[OE-core] [PATCH 1/2] openssl: Support musl-x32 build

2017-07-19 Thread swee . aun . khor 
From: sweeaun 

Support musl-x32 build which to build openssl with 32 bits.

Signed-off-by: sweeaun 
---
 meta/recipes-connectivity/openssl/openssl.inc | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/meta/recipes-connectivity/openssl/openssl.inc 
b/meta/recipes-connectivity/openssl/openssl.inc
index ce295e8..a56bd6e 100644
--- a/meta/recipes-connectivity/openssl/openssl.inc
+++ b/meta/recipes-connectivity/openssl/openssl.inc
@@ -66,7 +66,8 @@ do_configure () {
case $os in
linux-gnueabi |\
linux-gnuspe |\
-   linux-musl*)
+   linux-musleabi |\
+   linux-muslspe)
os=linux
;;
*)
@@ -98,7 +99,7 @@ do_configure () {
linux-i686)
target=debian-i386-i686/cmov
;;
-   linux-gnux32-x86_64)
+   linux-gnux32-x86_64 | linux-muslx32-x86_64 )
target=linux-x32
;;
linux-gnu64-x86_64)
-- 
2.7.4

-- 
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

[OE-core] [PATCH 2/2] libffi: Support musl-x32 build

2017-07-19 Thread swee . aun . khor 
From: sweeaun 

Added target musl-x32 in configure.ac to support musl-x32 build in libffi.

Signed-off-by: sweeaun 
---
 .../0001-libffi-Support-musl-x32-build.patch   | 30 ++
 meta/recipes-support/libffi/libffi_3.2.1.bb|  1 +
 2 files changed, 31 insertions(+)
 create mode 100644 
meta/recipes-support/libffi/libffi/0001-libffi-Support-musl-x32-build.patch

diff --git 
a/meta/recipes-support/libffi/libffi/0001-libffi-Support-musl-x32-build.patch 
b/meta/recipes-support/libffi/libffi/0001-libffi-Support-musl-x32-build.patch
new file mode 100644
index 000..6b167c8
--- /dev/null
+++ 
b/meta/recipes-support/libffi/libffi/0001-libffi-Support-musl-x32-build.patch
@@ -0,0 +1,30 @@
+From 69c3906c85c791716bf650aa36d9361d22acf3fb Mon Sep 17 00:00:00 2001
+From: sweeaun 
+Date: Thu, 6 Jul 2017 16:32:46 -0700
+Subject: [PATCH] libffi: Support musl x32 build
+
+Support libffi build with target musl-x32.
+
+Upstream-Status: Pending
+
+Signed-off-by: sweeaun 
+---
+ configure.ac | 2 +-
+ 1 file changed, 1 insertion(+), 1 deletion(-)
+
+diff --git a/configure.ac b/configure.ac
+index a7bf5ee..8ebe99c 100644
+--- a/configure.ac
 b/configure.ac
+@@ -177,7 +177,7 @@ case "$host" in
+   TARGETDIR=x86
+   if test $ac_cv_sizeof_size_t = 4; then
+ case "$host" in
+-  *-gnux32)
++  *-gnux32 | *-muslx32)
+ TARGET=X86_64
+ ;;
+   *)
+-- 
+2.7.4
+
diff --git a/meta/recipes-support/libffi/libffi_3.2.1.bb 
b/meta/recipes-support/libffi/libffi_3.2.1.bb
index 43eee8e..2a3f4b7 100644
--- a/meta/recipes-support/libffi/libffi_3.2.1.bb
+++ b/meta/recipes-support/libffi/libffi_3.2.1.bb
@@ -13,6 +13,7 @@ SRC_URI = "ftp://sourceware.org/pub/libffi/${BP}.tar.gz \
file://not-win32.patch \
   file://0001-mips-Use-compiler-internal-define-for-linux.patch \
file://0001-mips-fix-MIPS-softfloat-build-issue.patch \
+   file://0001-libffi-Support-musl-x32-build.patch \
   "
 
 SRC_URI[md5sum] = "83b89587607e3eb65c70d361f13bab43"
-- 
2.7.4

-- 
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

[OE-core] [PATCH 0/2] Support MUSL-x32 build for openssl and libffi

2017-07-19 Thread swee . aun . khor 
From: sweeaun 

Modification to enable MUSL-x32 build for openssl and libffi recipes.

The following changes since commit 57f606b12b339c82e6981d7ac32450c00d787085:

  libgcrypt: upgrade to 1.7.8 (2017-07-19 15:13:40 +0100)

are available in the git repository at:

  git://git.yoctoproject.org/poky-contrib sweeaun/musl_x32_patch3
  
http://git.yoctoproject.org/cgit.cgi/poky-contrib/log/?h=sweeaun/musl_x32_patch3

sweeaun (2):
  openssl: Support musl-x32 build
  libffi: Support musl-x32 build

 meta/recipes-connectivity/openssl/openssl.inc  |  5 ++--
 .../0001-libffi-Support-musl-x32-build.patch   | 30 ++
 meta/recipes-support/libffi/libffi_3.2.1.bb|  1 +
 3 files changed, 34 insertions(+), 2 deletions(-)
 create mode 100644 
meta/recipes-support/libffi/libffi/0001-libffi-Support-musl-x32-build.patch

-- 
2.7.4

-- 
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

[OE-core] ✗ patchtest: failure for recipetool: create: handle git URLs specifying only a tag

2017-07-19 Thread Patchwork 
== Series Details ==

Series: recipetool: create: handle git URLs specifying only a tag
Revision: 1
URL   : https://patchwork.openembedded.org/series/7824/
State : failure

== Summary ==


Thank you for submitting this patch series to OpenEmbedded Core. This is
an automated response. Several tests have been executed on the proposed
series by patchtest resulting in the following failures:



* Issue Series does not apply on top of target branch 
[test_series_merge_on_head] 
  Suggested fixRebase your series on top of targeted branch
  Targeted branch  master (currently at c4c2fb3732)



If you believe any of these test results are incorrect, please reply to the
mailing list (openembedded-core@lists.openembedded.org) raising your concerns.
Otherwise we would appreciate you correcting the issues and submitting a new
version of the patchset if applicable. Please ensure you add/increment the
version number when sending the new version (i.e. [PATCH] -> [PATCH v2] ->
[PATCH v3] -> ...).

---
Test framework: http://git.yoctoproject.org/cgit/cgit.cgi/patchtest
Test suite: http://git.yoctoproject.org/cgit/cgit.cgi/patchtest-oe

-- 
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

[OE-core] [PATCH] recipetool: create: handle git URLs specifying only a tag

2017-07-19 Thread Stanley Phoong 
This patch depends on Rebecca's patch on Bug #11389. Her patch has already
been submitted into the mailing list.
lists.openembedded.org/pipermail/openembedded-core/2017-July/139574.html

Please patch mine together with her patch.

Stanley Phoong (1):
  recipetool: create: handle git URLs specifying only a tag

 scripts/lib/recipetool/create.py | 27 ++-
 1 file changed, 26 insertions(+), 1 deletion(-)

-- 
2.7.4

-- 
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

[OE-core] [PATCH] recipetool: create: handle git URLs specifying only a tag

2017-07-19 Thread Stanley Phoong 
If a git URL is passed to recipetool create with a tag=, recipetool
should handle it assuming that the tag is valid. Also, during the
creation of recipe, it seems that the automation for replacing
${PV} at the SRCURI for tag, (e.g mbed-tls-${PV}) is causing some
issue due to PV assuming it's a git source. A fix is implemented in
this patch as a workaround for this issue. This fix will be submitted
in a separate patch as a separate issue.

[YOCTO #11393]

Signed-off-by: Stanley Phoong 
---
 scripts/lib/recipetool/create.py | 27 ++-
 1 file changed, 26 insertions(+), 1 deletion(-)

diff --git a/scripts/lib/recipetool/create.py b/scripts/lib/recipetool/create.py
index a45b90d..0619428 100644
--- a/scripts/lib/recipetool/create.py
+++ b/scripts/lib/recipetool/create.py
@@ -434,6 +434,18 @@ def create_recipe(args):
 # 2. User did not set 'nobranch=1' in srcuri, and
 # 3. Source revision is not '${AUTOREV}'
 fetchuri = fetchuri + ';nobranch=1'
+# Create an empty storeTagName to ensure the checkers do not point to 
a null variable
+storeTagName = ''
+tag_re = re.compile(';tag=([^;]+)')
+tag = tag_re.search(fetchuri)
+if tag:
+scheme, host, path, user, pswd, parms = 
bb.fetch2.decodeurl(fetchuri)
+# Keep a copy of tag and append nobranch=1 then remove tag from 
URL,
+# Will re-introduce tag argument after bitbake fetcher process is 
complete.
+storeTagName = parms['tag']
+parms.update({('nobranch', '1')})
+del parms['tag']
+fetchuri = bb.fetch2.encodeurl((scheme, host, path, user, pswd, 
parms))
 tempsrc = tempfile.mkdtemp(prefix='recipetool-')
 srctree = tempsrc
 d = bb.data.createCopy(tinfoil.config_data)
@@ -488,6 +500,17 @@ def create_recipe(args):
 mbrch = '\n  ' + '\n  '.join(get_branch)
 logger.error('Revision %s was found on multiple branches: 
%s\nPlease provide the correct branch in the source URL with ;branch= 
(and ensure you use quotes around the URL to avoid the shell interpreting the 
";")' % (srcrev, mbrch))
 sys.exit(1)
+if storeTagName:
+# Re-introduced tag variable from storeTagName
+# Check srcrev using tag and check validity of the tag
+try:
+cmd = ('git rev-list -n 1 %s' % (storeTagName))
+check_tag, check_tag_err = bb.process.run('%s' % cmd, 
cwd=srctree)
+srcrev = check_tag.split()[0]
+except bb.process.ExecutionError as err:
+logger.error(str(err))
+logger.error("Possibly wrong tag name is provided")
+sys.exit(1)
 if os.path.exists(os.path.join(srctree, '.gitmodules')) and 
srcuri.startswith('git://'):
 srcuri = 'gitsm://' + srcuri[6:]
 logger.info('Fetching submodules...')
@@ -628,10 +651,12 @@ def create_recipe(args):
 lines_before.append('SRC_URI[md5sum] = "%s"' % md5value)
 if sha256value:
 lines_before.append('SRC_URI[sha256sum] = "%s"' % sha256value)
+pv_srcpv = False
 if srcuri and supports_srcrev(srcuri):
 lines_before.append('')
 lines_before.append('# Modify these as desired')
 lines_before.append('PV = "%s+git${SRCPV}"' % (realpv or '1.0'))
+pv_srcpv = True
 if not args.autorev and srcrev == '${AUTOREV}':
 if os.path.exists(os.path.join(srctree, '.git')):
 (stdout, _) = bb.process.run('git rev-parse HEAD', cwd=srctree)
@@ -758,7 +783,7 @@ def create_recipe(args):
 skipblank = True
 continue
 elif line.startswith('SRC_URI = '):
-if realpv:
+if realpv and not pv_srcpv:
 line = line.replace(realpv, '${PV}')
 elif line.startswith('PV = '):
 if realpv:
-- 
2.7.4

-- 
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

[OE-core] [PATCH v2] glibc-package.inc: add support for armeb of multilib

2017-07-19 Thread zhengrq 
Add support for armeb of multilib.

Signed-off-by: zhengrq 
---
 meta/recipes-core/glibc/glibc-package.inc | 4 
 1 file changed, 4 insertions(+)

diff --git a/meta/recipes-core/glibc/glibc-package.inc 
b/meta/recipes-core/glibc/glibc-package.inc
index 0281251..1a19d4f 100644
--- a/meta/recipes-core/glibc/glibc-package.inc
+++ b/meta/recipes-core/glibc/glibc-package.inc
@@ -131,6 +131,10 @@ do_install_append_arm () {
do_install_armmultilib
 }
 
+do_install_append_armb () {
+   do_install_armmultilib
+}
+
 do_install_armmultilib () {
 
oe_multilib_header bits/endian.h bits/fcntl.h bits/fenv.h 
bits/fp-fast.h bits/hwcap.h bits/ipc.h bits/link.h bits/wordsize.h
-- 
2.7.4



-- 
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

[OE-core] [PATCH] glibc-package.inc: add support for armeb of multilib

2017-07-19 Thread zhengrq 
   add support for armeb of multilib

Signed-off-by: zhengrq 
---
 meta/recipes-core/glibc/glibc-package.inc | 4 
 1 file changed, 4 insertions(+)

diff --git a/meta/recipes-core/glibc/glibc-package.inc 
b/meta/recipes-core/glibc/glibc-package.inc
index 0281251..a6e7cfa 100644
--- a/meta/recipes-core/glibc/glibc-package.inc
+++ b/meta/recipes-core/glibc/glibc-package.inc
@@ -131,6 +131,10 @@ do_install_append_arm () {
do_install_armmultilib
 }
 
+do_install_append_armb () {
+do_install_armmultilib
+}
+
 do_install_armmultilib () {
 
oe_multilib_header bits/endian.h bits/fcntl.h bits/fenv.h 
bits/fp-fast.h bits/hwcap.h bits/ipc.h bits/link.h bits/wordsize.h
-- 
2.7.4



-- 
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

Re: [OE-core] [RFC PATCH 0/5] revive runtime/cases/_ptest.py

2017-07-19 Thread Robert Yang 



On 07/19/2017 04:16 PM, Robert Yang wrote:

Hello,

These patches can make ptest test case work, RP has suggested we write a tool to
do the regression check on ptest result, I think that the use case is like:

$ bitbake  -ctestiamge # Suppose we add ptest to default test cases in 
the future
# Upgrade a recipe form V1.0 to V1.1
$ bitbake  -ctestiamge # Run the test again

Then the regression check tool can report what's different (passed, failed,
skipped) between V1.0 and V1.1.

Currently, I'm not sure about where to save the ptest results, I saved it to
${WORKDIR}/testimage/ptest_log atm, e.g.:
tmp/work/qemux86-poky-linux/core-image-minimal/1.0-r0/testimage/ptest_log


I still have to think about more about where to put the test result.



But it will be removed after -cclean, then no regression check can be made, so
I'd like to save the ptest results to DEPLOY_DIR_IMAGE if no objections, and
make -cclean not remove them. (Or only keep the latest 2 results).

And I'm not sure where to add the regression check/tool, maybe one of:
1) Add a separate tool in oe-core/scripts, this can make it easy to do 
regression
   check among different build directories, and runtime/cases/_ptest.py can 
invoke it.


I'm leaning to add a script called ptest-regression-check which is more
flexible, the cases/ptest.py or buildhistory (also the user) can run it
when needed.

// Robert


2) Add it to runtime/cases/_ptest.py directly
3) Add it to buildhistory

I prefer the first one, please feel free to give your comments.

// Robert

The following changes since commit ef68005a8c527e9b1d05b7769f0ec8ebe9ec3f91:

  webkitgtk: Upgrade to 2.16.5 (2017-07-17 13:49:04 +0100)

are available in the git repository at:

  git://git.openembedded.org/openembedded-core-contrib rbt/ptest
  http://cgit.openembedded.org/openembedded-core-contrib/log/?h=rbt/ptest

Robert Yang (5):
  oeqa/targetcontrol.py: simplify checking for qemu_use_kvm
  runtime/cases/_ptest.py: revive it
  oeqa/utils/logparser.py: add skip status
  runtime/cases/_ptest.py: add skip status
  runtime/cases/_ptest.py: rename it to ptest.py

 meta/lib/oeqa/runtime/cases/_ptest.py | 103 --
 meta/lib/oeqa/runtime/cases/ptest.py  |  77 +
 meta/lib/oeqa/targetcontrol.py|   5 +-
 meta/lib/oeqa/utils/logparser.py  |   5 +-
 4 files changed, 82 insertions(+), 108 deletions(-)
 delete mode 100644 meta/lib/oeqa/runtime/cases/_ptest.py
 create mode 100644 meta/lib/oeqa/runtime/cases/ptest.py


--
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

Re: [OE-core] [PATCH] gcc-7.inc: add new warning "Wnot-cross-compiler"

2017-07-19 Thread Khem Raj 
On Wed, Jul 19, 2017 at 7:26 PM, Andre McCurdy  wrote:
> On Wed, Jul 19, 2017 at 2:57 PM, Bystricky, Juro
>  wrote:
>>> precisely, the problem is that some host compiler may silently ignore
>>> unknown warnings and some host may not be using gcc as default system
>>> compiler at all e.g. mageia distro and may be more in future.
>>
>> Yes, it does not nor it attempts to solve all toolchain issues.
>> The expectation is that a compiler will choke on an unrecognized option.
>> For example, gcc will do the following:
>>
>> $ gcc -Wnot-cross-compiler hello_world.c
>> gcc: error: unrecognized command line option ‘-Wnot-cross-compiler’
>>
>> As for non-gcc compilers: yes, they may silently ignore unrecognized options
>> (which IMHO is just wrong). In that case the new options does not work as 
>> intended,
>> but it does no harm either.
>> Anyway, the intended use was to add something like this a .conf file:
>>
>> TARGET_CC_ARCH_append_class-target = " -Wnot-cross-compiler 
>> -Werror=not-cross-compiler"
>
> Personally, I think we already try to pass too much via CC or the
> compiler command line (e.g. -fdebug-prefix-map=XXX). Has there ever
> been any thought of OE providing a toolchain wrapper, which could pass
> these kinds of housekeeping options to the underlying toolchain while
> keeping build logs clean and without the worry that CC, CFLAGS, etc
> get ignored or clobbered by a custom Makefile somewhere?

we could do it by providing customized spec file
but this will not be good for external toolchains
-- 
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

Re: [OE-core] [PATCH] gcc-7.inc: add new warning "Wnot-cross-compiler"

2017-07-19 Thread Andre McCurdy 
On Wed, Jul 19, 2017 at 2:57 PM, Bystricky, Juro
 wrote:
>> precisely, the problem is that some host compiler may silently ignore
>> unknown warnings and some host may not be using gcc as default system
>> compiler at all e.g. mageia distro and may be more in future.
>
> Yes, it does not nor it attempts to solve all toolchain issues.
> The expectation is that a compiler will choke on an unrecognized option.
> For example, gcc will do the following:
>
> $ gcc -Wnot-cross-compiler hello_world.c
> gcc: error: unrecognized command line option ‘-Wnot-cross-compiler’
>
> As for non-gcc compilers: yes, they may silently ignore unrecognized options
> (which IMHO is just wrong). In that case the new options does not work as 
> intended,
> but it does no harm either.
> Anyway, the intended use was to add something like this a .conf file:
>
> TARGET_CC_ARCH_append_class-target = " -Wnot-cross-compiler 
> -Werror=not-cross-compiler"

Personally, I think we already try to pass too much via CC or the
compiler command line (e.g. -fdebug-prefix-map=XXX). Has there ever
been any thought of OE providing a toolchain wrapper, which could pass
these kinds of housekeeping options to the underlying toolchain while
keeping build logs clean and without the worry that CC, CFLAGS, etc
get ignored or clobbered by a custom Makefile somewhere?
-- 
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

Re: [OE-core] [PATCH] gcc-7.inc: add new warning "Wnot-cross-compiler"

2017-07-19 Thread Khem Raj 
On Wed, Jul 19, 2017 at 6:35 PM Burton, Ross  wrote:

>
> On 19 July 2017 at 23:32, Khem Raj  wrote:
>
>> it solves x86 specific issues alone
>>
>
> It solves host = target issues, so if you're building for ARM on an
> aarch64 server you can have the same issues.
>

In theory I agree in practice it may be not that
Common let's see what gcc community has to say about such a patch


> Ross
>
-- 
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

Re: [OE-core] [PATCH] gcc-7.inc: add new warning "Wnot-cross-compiler"

2017-07-19 Thread Burton, Ross 
On 19 July 2017 at 23:32, Khem Raj  wrote:

> it solves x86 specific issues alone
>

It solves host = target issues, so if you're building for ARM on an aarch64
server you can have the same issues.

