Upgrade to release 6.7.0:
- Updated tests and added CI for CPython 3.14
From 6.6.4:
- Fixed MutliDict & CIMultiDict memory leak when deleting values
or clearing them
- The type preciseness coverage report generated by MyPy is now
uploaded to Coveralls and will not be included in the Codecov
views going forward
- Added memory leak test for popping or deleting attributes from
a multidict to prevent future issues or bogus claims
Signed-off-by: Leon Anavi <leon.anavi@konsulko.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
1. Changelog:
https://github.com/php/php-src/releases/tag/php-8.5.0
2. Remove opcache-related options as it was not in 8.5.0.
3. Fix FILES:${PN}-fpm to resolve following error:
ERROR: php-8.5.0-r0 do_package: QA Issue: php: Files/directories were installed but not shipped in any package:
/usr/share/php
/usr/share/php/fpm
/usr/share/php/fpm/status.html
Please set FILES such that these items are packaged. Alternatively if they are unneeded, avoid installing them or delete them within do_install.
Signed-off-by: Liu Yiding <liuyd.fnst@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
It should have been done when the recipe was dropped, but it was missed.
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Refine the CVE_STATUS description for CVE-2022-0543 to provide
a more precise explanation of this Debian-specific vulnerability.
The vulnerability originates from Debian's packaging methodology,
which loads system-wide Lua libraries (lua-cjson, lua-cmsgpack),
enabling Lua sandbox escape. Upstream Redis builds, including
those built by Yocto/OpenEmbedded, utilize embedded Lua from the
deps/ directory and are therefore not affected by this issue.
It is also fixed in Debian with this commit:
c7fd665150
References:
- https://www.ubercomp.com/posts/2022-01-20_redis_on_debian_rce
- https://nvd.nist.gov/vuln/detail/CVE-2022-0543
Signed-off-by: Deepak Rathore <deeratho@cisco.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
The recipe splits python code to nftables-python package, however
setuptools classes add the dependency to main package.
Since nftables-python package already has python3-core explicit
dependency, remove it from the main package.
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Upgrade to release 3.1.2:
- Fix pickling of abstract base classes containing type annotations
for Python 3.14.
License-Update: Use file LICENSE
Signed-off-by: Leon Anavi <leon.anavi@konsulko.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog [1]:
* Fixes the following CVEs
CVE-2025-59391
CVE-2025-65494
CVE-2025-65495
CVE-2025-65496
CVE-2025-65497
CVE-2025-65498
CVE-2025-65499
CVE-2025-65500
CVE-2025-65501
* CVE-2025-50518 not fixed as user application error.
* Support for Mbed TLS 3.6.3.
* Support for RIOT update changes.
* Fixes for later CI environment builds.
* Critical reported bugs fixed.
Add tag to SRC_URI for hash verification.
License-Update: copyright years refreshed [2]
[1] https://github.com/obgm/libcoap/blob/v4.3.5a/ChangeLog
[2] 993c12ac92
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Current version is 2.0.3, the lastrelease of libmng is in 2015,
add a patch to fix it
Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
bpftrace set the version by "git describe --dirty", since we have local
patch for bpftrace, '-dirty' will be added into the version, set
CHECK_VERSION_PV to mute the version mismatch warning
Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
* flite --version return 1 block version output for
check-version-mismatch.bbclass
* even with version output flite-2.2-current, regular version match
regexp cannot match the version
so mute version mismatch warning for flite
Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Drop patch that is included in this release.
Changelog:
0.14.4:
- Move documentation to gi-docgen
0.14.3:
- CI fixes
0.14.2:
- xml: Fix compatibility with libxml2 2.12.x
- Add missing array annotation
- build: Fix Requires: line of pkg-config file
- Loosen restriction on dc:date verification
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
It takes almost 50 seconds on my machine to execute.
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Drop patch that was incorporated in this release.
Changelog:
1.6.9:
- Linux-CM: Fix a potential memory leak
- Fix documentation link for libsoup
- Fix unnecessary g_thread_unref in tests
- Fix issues with Since: in documentation
1.6.8:
- ServiceProxyAction: Remove some left-over debug output
- ServiceProxyAction: Stop leaking the HTTP response
- Docs: Fix various issues
- ServiceProxyAction: Add get_value_as()
- Linux-CM: Silence a false-positive with scan-build
1.6.7:
- Fix compatiblity with libxml2 2.12.x
- Improve reproducability
- ControlPoint: Fix re-scan
- ContextManager: Fix boot-id update
- Context: Fix crash if served URI is not an IP address
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
It is quick, it finished under 20 seconds on my machine.
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Drop patch that was incorporated in this release.
Shortlog (without CI-changes):
client: Format Since/Deprecated versions in a way gi-docgen can parse
Fix template to use local mirror
gssdp-enums.c.template: use basename instead of filename
resource-browser: Make regex pattern static
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
============
- Fix bug in typing/keyboard causing xdotool to send extra modifier
keys in certain cases. When xkeyboard-config 2.46 is installed,
xdotool would send incorrect key sequences for function keys, for
example incorrectly sending "Alt + F3" when F3 was requested.
- Add 'windowlower' command
- Fix some crashes in xdo_get_desktop_for_window
- Fix mouse movement under Xwayland when multiple screens are present
- mousemove --sync no only waits if the cursor is expected to actually move
- Remove dependency on libXi that was leftover from Wayland detection code no
longer used in xdotool
- Bump SONAME to 4 hopefully to resolve ABI issues with previous versions of libxdo.
