Technically flatpak and xdg-desktop-portal have a runtime dependency on
fuse3-utils. I was worried that adding it might cause problems with CI since fuse3
is not included in meta-oe.
Given that both packages also require fuse3 at buildtime it could be a good
idea to move fuse3 to avoid a meta-filesystems dependency for meta-oe
Signed-off-by: Markus Volk <f_l_k@t-online.de>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
its needed by fuse3 and right now its only needed by fuse3
in meta-openembedded layers, move it to meta-oe along with
fuse3
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Cc: Markus Volk <f_l_k@t-online.de>
Changes in 1.18.4
=================
Released: 2024-04-18
- Don't allow commandline arrays when the first commandline item starts with
whitespace or hyphen. (CVE-2024-32462)
- Do not store device access permission if it returned an error.
- Fix crash with config files without a default backend set.
Changes in 1.18.3
=================
Released: 2024-04-04
- Don't try to read D-Bus object properties of Request objects on construction.
- Fix various memory and file descriptor leaks.
- Minuscule optimization to the ScreenCast portal so that it stores restoration
data with a single D-Bus call, instead of two.
- Fix a crash in the OpenURI file when trying to open a non-existing file.
- Various smaller bug fixes.
Changes in 1.18.2
=================
Released: 2023-11-22
- Pass the token to the OpenURI portal and, when missing, an empty string.
- Fix various memory and file descriptor leaks in the Document portal.
- Make files and folders openend with the Document portal close properly. This
should fix cases where the Document portal prevented external devices from
unmounting, due to files inside them not getting closed after applications
stop using them.
- Implement FUSE getlk and setlk callbacks.This should enable using sqlite3
through the Document portal.
- Properly resolve fd symlinks before opening them with O_NOFOLLOW.
- Fix cases where the portal id is assumed to match the .desktop file name.
- Allow sending directories in the file transfer portal. This should make it
possible to, among other things, drag and drop folders and files simultaneously
from and to sandboxed applications.
- Fallback to a hardcoded check to xdg-desktop-portal-gtk in the absence of any
other portal or configuration file, as a last resort mechanism.
- Various smaller fixes to the build system.
Signed-off-by: Markus Volk <f_l_k@t-online.de>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
- remove included patches
- set path for fusermount3 to avoid requirement for fuse3-native. This is needed since:
https://github.com/flatpak/flatpak/commit/2cb17b4eb82ecedaa98b5b7f954cf3e52fa95682
Changes in 1.15.8
~~~~~~~~~~~~~~~~~
Security fixes:
* Don't allow an executable name to be misinterpreted as a command-line
option for bwrap(1). This prevents a sandbox escape where a malicious
or compromised app could ask xdg-desktop-portal to generate a .desktop
file with access to files outside the sandbox. (CVE-2024-32462)
Other bug fixes:
* Pass the -export-dynamic linker option as -Wl,-export-dynamic,
fixing build failures with clang 18 and lld 18 (#5760)
* Fix a double-free when installation is cancelled (#5763)
* Fix installed-tests failure with "FUSERMOUNT: unbound variable"
(#5751)
* Translation updates: pt_BR (#5762), tr (#5761)
Changes in 1.15.7
~~~~~~~~~~~~~~~~~
Released: 2024-03-27
Dependencies:
* The Meson build system is now required.
Compiling with Autotools is no longer possible.
* In distributions that compile Flatpak to use a separate bubblewrap (bwrap)
executable, version 0.9.0 is recommended. Several of the bug fixes listed
below will not be active if an older version is used.
* In distributions that compile Flatpak to use a separate xdg-dbus-proxy
executable, version 0.1.5 is recommended.
* If libmalcontent (parental controls) is enabled, it must be version 0.5.0
or later.
