After the previous hash update the license file was not renamed,
which causes it to clash in the DL_DIR if it was already downloaded
with the previous hash.
This change renames the file to avoid this clash.
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
- Starting with [https://github.com/libsdl-org/sdl2-compat/pull/536], it
is possible to compile without x11. Remove x11 from
REQUIRED_DISTRO_FEATURES
Changelog:
2.32.62:
This is a stable bugfix release, with the following changes:
Improved support for GNU/Hurd
Fixed crash if hidapi strings are not available
2.32.60:
This is a stable bugfix release, with the following changes:
Fixed crash at startup in Dwarf Fortress
Fixed crash at startup in Stellaris
Fixed mouse stuttering in Amiberry
Fixed the viewport not being reset when the window is resized
Signed-off-by: Markus Volk <f_l_k@t-online.de>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Bugfix release, mostly with patches applied from other distros.
Also fixes the SRC_URI which became inaccessible over time.
Drop patches that are included in this release.
Shortlog:
https://gitlab.archlinux.org/grawlinson/libx86/-/compare/v1.1...v1.1.1
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
* rebase existing patches
* drop mips clang patch as this was fixed upstream via [1] to build only
for platforms supporting it.
* add PV to SRC_URI
* add variables to automatically calculate branch and tag
* fix includedir for utf8_range in ptest compilation
[1] 719f303703
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
This recipe is one of the successors of mime-support, which
provided mailcap and mime.types files. This recipe contains
only the mime.types portion.
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
This recipe is one of the successors of the mime-support, which
provided mailcap and mime.types files. This recipe contains
only the mailcap portion.
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Debian has split this package into two sepatare packages:
media-types and mailcap. This package hasn't been updated
since 2020 (but the other two packages are regularly updated).
Beside this the SRC_URI has been inaccessible since a while also.
Drop this recipe (and substitute it with the up to date packages
in followup patches).
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Drop the patches that are included in this release.
License-Update: copyright year bump
Changelog:
1.22.2:
Fix a SPNEGO packet parsing bug which could cause GSS mechanism negotiation failure.
1.22.1:
Fix a vulnerability in GSS MIC verification [CVE-2025-57736]
1.22.0:
User experience
- The libdefaults configuration variable "request_timeout" can be set to limit the
total timeout for KDC requests. When making a KDC request, the client will now
wait indefinitely (or until the request timeout has elapsed) on a KDC which
accepts a TCP connection, without contacting any additional KDCs. Clients will
make fewer DNS queries in some configurations.
- The realm configuration variable "sitename" can be set to cause the client to
query site-specific DNS records when making KDC requests.
Administrator experience
- Principal aliases are supported in the DB2 and LMDB KDB modules and in the
kadmin protocol. (The LDAP KDB module has supported aliases since release 1.7.)
- UNIX domain sockets are supported for the Kerberos and kpasswd protocols.
- systemd socket activation is supported for krb5kdc and kadmind.
Developer experience
- KDB modules can be be implemented in terms of other modules using the new
krb5_db_load_module() function.
- The profile library supports the modification of empty profiles and the copying
of modified profiles, making it possible to construct an in-memory profile and
pass it to krb5_init_context_profile().
- GSS-API applications can pass the GSS_C_CHANNEL_BOUND flag to gss_init_sec_context()
to request strict enforcement of channel bindings by the acceptor.
Protocol evolution
- The PKINIT preauth module supports elliptic curve client certificates, ECDH key
exchange, and the Microsoft paChecksum2 field.
- The IAKERB implementation has been changed to comply with the most recent draft
standard and to support realm discovery.
- Message-Authenticator is supported in the RADIUS implementation used by the OTP
kdcpreauth module.
Code quality
- Removed old-style function declarations, to accomodate compilers which have
removed support for them.
- Added OSS-Fuzz to the project's continuous integration infrastructure.
- Rewrote the GSS per-message token parsing code for improved safety.
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Delete patch that's included in this release.
