|
|
|
|
Changelog for NetworkManager-devel-1.42.0-4.4.i586.rpm :
* Mon Feb 20 2023 Dominique Leuenberger - Add 1539.patch: Fix constructing the IPv4 nameserver variable (boo#1208371). * Mon Feb 13 2023 Bjørn Lie - Pass session_tracking=systemd and session_tracking_consolekit=false to meson, no longer build support for consolekit as session tracker. * Fri Feb 10 2023 Bjørn Lie - Update to version 1.42.0: + Added support for source load balancing for Ethernet Bonds. + Allow specifying vhost name (SNI) for a manually DNS-over-TLS server. Only works with systemd-resolved plugin. + Connections can now be activated on a loopback interface. + Added support of IPv4 ECMP routes. The ECMP routes will get merged. * Fri Jan 27 2023 Bjørn Lie - Update to version 1.40.12: + Make sure \"external-ids\" stays up to date in Open vSwitch database on a connection reapply. + Retry if a netlink sockets runs out of buffer space before we\'re able to read results of a link change. + Fix a possible race involving concurrent invocation of iptables in IPv4 shared mode. + Other various fixes. * Wed Jan 11 2023 Bjørn Lie - Update to version 1.40.10: + Fix the evaluation of the autoconnect retries. + nm-cloud-setup now preserves addresses added externally. + Ensure that dnsmasq is stopped after changing the dns backend and restarting the service. + Fix honoring an explicit DHCPv6 DUID with dhclient. + Other various fixes. * Tue Dec 20 2022 Bjørn Lie - Update to version 1.40.8: + Fixed a bug that caused devices (MACsec in particular) to be stuck in UNAVAILABLE state and not transition to DISCONNECTED if the carrier was ready too early. + Improved interoperability of MACsec with some Aruba switches by allowing CKN shorter than 64 characters. + Fixed an assertion failure when restarting NetworkManager with MACsec links configured. + Fixed a possible DHCP helper crash when handling failure to connect to D-Bus. + Corrected calculation of expiration time for items configured from IPv6 neighbor discovery messages. + Various fixes for platforms that don\'t allow unaligned memory access. * Tue Dec 20 2022 Dominique Leuenberger - Drop iptables BuildRequires and -Diptables meson parameter: iptables is legacy (obsoleted in favor of nft). Additionally. meson has proper fallback detection to assume the correct path, should it need to use iptables.- Recommend nftables instead of iptables. * Fri Dec 02 2022 Bjørn Lie - Update to version 1.40.6: + team: - Also set empty port configuration so teamd knows about the port. - Restore port configuration after teamd respawn.- Changes from version 1.40.4: + dhcp: revert restarting DHCP when MAC address changes, for example during a bond fail over. + Various documentation fixes. + Fix non-exported ABI in libnm which was wrongly present in the header files but unusable so far. + ifcfg-rh: fix writing ethtool pause settings to file. + core: set \"proto static\" for manual routing rules configured by NetworkManager. + Various minor bugfixes. * Mon Nov 07 2022 Clemens Famulla-Conrad - Keep netconfig support. The rc-manager auto detection will select appropriate manager during runtime. * Wed Nov 02 2022 Dominique Leuenberger - Use a with_netconfig define instead of relying on bcond: bcond is meant to have extrenally controllable build conditions (build -D, or OBS prjconf). * Tue Oct 18 2022 Bjørn Lie - Update to version 1.40.2: + Ensure that resolv.conf gets updated when the configuration changes. + Fix setting as bond primary an interface that doesn\'t exist yet when the bond is activated. + The number of autoconnect retries is now accounted independently for each device when there are profiles with multi-connect=multiple. + Don\'t print duplicate entries in the output of \"NetworkManager - -print-config\". + Fix the ifcfg-rh plugin to properly read infiniband P-Key connection profiles without an explicit interface name. + Allow the removal of a bond port connection profile from the bond via nmcli. + Fix race condition during the activation of veth profiles when the peer already exists. + Decline the DHCPv6 lease if all addresses fail IPv6 duplicate address detection (DAD). + Wait that devices get carrier before trying to resolve the system hostname on them via DNS. + Fix race condition during the initial activation of OVS interfaces. + Profiles generated by nm-initrd-generator now have lower than default priority. + Fix error when adding many SR-IOV virtual functions (VFs). * Mon Oct 10 2022 Stefan Schubert - Disabling netconfig compiling option for openSUSE Tumbleweed. * Mon Oct 03 2022 Dominique Leuenberger - Drop dependency on sysconfig-netconfig: the collection of shell scripts is not required for regular operation. * Fri Aug 26 2022 Bjørn Lie - Update to version 1.40.0: + During the build, stop relying on intltool for i18n and use gettext only. + Undeprecate nm_remote_connection_get_secrets() in libnm. + NetworkManager now will restart DHCP if the MAC changes on a device.