Skip to content

fix: android library ppp #5450

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
EternalDreamer01 wants to merge 15 commits into from
Closed

fix: android library ppp #5450

EternalDreamer01 wants to merge 15 commits into from

Conversation

@EternalDreamer01
Copy link
Contributor

@EternalDreamer01 EternalDreamer01 commented Dec 11, 2025

I've messed up the things in #5444, so I'm opening this new PR ;
Fix PPP on Android devices #5441

@ffontaine ffontaine mentioned this pull request Dec 12, 2025
Closed
@EternalDreamer01 EternalDreamer01 mentioned this pull request Dec 15, 2025
Open
@ffontaine
Copy link
Collaborator

ffontaine commented Dec 18, 2025

Only issue for this PR is related to DCO (please add a Signed-off-by tag to your commit)

@alex-ter
Copy link
Contributor

alex-ter commented Jan 6, 2026

@EternalDreamer01 do you want to add a sign-off line to your commits so this could be merged? Just in case - you simply need to add the -s switch when committing, e.g., on this current PR branch do git commit --amend -s.

@alex-ter
Copy link
Contributor

alex-ter commented Jan 6, 2026

I see some unrelated stuff crept in when adding the sign-off, and was later removed - the trouble is, the DCO check looks at every commit in the PR, so it now wants all of them to be signed off 🤦 😃

You can get more details in the check run here: https://github.com/ossf/cve-bin-tool/pull/5450/checks?check_run_id=59601378869, but in essence you can probably just squash all of the commits and force-push the PR branch so that you have only one commit, that's signed off. That should do it.

EternalDreamer01 and others added 15 commits January 6, 2026 20:41
@EternalDreamer01
chore: clean
13a45c9 
Signed-off-by: Eternal Dreamer <[email protected]>
@ffontaine @EternalDreamer01
fix: update allowed-endpoints (ossf#5461)
13f9a53 
Add playwright.download.prss.microsoft.com and cdn.playwright.dev in
allowed-endpoints to fix the following failure when installing
playwright:

Downloading Chromium 143.0.7499.4 (playwright build v1200) from https://cdn.playwright.dev/dbazure/download/playwright/builds/chromium/1200/chromium-linux.zip
(node:3714) [DEP0169] DeprecationWarning: `url.parse()` behavior is not standardized and prone to errors that have security implications. Use the WHATWG URL API instead. CVEs are not issued for `url.parse()` vulnerabilities.
(Use `node --trace-deprecation ...` to show where the warning was created)
Error: connect ECONNREFUSED 54.185.253.63:443
    at TCPConnectWrap.afterConnect [as oncomplete] (node:net:1637:16) {
  errno: -111,
  code: 'ECONNREFUSED',
  syscall: 'connect',
  address: '54.185.253.63',
  port: 443
}

Also add v4.mirror.cveb.in:443 to fix the same kind of issue:

ClientConnectorError: Cannot connect to host v4.mirror.cveb.in:443 ssl:default
[Connect call failed ('54.185.253.63', 443)]

All those issues are probably raised because ubuntu-latest is used
instead of intel-ubuntu-latest since switch to ossf

Signed-off-by: Fabrice Fontaine <[email protected]>
Signed-off-by: Eternal Dreamer <[email protected]>
@ffontaine @EternalDreamer01
fix(nvd_source): fix configuration without nodes (ossf#5449)
175125d 
https://nvd.nist.gov/vuln/detail/cve-2025-40939 has the following
configurations: [{}]

This will result in a crash as current code wrongly assumes that all
configuration object has a nodes parameter

Signed-off-by: Fabrice Fontaine <[email protected]>
Signed-off-by: Eternal Dreamer <[email protected]>
@ffontaine @EternalDreamer01
fix: do not expect db to exist with --import-json (ossf#5438)
e15caae 
Obviously, --import-json is mainly useful when db doesn't exist so drop
cvedb_orig.check_db_exists() from if statement

Moreover, do not exit after --import-json or --export-json to be
consistent with --import and --export

Finally, while at it, add --{im,ex}port-json to offline.md

Signed-off-by: Fabrice Fontaine <[email protected]>
Signed-off-by: Eternal Dreamer <[email protected]>
@jackulau @EternalDreamer01
ci: remove references to Intel GitHub Actions runners (ossf#5456)
5116153 
Remove conditional logic for Intel runners since the repo has moved to
ossf. All workflows now use 'ubuntu-latest' directly.

Fixes ossf#5452

Signed-off-by: Jack <[email protected]>
Signed-off-by: Jack Lau <[email protected]>
Signed-off-by: Eternal Dreamer <[email protected]>
@EternalDreamer01
fix: xml2, sqlite (ossf#5405)
ffc0ddb 
Signed-off-by: Eternal Dreamer <[email protected]>
@EternalDreamer01
chore: prepare
267e6bd 
Signed-off-by: Eternal Dreamer <[email protected]>
@EternalDreamer01
chore: removed sqlite, removed libxml2 library, reset libxml2 filenam…
6e9c294 
…e pattern

Signed-off-by: Eternal Dreamer <[email protected]>
@EternalDreamer01
chore: sqlite added
e914e5e 
Signed-off-by: Eternal Dreamer <[email protected]>
@EternalDreamer01
chore: libxml2 tests
36d3869 
Signed-off-by: Eternal Dreamer <[email protected]>
@EternalDreamer01
chore: libsqlite
4de6bed 
Signed-off-by: Eternal Dreamer <[email protected]>
@EternalDreamer01
chore: libsqlite api 26
9a5b6f2 
Signed-off-by: Dimitri Simon <[email protected]>
Signed-off-by: Eternal Dreamer <[email protected]>
@EternalDreamer01
chore: todo
09b725c 
Signed-off-by: Dimitri Simon <[email protected]>
Signed-off-by: Eternal Dreamer <[email protected]>
@EternalDreamer01
chore: restore
d5c6a11 
Signed-off-by: Dimitri Simon <[email protected]>
Signed-off-by: Eternal Dreamer <[email protected]>
@EternalDreamer01
chore: restore
d2c8e15 
Signed-off-by: Dimitri Simon <[email protected]>
Signed-off-by: Eternal Dreamer <[email protected]>
@EternalDreamer01
Copy link
Contributor Author

EternalDreamer01 commented Jan 7, 2026

Let me know if something is still wrong,
And happy new year !

@alex-ter
Copy link
Contributor

alex-ter commented Jan 7, 2026

Well, the DCO check is happy now that you've signed off all the commits, but the commits themselves are somewhat different, so they don't cancel out and there are changes beyond the intended piece.

You may want to either create a new branch from scratch, off of main, and force-push it into this PR's one, or simply submit a new PR, making sure the commit with your change is signed off there.

@EternalDreamer01 EternalDreamer01 mentioned this pull request Jan 7, 2026
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@EternalDreamer01 @ffontaine @alex-ter @jackulau