webadmin/bpfire
1
0
Fork 0
mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-23 17:32:57 +02:00
Code Issues Packages Projects Releases Wiki Activity
19,936 Commits 2 Branches 1 Tag
ff67691882e8d2bbff53d643cc52222dc6ee8460
Commit Graph

1760 Commits

Author SHA1 Message Date
Adolf Belka
cfb7cf5e03 libtalloc: Update to version 2.3.4 
- Update from version 2.3.1 to 2.3.4
- Update of rootfile
- No Changelog available in the source tarball or on the website. talloc uses the samba
   technical mailing list for any communications but there was no announcement for the
   updated versions found.

Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
Reviewed-by: Peter Müller <peter.mueller@ipfire.org>
 2022-12-27 16:30:54 +00:00
Adolf Belka
01e65b0902 libshout: Update to version 2.4.6 
- Update from version 2.4.3 to 2.4.6
- Update of rootfile
- Changelog
    libshout 2.4.6 (20220410)
	* Fixed pkg-config file (#2329)
	* Made vorbis an optional codec
	* Do not pass to small headers to libspeex
	  (see also the same mirror-patch in Icecast)
	* Updated documentation, mostly in regard of making it clearer
	  which functions are now obsoleted
	* General code cleanup
	* Added compiler warnings about obsoleted functions and
	  ignored return values
	* Replaced old shout_set_metadata() with new shout_set_metadata_utf8()
	* Added support for plain text streaming
	* Fixed shout_set_metadata*() sometimes returning SHOUTERR_RETRY (#2328)
	* Workaround old clients by emulating SHOUTERR_RETRY with SHOUTERR_BUSY (#2316)
	* Remove our re-implementation of X509_check_host()
	* Allow to disable building tools (#2331)
    libshout 2.4.5 (20201219)
	* Improved shout.h for reading, and understanding.
	* Marked dumpfile support as obsolete (as SHOUT_PROTOCOL_XAUDIOCAST already is).
	* Added Support for setting the content language.
	* Avoid the use of obsolete functions (#2317).
	* Several small fixes for non-blocking mode (#2321, #2315).
	* Corrected detection of libogg (mostly for windows targets).
	* Now accept TLS mode "auto" when build without TLS support.
	* Added new tool shout(1).
    libshout 2.4.4 (20201001)
	* Fixed handling of blocking/non-blocking mode
	* Fixed ICY port increment
	* Fixed reusing of handles
	* Fixed error handling of Ogg sync layer
	* Fixed Passing of errors between connection and instance layer
	  Without this fix died connections were not correctly detected.
	* Fixed and improved build scripts

Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
Reviewed-by: Peter Müller <peter.mueller@ipfire.org>
 2022-12-26 08:46:17 +00:00
Adolf Belka
6d144d259f dbus: Update to version 1.14.4 
- Update from version 1.14.0 to 1.14.4
- Update of rootfile
- Changelog
    dbus 1.14.4 (2022-10-05)
     This is a security update for the dbus 1.14.x stable branch, fixing
     denial-of-service issues (CVE-2022-42010, -42011, -42012) and applying
     security hardening (dbus#416).
	Behaviour changes:
		• On Linux, dbus-daemon and other uses of DBusServer now create a
		  path-based Unix socket, unix:path=..., when asked to listen on a
		  unix:tmpdir=... address. This makes unix:tmpdir=... equivalent to
		  unix:dir=... on all platforms.
		  Previous versions would have created an abstract socket, unix:abstract=...,
		  in this situation.
		  This change primarily affects the well-known session bus when run via
		  dbus-launch(1) or dbus-run-session(1). The user bus, enabled by configuring
		  dbus with --enable-user-session and running it on a systemd system,
		  already used path-based Unix sockets and is unaffected by this change.
		  This behaviour change prevents a sandbox escape via the session bus socket
		  in sandboxing frameworks that can share the network namespace with the host
		  system, such as Flatpak.
		  This change might cause a regression in situations where the abstract socket
		  is intentionally shared between the host system and a chroot or container,
		  such as some use-cases of schroot(1). That regression can be resolved by
		  using a bind-mount to share either the D-Bus socket, or the whole /tmp
		  directory, with the chroot or container.
		  (dbus#416, Simon McVittie)
	Denial of service fixes:
		Evgeny Vereshchagin discovered several ways in which an authenticated
		local attacker could cause a crash (denial of service) in
		dbus-daemon --system or a custom DBusServer. In uncommon configurations
		these could potentially be carried out by an authenticated remote attacker.
		• An invalid array of fixed-length elements where the length of the array
		  is not a multiple of the length of the element would cause an assertion
		  failure in debug builds or an out-of-bounds read in production builds.
		  This was a regression in version 1.3.0.
		  (dbus#413, CVE-2022-42011; Simon McVittie)
		• A syntactically invalid type signature with incorrectly nested parentheses
		  and curly brackets would cause an assertion failure in debug builds.
		  Similar messages could potentially result in a crash or incorrect message
		  processing in a production build, although we are not aware of a practical
		  example. (dbus#418, CVE-2022-42010; Simon McVittie)
		• A message in non-native endianness with out-of-band Unix file descriptors
		  would cause a use-after-free and possible memory corruption in production
		  builds, or an assertion failure in debug builds. This was a regression in
		  version 1.3.0. (dbus#417, CVE-2022-42012; Simon McVittie)
    dbus 1.14.2 (2022-09-26)
	Fixes:
		• Fix build failure on FreeBSD (dbus!277, Alex Richardson)
		• Fix build failure on macOS with launchd enabled
		  (dbus!287, Dawid Wróbel)
		• Preserve errno on failure to open /proc/self/oom_score_adj
		  (dbus!285, Gentoo#834725; Mike Gilbert)
		• On Linux, don't log warnings if oom_score_adj is read-only but does not
		  need to be changed (dbus!291, Simon McVittie)
		• Slightly improve error-handling for inotify
		  (dbus!235, Simon McVittie)
		• Don't crash if dbus-daemon is asked to watch more than 128 directories
		  for changes (dbus!302, Jan Tojnar)
		• Autotools build system fixes:
			  · Don't treat --with-x or --with-x=yes as a request to disable X11,
			    fixing a regression in 1.13.20. Instead, require X11 libraries and
			    fail if they cannot be detected. (dbus!263, Lars Wendler)
			  · When a CMake project uses an Autotools-built libdbus in a
			    non-standard prefix, find dbus-arch-deps.h successfully
			    (dbus#314, Simon McVittie)
			  · Don't include generated XML catalog in source releases
			    (dbus!317, Jan Tojnar)
			  · Improve robustness of detecting gcc __sync atomic builtins
			    (dbus!320, Alex Richardson)
		• CMake build system fixes:
			  · Detect endianness correctly, fixing interoperability with other D-Bus
			    implementations on big-endian systems (dbus#375, Ralf Habacker)
			  · When building for Unix, install session and system bus setup
			    in the intended locations
			    (dbus!267, dbus!297; Ralf Habacker, Alex Richardson)
			  · Detect setresuid() and getresuid() (dbus!319, Alex Richardson)
			  · Detect backtrace() on FreeBSD (dbus!281, Alex Richardson)
			  · Don't include headers from parent directory (dbus!282, Alex Richardson)
			  · Distinguish between host and target TMPDIR when cross-compiling
			    (dbus!279, Alex Richardson)
			  · Fix detection of atomic operations (dbus!306, Alex Richardson)
		Tests and CI enhancements:
			• On Unix, skip tests that switch uid if run in a container that is
			  unable to do so, instead of failing (dbus#407, Simon McVittie)
			• Use the latest MSYS2 packages for CI
			  (Ralf Habacker, Simon McVittie)

Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
Reviewed-by: Peter Müller <peter.mueller@ipfire.org>
 2022-12-26 08:43:27 +00:00
Adolf Belka
1302f0cde8 libvirt: Update version to 8.10.0 
- Update from version 8.9.0 to 8.10.0
- Update of rootfile
- Changelog
    v8.10.0 (2022-12-01)
	**New features**
		  * Tool for validating SEV firmware boot measurement of QEMU VMs
		     The ``virt-qemu-sev-validate`` program will compare a reported SEV/SEV-ES
		     domain launch measurement, to a computed launch measurement. This
		     determines whether the domain has been tampered with during launch.
		  * Support for SGX EPC (enclave page cache)
		     Users can add a ``<memory model='sgx-epc'>`` device to lauch a VM with
		     ``Intel Software Guard Extensions``.
		  * Support migration of vTPM state of QEMU vms on shared storage
		     Pass ``--migration`` option if appropriate in order for ``swtpm`` to
		     properly migrate on shared storage.
	**Improvements**
		  * Mark close callback (un-)register API as high priority
		     High priority APIs use a separate thread pool thus can help in eliminating
		     problems with stuck VMs. Marking the close callback API as high priority
		     allows ``virsh`` to properly connect to the daemon in case the normal
		     priority workers are stuck allowing other high priority API usage.
		  * Updated x86 CPU features
		     The following features for the x86 platform were added:
		      ``v-vmsave-vmload``, ``vgif``, ``avx512-vp2intersect``, ``avx512-fp16``,
		      ``serialize``, ``tsx-ldtrk``, ``arch-lbr``, ``xfd``, ``intel-pt-lip``,
		      ``avic``, ``sgx``, ``sgxlc``, ``sgx-exinfo``, ``sgx1``, ``sgx2``,
		      ``sgx-debug``, ``sgx-mode64``, ``sgx-provisionkey``, ``sgx-tokenkey``,
		      ``sgx-kss``, ``bus-lock-detect``, ``pks``, ``amx``.
		  * Add support for ``hv-avic`` Hyper-V enlightenment
		     ``qemu-6.2`` introduced support for the ``hv-avic`` enlightenment which
		     allows to use Hyper-V SynIC with hardware APICv/AVIC enabled.
		  * qemu: Run memory preallocation with numa-pinned threads
		     Run the thread allocating memory in the proper NUMA node to reduce overhead.
		  * RPM packaging changes
		    - add optional dependancy of ``libvirt-daemon`` on ``libvirt-client``
		       The ``libvirt-guests.`` tool requires the ``virsh`` client to work
		       properly, but we don't want to require the installation of the daemon
		       if the tool is not used.
		    - relax required ``python3-libvirt`` version for ``libvirt-client-qemu``
		       The ``virt-qemu-qmp-proxy`` tool requires python but doesn't strictly
		       need the newest version. Remove the strict versioning requirement in
		       order to prevent cyclic dependency when building.
	**Bug fixes**
		  * Skip initialization of ``cache`` capabilities if host doesn't support them
		     Hypervisor drivers would fail to initialize on ``aarch64`` hosts with
		     following error ::
		       virStateInitialize:657 : Initialisation of cloud-hypervisor state driver failed: no error
		     which prevented the startup of the daemon.
		  * Allow incoming connections to guests on routed networks w/firewalld
		     A change in handling of implicit rules in ``firewalld 1.0.0`` broke
		     incomming connections to VMs when using ``routed`` network. This is fixed
		     by adding a new ``libvirt-routed`` zone configured to once again allow
		     incoming sessions to guests on routed networks.
		  * Fix infinite loop in nodedev driver
		     Certain udev entries might be of a size that makes libudev emit EINVAL
		     which caused a busy loop burning CPU. Fix it by ignoring the return code.

Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
Reviewed-by: Peter Müller <peter.mueller@ipfire.org>
 2022-12-26 08:39:00 +00:00
Adolf Belka
349fc481b8 libusbredir: Update to version 0.13.0 
- Update from version 0.8.0 to 0.13.0
- Update of rootfile
- bz2 version no longer supplied only xz version
- Build changed from autotyools to meson/ninja
- Changelog
	# usbredir-0.13.0 - 01 Aug 2022
		- !61 Fix regression on unserialize data
		- !59 Removes usbredirserver
		- !58 Improved header length checks when unserialising data
		- !62 Fix usage of command line argument in usbredirect
		- !57 Fix small memory leak on usbredirect
	# usbredir-0.12.0 - 12 Nov 2021
		- !47 Implement dropping packets from isochronous devices
		  when buffer is owned by usbredirparser library
		- !50 Use packet size limit on deserialization
		- !54 Fix possible bad state in deserialization logic
		- !48 Fix possible memory leak in serialization logic
		- !45 Fix (un)serialization with empty write buffers
		- !42 !46 !52 Improvements to usbredirparserfuzz
	# usbredir-0.11.0 - 10 Aug 2021
		- !40 Fixes use-after-free on usbredirparser serialization
		- !25 Fixes memory leak in usbredirparser
		- !32 Fixes build in MacOS related to visibility of exported symbols
		- !36 Adds usbredirfilter_free function
		- !29 Adds Fuzzing for Filters
		- !34 Improvements to usbredirfilter_string_to_rules()
	# usbredir-0.10.0 - 27 May 2021
		- !23 Fixes 0.9.0 regression in bulk transfer message size
		- !20 Drops autotools, only meson is supported now
		- !15, !16, !18, !21 Improves fuzzing code base and meson builds
		- !17 Fixes libusbredirhost.pc when generated by meson
	# usbredir-0.9.0 - 02 Apr 2021
		-  !2 Add usbredirect tool with feature parity with usbredirserver
		-  !6 Add fuzzer for usbredirparser
		- !12 Add MSI installer for usbredirect tool
		- !11 Add meson build: autotool will be removed in a future release
		-  !5 Limit packet's length to 65 kB
		-  !4 Fix wrong up-cast when checking for package's length
		- Require LLVM's compiler-rt (optional: for fuzzer)
		- Require glib2 >= 2.44 (optional: for usbredirect)
		- Deprecate usbredirserver in favor of usbredirect

Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
Reviewed-by: Peter Müller <peter.mueller@ipfire.org>
 2022-12-26 08:37:43 +00:00
Michael Tremer
7a22b050fa Revert "Drop powertop" 
This reverts commit f7b0247e02.

https://community.ipfire.org/t/will-the-powertop-add-on-be-available-in-future-updates/9012

