[OE-core] [PATCH] systemd: sed ROOT_HOME only if sysusers PACKAGECONFIG is set

[Christian B . Sørensen]

From: Christian Bräuner Sørensen 

Fixes a bug introducted in ebafe46379 systemd: upgrade to 255.1.

Besides updating systemd, that commit also made other changes. One of them
being when to perform the replacement in order to fix ROOT_HOME.

Previously, that happened on a configure prefunc and on
${S}/sysusers.d/basic.conf.in.
Now it happens in install and on image/usr/lib/sysusers.d/basic.conf.

However, that file is not present if sysusers is not in PACKAGECONFIG,
since that file in that case is not installed hence resulting in:
sed: can't read /image/usr/lib/sysusers.d/basic.conf: No such 
file or directory

Previously, in the case of sysusers not being in PACKAGECONFIG, that was a
"silent error" since the replacement was done but the file was not really
used since the file was not installed.

Signed-off-by: Christian Bräuner Sørensen 
---
 meta/recipes-core/systemd/systemd_255.4.bb | 18 ++
 1 file changed, 10 insertions(+), 8 deletions(-)

diff --git a/meta/recipes-core/systemd/systemd_255.4.bb 
b/meta/recipes-core/systemd/systemd_255.4.bb
index e7498c802d..f58a1bc2b6 100644
--- a/meta/recipes-core/systemd/systemd_255.4.bb
+++ b/meta/recipes-core/systemd/systemd_255.4.bb
@@ -271,14 +271,16 @@ WATCHDOG_TIMEOUT ??= "60"
 
 do_install() {
meson_do_install
-   # Change the root user's home directory in /lib/sysusers.d/basic.conf.
-   # This is done merely for backward compatibility with previous systemd 
recipes.
-   # systemd hardcodes root user's HOME to be "/root". Changing to use 
other values
-   # may have unexpected runtime behaviors.
-   if [ "${ROOT_HOME}" != "/root" ]; then
-   bbwarn "Using ${ROOT_HOME} as root user's home directory is not 
fully supported by systemd"
-   sed -i -e 's#/root#${ROOT_HOME}#g' 
${D}${exec_prefix}/lib/sysusers.d/basic.conf
-   fi
+   if ${@bb.utils.contains('PACKAGECONFIG', 'sysusers', 'true', 'false', 
d)}; then
+# Change the root user's home directory in 
/lib/sysusers.d/basic.conf.
+# This is done merely for backward compatibility with previous 
systemd recipes.
+# systemd hardcodes root user's HOME to be "/root". Changing to 
use other values
+# may have unexpected runtime behaviors.
+if [ "${ROOT_HOME}" != "/root" ]; then
+bbwarn "Using ${ROOT_HOME} as root user's home directory 
is not fully supported by systemd"
+sed -i -e 's#/root#${ROOT_HOME}#g' 
${D}${exec_prefix}/lib/sysusers.d/basic.conf
+fi
+fi
install -d ${D}/${base_sbindir}
if ${@bb.utils.contains('PACKAGECONFIG', 'serial-getty-generator', 
'false', 'true', d)}; then
# Provided by a separate recipe
-- 
2.34.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#198500): 
https://lists.openembedded.org/g/openembedded-core/message/198500
Mute This Topic: https://lists.openembedded.org/mt/105593219/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

Re: [OE-core] [PATCH 1/2] liba52: update SRC_URI

[Martin Jansa]

What is the difference between the tarballs that it requires checksum update?

On Thu, Apr 18, 2024 at 12:28 AM Jon Mason via lists.openembedded.org
 wrote:
>
> The former SRC_URI was no longer working.  Update to one that is.  This
> required updating the md5sum and sha256sum.  NOTE: SOURCEFORGE_MIRROR
> (https://downloads.sourceforge.net) does not appear to be working for
> liba52.
>
> Signed-off-by: Jon Mason 
> ---
>  meta/recipes-multimedia/liba52/liba52_0.7.4.bb | 6 +++---
>  1 file changed, 3 insertions(+), 3 deletions(-)
>
> diff --git a/meta/recipes-multimedia/liba52/liba52_0.7.4.bb 
> b/meta/recipes-multimedia/liba52/liba52_0.7.4.bb
> index 7a3b4a43c8d4..684dd590ca15 100644
> --- a/meta/recipes-multimedia/liba52/liba52_0.7.4.bb
> +++ b/meta/recipes-multimedia/liba52/liba52_0.7.4.bb
> @@ -10,11 +10,11 @@ SECTION = "libs"
>
>  inherit autotools
>
> -SRC_URI = "http://liba52.sourceforge.net/files/a52dec-${PV}.tar.gz \
> +SRC_URI = "https://sourceforge.net/projects/liba52/files/a52dec-${PV}.tar.gz 
> \
> file://buildcleanup.patch"
>
> -SRC_URI[md5sum] = "caa9f5bc44232dc8aeea773fea56be80"
> -SRC_URI[sha256sum] = 
> "a21d724ab3b390194353687df82c475b5dfb997513eef4c25de6c865ec33"
> +SRC_URI[md5sum] = "1a2e77b4f7aacd858961a6b727710551"
> +SRC_URI[sha256sum] = 
> "c1931bc511dc48987fdba6888be577f3035e3f0b6b81d3ea3e766fca8d18e128"
>
>  UPSTREAM_CHECK_URI = "http://liba52.sourceforge.net/downloads.html;
>
> --
> 2.30.2
>
>
> 
>

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#198499): 
https://lists.openembedded.org/g/openembedded-core/message/198499
Mute This Topic: https://lists.openembedded.org/mt/105587757/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

Re: [OE-core] [PATCH 2/2] liba52: remove UPSTREAM_CHECK_URI

[Alexander Kanavin]

I have actually queued a patch to remove this recipe altogether. It's
a dead project, and superseded by ffmpeg long time ago.

Alex

On Thu, 18 Apr 2024 at 00:28, Jon Mason via lists.openembedded.org
 wrote:
>
> UPSTREAM_CHECK_URI pointed to a URL that does not exist, causing
> UNKNOWN_BROKEN error when running `devtool check-upgrade-status`.
> There doesn't appear to be a way to check on sourceforge for new
> versions (and there hasn't been a new version in over a decade at this
> point).  There is a way to use CVS, but sourceforge is decommissioning
> CVS (and it doesn't make sense to switch to something that is being
> removed).  So, just doing UPSTREAM_VERSION_UNKNOWN.
>
> Signed-off-by: Jon Mason 
> ---
>  meta/recipes-multimedia/liba52/liba52_0.7.4.bb | 2 +-
>  1 file changed, 1 insertion(+), 1 deletion(-)
>
> diff --git a/meta/recipes-multimedia/liba52/liba52_0.7.4.bb 
> b/meta/recipes-multimedia/liba52/liba52_0.7.4.bb
> index 684dd590ca15..d52310b8ca92 100644
> --- a/meta/recipes-multimedia/liba52/liba52_0.7.4.bb
> +++ b/meta/recipes-multimedia/liba52/liba52_0.7.4.bb
> @@ -16,7 +16,7 @@ SRC_URI = 
> "https://sourceforge.net/projects/liba52/files/a52dec-${PV}.tar.gz \
>  SRC_URI[md5sum] = "1a2e77b4f7aacd858961a6b727710551"
>  SRC_URI[sha256sum] = 
> "c1931bc511dc48987fdba6888be577f3035e3f0b6b81d3ea3e766fca8d18e128"
>
> -UPSTREAM_CHECK_URI = "http://liba52.sourceforge.net/downloads.html;
> +UPSTREAM_VERSION_UNKNOWN = "1"
>
>  S = "${WORKDIR}/a52dec-${PV}"
>
> --
> 2.30.2
>
>
> 
>

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#198498): 
https://lists.openembedded.org/g/openembedded-core/message/198498
Mute This Topic: https://lists.openembedded.org/mt/105587759/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

Re: [OE-core][PATCH v2] libbsd: Fix conflict error when enable multilib.

[Alexander Kanavin]

On Thu, 18 Apr 2024 at 03:23, leimaohui via lists.openembedded.org
 wrote:
> - The path of cdefs-64.h and cdefs-32.h in cdefs.h is not correct for libbsd 
> after enable oe_multilib_header on cdefs.h. It is necessary to fix the path.
> +do_install:append () {
> +   oe_multilib_header bsd/sys/cdefs.h
> +   sed -i 's:#include  ${D}${includedir}/bsd/sys/cdefs.h

Can you explain a bit more? Why and how is it not correct? Why isn't a
similar fix needed in other uses of oe_multilib_header?

Alex

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#198497): 
https://lists.openembedded.org/g/openembedded-core/message/198497
Mute This Topic: https://lists.openembedded.org/mt/105590332/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [PATCH] iproute2: drop obsolete patch

[Maxin B. John]

libc-compat.h fix for musl was obsolete after 4.16.0 release of iproute2.
Drop it.

