summaryrefslogtreecommitdiffstats
path: root/meta/recipes-devtools
Commit message (Collapse)AuthorAgeFilesLines
...
* python3-sphinx: upgrade 5.2.3 -> 5.3.0Tim Orling2022-11-031-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | https://www.sphinx-doc.org/en/master/changes.html#release-5-3-0-released-oct-16-2022 Release 5.3.0 (released Oct 16, 2022) * #10759: LaTeX: add latex_table_style and support the 'booktabs', 'borderless', and 'colorrows' styles. (thanks to Stefan Wiehler for initial pull requests #6666, #6671) * #10840: One can cross-reference including an option value like `--module=foobar`, `--module[=foobar]` or `--module foobar`. Patch by Martin Liska. * #10881: autosectionlabel: Record the generated section label to the debug log. * #10268: Correctly URI-escape image filenames. * #10887: domains: Allow sections in all the content of all object description directives (e.g. py:function). Patch by Adam Turner (From OE-Core rev: 35d65248c2a46f4966ded2e95e530f25a2869ce9) Signed-off-by: Tim Orling <tim.orling@konsulko.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* python3-zipp: upgrade 3.9.0 -> 3.10.0Tim Orling2022-11-031-1/+1
| | | | | | | | | | | | | | | | | | | | | https://github.com/jaraco/zipp/blob/main/CHANGES.rst#v3100 v3.10.0 * zipp is now a package. https://github.com/jaraco/zipp/blob/main/CHANGES.rst#v391 v3.9.1 * Removed 'print' expression in test_pickle. * bpo-43651: Apply io.text_encoding on Python 3.10 and later. (From OE-Core rev: c28d3f1ccdc074805cf0d9e673bfbe999f8fcf71) Signed-off-by: Tim Orling <tim.orling@konsulko.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* python3-pytz: upgrade 2022.4 -> 2022.6Tim Orling2022-11-031-1/+1
| | | | | | | | | | | | | | | | | | https://launchpad.net/pytz/+announcement/30743 pytz 2022.6, containing the 2022f IANA database, has been released. There are no code changes. https://launchpad.net/pytz/+announcement/30736 pytz 2022.5 has been released containing the IANA 2022e database release. There are no code changes. (From OE-Core rev: b78ce30f0fcd5702f79a14bbc0c33f6492d81ecd) Signed-off-by: Tim Orling <tim.orling@konsulko.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* python3-more-itertools: upgrade 8.14.0 -> 9.0.0Tim Orling2022-11-031-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | https://github.com/more-itertools/more-itertools/blob/master/docs/versions.rst#900 9.0.0 * Potentially breaking changes - `grouper` no longer accepts an integer as its first argument. Previously this raised a DeprecationWarning. - `collate` has been removed. Use the built-in `heapq.merge` instead. - `windowed` now yields nothing when its iterable is empty. * This library now advertises support for Python 3.7+. * New functions - `constrained_batches` - `batched` (from the Python itertools docs) - `polynomial_from_roots` (from the Python itertools docs) -`sieve` (from the Python itertools docs) * Other changes - Some documentation issues were fixed (thanks to nanouasyn) (From OE-Core rev: f31ea2784428114acae33522a80208aa35d133bc) Signed-off-by: Tim Orling <tim.orling@konsulko.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* python3-hypothesis: upgrade 6.56.1 -> 6.56.4Tim Orling2022-11-031-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | https://hypothesis.readthedocs.io/en/latest/changes.html#v6-56-4 6.56.4 - 2022-10-28 * This patch updates some docs, and depends on exceptiongroup 1.0.0 final to avoid a bug in the previous version. 6.56.3 - 2022-10-17 * This patch teaches text() to rewrite a few more filter predicates (issue #3134). You’re unlikely to notice any change. 6.56.2 - 2022-10-10 * This patch updates our vendored list of top-level domains, which is used by the provisional domains() strategy, and fixes some incorrect examples in the docs for mutually_broadcastable_shapes(). (From OE-Core rev: 1071b68375819d9faa607ae1179720500157d932) Signed-off-by: Tim Orling <tim.orling@konsulko.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* python3-pytest-subtests: upgrade 0.8.0 -> 0.9.0Tim Orling2022-11-031-1/+1