Ross
-- 
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

Re: [OE-core] [PATCH] gcc-7.inc: add new warning "Wnot-cross-compiler"

2017-07-19 Thread Khem Raj 
On Wed, Jul 19, 2017 at 5:57 PM, Bystricky, Juro
 wrote:
>> precisely, the problem is that some host compiler may silently ignore
>> unknown warnings and some host may not be using gcc as default system
>> compiler at all e.g. mageia distro and may be more in future.
>>
>
> Yes, it does not nor it attempts to solve all toolchain issues.
> The expectation is that a compiler will choke on an unrecognized option.
> For example, gcc will do the following:
>
> $ gcc -Wnot-cross-compiler hello_world.c
> gcc: error: unrecognized command line option ‘-Wnot-cross-compiler’
>
> As for non-gcc compilers: yes, they may silently ignore unrecognized options
> (which IMHO is just wrong). In that case the new options does not work as 
> intended,
> but it does no harm either.
> Anyway, the intended use was to add something like this a .conf file:
>
> TARGET_CC_ARCH_append_class-target = " -Wnot-cross-compiler 
> -Werror=not-cross-compiler"
>

it solves x86 specific issues alone
and we have to carry this patch since
I have less hopes for gcc to accept it.


>
-- 
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

Re: [OE-core] [PATCH] gcc-7.inc: add new warning "Wnot-cross-compiler"

2017-07-19 Thread Bystricky, Juro 
> precisely, the problem is that some host compiler may silently ignore
> unknown warnings and some host may not be using gcc as default system
> compiler at all e.g. mageia distro and may be more in future.
> 

Yes, it does not nor it attempts to solve all toolchain issues.
The expectation is that a compiler will choke on an unrecognized option. 
For example, gcc will do the following: 

$ gcc -Wnot-cross-compiler hello_world.c
gcc: error: unrecognized command line option ‘-Wnot-cross-compiler’

As for non-gcc compilers: yes, they may silently ignore unrecognized options 
(which IMHO is just wrong). In that case the new options does not work as 
intended,
but it does no harm either.
Anyway, the intended use was to add something like this a .conf file:

TARGET_CC_ARCH_append_class-target = " -Wnot-cross-compiler 
-Werror=not-cross-compiler"


-- 
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

Re: [OE-core] [PATCH 0/5] Add openssl 1.1

2017-07-19 Thread Alexander Kanavin 

On 07/19/2017 07:55 PM, Andre McCurdy wrote:

Openssl 1.1 is an opt-out; it has the same recipe name as openssl 1.0 had, and 
so
all dependencies are compiled with it by default. If there's an API issue, 
please
fix it, or adjust the recipe to depend on 'openssl10' (which is a lesser 
solution,
and subject to openssl 1.0 eventually being removed from oe-core).


Are there any -native recipes which still need 1.0? Or could support
for openssl10-native be dropped as part of this patch set?


There are also other layers out there which may need 1.0-native, and so 
this would cause unnecessary breakage. Let's just leave 1.0 alone and 
drop it altogether when time comes.


Alex
--
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

Re: [OE-core] [PATCH 2/5] openssh: depend on openssl 1.0

2017-07-19 Thread Alexander Kanavin 

On 07/19/2017 07:46 PM, Andre McCurdy wrote:

Openssl maintainers are not in a hurry to get 1.1 support in;


Openssh maintainers?


Yes, them.

Alex
--
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

[OE-core] Fwd: Nothing PROVIDES 'libvdpau'

2017-07-19 Thread Jason Liu 
Hello Openembedded,

Currently I have a compile error saying: Nothing PROVIDES 'libvdpau'.
I opened a issue on git but I think nobody are watching the git one so I
post here.
The detail can be seen here: https://github.com/openembedded/meta-
openembedded/issues/47

Regards,
Jason
-- 
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

Re: [OE-core] [PATCH 0/5] Add openssl 1.1

2017-07-19 Thread Andre McCurdy 
On Wed, Jul 19, 2017 at 6:19 AM, Alexander Kanavin
 wrote:
> This patch series introduces the recipe for openssl 1.1 (openssl 1.0 is 
> preserved
> but renamed to openssl10), and does a few necessary adjustmenets and updates 
> to other
> recipes.
>
> Openssl 1.1 is an opt-out; it has the same recipe name as openssl 1.0 had, 
> and so
> all dependencies are compiled with it by default. If there's an API issue, 
> please
> fix it, or adjust the recipe to depend on 'openssl10' (which is a lesser 
> solution,
> and subject to openssl 1.0 eventually being removed from oe-core).

Are there any -native recipes which still need 1.0? Or could support
for openssl10-native be dropped as part of this patch set?

> The following changes since commit 50af58cedb3153f058d23a0a9584cf69bdcce81b:
>
>   systemd: refuse to load units with errors (CVE-2017-182) (2017-07-19 
> 11:30:16 +0100)
>
> are available in the git repository at:
>
>   git://git.yoctoproject.org/poky-contrib akanavin/openssl-1.1
>   
> http://git.yoctoproject.org/cgit.cgi/poky-contrib/log/?h=akanavin/openssl-1.1
>
> Alexander Kanavin (4):
>   openssl: add a 1.1 version
>   openssh: depend on openssl 1.0
>   cryptodev-tests: depend on openssl 1.0
>   gstreamer-plugins-bad: replace openssl dependency with nettle for hls
> plugin
>
> Otavio Salvador (1):
>   u-boot: Upgrade to 2017.07 release
>
>  meta/conf/distro/include/no-static-libs.inc|   3 +
>  ...ommon_2017.05.inc => u-boot-common_2017.07.inc} |   2 +-
>  ...utils_2017.05.bb => u-boot-fw-utils_2017.07.bb} |   0
>  ...kimage_2017.05.bb => u-boot-mkimage_2017.07.bb} |   0
>  .../{u-boot_2017.05.bb => u-boot_2017.07.bb}   |   0
>  meta/recipes-connectivity/openssh/openssh_7.5p1.bb |   3 +-
>  ...ve-test-that-requires-running-as-non-root.patch |  49 +++
>  ...1-Take-linking-flags-from-LDFLAGS-env-var.patch |  43 ++
>  .../recipes-connectivity/openssl/openssl/run-ptest |   4 +-
>  .../openssl/{openssl.inc => openssl10.inc} |  14 +-
>  ...build-with-clang-using-external-assembler.patch |   0
>  .../{openssl => openssl10}/Makefiles-ptest.patch   |   0
>  .../Use-SHA256-not-MD5-as-default-digest.patch |   0
>  .../configure-musl-target.patch|   0
>  .../{openssl => openssl10}/configure-targets.patch |   0
>  .../debian/c_rehash-compat.patch   |   0
>  .../openssl/{openssl => openssl10}/debian/ca.patch |   0
>  .../debian/debian-targets.patch|   0
>  .../{openssl => openssl10}/debian/man-dir.patch|   0
>  .../debian/man-section.patch   |   0
>  .../{openssl => openssl10}/debian/no-rpath.patch   |   0
>  .../debian/no-symbolic.patch   |   0
>  .../{openssl => openssl10}/debian/pic.patch|   0
>  .../debian/version-script.patch|   0
>  .../debian1.0.2/block_digicert_malaysia.patch  |   0
>  .../debian1.0.2/block_diginotar.patch  |   0
>  .../debian1.0.2/soname.patch   |   0
>  .../debian1.0.2/version-script.patch   |   0
>  .../engines-install-in-libdir-ssl.patch|   0
>  .../openssl/{openssl => openssl10}/find.pl |   0
>  .../{openssl => openssl10}/oe-ldflags.patch|   0
>  .../openssl-1.0.2a-x32-asm.patch   |   0
>  .../{openssl => openssl10}/openssl-c_rehash.sh |   0
>  .../openssl-fix-des.pod-error.patch|   0
>  .../openssl-util-perlpath.pl-cwd.patch |   0
>  .../openssl_fix_for_x32.patch  |   0
>  .../openssl/{openssl => openssl10}/parallel.patch  |   0
>  .../{openssl => openssl10}/ptest-deps.patch|   0
>  .../ptest_makefile_deps.patch  |   0
>  .../openssl/openssl10/run-ptest|   2 +
>  .../{openssl => openssl10}/shared-libs.patch   |   0
>  .../{openssl_1.0.2l.bb => openssl10_1.0.2l.bb} |   4 +-
>  .../recipes-connectivity/openssl/openssl_1.1.0f.bb | 146 
> +
>  .../cryptodev/cryptodev-tests_1.8.bb   |   2 +-
>  .../gstreamer/gstreamer1.0-plugins-bad.inc |   4 +-
>  45 files changed, 265 insertions(+), 11 deletions(-)
>  rename meta/recipes-bsp/u-boot/{u-boot-common_2017.05.inc => 
> u-boot-common_2017.07.inc} (88%)
>  rename meta/recipes-bsp/u-boot/{u-boot-fw-utils_2017.05.bb => 
> u-boot-fw-utils_2017.07.bb} (100%)
>  rename meta/recipes-bsp/u-boot/{u-boot-mkimage_2017.05.bb => 
> u-boot-mkimage_2017.07.bb} (100%)
>  rename meta/recipes-bsp/u-boot/{u-boot_2017.05.bb => u-boot_2017.07.bb} 
> (100%)
>  create mode 100644 
> meta/recipes-connectivity/openssl/openssl/0001-Remove-test-that-requires-running-as-non-root.patch
>  create mode 100644 
> meta/recipes-connectivity/openssl/openssl/0001-Take-linking-flags-from-LDFLAGS-env-var.patch
>  mode change 100755 => 100644 
> meta/recipes-connectivity/openssl/openssl/run-ptest
>  rename

[OE-core] [PATCH] python*-setuptools: upgrade to 36.2.0

2017-07-19 Thread Jose Lamego 
Both python-setuptools and python3-setuptools need to be
upgraded to latest upstream version.

license checksum is now targeted to be performed over the actual
license text at license file.

These changes were tested using qemux86 with core-image-minimal.

Signed-off-by: Jose Lamego 
---

Notes:
This patch replaces previous submission due to latest stable
version at upstream got upgraded to a newer version.

 meta/recipes-devtools/python/python-setuptools.inc| 8 
 .../{python-setuptools_32.1.1.bb => python-setuptools_36.2.0.bb}  | 0
 ...{python3-setuptools_32.1.1.bb => python3-setuptools_36.2.0.bb} | 0
 3 files changed, 4 insertions(+), 4 deletions(-)
 rename meta/recipes-devtools/python/{python-setuptools_32.1.1.bb => 
python-setuptools_36.2.0.bb} (100%)
 rename meta/recipes-devtools/python/{python3-setuptools_32.1.1.bb => 
python3-setuptools_36.2.0.bb} (100%)

diff --git a/meta/recipes-devtools/python/python-setuptools.inc 
b/meta/recipes-devtools/python/python-setuptools.inc
index 40f47d4..cd84233 100644
--- a/meta/recipes-devtools/python/python-setuptools.inc
+++ b/meta/recipes-devtools/python/python-setuptools.inc
@@ -3,14 +3,14 @@ HOMEPAGE = "https://pypi.python.org/pypi/setuptools;
 SECTION = "devel/python"
 LICENSE = "MIT"
 
-LIC_FILES_CHKSUM = 
"file://setup.py;beginline=146;endline=146;md5=3e8df024d6c1442d18e84acf8fbbc475"
+LIC_FILES_CHKSUM = 
"file://LICENSE;beginline=1;endline=19;md5=9a33897f1bca1160d7aad3835152e158"
 
 SRCNAME = "setuptools"
 
-SRC_URI = 
"https://files.pythonhosted.org/packages/source/s/${SRCNAME}/${SRCNAME}-${PV}.tar.gz;
+SRC_URI = 
"https://files.pythonhosted.org/packages/source/s/${SRCNAME}/${SRCNAME}-${PV}.zip;
 
-SRC_URI[md5sum] = "8b67868c3430e978833ebd0d1b766694"
-SRC_URI[sha256sum] = 
"8303fb24306385f09bf8b0e5a385c1548e42e8efc08558d64049bc0d55ea012d"
+SRC_URI[md5sum] = "60df703040ad8024d24727dc95483740"
+SRC_URI[sha256sum] = 
"4c2bda3829c9dbbe9c2b33d89c4b1cb6d45813615ab8e248ad352e3697a96d81"
 
 UPSTREAM_CHECK_URI = "https://pypi.python.org/pypi/setuptools;
 
diff --git a/meta/recipes-devtools/python/python-setuptools_32.1.1.bb 
b/meta/recipes-devtools/python/python-setuptools_36.2.0.bb
similarity index 100%
rename from meta/recipes-devtools/python/python-setuptools_32.1.1.bb
rename to meta/recipes-devtools/python/python-setuptools_36.2.0.bb
diff --git a/meta/recipes-devtools/python/python3-setuptools_32.1.1.bb 
b/meta/recipes-devtools/python/python3-setuptools_36.2.0.bb
similarity index 100%
rename from meta/recipes-devtools/python/python3-setuptools_32.1.1.bb
rename to meta/recipes-devtools/python/python3-setuptools_36.2.0.bb
-- 
2.7.4

-- 
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

Re: [OE-core] [PATCH 4/6] bluez5: upgrade to 5.46

2017-07-19 Thread Marc Ferland 
On Wed, Jul 19, 2017 at 11:01 AM, Maxin B. John  wrote:
> 5.45 -> 5.46
>
> Signed-off-by: Maxin B. John 
> ---
>  meta/recipes-connectivity/bluez5/{bluez5_5.45.bb => bluez5_5.46.bb} | 4 ++--
>  1 file changed, 2 insertions(+), 2 deletions(-)
>  rename meta/recipes-connectivity/bluez5/{bluez5_5.45.bb => bluez5_5.46.bb} 
> (91%)
>
> diff --git a/meta/recipes-connectivity/bluez5/bluez5_5.45.bb 
> b/meta/recipes-connectivity/bluez5/bluez5_5.46.bb
> similarity index 91%
> rename from meta/recipes-connectivity/bluez5/bluez5_5.45.bb
> rename to meta/recipes-connectivity/bluez5/bluez5_5.46.bb
> index d5f516c..93f4be3 100644
> --- a/meta/recipes-connectivity/bluez5/bluez5_5.45.bb
> +++ b/meta/recipes-connectivity/bluez5/bluez5_5.46.bb
> @@ -2,8 +2,8 @@ require bluez5.inc
>
>  REQUIRED_DISTRO_FEATURES = "bluez5"
>
> -SRC_URI[md5sum] = "20d936917afc7e1ffa091f5213081c55"
> -SRC_URI[sha256sum] = 
> "4cacb00703a6bc149cb09502257d321597d43952374a16f3558766ffa85364e9"
> +SRC_URI[md5sum] = "913f35d6fa4ca5772c53adb936bf1947"
> +SRC_URI[sha256sum] = 
> "ddab3d3837c1afb8ae228a94ba17709a4650bd4db24211b6771ab735c8908e28"
>

A new testing utility, advtest, has been added and should be installed
along with the rest of the tools listed in NOINST_TOOLS_BT.

See: 
https://git.kernel.org/pub/scm/bluetooth/bluez.git/commit/?id=fedb7f6eaba7bc4ac879d1762ff267789c4db552

Marc
-- 
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

[OE-core] [PATCH] python3-git: upgrade to 2.1.5

2017-07-19 Thread Jose Lamego 
python3-git needs to be upgraded to latest upstream version.

"git" is added as RDEPENDS.

These changes were tested using qemux86 with core-image-minimal.

Signed-off-by: Jose Lamego 
---

Notes:
This patch replaces previous submission for updating both
python-git and python3-git recipes, due to python-git being
removed in commit 1fc2c9315faf65ea05fecf81450dd40b9a330435

 meta/recipes-devtools/python/python-git.inc   | 4 ++--
 .../python/{python3-git_2.1.3.bb => python3-git_2.1.5.bb} | 2 +-
 2 files changed, 3 insertions(+), 3 deletions(-)
 rename meta/recipes-devtools/python/{python3-git_2.1.3.bb => 
python3-git_2.1.5.bb} (81%)

diff --git a/meta/recipes-devtools/python/python-git.inc 
b/meta/recipes-devtools/python/python-git.inc
index 825e795d9..777608c 100644
--- a/meta/recipes-devtools/python/python-git.inc
+++ b/meta/recipes-devtools/python/python-git.inc
@@ -10,8 +10,8 @@ LIC_FILES_CHKSUM = 
"file://LICENSE;md5=8b8d26c37c1d5a04f9b0186edbebc183"
 
 SRC_URI = 
"https://files.pythonhosted.org/packages/source/G/GitPython/GitPython-${PV}.tar.gz;
 
-SRC_URI[md5sum] = "6cd18008c03a767740f3bf6d89ef79bc"
-SRC_URI[sha256sum] = 
"3826185b11e1fc372e7d31251e9b65e11ccb7c27f82c771d619048bdb5b66c81"
+SRC_URI[md5sum] = "df94212b19d270a625b67b4c84ac9a41"
+SRC_URI[sha256sum] = 
"5c00cbd256e2b1d039381d4f7d71fcb7ee5cc196ca10c101ff7191bd82ab5d9c"
 
 UPSTREAM_CHECK_URI = "https://pypi.python.org/pypi/GitPython/;
 UPSTREAM_CHECK_REGEX = "/GitPython/(?P(\d+[\.\-_]*)+)"
diff --git a/meta/recipes-devtools/python/python3-git_2.1.3.bb 
b/meta/recipes-devtools/python/python3-git_2.1.5.bb
similarity index 81%
rename from meta/recipes-devtools/python/python3-git_2.1.3.bb
rename to meta/recipes-devtools/python/python3-git_2.1.5.bb
index 7a2d452..4ac2a0e 100644
--- a/meta/recipes-devtools/python/python3-git_2.1.3.bb
+++ b/meta/recipes-devtools/python/python3-git_2.1.5.bb
@@ -4,4 +4,4 @@ DEPENDS = "python3-gitdb"
 
 inherit setuptools3
 
-RDEPENDS_${PN} += "python3-gitdb python3-lang python3-io python3-shell 
python3-math python3-re python3-subprocess python3-stringold python3-unixadmin 
python3-enum python3-logging python3-datetime python3-netclient 
python3-unittest python3-argparse"
+RDEPENDS_${PN} += "python3-gitdb python3-lang python3-io python3-shell 
python3-math python3-re python3-subprocess python3-stringold python3-unixadmin 
python3-enum python3-logging python3-datetime python3-netclient 
python3-unittest python3-argparse git"
-- 
2.7.4

-- 
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

Re: [OE-core] [PATCH 2/5] openssh: depend on openssl 1.0

2017-07-19 Thread Andre McCurdy 
On Wed, Jul 19, 2017 at 6:19 AM, Alexander Kanavin
 wrote:
> The proposed openssl 1.1 patches are here:
> https://github.com/openssh/openssh-portable/pull/48
>
> Openssl maintainers are not in a hurry to get 1.1 support in;

Openssh maintainers?

