<feed xmlns='http://www.w3.org/2005/Atom'>
<title>linux/poky.git/meta/recipes-support/libssh2, branch walnascar</title>
<subtitle>Mirror of git.yoctoproject.org/poky</subtitle>
<id>https://git.enea.com/cgit/linux/poky.git/atom?h=walnascar</id>
<link rel='self' href='https://git.enea.com/cgit/linux/poky.git/atom?h=walnascar'/>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/'/>
<updated>2024-12-09T15:23:28+00:00</updated>
<entry>
<title>libssh2: remove status for CVE-2023-48795</title>
<updated>2024-12-09T15:23:28+00:00</updated>
<author>
<name>Peter Marko</name>
<email>peter.marko@siemens.com</email>
</author>
<published>2024-12-06T18:25:11+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=45dc2314ce2ae919993569e5f6f63d6f3230b342'/>
<id>urn:sha1:45dc2314ce2ae919993569e5f6f63d6f3230b342</id>
<content type='text'>
Entry for this CVE was corrected in NVD DB, we no longer need to set
status for it.

(From OE-Core rev: 459f9ebc0695f44bc6d45f62c89f504a0bfa21ee)

Signed-off-by: Peter Marko &lt;peter.marko@siemens.com&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>libssh2: mark CVE-2023-48795 as fixed</title>
<updated>2024-11-28T12:27:12+00:00</updated>
<author>
<name>Peter Marko</name>
<email>peter.marko@siemens.com</email>
</author>
<published>2024-11-24T19:11:26+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=e48539a2f8e686878694ad8b7471132b1f94e000'/>
<id>urn:sha1:e48539a2f8e686878694ad8b7471132b1f94e000</id>
<content type='text'>
NVD DB has typo in version (1.11.10 instead of 1.11.1)
Version 1.11.1 is the currently the latest one, there is no .10

(From OE-Core rev: 92886f91dc6ed3f41771bc984aa11269bd68abe0)

Signed-off-by: Peter Marko &lt;peter.marko@siemens.com&gt;
Signed-off-by: Mathieu Dubois-Briand &lt;mathieu.dubois-briand@bootlin.com&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>libssh2: upgrade 1.11.0 -&gt; 1.11.1</title>
<updated>2024-10-24T14:18:54+00:00</updated>
<author>
<name>Trevor Gamblin</name>
<email>tgamblin@baylibre.com</email>
</author>
<published>2024-10-22T20:29:34+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=3fa461da7c43a945542294f0aaba4824deb60810'/>
<id>urn:sha1:3fa461da7c43a945542294f0aaba4824deb60810</id>
<content type='text'>
Changelog: https://github.com/libssh2/libssh2/releases/tag/libssh2-1.11.1

Patches '0001-disable-DSA-by-default.patch' and 'CVE-2023-48795.patch'
were both dropped as they're included in version 1.11.1.

License-Update: Copyright symbols were changed from (C) to lowercase (c)

ptest results:

|root@qemux86-64:~# ptest-runner libssh2
|START: ptest-runner
|2024-10-22T20:15
|BEGIN: /usr/lib/libssh2/ptest
|PASS: mansyntax.sh
|PASS: test_simple
|PASS: test_sshd.test
|DURATION: 3
|END: /usr/lib/libssh2/ptest
|2024-10-22T20:15
|STOP: ptest-runner
|TOTAL: 1 FAIL: 0

(From OE-Core rev: bcd178082a50b81405019699d5acc3cd8273b732)

Signed-off-by: Trevor Gamblin &lt;tgamblin@baylibre.com&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>libssh2: disable-DSA-by-default</title>
<updated>2024-08-03T06:47:36+00:00</updated>
<author>
<name>Jose Quaresma</name>
<email>quaresma.jose@gmail.com</email>
</author>
<published>2024-07-31T15:06:58+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=73f5bd99d243495a11111d8a436779788a8f59ff'/>
<id>urn:sha1:73f5bd99d243495a11111d8a436779788a8f59ff</id>
<content type='text'>
Backport the merged solution and drop the submited patch.

(From OE-Core rev: f099cc0782db9c726eff151a11c1c59a1a22b3d7)

Signed-off-by: Jose Quaresma &lt;jose.quaresma@foundries.io&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>libssh2: fix ptest regression with openssh 9.8p1</title>
<updated>2024-07-26T11:28:42+00:00</updated>
<author>
<name>Jose Quaresma</name>
<email>quaresma.jose@gmail.com</email>
</author>
<published>2024-07-25T13:23:13+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=b33830b4f60187f928a413556423b3de2add9ef2'/>
<id>urn:sha1:b33830b4f60187f928a413556423b3de2add9ef2</id>
<content type='text'>
(From OE-Core rev: 1a2fef1d70c8083e65325dfa8a5cae7d8443951b)

