[sles-beta] [ANNOUNCE] SLES 12 SP1 Beta3 is available
Frederic Crozat
fcrozat at suse.com
Thu Sep 3 10:54:07 MDT 2015
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!! SUSE CONFIDENTIAL !! SUSE CONFIDENTIAL !! SUSE CONFIDENTIAL !!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
Dear Beta customers,
we are happy to announce the third Beta of
SUSE Linux Enterprise Server 12 SP1.
The ISO images are available from download.novell.com and the usual
locations.
We offer 3 DVD ISOs: DVD1 contains the binaries, the second
DVD the sources and the third DVD the debuginfo packages.
The final product will not contain the debuginfo packages on the media.
Please verify the sha256sum of the ISO using the SHA256SUMS file, which can
be found in the same directory on the download servers.
Known issues (a collection):
- currently we see issues when using software raid on POWER (bnc#940542)
- We saw some problems with kdump, expected to be fixed with this milestone.
Our milestones are:
o Milestone: All updated device drivers are verified and proven to be stable
o Milestone: All features are verified to work.
o Milestone: System test completed.
o Milestone: Legal review of SLE12 SP1 contents completed.
o Continue system test.
o Start first stress and certification tests.
o Run intense stress and certification tests.
o Fix problems found during update, performance or certification tests.
o Fix critical and blocker bugs.
For the next Beta-Release we are targetting these actions and milestones:
o Milestone: All certification tests completed.
o Milestone: Update and performance tests completed.
o Milestone: All blocker bugs resolved.
o Milestone: All documentation available (english only).
o Milestone: All security updates integrated.
o Milestone: Only critical or blocker bugfixes allowed.
o Official partner acceptance starts.
o Run final stress, certification, performance, update and regression tests.
o Release notes entries for all features have been written
o Only showstopper and security bugfixes get integrated from now on
Thanks in advance for all your testing
Your SUSE Linux Enterprise Team
--
Frederic Crozat
Enterprise Desktop Release Manager
SUSE
-------------- next part --------------
o Updated MozillaFirefox (security/bugfix/feature)
- hotfix update (bsc#940918)
* MFSA 2015-78/CVE-2015-4495
(bmo#1178058)
Same origin violation
[-fix_expanded_principals]
* Remove PlayPreview registration from PDF Viewer
(bmo#1179262)
[-fix_pdfjs_playpreview]
-----------------------------------------------------------------------------
o Updated aide (security/bugfix/feature)
- aide-dynamic.patch: do not overwrite the dl* apis, as we link
dynamic against libraries and FIPS mode uses dlopen.
bsc#932421
-----------------------------------------------------------------------------
o Updated autoyast2 (security/bugfix/feature)
- Do not restart dbus service after installation. Otherwise some
other services will hang. (bnc#937900)
- 3.1.91
-----------------------------------------------------------------------------
o Updated babeltrace (security/bugfix/feature)
- enable build for aarch64 (fate#318370)
-----------------------------------------------------------------------------
o Updated cups-filters (security/bugfix/feature)
- cups-filters-1.0.58-CVE-2015-3258-CVE-2015-3279.patch is a diff
of textcommon.c and texttopdf.c between cups-filters-1.0.58
and cups-filters-1.0.71 where CVE-2015-3258 and CVE-2015-3279
are fixed (bsc#936281 and bsc#937018).
-----------------------------------------------------------------------------
o Added davfs2 (feature)
## WARNING - the following diff is a head -20 proposal
* Fri Jul 17 2015 jthumshirn at suse.com
- Import of davfs2 to SLE12-SP1 from SLE11-SP4 (FATE#318116)
* Tue Nov 25 2014 draht at schaltsekun.de
- upgrade to 1.5.2; changes include:
* fix for insecure use of system(). This is related to CVE-2014-4362.
* fixes for usage of symlinks for mountpoints and mtab
* improved cookie support
* neon 0.30 support
* memory leak fixes
* compiler options for hardened build.
* load the fuse kernel module automatically.
* new mount option grpid, trust_ca_cert and trust_server_cert.
* This list is not exhaustive. Please have a look at the ChangeLog
for a complete list.
- obsoleted and removed from package:
* davfs2-fix-formats.patch
-----------------------------------------------------------------------------
o Updated desktop-translations (security/bugfix/feature)
- Update translations, still WIP (SLE 12 SP1 beta3); bsc#933411.
-----------------------------------------------------------------------------
o Updated dmraid (security/bugfix/feature)
- Own /usr/lib/tmpfiles.d: in the past, we were lucky for another
package in the build dependency chain to own this for us, but in
fact we should do it ourselves (bnc#942987)
-----------------------------------------------------------------------------
o Updated e2fsprogs (security/bugfix/feature)
- libext2fs-fix-potential-buffer-overflow-in-closefs.patch: libext2fs: fix
potential buffer overflow in closefs() (bsc#918346 CVE-2015-1572)
- libext2fs-avoid-buffer-overflow-if-s_first_meta_bg-i.patch: libext2fs:
avoid buffer overflow if s_first_meta_bg is too big (bsc#915402 CVE-2015-0247)
-----------------------------------------------------------------------------
o Updated gnome-control-center (security/bugfix/feature)
- Fix untranslatability of "Change Password" (bnc#880303,
gnome-control-center-change-password-l10n.patch)
- Add support for 8.5 time zone to fix compilation failure
(gnome-control-center-Pyongyang-Time.patch,
gnome-control-center-Pyongyang-Time.tar.bz2, bgo#753643).
-----------------------------------------------------------------------------
o Updated hwinfo (security/bugfix/feature)
- added some comments
- updated pci id data from http://pci-ids.ucw.cz
- udated usb id data from http://www.linux-usb.org/usb.ids
- add pci ids to nvme devices
- watch out: nvme disks are pci devices
- update git2log script
- read disk model info also via scsi inquiry command (bsc#943008)
- 21.20
-----------------------------------------------------------------------------
o Updated infinipath-psm (security/bugfix/feature)
- Set libdir when calling make for installing.
- Add infinipath-non_executable_stack.patch to mark the stack
unexecutable (bsc#942689).
- Fix name of libdir.
- Adapt patches to changed sources.
- Fix tarball name.
- Update to 3.3 from OFED 3.18rc2.
-----------------------------------------------------------------------------
o Updated kbd (security/bugfix/feature)
- Fix loading of some keymaps (bsc#915473,
kbd-1.15.2-loadkeys-fix-loading.patch).
-----------------------------------------------------------------------------
o Updated kdump (security/bugfix/feature)
- kdump-udev-skip-restart-if-not-loaded.patch: Simplify udev reload
rules and skip reload if not active (bsc#905690).
- kdump-systemd-integration.patch: Improve systemd integration
(FATE#319020).
- Remove kdump.service: Superseded by the upstream service file.
- kdump-x86_64-kexec-file-syscall.patch: Refreshed.
- kdump-fix-extractKernelConfigELF.patch: Fix
KernelTool::extractKernelConfigELF if config not present
(bsc#941088).
- kdump-relocatable-check-config.patch: Use kernel config to check
if a kernel is relocatable (bsc#941088).
- kdump-pre-generate-mount-units.patch: Pre-generate kdump mount
units (bsc#942895).
- kdump-remove-unnecessary-systemd-dependencies.patch: Remove
unnecessary dependencies from kdump-save.service (bsc#942895).
-----------------------------------------------------------------------------
o Updated kernel-source (security/bugfix/feature)
- powerpc/powernv: Add poweroff (EPOW, DPO) events support for
PowerNV platform (bsc#943837).
- commit 3bafb3f
- drm/i915: Only print hotplug event message when hotplug bit
is set (bsc#942938).
- drm/i915: Use an interrupt save spinlock in
intel_hpd_irq_handler() (bsc#942938).
- drm/i915: Queue reenable timer also when
enable_hotplug_processing is false (bsc#942938).
- drm/i915: Avoid race of intel_crt_detect_hotplug() with HPD
interrupt (bsc#942938).
- drm/i915: Make hpd arrays big enough to avoid out of bounds
access (bsc#942938).
- commit 0f0e346
- Refresh patches.kabi/kabi-protect-struct-mm_context_t.patch.
Fix the ldt interface removal comment. Thx to jbeulich.
- commit 44132d1
- cxgb4: Force uninitialized state if FW in adapter is unsupported
(bsc#943468 bsc#941953).
- commit 7d80e0d
- xfs: Fix file type directory corruption for btree directories
(bsc#941305).
- commit fc4872d
- Refresh
patches.drivers/ixgbe-0157-ixgbe-Use-a-signed-type-to-hold-error-codes.patch.
Add missing hunk in backport.
- commit 777d127
- drm/radeon: fix hotplug race at startup (bsc#942307).
- commit 9a3e78f
- ixgbevf: Use dev_kfree_skb_any in xmit path, not dev_kfree_skb
(bsc#922835 FATE#318522).
- ixgbevf: Add RSS Key query code (bsc#922835 FATE#318522).
- ixgbevf: Add a RETA query code (bsc#922835 FATE#318522).
- ixgbevf: Use ether_addr_copy() instead of memcpy() (bsc#922835
FATE#318522).
- ixgbevf: Fix code comments and whitespace (bsc#922835
FATE#318522).
- ethernet: codespell comment spelling fixes (bsc#922835
FATE#318522).
- ixgbevf: combine all of the tasks into a single service task
(bsc#922835 FATE#318522).
- ixgbevf: rewrite watchdog task to function similar to igbvf
(bsc#922835 FATE#318522).
- ixgbevf: Add code to check for Tx hang (bsc#922835 FATE#318522).
- ixgbevf: Fix ordering of shutdown to correctly disable Rx and Tx
(bsc#922835 FATE#318522).
- ixgbevf: set vlan_features in a single write instead of several
ORs (bsc#922835 FATE#318522).
- ixgbevf: add RSS support for X550 (bsc#922835 FATE#318522).
- ixgbevf: enable multiple queue support (bsc#922835 FATE#318522).
- ixgbevf: Fix checksum error when using stacked vlan (bsc#922835
FATE#318522).
- ixgbevf: fix possible crashes in probe and remove (bsc#922835
FATE#318522).
- ixgbevf: add support for X550 VFs (bsc#922835 FATE#318522).
- ixgbevf: add netpoll support (bsc#922835 FATE#318522).
- ixgbevf: compare total_rx_packets and budget in
ixgbevf_clean_rx_irq (bsc#922835 FATE#318522).
- ixgbevf: Change receive model to use double buffered page
based receives (bsc#922835 FATE#318522).
- ixgbevf: Update Rx next to clean in real time (bsc#922835
FATE#318522).
- ixgbevf: reorder main loop in ixgbe_clean_rx_irq to allow for
do/while/continue (bsc#922835 FATE#318522).
- ixgbevf: Cleanup variable usage, improve stack performance
(bsc#922835 FATE#318522).
- ixgbevf: Combine the logic for post Rx processing into single
function (bsc#922835 FATE#318522).
- ixgbevf: Test Rx status bits directly out of the descriptor
(bsc#922835 FATE#318522).
- ixgbevf: Update ixgbevf_alloc_rx_buffers to handle clearing
of status bits (bsc#922835 FATE#318522).
- ixgbevf: remove useless bd_number from struct ixgbevf_adapter
(bsc#922835 FATE#318522).
- ixgbevf: Resolve missing-field-initializers warnings (bsc#922835
FATE#318522).
- ixgbevf: introduce delay for checking VFLINKS on 82599
(bsc#922835 FATE#318522).
- PCI: Remove DEFINE_PCI_DEVICE_TABLE macro use (bsc#922835
FATE#318522).
- ixgbevf: Remove unused get_supported_physical_layer pointer
(bsc#922835 FATE#318522).
- net: use SPEED_UNKNOWN and DUPLEX_UNKNOWN when appropriate
(bsc#922835 FATE#318522).
- net: get rid of SET_ETHTOOL_OPS (bsc#922835 FATE#318522).
- ixgbevf: remove 82599 from the module description (bsc#922835
FATE#318522).
- ixgbevf: remove open-coded skb_cow_head (bsc#922835
FATE#318522).
- ixgbevf: Add bit to mark work queue initialization (bsc#922835
FATE#318522).
- ixgbevf: Fix rcu warnings induced by LER (bsc#922835
FATE#318522).
