linux/poky.git/meta/recipes-devtools/python, branch nanbield-4.3.2 Mirror of git.yoctoproject.org/poky https://git.enea.com/cgit/linux/poky.git/atom?h=nanbield-4.3.2 2024-01-04T14:09:44+00:00 python3-ptest: skip test_storlines 2024-01-04T14:09:44+00:00 Trevor Gamblin tgamblin@baylibre.com 2023-11-23T18:36:27+00:00 urn:sha1:97bdfea69801a7c2dc163edbaa639a31348b6817 [YOCTO #14933] test_storlines is yet another Python ptest that fails intermittently on the Yocto AB, so disable it during ptests for now. (From OE-Core rev: 11eab2b5d14efa75fcb0686a9f835f9675883113) Signed-off-by: Trevor Gamblin <tgamblin@baylibre.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> (cherry picked from commit d7b9f8157e6214a83b5495e8a32e11540ae65ff8) Signed-off-by: Steve Sakoman <steve@sakoman.com> python3-urllib3: Upgrade to 2.0.7 2023-12-05T21:51:37+00:00 Khem Raj raj.khem@gmail.com 2023-11-30T09:22:13+00:00 urn:sha1:795f82f53464424d55236fdf03b6d6d2e095f316 Addresses CVE-2023-45803 [1] [1] https://github.com/urllib3/urllib3/commit/4e98d57809dacab1cbe625fddeec1a290c478ea9 ( cherry-pick from commit befec4d3591bb0dce0e256cf338eb541b2a56b98 ) (From OE-Core rev: 99885e0914365f9c4bbb5584e9ab3d244dc58499) Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> python3-urllib3: Update to 2.0.6 2023-10-19T12:06:53+00:00 Khem Raj raj.khem@gmail.com 2023-10-15T15:28:44+00:00 urn:sha1:8159c17bdd9a6e35382bb3467cd21a2d2a72a729 Only changes in this release [1] fixes CVE-2023-43804 [2] on top of 2.0.5 [1] https://github.com/urllib3/urllib3/commit/644124ecd0b6e417c527191f866daa05a5a2056d [2] https://github.com/advisories/GHSA-v845-jxx5-vc9f (From OE-Core rev: 2a9ae3ca372075868c046d3a3ba2ba9b483e986d) Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> python3-numpy: remove obsolete reproducible workaround 2023-10-04T22:55:12+00:00 Ross Burton ross.burton@arm.com 2023-10-02T11:04:05+00:00 urn:sha1:5aa44d46c696c9ce18ee305667bf9946fa0eeb49 We currently delete some pycache files because frozenset wasn't able to be reproducible, but this has been fixed in Python 3.11: https://github.com/python/cpython/commit/33d95c6facdfda3c8c0feffa7a99184e4abc2f63 (From OE-Core rev: 5c287a896fa9f5cd05b6a2411528fdc8fb2579d6) Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> python3-docutils: Rename utilities to their canonical names 2023-10-04T22:55:12+00:00 Khem Raj raj.khem@gmail.com 2023-10-02T01:13:50+00:00 urn:sha1:eac91be2e1ba24c0be26e50189e3d90a60efd7e7 Packages which use the utilities usually call/search for these tools without .py extension e.g. kernel-selftest and fails to find the tools if they are having .py extension. (From OE-Core rev: 47b221d6bc91139cd84ddcf9c57a12288eafd8be) Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> python3-numpy: Fix reproducibility issue 2023-10-01T07:12:59+00:00 Richard Purdie richard.purdie@linuxfoundation.org 2023-09-29T21:53:24+00:00 urn:sha1:98ecb27d2301a8464170615f619441a5c71bbde4 Add a patch to fix the reproducibility issue being seen during testing. The issue is from a poor choice of regex against the compiler flags, being triggered by different path names. Drop the previous attempt at fixing this as it wasn't that. (From OE-Core rev: c4d1dc5e33734b94835e7f5e0e1746d4a6542b55) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> python3-cryptography{-vectors}: upgrade to 41.0.4 2023-09-29T22:11:59+00:00 Tim Orling ticotimo@gmail.com 2023-09-29T00:02:57+00:00 urn:sha1:a130e8b7987954d5145e288b5144f829c65d504b https://cryptography.io/en/latest/changelog/#v41-0-4 41.0.4 - 2023-09-19 Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.1.3. (From OE-Core rev: b9ebf704ebedbb099b8efd81b736884864b72e20) Signed-off-by: Tim Orling <tim.orling@konsulko.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> python3: add cpython to CVE_PRODUCT 2023-09-28T11:37:47+00:00 Chen Qi Qi.Chen@windriver.com 2023-09-27T07:14:38+00:00 urn:sha1:65ad609bd75c4ae9e4c79a22a22e15a74a76f6c0 https://nvd.nist.gov/vuln/detail/CVE-2023-33595 uses 'cpython'. Although it's currently the only one that uses cpython, let's add cpython to CVE_PRODUCT, just in case. (From OE-Core rev: 62598e1138f21a16d8b1cdd1cfe902aeed854c5c) Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> python3: fix SoB on patch 2023-09-28T11:37:46+00:00 Alexandre Belloni alexandre.belloni@bootlin.com 2023-09-26T21:12:27+00:00 urn:sha1:857c2468b9ae6855df67d18ed3245ac32559b1a6 (From OE-Core rev: 03a90095f5c1977a78f1a4ce568b793ebabfb281) Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> python3-zipp: upgrade 3.16.2 -> 3.17.0 2023-09-28T11:37:46+00:00 Wang Mingyu wangmy@fujitsu.com 2023-09-26T08:37:02+00:00 urn:sha1:42a47c1359134a338d2c3ba6d5b3e45e927743ee Changelog: =========== -Added CompleteDirs.inject classmethod to make available for use elsewhere. -Avoid matching path separators for '?' in glob. (From OE-Core rev: fdd3f2ad01ac6ac33f788afc806ad3c25dfd8b53) Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>