* [OE-core] [PATCH] distcc: upgrade 3.3.5 -> 3.4
@ 2021-05-19 23:53 wangmy
2021-05-19 23:53 ` [OE-core] [PATCH] libdrm: upgrade 2.4.105 -> 2.4.106 wangmy
` (3 more replies)
0 siblings, 4 replies; 8+ messages in thread
From: wangmy @ 2021-05-19 23:53 UTC (permalink / raw)
To: openembedded-core; +Cc: Wang Mingyu
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
---
meta/recipes-devtools/distcc/{distcc_3.3.5.bb => distcc_3.4.bb} | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
rename meta/recipes-devtools/distcc/{distcc_3.3.5.bb => distcc_3.4.bb} (98%)
diff --git a/meta/recipes-devtools/distcc/distcc_3.3.5.bb b/meta/recipes-devtools/distcc/distcc_3.4.bb
similarity index 98%
rename from meta/recipes-devtools/distcc/distcc_3.3.5.bb
rename to meta/recipes-devtools/distcc/distcc_3.4.bb
index 5c2644199e..3bab6d53eb 100644
--- a/meta/recipes-devtools/distcc/distcc_3.3.5.bb
+++ b/meta/recipes-devtools/distcc/distcc_3.4.bb
@@ -20,7 +20,7 @@ SRC_URI = "git://github.com/distcc/distcc.git \
file://distcc \
file://distcc.service \
"
-SRCREV = "8572e2a1af39e69b2a2d74622fed6d2dd7dca9b7"
+SRCREV = "50d821efe99cae82c05be0a4ab3b4035ef0d3883"
S = "${WORKDIR}/git"
UPSTREAM_CHECK_GITTAGREGEX = "v(?P<pver>\d+(\.\d+)+)"
--
2.25.1
^ permalink raw reply related [flat|nested] 8+ messages in thread
* [OE-core] [PATCH] libdrm: upgrade 2.4.105 -> 2.4.106
2021-05-19 23:53 [OE-core] [PATCH] distcc: upgrade 3.3.5 -> 3.4 wangmy
@ 2021-05-19 23:53 ` wangmy
2021-05-19 23:53 ` [OE-core] [PATCH] libidn2: upgrade 2.3.0 -> 2.3.1 wangmy
` (2 subsequent siblings)
3 siblings, 0 replies; 8+ messages in thread
From: wangmy @ 2021-05-19 23:53 UTC (permalink / raw)
To: openembedded-core; +Cc: Wang Mingyu
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
---
.../drm/{libdrm_2.4.105.bb => libdrm_2.4.106.bb} | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
rename meta/recipes-graphics/drm/{libdrm_2.4.105.bb => libdrm_2.4.106.bb} (97%)
diff --git a/meta/recipes-graphics/drm/libdrm_2.4.105.bb b/meta/recipes-graphics/drm/libdrm_2.4.106.bb
similarity index 97%
rename from meta/recipes-graphics/drm/libdrm_2.4.105.bb
rename to meta/recipes-graphics/drm/libdrm_2.4.106.bb
index 8cb82ad123..2f63489021 100644
--- a/meta/recipes-graphics/drm/libdrm_2.4.105.bb
+++ b/meta/recipes-graphics/drm/libdrm_2.4.106.bb
@@ -13,7 +13,7 @@ DEPENDS = "libpthread-stubs"
SRC_URI = "http://dri.freedesktop.org/libdrm/${BP}.tar.xz \
"
-SRC_URI[sha256sum] = "1d1d024b7cadc63e2b59cddaca94f78864940ab440843841113fbac6afaf2a46"
+SRC_URI[sha256sum] = "92d8ac54429b171e087e61c2894dc5399fe6a549b1fbba09fa6a3cb9d4e57bd4"
inherit meson pkgconfig manpages
--
2.25.1
^ permalink raw reply related [flat|nested] 8+ messages in thread
* [OE-core] [PATCH] libidn2: upgrade 2.3.0 -> 2.3.1
2021-05-19 23:53 [OE-core] [PATCH] distcc: upgrade 3.3.5 -> 3.4 wangmy
2021-05-19 23:53 ` [OE-core] [PATCH] libdrm: upgrade 2.4.105 -> 2.4.106 wangmy
@ 2021-05-19 23:53 ` wangmy
2021-05-19 23:53 ` [OE-core] [PATCH] libtasn1: upgrade 4.16.0 -> 4.17.0 wangmy
2021-05-19 23:53 ` [OE-core] [PATCH] libxml2: upgrade 2.9.10 -> 2.9.12 wangmy
3 siblings, 0 replies; 8+ messages in thread
From: wangmy @ 2021-05-19 23:53 UTC (permalink / raw)
To: openembedded-core; +Cc: Wang Mingyu
-License-Update: Copyright year updated to 2021.