- ixgbevf: Change ixgbe_read_reg to ixgbevf_read_reg (bsc#922835
FATE#318522).
- ixgbevf: Additional adapter removal checks (bsc#922835
FATE#318522).
- ixgbevf: Check for adapter removal on register writes
(bsc#922835 FATE#318522).
- ixgbevf: Check register reads for adapter removal (bsc#922835
FATE#318522).
- ixgbevf: Make the ethtool register test use accessors
(bsc#922835 FATE#318522).
- ixgbevf: Use static inlines instead of macros (bsc#922835
FATE#318522).
- ixgbevf: Convert uses of __constant_<foo> to <foo> (bsc#922835
FATE#318522).
- ixgbevf: Protect ixgbevf_down with __IXGBEVF_DOWN bit
(bsc#922835 FATE#318522).
- ixgbevf: Indicate removal state explicitly (bsc#922835
FATE#318522).
- net: Replace u64_stats_fetch_begin_bh to
u64_stats_fetch_begin_irq (bsc#922835 FATE#318522).
- ixgbevf: delete unneeded call to pci_set_power_state (bsc#922835
FATE#318522).
- ixgbevf: fix skb->pkt_type checks (bsc#922835 FATE#318522).
- ixgbevf: add check for CHECKSUM_PARTIAL when doing TSO
(bsc#922835 FATE#318522).
- ixgbevf: Use pci_enable_msix_range() instead of
pci_enable_msix() (bsc#922835 FATE#318522).
- ixgbe: Remember to write ixfi changes after modifying
(bsc#922833 FATE#318521).
- ixgbe: fix X550 default set_phy_power method (bsc#922833
FATE#318521).
- ixgbe: Set lan_id before using I2C (bsc#922833 FATE#318521).
- ixgbe: add link check for X550 copper (bsc#922833 FATE#318521).
- ixgbe: Add support for another X550 device (bsc#922833
FATE#318521).
- ixgbe: fix X550 PHY function pointers (bsc#922833 FATE#318521).
- ixgbe: fix X550 devices init flow (bsc#922833 FATE#318521).
- ixgbe: fix bug in not clearing counters for X550 devices
(bsc#922833 FATE#318521).
- ixgbe: fix issue with sfp events with new X550 devices
(bsc#922833 FATE#318521).
- ixgbe: add support for interrupts from X550 external PHY
(bsc#922833 FATE#318521).
- ixgbe: Add const string for overheat message (bsc#922833
FATE#318521).
- ixgbe: Add reset for X550 device (bsc#922833 FATE#318521).
- ixgbe: add X550 support for external PHY and forced 1G/10G
support (bsc#922833 FATE#318521).
- ixgbe: Restore ESDP settings after MAC reset (bsc#922833
FATE#318521).
- ixgbe: Add a PHY power state method (bsc#922833 FATE#318521).
- ixgbe: add define for X557 PHY ID (bsc#922833 FATE#318521).
- ixgbe: add support for WoL and autoneg FC for some X550 devices
(bsc#922833 FATE#318521).
- ixgbe: add array of MAC type dependent values (bsc#922833
FATE#318521).
- ixgbe: Allow flow director to use entire queue space (bsc#922833
FATE#318521).
- ethtool: Add helper routines to pass vf to rx_flow_spec
(bsc#922833 FATE#318521).
- ixgbe: Use a signed type to hold error codes (bsc#922833
FATE#318521).
- ixgbe: Release semaphore bits in the right order (bsc#922833
FATE#318521).
- ixgbe: Fix IOSF SB access issues (bsc#922833 FATE#318521).
- ixgbe: Drop unnecessary call to rcu_barrier (bsc#922833
FATE#318521).
- ixgbe: Remove NETIF_F_HW_VLAN_CTAG_FILTER from hw_features
(bsc#922833 FATE#318521).
- ixgbe: adds x550 specific FCoE offloads (bsc#922833
FATE#318521).
- ixgbe: add support for X550 source_address_prunning (bsc#922833
FATE#318521).
- ixgbe: add new bridge mode support function (bsc#922833
FATE#318521).
- ixgbe: Move bridge mode from flag to variable (bsc#922833
FATE#318521).
- ethernet: Use bool function returns of true/false instead of
1/0 (bsc#922833 FATE#318521).
- ixgbe: Remove IXGBE_FLAG_IN_NETPOLL since it doesn't do anything
(bsc#922833 FATE#318521).
- ixgbe: enable relaxed ordering for SPARC (bsc#922833
FATE#318521).
- ixgbe: cleanup make ixgbe_set_ethertype_anti_spoofing_X550
static (bsc#922833 FATE#318521).
- ixgbe: Clean up type inconsistency (bsc#922833 FATE#318521).
- ixgbe: add new wrapper for X550 support (bsc#922833
FATE#318521).
- ethernet: codespell comment spelling fixes (bsc#922833
FATE#318521).
- ethernet: Use eth_<foo>_addr instead of memset (bsc#922833
FATE#318521).
- ixgbe: add Tx anti spoofing support (bsc#922833 FATE#318521).
- ixgbe: Cleanup probe to remove redundant attempt to ID PHY
(bsc#922833 FATE#318521).
- ixgbe: cleanup redundant default method set_rxpba (bsc#922833
FATE#318521).
- ixgbe: fix setting port VLAN (bsc#922833 FATE#318521).
- ixgbe: allow multiple queues in SRIOV mode (bsc#922833
FATE#318521).
- ixgbe: cleanup sparse errors in new ixgbe_x550.c file
(bsc#922833 FATE#318521).
- net: ixgbe: convert to timecounter adjtime (bsc#922833
FATE#318521).
- ixgbe: Fix checksum error when using stacked vlan (bsc#922833
FATE#318521).
- fm10k/igb/ixgbe: Use dma_rmb on Rx descriptor reads (bsc#922833
FATE#318521).
- ethernet/intel: Use napi_alloc_skb (bsc#922833 FATE#318521).
- ethernet/intel: Use eth_skb_pad and skb_put_padto helpers
(bsc#922833 FATE#318521).
- ixgbe: fix crash on rmmod after probe fail (bsc#922833
FATE#318521).
- ixgbe: bump version number (bsc#922833 FATE#318521).
- ixgbe: Add X550 support function pointers (bsc#922833
FATE#318521).
- ixgbe: cleanup checksum to allow error results (bsc#922833
FATE#318521).
- ixgbe: add methods for combined read and write operations
(bsc#922833 FATE#318521).
- ixgbe: Add x550 SW/FW semaphore support (bsc#922833
FATE#318521).
- ixgbe: Add timeout parameter to ixgbe_host_interface_command
(bsc#922833 FATE#318521).
- ixgbe: add support for X550 extended RSS support (bsc#922833
FATE#318521).
- ixgbe: remove CIAA/D register reads from bad VF check
(bsc#922833 FATE#318521).
- ixgbe: Look up MAC address in Open Firmware or IDPROM
(bsc#922833 FATE#318521).
- ixgbe: Remove tail write abstraction and add missing barrier
(bsc#922833 FATE#318521).
- ixgbe: Clean-up page reuse code (bsc#922833 FATE#318521).
- net: Check for presence of IFLA_AF_SPEC (bsc#922833
FATE#318521).
- net: Validate IFLA_BRIDGE_MODE attribute length (bsc#922833
FATE#318521).
- ixgbe: fix use after free adapter->state test in
ixgbe_remove/ixgbe_probe (bsc#922833 FATE#318521).
- ixgbe: Correctly disable VLAN filter in promiscuous mode
(bsc#922833 FATE#318521).
- ixgbe: use netdev_rss_key_fill() helper (bsc#922833
FATE#318521).
- fm10k/igb/ixgbe: Replace __skb_alloc_page with dev_alloc_page
(bsc#922833 FATE#318521).
- ixgbe: add helper function for setting RSS key in preparation
of X550 (bsc#922833 FATE#318521).
- ixgbe: Add new support for X550 MAC's (bsc#922833 FATE#318521).
- ixgbe: cleanup move setting PFQDE.HIDE_VLAN to support function
(bsc#922833 FATE#318521).
- ixgbe: cleanup ixgbe_ndo_set_vf_vlan (bsc#922833 FATE#318521).
- ixgbe: fix X540 Completion timeout (bsc#922833 FATE#318521).
- ixgbe: fix race when setting advertised speed (bsc#922833
FATE#318521).
- ixgbe: need not repeat init skb with NULL (bsc#922833
FATE#318521).
- ixgbe: check for vfs outside of sriov_num_vfs before dereference
(bsc#922833 FATE#318521).
- ixgbe: fix race accessing page->_count (bsc#922833 FATE#318521).
- ixgbe: delete one duplicate marcro definition of
IXGBE_MAX_L2A_QUEUES (bsc#922833 FATE#318521).
- ixgbe: fix setting of TXDCTL.WTRHESH when ITR is set to 0 and
no BQL (bsc#922833 FATE#318521).
- ixgbe: remove wait loop on autoneg for copper devices
(bsc#922833 FATE#318521).
- ixgbe: Convert the normal transmit complete path to
dev_consume_skb_any() (bsc#922833 FATE#318521).
- ixgbe: remove IXGBE_FLAG_MSI(X)_CAPABLE flags (bsc#922833
FATE#318521).
- ixgbe: add warnings for other disabled features without MSI-X
support (bsc#922833 FATE#318521).
- ixgbe: use e_dev_warn instead of netif_printk (bsc#922833
FATE#318521).
- ixgbe: use e_dev_warn instead of e_err for displaying warning
(bsc#922833 FATE#318521).
- ixgbe: determine vector count inside ixgbe_acquire_msix_vectors
(bsc#922833 FATE#318521).
- ixgbe: move msix_entries allocation into
ixgbe_acquire_msix_vectors (bsc#922833 FATE#318521).
- ixgbe: return integer from ixgbe_acquire_msix_vectors
(bsc#922833 FATE#318521).
- ixgbe: use e_dev_warn instead of netif_printk (bsc#922833
FATE#318521).
- ixgbe: Do not schedule an uninitialized workqueue entry
(bsc#922833 FATE#318521).
- ixgbe: remove useless bd_number from adapter struct (bsc#922833
FATE#318521).
- ixgbe: Refactor busy poll socket code to address multiple issues
(bsc#922833 FATE#318521).
- ixgbe: Drop Rx alloc at end of Rx cleanup (bsc#922833
FATE#318521).
- ixgbe: Resolve warnings produced in W=2 builds (bsc#922833
FATE#318521).
- ixgbe: use new eth_get_headlen interface (bsc#922833
FATE#318521).
- ixgbe: limit combined total of macvlan and SR-IOV VFs
(bsc#922833 FATE#318521).
- ixgbe: add comment noting recalculation of queues (bsc#922833
FATE#318521).
- ixgbe: reset interface on link loss with pending Tx work from
the VF (bsc#922833 FATE#318521).
- ixgbe: Cleanup FDB handling code (bsc#922833 FATE#318521).
- ixgbe: flush when in xmit_more mode and under descriptor
pressure (bsc#922833 FATE#318521).
- PCI: Remove DEFINE_PCI_DEVICE_TABLE macro use (bsc#922833
FATE#318521).
- ixgbe: Make return values more direct (bsc#922833 FATE#318521).
- ixgbe: Delete a bunch of dead code (bsc#922833 FATE#318521).
- ixgbe: Fix ixgbe_write_mbx error result (bsc#922833
FATE#318521).
- ixgbe: Correct X540 semaphore error (bsc#922833 FATE#318521).
- ixgbe: Fix spurious release of semaphore in EEPROM access
(bsc#922833 FATE#318521).
- ixgbe: Convert some udelays to usleep_range (bsc#922833
FATE#318521).
- ixgbe: don't check minimum link when direct assigned to virtual
machine (bsc#922833 FATE#318521).
- ixgbe: fix use of list_for_each in ixgbe_enumerate_functions
(bsc#922833 FATE#318521).
- ixgbe: Change some uses of strncpy to strlcpy (bsc#922833
FATE#318521).
- ixgbe: Fix possible null-dereference in error path (bsc#922833
FATE#318521).
- ixgbe: remove unnecessary break after return (bsc#922833
FATE#318521).
- ixgbe: remove unnecessary break after goto (bsc#922833
FATE#318521).