Signed-off-by: Maxin John 
---
 ...01-libc-compat.h-add-musl-workaround.patch | 39 ---
 .../iproute2/iproute2_6.7.0.bb|  4 +-
 2 files changed, 1 insertion(+), 42 deletions(-)
 delete mode 100644 
meta/recipes-connectivity/iproute2/iproute2/0001-libc-compat.h-add-musl-workaround.patch

diff --git 
a/meta/recipes-connectivity/iproute2/iproute2/0001-libc-compat.h-add-musl-workaround.patch
 
b/meta/recipes-connectivity/iproute2/iproute2/0001-libc-compat.h-add-musl-workaround.patch
deleted file mode 100644
index 74e3de1ce915..
--- 
a/meta/recipes-connectivity/iproute2/iproute2/0001-libc-compat.h-add-musl-workaround.patch
+++ /dev/null
@@ -1,39 +0,0 @@
-From c25f8d1f7a6203dfeb10b39f80ffd314bb84a58d Mon Sep 17 00:00:00 2001
-From: Baruch Siach 
-Date: Thu, 22 Dec 2016 15:26:30 +0200
-Subject: [PATCH] libc-compat.h: add musl workaround
-
-The libc-compat.h kernel header uses glibc specific macros (__GLIBC__ and
-__USE_MISC) to solve conflicts with libc provided headers. This patch makes
-libc-compat.h work for musl libc as well.
-
-Upstream-Status: Pending
-
-Taken From:
-https://git.buildroot.net/buildroot/tree/package/iproute2/0001-Add-the-musl-workaround-to-the-libc-compat.h-copy.patch
-
-Signed-off-by: Baruch Siach 
-Signed-off-by: Maxin B. John 
-

- include/uapi/linux/libc-compat.h | 4 +++-
- 1 file changed, 3 insertions(+), 1 deletion(-)
-
-diff --git a/include/uapi/linux/libc-compat.h 
b/include/uapi/linux/libc-compat.h
-index a159991..22198fa 100644
 a/include/uapi/linux/libc-compat.h
-+++ b/include/uapi/linux/libc-compat.h
-@@ -50,10 +50,12 @@
- #define _LIBC_COMPAT_H
- 
- /* We have included glibc headers... */
--#if defined(__GLIBC__)
-+#if 1
-+#define __USE_MISC
- 
- /* Coordinate with glibc net/if.h header. */
- #if defined(_NET_IF_H) && defined(__USE_MISC)
-+#define __UAPI_DEF_IF_NET_DEVICE_FLAGS_LOWER_UP_DORMANT_ECHO 0
- 
- /* GLIBC headers included first so don't define anything
-  * that would already be defined. */
diff --git a/meta/recipes-connectivity/iproute2/iproute2_6.7.0.bb 
b/meta/recipes-connectivity/iproute2/iproute2_6.7.0.bb
index 8c460adf731d..d571c7ad2a4c 100644
--- a/meta/recipes-connectivity/iproute2/iproute2_6.7.0.bb
+++ b/meta/recipes-connectivity/iproute2/iproute2_6.7.0.bb
@@ -11,9 +11,7 @@ LIC_FILES_CHKSUM = 
"file://COPYING;md5=eb723b61539feef013de476e68b5c50a \
 
 DEPENDS = "flex-native bison-native iptables libcap"
 
-SRC_URI = "${KERNELORG_MIRROR}/linux/utils/net/${BPN}/${BP}.tar.xz \
-   file://0001-libc-compat.h-add-musl-workaround.patch \
-   "
+SRC_URI = "${KERNELORG_MIRROR}/linux/utils/net/${BPN}/${BP}.tar.xz"
 
 SRC_URI[sha256sum] = 
"ff942dd9828d7d1f867f61fe72ce433078c31e5d8e4a78e20f02cb5892e8841d"
 
-- 
2.39.2


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#198496): 
https://lists.openembedded.org/g/openembedded-core/message/198496
Mute This Topic: https://lists.openembedded.org/mt/105592651/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core][kirkstone][PATCH] go: Fix for CVE-2023-45288

[Vijay Anusuri via lists.openembedded.org]

From: Vijay Anusuri 

Upstream-Status: Backport from 
https://github.com/golang/go/commit/e55d7cf8435ba4e58d4a5694e63b391821d4ee9b

Signed-off-by: Vijay Anusuri 
---
 meta/recipes-devtools/go/go-1.17.13.inc   |  1 +
 .../go/go-1.18/CVE-2023-45288.patch   | 95 +++
 2 files changed, 96 insertions(+)
 create mode 100644 meta/recipes-devtools/go/go-1.18/CVE-2023-45288.patch

diff --git a/meta/recipes-devtools/go/go-1.17.13.inc 
b/meta/recipes-devtools/go/go-1.17.13.inc
index 768961de2c..95fb572362 100644
--- a/meta/recipes-devtools/go/go-1.17.13.inc
+++ b/meta/recipes-devtools/go/go-1.17.13.inc
@@ -55,6 +55,7 @@ SRC_URI += "\
 file://CVE-2023-45290.patch \
 file://CVE-2024-24784.patch \
 file://CVE-2024-24785.patch \
+file://CVE-2023-45288.patch \
 "
 SRC_URI[main.sha256sum] = 
"a1a48b23afb206f95e7bbaa9b898d965f90826f6f1d1fc0c1d784ada0cd300fd"
 
diff --git a/meta/recipes-devtools/go/go-1.18/CVE-2023-45288.patch 
b/meta/recipes-devtools/go/go-1.18/CVE-2023-45288.patch
new file mode 100644
index 00..741e7be89a
--- /dev/null
+++ b/meta/recipes-devtools/go/go-1.18/CVE-2023-45288.patch
@@ -0,0 +1,95 @@
+From e55d7cf8435ba4e58d4a5694e63b391821d4ee9b Mon Sep 17 00:00:00 2001
+From: Damien Neil 
+Date: Thu, 28 Mar 2024 16:57:51 -0700
+Subject: [PATCH] [release-branch.go1.22] net/http: update bundled
+ golang.org/x/net/http2
+
+Disable cmd/internal/moddeps test, since this update includes PRIVATE
+track fixes.
+
+Fixes CVE-2023-45288
+For #65051
+Fixes #66298
+
+Change-Id: I5bbf774ebe7651e4bb7e55139d3794bd2b8e8fa8
+Reviewed-on: 
https://team-review.git.corp.google.com/c/golang/go-private/+/2197227
+Reviewed-by: Tatiana Bradley 
+Run-TryBot: Damien Neil 
+Reviewed-by: Dmitri Shuralyov 
+Reviewed-on: https://go-review.googlesource.com/c/go/+/576076
+Auto-Submit: Dmitri Shuralyov 
+TryBot-Bypass: Dmitri Shuralyov 
+Reviewed-by: Than McIntosh 
+
+Upstream-Status: Backport 
[https://github.com/golang/go/commit/e55d7cf8435ba4e58d4a5694e63b391821d4ee9b]
+CVE: CVE-2023-45288
+Signed-off-by: Vijay Anusuri 
+---
+ src/cmd/internal/moddeps/moddeps_test.go |  1 +
+ src/net/http/h2_bundle.go| 31 
+ 2 files changed, 32 insertions(+)
+
+diff --git a/src/cmd/internal/moddeps/moddeps_test.go 
b/src/cmd/internal/moddeps/moddeps_test.go
+index d48d43f..250bde4 100644
+--- a/src/cmd/internal/moddeps/moddeps_test.go
 b/src/cmd/internal/moddeps/moddeps_test.go
+@@ -34,6 +34,7 @@ import (
+ // See issues 36852, 41409, and 43687.
+ // (Also see golang.org/issue/27348.)
+ func TestAllDependencies(t *testing.T) {
++  t.Skip("TODO(#65051): 1.22.2 contains unreleased changes from vendored 
modules")
+   t.Skip("TODO(#57009): 1.19.4 contains unreleased changes from vendored 
modules")
+   t.Skip("TODO(#53977): 1.18.5 contains unreleased changes from vendored 
modules")
+ 
+diff --git a/src/net/http/h2_bundle.go b/src/net/http/h2_bundle.go
+index 9d6abd8..10ff193 100644
+--- a/src/net/http/h2_bundle.go
 b/src/net/http/h2_bundle.go
+@@ -2842,6 +2842,7 @@ func (fr *http2Framer) readMetaFrame(hf 
*http2HeadersFrame) (*http2MetaHeadersFr
+   if size > remainSize {
+   hdec.SetEmitEnabled(false)
+   mh.Truncated = true
++  remainSize = 0
+   return
+   }
+   remainSize -= size
+@@ -2854,6 +2855,36 @@ func (fr *http2Framer) readMetaFrame(hf 
*http2HeadersFrame) (*http2MetaHeadersFr
+   var hc http2headersOrContinuation = hf
+   for {
+   frag := hc.HeaderBlockFragment()
++
++  // Avoid parsing large amounts of headers that we will then 
discard.
++  // If the sender exceeds the max header list size by too much,
++  // skip parsing the fragment and close the connection.
++  //
++  // "Too much" is either any CONTINUATION frame after we've 
already
++  // exceeded the max header list size (in which case remainSize 
is 0),
++  // or a frame whose encoded size is more than twice the 
remaining
++  // header list bytes we're willing to accept.
++  if int64(len(frag)) > int64(2*remainSize) {
++  if http2VerboseLogs {
++  log.Printf("http2: header list too large")
++  }
++  // It would be nice to send a RST_STREAM before sending 
the GOAWAY,
++  // but the struture of the server's frame writer makes 
this difficult.
++  return nil, http2ConnectionError(http2ErrCodeProtocol)
++  }
++
++  // Also close the connection after any CONTINUATION frame 
following an
++  // invalid header, since we stop tracking the size of the 
headers after
++  // an invalid one.
++  if invalid != nil {
++  if http2VerboseLogs {
++ 

[OE-core][PATCH v2] libbsd: Fix conflict error when enable multilib.

