[OE-core] [PATCH 1/2] openssl: Support musl-x32 build
From: sweeaunSupport musl-x32 build which to build openssl with 32 bits. Signed-off-by: sweeaun --- meta/recipes-connectivity/openssl/openssl.inc | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/meta/recipes-connectivity/openssl/openssl.inc b/meta/recipes-connectivity/openssl/openssl.inc index ce295e8..a56bd6e 100644 --- a/meta/recipes-connectivity/openssl/openssl.inc +++ b/meta/recipes-connectivity/openssl/openssl.inc @@ -66,7 +66,8 @@ do_configure () { case $os in linux-gnueabi |\ linux-gnuspe |\ - linux-musl*) + linux-musleabi |\ + linux-muslspe) os=linux ;; *) @@ -98,7 +99,7 @@ do_configure () { linux-i686) target=debian-i386-i686/cmov ;; - linux-gnux32-x86_64) + linux-gnux32-x86_64 | linux-muslx32-x86_64 ) target=linux-x32 ;; linux-gnu64-x86_64) -- 2.7.4 -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
[OE-core] [PATCH 2/2] libffi: Support musl-x32 build
From: sweeaunAdded target musl-x32 in configure.ac to support musl-x32 build in libffi. Signed-off-by: sweeaun --- .../0001-libffi-Support-musl-x32-build.patch | 30 ++ meta/recipes-support/libffi/libffi_3.2.1.bb| 1 + 2 files changed, 31 insertions(+) create mode 100644 meta/recipes-support/libffi/libffi/0001-libffi-Support-musl-x32-build.patch diff --git a/meta/recipes-support/libffi/libffi/0001-libffi-Support-musl-x32-build.patch b/meta/recipes-support/libffi/libffi/0001-libffi-Support-musl-x32-build.patch new file mode 100644 index 000..6b167c8 --- /dev/null +++ b/meta/recipes-support/libffi/libffi/0001-libffi-Support-musl-x32-build.patch @@ -0,0 +1,30 @@ +From 69c3906c85c791716bf650aa36d9361d22acf3fb Mon Sep 17 00:00:00 2001 +From: sweeaun +Date: Thu, 6 Jul 2017 16:32:46 -0700 +Subject: [PATCH] libffi: Support musl x32 build + +Support libffi build with target musl-x32. + +Upstream-Status: Pending + +Signed-off-by: sweeaun +--- + configure.ac | 2 +- + 1 file changed, 1 insertion(+), 1 deletion(-) + +diff --git a/configure.ac b/configure.ac +index a7bf5ee..8ebe99c 100644 +--- a/configure.ac b/configure.ac +@@ -177,7 +177,7 @@ case "$host" in + TARGETDIR=x86 + if test $ac_cv_sizeof_size_t = 4; then + case "$host" in +- *-gnux32) ++ *-gnux32 | *-muslx32) + TARGET=X86_64 + ;; + *) +-- +2.7.4 + diff --git a/meta/recipes-support/libffi/libffi_3.2.1.bb b/meta/recipes-support/libffi/libffi_3.2.1.bb index 43eee8e..2a3f4b7 100644 --- a/meta/recipes-support/libffi/libffi_3.2.1.bb +++ b/meta/recipes-support/libffi/libffi_3.2.1.bb @@ -13,6 +13,7 @@ SRC_URI = "ftp://sourceware.org/pub/libffi/${BP}.tar.gz \ file://not-win32.patch \ file://0001-mips-Use-compiler-internal-define-for-linux.patch \ file://0001-mips-fix-MIPS-softfloat-build-issue.patch \ + file://0001-libffi-Support-musl-x32-build.patch \ " SRC_URI[md5sum] = "83b89587607e3eb65c70d361f13bab43" -- 2.7.4 -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
[OE-core] [PATCH 0/2] Support MUSL-x32 build for openssl and libffi
From: sweeaunModification to enable MUSL-x32 build for openssl and libffi recipes. The following changes since commit 57f606b12b339c82e6981d7ac32450c00d787085: libgcrypt: upgrade to 1.7.8 (2017-07-19 15:13:40 +0100) are available in the git repository at: git://git.yoctoproject.org/poky-contrib sweeaun/musl_x32_patch3 http://git.yoctoproject.org/cgit.cgi/poky-contrib/log/?h=sweeaun/musl_x32_patch3 sweeaun (2): openssl: Support musl-x32 build libffi: Support musl-x32 build meta/recipes-connectivity/openssl/openssl.inc | 5 ++-- .../0001-libffi-Support-musl-x32-build.patch | 30 ++ meta/recipes-support/libffi/libffi_3.2.1.bb| 1 + 3 files changed, 34 insertions(+), 2 deletions(-) create mode 100644 meta/recipes-support/libffi/libffi/0001-libffi-Support-musl-x32-build.patch -- 2.7.4 -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
[OE-core] ✗ patchtest: failure for recipetool: create: handle git URLs specifying only a tag
== Series Details == Series: recipetool: create: handle git URLs specifying only a tag Revision: 1 URL : https://patchwork.openembedded.org/series/7824/ State : failure == Summary == Thank you for submitting this patch series to OpenEmbedded Core. This is an automated response. Several tests have been executed on the proposed series by patchtest resulting in the following failures: * Issue Series does not apply on top of target branch [test_series_merge_on_head] Suggested fixRebase your series on top of targeted branch Targeted branch master (currently at c4c2fb3732) If you believe any of these test results are incorrect, please reply to the mailing list (openembedded-core@lists.openembedded.org) raising your concerns. Otherwise we would appreciate you correcting the issues and submitting a new version of the patchset if applicable. Please ensure you add/increment the version number when sending the new version (i.e. [PATCH] -> [PATCH v2] -> [PATCH v3] -> ...). --- Test framework: http://git.yoctoproject.org/cgit/cgit.cgi/patchtest Test suite: http://git.yoctoproject.org/cgit/cgit.cgi/patchtest-oe -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
[OE-core] [PATCH] recipetool: create: handle git URLs specifying only a tag
This patch depends on Rebecca's patch on Bug #11389. Her patch has already been submitted into the mailing list. lists.openembedded.org/pipermail/openembedded-core/2017-July/139574.html Please patch mine together with her patch. Stanley Phoong (1): recipetool: create: handle git URLs specifying only a tag scripts/lib/recipetool/create.py | 27 ++- 1 file changed, 26 insertions(+), 1 deletion(-) -- 2.7.4 -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
[OE-core] [PATCH] recipetool: create: handle git URLs specifying only a tag
If a git URL is passed to recipetool create with a tag=, recipetool should handle it assuming that the tag is valid. Also, during the creation of recipe, it seems that the automation for replacing ${PV} at the SRCURI for tag, (e.g mbed-tls-${PV}) is causing some issue due to PV assuming it's a git source. A fix is implemented in this patch as a workaround for this issue. This fix will be submitted in a separate patch as a separate issue. [YOCTO #11393] Signed-off-by: Stanley Phoong--- scripts/lib/recipetool/create.py | 27 ++- 1 file changed, 26 insertions(+), 1 deletion(-) diff --git a/scripts/lib/recipetool/create.py b/scripts/lib/recipetool/create.py index a45b90d..0619428 100644 --- a/scripts/lib/recipetool/create.py +++ b/scripts/lib/recipetool/create.py @@ -434,6 +434,18 @@ def create_recipe(args): # 2. User did not set 'nobranch=1' in srcuri, and # 3. Source revision is not '${AUTOREV}' fetchuri = fetchuri + ';nobranch=1' +# Create an empty storeTagName to ensure the checkers do not point to a null variable +storeTagName = '' +tag_re = re.compile(';tag=([^;]+)') +tag = tag_re.search(fetchuri) +if tag: +scheme, host, path, user, pswd, parms = bb.fetch2.decodeurl(fetchuri) +# Keep a copy of tag and append nobranch=1 then remove tag from URL, +# Will re-introduce tag argument after bitbake fetcher process is complete. +storeTagName = parms['tag'] +parms.update({('nobranch', '1')}) +del parms['tag'] +fetchuri = bb.fetch2.encodeurl((scheme, host, path, user, pswd, parms)) tempsrc = tempfile.mkdtemp(prefix='recipetool-') srctree = tempsrc d = bb.data.createCopy(tinfoil.config_data) @@ -488,6 +500,17 @@ def create_recipe(args): mbrch = '\n ' + '\n '.join(get_branch) logger.error('Revision %s was found on multiple branches: %s\nPlease provide the correct branch in the source URL with ;branch= (and ensure you use quotes around the URL to avoid the shell interpreting the ";")' % (srcrev, mbrch)) sys.exit(1) +if storeTagName: +# Re-introduced tag variable from storeTagName +# Check srcrev using tag and check validity of the tag +try: +cmd = ('git rev-list -n 1 %s' % (storeTagName)) +check_tag, check_tag_err = bb.process.run('%s' % cmd, cwd=srctree) +srcrev = check_tag.split()[0] +except bb.process.ExecutionError as err: +logger.error(str(err)) +logger.error("Possibly wrong tag name is provided") +sys.exit(1) if os.path.exists(os.path.join(srctree, '.gitmodules')) and srcuri.startswith('git://'): srcuri = 'gitsm://' + srcuri[6:] logger.info('Fetching submodules...') @@ -628,10 +651,12 @@ def create_recipe(args): lines_before.append('SRC_URI[md5sum] = "%s"' % md5value) if sha256value: lines_before.append('SRC_URI[sha256sum] = "%s"' % sha256value) +pv_srcpv = False if srcuri and supports_srcrev(srcuri): lines_before.append('') lines_before.append('# Modify these as desired') lines_before.append('PV = "%s+git${SRCPV}"' % (realpv or '1.0')) +pv_srcpv = True if not args.autorev and srcrev == '${AUTOREV}': if os.path.exists(os.path.join(srctree, '.git')): (stdout, _) = bb.process.run('git rev-parse HEAD', cwd=srctree) @@ -758,7 +783,7 @@ def create_recipe(args): skipblank = True continue elif line.startswith('SRC_URI = '): -if realpv: +if realpv and not pv_srcpv: line = line.replace(realpv, '${PV}') elif line.startswith('PV = '): if realpv: -- 2.7.4 -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
[OE-core] [PATCH v2] glibc-package.inc: add support for armeb of multilib
Add support for armeb of multilib. Signed-off-by: zhengrq--- meta/recipes-core/glibc/glibc-package.inc | 4 1 file changed, 4 insertions(+) diff --git a/meta/recipes-core/glibc/glibc-package.inc b/meta/recipes-core/glibc/glibc-package.inc index 0281251..1a19d4f 100644 --- a/meta/recipes-core/glibc/glibc-package.inc +++ b/meta/recipes-core/glibc/glibc-package.inc @@ -131,6 +131,10 @@ do_install_append_arm () { do_install_armmultilib } +do_install_append_armb () { + do_install_armmultilib +} + do_install_armmultilib () { oe_multilib_header bits/endian.h bits/fcntl.h bits/fenv.h bits/fp-fast.h bits/hwcap.h bits/ipc.h bits/link.h bits/wordsize.h -- 2.7.4 -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
[OE-core] [PATCH] glibc-package.inc: add support for armeb of multilib
add support for armeb of multilib Signed-off-by: zhengrq--- meta/recipes-core/glibc/glibc-package.inc | 4 1 file changed, 4 insertions(+) diff --git a/meta/recipes-core/glibc/glibc-package.inc b/meta/recipes-core/glibc/glibc-package.inc index 0281251..a6e7cfa 100644 --- a/meta/recipes-core/glibc/glibc-package.inc +++ b/meta/recipes-core/glibc/glibc-package.inc @@ -131,6 +131,10 @@ do_install_append_arm () { do_install_armmultilib } +do_install_append_armb () { +do_install_armmultilib +} + do_install_armmultilib () { oe_multilib_header bits/endian.h bits/fcntl.h bits/fenv.h bits/fp-fast.h bits/hwcap.h bits/ipc.h bits/link.h bits/wordsize.h -- 2.7.4 -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
Re: [OE-core] [RFC PATCH 0/5] revive runtime/cases/_ptest.py
On 07/19/2017 04:16 PM, Robert Yang wrote: Hello, These patches can make ptest test case work, RP has suggested we write a tool to do the regression check on ptest result, I think that the use case is like: $ bitbake -ctestiamge # Suppose we add ptest to default test cases in the future # Upgrade a recipe form V1.0 to V1.1 $ bitbake -ctestiamge # Run the test again Then the regression check tool can report what's different (passed, failed, skipped) between V1.0 and V1.1. Currently, I'm not sure about where to save the ptest results, I saved it to ${WORKDIR}/testimage/ptest_log atm, e.g.: tmp/work/qemux86-poky-linux/core-image-minimal/1.0-r0/testimage/ptest_log I still have to think about more about where to put the test result. But it will be removed after -cclean, then no regression check can be made, so I'd like to save the ptest results to DEPLOY_DIR_IMAGE if no objections, and make -cclean not remove them. (Or only keep the latest 2 results). And I'm not sure where to add the regression check/tool, maybe one of: 1) Add a separate tool in oe-core/scripts, this can make it easy to do regression check among different build directories, and runtime/cases/_ptest.py can invoke it. I'm leaning to add a script called ptest-regression-check which is more flexible, the cases/ptest.py or buildhistory (also the user) can run it when needed. // Robert 2) Add it to runtime/cases/_ptest.py directly 3) Add it to buildhistory I prefer the first one, please feel free to give your comments. // Robert The following changes since commit ef68005a8c527e9b1d05b7769f0ec8ebe9ec3f91: webkitgtk: Upgrade to 2.16.5 (2017-07-17 13:49:04 +0100) are available in the git repository at: git://git.openembedded.org/openembedded-core-contrib rbt/ptest http://cgit.openembedded.org/openembedded-core-contrib/log/?h=rbt/ptest Robert Yang (5): oeqa/targetcontrol.py: simplify checking for qemu_use_kvm runtime/cases/_ptest.py: revive it oeqa/utils/logparser.py: add skip status runtime/cases/_ptest.py: add skip status runtime/cases/_ptest.py: rename it to ptest.py meta/lib/oeqa/runtime/cases/_ptest.py | 103 -- meta/lib/oeqa/runtime/cases/ptest.py | 77 + meta/lib/oeqa/targetcontrol.py| 5 +- meta/lib/oeqa/utils/logparser.py | 5 +- 4 files changed, 82 insertions(+), 108 deletions(-) delete mode 100644 meta/lib/oeqa/runtime/cases/_ptest.py create mode 100644 meta/lib/oeqa/runtime/cases/ptest.py -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
Re: [OE-core] [PATCH] gcc-7.inc: add new warning "Wnot-cross-compiler"
On Wed, Jul 19, 2017 at 7:26 PM, Andre McCurdywrote: > On Wed, Jul 19, 2017 at 2:57 PM, Bystricky, Juro > wrote: >>> precisely, the problem is that some host compiler may silently ignore >>> unknown warnings and some host may not be using gcc as default system >>> compiler at all e.g. mageia distro and may be more in future. >> >> Yes, it does not nor it attempts to solve all toolchain issues. >> The expectation is that a compiler will choke on an unrecognized option. >> For example, gcc will do the following: >> >> $ gcc -Wnot-cross-compiler hello_world.c >> gcc: error: unrecognized command line option ‘-Wnot-cross-compiler’ >> >> As for non-gcc compilers: yes, they may silently ignore unrecognized options >> (which IMHO is just wrong). In that case the new options does not work as >> intended, >> but it does no harm either. >> Anyway, the intended use was to add something like this a .conf file: >> >> TARGET_CC_ARCH_append_class-target = " -Wnot-cross-compiler >> -Werror=not-cross-compiler" > > Personally, I think we already try to pass too much via CC or the > compiler command line (e.g. -fdebug-prefix-map=XXX). Has there ever > been any thought of OE providing a toolchain wrapper, which could pass > these kinds of housekeeping options to the underlying toolchain while > keeping build logs clean and without the worry that CC, CFLAGS, etc > get ignored or clobbered by a custom Makefile somewhere? we could do it by providing customized spec file but this will not be good for external toolchains -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
Re: [OE-core] [PATCH] gcc-7.inc: add new warning "Wnot-cross-compiler"
