Changelog:
==========
* Fix activation of OPAL-only encrypted LUKS device with tokens.
* Fix formatting of OPAL devices with 4096-byte sector size.
* Fix incorrect OPAL locking range alignment calculation if used
over an unaligned device partition.
* Add --hw-opal-factory-reset option description to the manual page.
* Do not check the passphrase quality for OPAL Admin PIN,
as this passphrase already exists.
* Update license for FAQ document to CC BY-SA 4.0.
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
===========
-Added absl::NoDestructor<T> to simplify defining static types that do not need
to be destructed upon program exit.
-Added configurable verbose logging (also known as VLOG).
-Added absl::Overload(), which returns a functor that provides overloads based
on the functors passed to it. Note that this functionality requires C++17 or
newer.
-Bzlmod is now officially supported (previously it was supported by the community).
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
libfido2 requires cbor be position independent. When PIE's the default
this isn't a problem, but not all build configurations do that. Instead
of relying on that, just make shared libraries.
Signed-off-by: Dan McGregor <dan.mcgregor@usask.ca>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Set CVE_PRODUCT for this recipe to fix the mapping,
as it was checking against the wrong recipe before.
Log from cve_check after change:
NOTE: libtorrent-rasterbar-2.0.10 is not vulnerable to CVE-2008-0646
NOTE: libtorrent-rasterbar-2.0.10 is not vulnerable to CVE-2009-1760
NOTE: libtorrent-rasterbar-2.0.10 is not vulnerable to CVE-2016-5301
NOTE: libtorrent-rasterbar-2.0.10 is not vulnerable to CVE-2016-7164
NOTE: libtorrent-rasterbar-2.0.10 is not vulnerable to CVE-2017-9847
Signed-off-by: Beniamin Sandu <beniaminsandu@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
The CVE_PRODUCT variable is assigned automatically to BPN.
Unset it for this recipe so the CVEs can be checked
against the correct recipe.
Signed-off-by: Beniamin Sandu <beniaminsandu@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
The following paths have been replaced with PYTHON_SITEPACKAGES_DIR:
- "${libdir}/${PYTHON_DIR}/site-packages"
- "${libdir}/python${PYTHON_BASEVERSION}/site-packages"
- "${libdir}/python*/site-packages"
- "${libdir}/python3.*/site-packages"
Signed-off-by: alperak <alperyasinak1@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
There are use cases for build time cli tools, so include support for
native as well.
Signed-off-by: Eero Aaltonen <eero.aaltonen@vaisala.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
docopt.cpp only uses boost regex with the option USE_BOOST_REGEX=ON.
When used, boost regex is statically linked.
Signed-off-by: Eero Aaltonen <eero.aaltonen@vaisala.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
This also fixes all ptests, therefore move freediameter
out of PTESTS_PROBLEMS_META_NETWORKING to PTESTS_FAST_META_NETWORKING
Signed-off-by: Khem Raj <raj.khem@gmail.com>
This is a requirement for libdisplay-info and fixes:
Program edid-decode found: NO
If libdisplay-info can provide edid-decode-native it looks like:
libdisplay-info| Program edid-decode found: YES (/home/flk/poky/build-hypr/tmp/work/corei7-64-poky-linux/gamescope/3.14.3/recipe-sysroot-native/usr/bin/edid-decode)
libdisplay-info| Program ./edid-decode-check.sh found: YES (/home/flk/poky/build-hypr/tmp/work/corei7-64-poky-linux/gamescope/3.14.3/git/subprojects/libdisplay-info/test/./edid-decode-check.sh)
libdisplay-info| Program ./edid-print-check.sh found: YES (/home/flk/poky/build-hypr/tmp/work/corei7-64-poky-linux/gamescope/3.14.3/git/subprojects/libdisplay-info/test/./edid-print-check.sh)
libdisplay-info| Program ./edid-decode-diff.sh found: YES (/home/flk/poky/build-hypr/tmp/work/corei7-64-poky-linux/gamescope/3.14.3/git/subprojects/libdisplay-info/test/./edid-decode-diff.sh)
Signed-off-by: Markus Volk <f_l_k@t-online.de>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changes are made to prepare upgrading Twisted to a newer version
in a later commit.
