Packages changed: augeas (1.11.0 -> 1.12.0) brotli busybox busybox-links cloud-init (19.4 -> 20.2) ethtool (5.7 -> 5.8) installation-images-MicroOS (16.3 -> 16.7) microos-tools (2.2 -> 2.3) openldap2 (2.4.50 -> 2.4.51) pigz podman rook (1.3.4+git0.ga5114030 -> 1.4.0+git0.g801c5934) === Details === ==== augeas ==== Version update (1.11.0 -> 1.12.0) - update to 1.12.0 General changes/additions - update gnulib to 91584ed6 Lens changes/additions - Anaconda: new lens to process /etc/sysconfig/anaconda instead of Shellvars (Pino Toscano) (Issue #597) - DevfsRules: add lens for FreeBSD devfs.rules files - Dovecot: permit ! in block titles (Nathan Ward) (Issue #599) - Hostname: Allow creation of hostname when file is missing (David Farrell) (Issue #606) - Krb5: add more pkinit_* options (Issue #603) - Logrotate: fix missing recognition of double quoted filenames (Issue #611) - Multipath: accept values enclosed in quotes (Issue #583) - Nginx: support unix sockets as server address (Issue #618) - Nsswitch: add merge action (Issue #609) - Pam: accept continuation lines (Issue #590) - Puppetfile: allow symbols as (optional) values (Issue #619) allow comments in entries (Issue #620) - Rsyslog: support dynamic file paths (Issue #622) treat #!/+/- as comment (arnolda, PR #595) - Syslog: accept 'include' directive (Issue #486) - Semanage: new lens to process /etc/selinux/semanage.conf instead of Simplevars (Pino Toscano) (Issue #594) - Shellvars: allow and/or in @if conditions (#582) accept functions wrapped in round brackets, accept variables with a dash in their name, exclude csh/tcsh profile scripts (Pino Toscano) (Issue #600) accept variable as command (Issue #601) - Ssh: accept RekeyLimit (Issue #605) - Sshd: accept '=' to separate option names from their values (Emil Dragu, #587) - Sudoers: support 'always_query_group_plugin' flag (Steve Traylen, #588) - Strongswan: parse lists. This is a backwards-incompatible change since list entries that were parsed into a single string are now split into a list of entries (Kaarle Ritvanen) - Toml: new lens to parse .toml files (PR #91) - Xorg: accept empty values for options (arnolda, PR #596) - refresh patches - run spec-cleaner ==== brotli ==== Subpackages: libbrotlicommon1 libbrotlidec1 - Fix W: shared-lib-calls-exit /usr/lib64/libbrotlienc.so.1.0.7 exit@GLIBC_2.2.5. ==== busybox ==== - Enable SELinux for the dynamic version ==== busybox-links ==== Subpackages: busybox-coreutils busybox-gawk busybox-xz - Fix typo in spec file - Create new sub-packages: selinux-tools and policycoreutils ==== cloud-init ==== Version update (19.4 -> 20.2) - Update to version 20.2 (bsc#1174443, bsc#1174444) + Remove patches included upstream: - 0001-Make-tests-work-with-Python-3.8-139.patch - cloud-init-ostack-metadat-dencode.patch - cloud-init-use-different-random-src.diff - cloud-init-long-pass.patch - cloud-init-mix-static-dhcp.patch + Remove patches build switched to Python 3 for all distributions - cloud-init-python2-sigpipe.patch - cloud-init-template-py2.patch + Add - cloud-init-after-kvp.diff - cloud-init-recognize-hpc.patch + doc/format: reference make-mime.py instead of an inline script (#334) + Add docs about creating parent folders (#330) [Adrian Wilkins] + DataSourceNoCloud/OVF: drop claim to support FTP (#333) (LP: #1875470) + schema: ignore spurious pylint error (#332) + schema: add json schema for write_files module (#152) + BSD: find_devs_with_ refactoring (#298) [Gonéri Le Bouder] + nocloud: drop work around for Linux 2.6 (#324) [Gonéri Le Bouder] + cloudinit: drop dependencies on unittest2 and contextlib2 (#322) + distros: handle a potential mirror filtering error case (#328) + log: remove unnecessary import fallback logic (#327) + .travis.yml: don't run integration test on ubuntu/* branches (#321) + More unit test documentation (#314) + conftest: introduce disable_subp_usage autouse fixture (#304) + YAML align indent sizes for docs readability (#323) [Tak Nishigori] + network_state: add missing space to log message (#325) + tests: add missing mocks for get_interfaces_by_mac (#326) (LP: #1873910) + test_mounts: expand happy path test for both happy paths (#319) + cc_mounts: fix incorrect format specifiers (#316) (LP: #1872836) + swap file "size" being used before checked if str (#315) [Eduardo Otubo] + HACKING.rst: add pytest version gotchas section (#311) + docs: Add steps to re-run cloud-id and cloud-init (#313) [Joshua Powers] + readme: OpenBSD is now supported (#309) [Gonéri Le Bouder] + net: ignore 'renderer' key in netplan config (#306) (LP: #1870421) + Add support for NFS/EFS mounts (#300) [Andrew Beresford] (LP: #1870370) + openbsd: set_passwd should not unlock user (#289) [Gonéri Le Bouder] + tools/.github-cla-signers: add beezly as CLA signer (#301) + util: remove unnecessary lru_cache import fallback (#299) + HACKING.rst: reorganise/update CLA signature info (#297) + distros: drop leading/trailing hyphens from mirror URL labels (#296) + HACKING.rst: add note about variable annotations (#295) + CiTestCase: stop using and remove sys_exit helper (#283) + distros: replace invalid characters in mirror URLs with hyphens (#291) (LP: #1868232) + rbxcloud: gracefully handle arping errors (#262) [Adam Dobrawy] + Fix cloud-init ignoring some misdeclared mimetypes in user-data. [Kurt Garloff] + net: ubuntu focal prioritize netplan over eni even if both present (#267) (LP: #1867029) + cloudinit: refactor util.is_ipv4 to net.is_ipv4_address (#292) + net/cmdline: replace type comments with annotations (#294) + HACKING.rst: add Type Annotations design section (#293) + net: introduce is_ip_address function (#288) + CiTestCase: remove now-unneeded parse_and_read helper method (#286) + .travis.yml: allow 30 minutes of inactivity in cloud tests (#287) + sources/tests/test_init: drop use of deprecated inspect.getargspec (#285) + setup.py: drop NIH check_output implementation (#282) + Identify SAP Converged Cloud as OpenStack [Silvio Knizek] + add Openbsd support (#147) [Gonéri Le Bouder] + HACKING.rst: add examples of the two test class types (#278) + VMWware: support to update guest info gc status if enabled (#261) [xiaofengw-vmware] + Add lp-to-git mapping for kgarloff (#279) + set_passwords: avoid chpasswd on BSD (#268) [Gonéri Le Bouder] + HACKING.rst: add Unit Testing design section (#277) + util: read_cc_from_cmdline handle urlencoded yaml content (#275) + distros/tests/test_init: add tests for _get_package_mirror_info (#272) + HACKING.rst: add links to new Code Review Process doc (#276) + freebsd: ensure package update works (#273) [Gonéri Le Bouder] + doc: introduce Code Review Process documentation (#160) + tools: use python3 (#274) + cc_disk_setup: fix RuntimeError (#270) (LP: #1868327) + cc_apt_configure/util: combine search_for_mirror implementations (#271) + bsd: boottime does not depend on the libc soname (#269) [Gonéri Le Bouder] + test_oracle,DataSourceOracle: sort imports (#266) + DataSourceOracle: update .network_config docstring (#257) + cloudinit/tests: remove unneeded with_logs configuration (#263) + .travis.yml: drop stale comment (#255) + .gitignore: add more common directories (#258) + ec2: render network on all NICs and add secondary IPs as static (#114) (LP: #1866930) + ec2 json validation: fix the reference to the 'merged_cfg' key (#256) [Paride Legovini] + releases.yaml: quote the Ubuntu version numbers (#254) [Paride Legovini] + cloudinit: remove six from packaging/tooling (#253) + util/netbsd: drop six usage (#252) + workflows: introduce stale pull request workflow (#125) + cc_resolv_conf: introduce tests and stabilise output across Python versions (#251) + fix minor issue with resolv_conf template (#144) [andreaf74] + doc: CloudInit also support NetBSD (#250) [Gonéri Le Bouder] + Add Netbsd support (#62) [Gonéri Le Bouder] + tox.ini: avoid substition syntax that causes a traceback on xenial (#245) + Add pub_key_ed25519 to cc_phone_home (#237) [Daniel Hensby] + Introduce and use of a list of GitHub usernames that have signed CLA (#244) + workflows/cla.yml: use correct username for CLA check (#243) + tox.ini: use xenial version of jsonpatch in CI (#242) + workflows: CLA validation altered to fail status on pull_request (#164) + tox.ini: bump pyflakes version to 2.1.1 (#239) + cloudinit: move to pytest for running tests (#211) + instance-data: add cloud-init merged_cfg and sys_info keys to json (#214) (LP: #1865969) + ec2: Do not fallback to IMDSv1 on EC2 (#216) + instance-data: write redacted cfg to instance-data.json (#233) (LP: #1865947) + net: support network-config:disabled on the kernel commandline (#232) (LP: #1862702) + ec2: only redact token request headers in logs, avoid altering request (#230) (LP: #1865882) + docs: typo fixed: dta ? data [Alexey Vazhnov] + Fixes typo on Amazon Web Services (#217) [Nick Wales] + Fix docs for OpenStack DMI Asset Tag (#228) [Mark T. Voelker] (LP: #1669875) + Add physical network type: cascading to openstack helpers (#200) [sab-systems] + tests: add focal integration tests for ubuntu (#225) - From 20.1 (first vesrion after 19.4) + ec2: Do not log IMDSv2 token values, instead use REDACTED (#219) (LP: #1863943) + utils: use SystemRandom when generating random password. (#204) [Dimitri John Ledkov] + docs: mount_default_files is a list of 6 items, not 7 (#212) + azurecloud: fix issues with instances not starting (#205) (LP: #1861921) + unittest: fix stderr leak in cc_set_password random unittest output. (#208) + cc_disk_setup: add swap filesystem force flag (#207) + import sysvinit patches from freebsd-ports tree (#161) [Igor Gali?] + docs: fix typo (#195) [Edwin Kofler] + sysconfig: distro-specific config rendering for BOOTPROTO option (#162) [Robert Schweikert] (LP: #1800854) + cloudinit: replace "from six import X" imports (except in util.py) (#183) + run-container: use 'test -n' instead of 'test ! -z' (#202) [Paride Legovini] + net/cmdline: correctly handle static ip= config (#201) [Dimitri John Ledkov] (LP: #1861412) + Replace mock library with unittest.mock (#186) + HACKING.rst: update CLA link (#199) + Scaleway: Fix DatasourceScaleway to avoid backtrace (#128) [Louis Bouchard] + cloudinit/cmd/devel/net_convert.py: add missing space (#191) + tools/run-container: drop support for python2 (#192) [Paride Legovini] + Print ssh key fingerprints using sha256 hash (#188) (LP: #1860789) + Make the RPM build use Python 3 (#190) [Paride Legovini] + cc_set_password: increase random pwlength from 9 to 20 (#189) (LP: #1860795) + .travis.yml: use correct Python version for xenial tests (#185) + cloudinit: remove ImportError handling for mock imports (#182) + Do not use fallocate in swap file creation on xfs. (#70) [Eduardo Otubo] (LP: #1781781) + .readthedocs.yaml: install cloud-init when building docs (#181) (LP: #1860450) + Introduce an RTD config file, and pin the Sphinx version to the RTD default (#180) + Drop most of the remaining use of six (#179) + Start removing dependency on six (#178) + Add Rootbox & HyperOne to list of cloud in README (#176) [Adam Dobrawy] + docs: add proposed SRU testing procedure (#167) + util: rename get_architecture to get_dpkg_architecture (#173) + Ensure util.get_architecture() runs only once (#172) + Only use gpart if it is the BSD gpart (#131) [Conrad Hoffmann] + freebsd: remove superflu exception mapping (#166) [Gonéri Le