Removed rpms ============ - cyrus-sasl-32bit - cyrus-sasl-crammd5-32bit - gettext-runtime-32bit - glibc-32bit - glibc-locale-base-32bit - gnome-keyring-32bit - alsa-plugins-32bit - alsa-plugins-pulse-32bit - dbus-1-glib-32bit - fontconfig-32bit - glibc-locale-32bit - gnome-keyring-pam-32bit - krb5-32bit - libFLAC8-32bit - libcap2-32bit - libcups2-32bit - libglib-2_0-0-32bit - libgpg-error0-32bit - liblz4-1-32bit - libmagic1-32bit - libndr-krb5pac0-32bit - libndr-nbt0-32bit - libndr-standard0-32bit - libnghttp2-14-32bit - libnuma1-32bit - libp11-kit0-32bit - libparted0-32bit - libpopt0-32bit - libsamba-credentials0-32bit - libsamba-hostconfig0-32bit - libsamba-passdb0-32bit - libsamdb0-32bit - libspeex1-32bit - libtextstyle0-32bit - libtirpc3-32bit - openslp-32bit - perl-base-32bit - samba-client-32bit - samba-libs-32bit - kmod-compat - libSDL2_image-2_0-0 - libXau6-32bit - libacl1-32bit - libaudit1-32bit - libavahi-client3-32bit - libblkid1-32bit - libbz2-1-32bit - libcom_err2-32bit - libcrack2-32bit - libcurl4-32bit - libdb-4_8-32bit - libdevmapper1_03-32bit - libdw1-32bit - libebl-plugins-32bit - libexpat1-32bit - libffi7-32bit - libfreetype6-32bit - libgcrypt20-32bit - libgio-2_0-0-32bit - libjansson4-32bit - libkeyutils1-32bit - libmatroska6 - libmount1-32bit - libogg0-32bit - libopenssl1_1-32bit - libpcrecpp0-32bit - libply-boot-client4 - libply-splash-core4 - libply-splash-graphics4 - libply4 - libpng16-16-32bit - libpsl5-32bit - libpulse0-32bit - libre2-6 - libsmbconf0-32bit - libssh4-32bit - libtdb1-32bit - libtevent0-32bit - libupnp6 - libxcb1-32bit - libxml2-2-32bit - libz1-32bit - pam-32bit - qemu-ui-sdl - rpm-32bit - samba-winbind-32bit - sysfsutils-32bit - systemd-32bit - typelib-1_0-Flatpak-1_0 Added rpms ========== - alsa-plugins-32bit - alsa-plugins-pulse-32bit - babeltrace - cryptsetup-lang - dbus-1-glib-32bit - firebird - fontconfig-32bit - glibc-locale-32bit - gnome-keyring-pam-32bit - cyrus-sasl-32bit - cyrus-sasl-crammd5-32bit - gettext-runtime-32bit - glibc-32bit - glibc-locale-base-32bit - gnome-keyring-32bit - libXau6-32bit - libacl1-32bit - libaudit1-32bit - libavahi-client3-32bit - libblkid1-32bit - libbz2-1-32bit - libcom_err2-32bit - libcrack2-32bit - libcurl4-32bit - libdevmapper1_03-32bit - libdw1-32bit - libebl-plugins-32bit - libexpat1-32bit - libffi7-32bit - libfreetype6-32bit - libgcrypt20-32bit - libgio-2_0-0-32bit - libjansson4-32bit - libkeyutils1-32bit - libmount1-32bit - libogg0-32bit - libopenssl1_1-32bit - libpcrecpp0-32bit - libpng16-16-32bit - libpsl5-32bit - libpulse0-32bit - libsmbconf0-32bit - libssh4-32bit - libtdb1-32bit - libtevent0-32bit - libxcb1-32bit - libxml2-2-32bit - libz1-32bit - pam-32bit - rpm-32bit - samba-winbind-32bit - sysfsutils-32bit - systemd-32bit - kernel-default-extra - kernel-default-optional - krb5-32bit - libFLAC8-32bit - libcap2-32bit - libcups2-32bit - libfbclient2 - libfwupdplugin1 - libgdbm4-32bit - libglib-2_0-0-32bit - libgpg-error0-32bit - libhugetlbfs - libib_util - libixml11 - libjcat1 - liblz4-1-32bit - libmagic1-32bit - libmatroska7 - libndr-krb5pac0-32bit - libndr-nbt0-32bit - libndr-standard0-32bit - libnghttp2-14-32bit - libnuma1-32bit - libp11-kit0-32bit - libparted0-32bit - libphodav-2_0-0 - libply-boot-client5 - libply-splash-core5 - libply-splash-graphics5 - libply5 - libpopt0-32bit - libre2-9 - libreoffice-base-drivers-firebird - libreoffice-qt5 - libsamba-credentials0-32bit - libsamba-hostconfig0-32bit - libsamba-passdb0-32bit - libsamdb0-32bit - libslirp0 - libspeex1-32bit - libtextstyle0-32bit - libtirpc3-32bit - libtommath1 - libtpms0 - libtss2-esys0 - libtss2-mu0 - libtss2-sys0 - libupnp17 - nvme-cli - openslp-32bit - perl-base-32bit - qemu-audio-spice - qemu-chardev-spice - qemu-hw-display-qxl - qemu-hw-display-virtio-gpu - qemu-hw-display-virtio-gpu-pci - qemu-hw-display-virtio-vga - qemu-hw-usb-redirect - qemu-hw-usb-smartcard - qemu-ui-opengl - qemu-ui-spice-core - raleway-fonts - rpm-config-SUSE - samba-client-32bit - samba-libs-32bit - swtpm - system-user-qemu - system-user-tss - trousers - typelib-1_0-Fwupd-2_0 Package Source Changes ====================== ImageMagick +- run perl tests verbosely + +- security update +- added patches + fix IM upstream issue #1184 + + ImageMagick-silent-disturbing-warnings.patch + fix CVE-2020-27767 [bsc#1179322], outside the range of representable values of type 'float' at MagickCore/quantum.h + fix CVE-2020-27768 [bsc#1179339], outside the range of representable values of type 'unsigned int' at MagickCore/quantum-private.h + fix CVE-2020-27751 [bsc#1179269], integer overflow in MagickCore/quantum-export.c + fix CVE-2020-27752 [bsc#1179346], heap-based buffer overflow in PopShortPixel in MagickCore/quantum-private.h + fix CVE-2020-27757 [bsc#1179268], outside the range of representable values of type 'unsigned long long' at + + ImageMagick-CVE-2020-27767,27768,27751,27752,27757.patch + fix CVE-2020-29599 [bsc#1179753], shell command injection in -authenticate + + ImageMagick-CVE-2020-29599.patch + +- security update +- added patches + fix CVE-2020-27753 [bsc#1179397], memory leaks in AcquireMagickMemory function + + ImageMagick-CVE-2020-27753.patch + fix CVE-2020-27770 [bsc#1179343], unsigned offset overflowed at MagickCore/string.c + + ImageMagick-CVE-2020-27770.patch + fix CVE-2020-25675 [bsc#1179240], outside the range of representable values of type 'long' and integer overflow + + ImageMagick-CVE-2020-25675.patch + fix CVE-2020-27756 [bsc#1179221], division by zero at MagickCore/geometry.c + + ImageMagick-CVE-2020-27756.patch + fix CVE-2020-27773 [bsc#1179285], division by zero at MagickCore/gem-private.h + + ImageMagick-CVE-2020-27773.patch + fix CVE-2020-27762 [bsc#1179278], outside the range of representable values of type 'unsigned char' + + ImageMagick-CVE-2020-27762.patch + fix CVE-2020-27755 [bsc#1179345], memory leaks in ResizeMagickMemory function in ImageMagick/MagickCore/memory.c + + ImageMagick-CVE-2020-27755.patch + fix CVE-2020-27765 [bsc#1179311], division by zero at MagickCore/segment.c + + ImageMagick-CVE-2020-27765.patch + fix CVE-2020-27758 [bsc#1179276], outside the range of representable values of type 'unsigned long long' + + ImageMagick-CVE-2020-27758.patch + fix CVE-2020-27775 [bsc#1179338], outside the range of representable values of type 'unsigned char' at MagickCore/quantum.h + + ImageMagick-CVE-2020-27775.patch + fix CVE-2020-27752 [bsc#1179346], heap-based buffer overflow in PopShortPixel in MagickCore/quantum-private.h + + ImageMagick-CVE-2020-27752.patch + fix CVE-2020-25664 [bsc#1179202], heap-based buffer overflow in PopShortPixel + + ImageMagick-CVE-2020-25664.patch + fix CVE-2020-25674 [bsc#1179223], heap-based buffer overflow in WriteOnePNGImage + + ImageMagick-CVE-2020-25674.patch + fix CVE-2020-25666 [bsc#1179212], outside the range of representable values of type 'int' and signed integer overflow + + ImageMagick-CVE-2020-25666.patch + +- security update +- added patches + fix CVE-2020-27772 [bsc#1179347], outside the range of representable values of type 'unsigned int' at coders/bmp.c + + ImageMagick-CVE-2020-27772.patch + fix CVE-2020-27763 [bsc#1179312], division by zero at MagickCore/resize.c + + ImageMagick-CVE-2020-27763.patch + fix CVE-2020-27759 [bsc#1179313], outside the range of representable values of type 'int' at MagickCore/quantize.c + fix CVE-2020-27769 [bsc#1179321], outside the range of representable values of type 'float' at MagickCore/quantize.c + fix CVE-2020-27754 [bsc#1179336], outside the range of representable values of type 'long' and signed integer overflow at MagickCore/quantize.c + + ImageMagick-CVE-2020-27759,27769,27754.patch + fix CVE-2020-27771 [bsc#1179327], outside the range of representable values of type 'unsigned char' at coders/pdf.c + + ImageMagick-CVE-2020-27771.patch + fix CVE-2020-27764 [bsc#1179317], outside the range of representable values of type 'unsigned long' at MagickCore/statistic.c + + ImageMagick-CVE-2020-27764.patch + fix CVE-2020-27761 [bsc#1179315], outside the range of representable values of type 'unsigned long' at coders/palm.c + + ImageMagick-CVE-2020-27761.patch + fix CVE-2020-25676 [bsc#1179244], outside the range of representable values of type 'long' and integer overflow at MagickCore/pixel.c + + ImageMagick-CVE-2020-25676.patch + fix CVE-2020-25665 [bsc#1179208], heap-based buffer overflow in WritePALMImage + + ImageMagick-CVE-2020-25665.patch + fix CVE-2020-27766 [bsc#1179361], outside the range of representable values of type 'unsigned long' at MagickCore/statistic.c + fix CVE-2020-27776 [bsc#1179362], ImageMagick: outside the range of representable values of type 'unsigned long' at MagickCore/statistic.c + fix CVE-2020-27774 [bsc#1179333], integer overflow at MagickCore/statistic.c + + ImageMagick-CVE-2020-27774,27766,27776.patch + fix CVE-2020-27750 [bsc#1179260], division by zero in MagickCore/colorspace-private.h + + ImageMagick-CVE-2020-27750.patch + fix CVE-2020-27760 [bsc#1179281], division by zero at MagickCore/enhance.c + + ImageMagick-CVE-2020-27760.patch + +- security update +- added patches + fix CVE-2020-19667 [bsc#1179103], Stack buffer overflow in XPM coder could result in a crash + + ImageMagick-CVE-2020-19667.patch + Mesa +- update to 20.2.4 + * fourth (second to last) bugfix release for the 20.2 branch + Mesa-drivers +- update to 20.2.4 + * fourth (second to last) bugfix release for the 20.2 branch + MozillaFirefox +- Firefox Extended Support Release 78.6.1 ESR + * Fixed: Security fix + * Fixed: Fixed a crash during video playback on Apple Silicon + devices (bmo#1683579) + MFSA 2021-01 (bsc#1180623) + * CVE-2020-16044 (bmo#1683964) + Use-after-free write when handling a malicious COOKIE-ECHO + SCTP chunk + +- Firefox Extended Support Release 78.6.0 ESR + * Fixed: Various stability, functionality, and security fixes + MFSA 2020-55 (bsc#1180039) + * CVE-2020-16042 (bmo#1679003) + Operations on a BigInt could have caused uninitialized memory + to be exposed + * CVE-2020-26971 (bmo#1663466) + Heap buffer overflow in WebGL + * CVE-2020-26973 (bmo#1680084) + CSS Sanitizer performed incorrect sanitization + * CVE-2020-26974 (bmo#1681022) + Incorrect cast of StyleGenericFlexBasis resulted in a heap + use-after-free + * CVE-2020-26978 (bmo#1677047) + Internal network hosts could have been probed by a malicious + webpage + * CVE-2020-35111 (bmo#1657916) + The proxy.onRequest API did not catch view-source URLs + * CVE-2020-35112 (bmo#1661365) + Opening an extension-less download may have inadvertently + launched an executable instead + * CVE-2020-35113 (bmo#1664831, bmo#1673589) + Memory safety bugs fixed in Firefox 84 and Firefox ESR 78.6 + MozillaThunderbird +- Mozilla Thunderbird 78.6.1 + * changed: MailExtensions: browserAction, composeAction, and + messageDisplayAction toolbar buttons now support label and + default_label properties (bmo#1583478) + * fixed: Running a quicksearch that returned no results did not + offer to re-run as a global search (bmo#1663153) + * fixed: Message search toolbar fixes (bmo#1681010) + * fixed: Very long subject lines distorted the message compose + and display windows, making them unusable (bmo#77806) + * fixed: Compose window: Recipient addresses that had not yet + been autocompleted were lost when clicking Send button + (bmo#1674054) + * fixed: Compose window: New message is no longer marked as + "changed" just from tabbing out of the recipient field + without editing anything (bmo#1681389) + * fixed: Account autodiscover fixes when using MS Exchange + servers (bmo#1679759) + * fixed: LDAP address book stability fix (bmo#1680914) + * fixed: Messages with invalid vcard attachments were not + marked as read when viewed in the preview window + (bmo#1680468) + * fixed: Chat: Could not add TLS certificate exceptions for + XMPP connections (bmo#1590471) + * fixed: Calendar: System timezone was not always properly + detected (bmo#1678839) + * fixed: Calendar: Descriptions were sometimes blank when + editing a single occurrence of a repeating event + (bmo#1664731) + * fixed: Various printing bugfixes (bmo#1676166) + * fixed: Visual consistency and theme improvements + (bmo#1682808) + MFSA 2021-02 (bsc#1180623) + * CVE-2020-16044 (bmo#1683964) + Use-after-free write when handling a malicious COOKIE-ECHO + SCTP chunk + +- Mozilla Thunderbird 78.6 + * new: MailExtensions: Added + browser.windows.openDefaultBrowser() (bmo#1664708) + * changed: Thunderbird now only shows quota exceeded + indications on the main window (bmo#1671748) + * changed: MailExtensions: menus API enabled in messages being + composed (bmo#1670832) + * changed: MailExtensions: Honor allowScriptsToClose argument + in windows.create API function (bmo#1675940) + * changed: MailExtensions: APIs that returned an accountId will + reflect the account the message belongs to, not what is + stored in message headers (bmo#1644032) + * fixed: Keyboard shortcut for toggling message "read" status + not shown in menus (bmo#1619248) + * fixed: OpenPGP: After importing a secret key, Key Manager + displayed properties of the wrong key (bmo#1667054) + * fixed: OpenPGP: Inline PGP parsing improvements (bmo#1660041) + * fixed: OpenPGP: Discovering keys online via Key Manager + sometimes failed on Linux (bmo#1634053) + * fixed: OpenPGP: Encrypted attachment "Decrypt and Open/Save + As" did not work (bmo#1663169) + * fixed: OpenPGP: Importing keys failed on macOS (bmo#1680757) + * fixed: OpenPGP: Verification of clear signed UTF-8 text + failed (bmo#1679756) + * fixed: Address book: Some columns incorrectly displayed no + data (bmo#1631201) + * fixed: Address book: The address book view did not update + after changing the name format in the menu (bmo#1678555) + * fixed: Calendar: Could not import an ICS file into a CalDAV + calendar (bmo#1652984) + * fixed: Calendar: Two "Home" calendars were visible on a new + profile (bmo#1656782) + * fixed: Calendar: Dark theme was incomplete on Linux + (bmo#1655543) + * fixed: Dark theme did not apply to new mail notification + popups (bmo#1681083) + * fixed: Folder icon, message list, and contact side bar visual + improvements (bmo#1679436) + * fixed: MailExtensions: HTTP refresh in browser content tabs + did not work (bmo#1667774) + * fixed: MailExtensions: messageDisplayScripts failed to run in + main window (bmo#1674932) + * fixed: Various security fixes + MFSA 2020-56 (bsc#1180039) + * CVE-2020-16042 (bmo#1679003) + Operations on a BigInt could have caused uninitialized memory + to be exposed + * CVE-2020-26971 (bmo#1663466) + Heap buffer overflow in WebGL + * CVE-2020-26973 (bmo#1680084) + CSS Sanitizer performed incorrect sanitization + * CVE-2020-26974 (bmo#1681022) + Incorrect cast of StyleGenericFlexBasis resulted in a heap + use-after-free + * CVE-2020-26978 (bmo#1677047) + Internal network hosts could have been probed by a malicious + webpage + * CVE-2020-35111 (bmo#1657916) + The proxy.onRequest API did not catch view-source URLs + * CVE-2020-35112 (bmo#1661365) + Opening an extension-less download may have inadvertently + launched an executable instead + * CVE-2020-35113 (bmo#1664831, bmo#1673589) + Memory safety bugs fixed in Thunderbird 78.6 + +- Mozilla Thunderbird 78.5.1 + * new: OpenPGP: Added option to disable email subject + encryption (bmo#1666073) + * changed: OpenPGP public key import now supports multi-file + selection and bulk accepting imported keys (bmo#1665145) + * changed: MailExtensions: getComposeDetails will wait for + "compose-editor-ready" event (bmo#1675012) + * fixed: New mail icon was not removed from the system tray at + shutdown (bmo#1664586) + * fixed: "Place replies in the folder of the message being + replied to" did not work when using "Reply to List" + (bmo#522450) + * fixed: Thunderbird did not honor the "Run search on server" + option when searching messages (bmo#546925) + * fixed: Highlight color for folders with unread messages + wasn't visible in dark theme (bmo#1676697) + * fixed: OpenPGP: Key were missing from Key Manager + (bmo#1674521) + * fixed: OpenPGP: Option to import keys from clipboard always + disabled (bmo#1676842) + * fixed: The "Link" button on the large attachments info bar + failed to open up Filelink section in Options if the user had + not yet configured Filelink (bmo#1677647) + * fixed: Address book: Printing members of a mailing list + resulted in incorrect output (bmo#1676859) + * fixed: Unable to connect to LDAP servers configured with a + self-signed SSL certificate (bmo#1659947) + * fixed: Autoconfig via LDAP did not work as expected + (bmo#1662433) + * fixed: Calendar: Pressing Ctrl-Enter in the new event dialog + would create duplicate events (bmo#1668478) + * fixed: Various security fixes + MFSA 2020-53 (bsc#1179530) + * CVE-2020-26970 (bmo#1677338) + Stack overflow due to incorrect parsing of SMTP server + response codes + NetworkManager-branding:openSUSE +- Also fix variable expansion in %description (boo#1172773). + +- Fix summary variable expansion: use %rpm style instead of $shell + style (boo#1172773). + PackageKit +- Add PackageKit-CVE-2020-16121.patch: Information disclosure in + InstallFiles, GetFilesLocal and GetDetailsLocal + (gh#hughsie/PackageKit/commit/d5e8c597, bsc#1176930). + +- Update summary and description of gstreamer-plugin and + gtk3-module subpackages in spec file (bsc#1104313). + aaa_base +- Add patch git-33-d12420cc66e6d26a9dff6c0e86e00de232151c82.patch + * Avoid semicolon within (t)csh login script on S/390. + (bsc#1179431) + acl -- test: Add helper library to fake passwd/group files -- quote: escape literal backslashes (bsc#953659). -- Added patch: - * 0001-test-Add-helper-library-to-fake-passwd-group-files.patch - * 0002-quote-escape-literal-backslashes.patch - -- refresh acl-2.2.52-tests.patch to work with perl 5.26 - -- BuildRequires gettext-tools-mini instead of gettext-tools: as - acl is part of the bootstrap, we want to try to keep the dep - chain as small as possible. - -- Remove --with-pic that's just for static libraries. -- Replace %__-type macro indirections. - Replace old $RPM_ by their macro equivalents for consistency. - Make the macro style consistent across the file again. - -- reenable full Larg File Support for i586 - -- Make it possible to disable tests (for Ring0) -- Add BuildRequires: system-user-daemon for the testsuite - -- Add BuildRequires for system user bin needed by test suite - -- Update to git snapshot dated 21 Sep 2015. - - Added: - * 0001-Install-the-libraries-to-the-appropriate-directory.patch - * 0002-setfacl.1-fix-typo-inclu-de-include.patch - * 0003-test-fix-insufficient-quoting-of.patch - * 0004-Makefile-rename-configure.in-to-configure.ac.patch - * 0005-Bad-markup-in-acl.5-page.patch - * 0006-.gitignore-ignore-and-config.h.in.patch - * 0007-Use-autoreconf-rather-than-autoconf-to-regenerate-th.patch - * 0008-libacl-Make-sure-that-acl_from_text-always-sets-errn.patch - * 0009-libacl-fix-SIGSEGV-of-getfacl-e-on-overly-long-group.patch - * 0010-punt-debian-rpm-packaging-logic.patch - * 0011-move-gettext-logic-into-misc.h.patch - * 0012-test-make-running-parallel-out-of-tree-safe.patch - * 0013-modernize-build-system.patch - * 0014-po-regenerate-files-after-move.patch - * 0015-build-drop-aclincludedir-use-pkgincludedir.patch - * 0016-build-make-use-of-an-aux-dir-to-stow-away-helper-scr.patch - * 0017-build-ship-a-pkgconfig-file-for-libacl.patch - * 0018-read_acl_-comments-seq-rename-line-to-lineno.patch - * 0019-read_acl_-comments-seq-switch-to-next_line.patch - * 0020-telldir-return-value-and-seekdir-second-parameters-a.patch - * 0021-mark-libmisc-funcs-as-hidden-so-they-are-not-exporte.patch - * 0022-add-__acl_-prefixes-to-internal-symbols.patch - * 0023-cp.test-Check-permissions-of-the-right-file.patch - * 0024-libacl-acl_set_file-Remove-unnecesary-racy-check.patch - * 0025-fix-compilation-with-latest-xattr-git.patch - * 0026-getfacl-Fix-memory-leak.patch - * 0027-Fix-the-display-block-nesting-in-acl.5.patch - * 0028-setfacl-man-page-Minor-wording-improvements.patch - * 0029-getfacl-Fix-minor-resource-leak.patch - * 0030-Do-not-export-symbols-that-are-not-supposed-to-be-ex.patch - * 0031-walk_tree-mark-internal-variables-as-static.patch - * 0032-ignore-configure.lineno.patch -- Signficant spec file restructuring due to 0013-modernize-build-system.patch -- removed builddefs.in.diff - -- Reduce size of filelist by using wildcards; - remove %doc (some locations are always %doc), - remove %attr (files already have proper permissions) - -- add acl-2.2.52-tests.patch and enable tests, check section taken - from Fedora package - -- remove gpg-offline calls from bootstrap package - -- Update to new upstream release 2.2.52 - * This release fixes a few build system issues that were found and - merges in a tree walking bug fix. -- Remove acl-fiximplicit.patch (merged upstream), - config-guess-sub-update.diff (no longer applies) -- Sync baselibs.conf with in-.spec obsoletes/provides. - -- add gpg checking - -- use source url - -- Add config-guess-sub-update.diff: - update config.guess/sub to latest state for AArch64 - -- Use OS byteswapping routines, application already Includes - "endian.h" but then goes ahead defining ad-hoc equivalent - functionality (0001-Use-OS-byteswapping-macros.patch) - -- remove useless automake deps - -- patch license to follow spdx.org standard - -- license update: GPL-2.0+;LGPL-2.1+ - SPDX format - -- add automake as buildrequire to avoid implicit dependency - -- Fix provides/Obsoletes - -- Implement shlib package (libacl1) -- Enable libacl-devel on all baselib arches - -- upgrade to 2.2.51 - - Test fixes - -- upgrade to 2.2.50 - - OPTIONS in man pages should be a section heading, not a subsection heading - - Fix a typo in the setfacl man page - - setfacl: Clarify that removing a non-existent acl entry is not an error - - Prevent setfacl --restore from SIGSEGV on malformed restore file - - setfacl: make sure that -R only calls stat(2) on symlinks when it needs to - - libacl: fix potential null pointer dereference - - setfacl: fix restore crash on malformed input - - setfacl: print useful error from read_acl_comments - - setfacl: changing owner and when S_ISUID should be set --restore fix - -- use %_smp_mflags - -- add baselibs.conf as a source -- adjust baselibs.conf for SPARC - -- readded incorrectly removed libattr-devel requires in -devel - -- fixed implicit strchr() usage. - -- do not package static libraries -- fix -devel package dependencies - -- Version bump to 2.2.48 - - Document the new flags comments - - Include the S_ISUID, S_ISGID, S_ISVTX flags in the getfacl output, and restore them with "setfacl --restore=file". - - Make sure that getfacl -R only calls stat(2) on symlinks when it needs to - - Stop quoting nonprintable characters in the getfacl output - - Avoid unnecessary but destructive chown calls - - Clarify license notice - akregator +- Add akregator-fix_systray.patch (fixes boo#1177572) + alsa +- Yet more fixes for the crash with dmix plugin (bsc#1181194): + 0045-pcm-direct-Fix-the-missing-appl_ptr-update.patch + 0046-pcm-ioplug-Pass-appl_ptr-and-hw_ptr-in-snd_pcm_statu.patch + 0047-pcm-null-Pass-appl_ptr-and-hw_ptr-in-snd_pcm_status.patch + 0048-pcm-share-Pass-appl_ptr-and-hw_ptr-in-snd_pcm_status.patch + +- Backport upstream fixes: + yet more PCM plugin fixes, topology fixes/cleanups, UAF fix in + UCM (bsc#1181194): + 0004-topology-use-inclusive-language-for-bclk.patch + 0005-topology-use-inclusive-language-for-fsync.patch + 0006-topology-use-inclusive-language-in-documentation.patch + 0034-ucm-fix-possible-memory-leak-in-parse_verb_file.patch + 0035-topology-tplg_pprint_integer-fix-coverity-uninitaliz.patch + 0036-topology-tplg_add_widget_object-do-not-use-invalid-e.patch + 0037-topology-tplg_decode_pcm-add-missing-log-argument-co.patch + 0038-topology-parse_tuple_set-remove-dead-condition-code.patch + 0039-ucm-uc_mgr_substitute_tree-fix-use-after-free.patch + 0040-topology-sort_config-cleanups-use-goto-for-the-error.patch + 0041-conf-USB-add-Xonar-U7-MKII-to-USB-Audio.pcm.iec958_d.patch + 0042-pcm_plugin-set-the-initial-hw_ptr-appl_ptr-from-the-.patch + 0043-pcm-dmix-dshare-delay-calculation-fixes-and-cleanups.patch + 0044-topology-fix-parse_tuple_set-remove-dead-condition-c.patch + +- Backport upstream fixes: + a PCM plugin regression fix about snd_pcm_status() call, plugin + directory handling fixes, missing audio timestamp types, + use-after-free fix for conf parser, PCM plugin delay account fixes, + etc: + 0001-dlmisc-the-snd_plugin_dir_set-snd_plugin_dir-must-be.patch + 0002-dlmisc-fix-snd_plugin_dir-locking-for-not-DL_ORIGIN_.patch + 0003-pcm-snd_pcm_mmap_readi-fix-typo-in-comment.patch + 0007-pcm-set-the-snd_pcm_ioplug_status-tstamp-field.patch + 0009-pcm-Add-snd_pcm_audio_tstamp_type_t-constants.patch + 0010-test-audio_time-Make-use-of-SND_PCM_AUDIO_TSTAMP_TYP.patch + 0011-pcm-Fix-a-typo-in-SND_PCM_AUDIO_TSTAMP_TYPE_LAST-def.patch + 0012-conf-fix-use-after-free-in-_snd_config_load_with_inc.patch + 0013-ucm-fix-bad-frees-in-get_list0-and-get_list20.patch + 0014-rawmidi-fix-memory-leak-in-snd_rawmidi_virtual_open.patch + 0015-timer-fix-sizeof-operator-mismatch-in-snd_timer_quer.patch + 0016-pcm-remove-dead-assignments-from-snd_pcm_rate_-commi.patch + 0017-pcm_multi-remove-dead-assignment-from-_snd_pcm_multi.patch + 0018-conf-fix-get_hexachar-return-value.patch + 0019-pcm-fix-__snd_pcm_state-return-value.patch + 0020-confmisc-fix-memory-leak-in-snd_func_concat.patch + 0021-conf-fix-return-code-in-_snd_config_load_with_includ.patch + 0022-pcm-plugin-status-fix-the-return-value-regression.patch + 0023-pcm-plugin-status-revert-the-recent-changes.patch + 0024-pcm-plugin-tidy-snd_pcm_plugin_avail_update.patch + 0025-pcm-plugin-optimize-sync-in-snd_pcm_plugin_status.patch + 0026-Revert-pcm_plugin-fix-delay.patch + 0027-pcm-ioplug-fix-the-delay-calculation-in-the-status-c.patch + 0028-pcm-rate-tidy-up-snd_pcm_rate_avail_update.patch + 0029-pcm-ioplug-fix-the-delay-calculation-for-old-plugins.patch + 0030-pcm-rate-use-pcm_frame_diff-in-snd_pcm_rate_playback.patch + 0031-pcm-plugin-fix-status-code-for-capture.patch + 0032-pcm-rate-use-pcm_frame_diff-on-related-places.patch + 0033-pcm-rate-fix-the-capture-delay-values.patch + alsa-ucm-conf +- Backport upstream fixes: + more Baytrail/Cherrytrail profiles, TRX40 / ALC1220-VLC profiles: + 0013-bytcr-rt5640-Add-support-for-devices-without-speaker.patch + 0014-rt5640-Move-standard-DAC-setup-to-EnableSeq.conf.patch + 0015-bytcr-rt5640-fix-the-execution-order.patch + 0016-ucm2-add-initial-configuration-for-TRX40-Gigabyte-Ao.patch + 0017-USB-Audio-ALC1220-Bump-analog-Speaker-priority-over-.patch + 0018-USB-Audio-ALC1220-fix-indentation-for-Speaker-device.patch + 0019-USB-Audio-fix-indentation-in-Gigabyte-Aorus-Master-M.patch + 0020-chtnau8824-Add-a-SST-define-variable.patch + 0021-kblrt5660-Fix-file-permissions.patch +- Run fdupes to reduce the duplicated files + +- Backport upstream fixes: HD-audio dual codec fixes and the builtin + mic fix for rt5645-based devices: + 0010-HDA-Intel-HiFi-dual-Add-EnableSequence-and-DisableSe.patch + 0011-HDA-Intel-HiFi-dual-Add-BootSequence-and-disable-pla.patch + 0012-chtrt5645-Enable-Internal-MIC-of-ECS-EF20EA.patch + autoyast2 +- AutoYaST UI: added drive types CT_NFS and CT_TMPFS to the + partitioning section (part of jsc#SLE-11308). +- 4.3.66 + +- Upgrade: Checking if a valid base product has been selected for + upgrade and if not asking the user to check the product entry + in the AY configuration file (bsc#1175876). +- 4.3.65 + binutils +- Add binutils-fix-relax.diff to fix linking relaxation problems + with old object files hitting some enterprise software. [bsc#1179341] + +- Update binutils-2.35-branch.diff.gz to commit 1c5243df: + * Fixes PR26520, aka [bsc#1179036], a problem in addr2line with + certain DWARF variable descriptions. + * Also fixes PR26711, PR26656, PR26655, PR26929, PR26808, PR25878, + PR26740, PR26778, PR26763, PR26685, PR26699, PR26902, PR26869, + PR26711 + * The above includes fixes for dwo files produced by modern dwp, + fixing several problems in the DWARF reader. + +- Reapply spec file cleanup from format_spec_file +- Remove a SLE10 version check + +- Update to 2.35.1 and rebased branch diff: + * This is a point release over the previous 2.35 version, containing bug + fixes, and as an exception to the usual rule, one new feature. The + new feature is the support for a new directive in the assembler: + ".nop". This directive creates a single no-op instruction in whatever + encoding is correct for the target architecture. Unlike the .space or + .fill this is a real instruction, and it does affect the generation of + DWARF line number tables, should they be enabled. + +- Amend binutils-revert-plt32-in-branches.diff to adjust also new + testcases. branding-openSUSE +- Bump to 15.3 + +- Sync with Tumbleweed btrfsprogs +- Refresh manual pages after the docs change (jsc#SLE-13586) + bzip2 -- update bzip2-1.0.6-CVE-2019-12900.patch to accept as many - selectors as the file format allows. This relaxes the previous - fix for CVE-2019-12900 so that bzip2 allows decompression of bz2 - files that use (too) many selectors again. It fixes a bzip2 and - lbzip2 incompatibility caused by previous patch [bsc#1139083] - [CVE-2019-12900] - -- add bzip2-1.0.6-CVE-2019-12900.patch to fix an out-of-bounds - write in decompress.c when there are many nSelectors used in a - loop to access selectorMtf [bsc#1139083] [CVE-2019-12900] - -- add bzip2-1.0.6-CVE-2016-3189.patch to fix a heap use after - free vulnerability that was reported in bzip2recover [bsc#985657] - [CVE-2016-3189] - -- Update autotools patchset: - D bzip2-1.0.6-autoconfiscated.patch - A bzip2-1.0.6.2-autoconfiscated.patch - -- Use %license (boo#1082318) - -- Fix build on Fedora and Mageia - -- Update bzip2-1.0.6-autoconfiscated.patch: - * Bump version to 1.0.6. - * Fix script symlinks on platforms with EXEEXT. - -- Drop implicit pie building -- Try profiled build -- Move autoreconf to build section - -- cleanup with spec-cleaner - -- add bzip2-1.0.6-bzgrep_return_value.patch to fix bzgrep wrapper - that always returns 0 as an exit code when grepping multiple - archives [bsc#970260] - -- Remove bzip2-faster.patch, it causes a crash with libarchive and - valgrind points out uninitialized memory. See - https://github.com/libarchive/libarchive/issues/637#issuecomment-170612576 - -- Avoid noarch sub package in SLE_11 - -- Cleanup a bit. -- Remove the profiling stuff as it should not be used nowdays. - At least even factory builds without it. -- Provide libbz2.so.1.0 as other distros do, so we can run tiny - things like steam. -- Respect cflags again, borked by previous commit. - -- build with PIE - -- fix basisms in bzgrep and bznew -- add patches: - * bzip2-1.0.6-fix-bashisms.patch - c-ares +- add BR for pkg-config to get the provides in the devel package + cdrtools +- fix_junk_in_partition.patch: Initialize memory that created the + partition table instead of writing random bytes to it (bsc#1178692) + ceph -- Update to 16.0.0-5613-gb1a0951432: - + rebase on tip of upstream "master" branch, SHA1 5df5d8f8ff463f2560180dc8e9722d6690b0fa12 +- Update to 15.2.8-80-g1f4b6229ca: + + Rebase on tip of upstream "octopus" branch, SHA1 bdf3eebcd22d7d0b3dd4d5501bee5bac354d5b55 + * upstream Octopus v15.2.8 release, see https://ceph.io/releases/v15-2-8-octopus-released/ + * (bsc#1179802, bsc#1180155, CVE-2020-27781) cephx privilege escalation possible via + ceph_volume_client Python interface -- Update to 16.0.0-4863-g5d95d9d41d: - + cmake: detect and use sigdescr_np() if available (bsc#1175266) +- Update to 15.2.7-776-g343cd10fe5: + + Rebase on tip of upstream "octopus" branch, SHA1 1b8a634fdcd94dfb3ba650793fb1b6d09af65e05 + * (bsc#1178860) mgr/dashboard: Disable TLS 1.0 and 1.1 + + (bsc#1179016) rpm: require smartmontools on SUSE + + (bsc#1180107) ceph-volume: pass --filter-for-batch from drive-group subcommand -- Update to 16.0.0-4862-g8ac6038555: - + rebase on tip of upstream "master" branch, SHA1 46c912978aa6a0b0f67094a27933c7bea829e6c9 +- Update to 15.2.7-689-g2c35e99e0a: + + Rebase on tip of upstream "octopus" branch, SHA1 bf8c93ed52f9fc8b0ead7434383bfc40f78d4204 + * upstream Octopus v15.2.7 release, see https://ceph.io/releases/v15-2-7-octopus-released/ + * (bsc#1179526) rgw: during GC defer, prevent new GC enqueue + + (bsc#1179452) mgr/insights: Test environment requires 'six' -- checkin.sh: build only one frontend language (English) by default, to speed - up tarball generation +- Update to 15.2.6-684-gd472d0011a: + + Rebase on tip of upstream "octopus" branch, SHA1 ad83229f58142c7c9e23b931df437dfdbc9a9f68 + * upstream Octopus v15.2.6 release, see https://ceph.io/releases/v15-2-6-octopus-released/ + + qa/task/cephadm: run cephadm only on bootstrap_remote + +- Update to 15.2.5-667-g1a579d5bf2: + + Fix CVE-2020-25660 (bsc#1177843) + * mon/MonClient: bring back CEPHX_V2 authorizer challenges + * msg/async/ProtocolV1: resurrect "implement cephx_*require_version options" + * msg/async/ProtocolV1: resurrect "include MGR as service when applying cephx settings" + +- Update to 15.2.5-664-gfbc9fa98aa: + + Rebase on tip of upstream "octopus" branch, SHA1 31d4e76d0d584790763b4b1146b29ea4cfc2e9af + * (bsc#1170200) mgr/dashboard: Fix for CrushMap viewer items getting compressed vertically + * (bsc#1174466) mon: have 'mon stat' output json as well + * (bsc#1177344) mgr/dashboard: support Orchestrator and user-defined Ganesha cluster + * (bsc#1178073) mgr/dashboard: fix downstream NFS doc links + * (bsc#1178531) cephadm: set default container_image to registry.suse.com/ses/7/ceph/ceph + +- Update to 15.2.5-514-g7a2bcdb091: + + Rebase on tip of upstream "octopus" branch, SHA1 afe740393a17dc80a91f8baca4ef92d0135c4525 + + (bsc#1177319) mgr/cephadm: make --container-init a global option + + (bsc#1177933) cephadm: configure journald as the logdriver + +- Update to 15.2.5-432-g0ead4ca479: + + cephadm: allow uid/gid == 0 in copy_tree, copy_files, move_files (bsc#1177676) + +- Update to 15.2.5-430-g652d1d1e54: + + Revert "spec: Podman (temporarily) requires apparmor-abstractions on suse" + (bsc#1177643) + +- Update to 15.2.5-429-g96b264c584: + + Rebase on tip of upstream "octopus" branch, SHA1 82793ade49526d7d5674e488fba88e7568888ebb + * (bsc#1173079) mgr/devicehealth: device_health_metrics pool gets created + even without any OSDs in the cluster + +- Update to 15.2.5-411-g6432ac8c37: + + Rebase on tip of upstream "octopus" branch, SHA1 72e846aa6fb25df05a17ded0287ff0a59c579d7f + * (bsc#1174644) cephadm: log to file + * (bsc#1176499) mgr/cephadm: fix RemoveUtil.load_from_store() + +- Update to 15.2.5-355-g33a4cd4ce3: + + Rebase on tip of upstream "octopus" branch, SHA1 be28449139148fb00086e11185abeebd3cb5b5b8 + + ceph-volume: don't exit before empty report can be printed (bsc#1177450) + +- Update to 15.2.5-352-gf4a94295a4: + + Rebase on tip of upstream "octopus" branch, SHA1 e819e7280dd64d9f2d54359067056fe0e342c10d + + Drop patch "rpm: on SUSE, podman is required for cephadm to work" + (bsc#1176451) + + Re-cherry-pick "ceph-volume: major batch refactor" upstream octopus backport PR + * (bsc#1177151) python-common: do not skip unavailable devices + +- Update to 15.2.5-222-g3a105ce6a4: + + cherry-pick --container-init feature and follow-on fix from upstream + (bsc#1163764) (bsc#1177319) + * cephadm: Fix error setting 'mgr/cephadm/container_init' config + * mgr/cephadm: Call cephadm with --container-image + * cephadm: Add --container-image + +- Update to 15.2.5-220-gb758bfd693: + + rebase on tip of upstream "octopus" branch, SHA1 4e5be808dc271f6dc00ebdcc352e5e8ab0bac16e + * mgr/dashboard: Fix bugs in a unit test and i18n translation (bsc#1177078) + +- Update to 15.2.5-206-g1627a4c33d: + + octopus: cephfs: backport snap-schedule module (jsc#SES-704) + +- Update to 15.2.5-170-g2cc001476b: + + Updated SES7 downstream branding (bsc#1175120) + + monitoring: switch to CaaSP v4.5 container images + + ceph-volume: batch: call the right prepare method + + ceph-volume: batch: fix very_fast_allocation plan and add tests + +- Update to 15.2.5-167-gee11658d9d: + + rebase on tip of upstream "octopus" branch, SHA1 efdb0db2de7b1795bace506fc1538c0325fdcbbc + * upstream Octopus v15.2.5 release, see https://ceph.io/releases/v15-2-5-octopus-released/ + +- Update to 15.2.4-944-g85788353cf: + + ceph-volume: batch: call the right prepare method (bsc#1176638) + +- Update to 15.2.4-942-g7a609d729d: + + ceph-volume: major batch refactor (jsc#SES-1071) + +- Update to 15.2.4-908-g4cc5421bb2: + + octopus: cephadm batch backport September (1) (upstream PR #36975) + + mgr/dashboard: Downstream branding update + +- Update to 15.2.4-864-g0f510cb110: + + rebase on tip of upstream "octopus" branch, SHA1 65d8836383deeacfc8343f8d6563548a4c44c835 + + revert "ceph-volume: add lvmcache plugin" (jsc#SES-185) + + rpm: on SUSE, podman is required for cephadm to work (bsc#1174529) + + mgr/dashboard: Downstream branding update (bsc#1175161, bsc#1175169) + + monitoring: use full qualified image names for cephadm + +- Update to 15.2.4-827-g318de690ed: + + ceph-volume: add lvmcache plugin chromium +- Update to 88.0.4324.96 bsc#1181137 + - CVE-2021-21117: Insufficient policy enforcement in Cryptohome + - CVE-2021-21118: Insufficient data validation in V8 + - CVE-2021-21119: Use after free in Media + - CVE-2021-21120: Use after free in WebSQL + - CVE-2021-21121: Use after free in Omnibox + - CVE-2021-21122: Use after free in Blink + - CVE-2021-21123: Insufficient data validation in File System API + - CVE-2021-21124: Potential user after free in Speech Recognizer + - CVE-2021-21125: Insufficient policy enforcement in File System API + - CVE-2020-16044: Use after free in WebRTC + - CVE-2021-21126: Insufficient policy enforcement in extensions + - CVE-2021-21127: Insufficient policy enforcement in extensions + - CVE-2021-21128: Heap buffer overflow in Blink + - CVE-2021-21129: Insufficient policy enforcement in File System API + - CVE-2021-21130: Insufficient policy enforcement in File System API + - CVE-2021-21131: Insufficient policy enforcement in File System API + - CVE-2021-21132: Inappropriate implementation in DevTools + - CVE-2021-21133: Insufficient policy enforcement in Downloads + - CVE-2021-21134: Incorrect security UI in Page Info + - CVE-2021-21135: Inappropriate implementation in Performance API + - CVE-2021-21136: Insufficient policy enforcement in WebView + - CVE-2021-21137: Inappropriate implementation in DevTools + - CVE-2021-21138: Use after free in DevTools + - CVE-2021-21139: Inappropriate implementation in iframe sandbox + - CVE-2021-21140: Uninitialized Use in USB + - CVE-2021-21141: Insufficient policy enforcement in File System API +- Added patches: + - chromium-88-compiler.patch + - chromium-88-ozone-deps.patch + - chromium-88-ityp-include.patch + - chromium-88-AXTreeFormatter-include.patch + - chromium-88-BookmarkModelObserver-include.patch + - chromium-88-federated_learning-include.patch + - chromium-88-ideographicSpaceCharacter.patch + - chromium-88-StringPool-include.patch + - chromium-88-dawn-static.patch + - chromium-88-CompositorFrameReporter-dcheck.patch +- Removed patches: + - gpu-timeout.patch + - chromium-87-compiler.patch + - chromium-87-ServiceWorkerContainerHost-crash.patch + - chromium-87-ozone-deps.patch + - chromium-87-v8-icu68.patch + - chromium-87-icu68.patch + +- Remove C++ only flags from CFLAGS +- Update chromium-gcc11.patch +- Comply with new Google API key rules for Derivatives + +- Update to 87.0.4280.141 bsc#1180645 + - CVE-2021-21106: Use after free in autofill + - CVE-2021-21107: Use after free in drag and drop + - CVE-2021-21108: Use after free in media + - CVE-2021-21109: Use after free in payments + - CVE-2021-21110: Use after free in safe browsing + - CVE-2021-21111: Insufficient policy enforcement in WebUI + - CVE-2021-21112: Use after free in Blink + - CVE-2021-21113: Heap buffer overflow in Skia + - CVE-2020-16043: Insufficient data validation in networking + - CVE-2021-21114: Use after free in audio + - CVE-2020-15995: Out of bounds write in V8 + - CVE-2021-21115: Use after free in safe browsing + - CVE-2021-21116: Heap buffer overflow in audio + +- Use main URLs instead of redirects in master preferences +- Remove useless %post and %postun + chrony +- Integrate three upstream patches to fix an infinite loop in + chronyc (bsc#1171806). + * chrony-select-timeout.patch + * chrony-gettimeofday.patch + * chrony-urandom.patch + +- Use iburst in the default pool statements to speed up initial + synchronisation (bsc#1172113). + cracklib -- Update to version 2.9.7: - + fix a buffer overflow processing long words. -- Drop 0003-overflow-processing-gecos.patch and - 0004-overflow-processing-long-words.patch: fixed upstream. -- Update source URI. -- Remove use of translation-update-upstream. It cannot be added to - ring 0 on leap, and 2.9.7 has some translation fixes - (bsc#1172396). - -- Enable translation-update-upstream on leap, to remove the use of - is_opensuse (jsc#SLE-12096). - -- use /usr/lib instead of %{_libexecdir}, %{_libexecdir} should - contain internal binaries, not data - -- Use %license (boo#1082318) - -- Update to 2.9.6 - * fix issue with sort and locale - * some particularly bad cases to the cracklib small dictionary - * updates to cracklib-words (adds a bunch of other dictionary lists) - * migration to github -- run spec-cleaner - -- Only buildrequire and call translation-update-upstream on SLE: - the package in openSUSE is a dummy and is empty. - -- Add patch 0004-overflow-processing-long-words.patch - to fix a new buffer overflow identified together with bsc#992966. - -- Relabel patches: - cracklib-magic.diff -> 0001-cracklib-magic.diff - cracklib-2.9.2-visibility.patch -> 0002-cracklib-2.9.2-visibility.patch -- Add patch 0003-overflow-processing-gecos.patch - to fix a buffer overflow in GECOS parser (bsc#992966 CVE-2016-6318) - -- Update to 2.9.5 - * fix matching against first password in dictionary (Anton Dobkin) -- Changes for 2.9.4 - * remove doubled prototype -- Changes for 2.9.3 - * expose additional functions externally - -- Cleanup spec file with spec-cleaner -- Remove old ppc provides/obsoletes - -- Update to version 2.9.2 - + support build of python support outside of source tree - + fix bug in Python string distance calculation - + fix bug #16 / debian bug 724570 - broken optimization with packlib - prevblock -- Adapt patch to upstream changes - + cracklib-visibility.patch > cracklib-2.9.2-visibility.patch - cryptsetup -- New version 2.0.6 (jsc#SLE-5911, bsc#1165580): - Changes since version 2.0.5 - ~~~~~~~~~~~~~~~~~~~~~~~~~~~ - * Fix support of larger metadata areas in LUKS2 header. - This release properly supports all specified metadata areas, as documented - in LUKS2 format description (see docs/on-disk-format-luks2.pdf in archive). - Currently, only default metadata area size is used (in format or convert). - Later cryptsetup versions will allow increasing this metadata area size. - * If AEAD (authenticated encryption) is used, cryptsetup now tries to check - if the requested AEAD algorithm with specified key size is available - in kernel crypto API. - This change avoids formatting a device that cannot be later activated. - For this function, the kernel must be compiled with the - CONFIG_CRYPTO_USER_API_AEAD option enabled. - Note that kernel user crypto API options (CONFIG_CRYPTO_USER_API and - CONFIG_CRYPTO_USER_API_SKCIPHER) are already mandatory for LUKS2. - * Fix setting of integrity no-journal flag. - Now you can store this flag to metadata using --persistent option. - * Fix cryptsetup-reencrypt to not keep temporary reencryption headers - if interrupted during initial password prompt. - * Adds early check to plain and LUKS2 formats to disallow device format - if device size is not aligned to requested sector size. - Previously it was possible, and the device was rejected to activate by - kernel later. - * Fix checking of hash algorithms availability for PBKDF early. - Previously LUKS2 format allowed non-existent hash algorithm with - invalid keyslot preventing the device from activation. - * Allow Adiantum cipher construction (a non-authenticated length-preserving - fast encryption scheme), so it can be used both for data encryption and - keyslot encryption in LUKS1/2 devices. - For benchmark, use: - [#] cryptsetup benchmark -c xchacha12,aes-adiantum - [#] cryptsetup benchmark -c xchacha20,aes-adiantum - For LUKS format: - [#] cryptsetup luksFormat -c xchacha20,aes-adiantum-plain64 -s 256 - The support for Adiantum will be merged in Linux kernel 4.21. - For more info see the paper https://eprint.iacr.org/2018/720. +- SLE marker: implements jsc#SLE-5911, bsc#1165580, jsc#SLE-145149 + +- prepare usrmerge (boo#1029961) + +- Update to 2.3.4: + * Fix a possible out-of-bounds memory write while validating LUKS2 data + segments metadata (CVE-2020-14382, boo#1176128). + * Ignore reported optimal IO size if not aligned to minimal page size. + * Added support for new no_read/write_wrokqueue dm-crypt options (kernel 5.9). + * Added support panic_on_corruption option for dm-verity devices (kernel 5.9). + * Support --master-key-file option for online LUKS2 reencryption + * Always return EEXIST error code if a device already exists. + * Fix a problem in integritysetup if a hash algorithm has dash in the name. + * Fix crypto backend to properly handle ECB mode. + * TrueCrypt/VeraCrypt compatible mode now supports the activation of devices + with a larger sector. + * LUKS2: Do not create excessively large headers. + * Fix unspecified sector size for BitLocker compatible mode. + * Fix reading key data size in metadata for BitLocker compatible mode. + +- Update to 2.3.3: + * Fix BitLocker compatible device access that uses native 4kB + sectors + * Support large IV count (--iv-large-sectors) cryptsetup option + for plain device mapping + * Fix a memory leak in BitLocker compatible handling + * Allow EBOIV (Initialization Vector algorithm) use + * LUKS2: Require both keyslot cipher and key size option, do + not fail silently +- includes changes from 2.3.2: + * Add option to dump content of LUKS2 unbound keyslot + * Add support for discards (TRIM) for standalone dm-integrity + devices (Kernel 5.7) via --allow-discards, not for LUKS2 + * Fix cryptsetup-reencrypt to work on devices that do not allow + direct-io device access. + * Fix a crash in the BitLocker-compatible code error path + * Fix Veracrypt compatible support for longer (>64 bytes) + passphrases + +- Split translations to -lang package +- New version to 2.3.1 + * Support VeraCrypt 128 bytes passwords. + VeraCrypt now allows passwords of maximal length 128 bytes + (compared to legacy TrueCrypt where it was limited by 64 bytes). + * Strip extra newline from BitLocker recovery keys + There might be a trailing newline added by the text editor when + the recovery passphrase was passed using the --key-file option. + * Detect separate libiconv library. + It should fix compilation issues on distributions with iconv + implemented in a separate library. + * Various fixes and workarounds to build on old Linux distributions. + * Split lines with hexadecimal digest printing for large key-sizes. + * Do not wipe the device with no integrity profile. + With --integrity none we performed useless full device wipe. + * Workaround for dm-integrity kernel table bug. + Some kernels show an invalid dm-integrity mapping table + if superblock contains the "recalculate" bit. This causes + integritysetup to not recognize the dm-integrity device. + Integritysetup now specifies kernel options such a way that + even on unpatched kernels mapping table is correct. + * Print error message if LUKS1 keyslot cannot be processed. + If the crypto backend is missing support for hash algorithms + used in PBKDF2, the error message was not visible. + * Properly align LUKS2 keyslots area on conversion. + If the LUKS1 payload offset (data offset) is not aligned + to 4 KiB boundary, new LUKS2 keyslots area in now aligned properly. + * Validate LUKS2 earlier on conversion to not corrupt the device + if binary keyslots areas metadata are not correct. + +- Update to 2.3.0 (include release notes for 2.2.0) + * BITLK (Windows BitLocker compatible) device access + * Veritysetup now supports activation with additional PKCS7 signature + of root hash through --root-hash-signature option. + * Integritysetup now calculates hash integrity size according to algorithm + instead of requiring an explicit tag size. + * Integritysetup now supports fixed padding for dm-integrity devices. + * A lot of fixes to online LUKS2 reecryption. + * Add crypt_resume_by_volume_key() function to libcryptsetup. + If a user has a volume key available, the LUKS device can be resumed + directly using the provided volume key. + No keyslot derivation is needed, only the key digest is checked. + * Implement active device suspend info. + Add CRYPT_ACTIVATE_SUSPENDED bit to crypt_get_active_device() flags + that informs the caller that device is suspended (luksSuspend). + * Allow --test-passphrase for a detached header. + Before this fix, we required a data device specified on the command + line even though it was not necessary for the passphrase check. + * Allow --key-file option in legacy offline encryption. + The option was ignored for LUKS1 encryption initialization. + * Export memory safe functions. + To make developing of some extensions simpler, we now export + functions to handle memory with proper wipe on deallocation. + * Fail crypt_keyslot_get_pbkdf for inactive LUKS1 keyslot. + * Add optional global serialization lock for memory hard PBKDF. + * Abort conversion to LUKS1 with incompatible sector size that is + not supported in LUKS1. + * Report error (-ENOENT) if no LUKS keyslots are available. User can now + distinguish between a wrong passphrase and no keyslot available. + * Fix a possible segfault in detached header handling (double free). + * Add integritysetup support for bitmap mode introduced in Linux kernel 5.2. + * The libcryptsetup now keeps all file descriptors to underlying device + open during the whole lifetime of crypt device context to avoid excessive + scanning in udev (udev run scan on every descriptor close). + * The luksDump command now prints more info for reencryption keyslot + (when a device is in-reencryption). + * New --device-size parameter is supported for LUKS2 reencryption. + * New --resume-only parameter is supported for LUKS2 reencryption. + * The repair command now tries LUKS2 reencryption recovery if needed. + * If reencryption device is a file image, an interactive dialog now + asks if reencryption should be run safely in offline mode + (if autodetection of active devices failed). + * Fix activation through a token where dm-crypt volume key was not + set through keyring (but using old device-mapper table parameter mode). + * Online reencryption can now retain all keyslots (if all passphrases + are provided). Note that keyslot numbers will change in this case. + * Allow volume key file to be used if no LUKS2 keyslots are present. + * Print a warning if online reencrypt is called over LUKS1 (not supported). + * Fix TCRYPT KDF failure in FIPS mode. + * Remove FIPS mode restriction for crypt_volume_key_get. + * Reduce keyslots area size in luksFormat when the header device is too small. + * Make resize action accept --device-size parameter (supports units suffix). + +- Create a weak dependency cycle between libcryptsetup and + libcryptsetup-hmac to make sure they are installed together + (bsc#1090768) + +- Use noun phrase in summary. + +- New version 2.1.0 + * The default size of the LUKS2 header is increased to 16 MB. + It includes metadata and the area used for binary keyslots; + it means that LUKS header backup is now 16MB in size. + * Cryptsetup now doubles LUKS default key size if XTS mode is used + (XTS mode uses two internal keys). This does not apply if key size + is explicitly specified on the command line and it does not apply + for the plain mode. + This fixes a confusion with AES and 256bit key in XTS mode where + code used AES128 and not AES256 as often expected. + * Default cryptographic backend used for LUKS header processing is now + OpenSSL. For years, OpenSSL provided better performance for PBKDF. + * The Python bindings are no longer supported and the code was removed + from cryptsetup distribution. Please use the libblockdev project + that already covers most of the libcryptsetup functionality + including LUKS2. + * Cryptsetup now allows using --offset option also for luksFormat. + * Cryptsetup now supports new refresh action (that is the alias for + "open --refresh"). + * Integritysetup now supports mode with detached data device through + new --data-device option. +- 2.1.0 would use LUKS2 as default, we stay with LUKS1 for now until + someone has time to evaluate the fallout from switching to LUKS2. curl +- Security fix: [bsc#1179593, CVE-2020-8286] + * Inferior OCSP verification: libcurl offers "OCSP stapling" via + the 'CURLOPT_SSL_VERIFYSTATUS' option that, when set, verifies + the OCSP response that a server responds with as part of the TLS + handshake. It then aborts the TLS negotiation if something is + wrong with the response. The same feature can be enabled with + '--cert-status' using the curl tool. + * As part of the OCSP response verification, a client should verify + that the response is indeed set out for the correct certificate. + This step was not performed by libcurl when built or told to use + OpenSSL as TLS backend. +- Add curl-CVE-2020-8286.patch + +- Security fix: [bsc#1179399, CVE-2020-8285] + * FTP wildcard stack overflow: The wc_statemach() internal + function has been rewritten to use an ordinary loop instead of + the recursive approach. +- Add curl-CVE-2020-8285.patch + +- Security fix: [bsc#1179398, CVE-2020-8284] + * Trusting FTP PASV responses: When curl performs a passive FTP + transfer, it first tries the 'EPSV' command and if that is not + supported, it falls back to using 'PASV'. A malicious server + can use the 'PASV' response to trick curl into connecting + back to a given IP address and port, and this way potentially + make curl extract information about services that are otherwise + private and not disclosed. + * The IP address part of the response is now ignored by default, + by making 'CURLOPT_FTP_SKIP_PASV_IP' default to '1L'. The same + goes for the command line tool, which then might need + '--no-ftp-skip-pasv-ip' set to prevent curl from ignoring the + address in the server response. +- Add curl-CVE-2020-8284.patch + cyrus-sasl +- CVE-2020-8032: cyrus-sasl: Local privilege escalation to root + due to insecure tmp file usage. (bsc#1180669) + Use /var/adm/update-scripts/ instead of /tmp. Clean up temporary + files. + +- Remove Berkeley DB dependency (JIRA#SLE-12190) + The packages cyrus-sasl and cyrus-sasl-saslauthd are built + without Berkely DB support. gdbm will be used instead of BDB. + The packages cyrus-sasl-bdb and cyrus-sasl-saslauthd-bdb are built + with Berkely DB support. +- Update to 2.1.27 + * Added support for OpenSSL 1.1 + * Added support for lmdb + * Lots of build fixes + * Treat SCRAM and DIGEST-MD5 as more secure than PLAIN when selecting client mech + * DIGEST-MD5 plugin: + Fixed memory leaks + Fixed a segfault when looking for non-existent reauth cache + Prevent client from going from step 3 back to step 2 + Allow cmusaslsecretDIGEST-MD5 property to be disabled + * GSSAPI plugin: + Added support for retrieving negotiated SSF + Fixed GSS-SPNEGO to use flags negotiated by GSSAPI for SSF + Properly compute maxbufsize AFTER security layers have been set + * SCRAM plugin: + Added support for SCRAM-SHA-256 + * LOGIN plugin: + Don’t prompt client for password until requested by server + * NTLM plugin: + Fixed crash due to uninitialized HMAC context +- Replace references to /var/adm/fillup-templates with new + %_fillupdir macro (boo#1069468) +- bsc#983938 `After=syslog.target` left-overs in several unit files +- added patches: + fix_libpq-fe_include.diff for fixing including libpq-fe.h +- removed patches obsoleted by upstream changes: + * shared_link_on_ppc.patch + * cyrus-sasl-2.1.27-openssl-1.1.0.patch + * 0002-Drop-unused-parameter-from-gssapi_spnego_ssf.patch + * 0003-Check-return-error-from-gss_wrap_size_limit.patch + * 0004-Add-support-for-retrieving-the-mech_ssf.patch + * 0001-Fix-GSS-SPNEGO-mechanism-s-incompatible-behavior.patch + * cyrus-sasl-fix-logging-in-gssapi.patch + +- Added support for retrieving negotiated SSF in gssapi plugin (bsc#1162518) + * Add 0002-Drop-unused-parameter-from-gssapi_spnego_ssf.patch + * Add 0003-Check-return-error-from-gss_wrap_size_limit.patch + * Add 0004-Add-support-for-retrieving-the-mech_ssf.patch +- Fixed GSS-SPNEGO to use flags negotiated by GSSAPI for SSF (bsc#1162518) + * Add 0001-Fix-GSS-SPNEGO-mechanism-s-incompatible-behavior.patch + +- added backport-patch cyrus-sasl-bug587.patch which fixes + off-by-one error in _sasl_add_string function + (see CVE-2019-19906 bsc#1159635) + +- bnc#1044840 syslog is polluted with messages "GSSAPI client step 1" + By server context the connection will be sent to the log function. + Client content does not have log level information. I.e. there is no + way to stop DEBUG level logs nece I've removed it. + * add cyrus-sasl-fix-logging-in-gssapi.patch + +- OpenSSL 1.1 support (bsc#1055463) + * add cyrus-sasl-2.1.27-openssl-1.1.0.patch from Fedora + +- added cyrus-sasl-issue-402.patch to fix + SASL GSSAPI mechanism acceptor wrongly returns zero maxbufsize #402 + (see https://github.com/cyrusimap/cyrus-sasl/issues/402) + +- bnc#1026825 saslauthd: :set_auth_mech : unknown authentication mechanism: kerberos5 + +- really use SASLAUTHD_PARAMS variable (bnc#938657) + +- bnc#908883 cyrus-sasl-scram refers to wrong RFC + +- Make sure /usr/sbin/rcsaslauthd exists + distribution-logos-openSUSE +- Only build Leap subpackage on Leap base and Tumbleweed based + distros subpackages on Tumbleweed base + +- Add favicon.ico format + +- Remove obsolete Groups tag (fate#326485) + dmidecode +1 recommended fix from upstream: +- dmidecode-missing-commas.patch: Two missing commas in data arrays + cause off-by-one or mangling during index resolution + (bsc#1174257). + dnsmasq +- bsc#1177077: Fixed DNSpooq vulnerabilities (dnsmasq-dnspooq.patch) +- CVE-2020-25684, CVE-2020-25685, CVE-2020-25686: + Fixed multiple Cache Poisoning attacks. +- CVE-2020-25681, CVE-2020-25682, CVE-2020-25683, CVE-2020-25687: + Fixed multiple potential Heap-based overflows when DNSSEC is + enabled. + +- Retry query to other servers on receipt of SERVFAIL rcode + (bsc#1176076, dnsmasq-servfail.patch) + emacs +- Add patch emacs-libX11-boo1175028.patch to fix SIGSEGV introduced + by a security fix for libX11 (boo#1175028) + -- Make it work again, that is - remove emacs-24.3-giflib5-interlace.patch - and include changes and corrected cpp boolean in - patch emacs-24.3-giflib5.diff - -- Update emacs-24.3-giflib5.diff to support giflib7-5.1.0 API - -- Add Utility category to .desktop file. - -- Don't use outdated C standard - -- Modify emacs-24.3-giflib5-interlace.patch in such a way that - it works with older giflibraries - -- Add the patches - CVE-2014-3421.patch - CVE-2014-3422.patch - CVE-2014-3423.patch - CVE-2014-3424.patch - to avoid several unsecure usage of temporary files (bnc#876847) - -- remove dependency on bind-devel (I don't see any usage of - bind in the source, and I see no such dependency in packaging - on other distros) - -- Adding coreutils to etags scriptlets requirements (bnc#865845) - -- emacs-24.3-giflib5-interlace.patch: fix display of interlaced GIF images - -- Do not reassign S-left, S-right, S-up and S-down anymore (bnc#858430) - -- Change emacs wrapper script to use new dbus-run-session tool to - avoid hanging emacs on terminal mode due I/O conflict on stdin - of both emacs and dbus-launch session (bnc#853082) - -- emacs-24.3-glibc.patch, emacs-24.3.dif: Remove obsolete hunks -- emacs-24.3-xevent.patch: Remove obsolete patch -- Remove unknown configure option --without-sync-input - -- Added /usr/share/emacs/site-lisp/site-start.d to package owned - directories so other packages do not need to own it - -- Fix connection problem to Typhoon nntp servers. Instead of - CAPABILITIES use HELP - * emacs-24.3-nntp-typhoon-fix.patch - -- Enforce update alternatives simply to avoid bug reports about - warnings - -- Disable fontsets and enforce Xft as font backend - -- Remove not used spec file scriplets -- Make pre requires more smart -- Avoid trouble with new byte compile format and old font-latex.elc - -- Make emacs launch script smart, that is search for a valid dbus - on the current system if if not found launch a own dbus session -- With emacs version 24.3 the package epg becoes obsolate - -- Update to to emacs version 24.3 - * Emacs no longer searches for `leim-list.el' files beneath the standard - lisp/ directory. There should not be any there anyway. If you have - been adding them there, put them somewhere else; e.g., site-lisp. - * `C-h f' (`describe-function') can now perform autoloading. - When this command is called for an autoloaded function whose docstring - contains a key substitution construct, that function's library is - automatically loaded, so that the documentation can be shown - correctly. To disable this, set `help-enable-auto-load' to nil. - * `C-h f' now reports previously-autoloaded functions as "autoloaded", - even after their associated libraries have been loaded (and the - autoloads have been redefined as functions). - * Images displayed via ImageMagick now support transparency and the - :background image specification property. - * When available, ImageMagick support is automatically enabled. - It is no longer necessary to call `imagemagick-register-types' - explicitly to install ImageMagick image types; that function is called - automatically at startup, or when customizing an imagemagick- option. - * Setting `imagemagick-types-inhibit' to t now disables the use of - ImageMagick to view images. (You must call `imagemagick-register-types' - afterwards if you do not use customize to change this.) - * The new variable `imagemagick-enabled-types' also affects which - ImageMagick types are treated as images. The function - `imagemagick-filter-types' returns the list of types that will be - treated as images. - * In minibuffer filename prompts, `C-M-f' and `C-M-b' now move to the - next and previous path separator, respectively. - * `minibuffer-electric-default-mode' can shorten "(default ...)" to "[...]" - in minibuffer prompts. Just set `minibuffer-eldef-shorten-default' - non-nil before enabling the mode. - * New option `mode-line-default-help-echo' specifies the help text - (shown in a tooltip or in the echo area) for any part of the mode line - that does not have its own specialized help text. - * You can now click mouse-3 in the coding system indicator to invoke - `set-buffer-file-coding-system'. - * emacsclient now obeys string values for `initial-buffer-choice', - if it is told to open a new frame without specifying any file to visit - or expression to evaluate. - * New option `server-auth-key' specifies a shared server key. - * Emacs now generates backtraces on fatal errors. - On encountering a fatal error, Emacs now outputs a textual description - of the fatal signal, and a short backtrace on platforms like glibc - that support backtraces. - * `C-x C-q' is now bound to the new minor mode `read-only-mode'. - This minor mode replaces `toggle-read-only', which is now obsolete. - * Most `y-or-n' prompts now allow you to scroll the selected window. - Typing `C-v' or `M-v' at a y-or-n prompt scrolls forward or backward - respectively, without exiting from the prompt. - * In the Package Menu, newly-available packages are listed as "new", - and sorted above the other "available" packages by default. - * If your Emacs was built from a bzr checkout, the new variable - `emacs-bzr-version' contains information about the bzr revision used. - * New option `create-lockfiles' specifies usage of lockfiles. - It defaults to t. Changing it to nil inhibits the creation of lock - files (use this with caution). - * New option `enable-remote-dir-locals', if non-nil, allows directory-local - variables on remote hosts. - * The entry for PCL-CVS has been removed from the Tools menu. - The PCL-CVS commands are still available via the keyboard. - * Using "unibyte: t" in Lisp source files is obsolete. - Use "coding: raw-text" instead. - * In the buffer made by `M-x report-emacs-bug', the `C-c m' binding - has been changed to `C-c M-i' (`report-emacs-bug-insert-to-mailer'). - The previous binding, introduced in Emacs 24.1, was a mistake, because - `C-c LETTER' bindings are reserved for user customizations. - * Non-regexp Isearch now performs "lax" space matching. - Each sequence of spaces in the supplied search string may match any - sequence of one or more whitespace characters, as specified by the - variable `search-whitespace-regexp'. (This variable is also used by a - similar existing feature for regexp Isearch.) - * New Isearch command `M-s SPC' toggles lax space matching. - This applies to both ordinary and regexp Isearch. - * New option `replace-lax-whitespace'. - If non-nil, `query-replace' uses flexible whitespace matching too. - The default is nil. - * Global `M-s _' starts a symbol (identifier) incremental search, - and `M-s _' in Isearch toggles symbol search mode. - `M-s c' in Isearch toggles search case-sensitivity. - * New binding `M-g c' for `goto-char'. - * New binding `M-g TAB' for `move-to-column'. - * `M-g TAB' (`move-to-column') prompts for a column number if called - interactively with no prefix arg. Previously, it moved to column 1. - * New option `yank-handled-properties' allows processing of text - properties on yanked text, in ways that are more general than just - removing them (as is done by `yank-excluded-properties'). - * New option `delete-trailing-lines' specifies whether - M-x delete-trailing-whitespace should delete trailing lines at the end - of the buffer. It defaults to t. - * `C-u M-=' now counts lines/words/characters in the entire buffer. - * `C-x 8 RET' is now bound to `insert-char', which is now a command. - `ucs-insert' is now an obsolete alias for `insert-char'. - * The `z' key no longer has a binding in most special modes. - It used to be bound to `kill-this-buffer', but `z' is too easy to - accidentally type. - * New command `C-x r M-w' (`copy-rectangle-as-kill'). - It copies the region-rectangle as the last rectangle kill. - * `C-x r +' is now overloaded to invoke `append-to-register'. - * New option `register-separator' specifies the register containing - the text to put between collected texts for use with - M-x append-to-register and M-x prepend-to-register. -- Update file lists -- Remove patches done upstream -- Port remaining patches -- Exclude info.info page as this is part of package info - -- Do not install etags below OS 13.0 (bnc#820567) -- Use UTF-8 even in changelog for old entries - -- For 13+ add etags subpackage, provide ctags via update-alternatives - -- For 12.3+ buildrequire makeinfo instead of texinfo - -- fix build with giflib5 by skipping configure test and adding - emacs-24.2-giflib5.patch - -- Add missing backslashes spotted by Troy Sankey - -- Don't strip binaries -- Remove unused build requirements -- Properly configure TERMINFO (bnc#797787) - -- Remove obsolete patches -- Don't use obsolete mouse-sel -- Avoid calling autoconf -- Avoid warning about duplicate files - -- transform .tar.xz for .tar.bz2 to fix build on SLE product - -- Add workaround into emacs starter script for gtk/gstreamer bug - which overrides the locale - -- Update to to emacs version 24.2 - * This is mainly a bug-fix release -- Last patch already included - -- Add emacs-24.1-gets.patch to check whether gets is declared - before warning about it (needed by glibc 2.16). - -- Avoid missing fonts due minimal installation - -- xorg-x11-libs is not in default installation anymore, use libX11-6 - to be enhanced by emacs-x11 - -- Don't be fooled by not initialized time stamps of unused XEvent - structures which happens with old GTK-2.0 - -- make it build even for older distries - -- Avoid conflict with gnuctags - -- Update to to emacs version 24.1 - * Support for Gtk+3.0, GnuTLS, ImageMagick, libxml2, and SELinux - * Support for wide integer (62 bits) in lisp even on 32-bit machines. - * The --unibyte, --multibyte, --no-multibyte, and --no-unibyte command - line arguments, and the EMACS_UNIBYTE environment variable, no longer - have any effect. - * And many more changes see /usr/share/emacs/24.1/etc/NEWS -- Remove obsolete patches -- Refresh some others patches - -- Avoid endless loop due multiplying zero with two as this results - also in zero (bnc#763851) ... found in xgselect.c for increasing - the allocated memory used for g_main_context_query(). - -- Add version number to provide/obsolete. - -- provide/obsolete nxml-mode; now part of emacs. - -- Remove obsolete Obsoletes and Provides tags - -- Correct License tag that is that emacs is now GPLv3 or later (bnc#755524) - -- add %dir /usr/share/X11/app-defaults to fix factory build. - -- Port fix for CVE-2012-0035 to CEDET used for emacs 23.3 (bnc#740447) -- Yet an other change of the tar ball to avoid intrinsic emacs GPL - violoation - -- rebuild for ppc64 and ia64 (bnc#726769) - -- add autoconf as buildrequire to avoid implicit dependency - -- remove call to suse_update_config (very old work around) - -- Resolve build conflicts - -- Avoid SLES10 systems using kernel 2.6.16 - -- Add patch to use libtinfo if available - -- switch back to standard gcc, as bootstrapping gcc 4.3 on - arm is essentially impossible, and 4.3 is not needed anymore - (bnc#587307#c9) - -- Remove redundant/obsolete tags/sections from specfile - (cf. packaging guidelines) - -- Change tar ball to avoid intrinsic emacs GPL violoation (bnc#710247) - -- Update to to emacs version 23.3 - * The last-resort backup file `%backup%~' is now written to - `user-emacs-directory', instead of the user's home directory. - * If Emacs creates `user-emacs-directory', that directory's - permissions are now set to rwx------, ignoring the umask. - * The appt-add command takes an optional argument, the warning time. - This can be used in place of the default appt-message-warning-time. - * You can allow inferior Python processes to load modules from the - current directory by setting `python-remove-cwd-from-path' to nil. - * The default value of `rmail-enable-mime' is now t. Rmail decodes - MIME contents automatically. You can customize the variable - `rmail-enable-mime' back to `nil' to disable this automatic MIME - decoding. - * The command `rmail-mime' change the displaying of a MIME message - between decoded presentation form and raw data if `rmail-enable-mime' - is non-nil. And, with prefix argument, it change only the displaying - of the MIME entity at point. - * The new command `rmail-mime-next-item' (bound to TAB) moves point - to the next item of MIME message. - * The new command `rmail-mime-previous-item' (bound to backtab) moves - point to the previous item of MIME message. - * The new command `rmail-mime-toggle-hidden' (RET) hide or show the - body of the MIME entity at point. - * New VC command `vc-log-incoming', bound to `C-x v I'. - This shows a log of changes to be received with a pull operation. - For Git, this runs "git fetch" to make the necessary data available - locally; this requires version 1.7 or newer. - * New VC command `vc-log-outgoing', bound to `C-x v O'. - This shows a log of changes to be sent in the next commit. - * New VC command vc-find-conflicted-file. - * The 'g' key in VC diff, log, log-incoming and log-outgoing buffers - reruns the corresponding VC command to compute an up to date version - of the buffer. - * vc-dir for Bzr supports viewing shelve contents and shelving snapshots. - * Special markup can be added to log-edit buffers. - You can add headers specifying additional information to be supplied - to the version control system. - Bazaar recognizes the headers "Author", "Date" and "Fixes". - Git, Mercurial, and Monotone recognize "Author" and "Date". - Any unknown header is left as is in the message, so it is not lost. - * lmenu.el and cl-compat.el are now obsolete. - * smie.el is a generic navigation and indentation engine. - It takes a simple BNF description of the grammar, and provides both - sexp-style navigation (jumping over begin..end pairs) as well as - indentation, which can be adjusted via ad-hoc indentation rules. - * posn-col-row now excludes the header line from the row count - If the frame has a header line, posn-col-row will count row numbers - starting from the first line of text below the header line. - * `e' and `pi' are now called `float-e' and `float-pi'. - The old names are obsolete. - * The use of unintern without an obarray arg is now obsolete. - * The function `princ-list' is now obsolete. - * The yank-handler argument to kill-region and friends is now obsolete. - * New function byte-to-string, like char-to-string but for bytes. -- Remove obsolete patches -- Adopt s390x patch -- Refresh some others patches - -- Add a new patch to fix "dual font spacing problem" - * from https://bugzilla.redhat.com/show_bug.cgi?id=599437 - -- Do not iset inhibit-eol-conversion, user can customize this - to see the CR/NL at the end of DOS files (bnc#656190) - -- Support foreign emacs extensions to scanning - /usr/share/emacs/site-lisp/site-start.d/ - /etc/emacs/site-lisp/site-start.d/ - for emacs lisp files suggested by Holger Arnold (bnc#653798) - -- Update to to emacs version 23.2 - * The command-line option -Q (--quick) also inhibits loading X resources. - * The new variable `inhibit-x-resources' shows whether X resources - were loaded. - * New command-line option -mm (--maximized) maximizes the initial frame. - * The default value of `trash-directory' is now nil. - * The pointer now becomes invisible when typing. - Customize `make-pointer-invisible' to disable this feature. - * Emacs can use the system default monospaced font in Gnome. - To enable this feature, set `font-use-system-font' to non-nil (it is - nil by default). - * On X11, Emacs reacts to Xft changes made by configuration tools, - via the XSETTINGS mechanism. This includes antialias, hinting, - hintstyle, RGBA, DPI and lcdfilter changes. - * Killing a buffer with a running process now asks for confirmation. - * Unibyte sessions are now considered obsolete. - * Function arguments in *Help* buffers are now shown in upper-case. - Customize `help-downcase-arguments' to t to show them in lower-case. - * New command `async-shell-command', bound globally to `M-&'. - * When running in a new enough xterm (newer than version 242), Emacs - asks xterm what the background color is and it sets up faces - accordingly for a dark background if needed - * If `select-active-regions' is t, any active region automatically - becomes the primary selection (for interaction with other window - applications). If you enable this, you might want to bind - `mouse-yank-primary' to Mouse-2. - * When `save-interprogram-paste-before-kill' is non-nil, the kill - commands save the interprogram-paste selection into the kill ring - before doing anything else. This avoids losing the selection. - * When `kill-do-not-save-duplicates' is non-nil, identical - subsequent kills are not duplicated in the `kill-ring'. - * The new command `completion-at-point' provides mode-sensitive completion. - * tab-always-indent set to `complete' lets TAB do completion as well. - * The new completion-style `initials' is available. - For instance, this can complete M-x lch to list-command-history. - * The new variable `completions-format' determines how completions - are displayed in the *Completions* buffer. If you set it to - `vertical', completions are sorted vertically in columns. - * The default value of `blink-matching-paren-distance' is increased. - * M-n provides more default values in the minibuffer for commands - that read file names. These include the file name at point (when ffap - is loaded without ffap-bindings), the file name on the current line - (in Dired buffers), and the directory names of adjacent Dired windows - (for Dired commands that operate on several directories, such as copy, - rename, or diff). - * M-r is bound to the new `move-to-window-line-top-bottom'. - This moves point to the window center, top and bottom on successive - invocations, in the same spirit as the C-l (recenter-top-bottom) - command. - * The new variable `recenter-positions' determines the default - cycling order of C-l (`recenter-top-bottom'). - * The abbrevs file is now a file named abbrev_defs in - user-emacs-directory; but the old location, ~/.abbrev_defs, is used if - that file exists. - * The bookmark menu has a narrowing search via bookmark-bmenu-search. - * The Calc settings file is now a file named calc.el in - user-emacs-directory; but the old location, ~/.calc.el, is used if - that file exists. - * Graphing commands (`g f' etc.) now work on MS-Windows, if you have - the native Windows port of Gnuplot version 3.8 or later installed. - * Fancy diary display is now the default. - If you prefer the simple display, customize `diary-display-function'. - * The diary's fancy display now enables view-mode. - * The command `calendar-current-date' accepts an optional argument - giving an offset from today. - * The default value for `desktop-buffers-not-to-save' is nil. - This means Desktop will try restoring all buffers, when you restart - your Emacs session. Also, `desktop-buffers-not-to-save' is only - effective for buffers that have no associated file. If you want to - exempt buffers that do correspond to files, customize the value of - `desktop-files-not-to-save' instead. - * The new variable `dired-auto-revert-buffer', if non-nil, causes - Dired buffers to be reverted automatically on revisiting them. - * When `doc-view-continuous' is non-nil, scrolling a line - on the page edge advances to the next/previous page. - * Elint now uses compilation-mode. - * Elint can now scan individual files and whole directories, - and can be run in batch mode. - * Elint does a more thorough initialization, and recognizes more built-in - functions and variables. Customize `elint-scan-preloaded' if you want - to sacrifice some accuracy for a faster startup. - * Elint attempts some basic understanding of featurep and (f)boundp tests. - * Customize `elint-ignored-warnings' to suppress some warnings. - * Toolbar functionality for reverse debugging. Display of STL - collections as watch expressions. These features require GDB 7.0 or later. - * A new command `zrgrep' searches recursively in gzipped files. - * The new command `Info-virtual-index' bound to "I" displays a menu of - matched topics found in the index. - * The new command `info-finder' replaces finder.el with a virtual Info - manual that generates an Info file which gives the same information - through a menu structure. - * LaTeX mode now provides completion (via completion-at-point). - * Message mode is now the default mode for composing mail. - * If the user has not customized mail-user-agent, `compose-mail' - checks for Mail mode customizations, and issues a warning if these - customizations are found. This alerts users who may otherwise be - unaware that their mail configuration has changed. - To disable this check, set compose-mail-user-agent-warnings to nil. - * The default value of mail-interactive is t, since Emacs 23.1. - (This was not announced at the time.) It means that when sending mail, - Emacs will wait for the process sending mail to return. If you - experience delays when sending mail, you may wish to set this to nil. - * nXML mode is now the default for editing XML files. - * pcomplete provides a new command `pcomplete-std-completion' which - is similar to `pcomplete' but using the standard completion UI code. - * M-s is no longer bound to `comint-next-matching-input'. - * M-r is now bound to `comint-history-isearch-backward-regexp'. - This starts an incremental search of the comint/shell input history. - * ansi-color is now enabled by default in Shell mode. - To disable it, set ansi-color-for-comint-mode to nil. - * New connection methods "rsyncc", "imap" and "imaps". - On systems which support GVFS-Fuse, Tramp offers also the new - connection methods "dav", "davs", "obex" and "synce". - * When using C-x v v or C-x v i on a unregistered file that is in a - directory not controlled by any VCS, ask the user what VC backend to - use to create a repository, create a new repository and register the - file. - * New command `vc-root-print-log', bound to `C-x v L'. - This displays a `*vc-change-log*' buffer showing the history of the - version-controlled directory tree as a whole. - * New command `vc-root-diff', bound to `C-x v D'. - * `C-x v l' and `C-x v L' do not show the full log by default. - * vc-annotate supports annotations through file copies and renames, - it displays the old names for the files and it can show logs/diffs for - the corresponding lines. Currently only Git and Mercurial take - advantage of this feature. - * The log command in vc-annotate can display a single log entry - instead of redisplaying the full log. The RCS, CVS and SCCS VC - backends do not support this. - * When a file is not found, VC will not try to check it out of RCS anymore. - * Diff and log operations can be used from Dired buffers. - * The short log format for git makes use of the graph display, - so it's not supported on git versions earlier than 1.5.6. - * vc-dir uses the --relative option of git, and so requires at least - git version 1.5.5. - * Support for operating with stashes has been added to vc-dir: - the stash list is displayed in the *vc-dir* header, stashes can be - created, removed, applied and their content displayed. - * vc-bzr supports operating with shelves: the shelve list is - displayed in the *vc-dir* header, shelves can be created, removed and applied. - * log-edit-strip-single-file-name controls whether or not single filenames - are stripped when copying text from the ChangeLog to the *VC-Log* buffer. - * Interactively `multi-isearch-buffers' and `multi-isearch-buffers-regexp' - read buffer names to search, one by one, ended with RET. With a prefix - argument, they ask for a regexp, and search in buffers whose names match - the specified regexp. Interactively `multi-isearch-files' and - `multi-isearch-files-regexp' read file names to search, one by one, - ended with RET. With a prefix argument, they ask for a wildcard, and - search in file buffers whose file names match the specified wildcard. - * The new eshell built-in commands `su' and `sudo' support Tramp. - Thus, they change `default-directory' to reflect the new user id, and - let commands run under that user's permissions. This works even when - `default-directory' is already remote. Calling the external commands - is possible via `*su' or `*sudo', respectively. - * Obsolete packages - * sym-comp.el is now obsolete, superseded by completion-at-point. - * lucid.el and levents.el are now obsolete. - * CEDET (the Collection of Emacs Development Tools) is now in Emacs. - This is a collection of packages to aid with using Emacs as an IDE - (integrated development environment): - * The Semantic package allows the use of parsers to intelligently - edit and navigate source code. Parsers for C/C++, Java, Javascript, - and several other languages are included by default, and Semantic can - also interface with external tools such as GNU Global and GNU Idutils. - * EDE (Emacs Development Environment) is a package for managing code - projects, including features such as automatic Makefile generation. - * SRecode is a library for recoding Semantic tags back into source - code. It is currently used by some parts of Semantic and EDE; in the - future, it may be used for code generation features. - * The EIEIO library implements a subset of the Common Lisp Object - System (CLOS). It is used by the other CEDET packages. - * mpc.el is a front end for the Music Player Daemon. Run it with M-x mpc. - * htmlfontify.el turns a fontified Emacs buffer into an HTML page. - * js.el is a new major mode for JavaScript files. - * imap-hash.el is a new library to address IMAP mailboxes as hashtables. - * read-file-name-predicate is obsolete. - * `delete-directory' has an optional parameter RECURSIVE. - * New function `copy-directory', which copies a directory recursively. - * called-interactively-p now takes one argument and replaces interactive-p - which is now marked obsolete. - * New function set-advertised-calling-convention makes it possible - to obsolete arguments as well as make some arguments mandatory. - * You can control which binding is preferentially shown in menus and - docstrings by adding a `:advertised-binding' property to the corresponding - command's symbol. That property can hold a single binding or a list - of bindings. - * start-process-shell-command and start-file-process-shell-command - now only take a single `command' argument. - * The new variable `process-file-side-effects' should be set to nil - if a `process-file' call does not change a remote file. This allows - file name handlers such as Tramp to optimizations. - * make-network-process can now also create `seqpacket' Unix sockets. - * eval-next-after-load is obsolete. - * New hook `after-load-functions' run after loading an Elisp file. - * Changing the file-names generated by byte-compilation by redefining - the function `byte-compile-dest-file' before loading bytecomp.el is obsolete. - Instead, customize byte-compile-dest-file-function. - * `byte-compile-warnings' has new members, `constants' and `suspicious'. - * New macro with-silent-modifications to tweak text properties without - affecting the buffer's modification state. - * Hash tables have a new printed representation that is readable. - The feature `hashtable-print-readable' identifies this new - functionality. - * Face aliases can now be marked as obsolete, using the macro - `define-obsolete-face-alias'. - -- Set TeX-master to nil as default - -- Fix reStructuredText tmp file problem (bnc#642787) - -- BuildRequire gpm-devel - -- Avoid trouble with spell see bug bnc#628268 - -- Correct macro name in spec file - -- Avoid segfault with newer gcc 4.5.0, see Emacs bug #6031 on - debbugs.gnu.org - -- make emacs wrapper script a little more smart - check if default toolkit is installed, else use fallbacks - -- replace png_check_sig with !png_sig_cmp for libpng14 - -- Do not remove wrapper script for bug bnc#555682 (bnc#589394) - -- gcc45 seems not to work with emacs switch to gcc43 (bnc#587307) - -- apply patch from cvs to fix build with gcc 4.5 - -- build -el and -info subpackages as noarch - -- Make ./configure --target=sparcv9-suse-linux work (as a result of - rpmbuild --target=sparcv9) - -- Fix a nasty bug were menus do not occure with GTK (bnc#558884) - -- Add patch from upstream to fix bug bnc#556175 - -- Remove binaries from main package as theyx are provided by the - x11 sub package (bnc#555682) - -- Make ppc, ppc64, and s390x build by forcing -Xlinker -- Make ia64 build by reducing gcc optimization -- Remove warning about undefined operations - -- Update to to emacs version 23.1 - * New font code: This uses the freetype and fontconfig libraries. - * Emacs now accepts font names supplied in the fontconfig format - * Added support for local fonts - * Added support for the Xft library for antialiasing. - * Added support for the OpenType library for complex text layout - * Added support for the m17n library for text shaping - * Use libgif before libungif - * Emacs now supports the SVG image format through librsvg2. - * Emacs now supports multi-page TIFF images - * The new configuration option --with-dbus enables DBus language - * Improved X Window System support - * Emacs starts in the background, as a daemon, when given the - - -daemon command line argument. - * emacsclient starts emacs in daemon mode - * Emacs now supports the XEmbed specification - * Emacs can now set the frame opacity - * The Emacs character set is now a superset of Unicode - * There are new coding systems/aliases; see M-x list-coding-systems - * There is a new charset implementation with many new charsets. - * There are new language environments for Chinese-GBK, - Chinese-GB18030, Khmer, Bengali, Punjabi, Gujarati, Oriya, - Telugu, Sinhala, and TaiViet. - * The minor modes unify-8859-on-encoding-mode and - unify-8859-on-decoding-mode are obsolete. - -- avoid binutils crashing on emacs binaries in using a tool that - can really understand ELF and remove the .comment section so that - it appears stripped to strip(1) - -- remove patched files after install - -- Add variable for signature separator if not defined for mail - messages (bnc#483563) - enchant +- Backport from upstream git a Voikko backend fix (bsc#1178489) + + Add Fix_back-ends_that_want_a_NUL-terminated_string.patch + expat -- Security fix (CVE-2019-15903, bsc#1149429) - * Crafted XML input results in heap-based buffer over-read by fooling - the parser into changing from DTD parsing to document parsing - * Added patches: - - expat-CVE-2019-15903.patch - - expat-CVE-2019-15903-tests.patch - -- Security fix (CVE-2018-20843, bsc#1139937) - * Large number of colons in input makes parser consume high - amount of resources - * Added expat-CVE-2018-20843.patch - -- Expand description of expat-devel. - -- Do not generate manpages from docbook -- Temporarily disable profiling due to bug in build system - -- Version update to 2.2.5 Tue October 31 2017 - * Bug fixes: - - If the parser runs out of memory, make sure its internal - state reflects the memory it actually has, not the memory - it wanted to have. - - The default handler wasn't being called when it should for - a SYSTEM or PUBLIC doctype if an entity declaration handler - was registered. - - Fix a case of mistakenly reported parsing success where - XML_StopParser was called from an element handler - - Function XML_ErrorString was returning NULL rather than - a message for code XML_ERROR_INVALID_ARGUMENT - introduced with release 2.2.1 - * Other changes: - - Add argument -N adding notation declarations - - various compiler-specific fixes - - Improve docbook2x-man detection -- drop expat-docbook.patch - * fixed in 0f5186c7b8e503c669e332d944712de010b265f3 -- switch to github for release tarballs and website - -- Version update to 2.2.4 Sat August 19 2017 - * Bug fixes: - [#115] Fix copying of partial characters for UTF-8 input - * Other changes: - [#109] Fix "make check" for non-x86 architectures that default - to unsigned type char (-128..127 rather than 0..255) - [#109] coverage.sh: Cover -funsigned-char - Autotools: Introduce --without-xmlwf argument - [#65] Autotools: Replace handwritten Makefile with GNU Automake - [#43] CMake: Auto-detect high quality entropy extractors, add new - option USE_libbsd=ON to use arc4random_buf of libbsd - [#74] CMake: Add -fno-strict-aliasing only where supported - [#114] CMake: Always honor manually set BUILD_* options - [#114] CMake: Compile man page if docbook2x-man is available, only - [#117] Include file tests/xmltest.log.expected in source tarball - (required for "make run-xmltest") - [#111] Fix some typos in documentation - Version info bumped from 7:5:6 to 7:6:6 -- Release 2.2.3 Wed August 2 2017 - * Bug fixes: - [#85] Fix a dangling pointer issue related to realloc - * Other changes: - [#91] Linux: Allow getrandom to fail if nonblocking pool has not - yet been initialized and read /dev/urandom then, instead. - This is in line with what recent Python does. - [#86] Check that a UTF-16 encoding in an XML declaration has the - right endianness - [#4] #5 #7 Recover correctly when some reallocations fail - Repair "./configure && make" for systems without any - provider of high quality entropy - and try reading /dev/urandom on those - Ensure that user-defined character encodings have converter - functions when they are needed - Fix mis-leading description of argument -c in xmlwf.1 - Rely on macro HAVE_ARC4RANDOM_BUF (rather than __CloudABI__) - for CloudABI - [#100] Fix use of SIPHASH_MAIN in siphash.h - [#23] Test suite: Fix memory leaks - Version info bumped from 7:4:6 to 7:5:6 -- Release 2.2.2 Wed July 12 2017 - * Security fixes: - [#43] Protect against compilation without any source of high - quality entropy enabled, e.g. with CMake build system; - * [MOX-006] Fix non-NULL parser parameter validation in XML_Parse; - resulted in NULL dereference, previously; - * Bug fixes: - [#69] Fix improper use of unsigned long long integer literals - * Other changes: - [#73] Start requiring a C99 compiler - [#49] Fix "==" Bashism in configure script - [#58] Address compile warnings - [#68] Fix "./buildconf.sh && ./configure" for some versions - of Dash for /bin/sh - [#72] CMake: Ease use of Expat in context of a parent project - with multiple CMakeLists.txt files - [#72] CMake: Resolve mistaken executable permissions - [#76] Address compile warning with -DNDEBUG (not recommended!) - [#77] Address compile warning about macro redefinition - * Added patch expat-docbook.patch to compile the man pages with - docbook-to-man - * Cleaned spec file with spec-cleaner - -- Allow building when do_profiling is undefined - -- Build with profiling when possible - -- Version update to 2.2.1 Sat June 17 2017 - - Security fixes: - CVE-2017-9233 / bsc#1047236 -- External entity infinite loop DoS - Details: https://libexpat.github.io/doc/cve-2017-9233/ - Commit c4bf96bb51dd2a1b0e185374362ee136fe2c9d7f - - [MOX-002] CVE-2016-9063 / bsc#1047240 -- Detect integer overflow; - (Fixed version of existing downstream patches!) - - (SF.net) #539 Fix regression from fix to CVE-2016-0718 cutting off - longer tag names; - [#25] More integer overflow detection (function poolGrow); - - [MOX-002] Detect overflow from len=INT_MAX call to XML_Parse; - - [MOX-005] #30 Use high quality entropy for hash initialization: - * arc4random_buf on BSD, systems with libbsd - (when configured with --with-libbsd), CloudABI - * RtlGenRandom on Windows XP / Server 2003 and later - * getrandom on Linux 3.17+ - In a way, that's still part of CVE-2016-5300. - https://github.com/libexpat/libexpat/pull/30/commits - - [MOX-005] For the low quality entropy extraction fallback code, - the parser instance address can no longer leak, - - [MOX-003] Prevent use of uninitialised variable; commit - - [MOX-004] a4dc944f37b664a3ca7199c624a98ee37babdb4b - Add missing parameter validation to public API functions - and dedicated error code XML_ERROR_INVALID_ARGUMENT: - - [MOX-006] * NULL checks; commits - * Negative length (XML_Parse); commit - - [MOX-002] 70db8d2538a10f4c022655d6895e4c3e78692e7f - - [MOX-001] #35 Change hash algorithm to William Ahern's version of SipHash - to go further with fixing CVE-2012-0876. - https://github.com/libexpat/libexpat/pull/39/commits - - Bug fixes: - [#32] Fix sharing of hash salt across parsers; - relevant where XML_ExternalEntityParserCreate is called - prior to XML_Parse, in particular (e.g. FBReader) - [#28] xmlwf: Auto-disable use of memory-mapping (and parsing - as a single chunk) for files larger than ~1 GB (2^30 bytes) - rather than failing with error "out of memory" - [#3] Fix double free after malloc failure in DTD code; commit - 7ae9c3d3af433cd4defe95234eae7dc8ed15637f - [#17] Fix memory leak on parser error for unbound XML attribute - prefix with new namespaces defined in the same tag; - found by Google's OSS-Fuzz; commits - xmlwf on Windows: Add missing calls to CloseHandle - - New features: - [#30] Introduced environment switch EXPAT_ENTROPY_DEBUG=1 - for runtime debugging of entropy extraction - Bump version info from 7:2:6 to 7:3:6 - -- Remove pointless --with-pic (for static only) - -- Version update to 2.2.0: - * Fixes bnc#983215 CVE-2012-6702 - * Fixes bnc#983216 CVE-2016-5300 - * Various cmake and autotools script updates - * Fix detection of utf8 character boundaries -- Remove all patches merged upstream: - * expat-2.1.1-avoid_relying_on_undef_behaviour.patch - * expat-2.1.1-parser_crashes_on_malformed_input.patch - * expat-alloc-size.patch - * expat-visibility.patch - -- add expat-2.1.1-avoid_relying_on_undef_behaviour.patch to avoid - relying on undefined behavior in the original CVE-2015-1283 fix - [bnc#980391], [bnc#983985], [CVE-2016-4472] -- add expat-2.1.1-parser_crashes_on_malformed_input.patch to fix - Expat XML parser that mishandles certain kinds of malformed input - documents [bnc#979441], [CVE-2016-0718] -- use spec-cleaner to clean specfile - -- After simplification of expat-visibility.patch, it became - uneffective as no symbols are getting hidden. add - - fvisibility=hidden to CFLAGS again. -- expat-alloc-size.patch: fix braino, realloc()-like functions - should not take __attribute__(malloc) - -- Update to version 2.1.1 - * Fixes CVE-2015-1283 — Multiple integer overflows in the - XML_GetBuffer function - * Fix potential null pointer dereference - * Symbol XML_SetHashSalt was not exported - * Output of xmlwf -h was incomplete - * Document behavior of calling XML_SetHashSalt with salt 0 - * Minor improvements to man page xmlwf(1) -- Simplify expat-visibility.patch, refresh expat-alloc-size.patch -- Drop config-guess-sub-update.patch, fixed upstream. - -- Cleanup spec file with spec-cleaner -- Remove old ppc obsoletes/provides - ffmpeg-4 +- fix ffmpeg-4.2-dlopen-fdk_aac.patch, there is no libfdk-aac.so.1 + flac +- Fix memory leak (CVE-2020-0487 bsc#1180112): + stream_decoder.c-Fix-a-memory-leak.patch + +- Fix out-of-bounds access (CVE-2020-0499 bsc#1180099): + libFLAC-bitreader.c-Fix-out-of-bounds-read.patch + +- Fix memory leak in read_metadata_vorbiscomment_() function + (CVE-2017-6888, bsc#1091045): + flac-CVE-2017-6888.patch + +- Update to version 1.3.2 + * Fix undefined behaviour using GCC/Clang UBSAN (erikd). + * General hardening via fuzz testing with AFL (erikd and + others). + * General code improvements (lvqcl, erikd and others). + * Add FLAC in MP4 specification docs (Ralph Giles). + * Fix some cppcheck warnings (erikd). + * Assume all currently used OSes support SSE2. + flac: + * Fix potential infinite loop on flac-to-flac conversion + (erikd). + * Add WAVEFORMATEXTENSIBLE to WAV (as needed) when + decoding (lvqcl). + * Only write vorbis-comments if they are non-empty. + * Error out if decoding RAW with bits != (8|16|24). + metaflac: + * Add --scan-replay-gain option. + libraries: + * CPU detection cleanup and fixes (Julian Calaby, erikd + and lvqcl). + * Fix two stream decoder bugs (Max Kellermann). + * Fix a NULL dereference bug (on a malformed file). + * Changed the LPC order guess for a slight compression + improvement, particularly for classical music + (Martijn van Beurden). + * Improved encoding speed on older Intel CPUs. + * Fixed a seeking bug when decoding certain files + (Miroslav Lichvar). + * Put an upper bound (32768) on the number of seek + points. + * Fix potential memory leaks. + * Support 64bit brword/bwword allowing + FLAC__BYTES_PER_WORD to be set to 8 (disabled by + default). + * Fix an out-of-bounds heap read. +- Refreshed flac-cflags.patch + +- Drop patch that should be upstreamed first, otherwise we will + have to keep it ofrever: + * flac-ocloexec.patch +- Drop wrong patch: + * flac-fix-pkgconfig.patch + + If using this change you get assert.h include overriden in your + project by the one from FLAC/ which is not what upstream desired + If packages fail to build they should fix their include + +- Build documentation as noarch + +- Cleanup spec file with spec-cleaner +- Update url +- Remove no longer needed patches + * flac-fix-CVE-2014-8962.patch + * flac-fix-CVE-2014-9028.patch + * 0001-getopt_long-not-broken-here.patch +- Remove following as benefit of using openssl is small + * 0001-Allow-use-of-openSSL.patch +- Add flac-cflags.patch +- Use doxygen to build documentation +- Split documentation to separate package +- Update to 1.3.1 + * Improved decoding efficiency of all bit depths but especially + so for 24 bits for IA32 architecture (lvqcl and Miroslav Lichvar). + * Faster encoding using SSE and AVX (lvqcl). + * Fixed bartlett, bartlett_hann and triangle functions. + * New apodization functions partial_tukey and punchout_tukey for + improved compression (Martijn van Beurden). + * Retuned compression presets to incorporate new apodization + functions (Martijn van Beurden). + * Fix -Wcast-align warnings on armhf architecture (Erik de + Castro Lopo). + * Help output documentation improvements. + * I/O buffering improvements on Windows to reduce disk + fragmentation when writing files. + * Only write vorbis-comments if they are non-empty. + * Fix symbol visibility in XMMS plugin. + * Many fixes and improvements across all the build systems. + * Fix CVE-2014-9028 (heap write overflow) and CVE-2014-8962 + (heap read overflow) + +- A couple of security fixes: + * flac-fix-CVE-2014-8962.patch: + arbitrary code execution by a stack overflow (CVE-2014-8962, + bnc#906831) + * flac-fix-CVE-2014-9028.patch: + Heap overflow via specially crafted .flac files (CVE-2014-9028, + bnc#907016) + +- Update to final upstream release 1.3.0 + * No user-visible changes +- More robust make install call + +- Update to flac 1.3.0pre4 (packaged as 1.2.99_git* to avoid + messing with RPM versioning) + * Mostly non-linux related bugfixes plus autotools fixes + - flac-openssl.patch --> 0001-Allow-use-of-openSSL.patch + - remove flac-1.2.1-automake1_13.patch, fixed in upstream. + - add 0001-getopt_long-not-broken-here.patch, FLAC bundles + GNU-compatible getopt_long for broken OS, but we do have + a functional version in libc already. + flatpak +- Flatpak only requires glib 2.44, not 2.60 +- Update ostree version required to 2020.8 + +- Update to version 1.10.1: + + Fix flatpak build on systems with setuid bwrap + + Fix some compiler warnings + + Fix crash on updating apps with no deploy data + + Updated translations. +- Remove deprecated texinfo packaging macros. +- Switch to upstream release tarball. + +- Update to version 1.10.0: + + The major new feature in this series compared to 1.8 is the + support for the new repo format which should make updates + faster and download less data. + + The systemd generator snippets now call flatpak + - -print-updated-env in place of a bunch of shell for better + login performance. + + The .profile snippets now disable GVfs when calling flatpak to + avoid spawning a gvfs daemon when logging in via ssh. + + Build fixes for GCC 11. + + Flatpak now finds the pulseaudio sockets better in uncommon + configurations. + + Sandboxes with network access it now also has access to the + systemd-resolved socket to do dns lookups. + + Flatpak supports unsetting env vars in the sandbox using + - -unset-env, and --env=FOO= now sets FOO to the empty string + instead of unsetting it. + + Similarly the spawn portal has an option to unset an env var. + + The spawn portal now has an option to share the pid namespace + with the sub-sandbox. + +- Update to version 1.8.5 (CVE-2021-21261): + + This is a security update that fixes a sandbox escape where a + malicious application can execute code outside the sandbox by + controlling the environment of the "flatpak run" command when + spawning a sub-sandbox (boo#1180996) + +- Update to version 1.8.4: + + Fix support for ppc64. + +- Move flatpak-bisect and flatpak-coredumpctl to devel subpackage, + allow to remove python3 dependency on main package. + +- Enable LTO (boo#1133124) as gobject-introspection works fine with LTO. + +- Update to version 1.8.3: + + Fixed progress reporting for OCI and extra-data. + + The in-memory summary cache is more efficient. + + Fixed authentication getting stuck in a loop in some cases. + + Fixed authentication error reporting. + + We now extract OCI info for runtimes as well as apps. + + Fixed crash if anonymous authentication fails and -y is + specified. + + flatpak info now only looks at the specified installation if + one is specified. + + Better error reporting for server HTTP errors during download. + + Uninstall now removes applications before the runtime it + depends on. + + Fixed test-suite to pass with the latest OSTree version. + + Fixed dbus environment variables in flatpak enter. + + Avoid updating metadata from the remote when uninstalling. + + Fixed error message handling in various places. + + FlatpakTransaction now verifies all passed in refs to avoid. + + potential issues with invalid names. + + Updated translations. + +- Update to version 1.8.2: + + Added validation of collection id settings for remotes. + + Fix seccomp filters on s390. + + Robustness fixes to the spawn portal. + + Fix support for masking update in the system installation. + + Better support for distros with uncommon models of merged /usr. + + Cache responses from localed/AccountService. + + Fix hangs in cases where xdg-dbus-proxy fails to start. + + Fix double-free in cups socket detection. + + OCI authenticator now doesn't ask for auth in case of http + errors. + +- Fix invalid usage of %{_libexecdir} to reference systemd + directories. + +- Update to version 1.8.1: + * Avoid calling authenticator in update if ref didn't change + * Don't fail transaction if ref is already installed (after + transaction start) + * Fix flatpak run handling of userns in the --device=all case + * Fix handling of extensions from different remotes + * Fix flatpak run --no-session-bus + * Updated translations +- Update to version 1.8.0: + * FlatpakTransaction has a new signal "install-authenticator" + which clients can handle to install authenticators needed for + the transaction. This is done in the CLI commands. + * We now always expose the host timezone data, allowing us the + expose the host /etc/localtime in a way that works better, + fixing several apps that had timezone issues. + * Fix flatpak enter which didn't work in some cases. + * We now ship a systemd unit (not installed by default) to + automatically detect plugged in usb sticks with sideload repos. + * By default we no longer install the gdm env.d file, as the + systemd generators work better. + * create-usb now exports partial commits by default + * Fix handling of docker media types in oci remotes + * Fix subjects in remote-info --log output +- Remove source file used to generate a flatpak user on the system + since it's now included by upstream: + * system-user-flatpak.conf + +- Fixes for %_libexecdir changing to /usr/libexec + +- Update to version 1.6.4: + + This release backports some of the OCI authenticator fixes from + the 1.7 series, and should now be able to host flatpak images + on e.g. docker hub. + + Other changes: + - Fix a use-after free in libflatpak. + - Don't list p2p downgrades in list of available updates. + +- jsc#SLE-7171 fontconfig +- fontconfig-devel-32bit needs to require fontconfig-32bit, + needed for Wine development (bsc#1172301) + +- fc-query: remove redundant debug output + + fontconfig-remove-debug-output.patch + +- Update to 2.12.6: + * conf.d: Drop aliases for (URW)++ fonts (upstreamed) + * other minor fixes +- Includes changes from 2.12.5: + * update docs + * Accept 4 digit script tag in FcLangNormalize(). + * fc-blanks: fall back to the static data available in repo if + downloaded data is corrupted + * emoji related fixes + * various cleanups + * support listing named instances + +- Version update to 2.12.4: + * Various distcheck errors + * FcCharSetHash(): use the 'numbers' values to compute the hash + * fc-lang: gracefully handle the case where the last language initial is < 'z' + * Fix an off-by-one error in FcLangSetIndex() + * Fix erroneous test on language id in FcLangSetPromote() + * FcLangSetCompare(): fix bug when two charsets come from different "buckets" + * Treat C.UTF-8 and C.utf8 locales as built in the C library +- Remove merged upstream fontconfig-locale_c.utf8.patch +- Remove fontconfig-doc archive, the generated output is already + present in the upstream released tarball +- Remove unused configure options + +- Remove --with-pic which is only useful for static libs. + +- Update to 2.12.3: + Don't call perror() if no changes happens in errno + Fix FcCacheOffsetsValid() + Fix the build issue with gperf 3.1 + Fix the build issue on GNU/Hurd + Update a bit for the changes in FreeType 2.7.1 + Add the description of FC_LANG envvar to the doc + Bug 101202 - fontconfig FTBFS if docbook-utils is installed + Correct cache version info in doc/fontconfig-user.sgml + Avoid conflicts with integer width macros from TS 18661-1:2014 + Fix PostScript font alias name + Update aliases for URW June 2016 +- removed unneeded: + - fontconfig-glibc-2.25.patch + - make-check.patch + +- Add patch fontconfig-glibc-2.25.patch + * Fixes build with glibc 2.25. + +- Update to 2.12.1: + Update CaseFolding.txt to Unicode 9.0 + Fix some errors related to python3 + Bug 96676 - Check range of FcWeightFromOpenType argument + Update libtool revision + Properly validate offsets in cache files. + +- Update to version 2.12.0: + + Support the size specific design selection in OS/2 table + version 5. + + Allow the modification on 'lang' and 'charset' objects. + + Increase the refcount in FcConfigSetCurrent(). + + some updates in orth files. + + Add --error-on-no-fonts option to fc-cache. + + Use lang=und instead of lang=xx for "undetermined". + + Add FC_WEIGHT_DEMILIGHT and change from 65 to 55. + + Add FC_COLOR. + + Treat color fonts as scalable. + + no FC_LANG added with FcConfigSubstitute() when it has "und". + + Hardcode blanks in library. + + Support symbol fonts. + + Unicode 8.0 support. + + Add hintstyle templates and default hintslight. + + GX font support. + + Improve the footprint issue on updating caches. + + Bump the cache version to 6. + + more bug fixes. + +- Add fontconfig-locale_c.utf8.patch to recognize C.UTF-8 locale, + patch from Debian. + +- Clean the spec file with spec-cleaner + +- fix wrong path to documentation (bnc#907685) +- removed patch: usr-share-doc-packages.patch + freetype2 -- Add CVE-2020-15999.patch to fix a heap buffer overflow has been - found in the handling of embedded PNG bitmaps - CVE-2020-15999 bsc#1177914 - -- Use the compiler default C std, since 2012 gcc defaults - have changed, we now only need to get rid of ANSIFLAGS, override - that variable instead. - -- Update to version 2.10.1 - * The bytecode hinting of OpenType variation fonts was flawed, since - the data in the `CVAR' table wasn't correctly applied. - * Auto-hinter support for Mongolian. - * The handling of the default character in PCF fonts as introduced - in version 2.10.0 was partially broken, causing premature abortion - of charmap iteration for many fonts. - * If `FT_Set_Named_Instance' was called with the same arguments - twice in a row, the function returned an incorrect error code the - second time. - * Direct rendering using FT_RASTER_FLAG_DIRECT crashed (bug - introduced in version 2.10.0). - * Increased precision while computing OpenType font variation - instances. - * The flattening algorithm of cubic Bezier curves was slightly - changed to make it faster. This can cause very subtle rendering - changes, which aren't noticeable by the eye, however. - * The auto-hinter now disables hinting if there are blue zones - defined for a `style' (i.e., a certain combination of a script and - its related typographic features) but the font doesn't contain any - characters needed to set up at least one blue zone. -- Add tarball signatures and freetype2.keyring - -- Update to version 2.10.0 - * A bunch of new functions has been added to access and process - COLR/CPAL data of OpenType fonts with color-layered glyphs. - * As a GSoC 2018 project, Nikhil Ramakrishnan completely - overhauled and modernized the API reference. - * The logic for computing the global ascender, descender, and - height of OpenType fonts has been slightly adjusted for - consistency. - * `TT_Set_MM_Blend' could fail if called repeatedly with the same - arguments. - * The precision of handling deltas in Variation Fonts has been - increased.The problem did only show up with multidimensional - designspaces. - * New function `FT_Library_SetLcdGeometry' to set up the geometry - of LCD subpixels. - * FreeType now uses the `defaultChar' property of PCF fonts to set - the glyph for the undefined character at glyph index 0 (as - FreeType already does for all other supported font formats). As - a consequence, the order of glyphs of a PCF font if accessed - with FreeType can be different now compared to previous - versions. - This change doesn't affect PCF font access with cmaps. - * `FT_Select_Charmap' has been changed to allow parameter value - `FT_ENCODING_NONE', which is valid for BDF, PCF, and Windows FNT - formats to access built-in cmaps that don't have a predefined - `FT_Encoding' value. - * A previously reserved field in the `FT_GlyphSlotRec' structure - now holds the glyph index. - * The usual round of fuzzer bug fixes to better reject malformed - fonts. - * `FT_Outline_New_Internal' and `FT_Outline_Done_Internal' have - been removed.These two functions were public by oversight only - and were never documented. - * A new function `FT_Error_String' returns descriptions of error - codes if configuration macro FT_CONFIG_OPTION_ERROR_STRINGS is - defined. - * `FT_Set_MM_WeightVector' and `FT_Get_MM_WeightVector' are new - functions limited to Adobe MultiMaster fonts to directly set and - get the weight vector. - -- Remove old ppc64 parts in spec file -- Refresh patches: - + bugzilla-308961-cmex-workaround.patch - + don-t-mark-libpng-as-required-library.patch - + enable-long-family-names-by-default.patch -- Enable subpixel rendering with infinality config: - + enable-subpixel-rendering.patch - + enable-infinality-subpixel-hinting.patch - -- Re-enable freetype-config, there is just too many fallouts. - -- Update to version 2.9.1 - * Type 1 fonts containing flex features were not rendered - correctly (bug introduced in version 2.9). - * CVE-2018-6942: Older FreeType versions can crash with certain - malformed variation fonts. - * Bug fix: Multiple calls to `FT_Get_MM_Var' returned garbage. - * Emboldening of bitmaps didn't work correctly sometimes, showing - various artifacts (bug introduced in version 2.8.1). - * The auto-hinter script ranges have been updated for Unicode 11. - No support for new scripts have been added, however, with the - exception of Georgian Mtavruli. -- freetype-config is now deprecated by upstream and not enabled - by default. -- Drop upstreamed patches: - * bnc1079600.patch - * psaux-flex.patch - * 0001-src-truetype-ttinterp.c-Ins_GETVARIATION-Avoid-NULL-.patch - * 0001-truetype-Better-protection-against-invalid-VF-data.patch - -- Add bnc1079600.patch: Fix several integer overflow issues in - truetype/ttinterp.c (bsc#1079600) - -- Refresh spec-file via spec-cleaner. -- Add shell script freetype2.sh in separate package - freetype2-profile-tti35 in order to be able to set TrueType - interpreter version 35 (boo#1084085). - -- Added patch: - * enable-long-family-names-by-default.patch - + Define PCF_CONFIG_OPTION_LONG_FAMILY_NAMES to obtain 2.7.1 - behaviour - -- Added patches: - * 0001-src-truetype-ttinterp.c-Ins_GETVARIATION-Avoid-NULL-.patch - + Upstream fix for bsc#1079603: Avoid NULL reference in - src/truetype/ttinterp.c - * 0001-truetype-Better-protection-against-invalid-VF-data.patch - + Upstream fix for bsc#1079601: Protection against invalid VF - data - -- Add psaux-flex.patch to fix a regression in Type1 rendering - -- Update to version 2.9 - * Advance width values of variation fonts were often wrong. - * More fixes for variation font support; you should update to - this version if you want to support them. - * As a GSoC project, Ewald Hew extended the new (Adobe) CFF - engine to handle Type 1 fonts also, thus greatly improving - the rendering of this format. This is the new default. - * A new function, `FT_Set_Named_Instance', can be used to set - or change the current named instance. - * Starting with this FreeType version, resetting variation - coordinates will return to the currently selected named - instance. Previously, FreeType returned to the base font - (i.e., no instance set). - * Some fuzzer fixes to better reject malformed fonts. - -- Update to version 2.8.1 - * B/W hinting of TrueType fonts didn't work properly if - interpreter version 38 or 40 was selected. - * Some severe problems within the handling of TrueType Variation - Fonts were found and fixed. - * Function `FT_Set_Var_Design_Coordinates' didn't correctly handle - the case with less input coordinates than axes. - * By default, FreeType now offers high quality LCD-optimized - output without resorting to ClearType techniques of resolution - tripling and filtering. In this method, called Harmony, each - color channel is generated separately after shifting the glyph - outline, capitalizing on the fact that the color grids on LCD - panels are shifted by a third of a pixel. This output is - indistinguishable from ClearType with a light 3-tap filter. - * Using the new function `FT_Get_Var_Axis_Flags', an application - can access the `flags' field of a variation axis (introduced in - OpenType version 1.8.2) - * FreeType now synthesizes a missing Unicode cmap for (older) - TrueType fonts also if glyph names are available. - * The warping option has moved from `light' to `normal' hinting - where it replaces the original hinting algorithm. The `light' - mode is now always void of any hinting in x-direction. - -- Update to version 2.8 - * Support for OpenType Variation Fonts is now complete. The last - missing part was handling the `VVAR' and `MVAR' tables, which is - available with this release. - * A new function `FT_Face_Properties' allows the control of some - module and library properties per font. Currently, the - following properties can be handled: stem darkening, LCD filter - weights, and the random seed for the `random' CFF operator. - * The PCF change to show more `colourful' family names (introduced - in version 2.7.1) was too radical; it can now be configured with - PCF_CONFIG_OPTION_LONG_FAMILY_NAMES at compile time. If - activated, it can be switched off at run time with the new pcf - property `no-long-family-names'. If the `FREETYPE_PROPERTIES' - environment variable is available, you can say - FREETYPE_PROPERTIES=pcf:no-long-family-names=1 - * Support for the following scripts has been added to the - auto-hinter. - Adlam, Avestan, Bamum, Buhid, Carian, Chakma, Coptic, Cypriot, - Deseret, Glagolitic, Gothic, Kayah, Lisu, N'Ko, Ol Chiki, Old - Turkic, Osage, Osmanya, Saurashtra, Shavian, Sundanese, Tai - Viet, Tifinagh, Unified Canadian Syllabics, Vai - * `Light' auto-hinting mode no longer uses TrueType metrics for - TrueType fonts. This bug was introduced in version 2.4.6, - causing horizontal scaling also. Almost all GNU/Linux - distributions (with Fedora as a notable exception) disabled the - corresponding patch for good reasons; chances are thus high that - you won't notice a difference. - * If a TrueType font gets loaded with FT_LOAD_NO_HINTING, FreeType - now scales the font linearly again (bug introduced in version - 2.4.6). - * Fixed CVE-2017-8105, CVE-2017-8287: Older FreeType versions - have out-of-bounds writes caused by heap-based buffer overflows - related to Type 1 fonts. (boo#1035807, boo#1036457) -- See https://sourceforge.net/projects/freetype/files/freetype2/2.8/ for - the complete changelog. - -- Update to version 2.7.1: - * IMPORTANT CHANGES - + Support for the new CFF2 font format as introduced with - OpenType 1.8 has been contributed by Dave Arnolds from Adobe. - + Preliminary support for variation fonts as specified in - OpenType 1.8 (in addition to the already existing support for - Adobe's MM and Apple's GX formats). Dave Arnolds contributed - handling of advance width change variation; more will come in - the next version. - * IMPORTANT BUG FIXES - + Handling of raw CID fonts was partially broken (bug introduced - in 2.6.4). - * MISCELLANEOUS - + Some limits for TrueType bytecode execution have been tightened - to speed up FreeType's handling of malformed fonts, in - particular to quickly abort endless loops. - + The number of twilight points can no longer be set to an - arbitrarily large value. - + The total number of jump opcode instructions (like JMPR) with - negative arguments is dynamically restricted; the same holds - for the total number of iterations in LOOPCALL opcodes. - + The dynamic limits are based on the number of points in a glyph - and the number of CVT entries. Please report if you encounter a - font where the selected values are not adequate. - + PCF family names are made more `colourful'; they now include the - foundry and information whether they contain wide characters. - For example, you no longer get `Fixed' but rather `Sony Fixed' - or `Misc Fixed Wide'. - + A new function `FT_Get_Var_Blend_Coordinates' (with its alias - name `FT_Get_MM_Blend_Coordinates') to retrieve the normalized - blend coordinates of the currently selected variation instance - has been added to the Multiple Masters interface. - + A new function `FT_Get_Var_Design_Coordinates' to retrieve the - design coordinates of the currently selected variation instance - has been added to the Multiple Masters interface. - + A new load flag `FT_LOAD_BITMAP_METRICS_ONLY' to retrieve bitmap - information without loading the (embedded) bitmap itself. - + Retrieving advance widths from bitmap strikes (using - `FT_Get_Advance' and `FT_Get_Advances') have been sped up. - + The usual round of fuzzer fixes to better reject malformed - fonts. -- Drop freetype2-bitmap-foundry.patch, merged upstream. - -- update to version 2.7: - * IMPORTANT CHANGES - + As announced earlier, the 2.7.x series now uses the new subpixel - hinting mode as the default, emulating a modern version of - ClearType. - This change inevitably leads to different rendering results, and - you might change the `TT_CONFIG_OPTION_SUBPIXEL_HINTING' - configuration option to adapt it to your taste (or use the new - `FREETYPE_PROPERTIES' environment variable). See the - corresponding entry below for version 2.6.4, which gives more - information. - + A new option `FT_CONFIG_OPTION_ENVIRONMENT_PROPERTIES' has been - introduced. If set (which is the default), an environment - variable `FREETYPE_PROPERTIES' can be used to control driver - properties. Example: - FREETYPE_PROPERTIES=truetype:interpreter-version=35 \ - cff:no-stem-darkening=1 \ - autofitter:warping=1 - This allows to select, say, the subpixel hinting mode at runtime - for a given application. See file `ftoption.h' for more. - * IMPORTANT BUG FIXES - + After loading a named instance of a GX variation font, the - `face_index' value in the returned `FT_Face' structure now - correctly holds the named instance index in the upper 16bits as - documented. - * MISCELLANEOUS - + A new macro `FT_IS_NAMED_INSTANCE' to test whether a given face - is a named instance. - + More fixes to GX font handling. - + Apple's `GETVARIATION' bytecode operator (needed for GX - variation font support) has been implemented. - + Another round of fuzzer fixes, mainly to reject invalid fonts - faster. - + Handling of raw CID fonts was broken (bug introduced in version - 2.6.4). - + The smooth rasterizer has been streamlined to make it faster by - approx. 