> if it doesn't show up within reasonable time, we can take a patch
> from Fedora:
> http://lists.mindrot.org/pipermail/openssh-unix-dev/2016-November/035454.html
>
> Signed-off-by: Alexander Kanavin 
> ---
>  meta/recipes-connectivity/openssh/openssh_7.5p1.bb | 3 ++-
>  1 file changed, 2 insertions(+), 1 deletion(-)
>
> diff --git a/meta/recipes-connectivity/openssh/openssh_7.5p1.bb 
> b/meta/recipes-connectivity/openssh/openssh_7.5p1.bb
> index 7bd313bb4e8..3b8fd7d1cc5 100644
> --- a/meta/recipes-connectivity/openssh/openssh_7.5p1.bb
> +++ b/meta/recipes-connectivity/openssh/openssh_7.5p1.bb
> @@ -8,7 +8,8 @@ SECTION = "console/network"
>  LICENSE = "BSD"
>  LIC_FILES_CHKSUM = "file://LICENCE;md5=e326045657e842541d3f35aada442507"
>
> -DEPENDS = "zlib openssl"
> +# openssl 1.1 patches are proposed at 
> https://github.com/openssh/openssh-portable/pull/48
> +DEPENDS = "zlib openssl10"
>  DEPENDS += "${@bb.utils.contains('DISTRO_FEATURES', 'pam', 'libpam', '', d)}"
>
>  SRC_URI = 
> "http://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-${PV}.tar.gz \
> --
> 2.13.2
>
> --
> ___
> Openembedded-core mailing list
> Openembedded-core@lists.openembedded.org
> http://lists.openembedded.org/mailman/listinfo/openembedded-core
-- 
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

[OE-core] [PATCH 1/3] oe-pkgdata-util: Setup logging before calling prepare

2017-07-19 Thread Richard Purdie 
This avoids test failures like:

INFO - ==
INFO - FAIL [1.046s]: test_find_path (pkgdata.OePkgdataUtilTests)
INFO - --
INFO - Traceback (most recent call last):
  File "/media/build1/poky/meta/lib/oeqa/core/decorator/__init__.py", line 32, 
in wrapped_f
return func(*args, **kwargs)
  File "/media/build1/poky/meta/lib/oeqa/selftest/cases/pkgdata.py", line 50, 
in test_find_path
self.assertEqual(result.output, 'zlib: /lib/libz.so.1')
AssertionError: 'NOTE: Starting bitbake server...\nzlib: /lib/libz.so.1' != 
'zlib: /lib/libz.so.1'
- NOTE: Starting bitbake server...
  zlib: /lib/libz.so.1
INFO - --

since there is corruption in the output. Setting the logging up before
calling tinfoil.prepare() resolves this.

Signed-off-by: Richard Purdie 
---
 scripts/oe-pkgdata-util | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/scripts/oe-pkgdata-util b/scripts/oe-pkgdata-util
index 677effe..a690870 100755
--- a/scripts/oe-pkgdata-util
+++ b/scripts/oe-pkgdata-util
@@ -40,9 +40,8 @@ def tinfoil_init():
 import bb.tinfoil
 import logging
 tinfoil = bb.tinfoil.Tinfoil()
-tinfoil.prepare(True)
-
 tinfoil.logger.setLevel(logging.WARNING)
+tinfoil.prepare(True)
 return tinfoil
 
 
-- 
2.7.4

-- 
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

[OE-core] [PATCH 3/3] recipetool: Setup logging before calling prepare

2017-07-19 Thread Richard Purdie 
This avoids test failures like:

==
ERROR [0.946s]: test_recipetool_load_plugin (recipetool.RecipetoolTests)
INFO - --
INFO - Traceback (most recent call last):
  File "/media/build1/poky/meta/lib/oeqa/core/decorator/__init__.py", line 32, 
in wrapped_f
return func(*args, **kwargs)
  File "/media/build1/poky/meta/lib/oeqa/selftest/cases/recipetool.py", line 
514, in test_recipetool_load_plugin
with open(srcfile) as fh:
FileNotFoundError: [Errno 2] No such file or directory: 'NOTE: Starting bitbake 
server...\n/media/build1/poky/meta-selftest/lib/recipetool/bbpath.py'
INFO - --

which comes from:

$ recipetool --quiet pluginfile
NOTE: Starting bitbake server...
/media/build1/poky/meta-selftest/lib/recipetool/bbpath.py

since there is corruption in the output despite the --quiet option. Setting
the logging up before calling tinfoil.prepare() resolves this.

Signed-off-by: Richard Purdie 
---
 scripts/recipetool | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/scripts/recipetool b/scripts/recipetool
index 3765ec7..3a3c9b7 100755
--- a/scripts/recipetool
+++ b/scripts/recipetool
@@ -36,8 +36,8 @@ def tinfoil_init(parserecipes):
 import bb.tinfoil
 import logging
 tinfoil = bb.tinfoil.Tinfoil(tracking=True)
-tinfoil.prepare(not parserecipes)
 tinfoil.logger.setLevel(logger.getEffectiveLevel())
+tinfoil.prepare(not parserecipes)
 return tinfoil
 
 def main():
-- 
2.7.4

-- 
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

[OE-core] [PATCH 2/3] devtool: Setup logging before calling prepare

2017-07-19 Thread Richard Purdie 
This avoids test failures like:

INFO - ==
INFO - FAIL [1.755s]: test_devtool_layer_plugins (devtool.DevtoolTests)
INFO - --
INFO - Traceback (most recent call last):
  File "/media/build1/poky/meta/lib/oeqa/core/decorator/__init__.py", line 32, 
in wrapped_f
return func(*args, **kwargs)
  File "/media/build1/poky/meta/lib/oeqa/selftest/cases/devtool.py", line 1354, 
in test_devtool_layer_plugins
self.assertEqual(result.output, s[::-1])
AssertionError: "NOTE: Starting bitbake server...\noY senu[36 chars]rciM" != 
"oY senuZ s'enoynA morF tiforP oN edaM tfosorciM"
- NOTE: Starting bitbake server...
  oY senuZ s'enoynA morF tiforP oN edaM tfosorciM
INFO - --

since there is corruption in the output. Setting the logging up before
calling tinfoil.prepare() resolves this.

Signed-off-by: Richard Purdie 
---
 scripts/lib/devtool/__init__.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/scripts/lib/devtool/__init__.py b/scripts/lib/devtool/__init__.py
index bba0721..b231e46 100644
--- a/scripts/lib/devtool/__init__.py
+++ b/scripts/lib/devtool/__init__.py
@@ -115,8 +115,8 @@ def setup_tinfoil(config_only=False, basepath=None, 
tracking=False):
 import bb.tinfoil
 tinfoil = bb.tinfoil.Tinfoil(tracking=tracking)
 try:
-tinfoil.prepare(config_only)
 tinfoil.logger.setLevel(logger.getEffectiveLevel())
+tinfoil.prepare(config_only)
 except bb.tinfoil.TinfoilUIException:
 tinfoil.shutdown()
 raise DevtoolError('Failed to start bitbake environment')
-- 
2.7.4

-- 
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

[OE-core] [PATCH] python3-mako: update to 1.0.7

2017-07-19 Thread Jose Lamego 
python3-mako need to be upgraded to latest upstream version.
This change was tested using qemux86 with core-image-minimal

Signed-off-by: Jose Lamego 
---
 meta/recipes-devtools/python/python-mako.inc  | 4 ++--
 .../python/{python3-mako_1.0.6.bb => python3-mako_1.0.7.bb}   | 0
 2 files changed, 2 insertions(+), 2 deletions(-)
 rename meta/recipes-devtools/python/{python3-mako_1.0.6.bb => 
python3-mako_1.0.7.bb} (100%)

diff --git a/meta/recipes-devtools/python/python-mako.inc 
b/meta/recipes-devtools/python/python-mako.inc
index 10364db..ba50675 100644
--- a/meta/recipes-devtools/python/python-mako.inc
+++ b/meta/recipes-devtools/python/python-mako.inc
@@ -5,8 +5,8 @@ LIC_FILES_CHKSUM = 
"file://LICENSE;md5=1bb21fa2d2f7a534c884b990430a6863"
 
 SRC_URI = 
"https://files.pythonhosted.org/packages/source/M/Mako/Mako-${PV}.tar.gz;
 
-SRC_URI[md5sum] = "a28e22a339080316b2acc352b9ee631c"
-SRC_URI[sha256sum] = 
"48559ebd872a8e77f92005884b3d88ffae552812cdf17db6768e5c3be5ebbe0d"
+SRC_URI[md5sum] = "5836cc997b1b773ef389bf6629c30e65"
+SRC_URI[sha256sum] = 
"4e02fde57bd4abb5ec400181e4c314f56ac3e49ba4fb8b0d50bba18cb27d25ae"
 
 UPSTREAM_CHECK_URI = "https://pypi.python.org/pypi/mako/;
 UPSTREAM_CHECK_REGEX = "/Mako/(?P(\d+[\.\-_]*)+)"
diff --git a/meta/recipes-devtools/python/python3-mako_1.0.6.bb 
b/meta/recipes-devtools/python/python3-mako_1.0.7.bb
similarity index 100%
rename from meta/recipes-devtools/python/python3-mako_1.0.6.bb
rename to meta/recipes-devtools/python/python3-mako_1.0.7.bb
-- 
2.7.4

-- 
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

Re: [OE-core] [PATCH v4] kernel: Add support for multiple kernel packages

2017-07-19 Thread Wold, Saul 
On Tue, 2017-07-18 at 08:34 -0500, Haris Okanovic wrote:
> 
> On 07/17/2017 03:31 PM, Wold, Saul wrote:
> > 
> > On Wed, 2017-07-05 at 12:33 -0500, Haris Okanovic wrote:
> > > 
> > > Some distros may want to provide alternate kernel "flavors" via
> > > feeds
> > > or
> > > within bootable images. For example, readily available builds
> > > which
> > > provide certain diagnostic features can enable developers and
> > > testers
> > > to
> > > more quickly resolve issues by avoiding lengthy kernel builds.
> > > 
> > > This change allows for building multiple flavors of the kernel
> > > and
> > > module packages by templatizing kernel package names via a new
> > > KERNEL_PACKAGE_NAME variable in kernel.bbclass. It defaults to
> > > the
> > > old
> > > name of "kernel", but can be overridden by certain recipes
> > > providing
> > > alternate kernel flavors.
> > > 
> > > To maintain compatibility, recipes providing alternate kernel
> > > flavors
> > > cannot be the "preferred provider" for virtual/kernel. This is
> > > because
> > > OE puts the preferred provider's build and source at
> > > "tmp-glibc/work-shared/$MACHINE/kernel-build-artifacts/" and
> > > "tmp-glibc/work-shared/$MACHINE/kernel-source/" instead of
> > > "tmp-glibc/work/*/$PN/" like other recipes. Therefore, recipes
> > > using
> > > the
> > > default KERNEL_PACKAGE_NAME="kernel" follows the old semantics --
> > > build
> > > in the old location and may be preferred provider -- while
> > > recipes
> > > using
> > > all other KERNEL_PACKAGE_NAME's build from the normal WORKDIR and
> > > don't
> > > provide "virtual/kernel".
> > > 
> > > Testing:
> > >   1. Prepended `KERNEL_PACKAGE_NAME = "tiny-linux"` to
> > >  linux-yocto-tiny_4.9.bb so that it may build alongside
> > >  the main kernel.
> > >   2. `bitbake linux-yocto linux-yocto-tiny` to build both kernel
> > > flavors.
> > >   3. Verified image and modules IPKs exist for both:
> > >  tmp-glibc/deploy/ipk/qemux86/kernel-* for linux-yocto
> > >  tmp-glibc/deploy/ipk/qemux86/tiny-linux* for linux-yocto-
> > > tiny
> > >   4. Verified linux-yocto is the "preferred provider", and was
> > > built
> > > in
> > >  shared directory: tmp-glibc/work-shared/qemux86/kernel-*
> > >   5. Appended `CORE_IMAGE_BASE_INSTALL += "tiny-linux"` to
> > >  core-image-base.bb to include both kernel flavors.
> > >   6. `bitbake core-image-base` to build an image.
> > >   7. Verified image contains two bzImage's under /boot/, with
> > >  "yocto-standard" selected to boot via symlink.
> > > 
> > > Discussion thread:
> > > http://lists.openembedded.org/pipermail/openembedded-core/2015-De
> > > cemb
> > > er/thread.html#114122
> > > 
> > > Signed-off-by: Ioan-Adrian Ratiu 
> > > Signed-off-by: Gratian Crisan 
> > > Signed-off-by: Haris Okanovic 
> > > Coauthored-by: Gratian Crisan 
> > > Coauthored-by: Haris Okanovic 
> > > Coauthored-by: Josh Hernstrom 
> > > ---
> > > [PATCH v2] Change STAGING_KERNEL_DIR and STAGING_KERNEL_BUILDDIR
> > > to
> > > the
> > > "work" directory in alternate kernel builds, instead of "work-
> > > shared",
> > > so
> > > that the two builds don't clobber each other.
> > > 
> > > [PATCH v3] An updated version of this change rebased onto the
> > > current
> > > OE-core master. Changes:
> > >   * Remove PREFERRED_PROVIDER check in linux-yocto.inc in
> > > alternate
> > > kernel builds, since alternate kernels aren't the
> > > PREFERRED_PROVIDER for virtual/kernel by definition.
> > >   * Remove "virtual/kernel" from PROVIDES in alternate kernel
> > > builds.
> > > 
> > > [PATCH v4] Another rebase onto master; no functional change.
> > > Improved description and testing steps.
> > 
> > So I finally had a chance to get back to this and test build with
> > it, I
> > saw the following WARNING, which lead to the ERROR:
> > 
> > WARNING: Variable key FILES_${PN}-dev (${includedir}
> > ${FILES_SOLIBSDEV}
> > ${libdir}/*.la ${libdir}/*.o ${libdir}/pkgconfig
> > ${datadir}/pkgconfig
> > ${datadir}/aclocal ${base_libdir}/*.o ${libdir}/${BPN}/*.la
> > ${base_libdir}/*.la) replaces original key FILES_linux-yocto-dev
> > (/boot/System.map* /boot/Module.symvers* /boot/config*
> > ${KERNEL_SRC_PATH}
> > ${nonarch_base_libdir}/modules/${KERNEL_VERSION}/build).
> > ERROR: linux-yocto-4.10.17+gitAUTOINC+e92bd55409_6648a34e00-r0
> > do_package: QA Issue: linux-yocto: Files/directories were installed
> > but
> > not shipped in any package:
> >    /boot/System.map-4.10.17-yocto-standard
> >    /boot/Module.symvers-4.10.17-yocto-standard
> >    /boot/config-4.10.17-yocto-standard
> > Please set FILES such that these items are packaged. Alternatively
> > if
> > they are unneeded, avoid installing them or delete them within
> > do_install.
> > linux-yocto: 3 installed and not shipped files. [installed-vs-
> > shipped]
> > ERROR:

[OE-core] [PATCH 4/6] bluez5: upgrade to 5.46

2017-07-19 Thread Maxin B. John 
5.45 -> 5.46

Signed-off-by: Maxin B. John 
---
 meta/recipes-connectivity/bluez5/{bluez5_5.45.bb => bluez5_5.46.bb} | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)
 rename meta/recipes-connectivity/bluez5/{bluez5_5.45.bb => bluez5_5.46.bb} 
(91%)

diff --git a/meta/recipes-connectivity/bluez5/bluez5_5.45.bb 
b/meta/recipes-connectivity/bluez5/bluez5_5.46.bb
similarity index 91%
rename from meta/recipes-connectivity/bluez5/bluez5_5.45.bb
rename to meta/recipes-connectivity/bluez5/bluez5_5.46.bb
index d5f516c..93f4be3 100644
--- a/meta/recipes-connectivity/bluez5/bluez5_5.45.bb
+++ b/meta/recipes-connectivity/bluez5/bluez5_5.46.bb
@@ -2,8 +2,8 @@ require bluez5.inc
 
 REQUIRED_DISTRO_FEATURES = "bluez5"
 
-SRC_URI[md5sum] = "20d936917afc7e1ffa091f5213081c55"
-SRC_URI[sha256sum] = 
"4cacb00703a6bc149cb09502257d321597d43952374a16f3558766ffa85364e9"
+SRC_URI[md5sum] = "913f35d6fa4ca5772c53adb936bf1947"
+SRC_URI[sha256sum] = 
"ddab3d3837c1afb8ae228a94ba17709a4650bd4db24211b6771ab735c8908e28"
 
 # noinst programs in Makefile.tools that are conditional on READLINE
 # support
-- 
2.4.0

-- 
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

[OE-core] [PATCH 3/6] orc: upgrade to 0.4.27

2017-07-19 Thread Maxin B. John 
0.4.26 -> 0.4.27

Signed-off-by: Maxin B. John 
---
 meta/recipes-devtools/orc/{orc_0.4.26.bb => orc_0.4.27.bb} | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)
 rename meta/recipes-devtools/orc/{orc_0.4.26.bb => orc_0.4.27.bb} (84%)

diff --git a/meta/recipes-devtools/orc/orc_0.4.26.bb 
b/meta/recipes-devtools/orc/orc_0.4.27.bb
similarity index 84%
rename from meta/recipes-devtools/orc/orc_0.4.26.bb
rename to meta/recipes-devtools/orc/orc_0.4.27.bb
index e47342f..303f991 100644
--- a/meta/recipes-devtools/orc/orc_0.4.26.bb
+++ b/meta/recipes-devtools/orc/orc_0.4.27.bb
@@ -5,8 +5,8 @@ LIC_FILES_CHKSUM = 
"file://COPYING;md5=1400bd9d09e8af56b9ec982b3d85797e"
 
 SRC_URI = "http://gstreamer.freedesktop.org/src/orc/orc-${PV}.tar.xz;
 
-SRC_URI[md5sum] = "8e9bef677bae289d3324d81c337a4507"
-SRC_URI[sha256sum] = 
"7d52fa80ef84988359c3434e1eea302d077a08987abdde6905678ebcad4fa649"
+SRC_URI[md5sum] = "5837dc20dacb5b668935bbded10cbb61"
+SRC_URI[sha256sum] = 
"51e53e58fc8158e5986a1f1a49a6d970c5b16493841cf7b9de2c2bde7ce36b93"
 
 inherit autotools pkgconfig gtk-doc
 
-- 
2.4.0

-- 
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

[OE-core] [PATCH 1/6] libjpeg-turbo: upgrade to 1.5.2

2017-07-19 Thread Maxin B. John 
1.5.1 -> 1.5.2

Remove this backported patch:
1. fix-mips.patch

Signed-off-by: Maxin B. John 
---
 .../jpeg/libjpeg-turbo/fix-mips.patch  | 45 --
 ...bjpeg-turbo_1.5.1.bb => libjpeg-turbo_1.5.2.bb} |  8 ++--
 2 files changed, 4 insertions(+), 49 deletions(-)
 delete mode 100644 meta/recipes-graphics/jpeg/libjpeg-turbo/fix-mips.patch
 rename meta/recipes-graphics/jpeg/{libjpeg-turbo_1.5.1.bb => 
libjpeg-turbo_1.5.2.bb} (90%)

diff --git a/meta/recipes-graphics/jpeg/libjpeg-turbo/fix-mips.patch 
b/meta/recipes-graphics/jpeg/libjpeg-turbo/fix-mips.patch
deleted file mode 100644
index 4d41237..000
--- a/meta/recipes-graphics/jpeg/libjpeg-turbo/fix-mips.patch
+++ /dev/null
@@ -1,45 +0,0 @@
-Fix a regression that causes the MIPS code from building.
-
-Upstream-Status: Backport
-Signed-off-by: Ross Burton 
-
-From 7bfb22af123ac10798a9a4c9ec7b23e5065db35e Mon Sep 17 00:00:00 2001
-From: DRC 
-Date: Mon, 26 Sep 2016 17:59:14 -0500
-Subject: [PATCH] Fix broken MIPS build
-
-Regression introduced by 9055fb408dcb585ce9392d395e16630d51002152
-
-Fixes #104

