| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| ... | |
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Changelog:
==========
API changes:
-------------
+ Added new function MHD_get_version_bin().
Improvements and enhancements:
-------------------------------
* Digest Auth: changed algorithm identifiers in server generated
headers from "md5" / "sha-256" to "MD5" / "SHA-256" to better match
RFC (while clients should use caseless matching).
* Improved Base64 decoding by new implementation with robust input
data validation checks.
* Improved configure for cross-compiling, for better compatibility
with POSIX and for better compatibility with the latest compiler
versions.
* New internal tests: for Base64 decoding, Basic Auth and folded
headers.
* Supported new libcurl API in tests to mute deprecation warnings.
* Supported ARM and ARM64 for VC compilers.
Functionality changes:
------------------------
* any negative number returned by response data generation callback
function is treated as an error. Previously negative values except
predefined error codes could produce undefined behaviour.
* Added handling of "DEBUG" preprocessor macro as an alias of "_DEBUG".
Fixes:
---------
# Fixed functionality with blocking sockets.
# Fixed very inefficient data pumping for upgraded TLS connections.
# Fixed processing of folded headers in the requests.
# Fixed data races when closing upgraded connection.
# Removed duplication of "Connection: upgrade" header.
# Digest auth: fixed thread sync to avoid "stale hash" results.
# Fixed harmless unwanted extra data processing resulting in triggering
of the assert.
# Fixed tests for LTO.
# Removed removed non-portable functions in examples.
# Fixed delayed call of connection notification callback in
thread-per-connection mode.
# Fixed Address Sanitizer unpoison of memory when memory pool is
destroyed. This fixed periodic ASAN error when used for a long time
with the sanitizer.
# Fixed compiler warnings in library code, examples, tests and configure
checks.
# New TLS certificates for test-suite: all with SAN fields and SHA-256
hash.
# Tests: fixed tests on Darwin 22.x (Ventura).
# Tests: redesigned one tests group to avoid stress-testing of the OS.
(From OE-Core rev: bdc28b0262ad8a57d56f029b55b338478afb3a07)
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
| |
Changelog:
* Adding missing man pages to the tar release file.
(From OE-Core rev: 0f6da8601fd4d992550e8afe7b09ba7c491250fd)
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Changelog:
=========
* A new dictionary method remove_from_session() allows providers to stay
in sync with Enchant's personal wordlist, by removing as well as adding
words in the spelling session.
* The public API enchant_dict_store_replacement() is deprecated, and no
longer does anything. It only previously had an effect with the Aspell
provider.
* The APIs enchant_dict_add() and enchant_dict_remove() also respectively
add the word to the session or remove it.
(From OE-Core rev: c21b5b930430f5fbf47866380f94c088dd809089)
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Changelog:
===========
* New option -O, --to-stdout to write to standard output.
* New option -e, --add-eol to add a line break to the last
line if there isn't one. Option --no-add-eol disables the
feature.
(From OE-Core rev: a81874c8898ccd33c0c20260f2bfe9bcb2d75d69)
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Changelog:
===========
- lib1560: verify more scheme guessing
- page-header: minor wording polish in the URL segment
- page-header: mention curl version and how to figure out current release
- RELEASE-NOTES: synced
- configure: without pkg-config and no custom path, use -lnghttp2
- curl: cache the --trace-time value for a second
- libcurl.m4: remove trailing 'dnl' that causes this to break autoconf
- http3: send EOF indicator early as possible
- scripts/contri*sh: no longer grep -v ' '
- cf-socket: restore Curl_sock_assign_addr()
- libssh: when keyboard-interactive auth fails, try password
- configure: fix build with arbitrary CC and LD_LIBRARY_PATH
- urlapi: remove superfluous host name check
- http2: fix EOF handling on uploads with auth negotiation
- lib: remove unused functions, make single-use static
- scripts/singleuse.pl: add more API calls
- configure: quote the assignments for run-compiler
- misc: fix spelling mistakes
(From OE-Core rev: db5773bf9c5e78affaaf0a21422bad07560eaa86)
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Fixes:
https://nvd.nist.gov/vuln/detail/CVE-2023-2609
d1ae836 patch 9.0.1531: crash when register contents ends up being invalid
https://nvd.nist.gov/vuln/detail/CVE-2023-2610
ab9a2d8 patch 9.0.1532: crash when expanding "~" in substitute causes very long text
(From OE-Core rev: 1e4b4dfb4145bc00eb6937b5f54a41170e9a5b4c)
Signed-off-by: Trevor Gamblin <tgamblin@baylibre.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
| |
This reverts commit cfc42fdabb3f12eb4ac5069a549ba5699385dfdc.