On Wed, Jul 19, 2017 at 2:57 PM, Bystricky, Jurowrote: >> precisely, the problem is that some host compiler may silently ignore >> unknown warnings and some host may not be using gcc as default system >> compiler at all e.g. mageia distro and may be more in future. > > Yes, it does not nor it attempts to solve all toolchain issues. > The expectation is that a compiler will choke on an unrecognized option. > For example, gcc will do the following: > > $ gcc -Wnot-cross-compiler hello_world.c > gcc: error: unrecognized command line option ‘-Wnot-cross-compiler’ > > As for non-gcc compilers: yes, they may silently ignore unrecognized options > (which IMHO is just wrong). In that case the new options does not work as > intended, > but it does no harm either. > Anyway, the intended use was to add something like this a .conf file: > > TARGET_CC_ARCH_append_class-target = " -Wnot-cross-compiler > -Werror=not-cross-compiler" Personally, I think we already try to pass too much via CC or the compiler command line (e.g. -fdebug-prefix-map=XXX). Has there ever been any thought of OE providing a toolchain wrapper, which could pass these kinds of housekeeping options to the underlying toolchain while keeping build logs clean and without the worry that CC, CFLAGS, etc get ignored or clobbered by a custom Makefile somewhere? -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
Re: [OE-core] [PATCH] gcc-7.inc: add new warning "Wnot-cross-compiler"
On Wed, Jul 19, 2017 at 6:35 PM Burton, Rosswrote: > > On 19 July 2017 at 23:32, Khem Raj wrote: > >> it solves x86 specific issues alone >> > > It solves host = target issues, so if you're building for ARM on an > aarch64 server you can have the same issues. > In theory I agree in practice it may be not that Common let's see what gcc community has to say about such a patch > Ross > -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
Re: [OE-core] [PATCH] gcc-7.inc: add new warning "Wnot-cross-compiler"
On 19 July 2017 at 23:32, Khem Rajwrote: > it solves x86 specific issues alone > It solves host = target issues, so if you're building for ARM on an aarch64 server you can have the same issues. Ross -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
Re: [OE-core] [PATCH] gcc-7.inc: add new warning "Wnot-cross-compiler"
On Wed, Jul 19, 2017 at 5:57 PM, Bystricky, Jurowrote: >> precisely, the problem is that some host compiler may silently ignore >> unknown warnings and some host may not be using gcc as default system >> compiler at all e.g. mageia distro and may be more in future. >> > > Yes, it does not nor it attempts to solve all toolchain issues. > The expectation is that a compiler will choke on an unrecognized option. > For example, gcc will do the following: > > $ gcc -Wnot-cross-compiler hello_world.c > gcc: error: unrecognized command line option ‘-Wnot-cross-compiler’ > > As for non-gcc compilers: yes, they may silently ignore unrecognized options > (which IMHO is just wrong). In that case the new options does not work as > intended, > but it does no harm either. > Anyway, the intended use was to add something like this a .conf file: > > TARGET_CC_ARCH_append_class-target = " -Wnot-cross-compiler > -Werror=not-cross-compiler" > it solves x86 specific issues alone and we have to carry this patch since I have less hopes for gcc to accept it. > -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
Re: [OE-core] [PATCH] gcc-7.inc: add new warning "Wnot-cross-compiler"
> precisely, the problem is that some host compiler may silently ignore > unknown warnings and some host may not be using gcc as default system > compiler at all e.g. mageia distro and may be more in future. > Yes, it does not nor it attempts to solve all toolchain issues. The expectation is that a compiler will choke on an unrecognized option. For example, gcc will do the following: $ gcc -Wnot-cross-compiler hello_world.c gcc: error: unrecognized command line option ‘-Wnot-cross-compiler’ As for non-gcc compilers: yes, they may silently ignore unrecognized options (which IMHO is just wrong). In that case the new options does not work as intended, but it does no harm either. Anyway, the intended use was to add something like this a .conf file: TARGET_CC_ARCH_append_class-target = " -Wnot-cross-compiler -Werror=not-cross-compiler" -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
Re: [OE-core] [PATCH 0/5] Add openssl 1.1
On 07/19/2017 07:55 PM, Andre McCurdy wrote: Openssl 1.1 is an opt-out; it has the same recipe name as openssl 1.0 had, and so all dependencies are compiled with it by default. If there's an API issue, please fix it, or adjust the recipe to depend on 'openssl10' (which is a lesser solution, and subject to openssl 1.0 eventually being removed from oe-core). Are there any -native recipes which still need 1.0? Or could support for openssl10-native be dropped as part of this patch set? There are also other layers out there which may need 1.0-native, and so this would cause unnecessary breakage. Let's just leave 1.0 alone and drop it altogether when time comes. Alex -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
Re: [OE-core] [PATCH 2/5] openssh: depend on openssl 1.0
On 07/19/2017 07:46 PM, Andre McCurdy wrote: Openssl maintainers are not in a hurry to get 1.1 support in; Openssh maintainers? Yes, them. Alex -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
[OE-core] Fwd: Nothing PROVIDES 'libvdpau'
Hello Openembedded, Currently I have a compile error saying: Nothing PROVIDES 'libvdpau'. I opened a issue on git but I think nobody are watching the git one so I post here. The detail can be seen here: https://github.com/openembedded/meta- openembedded/issues/47 Regards, Jason -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
Re: [OE-core] [PATCH 0/5] Add openssl 1.1
On Wed, Jul 19, 2017 at 6:19 AM, Alexander Kanavinwrote: > This patch series introduces the recipe for openssl 1.1 (openssl 1.0 is > preserved > but renamed to openssl10), and does a few necessary adjustmenets and updates > to other > recipes. > > Openssl 1.1 is an opt-out; it has the same recipe name as openssl 1.0 had, > and so > all dependencies are compiled with it by default. If there's an API issue, > please > fix it, or adjust the recipe to depend on 'openssl10' (which is a lesser > solution, > and subject to openssl 1.0 eventually being removed from oe-core). Are there any -native recipes which still need 1.0? Or could support for openssl10-native be dropped as part of this patch set? > The following changes since commit 50af58cedb3153f058d23a0a9584cf69bdcce81b: > > systemd: refuse to load units with errors (CVE-2017-182) (2017-07-19 > 11:30:16 +0100) > > are available in the git repository at: > > git://git.yoctoproject.org/poky-contrib akanavin/openssl-1.1 > > http://git.yoctoproject.org/cgit.cgi/poky-contrib/log/?h=akanavin/openssl-1.1 > > Alexander Kanavin (4): > openssl: add a 1.1 version > openssh: depend on openssl 1.0 > cryptodev-tests: depend on openssl 1.0 > gstreamer-plugins-bad: replace openssl dependency with nettle for hls > plugin > > Otavio Salvador (1): > u-boot: Upgrade to 2017.07 release > > meta/conf/distro/include/no-static-libs.inc| 3 + > ...ommon_2017.05.inc => u-boot-common_2017.07.inc} | 2 +- > ...utils_2017.05.bb => u-boot-fw-utils_2017.07.bb} | 0 > ...kimage_2017.05.bb => u-boot-mkimage_2017.07.bb} | 0 > .../{u-boot_2017.05.bb => u-boot_2017.07.bb} | 0 > meta/recipes-connectivity/openssh/openssh_7.5p1.bb | 3 +- > ...ve-test-that-requires-running-as-non-root.patch | 49 +++ > ...1-Take-linking-flags-from-LDFLAGS-env-var.patch | 43 ++ > .../recipes-connectivity/openssl/openssl/run-ptest | 4 +- > .../openssl/{openssl.inc => openssl10.inc} | 14 +- > ...build-with-clang-using-external-assembler.patch | 0 > .../{openssl => openssl10}/Makefiles-ptest.patch | 0 > .../Use-SHA256-not-MD5-as-default-digest.patch | 0 > .../configure-musl-target.patch| 0 > .../{openssl => openssl10}/configure-targets.patch | 0 > .../debian/c_rehash-compat.patch | 0 > .../openssl/{openssl => openssl10}/debian/ca.patch | 0 > .../debian/debian-targets.patch| 0 > .../{openssl => openssl10}/debian/man-dir.patch| 0 > .../debian/man-section.patch | 0 > .../{openssl => openssl10}/debian/no-rpath.patch | 0 > .../debian/no-symbolic.patch | 0 > .../{openssl => openssl10}/debian/pic.patch| 0 > .../debian/version-script.patch| 0 > .../debian1.0.2/block_digicert_malaysia.patch | 0 > .../debian1.0.2/block_diginotar.patch | 0 > .../debian1.0.2/soname.patch | 0 > .../debian1.0.2/version-script.patch | 0 > .../engines-install-in-libdir-ssl.patch| 0 > .../openssl/{openssl => openssl10}/find.pl | 0 > .../{openssl => openssl10}/oe-ldflags.patch| 0 > .../openssl-1.0.2a-x32-asm.patch | 0 > .../{openssl => openssl10}/openssl-c_rehash.sh | 0 > .../openssl-fix-des.pod-error.patch| 0 > .../openssl-util-perlpath.pl-cwd.patch | 0 > .../openssl_fix_for_x32.patch | 0 > .../openssl/{openssl => openssl10}/parallel.patch | 0 > .../{openssl => openssl10}/ptest-deps.patch| 0 > .../ptest_makefile_deps.patch | 0 > .../openssl/openssl10/run-ptest| 2 + > .../{openssl => openssl10}/shared-libs.patch | 0 > .../{openssl_1.0.2l.bb => openssl10_1.0.2l.bb} | 4 +- > .../recipes-connectivity/openssl/openssl_1.1.0f.bb | 146 > + > .../cryptodev/cryptodev-tests_1.8.bb | 2 +- > .../gstreamer/gstreamer1.0-plugins-bad.inc | 4 +- > 45 files changed, 265 insertions(+), 11 deletions(-) > rename meta/recipes-bsp/u-boot/{u-boot-common_2017.05.inc => > u-boot-common_2017.07.inc} (88%) > rename meta/recipes-bsp/u-boot/{u-boot-fw-utils_2017.05.bb => > u-boot-fw-utils_2017.07.bb} (100%) > rename meta/recipes-bsp/u-boot/{u-boot-mkimage_2017.05.bb => > u-boot-mkimage_2017.07.bb} (100%) > rename meta/recipes-bsp/u-boot/{u-boot_2017.05.bb => u-boot_2017.07.bb} > (100%) > create mode 100644 > meta/recipes-connectivity/openssl/openssl/0001-Remove-test-that-requires-running-as-non-root.patch > create mode 100644 > meta/recipes-connectivity/openssl/openssl/0001-Take-linking-flags-from-LDFLAGS-env-var.patch > mode change 100755 => 100644 > meta/recipes-connectivity/openssl/openssl/run-ptest > rename
[OE-core] [PATCH] python*-setuptools: upgrade to 36.2.0
Both python-setuptools and python3-setuptools need to be upgraded to latest upstream version. license checksum is now targeted to be performed over the actual license text at license file. These changes were tested using qemux86 with core-image-minimal. Signed-off-by: Jose Lamego--- Notes: This patch replaces previous submission due to latest stable version at upstream got upgraded to a newer version. meta/recipes-devtools/python/python-setuptools.inc| 8 .../{python-setuptools_32.1.1.bb => python-setuptools_36.2.0.bb} | 0 ...{python3-setuptools_32.1.1.bb => python3-setuptools_36.2.0.bb} | 0 3 files changed, 4 insertions(+), 4 deletions(-) rename meta/recipes-devtools/python/{python-setuptools_32.1.1.bb => python-setuptools_36.2.0.bb} (100%) rename meta/recipes-devtools/python/{python3-setuptools_32.1.1.bb => python3-setuptools_36.2.0.bb} (100%) diff --git a/meta/recipes-devtools/python/python-setuptools.inc b/meta/recipes-devtools/python/python-setuptools.inc index 40f47d4..cd84233 100644 --- a/meta/recipes-devtools/python/python-setuptools.inc +++ b/meta/recipes-devtools/python/python-setuptools.inc @@ -3,14 +3,14 @@ HOMEPAGE = "https://pypi.python.org/pypi/setuptools; SECTION = "devel/python" LICENSE = "MIT" -LIC_FILES_CHKSUM = "file://setup.py;beginline=146;endline=146;md5=3e8df024d6c1442d18e84acf8fbbc475" +LIC_FILES_CHKSUM = "file://LICENSE;beginline=1;endline=19;md5=9a33897f1bca1160d7aad3835152e158" SRCNAME = "setuptools" -SRC_URI = "https://files.pythonhosted.org/packages/source/s/${SRCNAME}/${SRCNAME}-${PV}.tar.gz; +SRC_URI = "https://files.pythonhosted.org/packages/source/s/${SRCNAME}/${SRCNAME}-${PV}.zip; -SRC_URI[md5sum] = "8b67868c3430e978833ebd0d1b766694" -SRC_URI[sha256sum] = "8303fb24306385f09bf8b0e5a385c1548e42e8efc08558d64049bc0d55ea012d" +SRC_URI[md5sum] = "60df703040ad8024d24727dc95483740" +SRC_URI[sha256sum] = "4c2bda3829c9dbbe9c2b33d89c4b1cb6d45813615ab8e248ad352e3697a96d81" UPSTREAM_CHECK_URI = "https://pypi.python.org/pypi/setuptools; diff --git a/meta/recipes-devtools/python/python-setuptools_32.1.1.bb b/meta/recipes-devtools/python/python-setuptools_36.2.0.bb similarity index 100% rename from meta/recipes-devtools/python/python-setuptools_32.1.1.bb rename to meta/recipes-devtools/python/python-setuptools_36.2.0.bb diff --git a/meta/recipes-devtools/python/python3-setuptools_32.1.1.bb b/meta/recipes-devtools/python/python3-setuptools_36.2.0.bb similarity index 100% rename from meta/recipes-devtools/python/python3-setuptools_32.1.1.bb rename to meta/recipes-devtools/python/python3-setuptools_36.2.0.bb -- 2.7.4 -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
Re: [OE-core] [PATCH 4/6] bluez5: upgrade to 5.46
On Wed, Jul 19, 2017 at 11:01 AM, Maxin B. Johnwrote: > 5.45 -> 5.46 > > Signed-off-by: Maxin B. John > --- > meta/recipes-connectivity/bluez5/{bluez5_5.45.bb => bluez5_5.46.bb} | 4 ++-- > 1 file changed, 2 insertions(+), 2 deletions(-) > rename meta/recipes-connectivity/bluez5/{bluez5_5.45.bb => bluez5_5.46.bb} > (91%) > > diff --git a/meta/recipes-connectivity/bluez5/bluez5_5.45.bb > b/meta/recipes-connectivity/bluez5/bluez5_5.46.bb > similarity index 91% > rename from meta/recipes-connectivity/bluez5/bluez5_5.45.bb > rename to meta/recipes-connectivity/bluez5/bluez5_5.46.bb > index d5f516c..93f4be3 100644 > --- a/meta/recipes-connectivity/bluez5/bluez5_5.45.bb > +++ b/meta/recipes-connectivity/bluez5/bluez5_5.46.bb > @@ -2,8 +2,8 @@ require bluez5.inc > > REQUIRED_DISTRO_FEATURES = "bluez5" > > -SRC_URI[md5sum] = "20d936917afc7e1ffa091f5213081c55" > -SRC_URI[sha256sum] = > "4cacb00703a6bc149cb09502257d321597d43952374a16f3558766ffa85364e9" > +SRC_URI[md5sum] = "913f35d6fa4ca5772c53adb936bf1947" > +SRC_URI[sha256sum] = > "ddab3d3837c1afb8ae228a94ba17709a4650bd4db24211b6771ab735c8908e28" > A new testing utility, advtest, has been added and should be installed along with the rest of the tools listed in NOINST_TOOLS_BT. See: https://git.kernel.org/pub/scm/bluetooth/bluez.git/commit/?id=fedb7f6eaba7bc4ac879d1762ff267789c4db552 Marc -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
[OE-core] [PATCH] python3-git: upgrade to 2.1.5
