linux/meta-openembedded.git/meta-webserver, branch nanbield

nginx: upgrade 1.25.2 -> 1.25.3

2024-01-17T00:21:40+00:00

Changelog: =========== https://nginx.org/en/CHANGES *) Change: improved detection of misbehaving clients when using HTTP/2. *) Feature: startup speedup when using a large number of locations. Thanks to Yusuke Nojima. *) Bugfix: a segmentation fault might occur in a worker process when using HTTP/2 without SSL; the bug had appeared in 1.25.1. *) Bugfix: the "Status" backend response header line with an empty reason phrase was handled incorrectly. *) Bugfix: memory leak during reconfiguration when using the PCRE2 library. Thanks to ZhenZhong Wu. *) Bugfixes and improvements in HTTP/3. Signed-off-by: Meenali Gupta Signed-off-by: Khem Raj (cherry picked from commit dc4bef4648ea5ff73230ff2d343f498c93bd333b) Signed-off-by: Armin Kuster

apache2: v2.4.57 to v2.4.58 to fix CVE-2023-43622

2024-01-05T12:52:17+00:00

Note that patch 0011-modules... is no longer needed as it's included in the upgrade as well. CVE: CVE-2023-43622 Signed-off-by: Dylan Turner Signed-off-by: Khem Raj (cherry picked from commit 9f0b5053410d5958e089351b93199efd3473d3de) Signed-off-by: Armin Kuster

apache2: add vendor to product name used for CVE checking

2024-01-05T12:52:17+00:00

This recipe sets the product name used for CVE checking to "http_server". However, the cve-check logic matches that name to all products in the CVE database regardless of vendor. Currently, it is matching to products from vendors other than apache. As a result, CVE checking incorrectly reports CVEs for those vendors' products for this package. Signed-off-by: Jeffrey Pautler Signed-off-by: Khem Raj (cherry picked from commit 51f70eaaa5973e385645f574093ee860f5648f88) Signed-off-by: Armin Kuster

netdata: Upgrade 1.36.1 -> 1.43.0

2023-10-30T11:14:02+00:00

libyaml dependency now required. See: 6ee42875c: Bundle libyaml json-c also seems required now. If I don't enable it, I get compile errors. compression and https options got renamed upstream to lz4 and openssl. See: c74bf56ee: Code reorg and cleanup - enrichment of /api/v2 Signed-off-by: Sam Van Den Berge Signed-off-by: Khem Raj (cherry picked from commit 2dda30d3a458ba6ac25bb8af1b91cdfd47349f0c) Signed-off-by: Armin Kuster

Add static-passwd and static-group files

2023-10-12T13:58:06+00:00

In order to pass reproducible tests, recipes that use the useradd class must have static ids configured. Signed-off-by: Fabien Thomas Reviewed-by: Yoann Congal Signed-off-by: Khem Raj (cherry picked from commit 2961a31a024bd9d41724b6d16f820baee2b390df) Signed-off-by: Armin Kuster

images: Rename -image to -image-all

2023-10-12T13:58:05+00:00

These are test images to build all recipes in layer. Renaming them makes them refect what they are. Moreover we can rename the ptest images to match OE-Core naming conventions for meta-oe/meta-perl/meta-python Signed-off-by: Khem Raj (cherry picked from commit 0cb018059499f7531749ee1d5d1cbb02a6cf3f0a) Signed-off-by: Armin Kuster

images: Delete layer specific base images

2023-10-12T13:58:05+00:00

These were essentially duplicates of core-image-minimal, however core-image-base is a better baseline for upper layers, so switched the consumers of these images to use core-image-base Signed-off-by: Khem Raj (cherry picked from commit e88b777cbecd85ff7d2916209774354a6a458101) Signed-off-by: Armin Kuster

images: Inherit from core-image-base

2023-10-12T13:58:05+00:00

We really do not need to define base images which already exist in core layer, reuse them here. Signed-off-by: Khem Raj (cherry picked from commit ef9d73fced12e7b2dab485f0443cec84e55d016b) Signed-off-by: Armin Kuster

nginx: add configure option

2023-10-12T13:58:05+00:00

Support --with-http_xslt_module configure option via a PACKAGECONFIG option. The option is not added to the defaults. Signed-off-by: Joe Slater Signed-off-by: Khem Raj (cherry picked from commit e0ac8eec48ddddc93751cfcdef2557998bfe91c8) Signed-off-by: Armin Kuster

gnome-tweaks, networkmanager-fortisslvpn, libesmtp, json-schema-validator, python3-pybluez, python3-pynetlinux, apache2: Fix Malformed Upstream-Status

2023-10-04T14:52:48+00:00

* Accepted was replaced with Backport in gatesgarth: https://docs.yoctoproject.org/migration-guides/migration-3.2.html#miscellaneous-changes * as detected with oe-core/scripts/contrib/patchreview.py: meta-openembedded $ grep -A 3 Malformed *qa-patches meta-gnome.qa-patches:Malformed Upstream-Status 'Malformed Upstream-Status in patch meta-gnome.qa-patches-/OE/layers/meta-openembedded/meta-gnome/recipes-gnome/gnome-tweaks/gnome-tweaks/0002-meson-fix-invalid-positional-argument.patch meta-gnome.qa-patches-Please correct according to https://docs.yoctoproject.org/contributor-guide/recipe-style-guide.html#patch-upstream-status : meta-gnome.qa-patches-Upstream-Status: Accepted [https://gitlab.gnome.org/GNOME/gnome-tweaks/-/commit/dc9701e18775c01d0b69fabaa350147f70096da8]' (/OE/layers/meta-openembedded/meta-gnome/recipes-gnome/gnome-tweaks/gnome-tweaks/0002-meson-fix-invalid-positional-argument.patch) Signed-off-by: Khem Raj (cherry picked from commit a1c3c7f4e81d24a4d43880222ee184de3c3156b2) Signed-off-by: Armin Kuster