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
| |
This CVE is applicable to "SQLite3 bindings for Node.js" only.
References:
https://nvd.nist.gov/vuln/detail/CVE-2022-21227
(From OE-Core rev: cfc42fdabb3f12eb4ac5069a549ba5699385dfdc)
Signed-off-by: Sanjay Chitroda <schitrod@cisco.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
| |
This is a bugfix only release. Release notes:
https://curl.se/changes.html#8_1_1
(From OE-Core rev: 833191171181f11802a3e0ae8b91b8ca5892b067)
Signed-off-by: Robert Joslyn <robert.joslyn@redrectangle.org>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
| |
This reverts commit 8800976e79d65956218ab462d9644d0661579301.
As per NVD database "ghost:sqlite3" product is specific to "node.js"
CVEs reported against above products are not applicable to us.
(From OE-Core rev: 7616b1d28cb119adb471b5268a77ec61d5dd555c)
Signed-off-by: Sanjay Chitroda <schitrod@cisco.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
| |
There's no need to use a sed to get the output we need, autotest can do
that itself if told.
(From OE-Core rev: fa74ffac2e9ecf1b30fd893a21a7d2f8531e558d)
Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
libnl builds lots of test-* binaries but these are for manual testing
purposes. Instead, the test suite is entirely contained in the
check-all binary.
Clean up the compilation by simply building check-all, and install it
with libtool so the binary is installed correctly.
There is no need to RDEPEND on libcheck as that happens automatically,
and the rpath workaround appears to be obsolete.
Finally rewrite run-ptest to invoke the test directly, and use the new
automake-style output that has been added to libcheck.
(From OE-Core rev: d500c46754ad8e8e3736c64b5b2e29039019fe88)
Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
| |
(From OE-Core rev: e1bf4c24697c72e9d3f58d6fa6f6f0d6fde982f6)
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
| |
(From OE-Core rev: f7f8b47b17364cff94697b025671eacf5037e19e)
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
| |
(From OE-Core rev: 963d4ce6fdd157e27b03d6b319dde3b0eac3565f)
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
| |
This is a feature and bugfix release. Release notes are available at:
https://curl.se/changes.html#8_1_0
(From OE-Core rev: b3265b703590a9e2a7dd6772c5ca0a72b21d7567)
Signed-off-by: Robert Joslyn <robert.joslyn@redrectangle.org>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Changelog:
==========
- Translation updates for ISO 3166-1
- Translation updates for ISO 3166-3
- Translation updates for ISO 639-2
- Translation updates for ISO 3166-1
- Translation updates for ISO 3166-2
- Translation updates for ISO 3166-3
- Translation updates for ISO 639-2
- Translation updates for ISO 639-3
- Translation updates for ISO 639-5
- Translation updates for ISO 4217
- Translation updates for ISO 15924
* ISO 3166-2: Fix wrong Spanish translation
(From OE-Core rev: 355f2f9fe8a1e6c5e78f136cb3ed77c9004fb75c)
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
autoconf-archive is a collection of m4 autoconf macros needed at
build-time, and autoconf-archive-native is a suitable provider as there
is nothing in the recipe that needs to be cross-compiled.
Also if we use DEPENDS=autoconf-archive then the recipe's -dev package
ends up RDEPENDing on autoconf-archive, which isn't correct.
