go1.12-1.12.4-bp151.2.1

- go1.12.4 (released 2019/04/11) fixes an issue where using the prebuilt binary
  releases on older versions of GNU/Linux led to failures when linking programs
  that used cgo. Only Linux users who hit this issue need to update.
  Unpackaged go1.12.3 (released 2019/04/08) was accidentally released by
  upstream without its intended fix. It is identical to go1.12.2, except for
  its version number. The intended fix is in go1.12.4. go1.12.3 was never
  packaged for SUSE and openSUSE.
  * go#31293 runtime/cgo: unrecognized relocation with binaries shipped in go1.12.2

- go1.12.2 (released 2019/04/05) includes fixes to the compiler, the
  go command, the runtime, and the doc, net, net/http/httputil, and
  os packages.
  * go#31244 go 1.12 binaries rejected from mac app store due to ___getdirentries64
  * go#31211 ioutil: deadlock when WriteFile called with a 5<<30 byte buffer on Windows
  * go#31209 cmd/compile: struct interface{} value lost passing by value
  * go#31155 runtime: remove assumptions on Android Bionic's TLS layout
  * go#31144 net/http/httputil: ReverseProxy FlushInterval no longer flushes headers in go1.12
  * go#31062 net: Error when running concurrent DNS queries using cgo on MacOS
  * go#31028 Go 1.12.1 dsymutil segmentation fault on MacOS Sierra
  * go#30996 cmd/compile: miscompilation of codependent global `var` assigments in go1.12
  * go#30859 os: RemoveAll no longer returns *os.PathError
  * go#30666 runtime: dll injection vulnerabilities on Windows
  * go#30491 os: RemoveAll no longer returns *os.PathError
  * go#30266 cmd/go: executables are sometimes named after their module's last element, not directory

- cleaning up the macros and conditionals for gcc go
  - use bcond_with(out) to decide whether we want to use gccgo or
    not. makes it easier to test both code paths as you can use
    osc build --with(out)=gccgo
  - add defines for which go version to use for different versions,
    that way we dont have to use the old 1.4 everywhere anymore.
    this allows us to use go for bootstrapping everywhere
  - do not use gcc go at all as even gcc-go 8 can not handle some
    newer constructs
  - define a gcc_go_version variable and use it through out the
    spec file, this simplifies some conditionals and makes them
    more understandable, and we have the complex if only once.
  - move architecture defines to the top

- go1.12.1 (released 2019/03/14) includes fixes to cgo, the
  compiler, the go command, and the fmt, net/smtp, os,
  path/filepath, sync, and text/template packages.
  * go#30816 misc/cgo/test: failing TestCrossPackageTests
  * go#30684 cmd/go: duplicate symbols when including two main packages in -coverpkg in module mode
  * go#30665 cmd/go: module loader looks for the wrong tags if the "go-import" prefix includes the major-version suffix
  * go#30586 path/filepath: EvalSymlinks, incorrect traversal of relative paths
  * go#30579 os: RemoveAll doesn't remove nested un-readable directories
  * go#30567 cmd/compile: function inlining produces incorrect results in certain conditions
  * go#30493 cmd/go: error if GOCACHE is set but is not an absolute path
  * go#30484 fmt: map printing sort does not deterministically sort differing types
  * go#30478 cmd/compile: KeepAlive doesn't actually keep stack object alive
  * go#30470 sync: random errors on sync.Once running on MacOS Mojave or High Serra
  * go#30465 cmd/vet: Consider reverting tag conflict for embedded fields
  * go#30464 text/template: panics on method on nil interface value
  * go#30447 cmd/go: error if GOCACHE is set but is not an absolute path
  * go#30403 net/smtp: SendMail AUTH error with PlainAuth and successful STARTTLS
  * go#30398 fmt: map printing sort does not deterministically sort differing types

- go1.12 (released 2019/02/25) includes changes in the implementation of the
  toolchain, runtime, and libraries. As always, the release maintains the Go 1
  promise of compatibility. Upstream expects almost all Go programs to continue
  to compile and run as before.
  * GO111MODULE=on enables module-aware operations outside of a module directory
  * GODEBUG=tls13=1 enables opt-in support for TLS 1.3 in the crypto/tls package
    per RFC 8446. Will be default in go1.13.
  * trace tool now supports plotting mutator utilization curves, including
    cross-references to the execution trace. These are useful for analyzing the
    impact of the garbage collector on application latency and throughput.
  * arm64 assembler platform register renamed from R18 to R18_PLATFORM
  * improvements to gc
  * race detector is now supported on linux/arm64
  * cgo is now supported on linux/ppc64
  * go1.12 is the last release that will support binary-only packages.

