commit s390-tools for openSUSE:Leap:15.2
Hello community, here is the log from the commit of package s390-tools for openSUSE:Leap:15.2 checked in at 2020-04-14 14:20:20 Comparing /work/SRC/openSUSE:Leap:15.2/s390-tools (Old) and /work/SRC/openSUSE:Leap:15.2/.s390-tools.new.3248 (New) Package is "s390-tools" Tue Apr 14 14:20:20 2020 rev:72 rq:792542 version:2.11.0 Changes: --- /work/SRC/openSUSE:Leap:15.2/s390-tools/s390-tools.changes 2020-03-23 07:13:35.990487949 +0100 +++ /work/SRC/openSUSE:Leap:15.2/.s390-tools.new.3248/s390-tools.changes 2020-04-14 14:20:25.125249305 +0200 @@ -1,0 +2,11 @@ +Tue Apr 7 18:52:02 UTC 2020 - Mark Post + +- Added s390-tools-sles15sp2-01-cpumf-add-new-deflate-counters-for-z15.patch + (bsc#1167853) + lscpumf: New z15 CPU-MF counters not available, so add the + definition for the new deflate counters. +- Updated read_values (bsc#1167815, jsc#SLE-10675) + * Differentiate between IBM Z and IBM LinuxONE machines + * Query and print the status of secure boot for the LPAR. + +--- New: s390-tools-sles15sp2-01-cpumf-add-new-deflate-counters-for-z15.patch Other differences: -- ++ s390-tools.spec ++ --- /var/tmp/diff_new_pack.qRlg1F/_old 2020-04-14 14:20:26.997250702 +0200 +++ /var/tmp/diff_new_pack.qRlg1F/_new 2020-04-14 14:20:26.997250702 +0200 @@ -187,6 +187,7 @@ Patch98: s390-tools-sles15sp2-02-zipl-allow-stand-alone-secure-option-on-command-l.patch Patch99: s390-tools-sles15sp2-03-zipl-correct-secure-boot-config-handling.patch Patch100: s390-tools-sles15sp2-04-zipl-fix-zipl.conf-man-page-example-for-secure-boot.patch +Patch101: s390-tools-sles15sp2-01-cpumf-add-new-deflate-counters-for-z15.patch # SUSE patches Patch900: s390-tools-sles12-zipl_boot_msg.patch ++ read_values.c ++ 968 lines (skipped) between /work/SRC/openSUSE:Leap:15.2/s390-tools/read_values.c and /work/SRC/openSUSE:Leap:15.2/.s390-tools.new.3248/read_values.c ++ s390-tools-rpmlintrc ++ --- /var/tmp/diff_new_pack.qRlg1F/_old 2020-04-14 14:20:27.369250980 +0200 +++ /var/tmp/diff_new_pack.qRlg1F/_new 2020-04-14 14:20:27.373250982 +0200 @@ -1,4 +1,3 @@ -addFilter("/var/log/ts-shell") addFilter("statically-linked-binary /usr/lib/s390-tools/.*") addFilter("statically-linked-binary /usr/bin/read_values") addFilter("systemd-service-without-service_.* *@.service") ++ s390-tools-sles15sp2-01-cpumf-add-new-deflate-counters-for-z15.patch ++ Subject: [PATCH] [BZ 184585] cpumf/data: Add new deflate counters for IBM z15 From: Thomas Richter Description: lscpumf: New z15 CPU-MF counters not available Symptom: Command lscpumf -c does not show the new deflate counters on IBM z15. Problem: The new counter names have not been published in document SA23-2261-06 by the time te code was release. Solution: Add the definition for the new deflate counters. Reproduction: Run command lscpumf -c and check for counters rf7, rfc, r107 and r108. Upstream-ID: 5d2871d626de6c2b3ab6b12783b87a8b3564cb56 Problem-ID:184585 Upstream-Description: cpumf/data: Add new deflate counters for IBM z15 Add support for new deflate counters: - Counter 247: cycles CPU spent obtaining access to Deflate unit - Counter 252: cycles CPU is using Deflate unit - Counter 264: Increments by one for every DEFLATE CONVERSION CALL instruction executed. - Counter 265: Increments by one for every DEFLATE CONVERSION CALL instruction executed that ended in Condition Codes 0, 1 or 