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
---
.../libidn/{libidn2_2.3.0.bb => libidn2_2.3.1.bb} | 8 ++++----
1 file changed, 4 insertions(+), 4 deletions(-)
rename meta/recipes-extended/libidn/{libidn2_2.3.0.bb => libidn2_2.3.1.bb} (77%)
diff --git a/meta/recipes-extended/libidn/libidn2_2.3.0.bb b/meta/recipes-extended/libidn/libidn2_2.3.1.bb
similarity index 77%
rename from meta/recipes-extended/libidn/libidn2_2.3.0.bb
rename to meta/recipes-extended/libidn/libidn2_2.3.1.bb
index 7adf924aeb..d33d6a7dab 100644
--- a/meta/recipes-extended/libidn/libidn2_2.3.0.bb
+++ b/meta/recipes-extended/libidn/libidn2_2.3.1.bb
@@ -6,12 +6,12 @@ LICENSE = "(GPLv2+ | LGPLv3) & GPLv3+"
LIC_FILES_CHKSUM = "file://COPYING;md5=2d834ea7d480438ada04e5d846152395 \
file://COPYING.LESSERv3;md5=e6a600fd5e1d9cbde2d983680233ad02 \
file://COPYINGv2;md5=b234ee4d69f5fce4486a80fdaf4a4263 \
- file://src/idn2.c;endline=16;md5=426b74d6deb620ab6d39c8a6efd4c13a \
- file://lib/idn2.h.in;endline=27;md5=c2cd28d3f87260f157f022eabb83714f"
+ file://src/idn2.c;endline=16;md5=e4b6d628a84a55f1fd8ae4c76c5f6509 \
+ file://lib/idn2.h.in;endline=27;md5=d0fc8ec628be130a1d5b889107e92477"
SRC_URI = "${GNU_MIRROR}/libidn/${BPN}-${PV}.tar.gz"
-SRC_URI[md5sum] = "01c5084995295e519f95978ae9785ee0"
-SRC_URI[sha256sum] = "e1cb1db3d2e249a6a3eb6f0946777c2e892d5c5dc7bd91c74394fc3a01cab8b5"
+SRC_URI[md5sum] = "cda07f5ac55fccfafdf7ee01828adad5"
+SRC_URI[sha256sum] = "8af684943836b8b53965d5f5b6714ef13c26c91eaa36ce7d242e3d21f5d40f2d"
DEPENDS = "virtual/libiconv libunistring"
--
2.25.1
^ permalink raw reply related [flat|nested] 8+ messages in thread
* [OE-core] [PATCH] libtasn1: upgrade 4.16.0 -> 4.17.0
2021-05-19 23:53 [OE-core] [PATCH] distcc: upgrade 3.3.5 -> 3.4 wangmy
2021-05-19 23:53 ` [OE-core] [PATCH] libdrm: upgrade 2.4.105 -> 2.4.106 wangmy
2021-05-19 23:53 ` [OE-core] [PATCH] libidn2: upgrade 2.3.0 -> 2.3.1 wangmy
@ 2021-05-19 23:53 ` wangmy
2021-05-19 23:53 ` [OE-core] [PATCH] libxml2: upgrade 2.9.10 -> 2.9.12 wangmy
3 siblings, 0 replies; 8+ messages in thread
From: wangmy @ 2021-05-19 23:53 UTC (permalink / raw)
To: openembedded-core; +Cc: Wang Mingyu
file LICENSE renamed to COPYING.
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
---
.../gnutls/{libtasn1_4.16.0.bb => libtasn1_4.17.0.bb} | 6 +++---
1 file changed, 3 insertions(+), 3 deletions(-)
rename meta/recipes-support/gnutls/{libtasn1_4.16.0.bb => libtasn1_4.17.0.bb} (77%)
diff --git a/meta/recipes-support/gnutls/libtasn1_4.16.0.bb b/meta/recipes-support/gnutls/libtasn1_4.17.0.bb
similarity index 77%
rename from meta/recipes-support/gnutls/libtasn1_4.16.0.bb
rename to meta/recipes-support/gnutls/libtasn1_4.17.0.bb
index 21ef5c3de4..64e798b188 100644
--- a/meta/recipes-support/gnutls/libtasn1_4.16.0.bb
+++ b/meta/recipes-support/gnutls/libtasn1_4.17.0.bb
@@ -8,7 +8,7 @@ LICENSE_${PN}-bin = "GPLv3+"
LICENSE_${PN} = "LGPLv2.1+"
LIC_FILES_CHKSUM = "file://doc/COPYING;md5=d32239bcb673463ab874e80d47fae504 \
file://doc/COPYING.LESSER;md5=4fbd65380cdd255951079008b364516c \
- file://LICENSE;md5=75ac100ec923f959898182307970c360"
+ file://COPYING;md5=75ac100ec923f959898182307970c360"
SRC_URI = "${GNU_MIRROR}/libtasn1/libtasn1-${PV}.tar.gz \
file://dont-depend-on-help2man.patch \
@@ -16,8 +16,8 @@ SRC_URI = "${GNU_MIRROR}/libtasn1/libtasn1-${PV}.tar.gz \
DEPENDS = "bison-native"
-SRC_URI[md5sum] = "531208de3729d42e2af0a32890f08736"
-SRC_URI[sha256sum] = "0e0fb0903839117cb6e3b56e68222771bebf22ad7fc2295a0ed7d576e8d4329d"
+SRC_URI[md5sum] = "c46f6eb3bd1287031ae5d36465094402"
+SRC_URI[sha256sum] = "ece7551cea7922b8e10d7ebc70bc2248d1fdd73351646a2d6a8d68a9421c45a5"
inherit autotools texinfo lib_package gtk-doc
--
2.25.1
^ permalink raw reply related [flat|nested] 8+ messages in thread
* [OE-core] [PATCH] libxml2: upgrade 2.9.10 -> 2.9.12
2021-05-19 23:53 [OE-core] [PATCH] distcc: upgrade 3.3.5 -> 3.4 wangmy
` (2 preceding siblings ...)