- Fix erroneous trailing backslash in %post script.
- Use better forms of -exec \; in some places.

- go1.11.5 (released 2019/01/23) security release fixes CVE-2019-6486 (bsc#1123013).
  * go#29903 crypto/elliptic: CPU DoS vulnerability affecting P-521 and P-384

- Make our profile.d/go.sh no longer set GOROOT=, in order to make switching
  between versions no longer break. This ends up removing the need for go.sh
  entirely (because GOPATH is also set automatically). boo#1119634

- go1.11.4 (released 2018/12/14) includes fixes to cgo, the compiler, linker,
  runtime, documentation, go command, and the net/http and go/types packages.
  It includes a fix to a bug introduced in Go 1.11.3 that broke go get for
  import path patterns containing "..." (boo#1119706). See the Go 1.11.4 milestone on our
  issue tracker for details.
  https://github.com/golang/go/issues?q=milestone%3AGo1.11.4+label%3ACherryPickApproved
  * go#29272 misc/cgo/test: issue24161 tests broken on Darwin
  * go#29248 cmd/go: "go get" fails on import path patterns with wildcards ("...")
  * go#29191 cmd/go: symbolic links not dropped from repo
  * go#29112 cmd/link: too many open files on high object-count dependencies
  * go#28974 cmd/go: need to backport relaxing of go.mod go verb constraints to 1.11 series
  * go#28972 go/types: problem with alias type
  * go#28916 cmd/cgo: nested structure has too much alignment padding
  * go#28799 runtime: fatal error: out of memory on reslice with negative index
  * go#28752 reflect: scanning invalid return slots during a makeFunc call
  * go#28725 cmd/go: panic when argument doesn't match any packages
  * go#28694 cmd/compile: inline multiplication corrupts an argument on arm
  * go#28690 runtime: ThreadSanitizer CHECK failed
  * go#28673 x/net/http2: Transport is leaking streams on broken Body
  * go#28617 cmd/compile: panic during fuse with if true block containing a goto and a return
  * go#28586 cmd/compile: go binaries not working on exynos 64 bit CPUs
  * go#27395 cmd/cgo: typedef pointer arguments regression
  * go#27383 cmd/compile: failure on a function type alias

- Update to Go 1.11.3 (released 2018/12/13). This includes fixes to
  the crypto/x509 and cmd/go packages. See the Go 1.11.3 milestone
  on upstream tracker for details:
  https://github.com/golang/go/issues?q=milestone%3AGo1.11.3
  * bsc#1118897 CVE-2018-16873
    go#29230 cmd/go: remote command execution during "go get -u"
  * bsc#1118898 CVE-2018-16874
    go#29231 cmd/go: directory traversal in "go get" via curly braces in import paths
  * bsc#1118899 CVE-2018-16875
    go#29233 crypto/x509: CPU denial of service
  * Upstream is aware of a functionality regression in "go get" when
    executed in GOPATH mode on an import path pattern containing "..."
    (e.g., "go get github.com/golang/pkg/..."), when downloading
    packages not already present in the GOPATH workspace. This is go#29241
    and will be resolved in the next minor patch release go-1.11.4

- Fix build error with PIE linker flags on ppc64le. bsc#1113978 boo#1098017
  * gccgo on ppc64le with default PIE enabled fails with:
    error while loading shared libraries:
    R_PPC64_ADDR16_HA re10143fb0c for symbol `' out of range
  * linuxppc-dev discussion:
    "PIE binaries are no longer mapped below 4 GiB on ppc64le"
    https://lists.ozlabs.org/pipermail/linuxppc-dev/2018-November/180862.html
  * Add for ppc64le only: #!BuildIgnore: gcc-PIE
  * OBS environment defaults to PIE
  * Upstream fix for go buildmode PIE desired, track upstream go#28531

- Remove obsolete patch:
  * armv6l.patch
- Enable %arm build
- Build with go1.4 instead of gccgo for Tumbleweed (fix %arm build)

