mirror of
https://github.com/openai/codex.git
synced 2026-05-29 23:40:29 +00:00
123ec8b035
## Why `codex-rs/vendor/bubblewrap` had fallen behind upstream, and upstream `v0.11.2` is the current Bubblewrap release. The release is a security update for `CVE-2026-41163`, affecting setuid Bubblewrap builds, and deprecates setuid support in favor of the default non-setuid build mode. ## What changed - Refreshed the vendored Bubblewrap sources under `codex-rs/vendor/bubblewrap` to upstream `v0.11.2`. - Brought in the upstream `-Dsupport_setuid` build option, which defaults setuid support off. - Updated vendored release notes and documentation files included with Bubblewrap. ## Verification Not run locally; this PR only refreshes the vendored upstream Bubblewrap source snapshot. Upstream release: https://github.com/containers/bubblewrap/releases/tag/v0.11.2
80 lines
1.6 KiB
Meson
80 lines
1.6 KiB
Meson
option(
|
|
'bash_completion',
|
|
type : 'feature',
|
|
description : 'install bash completion script',
|
|
value : 'enabled',
|
|
)
|
|
option(
|
|
'bash_completion_dir',
|
|
type : 'string',
|
|
description : 'install bash completion script in this directory',
|
|
value : '',
|
|
)
|
|
option(
|
|
'bwrapdir',
|
|
type : 'string',
|
|
description : 'install bwrap in this directory [default: bindir, or libexecdir in subprojects]',
|
|
)
|
|
option(
|
|
'build_rpath',
|
|
type : 'string',
|
|
description : 'set a RUNPATH or RPATH on the bwrap executable',
|
|
)
|
|
option(
|
|
'install_rpath',
|
|
type : 'string',
|
|
description : 'set a RUNPATH or RPATH on the bwrap executable',
|
|
)
|
|
option(
|
|
'man',
|
|
type : 'feature',
|
|
description : 'generate man pages',
|
|
value : 'auto',
|
|
)
|
|
option(
|
|
'program_prefix',
|
|
type : 'string',
|
|
description : 'Prepend string to bwrap executable name, for use with subprojects',
|
|
)
|
|
option(
|
|
'python',
|
|
type : 'string',
|
|
description : 'Path to Python 3, or empty to use python3',
|
|
)
|
|
option(
|
|
'support_setuid',
|
|
type : 'boolean',
|
|
description : 'Support setuid mode (deprecated)',
|
|
value : false,
|
|
)
|
|
option(
|
|
'require_userns',
|
|
type : 'boolean',
|
|
description : 'require user namespaces by default when installed setuid',
|
|
value : false,
|
|
)
|
|
option(
|
|
'selinux',
|
|
type : 'feature',
|
|
description : 'enable optional SELINUX support',
|
|
value : 'auto',
|
|
)
|
|
option(
|
|
'tests',
|
|
type : 'boolean',
|
|
description : 'build tests',
|
|
value : true,
|
|
)
|
|
option(
|
|
'zsh_completion',
|
|
type : 'feature',
|
|
description : 'install zsh completion script',
|
|
value : 'enabled',
|
|
)
|
|
option(
|
|
'zsh_completion_dir',
|
|
type : 'string',
|
|
description : 'install zsh completion script in this directory',
|
|
value : '',
|
|
)
|