[leimaohui via lists.openembedded.org]

From: Lei Maohui 

- The conflict error is as the following:
Error: Transaction test error:
  file /usr/include/bsd/sys/cdefs.h conflicts between attempted installs of 
libbsd-dev-0.12.1-r0.core2_64 and lib32-libbsd-dev-0.12.1-r0.core2_32

The difference of bsd/sys/cdefs.h between libbsd-dev and lib32-libbsd-dev is as 
following:

 /* Define the ABI for the current system. */  -#define LIBBSD_SYS_TIME_BITS 64 
 +#define LIBBSD_SYS_TIME_BITS 32  #define LIBBSD_SYS_HAS_TIME64 1

- The path of cdefs-64.h and cdefs-32.h in cdefs.h is not correct for libbsd 
after enable oe_multilib_header on cdefs.h. It is necessary to fix the path.

Signed-off-by: Lei Maohui 
---
 meta/recipes-support/libbsd/libbsd_0.12.2.bb | 8 +++-
 1 file changed, 7 insertions(+), 1 deletion(-)

diff --git a/meta/recipes-support/libbsd/libbsd_0.12.2.bb 
b/meta/recipes-support/libbsd/libbsd_0.12.2.bb
index 7d5e88f293..e1fc7d9b3c 100644
--- a/meta/recipes-support/libbsd/libbsd_0.12.2.bb
+++ b/meta/recipes-support/libbsd/libbsd_0.12.2.bb
@@ -40,8 +40,14 @@ SRC_URI = 
"https://libbsd.freedesktop.org/releases/${BPN}-${PV}.tar.xz;
 
 SRC_URI[sha256sum] = 
"b88cc9163d0c652aaf39a1d974ddba1c3a9711db8f1b5838af2a14731014"
 
-inherit autotools pkgconfig
+inherit autotools pkgconfig multilib_header
 
 DEPENDS += "libmd"
 
+do_install:append () {
+   oe_multilib_header bsd/sys/cdefs.h
+   sed -i 's:#include 
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#198494): 
https://lists.openembedded.org/g/openembedded-core/message/198494
Mute This Topic: https://lists.openembedded.org/mt/105590332/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

Re: [yocto] [qa-build-notification] QA notification for completed autobuilder build (yocto-5.0.rc2)

[Jing Hui Tham]

Hi all,
 
Intel and WR YP QA is planning for QA execution for YP build yocto-5.0.rc2. We 
are planning to execute following tests for this cycle:
 
OEQA-manual tests for following module:
1. OE-Core
2. BSP-hw
 
Runtime auto test for following platforms:
1. MinnowBoard Turbot - 32bit
2. Alder Lake-S (12th Generation Intel(r) Core(tm) Processors)
3. Raptor Lake-P (13th Generation Intel(r) Core(tm) Processors)
4. Meteor Lake-P (14th Generation Intel(r) Core(tm) Processors)
5. Beaglebone
 
 
ETA for completion next Tuesday, 23 April.
 
Best regards,
Jing Hui

> -Original Message-
> From: qa-build-notificat...@lists.yoctoproject.org  notificat...@lists.yoctoproject.org> On Behalf Of Pokybuild User
> Sent: Wednesday, April 17, 2024 4:37 PM
> To: yo...@lists.yoctoproject.org
> Cc: qa-build-notificat...@lists.yoctoproject.org
> Subject: [qa-build-notification] QA notification for completed autobuilder
> build (yocto-5.0.rc2)
> 
> 
> A build flagged for QA (yocto-5.0.rc2) was completed on the autobuilder
> and is available at:
> 
> 
> https://autobuilder.yocto.io/pub/releases/yocto-5.0.rc2
> 
> 
> Build URL:
> https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/6813
> 
> Build hash information:
> 
> bitbake: c86466d51e8ff14e57a734c1eec5bb651fdc73ef
> meta-agl: 8c5e4a89bd4d9436e9ba929bd0faaf32744f6a64
> meta-arm: 04187be11dc4bfc898d411c1a40c2a1e9f4ff925
> meta-aws: 216c095de9d546c141a90017a91a3ccb226de754
> meta-clang: 989ff6a4e7db59f01d511727135610006124ead2
> meta-intel: 0e43ce8605006b941cdfdab1f2112c5afc8e4663
> meta-mingw: d1df6908922a5357c408be77ff18f812e9e999af
> meta-openembedded: a7c8ce7f674008db4d7013557ec375a35226f43f
> meta-virtualization: b7e77b69d309d8ee985720e88b19b6e9cf03fe63
> oecore: 09ccab7d0b4d815b812e49a5861a13a4ec0189b9
> poky: 5b727a8fa1acfa9eeb441ac835ca7d24099284a9
> 
> 
> 
> This is an automated message from the Yocto Project Autobuilder
> Git: git://git.yoctoproject.org/yocto-autobuilder2
> Email: richard.pur...@linuxfoundation.org
> 
> 
> 
> 
> 
> 
> 


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#62957): https://lists.yoctoproject.org/g/yocto/message/62957
Mute This Topic: https://lists.yoctoproject.org/mt/105590152/21656
Group Owner: yocto+ow...@lists.yoctoproject.org
Unsubscribe: https://lists.yoctoproject.org/g/yocto/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

Re: [OE-core] [PATCH] cmake.bbclass: Add ${COREBASE}/scripts to CMAKE_FIND_ROOT_PATH

[Chuck Wolber]

On Wed, Apr 17, 2024 at 12:14 Khem Raj via lists.openembedded.org  wrote:

>
>
> On Wed, Apr 17, 2024 at 4:25 AM Daniel Klauer via lists.openembedded.org
>  wrote:
>
>> ${COREBASE}/scripts contains a "git" wrapper disabling fakeroot/pseudo.
>> This patch allows CMake to find ${COREBASE}/scripts/git instead of
>> ${HOSTTOOLS_DIR}/git. This is needed for git invocations during
>> do_install,
>> since do_install is a fakeroot task, and otherwise all git commands fail
>> with "fatal: detected dubious ownership in repository ...".
>>
>> I don't know how common it is for CMake projects to invoke git during the
>> install phase intentionally. It's probably more common to do this during
>> the configure phase. However, the install step may re-run the configure
>> step, if some dependencies changed.
>
>
> If a package build system has such dependencies they should be better
> expressed in recipes and linked using bitbake task level dependency
> mechanism
>
> I wonder why git is needed during install phase
> Can you explain a bit more on that
>
> And since change it in a class it means it has to be a pattern
>

I do not think dependencies will completely solve the problem. Such
patterns break builds when your distro is configured for shallow git
clones. I have run into at least one python library that operates this way
(the names escape me at the moment).

..Ch:W..

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#198492): 
https://lists.openembedded.org/g/openembedded-core/message/198492
Mute This Topic: https://lists.openembedded.org/mt/105575001/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

Re: [OE-core][kirkstone 6/7] ppp: Add RSA-MD in LICENSE

[Steve Sakoman]

On Wed, Apr 17, 2024 at 3:33 PM Steve Sakoman via
lists.openembedded.org 
wrote:
>
>
>
> On Wed, Apr 17, 2024, 2:33 PM Richard Purdie 
>  wrote:
>>
>> On Wed, 2024-04-17 at 13:35 -0700, Steve Sakoman via lists.openembedded.org 
>> wrote:
>> > From: Poonam Jadhav 
>> >
>> > ppp package has "RSA Data Security" license text
>> > in Message-Digest Algorithm source file md5.c and md4.c
>> > Add RSA-MD in LICENSE field for ppp package
>> >
>> > Signed-off-by: Poonam Jadhav 
>> > Signed-off-by: Steve Sakoman 
>> > ---
>> >  meta/recipes-connectivity/ppp/ppp_2.4.9.bb | 2 +-
>> >  1 file changed, 1 insertion(+), 1 deletion(-)
>> >
>> > diff --git a/meta/recipes-connectivity/ppp/ppp_2.4.9.bb 
>> > b/meta/recipes-connectivity/ppp/ppp_2.4.9.bb
>> > index 7e3ae43b58..b7f71b673d 100644
>> > --- a/meta/recipes-connectivity/ppp/ppp_2.4.9.bb
>> > +++ b/meta/recipes-connectivity/ppp/ppp_2.4.9.bb
>> > @@ -5,7 +5,7 @@ SECTION = "console/network"
>> >  HOMEPAGE = "http://samba.org/ppp/;
>> >  BUGTRACKER = "http://ppp.samba.org/cgi-bin/ppp-bugs;
>> >  DEPENDS = "libpcap openssl virtual/crypt"
>> > -LICENSE = "BSD-3-Clause & BSD-3-Clause-Attribution & GPL-2.0-or-later & 
>> > LGPL-2.0-or-later & PD"
>> > +LICENSE = "BSD-3-Clause & BSD-3-Clause-Attribution & GPL-2.0-or-later & 
>> > LGPL-2.0-or-later & PD & RSA-MD"
>> >  LIC_FILES_CHKSUM = 
>> > "file://pppd/ccp.c;beginline=1;endline=29;md5=e2c43fe6e81ff77d87dc9c290a424dea
>> >  \
>> >  
>> > file://pppd/plugins/passprompt.c;beginline=1;endline=10;md5=3bcbcdbf0e369c9a3e0b8c8275b065d8
>> >  \
>> >  
>> > file://pppd/tdb.c;beginline=1;endline=27;md5=4ca3a9991b011038d085d6675ae7c4e6
>> >  \
>> >
>>
>> This isn't in master yet!
>
>
> Good catch! I'll text this patch and request that out be sent for master.