- Code improvements intended to reduce compiler warnings
- Add support for Cygwin when building
- Test suite works again!
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
===========
- New feature: Support multiple keyboard backlight LED control.
- Make installation of tests optional
- Support conf.d style config file
- Deprecate CapacityLevel property
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
==============
- safe_join on Windows does not allow special device names. This prevents
reading from these when using send_from_directory. secure_filename already
prevented writing to these.
- The debugger pin fails after 10 attempts instead of 11.
- The multipart form parser handles a \r\n sequence at a chunk boundary.
- Improve CPU usage during Watchdog reloader.
- Request.json annotation is more accurate.
- Traceback rendering handles when the line number is beyond the available
source lines.
- HTTPException.get_response annotation and doc better conveys the distinction
between WSGI and sans-IO responses.
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
=============
Enhancements
---------------
* Add support for Python 3.14.
* Add type annotations to top-level API functions and include py.typed marker
for PEP 561 compliance, enabling type checking with mypy and other tools
* Add pre-commit hook support. sqlparse can now be used as a pre-commit hook
to automatically format SQL files. The CLI now supports multiple files and
an '--in-place' flag for in-place editing
* Add 'ATTACH' and 'DETACH' to PostgreSQL keywords
* Add 'INTERSECT' to close keywords in WHERE clause
* Support 'REGEXP BINARY' comparison operator
Bug Fixes
----------
* Add additional protection against denial of service attacks when parsing
very large lists of tuples. This enhances the existing recursion protections
with configurable limits for token processing to prevent DoS through
algorithmic complexity attacks. The new limits (MAX_GROUPING_DEPTH=100,
MAX_GROUPING_TOKENS=10000) can be adjusted or disabled (by setting to None)
if needed for legitimate large SQL statements.
* Remove shebang from cli.py and remove executable flag
* Fix strip_comments not removing all comments when input contains only
comments
* Fix splitting statements with IF EXISTS/IF NOT EXISTS inside BEGIN...END
blocks
* Fix splitting on semicolons inside BEGIN...END blocks
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
============
- Fix several issues in ThreadDecoder.c
- Fix the double call of Ppmd7_Free from both Ppmd7T_Free and Ppmd7Decoder_dealloc
- Fix the double call of Ppmd8_Free from both Ppmd8T_Free and Ppmd8Decoder_dealloc
- Fix the issue in PyPY
- Fix initialization order in ffi_build.py
- Fix eof handling in cffi_ppmd.py
- Add support for Python 3.14
- Add compile and link flag for building C++ with -pthread
- Minimum required python to be 3.10
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
full support for python 3.14 and a number of packages (like mypy) have been updated.
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
============
- Support for python 3.14
- ci: fix test and release workflows
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
===========
* When using one of the lxml tree builders, you can pass in
huge_tree=True to disable lxml's security restrictions and process
files that include huge text nodes.
* The html.parser tree builder processes numeric character entities
using the algorithm described in the HTML spec.
* Added a general test of the html.parser tree builder's ability to
turn any parsing exception from html.parser into a
ParserRejectedMarkup exception.
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
============
- Support examples property from field metadata
- Officially support Python 3.14
- Drop support for Python 3.9
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
===============
- Added support for asyncio's task call graphs on Python 3.14 and later when
using AnyIO's task groups
- Added an asynchronous implementation of the functools module
- Added support for uvloop=True on Windows via the winloop implementation
- Added support for use as a context manager to anyio.lowlevel.RunVar
- Added __all__ declarations to public submodules (anyio.lowlevel etc.)
- Added the ability to set the token count of a CapacityLimiter to zero
- Added parameters case_sensitive and recurse_symlinks along with support for
path-like objects to anyio.Path.glob() and anyio.Path.rglob()
- Dropped sniffio as a direct dependency and added the get_available_backends()
function
- Fixed Process.stdin.send() not raising ClosedResourceError and
BrokenResourceError on asyncio. Previously, a non-AnyIO exception was raised
in such cases
- Fixed Process.stdin.send() not checkpointing before writing data on asyncio
- Fixed a race condition where cancelling a Future from
BlockingPortal.start_task_soon() would sometimes not cancel the async function
- Fixed the presence of the pytest plugin causing breakage with older versions
of pytest (<= 6.1.2)
- Fixed a rarely occurring RuntimeError: Set changed size during iteration while
shutting down the process pool when using the asyncio backend
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
add-expected-output-file-for-descrec-test.patch
removed since it's included in 17.00.0007
psqlodbc-fix-for-ptest-support.patch
refreshed for 17.00.0007
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
===========
- Add -e switch to select an escape sequence other than Ctrl+\
- More portable TTY settings
- Better error and signal handling
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
==============
* Removed unintentional copy requiment from some of async functions parameter.
* Fixed Heap-use-after-free during broker shutdown.
* Rifined documents.
* Added TLS Websocket verify none port to broker for browser.
* Added Cerfiticate file's digitalSignature to keyUsage.
* Fixed wss connection from Web Browser handshake failed problem.
* Changed trial broker on `async-mqtt.redboltz.net` ws and wss port.
* ws was 10080 but Chrome block it by default. Updated to 80.
* wss was 10443 but Chrome doesn't block it by default. But for consistency, updated to 443.
* system_test still uses 10080 and 10443 to avoid conflict.
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