| | | | | | | | | | | | | | | https://github.com/pytest-dev/pytest-subtests/blob/main/CHANGELOG.rst#090-2022-10-28 0.9.0 (2022-10-28) * Python 3.11 is officially supported. * Dropped support for Python 3.6. (From OE-Core rev: 30f77f222f4929a7bf1eac34d4b3912167db4316) Signed-off-by: Tim Orling <tim.orling@konsulko.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* python3-pytest: upgrade 7.1.3 -> 7.2.0Tim Orling2022-11-031-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | https://docs.pytest.org/en/stable/changelog.html#pytest-7-2-0-2022-10-23 Excerpt from upstream release notes: Deprecations * #10012: Update pytest.PytestUnhandledCoroutineWarning to a deprecation; it will raise an error in pytest 8. * #10396: pytest no longer depends on the py library. pytest provides a vendored copy of py.error and py.path modules but will use the py library if it is installed. If you need other py.* modules, continue to install the deprecated py library separately, otherwise it can usually be removed as a dependency. * #4562: Deprecate configuring hook specs/impls using attributes/marks. Instead use pytest.hookimpl() and pytest.hookspec(). For more details, see the docs. * #9886: The functionality for running tests written for nose has been officially deprecated. This includes: Plain setup and teardown functions and methods: this might catch users by surprise, as setup() and teardown() are not pytest idioms, but part of the nose support. Setup/teardown using the @with_setup decorator. For more details, consult the deprecation docs. (From OE-Core rev: 8ae3b896b0e1a77bcbd5b98b4b983e4f34746a94) Signed-off-by: Tim Orling <tim.orling@konsulko.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* python3-psutil: upgrade 5.9.2 -> 5.9.3Tim Orling2022-11-031-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | https://github.com/giampaolo/psutil/blob/master/HISTORY.rst#593 2022-10-18 Enhancements * 2040, [macOS]: provide wheels for arm64 architecture. (patch by Matthieu Darbois) Bug fixes * 2116, [macOS], [critical]: `psutil.net_connections`_ fails with RuntimeError. * 2135, [macOS]: Process.environ() may contain garbage data. Fix out-of-bounds read around sysctl_procargs. (patch by Bernhard Urban-Forster) * 2138, [Linux], [critical]: can't compile psutil on Android due to undefined ethtool_cmd_speed symbol. * 2142, [POSIX]: net_if_stats() 's flags on Python 2 returned unicode instead of str. (patch by Matthieu Darbois) * 2147, [macOS] Fix disk usage report on macOS 12+. (patch by Matthieu Darbois) * 2150, [Linux] Process.threads() may raise NoSuchProcess. Fix race condition. (patch by Daniel Li) * 2153, [macOS] Fix race condition in test_posix.TestProcess.test_cmdline. (patch by Matthieu Darbois) (From OE-Core rev: 893fc6a99f1ad3417fec43eb9b7fdb641e7d1e6d) Signed-off-by: Tim Orling <tim.orling@konsulko.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* python3-cryptography{-vectors}: 38.0.1 -> 38.0.3Tim Orling2022-11-032-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | | 38.0.3 - 2022-11-01 * Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.0.7, which resolves CVE-2022-3602 and CVE-2022-3786. 38.0.2 - 2022-10-11 (YANKED) Attention! This release was subsequently yanked from PyPI due to a regression in OpenSSL. * Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.0.6. https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst#3803---2022-11-01 (From OE-Core rev: 3c0c03312724de85e3209e6e5a5aa20c094eae45) Signed-off-by: Tim Orling <tim.orling@konsulko.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* python3-bcrypt: upgrade 4.0.0 -> 4.0.1Tim Orling2022-11-032-51/+51