python3-git needs to be upgraded to latest upstream version. "git" is added as RDEPENDS. These changes were tested using qemux86 with core-image-minimal. Signed-off-by: Jose Lamego--- Notes: This patch replaces previous submission for updating both python-git and python3-git recipes, due to python-git being removed in commit 1fc2c9315faf65ea05fecf81450dd40b9a330435 meta/recipes-devtools/python/python-git.inc | 4 ++-- .../python/{python3-git_2.1.3.bb => python3-git_2.1.5.bb} | 2 +- 2 files changed, 3 insertions(+), 3 deletions(-) rename meta/recipes-devtools/python/{python3-git_2.1.3.bb => python3-git_2.1.5.bb} (81%) diff --git a/meta/recipes-devtools/python/python-git.inc b/meta/recipes-devtools/python/python-git.inc index 825e795d9..777608c 100644 --- a/meta/recipes-devtools/python/python-git.inc +++ b/meta/recipes-devtools/python/python-git.inc @@ -10,8 +10,8 @@ LIC_FILES_CHKSUM = "file://LICENSE;md5=8b8d26c37c1d5a04f9b0186edbebc183" SRC_URI = "https://files.pythonhosted.org/packages/source/G/GitPython/GitPython-${PV}.tar.gz; -SRC_URI[md5sum] = "6cd18008c03a767740f3bf6d89ef79bc" -SRC_URI[sha256sum] = "3826185b11e1fc372e7d31251e9b65e11ccb7c27f82c771d619048bdb5b66c81" +SRC_URI[md5sum] = "df94212b19d270a625b67b4c84ac9a41" +SRC_URI[sha256sum] = "5c00cbd256e2b1d039381d4f7d71fcb7ee5cc196ca10c101ff7191bd82ab5d9c" UPSTREAM_CHECK_URI = "https://pypi.python.org/pypi/GitPython/; UPSTREAM_CHECK_REGEX = "/GitPython/(?P(\d+[\.\-_]*)+)" diff --git a/meta/recipes-devtools/python/python3-git_2.1.3.bb b/meta/recipes-devtools/python/python3-git_2.1.5.bb similarity index 81% rename from meta/recipes-devtools/python/python3-git_2.1.3.bb rename to meta/recipes-devtools/python/python3-git_2.1.5.bb index 7a2d452..4ac2a0e 100644 --- a/meta/recipes-devtools/python/python3-git_2.1.3.bb +++ b/meta/recipes-devtools/python/python3-git_2.1.5.bb @@ -4,4 +4,4 @@ DEPENDS = "python3-gitdb" inherit setuptools3 -RDEPENDS_${PN} += "python3-gitdb python3-lang python3-io python3-shell python3-math python3-re python3-subprocess python3-stringold python3-unixadmin python3-enum python3-logging python3-datetime python3-netclient python3-unittest python3-argparse" +RDEPENDS_${PN} += "python3-gitdb python3-lang python3-io python3-shell python3-math python3-re python3-subprocess python3-stringold python3-unixadmin python3-enum python3-logging python3-datetime python3-netclient python3-unittest python3-argparse git" -- 2.7.4 -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
Re: [OE-core] [PATCH 2/5] openssh: depend on openssl 1.0
On Wed, Jul 19, 2017 at 6:19 AM, Alexander Kanavinwrote: > The proposed openssl 1.1 patches are here: > https://github.com/openssh/openssh-portable/pull/48 > > Openssl maintainers are not in a hurry to get 1.1 support in; Openssh maintainers? > if it doesn't show up within reasonable time, we can take a patch > from Fedora: > http://lists.mindrot.org/pipermail/openssh-unix-dev/2016-November/035454.html > > Signed-off-by: Alexander Kanavin > --- > meta/recipes-connectivity/openssh/openssh_7.5p1.bb | 3 ++- > 1 file changed, 2 insertions(+), 1 deletion(-) > > diff --git a/meta/recipes-connectivity/openssh/openssh_7.5p1.bb > b/meta/recipes-connectivity/openssh/openssh_7.5p1.bb > index 7bd313bb4e8..3b8fd7d1cc5 100644 > --- a/meta/recipes-connectivity/openssh/openssh_7.5p1.bb > +++ b/meta/recipes-connectivity/openssh/openssh_7.5p1.bb > @@ -8,7 +8,8 @@ SECTION = "console/network" > LICENSE = "BSD" > LIC_FILES_CHKSUM = "file://LICENCE;md5=e326045657e842541d3f35aada442507" > > -DEPENDS = "zlib openssl" > +# openssl 1.1 patches are proposed at > https://github.com/openssh/openssh-portable/pull/48 > +DEPENDS = "zlib openssl10" > DEPENDS += "${@bb.utils.contains('DISTRO_FEATURES', 'pam', 'libpam', '', d)}" > > SRC_URI = > "http://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-${PV}.tar.gz \ > -- > 2.13.2 > > -- > ___ > Openembedded-core mailing list > Openembedded-core@lists.openembedded.org > http://lists.openembedded.org/mailman/listinfo/openembedded-core -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
[OE-core] [PATCH 1/3] oe-pkgdata-util: Setup logging before calling prepare
This avoids test failures like: INFO - == INFO - FAIL [1.046s]: test_find_path (pkgdata.OePkgdataUtilTests) INFO - -- INFO - Traceback (most recent call last): File "/media/build1/poky/meta/lib/oeqa/core/decorator/__init__.py", line 32, in wrapped_f return func(*args, **kwargs) File "/media/build1/poky/meta/lib/oeqa/selftest/cases/pkgdata.py", line 50, in test_find_path self.assertEqual(result.output, 'zlib: /lib/libz.so.1') AssertionError: 'NOTE: Starting bitbake server...\nzlib: /lib/libz.so.1' != 'zlib: /lib/libz.so.1' - NOTE: Starting bitbake server... zlib: /lib/libz.so.1 INFO - -- since there is corruption in the output. Setting the logging up before calling tinfoil.prepare() resolves this. Signed-off-by: Richard Purdie--- scripts/oe-pkgdata-util | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/scripts/oe-pkgdata-util b/scripts/oe-pkgdata-util index 677effe..a690870 100755 --- a/scripts/oe-pkgdata-util +++ b/scripts/oe-pkgdata-util @@ -40,9 +40,8 @@ def tinfoil_init(): import bb.tinfoil import logging tinfoil = bb.tinfoil.Tinfoil() -tinfoil.prepare(True) - tinfoil.logger.setLevel(logging.WARNING) +tinfoil.prepare(True) return tinfoil -- 2.7.4 -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
[OE-core] [PATCH 3/3] recipetool: Setup logging before calling prepare
This avoids test failures like: == ERROR [0.946s]: test_recipetool_load_plugin (recipetool.RecipetoolTests) INFO - -- INFO - Traceback (most recent call last): File "/media/build1/poky/meta/lib/oeqa/core/decorator/__init__.py", line 32, in wrapped_f return func(*args, **kwargs) File "/media/build1/poky/meta/lib/oeqa/selftest/cases/recipetool.py", line 514, in test_recipetool_load_plugin with open(srcfile) as fh: FileNotFoundError: [Errno 2] No such file or directory: 'NOTE: Starting bitbake server...\n/media/build1/poky/meta-selftest/lib/recipetool/bbpath.py' INFO - -- which comes from: $ recipetool --quiet pluginfile NOTE: Starting bitbake server... /media/build1/poky/meta-selftest/lib/recipetool/bbpath.py since there is corruption in the output despite the --quiet option. Setting the logging up before calling tinfoil.prepare() resolves this. Signed-off-by: Richard Purdie--- scripts/recipetool | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/scripts/recipetool b/scripts/recipetool index 3765ec7..3a3c9b7 100755 --- a/scripts/recipetool +++ b/scripts/recipetool @@ -36,8 +36,8 @@ def tinfoil_init(parserecipes): import bb.tinfoil import logging tinfoil = bb.tinfoil.Tinfoil(tracking=True) -tinfoil.prepare(not parserecipes) tinfoil.logger.setLevel(logger.getEffectiveLevel()) +tinfoil.prepare(not parserecipes) return tinfoil def main(): -- 2.7.4 -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
[OE-core] [PATCH 2/3] devtool: Setup logging before calling prepare
This avoids test failures like: INFO - == INFO - FAIL [1.755s]: test_devtool_layer_plugins (devtool.DevtoolTests) INFO - -- INFO - Traceback (most recent call last): File "/media/build1/poky/meta/lib/oeqa/core/decorator/__init__.py", line 32, in wrapped_f return func(*args, **kwargs) File "/media/build1/poky/meta/lib/oeqa/selftest/cases/devtool.py", line 1354, in test_devtool_layer_plugins self.assertEqual(result.output, s[::-1]) AssertionError: "NOTE: Starting bitbake server...\noY senu[36 chars]rciM" != "oY senuZ s'enoynA morF tiforP oN edaM tfosorciM" - NOTE: Starting bitbake server... oY senuZ s'enoynA morF tiforP oN edaM tfosorciM INFO - -- since there is corruption in the output. Setting the logging up before calling tinfoil.prepare() resolves this. Signed-off-by: Richard Purdie--- scripts/lib/devtool/__init__.py | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/scripts/lib/devtool/__init__.py b/scripts/lib/devtool/__init__.py index bba0721..b231e46 100644 --- a/scripts/lib/devtool/__init__.py +++ b/scripts/lib/devtool/__init__.py @@ -115,8 +115,8 @@ def setup_tinfoil(config_only=False, basepath=None, tracking=False): import bb.tinfoil tinfoil = bb.tinfoil.Tinfoil(tracking=tracking) try: -tinfoil.prepare(config_only) tinfoil.logger.setLevel(logger.getEffectiveLevel()) +tinfoil.prepare(config_only) except bb.tinfoil.TinfoilUIException: tinfoil.shutdown() raise DevtoolError('Failed to start bitbake environment') -- 2.7.4 -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
[OE-core] [PATCH] python3-mako: update to 1.0.7
python3-mako need to be upgraded to latest upstream version. This change was tested using qemux86 with core-image-minimal Signed-off-by: Jose Lamego--- meta/recipes-devtools/python/python-mako.inc | 4 ++-- .../python/{python3-mako_1.0.6.bb => python3-mako_1.0.7.bb} | 0 2 files changed, 2 insertions(+), 2 deletions(-) rename meta/recipes-devtools/python/{python3-mako_1.0.6.bb => python3-mako_1.0.7.bb} (100%) diff --git a/meta/recipes-devtools/python/python-mako.inc b/meta/recipes-devtools/python/python-mako.inc index 10364db..ba50675 100644 --- a/meta/recipes-devtools/python/python-mako.inc +++ b/meta/recipes-devtools/python/python-mako.inc @@ -5,8 +5,8 @@ LIC_FILES_CHKSUM = "file://LICENSE;md5=1bb21fa2d2f7a534c884b990430a6863" SRC_URI = "https://files.pythonhosted.org/packages/source/M/Mako/Mako-${PV}.tar.gz; -SRC_URI[md5sum] = "a28e22a339080316b2acc352b9ee631c" -SRC_URI[sha256sum] = "48559ebd872a8e77f92005884b3d88ffae552812cdf17db6768e5c3be5ebbe0d" +SRC_URI[md5sum] = "5836cc997b1b773ef389bf6629c30e65" +SRC_URI[sha256sum] = "4e02fde57bd4abb5ec400181e4c314f56ac3e49ba4fb8b0d50bba18cb27d25ae" UPSTREAM_CHECK_URI = "https://pypi.python.org/pypi/mako/; UPSTREAM_CHECK_REGEX = "/Mako/(?P(\d+[\.\-_]*)+)" diff --git a/meta/recipes-devtools/python/python3-mako_1.0.6.bb b/meta/recipes-devtools/python/python3-mako_1.0.7.bb similarity index 100% rename from meta/recipes-devtools/python/python3-mako_1.0.6.bb rename to meta/recipes-devtools/python/python3-mako_1.0.7.bb -- 2.7.4 -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
Re: [OE-core] [PATCH v4] kernel: Add support for multiple kernel packages
On Tue, 2017-07-18 at 08:34 -0500, Haris Okanovic wrote: > > On 07/17/2017 03:31 PM, Wold, Saul wrote: > > > > On Wed, 2017-07-05 at 12:33 -0500, Haris Okanovic wrote: > > > > > > Some distros may want to provide alternate kernel "flavors" via > > > feeds > > > or > > > within bootable images. For example, readily available builds > > > which > > > provide certain diagnostic features can enable developers and > > > testers > > > to > > > more quickly resolve issues by avoiding lengthy kernel builds. > > > > > > This change allows for building multiple flavors of the kernel > > > and > > > module packages by templatizing kernel package names via a new > > > KERNEL_PACKAGE_NAME variable in kernel.bbclass. It defaults to > > > the > > > old > > > name of "kernel", but can be overridden by certain recipes > > > providing > > > alternate kernel flavors. > > > > > > To maintain compatibility, recipes providing alternate kernel > > > flavors > > > cannot be the "preferred provider" for virtual/kernel. This is > > > because > > > OE puts the preferred provider's build and source at > > > "tmp-glibc/work-shared/$MACHINE/kernel-build-artifacts/" and > > > "tmp-glibc/work-shared/$MACHINE/kernel-source/" instead of > > > "tmp-glibc/work/*/$PN/" like other recipes. Therefore, recipes > > > using > > > the > > > default KERNEL_PACKAGE_NAME="kernel" follows the old semantics -- > > > build > > > in the old location and may be preferred provider -- while > > > recipes > > > using > > > all other KERNEL_PACKAGE_NAME's build from the normal WORKDIR and > > > don't > > > provide "virtual/kernel". > > > > > > Testing: > > > 1. Prepended `KERNEL_PACKAGE_NAME = "tiny-linux"` to > > > linux-yocto-tiny_4.9.bb so that it may build alongside > > > the main kernel. > > > 2. `bitbake linux-yocto linux-yocto-tiny` to build both kernel > > > flavors. > > > 3. Verified image and modules IPKs exist for both: > > > tmp-glibc/deploy/ipk/qemux86/kernel-* for linux-yocto > > > tmp-glibc/deploy/ipk/qemux86/tiny-linux* for linux-yocto- > > > tiny > > > 4. Verified linux-yocto is the "preferred provider", and was > > > built > > > in > > > shared directory: tmp-glibc/work-shared/qemux86/kernel-* > > > 5. Appended `CORE_IMAGE_BASE_INSTALL += "tiny-linux"` to > > > core-image-base.bb to include both kernel flavors. > > > 6. `bitbake core-image-base` to build an image. > > > 7. Verified image contains two bzImage's under /boot/, with > > > "yocto-standard" selected to boot via symlink. > > > > > > Discussion thread: > > > http://lists.openembedded.org/pipermail/openembedded-core/2015-De > > > cemb > > > er/thread.html#114122 > > > > > > Signed-off-by: Ioan-Adrian Ratiu> > > Signed-off-by: Gratian Crisan > > > Signed-off-by: Haris Okanovic > > > Coauthored-by: Gratian Crisan > > > Coauthored-by: Haris Okanovic > > > Coauthored-by: Josh Hernstrom > > > --- > > > [PATCH v2] Change STAGING_KERNEL_DIR and STAGING_KERNEL_BUILDDIR > > > to > > > the > > > "work" directory in alternate kernel builds, instead of "work- > > > shared", > > > so > > > that the two builds don't clobber each other. > > > > > > [PATCH v3] An updated version of this change rebased onto the > > > current > > > OE-core master. Changes: > > > * Remove PREFERRED_PROVIDER check in linux-yocto.inc in > > > alternate > > > kernel builds, since alternate kernels aren't the > > > PREFERRED_PROVIDER for virtual/kernel by definition. > > > * Remove "virtual/kernel" from PROVIDES in alternate kernel > > > builds. > > > > > > [PATCH v4] Another rebase onto master; no functional change. > > > Improved description and testing steps. > > > > So I finally had a chance to get back to this and test build with > > it, I > > saw the following WARNING, which lead to the ERROR: > > > > WARNING: Variable key FILES_${PN}-dev (${includedir} > > ${FILES_SOLIBSDEV} > > ${libdir}/*.la ${libdir}/*.o ${libdir}/pkgconfig > > ${datadir}/pkgconfig > > ${datadir}/aclocal ${base_libdir}/*.o ${libdir}/${BPN}/*.la > > ${base_libdir}/*.la) replaces original key FILES_linux-yocto-dev > > (/boot/System.map* /boot/Module.symvers* /boot/config* > > ${KERNEL_SRC_PATH} > > ${nonarch_base_libdir}/modules/${KERNEL_VERSION}/build). > > ERROR: linux-yocto-4.10.17+gitAUTOINC+e92bd55409_6648a34e00-r0 > > do_package: QA Issue: linux-yocto: Files/directories were installed > > but > > not shipped in any package: > > /boot/System.map-4.10.17-yocto-standard > > /boot/Module.symvers-4.10.17-yocto-standard > > /boot/config-4.10.17-yocto-standard > > Please set FILES such that these items are packaged. Alternatively > > if > > they are unneeded, avoid installing them or delete them within > > do_install. > > linux-yocto: 3 installed and not shipped files. [installed-vs- > > shipped] > > ERROR:
[OE-core] [PATCH 4/6] bluez5: upgrade to 5.46
5.45 -> 5.46 Signed-off-by: Maxin B. John--- meta/recipes-connectivity/bluez5/{bluez5_5.45.bb => bluez5_5.46.bb} | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) rename meta/recipes-connectivity/bluez5/{bluez5_5.45.bb => bluez5_5.46.bb} (91%) diff --git a/meta/recipes-connectivity/bluez5/bluez5_5.45.bb b/meta/recipes-connectivity/bluez5/bluez5_5.46.bb similarity index 91% rename from meta/recipes-connectivity/bluez5/bluez5_5.45.bb rename to meta/recipes-connectivity/bluez5/bluez5_5.46.bb index d5f516c..93f4be3 100644 --- a/meta/recipes-connectivity/bluez5/bluez5_5.45.bb +++ b/meta/recipes-connectivity/bluez5/bluez5_5.46.bb @@ -2,8 +2,8 @@ require bluez5.inc REQUIRED_DISTRO_FEATURES = "bluez5" -SRC_URI[md5sum] = "20d936917afc7e1ffa091f5213081c55" -SRC_URI[sha256sum] = "4cacb00703a6bc149cb09502257d321597d43952374a16f3558766ffa85364e9" +SRC_URI[md5sum] = "913f35d6fa4ca5772c53adb936bf1947" +SRC_URI[sha256sum] = "ddab3d3837c1afb8ae228a94ba17709a4650bd4db24211b6771ab735c8908e28" # noinst programs in Makefile.tools that are conditional on READLINE # support -- 2.4.0 -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
[OE-core] [PATCH 3/6] orc: upgrade to 0.4.27