20%. - + The `ftgrid' demo program now understands command line option - `-d' to give start-up design coordinates. - + The `ftdump' demo program has a new command line option `-p' to - dump TrueType bytecode instructions. -- removed freetype2-subpixel.patch in favor of above - FREETYPE_PROPERTIES environment variable - -- Update to version 2.6.5: - + Compilation works again on Mac OS X (bug introduced in version - 2.6.4). - + The new subpixel hinting mode is now disabled by default; it - will be enabled by default in the forthcoming 2.7.x series. - Main reason for reverting this feature is the principle of least - surprise: a sudden change in appearance of all fonts (even if - the rendering improves for almost all recent fonts) should not - be expected in a new micro version of a series. -- Rebase freetype2-subpixel.patch. - -- Upadte to version 2.6.4: - * A new subpixel hinting mode, which is now the default rendering - mode for TrueType fonts. It implements (almost everything of) - version 40 of the bytecode engine. The existing code base in - FreeType (the `Infinality code') was stripped to the bare - minimum and all configurability removed in the name of speed - and simplicity. The configurability was mainly aimed at legacy - fonts like Arial, Times New Roman, or Courier. [Legacy fonts - are fonts that modify vertical stems to achieve clean - black-and-white bitmaps.] The new mode focuses on applying a - minimal set of rules to all fonts indiscriminately so that - modern and web fonts render well while legacy fonts render - okay. Activation of the subpixel hinting support can be - controlled with the `TT_CONFIG_OPTION_SUBPIXEL_HINTING' - configuration option at compile time: If set to value 1, you - get the old Infinality mode (which was never the default due to - its slowness). Value 2 activates the new subpixel hinting mode, - and value 3 activates both. The default is value 2. At run - time, you can select the subpixel hinting mode with the - `interpreter-version' property (provided you have compiled in - the corresponding hinting mode); see `ftttdrv.h' for more. - * Support for the following scripts has been added to the - auto-hinter: Armenian, Cherokee, Ethiopic, Georgian, Gujarati, - Gurmukhi, Malayalam, Sinhala, Tamil. -- Rebase freetype2-subpixel.patch. - -- Update to version 2.6.3 - * IMPORTANT CHANGES - - Khmer, Myanmar, Bengali, and Kannada script support has been - added to the auto-hinter. - * MISCELLANEOUS - - Better support of Indic scripts like Devanagari by using a - top-to-bottom hinting flow. - - All FreeType macros starting with two underscores have been - renamed to avoid a violation of both the C and C++ standards. - Example: Header macros of the form `__FOO_H__' are now called - `FOO_H_'. In most cases, this should be completely transparent - to the user. The exception to this is `__FTERRORS_H__', which - must be sometimes undefined by the user to get FreeType error - strings: Both this form and the new `FTERRORS_H_' macro are - accepted for backwards compatibility. - - Minor improvements mainly to the Type 1 driver. - - The new CFF engine now supports all Type 2 operators except - `random'. - - The macro `_STANDALONE_', used for compiling the B/W and smooth - rasterizers as stand-alone modules, has been renamed to - `STANDALONE_', since macro names starting with an underscore and - followed by an uppercase letter are reserved in both C and C++. - - Function `FT_Library_SetLcdFilterWeights' now also activates - custom LCD filter weights (instead of just adjusting them). - - Support for `unpatented hinting' has been completely removed: - Consequently, the two functions `FT_Face_CheckTrueTypePatents' - and `FT_Face_SetUnpatentedHinting' now return always false, - doing nothing. - -- Update to version 2.6.2 - * IMPORTANT CHANGES - - The auto-hinter now supports stem darkening, to be controlled by - the new `no-stem-darkening' and `darkening-parameters' - properties. This is an experimental feature contributed by - Nikolaus Waxweiler, and the interface might change in a future - release. - - By default, stem darkening is now switched off (for both the CFF - engine and the auto-hinter). The main reason is that you need - linear alpha blending and gamma correction to get correct - rendering results, and the latter is not yet available in most - freely available rendering stacks like X11. Applying stem - darkening without proper gamma correction leads to far too dark - rendering results. - - The meaning of `FT_RENDER_MODE_LIGHT' has been slightly - modified. It now essentially means `no hinting along the - horizontal axis'; in particular, no change of glyph advance - widths. Consequently, the auto-hinter is used for all scalable - font formats except for CFF. It is planned that other - font-specific rendering engines (TrueType, Type 1) will follow. - * MISCELLANEOUS - - The default LCD filter has been changed to be normalized and - color-balanced. - - For better compatibility with FontConfig, function - `FT_Library_SetLcdFilter' accepts a new enumeration value - `FT_LCD_FILTER_LEGACY1' (which has the same meaning as - `FT_LCD_FILTER_LEGACY'). - - A large number of bugs have been detected by using the libFuzzer - framework, which should further improve handling of invalid - fonts. Thanks again to Kostya Serebryany and Bungeman! - - `TT_CONFIG_OPTION_MAX_RUNNABLE_OPCODES', a new configuration - option, controls the maximum number of executed opcodes within a - bytecode program. You don't want to change this except for very - special situations (e.g., making a library fuzzer spend less - time to handle broken fonts). - - The smooth renderer has been made faster. - -- Update to version 2.6.1 - * IMPORTANT BUG FIXES - - It turned out that for CFFs only the advance widths should be - taken from the `htmx' table, not the side bearings. This bug, - introduced in version 2.6.0, makes it necessary to upgrade if - you are using CFFs; otherwise, you get cropped glyphs with GUI - interfaces like GTK or Qt. - - Accessing Type 42 fonts returned incorrect results if the glyph - order of the embedded TrueType font differs from the glyph order - of the Type 42 charstrings table. - * IMPORTANT CHANGES - - The header file layout has been changed (again), moving all - header files except `ft2build.h' into a subdirectory tree. - Doing so reduces the possibility of header file name clashes - (e.g., FTGL's `FTGlyph.h' with FreeType's `ftglyph.h') on case - insensitive file systems like Mac OS X or Windows. - Applications that use (a) the `freetype-config' script or - FreeType's `freetype2.pc' file for pkg-config to get the include - directory for the compiler, and (b) the documented way for - header inclusion like - [#]include - [#]include FT_FREETYPE_H - ... - don't need any change to the source code. - - Simple access to named instances in GX variation fonts is now - available (in addition to the previous method via FreeType's MM - interface). In the `FT_Face' structure, bits 16-30 of the - `face_index' field hold the current named instance index for the - given face index, and bits 16-30 of `style_flags' contain the - number of instances for the given face index. `FT_Open_Face' - and friends also understand the extended bits of the face index - parameter. - You need to enable TT_CONFIG_OPTION_GX_VAR_SUPPORT for this new - feature. Otherwise, bits 16-30 of the two fields are zero (or - are ignored). - - Lao script support has been added to the auto-hinter. - * MISCELLANEOUS - - The auto-hinter's Arabic script support has been enhanced. - - Superscript-like and subscript-like glyphs as used by various - phonetic alphabets like the IPA are now better supported by the - auto-hinter. - - The TrueType bytecode interpreter now runs slightly faster. - - Improved support for builds with cmake. - - The function `FT_CeilFix' now always rounds towards plus - infinity. - - The function `FT_FloorFix' now always rounds towards minus - infinity. - - A new load flag `FT_LOAD_COMPUTE_METRICS' has been added; it - makes FreeType ignore pre-computed metrics, as needed by font - validating or font editing programs. Right now, only the - TrueType module supports it to ignore data from the `hdmx' - table. - - Another round of bug fixes to better handle broken fonts, found - by Kostya Serebryany . -- Dropping upstreamed patch Dont-use-hmtx-table-for-LSB.patch. - -- Add Dont-use-hmtx-table-for-LSB.patch: Fixes gnu#45520, cut off - fonts in gtk and qt. Taken from upstream git. - -- Update to version 2.6 - * Thread safety improvements - * Thai script support has been added to the auto-hinter. - * Arabic script support has been added to the auto-hinter. - * Following OpenType version 1.7, advance widths and side bearing - values in CFFs (wrapped in an SFNT structure) are now always - taken from the `hmtx' table. - * Following OpenType version 1.7, the PostScript font name of a - CFF font (wrapped in an SFNT structure) is now always taken from - the `name' table. This is also true for OpenType Collections - (i.e., TTCs using CFFs subfonts instead of TTFs), where it may - have a significant difference. - * Fonts natively hinted for ClearType are now supported, properly - handling selector index 3 of the INSTCTRL bytecode instruction. - * Major improvements to the GX TrueType variation font handling. - -- Merge with the version 2.5.5 from openSUSE:Factory -- Removed patches: - * CVE-2014-9656.patch - * CVE-2014-9657.patch - * CVE-2014-9658.patch - * CVE-2014-9659.patch - * CVE-2014-9660.patch - * CVE-2014-9661.patch - * CVE-2014-9662.patch - * CVE-2014-9663.patch - * CVE-2014-9664.patch - * CVE-2014-9665.patch - * CVE-2014-9666.patch - * CVE-2014-9667.patch - * CVE-2014-9668.patch - * CVE-2014-9669.patch - * CVE-2014-9670.patch - * CVE-2014-9671.patch - * CVE-2014-9672.patch - * CVE-2014-9673.patch - * CVE-2014-9674.patch - * CVE-2014-9675.patch - - Integrated in the 2.5.5 release -- Modified patches: - * don-t-mark-libpng-as-required-library.patch - * bugzilla-308961-cmex-workaround.patch - * freetype2-subpixel.patch - * freetype2-bitmap-foundry.patch - * overflow.patch - - Adapt to the new version of sources - -- Modified patch: - * CVE-2014-9671.patch - - Adapt the code to correspond to the current git master of - freetype2 (fixes bsc#933247) - -- Enable the bz2 compression in freetype2 -- Remove patch overflow.patch from freetype2.spec where it is not - applied. -- Run spec-cleaner on the spec file. - -- fixed vulnerabilities (bnc#916847, bnc#916856, bnc#916857, - bnc#916858, bnc#916859, bnc#916860, bnc#916861, bnc#916862, - bnc#916863, bnc#916864, bnc#916865, bnc#916867, bnc#916868, - bnc#916870, bnc#916871, bnc#916872, bnc#916873, bnc#916874, - bnc#916879, bnc#916881) - - CVE-2014-9656.patch - - CVE-2014-9657.patch - - CVE-2014-9658.patch - - CVE-2014-9659.patch - - CVE-2014-9660.patch - - CVE-2014-9661.patch - - CVE-2014-9662.patch - - CVE-2014-9663.patch - - CVE-2014-9664.patch - - CVE-2014-9665.patch - - CVE-2014-9666.patch - - CVE-2014-9667.patch - - CVE-2014-9668.patch - - CVE-2014-9669.patch - - CVE-2014-9670.patch - - CVE-2014-9671.patch - - CVE-2014-9672.patch - - CVE-2014-9673.patch - - CVE-2014-9674.patch - - CVE-2014-9675.patch - -- Update to version 2.5.5 - * IMPORTANT BUG FIXES - - Handling of uncompressed PCF files works again (bug - introduced in version 2.5.4). -- Drop freetype2-2.5.3-fix-pcf.patch, merged upstream - -- Update to version 2.5.4 - * IMPORTANT BUG FIXES - - A variant of vulnerability CVE-2014-2240 was identified - (cf. http://savannah.nongnu.org/bugs/?43661) and fixed - in the new CFF driver. All users should upgrade. - - The new auto-hinter code using HarfBuzz crashed for some - invalid fonts. - - Many fixes to better protect against malformed input. - * IMPORTANT CHANGES - - Full auto-hinter support of the Devanagari script. - - Experimental auto-hinter support of the Telugu script. - - CFF stem darkening behaviour can now be controlled at - build time using the eight macros - CFF_CONFIG_OPTION_DARKENING_PARAMETER_{X,Y}{1,2,3,4} . - - Some fields in the `FT_Bitmap' structure have been changed - from signed to unsigned type, which better reflects - the actual usage. It is also an additional means to - protect against malformed input. This change doesn't break - the ABI; however, it might cause compiler warnings. - * MISCELLANEOUS - - Improvements to the auto-hinter's algorithm to recognize - stems and local extrema. - - Function `FT_Get_SubGlyph_Info' always returned an error - even in case of success. - - Version 2.5.1 introduced major bugs in the cjk part of - the auto-hinter, which are now fixed. - - The `FT_Sfnt_Tag' enumeration values have been changed to - uppercase, e.g. `FT_SFNT_HEAD'. The lowercase variants - are deprecated. This is for orthogonality with all other - enumeration (and enumeration-like) values in FreeType. - - `cmake' now supports builds of FreeType as an OS X framework - and for iOS. - - Improved project files for vc2010, - introducing a property file - - The documentation generator for the API reference has been - updated to produce better HTML code (with proper CSS). - At the same time, the documentation got a better structure. - - The FT_LOAD_BITMAP_CROP flag is obsolete; it is not used - by any driver. - - The TrueType DELTAP[123] bytecode instructions now work in - subpixel hinting mode as described in the ClearType - whitepaper (i.e., for touched points in the - non-subpixel direction). - - Many small improvements to the internal arithmetic routines. -- Rebase don-t-mark-libpng-as-required-library.patch, - bugzilla-308961-cmex-workaround.patch, freetype2-subpixel.patch, - freetype2-bitmap-foundry.patch and overflow.patch -- Add freetype2-2.5.3-fix-pcf.patch from upstream to resolve - http://savannah.nongnu.org/bugs/?43774, "Freetype 2.5.4 does not - load ungzipped PCF fonts" - fwupd -- Add CVE-2020-10759.patch: check for a valid gpg signature - (boo#1172643 CVE-2020-10759). +- Add fwupd-bsc1179790-disable-hintsystem.patch to remove + Block.HintSystem from ESP filtering (bsc#1179790) -- Ensure /var/cache/fwupd is created and owned by package, - required when StateDirectory is not set for systemd service. +- Update to version 1.5.3: + + Lower the CURL version required to fix build in RHEL + + Do not use meson ternary operations to avoid bumping the + required meson version + + Added Lite Mk III + + Allow setting the GMainContext when used for sync methods + + Fall back to the misc device for serio devices + + Actually implement rescan in FuUdevDevice + + bcm57xx: Refactor CRC code to remove extra byteswap + + bcm57xx: Fix CRC check + + synaptics-rmi: Don't crash if calling ->to_string() before + - >setup() + + Fix a possible critical warning due to missing retval + + Add the serio->firmare_id for UDev devices + + Export the driver name from FuUdevDevice + + Allow the client to send PKCS7 and GPG signatures + + Force the remote kind to JCat server-side + + Only parse the signature if the remote is JCat + + fu-main: Fix sender_features insert with wrong size + + make platform integrity plugin optional and disabled by default + + Add quirk for Western Digital + + Mark more user-visible strings as translatable + + modem-manager: validate firmware update method combinations + + modem-manager: remove unused byte counts in QMI/PDC update logic + + modem-manager: make sure the correct interface number is used + for QMI + + modem-manager: udev monitoring only if device switches layout + + modem-manager: plug udev client leak + + Restrict loading component types of firmware +- Enable supported_build to clarify that this package is supported + (bsc#1179790) +- Drop fwupd-platform-integrity.conf since upstream disables the + platform integrity module by default now due to incompleteness. +- Address fwupd-refresh.service in %preun, %pre, %post, and %postun + and provide a rc link for it +- Version "Obsoletes: dbxtool" and "Obsoletes: fwupdate" -- Update to version 1.2.11 (jsc#SLE-10751): - * synapticsmst: Use a more suitable icon for the device - * thunderbolt: Fix logic to work properly with ICL thunderbolt - controller +- Update to version 1.5.2: + + ata: Add OUI quirk for Toshiba + + libfwupd: Restore recognizing gpg and pkcs7 types still + + Register the SoupSession gtype when required + + Switch from libsoup to libcurl + + Fix sync method when called from threads without a context + + Move ABI check to Github actions + + Enable github workflows + + libfwupd: Add fwupd_client_download_file() + + libfwupd: Add fwupd_client_get_user_agent() + + Only download the remote metadata as required + + Add breaks for fwupdate 12-7 (Closes: #960688) + + Install modules-load configs in the correct directory + + vli: Do not be clever replugging the MSP430 device + + vli: Make some trivial debugging more specific to help debug + an issue + + make gcab optional + + Fall back to FAT32 internal partitions for detecting ESP + + Add a flag to indicate if packages are supported + + uefi: a new option for uefi configuration to use UEFI removable + path + + Add a section to man page on scripting + + synaptics-mst: Improve reliability by waiting 2 seconds after + writing data + + hailuck: Add an plugin for the Pinebook Pro laptop + + Allow setting global flags for FuHidDevice + + Set the SMBIOS chassis type to portable if a DT battery exists + + colorhug: Don't set the version format to triplet at startup + + Allow components to set the icon from the metadata + + colorhug: Fix detection of version on older firmware versions + + bcm57xx: Fix reading vendor/device ids from firmware. + + Remove HSI update and attestation suffixes + + trivial: make dbxtool executable to fix snap build + + Ignore an invalid vendor-id when adding releases for display + + Notify the service manager when idle-quitting +- Refresh fwupd-bsc1130056-change-shim-path.patch +- Changes in BuildRequires: + + Replace pkgconfig(libsoup-2.4) with pkgconfig(libcurl) + + Replace pkgconfig(systemd) with pkgconfig(libsystemd) +- fwupd-msr.conf and fwupd-platform-integrity.conf are moved to + %{_modulesloaddir}. + +- Obsoletes and Provides dbxtool since fwupd 1.5.0+ now embeds + dbxtool in the dbxtool plugin + +- Amend the spec file (jsc#SLE-16818) + + Only enable fish support for Tumbleweed + + Only enable the MSR plugin for x86 + + Only install dbxtool in the architectures with UEFI support + +- Update to version 1.5.1: + + Use UDisks to find out if swap devices are encrypted. + + Show a link to discover more information about a specific + plugin failure. + + updated fish completions to 1.5.0. + + Remove the duplicate parent-child data in FwupdDevice and + FuDevice. + + Show a less scary fwupdate output for devices without info. + + thunderbolt: recognize authorized value of '2' as well. + + bcm57xx: Make hotplug more reliable. + + Use a different Device ID for the OptionROM devices. + + contrib/ci: switch TPM simulator from ibmswtpm to swtpm. + + Delete unused EFI variables when deploying firmware. + + Fix probe warning for the Logitech Unifying device. + + Include the amount of NVRAM size in use in the LVFS failure + report. + + Add external interface messages. + +- Update to version 1.5.0: + + Add a compatible re-implementation of the rhboot dbxtool. + + Add async versions of the library for GUI tools. + + Add commands for interacting with the ESP to fwupdtool. + + Add firmware-extract subcommand to fwupdtool. + + Add FwupdPlugin so we can convey enumerated system errors to + the end user. + + Add plugin for Goodix fingerprint sensors. + + Add plugin that can update the BCM5719 network adapter. + + Add plugin to update Elan Touchpads using HID. + + Add support for a delayed activation flow for Thunderbolt. + + Add support for ChromeOS Quiche and Gingerbread. + + Add support for Hyper hardware. + + Add support for the Host Security ID. + + Add support for ThunderBolt retimers. + + Add switch-branch command to fwupdtool and fwupdmgr. + + Allow blocking specific firmware releases by checksum. + + Allow contructing a firmware with multiple images. + + Allow firmware to require specific features from front-end + clients. + + Allow updating the dbx using the LVFS, validating it is safe to + apply. + + Include the HSI results and attributes in the uploaded report. + + Support loading DMI data from DT systems. + + Support LVFS::UpdateImage for GUI clients. + +- Add fwupd-jscSLE-11766-close-efidir-leap-gap.patch: Set SLE and + openSUSE esp os dir at runtime (jsc#SLE-11766) +- Drop _multibuild and build option -Defi_os_dir="%{efidir}": with + the above patch fwupd can detect esp os dir dynamically +- Update the efidir related %post and %postun scripts in spec file + +- Update to version 1.4.5: + * Add XB_QUERY_FLAG_FORCE_NODE_CACHE + * Add support for a delayed activation flow for Thunderbolt + * Allow firmware to require specific features from front-end clients + * Allow multi-byte FuUdevDevice preads and writes + * Be more defensive when remotes are missing required keys + * Disable the SQLite lookaside cache + * ccgx: Add more hybrid dock support + * ccgx: Modify readme to remove customer info + * ccgx: add new protocol for dmc dock + * ccgx: remove verify flag in plugin + * modem-manager: read the vendor ID directly from sysfs attribute Fixes: #2209 + * thelio-io: Add the DFU instance ID as a counterpart only + * thunderbolt: Add a new subclassed thunderbolt firmware update type + * thunderbolt: Allow quirks to skip the authentication step + * thunderbolt: drop support for force power + * tpm-eventlog: fix PCR0 calculation + * uefi: check for free space after cleaning up ESP + * vli: Add dual-image feature for VL103 backup firmware + * vli: Add the project ID shared SPI PD controllers + * vli: Allow chained usb hub devices where the parent needs GPIOB reset + * vli: Do not modify the class vfuncs depending on device type + * vli: Do not use GUID matching for the MSP device + * vli: Rename FuVliUsbhubI2cDevice to FuVliUsbhubMsp430Device + * vli: Set FuQuirks on the shared SPI object + * vli: Set the i2c instance IDs in probe() + * vli: Use the GPIOB reset for the MiniDock VL103 + * vli: Wait for the root device to be replugged when updating the MSP430 + +- Update to version 1.4.4: + * Release fwupd 1.4.4 + * Fix regression when checking for downgraded metadata + +- Update to version 1.4.3: + * Release fwupd 1.4.3 + * ata: A OUI quirk for Kingston + * ccgx: Fix a potential division by zero + * Check the device requirements when returning from GetDetails + * fu-engine: Allow --plugin-whitelist to use dashes instead of + underscores + * Always enforce the metadata signature has a valid timestamp + * ccgx: modify install duration for dmc device + * ccgx: Add support for HP DMC dock devices + * dell-dock: prevent updates to occur via synaptics-mst plugin + * dell-dock: Capture the dock SKU in metadata + * synaptics-prometheus: Force the minor version from 0x02 to 0x01 + to make sure the devices can be updated back to 0x01. + * Generate a body for github releases (Fixes: #2034) + +- Build the package separately for openSUSE and SLE using + _multibuild (jsc#SLE-11744). + +- Update to version 1.4.2: + * vli: Add no-guid-matching for all VLI devices + * vli: Remove a copy-and-paste mistake + * Add two OUI quirks + * ata: Add WD OUI quirk 000cca + * synaptics-rmi: Essentially blacklist Dell K12A + * dfu: Avoid communicating when bitManifestationTolerant is off + * ata: Add OUI quirk for Western Digital + * dfu: Support MATEKF722SE quirk + * Fix various build issues with -Wdiscarded-qualifiers + * thunderbolt/dell-dock: Delay activation for Thunderbolt updates + * Switch the default of EnumerateAllDevices to false + * Add OUI quirk for SanDisk + * vli: Add two standard USB instance IDs for shared-PD devices + * vli: Use GPIOB to reset the VL817 found in two Lenovo products + * tpm-eventlog: Correct the display of final calculated PCRs + * wacom-raw: fixup switching to bootloader mode + +- Update to version 1.4.1: + * thunderbolt: Don't show safe mode errors for USB4 host controllers + * ep963x: Various changes to make the plugin actually work on real hardware + * Make tss2-esys conditional + * ep963x: Remove some dead code spotted by Coverity + * ccgx: Only update the FW2 partition of the ThinkPad USB-C Dock Gen2 + * ccgx: Expand the FWImageType for future hardware + * Allow specifying the device on the command line by GUID + * Fix the DeviceID set by GetDetails + * wacom-usb: Fix a theoretical buffer over-read to make GCC happy + * vli: Only show the i2c devices on the USB3 hub + * Allow devices to be updatable, but only when upgrading a proxy device + * Reset the progressbar time estimate if the percentage is invalid + * ccgx: Always report 100% when finished writing + * Add a device quirk that forces an explicit device-id match + * ccgx: Set the device name and summary from quirk files + * vli: Only do the APP5 FW bug fix on affected hardware + * vli: Show all the buffer when debugging with FWUPD_VLI_USBHUB_VERBOSE + * fu-engine: Refresh device name and format before setting supported flag + * Allow a device to set the logical or physical ID during ->setup() + * ccgx: Split out a trivial helper to set the instance IDs + * ccgx: Set the device name to be more useful + * ccgx: Set the logical ID as the FwMode + * ccgx: Split out a trivial function to set the version + * ccgx: Do not reboot the device write after installing + * ccgx: Do no show the flash parameters when unknown + * Allow devices to match the proxy device by GUID + * Do not skip attach() if the device is marked _WILL_DISAPPEAR + * dell-dock: Port to using fu_device_get_proxy() + * Allow adding a device 'proxy' device that can do actions on it + * vli: Do not show the USB 2 recovery devices for USB 3 hubs + * vli: Add metadata to identify which is the same physical device + * uefi: correctly format firmware version of Dynabook (né Toshiba) X30, X40 and probably others + * synaptics-cxaudio: Use the ->attach() device vfunc + * synaptics-cxaudio: Wait for the device to reboot after writing firmware + * logitech_hidpp: decrease verbosity of messages that hid++ ID is missing + * Prefer to update the child first if the order is unspecified + * Do not modify the device priority for child devices + +- Exclude fwupdate from the architectures without UEFI support. + +- Update to version 1.4.0: + * Release fwupd 1.4.0 + * Allow removing device flags from quirk files + * Use black to format python source in a consistent manner + * Define SOURCE_VERSION when building a package + * Only set the parent when adopting children + * Do not conditionalize attach() and detach() on IS_BOOTLOADER + * Do not crash the daemon if a plugin does something dumb + * wacom-usb: Add more sanity checks in case the daemon goes crazy + * wacom-usb: Use a per-device cleanup function + * Add some more device regression tests + * wacom-usb: Add a lot of missing metadata about the devices + * wacom-usb: Hide a lot of debugging behind FWUPD_WACOM_VERBOSE + * Only auto-add counterpart GUIDs when required + * ccgx: remove update message + * ccgx: add parent guid for hybrid dock + * ccgx: Use a smaller timeout for i2c read and write operations + * ccgx: Retry the register read and write with a i2c reset + * ccgx: Fix buffer overflow when reading out i2c status + * ccgx: Retry the HID disconnect up to 5 times + * ccgx: Show a better error message on failure + * ccgx: Allow forcing firmware of the wrong app_type with fwupdtool + * Modularize the hardware tests + * Ignore indirect devices that replug during the composite firmware update + * Export the device state as part of the D-Bus interface + * Fix devices that use CounterpartGuid when more than one device is installed + * Use the GUID as a fallback rather than the connection ID + * ccgx: Fix critical warning on i2c write failure + * logitech-hidpp: Do not add peripheral devices for receiver in BL mode + * Install the installed-tests only if tests are enabled + * Load the signature to get the aliased CDN-safe version of the metadata + * vli: Only reboot the USB hub once + * synaptics-cxaudio: Only use the PATCH2 address when the patch level is 2 + * add STM32F745 stm dfuse quirk + * dfu: Add a way to set the timeout from a quirk + * Export the release urgency + * Export the release creation time + * Check the firmware requirements before adding SUPPORTED + * data/motd/fwupd-refresh: Only order after network.target + * ccgx: Do not add the HID device that will disconnect + * ccgx: Use Silicon ID and Application type to set flash parameters + * Add a new daemon configuration option to control EnumerateAllDevices + * logitech_hidpp: set the bootloader protocol + * Install meson from pip for LGTM + * bash: add completion for fwupdtool reinstall + * fu-tool: add reinstall command + * fu-engine: export fu_engine_get_releases_for_device in header + * vli: Wait for the VL103 to timeout to fix detach + * ccgx: Show the UpdateMessage in the correct device mode + * ccgx: Add extra instance IDs to match specific firmware + * Use a static version number + * thunderbolt: Rather than hardcoding to PCI slot numbers, use domain in GUID + * Revert "thunderbolt: Create a unique GUID including Thunderbolt controller path" + * dell-dock: Port to fu_device_retry() + * nitrokey: Convert to use FuHidDevice + * nitrokey: Port to fu_device_retry() + * vli: Port to fu_device_retry() + * Add fu_device_retry() helper functionality + * ccgx: Implement writing firmware to flash + * ccgx: Add i2c status check when reading or writing registers + * ccgx: Add 5ms delay between read registers to avoid an i2c error + * libfwupdplugin: Use fu_device_locker_close() + * synaptics-mst: Use fu_device_locker_close() + * Add fu_device_locker_close() + * ccgx: Do not store the silicon ID in the image address + * ccgx: Add device quirks for the Lenovo Hybrid Dock + * ccgx: Switch HID mode to HPI mode at startup + * ccgx: Clear the event queue when in startup + * ccgx: Wait for hardware to settle when coming out of reset + * ccgx: Do not mark the device as updatable when in boot mode + * ccgx: Verify the firmware app type when preparing firmware + * ccgx: Set the update message when running in backup firmware + * ccgx: Read the FwAppType from the hardware + * ccgx: Set the HPI version number for the current firmware + * ccgx: Get the silicon ID to map the flash parameters + * ccgx: Read the HPI device mode at startup + * ccgx: Set up the HPI I²C config at startup + * ccgx: Create devices when in HID and I2C modes + * Add a new ChromeOS CI target to build without GPG and PKCS7 + * Use Jcat files in firmware archives and for metadata + - Removed fu-keyring-gpg which caused CVE-2020-10759 (boo#1172643) + * csr: Allow truncated HID reads + * vli: Only consider the high nibble when building the sub-version + * csr: Parse the firmware as a DFU file + * Add support for EP963x hardware + * Add FuHidDevice abstraction + * vli: Correctly attach VL103 after a firmware update + * ccgx: Parse the metadata block in the firmware image + * ccgx: Add a firmare parser for cyacd files + * logitech: Correctly set the protocol + * Add the optional device-id to the update --help output + * Fix a difficult-to-trigger daemon hang when replugging devices + * vli: Remove a dock device from the whitelist that is never going to be updated + * vli: Add some trivial debugging to help track down a bug + * vli: Never add USB hub devices that are not upgradable + * uefi: Don't use shim for non-secure boot configurations + * Start fwupd-activate.service after snapd.service + * dfu: Actually reload the DFU device after upgrade has completed + * dfu: Add one more m-stack device requiring a quirk + * Apply version format to releases and devices at same time + * Ensure that the DeviceID is set for child devices + * Fix a daemon crash when removing children + * Allow waiting for the parent device when replugging + * Add fu_device_get_root() shared API + * vli: Fix an error when detaching MSP430 + * vli: Fix a critical warning when getting the USB speed + * vli: Fix the error enum values for the MSP430 + * Do not add blank lines when tokenizing Intel hex files + * vli: Fix the version calculation for MSP430 + * vli: Ignore one more error when attaching + * vli: Always expect the VL103 header at 0x1003 or 0x4000 + * vli: Do not fall back to the recovery write for usbhubs + * vli: Only show the 2nd header if the device ID is valid + * vli: Fix VL103 reboot from ROM mode to FW mode + * vli: Add some better comments for writing GPIOs + * Add a helper script to add a DFU header + * Add 'firmware-convert' subcommand to fwupdtool + * fu-engine: Make two passes of requirements checking + * fu-engine: Copy the VersionFormat from the CAB if specified in `get-details` + * Add a new plugin for CPU microcode + * Don't build/install fwupdagent man page if agent build is not requested + * Introduce a new VersionFormat for `hex` + * Drop UEFI quirks we now inherit from metadata + * ci: build Debian using libflashrom + * When TPM PCR0 measurements fail, query if secure boot is available and enabled + * fix fwupd.shutdown.in according to the movement of fwupdtool to bindir + * ata: Add OUI quirk for Western Digital and Intel + * improved fish shell completion + * vli: Set the MSP430 version format to pair + * Always return AppStream markup for remote agreements + * ata: Add trivial OUI quirk for Micron + * added completion script for fish shell + * Do not fail loading in /etc/machine-id is not available + * Use xb_builder_source_add_simple_adapter + * Create FuCabinet and untangle a lot of legacy code + * nvme: Do not try to handle integer version numbers + * Allow server metadata to set the version format on some devices + * fu-tool: Correctly append the release to devices in `get-details` + * For the `get-details` command make sure to always show devices + * fu-engine: Copy the version and format from donor device in get-details + * fu-engine: Use unknown for version format by default on get-details + * Inihbit all power management actions using logind when updating + * Decouple the version format from the version itself + * Add raw versions for bootloader and lowest + * Allow server metadata to set the device name on some devices + * Remove support for GCab less than v1.0 + * fu-device-list: Check protocol before de-duping devices + * Do not allow devices that have no vendor ID to be UPDATABLE + * ata: Include a vendor ID for ATA hardware + * ata: Switch off the verbose logging by default + * Always check for PLAIN when doing vercmp() operations + * Discard the reason upgrades aren't available (Fixes: #1678) + * Improve the description of `fwupdtpmevlog` for man page + * Move `fwupdtpmevlog` into `bindir` + * uefi: Move `fwupdate` into `bindir` + * Move `fwupdtool` and `fwupdagent` into `bindir` + * Use the system provided flashrom on Fedora + * Add a plugin vfunc to run after subclassed FuDevice creation + * ci: use standalone script to generate build dependencies + * Move the daemons from /usr/lib/fwupd to /usr/libexec/fwupd + * Use the recently released flashrom v1.2 + * Generate an additional UEFI quirk file using the stable LVFS metadata + * uefi: Apply capsule update even with single valid capsule + * Fix a critical warning when installing some firmware + * ebitdo: Fix the endpoint address logged in the error message + * uefi: Find the correct lds and crt name when specifying -Defi_ldsdir + * upower: Move battery threshold declaration into a configuration file + * upower: Decrease minimum battery requirement to 10% +- Refresh fwupd-bsc1130056-change-shim-path.patch +- Add new dependency: jcat + +- Update to version 1.3.9: + * Release fwupd 1.3.9 + * Always check for PLAIN when doing vercmp() operations + * improved fish shell completion + * vli: Set the MSP430 version format to pair + * added completion script for fish shell + * Always return AppStream markup for remote agreements + * Do not fail loading in /etc/machine-id is not available + * fu-engine: Fixup broken-ness from 0c0fada18fc9cb2a0efec351db67f0867bf045cd + * Use xb_builder_source_add_simple_adapter + * fu-tool: Correctly append the release to devices in `get-details` + * For the `get-details` command make sure to always show devices + * fu-engine: Copy the version and format from donor device in get-details + * fu-engine: Use unknown for version format by default on get-details + * Inihbit all power management actions using logind when updating + * fu-device-list: Check protocol before de-duping devices + * ata: Switch off the verbose logging by default + * Discard the reason upgrades aren't available (Fixes: #1678) + * Improve the description of `fwupdtpmevlog` for man page + * Move `fwupdtpmevlog` into `bindir` + * uefi: Move `fwupdate` into `bindir` + * Move `fwupdtool` and `fwupdagent` into `bindir` + * ci: use standalone script to generate build dependencies + * Move the daemons from /usr/lib/fwupd to /usr/libexec/fwupd + * Use the recently released flashrom v1.2 + * uefi: Apply capsule update even with single valid capsule + * Fix a critical warning when installing some firmware + * ebitdo: Fix the endpoint address logged in the error message + * fu-util: fix a logic error in report uploading introduced in e076d48afb74d1447936d353f12781755f13b047 + * uefi: Find the correct lds and crt name when specifying -Defi_ldsdir + * upower: Move battery threshold declaration into a configuration file + * upower: Decrease minimum battery requirement to 10% +- Update to version 1.3.8: + * Release fwupd 1.3.8 + * Do not use fu_common_vercmp() when the device verfmt is PLAIN + * altos: Output raw buffer data when using FWUPD_ALTOS_VERBOSE + * altos: Prefix an error to provide more context + * altos: Add a trivial _to_string() implementation + * synaptics-cxaudio: Make the verfmt match that of the existing Windows tools + * synaptics-mst: Allow MST to fall back if no PCI device is marked as parent + * Allow specifying a list of subsystems when setting a physical ID + * synaptics-mst: Fix trivial thinko caused by the wrong dock connected + * vli: Invert the logic to reboot the parent FuCliUsbhubDevice, not the child + * vli: Switch around the hub tier values + * uefi: Fix a build regression with Fedora 30 + * logitech_hidpp: Ignore detach failures (Fixes: #1183) + * logitech_hidpp: When detaching to bootloader use non-blocking IO and wait for timeout + * vli: Show erase progress when doing a v2 recovery + * uefi: Do not remove the 'Linux Firmware Updater' boot entry before update + * uefi: Do not rewrite BootOrder in the EFI helper + * vli: Add support for the PS186 device + * Set up more parent devices for various Lenovo USB hubs + * cxaudio: Set the update protocol to prevent a daemon warning + * vli: Add support for Lenovo Modularized dock + * Add an extra instance ID to disambiguate USB hubs + * vli: Remove the unused tierX custom flags for each device + * Revert "Correctly delete UEFI variables" + * uefi: make debugging output more readable + * vli: Fix a potential buffer-overflow when parsing firmware + * tpm: Optimize the string parsing and fix the boolean logic + * synaptics-rmi: Add a missing error enum value + * synaptics-rmi: Correctly identify a checksum failure + * synaptics-rmi: Fix Coverity issue that is impossible to hit in reality + * solokeys: Parse old versions of the bootloader string + * Add a plugin to update PD controllers by Fresco Logic + * vli: Set the device progress correctly when erasing a PD device + * vli: Use the correct command to get the device firmware version + * vli: Correctly reset all VL100 devices + * vli: Set all standalone PD devices to not do SPI auto-detection + * vli: Mark standalone PD devices as updatable + * vli: Set the protocol for FuVliUsbhubPdDevice types + * Support the new gnuefi file locations + * Cleanup ancient fwupdate-* EFI variables too (Fixes: #1739) + * Detect kernel lockdown status + * vli: Add the DEV instance ID to all devices + * tpm-eventlog: Replay the TPM event log to get the PCRx values + * tpm-eventlog: Store the eventlog hashes in binary form +- Update to version 1.3.7: + * Release fwupd 1.3.7 + * Correctly delete UEFI variables + * ci: allow working with podman w/o aliases + * ci: fedora: force correct rpm package version + * src: fu-engine: check version was updated by checking version + * Correctly import PKCS-7 remote metadata + * Add 'refresh' to fwupdtool + * Add 'get-remotes' to fwupdtool + * Generate a win32 setup binary + * Fix display of UTF-8 characters on Windows + * Move MOTD population into the daemon + * fu-util: Discourage metadata refreshes more than once per day + * Disable the battery percentage checks if UPower is unavailable + * Allow getting the list of updates in JSON format from fwupdagent + * Revert "trivial: Attempt to fix Debian CI" + * fu-remote-list: emit a changed signal when modifying a remote + * synaptics-mst: Skip self tests for systems with amdgpu + * Allow applying all releases to get to a target version + * Split up fu_engine_install() into two halves + * logitech_hidpp: use the correct timeout for IO channel writes + * Allow quirking devices that always require a version check + * Shut down automatically when there is system memory pressure + * Show the device parent if there is an interesting child + * Allow the client to get the list of FwupdDevice children + * Set the FwupdDevice parents in fwupdtool + * Don't always get the vendor ID for udev devices using the parent + * Add a runtime warning when adding a device without an vendor-id or protocol set + * vli: Set more of the firmware max sizes automatically + * vli: Add a SpiAutoDetect quirk for some of the PD devices + * vli: Use a different protocol ID for i2c devices + * vli: Add support for standalone Single PD devices + * vli: Move generic SPI functionality into the FuVliDevice base class + * vli: Remove the PD emulation code + * vli: Use a more standard GUID for the child i²c and shared SPI devices + * vli: Allow setting the device kind from a quirk + * vli: Make more function names match the docs + * vli: Move the SPI command quirking from FuVliUsbhubDevice down to FuVliDevice + * vli: Rename FuVliUsbhubPdFirmware to FuVliPdFirmware + * vli: Allow the device to specify the PD firmware header offset + * vli: Add a FuVliDevice as a subclass to FuVliUsbhubDevice + * vli: Define the device GType in the quirk file + * vli: Move the CRC calculations out of usbhub scope + * vli: Have one 'DeviceKind' for all objects + * vli: Rename the `vli_usbhub` plugin to `vli` + * Capitalize GNOME +- package has grown a few new binaries: fwupdagent, fwupdate, fwupdtool + and a tpm event debugging tool, that is packaged separately: + fwupdtpmevlog + +- Drop docbook-utils-minimal build dependency, manpages are generated + with gtk-doc. + +- Update to version 1.3.6: + * plugins/coreboot: Add missing fu_hash dependency + * trivial: synaptics-cxaudio: Add Google type C <-> 3.5mm adapter + * fu-engine: don't expose bootloader version errors to users + * trivial: dell-dock: drop unused quirk keyx + * trivial: rename synapticsmst to synaptics-mst + * trivial: actually set vendor ID for synaptics + * fu-remote-list: Drop fallback path behavior + * libfwupdplugin: Make sure systemd created environment variables exist + * trivial: fu-remotes-list: drop usage of `FU_SELF_TEST_REMOTES_DIR` + * trivial: synaptics-rmi: hardcode Vendor string + * trivial: Set vendor ID for Dell WD19 to USB:0x413C (Fixes: #1653) + * trivial: Document the use of vendor-id in each plugin + * superio: Use the baseboard vendor as the vendor ID + * uefi: Use the BIOS vendor as the vendor ID + * coreboot: Use the BIOS vendor as the vendor ID + * flashrom: Use the BIOS vendor as the vendor ID + * dell: Hardcode a plausible vendor ID + * emmc: Set the correct vendor ID prefix + * fu-util-common: correct the default prompt for reboot/shutdown (Fixes: #1617) + * Split out the remote loading from FuConfig + * vli-usbhub: Fix the quirk for the legacy VIA 813 chip + * Clarify error messages when no upgrades available + * trivial: Don't handle a vendor-id requirement error that cannot happen + * Only check the vendor ID if the device has one set + * fu-install-task: Enforce that device protocol matches metadata + * Add a new plugin that can parse the TPM event log + * Allow other plugins to contribute report metadata + * trivial: dell: hardcode the physical device ID for tpm to match the tpm plugin + * Add a new plugin that exposes the system TPM device firmware version + * Add fu_udev_device_set_flags() + * trivial: Render large values of VersionRaw in a more portable way + * trivial: wacom-raw: mark all Moffett SKUs as self recovery + * Throw exit status 0 (instead of 2) if there is no firmware to be updated + * Add a `dell-bios` version format + * Add support for multiple LVFS::VersionFormat tags + * Do not do semver conversion in fu_common_vercmp() + * trivial: Deprecate fu_common_version_parse() + * trivial: Support 'plain' in fu_common_version_from_uintXX() + * Add the sysfs 'description' as the one-line device summary + * trivial: Also print the parent keys when using FU_UDEV_DEVICE_DEBUG + * trivial: Add fu_common_version_from_uint64() + * trivial: Convert the VersionRaw value to a uint64_t for future use + * Allow building on Windows with MinGW + * synaptics-prometheus: Allow incremental version major and minor number + * Replace 'scheduing' with 'scheduling' + * Export the raw device version to the client --verbose output + * trivial: Only dlopen the test plugin once + * Export the device protocol to the client --verbose output + * trivial: installed-tests: try to display journal for failed tests + * trivial: ci: debian: enable verbose daemon logging for failure analysis + * trivial: installed-tests: explicitly choose webcam device ID + * trivial: debian: remove obj-* built files to fix back to back builds + * trivial: ci: don't let bad symlinks cause debian build failures + * trivial: debian: correct a dependency for libfwupdplugin-dev +- Changes from version 1.3.5: + * plugins: Fix potential use of NULL pointer in fu_dell_dock_mst_write_register + * Fix shifting integer by more than 31 in fu_util_filter_device + * synaptics-prometheus: Reload the device version after IOTA update + * synaptics-prometheus: Reload the device version after update + * trivial: wacom: remove coretronic config from Moffett scope + * trivial: Fix a NULL/FALSE confusion + * trivial: Add a BR for Fedora + * trivial: Fix coreboot commit to fix CI + * trivial: libfwupdplugin: clarify name of self test + * plugins/coreboot: Improve version detection + * plugins/coreboot: Get rid of FU_HWIDS_KEY_BIOS_VENDOR in coldplug + * trivial: Move progressbar out of libfwupdplugin + * trivial: Unexport fu_test_get_filename() + * trivial: Unexport fu_test_compare_lines() + * trivial: Unexport fu_test_loop_run_with_timeout() + * trivial: Do not include non-introspectable functions in the GIR + * trivial: Fix up a few introspection problems in FwupdPlugin + * trivial: Include the Fwupd GIR in the FwupdPLugin GIR + * trivial: Never add duplicate symbols to the map file + * trivial: Properly namespace the defines in the exported header + * Install development files for libfwupdplugin + * Convert libfwupdprivate to a shared library libfwupdplugin + * trivial: Allow building GCab from a subpackage + * trivial: Fix under-include to define O_RDONLY + * trivial: Allow compiling without + * trivial: Do not use FuProgressbar in dfu-tool + * synaptics-prometheus: Manually set the bootloader mode when attaching + * trivial: Split out a new helper funtion + * trivial: Add some optional debugging when hotplugging devices + * trivial: Include the correct header for S_IRWXU + * Always use the more portable 3-arg form for open() + * trivial: Untangle FuHistory from FuPlugin + * trivial: Allow compiling without + * Revert "synaptics-rmi: Use the build ID as the version number to match the vendor tool" + * Add missing documentation from the plugin interface + * trivial: fu-udev-device: remove a prototype that was missed in b3d4d2ff + * trivial: add missing gtk-doc fields for many files in src/ + * trivial: fix compile failure without gudev + * synaptics-prometheus: Mirror the _IS_BOOTLOADER from device to config + * Allow setting the device flags using GObject properties + * vli_usbhub: Set the composite parent at construction time + * synaptics-prometheus: Set the composite parent at construction time + * Allow plugins to set the parent during construction + * vli-usbhub: Whitelist the PD and I²C devices + * Set the protocol per-device not per-plugin + * synaptics-rmi: Use the build ID as the version number to match the vendor tool + * Create a REV_00 instance ID as this may be what the vendor needs to target + * fu-util-common: Invert default behavior for reboot and shutdown prompts + * trivial: fu-plugin-vfuncs: Add GTK documentation for all vfuncs + * Make gudev a compile-time option + * trivial: Set the offline trigger using an environment variable + * trivial: ci: pull lintian from unstable for now. + * trivial: stop including fu-hash.h as part of fu-plugin-vfuncs.h + * Fix shebangs on scripts + * trivial: Use prefixes for DATADIR in config.h for portability + * Allow compiling GUsb as a subproject + * trivial: fu-udev-device: add a to_string func for debugging + * trivial: Don't assume that plugins end in .so + * trivial: optionrom: remove unneeded includes + * trivial: debian: ci: ignore library-not-linked-against-libc for more + * trivial: remove version-format.md + * trivial: Allow compiling without pwrite() + * trivial: Allow compiling without + * trivial: Allow compiling without realpath() + * trivial: Allow compiling without HAVE_LC_MESSAGES + * trivial: Allow compiling without getuid() + * trivial: Allow compiling without + * trivial: Allow compiling without + * trivial: Allow compiling without + * Ensure the _get_type() gets the same ABI version as the constructor + * Use the correct unlocker when using GRWLock + * trivial: plugins: only build coreboot when option set + * fwupdtool: don't show a warning when calling `get-plugins` +- Changes from version 1.3.4: + * trivial: Don't force specific linker flash when cross building + * dell: Use the more portable g_usleep() + * trivial: Fix unused header includes + * vli-usbhub: Make erasing less verbose and writing more obvious + * vli-usbhub: Correctly print the 24-bit USB3 offset + * vli-usbhub: Print the PD firmware offset and size for debugging + * vli-usbhub: Open the parent device before attempting to read or write from the child + * vli-usbhub: Set the install duration for the PD device + * trivial: Fix a failed error prefix string + * trivial: wacom-raw: Remove embedded from device name + * wacom-raw: Correct HWID support + * uefi: Just use a uint16_t for BootNext processing + * uefi: Use a simpler entries set algorithm + * vli-usbhub: Add support for writing using I2C passthru + * vli-usbhub: Support updating PD devices that share the hub flash + * vli-usbhub: Support the PD file format + * trivial: uefi: correct a NULL pointer dereference + * uefi: fall back to `ID_LIKE` when the path for `ID` doesn't exist (Fixes:# 1566) + * uefi: Make generate_binary.sh more robust + * Tokenize the Intel Hex file before parsing + * trivial: Detect the USB version automatically + * trivial: fu-util/fu-tool: explicitly block unsupported flags + * Add support for matching requirements on device parents + * Skip cleanup after device is done updating if `will-disappear` is set (Fixes: #1529) + * efi: use a wildcard section copy for final EFI generation + * modem-manager: explicitly use plain version format + * modem-manager: add quirks for the Foxconn T77W968 modules + * Allows confined snaps to activate fwupd via D-Bus + * trivial: thunderbolt: clarify error message + * Add a new property `Interactive` to the daemon + * trivial: contrib/get-version.py: require git less hard + * superio: Never read from port offset zero + * superio: Fix regression when coldplugging superio devices + * trivial: Fix Fedora CI build + * trivial: Fix the autobuilt spec file with the new tarball version + * Dynamically determine release version + * trivial: synapticmst: allow missing `/proc/modules` + * synapticsmst: filter invalid chip IDs + * trivial: Provide some defines for common image names + * Allow aborting early when using fu_archive_iterate() + * Add fu_firmware_image_set_version() for future use + * modem-manager: increase re-enumeration delay to 20000ms + * modem-manager: add counterpart GUID for the DW5821e/eSIM + * Add versions formats for the Microsoft Surface devices + * usb: make loading vendor/product/serial strings non-fatal + * trivial: Fix the protocol ID for VLI usbhub devices + * trivial: wacom-raw: add more device IDs for Dell devices + * trivial: contrib: don't require TSS for debian archs without EFI + * fu-udev-device: Adjust bounds checking to be safer + * fu-udev-device: Don't assume all devices have `device_file` + * synaptics-rmi: correct an error cleaning up on probe + * trivial: fu-udev-device: add some safety checks for fd + * udev-device: fix offset of vendor id of hidraw devices + * flashrom: switch to upstream source + * trivial: fu-plugin: only show an error once "failed to open plugin" was being prefixed twice + * trivial: debian: only use mingw-w64-tools in archs with UEFI plugin + * fastboot: Fix a regression when updating modem firmware + * trivial: conflict with old unifying plugin + * Rename unifying plugin to logitech-hidpp (Fixes: #1329) + * Add a new contrib script for installing a Dell BIOS from an EXE file + * trivial: add-capsule-header: rename to make it easier to import + * trivial: simple_client: make it easier to reuse code + * trivial: firmware-packager: make it easier to reuse code + * trivial: add-capsule-header: make it actually work + * trivial: fix some gtkdoc sections + * Bump the required gudev version + * trivial: Fix a compile error with older versions of gudev + * trivial: wacom: add vid/pid for panels in Moffett + * trivial: post release version bump +- Changes from version 1.3.3 + * unifying: notify users to replug when using dfu control (Fixes: #1383) + * trivial: 8bitdo: set a transient failure while waiting for user action + * libfwupd: Add a new error type for user action needed + * trivial: 8bitdo: show the same message for SN30pro and SN30pro+ + * trivial: Fix up some typos from codespell + * trivial: Ensure config.h is included in all source files + * trivial: Fix up some NULL/FALSE confusion + * trivial: Add all the _LAST enums that shouldn't be checked for ABI + * trivial: Fix a typo that means that UEFI results were never cleared + * Always report the update-error correctly for multiple updates + * trivial: Fix fwupdmgr get-history if the firmware was not installed from the LVFS + * trivial: Do not emit a warning if a child has no version number + * Move the file descriptor lifecycle into FuUdevDevice + * trivial: Fix some GtkDoc annotations + * ebitdo: Modernize the plugin to use FuFirmware + * nitrokey: Use fu_common_dump_raw() when debugging + * thunderbolt: Create a unique GUID including Thunderbolt controller path + * Use device safety flags to show prompts before installing updates + * trivial: Use the new possible_plugin support for USB devices too + * jabra: Move the Jabra-specific detach out into its own plugin + * Ensure the device is open when doing the subclassed prepare() and cleanup() + * vli-usbhub: Add support for updating V2 devices + * Allow verifying the device image itself from fwupdtool + * Use XMLb to query quirks + * trivial: ci: disable pulling libxmlb from unstable + * synaptics-prometheus: Don't add a config-subdevice in bootloader mode + * dfu: Use the VID/PID to identify devices without download capability in runtime + * trivial: debian: remove some unneeded lintian + * trivial: debian: bump compat version + * ebitdo: Add SN30Pro+ to recognized quirk list (Fixes: #1503) + * dfu: Add several quirks for Realtek camera hardware + * dfu: Always mark devices as UPDATABLE + * uefi: use `genpeimg` to mark ASLR and DP/NX on EFI binary + * trivial: solokey: correct a typo + * trivial: fu-util: fix typo + * uefi: rework ESP path detection and lifecycle + * trivial: uefi: show more metadata in to_string method + * trivial: fu-device: add new method to remove metadata + * Add a plugin to update VIA USB hub hardware + * trivial: Add fu_common_read_uint8_safe() + * trivial: Fix two typos in fu_common_read_uint16_safe() + * solokey: Allow parsing firmware with fwupdtool + * Allow fwupdtool to dump details of common firmware formats + * trivial: Do not do system coldplug when using FU_ENGINE_LOAD_FLAG_NO_ENUMERATE + * trivial: fu-self-test: set polling self tests to slow + * trivial: fu-tool: Allow `detach`/`attach` to prompt for device + * Strip trailing whitespace from USB descriptors + * trivial: Add fu_common_read_uint16_safe() + * trivial: Add version to the FuFirmware->to_string() output + * Add fu_firmware_set_version() + * Add a systemd preset file for `fwupd-refresh.service` + * trivial: dell: work around a memory leak caught by address sanitizer + * ebitdo: if the device has the will disappear flag, don't wait for ack (Fixes: #994) + * Add a new plugin for working with eMMC devices (Fixes: #1455) + * fu-engine: Check multiple plugins if quirks match + * trivial: don't try to enable LVFS from systemd + * trivial: coreboot: fix a clang compiler error + * fu-util: Add user friendly strings for all device flags + * Add new device flags indicating update resilience + * plugins: Add coreboot plugin + * fu-plugin: Add fu_plugin_get_hwid_replace_value + * trivial: Increase verbosity when actually updating devices + * trivial: Allow plugins to use WAIT_FOR_REPLUG in prepare and cleanup + * Add FuDevice->prepare() and FuDevice->cleanup() vfuncs for future use + * dfu: Implement FuDevice->to_string() + * trivial: colorhug: fix a crash that occurs when flashing sometimes + * trivial: fu-util: break out of automatic reports if one is not automatic + * thunderbolt: some more clarifications when using ICL + * trivial: fwupd-refresh: activate motd if using systemd v243 or later + * trivial: fwupd-refresh: allow exit code 2 for success + * trivial: synaptics-cxaudio: Add Google Pixel buds + * trivial: arch: ci: Wait some time for tpm_server to start up + * Allow a custom FuFirmwareImage->write() in superclassed objects + * dfu: Remove two completely unused helpers + * dfu: Make DfuFirmware derive from FuFirmware + * dfu: Make DfuImage derive from FuFirmwareImage + * dfu: Remove private headers that do not need to exist + * Fix device flag filtering + * trivial: fu-engine: Don't compare device and content checksums + * fu-engine: Read all releases and convert versions when comparing + * Add new flags `can-verify` and `can-verify-image` + * trivial: make verify and verify-update safer + * trivial: test: add checksums for "stock" 1.2.2 + * trivial: fu-udev-device: use parent udev device to indicate `internal` + * trivial: fix TPM2 simulator tests for arch + * trivial: uefi: don't add PCRs with all 0's + * trivial: Fix a recent regression causing a double-free + * synaptics-cxaudio: Support the ThinkPad USB-C Dock Gen2 + * trivial: fu-util: add some extra checks around automatic reports + * trivial: fu-tool: typo + * fu-systemd: Use correct method for stopping units. + * trivial: fu-udev-device: Use ID_PCI_CLASS_FROM_DATABASE if name not set + * trivial: fu-plugin: quiet down debug output for optionrom plugin + * 8bitdo: use will-disappear flag for sf30/sn30 controllers (Fixes: #783) + * trivial: ebitdo: don't dump out firmware header unless plugin verbose + * trivial: ebitdo: don't use local errors when writing firmware + * Add a new device flag for indicating device won't come back + * wacom-emr: Fix a regression for EMR devices + * Add a generic DFU firmware object for plugins to use + * dfu: Use FwupdInstallFlags rather than a DFU-specific version + * dfu: Remove functionality for modifying DfuSe files + * dfu: Remove functionality you can do now with fwupdtool + * dfu: Remove the merge command as it's unused and broken + * trivial: Add fu_firmware_parse_file() helper for future use + * trivial: Remove the fuzzing details for DfuPatch + * trivial: Add klass->to_string for superclassed FuFirmwareImage objects + * dfu: Remove DfuPatch as no vendor actually uses this + * dfu: Don't wrap provided VID-PID functions + * dfu: Use the standard FuDevice custom flags functionality + * dfu: Use klass_device->write_firmware() directly + * dfu: Use the generic fu_plugin_usb_device_added() function + * dfu: Use daemon flags to ignore devices rather than a special flag + * dfu: Set the device state directly to avoid proxying signals + * dfu: Use the built-in detach() and attach() vfuncs + * Read firmware back from the device as a FuFirmware + * dfu: Remove a pointless function + * dfu: Remove support for the Metadata Store Proposal + * dfu: Remove XTEA support + * dfu: Remove the SREC and IHEX parsing out of the DFU plugin + * ebitdo: Use klass_device->write_firmware like other plugins + * trivial: Remove G_BEGIN_DECLS from all private headers + * Remove FU_PLUGIN_RULE_REQUIRES_QUIRK as all the plugins now use it + * Set all FuUdevDevice plugins to use FU_QUIRKS_PLUGIN + * thunderbolt: recognize new 'generation' sysfs attribute + * Rename and modernize the udev plugin + * synaptics-rmi: Also add the product ID as a GUID without the minor version + * synaptics-rmi: Correctly set the payload length rather than hardcoding it + * synaptics-rmi: Write the core config correctly + * synaptics-rmi: Decode BL7 status failures as actual errors + * synaptics-rmi: Add some trivial debugging to help debug a write problem + * trivial: uefi: Make efivarvs errors clearer (Fixes: 1330) + * trivial: uefi: don't prefix efivar errors + * trivial: Remove some now-unused vfuncs + * altos: Modernize the plugin to simplify it + * Create the custom plugin GType in common code + * Reduce more boilerplate in plugins + * synaptics-rmi: Check the correct register when querying bootloader mode + * trivial: fu-engine: fix never reporting remotes + * trivial: fu-util: don't show warnings for no reports to upload + * trivial: debian: remove more conffiles from transitions (Closes: #932617) + * trivial: debian/control*: Update for fwupdate transition + * trivial: Fix a tiny memory leak when starting the daemon + * modem-manager: Fix a tiny memory leak when starting the daemon + * synaptics-rmi: Copy the behavior of rmi4utils for BL7 detach + * synaptics-rmi: Simplify fu_synaptics_rmi_device_read() + * synaptics-rmi: Set the version after ->setup has run + * synaptics-rmi: Use the correct mask when getting the bootloader mode on BL7 + * syanptics-rmi: The build_id is 3 bytes long, not 2 + * synaptics-rmi: Read the config partition the same as rmi4utils + * Provide a default implementation of common FuDevice actions + * thunderbolt-power: avoid checking for bolt support + * synaptics-rmi: Add some debugging for BL7 devices + * Fix usage of incorrect type for return value + * synaptics-rmi: Do as little as possible in device setup + * synaptics-rmi: Speed up reading the PDT from 900ms to 30ms + * fu-util: add support for a reinstall command + * trivial: fu-util/fu-tool: update re-install help text to reinstall + * trivial: fu-util: remove double printed message about succesful firmware update + * trivial: fu-util: show no updatable devices error for update command + * synaptics-rmi: Ignore the ATTN reports from the hardware when reading DATA + * synaptics-rmi: Move the fuzzing instructions to the toplevel README + * Fuzz the SREC and IHEX file parsers once more + * Use parallel fuzzing for the SMBIOS checks too + * synaptics-rmi: Fix the packing of the partition table + * Add a plugin to update Synaptics RMI4 devices + * trivial: Add a parallel fuzzing script + * trivial: fu-util: output newline after prompt. + * trivial: fix %u output in report upload + * Add a --no-domain logging option + * trivial: Fix compiler warning for impossible-to-hit condition + * Add support for automatically uploading reports + * trivial: motd: disable updating motd for now + * trivial: fwupd-refresh: fix a clash with fwupd.service (Closes: #941360) + * trivial: Fix Fedora CI + * trivial: fu-udev-device: fix some assertions + * Search up the tree for a vendor name rather than (ab)using the HID_NAME + * Add some success messages when CLI tasks have completed + * trivial: Put the boolean prompt on the same line as the text + * Never show LicenseRef-proprietary to the end user + * trivial: snap: correct install hook root directory + * Export the instructions for detaching the device + * uefi: detect unmounted ESP partitions (Fixes: #1405) + * uefi: stop recording efibootmgr output after flash + * trivial: post release version bump +- Changes from version 1.3.2: + * Add support for '' to disambiguate some firmware + * thelio-io: Add a plugin to detach the Thelio IO board + * trivial: uefi, dell: skip self tests with TPM if non-root (Fixes: #1396) + * trivial: dell: quiet the TSS output + * trivial: uefi: allow forcing to TPM2 via environment variable + * Do not enumerate physical devices when running the internal self tests + * trivial: libfwupd: skip tests if machine-id is empty too + * Add a new plugin to update Conexant audio devices + * Export the salted machine ID as a daemon property + * Fall back to /var/lib/dbus/machine-id when required + * trivial: add stalebot (Fixes: #1393) + * trivial: dell-dock: correct another write_size error + * Align the key values to the text *width* not the number of bytes + * trivial: Move dbus directory location for snap too + * trivial: Fix some NULL/FALSE confusion + * synaptics-prometheus: Fix tiny memory leak when using FuSynapromConfig + * trivial: Fix tiny memory leak when using FuSrecFirmware + * snap: switch to core18 + * trivial: Return the correct property when getting the host product + * trivial: fu-util-common: fix description wrapping (Fixes: #1378) + * fu-util/fu-tool: Map out changelogs from remotes + * fu-util/fu-tool: Better display historical information + * fu-history: Update device_modified in sql database during updates + * unifying: Use the instance ID to check for supported devices + * unifying: Ensure HID++ v2.0 peripheral devices get scanned by the plugin + * trivial: Add some more defines to the srec parser + * trivial: fix wget command in fu-tool.c + * Allow parsing a raw SREC file + * trivial: wacom: Add support for second vendor ID + * uefi, dell-esrt: Show firmware version when capsule updates unavailable + * Add some more debugging to the SREC and IHEX parsers + * Print the instance IDs if the GUIDs are unconverted + * Add fu_common_bytes_compare_raw() for future usage + * Call the set_quirk_kv() vfunc for the superclassed object + * uefi: make the TPM optional for runtime again (Fixes: #1362) + * trivial: uefi: Make the TCTI output less verbose + * Support in AppStream metadata + * Include all GUIDs when uploading a report - * fu-history: Update device_modified in sql database during - updates - * synaptics-prometheus: Fix tiny memory leak when using - FuSynapromConfig + * trivial: Update DBus conf path for example Fedora package + * Move D-Bus conf file to datadir/dbus-1/system.d + * trivial: Add fu_io_channel_write_byte_array() for future use + * trivial: post release version bump +- Package new sub-packages typelib-1_0-FwupdPlugin-1_0 and + libfwupdplugin1. + +- Fix file list + +- Update to version 1.3.1: (jsc#SLE-10751) + * Allow disabling all plugins + * trivial: Specify the tpm2-tss-devel version in the example spec file + * Move to CI Fedora 30 + * modem-manager: Fix two build warnings on Fedora 30 + * synapticsmst: Add another name quirk for the ThinkPad USB-C Dock + * Re-introduce GUID support to fwupdmgr and fwupdtool + * uefi-recovery: Add a plugin to add a fake ESRT entry for device recovery + * Add a DMI quirk for the Minnowboard Turbot + * trivial: Make it easy to disable or enable libflashrom for distros + * trivial: Don't use Recommends for RHEL 7 + * unifying: fix timeout metadata + * ci: arch: minor improvements + * unifying: fix timeout + * Allow disabling SSL strict mode for broken corporate proxies + * trivial: Allow ignoring the daemon version check by using --force + * Try to only show DMI product name once + * trivial: fu-util-common: Show unknown devices as interesting devices + * dell: Use TSS to query and build TPM vendor strings for GUIDs + * trivial: dell: show reasons for lack of updates in `UpdateError` + * fu-util-common: strip all trailing whitespace in XML description + * trivial: fu-common: match all whitespace not just ' ' in `fu_common_strstrip` + * fu-util: show release output in get-details again + * unifying: use fu_firmware_strparse_uint16 to read be 16bit values + * unifying: fix incomplete hex file parsing + * fu-util/fu-tool: Print devices, remotes, releases using a tree + * Add aliases for `get-upgrades` and `upgrade` + * trivial: UEFI skip self tests if library fails to initialize + * libfwupd: Add a new private function `fwupd_remote_set_remotes_dir` + * trivial: add libtss2-dev into debian/control (Closes: #1324) + * trivial: Fix up the GtkDoc Since lines for API only available in 1.3.x + * trivial: Post branch version bump + * thunderbolt: Add support for kernel safety checks (Fixes: #1312) + * Include the kernel release as a runtime version + * trivial: fu-util: Drop GUID support from get-devices + * synapticsmst: Partially rewrite the plugin (Fixes #1105) + * trivial: Fix running the tests on devices with the TPM in v1.2 mode + * trivial: fu-util-common: more cleanup related to topology + * trivial: fu-util: cleanup fwupdmgr get-details output + * trivial: Don't use topology printing in --verbose mode + * Make get-devices and get-topology aliases for one another + * trivial: Adjust daemon device sorting + * Make get-topology more useful by showing all information + * trivial: Fix fu_common_string_append_kv() to align properly with idx > 0 + * trivial: dell-dock: correct an error preventing write_size from being set + * trivial: Do not warn about deprecated declarations + * trivial: Update BRs for the example Fedora package + * uefi: add test for TPM 2.0 PCR read function + * uefi: use tpm2-tss library to read PCR values + * fu-common: Use environment variables for systemd managed directories + * Use more systemd directives for directories + * trivial: fu-util: fix debug output for devices + * Allow turning off the timestamp prefix for debugging + * Add a ->udev_device_changed plugin vfunc + * Add fu_device_rescan() and a FuDevice->rescan() vfunc + * Remove the duplicate files in meson.build + * Hash the source files when generating the daemon hash + * Split up source files in the build script - * fu-engine/fu-config: Reload metadata store when configuration - changes + * trivial: plugins: clarify stance on afuefi.efi + * trivial: plugins/: Update README + * trivial: disable gtkdoc by default + * trivial: update references of hughsie/fwupd to fwupd/fwupd + * Publish docs to fwupd.github.io using CircelCI + * Add support to integrate into the motd (Fixes: #1270) + * Simplify get-devices output to not show un-useful fields + * fu-engine/fu-config: Reload metadata store when configuration changes + * trivial: If no devices support updates, show messaging (Closes: #1295) + * trivial: uefi: set vendor name for system firwmare from DMI data + * thunderbolt: Fix logic to work properly with ICL thunderbolt controller + * Add fu_udev_device_get_device_file() helper + * trivial: Fix regression when using fu_device_incorporate() + * trivial: Fix a potential crash when using FuPlugin in the self tests + * synapticsmst: Make FuSynapticsmstConnection an actual GObject + * synapticsmst: Use the same style as other plugins + * trivial: Add some helper functions for GByteArray + * Do not use FuDevice metadata for the physical and logical IDs + * Use fu_common_string_append_kv() in subclassed device + * synapticsmst: Use G_DECLARE_FINAL_TYPE to simplify the object + * trivial: remove unnecessary CUSTOMERID_DELL define - * synapticsmst: Display the board ID in non-hex form in the error - message - * Be more accepting when trying to recover a failed database - migration + * synapticsmst: Display the board ID in non-hex form in the error message + * synapticsmst: Use a more suitable icon for the device + * trivial: Remove unused variable + * Never use memcpy() in a possibly unsafe way + * Add a ->to_string() vfunc to FuFirmware + * Use FuFirmware as a container for firmware images + * Allow filtering devices when using the command line tools + * Be more accepting when trying to recover a failed database migration + * trivial: Add translation for X-ThunderboltController + * trivial: fixup standalone installer + * solokey: Release the interface and rebind the kernel driver on close - * uefi: Actually write the new device path if different than - before + * uefi: Actually write the new device path if different than before + * Allow setting custom flags when using fwupdate + * trivial: Do not show a critical warning if no firmware is specified + * trivial: Fix overzealous search-replace action in user string + * Verify we don't break the ABI - * Relax the certificate time checks in the self tests for the - legacy certificate + * Relax the certificate time checks in the self tests for the legacy certificate + * trivial: add cache directory into systemd unit rw paths - * Allow specifying GUID to check any version - exists -- Add fwupd-bsc1130056-change-shim-path.patch to set the default - shim binary for openSUSE/SLE (bsc#1130056) + * trivial: Update icons for Thunderbolt and MST devices + * Add support for the SoloKey Secure + * trivial: Allow a device to *clear* a firmware version + * trivial: debian: For signed package fill out Built-Using (Closes: #932757) + * Allow specifying GUID to check any version exists + * trivial: post release version bump + * Release fwupd 1.2.10 + * Disable the flashrom plugin by default + * trivial: thunderbolt: catch failure setting up device + * dell-esrt: Improve the experience for the plugin (Closes: #1245) + * fu-util: When unlocking prompt for reboot if applicable + * remove those PIDs with Bluetooth interface, Wacom updater doesn't support updating from Bluetooth interface + * flashrom: Only show DEBUG and DEBUG2 output if using --plugin-verbose=flashrom + * flashrom: Only call flashrom_programmer_init() on whitelisted boards + * flashrom: Fix no version format set + * fu-util: Show devices with an UpdateError in get-devices output + * trivial: uefi: use UEFI-dummy for device ID instead of just uefi + * trivial: fix error handling for non UEFI case (#1220) + * Add a specific error code for the low battery case + * Fix Fedora docker build missing directory: dist + * uefi: Determine whether running in legacy mode or not (Fixes: #1220) + * trivial: ci: debian: Only turn on flashrom when running CI + * trivial: Fix typos in error messages + * Allow client code to construct objects from GVariant blobs + * Export functionality to build an array of objects + * flashrom: Use libflashrom + * trivial: Fix the version script to pick up boxed types + * trivial: Correctly order the map entries according to vercmp rules + * trivial: Fix pylint issue in the version script + * Add meson target to fix translations + * Add support for 8bitdo USB Retro Receiver + * Use the newer features of GRWLock rather than reinventing it + * Revert "Allow SuperIO updates to be done live" + * uefi: Try to find a duplicate using the loadopt name + * uefi: Provide a quirk to disable the use of the UX capsule + * trivial: uefi: use the path for efibootmgr that was detected + * synaptics-prometheus: Fix installing CONFIG firmware updates + * synaptics-prometheus: Set the install duration from a quirk + * synaptics-prometheus: Don't emit critial warning when updating config firmware + * synaptics-prometheus: Fix missing field in the IOTA reply struct + * Create SECURITY.md + * redfish: Never set NULL device name + * modem-manager: Never set NULL device name + * ata: Never set NULL device name + * trivial: Add some parameter guards to FuDevice + * trivial: snap: make polkit directories if they don't exist (Fixes: #1205) + * trivial: fu-main: clarify missing PK file error + * synapticsmst: fix GUID generation (Closes: #1207) + * Lite Mk II flag for use-shim-unique + * trivial: circleci: try to fix automatic snap deployment + * Allow SuperIO updates to be done live + * fu-util-common: Support empty proxy strings (Fixes: #1199) + * trivial: uefi: clarify error message + * trivial: Fix non-systemd build + * trivial: Sync example spec file with downstream + * trivial: post release version bump +- Drop fwupd-bsc1143905-hash-the-source-files.patch: Applied upstream. +- Add pkgconfig(tss2-esys) BuildRequires: New dependency. +- Add gtk-doc BuildRequires and pass gtkdoc=true to meson, build + api docs even when using source service. + + +- Update to version 1.2.10: + * Disable the flashrom plugin by default + * dell-esrt: Improve the experience for the plugin (Closes: #1245) + * fu-util: When unlocking prompt for reboot if applicable + * remove those PIDs with Bluetooth interface, Wacom updater + doesn't support updating from Bluetooth interface + * flashrom: Only show DEBUG and DEBUG2 output if using + - -plugin-verbose=flashrom + * flashrom: Only call flashrom_programmer_init() on whitelisted + boards + * flashrom: Fix no version format set + * fu-util: Show devices with an UpdateError in get-devices + output + * Add a specific error code for the low battery case + * Fix Fedora docker build missing directory: dist + * uefi: Determine whether running in legacy mode or not + (Fixes: #1220) + * Allow client code to construct objects from GVariant blobs + * Export functionality to build an array of objects + * flashrom: Use libflashrom + * Add meson target to fix translations + * Add support for 8bitdo USB Retro Receiver + * Use the newer features of GRWLock rather than reinventing it + * uefi: Try to find a duplicate using the loadopt name + * uefi: Provide a quirk to disable the use of the UX capsule + * synaptics-prometheus: Fix installing CONFIG firmware updates + * synaptics-prometheus: Set the install duration from a quirk + * synaptics-prometheus: Don't emit critial warning when updating + config firmware + * synaptics-prometheus: Fix missing field in the IOTA reply struct + * Create SECURITY.md + * redfish: Never set NULL device name + * modem-manager: Never set NULL device name + * ata: Never set NULL device name + * synapticsmst: fix GUID generation (Closes: #1207) + * Lite Mk II flag for use-shim-unique + * fu-util-common: Support empty proxy strings (Fixes: #1199) +- Add python3-setuptools to BuildRequires for + generate-version-script.py + +- Update to version 1.2.9: + * Release fwupd 1.2.9 + * trivial: Add two new translatable strings for new category types + * Check if the system is offline during install, rather than at startup + * Prompt the user to shutdown if requried when installing by ID + * Use the correct file extension for the offline updates cache + * trivial: Allow using --force to use the wrong daemon version + * trivial: Display the correct expected command + * standalone-installer: Be smarter about existing installed fwupd + * Add a plugin to update Synaptics Prometheus fingerprint readers + * trivial: standalone-installer: rename uninstall argument to cleanup + * fu-util: Check the daemon version is at least the client version + * fu-util: Check that daemon is started by expected unit + * fu-util-common: when stopping a daemon, check for snap too + * Allow using --force to trigger a duplicate offline update + * trivial: Allow using FuUsbDevice without a GUsbDevice + * trivial: Copy the icons if unset for the device child + * trivial: Copy the physical ID if unset for the device child + * trivial: Ensure the parent ID is up to date if the device ID changes + * trivial: Fix typo when setting the parent ID + * trivial: Disable the flatpak CI build + * Allow handling FORCE for devices that subclass FuDevice + * uefi: Fix a libasan failure when reading a UEFI variable + * trivial: Fix a memory leak found using libasan + * trivial: Fix an libasan failure in the dell plugin + * trivial: Fix some dead code spotted by coverity + * trivial: Fix a typo spotted by coverity + * trivial: Fix a missing config.h include in a new source file + * Dynamically read path to use for /system-update + * Display the remote warning on the console in an easy-to-read way + * ata: Set version format to plain for devices obtained from udev + * trivial: Only apply SmbiosManufacturer to release version for internal + * trivial: Fix two bugs in the hardware self tests script + * Never guess the version format from the version string + * Only force a semver when the device opts-in + * Export the version-format to clients + * Add missing gtk-doc documentation + * dfu: Add some trivial, but useful, debugging for AVR DFU devices + * dfu: Correctly identify DFU firmware that starts at offset zero + * dfu: Don't keep showing trivial debug output + * dfu: Reset the forced version during attach and detach + * ata/nvme: For devices running Dell firmware, set `VersionFormat` (Fixes: #1169) + * fu-engine: Check if VersionFormat is ambiguous when adding devices + * trivial: Fix fwupdate --apply + * Only use class-based instance IDs for quirk matching + * trivial: dell-dock: set minimum board to 6 + * trivial: post release version bump + +- Update to version 1.2.8: + * Don't upload reports when the user has configured their system in a broken way + * Allow setting the daemon verbose domains at runtime + * Allow fwupdmgr to modify the daemon config + * Do not compare version formats when the release format is unknown + * Do not fall back integers to a plain version format + * Use the device version format when converting the release version + * Set the VersionFormat using the metadata or the UEFI quirk +- Changes from version 1.2.7: + * l10n: Create Lithuanian translation file + * l10n: Update LINGUAS + * Updated: Add support for 8BitDo M30. + * modem-manager: increase the timeout to wait for modem after uninhibited + * modem-manager: implement qmi pdc active config selection as attach() + * fu-engine: When removing activation flag match the correct version + * Require --force to install a release with a different version format + * Match the old or new version number when setting NEEDS_REBOOT + * Make an error message clearer when there are no updates available + * Add support for the not-child extension from Logitech + * thunderbolt: Set require-ac for Thunderbolt devices + (Fixes: gh#hughsie/fwupd#1142) + * Fix some typos spotted using codespell + * Add a component categories to express the firmware type + * fu-tool: Port get-history command to fwupdtool + * Recreate the history database if migration failed + * Move the core built-in 'fwupd' remote over to the dell-esrt plugin + * snap: Add a custom systemd unit to call activation on shutdown + (Fixes: gh#hughsie/fwupd#1125) + * ata: Flush cache before standby and activate + * synapticsmst: blacklist plugin when using amdgpu + (Fixes: gh#hughsie/fwupd#1121) + * uefi: add a new option to specify the os name + * Return the newest device when using fu_history_get_device_by_id() + * uefi: More carefully check the output from tpm2_pcrlist + * uefi: Don't overwrite CustomFlags if set from a quirk + * Shut down the daemon if the on-disk binary is replaced + * ata: Correct activation functionality + * Fix version comparisons after reboot for some formats + * fu-tool: save history from stuff installed with `fwupdtool` +- Changes from version 1.2.6: + * ata: send ATA standby immediate when activating firmware + * offline: Be more graceful when dealing with Plymouth failures + * Save the new version in the history database for offline updates + * Show the DeviceID when showing the updates list + * Allow forcing an offline-only update on a live system using --force + * Do not schedule an update on battery power if it requires AC power + * superio: Add InstallDuration default value + * superio: Add support for writing new e-flash contents + * superio: Fix reading the attestation checksum + * superio: Add support for reading the device checksum + * superio: Use the chipset ID in the device name + * superio: Move the device flush before getting the register map + * superio: Move all the IT89xx code to a subclassed device object + * superio: Move all the IT85xx code to a subclassed device object + * superio: Split and export fu_superio_device_ec_writeX() + * superio: Remove the port from fu_superio_device_ec_read() + * superio: Move the register read/write into the FuSuperioDevice object + * superio: Check the IOBAD0 is usable during setup + * superio: Use fu_device_set_firmware_size() + * superio: Move some constants out to the common header + * superio: Use GObject properties in FuSuperioDevice + * superio: Convert FuSuperioDevice to be derivable + * Update Plymouth when updating pending firmware + * Ask to reboot after scheduling an offline firmware update + * Do not fail when scheduling more than one update to be run offline + * Allow running offline updates when in system-update.target + * Fix the location of fwupdoffline in the service file + * Add optional vfuncs to allow detaching and attaching verify() + * superio: Add list of SPI commands for future usage + * Add a verify-update command to fwupdtool + * uefi: Actually upload the UPDATE_INFO entry for the UX capsule + * superio: Get the chip size from the EC rather than hardcoding + * uefi: Check the error code of QueryCapsuleCapabilities() correctly + * Update the UEFI UX Capsule Header checksum when needed. + * uefi: Copy the shimx64.efi binary for known broken firmware + * Correctly get the check the new version for devices that replug + * Add a simple script to add a capsule header + * Ensure the PKCS-7 client certificate exists at startup + * fix makecab directive options + * fwpup.service: use display-manager.service instead of gdm.service + * Allow signing the fwupd report with the client certificate + * Add a D-Bus method to generate a signature using the self-signed client certificate + * Allow signing and verifying data using a PKCS-7 self-signed client certificate + * Fix a critical warning when loading a PKCS-7 certificate with no DN + * Include all device checksums in the LVFS report + * modem-manager: Fix a trivial build warning + * superio: Fix a trivial build warning + * Move out the offline update functionality to a new binary + * Do not reboot when failing to start fwupd during offline updates + * Do not write the schema version to the db when loading + * Do not recreate XbSilo caches when running on a readonly filesystem + * Add the fwupdagent binary for use in shell scripts + * Allow restricting firmware updates for enterprise use + * standalone-installer: new --allow-older and --allow-reinstall options + * Show the upgrade and downgrade flags when getting releases for a device + * Rename FwupdRelease:trust-flags to FwupdRelease:flags + * fu-tool: Save device state to @LOCALSTATEDIR@/lib/fwupd/state.json on actions + * modem-manager: implement support for qmi-pdc + * Add a plugin to support ModemManager hardware + * fu-tool: Don't let failing to find dbus prevent engine from starting + * ata: Support delayed activation + * dell-dock: Use activation when calling fwupdtool activate + * Add a support for delayed activation + * uefi: Fix the self tests when running on Fedora SilverBlue + * Do not fail to start the daemon if tpm2_pcrlist hangs + * po/make-images.sh: quote LOCALEDIR and PYTHON3 + * meson: print stderr of python3 command instead of stdout + * Revert "contrib/debian: Switch to debian unstable" + * Add elogind support + - Changes from version 1.2.5: + * uefi: fix segfault in fwup_set_update_statuses + * Show in Flathub correctly + * debian: explicitly depend on shared-mime-info + * superio: Implement detach() and attach() + * superio: Correct the names of some constants and improve debugging support + * dell-dock: Filter the last supported payloads of certain board 4 SKUs + * circleci: Manage the lifecycle of the snap + * Add support to run snap build in CircleCI + * wacom-usb: Use the correct buffer format for the touch module + * wacom-usb: Set the install duration for each device type + * wacom-usb: Return with an error if there were too many retries + * wacom-usb: Make updating less verbose + * Convert all child instance IDs when converting the parent + * uefi: Allow devices to create more complete fake UEFI devices + * unifying: Fix regression when recovering from failed flash + * Ensure libxmlb dir exists for LGTM.com + * Add C build configuration for LGTM.com + * Use G_BEGIN_DECLS correctly for internal headers + * standalone-installer: Fix issue found by LGTM + * Use '#pragma once' to avoid a lot of boilerplate + * Force LGTM to see Python 3 + * fwupd: Hide firmware-packager behind meson option` + * fu-common-cab: Correct handling of CAB files w/ nested directories and older libgcab + * Fix a regression in using the InstanceIDs for quirk matching + * thunderbolt: Convert the instance IDs as we never open the device + * udev: Manally call fu_device_setup() to convert the instance IDs + * fu-tool: Correct a crash caused by calling fwupdtool update + * fu-tool: Don't fail if dbus is unavailable + * contrib/debian: Switch to debian unstable + * wacom-usb: Record the block number when failing + * wacom-usb: The touch address is big endian + * wacom-usb: Accept a non-binary IHEX file for the touch update + * wacom-usb: Only poll when the device status is 'busy' + * wacom-usb: Only reboot the device when all composite devices have been updated + * wacom-usb: Fix flashing failure with latest Intuos Pro tablet + * dfu: Fill holes when reading SREC files + * Add fwupd_guid_from_string() to drop dep on uuid + * wacom-raw: Check the InstanceID rather than GUID + * Defer the InstanceID->GUID hashing until after setup + * ata: Check for USB enclosures as well + * Do not use efivar just to print a mixed endian GUID + * Add fu_device_add_instance_id() and prefer explicit conversion + * Report the DeviceInstanceIDs to `fwupdmgr get-updates` + * Export some of the GUID functionality + * Allow a plugin to set _ANOTHER_WRITE_REQUIRED to run more than one plugin + * nvme: Add an extra check for Dell plugins to avoid false positives + * ata: Add support for detecting Dell GUIDs + * Fix the self tests when using glib2 >=2.59.0 + * Add support to call composite prepare and cleanup using fwupdtool + * uefi: Disable -Wno-address-of-packed-member + * uefi: Don't unconditionally enable Werror for the EFI binary + * Disable -Wno-address-of-packed-member +- Changes from version 1.2.4: + * Remove the autogenerated headers in the gettext files + * ata: Default to the non-activation 0xE subcommand + * fastboot: Use a much longer timeout as the removal delay + * fu-progressbar: be more quiet when running non-interactive + * fu-tool: Show UpdateMessage if applicable for install command + * dfu: Simplify the SREC parser to avoid a crash with an invalid file + * wacom-raw: Use the correct error codes when the panel is not supported + * wacom-usb: Add some more information to the README + * fu-keyring-utils: Don't fail missing PKI directory when compiled with GPG/PKCS7 + * dell: Check that the flash interface command is available + * wacom-usb: Fix the plugin name to allow devices to be updated + * fastboot: flash the partition after downloading the file + * uefi: Add a quirk to use the legacy bootmgr description + * ata: Mark all devices as needing a reboot + * ata: Add a new plugin to upgrade firmware on ATA/ATAPI hardware + * udev-device: Add a utility function for debugging + * udev-device: Set the firmware revision automatically + * udev-device: Set the serial number automatically + * udev-device: Fall back to non-database model and vendor values + * udev-device: Fix critical warning if the device has no parent + * dell-dock: Add support for a passive flow + * Add support for an `UpdateMessage` and display it in tools + * fu-tool: Port the `get-updates` command over + * When using `directory` remote type automatically generate metadata + * libfwupd: Add support for new remote type "directory" + * Ensure cabinet archives always have a container checksum + * Add support for a per-release source and details URL + * When generating a CAB Silo use the prefix "components" + * uefi: Add a trivial debugging statement to debug a UX capsule failure + * uefi: Use fwup_new0() to allocate the updates table array + * nitrokey: Correct Nitrokey Storage invalid firmware version read + * dell-dock: Add support for flashing Thunderbolt over I2C + * wacom-raw: Add a plugin to update Wacom embedded EMR and AES panels + * fu-util/fu-tool: sync up reboot and shutdown behavior + * dfu: Ignore the SUB ASCII value + * dfu: Fix the parser to support extended segment addresses + * dfu: Support ihex files with leading comments + don't show an error + * uefi: Correct a boot order creation bug (Fixes: gh#hughsie/fwupd#956) + * uefi: Remove all variable length arrays + * uefi: Fix a logic bug in fwup_search_file() + * uefi: Use _cleanup_free in one more place + * uefi: Do not pass required attrs to fwup_delete_variable() + * uefi: Delete the old Linux-Firmware-Updater boot entry + * uefi: Use the GNU-EFI BOOL type + * Check if plugin changed after the device attaches or detaches + * uefi: Refactor and simplify the EFI loader + * Show a console warning if loading an out-of-tree plugin + * UEFI: Do the UX checksum calculation in fwupd + * wacom-usb: Add two more Intuos tablets + * nvme: Add the needs-shutdown quirk to Phison NVMe drives + * Add _NEEDS_SHUTDOWN flag for devices + * Use GCC __cleanup__ features in the EFI loader + * nvme: Add flag to support manually aligning the firmware to the FWUG value + * nvme: Support FGUID to get the SKU GUID + * nvme: Support FWUG to get the write block size + * nvme: Add trivial comment to clarify address bitshifting + * uefi: Do not check the BGRT status before uploading a UX capsule + * dfu: Fix flashing various Jabra devices + * upower: Add support for checking battery percentage + * nvme: Check the return code of the admin passthru ioctl + * fu-tool: Add support for an 'update' command to fwupdtool + * dell-dock: Set minimum board to board 4 + * dell-dock: Workaround a manufacturing bug for board level 4 + * dell-dock: Wait longer for re-enumeration on TBT SKU + * superio: Support IT89xx devices + * fu-main: remove incompatible locale error message + * Add a new plugin checklist (Fixes: gh#hughsie/fwupd#899) +- Dropped obsolete patch: fwupd-bsc1130056-change-esp-os-name.patch + (upstream PR: gh#hughsie/fwupd#1119 +- Fixed fwupd-bsc1130056-change-shim-path.patch so that it works + with the new files +- Cleaned up changelog + +- Stop shipping polkit rules, as we have the distro specific setup + in polkit-default-privs (boo#1125428). + +- Add fwupd-bsc1130056-change-esp-os-name.patch to change the + OS directory in ESP (bsc#1130056) +- Add fwupd-bsc1130056-change-shim-path.patch to set the default + shim binary for openSUSE/SLE (bsc#1130056) +- Link fwupd*.efi.signed to fwupd*.efi as requested by fwupd + (bsc#1129466) + +- fwupd.spec: fix shell syntax error in %postun section (boo#1120363). + +- Update to version 1.2.3: + * Correctly migrate the history database +- Changes from version 1.2.2: + * Log an error if started with an incompatible locale + * Fix building with -Wl,-z,defs + * ebitdo: Fix the reported version number if the daemon locale is + not C.UTF-8 + * Add Dell TB18DC to the known devices list + * Allow replacing the last byte in the image when using 'dfu-tool + replace-data' + * Check the device checksum as well as the content checksum + during verify + * Submit the device firmware checksum and update protocol in the + submitted report + * Include the device checksum and update protocol in the + historydb + * uefi: Add the PCR0 value as the device checksum for system + firmware + * Add new API to get the release protocol from the metadata + * Allow plugins to define support for a 'well-known' protocol + * uefi: When adding headers set the header size to 4k + * uefi: Append the header on capsules without headers from Linux + * flashrom: Ensure the quirks database is set on the new object + * uefi: Do not add devices with invalid GUIDs + * Do not allow a GUID of zero + * Add shared functionality for reading and writing with + O_NONBLOCK + * Only run attach and detach if the device is in the wrong mode + * Sanitize the version if the version format has been specified + * wacom-usb: Remove the DTH generation hardware as it will not + work with fwupd + * thunderbolt: Remove a superfluous boundary condition when + verifying update + * Add a plugin to update hardware that supports fastboot + * Fix a regression when doing GetReleases on unsupported hardware + * dfu: Require a specific USB class and subclass for DFU mode + * Correctly parse format the version numbers correctly using old + metadata + * amt: Fix a crash if AMT returns an empty response + * Check plugins set error on failure + * contrib: Add a simple python3 client + * installed-tests: Adjust to actually use a remote for installed + tests + * Add more standard USB identifier GUIDs + * wacomhid: Rename to wacom-usb + * Provide a way for plugins to decompress a custom archive to ram +- Changes from version 1.2.1: + * Remove DaemonVersionFormat=quad + * Shut down the daemon after 2h of inactivity + * Create a silo index to speed up GUID queries + * Fix flashing the 8bitdo SF30 + * Speed up fwupd startup by loading less thunderbolt firmware + * Query the XbSilo when calling fu_plugin_check_supported() + * Guess the version format when it is not provided + * Fix a use-after-free when using valgrind and --immediate-exit + * Add per-release install duration values + * Fix showing the custom remote agreements + * Be more explicit setting the update state + * Include the os-release information in the release metadata +- Changes from version 1.2.0: + * ebitdo: remove SF30/SN30 pro device ids + * dell-dock: Drop delayed MST callback routine + * synapticsmst: Adjust EVB board handling + * synapticsmst: Remove the content checking of firmware + * synapticsmst: Access Board ID through memory instead In + firmware images HDCP 2.2 will be enabled by default,so access + to flash region will fail.` + * contrib: Adjust flatpak build for moving to flathub + * dell-dock: Prefer to flash VMM5331 via I2C instead of DP aux + * Use HTTPS_PROXY if set + * firmware-packager: Make it clearer to use + * Sort the firmware sack by component priority + * flatpak: Update gnu-efi to latest version + * amt: Set the full device version including the BuildNum + * fwupdmgr/fwupdtool: Move monitor command to fwupdtool + * fwupdmgr/fwupdtool: Move firmware builder from fwupdmgr to + fwupdtool + * Add version format quirks for several Lenovo machines + * uefi: Set the quirks on created devices + * dell_dock: Use correct offset for finding version of MST + * dell-dock: Add missing unlock call for MST via dell_dock plugin + * Support the Intel ME version format + * Port from libappstream-glib to libxmlb + * Bump requirement to meson 0.46.0 + * fu-main: Catch SIGTERM while update is in progress + * fu-tool: Stop any running daemon over dbus before loading + engine + * meson: Bump dependency to 0.44 and adjust sysconfdir handling + * dell-dock: If marketing name is invalid don't fail + initialization + * Readme Updated: Added KDE Discover as one more graphical + front-end available for fwupd. + * dell-dock: Correct a situation that error wasn't propagating + * Don't segfault if a plugin returns FALSE from UpdateFunc with + no error set + * dell-dock: Use different debug strings for each device type + * dell-dock: Don't use the VLA feature in the new dock + * Add a plugin for an upcoming Dell USB-C dock + * contrib: Add information on how to use debugging scripts + * Allow setting the version format from a quirk entry + * Don't use AppStream-glib for string helpers + * Don't use AppStream-glib for version helpers + * Don't use AppStream-glib for the GUID helpers + * fu-device: Ensure that parent ID is created before creating + quirked children + * Update all sub-devices for a composite update + * Stop showing the current release during updates in fwupdmgr + * uefi: Move the TPM unlocking functionality from the Dell to + UEFI plugin + * Run the Dell plugin initialization after the UEFI plugin + * thunderbolt-power: Fix possible linker problem + * Allow firmware files to depend on versions from other devices + * fu-debug: Redirect all debugging output to stderr instead of + stdout + * synapticsmst: Adjust panamera ESM update routine for some + reported issues + * fu-engine: Optionally wait for replug before updating a device + * fu-device-list: Use delayed device removal when removing the + tree + * thunderbolt: Use replugging from the daemon + * Add support for devices to show an estimated flash time + * Marked some CL options for translation + * ci: Run clang static analysis for Ubuntu build rather than just + clang compiler + * nvme: Initialize the buffer before reading the contents + * contrib: Add a standalone installer creation script + * rts54hid: Add support for Realtek USB devices using vendor HID + commands + * fu-engine: Don't show devices pending a reboot in GetUpgrades + * Add FuMutex helper to make various parts of the daemon + thread-safe + * rts54hub: Add support for Realtek USB devices using vendor HUB + commands + * uefi: Check the amount of free space on the ESP + * fu-tool: Import debugging options from fu-debug like fu-main + * superio: Set the physical and logical IDs +- Add pkgconfig(xmlb) BuildRequires: New dependency. + +- Add pesign-obs-integration to BuildRequires and add fwupd*.efi to + BRP_PESIGN_FILES to get it signed +- Add LC_IMAGES and use efivar only if %{with efi_fw_update} + + Also update the version requirement of efivar +- Disable Redfish and NVME plugins if %{without efi_fw_update} + since those two plugins require efivar +- Remove fwup from BuildRequires since fwupdate is already merged + into fwupd. + +- Use gnu-efi only if %{with efi_fw_update}, always use pkgconfig(efivar) +- Fix file list + +- Amend %post and %postun to install/uninstall fwupd*.efi to the + EFI system partition + + Also add shim to Requires for fwupdx64.efi -- Update to version 1.0.9 (FATE#326702): +- fwupd is require for thunderbolt firmware update in SLE15-SP1(fate#322681) + +- Update to version 1.1.2: - - Add support for more Wacom tablets. - - Add support for the Synaptics Panamera chip. - - Add validation for Titan Ridge Thunderbolt devices. - - Use boltd force power API if available. + - Add a new device flag "ignore-validation" that will override checks + - Add a new plugin to enumerate EC firmware + - Add a new plugin to update NVMe hardware + - Add a plugin for updating using the flashrom command line tool + - Allow the device list to take care of waiting for the device replug + - Allow updating just one specific device from the command line + - Allow upgrades using a self-signed fwupd.efi binary + - Download firmware if the user specifies a URI + - Include serial number in daemon device output when trusted + - Notify all plugins of device removals through a new vfunc + - Use boltd force power API if available - - Allow flashing Unifying devices in recovery mode. - - Allow updating just one specific device from the commandline. - - Do not hold hidraw devices open forever. - - Do not use 8bitdo bootloader commands after a successful - flash. - - Don't crash when the Dell alternate device has not been set. - - Don't potentially expose user passwords for remotes. - - Fix a potential buffer overflow when applying a DFU patch. - - Fix a potential segfault in smbios data processing. - - Fix downgrading older releases to devices. - - Fix failure to detach Unifying devices when using a slow host - controller. - - Fix flashing devices that require a manual replug. - - Handle -EAGAIN from the kernel better when reading NVM. -- Drop enable_pkcs7_when_testing_only.patch: fixed upstream. + - Add an install hook for classic snap + - Allow forcing installation even if no AC power is applied + - Allow using --force to ignore version_lowest + - Always use the same HardwareIDs as Windows + - Check the device state before assuming a fake DFU runtime + - Copy over parent GUIDs from other plugin donors + - Detect location of python3 interpreter + - Do not add udev devices after a small delay + - Don't fail to run if compiled without GPG/PKCS7 + - Fix a segfault in fwupdtool caused by cleanup of USB plugins + - Implement the systemd recommendations for offline updates + - Improve performance when reading keys from the quirk database + - Remove children of devices when the parent is removed + - Rewrite synapticsmst to use modern error handling + - Rewrite the unifying plugin to use the new daemon-provided functionality + - Show a time estimate on the progressbar after an update has started +- Update to version 1.1.1: + + New Features: + - Add support for the Synaptics Panamera hardware + - Add validation for Alpine and Titan Ridge + - Improve the Redfish plugin to actually work with real hardware + + Bugfixes: + - Allow different plugins to add the same device + - Allow flashing unifying devices in recovery mode + - Allow running synapticsmst on non-Dell hardware + - Check the ESP for sanity at at startup + - Do not hold hidraw devices open forever + - Don't override _FORTIFY_SOURCE when building the EFI binary + - Don't show passwords in fwupdmgr + - Fix a potential segfault in smbios data parsing + - Fix encoding the GUID into the capsule EFI variable + - Fix various bugs when reading the thunderbolt version number + - Reboot synapticsmst devices at the end of flash cycle + - Show status messages when the daemon is initializing + - Show the correct title when updating devices + - Show the reasons that plugins are not run on the CLI + - Use localedir in po/make-images + +- Update to version 1.1.0: (FATE#326702) + + New Features: + - Add a initial Redfish support + - Add a tool to mimic the original fwupdate CLI interface + - Allow devices to assign a plugin from the quirk subsystem + - Change the quirk file structure to be more efficient + - Merge fwupdate functionality into fwupd + - Run a plugin vfunc before and after all the composite devices are updated + - Support more Wacom tablets + + Bugfixes: + - Add release information for locked devices + - Allow building with older meson + - Detect the EFI system partition location at runtime + - Do not use 8bitdo bootloader commands after a successful flash + - Enable accesing downloaded files in flatpak and snap + - Fix a potential buffer overflow when applying a DFU patch + - Fix downgrading older releases to devices + - Fix flashing devices that require a manual replug + - Fix several small memory leaks in various places + - Fix the retrieval of Redfish version + - Fix unifying failure to detach when using a slow host controller + - Set the Wacom device status when erasing and writing firmware + - Show errors in the CLI if unable to access directory + - Use the parent device name for Wacom sub-modules +- Removed enable_pkcs7_when_testing_only.patch + -- Add pkgconfig(bash-completion) BuildRequires: new dependency. gcc7 +- Amend gcc7-aarch64-moutline-atomics.patch for glibc namespace + violation with getauxval. [bsc#1167939] + +- Add gcc7-aarch64-sls-miti-1.patch, gcc7-aarch64-sls-miti-2.patch, + gcc7-aarch64-sls-miti-3.patch to backport aarch64 Straight Line + Speculation mitigation [bsc#1172798, CVE-2020-13844] +- Add gcc7-fix-retrieval-of-testnames.patch to support usage in + testcases added by the above. + +- Enable fortran for the nvptx offload compiler. +- Do not specify alternate offload compiler location at + configure time. +- Update README.First-for.SuSE.packagers + +- Add gcc7-pr88522.patch to avoid assembler errors with AVX512 + gather and scatter instructions when using -masm=intel. +- Amend gcc7-remove-Wexpansion-to-defined-from-Wextra.patch to + reflect changes in option handling in the testsuite. +- Add gcc7-testsuite-fixes.patch to fix PR98001 and PR98002 which + are broken testcases showing with malloc debugging enabled. + +- Add gcc7-aarch64-moutline-atomics.patch to backport the aarch64 + - moutline-atomics feature and accumulated fixes but not its + default enabling. [jsc#SLE-12209, bsc#1167939] +- Order gcc7-pr92692.patch after gcc7-aarch64-moutline-atomics.patch + and refresh. + +- Revert gcc7-pr97774.patch as it causes gdb to crash. + +- Fix 32bit libgnat.so link. [bsc#1178675] +- Quote %{cross_arch} consistently when comparing expansion + against string in RPM %if condition. + +- Add gcc7-pr97535.patch to fix memcpy miscompilation on aarch64. + [bsc#1178624, bsc#1178577] + +- Add gcc7-pr97774.patch to fix debug line info for try/catch. + [bsc#1178614] + +- Remove -mbranch-protection=standard (aarch64 flag) when gcc7 is + used to build gcc7 (ie when ada is enabled) + +- Add gcc7-pr94148.patch to fix corruption of pass private ->aux + via DF. [gcc#94148] + +- Add gcc7-pr93888.patch to fix debug information issue with + inlined functions and passed by reference arguments. [gcc#93888] + +- Add gcc7-pr93965.patch in order to fix binutils release + date detection issue. + +- Add gcc48-bsc1161913.patch to fix register allocation issue with + exception handling code on s390x. [bsc#1161913] + +- Add gcc7-pr92692.patch: Backport PR target/92692 to fix + miscompilation of some atomic code on aarch64. [bsc#1150164] + +- Add gcc7-pr93246.patch: Backport PR middle-end/93246 + +- gcc7-pr92154.patch: Backport PR sanitizer/92154 + gdb +- Require 8GB diskspace for x86_64. + +- Backport from master [jsc#13656]: + * gdb-powerpc-remove-512-bytes-region-limit-if-2nd-dawr-is-avaliable.patch + +- Mention fedora patch fixups added: + * fixup-3-gdb-archer-vla-tests.patch +- Mention patch to be upstreamed added: + * gdb-fix-selftest-fails-with-gdb-build-with-O2-flto.patch + +- Fedora patch fixups update: + * fixup-2-gdb-rhbz1156192-recursive-dlopen-test.patch +- Fedora patch fixups added: + * fixup-gdb-test-ivy-bridge.patch +- Add xz to BuildRequires for testsuite flavour. +- Add note on mpfr-devel for SLE-11. + +- Backport from master: + * gdb-testsuite-fix-failure-in-gdb-base-step-over-no-symbols-exp.patch +- Patch to be upstreamed: + * gdb-testsuite-fix-control-flow-in-gdb-reverse-insn-reverse-exp.patch + +- Patch updated: + * gdb-testsuite-gdb-tui-new-layout-exp-partly-require-tcl86.patch + +- Patch updated: + * gdb-testsuite-gdb-tui-new-layout-exp-partly-require-tcl86.patch + +- Patch to be upstreamed: + * gdb-testsuite-gdb-base-morestack-exp-no-clang.patch + * gdb-testsuite-handle-sigill-in-gdb-reverse-insn-reverse-exp.patch + * gdb-testsuite-fix-gdb-reverse-insn-reverse-x86-c-for-m32.patch + * gdb-testsuite-gdb-tui-new-layout-exp-partly-require-tcl86.patch + * gdb-tui-enable-work-around-libncurses-segfault.patch +- Backport from master dropped: + * gdb-testsuite-fix-unbalanced-braces-in-gdb-tui-new-layout-exp.patch + +- Fedora patch fixups updated: + * fixup-2-gdb-archer-vla-tests.patch +- Fedora patch fixups added: + * fixup-2-gdb-rhbz1156192-recursive-dlopen-test.patch +- Testsuite patch: + * gdb-testsuite-disable-selftests-for-factory.patch +- Backport from master: + * gdb-symtab-read-cu-base-address-for-enqueued-cu.patch + * gdb-symtab-use-early-continue-in-find_pc_sect_compunit.patch + * gdb-fix-section-matching-in-find_pc_sect_compunit.patch + * gdb-symtab-fix-language-of-frame-without-debug-info.patch +- Patch to be upstreamed: + * gdb-symtab-set-default-dwarf-max-cache-age-1000.patch + +- BuildRequire curl for debuginfod test-case. +- Patch to be upstreamed: + * gdb-don-t-return-non-existing-path-in-debuginfod-source-query.patch + * gdb-fix-assert-in-process-event-stop-test.patch + * gdb-fix-filename-in-not-in-executable-format-error.patch + * gdb-handle-no-upper-bound-in-value-subscript.patch + * gdb-fortran-handle-dw-at-string-length-with-loclistptr.patch +- Testsuite patch: + * gdb-testsuite-fix-gdb-server-ext-run-exp-for-obs.patch +- Fedora patch fixups added: + * fixup-gdb-rhbz1156192-recursive-dlopen-test.patch +- Fedora patch fixups updated: + * fixup-gdb-btrobust.patch + * fixup-2-gdb-archer-vla-tests.patch + +- Add missing patch command for: + * gdb-fortran-fix-print-dynamic-array.patch + +- Fix patch application on SLE-11: + * gdb-testsuite-detect-gdb-prompt-after-monitor-exit.patch + +- Disable xz-devel and binutils-gold for SLE-10. +- More enabling of gdbserver for riscv64. +- Backport from master: + * gdb-testsuite-fix-unbalanced-braces-in-gdb-tui-new-layout-exp.patch + * gdb-testsuite-catch-condition-evaluation-errors-in-gdb-assert.patch + * gdb-testsuite-detect-gdb-prompt-after-monitor-exit.patch + * gdb-testsuite-fix-gdb-dlang-watch-loc-exp-on-ppc64.patch +- Patch to be upstreamed: + * gdb-fortran-fix-print-dynamic-array.patch + +- Enable gdbserver for riscv64. +- Restrict BuildRequires libdebuginfod to Factory and supporting + archs. + +- Rebase to 10.1 release (as in fedora 33 @ 6c8ccd6). + * Debuginfod support. + * Multi-target debugging support. + * Multithreaded symbol loading enabled by default. + * New command set exec-file-mismatch. + * New command tui new-layout. + * Alias command can now specify default args for an alias. +- Update libipt to v2.0.2. +- Fedora-specific patches dropped: + * gdb-6.8-bz466901-backtrace-full-prelinked.patch +- Broken/obsolete fedora patches dropped: + * gdb-bz533176-fortran-omp-step.patch + * gdb-6.5-BEA-testsuite.patch + * gdb-6.7-charsign-test.patch +- Obsoleted fedora patches dropped: + * gdb-6.3-attach-see-vdso-test.patch + * gdb-6.3-inferior-notification-20050721.patch + * gdb-6.5-gcore-buffer-limit-test.patch + * gdb-6.5-missed-trap-on-step-test.patch + * gdb-rhbz1818011-bfd-gcc10-error.patch +- Fedora patches updated: + * gdb-6.3-gstack-20050411.patch + * gdb-6.3-test-self-20050110.patch + * gdb-6.5-bz185337-resolve-tls-without-debuginfo-v2.patch + * gdb-6.5-bz218379-solib-trampoline-lookup-lock-fix.patch + * gdb-6.6-buildid-locate-core-as-arg.patch + * gdb-6.6-buildid-locate-rpm-librpm-workaround.patch + * gdb-6.6-buildid-locate-rpm-scl.patch + * gdb-6.6-buildid-locate-rpm.patch + * gdb-6.6-buildid-locate-solib-missing-ids.patch + * gdb-6.6-buildid-locate.patch + * gdb-6.7-testsuite-stable-results.patch + * gdb-6.8-quit-never-aborts.patch + * gdb-archer-pie-addons-keep-disabled.patch + * gdb-archer-pie-addons.patch + * gdb-archer-vla-tests.patch + * gdb-attach-fail-reasons-5of5.patch + * gdb-bz1219747-attach-kills.patch + * gdb-bz533176-fortran-omp-step.patch + * gdb-container-rh-pkg.patch + * gdb-fedora-libncursesw.patch + * gdb-gnat-dwarf-crash-3of3.patch + * gdb-jit-reader-multilib.patch + * gdb-linux_perf-bundle.patch + * gdb-moribund-utrace-workaround.patch + * gdb-runtest-pie-override.patch + * gdb-vla-intel-fix-print-char-array.patch + * gdb-vla-intel-fortran-strides.patch + * gdb-vla-intel-fortran-vla-strings.patch + * gdb-vla-intel-stringbt-fix.patch + * gdb-vla-intel-tests.patch +- Fedora patches added: + * gdb-config.patch +- Obsoleted patched dropped: + * gdb-testsuite-avoid-pagination-in-attach-32.exp.patch + * gdb-fix-toplevel-types-with-fdebug-types-section.patch + * gdb-fix-range-loop-index-in-find_method.patch + * gdb-fix-python3.9-related-runtime-problems.patch + * gdb-fix-unused-function-error.patch + * gdb-fix-the-thread-pool.c-compilation.patch + * gdb-aarch64-fix-erroneous-use-of-spu-architecture-bfd.patch + * gdb-fix-debug-agent-odr-bool-int.patch + * gdbserver-fix-build-with-make-3.81.patch + * gdb-threads-fix-hang-in-stop_all_threads-after-killing-inferior.patch +- Fedora patch fixups added: + * fixup-gdb-6.3-test-pie-20050107.patch + * fixup-gdb-6.5-sharedlibrary-path.patch + * fixup-gdb-6.6-buildid-locate.patch + * fixup-gdb-6.8-bz442765-threaded-exec-test.patch + * fixup-gdb-archer-vla-tests.patch + * fixup-gdb-base-gnu-ifunc-strstr-workaround-exp.patch + * fixup-gdb-btrobust.patch + * fixup-gdb-bz634108-solib_address.patch + * fixup-gdb-dts-rhel6-python-compat.patch + * fixup-gdb-gnat-dwarf-crash-3of3.patch + * fixup-gdb-vla-intel-fortran-vla-strings.patch + * fixup-gdb-vla-intel-tests.patch + * fixup-gdb-6.3-threaded-watchpoints2-20050225.patch +- Patches renamed: + * gdb-testsuite-fix-perror-in-gdb.opt-fortran-string.exp.patch + to fixup-2-gdb-archer-vla-tests.patch +- Patches updated: + * gdb-testsuite-ada-pie.patch +- Backport from master: + * gdb-testsuite-prevent-pagination-in-gdb-internalflags.patch + +- Enable CTF support also for riscv64 + +- Restore License/Group. + +- Don't BuildRequire systemtap-sdt-devel for SLE-11. + +- Add testsuite BuildRequire systemtap-sdt-devel. + +- Add BuildRequire babeltrace-devel. On Factory this adds bdeps + babeltrace-devel, libuuid-devel, babeltrace, libglib-2_0-0, and + libgmodule-2_0-0. + +- Fix internal error on aarch64 [swo#26316]. + gdb-aarch64-fix-erroneous-use-of-spu-architecture-bfd.patch + +- Change into multibuild package and add flavour gdb-testsuite. + +- Fix s390 -> s390x typo. + +- Don't BuildRequire binutils-gold for SLE-12/s390. + +- BuildRequire binutils-gold for testsuite + +- Rebase to 9.2 release. + +- Fix SLE-11 build. Gdb 9.1 requires make 3.82, but SLE-11 has + make 3.81: + * gdbserver-fix-build-with-make-3.81.patch + +- Fix patch context: + * gdb-fix-the-thread-pool.c-compilation.patch + +- Fix build error due to missing DIAGNOSTIC_IGNORE_UNUSED_FUNCTION. + * gdb-fix-the-thread-pool.c-compilation.patch + +- Drop ChangeLog part of patch: + * gdb-fix-unused-function-error.patch + +- Fix Werror=unused-function with gcc 4.8 (for Leap 42.3). + * gdb-fix-unused-function-error.patch + +- Require %{suse_version} >= 1500 for --with-system-readline. + +- Rebase to 9.1 release (as in fedora 32 @ 1735910). + * Breakpoints on nested functions and subroutines in Fortran. + * Multithreaded symbol loading, disabled by default. Enable + using 'maint set worker-threads unlimited'. + * Multi-target debugging support. + * New command pipe. + * New command set logging debugredirect [on|off]. + * New fortran commands info modules, info module functions, + info module variables. +- Fedora-specific patches dropped: + * gdb-libexec-add-index.patch + * gdb-6.3-rh-testversion-20041202.patch + * gdb-6.6-buildid-locate-misleading-warning-missing-debuginfo-rhbz981154.patch +- Obsoleted fedora patches dropped: + * gdb-6.5-bz216711-clone-is-outermost.patch + * gdb-6.6-scheduler_locking-step-is-default.patch + * gdb-6.8-bz436037-reg-no-longer-active.patch + * gdb-bz541866-rwatch-before-run.patch + * gdb-bz568248-oom-is-error.patch + * gdb-follow-child-stale-parent.patch + * gdb-readline62-ask-more-rh.patch + * gdb-rhbz1371380-gcore-elf-headers.patch + * gdb-rhbz1553086-binutils-warning-loadable-section-outside-elf.patch + * gdb-rhbz1704406-disable-style-log-output-1of3.patch + * gdb-rhbz1704406-disable-style-log-output-2of3.patch + * gdb-rhbz1704406-disable-style-log-output-3of3.patch + * gdb-rhbz1708192-parse_macro_definition-crash.patch + * gdb-rhbz1723564-gdb-crash-PYTHONMALLOC-debug.patch + * gdb-rhbz795424-bitpos-20of25.patch + * gdb-rhbz795424-bitpos-21of25.patch + * gdb-rhbz795424-bitpos-22of25.patch + * gdb-rhbz795424-bitpos-23of25.patch + * gdb-rhbz795424-bitpos-25of25-test.patch + * gdb-rhbz795424-bitpos-25of25.patch + * gdb-rhbz795424-bitpos-arrayview.patch + * gdb-rhbz795424-bitpos-lazyvalue.patch + * gdb-testsuite-readline63-sigint.patch +- Fedora patches added: + * gdb-rhbz1818011-bfd-gcc10-error.patch +- Obsoleted patched dropped: + * gdb-fix-s390-build.diff + * gdb-fix-riscv-tdep.patch + * gdb-testsuite-add-missing-initial-prompt-read-in-multidictionary.exp.patch + * gdb-testsuite-pie-no-pie.patch + * gdb-testsuite-read1-fixes.patch + * gdb-testsuite-i386-pkru-exp.patch + * gdb-s390-handle-arch13.diff + * gdb-fix-heap-use-after-free-in-typename-concat.patch + * gdb-dwarf-reader-reject-sections-with-invalid-sizes.patch + * gdb-0001-remove-alloca-0-calls.patch + * gdb-arch13-1.diff + * gdb-arch13-2.diff + * gdb-arch13-3.diff + * bfd-change-num_group-to-unsigned-int.patch + * gdb-fix-incorrect-use-of-is-operator-for-comparison-in-python-lib-gdb-command-prompt.py.patch + * gdb-symtab-prefer-var-def-over-decl.patch + * gdb-only-force-interp_console-ui_out-for-breakpoint-commands-in-mi-mode.patch + * gdb-testsuite-8.3-kfail-xfail-unsupported.patch +- Backport from master: + * gdb-fix-debug-agent-odr-bool-int.patch + * gdb-fix-python3.9-related-runtime-problems.patch + gdk-pixbuf +- Add gdk-pixbuf-bsc1180393-CVE-2020-29385.patch: + gif: Fix LZW decoder accepting invalid LZW code. (bsc#1180393) + +- Add gdk-pixbuf-boo1174307-io-gif-overflow.patch: Avoid overflows + by checking the memset length argument (boo#1174307). +- Raise dependency glib-2.0 version. + gdl +- No longer recommend -lang: supplements are in use + +- Update to version 3.34.0: + + Updated translations. + +- Update to version 3.28.0: + + bgo#791913: Convert Latin-1-encoded characters to UTF-8. + + Updated translations. + -- Update to version 3.14.0: - + No changes since 3.13.92, stable release. - -- Update to version 3.13.92: - + Updated translations. - gdm +- Update gdm-add-runtime-option-to-disable-starting-X-server-as-u.patch: + Fix switching user issue(bsc#1179968, bsc#1174533). + gimp +- Add gimp-fix-issue-3630-postscript-plugin-crashes.patch: + gsapi_new_instance() now expects a pointer to a NULL-initialized + pointer. Initialize "void *instance" with NULL. Found by massimo + (bsc#1180770, glgo#GNOME/GIMP#3630). + glib2 +- Add patches to support for slim format of timezone (bsc#1178346): + + glib2-add-support-for-slim-timezone-format.patch: basic support + for slim format (glgo#GNOME/glib!1533). + + glib2-fix-6-days-until-the-end-of-the-month.patch: fix DST + incorrect end day when using slim format + (glgo#GNOME/glib!1683). + +- Update to version 2.62.6: + + This is expected to be the final release in the 2.62.x stable + series; maintenance effort will shift to the newer 2.64.x + stable series now. + + Fix SOCKS5 username/password authentication. + + Exception handling fixes on Windows. + + Bugs fixed: glgo#GNOME/GLib#1986, glgo#GNOME/GLib#1988, + glgo#GNOME/GLib#2049, glgo#GNOME/GLib!1378, + glgo#GNOME/GLib!1380, glgo#GNOME/GLib!1393, + glgo#GNOME/GLib!1394, glgo#GNOME/GLib!1411. + + Updated translations. + glib2-branding:openSUSE +- Only recommend wallpaper-branding-%{branding_name} when + gnome-shell is present. Allows gio to be installed on text-only + systems without pulling wallpapers in (boo#1162600). + +- Only recommend wallpaper-branding-%{branding_name} when + gnome-shell is present. Allows gio to be installed on text-only + systems without pulling wallpapers in (boo#1162600). + glibc +- gconv-assertion-iso-2022-jp.patch: gconv: Fix assertion failure in + ISO-2022-JP-3 module (CVE-2021-3326, bsc#1181505, BZ #27256) + +- sysvipc-sem-stat-any.patch: sysvipc: Fix SEM_STAT_ANY kernel argument + pass (bsc#1180557, BZ #26637) + +- aarch64-getauxval.patch: aarch64: Accept PLT calls to __getauxval within + libc.so (bsc#1167939) +- iconv-redundant-shift.patch: iconv: Accept redundant shift sequences in + IBM1364 (CVE-2020-27618, bsc#1178386, BZ #26224) +- iconv-ucs4-loop-bounds.patch: iconv: Fix incorrect UCS4 inner loop + bounds (CVE-2020-29562, bsc#1179694, BZ #26923) +- printf-long-double-non-normal.patch: x86: Harden printf against + non-normal long double values (CVE-2020-29573, bsc#1179721, BZ #26649) +- get-nprocs-cpu-online-parsing.patch: Fix parsing of + /sys/devices/system/cpu/online (bsc#1180038, BZ #25859) + gnome-packagekit +- Add gnome-packagekit-bring-back-logout-support.patch: Add back + logout support(glgo#GNOME/gnome-packagekit!2, bsc#1180247). + gnome-shell +- Add gnome-shell-jsc#SLE-16051-Input-method-recommendation.patch: + launch recommended input engines when Gnome-shell init in CJK + regions (jsc#SLE-16051, glgo#GNOME/gnome-shell!1563). + gnome-shell-extension-desktop-icons +- Add desktop-icons-fix-version-match.patch: Match shell version + under strict version checking (bsc#1176911). + gnome-software +- Added gnome-packagekit as recommended dependency: + gnome-software-launch-gpk-update-viewer-for-updates.patch needs + gnome-packagekit to work (SLE only) (bsc#1178768). + +- Update gnome-software-add-missing-headers.patch: add more devel + headers in lib/meson.build (glgo#GNOME/gnome-software!446). + +- Add gnome-software-add-missing-headers.patch: add missing devel + headers referenced by gnome-software.h (bsc#1174849). + +- Add gnome-software-failed-offline-update-notification.patch: + plugin-loader: handle offline update errors properly(bsc#1161095, + glgo#GNOME/gnome-software!471). + gnome-tweaks +- Updated gnome-tweaks-fix-titlebar-buttons-left.patch: Upstream + has new commit to fix titlebar layout when buttons are placed + left, so update the patch. (glgo#GNOME/gnome-tweaks!63) + hdf5:serial +- Update to version 1.10.7 + * Add metadata cache optimization to reduce skip list usage. + * Add BEST_EFFORT value to HDF5_USE_FILE_LOCKING environment variable. + * Add H5Pset/get_file_locking() API calls. + * Add Mirror VFD. + Use TCP/IP sockets to perform write-only (W/O) file I/O on a remote + machine. Must be used in conjunction with the Splitter VFD. + * Add Splitter VFD. + Maintain separate R/W and W/O channels for "concurrent" file writes + to two files using a single HDF5 file handle. + * Fixed an assertion failure in the parallel library when collectively + filling chunks. + * Fortran/C++ libs: Add wrappers for H5Pset/get_file_locking() API calls. + h5pget_file_locking_f() + h5pset_file_locking_f() + * Added new Fortran parameters: + H5F_LIBVER_ERROR_F + H5F_LIBVER_NBOUNDS_F + H5F_LIBVER_V18_F + H5F_LIBVER_V110_F + * Add new Fortran API: h5pget_libver_bounds_f. + * h5repack added options to control how external links are handled. + * The tools library was updated by standardizing the error stack process. + * The H5DSis_scale function was updated to return "not a dimension scale" (0) + instead of failing (-1), when CLASS or DIMENSION_SCALE attributes are + not written according to Dimension Scales Specification. + * Bug Fixes: + + Fix bug and simplify collective metadata write operation when some ranks + have no entries to contribute. This fixes parallel regression test + failures with IBM SpectrumScale MPI on the Summit system at ORNL. + + Fixed use-of-uninitialized-value error. + Appropriate initialization of local structs was added to remove the + use-of-uninitialized-value errors reported by MemorySanitizer. + + Creation of dataset with optional filter. + A fix is applied to allow the creation of a dataset in such + situation, as specified in the user documentation. + + Explicitly declared dlopen to use RTLD_LOCAL. + + H5Sset_extent_none() sets the dataspace class to H5S_NO_CLASS which + causes asserts/errors when passed to other dataspace API calls. + + Fixed the segmentation fault when reading attributes with multiple threads + The problem was fixed by setting the file pointer to the current opened + file pointer when the attribute was accessed. Similar patch up was done + before when reading dataset with variable length string datatype. + + Don't allocate an empty (0-dimensioned) chunked dataset's chunk + index, until the dataset's dimensions are increased. + + Fortan: Corrected INTERFACE INTENT(IN) to INTENT(OUT) for buf_size in + h5fget_file_image_f. + + h5diff fixed a command line parsing error. + + h5diff added a command line option to ignore attributes. + + h5diff added another level to the verbose argument to print filenames. + + h5repack was fixed to repack the reference attributes properly. + * For details check: + https://support.hdfgroup.org/ftp/HDF5/releases/hdf5-1.10/hdf5-1.10.7/src/hdf5-1.10.7-RELEASE.txt +- version 1.10.6 + * Added S3 and HDFS Virtual File Drivers (VFDs) to HDF5. + Instructions to enable them when configuring HDF5 on Linux and Mac + may be found at. + https://portal.hdfgroup.org/display/HDF5/Virtual+File+Drivers+-+S3+and+HDFS. + * Added new wrappers for H5Pset/get_create_intermediate_group() + LinkCreatPropList::setCreateIntermediateGroup() + LinkCreatPropList::getCreateIntermediateGroup() + * h5repack was fixed to repack datasets with external storage + to other types of storage. + * Bug Fixes: + + Improved performance when creating a large number of small datasets by + retrieving default property values from the API context instead of doing + skip list searches. More work is required to achieve parity with HDF5 1.8. + + Fixed user-created data access properties not existing in the property list + returned by H5Dget_access_plist. Thanks to Steven Varga for submitting a + reproducer and a patch. + + Inappropriate linking with deprecated MPI C++ libraries. + HDF5 does not define *_SKIP_MPICXX in the public headers, so applications + can inadvertently wind up linking to the deprecated MPI C++ wrappers. + MPICH_SKIP_MPICXX and OMPI_SKIP_MPICXX have both been defined in H5public.h + so this should no longer be an issue. HDF5 makes no use of the deprecated + MPI C++ wrappers. + + fcntl(2)-based file locking incorrectly passed the lock argument struct + instead of a pointer to the struct, causing errors on systems where + flock(2) is not available. + This bug affects HDF5 1.10.0 through 1.10.5. + fcntl(2)-based file locking now correctly passes the struct pointer. + + Fixed a bug caused by a bad tag value when condensing object header + messages. + + Fixed an issue when creating a file with non-default file space info + together with library high bound setting to H5F_LIBVER_V18. + This was fixed by setting and checking the proper version in the file + space info message based on the library low and high bounds when creating + and opening the HDF5 file. + + Fixed an issue where copying a version 1.8 dataset between files using + H5Ocopy fails due to an incompatible fill version. + + Fixed a bug that would cause an error or cause fill values to be + incorrectly read from a chunked dataset using the "single chunk" index if + + Fixed a bug that could cause an error or cause fill values to be + incorrectly read from a dataset that was written to using H5Dwrite_chunk + if the dataset was not closed after writing. + + Fixed memory leak in scale offset filter. + * For details check: + https://support.hdfgroup.org/ftp/HDF5/releases/hdf5-1.10/hdf5-1.10.6/src/hdf5-1.10.6-RELEASE.txt +- Security bugs fixed: + * CVE-2018-13870: heap-based buffer over-read in the function + H5O_link_decode in H5Olink.c (bsc#1101493) + * CVE-2018-13869: memcpy parameter overlap in the function + H5O_link_decode in H5Olink.c (bsc#1101495) + * CVE-2018-17438: A SIGFPE signal is raised in the function + H5D__select_io() of H5Dselect.c in the HDF HDF5 through 1.10.3 + library during an attempted parse of a crafted HDF file, + because of incorrect protection against division + (bsc#1109570) + * CVE-2018-17435: A heap-based buffer over-read in H5O_attr_decode() + in H5Oattr.c in the HDF HDF5 through 1.10.3 library allows + attackers to cause a denial of service via a crafted HDF5 file. + (bsc#1109567) +- Refresh patches + +- Add build support for gcc10 to HPC build (bsc#1174439). + +- Add missing openmpi4 flavors. +- Enable build of non-HPC flavors for all non-HPC builds. + +- add openmpi4 packages to build and disable build for leap + +- Security bugs fixed: + * CVE-2018-17233: A SIGFPE signal is raised in the function + H5D__create_chunk_file_map_hyper. (bsc#1109166) + * CVE-2018-17434: Memory leak in the H5O__chunk_deserialize() + function in H5Ocache.c (bsc#1109167) + * CVE-2018-17437: A SIGFPE signal is raised in the function + H5D__chunk_set_info_real. (bsc#1109168) +- Security bugs fixed: + * CVE-2017-17505: NULL pointer dereference in the function + H5O_pline_decode allowing for DoS via crafted file (bsc#1072087) + * CVE-2017-17506: Out of bounds read in the function + H5Opline_pline_decode (bsc#1072090) + * CVE-2017-17508: divide-by-zero vulnerability in function + H5T_set_loc (bsc#1072108) + * CVE-2017-17509: out of bounds write vulnerability in function + H5G__ent_decode_vec (bsc#1072111) + * CVE-2018-11202: NULL pointer dereference in H5S_hyper_make_spans + in H5Shyper.c allows a remote denial of service attack (bsc#1093641) + * CVE-2018-11203: division by zero in H5D__btree_decode_key in H5Dbtree.c + It could allow a remote denial of service attack (bsc#1093649) + * CVE-2018-11204: A NULL pointer dereference was discovered in + H5O__chunk_deserialize in H5Ocache.c (bsc#1093655) + * CVE-2018-11206: A out of bounds read was discovered + in H5O_fill_new_decode and H5O_fill_old_decode in H5Ofill.c + (bsc#1093657) + * CVE-2018-11207: division by zero was discovered in H5D__chunk_init + in H5Dchunk.c (bsc#1093653) hplip +- Update to 3.20.11 + * Upstream version update and bug fixes (no new printers) + * Fix crash in hp-doctor if python3-qt4 is not installed + (bsc#1180724) + Added patch: dcheck.py-fix-crash-in-Qt4-version-check.patch + +- Update to 3.20.9 (jsc#SLE-17024) + Add support for the following printers: + * HP Color LaserJet Managed MFP E57540dn + * HP Color LaserJet Managed Flow MFP E57540c + * HP Color LaserJet Enterprise MFP M578dn + * HP Color LaserJet Enterprise MFP M578f + * HP Color LaserJet Enterprise Flow MFP M578c + * HP Color LaserJet Enterprise Flow MFP M578z + * HP Color LaserJet Managed E55040dw + * HP Color LaserJet Managed E55040dn + * HP Color LaserJet Enterprise M554dn + * HP Color LaserJet Enterprise M555dn + * HP Color LaserJet Enterprise M555x +- Modified patches: + * Use-lsb_release-fallback-code-if-import-distro-fails.patch + * hp_ipp.h-add-missing-prototypes.patch + * hplip-remove-imageprocessor.diff + * hplip-udev-rules-in-usr.patch + + refresh using source service + * add_missing_includes_and_define_GNU_SOURCE.patch + + refresh, drop inexisting file and add GNU_SOURCE definition + and missing include in common/utils.c + * hplip-misc-missing-includes-and-definitions.patch + + rediff to changed context +- New build dependency on libavahi-devel + +- Fixed bugzilla link (bsc#1177527) + +- Fixes for %_libexecdir changing to /usr/libexec +- Spec file cleanup + +- hplip-3.20.6.tar.gz has been updated on HP download server, + causing the OBS download_files bot to fail. Fix it. +- postscriptdriver provides are now enabled indirectly via cups-devel + (boo#1172407) + +- Update to 3.20.6 + Add support for the following printers: + * HP Color LaserJet Managed MFP E78223a + * HP Color LaserJet Managed MFP E78223dv + * HP Color LaserJet Managed MFP E78223dn + * HP Color LaserJet Mngd MFP E78223dn Plus + * HP Color LaserJet Mngd MFP E78223dn CN + * HP Color LaserJet Managed MFP E78228dn + * HP Color LaserJet Managed MFP E78228dn Plus + * HP Color LaserJet Managed MFP E78228dn CN + * HP Color LaserJet Managed Flow MFP E78330z Plus + * HP Color LaserJet Managed Flow MFP E78330z CN + * HP Color LaserJet Managed MFP E78330dn + * HP Color LaserJet Mngd MFP E78330dn Plus + * HP Color LaserJet Mngd MFP E78330dn CN + * HP Color LaserJet Managed MFP E78330z + * HP Color LaserJet Managed Flow MFP E78325z Plus + * HP Color LaserJet Managed Flow MFP E78325dn CN + * HP Color LaserJet Managed Flow MFP E78325z CN + * HP Color LaserJet Managed MFP E78325dn + * HP Color LaserJet Managed MFP E78325z + * HP Color LaserJet Managed Flow MFP E78323z + * HP Color LaserJet Mgd Flw MFPE78323Z Plus + * HP Color LaserJet Mgd Flw MFPE78323z CN + * HP Color LaserJet Managed MFP E78323dn + * HP Color LaserJet Mngd MFP E78323dn Plus + * HP Color LaserJet Mngd MFP E78323dn CN + * HP DeskJet 1200 + * HP DeskJet Ink Advantage 1200 + * HP DeskJet 2300 All-in-One + * HP DeskJet Ink Advantage 2300 All-in-One + * HP ENVY 6000 series + * HP DeskJet Plus 6000 series + * HP ENVY Pro 6400 series + * HP DeskJet Plus 6400 series + * HP DeskJet 2700 All-in-One Printer series + * HP DeskJet Ink Advantage 2700 All-in-One Printer series + * HP DeskJet Plus 4100 All-in-One Printer series + * HP DeskJet Ink Advantage 4100 All-in-One Printer series + * HP LaserJet Enterprise M610dn + * HP LaserJet Enterprise M611dn + * HP LaserJet Enterprise M611x + * HP LaserJet Enterprise M612dn + * HP LaserJet Enterprise M612x + * HP LaserJet Enterprise MFP M634dn + * HP LaserJet Enterprise MFP M634z + * HP LaserJet Enterprise Flow MFP M634h + * HP LaserJet Enterprise MFP M635h + * HP LaserJet Enterprise MFP M635fht + * HP LaserJet Enterprise Flow MFP M635z + * HP LaserJet Enterprise MFP M636fh + * HP LaserJet Enterprise Flow MFP M636z + * HP Neverstop Laser MFP 1200n + * HP Neverstop Laser MFP 1201n + * HP Neverstop Laser MFP 1200nw + * HP Neverstop Laser MFP 1202nw + * HP Laser NS MFP 1005n + * HP Neverstop Laser 1000n + * HP Neverstop Laser 1001nw + * HP Laser NS 1020n + * HP ScanJet Pro 2000 s2 + * HP ScanJet Pro 3000 s4 + * HP ScanJet Pro N4000 snw1 + * HP ScanJet Enterprise Flow 5000 s5 + * HP ScanJet Enterprise Flow N7000 snw1 + +- Use LSB fallback if distro determination fails (bsc#1166623) + * Add patch: Use-lsb_release-fallback-code-if-import-distro-fails.patch +- Removed python3-distro dependency again, not necessary any more. + +- Recommend python3-distro (boo#1166623) + hwinfo +- merge gh#openSUSE/hwinfo#92 +- improve getting video mode info (bsc#1181101) +- try harder to break out of infinite I/O loops +- 21.72 + kdeconnect-kde +- Add upstream patch to use fingerprinting for device + verification (boo#1177672): + * 0001-Add-a-verification-key-that-s-displayed-when-pairing.patch + kernel-default +- RDMA/ucma: Do not miss ctx destruction steps in some cases + (bsc#1181147). +- RDMA/cma: Don't overwrite sgid_attr after device is released + (bsc#1181147). +- RDMA/cma: Fix deadlock on &lock in rdma_cma_listen_on_all() + error unwind (bsc#1181147). +- RDMA/cma: Add missing error handling of listen_id (bsc#1181147). +- RDMA: Add rdma_connect_locked() (bsc#1181147). +- RDMA/ucma: Fix use after free in destroy id flow (bsc#1181147). +- RDMA/ucma: Rework ucma_migrate_id() to avoid races with destroy + (bsc#1181147). +- RDMA/cma: Fix use after free race in roce multicast join + (bsc#1181147). +- RDMA/cma: Consolidate the destruction of a cma_multicast in + one place (bsc#1181147). +- RDMA/cma: Remove dead code for kernel rdmacm multicast + (bsc#1181147). +- RDMA/cma: Combine cma_ndev_work with cma_work (bsc#1181147). +- RDMA/cma: Remove cma_comp() (bsc#1181147). +- RDMA/cma: Fix locking for the RDMA_CM_LISTEN state + (bsc#1181147). +- RDMA/cma: Make the locking for automatic state transition more + clear (bsc#1181147). +- RDMA/cma: Fix locking for the RDMA_CM_CONNECT state + (bsc#1181147). +- RDMA/ucma: Fix resource leak on error path (bsc#1181147). +- RDMA/ucma: Remove closing and the close_wq (bsc#1181147). +- RDMA/ucma: Rework how new connections are passed through event + delivery (bsc#1181147). +- RDMA/ucma: Narrow file->mut in ucma_event_handler() + (bsc#1181147). +- RDMA/ucma: Change backlog into an atomic (bsc#1181147). +- RDMA/ucma: Fix locking for ctx->events_reported (bsc#1181147). +- RDMA/ucma: Fix the locking of ctx->file (bsc#1181147). +- RDMA/ucma: Do not use file->mut to lock destroying + (bsc#1181147). +- RDMA/cma: Add missing locking to rdma_accept() (bsc#1181147). +- RDMA/ucma: Remove mc_list and rely on xarray (bsc#1181147). +- RDMA/ucma: Fix error cases around ucma_alloc_ctx() + (bsc#1181147). +- RDMA/ucma: Consolidate the two destroy flows (bsc#1181147). +- RDMA/ucma: Remove unnecessary locking of file->ctx_list in close + (bsc#1181147). +- RDMA/ucma: Fix refcount 0 incr in ucma_get_ctx() (bsc#1181147). +- RDMA/core: Move the rdma_show_ib_cm_event() macro (bsc#1181147). +- commit feb2e32 + +- drm/v3d: Add support for bcm2711 (jsc#SLE-16259). +- Update config +- supported.conf: Enable v3d +- commit 29319ce + +- soc: bcm: bcm2835-pm: Add support for bcm2711 (jsc#SLE-16259). +- commit 8aa7baa + +- blacklist.conf: 035fff1f7aab x86/PCI: Fix intel_mid_pci.c build error when ACPI is not enabled +- commit 7d62c49 + +- Fix hibernation verification after UEFI subsystem upgraded (jsc#SLE-16407) +- Refresh + patches.suse/0005-efi-generate-secret-key-in-EFI-boot-environment.patch. +- Refresh + patches.suse/0006-efi-allow-user-to-regenerate-secret-key.patch. +- Delete + patches.suse/0003-x86-KASLR-public-the-function-for-getting-random-lon.patch. +- Update config files. +- commit d972b09 + +- x86/sev: Fix nonistr violation (bsc#1178134). +- commit 47bc3f9 + +- drm/i915/hdcp: Update CP property in update_pipe (git-fixes). +- drm/amdgpu: fix DRM_INFO flood if display core is not supported + (bug 210921) (git-fixes). +- commit 0dca4e9 + +- x86/sev-es: Handle string port IO to kernel memory properly + (bsc#1178134). +- commit 3ec7fbe + +- i2c: mlxbf: select CONFIG_I2C_SLAVE (jsc#SLE-15271 jsc#SLE-16108 + jsc#SLE-16098 jsc#SLE-13565). +- i2c: mlxbf: I2C_MLXBF should depend on MELLANOX_PLATFORM + (jsc#SLE-15271 jsc#SLE-16108 jsc#SLE-16098 jsc#SLE-13565). +- commit abb583b + +- net: core: devlink: use right genl user_ptr when handling port + param get/set (bsc#1176447). +- i40e: fix potential NULL pointer dereferencing (jsc#SLE-13701). +- net: fix use-after-free when UDP GRO with shared fraglist + (bsc#1176447). +- net/mlx5e: In skb build skip setting mark in switchdev mode + (jsc#SLE-15172). +- nexthop: Bounce NHA_GATEWAY in FDB nexthop groups (bsc#1176447). +- net: bareudp: add missing error handling for + bareudp_link_config() (jsc#SLE-15172). +- bareudp: Fix use of incorrect min_headroom size (jsc#SLE-15172). +- bareudp: set NETIF_F_LLTX flag (jsc#SLE-15172). +- bnxt_en: Check TQM rings for maximum supported value + (jsc#SLE-15075). +- bnxt_en: Fix AER recovery (jsc#SLE-15075). +- Revert "e1000e: disable s0ix entry and exit flows for ME + systems" (jsc#SLE-13532). +- e1000e: Only run S0ix flows if shutdown succeeded + (jsc#SLE-13532). +- ionic: change set_rx_mode from_ndo to can_sleep (jsc#SLE-16649). +- ionic: flatten calls to ionic_lif_rx_mode (jsc#SLE-16649). +- ice: avoid premature Rx buffer reuse (jsc#SLE-7926). +- net: mlx5e: fix fs_tcp.c build when IPV6 is not enabled + (jsc#SLE-15172). +- net/mlx5e: Fix IPsec packet drop by mlx5e_tc_update_skb + (jsc#SLE-15172). +- commit 54582be + +- zlib: move EXPORT_SYMBOL() and MODULE_LICENSE() out of + dfltcc_syms.c (jsc#SLE-13766). +- commit d62a9cc + +- zlib: export S390 symbols for zlib modules (jsc#SLE-13766). +- KVM: s390: remove diag318 reset code (jsc#SLE-13746). +- s390/pci: fix hot-plug of PCI function missing bus (bsc#1181076 + LTC#190860). +- commit 54be82c + +- lib/test_hmm.c: fix an error code in dmirror_allocate_chunk() + (jsc#SLE-16387). +- commit df77afb + +- Refresh + patches.suse/0041-mm-memremap_pages-support-multiple-ranges-per-invoca.patch. +- add missing hunk for lib/test_hmm.c +- commit f341232 + +- iommu/amd: Set iommu->int_enabled consistently when interrupts + are set up (git-fixes). +- commit 0bf82c2 + +- blacklist.conf: 78762b0e79bc x86/asm/32: Add ENDs to some functions and relabel with SYM_CODE_* +- commit 1f20d8c + +- series.conf: cleanup +- move kabi workaround into patches.kabi: + patches.suse/ALSA-pcm-fix-hw_rule-deps-kABI.patch +- commit 3eee3e1 + +- series.conf: refresh +- update upstream references and resort: + patches.suse/scsi-scsi_transport_srp-Don-t-block-target-in-failfa.patch + patches.suse/selftests-powerpc-Only-test-lwm-stmw-on-big-endian.patch +- commit 5218f70 + +- series.conf: cleanup +- move an unsortable patch out of sorted section + patches.suse/powerpc-Fix-build-error-in-paravirt.h.patch +- commit 0f64295 + +- iio: ad5504: Fix setting power-down state (git-fixes). +- serial: mvebu-uart: fix tx lost characters at power off + (git-fixes). +- usb: udc: core: Use lock when write to soft_connect (git-fixes). +- usb: gadget: aspeed: fix stop dma register setting (git-fixes). +- commit 4d850d2 + +- bpf: Fix helper bpf_map_peek_elem_proto pointing to wrong + callback (bsc#1155518). +- bpf: Don't leak memory in bpf getsockopt when optlen == 0 + (bsc#1155518). +- commit 609f544 + +- drm/panel: otm8009a: allow using non-continuous dsi clock + (git-fixes). +- usb: ohci: Make distrust_firmware param default to false + (git-fixes). +- commit 7c39cad + +- i2c: octeon: check correct size of maximum RECV_LEN packet + (git-fixes). +- commit 54a675e + +- ALSA: pcm: fix hw_rule deps kABI (bsc#1181014). +- commit 3c80769 + +- ALSA: pcm: One more dependency for hw constraints (bsc#1181014). +- commit d71290f + +- mmc: core: don't initialize block size from ext_csd if not + present (git-fixes). +- mmc: sdhci-xenon: fix 1.8v regulator stabilization (git-fixes). +- platform/x86: intel-vbtn: Drop HP Stream x360 Convertible PC + 11 from allow-list (git-fixes). +- platform/x86: i2c-multi-instantiate: Don't create platform + device for INT3515 ACPI nodes (git-fixes). +- commit 9c2a03f + +- timers: Use only bucket expiry for base->next_expiry value + (bsc#1181318). +- timers: Preserve higher bits of expiration on index calculation + (bsc#1181318). +- commit f60f618 + +- s390/cio: fix use-after-free in ccw_device_destroy_console + (git-fixes). +- commit d3e26e8 + +- KVM: s390: pv: Mark mm as protected after the set secure + parameters and improve cleanup (jsc#SLE-7512 bsc#1165545). +- commit 719d24b + +- net/af_iucv: set correct sk_protocol for child sockets + (git-fixes). +- net/af_iucv: fix null pointer dereference on shutdown + (bsc#1179567 LTC#190111). +- commit ddc328b + +- s390/dasd: fix hanging device offline processing (bsc#1181169 + LTC#190914). +- commit 9b7644e + +- net/smc: use memcpy instead of snprintf to avoid out of bounds + read (jsc#SLE-15862 bsc#1180744 LTC#186340). +- smc: fix out of bound access in smc_nl_get_sys_info() + (jsc#SLE-15862 bsc#1180744 LTC#186340). +- net/smc: fix access to parent of an ib device (jsc#SLE-15862 + bsc#1180744 LTC#186340). +- commit f7642f8 + +- net/smc: Add support for obtaining SMCR device list + (jsc#SLE-15862 bsc#1180744 LTC#186340). +- net/smc: Add support for obtaining SMCD device list + (jsc#SLE-15862 bsc#1180744 LTC#186340). +- net/smc: Add SMC-D Linkgroup diagnostic support (jsc#SLE-15862 + bsc#1180744 LTC#186340). +- net/smc: Introduce SMCR get link command (jsc#SLE-15862 + bsc#1180744 LTC#186340). +- net/smc: Introduce SMCR get linkgroup command (jsc#SLE-15862 + bsc#1180744 LTC#186340). +- net/smc: Add support for obtaining system information + (jsc#SLE-15862 bsc#1180744 LTC#186340). +- net/smc: Introduce generic netlink interface for diagnostic + purposes (jsc#SLE-15862 bsc#1180744 LTC#186340). +- net/smc: Refactor smc ism v2 capability handling (jsc#SLE-15862 + bsc#1180744 LTC#186340). +- net/smc: Add diagnostic information to link structure + (jsc#SLE-15862 bsc#1180744 LTC#186340). +- net/smc: Add diagnostic information to smc ib-device + (jsc#SLE-15862 bsc#1180744 LTC#186340). +- net/smc: Add link counters for IB device ports (jsc#SLE-15862 + bsc#1180744 LTC#186340). +- net/smc: Add connection counters for links (jsc#SLE-15862 + bsc#1180744 LTC#186340). +- net/smc: Use active link of the connection (jsc#SLE-15862 + bsc#1180744 LTC#186340). +- net/smc: use helper smc_conn_abort() in listen processing + (jsc#SLE-15862 bsc#1180744 LTC#186340). +- commit 064ec88 + +- drm/vc4: Unify PCM card's driver_name (git-fixes). +- commit 2a6cd0a + +- dpaa2-eth: fix the size of the mapped SGT buffer + (jsc#SLE-14018). +- soc: fsl: handle RCPM errata A-008646 on SoC LS1021A + (jsc#SLE-14018). +- soc: fsl: qbman: qman: Remove unused variable 'dequeue_wq' + (jsc#SLE-14018). +- soc: fsl: qe: qe_common: Fix misnamed function attribute 'addr' + (jsc#SLE-14018). +- soc: fsl: dpio: qbman-portal: Fix a bunch of kernel-doc + misdemeanours (jsc#SLE-14018). +- bus: fsl-mc: simplify DPRC version check (jsc#SLE-14018). +- bus: fsl-mc: added missing fields to dprc_rsp_get_obj_region + structure (jsc#SLE-14018). +- bus: fsl-mc: make sure MC firmware is up and running + (jsc#SLE-14018). +- bus: fsl-mc: add back accidentally dropped error check + (jsc#SLE-14018). +- crypto: caam: Replace in_irq() usage (jsc#SLE-14018). +- soc/fsl/qbman: Add an argument to signal if NAPI processing + is required (jsc#SLE-14018). +- crypto: caam/qi - simplify error path for context allocation + (jsc#SLE-14018). +- dpaa2-eth: Fix compile error due to missing devlink support + (jsc#SLE-14018). +- dpaa2-eth: select XGMAC_MDIO for MDIO bus support + (jsc#SLE-14018). +- soc: fsl: qe: Remove unnessesary check in ucc_set_tdm_rxtx_clk + (jsc#SLE-14018). +- soc: fsl: qman: convert to use be32_add_cpu() (jsc#SLE-14018). +- soc: fsl: dpio: remove set but not used 'addr_cena' + (jsc#SLE-14018). +- dpaa2-eth: add support for devlink parser error drop traps + (jsc#SLE-14018). +- dpaa2-eth: add basic devlink support (jsc#SLE-14018). +- devlink: add .trap_group_action_set() callback (jsc#SLE-14018). +- devlink: add parser error drop packet traps (jsc#SLE-14018). +- dpaa2-eth: install a single steering rule when SHARED_FS is + enabled (jsc#SLE-14018). +- dpaa2-eth: no need to check link state right after ndo_open + (jsc#SLE-14018). +- dpaa2-eth: drop double zeroing (jsc#SLE-14018). +- ptp_qoriq: support FIPER3 (jsc#SLE-14018). +- dpaa2-eth: utilize skb->cb for hardware timestamping + (jsc#SLE-14018). +- dpaa2-eth: invoke dpaa2_eth_enable_tx_tstamp() once in code + (jsc#SLE-14018). +- dpaa2-eth: define a global ptp_qoriq structure pointer + (jsc#SLE-14018). +- dpaa2-eth: add APIs of 1588 single step timestamping + (jsc#SLE-14018). +- dpaa2-eth: Convert to DEFINE_SHOW_ATTRIBUTE (jsc#SLE-14018). +- dpaa2-eth: add a dpaa2_eth_ prefix to all functions in + dpaa2-eth-dcb.c (jsc#SLE-14018). +- dpaa2-eth: add a dpaa2_eth_ prefix to all functions in + dpaa2-eth.c (jsc#SLE-14018). +- dpaa2-eth: add a dpaa2_eth_ prefix to all functions in + dpaa2-ethtool.c (jsc#SLE-14018). +- bus/fsl-mc: Add a new version for dprc_get_obj_region command + (jsc#SLE-14018). +- bus/fsl-mc: Extend ICID size from 16bit to 32bit + (jsc#SLE-14018). +- bus/fsl-mc: Export IRQ pool handling functions to be used by + VFIO (jsc#SLE-14018). +- bus/fsl-mc: Add a container setup function (jsc#SLE-14018). +- bus/fsl-mc: Export a cleanup function for DPRC (jsc#SLE-14018). +- bus/fsl-mc: Export dprc_scan/dprc_remove functions to be used + by multiple entities (jsc#SLE-14018). +- bus/fsl-mc: Add dprc-reset-container support (jsc#SLE-14018). +- bus/fsl-mc: Cache the DPRC API version (jsc#SLE-14018). +- bus/fsl-mc: Set the QMAN/BMAN region flags (jsc#SLE-14018). +- bus/fsl-mc: add support for 'driver_override' in the mc-bus + (jsc#SLE-14018). +- bus/fsl-mc: Add a new parameter to dprc_scan_objects function + (jsc#SLE-14018). +- bus/fsl-mc: Do no longer export the total number of irqs + outside dprc_scan_objects (jsc#SLE-14018). +- bus: fsl-mc: MC control registers are not always available + (jsc#SLE-14018). +- bus: fsl-mc: don't assume an iommu is always present + (jsc#SLE-14018). +- gpio: mpc8xxx: simplify ls1028a/ls1088a support (jsc#SLE-14018). +- ptp_qoriq: output PPS signal on FIPER2 in default + (jsc#SLE-14018). +- commit 30de820 + +- hwmon-amd_energy-09-fix-allocation-of-hwmon_channel_info.patch is now + part of jsc#SLE-14262. +- commit c0fcf0d + +- hwmon: (amd_energy) Add AMD family 19h model 01h x86 match + (jsc#SLE-14262). +- commit 0d38ed6 + +- ALSA: hda: Balance runtime/system PM if direct-complete is + disabled (git-fixes). +- ASoC: SOF: Intel: fix page fault at probe if i915 init fails + (git-fixes). +- ASoC: SOF: Intel: hda: Avoid checking jack on system suspend + (git-fixes). +- ASoC: SOF: Intel: hda: Modify existing helper to disable WAKEEN + (git-fixes). +- ASoC: SOF: Intel: hda: Resume codec to do jack detection + (git-fixes). +- ALSA: hda: Add AlderLake-P PCI ID and HDMI codec vid + (git-fixes). +- commit 4063e56 + +- ALSA: hda: Add Cometlake-R PCI ID (git-fixes). +- ALSA: seq: oss: Fix missing error check in + snd_seq_oss_synth_make_info() (git-fixes). +- ALSA: hda/via: Add minimum mute flag (git-fixes). +- ALSA: hda/realtek - Limit int mic boost on Acer Aspire E5-575T + (git-fixes). +- commit 70d9202 + +- Move upstreamed sound patches into sorted section +- commit f5195da + +- i2c: mlxbf: Fix the return check of devm_ioremap and ioremap + (jsc#SLE-15271 jsc#SLE-16108 jsc#SLE-16098 jsc#SLE-13565). +- commit ebaf1be + +- i2c: mlxbf: Update author and maintainer email info + (jsc#SLE-15271 jsc#SLE-16108 jsc#SLE-16098 jsc#SLE-13565). +- commit 248e78f + +- i2c: mlxbf: Update reference clock frequency (jsc#SLE-15271 + jsc#SLE-16108 jsc#SLE-16098 jsc#SLE-13565). +- commit 077bf6e + +- i2c: mlxbf: Remove unecessary wrapper functions (jsc#SLE-15271 + jsc#SLE-16108 jsc#SLE-16098 jsc#SLE-13565). +- commit a636d51 + +- i2c: mlxbf: Fix resrticted cast warning of sparse (jsc#SLE-15271 + jsc#SLE-16108 jsc#SLE-16098 jsc#SLE-13565). +- commit 4f74542 + +- i2c: mlxbf: Add CONFIG_ACPI to guard ACPI function call + (jsc#SLE-15271 jsc#SLE-16108 jsc#SLE-16098 jsc#SLE-13565). +- commit 8341791 + +- i2c: mlxbf: I2C SMBus driver for Mellanox BlueField SoC + (bsc#1119838 jsc#SLE-15271 jsc#SLE-16108 jsc#SLE-16098 jsc#SLE-13565). +- Update config files. +- supported.conf: add i2c-mlxbf +- commit 25f4cd8 + +- blacklist.conf: Add entries for platform/x86/intel-vbtn that are reverted +- commit 5482ef1 + +- platform/x86: intel-vbtn: Fix SW_TABLET_MODE always reporting + 1 on some HP x360 models (git-fixes). +- commit d6ac163 + +- power: vexpress: add suppress_bind_attrs to true (git-fixes). +- commit bb22b7b + +- platform/mellanox: mlxbf-pmc: Add Mellanox BlueField PMC + driver (bsc#1119846 jsc#SLE-15271 jsc#SLE-16108 jsc#SLE-16098 + jsc#SLE-13565). +- Update config files. Enabel MLXBF_PCM as module +- supported.conf: add mlxbf-pmc +- commit af433f3 + +- drm/i915/gt: Restore clear-residual mitigations for Ivybridge, + Baytrail (git-fixes). +- drm/i915/gt: Limit VFE threads based on GT (git-fixes). +- drm/i915/icl: Fix initing the DSI DSC power refcount during + HW readout (git-fixes). +- drm/i915/backlight: fix CPU mode backlight takeover on LPT + (git-fixes). +- drm/i915/dsi: Use unconditional msleep for the panel_on_delay + when there is no reset-deassert MIPI-sequence (git-fixes). +- drm/msm: Call msm_init_vram before binding the gpu (git-fixes). +- drm/amdgpu: fix potential memory leak during navi12 + deinitialization (git-fixes). +- drm/amdgpu: fix a GPU hang issue when remove device (git-fixes). +- drm/amd/display: fix sysfs amdgpu_current_backlight_pwm NULL + pointer issue (git-fixes). +- drm/i915/perf: also include Gen11 in OATAILPTR workaround + (git-fixes). +- drm/amdkfd: Put ACPI table after using it (git-fixes). +- drm/bridge: sii902x: Enable I/O and core VCC supplies if present + (git-fixes). +- drm/bridge: sii902x: Refactor init code into separate function + (git-fixes). +- commit 1ac5cc4 + +- blacklist.conf: Add amdgpu patches that are reverted +- commit ac3cc99 + +- spi: imx: Fix freeing of DMA channels if spi_bitbang_start() + fails (git-fixes). +- Refresh + patches.suse/spi-imx-fix-runtime-pm-support-for-config_pm.patch. +- commit afbdd20 + +- blacklist.conf: Add rtl8192e patches that are reverted later +- commit 86d1c5b + +- r8169: fix potential skb double free in an error path + (git-fixes). +- spi: spi-cadence-quadspi: Fix mapping of buffers for DMA reads + (git-fixes). +- commit 0cf3ab4 + +- btrfs: send: fix wrong file path when there is an inode with + a pending rmdir (bsc#1181237). +- commit be4e71d + +- tty/sysrq: constify the the sysrq_key_op(s) (git-fixes). +- commit 866ce2a + +- media: dvb-usb: Fix use-after-free access (bsc#1181104). +- media: dvb-usb: Fix memory leak at error in + dvb_usb_device_init() (bsc#1181104). +- commit 3a92626 + +- can: vxcan: vxcan_xmit: fix use after free bug (git-fixes). +- mac80211: check if atf has been disabled in + __ieee80211_schedule_txq (git-fixes). +- mac80211: do not drop tx nulldata packets on encrypted links + (git-fixes). +- commit dfeeb94 + +- Increase PCI_NR_FUNCTIONS to 512 on s390x + (jsc#SLE-17267, bsc#1180114, LTC#190383). +- Refresh config/s390x/zfcpdump. +- commit 56606d8 + +- lib/zlib: fix inflating zlib streams on s390 (bsc#1181070 + LTC#190858). +- commit 5b17a7f + +- vfio-pci: Use io_remap_pfn_range() for PCI IO memory + (bsc#1181220). +- iommu/vt-d: Fix a bug for PDP check in prq_event_thread + (bsc#1181217). +- vfio/pci: Implement ioeventfd thread handler for contended + memory lock (bsc#1181219). +- KVM: nVMX: Reload vmcs01 if getting vmcs12's pages fails + (bsc#1181218). +- commit 517d1e9 + +- arm64: Remove arm64_dma32_phys_limit and its uses + (jsc#SLE-17068). +- commit 8ce9631 + +- bpf: Fix signed_{sub,add32}_overflows type handling + (bsc#1177028). +- bpf: Support PTR_TO_MEM{,_OR_NULL} register spilling + (bsc#1177028). +- bpftool: Fix compilation failure for net.o with older glibc + (bsc#1177028). +- bpf: Save correct stopping point in file seq iteration + (bsc#1177028). +- selftests/bpf: Clarify build error if no vmlinux (bsc#1177028). +- bpf: Simplify task_file_seq_get_next() (bsc#1177028). +- bpf: Avoid iterating duplicated files for task_file iterator + (bsc#1177028). +- commit 7d12720 + +- iommu/vt-d: Fix misuse of ALIGN in qi_flush_piotlb() + (bsc#1181210). +- iommu/amd: Stop irq_remapping_select() matching when remapping + is disabled (bsc#1181206). +- iommu/vt-d: include conditionally on CONFIG_INTEL_IOMMU_SVM + (bsc#1181211). +- iommu/vt-d: Don't read VCCAP register unless it exists + (bsc#1181208). +- x86/tboot: Don't disable swiotlb when iommu is forced on + (bsc#1181215). +- iommu: Check return of __iommu_attach_device() (bsc#1181207). +- iommu/vt-d: Fix kernel NULL pointer dereference in find_domain() + (bsc#1181209). +- vfio/type1: fix dirty bitmap calculation in vfio_dma_rw + (bsc#1181214). +- vfio: fix a missed vfio group put in vfio_pin_pages + (bsc#1181213). +- vfio: add a singleton check for vfio_group_pin_pages + (bsc#1181212). +- commit 8c44ec4 + +- drm/sun4i: dw-hdmi: fix error return code in sun8i_dw_hdmi_bind() (bsc#1152472) +- commit d0d0905 + +- drm: bridge: dw-hdmi: Avoid resetting force in the detect function (bsc#1152472) +- commit 9ad528c + +- drm/i915: Correctly set SFC capability for video engines (bsc#1152489) + Backporting notes: + * context changes +- commit d15d9b1 + +- SUNRPC: xprt_load_transport() needs to support the netid "rdma6" + (git-fixes). +- commit d5fbee3 + +- ALSA: usb-audio: Fix hw constraints dependencies (bsc#1181014). +- commit 58d7b94 + +- dmabuf: fix use-after-free of dmabuf's file->f_inode + (git-fixes). +- i2c: imx: Don't generate STOP condition if arbitration has + been lost (git-fixes). +- i2c: imx: Check for I2SR_IAL after every byte (git-fixes). +- iwlwifi: pcie: set LTR to avoid completion timeout (git-fixes). +- ACPI: EC: PM: Drop ec_no_wakeup check from + acpi_ec_dispatch_gpe() (git-fixes). +- i2c: imx: Fix reset of I2SR_IAL flag (git-fixes). +- gpio: amd-fch: correct logic of GPIO_LINE_DIRECTION (git-fixes). +- commit 555f1bf + +- blacklist.conf: Add amdgpu commits that are reverted +- commit 1fba96f + +- ASoC: AMD Renoir - add DMI entry for Lenovo ThinkPad X395 + (git-fixes). +- ASoC: amd: Replacing MSI with Legacy IRQ model (git-fixes). +- ASoC: AMD Renoir - add DMI entry for Lenovo ThinkPad E14 Gen 2 + (git-fixes). +- ASoC: meson: axg-tdmin: fix axg skew offset (git-fixes). +- ASoC: max98373: don't access volatile registers in bias level + off (git-fixes). +- ASoC: rt711: mutex between calibration and power state changes + (git-fixes). +- ASoC: Intel: haswell: Add missing pm_ops (git-fixes). +- ASoC: rsnd: don't call clk_disable_unprepare() if can't use + (git-fixes). +- ASoC: SOF: Fix spelling mistake in Kconfig "ond" -> "and" + (git-fixes). +- ASoC: codecs: fix spelling mistake in Kconfig "comunicate" -> + "communicate" (git-fixes). +- commit 13c6b71 + +- spi: cadence: cache reference clock rate during probe + (git-fixes). +- r8152: Add Lenovo Powered USB-C Travel Hub (git-fixes). +- usb: typec: Fix copy paste error for NVIDIA alt-mode description + (git-fixes). +- hwmon: (pwm-fan) Ensure that calculation doesn't discard big + period values (git-fixes). +- ACPI: scan: add stub acpi_create_platform_device() for + !CONFIG_ACPI (git-fixes). +- misdn: dsp: select CONFIG_BITREVERSE (git-fixes). +- commit 01db302 + +- Update configs: Enable i2c_mux_pinctrl (jsc#SLE-15318) +- supported.conf: Support i2c-mux-pinctrl +- commit 1488fe7 + +- selftests/ftrace: Select an existing function in + kprobe_eventname test (bsc#1179396 ltc#185738). +- commit 3e9ea6f + +- selftests/powerpc: spectre_v2 test must be built 64-bit + (bsc#1181158 ltc#190851). +- commit 52f3d6b + +- Update + patches.suse/0001-xen-events-add-a-proper-barrier-to-2-level-uevent-un.patch + (CVE-2020-27673 XSA-332 bsc#1177411). +- Update + patches.suse/0002-xen-events-fix-race-in-evtchn_fifo_unmask.patch + (CVE-2020-27673 XSA-332 bsc#1177411). +- Update + patches.suse/0003-xen-events-add-a-new-late-EOI-evtchn-framework.patch + (CVE-2020-27673 XSA-332 bsc#1177411). +- Update + patches.suse/0004-xen-blkback-use-lateeoi-irq-binding.patch + (CVE-2020-27673 XSA-332 bsc#1177411). +- Update + patches.suse/0005-xen-netback-use-lateeoi-irq-binding.patch + (CVE-2020-27673 XSA-332 bsc#1177411). +- Update + patches.suse/0006-xen-scsiback-use-lateeoi-irq-binding.patch + (CVE-2020-27673 XSA-332 bsc#1177411). +- Update + patches.suse/0007-xen-pvcallsback-use-lateeoi-irq-binding.patch + (CVE-2020-27673 XSA-332 bsc#1177411). +- Update + patches.suse/0008-xen-pciback-use-lateeoi-irq-binding.patch + (CVE-2020-27673 XSA-332 bsc#1177411). +- Update + patches.suse/0009-xen-events-switch-user-event-channels-to-lateeoi-mod.patch + (CVE-2020-27673 XSA-332 bsc#1177411). +- Update + patches.suse/0010-xen-events-use-a-common-cpu-hotplug-hook-for-event-c.patch + (CVE-2020-27673 XSA-332 bsc#1177411). +- Update + patches.suse/0011-xen-events-defer-eoi-in-case-of-excessive-number-of-.patch + (CVE-2020-27673 XSA-332 bsc#1177411). +- Update + patches.suse/0012-xen-events-block-rogue-events-for-some-time.patch + (CVE-2020-27673 XSA-332 bsc#1177411). +- Update + patches.suse/xen-events-avoid-removing-an-event-channel-while-han.patch + (CVE-2020-27675 XSA-331 bsc#1177410). +- Added CVE numbers for above patches. +- commit 3b60580 + +- selftests/powerpc: Move set_dscr() into rfi_flush.c (bsc#1181158 + ltc#190851). +- selftests/powerpc: Move Hash MMU check to utilities (bsc#1181158 + ltc#190851). +- selftests/powerpc: Add a test of bad (out-of-range) accesses + (bsc#1181158 ltc#190851). +- Refresh patches.suse/selftests-powerpc-Add-tlbie_test-in-.gitignore.patch. +- selftests/powerpc: Add a test of spectre_v2 mitigations + (bsc#1181158 ltc#190851). +- Refresh patches.suse/selftests-powerpc-entry-flush-test.patch. +- selftests/powerpc: Ignore generated files (bsc#1181158 + ltc#190851). +- commit f53f10b + +- selftests/powerpc: Only test lwm/stmw on big endian (bsc#1180412 + ltc#190579). +- commit 21bd682 + +- powerpc: Fix build error in paravirt.h (bsc#1181148 ltc#190702). +- commit 251d2f4 + +- Exclude Symbols.list again. + Removing the exclude builds vanilla/linux-next builds. + Fixes: 55877625c800 ("kernel-binary.spec.in: Package the obj_install_dir as explicit filelist.") +- commit a1728f2 + +- powerpc/paravirt: Use is_kvm_guest() in vcpu_is_preempted() + (bsc#1181148 ltc#190702). +- powerpc: Reintroduce is_kvm_guest() as a fast-path check + (bsc#1181148 ltc#190702). +- powerpc: Rename is_kvm_guest() to check_kvm_guest() (bsc#1181148 + ltc#190702). +- powerpc: Refactor is_kvm_guest() declaration to new header + (bsc#1181148 ltc#190702). +- commit 17fe8f8 + +- Refresh + patches.suse/scsi-qedi-correct-max-length-of-chap-secret. +- commit ac83a80 + +- arm64: pgtable: Ensure dirty bit is preserved across + pte_wrprotect() (bsc#1180130). +- arm64: pgtable: Fix pte_accessible() (bsc#1180130). +- commit 585bbd5 + +- Revive usb-audio Keep Interface mixer (bsc#1181014). +- commit 80020db + +- mtd: spi-nor: atmel: fix unlock_all() for AT25FS010/040 + (git-fixes). +- mtd: spi-nor: atmel: remove global protection flag (git-fixes). +- commit c76850f + +- netfilter: ctnetlink: add a range check for l3/l4 protonum + (CVE-2020-25211 bsc#1176395). +- commit ebf5e43 + +- fix patches metadata +- fix Patch-mainline: + patches.suse/NFS-nfs_delegation_find_inode_server-must-first-refe.patch + patches.suse/NFS-nfs_igrab_and_active-must-first-reference-the-su.patch + patches.suse/NFS-pNFS-Fix-a-leak-of-the-layout-plh_outstanding-co.patch + patches.suse/NFS-pNFS-Fix-a-typo-in-ff_layout_resend_pnfs_read.patch + patches.suse/NFS-switch-nfsiod-to-be-an-UNBOUND-workqueue.patch + patches.suse/NFS4-Fix-use-after-free-in-trace_event_raw_event_nfs.patch + patches.suse/NFSv4-Fix-the-alignment-of-page-data-in-the-getdevic.patch + patches.suse/NFSv4.2-condition-READDIR-s-mask-for-security-label-.patch + patches.suse/Revert-nfsd4-support-change_attr_type-attribute.patch + patches.suse/SUNRPC-Clean-up-the-handling-of-page-padding-in-rpc_.patch + patches.suse/SUNRPC-rpc_wake_up-should-wake-up-tasks-in-the-corre.patch + patches.suse/lockd-don-t-use-interval-based-rebinding-over-TCP.patch + patches.suse/md-fix-a-warning-caused-by-a-race-between-concurrent.patch + patches.suse/net-sunrpc-Fix-snprintf-return-value-check-in-do_xpr.patch + patches.suse/net-sunrpc-interpret-the-return-value-of-kstrtou32-c.patch + patches.suse/nfs_common-need-lock-during-iterate-through-the-list.patch + patches.suse/nfsd-Fix-message-level-for-normal-termination.patch + patches.suse/sunrpc-fix-xs_read_xdr_buf-for-partial-pages-receive.patch +- commit f5dfabc + +- fix patches metadata +- fix Patch-mainline: + patches.suse/kprobes-tracing-kprobes-Fix-to-kill-kprobes-on-initmem-after-boot.patch + patches.suse/mm-vmalloc-Fix-unlock-order-in-s_stop.patch +- commit 8ea9f59 + +- tests: add close_range() tests (jsc#SLE-17337, bsc#1179090). +- arch: wire-up close_range() (jsc#SLE-17337, bsc#1179090). +- open: add close_range() (jsc#SLE-17337, bsc#1179090). +- commit abad1c5 + +- Refresh + patches.suse/0011-x86-hpet-Move-MSI-support-into-hpet.c.patch. +- Update + patches.suse/msft-hv-2119-irqdomain-treewide-Keep-firmware-node-unconditionall.patch + (git-fixes bsc#1180889). + Add missing hunks in the e3beca48a45b's backport. +- commit 060c4e5 + +- Update + patches.suse/tun-correct-header-offsets-in-napi-frags-mode.patch + (git-fixes bsc#1180812 CVE-2021-0342). + Added CVE reference +- commit 0059c1d + +- NFS: nfs_igrab_and_active must first reference the superblock + (for-next). +- NFS: nfs_delegation_find_inode_server must first reference + the superblock (for-next). +- NFS/pNFS: Fix a leak of the layout 'plh_outstanding' counter + (for-next). +- net: sunrpc: interpret the return value of kstrtou32 correctly + (for-next). +- NFS4: Fix use-after-free in trace_event_raw_event_nfs4_set_lock + (for-next). +- NFS/pNFS: Fix a typo in ff_layout_resend_pnfs_read() (for-next). +- sunrpc: fix xs_read_xdr_buf for partial pages receive + (for-next). +- NFS: switch nfsiod to be an UNBOUND workqueue (for-next). +- lockd: don't use interval-based rebinding over TCP (for-next). +- net: sunrpc: Fix 'snprintf' return value check in + 'do_xprt_debugfs' (for-next). +- SUNRPC: Clean up the handling of page padding in + rpc_prepare_reply_pages() (for-next). +- NFSv4: Fix the alignment of page data in the getdeviceinfo reply + (for-next). +- NFSv4.2: condition READDIR's mask for security label based on + LSM state (for-next). +- SUNRPC: rpc_wake_up() should wake up tasks in the correct order + (for-next). +- md: fix a warning caused by a race between concurrent + md_ioctl()s (for-next). +- Revert "nfsd4: support change_attr_type attribute" (for-next). +- nfs_common: need lock during iterate through the list + (for-next). +- nfsd: Fix message level for normal termination (for-next). +- commit 685e8f2 + +- x86/cpu/amd: Call init_amd_zn() om Family 19h processors too + (bsc#1181077). +- commit a71f120 + +- blacklist.conf: No in-tree users of the table +- commit 9c6c6be + +- kprobes: tracing/kprobes: Fix to kill kprobes on initmem after + boot (git fixes (kernel/kprobe)). +- commit 47f3848 + +- blacklist.conf: UP not enabled in kernel config +- commit c97848a + +- mm/vmalloc: Fix unlock order in s_stop() (git fixes + (mm/vmalloc)). +- commit 70dafb3 + +- blacklist.conf: nilfs2 not enabled in kernel config +- commit 409ae2f + +- scsi: ibmvfc: Fix spelling mistake "succeded" -> "succeeded" + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- commit a426064 + +- blk-mq-debugfs: Add decode for BLK_MQ_F_TAG_HCTX_SHARED + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- blk-mq: Facilitate a shared sbitmap per tagset (jsc#SLE-15442 + bsc#1180814 ltc#187461). +- blk-mq: Use pointers for blk_mq_tags bitmap tags (jsc#SLE-15442 + bsc#1180814 ltc#187461). +- blk-mq: Pass flags for tag init/free (jsc#SLE-15442 bsc#1180814 + ltc#187461). +- blk-mq: Free tags in blk_mq_init_tags() upon error + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- commit c2ebad8 + +- s390/qeth: fix L2 header access in qeth_l3_osa_features_check() + (git-fixes). +- s390/qeth: fix locking for discipline setup / removal + (git-fixes). +- s390/qeth: fix deadlock during recovery (git-fixes). +- s390/dasd: fix list corruption of lcu list (git-fixes). +- s390/dasd: fix list corruption of pavgroup group list + (git-fixes). +- s390/dasd: prevent inconsistent LCU device data (git-fixes). +- s390/smp: perform initial CPU reset also for SMT siblings + (git-fixes). +- s390/kexec_file: fix diag308 subcode when loading crash kernel + (git-fixes). +- s390/qeth: consolidate online/offline code (git-fixes). +- s390/qeth: don't raise NETDEV_REBOOT event from L3 offline path + (git-fixes). +- commit 22371f9 + +- Update config files (jsc#SLE-17227) + Enable CMA and DMA_CMA backend. Also enable SPI_BITBANG as requested. +- commit ebe7020 + +- blacklist.conf: 78762b0e79bc x86/asm/32: Add ENDs to some functions and relabel with SYM_CODE_* +- commit 2b5cd2a + +- ALSA: usb-audio: Avoid implicit feedback on Pioneer devices + (bsc#1181014). +- ALSA: usb-audio: Set sample rate for all sharing EPs on UAC1 + (bsc#1181014). +- ALSA: usb-audio: Fix UAC1 rate setup for secondary endpoints + (bsc#1181014). +- ALSA: usb-audio: Always apply the hw constraints for implicit + fb sync (bsc#1181014). +- commit b78b9c6 + +- Do not backport 30ad8db3a patch because HPE needs uv_bios_call() + (bsc#1180598) + Do not backport 30ad8db3a2c2e0121202342c6c2a48fc28937056 x86/platform/uv: Mark + uv_bios_call() and uv_bios_call_irqsave() because HPE needs + uv_bios_call() in SLE15-SP3 +- blacklist.conf: +- Delete + patches.suse/x86-platform-uv-Mark-uv_bios_call-and-uv_bios_call_i.patch. +- commit cb1e448 + +- scsi: scsi_debug: Support host tagset (jsc#SLE-15442 bsc#1180814 + ltc#187461). +- scsi: core: Show nr_hw_queues in sysfs (jsc#SLE-15442 + bsc#1180814 ltc#187461). +- scsi: Add host and host template flag 'host_tagset' + (jsc#SLE-15442 bsc#1180814 ltc#187461). + Refresh patches.suse/scsi-add-disable_async_probing-module-argument.patch +- scsi: scsi_debug: Support hostwide tags (jsc#SLE-15442 + bsc#1180814 ltc#187461). +- scsi: core: Refactor scsi_mq_setup_tags function (jsc#SLE-15442 + bsc#1180814 ltc#187461). +- scsi: scsi_debug: Re-arrange parameters alphabetically + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- commit 0e8c445 + +- scsi: ibmvfc: Provide modules parameters for MQ settings + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Enable MQ and set reasonable defaults + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Purge SCSI channels after transport loss/reset + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Send Cancel MAD down each hw SCSI channel + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Add cancel mad initialization helper + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Register Sub-CRQ handles with VIOS during channel + setup (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Send commands down HW Sub-CRQ when channelized + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Set and track hw queue in ibmvfc_event struct + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Advertise client support for using hardware + channels (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Implement channel enquiry and setup commands + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Map/request irq and register Sub-CRQ interrupt + handler (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Define Sub-CRQ interrupt handler routine + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Add handlers to drain and complete Sub-CRQ + responses (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Add Sub-CRQ IRQ enable/disable routine + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Add alloc/dealloc routines for SCSI Sub-CRQ + Channels (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Add Subordinate CRQ definitions (jsc#SLE-15442 + bsc#1180814 ltc#187461). +- scsi: ibmvfc: Define hcall wrapper for registering a Sub-CRQ + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Add size parameter to ibmvfc_init_event_pool() + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Init/free event pool during queue allocation/free + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Move event pool init/free routines (jsc#SLE-15442 + bsc#1180814 ltc#187461). +- scsi: ibmvfc: Add vhost fields and defaults for MQ enablement + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Relax locking around ibmvfc_queuecommand() + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Complete commands outside the host/queue lock + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Define per-queue state/list locks (jsc#SLE-15442 + bsc#1180814 ltc#187461). +- scsi: ibmvfc: Make command event pool queue specific + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Define generic queue structure for CRQs + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Advertise client support for targetWWPN using + v2 commands (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Add support for target_wwpn field in v2 MADs + and vfcFrame (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Add FC payload retrieval routines for versioned + vfcFrames (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Add helper for testing capability flags + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Add new fields for version 2 of several MADs + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Deduplicate common ibmvfc_cmd init code + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Use correlation token to tag commands + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Remove trailing semicolon (jsc#SLE-15442 + bsc#1180814 ltc#187461). +- scsi: ibmvfc: Byte swap login_buf.resp values in attribute + show functions (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Protect vhost->task_set increment by the host lock + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Interface updates for future FPIN and MQ support + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- commit fe5294b + +- Revert dwc3 series. + As of now, this recently merged series fails to build without the kabi + workaround which would break SLE15-SP3 merge. Drop the patches until the + build failure is fixed. +- commit a8aaab2 + +- drivers/perf: Fix kernel panic when rmmod PMU modules during + perf sampling (bsc#1180848). +- commit 8584e95 + +- Drop incorrectly re-backported radeon patch again (bsc#1180971) + Also add cherry-picked commit ids in the two relevant patches +- commit bb3221b + +- blacklist.conf: 66ab33bf6d43 ("virtiofs fix leak in setup") + Requires a massive commit, which is quite intrusive in fuse and not worth it. +- commit 2076b1f + +- fuse: fix page dereference after free (jsc#SLE-13782). +- virtio_fs: convert to LE accessors (jsc#SLE-13782). +- commit 5376406 + +- KVM: SVM: Initialize prev_ga_tag before use (bsc#1180809). +- commit 953316b + +- blacklist.conf: 0e9fb6f17ad5 ("fuse: BUG_ON correction in fuse_dev_splice_write()") + Requires intrusive changes in pipe, splice, etc. +- commit eac6f26 + +- fuse: reject options on reconfigure via fsconfig(2) + (jsc#SLE-13782). +- fuse: ignore 'data' argument of mount(..., MS_REMOUNT) + (jsc#SLE-13782). +- fuse: use ->reconfigure() instead of ->remount_fs() + (jsc#SLE-13782). +- virtiofs: do not use fuse_fill_super_common() for device + installation (jsc#SLE-13782). +- fuse: invalidate inode attr in writeback cache mode + (jsc#SLE-13782). +- fuse: Update stale comment in queue_interrupt() (jsc#SLE-13782). +- virtiofs: Add mount option and atime behavior to the doc + (jsc#SLE-13782). +- virtiofs: schedule blocking async replies in separate worker + (jsc#SLE-13782). +- commit ac0b54e + +- fuse: fix stack use after return (jsc#SLE-13782). +- fuse: Support RENAME_WHITEOUT flag (jsc#SLE-13782). +- fuse: don't overflow LLONG_MAX with end offset (jsc#SLE-13782). +- commit 3a3db69 + +- fuse: fix fuse_send_readpages() in the syncronous read case + (jsc#SLE-13782). +- fuse: fix leak of fuse_io_priv (jsc#SLE-13782). +- virtiofs: Use completions while waiting for queue to be drained + (jsc#SLE-13782). +- virtiofs: Do not send forget request "struct list_head" element + (jsc#SLE-13782). +- virtiofs: Use a common function to send forget (jsc#SLE-13782). +- fuse: verify write return (jsc#SLE-13782). +- commit a5ee2f4 + +- blacklist.conf: 035fff1f7aab x86/PCI: Fix intel_mid_pci.c build error when ACPI is not enabled +- commit e52f15d + +- x86/kprobes: Restore BTF if the single-stepping is cancelled + (bsc#1152489). +- commit f89b6b0 + +- hwmon: (amd_energy) fix allocation of hwmon_channel_info config + (git-fixes). +- dmaengine: idxd: off by one in cleanup code (git-fixes). +- commit 22fcbaa + +- fuse: redundant get_fuse_inode() calls in fuse_writepages_fill() + (jsc#SLE-13782). +- fuse: Add changelog entries for protocols 7.1 - 7.8 + (jsc#SLE-13782). +- virtiofs: Remove set but not used variable 'fc' (jsc#SLE-13782). +- virtiofs: Retry request submission from worker context + (jsc#SLE-13782). +- virtiofs: Count pending forgets as in_flight forgets + (jsc#SLE-13782). +- virtiofs: Set FR_SENT flag only after request has been sent + (jsc#SLE-13782). +- virtiofs: No need to check fpq->connected state (jsc#SLE-13782). +- virtiofs: Do not end request in submission context + (jsc#SLE-13782). +- fuse: don't advise readdirplus for negative lookup + (jsc#SLE-13782). +- fuse: don't dereference req->args on finished request + (jsc#SLE-13782). +- virtio-fs: don't show mount options (jsc#SLE-13782). +- commit ce0c590 + +- virtio-fs: Change module name to virtiofs.ko (jsc#SLE-13782). +- fuse: Make fuse_args_to_req static (jsc#SLE-13782). +- fuse: unexport fuse_put_request (jsc#SLE-13782). +- fuse: kmemcg account fs data (jsc#SLE-13782). +- fuse: on 64-bit store time in d_fsdata directly (jsc#SLE-13782). +- commit 5c78fc0 + +- virtio-fs: add virtiofs filesystem (jsc#SLE-13782). +- Refresh + patches.suse/mac80211_hwsim-add-frame-transmission-support-over-v.patch. +- Update config files: + CONFIG_VIRTIO_FS=m +- supported.conf: add virtiofs +- commit f56518a + +- virtio-fs: add Documentation/filesystems/virtiofs.rst + (jsc#SLE-13782). +- fuse: reserve values for mapping protocol (jsc#SLE-13782). +- fuse: reserve byteswapped init opcodes (jsc#SLE-13782). +- fuse: allow skipping control interface and forced unmount + (jsc#SLE-13782). +- fuse: dissociate DESTROY from fuseblk (jsc#SLE-13782). +- fuse: delete dentry if timeout is zero (jsc#SLE-13782). +- fuse: separate fuse device allocation and installation in + fuse_conn (jsc#SLE-13782). +- fuse: add fuse_iqueue_ops callbacks (jsc#SLE-13782). +- fuse: extract fuse_fill_super_common() (jsc#SLE-13782). +- fuse: export fuse_dequeue_forget() function (jsc#SLE-13782). +- commit ca085b1 + +- fuse: export fuse_get_unique() (jsc#SLE-13782). +- fuse: export fuse_send_init_request() (jsc#SLE-13782). +- fuse: export fuse_len_args() (jsc#SLE-13782). +- fuse: export fuse_end_request() (jsc#SLE-13782). +- fuse: stop copying pages to fuse_req (jsc#SLE-13782). +- fuse: stop copying args to fuse_req (jsc#SLE-13782). +- fuse: clean up fuse_req (jsc#SLE-13782). +- commit 0d1d5ea + +- fuse: simplify request allocation (jsc#SLE-13782). +- Refresh + patches.suse/fuse-fix-parameter-for-fs_ioc_-get-set-flags.patch. +- commit 7f8dfa3 + +- fuse: unexport request ops (jsc#SLE-13782). +- fuse: convert retrieve to simple api (jsc#SLE-13782). +- fuse: convert release to simple api (jsc#SLE-13782). +- cuse: convert init to simple api (jsc#SLE-13782). +- fuse: convert init to simple api (jsc#SLE-13782). +- commit 652a991 + +- fuse: convert writepages to simple api (jsc#SLE-13782). +- Refresh + patches.suse/fuse-don-t-ignore-errors-from-fuse_writepages_fill.patch. +- commit d1549f6 + +- fuse: convert readdir to simple api (jsc#SLE-13782). +- fuse: convert readpages to simple api (jsc#SLE-13782). +- commit f65ef7d + +- fuse: convert direct_io to simple api (jsc#SLE-13782). +- Refresh + patches.suse/fix-up-iter-on-short-count-in-fuse_direct_io.patch. +- commit bfbe398 + +- Update + patches.suse/netfilter-add-and-use-nf_hook_slow_list.patch + (bsc#1176447 bsc#1180765 CVE-2021-20177). + Added CVE number. +- commit 8e9abe5 + +- fuse: add simple background helper (jsc#SLE-13782). +- fuse: convert sync write to simple api (jsc#SLE-13782). +- fuse: covert readpage to simple api (jsc#SLE-13782). +- fuse: fuse_short_read(): don't take fuse_req as argument + (jsc#SLE-13782). +- fuse: convert ioctl to simple api (jsc#SLE-13782). +- commit 960efa9 + +- fuse: move page alloc (jsc#SLE-13782). +- Refresh + patches.suse/fuse-fix-parameter-for-fs_ioc_-get-set-flags.patch. +- commit ae6a2de + +- fuse: convert readlink to simple api (jsc#SLE-13782). +- fuse: add pages to fuse_args (jsc#SLE-13782). +- fuse: convert destroy to simple api (jsc#SLE-13782). +- fuse: add nocreds to fuse_args (jsc#SLE-13782). +- fuse: convert fuse_force_forget() to simple api (jsc#SLE-13782). +- fuse: add noreply to fuse_args (jsc#SLE-13782). +- fuse: convert flush to simple api (jsc#SLE-13782). +- fuse: simplify 'nofail' request (jsc#SLE-13782). +- fuse: rearrange and resize fuse_args fields (jsc#SLE-13782). +- commit 99f9f98 + +- fuse: flatten 'struct fuse_args' (jsc#SLE-13782). +- Refresh patches.suse/fuse-verify-attributes.patch. +- commit ace7210 + +- vfs: subtype handling moved to fuse (jsc#SLE-13782). +- fuse: convert to use the new mount API (jsc#SLE-13782). +- cuse: fix broken release (jsc#SLE-13782). +- commit b7625ea + +- fuse: cleanup fuse_wait_on_page_writeback (jsc#SLE-13782). +- commit 6d24ff2 + +- fuse: require /dev/fuse reads to have enough buffer capacity + (take 2) (jsc#SLE-13782). +- Refresh + patches.suse/fuse-fix-deadlock-with-aio-poll-and-fuse_iqueue-wait.patch. +- commit acb8ea8 + +- kABI fixup for dwc3 introduction of DWC_usb32 (git-fixes). +- commit 03d1108 + +- ALSA: doc: Fix reference to mixart.rst (git-fixes). +- commit b4c3583 + +- ASoC: meson: axg-tdm-interface: fix loopback (git-fixes). +- ASoC: dapm: remove widget from dirty list on free (git-fixes). +- ASoC: Intel: fix error code cnl_set_dsp_D0() (git-fixes). +- commit 04a1c91 + +- ALSA: hda/hdmi - enable runtime pm for CI AMD display audio + (git-fixes). +- ALSA: firewire-tascam: Fix integer overflow in midi_port_work() + (git-fixes). +- ALSA: fireface: Fix integer overflow in transmit_midi_msg() + (git-fixes). +- ALSA: hda/tegra: fix tegra-hda on tegra30 soc (git-fixes). +- clk: tegra30: Add hda clock default rates to clock driver + (git-fixes). +- ALSA: usb-audio: Fix implicit feedback sync setup for Pioneer + devices (git-fixes). +- ALSA: usb-audio: Annotate the endpoint index in audioformat + (git-fixes). +- ALSA: usb-audio: Avoid unnecessary interface re-setup + (git-fixes). +- ALSA: usb-audio: Choose audioformat of a counter-part substream + (git-fixes). +- ALSA: usb-audio: Fix the missing endpoints creations for quirks + (git-fixes). +- ALSA: hda/realtek: fix right sounds and mute/micmute LEDs for + HP machines (git-fixes). +- commit db30ae4 + +- x86/apic: Fix x2apic enablement without interrupt remapping + (bsc#1152489). +- commit a8a5227 + +- netfilter: add and use nf_hook_slow_list() (bsc#1180765 + CVE-2021-20177). +- commit 465dae1 + +- Refresh patches.suse/edac-amd64-add-amd-family-17h-model-60h-pci-ids.patch. + Complete the backport now that + 5e4c55276ae8 ("EDAC/amd64: Save max number of controllers to family type") + has been backported too. +- commit f6cb75f + +- usb: dwc3: Add support for DWC_usb32 IP (git-fixes). +- commit f699093 + +- Input: elantech - fix protocol errors for some trackpoints in + SMBus mode (bsc#1180870). +- Input: elan_i2c - add new trackpoint report type 0x5F + (bsc#1180870). +- Input: synaptics - demote non-conformant kernel-doc header + (bsc#1180870). +- Input: elan_i2c_core - move header inclusion inside + (bsc#1180870). +- Input: elantech - demote obvious abuse of kernel-doc header + (bsc#1180870). +- Input: elan_i2c - fix firmware update on newer ICs + (bsc#1180870). +- Input: synaptics - enable InterTouch for ThinkPad T14 Gen 1 + (bsc#1180870). +- commit d5ab100 + +- Input: synaptics - enable InterTouch for ThinkPad P1/X1E gen 2 + (bsc#1180870). +- Input: synaptics-rmi4 - rename f30_data to gpio_data + (bsc#1180870). +- Input: elan_i2c - add ic type 0x15 (bsc#1180870). +- Input: elan_i2c - add support for high resolution reports + (bsc#1180870). +- Input: elan_i2c - do not constantly re-query pattern ID + (bsc#1180870). +- Input: elan_i2c - add firmware update info for ICs 0x11, 0x13, + 0x14 (bsc#1180870). +- Input: elan_i2c - handle firmware updated on newer ICs + (bsc#1180870). +- Input: elan_i2c - add support for different firmware page sizes + (bsc#1180870). +- Input: elan_i2c - fix detecting IAP version on older controllers + (bsc#1180870). +- Input: elan_i2c - handle devices with patterns above 1 + (bsc#1180870). +- commit 8cfe63d + +- Input: elan_i2c - make fetching IC type of older controllers + more robust (bsc#1180870). +- Input: elan_i2c - handle firmware not implementing "get pattern" + command (bsc#1180870). +- Input: elantech - remove redundant assignments to variable error + (bsc#1180870). +- Input: introduce input_mt_report_slot_inactive() (bsc#1180870). +- Input: psmouse - drop all unneeded functions from mouse headers + (bsc#1180870). +- Input: synaptics - fix a typo (bsc#1180870). +- Input: elan_i2c - switch to using devm_add_action_or_reset() + (bsc#1180870). +- Input: elan_i2c - switch to using devm_device_add_groups() + (bsc#1180870). +- commit 6509eab + +- nvmem: Add driver to expose reserved memory as nvmem (jsc#SLE-SLE-16616). +- Update config files: Enable nvmem-rmem as module on arm64 & armv7+lpae, disable it otherwise +- supported.conf: Add nvmem-rmem + This is needed early to get boot-loader configuration working on RPi4; + an essential feature. +- commit 212522b + +- usb: dwc3: Update soft-reset wait polling rate (git-fixes). +- commit 227b9e8 + +- drivers/perf: hisi: Permit modular builds of HiSilicon uncore drivers (bsc#1180848). - Update config files. - supported.conf: +- commit 3ceea3c + +- scsi: scsi_transport_srp: Don't block target in failfast state + (bsc#1172355). +- commit 4d51a17 + +- xen: support having only one event pending per watch + (bsc#1179508 XSA-349 CVE-2020-29568). +- commit b454020 + +- xen: revert Allow watches discard events before queueing + (bsc#1179508 XSA-349 CVE-2020-29568). +- commit 7a45cd4 + +- xen: revert Add 'will_handle' callback support in + xenbus_watch_path() (bsc#1179508 XSA-349 CVE-2020-29568). +- commit b9e03df + +- xen: revert Support will_handle watch callback (bsc#1179508 + XSA-349 CVE-2020-29568). +- commit 3082598 + +- xen: revert Count pending messages for each watch (bsc#1179508 + XSA-349 CVE-2020-29568). +- commit 9d4ca48 + +- video: fbdev: atmel_lcdfb: fix return error code in + atmel_lcdfb_of_init() (git-fixes). +- video: fbdev: vga16fb: fix setting of pixclock because a + pass-by-value error (git-fixes). +- video: fbdev: pvr2fb: initialize variables (git-fixes). +- video: fbdev: fix OOB read in vga_8planes_imageblit() + (git-fixes). +- commit 7cdcf45 + +- xen: revert Disallow pending watch messages (bsc#1179508 + XSA-349 CVE-2020-29568). +- commit a948c9f + +- ntb: idt: fix error check in ntb_hw_idt.c (jsc#SLE-13360). +- commit 93a77b3 + +- usb: gadget: enable super speed plus (git-fixes). +- USB: serial: option: add LongSung M5710 module support + (git-fixes). +- USB: serial: option: add Quectel EM160R-GL (git-fixes). +- usb: uas: Add PNY USB Portable SSD to unusual_uas (git-fixes). +- usb: gadget: configfs: Fix use-after-free issue with udc_name + (git-fixes). +- USB: usblp: fix DMA to stack (git-fixes). +- usb: gadget: Fix spinlock lockup on usb_function_deactivate + (git-fixes). +- usb: gadget: function: printer: Fix a memory leak for interface + descriptor (git-fixes). +- USB: cdc-wdm: Fix use after free in + service_outstanding_interrupt() (git-fixes). +- USB: cdc-acm: blacklist another IR Droid device (git-fixes). +- crypto: asym_tpm: correct zero out potential secrets + (git-fixes). +- net: usb: qmi_wwan: add Quectel EM160R-GL (git-fixes). +- CDC-NCM: remove "connected" log message (git-fixes). +- ethernet: ucc_geth: fix use-after-free in ucc_geth_remove() + (git-fixes). +- lib/genalloc: fix the overflow when size is too big (git-fixes). +- Bluetooth: revert: hci_h5: close serdev device and free hu in + h5_close (git-fixes). +- commit 052b915 + +- drm/panfrost: Move the GPU reset bits outside the timeout + handler (git-fixes). +- drm/panfrost: don't use pfdevfreq.busy_count to know if hw is + idle (git-fixes). +- commit 173f5a4 + +- drm/panfrost: Remove unused variables in panfrost_job_close() + (git-fixes). +- commit 11a7e60 + +- drm/panfrost: Don't corrupt the queue mutex on open/close + (git-fixes). +- commit a5f75e8 + +- drm/i915/dp: Track pm_qos per connector (git-fixes). +- drm/i915: clear the shadow batch (git-fixes). +- drm/i915: Fix mismatch between misplaced vma check and vma + insert (git-fixes). +- drm/amd/display: updated wm table for Renoir (git-fixes). +- drm/meson: dw-hdmi: Enable the iahb clock early enough + (git-fixes). +- commit 11d51e1 + +- drm/meson: dw-hdmi: Disable clocks on driver teardown + (git-fixes). +- drm/edid: fix objtool warning in drm_cvt_modes() (git-fixes). +- drm/amdkfd: Fix leak in dmabuf import (git-fixes). +- drm/amd/display: Prevent bandwidth overflow (git-fixes). +- drm/amdgpu: fix compute queue priority if num_kcq is less than 4 + (git-fixes). +- drm/msm/dsi_phy_10nm: implement PHY disabling (git-fixes). +- drm/msm/dsi_pll_10nm: restore VCO rate during restore_state + (git-fixes). +- drm/msm/dpu: Add newline to printks (git-fixes). +- drm/mediatek: Use correct aliases name for ovl (git-fixes). +- drm/meson: dw-hdmi: Ensure that clocks are enabled before + touching the TOP registers (git-fixes). +- commit d189b05 + +- drm/meson: dw-hdmi: Register a callback to disable the regulator + (git-fixes). +- drm/meson: Unbind all connectors on module removal (git-fixes). +- drm/meson: Free RDMA resources after tearing down DRM + (git-fixes). +- drm/omap: dmm_tiler: fix return error code in omap_dmm_probe() + (git-fixes). +- drm/udl: Fix missing error code in udl_handle_damage() + (git-fixes). +- drm/i915: Avoid mixing integer types during batch copies + (git-fixes). +- drm/amdgpu: fix build_coefficients() argument (git-fixes). +- drm/amdgpu: fix incorrect enum type (git-fixes). +- drm/amd/display: remove useless if/else (git-fixes). +- commit 714ea88 + +- drm/i915/tgl: Fix Combo PHY DPLL fractional divider for 38.4MHz + ref clock (git-fixes). +- drm/panel: simple: Add flags to boe_nv133fhm_n61 (git-fixes). +- drm/edid: Fix uninitialized variable in drm_cvt_modes() + (git-fixes). +- drm/bridge: tpd12s015: Fix irq registering in tpd12s015_probe + (git-fixes). +- drm/tve200: Fix handling of platform_get_irq() error + (git-fixes). +- drm/mcde: Fix handling of platform_get_irq() error (git-fixes). +- drm/dp_aux_dev: check aux_dev before use in + drm_dp_aux_dev_get_by_minor() (git-fixes). +- drm/aspeed: Fix Kconfig warning & subsequent build errors + (git-fixes). +- drm/panfrost: Fix job timeout handling (git-fixes). +- commit 2743044 + +- scsi: qedi: Correct max length of CHAP secret (bsc#1180221). +- commit 5b6934e + +- fix patch metadata +- fix Patch-mainline: + patches.suse/sched-fair-Check-for-idle-core-in-wake_affine.patch +- commit b5830a4 + +- drm/gma500: fix double free of gma_connector (git-fixes). +- drm/i915/gt: Declare gen9 has 64 mocs entries! (git-fixes). +- drm/i915/display/dp: Compute the correct slice count for VDSC + on DP (git-fixes). +- drm/i915/gt: Cancel the preemption timeout on responding to it + (git-fixes). +- drm/i915/gt: Ignore repeated attempts to suspend request flow + across reset (git-fixes). +- drm/i915/gem: Propagate error from cancelled submit due to + context closure (git-fixes). +- drm/amdgpu: fix sdma instance fw version and feature version + init (git-fixes). +- drm/amdgpu/disply: set num_crtc earlier (git-fixes). +- drm/omap: sdi: fix bridge enable/disable (git-fixes). +- drm/panel: sony-acx565akm: Fix race condition in probe + (git-fixes). +- commit cdc5bb1 + +- drm/rockchip: Avoid uninitialized use of endpoint id in LVDS + (git-fixes). +- drm/amdgpu/vcn3.0: remove old DPG workaround (git-fixes). +- drm/amdgpu/vcn3.0: stall DPG when WPTR/RPTR reset (git-fixes). +- drm/amd/display: Init clock value by current vbios CLKs + (git-fixes). +- drm/i915/gt: Limit frequency drop to RPe on parking (git-fixes). +- drm/i915/gt: Retain default context state across shrinking + (git-fixes). +- drm/i915/gt: Program mocs:63 for cache eviction on gen9 + (git-fixes). +- drm/tegra: sor: Disable clocks on error in tegra_sor_init() + (git-fixes). +- drm/tegra: replace idr_init() by idr_init_base() (git-fixes). +- drm/nouveau: fix relocations applying logic and a double-free + (git-fixes). +- commit 83684ef + +- drm/mediatek: dsi: Modify horizontal front/back porch byte + formula (git-fixes). +- drm/exynos: depend on COMMON_CLK to fix compile tests + (git-fixes). +- drm/i915/gt: Free stale request on destroying the virtual engine + (git-fixes). +- drm/i915/perf: workaround register corruption in OATAILPTR + (git-fixes). +- drm/amdgpu: update golden setting for sienna_cichlid + (git-fixes). +- drm/amd/display: Avoid HDCP initialization in devices without + output (git-fixes). +- drm/amdgpu: fix a page fault (git-fixes). +- drm/amdgpu: fix SI UVD firmware validate resume fail + (git-fixes). +- drm/amd/amdgpu: fix null pointer in runtime pm (git-fixes). +- drm/i915/gt: Fixup tgl mocs for PTE tracking (git-fixes). +- commit 4d0b8ee + +- blacklist.conf: 4f8af077a02e docs: Fix reST markup when linking to sections +- commit 28e1ebf + +- drm/i915/gvt: return error when failing to take the module + reference (git-fixes). +- drm/i915/gvt: Set ENHANCED_FRAME_CAP bit (git-fixes). +- drm/i915: Handle max_bpc==16 (git-fixes). +- drm/i915/selftests: Fix wrong return value of + perf_request_latency() (git-fixes). +- drm/i915/selftests: Fix wrong return value of + perf_series_engines() (git-fixes). +- drm/i915: Avoid memory leak with more than 16 workarounds on + a list (git-fixes). +- drm/i915/tgl: Fix Media power gate sequence (git-fixes). +- drm/sun4i: dw-hdmi: fix error return code in + sun8i_dw_hdmi_bind() (git-fixes). +- drm: bridge: dw-hdmi: Avoid resetting force in the detect + function (git-fixes). +- drm/amd/display: Add missing pflip irq for dcn2.0 (git-fixes). +- commit c514745 + +- drm/amd/display: Add missing pflip irq (git-fixes). +- drm/i915: Correctly set SFC capability for video engines + (git-fixes). +- drm/gma500: Fix out-of-bounds access to struct + drm_device.vblank[] (git-fixes). +- drm/panfrost: Fix module unload (git-fixes). +- drm/panfrost: Fix a deadlock between the shrinker and madvise + path (git-fixes). +- drm/amdgpu: resolved ASD loading issue on sienna (git-fixes). +- drm/amdgpu: update golden setting for sienna_cichlid + (git-fixes). +- drm/amdgpu: perform srbm soft reset always on SDMA resume + (git-fixes). +- drm/i915: Fix encoder lookup during PSR atomic check + (git-fixes). +- drm/i915/gt: Use the local HWSP offset during submission + (git-fixes). +- commit f811a3d + +- drm/i915/gvt: Only pin/unpin intel_context along with workload + (git-fixes). +- drm/imx: parallel-display: remove unused function enc_to_imxpd() + (git-fixes). +- drm/i915: Reject 90/270 degree rotated initial fbs (git-fixes). +- drm/i915: Restore ILK-M RPS support (git-fixes). +- drm/i915/region: fix max size calculation (git-fixes). +- drm/nouveau/device: fix changing endianess code to work on + older GPUs (git-fixes). +- drm/nouveau/gem: fix "refcount_t: underflow; use-after-free" + (git-fixes). +- drm/nouveau/kms/nv50-: Program notifier offset before requesting + disp caps (git-fixes). +- drm/nouveau/nouveau: fix the start/end range for migration + (git-fixes). +- drm/shme-helpers: Fix dma_buf_mmap forwarding bug (git-fixes). +- commit f9a03a3 + +- drm/v3d: Fix double free in v3d_submit_cl_ioctl() (git-fixes). +- drm/sun4i: frontend: Fix the scaler phase on A33 (git-fixes). +- drm/sun4i: frontend: Reuse the ch0 phase for RGB formats + (git-fixes). +- drm/sun4i: frontend: Rework a bit the phase data (git-fixes). +- drm/amd/display: Don't invoke kgdb_breakpoint() unconditionally + (git-fixes). +- drm/amd/display: Fix kernel panic by dal_gpio_open() error + (git-fixes). +- drm/amd/display: adding ddc_gpio_vga_reg_list to ddc reg def'ns + (git-fixes). +- drm/amdgpu: increase the reserved VM size to 2MB (git-fixes). +- drm/amd/display: Fixed panic during seamless boot (git-fixes). +- drm/amdgpu: don't map BO in reserved region (git-fixes). +- commit adc6b7e + +- drm/amdgpu: add DID for navi10 blockchain SKU (git-fixes). +- drm/amdgpu: disable DCN and VCN for navi10 blockchain SKU(v3) + (git-fixes). +- drm/i915: Drop runtime-pm assert from vgpu io accessors + (git-fixes). +- drm/i915: Force VT'd workarounds when running as a guest OS + (git-fixes). +- drm/i915: Exclude low pages (128KiB) of stolen from use + (git-fixes). +- drm/i915: Use the active reference on the vma while capturing + (git-fixes). +- drm/i915/gt: Undo forced context restores after trivial + preemptions (git-fixes). +- drm/i915/gt: Delay execlist processing for tgl (git-fixes). +- drm/i915: Mark ininitial fb obj as WT on eLLC machines to + avoid rcu lockup during fbdev init (git-fixes). +- drm/i915/gt: Initialize reserved and unspecified MOCS indices + (git-fixes). +- commit fdd5a7c + +- drm/i915/dp: Tweak initial dpcd backlight.enabled value + (git-fixes). +- drm/amdgpu: correct the cu and rb info for sienna cichlid + (git-fixes). +- drm/amdkfd: Use same SQ prefetch setting as amdgpu (git-fixes). +- drm/amd/psp: Fix sysfs: cannot create duplicate filename + (git-fixes). +- drm/amd/display: Avoid MST manager resource leak (git-fixes). +- drm/amdgpu: update golden setting for sienna_cichlid + (git-fixes). +- drm/amdgpu: correct the gpu reset handling for job != NULL case + (git-fixes). +- drm/amdgpu: add rlc iram and dram firmware support (git-fixes). +- drm/amdgpu: add function to program pbb mode for sienna cichlid + (git-fixes). +- drm/ttm: fix eviction valuable range check (git-fixes). +- commit 6b6cb10 + +- drm/i915: Set all unused color plane offsets to ~0xfff again + (git-fixes). +- drm/i915: Fix TGL DKL PHY DP vswing handling (git-fixes). +- drm/amdgpu: vcn and jpeg ring synchronization (git-fixes). +- drm/amdgpu: Fix invalid number of character '{' in + amdgpu_acpi_init (git-fixes). +- drm/amd/display: HDMI remote sink need mode validation for Linux + (git-fixes). +- drm/amd/display: Avoid set zero in the requested clk + (git-fixes). +- drm/amd/display: Increase timeout for DP Disable (git-fixes). +- drm/amd/display: Fix incorrect backlight register offset for + DCN (git-fixes). +- drm/i915/gem: Always test execution status on closing the + context (git-fixes). +- drm/i915/gt: Always send a pulse down the engine after disabling + heartbeat (git-fixes). +- commit 6c3296a + +- drm/i915: Cancel outstanding work after disabling heartbeats + on an engine (git-fixes). +- drm/i915/gem: Serialise debugfs i915_gem_objects with ctx->mutex + (git-fixes). +- drm/i915: Break up error capture compression loops with + cond_resched() (git-fixes). +- drm/i915/gem: Prevent using pgprot_writecombine() if PAT is + not supported (git-fixes). +- drm/i915: Fix state checker hw.active/hw.enable readout + (git-fixes). +- drm/msm: Fix the a650 hw_apriv check (git-fixes). +- drm/msm/a6xx: fix a potential overflow issue (git-fixes). +- drm/msm/adreno: fix probe without iommu (git-fixes). +- drm/panfrost: add Amlogic GPU integration quirks (git-fixes). +- drm/panfrost: add amlogic reset quirk callback (git-fixes). +- commit dde6379 + +- drm/panfrost: add support for vendor quirk (git-fixes). +- drm: fix double free for gbo in drm_gem_vram_init and + drm_gem_vram_create (git-fixes). +- drm/xlnx: Use devm_drm_dev_alloc (git-fixes). +- drm/bridge/synopsys: dsi: add support for non-continuous HS + clock (git-fixes). +- drm/amd/display: Delete duplicated argument to '&&' or '||' + (git-fixes). +- drm/amdgpu: No sysfs, not an error condition (git-fixes). +- drm/amd/display: Check clock table return (git-fixes). +- drm: panfrost: fix common struct sg_table related issues + (git-fixes). +- drm: lima: fix common struct sg_table related issues + (git-fixes). +- commit 0a6baa2 + +- drm: exynos: fix common struct sg_table related issues + (git-fixes). +- drm/vkms: avoid warning in vkms_get_vblank_timestamp + (git-fixes). +- drm/amdgpu: fix max_entries calculation v4 (git-fixes). +- drm/amd/display: fix potential integer overflow when shifting + 32 bit variable bl_pwm (git-fixes). +- drm/scheduler: Scheduler priority fixes (v2) (git-fixes). +- drm/amd/display: Screen corruption on dual displays (DP+USB-C) + (git-fixes). +- drm/amd/display: Disconnect pipe separetely when disable pipe + split (git-fixes). +- drm/amdgpu: restore ras flags when user resets eeprom(v2) + (git-fixes). +- Revert "drm/amdgpu: Fix NULL dereference in dpm sysfs handlers" + (git-fixes). +- drm/amdgpu: Remove redundant NULL check (git-fixes). +- commit cf5d051 + +- drm/bridge_connector: Set default status connected for eDP + connectors (git-fixes). +- drm/brige/megachips: Add checking if ge_b850v3_lvds_init() + is working correctly (git-fixes). +- drm/malidp: Use struct drm_gem_object_funcs.get_sg_table + internally (git-fixes). +- drm/hisilicon: Code refactoring for hibmc_drv_de (git-fixes). +- drm/vkms: add missing platform_device_unregister() in + vkms_init() (git-fixes). +- drm/vgem: add missing platform_device_unregister() in + vgem_init() (git-fixes). +- drm/panfrost: perfcnt: fix ref count leak in + panfrost_perfcnt_enable_locked (git-fixes). +- drm/panfrost: move devfreq_init()/fini() in device (git-fixes). +- drm/panfrost: rename error labels in device_init (git-fixes). +- commit 86204b1 + +- dma-buf/dma-resv: Respect num_fences when initializing the + shared fence list (git-fixes). +- drm/mediatek: set dpi pin mode to gpio low to avoid leakage + current (git-fixes). +- drm/i915: Stub out i915_gpu_coredump_put (git-fixes). +- commit 145aef1 + +- Bluetooth: Fix attempting to set RPA timeout when unsupported + (git-fixes). +- commit d1047e2 + +- usb: dwc3: core: Properly default unspecified speed (git-fixes). +- commit 777b42e + +- x86/sev-es: Fix SEV-ES OUT/IN immediate opcode vc handling + (bsc#1178134). +- commit 0b7cd9d + +- x86/resctrl: Don't move a task to the same resource group + (bsc#1152489). +- commit 8a696c5 + +- x86/resctrl: Use an IPI instead of task_work_add() to update + PQR_ASSOC MSR (bsc#1152489). +- commit 309f3cb + +- x86/mtrr: Correct the range check before performing MTRR type + lookups (bsc#1152489). +- commit 41cceca + +- x86/mm: Fix leak of pmd ptlock (bsc#1152489). +- commit cb571f0 + +- btrfs: fix missing delalloc new bit for new delalloc ranges + (bsc#1180773). +- btrfs: make btrfs_dirty_pages take btrfs_inode (bsc#1180773). +- btrfs: make btrfs_set_extent_delalloc take btrfs_inode + (bsc#1180773). +- commit fba9b10 + +- IB/hfi1: Ensure correct mm is used at all times (bsc#1179878 + CVE-2020-27835). +- IB/hfi1: Remove module parameter for KDETH qpns (bsc#1179878). +- IB/hfi1: Remove kobj from hfi1_devdata (bsc#1179878). +- commit 79bac5c + +- regmap: debugfs: Fix a reversed if statement in + regmap_debugfs_init() (git-fixes). +- commit 6e1e482 + +- USB: serial: iuu_phoenix: fix DMA from stack (git-fixes). +- usb: gadget: configfs: Preserve function ordering after bind + failure (git-fixes). +- usb: gadget: select CONFIG_CRC32 (git-fixes). +- usb: usbip: vhci_hcd: protect shift size (git-fixes). +- usb: gadget: f_uac2: reset wMaxPacketSize (git-fixes). +- usb: dwc3: ulpi: Use VStsDone to detect PHY regs access + completion (git-fixes). +- USB: yurex: fix control-URB timeout handling (git-fixes). +- usb: chipidea: ci_hdrc_imx: add missing put_device() call in + usbmisc_get_init_data() (git-fixes). +- usb: gadget: u_ether: Fix MTU size mismatch with RX packet size + (git-fixes). +- USB: gadget: legacy: fix return error code in acm_ms_bind() + (git-fixes). +- USB: xhci: fix U1/U2 handling for hardware with XHCI_INTEL_HOST + quirk set (git-fixes). +- staging: mt7621-dma: Fix a resource leak in an error handling + path (git-fixes). +- dmaengine: xilinx_dma: fix mixed_enum_type coverity warning + (git-fixes). +- dmaengine: xilinx_dma: fix incompatible param warning in + _child_probe() (git-fixes). +- dmaengine: xilinx_dma: check dma_async_device_register return + value (git-fixes). +- dmaengine: dw-edma: Fix use after free in dw_edma_alloc_chunk() + (git-fixes). +- dmaengine: mediatek: mtk-hsdma: Fix a resource leak in the + error handling path of the probe function (git-fixes). +- i2c: i801: Fix the i2c-mux gpiod_lookup_table not being properly + terminated (git-fixes). +- i2c: sprd: use a specific timeout to avoid system hang up issue + (git-fixes). +- wan: ds26522: select CONFIG_BITREVERSE (git-fixes). +- wil6210: select CONFIG_CRC32 (git-fixes). +- crypto: ecdh - avoid buffer overflow in ecdh_set_secret() + (git-fixes). +- spi: stm32: FIFO threshold level - fix align packet size + (git-fixes). +- regmap: debugfs: Fix a memory leak when calling + regmap_attach_dev (git-fixes). +- dmaengine: at_hdmac: add missing kfree() call in at_dma_xlate() + (git-fixes). +- dmaengine: at_hdmac: add missing put_device() call in + at_dma_xlate() (git-fixes). +- dmaengine: at_hdmac: Substitute kzalloc with kmalloc + (git-fixes). +- commit da0ba2f + +- sched/fair: Check for idle core in wake_affine (git fixes + (sched)). +- commit 2caffed + +- arm64: mm: Fix ARCH_LOW_ADDRESS_LIMIT when !CONFIG_ZONE_DMA + (git-fixes). +- commit 52bc22f + +- blacklist.conf: 2c2b3ad2c4c8 ("spi: spi-fsl-dspi: Use max_native_cs + instead of num_chipselect to set SPI_MCR") + Depends on 7d93aecdb58d4 ("spi: Add generic support for unused native cs + with cs-gpios") which at the moment is not worth back-porting as it'll + break kABI. +- commit bafcdfd + +- xen-blkback: set ring->xenblkd to NULL after kthread_stop() + (bsc#1179509 XSA-350 CVE-2020-29569). +- commit 552ca06 + +- xenbus/xenbus_backend: Disallow pending watch messages + (bsc#1179508 XSA-349 CVE-2020-29568). +- commit b293dfc + +- xen/xenbus: Count pending messages for each watch (bsc#1179508 + XSA-349 CVE-2020-29568). +- commit d8a62d9 + +- xen/xenbus/xen_bus_type: Support will_handle watch callback + (bsc#1179508 XSA-349 CVE-2020-29568). +- commit 8be4352 + +- xen/xenbus: Add 'will_handle' callback support in + xenbus_watch_path() (bsc#1179508 XSA-349 CVE-2020-29568). +- commit 4383a8c + +- xen/xenbus: Allow watches discard events before queueing + (bsc#1179508 XSA-349 CVE-2020-29568). +- commit ec8d064 + +- drm: bail out of nouveau_channel_new if channel init fails + (CVE-2020-25639 bsc#1176846). +- commit 1ef70aa + +- nvme-multipath: fix bogus request queue reference put + (bsc#1175389). +- commit ef51578 + +- selftests/bpf: Move and extend ASSERT_xxx() testing macros + (bsc#1177028). +- libbpf: Add __noinline macro to bpf_helpers.h (bsc#1177028). +- commit 630edda + +- Move "btrfs: qgroup: don't try to wait flushing if we're already holding + a transaction (bsc#1179575)." to sorted section +- commit 464edf7 + +- Refresh patches.suse/nvdimm-Avoid-race-between-probe-and-reading-device-a.patch. + Refresh to v2 URL +- commit 82e37f2 + +- blacklist.conf: 44623b2818f4 crypto: x86/crc32c - fix building with clang ias +- commit 4260c52 + +- x86/mm/numa: Remove uninitialized_var() usage (bsc#1152489). +- commit ec737c3 + +- mm: fix phys_to_target_node() and memory_add_physaddr_to_nid() + exports (jsc#SLE-14344). +- device-dax/kmem: fix resource release (jsc#SLE-14344). +- device-dax: add a range mapping allocation attribute + (jsc#SLE-14344). +- dax/hmem: introduce dax_hmem.region_idle parameter + (jsc#SLE-14344). +- device-dax: add an 'align' attribute (jsc#SLE-14344). +- device-dax: make align a per-device property (jsc#SLE-14344). +- device-dax: introduce 'mapping' devices (jsc#SLE-14344). +- device-dax: add dis-contiguous resource support (jsc#SLE-14344). +- mm/memremap_pages: support multiple ranges per invocation + (jsc#SLE-14344). +- mm/memremap_pages: convert to 'struct range' (jsc#SLE-14368). +- device-dax: add resize support (jsc#SLE-14344). +- drivers/base: make device_find_child_by_name() compatible with + sysfs inputs (jsc#SLE-14344). +- device-dax: introduce 'seed' devices (jsc#SLE-14344). +- device-dax: introduce 'struct dev_dax' typed-driver operations + (jsc#SLE-14344). +- device-dax: add an allocation interface for device-dax instances + (jsc#SLE-14344). +- device-dax/kmem: replace release_resource() with + release_mem_region() (jsc#SLE-14344). +- device-dax/kmem: move resource name tracking to drvdata + (jsc#SLE-14344). +- device-dax/kmem: introduce dax_kmem_range() (jsc#SLE-14344). +- device-dax: make pgmap optional for instance creation + (jsc#SLE-14344). +- device-dax: move instance creation parameters to 'struct + dev_dax_data' (jsc#SLE-14344). +- device-dax: drop the dax_region.pfn_flags attribute + (jsc#SLE-14344). +- ACPI: HMAT: attach a device for each soft-reserved range + (jsc#SLE-14344). +- mm/memory_hotplug: introduce default phys_to_target_node() + implementation (jsc#SLE-14344). +- resource: report parent to walk_iomem_res_desc() callback + (jsc#SLE-14344). +- ACPI: HMAT: refactor hmat_register_target_device to + hmem_register_device (jsc#SLE-14344). +- efi/fake_mem: arrange for a resource entry per efi_fake_mem + instance (jsc#SLE-14344). +- x86/numa: add 'nohmat' option (jsc#SLE-14344). +- x86/numa: cleanup configuration dependent command-line options + (jsc#SLE-14344). +- mm/memory_hotplug: introduce default dummy + memory_add_physaddr_to_nid() (jsc#SLE-14344). +- device-dax: add memory via add_memory_driver_managed() + (jsc#SLE-14344). +- commit 5becd55 + +- mm/memory_hotplug: introduce add_memory_driver_managed() + (jsc#SLE-14344). +- Refresh for the above patch, + patches.suse/0001-mm-don-t-panic-when-links-can-t-be-created-in-sysfs.patch. +- commit 788a9a9 + +- device-dax: don't leak kernel memory to user space after + unloading kmem (jsc#SLE-14344). +- commit b01827a + +- mm/memremap: set caching mode for PCI P2PDMA memory to WC + (jsc#SLE-14344). +- Refresh for the above patch, + patches.suse/1933-memremap-rename-MEMORY_DEVICE_DEVDAX-to-MEMORY_DEVIC.patch. +- commit 4730420 + +- series.conf: refresh +- update upstream reference and resort: + patches.suse/ibmvnic-continue-fatal-error-reset-after-passive-ini.patch +- commit c554179 + +- mm/memory_hotplug: add pgprot_t to mhp_params (jsc#SLE-14344). +- Refresh for the above patch, + patches.suse/powerpc-mm-Limit-resize_hpt_for_hotplug-call-to-hash.patch. +- commit 92a2c86 + +- powerpc/mm: thread pgprot_t through create_section_mapping() + (jsc#SLE-14344). +- Refresh for the above patch, + patches.suse/powerpc-mm-Limit-resize_hpt_for_hotplug-call-to-hash.patch. + patches.suse/powerpc-mm-radix-Create-separate-mappings-for-hot-pl.patch. + patches.suse/powerpc-mm-radix-Remove-split_kernel_mapping.patch. +- commit 22697fb + +- ntb: intel: add Intel NTB LTR vendor support for gen4 NTB + (jsc#SLE-12710). +- commit 22de07c + +- x86/mm: thread pgprot_t through init_memory_mapping() + (jsc#SLE-14344). +- Refresh for the above patch, + patches.suse/x86-platform-uv-Remove-uv-bios-and-efi-code-related-.patch. +- commit 9cc6133 + +- mm/memory_hotplug: rename mhp_restrictions to mhp_params + (jsc#SLE-14368). +- mm/memory_hotplug: drop the flags field from struct + mhp_restrictions (jsc#SLE-14344). +- dax: Move mandatory ->zero_page_range() check in alloc_dax() + (jsc#SLE-14344). +- libnvdimm/e820: Retrieve and populate correct 'target_node' + info (jsc#SLE-14344). +- x86/NUMA: Provide a range-to-target_node lookup facility + (jsc#SLE-14344). +- x86/mm: Introduce CONFIG_NUMA_KEEP_MEMINFO (jsc#SLE-14344). +- Update following config files for the above patch, + config/arm64/default + config/ppc64le/default + config/s390x/default + config/x86_64/default +- commit 3d588c7 + +- powerpc/papr_scm: Switch to numa_map_to_online_node() + (jsc#SLE-14344). +- Refresh for the above patch, + patches.suse/powerpc-papr_scm-Fetch-nvdimm-health-information-fro.patch. + patches.suse/powerpc-papr_scm-Fetch-nvdimm-performance-stats-from.patch. +- commit 9f14d6c + +- mm/numa: Skip NUMA_NO_NODE and online nodes in + numa_map_to_online_node() (jsc#SLE-14344). +- commit f7082df + +- mm/memory_hotplug.c: add a bounds check to __add_pages() + (jsc#SLE-14344). +- dax: Add numa_node to the default device-dax attributes + (jsc#SLE-14344). +- dax: Simplify root read-only definition for the 'resource' + attribute (jsc#SLE-14344). +- dax: Create a dax device_type (jsc#SLE-14344). +- dax: Fix alloc_dax_region() compile warning (jsc#SLE-14344). +- commit 4c51fce + +- Update kabi files. +- update from January 2021 maintenance update submission (commit 4ff469b6e1a0) +- commit a9bc2aa + +- ALSA: usb-audio: Add alias entry for ASUS PRIME TRX40 PRO-S + (git-fixes). +- ACPI: HMAT: Fix handling of changes from ACPI 6.2 to ACPI 6.3 + (git-fixes). +- ACPI: Add out of bounds and numa_off protections to + pxm_to_node() (git-fixes). +- ehci-hcd: Move include to keep CRC stable (git-fixes). +- commit 407490e + +- bus/fsl_mc: Do not rely on caller to provide non NULL mc_io + (git-fixes). +- commit e4eab60 + +- ALSA: hda/realtek - Modify Dell platform name (git-fixes). +- ALSA: hda/realtek - Supported Dell fixed type headset + (git-fixes). +- ALSA: hda/realtek: Remove dummy lineout on Acer TravelMate + P648/P658 (git-fixes). +- commit 5e10442 + +- Move upstreamed sound patch into sorted section +- commit 0c5f21f + +- r8169: work around power-saving bug on some chip versions + (git-fixes). +- ALSA: pcm: Clear the full allocated memory at hw_params + (git-fixes). +- rtc: pl031: fix resource leak in pl031_probe (git-fixes). +- rtc: sun6i: Fix memleak in sun6i_rtc_clk_init (git-fixes). +- i3c master: fix missing destroy_workqueue() on error in + i3c_master_register (git-fixes). +- misc: vmw_vmci: fix kernel info-leak by initializing dbells + in vmci_ctx_get_chkpt_doorbells() (git-fixes). +- xhci: Give USB2 ports time to enter U3 in bus suspend + (git-fixes). +- USB: dummy-hcd: Fix uninitialized array use in init() + (git-fixes). +- Bluetooth: hci_h5: close serdev device and free hu in h5_close + (git-fixes). +- media: gp8psk: initialize stats at power control logic + (git-fixes). +- staging: wlan-ng: fix out of bounds read in + prism2sta_probe_usb() (git-fixes). +- commit 57824b9 + +- ALSA: hda/via: Fix runtime PM for Clevo W35xSS (git-fixes). +- ALSA: usb-audio: Add quirk for RC-505 (git-fixes). +- ALSA: hda/realtek: Enable mute and micmute LED on HP EliteBook + 850 G7 (git-fixes). +- ALSA: hda/realtek: Add two "Intel Reference board" SSID in + the ALC256 (git-fixes). +- ALSA: hda/realtek: Add mute LED quirk for more HP laptops + (git-fixes). +- ALSA: hda/conexant: add a new hda codec CX11970 (git-fixes). +- ALSA: usb-audio: Add quirk for BOSS AD-10 (git-fixes). +- ALSA: usb-audio: Fix UBSAN warnings for MIDI jacks (git-fixes). +- ALSA: hda/realtek - Fix speaker volume control on Lenovo C940 + (git-fixes). +- commit 3b01e24 + +- powerpc/sstep: Fix array out of bound warning (bsc#1180581 + ltc#190174). +- Delete patches.suse/powerpc-sstep-Add-testcases-for-VSX-vector-paired-lo.patch (bsc#1180581 ltc#190174). + Drop test for the broken emulation, too. +- commit 346e1c7 + +- powerpc/test_emulate_step: Add testcases for divde[.] and + divdeu[.] instructions (bsc#1180581 ltc#190174). +- commit 98eaae4 + +- powerpc/sstep: Add support for divde[.] and + divdeu[.] instructions (bsc#1180581 ltc#190174). +- powerpc/ppc-opcode: Add divde and divdeu opcodes (bsc#1180581 + ltc#190174). +- commit 4565dda + +- Delete patches.suse/powerpc-sstep-Support-VSX-vector-paired-storage-acce.patch (bsc#1180581 ltc#190174). + Drop patch causing array overflow. +- commit ee77681 + +- drivers/base/memory.c: cache memory blocks in xarray to + accelerate lookup (bsc#1159955 ltc#182993). +- Delete patches.suse/drivers-base-memory.c-cache-blocks-in-radix-tree-to-.patch. + Refresh to upstream patch. +- commit 7c92ca5 + +- Refresh patches.suse/nvme-fc-avoid-calling-_nvme_fc_abort_outstanding_ios-from-interrupt-context.patch + Fix commit hash +- commit fdfd462 + +- Refresh patches.suse/0001-btrfs-qgroup-don-t-try-to-wait-flushing.patch + Fix commit hash +- commit 5ec0893 + +- Refresh patch metadata. +- Refresh patches.suse/ibmvnic-fix-NULL-pointer-dereference.patch. +- commit 45ce7d1 + +- ima: Fail rule parsing when asymmetric key measurement isn't + supportable (jsc#SLE-15209). +- ima: Pre-parse the list of keyrings in a KEY_CHECK rule + (jsc#SLE-15209). +- ima: Use the common function to detect LSM conditionals in a + rule (jsc#SLE-15209). +- ima: Move comprehensive rule validation checks out of the + token parser (jsc#SLE-15209). +- ima: Use correct type for the args_p member of + ima_rule_entry.lsm elements (jsc#SLE-15209). +- ima: Shallow copy the args_p member of ima_rule_entry.lsm + elements (jsc#SLE-15209). +- ima: Fail rule parsing when the KEY_CHECK hook is combined + with an invalid cond (jsc#SLE-15209). +- ima: Fail rule parsing when the KEXEC_CMDLINE hook is combined + with an invalid cond (jsc#SLE-15209). +- ima: Fail rule parsing when buffer hook functions have an + invalid action (jsc#SLE-15209). + Refresh + patches.suse/ima-Fail-rule-parsing-when-appraise_flag-blacklist-i.patch +- ima: Free the entire rule if it fails to parse (jsc#SLE-15209). +- ima: Free the entire rule when deleting a list of rules + (jsc#SLE-15209). +- mm: add kvfree_sensitive() for freeing sensitive data objects + (jsc#SLE-15209). +- IMA: pre-allocate buffer to hold keyrings string + (jsc#SLE-15209). + Refresh + patches.suse/ima-Directly-assign-the-ima_default_policy-pointer-t.patch +- commit d6d4155 + +- lib/string: remove unnecessary #undefs (git-fixes). +- bitmap: remove unused function declaration (git-fixes). +- swiotlb: using SIZE_MAX needs limits.h included (git-fixes). +- swiotlb: fix "x86: Don't panic if can not alloc buffer for + swiotlb" (git-fixes). +- kdb: Fix pager search for multi-line strings (git-fixes). +- kgdb: Drop malformed kernel doc comment (git-fixes). +- commit 28d99cb + +- EDAC/amd64: Fix PCI component registration (bsc#1152489). +- commit 6c4ae9b + +- KVM: x86: Expose AVX512_FP16 for supported CPUID + (jsc#SLE-13413). +- commit a3f980a + +- KVM: x86: Expose fast short REP MOV for supported cpuid + (bsc#1180334). +- x86/asm: Drop unused RDPID macro (bsc#1180334). +- KVM: x86: emulating RDPID failure shall return #UD rather than + [#]GP (bsc#1180334). +- kvm: x86: Expose RDPID in KVM_GET_SUPPORTED_CPUID (bsc#1180334). +- commit 05fbe0b + +- x86: Enumerate AVX512 FP16 CPUID feature flag (jsc#SLE-13413). +- commit fd2814e + +- powerpc/sstep: Add testcases for VSX vector paired load/store + instructions (jsc#SLE-13847 bsc#1180581 ltc#190174). +- powerpc/sstep: Support VSX vector paired storage access + instructions (jsc#SLE-13847 bsc#1180581 ltc#190174). +- powerpc/watchpoint: Workaround P10 DD1 issue with VSX-32 byte + instructions (jsc#SLE-12936 bsc#1180581 ltc#190174). +- powerpc/sstep: Add testcases for VSX vector paired load/store + instructions (jsc#SLE-13847 bsc#1180581 ltc#190174). +- powerpc/ppc-opcode: Add encoding macros for VSX vector paired + instructions (jsc#SLE-13847 bsc#1180581 ltc#190174). +- powerpc/sstep: Support VSX vector paired storage access + instructions (jsc#SLE-13847 bsc#1180581 ltc#190174). +- powerpc/ppc-opcode: Fold PPC_INST_* macros into PPC_RAW_* + macros (jsc#SLE-13847 bsc#1180581 ltc#190174). +- Refresh patches.suse/powerpc-sstep-Add-tests-for-prefixed-floating-point-.patch. +- Refresh patches.suse/powerpc-sstep-Add-tests-for-prefixed-integer-load-st.patch. +- powerpc/ppc-opcode: Reuse raw instruction macros to stringify + (jsc#SLE-13847 bsc#1180581 ltc#190174). +- powerpc/ppc-opcode: Consolidate powerpc instructions from + bpf_jit.h (jsc#SLE-13847 bsc#1180581 ltc#190174 bsc#1180567 + ltc#190612). +- powerpc/bpf_jit: Reuse instruction macros from ppc-opcode.h + (jsc#SLE-13847 bsc#1180581 ltc#190174). +- powerpc/ppc-opcode: Move ppc instruction encoding from + test_emulate_step (jsc#SLE-13847 bsc#1180581 ltc#190174). +- powerpc/ppc-opcode: Introduce PPC_RAW_* macros for base + instruction encoding (jsc#SLE-13847 bsc#1180581 ltc#190174). +- powerpc/lib: Fix emulate_step() std test (jsc#SLE-13847 + bsc#1180581 ltc#190174). +- commit 6a6d57b + +- target: fix XCOPY NAA identifier lookup (CVE-2020-28374, + bsc#1178372). +- commit 3e5427c + +- Move upstreamed regmap and pinctrl patches into sorted section +- commit 6d2ef28 + +- ALSA: hda/hdmi: Fix incorrect mutex unlock in + silent_stream_disable() (bsc#1180543). +- commit a9190f5 + +- intel_idle: Disable ACPI _CST on Haswell (bsc#1177399, + bsc#1180347, bsc#1180141). +- commit 92491ff + +- mwifiex: Fix possible buffer overflows in + mwifiex_cmd_802_11_ad_hoc_start (CVE-2020-36158 bsc#1180559). +- commit 3e80605 + +- btrfs: do not commit logs and transactions during link and + rename operations (bsc#1180566). +- btrfs: do not take the log_mutex of the subvolume when pinning + the log (bsc#1180566). +- btrfs: delete duplicated words + other fixes in comments + (bsc#1180566). +- commit 916e8ac + +- Replace HTTP links with HTTPS ones: security (jsc#SLE-15209). +- tpm_ftpm_tee: register driver on TEE bus (jsc#SLE-15209). +- tpm: Add support for event log pointer found in TPM2 ACPI table + (jsc#SLE-15209). +- tpm: Unify the mismatching TPM space buffer sizes + (jsc#SLE-15209). +- Removed commit id in blacklist.conf +- libnvdimm/security: Fix key lookup permissions (jsc#SLE-15209). +- tpm_tis_spi: Prefer async probe (jsc#SLE-15209). +- tpm/st33zp24: fix spelling mistake "drescription" -> + "description" (jsc#SLE-15209). +- tpm_tis_spi: Don't send anything during flow control + (jsc#SLE-15209). +- security: fix the key_permission LSM hook function type + (jsc#SLE-15209). +- keys: Make the KEY_NEED_* perms an enum rather than a mask + (jsc#SLE-15209). +- keys: Implement update for the big_key type (jsc#SLE-15209). +- security/keys: rewrite big_key crypto to use library interface + (jsc#SLE-15209). + Update config files. +- KEYS: encrypted: use crypto_shash_tfm_digest() (jsc#SLE-15209). +- crypto: hash - introduce crypto_shash_tfm_digest() + (jsc#SLE-15209). +- tpm: eventlog: Replace zero-length array with flexible-array + member (jsc#SLE-15209). +- tpm/tpm_ftpm_tee: Use UUID API for exporting the UUID + (jsc#SLE-15209). +- sysfs: remove redundant __compat_only_sysfs_link_entry_to_kobj + fn (jsc#SLE-15209). +- KEYS: Avoid false positive ENOMEM error on key read + (jsc#SLE-15209). +- KEYS: Don't write out to userspace while holding key semaphore + (jsc#SLE-15209). +- MAINTAINERS: adjust to trusted keys subsystem creation + (jsc#SLE-15209). +- tpm: tpm_tis_spi_cr50: use new structure for SPI transfer delays + (jsc#SLE-15209). +- tpm_tis_spi: use new 'delay' structure for SPI transfer delays + (jsc#SLE-15209). +- tpm: Revert tpm_tis_spi_mod.ko to tpm_tis_spi.ko + (jsc#SLE-15209). +- IMA: fix measuring asymmetric keys Kconfig (jsc#SLE-15209). +- Refresh + patches.suse/0002-ima-generalize-x86-EFI-arch-glue-for-other-EFI-archi.patch + patches.suse/ima-add-a-new-CONFIG-for-loading-arch-specific-polic.patch +- Update config files. + CONFIG_IMA_MEASURE_ASYMMETRIC_KEYS=y +- IMA: Read keyrings= option from the IMA policy (jsc#SLE-15209). +- IMA: Add support to limit measuring keys (jsc#SLE-15209). +- KEYS: Call the IMA hook to measure keys (jsc#SLE-15209). +- IMA: Define an IMA hook to measure keys (jsc#SLE-15209). + Refresh + patches.suse/0002-ima-generalize-x86-EFI-arch-glue-for-other-EFI-archi.patch +- IMA: Add KEY_CHECK func to measure keys (jsc#SLE-15209). +- IMA: Check IMA policy flag (jsc#SLE-15209). +- tpm: Add tpm_version_major sysfs file (jsc#SLE-15209). +- tpm/tpm_ftpm_tee: add shutdown call back (jsc#SLE-15209). +- security: keys: trusted: fix lost handle flush (jsc#SLE-15209). +- KEYS: remove CONFIG_KEYS_COMPAT (jsc#SLE-15209). + Update config files. +- KEYS: trusted: Remove set but not used variable 'keyhndl' + (jsc#SLE-15209). +- KEYS: trusted: Move TPM2 trusted keys code (jsc#SLE-15209). +- KEYS: trusted: Create trusted keys subsystem (jsc#SLE-15209). + Refresh + patches.suse/1885-kbuild-remove-header-compile-test.patch + patches.suse/KVM-arm-arm64-Factor-out-hypercall-handling-from-PSC.patch + patches.suse/crypto-sha-split-sha.h-into-sha1.h-and-sha2.h.patch +- KEYS: Use common tpm_buf for trusted and asymmetric keys + (jsc#SLE-15209). +- tpm: Move tpm_buf code to include/linux/ (jsc#SLE-15209). +- tpm: use GFP_KERNEL instead of GFP_HIGHMEM for tpm_buf + (jsc#SLE-15209). +- tpm: tpm_tis_spi: Drop THIS_MODULE usage from driver struct + (jsc#SLE-15209). +- tpm: tpm_tis_spi: Cleanup includes (jsc#SLE-15209). +- tpm: tpm_tis_spi: Support cr50 devices (jsc#SLE-15209). + Update config files. +- tpm: tpm_tis_spi: Introduce a flow control callback + (jsc#SLE-15209). +- tpm: Add a flag to indicate TPM power is managed by firmware + (jsc#SLE-15209). +- tpm_tis: override durations for STM tpm with firmware 1.2.8.28 + (jsc#SLE-15209). +- tpm: provide a way to override the chip returned durations + (jsc#SLE-15209). +- tpm: Remove duplicate code from caps_show() in tpm-sysfs.c + (jsc#SLE-15209). +- tpm/tpm_ftpm_tee: A driver for firmware TPM running inside TEE + (jsc#SLE-15209). + Update config files. +- tpm: Remove a deprecated comments about implicit sysfs locking + (jsc#SLE-15209). +- commit 7e1f0f4 + +- md/cluster: fix deadlock when node is doing resync job + (bsc#1163727). +- md/cluster: block reshape with remote resync job (bsc#1163727). +- md/bitmap: fix memory leak of temporary bitmap (bsc#1163727). +- md/bitmap: md_bitmap_get_counter returns wrong blocks + (bsc#1163727). +- md/bitmap: md_bitmap_read_sb uses wrong bitmap blocks + (bsc#1163727). +- md-cluster: fix rmmod issue when md_cluster convert bitmap to + none (bsc#1163727). +- md-cluster: fix safemode_delay value when converting to + clustered bitmap (bsc#1163727). +- md-cluster: fix wild pointer of unlock_all_bitmaps() + (bsc#1163727). +- commit 7522976 + +- mm: validate inode in mapping_set_error() (git-fixes). +- commit 05b16dc + +- btrfs: add missing check for nocow and compression inode flags + (bsc#1178780). +- fs/buffer.c: record blockdev write errors in super_block that + it backs (bsc#1172266). +- vfs: track per-sb writeback errors and report them to syncfs + (bsc#1172266). +- commit 934c84a + +- btrfs: add missing check for nocow and compression inode flags (bsc#1178780). +- commit 98b0ffc + +- Revert "ceph: allow rename operation under different quota + realms" (bsc#1180541). +- commit 1a2a0a7 + +- Refresh + patches.suse/ceph-downgrade-warning-from-mdsmap-decode-to-debug.patch. +- Refresh + patches.suse/ceph-fix-race-in-concurrent-_ceph_remove_cap-invocations.patch. + Patches have been merged into mainline; refreshing Git-commit and Path-mainline + tags in patches. +- commit d338d00 + +- nfp: move indirect block cleanup to flower app stop callback + (bsc#1176447). +- ethtool: fix error paths in ethnl_set_channels() (bsc#1176447). +- i40e, xsk: clear the status bits for the next_to_use descriptor + (jsc#SLE-13701). +- RDMA/mlx5: Fix MR cache memory leak (jsc#SLE-15175). +- RDMA/bnxt_re: Fix max_qp_wrs reported (bsc#1175499). +- RDMA/hns: Bugfix for calculation of extended sge + (jsc#SLE-14777). +- RDMA/rtrs-srv: Fix typo (jsc#SLE-15176). +- RDMA/rtrs-srv: Don't guard the whole __alloc_srv with srv_mutex + (jsc#SLE-15176). +- RDMA/rtrs-clt: Missing error from rtrs_rdma_conn_established + (jsc#SLE-15176). +- RDMA/rtrs-clt: Avoid run destroy_con_cq_qp/create_con_cq_qp + in parallel (jsc#SLE-15176). +- RDMA/rtrs-clt: Remove outdated comment in create_con_cq_qp + (jsc#SLE-15176). +- RDMA/rtrs-clt: Remove destroy_con_cq_qp in case route resolving + failed (jsc#SLE-15176). +- IB/isert: add module param to set sg_tablesize for IO cmd + (jsc#SLE-15176). +- RDMA/core: Fix error return in _ib_modify_qp() (jsc#SLE-15176). +- RDMA/bnxt_re: Fix entry size during SRQ create (jsc#SLE-15076 + bsc#1175499). +- net/mlx5e: remove unnecessary memset (jsc#SLE-15172). +- net/sched: fix miss init the mru in qdisc_skb_cb (bsc#1176447). +- i40e: remove redundant assignment (jsc#SLE-13701). +- ionic: use mc sync for multicast filters (jsc#SLE-16649). +- net: sched: Fix dump of MPLS_OPT_LSE_LABEL attribute in + cls_flower (bsc#1176447). +- net: flow_offload: Fix memory leak for indirect flow block + (jsc#SLE-15075). +- e1000e: fix S0ix flow to allow S0i3.2 subset entry + (jsc#SLE-13532). +- bonding: fix feature flag setting at init time (bsc#1176447). +- ch_ktls: fix build warning for ipv4-only config (jsc#SLE-15129). +- net/sched: fq_pie: initialize timer earlier in fq_pie_init() + (jsc#SLE-15172). +- commit feb8216 + +- powerpc/pci: Remove LSI mappings on device teardown (bsc#1172145 + ltc#184630). +- commit a2fd2d8 + +- Delete patches.suse/powerpc-pci-unmap-legacy-INTx-interrupts-when-a-PHB-.patch + (bsc#1172145 ltc#184630). + To be replaced with new fix merged through SP2. +- commit 8ea9da6 + +- powerpc/cacheinfo: Print correct cache-sibling map/list for + L2 cache (jsc#SLE-13615 bsc#1180100 ltc#190257). +- powerpc/smp: Add support detecting thread-groups sharing L2 + cache (jsc#SLE-13615 bsc#1180100 ltc#190257). +- powerpc/smp: Rename init_thread_group_l1_cache_map() to make + it generic (jsc#SLE-13615 bsc#1180100 ltc#190257). +- powerpc/smp: Rename cpu_l1_cache_map as + thread_group_l1_cache_map (jsc#SLE-13615 bsc#1180100 + ltc#190257). +- powerpc/smp: Parse ibm,thread-groups with multiple properties + (jsc#SLE-13615 bsc#1180100 ltc#190257). +- powerpc/smp: Use GFP_ATOMIC while allocating tmp mask + (jsc#SLE-13615 bsc#1180100 ltc#190257). +- powerpc/smp: Remove unnecessary variable (jsc#SLE-13615 + bsc#1180100 ltc#190257). +- powerpc/smp: Optimize update_coregroup_mask (jsc#SLE-13615 + bsc#1180100 ltc#190257). +- powerpc/smp: Move coregroup mask updation to a new function + (jsc#SLE-13615 bsc#1180100 ltc#190257). +- powerpc/smp: Optimize update_mask_by_l2 (jsc#SLE-13615 + bsc#1180100 ltc#190257). +- powerpc/smp: Check for duplicate topologies and consolidate + (jsc#SLE-13615 bsc#1180100 ltc#190257). +- powerpc/smp: Depend on cpu_l1_cache_map when adding CPUs + (jsc#SLE-13615 bsc#1180100 ltc#190257). +- powerpc/smp: Stop passing mask to update_mask_by_l2 + (jsc#SLE-13615 bsc#1180100 ltc#190257). +- powerpc/smp: Limit CPUs traversed to within a node + (jsc#SLE-13615 bsc#1180100 ltc#190257). +- powerpc/smp: Optimize remove_cpu_from_masks (jsc#SLE-13615 + bsc#1180100 ltc#190257). +- powerpc/smp: Remove get_physical_package_id (jsc#SLE-13615 + bsc#1180100 ltc#190257). +- powerpc/smp: Stop updating cpu_core_mask (jsc#SLE-13615 + bsc#1180100 ltc#190257). +- powerpc/topology: Update topology_core_cpumask (jsc#SLE-13615 + bsc#1180100 ltc#190257). +- powerpc/topology: Override cpu_smt_mask (jsc#SLE-13615 + bsc#1180100 ltc#190257). +- sched/topology: Allow archs to override cpu_smt_mask + (jsc#SLE-13615 bsc#1180100 ltc#190257). +- powerpc/cacheinfo: Add per cpu per index shared_cpu_list + (jsc#SLE-13615 bsc#1180100 ltc#190257). +- powerpc/cacheinfo: Make cpumap_show code reusable (jsc#SLE-13615 + bsc#1180100 ltc#190257). +- powerpc/cacheinfo: Use cpumap_print to print cpumap + (jsc#SLE-13615 bsc#1180100 ltc#190257). +- powerpc/smp: Use IS_ENABLED() to avoid #ifdef (jsc#SLE-13615 + bsc#1180100 ltc#190257). +- powerpc/smp: Drop superfluous NULL check (jsc#SLE-13615 + bsc#1180100 ltc#190257). +- commit aa22c03 + +- blacklist.conf: adab66b71abf ("Revert: "ring-buffer: Remove HAVE_64BIT_ALIGNED_ACCESS"") + We do not support metag and sparc64 archs. +- commit 99ad074 + +- blacklist.conf: d9a9280a0d0a ("seq_buf: Avoid type mismatch for seq_buf_init") + It breaks kABI. It is not worth the hassle to backport. +- commit 7c29506 + +- module: delay kobject uevent until after module init call (bsc#1178631). +- Refresh patches.suse/supported-flag. +- commit 9f35554 + +- bpf: Fix bpf_put_raw_tracepoint()'s use of __module_address() + (git-fixes). +- commit e888e29 + +- blacklist.conf: 310e3a4b5a4f ("tracing: Remove WARN_ON in start_thread()") + CONFIG_HWLAT_TRACER is not set anywhere. +- commit 4f64022 + +- ocfs2: fix unbalanced locking (bsc#1180506). +- commit b54b08a + +- remoteproc: qcom: Fix potential NULL dereference in + adsp_init_mmio() (git-fixes). +- remoteproc: qcom: fix reference leak in adsp_start (git-fixes). +- remoteproc: q6v5-mss: fix error handling in q6v5_pds_enable + (git-fixes). +- serial_core: Check for port state when tty is in error state + (git-fixes). +- usb: gadget: f_fs: Re-use SS descriptors for SuperSpeedPlus + (git-fixes). +- USB: gadget: f_midi: setup SuperSpeed Plus descriptors + (git-fixes). +- USB: gadget: f_acm: add support for SuperSpeed Plus (git-fixes). +- USB: gadget: f_rndis: fix bitrate for SuperSpeed and above + (git-fixes). +- media: gspca: Fix memory leak in probe (git-fixes). +- media: saa7146: fix array overflow in vidioc_s_audio() + (git-fixes). +- media: max2175: fix max2175_set_csm_mode() error code + (git-fixes). +- media: imx214: Fix stop streaming (git-fixes). +- media: msi2500: assign SPI bus number dynamically (git-fixes). +- media: siano: fix memory leak of debugfs members in + smsdvb_hotplug (git-fixes). +- media: sunxi-cir: ensure IR is handled when it is continuous + (git-fixes). +- media: solo6x10: fix missing snd_card_free in error handling + case (git-fixes). +- media: ipu3-cio2: Remove traces of returned buffers (git-fixes). +- media: ipu3-cio2: Make the field on subdev format + V4L2_FIELD_NONE (git-fixes). +- media: ipu3-cio2: Validate mbus format in setting subdev format + (git-fixes). +- media: ipu3-cio2: Serialise access to pad format (git-fixes). +- media: ipu3-cio2: Return actual subdev format (git-fixes). +- media: mtk-vcodec: add missing put_device() call in + mtk_vcodec_init_enc_pm() (git-fixes). +- media: mtk-vcodec: add missing put_device() call in + mtk_vcodec_release_dec_pm() (git-fixes). +- media: mtk-vcodec: add missing put_device() call in + mtk_vcodec_init_dec_pm() (git-fixes). +- media: tm6000: Fix sizeof() mismatches (git-fixes). +- iwlwifi: pcie: add one missing entry for AX210 (git-fixes). +- commit 1e25d62 + +- gpio: mvebu: update Armada XP per-CPU comment (git-fixes). +- dmaengine: mv_xor_v2: Fix error return code in mv_xor_v2_probe() + (git-fixes). +- HID: i2c-hid: add Vero K147 to descriptor override (git-fixes). +- iio:imu:bmi160: Fix too large a buffer (git-fixes). +- crypto: atmel-i2c - select CONFIG_BITREVERSE (git-fixes). +- crypto: ecdh - avoid unaligned accesses in ecdh_set_secret() + (git-fixes). +- crypto: omap-aes - Fix PM disable depth imbalance in + omap_aes_probe (git-fixes). +- crypto: crypto4xx - Replace bitwise OR with logical OR in + crypto4xx_build_pd (git-fixes). +- Input: goodix - add upside-down quirk for Teclast X98 Pro tablet + (git-fixes). +- Input: cros_ec_keyb - send 'scancodes' in addition to key events + (git-fixes). +- commit 48f3c1f + +- ALSA/hda: apply jack fixup for the Acer Veriton + N4640G/N6640G/N2510G (git-fixes). +- ALSA: hda/realtek: Apply jack fixup for Quanta NL3 (git-fixes). +- ALSA: hda/realtek: Add quirk for MSI-GP73 (git-fixes). +- ALSA: pcm: oss: Fix a few more UBSAN fixes (git-fixes). +- ALSA: usb-audio: Disable sample read check if firmware doesn't + give back (git-fixes). +- ALSA: usb-audio: Add VID to support native DSD reproduction + on FiiO devices (git-fixes). +- ALSA: core: memalloc: add page alignment for iram (git-fixes). +- ACPI: PNP: compare the string length in the matching_id() + (git-fixes). +- clocksource/drivers/arm_arch_timer: Correct fault programming + of CNTKCTL_EL1.EVNTI (git-fixes). +- clocksource/drivers/arm_arch_timer: Use stable count reader + in erratum sne (git-fixes). +- clocksource/drivers/cadence_ttc: Fix memory leak in + ttc_setup_clockevent() (git-fixes). +- clocksource/drivers/orion: Add missing clk_disable_unprepare() + on error path (git-fixes). +- crypto: af_alg - avoid undefined behavior accessing salg_name + (git-fixes). +- crypto: inside-secure - Fix sizeof() mismatch (git-fixes). +- crypto: talitos - Fix return type of current_desc_hdr() + (git-fixes). +- crypto: talitos - Endianess in current_desc_hdr() (git-fixes). +- cfg80211: initialize rekey_data (git-fixes). +- commit 57d3bee + +- series.conf: cleanup +- move unsortable patch out of sorted section: + patches.suse/ibmvnic-fix-NULL-pointer-dereference.patch +- update upstream reference: + patches.suse/ibmvnic-continue-fatal-error-reset-after-passive-ini.patch +- commit a0b2ce7 + +- ibmvnic: fix login buffer memory leak (jsc#SLE-17043 bsc#1179243 + ltc#189290 git-fixes). +- commit 2d2f67f + +- ibmvnic: continue fatal error reset after passive init + (bsc#1171078 ltc#184239 git-fixes). +- commit e6ea824 + +- Refresh patches.suse/powerpc-perf-Exclude-kernel-samples-while-counting-e.patch. +- commit fc17dca + +- powerpc/perf: Fix Threshold Event Counter Multiplier width + for P10 (jsc#SLE-13513 bsc#1180072 ltc#190309). +- commit c1c01ab + +- powerpc/bitops: Fix possible undefined behaviour with fls() + and fls64() (bsc#1156395). +- commit e90809a + +- powerpc: Fix incorrect stw{, ux, u, x} instructions in + __set_pte_at (bsc#1065729). +- commit b5cc99b + +- powerpc/xmon: Change printk() to pr_cont() (bsc#1065729). +- commit 9125964 + +- powerpc/64: Set up a kernel stack for secondaries before + cpu_restore() (bsc#1065729). +- commit 7bcd26b + +- powerpc/eeh_cache: Fix a possible debugfs deadlock + (bsc#1156395). +- commit bfd7479 + +- powerpc/64: Fix an EMIT_BUG_ENTRY in head_64.S (jsc#SLE-9246 + git-fixes). +- powerpc/signal: Move inline functions in signal.h (jsc#SLE-16200 + git-fixes). +- commit d0ddb83 + +- powerpc/sstep: Cover new VSX instructions under CONFIG_VSX + (jsc#SLE-13847 git-fixes). +- powerpc/sstep: Emulate prefixed instructions only when + CPU_FTR_ARCH_31 is set (jsc#SLE-13847 git-fixes). +- commit c3ca4ff + +- powerpc: Avoid broken GCC __attribute__((optimize)) + (bsc#1156395). +- commit 3d98ea5 + +- powerpc/smp: Add __init to init_big_cores() (bsc#1109695 + ltc#171067 git-fixes). +- commit 88fe3ed + +- Refresh patches.suse/powerpc-rtas-fix-typo-of-ibm-open-errinjct-in-rtas-f.patch + Refresh to upstream version. +- commit f0055e2 + +- powerpc/pseries/hibernation: remove redundant cacheinfo update + (bsc#1138374 ltc#178199 git-fixes). +- commit e904a78 + +- Revert "powerpc/pseries/hotplug-cpu: Remove double free in + error path" (bsc#1065729). +- commit 243e39e + +- blacklist.conf: Add e91d8d78237d mm/zsmalloc.c: drop ZSMALLOC_PGTABLE_MAPPING + The option is not enabled. +- commit 65fee6f + +- powerpc/64: irq replay remove decrementer overflow check + (jsc#SLE-9246 git-fixes(stable-5.10)). +- commit 6c37cac + +- PCI: Fix overflow in command-line resource alignment requests + (git-fixes). +- commit 1dd80ec + +- ibmvnic: fix: NULL pointer dereference (bsc#1044767 ltc#155231 + git-fixes). +- commit 59feb80 + +- Refresh + patches.suse/powercap-Restrict-energy-meter-to-root-access.patch. + Now in mainline +- commit 414492a + +- blacklist.conf: fix already added by other patch +- commit ed48336 + +- blacklist.conf: already gone in by another ID +- commit 7020218 + +- usb: host: ehci-tegra: Fix error handling in tegra_ehci_probe() + (git-fixes). +- commit 6f94554 + +- blacklist.conf: fix not relevant for our config +- commit 47a12a9 + +- USB: UAS: introduce a quirk to set no_write_same (git-fixes). +- commit bda3ea7 + +- USB: add RESET_RESUME quirk for Snapscan 1212 (git-fixes). +- commit 0912116 + +- crypto: qat - add CRYPTO_AES to Kconfig dependencies + (git-fixes). +- commit 6dcc047 + +- blk-mq: Remove 'running from the wrong CPU' warning + (bsc#1174486). +- commit 5a12d1c + +- blacklist.conf: 3d51507f29f2 x86/entry/32: Add missing ASM_CLAC to general_protection entry +- commit 794e745 + +- ACPI: NFIT: Fix input validation of bus-family (git-fixes). +- nl80211: validate key indexes for cfg80211_registered_device + (git-fixes). +- commit d4bf12f + +- watchdog: coh901327: add COMMON_CLK dependency (git-fixes). +- watchdog: qcom: Avoid context switch in restart handler + (git-fixes). +- watchdog: Fix potential dereferencing of null pointer + (git-fixes). +- watchdog: sprd: change to use usleep_range() instead of busy + loop (git-fixes). +- watchdog: sprd: check busy bit before new loading rather than + after that (git-fixes). +- watchdog: sprd: remove watchdog disable from resume fail path + (git-fixes). +- watchdog: sirfsoc: Add missing dependency on HAS_IOMEM + (git-fixes). +- watchdog: armada_37xx: Add missing dependency on HAS_IOMEM + (git-fixes). +- commit 705ed83 + +- media: uvcvideo: Accept invalid bFormatIndex and bFrameIndex + values (bsc#1180117). +- commit 2f3db03 + +- Re-import the upstream uvcvideo fix; one more fix will be added later (bsc#1180117) +- commit 0da5ae4 + +- rpm/constraints.in: more disk space for aarch64 binary builds (bsc#1180261) + Tumbleweed KotD builds already consume ~30 GB of disk space and SLE15-SP3 + builds sometimes exceed even 32 GB, resulting in build failures. Thus the + exception providing only 30 GB for aarch64 binary builds is no longer + sustainable and if requiring 35 GB limits the portfolio of available + builders, we need to address that. +- commit 07b084b + +- x86/topology: Set cpu_die_id only if DIE_TYPE found + (bsc#1152489). +- commit 6e7d005 + +- EDAC/mce_amd: Use struct cpuinfo_x86.cpu_die_id for AMD NodeId + (bsc#1152489). +- commit 72ce98e + +- x86/CPU/AMD: Remove amd_get_nb_id() (bsc#1152489). +- commit be1bad6 + +- x86/CPU/AMD: Save AMD NodeId as cpu_die_id (bsc#1152489). +- commit af076e7 + +- EDAC/amd64: Do not load on family 0x15, model 0x13 (bsc#1179763). +- commit 877e64a + +- rpm: drop /usr/bin/env in interpreter specification + OBS checks don't like /usr/bin/env in script interpreter lines but upstream + developers tend to use it. A proper solution would be fixing the depedency + extraction and drop the OBS check error but that's unlikely to happen so + that we have to work around the problem on our side and rewrite the + interpreter lines in scripts before collecting files for packages instead. +- commit 0ec5324 + +- reset: raspberrypi: Don't reset USB if already up (bsc#1180336). +- commit 72c8f7f + +- blacklist.conf: ignore CRYPTO_SKCIPHER kconfig option +- commit 00dae55 + +- crypto: hisilicon - Cap block size at 2^31 (jsc#SLE-16507 + jsc#SLE-15835). +- commit 4cc08f7 + +- nvmet-tcp: fix maxh2cdata icresp parameter (bsc#1179892). +- commit 8a7b72b + +- crypto: hisilicon - fix driver compatibility issue with + different versions of devices (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/qm - change debugfs file name from qm_regs + to regs (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/qm - add DebugFS for xQC and xQE dump + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/zip - add debugfs for Hisilicon ZIP + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/hpre - add debugfs for Hisilicon HPRE + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/sec2 - add debugfs for Hisilicon SEC + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/qm - add debugfs to the QM state machine + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/qm - add debugfs for QM (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon/zip - Use temporary sqe when doing work + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - add device error report through abnormal + irq (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - remove codes of directly report device + errors through MSI (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - QM memory management optimization + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - unify initial value assignment into QM + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - remove use_dma_api related codes + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - add FLR support (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon/qm - add state machine for QM (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - refactor module parameter pf_q_num related + code (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/zip - modify the ZIP probe process + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/hpre - modify the HPRE probe process + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/sec2 - modify the SEC probe process + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/sec2 - constify sec_dfx_regs (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon/zip - constify struct debugfs_reg32 + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/hpre - constify struct debugfs_reg32 + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/qm - Make qm_controller_reset() static + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/qm - add more ACPI dependencies (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon/qm - fix build failure with ACPI off + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/qm - stop qp by judging sq and cq tail + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/sec2 - add controller reset support for SEC2 + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/hpre - add controller reset support for HPRE + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/zip - add controller reset support for zip + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/qm - add controller reset interface + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - add vfs_num module parameter for hpre/sec + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - unify SR-IOV related codes into QM + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - put vfs_num into struct hisi_qm + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/sec2 - Add new create qp process + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/hpre - Optimize finding hpre device process + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/zip - Use hisi_qm_alloc_qps_node() when init + ctx (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/qm - Put device finding logic into QM + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/sec2 - Add pbuffer mode for SEC driver + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/sec2 - Update IV and MAC operation + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/sec2 - Add iommu status check (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon/sec2 - Add workqueue for SEC driver + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - Use one workqueue per qm instead of per qp + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - remove redundant assignment of pointer ctx + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - Remove module_param uacce_mode + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - Fix duplicate print when qm occur multiple + errors (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - Unify error detect process into qm + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - Configure zip RAS error type (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - Unify hardware error init/uninit into QM + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - fix spelling mistake "disgest" -> "digest" + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - add branch prediction macro (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - adjust hpre_crt_para_get (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - Fixed some tiny bugs of HPRE (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - Bugfixed tfm leak (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - Add aead support on SEC2 (jsc#SLE-16507 + jsc#SLE-15835). +- Refresh + patches.suse/crypto-sha-split-sha.h-into-sha1.h-and-sha2.h.patch. +- crypto: hisilicon - redefine skcipher initiation (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - Add branch prediction macro (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - Add callback error check (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - Adjust some inner logic (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - Update QP resources of SEC V2 (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - Update some names on SEC V2 (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - fix print/comment of SEC V2 (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - Update debugfs usage of SEC V2 + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - still no need to check return value of + debugfs_create functions (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - Remove useless MODULE macros (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - Use the offset fields in sqe to avoid need + to split scatterlists (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - Fix issue with wrong number of sg elements + after dma map (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/sec2 - Use atomics instead of __sync + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - fix a NULL vs IS_ERR() bug in + sec_create_qp_ctx() (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - add DebugFS for HiSilicon SEC (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - add SRIOV for HiSilicon SEC (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - add HiSilicon SEC V2 driver (jsc#SLE-16507 + jsc#SLE-15835). +- Update config files. DEV_HISI_SEC2 as module +- supported.conf: add hisi_sec2 +- crypto: hisilicon - no need to check return value of + debugfs_create functions (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - add vfs_num module param for zip + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - replace #ifdef with IS_ENABLED for + CONFIG_NUMA (jsc#SLE-16507 jsc#SLE-15835). +- hwrng: hisi - add HiSilicon TRNG driver support (jsc#SLE-16507 + jsc#SLE-15835). +- Update config files. Enable HW_RANDOM_HISI_V2 +- support.conf: add hisi-trng-v2 +- crypto: hisilicon - fix to return sub-optimal device when best + device has no qps (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - use sgl API to get sgl dma addr and len + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - fix endianness verification problem of QM + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - fix param should be static when not external + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - Fix using plain integer as NULL pointer + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - tiny fix about QM/ZIP error callback print + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon: Fix misuse of GENMASK macro (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - select NEED_SG_DMA_LENGTH in qm Kconfig + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - Add debugfs for HPRE (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - add SRIOV support for HPRE (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - add HiSilicon HPRE accelerator + (jsc#SLE-16507 jsc#SLE-15835). +- Update config files. Enable CRYPTO_DEV_HISI_HPRE +- supported.conf: add hisi_hpre +- crypto: hisilicon - misc fix about sgl (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - fix large sgl memory allocation problem + when disable smmu (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - add sgl_sge_nr module param for zip + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - merge sgl support to hisi_qm module + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - allow compile-testing on x86 (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - avoid unused function warning (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - Fix return value check in + hisi_zip_acompress() (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - Fix warning on printing %p with dma_addr_t + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - fix error handle in hisi_zip_create_req_q + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - add missing single_release (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - init curr_sgl_dma to fix compile warning + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - add dependency for CRYPTO_DEV_HISI_ZIP + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - fix kbuild warnings (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - add debugfs for ZIP and QM (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - add SRIOV support for ZIP (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - add HiSilicon ZIP accelerator support + (jsc#SLE-16507 jsc#SLE-15835). +- Update config files. Enable CRYPTO_DEV_HISI_ZIP +- supported.conf: add hisi_zip +- crypto: hisilicon - add hardware SGL support (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - add queue management driver for HiSilicon + QM module (jsc#SLE-16507 jsc#SLE-15835). +- Update config files. Enable CRYPTO_DEV_HISI_QM +- supported.conf: add hisi_qm +- commit 2188cb3 + +- x86/ima: use correct identifier for SetupMode variable + (bsc#1152489). +- commit 9b27f4f + +- i2c: Revert incorrect conversion to use generic helper + (jsc#SLE-16407). +- commit 80898a3 + +- blacklist.conf: 3d51507f29f2 x86/entry/32: Add missing ASM_CLAC to general_protection entry +- commit 1aa31e3 + +- fix patch metadata +- fix Patch-mainline: + patches.suse/mm-memory_failure-always-pin-the-page-in-madvise_inj.patch +- commit 4f786fa + +- Refresh + patches.suse/arm64-force-no_block_mappings-if-crashkernel-reservation-is-required.patch. +- Refresh + patches.suse/arm64-ignore-any-dma-offsets-in-the-max_zone_phys-calculation.patch. +- Refresh + patches.suse/arm64-mm-move-reserve_crashkernel-into-mem_init.patch. +- Refresh + patches.suse/arm64-mm-move-zone_dma_bits-initialization-into-zone_sizes_init.patch. +- Refresh + patches.suse/arm64-mm-set-zone_dma-size-based-on-devicetree-s-dma-ranges.patch. +- Refresh + patches.suse/arm64-mm-set-zone_dma-size-based-on-early-iort-scan.patch. +- Refresh + patches.suse/ibmvnic-Clean-up-TX-code-and-TX-buffer-data-structur.patch. +- Refresh + patches.suse/ibmvnic-Correctly-re-enable-interrupts-in-NAPI-polli.patch. +- Refresh + patches.suse/ibmvnic-Do-not-replenish-RX-buffers-after-every-poll.patch. +- Refresh + patches.suse/ibmvnic-Ensure-that-device-queue-memory-is-cache-lin.patch. +- Refresh + patches.suse/ibmvnic-Introduce-batched-RX-buffer-descriptor-trans.patch. +- Refresh + patches.suse/ibmvnic-Introduce-indirect-subordinate-Command-Respo.patch. +- Refresh + patches.suse/ibmvnic-Introduce-xmit_more-support-using-batched-su.patch. +- Refresh patches.suse/ibmvnic-Remove-send_subcrq-function.patch. +- Refresh + patches.suse/ibmvnic-Use-netdev_alloc_skb-instead-of-alloc_skb-to.patch. +- Refresh + patches.suse/ibmvnic-fix-rx-buffer-tracking-and-index-management-.patch. +- Refresh patches.suse/net-smc-improve-return-codes-for-smc-dv2. +- Refresh + patches.suse/of-address-introduce-of_dma_get_max_cpu_address.patch. +- Refresh + patches.suse/s390-sles15sp3-03-01-s390-cio-Export-information-about-Endpoint-Security-.patch. +- Refresh + patches.suse/s390-sles15sp3-03-02-s390-cio-Provide-Endpoint-Security-Mode-per-CU.patch. +- Refresh + patches.suse/s390-sles15sp3-03-03-s390-cio-Add-support-for-FCES-status-notification.patch. +- Refresh + patches.suse/s390-sles15sp3-03-04-s390-dasd-Remove-unused-parameter-from-dasd_generic_.patch. +- Refresh + patches.suse/s390-sles15sp3-03-05-s390-dasd-Move-duplicate-code-to-separate-function.patch. +- Refresh + patches.suse/s390-sles15sp3-03-06-s390-dasd-Store-path-configuration-data-during-path-.patch. +- Refresh + patches.suse/s390-sles15sp3-03-07-s390-dasd-Fix-operational-path-inconsistency.patch. +- Refresh + patches.suse/s390-sles15sp3-03-08-s390-dasd-Display-FC-Endpoint-Security-information-v.patch. +- Refresh + patches.suse/s390-sles15sp3-03-09-s390-dasd-Prepare-for-additional-path-event-handling.patch. +- Refresh + patches.suse/s390-sles15sp3-03-10-s390-dasd-Process-FCES-path-event-notification.patch. +- Refresh + patches.suse/scsi-fnic-avoid-looping-in-trans-eth-on-unload. +- Refresh + patches.suse/scsi-fnic-change-shost_printk-to-fnic_fcs_dbg. +- Refresh + patches.suse/scsi-fnic-change-shost_printk-to-fnic_main_dbg. +- Refresh + patches.suse/scsi-fnic-set-scsi_set_resid-only-for-underflow. +- Refresh patches.suse/scsi-fnic-validate-io_req-before-others. +- commit 87eecb7 + +- selftests/bpf: Print reason when a tester could not run a + program (bsc#1155518). +- selftests/bpf: Fix invalid use of strncat in test_sockmap + (bsc#1155518). +- samples: bpf: Refactor test_cgrp2_sock2 program with libbpf + (bsc#1155518). +- samples/bpf: Remove unused test_ipip.sh (bsc#1155518). +- selftest/bpf: Add missed ip6ip6 test back (bsc#1155518). +- selftests/bpf/test_offload.py: Reset ethtool features after + failed setting (bsc#1155518). +- commit 82533c7 + +- clk: bcm: dvp: Add MODULE_DEVICE_TABLE() (git-fixes). +- clk: fsl-sai: fix memory leak (git-fixes). +- commit bba80c9 + +- ASoC: wm8994: Fix PM disable depth imbalance on error + (git-fixes). +- commit e953294 + +- Update commit ids for already cherry-picked pinctrl patches +- commit 5e797b0 + +- dmaengine: idxd: add IAX configuration support in the IDXD + driver (jsc#SLE-13380). +- dmaengine: idxd: add ATS disable knob for work queues + (jsc#SLE-13380). +- commit aca8d81 + +- Add cherry-picked dup ID for IDXD patch +- commit 1fde049 + +- Move ASoC patch into sorted section + The patch was mistakenly put into nirvana because of badly tagged commit id. +- commit df0bd91 + +- Move upstreamed IDXD patches into sorted section +- commit 6ca191c + +- clk: mvebu: a3700: fix the XTAL MODE pin to MPP1_9 (git-fixes). +- clk: sunxi-ng: Make sure divider tables have sentinel + (git-fixes). +- clk: s2mps11: Fix a resource leak in error handling paths in + the probe function (git-fixes). +- clk: ingenic: Fix divider calculation with div tables + (git-fixes). +- clk: at91: sam9x60: remove atmel,osc-bypass support (git-fixes). +- clk: ti: Fix memleak in ti_fapll_synth_setup (git-fixes). +- clk: mediatek: Make mtk_clk_register_mux() a static function + (git-fixes). +- clk: tegra: Fix duplicated SE clock entry (git-fixes). +- clk: tegra: Do not return 0 on failure (git-fixes). +- lan743x: fix for potential NULL pointer dereference with bare + card (git-fixes). +- commit 21d14d2 + +- drivers/base/memory.c: indicate all memory blocks as removable + (bsc#1180264). +- commit 64673b1 + +- x86/cpu: Add a X86_MATCH_INTEL_FAM6_MODEL_STEPPINGS() macro + (jsc#SLE-13358). +- commit 6c034c0 + +- EDAC/i10nm: Add Intel Sapphire Rapids server support + (jsc#SLE-13358). +- commit 991ab76 + +- EDAC/i10nm: Use readl() to access MMIO registers + (jsc#SLE-13358). +- commit 0389f79 + +- EDAC: Add DDR5 new memory type (jsc#SLE-13358). +- commit add2e95 + +- ACPI: processor: Fix build for ARCH_APICTIMER_STOPS_ON_C3 unset + (jsc#SLE-16407). +- ACPI: processor: Use CPUIDLE_FLAG_TIMER_STOP (jsc#SLE-16407). +- ACPI: OSL: Prevent acpi_release_memory() from returning too + early (jsc#SLE-16407). +- ACPI: ioremap: avoid redundant rounding to OS page size + (jsc#SLE-16407). +- ACPI: SoC: APD: Check return value of acpi_dev_get_property() + (jsc#SLE-16407). +- ACPI: APD: Add a fmw property is_raven (jsc#SLE-16407). +- ACPI: APD: Change name from ST to FCH (jsc#SLE-16407). +- i2c: designware: Add device HID for Hygon I2C controller + (jsc#SLE-16407). +- ACPI: NFIT: Fix ARS zero-sized allocation (jsc#SLE-16407). +- acpi: thermal: Don't call thermal_zone_device_is_enabled() + (jsc#SLE-16407). +- thermal: Simplify or eliminate unnecessary set_mode() methods + (jsc#SLE-16407). +- thermal: Use mode helpers in drivers (jsc#SLE-16407). +- thermal: Add mode helpers (jsc#SLE-16407). +- thermal: remove get_mode() operation of drivers (jsc#SLE-16407). +- thermal: Store device mode in struct thermal_zone_device + (jsc#SLE-16407). +- thermal: Add current mode to thermal zone device + (jsc#SLE-16407). +- thermal: Store thermal mode in a dedicated enum (jsc#SLE-16407). + Refresh + patches.suse/acpi_thermal_passive_blacklist.patch +- acpi: thermal: Fix error handling in the register function + (jsc#SLE-16407). +- sched,acpi_pad: Convert to sched_set_fifo*() (jsc#SLE-16407). +- ACPI: Replace HTTP links with HTTPS ones (jsc#SLE-16407). + Refresh + patches.suse/0017-ACPI-NFIT-Define-runtime-firmware-activation-command.patch +- ACPI: Use valid link to the ACPI specification (jsc#SLE-16407). +- ACPI: Use fallthrough pseudo-keyword (jsc#SLE-16407). +- ACPI: APEI: remove redundant assignment to variable rc + (jsc#SLE-16407). +- ACPI: NUMA: Remove the useless 'node >= MAX_NUMNODES' check + (jsc#SLE-16407). +- ACPI: NUMA: Remove the useless sub table pointer check + (jsc#SLE-16407). +- ACPI: tables: Remove the duplicated checks for + acpi_parse_entries_array() (jsc#SLE-16407). +- ACPI: tables: avoid relocations for table signature array + (jsc#SLE-16407). +- ACPI: OSL: Clean up the removal of unused memory mappings + (jsc#SLE-16407). +- ACPI: OSL: Use deferred unmapping in acpi_os_unmap_iomem() + (jsc#SLE-16407). +- ACPI: OSL: Use deferred unmapping in + acpi_os_unmap_generic_address() (jsc#SLE-16407). +- ACPI: OSL: Implement deferred unmapping of ACPI memory + (jsc#SLE-16407). +- ACPI: property: use cached name in + acpi_fwnode_get_named_child_node() (jsc#SLE-16407). +- ACPI: EC: add newline when printing 'ec_event_clearing' module + parameter (jsc#SLE-16407). +- ACPI: PAD: Eliminate usage of uninitialized_var() macro + (jsc#SLE-16407). +- ACPI: sysfs: add newlines when printing module parameters + (jsc#SLE-16407). +- ACPI: procfs: Remove last dirs after being marked deprecated + for a decade (jsc#SLE-16407). +- Remove + patches.suse/acpi-disable-deprecated-warnings.patch +- Update config files. + x86_64/default removed CONFIG_ACPI_PROCFS_POWER=y +- ACPICA: Update version to 20200717 (jsc#SLE-16407). +- acpi: Extend TPM2 ACPI table with missing log fields + (jsc#SLE-16407). +- libnvdimm: Replace guid_copy() with import_guid() where it + makes sense (jsc#SLE-16407). +- thermal/of: Rename of-thermal.c (jsc#SLE-16407). +- ACPICA: Update version to 20200528 (jsc#SLE-16407). +- PCI: Rename _DSM constants to align with spec (jsc#SLE-16407). +- ACPI: DPTF: Add battery participant driver (jsc#SLE-16407). + Refresh + patches.suse/ACPI-DPTF-Add-battery-participant-for-TigerLake.patch +- ACPI: DPTF: Additional sysfs attributes for power participant + driver (jsc#SLE-16407). +- ACPI / PMIC: Add i2c address for thermal control + (jsc#SLE-16407). +- ACPI: utils: Add acpi_evaluate_reg() helper (jsc#SLE-16407). +- ACPI: Delete unused proc filename macros (jsc#SLE-16407). +- ACPI: debug: Make two functions static (jsc#SLE-16407). +- ACPI: processor: idle: Allow probing on platforms with one + ACPI C-state (jsc#SLE-16407). +- ACPI: sleep: Put the FACS table after using it (jsc#SLE-16407). +- ACPI: scan: Put SPCR and STAO table after using it + (jsc#SLE-16407). +- ACPI: EC: Put the ACPI table after using it (jsc#SLE-16407). +- ACPI: APEI: Put the HEST table for error path (jsc#SLE-16407). +- ACPI: APEI: Put the error record serialization table for error + path (jsc#SLE-16407). +- ACPI: APEI: Put the error injection table for error path and + module exit (jsc#SLE-16407). +- ACPI: APEI: Put the boot error record table after parsing + (jsc#SLE-16407). +- ACPI: watchdog: Put the watchdog action table after parsing + (jsc#SLE-16407). +- ACPI: LPIT: Put the low power idle table after using it + (jsc#SLE-16407). +- ACPICA: Update version to 20200430 (jsc#SLE-16407). +- PM: sleep: core: Rename DPM_FLAG_LEAVE_SUSPENDED + (jsc#SLE-16407). +- PM: sleep: core: Rename dev_pm_smart_suspend_and_suspended() + (jsc#SLE-16407). +- PM: sleep: core: Rename dev_pm_may_skip_resume() + (jsc#SLE-16407). +- PM: sleep: core: Rework the power.may_skip_resume handling + (jsc#SLE-16407). +- PM: sleep: core: Do not skip callbacks in the resume phase + (jsc#SLE-16407). +- PM: sleep: core: Fold functions into their callers + (jsc#SLE-16407). +- PM: sleep: core: Simplify the SMART_SUSPEND flag handling + (jsc#SLE-16407). +- ACPI: PM: s2idle: Print type of wakeup debug messages + (jsc#SLE-16407). +- ACPI/PCI: pci_link: use extended_irq union member when setting + ext-irq shareable (jsc#SLE-16407). +- ACPI: button: Drop no longer necessary Asus T200TA + lid_init_state quirk (jsc#SLE-16407). +- ACPI: EC: Fix up fast path check in acpi_ec_add() + (jsc#SLE-16407). +- ACPI: NFIT: Replace zero-length array with flexible-array member + (jsc#SLE-16407). +- ACPI: NUMA: Up-level "map to online node" functionality + (jsc#SLE-16407). +- ACPICA: Update version 20200326 (jsc#SLE-16407). +- ACPICA: WSMT: Fix typo, no functional change (jsc#SLE-16407). +- ACPICA: Fix IVRS IVHD type 10h reserved field name + (jsc#SLE-16407). +- ACPICA: Implement IVRS IVHD type 11h parsing (jsc#SLE-16407). +- ACPICA: Fix a typo in a comment field (jsc#SLE-16407). +- x86: ACPI: fix CPU hotplug deadlock (jsc#SLE-16407). +- PM: sleep: core: Drop racy and redundant checks from + device_prepare() (jsc#SLE-16407). + Refresh + patches.suse/0011-PM-sleep-core-Rename-DPM_FLAG_NEVER_SKIP.patch +- PCI/ACPI: Move pcie_to_hpx3_type from stack to static data + (jsc#SLE-16407). +- acpi: Remove header dependency (jsc#SLE-16407). +- ACPI: PCI: Use scnprintf() for avoiding potential buffer + overflow (jsc#SLE-16407). +- ACPI: fan: Use scnprintf() for avoiding potential buffer + overflow (jsc#SLE-16407). +- ACPI: EC: Eliminate EC_FLAGS_QUERY_HANDSHAKE (jsc#SLE-16407). +- ACPI: EC: Do not clear boot_ec_is_ecdt in acpi_ec_add() + (jsc#SLE-16407). +- blacklist.conf: + Removed + 65a691f5f8f0bb63d6a82eec7b0ffd193d8d8a5f # ACPI: not for stable, reverted below + c85a7109f905f7848735ef50d7e63e5534c4e95d # ACPI: stable commit reverting the above +- ACPI: EC: Simplify acpi_ec_ecdt_start() and acpi_ec_init() + (jsc#SLE-16407). +- ACPI: EC: Consolidate event handler installation code + (jsc#SLE-16407). +- ACPI: EC: Use fast path in acpi_ec_add() for DSDT boot EC + (jsc#SLE-16407). +- ACPI: EC: Simplify acpi_ec_add() (jsc#SLE-16407). +- ACPI: EC: Drop AE_NOT_FOUND special case from + ec_install_handlers() (jsc#SLE-16407). +- ACPI: EC: Avoid passing redundant argument to functions + (jsc#SLE-16407). +- ACPI: EC: Avoid printing confusing messages in acpi_ec_setup() + (jsc#SLE-16407). +- ACPI: list_for_each_safe() -> list_for_each_entry_safe() + (jsc#SLE-16407). +- ACPI: video: remove redundant assignments to variable result + (jsc#SLE-16407). +- ACPI: OSL: Add missing __acquires/__releases annotations + (jsc#SLE-16407). +- ACPI / battery: Cleanup Lenovo Ideapad Miix 320 DMI table entry + (jsc#SLE-16407). +- ACPI / AC: Cleanup DMI quirk table (jsc#SLE-16407). +- ACPI: Add new tiny-power-button driver to directly signal init + (jsc#SLE-16407). + Update config files. + x86_64/default add # CONFIG_ACPI_TINY_POWER_BUTTON is not set + arm64/default add # CONFIG_ACPI_TINY_POWER_BUTTON is not set +- ACPI: button: move HIDs to acpi/button.h (jsc#SLE-16407). +- ACPICA: Update version to 20200214 (jsc#SLE-16407). +- PM: sleep: core: Use built-in RCU list checking (jsc#SLE-16407). +- i2c: designware: Add ACPI HID for Hisilicon Hip08-Lite I2C + controller (jsc#SLE-16407). +- ACPI / APD: Add clock frequency for Hisilicon Hip08-Lite I2C + controller (jsc#SLE-16407). +- ACPI/IORT: Parse SSID property of named component node + (jsc#SLE-16407). + Refresh + patches.suse/ACPI-IORT-Add-an-input-ID-to-acpi_dma_configure.patch +- ACPI: thermal: switch to use helpers + (jsc#SLE-16407). +- ACPI / LPSS: Rename pwm_backlight pwm-lookup to + pwm_soc_backlight (jsc#SLE-16407). +- ACPI: PPTT: Consistently use unsigned int as parameter type + (jsc#SLE-16407). +- ACPI: video: Use native backlight on Lenovo E41-25/45 + (jsc#SLE-16407). +- ACPI: video: fix typo in comment (jsc#SLE-16407). +- ACPICA: Update version to 20200110 (jsc#SLE-16407). +- ACPICA: Update version to 20191213 (jsc#SLE-16407). +- ACPICA: acpisrc: add unix line ending support for non-windows + build (jsc#SLE-16407). +- ACPI: Fix Kconfig indentation (jsc#SLE-16407). +- ACPI: button: Add DMI quirk for Acer Switch 10 SW5-032 + lid-switch (jsc#SLE-16407). +- device property: Add a function to obtain a node's prefix + (jsc#SLE-16407). + Refresh + patches.suse/device-property-export-fwnode_get_name.patch +- ACPI: HMAT: use %u instead of %d to print u32 values + (jsc#SLE-16407). +- ACPI: NUMA: HMAT: fix a section mismatch (jsc#SLE-16407). +- ACPI: HMAT: don't mix pxm and nid when setting memory target + processor_pxm (jsc#SLE-16407). +- ACPI: NUMA: HMAT: Register "soft reserved" memory as an "hmem" + device (jsc#SLE-16407). +- ACPI: NUMA: HMAT: Register HMAT at device_initcall level + (jsc#SLE-16407). +- device-dax: Add a driver for "hmem" devices (jsc#SLE-16407). +- Update config files. + x86_64/default add CONFIG_DEV_DAX_HMEM=m + arm64/default add CONFIG_DEV_DAX_HMEM=m +- supported.conf: + - drivers/dax/dax_hmem +- ACPI: NUMA: Establish a new drivers/acpi/numa/ directory + (jsc#SLE-16407). + Update config files. +- ACPI: video: update doc for acpi_video_bus_DOS() + (jsc#SLE-16407). +- ACPI: platform: Unregister stale platform devices + (jsc#SLE-16407). +- ACPI / LPSS: Switch to use acpi_dev_hid_uid_match() + (jsc#SLE-16407). +- ACPI / utils: Describe function parameters in kernel-doc + (jsc#SLE-16407). +- ACPI: button: Remove unused acpi_lid_notifier_register() + functions (jsc#SLE-16407). + Refresh + patches.suse/ACPI-button-fix-handling-lid-state-changes-when-inpu.patch +- ACPI: button: Add DMI quirk for Asus T200TA (jsc#SLE-16407). +- ACPI: button: Turn lid_blacklst DMI table into a generic quirk + table (jsc#SLE-16407). + Refresh + patches.suse/ACPI-button-Add-DMI-quirk-for-Medion-Akoya-E2215T.patch +- ACPI: button: Allow disabling LID support with the + lid_init_state module option (jsc#SLE-16407). +- ACPI: button: Refactor lid_init_state module parsing code + (jsc#SLE-16407). +- ACPI / PMIC: Add Cherry Trail Crystal Cove PMIC OpRegion driver + (jsc#SLE-16407). +- ACPI / PMIC: Add byt prefix to Crystal Cove PMIC OpRegion driver + (jsc#SLE-16407). +- ACPI / PMIC: Do not register handlers for unhandled OpRegions + (jsc#SLE-16407). +- ACPI: EC: add support for hardware-reduced systems + (jsc#SLE-16407). +- ACPI: EC: tweak naming in preparation for GpioInt support + (jsc#SLE-16407). +- ACPICA: Update version to 20191018 (jsc#SLE-16407). +- ACPI: OSI: Shoot duplicate word (jsc#SLE-16407). +- ACPI: processor_idle: Skip dummy wait if kernel is in guest + (jsc#SLE-16407). +- acpi: Use pr_warn instead of pr_warning (jsc#SLE-16407). + Refresh + patches.suse/acpi-disable-deprecated-warnings.patch +- ACPI: HMAT: ACPI_HMAT_MEMORY_PD_VALID is deprecated since + ACPI-6.3 (jsc#SLE-16407). +- PCI/ACPI: Remove unnecessary struct hotplug_program_ops + (jsc#SLE-16407). + Refresh + patches.suse/pci-aer-add-pci_aer_raw_clear_status-to-unconditionally-clear-error-status +- PCI/ACPI: Move _HPP & _HPX functions to pci-acpi.c + (jsc#SLE-16407). + Refresh + patches.suse/pci-aer-add-pci_aer_raw_clear_status-to-unconditionally-clear-error-status +- PCI/ACPI: Rename _HPX structs from hpp_* to hpx_* + (jsc#SLE-16407). +- PCI: Move ASPM declarations to linux/pci.h (jsc#SLE-16407). + Refresh + patches.suse/r8169-improve-rtl_get_coalesce.patch + patches.suse/mt76-mt76x2e-disable-pcie_aspm-by-default.patch + patches.suse/mt76-fix-include-in-pci.h.patch +- ACPI: thermal: Remove redundant acpi_has_method() calls + (jsc#SLE-16407). +- ACPI: SBS: remove unused const variable 'SMBUS_PEC' + (jsc#SLE-16407). +- ACPI/PCI: Remove surplus parentheses from a return statement + (jsc#SLE-16407). +- HMAT: Register attributes for memory hot add (jsc#SLE-16407). + Refresh + patches.suse/0001-HMAT-Skip-publishing-target-info-for-nodes-with-no-o.patch +- ACPI / APEI: Get rid of NULL_UUID_LE constant (jsc#SLE-16407). + Refresh + patches.suse/ACPI-APEI-Kick-the-memory_failure-queue-for-synchron.patch +- ACPICA: Update version to 20190816 (jsc#SLE-16407). +- ACPICA: Macros: remove pointer math on a null pointer + (jsc#SLE-16407). +- ACPI: PM: Print debug messages on device power state changes + (jsc#SLE-16407). +- PM: sleep: Drop dpm_noirq_begin() and dpm_noirq_end() + (jsc#SLE-16407). +- PM: sleep: Integrate suspend-to-idle with generig suspend flow + (jsc#SLE-16407). +- drivers: Introduce device lookup variants by ACPI_COMPANION + device (jsc#SLE-16407). +- Refresh + patches.suse/drivers-base-implement-dev_enable_async_probe.patch + patches.suse/i2c-acpi-put-device-when-verifying-client-fails.patch +- acpi: Use built-in RCU list checking for acpi_ioremaps list + (jsc#SLE-16407). +- commit 2e42a5c + +- mm,memory_failure: always pin the page in madvise_inject_error + (bsc#1180258). +- commit 7fb306a + +- x86/mm/ident_map: Check for errors from ident_pud_init() + (bsc#1152489). +- commit 37afaed + +- fix patches metadata +- fix Patch-mainline: + patches.suse/IB-isert-Fix-unaligned-immediate-data-handling.patch + patches.suse/IB-mthca-fix-return-value-of-error-branch-in-mthca_i.patch + patches.suse/IB-rdmavt-Fix-sizeof-mismatch.patch + patches.suse/IB-srpt-Fix-memory-leak-in-srpt_add_one.patch + patches.suse/IB-uverbs-Set-IOVA-on-IB-MR-in-uverbs-layer.patch + patches.suse/RDMA-bnxt_re-Do-not-add-user-qps-to-flushlist.patch + patches.suse/RDMA-core-Fix-bogus-WARN_ON-during-ib_unregister_dev.patch + patches.suse/RDMA-core-Fix-reported-speed-and-width.patch + patches.suse/RDMA-core-Fix-return-error-value-in-_ib_modify_qp-to.patch + patches.suse/RDMA-core-Free-DIM-memory-in-error-unwind.patch + patches.suse/RDMA-core-Stop-DIM-before-destroying-CQ.patch + patches.suse/RDMA-counter-Allow-manually-bind-QPs-with-different-.patch + patches.suse/RDMA-counter-Only-bind-user-QPs-in-auto-mode.patch + patches.suse/RDMA-hns-Bugfix-for-memory-window-mtpt-configuration.patch + patches.suse/RDMA-netlink-Remove-CAP_NET_RAW-check-when-dump-a-ra.patch + patches.suse/RDMA-pvrdma-Fix-missing-kfree-in-pvrdma_register_dev.patch + patches.suse/RDMA-qedr-Endianness-warnings-cleanup.patch + patches.suse/RDMA-qedr-Fix-memory-leak-in-iWARP-CM.patch + patches.suse/RDMA-qedr-SRQ-s-bug-fixes.patch + patches.suse/RDMA-rxe-Drop-pointless-checks-in-rxe_init_ports.patch + patches.suse/RDMA-rxe-Fix-memleak-in-rxe_mem_init_user.patch + patches.suse/RDMA-rxe-Fix-skb-lifetime-in-rxe_rcv_mcast_pkt.patch + patches.suse/RDMA-rxe-Fix-the-parent-sysfs-read-when-the-interfac.patch + patches.suse/RDMA-rxe-Handle-skb_clone-failure-in-rxe_recv.c.patch + patches.suse/RDMA-rxe-Prevent-access-to-wr-next-ptr-afrer-wr-is-p.patch + patches.suse/RDMA-rxe-Remove-unused-rxe_mem_map_pages.patch + patches.suse/RDMA-rxe-Return-void-from-rxe_init_port_param.patch + patches.suse/RDMA-rxe-Return-void-from-rxe_mem_init_dma.patch + patches.suse/RDMA-rxe-Skip-dgid-check-in-loopback-mode.patch + patches.suse/RDMA-srpt-Fix-typo-in-srpt_unregister_mad_agent-docs.patch +- commit 2dad798 + +- fix patches metadata +- fix Patch-mainline: + patches.suse/scsi-mpt3sas-add-bypass_dirty_port_flag-parameter + patches.suse/scsi-mpt3sas-add-module-parameter-multipath_on_hba + patches.suse/scsi-mpt3sas-allocate-memory-for-hba_port-objects + patches.suse/scsi-mpt3sas-bump-driver-version-to-35-101-00-00 + patches.suse/scsi-mpt3sas-define-hba_port-structure + patches.suse/scsi-mpt3sas-get-device-objects-using-sas_address-portid + patches.suse/scsi-mpt3sas-get-sas_device-objects-using-device-s-rphy + patches.suse/scsi-mpt3sas-handle-vses-vphy-object-during-hba-reset + patches.suse/scsi-mpt3sas-handling-hba-vses-device + patches.suse/scsi-mpt3sas-rearrange-scsih_mark_responding_sas_device + patches.suse/scsi-mpt3sas-rename-transport_del_phy_from_an_existing_port + patches.suse/scsi-mpt3sas-set-valid-physicalport-in-smppassthrough + patches.suse/scsi-mpt3sas-update-hba_port-objects-after-host-reset + patches.suse/scsi-mpt3sas-update-hba_port-s-sas_address-phy_mask +- commit a2950eb + +- EDAC/i10nm: Use readl() to access MMIO registers (bsc#1152489). +- commit a3a0100 + +- series.conf: cleanup +- update upstream reference and resort: + patches.suse/powerpc-perf-Fix-crash-with-is_sier_available-when-p.patch +- commit adb35a0 + +- samples/bpf: Fix possible hang in xdpsock with multiple threads + (bsc#1177028). +- libbpf: Sanitise map names before pinning (bsc#1177028). +- samples: bpf: Refactor hbm program with libbpf (bsc#1177028). +- tools/bpftool: Fix build slowdown (bsc#1177028). +- bpf: Fix propagation of 32-bit signed bounds from 64-bit bounds + (bsc#1177028). +- selftests/bpf/test_offload.py: Filter bpftool internal map + when counting maps (bsc#1177028). +- selftests/bpf/test_offload.py: Fix expected case of extack + messages (bsc#1177028). +- selftests/bpf/test_offload.py: Only check verifier log on + verification fails (bsc#1177028). +- selftests/bpf/test_offload.py: Remove check for program load + flags match (bsc#1177028). +- xdp: Remove the xdp_attachment_flags_ok() callback + (bsc#1177028). +- tools/bpftool: Fix PID fetching with a lot of results + (bsc#1177028). +- selftests/bpf: Drain ringbuf samples at the end of test + (bsc#1177028). +- libbpf: Fix ring_buffer__poll() to return number of consumed + samples (bsc#1177028). +- commit fa84f47 + +- series.conf: refresh +- update upstream references and resort: + patches.suse/arm64-force-no_block_mappings-if-crashkernel-reservation-is-required.patch. + patches.suse/arm64-ignore-any-dma-offsets-in-the-max_zone_phys-calculation.patch. + patches.suse/arm64-mm-move-reserve_crashkernel-into-mem_init.patch. + patches.suse/arm64-mm-move-zone_dma_bits-initialization-into-zone_sizes_init.patch. + patches.suse/arm64-mm-set-zone_dma-size-based-on-devicetree-s-dma-ranges.patch. + patches.suse/arm64-mm-set-zone_dma-size-based-on-early-iort-scan.patch. + patches.suse/ibmvnic-Clean-up-TX-code-and-TX-buffer-data-structur.patch. + patches.suse/ibmvnic-Correctly-re-enable-interrupts-in-NAPI-polli.patch. + patches.suse/ibmvnic-Do-not-replenish-RX-buffers-after-every-poll.patch. + patches.suse/ibmvnic-Ensure-that-device-queue-memory-is-cache-lin.patch. + patches.suse/ibmvnic-Introduce-batched-RX-buffer-descriptor-trans.patch. + patches.suse/ibmvnic-Introduce-indirect-subordinate-Command-Respo.patch. + patches.suse/ibmvnic-Introduce-xmit_more-support-using-batched-su.patch. + patches.suse/ibmvnic-Remove-send_subcrq-function.patch. + patches.suse/ibmvnic-Use-netdev_alloc_skb-instead-of-alloc_skb-to.patch. + patches.suse/ibmvnic-fix-rx-buffer-tracking-and-index-management-.patch. + patches.suse/net-smc-improve-return-codes-for-smc-dv2. + patches.suse/of-address-introduce-of_dma_get_max_cpu_address.patch. + patches.suse/powerpc-perf-Add-generic-and-cache-event-list-for-po.patch. + patches.suse/powerpc-perf-Add-new-power-PMU-flag-PPMU_P10_DD1-for.patch. + patches.suse/powerpc-perf-Drop-the-check-for-SIAR_VALID.patch. + patches.suse/powerpc-perf-Fix-crash-with-is_sier_available-when-p.patch. + patches.suse/powerpc-perf-Fix-the-PMU-group-constraints-for-thres.patch. + patches.suse/powerpc-perf-Fix-to-update-cache-events-with-l2l3-ev.patch. + patches.suse/powerpc-perf-Fix-to-update-generic-event-codes-for-p.patch. + patches.suse/powerpc-perf-Fix-to-update-radix_scope_qual-in-power.patch. + patches.suse/powerpc-perf-Invoke-per-CPU-variable-access-with-dis.patch. + patches.suse/powerpc-perf-MMCR0-control-for-PMU-registers-under-P.patch. + patches.suse/powerpc-perf-Update-the-PMU-group-constraints-for-l2.patch. + patches.suse/powerpc-perf-Use-regs-nip-when-SIAR-is-zero.patch. + patches.suse/powerpc-perf-Use-the-address-from-SIAR-register-to-s.patch. + patches.suse/s390-sles15sp3-03-01-s390-cio-Export-information-about-Endpoint-Security-.patch. + patches.suse/s390-sles15sp3-03-02-s390-cio-Provide-Endpoint-Security-Mode-per-CU.patch. + patches.suse/s390-sles15sp3-03-03-s390-cio-Add-support-for-FCES-status-notification.patch. + patches.suse/s390-sles15sp3-03-04-s390-dasd-Remove-unused-parameter-from-dasd_generic_.patch. + patches.suse/s390-sles15sp3-03-05-s390-dasd-Move-duplicate-code-to-separate-function.patch. + patches.suse/s390-sles15sp3-03-06-s390-dasd-Store-path-configuration-data-during-path-.patch. + patches.suse/s390-sles15sp3-03-07-s390-dasd-Fix-operational-path-inconsistency.patch. + patches.suse/s390-sles15sp3-03-08-s390-dasd-Display-FC-Endpoint-Security-information-v.patch. + patches.suse/s390-sles15sp3-03-09-s390-dasd-Prepare-for-additional-path-event-handling.patch. + patches.suse/s390-sles15sp3-03-10-s390-dasd-Process-FCES-path-event-notification.patch. + patches.suse/scsi-fnic-avoid-looping-in-trans-eth-on-unload. + patches.suse/scsi-fnic-change-shost_printk-to-fnic_fcs_dbg. + patches.suse/scsi-fnic-change-shost_printk-to-fnic_main_dbg. + patches.suse/scsi-fnic-set-scsi_set_resid-only-for-underflow. + patches.suse/scsi-fnic-validate-io_req-before-others. +- commit 41ceac4 + +- rtc: pcf2127: fix pcf2127_nvmem_read/write() returns + (git-fixes). +- commit fe3d756 + +- rtc: ep93xx: Fix NULL pointer dereference in + ep93xx_rtc_read_time (git-fixes). +- rtc: hym8563: enable wakeup when applicable (git-fixes). +- commit 52e449a + +- pwm: imx27: Fix overflow for bigger periods (git-fixes). +- firmware: tegra: fix strncpy()/strncat() confusion (git-fixes). +- mtd: spi-nor: ignore errors in spi_nor_unlock_all() (git-fixes). +- mtd: spi-nor: sst: fix BPn bits for the SST25VF064C (git-fixes). +- iwlwifi: sta: set max HE max A-MPDU according to HE capa + (git-fixes). +- commit 48bc7b1 + +- power: supply: bq24190_charger: fix reference leak (git-fixes). +- power: supply: axp288_charger: Fix HP Pavilion x2 10 DMI + matching (git-fixes). +- HSI: omap_ssi: Don't jump to free ID in ssi_add_controller() + (git-fixes). +- pwm: lp3943: Dynamically allocate PWM chip base (git-fixes). +- pwm: zx: Add missing cleanup in error path (git-fixes). +- commit 22a0fb4 + +- Fixed 14 mpt3sas patches, now upstream (jsc#SLE-16914, bsc#1177733) + Should be no functional change, bu the patches are updated + with commit ID, and moved to the proper place in series.conf. +- commit eef3811 + +- scsi: core: Fix VPD LUN ID designator priorities (bsc#1178049). +- commit efdf30e + +- spi: spi-nxp-fspi: fix fspi panic by unexpected interrupts + (bsc#1180214). +- rtc: pcf2127: fix a bug when not specify interrupts property + (bsc#1180214). +- rtc: fsl-ftm-alarm: update acpi device id (bsc#1180214). +- ahci: qoriq: enable acpi support in qoriq ahci driver + (bsc#1180214). +- spi: spi-nxp-fspi: Add ACPI support (bsc#1180214). +- commit 8759723 + +- supported.conf: Declare qat4xxx supported externally by Intel +- commit b7913fb + +- scsi: mpt3sas: Bump driver version to 35.101.00.00 + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Add module parameter multipath_on_hba + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Handle vSES vphy object during HBA reset + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Add bypass_dirty_port_flag parameter + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Handling HBA vSES device (jsc#SLE-16914, + bsc#1177733). +- scsi: mpt3sas: Set valid PhysicalPort in SMPPassThrough + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Update hba_port objects after host reset + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Get sas_device objects using device's rphy + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Rename transport_del_phy_from_an_existing_port() + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Get device objects using sas_address & portID + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Update hba_port's sas_address & phy_mask + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Rearrange _scsih_mark_responding_sas_device() + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Allocate memory for hba_port objects + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Define hba_port structure (jsc#SLE-16914, + bsc#1177733). +- scsi: mpt3sas: A small correction in _base_process_reply_queue + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Fix sync irqs (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Detect tampered Aero and Sea adapters + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Remove pci-dma-compat wrapper API (jsc#SLE-16914, + bsc#1177733). +- scsi: mpt3sas: Remove superfluous memset() (jsc#SLE-16914, + bsc#1177733). +- scsi: mpt3sas: Update driver version to 35.100.00.00 + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Postprocessing of target and LUN reset + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Add functions to check if any cmd is outstanding + on Target and LUN (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Rename and export interrupt mask/unmask functions + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Cancel the running work during host reset + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Dump system registers for debugging + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Memset config_cmds.reply buffer with zeros + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Don't call disable_irq from IRQ poll handler + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Fix set but unused variable (jsc#SLE-16914, + bsc#1177733). +- scsi: mpt3sas: Fix error returns in BRM_status_show + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Fix unlock imbalance (jsc#SLE-16914, + bsc#1177733). +- scsi: mpt3sas: Fix memset() in non-RDPQ mode (jsc#SLE-16914, + bsc#1177733). +- scsi: mpt3sas: Fix reply queue count in non RDPQ mode + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Fix double free warnings (jsc#SLE-16914, + bsc#1177733). +- scsi: mpt3sas: Disable DIF when prot_mask set to zero + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Capture IOC data for debugging purposes + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Use true, false for ioc->use_32bit_dma + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Remove NULL check before freeing function + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Update mpt3sas version to 33.101.00.00 + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Handle RDPQ DMA allocation in same 4G region + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Separate out RDPQ allocation to new function + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Rename function name is_MSB_are_same + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Don't change the DMA coherent mask after + allocations (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: use true,false for bool variables (jsc#SLE-16914, + bsc#1177733). +- commit 5bf7889 + +- crypto: qat - add capability detection logic in qat_4xxx + (jsc#SLE-14454). +- commit 83336e3 + +- crypto: qat - add AES-XTS support for QAT GEN4 devices + (jsc#SLE-14454). +- Refresh patches.suse/QAT-add-suse_kabi_padding.patch. +- commit 3755a1e + +- crypto: qat - add AES-CTR support for QAT GEN4 devices + (jsc#SLE-14454). +- commit 5393983 + +- crypto: qat - fix excluded_middle.cocci warnings + (jsc#SLE-14454). +- commit a62bf18 + +- tracing: Fix race in trace_open and buffer resize call + (CVE-2020-27825 bsc#1179960). +- commit c590ed4 + +- ring-buffer: speed up buffer resets by avoiding synchronize_rcu + for each CPU (CVE-2020-27825 bsc#1179960). +- commit d308278 + +- ring-buffer: Make resize disable per cpu buffer instead of + total buffer (CVE-2020-27825 bsc#1179960). +- commit 95e9004 + +- crypto: qat - add gen4 firmware loader (jsc#SLE-14454). +- commit 9d44e54 + +- Drop a backported uvcvideo patch that caused a regression (bsc#1180117) + Also blacklisting the commit +- commit b185b93 + +- blacklist.conf: Remove temporary drm path blacklist +- commit f037d4c + +- crypto: qat - add qat_4xxx driver (jsc#SLE-14454). + Update config files. +- commit 8df8685 + +- crypto: s390/sha1 - prefix the "sha1_" functions + (jsc#SLE-14454). +- commit aad706f + +- crypto: qat - add hook to initialize vector routing table + (jsc#SLE-14454). +- commit 21c4c5c + +- x86/resctrl: Fix incorrect local bandwidth when mba_sc is + enabled (bsc#1152489). +- x86/resctrl: Remove unused struct mbm_state::chunks_bw + (bsc#1152489). +- commit b4996a1 + +- crypto: powerpc/sha1 - prefix the "sha1_" functions + (jsc#SLE-14454). +- commit 7a8e9d4 + +- nvmet-fc: fix missing check for no hostport struct + (bsc#1176942). +- commit 7fab8fc + +- scsi: qla2xxx: Update version to 10.02.00.104-k (bsc#1171688 + bsc#1172733). +- scsi: qla2xxx: Fix device loss on 4G and older HBAs (bsc#1171688 + bsc#1172733). +- scsi: qla2xxx: If fcport is undergoing deletion complete I/O + with retry (bsc#1171688 bsc#1172733). +- scsi: qla2xxx: Fix the call trace for flush workqueue + (bsc#1171688 bsc#1172733). +- scsi: qla2xxx: Fix flash update in 28XX adapters on big endian + machines (bsc#1171688 bsc#1172733). +- scsi: qla2xxx: Handle aborts correctly for port undergoing + deletion (bsc#1171688 bsc#1172733). +- scsi: qla2xxx: Fix N2N and NVMe connect retry failure + (bsc#1171688 bsc#1172733). +- scsi: qla2xxx: Fix FW initialization error on big endian + machines (bsc#1171688 bsc#1172733). +- scsi: qla2xxx: Fix crash during driver load on big endian + machines (bsc#1171688 bsc#1172733). +- scsi: qla2xxx: Fix compilation issue in PPC systems (bsc#1171688 + bsc#1172733). +- scsi: qla2xxx: Don't check for fw_started while posting NVMe + command (bsc#1171688 bsc#1172733). +- scsi: qla2xxx: Tear down session if FW say it is down + (bsc#1171688 bsc#1172733). +- scsi: qla2xxx: Limit interrupt vectors to number of CPUs + (bsc#1171688 bsc#1172733). +- scsi: qla2xxx: Change post del message from debug level to + log level (bsc#1171688 bsc#1172733). +- scsi: qla2xxx: Remove in_interrupt() from qla83xx-specific code + (bsc#1171688 bsc#1172733). +- scsi: target: tcm_qla2xxx: Remove BUG_ON(in_interrupt()) + (bsc#1171688 bsc#1172733). +- scsi: qla2xxx: Remove in_interrupt() from qla82xx-specific code + (bsc#1171688 bsc#1172733). +- commit 298833c + +- crypto: qat - target fw images to specific AEs (jsc#SLE-14454). +- commit e7e8777 + +- scsi: qla2xxx: Move sess cmd list/lock to driver (bsc#1171688 + bsc#1172733). +- scsi: qla2xxx: Drop TARGET_SCF_LOOKUP_LUN_FROM_TAG (bsc#1171688 + bsc#1172733). +- scsi: qla2xxx: Return EBUSY on fcport deletion (bsc#1171688 + bsc#1172733). + Replace patches.suse/qla2xxx-return-ebusy-on-fcport-deletion.patch + with upstream version. +- scsi: qla2xxx: remove incorrect sparse #ifdef (bsc#1171688 + bsc#1172733). +- scsi: qla2xxx: Fix return of uninitialized value in rval + (bsc#1171688 bsc#1172733). +- scsi: qla2xxx: Convert to DEFINE_SHOW_ATTRIBUTE (bsc#1171688 + bsc#1172733). +- scsi: qla2xxx: Initialize variable in qla8044_poll_reg() + (bsc#1171688 bsc#1172733). +- scsi: qla2xxx: Do not consume srb greedily (bsc#1171688 + bsc#1172733). +- scsi: qla2xxx: Handle incorrect entry_type entries (bsc#1171688 + bsc#1172733). +- commit 3c29fc6 + +- x86/mm/mem_encrypt: Fix definition of PMD_FLAGS_DEC_WP + (bsc#1152489). +- commit 994c3ae + +- scsi: qla2xxx: Use constant when it is known (bsc#1171688 + bsc#1172733). + Refresh: + - patches.suse/qla2xxx-return-ebusy-on-fcport-deletion.patch +- commit cfc1ae5 + +- crypto: sha - split sha.h into sha1.h and sha2.h + (jsc#SLE-14454). +- Refresh + patches.suse/add-product-identifying-information-to-vmcoreinfo.patch. +- commit 8180f5f + +- scsi: lpfc: Fix fall-through warnings for Clang (bsc#1175480 + bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Correct null ndlp reference on routine exit + (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Use generic power management (bsc#1175480 + bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Fix variable 'vport' set but not used in + lpfc_sli4_abts_err_handler() (bsc#1175480 bsc#1176396 + bsc#1176942 bsc#1177500). +- scsi: lpfc: Fix missing prototype for + lpfc_nvmet_prep_abort_wqe() (bsc#1175480 bsc#1176396 bsc#1176942 + bsc#1177500). +- scsi: lpfc: Fix set but unused variables + in lpfc_dev_loss_tmo_handler() (bsc#1175480 bsc#1176396 + bsc#1176942 bsc#1177500). +- scsi: lpfc: Fix set but not used warnings from Rework remote + port lock handling (bsc#1175480 bsc#1176396 bsc#1176942 + bsc#1177500). +- scsi: lpfc: Fix missing prototype warning for + lpfc_fdmi_vendor_attr_mi() (bsc#1175480 bsc#1176396 bsc#1176942 + bsc#1177500). +- scsi: lpfc: Fix memory leak on lcb_context (bsc#1175480 + bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Remove dead code on second !ndlp check (bsc#1175480 + bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Fix pointer defereference before it is null checked + issue (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Update changed file copyrights for 2020 (bsc#1175480 + bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Update lpfc version to 12.8.0.6 (bsc#1175480 + bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Convert abort handling to SLI-3 and SLI-4 handlers + (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Convert SCSI I/O completions to SLI-3 and SLI-4 + handlers (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Convert SCSI path to use common I/O submission path + (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Enable common send_io interface for SCSI and NVMe + (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Enable common wqe_template support for both SCSI + and NVMe (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Refactor WQE structure definitions for common use + (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Fix NPIV Fabric Node reference counting (bsc#1175480 + bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Fix NPIV discovery and Fabric Node detection + (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Unsolicited ELS leaves node in incorrect state while + dropping it (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Remove ndlp when a PLOGI/ADISC/PRLI/REG_RPI + ultimately fails (bsc#1175480 bsc#1176396 bsc#1176942 + bsc#1177500). +- scsi: lpfc: Rework remote port lock handling (bsc#1175480 + bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Fix refcounting around SCSI and NVMe transport APIs + (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Fix removal of SCSI transport device get and put on + dev structure (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Rework locations of ndlp reference taking + (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Rework remote port ref counting and node freeing + (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: lpfc_nvmet: Fix-up some formatting and doc-rot + issues (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: lpfc_nvme: Fix some kernel-doc related issues + (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: lpfc_nvme: Remove unused variable 'phba' + (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: lpfc_bsg: Provide correct documentation for a bunch + of functions (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: lpfc_debugfs: Fix a couple of function documentation + issues (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: lpfc_attr: Fix-up a bunch of kernel-doc + misdemeanours (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: lpfc_attr: Demote kernel-doc format for redefined + functions (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: lpfc_scsi: Fix a whole host of kernel-doc issues + (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Update lpfc version to 12.8.0.5 (bsc#1175480 + bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Reject CT request for MIB commands (bsc#1175480 + bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Add FDMI Vendor MIB support (bsc#1175480 bsc#1176396 + bsc#1176942 bsc#1177500). +- scsi: lpfc: Enlarge max_sectors in scsi host templates + (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Fix duplicate wq_create_version check (bsc#1175480 + bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Removed unused macros in lpfc_attr.c (bsc#1175480 + bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Re-fix use after free in lpfc_rq_buf_free() + (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Fix scheduling call while in softirq context + in lpfc_unreg_rpi (bsc#1175480 bsc#1176396 bsc#1176942 + bsc#1177500). +- scsi: lpfc: Fix invalid sleeping context in + lpfc_sli4_nvmet_alloc() (bsc#1175480 bsc#1176396 bsc#1176942 + bsc#1177500). +- scsi: Remove unneeded break statements (bsc#1175480 bsc#1176396 + bsc#1176942 bsc#1177500). +- scsi: lpfc: Remove unneeded variable 'status' in + lpfc_fcp_cpu_map_store() (bsc#1175480 bsc#1176396 bsc#1176942 + bsc#1177500). +- scsi: lpfc: Drop nodelist reference on error in lpfc_gen_req() + (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Remove set but not used 'qp' (bsc#1175480 + bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Fix spelling mistake "Cant" -> "Can't" (bsc#1175480 + bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Fix initial FLOGI failure due to BBSCN not supported + (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Update lpfc version to 12.8.0.4 (bsc#1175480 + bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Extend the RDF FPIN Registration descriptor + for additional events (bsc#1175480 bsc#1176396 bsc#1176942 + bsc#1177500). +- scsi: lpfc: Fix FLOGI/PLOGI receive race condition in pt2pt + discovery (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- commit 6c7ebde + +- soc: amlogic: canvas: add missing put_device() call in + meson_canvas_get() (git-fixes). +- drivers: soc: ti: knav_qmss_queue: Fix error return code in + knav_queue_probe (git-fixes). +- soc: ti: Fix reference imbalance in knav_dma_probe (git-fixes). +- soc: ti: knav_qmss: fix reference leak in knav_queue_probe + (git-fixes). +- soc: qcom: smp2p: Safely acquire spinlock without IRQs + (git-fixes). +- soc: mediatek: Check if power domains can be powered on at + boot time (git-fixes). +- soc/tegra: fuse: Fix index bug in get_process_id (git-fixes). +- soc: renesas: rmobile-sysc: Fix some leaks in + rmobile_init_pm_domains() (git-fixes). +- soc: fsl: dpio: Get the cpumask through cpumask_of(cpu) + (git-fixes). +- spi: spi-nxp-fspi: fix fspi panic by unexpected interrupts + (git-fixes). +- commit 37de46f + +- platform/x86: intel-vbtn: Support for tablet mode on HP Pavilion + 13 x360 PC (git-fixes). +- Refresh + patches.suse/platform-x86-intel-vbtn-Allow-switch-events-on-Acer-.patch. +- commit b789099 + +- pinctrl: falcon: add missing put_device() call in + pinctrl_falcon_probe() (git-fixes). +- mtd: rawnand: gpmi: Fix the random DMA timeout issue + (git-fixes). +- mtd: rawnand: meson: Fix a resource leak in init (git-fixes). +- pinctrl: amd: remove debounce filter setting in IRQ type setting + (git-fixes). +- platform/x86: touchscreen_dmi: Add info for the Irbis TW118 + tablet (git-fixes). +- platform/x86: acer-wmi: add automatic keyboard background + light toggle key as KEY_LIGHTS_TOGGLE (git-fixes). +- platform/x86: thinkpad_acpi: Add BAT1 is primary battery quirk + for Thinkpad Yoga 11e 4th gen (git-fixes). +- platform/x86: thinkpad_acpi: Do not report SW_TABLET_MODE on + Yoga 11e (git-fixes). +- commit 3fd302b + +- mtd: rawnand: gpmi: fix reference count leak in gpmi ops + (git-fixes). +- mtd: rawnand: meson: fix meson_nfc_dma_buffer_release() + arguments (git-fixes). +- mtd: rawnand: qcom: Fix DMA sync on FLASH_STATUS register read + (git-fixes). +- mtd: spinand: Fix OOB read (git-fixes). +- mfd: rt5033: Fix errorneous defines (git-fixes). +- Input: cm109 - do not stomp on control URB (git-fixes). +- Input: i8042 - add Acer laptops to the i8042 reset list + (git-fixes). +- iwlwifi: mvm: fix kernel panic in case of assert during CSA + (git-fixes). +- iwlwifi: pcie: limit memory read spin time (git-fixes). +- commit d3789b9 + +- series.conf: refresh +- update upstream references and resort: + patches.suse/scsi-fnic-avoid-looping-in-trans-eth-on-unload + patches.suse/scsi-fnic-change-shost_printk-to-fnic_fcs_dbg + patches.suse/scsi-fnic-change-shost_printk-to-fnic_main_dbg + patches.suse/scsi-fnic-set-scsi_set_resid-only-for-underflow + patches.suse/scsi-fnic-validate-io_req-before-others +- commit 3190615 + +- series.conf: refresh +- update upstream reference and resort: + patches.suse/ibmvnic-add-some-debugs.patch +- commit 5542884 + +- fix regression in "epoll: Keep a reference on files added to the check list" (bsc#1180031, git-fixes). +- commit 775fe31 + +- crypto: qat - add support for broadcasting mode (jsc#SLE-14454). +- commit 3eb975b + +- crypto: qat - add support for shared ustore (jsc#SLE-14454). +- commit 8208824 + +- crypto: qat - allow to target specific AEs (jsc#SLE-14454). +- commit 95c0bc6 + +- crypto: qat - add FCU CSRs to chip info (jsc#SLE-14454). +- commit cced259 + +- crypto: qat - add CSS3K support (jsc#SLE-14454). +- commit 5745db4 + +- crypto: qat - use ae_mask (jsc#SLE-14454). +- commit 8f00dce + +- crypto: qat - add check for null pointer (jsc#SLE-14454). +- crypto: qat - add misc control CSR to chip info (jsc#SLE-14454). +- crypto: qat - add wake up event to chip info (jsc#SLE-14454). +- commit 5b4f1a7 + +- crypto: qat - add clock enable CSR to chip info (jsc#SLE-14454). +- commit 0a0ceac + +- crypto: qat - add reset CSR and mask to chip info + (jsc#SLE-14454). +- crypto: qat - add local memory size to chip info + (jsc#SLE-14454). +- commit 668485e + +- crypto: qat - add support for lm2 and lm3 (jsc#SLE-14454). +- commit 7ae2a53 + +- crypto: qat - add next neighbor to chip_info (jsc#SLE-14454). +- crypto: qat - replace check based on DID (jsc#SLE-14454). +- commit 5d786df + +- crypto: qat - introduce chip info structure (jsc#SLE-14454). +- crypto: qat - refactor long expressions (jsc#SLE-14454). +- commit 417a900 + +- crypto: qat - refactor qat_uclo_set_ae_mode() (jsc#SLE-14454). +- commit a769fdf + +- crypto: qat - move defines to header files (jsc#SLE-14454). +- commit 316c7a5 + +- crypto: qat - remove global CSRs helpers (jsc#SLE-14454). +- commit 4eedc22 + +- crypto: qat - refactor AE start (jsc#SLE-14454). +- commit 20a1098 + +- crypto: qat - change micro word data mask (jsc#SLE-14454). +- crypto: qat - change type for ctx_mask (jsc#SLE-14454). +- crypto: qat - add support for relative FW ucode loading + (jsc#SLE-14454). +- commit d529f37 + +- crypto: qat - rename qat_uclo_del_uof_obj() (jsc#SLE-14454). +- commit 67574e7 + +- crypto: qat - introduce additional parenthesis (jsc#SLE-14454). +- commit 755a426 + +- crypto: qat - remove unnecessary parenthesis (jsc#SLE-14454). +- commit 4966907 + +- crypto: qat - fix error message (jsc#SLE-14454). +- crypto: qat - fix CSR access (jsc#SLE-14454). +- commit 9206fc3 + +- crypto: qat - support for mof format in fw loader + (jsc#SLE-14454). +- crypto: qat - replace pci with PCI in comments (jsc#SLE-14454). +- commit 9c9c3c5 + +- crypto: qat - remove cast for mailbox CSR (jsc#SLE-14454). +- commit 62896ad + +- crypto: qat - remove unneeded semicolon (jsc#SLE-14454). +- commit 9e0b68a + +- crypto: qat - extend ae_mask (jsc#SLE-14454). +- commit e36c762 + +- crypto: qat - allow for instances in different banks + (jsc#SLE-14454). +- commit d74dd80 + +- crypto: qat - refactor qat_crypto_dev_config() (jsc#SLE-14454). +- commit 7b787fc + +- crypto: qat - refactor qat_crypto_create_instances() + (jsc#SLE-14454). +- commit d0bcaed + +- crypto: qat - change return value in adf_cfg_key_val_get() + (jsc#SLE-14454). +- commit f698585 + +- crypto: qat - change return value in + adf_cfg_add_key_value_param() (jsc#SLE-14454). +- commit 707ca4a + +- crypto: qat - remove unnecessary void* casts (jsc#SLE-14454). +- commit 428b2be + +- crypto: qat - call functions in adf_sriov if available + (jsc#SLE-14454). +- commit 56a083b + +- crypto: qat - remove hardcoded bank irq clear flag mask + (jsc#SLE-14454). +- commit 87975f0 + +- crypto: qat - abstract writes to arbiter enable (jsc#SLE-14454). +- commit c2673fd + +- crypto: qat - use BIT_ULL() - 1 pattern for masks + (jsc#SLE-14454). +- commit 4e50301 + +- crypto: qat - replace constant masks with GENMASK + (jsc#SLE-14454). +- commit ace21f7 + +- crypto: qat - abstract build ring base (jsc#SLE-14454). +- commit 45f06e6 + +- crypto: qat - enable ring after pair is programmed + (jsc#SLE-14454). +- commit 876666b + +- crypto: qat - register crypto instances based on capability + (jsc#SLE-14454). +- Refresh patches.suse/QAT-add-suse_kabi_padding.patch. +- commit f62a6a6 + +- crypto: qat - add support for capability detection + (jsc#SLE-14454). +- commit f5cb13a + +- RDMA/srpt: Fix typo in srpt_unregister_mad_agent docstring (bsc#1152489) +- commit b808e1d + +- RDMA/rxe: Handle skb_clone() failure in rxe_recv.c (bsc#1152489) +- commit ad662c6 + +- RDMA/qedr: Endianness warnings cleanup (bsc#1152489) +- commit c3cca6a + +- crypto: qat - abstract arbiter access (jsc#SLE-14454). +- commit 8234ef6 + +- crypto: qat - remove unused macros in arbiter module + (jsc#SLE-14454). +- commit ace40aa + +- crypto: qat - remove writes into WQCFG (jsc#SLE-14454). +- commit 1f08531 + +- crypto: qat - update constants table (jsc#SLE-14454). +- commit 42213a3 + +- crypto: qat - use admin mask to send fw constants + (jsc#SLE-14454). +- commit 82fccc5 + +- crypto: qat - change admin sequence (jsc#SLE-14454). +- crypto: qat - rename ME in AE (jsc#SLE-14454). +- commit 3b63177 + +- do_epoll_ctl(): clean the failure exits up a bit + (bsc#1180031,CVE-2020-0466). +- epoll: Keep a reference on files added to the check list + (bsc#1180031). +- commit 5e9b787 + +- blacklist.conf: bcee52789588 ("tracing: Fix userstacktrace option for instances") + The kernel is missing many prerequisities. It is not worth it as it is. +- commit e39f16a + +- Update patch reference for wireless fix (CVE-2020-27068 bsc#1180086) +- commit 170f743 + +- platform/x86: mlx-platform: Fix item counter assignment for + MSN2700/ComEx system (git-fixes). +- mmc: sdhci: tegra: fix wrong unit with busy_timeout (git-fixes). +- spi: imx: fix reference leak in two imx operations (git-fixes). +- driver: core: Fix list corruption after device_del() + (git-fixes). +- iwlwifi: dbg-tlv: fix old length in is_trig_data_contained() + (git-fixes). +- mt76: mt7615: fix rdd mcu cmd endianness (git-fixes). +- mt76: mt7915: fix endian issues (git-fixes). +- mt76: fix tkip configuration for mt7615/7663 devices + (git-fixes). +- mt76: fix memory leak if device probing fails (git-fixes). +- mt76: mt7915: fix sparse warning cast from restricted __le16 + (git-fixes). +- mt76: set fops_tx_stats.owner to THIS_MODULE (git-fixes). +- mt76: mt7915: set fops_sta_stats.owner to THIS_MODULE + (git-fixes). +- mt76: add back the SUPPORTS_REORDERING_BUFFER flag (git-fixes). +- Bluetooth: btusb: Fix detection of some fake CSR controllers + with a bcdDevice val of 0x0134 (git-fixes). +- Bluetooth: Fix: LL PRivacy BLE device fails to connect + (git-fixes). +- brcmfmac: fix error return code in brcmf_cfg80211_connect() + (git-fixes). +- brcmfmac: Fix memory leak for unpaired brcmf_{alloc/free} + (git-fixes). +- rtw88: remove extraneous 'const' qualifier (git-fixes). +- drm/doc: Document that modifiers are always required for fb + (git-fixes). +- netdevsim: Add debugfs toggle to reject BPF programs in verifier + (git-fixes). +- commit 3b2d7b6 + +- platform/x86: mlx-platform: remove an unused variable + (git-fixes). +- USB: serial: option: add interface-number sanity check to flag + handling (git-fixes). +- commit bff4f99 + +- USB: serial: mos7720: fix parallel-port state restore + (git-fixes). +- xhci-pci: Allow host runtime PM as default for Intel Alpine + Ridge LP (git-fixes). +- commit f265436 + +- USB: serial: digi_acceleport: fix write-wakeup deadlocks + (git-fixes). +- USB: serial: keyspan_pda: fix write unthrottling (git-fixes). +- USB: serial: keyspan_pda: fix tx-unthrottle use-after-free + (git-fixes). +- USB: serial: keyspan_pda: fix write-wakeup use-after-free + (git-fixes). +- USB: serial: keyspan_pda: fix stalled writes (git-fixes). +- USB: serial: keyspan_pda: fix write deadlock (git-fixes). +- USB: serial: keyspan_pda: fix dropped unthrottle interrupts + (git-fixes). +- usb: oxu210hp-hcd: Fix memory leak in oxu_create (git-fixes). +- usb: ehci-omap: Fix PM disable depth umbalance in + ehci_hcd_omap_probe (git-fixes). +- usb: mtu3: fix memory corruption in mtu3_debugfs_regset() + (git-fixes). +- commit 7596d48 + +- spi: atmel-quadspi: Fix AHB memory accesses (git-fixes). +- spi: mt7621: Disable clock in probe error path (git-fixes). +- usb: chipidea: ci_hdrc_imx: Pass DISABLE_DEVICE_STREAMING flag + to imx6ul (git-fixes). +- usb/max3421: fix return error code in max3421_probe() + (git-fixes). +- commit 6c576b3 + +- spi: davinci: Fix use-after-free on unbind (git-fixes). +- spi: fix resource leak for drivers without .remove callback + (git-fixes). +- spi: mxs: fix reference leak in mxs_spi_probe (git-fixes). +- spi: st-ssc4: Fix unbalanced pm_runtime_disable() in probe + error path (git-fixes). +- spi: pic32: Don't leak DMA channels in probe error path + (git-fixes). +- spi: synquacer: Disable clock in probe error path (git-fixes). +- wimax: fix duplicate initializer warning (git-fixes). +- commit 51e204b + +- spi: sprd: fix reference leak in sprd_spi_remove (git-fixes). +- spi: atmel-quadspi: Disable clock in probe error path + (git-fixes). +- spi: bcm63xx-hsspi: fix missing clk_disable_unprepare() on + error in bcm63xx_hsspi_resume (git-fixes). +- spi: tegra114: fix reference leak in tegra spi ops (git-fixes). +- spi: tegra20-sflash: fix reference leak in tegra_sflash_resume + (git-fixes). +- spi: tegra20-slink: fix reference leak in slink ops of tegra20 + (git-fixes). +- spi: mt7621: fix missing clk_disable_unprepare() on error in + mt7621_spi_probe (git-fixes). +- spi: spi-ti-qspi: fix reference leak in ti_qspi_setup + (git-fixes). +- spi: stm32: fix reference leak in stm32_spi_resume (git-fixes). +- spi: spi-mem: fix reference leak in spi_mem_access_start + (git-fixes). +- commit 51236be + +- soc: qcom: geni: More properly switch to DMA mode (git-fixes). +- spi: spi-mem: Fix passing zero to 'PTR_ERR' warning (git-fixes). +- spi: img-spfi: fix reference leak in img_spfi_resume + (git-fixes). +- regulator: mcp16502: add linear_min_sel (git-fixes). +- regulator: axp20x: Fix DLDO2 voltage control register mask + for AXP22x (git-fixes). +- speakup: fix uninitialized flush_lock (git-fixes). +- slimbus: qcom-ngd-ctrl: Avoid sending power requests without + QMI (git-fixes). +- serial: 8250_omap: Avoid FIFO corruption caused by MDR1 access + (git-fixes). +- rsi: fix error return code in rsi_reset_card() (git-fixes). +- commit 8a400aa + +- crypto: qat - add packed to init admin structures + (jsc#SLE-14454). +- commit bffc702 + +- PCI: iproc: Fix out-of-bound array accesses (git-fixes). +- platform/x86: mlx-platform: Fix item counter assignment for + MSN2700, MSN24xx systems (git-fixes). +- platform/x86: dell-smbios-base: Fix error return code in + dell_smbios_init (git-fixes). +- platform/x86: intel-vbtn: Allow switch events on Acer Switch + Alpha 12 (git-fixes). +- platform/x86: mlx-platform: Remove PSU EEPROM from MSN274x + platform configuration (git-fixes). +- platform/x86: mlx-platform: Remove PSU EEPROM from default + platform configuration (git-fixes). +- Revert "platform/x86: wmi: Destroy on cleanup rather than + unregister" (git-fixes). +- platform/chrome: cros_ec_spi: Don't overwrite spi::mode + (git-fixes). +- regmap: Remove duplicate `type` field from regmap + `regcache_sync` trace event (git-fixes). +- qtnfmac: fix error return code in qtnf_pcie_probe() (git-fixes). +- commit 4690027 + +- crypto: qat - abstract admin interface (jsc#SLE-14454). +- commit 10773c4 + +- PCI: brcmstb: Initialize "tmp" before use (git-fixes). +- PCI: Fix pci_slot_release() NULL pointer dereference + (git-fixes). +- memstick: r592: Fix error return in r592_probe() (git-fixes). +- mmc: pxamci: Fix error return code in pxamci_probe (git-fixes). +- memstick: fix a double-free bug in memstick_check (git-fixes). +- staging: olpc_dcon: Do not call platform_device_unregister() + in dcon_probe() (git-fixes). +- nfc: s3fwrn5: Release the nfc firmware (git-fixes). +- orinoco: Move context allocation after processing the skb + (git-fixes). +- mwifiex: fix mwifiex_shutdown_sw() causing sw reset failure + (git-fixes). +- commit e021aed + +- Input: cyapa_gen6 - fix out-of-bounds stack access (git-fixes). +- Input: omap4-keypad - fix runtime PM error handling (git-fixes). +- Input: ads7846 - fix unaligned access on 7845 (git-fixes). +- Input: ads7846 - fix integer overflow on Rt calculation + (git-fixes). +- Input: ads7846 - fix race that causes missing releases + (git-fixes). +- iio: adc: rockchip_saradc: fix missing clk_disable_unprepare() + on error in rockchip_saradc_resume (git-fixes). +- iio:adc:ti-ads124s08: Fix alignment and data leak issues + (git-fixes). +- iio:adc:ti-ads124s08: Fix buffer being too long (git-fixes). +- iwlwifi: mvm: hook up missing RX handlers (git-fixes). +- mac80211: don't set set TDLS STA bandwidth wider than possible + (git-fixes). +- commit 2fd9b35 + +- crypto: qat - relocate GEN2 CSR access code (jsc#SLE-14454). +- commit aa3be04 + +- cpufreq: vexpress-spc: Add missing MODULE_ALIAS (git-fixes). +- Revert "i2c: i2c-qcom-geni: Fix DMA transfer race" (git-fixes). +- iio:pressure:mpl3115: Force alignment of buffer (git-fixes). +- iio:magnetometer:mag3110: Fix alignment and data leak issues + (git-fixes). +- iio:light:st_uvis25: Fix timestamp alignment and prevent data + leak (git-fixes). +- iio:light:rpr0521: Fix timestamp alignment and prevent data leak + (git-fixes). +- iio: buffer: Fix demux update (git-fixes). +- extcon: max77693: Fix modalias string (git-fixes). +- cw1200: fix missing destroy_workqueue() on error in + cw1200_init_common (git-fixes). +- commit 59cf4f4 + +- cpufreq: scpi: Add missing MODULE_ALIAS (git-fixes). +- cpufreq: loongson1: Add missing MODULE_ALIAS (git-fixes). +- cpufreq: st: Add missing MODULE_DEVICE_TABLE (git-fixes). +- cpufreq: mediatek: Add missing MODULE_DEVICE_TABLE (git-fixes). +- cpufreq: highbank: Add missing MODULE_DEVICE_TABLE (git-fixes). +- cpufreq: ap806: Add missing MODULE_DEVICE_TABLE (git-fixes). +- staging: comedi: mf6x4: Fix AI end-of-conversion detection + (git-fixes). +- bus: fsl-mc: fix error return code in fsl_mc_object_allocate() + (git-fixes). +- commit 172d8d6 + +- drm/tegra: output: Don't leak OF node on error (jsc#SLE-15847). +- commit 17189d0 + +- crypto: qat - split transport CSR access logic (jsc#SLE-14454). +- commit a3a10f0 + +- phy: tegra: xusb: Fix usb_phy device driver field (jsc#SLE-15847). +- clk: tegra: bpmp: Clamp clock rates on requests (jsc#SLE-15847). +- cpufreq: tegra194: Rename tegra194_get_speed_common function (jsc#SLE-15847). +- cpufreq: tegra194: Remove unnecessary frequency calculation (jsc#SLE-15847). +- cpufreq: tegra186: Simplify cluster information lookup (jsc#SLE-15847). +- cpufreq: tegra186: Fix sparse 'incorrect type in assignment' warning (jsc#SLE-15847). +- cpufreq: tegra194: get consistent cpuinfo_cur_freq (jsc#SLE-15847). +- phy: tegra: Don't warn on probe deferral (jsc#SLE-15847). +- drm/tegra: output: Do not put OF node twice (jsc#SLE-15847). +- drm/tegra: sor: Don't warn on probe deferral (jsc#SLE-15847). +- cpufreq: tegra186: Fix get frequency callback (jsc#SLE-15847). +- memory: tegra: Remove GPU from DRM IOMMU group (jsc#SLE-15847). +- drm/tegra: Properly reference count the DDC I2C adapter + (jsc#SLE-15847). +- iommu/tegra-smmu: Prune IOMMU group when it is released + (jsc#SLE-15847). +- iommu/tegra-smmu: Balance IOMMU group reference count + (jsc#SLE-15847). +- iommu/tegra-smmu: Set IOMMU group name (jsc#SLE-15847). +- cpufreq: tegra186: Fix initial frequency (jsc#SLE-15847). +- commit 9e4289a + +- crypto: qat - fix configuration of iov threads (jsc#SLE-14454). +- commit 4028436 + +- crypto: qat - num_rings_per_bank is device dependent + (jsc#SLE-14454). +- crypto: qat - mask device capabilities with soft straps + (jsc#SLE-14454). +- commit a55dc52 + +- Bluetooth: btmtksdio: Add the missed release_firmware() in + mtk_setup_firmware() (git-fixes). +- Bluetooth: btusb: Add the missed release_firmware() in + btusb_mtk_setup_firmware() (git-fixes). +- Bluetooth: hci_h5: fix memory leak in h5_close (git-fixes). +- Bluetooth: Fix slab-out-of-bounds read in + hci_le_direct_adv_report_evt() (git-fixes). +- Bluetooth: Fix null pointer dereference in hci_event_packet() + (git-fixes). +- ath10k: Release some resources in an error handling path + (git-fixes). +- ath10k: Fix an error handling path (git-fixes). +- ath6kl: fix enum-conversion warning (git-fixes). +- commit 35aef63 + +- ath10k: Fix the parsing error in service available event + (git-fixes). +- commit ae02c89 + +- Revert "ACPI / resources: Use AE_CTRL_TERMINATE to terminate + resources walks" (git-fixes). +- commit 2779aa4 + +- ASoC: qcom: common: Fix refcounting in qcom_snd_parse_of() + (git-fixes). +- commit 4c7929f + +- ASoC: max98390: Fix error codes in max98390_dsm_init() + (git-fixes). +- commit 9ec9be4 + +- soundwire: intel: fix another unused-function warning + (jsc#SLE-16518). +- soundwire: master: use pm_runtime_set_active() on add + (jsc#SLE-16518). +- soundwire: qcom: Fix build failure when slimbus is module + (jsc#SLE-16518). +- commit 5c4cbf1 + +- Move upstreamed soundwire patches into sorted section +- commit 9be4676 + +- IB/srpt: Fix memory leak in srpt_add_one (bsc#1152489) +- commit da75bee + +- soundwire: Fix DEBUG_LOCKS_WARN_ON for uninitialized attribute + (jsc#SLE-16518). +- commit d23ae0b + +- RDMA/hns: Bugfix for memory window mtpt configuration (bsc#1152489) +- commit 4f3475b + +- IB/mthca: fix return value of error branch in mthca_init_cq() (bsc#1152489) +- commit c98a089 + +- RDMA/pvrdma: Fix missing kfree() in pvrdma_register_device() (bsc#1152489) +- commit baad43e + +- ASoC: SOF: Intel: hda: fix the condition passed to + sof_dev_dbg_or_err (jsc#SLE-16518). +- ASoC: SOF: modify the SOF_DBG flags (jsc#SLE-16518). +- ASoC: SOF: Intel: hda: remove duplicated status dump + (jsc#SLE-16518). +- ASoC: SOF: imx: update kernel-doc description (jsc#SLE-16518). +- ASoC: topology: Fix wrong size check (jsc#SLE-16518). +- ASoC: topology: Add missing size check (jsc#SLE-16518). +- ASoC: SOF: Intel: add SoundWire support for ADL-S + (jsc#SLE-16518). +- ASoC: Intel: common: add ACPI matching tables for Alder Lake + (jsc#SLE-16518). +- ASoC: Intel: cht_bsw_nau8824: Change SSP2-Codec DAI id to 0 + (jsc#SLE-16518). +- ASoC: Intel: cht_bsw_nau8824: Drop compress-cpu-dai bits + (jsc#SLE-16518). +- ASoC: intel: sof_rt5682: Add support for tgl_rt1011_rt5682 + (jsc#SLE-16518). +- commit df54797 + +- RDMA/qedr: Fix memory leak in iWARP CM (bsc#1152489) +- commit db44ceb + +- RDMA/rxe: Fix skb lifetime in rxe_rcv_mcast_pkt() (bsc#1152489) +- commit 1de4514 + +- IB/rdmavt: Fix sizeof mismatch (bsc#1152489) +- commit 677c5ba + +- ASoC: SOF: trace: Add runtime trace filtering mechanism + (jsc#SLE-16518). +- ASoC: SOF: control: fix cppcheck warning in + snd_sof_volume_info() (jsc#SLE-16518). +- ASoC: SOF: Intel: hda: add sof_icl_ops for ICL platforms + (jsc#SLE-16518). +- ASoC: SOF: ops: modify the signature of stall op + (jsc#SLE-16518). +- ASoC: SOF: ext_manifest: parse cavs extra config data elem + (jsc#SLE-16518). +- ASoC: SOF: Intel: hda: define parse_platform_ext_manifest op + (jsc#SLE-16518). +- ASoC: SOF: ops: add parse_platform_ext_manifest() op + (jsc#SLE-16518). +- ASoC: SOF: Add `memory_info` file to debugfs (jsc#SLE-16518). +- ASoC: SOF: Change section comment for SOF_IPC_TEST_ + (jsc#SLE-16518). +- ASoC: SOF: Improve code alignment in header.h (jsc#SLE-16518). +- ASoC: SOF: ext_manifest: Parse firmware config dictionary + (jsc#SLE-16518). +- ASoC: SOF: nocodec: modify DAI link definitions (jsc#SLE-16518). +- ASoC: SOF: IPC: fix implicit type overflow (jsc#SLE-16518). +- commit 478e999 + +- ASoC: SOF: Intel: allow for coexistence between SOF and catpt + drivers (jsc#SLE-16518). +- Update config files. +- commit f7947cd + +- ALSA: hda: intel-dsp-config: ignore dsp_driver parameter for + PCI legacy devices (jsc#SLE-16518). +- commit 63ddb05 + +- ASoC: Intel: broadwell: set card and driver name dynamically + (jsc#SLE-16518). +- ALSA: hda: intel-dsp-config: add Broadwell ACPI DSP driver + selection (jsc#SLE-16518). +- commit dbb4f88 + +- ASoC: SOF: Intel: allow for coexistence between SOF and Atom/SST + drivers (jsc#SLE-16518). +- Update config files. +- commit 5c50712 + +- crypto: qat - update IV in software (jsc#SLE-14454). +- Refresh patches.suse/QAT-add-suse_kabi_padding.patch. +- commit 02c439a + +- crypto: qat - remove unused function (jsc#SLE-14454). +- commit edc1305 + +- ASoC: Intel: Atom: add dynamic selection of DSP driver + (jsc#SLE-16518). +- commit 7c727eb + +- ASoC: SOF: acpi: add dynamic selection of DSP driver + (jsc#SLE-16518). +- commit 14933b4 + +- ASoC: Intel: byt/cht: set pm ops dynamically (jsc#SLE-16518). +- commit 5bab293 + +- ASoC: Intel: boards: byt/cht: set card and driver name at run + time (jsc#SLE-16518). +- commit 8837dc6 + +- ALSA: hda: intel-dsp-config: add helper for ACPI DSP driver + selection (jsc#SLE-16518). +- commit 18cdfb4 + +- ASoC: Intel: bdw-rt5677: add missing pm_ops (jsc#SLE-16518). +- commit 25029ef + +- ASoC: Intel: Boards: tgl_max98373: add dpcm_capture flag for + speaker_smart_amp (jsc#SLE-16518). +- commit d6b111c + +- ASoC: topology: Simplify remove_widget function (jsc#SLE-16518). +- commit b057eed + +- ASoC: topology: Remove empty functions (jsc#SLE-16518). +- commit 3f721cb + +- ASoC: topology: Change allocations to resource managed + (jsc#SLE-16518). +- commit ea837e4 + +- ASoC: topology: Unify all device references (jsc#SLE-16518). +- commit 10328ad + +- ASoC: topology: Remove multistep topology loading + (jsc#SLE-16518). +- commit 364e86e + +- ASoC: topology: Remove unused functions from topology API + (jsc#SLE-16518). +- commit 0dc5676 + +- ASoC: soc-acpi: add helper to identify parent driver + (jsc#SLE-16518). +- commit d308530 + +- ASoC: Intel: broadwell: add missing pm_ops (jsc#SLE-16518). +- commit bab05a6 + +- ASoC: SOF: control: override volume info callback + (jsc#SLE-16518). +- commit 67c8df2 + +- ASoC: SOF: Intel: add hw specific PCM constraints + (jsc#SLE-16518). +- commit 02c0e0b + +- ASoC: SOF: relax PCM period and buffer size constraints + (jsc#SLE-16518). +- commit ce00821 + +- ASoC: Fix 7/8 spaces indentation in Kconfig (jsc#SLE-16518). +- commit 53e4ae3 + +- ASoC: intel: SND_SOC_INTEL_KEEMBAY should depend on ARCH_KEEMBAY + (jsc#SLE-16518). +- commit a961770 + +- ASoC: Intel: keembay: use inclusive language for bclk and fsync + (jsc#SLE-16518). +- commit 726a785 + +- ASoC: Intel: atom: use inclusive language for SSP bclk/fsync + (jsc#SLE-16518). +- commit 3078a9f + +- ASoC: SOF: use inclusive language for bclk and fsync + (jsc#SLE-16518). +- commit d738d67 + +- ASoC: topology: use inclusive language for bclk and fsync + (jsc#SLE-16518). +- commit 3e92b8e + +- ASoC: SOF: Intel: fix Kconfig dependency for + SND_INTEL_DSP_CONFIG (jsc#SLE-16518). +- commit 65bf32d + +- ASoC: SOF: Intel: fix Kconfig punctuation and wording + (jsc#SLE-16518). +- commit e2d566a + +- ASoC: SOF: Kconfig: fix Kconfig punctuation and wording + (jsc#SLE-16518). +- commit 32e6a72 + +- ASoC: SOF: imx: fix Kconfig punctuation (jsc#SLE-16518). +- commit f4194f0 + +- ASoC: Intel: sof_sdw: add quirk for new TigerLake-SDCA device + (jsc#SLE-16518). +- commit 7aadcdd + +- ASoC: SOF: loader: do not warn about unknown firmware headers + (jsc#SLE-16518). +- commit 1bf0f28 + +- ASoC: intel: sof_rt5682: Add quirk for Dooly (jsc#SLE-16518). +- commit 8100bff + +- ASoC: intel: sof_rt5682: Add support for cml_rt1015_rt5682 + (jsc#SLE-16518). +- commit bb5fa3d + +- ASoC: SOF: sof-audio: remove goto used for force-nocodec support + (jsc#SLE-16518). +- commit 81aeb29 + +- ASoC: SOF: topology: remove const in sizeof() (jsc#SLE-16518). +- commit 66b10d3 + +- ASoC: SOF: control: remove const in sizeof() (jsc#SLE-16518). +- commit 2b84b77 + +- ASoC: SOF: Intel: hda: use semicolons rather than commas to + separate statements (jsc#SLE-16518). +- commit 3f2432e + +- inet_ecn: Fix endianness of checksum update when setting ECT(1) + (git-fixes). +- commit 492cf46 + +- ASoC: Intel: bytcr_rt5651: use semicolons rather than commas + to separate statements (jsc#SLE-16518). +- commit 6d8047e + +- ASoC: SOF: Intel: initial support for Alderlake-S + (jsc#SLE-13489). +- Update config files. +- commit fac4baf + +- ASoC: amd: support other audio modes for raven (git-fixes). +- ASoC: AMD Renoir - add DMI table to avoid the ACP mic probe + (broken BIOS) (git-fixes). +- ASoC: AMD Raven/Renoir - fix the PCI probe (PCI revision) + (git-fixes). +- ASoC: Intel: bytcr_rt5640: Add quirk for ARCHOS Cesium 140 + (git-fixes). +- ASoC: Intel: Boards: tgl_max98373: update TDM slot_width + (git-fixes). +- ASoC: amd: Return -ENODEV for non-existing ACPI call + (git-fixes). +- ASoC: amd: Downgrade print level for invalid ACP mode + (git-fixes). +- commit 7df7491 + +- ALSA: hda/ca0132 - Add ZxR surround DAC setup (git-fixes). +- ALSA: hda/ca0132 - Add 8051 PLL write helper functions + (git-fixes). +- ALSA: hda/ca0132 - Remove now unnecessary DSP setup functions + (git-fixes). +- ALSA: hda/ca0132 - Ensure DSP is properly setup post-firmware + download (git-fixes). +- ALSA: hda/ca0132 - Add 8051 exram helper functions (git-fixes). +- ALSA: hda/ca0132 - Add stream port remapping function + (git-fixes). +- ALSA: hda/ca0132 - Reset codec upon initialization (git-fixes). +- ALSA: hda/hdmi: fix silent stream for first playback to DP + (git-fixes). +- ALSA: seq: Use bool for snd_seq_queue internal flags + (git-fixes). +- ALSA: hda/ca0132: Move unsol callback setups to parser + (git-fixes). +- ALSA: compress: allow pause and resume during draining + (git-fixes). +- ALSA: hdspm: Fix fall-through warnings for Clang (git-fixes). +- ALSA: remove unneeded break (git-fixes). +- commit 24cbc87 + +- ASoC: amd: change clk_get() to devm_clk_get() and add missed + checks (git-fixes). +- ASoC: cx2072x: Fix doubly definitions of Playback and Capture + streams (git-fixes). +- ASoC: meson: fix COMPILE_TEST error (git-fixes). +- ASoC: arizona: Fix a wrong free in wm8997_probe (git-fixes). +- ASoC: wm8998: Fix PM disable depth imbalance on error + (git-fixes). +- ASoC: pcm: DRAIN support reactivation (git-fixes). +- ASoC: ti: davinci-mcasp: remove always zero of + davinci_mcasp_get_dt_params (git-fixes). +- ASoC: sun4i-i2s: Fix lrck_period computation for I2S justified + mode (git-fixes). +- ASoC: tegra20-spdif: remove "default m" (git-fixes). +- ASoC: wm_adsp: remove "ctl" from list on error in + wm_adsp_create_control() (git-fixes). +- ASoC: jz4740-i2s: add missed checks for clk_get() (git-fixes). +- ASoC: SOF: control: fix size checks for ext_bytes control .get() + (git-fixes). +- commit 8f99a8a + +- ALSA: hda/ca0132 - Change Input Source enum strings (git-fixes). +- ALSA: hda/ca0132 - Fix AE-5 rear headphone pincfg (git-fixes). +- commit 4d4db90 + +- ALSA: hda: Fix regressions on clear and reconfig sysfs + (git-fixes). +- commit f6ae090 + +- ALSA: pcm: oss: Fix potential out-of-bounds shift (git-fixes). +- ALSA: rawmidi: Access runtime->avail always in spinlock + (git-fixes). +- ALSA: seq: remove useless function (git-fixes). +- commit 87f324b + +- ALSA: hda/realtek - Add supported for more Lenovo ALC285 + Headset Button (git-fixes). +- ALSA: hda/realtek - Enable headset mic of ASUS Q524UQK with + ALC255 (git-fixes). +- ALSA: hda/realtek - Enable headset mic of ASUS X430UN with + ALC256 (git-fixes). +- ALSA: hda/realtek: make bass spk volume adjustable on a yoga + laptop (git-fixes). +- ALSA: hda/hdmi: packet buffer index must be set before reading + value (git-fixes). +- ALSA: hda/hdmi: always print pin NIDs as hexadecimal + (git-fixes). +- ALSA: hda/proc - print DP-MST connections (git-fixes). +- commit b46aa44 + +- ALSA: usb-audio: Fix potential out-of-bounds shift (git-fixes). +- ALSA: usb-audio: Fix control 'access overflow' errors from chmap + (git-fixes). +- ALSA: usb-audio: Add implicit fb support for Steinberg UR22 + (git-fixes). +- ALSA: usb-audio: Add quirk for Pioneer DJ DDJ-SR2 (git-fixes). +- ALSA: usb-audio: Add support for Pioneer DJ DDJ-RR controller + (git-fixes). +- commit cbe79ef + +- Move upstreamed USB-audio patches into sorted section +- commit 6078fcf + +- scsi: fnic: Validate io_req before others (bsc#1175079). +- scsi: fnic: Set scsi_set_resid() only for underflow + (bsc#1175079). +- scsi: fnic: Change shost_printk() to FNIC_MAIN_DBG() + (bsc#1175079). +- scsi: fnic: Avoid looping in TRANS ETH on unload (bsc#1175079). +- scsi: fnic: Change shost_printk() to FNIC_FCS_DBG() + (bsc#1175079). +- commit 140fd58 + +- sched/fair: Fix overutilized update in enqueue_task_fair() (git-fixes) +- commit aad16e5 + +- sched: correct SD_flags returned by tl->sd_flags() (git-fixes) +- commit 323fa02 + +- sched/fair: Refill bandwidth before scaling (git-fixes) +- commit 6f148d9 + +- sched/fair: Fix race between runtime distribution and (git-fixes) +- commit 73cd7f5 + +- sched/fair: Fix wrong cpu selecting from isolated domain (git-fixes) +- commit c4c367e + +- Update + patches.suse/HID-Fix-slab-out-of-bounds-read-in-hid_field_extract.patch + (bsc#1180052). + Identified as security issue. bsc added. +- commit 02607b9 + +- Update + patches.suse/HID-Fix-slab-out-of-bounds-read-in-hid_field_extract.patch + (bsc#1180052). + Patch identified as security issue. bsc added. +- commit 88ee41b + +- mm: memcg: fix memcg reclaim soft lockup (VM Functionality, + bsc#1180056). +- commit 3a73547 + +- crypto: caam - fix printing on xts fallback allocation error + path (git-fixes). +- commit fd68750 + +- crypto: qat - fix status check in qat_hal_put_rel_rd_xfer() + (git-fixes). +- commit e1943c2 + +- crypto: qat - fix status check in qat_hal_put_rel_rd_xfer() + (git-fixes). +- commit 9a7e1fb + +- iommu/hyper-v: Remove I/O-APIC ID check from + hyperv_irq_remapping_select() (jsc#SLE-16823). +- iommu/amd: Fix IOMMU interrupt generation in X2APIC mode + (jsc#SLE-16823). +- iommu/amd: Fix union of bitfields in intcapxt support + (jsc#SLE-16823). +- x86/ioapic: Correct the PCI/ISA trigger type selection + (jsc#SLE-16823). +- commit 2f4c498 + +- x86/ioapic: Use I/O-APIC ID for finding irqdomain, not index + (jsc#SLE-16823). +- x86/hyperv: Enable 15-bit APIC ID if the hypervisor supports it + (jsc#SLE-16823). +- x86/kvm: Enable 15-bit extension when + KVM_FEATURE_MSI_EXT_DEST_ID detected (jsc#SLE-16823). +- iommu/hyper-v: Disable IRQ pseudo-remapping if 15 bit APIC + IDs are available (jsc#SLE-16823). +- x86/apic: Support 15 bits of APIC ID in MSI where available + (jsc#SLE-16823). +- x86/ioapic: Handle Extended Destination ID field in RTE + (jsc#SLE-16823). +- iommu/vt-d: Simplify intel_irq_remapping_select() + (jsc#SLE-16823). +- x86: Kill all traces of irq_remapping_get_irq_domain() + (jsc#SLE-16823). +- x86/ioapic: Use irq_find_matching_fwspec() to find remapping + irqdomain (jsc#SLE-16823). +- x86/hpet: Use irq_find_matching_fwspec() to find remapping + irqdomain (jsc#SLE-16823). +- iommu/hyper-v: Implement select() method on remapping irqdomain + (jsc#SLE-16823). +- iommu/vt-d: Implement select() method on remapping irqdomain + (jsc#SLE-16823). +- iommu/amd: Implement select() method on remapping irqdomain + (jsc#SLE-16823). +- x86/apic: Add select() method on vector irqdomain + (jsc#SLE-16823). +- genirq/irqdomain: Implement get_name() method on irqchip fwnodes + (jsc#SLE-16823). +- x86/ioapic: Generate RTE directly from parent irqchip's MSI + message (jsc#SLE-16823). +- x86/ioapic: Cleanup IO/APIC route entry structs (jsc#SLE-16823). +- x86/io_apic: Cleanup trigger/polarity helpers (jsc#SLE-16823). +- x86/msi: Remove msidef.h (jsc#SLE-16823). +- x86/pci/xen: Use msi_msg shadow structs (jsc#SLE-16823). +- x86/kvm: Use msi_msg shadow structs (jsc#SLE-16823). +- PCI: vmd: Use msi_msg shadow structs (jsc#SLE-16823). +- iommu/amd: Use msi_msg shadow structs (jsc#SLE-16823). +- iommu/intel: Use msi_msg shadow structs (jsc#SLE-16823). +- x86/msi: Provide msi message shadow structs (jsc#SLE-16823). +- genirq/msi: Allow shadow declarations of msi_msg:: $member + (jsc#SLE-16823). +- x86/hpet: Move MSI support into hpet.c (jsc#SLE-16823). +- x86/apic: Always provide irq_compose_msi_msg() method for + vector domain (jsc#SLE-16823). +- x86/apic: Cleanup destination mode (jsc#SLE-16823). +- x86/apic: Get rid of apic:: Dest_logical (jsc#SLE-16823). +- x86/apic: Replace pointless apic:: Dest_logical usage + (jsc#SLE-16823). +- x86/apic: Cleanup delivery mode defines (jsc#SLE-16823). +- x86/devicetree: Fix the ioapic interrupt type table + (jsc#SLE-16823). +- x86/apic/uv: Fix inconsistent destination mode (jsc#SLE-16823). +- x86/msi: Only use high bits of MSI address for DMAR unit + (jsc#SLE-16823). +- x86/apic: Fix x2apic enablement without interrupt remapping + (jsc#SLE-16823). +- commit e68f7b8 + +- Update patch reference for audit security fix (CVE-2020-0444 bsc#1180027) +- commit 8236de7 + +- Update patch reference for HID security fix (CVE-2020-0465 bsc#1180029) +- commit c0d38cb + +- Update + patches.suse/SUNRPC-Fix-SUNRPC-Add-len-parameter-to-gss_unwrap.patch + (git-fixes). +- commit c1a6212 + +- btrfs: qgroup: don't try to wait flushing if we're already holding a transaction (bsc#1179575). +- commit 7eae617 + +- supported.conf: Mark exfat as fully supported (bsc#1179882) + Moves exfat from kernel-default-extra to kernel-default +- commit 619a3f5 + +- s390/pci: Mark all VFs as not implementing PCI_COMMAND_MEMORY + (bsc#1179611 LTC#190155). +- commit 8805bd5 + +- s390/pci: adaptation of iommu to multifunction (bsc#1179611 + LTC#190155). +- Refresh patches.suse/s390-pci-create-zpci-bus. +- Refresh patches.suse/s390-pci-handling-multifunctions. +- commit 18ace9e + +- s390/purgatory: do not build purgatory with kcov, kasan and + friends (bsc#1179603 LTC#190152). +- commit 2fdc981 + +- s390/qeth: Remove pnso workaround (bsc#1179565 LTC#190112). +- commit 3eaa0fe + +- net/smc: fix direct access to ib_gid_addr->ndev in + smc_ib_determine_gid() (bsc#1179205 LTC#189977). +- net/smc: fix matching of existing link groups (bsc#1179205 + LTC#189977). +- commit 0e174e5 + +- Update config files. +- Delete + patches.suse/1842-xen-add-helpers-to-allocate-unpopulated-memory.patch. + As discussed with Juergen Gross per email, the patch might break xen + guests and is not strictly required for the DRM backport. + v2. As mentioned by Jessica, remove CONFIG_XEN_UNPOPULATED_ALLOC as it + also goes away. +- commit 2d34f4b + +- hwmon: (amd_energy) modify the visibility of the counters + (jsc#SLE-14262 bsc#1178760). +- hwmon: (amd_energy) Improve the accumulation logic + (jsc#SLE-14262). +- hwmon: (amd_energy) optimize accumulation interval + (jsc#SLE-14262). +- hwmon: (amd_energy) Move label out of accumulation structure + (jsc#SLE-14262). +- commit 4692751 + +- PCI: tegra: Disable LTSSM during L2 entry (bsc#1179344). +- PCI: tegra: Check return value of tegra_pcie_init_controller() + (bsc#1179344). +- PCI: tegra: Continue unconfig sequence even if parts fail + (bsc#1179344). +- PCI: tegra: Set DesignWare IP version (bsc#1179344). +- PCI: tegra: Fix ASPM-L1SS advertisement disable code + (bsc#1179344). +- commit 9846dd7 + +- Delete patches.suse/PCI-dwc-Move-dw_pcie_setup_rc-to-DWC-common-code.patch. + References: bsc#1179344 +- commit bdaf386 + +- blacklist.conf: correct the cherry-picked commit ID +- commit 48385ea + +- Update patch reference tags for missing CVE entries +- commit 24c7af3 + +- s390/pci: fix CPU address in MSI for directed IRQ (git-fixes). +- s390/qeth: fix tear down of async TX buffers (git-fixes). +- s390/qeth: fix af_iucv notification race (git-fixes). +- s390/qeth: delay draining the TX buffers (git-fixes). +- s390: add 3f program exception handler (git-fixes). +- s390/cpuinfo: show processor physical address (git-fixes). +- commit 15840e9 + +- s390/qeth: make af_iucv TX notification call more robust + (bsc#1179604 LTC#190151). +- commit 1d3596d + +- ACPI: EC: PM: Flush EC work unconditionally after wakeup + (jsc#SLE-16407). +- ACPI: EC: PM: s2idle: Extend GPE dispatching debug message + (jsc#SLE-16407). +- commit a21778d + +- ACPI: EC: PM: Avoid flushing EC work when EC GPE is inactive + (jsc#SLE-16407). +- ACPI: PM: s2idle: Fix comment in acpi_s2idle_prepare_late() + (jsc#SLE-16407). +- commit eb134e5 + +- x86/apic/vector: Fix ordering in vector assignment (bsc#1156315). +- genirq/matrix: Deal with the sillyness of for_each_cpu() on UP (bsc#1156315). +- commit 108604c + +- genirq/PM: Always unlock IRQ descriptor in rearm_wake_irq() + (jsc#SLE-16407). +- ACPI: EC: PM: Avoid premature returns from acpi_s2idle_wake() + (jsc#SLE-16407). +- platform/x86: intel_int0002_vgpio: Use + acpi_register_wakeup_handler() (jsc#SLE-16407). +- ACPI: PM: Add acpi_register_wakeup_handler() (jsc#SLE-16407). +- ACPI: PM: s2idle: Refine active GPEs check (jsc#SLE-16407). +- ACPI: EC: Fix flushing of pending work (jsc#SLE-16407). +- platform/x86: intel_int0002_vgpio: Pass irqchip when adding + gpiochip (jsc#SLE-16407). +- platform/x86: intel_int0002_vgpio: Use device_init_wakeup + (jsc#SLE-16407). +- commit 7f8bb95 + +- SUNRPC: Revert 241b1f419f0e ("SUNRPC: Remove xdr_buf_trim()") + (git-fixes). +- blacklist.conf: + Doesn't cause a regression once the previous two patches are included. +- SUNRPC: Fix GSS privacy computation of auth->au_ralign + (git-fixes). +- SUNRPC: Add "@len" parameter to gss_unwrap() (git-fixes). +- commit de10d89 + +- blacklist.conf: two git-fixes that break kabi too much +- commit 7df1e74 + +- blacklist.conf: Add a duplicate +- commit 5592171 + +- ACPICA: Preserve memory opregion mappings (jsc#SLE-16407). +- ACPICA: Replace one-element array with flexible-array + (jsc#SLE-16407). +- ACPICA: iASL: add new OperationRegion subtype keyword + PlatformRtMechanism (jsc#SLE-16407). +- ACPICA: Fix required parameters for _NIG and _NIH + (jsc#SLE-16407). +- ACPICA: Disassembler: ignore AE_ALREADY_EXISTS status when + parsing create operators (jsc#SLE-16407). +- ACPICA: Move acpi_gbl_next_cmd_num definition to acglobal.h + (jsc#SLE-16407). +- ACPICA: Make acpi_protocol_lengths static (jsc#SLE-16407). +- platform/x86: sony-laptop: Make resuming thermal profile safer + (jsc#SLE-16407). +- platform/x86: sony-laptop: SNC calls should handle BUFFER types + (jsc#SLE-16407). +- ACPICA: utilities: fix sprintf() (jsc#SLE-16407). +- ACPICA: acpiexec: remove redeclaration of + acpi_gbl_db_opt_no_region_support (jsc#SLE-16407). +- ACPICA: Change PlatformCommChannel ASL keyword to PCC + (jsc#SLE-16407). +- ACPICA: Fix a couple of typos (jsc#SLE-16407). +- ACPICA: use acpi_size instead of u32 for prefix_path_length + (jsc#SLE-16407). +- ACPICA: cast length arguement to acpi_ns_build_normalized_path() + as u32 (jsc#SLE-16407). +- ACPICA: cast the result of the pointer difference to u32 + (jsc#SLE-16407). +- ACPICA: Table Manager: Update comments in a function header + (jsc#SLE-16407). +- ACPICA: Enable sleep button on ACPI legacy wake (jsc#SLE-16407). +- ACPICA: Fix a comment "enable" fixed events -> "disable" + all fixed events (jsc#SLE-16407). +- ACPICA: ASL-ASL+ converter: make root file a parameter for + cv_init_file_tree (jsc#SLE-16407). +- ACPICA: ASL-ASL+ converter: remove function parameters from + cv_init_file_tree() (jsc#SLE-16407). +- ACPICA: Allow acpi_any_gpe_status_set() to skip one GPE + (jsc#SLE-16407). +- ACPI: PM: s2idle: Check fixed wakeup events in + acpi_s2idle_wake() (jsc#SLE-16407). +- ACPI: PM: s2idle: Prevent spurious SCIs from waking up the + system (jsc#SLE-16407). +- ACPICA: Introduce acpi_any_gpe_status_set() (jsc#SLE-16407). +- ACPI: PM: s2idle: Avoid possible race related to the EC GPE + (jsc#SLE-16407). +- ACPI/sleep: Convert acpi_wakeup_address into a function + (jsc#SLE-16407). +- ACPICA: All acpica: Update copyrights to 2020 Including tool + signons (jsc#SLE-16407). +- ACPICA: Dispatcher: always generate buffer objects for ASL + create_field() operator (jsc#SLE-16407). +- ACPICA: debugger: fix spelling mistake "adress" -> "address" + (jsc#SLE-16407). +- ACPI: PM: s2idle: Rework ACPI events synchronization + (jsc#SLE-16407). +- ACPI: EC: Rework flushing of pending work (jsc#SLE-16407). +- ACPICA: debugger: remove leading whitespaces when converting + a string to a buffer (jsc#SLE-16407). +- ACPICA: acpiexec: initialize all simple types and field units + from user input (jsc#SLE-16407). +- ACPICA: debugger: add field unit support for + acpi_db_get_next_token (jsc#SLE-16407). +- ACPICA: debugger: surround field unit output with braces '{' + (jsc#SLE-16407). +- ACPICA: debugger: add command to dump all fields of particular + subtype (jsc#SLE-16407). +- ACPICA: utilities: add flag to only display data when dumping + buffers (jsc#SLE-16407). +- ACPICA: More Clang changes (jsc#SLE-16407). +- ACPICA: Win OSL: Replace get_tick_count with get_tick_count64 + (jsc#SLE-16407). +- ACPICA: Results from Clang (jsc#SLE-16407). +- ACPI: PM: Drop Dell XPS13 9360 from LPS0 Idle _DSM blacklist + (jsc#SLE-16407). +- ACPICA: Add "Windows 2019" string to _OSI support + (jsc#SLE-16407). +- ACPICA: Differentiate Windows 8.1 from Windows 8 + (jsc#SLE-16407). +- ACPICA: Fully deploy ACPI_PRINTF_LIKE macro (jsc#SLE-16407). +- ACPICA: Fix issues with arg types within printf format strings + (jsc#SLE-16407). +- ACPICA: Increase total number of possible Owner IDs + (jsc#SLE-16407). +- ACPICA: Debugger: remove redundant assignment on obj_desc + (jsc#SLE-16407). +- ACPI: PM: s2idle: Always set up EC GPE for system wakeup + (jsc#SLE-16407). +- ACPI: PM: s2idle: Avoid rearming SCI for wakeup unnecessarily + (jsc#SLE-16407). +- PM: suspend: Fix platform_suspend_prepare_noirq() + (jsc#SLE-16407). +- intel-hid: intel-vbtn: Avoid leaking wakeup_mode set + (jsc#SLE-16407). +- ACPI: PM: s2idle: Execute LPS0 _DSM functions with suspended + devices (jsc#SLE-16407). +- ACPI: EC: PM: Make acpi_ec_dispatch_gpe() print debug message + (jsc#SLE-16407). +- ACPI: EC: PM: Consolidate some code depending on PM_SLEEP + (jsc#SLE-16407). +- ACPI: PM: s2idle: Eliminate acpi_sleep_no_ec_events() + (jsc#SLE-16407). +- ACPI: PM: s2idle: Switch EC over to polling during "noirq" + suspend (jsc#SLE-16407). +- ACPI: PM: s2idle: Add acpi.sleep_no_lps0 module parameter + (jsc#SLE-16407). +- ACPI: PM: s2idle: Rearrange lps0_device_attach() + (jsc#SLE-16407). +- ACPI: PM: Set up EC GPE for system wakeup from drivers that + need it (jsc#SLE-16407). +- PM: sleep: Simplify suspend-to-idle control flow + (jsc#SLE-16407). +- ACPI: PM: Set s2idle_wakeup earlier and clear it later + (jsc#SLE-16407). +- ACPI: EC: Return bool from acpi_ec_dispatch_gpe() + (jsc#SLE-16407). +- ACPICA: Return u32 from acpi_dispatch_gpe() (jsc#SLE-16407). +- PCI: irq: Introduce rearm_wake_irq() (jsc#SLE-16407). +- commit 632d617 + +- timers: Always keep track of next expiry (bsc#1179365) +- commit ee6d011 + +- pinctrl: intel: Actually disable Tx and Rx buffers on GPIO + request (git-fixes). +- pinctrl: jasperlake: Fix HOSTSW_OWN offset (git-fixes). +- pinctrl: jasperlake: Unhide SPI group of pins (git-fixes). +- commit 256e3b8 + +- ALSA: usb-audio: workaround for iface reset issue (bsc#1178203). +- commit 4121b01 + +- mmc: block: Fixup condition for CMD13 polling for RPMB requests + (git-fixes). +- pinctrl: aspeed: Fix GPIO requests on pass-through banks + (git-fixes). +- pinctrl: baytrail: Avoid clearing debounce value when turning + it off (git-fixes). +- pinctrl: merrifield: Set default bias in case no particular + value given (git-fixes). +- gpio: mvebu: fix potential user-after-free on probe (git-fixes). +- clk: renesas: r9a06g032: Drop __packed for portability + (git-fixes). +- USB: serial: ch341: sort device-id entries (git-fixes). +- USB: serial: ch341: add new Product ID for CH341A (git-fixes). +- USB: serial: option: add support for Thales Cinterion EXS82 + (git-fixes). +- USB: serial: option: add Fibocom NL668 variants (git-fixes). +- commit 4d00577 + +- timers: Recalculate next timer interrupt only when necessary (bsc#1179365) +- commit 5f04bac + +- timers: Lower base clock forwarding threshold (bsc#1179365) +- commit 72a03ba + +- timers: Remove must_forward_clk (bsc#1179365) +- commit c3083a1 + +- timers: Spare timer softirq until next expiry (bsc#1179365) +- commit 1eaa492 + +- timers: Expand clk forward logic beyond nohz (bsc#1179365) +- commit c14e398 + +- timers: Reuse next expiry cache after nohz exit (bsc#1179365) +- commit 8c6d890 + +- timers: Optimize _next_timer_interrupt() level iteration (bsc#1179365) +- commit 74e8303 + +- timers: Add comments about calc_index() ceiling work (bsc#1179365) +- commit 1709f40 + +- timers: Move trigger_dyntick_cpu() to enqueue_timer() (bsc#1179365) +- commit 79e5013 + +- timers: Use only bucket expiry for base->next_expiry value (bsc#1179365) +- commit dc787a8 + +- timers: Preserve higher bits of expiration on index (bsc#1179365) +- commit 242bf50 + +- pstore: Fix linking when crypto API disabled (jsc#SLE-16304). +- commit cf4291d + +- mtd: Support kmsg dumper based on pstore/blk (jsc#SLE-16304). +- Update config files. +- supported.conf: add mtdpstore +- commit ffec888 + +- pstore/blk: Introduce "best_effort" mode (jsc#SLE-16304). +- pstore/blk: Support non-block storage devices (jsc#SLE-16304). +- pstore/blk: Provide way to query pstore configuration + (jsc#SLE-16304). +- pstore/zone: Provide way to skip "broken" zone for MTD devices + (jsc#SLE-16304). +- commit 278b9b6 + +- Documentation: Add details for pstore/blk (jsc#SLE-16304). +- commit f35da88 + +- pstore/zone,blk: Add ftrace frontend support (jsc#SLE-16304). +- Update config files. +- commit e482e99 + +- pstore/zone,blk: Add console frontend support (jsc#SLE-16304). +- Update config files. +- commit 8e4487a + +- pstore/zone,blk: Add support for pmsg frontend (jsc#SLE-16304). +- Update config files. +- commit 03d39a5 + +- pstore/blk: Introduce backend for block devices (jsc#SLE-16304). +- Update config files. +- mark fs/pstore as supported +- commit 587a2b4 + +- pstore/zone: Introduce common layer to manage storage zones + (jsc#SLE-16304). +- commit ba9c226 + +- ramoops: Add "max-reason" optional field to ramoops DT node + (jsc#SLE-16304). +- pstore/ram: Introduce max_reason and convert dump_oops + (jsc#SLE-16304). +- pstore/platform: Pass max_reason to kmesg dump (jsc#SLE-16304). +- printk: Introduce kmsg_dump_reason_str() (jsc#SLE-16304). +- printk: honor the max_reason field in kmsg_dumper + (jsc#SLE-16304). +- printk: Collapse shutdown types into a single dump reason + (jsc#SLE-16304). +- commit e8792b6 + +- pstore/ftrace: Provide ftrace log merging routine + (jsc#SLE-16304). +- pstore/ram: Refactor ftrace buffer merging (jsc#SLE-16304). +- pstore/ram: Refactor DT size parsing (jsc#SLE-16304). +- pstore/ram: Adjust module param permissions to reflect reality + (jsc#SLE-16304). +- pstore/platform: Move module params after declarations + (jsc#SLE-16304). +- pstore/platform: Use backend name for console registration + (jsc#SLE-16304). +- pstore/platform: Switch pstore_info::name to const + (jsc#SLE-16304). +- pstore: Make sure console capturing will restart + (jsc#SLE-16304). +- pstore: Remove filesystem records when backend is unregistered + (jsc#SLE-16304). +- pstore: Do not leave timer disabled for next backend + (jsc#SLE-16304). +- commit 8204cca + +- pstore: Add locking around superblock changes (jsc#SLE-16304). +- commit 21099a7 + +- pstore: Refactor pstorefs record list removal (jsc#SLE-16304). +- commit 989da98 + +- pstore: Add proper unregister lock checking (jsc#SLE-16304). +- commit eed4072 + +- pstore: Convert "records_list" locking to mutex (jsc#SLE-16304). +- commit 5292e89 + +- pstore: Rename "allpstore" to "records_list" (jsc#SLE-16304). +- commit 70a8404 + +- pstore: Convert "psinfo" locking to mutex (jsc#SLE-16304). +- commit df8a1eb + +- pstore: Rename "pstore_lock" to "psinfo_lock" (jsc#SLE-16304). +- commit 5e29b75 + +- pstore: Drop useless try_module_get() for backend + (jsc#SLE-16304). +- Refresh + patches.suse/pstore_disable_efi_backend_by_default.patch. +- commit de00068 + +- pstore/ram: Replace zero-length array with flexible-array member + (jsc#SLE-16304). +- commit 992f876 + +- pstore/ram: remove unnecessary ramoops_unregister_dummy() + (jsc#SLE-16304). +- commit b76e837 + +- powerpc/perf: Exclude kernel samples while counting events in + user space (jsc#SLE-13513 bsc#1179950 ltc#190285). +- powerpc/perf: MMCR0 control for PMU registers under PMCC=00 + (jsc#SLE-13513 bsc#1179950 ltc#190285). +- powerpc/perf: Fix to update cache events with l2l3 events in + power10 (jsc#SLE-13513 bsc#1179950 ltc#190285). +- powerpc/perf: Fix to update generic event codes for power10 + (jsc#SLE-13513 bsc#1179950 ltc#190285). +- powerpc/perf: Add generic and cache event list for power10 DD1 + (jsc#SLE-13513 bsc#1179950 ltc#190285). +- powerpc/perf: Fix the PMU group constraints for threshold + events in power10 (jsc#SLE-13513 bsc#1179950 ltc#190285). +- powerpc/perf: Update the PMU group constraints for l2l3 events + in power10 (jsc#SLE-13513 bsc#1179950 ltc#190285). +- powerpc/perf: Fix to update radix_scope_qual in power10 + (jsc#SLE-13513 bsc#1179950 ltc#190285). +- powerpc/perf: Invoke per-CPU variable access with disabled + interrupts (jsc#SLE-13513 bsc#1179950 ltc#190285). +- commit da98715 + +- supported.conf: enable pwm-fan + Jetson AGX Xavier uses pwm-fan to contol fan speed. + References: bsc#1179597 +- commit 134e477 + +- btrfs: fix readahead hang and use-after-free after removing + a device (bsc#1179963). +- commit 170193e + +- btrfs: fix use-after-free on readahead extent after failure + to create it (bsc#1179963). +- commit 1429b0b + +- series.conf: cleanup +- update upstream repository URL: + patches.suse/ibmvnic-add-some-debugs.patch +- move unsortable patches out of sorted section: + patches.suse/cifs-set_root_ses-ipc.patch + patches.suse/powerpc-rtas-fix-typo-of-ibm-open-errinjct-in-rtas-f.patch +- commit 059dfec + +- series.conf: cleanup +- update upstream reference and move into "almost mainline" section: + patches.suse/nvme-fc-avoid-calling-_nvme_fc_abort_outstanding_ios-from-interrupt-context.patch +- commit e446234 + +- mm/memory_hotplug: shrink zones when offlining memory + (bsc#1177679). +- commit ffb1814 + +- ARM: 8943/1: Fix topology setup in case of CPU hotplug for + CONFIG_SCHED_MC (jsc#SLE-16614 jsc#SLE-13640). +- commit 66cc853 + +- Revert "geneve: pull IP header before ECN decapsulation" + (git-fixes). +- can: softing: softing_netdev_open(): fix error handling + (git-fixes). +- mac80211: mesh: fix mesh_pathtbl_init() error path (git-fixes). +- commit dff69af + +- drm: panel: Fix bpc for OrtusTech COM43H4M85ULC panel (bsc#1152489) +- commit 68423a3 + +- ibmvnic: fix rx buffer tracking and index management in + replenish_rx_pool partial success (bsc#1179929 ltc#189960). +- commit e63190a + +- IB/hfi1: Ensure correct mm is used at all times (bsc#1179878 + CVE-2020-27835). +- commit f84fcc4 + +- Update patches.suse/tty-Fix-pgrp-locking-in-tiocspgrp.patch + (git-fixes bsc#1179745 CVE-2020-29661). +- Update patches.suse/tty-Fix-session-locking.patch (bsc#1179745 + CVE-2020-29660). + Add CVE numbers. +- commit 034f28b + +- fail_function: Remove a redundant mutex unlock (bsc#1149032). +- locking/percpu-rwsem: Use this_cpu_{inc,dec}() for read_count + (bsc#1149032). +- commit 7d88c68 + +- blacklist.conf: Blacklist some lockdep updates +- commit 2f42c43 + +- kABI: genirq: add back irq_create_mapping (bsc#1065729). +- commit 0788f47 + +- genirq/irqdomain: Add an irq_create_mapping_affinity() function + (bsc#1065729). +- commit 1e1b021 + +- powerpc/64s: Trim offlined CPUs from mm_cpumasks (bsc#1055117 + ltc#159753 git-fixes bsc#1179888 ltc#190253). +- kernel/cpu: add arch override for clear_tasks_mm_cpumask() + mm handling (bsc#1055117 ltc#159753 git-fixes bsc#1179888 + ltc#190253). +- powerpc/64s/pseries: Fix hash tlbiel_all_isa300 for guest + kernels (bsc#1179888 ltc#190253). +- powerpc/64s: Fix hash ISA v3.0 TLBIEL instruction generation + (bsc#1055117 ltc#159753 git-fixes bsc#1179888 ltc#190253). +- commit 8cba4ab + +- powerpc/64s/powernv: Fix memory corruption when saving SLB + entries on MCE (jsc#SLE-9246 git-fixes). +- commit a63cfa4 + +- powerpc/pseries: Pass MSI affinity to irq_create_mapping() + (bsc#1065729). +- ibmvnic: delay next reset if hard reset fails (bsc#1094840 + ltc#167098 git-fixes). +- ibmvnic: restore adapter state on failed reset (bsc#1152457 + ltc#174432 git-fixes). +- ibmvnic: avoid memset null scrq msgs (bsc#1044767 ltc#155231 + git-fixes). +- ibmvnic: enhance resetting status check during module exit + (bsc#1065729). +- ibmvnic: fix NULL pointer dereference in reset_sub_crq_queues + (FATE#322021 bsc#1040855 ltc#155067 git-fixes). +- ibmvnic: notify peers when failover and migration happen + (bsc#1044120 ltc#155423 git-fixes). +- ibmvnic: fix call_netdevice_notifiers in do_reset (bsc#1115431 + ltc#171853 git-fixes). +- commit 00d731f + +- clocksource/drivers/arm_arch_timer: validate arch_timer_rate + (jsc#SLE-16614 jsc#SLE-13640). +- commit 4f4514c + +- arm64: use activity monitors for frequency invariance + (jsc#SLE-16614 jsc#SLE-13640). +- arm: Use common cpu_topology structure and functions + (jsc#SLE-16614 jsc#SLE-13640). +- cpu-topology: Move cpu topology code to common code + (jsc#SLE-16614 jsc#SLE-13640). +- commit 83df8e6 + +- powerpc/64s/exception: KVM Fix for host DSI being taken in + HPT guest MMU context (jsc#SLE-9246 git-fixes). +- powerpc/64s: Fix KVM system reset handling when + CONFIG_PPC_PSERIES=y (jsc#SLE-9246 git-fixes). +- commit 2b2f0ec + +- powerpc/64s: Fix allnoconfig build since uaccess flush + (bsc#1177666 git-fixes). +- commit 87d1aa2 + +- KVM: PPC: Book3S HV: XIVE: Fix possible oops when accessing + ESB page (bsc#1156395). +- commit be0ace4 + +- ibmvnic: add some debugs (bsc#1179896 ltc#190255). +- commit 0ec6de5 + +- powerpc/rtas: fix typo of ibm,open-errinjct in rtas filter + (CVE-2020-27777 bsc#1179107 bsc#1179887 ltc#190092). +- commit 8fcc087 + +- nvme-fc: avoid calling _nvme_fc_abort_outstanding_ios from + interrupt context (bsc#1177326). +- commit c6fa2f3 + +- ftrace: Fix updating FTRACE_FL_TRAMP (git-fixes). +- commit e552615 + +- blacklist.conf: 310e3a4b5a4f ("tracing: Remove WARN_ON in start_thread()") + Not really necessary. Just a WARN_ON(). We may reevaluate if someone + reports it. +- commit b62e034 + +- cpufreq: add function to get the hardware max frequency + (jsc#SLE-16614 jsc#SLE-13640). +- commit 4ef407e + +- Documentation: arm64: document support for the AMU extension + (jsc#SLE-16614 jsc#SLE-13640). +- commit 814a63c + +- arm64/kvm: disable access to AMU registers from kvm guests + (jsc#SLE-16614 jsc#SLE-13640). +- commit 23654f6 + +- arm64: trap to EL1 accesses to AMU counters from EL0 + (jsc#SLE-16614 jsc#SLE-13640). +- commit 1ffcffa + +- arm64: add support for the AMU extension v1 (jsc#SLE-16614 + jsc#SLE-13640). +- Update config files. +- Refresh patches.suse/arm64-Detect-the-ARMv8.4-TTL-feature.patch. +- Refresh + patches.suse/arm64-tlb-Detect-the-ARMv8.4-TLBI-RANGE-feature.patch. +- Refresh + patches.suse/kabi-arm64-reserve-space-in-cpu_hwcaps-and-cpu_hwcap.patch. +- commit db66333 + +- Update config files: drop CONFIG_IP_PNP again + CONFIG_IP_PNP was enabled as a result of Leap config merge, but it + makes little sense without the built-in network drivers. Drop it again. +- commit 43358fd + +- Update config files to disable CONFIG_DEBUG_SECTION_MISMATCH (bsc#1177403) +- commit 0b57f6d + +- fix patches metadata +- fix Patch-mainline: + patches.suse/0001-HMAT-Register-memory-side-cache-after-parsing.patch + patches.suse/0001-HMAT-Skip-publishing-target-info-for-nodes-with-no-o.patch + patches.suse/0001-mm-userfaultfd-do-not-access-vma-vm_mm-after-calling.patch +- commit 35937c0 + +- iommu/amd: Set DTE[IntTabLen] to represent 512 IRTEs + (bsc#1179652). +- commit fc46361 + +- nvme-fabrics: allow to queue requests for live queues + (git-fixes). +- nvme-tcp: cancel async events before freeing event struct + (git-fixes). +- nvme-rdma: cancel async events before freeing event struct + (git-fixes). +- nvme-fc: cancel async events before freeing event struct + (git-fixes). +- commit bd7db2d + +- nvme: Revert: Fix controller creation races with teardown + (git-fixes). +- Delete patches.kabi/nvme-kABI-fixes-for-nvme_ctrl.patch. +- commit 6f82fb0 + +- arm64: cpufreq: revert cppc to v5.10 level + References: bsc#1179585 + cppc_cpufreq is being initialized without checking if + acpi_cppc_processor_probe() succeeded. Revert to v5.10 to keep the old + behavior for now. +- commit dc7e817 + +- nvme-multipath: fix deadlock due to head->lock (git-fixes). +- nvme: don't protect ns mutation with ns->head->lock (git-fixes). +- nvme-multipath: fix deadlock between ana_work and scan_work + (git-fixes). +- commit d1a90c1 + +- nvme-fc: remove nvme_fc_terminate_io() (bsc#1177326). +- nvme-fc: eliminate terminate_io use by nvme_fc_error_recovery + (bsc#1177326). +- nvme-fc: remove err_work work item (bsc#1177326). +- nvme-fc: track error_recovery while connecting (bsc#1177326). +- nvme-fc: shorten reconnect delay if possible for FC (git-fixes). +- nvme-fc: wait for queues to freeze before calling (git-fixes). +- nvme-fc: fix error loop in create_hw_io_queues (git-fixes). +- nvme-fc: fix io timeout to abort I/O (bsc#1177326). +- nvme-pci: properly print controller address (git-fixes). +- commit 42e24bd + +- nvme-tcp: optimize queue io_cpu assignment for multiple queue + (git-fixes). +- Refresh + patches.suse/nvme-tcp-have-queue-prod-cons-send-list-become-a-lli.patch. +- commit b1bde16 + +- nvme-tcp: fix possible leakage during error flow (git-fixes). +- commit a68cfb4 + +- random: try to actively add entropy rather than passively wait for it (bsc#1178404). +- commit f78131b + +- Input: xpad - support Ardwiino Controllers (git-fixes). +- Input: i8042 - add ByteSpeed touchpad to noloop table + (git-fixes). +- usbnet: ipheth: fix connectivity with iOS 14 (git-fixes). +- commit 8f84738 + +- x86/insn-eval: Use new for_each_insn_prefix() macro to loop + over prefixes bytes (bsc#1152489). +- commit 73ffec0 + +- x86/uprobes: Do not use prefixes.nbytes when looping over + prefixes.bytes (bsc#1152489). +- commit 0b28903 + +- x86/resctrl: Fix AMD L3 QOS CDP enable/disable (bsc#1152489). +- commit d839ba5 + +- io_uring: grab ->fs as part of async offload (bsc#1179434 + CVE-2020-29373). +- commit b260e71 + +- blacklist.conf: Append 'drm/i915: Avoid mixing integer types during batch copies' +- commit 7318e0c + +- blacklist.conf: Append 'drm/i915: Clear the repeater bit on HDCP disable' +- commit c9b3793 + +- blacklist.conf: Append 'drm/i915: Fix sha_text population code' +- commit 3c40ed1 + +- blacklist.conf: Append 'drm/i915/gem: Delay tracking the GEM context until it is registered' +- commit 57a9af9 + +- blacklist.conf: Append 'drm/amd/powerplay: Fix hardmins not being sent to SMU for RV' +- commit 3708b97 + +- blacklist.conf: Append 'drm/amdgpu: Prevent kernel-infoleak in amdgpu_info_ioctl()' +- commit 13ab26a + +- Update + patches.suse/media-xirlink_cit-add-missing-descriptor-sanity-chec.patch + (bsc#1168952 CVE-2020-11668). + Added CVE number +- commit a0ec304 + +- blacklist.conf: Append 'drm/i915/gem: Delay tracking the GEM context until it is registered' +- commit b9b8698 + +- drm/imx: tve remove extraneous type qualifier (bsc#1152489) +- commit ef93a79 + +- drm/vc4: hdmi: Avoid sleeping in atomic context (bsc#1152489) + Backporting changes: + * context fixes +- commit 507bd66 + +- drm/panfrost: increase readl_relaxed_poll_timeout values (bsc#1152472) + Backporting changes: + * context fixes +- commit c82949a + +- drm/i915/gem: Avoid implicit vmap for highmem on x86-32 (bsc#1152489) + Backporting changes: + * context fixes +- commit 56c13b8 + +- drm/vc4: crtc: Rework a bit the CRTC state code (bsc#1152472) + Backporting changes: + * context fixes +- commit e8c9179 + +- drm/msm: Drop debug print in _dpu_crtc_setup_lm_bounds() (bsc#1152489) + Backporting changes: + * context fixes +- commit 620be39 + +- drm/msm: Avoid div-by-zero in dpu_crtc_atomic_check() (bsc#1152489) +- commit fa753cd + +- drm: mxsfb: check framebuffer pitch (bsc#1152472) + Backporting changes: + * context fixes +- commit 0dd9c60 + +- drm/panfrost: Ensure GPU quirks are always initialised (bsc#1152489) +- commit c088e37 + +- drm/crc-debugfs: Fix memleak in crc_control_write (bsc#1152472) +- commit 7cf7f8b + +- drm: rcar-du: Put reference to VSP device (bsc#1152489) +- commit 3aca956 + +- drm/radeon: Prefer lower feedback dividers (bsc#1152489) +- commit 7479884 + +- drm/amdgpu: pass NULL pointer instead of 0 (bsc#1152489) + Backporting changes: + * context fixes +- commit 7cc3993 + +- drm/amd/display: Fix wrong return value in dm_update_plane_state() (bsc#1152489) +- commit 7638845 + +- drm/gma500: fix error check (bsc#1152472) + Backporting changes: + * context fixes +- commit e0b3dc4 + +- drm: panel: Fix bus format for OrtusTech COM43H4M85ULC panel (bsc#1152472) + Backporting changes: + * context fixes +- commit aaeda6a + +- drm/vkms: fix xrgb on compute crc (bsc#1152472) + Backporting changes: + * changed filename from vkms_composer.c to vkms_crc.c + * context fixes +- commit 84538b3 + +- drm: mxsfb: Remove fbdev leftovers (bsc#1152472) + Backporting changes: + * context fixes +- commit 7b29584 + +- drm/sun4i: sun8i-csc: Secondary CSC register correction (bsc#1152489) +- commit c09dba1 + +- drm/vc4/vc4_hdmi: fill ASoC card owner (bsc#1152489) +- commit afa801d + +- drm/mediatek: Add missing put_device() call in (bsc#1152472) +- commit 2465a49 + +- drm/mediatek: Add missing put_device() call in mtk_drm_kms_init() (bsc#1152472) + Backporting changes: + * context fixes + * adapted to function layout +- commit 187e3d3 + +- drm/mediatek: Add exception handing in mtk_drm_probe() if component (bsc#1152472) +- commit 39014a3 + +- drm/i915: Fix sha_text population code (bsc#1152489) + Backporting changes: + * context fixes + * adapted I/O functions to old driver +- commit d501c26 + +- fbcon: Remove the superfluous break (bsc#1152472) +- commit e00dc98 + +- video: fbdev: radeon: Fix memleak in radeonfb_pci_register (bsc#1152472) +- commit 9657792 + +- video: fbdev: sis: fix null ptr dereference (bsc#1152472) +- commit d833a20 + +- speakup: Reject setting the speakup line discipline outside + of speakup (CVE-2020-27830 bsc#1179656). +- commit ec50953 + +- tty: Fix ->session locking (bsc#1179745). +- commit a9a2af9 + +- Update patches.suse/tty-Fix-pgrp-locking-in-tiocspgrp.patch + (git-fixes bsc#1179745). +- commit 556ded3 + +- Update + patches.suse/mm-slub-add-missing-tid-bump-in-kmem_cache_alloc_bulk.patch + (CVE-2020-29370, bsc#1179435, bsc#1167657, VM functionality). +- add reference to CVE and its bsc +- commit cc58091 + +- patches.suse/iommu-amd-Increase-interrupt-remapping-table-limit-t.patch: + (bsc#1179652). +- commit 34c2dd2 + +- blacklist.conf: Blacklist fdeb17c70c9e +- commit 392d677 + +- ext4: fix bogus warning in ext4_update_dx_flag() (bsc#1179716). +- commit c86f418 + +- reiserfs: Fix oops during mount (bsc#1179715). +- commit 89f9917 + +- quota: clear padding in v2r1_mem2diskdqb() (bsc#1179714). +- commit 20af897 + +- reiserfs: Initialize inode keys properly (bsc#1179713). +- commit 2b68a22 + +- udf: Fix memory leak when mounting (bsc#1179712). +- commit 816f9a3 + +- fs: Don't invalidate page buffers in block_write_full_page() + (bsc#1179711). +- commit 8f6f5ed + +- mm/error_inject: Fix allow_error_inject function signatures + (bsc#1179710). +- commit 2c7612f + +- libfs: fix error cast of negative value in simple_attr_write() + (bsc#1179709). +- commit 246e7d7 + +- jbd2: fix up sparse warnings in checkpoint code (bsc#1179707). +- commit 15002ce + +- ubifs: journal: Make sure to not dirty twice for auth nodes + (bsc#1179704). +- commit 0185a1d + +- ubifs: dent: Fix some potential memory leaks while iterating + entries (bsc#1179703). +- commit 32b7d27 + +- ubifs: xattr: Fix some potential memory leaks while iterating + entries (bsc#1179690). +- commit 950038e + +- ubifs: mount_ubifs: Release authentication resource in error + handling path (bsc#1179689). +- commit 0b68da4 + +- ubifs: Don't parse authentication mount options in remount + process (bsc#1179688). +- commit 391f198 + +- ubifs: Fix a memleak after dumping authentication mount options + (bsc#1179687). +- commit 3c605f4 + +- iomap: Set all uptodate bits for an Uptodate page (bsc#1179685). +- commit 8e539c4 + +- iomap: Mark read blocks uptodate in write_begin (bsc#1179684). +- commit d032f23 + +- iomap: Clear page error before beginning a write (bsc#1179683). +- commit da58998 + +- blacklist.conf: Blacklist 50b7d8568008 +- commit cc769c4 + +- fs/ufs: avoid potential u32 multiplication overflow + (bsc#1179682). +- commit 8289be8 + +- fs/minix: remove expected error message in block_to_path() + (bsc#1179681). +- commit 0ea255e + +- fs/minix: fix block limit check for V1 filesystems + (bsc#1179680). +- commit 06199cf + +- fs/minix: set s_maxbytes correctly (bsc#1179679). +- commit 69dd22c + +- fs/minix: reject too-large maximum file size (bsc#1179678). +- commit c5b4a77 + +- fs/minix: don't allow getting deleted inodes (bsc#1179677). +- commit cbd9376 + +- fs/minix: check return value of sb_getblk() (bsc#1179676). +- commit 86706a5 + +- ubifs: Fix wrong orphan node deletion in ubifs_jnl_update|rename + (bsc#1179675). +- commit 7055a2f + +- ext4: unlock xattr_sem properly in ext4_inline_data_truncate() + (bsc#1179673). +- commit d17d948 + +- ext4: correctly report "not supported" for {usr,grp}jquota + when !CONFIG_QUOTA (bsc#1179672). +- commit ace06ac + +- ext4: limit entries returned when counting fsmap records + (bsc#1179671). +- commit 869362f + +- ext4: fix leaking sysfs kobject after failed mount + (bsc#1179670). +- commit 2855c18 + +- x86/mce: Do not overwrite no_way_out if mce_end() fails + (bsc#1152489). +- commit 016650c + +- RDMA/bnxt_re: Fix sizeof mismatch for allocation of pbl_tbl. (bsc#1152489) +- commit b293ffc + +- RDMA/ipoib: Set rtnl_link_ops for ipoib interfaces (bsc#1152489) +- commit 2686c41 + +- RDMA/addr: Fix race with netevent_callback()/rdma_addr_cancel() (bsc#1152489) +- commit e7b302f + +- RDMA/hns: Fix missing sq_sig_type when querying QP (bsc#1152489) +- commit 428c91c + +- RDMA/hns: Add check for the validity of sl configuration (bsc#1152489) +- commit 1cb3ce0 + +- RDMA/hns: Correct typo of hns_roce_create_cq() (bsc#1152489) +- commit 8c66138 + +- RDMA/mlx5: Disable IB_DEVICE_MEM_MGT_EXTENSIONS if IB_WR_REG_MR can't work (bsc#1152489) +- commit a38a25c + +- RDMA/hns: Set the unsupported wr opcode (bsc#1152489) +- commit e06fae1 + +- RDMA/qedr: Fix iWARP active mtu display (bsc#1152489) +- commit d610dee + +- qede: Notify qedr when mtu has changed (bsc#1152489) +- commit 98fc763 + +- RDMA/qedr: Fix resource leak in qedr_create_qp (bsc#1152489) +- commit bdb50f5 + +- RDMA/qedr: Fix inline size returned for iWARP (bsc#1152489) +- commit 1a57d92 + +- RDMA/qedr: Fix use of uninitialized field (bsc#1152489) +- commit 6926fdb + +- RDMA/qedr: Fix doorbell setting (bsc#1152489) +- commit 7085d43 + +- RDMA/qedr: Fix qp structure memory leak (bsc#1152489) +- commit 15f0227 + +- RDMA/umem: Prevent small pages from being returned by ib_umem_find_best_pgsz() (bsc#1152489) +- commit 6fda3ed + +- RDMA/umem: Fix ib_umem_find_best_pgsz() for mappings that cross a page boundary (bsc#1152489) +- commit e3d4c09 + +- IB/mlx4: Adjust delayed work when a dup is observed (bsc#1152489) +- commit f007f05 + +- IB/mlx4: Fix starvation in paravirt mux/demux (bsc#1152489) +- commit b4a4680 + +- IB/mlx4: Add support for MRA (bsc#1152489) +- commit d8e693f + +- IB/mlx4: Add and improve logging (bsc#1152489) +- commit d9fbac5 + +- IB/isert: Fix unaligned immediate-data handling (bsc#1152489) +- commit ff723af + +- nvme-rdma: handle unexpected nvme completion data length + (bsc#1178612). +- commit 302adf9 + +- nvme-tcp: avoid repeated request completion (bsc#1179519). +- nvme-rdma: avoid repeated request completion (bsc#1179519). +- nvme-tcp: avoid race between time out and tear down + (bsc#1179519). +- nvme-rdma: avoid race between time out and tear down + (bsc#1179519). +- nvme: introduce nvme_sync_io_queues (bsc#1179519). +- nvme-rdma: fix reset hang if controller died in the middle of + a reset (bsc#1179519). +- nvme-rdma: fix timeout handler (bsc#1179519). +- nvme-rdma: serialize controller teardown sequences + (bsc#1179519). +- nvme-tcp: fix reset hang if controller died in the middle of + a reset (bsc#1179519). +- nvme-tcp: fix timeout handler (bsc#1179519). +- nvme-tcp: serialize controller teardown sequences (bsc#1179519). +- nvme: have nvme_wait_freeze_timeout return if it timed out + (bsc#1179519). +- nvme-fabrics: don't check state NVME_CTRL_NEW for request + acceptance (bsc#1179519). +- nvme-rdma: fix controller reset hang during traffic + (bsc#1179519). +- nvme-tcp: fix controller reset hang during traffic + (bsc#1179519). +- nvme-tcp: optimize network stack with setting msg flags + (bsc#1179519). +- nvme-tcp: leverage request plugging (bsc#1179519). +- nvme-tcp: have queue prod/cons send list become a llist + (bsc#1179519). +- commit 2ed3c82 + +- RDMA/core: Fix reported speed and width (bsc#1152489) +- commit 8c599c6 + +- RDMA/rxe: Fix memleak in rxe_mem_init_user (bsc#1152489) +- commit cc6aac8 + +- RDMA/rxe: Fix the parent sysfs read when the interface has 15 chars (bsc#1152489) +- commit e9e9418 + +- RDMA/bnxt_re: Do not add user qps to flushlist (bsc#1152489) +- commit 940898b + +- RDMA/netlink: Remove CAP_NET_RAW check when dump a raw QP (bsc#1152489) +- commit ccd3388 + +- RDMA/core: Fix return error value in _ib_modify_qp() to negative (bsc#1152489) +- commit 687bd9b + +- RDMA/rxe: Prevent access to wr->next ptr afrer wr is posted to send queue (bsc#1152489) +- commit 4299c93 + +- RDMA/qedr: SRQ's bug fixes (bsc#1152489) +- commit 9e7f793 + +- nvme-tcp: set MSG_SENDPAGE_NOTLAST with MSG_MORE when we have + (bsc#1179519). +- Refresh + patches.suse/0004-nvme-tcp-check-page-by-sendpage_ok-before-calling-ke.patch. +- commit 32b2bc0 + +- nvme-tcp: try to send request in queue_rq context (bsc#1179519). +- nvme-tcp: avoid scheduling io_work if we are already polling + (bsc#1179519). +- nvme-tcp: use bh_lock in data_ready (bsc#1179519). +- commit 0a88b1e + +- RDMA/rxe: Return void from rxe_mem_init_dma() (bsc#1152489) +- commit 3d531e1 + +- RDMA/rxe: Return void from rxe_init_port_param() (bsc#1152489) +- commit d46a4c5 + +- RDMA/rxe: Drop pointless checks in rxe_init_ports (bsc#1152489) +- commit 2094aae + +- RDMA/counter: Allow manually bind QPs with different pids to same counter (bsc#1152489) +- commit 309f664 + +- nvme-tcp: fix possible crash in recv error flow (bsc#1179519). +- commit 4c08b72 + +- RDMA/counter: Only bind user QPs in auto mode (bsc#1152489) +- commit 72cbdac + +- RDMA/rxe: Skip dgid check in loopback mode (bsc#1152489) +- commit e2d95da + +- IB/uverbs: Set IOVA on IB MR in uverbs layer (bsc#1152489) +- commit b8a964a + +- nvme-tcp: don't poll a non-live queue (bsc#1179519). +- Refresh + patches.suse/net-use-skb_queue_empty_lockless-in-busy-poll-contex.patch. +- commit f682d57 + +- RDMA/core: Fix bogus WARN_ON during ib_unregister_device_queued() (bsc#1152489) +- commit 3cc3811 + +- nvme-tcp: break from io_work loop if recv failed (bsc#1179519). +- nvme-tcp: move send failure to nvme_tcp_try_send (bsc#1179519). +- commit c56582a + +- RDMA/rxe: Remove unused rxe_mem_map_pages (bsc#1152489) +- commit e074cd4 + +- asm-generic: Make msi.h a mandatory include/asm header + (jsc#SLE-16823). +- Refresh + patches.suse/powerpc-64s-Implement-queued-spinlocks-and-rwlocks.patch. +- commit 23f23de + +- iommu/vt-d: Fix compile error with CONFIG_PCI_ATS not set + (jsc#SLE-16823). +- commit 6568a78 + +- iommu/vt-d: Cure VF irqdomain hickup (jsc#SLE-16823). +- genirq/irqdomain: Make sure all irq domain flags are distinct + (jsc#SLE-16823). +- commit c29c85b + +- cifs: fix DFS mount with cifsacl/modefromsid (bsc#1178270). +- commit c824489 + +- cifs: fix check of tcon dfs in smb1 (bsc#1178270). +- commit ff315b4 + +- cifs: Fix an error pointer dereference in cifs_mount() + (bsc#1178270). +- commit e5a8cdb + +- cifs: document and cleanup dfs mount (bsc#1178270). +- commit de6694e + +- cifs: only update prefix path of DFS links in + cifs_tree_connect() (bsc#1178270). +- commit 1f46cb8 + +- cifs: fix double free error on share and prefix (bsc#1178270). +- commit bf4c8ab + +- cifs: handle RESP_GET_DFS_REFERRAL.PathConsumed in reconnect + (bsc#1178270). +- commit 947bd74 + +- cifs: handle empty list of targets in cifs_reconnect() + (bsc#1178270). +- commit 846daee + +- cifs: rename reconn_inval_dfs_target() (bsc#1178270). +- commit 12d8cf3 + +- cifs: reduce number of referral requests in DFS link lookups + (bsc#1178270). +- commit cc7ec21 + +- cifs: merge __{cifs,smb2}_reconnect[_tcon]() into + cifs_tree_connect() (bsc#1178270). +- commit b6f05ac + +- cifs: get rid of unused parameter in reconn_setup_dfs_targets() + (bsc#1178270). +- commit a6a1916 + +- cifs: handle hostnames that resolve to same ip in failover + (bsc#1178270). +- commit cd8e61d + +- cifs: set up next DFS target before generic_ip_connect() + (bsc#1178270). +- commit 1099aff + +- cifs: fix leaked reference on requeued write (bsc#1178270). +- commit f474970 + +- cifs: fix uninitialised lease_key in open_shroot() + (bsc#1178270). +- commit dbce315 + +- cifs: ensure correct super block for DFS reconnect + (bsc#1178270). +- commit 5350fc5 + +- cifs: do not share tcons with DFS (bsc#1178270). +- commit c8f7b47 + +- cifs: add NULL check for ses->tcon_ipc (bsc#1178270). +- commit 0e24399 + +- mm/userfaultfd: do not access vma->vm_mm after calling + handle_userfault() (bsc#1179204). +- commit 6bb3d8f + +- x86/kvm: Reserve KVM_FEATURE_MSI_EXT_DEST_ID (jsc#SLE-16823). +- PCI: MSI: Fix Kconfig dependencies for PCI_MSI_ARCH_FALLBACKS + (jsc#SLE-16823). +- x86/apic/msi: Unbreak DMAR and HPET MSI (jsc#SLE-16823). +- iommu/amd: Remove domain search for PCI/MSI (jsc#SLE-16823). +- iommu/vt-d: Remove domain search for PCI/MSI (jsc#SLE-16823). +- x86/irq: Make most MSI ops XEN private (jsc#SLE-16823). +- x86/irq: Cleanup the arch_*_msi_irqs() leftovers + (jsc#SLE-16823). +- PCI/MSI: Make arch_.*_msi_irq fallbacks selectable + (jsc#SLE-16823). +- Update config files. + PCI_MSI_ARCH_FALLBACKS is now auto-selected. +- x86/pci: Set default irq domain in pcibios_add_device() + (jsc#SLE-16823). +- iommm/amd: Store irq domain in struct device (jsc#SLE-16823). +- iommm/vt-d: Store irq domain in struct device (jsc#SLE-16823). +- x86/xen: Wrap XEN MSI management into irqdomain (jsc#SLE-16823). +- irqdomain/msi: Allow to override msi_domain_alloc/free_irqs() + (jsc#SLE-16823). +- x86/xen: Consolidate XEN-MSI init (jsc#SLE-16823). +- x86/xen: Rework MSI teardown (jsc#SLE-16823). +- x86/xen: Make xen_msi_init() static and rename it to + xen_hvm_msi_init() (jsc#SLE-16823). +- PCI/MSI: Provide pci_dev_has_special_msi_domain() helper + (jsc#SLE-16823). +- PCI_vmd_Mark_VMD_irqdomain_with_DOMAIN_BUS_VMD_MSI + (jsc#SLE-16823). +- irqdomain/msi: Provide DOMAIN_BUS_VMD_MSI (jsc#SLE-16823). +- x86/irq: Initialize PCI/MSI domain at PCI init time + (jsc#SLE-16823). +- Refresh + patches.suse/x86-paravirt-allow-hypervisor-specific-vmmcall-handling-under-sev-es. +- x86/pci: Reducde #ifdeffery in PCI init code (jsc#SLE-16823). +- x86/irq: Move apic_post_init() invocation to one place + (jsc#SLE-16823). +- x86/msi: Use generic MSI domain ops (jsc#SLE-16823). +- x86/msi: Consolidate MSI allocation (jsc#SLE-16823). +- PCI/MSI: Rework pci_msi_domain_calc_hwirq() (jsc#SLE-16823). +- x86/irq: Consolidate UV domain allocation (jsc#SLE-16823). +- x86/irq: Consolidate DMAR irq allocation (jsc#SLE-16823). +- x86_ioapic_Consolidate_IOAPIC_allocation (jsc#SLE-16823). +- x86/msi: Consolidate HPET allocation (jsc#SLE-16823). +- x86/irq: Prepare consolidation of irq_alloc_info + (jsc#SLE-16823). +- iommu/irq_remapping: Consolidate irq domain lookup + (jsc#SLE-16823). +- iommu/amd: Consolidate irq domain getter (jsc#SLE-16823). +- iommu/vt-d: Consolidate irq domain getter (jsc#SLE-16823). +- x86/irq: Add allocation type for parent domain retrieval + (jsc#SLE-16823). +- x86_irq_Rename_X86_IRQ_ALLOC_TYPE_MSI_to_reflect_PCI_dependency + (jsc#SLE-16823). +- x86/msi: Remove pointless vcpu_affinity callback + (jsc#SLE-16823). +- x86/msi: Move compose message callback where it belongs + (jsc#SLE-16823). +- genirq/chip: Use the first chip in irq_chip_compose_msi_msg() + (jsc#SLE-16823). +- PCI: vmd: Dont abuse vector irqomain as parent (jsc#SLE-16823). +- x86/init: Remove unused init ops (jsc#SLE-16823). +- iommu/amd: Prevent NULL pointer dereference (jsc#SLE-16823). +- irqdomain: Export irq_domain_update_bus_token (jsc#SLE-16823). +- KVM: x86: Fixes posted interrupt check for IRQs delivery modes + (jsc#SLE-16823). +- x86/apic/msi: Plug non-maskable MSI affinity race + (jsc#SLE-16823). +- Refresh + patches.suse/genirq-Add-protection-against-unsafe-usage-of-generi.patch. +- Refresh + patches.suse/msft-hv-2119-irqdomain-treewide-Keep-firmware-node-unconditionall.patch. +- KVM: X86: Use APIC_DEST_* macros properly in + kvm_lapic_irq.dest_mode (jsc#SLE-16823). +- commit 3ea20e1 + +- HMAT: Skip publishing target info for nodes with no online + memory (bsc#1178660). +- HMAT: Register memory-side cache after parsing (bsc#1178660). +- commit c10070c + +- RDMA/core: Free DIM memory in error unwind (bsc#1152489) +- commit 21b1eaa + +- RDMA/core: Stop DIM before destroying CQ (bsc#1152489) +- commit 5bb1399 + +- scsi: core: Return BLK_STS_AGAIN for ALUA transitioning + (bsc#1165933, bsc#1171000). +- commit 56a64e3 + +- ALSA: usb-audio: Fix MOTU M-Series quirks (bsc#1178203). +- ALSA: usb-audio: Fix quirks for other BOSS devices + (bsc#1178203). +- ALSA: usb-audio: Add implicit_fb module option (bsc#1178203). +- ALSA: usb-audio: Add generic implicit fb parsing (bsc#1178203). +- ALSA: usb-audio: Factor out the implicit feedback quirk code + (bsc#1178203). +- ALSA: usb-audio: Quirk for BOSS GT-001 (bsc#1178203). +- ALSA: usb-audio: Show sync endpoint information in proc outputs + (bsc#1178203). +- ALSA: usb-audio: Use unsigned char for iface and altsettings + fields (bsc#1178203). +- ALSA: usb-audio: Replace slave/master terms (bsc#1178203). +- ALSA: usb-audio: Simplify rate_min/max and rates set up + (bsc#1178203). +- ALSA: usb-audio: Unify the code for the next packet size + calculation (bsc#1178203). +- ALSA: usb-audio: Drop unneeded snd_usb_substream fields + (bsc#1178203). +- ALSA: usb-audio: Refactoring endpoint URB deactivation + (bsc#1178203). +- ALSA: usb-audio: Use atomic_t for endpoint use_count + (bsc#1178203). +- ALSA: usb-audio: Constify audioformat pointer references + (bsc#1178203). +- ALSA: usb-audio: Fix possible stall of implicit fb packet + ring-buffer (bsc#1178203). +- ALSA: usb-audio: Refactor endpoint management (bsc#1178203). +- ALSA: usb-audio: Fix EP matching for continuous rates + (bsc#1178203). +- ALSA: usb-audio: Always set up the parameters after resume + (bsc#1178203). +- ALSA: usb-audio: Set callbacks via + snd_usb_endpoint_set_callback() (bsc#1178203). +- ALSA: usb-audio: Stop both endpoints properly at error + (bsc#1178203). +- ALSA: usb-audio: Simplify snd_usb_init_pitch() arguments + (bsc#1178203). +- ALSA: usb-audio: Simplify snd_usb_init_sample_rate() arguments + (bsc#1178203). +- ALSA: usb-audio: Pass snd_usb_audio object to quirk functions + (bsc#1178203). +- ALSA: usb-audio: Don't set altsetting before initializing + sample rate (bsc#1178203). +- ALSA: usb-audio: Add snd_usb_get_host_interface() helper + (bsc#1178203). +- ALSA: usb-audio: Drop keep_interface flag again (bsc#1178203). +- ALSA: usb-audio: Create endpoint objects at parsing phase + (bsc#1178203). +- ALSA: usb-audio: Avoid doubly initialization for implicit fb + (bsc#1178203). +- ALSA: usb-audio: Drop debug.h (bsc#1178203). +- ALSA: usb-audio: Simplify hw_params rules (bsc#1178203). +- ALSA: usb-audio: Add hw constraint for implicit fb sync + (bsc#1178203). +- ALSA: usb-audio: Move snd_usb_autoresume() call out of + setup_hw_info() (bsc#1178203). +- ALSA: usb-audio: Track implicit fb sync endpoint in audioformat + list (bsc#1178203). +- ALSA: usb-audio: Improve some debug prints (bsc#1178203). +- ALSA: usb-audio: Set and clear sync EP link properly + (bsc#1178203). +- ALSA: usb-audio: Add snd_usb_get_endpoint() helper + (bsc#1178203). +- ALSA: usb-audio: Check implicit feedback EP generically for UAC2 + (bsc#1178203). +- ALSA: usb-audio: Check valid altsetting at parsing rates for + UAC2/3 (bsc#1178203). +- ALSA: usb-audio: Don't call usb_set_interface() at trigger + callback (bsc#1178203). +- ALSA: usb-audio: Handle discrete rates properly in hw + constraints (bsc#1178203). +- commit 25f15d1 + +- prom_init: enable verbose prints (bsc#1178142 bsc#1180759). -- commit 745d3a7 +- commit c0bbedb +- scsi_dh_alua: set 'transitioning' state on unit attention + (bsc#1171000, bsc#1165933). +- commit cf7ac61 + +- scsi_dh_alua: return BLK_STS_AGAIN for ALUA transitioning state + (bsc#1165933, bsc#1171000). +- commit f6e8a74 + +- block: return status code in blk_mq_end_request() (bsc#1171000, + bsc#1165933). +- commit 0b97993 + kernel-firmware +- Update to version 20201218 (git commit 646f159690e2): + * make AP6212 in bananpi m2 plus/zero work + * linux-firmware: Update firmware file for Intel Bluetooth AX210 + * linux-firmware: Update firmware file for Intel Bluetooth AX200 + * linux-firmware: Update firmware file for Intel Bluetooth AX201 + * linux-firmware: Update firmware file for Intel Bluetooth 9560 + * linux-firmware: Update firmware file for Intel Bluetooth 9260 + * linux-firmware: add firmware for Lontium LT9611UXC DSI to HDMI bridge + * mediatek: update MT8173 VPU firmware to v1.1.6 + * QCA : Updated firmware files for WCN3991 +- Remove the already upstreamed extrawhence entry +- Update topic entry for lt9611uxc +- Update aliases from 5.10.x kernels + +- add banana pi brcm wireless symlinks to extrawhence + +- Update to version 20201130 (git commit 7455a3606674): + * linux-firmware: Update firmware file for Intel Bluetooth AX210 + * linux-firmware: Update firmware file for Intel Bluetooth AX210 + * i915: Add GuC firmware v49.0.1 for all platforms + * i915: Remove duplicate KBL DMC entry + * Mellanox: Add new mlxsw_spectrum firmware xx.2008.2018 + kernel-firmware:compressed +- Update to version 20201218 (git commit 646f159690e2): + * make AP6212 in bananpi m2 plus/zero work + * linux-firmware: Update firmware file for Intel Bluetooth AX210 + * linux-firmware: Update firmware file for Intel Bluetooth AX200 + * linux-firmware: Update firmware file for Intel Bluetooth AX201 + * linux-firmware: Update firmware file for Intel Bluetooth 9560 + * linux-firmware: Update firmware file for Intel Bluetooth 9260 + * linux-firmware: add firmware for Lontium LT9611UXC DSI to HDMI bridge + * mediatek: update MT8173 VPU firmware to v1.1.6 + * QCA : Updated firmware files for WCN3991 +- Remove the already upstreamed extrawhence entry +- Update topic entry for lt9611uxc +- Update aliases from 5.10.x kernels + +- add banana pi brcm wireless symlinks to extrawhence + +- Update to version 20201130 (git commit 7455a3606674): + * linux-firmware: Update firmware file for Intel Bluetooth AX210 + * linux-firmware: Update firmware file for Intel Bluetooth AX210 + * i915: Add GuC firmware v49.0.1 for all platforms + * i915: Remove duplicate KBL DMC entry + * Mellanox: Add new mlxsw_spectrum firmware xx.2008.2018 + kernel-preempt +- RDMA/ucma: Do not miss ctx destruction steps in some cases + (bsc#1181147). +- RDMA/cma: Don't overwrite sgid_attr after device is released + (bsc#1181147). +- RDMA/cma: Fix deadlock on &lock in rdma_cma_listen_on_all() + error unwind (bsc#1181147). +- RDMA/cma: Add missing error handling of listen_id (bsc#1181147). +- RDMA: Add rdma_connect_locked() (bsc#1181147). +- RDMA/ucma: Fix use after free in destroy id flow (bsc#1181147). +- RDMA/ucma: Rework ucma_migrate_id() to avoid races with destroy + (bsc#1181147). +- RDMA/cma: Fix use after free race in roce multicast join + (bsc#1181147). +- RDMA/cma: Consolidate the destruction of a cma_multicast in + one place (bsc#1181147). +- RDMA/cma: Remove dead code for kernel rdmacm multicast + (bsc#1181147). +- RDMA/cma: Combine cma_ndev_work with cma_work (bsc#1181147). +- RDMA/cma: Remove cma_comp() (bsc#1181147). +- RDMA/cma: Fix locking for the RDMA_CM_LISTEN state + (bsc#1181147). +- RDMA/cma: Make the locking for automatic state transition more + clear (bsc#1181147). +- RDMA/cma: Fix locking for the RDMA_CM_CONNECT state + (bsc#1181147). +- RDMA/ucma: Fix resource leak on error path (bsc#1181147). +- RDMA/ucma: Remove closing and the close_wq (bsc#1181147). +- RDMA/ucma: Rework how new connections are passed through event + delivery (bsc#1181147). +- RDMA/ucma: Narrow file->mut in ucma_event_handler() + (bsc#1181147). +- RDMA/ucma: Change backlog into an atomic (bsc#1181147). +- RDMA/ucma: Fix locking for ctx->events_reported (bsc#1181147). +- RDMA/ucma: Fix the locking of ctx->file (bsc#1181147). +- RDMA/ucma: Do not use file->mut to lock destroying + (bsc#1181147). +- RDMA/cma: Add missing locking to rdma_accept() (bsc#1181147). +- RDMA/ucma: Remove mc_list and rely on xarray (bsc#1181147). +- RDMA/ucma: Fix error cases around ucma_alloc_ctx() + (bsc#1181147). +- RDMA/ucma: Consolidate the two destroy flows (bsc#1181147). +- RDMA/ucma: Remove unnecessary locking of file->ctx_list in close + (bsc#1181147). +- RDMA/ucma: Fix refcount 0 incr in ucma_get_ctx() (bsc#1181147). +- RDMA/core: Move the rdma_show_ib_cm_event() macro (bsc#1181147). +- commit feb2e32 + +- drm/v3d: Add support for bcm2711 (jsc#SLE-16259). +- Update config +- supported.conf: Enable v3d +- commit 29319ce + +- soc: bcm: bcm2835-pm: Add support for bcm2711 (jsc#SLE-16259). +- commit 8aa7baa + +- blacklist.conf: 035fff1f7aab x86/PCI: Fix intel_mid_pci.c build error when ACPI is not enabled +- commit 7d62c49 + +- Fix hibernation verification after UEFI subsystem upgraded (jsc#SLE-16407) +- Refresh + patches.suse/0005-efi-generate-secret-key-in-EFI-boot-environment.patch. +- Refresh + patches.suse/0006-efi-allow-user-to-regenerate-secret-key.patch. +- Delete + patches.suse/0003-x86-KASLR-public-the-function-for-getting-random-lon.patch. +- Update config files. +- commit d972b09 + +- x86/sev: Fix nonistr violation (bsc#1178134). +- commit 47bc3f9 + +- drm/i915/hdcp: Update CP property in update_pipe (git-fixes). +- drm/amdgpu: fix DRM_INFO flood if display core is not supported + (bug 210921) (git-fixes). +- commit 0dca4e9 + +- x86/sev-es: Handle string port IO to kernel memory properly + (bsc#1178134). +- commit 3ec7fbe + +- i2c: mlxbf: select CONFIG_I2C_SLAVE (jsc#SLE-15271 jsc#SLE-16108 + jsc#SLE-16098 jsc#SLE-13565). +- i2c: mlxbf: I2C_MLXBF should depend on MELLANOX_PLATFORM + (jsc#SLE-15271 jsc#SLE-16108 jsc#SLE-16098 jsc#SLE-13565). +- commit abb583b + +- net: core: devlink: use right genl user_ptr when handling port + param get/set (bsc#1176447). +- i40e: fix potential NULL pointer dereferencing (jsc#SLE-13701). +- net: fix use-after-free when UDP GRO with shared fraglist + (bsc#1176447). +- net/mlx5e: In skb build skip setting mark in switchdev mode + (jsc#SLE-15172). +- nexthop: Bounce NHA_GATEWAY in FDB nexthop groups (bsc#1176447). +- net: bareudp: add missing error handling for + bareudp_link_config() (jsc#SLE-15172). +- bareudp: Fix use of incorrect min_headroom size (jsc#SLE-15172). +- bareudp: set NETIF_F_LLTX flag (jsc#SLE-15172). +- bnxt_en: Check TQM rings for maximum supported value + (jsc#SLE-15075). +- bnxt_en: Fix AER recovery (jsc#SLE-15075). +- Revert "e1000e: disable s0ix entry and exit flows for ME + systems" (jsc#SLE-13532). +- e1000e: Only run S0ix flows if shutdown succeeded + (jsc#SLE-13532). +- ionic: change set_rx_mode from_ndo to can_sleep (jsc#SLE-16649). +- ionic: flatten calls to ionic_lif_rx_mode (jsc#SLE-16649). +- ice: avoid premature Rx buffer reuse (jsc#SLE-7926). +- net: mlx5e: fix fs_tcp.c build when IPV6 is not enabled + (jsc#SLE-15172). +- net/mlx5e: Fix IPsec packet drop by mlx5e_tc_update_skb + (jsc#SLE-15172). +- commit 54582be + +- zlib: move EXPORT_SYMBOL() and MODULE_LICENSE() out of + dfltcc_syms.c (jsc#SLE-13766). +- commit d62a9cc + +- zlib: export S390 symbols for zlib modules (jsc#SLE-13766). +- KVM: s390: remove diag318 reset code (jsc#SLE-13746). +- s390/pci: fix hot-plug of PCI function missing bus (bsc#1181076 + LTC#190860). +- commit 54be82c + +- lib/test_hmm.c: fix an error code in dmirror_allocate_chunk() + (jsc#SLE-16387). +- commit df77afb + +- Refresh + patches.suse/0041-mm-memremap_pages-support-multiple-ranges-per-invoca.patch. +- add missing hunk for lib/test_hmm.c +- commit f341232 + +- iommu/amd: Set iommu->int_enabled consistently when interrupts + are set up (git-fixes). +- commit 0bf82c2 + +- blacklist.conf: 78762b0e79bc x86/asm/32: Add ENDs to some functions and relabel with SYM_CODE_* +- commit 1f20d8c + +- series.conf: cleanup +- move kabi workaround into patches.kabi: + patches.suse/ALSA-pcm-fix-hw_rule-deps-kABI.patch +- commit 3eee3e1 + +- series.conf: refresh +- update upstream references and resort: + patches.suse/scsi-scsi_transport_srp-Don-t-block-target-in-failfa.patch + patches.suse/selftests-powerpc-Only-test-lwm-stmw-on-big-endian.patch +- commit 5218f70 + +- series.conf: cleanup +- move an unsortable patch out of sorted section + patches.suse/powerpc-Fix-build-error-in-paravirt.h.patch +- commit 0f64295 + +- iio: ad5504: Fix setting power-down state (git-fixes). +- serial: mvebu-uart: fix tx lost characters at power off + (git-fixes). +- usb: udc: core: Use lock when write to soft_connect (git-fixes). +- usb: gadget: aspeed: fix stop dma register setting (git-fixes). +- commit 4d850d2 + +- bpf: Fix helper bpf_map_peek_elem_proto pointing to wrong + callback (bsc#1155518). +- bpf: Don't leak memory in bpf getsockopt when optlen == 0 + (bsc#1155518). +- commit 609f544 + +- drm/panel: otm8009a: allow using non-continuous dsi clock + (git-fixes). +- usb: ohci: Make distrust_firmware param default to false + (git-fixes). +- commit 7c39cad + +- i2c: octeon: check correct size of maximum RECV_LEN packet + (git-fixes). +- commit 54a675e + +- ALSA: pcm: fix hw_rule deps kABI (bsc#1181014). +- commit 3c80769 + +- ALSA: pcm: One more dependency for hw constraints (bsc#1181014). +- commit d71290f + +- mmc: core: don't initialize block size from ext_csd if not + present (git-fixes). +- mmc: sdhci-xenon: fix 1.8v regulator stabilization (git-fixes). +- platform/x86: intel-vbtn: Drop HP Stream x360 Convertible PC + 11 from allow-list (git-fixes). +- platform/x86: i2c-multi-instantiate: Don't create platform + device for INT3515 ACPI nodes (git-fixes). +- commit 9c2a03f + +- timers: Use only bucket expiry for base->next_expiry value + (bsc#1181318). +- timers: Preserve higher bits of expiration on index calculation + (bsc#1181318). +- commit f60f618 + +- s390/cio: fix use-after-free in ccw_device_destroy_console + (git-fixes). +- commit d3e26e8 + +- KVM: s390: pv: Mark mm as protected after the set secure + parameters and improve cleanup (jsc#SLE-7512 bsc#1165545). +- commit 719d24b + +- net/af_iucv: set correct sk_protocol for child sockets + (git-fixes). +- net/af_iucv: fix null pointer dereference on shutdown + (bsc#1179567 LTC#190111). +- commit ddc328b + +- s390/dasd: fix hanging device offline processing (bsc#1181169 + LTC#190914). +- commit 9b7644e + +- net/smc: use memcpy instead of snprintf to avoid out of bounds + read (jsc#SLE-15862 bsc#1180744 LTC#186340). +- smc: fix out of bound access in smc_nl_get_sys_info() + (jsc#SLE-15862 bsc#1180744 LTC#186340). +- net/smc: fix access to parent of an ib device (jsc#SLE-15862 + bsc#1180744 LTC#186340). +- commit f7642f8 + +- net/smc: Add support for obtaining SMCR device list + (jsc#SLE-15862 bsc#1180744 LTC#186340). +- net/smc: Add support for obtaining SMCD device list + (jsc#SLE-15862 bsc#1180744 LTC#186340). +- net/smc: Add SMC-D Linkgroup diagnostic support (jsc#SLE-15862 + bsc#1180744 LTC#186340). +- net/smc: Introduce SMCR get link command (jsc#SLE-15862 + bsc#1180744 LTC#186340). +- net/smc: Introduce SMCR get linkgroup command (jsc#SLE-15862 + bsc#1180744 LTC#186340). +- net/smc: Add support for obtaining system information + (jsc#SLE-15862 bsc#1180744 LTC#186340). +- net/smc: Introduce generic netlink interface for diagnostic + purposes (jsc#SLE-15862 bsc#1180744 LTC#186340). +- net/smc: Refactor smc ism v2 capability handling (jsc#SLE-15862 + bsc#1180744 LTC#186340). +- net/smc: Add diagnostic information to link structure + (jsc#SLE-15862 bsc#1180744 LTC#186340). +- net/smc: Add diagnostic information to smc ib-device + (jsc#SLE-15862 bsc#1180744 LTC#186340). +- net/smc: Add link counters for IB device ports (jsc#SLE-15862 + bsc#1180744 LTC#186340). +- net/smc: Add connection counters for links (jsc#SLE-15862 + bsc#1180744 LTC#186340). +- net/smc: Use active link of the connection (jsc#SLE-15862 + bsc#1180744 LTC#186340). +- net/smc: use helper smc_conn_abort() in listen processing + (jsc#SLE-15862 bsc#1180744 LTC#186340). +- commit 064ec88 + +- drm/vc4: Unify PCM card's driver_name (git-fixes). +- commit 2a6cd0a + +- dpaa2-eth: fix the size of the mapped SGT buffer + (jsc#SLE-14018). +- soc: fsl: handle RCPM errata A-008646 on SoC LS1021A + (jsc#SLE-14018). +- soc: fsl: qbman: qman: Remove unused variable 'dequeue_wq' + (jsc#SLE-14018). +- soc: fsl: qe: qe_common: Fix misnamed function attribute 'addr' + (jsc#SLE-14018). +- soc: fsl: dpio: qbman-portal: Fix a bunch of kernel-doc + misdemeanours (jsc#SLE-14018). +- bus: fsl-mc: simplify DPRC version check (jsc#SLE-14018). +- bus: fsl-mc: added missing fields to dprc_rsp_get_obj_region + structure (jsc#SLE-14018). +- bus: fsl-mc: make sure MC firmware is up and running + (jsc#SLE-14018). +- bus: fsl-mc: add back accidentally dropped error check + (jsc#SLE-14018). +- crypto: caam: Replace in_irq() usage (jsc#SLE-14018). +- soc/fsl/qbman: Add an argument to signal if NAPI processing + is required (jsc#SLE-14018). +- crypto: caam/qi - simplify error path for context allocation + (jsc#SLE-14018). +- dpaa2-eth: Fix compile error due to missing devlink support + (jsc#SLE-14018). +- dpaa2-eth: select XGMAC_MDIO for MDIO bus support + (jsc#SLE-14018). +- soc: fsl: qe: Remove unnessesary check in ucc_set_tdm_rxtx_clk + (jsc#SLE-14018). +- soc: fsl: qman: convert to use be32_add_cpu() (jsc#SLE-14018). +- soc: fsl: dpio: remove set but not used 'addr_cena' + (jsc#SLE-14018). +- dpaa2-eth: add support for devlink parser error drop traps + (jsc#SLE-14018). +- dpaa2-eth: add basic devlink support (jsc#SLE-14018). +- devlink: add .trap_group_action_set() callback (jsc#SLE-14018). +- devlink: add parser error drop packet traps (jsc#SLE-14018). +- dpaa2-eth: install a single steering rule when SHARED_FS is + enabled (jsc#SLE-14018). +- dpaa2-eth: no need to check link state right after ndo_open + (jsc#SLE-14018). +- dpaa2-eth: drop double zeroing (jsc#SLE-14018). +- ptp_qoriq: support FIPER3 (jsc#SLE-14018). +- dpaa2-eth: utilize skb->cb for hardware timestamping + (jsc#SLE-14018). +- dpaa2-eth: invoke dpaa2_eth_enable_tx_tstamp() once in code + (jsc#SLE-14018). +- dpaa2-eth: define a global ptp_qoriq structure pointer + (jsc#SLE-14018). +- dpaa2-eth: add APIs of 1588 single step timestamping + (jsc#SLE-14018). +- dpaa2-eth: Convert to DEFINE_SHOW_ATTRIBUTE (jsc#SLE-14018). +- dpaa2-eth: add a dpaa2_eth_ prefix to all functions in + dpaa2-eth-dcb.c (jsc#SLE-14018). +- dpaa2-eth: add a dpaa2_eth_ prefix to all functions in + dpaa2-eth.c (jsc#SLE-14018). +- dpaa2-eth: add a dpaa2_eth_ prefix to all functions in + dpaa2-ethtool.c (jsc#SLE-14018). +- bus/fsl-mc: Add a new version for dprc_get_obj_region command + (jsc#SLE-14018). +- bus/fsl-mc: Extend ICID size from 16bit to 32bit + (jsc#SLE-14018). +- bus/fsl-mc: Export IRQ pool handling functions to be used by + VFIO (jsc#SLE-14018). +- bus/fsl-mc: Add a container setup function (jsc#SLE-14018). +- bus/fsl-mc: Export a cleanup function for DPRC (jsc#SLE-14018). +- bus/fsl-mc: Export dprc_scan/dprc_remove functions to be used + by multiple entities (jsc#SLE-14018). +- bus/fsl-mc: Add dprc-reset-container support (jsc#SLE-14018). +- bus/fsl-mc: Cache the DPRC API version (jsc#SLE-14018). +- bus/fsl-mc: Set the QMAN/BMAN region flags (jsc#SLE-14018). +- bus/fsl-mc: add support for 'driver_override' in the mc-bus + (jsc#SLE-14018). +- bus/fsl-mc: Add a new parameter to dprc_scan_objects function + (jsc#SLE-14018). +- bus/fsl-mc: Do no longer export the total number of irqs + outside dprc_scan_objects (jsc#SLE-14018). +- bus: fsl-mc: MC control registers are not always available + (jsc#SLE-14018). +- bus: fsl-mc: don't assume an iommu is always present + (jsc#SLE-14018). +- gpio: mpc8xxx: simplify ls1028a/ls1088a support (jsc#SLE-14018). +- ptp_qoriq: output PPS signal on FIPER2 in default + (jsc#SLE-14018). +- commit 30de820 + +- hwmon-amd_energy-09-fix-allocation-of-hwmon_channel_info.patch is now + part of jsc#SLE-14262. +- commit c0fcf0d + +- hwmon: (amd_energy) Add AMD family 19h model 01h x86 match + (jsc#SLE-14262). +- commit 0d38ed6 + +- ALSA: hda: Balance runtime/system PM if direct-complete is + disabled (git-fixes). +- ASoC: SOF: Intel: fix page fault at probe if i915 init fails + (git-fixes). +- ASoC: SOF: Intel: hda: Avoid checking jack on system suspend + (git-fixes). +- ASoC: SOF: Intel: hda: Modify existing helper to disable WAKEEN + (git-fixes). +- ASoC: SOF: Intel: hda: Resume codec to do jack detection + (git-fixes). +- ALSA: hda: Add AlderLake-P PCI ID and HDMI codec vid + (git-fixes). +- commit 4063e56 + +- ALSA: hda: Add Cometlake-R PCI ID (git-fixes). +- ALSA: seq: oss: Fix missing error check in + snd_seq_oss_synth_make_info() (git-fixes). +- ALSA: hda/via: Add minimum mute flag (git-fixes). +- ALSA: hda/realtek - Limit int mic boost on Acer Aspire E5-575T + (git-fixes). +- commit 70d9202 + +- Move upstreamed sound patches into sorted section +- commit f5195da + +- i2c: mlxbf: Fix the return check of devm_ioremap and ioremap + (jsc#SLE-15271 jsc#SLE-16108 jsc#SLE-16098 jsc#SLE-13565). +- commit ebaf1be + +- i2c: mlxbf: Update author and maintainer email info + (jsc#SLE-15271 jsc#SLE-16108 jsc#SLE-16098 jsc#SLE-13565). +- commit 248e78f + +- i2c: mlxbf: Update reference clock frequency (jsc#SLE-15271 + jsc#SLE-16108 jsc#SLE-16098 jsc#SLE-13565). +- commit 077bf6e + +- i2c: mlxbf: Remove unecessary wrapper functions (jsc#SLE-15271 + jsc#SLE-16108 jsc#SLE-16098 jsc#SLE-13565). +- commit a636d51 + +- i2c: mlxbf: Fix resrticted cast warning of sparse (jsc#SLE-15271 + jsc#SLE-16108 jsc#SLE-16098 jsc#SLE-13565). +- commit 4f74542 + +- i2c: mlxbf: Add CONFIG_ACPI to guard ACPI function call + (jsc#SLE-15271 jsc#SLE-16108 jsc#SLE-16098 jsc#SLE-13565). +- commit 8341791 + +- i2c: mlxbf: I2C SMBus driver for Mellanox BlueField SoC + (bsc#1119838 jsc#SLE-15271 jsc#SLE-16108 jsc#SLE-16098 jsc#SLE-13565). +- Update config files. +- supported.conf: add i2c-mlxbf +- commit 25f4cd8 + +- blacklist.conf: Add entries for platform/x86/intel-vbtn that are reverted +- commit 5482ef1 + +- platform/x86: intel-vbtn: Fix SW_TABLET_MODE always reporting + 1 on some HP x360 models (git-fixes). +- commit d6ac163 + +- power: vexpress: add suppress_bind_attrs to true (git-fixes). +- commit bb22b7b + +- platform/mellanox: mlxbf-pmc: Add Mellanox BlueField PMC + driver (bsc#1119846 jsc#SLE-15271 jsc#SLE-16108 jsc#SLE-16098 + jsc#SLE-13565). +- Update config files. Enabel MLXBF_PCM as module +- supported.conf: add mlxbf-pmc +- commit af433f3 + +- drm/i915/gt: Restore clear-residual mitigations for Ivybridge, + Baytrail (git-fixes). +- drm/i915/gt: Limit VFE threads based on GT (git-fixes). +- drm/i915/icl: Fix initing the DSI DSC power refcount during + HW readout (git-fixes). +- drm/i915/backlight: fix CPU mode backlight takeover on LPT + (git-fixes). +- drm/i915/dsi: Use unconditional msleep for the panel_on_delay + when there is no reset-deassert MIPI-sequence (git-fixes). +- drm/msm: Call msm_init_vram before binding the gpu (git-fixes). +- drm/amdgpu: fix potential memory leak during navi12 + deinitialization (git-fixes). +- drm/amdgpu: fix a GPU hang issue when remove device (git-fixes). +- drm/amd/display: fix sysfs amdgpu_current_backlight_pwm NULL + pointer issue (git-fixes). +- drm/i915/perf: also include Gen11 in OATAILPTR workaround + (git-fixes). +- drm/amdkfd: Put ACPI table after using it (git-fixes). +- drm/bridge: sii902x: Enable I/O and core VCC supplies if present + (git-fixes). +- drm/bridge: sii902x: Refactor init code into separate function + (git-fixes). +- commit 1ac5cc4 + +- blacklist.conf: Add amdgpu patches that are reverted +- commit ac3cc99 + +- spi: imx: Fix freeing of DMA channels if spi_bitbang_start() + fails (git-fixes). +- Refresh + patches.suse/spi-imx-fix-runtime-pm-support-for-config_pm.patch. +- commit afbdd20 + +- blacklist.conf: Add rtl8192e patches that are reverted later +- commit 86d1c5b + +- r8169: fix potential skb double free in an error path + (git-fixes). +- spi: spi-cadence-quadspi: Fix mapping of buffers for DMA reads + (git-fixes). +- commit 0cf3ab4 + +- btrfs: send: fix wrong file path when there is an inode with + a pending rmdir (bsc#1181237). +- commit be4e71d + +- tty/sysrq: constify the the sysrq_key_op(s) (git-fixes). +- commit 866ce2a + +- media: dvb-usb: Fix use-after-free access (bsc#1181104). +- media: dvb-usb: Fix memory leak at error in + dvb_usb_device_init() (bsc#1181104). +- commit 3a92626 + +- can: vxcan: vxcan_xmit: fix use after free bug (git-fixes). +- mac80211: check if atf has been disabled in + __ieee80211_schedule_txq (git-fixes). +- mac80211: do not drop tx nulldata packets on encrypted links + (git-fixes). +- commit dfeeb94 + +- Increase PCI_NR_FUNCTIONS to 512 on s390x + (jsc#SLE-17267, bsc#1180114, LTC#190383). +- Refresh config/s390x/zfcpdump. +- commit 56606d8 + +- lib/zlib: fix inflating zlib streams on s390 (bsc#1181070 + LTC#190858). +- commit 5b17a7f + +- vfio-pci: Use io_remap_pfn_range() for PCI IO memory + (bsc#1181220). +- iommu/vt-d: Fix a bug for PDP check in prq_event_thread + (bsc#1181217). +- vfio/pci: Implement ioeventfd thread handler for contended + memory lock (bsc#1181219). +- KVM: nVMX: Reload vmcs01 if getting vmcs12's pages fails + (bsc#1181218). +- commit 517d1e9 + +- arm64: Remove arm64_dma32_phys_limit and its uses + (jsc#SLE-17068). +- commit 8ce9631 + +- bpf: Fix signed_{sub,add32}_overflows type handling + (bsc#1177028). +- bpf: Support PTR_TO_MEM{,_OR_NULL} register spilling + (bsc#1177028). +- bpftool: Fix compilation failure for net.o with older glibc + (bsc#1177028). +- bpf: Save correct stopping point in file seq iteration + (bsc#1177028). +- selftests/bpf: Clarify build error if no vmlinux (bsc#1177028). +- bpf: Simplify task_file_seq_get_next() (bsc#1177028). +- bpf: Avoid iterating duplicated files for task_file iterator + (bsc#1177028). +- commit 7d12720 + +- iommu/vt-d: Fix misuse of ALIGN in qi_flush_piotlb() + (bsc#1181210). +- iommu/amd: Stop irq_remapping_select() matching when remapping + is disabled (bsc#1181206). +- iommu/vt-d: include conditionally on CONFIG_INTEL_IOMMU_SVM + (bsc#1181211). +- iommu/vt-d: Don't read VCCAP register unless it exists + (bsc#1181208). +- x86/tboot: Don't disable swiotlb when iommu is forced on + (bsc#1181215). +- iommu: Check return of __iommu_attach_device() (bsc#1181207). +- iommu/vt-d: Fix kernel NULL pointer dereference in find_domain() + (bsc#1181209). +- vfio/type1: fix dirty bitmap calculation in vfio_dma_rw + (bsc#1181214). +- vfio: fix a missed vfio group put in vfio_pin_pages + (bsc#1181213). +- vfio: add a singleton check for vfio_group_pin_pages + (bsc#1181212). +- commit 8c44ec4 + +- drm/sun4i: dw-hdmi: fix error return code in sun8i_dw_hdmi_bind() (bsc#1152472) +- commit d0d0905 + +- drm: bridge: dw-hdmi: Avoid resetting force in the detect function (bsc#1152472) +- commit 9ad528c + +- drm/i915: Correctly set SFC capability for video engines (bsc#1152489) + Backporting notes: + * context changes +- commit d15d9b1 + +- SUNRPC: xprt_load_transport() needs to support the netid "rdma6" + (git-fixes). +- commit d5fbee3 + +- ALSA: usb-audio: Fix hw constraints dependencies (bsc#1181014). +- commit 58d7b94 + +- dmabuf: fix use-after-free of dmabuf's file->f_inode + (git-fixes). +- i2c: imx: Don't generate STOP condition if arbitration has + been lost (git-fixes). +- i2c: imx: Check for I2SR_IAL after every byte (git-fixes). +- iwlwifi: pcie: set LTR to avoid completion timeout (git-fixes). +- ACPI: EC: PM: Drop ec_no_wakeup check from + acpi_ec_dispatch_gpe() (git-fixes). +- i2c: imx: Fix reset of I2SR_IAL flag (git-fixes). +- gpio: amd-fch: correct logic of GPIO_LINE_DIRECTION (git-fixes). +- commit 555f1bf + +- blacklist.conf: Add amdgpu commits that are reverted +- commit 1fba96f + +- ASoC: AMD Renoir - add DMI entry for Lenovo ThinkPad X395 + (git-fixes). +- ASoC: amd: Replacing MSI with Legacy IRQ model (git-fixes). +- ASoC: AMD Renoir - add DMI entry for Lenovo ThinkPad E14 Gen 2 + (git-fixes). +- ASoC: meson: axg-tdmin: fix axg skew offset (git-fixes). +- ASoC: max98373: don't access volatile registers in bias level + off (git-fixes). +- ASoC: rt711: mutex between calibration and power state changes + (git-fixes). +- ASoC: Intel: haswell: Add missing pm_ops (git-fixes). +- ASoC: rsnd: don't call clk_disable_unprepare() if can't use + (git-fixes). +- ASoC: SOF: Fix spelling mistake in Kconfig "ond" -> "and" + (git-fixes). +- ASoC: codecs: fix spelling mistake in Kconfig "comunicate" -> + "communicate" (git-fixes). +- commit 13c6b71 + +- spi: cadence: cache reference clock rate during probe + (git-fixes). +- r8152: Add Lenovo Powered USB-C Travel Hub (git-fixes). +- usb: typec: Fix copy paste error for NVIDIA alt-mode description + (git-fixes). +- hwmon: (pwm-fan) Ensure that calculation doesn't discard big + period values (git-fixes). +- ACPI: scan: add stub acpi_create_platform_device() for + !CONFIG_ACPI (git-fixes). +- misdn: dsp: select CONFIG_BITREVERSE (git-fixes). +- commit 01db302 + +- Update configs: Enable i2c_mux_pinctrl (jsc#SLE-15318) +- supported.conf: Support i2c-mux-pinctrl +- commit 1488fe7 + +- selftests/ftrace: Select an existing function in + kprobe_eventname test (bsc#1179396 ltc#185738). +- commit 3e9ea6f + +- selftests/powerpc: spectre_v2 test must be built 64-bit + (bsc#1181158 ltc#190851). +- commit 52f3d6b + +- Update + patches.suse/0001-xen-events-add-a-proper-barrier-to-2-level-uevent-un.patch + (CVE-2020-27673 XSA-332 bsc#1177411). +- Update + patches.suse/0002-xen-events-fix-race-in-evtchn_fifo_unmask.patch + (CVE-2020-27673 XSA-332 bsc#1177411). +- Update + patches.suse/0003-xen-events-add-a-new-late-EOI-evtchn-framework.patch + (CVE-2020-27673 XSA-332 bsc#1177411). +- Update + patches.suse/0004-xen-blkback-use-lateeoi-irq-binding.patch + (CVE-2020-27673 XSA-332 bsc#1177411). +- Update + patches.suse/0005-xen-netback-use-lateeoi-irq-binding.patch + (CVE-2020-27673 XSA-332 bsc#1177411). +- Update + patches.suse/0006-xen-scsiback-use-lateeoi-irq-binding.patch + (CVE-2020-27673 XSA-332 bsc#1177411). +- Update + patches.suse/0007-xen-pvcallsback-use-lateeoi-irq-binding.patch + (CVE-2020-27673 XSA-332 bsc#1177411). +- Update + patches.suse/0008-xen-pciback-use-lateeoi-irq-binding.patch + (CVE-2020-27673 XSA-332 bsc#1177411). +- Update + patches.suse/0009-xen-events-switch-user-event-channels-to-lateeoi-mod.patch + (CVE-2020-27673 XSA-332 bsc#1177411). +- Update + patches.suse/0010-xen-events-use-a-common-cpu-hotplug-hook-for-event-c.patch + (CVE-2020-27673 XSA-332 bsc#1177411). +- Update + patches.suse/0011-xen-events-defer-eoi-in-case-of-excessive-number-of-.patch + (CVE-2020-27673 XSA-332 bsc#1177411). +- Update + patches.suse/0012-xen-events-block-rogue-events-for-some-time.patch + (CVE-2020-27673 XSA-332 bsc#1177411). +- Update + patches.suse/xen-events-avoid-removing-an-event-channel-while-han.patch + (CVE-2020-27675 XSA-331 bsc#1177410). +- Added CVE numbers for above patches. +- commit 3b60580 + +- selftests/powerpc: Move set_dscr() into rfi_flush.c (bsc#1181158 + ltc#190851). +- selftests/powerpc: Move Hash MMU check to utilities (bsc#1181158 + ltc#190851). +- selftests/powerpc: Add a test of bad (out-of-range) accesses + (bsc#1181158 ltc#190851). +- Refresh patches.suse/selftests-powerpc-Add-tlbie_test-in-.gitignore.patch. +- selftests/powerpc: Add a test of spectre_v2 mitigations + (bsc#1181158 ltc#190851). +- Refresh patches.suse/selftests-powerpc-entry-flush-test.patch. +- selftests/powerpc: Ignore generated files (bsc#1181158 + ltc#190851). +- commit f53f10b + +- selftests/powerpc: Only test lwm/stmw on big endian (bsc#1180412 + ltc#190579). +- commit 21bd682 + +- powerpc: Fix build error in paravirt.h (bsc#1181148 ltc#190702). +- commit 251d2f4 + +- Exclude Symbols.list again. + Removing the exclude builds vanilla/linux-next builds. + Fixes: 55877625c800 ("kernel-binary.spec.in: Package the obj_install_dir as explicit filelist.") +- commit a1728f2 + +- powerpc/paravirt: Use is_kvm_guest() in vcpu_is_preempted() + (bsc#1181148 ltc#190702). +- powerpc: Reintroduce is_kvm_guest() as a fast-path check + (bsc#1181148 ltc#190702). +- powerpc: Rename is_kvm_guest() to check_kvm_guest() (bsc#1181148 + ltc#190702). +- powerpc: Refactor is_kvm_guest() declaration to new header + (bsc#1181148 ltc#190702). +- commit 17fe8f8 + +- Refresh + patches.suse/scsi-qedi-correct-max-length-of-chap-secret. +- commit ac83a80 + +- arm64: pgtable: Ensure dirty bit is preserved across + pte_wrprotect() (bsc#1180130). +- arm64: pgtable: Fix pte_accessible() (bsc#1180130). +- commit 585bbd5 + +- Revive usb-audio Keep Interface mixer (bsc#1181014). +- commit 80020db + +- mtd: spi-nor: atmel: fix unlock_all() for AT25FS010/040 + (git-fixes). +- mtd: spi-nor: atmel: remove global protection flag (git-fixes). +- commit c76850f + +- netfilter: ctnetlink: add a range check for l3/l4 protonum + (CVE-2020-25211 bsc#1176395). +- commit ebf5e43 + +- fix patches metadata +- fix Patch-mainline: + patches.suse/NFS-nfs_delegation_find_inode_server-must-first-refe.patch + patches.suse/NFS-nfs_igrab_and_active-must-first-reference-the-su.patch + patches.suse/NFS-pNFS-Fix-a-leak-of-the-layout-plh_outstanding-co.patch + patches.suse/NFS-pNFS-Fix-a-typo-in-ff_layout_resend_pnfs_read.patch + patches.suse/NFS-switch-nfsiod-to-be-an-UNBOUND-workqueue.patch + patches.suse/NFS4-Fix-use-after-free-in-trace_event_raw_event_nfs.patch + patches.suse/NFSv4-Fix-the-alignment-of-page-data-in-the-getdevic.patch + patches.suse/NFSv4.2-condition-READDIR-s-mask-for-security-label-.patch + patches.suse/Revert-nfsd4-support-change_attr_type-attribute.patch + patches.suse/SUNRPC-Clean-up-the-handling-of-page-padding-in-rpc_.patch + patches.suse/SUNRPC-rpc_wake_up-should-wake-up-tasks-in-the-corre.patch + patches.suse/lockd-don-t-use-interval-based-rebinding-over-TCP.patch + patches.suse/md-fix-a-warning-caused-by-a-race-between-concurrent.patch + patches.suse/net-sunrpc-Fix-snprintf-return-value-check-in-do_xpr.patch + patches.suse/net-sunrpc-interpret-the-return-value-of-kstrtou32-c.patch + patches.suse/nfs_common-need-lock-during-iterate-through-the-list.patch + patches.suse/nfsd-Fix-message-level-for-normal-termination.patch + patches.suse/sunrpc-fix-xs_read_xdr_buf-for-partial-pages-receive.patch +- commit f5dfabc + +- fix patches metadata +- fix Patch-mainline: + patches.suse/kprobes-tracing-kprobes-Fix-to-kill-kprobes-on-initmem-after-boot.patch + patches.suse/mm-vmalloc-Fix-unlock-order-in-s_stop.patch +- commit 8ea9f59 + +- tests: add close_range() tests (jsc#SLE-17337, bsc#1179090). +- arch: wire-up close_range() (jsc#SLE-17337, bsc#1179090). +- open: add close_range() (jsc#SLE-17337, bsc#1179090). +- commit abad1c5 + +- Refresh + patches.suse/0011-x86-hpet-Move-MSI-support-into-hpet.c.patch. +- Update + patches.suse/msft-hv-2119-irqdomain-treewide-Keep-firmware-node-unconditionall.patch + (git-fixes bsc#1180889). + Add missing hunks in the e3beca48a45b's backport. +- commit 060c4e5 + +- Update + patches.suse/tun-correct-header-offsets-in-napi-frags-mode.patch + (git-fixes bsc#1180812 CVE-2021-0342). + Added CVE reference +- commit 0059c1d + +- NFS: nfs_igrab_and_active must first reference the superblock + (for-next). +- NFS: nfs_delegation_find_inode_server must first reference + the superblock (for-next). +- NFS/pNFS: Fix a leak of the layout 'plh_outstanding' counter + (for-next). +- net: sunrpc: interpret the return value of kstrtou32 correctly + (for-next). +- NFS4: Fix use-after-free in trace_event_raw_event_nfs4_set_lock + (for-next). +- NFS/pNFS: Fix a typo in ff_layout_resend_pnfs_read() (for-next). +- sunrpc: fix xs_read_xdr_buf for partial pages receive + (for-next). +- NFS: switch nfsiod to be an UNBOUND workqueue (for-next). +- lockd: don't use interval-based rebinding over TCP (for-next). +- net: sunrpc: Fix 'snprintf' return value check in + 'do_xprt_debugfs' (for-next). +- SUNRPC: Clean up the handling of page padding in + rpc_prepare_reply_pages() (for-next). +- NFSv4: Fix the alignment of page data in the getdeviceinfo reply + (for-next). +- NFSv4.2: condition READDIR's mask for security label based on + LSM state (for-next). +- SUNRPC: rpc_wake_up() should wake up tasks in the correct order + (for-next). +- md: fix a warning caused by a race between concurrent + md_ioctl()s (for-next). +- Revert "nfsd4: support change_attr_type attribute" (for-next). +- nfs_common: need lock during iterate through the list + (for-next). +- nfsd: Fix message level for normal termination (for-next). +- commit 685e8f2 + +- x86/cpu/amd: Call init_amd_zn() om Family 19h processors too + (bsc#1181077). +- commit a71f120 + +- blacklist.conf: No in-tree users of the table +- commit 9c6c6be + +- kprobes: tracing/kprobes: Fix to kill kprobes on initmem after + boot (git fixes (kernel/kprobe)). +- commit 47f3848 + +- blacklist.conf: UP not enabled in kernel config +- commit c97848a + +- mm/vmalloc: Fix unlock order in s_stop() (git fixes + (mm/vmalloc)). +- commit 70dafb3 + +- blacklist.conf: nilfs2 not enabled in kernel config +- commit 409ae2f + +- scsi: ibmvfc: Fix spelling mistake "succeded" -> "succeeded" + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- commit a426064 + +- blk-mq-debugfs: Add decode for BLK_MQ_F_TAG_HCTX_SHARED + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- blk-mq: Facilitate a shared sbitmap per tagset (jsc#SLE-15442 + bsc#1180814 ltc#187461). +- blk-mq: Use pointers for blk_mq_tags bitmap tags (jsc#SLE-15442 + bsc#1180814 ltc#187461). +- blk-mq: Pass flags for tag init/free (jsc#SLE-15442 bsc#1180814 + ltc#187461). +- blk-mq: Free tags in blk_mq_init_tags() upon error + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- commit c2ebad8 + +- s390/qeth: fix L2 header access in qeth_l3_osa_features_check() + (git-fixes). +- s390/qeth: fix locking for discipline setup / removal + (git-fixes). +- s390/qeth: fix deadlock during recovery (git-fixes). +- s390/dasd: fix list corruption of lcu list (git-fixes). +- s390/dasd: fix list corruption of pavgroup group list + (git-fixes). +- s390/dasd: prevent inconsistent LCU device data (git-fixes). +- s390/smp: perform initial CPU reset also for SMT siblings + (git-fixes). +- s390/kexec_file: fix diag308 subcode when loading crash kernel + (git-fixes). +- s390/qeth: consolidate online/offline code (git-fixes). +- s390/qeth: don't raise NETDEV_REBOOT event from L3 offline path + (git-fixes). +- commit 22371f9 + +- Update config files (jsc#SLE-17227) + Enable CMA and DMA_CMA backend. Also enable SPI_BITBANG as requested. +- commit ebe7020 + +- blacklist.conf: 78762b0e79bc x86/asm/32: Add ENDs to some functions and relabel with SYM_CODE_* +- commit 2b5cd2a + +- ALSA: usb-audio: Avoid implicit feedback on Pioneer devices + (bsc#1181014). +- ALSA: usb-audio: Set sample rate for all sharing EPs on UAC1 + (bsc#1181014). +- ALSA: usb-audio: Fix UAC1 rate setup for secondary endpoints + (bsc#1181014). +- ALSA: usb-audio: Always apply the hw constraints for implicit + fb sync (bsc#1181014). +- commit b78b9c6 + +- Do not backport 30ad8db3a patch because HPE needs uv_bios_call() + (bsc#1180598) + Do not backport 30ad8db3a2c2e0121202342c6c2a48fc28937056 x86/platform/uv: Mark + uv_bios_call() and uv_bios_call_irqsave() because HPE needs + uv_bios_call() in SLE15-SP3 +- blacklist.conf: +- Delete + patches.suse/x86-platform-uv-Mark-uv_bios_call-and-uv_bios_call_i.patch. +- commit cb1e448 + +- scsi: scsi_debug: Support host tagset (jsc#SLE-15442 bsc#1180814 + ltc#187461). +- scsi: core: Show nr_hw_queues in sysfs (jsc#SLE-15442 + bsc#1180814 ltc#187461). +- scsi: Add host and host template flag 'host_tagset' + (jsc#SLE-15442 bsc#1180814 ltc#187461). + Refresh patches.suse/scsi-add-disable_async_probing-module-argument.patch +- scsi: scsi_debug: Support hostwide tags (jsc#SLE-15442 + bsc#1180814 ltc#187461). +- scsi: core: Refactor scsi_mq_setup_tags function (jsc#SLE-15442 + bsc#1180814 ltc#187461). +- scsi: scsi_debug: Re-arrange parameters alphabetically + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- commit 0e8c445 + +- scsi: ibmvfc: Provide modules parameters for MQ settings + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Enable MQ and set reasonable defaults + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Purge SCSI channels after transport loss/reset + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Send Cancel MAD down each hw SCSI channel + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Add cancel mad initialization helper + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Register Sub-CRQ handles with VIOS during channel + setup (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Send commands down HW Sub-CRQ when channelized + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Set and track hw queue in ibmvfc_event struct + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Advertise client support for using hardware + channels (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Implement channel enquiry and setup commands + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Map/request irq and register Sub-CRQ interrupt + handler (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Define Sub-CRQ interrupt handler routine + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Add handlers to drain and complete Sub-CRQ + responses (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Add Sub-CRQ IRQ enable/disable routine + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Add alloc/dealloc routines for SCSI Sub-CRQ + Channels (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Add Subordinate CRQ definitions (jsc#SLE-15442 + bsc#1180814 ltc#187461). +- scsi: ibmvfc: Define hcall wrapper for registering a Sub-CRQ + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Add size parameter to ibmvfc_init_event_pool() + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Init/free event pool during queue allocation/free + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Move event pool init/free routines (jsc#SLE-15442 + bsc#1180814 ltc#187461). +- scsi: ibmvfc: Add vhost fields and defaults for MQ enablement + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Relax locking around ibmvfc_queuecommand() + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Complete commands outside the host/queue lock + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Define per-queue state/list locks (jsc#SLE-15442 + bsc#1180814 ltc#187461). +- scsi: ibmvfc: Make command event pool queue specific + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Define generic queue structure for CRQs + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Advertise client support for targetWWPN using + v2 commands (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Add support for target_wwpn field in v2 MADs + and vfcFrame (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Add FC payload retrieval routines for versioned + vfcFrames (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Add helper for testing capability flags + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Add new fields for version 2 of several MADs + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Deduplicate common ibmvfc_cmd init code + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Use correlation token to tag commands + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Remove trailing semicolon (jsc#SLE-15442 + bsc#1180814 ltc#187461). +- scsi: ibmvfc: Byte swap login_buf.resp values in attribute + show functions (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Protect vhost->task_set increment by the host lock + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- scsi: ibmvfc: Interface updates for future FPIN and MQ support + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- commit fe5294b + +- Revert dwc3 series. + As of now, this recently merged series fails to build without the kabi + workaround which would break SLE15-SP3 merge. Drop the patches until the + build failure is fixed. +- commit a8aaab2 + +- drivers/perf: Fix kernel panic when rmmod PMU modules during + perf sampling (bsc#1180848). +- commit 8584e95 + +- Drop incorrectly re-backported radeon patch again (bsc#1180971) + Also add cherry-picked commit ids in the two relevant patches +- commit bb3221b + +- blacklist.conf: 66ab33bf6d43 ("virtiofs fix leak in setup") + Requires a massive commit, which is quite intrusive in fuse and not worth it. +- commit 2076b1f + +- fuse: fix page dereference after free (jsc#SLE-13782). +- virtio_fs: convert to LE accessors (jsc#SLE-13782). +- commit 5376406 + +- KVM: SVM: Initialize prev_ga_tag before use (bsc#1180809). +- commit 953316b + +- blacklist.conf: 0e9fb6f17ad5 ("fuse: BUG_ON correction in fuse_dev_splice_write()") + Requires intrusive changes in pipe, splice, etc. +- commit eac6f26 + +- fuse: reject options on reconfigure via fsconfig(2) + (jsc#SLE-13782). +- fuse: ignore 'data' argument of mount(..., MS_REMOUNT) + (jsc#SLE-13782). +- fuse: use ->reconfigure() instead of ->remount_fs() + (jsc#SLE-13782). +- virtiofs: do not use fuse_fill_super_common() for device + installation (jsc#SLE-13782). +- fuse: invalidate inode attr in writeback cache mode + (jsc#SLE-13782). +- fuse: Update stale comment in queue_interrupt() (jsc#SLE-13782). +- virtiofs: Add mount option and atime behavior to the doc + (jsc#SLE-13782). +- virtiofs: schedule blocking async replies in separate worker + (jsc#SLE-13782). +- commit ac0b54e + +- fuse: fix stack use after return (jsc#SLE-13782). +- fuse: Support RENAME_WHITEOUT flag (jsc#SLE-13782). +- fuse: don't overflow LLONG_MAX with end offset (jsc#SLE-13782). +- commit 3a3db69 + +- fuse: fix fuse_send_readpages() in the syncronous read case + (jsc#SLE-13782). +- fuse: fix leak of fuse_io_priv (jsc#SLE-13782). +- virtiofs: Use completions while waiting for queue to be drained + (jsc#SLE-13782). +- virtiofs: Do not send forget request "struct list_head" element + (jsc#SLE-13782). +- virtiofs: Use a common function to send forget (jsc#SLE-13782). +- fuse: verify write return (jsc#SLE-13782). +- commit a5ee2f4 + +- blacklist.conf: 035fff1f7aab x86/PCI: Fix intel_mid_pci.c build error when ACPI is not enabled +- commit e52f15d + +- x86/kprobes: Restore BTF if the single-stepping is cancelled + (bsc#1152489). +- commit f89b6b0 + +- hwmon: (amd_energy) fix allocation of hwmon_channel_info config + (git-fixes). +- dmaengine: idxd: off by one in cleanup code (git-fixes). +- commit 22fcbaa + +- fuse: redundant get_fuse_inode() calls in fuse_writepages_fill() + (jsc#SLE-13782). +- fuse: Add changelog entries for protocols 7.1 - 7.8 + (jsc#SLE-13782). +- virtiofs: Remove set but not used variable 'fc' (jsc#SLE-13782). +- virtiofs: Retry request submission from worker context + (jsc#SLE-13782). +- virtiofs: Count pending forgets as in_flight forgets + (jsc#SLE-13782). +- virtiofs: Set FR_SENT flag only after request has been sent + (jsc#SLE-13782). +- virtiofs: No need to check fpq->connected state (jsc#SLE-13782). +- virtiofs: Do not end request in submission context + (jsc#SLE-13782). +- fuse: don't advise readdirplus for negative lookup + (jsc#SLE-13782). +- fuse: don't dereference req->args on finished request + (jsc#SLE-13782). +- virtio-fs: don't show mount options (jsc#SLE-13782). +- commit ce0c590 + +- virtio-fs: Change module name to virtiofs.ko (jsc#SLE-13782). +- fuse: Make fuse_args_to_req static (jsc#SLE-13782). +- fuse: unexport fuse_put_request (jsc#SLE-13782). +- fuse: kmemcg account fs data (jsc#SLE-13782). +- fuse: on 64-bit store time in d_fsdata directly (jsc#SLE-13782). +- commit 5c78fc0 + +- virtio-fs: add virtiofs filesystem (jsc#SLE-13782). +- Refresh + patches.suse/mac80211_hwsim-add-frame-transmission-support-over-v.patch. +- Update config files: + CONFIG_VIRTIO_FS=m +- supported.conf: add virtiofs +- commit f56518a + +- virtio-fs: add Documentation/filesystems/virtiofs.rst + (jsc#SLE-13782). +- fuse: reserve values for mapping protocol (jsc#SLE-13782). +- fuse: reserve byteswapped init opcodes (jsc#SLE-13782). +- fuse: allow skipping control interface and forced unmount + (jsc#SLE-13782). +- fuse: dissociate DESTROY from fuseblk (jsc#SLE-13782). +- fuse: delete dentry if timeout is zero (jsc#SLE-13782). +- fuse: separate fuse device allocation and installation in + fuse_conn (jsc#SLE-13782). +- fuse: add fuse_iqueue_ops callbacks (jsc#SLE-13782). +- fuse: extract fuse_fill_super_common() (jsc#SLE-13782). +- fuse: export fuse_dequeue_forget() function (jsc#SLE-13782). +- commit ca085b1 + +- fuse: export fuse_get_unique() (jsc#SLE-13782). +- fuse: export fuse_send_init_request() (jsc#SLE-13782). +- fuse: export fuse_len_args() (jsc#SLE-13782). +- fuse: export fuse_end_request() (jsc#SLE-13782). +- fuse: stop copying pages to fuse_req (jsc#SLE-13782). +- fuse: stop copying args to fuse_req (jsc#SLE-13782). +- fuse: clean up fuse_req (jsc#SLE-13782). +- commit 0d1d5ea + +- fuse: simplify request allocation (jsc#SLE-13782). +- Refresh + patches.suse/fuse-fix-parameter-for-fs_ioc_-get-set-flags.patch. +- commit 7f8dfa3 + +- fuse: unexport request ops (jsc#SLE-13782). +- fuse: convert retrieve to simple api (jsc#SLE-13782). +- fuse: convert release to simple api (jsc#SLE-13782). +- cuse: convert init to simple api (jsc#SLE-13782). +- fuse: convert init to simple api (jsc#SLE-13782). +- commit 652a991 + +- fuse: convert writepages to simple api (jsc#SLE-13782). +- Refresh + patches.suse/fuse-don-t-ignore-errors-from-fuse_writepages_fill.patch. +- commit d1549f6 + +- fuse: convert readdir to simple api (jsc#SLE-13782). +- fuse: convert readpages to simple api (jsc#SLE-13782). +- commit f65ef7d + +- fuse: convert direct_io to simple api (jsc#SLE-13782). +- Refresh + patches.suse/fix-up-iter-on-short-count-in-fuse_direct_io.patch. +- commit bfbe398 + +- Update + patches.suse/netfilter-add-and-use-nf_hook_slow_list.patch + (bsc#1176447 bsc#1180765 CVE-2021-20177). + Added CVE number. +- commit 8e9abe5 + +- fuse: add simple background helper (jsc#SLE-13782). +- fuse: convert sync write to simple api (jsc#SLE-13782). +- fuse: covert readpage to simple api (jsc#SLE-13782). +- fuse: fuse_short_read(): don't take fuse_req as argument + (jsc#SLE-13782). +- fuse: convert ioctl to simple api (jsc#SLE-13782). +- commit 960efa9 + +- fuse: move page alloc (jsc#SLE-13782). +- Refresh + patches.suse/fuse-fix-parameter-for-fs_ioc_-get-set-flags.patch. +- commit ae6a2de + +- fuse: convert readlink to simple api (jsc#SLE-13782). +- fuse: add pages to fuse_args (jsc#SLE-13782). +- fuse: convert destroy to simple api (jsc#SLE-13782). +- fuse: add nocreds to fuse_args (jsc#SLE-13782). +- fuse: convert fuse_force_forget() to simple api (jsc#SLE-13782). +- fuse: add noreply to fuse_args (jsc#SLE-13782). +- fuse: convert flush to simple api (jsc#SLE-13782). +- fuse: simplify 'nofail' request (jsc#SLE-13782). +- fuse: rearrange and resize fuse_args fields (jsc#SLE-13782). +- commit 99f9f98 + +- fuse: flatten 'struct fuse_args' (jsc#SLE-13782). +- Refresh patches.suse/fuse-verify-attributes.patch. +- commit ace7210 + +- vfs: subtype handling moved to fuse (jsc#SLE-13782). +- fuse: convert to use the new mount API (jsc#SLE-13782). +- cuse: fix broken release (jsc#SLE-13782). +- commit b7625ea + +- fuse: cleanup fuse_wait_on_page_writeback (jsc#SLE-13782). +- commit 6d24ff2 + +- fuse: require /dev/fuse reads to have enough buffer capacity + (take 2) (jsc#SLE-13782). +- Refresh + patches.suse/fuse-fix-deadlock-with-aio-poll-and-fuse_iqueue-wait.patch. +- commit acb8ea8 + +- kABI fixup for dwc3 introduction of DWC_usb32 (git-fixes). +- commit 03d1108 + +- ALSA: doc: Fix reference to mixart.rst (git-fixes). +- commit b4c3583 + +- ASoC: meson: axg-tdm-interface: fix loopback (git-fixes). +- ASoC: dapm: remove widget from dirty list on free (git-fixes). +- ASoC: Intel: fix error code cnl_set_dsp_D0() (git-fixes). +- commit 04a1c91 + +- ALSA: hda/hdmi - enable runtime pm for CI AMD display audio + (git-fixes). +- ALSA: firewire-tascam: Fix integer overflow in midi_port_work() + (git-fixes). +- ALSA: fireface: Fix integer overflow in transmit_midi_msg() + (git-fixes). +- ALSA: hda/tegra: fix tegra-hda on tegra30 soc (git-fixes). +- clk: tegra30: Add hda clock default rates to clock driver + (git-fixes). +- ALSA: usb-audio: Fix implicit feedback sync setup for Pioneer + devices (git-fixes). +- ALSA: usb-audio: Annotate the endpoint index in audioformat + (git-fixes). +- ALSA: usb-audio: Avoid unnecessary interface re-setup + (git-fixes). +- ALSA: usb-audio: Choose audioformat of a counter-part substream + (git-fixes). +- ALSA: usb-audio: Fix the missing endpoints creations for quirks + (git-fixes). +- ALSA: hda/realtek: fix right sounds and mute/micmute LEDs for + HP machines (git-fixes). +- commit db30ae4 + +- x86/apic: Fix x2apic enablement without interrupt remapping + (bsc#1152489). +- commit a8a5227 + +- netfilter: add and use nf_hook_slow_list() (bsc#1180765 + CVE-2021-20177). +- commit 465dae1 + +- Refresh patches.suse/edac-amd64-add-amd-family-17h-model-60h-pci-ids.patch. + Complete the backport now that + 5e4c55276ae8 ("EDAC/amd64: Save max number of controllers to family type") + has been backported too. +- commit f6cb75f + +- usb: dwc3: Add support for DWC_usb32 IP (git-fixes). +- commit f699093 + +- Input: elantech - fix protocol errors for some trackpoints in + SMBus mode (bsc#1180870). +- Input: elan_i2c - add new trackpoint report type 0x5F + (bsc#1180870). +- Input: synaptics - demote non-conformant kernel-doc header + (bsc#1180870). +- Input: elan_i2c_core - move header inclusion inside + (bsc#1180870). +- Input: elantech - demote obvious abuse of kernel-doc header + (bsc#1180870). +- Input: elan_i2c - fix firmware update on newer ICs + (bsc#1180870). +- Input: synaptics - enable InterTouch for ThinkPad T14 Gen 1 + (bsc#1180870). +- commit d5ab100 + +- Input: synaptics - enable InterTouch for ThinkPad P1/X1E gen 2 + (bsc#1180870). +- Input: synaptics-rmi4 - rename f30_data to gpio_data + (bsc#1180870). +- Input: elan_i2c - add ic type 0x15 (bsc#1180870). +- Input: elan_i2c - add support for high resolution reports + (bsc#1180870). +- Input: elan_i2c - do not constantly re-query pattern ID + (bsc#1180870). +- Input: elan_i2c - add firmware update info for ICs 0x11, 0x13, + 0x14 (bsc#1180870). +- Input: elan_i2c - handle firmware updated on newer ICs + (bsc#1180870). +- Input: elan_i2c - add support for different firmware page sizes + (bsc#1180870). +- Input: elan_i2c - fix detecting IAP version on older controllers + (bsc#1180870). +- Input: elan_i2c - handle devices with patterns above 1 + (bsc#1180870). +- commit 8cfe63d + +- Input: elan_i2c - make fetching IC type of older controllers + more robust (bsc#1180870). +- Input: elan_i2c - handle firmware not implementing "get pattern" + command (bsc#1180870). +- Input: elantech - remove redundant assignments to variable error + (bsc#1180870). +- Input: introduce input_mt_report_slot_inactive() (bsc#1180870). +- Input: psmouse - drop all unneeded functions from mouse headers + (bsc#1180870). +- Input: synaptics - fix a typo (bsc#1180870). +- Input: elan_i2c - switch to using devm_add_action_or_reset() + (bsc#1180870). +- Input: elan_i2c - switch to using devm_device_add_groups() + (bsc#1180870). +- commit 6509eab + +- nvmem: Add driver to expose reserved memory as nvmem (jsc#SLE-SLE-16616). +- Update config files: Enable nvmem-rmem as module on arm64 & armv7+lpae, disable it otherwise +- supported.conf: Add nvmem-rmem + This is needed early to get boot-loader configuration working on RPi4; + an essential feature. +- commit 212522b + +- usb: dwc3: Update soft-reset wait polling rate (git-fixes). +- commit 227b9e8 + +- drivers/perf: hisi: Permit modular builds of HiSilicon uncore drivers (bsc#1180848). - Update config files. - supported.conf: +- commit 3ceea3c + +- scsi: scsi_transport_srp: Don't block target in failfast state + (bsc#1172355). +- commit 4d51a17 + +- xen: support having only one event pending per watch + (bsc#1179508 XSA-349 CVE-2020-29568). +- commit b454020 + +- xen: revert Allow watches discard events before queueing + (bsc#1179508 XSA-349 CVE-2020-29568). +- commit 7a45cd4 + +- xen: revert Add 'will_handle' callback support in + xenbus_watch_path() (bsc#1179508 XSA-349 CVE-2020-29568). +- commit b9e03df + +- xen: revert Support will_handle watch callback (bsc#1179508 + XSA-349 CVE-2020-29568). +- commit 3082598 + +- xen: revert Count pending messages for each watch (bsc#1179508 + XSA-349 CVE-2020-29568). +- commit 9d4ca48 + +- video: fbdev: atmel_lcdfb: fix return error code in + atmel_lcdfb_of_init() (git-fixes). +- video: fbdev: vga16fb: fix setting of pixclock because a + pass-by-value error (git-fixes). +- video: fbdev: pvr2fb: initialize variables (git-fixes). +- video: fbdev: fix OOB read in vga_8planes_imageblit() + (git-fixes). +- commit 7cdcf45 + +- xen: revert Disallow pending watch messages (bsc#1179508 + XSA-349 CVE-2020-29568). +- commit a948c9f + +- ntb: idt: fix error check in ntb_hw_idt.c (jsc#SLE-13360). +- commit 93a77b3 + +- usb: gadget: enable super speed plus (git-fixes). +- USB: serial: option: add LongSung M5710 module support + (git-fixes). +- USB: serial: option: add Quectel EM160R-GL (git-fixes). +- usb: uas: Add PNY USB Portable SSD to unusual_uas (git-fixes). +- usb: gadget: configfs: Fix use-after-free issue with udc_name + (git-fixes). +- USB: usblp: fix DMA to stack (git-fixes). +- usb: gadget: Fix spinlock lockup on usb_function_deactivate + (git-fixes). +- usb: gadget: function: printer: Fix a memory leak for interface + descriptor (git-fixes). +- USB: cdc-wdm: Fix use after free in + service_outstanding_interrupt() (git-fixes). +- USB: cdc-acm: blacklist another IR Droid device (git-fixes). +- crypto: asym_tpm: correct zero out potential secrets + (git-fixes). +- net: usb: qmi_wwan: add Quectel EM160R-GL (git-fixes). +- CDC-NCM: remove "connected" log message (git-fixes). +- ethernet: ucc_geth: fix use-after-free in ucc_geth_remove() + (git-fixes). +- lib/genalloc: fix the overflow when size is too big (git-fixes). +- Bluetooth: revert: hci_h5: close serdev device and free hu in + h5_close (git-fixes). +- commit 052b915 + +- drm/panfrost: Move the GPU reset bits outside the timeout + handler (git-fixes). +- drm/panfrost: don't use pfdevfreq.busy_count to know if hw is + idle (git-fixes). +- commit 173f5a4 + +- drm/panfrost: Remove unused variables in panfrost_job_close() + (git-fixes). +- commit 11a7e60 + +- drm/panfrost: Don't corrupt the queue mutex on open/close + (git-fixes). +- commit a5f75e8 + +- drm/i915/dp: Track pm_qos per connector (git-fixes). +- drm/i915: clear the shadow batch (git-fixes). +- drm/i915: Fix mismatch between misplaced vma check and vma + insert (git-fixes). +- drm/amd/display: updated wm table for Renoir (git-fixes). +- drm/meson: dw-hdmi: Enable the iahb clock early enough + (git-fixes). +- commit 11d51e1 + +- drm/meson: dw-hdmi: Disable clocks on driver teardown + (git-fixes). +- drm/edid: fix objtool warning in drm_cvt_modes() (git-fixes). +- drm/amdkfd: Fix leak in dmabuf import (git-fixes). +- drm/amd/display: Prevent bandwidth overflow (git-fixes). +- drm/amdgpu: fix compute queue priority if num_kcq is