- Update to go1.11.2 (released 2018/11/02)
  * includes fixes to the compiler, linker, documentation, go command,
    and the database/sql and go/types packages.
- cmd/compile:
  * function argument hiding built-in function results in a compiler crash go#27399
  * go build panics when 'len' keyword was unintentionally shadowed go#27973
- cmd/go:
  * 'go test -coverprofile' emits slash-separated paths on Windows go#27487
  * `go help build` mentions -mod=release, which is not supported go#27398
  * for go mod download, -dir option does not exist go#27498
  * git export-subst causes hash mismatches go#28094
- cmd/trace:
  * SWEEP events' swept/reclaimed bytes info is not emitted go#27717
- database/sql:
  * confusing MaxIdleClosed statistic go#28325
- go/types:
  * embedded interface behavior now dependent on file name ordering go#28249
- misc/wasm:
  * Microsoft Edge 18 (latest) crashes due to TextEncoder not being supported go#27393
- net:
  * io.CopyN fails to copy from file to net.Conn on Windows go#27411
- runtime:
  * wasm: all goroutines asleep and no JavaScript callback pending - deadlock go#27425
- Fix formatting in go1.11.changes

- Update to go1.11.1 (released 2018/10/01)
  * includes fixes to the compiler, documentation, go command, runtime,
    and the crypto/x509, encoding/json, go/types, net, net/http and reflect
    packages.
- cmd/compile:
  * bad walkinrange rewrites on constant above 2**63
  * function compiled without bounds checking and -1 index access
  * missing bounds checks in 1.11
  * panic in cmd/compile/internal/gc.typecheck1
  * race detector detects race with close(chan) and len(chan)
- cmd/go:
  * 'go test -gcflags=all=-l' appears not to disable inlining
  * GOMIPS environment variable does not affect caching of mipsle code
  * TestScript/mod_install_versioned consistently failing on macOS High Sierra
  * build fails when setting linker to lld using ldflags
  * go list -json -compiled -test -e upspin.io/test fails with non-zero exit status
- doc:
  * GOFLAGS environment variable not in 1.11 release notes
  * downloads page claims that Go 1.11 supports unsupported operating systems Documentation
- encoding/json:
  * empty fields in json.UnmarshalTypeError
- go/types:
  * assertion failure setting up composite literal with incomplete element type
  * some facts are missing after an error
- net/http:
  * WASM Roundtripper crash when using "no-cors" mode
- net:
  * LookupTXT bug
  * empty DNS answers should fail fast
  * testSpliceReaderAtEOF closed connection: got err = splice: invalid argument
- reflect:
  * MethodByName().Interface() leads to fatal error: sweep increased allocation count
- runtime:
  * invalid pointer found on stack
  * timeouts in os/signal tests

- Update to version 1.11:
  * Most of its changes are in the implementation of the toolchain,
    runtime, and libraries. As always, the release maintains the
    Go 1 promise of compatibility. We expect almost all Go programs
    to continue to compile and run as before.
  * For more details check: https://golang.org/doc/go1.11
- Use gcc8 instead of gcc7 for Factory/Tumbleweed.
- Update compiler-rt TSAN binary: the precompiled versions of
  LLVM's compiler-rt has updated to commit
  fe2c72c59aa7f4afa45e3f65a5d16a374b6cce26 in go1.11 source.
- Remove patch:
  * fix-sanitizer-build-against-latest-glibc.patch: upstream fixed.
- Add patch:
  * gcc8-go.patch: use gcc8 instead of gcc7 for Factory/Tumbleweed.

- Update to version 1.10.4:
  * go1.10.4 (released 2018/08/24) includes fixes to the go command,
    linker, and the net/http, mime/multipart, ld/macho, bytes, and
    strings packages. See the Go 1.10.4 milestone on our issue
    tracker for details.

- Update to version1.10.3:
  * go1.10.3 (released 2018/06/05) includes fixes to the go command,
    and the crypto/tls, crypto/x509, and strings packages. In particular,
    it adds minimal support to the go command for the vgo transition.
    See the Go 1.10.3 milestone on our issue tracker for details.

- Update to version 1.10.2:
  * includes fixes to the compiler, linker, and go command.
- Changes in version 1.10.1:
  * includes fixes to the compiler, runtime, and the archive/zip,
    crypto/tls, crypto/x509, encoding/json, net, net/http, and net/http/pprof packages.