0.4.26 -> 0.4.27 Signed-off-by: Maxin B. John--- meta/recipes-devtools/orc/{orc_0.4.26.bb => orc_0.4.27.bb} | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) rename meta/recipes-devtools/orc/{orc_0.4.26.bb => orc_0.4.27.bb} (84%) diff --git a/meta/recipes-devtools/orc/orc_0.4.26.bb b/meta/recipes-devtools/orc/orc_0.4.27.bb similarity index 84% rename from meta/recipes-devtools/orc/orc_0.4.26.bb rename to meta/recipes-devtools/orc/orc_0.4.27.bb index e47342f..303f991 100644 --- a/meta/recipes-devtools/orc/orc_0.4.26.bb +++ b/meta/recipes-devtools/orc/orc_0.4.27.bb @@ -5,8 +5,8 @@ LIC_FILES_CHKSUM = "file://COPYING;md5=1400bd9d09e8af56b9ec982b3d85797e" SRC_URI = "http://gstreamer.freedesktop.org/src/orc/orc-${PV}.tar.xz; -SRC_URI[md5sum] = "8e9bef677bae289d3324d81c337a4507" -SRC_URI[sha256sum] = "7d52fa80ef84988359c3434e1eea302d077a08987abdde6905678ebcad4fa649" +SRC_URI[md5sum] = "5837dc20dacb5b668935bbded10cbb61" +SRC_URI[sha256sum] = "51e53e58fc8158e5986a1f1a49a6d970c5b16493841cf7b9de2c2bde7ce36b93" inherit autotools pkgconfig gtk-doc -- 2.4.0 -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
[OE-core] [PATCH 1/6] libjpeg-turbo: upgrade to 1.5.2
1.5.1 -> 1.5.2 Remove this backported patch: 1. fix-mips.patch Signed-off-by: Maxin B. John--- .../jpeg/libjpeg-turbo/fix-mips.patch | 45 -- ...bjpeg-turbo_1.5.1.bb => libjpeg-turbo_1.5.2.bb} | 8 ++-- 2 files changed, 4 insertions(+), 49 deletions(-) delete mode 100644 meta/recipes-graphics/jpeg/libjpeg-turbo/fix-mips.patch rename meta/recipes-graphics/jpeg/{libjpeg-turbo_1.5.1.bb => libjpeg-turbo_1.5.2.bb} (90%) diff --git a/meta/recipes-graphics/jpeg/libjpeg-turbo/fix-mips.patch b/meta/recipes-graphics/jpeg/libjpeg-turbo/fix-mips.patch deleted file mode 100644 index 4d41237..000 --- a/meta/recipes-graphics/jpeg/libjpeg-turbo/fix-mips.patch +++ /dev/null @@ -1,45 +0,0 @@ -Fix a regression that causes the MIPS code from building. - -Upstream-Status: Backport -Signed-off-by: Ross Burton - -From 7bfb22af123ac10798a9a4c9ec7b23e5065db35e Mon Sep 17 00:00:00 2001 -From: DRC -Date: Mon, 26 Sep 2016 17:59:14 -0500 -Subject: [PATCH] Fix broken MIPS build - -Regression introduced by 9055fb408dcb585ce9392d395e16630d51002152 - -Fixes #104 - ChangeLog.md | 3 +++ - simd/jsimd_mips.c | 2 ++ - 2 files changed, 5 insertions(+) - -diff --git a/ChangeLog.md b/ChangeLog.md -index e2b9df3..71ddcaa 100644 a/ChangeLog.md -+++ b/ChangeLog.md -@@ -6,6 +6,9 @@ - 1. Fixed a regression introduced by 1.5.1[7] that prevented libjpeg-turbo from - building with Android NDK platforms prior to android-21 (5.0). - -+2. Fixed a regression introduced by 1.5.1[1] that prevented the MIPS DSPR2 SIMD -+code in libjpeg-turbo from building. -+ - - 1.5.1 - = -diff --git a/simd/jsimd_mips.c b/simd/jsimd_mips.c -index 63b8115..02e90cd 100644 a/simd/jsimd_mips.c -+++ b/simd/jsimd_mips.c -@@ -63,6 +63,8 @@ parse_proc_cpuinfo(const char* search_string) - LOCAL(void) - init_simd (void) - { -+ char *env = NULL; -+ - if (simd_support != ~0U) - return; - diff --git a/meta/recipes-graphics/jpeg/libjpeg-turbo_1.5.1.bb b/meta/recipes-graphics/jpeg/libjpeg-turbo_1.5.2.bb similarity index 90% rename from meta/recipes-graphics/jpeg/libjpeg-turbo_1.5.1.bb rename to meta/recipes-graphics/jpeg/libjpeg-turbo_1.5.2.bb index de2eeaf..58646d3 100644 --- a/meta/recipes-graphics/jpeg/libjpeg-turbo_1.5.1.bb +++ b/meta/recipes-graphics/jpeg/libjpeg-turbo_1.5.2.bb @@ -10,10 +10,10 @@ LIC_FILES_CHKSUM = "file://cdjpeg.h;endline=13;md5=05bab7c7ad899d85bfba60da1a127 DEPENDS_append_x86-64_class-target = " nasm-native" DEPENDS_append_x86_class-target= " nasm-native" -SRC_URI = "${SOURCEFORGE_MIRROR}/${BPN}/${BPN}-${PV}.tar.gz \ - file://fix-mips.patch" -SRC_URI[md5sum] = "55deb139b0cac3c8200b75d485fc13f3" -SRC_URI[sha256sum] = "41429d3d253017433f66e3d472b8c7d998491d2f41caa7306b8d9a6f2a2c666c" +SRC_URI = "${SOURCEFORGE_MIRROR}/${BPN}/${BPN}-${PV}.tar.gz" + +SRC_URI[md5sum] = "6b4923e297a7eaa255f08511017a8818" +SRC_URI[sha256sum] = "9098943b270388727ae61de82adec73cf9f0dbb240b3bc8b172595ebf405b528" UPSTREAM_CHECK_URI = "http://sourceforge.net/projects/libjpeg-turbo/files/; UPSTREAM_CHECK_REGEX = "/libjpeg-turbo/files/(?P(\d+[\.\-_]*)+)/" -- 2.4.0 -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
[OE-core] [PATCH 2/6] libsolv: upgrade to 0.6.28
0.6.27 -> 0.6.28 Signed-off-by: Maxin B. John--- meta/recipes-extended/libsolv/{libsolv_0.6.27.bb => libsolv_0.6.28.bb} | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) rename meta/recipes-extended/libsolv/{libsolv_0.6.27.bb => libsolv_0.6.28.bb} (95%) diff --git a/meta/recipes-extended/libsolv/libsolv_0.6.27.bb b/meta/recipes-extended/libsolv/libsolv_0.6.28.bb similarity index 95% rename from meta/recipes-extended/libsolv/libsolv_0.6.27.bb rename to meta/recipes-extended/libsolv/libsolv_0.6.28.bb index 7ddd533..3a48f22 100644 --- a/meta/recipes-extended/libsolv/libsolv_0.6.27.bb +++ b/meta/recipes-extended/libsolv/libsolv_0.6.28.bb @@ -13,7 +13,7 @@ SRC_URI_append_libc-musl = " file://0001-Add-fallback-fopencookie-implementation file://0002-Fixes-to-internal-fopencookie-implementation.patch \ " -SRCREV = "9fa1535e2fc60609c29633925e692603782b477b" +SRCREV = "b8a9ddd88eb4e0ab351eb55a53186b5dc5ac0825" UPSTREAM_CHECK_GITTAGREGEX = "(?P\d+(\.\d+)+)" S = "${WORKDIR}/git" -- 2.4.0 -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
[OE-core] [PATCH 5/6] sqlite3: upgrade to 3.19.3
3.19.2 -> 3.19.3 Fixes a bug associated with auto_vacuum that can lead to database corruption. Signed-off-by: Maxin B. John--- meta/recipes-support/sqlite/{sqlite3_3.19.2.bb => sqlite3_3.19.3.bb} | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) rename meta/recipes-support/sqlite/{sqlite3_3.19.2.bb => sqlite3_3.19.3.bb} (59%) diff --git a/meta/recipes-support/sqlite/sqlite3_3.19.2.bb b/meta/recipes-support/sqlite/sqlite3_3.19.3.bb similarity index 59% rename from meta/recipes-support/sqlite/sqlite3_3.19.2.bb rename to meta/recipes-support/sqlite/sqlite3_3.19.3.bb index cf87073..89d4395 100644 --- a/meta/recipes-support/sqlite/sqlite3_3.19.2.bb +++ b/meta/recipes-support/sqlite/sqlite3_3.19.3.bb @@ -6,5 +6,5 @@ LIC_FILES_CHKSUM = "file://sqlite3.h;endline=11;md5=65f0a57ca6928710b418c094b357 SRC_URI = "\ http://www.sqlite.org/2017/sqlite-autoconf-${SQLITE_PV}.tar.gz \ " -SRC_URI[md5sum] = "9f006b16de2cd81f6bae9b40e91daabf" -SRC_URI[sha256sum] = "ca5361fb01cc3ad63d6fd4eb2cb0b6398e629595896d3558f7e121d37dac2ffc" +SRC_URI[md5sum] = "c93070d5bf136ce271db23d2dfbc2435" +SRC_URI[sha256sum] = "06129c03dced9f87733a8cba408871bd60673b8f93b920ba8d815efab0a06301" -- 2.4.0 -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
[OE-core] [PATCH 6/6] libtirpc: upgrade to 1.0.2
1.0.1 -> 1.0.2 Remove these Backported and upstreamed patches: 1. 0001-Fix-for-CVE-2017-8779.patch 2. libtirpc-0.2.1-fortify.patch 3. libtirpc-1.0.2-rc3.patc Signed-off-by: Maxin B. John--- .../libtirpc/0001-Fix-for-CVE-2017-8779.patch | 276 .../libtirpc/libtirpc/libtirpc-0.2.1-fortify.patch | 26 - .../libtirpc/libtirpc/libtirpc-1.0.2-rc3.patch | 743 - .../{libtirpc_1.0.1.bb => libtirpc_1.0.2.bb} | 7 +- 4 files changed, 2 insertions(+), 1050 deletions(-) delete mode 100644 meta/recipes-extended/libtirpc/libtirpc/0001-Fix-for-CVE-2017-8779.patch delete mode 100644 meta/recipes-extended/libtirpc/libtirpc/libtirpc-0.2.1-fortify.patch delete mode 100644 meta/recipes-extended/libtirpc/libtirpc/libtirpc-1.0.2-rc3.patch rename meta/recipes-extended/libtirpc/{libtirpc_1.0.1.bb => libtirpc_1.0.2.bb} (81%) diff --git a/meta/recipes-extended/libtirpc/libtirpc/0001-Fix-for-CVE-2017-8779.patch b/meta/recipes-extended/libtirpc/libtirpc/0001-Fix-for-CVE-2017-8779.patch deleted file mode 100644 index b3bae67..000 --- a/meta/recipes-extended/libtirpc/libtirpc/0001-Fix-for-CVE-2017-8779.patch +++ /dev/null @@ -1,276 +0,0 @@ -From dd9c7cf4f8f375c6d641b760d124650c418c2ce3 Mon Sep 17 00:00:00 2001 -From: Guido Vranken -Date: Mon, 15 May 2017 11:12:21 -0400 -Subject: [PATCH] Fix for CVE-2017-8779 - -Signed-off-by: Steve Dickson - src/rpc_generic.c | 8 - src/rpcb_prot.c | 22 ++ - src/rpcb_st_xdr.c | 9 + - src/xdr.c | 30 +- - 4 files changed, 52 insertions(+), 17 deletions(-) - -CVE: CVE-2017-8779 -Upstream-Status: Backport - -Signed-off-by: Fan Xin - -diff --git a/src/rpc_generic.c b/src/rpc_generic.c -index 2f09a8f..589cbd5 100644 a/src/rpc_generic.c -+++ b/src/rpc_generic.c -@@ -615,6 +615,9 @@ __rpc_taddr2uaddr_af(int af, const struct netbuf *nbuf) - - switch (af) { - case AF_INET: -+ if (nbuf->len < sizeof(*sin)) { -+ return NULL; -+ } - sin = nbuf->buf; - if (inet_ntop(af, >sin_addr, namebuf, sizeof namebuf) - == NULL) -@@ -626,6 +629,9 @@ __rpc_taddr2uaddr_af(int af, const struct netbuf *nbuf) - break; - #ifdef INET6 - case AF_INET6: -+ if (nbuf->len < sizeof(*sin6)) { -+ return NULL; -+ } - sin6 = nbuf->buf; - if (inet_ntop(af, >sin6_addr, namebuf6, sizeof namebuf6) - == NULL) -@@ -667,6 +673,8 @@ __rpc_uaddr2taddr_af(int af, const char *uaddr) - - port = 0; - sin = NULL; -+ if (uaddr == NULL) -+ return NULL; - addrstr = strdup(uaddr); - if (addrstr == NULL) - return NULL; -diff --git a/src/rpcb_prot.c b/src/rpcb_prot.c -index 43fd385..a923c8e 100644 a/src/rpcb_prot.c -+++ b/src/rpcb_prot.c -@@ -41,6 +41,7 @@ - #include - #include - #include -+#include "rpc_com.h" - - bool_t - xdr_rpcb(xdrs, objp) -@@ -53,13 +54,13 @@ xdr_rpcb(xdrs, objp) - if (!xdr_u_int32_t(xdrs, >r_vers)) { - return (FALSE); - } -- if (!xdr_string(xdrs, >r_netid, (u_int)~0)) { -+ if (!xdr_string(xdrs, >r_netid, RPC_MAXDATASIZE)) { - return (FALSE); - } -- if (!xdr_string(xdrs, >r_addr, (u_int)~0)) { -+ if (!xdr_string(xdrs, >r_addr, RPC_MAXDATASIZE)) { - return (FALSE); - } -- if (!xdr_string(xdrs, >r_owner, (u_int)~0)) { -+ if (!xdr_string(xdrs, >r_owner, RPC_MAXDATASIZE)) { - return (FALSE); - } - return (TRUE); -@@ -159,19 +160,19 @@ xdr_rpcb_entry(xdrs, objp) - XDR *xdrs; - rpcb_entry *objp; - { -- if (!xdr_string(xdrs, >r_maddr, (u_int)~0)) { -+ if (!xdr_string(xdrs, >r_maddr, RPC_MAXDATASIZE)) { - return (FALSE); - } -- if (!xdr_string(xdrs, >r_nc_netid, (u_int)~0)) { -+ if (!xdr_string(xdrs, >r_nc_netid, RPC_MAXDATASIZE)) { - return (FALSE); - } - if (!xdr_u_int32_t(xdrs, >r_nc_semantics)) { - return (FALSE); - } -- if (!xdr_string(xdrs, >r_nc_protofmly, (u_int)~0)) { -+ if (!xdr_string(xdrs, >r_nc_protofmly, RPC_MAXDATASIZE)) { - return (FALSE); - } -- if (!xdr_string(xdrs, >r_nc_proto, (u_int)~0)) { -+ if (!xdr_string(xdrs, >r_nc_proto, RPC_MAXDATASIZE)) { - return (FALSE); - } - return (TRUE); -@@ -292,7 +293,7 @@ xdr_rpcb_rmtcallres(xdrs, p) - bool_t dummy; - struct r_rpcb_rmtcallres *objp = (struct r_rpcb_rmtcallres *)(void *)p; - -- if (!xdr_string(xdrs, >addr, (u_int)~0)) { -+ if (!xdr_string(xdrs, >addr, RPC_MAXDATASIZE)) { - return (FALSE); - } - if
Re: [OE-core] [PATCH] python*-git: Upgrade to version 2.1.5
ping. This may get in before the freeze. On 06/27/2017 12:50 PM, Jose Lamego wrote: > Both python-git and python3-git need to be upgraded to latest > upstream version. > > Two RDEPENDS are added: "git" and "python-unittest" to python-git recipe > and "git" to python3-git recipe. > > These changes were tested using qemux86 with core-image-minimal. > > Signed-off-by: Jose Lamego> --- > meta/recipes-devtools/python/python-git.inc | 4 > ++-- > .../python/{python-git_2.1.3.bb => python-git_2.1.5.bb} | 2 +- > .../python/{python3-git_2.1.3.bb => python3-git_2.1.5.bb} | 2 +- > 3 files changed, 4 insertions(+), 4 deletions(-) > rename meta/recipes-devtools/python/{python-git_2.1.3.bb => > python-git_2.1.5.bb} (85%) > rename meta/recipes-devtools/python/{python3-git_2.1.3.bb => > python3-git_2.1.5.bb} (81%) > > diff --git a/meta/recipes-devtools/python/python-git.inc > b/meta/recipes-devtools/python/python-git.inc > index 825e795d9..777608c 100644 > --- a/meta/recipes-devtools/python/python-git.inc > +++ b/meta/recipes-devtools/python/python-git.inc > @@ -10,8 +10,8 @@ LIC_FILES_CHKSUM = > "file://LICENSE;md5=8b8d26c37c1d5a04f9b0186edbebc183" > > SRC_URI = > "https://files.pythonhosted.org/packages/source/G/GitPython/GitPython-${PV}.tar.gz; > > -SRC_URI[md5sum] = "6cd18008c03a767740f3bf6d89ef79bc" > -SRC_URI[sha256sum] = > "3826185b11e1fc372e7d31251e9b65e11ccb7c27f82c771d619048bdb5b66c81" > +SRC_URI[md5sum] = "df94212b19d270a625b67b4c84ac9a41" > +SRC_URI[sha256sum] = > "5c00cbd256e2b1d039381d4f7d71fcb7ee5cc196ca10c101ff7191bd82ab5d9c" > > UPSTREAM_CHECK_URI = "https://pypi.python.org/pypi/GitPython/; > UPSTREAM_CHECK_REGEX = "/GitPython/(?P(\d+[\.\-_]*)+)" > diff --git a/meta/recipes-devtools/python/python-git_2.1.3.bb > b/meta/recipes-devtools/python/python-git_2.1.5.bb > similarity index 85% > rename from meta/recipes-devtools/python/python-git_2.1.3.bb > rename to meta/recipes-devtools/python/python-git_2.1.5.bb > index e49dbea..779e606 100644 > --- a/meta/recipes-devtools/python/python-git_2.1.3.bb > +++ b/meta/recipes-devtools/python/python-git_2.1.5.bb > @@ -4,4 +4,4 @@ DEPENDS = "python-gitdb" > > inherit setuptools > > -RDEPENDS_${PN} += "python-gitdb python-lang python-io python-shell > python-math python-re python-subprocess python-stringold python-unixadmin" > +RDEPENDS_${PN} += "python-gitdb python-lang python-io python-shell > python-math python-re python-subprocess python-stringold python-unixadmin > python-unittest git" > diff --git a/meta/recipes-devtools/python/python3-git_2.1.3.bb > b/meta/recipes-devtools/python/python3-git_2.1.5.bb > similarity index 81% > rename from meta/recipes-devtools/python/python3-git_2.1.3.bb > rename to meta/recipes-devtools/python/python3-git_2.1.5.bb > index 7a2d452..4ac2a0e 100644 > --- a/meta/recipes-devtools/python/python3-git_2.1.3.bb > +++ b/meta/recipes-devtools/python/python3-git_2.1.5.bb > @@ -4,4 +4,4 @@ DEPENDS = "python3-gitdb" > > inherit setuptools3 > > -RDEPENDS_${PN} += "python3-gitdb python3-lang python3-io python3-shell > python3-math python3-re python3-subprocess python3-stringold > python3-unixadmin python3-enum python3-logging python3-datetime > python3-netclient python3-unittest python3-argparse" > +RDEPENDS_${PN} += "python3-gitdb python3-lang python3-io python3-shell > python3-math python3-re python3-subprocess python3-stringold > python3-unixadmin python3-enum python3-logging python3-datetime > python3-netclient python3-unittest python3-argparse git" -- Jose Lamego | OTC Embedded Platform & Tools | GDC -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
[OE-core] ✗ patchtest: failure for "[krogoth] libgcrypt: fix CVE-2..." and 1 more
== Series Details == Series: "[krogoth] libgcrypt: fix CVE-2..." and 1 more Revision: 1 URL : https://patchwork.openembedded.org/series/7813/ State : failure == Summary == Thank you for submitting this patch series to OpenEmbedded Core. This is an automated response. Several tests have been executed on the proposed series by patchtest resulting in the following failures: * Patch[krogoth,2/2] libgcrypt: fix CVE-2017-9526 Issue Missing or incorrectly formatted CVE tag in commit message [test_cve_presence_in_commit_message] Suggested fixInclude a "CVE--" tag in the commit message If you believe any of these test results are incorrect, please reply to the mailing list (openembedded-core@lists.openembedded.org) raising your concerns. Otherwise we would appreciate you correcting the issues and submitting a new version of the patchset if applicable. Please ensure you add/increment the version number when sending the new version (i.e. [PATCH] -> [PATCH v2] -> [PATCH v3] -> ...). --- Test framework: http://git.yoctoproject.org/cgit/cgit.cgi/patchtest Test suite: http://git.yoctoproject.org/cgit/cgit.cgi/patchtest-oe -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