2021-05-19 23:53 ` [OE-core] [PATCH] libtasn1: upgrade 4.16.0 -> 4.17.0 wangmy
@ 2021-05-19 23:53 ` wangmy
2021-05-20 18:09 ` Richard Purdie
3 siblings, 1 reply; 8+ messages in thread
From: wangmy @ 2021-05-19 23:53 UTC (permalink / raw)
To: openembedded-core; +Cc: Wang Mingyu
CVE-2019-20388.patch
CVE-2020-24977.patch
CVE-2020-7595.patch
fix-python39.patch
removed since they are included in 2.9.12
refresh 0001-Make-ptest-run-the-python-tests-if-python-is-enabled.patch
and libxml-m4-use-pkgconfig.patch
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
---
...he-python-tests-if-python-is-enabled.patch | 33 +++----
.../libxml/libxml2/CVE-2019-20388.patch | 37 --------
.../libxml/libxml2/CVE-2020-24977.patch | 41 --------
.../libxml/libxml2/CVE-2020-7595.patch | 36 -------
.../libxml/libxml2/fix-python39.patch | 94 -------------------
.../libxml2/libxml-m4-use-pkgconfig.patch | 29 +++---
.../{libxml2_2.9.10.bb => libxml2_2.9.12.bb} | 14 +--
7 files changed, 35 insertions(+), 249 deletions(-)
delete mode 100644 meta/recipes-core/libxml/libxml2/CVE-2019-20388.patch
delete mode 100644 meta/recipes-core/libxml/libxml2/CVE-2020-24977.patch
delete mode 100644 meta/recipes-core/libxml/libxml2/CVE-2020-7595.patch
delete mode 100644 meta/recipes-core/libxml/libxml2/fix-python39.patch
rename meta/recipes-core/libxml/{libxml2_2.9.10.bb => libxml2_2.9.12.bb} (88%)
diff --git a/meta/recipes-core/libxml/libxml2/0001-Make-ptest-run-the-python-tests-if-python-is-enabled.patch b/meta/recipes-core/libxml/libxml2/0001-Make-ptest-run-the-python-tests-if-python-is-enabled.patch
index 5e9a0a506b..4bdd56bbf7 100644
--- a/meta/recipes-core/libxml/libxml2/0001-Make-ptest-run-the-python-tests-if-python-is-enabled.patch
+++ b/meta/recipes-core/libxml/libxml2/0001-Make-ptest-run-the-python-tests-if-python-is-enabled.patch
@@ -9,15 +9,16 @@ be due to the fact that the tests are forced to run with Python 3.
Upstream-Status: Inappropriate [OE specific]
Signed-off-by: Peter Kjellerstedt <peter.kjellerstedt@axis.com>
+rebase for 2.9.12
+Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
---
- Makefile.am | 2 +-
- python/Makefile.am | 9 +++++++++
- python/tests/Makefile.am | 10 ++++++++++
- python/tests/tstLastError.py | 2 +-
- 4 files changed, 21 insertions(+), 2 deletions(-)
+ Makefile.am | 2 +-
+ python/Makefile.am | 9 +++++++++
+ python/tests/Makefile.am | 10 ++++++++++
+ 3 files changed, 20 insertions(+), 1 deletion(-)
diff --git a/Makefile.am b/Makefile.am
-index ae62274..bd1e425 100644
+index b428452..dc18d6d 100644
--- a/Makefile.am
+++ b/Makefile.am
@@ -203,9 +203,9 @@ install-ptest:
@@ -32,7 +33,7 @@ index ae62274..bd1e425 100644
runtests: runtest$(EXEEXT) testrecurse$(EXEEXT) testapi$(EXEEXT) \
testchar$(EXEEXT) testdict$(EXEEXT) runxmlconf$(EXEEXT)
diff --git a/python/Makefile.am b/python/Makefile.am
-index 34aed96..ba3ec6a 100644
+index 34aed96..567d81d 100644
--- a/python/Makefile.am
+++ b/python/Makefile.am
@@ -48,7 +48,16 @@ GENERATED = libxml2class.py libxml2class.txt $(BUILT_SOURCES)
@@ -53,7 +54,7 @@ index 34aed96..ba3ec6a 100644
tests test: all
cd tests && $(MAKE) tests
diff --git a/python/tests/Makefile.am b/python/tests/Makefile.am
-index 227e24d..021bb29 100644
+index 227e24d..faf9056 100644
--- a/python/tests/Makefile.am
+++ b/python/tests/Makefile.am
@@ -59,6 +59,11 @@ XMLS= \
@@ -83,16 +84,6 @@ index 227e24d..021bb29 100644
+
tests:
endif
-diff --git a/python/tests/tstLastError.py b/python/tests/tstLastError.py
-index 81d0acc..162c8db 100755
---- a/python/tests/tstLastError.py
-+++ b/python/tests/tstLastError.py
-@@ -25,7 +25,7 @@ class TestCase(unittest.TestCase):
- when the exception is raised, check the libxml2.lastError for
- expected values."""