- ChangeLog.md  | 3 +++
- simd/jsimd_mips.c | 2 ++
- 2 files changed, 5 insertions(+)
-
-diff --git a/ChangeLog.md b/ChangeLog.md
-index e2b9df3..71ddcaa 100644
 a/ChangeLog.md
-+++ b/ChangeLog.md
-@@ -6,6 +6,9 @@
- 1. Fixed a regression introduced by 1.5.1[7] that prevented libjpeg-turbo from
- building with Android NDK platforms prior to android-21 (5.0).
- 
-+2. Fixed a regression introduced by 1.5.1[1] that prevented the MIPS DSPR2 
SIMD
-+code in libjpeg-turbo from building.
-+
- 
- 1.5.1
- =
-diff --git a/simd/jsimd_mips.c b/simd/jsimd_mips.c
-index 63b8115..02e90cd 100644
 a/simd/jsimd_mips.c
-+++ b/simd/jsimd_mips.c
-@@ -63,6 +63,8 @@ parse_proc_cpuinfo(const char* search_string)
- LOCAL(void)
- init_simd (void)
- {
-+  char *env = NULL;
-+
-   if (simd_support != ~0U)
- return;
- 
diff --git a/meta/recipes-graphics/jpeg/libjpeg-turbo_1.5.1.bb 
b/meta/recipes-graphics/jpeg/libjpeg-turbo_1.5.2.bb
similarity index 90%
rename from meta/recipes-graphics/jpeg/libjpeg-turbo_1.5.1.bb
rename to meta/recipes-graphics/jpeg/libjpeg-turbo_1.5.2.bb
index de2eeaf..58646d3 100644
--- a/meta/recipes-graphics/jpeg/libjpeg-turbo_1.5.1.bb
+++ b/meta/recipes-graphics/jpeg/libjpeg-turbo_1.5.2.bb
@@ -10,10 +10,10 @@ LIC_FILES_CHKSUM = 
"file://cdjpeg.h;endline=13;md5=05bab7c7ad899d85bfba60da1a127
 DEPENDS_append_x86-64_class-target = " nasm-native"
 DEPENDS_append_x86_class-target= " nasm-native"
 
-SRC_URI = "${SOURCEFORGE_MIRROR}/${BPN}/${BPN}-${PV}.tar.gz \
-   file://fix-mips.patch"
-SRC_URI[md5sum] = "55deb139b0cac3c8200b75d485fc13f3"
-SRC_URI[sha256sum] = 
"41429d3d253017433f66e3d472b8c7d998491d2f41caa7306b8d9a6f2a2c666c"
+SRC_URI = "${SOURCEFORGE_MIRROR}/${BPN}/${BPN}-${PV}.tar.gz"
+
+SRC_URI[md5sum] = "6b4923e297a7eaa255f08511017a8818"
+SRC_URI[sha256sum] = 
"9098943b270388727ae61de82adec73cf9f0dbb240b3bc8b172595ebf405b528"
 UPSTREAM_CHECK_URI = "http://sourceforge.net/projects/libjpeg-turbo/files/;
 UPSTREAM_CHECK_REGEX = "/libjpeg-turbo/files/(?P(\d+[\.\-_]*)+)/"
 
-- 
2.4.0

-- 
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

[OE-core] [PATCH 2/6] libsolv: upgrade to 0.6.28

2017-07-19 Thread Maxin B. John 
0.6.27 -> 0.6.28

Signed-off-by: Maxin B. John 
---
 meta/recipes-extended/libsolv/{libsolv_0.6.27.bb => libsolv_0.6.28.bb} | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)
 rename meta/recipes-extended/libsolv/{libsolv_0.6.27.bb => libsolv_0.6.28.bb} 
(95%)

diff --git a/meta/recipes-extended/libsolv/libsolv_0.6.27.bb 
b/meta/recipes-extended/libsolv/libsolv_0.6.28.bb
similarity index 95%
rename from meta/recipes-extended/libsolv/libsolv_0.6.27.bb
rename to meta/recipes-extended/libsolv/libsolv_0.6.28.bb
index 7ddd533..3a48f22 100644
--- a/meta/recipes-extended/libsolv/libsolv_0.6.27.bb
+++ b/meta/recipes-extended/libsolv/libsolv_0.6.28.bb
@@ -13,7 +13,7 @@ SRC_URI_append_libc-musl = " 
file://0001-Add-fallback-fopencookie-implementation
  
file://0002-Fixes-to-internal-fopencookie-implementation.patch \
"
 
-SRCREV = "9fa1535e2fc60609c29633925e692603782b477b"
+SRCREV = "b8a9ddd88eb4e0ab351eb55a53186b5dc5ac0825"
 UPSTREAM_CHECK_GITTAGREGEX = "(?P\d+(\.\d+)+)"
 
 S = "${WORKDIR}/git"
-- 
2.4.0

-- 
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

[OE-core] [PATCH 5/6] sqlite3: upgrade to 3.19.3

2017-07-19 Thread Maxin B. John 
3.19.2 -> 3.19.3

Fixes a bug associated with auto_vacuum that can lead to database
corruption.

Signed-off-by: Maxin B. John 
---
 meta/recipes-support/sqlite/{sqlite3_3.19.2.bb => sqlite3_3.19.3.bb} | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)
 rename meta/recipes-support/sqlite/{sqlite3_3.19.2.bb => sqlite3_3.19.3.bb} 
(59%)

diff --git a/meta/recipes-support/sqlite/sqlite3_3.19.2.bb 
b/meta/recipes-support/sqlite/sqlite3_3.19.3.bb
similarity index 59%
rename from meta/recipes-support/sqlite/sqlite3_3.19.2.bb
rename to meta/recipes-support/sqlite/sqlite3_3.19.3.bb
index cf87073..89d4395 100644
--- a/meta/recipes-support/sqlite/sqlite3_3.19.2.bb
+++ b/meta/recipes-support/sqlite/sqlite3_3.19.3.bb
@@ -6,5 +6,5 @@ LIC_FILES_CHKSUM = 
"file://sqlite3.h;endline=11;md5=65f0a57ca6928710b418c094b357
 SRC_URI = "\
   http://www.sqlite.org/2017/sqlite-autoconf-${SQLITE_PV}.tar.gz \
   "
-SRC_URI[md5sum] = "9f006b16de2cd81f6bae9b40e91daabf"
-SRC_URI[sha256sum] = 
"ca5361fb01cc3ad63d6fd4eb2cb0b6398e629595896d3558f7e121d37dac2ffc"
+SRC_URI[md5sum] = "c93070d5bf136ce271db23d2dfbc2435"
+SRC_URI[sha256sum] = 
"06129c03dced9f87733a8cba408871bd60673b8f93b920ba8d815efab0a06301"
-- 
2.4.0

-- 
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

[OE-core] [PATCH 6/6] libtirpc: upgrade to 1.0.2

2017-07-19 Thread Maxin B. John 
1.0.1 -> 1.0.2

Remove these Backported and upstreamed patches:
1. 0001-Fix-for-CVE-2017-8779.patch
2. libtirpc-0.2.1-fortify.patch
3. libtirpc-1.0.2-rc3.patc

Signed-off-by: Maxin B. John 
---
 .../libtirpc/0001-Fix-for-CVE-2017-8779.patch  | 276 
 .../libtirpc/libtirpc/libtirpc-0.2.1-fortify.patch |  26 -
 .../libtirpc/libtirpc/libtirpc-1.0.2-rc3.patch | 743 -
 .../{libtirpc_1.0.1.bb => libtirpc_1.0.2.bb}   |   7 +-
 4 files changed, 2 insertions(+), 1050 deletions(-)
 delete mode 100644 
meta/recipes-extended/libtirpc/libtirpc/0001-Fix-for-CVE-2017-8779.patch
 delete mode 100644 
meta/recipes-extended/libtirpc/libtirpc/libtirpc-0.2.1-fortify.patch
 delete mode 100644 
meta/recipes-extended/libtirpc/libtirpc/libtirpc-1.0.2-rc3.patch
 rename meta/recipes-extended/libtirpc/{libtirpc_1.0.1.bb => libtirpc_1.0.2.bb} 
(81%)

diff --git 
a/meta/recipes-extended/libtirpc/libtirpc/0001-Fix-for-CVE-2017-8779.patch 
b/meta/recipes-extended/libtirpc/libtirpc/0001-Fix-for-CVE-2017-8779.patch
deleted file mode 100644
index b3bae67..000
--- a/meta/recipes-extended/libtirpc/libtirpc/0001-Fix-for-CVE-2017-8779.patch
+++ /dev/null
@@ -1,276 +0,0 @@
-From dd9c7cf4f8f375c6d641b760d124650c418c2ce3 Mon Sep 17 00:00:00 2001
-From: Guido Vranken 
-Date: Mon, 15 May 2017 11:12:21 -0400
-Subject: [PATCH] Fix for CVE-2017-8779
-
-Signed-off-by: Steve Dickson 

- src/rpc_generic.c |  8 
- src/rpcb_prot.c   | 22 ++
- src/rpcb_st_xdr.c |  9 +
- src/xdr.c | 30 +-
- 4 files changed, 52 insertions(+), 17 deletions(-)
-
-CVE: CVE-2017-8779
-Upstream-Status: Backport
-
-Signed-off-by: Fan Xin 
-
-diff --git a/src/rpc_generic.c b/src/rpc_generic.c
-index 2f09a8f..589cbd5 100644
 a/src/rpc_generic.c
-+++ b/src/rpc_generic.c
-@@ -615,6 +615,9 @@ __rpc_taddr2uaddr_af(int af, const struct netbuf *nbuf)
- 
-   switch (af) {
-   case AF_INET:
-+  if (nbuf->len < sizeof(*sin)) {
-+  return NULL;
-+  }
-   sin = nbuf->buf;
-   if (inet_ntop(af, >sin_addr, namebuf, sizeof namebuf)
-   == NULL)
-@@ -626,6 +629,9 @@ __rpc_taddr2uaddr_af(int af, const struct netbuf *nbuf)
-   break;
- #ifdef INET6
-   case AF_INET6:
-+  if (nbuf->len < sizeof(*sin6)) {
-+  return NULL;
-+  }
-   sin6 = nbuf->buf;
-   if (inet_ntop(af, >sin6_addr, namebuf6, sizeof namebuf6)
-   == NULL)
-@@ -667,6 +673,8 @@ __rpc_uaddr2taddr_af(int af, const char *uaddr)
- 
-   port = 0;
-   sin = NULL;
-+  if (uaddr == NULL)
-+  return NULL;
-   addrstr = strdup(uaddr);
-   if (addrstr == NULL)
-   return NULL;
-diff --git a/src/rpcb_prot.c b/src/rpcb_prot.c
-index 43fd385..a923c8e 100644
 a/src/rpcb_prot.c
-+++ b/src/rpcb_prot.c
-@@ -41,6 +41,7 @@
- #include 
- #include 
- #include 
-+#include "rpc_com.h"
- 
- bool_t
- xdr_rpcb(xdrs, objp)
-@@ -53,13 +54,13 @@ xdr_rpcb(xdrs, objp)
-   if (!xdr_u_int32_t(xdrs, >r_vers)) {
-   return (FALSE);
-   }
--  if (!xdr_string(xdrs, >r_netid, (u_int)~0)) {
-+  if (!xdr_string(xdrs, >r_netid, RPC_MAXDATASIZE)) {
-   return (FALSE);
-   }
--  if (!xdr_string(xdrs, >r_addr, (u_int)~0)) {
-+  if (!xdr_string(xdrs, >r_addr, RPC_MAXDATASIZE)) {
-   return (FALSE);
-   }
--  if (!xdr_string(xdrs, >r_owner, (u_int)~0)) {
-+  if (!xdr_string(xdrs, >r_owner, RPC_MAXDATASIZE)) {
-   return (FALSE);
-   }
-   return (TRUE);
-@@ -159,19 +160,19 @@ xdr_rpcb_entry(xdrs, objp)
-   XDR *xdrs;
-   rpcb_entry *objp;
- {
--  if (!xdr_string(xdrs, >r_maddr, (u_int)~0)) {
-+  if (!xdr_string(xdrs, >r_maddr, RPC_MAXDATASIZE)) {
-   return (FALSE);
-   }
--  if (!xdr_string(xdrs, >r_nc_netid, (u_int)~0)) {
-+  if (!xdr_string(xdrs, >r_nc_netid, RPC_MAXDATASIZE)) {
-   return (FALSE);
-   }
-   if (!xdr_u_int32_t(xdrs, >r_nc_semantics)) {
-   return (FALSE);
-   }
--  if (!xdr_string(xdrs, >r_nc_protofmly, (u_int)~0)) {
-+  if (!xdr_string(xdrs, >r_nc_protofmly, RPC_MAXDATASIZE)) {
-   return (FALSE);
-   }
--  if (!xdr_string(xdrs, >r_nc_proto, (u_int)~0)) {
-+  if (!xdr_string(xdrs, >r_nc_proto, RPC_MAXDATASIZE)) {
-   return (FALSE);
-   }
-   return (TRUE);
-@@ -292,7 +293,7 @@ xdr_rpcb_rmtcallres(xdrs, p)
-   bool_t dummy;
-   struct r_rpcb_rmtcallres *objp = (struct r_rpcb_rmtcallres *)(void *)p;
- 
--  if (!xdr_string(xdrs, >addr, (u_int)~0)) {
-+  if (!xdr_string(xdrs, >addr, RPC_MAXDATASIZE)) {
-   return (FALSE);
-   }
-   if

Re: [OE-core] [PATCH] python*-git: Upgrade to version 2.1.5

2017-07-19 Thread Jose Lamego 
ping. This may get in before the freeze.


On 06/27/2017 12:50 PM, Jose Lamego wrote:
> Both python-git and python3-git need to be upgraded to latest
> upstream version.
>
> Two RDEPENDS are added: "git" and "python-unittest" to python-git recipe
> and "git" to python3-git recipe.
>
> These changes were tested using qemux86 with core-image-minimal.
>
> Signed-off-by: Jose Lamego 
> ---
>  meta/recipes-devtools/python/python-git.inc   | 4 
> ++--
>  .../python/{python-git_2.1.3.bb => python-git_2.1.5.bb}   | 2 +-
>  .../python/{python3-git_2.1.3.bb => python3-git_2.1.5.bb} | 2 +-
>  3 files changed, 4 insertions(+), 4 deletions(-)
>  rename meta/recipes-devtools/python/{python-git_2.1.3.bb => 
> python-git_2.1.5.bb} (85%)
>  rename meta/recipes-devtools/python/{python3-git_2.1.3.bb => 
> python3-git_2.1.5.bb} (81%)
>
> diff --git a/meta/recipes-devtools/python/python-git.inc 
> b/meta/recipes-devtools/python/python-git.inc
> index 825e795d9..777608c 100644
> --- a/meta/recipes-devtools/python/python-git.inc
> +++ b/meta/recipes-devtools/python/python-git.inc
> @@ -10,8 +10,8 @@ LIC_FILES_CHKSUM = 
> "file://LICENSE;md5=8b8d26c37c1d5a04f9b0186edbebc183"
>  
>  SRC_URI = 
> "https://files.pythonhosted.org/packages/source/G/GitPython/GitPython-${PV}.tar.gz;
>  
> -SRC_URI[md5sum] = "6cd18008c03a767740f3bf6d89ef79bc"
> -SRC_URI[sha256sum] = 
> "3826185b11e1fc372e7d31251e9b65e11ccb7c27f82c771d619048bdb5b66c81"
> +SRC_URI[md5sum] = "df94212b19d270a625b67b4c84ac9a41"
> +SRC_URI[sha256sum] = 
> "5c00cbd256e2b1d039381d4f7d71fcb7ee5cc196ca10c101ff7191bd82ab5d9c"
>  
>  UPSTREAM_CHECK_URI = "https://pypi.python.org/pypi/GitPython/;
>  UPSTREAM_CHECK_REGEX = "/GitPython/(?P(\d+[\.\-_]*)+)"
> diff --git a/meta/recipes-devtools/python/python-git_2.1.3.bb 
> b/meta/recipes-devtools/python/python-git_2.1.5.bb
> similarity index 85%
> rename from meta/recipes-devtools/python/python-git_2.1.3.bb
> rename to meta/recipes-devtools/python/python-git_2.1.5.bb
> index e49dbea..779e606 100644
> --- a/meta/recipes-devtools/python/python-git_2.1.3.bb
> +++ b/meta/recipes-devtools/python/python-git_2.1.5.bb
> @@ -4,4 +4,4 @@ DEPENDS = "python-gitdb"
>  
>  inherit setuptools
>  
> -RDEPENDS_${PN} += "python-gitdb python-lang python-io python-shell 
> python-math python-re python-subprocess python-stringold python-unixadmin"
> +RDEPENDS_${PN} += "python-gitdb python-lang python-io python-shell 
> python-math python-re python-subprocess python-stringold python-unixadmin 
> python-unittest git"
> diff --git a/meta/recipes-devtools/python/python3-git_2.1.3.bb 
> b/meta/recipes-devtools/python/python3-git_2.1.5.bb
> similarity index 81%
> rename from meta/recipes-devtools/python/python3-git_2.1.3.bb
> rename to meta/recipes-devtools/python/python3-git_2.1.5.bb
> index 7a2d452..4ac2a0e 100644
> --- a/meta/recipes-devtools/python/python3-git_2.1.3.bb
> +++ b/meta/recipes-devtools/python/python3-git_2.1.5.bb
> @@ -4,4 +4,4 @@ DEPENDS = "python3-gitdb"
>  
>  inherit setuptools3
>  
> -RDEPENDS_${PN} += "python3-gitdb python3-lang python3-io python3-shell 
> python3-math python3-re python3-subprocess python3-stringold 
> python3-unixadmin python3-enum python3-logging python3-datetime 
> python3-netclient python3-unittest python3-argparse"
> +RDEPENDS_${PN} += "python3-gitdb python3-lang python3-io python3-shell 
> python3-math python3-re python3-subprocess python3-stringold 
> python3-unixadmin python3-enum python3-logging python3-datetime 
> python3-netclient python3-unittest python3-argparse git"

-- 
Jose Lamego | OTC Embedded Platform & Tools | GDC

-- 
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

[OE-core] ✗ patchtest: failure for "[krogoth] libgcrypt: fix CVE-2..." and 1 more

2017-07-19 Thread Patchwork 
== Series Details ==

Series: "[krogoth] libgcrypt: fix CVE-2..." and 1 more
Revision: 1
URL   : https://patchwork.openembedded.org/series/7813/
State : failure

== Summary ==


Thank you for submitting this patch series to OpenEmbedded Core. This is
an automated response. Several tests have been executed on the proposed
series by patchtest resulting in the following failures:



* Patch[krogoth,2/2] libgcrypt: fix CVE-2017-9526
 Issue Missing or incorrectly formatted CVE tag in commit message 
[test_cve_presence_in_commit_message] 
  Suggested fixInclude a "CVE--" tag in the commit message



If you believe any of these test results are incorrect, please reply to the
mailing list (openembedded-core@lists.openembedded.org) raising your concerns.
Otherwise we would appreciate you correcting the issues and submitting a new
version of the patchset if applicable. Please ensure you add/increment the
version number when sending the new version (i.e. [PATCH] -> [PATCH v2] ->
[PATCH v3] -> ...).