[OE-core] [PATCH][krogoth 2/2] libgcrypt: fix CVE-2017-9526
In libgcrypt before 1.7.7, an attacker who learns the EdDSA session key (from side-channel observation during the signing process) can easily recover the long-term secret key. 1.7.7 makes a cipher/ecc-eddsa.c change to store this session key in secure memory, to ensure that constant-time point operations are used in the MPI library. Signed-off-by: Ross Burton--- ...-Store-EdDSA-session-key-in-secure-memory.patch | 39 ++ meta/recipes-support/libgcrypt/libgcrypt.inc | 1 + 2 files changed, 40 insertions(+) create mode 100644 meta/recipes-support/libgcrypt/files/0001-ecc-Store-EdDSA-session-key-in-secure-memory.patch diff --git a/meta/recipes-support/libgcrypt/files/0001-ecc-Store-EdDSA-session-key-in-secure-memory.patch b/meta/recipes-support/libgcrypt/files/0001-ecc-Store-EdDSA-session-key-in-secure-memory.patch new file mode 100644 index 000..f6c4ca76f33 --- /dev/null +++ b/meta/recipes-support/libgcrypt/files/0001-ecc-Store-EdDSA-session-key-in-secure-memory.patch @@ -0,0 +1,39 @@ +CVE: CVE-2017-9526 +Upstream-Status: Backport +Signed-off-by: Ross Burton + +From b3cab278eb9c2ceda79f980bc26460d97f260041 Mon Sep 17 00:00:00 2001 +From: Jo Van Bulck +Date: Thu, 19 Jan 2017 17:00:15 +0100 +Subject: [PATCH] ecc: Store EdDSA session key in secure memory. + +* cipher/ecc-eddsa.c (_gcry_ecc_eddsa_sign): use mpi_snew to allocate +session key. +-- + +An attacker who learns the EdDSA session key from side-channel +observation during the signing process, can easily revover the long- +term secret key. Storing the session key in secure memory ensures that +constant time point operations are used in the MPI library. + +Signed-off-by: Jo Van Bulck +--- + cipher/ecc-eddsa.c | 2 +- + 1 file changed, 1 insertion(+), 1 deletion(-) + +diff --git a/cipher/ecc-eddsa.c b/cipher/ecc-eddsa.c +index f91f8489..813e030d 100644 +--- a/cipher/ecc-eddsa.c b/cipher/ecc-eddsa.c +@@ -603,7 +603,7 @@ _gcry_ecc_eddsa_sign (gcry_mpi_t input, ECC_secret_key *skey, + a = mpi_snew (0); + x = mpi_new (0); + y = mpi_new (0); +- r = mpi_new (0); ++ r = mpi_snew (0); + ctx = _gcry_mpi_ec_p_internal_new (skey->E.model, skey->E.dialect, 0, + skey->E.p, skey->E.a, skey->E.b); + b = (ctx->nbits+7)/8; +-- +2.11.0 + diff --git a/meta/recipes-support/libgcrypt/libgcrypt.inc b/meta/recipes-support/libgcrypt/libgcrypt.inc index 404f870db03..8e7a38f8940 100644 --- a/meta/recipes-support/libgcrypt/libgcrypt.inc +++ b/meta/recipes-support/libgcrypt/libgcrypt.inc @@ -18,6 +18,7 @@ SRC_URI = "ftp://ftp.gnupg.org/gcrypt/libgcrypt/libgcrypt-${PV}.tar.gz \ file://add-pkgconfig-support.patch \ file://libgcrypt-fix-building-error-with-O2-in-sysroot-path.patch \ file://fix-ICE-failure-on-mips-with-option-O-and-g.patch \ + file://0001-ecc-Store-EdDSA-session-key-in-secure-memory.patch \ file://CVE-2017-7526.patch \ " -- 2.11.0 -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
[OE-core] [PATCH][krogoth 1/2] libgcrypt: fix CVE-2017-7526
Fixes CVE-2017-7526, 'flush+reload side-channel attack on RSA secret keys dubbed "Sliding right into disaster"'. Signed-off-by: Ross Burton--- .../libgcrypt/files/CVE-2017-7526.patch| 455 + meta/recipes-support/libgcrypt/libgcrypt.inc | 1 + 2 files changed, 456 insertions(+) create mode 100644 meta/recipes-support/libgcrypt/files/CVE-2017-7526.patch diff --git a/meta/recipes-support/libgcrypt/files/CVE-2017-7526.patch b/meta/recipes-support/libgcrypt/files/CVE-2017-7526.patch new file mode 100644 index 000..c9541d44f3f --- /dev/null +++ b/meta/recipes-support/libgcrypt/files/CVE-2017-7526.patch @@ -0,0 +1,455 @@ +Flush+reload side-channel attack on RSA secret keys dubbed "Sliding right +into disaster". + +CVE: CVE-2017-7526 +Upstream-Status: Backport +Signed-off-by: Ross Burton + +From 8ae178108eb3c64b40dcb4d1c1943205a86db724 Mon Sep 17 00:00:00 2001 +From: NIIBE Yutaka +Date: Tue, 4 Apr 2017 17:38:05 +0900 +Subject: [PATCH 1/5] mpi: Simplify mpi_powm. + +* mpi/mpi-pow.c (_gcry_mpi_powm): Simplify the loop. + +-- + +This fix is not a solution for the problem reported (yet). The +problem is that the current algorithm of _gcry_mpi_powm depends on +exponent and some information leaks is possible. + +Reported-by: Andreas Zankl +Signed-off-by: NIIBE Yutaka + +(backport from master commit: +719468e53133d3bdf12156c5bfdea2bf15f9f6f1) + +Signed-off-by: Ross Burton +--- + mpi/mpi-pow.c | 105 +- + 1 file changed, 30 insertions(+), 75 deletions(-) + +diff --git a/mpi/mpi-pow.c b/mpi/mpi-pow.c +index 70bf9e84..c00cfed3 100644 +--- a/mpi/mpi-pow.c b/mpi/mpi-pow.c +@@ -613,12 +613,8 @@ _gcry_mpi_powm (gcry_mpi_t res, + if (e == 0) + { + j += c; +- i--; +- if ( i < 0 ) +-{ +- c = 0; +- break; +-} ++ if ( --i < 0 ) ++break; + + e = ep[i]; + c = BITS_PER_MPI_LIMB; +@@ -633,38 +629,33 @@ _gcry_mpi_powm (gcry_mpi_t res, + c -= c0; + j += c0; + ++ e0 = (e >> (BITS_PER_MPI_LIMB - W)); + if (c >= W) +-{ +- e0 = (e >> (BITS_PER_MPI_LIMB - W)); +- e = (e << W); +- c -= W; +-} ++c0 = 0; + else + { +- i--; +- if ( i < 0 ) ++ if ( --i < 0 ) + { +- e = (e >> (BITS_PER_MPI_LIMB - c)); +- break; ++ e0 = (e >> (BITS_PER_MPI_LIMB - c)); ++ j += c - W; ++ goto last_step; ++} ++ else ++{ ++ c0 = c; ++ e = ep[i]; ++ c = BITS_PER_MPI_LIMB; ++ e0 |= (e >> (BITS_PER_MPI_LIMB - (W - c0))); + } +- +- c0 = c; +- e0 = (e >> (BITS_PER_MPI_LIMB - W)) +-| (ep[i] >> (BITS_PER_MPI_LIMB - W + c0)); +- e = (ep[i] << (W - c0)); +- c = BITS_PER_MPI_LIMB - W + c0; + } + ++ e = e << (W - c0); ++ c -= (W - c0); ++ ++last_step: + count_trailing_zeros (c0, e0); + e0 = (e0 >> c0) >> 1; + +- for (j += W - c0; j; j--) +-{ +- mul_mod (xp, , rp, rsize, rp, rsize, mp, msize, ); +- tp = rp; rp = xp; xp = tp; +- rsize = xsize; +-} +- + /* +* base_u <= precomp[e0] +* base_u_size <= precomp_size[e0] +@@ -681,25 +672,23 @@ _gcry_mpi_powm (gcry_mpi_t res, + u.d = precomp[k]; + + mpi_set_cond (, , k == e0); +- base_u_size |= (precomp_size[k] & ((mpi_size_t)0 - (k == e0)) ); ++ base_u_size |= ( precomp_size[k] & ((mpi_size_t)0 - (k == e0)) ); + } + +- mul_mod (xp, , rp, rsize, base_u, base_u_size, +- mp, msize, ); +- tp = rp; rp = xp; xp = tp; +- rsize = xsize; ++ for (j += W - c0; j >= 0; j--) ++{ ++ mul_mod (xp, , rp, rsize, ++ j == 0 ? base_u : rp, j == 0 ? base_u_size : rsize, ++ mp, msize, ); ++ tp = rp; rp = xp; xp = tp; ++ rsize = xsize; ++} + + j = c0; ++ if ( i < 0 ) ++break; + } + +-if (c != 0) +- { +-j += c; +-count_trailing_zeros (c, e); +-e = (e >> c); +-j -= c; +- } +- + while (j--) + { + mul_mod (xp, , rp, rsize, rp, rsize, mp, msize, ); +@@ -707,40 +696,6 @@ _gcry_mpi_powm (gcry_mpi_t res, + rsize =
[OE-core] [PATCH 1/2] libgcrypt: merge bb and inc file
Signed-off-by: Ross Burton--- meta/recipes-support/libgcrypt/libgcrypt.inc | 50 --- meta/recipes-support/libgcrypt/libgcrypt_1.7.7.bb | 50 ++- 2 files changed, 49 insertions(+), 51 deletions(-) delete mode 100644 meta/recipes-support/libgcrypt/libgcrypt.inc diff --git a/meta/recipes-support/libgcrypt/libgcrypt.inc b/meta/recipes-support/libgcrypt/libgcrypt.inc deleted file mode 100644 index 3c7e89aa92b..000 --- a/meta/recipes-support/libgcrypt/libgcrypt.inc +++ /dev/null @@ -1,50 +0,0 @@ -SUMMARY = "General purpose cryptographic library based on the code from GnuPG" -HOMEPAGE = "http://directory.fsf.org/project/libgcrypt/; -BUGTRACKER = "https://bugs.g10code.com/gnupg/index; -SECTION = "libs" - -# helper program gcryptrnd and getrandom are under GPL, rest LGPL -LICENSE = "GPLv2+ & LGPLv2.1+ & GPLv3+" -LICENSE_${PN} = "LGPLv2.1+" -LICENSE_${PN}-dev = "GPLv2+ & LGPLv2.1+" -LICENSE_dumpsexp-dev = "GPLv3+" - -LIC_FILES_CHKSUM = "file://COPYING;md5=94d55d512a9ba36caa9b7df079bae19f \ -file://COPYING.LIB;md5=bbb461211a33b134d42ed5ee802b37ff" - -DEPENDS = "libgpg-error" - -UPSTREAM_CHECK_URI = "https://gnupg.org/download/index.html; -SRC_URI = "${GNUPG_MIRROR}/libgcrypt/libgcrypt-${PV}.tar.gz \ - file://add-pkgconfig-support.patch \ - file://libgcrypt-fix-building-error-with-O2-in-sysroot-path.patch \ - file://fix-ICE-failure-on-mips-with-option-O-and-g.patch \ - file://fix-undefined-reference-to-pthread.patch \ -" - -BINCONFIG = "${bindir}/libgcrypt-config" - -inherit autotools texinfo binconfig-disabled pkgconfig - -EXTRA_OECONF = "--disable-asm" - -PACKAGECONFIG ??= "capabilities" -PACKAGECONFIG[capabilities] = "--with-capabilities,--without-capabilities,libcap" - -do_configure_prepend () { - # Else this could be used in preference to the one in aclocal-copy - rm -f ${S}/m4/gpg-error.m4 -} - -# libgcrypt.pc is added locally and thus installed here -do_install_append() { - install -d ${D}/${libdir}/pkgconfig - install -m 0644 ${B}/src/libgcrypt.pc ${D}/${libdir}/pkgconfig/ -} - -PACKAGES =+ "dumpsexp-dev" - -FILES_${PN}-dev += "${bindir}/hmac256" -FILES_dumpsexp-dev += "${bindir}/dumpsexp" - -BBCLASSEXTEND = "native nativesdk" diff --git a/meta/recipes-support/libgcrypt/libgcrypt_1.7.7.bb b/meta/recipes-support/libgcrypt/libgcrypt_1.7.7.bb index 2bc21d2e69b..7f7d852fb3b 100644 --- a/meta/recipes-support/libgcrypt/libgcrypt_1.7.7.bb +++ b/meta/recipes-support/libgcrypt/libgcrypt_1.7.7.bb @@ -1,4 +1,52 @@ -require libgcrypt.inc +SUMMARY = "General purpose cryptographic library based on the code from GnuPG" +HOMEPAGE = "http://directory.fsf.org/project/libgcrypt/; +BUGTRACKER = "https://bugs.g10code.com/gnupg/index; +SECTION = "libs" +# helper program gcryptrnd and getrandom are under GPL, rest LGPL +LICENSE = "GPLv2+ & LGPLv2.1+ & GPLv3+" +LICENSE_${PN} = "LGPLv2.1+" +LICENSE_${PN}-dev = "GPLv2+ & LGPLv2.1+" +LICENSE_dumpsexp-dev = "GPLv3+" + +LIC_FILES_CHKSUM = "file://COPYING;md5=94d55d512a9ba36caa9b7df079bae19f \ +file://COPYING.LIB;md5=bbb461211a33b134d42ed5ee802b37ff" + +DEPENDS = "libgpg-error" + +UPSTREAM_CHECK_URI = "https://gnupg.org/download/index.html; +SRC_URI = "${GNUPG_MIRROR}/libgcrypt/libgcrypt-${PV}.tar.gz \ + file://add-pkgconfig-support.patch \ + file://libgcrypt-fix-building-error-with-O2-in-sysroot-path.patch \ + file://fix-ICE-failure-on-mips-with-option-O-and-g.patch \ + file://fix-undefined-reference-to-pthread.patch \ +" SRC_URI[md5sum] = "36ace8f8dc4b1a82793ae759bbfc806f" SRC_URI[sha256sum] = "0e72e91290d553c303095a50ea660279d8f11b76c6c86e826f470442fcdf1edd" + +BINCONFIG = "${bindir}/libgcrypt-config" + +inherit autotools texinfo binconfig-disabled pkgconfig + +EXTRA_OECONF = "--disable-asm" + +PACKAGECONFIG ??= "capabilities" +PACKAGECONFIG[capabilities] = "--with-capabilities,--without-capabilities,libcap" + +do_configure_prepend () { + # Else this could be used in preference to the one in aclocal-copy + rm -f ${S}/m4/gpg-error.m4 +} + +# libgcrypt.pc is added locally and thus installed here +do_install_append() { + install -d ${D}/${libdir}/pkgconfig + install -m 0644 ${B}/src/libgcrypt.pc ${D}/${libdir}/pkgconfig/ +} + +PACKAGES =+ "dumpsexp-dev" + +FILES_${PN}-dev += "${bindir}/hmac256" +FILES_dumpsexp-dev += "${bindir}/dumpsexp" + +BBCLASSEXTEND = "native nativesdk" -- 2.11.0 -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
[OE-core] [PATCH 2/2] libgcrypt: upgrade to 1.7.8
Fixes CVE-2017-7526, 'flush+reload side-channel attack on RSA secret keys dubbed "Sliding right into disaster"'. Signed-off-by: Ross Burton--- .../libgcrypt/{libgcrypt_1.7.7.bb => libgcrypt_1.7.8.bb} | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) rename meta/recipes-support/libgcrypt/{libgcrypt_1.7.7.bb => libgcrypt_1.7.8.bb} (92%) diff --git a/meta/recipes-support/libgcrypt/libgcrypt_1.7.7.bb b/meta/recipes-support/libgcrypt/libgcrypt_1.7.8.bb similarity index 92% rename from meta/recipes-support/libgcrypt/libgcrypt_1.7.7.bb rename to meta/recipes-support/libgcrypt/libgcrypt_1.7.8.bb index 7f7d852fb3b..83351594ea1 100644 --- a/meta/recipes-support/libgcrypt/libgcrypt_1.7.7.bb +++ b/meta/recipes-support/libgcrypt/libgcrypt_1.7.8.bb @@ -21,8 +21,8 @@ SRC_URI = "${GNUPG_MIRROR}/libgcrypt/libgcrypt-${PV}.tar.gz \ file://fix-ICE-failure-on-mips-with-option-O-and-g.patch \ file://fix-undefined-reference-to-pthread.patch \ " -SRC_URI[md5sum] = "36ace8f8dc4b1a82793ae759bbfc806f" -SRC_URI[sha256sum] = "0e72e91290d553c303095a50ea660279d8f11b76c6c86e826f470442fcdf1edd" +SRC_URI[md5sum] = "5588b89b75b1353e2454b04c7b8368f3" +SRC_URI[sha256sum] = "cb076b2efc7ba752f3d4c663c9ee0589a98b1d614fe90878b1facd607a45fd43" BINCONFIG = "${bindir}/libgcrypt-config" -- 2.11.0 -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
[OE-core] [PATCH 2/5] openssh: depend on openssl 1.0
The proposed openssl 1.1 patches are here: https://github.com/openssh/openssh-portable/pull/48 Openssl maintainers are not in a hurry to get 1.1 support in; if it doesn't show up within reasonable time, we can take a patch from Fedora: http://lists.mindrot.org/pipermail/openssh-unix-dev/2016-November/035454.html Signed-off-by: Alexander Kanavin--- meta/recipes-connectivity/openssh/openssh_7.5p1.bb | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/meta/recipes-connectivity/openssh/openssh_7.5p1.bb b/meta/recipes-connectivity/openssh/openssh_7.5p1.bb index 7bd313bb4e8..3b8fd7d1cc5 100644 --- a/meta/recipes-connectivity/openssh/openssh_7.5p1.bb +++ b/meta/recipes-connectivity/openssh/openssh_7.5p1.bb @@ -8,7 +8,8 @@ SECTION = "console/network" LICENSE = "BSD" LIC_FILES_CHKSUM = "file://LICENCE;md5=e326045657e842541d3f35aada442507" -DEPENDS = "zlib openssl" +# openssl 1.1 patches are proposed at https://github.com/openssh/openssh-portable/pull/48 +DEPENDS = "zlib openssl10" DEPENDS += "${@bb.utils.contains('DISTRO_FEATURES', 'pam', 'libpam', '', d)}" SRC_URI = "http://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-${PV}.tar.gz \ -- 2.13.2 -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
[OE-core] [PATCH 5/5] u-boot: Upgrade to 2017.07 release
