mirror of
https://git.yoctoproject.org/poky
synced 2026-04-14 17:02:22 +02:00
7421603502
CVE-2026-26007 is fixed upstream in version 46.0.5.
Our current version (42.0.5, scarthgap) is still reported as vulnerable
by NVD.
Backport the upstream fix to address this CVE.
Upstream commit:
0eebb9dbb6
CVE report:
https://nvd.nist.gov/vuln/detail/CVE-2026-26007
(From OE-Core rev: a363958725430237160b0a83a6a6acbe8380fba3)
Signed-off-by: Nguyen Dat Tho <tho3.nguyen@lge.com>
Signed-off-by: Yoann Congal <yoann.congal@smile.fr>
Signed-off-by: Paul Barker <paul@pbarker.dev>
69 lines
1.9 KiB
BlitzBasic
69 lines
1.9 KiB
BlitzBasic
SUMMARY = "Provides cryptographic recipes and primitives to python developers"
|
|
HOMEPAGE = "https://cryptography.io/"
|
|
SECTION = "devel/python"
|
|
LICENSE = "Apache-2.0 | BSD-3-Clause"
|
|
LIC_FILES_CHKSUM = "file://LICENSE;md5=8c3617db4fb6fae01f1d253ab91511e4 \
|
|
file://LICENSE.APACHE;md5=4e168cce331e5c827d4c2b68a6200e1b \
|
|
file://LICENSE.BSD;md5=5ae30ba4123bc4f2fa49aa0b0dce887b \
|
|
"
|
|
LDSHARED += "-pthread"
|
|
|
|
SRC_URI[sha256sum] = "6fe07eec95dfd477eb9530aef5bead34fec819b3aaf6c5bd6d20565da607bfe1"
|
|
|
|
SRC_URI += "file://0001-pyproject.toml-remove-benchmark-disable-option.patch \
|
|
file://CVE-2026-26007.patch \
|
|
file://check-memfree.py \
|
|
file://run-ptest \
|
|
"
|
|
|
|
require ${BPN}-crates.inc
|
|
|
|
inherit pypi python_setuptools3_rust cargo-update-recipe-crates pkgconfig
|
|
|
|
DEPENDS += " \
|
|
python3-cffi-native \
|
|
"
|
|
|
|
RDEPENDS:${PN} += " \
|
|
python3-cffi \
|
|
"
|
|
|
|
RDEPENDS:${PN}:append:class-target = " \
|
|
python3-numbers \
|
|
python3-threading \
|
|
"
|
|
|
|
RDEPENDS:${PN}-ptest += " \
|
|
python3-bcrypt \
|
|
python3-cryptography-vectors (= ${PV}) \
|
|
python3-hypothesis \
|
|
python3-iso8601 \
|
|
python3-mmap \
|
|
python3-pretend \
|
|
python3-psutil \
|
|
python3-pytest \
|
|
python3-unittest-automake-output \
|
|
python3-pytest-subtests \
|
|
python3-pytz \
|
|
"
|
|
|
|
inherit ptest
|
|
|
|
do_install_ptest() {
|
|
install -D ${WORKDIR}/check-memfree.py ${D}${PTEST_PATH}/
|
|
install -d ${D}${PTEST_PATH}/tests
|
|
cp -rf ${S}/tests/* ${D}${PTEST_PATH}/tests/
|
|
# remove test_x509.py as it needs benchmark and we don't
|
|
# want to introduce the benchmark dependency
|
|
rm -rf ${D}${PTEST_PATH}/tests/bench/test_x509.py
|
|
install -d ${D}${PTEST_PATH}/tests/hazmat
|
|
cp -rf ${S}/tests/hazmat/* ${D}${PTEST_PATH}/tests/hazmat/
|
|
cp -r ${S}/pyproject.toml ${D}${PTEST_PATH}/
|
|
}
|
|
|
|
FILES:${PN}-dbg += " \
|
|
${PYTHON_SITEPACKAGES_DIR}/${SRCNAME}/hazmat/bindings/.debug \
|
|
"
|
|
|
|
BBCLASSEXTEND = "native nativesdk"
|