libcap: Update to version 2.72
- Update from version 2.70 to 2.72
- Update of rootfile
- Changelog
2.72
ERRATA:
Failed to support more modern Linux architectures including arm64. Fix provided
by Xi Ruoyao.
This specific release is devoted to a wholesale rewrite of libpsx to operate on
native Linux threads (aka LWP = Light Weight Processes).
Given the potential for misbehavior, we're isolating this release to that change.
Should some issue(s) arise, and folk need to roll back, this will hopefully
make downstream packagers' lives a bit easier: skip this release altogether.
This addresses LCAP-CR-23-102 (SEVERITY) NONE from the libcap-2.69 security
audit. This addresses Bug 217476.
This addresses C++ std::thread libpsx support. This addresses Bug 218607
reported by Vini Ipsmaker.
Included a test case for this: contrib/bug218607/
This now allows the PSX mechanism to apply to threads launched by loaded .so
plugins. This addresses Bug 219174 reported by Stas Sergeev.
Included a test case for this: tests/
b219174.c
The rewrite has significantly reduced the need for any odd linking of the
-lpsx library. Namely, if code makes use of the psx_syscall*() functions,
there is no need for anything other than -lpsx on the link line.
Updated a whole lot of documentation that warned folk about the
-wrap=pthread_create linking need not being needed any more. (Bug 219456)
Linking -lcap and -lpsx still requires some extra care. Updated
cap_get_proc(3) manual page to explain.
Was unable to figure out how to work around the pre-go1.16.* bug related to
cgo and interrupt handling while thread exit with the rewritten libpsx code.
Decided to abandon full support for earlier versions of Go.
Explanation is Bug 219478 which points to old Go bug.
Transitioned key used for signing Go package tags to use the
0D23D34C577B08C4082CFD76430C5CFF993116B1 key.
Very tiny documentation change for the cap package to try again to get a runnable
example to show up on the pkg.go.dev website.
2.71
Reduce the need for CAP_SETPCAP in IAB setting to the specific instances in
which the kernel requires it. This addresses Bug 219169 reported by
Christopher Head.
Resolve subtle libpsx linker flag issue related to -Bsymbolic-functions. This
addresses Bug 219169 reported by Stas Sergeev.
Add new GPG signing key. At this stage, none of the older keys have been
retired. This addresses Bug 218860 requested by David Runge at Arch Linux. Key
details:
$ gpg --fingerprint
0D23D34C577B08C4082CFD76430C5CFF993116B1
pub
ed25519 2024-10-26 [SC]
0D23 D34C 577B 08C4 082C FD76 430C 5CFF 9931 16B1
uid [ultimate] Andrew G. Morgan (2024+ libcap signing key)
<morgan@kernel.org>
sub cv25519 2024-10-26 [E]
Expand use of various $(xFLAGS) to building simple binaries in the build tree.
Requested by Pierre-Clément Tosi.
Numerous documentation updates and clarifications.
Added a programming example to the cap package documentation. Exploring how to
embed viewer runnable content in the automatically generated online pkg.go.dev
documentation.
Work around a longstanding glibc segfault annoyance for in-build-tree testing.
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
projects / ipfire-2.x.git / commit
