linux/poky.git/meta/recipes-core/expat, branch rocko

uninative: Add allow-shlib-undefined to BUILD_LDFLAGS and drop other workarounds

2018-05-03T08:53:49+00:00

We have a problem when for example, a glibc 2.27 based system builds some library like libpopt-native and puts it into sstate then it is reused on a pre glibc-2.27 system to build something which depends on popt like rpm-native. This results in an error like: recipe-sysroot-native/usr/lib/libpopt.so: undefined reference to `glob@GLIBC_2.27' In the past we've had this problem with new symbols like getrandom and getentropy, here its with a more complex symbol where there is an old version and a newer version. We've looked into various options, basically we cannot link against our uninative libc/ld.so since we don't have the right headers or compiler link libraries. The compiler doesn't allow you to switch in a new set either, even if we did want to ship them. Shipping a complete compiler, dev headers and libs also isn't an option. On the other hand if we follow the ld man page, it does say: """ The reasons for allowing undefined symbol references in shared libraries specified at link time are that: - A shared library specified at link time may not be the same as the one that is available at load time, so the symbol might actually be resolvable at load time. """ which is exactly this case. By the time the binary runs, it will use our uninative loader and libc and the symbol will be available. Therefore we basically have a choice, we get weird intermittent bugs, we drop uninative entirely, or we pass this option. If we pass the option, we can drop the other workarounds too. (From OE-Core rev: 75a62ede393bf6b4972390ef5290d50add19341a) (From OE-Core rev: d18bf7fa8e80d6cfaf3fdbe1ab06eec84b954432) (From OE-Core rev: 4545f5436a5a106154680825ecb1cb60437faa91) Signed-off-by: Richard Purdie [Clean up for Rocko context] Signed-off-by: Armin Kuster Signed-off-by: Richard Purdie

expat: Don't use getrandom() in the -native case

2017-08-15T23:03:15+00:00

getrandom() is only available in glibc 2.25+ and uninative may relocate binaries onto systems that don't have this function. For now, force the code to the older codepath until we can come up with a better solution for this kind of issue. (From OE-Core rev: da9ac8092497c3f2c246d3534f47e42cb2d9e4e8) Signed-off-by: Richard Purdie

expat: Upgrade to 2.2.3

2017-08-15T23:03:14+00:00

(From OE-Core rev: d404d5574b0c270656fda4dc051babe82e8828a9) Signed-off-by: Khem Raj Signed-off-by: Dengke Du Signed-off-by: Richard Purdie

expat: upgrade to 2.2.1

2017-07-06T13:38:14+00:00

The COPYING file in expat has the following changes: 2001-20016 to 2001-2017 (From OE-Core rev: 7e880775e2e354c76c386c91b2b8f36eddf1574d) Signed-off-by: Dengke Du Signed-off-by: Ross Burton Signed-off-by: Richard Purdie

gzip/pigz/expat/image: Simplify gzip-native/pigz-native

2017-01-28T23:32:16+00:00

With recipe specific sysroots, the gzip-replacement-native dance/class is obsolete, simplify the code accordingly. (From OE-Core rev: 39865fdf3698a130f792d41853f9c9ca1901e335) Signed-off-by: Richard Purdie

expat: Upgrade 2.1.1 -> 2.2.0

2016-07-20T09:28:48+00:00

Remove a patch that is no longer needed. License checksum changes because of a copyright year change. (From OE-Core rev: 911510181ac933d5d1fc7d88890eb67d5d338acf) Signed-off-by: Jussi Kukkonen Signed-off-by: Ross Burton Signed-off-by: Richard Purdie

expat: CVE-2016-0718

2016-06-23T13:26:14+00:00

Fix CVE-2016-0718: expat XML parser crashes on malformed input External References: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-0718 https://bugzilla.redhat.com/show_bug.cgi?id=1296102 https://bugzilla.suse.com/show_bug.cgi?id=979441 Patch from: https://bugzilla.redhat.com/show_bug.cgi?id=1296102 (From OE-Core rev: 6589de727ba9c9901fdd53d31bd88ad0f17f3905) Signed-off-by: Yi Zhao Signed-off-by: Ross Burton Signed-off-by: Richard Purdie

expat: Upgrade 2.1.0 -> 2.1.1

2016-05-17T13:43:28+00:00

* Remove backported CVE patch * Update autotools patch * Update SRC_URI to match current archive type (From OE-Core rev: 8a5a90aa6a7f398803f432038d56cdfea1651aaa) Signed-off-by: Jussi Kukkonen Signed-off-by: Richard Purdie

expat: CVE-2015-1283

2016-01-07T13:40:16+00:00

Add CVE-2015-1283 patch for fixing integer overflow bug in expat. Details are at below link: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1283 Patch comes from: https://hg.mozilla.org/releases/mozilla-esr31/rev/2f3e78643f5c https://codereview.chromium.org/1224303003 (From OE-Core rev: c89c5383e304a52b604a3672ac93fd88b5eb8b41) Signed-off-by: Zhixiong Chi Signed-off-by: Ross Burton Signed-off-by: Richard Purdie

recipes: convert remaining SUMMARY/DESCRIPTION cosmetic issues (part 2)

2014-02-20T14:28:13+00:00

Completes previous commit b5292d4115a4555a66b5e35acdc67dd71fb8577f. Updates SUMMARY[doc] (meta/conf/documentation.conf). Changes: - rename DESCRIPTION with length < 80 to (non present tag) SUMMARY - drop final point character at the end of SUMMARY string - remove trailing whitespace of SUMMARY line Note: don't bump PR (From OE-Core rev: ad17dfd31a2b97b3e610a0ea0889f5ecb2a63b97) Signed-off-by: Matthieu Crapet Signed-off-by: Saul Wold Signed-off-by: Richard Purdie