- # disable the default error handler
-- libxml2.registerErrorHandler(None,None)
-+ libxml2.registerErrorHandler(lambda ctx,str: None,None)
- try:
- f(*args)
- except exc:
+--
+2.25.1
+
diff --git a/meta/recipes-core/libxml/libxml2/CVE-2019-20388.patch b/meta/recipes-core/libxml/libxml2/CVE-2019-20388.patch
deleted file mode 100644
index 88eb65a6a5..0000000000
--- a/meta/recipes-core/libxml/libxml2/CVE-2019-20388.patch
+++ /dev/null
@@ -1,37 +0,0 @@
-From 7ffcd44d7e6c46704f8af0321d9314cd26e0e18a Mon Sep 17 00:00:00 2001
-From: Zhipeng Xie <xiezhipeng1@huawei.com>
-Date: Tue, 20 Aug 2019 16:33:06 +0800
-Subject: [PATCH] Fix memory leak in xmlSchemaValidateStream
-
-When ctxt->schema is NULL, xmlSchemaSAXPlug->xmlSchemaPreRun
-alloc a new schema for ctxt->schema and set vctxt->xsiAssemble
-to 1. Then xmlSchemaVStart->xmlSchemaPreRun initialize
-vctxt->xsiAssemble to 0 again which cause the alloced schema
-can not be freed anymore.
-
-Found with libFuzzer.
-
-Upstream-Status: Backport [https://gitlab.gnome.org/GNOME/libxml2/commit/7ffcd44d7e6c46704f8af0321d9314cd26e0e18a]
-CVE: CVE-2019-20388
-
-Signed-off-by: Zhipeng Xie <xiezhipeng1@huawei.com>
-Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com>
----
- xmlschemas.c | 1 -
- 1 file changed, 1 deletion(-)
-
-diff --git a/xmlschemas.c b/xmlschemas.c
-index 301c8449..39d92182 100644
---- a/xmlschemas.c
-+++ b/xmlschemas.c
-@@ -28090,7 +28090,6 @@ xmlSchemaPreRun(xmlSchemaValidCtxtPtr vctxt) {
- vctxt->nberrors = 0;
- vctxt->depth = -1;
- vctxt->skipDepth = -1;
-- vctxt->xsiAssemble = 0;
- vctxt->hasKeyrefs = 0;
- #ifdef ENABLE_IDC_NODE_TABLES_TEST
- vctxt->createIDCNodeTables = 1;
---
-2.24.1
-
diff --git a/meta/recipes-core/libxml/libxml2/CVE-2020-24977.patch b/meta/recipes-core/libxml/libxml2/CVE-2020-24977.patch
deleted file mode 100644
index 8224346660..0000000000
--- a/meta/recipes-core/libxml/libxml2/CVE-2020-24977.patch
+++ /dev/null
@@ -1,41 +0,0 @@
-From 50f06b3efb638efb0abd95dc62dca05ae67882c2 Mon Sep 17 00:00:00 2001
-From: Nick Wellnhofer <wellnhofer@aevum.de>
-Date: Fri, 7 Aug 2020 21:54:27 +0200
-Subject: [PATCH] Fix out-of-bounds read with 'xmllint --htmlout'
-
-Make sure that truncated UTF-8 sequences don't cause an out-of-bounds
-array access.
-
-Thanks to @SuhwanSong and the Agency for Defense Development (ADD) for
-the report.
-
-Fixes #178.
-
-CVE: CVE-2020-24977
-Upstream-Status: Backport [https://gitlab.gnome.org/GNOME/libxml2/-/commit/50f06b3efb638efb0abd95dc62dca05ae67882c2]
-
-Signed-off-by: Ovidiu Panait <ovidiu.panait@windriver.com>
----
- xmllint.c | 6 ++++++
- 1 file changed, 6 insertions(+)
-
-diff --git a/xmllint.c b/xmllint.c
-index f6a8e463..c647486f 100644
---- a/xmllint.c
-+++ b/xmllint.c
-@@ -528,6 +528,12 @@ static void
- xmlHTMLEncodeSend(void) {
- char *result;
-
-+ /*
-+ * xmlEncodeEntitiesReentrant assumes valid UTF-8, but the buffer might
-+ * end with a truncated UTF-8 sequence. This is a hack to at least avoid
-+ * an out-of-bounds read.
-+ */
-+ memset(&buffer[sizeof(buffer)-4], 0, 4);
- result = (char *) xmlEncodeEntitiesReentrant(NULL, BAD_CAST buffer);
- if (result) {
- xmlGenericError(xmlGenericErrorContext, "%s", result);
---
-2.17.1
-
diff --git a/meta/recipes-core/libxml/libxml2/CVE-2020-7595.patch b/meta/recipes-core/libxml/libxml2/CVE-2020-7595.patch
deleted file mode 100644
index facfefd362..0000000000
--- a/meta/recipes-core/libxml/libxml2/CVE-2020-7595.patch
+++ /dev/null
@@ -1,36 +0,0 @@
-From 0e1a49c8907645d2e155f0d89d4d9895ac5112b5 Mon Sep 17 00:00:00 2001
-From: Zhipeng Xie <xiezhipeng1@huawei.com>
-Date: Thu, 12 Dec 2019 17:30:55 +0800
-Subject: [PATCH] Fix infinite loop in xmlStringLenDecodeEntities
-
-When ctxt->instate == XML_PARSER_EOF,xmlParseStringEntityRef
-return NULL which cause a infinite loop in xmlStringLenDecodeEntities
-
-Found with libFuzzer.