From: Otavio SalvadorThis patch upgrades the U-Boot to the 2017.07 release. Signed-off-by: Otavio Salvador Signed-off-by: Alexander Kanavin --- .../u-boot/{u-boot-common_2017.05.inc => u-boot-common_2017.07.inc} | 2 +- .../u-boot/{u-boot-fw-utils_2017.05.bb => u-boot-fw-utils_2017.07.bb} | 0 .../u-boot/{u-boot-mkimage_2017.05.bb => u-boot-mkimage_2017.07.bb} | 0 meta/recipes-bsp/u-boot/{u-boot_2017.05.bb => u-boot_2017.07.bb}| 0 4 files changed, 1 insertion(+), 1 deletion(-) rename meta/recipes-bsp/u-boot/{u-boot-common_2017.05.inc => u-boot-common_2017.07.inc} (88%) rename meta/recipes-bsp/u-boot/{u-boot-fw-utils_2017.05.bb => u-boot-fw-utils_2017.07.bb} (100%) rename meta/recipes-bsp/u-boot/{u-boot-mkimage_2017.05.bb => u-boot-mkimage_2017.07.bb} (100%) rename meta/recipes-bsp/u-boot/{u-boot_2017.05.bb => u-boot_2017.07.bb} (100%) diff --git a/meta/recipes-bsp/u-boot/u-boot-common_2017.05.inc b/meta/recipes-bsp/u-boot/u-boot-common_2017.07.inc similarity index 88% rename from meta/recipes-bsp/u-boot/u-boot-common_2017.05.inc rename to meta/recipes-bsp/u-boot/u-boot-common_2017.07.inc index 0e52f27df8c..f27989daa17 100644 --- a/meta/recipes-bsp/u-boot/u-boot-common_2017.05.inc +++ b/meta/recipes-bsp/u-boot/u-boot-common_2017.07.inc @@ -7,7 +7,7 @@ PE = "1" # We use the revision in order to avoid having to fetch it from the # repo during parse -SRCREV = "64c4ffa9fa223f7ae8640f9c8f3044bfa0e3bfda" +SRCREV = "d85ca029f257b53a96da6c2fb421e78a003a9943" SRC_URI = "git://git.denx.de/u-boot.git \ file://MPC8315ERDB-enable-DHCP.patch \ diff --git a/meta/recipes-bsp/u-boot/u-boot-fw-utils_2017.05.bb b/meta/recipes-bsp/u-boot/u-boot-fw-utils_2017.07.bb similarity index 100% rename from meta/recipes-bsp/u-boot/u-boot-fw-utils_2017.05.bb rename to meta/recipes-bsp/u-boot/u-boot-fw-utils_2017.07.bb diff --git a/meta/recipes-bsp/u-boot/u-boot-mkimage_2017.05.bb b/meta/recipes-bsp/u-boot/u-boot-mkimage_2017.07.bb similarity index 100% rename from meta/recipes-bsp/u-boot/u-boot-mkimage_2017.05.bb rename to meta/recipes-bsp/u-boot/u-boot-mkimage_2017.07.bb diff --git a/meta/recipes-bsp/u-boot/u-boot_2017.05.bb b/meta/recipes-bsp/u-boot/u-boot_2017.07.bb similarity index 100% rename from meta/recipes-bsp/u-boot/u-boot_2017.05.bb rename to meta/recipes-bsp/u-boot/u-boot_2017.07.bb -- 2.13.2 -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
[OE-core] [PATCH 4/5] gstreamer-plugins-bad: replace openssl dependency with nettle for hls plugin
It has not been ported to openssl 1.1 (and there's nothing in upstream git), but it's possible to use nettle or gcrypt intead. Signed-off-by: Alexander Kanavin--- meta/recipes-multimedia/gstreamer/gstreamer1.0-plugins-bad.inc | 4 +--- 1 file changed, 1 insertion(+), 3 deletions(-) diff --git a/meta/recipes-multimedia/gstreamer/gstreamer1.0-plugins-bad.inc b/meta/recipes-multimedia/gstreamer/gstreamer1.0-plugins-bad.inc index e964fef3f20..7427772a45f 100644 --- a/meta/recipes-multimedia/gstreamer/gstreamer1.0-plugins-bad.inc +++ b/meta/recipes-multimedia/gstreamer/gstreamer1.0-plugins-bad.inc @@ -40,9 +40,7 @@ PACKAGECONFIG[flite] = "--enable-flite,--disable-flite,flite-alsa" PACKAGECONFIG[fluidsynth] = "--enable-fluidsynth,--disable-fluidsynth,fluidsynth" PACKAGECONFIG[gles2] = "--enable-gles2,--disable-gles2,virtual/libgles2" PACKAGECONFIG[gtk] = "--enable-gtk3,--disable-gtk3,gtk+3" -# ensure OpenSSL is used for HLS AES description instead of nettle -# (OpenSSL is a shared dependency with dtls) -PACKAGECONFIG[hls] = "--enable-hls --with-hls-crypto=openssl,--disable-hls,openssl" +PACKAGECONFIG[hls] = "--enable-hls --with-hls-crypto=nettle,--disable-hls,nettle" PACKAGECONFIG[kms] = "--enable-kms,--disable-kms,libdrm" PACKAGECONFIG[libmms] = "--enable-libmms,--disable-libmms,libmms" PACKAGECONFIG[libssh2] = "--enable-libssh2,--disable-libssh2,libssh2" -- 2.13.2 -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
[OE-core] [PATCH 3/5] cryptodev-tests: depend on openssl 1.0
Upstream ticket: https://github.com/cryptodev-linux/cryptodev-linux/issues/22 Signed-off-by: Alexander Kanavin--- meta/recipes-kernel/cryptodev/cryptodev-tests_1.8.bb | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/meta/recipes-kernel/cryptodev/cryptodev-tests_1.8.bb b/meta/recipes-kernel/cryptodev/cryptodev-tests_1.8.bb index c4005242a76..13011799ad5 100644 --- a/meta/recipes-kernel/cryptodev/cryptodev-tests_1.8.bb +++ b/meta/recipes-kernel/cryptodev/cryptodev-tests_1.8.bb @@ -2,7 +2,7 @@ require cryptodev.inc SUMMARY = "A test suite for /dev/crypto device driver" -DEPENDS += "openssl" +DEPENDS += "openssl10" SRC_URI += " \ file://0001-Add-the-compile-and-install-rules-for-cryptodev-test.patch \ -- 2.13.2 -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
[OE-core] [PATCH 1/5] openssl: add a 1.1 version
Existing openssl 1.0 recipe is renamed to openssl10; it will continue to be provided for as long as upstream supports it (and there are still several recipes which do not work with openssl 1.1 due to API differences). A few files (such as openssl binary) are no longer installed by openssl 1.0, because they clash with openssl 1.1. Signed-off-by: Alexander Kanavin--- meta/conf/distro/include/no-static-libs.inc| 3 + ...ve-test-that-requires-running-as-non-root.patch | 49 +++ ...1-Take-linking-flags-from-LDFLAGS-env-var.patch | 43 ++ .../recipes-connectivity/openssl/openssl/run-ptest | 4 +- .../openssl/{openssl.inc => openssl10.inc} | 14 +- ...build-with-clang-using-external-assembler.patch | 0 .../{openssl => openssl10}/Makefiles-ptest.patch | 0 .../Use-SHA256-not-MD5-as-default-digest.patch | 0 .../configure-musl-target.patch| 0 .../{openssl => openssl10}/configure-targets.patch | 0 .../debian/c_rehash-compat.patch | 0 .../openssl/{openssl => openssl10}/debian/ca.patch | 0 .../debian/debian-targets.patch| 0 .../{openssl => openssl10}/debian/man-dir.patch| 0 .../debian/man-section.patch | 0 .../{openssl => openssl10}/debian/no-rpath.patch | 0 .../debian/no-symbolic.patch | 0 .../{openssl => openssl10}/debian/pic.patch| 0 .../debian/version-script.patch| 0 .../debian1.0.2/block_digicert_malaysia.patch | 0 .../debian1.0.2/block_diginotar.patch | 0 .../debian1.0.2/soname.patch | 0 .../debian1.0.2/version-script.patch | 0 .../engines-install-in-libdir-ssl.patch| 0 .../openssl/{openssl => openssl10}/find.pl | 0 .../{openssl => openssl10}/oe-ldflags.patch| 0 .../openssl-1.0.2a-x32-asm.patch | 0 .../{openssl => openssl10}/openssl-c_rehash.sh | 0 .../openssl-fix-des.pod-error.patch| 0 .../openssl-util-perlpath.pl-cwd.patch | 0 .../openssl_fix_for_x32.patch | 0 .../openssl/{openssl => openssl10}/parallel.patch | 0 .../{openssl => openssl10}/ptest-deps.patch| 0 .../ptest_makefile_deps.patch | 0 .../openssl/openssl10/run-ptest| 2 + .../{openssl => openssl10}/shared-libs.patch | 0 .../{openssl_1.0.2l.bb => openssl10_1.0.2l.bb} | 4 +- .../recipes-connectivity/openssl/openssl_1.1.0f.bb | 146 + 38 files changed, 260 insertions(+), 5 deletions(-) create mode 100644 meta/recipes-connectivity/openssl/openssl/0001-Remove-test-that-requires-running-as-non-root.patch create mode 100644 meta/recipes-connectivity/openssl/openssl/0001-Take-linking-flags-from-LDFLAGS-env-var.patch mode change 100755 => 100644 meta/recipes-connectivity/openssl/openssl/run-ptest rename meta/recipes-connectivity/openssl/{openssl.inc => openssl10.inc} (95%) rename meta/recipes-connectivity/openssl/{openssl => openssl10}/0001-Fix-build-with-clang-using-external-assembler.patch (100%) rename meta/recipes-connectivity/openssl/{openssl => openssl10}/Makefiles-ptest.patch (100%) rename meta/recipes-connectivity/openssl/{openssl => openssl10}/Use-SHA256-not-MD5-as-default-digest.patch (100%) rename meta/recipes-connectivity/openssl/{openssl => openssl10}/configure-musl-target.patch (100%) rename meta/recipes-connectivity/openssl/{openssl => openssl10}/configure-targets.patch (100%) rename meta/recipes-connectivity/openssl/{openssl => openssl10}/debian/c_rehash-compat.patch (100%) rename meta/recipes-connectivity/openssl/{openssl => openssl10}/debian/ca.patch (100%) rename meta/recipes-connectivity/openssl/{openssl => openssl10}/debian/debian-targets.patch (100%) rename meta/recipes-connectivity/openssl/{openssl => openssl10}/debian/man-dir.patch (100%) rename meta/recipes-connectivity/openssl/{openssl => openssl10}/debian/man-section.patch (100%) rename meta/recipes-connectivity/openssl/{openssl => openssl10}/debian/no-rpath.patch (100%) rename meta/recipes-connectivity/openssl/{openssl => openssl10}/debian/no-symbolic.patch (100%) rename meta/recipes-connectivity/openssl/{openssl => openssl10}/debian/pic.patch (100%) rename meta/recipes-connectivity/openssl/{openssl => openssl10}/debian/version-script.patch (100%) rename meta/recipes-connectivity/openssl/{openssl => openssl10}/debian1.0.2/block_digicert_malaysia.patch (100%) rename meta/recipes-connectivity/openssl/{openssl => openssl10}/debian1.0.2/block_diginotar.patch (100%) rename meta/recipes-connectivity/openssl/{openssl => openssl10}/debian1.0.2/soname.patch (100%) rename meta/recipes-connectivity/openssl/{openssl => openssl10}/debian1.0.2/version-script.patch (100%) rename meta/recipes-connectivity/openssl/{openssl =>
[OE-core] [PATCH 0/5] Add openssl 1.1
This patch series introduces the recipe for openssl 1.1 (openssl 1.0 is preserved but renamed to openssl10), and does a few necessary adjustmenets and updates to other recipes. Openssl 1.1 is an opt-out; it has the same recipe name as openssl 1.0 had, and so all dependencies are compiled with it by default. If there's an API issue, please fix it, or adjust the recipe to depend on 'openssl10' (which is a lesser solution, and subject to openssl 1.0 eventually being removed from oe-core). The following changes since commit 50af58cedb3153f058d23a0a9584cf69bdcce81b: systemd: refuse to load units with errors (CVE-2017-182) (2017-07-19 11:30:16 +0100) are available in the git repository at: git://git.yoctoproject.org/poky-contrib akanavin/openssl-1.1 http://git.yoctoproject.org/cgit.cgi/poky-contrib/log/?h=akanavin/openssl-1.1 Alexander Kanavin (4): openssl: add a 1.1 version openssh: depend on openssl 1.0 cryptodev-tests: depend on openssl 1.0 gstreamer-plugins-bad: replace openssl dependency with nettle for hls plugin Otavio Salvador (1): u-boot: Upgrade to 2017.07 release meta/conf/distro/include/no-static-libs.inc| 3 + ...ommon_2017.05.inc => u-boot-common_2017.07.inc} | 2 +- ...utils_2017.05.bb => u-boot-fw-utils_2017.07.bb} | 0 ...kimage_2017.05.bb => u-boot-mkimage_2017.07.bb} | 0 .../{u-boot_2017.05.bb => u-boot_2017.07.bb} | 0 meta/recipes-connectivity/openssh/openssh_7.5p1.bb | 3 +- ...ve-test-that-requires-running-as-non-root.patch | 49 +++ ...1-Take-linking-flags-from-LDFLAGS-env-var.patch | 43 ++ .../recipes-connectivity/openssl/openssl/run-ptest | 4 +- .../openssl/{openssl.inc => openssl10.inc} | 14 +- ...build-with-clang-using-external-assembler.patch | 0 .../{openssl => openssl10}/Makefiles-ptest.patch | 0 .../Use-SHA256-not-MD5-as-default-digest.patch | 0 .../configure-musl-target.patch| 0 .../{openssl => openssl10}/configure-targets.patch | 0 .../debian/c_rehash-compat.patch | 0 .../openssl/{openssl => openssl10}/debian/ca.patch | 0 .../debian/debian-targets.patch| 0 .../{openssl => openssl10}/debian/man-dir.patch| 0 .../debian/man-section.patch | 0 .../{openssl => openssl10}/debian/no-rpath.patch | 0 .../debian/no-symbolic.patch | 0 .../{openssl => openssl10}/debian/pic.patch| 0 .../debian/version-script.patch| 0 .../debian1.0.2/block_digicert_malaysia.patch | 0 .../debian1.0.2/block_diginotar.patch | 0 .../debian1.0.2/soname.patch | 0 .../debian1.0.2/version-script.patch | 0 .../engines-install-in-libdir-ssl.patch| 0 .../openssl/{openssl => openssl10}/find.pl | 0 .../{openssl => openssl10}/oe-ldflags.patch| 0 .../openssl-1.0.2a-x32-asm.patch | 0 .../{openssl => openssl10}/openssl-c_rehash.sh | 0 .../openssl-fix-des.pod-error.patch| 0 .../openssl-util-perlpath.pl-cwd.patch | 0 .../openssl_fix_for_x32.patch | 0 .../openssl/{openssl => openssl10}/parallel.patch | 0 .../{openssl => openssl10}/ptest-deps.patch| 0 .../ptest_makefile_deps.patch | 0 .../openssl/openssl10/run-ptest| 2 + .../{openssl => openssl10}/shared-libs.patch | 0 .../{openssl_1.0.2l.bb => openssl10_1.0.2l.bb} | 4 +- .../recipes-connectivity/openssl/openssl_1.1.0f.bb | 146 + .../cryptodev/cryptodev-tests_1.8.bb | 2 +- .../gstreamer/gstreamer1.0-plugins-bad.inc | 4 +- 45 files changed, 265 insertions(+), 11 deletions(-) rename meta/recipes-bsp/u-boot/{u-boot-common_2017.05.inc => u-boot-common_2017.07.inc} (88%) rename meta/recipes-bsp/u-boot/{u-boot-fw-utils_2017.05.bb => u-boot-fw-utils_2017.07.bb} (100%) rename meta/recipes-bsp/u-boot/{u-boot-mkimage_2017.05.bb => u-boot-mkimage_2017.07.bb} (100%) rename meta/recipes-bsp/u-boot/{u-boot_2017.05.bb => u-boot_2017.07.bb} (100%) create mode 100644 meta/recipes-connectivity/openssl/openssl/0001-Remove-test-that-requires-running-as-non-root.patch create mode 100644 meta/recipes-connectivity/openssl/openssl/0001-Take-linking-flags-from-LDFLAGS-env-var.patch mode change 100755 => 100644 meta/recipes-connectivity/openssl/openssl/run-ptest rename meta/recipes-connectivity/openssl/{openssl.inc => openssl10.inc} (95%) rename meta/recipes-connectivity/openssl/{openssl => openssl10}/0001-Fix-build-with-clang-using-external-assembler.patch (100%) rename meta/recipes-connectivity/openssl/{openssl => openssl10}/Makefiles-ptest.patch (100%) rename meta/recipes-connectivity/openssl/{openssl => openssl10}/Use-SHA256-not-MD5-as-default-digest.patch (100%) rename
Re: [OE-core] [PATCH 0/1] bind: 9.10..3-P3 -> 9.10.5-P3
On 07/19/2017 12:08 AM, Khem Raj wrote: The policy in oe-core master is to update to latest stable upstream releases, so please provide an update to 9.11.x. If you want to keep 9.10.x, you can do that, but please provide a more specific reason. if there are ABI incompatible changes then we have to scope the impact and plan the upgrade accordingly, if its backward compatible then yes its the norm. What I'm saying is that it should not be a "9.10 now, 9.11 maybe later" when working with a master branch. The proper way is to "investigate and plan the upgrade to 9.11, update to 9.10 only if necessary, based on that investigation". Alex -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
[OE-core] ✗ patchtest: failure for systemd: refuse to load units with errors (CVE-2017-1000082) (rev2)
== Series Details == Series: systemd: refuse to load units with errors (CVE-2017-182) (rev2) Revision: 2 URL : https://patchwork.openembedded.org/series/7796/ State : failure == Summary == Thank you for submitting this patch series to OpenEmbedded Core. This is an automated response. Several tests have been executed on the proposed series by patchtest resulting in the following failures: * Patch[pyro] systemd: refuse to load units with errors (CVE-2017-182) Issue Missing or incorrectly formatted CVE tag in commit message [test_cve_presence_in_commit_message] Suggested fixInclude a "CVE--" tag in the commit message If you believe any of these test results are incorrect, please reply to the mailing list (openembedded-core@lists.openembedded.org) raising your concerns. Otherwise we would appreciate you correcting the issues and submitting a new version of the patchset if applicable. Please ensure you add/increment the version number when sending the new version (i.e. [PATCH] -> [PATCH v2] -> [PATCH v3] -> ...). --- Test framework: http://git.yoctoproject.org/cgit/cgit.cgi/patchtest Test suite: http://git.yoctoproject.org/cgit/cgit.cgi/patchtest-oe -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
[OE-core] [PATCH][pyro] systemd: refuse to load units with errors (CVE-2017-1000082)