- Drop intltool BuildRequires following upstream changes.- Refresh patches with quilt.- Stop passing dnssec_trigger=%{_libexecdir}/dnssec-trigger-script to meson, support dropped upstream. * Thu Aug 11 2022 Bjørn Lie - Update to version 1.38.4: + Fix DAD for DHCPv6 addresses. + Wi-Fi: improvements for OWE networks. + Support EC private keys. + Various bugfixes. * Thu Jul 28 2022 Frederic Crozat - Create /etc/NetworkManager/conf.d by default, allowing easy override for NetworkManager.conf file with drop-in.- Move default config file to /usr/lib/NetworkManager/NetworkManager.conf, as part of main package.- Branding upstream package is now just a config drop-in to disable conncheck.- Ensure /usr/lib/NetworkManager/conf.d is part of the package. * Fri Jun 24 2022 Yifan Jiang - Bring back /sbin/netconfig as build option since the netconfig in SLE is not ready for usrmerge. * Fri Jun 17 2022 Bjørn Lie - Update to version 1.38.2: + Fix race condition with pppd that caused failures when activating PPPoE connections. + Unbreak DHCPv6 over PPP. + Don\'t ignore IPv6 DNS servers received from PPP. + Fix crash while checking WEP capability of Wi-Fi interfaces. + Ensure DHCP is restarted every time the link goes up. + Fix struct alignment issues seen on some architectures. + Various other bugfixes and improvements. * Tue May 24 2022 Dominique Leuenberger - Fold NetworkManager-wifi back into the main package: The dep chain is not really different and it causes too many problems for users having that split. Not worth the pain (boo#1199710, boo#1199706).- As a consequence, also drop the recommends fro the main package to -wifi. * Mon May 16 2022 Dominique Leuenberger - Update to version 1.38.0: + Add support for route type \"throw\". + Fix bug setting priority for IP addresses. + Static IPv6 addresses from \"ipv6.addresses\" are now preferred over addresses from DHCPv6, which are preferred over addresses from autoconf. This affects IPv6 source address selection, if the rules from RFC 6724, section 5 don\'t give a exhaustive match. + Static IPv6 addresses from \"ipv6.addresses\" are now interpreted with first address being preferred. Their order got inverted. This is now consistent with IPv4. + Wi-Fi hotspots will use a (stable) random channel number unless one is chosen manually. + Don\'t use unsupported SAE/WPA3 mode for AP mode. + NetworkManager will no longer advertise frequencies as supported when they\'re disallowed in configured regulatory domain. + Attempt to connect to WEP-encrypted Wi-Fi network will now fail gracefully with a recent version of wpa_supplicant when built without WEP support. As long as wpa_supplicant supports WEP, NetworkManager will continue to work. + Disable WPA3 transition mode for wifi.key-mgmt=wpa-psk if the NIC does not support PMF. This is known to cause problems in some setups. It is still possible to explicitly configure wifi.key-mgmt=sae for WPA3. + Add new dummy crypto backend \"null\" that does nothing. NetworkManager uses the crypto library when handling certificates for 802.1x profiles. + Veth devices with name \"eth *\" are now managed by default via the udev rule. This is to support managing the network in LXD containers. + The hostname received from DHCP is now shortened to the first dot (or to 64 characters, whatever comes first) if it\'s too long. + As the insecure WEP encryption for Wi-Fi network is phased out, nmcli now discourages its use when activating or modifying a profile. + Fix connectivity checks in case the check endpoint address resolves to multiple addresses. + Workaround libcurl blocking NetworkManager while resolving DNS names. + nmcli: indicate missing Wi-Fi hardware when showing rfkill setting. + nmcli: add connection migrate command to move a profile to a specified settings plugin. This allows to convert profiles in the deprecated ifcfg-rh format to keyfile. + Set \"src\" attribute for routes from DHCPv4 to the leased address. This helps with source address selection. + Various bugfixes and internal improvements. + Updated translations.