Add UPSTREAM_CHECK_URI to check the correct latest stable verison.
Before the patch:
$ devtool latest-version libmash
INFO: Current version: 0.9.9.9
INFO: Latest version:
After the patch:
$ devtool latest-version libmash
INFO: Current version: 0.9.9.9
INFO: Latest version: 0.9.9.9
Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
Remove the paxctl recipe since it has seemingly been broken for a
while without anyone noticing, and there likely have been no actual
users since grsecurity stopped doing public releases in 2017.
Signed-off-by: Scott Murray <scott.murray@konsulko.com>
Remove the libest recipe since it has been disabled since November
2021, and upstream has shown no activity since 2022.
Signed-off-by: Scott Murray <scott.murray@konsulko.com>
v2 : also fix some typos while we are here.
v3 : add fixes for isic and checksecurity
Signed-off-by: Jason Schonberg <schonm@gmail.com>
[removed already applied change]
Signed-off-by: Scott Murray <scott.murray@konsulko.com>
Ptest result:
ptest-runner libgssglue
START: ptest-runner
2025-03-27T13:15
BEGIN: /usr/lib64/libgssglue/ptest
PASS: gss_create_empty_oid_set
PASS: gss_test_oid_set_member
PASS: gss_test_oid_set_member n==0
PASS: gss_add_oid_set_member() OK
PASS: gss_test_oid_set_member() OK
OID present in set with the OID added to it => 1
PASS: gss_test_oid_set_member() OK
PASS: gss_test_oid_set_member() OK
Another OID present in set without the OID => 0
PASS: gss_test_oid_set_member() OK
PASS: gss_add_oid_set_member() OK
PASS: gss_test_oid_set_member() OK
Another OID present in set with it added => 1
PASS: gss_test_oid_set_member() OK
PASS: gss_test_oid_set_member() OK
First OID present in set => 1
PASS: gss_test_oid_set_member() OK
PASS: gss_release_oid_set() OK
PASS: gss_indicate_mechs() OK
PASS: gss_release_oid_set() OK
PASS: gss_import_name() OK
PASS: gss_display_name() OK
display_name() => 27: imap@server.example.org@FOO
PASS: gss_release_buffer() OK
PASS: gss_release_name() OK
Basic self tests done with 0 errors
DURATION: 0
END: /usr/lib64/libgssglue/ptest
2025-03-27T13:15
STOP: ptest-runner
TOTAL: 1 FAIL: 0
Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
ecryptfs-utils userspace daemon fails to start if kernel
module is not available on target.
Signed-off-by: Mikko Rapeli <mikko.rapeli@linaro.org>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
The 0.8 orig.tar.gz is not in debian mirror any more. In fact, we
really should avoid using orig.tar.gz like this because distros
like debian will just delete those that they don't maintain any more.
Switch to use git source.
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
configure: error: installation or configuration problem: C compiler cannot create executables.
| NOTE: The following config.log files may provide further information.
Signed-off-by: Armin Kuster <akuster808@gmail.com>
* WORKDIR -> UNPACKDIR transition
* Switch away from S = WORKDIR
Signed-off-by: Changqing Li <changqing.li@windriver.com>
[Fixed up the smack changes due to prior patch]
Signed-off-by: Armin Kuster <akuster808@gmail.com>
After usrmerge had been enabled, paxctl has the fowllowing error:
ERROR: paxctl-0.9-r0 do_package: QA Issue: paxctl: Files/directories were installed but not shipped in any package:
/sbin/paxctl
Signed-off-by: Lei Maohui <leimaohui@fujitsu.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Markus Rudy (17):
Use Github TeX Markdown instead of image includes.
Merge pull request #134 from burgerdev/md-tex
Merge pull request #135 from vvidic/cli-base64
RFD 002: public key format at rest (#109)
Merge pull request #137 from vvidic/hmac
Merge pull request #138 from vvidic/hmac2
Update list of supported Python versions
Install golint instead of 'get'ting it.