less than 4 + (git-fixes). +- drm/msm/dsi_phy_10nm: implement PHY disabling (git-fixes). +- drm/msm/dsi_pll_10nm: restore VCO rate during restore_state + (git-fixes). +- drm/msm/dpu: Add newline to printks (git-fixes). +- drm/mediatek: Use correct aliases name for ovl (git-fixes). +- drm/meson: dw-hdmi: Ensure that clocks are enabled before + touching the TOP registers (git-fixes). +- commit d189b05 + +- drm/meson: dw-hdmi: Register a callback to disable the regulator + (git-fixes). +- drm/meson: Unbind all connectors on module removal (git-fixes). +- drm/meson: Free RDMA resources after tearing down DRM + (git-fixes). +- drm/omap: dmm_tiler: fix return error code in omap_dmm_probe() + (git-fixes). +- drm/udl: Fix missing error code in udl_handle_damage() + (git-fixes). +- drm/i915: Avoid mixing integer types during batch copies + (git-fixes). +- drm/amdgpu: fix build_coefficients() argument (git-fixes). +- drm/amdgpu: fix incorrect enum type (git-fixes). +- drm/amd/display: remove useless if/else (git-fixes). +- commit 714ea88 + +- drm/i915/tgl: Fix Combo PHY DPLL fractional divider for 38.4MHz + ref clock (git-fixes). +- drm/panel: simple: Add flags to boe_nv133fhm_n61 (git-fixes). +- drm/edid: Fix uninitialized variable in drm_cvt_modes() + (git-fixes). +- drm/bridge: tpd12s015: Fix irq registering in tpd12s015_probe + (git-fixes). +- drm/tve200: Fix handling of platform_get_irq() error + (git-fixes). +- drm/mcde: Fix handling of platform_get_irq() error (git-fixes). +- drm/dp_aux_dev: check aux_dev before use in + drm_dp_aux_dev_get_by_minor() (git-fixes). +- drm/aspeed: Fix Kconfig warning & subsequent build errors + (git-fixes). +- drm/panfrost: Fix job timeout handling (git-fixes). +- commit 2743044 + +- scsi: qedi: Correct max length of CHAP secret (bsc#1180221). +- commit 5b6934e + +- fix patch metadata +- fix Patch-mainline: + patches.suse/sched-fair-Check-for-idle-core-in-wake_affine.patch +- commit b5830a4 + +- drm/gma500: fix double free of gma_connector (git-fixes). +- drm/i915/gt: Declare gen9 has 64 mocs entries! (git-fixes). +- drm/i915/display/dp: Compute the correct slice count for VDSC + on DP (git-fixes). +- drm/i915/gt: Cancel the preemption timeout on responding to it + (git-fixes). +- drm/i915/gt: Ignore repeated attempts to suspend request flow + across reset (git-fixes). +- drm/i915/gem: Propagate error from cancelled submit due to + context closure (git-fixes). +- drm/amdgpu: fix sdma instance fw version and feature version + init (git-fixes). +- drm/amdgpu/disply: set num_crtc earlier (git-fixes). +- drm/omap: sdi: fix bridge enable/disable (git-fixes). +- drm/panel: sony-acx565akm: Fix race condition in probe + (git-fixes). +- commit cdc5bb1 + +- drm/rockchip: Avoid uninitialized use of endpoint id in LVDS + (git-fixes). +- drm/amdgpu/vcn3.0: remove old DPG workaround (git-fixes). +- drm/amdgpu/vcn3.0: stall DPG when WPTR/RPTR reset (git-fixes). +- drm/amd/display: Init clock value by current vbios CLKs + (git-fixes). +- drm/i915/gt: Limit frequency drop to RPe on parking (git-fixes). +- drm/i915/gt: Retain default context state across shrinking + (git-fixes). +- drm/i915/gt: Program mocs:63 for cache eviction on gen9 + (git-fixes). +- drm/tegra: sor: Disable clocks on error in tegra_sor_init() + (git-fixes). +- drm/tegra: replace idr_init() by idr_init_base() (git-fixes). +- drm/nouveau: fix relocations applying logic and a double-free + (git-fixes). +- commit 83684ef + +- drm/mediatek: dsi: Modify horizontal front/back porch byte + formula (git-fixes). +- drm/exynos: depend on COMMON_CLK to fix compile tests + (git-fixes). +- drm/i915/gt: Free stale request on destroying the virtual engine + (git-fixes). +- drm/i915/perf: workaround register corruption in OATAILPTR + (git-fixes). +- drm/amdgpu: update golden setting for sienna_cichlid + (git-fixes). +- drm/amd/display: Avoid HDCP initialization in devices without + output (git-fixes). +- drm/amdgpu: fix a page fault (git-fixes). +- drm/amdgpu: fix SI UVD firmware validate resume fail + (git-fixes). +- drm/amd/amdgpu: fix null pointer in runtime pm (git-fixes). +- drm/i915/gt: Fixup tgl mocs for PTE tracking (git-fixes). +- commit 4d0b8ee + +- blacklist.conf: 4f8af077a02e docs: Fix reST markup when linking to sections +- commit 28e1ebf + +- drm/i915/gvt: return error when failing to take the module + reference (git-fixes). +- drm/i915/gvt: Set ENHANCED_FRAME_CAP bit (git-fixes). +- drm/i915: Handle max_bpc==16 (git-fixes). +- drm/i915/selftests: Fix wrong return value of + perf_request_latency() (git-fixes). +- drm/i915/selftests: Fix wrong return value of + perf_series_engines() (git-fixes). +- drm/i915: Avoid memory leak with more than 16 workarounds on + a list (git-fixes). +- drm/i915/tgl: Fix Media power gate sequence (git-fixes). +- drm/sun4i: dw-hdmi: fix error return code in + sun8i_dw_hdmi_bind() (git-fixes). +- drm: bridge: dw-hdmi: Avoid resetting force in the detect + function (git-fixes). +- drm/amd/display: Add missing pflip irq for dcn2.0 (git-fixes). +- commit c514745 + +- drm/amd/display: Add missing pflip irq (git-fixes). +- drm/i915: Correctly set SFC capability for video engines + (git-fixes). +- drm/gma500: Fix out-of-bounds access to struct + drm_device.vblank[] (git-fixes). +- drm/panfrost: Fix module unload (git-fixes). +- drm/panfrost: Fix a deadlock between the shrinker and madvise + path (git-fixes). +- drm/amdgpu: resolved ASD loading issue on sienna (git-fixes). +- drm/amdgpu: update golden setting for sienna_cichlid + (git-fixes). +- drm/amdgpu: perform srbm soft reset always on SDMA resume + (git-fixes). +- drm/i915: Fix encoder lookup during PSR atomic check + (git-fixes). +- drm/i915/gt: Use the local HWSP offset during submission + (git-fixes). +- commit f811a3d + +- drm/i915/gvt: Only pin/unpin intel_context along with workload + (git-fixes). +- drm/imx: parallel-display: remove unused function enc_to_imxpd() + (git-fixes). +- drm/i915: Reject 90/270 degree rotated initial fbs (git-fixes). +- drm/i915: Restore ILK-M RPS support (git-fixes). +- drm/i915/region: fix max size calculation (git-fixes). +- drm/nouveau/device: fix changing endianess code to work on + older GPUs (git-fixes). +- drm/nouveau/gem: fix "refcount_t: underflow; use-after-free" + (git-fixes). +- drm/nouveau/kms/nv50-: Program notifier offset before requesting + disp caps (git-fixes). +- drm/nouveau/nouveau: fix the start/end range for migration + (git-fixes). +- drm/shme-helpers: Fix dma_buf_mmap forwarding bug (git-fixes). +- commit f9a03a3 + +- drm/v3d: Fix double free in v3d_submit_cl_ioctl() (git-fixes). +- drm/sun4i: frontend: Fix the scaler phase on A33 (git-fixes). +- drm/sun4i: frontend: Reuse the ch0 phase for RGB formats + (git-fixes). +- drm/sun4i: frontend: Rework a bit the phase data (git-fixes). +- drm/amd/display: Don't invoke kgdb_breakpoint() unconditionally + (git-fixes). +- drm/amd/display: Fix kernel panic by dal_gpio_open() error + (git-fixes). +- drm/amd/display: adding ddc_gpio_vga_reg_list to ddc reg def'ns + (git-fixes). +- drm/amdgpu: increase the reserved VM size to 2MB (git-fixes). +- drm/amd/display: Fixed panic during seamless boot (git-fixes). +- drm/amdgpu: don't map BO in reserved region (git-fixes). +- commit adc6b7e + +- drm/amdgpu: add DID for navi10 blockchain SKU (git-fixes). +- drm/amdgpu: disable DCN and VCN for navi10 blockchain SKU(v3) + (git-fixes). +- drm/i915: Drop runtime-pm assert from vgpu io accessors + (git-fixes). +- drm/i915: Force VT'd workarounds when running as a guest OS + (git-fixes). +- drm/i915: Exclude low pages (128KiB) of stolen from use + (git-fixes). +- drm/i915: Use the active reference on the vma while capturing + (git-fixes). +- drm/i915/gt: Undo forced context restores after trivial + preemptions (git-fixes). +- drm/i915/gt: Delay execlist processing for tgl (git-fixes). +- drm/i915: Mark ininitial fb obj as WT on eLLC machines to + avoid rcu lockup during fbdev init (git-fixes). +- drm/i915/gt: Initialize reserved and unspecified MOCS indices + (git-fixes). +- commit fdd5a7c + +- drm/i915/dp: Tweak initial dpcd backlight.enabled value + (git-fixes). +- drm/amdgpu: correct the cu and rb info for sienna cichlid + (git-fixes). +- drm/amdkfd: Use same SQ prefetch setting as amdgpu (git-fixes). +- drm/amd/psp: Fix sysfs: cannot create duplicate filename + (git-fixes). +- drm/amd/display: Avoid MST manager resource leak (git-fixes). +- drm/amdgpu: update golden setting for sienna_cichlid + (git-fixes). +- drm/amdgpu: correct the gpu reset handling for job != NULL case + (git-fixes). +- drm/amdgpu: add rlc iram and dram firmware support (git-fixes). +- drm/amdgpu: add function to program pbb mode for sienna cichlid + (git-fixes). +- drm/ttm: fix eviction valuable range check (git-fixes). +- commit 6b6cb10 + +- drm/i915: Set all unused color plane offsets to ~0xfff again + (git-fixes). +- drm/i915: Fix TGL DKL PHY DP vswing handling (git-fixes). +- drm/amdgpu: vcn and jpeg ring synchronization (git-fixes). +- drm/amdgpu: Fix invalid number of character '{' in + amdgpu_acpi_init (git-fixes). +- drm/amd/display: HDMI remote sink need mode validation for Linux + (git-fixes). +- drm/amd/display: Avoid set zero in the requested clk + (git-fixes). +- drm/amd/display: Increase timeout for DP Disable (git-fixes). +- drm/amd/display: Fix incorrect backlight register offset for + DCN (git-fixes). +- drm/i915/gem: Always test execution status on closing the + context (git-fixes). +- drm/i915/gt: Always send a pulse down the engine after disabling + heartbeat (git-fixes). +- commit 6c3296a + +- drm/i915: Cancel outstanding work after disabling heartbeats + on an engine (git-fixes). +- drm/i915/gem: Serialise debugfs i915_gem_objects with ctx->mutex + (git-fixes). +- drm/i915: Break up error capture compression loops with + cond_resched() (git-fixes). +- drm/i915/gem: Prevent using pgprot_writecombine() if PAT is + not supported (git-fixes). +- drm/i915: Fix state checker hw.active/hw.enable readout + (git-fixes). +- drm/msm: Fix the a650 hw_apriv check (git-fixes). +- drm/msm/a6xx: fix a potential overflow issue (git-fixes). +- drm/msm/adreno: fix probe without iommu (git-fixes). +- drm/panfrost: add Amlogic GPU integration quirks (git-fixes). +- drm/panfrost: add amlogic reset quirk callback (git-fixes). +- commit dde6379 + +- drm/panfrost: add support for vendor quirk (git-fixes). +- drm: fix double free for gbo in drm_gem_vram_init and + drm_gem_vram_create (git-fixes). +- drm/xlnx: Use devm_drm_dev_alloc (git-fixes). +- drm/bridge/synopsys: dsi: add support for non-continuous HS + clock (git-fixes). +- drm/amd/display: Delete duplicated argument to '&&' or '||' + (git-fixes). +- drm/amdgpu: No sysfs, not an error condition (git-fixes). +- drm/amd/display: Check clock table return (git-fixes). +- drm: panfrost: fix common struct sg_table related issues + (git-fixes). +- drm: lima: fix common struct sg_table related issues + (git-fixes). +- commit 0a6baa2 + +- drm: exynos: fix common struct sg_table related issues + (git-fixes). +- drm/vkms: avoid warning in vkms_get_vblank_timestamp + (git-fixes). +- drm/amdgpu: fix max_entries calculation v4 (git-fixes). +- drm/amd/display: fix potential integer overflow when shifting + 32 bit variable bl_pwm (git-fixes). +- drm/scheduler: Scheduler priority fixes (v2) (git-fixes). +- drm/amd/display: Screen corruption on dual displays (DP+USB-C) + (git-fixes). +- drm/amd/display: Disconnect pipe separetely when disable pipe + split (git-fixes). +- drm/amdgpu: restore ras flags when user resets eeprom(v2) + (git-fixes). +- Revert "drm/amdgpu: Fix NULL dereference in dpm sysfs handlers" + (git-fixes). +- drm/amdgpu: Remove redundant NULL check (git-fixes). +- commit cf5d051 + +- drm/bridge_connector: Set default status connected for eDP + connectors (git-fixes). +- drm/brige/megachips: Add checking if ge_b850v3_lvds_init() + is working correctly (git-fixes). +- drm/malidp: Use struct drm_gem_object_funcs.get_sg_table + internally (git-fixes). +- drm/hisilicon: Code refactoring for hibmc_drv_de (git-fixes). +- drm/vkms: add missing platform_device_unregister() in + vkms_init() (git-fixes). +- drm/vgem: add missing platform_device_unregister() in + vgem_init() (git-fixes). +- drm/panfrost: perfcnt: fix ref count leak in + panfrost_perfcnt_enable_locked (git-fixes). +- drm/panfrost: move devfreq_init()/fini() in device (git-fixes). +- drm/panfrost: rename error labels in device_init (git-fixes). +- commit 86204b1 + +- dma-buf/dma-resv: Respect num_fences when initializing the + shared fence list (git-fixes). +- drm/mediatek: set dpi pin mode to gpio low to avoid leakage + current (git-fixes). +- drm/i915: Stub out i915_gpu_coredump_put (git-fixes). +- commit 145aef1 + +- Bluetooth: Fix attempting to set RPA timeout when unsupported + (git-fixes). +- commit d1047e2 + +- usb: dwc3: core: Properly default unspecified speed (git-fixes). +- commit 777b42e + +- x86/sev-es: Fix SEV-ES OUT/IN immediate opcode vc handling + (bsc#1178134). +- commit 0b7cd9d + +- x86/resctrl: Don't move a task to the same resource group + (bsc#1152489). +- commit 8a696c5 + +- x86/resctrl: Use an IPI instead of task_work_add() to update + PQR_ASSOC MSR (bsc#1152489). +- commit 309f3cb + +- x86/mtrr: Correct the range check before performing MTRR type + lookups (bsc#1152489). +- commit 41cceca + +- x86/mm: Fix leak of pmd ptlock (bsc#1152489). +- commit cb571f0 + +- btrfs: fix missing delalloc new bit for new delalloc ranges + (bsc#1180773). +- btrfs: make btrfs_dirty_pages take btrfs_inode (bsc#1180773). +- btrfs: make btrfs_set_extent_delalloc take btrfs_inode + (bsc#1180773). +- commit fba9b10 + +- IB/hfi1: Ensure correct mm is used at all times (bsc#1179878 + CVE-2020-27835). +- IB/hfi1: Remove module parameter for KDETH qpns (bsc#1179878). +- IB/hfi1: Remove kobj from hfi1_devdata (bsc#1179878). +- commit 79bac5c + +- regmap: debugfs: Fix a reversed if statement in + regmap_debugfs_init() (git-fixes). +- commit 6e1e482 + +- USB: serial: iuu_phoenix: fix DMA from stack (git-fixes). +- usb: gadget: configfs: Preserve function ordering after bind + failure (git-fixes). +- usb: gadget: select CONFIG_CRC32 (git-fixes). +- usb: usbip: vhci_hcd: protect shift size (git-fixes). +- usb: gadget: f_uac2: reset wMaxPacketSize (git-fixes). +- usb: dwc3: ulpi: Use VStsDone to detect PHY regs access + completion (git-fixes). +- USB: yurex: fix control-URB timeout handling (git-fixes). +- usb: chipidea: ci_hdrc_imx: add missing put_device() call in + usbmisc_get_init_data() (git-fixes). +- usb: gadget: u_ether: Fix MTU size mismatch with RX packet size + (git-fixes). +- USB: gadget: legacy: fix return error code in acm_ms_bind() + (git-fixes). +- USB: xhci: fix U1/U2 handling for hardware with XHCI_INTEL_HOST + quirk set (git-fixes). +- staging: mt7621-dma: Fix a resource leak in an error handling + path (git-fixes). +- dmaengine: xilinx_dma: fix mixed_enum_type coverity warning + (git-fixes). +- dmaengine: xilinx_dma: fix incompatible param warning in + _child_probe() (git-fixes). +- dmaengine: xilinx_dma: check dma_async_device_register return + value (git-fixes). +- dmaengine: dw-edma: Fix use after free in dw_edma_alloc_chunk() + (git-fixes). +- dmaengine: mediatek: mtk-hsdma: Fix a resource leak in the + error handling path of the probe function (git-fixes). +- i2c: i801: Fix the i2c-mux gpiod_lookup_table not being properly + terminated (git-fixes). +- i2c: sprd: use a specific timeout to avoid system hang up issue + (git-fixes). +- wan: ds26522: select CONFIG_BITREVERSE (git-fixes). +- wil6210: select CONFIG_CRC32 (git-fixes). +- crypto: ecdh - avoid buffer overflow in ecdh_set_secret() + (git-fixes). +- spi: stm32: FIFO threshold level - fix align packet size + (git-fixes). +- regmap: debugfs: Fix a memory leak when calling + regmap_attach_dev (git-fixes). +- dmaengine: at_hdmac: add missing kfree() call in at_dma_xlate() + (git-fixes). +- dmaengine: at_hdmac: add missing put_device() call in + at_dma_xlate() (git-fixes). +- dmaengine: at_hdmac: Substitute kzalloc with kmalloc + (git-fixes). +- commit da0ba2f + +- sched/fair: Check for idle core in wake_affine (git fixes + (sched)). +- commit 2caffed + +- arm64: mm: Fix ARCH_LOW_ADDRESS_LIMIT when !CONFIG_ZONE_DMA + (git-fixes). +- commit 52bc22f + +- blacklist.conf: 2c2b3ad2c4c8 ("spi: spi-fsl-dspi: Use max_native_cs + instead of num_chipselect to set SPI_MCR") + Depends on 7d93aecdb58d4 ("spi: Add generic support for unused native cs + with cs-gpios") which at the moment is not worth back-porting as it'll + break kABI. +- commit bafcdfd + +- xen-blkback: set ring->xenblkd to NULL after kthread_stop() + (bsc#1179509 XSA-350 CVE-2020-29569). +- commit 552ca06 + +- xenbus/xenbus_backend: Disallow pending watch messages + (bsc#1179508 XSA-349 CVE-2020-29568). +- commit b293dfc + +- xen/xenbus: Count pending messages for each watch (bsc#1179508 + XSA-349 CVE-2020-29568). +- commit d8a62d9 + +- xen/xenbus/xen_bus_type: Support will_handle watch callback + (bsc#1179508 XSA-349 CVE-2020-29568). +- commit 8be4352 + +- xen/xenbus: Add 'will_handle' callback support in + xenbus_watch_path() (bsc#1179508 XSA-349 CVE-2020-29568). +- commit 4383a8c + +- xen/xenbus: Allow watches discard events before queueing + (bsc#1179508 XSA-349 CVE-2020-29568). +- commit ec8d064 + +- drm: bail out of nouveau_channel_new if channel init fails + (CVE-2020-25639 bsc#1176846). +- commit 1ef70aa + +- nvme-multipath: fix bogus request queue reference put + (bsc#1175389). +- commit ef51578 + +- selftests/bpf: Move and extend ASSERT_xxx() testing macros + (bsc#1177028). +- libbpf: Add __noinline macro to bpf_helpers.h (bsc#1177028). +- commit 630edda + +- Move "btrfs: qgroup: don't try to wait flushing if we're already holding + a transaction (bsc#1179575)." to sorted section +- commit 464edf7 + +- Refresh patches.suse/nvdimm-Avoid-race-between-probe-and-reading-device-a.patch. + Refresh to v2 URL +- commit 82e37f2 + +- blacklist.conf: 44623b2818f4 crypto: x86/crc32c - fix building with clang ias +- commit 4260c52 + +- x86/mm/numa: Remove uninitialized_var() usage (bsc#1152489). +- commit ec737c3 + +- mm: fix phys_to_target_node() and memory_add_physaddr_to_nid() + exports (jsc#SLE-14344). +- device-dax/kmem: fix resource release (jsc#SLE-14344). +- device-dax: add a range mapping allocation attribute + (jsc#SLE-14344). +- dax/hmem: introduce dax_hmem.region_idle parameter + (jsc#SLE-14344). +- device-dax: add an 'align' attribute (jsc#SLE-14344). +- device-dax: make align a per-device property (jsc#SLE-14344). +- device-dax: introduce 'mapping' devices (jsc#SLE-14344). +- device-dax: add dis-contiguous resource support (jsc#SLE-14344). +- mm/memremap_pages: support multiple ranges per invocation + (jsc#SLE-14344). +- mm/memremap_pages: convert to 'struct range' (jsc#SLE-14368). +- device-dax: add resize support (jsc#SLE-14344). +- drivers/base: make device_find_child_by_name() compatible with + sysfs inputs (jsc#SLE-14344). +- device-dax: introduce 'seed' devices (jsc#SLE-14344). +- device-dax: introduce 'struct dev_dax' typed-driver operations + (jsc#SLE-14344). +- device-dax: add an allocation interface for device-dax instances + (jsc#SLE-14344). +- device-dax/kmem: replace release_resource() with + release_mem_region() (jsc#SLE-14344). +- device-dax/kmem: move resource name tracking to drvdata + (jsc#SLE-14344). +- device-dax/kmem: introduce dax_kmem_range() (jsc#SLE-14344). +- device-dax: make pgmap optional for instance creation + (jsc#SLE-14344). +- device-dax: move instance creation parameters to 'struct + dev_dax_data' (jsc#SLE-14344). +- device-dax: drop the dax_region.pfn_flags attribute + (jsc#SLE-14344). +- ACPI: HMAT: attach a device for each soft-reserved range + (jsc#SLE-14344). +- mm/memory_hotplug: introduce default phys_to_target_node() + implementation (jsc#SLE-14344). +- resource: report parent to walk_iomem_res_desc() callback + (jsc#SLE-14344). +- ACPI: HMAT: refactor hmat_register_target_device to + hmem_register_device (jsc#SLE-14344). +- efi/fake_mem: arrange for a resource entry per efi_fake_mem + instance (jsc#SLE-14344). +- x86/numa: add 'nohmat' option (jsc#SLE-14344). +- x86/numa: cleanup configuration dependent command-line options + (jsc#SLE-14344). +- mm/memory_hotplug: introduce default dummy + memory_add_physaddr_to_nid() (jsc#SLE-14344). +- device-dax: add memory via add_memory_driver_managed() + (jsc#SLE-14344). +- commit 5becd55 + +- mm/memory_hotplug: introduce add_memory_driver_managed() + (jsc#SLE-14344). +- Refresh for the above patch, + patches.suse/0001-mm-don-t-panic-when-links-can-t-be-created-in-sysfs.patch. +- commit 788a9a9 + +- device-dax: don't leak kernel memory to user space after + unloading kmem (jsc#SLE-14344). +- commit b01827a + +- mm/memremap: set caching mode for PCI P2PDMA memory to WC + (jsc#SLE-14344). +- Refresh for the above patch, + patches.suse/1933-memremap-rename-MEMORY_DEVICE_DEVDAX-to-MEMORY_DEVIC.patch. +- commit 4730420 + +- series.conf: refresh +- update upstream reference and resort: + patches.suse/ibmvnic-continue-fatal-error-reset-after-passive-ini.patch +- commit c554179 + +- mm/memory_hotplug: add pgprot_t to mhp_params (jsc#SLE-14344). +- Refresh for the above patch, + patches.suse/powerpc-mm-Limit-resize_hpt_for_hotplug-call-to-hash.patch. +- commit 92a2c86 + +- powerpc/mm: thread pgprot_t through create_section_mapping() + (jsc#SLE-14344). +- Refresh for the above patch, + patches.suse/powerpc-mm-Limit-resize_hpt_for_hotplug-call-to-hash.patch. + patches.suse/powerpc-mm-radix-Create-separate-mappings-for-hot-pl.patch. + patches.suse/powerpc-mm-radix-Remove-split_kernel_mapping.patch. +- commit 22697fb + +- ntb: intel: add Intel NTB LTR vendor support for gen4 NTB + (jsc#SLE-12710). +- commit 22de07c + +- x86/mm: thread pgprot_t through init_memory_mapping() + (jsc#SLE-14344). +- Refresh for the above patch, + patches.suse/x86-platform-uv-Remove-uv-bios-and-efi-code-related-.patch. +- commit 9cc6133 + +- mm/memory_hotplug: rename mhp_restrictions to mhp_params + (jsc#SLE-14368). +- mm/memory_hotplug: drop the flags field from struct + mhp_restrictions (jsc#SLE-14344). +- dax: Move mandatory ->zero_page_range() check in alloc_dax() + (jsc#SLE-14344). +- libnvdimm/e820: Retrieve and populate correct 'target_node' + info (jsc#SLE-14344). +- x86/NUMA: Provide a range-to-target_node lookup facility + (jsc#SLE-14344). +- x86/mm: Introduce CONFIG_NUMA_KEEP_MEMINFO (jsc#SLE-14344). +- Update following config files for the above patch, + config/arm64/default + config/ppc64le/default + config/s390x/default + config/x86_64/default +- commit 3d588c7 + +- powerpc/papr_scm: Switch to numa_map_to_online_node() + (jsc#SLE-14344). +- Refresh for the above patch, + patches.suse/powerpc-papr_scm-Fetch-nvdimm-health-information-fro.patch. + patches.suse/powerpc-papr_scm-Fetch-nvdimm-performance-stats-from.patch. +- commit 9f14d6c + +- mm/numa: Skip NUMA_NO_NODE and online nodes in + numa_map_to_online_node() (jsc#SLE-14344). +- commit f7082df + +- mm/memory_hotplug.c: add a bounds check to __add_pages() + (jsc#SLE-14344). +- dax: Add numa_node to the default device-dax attributes + (jsc#SLE-14344). +- dax: Simplify root read-only definition for the 'resource' + attribute (jsc#SLE-14344). +- dax: Create a dax device_type (jsc#SLE-14344). +- dax: Fix alloc_dax_region() compile warning (jsc#SLE-14344). +- commit 4c51fce + +- Update kabi files. +- update from January 2021 maintenance update submission (commit 4ff469b6e1a0) +- commit a9bc2aa + +- ALSA: usb-audio: Add alias entry for ASUS PRIME TRX40 PRO-S + (git-fixes). +- ACPI: HMAT: Fix handling of changes from ACPI 6.2 to ACPI 6.3 + (git-fixes). +- ACPI: Add out of bounds and numa_off protections to + pxm_to_node() (git-fixes). +- ehci-hcd: Move include to keep CRC stable (git-fixes). +- commit 407490e + +- bus/fsl_mc: Do not rely on caller to provide non NULL mc_io + (git-fixes). +- commit e4eab60 + +- ALSA: hda/realtek - Modify Dell platform name (git-fixes). +- ALSA: hda/realtek - Supported Dell fixed type headset + (git-fixes). +- ALSA: hda/realtek: Remove dummy lineout on Acer TravelMate + P648/P658 (git-fixes). +- commit 5e10442 + +- Move upstreamed sound patch into sorted section +- commit 0c5f21f + +- r8169: work around power-saving bug on some chip versions + (git-fixes). +- ALSA: pcm: Clear the full allocated memory at hw_params + (git-fixes). +- rtc: pl031: fix resource leak in pl031_probe (git-fixes). +- rtc: sun6i: Fix memleak in sun6i_rtc_clk_init (git-fixes). +- i3c master: fix missing destroy_workqueue() on error in + i3c_master_register (git-fixes). +- misc: vmw_vmci: fix kernel info-leak by initializing dbells + in vmci_ctx_get_chkpt_doorbells() (git-fixes). +- xhci: Give USB2 ports time to enter U3 in bus suspend + (git-fixes). +- USB: dummy-hcd: Fix uninitialized array use in init() + (git-fixes). +- Bluetooth: hci_h5: close serdev device and free hu in h5_close + (git-fixes). +- media: gp8psk: initialize stats at power control logic + (git-fixes). +- staging: wlan-ng: fix out of bounds read in + prism2sta_probe_usb() (git-fixes). +- commit 57824b9 + +- ALSA: hda/via: Fix runtime PM for Clevo W35xSS (git-fixes). +- ALSA: usb-audio: Add quirk for RC-505 (git-fixes). +- ALSA: hda/realtek: Enable mute and micmute LED on HP EliteBook + 850 G7 (git-fixes). +- ALSA: hda/realtek: Add two "Intel Reference board" SSID in + the ALC256 (git-fixes). +- ALSA: hda/realtek: Add mute LED quirk for more HP laptops + (git-fixes). +- ALSA: hda/conexant: add a new hda codec CX11970 (git-fixes). +- ALSA: usb-audio: Add quirk for BOSS AD-10 (git-fixes). +- ALSA: usb-audio: Fix UBSAN warnings for MIDI jacks (git-fixes). +- ALSA: hda/realtek - Fix speaker volume control on Lenovo C940 + (git-fixes). +- commit 3b01e24 + +- powerpc/sstep: Fix array out of bound warning (bsc#1180581 + ltc#190174). +- Delete patches.suse/powerpc-sstep-Add-testcases-for-VSX-vector-paired-lo.patch (bsc#1180581 ltc#190174). + Drop test for the broken emulation, too. +- commit 346e1c7 + +- powerpc/test_emulate_step: Add testcases for divde[.] and + divdeu[.] instructions (bsc#1180581 ltc#190174). +- commit 98eaae4 + +- powerpc/sstep: Add support for divde[.] and + divdeu[.] instructions (bsc#1180581 ltc#190174). +- powerpc/ppc-opcode: Add divde and divdeu opcodes (bsc#1180581 + ltc#190174). +- commit 4565dda + +- Delete patches.suse/powerpc-sstep-Support-VSX-vector-paired-storage-acce.patch (bsc#1180581 ltc#190174). + Drop patch causing array overflow. +- commit ee77681 + +- drivers/base/memory.c: cache memory blocks in xarray to + accelerate lookup (bsc#1159955 ltc#182993). +- Delete patches.suse/drivers-base-memory.c-cache-blocks-in-radix-tree-to-.patch. + Refresh to upstream patch. +- commit 7c92ca5 + +- Refresh patches.suse/nvme-fc-avoid-calling-_nvme_fc_abort_outstanding_ios-from-interrupt-context.patch + Fix commit hash +- commit fdfd462 + +- Refresh patches.suse/0001-btrfs-qgroup-don-t-try-to-wait-flushing.patch + Fix commit hash +- commit 5ec0893 + +- Refresh patch metadata. +- Refresh patches.suse/ibmvnic-fix-NULL-pointer-dereference.patch. +- commit 45ce7d1 + +- ima: Fail rule parsing when asymmetric key measurement isn't + supportable (jsc#SLE-15209). +- ima: Pre-parse the list of keyrings in a KEY_CHECK rule + (jsc#SLE-15209). +- ima: Use the common function to detect LSM conditionals in a + rule (jsc#SLE-15209). +- ima: Move comprehensive rule validation checks out of the + token parser (jsc#SLE-15209). +- ima: Use correct type for the args_p member of + ima_rule_entry.lsm elements (jsc#SLE-15209). +- ima: Shallow copy the args_p member of ima_rule_entry.lsm + elements (jsc#SLE-15209). +- ima: Fail rule parsing when the KEY_CHECK hook is combined + with an invalid cond (jsc#SLE-15209). +- ima: Fail rule parsing when the KEXEC_CMDLINE hook is combined + with an invalid cond (jsc#SLE-15209). +- ima: Fail rule parsing when buffer hook functions have an + invalid action (jsc#SLE-15209). + Refresh + patches.suse/ima-Fail-rule-parsing-when-appraise_flag-blacklist-i.patch +- ima: Free the entire rule if it fails to parse (jsc#SLE-15209). +- ima: Free the entire rule when deleting a list of rules + (jsc#SLE-15209). +- mm: add kvfree_sensitive() for freeing sensitive data objects + (jsc#SLE-15209). +- IMA: pre-allocate buffer to hold keyrings string + (jsc#SLE-15209). + Refresh + patches.suse/ima-Directly-assign-the-ima_default_policy-pointer-t.patch +- commit d6d4155 + +- lib/string: remove unnecessary #undefs (git-fixes). +- bitmap: remove unused function declaration (git-fixes). +- swiotlb: using SIZE_MAX needs limits.h included (git-fixes). +- swiotlb: fix "x86: Don't panic if can not alloc buffer for + swiotlb" (git-fixes). +- kdb: Fix pager search for multi-line strings (git-fixes). +- kgdb: Drop malformed kernel doc comment (git-fixes). +- commit 28d99cb + +- EDAC/amd64: Fix PCI component registration (bsc#1152489). +- commit 6c4ae9b + +- KVM: x86: Expose AVX512_FP16 for supported CPUID + (jsc#SLE-13413). +- commit a3f980a + +- KVM: x86: Expose fast short REP MOV for supported cpuid + (bsc#1180334). +- x86/asm: Drop unused RDPID macro (bsc#1180334). +- KVM: x86: emulating RDPID failure shall return #UD rather than + [#]GP (bsc#1180334). +- kvm: x86: Expose RDPID in KVM_GET_SUPPORTED_CPUID (bsc#1180334). +- commit 05fbe0b + +- x86: Enumerate AVX512 FP16 CPUID feature flag (jsc#SLE-13413). +- commit fd2814e + +- powerpc/sstep: Add testcases for VSX vector paired load/store + instructions (jsc#SLE-13847 bsc#1180581 ltc#190174). +- powerpc/sstep: Support VSX vector paired storage access + instructions (jsc#SLE-13847 bsc#1180581 ltc#190174). +- powerpc/watchpoint: Workaround P10 DD1 issue with VSX-32 byte + instructions (jsc#SLE-12936 bsc#1180581 ltc#190174). +- powerpc/sstep: Add testcases for VSX vector paired load/store + instructions (jsc#SLE-13847 bsc#1180581 ltc#190174). +- powerpc/ppc-opcode: Add encoding macros for VSX vector paired + instructions (jsc#SLE-13847 bsc#1180581 ltc#190174). +- powerpc/sstep: Support VSX vector paired storage access + instructions (jsc#SLE-13847 bsc#1180581 ltc#190174). +- powerpc/ppc-opcode: Fold PPC_INST_* macros into PPC_RAW_* + macros (jsc#SLE-13847 bsc#1180581 ltc#190174). +- Refresh patches.suse/powerpc-sstep-Add-tests-for-prefixed-floating-point-.patch. +- Refresh patches.suse/powerpc-sstep-Add-tests-for-prefixed-integer-load-st.patch. +- powerpc/ppc-opcode: Reuse raw instruction macros to stringify + (jsc#SLE-13847 bsc#1180581 ltc#190174). +- powerpc/ppc-opcode: Consolidate powerpc instructions from + bpf_jit.h (jsc#SLE-13847 bsc#1180581 ltc#190174 bsc#1180567 + ltc#190612). +- powerpc/bpf_jit: Reuse instruction macros from ppc-opcode.h + (jsc#SLE-13847 bsc#1180581 ltc#190174). +- powerpc/ppc-opcode: Move ppc instruction encoding from + test_emulate_step (jsc#SLE-13847 bsc#1180581 ltc#190174). +- powerpc/ppc-opcode: Introduce PPC_RAW_* macros for base + instruction encoding (jsc#SLE-13847 bsc#1180581 ltc#190174). +- powerpc/lib: Fix emulate_step() std test (jsc#SLE-13847 + bsc#1180581 ltc#190174). +- commit 6a6d57b + +- target: fix XCOPY NAA identifier lookup (CVE-2020-28374, + bsc#1178372). +- commit 3e5427c + +- Move upstreamed regmap and pinctrl patches into sorted section +- commit 6d2ef28 + +- ALSA: hda/hdmi: Fix incorrect mutex unlock in + silent_stream_disable() (bsc#1180543). +- commit a9190f5 + +- intel_idle: Disable ACPI _CST on Haswell (bsc#1177399, + bsc#1180347, bsc#1180141). +- commit 92491ff + +- mwifiex: Fix possible buffer overflows in + mwifiex_cmd_802_11_ad_hoc_start (CVE-2020-36158 bsc#1180559). +- commit 3e80605 + +- btrfs: do not commit logs and transactions during link and + rename operations (bsc#1180566). +- btrfs: do not take the log_mutex of the subvolume when pinning + the log (bsc#1180566). +- btrfs: delete duplicated words + other fixes in comments + (bsc#1180566). +- commit 916e8ac + +- Replace HTTP links with HTTPS ones: security (jsc#SLE-15209). +- tpm_ftpm_tee: register driver on TEE bus (jsc#SLE-15209). +- tpm: Add support for event log pointer found in TPM2 ACPI table + (jsc#SLE-15209). +- tpm: Unify the mismatching TPM space buffer sizes + (jsc#SLE-15209). +- Removed commit id in blacklist.conf +- libnvdimm/security: Fix key lookup permissions (jsc#SLE-15209). +- tpm_tis_spi: Prefer async probe (jsc#SLE-15209). +- tpm/st33zp24: fix spelling mistake "drescription" -> + "description" (jsc#SLE-15209). +- tpm_tis_spi: Don't send anything during flow control + (jsc#SLE-15209). +- security: fix the key_permission LSM hook function type + (jsc#SLE-15209). +- keys: Make the KEY_NEED_* perms an enum rather than a mask + (jsc#SLE-15209). +- keys: Implement update for the big_key type (jsc#SLE-15209). +- security/keys: rewrite big_key crypto to use library interface + (jsc#SLE-15209). + Update config files. +- KEYS: encrypted: use crypto_shash_tfm_digest() (jsc#SLE-15209). +- crypto: hash - introduce crypto_shash_tfm_digest() + (jsc#SLE-15209). +- tpm: eventlog: Replace zero-length array with flexible-array + member (jsc#SLE-15209). +- tpm/tpm_ftpm_tee: Use UUID API for exporting the UUID + (jsc#SLE-15209). +- sysfs: remove redundant __compat_only_sysfs_link_entry_to_kobj + fn (jsc#SLE-15209). +- KEYS: Avoid false positive ENOMEM error on key read + (jsc#SLE-15209). +- KEYS: Don't write out to userspace while holding key semaphore + (jsc#SLE-15209). +- MAINTAINERS: adjust to trusted keys subsystem creation + (jsc#SLE-15209). +- tpm: tpm_tis_spi_cr50: use new structure for SPI transfer delays + (jsc#SLE-15209). +- tpm_tis_spi: use new 'delay' structure for SPI transfer delays + (jsc#SLE-15209). +- tpm: Revert tpm_tis_spi_mod.ko to tpm_tis_spi.ko + (jsc#SLE-15209). +- IMA: fix measuring asymmetric keys Kconfig (jsc#SLE-15209). +- Refresh + patches.suse/0002-ima-generalize-x86-EFI-arch-glue-for-other-EFI-archi.patch + patches.suse/ima-add-a-new-CONFIG-for-loading-arch-specific-polic.patch +- Update config files. + CONFIG_IMA_MEASURE_ASYMMETRIC_KEYS=y +- IMA: Read keyrings= option from the IMA policy (jsc#SLE-15209). +- IMA: Add support to limit measuring keys (jsc#SLE-15209). +- KEYS: Call the IMA hook to measure keys (jsc#SLE-15209). +- IMA: Define an IMA hook to measure keys (jsc#SLE-15209). + Refresh + patches.suse/0002-ima-generalize-x86-EFI-arch-glue-for-other-EFI-archi.patch +- IMA: Add KEY_CHECK func to measure keys (jsc#SLE-15209). +- IMA: Check IMA policy flag (jsc#SLE-15209). +- tpm: Add tpm_version_major sysfs file (jsc#SLE-15209). +- tpm/tpm_ftpm_tee: add shutdown call back (jsc#SLE-15209). +- security: keys: trusted: fix lost handle flush (jsc#SLE-15209). +- KEYS: remove CONFIG_KEYS_COMPAT (jsc#SLE-15209). + Update config files. +- KEYS: trusted: Remove set but not used variable 'keyhndl' + (jsc#SLE-15209). +- KEYS: trusted: Move TPM2 trusted keys code (jsc#SLE-15209). +- KEYS: trusted: Create trusted keys subsystem (jsc#SLE-15209). + Refresh + patches.suse/1885-kbuild-remove-header-compile-test.patch + patches.suse/KVM-arm-arm64-Factor-out-hypercall-handling-from-PSC.patch + patches.suse/crypto-sha-split-sha.h-into-sha1.h-and-sha2.h.patch +- KEYS: Use common tpm_buf for trusted and asymmetric keys + (jsc#SLE-15209). +- tpm: Move tpm_buf code to include/linux/ (jsc#SLE-15209). +- tpm: use GFP_KERNEL instead of GFP_HIGHMEM for tpm_buf + (jsc#SLE-15209). +- tpm: tpm_tis_spi: Drop THIS_MODULE usage from driver struct + (jsc#SLE-15209). +- tpm: tpm_tis_spi: Cleanup includes (jsc#SLE-15209). +- tpm: tpm_tis_spi: Support cr50 devices (jsc#SLE-15209). + Update config files. +- tpm: tpm_tis_spi: Introduce a flow control callback + (jsc#SLE-15209). +- tpm: Add a flag to indicate TPM power is managed by firmware + (jsc#SLE-15209). +- tpm_tis: override durations for STM tpm with firmware 1.2.8.28 + (jsc#SLE-15209). +- tpm: provide a way to override the chip returned durations + (jsc#SLE-15209). +- tpm: Remove duplicate code from caps_show() in tpm-sysfs.c + (jsc#SLE-15209). +- tpm/tpm_ftpm_tee: A driver for firmware TPM running inside TEE + (jsc#SLE-15209). + Update config files. +- tpm: Remove a deprecated comments about implicit sysfs locking + (jsc#SLE-15209). +- commit 7e1f0f4 + +- md/cluster: fix deadlock when node is doing resync job + (bsc#1163727). +- md/cluster: block reshape with remote resync job (bsc#1163727). +- md/bitmap: fix memory leak of temporary bitmap (bsc#1163727). +- md/bitmap: md_bitmap_get_counter returns wrong blocks + (bsc#1163727). +- md/bitmap: md_bitmap_read_sb uses wrong bitmap blocks + (bsc#1163727). +- md-cluster: fix rmmod issue when md_cluster convert bitmap to + none (bsc#1163727). +- md-cluster: fix safemode_delay value when converting to + clustered bitmap (bsc#1163727). +- md-cluster: fix wild pointer of unlock_all_bitmaps() + (bsc#1163727). +- commit 7522976 + +- mm: validate inode in mapping_set_error() (git-fixes). +- commit 05b16dc + +- btrfs: add missing check for nocow and compression inode flags + (bsc#1178780). +- fs/buffer.c: record blockdev write errors in super_block that + it backs (bsc#1172266). +- vfs: track per-sb writeback errors and report them to syncfs + (bsc#1172266). +- commit 934c84a + +- btrfs: add missing check for nocow and compression inode flags (bsc#1178780). +- commit 98b0ffc + +- Revert "ceph: allow rename operation under different quota + realms" (bsc#1180541). +- commit 1a2a0a7 + +- Refresh + patches.suse/ceph-downgrade-warning-from-mdsmap-decode-to-debug.patch. +- Refresh + patches.suse/ceph-fix-race-in-concurrent-_ceph_remove_cap-invocations.patch. + Patches have been merged into mainline; refreshing Git-commit and Path-mainline + tags in patches. +- commit d338d00 + +- nfp: move indirect block cleanup to flower app stop callback + (bsc#1176447). +- ethtool: fix error paths in ethnl_set_channels() (bsc#1176447). +- i40e, xsk: clear the status bits for the next_to_use descriptor + (jsc#SLE-13701). +- RDMA/mlx5: Fix MR cache memory leak (jsc#SLE-15175). +- RDMA/bnxt_re: Fix max_qp_wrs reported (bsc#1175499). +- RDMA/hns: Bugfix for calculation of extended sge + (jsc#SLE-14777). +- RDMA/rtrs-srv: Fix typo (jsc#SLE-15176). +- RDMA/rtrs-srv: Don't guard the whole __alloc_srv with srv_mutex + (jsc#SLE-15176). +- RDMA/rtrs-clt: Missing error from rtrs_rdma_conn_established + (jsc#SLE-15176). +- RDMA/rtrs-clt: Avoid run destroy_con_cq_qp/create_con_cq_qp + in parallel (jsc#SLE-15176). +- RDMA/rtrs-clt: Remove outdated comment in create_con_cq_qp + (jsc#SLE-15176). +- RDMA/rtrs-clt: Remove destroy_con_cq_qp in case route resolving + failed (jsc#SLE-15176). +- IB/isert: add module param to set sg_tablesize for IO cmd + (jsc#SLE-15176). +- RDMA/core: Fix error return in _ib_modify_qp() (jsc#SLE-15176). +- RDMA/bnxt_re: Fix entry size during SRQ create (jsc#SLE-15076 + bsc#1175499). +- net/mlx5e: remove unnecessary memset (jsc#SLE-15172). +- net/sched: fix miss init the mru in qdisc_skb_cb (bsc#1176447). +- i40e: remove redundant assignment (jsc#SLE-13701). +- ionic: use mc sync for multicast filters (jsc#SLE-16649). +- net: sched: Fix dump of MPLS_OPT_LSE_LABEL attribute in + cls_flower (bsc#1176447). +- net: flow_offload: Fix memory leak for indirect flow block + (jsc#SLE-15075). +- e1000e: fix S0ix flow to allow S0i3.2 subset entry + (jsc#SLE-13532). +- bonding: fix feature flag setting at init time (bsc#1176447). +- ch_ktls: fix build warning for ipv4-only config (jsc#SLE-15129). +- net/sched: fq_pie: initialize timer earlier in fq_pie_init() + (jsc#SLE-15172). +- commit feb8216 + +- powerpc/pci: Remove LSI mappings on device teardown (bsc#1172145 + ltc#184630). +- commit a2fd2d8 + +- Delete patches.suse/powerpc-pci-unmap-legacy-INTx-interrupts-when-a-PHB-.patch + (bsc#1172145 ltc#184630). + To be replaced with new fix merged through SP2. +- commit 8ea9da6 + +- powerpc/cacheinfo: Print correct cache-sibling map/list for + L2 cache (jsc#SLE-13615 bsc#1180100 ltc#190257). +- powerpc/smp: Add support detecting thread-groups sharing L2 + cache (jsc#SLE-13615 bsc#1180100 ltc#190257). +- powerpc/smp: Rename init_thread_group_l1_cache_map() to make + it generic (jsc#SLE-13615 bsc#1180100 ltc#190257). +- powerpc/smp: Rename cpu_l1_cache_map as + thread_group_l1_cache_map (jsc#SLE-13615 bsc#1180100 + ltc#190257). +- powerpc/smp: Parse ibm,thread-groups with multiple properties + (jsc#SLE-13615 bsc#1180100 ltc#190257). +- powerpc/smp: Use GFP_ATOMIC while allocating tmp mask + (jsc#SLE-13615 bsc#1180100 ltc#190257). +- powerpc/smp: Remove unnecessary variable (jsc#SLE-13615 + bsc#1180100 ltc#190257). +- powerpc/smp: Optimize update_coregroup_mask (jsc#SLE-13615 + bsc#1180100 ltc#190257). +- powerpc/smp: Move coregroup mask updation to a new function + (jsc#SLE-13615 bsc#1180100 ltc#190257). +- powerpc/smp: Optimize update_mask_by_l2 (jsc#SLE-13615 + bsc#1180100 ltc#190257). +- powerpc/smp: Check for duplicate topologies and consolidate + (jsc#SLE-13615 bsc#1180100 ltc#190257). +- powerpc/smp: Depend on cpu_l1_cache_map when adding CPUs + (jsc#SLE-13615 bsc#1180100 ltc#190257). +- powerpc/smp: Stop passing mask to update_mask_by_l2 + (jsc#SLE-13615 bsc#1180100 ltc#190257). +- powerpc/smp: Limit CPUs traversed to within a node + (jsc#SLE-13615 bsc#1180100 ltc#190257). +- powerpc/smp: Optimize remove_cpu_from_masks (jsc#SLE-13615 + bsc#1180100 ltc#190257). +- powerpc/smp: Remove get_physical_package_id (jsc#SLE-13615 + bsc#1180100 ltc#190257). +- powerpc/smp: Stop updating cpu_core_mask (jsc#SLE-13615 + bsc#1180100 ltc#190257). +- powerpc/topology: Update topology_core_cpumask (jsc#SLE-13615 + bsc#1180100 ltc#190257). +- powerpc/topology: Override cpu_smt_mask (jsc#SLE-13615 + bsc#1180100 ltc#190257). +- sched/topology: Allow archs to override cpu_smt_mask + (jsc#SLE-13615 bsc#1180100 ltc#190257). +- powerpc/cacheinfo: Add per cpu per index shared_cpu_list + (jsc#SLE-13615 bsc#1180100 ltc#190257). +- powerpc/cacheinfo: Make cpumap_show code reusable (jsc#SLE-13615 + bsc#1180100 ltc#190257). +- powerpc/cacheinfo: Use cpumap_print to print cpumap + (jsc#SLE-13615 bsc#1180100 ltc#190257). +- powerpc/smp: Use IS_ENABLED() to avoid #ifdef (jsc#SLE-13615 + bsc#1180100 ltc#190257). +- powerpc/smp: Drop superfluous NULL check (jsc#SLE-13615 + bsc#1180100 ltc#190257). +- commit aa22c03 + +- blacklist.conf: adab66b71abf ("Revert: "ring-buffer: Remove HAVE_64BIT_ALIGNED_ACCESS"") + We do not support metag and sparc64 archs. +- commit 99ad074 + +- blacklist.conf: d9a9280a0d0a ("seq_buf: Avoid type mismatch for seq_buf_init") + It breaks kABI. It is not worth the hassle to backport. +- commit 7c29506 + +- module: delay kobject uevent until after module init call (bsc#1178631). +- Refresh patches.suse/supported-flag. +- commit 9f35554 + +- bpf: Fix bpf_put_raw_tracepoint()'s use of __module_address() + (git-fixes). +- commit e888e29 + +- blacklist.conf: 310e3a4b5a4f ("tracing: Remove WARN_ON in start_thread()") + CONFIG_HWLAT_TRACER is not set anywhere. +- commit 4f64022 + +- ocfs2: fix unbalanced locking (bsc#1180506). +- commit b54b08a + +- remoteproc: qcom: Fix potential NULL dereference in + adsp_init_mmio() (git-fixes). +- remoteproc: qcom: fix reference leak in adsp_start (git-fixes). +- remoteproc: q6v5-mss: fix error handling in q6v5_pds_enable + (git-fixes). +- serial_core: Check for port state when tty is in error state + (git-fixes). +- usb: gadget: f_fs: Re-use SS descriptors for SuperSpeedPlus + (git-fixes). +- USB: gadget: f_midi: setup SuperSpeed Plus descriptors + (git-fixes). +- USB: gadget: f_acm: add support for SuperSpeed Plus (git-fixes). +- USB: gadget: f_rndis: fix bitrate for SuperSpeed and above + (git-fixes). +- media: gspca: Fix memory leak in probe (git-fixes). +- media: saa7146: fix array overflow in vidioc_s_audio() + (git-fixes). +- media: max2175: fix max2175_set_csm_mode() error code + (git-fixes). +- media: imx214: Fix stop streaming (git-fixes). +- media: msi2500: assign SPI bus number dynamically (git-fixes). +- media: siano: fix memory leak of debugfs members in + smsdvb_hotplug (git-fixes). +- media: sunxi-cir: ensure IR is handled when it is continuous + (git-fixes). +- media: solo6x10: fix missing snd_card_free in error handling + case (git-fixes). +- media: ipu3-cio2: Remove traces of returned buffers (git-fixes). +- media: ipu3-cio2: Make the field on subdev format + V4L2_FIELD_NONE (git-fixes). +- media: ipu3-cio2: Validate mbus format in setting subdev format + (git-fixes). +- media: ipu3-cio2: Serialise access to pad format (git-fixes). +- media: ipu3-cio2: Return actual subdev format (git-fixes). +- media: mtk-vcodec: add missing put_device() call in + mtk_vcodec_init_enc_pm() (git-fixes). +- media: mtk-vcodec: add missing put_device() call in + mtk_vcodec_release_dec_pm() (git-fixes). +- media: mtk-vcodec: add missing put_device() call in + mtk_vcodec_init_dec_pm() (git-fixes). +- media: tm6000: Fix sizeof() mismatches (git-fixes). +- iwlwifi: pcie: add one missing entry for AX210 (git-fixes). +- commit 1e25d62 + +- gpio: mvebu: update Armada XP per-CPU comment (git-fixes). +- dmaengine: mv_xor_v2: Fix error return code in mv_xor_v2_probe() + (git-fixes). +- HID: i2c-hid: add Vero K147 to descriptor override (git-fixes). +- iio:imu:bmi160: Fix too large a buffer (git-fixes). +- crypto: atmel-i2c - select CONFIG_BITREVERSE (git-fixes). +- crypto: ecdh - avoid unaligned accesses in ecdh_set_secret() + (git-fixes). +- crypto: omap-aes - Fix PM disable depth imbalance in + omap_aes_probe (git-fixes). +- crypto: crypto4xx - Replace bitwise OR with logical OR in + crypto4xx_build_pd (git-fixes). +- Input: goodix - add upside-down quirk for Teclast X98 Pro tablet + (git-fixes). +- Input: cros_ec_keyb - send 'scancodes' in addition to key events + (git-fixes). +- commit 48f3c1f + +- ALSA/hda: apply jack fixup for the Acer Veriton + N4640G/N6640G/N2510G (git-fixes). +- ALSA: hda/realtek: Apply jack fixup for Quanta NL3 (git-fixes). +- ALSA: hda/realtek: Add quirk for MSI-GP73 (git-fixes). +- ALSA: pcm: oss: Fix a few more UBSAN fixes (git-fixes). +- ALSA: usb-audio: Disable sample read check if firmware doesn't + give back (git-fixes). +- ALSA: usb-audio: Add VID to support native DSD reproduction + on FiiO devices (git-fixes). +- ALSA: core: memalloc: add page alignment for iram (git-fixes). +- ACPI: PNP: compare the string length in the matching_id() + (git-fixes). +- clocksource/drivers/arm_arch_timer: Correct fault programming + of CNTKCTL_EL1.EVNTI (git-fixes). +- clocksource/drivers/arm_arch_timer: Use stable count reader + in erratum sne (git-fixes). +- clocksource/drivers/cadence_ttc: Fix memory leak in + ttc_setup_clockevent() (git-fixes). +- clocksource/drivers/orion: Add missing clk_disable_unprepare() + on error path (git-fixes). +- crypto: af_alg - avoid undefined behavior accessing salg_name + (git-fixes). +- crypto: inside-secure - Fix sizeof() mismatch (git-fixes). +- crypto: talitos - Fix return type of current_desc_hdr() + (git-fixes). +- crypto: talitos - Endianess in current_desc_hdr() (git-fixes). +- cfg80211: initialize rekey_data (git-fixes). +- commit 57d3bee + +- series.conf: cleanup +- move unsortable patch out of sorted section: + patches.suse/ibmvnic-fix-NULL-pointer-dereference.patch +- update upstream reference: + patches.suse/ibmvnic-continue-fatal-error-reset-after-passive-ini.patch +- commit a0b2ce7 + +- ibmvnic: fix login buffer memory leak (jsc#SLE-17043 bsc#1179243 + ltc#189290 git-fixes). +- commit 2d2f67f + +- ibmvnic: continue fatal error reset after passive init + (bsc#1171078 ltc#184239 git-fixes). +- commit e6ea824 + +- Refresh patches.suse/powerpc-perf-Exclude-kernel-samples-while-counting-e.patch. +- commit fc17dca + +- powerpc/perf: Fix Threshold Event Counter Multiplier width + for P10 (jsc#SLE-13513 bsc#1180072 ltc#190309). +- commit c1c01ab + +- powerpc/bitops: Fix possible undefined behaviour with fls() + and fls64() (bsc#1156395). +- commit e90809a + +- powerpc: Fix incorrect stw{, ux, u, x} instructions in + __set_pte_at (bsc#1065729). +- commit b5cc99b + +- powerpc/xmon: Change printk() to pr_cont() (bsc#1065729). +- commit 9125964 + +- powerpc/64: Set up a kernel stack for secondaries before + cpu_restore() (bsc#1065729). +- commit 7bcd26b + +- powerpc/eeh_cache: Fix a possible debugfs deadlock + (bsc#1156395). +- commit bfd7479 + +- powerpc/64: Fix an EMIT_BUG_ENTRY in head_64.S (jsc#SLE-9246 + git-fixes). +- powerpc/signal: Move inline functions in signal.h (jsc#SLE-16200 + git-fixes). +- commit d0ddb83 + +- powerpc/sstep: Cover new VSX instructions under CONFIG_VSX + (jsc#SLE-13847 git-fixes). +- powerpc/sstep: Emulate prefixed instructions only when + CPU_FTR_ARCH_31 is set (jsc#SLE-13847 git-fixes). +- commit c3ca4ff + +- powerpc: Avoid broken GCC __attribute__((optimize)) + (bsc#1156395). +- commit 3d98ea5 + +- powerpc/smp: Add __init to init_big_cores() (bsc#1109695 + ltc#171067 git-fixes). +- commit 88fe3ed + +- Refresh patches.suse/powerpc-rtas-fix-typo-of-ibm-open-errinjct-in-rtas-f.patch + Refresh to upstream version. +- commit f0055e2 + +- powerpc/pseries/hibernation: remove redundant cacheinfo update + (bsc#1138374 ltc#178199 git-fixes). +- commit e904a78 + +- Revert "powerpc/pseries/hotplug-cpu: Remove double free in + error path" (bsc#1065729). +- commit 243e39e + +- blacklist.conf: Add e91d8d78237d mm/zsmalloc.c: drop ZSMALLOC_PGTABLE_MAPPING + The option is not enabled. +- commit 65fee6f + +- powerpc/64: irq replay remove decrementer overflow check + (jsc#SLE-9246 git-fixes(stable-5.10)). +- commit 6c37cac + +- PCI: Fix overflow in command-line resource alignment requests + (git-fixes). +- commit 1dd80ec + +- ibmvnic: fix: NULL pointer dereference (bsc#1044767 ltc#155231 + git-fixes). +- commit 59feb80 + +- Refresh + patches.suse/powercap-Restrict-energy-meter-to-root-access.patch. + Now in mainline +- commit 414492a + +- blacklist.conf: fix already added by other patch +- commit ed48336 + +- blacklist.conf: already gone in by another ID +- commit 7020218 + +- usb: host: ehci-tegra: Fix error handling in tegra_ehci_probe() + (git-fixes). +- commit 6f94554 + +- blacklist.conf: fix not relevant for our config +- commit 47a12a9 + +- USB: UAS: introduce a quirk to set no_write_same (git-fixes). +- commit bda3ea7 + +- USB: add RESET_RESUME quirk for Snapscan 1212 (git-fixes). +- commit 0912116 + +- crypto: qat - add CRYPTO_AES to Kconfig dependencies + (git-fixes). +- commit 6dcc047 + +- blk-mq: Remove 'running from the wrong CPU' warning + (bsc#1174486). +- commit 5a12d1c + +- blacklist.conf: 3d51507f29f2 x86/entry/32: Add missing ASM_CLAC to general_protection entry +- commit 794e745 + +- ACPI: NFIT: Fix input validation of bus-family (git-fixes). +- nl80211: validate key indexes for cfg80211_registered_device + (git-fixes). +- commit d4bf12f + +- watchdog: coh901327: add COMMON_CLK dependency (git-fixes). +- watchdog: qcom: Avoid context switch in restart handler + (git-fixes). +- watchdog: Fix potential dereferencing of null pointer + (git-fixes). +- watchdog: sprd: change to use usleep_range() instead of busy + loop (git-fixes). +- watchdog: sprd: check busy bit before new loading rather than + after that (git-fixes). +- watchdog: sprd: remove watchdog disable from resume fail path + (git-fixes). +- watchdog: sirfsoc: Add missing dependency on HAS_IOMEM + (git-fixes). +- watchdog: armada_37xx: Add missing dependency on HAS_IOMEM + (git-fixes). +- commit 705ed83 + +- media: uvcvideo: Accept invalid bFormatIndex and bFrameIndex + values (bsc#1180117). +- commit 2f3db03 + +- Re-import the upstream uvcvideo fix; one more fix will be added later (bsc#1180117) +- commit 0da5ae4 + +- rpm/constraints.in: more disk space for aarch64 binary builds (bsc#1180261) + Tumbleweed KotD builds already consume ~30 GB of disk space and SLE15-SP3 + builds sometimes exceed even 32 GB, resulting in build failures. Thus the + exception providing only 30 GB for aarch64 binary builds is no longer + sustainable and if requiring 35 GB limits the portfolio of available + builders, we need to address that. +- commit 07b084b + +- x86/topology: Set cpu_die_id only if DIE_TYPE found + (bsc#1152489). +- commit 6e7d005 + +- EDAC/mce_amd: Use struct cpuinfo_x86.cpu_die_id for AMD NodeId + (bsc#1152489). +- commit 72ce98e + +- x86/CPU/AMD: Remove amd_get_nb_id() (bsc#1152489). +- commit be1bad6 + +- x86/CPU/AMD: Save AMD NodeId as cpu_die_id (bsc#1152489). +- commit af076e7 + +- EDAC/amd64: Do not load on family 0x15, model 0x13 (bsc#1179763). +- commit 877e64a + +- rpm: drop /usr/bin/env in interpreter specification + OBS checks don't like /usr/bin/env in script interpreter lines but upstream + developers tend to use it. A proper solution would be fixing the depedency + extraction and drop the OBS check error but that's unlikely to happen so + that we have to work around the problem on our side and rewrite the + interpreter lines in scripts before collecting files for packages instead. +- commit 0ec5324 + +- reset: raspberrypi: Don't reset USB if already up (bsc#1180336). +- commit 72c8f7f + +- blacklist.conf: ignore CRYPTO_SKCIPHER kconfig option +- commit 00dae55 + +- crypto: hisilicon - Cap block size at 2^31 (jsc#SLE-16507 + jsc#SLE-15835). +- commit 4cc08f7 + +- nvmet-tcp: fix maxh2cdata icresp parameter (bsc#1179892). +- commit 8a7b72b + +- crypto: hisilicon - fix driver compatibility issue with + different versions of devices (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/qm - change debugfs file name from qm_regs + to regs (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/qm - add DebugFS for xQC and xQE dump + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/zip - add debugfs for Hisilicon ZIP + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/hpre - add debugfs for Hisilicon HPRE + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/sec2 - add debugfs for Hisilicon SEC + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/qm - add debugfs to the QM state machine + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/qm - add debugfs for QM (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon/zip - Use temporary sqe when doing work + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - add device error report through abnormal + irq (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - remove codes of directly report device + errors through MSI (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - QM memory management optimization + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - unify initial value assignment into QM + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - remove use_dma_api related codes + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - add FLR support (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon/qm - add state machine for QM (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - refactor module parameter pf_q_num related + code (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/zip - modify the ZIP probe process + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/hpre - modify the HPRE probe process + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/sec2 - modify the SEC probe process + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/sec2 - constify sec_dfx_regs (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon/zip - constify struct debugfs_reg32 + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/hpre - constify struct debugfs_reg32 + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/qm - Make qm_controller_reset() static + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/qm - add more ACPI dependencies (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon/qm - fix build failure with ACPI off + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/qm - stop qp by judging sq and cq tail + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/sec2 - add controller reset support for SEC2 + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/hpre - add controller reset support for HPRE + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/zip - add controller reset support for zip + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/qm - add controller reset interface + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - add vfs_num module parameter for hpre/sec + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - unify SR-IOV related codes into QM + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - put vfs_num into struct hisi_qm + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/sec2 - Add new create qp process + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/hpre - Optimize finding hpre device process + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/zip - Use hisi_qm_alloc_qps_node() when init + ctx (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/qm - Put device finding logic into QM + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/sec2 - Add pbuffer mode for SEC driver + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/sec2 - Update IV and MAC operation + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/sec2 - Add iommu status check (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon/sec2 - Add workqueue for SEC driver + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - Use one workqueue per qm instead of per qp + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - remove redundant assignment of pointer ctx + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - Remove module_param uacce_mode + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - Fix duplicate print when qm occur multiple + errors (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - Unify error detect process into qm + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - Configure zip RAS error type (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - Unify hardware error init/uninit into QM + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - fix spelling mistake "disgest" -> "digest" + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - add branch prediction macro (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - adjust hpre_crt_para_get (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - Fixed some tiny bugs of HPRE (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - Bugfixed tfm leak (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - Add aead support on SEC2 (jsc#SLE-16507 + jsc#SLE-15835). +- Refresh + patches.suse/crypto-sha-split-sha.h-into-sha1.h-and-sha2.h.patch. +- crypto: hisilicon - redefine skcipher initiation (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - Add branch prediction macro (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - Add callback error check (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - Adjust some inner logic (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - Update QP resources of SEC V2 (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - Update some names on SEC V2 (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - fix print/comment of SEC V2 (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - Update debugfs usage of SEC V2 + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - still no need to check return value of + debugfs_create functions (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - Remove useless MODULE macros (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - Use the offset fields in sqe to avoid need + to split scatterlists (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - Fix issue with wrong number of sg elements + after dma map (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon/sec2 - Use atomics instead of __sync + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - fix a NULL vs IS_ERR() bug in + sec_create_qp_ctx() (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - add DebugFS for HiSilicon SEC (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - add SRIOV for HiSilicon SEC (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - add HiSilicon SEC V2 driver (jsc#SLE-16507 + jsc#SLE-15835). +- Update config files. DEV_HISI_SEC2 as module +- supported.conf: add hisi_sec2 +- crypto: hisilicon - no need to check return value of + debugfs_create functions (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - add vfs_num module param for zip + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - replace #ifdef with IS_ENABLED for + CONFIG_NUMA (jsc#SLE-16507 jsc#SLE-15835). +- hwrng: hisi - add HiSilicon TRNG driver support (jsc#SLE-16507 + jsc#SLE-15835). +- Update config files. Enable HW_RANDOM_HISI_V2 +- support.conf: add hisi-trng-v2 +- crypto: hisilicon - fix to return sub-optimal device when best + device has no qps (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - use sgl API to get sgl dma addr and len + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - fix endianness verification problem of QM + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - fix param should be static when not external + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - Fix using plain integer as NULL pointer + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - tiny fix about QM/ZIP error callback print + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon: Fix misuse of GENMASK macro (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - select NEED_SG_DMA_LENGTH in qm Kconfig + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - Add debugfs for HPRE (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - add SRIOV support for HPRE (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - add HiSilicon HPRE accelerator + (jsc#SLE-16507 jsc#SLE-15835). +- Update config files. Enable CRYPTO_DEV_HISI_HPRE +- supported.conf: add hisi_hpre +- crypto: hisilicon - misc fix about sgl (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - fix large sgl memory allocation problem + when disable smmu (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - add sgl_sge_nr module param for zip + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - merge sgl support to hisi_qm module + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - allow compile-testing on x86 (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - avoid unused function warning (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - Fix return value check in + hisi_zip_acompress() (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - Fix warning on printing %p with dma_addr_t + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - fix error handle in hisi_zip_create_req_q + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - add missing single_release (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - init curr_sgl_dma to fix compile warning + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - add dependency for CRYPTO_DEV_HISI_ZIP + (jsc#SLE-16507 jsc#SLE-15835). +- crypto: hisilicon - fix kbuild warnings (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - add debugfs for ZIP and QM (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - add SRIOV support for ZIP (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - add HiSilicon ZIP accelerator support + (jsc#SLE-16507 jsc#SLE-15835). +- Update config files. Enable CRYPTO_DEV_HISI_ZIP +- supported.conf: add hisi_zip +- crypto: hisilicon - add hardware SGL support (jsc#SLE-16507 + jsc#SLE-15835). +- crypto: hisilicon - add queue management driver for HiSilicon + QM module (jsc#SLE-16507 jsc#SLE-15835). +- Update config files. Enable CRYPTO_DEV_HISI_QM +- supported.conf: add hisi_qm +- commit 2188cb3 + +- x86/ima: use correct identifier for SetupMode variable + (bsc#1152489). +- commit 9b27f4f + +- i2c: Revert incorrect conversion to use generic helper + (jsc#SLE-16407). +- commit 80898a3 + +- blacklist.conf: 3d51507f29f2 x86/entry/32: Add missing ASM_CLAC to general_protection entry +- commit 1aa31e3 + +- fix patch metadata +- fix Patch-mainline: + patches.suse/mm-memory_failure-always-pin-the-page-in-madvise_inj.patch +- commit 4f786fa + +- Refresh + patches.suse/arm64-force-no_block_mappings-if-crashkernel-reservation-is-required.patch. +- Refresh + patches.suse/arm64-ignore-any-dma-offsets-in-the-max_zone_phys-calculation.patch. +- Refresh + patches.suse/arm64-mm-move-reserve_crashkernel-into-mem_init.patch. +- Refresh + patches.suse/arm64-mm-move-zone_dma_bits-initialization-into-zone_sizes_init.patch. +- Refresh + patches.suse/arm64-mm-set-zone_dma-size-based-on-devicetree-s-dma-ranges.patch. +- Refresh + patches.suse/arm64-mm-set-zone_dma-size-based-on-early-iort-scan.patch. +- Refresh + patches.suse/ibmvnic-Clean-up-TX-code-and-TX-buffer-data-structur.patch. +- Refresh + patches.suse/ibmvnic-Correctly-re-enable-interrupts-in-NAPI-polli.patch. +- Refresh + patches.suse/ibmvnic-Do-not-replenish-RX-buffers-after-every-poll.patch. +- Refresh + patches.suse/ibmvnic-Ensure-that-device-queue-memory-is-cache-lin.patch. +- Refresh + patches.suse/ibmvnic-Introduce-batched-RX-buffer-descriptor-trans.patch. +- Refresh + patches.suse/ibmvnic-Introduce-indirect-subordinate-Command-Respo.patch. +- Refresh + patches.suse/ibmvnic-Introduce-xmit_more-support-using-batched-su.patch. +- Refresh patches.suse/ibmvnic-Remove-send_subcrq-function.patch. +- Refresh + patches.suse/ibmvnic-Use-netdev_alloc_skb-instead-of-alloc_skb-to.patch. +- Refresh + patches.suse/ibmvnic-fix-rx-buffer-tracking-and-index-management-.patch. +- Refresh patches.suse/net-smc-improve-return-codes-for-smc-dv2. +- Refresh + patches.suse/of-address-introduce-of_dma_get_max_cpu_address.patch. +- Refresh + patches.suse/s390-sles15sp3-03-01-s390-cio-Export-information-about-Endpoint-Security-.patch. +- Refresh + patches.suse/s390-sles15sp3-03-02-s390-cio-Provide-Endpoint-Security-Mode-per-CU.patch. +- Refresh + patches.suse/s390-sles15sp3-03-03-s390-cio-Add-support-for-FCES-status-notification.patch. +- Refresh + patches.suse/s390-sles15sp3-03-04-s390-dasd-Remove-unused-parameter-from-dasd_generic_.patch. +- Refresh + patches.suse/s390-sles15sp3-03-05-s390-dasd-Move-duplicate-code-to-separate-function.patch. +- Refresh + patches.suse/s390-sles15sp3-03-06-s390-dasd-Store-path-configuration-data-during-path-.patch. +- Refresh + patches.suse/s390-sles15sp3-03-07-s390-dasd-Fix-operational-path-inconsistency.patch. +- Refresh + patches.suse/s390-sles15sp3-03-08-s390-dasd-Display-FC-Endpoint-Security-information-v.patch. +- Refresh + patches.suse/s390-sles15sp3-03-09-s390-dasd-Prepare-for-additional-path-event-handling.patch. +- Refresh + patches.suse/s390-sles15sp3-03-10-s390-dasd-Process-FCES-path-event-notification.patch. +- Refresh + patches.suse/scsi-fnic-avoid-looping-in-trans-eth-on-unload. +- Refresh + patches.suse/scsi-fnic-change-shost_printk-to-fnic_fcs_dbg. +- Refresh + patches.suse/scsi-fnic-change-shost_printk-to-fnic_main_dbg. +- Refresh + patches.suse/scsi-fnic-set-scsi_set_resid-only-for-underflow. +- Refresh patches.suse/scsi-fnic-validate-io_req-before-others. +- commit 87eecb7 + +- selftests/bpf: Print reason when a tester could not run a + program (bsc#1155518). +- selftests/bpf: Fix invalid use of strncat in test_sockmap + (bsc#1155518). +- samples: bpf: Refactor test_cgrp2_sock2 program with libbpf + (bsc#1155518). +- samples/bpf: Remove unused test_ipip.sh (bsc#1155518). +- selftest/bpf: Add missed ip6ip6 test back (bsc#1155518). +- selftests/bpf/test_offload.py: Reset ethtool features after + failed setting (bsc#1155518). +- commit 82533c7 + +- clk: bcm: dvp: Add MODULE_DEVICE_TABLE() (git-fixes). +- clk: fsl-sai: fix memory leak (git-fixes). +- commit bba80c9 + +- ASoC: wm8994: Fix PM disable depth imbalance on error + (git-fixes). +- commit e953294 + +- Update commit ids for already cherry-picked pinctrl patches +- commit 5e797b0 + +- dmaengine: idxd: add IAX configuration support in the IDXD + driver (jsc#SLE-13380). +- dmaengine: idxd: add ATS disable knob for work queues + (jsc#SLE-13380). +- commit aca8d81 + +- Add cherry-picked dup ID for IDXD patch +- commit 1fde049 + +- Move ASoC patch into sorted section + The patch was mistakenly put into nirvana because of badly tagged commit id. +- commit df0bd91 + +- Move upstreamed IDXD patches into sorted section +- commit 6ca191c + +- clk: mvebu: a3700: fix the XTAL MODE pin to MPP1_9 (git-fixes). +- clk: sunxi-ng: Make sure divider tables have sentinel + (git-fixes). +- clk: s2mps11: Fix a resource leak in error handling paths in + the probe function (git-fixes). +- clk: ingenic: Fix divider calculation with div tables + (git-fixes). +- clk: at91: sam9x60: remove atmel,osc-bypass support (git-fixes). +- clk: ti: Fix memleak in ti_fapll_synth_setup (git-fixes). +- clk: mediatek: Make mtk_clk_register_mux() a static function + (git-fixes). +- clk: tegra: Fix duplicated SE clock entry (git-fixes). +- clk: tegra: Do not return 0 on failure (git-fixes). +- lan743x: fix for potential NULL pointer dereference with bare + card (git-fixes). +- commit 21d14d2 + +- drivers/base/memory.c: indicate all memory blocks as removable + (bsc#1180264). +- commit 64673b1 + +- x86/cpu: Add a X86_MATCH_INTEL_FAM6_MODEL_STEPPINGS() macro + (jsc#SLE-13358). +- commit 6c034c0 + +- EDAC/i10nm: Add Intel Sapphire Rapids server support + (jsc#SLE-13358). +- commit 991ab76 + +- EDAC/i10nm: Use readl() to access MMIO registers + (jsc#SLE-13358). +- commit 0389f79 + +- EDAC: Add DDR5 new memory type (jsc#SLE-13358). +- commit add2e95 + +- ACPI: processor: Fix build for ARCH_APICTIMER_STOPS_ON_C3 unset + (jsc#SLE-16407). +- ACPI: processor: Use CPUIDLE_FLAG_TIMER_STOP (jsc#SLE-16407). +- ACPI: OSL: Prevent acpi_release_memory() from returning too + early (jsc#SLE-16407). +- ACPI: ioremap: avoid redundant rounding to OS page size + (jsc#SLE-16407). +- ACPI: SoC: APD: Check return value of acpi_dev_get_property() + (jsc#SLE-16407). +- ACPI: APD: Add a fmw property is_raven (jsc#SLE-16407). +- ACPI: APD: Change name from ST to FCH (jsc#SLE-16407). +- i2c: designware: Add device HID for Hygon I2C controller + (jsc#SLE-16407). +- ACPI: NFIT: Fix ARS zero-sized allocation (jsc#SLE-16407). +- acpi: thermal: Don't call thermal_zone_device_is_enabled() + (jsc#SLE-16407). +- thermal: Simplify or eliminate unnecessary set_mode() methods + (jsc#SLE-16407). +- thermal: Use mode helpers in drivers (jsc#SLE-16407). +- thermal: Add mode helpers (jsc#SLE-16407). +- thermal: remove get_mode() operation of drivers (jsc#SLE-16407). +- thermal: Store device mode in struct thermal_zone_device + (jsc#SLE-16407). +- thermal: Add current mode to thermal zone device + (jsc#SLE-16407). +- thermal: Store thermal mode in a dedicated enum (jsc#SLE-16407). + Refresh + patches.suse/acpi_thermal_passive_blacklist.patch +- acpi: thermal: Fix error handling in the register function + (jsc#SLE-16407). +- sched,acpi_pad: Convert to sched_set_fifo*() (jsc#SLE-16407). +- ACPI: Replace HTTP links with HTTPS ones (jsc#SLE-16407). + Refresh + patches.suse/0017-ACPI-NFIT-Define-runtime-firmware-activation-command.patch +- ACPI: Use valid link to the ACPI specification (jsc#SLE-16407). +- ACPI: Use fallthrough pseudo-keyword (jsc#SLE-16407). +- ACPI: APEI: remove redundant assignment to variable rc + (jsc#SLE-16407). +- ACPI: NUMA: Remove the useless 'node >= MAX_NUMNODES' check + (jsc#SLE-16407). +- ACPI: NUMA: Remove the useless sub table pointer check + (jsc#SLE-16407). +- ACPI: tables: Remove the duplicated checks for + acpi_parse_entries_array() (jsc#SLE-16407). +- ACPI: tables: avoid relocations for table signature array + (jsc#SLE-16407). +- ACPI: OSL: Clean up the removal of unused memory mappings + (jsc#SLE-16407). +- ACPI: OSL: Use deferred unmapping in acpi_os_unmap_iomem() + (jsc#SLE-16407). +- ACPI: OSL: Use deferred unmapping in + acpi_os_unmap_generic_address() (jsc#SLE-16407). +- ACPI: OSL: Implement deferred unmapping of ACPI memory + (jsc#SLE-16407). +- ACPI: property: use cached name in + acpi_fwnode_get_named_child_node() (jsc#SLE-16407). +- ACPI: EC: add newline when printing 'ec_event_clearing' module + parameter (jsc#SLE-16407). +- ACPI: PAD: Eliminate usage of uninitialized_var() macro + (jsc#SLE-16407). +- ACPI: sysfs: add newlines when printing module parameters + (jsc#SLE-16407). +- ACPI: procfs: Remove last dirs after being marked deprecated + for a decade (jsc#SLE-16407). +- Remove + patches.suse/acpi-disable-deprecated-warnings.patch +- Update config files. + x86_64/default removed CONFIG_ACPI_PROCFS_POWER=y +- ACPICA: Update version to 20200717 (jsc#SLE-16407). +- acpi: Extend TPM2 ACPI table with missing log fields + (jsc#SLE-16407). +- libnvdimm: Replace guid_copy() with import_guid() where it + makes sense (jsc#SLE-16407). +- thermal/of: Rename of-thermal.c (jsc#SLE-16407). +- ACPICA: Update version to 20200528 (jsc#SLE-16407). +- PCI: Rename _DSM constants to align with spec (jsc#SLE-16407). +- ACPI: DPTF: Add battery participant driver (jsc#SLE-16407). + Refresh + patches.suse/ACPI-DPTF-Add-battery-participant-for-TigerLake.patch +- ACPI: DPTF: Additional sysfs attributes for power participant + driver (jsc#SLE-16407). +- ACPI / PMIC: Add i2c address for thermal control + (jsc#SLE-16407). +- ACPI: utils: Add acpi_evaluate_reg() helper (jsc#SLE-16407). +- ACPI: Delete unused proc filename macros (jsc#SLE-16407). +- ACPI: debug: Make two functions static (jsc#SLE-16407). +- ACPI: processor: idle: Allow probing on platforms with one + ACPI C-state (jsc#SLE-16407). +- ACPI: sleep: Put the FACS table after using it (jsc#SLE-16407). +- ACPI: scan: Put SPCR and STAO table after using it + (jsc#SLE-16407). +- ACPI: EC: Put the ACPI table after using it (jsc#SLE-16407). +- ACPI: APEI: Put the HEST table for error path (jsc#SLE-16407). +- ACPI: APEI: Put the error record serialization table for error + path (jsc#SLE-16407). +- ACPI: APEI: Put the error injection table for error path and + module exit (jsc#SLE-16407). +- ACPI: APEI: Put the boot error record table after parsing + (jsc#SLE-16407). +- ACPI: watchdog: Put the watchdog action table after parsing + (jsc#SLE-16407). +- ACPI: LPIT: Put the low power idle table after using it + (jsc#SLE-16407). +- ACPICA: Update version to 20200430 (jsc#SLE-16407). +- PM: sleep: core: Rename DPM_FLAG_LEAVE_SUSPENDED + (jsc#SLE-16407). +- PM: sleep: core: Rename dev_pm_smart_suspend_and_suspended() + (jsc#SLE-16407). +- PM: sleep: core: Rename dev_pm_may_skip_resume() + (jsc#SLE-16407). +- PM: sleep: core: Rework the power.may_skip_resume handling + (jsc#SLE-16407). +- PM: sleep: core: Do not skip callbacks in the resume phase + (jsc#SLE-16407). +- PM: sleep: core: Fold functions into their callers + (jsc#SLE-16407). +- PM: sleep: core: Simplify the SMART_SUSPEND flag handling + (jsc#SLE-16407). +- ACPI: PM: s2idle: Print type of wakeup debug messages + (jsc#SLE-16407). +- ACPI/PCI: pci_link: use extended_irq union member when setting + ext-irq shareable (jsc#SLE-16407). +- ACPI: button: Drop no longer necessary Asus T200TA + lid_init_state quirk (jsc#SLE-16407). +- ACPI: EC: Fix up fast path check in acpi_ec_add() + (jsc#SLE-16407). +- ACPI: NFIT: Replace zero-length array with flexible-array member + (jsc#SLE-16407). +- ACPI: NUMA: Up-level "map to online node" functionality + (jsc#SLE-16407). +- ACPICA: Update version 20200326 (jsc#SLE-16407). +- ACPICA: WSMT: Fix typo, no functional change (jsc#SLE-16407). +- ACPICA: Fix IVRS IVHD type 10h reserved field name + (jsc#SLE-16407). +- ACPICA: Implement IVRS IVHD type 11h parsing (jsc#SLE-16407). +- ACPICA: Fix a typo in a comment field (jsc#SLE-16407). +- x86: ACPI: fix CPU hotplug deadlock (jsc#SLE-16407). +- PM: sleep: core: Drop racy and redundant checks from + device_prepare() (jsc#SLE-16407). + Refresh + patches.suse/0011-PM-sleep-core-Rename-DPM_FLAG_NEVER_SKIP.patch +- PCI/ACPI: Move pcie_to_hpx3_type from stack to static data + (jsc#SLE-16407). +- acpi: Remove header dependency (jsc#SLE-16407). +- ACPI: PCI: Use scnprintf() for avoiding potential buffer + overflow (jsc#SLE-16407). +- ACPI: fan: Use scnprintf() for avoiding potential buffer + overflow (jsc#SLE-16407). +- ACPI: EC: Eliminate EC_FLAGS_QUERY_HANDSHAKE (jsc#SLE-16407). +- ACPI: EC: Do not clear boot_ec_is_ecdt in acpi_ec_add() + (jsc#SLE-16407). +- blacklist.conf: + Removed + 65a691f5f8f0bb63d6a82eec7b0ffd193d8d8a5f # ACPI: not for stable, reverted below + c85a7109f905f7848735ef50d7e63e5534c4e95d # ACPI: stable commit reverting the above +- ACPI: EC: Simplify acpi_ec_ecdt_start() and acpi_ec_init() + (jsc#SLE-16407). +- ACPI: EC: Consolidate event handler installation code + (jsc#SLE-16407). +- ACPI: EC: Use fast path in acpi_ec_add() for DSDT boot EC + (jsc#SLE-16407). +- ACPI: EC: Simplify acpi_ec_add() (jsc#SLE-16407). +- ACPI: EC: Drop AE_NOT_FOUND special case from + ec_install_handlers() (jsc#SLE-16407). +- ACPI: EC: Avoid passing redundant argument to functions + (jsc#SLE-16407). +- ACPI: EC: Avoid printing confusing messages in acpi_ec_setup() + (jsc#SLE-16407). +- ACPI: list_for_each_safe() -> list_for_each_entry_safe() + (jsc#SLE-16407). +- ACPI: video: remove redundant assignments to variable result + (jsc#SLE-16407). +- ACPI: OSL: Add missing __acquires/__releases annotations + (jsc#SLE-16407). +- ACPI / battery: Cleanup Lenovo Ideapad Miix 320 DMI table entry + (jsc#SLE-16407). +- ACPI / AC: Cleanup DMI quirk table (jsc#SLE-16407). +- ACPI: Add new tiny-power-button driver to directly signal init + (jsc#SLE-16407). + Update config files. + x86_64/default add # CONFIG_ACPI_TINY_POWER_BUTTON is not set + arm64/default add # CONFIG_ACPI_TINY_POWER_BUTTON is not set +- ACPI: button: move HIDs to acpi/button.h (jsc#SLE-16407). +- ACPICA: Update version to 20200214 (jsc#SLE-16407). +- PM: sleep: core: Use built-in RCU list checking (jsc#SLE-16407). +- i2c: designware: Add ACPI HID for Hisilicon Hip08-Lite I2C + controller (jsc#SLE-16407). +- ACPI / APD: Add clock frequency for Hisilicon Hip08-Lite I2C + controller (jsc#SLE-16407). +- ACPI/IORT: Parse SSID property of named component node + (jsc#SLE-16407). + Refresh + patches.suse/ACPI-IORT-Add-an-input-ID-to-acpi_dma_configure.patch +- ACPI: thermal: switch to use helpers + (jsc#SLE-16407). +- ACPI / LPSS: Rename pwm_backlight pwm-lookup to + pwm_soc_backlight (jsc#SLE-16407). +- ACPI: PPTT: Consistently use unsigned int as parameter type + (jsc#SLE-16407). +- ACPI: video: Use native backlight on Lenovo E41-25/45 + (jsc#SLE-16407). +- ACPI: video: fix typo in comment (jsc#SLE-16407). +- ACPICA: Update version to 20200110 (jsc#SLE-16407). +- ACPICA: Update version to 20191213 (jsc#SLE-16407). +- ACPICA: acpisrc: add unix line ending support for non-windows + build (jsc#SLE-16407). +- ACPI: Fix Kconfig indentation (jsc#SLE-16407). +- ACPI: button: Add DMI quirk for Acer Switch 10 SW5-032 + lid-switch (jsc#SLE-16407). +- device property: Add a function to obtain a node's prefix + (jsc#SLE-16407). + Refresh + patches.suse/device-property-export-fwnode_get_name.patch +- ACPI: HMAT: use %u instead of %d to print u32 values + (jsc#SLE-16407). +- ACPI: NUMA: HMAT: fix a section mismatch (jsc#SLE-16407). +- ACPI: HMAT: don't mix pxm and nid when setting memory target + processor_pxm (jsc#SLE-16407). +- ACPI: NUMA: HMAT: Register "soft reserved" memory as an "hmem" + device (jsc#SLE-16407). +- ACPI: NUMA: HMAT: Register HMAT at device_initcall level + (jsc#SLE-16407). +- device-dax: Add a driver for "hmem" devices (jsc#SLE-16407). +- Update config files. + x86_64/default add CONFIG_DEV_DAX_HMEM=m + arm64/default add CONFIG_DEV_DAX_HMEM=m +- supported.conf: + - drivers/dax/dax_hmem +- ACPI: NUMA: Establish a new drivers/acpi/numa/ directory + (jsc#SLE-16407). + Update config files. +- ACPI: video: update doc for acpi_video_bus_DOS() + (jsc#SLE-16407). +- ACPI: platform: Unregister stale platform devices + (jsc#SLE-16407). +- ACPI / LPSS: Switch to use acpi_dev_hid_uid_match() + (jsc#SLE-16407). +- ACPI / utils: Describe function parameters in kernel-doc + (jsc#SLE-16407). +- ACPI: button: Remove unused acpi_lid_notifier_register() + functions (jsc#SLE-16407). + Refresh + patches.suse/ACPI-button-fix-handling-lid-state-changes-when-inpu.patch +- ACPI: button: Add DMI quirk for Asus T200TA (jsc#SLE-16407). +- ACPI: button: Turn lid_blacklst DMI table into a generic quirk + table (jsc#SLE-16407). + Refresh + patches.suse/ACPI-button-Add-DMI-quirk-for-Medion-Akoya-E2215T.patch +- ACPI: button: Allow disabling LID support with the + lid_init_state module option (jsc#SLE-16407). +- ACPI: button: Refactor lid_init_state module parsing code + (jsc#SLE-16407). +- ACPI / PMIC: Add Cherry Trail Crystal Cove PMIC OpRegion driver + (jsc#SLE-16407). +- ACPI / PMIC: Add byt prefix to Crystal Cove PMIC OpRegion driver + (jsc#SLE-16407). +- ACPI / PMIC: Do not register handlers for unhandled OpRegions + (jsc#SLE-16407). +- ACPI: EC: add support for hardware-reduced systems + (jsc#SLE-16407). +- ACPI: EC: tweak naming in preparation for GpioInt support + (jsc#SLE-16407). +- ACPICA: Update version to 20191018 (jsc#SLE-16407). +- ACPI: OSI: Shoot duplicate word (jsc#SLE-16407). +- ACPI: processor_idle: Skip dummy wait if kernel is in guest + (jsc#SLE-16407). +- acpi: Use pr_warn instead of pr_warning (jsc#SLE-16407). + Refresh + patches.suse/acpi-disable-deprecated-warnings.patch +- ACPI: HMAT: ACPI_HMAT_MEMORY_PD_VALID is deprecated since + ACPI-6.3 (jsc#SLE-16407). +- PCI/ACPI: Remove unnecessary struct hotplug_program_ops + (jsc#SLE-16407). + Refresh + patches.suse/pci-aer-add-pci_aer_raw_clear_status-to-unconditionally-clear-error-status +- PCI/ACPI: Move _HPP & _HPX functions to pci-acpi.c + (jsc#SLE-16407). + Refresh + patches.suse/pci-aer-add-pci_aer_raw_clear_status-to-unconditionally-clear-error-status +- PCI/ACPI: Rename _HPX structs from hpp_* to hpx_* + (jsc#SLE-16407). +- PCI: Move ASPM declarations to linux/pci.h (jsc#SLE-16407). + Refresh + patches.suse/r8169-improve-rtl_get_coalesce.patch + patches.suse/mt76-mt76x2e-disable-pcie_aspm-by-default.patch + patches.suse/mt76-fix-include-in-pci.h.patch +- ACPI: thermal: Remove redundant acpi_has_method() calls + (jsc#SLE-16407). +- ACPI: SBS: remove unused const variable 'SMBUS_PEC' + (jsc#SLE-16407). +- ACPI/PCI: Remove surplus parentheses from a return statement + (jsc#SLE-16407). +- HMAT: Register attributes for memory hot add (jsc#SLE-16407). + Refresh + patches.suse/0001-HMAT-Skip-publishing-target-info-for-nodes-with-no-o.patch +- ACPI / APEI: Get rid of NULL_UUID_LE constant (jsc#SLE-16407). + Refresh + patches.suse/ACPI-APEI-Kick-the-memory_failure-queue-for-synchron.patch +- ACPICA: Update version to 20190816 (jsc#SLE-16407). +- ACPICA: Macros: remove pointer math on a null pointer + (jsc#SLE-16407). +- ACPI: PM: Print debug messages on device power state changes + (jsc#SLE-16407). +- PM: sleep: Drop dpm_noirq_begin() and dpm_noirq_end() + (jsc#SLE-16407). +- PM: sleep: Integrate suspend-to-idle with generig suspend flow + (jsc#SLE-16407). +- drivers: Introduce device lookup variants by ACPI_COMPANION + device (jsc#SLE-16407). +- Refresh + patches.suse/drivers-base-implement-dev_enable_async_probe.patch + patches.suse/i2c-acpi-put-device-when-verifying-client-fails.patch +- acpi: Use built-in RCU list checking for acpi_ioremaps list + (jsc#SLE-16407). +- commit 2e42a5c + +- mm,memory_failure: always pin the page in madvise_inject_error + (bsc#1180258). +- commit 7fb306a + +- x86/mm/ident_map: Check for errors from ident_pud_init() + (bsc#1152489). +- commit 37afaed + +- fix patches metadata +- fix Patch-mainline: + patches.suse/IB-isert-Fix-unaligned-immediate-data-handling.patch + patches.suse/IB-mthca-fix-return-value-of-error-branch-in-mthca_i.patch + patches.suse/IB-rdmavt-Fix-sizeof-mismatch.patch + patches.suse/IB-srpt-Fix-memory-leak-in-srpt_add_one.patch + patches.suse/IB-uverbs-Set-IOVA-on-IB-MR-in-uverbs-layer.patch + patches.suse/RDMA-bnxt_re-Do-not-add-user-qps-to-flushlist.patch + patches.suse/RDMA-core-Fix-bogus-WARN_ON-during-ib_unregister_dev.patch + patches.suse/RDMA-core-Fix-reported-speed-and-width.patch + patches.suse/RDMA-core-Fix-return-error-value-in-_ib_modify_qp-to.patch + patches.suse/RDMA-core-Free-DIM-memory-in-error-unwind.patch + patches.suse/RDMA-core-Stop-DIM-before-destroying-CQ.patch + patches.suse/RDMA-counter-Allow-manually-bind-QPs-with-different-.patch + patches.suse/RDMA-counter-Only-bind-user-QPs-in-auto-mode.patch + patches.suse/RDMA-hns-Bugfix-for-memory-window-mtpt-configuration.patch + patches.suse/RDMA-netlink-Remove-CAP_NET_RAW-check-when-dump-a-ra.patch + patches.suse/RDMA-pvrdma-Fix-missing-kfree-in-pvrdma_register_dev.patch + patches.suse/RDMA-qedr-Endianness-warnings-cleanup.patch + patches.suse/RDMA-qedr-Fix-memory-leak-in-iWARP-CM.patch + patches.suse/RDMA-qedr-SRQ-s-bug-fixes.patch + patches.suse/RDMA-rxe-Drop-pointless-checks-in-rxe_init_ports.patch + patches.suse/RDMA-rxe-Fix-memleak-in-rxe_mem_init_user.patch + patches.suse/RDMA-rxe-Fix-skb-lifetime-in-rxe_rcv_mcast_pkt.patch + patches.suse/RDMA-rxe-Fix-the-parent-sysfs-read-when-the-interfac.patch + patches.suse/RDMA-rxe-Handle-skb_clone-failure-in-rxe_recv.c.patch + patches.suse/RDMA-rxe-Prevent-access-to-wr-next-ptr-afrer-wr-is-p.patch + patches.suse/RDMA-rxe-Remove-unused-rxe_mem_map_pages.patch + patches.suse/RDMA-rxe-Return-void-from-rxe_init_port_param.patch + patches.suse/RDMA-rxe-Return-void-from-rxe_mem_init_dma.patch + patches.suse/RDMA-rxe-Skip-dgid-check-in-loopback-mode.patch + patches.suse/RDMA-srpt-Fix-typo-in-srpt_unregister_mad_agent-docs.patch +- commit 2dad798 + +- fix patches metadata +- fix Patch-mainline: + patches.suse/scsi-mpt3sas-add-bypass_dirty_port_flag-parameter + patches.suse/scsi-mpt3sas-add-module-parameter-multipath_on_hba + patches.suse/scsi-mpt3sas-allocate-memory-for-hba_port-objects + patches.suse/scsi-mpt3sas-bump-driver-version-to-35-101-00-00 + patches.suse/scsi-mpt3sas-define-hba_port-structure + patches.suse/scsi-mpt3sas-get-device-objects-using-sas_address-portid + patches.suse/scsi-mpt3sas-get-sas_device-objects-using-device-s-rphy + patches.suse/scsi-mpt3sas-handle-vses-vphy-object-during-hba-reset + patches.suse/scsi-mpt3sas-handling-hba-vses-device + patches.suse/scsi-mpt3sas-rearrange-scsih_mark_responding_sas_device + patches.suse/scsi-mpt3sas-rename-transport_del_phy_from_an_existing_port + patches.suse/scsi-mpt3sas-set-valid-physicalport-in-smppassthrough + patches.suse/scsi-mpt3sas-update-hba_port-objects-after-host-reset + patches.suse/scsi-mpt3sas-update-hba_port-s-sas_address-phy_mask +- commit a2950eb + +- EDAC/i10nm: Use readl() to access MMIO registers (bsc#1152489). +- commit a3a0100 + +- series.conf: cleanup +- update upstream reference and resort: + patches.suse/powerpc-perf-Fix-crash-with-is_sier_available-when-p.patch +- commit adb35a0 + +- samples/bpf: Fix possible hang in xdpsock with multiple threads + (bsc#1177028). +- libbpf: Sanitise map names before pinning (bsc#1177028). +- samples: bpf: Refactor hbm program with libbpf (bsc#1177028). +- tools/bpftool: Fix build slowdown (bsc#1177028). +- bpf: Fix propagation of 32-bit signed bounds from 64-bit bounds + (bsc#1177028). +- selftests/bpf/test_offload.py: Filter bpftool internal map + when counting maps (bsc#1177028). +- selftests/bpf/test_offload.py: Fix expected case of extack + messages (bsc#1177028). +- selftests/bpf/test_offload.py: Only check verifier log on + verification fails (bsc#1177028). +- selftests/bpf/test_offload.py: Remove check for program load + flags match (bsc#1177028). +- xdp: Remove the xdp_attachment_flags_ok() callback + (bsc#1177028). +- tools/bpftool: Fix PID fetching with a lot of results + (bsc#1177028). +- selftests/bpf: Drain ringbuf samples at the end of test + (bsc#1177028). +- libbpf: Fix ring_buffer__poll() to return number of consumed + samples (bsc#1177028). +- commit fa84f47 + +- series.conf: refresh +- update upstream references and resort: + patches.suse/arm64-force-no_block_mappings-if-crashkernel-reservation-is-required.patch. + patches.suse/arm64-ignore-any-dma-offsets-in-the-max_zone_phys-calculation.patch. + patches.suse/arm64-mm-move-reserve_crashkernel-into-mem_init.patch. + patches.suse/arm64-mm-move-zone_dma_bits-initialization-into-zone_sizes_init.patch. + patches.suse/arm64-mm-set-zone_dma-size-based-on-devicetree-s-dma-ranges.patch. + patches.suse/arm64-mm-set-zone_dma-size-based-on-early-iort-scan.patch. + patches.suse/ibmvnic-Clean-up-TX-code-and-TX-buffer-data-structur.patch. + patches.suse/ibmvnic-Correctly-re-enable-interrupts-in-NAPI-polli.patch. + patches.suse/ibmvnic-Do-not-replenish-RX-buffers-after-every-poll.patch. + patches.suse/ibmvnic-Ensure-that-device-queue-memory-is-cache-lin.patch. + patches.suse/ibmvnic-Introduce-batched-RX-buffer-descriptor-trans.patch. + patches.suse/ibmvnic-Introduce-indirect-subordinate-Command-Respo.patch. + patches.suse/ibmvnic-Introduce-xmit_more-support-using-batched-su.patch. + patches.suse/ibmvnic-Remove-send_subcrq-function.patch. + patches.suse/ibmvnic-Use-netdev_alloc_skb-instead-of-alloc_skb-to.patch. + patches.suse/ibmvnic-fix-rx-buffer-tracking-and-index-management-.patch. + patches.suse/net-smc-improve-return-codes-for-smc-dv2. + patches.suse/of-address-introduce-of_dma_get_max_cpu_address.patch. + patches.suse/powerpc-perf-Add-generic-and-cache-event-list-for-po.patch. + patches.suse/powerpc-perf-Add-new-power-PMU-flag-PPMU_P10_DD1-for.patch. + patches.suse/powerpc-perf-Drop-the-check-for-SIAR_VALID.patch. + patches.suse/powerpc-perf-Fix-crash-with-is_sier_available-when-p.patch. + patches.suse/powerpc-perf-Fix-the-PMU-group-constraints-for-thres.patch. + patches.suse/powerpc-perf-Fix-to-update-cache-events-with-l2l3-ev.patch. + patches.suse/powerpc-perf-Fix-to-update-generic-event-codes-for-p.patch. + patches.suse/powerpc-perf-Fix-to-update-radix_scope_qual-in-power.patch. + patches.suse/powerpc-perf-Invoke-per-CPU-variable-access-with-dis.patch. + patches.suse/powerpc-perf-MMCR0-control-for-PMU-registers-under-P.patch. + patches.suse/powerpc-perf-Update-the-PMU-group-constraints-for-l2.patch. + patches.suse/powerpc-perf-Use-regs-nip-when-SIAR-is-zero.patch. + patches.suse/powerpc-perf-Use-the-address-from-SIAR-register-to-s.patch. + patches.suse/s390-sles15sp3-03-01-s390-cio-Export-information-about-Endpoint-Security-.patch. + patches.suse/s390-sles15sp3-03-02-s390-cio-Provide-Endpoint-Security-Mode-per-CU.patch. + patches.suse/s390-sles15sp3-03-03-s390-cio-Add-support-for-FCES-status-notification.patch. + patches.suse/s390-sles15sp3-03-04-s390-dasd-Remove-unused-parameter-from-dasd_generic_.patch. + patches.suse/s390-sles15sp3-03-05-s390-dasd-Move-duplicate-code-to-separate-function.patch. + patches.suse/s390-sles15sp3-03-06-s390-dasd-Store-path-configuration-data-during-path-.patch. + patches.suse/s390-sles15sp3-03-07-s390-dasd-Fix-operational-path-inconsistency.patch. + patches.suse/s390-sles15sp3-03-08-s390-dasd-Display-FC-Endpoint-Security-information-v.patch. + patches.suse/s390-sles15sp3-03-09-s390-dasd-Prepare-for-additional-path-event-handling.patch. + patches.suse/s390-sles15sp3-03-10-s390-dasd-Process-FCES-path-event-notification.patch. + patches.suse/scsi-fnic-avoid-looping-in-trans-eth-on-unload. + patches.suse/scsi-fnic-change-shost_printk-to-fnic_fcs_dbg. + patches.suse/scsi-fnic-change-shost_printk-to-fnic_main_dbg. + patches.suse/scsi-fnic-set-scsi_set_resid-only-for-underflow. + patches.suse/scsi-fnic-validate-io_req-before-others. +- commit 41ceac4 + +- rtc: pcf2127: fix pcf2127_nvmem_read/write() returns + (git-fixes). +- commit fe3d756 + +- rtc: ep93xx: Fix NULL pointer dereference in + ep93xx_rtc_read_time (git-fixes). +- rtc: hym8563: enable wakeup when applicable (git-fixes). +- commit 52e449a + +- pwm: imx27: Fix overflow for bigger periods (git-fixes). +- firmware: tegra: fix strncpy()/strncat() confusion (git-fixes). +- mtd: spi-nor: ignore errors in spi_nor_unlock_all() (git-fixes). +- mtd: spi-nor: sst: fix BPn bits for the SST25VF064C (git-fixes). +- iwlwifi: sta: set max HE max A-MPDU according to HE capa + (git-fixes). +- commit 48bc7b1 + +- power: supply: bq24190_charger: fix reference leak (git-fixes). +- power: supply: axp288_charger: Fix HP Pavilion x2 10 DMI + matching (git-fixes). +- HSI: omap_ssi: Don't jump to free ID in ssi_add_controller() + (git-fixes). +- pwm: lp3943: Dynamically allocate PWM chip base (git-fixes). +- pwm: zx: Add missing cleanup in error path (git-fixes). +- commit 22a0fb4 + +- Fixed 14 mpt3sas patches, now upstream (jsc#SLE-16914, bsc#1177733) + Should be no functional change, bu the patches are updated + with commit ID, and moved to the proper place in series.conf. +- commit eef3811 + +- scsi: core: Fix VPD LUN ID designator priorities (bsc#1178049). +- commit efdf30e + +- spi: spi-nxp-fspi: fix fspi panic by unexpected interrupts + (bsc#1180214). +- rtc: pcf2127: fix a bug when not specify interrupts property + (bsc#1180214). +- rtc: fsl-ftm-alarm: update acpi device id (bsc#1180214). +- ahci: qoriq: enable acpi support in qoriq ahci driver + (bsc#1180214). +- spi: spi-nxp-fspi: Add ACPI support (bsc#1180214). +- commit 8759723 + +- supported.conf: Declare qat4xxx supported externally by Intel +- commit b7913fb + +- scsi: mpt3sas: Bump driver version to 35.101.00.00 + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Add module parameter multipath_on_hba + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Handle vSES vphy object during HBA reset + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Add bypass_dirty_port_flag parameter + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Handling HBA vSES device (jsc#SLE-16914, + bsc#1177733). +- scsi: mpt3sas: Set valid PhysicalPort in SMPPassThrough + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Update hba_port objects after host reset + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Get sas_device objects using device's rphy + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Rename transport_del_phy_from_an_existing_port() + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Get device objects using sas_address & portID + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Update hba_port's sas_address & phy_mask + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Rearrange _scsih_mark_responding_sas_device() + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Allocate memory for hba_port objects + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Define hba_port structure (jsc#SLE-16914, + bsc#1177733). +- scsi: mpt3sas: A small correction in _base_process_reply_queue + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Fix sync irqs (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Detect tampered Aero and Sea adapters + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Remove pci-dma-compat wrapper API (jsc#SLE-16914, + bsc#1177733). +- scsi: mpt3sas: Remove superfluous memset() (jsc#SLE-16914, + bsc#1177733). +- scsi: mpt3sas: Update driver version to 35.100.00.00 + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Postprocessing of target and LUN reset + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Add functions to check if any cmd is outstanding + on Target and LUN (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Rename and export interrupt mask/unmask functions + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Cancel the running work during host reset + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Dump system registers for debugging + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Memset config_cmds.reply buffer with zeros + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Don't call disable_irq from IRQ poll handler + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Fix set but unused variable (jsc#SLE-16914, + bsc#1177733). +- scsi: mpt3sas: Fix error returns in BRM_status_show + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Fix unlock imbalance (jsc#SLE-16914, + bsc#1177733). +- scsi: mpt3sas: Fix memset() in non-RDPQ mode (jsc#SLE-16914, + bsc#1177733). +- scsi: mpt3sas: Fix reply queue count in non RDPQ mode + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Fix double free warnings (jsc#SLE-16914, + bsc#1177733). +- scsi: mpt3sas: Disable DIF when prot_mask set to zero + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Capture IOC data for debugging purposes + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Use true, false for ioc->use_32bit_dma + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Remove NULL check before freeing function + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Update mpt3sas version to 33.101.00.00 + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Handle RDPQ DMA allocation in same 4G region + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Separate out RDPQ allocation to new function + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Rename function name is_MSB_are_same + (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: Don't change the DMA coherent mask after + allocations (jsc#SLE-16914, bsc#1177733). +- scsi: mpt3sas: use true,false for bool variables (jsc#SLE-16914, + bsc#1177733). +- commit 5bf7889 + +- crypto: qat - add capability detection logic in qat_4xxx + (jsc#SLE-14454). +- commit 83336e3 + +- crypto: qat - add AES-XTS support for QAT GEN4 devices + (jsc#SLE-14454). +- Refresh patches.suse/QAT-add-suse_kabi_padding.patch. +- commit 3755a1e + +- crypto: qat - add AES-CTR support for QAT GEN4 devices + (jsc#SLE-14454). +- commit 5393983 + +- crypto: qat - fix excluded_middle.cocci warnings + (jsc#SLE-14454). +- commit a62bf18 + +- tracing: Fix race in trace_open and buffer resize call + (CVE-2020-27825 bsc#1179960). +- commit c590ed4 + +- ring-buffer: speed up buffer resets by avoiding synchronize_rcu + for each CPU (CVE-2020-27825 bsc#1179960). +- commit d308278 + +- ring-buffer: Make resize disable per cpu buffer instead of + total buffer (CVE-2020-27825 bsc#1179960). +- commit 95e9004 + +- crypto: qat - add gen4 firmware loader (jsc#SLE-14454). +- commit 9d44e54 + +- Drop a backported uvcvideo patch that caused a regression (bsc#1180117) + Also blacklisting the commit +- commit b185b93 + +- blacklist.conf: Remove temporary drm path blacklist +- commit f037d4c + +- crypto: qat - add qat_4xxx driver (jsc#SLE-14454). + Update config files. +- commit 8df8685 + +- crypto: s390/sha1 - prefix the "sha1_" functions + (jsc#SLE-14454). +- commit aad706f + +- crypto: qat - add hook to initialize vector routing table + (jsc#SLE-14454). +- commit 21c4c5c + +- x86/resctrl: Fix incorrect local bandwidth when mba_sc is + enabled (bsc#1152489). +- x86/resctrl: Remove unused struct mbm_state::chunks_bw + (bsc#1152489). +- commit b4996a1 + +- crypto: powerpc/sha1 - prefix the "sha1_" functions + (jsc#SLE-14454). +- commit 7a8e9d4 + +- nvmet-fc: fix missing check for no hostport struct + (bsc#1176942). +- commit 7fab8fc + +- scsi: qla2xxx: Update version to 10.02.00.104-k (bsc#1171688 + bsc#1172733). +- scsi: qla2xxx: Fix device loss on 4G and older HBAs (bsc#1171688 + bsc#1172733). +- scsi: qla2xxx: If fcport is undergoing deletion complete I/O + with retry (bsc#1171688 bsc#1172733). +- scsi: qla2xxx: Fix the call trace for flush workqueue + (bsc#1171688 bsc#1172733). +- scsi: qla2xxx: Fix flash update in 28XX adapters on big endian + machines (bsc#1171688 bsc#1172733). +- scsi: qla2xxx: Handle aborts correctly for port undergoing + deletion (bsc#1171688 bsc#1172733). +- scsi: qla2xxx: Fix N2N and NVMe connect retry failure + (bsc#1171688 bsc#1172733). +- scsi: qla2xxx: Fix FW initialization error on big endian + machines (bsc#1171688 bsc#1172733). +- scsi: qla2xxx: Fix crash during driver load on big endian + machines (bsc#1171688 bsc#1172733). +- scsi: qla2xxx: Fix compilation issue in PPC systems (bsc#1171688 + bsc#1172733). +- scsi: qla2xxx: Don't check for fw_started while posting NVMe + command (bsc#1171688 bsc#1172733). +- scsi: qla2xxx: Tear down session if FW say it is down + (bsc#1171688 bsc#1172733). +- scsi: qla2xxx: Limit interrupt vectors to number of CPUs + (bsc#1171688 bsc#1172733). +- scsi: qla2xxx: Change post del message from debug level to + log level (bsc#1171688 bsc#1172733). +- scsi: qla2xxx: Remove in_interrupt() from qla83xx-specific code + (bsc#1171688 bsc#1172733). +- scsi: target: tcm_qla2xxx: Remove BUG_ON(in_interrupt()) + (bsc#1171688 bsc#1172733). +- scsi: qla2xxx: Remove in_interrupt() from qla82xx-specific code + (bsc#1171688 bsc#1172733). +- commit 298833c + +- crypto: qat - target fw images to specific AEs (jsc#SLE-14454). +- commit e7e8777 + +- scsi: qla2xxx: Move sess cmd list/lock to driver (bsc#1171688 + bsc#1172733). +- scsi: qla2xxx: Drop TARGET_SCF_LOOKUP_LUN_FROM_TAG (bsc#1171688 + bsc#1172733). +- scsi: qla2xxx: Return EBUSY on fcport deletion (bsc#1171688 + bsc#1172733). + Replace patches.suse/qla2xxx-return-ebusy-on-fcport-deletion.patch + with upstream version. +- scsi: qla2xxx: remove incorrect sparse #ifdef (bsc#1171688 + bsc#1172733). +- scsi: qla2xxx: Fix return of uninitialized value in rval + (bsc#1171688 bsc#1172733). +- scsi: qla2xxx: Convert to DEFINE_SHOW_ATTRIBUTE (bsc#1171688 + bsc#1172733). +- scsi: qla2xxx: Initialize variable in qla8044_poll_reg() + (bsc#1171688 bsc#1172733). +- scsi: qla2xxx: Do not consume srb greedily (bsc#1171688 + bsc#1172733). +- scsi: qla2xxx: Handle incorrect entry_type entries (bsc#1171688 + bsc#1172733). +- commit 3c29fc6 + +- x86/mm/mem_encrypt: Fix definition of PMD_FLAGS_DEC_WP + (bsc#1152489). +- commit 994c3ae + +- scsi: qla2xxx: Use constant when it is known (bsc#1171688 + bsc#1172733). + Refresh: + - patches.suse/qla2xxx-return-ebusy-on-fcport-deletion.patch +- commit cfc1ae5 + +- crypto: sha - split sha.h into sha1.h and sha2.h + (jsc#SLE-14454). +- Refresh + patches.suse/add-product-identifying-information-to-vmcoreinfo.patch. +- commit 8180f5f + +- scsi: lpfc: Fix fall-through warnings for Clang (bsc#1175480 + bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Correct null ndlp reference on routine exit + (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Use generic power management (bsc#1175480 + bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Fix variable 'vport' set but not used in + lpfc_sli4_abts_err_handler() (bsc#1175480 bsc#1176396 + bsc#1176942 bsc#1177500). +- scsi: lpfc: Fix missing prototype for + lpfc_nvmet_prep_abort_wqe() (bsc#1175480 bsc#1176396 bsc#1176942 + bsc#1177500). +- scsi: lpfc: Fix set but unused variables + in lpfc_dev_loss_tmo_handler() (bsc#1175480 bsc#1176396 + bsc#1176942 bsc#1177500). +- scsi: lpfc: Fix set but not used warnings from Rework remote + port lock handling (bsc#1175480 bsc#1176396 bsc#1176942 + bsc#1177500). +- scsi: lpfc: Fix missing prototype warning for + lpfc_fdmi_vendor_attr_mi() (bsc#1175480 bsc#1176396 bsc#1176942 + bsc#1177500). +- scsi: lpfc: Fix memory leak on lcb_context (bsc#1175480 + bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Remove dead code on second !ndlp check (bsc#1175480 + bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Fix pointer defereference before it is null checked + issue (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Update changed file copyrights for 2020 (bsc#1175480 + bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Update lpfc version to 12.8.0.6 (bsc#1175480 + bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Convert abort handling to SLI-3 and SLI-4 handlers + (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Convert SCSI I/O completions to SLI-3 and SLI-4 + handlers (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Convert SCSI path to use common I/O submission path + (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Enable common send_io interface for SCSI and NVMe + (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Enable common wqe_template support for both SCSI + and NVMe (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Refactor WQE structure definitions for common use + (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Fix NPIV Fabric Node reference counting (bsc#1175480 + bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Fix NPIV discovery and Fabric Node detection + (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Unsolicited ELS leaves node in incorrect state while + dropping it (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Remove ndlp when a PLOGI/ADISC/PRLI/REG_RPI + ultimately fails (bsc#1175480 bsc#1176396 bsc#1176942 + bsc#1177500). +- scsi: lpfc: Rework remote port lock handling (bsc#1175480 + bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Fix refcounting around SCSI and NVMe transport APIs + (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Fix removal of SCSI transport device get and put on + dev structure (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Rework locations of ndlp reference taking + (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Rework remote port ref counting and node freeing + (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: lpfc_nvmet: Fix-up some formatting and doc-rot + issues (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: lpfc_nvme: Fix some kernel-doc related issues + (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: lpfc_nvme: Remove unused variable 'phba' + (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: lpfc_bsg: Provide correct documentation for a bunch + of functions (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: lpfc_debugfs: Fix a couple of function documentation + issues (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: lpfc_attr: Fix-up a bunch of kernel-doc + misdemeanours (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: lpfc_attr: Demote kernel-doc format for redefined + functions (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: lpfc_scsi: Fix a whole host of kernel-doc issues + (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Update lpfc version to 12.8.0.5 (bsc#1175480 + bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Reject CT request for MIB commands (bsc#1175480 + bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Add FDMI Vendor MIB support (bsc#1175480 bsc#1176396 + bsc#1176942 bsc#1177500). +- scsi: lpfc: Enlarge max_sectors in scsi host templates + (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Fix duplicate wq_create_version check (bsc#1175480 + bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Removed unused macros in lpfc_attr.c (bsc#1175480 + bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Re-fix use after free in lpfc_rq_buf_free() + (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Fix scheduling call while in softirq context + in lpfc_unreg_rpi (bsc#1175480 bsc#1176396 bsc#1176942 + bsc#1177500). +- scsi: lpfc: Fix invalid sleeping context in + lpfc_sli4_nvmet_alloc() (bsc#1175480 bsc#1176396 bsc#1176942 + bsc#1177500). +- scsi: Remove unneeded break statements (bsc#1175480 bsc#1176396 + bsc#1176942 bsc#1177500). +- scsi: lpfc: Remove unneeded variable 'status' in + lpfc_fcp_cpu_map_store() (bsc#1175480 bsc#1176396 bsc#1176942 + bsc#1177500). +- scsi: lpfc: Drop nodelist reference on error in lpfc_gen_req() + (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Remove set but not used 'qp' (bsc#1175480 + bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Fix spelling mistake "Cant" -> "Can't" (bsc#1175480 + bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Fix initial FLOGI failure due to BBSCN not supported + (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Update lpfc version to 12.8.0.4 (bsc#1175480 + bsc#1176396 bsc#1176942 bsc#1177500). +- scsi: lpfc: Extend the RDF FPIN Registration descriptor + for additional events (bsc#1175480 bsc#1176396 bsc#1176942 + bsc#1177500). +- scsi: lpfc: Fix FLOGI/PLOGI receive race condition in pt2pt + discovery (bsc#1175480 bsc#1176396 bsc#1176942 bsc#1177500). +- commit 6c7ebde + +- soc: amlogic: canvas: add missing put_device() call in + meson_canvas_get() (git-fixes). +- drivers: soc: ti: knav_qmss_queue: Fix error return code in + knav_queue_probe (git-fixes). +- soc: ti: Fix reference imbalance in knav_dma_probe (git-fixes). +- soc: ti: knav_qmss: fix reference leak in knav_queue_probe + (git-fixes). +- soc: qcom: smp2p: Safely acquire spinlock without IRQs + (git-fixes). +- soc: mediatek: Check if power domains can be powered on at + boot time (git-fixes). +- soc/tegra: fuse: Fix index bug in get_process_id (git-fixes). +- soc: renesas: rmobile-sysc: Fix some leaks in + rmobile_init_pm_domains() (git-fixes). +- soc: fsl: dpio: Get the cpumask through cpumask_of(cpu) + (git-fixes). +- spi: spi-nxp-fspi: fix fspi panic by unexpected interrupts + (git-fixes). +- commit 37de46f + +- platform/x86: intel-vbtn: Support for tablet mode on HP Pavilion + 13 x360 PC (git-fixes). +- Refresh + patches.suse/platform-x86-intel-vbtn-Allow-switch-events-on-Acer-.patch. +- commit b789099 + +- pinctrl: falcon: add missing put_device() call in + pinctrl_falcon_probe() (git-fixes). +- mtd: rawnand: gpmi: Fix the random DMA timeout issue + (git-fixes). +- mtd: rawnand: meson: Fix a resource leak in init (git-fixes). +- pinctrl: amd: remove debounce filter setting in IRQ type setting + (git-fixes). +- platform/x86: touchscreen_dmi: Add info for the Irbis TW118 + tablet (git-fixes). +- platform/x86: acer-wmi: add automatic keyboard background + light toggle key as KEY_LIGHTS_TOGGLE (git-fixes). +- platform/x86: thinkpad_acpi: Add BAT1 is primary battery quirk + for Thinkpad Yoga 11e 4th gen (git-fixes). +- platform/x86: thinkpad_acpi: Do not report SW_TABLET_MODE on + Yoga 11e (git-fixes). +- commit 3fd302b + +- mtd: rawnand: gpmi: fix reference count leak in gpmi ops + (git-fixes). +- mtd: rawnand: meson: fix meson_nfc_dma_buffer_release() + arguments (git-fixes). +- mtd: rawnand: qcom: Fix DMA sync on FLASH_STATUS register read + (git-fixes). +- mtd: spinand: Fix OOB read (git-fixes). +- mfd: rt5033: Fix errorneous defines (git-fixes). +- Input: cm109 - do not stomp on control URB (git-fixes). +- Input: i8042 - add Acer laptops to the i8042 reset list + (git-fixes). +- iwlwifi: mvm: fix kernel panic in case of assert during CSA + (git-fixes). +- iwlwifi: pcie: limit memory read spin time (git-fixes). +- commit d3789b9 + +- series.conf: refresh +- update upstream references and resort: + patches.suse/scsi-fnic-avoid-looping-in-trans-eth-on-unload + patches.suse/scsi-fnic-change-shost_printk-to-fnic_fcs_dbg + patches.suse/scsi-fnic-change-shost_printk-to-fnic_main_dbg + patches.suse/scsi-fnic-set-scsi_set_resid-only-for-underflow + patches.suse/scsi-fnic-validate-io_req-before-others +- commit 3190615 + +- series.conf: refresh +- update upstream reference and resort: + patches.suse/ibmvnic-add-some-debugs.patch +- commit 5542884 + +- fix regression in "epoll: Keep a reference on files added to the check list" (bsc#1180031, git-fixes). +- commit 775fe31 + +- crypto: qat - add support for broadcasting mode (jsc#SLE-14454). +- commit 3eb975b + +- crypto: qat - add support for shared ustore (jsc#SLE-14454). +- commit 8208824 + +- crypto: qat - allow to target specific AEs (jsc#SLE-14454). +- commit 95c0bc6 + +- crypto: qat - add FCU CSRs to chip info (jsc#SLE-14454). +- commit cced259 + +- crypto: qat - add CSS3K support (jsc#SLE-14454). +- commit 5745db4 + +- crypto: qat - use ae_mask (jsc#SLE-14454). +- commit 8f00dce + +- crypto: qat - add check for null pointer (jsc#SLE-14454). +- crypto: qat - add misc control CSR to chip info (jsc#SLE-14454). +- crypto: qat - add wake up event to chip info (jsc#SLE-14454). +- commit 5b4f1a7 + +- crypto: qat - add clock enable CSR to chip info (jsc#SLE-14454). +- commit 0a0ceac + +- crypto: qat - add reset CSR and mask to chip info + (jsc#SLE-14454). +- crypto: qat - add local memory size to chip info + (jsc#SLE-14454). +- commit 668485e + +- crypto: qat - add support for lm2 and lm3 (jsc#SLE-14454). +- commit 7ae2a53 + +- crypto: qat - add next neighbor to chip_info (jsc#SLE-14454). +- crypto: qat - replace check based on DID (jsc#SLE-14454). +- commit 5d786df + +- crypto: qat - introduce chip info structure (jsc#SLE-14454). +- crypto: qat - refactor long expressions (jsc#SLE-14454). +- commit 417a900 + +- crypto: qat - refactor qat_uclo_set_ae_mode() (jsc#SLE-14454). +- commit a769fdf + +- crypto: qat - move defines to header files (jsc#SLE-14454). +- commit 316c7a5 + +- crypto: qat - remove global CSRs helpers (jsc#SLE-14454). +- commit 4eedc22 + +- crypto: qat - refactor AE start (jsc#SLE-14454). +- commit 20a1098 + +- crypto: qat - change micro word data mask (jsc#SLE-14454). +- crypto: qat - change type for ctx_mask (jsc#SLE-14454). +- crypto: qat - add support for relative FW ucode loading + (jsc#SLE-14454). +- commit d529f37 + +- crypto: qat - rename qat_uclo_del_uof_obj() (jsc#SLE-14454). +- commit 67574e7 + +- crypto: qat - introduce additional parenthesis (jsc#SLE-14454). +- commit 755a426 + +- crypto: qat - remove unnecessary parenthesis (jsc#SLE-14454). +- commit 4966907 + +- crypto: qat - fix error message (jsc#SLE-14454). +- crypto: qat - fix CSR access (jsc#SLE-14454). +- commit 9206fc3 + +- crypto: qat - support for mof format in fw loader + (jsc#SLE-14454). +- crypto: qat - replace pci with PCI in comments (jsc#SLE-14454). +- commit 9c9c3c5 + +- crypto: qat - remove cast for mailbox CSR (jsc#SLE-14454). +- commit 62896ad + +- crypto: qat - remove unneeded semicolon (jsc#SLE-14454). +- commit 9e0b68a + +- crypto: qat - extend ae_mask (jsc#SLE-14454). +- commit e36c762 + +- crypto: qat - allow for instances in different banks + (jsc#SLE-14454). +- commit d74dd80 + +- crypto: qat - refactor qat_crypto_dev_config() (jsc#SLE-14454). +- commit 7b787fc + +- crypto: qat - refactor qat_crypto_create_instances() + (jsc#SLE-14454). +- commit d0bcaed + +- crypto: qat - change return value in adf_cfg_key_val_get() + (jsc#SLE-14454). +- commit f698585 + +- crypto: qat - change return value in + adf_cfg_add_key_value_param() (jsc#SLE-14454). +- commit 707ca4a + +- crypto: qat - remove unnecessary void* casts (jsc#SLE-14454). +- commit 428b2be + +- crypto: qat - call functions in adf_sriov if available + (jsc#SLE-14454). +- commit 56a083b + +- crypto: qat - remove hardcoded bank irq clear flag mask + (jsc#SLE-14454). +- commit 87975f0 + +- crypto: qat - abstract writes to arbiter enable (jsc#SLE-14454). +- commit c2673fd + +- crypto: qat - use BIT_ULL() - 1 pattern for masks + (jsc#SLE-14454). +- commit 4e50301 + +- crypto: qat - replace constant masks with GENMASK + (jsc#SLE-14454). +- commit ace21f7 + +- crypto: qat - abstract build ring base (jsc#SLE-14454). +- commit 45f06e6 + +- crypto: qat - enable ring after pair is programmed + (jsc#SLE-14454). +- commit 876666b + +- crypto: qat - register crypto instances based on capability + (jsc#SLE-14454). +- Refresh patches.suse/QAT-add-suse_kabi_padding.patch. +- commit f62a6a6 + +- crypto: qat - add support for capability detection + (jsc#SLE-14454). +- commit f5cb13a + +- RDMA/srpt: Fix typo in srpt_unregister_mad_agent docstring (bsc#1152489) +- commit b808e1d + +- RDMA/rxe: Handle skb_clone() failure in rxe_recv.c (bsc#1152489) +- commit ad662c6 + +- RDMA/qedr: Endianness warnings cleanup (bsc#1152489) +- commit c3cca6a + +- crypto: qat - abstract arbiter access (jsc#SLE-14454). +- commit 8234ef6 + +- crypto: qat - remove unused macros in arbiter module + (jsc#SLE-14454). +- commit ace40aa + +- crypto: qat - remove writes into WQCFG (jsc#SLE-14454). +- commit 1f08531 + +- crypto: qat - update constants table (jsc#SLE-14454). +- commit 42213a3 + +- crypto: qat - use admin mask to send fw constants + (jsc#SLE-14454). +- commit 82fccc5 + +- crypto: qat - change admin sequence (jsc#SLE-14454). +- crypto: qat - rename ME in AE (jsc#SLE-14454). +- commit 3b63177 + +- do_epoll_ctl(): clean the failure exits up a bit + (bsc#1180031,CVE-2020-0466). +- epoll: Keep a reference on files added to the check list + (bsc#1180031). +- commit 5e9b787 + +- blacklist.conf: bcee52789588 ("tracing: Fix userstacktrace option for instances") + The kernel is missing many prerequisities. It is not worth it as it is. +- commit e39f16a + +- Update patch reference for wireless fix (CVE-2020-27068 bsc#1180086) +- commit 170f743 + +- platform/x86: mlx-platform: Fix item counter assignment for + MSN2700/ComEx system (git-fixes). +- mmc: sdhci: tegra: fix wrong unit with busy_timeout (git-fixes). +- spi: imx: fix reference leak in two imx operations (git-fixes). +- driver: core: Fix list corruption after device_del() + (git-fixes). +- iwlwifi: dbg-tlv: fix old length in is_trig_data_contained() + (git-fixes). +- mt76: mt7615: fix rdd mcu cmd endianness (git-fixes). +- mt76: mt7915: fix endian issues (git-fixes). +- mt76: fix tkip configuration for mt7615/7663 devices + (git-fixes). +- mt76: fix memory leak if device probing fails (git-fixes). +- mt76: mt7915: fix sparse warning cast from restricted __le16 + (git-fixes). +- mt76: set fops_tx_stats.owner to THIS_MODULE (git-fixes). +- mt76: mt7915: set fops_sta_stats.owner to THIS_MODULE + (git-fixes). +- mt76: add back the SUPPORTS_REORDERING_BUFFER flag (git-fixes). +- Bluetooth: btusb: Fix detection of some fake CSR controllers + with a bcdDevice val of 0x0134 (git-fixes). +- Bluetooth: Fix: LL PRivacy BLE device fails to connect + (git-fixes). +- brcmfmac: fix error return code in brcmf_cfg80211_connect() + (git-fixes). +- brcmfmac: Fix memory leak for unpaired brcmf_{alloc/free} + (git-fixes). +- rtw88: remove extraneous 'const' qualifier (git-fixes). +- drm/doc: Document that modifiers are always required for fb + (git-fixes). +- netdevsim: Add debugfs toggle to reject BPF programs in verifier + (git-fixes). +- commit 3b2d7b6 + +- platform/x86: mlx-platform: remove an unused variable + (git-fixes). +- USB: serial: option: add interface-number sanity check to flag + handling (git-fixes). +- commit bff4f99 + +- USB: serial: mos7720: fix parallel-port state restore + (git-fixes). +- xhci-pci: Allow host runtime PM as default for Intel Alpine + Ridge LP (git-fixes). +- commit f265436 + +- USB: serial: digi_acceleport: fix write-wakeup deadlocks + (git-fixes). +- USB: serial: keyspan_pda: fix write unthrottling (git-fixes). +- USB: serial: keyspan_pda: fix tx-unthrottle use-after-free + (git-fixes). +- USB: serial: keyspan_pda: fix write-wakeup use-after-free + (git-fixes). +- USB: serial: keyspan_pda: fix stalled writes (git-fixes). +- USB: serial: keyspan_pda: fix write deadlock (git-fixes). +- USB: serial: keyspan_pda: fix dropped unthrottle interrupts + (git-fixes). +- usb: oxu210hp-hcd: Fix memory leak in oxu_create (git-fixes). +- usb: ehci-omap: Fix PM disable depth umbalance in + ehci_hcd_omap_probe (git-fixes). +- usb: mtu3: fix memory corruption in mtu3_debugfs_regset() + (git-fixes). +- commit 7596d48 + +- spi: atmel-quadspi: Fix AHB memory accesses (git-fixes). +- spi: mt7621: Disable clock in probe error path (git-fixes). +- usb: chipidea: ci_hdrc_imx: Pass DISABLE_DEVICE_STREAMING flag + to imx6ul (git-fixes). +- usb/max3421: fix return error code in max3421_probe() + (git-fixes). +- commit 6c576b3 + +- spi: davinci: Fix use-after-free on unbind (git-fixes). +- spi: fix resource leak for drivers without .remove callback + (git-fixes). +- spi: mxs: fix reference leak in mxs_spi_probe (git-fixes). +- spi: st-ssc4: Fix unbalanced pm_runtime_disable() in probe + error path (git-fixes). +- spi: pic32: Don't leak DMA channels in probe error path + (git-fixes). +- spi: synquacer: Disable clock in probe error path (git-fixes). +- wimax: fix duplicate initializer warning (git-fixes). +- commit 51e204b + +- spi: sprd: fix reference leak in sprd_spi_remove (git-fixes). +- spi: atmel-quadspi: Disable clock in probe error path + (git-fixes). +- spi: bcm63xx-hsspi: fix missing clk_disable_unprepare() on + error in bcm63xx_hsspi_resume (git-fixes). +- spi: tegra114: fix reference leak in tegra spi ops (git-fixes). +- spi: tegra20-sflash: fix reference leak in tegra_sflash_resume + (git-fixes). +- spi: tegra20-slink: fix reference leak in slink ops of tegra20 + (git-fixes). +- spi: mt7621: fix missing clk_disable_unprepare() on error in + mt7621_spi_probe (git-fixes). +- spi: spi-ti-qspi: fix reference leak in ti_qspi_setup + (git-fixes). +- spi: stm32: fix reference leak in stm32_spi_resume (git-fixes). +- spi: spi-mem: fix reference leak in spi_mem_access_start + (git-fixes). +- commit 51236be + +- soc: qcom: geni: More properly switch to DMA mode (git-fixes). +- spi: spi-mem: Fix passing zero to 'PTR_ERR' warning (git-fixes). +- spi: img-spfi: fix reference leak in img_spfi_resume + (git-fixes). +- regulator: mcp16502: add linear_min_sel (git-fixes). +- regulator: axp20x: Fix DLDO2 voltage control register mask + for AXP22x (git-fixes). +- speakup: fix uninitialized flush_lock (git-fixes). +- slimbus: qcom-ngd-ctrl: Avoid sending power requests without + QMI (git-fixes). +- serial: 8250_omap: Avoid FIFO corruption caused by MDR1 access + (git-fixes). +- rsi: fix error return code in rsi_reset_card() (git-fixes). +- commit 8a400aa + +- crypto: qat - add packed to init admin structures + (jsc#SLE-14454). +- commit bffc702 + +- PCI: iproc: Fix out-of-bound array accesses (git-fixes). +- platform/x86: mlx-platform: Fix item counter assignment for + MSN2700, MSN24xx systems (git-fixes). +- platform/x86: dell-smbios-base: Fix error return code in + dell_smbios_init (git-fixes). +- platform/x86: intel-vbtn: Allow switch events on Acer Switch + Alpha 12 (git-fixes). +- platform/x86: mlx-platform: Remove PSU EEPROM from MSN274x + platform configuration (git-fixes). +- platform/x86: mlx-platform: Remove PSU EEPROM from default + platform configuration (git-fixes). +- Revert "platform/x86: wmi: Destroy on cleanup rather than + unregister" (git-fixes). +- platform/chrome: cros_ec_spi: Don't overwrite spi::mode + (git-fixes). +- regmap: Remove duplicate `type` field from regmap + `regcache_sync` trace event (git-fixes). +- qtnfmac: fix error return code in qtnf_pcie_probe() (git-fixes). +- commit 4690027 + +- crypto: qat - abstract admin interface (jsc#SLE-14454). +- commit 10773c4 + +- PCI: brcmstb: Initialize "tmp" before use (git-fixes). +- PCI: Fix pci_slot_release() NULL pointer dereference + (git-fixes). +- memstick: r592: Fix error return in r592_probe() (git-fixes). +- mmc: pxamci: Fix error return code in pxamci_probe (git-fixes). +- memstick: fix a double-free bug in memstick_check (git-fixes). +- staging: olpc_dcon: Do not call platform_device_unregister() + in dcon_probe() (git-fixes). +- nfc: s3fwrn5: Release the nfc firmware (git-fixes). +- orinoco: Move context allocation after processing the skb + (git-fixes). +- mwifiex: fix mwifiex_shutdown_sw() causing sw reset failure + (git-fixes). +- commit e021aed + +- Input: cyapa_gen6 - fix out-of-bounds stack access (git-fixes). +- Input: omap4-keypad - fix runtime PM error handling (git-fixes). +- Input: ads7846 - fix unaligned access on 7845 (git-fixes). +- Input: ads7846 - fix integer overflow on Rt calculation + (git-fixes). +- Input: ads7846 - fix race that causes missing releases + (git-fixes). +- iio: adc: rockchip_saradc: fix missing clk_disable_unprepare() + on error in rockchip_saradc_resume (git-fixes). +- iio:adc:ti-ads124s08: Fix alignment and data leak issues + (git-fixes). +- iio:adc:ti-ads124s08: Fix buffer being too long (git-fixes). +- iwlwifi: mvm: hook up missing RX handlers (git-fixes). +- mac80211: don't set set TDLS STA bandwidth wider than possible + (git-fixes). +- commit 2fd9b35 + +- crypto: qat - relocate GEN2 CSR access code (jsc#SLE-14454). +- commit aa3be04 + +- cpufreq: vexpress-spc: Add missing MODULE_ALIAS (git-fixes). +- Revert "i2c: i2c-qcom-geni: Fix DMA transfer race" (git-fixes). +- iio:pressure:mpl3115: Force alignment of buffer (git-fixes). +- iio:magnetometer:mag3110: Fix alignment and data leak issues + (git-fixes). +- iio:light:st_uvis25: Fix timestamp alignment and prevent data + leak (git-fixes). +- iio:light:rpr0521: Fix timestamp alignment and prevent data leak + (git-fixes). +- iio: buffer: Fix demux update (git-fixes). +- extcon: max77693: Fix modalias string (git-fixes). +- cw1200: fix missing destroy_workqueue() on error in + cw1200_init_common (git-fixes). +- commit 59cf4f4 + +- cpufreq: scpi: Add missing MODULE_ALIAS (git-fixes). +- cpufreq: loongson1: Add missing MODULE_ALIAS (git-fixes). +- cpufreq: st: Add missing MODULE_DEVICE_TABLE (git-fixes). +- cpufreq: mediatek: Add missing MODULE_DEVICE_TABLE (git-fixes). +- cpufreq: highbank: Add missing MODULE_DEVICE_TABLE (git-fixes). +- cpufreq: ap806: Add missing MODULE_DEVICE_TABLE (git-fixes). +- staging: comedi: mf6x4: Fix AI end-of-conversion detection + (git-fixes). +- bus: fsl-mc: fix error return code in fsl_mc_object_allocate() + (git-fixes). +- commit 172d8d6 + +- drm/tegra: output: Don't leak OF node on error (jsc#SLE-15847). +- commit 17189d0 + +- crypto: qat - split transport CSR access logic (jsc#SLE-14454). +- commit a3a10f0 + +- phy: tegra: xusb: Fix usb_phy device driver field (jsc#SLE-15847). +- clk: tegra: bpmp: Clamp clock rates on requests (jsc#SLE-15847). +- cpufreq: tegra194: Rename tegra194_get_speed_common function (jsc#SLE-15847). +- cpufreq: tegra194: Remove unnecessary frequency calculation (jsc#SLE-15847). +- cpufreq: tegra186: Simplify cluster information lookup (jsc#SLE-15847). +- cpufreq: tegra186: Fix sparse 'incorrect type in assignment' warning (jsc#SLE-15847). +- cpufreq: tegra194: get consistent cpuinfo_cur_freq (jsc#SLE-15847). +- phy: tegra: Don't warn on probe deferral (jsc#SLE-15847). +- drm/tegra: output: Do not put OF node twice (jsc#SLE-15847). +- drm/tegra: sor: Don't warn on probe deferral (jsc#SLE-15847). +- cpufreq: tegra186: Fix get frequency callback (jsc#SLE-15847). +- memory: tegra: Remove GPU from DRM IOMMU group (jsc#SLE-15847). +- drm/tegra: Properly reference count the DDC I2C adapter + (jsc#SLE-15847). +- iommu/tegra-smmu: Prune IOMMU group when it is released + (jsc#SLE-15847). +- iommu/tegra-smmu: Balance IOMMU group reference count + (jsc#SLE-15847). +- iommu/tegra-smmu: Set IOMMU group name (jsc#SLE-15847). +- cpufreq: tegra186: Fix initial frequency (jsc#SLE-15847). +- commit 9e4289a + +- crypto: qat - fix configuration of iov threads (jsc#SLE-14454). +- commit 4028436 + +- crypto: qat - num_rings_per_bank is device dependent + (jsc#SLE-14454). +- crypto: qat - mask device capabilities with soft straps + (jsc#SLE-14454). +- commit a55dc52 + +- Bluetooth: btmtksdio: Add the missed release_firmware() in + mtk_setup_firmware() (git-fixes). +- Bluetooth: btusb: Add the missed release_firmware() in + btusb_mtk_setup_firmware() (git-fixes). +- Bluetooth: hci_h5: fix memory leak in h5_close (git-fixes). +- Bluetooth: Fix slab-out-of-bounds read in + hci_le_direct_adv_report_evt() (git-fixes). +- Bluetooth: Fix null pointer dereference in hci_event_packet() + (git-fixes). +- ath10k: Release some resources in an error handling path + (git-fixes). +- ath10k: Fix an error handling path (git-fixes). +- ath6kl: fix enum-conversion warning (git-fixes). +- commit 35aef63 + +- ath10k: Fix the parsing error in service available event + (git-fixes). +- commit ae02c89 + +- Revert "ACPI / resources: Use AE_CTRL_TERMINATE to terminate + resources walks" (git-fixes). +- commit 2779aa4 + +- ASoC: qcom: common: Fix refcounting in qcom_snd_parse_of() + (git-fixes). +- commit 4c7929f + +- ASoC: max98390: Fix error codes in max98390_dsm_init() + (git-fixes). +- commit 9ec9be4 + +- soundwire: intel: fix another unused-function warning + (jsc#SLE-16518). +- soundwire: master: use pm_runtime_set_active() on add + (jsc#SLE-16518). +- soundwire: qcom: Fix build failure when slimbus is module + (jsc#SLE-16518). +- commit 5c4cbf1 + +- Move upstreamed soundwire patches into sorted section +- commit 9be4676 + +- IB/srpt: Fix memory leak in srpt_add_one (bsc#1152489) +- commit da75bee + +- soundwire: Fix DEBUG_LOCKS_WARN_ON for uninitialized attribute + (jsc#SLE-16518). +- commit d23ae0b + +- RDMA/hns: Bugfix for memory window mtpt configuration (bsc#1152489) +- commit 4f3475b + +- IB/mthca: fix return value of error branch in mthca_init_cq() (bsc#1152489) +- commit c98a089 + +- RDMA/pvrdma: Fix missing kfree() in pvrdma_register_device() (bsc#1152489) +- commit baad43e + +- ASoC: SOF: Intel: hda: fix the condition passed to + sof_dev_dbg_or_err (jsc#SLE-16518). +- ASoC: SOF: modify the SOF_DBG flags (jsc#SLE-16518). +- ASoC: SOF: Intel: hda: remove duplicated status dump + (jsc#SLE-16518). +- ASoC: SOF: imx: update kernel-doc description (jsc#SLE-16518). +- ASoC: topology: Fix wrong size check (jsc#SLE-16518). +- ASoC: topology: Add missing size check (jsc#SLE-16518). +- ASoC: SOF: Intel: add SoundWire support for ADL-S + (jsc#SLE-16518). +- ASoC: Intel: common: add ACPI matching tables for Alder Lake + (jsc#SLE-16518). +- ASoC: Intel: cht_bsw_nau8824: Change SSP2-Codec DAI id to 0 + (jsc#SLE-16518). +- ASoC: Intel: cht_bsw_nau8824: Drop compress-cpu-dai bits + (jsc#SLE-16518). +- ASoC: intel: sof_rt5682: Add support for tgl_rt1011_rt5682 + (jsc#SLE-16518). +- commit df54797 + +- RDMA/qedr: Fix memory leak in iWARP CM (bsc#1152489) +- commit db44ceb + +- RDMA/rxe: Fix skb lifetime in rxe_rcv_mcast_pkt() (bsc#1152489) +- commit 1de4514 + +- IB/rdmavt: Fix sizeof mismatch (bsc#1152489) +- commit 677c5ba + +- ASoC: SOF: trace: Add runtime trace filtering mechanism + (jsc#SLE-16518). +- ASoC: SOF: control: fix cppcheck warning in + snd_sof_volume_info() (jsc#SLE-16518). +- ASoC: SOF: Intel: hda: add sof_icl_ops for ICL platforms + (jsc#SLE-16518). +- ASoC: SOF: ops: modify the signature of stall op + (jsc#SLE-16518). +- ASoC: SOF: ext_manifest: parse cavs extra config data elem + (jsc#SLE-16518). +- ASoC: SOF: Intel: hda: define parse_platform_ext_manifest op + (jsc#SLE-16518). +- ASoC: SOF: ops: add parse_platform_ext_manifest() op + (jsc#SLE-16518). +- ASoC: SOF: Add `memory_info` file to debugfs (jsc#SLE-16518). +- ASoC: SOF: Change section comment for SOF_IPC_TEST_ + (jsc#SLE-16518). +- ASoC: SOF: Improve code alignment in header.h (jsc#SLE-16518). +- ASoC: SOF: ext_manifest: Parse firmware config dictionary + (jsc#SLE-16518). +- ASoC: SOF: nocodec: modify DAI link definitions (jsc#SLE-16518). +- ASoC: SOF: IPC: fix implicit type overflow (jsc#SLE-16518). +- commit 478e999 + +- ASoC: SOF: Intel: allow for coexistence between SOF and catpt + drivers (jsc#SLE-16518). +- Update config files. +- commit f7947cd + +- ALSA: hda: intel-dsp-config: ignore dsp_driver parameter for + PCI legacy devices (jsc#SLE-16518). +- commit 63ddb05 + +- ASoC: Intel: broadwell: set card and driver name dynamically + (jsc#SLE-16518). +- ALSA: hda: intel-dsp-config: add Broadwell ACPI DSP driver + selection (jsc#SLE-16518). +- commit dbb4f88 + +- ASoC: SOF: Intel: allow for coexistence between SOF and Atom/SST + drivers (jsc#SLE-16518). +- Update config files. +- commit 5c50712 + +- crypto: qat - update IV in software (jsc#SLE-14454). +- Refresh patches.suse/QAT-add-suse_kabi_padding.patch. +- commit 02c439a + +- crypto: qat - remove unused function (jsc#SLE-14454). +- commit edc1305 + +- ASoC: Intel: Atom: add dynamic selection of DSP driver + (jsc#SLE-16518). +- commit 7c727eb + +- ASoC: SOF: acpi: add dynamic selection of DSP driver + (jsc#SLE-16518). +- commit 14933b4 + +- ASoC: Intel: byt/cht: set pm ops dynamically (jsc#SLE-16518). +- commit 5bab293 + +- ASoC: Intel: boards: byt/cht: set card and driver name at run + time (jsc#SLE-16518). +- commit 8837dc6 + +- ALSA: hda: intel-dsp-config: add helper for ACPI DSP driver + selection (jsc#SLE-16518). +- commit 18cdfb4 + +- ASoC: Intel: bdw-rt5677: add missing pm_ops (jsc#SLE-16518). +- commit 25029ef + +- ASoC: Intel: Boards: tgl_max98373: add dpcm_capture flag for + speaker_smart_amp (jsc#SLE-16518). +- commit d6b111c + +- ASoC: topology: Simplify remove_widget function (jsc#SLE-16518). +- commit b057eed + +- ASoC: topology: Remove empty functions (jsc#SLE-16518). +- commit 3f721cb + +- ASoC: topology: Change allocations to resource managed + (jsc#SLE-16518). +- commit ea837e4 + +- ASoC: topology: Unify all device references (jsc#SLE-16518). +- commit 10328ad + +- ASoC: topology: Remove multistep topology loading + (jsc#SLE-16518). +- commit 364e86e + +- ASoC: topology: Remove unused functions from topology API + (jsc#SLE-16518). +- commit 0dc5676 + +- ASoC: soc-acpi: add helper to identify parent driver + (jsc#SLE-16518). +- commit d308530 + +- ASoC: Intel: broadwell: add missing pm_ops (jsc#SLE-16518). +- commit bab05a6 + +- ASoC: SOF: control: override volume info callback + (jsc#SLE-16518). +- commit 67c8df2 + +- ASoC: SOF: Intel: add hw specific PCM constraints + (jsc#SLE-16518). +- commit 02c0e0b + +- ASoC: SOF: relax PCM period and buffer size constraints + (jsc#SLE-16518). +- commit ce00821 + +- ASoC: Fix 7/8 spaces indentation in Kconfig (jsc#SLE-16518). +- commit 53e4ae3 + +- ASoC: intel: SND_SOC_INTEL_KEEMBAY should depend on ARCH_KEEMBAY + (jsc#SLE-16518). +- commit a961770 + +- ASoC: Intel: keembay: use inclusive language for bclk and fsync + (jsc#SLE-16518). +- commit 726a785 + +- ASoC: Intel: atom: use inclusive language for SSP bclk/fsync + (jsc#SLE-16518). +- commit 3078a9f + +- ASoC: SOF: use inclusive language for bclk and fsync + (jsc#SLE-16518). +- commit d738d67 + +- ASoC: topology: use inclusive language for bclk and fsync + (jsc#SLE-16518). +- commit 3e92b8e + +- ASoC: SOF: Intel: fix Kconfig dependency for + SND_INTEL_DSP_CONFIG (jsc#SLE-16518). +- commit 65bf32d + +- ASoC: SOF: Intel: fix Kconfig punctuation and wording + (jsc#SLE-16518). +- commit e2d566a + +- ASoC: SOF: Kconfig: fix Kconfig punctuation and wording + (jsc#SLE-16518). +- commit 32e6a72 + +- ASoC: SOF: imx: fix Kconfig punctuation (jsc#SLE-16518). +- commit f4194f0 + +- ASoC: Intel: sof_sdw: add quirk for new TigerLake-SDCA device + (jsc#SLE-16518). +- commit 7aadcdd + +- ASoC: SOF: loader: do not warn about unknown firmware headers + (jsc#SLE-16518). +- commit 1bf0f28 + +- ASoC: intel: sof_rt5682: Add quirk for Dooly (jsc#SLE-16518). +- commit 8100bff + +- ASoC: intel: sof_rt5682: Add support for cml_rt1015_rt5682 + (jsc#SLE-16518). +- commit bb5fa3d + +- ASoC: SOF: sof-audio: remove goto used for force-nocodec support + (jsc#SLE-16518). +- commit 81aeb29 + +- ASoC: SOF: topology: remove const in sizeof() (jsc#SLE-16518). +- commit 66b10d3 + +- ASoC: SOF: control: remove const in sizeof() (jsc#SLE-16518). +- commit 2b84b77 + +- ASoC: SOF: Intel: hda: use semicolons rather than commas to + separate statements (jsc#SLE-16518). +- commit 3f2432e + +- inet_ecn: Fix endianness of checksum update when setting ECT(1) + (git-fixes). +- commit 492cf46 + +- ASoC: Intel: bytcr_rt5651: use semicolons rather than commas + to separate statements (jsc#SLE-16518). +- commit 6d8047e + +- ASoC: SOF: Intel: initial support for Alderlake-S + (jsc#SLE-13489). +- Update config files. +- commit fac4baf + +- ASoC: amd: support other audio modes for raven (git-fixes). +- ASoC: AMD Renoir - add DMI table to avoid the ACP mic probe + (broken BIOS) (git-fixes). +- ASoC: AMD Raven/Renoir - fix the PCI probe (PCI revision) + (git-fixes). +- ASoC: Intel: bytcr_rt5640: Add quirk for ARCHOS Cesium 140 + (git-fixes). +- ASoC: Intel: Boards: tgl_max98373: update TDM slot_width + (git-fixes). +- ASoC: amd: Return -ENODEV for non-existing ACPI call + (git-fixes). +- ASoC: amd: Downgrade print level for invalid ACP mode + (git-fixes). +- commit 7df7491 + +- ALSA: hda/ca0132 - Add ZxR surround DAC setup (git-fixes). +- ALSA: hda/ca0132 - Add 8051 PLL write helper functions + (git-fixes). +- ALSA: hda/ca0132 - Remove now unnecessary DSP setup functions + (git-fixes). +- ALSA: hda/ca0132 - Ensure DSP is properly setup post-firmware + download (git-fixes). +- ALSA: hda/ca0132 - Add 8051 exram helper functions (git-fixes). +- ALSA: hda/ca0132 - Add stream port remapping function + (git-fixes). +- ALSA: hda/ca0132 - Reset codec upon initialization (git-fixes). +- ALSA: hda/hdmi: fix silent stream for first playback to DP + (git-fixes). +- ALSA: seq: Use bool for snd_seq_queue internal flags + (git-fixes). +- ALSA: hda/ca0132: Move unsol callback setups to parser + (git-fixes). +- ALSA: compress: allow pause and resume during draining + (git-fixes). +- ALSA: hdspm: Fix fall-through warnings for Clang (git-fixes). +- ALSA: remove unneeded break (git-fixes). +- commit 24cbc87 + +- ASoC: amd: change clk_get() to devm_clk_get() and add missed + checks (git-fixes). +- ASoC: cx2072x: Fix doubly definitions of Playback and Capture + streams (git-fixes). +- ASoC: meson: fix COMPILE_TEST error (git-fixes). +- ASoC: arizona: Fix a wrong free in wm8997_probe (git-fixes). +- ASoC: wm8998: Fix PM disable depth imbalance on error + (git-fixes). +- ASoC: pcm: DRAIN support reactivation (git-fixes). +- ASoC: ti: davinci-mcasp: remove always zero of + davinci_mcasp_get_dt_params (git-fixes). +- ASoC: sun4i-i2s: Fix lrck_period computation for I2S justified + mode (git-fixes). +- ASoC: tegra20-spdif: remove "default m" (git-fixes). +- ASoC: wm_adsp: remove "ctl" from list on error in + wm_adsp_create_control() (git-fixes). +- ASoC: jz4740-i2s: add missed checks for clk_get() (git-fixes). +- ASoC: SOF: control: fix size checks for ext_bytes control .get() + (git-fixes). +- commit 8f99a8a + +- ALSA: hda/ca0132 - Change Input Source enum strings (git-fixes). +- ALSA: hda/ca0132 - Fix AE-5 rear headphone pincfg (git-fixes). +- commit 4d4db90 + +- ALSA: hda: Fix regressions on clear and reconfig sysfs + (git-fixes). +- commit f6ae090 + +- ALSA: pcm: oss: Fix potential out-of-bounds shift (git-fixes). +- ALSA: rawmidi: Access runtime->avail always in spinlock + (git-fixes). +- ALSA: seq: remove useless function (git-fixes). +- commit 87f324b + +- ALSA: hda/realtek - Add supported for more Lenovo ALC285 + Headset Button (git-fixes). +- ALSA: hda/realtek - Enable headset mic of ASUS Q524UQK with + ALC255 (git-fixes). +- ALSA: hda/realtek - Enable headset mic of ASUS X430UN with + ALC256 (git-fixes). +- ALSA: hda/realtek: make bass spk volume adjustable on a yoga + laptop (git-fixes). +- ALSA: hda/hdmi: packet buffer index must be set before reading + value (git-fixes). +- ALSA: hda/hdmi: always print pin NIDs as hexadecimal + (git-fixes). +- ALSA: hda/proc - print DP-MST connections (git-fixes). +- commit b46aa44 + +- ALSA: usb-audio: Fix potential out-of-bounds shift (git-fixes). +- ALSA: usb-audio: Fix control 'access overflow' errors from chmap + (git-fixes). +- ALSA: usb-audio: Add implicit fb support for Steinberg UR22 + (git-fixes). +- ALSA: usb-audio: Add quirk for Pioneer DJ DDJ-SR2 (git-fixes). +- ALSA: usb-audio: Add support for Pioneer DJ DDJ-RR controller + (git-fixes). +- commit cbe79ef + +- Move upstreamed USB-audio patches into sorted section +- commit 6078fcf + +- scsi: fnic: Validate io_req before others (bsc#1175079). +- scsi: fnic: Set scsi_set_resid() only for underflow + (bsc#1175079). +- scsi: fnic: Change shost_printk() to FNIC_MAIN_DBG() + (bsc#1175079). +- scsi: fnic: Avoid looping in TRANS ETH on unload (bsc#1175079). +- scsi: fnic: Change shost_printk() to FNIC_FCS_DBG() + (bsc#1175079). +- commit 140fd58 + +- sched/fair: Fix overutilized update in enqueue_task_fair() (git-fixes) +- commit aad16e5 + +- sched: correct SD_flags returned by tl->sd_flags() (git-fixes) +- commit 323fa02 + +- sched/fair: Refill bandwidth before scaling (git-fixes) +- commit 6f148d9 + +- sched/fair: Fix race between runtime distribution and (git-fixes) +- commit 73cd7f5 + +- sched/fair: Fix wrong cpu selecting from isolated domain (git-fixes) +- commit c4c367e + +- Update + patches.suse/HID-Fix-slab-out-of-bounds-read-in-hid_field_extract.patch + (bsc#1180052). + Identified as security issue. bsc added. +- commit 02607b9 + +- Update + patches.suse/HID-Fix-slab-out-of-bounds-read-in-hid_field_extract.patch + (bsc#1180052). + Patch identified as security issue. bsc added. +- commit 88ee41b + +- mm: memcg: fix memcg reclaim soft lockup (VM Functionality, + bsc#1180056). +- commit 3a73547 + +- crypto: caam - fix printing on xts fallback allocation error + path (git-fixes). +- commit fd68750 + +- crypto: qat - fix status check in qat_hal_put_rel_rd_xfer() + (git-fixes). +- commit e1943c2 + +- crypto: qat - fix status check in qat_hal_put_rel_rd_xfer() + (git-fixes). +- commit 9a7e1fb + +- iommu/hyper-v: Remove I/O-APIC ID