- Recommend NetworkNanager-wifi from the main package: after the split, there is currently nothing pulling in NM-wifi. Preferably this would happen based on wifi chips prsence, but that is not yet done (boo#1199550). * Thu Apr 14 2022 Jonathan Kang - Modify NetworkManager.spec: Split into a few small subpackages (bsc#1198128). * Fri Apr 01 2022 Thorsten Kukuk - Install nfs dispatcher script in /usr/lib/NetworkManager, not /etc * Tue Mar 22 2022 Bjørn Lie - Update to version 1.36.4: + The internal DHCPv4 client now discards NAKs packets coming from servers different from the one that sent the offer. + Fix activation of PPPoE connections with \"pppoe.parent\" unset. + Fix potential libnm crash when the client object initialization gets canceled. + Other various fixes and improvements. * Wed Mar 16 2022 Frederic Crozat - Do not requires dhcp-client, NM is using its internal client by default for a long time now.- Convert iproute2 and iputils requires to recommends, they should not be hard requires. * Mon Mar 07 2022 Bjørn Lie - Update to version 1.36.2: + When the list of plugins is not specified via \"main.plugins\" in NetworkManager.conf and no build-time default is set with \"--with-config-plugins-default\" configure argument, now all known plugins found in the plugin directory are loaded (and the built-in \"keyfile\" plugin is preferred over others). + Preserve external ports during checkpoint rollback. + Fix removal of ovsdb entry when an OVS interface goes away. + Fix DNS configuration for WWAN connections. * Thu Feb 24 2022 Bjørn Lie - Update to version 1.36.0: + The handling of Layer 3 configurations has been substantially reworked. While this is mostly internal change, it results in more robust behavior when addressing information from multiple sources (DHCP, manually configured, VPN) need to be applied simultaneously. Overall performance and memory use have also slightly improved. + Manually configured addresses can no longer expire even if the same addresses are also obtained dynamically. + Code for systemd-based DHCP and DHCPv6 clients has been updated from upstream. + NTP servers obtained via DHCPv6 are now exposed on the DBus API, visible in nmcli and available for use by dispatcher scripts. + 5G NR (New Radio) modems are now supported. + The \"rd.znet_ifnames\" kernel command line option is now honored on network bootups on an IBM s390 platform. + Wi-Fi P2P support does now work with the IWD backend, in addition to wpa_supplicant backend. + Support for special route types have been added: \"prohibit\", \"blackhole\" and \"unreachable\". + Routes managed by routing daemons are now ignored. This is done to address a performance bottleneck on specialized routers. + Handling of IP addressing and routing information is now slightly more efficient and uses less memory. This is apparent on systems with large amount of IP configuration information. + It is now possible to start NetworkManager without root user privileges. This is experimental doesn\'t necessarily result in a working daemon. NetworkManager service already drops many of capabilities available to the root user. + WPA3 Wi-FI network security have been improved by enabling new H2E (hash to element) method for generating SAE password element. + It is now possible to select the default Wi-Fi backend (wpa_supplicant or IWD) at build-time. + Replies from broken DHCP servers that send duplicate address or mask options are now handled gracefully. + Bridge support has gained the possibility of turning off MAC ageing. + \"configure-and-quit\" mode and nm-iface-helper have been removed. + A number of bugs that could cause NetworkManager to crash in rare conditions have been fixed.- Drop pkgconfig(libteam) BuildRequires and stop passing teamdctl=true to meson: No longer build teamdctl support.- Drop patches fixed upstream: + 4685651e7671e064b911a3a05f096908e5ef0580.patch + 471e987add98b36520ece72ee493176fc7bc863c.patch + 6329f1db5ac75ee3b7d2f7ce062e951a598625fe.patch + 634e023e72d4729788a022ea1fae665af28d1b0f.patch + aadf0fb64f491f94b2771058621dc140c562b62b.patch- Drop nm-dhcp-use-valid-lease-on-timeout.patch: Patch was rejected upstream.- Rebase patches with quilt. * Mon Feb 21 2022 Bjørn Lie - Add upstream bug fix patches: + 4685651e7671e064b911a3a05f096908e5ef0580.patch: glib-aux: fix nm_ref_string_equal_str() Fix comparison with a NULL string + 6329f1db5ac75ee3b7d2f7ce062e951a598625fe.patch: libnm/tests: fix maybe-uninitialized warning in \"test-setting\" + aadf0fb64f491f94b2771058621dc140c562b62b.patch: libnm/tests: fix maybe-uninitialized warning in \"test-libnmc-setting\" + 471e987add98b36520ece72ee493176fc7bc863c.patch: device: initialize nm_auto variable in _ethtool_features_reset() + 634e023e72d4729788a022ea1fae665af28d1b0f.patch: glib-aux: workaround maybe-uninitialized warning with LTO in nm_uuid_generate_from_string_str() * Fri Feb 18 2022 Callum Farmer - Use meson LTO setup as NM makes changes to CFLAGS * Wed Jan 26 2022 Luciano Santos - Packaging additions with Autotools replacement: + Add Meson build requirement and replace Automake macros with Meson equivalent