meta-openembedded

mirror of git://git.openembedded.org/meta-openembedded synced 2026-01-01 13:58:06 +00:00

Author	SHA1	Message	Date
Jiaying Song	59d381adca	python3-aiohttp: fix CVE-2025-53643 AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.12.14, the Python parser is vulnerable to a request smuggling vulnerability due to not parsing trailer sections of an HTTP request. If a pure Python version of aiohttp is installed (i.e. without the usual C extensions) or AIOHTTP_NO_EXTENSIONS is enabled, then an attacker may be able to execute a request smuggling attack to bypass certain firewalls or proxy protections. Version 3.12.14 contains a patch for this issue. References: https://nvd.nist.gov/vuln/detail/CVE-2025-53643 Signed-off-by: Jiaying Song <jiaying.song.cn@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>	2025-07-27 14:35:10 -04:00
Praveen Kumar	0883565b5d	python3-tornado: upgrade 6.4.2 -> 6.5 Changelog: https://github.com/tornadoweb/tornado/releases/tag/v6.5.0 Signed-off-by: Praveen Kumar <praveen.kumar@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>	2025-07-27 14:35:10 -04:00
Jiaying Song	32200384c7	python3-pycares: fix CVE-2025-48945 pycares is a Python module which provides an interface to c-ares. c-ares is a C library that performs DNS requests and name resolutions asynchronously. Prior to version 4.9.0, pycares is vulnerable to a use-after-free condition that occurs when a Channel object is garbage collected while DNS queries are still pending. This results in a fatal Python error and interpreter crash. The vulnerability has been fixed in pycares 4.9.0 by implementing a safe channel destruction mechanism. References: https://nvd.nist.gov/vuln/detail/CVE-2025-48945 Signed-off-by: Jiaying Song <jiaying.song.cn@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>	2025-07-06 19:23:22 -04:00
Yoann Congal	d44ba8e991	python3-evdev: Fix buildpaths errors and reproducibility Add a submitted patch to support the reproducible generation of intermediate file ecodes.c, then, use it to fix the buildpaths errors. Signed-off-by: Yoann Congal <yoann.congal@smile.fr> Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>	2025-07-06 19:23:22 -04:00
Yoann Congal	af2a4f072e	python3-evdev: Use Yocto kernel headers instead of host's Commit `01ebfecf1c` ("python3-evdev: switch to PEP-517 build backend") did not update the way build arguments are passed to the build making them unused. In python3-evdev case that meant that the build used host kernel headers instead of Yocto's. When host's and Yocto's headers were different (currently the case on Debian 12 as seen on AB[0]), that triggered: \| src/evdev/ecodes.c:542:29: error: 'KEY_LINK_PHONE' undeclared (first use in this function); did you mean 'KEY_PICKUP_PHONE'? \| 542 \| PyModule_AddIntMacro(m, KEY_LINK_PHONE); \| \| ^~~~~~~~~~~~~~ [...] ERROR: Task (.../../../layers/meta-openembedded/meta-python/recipes-devtools/python/python3-evdev_1.9.1.bb:do_compile) failed with exit code '1' To fix this, use PEP517_BUILD_OPTS with the working (but weird looking) escaping. Now that correct headers are used, their paths end up in the ecode.c file which lead to a buildpaths error, skip the check for this patch. This will be fixed in a following patch. [0]: https://autobuilder.yoctoproject.org/valkyrie/#/builders/87/builds/40/steps/40/logs/stdio Signed-off-by: Yoann Congal <yoann.congal@smile.fr> Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>	2025-07-06 19:23:22 -04:00
Richard Leitner	14a64afb38	python3-can: upgrade 4.4.2 -> 4.5.0 python3-can 4.4.y requires msgpack~=1.0.0, but openembedded-core versions newer than scarthgap provide msgpack 1.1.0 [1], causing "pip check" to fail with the following error: python-can 4.4.2 has requirement msgpack~=1.0.0; platform_system != "Windows", but you have msgpack 1.1.0. This patch resolves the issue by updating python3-can to 4.5.0. [1] https://layers.openembedded.org/layerindex/recipe/66997/ (cherry picked from commit `f048d118f2`) Cc: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Leitner <dev@g0hl1n.net> Signed-off-by: Armin Kuster <akuster808@gmail.com>	2025-07-06 19:23:22 -04:00