2. Signed-off-by: Thomas Richter Signed-off-by: Jan Hoeppner Signed-off-by: Thomas Richter --- cpumf/Makefile |3 cpumf/data/cpum-cf-extended-z15.ctr | 376 cpumf/data/cpum-cf-hw-counter.map |5 3 files changed, 380 insertions(+), 4 deletions(-) --- a/cpumf/Makefile +++ b/cpumf/Makefile @@ -9,7 +9,8 @@ DATA_FILES = cpum-cf-hw-counter.map \ cpum-cf-csvn-12345.ctr cpum-cf-csvn-6.ctr \ cpum-cf-extended-z10.ctr cpum-cf-extended-z196.ctr \ cpum-cf-extended-zEC12.ctr cpum-sf-modes.ctr \ -cpum-cf-extended-z13.ctr cpum-cf-extended-z14.ctr +cpum-cf-extended-z13.ctr cpum-cf-extended-z14.ctr \ +cpum-cf-extended-z15.ctr LIB_FILES = bin/cpumf_helper USRBIN_SCRIPTS = bin/lscpumf USRSBIN_SCRIPTS = bin/chcpumf --- /dev/null +++ b/cpumf/data/cpum-cf-extended-z15.ctr @@ -0,0 +1,376 @@ +# Counter decriptions for the +# IBM
commit s390-tools for openSUSE:Leap:15.2
Hello community, here is the log from the commit of package s390-tools for openSUSE:Leap:15.2 checked in at 2020-03-15 07:11:04 Comparing /work/SRC/openSUSE:Leap:15.2/s390-tools (Old) and /work/SRC/openSUSE:Leap:15.2/.s390-tools.new.3160 (New) Package is "s390-tools" Sun Mar 15 07:11:04 2020 rev:70 rq:784260 version:2.11.0 Changes: --- /work/SRC/openSUSE:Leap:15.2/s390-tools/s390-tools.changes 2020-02-25 12:16:56.124401663 +0100 +++ /work/SRC/openSUSE:Leap:15.2/.s390-tools.new.3160/s390-tools.changes 2020-03-15 07:11:16.916960508 +0100 @@ -1,0 +2,22 @@ +Tue Mar 10 18:25:51 UTC 2020 - Mark Post + +- Added the following patches for bsc#1165978. + zpcictl --reset only issues a SCLP reset and leaves the PCI function + in an error state. + Initiate an OS level recovery by calling /sys/bus/devices//recover + after the SCLP reset. + * s390-tools-sles15sp2-01-zpcictl-Initiate-recover-after-reset.patch + * s390-tools-sles15sp2-02-zpcictl-Rename-misleading-sysfs_write_data.patch + * s390-tools-sles15sp2-03-zpcitctl-Exit-on-error-in-sysfs_report_error.patch + +--- +Tue Mar 3 22:11:44 UTC 2020 - Mark Post + +- The zipl boot loader may crash during boot. The solution is to + implement vsnprintf and make use of it. (bsc#1165317) + * s390-tools-sles15sp2-01-zipl-libc-Introduce-vsnprintf.patch + * s390-tools-sles15sp2-02-zipl-libc-Fix-potential-buffer-overflow-in-printf.patch + * s390-tools-sles15sp2-03-zipl-libc-Replace-sprintf-with-snprintf.patch + * s390-tools-sles15sp2-04-zipl-libc-Indicate-truncated-lines-in-printf-with.patch + +--- New: s390-tools-sles15sp2-01-zipl-libc-Introduce-vsnprintf.patch s390-tools-sles15sp2-01-zpcictl-Initiate-recover-after-reset.patch s390-tools-sles15sp2-02-zipl-libc-Fix-potential-buffer-overflow-in-printf.patch s390-tools-sles15sp2-02-zpcictl-Rename-misleading-sysfs_write_data.patch s390-tools-sles15sp2-03-zipl-libc-Replace-sprintf-with-snprintf.patch s390-tools-sles15sp2-03-zpcitctl-Exit-on-error-in-sysfs_report_error.patch s390-tools-sles15sp2-04-zipl-libc-Indicate-truncated-lines-in-printf-with.patch Other differences: -- ++ s390-tools.spec ++ --- /var/tmp/diff_new_pack.v0r3sO/_old 2020-03-15 07:11:18.396961394 +0100 +++ /var/tmp/diff_new_pack.v0r3sO/_new 2020-03-15 07:11:18.400961396 +0100 @@ -1,7 +1,7 @@ # # spec file for package s390-tools # -# Copyright (c) 2009-2020 SUSE LLC, Nuernberg, Germany. +# Copyright (c) 2001-2020 SUSE LLC, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -128,6 +128,13 @@ Patch39: s390-tools-sles15sp2-zkey-Fix-display-of-clear-key-size-for-XTS-keys.patch Patch40: s390-tools-sles15sp2-zkey-Fix-display-of-XTS-attribute-for-validate-comma.patch Patch41: s390-tools-sles15sp2-zkey-Fix-display-of-clear-key-size-for-CCA-AESCIPHER.patch +Patch42:s390-tools-sles15sp2-01-zipl-libc-Introduce-vsnprintf.patch +Patch43: s390-tools-sles15sp2-02-zipl-libc-Fix-potential-buffer-overflow-in-printf.patch +Patch44: s390-tools-sles15sp2-03-zipl-libc-Replace-sprintf-with-snprintf.patch +Patch45: s390-tools-sles15sp2-04-zipl-libc-Indicate-truncated-lines-in-printf-with.patch +Patch46: s390-tools-sles15sp2-01-zpcictl-Initiate-recover-after-reset.patch +Patch47: s390-tools-sles15sp2-02-zpcictl-Rename-misleading-sysfs_write_data.patch +Patch48: s390-tools-sles15sp2-03-zpcitctl-Exit-on-error-in-sysfs_report_error.patch # SUSE patches Patch900: s390-tools-sles12-zipl_boot_msg.patch ++ s390-tools-sles15sp2-01-zipl-libc-Introduce-vsnprintf.patch ++ Subject: [PATCH] [BZ 184060] zipl/libc: Introduce vsnprintf From: Philipp Rudo Description: zipl/libc: Fix potential buffer overflow in printf Symptom: Crash of the zipl boot loader during boot. Problem: The zipl boot loaders have their own minimalistic libc implementation. In it printf and sprintf use vsprintf for string formatting. Per definition vsprintf assumes that the buffer it writes to is large enough to contain the formatted string and performs no size checks. This is problematic for the boot loaders because the buffer they use are often allocated on the stack. Thus even small changes to the string format can potentially cause buffer overflows on the stack. Solution: Implement vsnprintf and make use of it. Reproduction: Use printf to print a
commit s390-tools for openSUSE:Leap:15.2
Hello community, here is the log from the commit of package s390-tools for openSUSE:Leap:15.2 checked in at 2020-02-25 12:16:47 Comparing /work/SRC/openSUSE:Leap:15.2/s390-tools (Old) and /work/SRC/openSUSE:Leap:15.2/.s390-tools.new.26092 (New) Package is "s390-tools" Tue Feb 25 12:16:47 2020 rev:69 rq:778159 version:2.11.0 Changes: --- /work/SRC/openSUSE:Leap:15.2/s390-tools/s390-tools.changes 2020-02-21 23:49:38.180600419 +0100 +++ /work/SRC/openSUSE:Leap:15.2/.s390-tools.new.26092/s390-tools.changes 2020-02-25 12:16:56.124401663 +0100 @@ -1,0 +2,10 @@ +Tue Feb 18 20:10:50 UTC 2020 - Mark Post + +- Added s390-tools-sles15sp2-zkey-Fix-display-of-XTS-attribute-for-validate-comma.patch + (bsc#1163002). +- Added s390-tools-sles15sp2-zkey-Fix-display-of-clear-key-size-for-CCA-AESCIPHER.patch + (bsc#1163570). +- Re-categorized s390-tools-sles15sp1-11-zdev-Do-not-call-zipl-on-initrd-update.patch + from an IBM patch to a SUSE-maintained patch. (bsc#1162840) + +--- @@ -16 +26 @@ - (bsc#1163002). + (bsc#1163003). New: s390-tools-sles15sp2-zkey-Fix-display-of-XTS-attribute-for-validate-comma.patch s390-tools-sles15sp2-zkey-Fix-display-of-clear-key-size-for-CCA-AESCIPHER.patch Other differences: -- ++ s390-tools.spec ++ --- /var/tmp/diff_new_pack.e3QhtU/_old 2020-02-25 12:16:57.716404963 +0100 +++ /var/tmp/diff_new_pack.e3QhtU/_new 2020-02-25 12:16:57.720404972 +0100 @@ -1,7 +1,7 @@ # # spec file for package s390-tools # -# Copyright (c) 2019-2020 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2009-2020 SUSE LLC, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -124,9 +124,10 @@ Patch35: s390-tools-sles15sp2-35-zkey-Allow-zkey-cryptsetup-setkey-to-set-different-k.patch Patch36:s390-tools-sles15sp2-zcrypt-CEX7S-exploitation-support.patch Patch37:s390-tools-sles15sp2-zcryptstats-Add-support-for-CEX7.patch -Patch38: s390-tools-sles15sp1-11-zdev-Do-not-call-zipl-on-initrd-update.patch -Patch39: s390-tools-sles15sp2-zkey-Fix-listing-of-keys-on-file-systems-reporting-D.patch -Patch40: s390-tools-sles15sp2-zkey-Fix-display-of-clear-key-size-for-XTS-keys.patch +Patch38: s390-tools-sles15sp2-zkey-Fix-listing-of-keys-on-file-systems-reporting-D.patch +Patch39: s390-tools-sles15sp2-zkey-Fix-display-of-clear-key-size-for-XTS-keys.patch +Patch40: s390-tools-sles15sp2-zkey-Fix-display-of-XTS-attribute-for-validate-comma.patch +Patch41: s390-tools-sles15sp2-zkey-Fix-display-of-clear-key-size-for-CCA-AESCIPHER.patch # SUSE patches Patch900: s390-tools-sles12-zipl_boot_msg.patch @@ -142,9 +143,9 @@ Patch910: s390-tools-sles12-fdasd-skip-partition-check-and-BLKRRPART-ioctl.patch Patch911: s390-tools-sles15sp2-Close-file-descriptor-when-checking-for-read-only.patch Patch912: s390-tools-sles15sp1-zdev-Also-include-the-ctc-driver-in-the-initrd.patch +Patch913: s390-tools-sles15sp1-11-zdev-Do-not-call-zipl-on-initrd-update.patch BuildRequires: dracut -BuildRequires: pesign-obs-integration BuildRequires: fuse-devel BuildRequires: gcc-c++ BuildRequires: gettext-tools @@ -155,6 +156,7 @@ BuildRequires: libpfm-devel BuildRequires: ncurses-devel BuildRequires: net-snmp-devel +BuildRequires: pesign-obs-integration BuildRequires: qclib-devel-static BuildRequires: tcpd-devel BuildRequires: zlib-devel-static ++ s390-tools-sles15sp2-zkey-Fix-display-of-XTS-attribute-for-validate-comma.patch ++ Subject: [PATCH] [BZ 183669] zkey: Fix display of XTS attribute for validate command From: Ingo Franzki Description: zkey: Fix display of XTS attribute for validate command Symptom: The 'zkey validate' command shows an invalid value for the XTS attribute. Problem: Due to a use after free of the secure key, the XTS attribute is not determined correctly, and is displayed incorrectly. Function is_xts_key() is called with a secure key that has already been freed and thus most likely returns false. This bug has been introduced with feature SEC1717 "Cipher key support" with commit 298fab68fee8 "zkey: Preparations for introducing a new key type" Solution: Free the secure key only after the last use. Reproduction: Generate an XTS key of type CCA-AESDATA or CCA-AESCIPHER and then run 'zkey validate'. Upstream-ID: f75f4aff8f6e4ae148bde858ee1cb7f1066f5f23 Problem-ID:183669
commit s390-tools for openSUSE:Leap:15.2
Hello community, here is the log from the commit of package s390-tools for openSUSE:Leap:15.2 checked in at 2020-02-21 23:49:24 Comparing /work/SRC/openSUSE:Leap:15.2/s390-tools (Old) and /work/SRC/openSUSE:Leap:15.2/.s390-tools.new.26092 (New) Package is "s390-tools" Fri Feb 21 23:49:24 2020 rev:68 rq:777349 version:2.11.0 Changes: --- /work/SRC/openSUSE:Leap:15.2/s390-tools/s390-tools.changes 2020-01-15 16:00:56.351846558 +0100 +++ /work/SRC/openSUSE:Leap:15.2/.s390-tools.new.26092/s390-tools.changes 2020-02-21 23:49:38.180600419 +0100 @@ -1,0 +2,17 @@ +Thu Feb 13 13:50:55 UTC 2020 - Marcus Meissner + +- sign the stage3.bin bootloader stage (bsc#1163524) + +--- +Sat Feb 8 02:25:58 UTC 2020 - Mark Post + +- Added