Bouder] + ssh_auth_key_fingerprints_disable test: fix capitalization (#165) [Paride Legovini] + util: move uptime's else branch into its own boottime function (#53) [Igor Gali?] (LP: #1853160) + workflows: add contributor license agreement checker (#155) + net: fix rendering of 'static6' in network config (#77) (LP: #1850988) + Make tests work with Python 3.8 (#139) [Conrad Hoffmann] + fixed minor bug with mkswap in cc_disk_setup.py (#143) [andreaf74] + freebsd: fix create_group() cmd (#146) [Gonéri Le Bouder] + doc: make apt_update example consistent (#154) + doc: add modules page toc with links (#153) (LP: #1852456) + Add support for the amazon variant in cloud.cfg.tmpl (#119) [Frederick Lefebvre] + ci: remove Python 2.7 from CI runs (#137) + modules: drop cc_snap_config config module (#134) + migrate-lp-user-to-github: ensure Launchpad repo exists (#136) + docs: add initial troubleshooting to FAQ (#104) [Joshua Powers] + doc: update cc_set_hostname frequency and descrip (#109) [Joshua Powers] (LP: #1827021) + freebsd: introduce the freebsd renderer (#61) [Gonéri Le Bouder] + cc_snappy: remove deprecated module (#127) + HACKING.rst: clarify that everyone needs to do the LP->GH dance (#130) + freebsd: cloudinit service requires devd (#132) [Gonéri Le Bouder] + cloud-init: fix capitalisation of SSH (#126) + doc: update cc_ssh clarify host and auth keys [Joshua Powers] (LP: #1827021) + ci: emit names of tests run in Travis (#120) ==== ethtool ==== Version update (5.7 -> 5.8) - update to new upstream release 5.8 * netlink handler for device features * netlink handler for private flags * netlink handler for ring sizes * netlink handler for channels counts * netlink handler for coalescing parameters * netlink handler for pause parameters * netlink handler for EEE settings * netlink handler for timestamping info * master/slave configuration support * LINKSTATE SQI support * cable test support * cable test TDR support * JSON output for cable test commands * igc driver support * support for get/set ethtool_tunable * dsa: mv88e6xxx: add pretty dump for 88E6352 SERDES * fix some build warnings - drop patches present in 5.8 release: * netlink-fix-build-warnings.patch * netlink-fix-error-message-suppression.patch * netlink-fix-unwanted-switch-fall-through-in-family_i.patch - ethtool.keyring: add new upstream maintainer's key (F4554567B91DE934) ==== installation-images-MicroOS ==== Version update (16.3 -> 16.7) - merge gh#openSUSE/installation-images#407 - rename product release package 'SUSE_MicroOS' to 'SUSE-MicroOS' - rename 'SUSE_MicroOS' to 'SUSE-MicroOS' - 16.7 - merge gh#openSUSE/installation-images#406 - use $releasever in repo URL (bsc#1171018) - 16.6 - merge gh#openSUSE/installation-images#405 - rename MicroOSNG to "SUSE MicroOS" - 16.5 - merge gh#openSUSE/installation-images#401 - wicked started using /usr/libexec (bsc#1174957) - fix nokogiri update-alternatives handling - 16.4 ==== microos-tools ==== Version update (2.2 -> 2.3) - Update to version 2.3 - overwrite tmp.mount options with SELinux label for /tmp - Add generator to label mount points if required - Add dracut module to relabel core system if required - Add locale-check to reset locale to system default if the one set by SSH does not exist [bsc#1156175] - Set TMPDIR for salt to not use /tmp (preparation for noexec) ==== openldap2 ==== Version update (2.4.50 -> 2.4.51) - updated to 2.4.51 - removed obsolete patch 0014-ITS-8650-fix-debug-usage.patch OpenLDAP 2.4.51 Release (2020/08/11) Added slapo-ppolicy implement Netscape password policy controls (ITS#9279) Fixed libldap retry loop in ldap_int_tls_connect (ITS#8650) Fixed libldap to use getaddrinfo in ldap_pvt_get_fqdn (ITS#9287) Fixed slapd to enforce singular existence of some overlays (ITS#9309) Fixed slapd syncrepl to