ones as autotools will be deprecated in the future. + Options passed to Meson to mimmic our default preferences: systemdsystemunitdir=%{_unitdir}, udev_dir=%{_udevdir}, dbus_conf_dir=%{_dbusconfdir}, iptables=%{_sbindir}/iptables, dnsmasq=%{_sbindir}/dnsmasq, dnssec_trigger=%{_libexecdir}\\ /dnssec-trigger-script, dist_version=%{version}, polkit_agent_helper_1=%{_libexecdir}/polkit-1\\ /polkit-agent-helper-1, hostname_persist=suse, switchable libaudit=%{libaudit_meson_opt}, iwd=true, pppd=%{_sbindir}\\ /pppd, pppd_plugin_dir=%{_pppddir}, nm_cloud_setup=true, bluez5_dun=true, netconfig=%{_sbindir}/netconfig, dhclient=%{_sbindir}/dhclient, docs=true, switchable tests=%{tests_meson_opt}, more_asserts=0, more_logging=false, qt=false, and switchable teamdctl=true (teamctl is about to be deprecated). + Add conditionalized audit pkgconfig module build requirement to allow easier feature testing, and pass \'yes-disabled-by-default\' to \'libaudit\' Meson option. As an observation: Meson defaults passing \'yes\' to this feature. + Add explicit c++_compiler build requirement to avoid build abortion. + Add explicit libselinux pkgconfig module build requirement checked by Meson and was already being pulled in by some other package. + Add polkit-gobject-1 pkgconfig module build requirement checked by Meson and needed for user auth-polkit support. + Add mobile-broadband-provider-info pkgconfig module build requirement checked by Meson and needed for ModemManager1 interface support. + Add sed command to fix server.conf config file location from defaultdocdir/NetworkManager/examples to defaultdocdir/NetworkManager. + Add useful %{_pppddir} and %{_dbusconfdir} macros to spec file, while dropping no longed needed pppddir shell variable definition and \'test -n \"$pppddir\" || exit 1\' construct. + Add \"< 1.21\" version to libnm-glib-vpn1, libnm-glib4, and libnm-util2 < 1.21 to main package\'s Obsoletes tags, following packaging good practices to avoid future unwated behavior regarding versioning schemes. + Replace %version macro with hardcoded \"0.9.1\" version to the devel subpackage\'s %name-doc Obsoletes tag following packaging good practices to avoid future unwanted behaviors regarding versioning schemes (the doc subpackage was merged with the devel one in the 0.9.0 release). + Pass \"%{?no_lang_C}\" to %find_lang macro to avoid stripping any English translations (the default language) from main package.- Packaging deletions with Autotools replacement: + Remove data/server.conf from %doc macro in files section as it no longer works with Meson. + Remove \"rm\" command on server.conf file following sed command addition to fix the right location of the file. + Remove no longer useful conditional build abortion depending whether or not netconfig support was found \'grep \"with_netconfig=\'no\'\" config.log\' since this file isn\'t generated by Meson. + Remove no longer needed \"find\" command for GNU Libtool LA files deletion. + Drop no longer needed libtool build requirement as Meson does not use it. + Drop redundant sysconfig-netconfig build requirement as it does not add anything to the build anymore. + Drop comment about suse-release build requirement not being needed anymore, it\'s been deprecated for almost a decade now. + Drop setBadness for \'dbus-file-unauthorized\' in the rpmlintrc: the new dbus file has been whitelisted already (bsc#1194799). * Thu Jan 20 2022 Dominique Leuenberger - Split out NetworkManager-pppoe, needed to configure regular PPPoE connections (Not very common, as most users have PPPoE routers for the DSL connections). * Fri Jan 14 2022 Bjørn Lie - Update to version 1.34.0: + initrd: wait for both IPv4 and IPv6 with \"ip=dhcp,dhcp6\" + core: better handle sd-resolved errors when resolving hostnames + nmcli: fix import WireGuard profile with DNS domain and address family disabled + ndisc: send router solicitations before expiry + policy: send earlier the ip configs to the DNS manager + core: support linking with LLD 13 + wireguard: importing wg-quick configuration files with nmcli no longer sets a negative, exclusive \"dns-priority\". This plays better with common split DNS setups that use systemd-resolved. Adjust the \"dns-priority\" to your liking after import yourself. + NetworkManager no longer listens for netlink events for traffic control objects (qdiscs and filters). + core: add internal nm-priv-helper service for separating privileges and have a way to drop capabilities from NetworkManager daemon. + bond: add support for setting queue-id of bond port. + dns: support configuring DNS over TLS (DoT) with systemd-resolved. + nmtui: add support for WireGuard profiles. + nmcli: add aliases `nmcli device up|down` beside connect|disconnect. + conscious language: Deprecate \'Device.Slaves\' D-Bus property in favor of new \'Device.Ports\' property. Depracate \'nm_device_ *_get_slaves()\' in favor of \'nm_device_get_ports()\' in libnm. + nmcli: invoking nmcli command without arguments will now show \'default\' instead of null address in route4 or route6 section.