- Removed
  * go-1.5-install-dont-reinstall-stdlibs.patch: patch no longer needed.
- Changed
  * gcc7-go.patch: go1.10 source code changed, patch is no longer applies.

- Update to go1.10:
  * Most of its changes are in the implementation of the toolchain, runtime, and
    libraries. As always, the release maintains the Go 1 promise of compatibility.
    We expect almost all Go programs to continue to compile and run as before.
  * This release improves caching of built packages, adds caching of successful
    test results, runs vet automatically during tests, and permits passing
    string values directly between Go and C using cgo. A new compiler option
    whitelist may cause unexpected invalid flag errors in code that built
    successfully with older releases.
  * For more details check: https://golang.org/doc/go1.10
- Removed the following patches:
  * verbose-build.patch: build system changed, patch is no longer applies
  * go-1.5-install-dont-reinstall-stdlibs.patch: patch no longer needed

- Ensure ARM arch is set properly - boo#1169832

- Requires binutils-gold for %arm and aarch64 - boo#1170826

- Revert truncate changelog for versions older than go1.12

- go1.12.17 (released 2020/02/12) includes a fix to the runtime.
  Refs boo#1141689.
  * go#36574 runtime: "PowerRegisterSuspendResumeNotification failed with errno= 87" when running in Windows docker containers
  * Truncate changelog for versions older than go1.12

- go1.12.16 (released 2020/01/28) includes two security fixes to
  the crypto/x509 package.
  Refs boo#1141689.
  * go#36839 crypto/x509, x/crypto/cryptobyte: panic in certificate parsing
  * go#36836 crypto/x509: certificate validation bypass on Windows 10

- go1.12.15 (released 2020/01/09) includes fixes to the runtime
  and the net/http package.
  Refs boo#1141689.
  * go#36433 net/http: racing write to t.ProxyConnectHeader in dialConn when proxy URL includes auth credentials
  * go#36377 runtime: "fatal error: PowerRegisterSuspendResumeNotification failure" when running in Windows docker containers
  * go#36376 runtime: Timer buckets may get "stuck" for long periods of time after Windows 8/10 systems wake from sleep
  * go#36367 runtime: sweep increased allocation count crash on arm64
  * go#36002 doc: release history webpage contains suboptimal links

- go1.12.14 (released 2019/12/04) includes a fix to the runtime.
  Refs boo#1141689.
  * go#35747 ensure that Go toolchain meets Apple's notarization requirements
  * go#35210 runtime: function textOff returns incorrect value if multiple text sections are present

- go1.12.13 (released 2019/10/31) fixes an issue on macOS 10.15
  Catalina where the non-notarized installer and binaries were
  being rejected by Gatekeeper. Only macOS users who hit this issue
  need to update.
  Refs boo#1141689.

- Add %ifarch %arm aarch64 BuildRequires: binutils-gold to fix
  /usr/lib64/go/{version}/pkg/tool/linux_arm64/link: running gcc failed: exit status 1
  collect2: fatal error: cannot find 'ld'-

- Remove unneeded systemd BuildRequires.

- Fix broken go_api evaluation (1.12 < 1.5, when evaluated as floats),
  let RPM evaluate the expression, drop no longer required bc.
- Own the gdbinit.d directory, avoid the build dependency on gdb.

- go1.12.12 (released 2019/10/17) includes fixes to the go command,
  runtime, syscall and net packages.
  Refs boo#1141689.
  * go#34881 net/http: Client.Do() panics when URL includes HTTP basic auth
  * go#34789 cmd/go/internal/modconv: TestConvertLegacyConfig failing on release-branch.go1.12
  * go#34713 runtime, internal/poll: darwin: ensure that no thread is consumed, nor a syscall.Read if FD isn't yet ready for I/O
  * go#34711 runtime: "program exceeds 50-thread limit" in test of os package on darwin-arm-mg912baios
  * go#34661 net: infinite loop in LookupAddr()
  * go#34641 syscall: (*LazyProc).Call does not keep arguments alive (anymore)
  * go#33983 cmd/cover: cannot run in directory with no .go files
  * go#33982 x/sys/unix: TestPassFD consistently failing in aix-ppc64 builder on release-branch.go1.12
  * go#33877 net/http: Transport leaks net.Conns if connections never become idle
  * go#33758 x/build, cmd/go: TestGoGetInsecure failing in release-branch.go1.12
  * go#33757 x/build, runtime: linux-s390x-ibm regression in TestGdbPython on release-branch.go1.12
  * go#33756 x/build: skip `darwin-386-10_14` builder on release-branch.go1.12
  * go#33673 cmd/go: regression on the default of CGO_ENABLED to 0 for cross builds
  * go#31887 cmd/go: downloads follow plain-HTTP redirects even when the -insecure flag is not set
  * go#31305 x/arch/arm64/arm64asm: TestObjdumpARM64TestDecode{GNU,Go}Syntaxdata failing at Go 1.12.3

