linux/poky.git/meta/recipes-support, branch scarthgap-5.0.1

icu: update 74-1 -> 74-2

2024-05-03T13:12:20+00:00

ICU 74.2 updates to CLDR 44.1 locale data. These are maintenance releases for ICU 74 and CLDR 44, with limited sets of bug fixes and no API or structural changes. The CLDR bug fix relevant for ICU is for some formatting patterns that erroneously had two adjacent space characters. These are coalesced into one. (CLDR-17233) Important: DateFormat.getInstanceForSkeleton() and the DateTimePatternGenerator sometimes used the wrong patterns because they failed to use/inherit certain data (ICU-22575 — CLDR 44 had removed some redundant data that ICU relied on) For details, please see https://icu.unicode.org/download/74. Note that upstream has re-spun the release tarball (the initial tarball had a broken symlink for LICENSE file), so there can be yocto premirror checksum mismatches: https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/6671/steps/13/logs/stdio (From OE-Core rev: a6a5fa0af5e0bfe230681eee3f2e3b45a694ac9b) Signed-off-by: Alexander Kanavin Signed-off-by: Richard Purdie (cherry picked from commit 344f7500e6df31d7c06331aedbac0df4983da958) Signed-off-by: Steve Sakoman

curl: Backport patch to fix buildtools issues

2024-04-18T10:58:28+00:00

bitbake-selftest was failing on a github url on hosts using buildtools. The issue was tracked down to the curl upgrade 8.6.0 -> 8.7.1. Whilst there is a fix in upstream git to workaround the issue in this version, backport the fix from curl upstream to ensure there are no other related issues to the bug. (From OE-Core rev: 28ee90b07c70cafbba9149dd4dbe26cae9e214c7) Signed-off-by: Richard Purdie

libseccomp: Fix build when python packageconfig is enabled

2024-04-12T16:27:53+00:00

It needs additional tweaks with python enabled (From OE-Core rev: c3568ee00d3b7f6b421020dfec8005a27c2e9164) Signed-off-by: Khem Raj Signed-off-by: Richard Purdie

nghttp2: Upgrade 1.60.1 -> 1.61.0

2024-04-08T22:33:32+00:00

Includes a fix for CVE-2024-28182. (From OE-Core rev: 37d4b0c6c5b836f9f2bc52a142b093ef61ca48b2) Signed-off-by: Richard Purdie

curl: Upgrade 8.6.0 -> 8.7.1

2024-04-08T22:33:32+00:00

This includes 4 security fixes: CVE-2024-2466 - TLS certificate check bypass with mbedTLS CVE-2024-2398 - HTTP/2 push headers memory-leak CVE-2024-2379 - QUIC certificate check bypass with wolfSSL CVE-2024-2004 - Usage of disabled protocol Along with many other changes, mostly bugfixes: https://curl.se/changes.html (From OE-Core rev: 8e27b472d1bc872c6da2b22f57b30d36e231d745) Signed-off-by: Richard Purdie

gnutls: upgrade 3.8.3 -> 3.8.4

2024-04-04T13:05:03+00:00

- Upgrade gnutls SRCREV for new version - Refresh patches for 3.8.4 Changelog: ========== ** libgnutls: RSA-OAEP encryption scheme is now supported To use it with an unrestricted RSA private key, one would need to initialize a gnutls_x509_spki_t object with necessary parameters for RSA-OAEP and attach it to the private key. It is also possible to import restricted private keys if they are stored in PKCS#8 format. ** libgnutls: Fix side-channel in the deterministic ECDSA. Reported by George Pantelakis (#1516). [GNUTLS-SA-2023-12-04, CVSS: medium] [CVE-2024-28834] ** libgnutls: Fixed a bug where certtool crashed when verifying a certificate chain with more than 16 certificates. Reported by William Woodruff (#1525) and yixiangzhike (#1527). [GNUTLS-SA-2024-01-23, CVSS: medium] [CVE-2024-28835] ** libgnutls: Compression libraries are now loaded dynamically as needed instead of all being loaded during gnutls library initialization. As a result, the library initialization should be faster. ** build: The gnutls library can now be linked with the static library of GMP. Note that in order for this to work libgmp.a needs to be compiled with -fPIC and libhogweed in Nettle also has to be linked to the static library of GMP. This can be used to prevent custom memory allocators from being overriden by other applications. ** API and ABI modifications: gnutls_x509_spki_get_rsa_oaep_params: New function. gnutls_x509_spki_set_rsa_oaep_params: New function. GNUTLS_PK_RSA_OAEP: New enum member of gnutls_pk_algorithm_t. (From OE-Core rev: feaa2b8065c7a02b52aa55954f05a3ee66260305) Signed-off-by: Simone Weiß Signed-off-by: Richard Purdie

gmp: improve reproducibility

2024-04-04T13:05:03+00:00

nativesdk-gmp package contains host references in output packages. remove them. (From OE-Core rev: 7b072b46bd0d0442066189ecf098b56e50ea77b1) Signed-off-by: Oleh Matiusha Signed-off-by: Richard Purdie

curl: improve reproducibility

2024-04-04T13:05:03+00:00

nativesdk-curl package contains host references in output files. remove them. (From OE-Core rev: 30f4471ddced07929524b12ee5567521d51de033) Signed-off-by: Oleh Matiusha Signed-off-by: Richard Purdie

curl: fix quoting when disabling flaky tests

2024-03-30T22:25:43+00:00

The list of test labels to disable shouldn't be quoted, and this meant that tests were running when they should not. [ YOCTO #15268 ] (From OE-Core rev: 97afe73e6fbd4a116ac3bf2178634d7636195e5a) Signed-off-by: Ross Burton Signed-off-by: Richard Purdie

bmaptool: update to latest

2024-03-23T10:18:20+00:00

Upstream contains the patches that were being carried here. (From OE-Core rev: 240b3db72343f20f354f2681da48946da04c3260) Signed-off-by: Trevor Woerner Signed-off-by: Richard Purdie