changelog:
===============================================================================
Fixed wheel pack duplicating the WHEEL contents when the build number has
changed (#415)
Fixed parsing of file names containing commas in RECORD
Signed-off-by: Xu Huan <xuhuan.fnst@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Trevor Gamblin <trevor.gamblin@windriver.com>
changelog:
=============================================================================
Fix implementation of schedule-pop Lua script so it works with Redis cluster.
Ensure Django connections are closed before and after (previously they were
only closed after) task execution with db_task() and db_periodic_task().
Allow additional lock-names to be specified when flushing locks.
Signed-off-by: Xu Huan <xuhuan.fnst@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Trevor Gamblin <trevor.gamblin@windriver.com>
changelog:
===============================================================================
fixed @expose issue on static method/classmethod due to API change in Python 3.10
switched from travis to using github actions for CI builds and tests
Python 3.10 is now included in the unit test runs
Signed-off-by: Xu Huan <xuhuan.fnst@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Trevor Gamblin <trevor.gamblin@windriver.com>
Branch master has been removed from libqb upstream git repo. Use branch
main instead.
Signed-off-by: Kai Kang <kai.kang@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
drop openssl and gmp from DEPENDS, covered in PACKAGECONFIG
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Not everyone wants this to be installed by default. Enable to remove
cureve25519 is someone wants to.
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
==========
*) SECURITY: CVE-2021-44790: Possible buffer overflow when parsing
multipart content in mod_lua of Apache HTTP Server 2.4.51 and
earlier (cve.mitre.org)
A carefully crafted request body can cause a buffer overflow in
the mod_lua multipart parser (r:parsebody() called from Lua
scripts).
The Apache httpd team is not aware of an exploit for the
vulnerabilty though it might be possible to craft one.
This issue affects Apache HTTP Server 2.4.51 and earlier.
*) SECURITY: CVE-2021-44224: Possible NULL dereference or SSRF in
forward proxy configurations in Apache HTTP Server 2.4.51 and
earlier (cve.mitre.org)
A crafted URI sent to httpd configured as a forward proxy
(ProxyRequests on) can cause a crash (NULL pointer dereference)
or, for configurations mixing forward and reverse proxy
declarations, can allow for requests to be directed to a
declared Unix Domain Socket endpoint (Server Side Request
Forgery).
This issue affects Apache HTTP Server 2.4.7 up to 2.4.51
(included).
*) http: Enforce that fully qualified uri-paths not to be forward-proxied
have an http(s) scheme, and that the ones to be forward proxied have a
hostname, per HTTP specifications.
*) OpenSSL autoconf detection improvement: pick up openssl.pc in the
specified openssl path.
*) mod_proxy_connect, mod_proxy: Do not change the status code after we
already sent it to the client.
*) mod_http: Correctly sent a 100 Continue status code when sending an interim
response as result of an Expect: 100-Continue in the request and not the
current status code of the request. PR 65725
*) mod_dav: Some DAV extensions, like CalDAV, specify both document
elements and property elements that need to be taken into account
when generating a property. The document element and property element
are made available in the dav_liveprop_elem structure by calling
dav_get_liveprop_element().
*) mod_dav: Add utility functions dav_validate_root_ns(),
dav_find_child_ns(), dav_find_next_ns(), dav_find_attr_ns() and
dav_find_attr() so that other modules get to play too.
*) mpm_event: Restart stopping of idle children after a load peak. PR 65626.
*) mod_http2: fixes 2 regressions in server limit handling.
1. When reaching server limits, such as MaxRequestsPerChild, the
HTTP/2 connection send a GOAWAY frame much too early on new
connections, leading to invalid protocol state and a client
failing the request. See PR65731.
The module now initializes the HTTP/2 protocol correctly and
allows the client to submit one request before the shutdown
via a GOAWAY frame is being announced.
2. A regression in v1.15.24 was fixed that could lead to httpd
child processes not being terminated on a graceful reload or
when reaching MaxConnectionsPerChild. When unprocessed h2
requests were queued at the time, these could stall.
See <https://github.com/icing/mod_h2/issues/212>.
*) mod_ssl: Add build support for OpenSSL v3.
*) mod_proxy_connect: Honor the smallest of the backend or client timeout
while tunneling.
*) mod_proxy: SetEnv proxy-nohalfclose (or alike) allows to disable TCP
half-close forwarding when tunneling protocols.
*) core: Be safe with ap_lingering_close() called with a socket NULL-ed by
a third-party module. PR 65627.
*) mod_md: Fix memory leak in case of failures to load the private key.
PR 65620
*) mod_md: adding v2.4.8 with the following changes
- Added support for ACME External Account Binding (EAB).
