From patchwork Thu Oct 17 03:39:49 2024 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: WangYuli X-Patchwork-Id: 13839426 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from gabe.freedesktop.org (gabe.freedesktop.org [131.252.210.177]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.lore.kernel.org (Postfix) with ESMTPS id E3C23D2F7E1 for ; Thu, 17 Oct 2024 03:41:46 +0000 (UTC) Received: from gabe.freedesktop.org (localhost [127.0.0.1]) by gabe.freedesktop.org (Postfix) with ESMTP id 3F15F10E2F5; Thu, 17 Oct 2024 03:41:46 +0000 (UTC) Authentication-Results: gabe.freedesktop.org; dkim=pass (1024-bit key; unprotected) header.d=uniontech.com header.i=@uniontech.com header.b="SvD6ex0M"; dkim-atps=neutral Received: from bg1.exmail.qq.com (bg1.exmail.qq.com [114.132.74.132]) by gabe.freedesktop.org (Postfix) with ESMTPS id 17AA410E2F5 for ; Thu, 17 Oct 2024 03:41:43 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=uniontech.com; s=onoh2408; t=1729136455; bh=/TNrOWNbUPEthzfhqHJKmziu43+uHykeH5RpYdRgBZo=; h=From:To:Subject:Date:Message-ID:MIME-Version; b=SvD6ex0M5IW+A6r0nw4pLv3eVYxYj3WHgK80/DozgCKDEUNb+8XP7lYW4nX6JF90w 2Q6bqhtCIwLAf+Bh6aVLdMVfk6t+4wbtdxqSkBpKqL0MIaiO08laLRNS+nJrEHH5Qq BSFrgYVeYYKYuZBvvf3pS5HQQ/L+SWLyBQUcW0a4= X-QQ-mid: bizesmtpsz5t1729136414tml4pwk X-QQ-Originating-IP: KK23v6DESCX+/i0Va+sOnkKrvO+uca82q25Wknc1Hzc= Received: from localhost.localdomain ( [113.57.152.160]) by bizesmtp.qq.com (ESMTP) with id ; Thu, 17 Oct 2024 11:40:12 +0800 (CST) X-QQ-SSF: 0000000000000000000000000000000 X-QQ-GoodBg: 1 X-BIZMAIL-ID: 17913914486552868709 From: WangYuli To: helen.koike@collabora.com, maarten.lankhorst@linux.intel.com, mripard@kernel.org, tzimmermann@suse.de, airlied@gmail.com, simona@ffwll.ch, wangyuli@uniontech.com, david.heidelberg@collabora.com Cc: dri-devel@lists.freedesktop.org, linux-kernel@vger.kernel.org, guanwentao@uniontech.com, zhanjun@uniontech.com Subject: [RESEND. PATCH 2/5] drm/ci: Upgrade urllib3 requirement to 2.2.2 Date: Thu, 17 Oct 2024 11:39:49 +0800 Message-ID: X-Mailer: git-send-email 2.45.2 In-Reply-To: <20241017034004.113456-1-wangyuli@uniontech.com> References: <20241017034004.113456-1-wangyuli@uniontech.com> MIME-Version: 1.0 X-QQ-SENDSIZE: 520 Feedback-ID: bizesmtpsz:uniontech.com:qybglogicsvrgz:qybglogicsvrgz8a-1 X-QQ-XMAILINFO: NWTQ68Yg3gczqLNk2+yhNuroKrMwGQaRQm6e+oQJcts6cnXT3TgT2Wtq 1483Oez39KAaGpvx28VKP2HZLugRXizyP28MtKSvqkSskWMR6ABxY3wCcZPpaHVDHg+AxAU VmbElLkvOe1Uq4GPQ6rpCc6XxH2wo5eC9R/QIylDGnspwxQUsJz6lQb9Rqj3p2AikEkOMSm nfPStfSSq4ghBGWoaJMah2BJF8NDqRf5KkJEOSIPbfb2f6L17oTo8uPDKNoJ6rG+6aS8w5a u+AYCL1as833qsmijDyZst7rmB1ljis03h3zJy36kxkfRde9VIKyYqxPIcp7YBDNpt6en4Z