- ixgbe: change PTP NSECS_PER_SEC to IXGBE_PTP_PPS_HALF_SECOND
(bsc#922833 FATE#318521).
- net: use SPEED_UNKNOWN and DUPLEX_UNKNOWN when appropriate
(bsc#922833 FATE#318521).
- ixgbe: remove linux/export.h header from ixgbe_ptp.c (bsc#922833
FATE#318521).
- ixgbe: avoid duplicate code in suspend and stop paths
(bsc#922833 FATE#318521).
- ixgbe: separate the PTP suspend and stop actions (bsc#922833
FATE#318521).
- ixgbe: extract PTP clock device from ptp_init (bsc#922833
FATE#318521).
- ixgbe: allow ixgbe_ptp_reset to maintain current hwtstamp config
(bsc#922833 FATE#318521).
- ixgbe: extract the hardware setup from the
ixgbe_ptp_set_ts_config (bsc#922833 FATE#318521).
- ixgbe: rename ixgbe_ptp_enable to ixgbe_ptp_feature_enable
(bsc#922833 FATE#318521).
- ixgbe: fix linking at 100Mbps on copper devices with MNG FW
enabled (bsc#922833 FATE#318521).
- igb/ixgbe: remove return statements for void functions
(bsc#922833 FATE#318521).
- ixgbe: add /* fallthrough */ comment to case statements
(bsc#922833 FATE#318521).
- ixgbe: add space between operands to & (bsc#922833 FATE#318521).
- ixgbe: don't check NULL for debugfs_remove_recursive (bsc#922833
FATE#318521).
- ixgbe: add braces around else block (bsc#922833 FATE#318521).
- ixgbe: fix several concatenated strings to single line
(bsc#922833 FATE#318521).
- ixgbe: fix checkpatch style of blank line after declaration
(bsc#922833 FATE#318521).
- ixgbe: fix function-like macro, remove semicolon (bsc#922833
FATE#318521).
- ixgbe: clean up checkpatch warnings about CODE_INDENT and
LEADING_SPACE (bsc#922833 FATE#318521).
- net: get rid of SET_ETHTOOL_OPS (bsc#922833 FATE#318521).
- ixgbe: improve mac filter handling (bsc#922833 FATE#318521).
- ixgbe: change handling of multicast filters (bsc#922833
FATE#318521).
- ixgbe: remove vlan_filter_disable and enable functions
(bsc#922833 FATE#318521).
- ixgbe: Use out-of-line function for register reads (bsc#922833
FATE#318521).
- ixgbe: convert low_water into an array (bsc#922833 FATE#318521).
- e1000e/igb/ixgbe/i40e: fix message terminations (bsc#922833
FATE#318521).
- ixgbe: clean up Rx time stamping code (bsc#922833 FATE#318521).
- ixgbe: remove open-coded skb_cow_head (bsc#922833 FATE#318521).
- ixgbe: Add bit to mark service task initialization (bsc#922833
FATE#318521).
- ixgbe: Fix rcu warnings induced by LER (bsc#922833 FATE#318521).
- ixgbe: fix ixgbe_check_reset_blocked() declaration (bsc#922833
FATE#318521).
- ixgbe: fix race conditions on queuing skb for HW time stamp
(bsc#922833 FATE#318521).
- ixgbe: never generate both software and hardware timestamps
(bsc#922833 FATE#318521).
- ixgbe: remove redundant if clause from PTP work (bsc#922833
FATE#318521).
- ixgbe: Break recursion in case of removal (bsc#922833
FATE#318521).
- ixgbe: enable tx queues after link up (bsc#922833 FATE#318521).
- ixgbe: Stop cacheing if the MNG FW enabled (bsc#922833
FATE#318521).
- ixgbe: clean up ixgbe_atr_compute_perfect_hash_82599 (bsc#922833
FATE#318521).
- ixgbe: use ixgbe_read_pci_cfg_word (bsc#922833 FATE#318521).
- ixgbe: remove unused media type (bsc#922833 FATE#318521).
- ixgbe: fix ixgbe_setup_mac_link_82599 autoc variables
(bsc#922833 FATE#318521).
- ixgbe: fix ixgbe_stop_mac_link_on_d3_82599 to check mng
correctly (bsc#922833 FATE#318521).
- ixgbe: check Core Clock Disable bit (bsc#922833 FATE#318521).
- ixgbe: fix errors related to protected AUTOC calls (bsc#922833
FATE#318521).
- ixgbe: Convert uses of __constant_<foo> to <foo> (bsc#922833
FATE#318521).
- ixgbe: add ixgbe_write_pci_cfg_word with ixgbe_removed check
(bsc#922833 FATE#318521).
- ixgbe: Don't receive packets when the napi budget == 0
(bsc#922833 FATE#318521).
- net: Replace u64_stats_fetch_begin_bh to
u64_stats_fetch_begin_irq (bsc#922833 FATE#318521).
- ixgbe: fix some multiline hw_dbg prints (bsc#922833
FATE#318521).
- ixgbe: fixup header for ixgbe_set_rxpba_82598 (bsc#922833
FATE#318521).
- ixgbe: add Linux NICS mailing list to contact info (bsc#922833
FATE#318521).
- ixgbe: move setting rx_pb_size into get_invariants (bsc#922833
FATE#318521).
- ixgbe: Fix format string in ixgbe_fcoe.c (bsc#922833
FATE#318521).
- net: ixgbe calls skb_set_hash (bsc#922833 FATE#318521).
- ixgbe: implement SIOCGHWTSTAMP ioctl (bsc#922833 FATE#318521).
- ixgbe: Check config reads for removal (bsc#922833 FATE#318521).
- ixgbe: Fix up some ethtool results when adapter is removed
(bsc#922833 FATE#318521).
- ixgbe: Restore hw_addr in LER recovery paths (bsc#922833
FATE#318521).
- ixgbe: Add check for FW veto bit (bsc#922833 FATE#318521).
- ixgbe: fix bit toggled for 82599 reset fix (bsc#922833
FATE#318521).
- ixgbe: collect all 82599 AUTOC code in one function (bsc#922833
FATE#318521).
- ixgbe: fix to use correct timeout interval for memory read
completion (bsc#922833 FATE#318521).
- ixgbe: Add WoL support for a new device (bsc#922833
FATE#318521).
- ixgbe: don't use magic size number to assign ptp_caps.name
(bsc#922833 FATE#318521).
- ixgbe: modify behavior on receiving a HW ECC error (bsc#922833
FATE#318521).
- ixgbe: Use pci_enable_msix_range() instead of pci_enable_msix()
(bsc#922833 FATE#318521).
- commit 67c8481
- kernel: do full redraw of the 3270 screen on reconnect
(bnc#943476, LTC#129509).
- commit 2dfdd72
- series.conf: Comment cleanup
- commit 98b904e
- NVMe: add sysfs and ioctl controller reset.
- NVMe: Remove duplicate compat SG_IO code (bsc#943458).
- NVMe: Use Log Page constants in SCSI emulation (bsc#943458).
- NVMe: Update data structures for NVMe 1.2 (bsc#943458).
- NVMe: Update namespace and controller identify structures to
the 1.1a spec (bsc#943458).
- NVMe: Register management handle under nvme class (bsc#943458).
- commit 438248c
- block: blk-merge: fix blk_recount_segments() (bnc#934430).
- blk-merge: recaculate segment if it isn't less than max segments
(bnc#934430).
- blk-merge: don't compute bi_phys_segments from bi_vcnt for
cloned bio (bnc#934430).
- blk-merge: fix blk_recount_segments (bnc#934430).
- block: add queue flag for disabling SG merging (bnc#934430).
- commit b577263
- inotify: Fix nested sleeps in inotify_read() (bsc#940925).
- commit 8e70bfa
- Refresh
patches.suse/mm-implement-split-page-table-lock-for-PMD-level.patch.
- Refresh
patches.suse/mm-place-page-pmd_huge_pte-to-right-union.patch.
- Delete
patches.kabi/mm-make-page-pfmemalloc-check-more-robust-kabi.patch.
- commit 8ad27fb
- crypto: nx - rename nx842_{init, exit} to nx842_pseries_{init,
exit} (bsc#942476).
- crypto: nx - do not emit extra output if status is disabled
(bsc#942476).
- crypto: nx - reduce chattiness of platform drivers (bsc#942476).
- crypto: nx/842 - Fix context corruption (bsc#942476).
- crypto: nx - remove __init/__exit from VIO functions
(bsc#942476).
- crypto: nx - remove pSeries NX 'status' field (bsc#942476).
- crypto: nx - move kzalloc() out of spinlock (bsc#942476).
- crypto: nx - don't register pSeries driver if ENODEV
(bsc#942476).
- crypto: nx - use common code for both NX decompress
(bsc#942476).
- crypto: nx - merge nx-compress and nx-compress-crypto
(bsc#942476).
- crypto: nx - rename nx-842-crypto.c to nx-842.c (bsc#942476).
- crypto: nx - make platform drivers directly register with crypto
(bsc#942476).
- Update config files.
- commit 618ece4
- igb: don't reuse pages with pfmemalloc flag fix (bnc#920016).
- fm10k: Clean-up page reuse code fix (bnc#920016).
- Refresh
patches.drivers/igb-0073-igb-Clean-up-page-reuse-code.patch.
- commit 8a463cf
- crypto: nx - nx842_OF_upd_status should return ENODEV if device
is not 'okay' (bsc#942476).
- commit 25841e7
- mm: filemap: Avoid unnecessary barriers and waitqueue lookups -fix
(VM/FS Performance (bnc#941951)).
- commit 1f4a409
- aio: fix reqs_available handling ((bsc#943378).
- commit e32ca1b
- x86/asm/entry/64: Remove pointless jump to irq_return
(bsc#938706, CVE-2015-5157).
- x86/ldt: Make modify_ldt synchronous (bsc#938706,
CVE-2015-5157).
- Do not reserve crashkernel high memory if crashkernel low
memoryreserving failed (bsc#939145).
- x86/smpboot: Check for cpu_active on cpu initialization
(bsc#932285).
- Update Xen patches to 3.12.46.
- Refresh patches.xen/xen3-patch-2.6.29 (bsc#942160).
- commit 9aef364
- dm cache mq: fix memory allocation failure for large cache
devices (bsc#942707).
- commit 345da98
- cxgb4: Add PCI device ids for few more T5 and T6 adapters
(bsc#943114).
- cxgb4: Add PCI device ID for custom T522 & T520 adapter
(bsc#943114).
- cxgb4: Fix incorrect sequence numbers shown in devlog
(bsc#943116).
- commit 2ce6efd
- PM / hibernate: Reserve hibernation key and erasefootprints
(fate#316350).
- x86/asm/entry/64: Remove pointless jump to irq_return
(bsc#938706, CVE-2015-5157).
- x86/ldt: Make modify_ldt synchronous (bsc#938706,
CVE-2015-5157).
- Do not reserve crashkernel high memory if crashkernel low
memoryreserving failed (bsc#939145).
- mm: Send one IPI per CPU to TLB flush all entries afterunmapping
pages (VM Performance (Reduce IPIs during reclaim)).
- x86/smpboot: Check for cpu_active on cpu initialization
(bsc#932285).
- Update Xen patches to 3.12.46.
- Update Xen config files (KEXEC=n).
- Delete patches.xen/xen-x86_64-batch-tlb-unmap.
- commit cb291eb
- call scsi_activate_tcq() per SCSi target and enabled
tagged_support inside struct scsi_device (bsc#922632).
- commit dc92efa
- Update config files.
Disable CHELSIO_T4_DCB and CHELSIO_T4_FCOE as default.(bsc#942910)
- commit a8b2952
- Linux 3.12.47 (CVE-2015-5157 CVE-2015-6252 bcn#851603 bsc#936875
bsc#938706 bsc#939994 bsc#942367).
- kABI: protect struct mm_context_t.
- Refresh
patches.drivers/0050-target-iscsi-Remove-macros-that-contain-typecasts.patch.
- Refresh
patches.drivers/0163-rbd-initial-discard-bits-from-Guangliang-Zhao.patch.
- Refresh
patches.drivers/0169-rbd-use-helpers-to-handle-discard-for-layered-images.patch.