- Refresh patches with quilt.- Replace addFilter(\"suse-branding-unversioned-requires *\") from rpmlintrc, with the current branding-requires-unversioned.- Update our Supplements to current standard.- Add the new internal nm-priv-helper.service to pre(un)/post(un) handling. * Wed Sep 22 2021 Bjørn Lie - Update to version 1.32.12: + Fix wrong order of addresses when restarting NetworkManager. + Preserve the IPv6 ff00::/8 route added by kernel in the local table, necessary for multicast communication. + Fix emitting the signal for changed metered status of devices. + Fix applying the ethtool autonegotiation and speed settings. + initrd: fix crash parsing plain \'=\' without key. + cloud-setup: use suppress_prefixlength rule to honor non-default-routes in the main table. * Wed Sep 22 2021 Jonathan Kang - Drop nm-add-CAP_CHOWN-capability.patch: This solution was denied by upstream maintainers. * Tue Sep 14 2021 Stanislav Brabec - Remove obsolete translation-update-upstream support (jsc#SLE-21105). * Thu Aug 19 2021 Bjørn Lie - Update to version 1.32.10: + core: fix the order of IPv6 addresses changing on service restart. + initrd: add command line option to configure link autonegotiation and speed. + ifcfg-rh: - fix crash when parsing invalid DNS address. - extend ifup/ifdown scripts to work with connection profile names. + udev: also react to \"move\" (and \"change\") udev actions in our rules.- Changes from version 1.32.8: + firewalld: configure zones on \"Reloaded\" signal. + core: fix wrong MTU for bridge interfaces. + cloud-setup: fix gateway address for Aliyun cloud. * Wed Jul 28 2021 Bjørn Lie - Update to version 1.32.6: + core: - Fix adding stale local routes when address changes. - Introduce \"allowed-connections\" option to disallow profiles on a device. This allows to filter out profiles that originate from initrd. - Introduce \"keep-configuration\" device option to forcefully activate a profile on start. + initrd: - Tag generated profiles with origin in user data. - Add \"ib.pkey=\" command line option. + dhcp: Handle filename/bootfile_name DHCP option and write it to device state file for initrd/kickstart. * Mon Jul 26 2021 Callum Farmer - Add libnm0 to baselibs.conf to be used by 64bit Steam * Tue Jul 20 2021 Bjørn Lie - Update to version 1.32.4: + core: - Remove stale entries from \"seen-bssids\" and \"timestamp\" files in \"/var/lib/NetworkManager\". - Add ipv[46].required-timeout option to wait for IP configuration while activating. - Send ARP announcements when there is carrier. - Start DHCPv6 when a prefix delegation is needed for shared mode. + bond: support the peer_notif_delay option. + firewall: fix nftables backend to create \"ip\" table for IPv4 only. + initrd: set required-timeout of 20 seconds for default IPv4 configuration to opportunistically wait for IPv4. + ifcfg: - Log warning about invalid keys in ifcfg files. - Reject non-UTF-8 from ifcfg files. + nmcli: show DNS SEARCH field in device information. + cloud-setup: add support for Aliyun cloud. * Wed Jun 30 2021 Bjørn Lie - Update to version 1.32.2 (CVE-2020-13529): + hostname: prefer IPv4 addresses for reverse DNS lookup. + dhcp: ignore unauthenticated FORCERENEW messages with internal, systemd-based DHCPv4 plugin (CVE-2020-13529). This plugin is not used, unless the undocumented dhcp=systemd option was set. + cloud-setup: preserve IP addresses, routes and rules from currently active connection profile. + Various bugfixes and performance improvements. * Wed Jun 16 2021 Bjørn Lie - Update to version 1.32.0: + Now NetworkManager uses systemd-resolved API to lookup the system hostname via reverse DNS. If systemd-resolved is not available, a \'nm-daemon-helper\' binary is spawned to perform the lookup using the \'dns\' NSS module.- Rebase patches. * Tue May 18 2021 Jonathan Kang - Add nm-add-CAP_CHOWN-capability.patch: Add CAP_CHOWN to CapabilityBoundingSet to make teamd work properly (glfd#NetworkManager/NetworkManager!860, bsc#1185424). * Fri May 14 2021 Dominique Leuenberger - Drop networkmanager-obs-net.patch: the patch needs a full rework.