---
Test framework: http://git.yoctoproject.org/cgit/cgit.cgi/patchtest
Test suite: http://git.yoctoproject.org/cgit/cgit.cgi/patchtest-oe

-- 
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

[OE-core] [PATCH][krogoth 2/2] libgcrypt: fix CVE-2017-9526

2017-07-19 Thread Ross Burton 
In libgcrypt before 1.7.7, an attacker who learns the EdDSA session key (from
side-channel observation during the signing process) can easily recover the
long-term secret key. 1.7.7 makes a cipher/ecc-eddsa.c change to store this
session key in secure memory, to ensure that constant-time point operations are
used in the MPI library.

Signed-off-by: Ross Burton 
---
 ...-Store-EdDSA-session-key-in-secure-memory.patch | 39 ++
 meta/recipes-support/libgcrypt/libgcrypt.inc   |  1 +
 2 files changed, 40 insertions(+)
 create mode 100644 
meta/recipes-support/libgcrypt/files/0001-ecc-Store-EdDSA-session-key-in-secure-memory.patch

diff --git 
a/meta/recipes-support/libgcrypt/files/0001-ecc-Store-EdDSA-session-key-in-secure-memory.patch
 
b/meta/recipes-support/libgcrypt/files/0001-ecc-Store-EdDSA-session-key-in-secure-memory.patch
new file mode 100644
index 000..f6c4ca76f33
--- /dev/null
+++ 
b/meta/recipes-support/libgcrypt/files/0001-ecc-Store-EdDSA-session-key-in-secure-memory.patch
@@ -0,0 +1,39 @@
+CVE: CVE-2017-9526
+Upstream-Status: Backport
+Signed-off-by: Ross Burton 
+
+From b3cab278eb9c2ceda79f980bc26460d97f260041 Mon Sep 17 00:00:00 2001
+From: Jo Van Bulck 
+Date: Thu, 19 Jan 2017 17:00:15 +0100
+Subject: [PATCH] ecc: Store EdDSA session key in secure memory.
+
+* cipher/ecc-eddsa.c (_gcry_ecc_eddsa_sign): use mpi_snew to allocate
+session key.
+--
+
+An attacker who learns the EdDSA session key from side-channel
+observation during the signing process, can easily revover the long-
+term secret key. Storing the session key in secure memory ensures that
+constant time point operations are used in the MPI library.
+
+Signed-off-by: Jo Van Bulck 
+---
+ cipher/ecc-eddsa.c | 2 +-
+ 1 file changed, 1 insertion(+), 1 deletion(-)
+
+diff --git a/cipher/ecc-eddsa.c b/cipher/ecc-eddsa.c
+index f91f8489..813e030d 100644
+--- a/cipher/ecc-eddsa.c
 b/cipher/ecc-eddsa.c
+@@ -603,7 +603,7 @@ _gcry_ecc_eddsa_sign (gcry_mpi_t input, ECC_secret_key 
*skey,
+   a = mpi_snew (0);
+   x = mpi_new (0);
+   y = mpi_new (0);
+-  r = mpi_new (0);
++  r = mpi_snew (0);
+   ctx = _gcry_mpi_ec_p_internal_new (skey->E.model, skey->E.dialect, 0,
+  skey->E.p, skey->E.a, skey->E.b);
+   b = (ctx->nbits+7)/8;
+-- 
+2.11.0
+
diff --git a/meta/recipes-support/libgcrypt/libgcrypt.inc 
b/meta/recipes-support/libgcrypt/libgcrypt.inc
index 404f870db03..8e7a38f8940 100644
--- a/meta/recipes-support/libgcrypt/libgcrypt.inc
+++ b/meta/recipes-support/libgcrypt/libgcrypt.inc
@@ -18,6 +18,7 @@ SRC_URI = 
"ftp://ftp.gnupg.org/gcrypt/libgcrypt/libgcrypt-${PV}.tar.gz \
file://add-pkgconfig-support.patch \
file://libgcrypt-fix-building-error-with-O2-in-sysroot-path.patch \
file://fix-ICE-failure-on-mips-with-option-O-and-g.patch \
+   file://0001-ecc-Store-EdDSA-session-key-in-secure-memory.patch \
file://CVE-2017-7526.patch \
 "
 
-- 
2.11.0

-- 
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

[OE-core] [PATCH][krogoth 1/2] libgcrypt: fix CVE-2017-7526

2017-07-19 Thread Ross Burton 
Fixes CVE-2017-7526, 'flush+reload side-channel attack on RSA secret keys dubbed
"Sliding right into disaster"'.

Signed-off-by: Ross Burton 
---
 .../libgcrypt/files/CVE-2017-7526.patch| 455 +
 meta/recipes-support/libgcrypt/libgcrypt.inc   |   1 +
 2 files changed, 456 insertions(+)
 create mode 100644 meta/recipes-support/libgcrypt/files/CVE-2017-7526.patch

diff --git a/meta/recipes-support/libgcrypt/files/CVE-2017-7526.patch 
b/meta/recipes-support/libgcrypt/files/CVE-2017-7526.patch
new file mode 100644
index 000..c9541d44f3f
--- /dev/null
+++ b/meta/recipes-support/libgcrypt/files/CVE-2017-7526.patch
@@ -0,0 +1,455 @@
+Flush+reload side-channel attack on RSA secret keys dubbed "Sliding right
+into disaster".
+
+CVE: CVE-2017-7526
+Upstream-Status: Backport
+Signed-off-by: Ross Burton 
+
+From 8ae178108eb3c64b40dcb4d1c1943205a86db724 Mon Sep 17 00:00:00 2001
+From: NIIBE Yutaka 
+Date: Tue, 4 Apr 2017 17:38:05 +0900
+Subject: [PATCH 1/5] mpi: Simplify mpi_powm.
+
+* mpi/mpi-pow.c (_gcry_mpi_powm): Simplify the loop.
+
+--
+
+This fix is not a solution for the problem reported (yet).  The
+problem is that the current algorithm of _gcry_mpi_powm depends on
+exponent and some information leaks is possible.
+
+Reported-by: Andreas Zankl 
+Signed-off-by: NIIBE Yutaka 
+
+(backport from master commit:
+719468e53133d3bdf12156c5bfdea2bf15f9f6f1)
+
+Signed-off-by: Ross Burton 
+---
+ mpi/mpi-pow.c | 105 +-
+ 1 file changed, 30 insertions(+), 75 deletions(-)
+
+diff --git a/mpi/mpi-pow.c b/mpi/mpi-pow.c
+index 70bf9e84..c00cfed3 100644
+--- a/mpi/mpi-pow.c
 b/mpi/mpi-pow.c
+@@ -613,12 +613,8 @@ _gcry_mpi_powm (gcry_mpi_t res,
+   if (e == 0)
+ {
+   j += c;
+-  i--;
+-  if ( i < 0 )
+-{
+-  c = 0;
+-  break;
+-}
++  if ( --i < 0 )
++break;
+ 
+   e = ep[i];
+   c = BITS_PER_MPI_LIMB;
+@@ -633,38 +629,33 @@ _gcry_mpi_powm (gcry_mpi_t res,
+   c -= c0;
+   j += c0;
+ 
++  e0 = (e >> (BITS_PER_MPI_LIMB - W));
+   if (c >= W)
+-{
+-  e0 = (e >> (BITS_PER_MPI_LIMB - W));
+-  e = (e << W);
+-  c -= W;
+-}
++c0 = 0;
+   else
+ {
+-  i--;
+-  if ( i < 0 )
++  if ( --i < 0 )
+ {
+-  e = (e >> (BITS_PER_MPI_LIMB - c));
+-  break;
++  e0 = (e >> (BITS_PER_MPI_LIMB - c));
++  j += c - W;
++  goto last_step;
++}
++  else
++{
++  c0 = c;
++  e = ep[i];
++  c = BITS_PER_MPI_LIMB;
++  e0 |= (e >> (BITS_PER_MPI_LIMB - (W - c0)));
+ }
+-
+-  c0 = c;
+-  e0 = (e >> (BITS_PER_MPI_LIMB - W))
+-| (ep[i] >> (BITS_PER_MPI_LIMB - W + c0));
+-  e = (ep[i] << (W - c0));
+-  c = BITS_PER_MPI_LIMB - W + c0;
+ }
+ 
++  e = e << (W - c0);
++  c -= (W - c0);
++
++last_step:
+   count_trailing_zeros (c0, e0);
+   e0 = (e0 >> c0) >> 1;
+ 
+-  for (j += W - c0; j; j--)
+-{
+-  mul_mod (xp, , rp, rsize, rp, rsize, mp, msize, );
+-  tp = rp; rp = xp; xp = tp;
+-  rsize = xsize;
+-}
+-
+   /*
+*  base_u <= precomp[e0]
+*  base_u_size <= precomp_size[e0]
+@@ -681,25 +672,23 @@ _gcry_mpi_powm (gcry_mpi_t res,
+   u.d = precomp[k];
+ 
+   mpi_set_cond (, , k == e0);
+-  base_u_size |= (precomp_size[k] & ((mpi_size_t)0 - (k == e0)) );
++  base_u_size |= ( precomp_size[k] & ((mpi_size_t)0 - (k == e0)) 
);
+ }
+ 
+-  mul_mod (xp, , rp, rsize, base_u, base_u_size,
+-   mp, msize, );
+-  tp = rp; rp = xp; xp = tp;
+-  rsize = xsize;
++  for (j += W - c0; j >= 0; j--)
++{
++  mul_mod (xp, , rp, rsize,
++   j == 0 ? base_u : rp, j == 0 ? base_u_size : rsize,
++   mp, msize, );
++  tp = rp; rp = xp; xp = tp;
++  rsize = xsize;
++}
+ 
+   j = c0;
++  if ( i < 0 )
++break;
+ }
+ 
+-if (c != 0)
+-  {
+-j += c;
+-count_trailing_zeros (c, e);
+-e = (e >> c);
+-j -= c;
+-  }
+-
+ while (j--)
+   {
+ mul_mod (xp, , rp, rsize, rp, rsize, mp, msize, );
+@@ -707,40 +696,6 @@ _gcry_mpi_powm (gcry_mpi_t res,
+ rsize =

[OE-core] [PATCH 1/2] libgcrypt: merge bb and inc file

2017-07-19 Thread Ross Burton 
Signed-off-by: Ross Burton 
---
 meta/recipes-support/libgcrypt/libgcrypt.inc  | 50 ---
 meta/recipes-support/libgcrypt/libgcrypt_1.7.7.bb | 50 ++-
 2 files changed, 49 insertions(+), 51 deletions(-)
 delete mode 100644 meta/recipes-support/libgcrypt/libgcrypt.inc

diff --git a/meta/recipes-support/libgcrypt/libgcrypt.inc 
b/meta/recipes-support/libgcrypt/libgcrypt.inc
deleted file mode 100644
index 3c7e89aa92b..000
--- a/meta/recipes-support/libgcrypt/libgcrypt.inc
+++ /dev/null
@@ -1,50 +0,0 @@
-SUMMARY = "General purpose cryptographic library based on the code from GnuPG"
-HOMEPAGE = "http://directory.fsf.org/project/libgcrypt/;
-BUGTRACKER = "https://bugs.g10code.com/gnupg/index;
-SECTION = "libs"
-
-# helper program gcryptrnd and getrandom are under GPL, rest LGPL
-LICENSE = "GPLv2+ & LGPLv2.1+ & GPLv3+"
-LICENSE_${PN} = "LGPLv2.1+"
-LICENSE_${PN}-dev = "GPLv2+ & LGPLv2.1+"
-LICENSE_dumpsexp-dev = "GPLv3+"
-
-LIC_FILES_CHKSUM = "file://COPYING;md5=94d55d512a9ba36caa9b7df079bae19f \
-file://COPYING.LIB;md5=bbb461211a33b134d42ed5ee802b37ff"
-
-DEPENDS = "libgpg-error"
-
-UPSTREAM_CHECK_URI = "https://gnupg.org/download/index.html;
-SRC_URI = "${GNUPG_MIRROR}/libgcrypt/libgcrypt-${PV}.tar.gz \
-   file://add-pkgconfig-support.patch \
-   file://libgcrypt-fix-building-error-with-O2-in-sysroot-path.patch \
-   file://fix-ICE-failure-on-mips-with-option-O-and-g.patch \
-   file://fix-undefined-reference-to-pthread.patch \
-"
-
-BINCONFIG = "${bindir}/libgcrypt-config"
-
-inherit autotools texinfo binconfig-disabled pkgconfig
-
-EXTRA_OECONF = "--disable-asm"
-
-PACKAGECONFIG ??= "capabilities"
-PACKAGECONFIG[capabilities] = 
"--with-capabilities,--without-capabilities,libcap"
-
-do_configure_prepend () {
-   # Else this could be used in preference to the one in aclocal-copy
-   rm -f ${S}/m4/gpg-error.m4
-}
-
-# libgcrypt.pc is added locally and thus installed here
-do_install_append() {
-   install -d ${D}/${libdir}/pkgconfig
-   install -m 0644 ${B}/src/libgcrypt.pc ${D}/${libdir}/pkgconfig/
-}
-
-PACKAGES =+ "dumpsexp-dev"
-
-FILES_${PN}-dev += "${bindir}/hmac256"
-FILES_dumpsexp-dev += "${bindir}/dumpsexp"
-
-BBCLASSEXTEND = "native nativesdk"
diff --git a/meta/recipes-support/libgcrypt/libgcrypt_1.7.7.bb 
b/meta/recipes-support/libgcrypt/libgcrypt_1.7.7.bb
index 2bc21d2e69b..7f7d852fb3b 100644
--- a/meta/recipes-support/libgcrypt/libgcrypt_1.7.7.bb
+++ b/meta/recipes-support/libgcrypt/libgcrypt_1.7.7.bb
@@ -1,4 +1,52 @@
-require libgcrypt.inc
+SUMMARY = "General purpose cryptographic library based on the code from GnuPG"
+HOMEPAGE = "http://directory.fsf.org/project/libgcrypt/;
+BUGTRACKER = "https://bugs.g10code.com/gnupg/index;
+SECTION = "libs"
 
+# helper program gcryptrnd and getrandom are under GPL, rest LGPL
+LICENSE = "GPLv2+ & LGPLv2.1+ & GPLv3+"
+LICENSE_${PN} = "LGPLv2.1+"
+LICENSE_${PN}-dev = "GPLv2+ & LGPLv2.1+"
+LICENSE_dumpsexp-dev = "GPLv3+"
+
+LIC_FILES_CHKSUM = "file://COPYING;md5=94d55d512a9ba36caa9b7df079bae19f \
+file://COPYING.LIB;md5=bbb461211a33b134d42ed5ee802b37ff"
+
+DEPENDS = "libgpg-error"
+
+UPSTREAM_CHECK_URI = "https://gnupg.org/download/index.html;
+SRC_URI = "${GNUPG_MIRROR}/libgcrypt/libgcrypt-${PV}.tar.gz \
+   file://add-pkgconfig-support.patch \
+   file://libgcrypt-fix-building-error-with-O2-in-sysroot-path.patch \
+   file://fix-ICE-failure-on-mips-with-option-O-and-g.patch \
+   file://fix-undefined-reference-to-pthread.patch \
+"
 SRC_URI[md5sum] = "36ace8f8dc4b1a82793ae759bbfc806f"
 SRC_URI[sha256sum] = 
"0e72e91290d553c303095a50ea660279d8f11b76c6c86e826f470442fcdf1edd"
+
+BINCONFIG = "${bindir}/libgcrypt-config"
+
+inherit autotools texinfo binconfig-disabled pkgconfig
+
+EXTRA_OECONF = "--disable-asm"
+
+PACKAGECONFIG ??= "capabilities"
+PACKAGECONFIG[capabilities] = 
"--with-capabilities,--without-capabilities,libcap"
+
+do_configure_prepend () {
+   # Else this could be used in preference to the one in aclocal-copy
+   rm -f ${S}/m4/gpg-error.m4
+}
+
+# libgcrypt.pc is added locally and thus installed here
+do_install_append() {
+   install -d ${D}/${libdir}/pkgconfig
+   install -m 0644 ${B}/src/libgcrypt.pc ${D}/${libdir}/pkgconfig/
+}
+
+PACKAGES =+ "dumpsexp-dev"
+
+FILES_${PN}-dev += "${bindir}/hmac256"
+FILES_dumpsexp-dev += "${bindir}/dumpsexp"
+
+BBCLASSEXTEND = "native nativesdk"
-- 
2.11.0

-- 
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

[OE-core] [PATCH 2/2] libgcrypt: upgrade to 1.7.8

2017-07-19 Thread Ross Burton 
Fixes CVE-2017-7526, 'flush+reload side-channel attack on RSA secret keys dubbed
"Sliding right into disaster"'.

