inheriting license class which brings in
AVAILABLE_LICENSES into do_configure task checksums class since it wants to
enable thin-provisioning-tools if distro allows GPL-3 automatically, but this
brings issues when other layers which have additional licenses are
provided which ends up in signature mismatches so leave that setting to end-user and keep it disabled by
default with a comment in recipes stating that if needed then the user should enable it via
config metadata or bbappends.
Signed-off-by: Khem Raj <raj.khem@gmail.com>
It has hard dependency on clutter-gtk-1.0 which needs opengl
Fixes
clutter-gtk-1.0 was skipped: missing required distro feature 'opengl' (not in DISTRO_FEATURES)
ERROR: Required build target 'meta-world-pkgdata' has no buildable providers.
Missing or unbuildable dependency chain was: ['meta-world-pkgdata', 'libchamplain', 'clutter-gtk-1.0']
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Cc: Andreas Müller <schnitzeltony@gmail.com>
Upgrade to release 0.15.1:
- Hotfix for errors while closing event loops while replacing
them.
- Add support for Python 3.9
- Abandon support for Python 3.5. If you still require support for
Python 3.5, please use pytest-asyncio v0.14 or earlier.
- Set unused_tcp_port_factory fixture scope to 'session'.
- Properly close event loops when replacing them.
Signed-off-by: Leon Anavi <leon.anavi@konsulko.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Trevor Gamblin <trevor.gamblin@windriver.com>
Upgrade to release 1.4.11:
orm:
- Fixed regression where recent changes to support Python
dataclasses had the inadvertent effect that an ORM mapped class
could not successfully override the __new__() method.
engine:
- Fixed critical regression where the connection pool "init" phase
no longer occurred within mutexed isolation, allowing other
threads to proceed with the dialect uninitialized, which could
then impact the compilation of SQL statements.
Signed-off-by: Leon Anavi <leon.anavi@konsulko.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Trevor Gamblin <trevor.gamblin@windriver.com>
Upgrade to release 1.12.3:
- Help string support for fish
- Add option to use tempfiles for IPC
- Fix multiple command registration for non-bash shells
- Register auto completion for an arbitrary name using a given
external script
- Skip completions from active subprocess completer
- Fix warnings regarding invalid escape sequences
Signed-off-by: Leon Anavi <leon.anavi@konsulko.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Trevor Gamblin <trevor.gamblin@windriver.com>
Some targets might be interested in limiting how big
zram can grow. If the variable is set in /etc/default/zram file,
configure it in mem_limit sysfs attribute.
Signed-off-by: Sinan Kaya <okaya@kernel.org>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
The gvfs-udisks2-volume-monitor requires gsettings-desktop-schemas.
Fixes:
gvfs-udisks2-vo[1780]: Settings schema 'org.gnome.desktop.lockdown' is not installed
kernel: show_signal: 26 callbacks suppressed
kernel: traps: gvfs-udisks2-vo[1780] trap int3 ip:7f856be349c7 sp:7ffe34561e60 error:0 in libglib-2.0.so.0.6600.7[7f856bdf8000+88000]
systemd[1637]: gvfs-udisks2-volume-monitor.service: Main process exited, code=killed, status=5/TRAP
systemd[1637]: gvfs-udisks2-volume-monitor.service: Failed with result 'signal'.
systemd[1637]: Failed to start Virtual filesystem service - disk device monitor.
Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
changelog
* 79b1a99 Fixed comment.
* b2ec203 Fixed carry propagation bug in m64 impl for P-256.
* dda1f8a Harmonized behaviour when point length is invalid.
* acc70b1 Typo fix in comment.
* 946f5ba Added discard of unread appdata on explicit close.
* 252dba9 Fixed carry propagation bug in P-256 'm62' implementation (found by Auke Zeilstra; consequences unclear, possibly some invalid curve attacks in static ECDH contexts).
* 15b3af7 Typo fix in comment.
* 69807a3 Fixed typo in comment.
* fb4296c Fixed some errors in comments.
* 4b60464 Fixed small display bug in debug tool.
* b715b43 Fixed buffer overflow in private key decoding (wrong buffer length used in size check).
* 2893441 Fixed a spurious warning on some compilers.
* e4edfb8 Added support for getrandom()/getentropy(), and a fix for the RDRAND bug on AMD CPU (family 22).
* 924921d Fixed mishandling of UTF-8 codepoints in the FDF0..FEDF range (these were unduly rejected when extracting names from certificates, thereby preventing use of the extra presentation forms of Arabic).
* 9721b3e Fixed efficiency pre-test on RSA prime generation (no security issue, but RSA key generation with pubexp 5, 7 or 11 may be slightly more efficient).
* ecdf897 Normalize use of BR_DOXYGEN_IGNORE.
* c1bb535 Small workaround for CompCert compatibility.
* 87a796d Fixed computing of intermediate buffer size for maximum-size RSA keys.
* 6433cc2 Added detection for MIPS64 with n32 ABI.
* 001d094 Some small performance improvements on 32-bit architectures.
* 08eb078 Fixed fd leak in test code.
* d5acc4f Made m64 implementations of elliptic curves the default (when available).
* f0ddbc3 Added new 64-bit implementations of Curve25519 and P-256.
* b2a08e9 Made ec_c25519_m62 implementation the default on supported architectures.
* 52a69fe Fixed endianness in Curve25519 implementation (no consequence on security). Also added new Curve25519 code for 64-bit platforms.
* fd98320 Cosmetic fix (value did not conform to its announced bit length, but this did not have bad consequences since br_i31_decode_mod() is lenient on that).
