PPC-KVM-Disable-mmu-notifier-check.patch Raise-soft-address-space-limit-to-hard-l.patch Revert-linux-user-fix-compat-with-glibc-.patch Revert-roms-efirom-tests-uefi-test-tools.patch Revert-tests-qtest-enable-more-vhost-use.patch Update-linux-headers-to-v6.0-rc4.patch accel-abort-if-we-fail-to-load-the-accel.patch acpi-cpuhp-fix-guest-visible-maximum-acc.patch ath5k-Add-missing-AR5K_EEPROM_READ-in-at.patch bios-tables-test-add-test-for-number-of-.patch bios-tables-test-teach-test-to-use-smbio.patch block-Handle-curl-7.55.0-7.85.0-version-.patch block-io_uring-revert-Use-io_uring_regis.patch configure-Add-Wno-gnu-variable-sized-typ.patch dmg-warn-when-opening-dmg-images-contain.patch dump-Add-architecture-section-and-sectio.patch dump-Refactor-dump_iterate-and-introduce.patch dump-Reintroduce-memory_offset-and-secti.patch dump-Rename-write_elf-_phdr_note-to-prep.patch dump-Rename-write_elf_loads-to-write_elf.patch dump-Reorder-struct-DumpState.patch dump-Replace-opaque-DumpState-pointer-wi.patch dump-Rework-dump_calculate_size-function.patch dump-Rework-filter-area-variables.patch dump-Rework-get_start_block.patch dump-Split-elf-header-functions-into-pre.patch dump-Use-a-buffer-for-ELF-section-data-a.patch dump-Write-ELF-section-headers-right-aft.patch hw-acpi-erst.c-Fix-memory-handling-issue.patch hw-display-qxl-Avoid-buffer-overrun-in-q.patch hw-display-qxl-Document-qxl_phys2virt.patch hw-display-qxl-Have-qxl_log_command-Retu.patch hw-display-qxl-Pass-requested-buffer-siz.patch hw-pvrdma-Protect-against-buggy-or-malic.patch hw-scsi-megasas-check-for-NULL-frame-in-.patch hw-smbios-add-core_count2-to-smbios-tabl.patch hw-smbios-handle-both-file-formats-regar.patch hw-smbios-support-for-type-8-port-connec.patch include-elf.h-add-s390x-note-types.patch increase-x86_64-physical-bits-to-42.patch linux-user-Fake-proc-cpuinfo.patch linux-user-lseek-explicitly-cast-non-set.patch linux-user-remove-conditionals-for-many-.patch linux-user-use-max-as-default-CPU-model-.patch linux-user-use-target_ulong.patch meson-install-ivshmem-client-and-ivshmem.patch meson-remove-pkgversion-from-CONFIG_STAM.patch module-add-Error-arguments-to-module_loa.patch module-removed-unused-function-argument-.patch module-rename-module_load_one-to-module_.patch net-tulip-Restrict-DMA-engine-to-memorie.patch openSUSE-Basetools-Ignore-spurious-GCC-1.patch openSUSE-Makefile-Fix-csum8-to-be-built-.patch openSUSE-Makefile-define-endianess-for-c.patch openSUSE-Makefile-fix-issues-of-build-re.patch openSUSE-add-cross.ini-file-to-handle-aa.patch openSUSE-build-Makefile-fix-issues-of-bu.patch openSUSE-build-Silence-GCC-12-spurious-w.patch openSUSE-build-be-explicit-about-mx86-us.patch openSUSE-build-enable-cross-compilation-.patch openSUSE-pc-q35-Bump-max_cpus-to-1024.patch openSUSE-pcbios-stub-out-the-SAN-req-s-i.patch openSUSE-switch-to-python3-as-needed.patch openSUSE-test-help-compiler-out-by-initi.patch qemu-binfmt-conf-Modify-default-path.patch qemu-bridge-helper-reduce-security-profi.patch qemu-osdep-Switch-position-of-extern-and.patch roms-Makefile-add-cross-file-to-qboot-me.patch roms-Makefile-pass-a-packaging-timestamp.patch roms-change-cross-compiler-naming-to-be-.patch s390x-Add-KVM-PV-dump-interface.patch s390x-Add-protected-dump-cap.patch s390x-Introduce-PV-query-interface.patch s390x-pci-add-routine-to-get-host-functi.patch s390x-pci-don-t-fence-interpreted-device.patch s390x-pci-enable-adapter-event-notificat.patch s390x-pci-enable-for-load-store-interpre.patch s390x-pci-let-intercept-devices-have-sep.patch s390x-pci-reflect-proper-maxstbl-for-gro.patch s390x-pci-reset-ISM-passthrough-devices-.patch s390x-pci-shrink-DMA-aperture-to-be-boun.patch s390x-pv-Add-dump-support.patch s390x-tod-kvm-don-t-save-restore-the-TOD.patch scsi-generic-check-for-additional-SG_IO-.patch scsi-generic-replace-logical-block-count.patch test-vmstate-fix-bad-GTree-usage-use-aft.patch tests-acpi-allow-changes-for-core_count2.patch ... changelog too long, skipping 6 lines ... xen_disk-Add-suse-specific-flush-disable.patch ==== sssd ==== Version update (2.8.2 -> 2.9.0) Subpackages: libsss_certmap0 libsss_idmap0 libsss_nss_idmap0 sssd-krb5-common sssd-ldap - Update to release 2.9 * The sss_simpleifp library is deprecated (and for openSUSE, already removed) * The "Files provider" (i.e. id_provider = files) is deprecated (and for openSUSE, already removed) * SSSD will no longer warn about changed defaults when using ldap_schema = rfc2307 and default autofs mapping. * New passkey functionality, which will allow the use of FIDO2 compliant devices to authenticate a centrally managed user locally. * Add support for ldapi:// URLs to allow connections to local LDAP servers. * NSS IDMAP has two new methods: getsidbyusername and getsidbygroupname. ==== util-linux ==== Subpackages: libblkid1 libfdisk1 libmount1 libsmartcols1 libuuid1 util-linux-lang - Suppress error messages for grep command where the input file might not exist (boo#1169835) - Call fdupes without -s to avoid broken symlinks, pointing to different subpackage. boo#1209990 - Add upstream patch fix-lib-internal-cache-size.patch bsc#1210164, gh#util-linux/util-linux@2fa4168c8bc9 ==== util-linux-systemd ==== - Suppress error messages for grep command where the input file might not exist (boo#1169835) - Call fdupes without -s to avoid broken symlinks, pointing to different subpackage. boo#1209990 - Add upstream patch fix-lib-internal-cache-size.patch bsc#1210164, gh#util-linux/util-linux@2fa4168c8bc9 ==== yaml-cpp ==== - Drop patches fix-cmake-export.patch untabify-cmakelists.patch replacing them with pull-request 1077.patch which was merged (bsc#1191137). ==== zstd ==== Subpackages: libzstd1 - Add cmake files manually because we do not want to add cmake to the bootstrap ring0