Summary of changes:
Remove python3-twisted-bin since there is no FILES defined for bin
Use PYTHON_SITEPACKAGES_DIR when refering to the site-packages directory
Remove ALOT of files from FILES list which no longer exist. Many of these
files were deprecated and removed a long time ago.
Removed redundant :append to FILES packages, they can simply be in the
first definition of it.
Signed-off-by: Guðni Már Gilbert <gudnimar@noxmedical.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
There are two still left
Failed ptests:
{'psqlodbc': ['30_-_lfconversion', '43_-_result-conversions']}
These need using unicode postgresql driver perhaps
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Brings
Fix iconv handle leak with pooling
Add windows encoding patch
Avoid failed build if clock_gettime() is not available
Allow passing in a entire connection string into iusql
Allow isql to handle SQL_SUCCESS_WITH_INFO from SQLPrepare
Add extra logging for ODBCINST connect settings
Allow allocated copy (instead of fixed length) for the connection string with pooling to allow any length
Export __clear_ini_cache() from odbcinst to allow explicitly clearing the ini cache
Fix seg fault when used with SQLAPI
Add --enable-utf8ini flag to add utf8 to WCHAR conversions in SQLGetPrivateProfileStringW
Allow longer error messages via GetDiag functions
Add --enable-singleenv to enable single shared env handle when using pooling
Signed-off-by: Khem Raj <raj.khem@gmail.com>
When running ptests using meta-oe-image-ptest-ostree image
these packageconfig/soup3 and utf8 locale is needed
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Cc: Jose Quaresma <quaresma.jose@gmail.com>
CVE-2024-0962:
A vulnerability was found in obgm libcoap 4.3.4. It has been rated as critical. Affected by this issue is the function get_split_entry of the file src/coap_oscore.c of the component Configuration File Handler. The manipulation leads to stack-based buffer overflow.
Upstream-Status: Backport [https://github.com/obgm/libcoap/pull/1311]
WARNING: libcoap-4.3.4-r0 do_cve_check: Found unpatched CVE (CVE-2024-0962)
This vulnerability is only exist in 4.3.4.
Signed-off-by: alperak <alperyasinak1@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
oldincludedir was removed in oe-core by
commit 506c91cbc6a604a84e37e53ccff430436369802e
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
oldincludedir was removed in oe-core by
commit 506c91cbc6a604a84e37e53ccff430436369802e
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
We already have libxml++-5 provided and some of
the dependencies for libxml++ (older version of glibmm)
are not available.
Signed-off-by: Khem Raj <raj.khem@gmail.com>
The original idea was always disable io_uring to avoid follwing failure
even when UV_USE_IO_URING is set to true, refer [1][2]:
0608: try:
*** 0609: update_hash(" %10s" % pwd.getpwuid(s.st_uid).pw_name)
0610: update_hash(" %10s" % grp.getgrgid(s.st_gid).gr_name)
0611: except KeyError as e:
0612: msg = ("KeyError: %s\nPath %s is owned by uid %d, gid %d, which doesn't match "
0613: "any user/group on target. This may be due to host contamination." %
Exception: Exception: KeyError: 'getpwuid(): uid not found: 20561'
But since 20.11.1, for fix CVE-2024-22017, io_uring is disabled by
default, refer [3]. So maybe patch
0001-deps-disable-io_uring-support-in-libuv.patch is not needed.
For case UV_USE_IO_URING is set to true, user can fix above failure
by "chown root:root -R ${D}" in do_install.
[1] https://lists.openembedded.org/g/openembedded-devel/message/105583
[2] https://bugzilla.yoctoproject.org/show_bug.cgi?id=15244
[3] https://github.com/nodejs/node/commit/686da19abbb83b7e01d48be19f832ab081b87084
[4] https://nvd.nist.gov/vuln/detail/CVE-2024-22017
Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Wang Mingyu
Dan McGregor
Beniamin Sandu
Alexander Vickberg
alperak
Martin Jansa
Andre Paiusco
Yi Zhao
Rui Costa
Khem Raj
Tom Geelen
Eero Aaltonen
Mingli Yu
Electric Worry
Markus Volk
Guðni Már Gilbert
Geoff Parker
Peter Hoyes
Peter Marko
Changqing Li