New features:
* Automatically remove obsolete driver versions and other autopruned refs
(#5632)
* `--socket=inherit-wayland-socket` (#5614)
* Automatically reload D-Bus session bus configuration after installing
or upgrading apps, to pick up any exported D-Bus services (#3342)
Bug fixes:
* Update included copy of bubblewrap to version 0.9.0:
* `--symlink` is now idempotent, meaning it succeeds if the
symlink already exists and already has the desired target
(#2387, #3477, #5255)
* Report a better error message if `mount(2)` fails with `ENOSPC`
* Fix a double-close on error reading from `--args`, `--seccomp` or
`--add-seccomp-fd` argument
* Improve memory allocation behaviour
* Silence various compiler warnings
* Update included copy of bubblewrap to version 0.1.5:
* Fix handling of long object paths
* Don't parse `<developer><name/></developer>` as the application name
(#5700)
* Don't refuse to start apps when there is no D-Bus system bus available
(#5076)
* Don't try to repeat migration of apps whose data was migrated to a new
name and then deleted (#5668)
* Improve handling of mixed locales on systems with systemd-localed (#5497)
* Improve display of ellipsized columns in wide terminals (#5722)
* Make `flatpak info -e` look for extensions in all installations (#5670)
* Fix warnings from newer GLib versions (#5660, #5737)
* Always set the `container` environment variable (#5610)
* Always let the app inherit redirected file descriptors (#5626)
* In `flatpak ps`, add xdg-desktop-portal-gnome to the list of backends
we'll use to learn which apps are running in the background (#5729)
* Don't use `WAYLAND_SOCKET` unless given `--socket=inherit-wayland-socket`
(#5614)
* Use `fusermount3` if compiled with FUSE 3, overridable with
`-Dsystem_fusermount` compile-time option (#5104)
* Avoid leaking a temporary variable from /etc/profile.d/flatpak.sh into
the shell environment (#5574)
* Improve async-signal safety (#5687)
* Fix various memory leaks (#5683, #5690, #5691)
* Avoid undefined behaviour of signed left-shift when storing object IDs
in a hash table (#5738)
* Detect the correct gtk-doc when cross-compiling (#5650)
* Detect the correct wayland-scanner when cross-compiling (#5596)
* Documentation improvements (#5659, #5677, #5682, #5664, #5719)
* Skip more tests when FUSE isn't available (#5611)
* Translation updates (#5602, #5707)
Signed-off-by: Markus Volk <f_l_k@t-online.de>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
License-Update: Copyright Years updated
Add missing MIT license,see COPYING file
Switch to cmake build system as thats the new and only
build system supported.
Use gtk4 when selecting gtk knob, it can support gtk3 as well
however, its not added as knob, if needed someone should send
a patch
Signed-off-by: Khem Raj <raj.khem@gmail.com>
In particular, make it build with gcc 14.
License-Update: Remove "All rights reserved" from copyright line
Changelog:
2939632 xkbutils 1.0.6
e2ee9c2 Change sprintf calls to use snprintf instead
aa03a3b Remove uSetErrorFile()
5f875c8 xkbwatch: Fix -Wincompatible-pointer-types warning (Issue #2)
6dbcbb5 Remove "All rights reserved" from Oracle copyright notices
56c99e3 gitlab CI: stop requiring Signed-off-by in commits
Signed-off-by: Trevor Gamblin <tgamblin@baylibre.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
In particular, make it build with gcc 14.
Changelog:
d20bea4 xlsfonts 1.0.8
71d8e89 Use reallocarray() if available
2b9d8f5 Fix -Wincompatible-pointer-types warning from gcc (issue #1)
e53bf74 gitlab CI: stop requiring Signed-off-by in commits
314d802 man page: emphasize this program is for querying an X server
Signed-off-by: Trevor Gamblin <tgamblin@baylibre.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
The next version of ostree v2024.6 will be available soon
and optional will require composefs-native.
Signed-off-by: Jose Quaresma <jose.quaresma@foundries.io>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
- This is required to add the native target support.
- Drop upstream merged patch:
0001-musl-basename-use-portable-implementation-for-basena.patch
https://github.com/containers/composefs/pull/273
Changelog:
$ git --no-pager log --oneline HEAD...v1.0.3
ecef20c (HEAD -> main, origin/main, origin/HEAD) Merge pull request #276 from wahtari/copy_file_range
e78c7a4 Merge pull request #277 from alexlarsson/fix-newline-error
1d82bc1 mkcomposefs: Drop newline from error string
3e38d73 Added copy_file_range for faster file copy.
