Packages changed: cifs-utils (7.3 -> 7.4) cryptsetup (2.7.5 -> 2.8.0) ffmpeg-7 llvm20 (20.1.6 -> 20.1.7) openSUSE-release (20250627 -> 20250630) patterns-base pipewire (1.4.5 -> 1.4.6) shaderc (2025.1 -> 2025.3) === Details === ==== cifs-utils ==== Version update (7.3 -> 7.4) Subpackages: wb-cifs-idmap-plugin - Update cifs-utils to 7.4 * mount.cifs: retry mount on -EINPROGRESS * cifs.upcall: correctly treat UPTARGET_UNSPECIFIED as UPTARGET_APP * cifs.upcall: fix memory leaks in check_service_ticket_exits() * cifs-utils: bump version to 7.4 * getcifsacl, setcifsacl: use for basename * cifscreds: use for basename ==== cryptsetup ==== Version update (2.7.5 -> 2.8.0) Subpackages: cryptsetup-doc cryptsetup-lang libcryptsetup12 - Update to 2.8.0: * Full release notes in: - https://cdn.kernel.org/pub/linux/utils/cryptsetup/v2.8/v2.8.0-ReleaseNotes * Introduce support for inline mode (use HW sectors with additional hardware metadata space). * Finalize use of keyslot context API. * Make all keyslot context types fully self-contained. * Add --key-description and --new-key-description cryptsetup options. * Support more precise keyslot selection in reencryption initialization. * Allow reencryption to resume using token and volume keys. * Cryptsetup repair command now tries to check LUKS keyslot areas for corruption. * Opal2 SED: PSID keyfile is now expected to be 32 alphanumeric characters. * Opal2: Avoid the Erase method and use Secure Erase for locking range. * Opal2: Fix some error description (in debug only). * Opal2: Do not allow deferred deactivation. * Allow --reduce-device-size and --device-size combination for reencryption (encrypt) action. * Fix the userspace storage backend to support kernel "capi:" cipher specification format. * Disallow conversion from LUKS2 to LUKS1 if kernel "capi:" cipher specification is used. * Explicitly disallow kernel "capi:" cipher specification format for LUKS2 keyslot encryption. * Do not allow conversion of LUKS2 to LUKS1 if an unbound keyslot is present. * cryptsetup: Adjust the XTS key size for kernel "capi:" cipher specification. * Remove keyslot warning about possible failure due to low memory. * Do not limit Argon2 KDF memory cost on systems with more than 4GB of available memory. * Properly report out of memory error for cryptographic backends implementing Argon2. * Avoid KDF2 memory cost overflow on 32-bit platforms. * Do not use page size as a fallback for device block size. * veritysetup: Check hash device size in advance. * Print a better error message for unsupported LUKS2 AEAD device resize. * Optimize LUKS2 metadata writes. * veritysetup: support --error-as-corruption option. * Report all sizes in status and dump command output in the correct units. * Add --integrity-key-size option to cryptsetup. * Support trusted & encrypted keyrings for plain devices. * Support plain format resize with a keyring key. * TCRYPT: Clear mapping of system-encrypted partitions. * TCRYPT: Print all information from the decrypted metadata header in the tcryptDump command. * Always lock the volume key structure in memory. * Do not run direct-io read check on block devices. * Fix a possible segfault in deferred deactivation. * Exclude cipher allocation time from the cryptsetup benchmark. * Add Mbed-TLS optional crypto backend. * Fix the wrong preprocessor use of #ifdef for config.h processed by Meson. * Reorganize license files. The license text files are now in docs/licenses. The COPYING file in the root directory is the default license. * Remove cc-by-sa-4.0.txt as already shipped now in docs/licenses and named as COPYING.CC-BY-SA-4.0. * Libcryptsetup API extensions. The libcryptsetup API is backward compatible with all existing symbols. Due to the self-contained memory allocation, these symbols have the new version: - crypt_keyslot_context_init_by_passphrase; - crypt_keyslot_context_init_by_keyfile; - crypt_keyslot_context_init_by_token; - crypt_keyslot_context_init_by_volume_key; - crypt_keyslot_context_init_by_signed_key; - crypt_keyslot_context_init_by_keyring; - crypt_keyslot_context_init_by_vk_in_keyring; * New symbols: - crypt_format_inline - crypt_get_old_volume_key_size - crypt_reencrypt_init_by_keyslot_context - crypt_safe_memcpy * New defines: - CRYPT_ACTIVATE_HIGH_PRIORITY - CRYPT_ACTIVATE_ERROR_AS_CORRUPTION - CRYPT_ACTIVATE_INLINE_MODE - CRYPT_REENCRYPT_CREATE_NEW_DIGEST * New requirement flag: - CRYPT_REQUIREMENT_INLINE_HW_TAGS ==== ffmpeg-7 ==== Subpackages: libavcodec61 libavfilter10 libavformat61 libavutil59 libpostproc58 libswresample5 libswscale8 - Built with noopenh264, drop ffmpeg-dlopen-openh264.patch (jsc#PED-12607) ==== llvm20 ==== Version update (20.1.6 -> 20.1.7) - Update to version 20.1.7. * This release contains bug-fixes for the LLVM 20.1.0 release. This release is API and ABI compatible with 20.1.0. - Rebase llvm-do-not-install-static-libraries.patch. ==== openSUSE-release ==== Version update (20250627 -> 20250630) Subpackages: openSUSE-release-appliance-custom openSUSE-release-dvd - automatically generated by openSUSE-release-tools/pkglistgen ==== patterns-base ==== Subpackages: patterns-base-apparmor patterns-base-base patterns-base-basesystem patterns-base-basic_desktop patterns-base-console patterns-base-enhanced_base patterns-base-minimal_base patterns-base-selinux patterns-base-sw_management patterns-base-x11 patterns-base-x11_enhanced - Add myrlyn to x11_enhanced Myrlyn replaces YaST software management code-o-o#leap/features#173 - Refine topics and descriptions of patterns (bsc#1243961). - Drop requirement on NetworkManager-wifi, it was merged back in NetworkManager in 2022. ==== pipewire ==== Version update (1.4.5 -> 1.4.6) Subpackages: gstreamer-plugin-pipewire libpipewire-0_3-0 pipewire-alsa pipewire-jack pipewire-lang pipewire-libjack-0_3 pipewire-modules-0_3 pipewire-pulseaudio pipewire-spa-plugins-0_2 pipewire-spa-tools pipewire-tools - Update to version 1.4.6: * Highlights - Fix a crasher bug in filter-chain and one in the ALSA plugin. - Improve latency reporting in module-combine-stream. - Some smaller fixes and cleanups. * modules - Improve latency handling in module-combine-stream. (#4731) - Improve save activation/deactivation of the filter-graph in module-filter-chain to avoid crashes. (#4700, #4750) - Add an option to disable RAOP with a context.property. * SPA - Handle NULL io in alsa wakeup code. This can happen when there is negotiation happening. (#4734) - Enable interrupts after an ALSA error to keep the dataflow going. - Reset some stats better after an ALSA error. - Support the alsa.use-ucm property for the ALSA udev plugin. * pulse-server - Mark empty buffers. This improves some code paths in the mixer. * GStreamer - Fix a refcount issue in the device provider. ==== shaderc ==== Version update (2025.1 -> 2025.3) - Update to release 2025.3 * Added a way to disable the glsc CLI executable.