Signed-off-by: Ross Burton 
---
 .../libgcrypt/{libgcrypt_1.7.7.bb => libgcrypt_1.7.8.bb}  | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)
 rename meta/recipes-support/libgcrypt/{libgcrypt_1.7.7.bb => 
libgcrypt_1.7.8.bb} (92%)

diff --git a/meta/recipes-support/libgcrypt/libgcrypt_1.7.7.bb 
b/meta/recipes-support/libgcrypt/libgcrypt_1.7.8.bb
similarity index 92%
rename from meta/recipes-support/libgcrypt/libgcrypt_1.7.7.bb
rename to meta/recipes-support/libgcrypt/libgcrypt_1.7.8.bb
index 7f7d852fb3b..83351594ea1 100644
--- a/meta/recipes-support/libgcrypt/libgcrypt_1.7.7.bb
+++ b/meta/recipes-support/libgcrypt/libgcrypt_1.7.8.bb
@@ -21,8 +21,8 @@ SRC_URI = "${GNUPG_MIRROR}/libgcrypt/libgcrypt-${PV}.tar.gz \
file://fix-ICE-failure-on-mips-with-option-O-and-g.patch \
file://fix-undefined-reference-to-pthread.patch \
 "
-SRC_URI[md5sum] = "36ace8f8dc4b1a82793ae759bbfc806f"
-SRC_URI[sha256sum] = 
"0e72e91290d553c303095a50ea660279d8f11b76c6c86e826f470442fcdf1edd"
+SRC_URI[md5sum] = "5588b89b75b1353e2454b04c7b8368f3"
+SRC_URI[sha256sum] = 
"cb076b2efc7ba752f3d4c663c9ee0589a98b1d614fe90878b1facd607a45fd43"
 
 BINCONFIG = "${bindir}/libgcrypt-config"
 
-- 
2.11.0

-- 
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

[OE-core] [PATCH 2/5] openssh: depend on openssl 1.0

2017-07-19 Thread Alexander Kanavin 
The proposed openssl 1.1 patches are here:
https://github.com/openssh/openssh-portable/pull/48

Openssl maintainers are not in a hurry to get 1.1 support in;
if it doesn't show up within reasonable time, we can take a patch
from Fedora:
http://lists.mindrot.org/pipermail/openssh-unix-dev/2016-November/035454.html

Signed-off-by: Alexander Kanavin 
---
 meta/recipes-connectivity/openssh/openssh_7.5p1.bb | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/meta/recipes-connectivity/openssh/openssh_7.5p1.bb 
b/meta/recipes-connectivity/openssh/openssh_7.5p1.bb
index 7bd313bb4e8..3b8fd7d1cc5 100644
--- a/meta/recipes-connectivity/openssh/openssh_7.5p1.bb
+++ b/meta/recipes-connectivity/openssh/openssh_7.5p1.bb
@@ -8,7 +8,8 @@ SECTION = "console/network"
 LICENSE = "BSD"
 LIC_FILES_CHKSUM = "file://LICENCE;md5=e326045657e842541d3f35aada442507"
 
-DEPENDS = "zlib openssl"
+# openssl 1.1 patches are proposed at 
https://github.com/openssh/openssh-portable/pull/48
+DEPENDS = "zlib openssl10"
 DEPENDS += "${@bb.utils.contains('DISTRO_FEATURES', 'pam', 'libpam', '', d)}"
 
 SRC_URI = 
"http://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-${PV}.tar.gz \
-- 
2.13.2

-- 
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

[OE-core] [PATCH 5/5] u-boot: Upgrade to 2017.07 release

2017-07-19 Thread Alexander Kanavin 
From: Otavio Salvador 

This patch upgrades the U-Boot to the 2017.07 release.

Signed-off-by: Otavio Salvador 
Signed-off-by: Alexander Kanavin 
---
 .../u-boot/{u-boot-common_2017.05.inc => u-boot-common_2017.07.inc} | 2 +-
 .../u-boot/{u-boot-fw-utils_2017.05.bb => u-boot-fw-utils_2017.07.bb}   | 0
 .../u-boot/{u-boot-mkimage_2017.05.bb => u-boot-mkimage_2017.07.bb} | 0
 meta/recipes-bsp/u-boot/{u-boot_2017.05.bb => u-boot_2017.07.bb}| 0
 4 files changed, 1 insertion(+), 1 deletion(-)
 rename meta/recipes-bsp/u-boot/{u-boot-common_2017.05.inc => 
u-boot-common_2017.07.inc} (88%)
 rename meta/recipes-bsp/u-boot/{u-boot-fw-utils_2017.05.bb => 
u-boot-fw-utils_2017.07.bb} (100%)
 rename meta/recipes-bsp/u-boot/{u-boot-mkimage_2017.05.bb => 
u-boot-mkimage_2017.07.bb} (100%)
 rename meta/recipes-bsp/u-boot/{u-boot_2017.05.bb => u-boot_2017.07.bb} (100%)

diff --git a/meta/recipes-bsp/u-boot/u-boot-common_2017.05.inc 
b/meta/recipes-bsp/u-boot/u-boot-common_2017.07.inc
similarity index 88%
rename from meta/recipes-bsp/u-boot/u-boot-common_2017.05.inc
rename to meta/recipes-bsp/u-boot/u-boot-common_2017.07.inc
index 0e52f27df8c..f27989daa17 100644
--- a/meta/recipes-bsp/u-boot/u-boot-common_2017.05.inc
+++ b/meta/recipes-bsp/u-boot/u-boot-common_2017.07.inc
@@ -7,7 +7,7 @@ PE = "1"
 
 # We use the revision in order to avoid having to fetch it from the
 # repo during parse
-SRCREV = "64c4ffa9fa223f7ae8640f9c8f3044bfa0e3bfda"
+SRCREV = "d85ca029f257b53a96da6c2fb421e78a003a9943"
 
 SRC_URI = "git://git.denx.de/u-boot.git \
 file://MPC8315ERDB-enable-DHCP.patch \
diff --git a/meta/recipes-bsp/u-boot/u-boot-fw-utils_2017.05.bb 
b/meta/recipes-bsp/u-boot/u-boot-fw-utils_2017.07.bb
similarity index 100%
rename from meta/recipes-bsp/u-boot/u-boot-fw-utils_2017.05.bb
rename to meta/recipes-bsp/u-boot/u-boot-fw-utils_2017.07.bb
diff --git a/meta/recipes-bsp/u-boot/u-boot-mkimage_2017.05.bb 
b/meta/recipes-bsp/u-boot/u-boot-mkimage_2017.07.bb
similarity index 100%
rename from meta/recipes-bsp/u-boot/u-boot-mkimage_2017.05.bb
rename to meta/recipes-bsp/u-boot/u-boot-mkimage_2017.07.bb
diff --git a/meta/recipes-bsp/u-boot/u-boot_2017.05.bb 
b/meta/recipes-bsp/u-boot/u-boot_2017.07.bb
similarity index 100%
rename from meta/recipes-bsp/u-boot/u-boot_2017.05.bb
rename to meta/recipes-bsp/u-boot/u-boot_2017.07.bb
-- 
2.13.2

-- 
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

[OE-core] [PATCH 4/5] gstreamer-plugins-bad: replace openssl dependency with nettle for hls plugin

2017-07-19 Thread Alexander Kanavin 
It has not been ported to openssl 1.1 (and there's nothing in upstream git),
but it's possible to use nettle or gcrypt intead.

Signed-off-by: Alexander Kanavin 
---
 meta/recipes-multimedia/gstreamer/gstreamer1.0-plugins-bad.inc | 4 +---
 1 file changed, 1 insertion(+), 3 deletions(-)

diff --git a/meta/recipes-multimedia/gstreamer/gstreamer1.0-plugins-bad.inc 
b/meta/recipes-multimedia/gstreamer/gstreamer1.0-plugins-bad.inc
index e964fef3f20..7427772a45f 100644
--- a/meta/recipes-multimedia/gstreamer/gstreamer1.0-plugins-bad.inc
+++ b/meta/recipes-multimedia/gstreamer/gstreamer1.0-plugins-bad.inc
@@ -40,9 +40,7 @@ PACKAGECONFIG[flite]   = 
"--enable-flite,--disable-flite,flite-alsa"
 PACKAGECONFIG[fluidsynth]  = 
"--enable-fluidsynth,--disable-fluidsynth,fluidsynth"
 PACKAGECONFIG[gles2]   = 
"--enable-gles2,--disable-gles2,virtual/libgles2"
 PACKAGECONFIG[gtk] = "--enable-gtk3,--disable-gtk3,gtk+3"
-# ensure OpenSSL is used for HLS AES description instead of nettle
-# (OpenSSL is a shared dependency with dtls)
-PACKAGECONFIG[hls] = "--enable-hls 
--with-hls-crypto=openssl,--disable-hls,openssl"
+PACKAGECONFIG[hls] = "--enable-hls 
--with-hls-crypto=nettle,--disable-hls,nettle"
 PACKAGECONFIG[kms] = "--enable-kms,--disable-kms,libdrm"
 PACKAGECONFIG[libmms]  = "--enable-libmms,--disable-libmms,libmms"
 PACKAGECONFIG[libssh2] = "--enable-libssh2,--disable-libssh2,libssh2"
-- 
2.13.2

-- 
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

[OE-core] [PATCH 3/5] cryptodev-tests: depend on openssl 1.0

2017-07-19 Thread Alexander Kanavin 
Upstream ticket:
https://github.com/cryptodev-linux/cryptodev-linux/issues/22

Signed-off-by: Alexander Kanavin 
---
 meta/recipes-kernel/cryptodev/cryptodev-tests_1.8.bb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/meta/recipes-kernel/cryptodev/cryptodev-tests_1.8.bb 
b/meta/recipes-kernel/cryptodev/cryptodev-tests_1.8.bb
index c4005242a76..13011799ad5 100644
--- a/meta/recipes-kernel/cryptodev/cryptodev-tests_1.8.bb
+++ b/meta/recipes-kernel/cryptodev/cryptodev-tests_1.8.bb
@@ -2,7 +2,7 @@ require cryptodev.inc
 
 SUMMARY = "A test suite for /dev/crypto device driver"
 
-DEPENDS += "openssl"
+DEPENDS += "openssl10"
 
 SRC_URI += " \
 file://0001-Add-the-compile-and-install-rules-for-cryptodev-test.patch \
-- 
2.13.2

-- 
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

[OE-core] [PATCH 1/5] openssl: add a 1.1 version

2017-07-19 Thread Alexander Kanavin 
Existing openssl 1.0 recipe is renamed to openssl10; it will
continue to be provided for as long as upstream supports it
(and there are still several recipes which do not work with openssl
1.1 due to API differences).

A few files (such as openssl binary) are no longer installed by openssl 1.0,
because they clash with openssl 1.1.

Signed-off-by: Alexander Kanavin 
---
 meta/conf/distro/include/no-static-libs.inc|   3 +
 ...ve-test-that-requires-running-as-non-root.patch |  49 +++
 ...1-Take-linking-flags-from-LDFLAGS-env-var.patch |  43 ++
 .../recipes-connectivity/openssl/openssl/run-ptest |   4 +-
 .../openssl/{openssl.inc => openssl10.inc} |  14 +-
 ...build-with-clang-using-external-assembler.patch |   0
 .../{openssl => openssl10}/Makefiles-ptest.patch   |   0
 .../Use-SHA256-not-MD5-as-default-digest.patch |   0
 .../configure-musl-target.patch|   0
 .../{openssl => openssl10}/configure-targets.patch |   0
 .../debian/c_rehash-compat.patch   |   0
 .../openssl/{openssl => openssl10}/debian/ca.patch |   0
 .../debian/debian-targets.patch|   0
 .../{openssl => openssl10}/debian/man-dir.patch|   0
 .../debian/man-section.patch   |   0
 .../{openssl => openssl10}/debian/no-rpath.patch   |   0
 .../debian/no-symbolic.patch   |   0
 .../{openssl => openssl10}/debian/pic.patch|   0
 .../debian/version-script.patch|   0
 .../debian1.0.2/block_digicert_malaysia.patch  |   0
 .../debian1.0.2/block_diginotar.patch  |   0
 .../debian1.0.2/soname.patch   |   0
 .../debian1.0.2/version-script.patch   |   0
 .../engines-install-in-libdir-ssl.patch|   0
 .../openssl/{openssl => openssl10}/find.pl |   0
 .../{openssl => openssl10}/oe-ldflags.patch|   0
 .../openssl-1.0.2a-x32-asm.patch   |   0
 .../{openssl => openssl10}/openssl-c_rehash.sh |   0
 .../openssl-fix-des.pod-error.patch|   0
 .../openssl-util-perlpath.pl-cwd.patch |   0
 .../openssl_fix_for_x32.patch  |   0
 .../openssl/{openssl => openssl10}/parallel.patch  |   0
 .../{openssl => openssl10}/ptest-deps.patch|   0
 .../ptest_makefile_deps.patch  |   0
 .../openssl/openssl10/run-ptest|   2 +
 .../{openssl => openssl10}/shared-libs.patch   |   0
 .../{openssl_1.0.2l.bb => openssl10_1.0.2l.bb} |   4 +-
 .../recipes-connectivity/openssl/openssl_1.1.0f.bb | 146 +
 38 files changed, 260 insertions(+), 5 deletions(-)
 create mode 100644 
meta/recipes-connectivity/openssl/openssl/0001-Remove-test-that-requires-running-as-non-root.patch
 create mode 100644 
meta/recipes-connectivity/openssl/openssl/0001-Take-linking-flags-from-LDFLAGS-env-var.patch
 mode change 100755 => 100644 
meta/recipes-connectivity/openssl/openssl/run-ptest
 rename meta/recipes-connectivity/openssl/{openssl.inc => openssl10.inc} (95%)
 rename meta/recipes-connectivity/openssl/{openssl => 
openssl10}/0001-Fix-build-with-clang-using-external-assembler.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl => 
openssl10}/Makefiles-ptest.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl => 
openssl10}/Use-SHA256-not-MD5-as-default-digest.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl => 
openssl10}/configure-musl-target.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl => 
openssl10}/configure-targets.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl => 
openssl10}/debian/c_rehash-compat.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl => 
openssl10}/debian/ca.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl => 
openssl10}/debian/debian-targets.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl => 
openssl10}/debian/man-dir.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl => 
openssl10}/debian/man-section.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl => 
openssl10}/debian/no-rpath.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl => 
openssl10}/debian/no-symbolic.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl => 
openssl10}/debian/pic.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl => 
openssl10}/debian/version-script.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl => 
openssl10}/debian1.0.2/block_digicert_malaysia.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl => 
openssl10}/debian1.0.2/block_diginotar.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl => 
openssl10}/debian1.0.2/soname.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl => 
openssl10}/debian1.0.2/version-script.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl =>

[OE-core] [PATCH 0/5] Add openssl 1.1

2017-07-19 Thread Alexander Kanavin 
This patch series introduces the recipe for openssl 1.1 (openssl 1.0 is 
preserved
but renamed to openssl10), and does a few necessary adjustmenets and updates to 
other
recipes.

Openssl 1.1 is an opt-out; it has the same recipe name as openssl 1.0 had, and 
so
all dependencies are compiled with it by default. If there's an API issue, 
please
fix it, or adjust the recipe to depend on 'openssl10' (which is a lesser 
solution,
and subject to openssl 1.0 eventually being removed from oe-core).

The following changes since commit 50af58cedb3153f058d23a0a9584cf69bdcce81b:

  systemd: refuse to load units with errors (CVE-2017-182) (2017-07-19 
11:30:16 +0100)

are available in the git repository at:

  git://git.yoctoproject.org/poky-contrib akanavin/openssl-1.1
  http://git.yoctoproject.org/cgit.cgi/poky-contrib/log/?h=akanavin/openssl-1.1

Alexander Kanavin (4):
  openssl: add a 1.1 version
  openssh: depend on openssl 1.0
  cryptodev-tests: depend on openssl 1.0
  gstreamer-plugins-bad: replace openssl dependency with nettle for hls
plugin

Otavio Salvador (1):
  u-boot: Upgrade to 2017.07 release

 meta/conf/distro/include/no-static-libs.inc|   3 +
 ...ommon_2017.05.inc => u-boot-common_2017.07.inc} |   2 +-
 ...utils_2017.05.bb => u-boot-fw-utils_2017.07.bb} |   0
 ...kimage_2017.05.bb => u-boot-mkimage_2017.07.bb} |   0
 .../{u-boot_2017.05.bb => u-boot_2017.07.bb}   |   0
 meta/recipes-connectivity/openssh/openssh_7.5p1.bb |   3 +-
 ...ve-test-that-requires-running-as-non-root.patch |  49 +++
 ...1-Take-linking-flags-from-LDFLAGS-env-var.patch |  43 ++
 .../recipes-connectivity/openssl/openssl/run-ptest |   4 +-
 .../openssl/{openssl.inc => openssl10.inc} |  14 +-
 ...build-with-clang-using-external-assembler.patch |   0
 .../{openssl => openssl10}/Makefiles-ptest.patch   |   0
 .../Use-SHA256-not-MD5-as-default-digest.patch |   0
 .../configure-musl-target.patch|   0
 .../{openssl => openssl10}/configure-targets.patch |   0
 .../debian/c_rehash-compat.patch   |   0
 .../openssl/{openssl => openssl10}/debian/ca.patch |   0
 .../debian/debian-targets.patch|   0
 .../{openssl => openssl10}/debian/man-dir.patch|   0
 .../debian/man-section.patch   |   0
 .../{openssl => openssl10}/debian/no-rpath.patch   |   0
 .../debian/no-symbolic.patch   |   0
 .../{openssl => openssl10}/debian/pic.patch|   0
 .../debian/version-script.patch|   0
 .../debian1.0.2/block_digicert_malaysia.patch  |   0
 .../debian1.0.2/block_diginotar.patch  |   0
 .../debian1.0.2/soname.patch   |   0
 .../debian1.0.2/version-script.patch   |   0
 .../engines-install-in-libdir-ssl.patch|   0
 .../openssl/{openssl => openssl10}/find.pl |   0
 .../{openssl => openssl10}/oe-ldflags.patch|   0
 .../openssl-1.0.2a-x32-asm.patch   |   0
 .../{openssl => openssl10}/openssl-c_rehash.sh |   0
 .../openssl-fix-des.pod-error.patch|   0
 .../openssl-util-perlpath.pl-cwd.patch |   0
 .../openssl_fix_for_x32.patch  |   0
 .../openssl/{openssl => openssl10}/parallel.patch  |   0
 .../{openssl => openssl10}/ptest-deps.patch|   0
 .../ptest_makefile_deps.patch  |   0
 .../openssl/openssl10/run-ptest|   2 +
 .../{openssl => openssl10}/shared-libs.patch   |   0
 .../{openssl_1.0.2l.bb => openssl10_1.0.2l.bb} |   4 +-
 .../recipes-connectivity/openssl/openssl_1.1.0f.bb | 146 +
 .../cryptodev/cryptodev-tests_1.8.bb   |   2 +-
 .../gstreamer/gstreamer1.0-plugins-bad.inc |   4 +-
 45 files changed, 265 insertions(+), 11 deletions(-)
 rename meta/recipes-bsp/u-boot/{u-boot-common_2017.05.inc => 
u-boot-common_2017.07.inc} (88%)
 rename meta/recipes-bsp/u-boot/{u-boot-fw-utils_2017.05.bb => 
u-boot-fw-utils_2017.07.bb} (100%)
 rename meta/recipes-bsp/u-boot/{u-boot-mkimage_2017.05.bb => 
u-boot-mkimage_2017.07.bb} (100%)
 rename meta/recipes-bsp/u-boot/{u-boot_2017.05.bb => u-boot_2017.07.bb} (100%)
 create mode 100644 
meta/recipes-connectivity/openssl/openssl/0001-Remove-test-that-requires-running-as-non-root.patch
 create mode 100644 
meta/recipes-connectivity/openssl/openssl/0001-Take-linking-flags-from-LDFLAGS-env-var.patch
 mode change 100755 => 100644 
meta/recipes-connectivity/openssl/openssl/run-ptest
 rename meta/recipes-connectivity/openssl/{openssl.inc => openssl10.inc} (95%)
 rename meta/recipes-connectivity/openssl/{openssl => 
openssl10}/0001-Fix-build-with-clang-using-external-assembler.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl => 
openssl10}/Makefiles-ptest.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl => 
openssl10}/Use-SHA256-not-MD5-as-default-digest.patch (100%)
 rename

Re: [OE-core] [PATCH 0/1] bind: 9.10..3-P3 -> 9.10.5-P3

2017-07-19 Thread Alexander Kanavin 

On 07/19/2017 12:08 AM, Khem Raj wrote:

The policy in oe-core master is to update to latest stable upstream
releases, so please provide an update to 9.11.x. If you want to keep 9.10.x,
you can do that, but please provide a more specific reason.


if there are ABI incompatible changes then we have to scope the impact
and plan the upgrade accordingly, if its backward compatible then yes its
the norm.