check from + hyperv_irq_remapping_select() (jsc#SLE-16823). +- iommu/amd: Fix IOMMU interrupt generation in X2APIC mode + (jsc#SLE-16823). +- iommu/amd: Fix union of bitfields in intcapxt support + (jsc#SLE-16823). +- x86/ioapic: Correct the PCI/ISA trigger type selection + (jsc#SLE-16823). +- commit 2f4c498 + +- x86/ioapic: Use I/O-APIC ID for finding irqdomain, not index + (jsc#SLE-16823). +- x86/hyperv: Enable 15-bit APIC ID if the hypervisor supports it + (jsc#SLE-16823). +- x86/kvm: Enable 15-bit extension when + KVM_FEATURE_MSI_EXT_DEST_ID detected (jsc#SLE-16823). +- iommu/hyper-v: Disable IRQ pseudo-remapping if 15 bit APIC + IDs are available (jsc#SLE-16823). +- x86/apic: Support 15 bits of APIC ID in MSI where available + (jsc#SLE-16823). +- x86/ioapic: Handle Extended Destination ID field in RTE + (jsc#SLE-16823). +- iommu/vt-d: Simplify intel_irq_remapping_select() + (jsc#SLE-16823). +- x86: Kill all traces of irq_remapping_get_irq_domain() + (jsc#SLE-16823). +- x86/ioapic: Use irq_find_matching_fwspec() to find remapping + irqdomain (jsc#SLE-16823). +- x86/hpet: Use irq_find_matching_fwspec() to find remapping + irqdomain (jsc#SLE-16823). +- iommu/hyper-v: Implement select() method on remapping irqdomain + (jsc#SLE-16823). +- iommu/vt-d: Implement select() method on remapping irqdomain + (jsc#SLE-16823). +- iommu/amd: Implement select() method on remapping irqdomain + (jsc#SLE-16823). +- x86/apic: Add select() method on vector irqdomain + (jsc#SLE-16823). +- genirq/irqdomain: Implement get_name() method on irqchip fwnodes + (jsc#SLE-16823). +- x86/ioapic: Generate RTE directly from parent irqchip's MSI + message (jsc#SLE-16823). +- x86/ioapic: Cleanup IO/APIC route entry structs (jsc#SLE-16823). +- x86/io_apic: Cleanup trigger/polarity helpers (jsc#SLE-16823). +- x86/msi: Remove msidef.h (jsc#SLE-16823). +- x86/pci/xen: Use msi_msg shadow structs (jsc#SLE-16823). +- x86/kvm: Use msi_msg shadow structs (jsc#SLE-16823). +- PCI: vmd: Use msi_msg shadow structs (jsc#SLE-16823). +- iommu/amd: Use msi_msg shadow structs (jsc#SLE-16823). +- iommu/intel: Use msi_msg shadow structs (jsc#SLE-16823). +- x86/msi: Provide msi message shadow structs (jsc#SLE-16823). +- genirq/msi: Allow shadow declarations of msi_msg:: $member + (jsc#SLE-16823). +- x86/hpet: Move MSI support into hpet.c (jsc#SLE-16823). +- x86/apic: Always provide irq_compose_msi_msg() method for + vector domain (jsc#SLE-16823). +- x86/apic: Cleanup destination mode (jsc#SLE-16823). +- x86/apic: Get rid of apic:: Dest_logical (jsc#SLE-16823). +- x86/apic: Replace pointless apic:: Dest_logical usage + (jsc#SLE-16823). +- x86/apic: Cleanup delivery mode defines (jsc#SLE-16823). +- x86/devicetree: Fix the ioapic interrupt type table + (jsc#SLE-16823). +- x86/apic/uv: Fix inconsistent destination mode (jsc#SLE-16823). +- x86/msi: Only use high bits of MSI address for DMAR unit + (jsc#SLE-16823). +- x86/apic: Fix x2apic enablement without interrupt remapping + (jsc#SLE-16823). +- commit e68f7b8 + +- Update patch reference for audit security fix (CVE-2020-0444 bsc#1180027) +- commit 8236de7 + +- Update patch reference for HID security fix (CVE-2020-0465 bsc#1180029) +- commit c0d38cb + +- Update + patches.suse/SUNRPC-Fix-SUNRPC-Add-len-parameter-to-gss_unwrap.patch + (git-fixes). +- commit c1a6212 + +- btrfs: qgroup: don't try to wait flushing if we're already holding a transaction (bsc#1179575). +- commit 7eae617 + +- supported.conf: Mark exfat as fully supported (bsc#1179882) + Moves exfat from kernel-default-extra to kernel-default +- commit 619a3f5 + +- s390/pci: Mark all VFs as not implementing PCI_COMMAND_MEMORY + (bsc#1179611 LTC#190155). +- commit 8805bd5 + +- s390/pci: adaptation of iommu to multifunction (bsc#1179611 + LTC#190155). +- Refresh patches.suse/s390-pci-create-zpci-bus. +- Refresh patches.suse/s390-pci-handling-multifunctions. +- commit 18ace9e + +- s390/purgatory: do not build purgatory with kcov, kasan and + friends (bsc#1179603 LTC#190152). +- commit 2fdc981 + +- s390/qeth: Remove pnso workaround (bsc#1179565 LTC#190112). +- commit 3eaa0fe + +- net/smc: fix direct access to ib_gid_addr->ndev in + smc_ib_determine_gid() (bsc#1179205 LTC#189977). +- net/smc: fix matching of existing link groups (bsc#1179205 + LTC#189977). +- commit 0e174e5 + +- Update config files. +- Delete + patches.suse/1842-xen-add-helpers-to-allocate-unpopulated-memory.patch. + As discussed with Juergen Gross per email, the patch might break xen + guests and is not strictly required for the DRM backport. + v2. As mentioned by Jessica, remove CONFIG_XEN_UNPOPULATED_ALLOC as it + also goes away. +- commit 2d34f4b + +- hwmon: (amd_energy) modify the visibility of the counters + (jsc#SLE-14262 bsc#1178760). +- hwmon: (amd_energy) Improve the accumulation logic + (jsc#SLE-14262). +- hwmon: (amd_energy) optimize accumulation interval + (jsc#SLE-14262). +- hwmon: (amd_energy) Move label out of accumulation structure + (jsc#SLE-14262). +- commit 4692751 + +- PCI: tegra: Disable LTSSM during L2 entry (bsc#1179344). +- PCI: tegra: Check return value of tegra_pcie_init_controller() + (bsc#1179344). +- PCI: tegra: Continue unconfig sequence even if parts fail + (bsc#1179344). +- PCI: tegra: Set DesignWare IP version (bsc#1179344). +- PCI: tegra: Fix ASPM-L1SS advertisement disable code + (bsc#1179344). +- commit 9846dd7 + +- Delete patches.suse/PCI-dwc-Move-dw_pcie_setup_rc-to-DWC-common-code.patch. + References: bsc#1179344 +- commit bdaf386 + +- blacklist.conf: correct the cherry-picked commit ID +- commit 48385ea + +- Update patch reference tags for missing CVE entries +- commit 24c7af3 + +- s390/pci: fix CPU address in MSI for directed IRQ (git-fixes). +- s390/qeth: fix tear down of async TX buffers (git-fixes). +- s390/qeth: fix af_iucv notification race (git-fixes). +- s390/qeth: delay draining the TX buffers (git-fixes). +- s390: add 3f program exception handler (git-fixes). +- s390/cpuinfo: show processor physical address (git-fixes). +- commit 15840e9 + +- s390/qeth: make af_iucv TX notification call more robust + (bsc#1179604 LTC#190151). +- commit 1d3596d + +- ACPI: EC: PM: Flush EC work unconditionally after wakeup + (jsc#SLE-16407). +- ACPI: EC: PM: s2idle: Extend GPE dispatching debug message + (jsc#SLE-16407). +- commit a21778d + +- ACPI: EC: PM: Avoid flushing EC work when EC GPE is inactive + (jsc#SLE-16407). +- ACPI: PM: s2idle: Fix comment in acpi_s2idle_prepare_late() + (jsc#SLE-16407). +- commit eb134e5 + +- x86/apic/vector: Fix ordering in vector assignment (bsc#1156315). +- genirq/matrix: Deal with the sillyness of for_each_cpu() on UP (bsc#1156315). +- commit 108604c + +- genirq/PM: Always unlock IRQ descriptor in rearm_wake_irq() + (jsc#SLE-16407). +- ACPI: EC: PM: Avoid premature returns from acpi_s2idle_wake() + (jsc#SLE-16407). +- platform/x86: intel_int0002_vgpio: Use + acpi_register_wakeup_handler() (jsc#SLE-16407). +- ACPI: PM: Add acpi_register_wakeup_handler() (jsc#SLE-16407). +- ACPI: PM: s2idle: Refine active GPEs check (jsc#SLE-16407). +- ACPI: EC: Fix flushing of pending work (jsc#SLE-16407). +- platform/x86: intel_int0002_vgpio: Pass irqchip when adding + gpiochip (jsc#SLE-16407). +- platform/x86: intel_int0002_vgpio: Use device_init_wakeup + (jsc#SLE-16407). +- commit 7f8bb95 + +- SUNRPC: Revert 241b1f419f0e ("SUNRPC: Remove xdr_buf_trim()") + (git-fixes). +- blacklist.conf: + Doesn't cause a regression once the previous two patches are included. +- SUNRPC: Fix GSS privacy computation of auth->au_ralign + (git-fixes). +- SUNRPC: Add "@len" parameter to gss_unwrap() (git-fixes). +- commit de10d89 + +- blacklist.conf: two git-fixes that break kabi too much +- commit 7df1e74 + +- blacklist.conf: Add a duplicate +- commit 5592171 + +- ACPICA: Preserve memory opregion mappings (jsc#SLE-16407). +- ACPICA: Replace one-element array with flexible-array + (jsc#SLE-16407). +- ACPICA: iASL: add new OperationRegion subtype keyword + PlatformRtMechanism (jsc#SLE-16407). +- ACPICA: Fix required parameters for _NIG and _NIH + (jsc#SLE-16407). +- ACPICA: Disassembler: ignore AE_ALREADY_EXISTS status when + parsing create operators (jsc#SLE-16407). +- ACPICA: Move acpi_gbl_next_cmd_num definition to acglobal.h + (jsc#SLE-16407). +- ACPICA: Make acpi_protocol_lengths static (jsc#SLE-16407). +- platform/x86: sony-laptop: Make resuming thermal profile safer + (jsc#SLE-16407). +- platform/x86: sony-laptop: SNC calls should handle BUFFER types + (jsc#SLE-16407). +- ACPICA: utilities: fix sprintf() (jsc#SLE-16407). +- ACPICA: acpiexec: remove redeclaration of + acpi_gbl_db_opt_no_region_support (jsc#SLE-16407). +- ACPICA: Change PlatformCommChannel ASL keyword to PCC + (jsc#SLE-16407). +- ACPICA: Fix a couple of typos (jsc#SLE-16407). +- ACPICA: use acpi_size instead of u32 for prefix_path_length + (jsc#SLE-16407). +- ACPICA: cast length arguement to acpi_ns_build_normalized_path() + as u32 (jsc#SLE-16407). +- ACPICA: cast the result of the pointer difference to u32 + (jsc#SLE-16407). +- ACPICA: Table Manager: Update comments in a function header + (jsc#SLE-16407). +- ACPICA: Enable sleep button on ACPI legacy wake (jsc#SLE-16407). +- ACPICA: Fix a comment "enable" fixed events -> "disable" + all fixed events (jsc#SLE-16407). +- ACPICA: ASL-ASL+ converter: make root file a parameter for + cv_init_file_tree (jsc#SLE-16407). +- ACPICA: ASL-ASL+ converter: remove function parameters from + cv_init_file_tree() (jsc#SLE-16407). +- ACPICA: Allow acpi_any_gpe_status_set() to skip one GPE + (jsc#SLE-16407). +- ACPI: PM: s2idle: Check fixed wakeup events in + acpi_s2idle_wake() (jsc#SLE-16407). +- ACPI: PM: s2idle: Prevent spurious SCIs from waking up the + system (jsc#SLE-16407). +- ACPICA: Introduce acpi_any_gpe_status_set() (jsc#SLE-16407). +- ACPI: PM: s2idle: Avoid possible race related to the EC GPE + (jsc#SLE-16407). +- ACPI/sleep: Convert acpi_wakeup_address into a function + (jsc#SLE-16407). +- ACPICA: All acpica: Update copyrights to 2020 Including tool + signons (jsc#SLE-16407). +- ACPICA: Dispatcher: always generate buffer objects for ASL + create_field() operator (jsc#SLE-16407). +- ACPICA: debugger: fix spelling mistake "adress" -> "address" + (jsc#SLE-16407). +- ACPI: PM: s2idle: Rework ACPI events synchronization + (jsc#SLE-16407). +- ACPI: EC: Rework flushing of pending work (jsc#SLE-16407). +- ACPICA: debugger: remove leading whitespaces when converting + a string to a buffer (jsc#SLE-16407). +- ACPICA: acpiexec: initialize all simple types and field units + from user input (jsc#SLE-16407). +- ACPICA: debugger: add field unit support for + acpi_db_get_next_token (jsc#SLE-16407). +- ACPICA: debugger: surround field unit output with braces '{' + (jsc#SLE-16407). +- ACPICA: debugger: add command to dump all fields of particular + subtype (jsc#SLE-16407). +- ACPICA: utilities: add flag to only display data when dumping + buffers (jsc#SLE-16407). +- ACPICA: More Clang changes (jsc#SLE-16407). +- ACPICA: Win OSL: Replace get_tick_count with get_tick_count64 + (jsc#SLE-16407). +- ACPICA: Results from Clang (jsc#SLE-16407). +- ACPI: PM: Drop Dell XPS13 9360 from LPS0 Idle _DSM blacklist + (jsc#SLE-16407). +- ACPICA: Add "Windows 2019" string to _OSI support + (jsc#SLE-16407). +- ACPICA: Differentiate Windows 8.1 from Windows 8 + (jsc#SLE-16407). +- ACPICA: Fully deploy ACPI_PRINTF_LIKE macro (jsc#SLE-16407). +- ACPICA: Fix issues with arg types within printf format strings + (jsc#SLE-16407). +- ACPICA: Increase total number of possible Owner IDs + (jsc#SLE-16407). +- ACPICA: Debugger: remove redundant assignment on obj_desc + (jsc#SLE-16407). +- ACPI: PM: s2idle: Always set up EC GPE for system wakeup + (jsc#SLE-16407). +- ACPI: PM: s2idle: Avoid rearming SCI for wakeup unnecessarily + (jsc#SLE-16407). +- PM: suspend: Fix platform_suspend_prepare_noirq() + (jsc#SLE-16407). +- intel-hid: intel-vbtn: Avoid leaking wakeup_mode set + (jsc#SLE-16407). +- ACPI: PM: s2idle: Execute LPS0 _DSM functions with suspended + devices (jsc#SLE-16407). +- ACPI: EC: PM: Make acpi_ec_dispatch_gpe() print debug message + (jsc#SLE-16407). +- ACPI: EC: PM: Consolidate some code depending on PM_SLEEP + (jsc#SLE-16407). +- ACPI: PM: s2idle: Eliminate acpi_sleep_no_ec_events() + (jsc#SLE-16407). +- ACPI: PM: s2idle: Switch EC over to polling during "noirq" + suspend (jsc#SLE-16407). +- ACPI: PM: s2idle: Add acpi.sleep_no_lps0 module parameter + (jsc#SLE-16407). +- ACPI: PM: s2idle: Rearrange lps0_device_attach() + (jsc#SLE-16407). +- ACPI: PM: Set up EC GPE for system wakeup from drivers that + need it (jsc#SLE-16407). +- PM: sleep: Simplify suspend-to-idle control flow + (jsc#SLE-16407). +- ACPI: PM: Set s2idle_wakeup earlier and clear it later + (jsc#SLE-16407). +- ACPI: EC: Return bool from acpi_ec_dispatch_gpe() + (jsc#SLE-16407). +- ACPICA: Return u32 from acpi_dispatch_gpe() (jsc#SLE-16407). +- PCI: irq: Introduce rearm_wake_irq() (jsc#SLE-16407). +- commit 632d617 + +- timers: Always keep track of next expiry (bsc#1179365) +- commit ee6d011 + +- pinctrl: intel: Actually disable Tx and Rx buffers on GPIO + request (git-fixes). +- pinctrl: jasperlake: Fix HOSTSW_OWN offset (git-fixes). +- pinctrl: jasperlake: Unhide SPI group of pins (git-fixes). +- commit 256e3b8 + +- ALSA: usb-audio: workaround for iface reset issue (bsc#1178203). +- commit 4121b01 + +- mmc: block: Fixup condition for CMD13 polling for RPMB requests + (git-fixes). +- pinctrl: aspeed: Fix GPIO requests on pass-through banks + (git-fixes). +- pinctrl: baytrail: Avoid clearing debounce value when turning + it off (git-fixes). +- pinctrl: merrifield: Set default bias in case no particular + value given (git-fixes). +- gpio: mvebu: fix potential user-after-free on probe (git-fixes). +- clk: renesas: r9a06g032: Drop __packed for portability + (git-fixes). +- USB: serial: ch341: sort device-id entries (git-fixes). +- USB: serial: ch341: add new Product ID for CH341A (git-fixes). +- USB: serial: option: add support for Thales Cinterion EXS82 + (git-fixes). +- USB: serial: option: add Fibocom NL668 variants (git-fixes). +- commit 4d00577 + +- timers: Recalculate next timer interrupt only when necessary (bsc#1179365) +- commit 5f04bac + +- timers: Lower base clock forwarding threshold (bsc#1179365) +- commit 72a03ba + +- timers: Remove must_forward_clk (bsc#1179365) +- commit c3083a1 + +- timers: Spare timer softirq until next expiry (bsc#1179365) +- commit 1eaa492 + +- timers: Expand clk forward logic beyond nohz (bsc#1179365) +- commit c14e398 + +- timers: Reuse next expiry cache after nohz exit (bsc#1179365) +- commit 8c6d890 + +- timers: Optimize _next_timer_interrupt() level iteration (bsc#1179365) +- commit 74e8303 + +- timers: Add comments about calc_index() ceiling work (bsc#1179365) +- commit 1709f40 + +- timers: Move trigger_dyntick_cpu() to enqueue_timer() (bsc#1179365) +- commit 79e5013 + +- timers: Use only bucket expiry for base->next_expiry value (bsc#1179365) +- commit dc787a8 + +- timers: Preserve higher bits of expiration on index (bsc#1179365) +- commit 242bf50 + +- pstore: Fix linking when crypto API disabled (jsc#SLE-16304). +- commit cf4291d + +- mtd: Support kmsg dumper based on pstore/blk (jsc#SLE-16304). +- Update config files. +- supported.conf: add mtdpstore +- commit ffec888 + +- pstore/blk: Introduce "best_effort" mode (jsc#SLE-16304). +- pstore/blk: Support non-block storage devices (jsc#SLE-16304). +- pstore/blk: Provide way to query pstore configuration + (jsc#SLE-16304). +- pstore/zone: Provide way to skip "broken" zone for MTD devices + (jsc#SLE-16304). +- commit 278b9b6 + +- Documentation: Add details for pstore/blk (jsc#SLE-16304). +- commit f35da88 + +- pstore/zone,blk: Add ftrace frontend support (jsc#SLE-16304). +- Update config files. +- commit e482e99 + +- pstore/zone,blk: Add console frontend support (jsc#SLE-16304). +- Update config files. +- commit 8e4487a + +- pstore/zone,blk: Add support for pmsg frontend (jsc#SLE-16304). +- Update config files. +- commit 03d39a5 + +- pstore/blk: Introduce backend for block devices (jsc#SLE-16304). +- Update config files. +- mark fs/pstore as supported +- commit 587a2b4 + +- pstore/zone: Introduce common layer to manage storage zones + (jsc#SLE-16304). +- commit ba9c226 + +- ramoops: Add "max-reason" optional field to ramoops DT node + (jsc#SLE-16304). +- pstore/ram: Introduce max_reason and convert dump_oops + (jsc#SLE-16304). +- pstore/platform: Pass max_reason to kmesg dump (jsc#SLE-16304). +- printk: Introduce kmsg_dump_reason_str() (jsc#SLE-16304). +- printk: honor the max_reason field in kmsg_dumper + (jsc#SLE-16304). +- printk: Collapse shutdown types into a single dump reason + (jsc#SLE-16304). +- commit e8792b6 + +- pstore/ftrace: Provide ftrace log merging routine + (jsc#SLE-16304). +- pstore/ram: Refactor ftrace buffer merging (jsc#SLE-16304). +- pstore/ram: Refactor DT size parsing (jsc#SLE-16304). +- pstore/ram: Adjust module param permissions to reflect reality + (jsc#SLE-16304). +- pstore/platform: Move module params after declarations + (jsc#SLE-16304). +- pstore/platform: Use backend name for console registration + (jsc#SLE-16304). +- pstore/platform: Switch pstore_info::name to const + (jsc#SLE-16304). +- pstore: Make sure console capturing will restart + (jsc#SLE-16304). +- pstore: Remove filesystem records when backend is unregistered + (jsc#SLE-16304). +- pstore: Do not leave timer disabled for next backend + (jsc#SLE-16304). +- commit 8204cca + +- pstore: Add locking around superblock changes (jsc#SLE-16304). +- commit 21099a7 + +- pstore: Refactor pstorefs record list removal (jsc#SLE-16304). +- commit 989da98 + +- pstore: Add proper unregister lock checking (jsc#SLE-16304). +- commit eed4072 + +- pstore: Convert "records_list" locking to mutex (jsc#SLE-16304). +- commit 5292e89 + +- pstore: Rename "allpstore" to "records_list" (jsc#SLE-16304). +- commit 70a8404 + +- pstore: Convert "psinfo" locking to mutex (jsc#SLE-16304). +- commit df8a1eb + +- pstore: Rename "pstore_lock" to "psinfo_lock" (jsc#SLE-16304). +- commit 5e29b75 + +- pstore: Drop useless try_module_get() for backend + (jsc#SLE-16304). +- Refresh + patches.suse/pstore_disable_efi_backend_by_default.patch. +- commit de00068 + +- pstore/ram: Replace zero-length array with flexible-array member + (jsc#SLE-16304). +- commit 992f876 + +- pstore/ram: remove unnecessary ramoops_unregister_dummy() + (jsc#SLE-16304). +- commit b76e837 + +- powerpc/perf: Exclude kernel samples while counting events in + user space (jsc#SLE-13513 bsc#1179950 ltc#190285). +- powerpc/perf: MMCR0 control for PMU registers under PMCC=00 + (jsc#SLE-13513 bsc#1179950 ltc#190285). +- powerpc/perf: Fix to update cache events with l2l3 events in + power10 (jsc#SLE-13513 bsc#1179950 ltc#190285). +- powerpc/perf: Fix to update generic event codes for power10 + (jsc#SLE-13513 bsc#1179950 ltc#190285). +- powerpc/perf: Add generic and cache event list for power10 DD1 + (jsc#SLE-13513 bsc#1179950 ltc#190285). +- powerpc/perf: Fix the PMU group constraints for threshold + events in power10 (jsc#SLE-13513 bsc#1179950 ltc#190285). +- powerpc/perf: Update the PMU group constraints for l2l3 events + in power10 (jsc#SLE-13513 bsc#1179950 ltc#190285). +- powerpc/perf: Fix to update radix_scope_qual in power10 + (jsc#SLE-13513 bsc#1179950 ltc#190285). +- powerpc/perf: Invoke per-CPU variable access with disabled + interrupts (jsc#SLE-13513 bsc#1179950 ltc#190285). +- commit da98715 + +- supported.conf: enable pwm-fan + Jetson AGX Xavier uses pwm-fan to contol fan speed. + References: bsc#1179597 +- commit 134e477 + +- btrfs: fix readahead hang and use-after-free after removing + a device (bsc#1179963). +- commit 170193e + +- btrfs: fix use-after-free on readahead extent after failure + to create it (bsc#1179963). +- commit 1429b0b + +- series.conf: cleanup +- update upstream repository URL: + patches.suse/ibmvnic-add-some-debugs.patch +- move unsortable patches out of sorted section: + patches.suse/cifs-set_root_ses-ipc.patch + patches.suse/powerpc-rtas-fix-typo-of-ibm-open-errinjct-in-rtas-f.patch +- commit 059dfec + +- series.conf: cleanup +- update upstream reference and move into "almost mainline" section: + patches.suse/nvme-fc-avoid-calling-_nvme_fc_abort_outstanding_ios-from-interrupt-context.patch +- commit e446234 + +- mm/memory_hotplug: shrink zones when offlining memory + (bsc#1177679). +- commit ffb1814 + +- ARM: 8943/1: Fix topology setup in case of CPU hotplug for + CONFIG_SCHED_MC (jsc#SLE-16614 jsc#SLE-13640). +- commit 66cc853 + +- Revert "geneve: pull IP header before ECN decapsulation" + (git-fixes). +- can: softing: softing_netdev_open(): fix error handling + (git-fixes). +- mac80211: mesh: fix mesh_pathtbl_init() error path (git-fixes). +- commit dff69af + +- drm: panel: Fix bpc for OrtusTech COM43H4M85ULC panel (bsc#1152489) +- commit 68423a3 + +- ibmvnic: fix rx buffer tracking and index management in + replenish_rx_pool partial success (bsc#1179929 ltc#189960). +- commit e63190a + +- IB/hfi1: Ensure correct mm is used at all times (bsc#1179878 + CVE-2020-27835). +- commit f84fcc4 + +- Update patches.suse/tty-Fix-pgrp-locking-in-tiocspgrp.patch + (git-fixes bsc#1179745 CVE-2020-29661). +- Update patches.suse/tty-Fix-session-locking.patch (bsc#1179745 + CVE-2020-29660). + Add CVE numbers. +- commit 034f28b + +- fail_function: Remove a redundant mutex unlock (bsc#1149032). +- locking/percpu-rwsem: Use this_cpu_{inc,dec}() for read_count + (bsc#1149032). +- commit 7d88c68 + +- blacklist.conf: Blacklist some lockdep updates +- commit 2f42c43 + +- kABI: genirq: add back irq_create_mapping (bsc#1065729). +- commit 0788f47 + +- genirq/irqdomain: Add an irq_create_mapping_affinity() function + (bsc#1065729). +- commit 1e1b021 + +- powerpc/64s: Trim offlined CPUs from mm_cpumasks (bsc#1055117 + ltc#159753 git-fixes bsc#1179888 ltc#190253). +- kernel/cpu: add arch override for clear_tasks_mm_cpumask() + mm handling (bsc#1055117 ltc#159753 git-fixes bsc#1179888 + ltc#190253). +- powerpc/64s/pseries: Fix hash tlbiel_all_isa300 for guest + kernels (bsc#1179888 ltc#190253). +- powerpc/64s: Fix hash ISA v3.0 TLBIEL instruction generation + (bsc#1055117 ltc#159753 git-fixes bsc#1179888 ltc#190253). +- commit 8cba4ab + +- powerpc/64s/powernv: Fix memory corruption when saving SLB + entries on MCE (jsc#SLE-9246 git-fixes). +- commit a63cfa4 + +- powerpc/pseries: Pass MSI affinity to irq_create_mapping() + (bsc#1065729). +- ibmvnic: delay next reset if hard reset fails (bsc#1094840 + ltc#167098 git-fixes). +- ibmvnic: restore adapter state on failed reset (bsc#1152457 + ltc#174432 git-fixes). +- ibmvnic: avoid memset null scrq msgs (bsc#1044767 ltc#155231 + git-fixes). +- ibmvnic: enhance resetting status check during module exit + (bsc#1065729). +- ibmvnic: fix NULL pointer dereference in reset_sub_crq_queues + (FATE#322021 bsc#1040855 ltc#155067 git-fixes). +- ibmvnic: notify peers when failover and migration happen + (bsc#1044120 ltc#155423 git-fixes). +- ibmvnic: fix call_netdevice_notifiers in do_reset (bsc#1115431 + ltc#171853 git-fixes). +- commit 00d731f + +- clocksource/drivers/arm_arch_timer: validate arch_timer_rate + (jsc#SLE-16614 jsc#SLE-13640). +- commit 4f4514c + +- arm64: use activity monitors for frequency invariance + (jsc#SLE-16614 jsc#SLE-13640). +- arm: Use common cpu_topology structure and functions + (jsc#SLE-16614 jsc#SLE-13640). +- cpu-topology: Move cpu topology code to common code + (jsc#SLE-16614 jsc#SLE-13640). +- commit 83df8e6 + +- powerpc/64s/exception: KVM Fix for host DSI being taken in + HPT guest MMU context (jsc#SLE-9246 git-fixes). +- powerpc/64s: Fix KVM system reset handling when + CONFIG_PPC_PSERIES=y (jsc#SLE-9246 git-fixes). +- commit 2b2f0ec + +- powerpc/64s: Fix allnoconfig build since uaccess flush + (bsc#1177666 git-fixes). +- commit 87d1aa2 + +- KVM: PPC: Book3S HV: XIVE: Fix possible oops when accessing + ESB page (bsc#1156395). +- commit be0ace4 + +- ibmvnic: add some debugs (bsc#1179896 ltc#190255). +- commit 0ec6de5 + +- powerpc/rtas: fix typo of ibm,open-errinjct in rtas filter + (CVE-2020-27777 bsc#1179107 bsc#1179887 ltc#190092). +- commit 8fcc087 + +- nvme-fc: avoid calling _nvme_fc_abort_outstanding_ios from + interrupt context (bsc#1177326). +- commit c6fa2f3 + +- ftrace: Fix updating FTRACE_FL_TRAMP (git-fixes). +- commit e552615 + +- blacklist.conf: 310e3a4b5a4f ("tracing: Remove WARN_ON in start_thread()") + Not really necessary. Just a WARN_ON(). We may reevaluate if someone + reports it. +- commit b62e034 + +- cpufreq: add function to get the hardware max frequency + (jsc#SLE-16614 jsc#SLE-13640). +- commit 4ef407e + +- Documentation: arm64: document support for the AMU extension + (jsc#SLE-16614 jsc#SLE-13640). +- commit 814a63c + +- arm64/kvm: disable access to AMU registers from kvm guests + (jsc#SLE-16614 jsc#SLE-13640). +- commit 23654f6 + +- arm64: trap to EL1 accesses to AMU counters from EL0 + (jsc#SLE-16614 jsc#SLE-13640). +- commit 1ffcffa + +- arm64: add support for the AMU extension v1 (jsc#SLE-16614 + jsc#SLE-13640). +- Update config files. +- Refresh patches.suse/arm64-Detect-the-ARMv8.4-TTL-feature.patch. +- Refresh + patches.suse/arm64-tlb-Detect-the-ARMv8.4-TLBI-RANGE-feature.patch. +- Refresh + patches.suse/kabi-arm64-reserve-space-in-cpu_hwcaps-and-cpu_hwcap.patch. +- commit db66333 + +- Update config files: drop CONFIG_IP_PNP again + CONFIG_IP_PNP was enabled as a result of Leap config merge, but it + makes little sense without the built-in network drivers. Drop it again. +- commit 43358fd + +- Update config files to disable CONFIG_DEBUG_SECTION_MISMATCH (bsc#1177403) +- commit 0b57f6d + +- fix patches metadata +- fix Patch-mainline: + patches.suse/0001-HMAT-Register-memory-side-cache-after-parsing.patch + patches.suse/0001-HMAT-Skip-publishing-target-info-for-nodes-with-no-o.patch + patches.suse/0001-mm-userfaultfd-do-not-access-vma-vm_mm-after-calling.patch +- commit 35937c0 + +- iommu/amd: Set DTE[IntTabLen] to represent 512 IRTEs + (bsc#1179652). +- commit fc46361 + +- nvme-fabrics: allow to queue requests for live queues + (git-fixes). +- nvme-tcp: cancel async events before freeing event struct + (git-fixes). +- nvme-rdma: cancel async events before freeing event struct + (git-fixes). +- nvme-fc: cancel async events before freeing event struct + (git-fixes). +- commit bd7db2d + +- nvme: Revert: Fix controller creation races with teardown + (git-fixes). +- Delete patches.kabi/nvme-kABI-fixes-for-nvme_ctrl.patch. +- commit 6f82fb0 + +- arm64: cpufreq: revert cppc to v5.10 level + References: bsc#1179585 + cppc_cpufreq is being initialized without checking if + acpi_cppc_processor_probe() succeeded. Revert to v5.10 to keep the old + behavior for now. +- commit dc7e817 + +- nvme-multipath: fix deadlock due to head->lock (git-fixes). +- nvme: don't protect ns mutation with ns->head->lock (git-fixes). +- nvme-multipath: fix deadlock between ana_work and scan_work + (git-fixes). +- commit d1a90c1 + +- nvme-fc: remove nvme_fc_terminate_io() (bsc#1177326). +- nvme-fc: eliminate terminate_io use by nvme_fc_error_recovery + (bsc#1177326). +- nvme-fc: remove err_work work item (bsc#1177326). +- nvme-fc: track error_recovery while connecting (bsc#1177326). +- nvme-fc: shorten reconnect delay if possible for FC (git-fixes). +- nvme-fc: wait for queues to freeze before calling (git-fixes). +- nvme-fc: fix error loop in create_hw_io_queues (git-fixes). +- nvme-fc: fix io timeout to abort I/O (bsc#1177326). +- nvme-pci: properly print controller address (git-fixes). +- commit 42e24bd + +- nvme-tcp: optimize queue io_cpu assignment for multiple queue + (git-fixes). +- Refresh + patches.suse/nvme-tcp-have-queue-prod-cons-send-list-become-a-lli.patch. +- commit b1bde16 + +- nvme-tcp: fix possible leakage during error flow (git-fixes). +- commit a68cfb4 + +- random: try to actively add entropy rather than passively wait for it (bsc#1178404). +- commit f78131b + +- Input: xpad - support Ardwiino Controllers (git-fixes). +- Input: i8042 - add ByteSpeed touchpad to noloop table + (git-fixes). +- usbnet: ipheth: fix connectivity with iOS 14 (git-fixes). +- commit 8f84738 + +- x86/insn-eval: Use new for_each_insn_prefix() macro to loop + over prefixes bytes (bsc#1152489). +- commit 73ffec0 + +- x86/uprobes: Do not use prefixes.nbytes when looping over + prefixes.bytes (bsc#1152489). +- commit 0b28903 + +- x86/resctrl: Fix AMD L3 QOS CDP enable/disable (bsc#1152489). +- commit d839ba5 + +- io_uring: grab ->fs as part of async offload (bsc#1179434 + CVE-2020-29373). +- commit b260e71 + +- blacklist.conf: Append 'drm/i915: Avoid mixing integer types during batch copies' +- commit 7318e0c + +- blacklist.conf: Append 'drm/i915: Clear the repeater bit on HDCP disable' +- commit c9b3793 + +- blacklist.conf: Append 'drm/i915: Fix sha_text population code' +- commit 3c40ed1 + +- blacklist.conf: Append 'drm/i915/gem: Delay tracking the GEM context until it is registered' +- commit 57a9af9 + +- blacklist.conf: Append 'drm/amd/powerplay: Fix hardmins not being sent to SMU for RV' +- commit 3708b97 + +- blacklist.conf: Append 'drm/amdgpu: Prevent kernel-infoleak in amdgpu_info_ioctl()' +- commit 13ab26a + +- Update + patches.suse/media-xirlink_cit-add-missing-descriptor-sanity-chec.patch + (bsc#1168952 CVE-2020-11668). + Added CVE number +- commit a0ec304 + +- blacklist.conf: Append 'drm/i915/gem: Delay tracking the GEM context until it is registered' +- commit b9b8698 + +- drm/imx: tve remove extraneous type qualifier (bsc#1152489) +- commit ef93a79 + +- drm/vc4: hdmi: Avoid sleeping in atomic context (bsc#1152489) + Backporting changes: + * context fixes +- commit 507bd66 + +- drm/panfrost: increase readl_relaxed_poll_timeout values (bsc#1152472) + Backporting changes: + * context fixes +- commit c82949a + +- drm/i915/gem: Avoid implicit vmap for highmem on x86-32 (bsc#1152489) + Backporting changes: + * context fixes +- commit 56c13b8 + +- drm/vc4: crtc: Rework a bit the CRTC state code (bsc#1152472) + Backporting changes: + * context fixes +- commit e8c9179 + +- drm/msm: Drop debug print in _dpu_crtc_setup_lm_bounds() (bsc#1152489) + Backporting changes: + * context fixes +- commit 620be39 + +- drm/msm: Avoid div-by-zero in dpu_crtc_atomic_check() (bsc#1152489) +- commit fa753cd + +- drm: mxsfb: check framebuffer pitch (bsc#1152472) + Backporting changes: + * context fixes +- commit 0dd9c60 + +- drm/panfrost: Ensure GPU quirks are always initialised (bsc#1152489) +- commit c088e37 + +- drm/crc-debugfs: Fix memleak in crc_control_write (bsc#1152472) +- commit 7cf7f8b + +- drm: rcar-du: Put reference to VSP device (bsc#1152489) +- commit 3aca956 + +- drm/radeon: Prefer lower feedback dividers (bsc#1152489) +- commit 7479884 + +- drm/amdgpu: pass NULL pointer instead of 0 (bsc#1152489) + Backporting changes: + * context fixes +- commit 7cc3993 + +- drm/amd/display: Fix wrong return value in dm_update_plane_state() (bsc#1152489) +- commit 7638845 + +- drm/gma500: fix error check (bsc#1152472) + Backporting changes: + * context fixes +- commit e0b3dc4 + +- drm: panel: Fix bus format for OrtusTech COM43H4M85ULC panel (bsc#1152472) + Backporting changes: + * context fixes +- commit aaeda6a + +- drm/vkms: fix xrgb on compute crc (bsc#1152472) + Backporting changes: + * changed filename from vkms_composer.c to vkms_crc.c + * context fixes +- commit 84538b3 + +- drm: mxsfb: Remove fbdev leftovers (bsc#1152472) + Backporting changes: + * context fixes +- commit 7b29584 + +- drm/sun4i: sun8i-csc: Secondary CSC register correction (bsc#1152489) +- commit c09dba1 + +- drm/vc4/vc4_hdmi: fill ASoC card owner (bsc#1152489) +- commit afa801d + +- drm/mediatek: Add missing put_device() call in (bsc#1152472) +- commit 2465a49 + +- drm/mediatek: Add missing put_device() call in mtk_drm_kms_init() (bsc#1152472) + Backporting changes: + * context fixes + * adapted to function layout +- commit 187e3d3 + +- drm/mediatek: Add exception handing in mtk_drm_probe() if component (bsc#1152472) +- commit 39014a3 + +- drm/i915: Fix sha_text population code (bsc#1152489) + Backporting changes: + * context fixes + * adapted I/O functions to old driver +- commit d501c26 + +- fbcon: Remove the superfluous break (bsc#1152472) +- commit e00dc98 + +- video: fbdev: radeon: Fix memleak in radeonfb_pci_register (bsc#1152472) +- commit 9657792 + +- video: fbdev: sis: fix null ptr dereference (bsc#1152472) +- commit d833a20 + +- speakup: Reject setting the speakup line discipline outside + of speakup (CVE-2020-27830 bsc#1179656). +- commit ec50953 + +- tty: Fix ->session locking (bsc#1179745). +- commit a9a2af9 + +- Update patches.suse/tty-Fix-pgrp-locking-in-tiocspgrp.patch + (git-fixes bsc#1179745). +- commit 556ded3 + +- Update + patches.suse/mm-slub-add-missing-tid-bump-in-kmem_cache_alloc_bulk.patch + (CVE-2020-29370, bsc#1179435, bsc#1167657, VM functionality). +- add reference to CVE and its bsc +- commit cc58091 + +- patches.suse/iommu-amd-Increase-interrupt-remapping-table-limit-t.patch: + (bsc#1179652). +- commit 34c2dd2 + +- blacklist.conf: Blacklist fdeb17c70c9e +- commit 392d677 + +- ext4: fix bogus warning in ext4_update_dx_flag() (bsc#1179716). +- commit c86f418 + +- reiserfs: Fix oops during mount (bsc#1179715). +- commit 89f9917 + +- quota: clear padding in v2r1_mem2diskdqb() (bsc#1179714). +- commit 20af897 + +- reiserfs: Initialize inode keys properly (bsc#1179713). +- commit 2b68a22 + +- udf: Fix memory leak when mounting (bsc#1179712). +- commit 816f9a3 + +- fs: Don't invalidate page buffers in block_write_full_page() + (bsc#1179711). +- commit 8f6f5ed + +- mm/error_inject: Fix allow_error_inject function signatures + (bsc#1179710). +- commit 2c7612f + +- libfs: fix error cast of negative value in simple_attr_write() + (bsc#1179709). +- commit 246e7d7 + +- jbd2: fix up sparse warnings in checkpoint code (bsc#1179707). +- commit 15002ce + +- ubifs: journal: Make sure to not dirty twice for auth nodes + (bsc#1179704). +- commit 0185a1d + +- ubifs: dent: Fix some potential memory leaks while iterating + entries (bsc#1179703). +- commit 32b7d27 + +- ubifs: xattr: Fix some potential memory leaks while iterating + entries (bsc#1179690). +- commit 950038e + +- ubifs: mount_ubifs: Release authentication resource in error + handling path (bsc#1179689). +- commit 0b68da4 + +- ubifs: Don't parse authentication mount options in remount + process (bsc#1179688). +- commit 391f198 + +- ubifs: Fix a memleak after dumping authentication mount options + (bsc#1179687). +- commit 3c605f4 + +- iomap: Set all uptodate bits for an Uptodate page (bsc#1179685). +- commit 8e539c4 + +- iomap: Mark read blocks uptodate in write_begin (bsc#1179684). +- commit d032f23 + +- iomap: Clear page error before beginning a write (bsc#1179683). +- commit da58998 + +- blacklist.conf: Blacklist 50b7d8568008 +- commit cc769c4 + +- fs/ufs: avoid potential u32 multiplication overflow + (bsc#1179682). +- commit 8289be8 + +- fs/minix: remove expected error message in block_to_path() + (bsc#1179681). +- commit 0ea255e + +- fs/minix: fix block limit check for V1 filesystems + (bsc#1179680). +- commit 06199cf + +- fs/minix: set s_maxbytes correctly (bsc#1179679). +- commit 69dd22c + +- fs/minix: reject too-large maximum file size (bsc#1179678). +- commit c5b4a77 + +- fs/minix: don't allow getting deleted inodes (bsc#1179677). +- commit cbd9376 + +- fs/minix: check return value of sb_getblk() (bsc#1179676). +- commit 86706a5 + +- ubifs: Fix wrong orphan node deletion in ubifs_jnl_update|rename + (bsc#1179675). +- commit 7055a2f + +- ext4: unlock xattr_sem properly in ext4_inline_data_truncate() + (bsc#1179673). +- commit d17d948 + +- ext4: correctly report "not supported" for {usr,grp}jquota + when !CONFIG_QUOTA (bsc#1179672). +- commit ace06ac + +- ext4: limit entries returned when counting fsmap records + (bsc#1179671). +- commit 869362f + +- ext4: fix leaking sysfs kobject after failed mount + (bsc#1179670). +- commit 2855c18 + +- x86/mce: Do not overwrite no_way_out if mce_end() fails + (bsc#1152489). +- commit 016650c + +- RDMA/bnxt_re: Fix sizeof mismatch for allocation of pbl_tbl. (bsc#1152489) +- commit b293ffc + +- RDMA/ipoib: Set rtnl_link_ops for ipoib interfaces (bsc#1152489) +- commit 2686c41 + +- RDMA/addr: Fix race with netevent_callback()/rdma_addr_cancel() (bsc#1152489) +- commit e7b302f + +- RDMA/hns: Fix missing sq_sig_type when querying QP (bsc#1152489) +- commit 428c91c + +- RDMA/hns: Add check for the validity of sl configuration (bsc#1152489) +- commit 1cb3ce0 + +- RDMA/hns: Correct typo of hns_roce_create_cq() (bsc#1152489) +- commit 8c66138 + +- RDMA/mlx5: Disable IB_DEVICE_MEM_MGT_EXTENSIONS if IB_WR_REG_MR can't work (bsc#1152489) +- commit a38a25c + +- RDMA/hns: Set the unsupported wr opcode (bsc#1152489) +- commit e06fae1 + +- RDMA/qedr: Fix iWARP active mtu display (bsc#1152489) +- commit d610dee + +- qede: Notify qedr when mtu has changed (bsc#1152489) +- commit 98fc763 + +- RDMA/qedr: Fix resource leak in qedr_create_qp (bsc#1152489) +- commit bdb50f5 + +- RDMA/qedr: Fix inline size returned for iWARP (bsc#1152489) +- commit 1a57d92 + +- RDMA/qedr: Fix use of uninitialized field (bsc#1152489) +- commit 6926fdb + +- RDMA/qedr: Fix doorbell setting (bsc#1152489) +- commit 7085d43 + +- RDMA/qedr: Fix qp structure memory leak (bsc#1152489) +- commit 15f0227 + +- RDMA/umem: Prevent small pages from being returned by ib_umem_find_best_pgsz() (bsc#1152489) +- commit 6fda3ed + +- RDMA/umem: Fix ib_umem_find_best_pgsz() for mappings that cross a page boundary (bsc#1152489) +- commit e3d4c09 + +- IB/mlx4: Adjust delayed work when a dup is observed (bsc#1152489) +- commit f007f05 + +- IB/mlx4: Fix starvation in paravirt mux/demux (bsc#1152489) +- commit b4a4680 + +- IB/mlx4: Add support for MRA (bsc#1152489) +- commit d8e693f + +- IB/mlx4: Add and improve logging (bsc#1152489) +- commit d9fbac5 + +- IB/isert: Fix unaligned immediate-data handling (bsc#1152489) +- commit ff723af + +- nvme-rdma: handle unexpected nvme completion data length + (bsc#1178612). +- commit 302adf9 + +- nvme-tcp: avoid repeated request completion (bsc#1179519). +- nvme-rdma: avoid repeated request completion (bsc#1179519). +- nvme-tcp: avoid race between time out and tear down + (bsc#1179519). +- nvme-rdma: avoid race between time out and tear down + (bsc#1179519). +- nvme: introduce nvme_sync_io_queues (bsc#1179519). +- nvme-rdma: fix reset hang if controller died in the middle of + a reset (bsc#1179519). +- nvme-rdma: fix timeout handler (bsc#1179519). +- nvme-rdma: serialize controller teardown sequences + (bsc#1179519). +- nvme-tcp: fix reset hang if controller died in the middle of + a reset (bsc#1179519). +- nvme-tcp: fix timeout handler (bsc#1179519). +- nvme-tcp: serialize controller teardown sequences (bsc#1179519). +- nvme: have nvme_wait_freeze_timeout return if it timed out + (bsc#1179519). +- nvme-fabrics: don't check state NVME_CTRL_NEW for request + acceptance (bsc#1179519). +- nvme-rdma: fix controller reset hang during traffic + (bsc#1179519). +- nvme-tcp: fix controller reset hang during traffic + (bsc#1179519). +- nvme-tcp: optimize network stack with setting msg flags + (bsc#1179519). +- nvme-tcp: leverage request plugging (bsc#1179519). +- nvme-tcp: have queue prod/cons send list become a llist + (bsc#1179519). +- commit 2ed3c82 + +- RDMA/core: Fix reported speed and width (bsc#1152489) +- commit 8c599c6 + +- RDMA/rxe: Fix memleak in rxe_mem_init_user (bsc#1152489) +- commit cc6aac8 + +- RDMA/rxe: Fix the parent sysfs read when the interface has 15 chars (bsc#1152489) +- commit e9e9418 + +- RDMA/bnxt_re: Do not add user qps to flushlist (bsc#1152489) +- commit 940898b + +- RDMA/netlink: Remove CAP_NET_RAW check when dump a raw QP (bsc#1152489) +- commit ccd3388 + +- RDMA/core: Fix return error value in _ib_modify_qp() to negative (bsc#1152489) +- commit 687bd9b + +- RDMA/rxe: Prevent access to wr->next ptr afrer wr is posted to send queue (bsc#1152489) +- commit 4299c93 + +- RDMA/qedr: SRQ's bug fixes (bsc#1152489) +- commit 9e7f793 + +- nvme-tcp: set MSG_SENDPAGE_NOTLAST with MSG_MORE when we have + (bsc#1179519). +- Refresh + patches.suse/0004-nvme-tcp-check-page-by-sendpage_ok-before-calling-ke.patch. +- commit 32b2bc0 + +- nvme-tcp: try to send request in queue_rq context (bsc#1179519). +- nvme-tcp: avoid scheduling io_work if we are already polling + (bsc#1179519). +- nvme-tcp: use bh_lock in data_ready (bsc#1179519). +- commit 0a88b1e + +- RDMA/rxe: Return void from rxe_mem_init_dma() (bsc#1152489) +- commit 3d531e1 + +- RDMA/rxe: Return void from rxe_init_port_param() (bsc#1152489) +- commit d46a4c5 + +- RDMA/rxe: Drop pointless checks in rxe_init_ports (bsc#1152489) +- commit 2094aae + +- RDMA/counter: Allow manually bind QPs with different pids to same counter (bsc#1152489) +- commit 309f664 + +- nvme-tcp: fix possible crash in recv error flow (bsc#1179519). +- commit 4c08b72 + +- RDMA/counter: Only bind user QPs in auto mode (bsc#1152489) +- commit 72cbdac + +- RDMA/rxe: Skip dgid check in loopback mode (bsc#1152489) +- commit e2d95da + +- IB/uverbs: Set IOVA on IB MR in uverbs layer (bsc#1152489) +- commit b8a964a + +- nvme-tcp: don't poll a non-live queue (bsc#1179519). +- Refresh + patches.suse/net-use-skb_queue_empty_lockless-in-busy-poll-contex.patch. +- commit f682d57 + +- RDMA/core: Fix bogus WARN_ON during ib_unregister_device_queued() (bsc#1152489) +- commit 3cc3811 + +- nvme-tcp: break from io_work loop if recv failed (bsc#1179519). +- nvme-tcp: move send failure to nvme_tcp_try_send (bsc#1179519). +- commit c56582a + +- RDMA/rxe: Remove unused rxe_mem_map_pages (bsc#1152489) +- commit e074cd4 + +- asm-generic: Make msi.h a mandatory include/asm header + (jsc#SLE-16823). +- Refresh + patches.suse/powerpc-64s-Implement-queued-spinlocks-and-rwlocks.patch. +- commit 23f23de + +- iommu/vt-d: Fix compile error with CONFIG_PCI_ATS not set + (jsc#SLE-16823). +- commit 6568a78 + +- iommu/vt-d: Cure VF irqdomain hickup (jsc#SLE-16823). +- genirq/irqdomain: Make sure all irq domain flags are distinct + (jsc#SLE-16823). +- commit c29c85b + +- cifs: fix DFS mount with cifsacl/modefromsid (bsc#1178270). +- commit c824489 + +- cifs: fix check of tcon dfs in smb1 (bsc#1178270). +- commit ff315b4 + +- cifs: Fix an error pointer dereference in cifs_mount() + (bsc#1178270). +- commit e5a8cdb + +- cifs: document and cleanup dfs mount (bsc#1178270). +- commit de6694e + +- cifs: only update prefix path of DFS links in + cifs_tree_connect() (bsc#1178270). +- commit 1f46cb8 + +- cifs: fix double free error on share and prefix (bsc#1178270). +- commit bf4c8ab + +- cifs: handle RESP_GET_DFS_REFERRAL.PathConsumed in reconnect + (bsc#1178270). +- commit 947bd74 + +- cifs: handle empty list of targets in cifs_reconnect() + (bsc#1178270). +- commit 846daee + +- cifs: rename reconn_inval_dfs_target() (bsc#1178270). +- commit 12d8cf3 + +- cifs: reduce number of referral requests in DFS link lookups + (bsc#1178270). +- commit cc7ec21 + +- cifs: merge __{cifs,smb2}_reconnect[_tcon]() into + cifs_tree_connect() (bsc#1178270). +- commit b6f05ac + +- cifs: get rid of unused parameter in reconn_setup_dfs_targets() + (bsc#1178270). +- commit a6a1916 + +- cifs: handle hostnames that resolve to same ip in failover + (bsc#1178270). +- commit cd8e61d + +- cifs: set up next DFS target before generic_ip_connect() + (bsc#1178270). +- commit 1099aff + +- cifs: fix leaked reference on requeued write (bsc#1178270). +- commit f474970 + +- cifs: fix uninitialised lease_key in open_shroot() + (bsc#1178270). +- commit dbce315 + +- cifs: ensure correct super block for DFS reconnect + (bsc#1178270). +- commit 5350fc5 + +- cifs: do not share tcons with DFS (bsc#1178270). +- commit c8f7b47 + +- cifs: add NULL check for ses->tcon_ipc (bsc#1178270). +- commit 0e24399 + +- mm/userfaultfd: do not access vma->vm_mm after calling + handle_userfault() (bsc#1179204). +- commit 6bb3d8f + +- x86/kvm: Reserve KVM_FEATURE_MSI_EXT_DEST_ID (jsc#SLE-16823). +- PCI: MSI: Fix Kconfig dependencies for PCI_MSI_ARCH_FALLBACKS + (jsc#SLE-16823). +- x86/apic/msi: Unbreak DMAR and HPET MSI (jsc#SLE-16823). +- iommu/amd: Remove domain search for PCI/MSI (jsc#SLE-16823). +- iommu/vt-d: Remove domain search for PCI/MSI (jsc#SLE-16823). +- x86/irq: Make most MSI ops XEN private (jsc#SLE-16823). +- x86/irq: Cleanup the arch_*_msi_irqs() leftovers + (jsc#SLE-16823). +- PCI/MSI: Make arch_.*_msi_irq fallbacks selectable + (jsc#SLE-16823). +- Update config files. + PCI_MSI_ARCH_FALLBACKS is now auto-selected. +- x86/pci: Set default irq domain in pcibios_add_device() + (jsc#SLE-16823). +- iommm/amd: Store irq domain in struct device (jsc#SLE-16823). +- iommm/vt-d: Store irq domain in struct device (jsc#SLE-16823). +- x86/xen: Wrap XEN MSI management into irqdomain (jsc#SLE-16823). +- irqdomain/msi: Allow to override msi_domain_alloc/free_irqs() + (jsc#SLE-16823). +- x86/xen: Consolidate XEN-MSI init (jsc#SLE-16823). +- x86/xen: Rework MSI teardown (jsc#SLE-16823). +- x86/xen: Make xen_msi_init() static and rename it to + xen_hvm_msi_init() (jsc#SLE-16823). +- PCI/MSI: Provide pci_dev_has_special_msi_domain() helper + (jsc#SLE-16823). +- PCI_vmd_Mark_VMD_irqdomain_with_DOMAIN_BUS_VMD_MSI + (jsc#SLE-16823). +- irqdomain/msi: Provide DOMAIN_BUS_VMD_MSI (jsc#SLE-16823). +- x86/irq: Initialize PCI/MSI domain at PCI init time + (jsc#SLE-16823). +- Refresh + patches.suse/x86-paravirt-allow-hypervisor-specific-vmmcall-handling-under-sev-es. +- x86/pci: Reducde #ifdeffery in PCI init code (jsc#SLE-16823). +- x86/irq: Move apic_post_init() invocation to one place + (jsc#SLE-16823). +- x86/msi: Use generic MSI domain ops (jsc#SLE-16823). +- x86/msi: Consolidate MSI allocation (jsc#SLE-16823). +- PCI/MSI: Rework pci_msi_domain_calc_hwirq() (jsc#SLE-16823). +- x86/irq: Consolidate UV domain allocation (jsc#SLE-16823). +- x86/irq: Consolidate DMAR irq allocation (jsc#SLE-16823). +- x86_ioapic_Consolidate_IOAPIC_allocation (jsc#SLE-16823). +- x86/msi: Consolidate HPET allocation (jsc#SLE-16823). +- x86/irq: Prepare consolidation of irq_alloc_info + (jsc#SLE-16823). +- iommu/irq_remapping: Consolidate irq domain lookup + (jsc#SLE-16823). +- iommu/amd: Consolidate irq domain getter (jsc#SLE-16823). +- iommu/vt-d: Consolidate irq domain getter (jsc#SLE-16823). +- x86/irq: Add allocation type for parent domain retrieval + (jsc#SLE-16823). +- x86_irq_Rename_X86_IRQ_ALLOC_TYPE_MSI_to_reflect_PCI_dependency + (jsc#SLE-16823). +- x86/msi: Remove pointless vcpu_affinity callback + (jsc#SLE-16823). +- x86/msi: Move compose message callback where it belongs + (jsc#SLE-16823). +- genirq/chip: Use the first chip in irq_chip_compose_msi_msg() + (jsc#SLE-16823). +- PCI: vmd: Dont abuse vector irqomain as parent (jsc#SLE-16823). +- x86/init: Remove unused init ops (jsc#SLE-16823). +- iommu/amd: Prevent NULL pointer dereference (jsc#SLE-16823). +- irqdomain: Export irq_domain_update_bus_token (jsc#SLE-16823). +- KVM: x86: Fixes posted interrupt check for IRQs delivery modes + (jsc#SLE-16823). +- x86/apic/msi: Plug non-maskable MSI affinity race + (jsc#SLE-16823). +- Refresh + patches.suse/genirq-Add-protection-against-unsafe-usage-of-generi.patch. +- Refresh + patches.suse/msft-hv-2119-irqdomain-treewide-Keep-firmware-node-unconditionall.patch. +- KVM: X86: Use APIC_DEST_* macros properly in + kvm_lapic_irq.dest_mode (jsc#SLE-16823). +- commit 3ea20e1 + +- HMAT: Skip publishing target info for nodes with no online + memory (bsc#1178660). +- HMAT: Register memory-side cache after parsing (bsc#1178660). +- commit c10070c + +- RDMA/core: Free DIM memory in error unwind (bsc#1152489) +- commit 21b1eaa + +- RDMA/core: Stop DIM before destroying CQ (bsc#1152489) +- commit 5bb1399 + +- scsi: core: Return BLK_STS_AGAIN for ALUA transitioning + (bsc#1165933, bsc#1171000). +- commit 56a64e3 + +- ALSA: usb-audio: Fix MOTU M-Series quirks (bsc#1178203). +- ALSA: usb-audio: Fix quirks for other BOSS devices + (bsc#1178203). +- ALSA: usb-audio: Add implicit_fb module option (bsc#1178203). +- ALSA: usb-audio: Add generic implicit fb parsing (bsc#1178203). +- ALSA: usb-audio: Factor out the implicit feedback quirk code + (bsc#1178203). +- ALSA: usb-audio: Quirk for BOSS GT-001 (bsc#1178203). +- ALSA: usb-audio: Show sync endpoint information in proc outputs + (bsc#1178203). +- ALSA: usb-audio: Use unsigned char for iface and altsettings + fields (bsc#1178203). +- ALSA: usb-audio: Replace slave/master terms (bsc#1178203). +- ALSA: usb-audio: Simplify rate_min/max and rates set up + (bsc#1178203). +- ALSA: usb-audio: Unify the code for the next packet size + calculation (bsc#1178203). +- ALSA: usb-audio: Drop unneeded snd_usb_substream fields + (bsc#1178203). +- ALSA: usb-audio: Refactoring endpoint URB deactivation + (bsc#1178203). +- ALSA: usb-audio: Use atomic_t for endpoint use_count + (bsc#1178203). +- ALSA: usb-audio: Constify audioformat pointer references + (bsc#1178203). +- ALSA: usb-audio: Fix possible stall of implicit fb packet + ring-buffer (bsc#1178203). +- ALSA: usb-audio: Refactor endpoint management (bsc#1178203). +- ALSA: usb-audio: Fix EP matching for continuous rates + (bsc#1178203). +- ALSA: usb-audio: Always set up the parameters after resume + (bsc#1178203). +- ALSA: usb-audio: Set callbacks via + snd_usb_endpoint_set_callback() (bsc#1178203). +- ALSA: usb-audio: Stop both endpoints properly at error + (bsc#1178203). +- ALSA: usb-audio: Simplify snd_usb_init_pitch() arguments + (bsc#1178203). +- ALSA: usb-audio: Simplify snd_usb_init_sample_rate() arguments + (bsc#1178203). +- ALSA: usb-audio: Pass snd_usb_audio object to quirk functions + (bsc#1178203). +- ALSA: usb-audio: Don't set altsetting before initializing + sample rate (bsc#1178203). +- ALSA: usb-audio: Add snd_usb_get_host_interface() helper + (bsc#1178203). +- ALSA: usb-audio: Drop keep_interface flag again (bsc#1178203). +- ALSA: usb-audio: Create endpoint objects at parsing phase + (bsc#1178203). +- ALSA: usb-audio: Avoid doubly initialization for implicit fb + (bsc#1178203). +- ALSA: usb-audio: Drop debug.h (bsc#1178203). +- ALSA: usb-audio: Simplify hw_params rules (bsc#1178203). +- ALSA: usb-audio: Add hw constraint for implicit fb sync + (bsc#1178203). +- ALSA: usb-audio: Move snd_usb_autoresume() call out of + setup_hw_info() (bsc#1178203). +- ALSA: usb-audio: Track implicit fb sync endpoint in audioformat + list (bsc#1178203). +- ALSA: usb-audio: Improve some debug prints (bsc#1178203). +- ALSA: usb-audio: Set and clear sync EP link properly + (bsc#1178203). +- ALSA: usb-audio: Add snd_usb_get_endpoint() helper + (bsc#1178203). +- ALSA: usb-audio: Check implicit feedback EP generically for UAC2 + (bsc#1178203). +- ALSA: usb-audio: Check valid altsetting at parsing rates for + UAC2/3 (bsc#1178203). +- ALSA: usb-audio: Don't call usb_set_interface() at trigger + callback (bsc#1178203). +- ALSA: usb-audio: Handle discrete rates properly in hw + constraints (bsc#1178203). +- commit 25f15d1 + +- prom_init: enable verbose prints (bsc#1178142 bsc#1180759). -- commit 745d3a7 +- commit c0bbedb +- scsi_dh_alua: set 'transitioning' state on unit attention + (bsc#1171000, bsc#1165933). +- commit cf7ac61 + +- scsi_dh_alua: return BLK_STS_AGAIN for ALUA transitioning state + (bsc#1165933, bsc#1171000). +- commit f6e8a74 + +- block: return status code in blk_mq_end_request() (bsc#1171000, + bsc#1165933). +- commit 0b97993 + kiconthemes +- Added kiconthemes-suppress-warning-for-adwaita.patch: Prevent + warning about some legacy icons in Adwaita, those icons are used + for backward compatibility. (bsc#1179545) + kmail +- Add Fix-Bug-426596.patch to fix a possible crash of the + archivemail agent after changing its settings (boo#1176666, + kde#426596, kde#425786, kde#424232) + kmod +- Update to v28 + * Add Zstandard to the supported compression formats using libzstd + (tests only - cannot be disabled in tests) + * Ignore ill-formed kernel command line, e.g. with "ivrs_acpihid[00:14.5]=AMD0020:0" + option in it + * Fix some memory leaks + * Fix 0-length builtin.alias.bin: it needs at least the index header + +- Backport upstream fix 0001-Fix-modinfo-F-always-shows-name-for-built-ins.patch + +- Update usr-lib-modprobe.patch to upstream submission (boo#1180821). +- Require libxslt-tools for xsltproc and use local stylesheet. + + no-stylesheet-download.patch + +- Add usr-lib-modprobe.patch [boo#1092648] + +- prepare usrmerge (boo#1029961) + +- Drop old RPM constructs from the build recipe. + +- Drop kmod-compat (boo#1173353): + The symlinks in kmod-compat are not obsolete. They are + desirable for kernel module autoload. The "kernel.modprobe" + sysctl references /sbin/modprobe, and changing it to + "/usr/bin/kmod load" is not possible, because this sysctl + specifies a single executable, not a command (so spaces will be + treated as part of the filename). + +- Update to release 27 + * Link to libcrypto rather than requiring openssl. + * Use PKCS#7 instead of CMS for parsing module signature to be + compatible with LibreSSL and OpenSSL < 1.1.0. + * Teach modinfo to parse modules.builtin.modinfo. When using + Linux kernel >= v5.2~rc1, it is possible to get module + information from this new file. + +- Enable PKCS#7 signature parsing again - requires openssl +- Fix testsuite build - requires kernel-default-devel + +- Update to new upstream release 26 + * depmod now handles parallel invocations better by protecting + the temporary files being used. + * modprobe has a new --show-exports option. Under the hood, + this reads the .symtab and .strtab sections rather than + __versions so it shows useful data even if kernel is + configured without modversions (CONFIG_MODVERSIONS). + * modinfo supports PKCS#7 parsing by using openssl. +- Replaced the asn1c-based parser by an openssl-based PKCS + parser. +- Remove libkmod-signature-Fix-crash-when-module-signature-is.patch, + libkmod-signature-pkcs-7-fix-crash-when-signer-info-.patch, + libkmod-signature-implement-pkcs7-parsing-with-asn1c.patch + (not accepted upstream) +- Remove enum.patch, + depmod-Prevent-module-dependency-files-corruption-du.patch, + depmod-Prevent-module-dependency-files-missing-durin.patch, + depmod-shut-up-gcc-insufficinet-buffer-warning.patch + (accepted upstream) + - * Add depmod-Prevent-module-dependency-files-corruption-du.patch - * Add depmod-Prevent-module-dependency-files-missing-durin.patch - * Add depmod-shut-up-gcc-insufficinet-buffer-warning.patch +- Add depmod-Prevent-module-dependency-files-corruption-du.patch +- Add depmod-Prevent-module-dependency-files-missing-durin.patch +- Add depmod-shut-up-gcc-insufficinet-buffer-warning.patch -- Remove enum padding constants, add enum.patch. +- Remove enum padding constants, add enum.patch (boo#1097869). -- Do not filter unsupported modules when running a vanilla kernel - (bnc#871066). New patch: - 0011-Do-not-filter-unsupported-modules-when-running-a-van.patch - -- Update to new upstream release 18 - * Calling depmod with modules creating a dependency loop will now - make depmod return an error and not update the indexes. This is - to protect the current index not being overridden by another - index that may cause a boot failure, depending on the buggy module. -- Remove last vestiges of gpg-offline -- Remove 0001-depmod-Make-dependency-loops-be-fatal.patch - (applied upstream) - -- Remove 0001-Fix-recursion-loop-in-mod_count_all_dependencies-whe.patch -- Add 0001-depmod-Make-dependency-loops-be-fatal.patch (upstream fix for bnc#872715) - -- Add 0001-Fix-recursion-loop-in-mod_count_all_dependencies-whe.patch - * Fix segfault at cycled deps (bnc#872715) - -- testsutie: Uncompress most modules (updated test-files.tar.xz) -- testsuite: Do not run tests with *.ko.gz if zlib is not enabled -- Disable compression support, as other tools do not support it - (e.g. module signing) - -- Remove the now obsolete test-files.tar.xz tarball - -- Updated to kmod 17 - * Do not require xsltproc for build - * Parse softdeps stored in kernel modules - * Add experimental python bindings (not enabled in the package yet) - * Misc bugfixes -- Deleted patches that went upstream. Only the unsupported modules - feature remains: - 0002-modprobe-Recognize-allow-unsupported-modules-on-comm.patch - 0003-libkmod-config-Recognize-allow_unsupported_modules-i.patch - 0009-libkmod-Implement-filtering-of-unsupported-modules-o.patch - 0010-modprobe-Implement-allow-unsupported-modules.patch - -- libkmod: Ignore errors from softdeps (bnc#831227) -- config: also parse softdeps from modules (bnc#831227) - -- libkmod-config,depmod: Accept special files as configuration - files, too -- libkmod-config: Only match dot before '=' in /proc/cmdline - -- Provide and obsolete module-init-tools (bnc#867442) - -- testsuite: Fix uname() during glibc startup - -- testsuite: Check the list of loaded modules after a test -- testsuite: Add test for modprobe --force -- testsuite: Do not provide finit_module(2) on older kernels -- Add some tests for kernels without finit_module(2) -- libkmod-module: Simplify kmod_module_insert_module() -- libkmod: Implement filtering of unsupported modules (fate#316971) -- modprobe: Implement --allow-unsupported-modules (fate#316971) -- make the %check section fatal - -- Remove "rmmod -w" documentation and getopt entry -- modprobe: Recognize --allow-unsupported-modules on commandline - (fate#316971) -- libkmod-config: Recognize allow_unsupported_modules in the - configuration (fate#316971) - -- Drop the non-upstream kmod-no-static.diff; the size difference is - negligible. - -- Update to new upstream release 16 - * The option to wait on module removal has been removed from the - kernel, and now from rmmod. The constant KMOD_REMOVE_NOWAIT in - libkmod is still there for backwards compatibility but it is - always enforced, passing O_NONBLOCK to delete_module(2). - -- Update to new upstream release 15 - * kmod static-nodes no longer fails if modules.devname does not exist - * Fix getting boolean parameter from kernel cmdline in case the - value is omitted - * kmod static-nodes creates parent directories if given a -o option -- Add kmod-no-static.diff - -- Update to new upstream release 14 - * Some bug fixes and a new "static-nodes" command to parse - modules.devname. - -- Update to new upstream release 13 - * depmod: --symbol-prefix actually requires an argument - * depmod: fix builtin symbols resolution when the prefix symbol is set - * libkmod: Use secure_getenv if available - * rmmod: Teach rmmod about builtin modules - * libkmod: add finit_module logic - * modprobe: Fix assertion on --show-depends with bogus config file - * Many other bugfixes see https://lwn.net/Articles/546711 - -- Update to new upstream release 12 - * Fix removing vermagic from module when told to force load a module - * Fix removing __versions section when told to force load a - module: we need to mangle the section header, not the section. - * modinfo no longer fails while loading a module from file when - path contains ".ko" substring - -- Require suse-module-tools now that it is present in Base:System -- kmod-compat depends on kmod, add that missing Requires. - -- Update to kmod-11 - * Fix testsuite defining symbols twice on 32 bit systems - * Allow to check generated files against correct ones - * libkmod now keeps a file opened after the first call to - * kmod_module_get_{info,versions,symbols,dependency_symbols}. This - reduces signficantly the amount of time depmod tool takes to - execute. Particularly if compressed modules are used. - * Remove --with-rootprefix from build system. It was not a great - idea after all and should not be use since it causes more harm - than benefits. - * Hide --wait option on rmmod. This feature is being targeted for - removal from kernel. rmmod still accepts this option, but it is - hidden now: man page and usage() says nothing about it and if - it is used, user will get a 10s sleep. This way we can check and - help if anyone is using this feature. - * Refactor message logging on all tools, giving proper prefix, - routing everything to syslog when asked for, etc. - * Fix parsing of modules.order when using compressed modules - * Usage messages go to stdout instead of stderr - * Fix memory leak in hash implementation - -- Provide the "modutils" virtual symbol -- Update to new upstream release 10 - * Read coresize from /sys if supported - * Add flag to kmod_module_probe_insert() to apply blacklisting - during probe only if mod is an alias. Now modprobe uses this - flag by default. - -- Update to new upstream release 9 - * build-sys: allow compressed modules in testsuite - * build-sys: Make dirs writable on rootfs creation - * depmod: use ferror and fclose to check for error - * depmod: return error when index is truncated due to ENOSPC - * depmod: fix coding-style issue in array declaration - * depmod: fail if any index could not be created - * depmod: don't return error if modules.builtin don't exist - * libkmod-util: split function for usec conversion - * libkmod-util: add missing stdbool.h include -- Fix broken testsuites on 32bit systems. - add: fix-32bits.diff - -- Restore patch descriptions - (and use `quilt setup` for rediff in future) - -- Update to new upstream release 8 - * doc: remove links to NULL going nowhere. - * modprobe: handle -ENOENT return from init_module. - * doc: silent man page generation and fix gtk-doc warnings. - * modprobe: fix typo in config dump: option->options. - -- Update to new upstream release 7 - * build-sys: don't set CFLAGS and LDFLAGS. - * build-sys: re-organize configure.ac. - * configure.ac: Move link only flags out of CFLAGS and into LDFLAGS. - * Add CC_CHECK_LDFLAGS_APPEND m4 macro. - * config: use order /etc, /run, /lib. - * modprobe: set log prio to 0 if user passed -q arg. - * modprobe: always try to remove all modules in command line. - * modprobe: don't check if module builtin to decide if it's builtin. - * modprobe: fix error path in removing modules. - -- place binary in /usr tree (UsrMerge project) - -- Update to new upstream release 6 - * New API: kmod_module_apply_filter, a function to apply filters - in a list of modules - * Lookup modules.builtin.bin to decide if a module is built into - the kernel - * Resolve infinite loops with softdeps and user configs with - install commands - -- Update to new upstream release 5 - * modprobe no longer works with paths: it only accepts module names - and/or aliases now. More code is now shared by libkmod and - modprobe. - -- Update to new upstream release 4 - * new APIs in libkmod: blacklists, install/remove commands, - aliases, options, softdeps and dumping indexes - -- Update to new upstream release 3 - * new APIs in libkmod: get symbols from module, parsing the ELF - section, dependency symbols, insert module like modprobe - * support for Xz-compressed modules - * the depmod tool - -- Use --enable-zlib and buildRequire zlib -- run make check - -- Initial package for build.opensuse.org - krb5 +- Add recursion limit for ASN.1 indefinite lengths; (CVE-2020-28196); + (bsc#1178512); +- Added patches: + * 0010-Add-recursion-limit-for-ASN.1-indefinite-lengths.patch + +- Fix prefix reported by krb5-config, libraries and headers are not + installed under /usr/lib/mit prefix. (bsc#1174079) + +- Update logrotate script, call systemd to reload the services + instead of init-scripts. (boo#1169357) + +- Integrate pam_keyinit pam module, ksu-pam.d; (bsc#1081947); + (bsc#1144047); + +- Move LDAP schema files from /usr/share/doc/packages/krb5 to + /usr/share/kerberos/ldap; (bsc#1134217); + +- Upgrade to 1.16.3 + * Fix a regression in the MEMORY credential cache type which could cause + client programs to crash. + * MEMORY credential caches will not be listed in the global collection, + with the exception of the default credential cache if it is of type MEMORY. + * Remove an incorrect assertion in the KDC which could be used to cause + a crash [CVE-2018-20217]. + * Fix bugs with concurrent use of MEMORY ccache handles. + * Fix a KDC crash when falling back between multiple OTP tokens configured + for a principal entry. + * Fix memory bugs when gss_add_cred() is used to create a new credential, + and fix a bug where it ignores the desired_name. + * Fix the behavior of gss_inquire_cred_by_mech() when the credential does + not contain an element of the requested mechanism. + * Make cross-realm S4U2Self requests work on the client when no + default_realm is configured. + * Add a kerberos(7) man page containing documentation of the environment + variables that affect Kerberos programs. +- Use systemd-tmpfiles to create files under /var/lib/kerberos, required + by transactional updates; (bsc#1100126); +- Rename patches: + * krb5-1.12-pam.patch => 0001-krb5-1.12-pam.patch + * krb5-1.9-manpaths.dif => 0002-krb5-1.9-manpaths.patch + * krb5-1.12-buildconf.patch => 0003-krb5-1.12-buildconf.patch + * krb5-1.6.3-gssapi_improve_errormessages.dif to + 0004-krb5-1.6.3-gssapi_improve_errormessages.patch + * krb5-1.6.3-ktutil-manpage.dif => 0005-krb5-1.6.3-ktutil-manpage.patch + * krb5-1.12-api.patch => 0006-krb5-1.12-api.patch + * krb5-1.12-ksu-path.patch => 0007-krb5-1.12-ksu-path.patch + * krb5-1.12-selinux-label.patch => 0008-krb5-1.12-selinux-label.patch + * krb5-1.9-debuginfo.patch => 0009-krb5-1.9-debuginfo.patch + +- Upgrade to 1.16.1 + * kdc client cert matching on client principal entry + * Allow ktutil addent command to ignore key version and use + non-default salt string. + * add kpropd pidfile support + * enable "encrypted_challenge_indicator" realm option on tickets + obtained using FAST encrypted challenge pre-authentication. + * dates through 2106 accepted + * KDC support for trivially renewable tickets + * stop caching referral and alternate cross-realm TGTs to prevent + duplicate credential cache entries + +- BSC#1021402 move %{_libdir}/krb5/plugins/tls/k5tls.so to krb5 package + so it is avaiable for krb5-client as well. + +- Upgrade to 1.15.3 + * Fix flaws in LDAP DN checking, including a null dereference KDC + crash which could be triggered by kadmin clients with administrative + privileges [CVE-2018-5729, CVE-2018-5730]. + * Fix a KDC PKINIT memory leak. + * Fix a small KDC memory leak on transited or authdata errors when + processing TGS requests. + * Fix a null dereference when the KDC sends a large TGS reply. + * Fix "kdestroy -A" with the KCM credential cache type. + * Fix the handling of capaths "." values. + * Fix handling of repeated subsection specifications in profile files + (such as when multiple included files specify relations in the same + subsection). + +- Added support for /etc/krb5.conf.d/ for configuration snippets + +- Replace references to /var/adm/fillup-templates with new + %_fillupdir macro (boo#1069468) + +- Remove build dependency doxygen, python-Cheetah, python-Sphinx, + python-libxml2, python-lxml, most of which are python 2 programs. + Consequently remove -doc subpackage. Users are encouraged to use + online documentation. (bsc#1066461) + +- Update package descriptions. + +- Upgrade to 1.15.2 + * Fix a KDC denial of service vulnerability caused by unset status + strings [CVE-2017-11368] + * Preserve GSS contexts on init/accept failure [CVE-2017-11462] + * Fix kadm5 setkey operation with LDAP KDB module + * Use a ten-second timeout after successful connection for HTTPS KDC + requests, as we do for TCP requests + * Fix client null dereference when KDC offers encrypted challenge + without FAST + * Ignore dotfiles when processing profile includedir directive + * Improve documentation + +- Set "rdns" and "dns_canonicalize_hostname" to false in krb5.conf + in order to improve client security in handling service principle + names. (bsc#1054028) + +- Prevent kadmind.service startup failure caused by absence of + LDAP service. (bsc#903543) + +- There is no change made about the package itself, this is only + copying over some changelog texts from SLE package: +- bug#918595 owned by varkoly@suse.com: VUL-0: CVE-2014-5355 + krb5: denial of service in krb5_read_message +- bug#912002 owned by varkoly@suse.com: VUL-0 + CVE-2014-5352, CVE-2014-9421, CVE-2014-9422, CVE-2014-9423: + krb5: Vulnerabilities in kadmind, libgssrpc, gss_process_context_token +- bug#910458 owned by varkoly@suse.com: VUL-1 + CVE-2014-5354: krb5: NULL pointer dereference when using keyless entries +- bug#928978 owned by varkoly@suse.com: VUL-0 + CVE-2015-2694: krb5: issues in OTP and PKINIT kdcpreauth modules leading + to requires_preauth bypass +- bug#910457 owned by varkoly@suse.com: VUL-1 + CVE-2014-5353: krb5: NULL pointer dereference when using a ticket policy + name as a password policy name +- bug#991088 owned by hguo@suse.com: VUL-1 + CVE-2016-3120: krb5: S4U2Self KDC crash when anon is restricted +- bug#992853 owned by hguo@suse.com: krb5: bogus prerequires +- [fate#320326](https://fate.suse.com/320326) +- bug#982313 owned by pgajdos@suse.com: Doxygen unable to resolve reference + from \cite + +- Remove wrong PreRequires from krb5 + +- use HTTPS project and source URLs + +- use source urls. +- krb5.keyring: Added Greg Hudson + +- removed obsolete krb5-1.15-fix_kdb_free_principal_e_data.patch +- Upgrade to 1.15.1 + * Allow KDB modules to determine how the e_data field of principal + fields is freed + * Fix udp_preference_limit when the KDC location is configured with + SRV records + * Fix KDC and kadmind startup on some IPv4-only systems + * Fix the processing of PKINIT certificate matching rules which have + two components and no explicit relation + * Improve documentation + +- remove useless environment.pickle to make build-compare happy + +- Introduce patch + krb5-1.15-fix_kdb_free_principal_e_data.patch + to fix freeing of e_data in the kdb principal + +- Upgrade to 1.15 +- obsoleted Patch7 (krb5-1.7-doublelog.patch) fixed in 1.12.2 +- obsoleted patch to src/util/gss-kernel-lib/Makefile.in since + file is not available in upstream source anymore +- obsoleted Patch15 (krb5-fix_interposer.patch) fixed in 1.15 +- Upgrade from 1.14.4 to 1.15 - major changes: + Administrator experience: + * Add support to kadmin for remote extraction of current keys without + changing them (requires a special kadmin permission that is excluded + from the wildcard permission), with the exception of highly + protected keys. + * Add a lockdown_keys principal attribute to prevent retrieval of the + principal's keys (old or new) via the kadmin protocol. In newly + created databases, this attribute is set on the krbtgt and kadmin + principals. + * Restore recursive dump capability for DB2 back end, so sites can + more easily recover from database corruption resulting from power + failure events. + * Add DNS auto-discovery of KDC and kpasswd servers from URI records, + in addition to SRV records. URI records can convey TCP and UDP + servers and master KDC status in a single DNS lookup, and can also + point to HTTPS proxy servers. + * Add support for password history to the LDAP back end. + * Add support for principal renaming to the LDAP back end. + * Use the getrandom system call on supported Linux kernels to avoid + blocking problems when getting entropy from the operating system. + * In the PKINIT client, use the correct DigestInfo encoding for PKCS + [#1] signatures, so that some especially strict smart cards will work. + Code quality: + * Clean up numerous compilation warnings. + * Remove various infrequently built modules, including some preauth + modules that were not built by default. + Developer experience: + * Add support for building with OpenSSL 1.1. + * Use SHA-256 instead of MD5 for (non-cryptographic) hashing of + authenticators in the replay cache. This helps sites that must + build with FIPS 140 conformant libraries that lack MD5. + Protocol evolution: + * Add support for the AES-SHA2 enctypes, which allows sites to conform + to Suite B crypto requirements. +- Upgrade from 1.14.3 to 1.14.4 - major changes: + * Fix some rare btree data corruption bugs + * Fix numerous minor memory leaks + * Improve portability (Linux-ppc64el, FreeBSD) + * Improve some error messages + * Improve documentation + +- add pam configuration file required for ksu + just use a copy of "su" one from Tumbleweed + +- Upgrade from 1.14.2 to 1.14.3: + * Improve some error messages + * Improve documentation + * Allow a principal with nonexistent policy to bypass the minimum + password lifetime check, consistent with other aspects of + nonexistent policies + * Fix a rare KDC denial of service vulnerability when anonymous client + principals are restricted to obtaining TGTs only [CVE-2016-3120] + +- Remove comments breaking post scripts. + +- Do no use systemd_requires macros in main package, it adds + unneeded dependencies which pulls systemd into minimal chroot. +- Only call %insserv_prereq when building for pre-systemd + distributions. +- Optimise some %post/%postun when only /sbin/ldconfig is called. + +- Remove source file ccapi/common/win/OldCC/autolock.hxx + that is not needed and does not carry an acceptable license. + (bsc#968111) + +- removed obsolete patches: + * 0107-Fix-LDAP-null-deref-on-empty-arg-CVE-2016-3119.patch + * krb5-mechglue_inqure_attrs.patch +- Upgrade from 1.14.1 to 1.14.2: + * Fix a moderate-severity vulnerability in the LDAP KDC back end that + could be exploited by a privileged kadmin user [CVE-2016-3119] + * Improve documentation + * Fix some interactions with GSSAPI interposer mechanisms + +- Upgrade from 1.14 to 1.14.1: + * Remove expired patches: + 0104-Verify-decoded-kadmin-C-strings-CVE-2015-8629.patch + 0105-Fix-leaks-in-kadmin-server-stubs-CVE-2015-8631.patch + 0106-Check-for-null-kadm5-policy-name-CVE-2015-8630.patch + krbdev.mit.edu-8301.patch + * Replace source archives: + krb5-1.14.tar.gz -> + krb5-1.14.1.tar.gz + krb5-1.14.tar.gz.asc -> + krb5-1.14.1.tar.gz.asc + * Adjust line numbers in: + krb5-fix_interposer.patch + +- Introduce patch + 0107-Fix-LDAP-null-deref-on-empty-arg-CVE-2016-3119.patch + to fix CVE-2016-3119 (bsc#971942) + +- Remove krb5-mini pieces from spec file. + Hence remove pre_checkin.sh +- Remove expired macros and other minor clean-ups in spec file. + +- Fix CVE-2015-8629: krb5: xdr_nullstring() doesn't check for terminating null character + with patch 0104-Verify-decoded-kadmin-C-strings-CVE-2015-8629.patch + (bsc#963968) +- Fix CVE-2015-8631: krb5: Memory leak caused by supplying a null principal name in request + with patch 0105-Fix-leaks-in-kadmin-server-stubs-CVE-2015-8631.patch + (bsc#963975) +- Fix CVE-2015-8630: krb5: krb5 doesn't check for null policy when KADM5_POLICY is set in the mask + with patch 0106-Check-for-null-kadm5-policy-name-CVE-2015-8630.patch + (bsc#963964) + +- Add two patches from Fedora, fixing two crashes: + * krb5-fix_interposer.patch + * krb5-mechglue_inqure_attrs.patch + +- Update to 1.14 +- dropped krb5-kvno-230379.patch +- added krbdev.mit.edu-8301.patch fixing wrong function call + Major changes in 1.14 (2015-11-20) + Administrator experience: + * Add a new kdb5_util tabdump command to provide reporting-friendly + tabular dump formats (tab-separated or CSV) for the KDC database. + Unlike the normal dump format, each output table has a fixed number + of fields. Some tables include human-readable forms of data that + are opaque in ordinary dump files. This format is also suitable for + importing into relational databases for complex queries. + * Add support to kadmin and kadmin.local for specifying a single + command line following any global options, where the command + arguments are split by the shell--for example, "kadmin getprinc + principalname". Commands issued this way do not prompt for + confirmation or display warning messages, and exit with non-zero + status if the operation fails. + * Accept the same principal flag names in kadmin as we do for the + default_principal_flags kdc.conf variable, and vice versa. Also + accept flag specifiers in the form that kadmin prints, as well as + hexadecimal numbers. + * Remove the triple-DES and RC4 encryption types from the default + value of supported_enctypes, which determines the default key and + salt types for new password-derived keys. By default, keys will + only created only for AES128 and AES256. This mitigates some types + of password guessing attacks. + * Add support for directory names in the KRB5_CONFIG and + KRB5_KDC_PROFILE environment variables. + * Add support for authentication indicators, which are ticket + annotations to indicate the strength of the initial authentication. + Add support for the "require_auth" string attribute, which can be + set on server principal entries to require an indicator when + authenticating to the server. + * Add support for key version numbers larger than 255 in keytab files, + and for version numbers up to 65535 in KDC databases. + * Transmit only one ETYPE-INFO and/or ETYPE-INFO2 entry from the KDC + during pre-authentication, corresponding to the client's most + preferred encryption type. + * Add support for server name identification (SNI) when proxying KDC + requests over HTTPS. + * Add support for the err_fmt profile parameter, which can be used to + generate custom-formatted error messages. + Code quality: + * Fix memory aliasing issues in SPNEGO and IAKERB mechanisms that + could cause server crashes. [CVE-2015-2695] [CVE-2015-2696] + [CVE-2015-2698] + * Fix build_principal memory bug that could cause a KDC + crash. [CVE-2015-2697] + Developer experience: + * Change gss_acquire_cred_with_password() to acquire credentials into + a private memory credential cache. Applications can use + gss_store_cred() to make the resulting credentials visible to other + processes. + * Change gss_acquire_cred() and SPNEGO not to acquire credentials for + IAKERB or for non-standard variants of the krb5 mechanism OID unless + explicitly requested. (SPNEGO will still accept the Microsoft + variant of the krb5 mechanism OID during negotiation.) + * Change gss_accept_sec_context() not to accept tokens for IAKERB or + for non-standard variants of the krb5 mechanism OID unless an + acceptor credential is acquired for those mechanisms. + * Change gss_acquire_cred() to immediately resolve credentials if the + time_rec parameter is not NULL, so that a correct expiration time + can be returned. Normally credential resolution is delayed until + the target name is known. + * Add krb5_prepend_error_message() and krb5_wrap_error_message() APIs, + which can be used by plugin modules or applications to add prefixes + to existing detailed error messages. + * Add krb5_c_prfplus() and krb5_c_derive_prfplus() APIs, which + implement the RFC 6113 PRF+ operation and key derivation using PRF+. + * Add support for pre-authentication mechanisms which use multiple + round trips, using the the KDC_ERR_MORE_PREAUTH_DATA_REQUIRED error + code. Add get_cookie() and set_cookie() callbacks to the kdcpreauth + interface; these callbacks can be used to save marshalled state + information in an encrypted cookie for the next request. + * Add a client_key() callback to the kdcpreauth interface to retrieve + the chosen client key, corresponding to the ETYPE-INFO2 entry sent + by the KDC. + * Add an add_auth_indicator() callback to the kdcpreauth interface, + allowing pre-authentication modules to assert authentication + indicators. + * Add support for the GSS_KRB5_CRED_NO_CI_FLAGS_X cred option to + suppress sending the confidentiality and integrity flags in GSS + initiator tokens unless they are requested by the caller. These + flags control the negotiated SASL security layer for the Microsoft + GSS-SPNEGO SASL mechanism. + * Make the FILE credential cache implementation less prone to + corruption issues in multi-threaded programs, especially on + platforms with support for open file description locks. + Performance: + * On slave KDCs, poll the master KDC immediately after processing a + full resync, and do not require two full resyncs after the master + KDC's log file is reset. + User experience: + * Make gss_accept_sec_context() accept tickets near their expiration + but within clock skew tolerances, rather than rejecting them + immediately after the server's view of the ticket expiration time. + +- Update to 1.13.3 +- removed patches for security fixes now in upstream source: + 0100-Fix-build_principal-memory-bug-CVE-2015-2697.patch + 0101-Fix-IAKERB-context-aliasing-bugs-CVE-2015-2696.patch + 0102-Fix-SPNEGO-context-aliasing-bugs-CVE-2015-2695.patch + 0103-Fix-IAKERB-context-export-import-CVE-2015-2698.patch + Major changes in 1.13.3 (2015-12-04) + This is a bug fix release. The krb5-1.13 release series is in + maintenance, and for new deployments, installers should prefer the + krb5-1.14 release series or later. + * Fix memory aliasing issues in SPNEGO and IAKERB mechanisms that + could cause server crashes. [CVE-2015-2695] [CVE-2015-2696] + [CVE-2015-2698] + * Fix build_principal memory bug that could cause a KDC + crash. [CVE-2015-2697] + * Allow an iprop slave to receive full resyncs from KDCs running + krb5-1.10 or earlier. + +- Apply patch 0103-Fix-IAKERB-context-export-import-CVE-2015-2698.patch + to fix a memory corruption regression introduced by resolution of + CVE-2015-2698. bsc#954204 + +- Make kadmin.local man page available without having to install krb5-client. bsc#948011 +- Apply patch 0100-Fix-build_principal-memory-bug-CVE-2015-2697.patch + to fix build_principal memory bug [CVE-2015-2697] bsc#952190 +- Apply patch 0101-Fix-IAKERB-context-aliasing-bugs-CVE-2015-2696.patch + to fix IAKERB context aliasing bugs [CVE-2015-2696] bsc#952189 +- Apply patch 0102-Fix-SPNEGO-context-aliasing-bugs-CVE-2015-2695.patch + to fix SPNEGO context aliasing bugs [CVE-2015-2695] bsc#952188 + +- Let server depend on libev (module of libverto). This was the + preferred implementation before the seperation of libverto from krb. + +- Drop libverto and libverto-libev Requires from the -server + package: those package names don't exist and the shared libs + are pulled in automatically. + +- Unconditionally buildrequire libverto-devel: krb5-mini also + depends on it. + +- pre_checkin.sh aligned changes between krb5/krb5-mini +- added krb5.keyring + +- update to krb5 1.13.2 +- DES transition + ============== + The Data Encryption Standard (DES) is widely recognized as weak. The + krb5-1.7 release contains measures to encourage sites to migrate away +- From using single-DES cryptosystems. Among these is a configuration + variable that enables "weak" enctypes, which defaults to "false" + beginning with krb5-1.8. + Major changes in 1.13.2 (2015-05-08) + This is a bug fix release. + * Fix a minor vulnerability in krb5_read_message, which is primarily + used in the BSD-derived kcmd suite of applications. [CVE-2014-5355] + * Fix a bypass of requires_preauth in KDCs that have PKINIT enabled. + [CVE-2015-2694] + * Fix some issues with the LDAP KDC database back end. + * Fix an iteration-related memory leak in the DB2 KDC database back + end. + * Fix issues with some less-used kadm5.acl functionality. + * Improve documentation. + +- Use externally built libverto + +- update to krb5 1.13.1 + Major changes in 1.13.1 (2015-02-11) + This is a bug fix release. + * Fix multiple vulnerabilities in the LDAP KDC back end. + [CVE-2014-5354] [CVE-2014-5353] + * Fix multiple kadmind vulnerabilities, some of which are based in the + gssrpc library. [CVE-2014-5352 CVE-2014-5352 CVE-2014-9421 + CVE-2014-9422 CVE-2014-9423] + +- Update to krb5 1.13 + * Add support for accessing KDCs via an HTTPS proxy server using the + MS-KKDCP protocol. + * Add support for hierarchical incremental propagation, where slaves + can act as intermediates between an upstream master and other downstream + slaves. + * Add support for configuring GSS mechanisms using /etc/gss/mech.d/*.conf + files in addition to /etc/gss/mech. + * Add support to the LDAP KDB module for binding to the LDAP server using + SASL. + * The KDC listens for TCP connections by default. + * Fix a minor key disclosure vulnerability where using the "keepold" option + to the kadmin randkey operation could return the old keys. [CVE-2014-5351] + * Add client support for the Kerberos Cache Manager protocol. If the host + is running a Heimdal kcm daemon, caches served by the daemon can be + accessed with the KCM: cache type. + * When built on OS X 10.7 and higher, use "KCM:" as the default cache type, + unless overridden by command-line options or krb5-config values. + * Add support for doing unlocked database dumps for the DB2 KDC back end, + which would allow the KDC and kadmind to continue accessing the database + during lengthy database dumps. +- Removed patches, useless or upstreamed + * krb5-1.9-kprop-mktemp.patch + * krb5-1.10-ksu-access.patch + * krb5-1.12-doxygen.patch + * bnc#897874-CVE-2014-5351.diff + * krb5-1.13-work-around-replay-cache-creation-race.patch + * krb5-1.10-kpasswd_tcp.patch +- Refreshed patches + * krb5-1.12-pam.patch + * krb5-1.12-selinux-label.patch + * krb5-1.7-doublelog.patch + kvm_stat +- Install the systemd unit file in the proper place, so that the + service can be started right away, if the user wants that, without + having to copy the file in the units directory. +- Integrate with logrotate, by providing a logrotate config file, as + the logs can easily become very big. + +- Get rid of the stale patch file. + +- Remove broken patch tools-kvm_stat-explicitly-reference-python3.patch + * the patch does not apply any longer, at least on top of + Kernel source packages does the same (i.e., replacing /usr/bin/env) + in their own kernel-source.spec; + * therefore, let's take care of that directly inside of our own spec + file instead, which is a solution that always work, no matter what + has been done in the Kernel source package. + +- Fix kernel version comparison for selectively applying patches + * so that it won't break when, e.g., 5.10.0 hits Factory + libdbusmenu-qt5 +- Rework patch trusting the compiler will remove dead code properly + when debug output is disabled (as it is in the spec file): + * noqDebug-qWarnings.patch + +- Update to 0.9.3+16.04.20160218: + * Ported tests to Qt5 +- Use a Source url that works + -- Added 237_236.diff from upstream, fixes lp#1068050 (Some icons of - kate menu are wrong when run with the global menubar) and - noqDebug-qWarnings.patch, which disables spamming users with - useless debug - -- Update to 0.9.2: - * Fix disabling and hiding actions - * Avoid spamming dbus at startup - * Do not print warnings when not necessary - From 0.9.1: - * Add support for "opened" and "closed" events - * Add support for icon-data (LP BUG 633339) -- Install also the development documentation. - libdrm +- reenabled build of manual pages (switch from xsltproc to rst2man) + +- update to 2.4.104: + * headers: drm: Sync with drm-next + * Remove outdated comments about stdint.h + * Remove definitions duplicated from drm_mode.h + * xf86drmMode.h use ANSI C99 arrays + * Document drmModeConnection + * man: convert to reSTructuredText + * testsuite fixes + +- update to 2.4.103: + * xf86drm.c: Use integer logarithm. + * amdgpu: only enable security tests on raven family + * amdgpu: sync up amdgpu_drm.h with latest from kernel + * amdgpu: add marketing names from 20.40 + * intel: add INTEL_DG1_IDS to the pciids list + * amdgpu: add device IDs for Raven, Picasso and Renoir + * intel: sync i915_pciids.h with kernel + * amdgpu: Add Device IDs for Embedded Raven2 platforms + * intel: sync i915_pciids.h with kernel + * xf86drm.c: fix build failure + * core: use `O_RDONLY` instead of ambiguous `0` flag + * lots of tests/amdgpu updates + libebml +- Update to version 1.4.1 + * Fixed a case EbmlMaster::Read where the element returned via + UpperEltFound and FountElt points to a just-deleted element, + causing callers to think the memory returned is valid, + potentially leading to use-after-free/double-free errors. + This can happen if the specific element's Read function + throws an exception when encountering certain invalid data + constellations. + libgcrypt -- FIPS: RSA/DSA/ECC test_keys() print out debug messages [bsc#1171872] - * Print the debug messages in test_keys() only in debug mode. -- Update patches: libgcrypt-PCT-RSA.patch libgcrypt-PCT-DSA.patch - libgcrypt-PCT-ECC.patch - -- FIPS: libgcrypt: Double free in test_keys() on failed signature - verification [bsc#1169944] - * Use safer gcry_mpi_release() instead of mpi_free() -- Update patches: - * libgcrypt-PCT-DSA.patch - * libgcrypt-PCT-RSA.patch - * libgcrypt-PCT-ECC.patch - -- Ship the FIPS checksum file in the shared library package and - create a separate trigger file for the FIPS selftests (bsc#1169569) - * add libgcrypt-fips_selftest_trigger_file.patch - * refresh libgcrypt-global_init-constructor.patch -- Remove libgcrypt-binary_integrity_in_non-FIPS.patch obsoleted - by libgcrypt-global_init-constructor.patch - -- FIPS: Verify that the generated signature and the original input - differ in test_keys function for RSA, DSA and ECC: [bsc#1165539] -- Add zero-padding when qx and qy have different lengths when - assembling the Q point from affine coordinates. -- Refreshed patches: - * libgcrypt-PCT-DSA.patch - * libgcrypt-PCT-RSA.patch - * libgcrypt-PCT-ECC.patch - -- FIPS: Switch the PCT to use the new signature operation [bsc#1165539] - * Patches for DSA, RSA and ECDSA test_keys functions: - - libgcrypt-PCT-DSA.patch - - libgcrypt-PCT-RSA.patch - - libgcrypt-PCT-ECC.patch -- Update patch: libgcrypt-FIPS-RSA-DSA-ECDSA-hashing-operation.patch - -- FIPS: Fix drbg to be threadsafe [bsc#1167674] - * Detect fork and re-open devices in_gcry_rndlinux_gather_random - * libgcrypt-check-re-open-dev_random-after-fork.patch - -- FIPS: Run self-tests from constructor during power-on [bsc#1166748] - * Set up global_init as the constructor function: - - libgcrypt-global_init-constructor.patch - * Relax the entropy requirements on selftest. This is especially - important for virtual machines to boot properly before the RNG - is available: - - libgcrypt-random_selftests-testentropy.patch - - libgcrypt-rsa-no-blinding.patch - - libgcrypt-ecc-ecdsa-no-blinding.patch - * Fix benchmark regression test in FIPS mode: - - libgcrypt-FIPS-GMAC_AES-benckmark.patch - -- Remove check not needed in _gcry_global_constructor [bsc#1164950] - * Update libgcrypt-Restore-self-tests-from-constructor.patch - -- FIPS: Run the self-tests from the constructor [bsc#1164950] - * Add libgcrypt-invoke-global_init-from-constructor.patch - -- ECDSA: Check range of coordinates (bsc#1161216) - * add libgcrypt-ECDSA_check_coordinates_range.patch - -- FIPS: libgcrypt DSA PQG parameter generation: Missing value [bsc#1161219] -- FIPS: libgcrypt DSA PQG verification incorrect results [bsc#1161215] -- FIPS: libgcrypt RSA siggen/keygen: 4k not supported [bsc#1161220] - * Add patch from Fedora libgcrypt-1.8.4-fips-keygen.patch - -- FIPS: keywrap gives incorrect results [bsc#1161218] - * Add libgcrypt-AES-KW-fix-in-place-encryption.patch - -- FIPS: RSA/DSA/ECDSA are missing hashing operation [bsc#1155337] - * Add libgcrypt-FIPS-RSA-DSA-ECDSA-hashing-operation.patch - -- Fix tests in FIPS mode: - * Fix tests: basic benchmark bench-slope pubkey t-cv25519 t-secmem - * Add patch libgcrypt-fix-tests-fipsmode.patch - -- Fix test dsa-rfc6979 in FIPS mode: - * Disable tests in elliptic curves with 192 bits which are not - recommended in FIPS mode - * Add patch libgcrypt-dsa-rfc6979-test-fix.patch - -- CMAC AES and TDES FIPS self-tests: - * CMAC AES self test missing [bsc#1155339] - * CMAC TDES self test missing [bsc#1155338] -- Add libgcrypt-CMAC-AES-TDES-selftest.patch - -- Security fix: [bsc#1148987,CVE-2019-13627] - * Mitigation against an ECDSA timing attack - * Added libgcrypt-CVE-2019-13627.patch - -- Fixed an issue created by incomplete implementation of previous change - [bsc#1097073] - * Removed section of libgcrypt-binary_integrity_in_non-FIPS.patch - that caused some tests to be executed more than once. - -- Fixed a race condition in initialization. - * Added libgcrypt-1.8.4-allow_FSM_same_state.patch -- Security fix: [bsc#1138939, CVE-2019-12904] - * The C implementation of AES is vulnerable to a flush-and-reload - side-channel attack because physical addresses are available to - other processes. (The C implementation is used on platforms where - an assembly-language implementation is unavailable.) - * Added patches: - - libgcrypt-CVE-2019-12904-GCM-Prefetch.patch - - libgcrypt-CVE-2019-12904-GCM.patch - - libgcrypt-CVE-2019-12904-AES.patch -- Fixed env-script-interpreter in cavs_driver.pl - -- Fixed redundant fips tests in some situations causing sudo to stop - working when pam-kwallet is installed. bsc#1133808 - * Added libgcrypt-1.8.4-fips_ctor_skip_integrity_check.patch - * Removed libgcrypt-fips_ignore_FIPS_MODULE_PATH.patch - because it was obsoleted by libgcrypt-1.8.4-fips_ctor_skip_integrity_check.patch - -- libgcrypt-1.8.3-fips-ctor.patch changed the way the fips selftests - are invoked as well as the state transition, adjust the code so - a missing checksum file is not an issue in non-FIPS mode (bsc#1097073) - * update libgcrypt-binary_integrity_in_non-FIPS.patch - -- Enforce the minimal RSA keygen size in fips mode (bsc#1125740) - * add libgcrypt-fips_rsa_no_enforced_mode.patch - -- Don't run full self-tests from constructor (bsc#1097073) - * Don't call global_init() from the constructor, _gcry_global_constructor() - from libgcrypt-1.8.3-fips-ctor.patch takes care of the binary - integrity check instead. - * Only the binary checksum will be verified, the remaining - self-tests will be run upon the library initialization -- Add libgcrypt-fips_ignore_FIPS_MODULE_PATH.patch -- Drop libgcrypt-init-at-elf-load-fips.patch and - libgcrypt-fips_run_selftest_at_constructor.patch - -- Skip all the self-tests except for binary integrity when called - from the constructor (bsc#1097073) - * Added libgcrypt-1.8.3-fips-ctor.patch - -- Fail selftests when checksum file is missing in FIPS mode only - (bsc#1117355) - * add libgcrypt-binary_integrity_in_non-FIPS.patch - -- Apply "CVE-2018-0495.patch" from upstream to enable blinding for - ECDSA signing. This change mitigates a novel side-channel attack. - [CVE-2018-0495, bsc#1097410] - -- Suggest libgcrypt20-hmac for package libgcrypt20 to ensure they - are installed in the right order. [bsc#1090766] - -- Extended the fipsdrv dsa-sign and dsa-verify commands with the - - -algo parameter for the FIPS testing of DSA SigVer and SigGen - (bsc#1064455). - * Added libgcrypt-fipsdrv-enable-algo-for-dsa-sign.patch - * Added libgcrypt-fipsdrv-enable-algo-for-dsa-verify.patch - -- Use %license (boo#1082318) - -- libgcrypt 1.8.2: - * Fix fatal out of secure memory status in the s-expression - parser on heavy loaded systems. - * Add auto expand secmem feature or use by GnuPG 2.2.4 - -- libgcrypt 1.8.1: - * Mitigate a local side-channel attack on Curve25519 dubbed "May - the Fourth be With You" CVE-2017-0379 bsc#1055837 - * Add more extra bytes to the pool after reading a seed file - * Add the OID SHA384WithECDSA from RFC-7427 to SHA-384 - * Fix build problems with the Jitter RNG - * Fix assembler code build problems on Rasbian (ARMv8/AArch32-CE) - -- RPM group fixes. - -- libgcrypt 1.8.0: - * New cipher mode XTS - * New hash function Blake-2 - * New function gcry_mpi_point_copy. - * New function gcry_get_config. - * GCRYCTL_REINIT_SYSCALL_CLAMP allows to init nPth after Libgcrypt. - * New gobal configuration file /etc/gcrypt/random.conf. - * GCRYCTL_PRINT_CONFIG does now also print build information for - libgpg-error and the used compiler version. - * GCRY_CIPHER_MODE_CFB8 is now supported. - * A jitter based entropy collector is now used in addition to the - other entropy collectors. - * Optimized gcry_md_hash_buffers for SHA-256 and SHA-512. - random pool lock). - * Interface changes relative to the 1.7.0 release: - gcry_get_config NEW function. - gcry_mpi_point_copy NEW function. - GCRYCTL_REINIT_SYSCALL_CLAMP NEW macro. - GCRY_MD_BLAKE2B_512 NEW constant. - GCRY_MD_BLAKE2B_384 NEW constant. - GCRY_MD_BLAKE2B_256 NEW constant. - GCRY_MD_BLAKE2B_160 NEW constant. - GCRY_MD_BLAKE2S_256 NEW constant. - GCRY_MD_BLAKE2S_224 NEW constant. - GCRY_MD_BLAKE2S_160 NEW constant. - GCRY_MD_BLAKE2S_128 NEW constant. - GCRY_CIPHER_MODE_XTS NEW constant. - gcry_md_info DEPRECATED. -- Refresh patch libgcrypt-1.6.3-aliasing.patch - -- libgcrypt 1.7.8: - * CVE-2017-7526: Mitigate a flush+reload side-channel attack on - RSA secret keys (bsc#1046607) - -- libgcrypt 1.7.7: - * Fix possible timing attack on EdDSA session key (previously - patched, drop libgcrypt-secure-EdDSA-session-key.patch) - * Fix long standing bug in secure memory implementation which - could lead to a segv on free - -- Added libgcrypt-secure-EdDSA-session-key.patch [bsc#1042326] - * Store the session key in secure memory to ensure that constant - time point operations are used in the MPI library. - -- libgcrypt 1.7.6: - * Fix counter operand from read-only to read/write - * Fix too large jump alignment in mpih-rshift - -- libgcrypt 1.7.5: - * Fix regression in mlock detection introduced with 1.7.4 - -- libgcrypt 1.7.4: - * ARMv8/AArch32 performance improvements for AES, GCM, SHA-256, - and SHA-1. - * Add ARMv8/AArch32 assembly implementation for Twofish and - Camellia. - * Add bulk processing implementation for ARMv8/AArch32. - * Add Stribog OIDs. - * Improve the DRBG performance and sync the code with the Linux - version. - * When secure memory is requested by the MPI functions or by - gcry_xmalloc_secure, they do not anymore lead to a fatal error - if the secure memory pool is used up. Instead new pools are - allocated as needed. These new pools are not protected against - being swapped out (mlock can't be used). Mitigation for - minor confidentiality issues is encryption swap space. - * Fix GOST 28147 CryptoPro-B S-box. - * Fix error code handling of mlock calls. - -- libgcrypt 1.7.3: - * security issue already fixes with 1.6.6 - * Fix building of some asm modules with older compilers and CPUs. - * ARMv8/AArch32 improvements for AES, GCM, SHA-256, and SHA-1. -- includes changes from libgcrypt 1.7.2: - * Bug fixes: - - Fix setting of the ECC cofactor if parameters are specified. - - Fix memory leak in the ECC code. - - Remove debug message about unsupported getrandom syscall. - - Fix build problems related to AVX use. - - Fix bus errors on ARM for Poly1305, ChaCha20, AES, and SHA-512. - * Internal changes: - - Improved fatal error message for wrong use of gcry_md_read. - - Disallow symmetric encryption/decryption if key is not set. -- includes changes from 1.7.1: - * Bug fixes: - - Fix ecc_verify for cofactor support. - - Fix portability bug when using gcc with Solaris 9 SPARC. - - Build fix for OpenBSD/amd64 - - Add OIDs to the Serpent ciphers. - * Internal changes: - - Use getrandom system call on Linux if available. - - Blinding is now also used for RSA signature creation. - - Changed names of debug envvars -- includes changes from 1.7.0: - * New algorithms and modes: - - SHA3-224, SHA3-256, SHA3-384, SHA3-512, and MD2 hash algorithms. - - SHAKE128 and SHAKE256 extendable-output hash algorithms. - - ChaCha20 stream cipher. - - Poly1305 message authentication algorithm - - ChaCha20-Poly1305 Authenticated Encryption with Associated Data - mode. - - OCB mode. - - HMAC-MD2 for use by legacy applications. - * New curves for ECC: - - Curve25519. - - sec256k1. - - GOST R 34.10-2001 and GOST R 34.10-2012. - * Performance: - - Improved performance of KDF functions. - - Assembler optimized implementations of Blowfish and Serpent on - ARM. - - Assembler optimized implementation of 3DES on x86. - - Improved AES using the SSSE3 based vector permutation method by - Mike Hamburg. - - AVX/BMI is used for SHA-1 and SHA-256 on x86. This is for SHA-1 - about 20% faster than SSSE3 and more than 100% faster than the - generic C implementation. - - 40% speedup for SHA-512 and 72% for SHA-1 on ARM Cortex-A8. - - 60-90% speedup for Whirlpool on x86. - - 300% speedup for RIPE MD-160. - - Up to 11 times speedup for CRC functions on x86. - * Other features: - - Improved ECDSA and FIPS 186-4 compliance. - - Support for Montgomery curves. - - gcry_cipher_set_sbox to tweak S-boxes of the gost28147 cipher - algorithm. - - gcry_mpi_ec_sub to subtract two points on a curve. - - gcry_mpi_ec_decode_point to decode an MPI into a point object. - - Emulation for broken Whirlpool code prior to 1.6.0. [from 1.6.1] - - Flag "pkcs1-raw" to enable PCKS#1 padding with a user supplied - hash part. - - Parameter "saltlen" to set a non-default salt length for RSA PSS. - - A SP800-90A conforming DRNG replaces the former X9.31 alternative - random number generator. - - Map deprecated RSA algo number to the RSA algo number for better - backward compatibility. [from 1.6.2] - - Use ciphertext blinding for Elgamal decryption [CVE-2014-3591]. - See http://www.cs.tau.ac.il/~tromer/radioexp/ for details. - [from 1.6.3] - - Fixed data-dependent timing variations in modular exponentiation - [related to CVE-2015-0837, Last-Level Cache Side-Channel Attacks - are Practical]. [from 1.6.3] - - Flag "no-keytest" for ECC key generation. Due to a bug in - the parser that flag will also be accepted but ignored by older - version of Libgcrypt. [from 1.6.4] - - Speed up the random number generator by requiring less extra - seeding. [from 1.6.4] - - Always verify a created RSA signature to avoid private key leaks - due to hardware failures. [from 1.6.4] - - Mitigate side-channel attack on ECDH with Weierstrass curves - [CVE-2015-7511]. See http://www.cs.tau.ac.IL/~tromer/ecdh/ for - details. [from 1.6.5] - * Internal changes: - - Moved locking out to libgpg-error. - - Support of the SYSROOT envvar in the build system. - - Refactor some code. - - The availability of a 64 bit integer type is now mandatory. - * Bug fixes: - - Fixed message digest lookup by OID (regression in 1.6.0). - - Fixed a build problem on NetBSD - - Fixed some asm build problems and feature detection bugs. - * Interface changes relative to the 1.6.0 release: - gcry_cipher_final NEW macro. - GCRY_CIPHER_MODE_CFB8 NEW constant. - GCRY_CIPHER_MODE_OCB NEW. - GCRY_CIPHER_MODE_POLY1305 NEW. - gcry_cipher_set_sbox NEW macro. - gcry_mac_get_algo NEW. - GCRY_MAC_HMAC_MD2 NEW. - GCRY_MAC_HMAC_SHA3_224 NEW. - GCRY_MAC_HMAC_SHA3_256 NEW. - GCRY_MAC_HMAC_SHA3_384 NEW. - GCRY_MAC_HMAC_SHA3_512 NEW. - GCRY_MAC_POLY1305 NEW. - GCRY_MAC_POLY1305_AES NEW. - GCRY_MAC_POLY1305_CAMELLIA NEW. - GCRY_MAC_POLY1305_SEED NEW. - GCRY_MAC_POLY1305_SERPENT NEW. - GCRY_MAC_POLY1305_TWOFISH NEW. - gcry_md_extract NEW. - GCRY_MD_FLAG_BUGEMU1 NEW [from 1.6.1]. - GCRY_MD_GOSTR3411_CP NEW. - GCRY_MD_SHA3_224 NEW. - GCRY_MD_SHA3_256 NEW. - GCRY_MD_SHA3_384 NEW. - GCRY_MD_SHA3_512 NEW. - GCRY_MD_SHAKE128 NEW. - GCRY_MD_SHAKE256 NEW. - gcry_mpi_ec_decode_point NEW. - gcry_mpi_ec_sub NEW. - GCRY_PK_EDDSA NEW constant. - GCRYCTL_GET_TAGLEN NEW. - GCRYCTL_SET_SBOX NEW. - GCRYCTL_SET_TAGLEN NEW. -- Apply libgcrypt-1.6.3-aliasing.patch only on big-endian - architectures -- update drbg_test.patch and install cavs testing directory again -- As DRBG is upstream, drop pateches: - v9-0001-SP800-90A-Deterministic-Random-Bit-Generator.patch - 0002-Compile-DRBG.patch - 0003-Function-definitions-of-interfaces-for-random.c.patch - 0004-Invoke-DRBG-from-common-libgcrypt-RNG-code.patch - 0005-Function-definitions-for-gcry_control-callbacks.patch - 0006-DRBG-specific-gcry_control-requests.patch - v9-0007-User-interface-to-DRBG.patch - libgcrypt-fix-rng.patch -- drop obsolete: - libgcrypt-fips-dsa.patch - libgcrypt-fips_ecdsa.patch - -- libgcrypt 1.6.6: - * fix CVE-2016-6313: Issue in the mixing functions of the random - number generators allowed an attacker who obtained a number of - bytes from the standard RNG to predict some of the next ouput. - (bsc#994157) - -- remove conditionals for unsupported distributions (before 13.2), - it would not build anyway because of new dependencies - -- make the -hmac package depend on the same version of the library, - fixing bsc#979629 FIPS: system fails to reboot after installing - fips pattern - -- update to 1.6.5: - * CVE-2015-7511: Mitigate side-channel attack on ECDH with - Weierstrass curves (boo#965902) - -- follow-up to libgcrypt 1.6.4 update: sosuffix is 20.0.4 - -- update to 1.6.4 -- fixes libgcrypt equivalent of CVE-2015-5738 (bsc#944456) - * Speed up the random number generator by requiring less extra - seeding. - * New flag "no-keytest" for ECC key generation. Due to a bug in the - parser that flag will also be accepted but ignored by older version - of Libgcrypt. - * Always verify a created RSA signature to avoid private key leaks - due to hardware failures. - * Other minor bug fixes. - -- Fix gpg2 tests on BigEndian architectures: s390x ppc64 - libgcrypt-1.6.3-aliasing.patch - -- fix sosuffix for 1.6.3 (20.0.3) - -- libgcrypt 1.6.3 [bnc#920057]: - * Use ciphertext blinding for Elgamal decryption [CVE-2014-3591]. - * Fixed data-dependent timing variations in modular exponentiation - [related to CVE-2015-0837, Last-Level Cache Side-Channel Attacks - are Practical]. -- update upstream signing keyring - -- making the build reproducible - see - http://lists.gnupg.org/pipermail/gnupg-commits/2014-September/010683.html - for a very similiar problem - -- Move %install_info_delete calls from postun to preun: the files - must still be present to be parsed. -- Fix the names passed to install_info for gcrypt.info-[12].gz - instead of gcrypt-[12].info.gz. - -- fix filename for info pages in %post scripts - -- libgcrypt 1.6.2: - * Map deprecated RSA algo number to the RSA algo number for better - backward compatibility. - * Support a 0x40 compression prefix for EdDSA. - * Improve ARM hardware feature detection and building. - * Fix building for the x32 ABI platform. - * Fix some possible NULL deref bugs. -- remove libgcrypt-1.6.0-use-intenal-functions.patch, upstream - via xtrymalloc macro -- remove libgcrypt-fixed-sizet.patch, upstream -- adjust libgcrypt-1.6.1-use-fipscheck.patch for xtrymalloc change - libical +- Add libical-read-v2-v3-data.patch: correctly read slim timezone + data (bsc#1178412). + libidn2 +- The library is actually dual licensed, GPL-2.0-or-later or LGPL-3.0-or-later, + match factory licenses (bsc#1180138) + libmatroska +- Update to version 1.6.2 + * In release 1.6.1 the version number in CMakeLists.txt wasn't + updated, affecting the installed cmake and pkgconfig files. + The version number has been bumped to 1.6.2 in all relevant + files now. + +- Update to version 1.6.1 + * "KaxBlockAddIDValue" class: this class is no longer marked as + "mandatory" in order to coincide with the latest + specification. + +- Update to version 1.6.0 + * libEBML v1.4.0 is now required. + * Due to breaking ABI the soname version has been bumped to + 7.0.0. + * Default symbol visibility is now "hidden", reducing binary + size. + * Converted some things pointed out by cppcheck & clang-tidy to + C++11. + * Fixed a lot of issues pointed out by clang-tidy. + * A C++11 compliant compiler is now required. Several of its + features are now used in the source. + * "KaxCueData" class: added "PositionSet" overrides taking + "KaxSimpleBlock" arguments. + * "KaxSeekHead" class: the "IndexThis" function now returns a + pointer to the newly allocated "KaxSeek" instance. + * "KaxBlockData" class: the "SetReferencedTimecode" function is + now public. + * Fixed classes for updates in the current specification: + KaxTrackTimecodeScale (can be written again), TimeSlice, + SliceLaceNumber, TrackAttachmentLink (these cannot be written + anymore), KaxContentEncAlgo (it's mandatory), + KaxChapLanguageIETF (can occur multiple times), + KaxFileUsedStartTime, KaxFileUsedEndTime (DivX-related + elements, cannot be written anymore) + * Added classes for new elements from the current + specification: KaxBlockAdditionMapping, KaxBlockAddIDValue, + KaxBlockAddIDName, KaxBlockAddIDType, KaxBlockAddIDExtraData, + KaxContentEncAESSettings, KaxContentEncAESSettings. + * The MATROSKA_VERSION pre-processor definition has been + removed. You used to be able toe restrict compiling with only + those classes for elements contained in Matroska v1, but that + hasn't worked since 2010, so… yeah. +- Track ABI Change +- Spec cleanup + libostree +- Enable LTO (boo#1133120) as it works now. + +- Update to version 2020.8: + + This release mostly contains scalability improvements and + bugfixes. + + Caching-related HTTP headers are now supported on summaries and + signatures, so that they do not have to be re-downloaded if not + changed in the meanwhile. + + Summaries and delta have been reworked to allow more + fine-grained fetching. + + Finally, this fixes several bugs related to atomic variables, + HTTP timeouts, and 32-bit architectures. +- Changes from version 2020.7: + + Static deltas can now be signed to more easily support offline + verification. + + There's now support for multiple initramfs images; the idea + here is that one can have a "main" initramfs image and a + secondary one which represents local configuration. + + The documentation is now moved to + https://ostreedev.github.io/ostree/ + + Lot of preparatory cleanups to the pull code landed for + upcoming work on indexing deltas outside of the summary. + + On the bugfix side, the biggest one is a fix for an assertion + failure when upgrading from systems before ostree supported + devicetree. + + Also notable is that ostree no longer hardlinks zero sized + files to avoid hitting filesystem maximum link counts. +- Changes from version 2020.6: + + One notable feature: ostree now supports / and /boot being on + the same filesystem. + + Other than that it's mostly bugfixes; there is one quite + important one for anyone using the readonly=true for /sysroot + (which is still just Fedora CoreOS I suspect). + + There's some improvements to the GObject Introspection + metadata, some (cosmetic) static analyzer fixes, a fix for the + immutable bit on s390x, dropping a deprecated bit in the + systemd unit file, etc. +- Changes from version 2020.5: + + This release primarily fixes a regression in 2020.4 where the + "readonly sysroot" changes incorrectly left the sysroot + read-only on systems that started out with a read-only / (most + of them, e.g. Fedora Silverblue/IoT at least). + + There's some additions to the pull API to aid flatpak. + + There were a few fixes to the man pages, and ostree show now + displays the parent commit. + + The default dracut config now enables reproducibility. + + On the "feature" side, there is a new ostree admin unlock + - -transient. We expect this to be a foundation for further + support for "live" updates. +- Changes from version 2020.4: + + By far the biggest change in this release is new ed25519 + signing support, powered by libsodium. + + stree commit gained a new --base argument, which significantly + simplifies constructing "derived" commits, particularly for + systems using SELinux. + + Handling of the read-only sysroot was reimplemented to run in + the initramfs and be more reliable. Enabling the readonly=true + flag in the repo config is recommended. + + Several bugs were fixed in locking for the temporary "staging" + directories OSTree creates, particularly on NFS. + + lib: Coerce flags enums to GIR bitfields changed some values to + be (correctly) flags - this may show up as incompatible for + GObject Introspection consumers (but not C). + + A new timestamp-check-from-rev option was added for pulls, + which makes downgrade protection more reliable and will be used + by Fedora CoreOS. + + Several fixes and enhancements were made for "collection" pulls + including a new --mirror option. + + The ostree commit command learned a new --mode-ro-executables + which enforces W^R semantics on all executables. + + A new commit metadata key (OSTREE_COMMIT_META_KEY_ARCHITECTURE) + was added to help standardize the architecture of the OSTree + commit. This could be used on the client side for example to + sanity-check that the commit matches the architecture of the + machine before deploying. + +- Stop invalid usage of %_libexecdir: + + Use %{_prefix}/lib where appropriate. + + Use _systemdgeneratordir for the systemd-generators. + + Define _dracutmodulesdir based on dracut.pc. Add + BuildRequires(dracut) for this to work. + libpng16 -- security update -- added patches - CVE-2019-7317 [bsc#1124211] - + libpng16-CVE-2019-7317.patch - -- asan_build: build ASAN included -- debug_build: build more suitable for debugging, install pngcp -- usecase example: [bsc#1121624] - -- security update: - * CVE-2018-13785 [bsc#1100687] - + libpng16-CVE-2018-13785.patch - -- check with -j1 - -- Fix SRPM group and grammar issues. - -- removed obsoleted Obsoletes - -- update to 1.6.34: - * Removed contrib/pngsuite/i*.png; some of these were incorrect - and caused test failures. -- includes 1.6.33: - * Added PNGMINUS_UNUSED macro to contrib/pngminus/p*.c and added - missing parenthesis in contrib/pngminus/pnm2png.c - * Fixed off-by-one error in png_do_check_palette_indexes() - * Initialize png_handler.row_ptr in libpng_read_fuzzer.cc - to fix shortlived oss-fuzz issue 3234. - * Compute a larger limit on IDAT because some applications write - a deflate buffer for each row - * Use current date (DATE) instead of release-date (RDATE) in last - changed date of contrib/oss-fuzz files. - * Enabled ARM support in CMakeLists.txt - * Fixed incorrect typecast of some arguments to png_malloc() and - png_calloc() that were png_uint_32 instead of png_alloc_size_t - * Use pnglibconf.h.prebuilt when building for ANDROID with cmake - * Initialize memory allocated by png_inflate to zero, using - memset, to stop an oss-fuzz "use of uninitialized value" - detection in png_set_text_2() due to truncated iTXt or zTXt - chunk. - * Initialize memory allocated by png_read_buffer to zero, using - memset, to stop an oss-fuzz "use of uninitialized value" - detection in png_icc_check_tag_table() due to truncated iCCP - chunk. - * Removed redundant tests - * Added an interlaced version of each file in contrib/pngsuite. - * Relocate new memset() call in pngrutil.c - * Add support for loading images with associated alpha in the - Simplified API - * Revert contrib/oss-fuzz/libpng_read_fuzzer.cc to libpng-1.6.32 - state - * Initialize png_handler.row_ptr in libpng_read_fuzzer.cc - * Add end_info structure and png_read_end() to the libpng fuzzer -- includes 1.6.32: - * Avoid possible NULL dereference in png_handle_eXIf when - benign_errors are allowed. Avoid leaking the input buffer - "eXIf_buf". - * Eliminated png_ptr->num_exif member from pngstruct.h and added - num_exif to arguments for png_get_eXIf() and png_set_eXIf(). - * Added calls to png_handle_eXIf(() in pngread.c and - png_write_eXIf() in pngwrite.c, and made various other fixes - to png_write_eXIf(). - * Changed name of png_get_eXIF and png_set_eXIf() to - png_get_eXIf_1() and png_set_eXIf_1(), respectively, to avoid - breaking API compatibility with libpng-1.6.31. - * Updated contrib/libtests/pngunknown.c with eXIf chunk. - * Initialized btoa[] in pngstest.c - * Stop memory leak when returning from png_handle_eXIf() with an - error - * Replaced local eXIf_buf with info_ptr-eXIf_buf in png_handle_eXIf(). - * Update libpng.3 and libpng-manual.txt about eXIf functions. - * Restored png_get_eXIf() and png_set_eXIf() to maintain API - compatability. - * Removed png_get_eXIf_1() and png_set_eXIf_1(). - * Check length of all chunks except IDAT against user limit to - fix an OSS-fuzz issue (Fixes CVE-2017-12652) - * Check length of IDAT against maximum possible IDAT size, - accounting for height, rowbytes, interlacing and zlib/deflate - overhead. - * Restored png_get_eXIf_1() and png_set_eXIf_1(), because - strlen(eXIf_buf) does not work (the eXIf chunk data can - contain zeroes). - * Revised symlink creation, no longer using deprecated cmake - LOCATION feature - * Fixed five-byte error in the calculation of IDAT maximum - possible size. - * Moved chunk-length check into a png_check_chunk_length() - private function - * Moved bad pngs from tests to contrib/libtests/crashers - * Moved testing of bad pngs into a separate - tests/pngtest-badpngs script - * Added the --xfail (expected FAIL) option to pngtest.c. It - writes XFAIL in the output but PASS for the libpng test. - * Require cmake-3.0.2 in CMakeLists.txt - * Fix "const" declaration info_ptr argument to png_get_eXIf_1() - and the num_exif argument to png_get_eXIf_1() - * Added "eXIf" to "chunks_to_ignore[]" in png_set_keep_unknown_chunks(). - * Added huge_IDAT.png and empty_ancillary_chunks.png to - testpngs/crashers. - * Make pngtest --strict, --relax, --xfail options imply -m - (multiple). - * Removed unused chunk_name parameter from png_check_chunk_length(). - * Relocated setting free_me for eXIf data, to stop an OSS-fuzz' - leak. - * Initialize profile_header[] in png_handle_iCCP() to fix - OSS-fuzz issue. - * Initialize png_ptr->row_buf[0] to 255 in png_read_row() to fix - OSS-fuzz UMR. - * Attempt to fix a UMR in png_set_text_2() to fix OSS-fuzz issue. - * Increase minimum zlib stream from 9 to 14 in png_handle_iCCP(), - to account for the minimum 'deflate' stream, and relocate the - test to a point after the keyword has been read. - * Check that the eXIf chunk has at least 2 bytes and begins with - "II" or "MM". - * Added a set of "huge_xxxx_chunk.png" files to - contrib/testpngs/crashers, one for each known chunk type, with - length = 2GB-1. - * Check for 0 return from png_get_rowbytes() and added some - (size_t) typecasts in contrib/pngminus/*.c to stop some Coverity - issues (162705, 162706, and 162707). - * Renamed chunks in contrib/testpngs/crashers to avoid having - files whose names differ only in case; this causes problems with - some platforms - * Added contrib/oss-fuzz directory which contains files used by - the oss-fuzz project -- cleanup with spec-cleaner - -- update to 1.6.31: - * Guard the definition of _POSIX_SOURCE in pngpriv.h. - * Revised pngpriv.h to work around failure to compile - arm/filter_neon.S. - * Added "Requires: zlib" to libpng.pc.in. - * Added special case for FreeBSD in arm/filter_neon.S. - * Changed "int" to "png_size_t" in intel/filter_sse2.c to prevent - possible integer overflow. - * Added eXIf chunk support. -- remove upstreamed - 0001-libpng16-Revised-pngpriv.h-to-use-PNG_VERSION_INFO_O.patch - -- Drop png-version-info-only.patch, it has no effect after applying - 0001-libpng16-Revised-pngpriv.h-to-use-PNG_VERSION_INFO_O.patch - Both patches achieve the same, prefer the upstream version - -- Add 0001-libpng16-Revised-pngpriv.h-to-use-PNG_VERSION_INFO_O.patch - Fix build on ARM - -- png-version-info-only.patch: fix missing PNG_VERSION_INFO_ONLY check - -- update to 1.6.30: - Revised documentation of png_get_error_ptr() in the libpng manual. - Document need to check for integer overflow when allocating a pixel - buffer for multiple rows in contrib/gregbook, contrib/pngminus, - example.c, and in the manual (suggested by Jaeseung Choi). This - is similar to the bug reported against pngquant in CVE-2016-5735. - Check for integer overflow in contrib/visupng and contrib/tools/genpng. - Do not double evaluate CMAKE_SYSTEM_PROCESSOR in CMakeLists.txt. - Avoid writing an empty IDAT when the last IDAT exactly fills the - compression buffer (bug report by Brian Baird). This bug was - introduced in libpng-1.6.0. - Add a reference to the libpng.download site in README. - -- update to 1.6.29: - Moved SSE2 optimization code into the main libpng source directory. - Configure libpng with "configure --enable-intel-sse" or compile - libpng with "-DPNG_INTEL_SSE" in CPPFLAGS to enable it. - Added code for PowerPC VSX optimisation (Vadim Barkov). - Avoid potential overflow of shift operations in png_do_expand() (Aaron Boxer). - -- update to 1.6.28: fix build issues - -- update to 1.6.27: fixes CVE-2016-10087 - -- update to 1.6.26: - Fixed handling zero length IDAT in pngfix (bug report by Agostino Sarubbo, - bugfix by John Bowler). - Do not issue a png_error() on read in png_set_pCAL() because - png_handle_pCAL has allocated memory that libpng needs to free. - Issue a png_benign_error instead of a png_error on ADLER32 mismatch - while decoding compressed data chunks. - Changed PNG_ZLIB_VERNUM to ZLIB_VERNUM in pngpriv.h, pngstruct.h, and - pngrutil.c. - If CRC handling of critical chunks has been set to PNG_CRC_QUIET_USE, - ignore the ADLER32 checksum in the IDAT chunk as well as the chunk CRCs. - Issue png_benign_error() on ADLER32 checksum mismatch instead of - png_error(). - Updated the documentation about CRC and ADLER32 handling. - Fixed offsets in contrib/intel/intel_sse.patch - Changed integer constant 4294967294 to unsigned 4294967294U in pngconf.h - to avoid a signed/unsigned compare in the preprocessor. - Use zlib-1.2.8.1 inflateValidate() instead of inflateReset2() to - optionally avoid ADLER32 evaluation. - -- update to 1.6.25: - Reject oversized iCCP profile immediately. - Conditionally compile png_inflate(). - Don't install pngcp; it conflicts with pngcp in the pngtools package. - Added MIPS support (Mandar Sahastrabuddhe < - -- update to 1.6.24: - Avoid potential overflow of the PNG_IMAGE_SIZE macro. - Correct filter heuristic overflow handling. - Use a more efficient absolute value calculation on SSE2. - Added pngcp. - etc. see ANNOUNCE - -- Update to new upstream release 1.6.23 - * Fixes a potential memleak in png_set_tRNS. - * Fixed the progressive reader to handle empty first IDAT - chunk properly. - * Added tests in pngvalid.c to check zero-length IDAT chunks - in various positions. - * Fixed the sequential reader to handle these more robustly. - * Corrected progressive read input buffer in pngvalid.c. - * Moved sse2 prototype from pngpriv.h to - contrib/intel/intel_sse.patch. - * Fixed undefined behavior in png_push_save_buffer(). - Do not call memcpy() with a null source, even if count is zero. - * Fixed bad link to RFC2083 in png.5. - -- update to 1.6.22: - Added a png_image_write_to_memory() API and a number of assist macros - to allow an application that uses the simplified API write to bypass - stdio and write directly to memory. - Relaxed limit checks on gamma values in pngrtran.c. As suggested in - the comments gamma values outside the range currently permitted - by png_set_alpha_mode are useful for HDR data encoding. These values - are already permitted by png_set_gamma so it is reasonable caution to - extend the png_set_alpha_mode range as HDR imaging systems are starting - to emerge. - Restored "& 0xff" in png_save_uint_16() and png_save_uint_32() that - were accidentally removed from libpng-1.6.17. - Changed PNG_INFO_cHNK and PNG_FREE_cHNK from 0xnnnn to 0xnnnnU in png.h - (Robert C. Seacord). - Added INTEL-SSE2 support (Mike Klein and Matt Sarett, Google, Inc.). - SSE filter speed improvements for bpp=3: - memcpy-free implementations of load3() / store3(). - Added PNG_FAST_FILTERS macro (defined as - PNG_FILTER_NONE|PNG_FILTER_SUB|PNG_FILTER_UP). - -- Update to new upstream release 1.6.21 - * Widened the 'limit' check on the internally calculated error limits in - the 'DIGITIZE' case (the code used prior to 1.7 for rgb_to_gray error - checks) and changed the check to only operate in non-release builds - (base build type not RC or RELEASE.) - * Fixed undefined behavior in pngvalid.c, undefined because - (png_byte) << shift is undefined if it changes the signed bit - (because png_byte is promoted to int). The libpng exported functions - png_get_uint_32 and png_get_uint_16 handle this. - -- update to 1.6.20: - Avoid potential pointer overflow/underflow in png_handle_sPLT() and - png_handle_pCAL() (Bug report by John Regehr). - Fixed incorrect implementation of png_set_PLTE() that uses png_ptr - not info_ptr, that left png_set_PLTE() open to the CVE-2015-8126 - vulnerability. - Backported tests from libpng-1.7.0beta69. - Fixed an error in handling of bad zlib CMINFO field in pngfix, found by - American Fuzzy Lop, reported by Brian Carpenter. inflate() doesn't - immediately fault a bad CMINFO field; instead a 'too far back' error - happens later (at least some times). pngfix failed to limit CMINFO to - the allowed values but then assumed that window_bits was in range, - triggering an assert. The bug is mostly harmless; the PNG file cannot - be fixed. - In libpng 1.6 zlib initialization was changed to use the window size - in the zlib stream, not a fixed value. This causes some invalid images, - where CINFO is too large, to display 'correctly' if the rest of the - data is valid. This provides a workaround for zlib versions where the - error arises (ones that support the API change to use the window size - in the stream). - -- update to 1.6.19: - Fixed potential leak of png_pixels in contrib/pngminus/pnm2png.c - Fixed uninitialized variable in contrib/gregbook/rpng2-x.c - Fixed the recently reported 1's complement security issue. - Fixed png_save_int_32 when int is not 2's complement by replacing - the value that is illegal in the PNG spec, in both signed and - unsigned values, with 0. - etc., see ANNOUNCE and CHANGES for details -- removed: libpng-rgb_to_gray-checks.patch (upstreamed) - -- drop unknown configure switch - -- Fixed rgb_to_gray checks and added tRNS checks to pngvalid.c. - + libpng-rgb_to_gray-checks.patch - -- updated to 1.6.17: - Corrected the width limit calculation in png_check_IHDR(). - Removed user limits from pngfix. Also pass NULL pointers to - png_read_row to skip the unnecessary row de-interlace stuff. - Implement previously untested cases of libpng transforms in pngvalid.c - Fixed byte order in 2-byte filler, in png_do_read_filler(). - Made the check for out-of-range values in png_set_tRNS() detect - values that are exactly 2^bit_depth, and work on 16-bit platforms. - Merged some parts of libpng-1.6.17beta01 and libpng-1.7.0beta47. - Added #ifndef __COVERITY__ where needed in png.c, pngrutil.c and - pngset.c to avoid warnings about dead code. - Do not build png_product2() when it is unused. - Display user limits in the output from pngtest. - Eliminated the PNG_SAFE_LIMITS macro and restored the 1-million-column - and 1-million-row default limits in pnglibconf.dfa, that can be reset - by the user at build time or run time. This provides a more robust - defense against DOS and as-yet undiscovered overflows. - Added PNG_WRITE_CUSTOMIZE_COMPRESSION_SUPPORTED macro, on by default. - Allow user to call png_get_IHDR() with NULL arguments (Reuben Hawkins). - Moved png_set_filter() prototype into a PNG_WRITE_SUPPORTED block - of png.h. - Free the unknown_chunks structure even when it contains no data. - Fixed simplified 8-bit-linear to sRGB alpha. The calculated alpha - value was wrong. It's not clear if this affected the final stored - value; in the obvious code path the upper and lower 8-bits of the - alpha value were identical and the alpha was truncated to 8-bits - rather than dividing by 257 (John Bowler). - -- build with PNG_SAFE_LIMITS_SUPPORTED [bnc#912076], [bnc#912929] - -- updated to 1.6.16: - * Restored a test on width that was removed from png.c at libpng-1.6.9 - (Bug report by Alex Eubanks). - * Fixed an overflow in png_combine_row with very wide interlaced images. - -- updated to 1.6.15: - * Avoid out-of-bounds memory access in png_user_version_check(). - * Fixed incorrect handling of the iTXt compression. - * Free all allocated memory in pngimage. - * Fixed array size calculations to avoid warnings. - etc. see ANNOUNCE - libproxy-plugins +- Add libproxy-CVE-2020-25219.patch: Rewrite url::recvline to be + nonrecursive (boo#1176410 CVE-2020-25219). +- Add libproxy-fix-pac-buffer-overflow.patch: fix buffer overflow + when PAC is enabled (boo#1177143 CVE-2020-26154). + +- Build with KDE on Tumbleweed, Leap and SLE releases greater than + SLE-15-SP2 (jsc#SLE-12256). + +- Add libproxy-pxgsettings.patch: pxgsettings: use the correct + syntax to connect to the changed signal. + +- Remove few SLE11 conditions +- Fix build without python2 available + +- Convert package from multispec to multibuild. + +- Update Url tag to point to http://libproxy.github.io/libproxy/ +- Add libproxy-python3.7.patch: Support python 3.7 and 3.8. +- Drop py_requires: no longer needed. + +- Drop favor_gtk2 conditional. + libpwquality +- update to 1.4.4 + * e11f2bd Fix regression with enabling cracklib check + * 02e6728 Use make macros in rpm spec file + * xxxxxxx Translated using Weblate (Polish, Turkish, Ukrainian) +- update to 1.4.3 + * 1213d33 Update translation files + * a951fbe Add --disable-cracklib-check configure parameter + * 6a8845b fixup static compilation + * 92c6066 python: Add missing getters/setters for newly added settings + * bfef79d Add usersubstr check + * 09a2e65 pam_pwquality: Add debug message for the local_users_only option + * a6f7705 Fix some gcc warnings + * 8c8a260 pwmake: Properly validate the bits parameter. + * 7be4797 we use Fedora Weblate now + * xxxxxxx Translated using Weblate (Azerbaijani, Bulgarian, + Chinese (Simplified), Czech, French, Friulian, Hungarian, Italian, + Japanese, Norwegian Bokmål, Persian, Russian, Spanish, Turkish) + +- update to 1.4.2: + * Fix regression in handling retry, enforce_for_root, and + local_users_only options introduced with the previous + release. + +- Register with pam-config in %post(un) + +- Add baselibs.conf + +- Update to version 1.4.1: + + Minor bugfix update of the library. +- Drop libpwquality-pythons.patch: Fixed upstream. Following this, + drop autoconf, automake and libtool BuildRequires and autoreconf + call. +- Use modern macros. + +- Do not recommend lang package. The lang package already has a + supplements. + +- Modernize spec-file by calling spec-cleaner + -- Update to version 1.2.4: - + Add Python3 module subpackage. - -- Avoid conflict in installation-images-openSUSE with cryptsetup: - + Only recommend, insted of Require cracklib-dict-full. - + Require cracklib-dict. - -- Update to version 1.2.3: - + Fix problem with parsing the pam_pwquality options. - + Treat empty user or password as NULL. - + Updated translations. - -- Update to version 1.2.2: - + Manual page fixes. - + Make it possible to set the maxsequence configuration value. - + Updated translations. - -- Update to version 1.2.1: - + Properly free pwquality settings. - + Add extern "C" to public header. - + Updated translations. - -- Cleanup for inclusion in Factory. -- Update to version 1.2.0: - + Add maxsequence check for too long monotonic character - sequence. - + Clarified alternative licensing to GPLv2+. - + Add local_users_only option to skip the pwquality checks for - non-locals. - -- Initial build (version 1.1.0). - libqt5-qtbase +- Add patch to avoid crash in certain screen setups + (boo#1179165, kde#425188, QTBUG-88288): + * 0001-Avoid-crash-in-QScroller.patch + +- Disable -reduce-relocations for now (boo#1175278, QTBUG-86173) + +- Add patch to fix issues when both + /usr/include/qt5/QtGui/qopenglext.h and /usr/include/GLES3/gl3.h + are included since they defined GLintptr, GLsizeiptr, etc. + differently at least in i586 (bsc#1176130): + * 0001-Change-qopenglext-to-match-official-Khronos-headers.patch + libsolv +- do not ask the namespace callback for splitprovides when writing + a testcase +- fix add_complex_recommends() selecting conflicted packages in + rare cases leading to crashes +- improve choicerule generation so that package updates are + prefered in more cases +- bump version to 0.7.16 + libssh -- Fix possible Denial of Service attack when using AES-CTR - ciphers; (bsc#1168699) - * Add 0001-CVE-2020-1730-Fix-a-possible-segfault-when-zeroing-A.patch - -- Update to latest version of patch for CVE-2019-14889; (bsc#1158095) - * Update CVE-2019-14889.patch - -- Fix CVE-2019-14889: arbitrary command execution; (bsc#1158095) - * Add CVE-2019-14889.patch - -- Fix the typo in Obsoletes for -devel-doc subpackage -- Actually remove the description for -devel-doc subpackage - -- Add support for new AES-GCM encryption types; (bsc#1134193) - * Add 0001-libcrypto-Implement-OpenSSH-compatible-AES-GCM-ciphe.patch - * Add 0001-libgcrypt-Implement-OpenSSH-compatible-AES-GCM-ciphe.patch - * Add 0001-tests-Add-aes-gcm-ciphers-tests.patch - -- Avoid build cycle between curl and libssh by using obs hint to - prefer curl-mini - -- Update to version 0.8.7 - * Fixed handling extension flags in the server implementation - * Fixed exporting ed25519 private keys - * Fixed corner cases for rsa-sha2 signatures - * Fixed some issues with connector - -- Drop doxygen from dependencies to avoid buildcycle - * the documentation is available online anyway for anyone to - consume and consult http://api.libssh.org - -- Added the tests in a multiple build description file *test* to - break the cycle for cmocka, curl, doxygen and libssh. - -- Update to version 0.8.6 - * Fixed compilation issues with different OpenSSL versions - * Fixed StrictHostKeyChecking in new knownhosts API - * Fixed ssh_send_keepalive() with packet filter - * Fixed possible crash with knownhosts options - * Fixed issus with rekeying - * Fixed strong ECDSA keys - * Fixed some issues with rsa-sha2 extentions - * Fixed access violation in ssh_init() (static linking) - * Fixed ssh_channel_close() handling - -- Update to version 0.8.5 - * Added support to get known_hosts locations with ssh_options_get() - * Fixed preferred algorithm for known hosts negotiations - * Fixed KEX with some server implementations (e.g. Cisco) - * Fixed issues with MSVC - * Fixed keyboard-interactive auth in server mode - (regression from CVE-2018-10933) - * Fixed gssapi auth in server mode (regression from CVE-2018-10933) - * Fixed socket fd handling with proxy command - * Fixed a memory leak with OpenSSL - -- Update to version 0.8.4 - * Fixed CVE-2018-10933; (bsc#1108020) - * Fixed building without globbing support - * Fixed possible memory leaks - * Avoid SIGPIPE on sockets - -- Update to version 0.8.3 - * Added support for rsa-sha2 - * Added support to parse private keys in openssh container format - (other than ed25519) - * Added support for diffie-hellman-group18-sha512 and - diffie-hellman-group16-sha512 - * Added ssh_get_fingerprint_hash() - * Added ssh_pki_export_privkey_base64() - * Added support for Match keyword in config file - * Improved performance and reduced memory footprint for sftp - * Fixed ecdsa publickey auth - * Fixed reading a closed channel - * Added support to announce posix-rename@openssh.com and - hardlink@openssh.com in the sftp server -- Removed patch: 0001-poll-Fix-size-types-in-ssh_event_free.patch - -- Update to version 0.8.2 - * Added sha256 fingerprints for pubkeys - * Improved compiler flag detection - * Fixed race condition in reading sftp messages - * Fixed doxygen generation and added modern style - * Fixed library initialization on Windows - * Fixed __bounded__ attribute detection - * Fixed a bug in the options parser - * Fixed documentation for new knwon_hosts API -- Added patch: 0001-poll-Fix-size-types-in-ssh_event_free.patch - * Fix compiler warning on SLE12 - -- Add missing zlib-devel dependency which was previously pulled in - by libopenssl-devel - -- Remove the libssh_threads.so symlink - -- Update to version 0.8.1 - * Fixed version number in the header - * Fixed version number in pkg-config and cmake config - * Fixed library initialization - * Fixed attribute detection - -- Update to version 0.8.0 - * Removed support for deprecated SSHv1 protocol - * Added new connector API for clients - * Added new known_hosts parsing API - * Added support for OpenSSL 1.1 - * Added support for chacha20-poly1305 cipher - * Added crypto backend for mbedtls crypto library - * Added ECDSA support with gcrypt backend - * Added advanced client and server testing using cwrap.org - * Added support for curve25519-sha256 alias - * Added support for global known_hosts file - * Added support for symbol versioning - * Improved ssh_config parsing - * Improved threading support -- Removed 0001-libcrypto-Remove-AES_ctr128_encrypt.patch -- Removed 0001-libcrypto-Introduce-a-libcrypto-compat-file.patch -- Removed 0001-libcrypto-Use-newer-API-for-HMAC.patch -- Removed 0001-libcrypto-Use-a-pointer-for-EVP_MD_CTX.patch -- Removed 0001-libcrypto-Use-a-pointer-for-EVP_CIPHER_CTX.patch -- Removed 0001-pki_crypto-Use-getters-and-setters-for-opaque-keys-a.patch -- Removed 0001-threads-Use-new-API-call-for-OpenSSL-CRYPTO-THREADID.patch -- Removed 0001-cmake-Use-configure-check-for-CRYPTO_ctr128_encrypt.patch -- Removed 0001-config-Bugfix-Dont-skip-unseen-opcodes.patch - -- Disable timeout testing on slow build systems (bsc#1084713) - * 0001-disable-timeout-test-on-slow-buildsystems.patch - -- Add patch to fix parsing of config files (boo#1067782): - * 0001-config-Bugfix-Dont-skip-unseen-opcodes.patch - -- add support for building with OpenSSL 1.1 (bsc#1055266) - * added patches: - * 0001-cmake-Use-configure-check-for-CRYPTO_ctr128_encrypt.patch - * 0001-libcrypto-Introduce-a-libcrypto-compat-file.patch - * 0001-libcrypto-Remove-AES_ctr128_encrypt.patch - * 0001-libcrypto-Use-a-pointer-for-EVP_MD_CTX.patch - * 0001-libcrypto-Use-a-pointer-for-EVP_CIPHER_CTX.patch - * 0001-libcrypto-Use-newer-API-for-HMAC.patch - * 0001-pki_crypto-Use-getters-and-setters-for-opaque-keys-a.patch - * 0001-threads-Use-new-API-call-for-OpenSSL-CRYPTO-THREADID.patch - -- add package keyring and verify source signature - -- Update to version 0.7.5 - * Fixed a memory allocation issue with buffers - * Fixed PKI on Windows - * Fixed some SSHv1 functions - * Fixed config hostname expansion - -- Update to version 0.7.4 - * Added id_ed25519 to the default identity list - * Fixed sftp EOF packet handling - * Fixed ssh_send_banner() to confirm with RFC 4253 - * Fixed some memory leaks -- Removed patch gcc5-fixes.patch - -- Update descriptions. Drop redundant pkgconfig require - (it's autodetected). - -- Update to version 0.7.2 - * Fixed OpenSSL detection on Windows - * Fixed return status for ssh_userauth_agent() - * Fixed KEX to prefer hmac-sha2-256 - * Fixed sftp packet handling - * Fixed return values of ssh_key_is_(public|private) - * Fixed bug in global success reply - -- Enable testsuite run to check the state of libssh itself -- Use SUSE macros to define environment clearly -- Enable gssapi by adding krb5 dependency - -- Update to version 0.7.1 - * Fixed SSH_AUTH_PARTIAL auth with auto public key - * Fixed memory leak in session options - * Fixed allocation of ed25519 public keys - * Fixed channel exit-status and exit-signal - * Reintroduce ssh_forward_listen() - -- Update to version 0.7.0 - * Added support for ed25519 keys - * Added SHA2 algorithms for HMAC - * Added improved and more secure buffer handling code - * Added callback for auth_none_function - * Added support for ECDSA private key signing - * Added more tests - * Fixed a lot of bugs - * Improved API documentation - -- add gcc5-fixes.patch: Fix build against GCC 5.x - -- Update to version 0.6.5 - * Fixed CVE-2015-3146 - * Fixed port handling in config file - * Fixed the build with libgcrypt - * Fixed SFTP endian issues (rlo #179) - * Fixed uninitilized sig variable (rlo #167) - * Fixed polling issues which could result in a hang - * Fixed handling of EINTR in ssh_poll() (rlo #186) - * Fixed C99 issues with __func__ - * Fixed some memory leaks - * Improved macro detection on Windows - -- removing argument from popd -- add baselibs.conf as source - -- Update to version 0.6.4 - * Fixed CVE-2014-8132. - * Added SHA-2 for session ID signing with ECDSA keys. - * Added support for ECDSA host keys. - * Added support for more ECDSA hostkey algorithms. - * Added ssh_pki_key_ecdsa_name() API. - * Fixed setting the bindfd only after successful listen. - * Fixed issues with user created sockets. - * Fixed several issues in libssh C++ wrapper. - * Fixed several documentation issues. - * Fixed channel exit-signal request. - * Fixed X11 request screen number in messages. - * Fixed several memory leaks. - libssh2_org +- Version update to 1.9.0: [bsc#1178083, jsc#SLE-16922] + Enhancements and bugfixes: + * adds ECDSA keys and host key support when using OpenSSL + * adds ED25519 key and host key support when using OpenSSL 1.1.1 + * adds OpenSSH style key file reading + * adds AES CTR mode support when using WinCNG + * adds PEM passphrase protected file support for Libgcrypt and WinCNG + * adds SHA256 hostkey fingerprint + * adds libssh2_agent_get_identity_path() and libssh2_agent_set_identity_path() + * adds explicit zeroing of sensitive data in memory + * adds additional bounds checks to network buffer reads + * adds the ability to use the server default permissions when creating sftp directories + * adds support for building with OpenSSL no engine flag + * adds support for building with LibreSSL + * increased sftp packet size to 256k + * fixed oversized packet handling in sftp + * fixed building with OpenSSL 1.1 + * fixed a possible crash if sftp stat gets an unexpected response + * fixed incorrect parsing of the KEX preference string value + * fixed conditional RSA and AES-CTR support + * fixed a small memory leak during the key exchange process + * fixed a possible memory leak of the ssh banner string + * fixed various small memory leaks in the backends + * fixed possible out of bounds read when parsing public keys from the server + * fixed possible out of bounds read when parsing invalid PEM files + * no longer null terminates the scp remote exec command + * now handle errors when diffie hellman key pair generation fails + * improved building instructions + * improved unit tests +- Rebased patches: + * libssh2-ocloexec.patch + * libssh2_org-CVE-2019-17498.patch +- Remove patches fixed in this version: + libssh2_org-CVE-2019-3855.patch libssh2_org-CVE-2019-3856.patch + libssh2_org-CVE-2019-3857.patch libssh2_org-CVE-2019-3858.patch + libssh2_org-CVE-2019-3859.patch libssh2_org-CVE-2019-3859-fix.patch + libssh2_org-CVE-2019-3860.patch libssh2_org-CVE-2019-3861.patch + libssh2_org-CVE-2019-3862.patch libssh2_org-CVE-2019-3863.patch + +- Drop man and groff BuildRequires: both are no longer used in + current versions. + +- Version update to 1.8.2: [bsc#1130103] + Bug fixes: + * Fixed the misapplied userauth patch that broke 1.8.1 + * moved the MAX size declarations from the public header + -- ignore groff-full to remove factory build cycle -- add groff to build requires to make tests passing - libstorage-ng +- merge gh#openSUSE/libstorage-ng#796 +- Simplify compound actions for subvolumes +- Show single subvol action +- Update pot and po files +- Rename method +- 4.3.86 + +- merge gh#openSUSE/libstorage-ng#795 +- per default join all action messages for compound actions +- 4.3.85 + +- merge gh#openSUSE/libstorage-ng#794 +- updated pot and po files +- 4.3.84 + +- merge gh#openSUSE/libstorage-ng#793 +- make the btrfs subvolume the target device for qgroup compound + actions +- 4.3.83 + +- merge gh#openSUSE/libstorage-ng#792 +- updated pot and po files +- 4.3.82 + +- merge gh#openSUSE/libstorage-ng#791 +- handle tmpfs in compound actions +- 4.3.81 + +- merge gh#openSUSE/libstorage-ng#789 +- Use non-deprecated location for efivars for EFI detection +- 4.3.80 + +- merge gh#openSUSE/libstorage-ng#790 +- fix setting UUID when creating swap (bsc#1180560) +- extended documentation +- 4.3.79 + +- Translated using Weblate (Finnish) (bsc#1149754) +- 4.3.78 + +- Translated using Weblate (Russian) (bsc#1149754) +- 4.3.77 + +- Translated using Weblate (French) (bsc#1149754) +- 4.3.76 + libupnp +- Update to release 1.14.0 + * Remove deprecated "UpnpInit" function + * Reworked the miniserver code to deal with SO_REUSEADDR +- Drop 0001-Fixes-177-NULL-pointer-dereference-in-FindServiceCon.patch + (merged) + +- Update to version 1.12.1: + * #129: Remove and replace the list.h file + * Reduce spurious HTTP 416 errors due to ill-defined bytes header + * #138: Use stdbool.h instead of BOOL typedef and defines + * #140: Remove IN, OUT and INOUT defines + * #129: Remove and replace the list.h file + * and many more, see ChangeLog +- Bump libpnpn defines to 16 following upstream changes (also in + baselibs.conf). +- ChangeLog installed with devel package, not libXY ones + +- Update to version 1.10.1: + + Fix format string for ExtraHeaders. + + Use higher port when reuseaddr is set and the default port is + busy (boo#1132829). +- Drop libupnp-configure.patch: patch seems no longer needed (patch + was added before 2013 and only ever rebased without validating + its usefulness). +- Drop libtool BuildRequires and no longer call autoreconf: since + we have no patch left, there is no need to bootstrap. +- Bump libpnpn defines to 15 and libixmlver to 11, following + upstream chanes (also in baselibs.conf). + +- Update descriptions. "Portable" is part of the proper noun, + and needs an uppercase P here. + +- Split off libixml10 and renamed libupnp6 to it's correct name + libupnp13. Major version 6 was last seen long ago. +- libthreadutil was merged with libupnp in version 1.8.1 + +- Version update to 1.8.4: + * Various fixes to communicate right with some TVs + * Compiler fixes + * Testsuite fun +- Rebase patch libupnp-configure.patch + -- Update to version 1.6.18: - + Security fix for CERT issue VU#922681. - + CVE-2012-5958 Issue #2: Stack buffer overflow of Tempbuf - + CVE-2012-5959 Issue #4: Stack buffer overflow of Event->UDN - + CVE-2012-5960 Issue #8: Stack buffer overflow of Event->UDN - + Notice that the following issues have already been dealt by - previous work: - - CVE-2012-5961 Issue #1: Stack buffer overflow of Evt->UDN - - CVE-2012-5962 Issue #3: Stack buffer overflow of - Evt->DeviceType - - CVE-2012-5963 Issue #5: Stack buffer overflow of Event->UDN - - CVE-2012-5964 Issue #6: Stack buffer overflow of - Event->DeviceType - - CVE-2012-5965 Issue #7: Stack buffer overflow of - Event->DeviceType - + Fix memory leak and access violation in - UpnpSendAction(Ex)Async. - + Disable SetGenaCallback call if device is disabled. - + Fix problems detected as dead assignment warning by clang - scan-build. - + Fix condition for allocation failure in get_content_type(). - + Avoid dereference of null pointer in - ixmlNode_setNodeProperties. - + Avoid access violation after parser_parse_chunky_headers call. - + Remove possibility of access violation. - + Fix type of local variable stopSock in RunMiniServer(). - + Compilation optimisation. - + Use of thread-unsafe gmtime() in httpreadwrite.c sf#3507819. -- Changes from version 1.6.17: - + Remove implicit casts. - + Add --enable-unspecified_server - + Removing implicit casts in miniserver.c - + Bugs fixed: sf#3512833, sf#3510693, sf#3511149, sf#3514145. -- Changes from version 1.6.16: - + Replace sprintf by snprintf in http_WriteHttpPost to avoid - buffer overflow. - + Add infoSize parameter to get_sdk_info - + Check return code in ixml. - + Add --disable-optssdp option - + Add more explicit casts and remove dead code. - + Bug fix in ixmlNode_allowChildren. - + Improve upnp/genlib/net. - + Improve ssdp part. Do not compile - CreateClientRequestPacketUlaGua if IPv6 is disabled. - + Bugs fixed: sf#3502958, sf#3499781, sf#3499878, sf#3175217, - sf#3496993, sf#3497714, sf#3498442, sf#3498439, sf#3498436, - sf#3497714, sf#2989399, sf#3325246, sf#3417134, sf#3497159, - sf#3497140, sf#3497126, sf#3497034, sf#3497033, sf#3497027, - sf#3497009, sf#3496703, sf#3496702, sf#3496942, sf#3496938, - sf#3496934, sf#3496933, sf#3496581, sf#3495616, sf#3495286, - sf#3495280, sf#3494865, sf#3489999, sf#3489990, sf#3489999. -- Changes from version 1.6.15: - + Bug fix on M-SEARCH for IPv6 CPs. - + Retrieve IPv6 addresses in Upnp_Discovery. - + Fix bug sf#3469344. -- Changes from version 1.6.14: - + UPnP Low Power Support. - + Bug fix in IN6_IS_ADDR_GLOBAL. - + Bug Fix on M-SEARCH. - + Fixes for compilation under Windows. - + Several fixes to correctly use SOCKET (and related) types - instead of non-portable variations. -- Rebase libupnp-configure.patch. - -- Previous patch was incomplete and did not consider files - in the upnp directory. (updates libupnp-configure.patch) - -- Enable IPV6 support... -- Fix autotools, all C files must include "*config.h" -- DO not build samples - -- sync package name with spec file name - libusb-1_0 +- Add libusb-bsc1178376-ppc-linux-flag.patch to fix the inclusion + of "sys/time.h" on PowerPC (bsc#1178376) + -- Update to version 1.0.9: - + Numerous bug fixes and improvements - + Backend for Windows, for devices using the WinUSB.sys driver - + Backend for OpenBSD and NetBSD, for devices using the ugen - driver - + Add libusb_get_device_speed() - + Add libusb_has_capability() - + Add libusb_error_name() - + Add libusb_get_version() -- Drop libtool BuildRequires and call to autoreconf: as we switched - to an officialy released tarball, there is no need to bootstrap - anymore. - -- Update to the latest git snapshot 6b1982b: - * Bug fixes. - * Support for USB 3.0. - * Add LIBUSB_TRANSFER_ADD_ZERO_PACKET flag. - -- Libraries back in %{_libdir}, /usr merge project. - -- Update to version 1.0.9rc3: - + Fix memory leaks - + Factorize event handler interruption code - + Add Windows support - + Fix inconsistencies between prototypes and definitions - + Add libusb_error_name() API function. - -- add libtool as buildrequire to avoid implicit dependency - -- move libusb from /usr to / to make it usable for other packages - and work around rpmlint stupidity - -- Updated to version 1.0.8: - * Bug fixes and documentation tweaks - * Add more interface class definitions -- This release fixes a crash for kernel's with debug flag enabled - -- buildrequire pkg-config to fix provides - -- add baselibs.conf as a source - -- Create libusb-1_0-devel-32bit for grub2. - -- Updated to version 1.0.6: - * Increase libusb_handle_events() timeout to 60 seconds. - * Allows libusb applications to access multiple interfaces of the - same device in the same application. - * Use timerfd for timeout handling. - * Add support for the new URB_BULK_CONTINUATION flag. - * Support for transfer locking. - * More flexibility with monotonic clock. - -- Updated to version 1.0.3: - * Bug fixes - * Allow sending zero length bulk packets - * Add libusb_get_max_iso_packet_size() - -- Updated to version 1.0.2: - * Bug fixes, see ChangeLog. - -- Updated to version 1.0.1: - * Bug fixes - * Darwin backend - -- Updated to version 1.0.0, the new official stable branch: - * Bug fixes - * Add libusb_attach_kernel_driver() - libva +- update to 2.10.0: + * add: Pass offset and size of pred_weight_table + * add: add vaCopy interface to copy surface and buffer + * add: add definition for different execution + * add: New parameters for transport controlled BRC were added + * add: add FreeBSD support + * add: add a bufer type to adjust context priority dynamically + * fix: correct the api version in meson.build + * fix: remove deprecated variable from va_trace.c + * fix: Use va_deprecated for the deprecate variable + * fix: Mark chroma_sample_position as deprecated + * doc: va_dec_av1: clarifies CDEF syntax element packing + * doc: [AV1] Update documented ranges for loop filter and quantization params. + * doc: Update va.h for multi-threaded usages + * trace: va/va_trace: ignore system gettid() on Linux + +- update to 2.9.1: + * fix version mismatch between meson and autotools + libva-gl +- update to 2.10.0: + * add: Pass offset and size of pred_weight_table + * add: add vaCopy interface to copy surface and buffer + * add: add definition for different execution + * add: New parameters for transport controlled BRC were added + * add: add FreeBSD support + * add: add a bufer type to adjust context priority dynamically + * fix: correct the api version in meson.build + * fix: remove deprecated variable from va_trace.c + * fix: Use va_deprecated for the deprecate variable + * fix: Mark chroma_sample_position as deprecated + * doc: va_dec_av1: clarifies CDEF syntax element packing + * doc: [AV1] Update documented ranges for loop filter and quantization params. + * doc: Update va.h for multi-threaded usages + * trace: va/va_trace: ignore system gettid() on Linux + libvirt +- Update to libvirt 7.0.0 + - jsc#SLE-15860 + - Many incremental improvements and bug fixes, see + https://libvirt.org/news.html + - Dropped patches: + 0d05d51b-apparmor-lxc-fix.patch, + cf4e7e62-lxc-def-secmodel.patch, + 0ddebdb4-qemu-snapshot-deletion.patch + +- Update libxl-set-migration-constraints.patch + Remove code which handled --max_factor. The total amount of + transferred data is no indicator to trigger the final stop+copy. + This should have been removed during upgrade to Xen 4.7. + Reduce default value of --max_iters from 5 to 2. + The workload within domU will continue to produce dirty pages. + It is unreasonable to expect any slowdown during migration. + Now there is one initial copy of all memory, one instead of four + iteration for dirty memory, and a final copy iteration prior move. + libxcb -- u_don-t-flag-extra-reply-in-xcb_take_socket.patch - * Fix IO errors with KWin in combination with NVIDIA driver. - (bnc#1101560) - -- Update to version 1.13 - * As with xcb-proto, this release mainly enables multi-planar buffers in - DRI3 v1.2 via support for variable-sized lists of FDs, and enables - sending GenericEvents to other clients. Present v1.2 and RandR v1.6 - did not require any specific library changes. -- supersedes U_add-support-for-eventstruct.patch, - u_build_python3.patch - -- Really conditionalize the python3 option to allow us building - without any python2 present - * u_build_python3.patch -- Convert to pkgconfig style deps -- Format bit with spec-cleaner - -- Enable xinput extension. (bnc#1074249) -- U_add-support-for-eventstruct.patch - * Update xinput to the state when it was enabled by default - upstream. - -- n_If-auth-with-credentials-for-hostname-fails-retry-with-XAUTHLOCALHOSTNAME.patch - * Prevent infinite loop also in case DISPLAY is non-local. - -- Use spaces instead of tabs in the patches (as does the original - source code) to avoid confusion. -- n_If-auth-with-credentials-for-hostname-fails-retry-with-XAUTHLOCALHOSTNAME.patch - * If authentication (with *stage == 0) failed and the variable - XAUTHLOCALHOSTNAME wasn't set, we were never getting to stage 2 - in the original patch, causing calls to xcb_connect_to_display - to be stuck in an infinite loop. - Now we also go to stage 2 if the variable isn't set. - -- fixes build against python3 (package rename of - python-xcb-proto-devel to python3-xcb-proto-devel) - -- n_If-auth-with-credentials-for-hostname-fails-retry-with-XAUTHLOCALHOSTNAME.patch - * Modify this patch to do what it say - retry not only if the current hostname is - not found in the xauthority file, but also when it is rejected by X server. - (bnc#1043221) - -- Update to version 1.12 - * here is a new version of libxcb for you to enjoy. The - highlights are the same as for the new xcb-proto release: - xinput support, RandR 1.5 and an automatic alignment checker. -- removed libxcb-xevie0/libxcb-xprint0 subpackages - -- n_If-auth-with-credentials-for-hostname-fails-retry-with-XAUTHLOCALHOSTNAME.patch: - If auth with credentials for hostname fails retry with XAUTHLOCALHOSTNAME - (boo#906622). - -- Update to version 1.11.1: - This fixes some threading-related bugs with - xcb_wait_for_special_event() and adds 64-bit versions of - functions that work with sequence numbers. - libxml2 +- Avoid quadratic checking of identity-constraints: [bsc#1178823] + * key/unique/keyref schema attributes currently use qudratic loops + to check their various constraints (that keys are unique and that + keyrefs refer to existing keys). + * This fix uses a hash table to avoid the quadratic behaviour. +- Add libxml2-Avoid-quadratic-checking-of-identity-constraints.patch + libzypp +- Rephrase solver problem descriptions (jsc#SLE-8482) +- Adapt to changed gpg2/libgpgme behavior (bsc#1180721) +- Multicurl backend breaks with with unknown filesize (fixes #277) +- version 17.25.6 (22) + +- Fix lsof monitoring (bsc#1179909) +- version 17.25.5 (22) + +- Prevent librpmDb iterator from accidentally creating an empty + rpmdb in / (repoened bsc#1178910) +- Fix update of gpg keys with elongated expire date (bsc#1179222) +- needreboot: remove udev from the list (bsc#1179083) +- Prefer /run over /var/run. +- version 17.25.4 (22) + +- RepoManager: Carefully tidy up the caches. Remove non-directory + entries. (bsc#1178966) +- RpmDb: If no database exists use the _dbpath configured in rpm. + Still makes sure a compat symlink at /var/lib/rpm exists in case + the configures _dbpath is elsewhere. (bsc#1178910) +- Url: Hide known password entries when writing the query part + (bsc#1050625 bsc#1177583, CVE-2017-9271) +- adapt testcase to change introduced by libsolv#402. +- RepoManager: Force refresh if repo url has changed (bsc#1174016) +- RepoInfo: ignore legacy type= in a .repo file and let RepoManager + probe (bsc#1177427, Fixes openSUSE/zypper#357). +- version 17.25.3 (22) + +- Bump version to force rebuild against a fixed libsolv. + (bsc#1177238, bsc#1177275) +- version 17.25.2 (22) + lifecycle-data-sle-module-development-tools +- Added expiration data for GCC 9 yearly update for the Toolchain/Development modules. + (jsc#ECO-2373, jsc#SLE-10950, jsc#SLE-10951) + llvm11 +- Update to version 11.0.1. + * This release contains bug-fixes for the LLVM 11.0.0 release. + This release is API and ABI compatible with 11.0.0. +- Rebase llvm-do-not-install-static-libraries.patch. +- Drop obsolete compiler-rt-dont-compile-assembly-files-as-c.patch. +- Make documentation tarballs more reproducible. + +- Increase required RAM for aarch64 + +- Move BFD plugins to %{_libdir} + +- polly-pthread.patch: Remove, std::call_once no longer needs libpthread + lvm2 +- lvm2 should use 'external_device_info_source="udev"' by default (bsc#1179691) + - change lvm.conf item external_device_info_source from none to udev +- comment out lvm.conf item preferred_names by default (bsc#1179738) + - comment out preferred_names + +- Update lvm2.spec file (bsc#1177533) + - in %postun, disable restart blk-availability.service & lvm2-monitor.service + +- lvcreate not wiping the lvm signature without prompting with --yes parameter (bsc#1177734) + + bug-1177734_raid-no-wiping-when-zeroing-raid-metadata-device.patch + +- Update lvm2.spec file (bsc#1174336) + - enable lvmlockd remote refresh using libdlmcontrol + - update libdlm dependency relationship + mariadb +- Update to 10.4.17 [bsc#1177472] and [bsc#1178428] + * release notes and changelog: + https://mariadb.com/kb/en/library/mariadb-10417-release-notes + https://mariadb.com/kb/en/library/mariadb-10417-changelog + https://mariadb.com/kb/en/library/mariadb-10416-release-notes + https://mariadb.com/kb/en/library/mariadb-10416-changelog + https://mariadb.com/kb/en/library/mariadb-10415-release-notes + https://mariadb.com/kb/en/library/mariadb-10415-changelog + * fixes for the following security vulnerabilities: + 10.4.17: none + 10.4.16: CVE-2020-14812, CVE-2020-14765, CVE-2020-14776, + CVE-2020-14789 + 10.4.15: CVE-2020-15180 +- refresh mariadb-10.2.19-link-and-enable-c++11-atomics.patch +- update suse_skipped_tests.list + mc +- Update to 4.8.25 + * Avoid subshell warning for standalone mcedit/mcview/mcdiffview run from mc + * Implement chattr command (change ext{2,3,4}fs extended attributes) + * New syntax highlighting: Kotlin and ino + * File highlighting updates + * Lots of other fixes +- Updated mc-ext-audio.patch +- Updated mc-extd-sound.patch +- Removed mc-rpm.patch + +- Update to 4.8.24 + * Implement the file edit and view history + * sftpfs: support keyborad interactive authentication + * add yabasic (Yet Another BASIC) syntax highlighting + * File highlighting updates + * New skins + * Lots of other fixes +- Remove sftp_interactive_password.patch +- Remove mc-no-common.patch + +- mc-no-common.patch: fix compilation on Tumbleweed (bsc#1160401) + +- Use python3 instead of python as we do not need to depend on + python2 +- Format with spec-cleaner +- update to 4.8.23: + * Modify "File exists" query dialog (#3935): + * Speed up of large directory structures delete (#3958) + * Support key binding for menu (#212) + * Syntax updates: + + shell (#3981) + + ebuild (#3988) + + RPM spec (#3991) + * Code cleanup (#3955) + * Use Geeqie (a fork of GQview) as main image viewer, fallback to GQview (#3962) + * various small fixes +- Refresh patches: + * mc-multi-press-f-keys.patch + * sftp_interactive_password.patch + mdadm +- Incremental: Remove redundant spare movement logic + (jsc#SLE-13700, bsc#1180220) + 0112-Incremental-Remove-redundant-spare-movement-logic.patch +- Dump: get stat from a wrong metadata file when restoring metadata + (jsc#SLE-13700) + 0113-Dump-get-stat-from-a-wrong-metadata-file-when-restor.patch + +- There are some important fixes merged in mdadm upstream which + should go with jsc#SLE-13700. This is the update from upstream + mdadm including the important fixes we should have. +- Detail: show correct raid level when the array is inactive + (jsc#SLE-13700) + 0095-Detail-show-correct-raid-level-when-the-array-is-ina.patch +- Don't create bitmap for raid5 with journal disk + (jsc#SLE-13700) + 0096-Don-t-create-bitmap-for-raid5-with-journal-disk.patch +- Monitor: refresh mdstat fd after select (jsc#SLE-13700) + 0097-Monitor-refresh-mdstat-fd-after-select.patch +- Monitor: stop notifing about containers. (jsc#SLE-13700) + 0098-Monitor-stop-notifing-about-containers.patch +- mdmonitor: set small delay once (jsc#SLE-13700) + 0099-mdmonitor-set-small-delay-once.patch +- Check if other Monitor instance running before fork. + (jsc#SLE-13700) + 0100-Check-if-other-Monitor-instance-running-before-fork.patch +- Super1: allow RAID0 layout setting to be removed. + (jsc#SLE-13700) + 0101-Super1-allow-RAID0-layout-setting-to-be-removed.patch +- Detail: fix segfault during IMSM raid creation + (jsc#SLE-13700) + 0102-Detail-fix-segfault-during-IMSM-raid-creation.patch +- Create.c: close mdfd and generate uevent (jsc#SLE-13700) + 0103-Create.c-close-mdfd-and-generate-uevent.patch +- imsm: update num_data_stripes according to dev_size + (jsc#SLE-13700) + 0104-imsm-update-num_data_stripes-according-to-dev_size.patch +- imsm: remove redundant calls to imsm_get_map (jsc#SLE-13700) + 0105-imsm-remove-redundant-calls-to-imsm_get_map.patch +- Monitor: don't use default modes when creating a file + (jsc#SLE-13700) + 0106-Monitor-don-t-use-default-modes-when-creating-a-file.patch +- imsm: limit support to first NVMe namespace (jsc#SLE-13700) + 0107-imsm-limit-support-to-first-NVMe-namespace.patch +- mdadm: Unify forks behaviour (jsc#SLE-13700) + 0108-mdadm-Unify-forks-behaviour.patch +- mdadm/Detail: show correct state for clustered array + (jsc#SLE-13700) + 0109-mdadm-Detail-show-correct-state-for-clustered-array.patch +- Make target to install binaries only (jsc#SLE-13700) + 0110-Make-target-to-install-binaries-only.patch +- udev: start grow service automatically (jsc#SLE-13700) + 0111-udev-start-grow-service-automatically.patch + mozc +- Build scripts migration to Python 3 + * Add: build-scripts-migration-to-python3.patch + * Add: fix-zip-code-conversion-output.patch +- Update post code dictionary + +- Use system libprotobuf because Mozc's build script cannot handle + newer protobuf source code + * Fix build error under RISC V environment + * Add: mozc-2.23.2815.102-protobuf_generated_classes_no_inheritance.patch + +- Remove third party files which are not distributed BSD-3-Clause + from the source tar.xz + +- Update mozc.spec: Drop the is_opensuse macro to eliminate in + behavior in between SLE-15 and openSUSE Leap (jsc#SLE-11737). + +- Upstream update to 2.23.2815 + * Do not use mozc_renderer on Wayland session + * Support GYP_DEFINES='enable_gtk_renderer=0' + * Migrate from IBusConfig to GSetting in ibus_mozc + * Update dictionary + * Code refactoring +- Update zip code dictionary to Jan. 2020 +- Update gyp + * to the version ready for Python 3 +- Update protobuf to 3.5.2 +- Update Fcitx Mozc + * Remove: fcitx-mozc-2.18.2612.102.1.patch + * Add: fcitx-mozc-2.23.2815.102.1.patch +- Refresh patches + * add-Japanese-new-era-reiwa-to-date_rewriter.patch + * add-Japanese-new-era-reiwa-to-dict.patch + mutt +- Add a further correction in patch nofreeze-c72f740a.patch for + external bodies as well (boo#1179461) + +- Correct patch nofreeze-c72f740a.patch + * that is also decrease recurse_level counter on leave of the + counting functions (boo#1179461) + +- Add patch nofreeze-c72f740a.patch + * Avoid that message with a million tiny parts can freeze MUA + for several minutes (bsc#1179113) + +- Add patch CVE-2020-28896.patch to fix bsc#1179035 + * incomplete connection termination could lead to sending + credentials over unencrypted connections + ndctl +- update to 71.1: + * ndctl/dimm: Attempt an abort upon firmware-update-busy status + * ndctl/dimm: Fix submit_abort_firmware() + +- Update to upstream v71 (jsc#SLE-14344, bsc#1170384). + - support for the new device-dax subdivision functionality added in Linux in + v5.10, including ways to create smaller devdax devices using + daxctl/libdaxctl, as well as creating, listing, and restoring from a config + dump, 'mappings' on these devices. + - miscellaneous bugfixes +- Fix documentation and license packaging + open-iscsi +- Update to latest upstream (no new tag yet). To fix + bsc#1181313. Changes since last update added to + open-iscsi-SUSE-latest.diff.bz2: + * Fix iscsiadm segfault when exiting + * iscsid: Add NO_SYSTEMD to CFLAGS + * Change mkdir permissions to 0770, adjust usmask + * Fix typo in util.py + * iscsid: Do not allow conflicting pid-file options + * iscsiadm: Fix memory leak in iscsiadm + * libopeniscsiusr: Fix memory leak in iscsi_sessions_get() + * libopeniscsiusr: Fix memory leak in iscsi_nodes_get() + * idbm: Fix memory leak and NULL pointer dereference in idbm_rec_update_param() + * Add etc/systemd/iscsi-init.service to SYSTEMDFILES Makefile variable + +- Updated to upstream version 2.1.3 as 2.1.3-suse, for bsc#1179908, + including: + * uip: check for TCP urgent pointer past end of frame + * uip: check for u8 overflow when processing TCP options + * uip: check for header length underflow during checksum calculation + * fwparam_ppc: Fix memory leak in fwparam_ppc.c + * iscsiuio: Remove unused macro IFNAMSIZ defined in iscsid_ipc.c + * fwparam_ppc: Fix illegal memory access in fwparam_ppc.c + * sysfs: Verify parameter of sysfs_device_get() + * fwparam_ppc: Fix NULL pointer dereference in find_devtree() + * open-iscsi: Clean user_param list when process exit + * iscsi_net_util: Fix NULL pointer dereference in find_vlan_dev() + * open-iscsi: Fix NULL pointer dereference in mgmt_ipc_read_req() + * open-iscsi: Fix invalid pointer deference in find_initiator() + * iscsiuio: Fix invalid parameter when call fstat() + * iscsi-iname: Verify open() return value before calling read() + * iscsi_sysfs: Fix NULL pointer deference in iscsi_sysfs_read_iface + open-vm-tools +- Update to 11.2.5 (build 17337674) (boo#1180997) + + Resolved issues: + - The SUSE specific vmtoolsd PAM configuration file incorrectly referenced + pam_securetty.so. + - The following issues and pull requests reported on + https://github.com/vmware/open-vm-tools have been addressed: + https://github.com/vmware/open-vm-tools/issues/467 + https://github.com/vmware/open-vm-tools/issues/468 + https://github.com/vmware/open-vm-tools/pull/469 + - A number of Coverity reported errors and false positives have been + addressed. + - A complete list of the granular changes that are in the + open-vm-tools 11.2.5 release is available at: + https://github.com/vmware/open-vm-tools/blob/stable-11.2.5/open-vm-tools/ChangeLog +- Update pam-vmtoolsd.patch: With the pam_securetty.so entry fixed, only need + the modified Makefile.am portion of the patch which copies the suse file to + the /etc/pam.d/vmtoolsd file rather than the default generic file. + +- Enable build on aarch64 + +- Add explicit pkgconfig(gdk-pixbuf-xlib-2.0) BuildRequires: used + to be pulled in (as part of gdk-pixbuf) by GTK3 in the past. But + as configure explicitly looks for it, it is our own duty to + ensure its presence. + openSUSE-build-key +- Add openSUSE Backports key to openSUSE Leap (bsc#1181344) + This is needed because most of Leap 15.3+ packages are in fact + build in openSUSE Backport (Closing The Leap Gap) + -- add the new openSUSE build key for real - openblas:pthreads +- Update to version 0.3.13 + common: + * Added a generic bfloat16 SBGEMV kernel + * Fixed a potentially severe memory leak after fork in OpenMP builds + that was introduced in 0.3.12 + * Added detection of the Fujitsu Fortran compiler + * Added detection of the (e)gfortran compiler on OpenBSD + * Added support for overriding the default name of the library independently + from symbol suffixing in the gmake builds (already supported in cmake) + RISC V: + * Added a RISC V port optimized for C910V + POWER: + * Added optimized POWER10 kernels for SAXPY, CAXPY, SDOT, DDOT and DGEMV_N + * Improved DGEMM performance on POWER10 + * Improved STRSM and DTRSM performance on POWER9 and POWER10 + * Fixed segmemtation faults in DYNAMIC_ARCH builds + * Fixed compilation with the PGI compiler + x86: + * Fixed compilation of kernels that require SSE2 intrinsics since 0.3.12 + x86_64: + * Added an optimized bfloat16 SBGEMV kernel for SkylakeX and Cooperlake + * Improved the performance of SASUM and DASUM kernels through parallelization + * Improved the performance of SROT and DROT kernels + * Improved the performance of multithreaded xSYRK + * Fixed OpenMP builds that use the LLVM Clang compiler together with GNU gfortran + (where linking of both the LLVM libomp and GNU libgomp could lead to lockups or + wrong results) + * Fixed miscompilations by old gcc 4.6 + * Fixed misdetection of AVX2 capability in some Sandybridge cpus + * Fixed lockups in builds combining DYNAMIC_ARCH with TARGET=GENERIC on OpenBSD + ARM64: + * Fixed segmentation faults in DYNAMIC_ARCH builds + MIPS: + * Improved kernels for Loongson 3R3 ("3A") and 3R4 ("3B") models, including MSA + * Fixed bugs in the MSA kernels for CGEMM, CTRMM, CGEMV and ZGEMV + * Added handling of zero increments in the MSA kernels for SSWAP and DSWAP + * Added DYNAMIC_ARCH support for MIPS64 (currently Loongson3R3/3R4 only) + SPARC: + * Fixed building 32 and 64 bit SPARC kernels with the SolarisStudio compilers + +- Fix invalid symlinks (boo#1179764). + +- Update to version 0.3.12 + common: + * Fixed missing BLAS/LAPACK functions (inadvertently dropped during + the build system restructuring to support selective compilation) + * Fixed argument conversion macro in LAPACKE_zgesvdq (LAPACK #458) + power: + * Added optimized SCOPY/CCOPY kernels for POWER10 + * Increased and unified the default size of the GEMM buffer + * Fixed building for POWER10 in DYNAMIC_ARCH mode + * POWER10 compatibility test now checks binutils version as well + * Cleaned up compiler warnings + x86_64: + * Corrected compiler version checks for AVX2 compatibility + * Added compiler option -mavx2 for building with flang + * Fixed direct SGEMM pathway for small matrix sizes (broken by + the code refactoring in 0.3.11) + * Fixed unhandled partial register clobbers in several kernels + for AXPY,DOT,GEMV_N and GEMV_T flagged by gcc10 tree-vectorizer + armv8: + * Improved Apple Vortex support to include cross-compiling +- Drop fix-build.patch, merged upstream. + +- Update _constraints to use 12GB RAM on x86_64 + +- Update to version 0.3.11 + common: + * Reduced the default BLAS3_MEM_ALLOC_THRESHOLD (used as an upper + limit for placing temporary arrays on the stack) to be compatible + with a stack size of 1mb (as imposed by the JAVA runtime library) + * Added mixed-precision dot function SBDOT and utility functions + shstobf16, shdtobf16, sbf16tos and dbf16tod to convert between + single or double precision float arrays and bfloat16 arrays + * Fixed prototypes of LAPACK_?ggsvp and LAPACK_?ggsvd functions + in lapack.h + * Fixed underflow and rounding errors in LAPACK SLANV2 and DLANV2 + (causing miscalculations in e.g. SHSEQR/DHSEQR, LAPACK issue #263) + * Fixed workspace calculation in LAPACK ?GELQ (LAPACK issue #415) + * Fixed several bugs in the LAPACK testsuite + * Improved performance of TRMM and TRSM for certain problem sizes + * Fixed infinite recursions and workspace miscalculations in ReLAPACK + * CMAKE builds no longer require pkg-config for creating the .pc file + * Makefile builds no longer misread NO_CBLAS=0 or NO_LAPACK=0 as + enabling these options + * Fixed detection of gfortran when invoked through an mpi wrapper + * Improve thread reinitialization performance with OpenMP after a fork + * Added support for building only the subset of the library required + for a particular precision by specifying BUILD_SINGLE, BUILD_DOUBLE + * Optional function name prefixes and suffixes are now correctly + reflected in the generated cblas.h + * Added CMAKE build support for the LAPACK and multithreading tests + power: + * Added optimized support for POWER10 + * Added support for compiling for POWER8 in 32bit mode + * Added support for compilation with LLVM/clang + * Added support for compilation with NVIDIA/PGI compilers + * Fixed building on big-endian POWER8 + * Fixed miscompilation of ZDOTC by gcc10 + * Fixed alignment errors in the POWER8 SAXPY kernel + * Improved CPU detection on AIX + * Supported building with older compilers on POWER9 + x86_64: + * Added support for Intel Cooperlake + * Added autodetection of AMD Renoir/Matisse/Zen3 cpus + * Added autodetection of Intel Comet Lake cpus + * Reimplemented ?sum, ?dot and daxpy using universal intrinsics + * Reset the fpu state before using the fpu on Windows as a workaround + for a problem introduced in Windows 10 build 19041 (a.k.a. SDK 2004) + * Fixed potentially undefined behaviour in the dot and gemv_t kernels + * Fixed a potential segmentation fault in DYNAMIC_ARCH builds + * Fixed building for ZEN with PGI/NVIDIA and AMD AOCC compilers + armv7: + * Fixed cpu detection on BSD-like systems + armv8: + * Added preliminary support for Apple Vortex cpus + * Added support for the Cavium ThunderX3T110 cpu + * Fixed cpu detection on BSD-like systems + * Fixed compilation in -std=C18 mode + IBM Z: + * Added support for compiling with the clang compiler + * Improved GEMM performance on Z14 +- Enable bloat16 support via BUILD_BFLOAT16=1 +- Add fix-build.patch to fix build with -Werror=return-type + +- Set DYNAMIC_ARCH everywhere, use a base CPU model for non-dynamic + bits to have a reproducible base line: + x86_64: CORE2 + aarch64: ARMV8 + ppc: POWER8 + s390: ZARCH_GENERIC +- Remove workaround for build failure on aarch64 (boo#1128794). + +- For s390/s390x add TARGET=ZARCH_GENERIC (jsc#SLE-13773). + +- Avoid compile-time CPU-detection (boo#1100677) + +- Add build support for gcc10 to HPC build (bsc#1174439). + +- Update to version 0.3.10 + common: + * Improved thread locking behaviour in blas_server and parallel getrf + * Imported bugfix 394 from LAPACK (spurious reference to "XERBL" + due to overlong lines) + * Imported bugfix 403 from LAPACK (compile option "recursive" required + for correctness with Intel and PGI) + * Imported bugfix 408 from LAPACK (wrong scaling in ZHEEQUB) + * Imported bugfix 411 from LAPACK (infinite loop in LARGV/LARTG/LARTGP) + * Fixed mismatches between BUFFERSIZE and GEMM_UNROLL parameters that + could lead to crashes at large matrix sizes + * Restored internal soname in dynamic libraries on FreeBSD and Dragonfly + * Added API (openblas_setaffinity) to set thread affinity + programmatically on Linux + * Added initial infrastructure for half-precision floating point + (bfloat16) support with a generic implementation of SHGEMM + * Added CMAKE build system support for building the cblas_Xgemm3m + functions + * Fixed CMAKE support for building in a path with embedded spaces + * Fixed CMAKE (non)handling of NO_EXPRECISION and MAX_STACK_ALLOC + * Fixed GCC version detection in the Makefiles + * Allowed overriding the names of AR, AS and LD in Makefile builds + POWER: + * fixed big-endian POWER8 ELFv2 builds on FreeBSD + * Fixed GCC version checks and DYNAMIC_ARCH builds on POWER9 + * Fixed CMAKE build support for POWER9 + * fixed a potential race condition in the thread buffer allocation + * Worked around LAPACK test failures on PPC G4 + MIPS: + * fixed a potential race condition in the thread buffer allocation + * Added support for MIPS 24K/24KE family based on P5600 kernels + MIPS64: + * fixed a potential race condition in the thread buffer allocation + * Added TARGET=GENERIC + ARMV7: + * fixed a race condition in the thread buffer allocation + ARMV8: + * Fixed a race condition in the thread buffer allocation + * Fixed zero initialisation in the assembly for SGEMM and DGEMM BETA + * Improved performance of the ThunderX2 DAXPY kernel + * Added an optimized SGEMM kernel for Cortex A53 + * Fixed Makefile support for INTERFACE64 (8-byte integer) + x86_64: + * Fixed a syntax error in the CMAKE setup for SkylakeX + * Improved performance of STRSM on Haswell, SkylakeX and Ryzen + * Improved SGEMM performance on SGEMM for workloads with ldc a + multiple of 1024 + * Improved DGEMM performance on Skylake X + * Fixed unwanted AVX512-dependency of SGEMM in DYNAMIC_ARCH + builds created on SkylakeX + * Removed data alignment requirement in the SSE2 copy kernels + that could cause spurious crashes + * Added a workaround for an optimizer bug in AppleClang 11.0.3 + * Fixed LAPACK-TEST failures with Intel Fortran + * Fixed compilation and LAPACK test results with recent Flang + and AMD AOCC + * Fixed DYNAMIC_ARCH builds with CMAKE on OS X + * Fixed missing exports of cblas_i?amin, cblas_i?min, cblas_i?max, + * cblas_?sum, cblas_?gemm3m in the shared library on OS X + * Fixed reporting of cpu name in DYNAMIC_ARCH builds (would sometimes + show the name of an older generation chip supported by the same kernels) + IBM Z: + * Improved performance of SGEMM/STRMM and DGEMM/DTRMM on Z14 +- Refresh openblas-noexecstack.patch and openblas-s390.patch + +- Update to version 0.3.9 + common: + * Fixed a miscompilation of the GETRF functions with CMAKE + The size of the memory buffer used for splitting GEMM tasks across + multiple threads can now be configured in the build system. + Imported bugfix 390 from LAPACK (missing NaN propagation in xCOMBSSQ) + POWER: + * fixed several compilation problems related to endianness and + ELF version support on POWER8 and POWER9. + * fixed misuse of the absolute value IAMIN/IAMAX in place of IMIN/IMAX + * fixed a race condition in the level3 blas code + MIPS64: + * fixed misuse of the absolute value IAMIN/IAMAX in place of IMIN/IMAX + ARMV7: + * fixed a race condition in the level3 blas code + * fixed a compilation problem on Android + ARMV8: + * Added support for Ampere EMAG8180 + * Added support for Neoverse N1 + improved performance of the blas_lock function + fixed a race condition in the level3 blas code + * Fixed a performance regression on TSV110 servers + x86_64: + * Fixed a long-standing error with undeclared register clobbers in + the DSCAL microkernel for Haswell,SkylakeX and Zen exposed by gcc9.2 + * Fixed a long-standing bug in the SSE implementation of the IAMAX functions + * Fixed a cmake build failure with DYNAMIC_ARCH on x86_64 + * Fixed an oversight in the cpu detection code for Intel Goldmont+, + Cannon Lake and Ice Lake + * Fixed compile failure on OSX when the compiler name contains a dash + (e.g. gcc-9) + * Fixed compilation with MinGW on SkylakeX + * Improved speed of the AVX512 GEMM3M code, added an AVX512 kernel for + * STRMM and improved performance of the AVX2 GEMM kernels + IBM Z: + * fixed compilation of the DYNAMIC_ARCH code + +- Update to version 0.3.8 + common: + * LAPACK has been updated to 3.9.0 (plus patches up to January 2nd, 2020) + * CMAKE support has been improved in several areas including cross-compilation + * A thread race condition in the GEMM3M kernels was resolved + * The "generic" (plain C) gemm beta kernel used by many targets has been sped up + * An optimized version of the LAPACK trtrs functions has been added + * An incompatibilty between the LAPACK tests and the OpenBLAS implementation of XERBLA + was resolved, removing the numerous warnings about wrong error exits in the former + * Support for NetBSD has been added + * Support for compilation with g95 and non-GNU versions of ld has been improved + * Compilation with (upcoming) gcc 10 is now supported + power: + * Worked around miscompilation of several POWER8 and POWER9 kernels by + older versions of gcc + * Added support for big-endian POWER8 and for compilation on AIX + * Corrected bugs in the big-endian support for PPC440 and PPC970 + * DYNAMIC_ARCH support is now available in CMAKE builds as well + armv8: + * Performance of DGEMM_BETA and SGEMM_NCOPY has been improved + * Compilation for 32bit works again + * Performance of the RPCC function has been improved + * Improved performance on small systems + * DYNAMIC_ARCH support is now available in CMAKE builds as well + * Cross-compilation from OSX to IOS was simplified + x86-64: + * A new AVX512 DGEMM kernel was added and the AVX512 SGEMM kernel was + significantly improved + * Optimized AVX512 kernels for CGEMM and ZGEMM have been added + * AVX2 kernels for STRMM, SGEMM, and CGEMM have been significantly + sped up and optimized CGEMM3M and ZGEMM3M kernels have been added + * Added support for QEMU virtual cpus + * A compilation problem with PGI and SUN compilers was fixed + * Intel "Goldmont plus" is now autodetected + * A potential crash on program exit on MS Windows has been fixed + IBM Z: + * Z15 is now supported as Z14 + * DYNAMIC_ARCH is now available on ZARCH as well +- Remove now merged gcc10-Support-two-digit-version-numbers-in-gcc-version-che.patch + +- Add gcc10-Support-two-digit-version-numbers-in-gcc-version-che.patch + in order to fix boo#1158727. + openexr + fix CVE-2020-16587, CVE-2020-16588, CVE-2020-16589 [bsc#1179879], multiple memory safety issues + + openexr-CVE-2020-16587.patch + + openexr-CVE-2020-16588.patch + + openexr-CVE-2020-16589.patch + +- security update +- added patches openldap2 +- bsc#1178909 CVE-2020-25709 CVE-2020-25710 - Resolves two issues + where openldap would crash due to malformed inputs. + * patch: 0209-ITS-9383-remove-assert-in-certificateListValidate.patch + * patch: 0210-ITS-9384-remove-assert-in-obsolete-csnNormalize23.patch + +- bsc#1179503 - fix proxy retry binds to a remote server + * patch: 0208-ITS-9400-back-ldap-fix-retry-binds.patch + openslp +- Add missing group(daemon) prerequires to the openslp-server + package [bnc#1165050] +- Add missing openslp requires to the openslp-server package + [bnc#1165121] + +- Add missing zlib build dependency, which used to be pulled in + by libopenssl-devel. The package fails to build since the openssl + upgrade to 1.1.1 (bsc#1149792) + +- Use tcp connects to talk with other DAs [bnc#1117969] + new patch: openslp.tcpknownda.diff +- Fix segfault in predicate match if a registered service has + a malformed attribute list [bnc#1136136] + new patch: openslp.nullattr.diff + +- Fix memory corruption when the sendbuf gets reallocated + [bnc#1090638] [CVE-2017-17833] + new patch: openslp.sendbuf_move.diff +- Fix out of bounds reads in message parsing + new patch: openslp.parseoob.diff + +- move systemd notification before the chroot() call, otherwise + the notify function cannot reach systend's unix domain socket + [bnc#1089097] + +- Use %license (boo#1082318) +- fix slpd using the peer address as local address for TCP + connections [bnc#1076035] + new patch: openslp.localaddr.diff +- use tcp connections for unicast requests [bnc#1080964] + new patch: openslp.tcpunicast.diff + +- add separate source openslp.logrotate.systemd to + use systemctl reload for logrotate configuration + +- Add support for OpenSSL 1.1. Commit from upstream [bsc#1042665] + new patch: openslp.openssl-1.1.diff + +- Also update openslp.sd_notify.diff to use the new systemd lib + +- Replace pkgconfig(libsystemd-*) with pkgconfig(libsystemd) + Nowadays pkgconfig(libsystemd) replaces all libsystemd-* libs, which + are obsolete. + +- Fix bounds check in SLPFoldWhiteSpace + [bnc#1001600] [CVE-2016-7567] + new patch: openslp.foldws.diff + +- remove convenience code as changes bytes in the message + buffer breaking the verification code [bnc#994989] + new patch: openslp.noconvenience.diff +- fix storage handling in predicate code, it clashed with gcc's + fortify_source extension [bnc#909195] + new patch: openslp.predicatestorage.diff +- bring back allowDoubleEqualInPredicate option + new patch: openslp.doubleequal.diff +- fix bug in openslp.initda.diff patch +- fix rcopenslp helper +- fix _xrealloc not checking the malloc return value + [bnc#980722] [CVE-2016-4912] + new patch: openslp.xrealloc.diff + +- Do not depend on fillup and insserv if the package build with + systemd support; the dependencies are not needed in that case + openssh +- Add openssh-fix-ssh-copy-id.patch, which fixes breakage + introduced in 8.4p1 (bsc#1181311). + +- Improve robustness of sshd init detection when upgrading from + a pre-systemd distribution. + +- Add openssh-reenable-dh-group14-sha1-default.patch, which adds + diffie-hellman-group14-sha1 key exchange back to the default + list (bsc#1180958). This is needed for backwards compatibility + with older platforms. + +- Make sure sshd is enabled correctly when upgrading from a + pre-systemd distribution (bsc#1180083). + +- sysusers-sshd.conf: use sysusers.d configuration file to create + sshd user (avoid hard dependency on shadow). + +- update to 8.4p1: + Security + ======== + * ssh-agent(1): restrict ssh-agent from signing web challenges for + FIDO/U2F keys. + * ssh-keygen(1): Enable FIDO 2.1 credProtect extension when generating + a FIDO resident key. + * ssh(1), ssh-keygen(1): support for FIDO keys that require a PIN for + each use. These keys may be generated using ssh-keygen using a new + "verify-required" option. When a PIN-required key is used, the user + will be prompted for a PIN to complete the signature operation. + New Features + - ----------- + * sshd(8): authorized_keys now supports a new "verify-required" + option to require FIDO signatures assert that the token verified + that the user was present before making the signature. The FIDO + protocol supports multiple methods for user-verification, but + currently OpenSSH only supports PIN verification. + * sshd(8), ssh-keygen(1): add support for verifying FIDO webauthn + signatures. Webauthn is a standard for using FIDO keys in web + browsers. These signatures are a slightly different format to plain + FIDO signatures and thus require explicit support. + * ssh(1): allow some keywords to expand shell-style ${ENV} + environment variables. The supported keywords are CertificateFile, + ControlPath, IdentityAgent and IdentityFile, plus LocalForward and + RemoteForward when used for Unix domain socket paths. bz#3140 + * ssh(1), ssh-agent(1): allow some additional control over the use of + ssh-askpass via a new $SSH_ASKPASS_REQUIRE environment variable, + including forcibly enabling and disabling its use. bz#69 + * ssh(1): allow ssh_config(5)'s AddKeysToAgent keyword accept a time + limit for keys in addition to its current flag options. Time- + limited keys will automatically be removed from ssh-agent after + their expiry time has passed. + * scp(1), sftp(1): allow the -A flag to explicitly enable agent + forwarding in scp and sftp. The default remains to not forward an + agent, even when ssh_config enables it. + * ssh(1): add a '%k' TOKEN that expands to the effective HostKey of + the destination. This allows, e.g., keeping host keys in individual + files using "UserKnownHostsFile ~/.ssh/known_hosts.d/%k". bz#1654 + * ssh(1): add %-TOKEN, environment variable and tilde expansion to + the UserKnownHostsFile directive, allowing the path to be + completed by the configuration (e.g. bz#1654) + * ssh-keygen(1): allow "ssh-add -d -" to read keys to be deleted + from stdin. bz#3180 + * sshd(8): improve logging for MaxStartups connection throttling. + sshd will now log when it starts and stops throttling and periodically + while in this state. bz#3055 + Bugfixes + - ------- + * ssh(1), ssh-keygen(1): better support for multiple attached FIDO + tokens. In cases where OpenSSH cannot unambiguously determine which + token to direct a request to, the user is now required to select a + token by touching it. In cases of operations that require a PIN to + be verified, this avoids sending the wrong PIN to the wrong token + and incrementing the token's PIN failure counter (tokens + effectively erase their keys after too many PIN failures). + * sshd(8): fix Include before Match in sshd_config; bz#3122 + * ssh(1): close stdin/out/error when forking after authentication + completes ("ssh -f ...") bz#3137 + * ssh(1), sshd(8): limit the amount of channel input data buffered, + avoiding peers that advertise large windows but are slow to read + from causing high memory consumption. + * ssh-agent(1): handle multiple requests sent in a single write() to + the agent. + * sshd(8): allow sshd_config longer than 256k + * sshd(8): avoid spurious "Unable to load host key" message when sshd + load a private key but no public counterpart + * ssh(1): prefer the default hostkey algorithm list whenever we have + a hostkey that matches its best-preference algorithm. + * sshd(1): when ordering the hostkey algorithms to request from a + server, prefer certificate types if the known_hosts files contain a key + marked as a @cert-authority; bz#3157 + * ssh(1): perform host key fingerprint comparisons for the "Are you + sure you want to continue connecting (yes/no/[fingerprint])?" + prompt with case sensitivity. + * sshd(8): ensure that address/masklen mismatches in sshd_config + yield fatal errors at daemon start time rather than later when + they are evaluated. + * ssh-keygen(1): ensure that certificate extensions are lexically + sorted. Previously if the user specified a custom extension then + the everything would be in order except the custom ones. bz#3198 + * ssh(1): also compare username when checking for JumpHost loops. + bz#3057 + * ssh-keygen(1): preserve group/world read permission on known_hosts + files across runs of "ssh-keygen -Rf /path". The old behaviour was + to remove all rights for group/other. bz#3146 + * ssh-keygen(1): Mention the [-a rounds] flag in the ssh-keygen + manual page and usage(). + * sshd(8): explicitly construct path to ~/.ssh/rc rather than + relying on it being relative to the current directory, so that it + can still be found if the shell startup changes its directory. + bz#3185 + * sshd(8): when redirecting sshd's log output to a file, undo this + redirection after the session child process is forked(). Fixes + missing log messages when using this feature under some + circumstances. + * sshd(8): start ClientAliveInterval bookkeeping before first pass + through select() loop; fixed theoretical case where busy sshd may + ignore timeouts from client. + * ssh(1): only reset the ServerAliveInterval check when we receive + traffic from the server and ignore traffic from a port forwarding + client, preventing a client from keeping a connection alive when + it should be terminated. bz#2265 + * ssh-keygen(1): avoid spurious error message when ssh-keygen + creates files outside ~/.ssh + * sftp-client(1): fix off-by-one error that caused sftp downloads to + make one more concurrent request that desired. This prevented using + sftp(1) in unpipelined request/response mode, which is useful when + debugging. bz#3054 + * ssh(1), sshd(8): handle EINTR in waitfd() and timeout_connect() + helpers. bz#3071 + * ssh(1), ssh-keygen(1): defer creation of ~/.ssh until we attempt to + write to it so we don't leave an empty .ssh directory when it's not + needed. bz#3156 + * ssh(1), sshd(8): fix multiplier when parsing time specifications + when handling seconds after other units. bz#3171 + +- Update openssh-8.1p1-audit.patch (bsc#1180501). This fixes + occasional crashes on connection termination caused by accessing + freed memory. + +- Support /usr/etc/pam.d + openssl-1_1 +- Fix EDIPARTYNAME NULL pointer dereference + (CVE-2020-1971, bsc#1179491) + * add openssl-CVE-2020-1971.patch + osinfo-db +- Update database to version 20201218 + osinfo-db-20201218.tar.xz + ovmf +- Add ovmf-jscSLE-16075-SEV-ES-use-physical-address.patch as the + follow-up patch for SEV-ES to fix the flash writing + (jsc#SLE-16075) +- Update 50-xen-hvm-x86_64.json to add "nvram-template" and change + the firmware file to ovmf-x86_64-ms-4m.bin + (bsc#1180050, bsc#1181264) +- Refresh ovmf-bsc1180079-amd-sev-es-mitigation.patch + + Use "git format-patch --no-renames" to generate the patch to + avoid confusing quilt with the renamed files + +- Add ovmf-bsc1180079-amd-sev-es-mitigation.patch to mitigate the + potential AMD SEV-ES security issues (bsc#1180079) +- Add the json descriptor for xen-hvm (bsc#1180050) + pam -- pam_xauth.c: do not free() a string which has been (successfully) - passed to putenv(). - [bsc#1177858, pam-bsc1177858-dont-free-environment-string.patch] - -- Initialize pam_unix pam_sm_acct_mgmt() local variable "daysleft" - to avoid spurious (and misleading) - Warning: your password will expire in ... days. - fixed upstream with commit db6b293046a - [bsc#1178727, pam-bsc1178727-initialize-daysleft.patch] - -- /usr/bin/xauth chokes on the old user's $HOME being on an NFS - file system. Run /usr/bin/xauth using the old user's uid/gid - Patch courtesy of Dr. Werner Fink. - [bsc#1174593, pam-xauth_ownership.patch] - -- Moved pam_userdb to a separate package pam-extra. - [bsc#1166510, pam.spec] - -- disable libdb usage and pam_userdb again, as this causes some license - conflicts. (bsc#1166510) - -- Add libdb as build-time dependency to enable pam_userdb module. - Enable pam_userdb.so - [jsc#sle-7258, bsc#1164562, pam.spec] - -- When comparing an incoming IP address with an entry in - access.conf that only specified a single host (ie no netmask), - the incoming IP address was used rather than the IP address from - access.conf, effectively comparing the incoming address with - itself. (Also fixed a small typo while I was at it) - [bsc#1115640, use-correct-IP-address.patch, CVE-2018-17953] - -- Remove limits for nproc from /etc/security/limits.conf - ie remove pam-limit-nproc.patch - [bsc#1110700, pam-limit-nproc.patch] - -- pam_umask.8 needed to be patched as well. - [bsc#1089884, pam-fix-config-order-in-manpage.patch] - -- Changed order of configuration files to reflect actual code. - [bsc#1089884, pam-fix-config-order-in-manpage.patch] - -- Use %license (boo#1082318) - -- Prerequire group(shadow), user(root) - -- Allow symbolic hostnames in access.conf file. - [pam-hostnames-in-access_conf.patch, boo#1019866] - -- Increased nproc limits for non-privileged users to 4069/16384. - Removed limits for "root". - [pam-limit-nproc.patch, bsc#1012494, bsc#1013706] - -- pam-limit-nproc.patch: increased process limit to help - Chrome/Chromuim users with really lots of tabs. New limit gets - closer to UserTasksMax parameter in logind.conf - -- Add doc directory to filelist. - -- Remove obsolete README.pam_tally [bsc#977973] - -- Update Linux-PAM to version 1.3.0 -- Rediff encryption_method_nis.diff -- Link pam_unix against libtirpc and external libnsl to enable - IPv6 support. - -- Add /sbin/unix2_chkpwd (moved from pam-modules) - -- Remove (since accepted upstream): - - 0001-Remove-YP-dependencies-from-pam_access-they-were-nev.patch - - 0002-Remove-enable-static-modules-option-and-support-from.patch - - 0003-fix-nis-checks.patch - - 0004-PAM_EXTERN-isn-t-needed-anymore-but-don-t-remove-it-.patch - - 0005-Use-TI-RPC-functions-if-we-compile-and-link-against-.patch - -- Add 0005-Use-TI-RPC-functions-if-we-compile-and-link-against-.patch - - Replace IPv4 only functions - -- Fix typo in common-account.pamd [bnc#959439] - -- Add 0004-PAM_EXTERN-isn-t-needed-anymore-but-don-t-remove-it-.patch - - readd PAM_EXTERN for external PAM modules - -- Add 0001-Remove-YP-dependencies-from-pam_access-they-were-nev.patch -- Add 0002-Remove-enable-static-modules-option-and-support-from.patch -- Add 0003-fix-nis-checks.patch - -- Add folder /etc/security/limits.d as mentioned in 'man pam_limits' - -- Update to version 1.2.1 - - security update for CVE-2015-3238 - -- Update to version 1.2.0 - - obsoletes Linux-PAM-git-20150109.diff - -- Re-add lost patch encryption_method_nis.diff [bnc#906660] - -- Update to current git: - - Linux-PAM-git-20150109.diff replaces Linux-PAM-git-20140127.diff - - obsoletes pam_loginuid-log_write_errors.diff - - obsoletes pam_xauth-sigpipe.diff - - obsoletes bug-870433_pam_timestamp-fix-directory-traversal.patch - -- increase process limit to 1200 to help chromium users with many tabs - parted +- fix support of pmemXs devices (bnc#1164260) + - remove: libparted-fix-NVDIMM-partition-naming.patch + - remove: libparted-linux-pmem-path.patch + php7 + fix CVE-2020-7071 [bsc#1180706], FILTER_VALIDATE_URL accepts URLs with invalid userinfo + + php7-CVE-2020-7071.patch + +- security update +- added patches plasma5-desktop +- Add upstream patch to fix keyboard repeat settings not being + applied immediately (boo#1164739, kde#418175): + * Reparse-the-key-repeat-rate-config-when-we-try-to-load-it.patch + plymouth -- Sync the default openSUSE theme from Tumbleweed +- Add plymouth_add_RemainAfterExit_yes_to_plymouth_systemd_service.patch: + Porting from upstream to ensure all plymouth's systemd unit files + to only run once, either during boot or during shutdown/restart + (bnc#1177072). + +- Add plymouth-no-longer-modify-conf-to-drop-isopensuse-macro.patch: + plymouth will use plymouthd.defaults instead of plymouth.conf and + packge plymouthd.defaults in a seperet RPM. this can avoid change + SUSE or openSUSE branding section with is_opensuse macro in the + config file. means this modification can close the leaps gap + (jsc#SLE-11637). + +- Update plymouth.spec: Dropping gdm transition because it has + alreay deprecated by upstream. Removing git build dependency. + +- Drop plymouth-only_use_fb_for_cirrus_bochs.patch: openSUSE user + are using emu-5.0.0 on MacOS-X with HVF acceleration, the + Plymouth theme with script module fails to go to graphic mode + with this patch(boo#1172028). + +- Avoid inconsistencies in library package names causing unresolvable + dependencies, replace all soversion occurences with a macro. + +- Add patch plymouth-avoid-umount-hanging-shutdown.patch: + To avoid grantpt() call nsslookup, it will hanging system unmount + /var during shutdown period(bsc#1105688, bsc#1129386, + bsc#1134660). + +- Update to version 0.9.5+git20190908+3abfab2: + * two-step: Deal with buggy firmware which does not pre-rotate the bgrt image + * configure: bump so name + * Internationalization: Add zh_HK and zh_TW translations. + * add delay time to 8 seconds to fit AMD graphic card. + +- Update plymouth.spec: Disable upstart-monitor compile because it + only used in Ubuntu/Debian. + +- Update plymouth.spec: Use bcond_with for X11 renderer, cleanup + syntax. + +- Update plymouth.spec: obsolete plymouth render plugin for + Xwindows, Since this plugin will not be used in the production + environment, and this modify will highly decrease the compilation + of build requirements. + +- Update to version 0.9.4+git20190612+9359382: + * two-step: Add support for firmware-splashes with rotation + status bits set + * Regenerate plymouth.pot to add the strings for the new + firmware-upgrade mode. +- BuildRequire pkgconfig(systemd) instead of systemd: allow OBS to + shortcut the build queues by allowing usage of systemd-mini + +- Change default openSUSE theme to bgrt + +- Update to version 0.9.4+git20190325+b9f2aac: + * themes: Update spinner and bgrt background settings + * Translations: Sync translations with zanata + popt +- license update: SUSE-XFree86-1.0 + This is not the MIT license but rather the old version of the XFree86 + license (which is not upstream at spdx.org/Ãlicenses - hence the SUSE + proprietary prefix) + +- Libraries back into %{_libdir}, /usr merge project. + +- Add pkgconfig to BuildRequires to get automatic pkgconfig(popt) + provides + +- don't build libpopt.a +- don't list popt.mo files twice + +- use %find_lang + +- Update to version 1.16: + + Include xcode prject files in distributed tar ball + + Build system fixes + + Provide popt.pc + + Extended test suite + + Various fixes +- Changes from version 1.15: + + Build system fixes + + avoid displaying --[no]nofoo with POPT_ARGFLAG_TOGGLE. + + reserve a bit for --[no]opt prefix toggling. + + trim out escaped newline(s) from file content, other fixes. + + check/print argv[0] in --help for NULL. + + misc fixes +- Changes from version 1.14: + + Build system fixes + + permit "#define POPT_fprintf fprintf" to lose the malloc'ing + fprintf + + Many fixes. + + Updated translations +- Drop popt-1.13-popt_fprintf.diff: Should all be fixed upstream. + In case POPT_fprintf really still does not suffice, we can just + use "#define POPT_fprintf frptinf" and be set. The code is + prepared for this override. + +- use %_smp_mflags + +- make libpopt0-32bit obsolete popt-32bit [bnc#544964] + +- remove sparcv9-specific baselib exceptions (not needed) + +- enable parallel building +- add baselibs.conf as a source +- add baselibs for SPARC + +- add back baselibs.conf. bootstrap done + +- disable baselibs.conf for the moment + +- add baselibs.conf + +- initial release + postfix +- Set lmdb to be the default db. +- Convert btree tables to lmdb too. Stop postfix befor converting from + bdb to lmdb +- This package is without bdb support. That's why convert must be done + without any suse release condition. + o remove patch postfix-no-btree.patch + o add set-default-db-type.patch + +- Set database type for address_verify_map and postscreen_cache_map + to lmdb (btree requires Berkeley DB) + o add postfix-no-btree.patch + +- Set default database type to lmdb and fix update_postmaps script + +- Use variable substition instead of sed to remove .db suffix and + substitute hash: for lmdb: in /etc/postfix/master.cf as well. + Check before substitution if there is something to do (to keep + rpmcheck happy). + +- bsc#1176650 L3: What is regularly triggering the "fillup" + command and changing modify-time of /etc/sysconfig/postfix? + o Remove miss placed fillup_only call from %verifyscript + +- Remove Berkeley DB dependency (JIRA#SLE-12191) + The pacakges postfix is build without Berkely DB support. + lmdb will be used instead of BDB. + The pacakges postfix-bdb is build with Berkely DB support. + o add patch for main.cf for postfix-bdb package + postfix-bdb-main.cf.patch + +- Update to 3.5.8 + * The Postfix SMTP client inserted into message headers longer + than $line_length_limit (default: 2048), causing all subsequent header + content to become message body content. + * The postscreen daemon did not save a copy of the + postscreen_dnsbl_reply_map lookup result. This has no effect when the + recommended texthash: look table is used, but it could result in stale + data with other lookup tables. + * After deleting a recipient with a Milter, the Postfix recipient + duplicate filter was not updated; the filter suppressed requests + to add the recipient back. + * Memory leak: the static: maps did not free their casefolding buffer. + * With "smtpd_tls_wrappermode = yes", the smtps service was waiting for a + TLS handshake, after processing an XCLIENT command. + * The smtp_sasl_mechanism_filter implementation ignored table lookup + errors, treating them as 'not found'. + * The code that looks for Delivered-To: headers ignored headers longer + than $line_length_limit (default: 2048). + +- Update to 3.5.7 + * Fixed random certificate verification failures with + "smtp_tls_connection_reuse = yes", because tlsproxy(8) was using + the wrong global TLS context for connections that use DANE or + non-DANE trust anchors. + +- Move ldap into an own sub-package like all other databases +- Move manual pages to correct sub-package + +- Use sysusers.d to create system accounts +- Remove wrong %config for systemd directory content + +- Use the correct signature file for source verification +- Rename postfix-3.5.6.tar.gz.sig to postfix-3.5.6.tar.gz.asc (to + prevent confusion, as the signature file from upstream with .sig + extension is incompatible with the build service) + +- Update to 3.5.6 with following fixes: + * Workaround for unexpected TLS interoperability problems when Postfix + runs on OS distributions with system-wide OpenSSL configurations. + * Memory leaks in the Postfix TLS library, the largest one + involving multiple kBytes per peer certificate. + +- Add source verification (add postfix.keyring) + +- Use systemd_ordering instead of systemd_require. +- Move /etc/postfix/system to /usr/lib/postfix/systemd [bsc#1173688] +- Drop /var/adm/SuSEconfig from %post, it does nothing. +- Rename postfix-SuSE to postfix-SUSE +- Delete postfix-SUSE/README.SuSE, company name spelled wrong, + completly outdated and not used. +- Delete postfix-SUSE/SPAMASSASSIN+POSTFIX.SuSE, company name + spelled wrong, outdated and not used. +- sysconfig.mail-postfix: Fix description of MAIL_CREATE_CONFIG, + SuSEconfig is gone since ages. +- update_chroot.systemd: Remove advice to run SuSEconfig. +- Remove rc.postfix, not used, outdated. +- mkpostfixcert: Remove advice to run SuSEconfig. + +- Update to 3.5.4: + * The connection_reuse attribute in smtp_tls_policy_maps always + resulted in an "invalid attribute name" error. + * SMTP over TLS connection reuse always failed for Postfix SMTP + client configurations that specify explicit trust anchors (remote + SMTP server certificates or public keys). + * The Postfix SMTP client's DANE implementation would always send + an SNI option with the name in a destination's MX record, even + if the MX record pointed to a CNAME record. MX records that + point to CNAME records are not conformant with RFC5321, and so + are rare. + Based on the DANE survey of ~2 million hosts it was found that + with the corrected SMTP client behavior, sending SNI with the + CNAME-expanded name, the SMTP server would not send a different + certificate. This fix should therefore be safe. + +- Update to 3.5.3: + * TLS handshake failure in the Postfix SMTP server during SNI + processing, after the server-side TLS engine sent a TLSv1.3 + HelloRetryRequest (HRR) to a remote SMTP client. + * The command "postfix tls deploy-server-cert" did not handle a + missing optional argument. This bug was introduced in Postfix + 3.1. + +- Update to 3.5.2: + * A TLS error for a database client caused a false 'lost connection' + error for an SMTP over TLS session in the same Postfix process. + This bug was introduced with Postfix 2.2. + * The same bug existed in the tlsproxy(8) daemon, where a TLS + error for one TLS session could cause a false 'lost connection' + error for a concurrent TLS session in the same process. This + bug was introduced with Postfix 2.8. + * The Postfix build now disables DANE support on Linux systems + with libc-musl such as Alpine, because libc-musl provides no + indication whether DNS responses are authentic. This broke DANE + support without a clear explanation. + * Due to implementation changes in the ICU library, some Postfix + daemons reported file access errrors (U_FILE_ACCESS_ERROR) after + chroot(). This was fixed by initializing the ICU library before + making the chroot() call. + * Minor code changes to silence a compiler that special-cases + string literals. + * Segfault (null pointer) in the tlsproxy(8) client role when the + server role was disabled. This typically happened on systems + that do not receive mail, after configuring connection reuse + for outbound SMTP over TLS. + * The date portion of the maillog_file_rotate_suffix default value + used the minute (%M) instead of the month (%m). + +- boo#1106004 fix incorrect locations for files in postfix-files + +- Dropped deprecated-RES_INSECURE1.patch to make DNSSEC-secured + lookups and DANE mail transport work again +- Update to 3.5.1: + * Support for the haproxy v2 protocol. The Postfix implementation + supports TCP over IPv4 and IPv6, as well as non-proxied + connections; the latter are typically used for heartbeat tests. + * Support to force-expire email messages. This introduces new + postsuper(1) command-line options to request expiration, and + additional information in mailq(1) or postqueue(1) output. + * The Postfix SMTP and LMTP client support a list of nexthop + destinations separated by comma or whitespace. These destinations + will be tried in the specified order. + * Incompatible changes: + * Logging: Postfix daemon processes now log the from= and to= + addresses in external (quoted) form in non-debug logging (info, + warning, etc.). This means that when an address localpart + contains spaces or other special characters, the localpart will + be quoted, for example: + from=<"name with spaces"@example.com> + Specify "info_log_address_format = internal" for backwards compatibility. + * Postfix now normalizes IP addresses received with XCLIENT, + XFORWARD, or with the HaProxy protocol, for consistency with + direct connections to Postfix. This may change the appearance + of logging, and the way that check_client_access will match + subnets of an IPv6 address. + +- Update to 3.4.10: + * Bug (introduced: Postfix 2.3): Postfix Milter client state + was not properly reset after one Milter in a multi-Milter + configuration failed during MAIL FROM, resulting in a Postfix + Milter client panic during the next MAIL FROM command in the + same SMTP session. + +- bsc#1162891 server:mail/postfix: cond_slp bug on TW after + moving /etc/services to /usr/etc/services + +- bsc#1160413 postfix fails with -fno-common + +- Update to 3.4.9: + * Bug (introduced: Postfix 3.1): smtp_dns_resolver_options were + broken while adding support for negative DNS response caching + in postscreen. Postfix was inadvertently changed to call + res_query() instead of res_search(). + * Bug (introduced: Postfix 2.5): Postfix ignored the CONNECT macro + overrides from a Milter application. Postfix now evaluates the + Milter macros for an SMTP CONNECT event after the Postfix-to-Milter + connection is negotiated. + * Bug (introduced: Postfix 3.0): sanitize (remote) server responses + before storing them in the verify database, to avoid Postfix + warnings about malformed UTF8. Found during code maintenance. + +- Update to 3.4.8: + * Fix for an Exim interoperability problem when postscreen after-220 + checks are enabled. Bug introduced in Postfix 3.4: the code + that detected "PIPELINING after BDAT" looked at the wrong + variable. The warning now says "BDAT without valid RCPT", and + the error is no longer treated as a command PIPELINING error, + thus allowing mail to be delivered. Meanwhile, Exim has been + fixed to stop sending BDAT commands when postscreen rejects all + RCPT commands. + * Usability bug, introduced in Postfix 3.4: the parser for + key/certificate chain files rejected inputs that contain an EC + PARAMETERS object. While this is technically correct (the + documentation says what types are allowed) this is surprising + behavior because the legacy cert/key parameters will accept + such inputs. For now, the parser skips object types that it + does not know about for usability, and logs a warning because + ignoring inputs is not kosher. + * Bug introduced in Postfix 2.8: don't gratuitously enable all + after-220 tests when only one such test is enabled. This made + selective tests impossible with 'good' clients. This will be + fixed in older Postfix versions at some later time. + pulseaudio +- Disable LTO on armv7 as it breaks the build + +- udpate to 14.2: + * Support upto 8 mixer channels on ALSA devices + * Handle ALSA jacks with the same name but different index values + * Switch to plugged-in headset when mic availability is unknown + * Fix a potential segfault in the Bluetooth oFono HFP backend + * Fix a problem with module-ladspa-sink when avoid-resampling=true + * Update to the NEWS file for 14.0 (and 14.1) + * Fix database names containing canonical host for meson builds + +- Drop the outdated module-rescue-stream from gdm default config + (bsc#1180869) + +- Fix copyright in the spec file for SLE submission + +- Enable LTO (boo#1133278) as it works now. + +- Update to pulseaudio 14.0: + see details in: + https://www.freedesktop.org/wiki/Software/PulseAudio/Notes/14.0/ +- Build with --enable-stream-restore-clear-old-devices: + This is a bit destructive option, it will clear the old PA routing + once when upgraded prior to 14.0, but it's required for GNOME + (see the release notes above). It should be a one-off action, + and hopefully wouldn't bother too much. +- Drop obsoleted patches: + 0001-alsa-mixer-path-test-Hide-unused-functions-when-buil.patch + 0002-alsa-mixer-recognize-the-Speaker-Jack-control.patch + 0003-alsa-mixer-add-support-for-SteelSeries-Arctis-Pro-20.patch + 0004-alsa-mixer-Add-support-for-SteelSeries-Arctis-5-2019.patch + 0005-alsa-mixer-add-support-for-LucidSound-LS31-and-creat.patch + 0006-alsa-ucm-use-ucm2-name-for-the-direct-card-index-ope.patch + 0007-alsa-ucm-add-mixer-IDs-to-ucm_items.patch + 0008-alsa-mixer-handle-the-index-for-ALSA-mixer-element-i.patch + 0009-alsa-mixer-improve-alsa_id_decode-function.patch + 0010-alsa-ucm-Support-Playback-CaptureVolume.patch + 0011-alsa-ucm-Fix-volume-control-based-on-review.patch + 0012-alsa-ucm-use-the-correct-mixer-identifiers-as-first.patch + 0013-alsa-ucm-add-support-for-master-volume.patch + 0014-alsa-ucm-split-correctly-JackHWMute-device-names.patch + 0015-alsa-ucm-fix-parsing-for-JackControl.patch + 0016-alsa-ucm-add-comments-to-ucm_get_mixer_id.patch + 0017-alsa-ucm-validate-access-to-PA_DEVICE_PORT_DATA.patch + 0018-alsa-Skip-resume-PCM-if-hardware-doesn-t-support-it.patch + 0019-alsa-ucm-parse-correctly-the-device-values.patch + 0020-alsa-ucm-do-not-try-to-use-UCM-device-name-as-jack-n.patch + 0021-alsa-util-do-not-try-to-guess-the-mixer-name-from-th.patch + 0022-alsa-ucm-add-control-and-mixer-device-items.patch + 0023-alsa-ucm-get-the-mixer-names-from-ucm-don-t-guess.patch + 0024-alsa-ucm-use-the-proper-mixer-name-for-ucm-pcm-sink-.patch + 0025-alsa-mixer-handle-interface-type-CARD-PCM-for-mixer-.patch + 0026-alsa-mixer-Add-the-ability-to-pass-the-intended-role.patch + 0027-alsa-mixer-Set-the-intended-role-of-Steelseries-Arct.patch + 0028-alsa-rewrite-mixer-open-close-cache-mixer-accesses-i.patch + 0029-alsa-ucm-add-support-for-HDMI-ELD.patch + 0030-alsa-mixer-do-the-quick-card-number-lookup-to-save-m.patch + 0031-alsa-mixer-improve-check-for-the-empty-path-set-for-.patch + 0032-alsa-ucm-allow-to-set-profile-priority-from-UCM-valu.patch + 0033-alsa-Document-that-mixer-elements-can-be-identified-.patch + 0034-alsa-ucm-correct-the-channel-default-logic-stereo.patch + 0035-alsa-ucm-do-not-assign-JackHWMute-when-JackControl-i.patch + 0036-ucm-Don-t-log-errors-during-normal-operation.patch + 0037-alsa-handle-unavailbale-HW-volume-in-UCM.patch + 0038-alsa-ucm-use-the-right-profile-name.patch + 0039-ucm-fix-the-port-ucm-device-activation-on-boot.patch + 0040-alsa-sink-source-fix-the-mixer-initialization.patch + python +- Replace bundled wheels for pip and setuptools with the updated ones + (bsc#1176262 CVE-2019-20916). + python-base +- Replace bundled wheels for pip and setuptools with the updated ones + (bsc#1176262 CVE-2019-20916). + python-cryptography +- Add 5507-mitigate-Bleichenbacher-attacks.patch (bsc#1178168, + CVE-2020-25659). + python-libvirt-python +- Update to 7.0.0 + - Add all new APIs and constants in libvirt 7.0.0 + - jsc#SLE-15860 + python-libxml2-python +- Avoid quadratic checking of identity-constraints: [bsc#1178823] + * key/unique/keyref schema attributes currently use qudratic loops + to check their various constraints (that keys are unique and that + keyrefs refer to existing keys). + * This fix uses a hash table to avoid the quadratic behaviour. +- Add libxml2-Avoid-quadratic-checking-of-identity-constraints.patch + python-pip +- Update in SLE-15 (bsc#1175297, jsc#ECO-3035, jsc#PM-2318) + +- Skip virtualenv tests that are pinned to old virtualenv 16 + +- update to 20.0.2 +- add setuptools-45.1.0-py3-none-any.whl for testsuite +- drop pytest5.patch + * Fix a regression in generation of compatibility tags + * Rename an internal module, to avoid ImportErrors due to improper uninstallation + * Switch to a dedicated CLI tool for vendoring dependencies. + * Remove wheel tag calculation from pip and use packaging.tags. This should provide more tags ordered better than in prior releases. + * Deprecate setup.py-based builds that do not generate an .egg-info directory. + * The pip>=20 wheel cache is not retro-compatible with previous versions. Until pip 21.0, pip will continue to take advantage of existing legacy cache entries. + * Deprecate undocumented --skip-requirements-regex option. + * Deprecate passing install-location-related options via --install-option. + * Use literal "abi3" for wheel tag on CPython 3.x, to align with PEP 384 which only defines it for this platform. + * Remove interpreter-specific major version tag e.g. cp3-none-any from consideration. This behavior was not documented strictly, and this tag in particular is not useful. Anyone with a use case can create an issue with pypa/packaging. + * Wheel processing no longer permits wheels containing more than one top-level .dist-info directory. + * Support for the git+git@ form of VCS requirement is being deprecated and will be removed in pip 21.0. Switch to git+https:// or git+ssh://. git+git:// also works but its use is discouraged as it is insecure. + * Default to doing a user install (as if --user was passed) when the main site-packages directory is not writeable and user site-packages are enabled. + * Warn if a path in PATH starts with tilde during pip install. + * Cache wheels built from Git requirements that are considered immutable, because they point to a commit hash. + * Add option --no-python-version-warning to silence warnings related to deprecation of Python versions. + * Cache wheels that pip wheel built locally, matching what pip install does. This particularly helps performance in workflows where pip wheel is used for building before installing. Users desiring the original behavior can use pip wheel --no-cache-dir + * Display CA information in pip debug. + * Show only the filename (instead of full URL), when downloading from PyPI. + * Suggest a more robust command to upgrade pip itself to avoid confusion when the current pip command is not available as pip. + * Define all old pip console script entrypoints to prevent import issues in stale wrapper scripts. + * The build step of pip wheel now builds all wheels to a cache first, then copies them to the wheel directory all at once. Before, it built them to a temporary directory and moved them to the wheel directory one by one. + * Expand ~ prefix to user directory in path options, configs, and environment variables. Values that may be either URL or path are not currently supported, to avoid ambiguity: + - -find-links + - -constraint, -c + - -requirement, -r + - -editable, -e + * Correctly handle system site-packages, in virtual environments created with venv (PEP 405). + * Fix case sensitive comparison of pip freeze when used with -r option. + * Enforce PEP 508 requirement format in pyproject.toml build-system.requires. + * Make ensure_dir() also ignore ENOTEMPTY as seen on Windows. + * Fix building packages which specify backend-path in pyproject.toml. + * Do not attempt to run setup.py clean after a pep517 build error, since a setup.py may not exist in that case. + * Fix passwords being visible in the index-url in "Downloading " message. + * Change method from shutil.remove to shutil.rmtree in noxfile.py. + * Skip running tests which require subversion, when svn isn't installed + * Fix not sending client certificates when using --trusted-host. + * Make sure pip wheel never outputs pure python wheels with a python implementation tag. Better fix/workaround for #3025 by using a per-implementation wheel cache instead of caching pure python wheels with an implementation tag in their name. + * Include subdirectory URL fragments in cache keys. + * Fix typo in warning message when any of --build-option, --global-option and --install-option is used in requirements.txt + * Fix the logging of cached HTTP response shown as downloading. + * Effectively disable the wheel cache when it is not writable, as is the case with the http cache. + * Correctly handle relative cache directory provided via --cache-dir. + * + +- Update to version 19.3.1 + * Document Python 3.8 support. + * Fix bug that prevented installation of PEP 517 packages without setup.py. + * Remove undocumented support for un-prefixed URL requirements pointing to SVN repositories. + * Remove the deprecated --venv option from pip config. + * Make pip show warn about packages not found. + * Abort installation if any archive contains a file which would be placed outside the extraction location. + * pip's CLI completion code no longer prints a Traceback if it is interrupted. + * Ignore errors copying socket files for local source installs (in Python 3). + * Skip copying .tox and .nox directories to temporary build directories + * Ignore "require_virtualenv" in pip config + +- Update to version 19.2.2: + * Merge pull request #6827 from cjerdonek/issue-6804-find-links-expansion + * Fix handling of tokens (single part credentials) in URLs (#6818) + * Simplify the handling of "typing.cast" + +- Update to version 19.2.1: + * Fix a ``NoneType`` ``AttributeError`` when evaluating hashes and no hashes provided + * Drop support for EOL Python 3.4. + * Credentials will now be loaded using keyring when installed + * Fully support using --trusted-host inside requirements files + * Update timestamps in pip's --log file to include milliseconds + * Respect whether a file has been marked as "yanked" from a simple repository (see PEP 592 for details) + * When choosing candidates to install, prefer candidates with a hash matching one of the user-provided hashes + * Improve the error message when METADATA or PKG-INFO is None when accessing metadata + * Add a new command pip debug that can display e.g. the list of compatible tags for the current Python + * Display hint on installing with --pre when search results include pre-release versions + * Report to Warehouse that pip is running under CI if the PIP_IS_CI environment variable is set + * Allow --python-version to be passed as a dotted version string (e.g. 3.7 or 3.7.3) + * Log the final filename and SHA256 of a .whl file when done building a wheel + * Include the wheel's tags in the log message explanation when a candidate wheel link is found incompatible + * Add a --path argument to pip freeze to support --target installations + * Add a --path argument to pip list to support --target installations +- from version 19.2.0 + * Drop support for EOL Python 3.4. (#6685) + * Improve deprecation messages to include the version in which + the functionality will be removed. (#6549) + * Credentials will now be loaded using keyring when installed. (#5948) + * Fully support using --trusted-host inside requirements files. (#3799) + * Update timestamps in pip’s --log file to include milliseconds. (#6587) + * Respect whether a file has been marked as “yanked” from a simple + repository (see PEP 592 for details). (#6633) + * When choosing candidates to install, prefer candidates with a + hash matching one of the user-provided hashes. (#5874) + * Improve the error message when METADATA or PKG-INFO is None + when accessing metadata. (#5082) + * Add a new command pip debug that can display e.g. the + list of compatible tags for the current Python. (#6638) + * Display hint on installing with --pre when search results + include pre-release versions. (#5169) + * Report to Warehouse that pip is running under CI + if the PIP_IS_CI environment variable is set. (#5499) + * Allow --python-version to be passed as a dotted + version string (e.g. 3.7 or 3.7.3). (#6585) + * Log the final filename and SHA256 of a .whl file when done building a wheel. (#5908) + * Include the wheel’s tags in the log message explanation when + a candidate wheel link is found incompatible. (#6121) + * Add a --path argument to pip freeze to support --target installations. (#6404) + * Add a --path argument to pip list to support --target installations. (#6551) + * Set sys.argv[0] to the underlying setup.py when invoking setup.py via + the setuptools shim so setuptools doesn’t think the path is -c. (#1890) + * Update pip download to respect the given --python-version + when checking "Requires-Python". (#5369) + * Respect --global-option and --install-option when installing + from a version control url (e.g. git). (#5518) + * Make the “ascii” progress bar really be “ascii” and not Unicode. (#5671) + * Fail elegantly when trying to set an incorrectly formatted key in config. (#5963) + * Prevent DistutilsOptionError when prefix is indicated in the + global environment and --target is used. (#6008) + * Fix pip install to respect --ignore-requires-python when evaluating links. (#6371) + * Fix a debug log message when freezing an editable, + non-version controlled requirement. (#6383) + * Extend to Subversion 1.8+ the behavior of calling Subversion + in interactive mode when pip is run interactively. (#6386) + * Prevent pip install from permitting directory traversal if e.g. a malicious + server sends a Content-Disposition header with a filename containing ../ or ..\\. + (#6413) (bsc#1176262, CVE-2019-20916) + * Hide passwords in output when using --find-links. (#6489) + * Include more details in the log message if pip freeze can’t generate + a requirement string for a particular distribution. (#6513) + * Add the line number and file location to the error message when reading an + invalid requirements file in certain situations. (#6527) + * Prefer os.confstr to ctypes when extracting glibc version info. (#6543, #6675) + * Improve error message printed when an invalid editable requirement is provided. (#6648) + * Improve error message formatting when a command errors out in a subprocess. (#6651) + +- Add patch to build with pytest5, also sent upstream: + * pytest5.patch + +- Update to version 19.1.1+git.1557777841.63878672: + * Update news file to match usual style + * fix-5963: assert error message + * Simplify CandidateEvaluator.evaluate_link(). + * Fix 6486 mac gitignore (#6487) + * Store instances in the VcsSupport registry instead of classes. + * Remove unused cls argument from VcsSupport.unregister(). + * fix-5963: Add news file + * fix-5963: fail elegantly on missing name or section in config set / unset + * Remove unnecessary slices. + * Fix typo. + +- Switch to multibuild, so testing is separate from the building + of the package itself. + +- Update to version 19.1.1+git.1557521541.a731e7e3: + * Docs: capitalize "URL" + * Upgrade Sphinx version for Read the Docs (#6477) + * Upwrap import + * Remove utils/packaging.py's dependence on the current environment. + * Improve import error handling Fix --no-index usage Fix missing type annotation type + * Rename _link_package_versions() to evaluate_link(). + * Move _link_package_versions() to CandidateEvaluator. + * Refine return type of _package_versions() and find_all_candidates(). + * Fix mismerged import + * Issue #5948: Enable keyring support + * Move run_with_log_command() after run_stderr_with_prefix(). + * Change to never allow logging errors during tests. + * Add failing test. + * Respect --global-option and --install-option for VCS installs. +- Start using upstream git checkout instead of the released + tarballs so we can get tests/ directory (gh#pypa/pip#6258). +- Enable tests. + +- Update to 19.1.1: + - Restore pyproject.toml handling to how it was with pip 19.0.3 + to prevent the need to add --no-use-pep517 when installing in + editable mode. (#6434) + - Fix a regression that caused @ to be quoted in pypiserver + links. This interfered with parsing the revision string from + VCS urls. (#6440) + - Configuration files may now also be stored under sys.prefix + (#5060) + - Avoid creating an unnecessary local clone of a Bazaar branch + when exporting. (#5443) + - Include in pip's User-Agent string whether it looks like pip + is running under CI. (#5499) + - A custom (JSON-encoded) string can now be added to pip's + User-Agent using the PIP_USER_AGENT_USER_DATA environment + variable. (#5549) + - For consistency, passing --no-cache-dir no longer affects + whether wheels will be built. In this case, a temporary + directory is used. (#5749) + - Command arguments in subprocess log messages are now quoted + using shlex.quote(). (#6290) + - Prefix warning and error messages in log output with WARNING + and ERROR. (#6298) + - Using --build-options in a PEP 517 build now fails with an + error, rather than silently ignoring the option. (#6305) + - Error out with an informative message if one tries to install + a pyproject.toml-style (PEP 517) source tree using --editable + mode. (#6314) + - When downloading a package, the ETA and average speed now + only update once per second for better legibility. (#6319) + - The stdout and stderr from VCS commands run by pip as + subprocesses (e.g. git, hg, etc.) no longer pollute pip's + stdout. (#1219) + - Fix handling of requests exceptions when dependencies are + debundled. (#4195) + - Make pip's self version check avoid recommending upgrades to + prereleases if the currently-installed version is stable. + (#5175) + - Fixed crash when installing a requirement from a URL that + comes from a dependency without a URL. (#5889) + - Improve handling of file URIs: correctly handle + file://localhost/... and don't try to use UNC paths on Unix. + (#5892) + - Fix utils.encoding.auto_decode() LookupError with invalid + encodings. utils.encoding.auto_decode() was broken when + decoding Big Endian BOM byte-strings on Little Endian or vice + versa. (#6054) + - Fix incorrect URL quoting of IPv6 addresses. (#6285) + - Redact the password from the extra index URL when using pip + - v. (#6295) + - The spinner no longer displays a completion message after + subprocess calls not needing a spinner. It also no longer + incorrectly reports an error after certain subprocess calls + to Git that succeeded. (#6312) + - Fix the handling of editable mode during installs when + pyproject.toml is present but PEP 517 doesn't require the + source tree to be treated as pyproject.toml-style. (#6370) + - Fix NameError when handling an invalid requirement. (#6419) + - Make dashes render correctly when displaying long options + like --find-links in the text. (#6422) + +- update to version 19.0.3: + * Fix an IndexError crash when a legacy build of a wheel + fails. (#6252) + * Fix a regression introduced in 19.0.2 where the filename in a + RECORD file of an installed file would not be updated when + installing a wheel. (#6266) + +- Avoid name repetition in summary. Summary should not be a + sentence (let alone three). + +- Update to 19.0.2 (2019-02-09): + + Bug Fixes + * Fix a crash where PEP 517-based builds using --no-cache-dir + would fail in some circumstances with an AssertionError due + to not finalizing a build directory internally. (#6197) + * Provide a better error message if attempting an editable + install of a directory with a pyproject.toml but no setup.py. + (#6170) + * The implicit default backend used for projects that provide a + pyproject.toml file without explicitly specifying build- + backend now behaves more like direct execution of setup.py, + and hence should restore compatibility with projects that + were unable to be installed with pip 19.0. This raised the + minimum required version of setuptools for such builds to + 40.8.0. (#6163) + * Allow RECORD lines with more than three elements, and display + a warning. (#6165) + * AdjacentTempDirectory fails on unwritable directory instead + of locking up the uninstall command. (#6169) + * Make failed uninstalls roll back more reliably and better at + avoiding naming conflicts. (#6194) + * Ensure the correct wheel file is copied when building PEP 517 + distribution is built. (#6196) + * The Python 2 end of life warning now only shows on CPython, + which is the implementation that has announced end of life + plans. (#6207) + + Improved Documentation + * Re-write README and documentation index (#5815) +- Update to 19.0.1 (2019-01-23): + + Bug Fixes + * Fix a crash when using –no-cache-dir with PEP 517 + distributions (#6158, #6171) +- Update to 19.0 (2019-01-22): + + Deprecations and Removals + * Deprecate support for Python 3.4 (#6106) + * Start printing a warning for Python 2.7 to warn of impending + Python 2.7 End-of-life and prompt users to start migrating to + Python 3. (#6148) + * Remove the deprecated --process-dependency-links option. + (#6060) + * Remove the deprecated SVN editable detection based on + dependency links during freeze. (#5866) + + Features + * Implement PEP 517 (allow projects to specify a build backend + via pyproject.toml). (#5743) + * Implement manylinux2010 platform tag support. manylinux2010 + is the successor to manylinux1. It allows carefully compiled + binary wheels to be installed on compatible Linux platforms. + (#5008) + * Improve build isolation: handle .pth files, so namespace + packages are correctly supported under Python 3.2 and + earlier. (#5656) + * Include the package name in a freeze warning if the package + is not installed. (#5943) + * Warn when dropping an --[extra-]index-url value that points + to an existing local directory. (#5827) + * Prefix pip’s --log file lines with their timestamp. (#6141) + + Bug Fixes + * Avoid creating excessively long temporary paths when + uninstalling packages. (#3055) + * Redact the password from the URL in various log messages. + (#4746, #6124) + * Avoid creating excessively long temporary paths when + uninstalling packages. (#3055) + * Avoid printing a stack trace when given an invalid + requirement. (#5147) + * Present 401 warning if username/password do not work for URL + (#4833) + * Handle requests.exceptions.RetryError raised in PackageFinder + that was causing pip to fail silently when some indexes were + unreachable. (#5270, #5483) + * Handle a broken stdout pipe more gracefully (e.g. when + running pip list | head). (#4170) + * Fix crash from setting PIP_NO_CACHE_DIR=yes. (#5385) + * Fix crash from unparseable requirements when checking + installed packages. (#5839) + * Fix content type detection if a directory named like an + archive is used as a package source. (#5838) + * Fix listing of outdated packages that are not dependencies of + installed packages in pip list --outdated --not-required + (#5737) + * Fix sorting TypeError in move_wheel_files() when installing + some packages. (#5868) + * Fix support for invoking pip using python src/pip .... + (#5841) + * Greatly reduce memory usage when installing wheels containing + large files. (#5848) + * Editable non-VCS installs now freeze as editable. (#5031) + * Editable Git installs without a remote now freeze as + editable. (#4759) + * Canonicalize sdist file names so they can be matched to a + canonicalized package name passed to pip install. (#5870) + * Properly decode special characters in SVN URL credentials. + (#5968) + * Make PIP_NO_CACHE_DIR disable the cache also for truthy + values like "true", "yes", "1", etc. (#5735) + + Vendored Libraries + * Include license text of vendored 3rd party libraries. (#5213) + * Update certifi to 2018.11.29 + * Update colorama to 0.4.1 + * Update distlib to 0.2.8 + * Update idna to 2.8 + * Update packaging to 19.0 + * Update pep517 to 0.5.0 + * Update pkg_resources to 40.6.3 (via setuptools) + * Update pyparsing to 2.3.1 + * Update pytoml to 0.1.20 + * Update requests to 2.21.0 + * Update six to 1.12.0 + * Update urllib3 to 1.24.1 + + Improved Documentation + * Include the Vendoring Policy in the documentation. (#5958) + * Add instructions for running pip from source to Development + documentation. (#5949) + * Remove references to removed #egg=- + functionality (#5888) + * Fix omission of command name in HTML usage documentation + (#5984) +- Fix patch pip-8.1.2-shipped-requests-cabundle.patch + this version is long gone +- Rename patch to pip-shipped-requests-cabundle.patch +- Fix and show shebang removal + +- Fix fdupes call + +- specfile: + * remove devel from noarch +- update to version 18.1: + * Features + + Allow PEP 508 URL requirements to be used as dependencies. + + As a security measure, pip will raise an exception when + installing packages from PyPI if those packages depend on + packages not also hosted on PyPI. In the future, PyPI will block + uploading packages with such external URL dependencies + directly. (#4187) + + Upgrade pyparsing to 2.2.1. (#5013) + + Allows dist options (–abi, –python-version, –platform, + –implementation) when installing with –target (#5355) + + Support passing svn+ssh URLs with a username to pip install + - e. (#5375) + + pip now ensures that the RECORD file is sorted when installing + from a wheel file. (#5525) + + Add support for Python 3.7. (#5561) + + Malformed configuration files now show helpful error messages, + instead of tracebacks. (#5798) + * Bug Fixes + + Checkout the correct branch when doing an editable Git + install. (#2037) + + Run self-version-check only on commands that may access the + index, instead of trying on every run and failing to do so due + to missing options. (#5433) + + Allow a Git ref to be installed over an existing + installation. (#5624) + + Show a better error message when a configuration option has an + invalid value. (#5644) + + Always revalidate cached simple API pages instead of blindly + caching them for up to 10 minutes. (#5670) + + Avoid caching self-version-check information when cache is + disabled. (#5679) + + Avoid traceback printing on autocomplete after flags in the + CLI. (#5751) + + Fix incorrect parsing of egg names if pip needs to guess the + package name. (#5819) + * Vendored Libraries + + Upgrade certifi to 2018.8.24 + + Upgrade packaging to 18.0 + + Add pep517 version 0.2 + + Upgrade pytoml to 0.1.19 + + Upgrade pkg_resources to 40.4.3 (via setuptools) + * Improved Documentation + + Fix “Requirements Files” reference in User Guide + (#user_guide_fix_requirements_file_ref) + +- update to 18.0 +- refresh pip-8.1.2-shipped-requests-cabundle.patch + * drop python 3.3 support + * Remove the legacy format from pip list. + * Remove support for cleaning up #egg fragment postfixes + * Remove the shim for the old get-pip.py location + * Introduce a new --prefer-binary flag, to prefer older wheels + over newer source packages. + * Improve autocompletion function on file name completion + * Add support for installing PEP 518 build dependencies from source + * Improve status message when upgrade is skipped due to only-if-needed strategy + python-setuptools +- Add wheel subpackage with the generated wheel for this package + (bsc#1176262, CVE-2019-20916). + python-urllib3 +- Skip test for RECENT_DATE. It is a test purely for developers. + To maintain reproducibility, keep upstreams possibly outdated + RECENT_DATE in the source code. + +- Add CI variable, which makes timeouts in the test suite longer + (gh#urllib3/urllib3#2109, bsc#1176389) and + test_timeout_errors_cause_retries should not fail. + python3 +- readd --with-fpectl (bsc#1180377) + +- Adjust sphinx-update-removed-function.patch + +- (bsc#1179630) Update sphinx-update-removed-function.patch to + work with all versions of Sphinx (not binding the Python + documentation build to the latest verison of Sphinx). Updated + version mentioned on gh#python/cpython#13236. + +- Add CVE-2020-27619-no-eval-http-content.patch fixing + CVE-2020-27619 (bsc#1178009), where Lib/test/multibytecodec_support + calls eval() on content retrieved via HTTP. + +- Add patch sphinx-update-removed-function.patch to no longer call + a now removed function (gh#python/cpython#13236). As + a consequence, no longer pin Sphinx version. + +- Pin Sphinx version to fix doc subpackage + +- Change setuptools and pip version numbers according to new wheels +- Add ignore_pip_deprec_warn.patch to switch of persistently + failing test. + +- Replace bundled wheels for pip and setuptools with the updated ones + (bsc#1176262 CVE-2019-20916). + +- Handful of changes to make python36 compatible with SLE15 and SLE12 + (jsc#ECO-2799, jsc#SLE-13738) +- Rebase bpo23395-PyErr_SetInterrupt-signal.patch + +- Fix build with RPM 4.16: error: bare words are no longer + supported, please use "...": x86 == ppc. + +- Fix installing .desktop file + +- Buildrequire timezone only for general flavor. It's used in this + flavor for the test suite. + +- Add faulthandler_stack_overflow_on_GCC10.patch to make build + working even with GCC10 (bpo#38965). + +- Just cleanup and reordering items to synchronize with python38 + +- Format with spec-cleaner + +- riscv64-support.patch: bpo-33377: add triplets for mips-r6 and riscv + (#6655) +- riscv64-ctypes.patch: bpo-35847: RISC-V needs CTYPES_PASS_BY_REF_HACK + (GH-11694) +- Update list of tests to exclude under qemu linux-user + +- Update the python keyring +- Correct libpython name + +- Drop patches which are not mentioned in spec: + * CVE-2019-5010-null-defer-x509-cert-DOS.patch + * F00102-lib64.patch + * F00251-change-user-install-location.patch + * OBS_dev-shm.patch + * SUSE-FEDORA-multilib.patch + * bpo-31046_ensurepip_honours_prefix.patch + * bpo34022-stop_hash-based_invalidation_w_SOURCE_DATE_EPOCH.patch + * bpo36302-sort-module-sources.patch + * bpo40784-Fix-sqlite3-deterministic-test.patch + * bsc1167501-invalid-alignment.patch + * python3-imp-returntype.patch +- Working around missing python-packaging dependency in + python-Sphinx (bsc#1174571) is not necessary anymore. + +- Update to 3.6.12 (bsc#1179193) + * Ensure python3.dll is loaded from correct locations when Python is embedded + * The __hash__() methods of ipaddress.IPv4Interface and ipaddress.IPv6Interface + incorrectly generated constant hash values of 32 and 128 respectively. This + resulted in always causing hash collisions. The fix uses hash() to generate + hash values for the tuple of (address, mask length, network address). + * Prevent http header injection by rejecting control characters in + http.client.putrequest(…). + * Unpickling invalid NEWOBJ_EX opcode with the C implementation raises now + UnpicklingError instead of crashing. + * Avoid infinite loop when reading specially crafted TAR files using the tarfile + module +- Drop merged fixtures: + * CVE-2020-14422-ipaddress-hash-collision.patch + * CVE-2019-20907_tarfile-inf-loop.patch + * recursion.tar +- This release also fixes CVE-2020-26116 (bsc#1177211) and CVE-2019-20907 (bsc#1174091). + +- Make library names internally consistent + +- Disable profile optimalizations as they deadlock in test_faulthandler + +- Disable lto as it causes mess and works with 3.7 onwards only + +- Sync the test disablements from the python3 in sle15 + +- Update to 3.6.11: + - bpo-39073: Disallow CR or LF in email.headerregistry. Address + arguments to guard against header injection attacks. + - bpo-38576 (bsc#1155094): Disallow control characters in + hostnames in http.client, addressing CVE-2019-18348. Such + potentially malicious header injection URLs now cause + a InvalidURL to be raised. + - bpo-39503: CVE-2020-8492: The AbstractBasicAuthHandler class + of the urllib.request module uses an inefficient regular + expression which can be exploited by an attacker to cause + a denial of service. Fix the regex to prevent the + catastrophic backtracking. Vulnerability reported by Ben + Caller and Matt Schwager. + - bpo-39401: Avoid unsafe load of + api-ms-win-core-path-l1-1-0.dll at startup on Windows 7. +- Remove merged patch CVE-2020-8492-urllib-ReDoS.patch + +- Fix minor issues found in the staging. + +- Do not set ourselves as a primary interpreter + - - CVE-2019-16935-xmlrpc-doc-server_title.patch + - CVE-2019-16935-xmlrpc-doc-server_title.patch (and also + bpo37614-race_test_docxmlrpc_srv_setup.patch, which was + resolving bsc#1174701). qemu -- Change qemu-x86 packaging relationship with qemu-microvm from - Requires to Recommends +- Additional tweaks to ensure libvirt runs ok when + qemu-hw-display-virtio-gpu package is not installed -- Fix OOB access while processing USB packets (CVE-2020-14364 - bsc#1175441 bsc#1176494) - usb-fix-setup_len-init-CVE-2020-14364.patch -- Fix DoS in packet processing of various emulated NICs - (CVE-2020-16092 bsc#1174641) +- Use '%service_del_postun_without_restart' instead of + '%service_del_postun' to avoid "Failed to try-restart + qemu-ga@.service" error while updating the qemu-guest-agent. + (bsc#1178565) + +- Fix two additional cases of qemu crashing due to qemu module + packages not being loaded. + qom-handle-case-of-chardev-spice-module-.patch + spice-app-avoid-crash-when-core-spice-mo.patch + +- Fix issue of qemu crashing (abort called) when virtio-gpu device + is asked for and the qemu-hw-display-virtio-gpu package isn't + installed. (bsc#1181103) + module-for-virtio-gpu-pre-load-module-to.patch +- Add additional inter-module package dependencies, to reflect the + current module dependencies (see qemu source file: util/module.c) +- As of v3.1.0 virt-manager, new VM's are created by default with + audio/sound enabled, so it's time to reflect the need, at least + in the spice case, by having spice-audio available when spice in + general is used (boo#1180210 boo#1181132) +- Further refine package Recommends/Suggests based on architecture +- Remove no longer needed dependency on pwdutils (boo#1181235) + +- Fix qemu-testsuite issue where white space processing gets + handled differently under bash 5.1 (boo#1181054) + iotests-Fix-_send_qemu_cmd-with-bash-5.1.patch + +- Convert qemu-kvm from a script to a symlink. Using qemu-kvm to + invoke the QEMU emulator has been deprecated for some time, + but is still provided. It has as it's ancient origins a version + of QEMU which had KVM acceleration enabled by default, and then + recently, until now, it is a shell script which execs the QEMU + emulator, adding '-machine accel=kvm' to the beginning of the + list of command line options passed to the emulator. + This method collides with the now preferred method of specifying + acceleration options by using -accel. qemu-kvm is now changed to + simply be a symlink to the same QEMU binary which the prior + script exec'd. This new approach takes advantage of a built-in + QEMU feature where if QEMU is invoked using a program name ending + in 'kvm', KVM emulation is enabled. This approach is better in + that it is more compatible with any other command line option + that may be added for describing acceleration. + For those who have modified qemu-kvm to add additional command + line options, or take other actions in the context of the script + you will now need to create an alternate script "emulator" to + achieve the same result. Note that it's possible there may be + some very subtle behavioral difference in the switch from a + script to a symlink, but given that qemu-kvm is a deprecated + package, we're not going to worry about that. + +- Fix crash when spice used and the qemu-audio-spice package isn't + installed (boo#1180210) + audio-add-sanity-check.patch +- Add some stable patches from upstream + block-Fix-deadlock-in-bdrv_co_yield_to_d.patch + block-Fix-locking-in-qmp_block_resize.patch + block-nfs-fix-int-overflow-in-nfs_client.patch + block-Simplify-qmp_block_resize-error-pa.patch + build-no-pie-is-no-functional-linker-fla.patch + +- Update to v5.2.0: See http://wiki.qemu.org/ChangeLog/5.2 + Take note that ongoing feature deprecation is tracked at both + http://wiki.qemu-project.org/Features/LegacyRemoval and in + the deprecated.html file installed with the qemu package + Some noteworthy changes: + * Dropped system emulators: qemu-system-lm32, qemu-system-unicore32 + * Dropped linux user emulator: qemu-ppc64abi32 + * Added linux user emulator: qemu-extensaeb + * Unicore32 and lm32 guest support dropped + * New sub-packages (most due to ongoing modularization of QEMU): + qemu-audio-spice, qemu-hw-chardev-spice, qemu-hw-display-virtio-vga, + qemu-hw-display-virtio-gpu, qemu-hw-display-virtio-gpu-pci, + qemu-ui-spice-core, qemu-ui-opengl, qemu-ivshmem-tools + * x86: A new KVM feature which improves the handling of asynchronous page + faults is available with -cpu ...,kvm-async-pf-int (requires Linux 5.8) + * s390: More instructions emulated under TCG + * PowerPC: nvdimm= machine option now functions correctly; misc improvements + * ARM: new boards: mps2-an386 (Cortex-M4 based) and mps2-an500 + (Cortex-M7 based), raspi3ap (the Pi 3 model A+), raspi0 (the Pi Zero) + and raspi1ap (the Pi A+) + * RISC-V: OpenSBI v0.8 included by default; Generic OpenSBI platform used + when no -bios argument is supplied; Support for NUMA sockets on Virt + and Spike Machines; Support for migrating machines; misc improvements + * Misc NVMe improvements + * The 'vhost-user-blk' export type has been added, allowing + qemu-storage-daemon to act as a vhost-user-blk device backend + * The SMBIOS OEM strings can now come from a file + * 9pfs - misc performance related improvements + * virtiofs - misc improvements + * migration: The default migration bandwidth has been increased to 1Gbps + (users are still encouraged to tune it to their own hardware); The new + 'calc-dirty-rate' and 'query-dirty-rate' QMP commands can help determine + the likelihood of precopy migration success; TLS+multifd now supported + for higher bandwidth encrypted migration; misc minor features added + * Misc minor block features added + * Misc doc improvements + * qemu-microvm subpackage change: the bios-microvm.bin is now SeaBIOS based, + and the qboot based on is now qboot.rom + * elf2dmp is no longer part of qemu-tools (it was never intended to be + a packaged binary) + * Some subpackages which were 'Requires' are now 'Recommends', allowing for + a smaller qemu packaging footprint if needed + * Patches dropped (included in release tarball, unless otherwise noted): + docs-fix-trace-docs-build-with-sphinx-3..patch (fixed differently) + hw-hyperv-vmbus-Fix-32bit-compilation.patch + linux-user-properly-test-for-infinite-ti.patch + Switch-order-of-libraries-for-mpath-supp.patch (fixed differently) + Conditionalize-ui-bitmap-installation-be.patch (fixed differently) + hw-usb-hcd-xhci-Fix-GCC-9-build-warning.patch (no longer using gcc9) + hw-usb-dev-mtp-Fix-GCC-9-build-warning.patch (no longer using gcc9) + roms-Makefile-enable-cross-compile-for-b.patch (fixed with different patch) + libvhost-user-handle-endianness-as-manda.patch + virtio-add-vhost-user-fs-ccw-device.patch + Fix-s-directive-argument-is-null-error.patch + build-Workaround-compilation-error-with-.patch + build-Be-explicit-about-fcommon-compiler.patch + intel-Avoid-spurious-compiler-warning-on.patch + golan-Add-explicit-type-casts-for-nodnic.patch + Do-not-apply-WORKAROUND_CFLAGS-for-host-.patch + ensure-headers-included-are-compatible-w.patch + Enable-cross-compile-prefix-for-C-compil.patch (fixed differently) -- Fix buffer overflow in the XGMAC device (CVE-2020-15863 - bsc#1174386) -- Note: v4.2.1 update included fix for CVE-2020-24352 bsc#1175370 + s390x-protvirt-allow-to-IPL-secure-guest.patch + usb-fix-setup_len-init-CVE-2020-14364.patch + * Patches added: + meson-install-ivshmem-client-and-ivshmem.patch + Revert-roms-efirom-tests-uefi-test-tools.patch + Makefile-Don-t-check-pc-bios-as-pre-requ.patch + roms-Makefile-add-cross-file-to-qboot-me.patch + qboot-add-cross.ini-file-to-handle-aarch.patch + usb-Help-compiler-out-to-avoid-a-warning.patch +- In spec file, where reasonable, switch BuildRequires: XXX-devel + to be pkgconfig(XXX') instead +- No longer disable link time optimization for qemu for x86. It looks like + either the build service, qemu code changes and/or the switch to meson + have resolved issues previously seen there. We still see problems for + other architectures however. +- For the record, the following issues reported for SUSE SLE15-SP2 + are either fixed in this current package, or are otherwise no longer + an issue: bsc#1172384 bsc#1174386 bsc#1174641 bsc#1174863 bsc#1175370 + bsc#1175441 bsc#1176494 CVE-2020-13361 CVE-2020-14364 CVE-2020-15863 + CVE-2020-16092 CVE-2020-24352 + and the following feature requests are satisfied by this package: + jsc#SLE-13689 jsc#SEL-13780 jsc#SLE-13840 +- To be more accurate, and to align with other qemu packaging + practices, rename the qemu-s390 package to qemu-s390x. The old + name (in the rpm namespace) is provided with a "Provides" + directive, and an "Obsoletes" done against that name for prior + qemu versions, as is standard practice (boo#1177764 jsc#SLE-17060) +- Take this opportunity to remove some ancient Split-Provides + mechanisms which can't conceivably be needed any more: + qemu-block-curl provided: qemu:%_libdir/%name/block-curl.so + qemu-guest-agent provided: qemu:%_bindir/qemu-ga + qemu-tools provided: qemu:%_libexecdir/qemu-bridge-helper + +- Disable linux-user 'ls' test on 32 bit arm. It's failing with + "Allocating guest commpage: Cannot allocate memory" error, which + we should hunt down, but for now we don't want it to prevent the + package from being built + +- Be more careful about what directives are used for qemu-testsuite + +- Fix some spec file 'Requires' statements to be accurate to the + new model of relying on system-user-qemu and system-group-kvm to + provide the needed users and groups + +- Added io_uring support. + +- A patch has been applied to virt-manager to handle qemu spice + related modules not being present, so undo the change from Sep + 30, 2020. Once again qemu-hw-display-qxl and qemu-hw-usb-redirect + are Recommends and not Required by the qemu package + (boo#1157320 boo#1176517, boo#1178141) +- For jsc#SLE-11629, change qemu, qemu-tools, and qemu-guest-agent + to rely on system-user-qemu and system-group-kvm to provide now + static system UIDs and GID's for qemu user and group, and kvm + group. This will make guest migration more seamless for new + installations since there is no chance of having required ID's + differ in value. + +- Add virtio-fs support for s390x (jsc#SLE-13822) + libvhost-user-handle-endianness-as-manda.patch + virtio-add-vhost-user-fs-ccw-device.patch + +- Note: As part of the "Close the Leap Gap" effort, it's been + decided that our SDL2 support in qemu is not worth trying + to maintain. Long ago SLE qemu stopped including SDL2 support and + now we will do the same for the openSUSE releases going forward. + Accordingly SDL2 options are now configured out, and the two sub- + packages which are SDL2 specific, namely qemu-audio-sdl and + qemu-ui-sdl, are no longer generated, and due to the rpm package + conflicts used for those packages, they will be uninstalled from + systems as qemu updates move forward +- Drop e2fsprogs-devel and libpcap-devel as BuildRequires packages. + They have not actually been needed to build qemu for a very long + time +- Add more forsplits files + +- Create qemu-skiboot sub-package. Use update-alternatives mechanism + to coordinate with opal-firmware (provided with skiboot package set) + on the provider of the /usr/share/qemu/skiboot.lid firmware file. + qemu-skiboot uses a priority of 15, while opal-firmware uses a + priority of 10 (jsc#SLE-13240) + +- Undo part of the split-provides recently done. We have to wait on + virt-manager to handle qemu modularization better before we make + qemu-hw-display-qxl and qemu-hw-usb-redirect non-required + (boo#1157320 boo#1176517) + +- Fix spec file, where a conditional macro didn't have the correct + syntax (bsc#1176766) + +- Change qemu-x86 packaging relationship with qemu-microvm from + Requires to Recommends + +- In an effort to "Close the Leap Gap", remove use of is_opensuse + from the spec file, so that the same packages built for SLE can + be reused for Leap. Some sub-packages will not be included for + SLE which are included for Leap. They wil be provided in Package + Hub for SLE users as unsupported packages. (jsc#SLE-11660, + jsc#SLE-11661, jsc#SLE-11662, jsc#SLE-11691, jse#SLE-11692, + jsc#SLE-11894) - installed files. More recent versions of qemu have split out - non-essential functionality into loadable modules, so we need - our packaging infrastructure to be prepared to handle that. + installed files. This version of qemu has split out non-essential + functionality into loadable modules, as noted in Aug 20, 2020 log + entry, which describes the emergency Split-Provides. That approach + will be superseded by this planned approach, and those dummy doc + files will be removed in time + Here is the new mapping: + subpackage continuity file provided (files are dummies) + ========== ============================================ + qemu-chardev-baum /usr/share/qemu/forsplits/00 + qemu-hw-display-qxl /usr/share/qemu/forsplits/01 + qemu-hw-usb-redirect /usr/share/qemu/forsplits/02 + qemu-hw-usb-smartcard /usr/share/qemu/forsplits/03 -- Allow to IPL secure guests with -no-reboot (bsc#1174863) - s390x-protvirt-allow-to-IPL-secure-guest.patch +- Fix path of qemu-pr-helper. It was a mistake to move it from + %_bindir to _libexecdir. In more recent qemu code it's been moved + back, so undo this mistake by providing it at the same location + as it has been all along -- Update to v4.2.1, a stable, bug-fix-only release - * Patches dropped (subsumed by stable update): - arm-arm-powerctl-set-NSACR.-CP11-CP10-bi.patch +- For SLE15-SP3, note that this update to v5.1.0 is a step towards + fulfilling jsc#SLE-13689, which asks for qemu v5.2.0 or higher + +- Fix some shell syntax in update_git.sh, esp. an issue exposed by + the most recent patch added + +- Fix OOB access while processing USB packets (CVE-2020-14364 + bsc#1175441) + usb-fix-setup_len-init-CVE-2020-14364.patch +- Re-sync openSUSE and SUSE SLE qemu packages. This changes file + is the openSUSE one with this entry providing the intervening + SLE CVE, JIRA, and bugzilla references, which are still addressed + in this package, and not yet called out in this changes file. + * CVE-2020-1983 CVE-2020-10761 CVE-2020-13361 CVE-2020-13362 + CVE-2020-13659 CVE-2020-13800 + * bsc#1167816 bsc#1170940 boo#1171712 bsc#1172383 bsc#1172384 + bsc#1172386 bsc#1172495 bsc#1172710 + * Patches dropped (SLE) (included in current release tarball): + exec-set-map-length-to-zero-when-returni.patch + i386-acpi-Remove-_HID-from-the-SMBus-ACP.patch + megasas-use-unsigned-type-for-reply_queu.patch + +- Fix compilation errors seen with pre-release gcc 11 + qht-Revert-some-constification-in-qht.c.patch + Revert-qht-constify-qht_statistics_init.patch + help-compiler-out-by-initializing-array.patch + s390x-Fix-stringop-truncation-issue-repo.patch +- Add Split-Provides mechanism, using doc files which were moved + in v5.1.0. This allows for the new subpackages to be selected for + install when the v5.0.0 qemu is updated. These new subpackages are + not marked as "Required" by any packages, in an effort to reduce + the dependencies of the core qemu components (boo#1175320) + v5.0.0 qemu file mapping is provided as follows: + subpackage continuity file provided (files are dummies) + ========== ============================================ + qemu-chardev-baum /usr/share/doc/packages/qemu/qemu-ga-ref.html + qemu-hw-display-qxl /usr/share/doc/packages/qemu/qemu-ga-ref.txt + qemu-hw-usb-redirect /usr/share/doc/packages/qemu/qemu-qmp-ref.html + qemu-hw-usb-smartcard /usr/share/doc/packages/qemu/qemu-qmp-ref.txt + +- Fix wrong usage of %{_libexecdir} for systemd owned paths below + %{_prefix}/lib. + +- Update to v5.1.0: See http://wiki.qemu.org/ChangeLog/5.1 + Take note that ongoing feature deprecation is tracked at both + http://wiki.qemu-project.org/Features/LegacyRemoval and in + the deprecated.html file installed with the qemu package + Some noteworthy changes: + * s390: Protected virtualization (secure execute) is fully merged + upstream + * s390: vfio-ccw devices no longer require setting the allow + prefetch bit in the ORB, but is still dependent on host kernel + support + * s390: vfio-ccw now has basic support for relaying path state + changes to the guest + * PowerPC: pseries: NVDIMMs require label-size property + * PowerPC: pseries: POWER10 support + * PowerPC: added interface to inject POWER style NMIs + * ARM: new board: sonorapass-bmc + * ARM: new emulated features: ARMv8.2-TTSUXN, ARMv8.5-MemTag + * ARM: Raspberry Pi boards now support a USB controller + * ARM: virt board now supports hot-remove memory + * RISC-V lots of improvements + * qemu-img resize now requires -shrink to shrinking raw images + * The mem parameter of the -numa option is no longer recognized + starting with 5.1 machine types - instead use the memdev parameter + * The ACPI WAET table is now exposed to guests + * The max blocksize for virtual storage device is now 2 MiB + * NVMe improvements + * Crypto subsystem improvements + * Block backends and tools: Numerous improvements and fixes + * Firmware updates: SeaBIOS (essentially v1.14.0), OpenBIOS, SLOF + (20200717), OpenSBI (v0.7) + * Patches dropped (upstream unless otherwise noted): - ati-vga-Fix-checks-in-ati_2d_blt-to-avoi.patch - audio-oss-fix-buffer-pos-calculation.patch - backup-top-Begin-drain-earlier.patch - blkdebug-Allow-taking-unsharing-permissi.patch + audio-fix-wavcapture-segfault.patch + es1370-check-total-frame-count-against-c.patch + exec-set-map-length-to-zero-when-returni.patch + gcc10-maybe-uninitialized.patch + hw-vfio-pci-quirks-Fix-broken-legacy-IGD.patch + megasas-use-unsigned-type-for-reply_queu.patch + nbd-server-Avoid-long-error-message-asse.patch + ppc-spapr_caps-Don-t-disable-cap_cfpc-on.patch + s390x-Add-SIDA-memory-ops.patch + s390x-Add-unpack-facility-feature-to-GA1.patch + s390x-Move-diagnose-308-subcodes-and-rcs.patch + s390x-protvirt-Add-migration-blocker.patch + s390x-protvirt-Disable-address-checks-fo.patch + s390x-protvirt-Handle-SIGP-store-status-.patch + s390x-protvirt-Inhibit-balloon-when-swit.patch + s390x-protvirt-KVM-intercept-changes.patch + s390x-protvirt-Move-diag-308-data-over-S.patch + s390x-protvirt-Move-IO-control-structure.patch + s390x-protvirt-Move-STSI-data-over-SIDAD.patch + s390x-protvirt-SCLP-interpretation.patch + s390x-protvirt-Set-guest-IPL-PSW.patch + s390x-protvirt-Support-unpack-facility.patch + s390x-s390-virtio-ccw-Fix-build-on-syste.patch + Sync-pv.patch + tests-Disable-some-block-tests-for-now.patch (no longer needed) + vga-fix-cirrus-bios.patch + virtiofsd-add-rlimit-nofile-NUM-option.patch + virtiofsd-stay-below-fs.file-max-sysctl-.patch + * Patches renamed: + build-Do-not-apply-WORKAROUND_CFLAGS-for.patch + - > Do-not-apply-WORKAROUND_CFLAGS-for-host-.patch + build-Fix-s-directive-argument-is-null-e.patch + - > Fix-s-directive-argument-is-null-error.patch + * Patches added: + hw-hyperv-vmbus-Fix-32bit-compilation.patch +- New subpackages, due to modularization: qemu-chardev-baum, + qemu-hw-display-qxl, qemu-hw-usb-redirect, qemu-hw-usb-smartcard +- Configure to use "system" libslirp and libdaxctl (libnvdimm) + when available + +- Don't disable cap_cfpc on POWER8 by default (bsc#1174374) + ppc-spapr_caps-Don-t-disable-cap_cfpc-on.patch + +- Updating to Sphinx v3.1.2 in Factory is exposing an issue in + qemu doc sources. Fix it + docs-fix-trace-docs-build-with-sphinx-3..patch + +- Fix DoS possibility in ati-vga emulation (CVE-2020-13800 + bsc#1172495) + ati-vga-check-mm_index-before-recursive-.patch +- Fix DoS possibility in Network Block Device (nbd) support + infrastructure (CVE-2020-10761 bsc#1172710) + nbd-server-Avoid-long-error-message-asse.patch +- Fix null pointer dereference possibility (DoS) in MegaRAID SAS + 8708EM2 emulation (CVE-2020-13659 bsc#1172386) + exec-set-map-length-to-zero-when-returni.patch +- Fix OOB access possibility in MegaRAID SAS 8708EM2 emulation + (CVE-2020-13362 bsc#1172383) + megasas-use-unsigned-type-for-reply_queu.patch +- Fix legacy IGD passthrough + hw-vfio-pci-quirks-Fix-broken-legacy-IGD.patch + +- The latest gcc10 available in Factory has the fix for the + issue this patch was created to avoid, so drop it + build-Work-around-gcc10-bug-by-not-using.patch + +- Switch to upstream versions of some patches we carry + add-enum-cast-to-avoid-gcc10-warning.patch + - > golan-Add-explicit-type-casts-for-nodnic.patch + Be-explicit-about-fcommon-compiler-direc.patch + - > build-Be-explicit-about-fcommon-compiler.patch + Do-not-apply-WORKAROUND_CFLAGS-for-host-.patch + - > build-Do-not-apply-WORKAROUND_CFLAGS-for.patch + Fix-s-directive-argument-is-null-error.patch + - > build-Fix-s-directive-argument-is-null-e.patch + Workaround-compilation-error-with-gcc-9..patch + - > build-Workaround-compilation-error-with-.patch + work-around-gcc10-problem-with-zero-leng.patch + - > intel-Avoid-spurious-compiler-warning-on.patch +- Fix vgabios issue for cirrus graphics emulation, which + effectively downgraded it to standard VGA behavior + vga-fix-cirrus-bios.patch + +- Fix OOB access possibility in ES1370 audio device emulation + (CVE-2020-13361 bsc#1172384) + es1370-check-total-frame-count-against-c.patch + +- Work around gcc 10 bug (boo#1172411) + build-Work-around-gcc10-bug-by-not-using.patch + +- Now that gcc10 compatibility is figured out, remove NO_WERROR=1 + again from ipxe make. + +- Fix segfault when doing HMP wavcapture (boo#1171712) + audio-fix-wavcapture-segfault.patch + +- Fix DoS in virtiofsd, where a FUSE client could exhaust the + number of available open files on the host (CVE-2020-10717 + bsc#1171110) + virtiofsd-add-rlimit-nofile-NUM-option.patch + virtiofsd-stay-below-fs.file-max-sysctl-.patch + +- Add more fixes for gcc10 compatibility: Use NO_WERROR=1 when + building ipxe sources, at least until we get gcc10 compatibility + figured out. Also add patch for explicitly using -fcommon + (boo#1171140) + Be-explicit-about-fcommon-compiler-direc.patch + and fix for tighter enum compatibility checking (boo#1171139) + add-enum-cast-to-avoid-gcc10-warning.patch + and a work around for what seems to be a compiler regression + (boo#1171123) + work-around-gcc10-problem-with-zero-leng.patch + +- Update to v5.0.0: See http://wiki.qemu.org/ChangeLog/5.0 + Take note that ongoing feature deprecation is tracked at both + http://wiki.qemu-project.org/Features/LegacyRemoval and in + the deprecated.html file installed with the qemu package + Some noteworthy changes: + * x86: EPYC-Rome vcpu model + * x86: vcpu model fixes for EPYC, Denverton, and Icelake-Server + * s390: (as previously mentioned) Protected Virtualization support: + start and control guest in secure mode (bsc#1167075 jsc#SLE-7407) + * s390: support for Adapter Interrupt Suppression while running in + KVM mode + * PowerPC: pseries: NVDIMMs with file backend supported + * PowerPC: powernv: KVM guests now runnable under TCG emulation + * PowerPC: powernv: Basic POWER10 support + * ARM: new boards: tacoma-bmc, Netduindo Plus 2, Orangepi PC + * ARM: 'virt' machine now supports vTPM and virtio-iommu devices + * ARM:Cortex-M7 CPU support + * ARM: Lots of architecture features now emulated + * ARM: TPM supported + * ARM: Timekeeping improvements + * ARM: LOTS more - refer to upstream changelog + * virtio-iommu + * VNC compatibility with noVNC improved + * Support for using memory backends for main/"built-in" guest RAM + * hostmem backends can now specify prealloc thread count + * Better Azure compatibility of VHD images + * Ceph namespaces supported + * Compress block filter driver can create compressed backup images + * virtiofsd availble for host filesystem passthrough + * Improved html based documentation is provided with this release + * Live migration support for external processes running on QEMU D-Bus + * Patches dropped (upstream unless otherwise noted): + i386-Add-MSR-feature-bit-for-MDS-NO.patch + i386-Add-macro-for-stibp.patch + i386-Add-new-CPU-model-Cooperlake.patch + arm-arm-powerctl-set-NSACR.-CP11-CP10-bi.patch + iotests-Skip-test-060-if-it-is-not-possi.patch + iotests-Skip-test-079-if-it-is-not-possi.patch + Revert-qemu-options.hx-Update-for-reboot.patch + iotests-Provide-a-function-for-checking-.patch + Fix-double-free-issue-in-qemu_set_log_fi.patch + iotests-Fix-IMGOPTSSYNTAX-for-nbd.patch + virtio-blk-fix-out-of-bounds-access-to-b.patch + i386-Resolve-CPU-models-to-v1-by-default.patch + numa-properly-check-if-numa-is-supported.patch + vhost-user-gpu-Drop-trailing-json-comma.patch + display-bochs-display-fix-memory-leak.patch + hw-arm-smmuv3-Apply-address-mask-to-line.patch + hw-arm-smmuv3-Correct-SMMU_BASE_ADDR_MAS.patch + hw-arm-smmuv3-Check-stream-IDs-against-a.patch + hw-arm-smmuv3-Align-stream-table-base-ad.patch + hw-arm-smmuv3-Use-correct-bit-positions-.patch + hw-arm-smmuv3-Report-F_STE_FETCH-fault-a.patch - block-Avoid-memleak-on-qcow2-image-info-.patch + blkdebug-Allow-taking-unsharing-permissi.patch + virtio-add-ability-to-delete-vq-through-.patch + virtio-update-queue-size-on-guest-write.patch + virtio-don-t-enable-notifications-during.patch + numa-Extend-CLI-to-provide-initiator-inf.patch + numa-Extend-CLI-to-provide-memory-latenc.patch + numa-Extend-CLI-to-provide-memory-side-c.patch + hmat-acpi-Build-Memory-Proximity-Domain-.patch + hmat-acpi-Build-System-Locality-Latency-.patch + hmat-acpi-Build-Memory-Side-Cache-Inform.patch + tests-numa-Add-case-for-QMP-build-HMAT.patch + qcow2-bitmaps-fix-qcow2_can_store_new_di.patch + backup-top-Begin-drain-earlier.patch + virtio-mmio-update-queue-size-on-guest-w.patch + virtio-net-delete-also-control-queue-whe.patch + intel_iommu-a-fix-to-vtd_find_as_from_bu.patch + target-i386-Add-new-bit-definitions-of-M.patch + target-i386-Add-missed-features-to-Coope.patch + hw-i386-pc-fix-regression-in-parsing-vga.patch + migration-test-ppc64-fix-FORTH-test-prog.patch + target-arm-Return-correct-IL-bit-in-merg.patch + target-arm-Set-ISSIs16Bit-in-make_issinf.patch + runstate-ignore-finishmigrate-prelaunch-.patch + migration-Rate-limit-inside-host-pages.patch + m68k-Fix-regression-causing-Single-Step-.patch + Revert-vnc-allow-fall-back-to-RAW-encodi.patch + vnc-prioritize-ZRLE-compression-over-ZLI.patch + target-i386-kvm-initialize-feature-MSRs-.patch + s390x-adapter-routes-error-handling.patch + iscsi-Cap-block-count-from-GET-LBA-STATU.patch + tpm-ppi-page-align-PPI-RAM.patch + hw-intc-arm_gicv3_kvm-Stop-wrongly-progr.patch + target-arm-fix-TCG-leak-for-fcvt-half-do.patch + block-fix-memleaks-in-bdrv_refresh_filen.patch - block-bdrv_set_backing_bs-fix-use-after-.patch - block-block-copy-fix-progress-calculatio.patch - block-Call-attention-to-truncation-of-lo.patch + iotests-add-test-for-backup-top-failure-.patch + audio-oss-fix-buffer-pos-calculation.patch + target-arm-monitor-query-cpu-model-expan.patch - block-fix-memleaks-in-bdrv_refresh_filen.patch - block-io-fix-bdrv_co_do_copy_on_readv.patch + target-arm-Correct-definition-of-PMCRDP.patch - block-qcow2-threads-fix-qcow2_decompress.patch - compat-disable-edid-on-correct-virtio-gp.patch - display-bochs-display-fix-memory-leak.patch - es1370-check-total-frame-count-against-c.patch - Fix-double-free-issue-in-qemu_set_log_fi.patch - Fix-use-afte-free-in-ip_reass-CVE-2020-1.patch - hmp-vnc-Fix-info-vnc-list-leak.patch + virtio-crypto-do-delete-ctrl_vq-in-virti.patch + virtio-pmem-do-delete-rq_vq-in-virtio_pm.patch + vhost-user-blk-delete-virtioqueues-in-un.patch - hw-arm-smmuv3-Align-stream-table-base-ad.patch - hw-arm-smmuv3-Apply-address-mask-to-line.patch - hw-arm-smmuv3-Check-stream-IDs-against-a.patch - hw-arm-smmuv3-Correct-SMMU_BASE_ADDR_MAS.patch - hw-arm-smmuv3-Report-F_STE_FETCH-fault-a.patch - hw-arm-smmuv3-Use-correct-bit-positions-.patch - hw-i386-pc-fix-regression-in-parsing-vga.patch - hw-intc-arm_gicv3_kvm-Stop-wrongly-progr.patch - i386-Resolve-CPU-models-to-v1-by-default.patch - intel_iommu-a-fix-to-vtd_find_as_from_bu.patch - iotests-add-test-for-backup-top-failure-.patch - iotests-Fix-IMGOPTSSYNTAX-for-nbd.patch + pc-bios-s390x-Save-iplb-location-in-lowc.patch - iscsi-Cap-block-count-from-GET-LBA-STATU.patch + block-qcow2-threads-fix-qcow2_decompress.patch - m68k-Fix-regression-causing-Single-Step-.patch + block-block-copy-fix-progress-calculatio.patch + block-io-fix-bdrv_co_do_copy_on_readv.patch + scsi-qemu-pr-helper-Fix-out-of-bounds-ac.patch + target-ppc-Fix-rlwinm-on-ppc64.patch + compat-disable-edid-on-correct-virtio-gp.patch + ppc-ppc405_boards-Remove-unnecessary-NUL.patch + block-Avoid-memleak-on-qcow2-image-info-.patch + block-bdrv_set_backing_bs-fix-use-after-.patch + hmp-vnc-Fix-info-vnc-list-leak.patch - migration-Rate-limit-inside-host-pages.patch - migration-test-ppc64-fix-FORTH-test-prog.patch - nbd-server-Avoid-long-error-message-asse.patch - net-tulip-check-frame-size-and-r-w-data-.patch - numa-properly-check-if-numa-is-supported.patch - pc-bios-s390x-Save-iplb-location-in-lowc.patch - ppc-ppc405_boards-Remove-unnecessary-NUL.patch - qcow2-bitmaps-fix-qcow2_can_store_new_di.patch - Revert-qemu-options.hx-Update-for-reboot.patch - Revert-vnc-allow-fall-back-to-RAW-encodi.patch - runstate-ignore-finishmigrate-prelaunch-.patch - s390-sclp-improve-special-wait-psw-logic.patch - s390x-adapter-routes-error-handling.patch - scsi-qemu-pr-helper-Fix-out-of-bounds-ac.patch - slirp-use-correct-size-while-emulating-c.patch - slirp-use-correct-size-while-emulating-I.patch - spapr-Fix-failure-path-for-attempting-to.patch - target-arm-Correct-definition-of-PMCRDP.patch - target-arm-fix-TCG-leak-for-fcvt-half-do.patch - target-arm-monitor-query-cpu-model-expan.patch - target-arm-Return-correct-IL-bit-in-merg.patch - target-arm-Set-ISSIs16Bit-in-make_issinf.patch + tcg-i386-Fix-INDEX_op_dup2_vec.patch + net-tulip-check-frame-size-and-r-w-data-.patch - target-i386-kvm-initialize-feature-MSRs-.patch - target-ppc-Fix-rlwinm-on-ppc64.patch + spapr-Fix-failure-path-for-attempting-to.patch + ati-vga-Fix-checks-in-ati_2d_blt-to-avoi.patch + xen-block-Fix-double-qlist-remove-and-re.patch + vpc-Don-t-round-up-already-aligned-BAT-s.patch - tcg-i386-Fix-INDEX_op_dup2_vec.patch + aio-wait-delegate-polling-of-main-AioCon.patch + async-use-explicit-memory-barriers.patch + vhost-user-gpu-Release-memory-returned-b.patch + vga-Raise-VRAM-to-16-MiB-for-pc-0.15-and.patch (no pc-0.15) + hw-i386-disable-smbus-migration-for-xenf.patch + s390x-Don-t-do-a-normal-reset-on-the-ini.patch + s390x-Move-reset-normal-to-shared-reset-.patch + s390x-Move-initial-reset.patch + s390x-Move-clear-reset.patch + s390x-kvm-Make-kvm_sclp_service_call-voi.patch + s390x-ipl-Consolidate-iplb-validity-chec.patch + s390x-Beautify-diag308-handling.patch + s390x-Add-missing-vcpu-reset-functions.patch + s390-sclp-improve-special-wait-psw-logic.patch + vhost-correctly-turn-on-VIRTIO_F_IOMMU_P.patch + util-add-slirp_fmt-helpers.patch + slirp-use-correct-size-while-emulating-I.patch + slirp-use-correct-size-while-emulating-c.patch - tpm-ppi-page-align-PPI-RAM.patch - util-add-slirp_fmt-helpers.patch - vhost-user-blk-delete-virtioqueues-in-un.patch - vhost-user-gpu-Drop-trailing-json-comma.patch - vhost-user-gpu-Release-memory-returned-b.patch - virtio-add-ability-to-delete-vq-through-.patch - virtio-blk-fix-out-of-bounds-access-to-b.patch - virtio-crypto-do-delete-ctrl_vq-in-virti.patch - virtio-mmio-update-queue-size-on-guest-w.patch - virtio-net-delete-also-control-queue-whe.patch - virtio-pmem-do-delete-rq_vq-in-virtio_pm.patch - virtio-update-queue-size-on-guest-write.patch - vpc-Don-t-round-up-already-aligned-BAT-s.patch - xen-block-Fix-double-qlist-remove-and-re.patch - -- Fix DoS possibility in Network Block Device (nbd) support - infrastructure (CVE-2020-10761 bsc#1172710) - block-Call-attention-to-truncation-of-lo.patch - nbd-server-Avoid-long-error-message-asse.patch -- Fix DoS possibility in ati-vga emulation (CVE-2020-13800 - bsc#1172495) - ati-vga-check-mm_index-before-recursive-.patch -- Fix null pointer dereference possibility (DoS) in MegaRAID SAS - 8708EM2 emulation (CVE-2020-13659 bsc#1172386) - exec-set-map-length-to-zero-when-returni.patch -- Fix OOB access possibility in MegaRAID SAS 8708EM2 emulation - (CVE-2020-13362 bsc#1172383) - megasas-use-unsigned-type-for-reply_queu.patch -- Fix OOB access possibility in ES1370 audio device emulation - (CVE-2020-13361 bsc#1172384) - es1370-check-total-frame-count-against-c.patch -- Fix vgabios issue for cirrus graphivs emulation, which - effectively downgraded it to standard VGA behavior - vga-fix-cirrus-bios.patch -- Remove problematic SMBus ACPI entry - causes problems for - Windows 10 since it wants a (non-existent) driver for it - i386-acpi-Remove-_HID-from-the-SMBus-ACP.patch - -- Fix segfault when doing HMP wavcapture (boo#1171712) - audio-fix-wavcapture-segfault.patch - -- Note: a stable patch we've already included addresses bsc#1167816 - migration-Rate-limit-inside-host-pages.patch - -- Fix use after free in slirp networking code (CVE-2020-1983 - bsc#1170940) - Fix-use-afte-free-in-ip_reass-CVE-2020-1.patch -- Increased disk space in _constraints file from 8GB to 9GB +- For SLE builds, leverage the html documentation by adding a link + to the SUSE specific support documentation (the *.txt support doc + was slightly tweaked to be acceptable as reStructuredText for + conversion to html) + docs-add-SUSE-support-statements-to-html.patch rdma-core +- Add srp_daemon-Fix-systemd-dependency.patch to make sure srp_daemon + is loaded at boot if enabled (bsc#1180196) + re2 +- Update to version 2020-11-01: + * Refactoring and fixes + +- update to 2020-10-01: + * build system updates and compiler warnings fixes + +- Update to version 2020-08-01: + * Various internal changes + +- Update to version 2020-06-01: + * Various internal changes + +- Enable PGO during build + +- Update to version 2020-05-03: + * Internal fixes and optimisations + * Remove deprecated APIs, SONAME change +- Build tests with optflags +- Disable tests for 32 bit architectures + recode +- Update to 3.7.8 + + Improvements to the build system. + + Fix man page generation, and document that help2man must be built with + gettext. + + Updates to nl, pt, sv translations (thanks, translators!). + +- update to 3.7.7 + + Improvements to the build system. + + Updates to nl, pt, sv translations (thanks, translators!). + -- fix build with automake 1.13.1 - remmina +- Build with kwallet and libappindicator on Tumbleweed, Leap and + SLE releases greater than SLE-15-SP2 (jsc#SLE-11656). + +- Update to release 1.4.8 + * Adding timout option for RDP connections. + * Avoid quickconnect to empty hostnames. Fixes #2240 + * Using full paths instead of variables + * Add support for quick connecting to RDP, VNC and SPICE from the + command line + * Add SSH support to the protocol handler + * Restart SSH session when user has provided new username or password to + allow for changing SSH user + * Use inline with AppStream 0.12 specification. + * Enabled GDK_SCROLL_SMOOTH for RDP/VNC + * Some fixes for the RDP backend + * Trim white from ip addresses input into quick connect bar + * Enhancing the SNAP info dialog box + * Adding FreeRDP log level setting + +- Set minimal freerdp version to 2.1.0, because with 2.0.0 + Remmina can not build. + +- Update to release 1.4.7 (boo#1173296) + * Allow compilation with libwinpr (FreeRDP) pre commit 8c5d96784d !2083 @giox069 + * Bugfixing v1.4.6 !2082 @antenore + * Spelling: Automatic negotiation !2084 @kingu + * Spelling: GNOME Shell, opt-in desc, comments !2085 @kingu + * Memory leak fixes !2086 @antenore and @giox069 + * RDP: Replacing deprecated FreeRDP function VeryfyCertificate !2087 @antenore + +- Update to release 1.4.6 + * Hotkey language fixed + * Fetch news from remmina.org optional + * allow saving notes in connection profile + * RDP: Improving hardware option parsing + * Rearranged widgets in a new Behavior tab + * Add separator only when there are saved profiles. Fixes #1914 + * Implementing resume all for FTP file transfer, should fix #2210 + * Edit or connect using multiple profile files from the command line + * Desktop session files for Remmina kiosk are optional + * Spelling fixes + * Translation fixes/improvements + * Feat/lebowski +- Disabled news +- Enabled kiosk sessions + +- Update to release 1.4.5 + * SSH plugin - adding font resize - closes #2201 (closed) !2059 (merged) @antenore + * Fixing keyboard grabbing issues with screenshot tool !2062 (merged) @giox069 + * Refactoring remmina_debug to avoid memory leaks and overhead, should fix #2202 (closed) !2061 (merged) @antenore + * Using directory only to expose artifacts !2060 (merged) @antenore +- removed remmina-bug-2061.patch now integrated in upstream + +- Update to release 1.4.4 + * RDP Plugin - Adding UDP support, implements #2153 !2038 @antenore; + * Adding proxy and local storage support !2039 @antenore; + * RDP option to prefer IPv6 AAAA record over IPv4 A records !2040 @antenore; + * Allow users to override the app ID !2044 @garymoon; + * Use icon name instead of localizable string in gtk_image_new_from_icon_name() !2045 @yurchor; + * Fix minor typos !2046 @yurchor; + * Don't grab when window has no focus, issue #2165 !2047 @giox069; + * SSH tunnel and VNC fixes !2048 @antenore; + * Adding explicitly trueColour in the client format structure. Fixes #2181 and #810 !2049 @antenore; + * Code refactoring. !2050 @antenore; + * Extract subtitle for translation !2051 @yurchor; + * [SSH] Connection pre/post command not replacing SSH tunnel parameters !2053 @antenore; + * SNAP: Remove libssh, available in distro !2052 @ed10vi; + * Create floating toolbar when ftb is set to off, 2189 !2054 @giox069; + * Adding Remmina_debug function to simplify log reporting !2055 @antenore; + * Removing OnlyShowIn as deprecated in the latest freedesktop spec. Closes #2198 !2056 @antenore; + * Cleaning up GLib deprecations !2058 @antenore; + * And much more committed directly in the master branch; + * Polish is a new language. + * Thousands of new strings have been translated with Weblate; +- added remmina-bug-2061.patch to fix for build issue in remmina issue #2202 + +- Add '-fPIC' on aarch64 to fix build + +- Update to release 1.4.3 + * KB grabbing fixes (mostly for Wayland) + * Adding Freerdp 3 compile option and using FreeRDP tag 2.0.0 as default + * Adding remmina terminal dependencies + * Updated translations + rpm +- Increase the maximum size of the signature header so that rpms + containing file signatures can be queried [bsc#1181568] + * new patch: sigheadersize.diff + +- Finish split of SUSE macros and some helpers into rpm-config-SUSE + [jsc#SLE-17074] + * new patch: findsupplements.diff + * modified patches: fileattrs.diff, brp.diff, macrosin.diff, + enable-postin-scripts-error.diff + * dropped files: rpm-suse_macros + * dropped patches: firmware.diff, initscriptsprov.diff, + modalias-encode.diff, modalias.diff, + compressed-kernel-modules.diff, findksyms.diff + rsyslog +- fix location and naming of journald dropin (bsc#1178288) + rubygem-nokogiri +- update to version 1.6.3.1 + * Addressing an Apple Macintosh installation problem for GCC + users. #1130 (Thanks, @zenspider!) +- channges in 1.6.3 + * Added Node#document? and Node#processing_instruction? + * [JRuby] Fix Ruby memory exhaustion vulnerability. #1087 + (Thanks, @ocher) + * [MRI] Fix segfault during GC when using `libxml-ruby` and + `nokogiri` together in multi-threaded environment. #895 + (Thanks, @ender672!) + * Building on OSX 10.9 stock ruby 2.0.0 now works. #1101 (Thanks, + @zenspider!) + * Node#parse now works again for HTML document nodes (broken in + 1.6.2+). + * Processing instructions can now be added via + Node#add_next_sibling. + +- remove unneded rm call, this is handled in gem_cleanup.sh now. + +- remove require on library - the library has version provides + +- add more cleanup + +- updated to version 1.6.2.1 + * Fix statically-linked libxml2 installation when using universal builds of Ruby. #1104 + * Patching `mini_portile` to address the git dependency detailed in #1102. + * Library load fix to address segfault reported on some systems. #1097 + A set of security and bugfix patches have been backported from the libxml2 and libxslt repositories onto the version of 2.8.0 packaged with Nokogiri, including these notable security fixes: + * https://git.gnome.org/browse/libxml2/commit/?id=4629ee02ac649c27f9c0cf98ba017c6b5526070f + * CVE-2013-2877 https://git.gnome.org/browse/libxml2/commit/?id=e50ba8164eee06461c73cd8abb9b46aa0be81869 + * CVE-2014-0191 https://git.gnome.org/browse/libxml2/commit/?id=9cd1c3cfbd32655d60572c0a413e017260c854df + It is recommended that you upgrade from 1.6.x to this version as soon as possible. + +- remove fdupes again, provided by ruby-macros 3 now + +- require new macros + +- Add %fdupes to spec + +- fix gem native extension path for Ruby 2.1, use gem_* macros + +- update to 1.6.1 + * Bugfixes + * (JRuby) Fix out of memory bug when certain invalid documents are parsed. + * (JRuby) Fix regression of billion-laughs vulnerability. #586 + +- remove ports (libxml tar) + +- avoid --force in u-a + +- use system libs + +- updated to version 1.6.0 + * Notes + * mini_portile is now a runtime dependency + * Ruby 1.9.2 and higher now required + * Features + * (MRI) Source code for libxml 2.8.0 and libxslt 1.2.26 is packaged + with the gem. These libraries are compiled at gem install time + unless the environment variable NOKOGIRI_USE_SYSTEM_LIBRARIES is + set. VERSION_INFO (also `nokogiri -v`) exposes whether libxml was + compiled from packaged source, or the system library was used. + * (Windows) libxml upgraded to 2.8.0 + * Deprecations + * Support for Ruby 1.8.7 and prior has been dropped + +- updated to version 1.5.10 + * (JRuby) Fix "null document" error when parsing an empty IO in jruby 1.7.3. #883 + * (JRuby) Fix schema validation when XSD has DOCTYPE set to DTD. #861 (Thanks, Patrick Cheng!) + * (MRI) Fix segfault when there is no default subelement for an HTML node. #917 + * (MRI) Fixed a memory leak in fragment parsing if nodes are not all subsequently reparented. #856 + * Use rb_ary_entry instead of RARRAY_PTR (you know, for Rubinius). #877 (Thanks, Dirkjan Bussink!) + * Fix TypeError when running tests. #900 (Thanks, Cédric Boutillier!) + +- updated to version 1.5.9 + * Bugfixes + * Ensure that prefixed attributes are properly namespaced when reparented. #869 + * Fix for inconsistent namespaced attribute access for SVG nested in HTML. #861 + * (MRI) Fixed a memory leak in fragment parsing if nodes are not all subsequently reparented. #856 + +- updated to version 1.5.8 + * Bugfixes + * (JRuby) Fix EmptyStackException thrown by elements with xlink:href attributes and no base_uri #534, #805 + * Fixes duplicate attributes issue introduced in 1.5.7. #865 + * Allow use of a prefixed namespace on a root node using Nokogiri::XML::Builder #868 + +- updated to version 1.5.7 + * Features + * Windows support for Ruby 2.0. + * Bugfixes + * SAX::Parser.parse_io throw an error when used with lower case encoding. #828 + * (JRuby) Java Nokogiri is finally green (passes all tests) under 1.8 and 1.9 mode. High five everyone. #798, #705 + * (JRuby) Nokogiri::XML::Reader broken (as a pull parser) on jruby - reads the whole XML document. #831 + * (JRuby) JRuby hangs parsing "&". #837 + * (JRuby) JRuby NPE parsing an invalid XML instruction. #838 + * (JRuby) Node#content= incompatibility. #839 + * (JRuby) to_xhtml doesn't print the last slash for self-closing tags in JRuby. #834 + * (JRuby) Adding an EntityReference after a Text node mangles the entity in JRuby. #835 + * (JRuby) JRuby version inconsistency: nil for empty attributes. #818 + * CSS queries for classes (e.g., ".foo") now treat all whitespace identically. #854 + * Namespace behavior cleaned up and made consistent between JRuby and MRI. #846, #801 (Thanks, Michael Klein!) + * (MRI) SAX parser handles empty processing instructions. #845 + +- updated to version 1.5.6 + * Features + * Improved performance of XML::Document#collect_namespaces. #761 (Thanks, Juergen Mangler!) + * New callback SAX::Document#processing_instruction (Thanks, Kitaiti Makoto!) + * Node#native_content= allows setting unescaped node contant. #768 + * XPath lookup with namespaces supports symbol keys. #729 (Thanks, Ben Langfeld.) + * XML::Node#[]= stringifies values. #729 (Thanks, Ben Langfeld.) + * bin/nokogiri will process a document from $stdin + * bin/nokogiri -e will execute a program from the command line + * bin/nokogiri --version will print the Xerces and NekoHTML versions when ran with JRuby. + * Bugfixes + * Nokogiri now detects XSLT transform errors. #731 (Thanks, Justin Fitzsimmons!) + * Don't throw an Error when trying to replace top-level text node in DocumentFragment. #775 + * Raise an ArgumentError if an invalid encoding is passed to the SAX parser. #756 (Thanks, Bradley Schaefer!) + * [JRuby] space prior to xml preamble causes nokogiri to fail parsing. (fixed along with #748) #790 + * [JRuby] Fixed the bug Nokogiri::XML::Node#content inconsistency between Java and C. #794, #797 + * [JRuby] raises INVALID_CHARACTER_ERR exception when EntityReference name starts with '#'. #719 + * [JRuby] doesn't coerce namespaces out of strings on a direct subclass of Node. #715 + * [JRuby] Node#content now renders newlines properly. #737 (Thanks, Piotr Szmielew!) + * [JRuby] Unknown namespace are ignore when the recover option is used. #748 + * [JRuby] XPath queries for namespaces should not throw exceptions when called twice in a row. #764 + * [JRuby] More consistent (with libxml2) whitespace formatting when emitting XML. #771 + * [JRuby] namespaced attributes broken when appending raw xml to builder. #770 + * [JRuby] Nokogiri::XML::Document#wrap raises undefined method `length' for nil:NilClass when trying to << to a node. #781 + * [JRuby] Fixed "bad file descriptor" bug when closing open file descriptors. #495 + * [JRuby] JRuby/CRuby incompatibility for attribute decorators. #785 + * [JRuby] Issues parsing valid XML with no internal subset in the DTD. #547, #811 + * [JRuby] Issues parsing valid node content when it contains colons. #728 + * [JRuby] Correctly parse the doc type of html documents. #733 + * [JRuby] Include dtd in the xml output when a builder is used with create_internal_subset. #751 + * [JRuby] builder requires textwrappers for valid utf8 in jruby, not in mri. #784 + +- update to 1.5.5 + * tons of fixes for jruby + +- update to 1.5.2 + * Features + * XML::Builder#comment allows creation of comment nodes. + * CSS searches now support namespaced attributes. #593 + * Java integration feature is added. Now, XML::Document.wrap + and XML::Document#to_java methods are available. + * RelaxNG validator support in the `nokogiri` cli utility. #591 (thanks, Dan Radez!) + * Bugfixes + * Fix many memory leaks and segfault opportunities. Thanks, Tim Elliott! + * extconf searches homebrew paths if homebrew is installed. + * Inconsistent behavior of Nokogiri 1.5.0 Java #620 + * Inheriting from Nokogiri::XML::Node on JRuby (1.6.4/5) fails #560 + * XML::Attr nodes are not allowed to be added as node children, so an + exception is raised. #558 + * No longer defensively "pickle" adjacent text nodes on + Node#add_next_sibling and Node#add_previous_sibling calls. #595. + * Java version inconsistency: it returns nil for empty attributes #589 + * to_xhtml incorrectly generates