Richard Leitner	0a047efb67	python3-moteus: Upgrade 0.3.79 -> 0.3.88 python3-moteus <= 0.3.87 requires numpy<2 [1], but openembedded-core versions newer than styhead provide numpy 2.x [2], causing "pip check" to fail with the following error: moteus 0.3.87 has requirement numpy<2, but you have numpy 2.3.0. This patch resolves the issue by updating python3-moteus to 0.3.88. [1] https://github.com/mjbots/moteus/issues/89 [2] https://layers.openembedded.org/layerindex/recipe/51338/ (cherry picked from commit `9af65f1680`) (cherry picked from commit `7414d1147e`) (cherry picked from commit `980f7e5da4`) (cherry picked from commit `c2c4428c31`) (all cherry-picks were squashed to this commit) Cc: Leon Anavi <leon.anavi@konsulko.com> Cc: Wang Mingyu <wangmy@fujitsu.com> Cc: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Leitner <dev@g0hl1n.net> Signed-off-by: Armin Kuster <akuster808@gmail.com>	2025-07-06 19:23:22 -04:00
Martin Jansa	32d22685ec	python3-posix-ipc: improve build_support * fixes: https://lists.openembedded.org/g/openembedded-devel/message/117255 DEBUG: Executing shell function do_compile * Getting build dependencies for wheel... /usr/lib/ld-linux-aarch64.so.1: No such file or directory Traceback (most recent call last): File "TOPDIR/BUILD/work/raspberrypi4_64-webos-linux/python3-posix-ipc/1.2.0/recipe-sysroot-native/usr/lib/python3.13/site-packages/pyproject_hooks/_in_process/_in_process.py", line 389, in <module> main() ~~~~^^ File "TOPDIR/BUILD/work/raspberrypi4_64-webos-linux/python3-posix-ipc/1.2.0/recipe-sysroot-native/usr/lib/python3.13/site-packages/pyproject_hooks/_in_process/_in_process.py", line 373, in main json_out["return_val"] = hook(**hook_input["kwargs"]) ~~~~^^^^^^^^^^^^^^^^^^^^^^^^ File "TOPDIR/BUILD/work/raspberrypi4_64-webos-linux/python3-posix-ipc/1.2.0/recipe-sysroot-native/usr/lib/python3.13/site-packages/pyproject_hooks/_in_process/_in_process.py", line 143, in get_requires_for_build_wheel return hook(config_settings) File "TOPDIR/BUILD/work/raspberrypi4_64-webos-linux/python3-posix-ipc/1.2.0/recipe-sysroot-native/usr/lib/python3.13/site-packages/setuptools/build_meta.py", line 334, in get_requires_for_build_wheel return self._get_build_requires(config_settings, requirements=[]) ~~~~~~~~~~~~~~~~~~~~~~~~^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ File "TOPDIR/BUILD/work/raspberrypi4_64-webos-linux/python3-posix-ipc/1.2.0/recipe-sysroot-native/usr/lib/python3.13/site-packages/setuptools/build_meta.py", line 304, in _get_build_requires self.run_setup() ~~~~~~~~~~~~~~^^ File "TOPDIR/BUILD/work/raspberrypi4_64-webos-linux/python3-posix-ipc/1.2.0/recipe-sysroot-native/usr/lib/python3.13/site-packages/setuptools/build_meta.py", line 320, in run_setup exec(code, locals()) ~~~~^^^^^^^^^^^^^^^^ File "<string>", line 23, in <module> File "TOPDIR/BUILD/work/raspberrypi4_64-webos-linux/python3-posix-ipc/1.2.0/posix_ipc-1.2.0/build_support/discover_system_info.py", line 409, in discover d["QUEUE_PRIORITY_MAX"] = sniff_mq_prio_max() ~~~~~~~~~~~~~~~~~^^ File "TOPDIR/BUILD/work/raspberrypi4_64-webos-linux/python3-posix-ipc/1.2.0/posix_ipc-1.2.0/build_support/discover_system_info.py", line 238, in sniff_mq_prio_max if max_priority < 0: ^^^^^^^^^^^^^^^^ TypeError: '<' not supported between instances of 'str' and 'int' ERROR Backend subprocess exited when trying to invoke get_requires_for_build_wheel WARNING: TOPDIR/BUILD/work/raspberrypi4_64-webos-linux/python3-posix-ipc/1.2.0/temp/run.do_compile.2736023:168 exit 1 from 'nativepython3 -m build --no-isolation --wheel --outdir TOPDIR/BUILD/work/raspberrypi4_64-webos-linux/python3-posix-ipc/1.2.0/dist TOPDIR/BUILD/work/raspberrypi4_64-webos-linux/python3-posix-ipc/1.2.0/posix_ipc-1.2.0' WARNING: Backtrace (BB generated script): On some hosts. Signed-off-by: Martin Jansa <martin.jansa@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>	2025-06-20 10:46:49 -04:00