| | | | | | | | | | | | | | | | | | * Refresh python3-bcrypt-crates.inc Upstream release notes[1]: * We now build PyPy manylinux wheels. * Fixed a bug where passing an invalid salt to checkpw could result in a pyo3_runtime.PanicException. It now correctly raises a ValueError. [1] https://github.com/pyca/bcrypt/#401 (From OE-Core rev: 509a684b748af92e0b657433da85550de72ecbe0) Signed-off-by: Tim Orling <tim.orling@konsulko.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* rust: submit a rewritten version of crossbeam_atomic.patch upstreamAlexander Kanavin2022-11-031-1/+1
| | | | | | | | (From OE-Core rev: 4bbfd7427092063dd612d2ca9e466cb819f5a3e3) Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* go: update 1.19.2 -> 1.19.3Sakib Sajal2022-11-038-4/+4
| | | | | | | | (From OE-Core rev: fd33d169a5febb37eac03312c4014e35d29d06df) Signed-off-by: Sakib Sajal <sakib.sajal@windriver.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* python3-mako: upgrade 1.2.2 -> 1.2.3Tim Orling2022-11-021-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | Released: Thu Sep 22 2022 * bug - [bug] [lexer] * Fixed issue in lexer in the same category as that of #366 where the regexp used to match an end tag didn’t correctly organize for matching characters surrounded by whitespace, leading to high memory / interpreter hang if a closing tag incorrectly had a large amount of unterminated space in it. Credit to Sebastian Chnelik for locating the issue. As Mako templates inherently render and directly invoke arbitrary Python code from the template source, it is never appropriate to create templates that contain untrusted input. References: #367 [1] https://docs.makotemplates.org/en/latest/changelog.html#change-1.2.3 [2] https://github.com/sqlalchemy/mako/issues/366 [3] https://github.com/sqlalchemy/mako/issues/367 (From OE-Core rev: 49ad6f031458e1f48f24547dc88e41abc4ec41a6) Signed-off-by: Tim Orling <tim.orling@konsulko.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gptfdisk: remove warning message from target systemPeter Bergin2022-11-012-0/+28
| | | | | | | | | | | | | | | A recent change in libuuid made warning when running sgdisk. Backport patch from upstream to silent warning. The warning: "Warning! Unable to generate a proper UUID! Creating an improper one as a last resort! Windows 7 may crash if you save this partition table!" (From OE-Core rev: ce6491b900e509a776eddaf6bd57251628393fa3) Signed-off-by: Peter Bergin <peter@berginkonsult.se> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* go: update 1.19 -> 1.19.2Alexander Kanavin2022-11-0110-41/+9
| | | | | | | | | | Drop stack-protector.patch as issue fixed upstream. (From OE-Core rev: 1b79d63a0703deb341f7693bd7b7c080a553b876) Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* go: submit patch upstreamAlexander Kanavin2022-11-011-1/+2
| | | | | | | | (From OE-Core rev: 40d24b0b5c7a405bf9fd7ec7fa57ec61a6af3d01) Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* cmake: drop qt4 patchesAlexander Kanavin2022-11-013-137/+0
| | | | | | | | | | Qt4 has been dead for a very long time now. (From OE-Core rev: 1552df5351e629f3404540e7f7c94c2478555191) Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* tcl: correct upstream version checkAlexander Kanavin2022-11-011-0/+1
| | | | | | | | | | Sourceforge does not report the latest version reliably. (From OE-Core rev: 8a929c75d924393c1ebfad3f10a6ebefdf668be1) Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* tcl: correct patch statusAlexander Kanavin2022-11-011-1/+1
| | | | | | | | (From OE-Core rev: 9f37e5b83db662bba92605c8741516108aad3c5e) Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* python3-cryptography: convert to cargo-update-recipe-crates classAlexander Kanavin2022-11-012-55/+61
| | | | | | | | | | | This allows semi-automated updates to the list of crates, which is far too awkward to maintain by hand, particularly on version updates. (From OE-Core rev: 1071e2fdd23271bf5df60712263838fe70276c67) Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* python3-bcrypt: convert to use cargo-update-recipe-crates class.Alexander Kanavin2022-11-012-51/+57