tBgAB/O1xeR1k2Iabm6/vE28pSYOIoBaT+fKWRRofmcVfipT+7AN2PPgDd8krPRuWNhia8T n+sDELrEU07lZpoNk0QHXlGKCTFKalafalT4IGmTwQ+GPDA9598MrjxqQBhbkhPQzqS++ej s97ORI5gwt/CTaqazPFJ43ZeUdKSRc2uYk4glTvEE00GYqtkWV38XXZlWXQmBIiMWv3agA1 hyfVAB8GjzWLa0uDD73dtzZqWvVAq8IXoMZl6unxvRYoKlXzSzeegulG9ku2zxN992n5vca ZCYJAh5F/Kwu983gkSd1Ec4zNoEZnbeDwZA5KSV2ub45AOb85zBHcLYazWlvHhsH6iZFBfx +Hk5lzFFB9AiudobvyIS3zl8ic82T5Zl/750bhJhxS93AYef91DPZSXrW56G2Ty/EnNjcbg lSC8WMxqza+gKTplABYIvnt7DFzE+bHjD8re0KJIs3xyU1TeFhBnE6BC62zQbD11fOruook nnFHHUWfpgl3VQaPluAZrM7jDHqUJTVLh2QOkxE1hwA90u60JkHKIaunT4cUUJpv2ZSEz2d 9v86PbNebUk+tpOQE0Z1pZWJBqOrrS1Kgz5L8O1iulzSFy7cOpV+VpDFoPseAIkGFvBMaoO 0k8gri0ayo1Y/Kz7jSFOzGnrvBhYQMdq80aXL9tMTYDUVhhiPhcQBLrGvsLWsuLtL2+pM3j CK2X8O1rb8jdFUOyDeP5t541e6A1o= X-QQ-XMRINFO: Mp0Kj//9VHAxr69bL5MkOOs= X-QQ-RECHKSPAM: 0 X-BeenThere: dri-devel@lists.freedesktop.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Direct Rendering Infrastructure - Development List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: dri-devel-bounces@lists.freedesktop.org Sender: "dri-devel" GitHub Dependabot has issued the following alert: "build(deps): bump urllib3 from 2.0.7 to 2.2.2 in /drivers/gpu/drm/ci/xfails. When using urllib3's proxy support with, the header is only sent to the configured proxy, as expected. However, when sending HTTP requests without using urllib3's proxy support, it's possible to accidentally configure the header even though it won't have any effect as the request is not using a forwarding proxy or a tunneling proxy. In those cases, urllib3 doesn't treat the HTTP header as one carrying authentication material and thus doesn't strip the header on cross-origin redirects. Because this is a highly unlikely scenario, we believe the severity of this vulnerability is low for almost all users. Out of an abundance of caution urllib3 will automatically strip the header during cross-origin redirects to avoid the small chance that users are doing this on accident. Users should use urllib3's proxy support or disable automatic redirects to achieve safe processing of the header, but we still decided to strip the header by default in order to further protect users who aren't using the correct approach. Severity: 4.4 / 10 (Moderate) Attack vector: Network Attack complexity: High Privileges required: High User interaction: None Scope: Unchanged Confidentiality: High Integrity: None Availability: None CVE ID: CVE-2024-37891" To avoid disturbing everyone with the kernel repo hosted on GitHub, I suggest we upgrade our python dependencies once again to appease GitHub Dependabot. Link: https://github.com/dependabot