Universally change any DEPENDS on autoconf-archive to the -native form,
and add any missing dependencies that were implicit before.
(From OE-Core rev: 571132415ea7fe2d91c62948f2b6aa553eafa83d)
Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
| |
This was made obsoleten in 3.5.0 when crywrap was removed from the
GnuTLS source tree.
(From OE-Core rev: b49dc6f29533ab7debd299419c8b891e106f5d9d)
Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
| |
Don't always build the tests in do_compile, use do_compile_ptest so they
are only built when needed.
(From OE-Core rev: 5f4b10a3361e273d22bc880b4127eb53291be47d)
Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
| |
Instead of using an internal ASN.1 parser, re-use libtasn1 from the
system by default.
(From OE-Core rev: db20ffc4ffb5e734258f0a9f9d1fb72d1f0df490)
Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
| |
GnuTLS has optional support for certificate compression. These are not
widely enabled in other distributions and were previously disabled in
standard builds, so don't enable them by default.
(From OE-Core rev: d22a406e7ca3018e0d1c0a7b1b6254c2aba6faba)
Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
DANE (DNS-based Authentication of Named Entities) allows certificates to
be bound to DNS entries.
This requires unbound which is not part of oe-core. Add a PACKAGECONFIG
but disable by default.
(From OE-Core rev: cfb328b2a7c35a8c1e0dd7cd8c7552a0837db206)
Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
| |
Fixes: https://nvd.nist.gov/vuln/detail/CVE-2023-2426
caf642c25 patch 9.0.1499: using uninitialized memory with fuzzy matching
(From OE-Core rev: 4f9a8df5aca99d0a5c2d2346b27ce7be08e7896c)
Signed-off-by: Randy MacLeod <Randy.MacLeod@windriver.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
| |
License-Update: copyright years
(From OE-Core rev: 6f0c3844e3ced175416daac645179a3044df6bcf)
Signed-off-by: Alexander Kanavin <alex@linutronix.de>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
| |
(From OE-Core rev: fc7a39d1a16b424ab80f7463c2e1258e6ea3ab38)
Signed-off-by: Alexander Kanavin <alex@linutronix.de>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
| |
License-update: file relocated, formatting.
(From OE-Core rev: 269e7ee642b8e1fb2499dd6df210c6224ca39894)
Signed-off-by: Alexander Kanavin <alex@linutronix.de>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
| |
Rebase patches.
(From OE-Core rev: cb6185c52ed0c4b035715f351f5aea563bc99047)
Signed-off-by: Alexander Kanavin <alex@linutronix.de>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
| |
Both 'sqlite' and 'sqlite3' are used in NVD database.
(From OE-Core rev: 8800976e79d65956218ab462d9644d0661579301)
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
| |
(From OE-Core rev: c5bbceb78a2ebf132b5d20baabf2b5e631c6556e)
(From OE-Core rev: c7aa8d43835a73dab23ffc057c4d14470823a4b6)
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
BSD-4-Clause is only applicable to the {PN}-doc package as when I
check for the source code I find below files which only uses the
license BSD-4-Clause
~/sources/libbsd$ grep -rl "All advertising materials mentioning features or use of this software" *|grep -v \.1|grep -v \.5|grep -v \.8 | sort
COPYING
man/arc4random.3bsd
~/sources/libbsd$ grep -rnB5 "BSD-4"
COPYING-9-Files:
COPYING-10- man/arc4random.3bsd
COPYING-11-Copyright:
COPYING-12- Copyright 1997 Niels Provos <provos@physnet.uni-hamburg.de>
COPYING-13- All rights reserved.
COPYING:14:License: BSD-4-clause-Niels-Provos
So other all PACKAGES should not contain the BSD-4-Clause
(From OE-Core rev: fe57f5ec7fa46f595a302275ce3063d53634c00e)
Signed-off-by: Ranjitsinh Rathod <ranjitsinh.rathod@kpit.com>
Signed-off-by: Ranjitsinh Rathod <ranjitsinhrathod1991@gmail.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
| |
The recommendation from server maintainers is that the https protocol
is both faster and more reliable than the dedicated git protocol at this point.