Heh, drop not text :-)   And I see that he has already submitted for master.

Steve

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#198491): 
https://lists.openembedded.org/g/openembedded-core/message/198491
Mute This Topic: https://lists.openembedded.org/mt/105585677/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

Re: [OE-core][kirkstone 6/7] ppp: Add RSA-MD in LICENSE

[Steve Sakoman]

On Wed, Apr 17, 2024, 2:33 PM Richard Purdie <
richard.pur...@linuxfoundation.org> wrote:

> On Wed, 2024-04-17 at 13:35 -0700, Steve Sakoman via
> lists.openembedded.org wrote:
> > From: Poonam Jadhav 
> >
> > ppp package has "RSA Data Security" license text
> > in Message-Digest Algorithm source file md5.c and md4.c
> > Add RSA-MD in LICENSE field for ppp package
> >
> > Signed-off-by: Poonam Jadhav 
> > Signed-off-by: Steve Sakoman 
> > ---
> >  meta/recipes-connectivity/ppp/ppp_2.4.9.bb | 2 +-
> >  1 file changed, 1 insertion(+), 1 deletion(-)
> >
> > diff --git a/meta/recipes-connectivity/ppp/ppp_2.4.9.bb
> b/meta/recipes-connectivity/ppp/ppp_2.4.9.bb
> > index 7e3ae43b58..b7f71b673d 100644
> > --- a/meta/recipes-connectivity/ppp/ppp_2.4.9.bb
> > +++ b/meta/recipes-connectivity/ppp/ppp_2.4.9.bb
> > @@ -5,7 +5,7 @@ SECTION = "console/network"
> >  HOMEPAGE = "http://samba.org/ppp/;
> >  BUGTRACKER = "http://ppp.samba.org/cgi-bin/ppp-bugs;
> >  DEPENDS = "libpcap openssl virtual/crypt"
> > -LICENSE = "BSD-3-Clause & BSD-3-Clause-Attribution & GPL-2.0-or-later &
> LGPL-2.0-or-later & PD"
> > +LICENSE = "BSD-3-Clause & BSD-3-Clause-Attribution & GPL-2.0-or-later &
> LGPL-2.0-or-later & PD & RSA-MD"
> >  LIC_FILES_CHKSUM =
> "file://pppd/ccp.c;beginline=1;endline=29;md5=e2c43fe6e81ff77d87dc9c290a424dea
>  \
> >
> file://pppd/plugins/passprompt.c;beginline=1;endline=10;md5=3bcbcdbf0e369c9a3e0b8c8275b065d8
>  \
> >
> file://pppd/tdb.c;beginline=1;endline=27;md5=4ca3a9991b011038d085d6675ae7c4e6 
> \
> >
>
> This isn't in master yet!
>

Good catch! I'll text this patch and request that out be sent for master.

Steve

>

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#198490): 
https://lists.openembedded.org/g/openembedded-core/message/198490
Mute This Topic: https://lists.openembedded.org/mt/105585677/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [PATCH 2/2] liba52: remove UPSTREAM_CHECK_URI

[Jon Mason]

UPSTREAM_CHECK_URI pointed to a URL that does not exist, causing
UNKNOWN_BROKEN error when running `devtool check-upgrade-status`.
There doesn't appear to be a way to check on sourceforge for new
versions (and there hasn't been a new version in over a decade at this
point).  There is a way to use CVS, but sourceforge is decommissioning
CVS (and it doesn't make sense to switch to something that is being
removed).  So, just doing UPSTREAM_VERSION_UNKNOWN.

Signed-off-by: Jon Mason 
---
 meta/recipes-multimedia/liba52/liba52_0.7.4.bb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/meta/recipes-multimedia/liba52/liba52_0.7.4.bb 
b/meta/recipes-multimedia/liba52/liba52_0.7.4.bb
index 684dd590ca15..d52310b8ca92 100644
--- a/meta/recipes-multimedia/liba52/liba52_0.7.4.bb
+++ b/meta/recipes-multimedia/liba52/liba52_0.7.4.bb
@@ -16,7 +16,7 @@ SRC_URI = 
"https://sourceforge.net/projects/liba52/files/a52dec-${PV}.tar.gz \
 SRC_URI[md5sum] = "1a2e77b4f7aacd858961a6b727710551"
 SRC_URI[sha256sum] = 
"c1931bc511dc48987fdba6888be577f3035e3f0b6b81d3ea3e766fca8d18e128"
 
-UPSTREAM_CHECK_URI = "http://liba52.sourceforge.net/downloads.html;
+UPSTREAM_VERSION_UNKNOWN = "1"
 
 S = "${WORKDIR}/a52dec-${PV}"
 
-- 
2.30.2


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#198489): 
https://lists.openembedded.org/g/openembedded-core/message/198489
Mute This Topic: https://lists.openembedded.org/mt/105587759/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [PATCH 1/2] liba52: update SRC_URI

[Jon Mason]

The former SRC_URI was no longer working.  Update to one that is.  This
required updating the md5sum and sha256sum.  NOTE: SOURCEFORGE_MIRROR
(https://downloads.sourceforge.net) does not appear to be working for
liba52.

Signed-off-by: Jon Mason 
---
 meta/recipes-multimedia/liba52/liba52_0.7.4.bb | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/meta/recipes-multimedia/liba52/liba52_0.7.4.bb 
b/meta/recipes-multimedia/liba52/liba52_0.7.4.bb
index 7a3b4a43c8d4..684dd590ca15 100644
--- a/meta/recipes-multimedia/liba52/liba52_0.7.4.bb
+++ b/meta/recipes-multimedia/liba52/liba52_0.7.4.bb
@@ -10,11 +10,11 @@ SECTION = "libs"
 
 inherit autotools
 
-SRC_URI = "http://liba52.sourceforge.net/files/a52dec-${PV}.tar.gz \
+SRC_URI = "https://sourceforge.net/projects/liba52/files/a52dec-${PV}.tar.gz \
file://buildcleanup.patch"
 
-SRC_URI[md5sum] = "caa9f5bc44232dc8aeea773fea56be80"
-SRC_URI[sha256sum] = 
"a21d724ab3b390194353687df82c475b5dfb997513eef4c25de6c865ec33"
+SRC_URI[md5sum] = "1a2e77b4f7aacd858961a6b727710551"
+SRC_URI[sha256sum] = 
"c1931bc511dc48987fdba6888be577f3035e3f0b6b81d3ea3e766fca8d18e128"
 
 UPSTREAM_CHECK_URI = "http://liba52.sourceforge.net/downloads.html;
 
-- 
2.30.2


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#198488): 
https://lists.openembedded.org/g/openembedded-core/message/198488
Mute This Topic: https://lists.openembedded.org/mt/105587757/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

Re: [OE-core][kirkstone 6/7] ppp: Add RSA-MD in LICENSE

[Richard Purdie]

On Wed, 2024-04-17 at 13:35 -0700, Steve Sakoman via lists.openembedded.org 
wrote:
> From: Poonam Jadhav 
> 
> ppp package has "RSA Data Security" license text
> in Message-Digest Algorithm source file md5.c and md4.c
> Add RSA-MD in LICENSE field for ppp package
> 
> Signed-off-by: Poonam Jadhav 
> Signed-off-by: Steve Sakoman 
> ---
>  meta/recipes-connectivity/ppp/ppp_2.4.9.bb | 2 +-
>  1 file changed, 1 insertion(+), 1 deletion(-)
> 
> diff --git a/meta/recipes-connectivity/ppp/ppp_2.4.9.bb 
> b/meta/recipes-connectivity/ppp/ppp_2.4.9.bb
> index 7e3ae43b58..b7f71b673d 100644
> --- a/meta/recipes-connectivity/ppp/ppp_2.4.9.bb
> +++ b/meta/recipes-connectivity/ppp/ppp_2.4.9.bb
> @@ -5,7 +5,7 @@ SECTION = "console/network"
>  HOMEPAGE = "http://samba.org/ppp/;
>  BUGTRACKER = "http://ppp.samba.org/cgi-bin/ppp-bugs;
>  DEPENDS = "libpcap openssl virtual/crypt"
> -LICENSE = "BSD-3-Clause & BSD-3-Clause-Attribution & GPL-2.0-or-later & 
> LGPL-2.0-or-later & PD"
> +LICENSE = "BSD-3-Clause & BSD-3-Clause-Attribution & GPL-2.0-or-later & 
> LGPL-2.0-or-later & PD & RSA-MD"
>  LIC_FILES_CHKSUM = 
> "file://pppd/ccp.c;beginline=1;endline=29;md5=e2c43fe6e81ff77d87dc9c290a424dea
>  \
>  
> file://pppd/plugins/passprompt.c;beginline=1;endline=10;md5=3bcbcdbf0e369c9a3e0b8c8275b065d8
>  \
>  
> file://pppd/tdb.c;beginline=1;endline=27;md5=4ca3a9991b011038d085d6675ae7c4e6 
> \
> 

This isn't in master yet!