If a unit has a statement such as User=0day where the username exists but is strictly speaking invalid, the unit will be started as the root user instead. Backport a patch from upstream to mitigate this by refusing to start units such as this. Signed-off-by: Ross Burton--- ...ragment-refuse-units-with-errors-in-certa.patch | 329 + meta/recipes-core/systemd/systemd_232.bb | 1 + 2 files changed, 330 insertions(+) create mode 100644 meta/recipes-core/systemd/systemd/0001-core-load-fragment-refuse-units-with-errors-in-certa.patch diff --git a/meta/recipes-core/systemd/systemd/0001-core-load-fragment-refuse-units-with-errors-in-certa.patch b/meta/recipes-core/systemd/systemd/0001-core-load-fragment-refuse-units-with-errors-in-certa.patch new file mode 100644 index 000..80948b2ceea --- /dev/null +++ b/meta/recipes-core/systemd/systemd/0001-core-load-fragment-refuse-units-with-errors-in-certa.patch @@ -0,0 +1,329 @@ +If a user is created with a strictly-speaking invalid name such as '0day' and a +unit created to run as that user, systemd rejects the username and runs the unit +as root. + +CVE: CVE-2017-182 +Upstream-Status: Backport +Signed-off-by: Ross Burton + +From d8e1310e1ed7b6f122bc7eb8ba061fbd088783c0 Mon Sep 17 00:00:00 2001 +From: =?UTF-8?q?Zbigniew=20J=C4=99drzejewski-Szmek?= +Date: Thu, 6 Jul 2017 13:28:19 -0400 +Subject: [PATCH] core/load-fragment: refuse units with errors in certain + directives + +If an error is encountered in any of the Exec* lines, WorkingDirectory, +SELinuxContext, ApparmorProfile, SmackProcessLabel, Service (in .socket +units), User, or Group, refuse to load the unit. If the config stanza +has support, ignore the failure if '-' is present. + +For those configuration directives, even if we started the unit, it's +pretty likely that it'll do something unexpected (like write files +in a wrong place, or with a wrong context, or run with wrong permissions, +etc). It seems better to refuse to start the unit and have the admin +clean up the configuration without giving the service a chance to mess +up stuff. + +Note that all "security" options that restrict what the unit can do +(Capabilities, AmbientCapabilities, Restrict*, SystemCallFilter, Limit*, +PrivateDevices, Protect*, etc) are _not_ treated like this. Such options are +only supplementary, and are not always available depending on the architecture +and compilation options, so unit authors have to make sure that the service +runs correctly without them anyway. + +Fixes #6237, #6277. + +Signed-off-by: Ross Burton +--- + src/core/load-fragment.c | 104 -- + src/test/test-unit-file.c | 14 +++ + 2 files changed, 70 insertions(+), 48 deletions(-) + +diff --git a/src/core/load-fragment.c b/src/core/load-fragment.c +index cbc826809..2047974f4 100644 +--- a/src/core/load-fragment.c b/src/core/load-fragment.c +@@ -630,20 +630,28 @@ int config_parse_exec( + + if (isempty(f)) { + /* First word is either "-" or "@" with no command. */ +-log_syntax(unit, LOG_ERR, filename, line, 0, "Empty path in command line, ignoring: \"%s\"", rvalue); +-return 0; ++log_syntax(unit, LOG_ERR, filename, line, 0, ++ "Empty path in command line%s: \"%s\"", ++ ignore ? ", ignoring" : "", rvalue); ++return ignore ? 0 : -ENOEXEC; + } + if (!string_is_safe(f)) { +-log_syntax(unit, LOG_ERR, filename, line, 0, "Executable path contains special characters, ignoring: %s", rvalue); +-return 0; ++log_syntax(unit, LOG_ERR, filename, line, 0, ++ "Executable path contains special characters%s: %s", ++ ignore ? ", ignoring" : "", rvalue); ++return ignore ? 0 : -ENOEXEC; + } + if (!path_is_absolute(f)) { +-log_syntax(unit, LOG_ERR, filename, line, 0, "Executable path is not absolute, ignoring: %s", rvalue); +-return 0; ++log_syntax(unit, LOG_ERR, filename, line, 0, ++ "Executable path is not absolute%s: %s", ++ ignore ? ", ignoring" : "", rvalue); ++return ignore ? 0 : -ENOEXEC; + } + if (endswith(f, "/")) { +-log_syntax(unit, LOG_ERR, filename, line, 0, "Executable path specifies a directory, ignoring: %s", rvalue); +-return 0; ++log_syntax(unit, LOG_ERR, filename, line, 0, ++
[OE-core] [PATCH 5/5] recipetool: create: reimplement fetching with normal fetch/unpack tasks
Now that we have the ability to run the tasks in a more standard context through tinfoil, change recipetool's fetching code to use that to fetch files using it. This has the major advantage that any dependencies of do_fetch and do_unpack (e.g. for subversion or npm) will be handled automatically. This also has the beneficial side-effect of fixing a recent regression that prevented this fetch operation from working with memory resident bitbake. Fixes [YOCTO #11710]. Signed-off-by: Paul Eggleton--- scripts/lib/recipetool/create.py | 171 +-- 1 file changed, 147 insertions(+), 24 deletions(-) diff --git a/scripts/lib/recipetool/create.py b/scripts/lib/recipetool/create.py index 4e965e4..b94b2cf 100644 --- a/scripts/lib/recipetool/create.py +++ b/scripts/lib/recipetool/create.py @@ -28,6 +28,11 @@ from urllib.parse import urlparse, urldefrag, urlsplit from recipetool.utils import ensure_npm import hashlib import bb.fetch2 +import random +import string +import tempfile +import shutil + logger = logging.getLogger('recipetool') tinfoil = None @@ -407,10 +412,130 @@ def is_package(url): return True return False +class FetchUrlFailure(Exception): +def __init__(self, url): +self.url = url +def __str__(self): +return "Failed to fetch URL %s" % self.url + +def get_temp_recipe_dir(): +# This is a little bit hacky but we need to find a place where we can put +# the recipe so that bitbake can find it. We're going to delete it at the +# end so it doesn't really matter where we put it. +bbfiles = tinfoil.config_data.getVar('BBFILES').split() +fetchrecipedir = None +for pth in bbfiles: +if pth.endswith('.bb'): +pthdir = os.path.dirname(pth) +if os.access(os.path.dirname(os.path.dirname(pthdir)), os.W_OK): +fetchrecipedir = pthdir.replace('*', 'recipetool') +if pthdir.endswith('workspace/recipes/*'): +# Prefer the workspace +break +return fetchrecipedir + +def fetch_url(srcuri, srcrev, destdir, preserve_tmp=False): +""" +Fetch the specified URL using normal do_fetch and do_unpack tasks, i.e. +any dependencies that need to be satisfied in order to support the fetch +operation will be taken care of +""" +# FIXME find a better home for this + +checksums = {} +fetchrecipepn = None + +# We need to put our temp directory under ${BASE_WORKDIR} otherwise +# we may have problems with the recipe-specific sysroot population +tmpparent = tinfoil.config_data.getVar('BASE_WORKDIR') +bb.utils.mkdirhier(tmpparent) +tmpdir = tempfile.mkdtemp(prefix='recipetool-', dir=tmpparent) +try: +tmpworkdir = os.path.join(tmpdir, 'work') +logger.debug('fetch_url: temp dir is %s' % tmpdir) + +fetchrecipedir = get_temp_recipe_dir() +if not fetchrecipedir: +logger.error('Searched BBFILES but unable to find a writeable place to put temporary recipe') +sys.exit(1) +fetchrecipe = None +bb.utils.mkdirhier(fetchrecipedir) +try: +# Generate a dummy recipe so we can follow more or less normal paths +# for do_fetch and do_unpack +# I'd use tempfile functions here but underscores can be produced by that and those +# aren't allowed in recipe file names except to separate the version +rndstring = ''.join(random.choice(string.ascii_uppercase + string.digits) for _ in range(8)) +fetchrecipe = os.path.join(fetchrecipedir, 'tmp-recipetool-%s.bb' % rndstring) +fetchrecipepn = os.path.splitext(os.path.basename(fetchrecipe))[0] +logger.debug('Generating initial recipe %s for fetching' % fetchrecipe) +with open(fetchrecipe, 'w') as f: +# We don't want to have to specify LIC_FILES_CHKSUM +f.write('LICENSE = "CLOSED"\n') +# We don't need the cross-compiler +f.write('INHIBIT_DEFAULT_DEPS = "1"\n') +# We don't have the checksums yet so we can't require them +f.write('BB_STRICT_CHECKSUM = "ignore"\n') +f.write('SRC_URI = "%s"\n' % srcuri) +f.write('SRCREV = "%s"\n' % srcrev) +f.write('WORKDIR = "%s"\n' % tmpworkdir) +# Set S out of the way so it doesn't get created under the workdir +f.write('S = "%s"\n' % os.path.join(tmpdir, 'emptysrc')) + +logger.info('Fetching %s...' % srcuri) + +# FIXME this is too noisy at the moment + +# Parse recipes so our new recipe gets picked up +tinfoil.parse_recipes() + +def eventhandler(event): +if isinstance(event, bb.fetch2.MissingChecksumEvent): +checksums.update(event.checksums) +
[OE-core] [PATCH 1/5] classes/staging: change fixme debug message from note to debug
These messages were added for debugging during the recipe specific sysroot work. They may still be useful but they don't need to be notes - if they are they show up in recipetool / devtool output when fetching source. Signed-off-by: Paul Eggleton--- meta/classes/staging.bbclass | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/meta/classes/staging.bbclass b/meta/classes/staging.bbclass index 8f470d5..162c8e9 100644 --- a/meta/classes/staging.bbclass +++ b/meta/classes/staging.bbclass @@ -170,7 +170,7 @@ def staging_processfixme(fixme, target, recipesysroot, recipesysrootnative, d): for fixmevar in ['COMPONENTS_DIR', 'HOSTTOOLS_DIR', 'PKGDATA_DIR']: fixme_path = d.getVar(fixmevar) cmd += " -e 's:FIXME_%s:%s:g'" % (fixmevar, fixme_path) -bb.note(cmd) +bb.debug(2, cmd) subprocess.check_output(cmd, shell=True) -- 2.9.4 -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
[OE-core] [PATCH 4/5] recipetool: create: ensure meaningful error for malformed tarballs
If you pointed recipetool at a URL that should be a tarball e.g. https://tls.mbed.org/download/start/mbedtls-2.4.2-apache.tgz but instead it returns an HTML page, we try to unpack it, gzip complains but the operation doesn't seem to fail - instead we just get back an empty source tree. Change the checks to account for this - if the source tree is empty, check if the downloaded file in DL_DIR looks like an HTML file and error accordingly if it is. If it's not, error out anyway because no source was unpacked and it should have been (otherwise we just blindly set up EXTERNALSRC for this which is pointless). Fixes an aspect of [YOCTO #11407]. Signed-off-by: Paul Eggleton--- scripts/lib/recipetool/create.py | 22 ++ 1 file changed, 18 insertions(+), 4 deletions(-) diff --git a/scripts/lib/recipetool/create.py b/scripts/lib/recipetool/create.py index 868d18b..4e965e4 100644 --- a/scripts/lib/recipetool/create.py +++ b/scripts/lib/recipetool/create.py @@ -465,10 +465,16 @@ def create_recipe(args): srcsubdir = dirlist[0] srctree = os.path.join(srctree, srcsubdir) else: -with open(singleitem, 'r', errors='surrogateescape') as f: -if '
[OE-core] [PATCH 3/5] devtool: extract: refactor kern-tools-native handling
When extracting linux-yocto kernel source, we don't need to dance around shutting down and starting up tinfoil anymore, we can just execute the tasks as needed. This allows us to tidy up the code structure a bit. Signed-off-by: Paul Eggleton--- scripts/lib/devtool/standard.py | 37 + 1 file changed, 5 insertions(+), 32 deletions(-) diff --git a/scripts/lib/devtool/standard.py b/scripts/lib/devtool/standard.py index 008cfa3..b1cc23d 100644 --- a/scripts/lib/devtool/standard.py +++ b/scripts/lib/devtool/standard.py @@ -371,7 +371,7 @@ def extract(args, config, basepath, workspace): """Entry point for the devtool 'extract' subcommand""" import bb -tinfoil = _prep_extract_operation(config, basepath, args.recipename) +tinfoil = setup_tinfoil(basepath=basepath) if not tinfoil: # Error already shown return 1 @@ -395,7 +395,7 @@ def sync(args, config, basepath, workspace): """Entry point for the devtool 'sync' subcommand""" import bb -tinfoil = _prep_extract_operation(config, basepath, args.recipename) +tinfoil = setup_tinfoil(basepath=basepath) if not tinfoil: # Error already shown return 1 @@ -416,29 +416,6 @@ def sync(args, config, basepath, workspace): tinfoil.shutdown() -def _prep_extract_operation(config, basepath, recipename, tinfoil=None): -"""HACK: Ugly workaround for making sure that requirements are met when - trying to extract a package. Returns the tinfoil instance to be used.""" -if not tinfoil: -tinfoil = setup_tinfoil(basepath=basepath) - -rd = parse_recipe(config, tinfoil, recipename, True) -if not rd: -tinfoil.shutdown() -return None - -if bb.data.inherits_class('kernel-yocto', rd): -tinfoil.shutdown() -try: -stdout, _ = exec_build_env_command(config.init_path, basepath, - 'bitbake kern-tools-native') -tinfoil = setup_tinfoil(basepath=basepath) -except bb.process.ExecutionError as err: -raise DevtoolError("Failed to build kern-tools-native:\n%s" % - err.stdout) -return tinfoil - - def _extract_source(srctree, keep_temp, devbranch, sync, d, tinfoil): """Extract sources of a recipe""" import oe.recipeutils @@ -463,6 +440,9 @@ def _extract_source(srctree, keep_temp, devbranch, sync, d, tinfoil): raise DevtoolError("The %s recipe has do_unpack disabled, unable to " "extract source" % pn, 4) +if bb.data.inherits_class('kernel-yocto', d): +tinfoil.build_targets('kern-tools-native') + if not sync: # Prepare for shutil.move later on bb.utils.mkdirhier(srctree) @@ -761,13 +741,6 @@ def modify(args, config, basepath, workspace): raise DevtoolError("--no-extract specified and source path %s does " "not exist or is not a directory" % srctree) -if not args.no_extract: -tinfoil = _prep_extract_operation(config, basepath, pn, tinfoil) -if not tinfoil: -# Error already shown -return 1 -# We need to re-parse because tinfoil may have been re-initialised -rd = parse_recipe(config, tinfoil, args.recipename, True) recipefile = rd.getVar('FILE') appendfile = recipe_to_append(recipefile, config, args.wildcard) -- 2.9.4 -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
[OE-core] [PATCH 2/5] recipetool: create: refactor code for ensuring npm is available