Changelog:
- Add support for MbedTLS
- Add Reverse Proxy implementation
- Add support for wireless pairing (AppleTV)
- Embed 3rd party libraries for ed25519 and SRP6a
- Fixes in idevicedebug
- idevicecrashreport: Allow filtering crash reports by filename
- Add idevicedevmodectl tool
- Fixes for idevicebackup2
- Add property_list_client_get_service_client() and service_get_connection() functions
- Add idevicebtlogger
- Add new idevice_events_subscribe/unsubscribe API
- Move LIBIMOBILEDEVICE_API to public headers
- Add afc_strerror function
- Add libimobiledevice_version() function
- Use libimobiledevice-glue's SHA1 implementation
- Add support for iOS 17+ Personalized Developer Disk image mounting
- Fix compilation on MSVC
- Add idevice_strerror() to interface
- Add new idevice_get_device_version() to interface
- Add os_trace_relay service implementation
- Fixes for idevicesyslog
- afc: Add afc_get_file_info_plist and afc_get_device_info_plist functions
... and several other internal changes
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Drop patch to fix gcc15 compatibility - the problem has been solved by upstream.
Changelog:
- Update getaddrinfo options to support IPv6 hostname resolution
- Removed unnecessary _WIN64 conditional checks
- Fixed condition variable timed wait
- Support tls:// prefix
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
1.Changelog:
https://github.com/zlib-ng/minizip-ng/releases/tag/4.0.10
2.Remove 0001-crypt.h-Remove-register-keyword.patch as it was merged upstream.
Signed-off-by: Liu Yiding <liuyd.fnst@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Ptests passed.
Note: plugin_uefi_capsule_splash PACKAGECONFIG is broken, it fails to configure:
| ../sources/fwupd-2.0.16/plugins/uefi-capsule/meson.build:83:4: ERROR: Problem encountered: Error: missing dependency python gobject introspection (python3-gi)
| Error: missing dependency python cairo (python3-cairo)
This doesn't seem to be a regression from this update, was present before the upgrade also.
(The PACKAGECONFIG is disabled by default)
Changelogs:
2.0.19:
This release adds the following features:
Add two commands to fwupdtool to calculate and find CRCs
Allow systems to use the udev event source without using systemd
This release fixes the following bugs:
Always show the correct new firmware version in 'fwupdmgr get-history'
Fix an integer underflow when parsing a malicious PE file
Fix a regression when enumerating the dell-dock status component
Fix the fuzzer timeout when parsing a synaptics-rmi SBL container
Fix updating the Intel GPU FWDATA section
Respect 'fwupdmgr --force' when installing firmware
This release adds support for the following hardware:
Lenovo Sapphire Folio Keyboard
2.0.18:
This release adds the following features:
Add a MOTD message for devices needing reboot after staged updates
Create the reboot-required file when a firmware update requires reboot
Record the system state for each composite emulation
Update USI docking station firmware without requiring a manual replug
This release fixes the following bugs:
Add a MTD device problem if the Intel SPI BIOS lock is set
Allow changing the child name when using PARENT_NAME_PREFIX
Allow UpdateCapsule to work on systems that do not support SecureBoot
Correctly parse the EFI_CAPSULE_RESULT_VARIABLE_HEADER
Fall back to the SMBIOS version for BIOS MTD devices
Fix a crash when trying to record an i2c emulation
Fixed Huddly upgrade problems with major version changes
Fix man page compatibility with apropos and whatis
Fix parsing USB BOS descriptors
Fix up the x86_64-specific capsule flags when deploying UEFI firmware
Improve firmware stream searching speed by a huge amount
Only convert the release uint32_t to device version format for UEFI devices
Only handle SIGINT in fwupdtool when required
Refactor the hypervisor and container detection to be usable from plugins
Set PlatformArchitecture as the CPU architecture for RISC-V machines
Use a sensible timeout when doing qc-s5gen2 HID requests
This release adds support for the following hardware:
HP Portable USB-C 4K HDMI Hub
Lenovo Legion Go 2 (as a HID device)
Synaptics HapticsPad
2.0.17:
This release adds the following features:
Add support for client-side phased update deployment
Add support for post-quantum signatures
Allow clearing the cache dirirectory
Allow fwupdtpmevlog to dump the raw eventlog data
Build a NVMe GUID derived from the serial number
Make fwupdtool extract work with deeply nested images
Parse VSS and FTW variable stores from EFI volumes
Reintroduce the FreeBSD CI target
Support very old versions of UDisks
This release fixes the following bugs:
Add 'fwupdmgr hwids' by exposing another daemon property
Add offline hashes for the Microsoft 20250902 dbx
Add the Framework-specific KEK and db hashes
Allow updating IFD BIOS region via parent MTD
Avoid showing reinstall prompts for composite devices
Clean up the fwupdtool lock file in all cases
Correctly match the correct historical composite component
Do not allow PK or KEK updates when system has a test key installed
Do not allow reinstalling when using ONLY_VERSION_UPGRADE
Do not require AC power to run the installed tests
Do not scan EFI volumes when constructing MTD BIOS devices
Ensure REGION is always set for MTD IFD children
Ensure SCSI instance IDs are valid ASCII values
Fix a critical warning when parsing invalid Jabra firmware
Fix an Ilitek parsing crash found when fuzzing
Fix an inotify race when refreshing metadata
Fix a pending-activation problem with Dell docking stations
Fix a potential hang when creating a chunk array with aligned sizes
Fix MTD emulation recording for PCI-backed devices
Fix the device order when the parent specifies install-parent-first
Fix the FLMSTR layout when reading IFD partitions
Fix the thunderbolt controller rushing to finalize before onlining retimers
Fix writing Intel GPU OptionROM data and OptionROM code
Flush stale events to make the Logitech Rallybar more reliable
Ignore all the Intel GPU MTD devices
Ignore errors when writing the last page of Dell dock firmware
Make an error message more specific
Modify the Dell dock needs-activation flag after updates are installed
Only add one devlink device for each PCI card
Parse the FMAP SBOM area as uSWID when required
Relax the USI dock DMC child device checks for new firmware
Revert back to the flashrom deprecated API as the new API is unusable
Rewrite the fwupdmgr manpage to be more useful
Use higher delay when update status for Logitech peripheral devices
This release adds support for the following hardware:
ASUS CX9406 (touch controller)
Framework Copilot keyboard
Genesys GL352530 and GL352360
Huddly C1
Lexar and Maxio NVMe SSDs
Primax Ryder mouse 2
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
- Put an end to the (&*% stupid GCC breaking builds for no valid reason.
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
3.41:
- engines/io_uring: remove unnecessary SQ full check
- io_uring: ensure accurate real_file_size setup for full device access with PI enabled
- Fix: parse.c opt_len() to use minimal distance to delimiter to determine option length
- io_u: fix offset calculation in randtrimwrite
- engines/http: fix file name
- engines/http: Add S3 security token support
- io_u: get io_u from io_u_freelist when TD_FSYNCING
- io_uring CQ reap cleanup
- Add 'filetype' option
- handle out-of-order write completions in verify state (Issue #1950)
- engines/http: Add support for range reads
- Makefile: fix man and share install paths on MacOS
- Sprandom
- Fix mandoc warnings
- fio: fix formats under MIPS64/PPC
- sprandom: Fix several issues found in the sprandom implementation
- t/verify-state.c fixes/improvements
3.40:
- t/read-to-pipe-async: fix -DNDEBUG support
- docs: update docs for verify_mode=compare of io_uring_cmd
- dfs: fix fail to load dfs engine
- Fix spelling error in IO uring engine.
- Fix hang on Windows when multiple --client args are present
- Add important info about http_host and file formatting to s3 example
- oslib: blkzoned: add missing blkzoned_move_zone_wp() stub
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Details: https://nvd.nist.gov/vuln/detail/CVE-2025-68118
The vulnerability is specific to the usage of Microsoft specific sprintf
implementation. Because of this, ignore this vulnerability.