Cheers,

Richard

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#198487): 
https://lists.openembedded.org/g/openembedded-core/message/198487
Mute This Topic: https://lists.openembedded.org/mt/105585677/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [PATCH] gstreamer1.0-plugins-good: Include qttools-native during the build with qt5 PACKAGECONFIG

[Marek Vasut]

The qttools provide 'lrelease' tool, which is checked by recent
versions of meson build system. Unless the qttools are available
in sysroot, meson will fail to detect qt5 installation at build
time and the gstreamer build will fail. Fix this by including
the qttools-native.

Signed-off-by: Marek Vasut 
---
Cc: Alexandre Belloni 
Cc: Anuj Mittal 
Cc: Randy MacLeod 
Cc: Richard Purdie 
Cc: Wang Mingyu 
---
 .../gstreamer/gstreamer1.0-plugins-good_1.22.11.bb  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git 
a/meta/recipes-multimedia/gstreamer/gstreamer1.0-plugins-good_1.22.11.bb 
b/meta/recipes-multimedia/gstreamer/gstreamer1.0-plugins-good_1.22.11.bb
index edd8609b7c..85143aa1b9 100644
--- a/meta/recipes-multimedia/gstreamer/gstreamer1.0-plugins-good_1.22.11.bb
+++ b/meta/recipes-multimedia/gstreamer/gstreamer1.0-plugins-good_1.22.11.bb
@@ -52,7 +52,7 @@ PACKAGECONFIG[libpng] = 
"-Dpng=enabled,-Dpng=disabled,libpng"
 PACKAGECONFIG[libv4l2]= 
"-Dv4l2-libv4l2=enabled,-Dv4l2-libv4l2=disabled,v4l-utils"
 PACKAGECONFIG[mpg123] = "-Dmpg123=enabled,-Dmpg123=disabled,mpg123"
 PACKAGECONFIG[pulseaudio] = "-Dpulse=enabled,-Dpulse=disabled,pulseaudio"
-PACKAGECONFIG[qt5]= "-Dqt5=enabled,-Dqt5=disabled,qtbase qtdeclarative 
qtbase-native ${QT5WAYLANDDEPENDS}"
+PACKAGECONFIG[qt5]= "-Dqt5=enabled,-Dqt5=disabled,qtbase qtdeclarative 
qtbase-native qttools-native ${QT5WAYLANDDEPENDS}"
 PACKAGECONFIG[soup2]  = "-Dsoup=enabled,,libsoup-2.4,,,soup3"
 PACKAGECONFIG[soup3]  = "-Dsoup=enabled,,libsoup,,,soup2"
 PACKAGECONFIG[speex]  = "-Dspeex=enabled,-Dspeex=disabled,speex"
-- 
2.43.0


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#198486): 
https://lists.openembedded.org/g/openembedded-core/message/198486
Mute This Topic: https://lists.openembedded.org/mt/105586391/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [PATCH] rust-target-config: fix feature for vfpv4f16

[Willy Tu via lists.openembedded.org]

Based on [1] which fixed the target for vfpv3d16. Adding the support for
vfpv4d16 with the same set of changes.

Tested with running tokio which hit coredump before the change. It
worked fine after this change.

[1] https://lists.openembedded.org/g/openembedded-core/message/185702

Signed-off-by: Willy Tu 
---
 meta/classes-recipe/rust-target-config.bbclass | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/meta/classes-recipe/rust-target-config.bbclass 
b/meta/classes-recipe/rust-target-config.bbclass
index 926b0630b1..330ad8a3f5 100644
--- a/meta/classes-recipe/rust-target-config.bbclass
+++ b/meta/classes-recipe/rust-target-config.bbclass
@@ -21,6 +21,9 @@ def llvm_features_from_tune(d):
 
 if 'vfpv4' in feat:
 f.append("+vfp4")
+elif 'vfpv4d16' in feat:
+f.append("+vfp4")
+f.append("-d32")
 elif 'vfpv3' in feat:
 f.append("+vfp3")
 elif 'vfpv3d16' in feat:
-- 
2.44.0.769.g3c40516874-goog


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#198485): 
https://lists.openembedded.org/g/openembedded-core/message/198485
Mute This Topic: https://lists.openembedded.org/mt/105586341/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core][kirkstone 5/7] valgrind: skip intermittently failing ptest

[Steve Sakoman]

Intermittent failures on autobuilder:

AssertionError: Failed ptests:
{'valgrind': ['memcheck/tests/linux/timerfd-syscall']}

Signed-off-by: Steve Sakoman 
---
 meta/recipes-devtools/valgrind/valgrind/remove-for-all | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/meta/recipes-devtools/valgrind/valgrind/remove-for-all 
b/meta/recipes-devtools/valgrind/valgrind/remove-for-all
index cb8d10b18f..226f97b50e 100644
--- a/meta/recipes-devtools/valgrind/valgrind/remove-for-all
+++ b/meta/recipes-devtools/valgrind/valgrind/remove-for-all
@@ -1,8 +1,10 @@
 none/tests/amd64/fb_test_amd64
 gdbserver_tests/hginfo
+memcheck/tests/linux/timerfd-syscall
 memcheck/tests/supp_unknown
 helgrind/tests/tls_threads
 drd/tests/bar_bad_xml
 drd/tests/pth_barrier_thr_cr
 drd/tests/thread_name_xml
 massif/tests/deep-D
+
-- 
2.34.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#198482): 
https://lists.openembedded.org/g/openembedded-core/message/198482
Mute This Topic: https://lists.openembedded.org/mt/105585676/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core][kirkstone 7/7] systemd: Fix vlan qos mapping

[Steve Sakoman]

From: Sana Kazi 

Drop unnecessary restriction for QoS mapping.
Also adds tests for vlan QoS mapping.

Link: 
https://github.com/systemd/systemd/commit/fe830b84d4002582e7aefb16e5e09fd0195f21c8.patch
PR: https://github.com/systemd/systemd/pull/27761

Signed-off-by: Sana Kazi 
Signed-off-by: Sana Kazi 
Signed-off-by: Steve Sakoman 
---
 .../systemd/fix-vlan-qos-mapping.patch| 140 ++
 meta/recipes-core/systemd/systemd_250.5.bb|   1 +
 2 files changed, 141 insertions(+)
 create mode 100644 meta/recipes-core/systemd/systemd/fix-vlan-qos-mapping.patch

diff --git a/meta/recipes-core/systemd/systemd/fix-vlan-qos-mapping.patch 
b/meta/recipes-core/systemd/systemd/fix-vlan-qos-mapping.patch
new file mode 100644
index 00..c530de7f50
--- /dev/null
+++ b/meta/recipes-core/systemd/systemd/fix-vlan-qos-mapping.patch
@@ -0,0 +1,140 @@
+From 4d13d175f8454df63843a880c78badd4f6d720ca Mon Sep 17 00:00:00 2001
+From: Yu Watanabe 
+Date: Wed, 24 May 2023 11:02:36 +0900
+Subject: [PATCH 1/3] network/vlan: drop unnecessary restriction for QoS
+ mapping
+
+Fixes #27460.
+
+Upstream-Status: Backport 
[https://github.com/systemd/systemd/commit/fe830b84d4002582e7aefb16e5e09fd0195f21c8.patch]
+Signed-off-by: Sana Kazi 
+---
+ src/network/netdev/vlan.c | 5 -
+ 1 file changed, 5 deletions(-)
+
+diff --git a/src/network/netdev/vlan.c b/src/network/netdev/vlan.c
+index a3d961dac3ca4..d61e9486abc47 100644
+--- a/src/network/netdev/vlan.c
 b/src/network/netdev/vlan.c
+@@ -165,11 +165,6 @@ int config_parse_vlan_qos_maps(
+ continue;
+ }
+ 
+-if (m->to > m->from || m->to == 0 || m->from == 0) {
+-log_syntax(unit, LOG_WARNING, filename, line, 0, 
"Invalid %s, ignoring: %s", lvalue, w);
+-continue;
+-}
+-
+ r = set_ensure_consume(s, _qos_maps_hash_ops, 
TAKE_PTR(m));
+ if (r < 0) {
+ log_syntax(unit, LOG_WARNING, filename, line, r, 
"Failed to store %s, ignoring: %s", lvalue, w);
+
+From 4194478af861f80a73905d1f9e570a09862f91a7 Mon Sep 17 00:00:00 2001
+From: Yu Watanabe 
+Date: Wed, 24 May 2023 11:06:35 +0900
+Subject: [PATCH 2/3] network/vlan: paranoia about type safety
+
+No functional change, as the struct is defined as the following:
+```
+struct ifla_vlan_qos_mapping {
+  __u32 from;
+  __u32 to;
+};
+```
+---
+ src/network/netdev/vlan.c | 16 +++-
+ 1 file changed, 11 insertions(+), 5 deletions(-)
+
+diff --git a/src/network/netdev/vlan.c b/src/network/netdev/vlan.c
+index d61e9486abc47..5eb36ef6801f3 100644
+--- a/src/network/netdev/vlan.c
 b/src/network/netdev/vlan.c
+@@ -144,6 +144,7 @@ int config_parse_vlan_qos_maps(
+ for (const char *p = rvalue;;) {
+ _cleanup_free_ struct ifla_vlan_qos_mapping *m = NULL;
+ _cleanup_free_ char *w = NULL;
++unsigned from, to;
+ 
+ r = extract_first_word(, , NULL, 
EXTRACT_CUNESCAPE|EXTRACT_UNQUOTE);
+ if (r == -ENOMEM)
+@@ -155,16 +156,21 @@ int config_parse_vlan_qos_maps(
+ if (r == 0)
+ return 0;
+ 
+-m = new0(struct ifla_vlan_qos_mapping, 1);
+-if (!m)
+-return log_oom();
+-
+-r = parse_range(w, >from, >to);
++r = parse_range(w, , );
+ if (r < 0) {
+ log_syntax(unit, LOG_WARNING, filename, line, r, 
"Failed to parse %s, ignoring: %s", lvalue, w);
+ continue;
+ }
+ 
++m = new(struct ifla_vlan_qos_mapping, 1);
++if (!m)
++return log_oom();
++
++*m = (struct ifla_vlan_qos_mapping) {
++.from = from,
++.to = to,
++};
++
+ r = set_ensure_consume(s, _qos_maps_hash_ops, 
TAKE_PTR(m));
+ if (r < 0) {
+ log_syntax(unit, LOG_WARNING, filename, line, r, 
"Failed to store %s, ignoring: %s", lvalue, w);
+
+From 73d24e45f8ac18eaaebf1df2b1f055c14179c6ff Mon Sep 17 00:00:00 2001
+From: Yu Watanabe 
+Date: Wed, 24 May 2023 11:15:44 +0900
+Subject: [PATCH 3/3] test-network: add tests for vlan QoS mapping
+
+---
+ .../conf/21-vlan.netdev.d/override.conf| 10 ++
+ test/test-network/systemd-networkd-tests.py| 14 --
+ 2 files changed, 14 insertions(+), 10 deletions(-)
+
+diff --git a/test/test-network/conf/21-vlan.netdev.d/override.conf 
b/test/test-network/conf/21-vlan.netdev.d/override.conf
+index 3b8d47d9b1db5..c71077d274a69 100644
+--- a/test/test-network/conf/21-vlan.netdev.d/override.conf
 b/test/test-network/conf/21-vlan.netdev.d/override.conf
+@@ -3,7 +3,9 @@ MTUBytes=2000
+ 
+ [VLAN]
+ Id=99
+-GVRP=true
+-MVRP=true
+-LooseBinding=true