* 431629d Changed speed benchmark for i31 to a 521-bit modulus.
* c6ffcd2 Fixed warning on GCC 4.6 to 4.9 (macro redefinition).
* 420f50c Added stand-alone RSA/PSS implementation.
* 966078b Added SHAKE implementation.
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Upgrade to release 2.3.2:
- Add hook (Huey.build_error_result) for customizing the error
result metadata.
- Avoid crashing if another module already modified/set the
multiprocessing start method.
Signed-off-by: Leon Anavi <leon.anavi@konsulko.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Trevor Gamblin <trevor.gamblin@windriver.com>
2.2.x is LTS, so upgrade to latest release 2.2.20.
This upgrade fixes several CVEs such as CVE-2021-3281.
Also, CVE-2021-28658.patch is dropped as it's already in 2.2.20.
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Trevor Gamblin <trevor.gamblin@windriver.com>
Upgrade to latest stable version.
The 1.10 branch is not maitained any more, it stops update in 2019.
The 1.11 branch has fix for CVE-2020-26117, which is a high risk CVE.
https://nvd.nist.gov/vuln/detail/CVE-2020-26117
Some changes in this new version are as below.
1) 'bash' is added to RDEPENDS as /usr/libexec/vncsession-start requires it.
2) DEPENDS on libpam and requires 'pam' distro feature.
This is because upstream has made 'pam' mandatory in the following commit.
"""
commit d80817f101d1b3f1a9b1c5ec268f28fffa2d75f9
Author: Pierre Ossman <ossman@cendio.se>
Date: Wed Jul 11 15:49:46 2018 +0200
Make PAM mandatory
It is present on all UNIX systems anyway, so let's simplify things.
We will need it for more proper session startup anyway.
"""
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
License-Update: License updated (year updated)
Fix some security issues such as CVE-2021-21702 and remove two
cve patches which already included in the new version.
Signed-off-by: Mingli Yu <mingli.yu@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2G is too much for qemu-mips and perhaps also for real mips devices
as we use qemu-usermode during build to run host pieces like mksnapshot
they fail, reducing the allocation range helps
Fixes
| LD_LIBRARY_PATH=/mnt/b/yoe/master/build/tmp/work/mips32r2-yoe-linux/nodejs/14.16.1-r0/node-v14.16.1/out/Release/lib.host:/mnt/b/yoe/master/build/tmp/work/mips32r2-yoe-linux/nodejs/14.16.1-r0/node-v14.16.1
/out/Release/lib.target:$LD_LIBRARY_PATH; export LD_LIBRARY_PATH; cd ../tools/v8_gypfiles; mkdir -p /mnt/b/yoe/master/build/tmp/work/mips32r2-yoe-linux/nodejs/14.16.1-r0/node-v14.16.1/out/Release/obj.target/v
8_snapshot/geni; "/mnt/b/yoe/master/build/tmp/work/mips32r2-yoe-linux/nodejs/14.16.1-r0/node-v14.16.1/out/Release/v8-qemu-wrapper.sh" "/mnt/b/yoe/master/build/tmp/work/mips32r2-yoe-linux/nodejs/14.16.1-r0/nod
e-v14.16.1/out/Release/mksnapshot" --turbo_instruction_scheduling "--target_os=linux" "--target_arch=mips" --startup_src "/mnt/b/yoe/master/build/tmp/work/mips32r2-yoe-linux/nodejs/14.16.1-r0/node-v14.16.1/ou
t/Release/obj.target/v8_snapshot/geni/snapshot.cc" --embedded_variant Default --embedded_src "/mnt/b/yoe/master/build/tmp/work/mips32r2-yoe-linux/nodejs/14.16.1-r0/node-v14.16.1/out/Release/obj.target/v8_snap
shot/geni/embedded.S" --no-native-code-counters
|
| #
| # Fatal process OOM in CodeRange setup: allocate virtual memory
| #
|
| /mnt/b/yoe/master/build/tmp/work/mips32r2-yoe-linux/nodejs/14.16.1-r0/node-v14.16.1/out/Release/v8-qemu-wrapper.sh: line 7: 2292880 Trace/breakpoint trap (core dumped) PSEUDO_UNLOAD=1 qemu-mips -r 3.2.0 -
Signed-off-by: Khem Raj <raj.khem@gmail.com>
So far, we have been trying to build nodejs-native and use the native
host binaries from there, which has worked out ok but always changes
when major upgrade is done, since more binaries or places are required
to be captured. This patch changes this approach to use qemu-user to run
these binaries under during cross build. This lets them run closer to
upstream build process and also removes dependency on nodejs-native
Signed-off-by: Khem Raj <raj.khem@gmail.com>
This is latest maintained LTS release
Forward patches and drop backported patch
License-Update: Update copyright year and drop license of
deps/http_parser as this component is removed in this version
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Fix a security issue CVE-2020-36242 where certain sequences of
``update()`` calls when symmetrically encrypting very large
payloads (>2GB) could result in an integer overflow, leading to
buffer overflows.
Signed-off-by: Mingli Yu <mingli.yu@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Trevor Gamblin <trevor.gamblin@windriver.com>
Upgrade to release 2.1.6:
- from_stringraises a ValueError if given string cannot be parsed
to an interval
- Drop official support for Python 3.5
- Use black as official code formatting
Signed-off-by: Leon Anavi <leon.anavi@konsulko.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Trevor Gamblin <trevor.gamblin@windriver.com>
License-Update: Use info in setup.py for license as dedicated LICENSE
file has disappeared. License still is MIT
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Trevor Gamblin <trevor.gamblin@windriver.com>