Across devtool and recipetool we had an ugly set of code for ensuring that we can call an npm binary, and much of that ugliness was a result of not being able to run build tasks when tinfoil was active - if recipetool found that npm was required and we didn't know beforehand (e.g. we're fetching from a plain git repository as opposed to an npm:// URL where it's obvious) then it had to exit and return a special result code, so that devtool knew it needed to build nodejs-native and then call recipetool again. Tinfoil now allows us to run build tasks directly, so we can take advantage of that instead and throw away the ugly code at the same time. Signed-off-by: Paul Eggleton--- scripts/lib/devtool/__init__.py | 31 -- scripts/lib/devtool/standard.py | 36 --- scripts/lib/recipetool/create.py | 26 + scripts/lib/recipetool/create_npm.py | 7 +-- scripts/lib/recipetool/utils.py | 37 5 files changed, 59 insertions(+), 78 deletions(-) create mode 100644 scripts/lib/recipetool/utils.py diff --git a/scripts/lib/devtool/__init__.py b/scripts/lib/devtool/__init__.py index 29c4c05..bba0721 100644 --- a/scripts/lib/devtool/__init__.py +++ b/scripts/lib/devtool/__init__.py @@ -261,34 +261,3 @@ def get_bbclassextend_targets(recipefile, pn): targets.append('%s-%s' % (pn, variant)) return targets -def ensure_npm(config, basepath, fixed_setup=False, check_exists=True): -""" -Ensure that npm is available and either build it or show a -reasonable error message -""" -if check_exists: -tinfoil = setup_tinfoil(config_only=False, basepath=basepath) -try: -rd = tinfoil.parse_recipe('nodejs-native') -nativepath = rd.getVar('STAGING_BINDIR_NATIVE') -finally: -tinfoil.shutdown() -npmpath = os.path.join(nativepath, 'npm') -build_npm = not os.path.exists(npmpath) -else: -build_npm = True - -if build_npm: -logger.info('Building nodejs-native') -try: -exec_build_env_command(config.init_path, basepath, -'bitbake -q nodejs-native -c addto_recipe_sysroot', watch=True) -except bb.process.ExecutionError as e: -if "Nothing PROVIDES 'nodejs-native'" in e.stdout: -if fixed_setup: -msg = 'nodejs-native is required for npm but is not available within this SDK' -else: -msg = 'nodejs-native is required for npm but is not available - you will likely need to add a layer that provides nodejs' -raise DevtoolError(msg) -else: -raise diff --git a/scripts/lib/devtool/standard.py b/scripts/lib/devtool/standard.py index 7e342e7..008cfa3 100644 --- a/scripts/lib/devtool/standard.py +++ b/scripts/lib/devtool/standard.py @@ -30,8 +30,9 @@ import errno import glob import filecmp from collections import OrderedDict -from devtool import exec_build_env_command, setup_tinfoil, check_workspace_recipe, use_external_build, setup_git_repo, recipe_to_append, get_bbclassextend_targets, ensure_npm, DevtoolError +from devtool import exec_build_env_command, setup_tinfoil, check_workspace_recipe, use_external_build, setup_git_repo, recipe_to_append, get_bbclassextend_targets, DevtoolError from devtool import parse_recipe +from recipetool.utils import ensure_npm logger = logging.getLogger('devtool') @@ -129,7 +130,9 @@ def add(args, config, basepath, workspace): extracmdopts = '' if args.fetchuri: if args.fetchuri.startswith('npm://'): -ensure_npm(config, basepath, args.fixed_setup) +with setup_tinfoil(config_only=True, basepath=basepath) as tinfoil: +if not ensure_npm(tinfoil, args.fixed_setup): +raise DevtoolError('npm required but not available') source = args.fetchuri if srctree: @@ -155,28 +158,13 @@ def add(args, config, basepath, workspace): tempdir = tempfile.mkdtemp(prefix='devtool') try: -builtnpm = False -while True: -try: -stdout, _ = exec_build_env_command(config.init_path, basepath, 'recipetool --color=%s create --devtool -o %s \'%s\' %s' % (color, tempdir, source, extracmdopts), watch=True) -except bb.process.ExecutionError as e: -if e.exitcode == 14: -if builtnpm: -raise DevtoolError('Re-running recipetool still failed to find npm') -# FIXME this is a horrible hack that is unfortunately -# necessary due to the fact that we can't run bitbake from -# inside recipetool since recipetool keeps tinfoil active -# with references to it
[OE-core] [PATCH 0/5] recipetool fetching fixes
Some improvements to recipetool create (and hence devtool add) around handling dependencies during fetching, which required extensive reworking of the code in order to use normal task execution instead of calling the fetcher directly. This also fixes bug 11710 which blocked devtool add / recipetool create from working in memres mode. Also includes a couple of general fetching improvements. NOTE: this patchset depends upon the tinfoil changes just sent to bitbake-devel. The following changes since commit ef68005a8c527e9b1d05b7769f0ec8ebe9ec3f91: webkitgtk: Upgrade to 2.16.5 (2017-07-17 13:49:04 +0100) are available in the git repository at: git://git.openembedded.org/openembedded-core-contrib paule/devtool27 http://cgit.openembedded.org/openembedded-core-contrib/log/?h=paule/devtool27 Paul Eggleton (5): classes/staging: change fixme debug message from note to debug recipetool: create: refactor code for ensuring npm is available devtool: extract: refactor kern-tools-native handling recipetool: create: ensure meaningful error for malformed tarballs recipetool: create: reimplement fetching with normal fetch/unpack tasks meta/classes/staging.bbclass | 2 +- scripts/lib/devtool/__init__.py | 31 - scripts/lib/devtool/standard.py | 73 +++- scripts/lib/recipetool/create.py | 211 +++ scripts/lib/recipetool/create_npm.py | 7 +- scripts/lib/recipetool/utils.py | 37 ++ 6 files changed, 226 insertions(+), 135 deletions(-) create mode 100644 scripts/lib/recipetool/utils.py -- 2.9.4 -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
[OE-core] [RFC PATCH 4/5] runtime/cases/_ptest.py: add skip status
The packages' test cases maybe skipped, check and save them. [YOCTO #11547] Signed-off-by: Robert Yang--- meta/lib/oeqa/runtime/cases/_ptest.py | 7 ++- 1 file changed, 6 insertions(+), 1 deletion(-) diff --git a/meta/lib/oeqa/runtime/cases/_ptest.py b/meta/lib/oeqa/runtime/cases/_ptest.py index 034bfe98959..9810bd15178 100644 --- a/meta/lib/oeqa/runtime/cases/_ptest.py +++ b/meta/lib/oeqa/runtime/cases/_ptest.py @@ -10,6 +10,7 @@ class PtestRunnerTest(OERuntimeTestCase): def parse_ptest(self, logfile): parser = Lparser(test_0_pass_regex="^PASS:(.+)", test_0_fail_regex="^FAIL:(.+)", + test_0_skip_regex="^SKIP:(.+)", section_0_begin_regex="^BEGIN: .*/(.+)/ptest", section_0_end_regex="^END: .*/(.+)/ptest") parser.init() @@ -38,6 +39,10 @@ class PtestRunnerTest(OERuntimeTestCase): result.store(current_section, name, status) continue +if line_type == 'test' and status == 'skip': +result.store(current_section, name, status) +continue + result.sort_tests() return result @@ -66,7 +71,7 @@ class PtestRunnerTest(OERuntimeTestCase): # Parse and save results parse_result = self.parse_ptest(ptest_runner_log) -parse_result.log_as_files(ptest_log_dir, test_status = ['pass','fail']) +parse_result.log_as_files(ptest_log_dir, test_status = ['pass','fail', 'skip']) if os.path.exists(ptest_log_dir_link): os.remove(ptest_log_dir_link) os.symlink(os.path.basename(ptest_log_dir), ptest_log_dir_link) -- 2.11.0 -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
[OE-core] [RFC PATCH 3/5] oeqa/utils/logparser.py: add skip status
Some test cases maybe skipped, let's parse it. [YOCTO #11547] Signed-off-by: Robert Yang--- meta/lib/oeqa/utils/logparser.py | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/meta/lib/oeqa/utils/logparser.py b/meta/lib/oeqa/utils/logparser.py index b377dcd2716..4355ce0b767 100644 --- a/meta/lib/oeqa/utils/logparser.py +++ b/meta/lib/oeqa/utils/logparser.py @@ -9,7 +9,7 @@ from . import ftools # A parser that can be used to identify weather a line is a test result or a section statement. class Lparser(object): -def __init__(self, test_0_pass_regex, test_0_fail_regex, section_0_begin_regex=None, section_0_end_regex=None, **kwargs): +def __init__(self, test_0_pass_regex, test_0_fail_regex, test_0_skip_regex, section_0_begin_regex=None, section_0_end_regex=None, **kwargs): # Initialize the arguments dictionary if kwargs: self.args = kwargs @@ -19,12 +19,13 @@ class Lparser(object): # Add the default args to the dictionary self.args['test_0_pass_regex'] = test_0_pass_regex self.args['test_0_fail_regex'] = test_0_fail_regex +self.args['test_0_skip_regex'] = test_0_skip_regex if section_0_begin_regex: self.args['section_0_begin_regex'] = section_0_begin_regex if section_0_end_regex: self.args['section_0_end_regex'] = section_0_end_regex -self.test_possible_status = ['pass', 'fail', 'error'] +self.test_possible_status = ['pass', 'fail', 'error', 'skip'] self.section_possible_status = ['begin', 'end'] self.initialized = False -- 2.11.0 -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
[OE-core] [RFC PATCH 2/5] runtime/cases/_ptest.py: revive it
* Make it work with current oeqa * Skip the test if ptest is not in DISTRO_FEATURES * Skip the test if ptest-pkgs is not in IMAGE_FEATURES * The logs are saved to: testimage/ptest_log -> testimage/ptest_log. * Will write a tool to make regression check [YOCTO #11547] Signed-off-by: Robert Yang--- meta/lib/oeqa/runtime/cases/_ptest.py | 91 --- 1 file changed, 30 insertions(+), 61 deletions(-) diff --git a/meta/lib/oeqa/runtime/cases/_ptest.py b/meta/lib/oeqa/runtime/cases/_ptest.py index aaed9a5352f..034bfe98959 100644 --- a/meta/lib/oeqa/runtime/cases/_ptest.py +++ b/meta/lib/oeqa/runtime/cases/_ptest.py @@ -1,28 +1,10 @@ -import os -import shutil -import subprocess - from oeqa.runtime.case import OERuntimeTestCase from oeqa.core.decorator.depends import OETestDepends from oeqa.core.decorator.oeid import OETestID -from oeqa.core.decorator.data import skipIfNotDataVar, skipIfNotFeature -from oeqa.runtime.decorator.package import OEHasPackage - -from oeqa.runtime.cases.dnf import DnfTest -from oeqa.utils.logparser import * -from oeqa.utils.httpserver import HTTPService - -class PtestRunnerTest(DnfTest): +from oeqa.core.decorator.data import skipIfNotFeature +from oeqa.utils.logparser import Lparser, Result -@classmethod -def setUpClass(cls): -rpm_deploy = os.path.join(cls.tc.td['DEPLOY_DIR'], 'rpm') -cls.repo_server = HTTPService(rpm_deploy, cls.tc.target.server_ip) -cls.repo_server.start() - -@classmethod -def tearDownClass(cls): -cls.repo_server.stop() +class PtestRunnerTest(OERuntimeTestCase): # a ptest log parser def parse_ptest(self, logfile): @@ -59,45 +41,32 @@ class PtestRunnerTest(DnfTest): result.sort_tests() return result -def _install_ptest_packages(self): -# Get ptest packages that can be installed in the image. -packages_dir = os.path.join(self.tc.td['DEPLOY_DIR'], 'rpm') -ptest_pkgs = [pkg[:pkg.find('-ptest')+6] - for _, _, filenames in os.walk(packages_dir) - for pkg in filenames - if 'ptest' in pkg - and pkg[:pkg.find('-ptest')] in self.tc.image_packages] - -repo_url = 'http://%s:%s' % (self.target.server_ip, - self.repo_server.port) -dnf_options = ('--repofrompath=oe-ptest-repo,%s ' - '--nogpgcheck ' - 'install -y' % repo_url) -self.dnf('%s %s ptest-runner' % (dnf_options, ' '.join(ptest_pkgs))) - -@skipIfNotFeature('package-management', - 'Test requires package-management to be in DISTRO_FEATURES') -@skipIfNotFeature('ptest', - 'Test requires package-management to be in DISTRO_FEATURES') -@skipIfNotDataVar('IMAGE_PKGTYPE', 'rpm', - 'RPM is not the primary package manager') -@OEHasPackage(['dnf']) +@OETestID(1600) +@skipIfNotFeature('ptest', 'Test requires ptest to be in DISTRO_FEATURES') +@skipIfNotFeature('ptest-pkgs', 'Test requires ptest-pkgs to be in IMAGE_FEATURES') @OETestDepends(['ssh.SSHTest.test_ssh']) def test_ptestrunner(self): -self.ptest_log = os.path.join(self.tc.td['TEST_LOG_DIR'], - 'ptest-%s.log' % self.tc.td['DATETIME']) -self._install_ptest_packages() - -(runnerstatus, result) = self.target.run('/usr/bin/ptest-runner > /tmp/ptest.log 2>&1', 0) -#exit code is !=0 even if ptest-runner executes because some ptest tests fail. -self.assertTrue(runnerstatus != 127, msg="Cannot execute ptest-runner!") -self.target.copyFrom('/tmp/ptest.log', self.ptest_log) -shutil.copyfile(self.ptest_log, "ptest.log") - -result = self.parse_ptest("ptest.log") -log_results_to_location = "./results" -if os.path.exists(log_results_to_location): -shutil.rmtree(log_results_to_location) -os.makedirs(log_results_to_location) - -result.log_as_files(log_results_to_location, test_status = ['pass','fail']) +import datetime + +test_log_dir = self.td['TEST_LOG_DIR'] +# Don't use self.td['DATETIME'], it's a cached value, not up-to-date, +# and may cause "File exists" when re-reun. +datetime = datetime.datetime.now().strftime('%Y%m%d%H%M%S') +ptest_log_dir_link = os.path.join(test_log_dir, 'ptest_log') +ptest_log_dir = '%s.%s' % (ptest_log_dir_link, datetime) +ptest_runner_log = os.path.join(ptest_log_dir, 'ptest-runner.log') + +status, output = self.target.run('ptest-runner', 0) +os.makedirs(ptest_log_dir) +with open(ptest_runner_log, 'w') as f: +f.write(output) + +# status !=0 is OK since some ptest tests may fail +self.assertTrue(status != 127, msg="Cannot execute
[OE-core] [RFC PATCH 1/5] oeqa/targetcontrol.py: simplify checking for qemu_use_kvm
The "if qemu_use_kvm" is not needed. Signed-off-by: Robert Yang--- meta/lib/oeqa/targetcontrol.py | 5 ++--- 1 file changed, 2 insertions(+), 3 deletions(-) diff --git a/meta/lib/oeqa/targetcontrol.py b/meta/lib/oeqa/targetcontrol.py index 3255e3a5c63..11e6c820e85 100644 --- a/meta/lib/oeqa/targetcontrol.py +++ b/meta/lib/oeqa/targetcontrol.py @@ -132,9 +132,8 @@ class QemuTarget(BaseTarget): dump_host_cmds = d.getVar("testimage_dump_host") dump_dir = d.getVar("TESTIMAGE_DUMP_DIR") qemu_use_kvm = d.getVar("QEMU_USE_KVM") -if qemu_use_kvm and \ - (qemu_use_kvm == "True" and "x86" in d.getVar("MACHINE") or \ -d.getVar("MACHINE") in qemu_use_kvm.split()): +if qemu_use_kvm == "True" and "x86" in d.getVar("MACHINE") or \ +d.getVar("MACHINE") in qemu_use_kvm.split(): use_kvm = True else: use_kvm = False -- 2.11.0 -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
[OE-core] [RFC PATCH 5/5] runtime/cases/_ptest.py: rename it to ptest.py
It works now. [YOCTO #11547] Signed-off-by: Robert Yang--- meta/lib/oeqa/runtime/cases/{_ptest.py => ptest.py} | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename meta/lib/oeqa/runtime/cases/{_ptest.py => ptest.py} (100%) diff --git a/meta/lib/oeqa/runtime/cases/_ptest.py b/meta/lib/oeqa/runtime/cases/ptest.py similarity index 100% rename from meta/lib/oeqa/runtime/cases/_ptest.py rename to meta/lib/oeqa/runtime/cases/ptest.py -- 2.11.0 -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
[OE-core] [RFC PATCH 0/5] revive runtime/cases/_ptest.py
Hello, These patches can make ptest test case work, RP has suggested we write a tool to do the regression check on ptest result, I think that the use case is like: $ bitbake -ctestiamge # Suppose we add ptest to default test cases in the future # Upgrade a recipe form V1.0 to V1.1 $ bitbake -ctestiamge # Run the test again Then the regression check tool can report what's different (passed, failed, skipped) between V1.0 and V1.1. Currently, I'm not sure about where to save the ptest results, I saved it to ${WORKDIR}/testimage/ptest_log atm, e.g.: tmp/work/qemux86-poky-linux/core-image-minimal/1.0-r0/testimage/ptest_log But it will be removed after -cclean, then no regression check can be made, so I'd like to save the ptest results to DEPLOY_DIR_IMAGE if no objections, and make -cclean not remove them. (Or only keep the latest 2 results). And I'm not sure where to add the regression check/tool, maybe one of: 1) Add a separate tool in oe-core/scripts, this can make it easy to do regression check among different build directories, and runtime/cases/_ptest.py can invoke it. 2) Add it to runtime/cases/_ptest.py directly 3) Add it to buildhistory I prefer the first one, please feel free to give your comments. // Robert The following changes since commit ef68005a8c527e9b1d05b7769f0ec8ebe9ec3f91: webkitgtk: Upgrade to 2.16.5 (2017-07-17 13:49:04 +0100) are available in the git repository at: git://git.openembedded.org/openembedded-core-contrib rbt/ptest http://cgit.openembedded.org/openembedded-core-contrib/log/?h=rbt/ptest Robert Yang (5): oeqa/targetcontrol.py: simplify checking for qemu_use_kvm runtime/cases/_ptest.py: revive it oeqa/utils/logparser.py: add skip status runtime/cases/_ptest.py: add skip status runtime/cases/_ptest.py: rename it to ptest.py meta/lib/oeqa/runtime/cases/_ptest.py | 103 -- meta/lib/oeqa/runtime/cases/ptest.py | 77 + meta/lib/oeqa/targetcontrol.py| 5 +- meta/lib/oeqa/utils/logparser.py | 5 +- 4 files changed, 82 insertions(+), 108 deletions(-) delete mode 100644 meta/lib/oeqa/runtime/cases/_ptest.py create mode 100644 meta/lib/oeqa/runtime/cases/ptest.py -- 2.11.0 -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core