not delete non-replicated attrs (ITS#9227) Fixed slapd syncrepl to correctly delete entries on resync (ITS#9282) Fixed slapd syncrepl to use replace on single valued attrs (ITS#9294, ITS#9295) Fixed slapd-perl dynamic config with threaded slapd (ITS#7573) Fixed slapo-ppolicy to expose the ppolicy control (ITS#9285) Fixed slapo-ppolicy race condition for pwdFailureTime (ITS#9302) Fixed slapo-ppolicy so it can only exist once per DB (ITS#9309) Fixed slapo-chain to check referral (ITS#9262) Build Environment Fix test064 so it no longer uses bashisms (ITS#9263) Contrib Fix default prefix value for pw-argon2, pw-pbkdf2 modules (ITS#9248) slapo-allowed - Fix usage of unitialized variable (ITS#9308) Documentation ldap_parse_result(3) - Document ldap_parse_intermediate (ITS#9271) ==== pigz ==== - Build with -fexceptions to get compiler/os specific (aka. sane) implementations of pthread_cleanup* routines. ==== podman ==== Subpackages: podman-cni-config - Change hard requires for AppArmor to Recommends. They are not needed for runtime or with SELinux but already installed if AppArmor is used [jsc#SMO-15] - Add BuildRequires for pkg-config(libselinux) to build with SELinux support [jsc#SMO-15] ==== rook ==== Version update (1.3.4+git0.ga5114030 -> 1.4.0+git0.g801c5934) - Update to v1.4.0: * Ceph-CSI 3.0 is deployed by default * Multi Architecture docker images are published (amd64 and arm64) * Create/Delete beta snapshot for RBD, while support for Alpha snapshots is removed. * Create PVCs from RBD snapshots and PVCs * Support ROX volumes for RBD and CephFS * The dashboard for the ceph object store will be enabled if the dashboard module is enabled. * An admission controller enhances CRD validations (Experimental) * The admission controller is not enabled by default. * Support for Ceph CRDs is provided. Some validations for CephClusters are included and a framework for additional validations is in place for other CRDs. * RGW Multisite is available through new CRDs for zones, zone groups, and realms. (Experimental) * CephObjectStore CRD changes: * Health displayed in the Status field * Run health checks on the object store endpoint by creating a bucket and writing to it periodically. * The endpoint is stored for reference in the Status field * OSD changes: * OSDs on PVC now support multipath and crypt device types. * OSDs on PVC can now be encrypted by setting encrypted: true on the storageClassDeviceSet. * OSDs can now be provisioned using Ceph's Drive Groups definitions for Ceph Octopus v15.2.5+. * OSDs can be provisioned on the device path such as /dev/disk/by-path/pci-HHHH:HH:HH.H with colons (:) * A new CephRBDMirror CR will configure the RBD mirroring daemons. The RBD mirror settings were previously included in the CephCluster CR. * Multus support is improved, though still in experimental mode * Added support for the Whereabouts IPAM * CephCluster CRD changes: * Converted to use the controller-runtime framework * Added settings to configure health checks as well as pod liveness probes. * CephBlockPool CRD has a new field called parameters which allows to set any Ceph pool property on a given pool * OBC changes: * Updated the lib bucket provisioner version to support multithreading * Added support for quota, have options for object count and total size. * Prometheus monitoring for external clusters is now possible, refer to the external cluster section * The operator will check for the presence of the lvm2 package on the host where OSDs will run. If not available, the prepare job will fail. This will prevent issues of OSDs not restarting on node reboot. * Added a new label ceph_daemon_type to Ceph daemon pods. * Added a toolbox job example for running a script with Ceph commands, similar to running commands in the Rook toolbox.