| | | | | | | | | | | | | | The component has been reimplemented in rust, and comes with a large list of dependencies in Cargo.toml/Cargo.lock. Rather than list them by hand, use a file generated with cargo-update-recipe-crates class. (From OE-Core rev: f1ebc71d9c35ba3ff58851efe2fae4e193f481f1) Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* python3: update 3.10.6 -> 3.11.0Alexander Kanavin2022-10-2914-173/+110
| | | | | | | | | | | | | | The semaphore fix has landed and is available from 3.11 onwards: https://github.com/python/cpython/commit/1ee0f94d16f150356a4b9b0a39d44ba1d2d5b9fc Drop 0001-Mitigate-the-race-condition-in-testSockName.patch as it is merged upstream. (From OE-Core rev: f10cdc155e47af5627ee999c57e1d083f9382a91) Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* quilt: backport a patch to address grep 3.8 failuresAlexander Kanavin2022-10-292-0/+145
| | | | | | | | (From OE-Core rev: b5001af5c711a373bd2f1ea108c8b597dd40faca) Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* python3-jsonschema: upgrade 4.9.1 -> 4.16.0Alexander Kanavin2022-10-291-2/+2
| | | | | | | | (From OE-Core rev: e3c4ab0e6a3f8bb3f85f28530e2ac2ad9db7deb8) Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* python3-hatch-fancy-pypi-readme: add a recipeAlexander Kanavin2022-10-291-0/+14
| | | | | | | | | | This is a new dependency of python3-jsonschema. (From OE-Core rev: 07781f8f3452d6a9db26515d680e40fd121337f9) Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* python3-dbus: upgrade 1.2.18 -> 1.3.2Alexander Kanavin2022-10-291-7/+5
| | | | | | | | | | | | Convert to meson. License-Update: clarifications about https://reuse.software/ compliancy (From OE-Core rev: 4391c6d6d4a5ed95e66f397b69532e388ebadbb6) Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* jquery: upgrade 3.6.0 -> 3.6.1Alexander Kanavin2022-10-291-3/+3
| | | | | | | | (From OE-Core rev: 4b727ce83cf295cecd7523291a527c0b5e058fe8) Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* cmake: update 3.24.0 -> 3.24.2Alexander Kanavin2022-10-293-1/+1
| | | | | | | | (From OE-Core rev: ebd026f5fe81728dd7373ce8d532b60eab32326f) Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* llvm: update 14.0.6 -> 15.0.1Alexander Kanavin2022-10-291-2/+3
| | | | | | | | | | 'Release' type follows standard practice elsewhere in core, particularly rust-llvm as well. (From OE-Core rev: 20adf74207b8c3eac7871e27da2df1aa26fca3b6) Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnu-config: update to latest revisionAlexander Kanavin2022-10-291-2/+2
| | | | | | | | (From OE-Core rev: b4d105d0d2bc54cf3987cbb9665588ec7aa037bd) Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* unfs3: correct upstream version checkAlexander Kanavin2022-10-291-1/+1
| | | | | | | | (From OE-Core rev: 70897a57b2f3f0eaaa937fe84383d6e26cd62c72) Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* cmake-native: Fix host tool contaminationBernhard Rosenkränzer2022-10-291-0/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | [v2 hopefully fixes the From: mangling by the ML, no functional changes] Trying to build cmake-native on a host system where curl was built with cmake (resulting in CURLConfig.cmake and friends, which do not use the same naming schemes expected by cmake-native's build process, being installed to a system wide cmake directory like /usr/lib64/cmake/CURL) results in undefined references to all libcurl symbols. The problem is that cmake-native sees and uses the system wide /usr/lib64/cmake/CURL/CURLConfig.cmake, which defines CURL::libcurl and CURL::curl as opposed to setting ${CURL_LIBRARIES} as expected by cmake-native. find_package(CURL) (cmake-native's CMakeLists.txt, line 478) succeeds, but incorrectly uses the system wide CURLConfig.cmake, resulting CMAKE_CURL_LIBRARIES to be set to an empty string (cmake-native's CMakeLists.txt, line 484), causing the cmake-native build to miss -lcurl. The simplest fix is to let cmake know the right value for CURL_LIBRARIES. Making it -lcurl should always work with libcurl-native in recipe-sysroot-native. [YOCTO #14951] (From OE-Core rev: 2659c735a464c956b4fca0894a5aed27a0fe7e37) Signed-off-by: Bernhard Rosenkränzer <bero@baylibre.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* go: add support to build on ppc64leAndrew Geissler2022-10-281-0/+1