Signed-off-by: WangYuli --- drivers/gpu/drm/ci/xfails/requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/drivers/gpu/drm/ci/xfails/requirements.txt b/drivers/gpu/drm/ci/xfails/requirements.txt index 5e6d48d98e4e..2fae1299e07b 100644 --- a/drivers/gpu/drm/ci/xfails/requirements.txt +++ b/drivers/gpu/drm/ci/xfails/requirements.txt @@ -13,5 +13,5 @@ ruamel.yaml==0.17.32 ruamel.yaml.clib==0.2.7 setuptools==70.0.0 tenacity==8.2.3 -urllib3==2.0.7 +urllib3==2.2.2 wheel==0.41.1 From patchwork Thu Oct 17 03:39:50 2024 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: WangYuli X-Patchwork-Id: 13839427 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from gabe.freedesktop.org (gabe.freedesktop.org [131.252.210.177]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.lore.kernel.org (Postfix) with ESMTPS id D66F0D2F7E5 for ; Thu, 17 Oct 2024 03:41:52 +0000 (UTC) Received: from gabe.freedesktop.org (localhost [127.0.0.1]) by gabe.freedesktop.org (Postfix) with ESMTP id 48B6E10E791; Thu, 17 Oct 2024 03:41:52 +0000 (UTC) Authentication-Results: gabe.freedesktop.org; dkim=pass (1024-bit key; unprotected) header.d=uniontech.com header.i=@uniontech.com header.b="WKRco6As"; dkim-atps=neutral Received: from bg5.exmail.qq.com (bg5.exmail.qq.com [43.154.209.5]) by gabe.freedesktop.org (Postfix) with ESMTPS id ACC2610E791 for ; Thu, 17 Oct 2024 03:41:48 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=uniontech.com; s=onoh2408; t=1729136456; bh=+/DdLbFCN3x83oxAHHqnPnAEM1hgWNumW7T/6E5yt74=; h=From:To:Subject:Date:Message-ID:MIME-Version; b=WKRco6AsmfxtEMP9CkPU7erStzwBvOrE0s2tcGLdGamLgj1bl3Tz2NfClzs+kSrJR Ltfukwa1TQxH3MUOM+3/Y9rVFbJcL/hvhWvW2He6G1UkrTMYTIIxFVJ9Q50vj6MM/k WX5JQeGt5pAZxK3G/8PzwPn/yMy8RAT0CjicfFLo= X-QQ-mid: bizesmtpsz5t1729136418tu84pku X-QQ-Originating-IP: MYne5dTKV5TL2KIkHVQVbuEnwE0v/dd4ms9SyKz2d5Y= Received: from localhost.localdomain ( [113.57.152.160]) by bizesmtp.qq.com (ESMTP) with id ; Thu, 17 Oct 2024 11:40:16 +0800 (CST) X-QQ-SSF: 0000000000000000000000000000000 X-QQ-GoodBg: 1 X-BIZMAIL-ID: 5065782363297022121 From: WangYuli To: helen.koike@collabora.com, maarten.lankhorst@linux.intel.com, mripard@kernel.org, tzimmermann@suse.de, airlied@gmail.com, simona@ffwll.ch, wangyuli@uniontech.com, david.heidelberg@collabora.com Cc: dri-devel@lists.freedesktop.org, linux-kernel@vger.kernel.org, guanwentao@uniontech.com, zhanjun@uniontech.com Subject: [RESEND. PATCH 3/5] drm/ci: Upgrade requests requirement to 2.32.0 Date: Thu, 17 Oct 2024 11:39:50 +0800 Message-ID: <0984066064003022+20241017034004.113456-3-wangyuli@uniontech.com> X-Mailer: git-send-email 2.45.2 In-Reply-To: <20241017034004.113456-1-wangyuli@uniontech.com> References: <20241017034004.113456-1-wangyuli@uniontech.com> MIME-Version: 1.0 X-QQ-SENDSIZE: 520 Feedback-ID: bizesmtpsz:uniontech.com:qybglogicsvrgz:qybglogicsvrgz8a-1 X-QQ-XMAILINFO: MbSuBwOrED9vvWtKS77uCvoDSQ0z3MT2NGBfyfpRwX0hGDGKP2V5VBoV WWDImpLaFTOmvNgGnnpGuMlqx1J8RFmxCs54LUwBvrneRFvl+wYkGtqJdB5h2Bb33dHZE0c IkTgJXKijETjY6QH6OwKgJgej5/5nW7MrwbvqtlW3dfiUgKetWmZDLNZAK9RIcyAHI4tdd5 Q7uPTaMmqy+rPwnO2EDgOS/EA4wEsWUFZCIRotw6lyWxHpEnl0i7PJmIl+2J+ZIybigUVhS M14dTYorZsrsWiGPPk8b3E6HY9qys3DzKdZ6iFmtt4SGSFrJieADtFtYp1d9x0Gt/7zqxOv GZbXla4cU3s3MIAyK3zrC4xYQeioWm/XnoUyCUldxkQYBfKWjjH68pdGo4i0nVYxQrAnRYl UgOmNTGa04BBDs4uevX3PAX+LChzBI58lBN05ZTzxGo4n5hJ9FPwYktSN8fP8yz7iKsOKnw MLJID96IDL9wFLXzmaLR4RtRBS/Ar0lZtZ9swy/0Ja8ncezf/MpQwqgJX5P71K0qsmsTnXp s4JAM5m8IJmNqXSMNdTMVMUA4o7H3N8W4nfC15yZjXTQOogzWm8esGTtoTNzs1YD6OWVqF/ BEQCAZkgzDcGZ/El20zRhd3iymSkjAheB449rtKv6bM3mQyQqGK6oWWlIEIJpKe276tE8Uy CR9b1fcLRBlxDw0rw1Vo+1Iskb110dRPCzrhKkWsadgBRKpdGNxlKwVQzg8Od4YxLen27Oc DebbB0rW5JLNa8bZEOkv0U1aHudV6Yb5ZDSkvLNY3OQfVm6xI70WHXYcqnah+4YLBfqq2oU xfhE5YH/Joar/514+hqxC5vCVihmIZG9Y0/apSz7ozbv617gUUW5hqV6K0B11jCwY6L1SKD Y5zg/HhlVsmf6wYVuofwD5ZSjMUWJyDnMOvGq9uh51Xue8AUZifwdHqm3MKMv156WRBT5BO X6kgluQ6ZExm0bOQhBLk+45PY3Y5fkr3OQum9JXAqkqdYRl+chF6YreSkj/9lbBZojsZzwu oHQciMPKSuFeUJElWGBXR5gbrTBck= X-QQ-XMRINFO: MPJ6Tf5t3I/ycC2BItcBVIA= X-QQ-RECHKSPAM: 0 X-BeenThere: dri-devel@lists.freedesktop.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Direct Rendering Infrastructure - Development List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: dri-devel-bounces@lists.freedesktop.org Sender: "dri-devel" GitHub Dependabot has issued the following alert: "build(deps): bump requests from 2.31.0 to 2.32.2 in /drivers/gpu/drm/ci/xfails. When making requests through a Requests Session, if the first request is made with verify=False to disable cert verification, all subsequent requests to the same origin will continue to ignore cert verification regardless of changes to the value of verify. This behavior will continue for the lifecycle of the connection in the connection pool. Severity: 5.6 / 10 (Moderate) Attack vector: Local Attack complexity: High Privileges required: High User interaction: Required Scope: Unchanged Confidentiality: High Integrity: High Availability: None CVE ID: CVE-2024-35195" To avoid disturbing everyone with the kernel repo hosted on GitHub, I suggest we upgrade our python dependencies once again to appease GitHub Dependabot. Link: https://github.com/dependabot Link: https://github.com/psf/requests/pull/6655 Signed-off-by: WangYuli --- drivers/gpu/drm/ci/xfails/requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/drivers/gpu/drm/ci/xfails/requirements.txt b/drivers/gpu/drm/ci/xfails/requirements.txt index 2fae1299e07b..f69b58356a37 100644 --- a/drivers/gpu/drm/ci/xfails/requirements.txt +++ b/drivers/gpu/drm/ci/xfails/requirements.txt @@ -7,7 +7,7 @@ charset-normalizer==3.2.0 idna==3.4 pip==23.3 python-gitlab==3.15.0 -requests==2.31.0 +requests==2.32.0 requests-toolbelt==1.0.0 ruamel.yaml==0.17.32 ruamel.yaml.clib==0.2.7 From patchwork Thu Oct 17 03:39:51 2024 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: WangYuli X-Patchwork-Id: 13839428 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from gabe.freedesktop.org (gabe.freedesktop.org [131.252.210.177]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.lore.kernel.org (Postfix) with ESMTPS id CE126D2F7E5 for ; Thu, 17 Oct 2024 03:41:59 +0000 (UTC) Received: from gabe.freedesktop.org (localhost [127.0.0.1]) by gabe.freedesktop.org (Postfix) with ESMTP id 57CBA10E792; Thu, 17 Oct 2024 03:41:59 +0000 (UTC) Authentication-Results: gabe.freedesktop.org; dkim=pass (1024-bit key; unprotected) header.d=uniontech.com header.i=@uniontech.com header.b="B8AsVGSx"; dkim-atps=neutral Received: from bg5.exmail.qq.com (bg5.exmail.qq.com [43.154.209.5]) by gabe.freedesktop.org (Postfix) with ESMTPS id 8544510E790 for ; Thu, 17 Oct 2024 03:41:57 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=uniontech.com; s=onoh2408; t=1729136461; bh=78SgngBKZBmCahApQZmS491yViuhV7ff/MsyOqzu+jA=; h=From:To:Subject:Date:Message-ID:MIME-Version; b=B8AsVGSx0hVuCzU6Ipdz/4Qr9mmGNOKdnZsuYmfQPY21A94FpBmaSjPp5Ane4RUTB M8/sMwe8BPubqA5Zfi34+G3aMOJ7v6+eOa+blD0vjS6JczUT5buKyBlYO6LMKHJWEO AAXzW/jz2Xm4Qm6zH0DLnEqLxZ2QDkibWEOGE+OU= X-QQ-mid: bizesmtpsz5t1729136421t6cqswj X-QQ-Originating-IP: rXPvY4BJUX6p6wMFauN6Wjp5w10TLU8HpMXjjfqb9Ow= Received: from localhost.localdomain ( [113.57.152.160]) by bizesmtp.qq.com (ESMTP) with id ; Thu, 17 Oct 2024 11:40:20 +0800 (CST) X-QQ-SSF: 0000000000000000000000000000000 X-QQ-GoodBg: 1 X-BIZMAIL-ID: 727155235365520417 From: WangYuli To: helen.koike@collabora.com, maarten.lankhorst@linux.intel.com, mripard@kernel.org, tzimmermann@suse.de, airlied@gmail.com, simona@ffwll.ch, wangyuli@uniontech.com, david.heidelberg@collabora.com Cc: dri-devel@lists.freedesktop.org, linux-kernel@vger.kernel.org, guanwentao@uniontech.com, zhanjun@uniontech.com Subject: [RESEND. PATCH 4/5] drm/ci: Upgrade idna requirement to 3.7 Date: Thu, 17 Oct 2024 11:39:51 +0800 Message-ID: X-Mailer: git-send-email 2.45.2 In-Reply-To: <20241017034004.113456-1-wangyuli@uniontech.com> References: <20241017034004.113456-1-wangyuli@uniontech.com> MIME-Version: 