-
-Signed-off-by: Zhipeng Xie <xiezhipeng1@huawei.com>
-
-Upstream-Status: Backport [https://gitlab.gnome.org/GNOME/libxml2/commit/0e1a49c89076]
-CVE: CVE-2020-7595
-Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
----
- parser.c | 3 ++-
- 1 file changed, 2 insertions(+), 1 deletion(-)
-
-diff --git a/parser.c b/parser.c
-index d1c31963..a34bb6cd 100644
---- a/parser.c
-+++ b/parser.c
-@@ -2646,7 +2646,8 @@ xmlStringLenDecodeEntities(xmlParserCtxtPtr ctxt, const xmlChar *str, int len,
- else
- c = 0;
- while ((c != 0) && (c != end) && /* non input consuming loop */
-- (c != end2) && (c != end3)) {
-+ (c != end2) && (c != end3) &&
-+ (ctxt->instate != XML_PARSER_EOF)) {
-
- if (c == 0) break;
- if ((c == '&') && (str[1] == '#')) {
---
-2.24.1
-
diff --git a/meta/recipes-core/libxml/libxml2/fix-python39.patch b/meta/recipes-core/libxml/libxml2/fix-python39.patch
deleted file mode 100644
index 32590f9ddf..0000000000
--- a/meta/recipes-core/libxml/libxml2/fix-python39.patch
+++ /dev/null
@@ -1,94 +0,0 @@
-From e4fb36841800038c289997432ca547c9bfef9db1 Mon Sep 17 00:00:00 2001
-From: =?UTF-8?q?Miro=20Hron=C4=8Dok?= <miro@hroncok.cz>
-Date: Fri, 28 Feb 2020 12:48:14 +0100
-Subject: [PATCH] Parenthesize Py<type>_Check() in ifs
-
-In C, if expressions should be parenthesized.
-PyLong_Check, PyUnicode_Check etc. happened to expand to a parenthesized
-expression before, but that's not API to rely on.
-
-Since Python 3.9.0a4 it needs to be parenthesized explicitly.
-
-Fixes https://gitlab.gnome.org/GNOME/libxml2/issues/149
-Upstream-Status: Backport
-Signed-off-by: Alexander Kanavin <alex.kanavin@gmail.com>
----
- python/libxml.c | 4 ++--
- python/types.c | 12 ++++++------
- 2 files changed, 8 insertions(+), 8 deletions(-)
-
-diff --git a/python/libxml.c b/python/libxml.c
-index bc676c4e0..81e709f34 100644
---- a/python/libxml.c
-+++ b/python/libxml.c
-@@ -294,7 +294,7 @@ xmlPythonFileReadRaw (void * context, char * buffer, int len) {
- lenread = PyBytes_Size(ret);
- data = PyBytes_AsString(ret);
- #ifdef PyUnicode_Check
-- } else if PyUnicode_Check (ret) {
-+ } else if (PyUnicode_Check (ret)) {
- #if PY_VERSION_HEX >= 0x03030000
- Py_ssize_t size;
- const char *tmp;
-@@ -359,7 +359,7 @@ xmlPythonFileRead (void * context, char * buffer, int len) {
- lenread = PyBytes_Size(ret);
- data = PyBytes_AsString(ret);
- #ifdef PyUnicode_Check
-- } else if PyUnicode_Check (ret) {
-+ } else if (PyUnicode_Check (ret)) {
- #if PY_VERSION_HEX >= 0x03030000
- Py_ssize_t size;
- const char *tmp;
-diff --git a/python/types.c b/python/types.c
-index c2bafeb19..ed284ec74 100644
---- a/python/types.c
-+++ b/python/types.c
-@@ -602,16 +602,16 @@ libxml_xmlXPathObjectPtrConvert(PyObject *obj)
- if (obj == NULL) {
- return (NULL);
- }
-- if PyFloat_Check (obj) {
-+ if (PyFloat_Check (obj)) {
- ret = xmlXPathNewFloat((double) PyFloat_AS_DOUBLE(obj));
-- } else if PyLong_Check(obj) {
-+ } else if (PyLong_Check(obj)) {
- #ifdef PyLong_AS_LONG
- ret = xmlXPathNewFloat((double) PyLong_AS_LONG(obj));
- #else
- ret = xmlXPathNewFloat((double) PyInt_AS_LONG(obj));
- #endif
- #ifdef PyBool_Check
-- } else if PyBool_Check (obj) {
-+ } else if (PyBool_Check (obj)) {
-
- if (obj == Py_True) {
- ret = xmlXPathNewBoolean(1);
-@@ -620,14 +620,14 @@ libxml_xmlXPathObjectPtrConvert(PyObject *obj)
- ret = xmlXPathNewBoolean(0);
- }
- #endif
-- } else if PyBytes_Check (obj) {
-+ } else if (PyBytes_Check (obj)) {
- xmlChar *str;
-
- str = xmlStrndup((const xmlChar *) PyBytes_AS_STRING(obj),
- PyBytes_GET_SIZE(obj));
- ret = xmlXPathWrapString(str);
- #ifdef PyUnicode_Check
-- } else if PyUnicode_Check (obj) {
-+ } else if (PyUnicode_Check (obj)) {
- #if PY_VERSION_HEX >= 0x03030000
- xmlChar *str;
- const char *tmp;
-@@ -650,7 +650,7 @@ libxml_xmlXPathObjectPtrConvert(PyObject *obj)
- ret = xmlXPathWrapString(str);
- #endif
- #endif
-- } else if PyList_Check (obj) {
-+ } else if (PyList_Check (obj)) {
- int i;
- PyObject *node;