What I'm saying is that it should not be a "9.10 now, 9.11 maybe later" 
when working with a master branch. The proper way is to "investigate and 
plan the upgrade to 9.11, update to 9.10 only if necessary, based on 
that investigation".



Alex
--
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

[OE-core] ✗ patchtest: failure for systemd: refuse to load units with errors (CVE-2017-1000082) (rev2)

2017-07-19 Thread Patchwork 
== Series Details ==

Series: systemd: refuse to load units with errors (CVE-2017-182) (rev2)
Revision: 2
URL   : https://patchwork.openembedded.org/series/7796/
State : failure

== Summary ==


Thank you for submitting this patch series to OpenEmbedded Core. This is
an automated response. Several tests have been executed on the proposed
series by patchtest resulting in the following failures:



* Patch[pyro] systemd: refuse to load units with errors 
(CVE-2017-182)
 Issue Missing or incorrectly formatted CVE tag in commit message 
[test_cve_presence_in_commit_message] 
  Suggested fixInclude a "CVE--" tag in the commit message



If you believe any of these test results are incorrect, please reply to the
mailing list (openembedded-core@lists.openembedded.org) raising your concerns.
Otherwise we would appreciate you correcting the issues and submitting a new
version of the patchset if applicable. Please ensure you add/increment the
version number when sending the new version (i.e. [PATCH] -> [PATCH v2] ->
[PATCH v3] -> ...).

---
Test framework: http://git.yoctoproject.org/cgit/cgit.cgi/patchtest
Test suite: http://git.yoctoproject.org/cgit/cgit.cgi/patchtest-oe

-- 
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

[OE-core] [PATCH][pyro] systemd: refuse to load units with errors (CVE-2017-1000082)

2017-07-19 Thread Ross Burton 
If a unit has a statement such as User=0day where the username exists but is
strictly speaking invalid, the unit will be started as the root user instead.

Backport a patch from upstream to mitigate this by refusing to start units such
as this.

Signed-off-by: Ross Burton 
---
 ...ragment-refuse-units-with-errors-in-certa.patch | 329 +
 meta/recipes-core/systemd/systemd_232.bb   |   1 +
 2 files changed, 330 insertions(+)
 create mode 100644 
meta/recipes-core/systemd/systemd/0001-core-load-fragment-refuse-units-with-errors-in-certa.patch

diff --git 
a/meta/recipes-core/systemd/systemd/0001-core-load-fragment-refuse-units-with-errors-in-certa.patch
 
b/meta/recipes-core/systemd/systemd/0001-core-load-fragment-refuse-units-with-errors-in-certa.patch
new file mode 100644
index 000..80948b2ceea
--- /dev/null
+++ 
b/meta/recipes-core/systemd/systemd/0001-core-load-fragment-refuse-units-with-errors-in-certa.patch
@@ -0,0 +1,329 @@
+If a user is created with a strictly-speaking invalid name such as '0day' and a
+unit created to run as that user, systemd rejects the username and runs the 
unit
+as root.
+
+CVE: CVE-2017-182
+Upstream-Status: Backport
+Signed-off-by: Ross Burton 
+
+From d8e1310e1ed7b6f122bc7eb8ba061fbd088783c0 Mon Sep 17 00:00:00 2001
+From: =?UTF-8?q?Zbigniew=20J=C4=99drzejewski-Szmek?= 
+Date: Thu, 6 Jul 2017 13:28:19 -0400
+Subject: [PATCH] core/load-fragment: refuse units with errors in certain
+ directives
+
+If an error is encountered in any of the Exec* lines, WorkingDirectory,
+SELinuxContext, ApparmorProfile, SmackProcessLabel, Service (in .socket
+units), User, or Group, refuse to load the unit. If the config stanza
+has support, ignore the failure if '-' is present.
+
+For those configuration directives, even if we started the unit, it's
+pretty likely that it'll do something unexpected (like write files
+in a wrong place, or with a wrong context, or run with wrong permissions,
+etc). It seems better to refuse to start the unit and have the admin
+clean up the configuration without giving the service a chance to mess
+up stuff.
+
+Note that all "security" options that restrict what the unit can do
+(Capabilities, AmbientCapabilities, Restrict*, SystemCallFilter, Limit*,
+PrivateDevices, Protect*, etc) are _not_ treated like this. Such options are
+only supplementary, and are not always available depending on the architecture
+and compilation options, so unit authors have to make sure that the service
+runs correctly without them anyway.
+
+Fixes #6237, #6277.
+
+Signed-off-by: Ross Burton 
+---
+ src/core/load-fragment.c  | 104 --
+ src/test/test-unit-file.c |  14 +++
+ 2 files changed, 70 insertions(+), 48 deletions(-)
+
+diff --git a/src/core/load-fragment.c b/src/core/load-fragment.c
+index cbc826809..2047974f4 100644
+--- a/src/core/load-fragment.c
 b/src/core/load-fragment.c
+@@ -630,20 +630,28 @@ int config_parse_exec(
+ 
+ if (isempty(f)) {
+ /* First word is either "-" or "@" with no command. */
+-log_syntax(unit, LOG_ERR, filename, line, 0, "Empty 
path in command line, ignoring: \"%s\"", rvalue);
+-return 0;
++log_syntax(unit, LOG_ERR, filename, line, 0,
++   "Empty path in command line%s: \"%s\"",
++   ignore ? ", ignoring" : "", rvalue);
++return ignore ? 0 : -ENOEXEC;
+ }
+ if (!string_is_safe(f)) {
+-log_syntax(unit, LOG_ERR, filename, line, 0, 
"Executable path contains special characters, ignoring: %s", rvalue);
+-return 0;
++log_syntax(unit, LOG_ERR, filename, line, 0,
++   "Executable path contains special 
characters%s: %s",
++   ignore ? ", ignoring" : "", rvalue);
++return ignore ? 0 : -ENOEXEC;
+ }
+ if (!path_is_absolute(f)) {
+-log_syntax(unit, LOG_ERR, filename, line, 0, 
"Executable path is not absolute, ignoring: %s", rvalue);
+-return 0;
++log_syntax(unit, LOG_ERR, filename, line, 0,
++   "Executable path is not absolute%s: %s",
++   ignore ? ", ignoring" : "", rvalue);
++return ignore ? 0 : -ENOEXEC;
+ }
+ if (endswith(f, "/")) {
+-log_syntax(unit, LOG_ERR, filename, line, 0, 
"Executable path specifies a directory, ignoring: %s", rvalue);
+-return 0;
++log_syntax(unit, LOG_ERR, filename, line, 0,
++

[OE-core] [PATCH 5/5] recipetool: create: reimplement fetching with normal fetch/unpack tasks

2017-07-19 Thread Paul Eggleton 
Now that we have the ability to run the tasks in a more standard context
through tinfoil, change recipetool's fetching code to use that to fetch
files using it. This has the major advantage that any dependencies of
do_fetch and do_unpack (e.g. for subversion or npm) will be handled
automatically. This also has the beneficial side-effect of fixing a
recent regression that prevented this fetch operation from working with
memory resident bitbake.

Fixes [YOCTO #11710].

Signed-off-by: Paul Eggleton 
---
 scripts/lib/recipetool/create.py | 171 +--
 1 file changed, 147 insertions(+), 24 deletions(-)

diff --git a/scripts/lib/recipetool/create.py b/scripts/lib/recipetool/create.py
index 4e965e4..b94b2cf 100644
--- a/scripts/lib/recipetool/create.py
+++ b/scripts/lib/recipetool/create.py
@@ -28,6 +28,11 @@ from urllib.parse import urlparse, urldefrag, urlsplit
 from recipetool.utils import ensure_npm
 import hashlib
 import bb.fetch2
+import random
+import string
+import tempfile
+import shutil
+
 logger = logging.getLogger('recipetool')
 
 tinfoil = None
@@ -407,10 +412,130 @@ def is_package(url):
 return True
 return False
 
+class FetchUrlFailure(Exception):
+def __init__(self, url):
+self.url = url
+def __str__(self):
+return "Failed to fetch URL %s" % self.url
+
+def get_temp_recipe_dir():
+# This is a little bit hacky but we need to find a place where we can put
+# the recipe so that bitbake can find it. We're going to delete it at the
+# end so it doesn't really matter where we put it.
+bbfiles = tinfoil.config_data.getVar('BBFILES').split()
+fetchrecipedir = None
+for pth in bbfiles:
+if pth.endswith('.bb'):
+pthdir = os.path.dirname(pth)
+if os.access(os.path.dirname(os.path.dirname(pthdir)), os.W_OK):
+fetchrecipedir = pthdir.replace('*', 'recipetool')
+if pthdir.endswith('workspace/recipes/*'):
+# Prefer the workspace
+break
+return fetchrecipedir
+
+def fetch_url(srcuri, srcrev, destdir, preserve_tmp=False):
+"""
+Fetch the specified URL using normal do_fetch and do_unpack tasks, i.e.
+any dependencies that need to be satisfied in order to support the fetch
+operation will be taken care of
+"""
+# FIXME find a better home for this
+
+checksums = {}
+fetchrecipepn = None
+
+# We need to put our temp directory under ${BASE_WORKDIR} otherwise
+# we may have problems with the recipe-specific sysroot population
+tmpparent = tinfoil.config_data.getVar('BASE_WORKDIR')
+bb.utils.mkdirhier(tmpparent)
+tmpdir = tempfile.mkdtemp(prefix='recipetool-', dir=tmpparent)
+try:
+tmpworkdir = os.path.join(tmpdir, 'work')
+logger.debug('fetch_url: temp dir is %s' % tmpdir)
+
+fetchrecipedir = get_temp_recipe_dir()
+if not fetchrecipedir:
+logger.error('Searched BBFILES but unable to find a writeable 
place to put temporary recipe')
+sys.exit(1)
+fetchrecipe = None
+bb.utils.mkdirhier(fetchrecipedir)
+try:
+# Generate a dummy recipe so we can follow more or less normal 
paths
+# for do_fetch and do_unpack
+# I'd use tempfile functions here but underscores can be produced 
by that and those
+# aren't allowed in recipe file names except to separate the 
version
+rndstring = ''.join(random.choice(string.ascii_uppercase + 
string.digits) for _ in range(8))
+fetchrecipe = os.path.join(fetchrecipedir, 'tmp-recipetool-%s.bb' 
% rndstring)
+fetchrecipepn = os.path.splitext(os.path.basename(fetchrecipe))[0]
+logger.debug('Generating initial recipe %s for fetching' % 
fetchrecipe)
+with open(fetchrecipe, 'w') as f:
+# We don't want to have to specify LIC_FILES_CHKSUM
+f.write('LICENSE = "CLOSED"\n')
+# We don't need the cross-compiler
+f.write('INHIBIT_DEFAULT_DEPS = "1"\n')
+# We don't have the checksums yet so we can't require them
+f.write('BB_STRICT_CHECKSUM = "ignore"\n')
+f.write('SRC_URI = "%s"\n' % srcuri)
+f.write('SRCREV = "%s"\n' % srcrev)
+f.write('WORKDIR = "%s"\n' % tmpworkdir)
+# Set S out of the way so it doesn't get created under the 
workdir
+f.write('S = "%s"\n' % os.path.join(tmpdir, 'emptysrc'))
+
+logger.info('Fetching %s...' % srcuri)
+
+# FIXME this is too noisy at the moment
+
+# Parse recipes so our new recipe gets picked up
+tinfoil.parse_recipes()
+
+def eventhandler(event):
+if isinstance(event, bb.fetch2.MissingChecksumEvent):
+checksums.update(event.checksums)
+

[OE-core] [PATCH 1/5] classes/staging: change fixme debug message from note to debug

2017-07-19 Thread Paul Eggleton 
These messages were added for debugging during the recipe specific
sysroot work. They may still be useful but they don't need to be notes -
if they are they show up in recipetool / devtool output when fetching
source.

Signed-off-by: Paul Eggleton 
---
 meta/classes/staging.bbclass | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/meta/classes/staging.bbclass b/meta/classes/staging.bbclass
index 8f470d5..162c8e9 100644
--- a/meta/classes/staging.bbclass
+++ b/meta/classes/staging.bbclass
@@ -170,7 +170,7 @@ def staging_processfixme(fixme, target, recipesysroot, 
recipesysrootnative, d):
 for fixmevar in ['COMPONENTS_DIR', 'HOSTTOOLS_DIR', 'PKGDATA_DIR']:
 fixme_path = d.getVar(fixmevar)
 cmd += " -e 's:FIXME_%s:%s:g'" % (fixmevar, fixme_path)
-bb.note(cmd)
+bb.debug(2, cmd)
 subprocess.check_output(cmd, shell=True)
 
 
-- 
2.9.4

-- 
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

[OE-core] [PATCH 4/5] recipetool: create: ensure meaningful error for malformed tarballs

2017-07-19 Thread Paul Eggleton 
If you pointed recipetool at a URL that should be a tarball e.g.
https://tls.mbed.org/download/start/mbedtls-2.4.2-apache.tgz but instead
it returns an HTML page, we try to unpack it, gzip complains but the
operation doesn't seem to fail - instead we just get back an empty
source tree. Change the checks to account for this - if the source tree
is empty, check if the downloaded file in DL_DIR looks like an HTML file
and error accordingly if it is. If it's not, error out anyway because
no source was unpacked and it should have been (otherwise we just
blindly set up EXTERNALSRC for this which is pointless).

Fixes an aspect of [YOCTO #11407].

Signed-off-by: Paul Eggleton 
---
 scripts/lib/recipetool/create.py | 22 ++
 1 file changed, 18 insertions(+), 4 deletions(-)

diff --git a/scripts/lib/recipetool/create.py b/scripts/lib/recipetool/create.py
index 868d18b..4e965e4 100644
--- a/scripts/lib/recipetool/create.py
+++ b/scripts/lib/recipetool/create.py
@@ -465,10 +465,16 @@ def create_recipe(args):
 srcsubdir = dirlist[0]
 srctree = os.path.join(srctree, srcsubdir)
 else:
-with open(singleitem, 'r', errors='surrogateescape') as f:
-if '

[OE-core] [PATCH 3/5] devtool: extract: refactor kern-tools-native handling

2017-07-19 Thread Paul Eggleton 
When extracting linux-yocto kernel source, we don't need to dance around
shutting down and starting up tinfoil anymore, we can just execute the
tasks as needed. This allows us to tidy up the code structure a bit.

Signed-off-by: Paul Eggleton 
---
 scripts/lib/devtool/standard.py | 37 +
 1 file changed, 5 insertions(+), 32 deletions(-)

diff --git a/scripts/lib/devtool/standard.py b/scripts/lib/devtool/standard.py
index 008cfa3..b1cc23d 100644
--- a/scripts/lib/devtool/standard.py
+++ b/scripts/lib/devtool/standard.py
@@ -371,7 +371,7 @@ def extract(args, config, basepath, workspace):
 """Entry point for the devtool 'extract' subcommand"""
 import bb
 
-tinfoil = _prep_extract_operation(config, basepath, args.recipename)
+tinfoil = setup_tinfoil(basepath=basepath)
 if not tinfoil:
 # Error already shown
 return 1
@@ -395,7 +395,7 @@ def sync(args, config, basepath, workspace):
 """Entry point for the devtool 'sync' subcommand"""
 import bb
 
-tinfoil = _prep_extract_operation(config, basepath, args.recipename)
+tinfoil = setup_tinfoil(basepath=basepath)
 if not tinfoil:
 # Error already shown
 return 1
@@ -416,29 +416,6 @@ def sync(args, config, basepath, workspace):
 tinfoil.shutdown()
 
 
-def _prep_extract_operation(config, basepath, recipename, tinfoil=None):
-"""HACK: Ugly workaround for making sure that requirements are met when
-   trying to extract a package. Returns the tinfoil instance to be used."""
-if not tinfoil:
-tinfoil = setup_tinfoil(basepath=basepath)
-
-rd = parse_recipe(config, tinfoil, recipename, True)
-if not rd:
-tinfoil.shutdown()
-return None
-
-if bb.data.inherits_class('kernel-yocto', rd):
-tinfoil.shutdown()
-try:
-stdout, _ = exec_build_env_command(config.init_path, basepath,
-   'bitbake kern-tools-native')
-tinfoil = setup_tinfoil(basepath=basepath)
-except bb.process.ExecutionError as err:
-raise DevtoolError("Failed to build kern-tools-native:\n%s" %
-   err.stdout)
-return tinfoil
-
-
 def _extract_source(srctree, keep_temp, devbranch, sync, d, tinfoil):
 """Extract sources of a recipe"""
 import oe.recipeutils
@@ -463,6 +440,9 @@ def _extract_source(srctree, keep_temp, devbranch, sync, d, 
tinfoil):
 raise DevtoolError("The %s recipe has do_unpack disabled, unable 
to "
"extract source" % pn, 4)
 
+if bb.data.inherits_class('kernel-yocto', d):
+tinfoil.build_targets('kern-tools-native')
+
 if not sync:
 # Prepare for shutil.move later on
 bb.utils.mkdirhier(srctree)
@@ -761,13 +741,6 @@ def modify(args, config, basepath, workspace):
 raise DevtoolError("--no-extract specified and source path %s does 
"
 "not exist or is not a directory" %
 srctree)
-if not args.no_extract:
-tinfoil = _prep_extract_operation(config, basepath, pn, tinfoil)
-if not tinfoil:
-# Error already shown
-return 1
-# We need to re-parse because tinfoil may have been re-initialised
-rd = parse_recipe(config, tinfoil, args.recipename, True)
 
 recipefile = rd.getVar('FILE')
 appendfile = recipe_to_append(recipefile, config, args.wildcard)
-- 
2.9.4

-- 
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

[OE-core] [PATCH 2/5] recipetool: create: refactor code for ensuring npm is available

2017-07-19 Thread Paul Eggleton 
Across devtool and recipetool we had an ugly set of code for ensuring
that we can call an npm binary, and much of that ugliness was a result
of not being able to run build tasks when tinfoil was active - if
recipetool found that npm was required and we didn't know beforehand
(e.g. we're fetching from a plain git repository as opposed to an npm://
URL where it's obvious) then it had to exit and return a special result
code, so that devtool knew it needed to build nodejs-native and then
call recipetool again. Tinfoil now allows us to run build tasks
directly, so we can take advantage of that instead and throw away the
ugly code at the same time.