1.0 X-QQ-SENDSIZE: 520 Feedback-ID: bizesmtpsz:uniontech.com:qybglogicsvrgz:qybglogicsvrgz8a-1 X-QQ-XMAILINFO: NkHKfw09D6j8P0bEV2lHjYpHUuReeqTD6h7WCZKxWeA7jlCNqduC7pb0 m1JktPzZh7x7sEu6Kb3PVoAgp9WPH9Ksh3EMHurv6MCgoli21ggvcYRD3dP+yS+2FuW/he/ uB8xdl7Dx3EcIWS3j6cbl/Fb1QovaoRwPxM3I2hID8bMa6O/xkY76lsrR+e02KbaYpcq3Zd LDIgRKxf+QC7AH3CNoPcGMHWMBJP4Pymwk8Bt4qwKLUfIv3xZYWBQOgm4q5mYfSr5UK3Kzm HkLe/6khqVprDVHIGyzd488/sMGWtOIipIDRNZ2wSk+HgveJTF4C9zFKTc+uQdypst4MIRx xU4D1LckbCQFZ93Mj5rU/SSxdaD3MVGVC7tuEtCaJ1X2yGmllNBln6F2SZ8jRh8vz7T3GaZ UATA+AZ3TFGTrrE0/1Fs7MfeSH7juMDKoR4/QZ21CjotAt8Em2NbZUmbQ47wLFrmXE8tF0W 2Fj8yz3NfyUU/2ys2r+p4lR4NMUvQ8u6mDIg5zuMcXBcbWHHDnPWGSJtlacHhFM8r43mBWP 6HdLd4nWbByRIqnRbsdv8u5blf8KLJhsd+BECcm8jjq2ugp7vw1T9yWEIYqU59nnTdpbV1r W2aABAuycjmu2qujgVz2kDA0dNqPabG41k33u7oneHWqk5pWsFdnxvEZA/w4ALXeRltGQhz 34UmmHfomHjA5UaUO666ouLqDG57SMyY0LayVxnNjPM3duyqI7hlE+bwxI4V/VxMuCUVjDF 3kZEmsLS1QxBwHFgD+bpIvbQzUE1oiH5wPjSDJ1Om9RZ8pq90+xGflVHtjtL11/LC+mDYsp sHSeVXPfjPepDwmlmDualAnsmWpxButjJ+wXdXssyWB21QJUsZlGLGRXdLux149eo1DFRdH f/Tp8LEQJlBPrNu68rztEOfs+p+U+jrwvaJqeB7oZGabObay8kMPITo5vsT1UNtzaI2Xk2t GO24EjmkqD8qSk11Um9s7HcNzubgT9PJ/p3bwjteTkSHqN3Ti9dIvkslsp7aBsBaJ/yZLmC GbNJVTcr9lhivIlDS6UCuLuOnAJx+dwLTmurrUPJwBEFYpRkdy X-QQ-XMRINFO: OWPUhxQsoeAVDbp3OJHYyFg= X-QQ-RECHKSPAM: 0 X-BeenThere: dri-devel@lists.freedesktop.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Direct Rendering Infrastructure - Development List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: dri-devel-bounces@lists.freedesktop.org Sender: "dri-devel" GitHub Dependabot has issued the following alert: "build(deps): bump idna from 3.4 to 3.7 in /drivers/gpu/drm/ci/xfails. A specially crafted argument to the function could consume significant resources. This may lead to a denial-of-service. The function has been refined to reject such strings without the associated resource consumption in version 3.7. Severity: 6.9 / 10 (Moderate) Attack vector: Local Attack complexity: Low Attack Requirements: None Privileges required: None User interaction: None Confidentiality: None Integrity: None Availability: High CVE ID: CVE-2024-3651" To avoid disturbing everyone with the kernel repo hosted on GitHub, I suggest we upgrade our python dependencies once again to appease GitHub Dependabot. Link: https://github.com/dependabot Link: https://huntr.com/bounties/93d78d07-d791-4b39-a845-cbfabc44aadb Signed-off-by: WangYuli --- drivers/gpu/drm/ci/xfails/requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/drivers/gpu/drm/ci/xfails/requirements.txt b/drivers/gpu/drm/ci/xfails/requirements.txt index f69b58356a37..8b2b1fa16614 100644 --- a/drivers/gpu/drm/ci/xfails/requirements.txt +++ b/drivers/gpu/drm/ci/xfails/requirements.txt @@ -4,7 +4,7 @@ termcolor==2.3.0 # ci-collate dependencies certifi==2023.7.22 charset-normalizer==3.2.0 -idna==3.4 +idna==3.7 pip==23.3 python-gitlab==3.15.0 requests==2.32.0 From patchwork Thu Oct 17 03:39:52 2024 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: WangYuli X-Patchwork-Id: 13839429 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from gabe.freedesktop.org (gabe.freedesktop.org [131.252.210.177]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.lore.kernel.org (Postfix) with ESMTPS id 20AC9D2F7E1 for ; Thu, 17 Oct 2024 03:41:59 +0000 (UTC) Received: from gabe.freedesktop.org (localhost [127.0.0.1]) by gabe.freedesktop.org (Postfix) with ESMTP id ACC8310E790; Thu, 17 Oct 2024 03:41:58 +0000 (UTC) Authentication-Results: gabe.freedesktop.org; dkim=pass (1024-bit key; unprotected) header.d=uniontech.com header.i=@uniontech.com header.b="e/OX4j3l"; dkim-atps=neutral Received: from smtpbgbr1.qq.com (smtpbgbr1.qq.com [54.207.19.206]) by gabe.freedesktop.org (Postfix) with ESMTPS id 93AFB10E790 for ; Thu, 17 Oct 2024 03:41:55 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=uniontech.com; s=onoh2408; t=1729136462; bh=RC2PbTe+FDm7zLc+8APOYm4+AzjmOpO3efPzB4XXvWM=; h=From:To:Subject:Date:Message-ID:MIME-Version; b=e/OX4j3lb122VzmkBRoA4OfJOBK1O2/aYUBoBuIFwiCehFduumxPQoY0qzRiP8Mrx cGCiCDqqf5pKsnWGXp0RnyvkU+4PmEqqEgVolJlXxlJO7ubVluv8bH7WAUP0JKYdyV QebD3XsLrobX1mwHzl6IVhULHuGhUaFa6oBFVkao= X-QQ-mid: bizesmtpsz5t1729136426txbi37g X-QQ-Originating-IP: 7TxsSelKf0dMgeMEChKRtZqHq7GfN6ly+pDP2DMneNw= Received: from localhost.localdomain ( [113.57.152.160]) by bizesmtp.qq.com (ESMTP) with id ; Thu, 17 Oct 2024 11:40:25 +0800 (CST) X-QQ-SSF: 0000000000000000000000000000000 X-QQ-GoodBg: 1 X-BIZMAIL-ID: 4008574617543499355 From: WangYuli To: helen.koike@collabora.com, maarten.lankhorst@linux.intel.com, mripard@kernel.org, tzimmermann@suse.de, airlied@gmail.com, simona@ffwll.ch, wangyuli@uniontech.com, david.heidelberg@collabora.com Cc: dri-devel@lists.freedesktop.org, linux-kernel@vger.kernel.org, guanwentao@uniontech.com, zhanjun@uniontech.com Subject: [RESEND. PATCH 5/5] drm/ci: Upgrade certifi requirement to 2024.07.04 Date: Thu, 17 Oct 2024 11:39:52 +0800 Message-ID: X-Mailer: git-send-email 2.45.2 In-Reply-To: <20241017034004.113456-1-wangyuli@uniontech.com> References: <20241017034004.113456-1-wangyuli@uniontech.com> MIME-Version: 1.0 X-QQ-SENDSIZE: 520 Feedback-ID: bizesmtpsz:uniontech.com:qybglogicsvrgz:qybglogicsvrgz8a-1 X-QQ-XMAILINFO: Nwz8Cs33/Lpr8t5cDPma9YzNfP0jHpxsqyP3CJmidkZkevrV5JdfSJIj