- xmlNodePtr cur;
---
-GitLab
-
diff --git a/meta/recipes-core/libxml/libxml2/libxml-m4-use-pkgconfig.patch b/meta/recipes-core/libxml/libxml2/libxml-m4-use-pkgconfig.patch
index e6998f6e68..53bf7869ea 100644
--- a/meta/recipes-core/libxml/libxml2/libxml-m4-use-pkgconfig.patch
+++ b/meta/recipes-core/libxml/libxml2/libxml-m4-use-pkgconfig.patch
@@ -9,16 +9,21 @@ Signed-off-by: Ross Burton <ross.burton@intel.com>
Rebase to 2.9.9
Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com>
+
+Rease to 2.9.12
+Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
---
- libxml.m4 | 186 ++------------------------------------------------------------
- 1 file changed, 5 insertions(+), 181 deletions(-)
+ libxml.m4 | 189 ++----------------------------------------------------
+ 1 file changed, 5 insertions(+), 184 deletions(-)
diff --git a/libxml.m4 b/libxml.m4
-index 2d7a6f5..1c53585 100644
+index 09de9fe..2163f41 100644
--- a/libxml.m4
+++ b/libxml.m4
-@@ -1,188 +1,12 @@
+@@ -1,192 +1,13 @@
-# Configure paths for LIBXML2
+-# Simon Josefsson 2020-02-12
+-# Fix autoconf 2.70+ warnings
-# Mike Hommey 2004-06-19
-# use CPPFLAGS instead of CFLAGS
-# Toshio Kuratomi 2001-04-21
@@ -78,7 +83,8 @@ index 2d7a6f5..1c53585 100644
-dnl (Also sanity checks the results of xml2-config to some extent)
-dnl
- rm -f conf.xmltest
-- AC_TRY_RUN([
+- AC_RUN_IFELSE(
+- [AC_LANG_SOURCE([[
-#include <stdlib.h>
-#include <stdio.h>
-#include <string.h>
@@ -126,7 +132,7 @@ index 2d7a6f5..1c53585 100644
- * only exits if there's a serious mismatch between header and library.
- */
- LIBXML_TEST_VERSION;
--
+
- /* Test that the library is greater than our minimum version */
- if ((xml_major_version > major) ||
- ((xml_major_version == major) && (xml_minor_version > minor)) ||
@@ -148,12 +154,12 @@ index 2d7a6f5..1c53585 100644
- printf("*** being found. The easiest way to fix this is to remove the old version\n");
- printf("*** of LIBXML, but you can also set the XML2_CONFIG environment to point to the\n");
- printf("*** correct copy of xml2-config. (In this case, you will have to\n");
-- printf("*** modify your LD_LIBRARY_PATH enviroment variable, or edit /etc/ld.so.conf\n");
+- printf("*** modify your LD_LIBRARY_PATH environment variable, or edit /etc/ld.so.conf\n");
- printf("*** so that the correct libraries are found at run-time))\n");
- }
- return 1;
-}
--],, no_xml=yes,[echo $ac_n "cross compiling; assumed OK... $ac_c"])
+-]])],, no_xml=yes,[echo $ac_n "cross compiling; assumed OK... $ac_c"])
- CPPFLAGS="$ac_save_CPPFLAGS"
- LIBS="$ac_save_LIBS"
- fi
@@ -178,10 +184,11 @@ index 2d7a6f5..1c53585 100644
- echo "*** Could not run libxml test program, checking why..."
- CPPFLAGS="$CPPFLAGS $XML_CPPFLAGS"
- LIBS="$LIBS $XML_LIBS"
-- AC_TRY_LINK([
+- AC_LINK_IFELSE(
+- [AC_LANG_PROGRAM([[
-#include <libxml/xmlversion.h>
-#include <stdio.h>
--], [ LIBXML_TEST_VERSION; return 0;],
+-]], [[ LIBXML_TEST_VERSION; return 0;]])],
- [ echo "*** The test program compiled, but did not run. This usually means"
- echo "*** that the run-time linker is not finding LIBXML or finding the wrong"
- echo "*** version of LIBXML. If it is not finding LIBXML, you'll need to set your"
@@ -212,5 +219,5 @@ index 2d7a6f5..1c53585 100644
- rm -f conf.xmltest
])
--
-2.7.4
+2.25.1
diff --git a/meta/recipes-core/libxml/libxml2_2.9.10.bb b/meta/recipes-core/libxml/libxml2_2.9.12.bb
similarity index 88%
rename from meta/recipes-core/libxml/libxml2_2.9.10.bb
rename to meta/recipes-core/libxml/libxml2_2.9.12.bb
index 858ee0c66a..73aa613de6 100644
--- a/meta/recipes-core/libxml/libxml2_2.9.10.bb
+++ b/meta/recipes-core/libxml/libxml2_2.9.12.bb
@@ -5,9 +5,9 @@ BUGTRACKER = "http://bugzilla.gnome.org/buglist.cgi?product=libxml2"
SECTION = "libs"
LICENSE = "MIT"
LIC_FILES_CHKSUM = "file://Copyright;md5=2044417e2e5006b65a8b9067b683fcf1 \
- file://hash.c;beginline=6;endline=15;md5=96f7296605eae807670fb08947829969 \