- Refresh
patches.fixes/futex-avoid-race-between-requeue-and-wake.patch.
- Refresh patches.kabi/kabi-protect-struct-iscsi_conn.patch.
- Refresh
patches.suse/0002-md-raid1-add-failfast-handling-for-reads.patch.
- Refresh
patches.suse/arch-Clean-up-asm-barrier.h-implementations-using-asm-generic-barrier.h.patch.
- Refresh
patches.xen/xen3-08-x86-ldt-make-modify_ldt-synchronous.patch.
- Delete
patches.arch/01-x86-asm-entry-64-fold-the-test_in_nmi-macro-into-its-only-user.patch.
- Delete
patches.arch/02-x86-asm-entry-64-remove-a-redundant-jump.patch.
- Delete
patches.arch/03-x86-asm-entry-64-remove-pointless-jump-to-irq_return.patch.
- Delete
patches.arch/04-x86-nmi-enable-nested-do_nmi-handling-for-64-bit-kernels.patch.
- Delete
patches.arch/05-x86-nmi-64-remove-asm-code-that-saves-cr2.patch.
- Delete
patches.arch/06-x86-nmi-64-switch-stacks-on-userspace-nmi-entry.patch.
- Delete
patches.arch/07-rcu-move-lockless_dereference-out-of-rcupdate-h.patch.
- Delete
patches.arch/08-x86-ldt-make-modify_ldt-synchronous.patch.
- Delete patches.arch/ipr-Fix-incorrect-trace-indexing.patch.
- Delete
patches.arch/ipr-Fix-invalid-array-indexing-for-HRRQ.patch.
- Delete
patches.drivers/vhost-actually-track-log-eventfd-file.patch.
- Delete
patches.fixes/0001-md-use-kzalloc-when-bitmap-is-disabled.patch.
- Delete patches.fixes/0001-st-null-pointer-deref-panic.patch.
- Delete
patches.fixes/futex-Fix-a-race-condition-between-REQUEUE_PI-and-task-death.patch.
- Delete
patches.suse/arch-Introduce-smp_load_acquire-smp_store_release.patch.
- Delete
patches.xen/xen3-03-x86-asm-entry-64-remove-pointless-jump-to-irq_return.patch.
- commit 7fa26d2
- supported.conf: support UAS to let all storage devices work without kernel-extra
- commit c8843c5
- dm cache mq: fix memory allocation failure for large cache
devices (bsc#942707).
- commit 8c09965
- uas: Set max_sectors_240 quirk for ASM1053 devices (bnc#934942).
- uas: Add US_FL_MAX_SECTORS_240 flag (bnc#934942).
- uas: Reduce number of function arguments for uas_alloc_foo
functions (bnc#934942).
- USB: storage: use %*ph specifier to dump small buffers
(bnc#934942).
- uas: Add response iu handling (bnc#934942).
- uas: Log error codes when logging errors (bnc#934942).
- uas: Cleanup uas_log_cmd_state usage (bnc#934942).
- uas: Remove support for old sense ui as used in pre-production
hardware (bnc#934942).
- uas: Drop COMMAND_COMPLETED flag (bnc#934942).
- uas: Use scsi_print_command (bnc#934942).
- uas: Do not log urb status error on cancellation (bnc#934942).
- uas: pre_reset and suspend: Fix a few races (bnc#934942).
- uas: Fix memleak of non-submitted urbs (bnc#934942).
- uas: Drop all references to a scsi_cmnd once it has been aborted
(bnc#934942).
- uas: Remove cmnd reference from the cmd urb (bnc#934942).
- uas: Drop inflight list (bnc#934942).
- uas: zap_pending: data urbs should have completed at this time
(bnc#934942).
- UAS: fixup for remaining use of dead_list (bnc#934942).
- uas: Simplify reset / disconnect handling (bnc#934942).
- uas: Free data urbs on completion (bnc#934942).
- uas: Simplify unlink of data urbs on error (bnc#934942).
- uas: Check against unexpected completions (bnc#934942).
- uas: Do not use scsi_host_find_tag (bnc#934942).
- uas: Add uas_get_tag() helper function (bnc#934942).
- uas: Fix resetting flag handling (bnc#934942).
- uas: Remove task-management / abort error handling code
(bnc#934942).
- uas: Do not log urb status error on cancellation (bnc#934942).
- commit eda04d9
- bio: fix argument of __bio_add_page() for max_sectors > 0xffff
(bsc#942531).
- commit 9dfd3da
- mm: make page pfmemalloc check more robust (bnc#920016).
- kabi:
patches.fixes/mm-make-page-pfmemalloc-check-more-robust.patch
(bnc#920016).
- Refresh
patches.suse/mm-implement-split-page-table-lock-for-PMD-level.patch.
- Refresh
patches.suse/mm-place-page-pmd_huge_pte-to-right-union.patch.
- commit 5417818
- supported.conf: Added diag288_wdt and removed vmwatchdog (bsc#934542)
- commit 7e8e79f
- vhost: actually track log eventfd file (bsc#942367, CVE-2015-6252).
- commit 143c442
- Btrfs: fix hang when failing to submit bio of directIO
(bnc#942685).
- Btrfs: fix memory corruption on failure to submit bio for
direct IO (bnc#942685).
- Btrfs: fix put dio bio twice when we submit dio bio fail
(bnc#942685).
- commit 566ea57
- netfilter: nf_conntrack_proto_sctp: minimal multihoming support
(bsc#932350).
- commit 3ba33c9
- supported.conf: Added drivers/s390/char/hmcdrv (bsc#934537)
- commit f979092
- Btrfs: fix file corruption after cloning inline extents
(bnc#942512).
- Btrfs: fix uninit variable in clone ioctl (bnc#942511).
- Btrfs: fix range cloning when same inode used as source and
destination (bnc#942511).
- Btrfs: check if previous transaction aborted to avoid fs
corruption (bnc#942509).
- commit b666fce
- audit: don't generate loginuid log when audit disabled
(bsc#941098).
Eliminate duplicate audit sections in series.conf (no
code changes)
- commit 3be96b5
- lpfc: Fix scsi prep dma buf error (bsc#908950).
- commit 2439d05
- Refresh
patches.suse/mm-numa-bugfix-for-LAST_CPUPID_NOT_IN_PAGE_FLAGS.patch.
- commit e58b36e
- kconfig: Do not print status messages in make -s mode (bnc#942160).
- commit 9e2e20f
- s390/dasd: fix kernel panic when alias is set offline
(bnc#940965, LTC#128595).
- commit c0d279c
- cifs: Send a logoff request before removing a smb session
(bnc#941332).
- commit eb3c189
- series.conf: Delete stale comments
- commit 2b7be0a
- Delete patches.kabi/* workarounds
- commit 988a684
- Refresh
patches.arch/08-x86-ldt-make-modify_ldt-synchronous.patch.
Update upstream status.
- commit 0c3e7a7
- PM / hibernate: Force verify hibernation signature in signed
modules environment (fate#316350).
- commit bc5ec65
- Removed function lock of hibernation on secure boot environment
(fate#316350)
- Refresh
patches.suse/0014-PM-hibernate-Allow-user-trigger-hibernation-key-re-g.patch.
- Delete
patches.suse/0015_hibernate_Disable_in_a_signed_modules_environment.patch.
- commit c6ead1c
- Move kabi fix to patches.kabi
- KABI fix - cannot add vs_rpcb_optnl field (fate#316311).
- Renamed from
patches.fixes/0001-SUNRPC-NFSD-Support-a-new-option-for-ignoring-the-re.kabi-fix.
- commit eafdf36
- series.conf: Delete stale comments
- commit cc40b91
- mm/zswap: delete unnecessary check before calling free_percpu()
(VM Functionality, fate#318829).
- mm/zswap: add __init to some functions in zswap (VM
Functionality, fate#318829).
- mm/zswap.c: add __init to zswap_entry_cache_destroy() (VM
Functionality, fate#318829).
- mm/zswap: NUMA aware allocation for zswap_dstmem (VM
Functionality, fate#318829).
- mm/zswap.c: remove unnecessary parentheses (VM Functionality,
fate#318829).
- mm/zswap: support multiple swap devices (VM Functionality,
fate#318829).
- mm/zswap.c: update zsmalloc in comment to zbud (VM
Functionality, fate#318829).
- mm/zswap.c: fix trivial typo and arrange indentation (VM
Functionality, fate#318829).
- zbud: avoid accessing last unused freelist (VM Functionality,
fate#318829).
- mm/zbud: change zbud_alloc size type to size_t (VM
Functionality, fate#318829).
- mm/zbud.c: make size unsigned like unique callsite (VM
Functionality, fate#318829).
- commit 78abbea
-----------------------------------------------------------------------------
o Updated libcxgb4-rdmav2 (security/bugfix/feature)
- Update to 1.3.5 (bsc#921338)
- kernel abi: adds explicit padding in struct c4iw_create_cq_resp
- kernel abi: adds explicit padding in struct c4iw_alloc_ucontext_resp
- Account for the full qid range.
- Support the query_qp() verb
- libcxb4: use wc_wmb() instead of wmb().
-----------------------------------------------------------------------------
o Updated libstorage (security/bugfix/feature)
- Properly initialize _doThrow flag in SystemCmd default constructor
- Catch exception if boot.quota command not found (bsc#942324)
- 2.25.29
- Handle 'command not found' for /sbin/btrfs gracefully (bsc#936710)
- New exception class CommandNotFoundException for the general case
- 2.25.28
(bnc#938561, bnc#938572)
-----------------------------------------------------------------------------
o Updated libteam (security/bugfix/feature)
- Add add_org_libteam_teamd_conf.patch:
* Handle dbus policy file separately from the upstream. For now dbus
policy is not enabled by default. In order to manually enable it
please refer to README.SUSE. (bsc#941993)
- Add dont_fail_on_missing_port.patch:
* Do not fail completely when a port specified in config is missing.
- Add start_teamd_from_usr_sbin.patch:
* Modify service file to start teamd instance from /usr/sbin.
- Add check_if_psr_ops_were_initialized.patch:
* Fix teamd segfault when link_watch initialization callbacks fail
(e.g. lw_psr_port_added() in case of activebackup runner) due to
an attempt to change hwaddr on an enslaved, link up port device.
Note: enslavement triggers initialization callbacks.
- Add no_dbus_enabled_in_service_file.patch:
Disable DBus interface by default for now in teamd service file.
- Add ignore_ebusy_for_team_hwaddr_set.patch:
* Make PortAdd and PortRemove dbus methods work for all runners.
Ignore attempts to change hwaddr of an already enslaved devices.
(fate#318389,fate#317728,fate#316923)
- Update to new upstream release 1.17
* teamd: lw: nsna_ping: fix NA RX and ARP RX handling
* libteam: ifinfo: fix rtnl dellink handling
-----------------------------------------------------------------------------
o Updated libvirt-glib (security/bugfix/feature)
- Update to version 0.2.1:
+ Fix libtoolize detection in autogen.sh.
+ Allow storage volume format compatibility level to be set.
+ Add pre-condition checks to more public API entry points.
+ Don't try to return a value from void functions.
+ Add API for controlling storage pool autostart flag.
+ Add API for filesystem image format.
+ Add loop, nbd and ploop filesystem types. bsc#936841
+ Fix setting of driver type when called more than once.
+ Support keyboard input device config.
+ Annotate some unused parameters.
+ Add support for new graphics attach API.
+ Add support for spiceport chardev.
+ Misc fixes to build system.
+ Fix ref counting of snapshot devices.
+ Add API for deleting snapshots.
+ Fix RPM layout for vala files.
+ Fix race in build of vala code.
+ Add API for getting security models.
+ Add classes for dealing with CPU models.
+ Fix enum generation.
+ Add API for fetching snapshots.
- Drop 0b4d331b-secmodel-caps.patch: Fixed upstream.