when tag is empty #557 + * Document#add_child now accepts a Node, NodeSet, DocumentFragment, + or String. #546. + * Document#create_element now recognizes namespaces containing + non-word characters (like "SOAP-ENV"). This is mostly relevant to + users of Builder, which calls Document#create_element for nearly + everything. #531. + * File encoding broken in 1.5.0 / jruby / windows #529 + * Java version does not return namespace defs as attrs for ::HTML #542 + * Bad file descriptor with Nokogiri 1.5.0 #495 + * remove_namespace! doesn't work in pure java version #492 + * The Nokogiri Java native build throws a null pointer exception + when ActiveSupport's .blank? method is called directly on a parsed + object. #489 + * 1.5.0 Not using correct character encoding #488 + * Raw XML string in XML Builder broken on JRuby #486 + * Nokogiri 1.5.0 XML generation broken on JRuby #484 + * Do not allow multiple root nodes. #550 + * Fixes for custom XPath functions. #605, #606 (thanks, Juan Wajnerman!) + * Node#to_xml does not override :save_with if it is provided. #505 + * Node#set is a private method [JRuby]. #564 (thanks, Nick Sieger!) + * C14n cleanup and Node#canonicalize (thanks, Ivan Pirlik!) #563 + +- Drop -1_5 suffix and go back to rubygem-nokogiri. This makes possible + to update rubygem-nokogiri on Factory. + +- Create rubygem-nokogiri-1_5 package + +- update to version 1.5.0 + - Notes + - JRuby performance tuning + - JRuby support is provided by a new pure-java backend. + - Features + - extracted sets of Node::SaveOptions into Node::SaveOptions::DEFAULT_{X,H,XH}TML (refactor) + - Bugfixes + - default output of XML on JRuby is no longer formatted due to inconsistent + whitespace handling. #415 + - (JRuby) making empty NodeSets with null `nodes` member safe to operate on. #443 + - Fix a bug in advanced encoding detection that leads to partially duplicated + document when parsing an HTML file with unknown encoding. + - Add support for . + - Node#inner_text no longer returns nil. (JRuby) #264 + - Deprecations + - Ruby 1.8.6 is deprecated. Nokogiri will install, but official support + is ended. + - LibXML 2.6.16 and earlier are deprecated. Nokogiri will refuse to install. + - FFI support is removed. +- 1.4.7 + - Bugfixes + - Fix a bug in advanced encoding detection that leads to partially duplicated + document when parsing an HTML file with unknown encoding. + Thanks, Timothy Elliott (@ender672)! #478 +- 1.4.6 + - Notes + - This version is functionally identical to 1.4.5. + - Ruby 1.8.6 support has been restored. +- 1.4.5 + - New Features + - Nokogiri::HTML::Document#title accessor gets and sets the document title. + - extracted sets of Node::SaveOptions into Node::SaveOptions::DEFAULT_{X,H,XH}TML (refactor) + - Raise an exception if a string is passed to Nokogiri::XML::Schema#validate. #406 + - Bugfixes + - Node#serialize-and-friends now accepts a SaveOption object as the, erm, save object. + - Nokogiri::CSS::Parser has-a Nokogiri::CSS::Tokenizer + - JRUBY+FFI only + - Weak references are now threadsafe. #355 + - Make direct start_element() callback (currently used for HTML::SAX::Parser) + pass attributes in assoc array, just as emulated start_element() + callback does. rel. #356 + - HTML::SAX::Parser should call back a block given to parse*() if any, + just as XML::SAX::Parser does. + - Add further encoding detection to HTML parser that libxml2 does not do. + - Document#remove_namespaces! now handles attributes with namespaces. #396 + - XSLT::Stylesheet#transform no longer segfaults when handed a non-XML::Document. #452 + - XML::Reader no longer segfaults when under GC pressure. #439 + +- Added provides nokogiri_1_4, this is needed to build latest + versions of rubygem-feedzirra + +- Changed licence to MIT + +- update to version 1.4.4 + * New Features + o XML::Node#children= sets the node’s inner html (much like #inner_html=), + but returns the reparent node(s). + o XSLT supports function extensions. #336 + o XPath bind parameter substitution. #329 + o XML::Reader node type constants. #369 + o SAX Parser context provides line and column information + * Bugfixes + o XML::DTD#attributes returns an empty hash instead of nil when there are no + attributes. + o XML::DTD#{keys,each} now work as expected. #324 + o {XML,HTML}::DocumentFragment.{new,parse} no longer strip leading and trailing + whitespace. #319 + o XML::Node#{add_child,add_previous_sibling,add_next_sibling,replace} return a + NodeSet when passed a string. + o Unclosed tags parsed more robustly in fragments. #315 + o XML::Node#{replace,add_previous_sibling,add_next_sibling} edge cases fixed + related to libxml’s text node merging. #308 + o Fixed a segfault when GC occurs during xpath handler argument marshalling. #345 + o Added hack to Slop decorator to work with previously defined methods. #330 + o Fix a memory leak when duplicating child nodes. #353 + o Fixed off-by-one bug with nth-last-{child,of-type} CSS selectors when NOT using + an+b notation. #354 + o Fixed passing of non-namespace attributes to SAX::Document#start_element. #356 + o Workaround for libxml2 in-context parsing bug. #362 + o Fixed NodeSet#wrap on nodes within a fragment. #331 + +- update to version 1.4.3.1 + * New Features + o XML::Reader#empty_element? returns true for empty elements. #262 + o Node#remove_namespaces! now removes namespace declarations as well. #294 + o NodeSet#at_xpath, NodeSet#at_css and NodeSet#> do what the corresponding + methods of Node do. + * Bugfixes + o XML::NodeSet#{include?,delete,push} accept an XML::Namespace + o XML::Document#parse added for parsing in the context of a document + o XML::DocumentFragment#inner_html= works with contextual parsing! #298, #281 + o lib/nokogiri/css/parser.y Combined CSS functions + pseudo selectors fixed + o Reparenting text nodes is safe, even when the operation frees adjacent + merged nodes. #283 + o Fixed libxml2 versionitis issue with xmlFirstElementChild et al. #303 + o XML::Attr#add_namespace now works as expected. #252 + o HTML::DocumentFragment uses the string’s encoding. #305 + o Fix the CSS3 selector translation rule for the general sibling combinator + +- update to version 1.4.2 + - XML::Node#parse will parse XML or HTML fragments with respect + to the context node. + - XML::Node#namespaces returns all namespaces defined in the node + and all ancestor nodes (previously did not return ancestors' + namespace definitions). + - Added Enumerable to XML::Node + - Nokogiri::XML::Schema#validate now uses xmlSchemaValidateFile + if a filename is passed, which is faster and more + memory-efficient. GH #219 + - XML::Document#create_entity will create new EntityDecl objects. + GH #174 + - JRuby FFI implementation no longer uses ObjectSpace._id2ref, + instead using Charles Nutter's rocking Weakling gem. + - Nokogiri::XML::Node#first_element_child fetch the first child + node that is an ELEMENT node. + - Nokogiri::XML::Node#last_element_child fetch the last child + node that is an ELEMENT node. + - Nokogiri::XML::Node#elements fetch all children nodes that are + ELEMENT nodes. + - Nokogiri::XML::Node#add_child, #add_previous_sibling, #before, + [#]add_next_sibling, #after, #inner_html, #swap and #replace all + now accept a Node, DocumentFragment, NodeSet, or a string + containing markup. + - Node#fragment? indicates whether a node is a DocumentFragment. + - XML::NodeSet is now always decorated (if the document has + decorators). GH #198 + - XML::NodeSet#slice gracefully handles offset+length larger than + the set length. GH #200 + - XML::Node#content= safely unlinks previous content. GH #203 + - XML::Node#namespace= takes nil as a parameter + - XML::Node#xpath returns things other than NodeSet objects. + GH #208 + - XSLT::StyleSheet#transform accepts hashes for parameters. + GH #223 + - Psuedo selectors inside not() work. GH #205 + - XML::Builder doesn't break when nodes are unlinked. + Thanks to vihai! GH #228 + - Encoding can be forced on the SAX parser. Thanks Eugene + Pimenov! GH #204 + - XML::DocumentFragment uses XML::Node#parse to determine + children. + - Fixed a memory leak in xml reader. Thanks sdor! GH #244 + - Node#replace returns the new child node as claimed in the RDoc. + Previously returned +self+. + +- use rubygems_requires macro + +- update to 1.4.1 + - Added Nokogiri::LIBXML_ICONV_ENABLED + - Alias Node#[] to Node#attr + - XML::Node#next_element added + - XML::Node#> added for searching a nodes immediate children + - XML::NodeSet#reverse added + - Added fragment support to Node#add_child, + Node#add_next_sibling, + - Node#add_previous_sibling, and Node#replace. + - XML::Node#previous_element implemented + - Rubinius support + - Ths CSS selector engine now supports :has() + - XML::NodeSet#filter() was added + - XML::Node.next= and .previous= are aliases for add_next_sibling + and add_previous_sibling. GH #183 + - XML fragments with namespaces do not raise an exception + (regression in 1.4.0) + - Node#matches? works in nodes contained by a DocumentFragment. + GH #158 + - Document should not define add_namespace() method. GH #169 + - XPath queries returning namespace declarations do not segfault. + - Node#replace works with nodes from different documents. GH #162 + - Adding XML::Document#collect_namespaces + - Fixed bugs in the SOAP4R adapter + - Fixed bug in XML::Node#next_element for certain edge cases + - Fixed load path issue with JRuby under Windows. GH #160. + - XSLT#apply_to will honor the "output method". Thanks + richardlehane! + - Fragments containing leading text nodes with newlines now parse + properly. GH #178. + +- update to 1.4.0 + - Node#at_xpath returns the first element of the NodeSet matching + the XPath expression. + - Node#at_css returns the first element of the NodeSet matching + the CSS selector. + - NodeSet#| for unions GH #119 (Thanks Serabe!) + - NodeSet#inspect makes prettier output + - Node#inspect implemented for more rubyish document inspecting + - Added XML::DTD#external_id + - Added XML::DTD#system_id + - Added XML::ElementContent for DTD Element content validity + - Better namespace declaration support in Nokogiri::XML::Builder + - Added XML::Node#external_subset + - Added XML::Node#create_external_subset + - Added XML::Node#create_internal_subset + - XML Builder can append raw strings (GH #141, patch from dudleyf) + - XML::SAX::ParserContext added + - XML::Document#remove_namespaces! for the namespace-impaired + - returns nil when HTML documents do not declare a meta encoding + tag. GH #115 + - Uses RbConfig::CONFIG['host_os'] to adjust ENV['PATH'] GH #113 + - NodeSet#search is more efficient GH #119 (Thanks Serabe!) + - NodeSet#xpath handles custom xpath functions + - Fixing a SEGV when XML::Reader gets attributes for current node + - Node#inner_html takes the same arguments as Node#to_html GH#117 + - DocumentFragment#css delegates to it's child nodes GH #123 + - NodeSet#[] works with slices larger than NodeSet#length GH #131 + - Reparented nodes maintain their namespace. GH #134 + - Fixed SEGV when adding an XML::Document to NodeSet + - XML::SyntaxError can be duplicated. GH #148 + - Hpricot compatibility layer removed + +- update to 1.3.3 + - NodeSet#children returns all children of all nodes + - Override libxml-ruby's global error handler + - ParseOption#strict fixed + - Fixed a segfault when sending an empty string to + Node#inner_html= GH #88 + - String encoding is now set to UTF-8 in Ruby 1.9 + - Fixed a segfault when moving root nodes between documents. GH + [#91] + - Fixed an O(n) penalty on node creation. GH #101 + - Allowing XML documents to be output as HTML documents + - Hpricot compatibility layer will be removed in 1.4.0 + - Nokogiri::XML::DTD#validate will validate your document + - Nokogiri::XML::NodeSet#search will search top level nodes. GH + 73 + - Removed namespace related methods from Nokogiri::XML::Document + - Fixed a segfault when a namespace was added twice + - Made nokogiri work with Snow Leopard GH 79 + - Mailing list has moved to: + groups.google.com/group/nokogiri-talk + - HTML fragments now correctly handle comments and CDATA blocks. + GH 78 + - Nokogiri::XML::Document#clone is now an alias of dup + - Nokogiri::XML::SAX::Document#start_element_ns is deprecated, + please switch to + Nokogiri::XML::SAX::Document#start_element_namespace + - Nokogiri::XML::SAX::Document#end_element_ns is deprecated, + please switch to + Nokogiri::XML::SAX::Document#end_element_namespace +- from 1.3.1 + - extconf.rb checks for optional RelaxNG and Schema functions + - Namespace nodes are added to the Document node cache + - Builder changes scope based on block arity + - Builder supports methods ending in underscore similar to tagz + - Nokogiri::XML::Node#<=> compares nodes based on Document + position + - Nokogiri::XML::Node#matches? returns true if Node can be found + with given selector. + - Nokogiri::XML::Node#ancestors now returns an + Nokogiri::XML::NodeSet + - Nokogiri::XML::Node#ancestors will match parents against + optional selector + - Nokogiri::HTML::Document#meta_encoding for getting the meta + encoding + - Nokogiri::HTML::Document#meta_encoding= for setting the meta + encoding + - Nokogiri::XML::Document#encoding= to set the document encoding + - Nokogiri::XML::Schema for validating documents against XSD + schema + - Nokogiri::XML::RelaxNG for validating documents against RelaxNG + schema + - Nokogiri::HTML::ElementDescription for fetching HTML element + descriptions + - Nokogiri::XML::Node#description to fetch the node description + - Nokogiri::XML::Node#accept implements Visitor pattern + - bin/nokogiri for easily examining documents (Thanks Yutaka + HARA!) + - Nokogiri::XML::NodeSet now supports more Array and Enumerable + operators: index, delete, slice, - (difference), + + (concatenation), & (intersection), push, pop, shift, == + - Nokogiri.XML, Nokogiri.HTML take blocks that receive + Nokogiri::XML::ParseOptions objects + - Nokogiri::XML::Node#namespace returns a + Nokogiri::XML::Namespace + - Nokogiri::XML::Node#namespace= for setting a node’s namespace + - Nokogiri::XML::DocumentFragment and + Nokogiri::HTML::DocumentFragment have a sensible API and a more + robust implementation. + - JRuby 1.3.0 support via FFI. + - Fixed a problem with nil passed to CDATA constructor + - Fragment method deals with regular expression characters + (Thanks Joel!) LH 73 + - Fixing builder scope issues LH 61, LH 74, LH 70 + - Fixed a problem when adding a child could remove the child + namespace LH#78 + - Fixed bug with unlinking a node then reparenting it. (GH#22) + - Fixed failure to catch errors during XSLT parsing (GH#32) + - Fixed a bug with attribute conditions in CSS selectors (GH#36) + - Fixed intolerance of HTML attributes without values in + Node#before/after/inner_html=. (GH#35) + +- update to 1.2.3 + * Fixing bug where a node is passed in to Node#new + * Namespace should be assigned on DocumentFragment creation. + LH #66 + * Nokogiri::XML::NodeSet#dup works GH #10 + * Nokogiri::HTML returns an empty Document when given a blank + string GH#11 + * Adding a child will remove duplicate namespace declarations + LH #67 + * Builder methods take a hash as a second argument + +- initial package for 1.2.2 + schily-libs +- fix_junk_in_partition.patch: Initialize memory that created the + partition table instead of writing random bytes to it (bsc#1178692) + shim -- Include suse-signed shim (bsc#1177315) +- Update the SLE signature +- Exclude some patches from x86_64 to avoid breaking the signature +- Add shim-correct-license-in-headers.patch back for x86_64 to + match the SLE signature +- Add linker-version.pl to modify the EFI/PE header to match the + SLE signature + +- Disable the signature attachment for AArch64 temporarily until + we get a real one. + +- Add shim-bsc1177315-verify-eku-codesign.patch to check CodeSign + in the signer's EKU (bsc#1177315) +- Add shim-bsc1177789-fix-null-pointer-deref-AuthenticodeVerify.patch + to fix NULL pointer dereference in AuthenticodeVerify() + (bsc#1177789, CVE-2019-14584) +- Add shim-bsc1177315-fix-buffer-use-after-free.patch to fix buffer + use-after-free at the end of the EKU verification (bsc#1177315) + +- Add shim-bsc1177404-fix-a-use-of-strlen.patch to fix the length + of the option data string to launch the program correctly + (bsc#1177404) +- Add shim-bsc1175509-more-tpm-fixes.patch to fix the file path + in the tpm even log (bsc#1175509) + +- Add shim-VLogError-Avoid-Null-pointer-dereferences.patch to fix + VLogError crash in AArch64 (jsc#SLE-15824) +- Add shim-fix-verify-eku.patch to fix the potential crash at + verify_eku() (jsc#SLE-15824) +- Add shim-do-not-write-string-literals.patch to fix the potential + crash when accessing the DEFAULT_LOADER string (jsc#SLE-15824) + +- Enable build on aarch64 +- Add shim-bsc1175509-tpm2-fixes.patch to fix the TPM2 measurement + (bsc#1175509) + -- Updated SUSE signature +- Updated openSUSE signature + +- Replace shim-correct-license-in-headers.patch with the upstream + commit: shim-bsc1174512-correct-license-in-headers.patch + (bsc#1174512) spice +- Note: The Mar 9, 2020 spec file cleanup and the following change + satisfy jsc#SLE-15520 +- Remove gstreamer-plugins-libav and gstreamer-plugins-good as + BuildRequires. Even though the configure step of the package + build does report detection of features from these packages, the + build is actually not otherwise influenced by the presence of + these packages. It is at runtime when these plugin packages are + utilized, so leave the Recommends for these in the package spec, + so that if the packages are available in a distro they can get + installed and utilized. + +- Fix buffer overflow vunerabilities in QUIC image decoding + (CVE-2020-14355 bsc#1177158) + 0001-quic-Check-we-have-some-data-to-start-decoding-quic-.patch + 0002-quic-Check-image-size-in-quic_decode_begin.patch + 0003-quic-Check-RLE-lengths.patch + 0004-quic-Avoid-possible-buffer-overflow-in-find_bucket.patch + +- Clean up some spec file conditionals that are no longer helpful + +- Update to v0.14.3 release + The main changes are WebSocket and support for Windows. + * Add support for WebSocket, this will allow to use spice-html5 + without proxy + * Support Windows, now Qemu Windows can be build enabling Spice + * Fix some alignment problem + * Converted some documentation to Asciidoc format to make easier + to update, updated some + * Minor compatibility fix for PPC64EL and ARMHF + * Minor fixes for big endian machines like MIPS + * Avoid some crashes with some buggy guest drivers, simply + ignore the invalid request + * Fix for old OpenSSL versions + * Minor fix for Windows clients and brushes, fixed an issue with + Photoshop under Windows 7 + * Add ability to query video-codecs + * Small use-after-free fix + * Fix for debugging recording/replaying using QUIC images + * Fix a regression where spice reported no monitors to the client + * Fix DoS in spicevmc if WebDAV used + * Updated and improved test migration script + * Some minor fixes to smartcard support + * Avoid possible disconnection using proxies using a in-flow + keepalive mechanism +- The NEWS file is now named CHANGELOG.md, and the previously + provided ChangeLog, which was a summary of the git log is no + longer provided + +- Enable video codec support (VPX and MJPEG) + spice-gtk +- Fix buffer overflow vunerabilities in QUIC image decoding + (CVE-2020-14355 bsc#1177158) + 0001-quic-Check-we-have-some-data-to-start-decoding-quic-.patch + 0002-quic-Check-image-size-in-quic_decode_begin.patch + 0003-quic-Check-RLE-lengths.patch + 0004-quic-Avoid-possible-buffer-overflow-in-find_bucket.patch + +- Remove unneeded Recommends for spice-gtk-lang from spec file + +- Update to version 0.38: +- #108 - Add CD/DVD redirection, to allow mounting ISO images from client. +- #99 - Fix display scaling with EGL and HiDPI monitors +- #19 - Fix display corruption on HiDPI +- #82 - Various clipboard fixes & improvements, related to host/guest races & + cltipboard managers +- [rhbz#1720532] - Fix buffer overflow on sending data with shared-folders +- [rhbz#1695618] - Fix hang over failed migration +- API: add spice_display_channel_change_preferred_video_codec_types() +- Several usbredir related fixes and code improvements +- Several video stream related fixes and code improvements +- Several shared-folder related fixes and code improvements +- file-xfer: fix stuck transfer while transfering multiple big files at once +- file-xfer: fix possible crash on Windows +- Migration: Fix metadata swap of channels +- build-sys: remove autotools (transition to meson completed) +- Require spice-protocol >= 0.14.1 +- Require libusb >= 1.0.21 +- Translations: + - Update Italian + - Add Russian +- Use meson build system +- Include a post release patch to compensate for an issue where the + build does need to find celt resources even though we build + without Celt support. + Remove-celt-support.patch + +- Clean up some spec file conditionals that are no longer helpful +- Do other spec file clean up which has been pending for a while + supportutils +- Additions to version 3.1.13 + + Added update-alternatives to etc.txt #82 + + Collects rotated logs with different compression types (bsc#1180478) + + Added GPL-2.0-only license tag to spec file + +- Additions to version 3.1.12 + + btrfs_info: add -pce argument to qgroup show #80 + + docker: add /etc/docker/daemon.json contents #81 + +- Additions to version 3.1.12 + + Capture IBM Power bootlist (SLE-15557) + + Fix spelling typos in man pages #78 + + Collect multipath wwids file #77 + + Removed unnecessary appname parameter from HTTP upload URL + + added aa-status #74 + +- Additions to version 3.1.12 + + [powerpc] Collect logs for power specific components #72 + + supportconfig: fs-btrfs: Add "btrfs device stats" output #73 + +- Additions to version 3.1.11 + + Changes affecting supportconfig + - disk_info: Show discard information in lsblk #70 + - memory_info: Show VMware memory balloon infomation #71 + +- Addition to version 3.1.10 + + Changes affecting analyzevmcore + - Fixed typo in error message #67 + + Changes affecting supportconfig + - Fixed btrfs errors (bsc#1168894) + - Large ntp.txt with binary data (bsc#1169122) + - Check btrfs balance status #69 + susepaste +- Add 0001-susepaste-Fix-parsing-of-returned-Location-header.patch: + fix parsing of location header returned by susepaste.org + (boo#1166669). + +- Trim duplicated wording from descriptions. + +- updated to version 0.6 + - error out when pasting unreadable file + - fix one bashism + - allow to specify protocol + -- packaged first version of the script - sysfsutils -- Fix cdev name comparison (bsc#1155305), adding patches: - * sysfsutils-Fix-issue-with-sysfs-name-comparisons.patch - * sysfsutils-Limit-cdev-name-length-comparsion-to-strlen-1.patch - -- Libraries are back to %{_libdir}, /usr merge project - -- Create devel package. - -- use %_smp_mflags - -- add baselibs.conf as a source - -- remove static libraries - -- obsolete old -XXbit packages (bnc#437293) - -- Include systool binary (bnc#391754) - -- added baselibs.conf file to build xxbit packages - for multilib support - -- Run ldconfig on %post (#204063) -- Do not duplicate .so symlink (#235332) - systemd +- Remove a fix specific to Factory/TW distros. + +- Leave nss files in /usr/lib*, glibc loads them from there just fine + (Changes from Ludwig Nussel, backported from Factory) +- Define %_pamdir until it's defined by pam-devel in SLE + +- Use %_pamdir to install pam modules + +- Import commit 64dfb99ca3c9cbc75f6abe7aa6aa60f66ae4210d + 65f4fa852e write_net_rules: set execute bits (bsc#1178561) + 4a543f0257 journal: send journald logs to kmsg again + +- Import commit 68b1d8a9472091ccfbbc2ca234d2583716d57a2a (include merge of v246.9) + 26df96473f busctl: add a timestamp to the output of the busctl monitor command (bsc#1180225) + For a complete list of changes, visit: + https://github.com/openSUSE/systemd/compare/2acc5eb602eb8029f4547e37eb433c804a7db3a1...68b1d8a9472091ccfbbc2ca234d2583716d57a2a + +- Enable support for zstd compression + systemd-journald will now use zstd for compressing large fields in + journal files. systemd-coredump will also use this algorithm to + compress coredump files. + Please note that systemd older than v246 won't be able to read new + journal files as zstd algorithm is not supported by these versions. + This incompatible change was actually not the only one introduced by + v246 since the hash tables in journal files have been hardened + against hash collisions too in an incompatible way with older + versions. + +- Drop 1001-journald-turn-ForwardToSyslog-on-by-default.patch + ForwardToSyslog is turned on by rsyslog. + +- Explicitly require group(kvm) by udev: the group used to be + created by system-users-hardware, but has been split/moved to + qemu/kvm, where it is more logical. The file + /usr/lib/udev/rules.d/50-udev-default.rules references this + group, thus we should make sure the group exists. Otherwise there + are errors in the journal in the form of: + /usr/lib/udev/rules.d/50-udev-default.rules:86 Unknown group 'kvm', ignoring + +- Import commit 2acc5eb602eb8029f4547e37eb433c804a7db3a1 (include merge of v246.7) + 6131548b0f udev: link_update() should fail if the entry in symlink dir couldn't have been created + f6cb8c7d79 udev: make algorithm that selects highest priority devlink less susceptible to race conditions (bsc#1084748) + fc64e47291 basic/stat-util: make mtime check stricter and use entire timestamp + ae91d45d3d test/sys-script.py: add missing DEVNAME entries to uevents + 09e3473a7a test/udev_test.pl: add "expected good" count + fc89379b5b test/udev-test.pl: suppress umount error message at startup + d9e114f10d test/sd-script.py: new helper script for udev testing + f2672eae66 test/udev-test.pl: generator for large list of block devices + 42b68e43e2 test/udev-test.pl: add repeat count + eec8ec375a tests/udev-test.pl: add multiple device test + 73b8f3cf93 test/udev-test.pl: count "good" results + ee04d70bb6 test/udev-test.pl: merge import parent tests into one + 03942c8fbc test/udev-test.pl: merge "space and var with space" tests + ec95546189 test/udev-test.pl: remove bogus rules from magic subsys test + f704429217 test/udev-test.pl: Make some tests a little harder + ce1a877dc0 test/udev-test.pl: last_rule is unsupported + 913c72ff2d test/udev-test.pl: fix wrong test descriptions + eeb25a1be6 test/udev-test.pl: allow checking multiple symlinks + 00ab4292da test/udev-test.pl: test correctness of symlink targets + 5b71ee2911 test/udev-test.pl: use computed devnode name + 2e04bb9ae8 test/udev-test.pl: allow concurrent additions and removals + 8816dd593c test/udev-test.pl: create rules only once + 214418632d test/udev-test.pl: allow multiple devices per test + 1eb6b23f27 udev-test: do not rely on "mail" group being defined + 4a0a4dcf10 udev: Fix sound.target dependency (bsc#1179363) + For a complete list of changes, visit: + https://github.com/openSUSE/systemd/compare/9dd0c9a724a9361207ab4a9ad29d144987fb373f...2acc5eb602eb8029f4547e37eb433c804a7db3a1 +- Rebase 1008-Restore-support-for-halt.local.patch + taglib +- Add patch from upstream to fix a possible file corruption of ogg + files (boo#1179817, gh#taglib/taglib#864): + * 0001-Fix-possible-Ogg-packet-losses.patch + -- Update to 1.9.1 - * Fixed binary incompatible change in TagLib::Map and TagLib::List. - * Fixed constructing String from ByteVector. - * Fixed compilation on MSVC with the /Zc:wchar_t- option. - * Fixed detecting of RIFF files with invalid chunk sizes. - * Added TagLib::MP4::PropertyMap::codec(). - tcl +- bsc#1179615: TCL_LIBS in tclConfig.sh possibly breaks build on + newer service packs and is not needed for linking to a dynamic + libtcl anyway, so make it empty. + -- avoid %nil to pass download_files service - -- Update license tag to SPDX 1.2. - -- Update to 8.6.2: - * TIP 429: New command [string cat]. - * [lsearch -integer], [lsort -integer] operate on wide ints. - * ** POTENTIAL INCOMPATIBILITY *** - * [dict replace], [dict remove] return canonical dicts. - * ** POTENTIAL INCOMPATIBILITY *** - * Improved ::env synchronization with environment. - * transchans converted blocked writes to errors. - * [info class subclasses ::oo::object] includes ::oo::class . - * Fix: [chan configure -error] breaks [socket -async] connection. - * Better handle NUL in filenames. - * Fix: failures in nested ensemble bytecode compiler. - * Fixed crashes in... - - [apply {{} {while 1 {a {*} - [return -level 0 -code continue]}}}] - - [apply {{} {namespace upvar a b [x]}}] - - [coroutine X coroutine Y info frame] - - multi-interp font teardown - - oo chain deletion - * Plugged memory leaks in... - - execution traced coroutine deletion - - [close [zlib push ... -dictionary ...]] - - AtForkChild() - - managing oo instance lists - * Performance addressed in... - - [lappend l $multiple $arg] compile: quadratic -> linear - - binary [chan copy]: move bytes instead of copy - - Improved bytecode: [catch], [foreach], [lmap], - num. conversion - * Bytecode compiled: [concat], [linsert], [namespace origin], - [next], [nextto], [string is], [string replace], - [string tolower], [string totitle], [string toupper], - [string trim], [string trimleft], - [string trimright] [yieldto] - * New package releases: - http 2.8.8: Accept upper case schemes in URLs - tcltest 2.3.7: cleanup runs before output comparisons - platform 1.0.13: Update macosx-* variant compatibilities - TclOO 1.0.2 - itcl 4.0.1 - thread 2.7.1 - sqlite3 3.8.6 - tdbc* 1.0.1 -- removed tcl-unload.patch and tcl.patch - -- Final 8.6.1 release. Changes since rc0 include: - * Fix segfaults in [dict] compilers. - * Fix mem leak in [lreplace]. - -- New patchlevel release 8.6.1rc0: -- Many optimaizations, improvements and tightened stack management - in bytecode -- Many enhancements and Bugfixes: - * Improve ensemble bytecode - * Selected script code improvements => tcltest 2.3.6 - * Broaden glibc version detection => platform 1.0.12 - * [array set] compile improvement - * [auto_mkindex] support Tcl00 - * Tcl_Zlib*() routines tolerate NULL interps - * Improved [list {*}...] compile - * Restored lost performance appending to long strings - * Errors from execution traces become errors of the command - -- New version: 8.6.0. -- Itcl is now part of the Tcl main package. -- Disable profile feedback based optimization for now. -- Highlihhts of the new version: - * Object Oriented Programming: The commands of the TclOO package - are now part of Tcl itself. This gives Tcl a built-in object - system that is fully dynamic, class-based, and includes - advanced features such as meta-classes, filters, and mixins. - * New version 4 of the popular package Itcl (aka incr Tcl) is - also included, now built on a TclOO foundation, granting - support for some traditional OO Tcl programming out of the box - as well. - * Stackless Evaluation: The evaluation of many levels of nested - proc calls are no longer implemented as a stack of nested C - routine calls. This revision in the internal implementation of - Tcl evaluation makes deep recursion in Tcl scripts safe to - do. But there's more... - * This new implementation enables a collection of new commands, - coroutine, tailcall, yield, and yieldto that provide profound - new capabilities and models of concurrency to Tcl scripts. - * Enhanced Exceptions: New commands try and throw and a wealth - of new -errorcode values enable far more precise trapping and - handling of exceptions using a familiar construct. - * Batteries Included: Tcl delivers in the pkgs subdirectory a - bundled collection of third-party packages built and installed - along with Tcl. - * Thread-enabled Operations: A thread-enabled default build, a - bundled Thread package, and new command interp cancel make Tcl - 8.6 ready for your multi-threaded programming tasks. - * SQL Database Powered: The bundled Tcl DataBase Connectivity - (tdbc) interface package makes it possible to write your SQL - database-powered scripts decoupled from any particular - database engine. The bundled sqlite3 and tdbc::sqlite3 - packages supply a powerful and popular SQL database engine - ready to use. - * IPv6 Networking: Both client and server sockets support IPv6 - where platform support exists. - * Built-in Zlib Compression: New command zlib provides utilities - to handle compression of data and streams. - * List Processing: New commands lmap and dict map enable the - elegant expression of transformations over Tcl containers. - * Stacked Channels by Script: New commands chan push and chan - pop expose the power of stacked channels without the need to - write C code. - * Additional New Features: Temporary file creation, enhancements - to list sorting and setting, dict filtering, half-close of - bidirectional channels, encoding and decoding of binary - sequences, finer control over load, and many many more. - -- Add Source URL, see https://en.opensuse.org/SourceUrls - -- The testsuite needs timezone data, require it at build time. - -- New patchlevel: 8.5.12: - * Fix the values returned by [switch -regexp -indexvar] - * Improve RFC compliance of the http package - * Several other bugfixes - -- Disable profiling on SPARC due to compiler bug [gcc #54121] -- Remove redundant tags/sections from specfile -- Parallel build with %_smp_mflags - -- license update: SUSE-TCL - Use this proprietary extension to SPDX until upstream SPDX accepts TCL - into their license list - -- add autoconf as buildrequire to avoid implicit dependency - -- New patchlevel release 8.5.11: - * [3349507] correct double(1[string repeat 0 23]) - * [3371644] Tcl_ConvertElement() segfault - * [3372130] hypot(.) segfault - * [3389764] memleaks due to reference cycles in dup'd paths - * [3390272] leak of [info script] value - * [3393150] bignum leaks in Tcl_Get*() routines - * [3393714] [string toupper] overflow - * [3398794] panic in interp limit setting (gavlian,fellows) - * [3401704] revised expr parser to permit function names like - "nano()" instead of parsing as "nan o()" with missing op - * ** POTENTIAL INCOMPATIBILITY *** - * [3405652] DTrace workaround - * [3391977] -headers overrides -type (=> http 2.7.7) - * [3400658] wrong num args msg with TclOO - * [2935503] [file stat] returns bad mode - -- cross-build fix: use %__cc macro - -- New patchlevel release 8.5.10: - * Update Unicode data to 6.0 - * Fix handling of empty path lists in Safe Tcl. - * (bug fix)[3098302] crash in compiled [catch] - * (TIP 378)[3081184] improved TIP 280 performance - * (enhancement) Restore TclFormatInt for performance - * (enhancement) Tcl_PrintDouble performance improvements - * (bug fix)[3142026] GrowEvaluationStack OBOE - * (bug fix)[3072640] protect writes to ::error* variables - * (bug fix)[3200987,3192636] parser buffer overruns - * (bug fix)[3202905] failed intrep release of interp result - * (bug fix)[3202171] repair [namespace inscope] optimizer - * (bug fix) Fixes from libtommath 0.42.0 release - * (bug fix)[3216070] [load] extension from embed Tcl apps - * (bug fix)[3285472] intrep corruption in [string reverse] - * (bug fix)[2662380] crash when variable append trace unsets - * (bug fix)[3285375] Buffer overflow in [concat] - * (internals change) revised TclFindElement() interface - * ** POTENTIAL INCOMPATIBILITY *** - * (enhancement) dict->list w/o string rep generation - * (bug fix)[3173086] Crash parsing long lists - * (bug fix)[2715421] surplus \n in POST => http 2.7.6 - * (enhancement) msgcat internal improvements => msgcat 1.4.4 - * (bug fix)[3185407] cmd resolution epoch flaw - * (bug fix)[3315098] mem leak generating double string rep - * (new cmd) [tcltest::loadIntoSlaveInterpreter] - => tcltest 2.3.3 - * (new feature) DEB_HOST_MULTIARCH support => platform 1.0.10 -- Add tcl-stack.patch to fix stack direction checking for gcc 4.6. -- Removed stack-3.1 from the list of known-failing tests. -- tcl-SafeLdExp.patch isn't needed anymore. - -- Add stack-3.1 test to known failures, according to - http://www.linuxfoundation.org/en/TestPilot32-U0710#Tcl_Tests___v_8.5a4-1_.3D - it fails elsewhere too. - -- Bugfix release 8.5.9: - * [sf#2891556] encoding finalization crash - * rewrite of the Safe Base commands - * [sf#2913616] msgcat: improved safe interp support - => msgcat 1.4.3 - * [sf#2913625] [info script/nameof] in safe interps - * [sf#2891362] enable time limit in child interps - * [sf#2895741] enable min(), max() in safe interps - * [sf#2918610] [file rootname] corruption - * [sf#2932421] less [format %s] shimmer - * [sf#2918110] [chan postevent] crash - * [sf#2942697] faster match: some pathological regexp patterns - * [sf#2939073] [array unset] unset trace crash - * [sf#2933089] [info frame] shared lit trouble - * [sf#2949740] [open |noSuch rb] crash - * [sf#2954959] get sign of abs($zero) right - * [sf#2936225] stop [chan copy] to slow channel consuming all - memory with buffer backup - * permit [fcopy] of > 2**31 bytes - * [sf#2383005] [return -errorcode] reject non-list - * [sf#2976504] broken fstatfs() call - * [sf#2978773] refchan mem preservation - * [sf#3004007] dict/list shimmer w/o string rep loss - * platform: several fixes for 64 bit systems - => platform 1.0.9 - * [sf#3016135] [clock format] in he_IL locale - * (enhancement) -errorcode for [expr] domain errors - * [sf#3037525] crash deleting vars @ callframe pop - * [sf#3034840] mem corrupt when refchan loses interp - * [sf#2826551] line-sensitive matching in regexp - * [sf#3048354] buffer overflow detect in Fortify build - * [sf#3057639] no read traces [lappend arr(elem) ...] - * ** POTENTIAL INCOMPATIBILITY *** - -- Disable stack check for hppa to fix build. - -- Add tcl-SafeLdExp.patch to prevent a floating point assist fault - during startup on IA64 (bnc#578068). - -- Fix fortify violation in TraceVariableObjCmd. - -- Bugfix release 8.5.8. - * [info frame] account for continuation lines - * account for ia64_32 => platform 1.0.5 - * improved error message in tcltest => tcltest 2.3.2 - * Broken DST applied EU rules to US zones - * [sf#2446662] uniformly declare EOF on RST on sockets - * [sf#1028264] delay WSACleanup() from under our feet - * [sf#2785893] find command in deleted namespace - * [sf#2798543] incorrect [expr] integer ** results - * [sf#2801413] overflow in [format] - * [sf#2802881] corrected compile env context - * [sf#2819200] underflow settings on MIPS systems - * [sf#2820349] plug event leak in notifier - * [sf#2826248] crash in Tcl_GetChannelHandle - * [sf#2830354] overflow in [format] - * [sf#2827000] reflected channels can signal EGAIN - * [sf#2806250] EIAS violation in ~foo pathnames - * [sf#2837800] [glob */foo] return ./~x/foo - * [sf#2845535] overflows in [format] - * [sf#2849860] http handle "quoted" charset value - * [sf#1941434] broken tclTomMath.h includes - * [sf#2871908] leaked hash table - * [sf#2874678] bignum leak in [dict incr] - * [sf#2629338] crash in var unset traces - * [sf#2107634] extend [read] and [gets] to Tcl string limits - * [sf#2882561] Haiku OS signal support - * [sf#2800740] halved bignum memory on 64-bit systems - POTENTIAL INCOMPATIBILITY - * [sf#2854929] TM search path support in Safe Base - * [sf#2888099] [close] loses ENOSPC error - * [sf#2891171] RFC 3986 compliance for ? in URL => http 2.7.5 - * [sf#2895565] [fcopy -size] miscounts when converting encodings -- Added tcl-unload.patch to fix a crash in the browser plugin. - -- disable the testsuite for the moment on ARM - -- Install binaries unstripped to fix debuginfo packages. - -- New release: 8.5.7: - * Fix failure to read SHOUTcast streams in the http package. - * Fix hang in channel finalization. - * [file normalize] failed on some paths. - * Fix crash with [chan create]d channel - * Fix Tcl_FindCommand() bug exposed by oo. - * Fix [string repeat] overflow crash. - * Fix memleak in [file normalize]. - * Fix crash in Tcl_AppendStringToObj. - * Fix Tcl_AppendObjToObj: append to self crash. - * Fix several string overflows. - * Fix [http::geturl] connection failures. - terminus-bitmap-fonts +- Update to version 4.49.1 + * Fixed install-otb and uninstall-otb to use otbdir instead of + x11dir. + +- Update to version 4.49 + * Added Open Type Bitmap support. + * Altered ascii grave in some sizes to be more useful as a + back quote. + * Fixed 21B5, added 21B2 and 21B3. + +- Update to version 4.48 + * Added the basic 27 hebrew letters and sheqel, with uppercase + height. + * Some improvements in the font build scripts. + +- Update to version 4.47 + * Added 35 new characters (33 glyphs). + * Replaced ao2-variant "ae" with ao1 "ae", it was too similar + to "oe". + * Some fixes and improvements (17 characters in various + sizes/styles). + * Significantly improved the font conversion tools. Python + 3.5.0 or Node 6.9.0 are now required to build the font. +- Spec cleanup + -- fix builds for 12.2 - * now bdftopcf is a separated package from xorg-x11. - -- call spec-cleaner - -- renamed terminus-font -> terminus-bitmap-fonts - -- remove unnecessary buildrequires for too old distros - timezone +- timezone update 2020f (bsc#1177460) + * 'make rearguard_tarballs' no longer generates a bad rearguard.zi, + fixing a 2020e bug. + +- timezone update 2020e (bsc#1177460) + * Volgograd switches to Moscow time on 2020-12-27 at 02:00. + timezone-java +- timezone update 2020f (bsc#1177460) + * 'make rearguard_tarballs' no longer generates a bad rearguard.zi, + fixing a 2020e bug. + +- timezone update 2020e (bsc#1177460) + * Volgograd switches to Moscow time on 2020-12-27 at 02:00. + ucode-intel +- Reverted 3 microcodes back to 20200616 release level after regression reports. (bsc#1179224) + - SKX-SP | H0/M0/U0 | 06-55-04/b7 | 02006906 | Xeon Scalable + - SKX-D | M1 | 06-55-04/b7 | 02006906 | Xeon D-21xx + - CLX-SP | B0 | 06-55-06/bf | 04002f01 | Xeon Scalable Gen2 + - CLX-SP | B1 | 06-55-07/bf | 05002f01 | Xeon Scalable Gen2 + util-linux +- libblkid: Do not trigger CDROM autoclose (bsc#1084671, + util-linux-libblkid-cdrom-autoclose-1.patch, + util-linux-libblkid-cdrom-autoclose-2.patch, + util-linux-libblkid-cdrom-autoclose-3.patch). + +- Modernize patch util-linux-sulogin4bsc1175514.patch + * Try to autoconfigure broken serial lines + +- Add patch util-linux-sulogin4bsc1175514.patch + Avoid sulogin failing on not existing or not functional console + devices (bsc#1175514) + +- Build with libudev support to support non-root users + (boo#1169006). + +- lscpu: avoid segfault on PowerPC systems with valid hardware + configurations + (bsc#1175623, bsc#1178554, bsc#1178825, + lscpu-avoid-segfault-on-PowerPC-systems-with-valid-h.patch) + +- Fix for SG#57988, bsc#1174942: + libmount-fix-mount-a-EBUSY-for-cifs.patch: Fix warning on mounts + to CIFS with mount –a. + util-linux-systemd +- libblkid: Do not trigger CDROM autoclose (bsc#1084671, + util-linux-libblkid-cdrom-autoclose-1.patch, + util-linux-libblkid-cdrom-autoclose-2.patch, + util-linux-libblkid-cdrom-autoclose-3.patch). + +- Modernize patch util-linux-sulogin4bsc1175514.patch + * Try to autoconfigure broken serial lines + +- Add patch util-linux-sulogin4bsc1175514.patch + Avoid sulogin failing on not existing or not functional console + devices (bsc#1175514) + +- Build with libudev support to support non-root users + (boo#1169006). + +- lscpu: avoid segfault on PowerPC systems with valid hardware + configurations + (bsc#1175623, bsc#1178554, bsc#1178825, + lscpu-avoid-segfault-on-PowerPC-systems-with-valid-h.patch) + +- Fix for SG#57988, bsc#1174942: + libmount-fix-mount-a-EBUSY-for-cifs.patch: Fix warning on mounts + to CIFS with mount –a. + virt-manager +- bsc#1180069 - L3: virsh edit Error: XML document failed to + validate against schema: Unable to validate doc. + virtinst-smbios-unsupported-for-xenpv.patch + +- bsc#1180047 - [xen][virt-manger] Libvirt or Hyperisor does not + support UEFI for 15SP3 XENPV Guest + virtman-show-no-firmware-for-xenpv.patch + +- bsc#1180062 - virt-install uses isoinfo. Include mkisofs in the + spec file. + virt-manager.spec + +- Upstream bug fixes (bsc#1027942) + e7222b50-addstorage-Dont-pass-None-to-widget.set_active.patch + 4d0e3232-virtinst-Fix-TOCTOU-in-domain-enumeration.patch + vlc -- update to 3.0.11.1: +- Add vlc-CVE-2020-26664.patch: mkv: Ensure we don't use an + EbmlDummy element for something it's not (CVE-2020-26664, + boo#1180755). + +- Enable LTO (boo#1133290) as it works now (and use FAT lto objects). + +- vlc-srto_tsbpddelay.patch + * Fix building with recent srt where SRTO_TSBPDDELAY is no longer defined + +- Package arm neon plugins + +- update to 3.0.11.1 (CVE-2020-13428, boo#1172727): wavpack +- Update to version 5.4.0 + * CVE-2020-35738: Fixed an out-of-bounds write in WavpackPackSamples (bsc#1180414) + * fixed: disable A32 asm code when building for Apple silicon + * fixed: issues with Adobe-style floating-point WAV files + * added: --normalize-floats option to wvunpack for correctly + exporting un-normalized floating-point files +- Update to version 5.3.0 + * fixed: OSS-Fuzz issues 19925, 19928, 20060, 20448 + * fixed: trailing garbage characters on imported ID3v2 TXXX tags + * fixed: various minor undefined behavior and memory access issues + * fixed: sanitize tag extraction names for length and path inclusion + * improved: reformat wvunpack "help" and split into long + short versions + * added: regression testing to Travis CI for OSS-Fuzz crashers +- Updated to version 5.2.0 + * fixed: potential security issues including the following CVEs: + CVE-2018-19840, CVE-2018-19841, CVE-2018-10536 (bsc#1091344), + CVE-2018-10537 (bsc#1091343) CVE-2018-10538 (bsc#1091342), + CVE-2018-10539 (bsc#1091341), CVE-2018-10540 (bsc#1091340), + CVE-2018-7254, CVE-2018-7253, CVE-2018-6767, CVE-2019-11498 + and CVE-2019-1010319 + * added: support for CMake, Travis CI, and Google's OSS-fuzz + * fixed: use correction file for encode verify (pipe input, Windows) + * fixed: correct WAV header with actual length (pipe input, -i option) + * fixed: thumb interworking and not needing v6 architecture (ARM asm) + * added: handle more ID3v2.3 tag items and from all file types + * fixed: coredump on Sparc64 (changed MD5 implementation) + * fixed: handle invalid ID3v2.3 tags from sacd-ripper + * fixed: several corner-case memory leaks + Dropped patches that included in upstream version: + * CVE-2018-19840.patch + * CVE-2018-19841.patch + * CVE-2018-7253.patch + * CVE-2018-7254.patch + * wavpack-CVE-2018-6767.patch + * CVE-2019-1010319.patch + * CVE-2019-11498.patch + -- remove _service - webkit2gtk3 +- Add old-wayland-scanner.patch for 15.0: support older + wayland-scanner. ALso renumber patches to group 15.0-specific + patches together. +- Have the libwebkit2gtk package require libjavascriptcoregtk of + the same version (boo#1171531). + +- 0001-ICU-68.1-no-longer-exposes-FALSE-and-TRUE-macros-by-.patch: + ICU 68.1 no longer exposes FALSE and TRUE macros by default. + +- Update to version 2.30.3 (boo#1179122 boo#1179451): + + Add new build option USE(64KB_PAGE_BLOCK). + + Fix backdrop filters with rounded borders. + + Fix scrolling iframes when async scrolling is enabled. + + Allow applications to handle drag and drop on the web view + again. + + Update Outlook user agent quirk. + + Fix the build with video support disabled. + + Fix several crashes and rendering issues. + + Security fixes: CVE-2020-13584, CVE-2020-9983, CVE-2020-13543. +- Drop webkit2gtk3-fdo-soname.patch: fixed upstream. +- Rebase webkit-process.patch. + +- Update to version 2.30.2: + + Fix scrolling when smooth scrolling is enabled in async + scrolling mode. + + Fix WebSocket requests with same-site cookies. + + Fix TLS certificate information for service workers. + + Handle chassis type when its value is quoted. + + Fix the build with ENABLE_MEDIA_STREAM enabled and + ENABLE_WEB_RTC_DISABLED. + + Fix the build with ENABLE_GAMEPAD enabled. + + Fix several crashes and rendering issues. + +- Enable c_loop on aarch64: currently needed for compilation to + succeed with JIT disabled. Also disable sampling profiler, since + it conflicts with c_loop (boo#1177087). + +- Update to version 2.30.1: + + Bring back the environment variable to force single process + mode when PSON is disabled. + + Fix downloads started by an ephemeral web context. + + Updated translations. + +- Update to version 2.30.0: + + Fix NTLM authentication. + + Don't try to use SHM on wayland with older wpebackend-fdo. + + Fix the build due to seccomp.h header not found. + + Security fixes: CVE-2020-9948, CVE-2020-9951. +- Drop seccomp-build-fix.patch and wpe-shm-check.patch: fixed + upstream. + +- Add wpe-shm-check.patch: make SHM initialization fail for + wpebackend-fdo < 1.7.0. + +- Add seccomp-build-fix.patch: pass seccomp include directory to + g++. +- Re-enable bubblewrap sandbox for SLE-15-SP2 and Tumbleweed. + +- Update to version 2.29.92: + + Fix user agent header after a redirect when a new quirk is + required. + + Stop using firefox user agent quirk for google docs. + + Fix rendering frames timeline panel in web inspector. + + Fix per-thread cpu usage in web inspector. + + Fix several crashes and rendering issues. +- Changes from version 2.29.91: + + Fix a web process crash introduced in 2.29.90. +- Changes from version 2.29.90: + + Fix font variation settings when font smoothing setting is also + present. + + Fix HTML drag and drop operations. + + Fix argument order for clone syscall seccomp filter on s390x. + + Fix a crash when selecting text. + + Fix several crashes and rendering issues. +- Changes from version 2.29.4: + + Add support for backdrop filters. + + Add support for text-underline-offset and + text-decoration-thickness. + + Add OpenCDM and AV1 support to media backend. + + Add new API to get ITP data summary. + + Use mobile user-agent on tablets. + + Fix several crashes and rendering issues. +- Changes from version 2.29.3: + + Add webkit_authentication_request_get_security_origin. + + Change the cookies accept policy to always when no-third-party + is set and ITP is enabled. + + Fix web process hangs on large GitHub pages. + + Bubblewrap sandbox should not attempt to bind empty paths. + + Add support for sndio to bubblewrap sandbox. + + Also handle dark themes when the name ends with -Dark. + + Fix a race condition causing a crash in media player. + + Fix several crashes and rendering issues. +- Changes from version 2.29.2: + + Add Intelligent Tracking Prevention (ITP) support. + + Add support for video formats in img elements. + + Add API to handle video autoplay policy that now defaults to + disallow autoplay videos with audio. + + Add API to mute a web view. + + Add API to allow applications to handle the HTTP authentication + credential storage. + + Add a WebKitSetting to set the media content types requiring + hardware support. + + Fix a crash during drag an drop due to a bug introduced in + 2.29.1. + + Do not start page load during animation in back/forward + gesture. + + Fix several crashes and rendering issues. +- Changes from version 2.29.1: + + Stop using GTK theming to render form controls. + + Add API to disable GTK theming for scrollbars too. + + Fix several race conditions and threading issues in the media + player. + + Add USER_AGENT_BRANDING build option. + + Add paste as plain text option to the context menu for rich + editable content. + + Fix several crashes and rendering issues. + + Updated translations. +- Rebase webkit2gtk3-fdo-soname.patch. +- Add pkgconfig(libsystemd) BuildRequires: new dependency. + +- Add no-forced-sse.patch, cure execution of illegal instruction + in i586 firefox. + xapian-core +- Update to 1.4.17: + + API: + * Database::get_average_length(): Add this as an alias for Database::get_avlen(). + In git master we've added this as a preferred new name - adding it to 1.4.x too + will make it easier for users to update to using this. + * Database::get_spelling_suggestion(): Optimise edit distance initialisation + loop to significantly reduce the cost of a typical edit distance calculation. + * Fix query expansion on sharded databases. The mechanism for passing in which + shard a TermList is from wasn't hooked up and as a result we'd always think + it's from the first shard, meaning the statistics would be wrong and that our + suggested terms may not have been as good as they should be in this + situation. + * Enquire::get_eset(): Use string::compare() to avoid 1/3 of the string compares + on average. + + documentation: + * Update doxygen HTML headers and footers to resolve issues with some + interactive features of the API docs not working. Reported by Enrico Zini. + * Stop specifying obsolete doxygen settings PERL_PATH and MSCGEN_PATH. + * Clarify API docs for MSet::get_termfreq() to make it clear that this + considers all documents in the database, not only those that matched the + searched (it would sometimes be useful to be able to report the number of + occurrences of a term in the matched documents, but it's not something we + currently keep track of). Reported by Tadeusz Sośnierz and Peter Salomonsen. + +- update to 1.4.16: + * MSet::snippet(): The snippet now includes trailing punctuation which carries + meaning or gives useful context. See + https://github.com/xapian/xapian/pull/180, reported by Robert Stepanek. + * MSet::snippet(): Fix segfault generating snippet from default-constructed + MSet. This probably isn't something you'd typically do, but it shouldn't + crash. Found during extended testing of #803 (which only affected git + master) which was reported by Robert Stepanek. + * Remove trailing full stop from exception messages. We conventionally don't + include one, but a few cases didn't follow that convention. + testsuite: + * Replace direct use of ftime() which gives deprecation warnings with recent + mingw. Reported by srinivasyadav22. + matcher: + * Fix segfault in rare cases in the query optimiser. We keep a pointer to the + most recent posting list to use as a hint for opening the next posting list, + but the existing mechanism to take ownership of this hint had a flaw. We now + invalidate the hint in situations where it might be indirectly deleted which + is safe, but somewhat conservative. + * Improve the optimisation of an always-matching OP_VALUE_GE to also take + effect when the value slot's lower bound is equal to the limit of the + OP_VALUE_GE. Patch from boda sadalla. + glass backend: + * Report the correct errno value if commit() fails. We were potentially + reporting ENOENT from an unlink() call cleaning up a temporary file prior to + throwing the exception instead. + documentation: + * Fix missing menus in API documentation. Newer doxygen generates .js files + which we also need to distribute and install. Reported by sec^nd on #xapian. + * Note OP_FILTER ignored subquery bug fixed in 1.4.15 as present in 1.4.14 and + older. + portability: + * Use our own autoconf cache variable namespace (xo_cv_ prefix instead of + ac_cv_) to avoid colliding with standard autoconf macro use if config.site or + a shared config.cache is used. The former case caused a build failure for + the OpenBSD port with 1.4.15, reported by Lucas R. + * Use clock_gettime() and nanosleep() under modern mingw as these allow higher + precision than what we previously used. + +- Update to version 1.4.15: + + API: + * Database::check(): Fix checking of replication changesets. + This reverts a change incorrectly made in 1.3.7. + * Database::locked(): Return false instead of true for a closed inmemory DB. + * Database::commit(): If commit() failed with an exception while trying to add + pending changes (e.g. InvalidArgumentError due to a long term containing zero + bytes) then a subsequent commit() on the same object would throw the same + exception. Now we clear the pending changes in this situation (like we + already did for failure at other stages in the commit). This bug remains + unfixed for the chert backend as it's harder to fix there and the effort to + fix it and extra risk of breakage don't seem justified for a backend we + recommend people migrate away from. + * QueryParser::parse_query(): Optimise parsing of multi-word synonyms. + + Testsuite fixes. + + matcher: + * Hoist positional check above OP_FILTER. + * Handle OP_FILTER with more than two subqueries correctly. Previously we'd + only check the first two subqueries in some situations. + + remote backend: + * For a remote WritableDatabase, the client now keeps track of whether there + are pending changes, and if there aren't then we now do nothing for commit() + or cancel() calls. In particular this saves a message exchange when the + WritableDatabase destructor is called when changes have already been + committed with an explicit call to commit() (which is what we recommend + doing, since with an explicit call to commit() you get to see any exception + which gets thrown). + * When closing a remote prog WritableDatabase, previously an exception could + leave the remote connection open with the remote server running, and we'd + then wait for the specified timeout before closing the connection. Now we + close the connection before letting the exception propagate. + * Don't swallow exceptions from Database::close() on a remote database. If + we aren't in a transaction and so try to commit() and that fails then + previously the caller would have no indication of the failure. + * Fix handling the reported term weight when remote shards are searched. + Fixes 5 XFAILs in the testsuite. + * Add missing space to mismatching protocol versions error message. + + build system: + * Fix to build when configured with --disable-backend-remote, broken by changes + in 1.4.14. Fixes #797, reported by Дилян Палаузов. + * The clang and icc compilers both define __GNUC__, which led our ABI mismatch + message to report them as "g++" with a bogus version (the version of GCC that + these compilers advertise themselves as, which for clang is always 4.2.0) - + now we report clang++ or icc along with the actual version of that compiler. + + updated documentation. + +- Update to 1.4.14: + * API: + + Xapian::QueryParser: Handle "" inside a quoted phrase better. In a quoted + boolean term, "" is treated as an escaped ", so handle it in a compatible way + for quoted phrases. Previously we'd drop out of the phrase and start a new + phrase. Fixes #630, reported by Austin Clements. + + Xapian::Stem: The constructor which takes a stemmer name now takes an + optional second bool parameter - if this is true, then an unknown stemmer + name falls back to using the "none" stemmer instead of throwing an exception. + This allows simply constructing a stemmer from an ISO language code without + having to worry about whether there's a stemmer for that language, and + without having to handle an exception if there isn't. + + Xapian::Stem: Fix a bug with handling 4-byte UTF-8 sequences which + potentially affects most of the stemmers. None of the stemmers work in + languages where 4-byte UTF-8 sequences are part of the alphabet, but this + bug could result in invalid UTF-8 sequences in terms generated from text + containing high Unicode codepoints such as emoji, which can cause issues (for + example, in some language bindings). Fix synced from Snowball git post + 2.0.0. + + Xapian::Stem: Add a new is_none() method which tests if this is a "none" + stemmer. + + Xapian::Weight: The total length of all documents is now made available to + Xapian::Weight subclasses, and this is now used by DLHWeight, DPHWeight and + LMWeight. To maintain ABI compatibility, internally this still fetches the + average length and the number of documents, multiplies them, then rounds the + result, but in the next release series this will be handled directly. + + Xapian::Database::locked() on an inmemory database used to always return + false, but an inmemory Database is always actually a WritableDatabase + underneath, so now we always report true in this case because it's really + always report being locked for writing. + + testsuite: + * Fix failing multi_glass_remoteprog_glass tests on x86. When the tests are + run under valgrind, remote servers should be run using the runsrv wrapper + script, but this wasn't happening for remote servers in multi-databases - now + it is. Also, previously runsrv only used valgrind for the remote for an x86 + build that didn't use SSE, but it seems there are x87 instructions in libc + that are affected by valgrind not providing excess precision, so do this for + x86 builds which use SSE too. Together these changes fix failures of + topercent2, xor2, tradweight1 under backend multi_glass_remoteprog_glass on + x86. + * Fix C++ One-Definition Rule (ODR) violation in testsuite code. Two different + source files linked into apitest were each defining a different `struct + test`. Wrap each in an anonymous namespace to localise it to the file it is + defined and used in. This was probably harmless in practice, unless trying + to build with Link-Time Optimisation or similar (which is how it was + detected). + * Test all language codes in stemlangs1. The testsuite hardcodes a list of + supported language codes which hadn't been updated since 2008. + * Improve DateRangeProcessor test coverage. + + matcher: + * Handle pruning under a positional check. This used to be impossible, but + since 1.4.13 it can happen as we now hoist AND_NOT to just below where we + hoist the positional checks. The code on master already handles pruning here + so this bug is specific to the RELEASE/1.4 branch. + * When searching with collapsing over multiple shards, at least some of which + are remote, uncollapsed_upper_bound could be too low and + uncollapsed_lower_bound too high. This was causing assertion failures in + testcases msize1 and msize2 under test harness backends + multi_glass_remoteprog_glass and multi_remoteprog_glass. + * Internally we no longer calculate a bogus total_term_count as the sum of + total_length * doc_count for all shards. Instead we just use the sum of + total_length, which gives the total number of term occurrences. This change + should improve the estimated collection_freq values for synonyms. + * Several places where we might divide zero by zero in a database where wdf was + always zero have been fixed. + + build system: + * configure: Stop using AC_FUNC_MEMCMP. The autoconf manual marks it as + "obsolescent", and it seems clear that nobody's relying on it as we're + missing the "'AC_LIBOBJ' replacement for 'memcmp'" which it would try to + use if needed. + + documentation: + * HACKING: Replace release docs with pointer to the developer guide where they + are now maintained. + + portability: + * Eliminate 2 uses of atoi(). These are potentially problematic in a + multithreaded application if setlocale() is called by another thread at the + same time. + * Don't check __GNUC__ in visibility.h as the configure probe before defining + XAPIAN_ENABLE_VISIBILITY checks that the visibility attributes work. This + probably makes no difference in practice, as all compilers we're aware of + which support symbol visibility also define __GNUC__. + * Document Sun C++ requires --disable-shared. +- Update to 1.4.13: + + API: + * Fix write one past end of std::vector on certain QueryParser parser errors. + This is undefined behaviour, but the write was always into reserved space, so + in practice we'd actually get away with it (it was noticed because it + triggers an error when running under ubsan and using libc++). + * MSet::get_matches_estimated(): Improve rounding of result - a bug meant we + would almost always round down. + * Optimise test for UTF-8 continuation character. Performing a signed char + comparison shaves an instruction or two on most architectures. + * Database::get_revision(): Return revision 0 for a Database with no shards + rather that throwing InvalidOperationError. + * DPHWeight: Avoid dividing by 0 when searching a sharded database when one + shard is empty. The result wasn't used in this case, but it's still + undefined behaviour. Detected by UBSan. + + testsuite: + * The "singlefile" test harness backend manager now creates databases by + compacting the corresponding underlying backend database (creating it first + if need be) rather than always creating a temporary database to compact. + * Enable compaction testcases for multi and singlefile test harness backends. + * Add generated database support for remoteprog and remotetcp test harness + backends. + * Add test harness support for running testcases using a multi database + comprised of one local and one remote shard, or two remote shards. + * Check if removing existing multi stub failed. Previously if removing an + existing stub failed, the test harness would create a temporary new stub and + then try to rename it over the old one, which will always fail on Microsoft + Windows. + * Wait for xapian-tcpsrv processes to finish before moving on to the next + testcase under __WIN32__ like we already do on POSIX platforms. + + matcher: + * Optimise OP_AND_NOT better. We now combine its left argument with other + connected and-like subqueries, and gather up and hoist the negated subqueries + and apply them together above the combined and-like subqueries, just below + any positional filters. + * Optimise OP_AND_MAYBE better. We now combine its left argument with other + connected and-like subqueries, and gather up and hoist the optional + subqueries and apply them together above the combined and-like subqueries and + any hoisted positional filters. + * Treat all BoolWeight queries as scaled by 0 - we can optimise better if we + know the query is unweighted. + + glass backend: + * Allow zlib compression to reduce size by one byte. We were specifying an + output buffer size one byte smaller than the input, but it appears zlib won't + use the final byte in the buffer, so we actually need to pass the input size + as the output buffer size. + * Only try to compress Btree item values > 18 bytes, which saves CPU time + without sacrificing any significant size savings. + + remote backend: + * Fix match stats when searching with collapsing over multiple shards and at + least some shards are remote. + * Ignore orphaned remote protocol replies which can happen when searching with + a remote shard if an exception is thrown by another shard. + * Wait for xapian-progsrv child to exit when a remote Database or + WritableDatabase object is closed under __WIN32__ like we already do for + POSIX platforms. + + documentation: + * Correct documentation of initial messages in replication protocol. + + tools: + * quest: Report bounds and estimate of number of matches. + * xapian-delve: Improve output when database revision information is not + available. We now specially handle the cases of a DB with multiple shards + and a backend which doesn't support get_revision(). + + portability: + * Fix warning from GCC 9 with -Wdeprecated-copy (which is enabled by -Wextra) + if a reference to an Error object is thrown. + * Suppress GCC warning in our API headers when compiling code using Xapian with + GCC and -Wduplicated-branches. + * Mark some internal classes as final (following GCC -Wsuggest-final-types + suggestions to allow some method calls to be devirtualised). + * Fix to build with --enable-maintainer-mode and Perl < 5.10, which doesn't + have the `//=` operator. It's unlikely developers will have such an old + Perl, but the mingw environment on appveyor CI does. The use of `//=` was + introduced by changes in 1.4.10. +- Update to 1.4.12: + + API: + * Xapian::PostingSource: When a PostingSource without a clone() method is used + with a Database containing multiple shards, the documented behaviour has + always been that Xapian::InvalidOperationError is thrown. However, since at + least 1.4.0, this exception hasn't been thrown, but instead a single + PostingSource object would get used for all the shards, typically leading to + incorrect results. The actual behaviour now matches what was documented. + * Xapian::Database: Add size() method which reports the number of shards. + * Xapian::Database::check(): You can now pass a stub database which will check + all the databases listed in it (or throw Xapian::UnimplementError for + backends which don't support checking). + * Xapian::Document: When updating a document use a emplace_hint() to make the + bulk insertion O(n) instead of O(n·log(n)), and use std::move() to avoid + copying OmDocumentTerm objects. + * Xapian::Query: Add missing get_unique_terms_end() method. + * Xapian::iterator_valid(): Implement for Utf8Iterator + + testsuite: + * Fix keepalive1 failures on some platforms. On some platforms a timeout + gives NetworkTimeoutError and on others NetworkError - since 1.4.10 changed + to checking the exact exception type, keepalive1 has been failing on the + former set of platforms. We now just check for NetworkError or a subclass + here (since NetworkTimeoutError is a subclass of NetworkError). + * Run cursordelbug1 testcase with multi databases too. + + matcher: + * Ownership of PostingSource objects during the match now makes use of the + optional reference-counting mechanism rather than a separate flag. + + remote backend: + * Fix remote protocol design bug. Previously some messages didn't send a reply + but could result in an exception being sent over the link. That exception + would then get read as a response to the next message instead of its actual + response so we'd be out of step. + This fix necessitated a minor version bump in the remote protocol (to 39.1). + If you are upgrading a live system which uses the remote backend, upgrade the + servers before the clients. + * Fix socket leaks on errors during opening a database. + * Don't close remote DB socket on receiving EOF as the levels above won't + know it's been closed and may try to perform operations on it, which would be + problematic if that fd gets reused in the meantime. Leaving it open means + any further operations will also get EOF. + * We add a wrapper around the libc socket() function which deals with the + corner case where SOCK_CLOEXEC is defined but socket() fails if it is + specified (which can happen with a newer libc and older kernel). + Unfortunately, this wrapper wasn't checking the returned value from socket() + correctly, so when SOCK_CLOEXEC was specified and non-zero it would create + the socket() with SOCK_CLOEXEC, then leak that one and create it again + without SOCK_CLOEXEC. We now check the return value properly. + * Fix potential infinite loop in ValueCountMatchSpy::merge_results() if passed + serialised results with extra data appended (which shouldn't happen in normal + use). + + build system: + * Current versions of valgrind result in false positives on current versions of + macOS, so on this platform configure now only enables use of valgrind if it's + specified explicitly. + * Refactor macros to probe for compiler flags so they automatically cache + their results and consistently report success/failure. + * Rename our custom TYPE_SOCKLEN_T macro to XAPIAN_TYPE_SOCKLEN_T. The + AX_TYPE_SOCKLEN_T macro defines an alias of TYPE_SOCKLEN_T for itself which + means it can get used instead in some situations, but it isn't compatible + with our macro. We can't just switch to AX_TYPE_SOCKLEN_T as it doesn't + handle cases we need, so just rename our macro to avoid potential problems. + + documentation: + * Improve API documentation for Xapian::Query class. Add missing doc + comments and improve some of the existing ones. + * Add Unicode consortium names and codes for categories from Chapter 4, Version + 11 of the Unicode standard. Patch from David Bremner. + * Improve configure --help output - drop "[default=no]" for --enable-* + options which default off. + Палаузов. + * Fix API documentation typo - Query::op (the type) not op_ (a parameter name). + * Note which version Document::remove_postings() was added in. + * In the remote protocol documentation, MSG_REPLACEDOCUMENTTERM was documented + as not having a reply, but actually REPLY_ADDDOCUMENT is sent. + * Update list of users. + + tools: + * copydatabase: A change in 1.4.6 which added support for \ as directory + separator on platforms where that's the norm broke the code in copydatabase + which removes a trailing slash from input databases. + + portability: + * Add missing '#include '. + * Fix str() helper function when converting the most negative value + of a signed integer type. + * Avoid calling close() on fd we know must actually be a WIN32 SOCKET. + * Include not for std::boolalpha. + * Rework setenv() compatibility handling. Now that Solaris 9 is dead we can + assume setenv() is provided by Unix-like platforms (POSIX requires it). For + other platforms, provide a compatibility implementation of setenv() which + so the compatibility code is encapsulated in one place rather than replicated + at every use. + * Fix maintainer-mode builds on Solaris where /bin/tr is not POSIX compliant. + We now use the simple workaround suggested by the autoconf manual. + * Improve support for Sun C++: + + Suppress unhelpful warning for lambda with multiple return statements. + + Enable reporting the tags corresponding to warnings, which we need + to know in order to suppress any new unhelpful warnings. + + Adjust our workaround for bug with this compiler's header to avoid + a compiler warning. + + Use -xldscope=symbolic for Sun C++. This flag is roughly equivalent to + - Bsymbolic-functions which we've probed for with GNU ld since Xapian 1.0.0. +- Update to 1.4.11: + + API: + * MSet::SNIPPET_CJK_NGRAM - new flag for use with MSet::snippet() to enable + support for selecting and highlighting snippets which works with the + QueryParser and TermGenerator FLAG_CJK_NGRAM flags. This mode can also be + enabled by setting environment variable XAPIAN_CJK_NGRAM to a non-empty + value. (There was nominally already support for XAPIAN_CJK_NGRAM in + MSet::snippet(), but it didn't work usefully - the highlighting added was all + empty start/end pairs at the end of the span of CJK characters containing the + CJK ngram terms, which to the user would typically look like it was selecting + the end of the text and not highlighting anything). + * Deprecate XAPIAN_CJK_NGRAM environment variable. There are now flags which + can be used instead in all cases, and there's sadly no portable thread-safe + way to read an environment variable so checking environment variables is + problematic in library code that may be used in multithreaded programs. + * Query::OP_ELITE_SET currently incorrectly recursively flattens any OP_OR (or + OP_OR-like) subqueries into the list of subqueries it selects from - until + that's fixed, we now select from the full exploded list rather than the last + n (where n is the number of direct subqueries of the OP_ELITE_SET). + + testsuite: + * Testcases which need a generated database now get run with a sharded + database. + * Avoid using strerror() in the testsuite which removes an obstacle to running + tests in parallel in separate threads. + + matcher: + * Extend detection of cases of OP_SYNONYM with disjoint subqueries (which means + we don't need document length) which was added in 1.4.8 - we now detect when + all subqueries are different terms, or when all subqueries are + non-overlapping wildcards. The second case is what QueryParser produces for + a wildcard or partial query with a query prefix which maps to more than one + term prefix. + + glass backend: + * Handle an empty value slot lower bound gracefully. This shouldn't happen for + a non-empty slot, but has been reported by a notmuch user so it seems there + is (or perhaps was as the database was several years old) a way it can come + about. We now check for this situation and set the smallest possible valid + lower bound instead, so other code assuming a valid lower bound will work + correctly. + + chert backend: + * Handle an empty value slot lower bound gracefully, equivalent to the change + made for glass. + + documentation: + * HACKING: We no longer use auto_ptr<>. + * NEWS: Correct factual error in old entry - the 0.4.1 release was Open Muscat + not OmSee (the OmSee name was only applied after that final release was made, + and only used internally to BrightStation). + + portability: + * Suppress more clang -Wself-assign-overloaded warnings in testcases which are + deliberately testing handling of self-assignment. + * Add missing includes of . + + debug code: + * When configured with --enable-log, the O_SYNC flag was always specified when + opening the logfile, with the intention that the most recent log entries + wouldn't get lost if there was a crash, but O_SYNC can incur a significant + performance overhead and most debugging is not of such crashes. So we no + longer specify O_SYNC by default, but you can now request synchronous logging + by including %! anywhere in the filename specified with XAPIAN_DEBUG_LOG + (the %! is replaced with the empty string). We also now use O_DSYNC if + available in preference to O_SYNC, since the mtime of the log file isn't + important. +- Update to 1.4.10: + + API: + * DatabaseClosedError: New exception class thrown instead of DatabaseError when + an operation is attempted which can't be completed because it involves a + database which close() was previously called on. DatabaseClosedError is a + subclass of DatabaseError so existing code catching DatabaseError will still + work as before. + * DatabaseNotFoundError: New exception class thrown instead of + DatabaseOpeningError when the problem is the problem is "file not found" or + similar. DatabaseNotFoundError is a subclass of DatabaseOpeningError so + existing code catching DatabaseOpeningError will still work as before. + * Query: Make &=, |= and ^= on Query objects opportunistically append to + an existing query with a matching query operator which has a reference + count of 1. This provides an easy way to incrementally build flatter query + trees. + * Query: Support `query &= ~query2` better - this now is handled exactly + equivalent to `query = query & ~query2` and gives `query AND_NOT query2` + instead of `query AND ( AND_NOT query2)`. + * QueryParser: Now uses &=, |= and ^= to produce flatter query trees. This + fixes problems with running out of stack space when handling Query object + trees built by abusing QueryParser to parse very large machine-generated + queries. + * Stopper: Fix incorrect accents in Hungarian stopword list. Patch from David + Corbett. + + testsuite: + * Test MSet::snippet() with small and zero lengths. + * Fix testcase stubdb4 annotations - this testcase doesn't need a backend. + * Add PATH annotation for testcases needing get_database_path() to avoid having + to repeatedly list the backends where this is supported in testcase + annotations. + * TEST_EXCEPTION helper macro now checks that the exact specified exception + type is thrown. Previously it would allow a subclass of the specified + exception type, but in testcases we really want to be able to test for an + exact type. + + matcher: + * Map OP_VALUE_GE/OP_VALUE_LE on an empty slot to EmptyPostList. We already do + this for OP_VALUE_RANGE, and it's a little more efficient than creating a + postlist object which checks the empty value slot. + + glass backend: + * We no longer flush all pending positional changes when a postlist, termlist + or all-terms is opened on a modified WritableDatabase. Doing so was + incurring a significant performance cost, and the first of these happens + internally when `replace_document(term, doc)` is used, which is the usual way + to support non-numeric unique ids. We now only flush pending positional + changes when committing. + + remote backend: + * Use poll() where available instead of select(). poll() is specified by + POSIX.1-2001 so should be widely available by now, and it allows watching any + fd (select() is limited to watching fds < FD_SETSIZE). For any platforms + which still lack poll() we now workaround this select() limitation when a + high numbered fd needs to be watched (for example, by trying a non-blocking + read or write and on EAGAIN sleeping for a bit before retrying). + * Stop watching fds for "exceptional conditions" - none of these are relevant + to our usage. + * Remove 0.1s timeout in ready_to_read(). The comment says this is to avoid a + busy loop, but that's out of date - the matcher first checks which remotes + are ready to read and then does a second pass to handle those which weren't + with a blocking read. + + build system: + * Stop probing for header sys/errno.h which is no longer used - it was only + needed for Compaq C++, support for which was dropped in 1.4.8. + + documentation: + * docs/valueranges.html: Update to document RangeProcessor instead of + ValueRangeProcessor - the latter is deprecated and will be gone in the next + release series. + * Document RangeProcessor::operator()() returns OP_INVALID to signal it doesn't + recognise a range. + * Update some URLs for pages which have moved. + * Use https for URLs where available. + * HACKING: Update "empty()" section for changes in C++11. + + portability: + * Suppress clang warnings for self-assignment tests. Some testcases trigger + this new-ish clang warning while testing that self-assignment works, which + seems a useful thing to be testing - at least one of these is a regression + test. + * Add std::move to fix clang -Wreturn-std-move warning (which is enabled by + - Wall). + * Add casts to fix ubsan warnings. These cases aren't undefined behaviour, but + are reported by ubsan extra checks implicit-integer-truncation and/or + implicit-conversion which it is useful to be able to enable to catch + potential bugs. + * Fix check for when to use _byteswap_ulong() - in practice this would only + have caused a problem if a platform provided _byteswap_ushort() but not + _byteswap_ulong(), but we're not aware of any which do. + * Fix return values of do_bswap() helpers to match parameter types (previously + we always returned int and only supported swapping types up to 32 bits, so + this probably doesn't result in any behavioural changes). + * Only include if we'll use it instead of always including it when + it exists. Including can result in warnings about duplicate + declarations of builtin functions under mingw. + * Remove call to close()/closesocket() when the argument is always -1 (since + the change to use getaddrinfo() in 1.3.3). + +- Update to 1.4.9: + * API: + + Document::add_posting(): Fix bugs with the change in 1.4.8 to more + efficiently handle insertion of a batch of extra positions in ascending + order. These could lead to missing positions and corrupted encoded + positional data. + * remote backend: + + Avoid hang if remote connection shutdown fails by not waiting for the + connection to close in this situation. Seems to fix occasional hangs seen on + macOS. Patch from Germán M. Bravo. +- Update to 1.4.8: + * API: + + QueryParser,TermGenerator: Add new stemming mode STEM_SOME_FULL_POS. + This stores positional information for both stemmed and unstemmed terms, + allowing NEAR and ADJ to work with stemmed terms. The extra positional + information is likely to take up a significant amount of extra disk space so + the default STEM_SOME is likely to be a better choice for most users. + + Database::check(): Fetch and decompress the document data to catch problems + with the splitting of large data into multiple entries, corruption of the + compressed data, etc. Also check that empty document data isn't explicitly + stored for glass. + + Fix an incorrect type being used for term positions in the TermGenerator API. + These were Xapian::termcount but should be Xapian::termpos. Both are + typedefs for the same 32-bit unsigned integer type by default (almost always + "unsigned int") so this change is entirely compatible, except that if you + were configuring 1.4.7 or earlier with --enable-64bit-termcount you need to + also use the new --enable-64bit-termpos configure option with 1.4.8 and up or + rebuild your applications. This change was necessary to make + - -enable-64bit-termpos actually useful. + + Add Document::remove_postings() method which removes all postings in a + specified term position range much more efficiently than by calling + remove_posting() repeatedly. It returns the number of postings removed. + + Fix bugs with handling term positions >= 0x80000000. Reported by Gaurav + Arora. + + Document::add_posting(): More efficiently handle insertion of a batch of + extra positions in ascending order. + + Query: Simplify OP_SYNONYM with single OP_WILDCARD subquery by converting to + OP_WILDCARD with combiner OP_SYNONYM, which means such cases can take + advantage of the new matcher optimisation in this release to avoid needing + document length for OP_WILDCARD with combiner OP_SYNONYM. + * testsuite: + + Catch and report std::exception from the test harness itself. + + apitest: Drop special case for not storing doc length in testcase postlist5 - + all backends have stored document lengths for a long time. + + test_harness: Create directories in a race-free way. + * matcher: + + Avoid needing document length for an OP_WILDCARD with combiner OP_SYNONYM. + We know that we can't get any duplicate terms in the expansion of a wildcard + so the sum of the wdf from them can't possibly exceed the document length. + + OP_SYNONYM: No longer tries to initialise weights for its subquery, which + should reduce the time taken to set up a large wildcard query. + + OP_SYNONYM: Fix frequency estimates when OP_SYNONYM is used with a + subquery containing OP_XOR or OP_MAX - in such cases the frequency + estimates for the first subquery of the OP_XOR/OP_MAX were used for + all its subqueries. Also the estimated collection frequency is + now rounded to the nearest integer rather than always being rounded + down. + * glass backend: + + Revert change made in 1.4.6: + Enable glass's "open_nearby_postlist" optimisation (which especially helps + large wildcard queries) for writable databases without any uncommitted + changes as well. + The amended check isn't conservative enough as there may be postlist changes + in the inverter while the table is unmodified. This breaks testcase + T150-tagging.sh in notmuch's testsuite, reported by David Bremner. + + When indexing a document without any terms we now avoid some unnecessary work + when storing its termlist. + * build system: + + New --enable-64bit-termpos configure option which makes Xapian::termpos a + 64-bit type and enables support for storing 64-bit termpos values in the + glass backend in an upwardly compatible way. Few people will actually want + to index documents more than 4 billion words long, but the extra numbering + space can be helpful if you want to use term positions in "interesting" ways. + + Hook up configure --disable-sse/--enable-sse=sse options for MSVC. + + Fix configure probes for builtin functions for clang. We need to specify the + argument types for each builtin since otherwise AC_CHECK_DECLS tries to + compile code which just tries to take a pointer to the builtin function + causing clang to give an error saying that's not allowed. If the argument + types are specified then AC_CHECK_DECLS tries to compile a call to the + builtin function instead. + * documentation: + + Fix documentation comment typo. + * tools: + + xapian-delve: Test for all docs empty using get_total_length() which is + slightly simpler internally than get_avlength(), and avoids an exact floating + point equality check. + * examples: + + quest: Support --weight=coord. + + xapian-pos: New tool to show term position info to help debugging when using + positional information in more complex ways. + * portability: + + Fix undefined behaviour from C++ ODR violation due to using the same name + two different non-static inline functions. It seems that with current GCC + versions the desired function always ends up being used, but with current + clang the other function is sometimes used, resulting in database corruption + when using value slots in docid 16384 or higher with the default glass + backend. Patch from Germán M. Bravo. + + Suppress alignment cast warning on sparc Linux. The pointer being cast is to + a record returned by getdirentries(), so it should be suitable aligned. + + Drop special handling for Compaq C++. We never actually achieved a working + build using it, and I can find no evidence that this compiler still exists, + let alone that it was updated for C++11 which we now require. + + Create new database directories in race-free way. + + Avoid throwing and handling an exception in replace_document() when + adding a document with a specified docid which is <= last_docid but currently + unused. + + Use our portable code for handling UUIDs on all platforms, and only use + platform-specific code for generating a new UUID. This fixes a bug with + converting UUIDs to and from string representation on FreeBSD, NetBSD and + OpenBSD on little-endian platforms which resulted in reversed byte order in + the first three components, so the same database would report a different + UUID on these platforms compared to other platforms. With this fix, the + UUIDs of existing databases will appear to change on these platforms + (except in rare "palindronic" cases). Reported by Germán M. Bravo. + + Fix to build with a C++17 compiler. Previously we used a "byte" type + internally which clashed with "std::byte" in source files which use + "using namespace std;". Fixes #768, reported by Laurent Stacul. + + Adjust apitest testcase stubdb2 to allow for NetBSD oddity: NetBSD's + getaddrinfo() in IPv4 mode seems to resolve ::1 to an IPv4 address on the + local network. + + Avoid timer_create() on OpenBSD and NetBSD. On OpenBSD it always fails with + ENOSYS (and there's no prototype in the libc headers), while on NetBSD it + seems to work, but the timer never seems to fire, so it's useless to us (see + [#770]). + + Use SOCK_NONBLOCK if available to avoid a call to fcntl(). It's supported by + at least Linux, FreeBSD, NetBSD and OpenBSD. + + Use O_NOINHERIT for O_CLOEXEC on Windows. This flag has essentially the same + effect, and it's common in other codebases to do this. + + On AIX O_CLOEXEC may be a 64-bit constant which won't fit in an int. To + workaround this stupidity we now call the non-standard open64x() instead + of open() when the flags don't fit in an int. + + Add functions to add/multiply with overflow check. These are implemented + with compiler builtins or equivalent where possible, so the overflow check + will typically just require a check of the processor's overflow or carry + flag. + +- Update to 1.4.7: + * API: + + Database::check(): Fix bogus error reports for documents with length + zero due to a new check added in 1.4.6 that the doclength was between the + stored upper and lower bounds, which failed to allow for the lower bound + ignoring documents with length zero (since documents indexed only by + boolean terms aren't involved in weighted searches). + + Query: Use of Query::MatchAll in multithreaded code causes problems + because the reference counting gets messed up by concurrent updates. + Document that Query(string()) should be used instead of MatchAll in + multithreaded code, and avoid using it in library code. + * Stem: + + Stemming algorithms added for Irish, Lithuanian, Nepali and Tamil. + + Merge Snowball compiler changes which improve code generation. + + Merge optimisations to the Arabic and Turkish stemmers. + * testsuite: + + Fix duplicate test in apitest closedb10 testcase. + * See also https://xapian.org/docs/xapian-core-1.4.7/NEWS + +- Fix RPM groups. +- Trim bias and redundancies from description. + +- Update to 1.4.6: + * API classes now support C++11 move semantics when using a compiler which + we are confident supports them (currently compilers which define + __cplusplus >= 201103 plus a special check for MSVC 2015 or later). + C++11 move semantics provide a clean and efficient way for threaded code to + hand-off Xapian objects to worker threads, but in this case it's very + unhelpful for availability of these semantics to vary by compiler as it + quietly leads to a build with non-threadsafe behaviour. To address this, + user code can #define XAPIAN_MOVE_SEMANTICS before #include to + force this on, and will then get a compilation failure if the compiler + lacks suitable support. + * MSet::snippet(): + + We were only escaping output for HTML/XML in some cases, which would + potentially allow HTML to be injected into output (this fixes + bnc#1099925, CVE-2018-0499). + + Include certain leading non-word characters in snippets. Previously we + started the snippet at the start of the first actual word, but there are + various cases where including non-word characters in front of the actual + word adds useful context or otherwise aids comprehension. + * Add MSetIterator::get_sort_key() method. The sort key has always been + available internally, but wasn't exposed via the public API before, which + seems like an oversight as the collapse key has long been available. + * Database::compact(): + + Allow Compactor::resolve_duplicate_metadata() implementations to delete + entries. Previously if an implementation returned an empty string this + would result in a user meta-data entry with an empty value, which isn't + normally achievable (empty meta-data values aren't stored), and so will + cause odd behaviour. We now handle an empty returned value by + interpreting it in the natural way - it means that the merged result is + to not set a value for that key in the output database. + + Since 1.3.5 compacting a WritableDatabase with uncommitted changes throws + Xapian::InvalidOperationError when compacting to a single-file glass + database. This release adds similar checks for chert and when compacting + to a multiple-file glass database. + + In the unlikely event that the total number of documents or the total + length of all documents overflow when trying to compact a multi-database, + we throw an exception. This is now a DatabaseError exception instead of a + const char* exception (a hang-over from before this code was turned into a + public API in the library). + * See also https://xapian.org/docs/xapian-core-1.4.6/NEWS + xdg-desktop-portal +- Ensure systemd rpm macros are called at install/uninstall times + for systemd user services. +- Add BuildRequires on systemd-rpm-macros. + +- Update to version 1.8.0: + + openuri: + - Allow skipping the chooser for more URL tyles + - Robustness fixes + + filechooser: Return the current filter + + camera: + - Make the client node visible + - Don't leak pipewire proxy + + Fix file descriptor leaks + + Testsuite improvements + + Updated translations. +- Changes from version 1.7.2: + + document: + - Reduce the use of open fds + - Add more tests and fix issues they found + + Fix the build with musl. +- Changes from version 1.7.1: + + filechooser: + - Add a "directory" option + - Document the "writable" option + + document: Expose directories with their proper name +- Changes from version 1.7.0: + + testsuite improvements + + background: Avoid a segfault + + screencast: Require pipewire 0.3 + + document: + - Support exporting directories + - New fuse implementation + + Better support for snap and toolbox + + Updated translations. +- Drop patches fixed upstream: + + xdg-dp-port-pipewire-3-api.patch + + 0001-Fix-use-after-free-in-xdg_get_app_info_from_pid.patch + + 0002-add-AssumedAppArmorLabel-key-to-D-Bus-service-files.patch + + 0003-Fix-criticals-if-no-default-handler-for-desired-type.patch + +- Require /usr/bin/fusermount: xdg-document-portal calls out to the + binary. Without it, files or dirs can be selected, but + whatever is done with or in them, will not have any effect + (boo#1175899). + +- Fixes for %_libexecdir changing to /usr/libexec + xdg-desktop-portal-gtk +- Update to version 1.8.0: + + filechooser: Return the current filter + + screenshot: Fix cancellation + + appchooser: Avoid a crash + + wallpaper: + - Properly preview placement settings + - Drop the lockscreen option + + printing: Improve the notification + + Updated translations. +- Changes from version 1.7.1: + + filechooser: + - Handle the "directory" option to select directories + - Only show preview when we have an image + + Updated translations. +- Changes from version 1.7.0: + + screencast: Support mutter version 3 + + settings: Fall back to gsettings for enable-animations + + Updated translations. +- Drop xdg-dpg-support-mutter-pipewire-3-api.patch: Fixed upstream. + +- Add xdg-dpg-support-mutter-pipewire-3-api.patch: screencast: Bump + supported Mutter version to 3 (New pipewire api ver 3). + xen -- bsc#1178591 - VUL-0: xen: Intel RAPL sidechannel attack aka - PLATYPUS attack aka XSA-351 +- bsc#1181254 - VUL-0: xen: IRQ vector leak on x86 (XSA-360) + xsa360.patch + +- bsc#1180794 - bogus qemu binary path used when creating fv guest + under xen + xen.spec + +- bsc#1180690 - L3-Question: xen: no needsreboot flag set + Add Provides: installhint(reboot-needed) in xen.spec for libzypp + +- Update libxl.set-migration-constraints-from-cmdline.patch + Remove code which handled --max_factor. The total amount of + transferred data is no indicator to trigger the final stop+copy. + This should have been removed during upgrade to Xen 4.7. + Fix off-by-one in --max_iters, it caused one additional copy cycle. + Reduce default value of --max_iters from 5 to 2. + The workload within domU will continue to produce dirty pages. + It is unreasonable to expect any slowdown during migration. + Now there is one initial copy of all memory, one instead of four + iteration for dirty memory, and a final copy iteration prior move. + +- Update to Xen 4.14.1 bug fix release (bsc#1027519) + xen-4.14.1-testing-src.tar.bz2 + Contains the following recent security fixes + bsc#1179516 XSA-359 - CVE-2020-29571 + bsc#1179514 XSA-358 - CVE-2020-29570 + bsc#1179513 XSA-356 - CVE-2020-29567 + bsc#1178963 XSA-355 - CVE-2020-29040 + bsc#1178591 XSA-351 - CVE-2020-28368 + bsc#1179506 XSA-348 - CVE-2020-29566 + bsc#1179502 XSA-325 - CVE-2020-29483 + bsc#1179501 XSA-324 - CVE-2020-29484 + bsc#1179498 XSA-322 - CVE-2020-29481 + bsc#1179496 XSA-115 - CVE-2020-29480 +- Dropped patches contained in new tarball + 5f1a9916-x86-S3-put-data-sregs-into-known-state.patch + 5f21b9fd-x86-cpuid-APIC-bit-clearing.patch + 5f479d9e-x86-begin-to-support-MSR_ARCH_CAPS.patch + 5f4cf06e-x86-Dom0-expose-MSR_ARCH_CAPS.patch + 5f4cf96a-x86-PV-fix-SEGBASE_GS_USER_SEL.patch + 5f560c42-x86-PV-64bit-segbase-consistency.patch + 5f560c42-x86-PV-rewrite-segment-ctxt-switch.patch + 5f5b6b7a-hypfs-fix-custom-param-writes.patch + 5f607915-x86-HVM-more-consistent-IO-completion.patch + 5f6a002d-x86-PV-handle-MSR_MISC_ENABLE-correctly.patch + 5f6a0049-memory-dont-skip-RCU-unlock-in-acquire_resource.patch + 5f6a0067-x86-vPT-fix-race-when-migrating-timers.patch + 5f6a008e-x86-MSI-drop-read_msi_msg.patch + 5f6a00aa-x86-MSI-X-restrict-reading-of-PBA-bases.patch + 5f6a00c4-evtchn-relax-port_is_valid.patch + 5f6a00df-x86-PV-avoid-double-exception-injection.patch + 5f6a00f4-evtchn-add-missing-barriers.patch + 5f6a0111-evtchn-x86-enforce-correct-upper-limit.patch + 5f6a013f-evtchn_reset-shouldnt-succeed-with.patch + 5f6a0160-evtchn-IRQ-safe-per-channel-lock.patch + 5f6a0178-evtchn-address-races-with-evtchn_reset.patch + 5f6a01a4-evtchn-preempt-in-evtchn_destroy.patch + 5f6a01c6-evtchn-preempt-in-evtchn_reset.patch + 5f6cfb5b-x86-PV-dont-GP-for-SYSENTER-with-NT-set.patch + 5f6cfb5b-x86-PV-dont-clobber-NT-on-return-to-guest.patch + 5f71a21e-x86-S3-fix-shadow-stack-resume.patch + 5f76ca65-evtchn-Flask-prealloc-for-send.patch + 5f76caaf-evtchn-FIFO-use-stable-fields.patch + 5f897c25-x86-traps-fix-read_registers-for-DF.patch + 5f897c7b-x86-smpboot-restrict-memguard_guard_stack.patch + 5f8ed5d3-x86-mm-map_pages_to_xen-single-exit-path.patch + 5f8ed5eb-x86-mm-modify_xen_mappings-one-exit-path.patch + 5f8ed603-x86-mm-prevent-races-in-mapping-updates.patch + 5f8ed635-IOMMU-suppress-iommu_dont_flush_iotlb-when.patch + 5f8ed64c-IOMMU-hold-page-ref-until-TLB-flush.patch + 5f8ed682-AMD-IOMMU-convert-amd_iommu_pte.patch + 5f8ed69c-AMD-IOMMU-update-live-PTEs-atomically.patch + 5f8ed6b0-AMD-IOMMU-suitably-order-DTE-mods.patch + xsa286-1.patch + xsa286-2.patch + xsa286-3.patch + xsa286-4.patch + xsa286-5.patch + xsa286-6.patch + xsa351-1.patch + xsa351-2.patch + xsa351-3.patch + xsa355.patch + +- Pass --with-rundir to configure to get rid of /var/run + +- bsc#1178736 - allow restart of xenwatchdogd, enable tuning of + keep-alive interval and timeout options via XENWATCHDOGD_ARGS= + add xenwatchdogd-options.patch + add xenwatchdogd-restart.patch + +- bsc#1177112 - Fix libxc.sr.superpage.patch + The receiving side may punch holes incorrectly into optimistically + allocated superpages. Also reduce overhead in bitmap handling. + add libxc-bitmap-50a5215f30e964a6f16165ab57925ca39f31a849.patch + add libxc-bitmap-long.patch + add libxc-bitmap-longs.patch + +- boo#1029961 - Move files in xen-tools-domU to /usr/bin from /bin + xen-destdir.patch + Drop tmp_build.patch + +- bsc#1176782 - L3: xl dump-core shows missing nr_pages during + core. If maxmem and current are the same the issue doesn't happen + 5fca3b32-tools-libs-ctrl-fix-dumping-of-ballooned-guest.patch + +- bsc#1178963 - VUL-0: xen: stack corruption from XSA-346 change + (XSA-355) + xsa355.patch + +- Fix build error with libxl.fix-libacpi-dependency.patch + +- Enhance libxc.migrate_tracking.patch + Hide SUSEINFO messages from pause/unpause/resume from xl command. + They are intended for libvirt logging, but lacked info about + execution context. + Remove extra logging about dirty pages in each iteration, the + number of transferred pages + protocol overhead is already + reported elsewhere. + +- Remove libxl.libxl__domain_pvcontrol.patch + It is already part of 4.14.0-rc1 + +- bsc#1178591 - VUL-0: CVE-2020-28368: xen: Intel RAPL sidechannel + attack aka PLATYPUS attack aka XSA-351 -- bsc#1177409 - VUL-0: xen: x86 PV guest INVLPG-like flushes may - leave stale TLB entries (XSA-286) +- bsc#1177409 - VUL-0: CVE-2020-27674: xen: x86 PV guest + INVLPG-like flushes may leave stale TLB entries (XSA-286) -- bsc#1177412 - VUL-0: xen: Race condition in Xen mapping code - (XSA-345) +- bsc#1177412 - VUL-0: CVE-2020-27672: xen: Race condition in Xen + mapping code (XSA-345) -- bsc#1177413 - VUL-0: xen: undue deferral of IOMMU TLB flushes - (XSA-346) +- bsc#1177413 - VUL-0: CVE-2020-27671: xen: undue deferral of IOMMU + TLB flushes (XSA-346) -- bsc#1177414 - VUL-0: xen: unsafe AMD IOMMU page table updates - (XSA-347) +- bsc#1177414 - VUL-0: CVE-2020-27670: xen: unsafe AMD IOMMU page + table updates (XSA-347) xorg-x11-server +- u_xkb-CVE-2020-14360.patch + * Avoid out of bounds memory accesses on too short request + (ZDI-CAN-11572/CVE-2020-14360, bsc#1174908) + +- update U_xkbsetdeviceinfo.patch + * fixed broken patch (bsc#1177596, comment#18, ZDI-CAN-11839/CVE-2020-25712) + +- U_xkbsetdeviceinfo.patch (bsc#1177596, ZDI-CAN-11839/CVE-2020-25712) + * fix for Heap-based Buffer Overflow Privilege Escalation + Vulnerability + yast2 +- Do not propose hibernation when running over a virtualized setup + (bsc#1180982). +- 4.3.51 + +- Fixed Resolvables class to uniqely identify the libzypp objects + to avoid random failures (related to bsc#1178688) +- 4.3.50 + +- Keep the libzypp target open to verify other packages + (bsc#1180858, related to the previous fix bsc#1179773) +- 4.3.49 + +- Ensure the libzypp target is initialized when downloading + the skelcd packages (to verify the GPG signatures) (bsc#1179773) +- Log more details when several resolvables (instead of a single + one) are unexpectedly found (related to bsc#1176276) +- 4.3.48 + +- Fix default for hibernation proposal (bsc#1169874) +- 4.3.47 + yast2-bootloader +- Do not propose resume kernel parameter when the swap is smaller + than the RAM size (bsc#1180977). +- 4.3.20 + +- Ensure the proposal is re-calculated when the partitioning plan + has changed (bsc#1180218 and bsc#1180976) +- 4.3.19 + +- Fix unit tests (bsc#1181175). +- 4.3.18 + +- The logic for calculating a device udev link is now delegated to + the yast2-storage-ng module (jsc#SLE-17081, also related to + bsc#1177926 and bsc#1169874). +- 4.3.17 + yast2-metapackage-handler +- Fixed a crash when ~/.y2usersettings is missing (bsc#1173781) +- 4.3.0 + -- Move binaries from /sbin to /usr/sbin to follow conventions and - keep backward compatible symlinks -- 3.1.1 - yast2-network +- Suggest to modify the VLAN interface name when the VLAN ID is + modified (bsc#1174363) +- 4.3.41 + +- Cache the online status of s390 group devices speeding up the + population of the devices overview table (bsc#1180702) +- 4.3.40 + +- Added basic support for writing the network configuration to the + NetworkManager backend (bsc#1180716) +- 4.3.39 + +- Fix network configuration progress bar steps (bsc#1180702) +- 4.3.38 + +- Improve additional addresses validation (bsc#1174766) +- 4.3.37 + yast2-packager +- Proposal: fixed the logic to detect whether the partitioning has + changed since the previous execution (found by bsc#1180537). +- 4.3.12 + yast2-pkg-bindings +- Log more details about the newly added repositories + (for debugging bsc#1181344) +- 4.3.8 + +- Allow filtering resolvables by RPM path, return RPM path + for the product packages (related to bsc#1178688, bsc#1176276) +- 4.3.7 + +- Fixed repository refresh (a bug caused downloading only the index + file in some cases) (bsc#1180203) +- 4.3.6 + +- Set the previous "distro_target" option when restarting the + package manager (bsc#1176275), fixes upgrade from SLE12 via SMT +- 4.3.5 + +- Add a hint to the "locked" error message + (gh#yast/yast-yast2#1102) +- 4.3.4 + yast2-storage-ng +- AutoYaST UI: improved visualization of some partition sections + in the left tree (related to jsc#SLE-11308). +- 4.3.41 + +- Partitioner: fix typo calling to popup (bsc#1181348). +- 4.3.40 + +- Partitioner: show used devices for MD BIOS RAID (bsc#1181300). +- 4.3.39 + +- Partitioner: properly set subvolume limit when creating a new + subvolume (bsc#1181205). +- 4.3.38 + +- Partitioner: removed warning for too small EFI system partition. +- Proposal: reuse pre-existing EFI partition even if it's small +- Related to bsc#1177358, bsc#1170625 and bsc#1119318. +- 4.3.37 + +- Added API methods to get the preferred name to reference a block + device or its filesystem (jsc#SLE-17081, also related to + bsc#1177926 and bsc#1169874). +- 4.3.36 + yast2-theme +- Add raleway fonts dependency (related to bsc#1158298). +- 4.3.1 + +- Add icon for sway pattern + See gh#openSUSE/openSUSEway#1 + https://github.com/openSUSE/openSUSEway/issues/1 +- 4.3.0 + yast2-trans +- Update to version 84.87.20210123.74263e8a12: + * New POT for text domain 'nis_server'. + * New POT for text domain 'network'. + * New POT for text domain 'instserver'. + * New POT for text domain 'proxy'. + * New POT for text domain 'wol'. + * New POT for text domain 'vpn'. + * New POT for text domain 'users'. + * New POT for text domain 'update'. + * New POT for text domain 'tune'. + * New POT for text domain 'sysconfig'. + * New POT for text domain 'support'. + * New POT for text domain 'sudo'. + * New POT for text domain 'storage'. + * New POT for text domain 'squid'. + * New POT for text domain 'sound'. + * New POT for text domain 'snapper'. + * New POT for text domain 'slp-server'. + * New POT for text domain 'services-manager'. + * New POT for text domain 'security'. + * New POT for text domain 'scanner'. + * New POT for text domain 'samba-server'. + * New POT for text domain 'samba-client'. + * New POT for text domain 's390'. + * New POT for text domain 'rmt'. + * New POT for text domain 'relocation-server'. + * New POT for text domain 'reipl'. + * New POT for text domain 'registration'. + * New POT for text domain 'rdp'. + * New POT for text domain 'proxy'. + * New POT for text domain 'printer'. + * New POT for text domain 'pam'. + * New POT for text domain 'packager'. + * New POT for text domain 'online-update'. + * New POT for text domain 'ntp-client'. + * New POT for text domain 'nis_server'. + * New POT for text domain 'nis'. + * New POT for text domain 'nfs_server'. + * New POT for text domain 'nfs'. + * New POT for text domain 'network'. + * New POT for text domain 'multipath'. + * New POT for text domain 'migration'. + * New POT for text domain 'mail'. + * New POT for text domain 'ldap-client'. + * New POT for text domain 'ldap'. + * New POT for text domain 'kdump'. + * New POT for text domain 'journalctl'. + * New POT for text domain 'isns'. + * New POT for text domain 'iscsi-lio-server'. + * New POT for text domain 'iscsi-client'. + * New POT for text domain 'iplb'. + * New POT for text domain 'instserver'. + * New POT for text domain 'installation'. + * New POT for text domain 'http-server'. + * New POT for text domain 'geo-cluster'. + * New POT for text domain 'ftp-server'. + * New POT for text domain 'firewall'. + * New POT for text domain 'fcoe-client'. + * New POT for text domain 'drbd'. + * New POT for text domain 'dns-server'. + * New POT for text domain 'dhcp-server'. + * New POT for text domain 'crowbar'. + * New POT for text domain 'country'. + * New POT for text domain 'control'. + * New POT for text domain 'cluster'. + * New POT for text domain 'bootloader'. + * New POT for text domain 'base'. + * New POT for text domain 'autoinst'. + * New POT for text domain 'auth-client'. + * New POT for text domain 'audit-laf'. + * New POT for text domain 'apparmor'. + * New POT for text domain 'add-on'. + * Automatic update of wol. + * Automatic update of vpn. + * Automatic update of users. + * Automatic update of update. + * Automatic update of tune. + * Automatic update of s390. + * Automatic update of sysconfig. + * Automatic update of support. + * Automatic update of sudo. + * Automatic update of storage. + * Automatic update of squid. + * Automatic update of sound. + * Automatic update of snapper. + * Automatic update of slp-server. + * Automatic update of services-manager. + * Automatic update of security. + * Automatic update of scanner. + * Automatic update of samba-server. + * Automatic update of samba-client. + * Automatic update of rmt. + * Automatic update of relocation-server. + * Automatic update of reipl. + * Automatic update of registration. + * Automatic update of rdp. + * Automatic update of proxy. + * Automatic update of printer. + * Automatic update of pam. + * Automatic update of packager. + * Automatic update of online-update. + * Automatic update of ntp-client. + * Automatic update of nis_server. + * Automatic update of nis. + * Automatic update of nfs_server. + * Automatic update of nfs. + * Automatic update of network. + * Automatic update of multipath. + * Automatic update of migration. + * Automatic update of mail. + * Automatic update of ldap-client. + * Automatic update of ldap. + * Automatic update of kdump. + * Automatic update of journalctl. + * Automatic update of isns. + * Automatic update of iscsi-lio-server. + * Automatic update of iscsi-client. + * Automatic update of iplb. + * Automatic update of instserver. + * Automatic update of installation. + * Automatic update of http-server. + * Automatic update of hana-update. + * Automatic update of hanafirewall. + * Automatic update of geo-cluster. + * Automatic update of ftp-server. + * Automatic update of firewall. + * Automatic update of fcoe-client. + * Automatic update of drbd. + * Automatic update of dns-server. + * Automatic update of dhcp-server. + * Automatic update of crowbar. + * Automatic update of country. + * Automatic update of control. + * Automatic update of cluster. + * Automatic update of cc-control. + * Automatic update of cc. + * Automatic update of bootloader. + * Automatic update of base. + * Automatic update of autoinst. + * Automatic update of auth-client. + * Automatic update of audit-laf. + * Automatic update of apparmor. + * Automatic update of add-on. + * New POT for text domain 'registration'. + * New POT for text domain 'rear'. + * New POT for text domain 'autoinst'. + +- Update to version 84.87.20210116.f5a95d2c8b: + * Translated using Weblate (Dutch) + * New POT for text domain 'vpn'. + * New POT for text domain 'users'. + * New POT for text domain 'update'. + * New POT for text domain 'tune'. + * New POT for text domain 'tftp-server'. + * New POT for text domain 'sysconfig'. + * New POT for text domain 'support'. + * New POT for text domain 'sudo'. + * New POT for text domain 'storage'. + * New POT for text domain 'squid'. + * New POT for text domain 'sound'. + * New POT for text domain 'snapper'. + * New POT for text domain 'slp-server'. + * New POT for text domain 'slp'. + * New POT for text domain 'services-manager'. + * New POT for text domain 'security'. + * New POT for text domain 'scanner'. + * New POT for text domain 'samba-server'. + * New POT for text domain 'samba-client'. + * New POT for text domain 's390'. + * New POT for text domain 'registration'. + * New POT for text domain 'rear'. + * New POT for text domain 'proxy'. + * New POT for text domain 'printer'. + * New POT for text domain 'pam'. + * New POT for text domain 'packager'. + * New POT for text domain 'online-update-configuration'. + * New POT for text domain 'online-update'. + * New POT for text domain 'oneclickinstall'. + * New POT for text domain 'ntp-client'. + * New POT for text domain 'nis_server'. + * New POT for text domain 'nis'. + * New POT for text domain 'nfs_server'. + * New POT for text domain 'nfs'. + * New POT for text domain 'network'. + * New POT for text domain 'migration'. + * New POT for text domain 'mail'. + * New POT for text domain 'ldap-client'. + * New POT for text domain 'ldap'. + * New POT for text domain 'kdump'. + * New POT for text domain 'journalctl'. + * New POT for text domain 'journal'. + * New POT for text domain 'isns'. + * New POT for text domain 'iscsi-lio-server'. + * New POT for text domain 'iscsi-client'. + * New POT for text domain 'instserver'. + * New POT for text domain 'installation'. + * New POT for text domain 'http-server'. + * New POT for text domain 'ftp-server'. + * New POT for text domain 'firewall'. + * New POT for text domain 'fcoe-client'. + * New POT for text domain 'drbd'. + * New POT for text domain 'docker'. + * New POT for text domain 'dns-server'. + * New POT for text domain 'dhcp-server'. + * New POT for text domain 'crowbar'. + * New POT for text domain 'country'. + * New POT for text domain 'control'. + * New POT for text domain 'configuration_management'. + * New POT for text domain 'cluster'. + * New POT for text domain 'cio'. + * New POT for text domain 'caasp'. + * New POT for text domain 'bootloader'. + * New POT for text domain 'base'. + * New POT for text domain 'autoinst'. + * New POT for text domain 'authserver'. + * New POT for text domain 'auth-client'. + * New POT for text domain 'audit-laf'. + * New POT for text domain 'apparmor'. + * New POT for text domain 'alternatives'. + * New POT for text domain 'add-on'. + * New POT for text domain 'vpn'. + * New POT for text domain 'users'. + * New POT for text domain 'update'. + * New POT for text domain 'tune'. + * New POT for text domain 'tftp-server'. + * New POT for text domain 'sysconfig'. + * New POT for text domain 'support'. + * New POT for text domain 'sudo'. + * New POT for text domain 'storage'. + * New POT for text domain 'squid'. + * New POT for text domain 'sound'. + * New POT for text domain 'snapper'. + * New POT for text domain 'slp-server'. + * New POT for text domain 'services-manager'. + * New POT for text domain 'security'. + * New POT for text domain 'scanner'. + * New POT for text domain 'samba-server'. + * New POT for text domain 'samba-client'. + * New POT for text domain 's390'. + * New POT for text domain 'registration'. + * New POT for text domain 'rear'. + * New POT for text domain 'proxy'. + * New POT for text domain 'printer'. + * New POT for text domain 'pam'. + * New POT for text domain 'packager'. + * New POT for text domain 'online-update-configuration'. + * New POT for text domain 'online-update'. + * New POT for text domain 'oneclickinstall'. + * New POT for text domain 'ntp-client'. + * New POT for text domain 'nis_server'. + * New POT for text domain 'nis'. + * New POT for text domain 'nfs_server'. + * New POT for text domain 'nfs'. + * New POT for text domain 'network'. + * New POT for text domain 'migration'. + * New POT for text domain 'mail'. + * New POT for text domain 'ldap-client'. + * New POT for text domain 'ldap'. + * New POT for text domain 'kdump'. + * New POT for text domain 'journalctl'. + * New POT for text domain 'journal'. + * New POT for text domain 'isns'. + * New POT for text domain 'iscsi-lio-server'. + * New POT for text domain 'iscsi-client'. + * New POT for text domain 'instserver'. + * New POT for text domain 'installation'. + * New POT for text domain 'http-server'. + * New POT for text domain 'ftp-server'. + * New POT for text domain 'firewall'. + * New POT for text domain 'fcoe-client'. + * New POT for text domain 'drbd'. + * New POT for text domain 'docker'. + * New POT for text domain 'dns-server'. + * New POT for text domain 'dhcp-server'. + * New POT for text domain 'crowbar'. + * New POT for text domain 'country'. + * New POT for text domain 'control'. + * New POT for text domain 'configuration_management'. + * New POT for text domain 'cluster'. + * New POT for text domain 'cio'. + * New POT for text domain 'caasp'. + * New POT for text domain 'bootloader'. + * New POT for text domain 'base'. + * New POT for text domain 'autoinst'. + * New POT for text domain 'authserver'. + * New POT for text domain 'auth-client'. + * New POT for text domain 'audit-laf'. + * New POT for text domain 'apparmor'. + * New POT for text domain 'alternatives'. + * New POT for text domain 'add-on'. + * Translated using Weblate (Czech) + * Translated using Weblate (Czech) + * Translated using Weblate (Czech) + * Translated using Weblate (Portuguese) + * Added translation using Weblate (Czech) + * New POT for text domain 'network'. + * Translated using Weblate (Portuguese) + * Translated using Weblate (Portuguese (Brazil)) + * Translated using Weblate (Portuguese (Brazil)) + +- Update to version 84.87.20210109.77c13975e0: + * New POT for text domain 'vm'. + * Translated using Weblate (Slovak) + * Translated using Weblate (Slovak) + * Translated using Weblate (Dutch) + * Translated using Weblate (Dutch) + * Translated using Weblate (Catalan) + * Translated using Weblate (Catalan) + * Translated using Weblate (Catalan) + * Translated using Weblate (Japanese) + * Translated using Weblate (Japanese) + * New POT for text domain 'control'. + * New POT for text domain 'cluster'. + * Translated using Weblate (Russian) + * Translated using Weblate (Russian) + * Translated using Weblate (Russian) + * Translated using Weblate (Russian) + * Translated using Weblate (Russian) + * Translated using Weblate (Russian) + * Translated using Weblate (Russian) + * Translated using Weblate (Russian) + * Translated using Weblate (Russian) + * Translated using Weblate (Russian) + * Translated using Weblate (Russian) + * Translated using Weblate (Russian) + * Translated using Weblate (Russian) + * Translated using Weblate (Russian) + * Translated using Weblate (Russian) + * Translated using Weblate (Russian) + * Translated using Weblate (Russian) + * Translated using Weblate (Russian) + * Translated using Weblate (Russian) + * Translated using Weblate (Russian) + * Translated using Weblate (Russian) + * Translated using Weblate (Russian) + * Translated using Weblate (Russian) + * Translated using Weblate (Russian) + * Translated using Weblate (Russian) + * Translated using Weblate (Russian) + * Translated using Weblate (Russian) + * Translated using Weblate (Russian) + * Translated using Weblate (Russian) + * Translated using Weblate (Russian) + * Translated using Weblate (Russian) + * Translated using Weblate (Russian) + * Translated using Weblate (Russian) + * Translated using Weblate (Russian) + * Translated using Weblate (Russian) + * Translated using Weblate (Russian) + * Translated using Weblate (Russian) + * Translated using Weblate (Russian) + * Translated using Weblate (Russian) + * Translated using Weblate (Russian) + * Translated using Weblate (Russian) + * Translated using Weblate (Portuguese (Brazil)) + * Translated using Weblate (Portuguese (Brazil)) + +- Update to version 84.87.20201231.ee5608b05e: + * Translated using Weblate (Portuguese) + * Translated using Weblate (Portuguese) + * Translated using Weblate (Portuguese) + * Translated using Weblate (French) + * Translated using Weblate (French) + * Translated using Weblate (French) + * Translated using Weblate (French) + * Translated using Weblate (French) + * Translated using Weblate (French) + * Translated using Weblate (Portuguese) + * Translated using Weblate (Portuguese) + * Translated using Weblate (Portuguese) + * Translated using Weblate (Portuguese) + * Translated using Weblate (French) + * Translated using Weblate (French) + * Translated using Weblate (French) + * Translated using Weblate (French) + * Translated using Weblate (Finnish) + * Translated using Weblate (Finnish) + * Translated using Weblate (Finnish) + * Translated using Weblate (Finnish) + * Translated using Weblate (Portuguese) + * Translated using Weblate (Portuguese) + * Translated using Weblate (Portuguese) + * Translated using Weblate (Portuguese) + * Translated using Weblate (Portuguese) + * Translated using Weblate (Portuguese) + * Translated using Weblate (Portuguese) + * Translated using Weblate (Portuguese) + * Translated using Weblate (French) + * Translated using Weblate (Czech) + * Translated using Weblate (French) + * Translated using Weblate (French) + * Translated using Weblate (French) + * Translated using Weblate (French) + * Translated using Weblate (Portuguese) + * Translated using Weblate (Portuguese) + +- Update to version 84.87.20201227.aee94d5ba8: + * Translated using Weblate (Portuguese) + * Translated using Weblate (Finnish) + * Translated using Weblate (Finnish) + * Translated using Weblate (Finnish) + * Translated using Weblate (Finnish) + * Translated using Weblate (Finnish) + * Translated using Weblate (Finnish) + * Translated using Weblate (Finnish) + * Translated using Weblate (Finnish) + * Translated using Weblate (Finnish) + * Translated using Weblate (Finnish) + * Translated using Weblate (Finnish) + * Translated using Weblate (Portuguese) + * Translated using Weblate (Portuguese) + * Translated using Weblate (Portuguese) + * Translated using Weblate (Italian) + * Translated using Weblate (Italian) + * Translated using Weblate (Italian) + * Translated using Weblate (Italian) + * Translated using Weblate (Portuguese) + * Translated using Weblate (Italian) + * Translated using Weblate (Italian) + * Translated using Weblate (Italian) + * Translated using Weblate (Italian) + * Translated using Weblate (Italian) + * Translated using Weblate (Italian) + * Translated using Weblate (Italian) + * Translated using Weblate (Italian) + * Translated using Weblate (Italian) + * Translated using Weblate (Italian) + * Translated using Weblate (Italian) + * Translated using Weblate (Chinese (China)) + * Translated using Weblate (Chinese (China)) + * Translated using Weblate (Chinese (China)) + * Translated using Weblate (Chinese (China)) + * Translated using Weblate (Chinese (China)) + * Translated using Weblate (Slovak) + * Translated using Weblate (Dutch) + * Translated using Weblate (Chinese (China)) + * Translated using Weblate (Catalan) + * Translated using Weblate (Japanese) + * Translated using Weblate (Indonesian) + * New POT for text domain 'network'. + * Translated using Weblate (Portuguese) + * New POT for text domain 'storage'. + * Translated using Weblate (Portuguese) + * Translated using Weblate (Slovak) + * Translated using Weblate (Portuguese) + * Translated using Weblate (Portuguese) + * Translated using Weblate (Dutch) + * Translated using Weblate (Catalan) + * Translated using Weblate (Japanese) + * New POT for text domain 'network'. + * Translated using Weblate (Italian) + * Translated using Weblate (Indonesian) + * Translated using Weblate (Indonesian) + * Translated using Weblate (Indonesian) + yast2-vm +- bsc#1180244, jsc#SLE-12781 + * Drop support for "libvirt LXC containers" + * Do not offer Xen virtualization options in aarch64 +- Fix wrong number version 4.2.5 -> 4.3.0 +- 4.3.1 + -- 4.2.5 +- 4.3.0 zbar +- Apply patch0 unconditionally and fix build on Leap + +- Update to version 0.23.1 + * Add i18n translation support and add a pt_BR translation + * Change default to autodetect python and gtk versions + * Some documentation updates + * Add support for binary data extraction + * Add support for raw decoding without charset conversions + * Add one shot scanning mode + * Fix help messages + * Fix some makefile issues + * Fix error detection in video4linux read + * Fix pkgconfig for zbar-qt5 + * Fix a double-free condition +- Add 0002-get-rid-of-gettext_h.patch + zlib -- Add patch to fix compression level switching - bsc#1175811 bsc#1175830 bsc#1175831 - * zlib-compression-switching.patch - -- Set -DDFLTCC_LEVEL_MASK=0x7e on s390/s390x jsc#13776 - -- Permit a deflateParams() parameter change as soon as possible(bsc#1174736) - * bsc1174736-DFLTCC_LEVEL_MASK-set-to-0x1ff.patch - Fix DFLTCC not flushing EOBS when creating raw streams(bsc#1174551) - * bsc1174551-fxi-imcomplete-raw-streams.patch - -- Update 410.patch to contain latest fixes from IBM bsc#1166260 - * The build behaviour changed - -- Update the zlib-no-version-check.patch to be even more forgiving - with the versions on the zlib to allow updates without rebuilds - -- Add SUSE specific patch to fix bsc#1138793, we simply don't want - to test if the app was linked with exactly same version of zlib - like the one that is present on the runtime: - * zlib-no-version-check.patch - -- Update the s390 patchset bsc#1137624: - * 410.patch - -- Tweak zlib-power8-fate325307.patch to have type of crc32_vpmsum - conform to usage - bsc#1141059 - -- Use FAT LTO objects in order to provide proper static library. - -- Do not enable the previous patchset on s390 but just s390x - bsc#1137624 - -- Add patchset for s390 improvements jsc#SLE-5807 bsc#1136717: - * 410.patch - -- Try to safely abort if we get NULL ptr bsc#1110304 bsc#1129576: - * zlib-power8-fate325307.patch - -- Add patch for fate#325307 zlib speedup on power8: - * zlib-power8-fate325307.patch - -- Add patch to safeguard against negative values in uInt bsc#1071321: - * 0001-Do-not-try-to-store-negative-values-in-unsigned-int.patch - -- Added 32bit minizip support - -- Add gpg signature -- Re-enable profiling - -- Add s390 performance patch (fate#314093): - * zlib-1.2.11-optimized-s390.patch - -- baselibs.conf: add missing dependencies - -- Update to version 1.2.11: - * Fix deflate stored bug when pulling last block from window - * Permit immediate deflateParams changes before any deflate input - -- Update to version 1.2.10: - * Avoid warnings on snprintf() return value - * Fix bug in deflate_stored() for zero-length input - * Fix bug in gzwrite.c that produced corrupt gzip files - * Remove files to be installed before copying them in Makefile.in - * Add warnings when compiling with assembler code - -- Update to version 1.2.9: - * Improve compress() and uncompress() to support large lengths - * Allow building zlib outside of the source directory - * Fix bug when level 0 used with Z_HUFFMAN or Z_RLE - * Fix bugs in creating a very large gzip header - * Add uncompress2() function, which returns the input size used - * Dramatically speed up deflation for level 0 (storing) - * Add gzfread() and gzfwrite(), duplicating the interfaces of fread() and fwrite() - * Add crc32_z() and adler32_z() functions with size_t lengths - * Many portability improvements -- Drop patches included in upstream: - * zlib-bnc1003577.patch - * zlib-bnc1003579-part2.patch - * zlib-bnc1003579.patch - * zlib-bnc1003580.patch - * zlib-bnc1013882.patch -- Drop zlib-1.2.7-improve-longest_match-performance.patch - * not accepted by upstream for two releases - * rebasing no longer possible - -- Include fixes for bnc#1003580 bnc#1003579 bnc#1003577 bnc#1013882: - * zlib-bnc1003577.patch - * zlib-bnc1003579-part2.patch - * zlib-bnc1003579.patch - * zlib-bnc1003580.patch refreshed - * zlib-bnc1013882.patch CVE-2016-9843 - -- Trim descriptions to fit target audience. Update RPM group - classification. - -- Require zlib-devel in zlib-devel-static to fix previous change - -- Bring back zlib-devel-static. Needed by binutils - -- Remove zlib-devel-static, nothing should use libz.a anyway. -- Package minizip library, everything using it should now pull - minizip-devel and unbundle it bnc#935864 - zypper +- Fix source-download commnds help (bsc#1180663) +- man: Recommend to use the --non-interactive global option + rather than the command option -y (bsc#1179816) +- Extend apt packagemap (fixes #366) +- --quitet: Fix install summary to write nothing if there's + nothing todo (bsc#1180077) +- Prefer /run over /var/run. +- version 1.14.42 + +- Avoid translated text in xml attributes ( fixes #361 ) +- BuildRequires: libzypp-devel >= 17.25.3. + Adapt to new LoadTestcase API. +- version 1.14.41 +