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
1. Changelog
a0d75fbab3
2. Drop following patches as they were merged upstream.
fbida-gcc10.patch
0001-meson.build-install-fbgs-shell-script.patch
0001-fbida-Include-missing-sys-types.h.patch
0002-meson.build-add-features-options-for-png-gif-tiff-we.patch
0001-meson.build-make-fbpdf-build-optional.patch
3. Drop 0003-meson.build-do-not-require-xkbcommon.patch as xkbcommon was added as DEPEND.
Signed-off-by: Liu Yiding <liuyd.fnst@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
For the boards with multiple UDC ports, when compiling with meta-selinux
layer adb funtion will be impacted due to below error. Remove the recipe
under dynamic-layers/selinux/ as it's not required anymore, and ensure
adb work normally on the boards with multiple UDC ports.
ls /sys/class/udc/ > /sys/kernel/config/usb_gadget/adb/UDC
ls: write error: Device or resource busy
Signed-off-by: Shoudi Li <shoudil@qti.qualcomm.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
While using devtool to check available versions, I noticed a 301 http error.
Specifically :
$ devtool latest-version libxfce4ui
Resolving archive.xfce.org (archive.xfce.org)... 217.70.191.87
Connecting to archive.xfce.org (archive.xfce.org)|217.70.191.87|:80... connected
.
HTTP request sent, awaiting response... 301 Moved Permanently
Location: https://archive.xfce.org/src/xfce/libxfce4ui/4.20/ [following]
With this patch, we change to make the SRC_URI an https request.
Signed-off-by: Jason Schonberg <schonm@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Fixes: #1023
Upstream seems to have regenerated the archive, as the checksum no
longer matches the one specified in the recipe:
|WARNING: hdf5-2.0.0-r0 do_fetch: Checksum failure encountered with download of https://support.hdfgroup.org/releases/hdf5/v2_0/v2_0_0/downloads/hdf5-2.0.0.tar.gz - will attempt other sources if available
|WARNING: hdf5-2.0.0-r0 do_fetch: Checksum mismatch for local file /buildcache/downloads/hdf5-2.0.0.tar.gz
|Cleaning and trying again.
|WARNING: hdf5-2.0.0-r0 do_fetch: Renaming /buildcache/downloads/hdf5-2.0.0.tar.gz to /buildcache/downloads/hdf5-2.0.0.tar.gz_bad-checksum_a7a8f43e76e825ea22234bc735d5b184e880d305e33e4c9bb93a3912421c9973
|ERROR: hdf5-2.0.0-r0 do_fetch: Checksum failure fetching https://support.hdfgroup.org/releases/hdf5/v2_0/v2_0_0/downloads/hdf5-2.0.0.tar.gz
|ERROR: hdf5-2.0.0-r0 do_fetch: Bitbake Fetcher Error: ChecksumError('Checksum mismatch!\nFile: \'/buildcache/downloads/hdf5-2.0.0.tar.gz\' has sha256 checksum \'a7a8f43e76e825ea22234bc735d5b184e880d305e33e4c9bb93a3912421c9973\' when \'6e45a4213cb11bb5860)
|ERROR: Logfile of failure stored in: /home/tgamblin/workspace/yocto/openembedded-core/build/tmp/work/x86-64-v3-poky-linux/hdf5/2.0.0/temp/log.do_fetch.2054297
However, the tarballs look identical. Update the hash and be explicit
about downloadfilename to avoid any mirroring issues. A note has been
left that this measure can be removed with a future upgrade.
Signed-off-by: Trevor Gamblin <tgamblin@baylibre.com>
Reviewed-by: Yoann Congal <yoann.congal@smile.fr>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Details: https://nvd.nist.gov/vuln/detail/CVE-2025-15269
Pick the patch that refers to this vulnerability ID explicitly.
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Details: https://nvd.nist.gov/vuln/detail/CVE-2025-15275
Pick the patch that mentions this vulnerability ID explicitly.
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Details: https://nvd.nist.gov/vuln/detail/CVE-2025-15279
Pick the patch that mentions this vulnerability ID explicitly.
Also, this patch has caused some regression - pick the patch also
that fixed that regression.
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Drop patches that are inluded in this release.
libxi has been removed as a dependency, because the project has dropped
the x11 drawing backend, it implements everything in gtk.
Changelog: https://github.com/fontforge/fontforge/releases/tag/20251009
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
V3: adds fixes for building with clang
V4: removes default PACKAGECONFIG used for testing builds
V5: fixes Upstream-Status in patch
Signed-off-by: Frede Hoey Braendstrup <frederikbraendstrup@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
0001-avoid-unnecessary-check-for-sqlite3-binary.patch
removed since it's included in 2.7.0
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