- Drop networkmanager-checks-po.patch: as it was supposed to fix something introduced by another patch which we still carry, yet we can live with this patch disabled, I\'d infer this patch is not nescessary. * Tue Apr 20 2021 Dominique Leuenberger - Update to version 1.30.4: + Fix crash evaluating match setting properties (CVE-2021-20297). + Fix leak of local route added by NetworkManager for configured addresses. + Fix name of the device autoconnect D-Bus property. + Multiple bugfixes in the initrd generator. + Various minor bugfixes. * Sat Apr 17 2021 Dominique Leuenberger - Update to version 1.30.2: + Increase the limit of open file descriptors in NetworkManager.service. + Fix hostname lookup via DNS when resolv.conf is managed by systemd-resolved. + Enable WPA3 for Wi-Fi connections with key_mgmt=WPA-PSK. + Fix crash with the IWD Wi-Fi backend. + Avoid logging warning when setting bond option \"ad_actor_system=00:00:00:00:00:00\". + Update SpecificObject D-Bus property of ActiveConnection after WiFi roaming. + Multiple bugfixes in the initrd generator. + Various minor bugfixes.- Drop NM-restore-MAC-on-release-only-when-cloned.patch: fixed upstream. * Thu Apr 15 2021 Jonathan Kang - Modified NetworkManager.conf: Use dhclient as the default dhcp client(bsc#1183202). * Fri Apr 09 2021 Jonathan Kang - Add nm-dhcp-use-valid-lease-on-timeout.patch: Support valid lease file on dhcp timeout(glfd#NetworkManager/NetworkManager!811, bsc#1183202).- Drop nm-fix-dhcp-client-timeout.patch: Replace by the patch immediately above. * Fri Apr 09 2021 Jonathan Kang - Add nm-fix-dhcp-client-timeout.patch: Better handle dhclient\'s timeout so that a recorded lease can be used when dhcp server is down(glfo#NetworkManager/NetworkManager!811, bsc#1183202).- Modified NetworkManager.conf: Use dhclient as the default dhcp client(glfo#NetworkManager/NetworkManager!811, bsc#1183202). * Thu Mar 25 2021 Jonathan Kang - Add NM-restore-MAC-on-release-only-when-cloned.patch: bond: restore MAC on release only when there is a cloned MAC address (glfo#NetworkManager/NetworkManager!775, bsc#1183967). * Thu Feb 18 2021 Dominique Leuenberger - Update to version 1.30.0: + Increase timeout of NetworkManager-wait-online.service to 60 seconds. + Add \"ipv4.dhcp-client-id=ipv6-duid\" option for RFC4361. + The dhcpcd plugin now requires a minimum version of dhcpcd-9.3.3 with the --noconfigure option. Using an older version will cause dhcpcd to exit with a status code of 1. + Support building against musl libc. + Support new ethtool offload features. + Add support for WPA3 Enterprise Suite-B 192 bit mode. + Add support for handling Veth devices. + New hostname settings for controlling configuring the hostname from reverse DNS lookup and from DHCP. + OVS: support configuring external-ids. + libnm: nm_setting_bond_add_option() no longer validates the option that is set. Instead, use nm_connection_verify() to validate the profile. + libnm: add support for reading/writing keyfile format. This required to relicense previously GPL-2.0+ code as LGPL-2.1+ with the agreement of the copyright holders. + initrd: - Support for rd.net.timeout.carrier option. - Support new ip method \"link6\" for IPv6 link-local only. + build: new configure option to set path to \"polkit-agent-helper-1\". + Many bugfixes and improvements. + Updated translations.- Change License to GPL-2.0-or-later and LGPL-2.1-or-later, following upstream.- Replace %systemd_requires with %systemd_ordering. * Mon Jan 04 2021 Hans-Peter Jansen - Second attempt to exclude systemd.automount from nfs processing: fix boo#1116625 * Sun Dec 06 2020 Bjørn Lie - Update to version 1.28.0: + Change the behavior of nm-initrd-generator so that the \'ip=off|none\' kernel cmdline argument actually generates a connection which disables both ipv4 and ipv6. Previously the generated connection would disable ipv4 but ipv6 would be set to the \'auto\' method. * Fri Nov 27 2020 Fabian Vogt - Provide service(network) and sysvinit(network) to be an alternative to wicked-service * Tue Nov 24 2020 Bjørn Lie - Pass --enable-lto to configure, build with LTO enabled.- Stop passing --enable-json-validation to configure, no longer needed, nor recognized. * Fri Oct 30 2020 Hans-Peter Jansen - Exclude systemd.automount from nfs processing: fix boo#1116625 as suggested from Neil Brown * Wed Oct 21 2020 Dominique Leuenberger - Update to version 1.27.91: + Change the default DNS priority for VPNs from 50 to -50. This is a change in behavior and means that when connecting to a VPN with the default route, DNS queries will never leak to local resolvers. To restore the old behavior, set the DNS priority of the connection to 50. + The initrd generator now supports creating Infiniband connections. * Fri Oct 16 2020 Dominique Leuenberger - Rebase patches: + 0001-Coerce-connectivity-LIMITED-to-NONE-when-device-is-d.patch + NetworkManager-1.10.6-netconfig.patch + nm-dont-overwrite-resolv-conf.patch * Fri Oct 16 2020 Bjørn Lie - Update to version 1.27.90: + Introduce a new \"rc-manager=auto\" setting and make it the default, unless a different default is chosen at compile time. This mode tries to detect \"systemd-resolved\", \"resolvconf\", and \"netconfig\".