-----------------------------------------------------------------------------
o Updated libvirt (security/bugfix/feature)
- Replace local libxl patch with upstream variants
Dropped:
0003-libxl-fix-ref-counting-of-libxlMigrationDstArgs.patch
0004-libxl-don-t-attempt-to-resume-domain-when-suspend-fa.patch
0005-libxl-acquire-a-job-when-receiving-a-migrating-domai.patch
Added:
44a54eb0-libxl-fix-refcnt-MigrationDstArgs.patch
15120b8c-libxl-no-resume-on-suspend-fail.patch
e80b84a7-libxl-acquire-job-on-migrate.patch
bsc#936185
- Added another virt-aa-helper upstream patch
52970dec-virt-aa-helper-improve-valid-path.patch
lp#1483071
- Added upstream patch to fix libvirt-tck memory balloon test
failure on Xen
60acb38-revert-curmem-inactive-dom.patch
- Fix generated apparmor profile to allow access to ovmf and nvram.
26c5fa3a-virt-aa-helper-missing-doc.patch
2f01cfdf-virt-aa-helper-allow-ovmf.patch
91fdcefa-virt-aa-helper-allow-nvram.patch
d25a5e08-virt-aa-helper-simplify-restriction-logic.patch
lp#1483071
- storage: only run safezero if allocation is > 0
269d39af-storage-allocation-fix.patch
bsc#942085
-----------------------------------------------------------------------------
o Updated libyajl (security/bugfix/feature)
- bnc#921152 - libyajl: yajl_tree_get() uses wrong object length
9c2948a3-yajl_tree_get-len-fix.patch
-----------------------------------------------------------------------------
o Updated llvm (security/bugfix/feature)
- Add s390 to excluded arches (complimentary to bsc#936459)
-----------------------------------------------------------------------------
o Updated lsb5 (security/bugfix/feature)
- bsc#942467: links for /lib*/ld-lsb* are already contained in glibc
-----------------------------------------------------------------------------
o Updated lvm2 (security/bugfix/feature)
- Fix boot failed due to segfault at libc (bnc#942755)
add: lvmetad.c-ignore-lvmetad-global-handle-on-disconnect.patch
-----------------------------------------------------------------------------
o Updated man-pages (security/bugfix/feature)
- remove sprof.1.gz as it is still contained in glibc package
[bnc#942077]
-----------------------------------------------------------------------------
o Updated multipath-tools (security/bugfix/feature)
- Fixup hang in 'multipath -f' (bsc#941954)
-----------------------------------------------------------------------------
o Updated openCryptoki (security/bugfix/feature)
- Fixed BuildRequires: libica2-devel
- Added ocki-3.2_01_fix-return-type-error.patch
- Changing doc/README.ep11_stdll to unix-style EOL
- Added BuildRequires: dos2unix
- Removed globbing in %files and specified libraries to include (bsc#942162)
-----------------------------------------------------------------------------
o Updated openvpn (security/bugfix/feature)
- Update to most recent openvpn package in version 2.3.8 (fate#319011)
which obsoletes our security fix backports and provides many fixes.
[- 0007-Drop-too-short-control-channel-packets.CVE-2014-8104.patch,
- openvpn-use-newertls.patch, + revert-daemonize.patch]
- Moved openvpn-plugin.h into a devel package, removed .gitignore
- Add revert-daemonize.patch, looks like under systemd the stdin
and stdout are not TTYs by default. This reverts to previous
behaviour fixing bsc#941569
- Update to version 2.3.8
* Report missing endtags of inline files as warnings
* Fix commit e473b7c if an inline file happens to have a
line break exactly at buffer limit
* Produce a meaningful error message if --daemon gets in the way of
asking for passwords.
* Document --daemon changes and consequences (--askpass, --auth-nocache)
* Del ipv6 addr on close of linux tun interface
* Fix --askpass not allowing for password input via stdin
* Write pid file immediately after daemonizing
* Fix regression: query password before becoming daemon
* Fix using management interface to get passwords
* Fix overflow check in openvpn_decrypt()
- Update to version 2.3.7
* down-root plugin: Replaced system() calls with execve()
* sockets: Remove the limitation of --tcp-nodelay to be server-only
* pkcs11: Load p11-kit-proxy.so module by default
* New approach to handle peer-id related changes to link-mtu
* Fix incorrect use of get_ipv6_addr() for iroute options
* Print helpful error message on --mktun/--rmtun if not available
* Explain effect of --topology subnet on --ifconfig
* Add note about file permissions and --crl-verify to manpage
* Repair --dev null breakage caused by db950be85d37
* Correct note about DNS randomization in openvpn.8
* Disallow usage of --server-poll-timeout in --secret key mode
* Slightly enhance documentation about --cipher
* On signal reception, return EAI_SYSTEM from openvpn_getaddrinfo()
* Use EAI_AGAIN instead of EAI_SYSTEM for openvpn_getaddrinfo()
* Fix --redirect-private in --dev tap mode
* Updated manpage for --rport and --lport
* Properly escape dashes on the man-page
* Improve documentation in --script-security section of the man-page
* Really fix '--cipher none' regression
* Set tls-version-max to 1.1 if cryptoapicert is used
* Account for peer-id in frame size calculation
* Disable SSL compression
* Fix frame size calculation for non-CBC modes.
* Allow for CN/username of 64 characters (fixes off-by-one)
* Re-enable TLS version negotiation by default
* Remove size limit for files inlined in config
* Improve --tls-cipher and --show-tls man page description
* Re-read auth-user-pass file on (re)connect if required
* Clarify --capath option in manpage
* Call daemon() before initializing crypto library
- Fixed to use correct sha digest data length and in fips mode,
use aes instead of the disallowed blowfish crypto (boo#914166).
- Fixed to mention actual plugin/doc dirs in openvpn(8) man page.
- Fixed to build with large file support on 32 bit systems.
- Fixed to use _rundir instead _localstatedir/run when defined
- Depend on systemd-devel for the daemon check functionality,
removed obsolete --with-lzo-headers configure option.
- Applied backport patch to permit TLS 1.1/1.2 version negotiation
instead to stick at TLS 1.0 (bsc#928802)
-----------------------------------------------------------------------------
o Updated parted (security/bugfix/feature)
- Improve partition placement logic when creating partitions on
devices with large (>1MiB optimal_io_size). Triple the size of
snap radius if cylinders are used as units to give parted more
freedom when deciding when to place the partition (bnc#914852):
- libparted-allow-even-bigger-snap-radius-if-cylinders-are-used.patch
- Improve fallback logic after unsuccessful to align a partition
(bnc#914852):
- parted-improve-fallback-logic-when-placing-partiton.patch
- Do not fail unnecessarily if the extended partition is busy
(bnc#932116)
- libparted-handle-busy-extended-partition.patch
- libparted: partitions on MDRAID have the form of 'mdXpY'
(bnc#933125)
- libparted-fix-md-partition-name.patch
-----------------------------------------------------------------------------
o Updated python-cffi (security/bugfix/feature)
- update to version 1.1.0 (fate#318838):
* Out-of-line API mode: we can now declare integer types with
typedef int... foo_t;. The exact size and signedness of foo_t
is figured out by the compiler.
* Out-of-line API mode: we can now declare multidimensional
arrays (as fields or as globals) with int n[...][...]. Before,
only the outermost dimension would support the ... syntax.
* Out-of-line ABI mode: we now support any constant declaration,
instead of only integers whose value is given in the cdef. Such
?new? constants, i.e. either non-integers or without a value
given in the cdef, must correspond to actual symbols in the
lib. At runtime they are looked up the first time we access
them. This is useful if the library defines extern const
sometype somename;.
* ffi.addressof(lib, "func_name") now returns a regular cdata
object of type ?pointer to function?. You can use it on any
function from a library in API mode (in ABI mode, all functions
are already regular cdata objects). To support this, you need
to recompile your cffi modules.
* Issue #198: in API mode, if you declare constants of a struct
type, what you saw from lib.CONSTANT was corrupted.
* Issue #196: ffi.set_source("package._ffi", None) would
incorrectly generate the Python source to package._ffi.py
instead of package/_ffi.py. Also fixed: in some cases, if the C
file was in build/foo.c, the .o file would be put in
build/build/foo.o.
- additional changes from version 1.0.3:
* Same as 1.0.2, apart from doc and test fixes on some platforms
- additional changes from version 1.0.2:
* Variadic C functions (ending in a ?...? argument) were not
supported in the out-of-line ABI mode. This was a bug?there was
even a (non-working) example doing exactly that!
- additional changes from version 1.0.1:
* ffi.set_source() crashed if passed a sources=[..] argument.
Fixed by chrippa on pull request #60.
* Issue #193: if we use a struct between the first cdef() where
it is declared and another cdef() where its fields are defined,
then this definition was ignored.
* Enums were buggy if you used too many ?...? in their definition
- additional changes from version 1.0.0:
* The main news item is out-of-line module generation:
+ for ABI level, with ffi.dlopen()
+ for API level, which used to be with ffi.verify(), now
deprecated
- add python-cffi-rpmlintrc: cffi specifically installs C headers
in site-packages
- add new test dependency gcc-c++
- skip the tests on SLE11 since they fail on i586
- Update to 0.9.2
* No upstream changelog
See https://bitbucket.org/cffi/cffi/commits/all for a list of
commits
- Update to 0.8.6
* No upstream changelog
See https://bitbucket.org/cffi/cffi/commits/all for a list of
commits
-----------------------------------------------------------------------------
o Updated python-libmount (security/bugfix/feature)
- Add licenses.
- One-shot reset uuidd service to its default state, socket
activation, during upgrade to SLE12 SP1
(bnc#900935#c46, FATE#318949).
- One-shot reset fstrim service and timer to its default state
to run once weekly during upgrade to SLE12 SP1
(FATE#317727).
- Fix mount point lookup (and mount -a) if the path contains //
(bsc#931955, util-linux-libmount-double-slash.patch).
- Follow multipath-tools partition names configuration
(bsc#880468, util-linux-fdisk-device-mapper-names.patch).
- Fix recognition of /dev/dm-N partitions names
(bsc#880468#c11, util-linux-fdisk-dm-partname.patch).
- Fix lsblk -f on devices with nodes in /dev subdirectory
(bsc#924994, util-linux-fix-cciss-dev-lookup.patch).
- Fix fdisk -l on devices with nodes in /dev subdirectory
(bsc#924994#c13, util-linux-fix-cciss-sys-lookup.patch).
* Translation updates
* mount: fix LABEL= handling for user umount, don't abort on read
* setterm: accept devfs name
* simpleinit: security: refuse initctl_fd if FD_CLOEXEC fails
* umount: allow user umount after mount by label or uuid
- Don't install tsort, its now in textutils 2.0
-----------------------------------------------------------------------------
o Updated python-pyasn1 (security/bugfix/feature)
- updated to upstrean release 0.1.8 (fate#318838)
- ObjectIdentifier codec fixed to work properly with arc 0 and arc 2 values.
- Explicit limit on ObjectIdentifier arc value size removed.
- Unicode initializer support added to OctetString type and derivatives.
- New prettyPrintType() abstract method implemented to base pyasn1 types
to facilitate encoding errors analisys.
- The __str__() method implemented to Tag, TagSet and TagMap classes to
ease encoding errors troubleshooting.
easing encoding errors
- Fix to SEQUENCE and SET types to give them their private componentTypes
collection (which is a NamedTypes object) so that they won't collide in
a MT execution environment.
- Missing T61String,ISO646String character types and ObjectDescriptor useful
type added.
- Distribute is gone, switched to setuptools completely.
- Missing NamedValues.__repr__() added.
- The base.NoValue() class, that indicates uninitialized ASN.1 object,
made public.
- The base.NoValue() class instances now support __repr__() what makes
possible to perform repr() on uninitialized pyasn1 types objects.
- When comparing ASN.1 types, by-tag and/or by-constraints matching
can now be performed with the isSuperTypeOf()/isSameTypeWith() optional
flags.
- Constructed types now verify their consistency by invoking
isSameTypeWith(matchTags=True, matchConstraints=False) and
isSuperTypeOf(matchTags=False, matchConstraints=True) for each of their
components rather than isSuperTypeOf() as it used to be. Constriants check
could be enforced to isSameTypeWith() with the strictConstraints=True
constructed classes attribute.
- Constructed types can now be initialized with new .setComponents() method
which accepts both var-args and keyword-args. Default repr() modified to
reflect this change.
- NamedTypes() and NamedValues() made comparable.
- Test coverage extended to cover pyasn1 types __repr__() function.
- The abs(Integer()) & abs(Real()) operation now returns respective pyasn1
type, not a Python type.