Khem Raj	bb1adff2ba	python3-posix-ipc: switch to PEP-517 build backend Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Guðni Már Gilbert <gudni.m.g@gmail.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>	2025-05-17 11:56:50 -06:00
Wang Mingyu	5121b8b603	python3-posix-ipc: upgrade 1.1.1 -> 1.2.0 0001-Use-default-cc-from-environment-variable.patch removed since it's not available in 1.2.0 License-Update: Reorg and rename files; add pyproject.toml Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Guðni Már Gilbert <gudni.m.g@gmail.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>	2025-05-17 11:56:50 -06:00
Changqing Li	a5e0aa7ef7	python3-pyyaml-include: update SRCREV * Current SRCREV is v2.2a1, update to v2.2 * pyyaml-include use setuptools_scm to get package version, but it not works well with git shallow clone, and will return a invalid version like 0.1.dev1+gc5be2b7, make pyyaml-include is installed to a wrong path: /usr/lib/python3.13/site-packages/pyyaml_include-0.1.dev1+gc5be2b7.dist-info, and also version in PKG-INFO is wrong. export SETUPTOOLS_SCM_PRETEND_VERSION to get correct package version. Signed-off-by: Changqing Li <changqing.li@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>	2025-05-17 11:56:50 -06:00
Armin Kuster	0d2d2d193a	meta-openemnedded: Add myself as walnascar maintainer Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-04-16 18:20:05 -07:00
Mingli Yu	600c5d6a3a	python3-pykickstart: Upgrade 3.48 -> 3.62 License-update: Remove control characters from license [1]. Remove one backported patch. Changelog: https://github.com/pykickstart/pykickstart/releases [1] `6f35a9eeda` Signed-off-by: Mingli Yu <mingli.yu@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-04-10 08:31:03 -07:00
Khem Raj	afced4ecca	Revert "python3-snagboot: upgrade 2.2 -> 2.3" This reverts commit `4916f4b939`.	2025-04-10 08:31:02 -07:00
Khem Raj	b8ea21f860	python3-multidict: Add ptest missing rdep on python3-objgraph Newer version needs the new module objgraph to run tests Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-04-08 11:46:18 -07:00
Khem Raj	a8faf50d38	python3-objgraph: Add recipe Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-04-08 11:46:18 -07:00
Khem Raj	c066b80237	python3-arrow: Ignore America/Coyhaique ptest America/Coyhaique has changed recently and unless the tzdata is sync'ed this will fail, so disable for now. Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-04-08 08:17:08 -07:00
Wang Mingyu	42364e574b	python3-zeroconf: upgrade 0.146.1 -> 0.146.3 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-04-07 12:21:22 -07:00
Wang Mingyu	07f555e114	python3-virtualenv: upgrade 20.29.3 -> 20.30.0 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-04-07 12:21:21 -07:00
Wang Mingyu	f28564870a	python3-termcolor: upgrade 2.5.0 -> 3.0.1 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-04-07 12:21:21 -07:00
Wang Mingyu	4916f4b939	python3-snagboot: upgrade 2.2 -> 2.3 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-04-07 12:21:21 -07:00
Wang Mingyu	7aeb49e0ef	python3-rich: upgrade 13.9.4 -> 14.0.0 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-04-07 12:21:21 -07:00
Wang Mingyu	ff7445e016	python3-qrcode: upgrade 8.0 -> 8.1 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-04-07 12:21:21 -07:00
Wang Mingyu	62b2e5b3ef	python3-pyroute2: upgrade 0.8.1 -> 0.9.1 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-04-07 12:21:21 -07:00
Wang Mingyu	83f5355a3d	python3-pymisp: upgrade 2.5.9 -> 2.5.10 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-04-07 12:21:20 -07:00
Wang Mingyu	d09dcce7da	python3-pyflakes: upgrade 3.3.1 -> 3.3.2 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-04-07 12:21:20 -07:00
Wang Mingyu	9c60097176	python3-pycares: upgrade 4.5.0 -> 4.6.0 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-04-07 12:21:20 -07:00
Wang Mingyu	318b1313fe	python3-pdm: upgrade 2.22.4 -> 2.23.0 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-04-07 12:21:20 -07:00
Wang Mingyu	a599093e79	python3-multidict: upgrade 6.2.0 -> 6.3.2 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-04-07 12:21:20 -07:00