- Disable patches that needs rebase or dropping: + nm-dont-overwrite-resolv-conf.patch + NetworkManager-1.10.6-netconfig.patch + 0001-Coerce-connectivity-LIMITED-to-NONE-when-device-is-d.patch * Fri Oct 16 2020 dimstarAATTopensuse.org- Update to version 1.27.3: + Introduce new \"rc-manager=auto\" setting and make it the default, unless a different default is chosen at compile time. This mode tries to detect \"systemd-resolved\", \"resolvconf\", and \"netconfig\" and chooses the mode that seems most suitable depending on build setting and runtime detection. \"resolvconf\" and \"netconfig\" are only considered iff NetworkManager was built with the respective options enabled.- Rebase nm-dont-overwrite-resolv-conf.patch and 0001-Coerce-connectivity-LIMITED-to-NONE-when-device-is-d.patch. * Thu Oct 15 2020 Bjørn Lie - Update to version 1.26.4: + Add support for the DHCPv4 vendor class identifier option. + The initrd generator now supports specifying interfaces by MAC address. + Automatically add the wildcard DNS domain to VPNs with never-default=no and no domains. + Allow setting bond \"primary\" option with modes \"tlb\" and \"alb\". + Fix peer group tracking of Wi-Fi P2P connections. + Fix autoactivating virtual devices after a failure. * Thu Aug 20 2020 Bjørn Lie - Update to version 1.26.2: + build: various fixes for LTO. + dhcp6: export and handle the DHCPv6 FQDN option. + core: fix reapply for bond options. + core: improve \"connection.wait-device-timeout\" to handle matching devices not only by interface name and fix race. + libnm,core: support \"clsact\" qdisc. + dhcp4: fix bug in internal DHCP client on big endian systems. * Thu Aug 13 2020 Dominique Leuenberger - Own the two empty directories pre-up.d and pre-down.d in /usr/lib/NetworkManager/dispatcher.d (boo#1173713). * Mon Jul 13 2020 Bjørn Lie - Update to version 1.26.0: + Add a new build option \'firewalld-zone\'; when enabled, NetworkManager installs a firewalld zone for connection sharing and puts interfaces using IPv4 or IPv6 shared mode in this zone during activation. The option is enabled by default. Note that NetworkManager still calls to iptables to enable masquerading and open needed ports for DHCP and DNS. The new option is useful on systems using firewalld with the nftables backend, where the iptables rules would not be sufficient. + Extend the syntax for \'match\' setting properties with \'|\', \'&\', \'!\' and \'\\\\\'. + Add MUD URL property for connection profiles (RFC 8520) and set it for DHCP and DHCPv6 requests. + Expose raw LLDP message on D-Bus and the MUD usage description URL. + ifcfg-rh: handle \"802-1x.{,phase2-}ca-path\". Otherwise setting this property silently fails and a profile might accidentally not perform any authentication (CVE-2020-10754). + ifcfg-rh: handle 802-1x.pin properties. + ethernet: reset original autonegotiation/speed/duplex settings when deactivating device. + Support ethtool coalesce and ring options. + Allow team connections to work without D-Bus (e.g. in the initrd). + Wi-Fi profiles now also autoconnect if all previous activation attempts failed. This means, an initial failure to autoconnect to the network will no longer block the automatism. A side effect is that existing Wi-Fi profiles which previously were blocked may now start to autoconnect. + NetworkManager now supports \"local\" type routes beside \"unicast\". + Introduce new manual pages nm-settings-dbus and nm-settings-nmcli. + Mark externally managed devices and profiles on D-Bus. + Highlight externally managed devices in nmcli. + Add support for a number of bridge options. + Add match for device path, driver and kernel command line for connection profiles. + Fix support for OVS patch interfaces. + Support more tc qdiscs: tbf and sfq. + Add new provider in nm-cloud-setup for Google Cloud Platform which automatically detects and configures the host to receive traffic from internal load balancers. * Thu Jul 02 2020 Jonathan Kang - Rebase nm-add-CAP_SYS_ADMIN-permission.patch. * Fri May 29 2020 Bjørn Lie - Update to version 1.24.2: + Add a new build option \'firewalld-zone\'; when enabled, NetworkManager installs a firewalld zone for connection sharing and puts interfaces using IPv4 or IPv6 shared mode in this zone during activation. The option is enabled by default. Note that NetworkManager still calls to iptables to enable masquerading and open needed ports for DHCP and DNS. The new option is useful on systems using firewalld with the nftables backend, where the iptables rules would not be sufficient. + ifcfg-rh: - Handle \"802-1x.