The header-only package cannot be included in the SDK without marking
the main package with ALLOW_EMPTY.
Fixes rootfs problem:
```
The following packages have unmet dependencies:
imx-gpu-sdk : Depends: nlohmann-json but it is not installable
E: Unable to correct problems, you have held broken packages.
```
Signed-off-by: Tom Hochstein <tom.hochstein@nxp.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
This is a bug-fix release bringing in several fixes for build and
testing issues.
Remove the patch that's already present in this release.
Signed-off-by: Bartosz Golaszewski <bartosz.golaszewski@linaro.org>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
==========
* Allow sources.list.d to not exist
* Fix Debian templates to fix FTBFS/test failure.
We copied the URI regex from the templated section, so they had
{{0,1}}, but these sections had a fixed codename, so there's no
expansion, so it needs to be {0,1} here.
* Update mirror lists
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Some old nodejs CVEs use 'nodejs', and recent nodejs CVEs use
'node.js'. Add CVE_PRODUCT to include both.
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
liblockfile do_install task will fail when ldconfig is not installed
on the host. Delete the useless line to fix the issue.
Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
ver 2.3:
Fix issue with length calculation for WMM IE.
Fix issue with channel number allocation off-by-one.
Fix issue with cached session when TLS phase2 fails.
Add support for FastReauthentication setting for EAP-TLS.
ver 2.2:
Fix issue with handling FT and multiple roaming scans.
Fix issue with handling multiple wiphy registrations.
Fix issue with with EAP-PEAP session resumption.
Add support for using PTK rekeying in AP mode.
Add support for setting country IE in AP mode.
Add support for setting WMM parameter IE in AP mode.
ver 2.1:
Fix issue with handling FT-over-DS action.
Fix issue with handling scan and 6 GHz support check.
Fix issue with handling when periodic scans get aborted.
Add support for using 5 GHz frequencies in AP mode.
Signed-off-by: Markus Volk <f_l_k@t-online.de>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
===========
* Fix quadratic complexity bug with repeated '![[]()'.
Resolves CVE-2023-22486. Add new pathological test.
* Allow declarations with no space, as per spec
* Set 'enumi*' counter correctly in LaTeX output
* Allow '<!DOCTYPE' to be case-insensitive.
existing spec.)
* Fixed HTML comment scanning. Need to handle this case: '<!--> and -->'.
Since the scanner finds the longest match, we had to
move some of the logic outside of the scanner.
* Fix quadratic parsing issue with repeated '<!--' (this was not
introduced by the previous fix, and not in a released version of cmark).
Resolves CVE-2023-22484. Add new pathological test.
* Update HTML comment scanner to accord with commonmark/commonmark-spec#713
* Pathological tests: half the number of repetitions, and the timeout.
This reduces the time needed for the pathological tests.
* Shrink 'struct cmark_node' (#446). The 'internal_offset' member is
only used for headings and can be moved to 'struct cmark_heading'.
This reduces the size of 'struct cmark_node' from 112 to 104 bytes on
64-bit systems.
* Add '-Wstrict-prototypes' and fix offending functions.
* Fix quadratic behavior involving 'get_containing_block' (#431).
Instead of searching for the containing block, update the tight list
status when entering a child of a list item or exiting a list.
* Fix 'pathological_tests.py'
- Use a multiprocessing.Queue to actually get results from spawned
tests processes.
- Fix the 'allowed_failures' test.
- Truncate actual output when printed.
- Prepare for testing pathological behavior of the Commonmark renderer.
* Fix source position bug with backticks
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
==========
- Add support of
KAPELSE KAP-LINK
LDU LANDI
Sensyl SSC-HV Reader
TOKEN2 MFA NFC Reader
TOKEN2 Molto2
Thales RF Reader
- Alcor Micro AU9560: Remove high speeds since they are not supported
- Hack for AlcorMicro AU9560 and Acos-ID card
- configure.ac: disable the use of --disable-usbdropdir
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
- Switch to github release artifact downloads
- Add missing dependency on libexif
- Merge .inc into .bb as there are no other users of it
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Latest release 0.31 needs some more bits during build. Add them
at right SHA checkouts, from
tools/install-build-deps
Signed-off-by: Khem Raj <raj.khem@gmail.com>
According to the used desktop environment there are high level xdg-desktop-portal
backends available. There are implementations for kde, lxde, gnome, wlroots.
Even hyprland provides its own portal backend addition.
These backends are known to cause unexpected behavior if mixed together,
so it was a little bit overambitious to set the gnome portal as a
runtime dependency by default as it may break other environments.
Remove it from RDEPENDS
Signed-off-by: Markus Volk <f_l_k@t-online.de>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Importing private keys into a PKCS#11 token is broken with OpenSC 0.23.0
and OpenSSL 3. Fix it by backporting the corresponding upstream fixes.
Signed-off-by: Jan Luebbe <jlu@pengutronix.de>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
The use of `>&` assumes we are using a shell that supports this syntax.
In case of running this through `sh`, we get "Syntax error: Bad fd number"
Signed-off-by: Khem Raj <raj.khem@gmail.com>
The extract-cert tool is used to fetch the X.509 certificate associated
with a key from a PKCS#11 token (such as a HSM or YubiKey). This version
is derived from certs/extract-cert in the Linux kernel as a stand-alone
tool to make it available when signing other software components besides
the kernel.
Signed-off-by: Jan Luebbe <jlu@pengutronix.de>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
For now syslog-ng segfaults on ppc64le. The problem could be reproduced
by simply adding syslog-ng to IMAGE_INSTALL and then building and starting
an image for qemuppc64.
The underlying root cause is unknown yet. This workaround, on the other hand,
helps improve the situation a little bit in the sense that users can at least
use syslog-ng on ppc64le targets.
Note that this workaround should be dropped once the upstream issues[1][2]
are fixed. This has also stated very clearly in the patch.
[1] https://sourceware.org/bugzilla/show_bug.cgi?id=30062
[2] https://github.com/syslog-ng/syslog-ng/issues/4285
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
* ispellaff2myspell: A program to convert ispell affix tables to myspell format
pulls perl into the images
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
We already depend on sqlite, but the objectstore backend using it is not
enabled by default. Add the necessary configure option.
The db backend is more robust when accessing the objectstore from many
parallel processes (such as during kernel module signing).
Signed-off-by: Jan Luebbe <jlu@pengutronix.de>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
SoftHSMv2 actually only uses the sqlite library. With the check for the
sqlite3 binary, building with the DB backend would mean depending on
sqlite-native.
Signed-off-by: Jan Luebbe <jlu@pengutronix.de>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
This helps in overcoming a problem when using scons with ccache enabled.
When commands get longer, then it resorts to using response files to do
the operations e.g. @/tmp/tmp96j6icra.lnk when this response file is
inboked by compiler it works ok, however, this does not when ccache is
used to invoke the complilation. We see errors e.g.
ccache @/tmp/tmppsyij_0v.lnk
ccache: error: execute_noreturn of @/tmp/tmppsyij_0v.lnk failed: No such file or directory
Using MAXLINELENGTH setting ensures that we can use ARG_MAX to extend
the length of commandline and hence avoid using response files. This
issue is also reported in mongodb [1]
[1] https://jira.mongodb.org/browse/SERVER-38389
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Wang Mingyu
Petr Gotthard
Chee Yang Lee
Joe Slater
Tom Hochstein
Bartosz Golaszewski
Pablo Saavedra
Archana Polampalli
Chen Qi
Changqing Li
Markus Volk
Khem Raj
Simone Weiss
Jan Luebbe
David Bagonyi
Martin Jansa