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2022-12-06 10:05:47 +00:00
Peter Müller
986d1bca11 samba: Update aarch64 rootfile 
Signed-off-by: Peter Müller <peter.mueller@ipfire.org>
 2022-11-29 17:23:29 +01:00
Adolf Belka
08c5fc0a67 flac: Update to version 1.4.2 
- Update from version 1.3.3 to 1.4.2
- Update of rootfile
- several libraries with so bump. Checked with find-dependencies - nothing flagged
- Changelog
    This changelog is not exhaustive, review [the git commit log
     (https://github.com/xiph/flac/commits) for an exhaustive list of changes.
    ## FLAC 1.4.2 (22-Oct-2022)
    Once again, this release only has a few changes. A problem with FLAC playback in GStreamer (and possibly other libFLAC users) was the reason for the short time since the last release
	* General
	    * Remove xmms plugin (Martijn van Beurden, TokyoBlackHole)
	    * Remove all pure assembler, removing build dependency on nasm
	    * Made console output more uniform across different platforms and CPUs
	    * Improve ability to tune compile for a certain system (for example with -march=native) when combining with --disable-asm-optimizations: plain C functions can now be better optimized
	* Build system
	    * Default CFLAGS are now prepended instead of dropped when user CFLAGS are set
	    * -msse2 is no longer added by default (was only applicable to x86)
	    * Fix cross-compiling and out-of-tree building when pandoc and doxygen are not available
	    * Fix issue with Clang not compiling functions with intrinsics
	    * Fix detection of bswap intrinsics (Ozkan Sezer)
	    * Improve search for libssp on MinGW (Ozkan Sezer, Martijn van Beurden)
	* libFLAC
	    * Fix issue when the libFLAC user seeks in a file instead of libFLAC itself
    ## FLAC 1.4.1 (22-Sep-2022)
    This release only has a few changes. It was triggered by a problem in the 1.4.0 tarball: man pages were empty and api documentation missing
	* CMake fixes (Tomasz Kłoczko)
	* Add checks that man pages and api docs end up in tarball
	* Enable installation of prebuilt man pages and api docs
	* Fix compiler warnings (Johannes Kauffmann, Ozkan Sezer)
	* Fix format specifier (manxorist)
	* Enable building on Universal Windows Platform (Steve Lhomme)
	* Fix versioning from git
    ## FLAC 1.4.0 (09-Sep-2022)
    As there have been changes to the library interfaces, the libFLAC version number is incremented to 12, the libFLAC++ version number is incremented to 10. As some changes were breaking, the version age numbers (see [libtool versioning](https://www.gnu.org/software/libtool/manual/libtool.html#Libtool-versioning)) have been reset to 0. For more details on the changes to the API, see the [porting guide](https://xiph.org/flac/api/group__porting__1__3__4__to__1__4__0.html).
     The XMMS plugin and 'common' plugin code (used only by the XMMS plugin) are deprecated, they will be removed in a future release.
	* General:
	    * It is now possible to limit the minimum bitrate of a FLAC file generated by libFLAC and with the `flac` tool to 1 bit/sample. This function can be used to aid live streaming, for example for internet radio
	    * Encoding files with sample rates up to 1'048'575Hz is now possible. (Con Kolivas)
	    * Compression of preset -3 through -8 was slightly improved at the cost of a small decrease in encoding speed by increasing the precision with which autocorrelation was calculated (Martijn van Beurden)
	    * Encoding speed of preset -0, -1 and -2 was slightly improved
	    * Compression of presets -1 and -4 was slighly improved on certain material by changing the adaptive mid-side heuristics
	    * Speedups specifically targeting 64-bit ARMv8 devices using NEON were integrated (Ronen Gvili, Martijn van Beurden)
	    * Speedups for x86_64 CPUs having the FMA instruction set extention are added
	    * Encoding and decoding of 32-bit PCM is now possible
	* (Ogg) FLAC format:
	    * The FLAC format document is being rewritten by the IETF CELLAR working group. The latest draft can be found on [https://datatracker.ietf.org/doc/draft-ietf-cellar-flac/](https://datatracker.ietf.org/doc/draft-ietf-cellar-flac/)
	    * The FLAC format document specifies no bounds for the residual. In other to match current decoder implementations, it is proposed to bound the residual to the range provided by a 32-bit int signed two's complement. This limit must be checked by FLAC encoders as to keep FLAC decoders free from the complexity of being to decode a residual exceeding a 32-bit int.
	    * There is now a set of files available to test whether a FLAC decoder implements the format correctly. This FLAC decoder testbench can be found at [https://github.com/ietf-wg-cellar/flac-test-files](https://github.com/ietf-wg-cellar/flac-test-files). Also, results of testing hard- and software can be found here at [https://wiki.hydrogenaud.io/index.php?title=FLAC_decoder_testbench](https://wiki.hydrogenaud.io/index.php?title=FLAC_decoder_testbench).
	* flac:
	    * The option --limit-min-bitrate was added to aid streaming, see [github #264](https://github.com/xiph/flac/pull/264)
	    * The option --keep-foreign-metadata-if-present is added. This option works the same as --keep-foreign-metadata, but does return a warning instead of an error if no foreign metadata was found to store or restore
	    * The warning returned by the foreign metadata handling is now clearer in case a user tries to restore foreign metadata of the wrong type, for example decoding a FLAC file containing AIFF foreign metadata to a WAV file
	    * A problem when using the analyse function causing the first frame to have a wrong size and offset was fixed
	    * Fix bug where channel mask of a file is unintentionally reused when several files are processed with one command
	    * The order of compression-related commands is no longer important, i.e. -8ep gives the same result as -ep8. Previously, a compression level (like -8) would override a more specific setting (like -e or -p). This is no longer the case
	    * flac now checks the block-align property of WAV files to ensure non-standard WAV files (for which flac has no handling) are not mangled
	* metaflac:
	    * (none)
	* build system:
	    * MSVC and Makefile.lite build system files have been removed. Building with MSVC (Visual Studio) can be done by using CMake
	    * Various CMake improvements, especially for creating MSVC build files (Martijn van Beurden, martinRenou, CookiePLMonster, David Callu, Tyler Dunn, Cameron Cawley)
	    * Various fixes for MinGW (Martijn van Beurden, Cameron Cawley)
	    * Removed obsolete autotools macro's to silence warnings
	    * Fixes for FreeBSD PowerPC (pkubaj)
	    * Fixed some compiler warnings (Martijn van Beurden, Tyler Dunn)
	    * Fix building with uclibc (Fabrice Fontaine)
	* testing/validation:
	    * Addition of new encoder fuzzer, adding fuzzing for 8, 24 and 32-bit inputs
	    * Addition of new decoder fuzzer, adding coverage of seeking code
	    * Addition of metadata fuzzer, adding coverage of metadata APIs
	    * Various improvements to fuzzers to improve code coverage, fuzzing speed and stability
	    * Many changes to test suite to improve cross-platform compatibility (Rosen Penev)
	    * Windows CI now also builds the whole test suite
	    * Clang-format file added (Rosen Penev)
	    * Add warning on using v141_xp platform toolset with /MT (Martijn van Beurden, Paul Sanders)
	* libraries:
	    * Various seeking fixes (Martijn van Beurden, Robert Kausch)
	    * Various bugs fixed found by fuzzing
	    * On decoding, it is now checked whether residuals can be contained by a 32-bit int, preventing integer overflow
	    * Add check that samples supplied to libFLAC actually fall within the bps set
	    * Add checks when parsing metadata blocks to not allocate excessive amounts of memory and not overread
	    * Undocumented Windows-only utf8 functions are no longer exported to the DLL interface
	    * Removed all assembler and intrinsics code from the decoder to improve fuzzing, as they provided only a small speed benefit
	    * The bitwriter buffer is limited in size to 2^24 bytes, so it cannot write excessively large files. This is a backup in case another bug in this area creeps (back) in.
	    * The metadata iterations should now never return a vorbiscomment entry with NULL as an entry, now always at least an empty string is returned
	* documentation:
	    * Removed html documentation and generate man pages from markdown
	* Interface changes:
	    * libFLAC:
	        * Addition of FLAC__stream_encoder_set_limit_min_bitrate() and FLAC__stream_encoder_get_limit_min_bitrate(), see [github #264](https://github.com/xiph/flac/pull/264)
	        * get_client_data_from_decoder is renamed FLAC__get_decoder_client_data(), see [github #124](https://github.com/xiph/flac/pull/124)
	        * All API functions taking a filename as an argument now take UTF-8 filenames on Windows, and no longer accept filenames using the current codepage
	        * FLAC__Frame struct has changed: warmup samples are now stored in FLAC__int64 instead of FLAC__int32 types, and verbatim samples can now be stored in either FLAC__int32 or FLAC__int64 depending on whether samples fix the former or latter
	        * The FLAC__StreamMetadata struct now has a tag, so it can be forward declared
	    * libFLAC++:
	        * Addition of ::set_limit_min_bitrate() and ::get_limit_min_bitrate(), see [github #264](https://github.com/xiph/flac/pull/264)
	        * All API functions taking a filename as an argument now take UTF-8 filenames on Windows, and no longer accept filenames using the current codepage
	        * The ::FLAC__Frame struct has changed, see the libFLAC interface change.
    ## FLAC 1.3.4 (20-Feb-2022)
    This release mostly fixes (security related) bugs. When building with MSVC, using CMake is preferred, see the README under "Building with CMake" for more information. Building with MSVC using solution files is deprecated and these files will be removed in the future. As there have been no changes to the library interfaces, the libFLAC version number remains 11, and libFLAC++ version number remains 9.
	* General:
	    * Fix 12 decoder bugs found by oss-fuzz, including CVE-2020-0499 (erikd, Martijn van Beurden)
	    * Fix encoder bug CVE-2021-0561 (NeelkamalSemwal)
	    * Integrate oss-fuzzers (erikd, Guido Vranken)
	    * Seeking fixes (NeelkamalSemwal, Robert Kausch)
	    * Various fixes and improvements (Andrei Astafev, Rosen Penev, Håkan Kvist, oreo639, erikd, Tamás Zahola, Ulrik Mikaelsson, Tyler Dunn, tmkk)
	* FLAC format:
	    * (none)
	* Ogg FLAC format:
	    * (none)
	* flac:
	    * Various fixes and improvements (Andrei Astafev, Martijn van Beurden)
	* metaflac:
	    * (none)
	* build system:
	    * CMake improvements (evpobr, Vitaliy Kirsanov, erikd, Ozkan Sezer, Tyler Dunn, tg-m DeadSix27, ericLemanissier, Chocobo1).
	    * Fixes for MinGW and MSVC (Ozkan Sezer).
	    * Fix for clang (Ozkan Sezer)
	    * Fix for PowerPC (Peter Seiderer, Thomas BERNARD)
	    * Fix for FreeBSD PowerPC (pkubaj).
	* testing/validation:
	    * Add Windows target to CI, improve logging (Ralph Giles)
	    * CI improvements (Ralph Giles, Ewout ter Hoeven)
	* documentation:
	    * Doxygen fixes (Tyler Dunn)
	    * Fix typos (Tim Gates, maxz)
	* Interface changes:
	    * libFLAC:
	        * (none)
	    * libFLAC++:
	        * (none)

Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
Reviewed-by: Michael Tremer <michael.tremer@ipfire.org>
 2022-11-29 13:44:15 +01:00
Adolf Belka
28c939b78f samba: Update to version 4.17.3 
- Update from version 4.17.0 to 4.17.3
- Update of rootfile (x86_64) - other architectures will need to be adjusted.
- Changelog
    Release Notes for Samba 4.17.3
	This is a security release in order to address the following defects:
	o CVE-2022-42898: Samba's Kerberos libraries and AD DC failed to guard against
	                  integer overflows when parsing a PAC on a 32-bit system, which
	                  allowed an attacker with a forged PAC to corrupt the heap.
	                  https://www.samba.org/samba/security/CVE-2022-42898.html
	o  Joseph Sutton <josephsutton@catalyst.net.nz>
	   * BUG 15203: CVE-2022-42898
	o  Nicolas Williams <nico@twosigma.com>
	   * BUG 15203: CVE-2022-42898
    Release Notes for Samba 4.17.2
	This is a security release in order to address the following defects:
	o CVE-2022-3437:  There is a limited write heap buffer overflow in the GSSAPI
	                  unwrap_des() and unwrap_des3() routines of Heimdal (included
	                  in Samba).
	                  https://www.samba.org/samba/security/CVE-2022-3437.html
	o CVE-2022-3592:  A malicious client can use a symlink to escape the exported
	                  directory.
	                  https://www.samba.org/samba/security/CVE-2022-3592.html
	o  Volker Lendecke <vl@samba.org>
	   * BUG 15207: CVE-2022-3592.
	o  Joseph Sutton <josephsutton@catalyst.net.nz>
	   * BUG 15134: CVE-2022-3437.
    Release Notes for Samba 4.17.1
	o  Jeremy Allison <jra@samba.org>
	   * BUG 14611: CVE-2021-20251 [SECURITY] Bad password count not incremented
	     atomically.
	   * BUG 15174: smbXsrv_connection_shutdown_send result leaked.
	   * BUG 15182: Flush on a named stream never completes.
	   * BUG 15195: Permission denied calling SMBC_getatr when file not exists.
	o  Douglas Bagnall <douglas.bagnall@catalyst.net.nz>
	   * BUG 15189: Samba 4.5 sometimes cannot be upgraded to Samba 4.6 or later
	     over DRS: WERROR_DS_DRA_MISSING_PARENT due to faulty GET_ANC.
	   * BUG 15191: pytest: add file removal helpers for TestCaseInTempDir.
	o  Andrew Bartlett <abartlet@samba.org>
	   * BUG 14611: CVE-2021-20251 [SECURITY] Bad password count not incremented
	     atomically.
	   * BUG 15189: Samba 4.5 sometimes cannot be upgraded to Samba 4.6 or later.
	     over DRS: WERROR_DS_DRA_MISSING_PARENT due to faulty GET_ANC.
	o  Ralph Boehme <slow@samba.org>
	   * BUG 15182: Flush on a named stream never completes.
	o  Volker Lendecke <vl@samba.org>
	   * BUG 15151: vfs_gpfs silently garbles timestamps > year 2106.
	o  Gary Lockyer <gary@catalyst.net.nz>
	   * BUG 14611: CVE-2021-20251 [SECURITY] Bad password count not incremented
	     atomically.
	o  Stefan Metzmacher <metze@samba.org>
	   * BUG 15200: multi-channel socket passing may hit a race if one of the
	     involved processes already existed.
	   * BUG 15201: memory leak on temporary of struct imessaging_post_state and
	     struct tevent_immediate on struct imessaging_context (in
	     rpcd_spoolss and maybe others).
	o  Noel Power <noel.power@suse.com>
	   * BUG 15205: Since popt1.19 various use after free errors using result of
	     poptGetArg are now exposed.
	o  Anoop C S <anoopcs@samba.org>
	   * BUG 15192: Remove special case for O_CREAT in SMB_VFS_OPENAT from
	     vfs_glusterfs.
	o  Andreas Schneider <asn@samba.org>
	   * BUG 15169: GETPWSID in memory cache grows indefinetly with each NTLM auth.
	o  Joseph Sutton <josephsutton@catalyst.net.nz>
	   * BUG 14611: CVE-2021-20251 [SECURITY] Bad password count not incremented
	     atomically.

Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
Reviewed-by: Michael Tremer <michael.tremer@ipfire.org>
 2022-11-29 13:42:21 +01:00
Adolf Belka
a8b3a69b9d gnu-netcat: Removal of package 
- gnu-netcat was last updated in 2004 and is not used as a dependency for any IPFire
   addon.
- IPFire has ncat which is used as a dependency for ipfire-netboot, libshout, libvirt
   and squid. gnu-netcat not being required for libvcirt was confirmed by Jonatan.
- nmap/ncat is being actively updated.
- Based on the above this patch is removing gnu-netcat from IPFire.

Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
 2022-11-29 13:29:48 +01:00
Adolf Belka
47c2e4c0aa sdl2: Update to version 2.26.0 
- Update from version 2.0.22 to 2.26.0
- Update of rootfile
- Changelog
    2.26.0:
	General:
		* Updated OpenGL headers to the latest API from The Khronos Group Inc.
		* Added SDL_GetWindowSizeInPixels() to get the window size in pixels, which may differ from the window coordinate size for windows with high-DPI support
		* Added simulated vsync synchronization for the software renderer
		* Added the mouse position to SDL_MouseWheelEvent
		* Added SDL_ResetHints() to reset all hints to their default values
		* Added SDL_GetJoystickGUIDInfo() to get device information encoded in a joystick GUID
		* Added the hint SDL_HINT_JOYSTICK_HIDAPI_XBOX_360 to control whether the HIDAPI driver for XBox 360 controllers should be used
		* Added the hint SDL_HINT_JOYSTICK_HIDAPI_XBOX_360_PLAYER_LED to control whether the player LEDs should be lit to indicate which player is associated with an Xbox 360 controller
		* Added the hint SDL_HINT_JOYSTICK_HIDAPI_XBOX_360_WIRELESS to control whether the HIDAPI driver for XBox 360 wireless controllers should be used
		* Added the hint SDL_HINT_JOYSTICK_HIDAPI_XBOX_ONE to control whether the HIDAPI driver for XBox One controllers should be used
		* Added the hint SDL_HINT_JOYSTICK_HIDAPI_XBOX_ONE_HOME_LED to control the brightness of the XBox One guide button LED
		* Added support for PS3 controllers to the HIDAPI driver, enabled by default on macOS, controlled by the SDL_HINT_JOYSTICK_HIDAPI_PS3 hint
		* Added support for Nintendo Wii controllers to the HIDAPI driver, not enabled by default, controlled by the SDL_HINT_JOYSTICK_HIDAPI_WII hint
		* Added the hint SDL_HINT_JOYSTICK_HIDAPI_WII_PLAYER_LED to control whether the player LED should be lit on the Nintendo Wii controllers
		* Added the hint SDL_HINT_JOYSTICK_HIDAPI_VERTICAL_JOY_CONS to control whether Nintendo Switch Joy-Con controllers will be in vertical mode when using the HIDAPI driver
		* Added access to the individual left and right gyro sensors of the combined Joy-Cons controller
		* Added a microsecond timestamp to SDL_SensorEvent and SDL_ControllerSensorEvent, when the hardware provides that information
		* Added SDL_SensorGetDataWithTimestamp() and SDL_GameControllerGetSensorDataWithTimestamp() to retrieve the last sensor data with the associated microsecond timestamp
		* Added the hint SDL_HINT_HIDAPI_IGNORE_DEVICES to have the SDL HID API ignore specific devices
		* SDL_GetRevision() now includes more information about the SDL build, including the git commit hash if available
	Windows:
		* Added the hint SDL_HINT_MOUSE_RELATIVE_SYSTEM_SCALE to control whether the system mouse acceleration curve is used for relative mouse motion
	macOS:
		* Implemented vsync synchronization on macOS 12
	Linux:
		* Added SDL_SetPrimarySelectionText(), SDL_GetPrimarySelectionText(), and SDL_HasPrimarySelectionText() to interact with the X11 primary selection clipboard
		* Added the hint SDL_HINT_VIDEO_WAYLAND_EMULATE_MOUSE_WARP to control whether mouse pointer warp emulation is enabled under Wayland
	Android:
		* Enabled IME soft keyboard input
		* Added version checking to make sure the SDL Java and C code are compatible
    2.24.0:
	General:
		* New version numbering scheme, similar to GLib and Flatpak.
		    * An even number in the minor version (second component) indicates a production-ready stable release such as 2.24.0, which would have been 2.0.24 under the old system.
		      * The patchlevel (micro version, third component) indicates a bugfix-only update: for example, 2.24.1 would be a bugfix-only release to fix bugs in 2.24.0, without adding new features.
		    * An odd number in the minor version indicates a prerelease such as 2.23.0. Stable distributions should not use these prereleases.
		      * The patchlevel indicates successive prereleases, for example 2.23.1 and 2.23.2 would be prereleases during development of the SDL 2.24.0 stable release.
		* Added SDL_GetPointDisplayIndex() and SDL_GetRectDisplayIndex() to get the display associated with a point and rectangle in screen space
		* Added SDL_bsearch(), SDL_crc16(), and  SDL_utf8strnlen() to the stdlib routines
		* Added SDL_CPUPauseInstruction() as a macro in SDL_atomic.h
		* Added SDL_size_mul_overflow() and SDL_size_add_overflow() for better size overflow protection
		* Added SDL_ResetHint() to reset a hint to the default value
		* Added SDL_ResetKeyboard() to reset SDL's internal keyboard state, generating key up events for all currently pressed keys
		* Added the hint SDL_HINT_MOUSE_RELATIVE_WARP_MOTION to control whether mouse warping generates motion events in relative mode. This hint defaults off.
		* Added the hint SDL_HINT_TRACKPAD_IS_TOUCH_ONLY to control whether trackpads are treated as touch devices or mice. By default touchpads are treated as mouse input.
		* The hint SDL_HINT_JOYSTICK_HIDAPI_JOY_CONS now defaults on
		* Added support for mini-gamepad mode for Nintendo Joy-Con controllers using the HIDAPI driver
		* Added the hint SDL_HINT_JOYSTICK_HIDAPI_COMBINE_JOY_CONS to control whether Joy-Con controllers are automatically merged into a unified gamepad when using the HIDAPI driver. This hint defaults on.
		* The hint SDL_HINT_JOYSTICK_HIDAPI_SWITCH_HOME_LED can be set to a floating point value to set the brightness of the Home LED on Nintendo Switch controllers
		* Added the hint SDL_HINT_JOYSTICK_HIDAPI_JOYCON_HOME_LED to set the Home LED brightness for the Nintendo Joy-Con controllers. By default the Home LED is not modified.
		* Added the hint SDL_HINT_JOYSTICK_HIDAPI_SWITCH_PLAYER_LED to control whether the player LED should be lit on the Nintendo Joy-Con controllers
		* Added support for Nintendo Online classic controllers using the HIDAPI driver
		* Added the hint SDL_HINT_JOYSTICK_HIDAPI_NINTENDO_CLASSIC to control whether the HIDAPI driver for Nintendo Online classic controllers should be used
		* Added support for the NVIDIA Shield Controller to the HIDAPI driver, supporting rumble and battery status
		* Added support for NVIDIA SHIELD controller to the HIDAPI driver, and a hint SDL_HINT_JOYSTICK_HIDAPI_SHIELD to control whether this is used
		* Added functions to get the platform dependent name for a joystick or game controller:
		    * SDL_JoystickPathForIndex()
		    * SDL_JoystickPath()
		    * SDL_GameControllerPathForIndex()
		    * SDL_GameControllerPath()
		* Added SDL_GameControllerGetFirmwareVersion() and SDL_JoystickGetFirmwareVersion(), currently implemented for DualSense(tm) Wireless Controllers using HIDAPI
		* Added SDL_JoystickAttachVirtualEx() for extended virtual controller support
		* Added joystick event SDL_JOYBATTERYUPDATED for when battery status changes
		* Added SDL_GUIDToString() and SDL_GUIDFromString() to convert between SDL GUID and string
		* Added SDL_HasLSX() and SDL_HasLASX() to detect LoongArch SIMD support
		* Added SDL_GetOriginalMemoryFunctions()
		* Added SDL_GetDefaultAudioInfo() to get the name and format of the default audio device, currently implemented for PipeWire, PulseAudio, WASAPI, and DirectSound
		* Added HIDAPI driver for the NVIDIA SHIELD controller (2017 model) to enable support for battery status and rumble
		* Added support for opening audio devices with 3 or 5 channels (2.1, 4.1). All channel counts from Mono to 7.1 are now supported.
		* Rewrote audio channel converters used by SDL_AudioCVT, based on the channel matrix coefficients used as the default for FAudio voices
		* SDL log messages are no longer limited to 4K and can be any length
		* Fixed a long-standing calling convention issue with dynapi affecting OpenWatcom or OS/2 builds
	Windows:
		* Added initial support for building for Windows and Xbox with Microsoft's Game Development Kit (GDK), see docs/README-gdk.md for details
		* Added a D3D12 renderer implementation and SDL_RenderGetD3D12Device() to retrieve the D3D12 device associated with it
		* Added the hint SDL_HINT_WINDOWS_DPI_AWARENESS to set whether the application is DPI-aware. This hint must be set before initializing the video subsystem
		* Added the hint SDL_HINT_WINDOWS_DPI_SCALING to control whether the SDL coordinates are in DPI-scaled points or pixels
		* Added the hint SDL_HINT_DIRECTINPUT_ENABLED to control whether the DirectInput driver should be used
		* Added support for SDL_GetAudioDeviceSpec to the DirectSound backend
	Linux:
		* Support for XVidMode has been removed, mode changes are only supported using the XRandR extension
		* Added the hint SDL_HINT_VIDEO_WAYLAND_MODE_EMULATION to control whether to expose a set of emulated modes in addition to the native resolution modes available on Wayland
		* Added the hint SDL_HINT_KMSDRM_DEVICE_INDEX to specify which KMSDRM device to use if the default is not desired
		* Added the hint SDL_HINT_LINUX_DIGITAL_HATS to control whether to treat hats as digital rather than checking to see if they may be analog
		* Added the hint SDL_HINT_LINUX_HAT_DEADZONES to control whether to use deadzones on analog hats
	macOS:
		* Bumped minimum OS deployment version to macOS 10.9
		* Added SDL_GL_FLOATBUFFERS to allow Cocoa GL contexts to use EDR
		* Added the hint SDL_HINT_MAC_OPENGL_ASYNC_DISPATCH to control whether dispatching OpenGL context updates should block the dispatching thread until the main thread finishes processing. This hint defaults to blocking, which is the safer option on modern macOS.

Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
 2022-11-29 13:29:30 +01:00
Arne Fitzenreiter
5de0589058 python3-msgpack: update armv6 rootfile 
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2022-11-28 13:19:00 +01:00
Adolf Belka
435dcefe08 git: Update to version 2.38.1 
- Update from version 2.37.1 to 2.38.1
- Update of rootfile
- Changelog
    Git v2.38.1 Release Notes
	This release merges the security fix that appears in v2.30.6; see
	 the release notes for that version for details.
    Git v2.38 Release Notes
	 * "git remote show [-n] frotz" now pays attention to negative
	   pathspec.
	 * "git push" sometimes performs poorly when reachability bitmaps are
	   used, even in a repository where other operations are helped by
	   bitmaps.  The push.useBitmaps configuration variable is introduced
	   to allow disabling use of reachability bitmaps only for "git push".
	 * "git grep -m<max-hits>" is a way to limit the hits shown per file.
	 * "git merge-tree" learned a new mode where it takes two commits and
	   computes a tree that would result in the merge commit, if the
	   histories leading to these two commits were to be merged.
	 * "git mv A B" in a sparsely populated working tree can be asked to
	   move a path between directories that are "in cone" (i.e. expected
	   to be materialized in the working tree) and "out of cone"
	   (i.e. expected to be hidden).  The handling of such cases has been
	   improved.
	 * Earlier, HTTP transport clients learned to tell the server side
	   what locale they are in by sending Accept-Language HTTP header, but
	   this was done only for some requests but not others.
	 * Introduce a safe.barerepository configuration variable that
	   allows users to forbid discovery of bare repositories.
	 * Various messages that come from the pack-bitmap codepaths have been
	   tweaked.
	 * "git rebase -i" learns to update branches whose tip appear in the
	   rebased range with "--update-refs" option.
	 * "git ls-files" learns the "--format" option to tweak its output.
	 * "git cat-file" learned an option to use the mailmap when showing
	   commit and tag objects.
	 * When "git merge" finds that it cannot perform a merge, it should
	   restore the working tree to the state before the command was
	   initiated, but in some corner cases it didn't.
	 * Operating modes like "--batch" of "git cat-file" command learned to
	   take NUL-terminated input, instead of one-item-per-line.
	 * "git rm" has become more aware of the sparse-index feature.
	 * "git rev-list --disk-usage" learned to take an optional value
	   "human" to show the reported value in human-readable format, like
	   "3.40MiB".
	 * The "diagnose" feature to create a zip archive for diagnostic
	   material has been lifted from "scalar" and made into a feature of
	   "git bugreport".
	 * The namespaces used by "log --decorate" from "refs/" hierarchy by
	   default has been tightened.
	 * "git rev-list --ancestry-path=C A..B" is a natural extension of
	   "git rev-list A..B"; instead of choosing a subset of A..B to those
	   that have ancestry relationship with A, it lets a subset with
	   ancestry relationship with C.
	 * "scalar" now enables built-in fsmonitor on enlisted repositories,
	   when able.
	 * The bash prompt (in contrib/) learned to optionally indicate when
	   the index is unmerged.
	 * "git clone" command learned the "--bundle-uri" option to coordinate
	   with hosting sites the use of pre-prepared bundle files.
	 * "git range-diff" learned to honor pathspec argument if given.
	 * "git format-patch --from=<ident>" can be told to add an in-body
	   "From:" line even for commits that are authored by the given
	   <ident> with "--force-in-body-from" option.
	 * The built-in fsmonitor refuses to work on a network mounted
	   repositories; a configuration knob for users to override this has
	   been introduced.
	 * The "scalar" addition from Microsoft is now part of the core Git
	   installation.
	 * Collection of what is referenced by objects in promisor packs have
	   been optimized to inspect these objects in the in-pack order.
	 * Introduce a helper to see if a branch is already being worked on
	   (hence should not be newly checked out in a working tree), which
	   performs much better than the existing find_shared_symref() to
	   replace many uses of the latter.
	 * Teach "git archive" to (optionally and then by default) avoid
	   spawning an external "gzip" process when creating ".tar.gz" (and
	   ".tgz") archives.
	 * Allow large objects read from a packstream to be streamed into a
	   loose object file straight, without having to keep it in-core as a
	   whole.
	 * Further preparation to turn git-submodule.sh into a builtin
	   continues.
	 * Apply Coccinelle rule to turn raw memmove() into MOVE_ARRAY() cpp
	   macro, which would improve maintainability and readability.
	 * Teach "make all" to build gitweb as well.
	 * Tweak tests so that they still work when the "git init" template
	   did not create .git/info directory.
	 * Add Coccinelle rules to detect the pattern of initializing and then
	   finalizing a structure without using it in between at all, which
	   happens after code restructuring and the compilers fail to
	   recognize as an unused variable.
	 * The code to convert between GPG trust level strings and internal
	   constants we use to represent them have been cleaned up.
	 * Support for libnettle as SHA256 implementation has been added.
	 * The way "git multi-pack" uses parse-options API has been improved.
	 * A Coccinelle rule (in contrib/) to encourage use of COPY_ARRAY
	   macro has been improved.
	 * API tweak to make it easier to run fuzz testing on commit-graph parser.
	 * Omit fsync-related trace2 entries when their values are all zero.
	 * The codepath to write multi-pack index has been taught to release a
	   large chunk of memory that holds an array of objects in the packs,
	   as soon as it is done with the array, to reduce memory consumption.
	 * Add a level of redirection to array allocation API in xdiff part,
	   to make it easier to share with the libgit2 project.
	 * "git fetch" client logs the partial clone filter used in the trace2
	   output.
	 * The "bundle URI" design gets documented.
	 * The common ancestor negotiation exchange during a "git fetch"
	   session now leaves trace log.
	 * Test portability improvements.
	   (merge 4d1d843be7 mt/rot13-in-c later to maint).
	 * The "subcommand" mode is introduced to parse-options API and update
	   the command line parser of Git commands with subcommands.
	 * The pack bitmap file gained a bitmap-lookup table to speed up
	   locating the necessary bitmap for a given commit.
	 * The assembly version of SHA-1 implementation for PPC has been
	   removed.
	 * The server side that responds to "git fetch" and "git clone"
	   request has been optimized by allowing it to send objects in its
	   object store without recomputing and validating the object names.
	 * Annotate function parameters that are not used (but cannot be
	   removed for structural reasons), to prepare us to later compile
	   with -Wunused warning turned on.
	 * Share the text used to explain configuration variables used by "git
	   <subcmd>" in "git help <subcmd>" with the text from "git help config".
	 * "git mv A B" in a sparsely populated working tree can be asked to
	   move a path from a directory that is "in cone" to another directory
	   that is "out of cone".  Handling of such a case has been improved.
	 * The chainlint script for our tests has been revamped.
	 * Rewrite of "git add -i" in C that appeared in Git 2.25 didn't
	   correctly record a removed file to the index, which was fixed.
	 * Certain diff options are currently ignored when combined-diff is
	   shown; mark them as incompatible with the feature.
	 * Adjust technical/bitmap-format to be formatted by AsciiDoc, and
	   add some missing information to the documentation.
	 * Fixes for tests when the source directory has unusual characters in
	   its path, e.g. whitespaces, double-quotes, etc.
	 * "git mktree --missing" lazily fetched objects that are missing from
	   the local object store, which was totally unnecessary for the purpose
	   of creating the tree object(s) from its input.
	 * Give _() markings to fatal/warning/usage: labels that are shown in
	   front of these messages.
	 * References to commands-to-be-typed-literally in "git rebase"
	   documentation mark-up have been corrected.
	 * In a non-bare repository, the behavior of Git when the
	   core.worktree configuration variable points at a directory that has
	   a repository as its subdirectory, regressed in Git 2.27 days.
	 * Recent update to vimdiff layout code has been made more robust
	   against different end-user vim settings.
	 * Plug various memory leaks, both in the main code and in test-tool
	   commands.
	 * Fixes a long-standing corner case bug around directory renames in
	   the merge-ort strategy.
	 * The resolve-undo information in the index was not protected against
	   GC, which has been corrected.
	 * A corner case bug where lazily fetching objects from a promisor
	   remote resulted in infinite recursion has been corrected.
	 * "git clone" from a repository with some ref whose HEAD is unborn
	   did not set the HEAD in the resulting repository correctly, which
	   has been corrected.
	 * An earlier attempt to plug leaks placed a clean-up label to jump to
	   at a bogus place, which as been corrected.
	 * Variable quoting fix in the vimdiff driver of "git mergetool"
	 * "git shortlog -n" relied on the underlying qsort() to be stable,
	   which shouldn't have.  Fixed.
	 * A fix for a regression in test framework.
	 * mkstemp() emulation on Windows has been improved.
	 * Add missing documentation for "include" and "includeIf" features in
	   "git config" file format, which incidentally teaches the command
	   line completion to include them in its offerings.
	 * Avoid "white/black-list" in documentation and code comments.
	 * Workaround for a compiler warning against use of die() in
	   osx-keychain (in contrib/).
	 * Workaround for a false positive compiler warning.
	 * "git p4" working on UTF-16 files on Windows did not implement
	   CRLF-to-LF conversion correctly, which has been corrected.
	 * "git p4" did not handle non-ASCII client name well, which has been
	   corrected.
	 * "rerere-train" script (in contrib/) used to honor commit.gpgSign
	   while recreating the throw-away merges.
	 * "git checkout" miscounted the paths it updated, which has been
	   corrected.
	 * Fix for a bug that makes write-tree to fail to write out a
	   non-existent index as a tree, introduced in 2.37.
	 * There was a bug in the codepath to upgrade generation information
	   in commit-graph from v1 to v2 format, which has been corrected.
	 * Gitweb had legacy URL shortener that is specific to the way
	   projects hosted on kernel.org used to (but no longer) work, which
	   has been removed.
	 * Fix build procedure for Windows that uses CMake so that it can pick
	   up the shell interpreter from local installation location.
	 * Conditionally allow building Python interpreter on Windows
	 * Fix to lstat() emulation on Windows.
	 * Older gcc with -Wall complains about the universal zero initializer
	   "struct s = { 0 };" idiom, which makes developers' lives
	   inconvenient (as -Werror is enabled by DEVELOPER=YesPlease).  The
	   build procedure has been tweaked to help these compilers.
	 * Plug memory leaks in the failure code path in the "merge-ort" merge
	   strategy backend.
	 * "git symbolic-ref symref non..sen..se" is now diagnosed as an error.
	 * A follow-up fix to a fix for a regression in 2.36 around hooks.
	 * Avoid repeatedly running getconf to ask libc version in the test
	   suite, and instead just as it once per script.
	 * Platform-specific code that determines if a directory is OK to use
	   as a repository has been taught to report more details, especially
	   on Windows.
	 * "vimdiff3" regression fix.
	 * "git fsck" reads mode from tree objects but canonicalizes the mode
	   before passing it to the logic to check object sanity, which has
	   hid broken tree objects from the checking logic.  This has been
	   corrected, but to help existing projects with broken tree objects
	   that they cannot fix retroactively, the severity of anomalies this
	   code detects has been demoted to "info" for now.
	 * Fixes to sparse index compatibility work for "reset" and "checkout"
	   commands.
	 * An earlier optimization discarded a tree-object buffer that is
	   still in use, which has been corrected.
	 * Fix deadlocks between main Git process and subprocess spawned via
	   the pipe_command() API, that can kill "git add -p" that was
	   reimplemented in C recently.
	 * The sequencer machinery translated messages left in the reflog by
	   mistake, which has been corrected.
	 * xcalloc(), imitating calloc(), takes "number of elements of the
	   array", and "size of a single element", in this order.  A call that
	   does not follow this ordering has been corrected.
	 * The preload-index codepath made copies of pathspec to give to
	   multiple threads, which were left leaked.
	 * Update the version of Ubuntu used for GitHub Actions CI from 18.04
	   to 22.04.
	 * The auto-stashed local changes created by "git merge --autostash"
	   was mixed into a conflicted state left in the working tree, which
	   has been corrected.
	 * Multi-pack index got corrupted when preferred pack changed from one
	   pack to another in a certain way, which has been corrected.
	   (merge 99e4d084ff tb/midx-with-changing-preferred-pack-fix later to maint).
	 * The clean-up of temporary files created via mks_tempfile_dt() was
	   racy and attempted to unlink() the leading directory when signals
	   are involved, which has been corrected.
	   (merge babe2e0559 rs/tempfile-cleanup-race-fix later to maint).
	 * FreeBSD portability fix for "git maintenance" that spawns "crontab"
	   to schedule tasks.
	   (merge ee69e7884e bc/gc-crontab-fix later to maint).
	 * Those who use diff-so-fancy as the diff-filter noticed a regression
	   or two in the code that parses the diff output in the built-in
	   version of "add -p", which has been corrected.
	   (merge 0a101676e5 js/add-p-diff-parsing-fix later to maint).
	 * Segfault fix-up to an earlier fix to the topic to teach "git reset"
	   and "git checkout" work better in a sparse checkout.
	   (merge 037f8ea6d9 vd/sparse-reset-checkout-fixes later to maint).
	 * "git diff --no-index A B" managed its the pathnames of its two
	   input files rather haphazardly, sometimes leaking them.  The
	   command line argument processing has been straightened out to clean
	   it up.
	   (merge 2b43dd0eb5 rs/diff-no-index-cleanup later to maint).
	 * "git rev-list --verify-objects" ought to inspect the contents of
	   objects and notice corrupted ones, but it didn't when the commit
	   graph is in use, which has been corrected.
	   (merge b27ccae34b jk/rev-list-verify-objects-fix later to maint).
	 * More fixes to "add -p"
	   (merge 64ec8efb83 js/builtin-add-p-portability-fix later to maint).
	 * The parser in the script interface to parse-options in "git
	   rev-parse" has been updated to diagnose a bogus input correctly.
	   (merge f20b9c36d0 ow/rev-parse-parseopt-fix later to maint).
	 * The code that manages list-object-filter structure, used in partial
	   clones, leaked the instances, which has been plugged.
	   (merge 66eede4a37 jk/plug-list-object-filter-leaks later to maint).
	 * Fix another UI regression in the reimplemented "add -p".
	   (merge f6f0ee247f rs/add-p-worktree-mode-prompt-fix later to maint).
	 * "git fetch" over protocol v2 sent an incorrect ref prefix request
	   to the server and made "git pull" with configured fetch refspec
	   that does not cover the remote branch to merge with fail, which has
	   been corrected.
	   (merge 49ca2fba39 jk/proto-v2-ref-prefix-fix later to maint).
	 * A result from opendir() was leaking in the commit-graph expiration
	   codepath, which has been plugged.
	   (merge 12f1ae5324 ml/commit-graph-expire-dir-leak-fix later to maint).
	 * Just like we have coding guidelines, we now have guidelines for
	   reviewers.
	   (merge e01b851923 vd/doc-reviewing-guidelines later to maint).
	 * Other code cleanup, docfix, build fix, etc.
	   (merge 77b9e85c0f vd/fix-perf-tests later to maint).
	   (merge 0682bc43f5 jk/test-crontab-fixes later to maint).
	   (merge b46dd1726c cc/doc-trailer-whitespace-rules later to maint).
    Git 2.37.4 Release Notes
       This primarily is to backport various fixes accumulated on the 'master'
        front since 2.37.3, and also includes the same security fixes as in v2.30.6.
	 * CVE-2022-39253:
	   When relying on the `--local` clone optimization, Git dereferences
	   symbolic links in the source repository before creating hardlinks
	   (or copies) of the dereferenced link in the destination repository.
	   This can lead to surprising behavior where arbitrary files are
	   present in a repository's `$GIT_DIR` when cloning from a malicious
	   repository.
	   Git will no longer dereference symbolic links via the `--local`
	   clone mechanism, and will instead refuse to clone repositories that
	   have symbolic links present in the `$GIT_DIR/objects` directory.
	   Additionally, the value of `protocol.file.allow` is changed to be
	   "user" by default.
	   Credit for finding CVE-2022-39253 goes to Cory Snider of Mirantis.
	   The fix was authored by Taylor Blau, with help from Johannes
	   Schindelin.
	 * CVE-2022-39260:
	   An overly-long command string given to `git shell` can result in
	   overflow in `split_cmdline()`, leading to arbitrary heap writes and
	   remote code execution when `git shell` is exposed and the directory
	   `$HOME/git-shell-commands` exists.
	   `git shell` is taught to refuse interactive commands that are
	   longer than 4MiB in size. `split_cmdline()` is hardened to reject
	   inputs larger than 2GiB.
	   Credit for finding CVE-2022-39260 goes to Kevin Backhouse of
	   GitHub. The fix was authored by Kevin Backhouse, Jeff King, and
	   Taylor Blau.
	 * An earlier optimization discarded a tree-object buffer that is
	   still in use, which has been corrected.
	 * Fix deadlocks between main Git process and subprocess spawned via
	   the pipe_command() API, that can kill "git add -p" that was
	   reimplemented in C recently.
	 * xcalloc(), imitating calloc(), takes "number of elements of the
	   array", and "size of a single element", in this order.  A call that
	   does not follow this ordering has been corrected.
	 * The preload-index codepath made copies of pathspec to give to
	   multiple threads, which were left leaked.
	 * Update the version of Ubuntu used for GitHub Actions CI from 18.04
	   to 22.04.
	 * The auto-stashed local changes created by "git merge --autostash"
	   was mixed into a conflicted state left in the working tree, which
	   has been corrected.
	 Also contains other minor documentation updates and code clean-ups.
    Git 2.37.3 Release Notes
       This primarily is to backport various fixes accumulated on the 'master'
        front since 2.37.2.
	 * The build procedure for Windows that uses CMake has been updated to
	   pick up the shell interpreter from local installation location.
	 * Conditionally allow building Python interpreter on Windows
	 * Fix to lstat() emulation on Windows.
	 * Older gcc with -Wall complains about the universal zero initializer
	   "struct s = { 0 };" idiom, which makes developers' lives
	   inconvenient (as -Werror is enabled by DEVELOPER=YesPlease).  The
	   build procedure has been tweaked to help these compilers.
	 * Plug memory leaks in the failure code path in the "merge-ort" merge
	   strategy backend.
	 * Avoid repeatedly running getconf to ask libc version in the test
	   suite, and instead just as it once per script.
	 * Platform-specific code that determines if a directory is OK to use
	   as a repository has been taught to report more details, especially
	   on Windows.
	 * "vimdiff3" regression has been corrected.
	 * "git fsck" reads mode from tree objects but canonicalizes the mode
	   before passing it to the logic to check object sanity, which has
	   hid broken tree objects from the checking logic.  This has been
	   corrected, but to help exiting projects with broken tree objects
	   that they cannot fix retroactively, the severity of anomalies this
	   code detects has been demoted to "info" for now.
	 * Fixes to sparse index compatibility work for "reset" and "checkout"
	   commands.
	 * Documentation for "git add --renormalize" has been improved.
	 Also contains other minor documentation updates and code clean-ups.
    Git 2.37.2 Release Notes
       This primarily is to backport various fixes accumulated on the 'master'
        front since 2.37.1.
	 * "git shortlog -n" relied on the underlying qsort() to be stable,
	   which shouldn't have.  Fixed.
	 * Variable quoting fix in the vimdiff driver of "git mergetool".
	 * An earlier attempt to plug leaks placed a clean-up label to jump to
	   at a bogus place, which as been corrected.
	 * Fixes a long-standing corner case bug around directory renames in
	   the merge-ort strategy.
	 * Recent update to vimdiff layout code has been made more robust
	   against different end-user vim settings.
	 * In a non-bare repository, the behavior of Git when the
	   core.worktree configuration variable points at a directory that has
	   a repository as its subdirectory, regressed in Git 2.27 days.
	 * References to commands-to-be-typed-literally in "git rebase"
	   documentation mark-up have been corrected.
	 * Give _() markings to fatal/warning/usage: labels that are shown in
	   front of these messages.
	 * "git mktree --missing" lazily fetched objects that are missing from
	   the local object store, which was totally unnecessary for the purpose
	   of creating the tree object(s) from its input.
	 * Fixes for tests when the source directory has unusual characters in
	   its path, e.g. whitespaces, double-quotes, etc.
	 * Adjust technical/bitmap-format to be formatted by AsciiDoc, and
	   add some missing information to the documentation.
	 * Certain diff options are currently ignored when combined-diff is
	   shown; mark them as incompatible with the feature.
	 * "git clone" from a repository with some ref whose HEAD is unborn
	   did not set the HEAD in the resulting repository correctly, which
	   has been corrected.
	 * mkstemp() emulation on Windows has been improved.
	 * Add missing documentation for "include" and "includeIf" features in
	   "git config" file format, which incidentally teaches the command
	   line completion to include them in its offerings.
	 * Avoid "white/black-list" in documentation and code comments.
	 * Workaround for a compiler warning against use of die() in
	   osx-keychain (in contrib/).
	 * Workaround for a false positive compiler warning.
	 * The resolve-undo information in the index was not protected against
	   GC, which has been corrected.
	 * A corner case bug where lazily fetching objects from a promisor
	   remote resulted in infinite recursion has been corrected.
	 * "git p4" working on UTF-16 files on Windows did not implement
	   CRLF-to-LF conversion correctly, which has been corrected.
	 * "git p4" did not handle non-ASCII client name well, which has been
	   corrected.
	 * "rerere-train" script (in contrib/) used to honor commit.gpgSign
	   while recreating the throw-away merges.
	 * "git checkout" miscounted the paths it updated, which has been
	   corrected.
	 * Fix for a bug that makes write-tree to fail to write out a
	   non-existent index as a tree, introduced in 2.37.
	 * There was a bug in the codepath to upgrade generation information
	   in commit-graph from v1 to v2 format, which has been corrected.
         Also contains minor documentation updates and code clean-ups.

Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
Reviewed-by: Michael Tremer <michael.tremer@ipfire.org>
 2022-11-28 13:08:19 +01:00
Adolf Belka
90d43e54c2 fmt: Update to version 9.1.0 
- Update from version 9.0.0 to 9.1.0
- Update of rootfile
- Changelog
    9.1.0 - 2022-08-27
	* ``fmt::formatted_size`` now works at compile time
		  `#3026 <https://github.com/fmtlib/fmt/pull/3026>`_
			  For example (`godbolt <https://godbolt.org/z/1MW5rMdf8>`__):
			   .. code:: c++
			     #include <fmt/compile.h>
			     int main() {
			       using namespace fmt::literals;
			       constexpr size_t n = fmt::formatted_size("{}"_cf, 42);
			       fmt::print("{}\n", n); // prints 2
			     }
	* Fixed handling of invalid UTF-8
		  `#3038 <https://github.com/fmtlib/fmt/pull/3038>`_,
		  `#3044 <https://github.com/fmtlib/fmt/pull/3044>`_,
		  `#3056 <https://github.com/fmtlib/fmt/pull/3056>`_
	* Improved Unicode support in ``ostream`` overloads of ``print``
		  `#2994 <https://github.com/fmtlib/fmt/pull/2994>`_,
		  `#3001 <https://github.com/fmtlib/fmt/pull/3001>`_,
		  `#3025 <https://github.com/fmtlib/fmt/pull/3025>`_
	* Fixed handling of the sign specifier in localized formatting on systems with
	   32-bit ``wchar_t``
		  `#3041 <https://github.com/fmtlib/fmt/issues/3041>`_).
	* Added support for wide streams to ``fmt::streamed``
		  `#2994 <https://github.com/fmtlib/fmt/pull/2994>`_
	* Added the ``n`` specifier that disables the output of delimiters when
	   formatting ranges
		  `#2981 <https://github.com/fmtlib/fmt/pull/2981>`_,
		  `#2983 <https://github.com/fmtlib/fmt/pull/2983>`_
			  For example (`godbolt <https://godbolt.org/z/roKqGdj8c>`__):
			   .. code:: c++
			     #include <fmt/ranges.h>
			     #include <vector>
			     int main() {
			       auto v = std::vector{1, 2, 3};
			       fmt::print("{:n}\n", v); // prints 1, 2, 3
			     }
	* Worked around problematic ``std::string_view`` constructors introduced in C++23
		  `#3030 <https://github.com/fmtlib/fmt/issues/3030>`_,
		  `#3050 <https://github.com/fmtlib/fmt/issues/3050>`_
	* Improve handling (exclusion) of recursive ranges
		  `#2968 <https://github.com/fmtlib/fmt/issues/2968>`_,
		  `#2974 <https://github.com/fmtlib/fmt/pull/2974>`_
	* Improved error reporting in format string compilation
		  `#3055 <https://github.com/fmtlib/fmt/issues/3055>`_
	* Improved the implementation of
		  `Dragonbox <https://github.com/jk-jeon/dragonbox>`_, the algorithm used for
		   the default floating-point formatting
		  `#2984 <https://github.com/fmtlib/fmt/pull/2984>`_
	* Fixed issues with floating-point formatting on exotic platforms.
	* Improved the implementation of chrono formatting
		  `#3010 <https://github.com/fmtlib/fmt/pull/3010>`_
	* Improved documentation
		  `#2966 <https://github.com/fmtlib/fmt/pull/2966>`_,
		  `#3009 <https://github.com/fmtlib/fmt/pull/3009>`_,
		  `#3020 <https://github.com/fmtlib/fmt/issues/3020>`_,
		  `#3037 <https://github.com/fmtlib/fmt/pull/3037>`_
	* Improved build configuration
		  `#2991 <https://github.com/fmtlib/fmt/pull/2991>`_,
		  `#2995 <https://github.com/fmtlib/fmt/pull/2995>`_,
		  `#3004 <https://github.com/fmtlib/fmt/issues/3004>`_,
		  `#3007 <https://github.com/fmtlib/fmt/pull/3007>`_,
		  `#3040 <https://github.com/fmtlib/fmt/pull/3040>`_
	* Fixed various warnings and compilation issues
		  `#2969 <https://github.com/fmtlib/fmt/issues/2969>`_,
		  `#2971 <https://github.com/fmtlib/fmt/pull/2971>`_,
		  `#2975 <https://github.com/fmtlib/fmt/issues/2975>`_,
		  `#2982 <https://github.com/fmtlib/fmt/pull/2982>`_,
		  `#2985 <https://github.com/fmtlib/fmt/pull/2985>`_,
		  `#2988 <https://github.com/fmtlib/fmt/issues/2988>`_,
		  `#3000 <https://github.com/fmtlib/fmt/issues/3000>`_,
		  `#3006 <https://github.com/fmtlib/fmt/issues/3006>`_,
		  `#3014 <https://github.com/fmtlib/fmt/issues/3014>`_,
		  `#3015 <https://github.com/fmtlib/fmt/issues/3015>`_,
		  `#3021 <https://github.com/fmtlib/fmt/pull/3021>`_,
		  `#3023 <https://github.com/fmtlib/fmt/issues/3023>`_,
		  `#3024 <https://github.com/fmtlib/fmt/pull/3024>`_,
		  `#3029 <https://github.com/fmtlib/fmt/pull/3029>`_,
		  `#3043 <https://github.com/fmtlib/fmt/pull/3043>`_,
		  `#3052 <https://github.com/fmtlib/fmt/issues/3052>`_,
		  `#3053 <https://github.com/fmtlib/fmt/pull/3053>`_,
		  `#3054 <https://github.com/fmtlib/fmt/pull/3054>`_

Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
Reviewed-by: Michael Tremer <michael.tremer@ipfire.org>
 2022-11-28 13:07:44 +01:00
Adolf Belka
4745cff3df ffmpeg: Update to version 5.1.2 
- Update from version 4.4 to 5.1.2
- Update of rootfile
- avresample has been removed from ffmpeg and so ./configure option had to be removed
- many libraries had an so bump so checked with find-dependencies - nothing flagged
- Changelog
    version 5.1.2:
	- avcodec/dstdec: Check for overflow in build_filter()
	- avformat/spdifdec: Use 64bit to compute bit rate
	- avformat/rpl: Use 64bit for duration computation
	- avformat/xwma: Use av_rescale() for duration computation
	- avformat/sdsdec: Use av_rescale() to avoid intermediate overflow in duration calculation
	- avformat/sbgdec: Check ts_int in genrate_intervals
	- avformat/sbgdec: clamp end_ts
	- avformat/rmdec: check tag_size
	- avformat/nutdec: Check fields
	- avformat/flvdec: Use 64bit for sum_flv_tag_size
	- avformat/jacosubdec: Fix overflow in get_shift()
	- avformat/genh: Check nb_channels for IMA ADPCM
	- avformat/dxa: avoid bpc overflows
	- avformat/dhav: Use 64bit seek_back
	- avformat/cafdec: Check that nb_frasmes fits within 64bit
	- avformat/asfdec_o: Limit packet offset
	- avformat/apm: Use 64bit for bit_rate computation
	- avformat/ape: Check frames size
	- avformat/icodec: Check nb_pal
	- avformat/aiffdec: Use 64bit for block_duration use
	- avformat/aiffdec: Check block_duration
	- avformat/mxfdec: only probe max run in
	- avformat/mxfdec: Check run_in is within 65536
	- avcodec/mjpegdec: Check for unsupported bayer case
	- avcodec/apedec: Fix integer overflow in filter_3800()
	- avcodec/tta: Check 24bit scaling for overflow
	- avcodec/mobiclip: Check quantizer for overflow
	- avcodec/exr: Check preview psize
	- avcodec/tiff: Fix loop detection
	- libavformat/hls: Free keys
	- avcodec/fmvc: Move frame allocation to a later stage
	- avfilter/vf_showinfo: remove backspaces
	- avcodec/speedhq: Check width
	- avcodec/bink: disallow odd positioned scaled blocks
	- avformat/cafenc: derive Opus frame size from the relevant stream parameters
	- avformat/dashdec: Fix crash on invalid input/ENOMEM, fix leak
	- lavc/videotoolbox: do not pass AVCodecContext to decoder output callback
	- lavc/pthread_frame: always transfer stashed hwaccel state
	- avcodec/arm/sbcenc: avoid callee preserved vfp registers
	- avformat/riffdec: don't unconditionally overwrite WAVEFORMATEXTENSIBLE layout
	- avfilter/vf_scale: overwrite the width and height expressions with the original values
	- lavc/pthread_frame: avoid leaving stale hwaccel state in worker threads
	- avutil/tests/.gitignore: Add channel_layout testtool
    version 5.1.1:
	- avformat/asfdec_o: limit recursion depth in asf_read_unknown()
	- avformat/mov: Check count sums in build_open_gop_key_points()
	- doc/git-howto.texi: Document commit signing
	- libavcodec/8bps: Check that line lengths fit within the buffer
	- avcodec/midivid: Perform lzss_uncompress() before ff_reget_buffer()
	- libavformat/iff: Check for overflow in body_end calculation
	- avformat/avidec: Prevent entity expansion attacks
	- avcodec/h263dec: Sanity check against minimal I/P frame size
	- avcodec/hevcdec: Check s->ref in the md5 path similar to hwaccel
	- avcodec/mpegaudiodec_template: use unsigned shift in handle_crc()
	- avformat/subviewerdec: Make read_ts() more flexible
	- avcodec/mjpegdec: bayer and rct are incompatible
	- MAINTAINERS: Add ED25519 key for signing my commits in the future
	- avcodec/pngdec: Fix APNG_DISPOSE_OP_BACKGROUND
	- avcodec/libvpx: fix assembling vp9 packets with alpha channel
	- fftools/ffmpeg_opt: try to propagate the requested output channel layout
	- avcodec/libsvtav1: properly initialize the flush EbBufferHeaderType struct
	- configure: enable the av1_frame_split bsf for the av1 decoder
	- swresample/swresample: fill the correct buffer to print the output layout string
	- ffprobe: restore reporting error code for failed inputs
	- ipfsgateway: Remove default gateway
	- avcodec/libspeexdec: Fix use of uninitialized value
	- avformat/avisynth: use ch_layout.nb_channels for channel count
	- fate/lavf-image: Disable file checksums for exr tests
	- tests/fate-run: Allow to skip file checksums for lavf_image
	- fate/imf: Rename IMF fate-target
	- avcodec/alac: don't fail if channels aren't set during init() when extradata is valid
	- configure: properly require libx264 if enabled
    version 5.1:
	- add ipfs/ipns protocol support
	- dialogue enhance audio filter
	- dropped obsolete XvMC hwaccel
	- pcm-bluray encoder
	- DFPWM audio encoder/decoder and raw muxer/demuxer
	- SITI filter
	- Vizrt Binary Image encoder/decoder
	- avsynctest source filter
	- feedback video filter
	- pixelize video filter
	- colormap video filter
	- colorchart video source filter
	- multiply video filter
	- PGS subtitle frame merge bitstream filter
	- blurdetect filter
	- tiltshelf audio filter
	- QOI image format support
	- ffprobe -o option
	- virtualbass audio filter
	- VDPAU AV1 hwaccel
	- PHM image format support
	- remap_opencl filter
	- added chromakey_cuda filter
    version 5.0:
	- ADPCM IMA Westwood encoder
	- Westwood AUD muxer
	- ADPCM IMA Acorn Replay decoder
	- Argonaut Games CVG demuxer
	- Argonaut Games CVG muxer
	- Concatf protocol
	- afwtdn audio filter
	- audio and video segment filters
	- Apple Graphics (SMC) encoder
	- hsvkey and hsvhold video filters
	- adecorrelate audio filter
	- atilt audio filter
	- grayworld video filter
	- AV1 Low overhead bitstream format muxer
	- swscale slice threading
	- MSN Siren decoder
	- scharr video filter
	- apsyclip audio filter
	- morpho video filter
	- amr parser
	- (a)latency filters
	- GEM Raster image decoder
	- asdr audio filter
	- speex decoder
	- limitdiff video filter
	- xcorrelate video filter
	- varblur video filter
	- huesaturation video filter
	- colorspectrum source video filter
	- RTP packetizer for uncompressed video (RFC 4175)
	- bitpacked encoder
	- VideoToolbox VP9 hwaccel
	- VideoToolbox ProRes hwaccel
	- support loongarch.
	- aspectralstats audio filter
	- adynamicsmooth audio filter
	- libplacebo filter
	- vflip_vulkan, hflip_vulkan and flip_vulkan filters
	- adynamicequalizer audio filter
	- yadif_videotoolbox filter
	- VideoToolbox ProRes encoder
	- anlmf audio filter
	- IMF demuxer (experimental)

Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
Reviewed-by: Michael Tremer <michael.tremer@ipfire.org>
 2022-11-28 13:07:17 +01:00
Adolf Belka
81c3f9e1b9 libvirt: Update to version 8.9.0 
- Update from 7.10.0 to 8.9.0
- Update of rootfile
- Removal of sheepdog_storage option in ./configure as it has been removed from libvirt
- Removal of libvirt-7.10.0-fix-glibc-headers.patch as contents are now built in to source
   tarball.
- Changelog is too large to include here. Details can be found in the NEWS.rst file in
   the source tarball.

Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
Reviewed-by: Michael Tremer <michael.tremer@ipfire.org>
 2022-11-25 11:58:27 +00:00
Jon Murphy
ef3feaf566 pcengines-apu-firmware: Update to version 4.17.0.2 
- Update from 4.17.0.1 to 4.17.0.2
- Changelog
   v4.17.0.2 - Release date: 2022-07-29
     Rebased with official coreboot repository commit df721bd
     See: https://github.com/pcengines/coreboot/compare/v4.17.0.1...v4.17.0.2

Signed-off-by: Jon Murphy <jon.murphy@ipfire.org>
Reviewed-by: Michael Tremer <michael.tremer@ipfire.org>
 2022-11-25 11:52:46 +00:00
Adolf Belka
b830e457e7 libassuan: Update to version 2.5.5 
- Update from 2.5.4 to 2.5.5
- Update of rootfile
- Changelog
    Release 2.5.5.
	Support Unicode when starting servers on Windows.
	  * src/assuan-socket.c (utf8_to_wchar): Rename to
	  (_assuan_utf8_to_wchar): this and give global scope.
	  * src/system-w32.c (__assuan_spawn): Use CreateProcessW.
	m4: Update with newer autoconf constructs.
	  * src/libassuan.m4: Replace AC_HELP_STRING to AS_HELP_STRING.
	build: Update to newer autoconf constructs.
	  * configure.ac: Use AC_CONFIG_HEADERS instead of AM_CONFIG_HEADER.
	  Use AC_USE_SYSTEM_EXTENSIONS instead of AC_GNU_SOURCE.
	  Use AS_HELP_STRING instead of AC_HELP_STRING.
	  (AC_TYPE_SIGNAL): Remove.
	  (AC_DECL_SYS_SIGLIST): Remove.
	  * m4/Makefile.am (EXTRA_DIST): Update.
	  * m4/gnupg-pth.m4: Remove.
	  * m4/onceonly.m4: Remove.
	  * m4/socklen.m4: Update from gnulib.
	  * m4/libtool.m4: Update from libgpg-error.
	  * m4/gpg-error.m4: Update from libgpg-error.
	Fix crash when logging.
	  * src/assuan-logging.c (_assuan_log_control_channel): Use gpgrt_malloc.

Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
Reviewed-by: Michael Tremer <michael.tremer@ipfire.org>
 2022-11-21 11:01:16 +00:00
Peter Müller
508b2dda8a python3-msgpack: Fix architecture placeholder in rootfile 
Signed-off-by: Peter Müller <peter.mueller@ipfire.org>
 2022-11-10 20:46:03 +00:00
Adolf Belka
f6afaf5625 iotop: Modified rootfile with python-3.10.8 
- rootfile for iotop is significantly different with python-3.10.8 compared to 3.10.1
   Many entries now missing and iotop placed in bin instead of sbin despite source tarball
   setup.py having a "dirty hack to make sure iotop is installed in sbin instead of bin"
- Added lines to lfs to move iotop from /bin to /sbin
- Tested iotop out with python-3.10.8 installed vm system and it worked without any
   problems, the same as the existing version running with python-3.10.1

Tested-by: Adolf Belka <adolf.belka@ipfire.org>
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
 2022-11-10 15:13:54 +00:00
Adolf Belka
b92ee93205 libplist: Update rootfile for operation with python-3.10.8 
- With python-3.10.8 the plist.so is no longer available in the site packages.
   libplist libraries are still available.
- libplist is only used as a dependency for shairport-sync
   Tested by installing shairport-sync and starting/stopping it. Started and stopped
   successfully without any error messages. This would suggest that the libplist
   libraries are probably being picked up successfully. Cannot test properly as I have
   no Apple/iOS or related products.

Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
 2022-11-10 15:13:54 +00:00
Adolf Belka
d9a6af2841 python3-urllib3:Update to version 1.26.12 and to work with python-3.10.8 
- Updated from version 1.26.9 to 1.26.12
- Update of rootfile
- Changelog
    1.26.12 (2022-08-22)
	* Deprecated the `urllib3[secure]` extra and the `urllib3.contrib.pyopenssl` module.
	  Both will be removed in v2.x. See this `GitHub issue <https://github.com/urllib3/urllib3/issues/2680>`_
	  for justification and info on how to migrate.
    1.26.11 (2022-07-25)
	* Fixed an issue where reading more than 2 GiB in a call to ``HTTPResponse.read`` would
	  raise an ``OverflowError`` on Python 3.9 and earlier.
    1.26.10 (2022-07-07)
	* Removed support for Python 3.5
	* Fixed an issue where a ``ProxyError`` recommending configuring the proxy as HTTP
	  instead of HTTPS could appear even when an HTTPS proxy wasn't configured.

Tested-by: Adolf Belka <adolf.belka@ipfire.org>
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
 2022-11-10 15:13:54 +00:00
Adolf Belka
03446e1efb python3-typing_extensions:Update to version 4.4.0 and to work with python-3.10.8 
- Updated from version 4.1.1 to 4.4.0
- Update of rootfile
- Changelog
    # Release 4.4.0 (October 6, 2022)
	- Add `typing_extensions.Any` a backport of python 3.11's Any class which is
	  subclassable at runtime. (backport from python/cpython#31841, by Shantanu
	  and Jelle Zijlstra). Patch by James Hilton-Balfe (@Gobot1234).
	- Add initial support for TypeVarLike `default` parameter, PEP 696.
	  Patch by Marc Mueller (@cdce8p).
	- Runtime support for PEP 698, adding `typing_extensions.override`. Patch by
	  Jelle Zijlstra.
	- Add the `infer_variance` parameter to `TypeVar`, as specified in PEP 695.
	  Patch by Jelle Zijlstra.
    # Release 4.3.0 (July 1, 2022)
	- Add `typing_extensions.NamedTuple`, allowing for generic `NamedTuple`s on
	  Python <3.11 (backport from python/cpython#92027, by Serhiy Storchaka). Patch
	  by Alex Waygood (@AlexWaygood).
	- Adjust `typing_extensions.TypedDict` to allow for generic `TypedDict`s on
	  Python <3.11 (backport from python/cpython#27663, by Samodya Abey). Patch by
	  Alex Waygood (@AlexWaygood).
    # Release 4.2.0 (April 17, 2022)
	- Re-export `typing.Unpack` and `typing.TypeVarTuple` on Python 3.11.
	- Add `ParamSpecArgs` and `ParamSpecKwargs` to `__all__`.
	- Improve "accepts only single type" error messages.
	- Improve the distributed package. Patch by Marc Mueller (@cdce8p).
	- Update `typing_extensions.dataclass_transform` to rename the
	  `field_descriptors` parameter to `field_specifiers` and accept
	  arbitrary keyword arguments.
	- Add `typing_extensions.get_overloads` and
	  `typing_extensions.clear_overloads`, and add registry support to
	  `typing_extensions.overload`. Backport from python/cpython#89263.
	- Add `typing_extensions.assert_type`. Backport from bpo-46480.
	- Drop support for Python 3.6. Original patch by Adam Turner (@AA-Turner).

Tested-by: Adolf Belka <adolf.belka@ipfire.org>
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
 2022-11-10 15:13:54 +00:00
Adolf Belka
da165e095a python3-trio:Update to version 0.22.0 and to work with python-3.10.8 
- Updated from version 0.21.0 to 0.22.0
- Update of rootfile
- No changelog found in source tarball or other location

Tested-by: Adolf Belka <adolf.belka@ipfire.org>
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
 2022-11-10 15:13:54 +00:00
Adolf Belka
ba9c2b56ac python3-sniffio:Update to version 1.3.0 and to work with python-3.10.8 
- Updated from version 1.2.0 to 1.3.0
- Update of rootfile
- No changelog found in source tarball or other location

Tested-by: Adolf Belka <adolf.belka@ipfire.org>
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
 2022-11-10 15:13:53 +00:00
Adolf Belka
e4eb9f80fe python3-setuptools:Update to version 65.4.1 and to work with python-3.10.8 
- Updated from version 62.0.0 to 65.4.1
- Update of rootfile
- Changelog is too large to include here. Details can be found in the CHANGES.rst file
   in the source tarball. Most of the changes are bug fixes

Tested-by: Adolf Belka <adolf.belka@ipfire.org>
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
 2022-11-10 15:13:53 +00:00
Adolf Belka
10d3e010fd python3-semantic_version:Update to version 2.10.0 and to work with python-3.10.8 
- Updated from version 2.9.0 to 2.10.0
- Update of rootfile
- Changelog
    2.10.0 (2022-05-26)
	*New:*
	    * `132 <https://github.com/rbarrois/python-semanticversion/issues/132>`_:
	      Ensure sorting a collection of versions is always stable, even with
	      build metadata.