85a693d Merge pull request #273 from fboudra/musl-basename
31afa13 musl: basename: use portable implementation for basename API
4776580 Merge pull request #275 from eriksjolund/fix-spelling-in-error-message
4a68a42 Merge pull request #269 from wahtari/threading-for-mkcomposefs
7266546 fuse: fix spelling in error message
b49499b added threads in mkcomposefs for digest calculation and file copy
d144db0 refactored lcfs_load_node_from_file to enable multi-threading in mkcomposefs
af69922 Merge pull request #266 from eriksjolund/erofs-add-missing-free
1eecf38 Merge pull request #267 from eriksjolund/mkcomposefs-add-missing-free
a880713 mkcomposefs: Add missing free()
456d618 erofs: Add missing free() and lcfs_node_unref()
1179638 Merge pull request #265 from eriksjolund/handle-empty-basedir-option
301b78f Merge pull request #268 from eriksjolund/set-errno-for-unknown-format
09ca740 writer: Set errno for unknown format
a96f786 mountcomposefs: Handle empty basedir option
fc9a526 Merge pull request #260 from eriksjolund/handle-error-from-build-node
9b85011 Merge pull request #262 from eriksjolund/add-error-check-and-rearrange
2cb505b Merge pull request #263 from eriksjolund/writer-set-errno
9b417be writer: Set errno
d5ffbeb Merge pull request #261 from eriksjolund/add-missing-node-unref
9c393a4 Merge pull request #259 from eriksjolund/handle-error-from-node-set-content
396a3b8 mkcomposefs: Handle NULL from lcfs_node_new()
238a94a lib: Set errno in lcfs_node_new()
c1181fa erofs: Handle error from lcfs_build_node_from_image()
49288d5 erofs, mkcomposefs: Handle error from lcfs_node_set_content()
4e0b147 lib: Add missing lcfs_node_unref()
9bc76dd Merge pull request #258 from eriksjolund/fix-missing-options
d59dd9b mountcomposefs, mkcomposefs: Add missing options to usage information
418f4f7 Merge pull request #255 from cgwalters/mount-minor-tweaks
72c602a Merge pull request #256 from eriksjolund/fix-error-message
770cc36 fuse: Fix filepath argument in error message
465c079 man/mount.composefs: Fix a typo and two markdown lint warnings
8565a8b Merge pull request #254 from edbaunton/edbaunton/man-mkcomposefs-inline
b99a978 man mkcomposefs: detail inlining logic
47f6949 Merge pull request #253 from rborn-tx/support-older-linux-headers
453eaef ci: Add build test for Ubuntu Focal
384f306 mount: Allow building when macro LOOP_CONFIGURE is not available
f163eba mount: Allow building when macro MOUNT_ATTR_IDMAP is not available
80e99bd Merge pull request #250 from cgwalters/doc-verification
f6e8510 README.md: Fix markdownlint warnings
3b7e567 README.md: Drop removed `signed` mount option
091b51f Merge pull request #247 from cgwalters/readlinkat-overflow
232336d Merge pull request #248 from cgwalters/more-analyzer
a6904d6 writer: Close mmap leak
e9632ca Merge pull request #246 from eriksjolund/handle-null-from-strndup
6b2192b writer: Fix (almost certainly unreachable) overflow
bdc2c4c mkcomposefs: Handle NULL from strndup()
e63786d Merge pull request #245 from giuseppe/run-distcheck-ci
5d3fe92 tests: do not hardcode number of threads
d6e55bf .github: run make distcheck as part of the CI
f6bbf54 Merge pull request #244 from alexlarsson/mount-api
4e5883b mount.composefs: Add tryverity option
15bdcd6 lib: Add TRY_VERITY mount option
f884f57 mount: Use the new lowerdir+ and datadir+ options
bd6ce95 Merge pull request #243 from giuseppe/add-fuzzing
171eae0 mkcompose: fix crash if no target for hardlink
7b1518f mkcomposefs: tree_from_dump does not exit(2) on errors
a8ac3d5 mkcomposefs: reject dump without root node
28a9d6b tests: add fuzzing tests for mkcomposefs
932f748 tools: add fuzzing entrypoint for mkcomposefs
Signed-off-by: Jose Quaresma <jose.quaresma@foundries.io>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
- add recipe DESCRIPTION
- remove the PV as it can be taken from the recipe name
- specify some EXTRA_OECONF configuration to avoid host contamination
Signed-off-by: Jose Quaresma <jose.quaresma@foundries.io>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
We can make this more widely available as we don't
depend anymore on fuse3.