Signed-off-by: Jose Quaresma &lt;jose.quaresma@foundries.io&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>libssh2: remove util-linux-col from ptest dependencies</title>
<updated>2024-07-13T22:28:30+00:00</updated>
<author>
<name>Chen Qi</name>
<email>Qi.Chen@windriver.com</email>
</author>
<published>2024-07-11T07:56:36+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=6911d1f7af9047d6ed7b6aa67e73ca76918758bf'/>
<id>urn:sha1:6911d1f7af9047d6ed7b6aa67e73ca76918758bf</id>
<content type='text'>
After util-linux upgrade to 2.40.1, we got the following QA issue
on musl:

  WARNING: libssh2-1.11.0-r0 do_package_qa: QA Issue: libssh2-ptest
  rdepends on util-linux-col, but it isn't a build dependency? [build-deps]

The issue appeared because new version util-linux has disabled
building out col on musl[1]. In short, the reason is that col in
util-linux requires something that musl does not provide.

This 'util-linux-col' dependency was added in 2021, at that time
the libssh2's version is 1.9.0. Now the version is 1.11.0 and I tested
its ptest, it does not require util-linux-col to succeed.

[1] https://github.com/util-linux/util-linux/commit/8886d84e25a457702b45194d69a47313f76dc6bc

(From OE-Core rev: 9007de7e388e269028c7c1722f0d7ee76bc5d251)

Signed-off-by: Chen Qi &lt;Qi.Chen@windriver.com&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>libssh2: backport fix for CVE-2023-48795</title>
<updated>2024-01-24T15:46:19+00:00</updated>
<author>
<name>Ross Burton</name>
<email>ross.burton@arm.com</email>
</author>
<published>2024-01-22T17:20:31+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=3adac25f899054b7d1d8c14458a1a4cd310abbd7'/>
<id>urn:sha1:3adac25f899054b7d1d8c14458a1a4cd310abbd7</id>
<content type='text'>
Backport the upstream fix for CVE-2023-48795.

(From OE-Core rev: 314fa19c5e07fa632ff0434a6adbb97de1319a02)

Signed-off-by: Ross Burton &lt;ross.burton@arm.com&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>libssh2: disable rpath to fix curl-native build</title>
<updated>2023-07-10T10:36:34+00:00</updated>
<author>
<name>Sudip Mukherjee</name>
<email>sudipm.mukherjee@gmail.com</email>
</author>
<published>2023-06-30T15:32:46+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=be72174002048f885f9b9fac0781b33808b13451'/>
<id>urn:sha1:be72174002048f885f9b9fac0781b33808b13451</id>
<content type='text'>
When curl is built with PACKAGECONFIG:append = " libssh2", the build fails
with the error:
gcc: error: unrecognized command-line option '-R'

It was trying to set the rpath for libssh2.

(From OE-Core rev: c213d8579951e168a19231cf5b2f81d55e059a22)

Signed-off-by: Sudip Mukherjee &lt;sudipm.mukherjee@gmail.com&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>libssh2: update 1.10.0 -&gt; 1.11.0</title>
<updated>2023-06-27T15:23:40+00:00</updated>
<author>
<name>Alexander Kanavin</name>
<email>alex.kanavin@gmail.com</email>
</author>
<published>2023-06-25T21:22:41+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=681b43a6a75b19e99a8b948d74993401c6711881'/>
<id>urn:sha1:681b43a6a75b19e99a8b948d74993401c6711881</id>
<content type='text'>
License-update: copyright years

Enable static libs as some tests need them.

Fix up ptests; the set being run is the same.
test_simple is statically linked, hence DISABLE_STATIC is overriden.

(From OE-Core rev: c3c5b74e428a13335f8c09bf4cc74dd009c8bc06)

Signed-off-by: Alexander Kanavin &lt;alex@linutronix.de&gt;
Signed-off-by: Alexandre Belloni &lt;alexandre.belloni@bootlin.com&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>libssh2: Clean up ptest patch/coverage</title>
<updated>2023-02-17T18:01:01+00:00</updated>
<author>
<name>Richard Purdie</name>
<email>richard.purdie@linuxfoundation.org</email>
</author>
<published>2023-02-15T22:25:33+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=57c38ab6d2d23491f194cd11cd001dd46ca5884c'/>
<id>urn:sha1:57c38ab6d2d23491f194cd11cd001dd46ca5884c</id>
<content type='text'>
Martin Jansa spotted patchreview.py reports Malformed Upstream-Status in a
patch in this recipe. The patch is not being applied since there is no ptest
override.

The test in question was also disabled due to an issue with new versions of
openssh.

Add a workaround for the broken test, enable it, drop the broken patch.

(From OE-Core rev: e9f2cc084638ce9cb5339df611e473c30f0e40b1)

Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
</feed>