s390-tools-sles15sp1-zdev-Also-include-the-ctc-driver-in-the-initrd.patch + (bsc#1160373). +- Added s390-tools-sles15sp1-11-zdev-Do-not-call-zipl-on-initrd-update.patch + (bsc#1162840). +- Added s390-tools-sles15sp2-zkey-Fix-listing-of-keys-on-file-systems-reporting-D.patch + (bsc#1162996). +- Added s390-tools-sles15sp2-zkey-Fix-display-of-clear-key-size-for-XTS-keys.patch + (bsc#1163002). + +--- New: s390-tools-sles15sp1-11-zdev-Do-not-call-zipl-on-initrd-update.patch s390-tools-sles15sp1-zdev-Also-include-the-ctc-driver-in-the-initrd.patch s390-tools-sles15sp2-zkey-Fix-display-of-clear-key-size-for-XTS-keys.patch s390-tools-sles15sp2-zkey-Fix-listing-of-keys-on-file-systems-reporting-D.patch Other differences: -- ++ s390-tools.spec ++ --- /var/tmp/diff_new_pack.kLYWMd/_old 2020-02-21 23:49:41.376606770 +0100 +++ /var/tmp/diff_new_pack.kLYWMd/_new 2020-02-21 23:49:41.376606770 +0100 @@ -1,7 +1,7 @@ # # spec file for package s390-tools # -# Copyright (c) 2019 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2019-2020 SUSE LINUX GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -14,6 +14,7 @@ # Please submit bugfixes or comments via https://bugs.opensuse.org/ # +# needssslcertforbuild #Compat macro for new _fillupdir macro introduced in Nov 2017 @@ -123,6 +124,9 @@ Patch35: s390-tools-sles15sp2-35-zkey-Allow-zkey-cryptsetup-setkey-to-set-different-k.patch Patch36:s390-tools-sles15sp2-zcrypt-CEX7S-exploitation-support.patch Patch37:s390-tools-sles15sp2-zcryptstats-Add-support-for-CEX7.patch +Patch38: s390-tools-sles15sp1-11-zdev-Do-not-call-zipl-on-initrd-update.patch +Patch39: s390-tools-sles15sp2-zkey-Fix-listing-of-keys-on-file-systems-reporting-D.patch +Patch40: s390-tools-sles15sp2-zkey-Fix-display-of-clear-key-size-for-XTS-keys.patch # SUSE patches Patch900: s390-tools-sles12-zipl_boot_msg.patch @@ -137,8 +141,10 @@ Patch909: 59-dasd.rules-wait_for.patch Patch910: s390-tools-sles12-fdasd-skip-partition-check-and-BLKRRPART-ioctl.patch Patch911: s390-tools-sles15sp2-Close-file-descriptor-when-checking-for-read-only.patch +Patch912: s390-tools-sles15sp1-zdev-Also-include-the-ctc-driver-in-the-initrd.patch BuildRequires: dracut +BuildRequires: pesign-obs-integration BuildRequires: fuse-devel BuildRequires: gcc-c++ BuildRequires: gettext-tools @@ -360,6 +366,8 @@ EOT chmod 755 osasnmpd +export BRP_PESIGN_FILES='/lib/s390-tools/stage3.bin' + %verifyscript %verify_permissions -e %{_localstatedir}/log/ts-shell ++ s390-tools-sles15sp1-11-zdev-Do-not-call-zipl-on-initrd-update.patch ++ Subject: zdev: Add support for handling I/O configuration data From: Peter Oberparleiter Summary: zdev: Add support for handling I/O configuration data Description: LPARs that are running in IBM Dynamic Partition Manager (DPM) mode can access a firmware-generated I/O configuration data file that contains s390-specific information about available I/O devices such as qeth device numbers and parameters, and FCP device IDs. This data file is intended to remove the need for users to manually enter the corresponding device data during installation. Linux kernels with the corresponding support make the I/O configuration data available at the following location: /sys/firmware/sclp_sd/config/data This patch set adds support for handling this data file using the chzdev and lszdev tools: - I/O configuration data can be applied using chzdev's --import option -