Tested-by: Adolf Belka <adolf.belka@ipfire.org>
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
 2022-11-10 15:13:53 +00:00
Adolf Belka
9976d905ab python3-s3transfer:Update to version 0.6.0 and to work with python-3.10.8 
- Updated from version 0.5.2 to 0.6.0
- Update of rootfile- No changelog found in source tarball or other location

Tested-by: Adolf Belka <adolf.belka@ipfire.org>
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
 2022-11-10 15:13:53 +00:00
Adolf Belka
4c97d1c23c python3-rsa:Update to version 4.9 and to work with python-3.10.8 
- Updated from version 4.8 to 4.9
- Update of rootfile
- Changelog
    ## Version 4.9 - release 2022-07-20
	- Remove debug logging from `rsa/key.py`
	  ([#194](https://github.com/sybrenstuvel/python-rsa/issues/194)).
	- Remove overlapping slots in `PrivateKey` and `PublicKey`.
	  ([#189](https://github.com/sybrenstuvel/python-rsa/pull/189)).
	- Do not include CHANGELOG/LICENSE/README.md in wheel
	  ([#191](https://github.com/sybrenstuvel/python-rsa/pull/191)).
	- Fixed Key Generation Unittest: Public and Private keys are assigned the wrong way around
	  ([#188](https://github.com/sybrenstuvel/python-rsa/pull/188)).

Tested-by: Adolf Belka <adolf.belka@ipfire.org>
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
 2022-11-10 15:13:53 +00:00
Adolf Belka
8b54edabe1 python3-requests:Update to version 2.28.1 and to work with python-3.10.8 
- Updated from version 2.27.1 to 2.28.1
- Update of rootfile
- Changelog
    2.28.1 (2022-06-29)
	**Improvements**
		- Speed optimization in `iter_content` with transition to `yield from`. (#6170)
	**Dependencies**
		- Added support for chardet 5.0.0 (#6179)
		- Added support for charset-normalizer 2.1.0 (#6169)
    2.28.0 (2022-06-09)
	**Deprecations**
		- ⚠️ Requests has officially dropped support for Python 2.7. ⚠️ (#6091)
		- Requests has officially dropped support for Python 3.6 (including pypy3.6). (#6091)
	**Improvements**
		- Wrap JSON parsing issues in Request's JSONDecodeError for payloads without
		  an encoding to make `json()` API consistent. (#6097)
		- Parse header components consistently, raising an InvalidHeader error in
		  all invalid cases. (#6154)
		- Added provisional 3.11 support with current beta build. (#6155)
		- Requests got a makeover and we decided to paint it black. (#6095)
	**Bugfixes**
		- Fixed bug where setting `CURL_CA_BUNDLE` to an empty string would disable
		  cert verification. All Requests 2.x versions before 2.28.0 are affected. (#6074)
		- Fixed urllib3 exception leak, wrapping `urllib3.exceptions.SSLError` with
		  `requests.exceptions.SSLError` for `content` and `iter_content`. (#6057)
		- Fixed issue where invalid Windows registry entires caused proxy resolution
		  to raise an exception rather than ignoring the entry. (#6149)
		- Fixed issue where entire payload could be included in the error message for
		  JSONDecodeError. (#6036)

Tested-by: Adolf Belka <adolf.belka@ipfire.org>
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
 2022-11-10 15:13:53 +00:00
Adolf Belka
363bdb9c62 python3-pytz:Update to version 2022.4 and to work with python-3.10.8 
- Updated from version 2022.1 to 2022.4
- Update of rootfile
- Changelog
   2022.4
      An update to pytz has been released, containing the IANA 2022d timezone database.
       There are no code changes.

Tested-by: Adolf Belka <adolf.belka@ipfire.org>
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
 2022-11-10 15:13:53 +00:00
Adolf Belka
6a4a621edb python3-pyparsing:Update to version 3.0.9 and to work with python-3.10.8 
- Updated from version 3.0.7 to 3.0.9
- Update of rootfile
- Changelog
    Version 3.0.9 -
	- Added Unicode set `BasicMultilingualPlane` (may also be referenced
	  as `BMP`) representing the Basic Multilingual Plane (Unicode
	  characters up to code point 65535). Can be used to parse
	  most language characters, but omits emojis, wingdings, etc.
	  Raised in discussion with Dave Tapley (issue #392).
	- To address mypy confusion of `pyparsing.Optional` and `typing.Optional`
	  resulting in `error: "_SpecialForm" not callable` message
	  reported in issue #365, fixed the import in exceptions.py. Nice
	  sleuthing by Iwan Aucamp and Dominic Davis-Foster, thank you!
	  (Removed definitions of `OptionalType`, `DictType`, and `IterableType`
	  and replaced them with `typing.Optional`, `typing.Dict`, and
	  `typing.Iterable` throughout.)
	- Fixed typo in jinja2 template for railroad diagrams, thanks for the
	  catch Nioub (issue #388).
	- Removed use of deprecated `pkg_resources` package in
	  railroad diagramming code (issue #391).
	- Updated bigquery_view_parser.py example to parse examples at
	  https://cloud.google.com/bigquery/docs/reference/legacy-sql

Tested-by: Adolf Belka <adolf.belka@ipfire.org>
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
 2022-11-10 15:13:53 +00:00
Adolf Belka
87eb5329b2 python3-pyfuse3:Update to version 3.2.2 and to work with python-3.10.8 
- Updated from version 3.2.1 to 3.2.2
- Version 3.2.2 is a cythonised version of 3.2.1 resulting in no longer requiring Cython
- Update of rootfile
- Changelog
    Release 3.2.2 (2022-09-28)
	* remove support for python 3.5 (broken, out of support by python devs)
	* cythonize with latest Cython 0.29.x (brings Python 3.11 support)
	* use github actions for CI, remove travis-ci
	* update README: minimal maintenance, not developed
	* update setup.py with tested python versions
	* examples/tmpfs.py: work around strange kernel behaviour (calling SETATTR after
	  UNLINK of a (not open) file): respond with ENOENT instead of crashing.

Tested-by: Adolf Belka <adolf.belka@ipfire.org>
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
 2022-11-10 15:13:53 +00:00
Adolf Belka
8d2347138b python3-msgpack:Update to version 1.0.4 and to work with python-3.10.8 
- Updated from version 1.0.3 to 1.0.4
- Update of rootfile
- No changelog found in source tarball or other location

Tested-by: Adolf Belka <adolf.belka@ipfire.org>
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
 2022-11-10 15:13:53 +00:00
Adolf Belka
e0423d2bf8 python3-jmespath:Update to version 1.0.1 and to work with python-3.10.8 
- Updated from version 1.0.0 to 1.0.1
- Update of rootfile
- No changelog found in source tarball or other location

Tested-by: Adolf Belka <adolf.belka@ipfire.org>
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
 2022-11-10 15:13:53 +00:00
Adolf Belka
3b2dec125e python3-idna:Update to version 3.4 and to work with python-3.10.8 
- Updated from version 3.3 to 3.4
- Update of rootfile
- Changelog
    3.4 (2022-09-14)
	- Update to Unicode 15.0.0
	- Migrate to pyproject.toml for build information (PEP 621)
	- Correct another instance where generic exception was raised instead of
	  IDNAError for malformed input
	- Source distribution uses zeroized file ownership for improved
	  reproducibility

Tested-by: Adolf Belka <adolf.belka@ipfire.org>
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
 2022-11-10 15:13:53 +00:00
Adolf Belka
044c371cc2 python3-docutils:Update to version 0.19 and to work with python-3.10.8 
- Updated from version 0.18.1 to 0.19
- Update of rootfile
- Changelog
    Release 0.19 (2022-07-05)
	* General
	  - Dropped support for Python 2.7, 3.5, and 3.6. and removed compatibility
	    hacks from code and tests.
	  - Code cleanup,
	    check PEP 8 conformity with `flake8` (exceptions in file tox.ini).
	* docutils/__main__.py
	  - New module. Support for ``python -m docutils``.
	    Also used for the ``docutils`` console script `entry point`.
	* docutils/core.py:
	  - Let `Publisher.publish()` print info and prompt when waiting for input
	    from a terminal (cf. https://clig.dev/#interactivity).
	  - Respect "input_encoding_error_handler" setting when opening a source.
	* docutils/io.py
	  - New function `error_string()`
	    obsoletes `utils.error_reporting.ErrorString`.
	  - Class `ErrorOutput` moved here from `utils/error_reporting`.
	  - Use "utf-8-sig" instead of Python's default encoding if the
	    "input_encoding" setting is None.
	  - Fix error when reading of UTF-16 encoded source without trailing newline.
	* docutils/parsers/__init__.py
	  - Aliases "markdown" and "commonmark" point to "commonmark_wrapper".
	  - Alias for the "myst" parser (https://pypi.org/project/myst-docutils).
	  - Use absolute module names in `_parser_aliases` instead of two
	    import attempts. (Keeps details if the `recommonmark_wrapper.py` module
	    raises an ImportError.)
	  - Prepend parser name to ImportError if importing a parser class fails.
	* docutils/parsers/commonmark_wrapper.py
	  - New module for parsing CommonMark input. Selects a locally installed
	    3rd-party parser (pycmark, myst, or recommonmark).
	* docutils/parsers/recommonmark_wrapper.py
	  - Raise ImportError, if import of the upstream parser module fails.
	    If called from an `"include" directive`_,
	    the system-message now has source/line info.
	  - Adapt to and test with "recommonmark" versions 0.6.0 and 0.7.1.
	  .. _"include" directive: docs/ref/rst/directives.html#include
	* docutils/parsers/rst/__init__.py
	  - Update PEP base URL (fixes bug #445),
	    use "https:" scheme in RFC base URL.
	  - Add `reporter` to `Directive` class attributes.
	* docutils/parsers/rst/directives/__init__.py
	  - `parser_name()` keeps details if converting ImportError to ValueError.
	* docutils/parsers/rst/roles.py
	  - Don't use mutable default values for function arguments. Fixes bug #430.
	* docutils/transforms/universal.py
	  - Fix bug #435: invalid references in `problematic` nodes
	    with report_level=4.
	* docutils/utils/__init__.py
	  - `decode_path()` returns `str` instance instead of `nodes.reprunicode`.
	* docutils/utils/error_reporting.py
	  - Add deprecation warning.
	* docutils/writers/_html_base.py
	  - Add "html writers" to `config_section_dependencies`. Fixes bug #443.
	  - Write table column widths with 3 digits precision. Fixes bug #444.
	* docutils/writers/html5_polyglot/__init__.py
	  - Add space before "charset" meta tag closing sequence.
	  - Remove class value "controls" from an `image` node with video content
	    after converting it to a "control" attribute of the <video> tag.
	  - Wrap groups of footnotes in an ``<aside>`` for easier styling.
	* docutils/writers/pep_html/
	  - Use "https:" scheme in "python_home" URL default.
	  - Fix links in template.txt.
	* setup.py:
	  - New "docutils" console script `entry point`__. Fixes bug #447.
	    __ https://packaging.python.org/en/latest/specifications/entry-points/
	* test/alltests.py
	  - Always encode the log file "alltests.out" using 'utf-8'.
	* test/DocutilsTestSupport.py
	  - `exception_data()` now returns None if no exception was raised.
	  - `recommonmark_wrapper` only imported if upstream parser is present.
	* test/test_parsers/test_rst/test_directives/test_tables.py
	  - Fix bug #436: Null char valid in CSV since Python 3.11.
	* tools/docutils-cli.py
	  - Allow 3rd-party drop-in components for reader and parser, too.
	  - Fix help output.
	  - Actual code moved to docutils.__main__.py.

Tested-by: Adolf Belka <adolf.belka@ipfire.org>
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
 2022-11-10 15:13:53 +00:00
Adolf Belka
5de4197685 python3-colorama:Update to version 0.4.5 and to work with python-3.10.8 
- Updated from version 0.4.4 to 0.4.5
- Update of rootfile
- Changelog
	0.4.5
	  * Catch a racy ValueError that could occur on exit.
	  * Create README-hacking.md, for Colorama contributors.
	  * Tweak some README unicode characters that don't render correctly on PyPI.
	  * Fix some tests that were failing on some operating systems.
	  * Add support for Python 3.9.
	  * Add support for PyPy3.
	  * Add support for pickling with the ``dill`` module.