- More Python magic methods implementations added to Integer & Real classes
(e.g. __pos__, __neg__, __round__, __floor__, __ceil__, __trunc__)
- The Integer.__invert__ Python magic method implemented.
- The OctetString.__int__() and .__float__() magic methods implemented.
- Handle the case of null writer at Debug printer.
- BitString encoder/decoder performance improved.
- Built-in debugging is now based on Python logging module.
- Fix to NamedType.__repr__() to work properly.
- Fixes to __repr__() implementation of many built-in ASN.1 types to take into
account all of their initializers such as tagSet, subtypeSpec etc.
- String typed float initializer to REAL type now supported.
- Float typed mantissa initializer to REAL type for base 2 added.
- Encoding bases 8 and 16 support for REAL type binary encoder added.
- More strict CER/DER encoders added for GeneralizedTime and UTCTime types.
- Asn1Item.hasValue() added to easily distinguish initalized ASN.1 objects
from uninitialized ones (e.g. pure types).
- Fix to REAL type binary decoder to handle different bases and scale factor.
- Fix to TagSet.repr() to include [obsolete] baseTag information.
- Fix to broken REAL type decoding handling.
- Fix to BitString and OctetString decoders dealing with constructed
encoding -- it used to be possible to embed other types in substrate.
- Fix to end-of-octest sentinel handling:
* require strict two-zeros sentinel encoding
* recognize EOO sentinel only when explicitly requested by caller
of the decoder via allowEoo=True parameter (warning: API change)
- DER codec hardened not to tolerate indefinite length encoding/decoding.
- Run testsuite in %check
- Reflect license change (from BSD-3-Clause to BSD-2-Clause) which
happened in version 0.1.7 in the spec file
-----------------------------------------------------------------------------
o Updated release-notes-sles (security/bugfix/feature)
- 12.1.20150901 (bsc#933411):
- Update release notes from FATE.
-----------------------------------------------------------------------------
o Updated sg3_utils (security/bugfix/feature)
- Update to sg3_utils-1.41 (FATE#318723)
- New utilities sg_rep_zones, sg_reset_wp, sg_zone, sg_write_verify,
sg_ses_microcode, sg_sat_read_gplog
- Bugfixes to existing utilities
- Remove patches merged with upstream:
* Remove: 0007-sg_inq-Do-not-export-long-identifiers.patch
* Remove: 0006-Fixup-formatting-of-invalid-VPD-page-0x83.patch
* Remove: 0005-sg3_utils-fix-missing-rule-for-scsi_serial-partitions.patch
* Remove: 0004-sg_inq-suppress-warning-messages-for-export.patch
* Remove: 0003-sg_inq-compability-links-for-ata_id.patch
* Remove: sginfo-inq-fields-strip-blank.patch
* Remove: 0001-Split-59-scsi-sg_utils.rules-for-multipath-support.patch
-----------------------------------------------------------------------------
o Updated sgml-skel (security/bugfix/feature)
- %post: create %{_sysconfdir}/xml/suse-catalog.xml to avoid validation
errors if in case no other DTD is installed [bsc#936596].
-----------------------------------------------------------------------------
o Updated smt (security/bugfix/feature)
- version 3.0.2
- implement ServicePack migration API (FATE#319133, FATE#319134)
- implement forwarding registrations to SCC (bsc#942300, bsc#907791)
- implement delete systems requests to SCC
- enable reports based on local data for SCC connected SMT server
- Use a connect timeout when checking if a file exists (bsc#932736)
- implement /subscriptions/products for docker integration
- Make Rest interface work if PerlTaintChecks are on (bsc#939076)
- add support for migrating DB engine to InnoDB
- move tmpfile configuration to git
remove tmpfile-smt.conf (source2)
-----------------------------------------------------------------------------
o Updated systemd (security/bugfix/feature)
- revert changes from bsc#872929; superseded by later changes
(bsc#942946)
Remove 1012-Skip-persistent-device-link-creation-on-multipath-de.patch
-----------------------------------------------------------------------------
o Updated tigervnc (security/bugfix/feature)
- Remove commented out DefaultDepth 16 from 10-libvnc.conf file.
Using 16 bit depth can cause troubles and does not have any
positives anymore, so lets not suggest it to users. (bnc#942982)
-----------------------------------------------------------------------------
o Updated translation-update (security/bugfix/feature)
- Update
translation-update-from-translation-update-upstream-20150820.tar.bz2.
- Update translation-update-spec-generate-lang-list.sh and
translation subpackage list as needed.
-----------------------------------------------------------------------------
o Updated util-linux-systemd (security/bugfix/feature)
- Add licenses.
- One-shot reset uuidd service to its default state, socket
activation, during upgrade to SLE12 SP1
(bnc#900935#c46, FATE#318949).
- One-shot reset fstrim service and timer to its default state
to run once weekly during upgrade to SLE12 SP1
(FATE#317727).
- Fix mount point lookup (and mount -a) if the path contains //
(bsc#931955, util-linux-libmount-double-slash.patch).
- Follow multipath-tools partition names configuration
(bsc#880468, util-linux-fdisk-device-mapper-names.patch).
- Fix recognition of /dev/dm-N partitions names
(bsc#880468#c11, util-linux-fdisk-dm-partname.patch).
- Fix lsblk -f on devices with nodes in /dev subdirectory
(bsc#924994, util-linux-fix-cciss-dev-lookup.patch).
- Fix fdisk -l on devices with nodes in /dev subdirectory
(bsc#924994#c13, util-linux-fix-cciss-sys-lookup.patch).
* Translation updates
* mount: fix LABEL= handling for user umount, don't abort on read
* setterm: accept devfs name
* simpleinit: security: refuse initctl_fd if FD_CLOEXEC fails
* umount: allow user umount after mount by label or uuid
- Don't install tsort, its now in textutils 2.0
-----------------------------------------------------------------------------
o Updated util-linux (security/bugfix/feature)
- Add licenses.
- One-shot reset uuidd service to its default state, socket
activation, during upgrade to SLE12 SP1
(bnc#900935#c46, FATE#318949).
- One-shot reset fstrim service and timer to its default state
to run once weekly during upgrade to SLE12 SP1
(FATE#317727).
- Fix mount point lookup (and mount -a) if the path contains //
(bsc#931955, util-linux-libmount-double-slash.patch).
- Follow multipath-tools partition names configuration
(bsc#880468, util-linux-fdisk-device-mapper-names.patch).
- Fix recognition of /dev/dm-N partitions names
(bsc#880468#c11, util-linux-fdisk-dm-partname.patch).
- Fix lsblk -f on devices with nodes in /dev subdirectory
(bsc#924994, util-linux-fix-cciss-dev-lookup.patch).
- Fix fdisk -l on devices with nodes in /dev subdirectory
(bsc#924994#c13, util-linux-fix-cciss-sys-lookup.patch).
* Translation updates
* mount: fix LABEL= handling for user umount, don't abort on read
* setterm: accept devfs name
* simpleinit: security: refuse initctl_fd if FD_CLOEXEC fails
* umount: allow user umount after mount by label or uuid
- Don't install tsort, its now in textutils 2.0
-----------------------------------------------------------------------------
o Updated virt-manager (security/bugfix/feature)
- bsc#942625 - "ERROR:root:Could not find any typelib for
Libosinfo" during virt-install script to auto-install guest
virt-manager.spec
-----------------------------------------------------------------------------
o Updated virt-sandbox (security/bugfix/feature)
- Make sure the af_packet module is loaded for KVM sandbox with
user network setup to work. dhcp-fix.patch. boo#942733
- Updated to version 0.6.0:
* Prevent use of virt-sandbox-service as non-root upfront
* Fix misc memory leaks
* Block SIGHUP from the dhclient binary to prevent accidental death if the controlling terminal is closed & reopened
* Add support for re-creating libvirt XML from sandbox config to facilitate upgrades
* Add ability to set filters on network interfaces
* Search /usr/lib instead of /lib for systemd unit files, as the former is the canonical location even when / and /usr are merged
* Only set SELinux labels on hosts that support SELinux
* Explicitly link to selinux, instead of relying on indirect linkage
* Update compiler warning flags
* Fix misc docs comments
* Don?t assume use of SELinux in virt-sandbox-service
* Fix path checks for SUSE in virt-sandbox-service
* Add support for AppArmour profiles
* Mount /var after other FS to ensure host image is available
* Ensure state/config dirs can be accessed when QEMU is running non-root for qemu:///system
* Fix mounting of host images in QEMU sandboxes
* Mount images as ext4 instead of ext3
* Allow use of non-raw disk images as filesystem mounts
* Check if required static libs are available at configure time to prevent silent fallback to shared linking
* Require libvirt-glib >= 0.2.1
* Add support for loading lzma and gzip compressed kmods
* Check for support libvirt URIs when starting guests to ensure clear error message upfront
* Add LIBVIRT_SANDBOX_INIT_DEBUG env variable to allow debugging of kernel boot messages and sandbox init process setup
* Add support for exposing block devices to sandboxes with a predictable name under /dev/disk/by-tag/TAGNAME
* Use devtmpfs instead of tmpfs for auto-populating /dev in QEMU sandboxes
* Allow setup of sandbox with custom root filesystem instead of inheriting from host?s root. (boo#936841)
* Allow execution of apps from non-matched ld-linux.so / libc.so, eg executing F19 binaries on F22 host
* Use passthrough mode for all QEMU filesystems
- Removed now useless patches:
* 2053d552-service-mount-var-last.patch
* 6ec0460c-apparmor-support.patch
* 87a9b5cc-lib-prefix-fix.patch
* 92412e9c-systemd-path-fix.patch
* 945e8e71-selinux-only-if-supported.patch
* a54e094b-service-suse-paths.patch
* baf47f5b-service-check-secmodel.patch
- Add AppArmor support. bsc#909249.
6ec0460c-apparmor-support.patch
- virt-sandbox-service: /var needs to be the last to be mounted
bsc#909249. 2053d552-service-mount-var-last.patch
- Renamed systemd-path-fix.patch into 92412e9c-systemd-path-fix.patch
as patch went upstream
-----------------------------------------------------------------------------
o Updated vm-install (security/bugfix/feature)
- bnc#942763 - vm-install: Error occurs deploying VM "list indices
must be integers, not strings"
- Version 0.8.44
- bsc#942409 - vm-install fails to load on s390 system, returns
"Error: A parameter is invalid or missing. (memoryMB)"
- Fix getDom0InstallSource repo_url check
- Version 0.8.43
-----------------------------------------------------------------------------
o Updated wicked (security/bugfix/feature)
- Add 0001-teamd-create-teamd-run-directory-when-missed.patch:
Make sure /run/teamd directory is created on config generation.
- version 0.6.21
- team: initial team device support (fate#318389)
- ifstatus: fixed error return code and quiet option (bsc#939142)
-----------------------------------------------------------------------------
o Updated x11-tools (security/bugfix/feature)
- Fix the breakage of default IM selection due to the eval code
for ~/.i18n in xim script (bsc#934720, boo#941052)
-----------------------------------------------------------------------------
o Updated xen (security/bugfix/feature)
- bnc#935634 - VUL-0: CVE-2015-3259: xen: XSA-137: xl command line
config handling stack overflow
55a62eb0-xl-correct-handling-of-extra_config-in-main_cpupoolcreate.patch
- bsc#907514 - Bus fatal error & sles12 sudden reboot has been
observed
- bsc#910258 - SLES12 Xen host crashes with FATAL NMI after
shutdown of guest with VT-d NIC
- bsc#918984 - Bus fatal error & sles11-SP4 sudden reboot has been
observed
- bsc#923967 - Partner-L3: Bus fatal error & sles11-SP3 sudden
reboot has been observed
552d293b-x86-vMSI-X-honor-all-mask-requests.patch
552d2966-x86-vMSI-X-add-valid-bits-for-read-acceleration.patch
5576f143-x86-adjust-PV-I-O-emulation-functions-types.patch
55795a52-x86-vMSI-X-support-qword-MMIO-access.patch
5583d9c5-x86-MSI-X-cleanup.patch
5583da09-x86-MSI-track-host-and-guest-masking-separately.patch
55b0a218-x86-PCI-CFG-write-intercept.patch
55b0a255-x86-MSI-X-maskall.patch
55b0a283-x86-MSI-X-teardown.patch
55b0a2ab-x86-MSI-X-enable.patch
55b0a2db-x86-MSI-track-guest-masking.patch
- Upstream patches from Jan
552d0f49-x86-traps-identify-the-vcpu-in-context-when-dumping-regs.patch
559bc633-x86-cpupool-clear-proper-cpu_valid-bit-on-CPU-teardown.patch
559bc64e-credit1-properly-deal-with-CPUs-not-in-any-pool.patch
559bc87f-x86-hvmloader-avoid-data-corruption-with-xenstore-rw.patch
55a66a1e-make-rangeset_report_ranges-report-all-ranges.patch
55a77e4f-dmar-device-scope-mem-leak-fix.patch
55c1d83d-x86-gdt-Drop-write-only-xalloc-d-array.patch
55c3232b-x86-mm-Make-hap-shadow-teardown-preemptible.patch
- Dropped for upstream version
x86-MSI-mask.patch
x86-MSI-pv-unmask.patch
x86-MSI-X-enable.patch
x86-MSI-X-maskall.patch
x86-MSI-X-teardown.patch
x86-pci_cfg_okay.patch
x86-PCI-CFG-write-intercept.patch
-----------------------------------------------------------------------------
o Updated xorg-x11-server (security/bugfix/feature)
- u_x86emu-Don-t-error-if-segment-address-for-BIOS-segment-is-out-of-range.patch
Try all options to find the BIOS segment before giving up (bsc#923005).