[OE-core][kirkstone 6/7] ppp: Add RSA-MD in LICENSE

[Steve Sakoman]

From: Poonam Jadhav 

ppp package has "RSA Data Security" license text
in Message-Digest Algorithm source file md5.c and md4.c
Add RSA-MD in LICENSE field for ppp package

Signed-off-by: Poonam Jadhav 
Signed-off-by: Steve Sakoman 
---
 meta/recipes-connectivity/ppp/ppp_2.4.9.bb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/meta/recipes-connectivity/ppp/ppp_2.4.9.bb 
b/meta/recipes-connectivity/ppp/ppp_2.4.9.bb
index 7e3ae43b58..b7f71b673d 100644
--- a/meta/recipes-connectivity/ppp/ppp_2.4.9.bb
+++ b/meta/recipes-connectivity/ppp/ppp_2.4.9.bb
@@ -5,7 +5,7 @@ SECTION = "console/network"
 HOMEPAGE = "http://samba.org/ppp/;
 BUGTRACKER = "http://ppp.samba.org/cgi-bin/ppp-bugs;
 DEPENDS = "libpcap openssl virtual/crypt"
-LICENSE = "BSD-3-Clause & BSD-3-Clause-Attribution & GPL-2.0-or-later & 
LGPL-2.0-or-later & PD"
+LICENSE = "BSD-3-Clause & BSD-3-Clause-Attribution & GPL-2.0-or-later & 
LGPL-2.0-or-later & PD & RSA-MD"
 LIC_FILES_CHKSUM = 
"file://pppd/ccp.c;beginline=1;endline=29;md5=e2c43fe6e81ff77d87dc9c290a424dea \
 
file://pppd/plugins/passprompt.c;beginline=1;endline=10;md5=3bcbcdbf0e369c9a3e0b8c8275b065d8
 \
 
file://pppd/tdb.c;beginline=1;endline=27;md5=4ca3a9991b011038d085d6675ae7c4e6 \
-- 
2.34.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#198483): 
https://lists.openembedded.org/g/openembedded-core/message/198483
Mute This Topic: https://lists.openembedded.org/mt/105585677/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core][kirkstone 4/7] nghttp2: Fix CVE-2024-28182

[Steve Sakoman]

From: Soumya Sambu 

nghttp2 is an implementation of the Hypertext Transfer Protocol
version 2 in C. The nghttp2 library prior to version 1.61.0 keeps
reading the unbounded number of HTTP/2 CONTINUATION frames even
after a stream is reset to keep HPACK context in sync. This
causes excessive CPU usage to decode HPACK stream. nghttp2 v1.61.0
mitigates this vulnerability by limiting the number of CONTINUATION
frames it accepts per stream. There is no workaround for this
vulnerability.

References:
https://nvd.nist.gov/vuln/detail/CVE-2024-28182

Signed-off-by: Soumya Sambu 
Signed-off-by: Steve Sakoman 
---
 .../nghttp2/nghttp2/CVE-2024-28182-0001.patch | 110 ++
 .../nghttp2/nghttp2/CVE-2024-28182-0002.patch | 105 +
 .../recipes-support/nghttp2/nghttp2_1.47.0.bb |   2 +
 3 files changed, 217 insertions(+)
 create mode 100644 
meta/recipes-support/nghttp2/nghttp2/CVE-2024-28182-0001.patch
 create mode 100644 
meta/recipes-support/nghttp2/nghttp2/CVE-2024-28182-0002.patch

diff --git a/meta/recipes-support/nghttp2/nghttp2/CVE-2024-28182-0001.patch 
b/meta/recipes-support/nghttp2/nghttp2/CVE-2024-28182-0001.patch
new file mode 100644
index 00..e1d909b0d1
--- /dev/null
+++ b/meta/recipes-support/nghttp2/nghttp2/CVE-2024-28182-0001.patch
@@ -0,0 +1,110 @@
+From 00201ecd8f982da3b67d4f6868af72a1b03b14e0 Mon Sep 17 00:00:00 2001
+From: Tatsuhiro Tsujikawa 
+Date: Sat, 9 Mar 2024 16:26:42 +0900
+Subject: [PATCH] Limit CONTINUATION frames following an incoming HEADER frame
+
+CVE: CVE-2024-28182
+
+Upstream-Status: Backport 
[https://github.com/nghttp2/nghttp2/commit/00201ecd8f982da3b67d4f6868af72a1b03b14e0]
+
+Signed-off-by: Soumya Sambu 
+---
+ lib/includes/nghttp2/nghttp2.h |  7 ++-
+ lib/nghttp2_helper.c   |  2 ++
+ lib/nghttp2_session.c  |  7 +++
+ lib/nghttp2_session.h  | 10 ++
+ 4 files changed, 25 insertions(+), 1 deletion(-)
+
+diff --git a/lib/includes/nghttp2/nghttp2.h b/lib/includes/nghttp2/nghttp2.h
+index 2bd35f4..6cc8c0c 100644
+--- a/lib/includes/nghttp2/nghttp2.h
 b/lib/includes/nghttp2/nghttp2.h
+@@ -440,7 +440,12 @@ typedef enum {
+* exhaustion on server side to send these frames forever and does
+* not read network.
+*/
+-  NGHTTP2_ERR_FLOODED = -904
++  NGHTTP2_ERR_FLOODED = -904,
++  /**
++   * When a local endpoint receives too many CONTINUATION frames
++   * following a HEADER frame.
++   */
++  NGHTTP2_ERR_TOO_MANY_CONTINUATIONS = -905,
+ } nghttp2_error;
+
+ /**
+diff --git a/lib/nghttp2_helper.c b/lib/nghttp2_helper.c
+index 588e269..98989f6 100644
+--- a/lib/nghttp2_helper.c
 b/lib/nghttp2_helper.c
+@@ -336,6 +336,8 @@ const char *nghttp2_strerror(int error_code) {
+"closed";
+   case NGHTTP2_ERR_TOO_MANY_SETTINGS:
+ return "SETTINGS frame contained more than the maximum allowed entries";
++  case NGHTTP2_ERR_TOO_MANY_CONTINUATIONS:
++return "Too many CONTINUATION frames following a HEADER frame";
+   default:
+ return "Unknown error code";
+   }
+diff --git a/lib/nghttp2_session.c b/lib/nghttp2_session.c
+index 5c834fa..537127c 100644
+--- a/lib/nghttp2_session.c
 b/lib/nghttp2_session.c
+@@ -464,6 +464,7 @@ static int session_new(nghttp2_session **session_ptr,
+   (*session_ptr)->max_send_header_block_length = NGHTTP2_MAX_HEADERSLEN;
+   (*session_ptr)->max_outbound_ack = NGHTTP2_DEFAULT_MAX_OBQ_FLOOD_ITEM;
+   (*session_ptr)->max_settings = NGHTTP2_DEFAULT_MAX_SETTINGS;
++  (*session_ptr)->max_continuations = NGHTTP2_DEFAULT_MAX_CONTINUATIONS;
+
+   if (option) {
+ if ((option->opt_set_mask & NGHTTP2_OPT_NO_AUTO_WINDOW_UPDATE) &&
+@@ -6307,6 +6308,8 @@ ssize_t nghttp2_session_mem_recv(nghttp2_session 
*session, const uint8_t *in,
+   }
+ }
+ session_inbound_frame_reset(session);
++
++session->num_continuations = 0;
+   }
+   break;
+ }
+@@ -6428,6 +6431,10 @@ ssize_t nghttp2_session_mem_recv(nghttp2_session 
*session, const uint8_t *in,
+   }
+ #endif /* DEBUGBUILD */
+
++  if (++session->num_continuations > session->max_continuations) {
++return NGHTTP2_ERR_TOO_MANY_CONTINUATIONS;
++  }
++
+   readlen = inbound_frame_buf_read(iframe, in, last);
+   in += readlen;
+
+diff --git a/lib/nghttp2_session.h b/lib/nghttp2_session.h
+index 5f71a16..9a00b0e 100644
+--- a/lib/nghttp2_session.h
 b/lib/nghttp2_session.h
+@@ -107,6 +107,10 @@ typedef struct {
+ #define NGHTTP2_DEFAULT_STREAM_RESET_BURST 1000
+ #define NGHTTP2_DEFAULT_STREAM_RESET_RATE 33
+
++/* The default max number of CONTINUATION frames following an incoming
++   HEADER frame. */
++#define NGHTTP2_DEFAULT_MAX_CONTINUATIONS 8
++
+ /* Internal state when receiving incoming frame */
+ typedef enum {
+   /* Receiving frame header */
+@@ -279,6 +283,12 @@ struct nghttp2_session {
+   size_t max_send_header_block_length;
+   /* The maximum number of settings accepted per SETTINGS frame. */
+   size_t max_settings;
++  /* The maximum 