Signed-off-by: Paul Eggleton 
---
 scripts/lib/devtool/__init__.py  | 31 --
 scripts/lib/devtool/standard.py  | 36 ---
 scripts/lib/recipetool/create.py | 26 +
 scripts/lib/recipetool/create_npm.py |  7 +--
 scripts/lib/recipetool/utils.py  | 37 
 5 files changed, 59 insertions(+), 78 deletions(-)
 create mode 100644 scripts/lib/recipetool/utils.py

diff --git a/scripts/lib/devtool/__init__.py b/scripts/lib/devtool/__init__.py
index 29c4c05..bba0721 100644
--- a/scripts/lib/devtool/__init__.py
+++ b/scripts/lib/devtool/__init__.py
@@ -261,34 +261,3 @@ def get_bbclassextend_targets(recipefile, pn):
 targets.append('%s-%s' % (pn, variant))
 return targets
 
-def ensure_npm(config, basepath, fixed_setup=False, check_exists=True):
-"""
-Ensure that npm is available and either build it or show a
-reasonable error message
-"""
-if check_exists:
-tinfoil = setup_tinfoil(config_only=False, basepath=basepath)
-try:
-rd = tinfoil.parse_recipe('nodejs-native')
-nativepath = rd.getVar('STAGING_BINDIR_NATIVE')
-finally:
-tinfoil.shutdown()
-npmpath = os.path.join(nativepath, 'npm')
-build_npm = not os.path.exists(npmpath)
-else:
-build_npm = True
-
-if build_npm:
-logger.info('Building nodejs-native')
-try:
-exec_build_env_command(config.init_path, basepath,
-'bitbake -q nodejs-native -c 
addto_recipe_sysroot', watch=True)
-except bb.process.ExecutionError as e:
-if "Nothing PROVIDES 'nodejs-native'" in e.stdout:
-if fixed_setup:
-msg = 'nodejs-native is required for npm but is not 
available within this SDK'
-else:
-msg = 'nodejs-native is required for npm but is not 
available - you will likely need to add a layer that provides nodejs'
-raise DevtoolError(msg)
-else:
-raise
diff --git a/scripts/lib/devtool/standard.py b/scripts/lib/devtool/standard.py
index 7e342e7..008cfa3 100644
--- a/scripts/lib/devtool/standard.py
+++ b/scripts/lib/devtool/standard.py
@@ -30,8 +30,9 @@ import errno
 import glob
 import filecmp
 from collections import OrderedDict
-from devtool import exec_build_env_command, setup_tinfoil, 
check_workspace_recipe, use_external_build, setup_git_repo, recipe_to_append, 
get_bbclassextend_targets, ensure_npm, DevtoolError
+from devtool import exec_build_env_command, setup_tinfoil, 
check_workspace_recipe, use_external_build, setup_git_repo, recipe_to_append, 
get_bbclassextend_targets, DevtoolError
 from devtool import parse_recipe
+from recipetool.utils import ensure_npm
 
 logger = logging.getLogger('devtool')
 
@@ -129,7 +130,9 @@ def add(args, config, basepath, workspace):
 extracmdopts = ''
 if args.fetchuri:
 if args.fetchuri.startswith('npm://'):
-ensure_npm(config, basepath, args.fixed_setup)
+with setup_tinfoil(config_only=True, basepath=basepath) as tinfoil:
+if not ensure_npm(tinfoil, args.fixed_setup):
+raise DevtoolError('npm required but not available')
 
 source = args.fetchuri
 if srctree:
@@ -155,28 +158,13 @@ def add(args, config, basepath, workspace):
 
 tempdir = tempfile.mkdtemp(prefix='devtool')
 try:
-builtnpm = False
-while True:
-try:
-stdout, _ = exec_build_env_command(config.init_path, basepath, 
'recipetool --color=%s create --devtool -o %s \'%s\' %s' % (color, tempdir, 
source, extracmdopts), watch=True)
-except bb.process.ExecutionError as e:
-if e.exitcode == 14:
-if builtnpm:
-raise DevtoolError('Re-running recipetool still failed 
to find npm')
-# FIXME this is a horrible hack that is unfortunately
-# necessary due to the fact that we can't run bitbake from
-# inside recipetool since recipetool keeps tinfoil active
-# with references to it

[OE-core] [PATCH 0/5] recipetool fetching fixes

2017-07-19 Thread Paul Eggleton 
Some improvements to recipetool create (and hence devtool add) around
handling dependencies during fetching, which required extensive
reworking of the code in order to use normal task execution instead of
calling the fetcher directly. This also fixes bug 11710 which blocked
devtool add / recipetool create from working in memres mode. Also
includes a couple of general fetching improvements.

NOTE: this patchset depends upon the tinfoil changes just sent to
bitbake-devel.


The following changes since commit ef68005a8c527e9b1d05b7769f0ec8ebe9ec3f91:

  webkitgtk: Upgrade to 2.16.5 (2017-07-17 13:49:04 +0100)

are available in the git repository at:

  git://git.openembedded.org/openembedded-core-contrib paule/devtool27
  http://cgit.openembedded.org/openembedded-core-contrib/log/?h=paule/devtool27

Paul Eggleton (5):
  classes/staging: change fixme debug message from note to debug
  recipetool: create: refactor code for ensuring npm is available
  devtool: extract: refactor kern-tools-native handling
  recipetool: create: ensure meaningful error for malformed tarballs
  recipetool: create: reimplement fetching with normal fetch/unpack tasks

 meta/classes/staging.bbclass |   2 +-
 scripts/lib/devtool/__init__.py  |  31 -
 scripts/lib/devtool/standard.py  |  73 +++-
 scripts/lib/recipetool/create.py | 211 +++
 scripts/lib/recipetool/create_npm.py |   7 +-
 scripts/lib/recipetool/utils.py  |  37 ++
 6 files changed, 226 insertions(+), 135 deletions(-)
 create mode 100644 scripts/lib/recipetool/utils.py

-- 
2.9.4

-- 
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

[OE-core] [RFC PATCH 4/5] runtime/cases/_ptest.py: add skip status

2017-07-19 Thread Robert Yang 
The packages' test cases maybe skipped, check and save them.

[YOCTO #11547]

Signed-off-by: Robert Yang 
---
 meta/lib/oeqa/runtime/cases/_ptest.py | 7 ++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/meta/lib/oeqa/runtime/cases/_ptest.py 
b/meta/lib/oeqa/runtime/cases/_ptest.py
index 034bfe98959..9810bd15178 100644
--- a/meta/lib/oeqa/runtime/cases/_ptest.py
+++ b/meta/lib/oeqa/runtime/cases/_ptest.py
@@ -10,6 +10,7 @@ class PtestRunnerTest(OERuntimeTestCase):
 def parse_ptest(self, logfile):
 parser = Lparser(test_0_pass_regex="^PASS:(.+)",
  test_0_fail_regex="^FAIL:(.+)",
+ test_0_skip_regex="^SKIP:(.+)",
  section_0_begin_regex="^BEGIN: .*/(.+)/ptest",
  section_0_end_regex="^END: .*/(.+)/ptest")
 parser.init()
@@ -38,6 +39,10 @@ class PtestRunnerTest(OERuntimeTestCase):
 result.store(current_section, name, status)
 continue
 
+if line_type == 'test' and status == 'skip':
+result.store(current_section, name, status)
+continue
+
 result.sort_tests()
 return result
 
@@ -66,7 +71,7 @@ class PtestRunnerTest(OERuntimeTestCase):
 
 # Parse and save results
 parse_result = self.parse_ptest(ptest_runner_log)
-parse_result.log_as_files(ptest_log_dir, test_status = ['pass','fail'])
+parse_result.log_as_files(ptest_log_dir, test_status = ['pass','fail', 
'skip'])
 if os.path.exists(ptest_log_dir_link):
 os.remove(ptest_log_dir_link)
 os.symlink(os.path.basename(ptest_log_dir), ptest_log_dir_link)
-- 
2.11.0

-- 
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

[OE-core] [RFC PATCH 3/5] oeqa/utils/logparser.py: add skip status

2017-07-19 Thread Robert Yang 
Some test cases maybe skipped, let's parse it.

[YOCTO #11547]

Signed-off-by: Robert Yang 
---
 meta/lib/oeqa/utils/logparser.py | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/meta/lib/oeqa/utils/logparser.py b/meta/lib/oeqa/utils/logparser.py
index b377dcd2716..4355ce0b767 100644
--- a/meta/lib/oeqa/utils/logparser.py
+++ b/meta/lib/oeqa/utils/logparser.py
@@ -9,7 +9,7 @@ from . import ftools
 # A parser that can be used to identify weather a line is a test result or a 
section statement.
 class Lparser(object):
 
-def __init__(self, test_0_pass_regex, test_0_fail_regex, 
section_0_begin_regex=None, section_0_end_regex=None, **kwargs):
+def __init__(self, test_0_pass_regex, test_0_fail_regex, 
test_0_skip_regex, section_0_begin_regex=None, section_0_end_regex=None, 
**kwargs):
 # Initialize the arguments dictionary
 if kwargs:
 self.args = kwargs
@@ -19,12 +19,13 @@ class Lparser(object):
 # Add the default args to the dictionary
 self.args['test_0_pass_regex'] = test_0_pass_regex
 self.args['test_0_fail_regex'] = test_0_fail_regex
+self.args['test_0_skip_regex'] = test_0_skip_regex
 if section_0_begin_regex:
 self.args['section_0_begin_regex'] = section_0_begin_regex
 if section_0_end_regex:
 self.args['section_0_end_regex'] = section_0_end_regex
 
-self.test_possible_status = ['pass', 'fail', 'error']
+self.test_possible_status = ['pass', 'fail', 'error', 'skip']
 self.section_possible_status = ['begin', 'end']
 
 self.initialized = False
-- 
2.11.0

-- 
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

[OE-core] [RFC PATCH 2/5] runtime/cases/_ptest.py: revive it

2017-07-19 Thread Robert Yang 
* Make it work with current oeqa
* Skip the test if ptest is not in DISTRO_FEATURES
* Skip the test if ptest-pkgs is not in IMAGE_FEATURES
* The logs are saved to:
  testimage/ptest_log -> testimage/ptest_log.
* Will write a tool to make regression check

[YOCTO #11547]

Signed-off-by: Robert Yang 
---
 meta/lib/oeqa/runtime/cases/_ptest.py | 91 ---
 1 file changed, 30 insertions(+), 61 deletions(-)

diff --git a/meta/lib/oeqa/runtime/cases/_ptest.py 
b/meta/lib/oeqa/runtime/cases/_ptest.py
index aaed9a5352f..034bfe98959 100644
--- a/meta/lib/oeqa/runtime/cases/_ptest.py
+++ b/meta/lib/oeqa/runtime/cases/_ptest.py
@@ -1,28 +1,10 @@
-import os
-import shutil
-import subprocess
-
 from oeqa.runtime.case import OERuntimeTestCase
 from oeqa.core.decorator.depends import OETestDepends
 from oeqa.core.decorator.oeid import OETestID
-from oeqa.core.decorator.data import skipIfNotDataVar, skipIfNotFeature
-from oeqa.runtime.decorator.package import OEHasPackage
-
-from oeqa.runtime.cases.dnf import DnfTest
-from oeqa.utils.logparser import *
-from oeqa.utils.httpserver import HTTPService
-
-class PtestRunnerTest(DnfTest):
+from oeqa.core.decorator.data import skipIfNotFeature
+from oeqa.utils.logparser import Lparser, Result
 
-@classmethod
-def setUpClass(cls):
-rpm_deploy = os.path.join(cls.tc.td['DEPLOY_DIR'], 'rpm')
-cls.repo_server = HTTPService(rpm_deploy, cls.tc.target.server_ip)
-cls.repo_server.start()
-
-@classmethod
-def tearDownClass(cls):
-cls.repo_server.stop()
+class PtestRunnerTest(OERuntimeTestCase):
 
 # a ptest log parser
 def parse_ptest(self, logfile):
@@ -59,45 +41,32 @@ class PtestRunnerTest(DnfTest):
 result.sort_tests()
 return result
 
-def _install_ptest_packages(self):
-# Get ptest packages that can be installed in the image.
-packages_dir = os.path.join(self.tc.td['DEPLOY_DIR'], 'rpm')
-ptest_pkgs = [pkg[:pkg.find('-ptest')+6]
-  for _, _, filenames in os.walk(packages_dir)
-  for pkg in filenames
-  if 'ptest' in pkg
-  and pkg[:pkg.find('-ptest')] in 
self.tc.image_packages]
-
-repo_url = 'http://%s:%s' % (self.target.server_ip,
- self.repo_server.port)
-dnf_options = ('--repofrompath=oe-ptest-repo,%s '
-   '--nogpgcheck '
-   'install -y' % repo_url)
-self.dnf('%s %s ptest-runner' % (dnf_options, ' '.join(ptest_pkgs)))
-
-@skipIfNotFeature('package-management',
-  'Test requires package-management to be in 
DISTRO_FEATURES')
-@skipIfNotFeature('ptest',
-  'Test requires package-management to be in 
DISTRO_FEATURES')
-@skipIfNotDataVar('IMAGE_PKGTYPE', 'rpm',
-  'RPM is not the primary package manager')
-@OEHasPackage(['dnf'])
+@OETestID(1600)
+@skipIfNotFeature('ptest', 'Test requires ptest to be in DISTRO_FEATURES')
+@skipIfNotFeature('ptest-pkgs', 'Test requires ptest-pkgs to be in 
IMAGE_FEATURES')
 @OETestDepends(['ssh.SSHTest.test_ssh'])
 def test_ptestrunner(self):
-self.ptest_log = os.path.join(self.tc.td['TEST_LOG_DIR'],
-  'ptest-%s.log' % self.tc.td['DATETIME'])
-self._install_ptest_packages()
-
-(runnerstatus, result) = self.target.run('/usr/bin/ptest-runner > 
/tmp/ptest.log 2>&1', 0)
-#exit code is !=0 even if ptest-runner executes because some ptest 
tests fail.
-self.assertTrue(runnerstatus != 127, msg="Cannot execute 
ptest-runner!")
-self.target.copyFrom('/tmp/ptest.log', self.ptest_log)
-shutil.copyfile(self.ptest_log, "ptest.log")
-
-result = self.parse_ptest("ptest.log")
-log_results_to_location = "./results"
-if os.path.exists(log_results_to_location):
-shutil.rmtree(log_results_to_location)
-os.makedirs(log_results_to_location)
-
-result.log_as_files(log_results_to_location, test_status = 
['pass','fail'])
+import datetime
+
+test_log_dir = self.td['TEST_LOG_DIR']
+# Don't use self.td['DATETIME'], it's a cached value, not up-to-date,
+# and may cause "File exists" when re-reun.
+datetime = datetime.datetime.now().strftime('%Y%m%d%H%M%S')
+ptest_log_dir_link = os.path.join(test_log_dir, 'ptest_log')
+ptest_log_dir = '%s.%s' % (ptest_log_dir_link, datetime)
+ptest_runner_log = os.path.join(ptest_log_dir, 'ptest-runner.log')
+
+status, output = self.target.run('ptest-runner', 0)
+os.makedirs(ptest_log_dir)
+with open(ptest_runner_log, 'w') as f:
+f.write(output)
+
+# status !=0 is OK since some ptest tests may fail
+self.assertTrue(status != 127, msg="Cannot execute

[OE-core] [RFC PATCH 1/5] oeqa/targetcontrol.py: simplify checking for qemu_use_kvm

2017-07-19 Thread Robert Yang 
The "if qemu_use_kvm" is not needed.

Signed-off-by: Robert Yang 
---
 meta/lib/oeqa/targetcontrol.py | 5 ++---
 1 file changed, 2 insertions(+), 3 deletions(-)

diff --git a/meta/lib/oeqa/targetcontrol.py b/meta/lib/oeqa/targetcontrol.py
index 3255e3a5c63..11e6c820e85 100644
--- a/meta/lib/oeqa/targetcontrol.py
+++ b/meta/lib/oeqa/targetcontrol.py
@@ -132,9 +132,8 @@ class QemuTarget(BaseTarget):
 dump_host_cmds = d.getVar("testimage_dump_host")
 dump_dir = d.getVar("TESTIMAGE_DUMP_DIR")
 qemu_use_kvm = d.getVar("QEMU_USE_KVM")
-if qemu_use_kvm and \
-   (qemu_use_kvm == "True" and "x86" in d.getVar("MACHINE") or \
-d.getVar("MACHINE") in qemu_use_kvm.split()):
+if qemu_use_kvm == "True" and "x86" in d.getVar("MACHINE") or \
+d.getVar("MACHINE") in qemu_use_kvm.split():
 use_kvm = True
 else:
 use_kvm = False
-- 
2.11.0

-- 
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

[OE-core] [RFC PATCH 5/5] runtime/cases/_ptest.py: rename it to ptest.py

2017-07-19 Thread Robert Yang 
It works now.

[YOCTO #11547]

Signed-off-by: Robert Yang 
---
 meta/lib/oeqa/runtime/cases/{_ptest.py => ptest.py} | 0
 1 file changed, 0 insertions(+), 0 deletions(-)
 rename meta/lib/oeqa/runtime/cases/{_ptest.py => ptest.py} (100%)

diff --git a/meta/lib/oeqa/runtime/cases/_ptest.py 
b/meta/lib/oeqa/runtime/cases/ptest.py
similarity index 100%
rename from meta/lib/oeqa/runtime/cases/_ptest.py
rename to meta/lib/oeqa/runtime/cases/ptest.py
-- 
2.11.0

-- 
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core

[OE-core] [RFC PATCH 0/5] revive runtime/cases/_ptest.py

2017-07-19 Thread Robert Yang 
Hello,

These patches can make ptest test case work, RP has suggested we write a tool to
do the regression check on ptest result, I think that the use case is like:

$ bitbake  -ctestiamge # Suppose we add ptest to default test cases in 
the future
# Upgrade a recipe form V1.0 to V1.1
$ bitbake  -ctestiamge # Run the test again

Then the regression check tool can report what's different (passed, failed,
skipped) between V1.0 and V1.1.

Currently, I'm not sure about where to save the ptest results, I saved it to
${WORKDIR}/testimage/ptest_log atm, e.g.:
tmp/work/qemux86-poky-linux/core-image-minimal/1.0-r0/testimage/ptest_log

But it will be removed after -cclean, then no regression check can be made, so
I'd like to save the ptest results to DEPLOY_DIR_IMAGE if no objections, and
make -cclean not remove them. (Or only keep the latest 2 results).

And I'm not sure where to add the regression check/tool, maybe one of:
1) Add a separate tool in oe-core/scripts, this can make it easy to do 
regression
   check among different build directories, and runtime/cases/_ptest.py can 
invoke it.
2) Add it to runtime/cases/_ptest.py directly
3) Add it to buildhistory

I prefer the first one, please feel free to give your comments.

// Robert

The following changes since commit ef68005a8c527e9b1d05b7769f0ec8ebe9ec3f91:

  webkitgtk: Upgrade to 2.16.5 (2017-07-17 13:49:04 +0100)

are available in the git repository at:

  git://git.openembedded.org/openembedded-core-contrib rbt/ptest
  http://cgit.openembedded.org/openembedded-core-contrib/log/?h=rbt/ptest

Robert Yang (5):
  oeqa/targetcontrol.py: simplify checking for qemu_use_kvm
  runtime/cases/_ptest.py: revive it
  oeqa/utils/logparser.py: add skip status
  runtime/cases/_ptest.py: add skip status
  runtime/cases/_ptest.py: rename it to ptest.py

 meta/lib/oeqa/runtime/cases/_ptest.py | 103 --
 meta/lib/oeqa/runtime/cases/ptest.py  |  77 +
 meta/lib/oeqa/targetcontrol.py|   5 +-
 meta/lib/oeqa/utils/logparser.py  |   5 +-
 4 files changed, 82 insertions(+), 108 deletions(-)
 delete mode 100644 meta/lib/oeqa/runtime/cases/_ptest.py
 create mode 100644 meta/lib/oeqa/runtime/cases/ptest.py

-- 
2.11.0

-- 
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core