Switch to it where possible.
(From OE-Core rev: 139102a73d4151f4748b4a861bd4ab28dda7dab7)
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
| |
This is required to nullify whats passed from cached site file
musl-common
(From OE-Core rev: 9357ef5dd9ba8bc9e906aab3630c9e2bdb14b174)
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Add a ptest for lz4.
- It is taking around 9 min to execute with kvm, so added it to PTEST_SLOW.
- It contains one case: test_frame.
- Below is the run log:
START: ptest-runner
2023-04-06T00:36
BEGIN: /usr/lib/lz4/ptest
Starting lz4frame tester (64-bits, 1.9.4)
Seed = 7314
Basic tests completed
All tests completed
PASS: lz4/test_frame
DURATION: 573
END: /usr/lib/lz4/ptest
2023-04-06T00:45
STOP: ptest-runner
TOTAL: 1 FAIL: 0
(From OE-Core rev: 2ee144a0bfb88823bfa788697bb7afc9a572c413)
Signed-off-by: Qiu Tingting <qiutt@fujitsu.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
| |
misc.test fails on musl due to nftw order, ignore it for now
(From OE-Core rev: 91168c7ddb06454106fa15bd26e7dc70db6eefd0)
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Luca Ceresoli <luca.ceresoli@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
the error message in musl based systems is
EXPECTED: Operation not supported
RECIEVED: Not supported
The test is then marked as failed due to this.
Ignore this test on musl
(From OE-Core rev: b29ce2f571fa38646e5d2000a502eed040cae1c0)
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Luca Ceresoli <luca.ceresoli@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
| |
(From OE-Core rev: 45a8bb6e4676899d40525e7d5ad1c1ddefee3185)
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Luca Ceresoli <luca.ceresoli@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
| |
Changelog:
https://www.boost.org/users/history/version_1_82_0.html
(From OE-Core rev: 9d9042f58f6bbb7d9f0441436556ceb887887866)
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Luca Ceresoli <luca.ceresoli@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
| |
Bug fixes
=========
config: return GIT_ENOTFOUND for missing programdata
(From OE-Core rev: 9edb13d7a7d79423c93f01d9e112193dd7b1be21)
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Luca Ceresoli <luca.ceresoli@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
| |
DESCRIPTION is optional for now; writing good component descriptions
is not easy (but appreciated).
(From OE-Core rev: 9ce4f9248db3db70732d886a18ea355f321bd49d)
Signed-off-by: Alexander Kanavin <alex@linutronix.de>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
| |
(From OE-Core rev: b6c475ea37660859b6ae91ac2e5fbf674f7ccfde)
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
| |
(From OE-Core rev: 351ceddc01b33d2ef34c3e10d1e17436854514d8)
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Changelog:
==========
* Fix possible crash in SoupContentSniffer
* Fix socket leak
* Add missing annotation to soup_header_g_string_append_param_quoted()
* Fix regression in 'SoupCookieJar' not handling valid Secure cookies
* Fix crash when skipping HTTP/1 response stream with chunked enconding
* Change Session to unqueue finished items earlier without an extra MainContext iteration
* Add 'SoupMessage::got-body-data' signal to monitor progress of reads
* Add 'soup_session_send_and_splice()' and 'soup_session_send_and_splice_async()' convenience APIs
* Add 'soup_message_set_force_http1()' and 'soup_message_get_force_http1()' APIs
* Change 'soup_cookie_copy()' to not retain default ports
* Ensure 'SoupServerMessage' socket is available in websocket handler
* Fix 'soup_message_new()' not erroring when URI has an empty host
* Fix thread-saftey issues in 'SoupConnectionAuth'
* Fix various connection leaks
* Fix the possibility of sending invalid empty 'Sec-WebSocket-Protocol' header
* Fix IO errors not being handled on 'CONNECT' messages
* Numerous improvements to cookies:
* Add support for cookie prefixes ('__Secure-' and '__Host-')
* Reject cookies with control characters in name or value
* Reject 'SameSite=None' cookies without 'Secure'
* Change 'soup_cookie_parse()' to be more strict about what is considered whitespace
* Change default SameSite value to 'Lax'
* Fix 'soup_cookie_equal()' with 'NULL' path
(From OE-Core rev: c98d4d5cc7e1fd1f6d81e2bf2d7629a83bc9a63b)
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Changelog:
===========
*) apr-1-config: Fix crosscompiling detection in apr-1-config. PR 66510
*) configure: Add --enable-sysv-shm to use SysV shared memory (shmget) if
available.