Wang Mingyu	eff048d951	python3-moteus: upgrade 0.3.78 -> 0.3.79 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-04-07 12:21:20 -07:00
Wang Mingyu	e0810c5d20	python3-lz4: upgrade 4.4.3 -> 4.4.4 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-04-07 12:21:19 -07:00
Wang Mingyu	db0e44cfb2	python3-inline-snapshot: upgrade 0.21.1 -> 0.22.0 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-04-07 12:21:19 -07:00
Wang Mingyu	cc88be734b	python3-fsspec: upgrade 2025.3.0 -> 2025.3.2 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-04-07 12:21:19 -07:00
Wang Mingyu	b8705f119f	python3-dbus-fast: upgrade 2.43.0 -> 2.44.1 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-04-07 12:21:19 -07:00
Wang Mingyu	b0e9c1a2fd	python3-coverage: upgrade 7.7.1 -> 7.8.0 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-04-07 12:21:19 -07:00
Wang Mingyu	4c93b86576	python3-bitarray: upgrade 3.2.0 -> 3.3.1 License-Update: License changed from PSF to PSF-2.0 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-04-07 12:21:19 -07:00
Wang Mingyu	bccf9eed76	python3-argcomplete: upgrade 3.6.1 -> 3.6.2 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-04-07 12:21:19 -07:00
Khem Raj	63eb38b430	python3-greenlet: Fix build on RISCV32 Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-04-06 21:15:01 -07:00
Khem Raj	67d9edf991	python3-lief: Skip to build on riscv32 It needs pydantic during build \| ERROR Missing dependencies: \| pydantic>=2.8.2 \| pydantic-core==2.33.0 Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-04-06 21:15:00 -07:00
Khem Raj	6a3128f17b	pydantic: Mark host incompatible on RISCV32 pydantic-core needs to be ported to work on rv32 Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-04-06 18:46:25 -07:00
Khem Raj	ed91d5280b	python3-pydantic: Upgrade to 2.11.2 Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-04-06 18:46:25 -07:00
Khem Raj	2b6f2c163b	python3-pydantic-core: Upgrade to 2.33.1 Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-04-06 17:43:18 -07:00
Tom Geelen	d8a068a428	python3-sentry-sdk: upgrade 1.45.0 -> 1.45.1 Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-04-06 08:47:56 -07:00
Tom Geelen	4e9de6f77c	python3-aiohttp: upgrade 3.11.14 -> 3.11.16 Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-04-06 08:47:56 -07:00
Soumya Sambu	9e90eac533	python3-django: upgrade 5.0.11 -> 5.0.13 Includes fix for CVE-2025-26699 Release Notes: https://docs.djangoproject.com/en/dev/releases/5.0.12/ https://docs.djangoproject.com/en/dev/releases/5.0.13/ Signed-off-by: Soumya Sambu <soumya.sambu@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-04-04 19:18:48 -07:00
Soumya Sambu	54f5df8907	python3-django: upgrade 4.2.18 -> 4.2.20 Includes fix for CVE-2025-26699 Release Notes: https://docs.djangoproject.com/en/dev/releases/4.2.19/ https://docs.djangoproject.com/en/dev/releases/4.2.20/ Signed-off-by: Soumya Sambu <soumya.sambu@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-04-04 19:18:48 -07:00
Khem Raj	25f64b605c	python3-pychromecast: Upgrade to 14.0.7 Apply a backport to fix build with setuptools 0.78.x Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-04-04 19:18:48 -07:00
Khem Raj	8e1979dfa3	python3-breathe: Inherit ptest-python-pytest instead of ptest This eliminates more boiler plate code and add needed depednecies for ptest package Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-04-02 09:27:44 -07:00
Kai Kang	0a4e093940	python-blivet: 3.9.2 -> 3.12.1 Upgrade python-blivet from 3.9.2 to 3.12.1: * rebase 0002-run_program-support-timeout.patch Signed-off-by: Kai Kang <kai.kang@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-04-02 07:29:32 -07:00
Mingli Yu	39c914c41f	python3-pydot: Upgrade 2.0.0 -> 3.0.4 Switch to use python_setuptools_build_meta after the commit [1] introduced in the new version. Changelog: https://github.com/pydot/pydot/blob/main/ChangeLog [1] `d1627c95cb` Signed-off-by: Mingli Yu <mingli.yu@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-04-02 07:27:48 -07:00

1 2 3 4 5 ...

8470 Commits