- file://list.c;beginline=4;endline=13;md5=cdbfa3dee51c099edb04e39f762ee907 \
- file://trio.c;beginline=5;endline=14;md5=6c025753c86d958722ec76e94cae932e"
+ file://hash.c;beginline=6;endline=15;md5=e77f77b12cb69e203d8b4090a0eee879 \
+ file://list.c;beginline=4;endline=13;md5=b9c25b021ccaf287e50060602d20f3a7 \
+ file://trio.c;beginline=5;endline=14;md5=cd4f61e27f88c1d43df112966b1cd28f"
DEPENDS = "zlib virtual/libiconv"
@@ -20,14 +20,10 @@ SRC_URI = "http://www.xmlsoft.org/sources/libxml2-${PV}.tar.gz;name=libtar \
file://libxml-m4-use-pkgconfig.patch \
file://0001-Make-ptest-run-the-python-tests-if-python-is-enabled.patch \
file://fix-execution-of-ptests.patch \
- file://CVE-2020-7595.patch \
- file://CVE-2019-20388.patch \
- file://CVE-2020-24977.patch \
- file://fix-python39.patch \
"
-SRC_URI[libtar.md5sum] = "10942a1dc23137a8aa07f0639cbfece5"
-SRC_URI[libtar.sha256sum] = "aafee193ffb8fe0c82d4afef6ef91972cbaf5feea100edc2f262750611b4be1f"
+SRC_URI[libtar.md5sum] = "f433a39be087a9f0b197eb2307ad9f75"
+SRC_URI[libtar.sha256sum] = "c8d6681e38c56f172892c85ddc0852e1fd4b53b4209e7f4ebf17f7e2eae71d92"
SRC_URI[testtar.md5sum] = "ae3d1ebe000a3972afa104ca7f0e1b4a"
SRC_URI[testtar.sha256sum] = "96151685cec997e1f9f3387e3626d61e6284d4d6e66e0e440c209286c03e9cc7"
--
2.25.1
^ permalink raw reply related [flat|nested] 8+ messages in thread
* Re: [OE-core] [PATCH] libxml2: upgrade 2.9.10 -> 2.9.12
2021-05-19 23:53 ` [OE-core] [PATCH] libxml2: upgrade 2.9.10 -> 2.9.12 wangmy
@ 2021-05-20 18:09 ` Richard Purdie
2021-05-20 22:31 ` Randy MacLeod
0 siblings, 1 reply; 8+ messages in thread
From: Richard Purdie @ 2021-05-20 18:09 UTC (permalink / raw)
To: wangmy, openembedded-core; +Cc: Jon Mason
On Thu, 2021-05-20 at 07:53 +0800, wangmy wrote:
> CVE-2019-20388.patch
> CVE-2020-24977.patch
> CVE-2020-7595.patch
> fix-python39.patch
> removed since they are included in 2.9.12
>
> refresh 0001-Make-ptest-run-the-python-tests-if-python-is-enabled.patch
> and libxml-m4-use-pkgconfig.patch
>
> Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
> ---
> ...he-python-tests-if-python-is-enabled.patch | 33 +++----
> .../libxml/libxml2/CVE-2019-20388.patch | 37 --------
> .../libxml/libxml2/CVE-2020-24977.patch | 41 --------
> .../libxml/libxml2/CVE-2020-7595.patch | 36 -------
> .../libxml/libxml2/fix-python39.patch | 94 -------------------
> .../libxml2/libxml-m4-use-pkgconfig.patch | 29 +++---
> .../{libxml2_2.9.10.bb => libxml2_2.9.12.bb} | 14 +--
> 7 files changed, 35 insertions(+), 249 deletions(-)
> delete mode 100644 meta/recipes-core/libxml/libxml2/CVE-2019-20388.patch
> delete mode 100644 meta/recipes-core/libxml/libxml2/CVE-2020-24977.patch
> delete mode 100644 meta/recipes-core/libxml/libxml2/CVE-2020-7595.patch
> delete mode 100644 meta/recipes-core/libxml/libxml2/fix-python39.patch
> rename meta/recipes-core/libxml/{libxml2_2.9.10.bb => libxml2_2.9.12.bb} (88%)
Fails on the autobuilder in testing in ptest:
https://autobuilder.yoctoproject.org/typhoon/#/builders/82/builds/1815/steps/12/logs/stdio
https://autobuilder.yoctoproject.org/typhoon/#/builders/81/builds/2104/steps/12/logs/stdio
Cheers,
Richard
^ permalink raw reply [flat|nested] 8+ messages in thread
* Re: [OE-core] [PATCH] libxml2: upgrade 2.9.10 -> 2.9.12
2021-05-20 18:09 ` Richard Purdie
@ 2021-05-20 22:31 ` Randy MacLeod
2021-05-22 11:20 ` Richard Purdie
0 siblings, 1 reply; 8+ messages in thread
From: Randy MacLeod @ 2021-05-20 22:31 UTC (permalink / raw)
To: Richard Purdie, wangmy, openembedded-core, Tascioglu, Tony; +Cc: Jon Mason
On 2021-05-20 2:09 p.m., Richard Purdie wrote:
> On Thu, 2021-05-20 at 07:53 +0800, wangmy wrote:
>> CVE-2019-20388.patch
>> CVE-2020-24977.patch
>> CVE-2020-7595.patch
>> fix-python39.patch
>> removed since they are included in 2.9.12
>>
>> refresh 0001-Make-ptest-run-the-python-tests-if-python-is-enabled.patch
>> and libxml-m4-use-pkgconfig.patch
>>
>> Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
>> ---