Use the new directive `MDExternalAccountBinding` to provide the
server with the value for key identifier and hmac as provided by
your CA.
While working on some servers, EAB handling is not uniform
across CAs. First tests with a Sectigo Certificate Manager in
demo mode are successful. But ZeroSSL, for example, seems to
regard EAB values as a one-time-use-only thing, which makes them
fail if you create a seconde account or retry the creation of the
first account with the same EAB.
- The directive 'MDCertificateAuthority' now checks if its parameter
is a http/https url or one of a set of known names. Those are
'LetsEncrypt', 'LetsEncrypt-Test', 'Buypass' and 'Buypass-Test'
for now and they are not case-sensitive.
The default of LetsEncrypt is unchanged.
- `MDContactEmail` can now be specified inside a `<MDomain dnsname>`
section.
- Treating 401 HTTP status codes for orders like 403, since some ACME
servers seem to prefer that for accessing oders from other accounts.
- When retrieving certificate chains, try to read the repsonse even
if the HTTP Content-Type is unrecognized.
- Fixed a bug that reset the error counter of a certificate renewal
and prevented the increasing delays in further attempts.
- Fixed the renewal process giving up every time on an already existing
order with some invalid domains. Now, if such are seen in a previous
order, a new order is created for a clean start over again.
See <https://github.com/icing/mod_md/issues/268>
- Fixed a mixup in md-status handler when static certificate files
and renewal was configured at the same time.
*) mod_md: values for External Account Binding (EAB) can
now also be configured to be read from a separate JSON
file. This allows to keep server configuration permissions
world readable without exposing secrets.
*) mod_proxy_uwsgi: Remove duplicate slashes at the beginning of PATH_INFO.
PR 65616.
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
=========
* This started out as a 1.9.0 release but then I got fed up with the abundance
of directory listers (8 in total, 2 each for each output mode).
Nothing is terribly well tested since there are a lot of changes and I would
like to get this out the door finally, please report breakage. This reduced
so much code that all the below additions only resulted in a code base that
is only 54 lines larger than 1.8.0.
* Rolled all the directory listers into 2 functions that call output specific
functions (removes one TODO).
*-R option now recursively calls the emit_tree() function rather than using
system() to re-call tree. Also removes a TODO.
* Adds --info to print information about files/directories from information
found in .info files (removes a maybe do) In HTML output, comments show as
mouse over tooltips, which I imagine will be the most useful use of this "feature".
* Output un-indented JSON on file descriptor 3 ("stddata") automatically if
file descriptor 3 is present (currently Linux only.) Maybe switch to BSON.
* Always HTML escape filenames in HTML output even when -C is used.
* Return a non-zero exit status if there is a failure to open any directory.
* Added --gitignore option to filter out files specified by .gitignore files.
(also reads $GIT_DIR/info/exclude if present.) To facilitate gitignore, adds
support for ** on pattern matching to allow /**/ to match a single /.
This is not well tested and kind of hacked together, so may not work correctly.
* Now also supports multiple -I and -P instances.
* Now prints meta data for the top level directory as well.
* Split spaghetti code in main into individual functions.
* Properly sort --fromfile input
* Make tree colorization use reset (rs code in dir_colors,) not normal color
when resetting attributes
* Honor -n (no color) even if the CLICOLOR_FORCE environment variable is set
* Fix --sort option to not require =
* Defer sorting for --du until the entire sub-directory tree has been processed.
* Optimized makefile, HP/UX support (Osipov, Michael). Note that this changes
the prefix default to /usr/local, which is becoming required for many systems now.
* Renamed (the by now very obsolete) doc/tree.1.fr to doc/tree.fr.1
* Fix JSON string escaping such that it is not using the HTML escaping
* Add --filesfirst option (John A. Fedoruk). Cleaned up sorting code to make
--dirsfirst and --filesfirst top level meta-sorts.
* "arial" not "ariel" (Mark), HTML style-sheet cleaned up in any event.
* Deprecate using local -DLINUX / -DCYGWIN and use the OS provided __linux__ or
__CYGWIN__
* XML/HTML/JSON output needs to be mutually exclusive, last command line switch
wins.
* Make sure we use xmalloc instead of malloc in a number of places
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
=========
Packaging changes:
-----------------
Pre-built documentation is no longer distributed with the source distribution.
The AppImage and Windows binary distributions still contain embedded
documentation, and a separate doc distribution file is available from the qpdf
release site. Documentation is now available at https://qpdf.readthedocs.io
for every major/minor version starting with version 10.5. Please see Packaging
Documentation for details on how packagers should handle documentation.
The documentation sources have been switched from docbook to reStructuredText
processed with Sphinx. This will break previous documentation links.