Tested-by: Adolf Belka <adolf.belka@ipfire.org>
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
 2022-11-10 15:13:53 +00:00
Adolf Belka
f42da6c8c1 python3-click:Update to version 8.1.3 and to work with python-3.10.8 
- Updated from version 8.1.2 to 8.1.3
- Update of rootfile
- Changelog
    Version 8.1.3
	-   Use verbose form of ``typing.Callable`` for ``@command`` and
	    ``@group``. :issue:`2255`
	-   Show error when attempting to create an option with
	    ``multiple=True, is_flag=True``. Use ``count`` instead.
	    :issue:`2246`

Tested-by: Adolf Belka <adolf.belka@ipfire.org>
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
 2022-11-10 15:13:53 +00:00
Adolf Belka
8815cdbe5a python3-circuitbreaker:Update to version 1.4.0 and to work with python-3.10.8 
- Updated from version 1.3.2 to 1.4.0
- Update of rootfile
- Changelog
    1.4.0 Latest
	The circuitbreaker project has been classified as "Critical Project" on PyPI, meaning it belongs to the top 1% of all projects on PyPI based on the downloads over the last 6 months. We're working an important peace here 🙂
	Fallback Function
		By default, the circuit breaker will raise a CircuitBreaker exception when the circuit is opened. You can instead specify a function to be called when the circuit is opened. This function can be specified with the fallback_function parameter and will be called with the same parameters as the decorated function would be.
		Custom callable for handling exceptions
		The logic for handling thrown exceptions as failures can now be customized by passing a callable. The callable will be passed the exception type and value, and should return True if the exception should be treated as a failure.
	Monotonic clock
		Using the wall clock to measure durations is vulnerable to changes in the system clock causing misbehavior - a clock accidentally set far in the future and later reset could result in the circuit breaker remaining open for a great deal longer than expected. To solve this, a monotonic clock is now used for timing open states.
	Circuitbreaker default name
		The circuitbreaker default names are now taken from __qualname__ if available for more precise default naming.
	Fixes and tooling
		the project is now built on Github Action instead of Travis CI
		building for python 3.10
		applied smaller flake8 fixes

Tested-by: Adolf Belka <adolf.belka@ipfire.org>
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
 2022-11-10 15:13:53 +00:00
Adolf Belka
cce71b141c python3-charset-normalizer:Update to version 2.1.1 and to work with python-3.10.8 
- Updated from version 2.0.12 to 2.1.1
- Update of rootfile
- Changelog
	## [2.1.1](https://github.com/Ousret/charset_normalizer/compare/2.1.0...2.1.1) (2022-08-19)
		### Deprecated
			- Function `normalize` scheduled for removal in 3.0
		### Changed
			- Removed useless call to decode in fn is_unprintable (#206)
		### Fixed
			- Third-party library (i18n xgettext) crashing not recognizing utf_8 (PEP 263) with underscore from [@aleksandernovikov](https://github.com/aleksandernovikov) (#204)
	## [2.1.0](https://github.com/Ousret/charset_normalizer/compare/2.0.12...2.1.0) (2022-06-19)
		### Added
			- Output the Unicode table version when running the CLI with `--version` (PR #194)
		### Changed
			- Re-use decoded buffer for single byte character sets from [@nijel](https://github.com/nijel) (PR #175)
			- Fixing some performance bottlenecks from [@deedy5](https://github.com/deedy5) (PR #183)
		### Fixed
			- Workaround potential bug in cpython with Zero Width No-Break Space located in Arabic Presentation Forms-B, Unicode 1.1 not acknowledged as space (PR #175)
			- CLI default threshold aligned with the API threshold from [@oleksandr-kuzmenko](https://github.com/oleksandr-kuzmenko) (PR #181)
		### Removed
			- Support for Python 3.5 (PR #192)
		### Deprecated
			- Use of backport unicodedata from `unicodedata2` as Python is quickly catching up, scheduled for removal in 3.0 (PR #194)

Tested-by: Adolf Belka <adolf.belka@ipfire.org>
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
 2022-11-10 15:13:53 +00:00
Adolf Belka
c083a72afe python3-cffi:Update to version 1.15.1 and to work with python-3.10.8 
- Updated from version 1.15.0 to 1.15.1
- Update of rootfile
- Changelog
    v1.15.1
	    If you call ffi.embedding_api() but don’t write any extern “Python” function there, then the resulting C code would fail an assert. Fixed.
	    Updated Windows/arm64 embedded libffi static lib to v3.4.2, and scripted to ease future updates (thanks Niyas Sait!)

Tested-by: Adolf Belka <adolf.belka@ipfire.org>
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
 2022-11-10 15:13:53 +00:00
Adolf Belka
f3a337ece1 python3-certifi:Update to version 2022.9.4 and to work with python-3.10.8 
- Updated from version 2021.10.8 to 2022.9.4
- Update of rootfile
- No changelog found in source tarball or other location

Tested-by: Adolf Belka <adolf.belka@ipfire.org>
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
 2022-11-10 15:13:53 +00:00
Adolf Belka
c28c0d6f0d python3-botocore:Update to version 1.27.89 and to work with python-3.10.8 
- Updated from version 1.25.12 to 1.27.89
- Update of rootfile
- No changelog found in source tarball or other location

Tested-by: Adolf Belka <adolf.belka@ipfire.org>
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
 2022-11-10 15:13:53 +00:00
Adolf Belka
c52ff00f09 python3-attrs:Update to version 22.1.0 and to work with python-3.10.8 
- Updated from version 21.4.0 to 22.1.0
- Update of rootfile
- Changelog
   22.1.0 (2022-07-28)
	Backwards-incompatible Changes
		- Python 2.7 is not supported anymore.
		  Dealing with Python 2.7 tooling has become too difficult for a volunteer-run project.
		  We have supported Python 2 more than 2 years after it was officially discontinued and feel that we have paid our dues.
		  All version up to 21.4.0 from December 2021 remain fully functional, of course.
		  `#936 <https://github.com/python-attrs/attrs/issues/936>`_
		- The deprecated ``cmp`` attribute of ``attrs.Attribute`` has been removed.
		  This does not affect the *cmp* argument to ``attr.s`` that can be used as a shortcut to set *eq* and *order* at the same time.
		  `#939 <https://github.com/python-attrs/attrs/issues/939>`_
	Changes
		- Instantiation of frozen slotted classes is now faster.
		  `#898 <https://github.com/python-attrs/attrs/issues/898>`_
		- If an ``eq`` key is defined, it is also used before hashing the attribute.
		  `#909 <https://github.com/python-attrs/attrs/issues/909>`_
		- Added ``attrs.validators.min_len()``.
		  `#916 <https://github.com/python-attrs/attrs/issues/916>`_
		- ``attrs.validators.deep_iterable()``'s *member_validator* argument now also accepts a list of validators and wraps them in an ``attrs.validators.and_()``.
		  `#925 <https://github.com/python-attrs/attrs/issues/925>`_
		- Added missing type stub re-imports for ``attrs.converters`` and ``attrs.filters``.
		  `#931 <https://github.com/python-attrs/attrs/issues/931>`_
		- Added missing stub for ``attr(s).cmp_using()``.
		  `#949 <https://github.com/python-attrs/attrs/issues/949>`_
		- ``attrs.validators._in()``'s ``ValueError`` is not missing the attribute, expected options, and the value it got anymore.
		  `#951 <https://github.com/python-attrs/attrs/issues/951>`_
		- Python 3.11 is now officially supported.
		  `#969 <https://github.com/python-attrs/attrs/issues/969>`_

Tested-by: Adolf Belka <adolf.belka@ipfire.org>
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
 2022-11-10 15:13:53 +00:00
Adolf Belka
e18e8a7020 python3-arrow:Update to version 1.2.3 and to work with python-3.10.8 
- Updated from version 1.2.2 to 1.2.3
- Update of rootfile
- Changelog
   1.2.3 (2022-06-25)
	- [NEW] Added Amharic, Armenian, Georgian, Laotian and Uzbek locales.
	- [FIX] Updated Danish locale and associated tests.
	- [INTERNAl] Small fixes to CI.

Tested-by: Adolf Belka <adolf.belka@ipfire.org>
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
 2022-11-10 15:13:53 +00:00
Adolf Belka
97119282dd python3-cryptography:Update to version 38.0.1 and to work with python-3.10.8 
- Updated from version 36.0.2 to 38.0.1
- Update of rootfile
- Changelog
	38.0.1 - 2022-09-07
	    Fixed parsing TLVs in ASN.1 with length greater than 65535 bytes (typically seen in large CRLs).
	38.0.0 - 2022-09-06
	    Final deprecation of OpenSSL 1.1.0. The next release of cryptography will drop support.
	    We no longer ship many linux 2010 wheels. Users should upgrade to the latest pip to ensure this doesn’t cause issues downloading wheels on their platform. We now ship manylinux_2_28 wheels for users on new enough platforms.
	    Updated the minimum supported Rust version (MSRV) to 1.48.0, from 1.41.0. Users with the latest pip will typically get a wheel and not need Rust installed, but check Installation for documentation on installing a newer rustc if required.
	    decrypt() and related methods now accept both str and bytes tokens.
	    Parsing CertificateSigningRequest restores the behavior of enforcing that the Extension critical field must be correctly encoded DER. See the issue for complete details.
	    Added two new OpenSSL functions to the bindings to support an upcoming pyOpenSSL release.
	    When parsing CertificateRevocationList and CertificateSigningRequest values, it is now enforced that the version value in the input must be valid according to the rules of RFC 2986 and RFC 5280.
	    Using MD5 or SHA1 in CertificateBuilder and other X.509 builders is deprecated and support will be removed in the next version.
	    Added additional APIs to SignedCertificateTimestamp, including signature_hash_algorithm, signature_algorithm, signature, and extension_bytes.
	    Added tbs_precertificate_bytes, allowing users to access the to-be-signed pre-certificate data needed for signed certificate timestamp verification.
	    KBKDFHMAC and KBKDFCMAC now support MiddleFixed counter location.
	    Fixed RFC 4514 name parsing to reverse the order of the RDNs according to the section 2.1 of the RFC, affecting method from_rfc4514_string().
	    It is now possible to customize some aspects of encryption when serializing private keys, using encryption_builder().
	    Removed several legacy symbols from our OpenSSL bindings. Users of pyOpenSSL versions older than 22.0 will need to upgrade.
	    Added AES128 and AES256 classes. These classes do not replace AES (which allows all AES key lengths), but are intended for applications where developers want to be explicit about key length.
	37.0.4 - 2022-07-05
	    Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.0.5.
	37.0.3 - 2022-06-21 (YANKED)¶
	Attention
	This release was subsequently yanked from PyPI due to a regression in OpenSSL.
	    Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.0.4.
	37.0.2 - 2022-05-03
	    Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.0.3.
	    Added a constant needed for an upcoming pyOpenSSL release.
	37.0.1 - 2022-04-27
	    Fixed an issue where parsing an encrypted private key with the public loader functions would hang waiting for console input on OpenSSL 3.0.x rather than raising an error.
	    Restored some legacy symbols for older pyOpenSSL users. These will be removed again in the future, so pyOpenSSL users should still upgrade to the latest version of that package when they upgrade cryptography.
	37.0.0 - 2022-04-26
	    Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.0.2.
	    BACKWARDS INCOMPATIBLE: Dropped support for LibreSSL 2.9.x and 3.0.x. The new minimum LibreSSL version is 3.1+.
	    BACKWARDS INCOMPATIBLE: Removed signer and verifier methods from the public key and private key classes. These methods were originally deprecated in version 2.0, but had an extended deprecation timeline due to usage. Any remaining users should transition to sign and verify.
	    Deprecated OpenSSL 1.1.0 support. OpenSSL 1.1.0 is no longer supported by the OpenSSL project. The next release of cryptography will be the last to support compiling with OpenSSL 1.1.0.
	    Deprecated Python 3.6 support. Python 3.6 is no longer supported by the Python core team. Support for Python 3.6 will be removed in a future cryptography release.
	    Deprecated the current minimum supported Rust version (MSRV) of 1.41.0. In the next release we will raise MSRV to 1.48.0. Users with the latest pip will typically get a wheel and not need Rust installed, but check Installation for documentation on installing a newer rustc if required.
	    Deprecated CAST5, SEED, IDEA, and Blowfish because they are legacy algorithms with extremely low usage. These will be removed in a future version of cryptography.
	    Added limited support for distinguished names containing a bit string.
	    We now ship universal2 wheels on macOS, which contain both arm64 and x86_64 architectures. Users on macOS should upgrade to the latest pip to ensure they can use this wheel, although we will continue to ship x86_64 specific wheels for now to ease the transition.
	    This will be the final release for which we ship manylinux2010 wheels. Going forward the minimum supported manylinux ABI for our wheels will be manylinux2014. The vast majority of users will continue to receive manylinux wheels provided they have an up to date pip. For PyPy wheels this release already requires manylinux2014 for compatibility with binaries distributed by upstream.
	    Added support for multiple OCSPSingleResponse in a OCSPResponse.
	    Restored support for signing certificates and other structures in X.509 with SHA3 hash algorithms.
	    TripleDES is disabled in FIPS mode.
	    Added support for serialization of PKCS#12 CA friendly names/aliases in serialize_key_and_certificates()
	    Added support for 12-15 byte (96 to 120 bit) nonces to AESOCB3. This class previously supported only 12 byte (96 bit).
	    Added support for AESSIV when using OpenSSL 3.0.0+.
	    Added support for serializing PKCS7 structures from a list of certificates with serialize_certificates.
	    Added support for parsing RFC 4514 strings with from_rfc4514_string().
	    Added AUTO to PSS. This can be used to verify a signature where the salt length is not already known.
	    Added DIGEST_LENGTH to PSS. This constant will set the salt length to the same length as the PSS hash algorithm.
	    Added support for loading RSA-PSS key types with load_pem_private_key() and load_der_private_key(). This functionality is limited to OpenSSL 1.1.1e+ and loads the key as a normal RSA private key, discarding the PSS constraint information.

Tested-by: Adolf Belka <adolf.belka@ipfire.org>
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
 2022-11-10 15:13:52 +00:00
Peter Müller
f7b0247e02 Drop powertop 
This has been discussed briefly in the telephone conference of
September: powertop is considered to be unnecessary, as IPFire is
optimized for performance, thus interfering with possible power
consumption reducing switches. Also, the need for powertop has been
diminished, given that x86 platforms are highly likely not to run on
batteries, and we are phasing out 32-bit ARM, where this could have been
the case.

Therefore, this patch proposes to drop powertop.

Signed-off-by: Peter Müller <peter.mueller@ipfire.org>
Reviewed-by: Michael Tremer <michael.tremer@ipfire.org>
 2022-11-08 11:13:43 +00:00
Peter Müller
e728fba16f Samba: Update ARM rootfiles 
Signed-off-by: Peter Müller <peter.mueller@ipfire.org>
 2022-10-29 08:55:58 +00:00
Matthias Fischer
3e5190f5c7 samba: Update to 4.17.0 
For details see:
https://www.samba.org/samba/latest_news.html#4.17.0

This "just came my way" and I found the CVEs listed on
https://www.samba.org/samba/history/security.html which
address "All versions of Samba prior to 4.16.4" or
"All versions of Samba" rather long.

The 'glibc_headers' patch is now included.

Sad to say, due to the lack of hardware I can only include
the rootfile for x86_64.

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
 2022-10-24 09:08:01 +00:00