- go1.12.11 (released 2019/10/17) includes security fixes to the
  crypto/dsa package addressing the following CVE:
  CVE-2019-17596
  Refs boo#1141689.
  * boo#1154402 CVE-2019-17596
  * go#34961 crypto/dsa: invalid public key causes panic in dsa.Verify

- go1.12.10 (released 2019/09/25) includes security fixes to the
  net/http package addressing the following CVE:
  CVE-2019-16276
  Refs boo#1141689.
  * boo#1152082 CVE-2019-16276
  * go#34540 net/http: invalid headers are normalized, allowing request smuggling

- go1.12.9 (released 2019/08/15) includes fixes to the linker and
  the os and math/big packages.
  Refs boo#1141689.
  * go#33557 cmd/link: stack depth check too shallow
  * go#33424 os.RemoveAll: openFdAt function without O_CLOEXEC and cause fd escape to child process
  * go#33040 cmd/link: missing section for relocation target
  * go#32940 math/big: arm64 assembly code for shlVU is incorrect
  * go#30401 doc: syscall: document Setrlimit behavior change on Go 1.12 on macOS

- go1.12.8 (released 2019/08/13) includes security fixes to the
  net/http and net/url packages addressing CVEs:
  CVE-2019-9512 CVE-2019-9514 CVE-2019-14809
  Refs boo#1141689.
  * bnc#1146111 VUL-0: CVE-2019-9512: go: HTTP/2: flood using PING frames results in unbounded memory growth
  * bnc#1146115 VUL-0: CVE-2019-9514: go: HTTP/2 implementation is vulnerable to a reset flood, potentially leading to a denial of service
  * bnc#1146123 VUL-0: CVE-2019-14809: go: malformed hosts in URLs leads to authorization bypass
  * go#33633 net/url: URL.Parse Multiple Parsing Issues
  * go#33631 net/http: Denial of Service vulnerabilities in the HTTP/2 implementation

- Set NO_BRP_AR in order to workaround issues when ar is used for
  a Go ELF file.

- go1.12.7 (released 2019/07/08) includes fixes to cgo, the compiler,
  and the linker.
  Refs boo#1141689.
  * go#32756 cmd/cgo: generates code with inappropriate array copy
  * go#32712 cmd/compile: wrong calculation result for bit operation
    that's inlined and has all constant shifts in rewrite rules
  * go#32697 debug/dwarf: cgo produces malformed DWARF data
  * go#32583 cmd/compile: `switch` statement on a custom `int32` type
    with negative values behaves differently in two consecutive calls

- Use gcc9 by default by updating define gcc_go_version 9 (was 8)
  * drop unneeded patch gcc8-go.patch

- adding Web Assembly stuff from misc/wasm to fix boo#1139210
- fixing some minor rpmlint warnings

- go1.12.6 (released 2019/06/11) includes fixes to the compiler, the linker,
  the go command, and the crypto/x509, net/http, and os packages.
  Refs boo#1141689.
  * go#32484 cmd/link: fix deferreturn detector
  * go#32367 net/http: make Transport ignore 408 timeout messages from server
  * go#32295 cmd/go: tests failing on linux-amd64-longtest
  * go#32282 crypto/x509: macos 10.14 SIGSEGV in crypto/x509._Cfunc_FetchPEMRoots
  * go#32261 syscall: Windows user32 function (SendInput) behaves incorrectly when called within golang environment
  * go#32168 cmd/go: accept -Wl,-R,path
  * go#32081 os: windows processes started with foreign token inherit the wrong environment [CVE-2019-11888]
  * go#32013 cmd/compile: sparse slices with struct items are not initialized
  * go#30526 cmd/go: MacOS binaries invalid for eventual Apple Notary