{,phase2-}ca-path\". Otherwise setting this property silently fails and a profile might accidentally not perform any authentication (CVE-2020-10754). - Handle 802-1x.pin properties. + platform: fix crash detecting device type from netlink. + ip-tunnel: only set cloned-mac-address for layer 2 tunnels. + Fixes for sanitizer build and valgrind. + Various other bugfixes. * Fri May 08 2020 Bjørn Lie - Update to version 1.24.0: + Add support for virtual routing and forwarding (VRF) interfaces. + Add support for Opportunistic Wireless Encryption mode (OWE) for Wi-Fi networks. + Add support for 31-bit prefixes on IPv4 point-to-point links according to RFC 3021. + Drop dependencies for libpolkit-agent-1 and libpolkit-gobject-1. + nmcli: - support setting removal via new command `nmcli connection modify $CON_NAME remove $setting`. - support backslash escape sequences for \"vpn.data\", \"vpn.secrets\", \"bond.options\", and \"ethernet.s390-options\". + bridge: support new options \"bridge.multicast-querier\", \"bridge.multicast-query-use-ifaddr\", \"bridge.multicast-router\", \"bridge.vlan-stats-enabled\", \"bridge.vlan-protocol\", \"bridge.group-address\". + IPv6 SLAAC: add support for \"ipv6.ra-timeout\" setting + IPv6 DHCP: add support for \"ipv6.dhcp-timeout\" setting + WWAN: NetworkManager now detects if a PIN-protected SIM card has been externally unlocked and automatically tries to activate a suitable connection on the modem. + OVS: - add support for changing MTU of OVS interfaces. - remove length limitation for OVS Bridge, Patches and Interfaces (only Patch types) names. + VPN: accept empty values for VPN data items and secrets. + All nm-devices now expose the \'HwAddress\' property via D-Bus. + Slave devices now do not get created/activated if master is missing. + Fixed multiple issues in the internal \"nettools\" DHCP client. + Export NM_CAPABILITY_OVS capability on D-Bus and in libnm to indicate that the OVS plugin is loaded. + Fixes for importing WireGuard profiles in nmcli and better handle configurations that enable ip4-auto-default-route with an explicit gateway. + Various bug fixes and improvements.- Rebase applied patches with quilt.- Drop pkgconfig(polkit-agent-1) BuildRequires: No longer needed. * Fri May 01 2020 Dominique Leuenberger - Prepare the directory structure for the VPN modules. This is the directory we instruct VPN services to be installed to as part of pkg-config --variable vpnservicedir libnm. It is this fair that we also provide the directory layout.- Install RPM macros (macros.NetworkManager) as part of the -devel package for plugins to get the relevant variables to consume. * Thu Mar 12 2020 Bjørn Lie - Update to version 1.22.10: + core: periodically cleanup stale device state files from /run. + dhcp: fix crash in nettools client. + bond: fixed the validation of the miimon option. + Various minor bug fixes and improvements. * Wed Mar 11 2020 Dr. Werner Fink - Modify nfs script (boo#1164642) * Also mount nfs4 shares * Ignore nfs or nfs4 shares in case if the noauto option is set * Tue Feb 18 2020 Bjørn Lie - Update to version 1.22.8: + Added configuration option to customize IPv6 RA timeout. + Internal DHCP client will now request a lease renewal using the previously obtained IP address when expired. + Removed length limitation for OVS Bridge, Patches and Interfaces (only Patch types) names. + Fixed initialization of \'secs\' DHCP header field, this caused some DHCP relays to drop packets. + Fixed failure when creating team interfaces using \'nmstate\'. + Various bug fixes and improvements. * Wed Feb 05 2020 Michael Gorse - Add -fcommon to CFLAGS. This is currently being done upstream (boo#1160381). * Fri Jan 31 2020 Bjørn Lie - Update to version 1.22.6: + Various fixes for the internal DHCP client. + Slave devices now do not get created/activated if master is missing. + Fixed \'startup-complete\' bug where NetworkManager would reach the network-online.target even when not all the connections had been tried. + Updated translations. * Sat Jan 25 2020 Dominique Leuenberger - No longer recommend -lang: supplements are in use * Fri Jan 10 2020 Bjørn Lie - Update to version 1.22.4: + Fix behavior of internal DHCP client when the server sends a NAK. + Support 31-bit prefixes on IPv4 point-to-point links according to RFC 3021. + Fix memory leak parsing RequestScan D-Bus method arguments. * Wed Jan 08 2020 Lorenz Hüdepohl - Fix \'nfs\' dispatcher script It was checking for an enabled unit \'nfs.service\' - which does not exist (anymore?). Switched to a check for an enabled unit \'nfs-client.target\'
|
|
|