Handles CVE-2025-23016 (in 2.4.5)
Add tag to SRC_URI.
Move version to recipe filename.
License-Update: file was renamed without any text change
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Moved the iproute2 backend enablement into a new PACKAGECONFIG.
It is enabled to keep the current defaults. Added the explicit
runtime dependency on iproute2-ip (the "ip" command) which this
backend requires.
Added a new PACKAGECONFIG[dco] which enables the libnl backend,
which is mutually incompatible with iproute2 backend in OpenVPN.
With these:
PACKAGECONFIG:remove = "iproute2"
PACKAGECONFIG:append = " dco"
the data channel offload is enabled:
checking for LIBNL_GENL... yes
configure: Enabled ovpn-dco support for Linux
With Linux kernel 6.16 or newer, and CONFIG_OVPN enabled,
the data channel offload will be used.
Signed-off-by: Zoltán Böszörményi <zboszor@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
- All patches have been upstreamed
- Add Go module dependencies to allow offline builds since upstream does
not vendor them into the repo anymore
- In accordance to upstream, disable cgo as we are unable to compile
with it on all supported architectures; in addition, remove
-linkshared and -buildmode=pie as it requires external (cgo) linking
(the latter only on ARM and x86). Binary size hardly matters here as
syzkaller is unlikely to be shipped in a production environment.
- Add missing metadata and comply with style guide
- Mark musl as incompatible as it does not provide the Memory Protection
Keys API; in addition, there seems to be no intention from upstream to
support anything besides glibc
Signed-off-by: Stefan Wiehler <me@sephalon.net>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Drop patch since its fixed by [1] in 3.9.1
Add a patch to fix new warning seen with gcc 15.2
[1] https://github.com/rurban/safeclib/issues/125
Signed-off-by: Khem Raj <raj.khem@gmail.com>
When using x86-64-v3 AVX gets enabled by default and
this does not work well with ktx dependencies e.g. basisu
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Remove following patches, they have been fixed since 1.3.0.
0001-build_support-use-source-filename-instead-of-foo-for.patch
0002-build_support-handle-empty-max_priority-value-as-Non.patch
0003-build_support-use-does_build_succeed-in-compile_and_.patch
Backport a patch to fix dicsovery fails when CC contains flags
License-Update: update copyright statements to include contributors
Signed-off-by: Haixiao Yan <haixiao.yan.cn@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Location of S have moved under UNPACKDIR and this
needs to reflect in ptest install structure as some
of tests access the sourcedirs relative to itself
during run, these locations are built into tests
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Specify -native versions of dependencies. These were satisfied
transitively through other dependencies, but we should specify
them explicitly. It also removes dependencies on the target
system for a native recipe.
Signed-off-by: Dan McGregor <dan.mcgregor@usask.ca>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Includes the provided service and defaults files for using the
tailscale daemon on systemd init machines.
Added the other kernel modules necessary for tailscaled to work
without warnings to RRECOMMENDS.
Tested with `core-image-minimal` under qemu with machines
`qemux86-64`, `genericx86-64` and `qemuarm64`. Ping
host on tailscale network using magicDNS host lookup.
Signed-off-by: Dean Sellers <dean@sellers.id.au>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
This upgrade includes fix for CVE-2025-50420.
poppler 25.08.0 changelog:
==========================
core:
* FormWidgetSignature::signDocumentWithAppearance: add imagePath parameter
* Fix parsing Distinguished Names that end with a hex string
* Fix crashes in malformed documents
glib:
* Add poppler_page_render_transparent_selection()
* Add missing since to the documentation
poppler 25.07.0 changelog:
==========================
core:
* Changed rendering of malformed documents to mimic what Adobe Reader does. Issue #1602
* Improvemenst in signature validation in the NSS backend
* Add more detailed output when signing fails
* Internal code improvements
* Fix crashes in malformed documents
utils:
* pdfsig: command line option for allowing PGP signatures in GnuPG backend
Signed-off-by: Yogita Urade <yogita.urade@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Both SRCREV and SRC_URI[sha256sum] where defined.
The value of SRCREV is the correct one.
4160d259d9
Signed-off-by: Jan Vermaete <jan.vermaete@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
===========
- sys/queue.h: Remove "#include <sys/cdefs.h>"
- FUNDING.yml: Add github sponsors
- Stop single-shot also when no cb is set
- Replicate methods for every type
- Use explicit types in callbacks
- meson: Add run_command check argument
- meson: Relocate headers and pkgconfig
- kqueue: Call EV_SET without NOTE_ABSTIME on Mach
- kqueue: Pass unspecified timeout as NULL
- thread-pool: Make pthread_setcancelstate optional for Android
- build: Make librt optional
- Properly initialize global mutex
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
dlopen is being served libssl.so with build time
absolute path of its location in target sysroot
this is being detected as reproducibility issue but
its also a runtime issue where dlopen will fail
due to non-existent path
Backport a gcc-15 build fix as well
Drop do_configure tweak its no longer needed
Signed-off-by: Khem Raj <raj.khem@gmail.com>
bugfix:
use open-cli instead of require('open') for Node 20+ compatibility
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