- U_Expose-GetMaster-to-modules.patch:
* Export GetMaster() so that external modules (like tigervnc) can use
it (bsc#942501).
-----------------------------------------------------------------------------
o Updated yast2-bootloader (security/bugfix/feature)
- use extended partition to boot even for non software raids
(bnc#940765)
- for separate boot partition with btrfs prefer MBR bootloader
location (bnc#940797)
- 3.1.145
- Add support for kernel parameter with multiple values
(bsc#882082)
- 3.1.144
- fix removing password protection (bnc#942867)
- 3.1.143
- do not require parted on target system (bnc#937066)
- 3.1.142
-----------------------------------------------------------------------------
o Updated yast2-control-center-gnome (security/bugfix/feature)
- Set scroll window size after it's realized. (bsc#893879)
- 3.1.10
-----------------------------------------------------------------------------
o Updated yast2-installation (security/bugfix/feature)
- fixed cio_ignore testcase
This testcase is for bnc#941406
- 3.1.156
- AutoYaST S390: handling cio_ignore
Entry <general><cio_ignore> in order to set it
(values: true/false). If it is not set cio_ignore is true.
So it is backward compatible.
(bnc#941406)
- cio_ignore does not make sense for KVM or z/VM. So checking
for KVM and z/VM and evtl. disabling cio_ignore (fate#317861).
- 3.1.155
- AutoYaST second stage: YaST2-Second-Stage.service
Continue installation even if plymouth has returned an error.
(bnc#940878)
- 3.1.154
- Fix release notes loading when network is not working (bsc#940648)
- 3.1.153
-----------------------------------------------------------------------------
o Updated yast2-migration (security/bugfix/feature)
- create the "post" snapshot after restart to avoid possible issues
with fast_gettext (bnc#942080)
- 3.1.7
- create a pair of "pre" and "post" filesystem snapshots (instead
of a single snapshot) (bsc#942110)
- 3.1.6
- restart YaST after upgrading the packages to avoid using the old
(removed) files (bnc#942080)
- 3.1.5
- ignore the installed products when searching for obsolete
repositories (bsc#941532)
- 3.1.4
- display a finish dialog at the very end, suggest rebooting the
machine to activate the changes (new kernel, ...) (bsc#941625)
- 3.1.3
-----------------------------------------------------------------------------
o Updated yast2-network (security/bugfix/feature)
- bnc#846201
- made bridge port selection persistent across tab switching
- 3.1.128
-----------------------------------------------------------------------------
o Updated yast2-packager (security/bugfix/feature)
- Do not show a warning for the removed SMT product when upgrading
from SLES11 + SMT (the SMT functionality has been integrated into
SLES12) (bsc#942639)
- 3.1.77
-----------------------------------------------------------------------------
o Updated yast2-pkg-bindings (security/bugfix/feature)
- Pkg::SourceGeneralData() - return also the raw URL (without
expanding the variables), needed for bsc#941563
- 3.1.29
- return the "product_line" product attribute, needed for reading
an optional OEM release type (bsc#941402)
- 3.1.28
-----------------------------------------------------------------------------
o Updated yast2-registration (security/bugfix/feature)
- fixed syntax error (bsc#944089)
- 3.1.147
- make the migration selection widget smaller to have more space
for details when only few migrations are available (bsc#943636)
- Keep the original NCCCredentials file permissions when upgrading
from SLE11 (bsc#943568)
- 3.1.146
- Better wording in the "install updates" popup (bsc#942843)
- 3.1.145
- Handle not available products when using a SMT server for running
online migration (bsc#942892)
- 3.1.144
- Fixed registering a product with POOL flavor (bsc#941402)
- Addon selection dialog - avoid possible ID duplicates when
an addon with multiple versions is displayed
- 3.1.143
-----------------------------------------------------------------------------
o Updated yast2-security (security/bugfix/feature)
- Added some entries to the list of optional services (bnc#942379)
- 3.1.11
-----------------------------------------------------------------------------
o Updated yast2-storage (security/bugfix/feature)
- Install storage related packages only on demand (bsc#937040)
- 3.1.66
-----------------------------------------------------------------------------
o Updated yast2-vm (security/bugfix/feature)
- bsc#941125 - yast2-vm: uses /etc/inittab
- 3.1.24
-----------------------------------------------------------------------------
o Updated yast2 (security/bugfix/feature)
- bnc#897129
- AutoYaST will no longer ignore firewall settings if
keep_install_network is enabled
- 3.1.149
- Add a Mode#auto method
- Checking cpuinfo_flags correctly while evaluating kernel packages
for i586. (bnc#943297)
- 3.1.148
- "yast2" script - handle also the reboot flag the same way as
the installation script (bsc#942461)
- 3.1.147
- bnc#941881
- displays hostname / domain as set in /etc/hostnmae
- 3.1.146
-----------------------------------------------------------------------------
-------------- next part --------------
o Updated MozillaFirefox (security/bugfix/feature)
- hotfix update (bsc#940918)
* MFSA 2015-78/CVE-2015-4495
(bmo#1178058)
Same origin violation
[-fix_expanded_principals]
* Remove PlayPreview registration from PDF Viewer
(bmo#1179262)
[-fix_pdfjs_playpreview]
-----------------------------------------------------------------------------
o Updated babeltrace (security/bugfix/feature)
- enable build for aarch64 (fate#318370)
-----------------------------------------------------------------------------
o Updated cfengine (security/bugfix/feature)
- fix bsc#923417
* FIPS: cfengine segmentation fault on server bootstrapping
* fix-bsc-923417-FIPS-segmentation-fault.patch
- Add patch to use proper SSL exponent bnc#922571
* cfengine-fips.patch
-----------------------------------------------------------------------------
o Updated cluster-glue (security/bugfix/feature)
- high: hb_report: Always prefer syslog if available (bsc#942906)
- low: hb_report: Increase time to wait for the logmark
- low: hb_report: Collect libqb version (bsc#943327)
- Add 0003-high-hb_report-Always-prefer-syslog-if-available-bsc.patch
- Add 0004-low-hb_report-increase-time-to-wait-for-the-logmark.patch
- Add 0005-low-hb_report-collect-libqb-version-bsc-943327.patch
-----------------------------------------------------------------------------
o Updated corosync (security/bugfix/feature)
- remove git files from tarball
- modify corosync.spec to delete logrotate.d
-----------------------------------------------------------------------------
o Updated e2fsprogs (security/bugfix/feature)
- libext2fs-fix-potential-buffer-overflow-in-closefs.patch: libext2fs: fix
potential buffer overflow in closefs() (bsc#918346 CVE-2015-1572)
- libext2fs-avoid-buffer-overflow-if-s_first_meta_bg-i.patch: libext2fs:
avoid buffer overflow if s_first_meta_bg is too big (bsc#915402 CVE-2015-0247)
-----------------------------------------------------------------------------
o Updated gnome-control-center (security/bugfix/feature)
- Fix untranslatability of "Change Password" (bnc#880303,
gnome-control-center-change-password-l10n.patch)
- Add support for 8.5 time zone to fix compilation failure
(gnome-control-center-Pyongyang-Time.patch,
gnome-control-center-Pyongyang-Time.tar.bz2, bgo#753643).
-----------------------------------------------------------------------------
o Updated gnome-patch-translation (security/bugfix/feature)
- Switch package to SLE12 SP1.
- Updated for the latest SLE12 SP1 snapshot (3 new strings).
- Added gnome-shell (6 new strings).
- Update for the lastest SLE12 RC (1 new, 2 obsolete strings).
-----------------------------------------------------------------------------
o Updated hwinfo (security/bugfix/feature)
- added some comments
- updated pci id data from http://pci-ids.ucw.cz
- udated usb id data from http://www.linux-usb.org/usb.ids
- add pci ids to nvme devices
- watch out: nvme disks are pci devices
- update git2log script
- read disk model info also via scsi inquiry command (bsc#943008)
- 21.20
-----------------------------------------------------------------------------
o Updated infinipath-psm (security/bugfix/feature)
- Set libdir when calling make for installing.
- Add infinipath-non_executable_stack.patch to mark the stack
unexecutable (bsc#942689).
- Fix name of libdir.
- Adapt patches to changed sources.
- Fix tarball name.
- Update to 3.3 from OFED 3.18rc2.
-----------------------------------------------------------------------------
o Updated libqb (security/bugfix/feature)
- Update to version 0.17.2 (bsc#943486)
- ipcc: valgrind "invalid file descriptor" warning
- ipc: Increase the length of description field.
- Upstream version cs: 4d817cc7e0b620acda8cc45266dc085c5bf48c59
-----------------------------------------------------------------------------
o Updated libstorage (security/bugfix/feature)
- Properly initialize _doThrow flag in SystemCmd default constructor
- Catch exception if boot.quota command not found (bsc#942324)
- 2.25.29
- Handle 'command not found' for /sbin/btrfs gracefully (bsc#936710)
- New exception class CommandNotFoundException for the general case
- 2.25.28
(bnc#938561, bnc#938572)
-----------------------------------------------------------------------------
o Updated libvirt-glib (security/bugfix/feature)
- Update to version 0.2.1:
+ Fix libtoolize detection in autogen.sh.
+ Allow storage volume format compatibility level to be set.
+ Add pre-condition checks to more public API entry points.
+ Don't try to return a value from void functions.
+ Add API for controlling storage pool autostart flag.
+ Add API for filesystem image format.
+ Add loop, nbd and ploop filesystem types. bsc#936841
+ Fix setting of driver type when called more than once.
+ Support keyboard input device config.
+ Annotate some unused parameters.
+ Add support for new graphics attach API.
+ Add support for spiceport chardev.
+ Misc fixes to build system.
+ Fix ref counting of snapshot devices.
+ Add API for deleting snapshots.
+ Fix RPM layout for vala files.
+ Fix race in build of vala code.
+ Add API for getting security models.
+ Add classes for dealing with CPU models.
+ Fix enum generation.
+ Add API for fetching snapshots.
- Drop 0b4d331b-secmodel-caps.patch: Fixed upstream.
-----------------------------------------------------------------------------
o Updated libvirt (security/bugfix/feature)
- Replace local libxl patch with upstream variants
Dropped:
0003-libxl-fix-ref-counting-of-libxlMigrationDstArgs.patch
0004-libxl-don-t-attempt-to-resume-domain-when-suspend-fa.patch
0005-libxl-acquire-a-job-when-receiving-a-migrating-domai.patch
Added:
44a54eb0-libxl-fix-refcnt-MigrationDstArgs.patch
15120b8c-libxl-no-resume-on-suspend-fail.patch
e80b84a7-libxl-acquire-job-on-migrate.patch
bsc#936185
- Added another virt-aa-helper upstream patch
52970dec-virt-aa-helper-improve-valid-path.patch
lp#1483071
- Added upstream patch to fix libvirt-tck memory balloon test
failure on Xen
60acb38-revert-curmem-inactive-dom.patch
- Fix generated apparmor profile to allow access to ovmf and nvram.