| | | | | | | | | | Verified by building on a ppc64le based system (From OE-Core rev: 6f9bb7094b34d9cbafa8618ada46a94a06332545) Signed-off-by: Andrew Geissler <geissonator@gmail.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* rust: install rustfmt for riscv32 as wellAlexander Kanavin2022-10-281-1/+0
| | | | | | | | | | With the above rust arch fixes it builds just fine. (From OE-Core rev: f417ae30c79fac99e2549324ed351f6f63cc4a25) Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* qemu: backport the fix for CVE-2022-3165Ross Burton2022-10-282-0/+60
| | | | | | | | (From OE-Core rev: d820389728b0f5e085954b4f995da2b2014acedf) Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* git: upgrade 2.37.3 -> 2.38.1Tim Orling2022-10-261-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Fixes CVE-2022-39260 Git v2.38.1 Release Notes ========================= This release merges the security fix that appears in v2.30.6; see the release notes for that version for details. Excerpt from 2.30.6 release notes: * CVE-2022-39260: An overly-long command string given to `git shell` can result in overflow in `split_cmdline()`, leading to arbitrary heap writes and remote code execution when `git shell` is exposed and the directory `$HOME/git-shell-commands` exists. `git shell` is taught to refuse interactive commands that are longer than 4MiB in size. `split_cmdline()` is hardened to reject inputs larger than 2GiB. Credit for finding CVE-2022-39260 goes to Kevin Backhouse of GitHub. The fix was authored by Kevin Backhouse, Jeff King, and Taylor Blau. For 2.38.0 changes, see: https://github.com/git/git/blob/master/Documentation/RelNotes/2.38.0.txt (From OE-Core rev: b304768711374066db320fe87960be81f54a8424) Signed-off-by: Tim Orling <tim.orling@konsulko.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* qemu-helper-native: Re-write bridge helper as C programJoshua Watt2022-10-263-28/+44
| | | | | | | | | | | | | | | | | | | | | The bridge helper program is invoked directly from QEMU when it needs to attach to a network bridge. As such, it is subject to the environment of QEMU itself. Specifically, if bridging is enabled with direct rendering acceleration, QEMU is run with an LD_PRELOAD that attempts to preload several uninative libraries; however /bin/sh doesn't use the uninative loader which means it can fail to start with an error like: /bin/sh: symbol lookup error: sysroots-uninative/x86_64-linux/lib/librt.so.1: undefined symbol: __libc_unwind_link_get, version GLIBC_PRIVATE Converting the helper program to a C program resolves this problem because it will now use the uninative loader so the preload doesn't cause errors. (From OE-Core rev: f698e98f2f09952b34488b8cf9e73e82bd7aea07) Signed-off-by: Joshua Watt <JPEWhacker@gmail.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* btrfs-tools: upgrade 5.19.1 -> 6.0wangmy2022-10-261-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Changelog: ========== * fi usage: in tabular output, print total size and slack size * mkfs: * option -O now accepts values from -R to unify the interface (-R will continue to work) * zone reset and discard is done in parallel on all devices * removed option --leafsize, deprecated long time ago * corrupt-block: recalculate checksum when changing generation * fixes: * convert: fix reserved range detection and overlaps * mkfs: fix creating files with reserved inode numbers with --rootdir * receive: escape filenames in command attributes * fix extent buffer leaks after transaction abort * experimental: * mkfs: support for block-group-tree (kernel 6.1) * fsverity in send (protocol v3, WIP) * btrfstune -b converts to block-group-tree * other: * cleanups, refactoring * new and updated tests * update documentation (From OE-Core rev: 46bc09ca18ea4321854450d1fc04faf95f314ad6) Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* rust: update 1.63.0 -> 1.64.0Alex Kiernan2022-10-269-26/+57