[OE-core][kirkstone 3/7] rust: add CVE_CHECK_IGNORE for CVE-2024-24576

[Steve Sakoman]

From: Harish Sadineni 

CVE-2024-24576 only applies when invoking batch files (with the `bat` and `cmd` 
extensions) on Windows & No other platform or use is affected.
More details about CVE is here: https://nvd.nist.gov/vuln/detail/CVE-2024-24576

Signed-off-by: Harish Sadineni 
Signed-off-by: Steve Sakoman 
---
 meta/recipes-devtools/rust/rust-source.inc | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/meta/recipes-devtools/rust/rust-source.inc 
b/meta/recipes-devtools/rust/rust-source.inc
index ea70ad786f..c377a680a7 100644
--- a/meta/recipes-devtools/rust/rust-source.inc
+++ b/meta/recipes-devtools/rust/rust-source.inc
@@ -5,3 +5,6 @@ RUSTSRC = "${WORKDIR}/rustc-${PV}-src"
 
 UPSTREAM_CHECK_URI = 
"https://forge.rust-lang.org/infra/other-installation-methods.html;
 UPSTREAM_CHECK_REGEX = "rustc-(?P\d+(\.\d+)+)-src"
+
+#CVE-2024-24576 is specific to Microsoft Windows
+CVE_CHECK_IGNORE += "CVE-2024-24576"
-- 
2.34.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#198480): 
https://lists.openembedded.org/g/openembedded-core/message/198480
Mute This Topic: https://lists.openembedded.org/mt/105585672/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core][kirkstone 2/7] ruby: fix CVE-2024-27281

[Steve Sakoman]

From: Yogita Urade 

ruby: RCE vulnerability with .rdoc_options in RDoc

References:
https://github.com/ruby/ruby/pull/10316
https://security-tracker.debian.org/tracker/CVE-2024-27281

Signed-off-by: Yogita Urade 
Signed-off-by: Steve Sakoman 
---
 .../ruby/ruby/CVE-2024-27281.patch| 97 +++
 meta/recipes-devtools/ruby/ruby_3.1.3.bb  |  1 +
 2 files changed, 98 insertions(+)
 create mode 100644 meta/recipes-devtools/ruby/ruby/CVE-2024-27281.patch

diff --git a/meta/recipes-devtools/ruby/ruby/CVE-2024-27281.patch 
b/meta/recipes-devtools/ruby/ruby/CVE-2024-27281.patch
new file mode 100644
index 00..6f4b35a786
--- /dev/null
+++ b/meta/recipes-devtools/ruby/ruby/CVE-2024-27281.patch
@@ -0,0 +1,97 @@
+From da7a0c7553ef7250ca665a3fecdc01dbaacbb43d Mon Sep 17 00:00:00 2001
+From: Nobuyoshi Nakada 
+Date: Mon, 15 Apr 2024 11:40:00 +
+Subject: [PATCH] Filter marshaled objets
+
+CVE: CVE-2024-27281
+Upstream-Status: Backport 
[https://github.com/ruby/rdoc/commit/da7a0c7553ef7250ca665a3fecdc01dbaacbb43d]
+
+Signed-off-by: Yogita Urade 
+---
+ lib/rdoc/store.rb | 45 ++---
+ 1 file changed, 26 insertions(+), 19 deletions(-)
+
+diff --git a/lib/rdoc/store.rb b/lib/rdoc/store.rb
+index 5ba671c..c793e49 100644
+--- a/lib/rdoc/store.rb
 b/lib/rdoc/store.rb
+@@ -556,9 +556,7 @@ class RDoc::Store
+   def load_cache
+ #orig_enc = @encoding
+
+-File.open cache_path, 'rb' do |io|
+-  @cache = Marshal.load io.read
+-end
++@cache = marshal_load(cache_path)
+
+ load_enc = @cache[:encoding]
+
+@@ -615,9 +613,7 @@ class RDoc::Store
+   def load_class_data klass_name
+ file = class_file klass_name
+
+-File.open file, 'rb' do |io|
+-  Marshal.load io.read
+-end
++marshal_load(file)
+   rescue Errno::ENOENT => e
+ error = MissingFileError.new(self, file, klass_name)
+ error.set_backtrace e.backtrace
+@@ -630,14 +626,10 @@ class RDoc::Store
+   def load_method klass_name, method_name
+ file = method_file klass_name, method_name
+
+-File.open file, 'rb' do |io|
+-  obj = Marshal.load io.read
+-  obj.store = self
+-  obj.parent =
+-find_class_or_module(klass_name) || load_class(klass_name) unless
+-  obj.parent
+-  obj
+-end
++obj = marshal_load(file)
++obj.store = self
++obj.parent ||= find_class_or_module(klass_name) || load_class(klass_name)
++obj
+   rescue Errno::ENOENT => e
+ error = MissingFileError.new(self, file, klass_name + method_name)
+ error.set_backtrace e.backtrace
+@@ -650,11 +642,9 @@ class RDoc::Store
+   def load_page page_name
+ file = page_file page_name
+
+-File.open file, 'rb' do |io|
+-  obj = Marshal.load io.read
+-  obj.store = self
+-  obj
+-end
++obj = marshal_load(file)
++obj.store = self
++obj
+   rescue Errno::ENOENT => e
+ error = MissingFileError.new(self, file, page_name)
+ error.set_backtrace e.backtrace
+@@ -976,4 +966,21 @@ class RDoc::Store
+ @unique_modules
+   end
+
++  private
++  def marshal_load(file)
++File.open(file, 'rb') {|io| Marshal.load(io, MarshalFilter)}
++  end
++
++  MarshalFilter = proc do |obj|
++case obj
++when true, false, nil, Array, Class, Encoding, Hash, Integer, String, 
Symbol, RDoc::Text
++else
++  unless obj.class.name.start_with?("RDoc::")
++raise TypeError, "not permitted class: #{obj.class.name}"
++  end
++end
++obj
++  end
++  private_constant :MarshalFilter
++
+ end
+--
+2.35.5
diff --git a/meta/recipes-devtools/ruby/ruby_3.1.3.bb 
b/meta/recipes-devtools/ruby/ruby_3.1.3.bb
index 228a2204db..2ad3c9e207 100644
--- a/meta/recipes-devtools/ruby/ruby_3.1.3.bb
+++ b/meta/recipes-devtools/ruby/ruby_3.1.3.bb
@@ -33,6 +33,7 @@ SRC_URI = 
"http://cache.ruby-lang.org/pub/ruby/${SHRT_VER}/ruby-${PV}.tar.gz \
file://CVE-2023-28755.patch \
file://CVE-2023-36617_1.patch \
file://CVE-2023-36617_2.patch \
+   file://CVE-2024-27281.patch \
"
 UPSTREAM_CHECK_URI = "https://www.ruby-lang.org/en/downloads/;
 
-- 
2.34.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#198479): 
https://lists.openembedded.org/g/openembedded-core/message/198479
Mute This Topic: https://lists.openembedded.org/mt/105585671/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core][kirkstone 1/7] libssh2: fix CVE-2023-48795

[Steve Sakoman]