V6GQxc4uN0bqtGzZqaCXoj6esyUm4I6OVAxCnvLIHQxkqF40uvMyXluGBtrnJZXiMhNL858 mEQN4ABmz73KnOOw8it8buUYBSU9cAq3fXP3NQbA7FdKoqBg1pcx7t7DicK0AUBdz+rJmaw sJurKDxljBfHWQwCQi+zCOhypzW9XBsZ5vlM2/D24VIA+lsQRFfZPABN5V8Z5j6LnY72eMF hgqmqJa+YkUU/JZBCEg16WcA8q3DmDYCtCCKljmlp3B5lEjgghsTrTiaa5jzlCemgK92nc6 YUbdnoIcDQE3cFMDkU/ZRYe0oDSVADZt5kEnJQ9YIurhiJ1EETpdWLNC7VwMmzb//dQ8vgt zPacKmxPbyFg604ZIdVUUB3c1ZK4qOv4MT475ujA2gjcKMhswjG9W4qoqijHryqFUCrCLmq M1n0lJi9k22KxstA0waXdA5Bts8TVihdD0eFf72Hm+IfAgXaaNtgZq4555d642rIkssvxk5 3cTfgCxiZPptoMArNCYuYZCK0j8rue2llg9+EDF0ay0moLuZDz/2dFCf6miwR4tIQFvOkwS VrEZEuZWcX9feYr/ilX74fOkxW0zWS8Ff2epuWQyHhzmhY+6c+K0zBRb7SLDxodU7L/26pt hbBE7dFc1RldUrVunTnSsWFfaOFWf6olSz83XLIxaQx5NtRjjhuLlpNRHLhyy0joy08dkje Ql+/RcVmhl/rnseeBUdmfPjrAes8O2veCPuCH2l223INV9UUxKvfmiWb97+B1QA9eRwCkCl HEyZVxNObUoUHZqLSW7JXoj2dWbxFO7OPjgm323FHyvzAQgWl8iQVV62cGkeZzOQ7cJ6NUA HiOz+4BiKE0rbBhXuto4nyLpm1qkwFJL/VX/MyI0OIN2E9MM1sVupENJFwpVPzAeLvjypEt 4tLQITgwQ2AooK9OPGufnA5a9G/6iQ4R4D35duWV0NyRglrMVDzPCJMZ+EWxXTnTWOElwlC TwKHT9wilZboep3ghJIOjesObbuO8= X-QQ-XMRINFO: OWPUhxQsoeAVDbp3OJHYyFg= X-QQ-RECHKSPAM: 0 X-BeenThere: dri-devel@lists.freedesktop.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Direct Rendering Infrastructure - Development List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: dri-devel-bounces@lists.freedesktop.org Sender: "dri-devel" GitHub Dependabot has issued the following alert: "build(deps): bump certifi from 2023.7.22 to 2024.7.4 in /drivers/gpu/drm/ci/xfails. Certifi 2024.07.04 removes root certificates from "GLOBALTRUST" from the root store. These are in the process of being removed from Mozilla's trust store. GLOBALTRUST's root certificates are being removed pursuant to an investigation which identified "long-running and unresolved compliance issues". Severity: Low CVE ID: CVE-2024-39689" To avoid disturbing everyone with the kernel repo hosted on GitHub, I suggest we upgrade our python dependencies once again to appease GitHub Dependabot. Link: https://github.com/dependabot Link: https://groups.google.com/a/mozilla.org/g/dev-security-policy/c/XpknYMPO8dI Signed-off-by: WangYuli --- drivers/gpu/drm/ci/xfails/requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/drivers/gpu/drm/ci/xfails/requirements.txt b/drivers/gpu/drm/ci/xfails/requirements.txt index 8b2b1fa16614..4f7ac688d448 100644 --- a/drivers/gpu/drm/ci/xfails/requirements.txt +++ b/drivers/gpu/drm/ci/xfails/requirements.txt @@ -2,7 +2,7 @@ git+https://gitlab.freedesktop.org/gfx-ci/ci-collate@09e7142715c16f54344ddf97013 termcolor==2.3.0 # ci-collate dependencies -certifi==2023.7.22 +certifi==2024.07.04 charset-normalizer==3.2.0 idna==3.7 pip==23.3