>> ...he-python-tests-if-python-is-enabled.patch | 33 +++----
>> .../libxml/libxml2/CVE-2019-20388.patch | 37 --------
>> .../libxml/libxml2/CVE-2020-24977.patch | 41 --------
>> .../libxml/libxml2/CVE-2020-7595.patch | 36 -------
>> .../libxml/libxml2/fix-python39.patch | 94 -------------------
>> .../libxml2/libxml-m4-use-pkgconfig.patch | 29 +++---
>> .../{https://urldefense.com/v3/__http://libxml2_2.9.10.bb__;!!AjveYdw8EvQ!Of4iuguok63khz0zIh3LZNnCREuU7PA88OAqhb483O5j1FEeMdOan87_qMjFCD9eaZRqvQ$ => https://urldefense.com/v3/__http://libxml2_2.9.12.bb__;!!AjveYdw8EvQ!Of4iuguok63khz0zIh3LZNnCREuU7PA88OAqhb483O5j1FEeMdOan87_qMjFCD-5d7NWhQ$ } | 14 +--
>> 7 files changed, 35 insertions(+), 249 deletions(-)
>> delete mode 100644 meta/recipes-core/libxml/libxml2/CVE-2019-20388.patch
>> delete mode 100644 meta/recipes-core/libxml/libxml2/CVE-2020-24977.patch
>> delete mode 100644 meta/recipes-core/libxml/libxml2/CVE-2020-7595.patch
>> delete mode 100644 meta/recipes-core/libxml/libxml2/fix-python39.patch
>> rename meta/recipes-core/libxml/{https://urldefense.com/v3/__http://libxml2_2.9.10.bb__;!!AjveYdw8EvQ!Of4iuguok63khz0zIh3LZNnCREuU7PA88OAqhb483O5j1FEeMdOan87_qMjFCD9eaZRqvQ$ => https://urldefense.com/v3/__http://libxml2_2.9.12.bb__;!!AjveYdw8EvQ!Of4iuguok63khz0zIh3LZNnCREuU7PA88OAqhb483O5j1FEeMdOan87_qMjFCD-5d7NWhQ$ } (88%)
>
> Fails on the autobuilder in testing in ptest:
>
> https://urldefense.com/v3/__https://autobuilder.yoctoproject.org/typhoon/*/builders/82/builds/1815/steps/12/logs/stdio__;Iw!!AjveYdw8EvQ!Of4iuguok63khz0zIh3LZNnCREuU7PA88OAqhb483O5j1FEeMdOan87_qMjFCD-v3s3gNw$
> https://urldefense.com/v3/__https://autobuilder.yoctoproject.org/typhoon/*/builders/81/builds/2104/steps/12/logs/stdio__;Iw!!AjveYdw8EvQ!Of4iuguok63khz0zIh3LZNnCREuU7PA88OAqhb483O5j1FEeMdOan87_qMjFCD-kXlczAw$
>
> Cheers,
>
> Richard
Tony has an update posted to the list:
[PATCH] libxml2: Update to 2.9.12
that passes ptests at least locally
and I know that we fixed the 'fuzz' problem
and even explained in the commit log! ;-)
../Randy
>
>
>
>
>
--
# Randy MacLeod
# Wind River Linux
^ permalink raw reply [flat|nested] 8+ messages in thread
* Re: [OE-core] [PATCH] libxml2: upgrade 2.9.10 -> 2.9.12
2021-05-20 22:31 ` Randy MacLeod
@ 2021-05-22 11:20 ` Richard Purdie
0 siblings, 0 replies; 8+ messages in thread
From: Richard Purdie @ 2021-05-22 11:20 UTC (permalink / raw)
To: Randy MacLeod, wangmy, openembedded-core, Tascioglu, Tony; +Cc: Jon Mason
On Thu, 2021-05-20 at 18:31 -0400, Randy MacLeod wrote:
> On 2021-05-20 2:09 p.m., Richard Purdie wrote:
> >
> >
> > Richard
>
> Tony has an update posted to the list:
> [PATCH] libxml2: Update to 2.9.12
> that passes ptests at least locally
> and I know that we fixed the 'fuzz' problem
> and even explained in the commit log! ;-)
That was much appreciated, particularly as we're close to driving the open
list of CVEs down for master. I merged this patch and hope it will help
for this week's CVE report, thanks!
btw, for some reason, git am wouldn't apply it, I had to do that manually.
The other patches have been ok so I didn't dig too much into this one. It
was the deletion of the merged CVE patches that somehow didn't work so
I just did that manually.
Cheers,
Richard
^ permalink raw reply [flat|nested] 8+ messages in thread
end of thread, other threads:[~2021-05-22 11:20 UTC | newest]
Thread overview: 8+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2021-05-19 23:53 [OE-core] [PATCH] distcc: upgrade 3.3.5 -> 3.4 wangmy
2021-05-19 23:53 ` [OE-core] [PATCH] libdrm: upgrade 2.4.105 -> 2.4.106 wangmy
2021-05-19 23:53 ` [OE-core] [PATCH] libidn2: upgrade 2.3.0 -> 2.3.1 wangmy
2021-05-19 23:53 ` [OE-core] [PATCH] libtasn1: upgrade 4.16.0 -> 4.17.0 wangmy
2021-05-19 23:53 ` [OE-core] [PATCH] libxml2: upgrade 2.9.10 -> 2.9.12 wangmy
2021-05-20 18:09 ` Richard Purdie
2021-05-20 22:31 ` Randy MacLeod
2021-05-22 11:20 ` Richard Purdie
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.