A redirect is in place on the main website. A top-to-bottom review of the
documentation is planned for an upcoming release.
Library Enhancements:
--------------------
Since qpdf version 8, using object accessor methods on an instance of
QPDFObjectHandle may create warnings if the object is not of the expected type.
These warnings now have an error code of qpdf_e_object instead of
qpdf_e_damaged_pdf. Also, comments have been added to QPDFObjectHandle.hh to
explain in more detail what the behavior is. See Object Accessor Methods for
a more in-depth discussion.
Add Pl_Buffer::getMallocBuffer() to initialize a buffer allocated with malloc()
for better cross-language interoperability.
C API Enhancements:
-------------------
Many thanks to M. Holger whose contributions have heavily influenced these C
API enhancements. His several suggestions, pull requests, questions, and
critical reading of documentation and comments have resulted in significant
usability improvements to the C API.
Overhaul error handling for the object handle functions C API. Some rare error
conditions that would previously have caused a crash are now trapped and
reported, and the functions that generate them return fallback values.
See comments in the ERROR HANDLING section of include/qpdf/qpdf-c.h for details.
In particular, exceptions thrown by the underlying C++ code when calling object
accessors are caught and converted into errors. The errors can be checked by
calling qpdf_has_error. Use qpdf_silence_errors to prevent the error from being
written to stderr.
Add qpdf_get_last_string_length to the C API to get the length of the last
string that was returned. This is needed to handle strings that contain embedded
null characters.
Add qpdf_oh_is_initialized and qpdf_oh_new_uninitialized to the C API to make it
possible to work with uninitialized objects.
Add qpdf_oh_new_object to the C API. This allows you to clone an object handle.
Add qpdf_get_object_by_id, qpdf_make_indirect_object, and qpdf_replace_object,
exposing the corresponding methods in QPDF and QPDFObjectHandle.
Add several functions for working with pages. See PAGE FUNCTIONS in
include/qpdf/qpdf-c.h for details.
Add several functions for working with streams. See STREAM FUNCTIONS in
include/qpdf/qpdf-c.h for details.
Add qpdf_oh_get_type_code and qpdf_oh_get_type_name.
Add qpdf_oh_get_binary_string_value and qpdf_oh_new_binary_string for making it
easier to deal with strings that contain embedded null characters.
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
If you add -dev packages to an image, as in an
sdk, ${PN}-dev is pulled in, which depends on ${PN}
which no longer exists in the new package layout.
Error:
Problem: conflicting requests
- nothing provides cdrkit = 1.1.11-r0.1 needed by cdrkit-dev-1.1.11-r0.1.corei7_64
(try to add '--skip-broken' to skip uninstallable packages)
Signed-off-by: Jeremy A. Puhlman <jpuhlman@mvista.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
The previous commit was using a PACKAGECONFIG to enable or disable
the sending of anonymous data to Google Analytics.
This was giving QA issues.
Now the variable 'NETDATA_ANONYMOUS' is used to enable or disable
the opt-out.
Signed-off-by: Jan Vermaete <jan.vermaete@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
dvbscan is fetching sources during configure, disable this for now,
if this feature is needed then adding it to SRC_URI would be needed
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Fixes:
| ../doltlibtool: line 19: /home/superandy/tmp/oe-core-glibc/work/cortexa72-mortsgna-linux/vlc/3.0.12-r0/build/compat/../aarch64-mortsgna-linux-libtool: No such file or directory
Signed-off-by: Andreas Müller <schnitzeltony@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Used for access cups and control printers from python.
Placed in meta-oe together with the rest of printing support, as
tools like system-config-printer depend on pycups.
Signed-off-by: Claus Stovgaard <clst@ambu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
According to wiki more than 1300 printer drivers.
Specifically the CUPS dye-sublimation backend, used in industrial and
medical is a nice fit when using Yocto for embedded solutions targeting
this segment.
As the gutenprint code generate a tool for string management, the native
recipe is designed to just create the output from this tool (a header
file). So the cross compatible version is depending on native version.
Thought about using BBCLASSEXTEND instead of separate files. Though as
the purpose of the two recipes is different (one for generating header
file, the other for generating the actual lib) and different
dependencies I decided to keep it as two recipes.
Signed-off-by: Claus Stovgaard <clst@ambu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Yi Zhao
wangmy
zhengruoqin
Xu Huan
Konrad Weihmann
Martin Jansa
Khem Raj
Kai Kang
Armin Kuster
Sakib Sajal
Jeremy A. Puhlman
Jan Vermaete
Changqing Li
Oleksandr Kravchuk
Andreas Müller
Mingli Yu
Claus Stovgaard