| | | | | | | | | | | Release notes: https://blog.rust-lang.org/2022/09/22/Rust-1.64.0.html (From OE-Core rev: 1d81fb264580b96c405075fcfd2a82a6f74b9630) Signed-off-by: Alex Kiernan <alexk@zuma.ai> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* repo: upgrade 2.29.2 -> 2.29.3wangmy2022-10-261-1/+1
| | | | | | | | (From OE-Core rev: eda59ebc36541c27bcd213f22f3d13e5f415f3f4) Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* python3-zipp: upgrade 3.8.1 -> 3.9.0wangmy2022-10-261-1/+1
| | | | | | | | (From OE-Core rev: 82ae10ef28a485231e492aef5e61ee7fbe6626c3) Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* python3-pytz: upgrade 2022.2.1 -> 2022.4wangmy2022-10-261-1/+1
| | | | | | | | (From OE-Core rev: 09bcf3fa1bbc2f5453894737aef90491672aebb4) Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* python3-manifest.json: Move urllib to netclientLeon Anavi2022-10-261-5/+5
| | | | | | | | | | Move urllib from core to netclient because it imports base64. (From OE-Core rev: e74ab2c144042b0a9f788b1b15f11b2800e2c7a1) Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* qemu-native: Add PACKAGECONFIG option for jackJeremy Puhlman2022-10-261-0/+1
| | | | | | | | | | | | | | | | | | | | | With libjack-devel or jack-audio-connection-kit-devel, qemu-native detects the library/header and tries to build with it. Since its missing from the sysroot, it fails to build. -O2 -fPIE -D_REENTRANT -Wno-undef -MD -MQ libcommon.fa.p/audio_jackaudio.c.o -MF libcommon.fa.p/audio_jackaudio.c.o.d -o libcommon.fa.p/audio_jackaudio.c.o -c ../qemu-6.2.0/audio/jackaudio.c | ../qemu-6.2.0/audio/jackaudio.c:34:10: fatal error: jack/jack.h: No such file or directory | 34 | #include <jack/jack.h> | | ^~~~~~~~~~~~~ | compilation terminated. (From OE-Core rev: 27260be388f7f9f324ff405e7d8e254925b4ae90) Signed-off-by: Jeremy A. Puhlman <jpuhlman@mvista.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* python3-importlib-metadata: upgrade 4.12.0 -> 5.0.0wangmy2022-10-261-1/+1
| | | | | | | | | | | Changelog: #97, #284, #300: Removed compatibility shims for deprecated entry point interfaces. (From OE-Core rev: 402aa9d5af2a727fcfb8907ed219a0ae302d1aa4) Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* python3-git: upgrade 3.1.27 -> 3.1.28wangmy2022-10-261-1/+1
| | | | | | | | (From OE-Core rev: efdc5f5cdcb717cb1694e7a9f50284d59f5da5ee) Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* python3-hatchling: upgrade 1.10.0 -> 1.11.0wangmy2022-10-261-1/+1
| | | | | | | | (From OE-Core rev: 3ba4735f0aa5ef1535b76f4e87deb7088c86b901) Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* mtools: upgrade 4.0.40 -> 4.0.41wangmy2022-10-262-4/+4
| | | | | | | | | | | | | | | | | | disable-hardcoded-configs.patch refreshed for new version Changelo: ========= - Made it possible again to have FAT32 filesystems with less than 0xfff5 clusters - Make FAT32 entries 0 and 1 match what windows 10 does - Misc source code and configure script cleanup (From OE-Core rev: b19127f0cd0e10c7180c138284b38c97fa9db7af) Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* meson: upgrade 0.63.2 -> 0.63.3wangmy2022-10-261-1/+1
| | | | | | | | (From OE-Core rev: 3c87597dcde7676858f76c1066cd87195ecc8aef) Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* python3-poetry-core: upgrade 1.0.8 -> 1.3.2Tim Orling2022-10-262-44/+45
| | | | | | | | | | | | | | | | | For changes, see: https://github.com/python-poetry/poetry-core/blob/main/CHANGELOG.md#132---2022-10-07 * Update license checksums to reflect current path and vendored components. * Licenses remain Apache-2.0 & BSD-2-Clause & MIT License-Update: Vendored licenses changed path; current components (From OE-Core rev: d810e4ea3b8b9769aadd02a931c5825c867fc779) Signed-off-by: Tim Orling <tim.orling@konsulko.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
generated by cgit v1.2.3-54-g00ecf (git 2.39.0) at 2025-08-07 21:19:34 +0000