26c5fa3a-virt-aa-helper-missing-doc.patch
2f01cfdf-virt-aa-helper-allow-ovmf.patch
91fdcefa-virt-aa-helper-allow-nvram.patch
d25a5e08-virt-aa-helper-simplify-restriction-logic.patch
lp#1483071
- storage: only run safezero if allocation is > 0
269d39af-storage-allocation-fix.patch
bsc#942085
-----------------------------------------------------------------------------
o Updated libyajl (security/bugfix/feature)
- bnc#921152 - libyajl: yajl_tree_get() uses wrong object length
9c2948a3-yajl_tree_get-len-fix.patch
-----------------------------------------------------------------------------
o Updated llvm (security/bugfix/feature)
- Add s390 to excluded arches (complimentary to bsc#936459)
-----------------------------------------------------------------------------
o Updated lttng-trace-viewer (security/bugfix/feature)
- fix bad performance in CPU graph feature (still fate#317198)
-----------------------------------------------------------------------------
o Updated lvm2 (security/bugfix/feature)
- Fix boot failed due to segfault at libc (bnc#942755)
add: lvmetad.c-ignore-lvmetad-global-handle-on-disconnect.patch
-----------------------------------------------------------------------------
o Updated multipath-tools (security/bugfix/feature)
- Fixup hang in 'multipath -f' (bsc#941954)
-----------------------------------------------------------------------------
o Updated openCryptoki (security/bugfix/feature)
- Fixed BuildRequires: libica2-devel
- Added ocki-3.2_01_fix-return-type-error.patch
- Changing doc/README.ep11_stdll to unix-style EOL
- Added BuildRequires: dos2unix
- Removed globbing in %files and specified libraries to include (bsc#942162)
-----------------------------------------------------------------------------
o Updated pacemaker (security/bugfix/feature)
- services: Reduce severity of noisy log messages
- xml: Mark xml nodes as dirty if any children move (bsc#942382)
- pengine: The failed action of the resource that occurred in shutdown is not displayed.
- tools: memory leak in crm_resource
- crm_resource: Correctly check if a resource is unmanaged or has a target-role
- fencing: add ability to target by attribute
- crmd: Resolve memory leak in remote_proxy_cb()
- ipc: Do not constantly increase suggested size for PCMK_ipc_buffer every time we find it's insufficient (bsc#940992)
- Upstream version cs: e8888b98cd7dbdfb986c1a46bdb4b113b96e914f
-----------------------------------------------------------------------------
o Updated parted (security/bugfix/feature)
- Improve partition placement logic when creating partitions on
devices with large (>1MiB optimal_io_size). Triple the size of
snap radius if cylinders are used as units to give parted more
freedom when deciding when to place the partition (bnc#914852):
- libparted-allow-even-bigger-snap-radius-if-cylinders-are-used.patch
- Improve fallback logic after unsuccessful to align a partition
(bnc#914852):
- parted-improve-fallback-logic-when-placing-partiton.patch
- Do not fail unnecessarily if the extended partition is busy
(bnc#932116)
- libparted-handle-busy-extended-partition.patch
- libparted: partitions on MDRAID have the form of 'mdXpY'
(bnc#933125)
- libparted-fix-md-partition-name.patch
-----------------------------------------------------------------------------
o Updated patterns-sdk (security/bugfix/feature)
- Move qperf from Requires to Recommends [bsc#940753].
-----------------------------------------------------------------------------
o Added rcs (feature)
## WARNING - the following diff is a head -20 proposal
* Mon Dec 17 2012 sndirsch at suse.com
- rcs-rlog-zLT.patch
* fix output of "rlog -zLT" on x86_64 (bnc#784948)
* Tue Jul 17 2012 aj at suse.de
- Fix build with missing gets declaration (glibc 2.16)
* Thu Oct 20 2011 giecrilj at stegny.2a.pl
- Better URL, %check as documented
* Wed Oct 19 2011 coolo at suse.com
- remove old sources
* Mon Oct 17 2011 giecrilj at stegny.2a.pl
- bump version to 5.8
- add documentation
-----------------------------------------------------------------------------
o Updated sg3_utils (security/bugfix/feature)
- Update to sg3_utils-1.41 (FATE#318723)
- New utilities sg_rep_zones, sg_reset_wp, sg_zone, sg_write_verify,
sg_ses_microcode, sg_sat_read_gplog
- Bugfixes to existing utilities
- Remove patches merged with upstream:
* Remove: 0007-sg_inq-Do-not-export-long-identifiers.patch
* Remove: 0006-Fixup-formatting-of-invalid-VPD-page-0x83.patch
* Remove: 0005-sg3_utils-fix-missing-rule-for-scsi_serial-partitions.patch
* Remove: 0004-sg_inq-suppress-warning-messages-for-export.patch
* Remove: 0003-sg_inq-compability-links-for-ata_id.patch
* Remove: sginfo-inq-fields-strip-blank.patch
* Remove: 0001-Split-59-scsi-sg_utils.rules-for-multipath-support.patch
-----------------------------------------------------------------------------
o Updated systemd (security/bugfix/feature)
- revert changes from bsc#872929; superseded by later changes
(bsc#942946)
Remove 1012-Skip-persistent-device-link-creation-on-multipath-de.patch
-----------------------------------------------------------------------------
o Updated translation-update-upstream (security/bugfix/feature)
- upstream-collect.sh supplementary script: Prevent plural form
clash in case of additions only (bsc#894913).
- Update configuration for SLE12 SP1.
- Update strings from the LCN and latest upstream translations.
-----------------------------------------------------------------------------
o Updated util-linux (security/bugfix/feature)
- Add licenses.
- One-shot reset uuidd service to its default state, socket
activation, during upgrade to SLE12 SP1
(bnc#900935#c46, FATE#318949).
- One-shot reset fstrim service and timer to its default state
to run once weekly during upgrade to SLE12 SP1
(FATE#317727).
- Fix mount point lookup (and mount -a) if the path contains //
(bsc#931955, util-linux-libmount-double-slash.patch).
- Follow multipath-tools partition names configuration
(bsc#880468, util-linux-fdisk-device-mapper-names.patch).
- Fix recognition of /dev/dm-N partitions names
(bsc#880468#c11, util-linux-fdisk-dm-partname.patch).
- Fix lsblk -f on devices with nodes in /dev subdirectory
(bsc#924994, util-linux-fix-cciss-dev-lookup.patch).
- Fix fdisk -l on devices with nodes in /dev subdirectory
(bsc#924994#c13, util-linux-fix-cciss-sys-lookup.patch).
* Translation updates
* mount: fix LABEL= handling for user umount, don't abort on read
* setterm: accept devfs name
* simpleinit: security: refuse initctl_fd if FD_CLOEXEC fails
* umount: allow user umount after mount by label or uuid
- Don't install tsort, its now in textutils 2.0
-----------------------------------------------------------------------------
o Updated xen (security/bugfix/feature)
- bnc#935634 - VUL-0: CVE-2015-3259: xen: XSA-137: xl command line
config handling stack overflow
55a62eb0-xl-correct-handling-of-extra_config-in-main_cpupoolcreate.patch
- bsc#907514 - Bus fatal error & sles12 sudden reboot has been
observed
- bsc#910258 - SLES12 Xen host crashes with FATAL NMI after
shutdown of guest with VT-d NIC
- bsc#918984 - Bus fatal error & sles11-SP4 sudden reboot has been
observed
- bsc#923967 - Partner-L3: Bus fatal error & sles11-SP3 sudden
reboot has been observed
552d293b-x86-vMSI-X-honor-all-mask-requests.patch
552d2966-x86-vMSI-X-add-valid-bits-for-read-acceleration.patch
5576f143-x86-adjust-PV-I-O-emulation-functions-types.patch
55795a52-x86-vMSI-X-support-qword-MMIO-access.patch
5583d9c5-x86-MSI-X-cleanup.patch
5583da09-x86-MSI-track-host-and-guest-masking-separately.patch
55b0a218-x86-PCI-CFG-write-intercept.patch
55b0a255-x86-MSI-X-maskall.patch
55b0a283-x86-MSI-X-teardown.patch
55b0a2ab-x86-MSI-X-enable.patch
55b0a2db-x86-MSI-track-guest-masking.patch
- Upstream patches from Jan
552d0f49-x86-traps-identify-the-vcpu-in-context-when-dumping-regs.patch
559bc633-x86-cpupool-clear-proper-cpu_valid-bit-on-CPU-teardown.patch
559bc64e-credit1-properly-deal-with-CPUs-not-in-any-pool.patch
559bc87f-x86-hvmloader-avoid-data-corruption-with-xenstore-rw.patch
55a66a1e-make-rangeset_report_ranges-report-all-ranges.patch
55a77e4f-dmar-device-scope-mem-leak-fix.patch
55c1d83d-x86-gdt-Drop-write-only-xalloc-d-array.patch
55c3232b-x86-mm-Make-hap-shadow-teardown-preemptible.patch
- Dropped for upstream version
x86-MSI-mask.patch
x86-MSI-pv-unmask.patch
x86-MSI-X-enable.patch
x86-MSI-X-maskall.patch
x86-MSI-X-teardown.patch
x86-pci_cfg_okay.patch
x86-PCI-CFG-write-intercept.patch
-----------------------------------------------------------------------------
o Updated xorg-x11-server (security/bugfix/feature)
- u_x86emu-Don-t-error-if-segment-address-for-BIOS-segment-is-out-of-range.patch
Try all options to find the BIOS segment before giving up (bsc#923005).
- U_Expose-GetMaster-to-modules.patch:
* Export GetMaster() so that external modules (like tigervnc) can use
it (bsc#942501).
-----------------------------------------------------------------------------
o Updated yast2-bootloader (security/bugfix/feature)
- use extended partition to boot even for non software raids
(bnc#940765)
- for separate boot partition with btrfs prefer MBR bootloader
location (bnc#940797)
- 3.1.145
- Add support for kernel parameter with multiple values
(bsc#882082)
- 3.1.144
- fix removing password protection (bnc#942867)
- 3.1.143
- do not require parted on target system (bnc#937066)
- 3.1.142
-----------------------------------------------------------------------------
o Updated yast2-installation (security/bugfix/feature)
- fixed cio_ignore testcase
This testcase is for bnc#941406
- 3.1.156
- AutoYaST S390: handling cio_ignore
Entry <general><cio_ignore> in order to set it
(values: true/false). If it is not set cio_ignore is true.
So it is backward compatible.
(bnc#941406)
- cio_ignore does not make sense for KVM or z/VM. So checking
for KVM and z/VM and evtl. disabling cio_ignore (fate#317861).
- 3.1.155
- AutoYaST second stage: YaST2-Second-Stage.service
Continue installation even if plymouth has returned an error.
(bnc#940878)
- 3.1.154
- Fix release notes loading when network is not working (bsc#940648)
- 3.1.153
-----------------------------------------------------------------------------
o Updated yast2-network (security/bugfix/feature)
- bnc#846201
- made bridge port selection persistent across tab switching
- 3.1.128
-----------------------------------------------------------------------------
o Updated yast2-packager (security/bugfix/feature)
- Do not show a warning for the removed SMT product when upgrading
from SLES11 + SMT (the SMT functionality has been integrated into
SLES12) (bsc#942639)
- 3.1.77
-----------------------------------------------------------------------------
o Updated yast2-storage (security/bugfix/feature)
- Install storage related packages only on demand (bsc#937040)
- 3.1.66
-----------------------------------------------------------------------------
o Updated yast2 (security/bugfix/feature)
- bnc#897129
- AutoYaST will no longer ignore firewall settings if
keep_install_network is enabled
- 3.1.149
- Add a Mode#auto method
- Checking cpuinfo_flags correctly while evaluating kernel packages
for i586. (bnc#943297)
- 3.1.148
- "yast2" script - handle also the reboot flag the same way as
the installation script (bsc#942461)
- 3.1.147
- bnc#941881
- displays hostname / domain as set in /etc/hostnmae
- 3.1.146
-----------------------------------------------------------------------------
More information about the sles-beta
mailing list