Signed-off-by: Jose Quaresma <jose.quaresma@foundries.io>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
The patch 0001-Support-OpenSSL-1.1.patch enabled building
uw-imap against OpenSSL 1.1.0 or later.
However, TLSv1_client_method() and TLSv1_server_method()
restricts uw-imap to TLSv1.0.
These APIs, along with explicitly versioned APIs like
TLSv1_1_*_method() and TLSv1_2_*_method() are deprecated
in OpenSSL 1.1.0 or later. The replacements are unversioned
API functions: TLS_client_method() and TLS_server_method()
which support TLS version autonegotiation.
This allows the PHP IMAP extension to work with IMAP servers
that enforce TLSv1.2 or higher.
Fixes: https://bugs.php.net/bug.php?id=76928
Signed-off-by: Zoltán Böszörményi <zboszor@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
It's a bad idea to add dev dependencies to main package.
It's pulling build dependencies including toolchain items.
The dependencies "were needed" because main package contains
packageconfig file.
This can be fixed by correct packaging.
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Apparently, npm has changed its request accept header, so that cache
lookup misses. This causes an ENOTCACHED error when doing the offline
install in do_compile() from npm.bbclass.
Fix it by updating the fake cache entry to match the newest behaviour
from npm.
Note that npm doesn't agree with itself, as it still uses the previous
header value when doing `npm cache add <pkg>`, but the new value when
doing `npm install <pkg>`.
Bug submitted upstream:
https://github.com/npm/cli/issues/7465
Signed-off-by: Martin Hundebøll <martin@geanix.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
plugin_uefi_capsule_splash does not provide "enabled" or "disabled"
options but only basic bool "true" and "false". Fixes do_configure()
failure with
PACKAGECONFIG:append = " plugin_tpm plugin_uefi_pk plugin_uefi_capsule ":
| ../fwupd-1.9.18/meson.build:1:0: ERROR: Value disabled is not boolean (true or false).
Signed-off-by: Mikko Rapeli <mikko.rapeli@linaro.org>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
==========
- build: Add -mno-sse to fix i386 build
- build: Fix build failure on RHEL 7
- mcount: Fix a compiler warning on PAGE_SIZE
- fix: #1858 by changing the wrong logic in update_dbg_info
- ci: Fix ci warning on GitHub Acitons
- slide: Add tensorflow and keras tracing example
- python: Fix GC isn't working correctly.
- replay: Support a new argument format for octal values
- build: Fix compiler warnings
- Fix Python SyntaxWarning on invalid escape sequence in the tests scripts
- utils: Lower the debug level after dwfl_module_getdwarf
- wrap: Do not print "dlopen is called for '(null)'"
- Support standard deviation(STDDEV) in report output
- dwarf: Close file descriptors in setup_dwarf_info()
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
===========
-Updated bundled fmt to version 10.2.1.
-Mapped Diagnostic Context (MDC) support
-MDC is a simple map of key->string values stored in thread local storage whose content will be printed by the loggers.
-spdlog::mdc::put("mdc_key_1", "mdc_value_1");
-spdlog::info("Hello, {}", "World!"); // => [2024-04-26 02:08:05.040] [info] [mdc_key_1:mdc_value_1] Hello, World!
-Add milliseconds support to stopwatch
-Add std::string_view overloads for logger accessor
-Make async_logger::flush() synchronous - wait for the flush operation to complete before returning
-Use _stat() on Windows to be more UTF8 friendly
-Add details about how compile time macros work
-Fix typos found by codespell
-Expose the flusher thread object to user in order to allow setting of thread name and thread affinity when needed
-Fix the problem of compilation failure under MINGW
-Add missing include in circular_q.h
-Don't remove previous defaullt logger from registry in set_default_logger.
-Remove the legacy AnalyzeTemporaryDtors option from .clang-tidy.