*) apr_socket_sendfile: Use WSAIoctl() to get TransmitFile function
pointer on Windows.
*) apr_dir_read: Do not request short file names on Windows 7
and later.
*) apr_file_gets: Optimize for buffered files on Windows.
*) Fix a deadlock when writing to locked files opened with APR_FOPEN_APPEND
on Windows. PR 50058.
*) Don't seek to the end when opening files with APR_FOPEN_APPEND on Windows.
*) apr_file_write: Optimize large writes to buffered files on Windows.
*) apr_file_write: Optimize large reads from buffered files on Windows.
(From OE-Core rev: 1bee38556441fbff9a4e39942271001ec620416b)
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
What's new in at-spi2-core 2.48.0:
* Add a "atk-only" build option. This allows atk to be built without libdbus
installed, but it does not build libatspi or the atk bridge.
* Fix some typos in the documentation.
What's new in at-spi2-core 2.47.90:
* Downgrade meson requirement to 0.63.
* at-spi-dbus-bus service: set stop timeout to 5s
* Fix possible crash in screen_reader_signal_watcher.
What's new in at-spi2-core 2.47.1:
* The meson options -Dx11 and -Dintrospection are now implemented with
meson features - https://mesonbuild.com/Build-options.html#features
Instead of accepting values of "yes/no/auto", they take
"enabled/disabled/auto". Please change your build scripts
accordingly if you use these options.
* Use gi-docgen to generate documentation.
* Register key grabs using the focused window, rather than the root window.
This should prevent the window from losing focus when a key grab is used.
* atk-adaptor: Handle sockets in GetChildren.
* Improve documentation of the dbus interfaces.
* Various code clean-ups. Some unused code has been removed.
(From OE-Core rev: c589c87a8caef0afbc731c219fe713ba970a2055)
Signed-off-by: Markus Volk <f_l_k@t-online.de>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
| |
When gobject-introspection feature is disabled, glib-2.0-native package
dependency is not pulled in but vte has a hard dependency on it
(do_configure fails due to missing glib-mkenums).
(From OE-Core rev: 686e0cb93f9f6ef663243e62c7a8cc43ca1dcd3a)
Signed-off-by: Petr Kubizňák <kubiznak@2n.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
| |
When gobject-introspection feature is disabled, glib-2.0-native package
dependency is not pulled in but at-spi2-core has a hard dependency on it
(do_configure fails due to missing glib-genmarshal).
(From OE-Core rev: 954411393a50b8d09cc42f1098e54193d6b19e1d)
Signed-off-by: Petr Kubizňák <kubiznak@2n.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
| |
LIB_INSTALL_DIR was removed in libgit2 1.0 when they moved to using
GNUInstallDirs.
BUILD_CLAR is now BUILD_TESTS as of libgit2 1.4.
(From OE-Core rev: 9d321a4abf2ee35647293f5ec7e4c354974b45c6)
Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
| |
Fixes: CVE-2023-1127, CVE-2023-1170, CVE-2023-1175,
CVE-2023-1264, CVE-2023-1355
(From OE-Core rev: 2415072c3800feb164dd4d1fa0b56bd141a5cbd8)
Signed-off-by: Randy MacLeod <Randy.MacLeod@windriver.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
| |
(From OE-Core rev: 47a43ea98dc6cae67730866c47090900572ea6b0)
Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