Merge pull request #139 from burgerdev/actions
Clarify format of public key at rest
Test all supported config file keys
Merge pull request #144 from burgerdev/public-key-format
Fix linter findings for #144
Use 'release' buildtype for NixOS builds
Merge pull request #149 from google/l9i/bye-java
RFD 001: GLOME Login v2 (#102)
login/v2 implementation for Go (#162)
Philipp Kern (21):
Merge pull request #133 from google/l9i/pam-fix
Merge pull request #132 from google/l9i/nix-shell
Merge pull request #140 from vvidic/defaul-typo
Merge pull request #142 from vvidic/soversion
Merge pull request #146 from burgerdev/lint
Merge pull request #148 from google/dependabot/go_modules/go/golang.org/x/crypto-0.1.0
Merge pull request #152 from google/l9i/cpplint
Merge pull request #154 from vvidic/docker-public-key
Merge pull request #155 from vvidic/prompt-fix
Insert a slash after url-prefix when writing it into prompt
Merge pull request #156 from google/url-prefix-compat
Merge pull request #157 from vvidic/config-order
State that devices require randomness for the protocol to work
Update docs/protocol.md
Merge pull request #158 from google/pkern-patch-1
Fix error to state "at most" instead of "at least"
Merge pull request #153 from vvidic/min-tag-length
Merge pull request #159 from vvidic/host-id-type
README.md: Codeblock fixups
Merge branch 'master' into l9i/README
Merge pull request #141 from google/l9i/README
Piotr Lewandowski (12):
Fix failing PAM test
Treat warning as errors
Define OPENSSL_API_COMPAT to require OpenSSL >=1.1
Use werror only for CI
Add nix-shell config for setting up dev environment
Add GitHub Action workflow for shell.nix
Add intro and installation steps to README.md
Address reviewer's comments
Wrap lines
Delete Java implementation
Rename `url-prefix` to `prompt` (#131)
Add `cpplint` linter
Valentin Vidic (10):
Update CLI to use base64 instead of hex tags.
Replace deprecated OpenSSL HMAC API with EVP.
Replace OpenSSL EVP_DigestSign API with HMAC()
Fix typo: defaul => default
Use project version in library version
Update Docker scripts for new public key format
Fix setting of prompt parameter
Parse command line again after reading the config
Add config option for minimum authcode length #122
Add config option for host-id type #122
dependabot[bot] (1):
Bump golang.org/x/crypto in /go
Signed-off-by: Luke Granger-Brown <lukegb@google.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
There is new patch-status QA check in oe-core:
https://git.openembedded.org/openembedded-core/commit/?id=76a685bfcf927593eac67157762a53259089ea8a
This is temporary work around just to hide _many_ warnings from
optional patch-status (if you add it to WARN_QA).
This just added
Upstream-Status: Pending
everywhere without actually investigating what's the proper status.
This is just to hide current QA warnings and to catch new .patch files being
added without Upstream-Status, but the number of Pending patches is now terrible:
0 (0%) meta-parsec
N/A (0%) meta-hardening
1 (100%) meta-integrity
15 (68%) meta-tpm
27 (61%) meta-security
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Inherit github-releases so that `devtool upgrade` can identify new
versions correctly.
Signed-off-by: Alex Kiernan <alex.kiernan@gmail.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
LIC_FILE_CHKSUM changes to to indentations changes.
use bootstrap to setup config properly.
Drop libgssglue-fix-CVE-2011-2709.patch, libgssglue-g-initialize.patch now included in update.
and ibgssglue-mglueP.patch now included in update.
Drop libgssglue-gss-inq-cred.patch still pending after 5 yrs.
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Generic Low Overhead Message Exchange (GLOME) is a protocol providing
secure authentication and authorization for low dependency environments.
Signed-off-by: John Edward Broadbent <jebr@google.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