-Updated INSTALL.md has to better reflect compiler info
-Fixed README.md example
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
License-Update: Update the LICENSE file from README.md to LICENSE
Changelog:
==========
- Floating-point conversion between half, single and double-precision for
subnormal values and NaN payloads is completed. These are relatively obscure
unused parts of IEEE754 floats.
- QCBOREncode_GetErrorState() can now be called after QCBOREncode_Finish() and
it will always return the correct error.
- User-defined error codes are now supported. The error state can be set with
the new function QCBORDecode_SetError().
- Fixed a rare condition where QCBORDecode_ VGetNext() would not set the
Item.uDataType to QCBOR_TYPE_NONE on error.
- Function naming changed to better avoid name collision. This includes internal
functions. This is to compensate for C not having name spaces like C++.
- Documentation correctly describes mixing of traversal cursor used by GetNext
with fetch by label in entered maps
- Some increase in test coverage
- A bunch of "TODO:" items were addressed. Most result in no change to the code,
just changes to documentation and test coverage.
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
============
-Now default the DSOFLAGS value to LDFLAGS in the configure script
-Now install the man page as "mxml4" to allow parallel installation of Mini-XML 4.x and 3.x
-Added MXML_ALLOC_SIZE define to control the allocation increment for attributes and indices
-Fixed mxmlSetDeclarationf implementation
-Fixed an issue with GNU make and parallel builds
-Fixed missing "docdir" definition in makefile
-Fixed missing CPPFLAGS, OPTIM, and WARNINGS in CFLAGS in makefile.
-Fixed configure script issues.
-Now require C99 support
-Now install as "libmxml4" to support installing both Mini-XML 3.x and 4.x at the same time (use --disable-libmxml4-prefix configure option to disable)
-Added mxmlLoadIO and mxmlSaveIO functions to load and save XML via callbacks
-Added new MXML_TYPE_CDATA, MXML_TYPE_COMMENT, MXML_TYPE_DECLARATION, and MXML_TYPE_DIRECTIVE node types
-Added mxmlLoadFilename and mxmlSaveFilename functions
-Added AFL fuzzing support
-Added mxmlOptions APIs to replace the long list of callbacks and options for each of the load and save functions
-Added string copy/free callbacks to support alternate memory management of strings.
-Renamed mxml_type_t enumerations to MXML_TYPE_xxx
-Updated APIs to use bool type instead of an int representing a boolean value.
-Updated the SAX callback to return a bool value to control processing
-Updated the load and save callbacks to include a context pointer
-Fixed some warnings
-Fixed real number support in non-English locales
-Updated the autoconf config.guess and config.sub scripts to support cross compilation for newer platforms
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
License-Update: Copyright year updated to 2024.
CVE-2023-33461.patch
removed since it's included in 4.2
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Current version 3.22 is not affected by the issue.
Affected versions: Up to (excl.) 3.2.1
Signed-off-by: Ninette Adhikari <ninette@thehoodiefirm.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
For now, the known non-reproducible packages list is stored inside the
autobuilder config.json file. This is not ideal. Let's move this list
into each layers of meta-openembedded.
These lists can be used with, in local.conf:
include conf/include/non-repro-meta-oe.inc
OEQA_REPRODUCIBLE_EXCLUDED_PACKAGES = "${KNOWN_NON_REPRO_META_OE}"
Signed-off-by: Yoann Congal <yoann.congal@smile.fr>
Acked-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
* make it possible to configure build without boost
* build tests only when requested
* disable build of IBM proprietary DB2 which does not have recipe
(this creates some cmake warnings if enabled without dependency)
* EXTRA_OECONF is empty with cmake build
* remove SOCI_LIBDIR which was removed in upgrade to v4.0.2
* use WITH_* instedad of SOCI_* as SOCI defines still search
for dependencies unnecessarily and WITH define automatically
enables SOCI define, too
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Markus Volk
Khem Raj
Alexandre Truong
Trevor Gamblin
Gianfranco Costamagna
Jose Quaresma
Zoltán Böszörményi
Soumya Sambu
Peter Marko
Martin Jansa
Martin Hundebøll
Mikko Rapeli
Etienne Cordonnier
Wang Mingyu
magicWenli
Ross Burton
Ninette Adhikari
Yoann Congal
Archana Polampalli
Stanislav Angelovic