From: Meenali Gupta 

References:
https://nvd.nist.gov/vuln/detail/CVE-2023-48795

Signed-off-by: Meenali Gupta 
Signed-off-by: Steve Sakoman 
---
 .../libssh2/libssh2/CVE-2023-48795.patch  | 459 ++
 .../recipes-support/libssh2/libssh2_1.10.0.bb |   1 +
 2 files changed, 460 insertions(+)
 create mode 100644 meta/recipes-support/libssh2/libssh2/CVE-2023-48795.patch

diff --git a/meta/recipes-support/libssh2/libssh2/CVE-2023-48795.patch 
b/meta/recipes-support/libssh2/libssh2/CVE-2023-48795.patch
new file mode 100644
index 00..c7a228217f
--- /dev/null
+++ b/meta/recipes-support/libssh2/libssh2/CVE-2023-48795.patch
@@ -0,0 +1,459 @@
+From d34d9258b8420b19ec3f97b4cc5bf7aa7d98e35a Mon Sep 17 00:00:00 2001
+From: Michael Buckley 
+Date: Thu, 30 Nov 2023 15:08:02 -0800
+Subject: [PATCH] src: add 'strict KEX' to fix CVE-2023-48795 "Terrapin Attack"
+
+Refs:
+https://terrapin-attack.com/ https://seclists.org/oss-sec/2023/q4/292
+https://osv.dev/list?ecosystem==CVE-2023-48795 GHSA-45x7-px36-x8w8
+https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-48795
+
+Fixes #1290
+Closes #1291
+
+CVE: CVE-2023-48795
+Upstream-Status: Backport 
[https://github.com/libssh2/libssh2/commit/d34d9258b8420b19ec3f97b4cc5bf7aa7d98e35a]
+
+Signed-off-by: Meenali Gupta 
+---
+ src/kex.c  | 64 +-
+ src/libssh2_priv.h | 18 +++---
+ src/packet.c   | 85 +++---
+ src/packet.h   |  2 +-
+ src/session.c  |  3 ++
+ src/transport.c| 12 ++-
+ 6 files changed, 150 insertions(+), 34 deletions(-)
+
+diff --git a/src/kex.c b/src/kex.c
+index 9f3ef79..e040dcd 100644
+--- a/src/kex.c
 b/src/kex.c
+@@ -3026,6 +3026,13 @@ kex_method_ssh_curve25519_sha256 = {
+ };
+ #endif
+
++static const LIBSSH2_KEX_METHOD
++kex_method_strict_client_extension = {
++"kex-strict-c-...@openssh.com",
++NULL,
++0,
++};
++
+ static const LIBSSH2_KEX_METHOD *libssh2_kex_methods[] = {
+ #if LIBSSH2_ED25519
+ _method_ssh_curve25519_sha256,
+@@ -3043,6 +3050,7 @@ static const LIBSSH2_KEX_METHOD *libssh2_kex_methods[] = 
{
+ _method_diffie_helman_group14_sha1,
+ _method_diffie_helman_group1_sha1,
+ _method_diffie_helman_group_exchange_sha1,
++_method_strict_client_extension,
+   NULL
+ };
+
+@@ -3281,13 +3289,13 @@ static int kexinit(LIBSSH2_SESSION * session)
+ return 0;
+ }
+
+-/* kex_agree_instr
++/* _libssh2_kex_agree_instr
+  * Kex specific variant of strstr()
+  * Needle must be precede by BOL or ',', and followed by ',' or EOL
+  */
+-static unsigned char *
+-kex_agree_instr(unsigned char *haystack, unsigned long haystack_len,
+-const unsigned char *needle, unsigned long needle_len)
++unsigned char *
++_libssh2_kex_agree_instr(unsigned char *haystack, size_t haystack_len,
++ const unsigned char *needle, size_t needle_len)
+ {
+ unsigned char *s;
+ unsigned char *end_haystack;
+@@ -3371,7 +3379,7 @@ static int kex_agree_hostkey(LIBSSH2_SESSION * session,
+ while(s && *s) {
+ unsigned char *p = (unsigned char *) strchr((char *) s, ',');
+ size_t method_len = (p ? (size_t)(p - s) : strlen((char *) s));
+-if(kex_agree_instr(hostkey, hostkey_len, s, method_len)) {
++ if(_libssh2_kex_agree_instr(hostkey, hostkey_len, s, 
method_len)) {
+ const LIBSSH2_HOSTKEY_METHOD *method =
+ (const LIBSSH2_HOSTKEY_METHOD *)
+ kex_get_method_by_name((char *) s, method_len,
+@@ -3405,9 +3413,9 @@ static int kex_agree_hostkey(LIBSSH2_SESSION * session,
+ }
+
+ while(hostkeyp && (*hostkeyp) && (*hostkeyp)->name) {
+-s = kex_agree_instr(hostkey, hostkey_len,
+-(unsigned char *) (*hostkeyp)->name,
+-strlen((*hostkeyp)->name));
++s = _libssh2_kex_agree_instr(hostkey, hostkey_len,
++ (unsigned char *) (*hostkeyp)->name,
++ strlen((*hostkeyp)->name));
+ if(s) {
+ /* So far so good, but does it suit our purposes? (Encrypting vs
+Signing) */
+@@ -3442,13 +3450,19 @@ static int kex_agree_kex_hostkey(LIBSSH2_SESSION * 
session, unsigned char *kex,
+ const LIBSSH2_KEX_METHOD **kexp = libssh2_kex_methods;
+ unsigned char *s;
+
++const unsigned char *strict =
++(unsigned char *)"kex-strict-s-...@openssh.com";
++
++if(_libssh2_kex_agree_instr(kex, kex_len, strict, 28)) {
++session->kex_strict = 1;
++}
+ if(session->kex_prefs) {
+ s = (unsigned char *) session->kex_prefs;
+
+ while(s && *s) {
+ unsigned char *q, *p = (unsigned char *) strchr((char *) s, ',');
+ size_t method_len = (p ? (size_t)(p - s) : strlen((char *) s));
+-q = kex_agree_instr(kex, kex_len, s, method_len);
++q = 

[OE-core][kirkstone 0/7] Patch review

[Steve Sakoman]

Please review this set of changes for kirkstone and have comments back by
end of day Friday, April 19

Passed a-full on autobuilder:

https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/6817

The following changes since commit f94c74cee8b2650dd3211a49dc7e88bf60d2e6a7:

  tcl: skip async and event tests in run-ptest (2024-04-16 05:00:24 -0700)

are available in the Git repository at:

  https://git.openembedded.org/openembedded-core-contrib stable/kirkstone-nut
  
https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/kirkstone-nut

Harish Sadineni (1):
  rust: add CVE_CHECK_IGNORE for CVE-2024-24576

Meenali Gupta (1):
  libssh2: fix CVE-2023-48795

Poonam Jadhav (1):
  ppp: Add RSA-MD in LICENSE

Sana Kazi (1):
  systemd: Fix vlan qos mapping

Soumya Sambu (1):
  nghttp2: Fix CVE-2024-28182

Steve Sakoman (1):
  valgrind: skip intermittently failing ptest

Yogita Urade (1):
  ruby: fix CVE-2024-27281

 meta/recipes-connectivity/ppp/ppp_2.4.9.bb|   2 +-
 .../systemd/fix-vlan-qos-mapping.patch| 140 ++
 meta/recipes-core/systemd/systemd_250.5.bb|   1 +
 .../ruby/ruby/CVE-2024-27281.patch|  97 
 meta/recipes-devtools/ruby/ruby_3.1.3.bb  |   1 +
 meta/recipes-devtools/rust/rust-source.inc|   3 +
 .../valgrind/valgrind/remove-for-all  |   2 +
 .../libssh2/libssh2/CVE-2023-48795.patch  | 459 ++
 .../recipes-support/libssh2/libssh2_1.10.0.bb |   1 +
 .../nghttp2/nghttp2/CVE-2024-28182-0001.patch | 110 +
 .../nghttp2/nghttp2/CVE-2024-28182-0002.patch | 105 
 .../recipes-support/nghttp2/nghttp2_1.47.0.bb |   2 +
 12 files changed, 922 insertions(+), 1 deletion(-)
 create mode 100644 meta/recipes-core/systemd/systemd/fix-vlan-qos-mapping.patch
 create mode 100644 meta/recipes-devtools/ruby/ruby/CVE-2024-27281.patch
 create mode 100644 meta/recipes-support/libssh2/libssh2/CVE-2023-48795.patch
 create mode 100644 
meta/recipes-support/nghttp2/nghttp2/CVE-2024-28182-0001.patch
 create mode 100644 
meta/recipes-support/nghttp2/nghttp2/CVE-2024-28182-0002.patch

-- 
2.34.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#198477): 
https://lists.openembedded.org/g/openembedded-core/message/198477
Mute This Topic: https://lists.openembedded.org/mt/105585663/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [PATCH] rootfs.py: Fix logger error message format

[John Ripple via lists.openembedded.org]

This patch adds a missing "%s" format in a logger.error call. Without
this addition the logger itself would error out and not print a useful
message.

Signed-off-by: John Ripple 
---
 scripts/lib/wic/plugins/source/rootfs.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/scripts/lib/wic/plugins/source/rootfs.py 
b/scripts/lib/wic/plugins/source/rootfs.py
index e29f3a4c2f..c990143c0d 100644
--- a/scripts/lib/wic/plugins/source/rootfs.py
+++ b/scripts/lib/wic/plugins/source/rootfs.py
@@ -43,7 +43,7 @@ class RootfsPlugin(SourcePlugin):
 # directory, or modify a directory outside OpenEmbedded).
 full_path = os.path.realpath(os.path.join(rootfs_dir, path))
 if not full_path.startswith(os.path.realpath(rootfs_dir)):
-logger.error("%s: Must point inside the rootfs:" % (cmd, path))
+logger.error("%s: Must point inside the rootfs: %s" % (cmd, path))
 sys.exit(1)

 return full_path
--
2.34.1

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#198476): 
https://lists.openembedded.org/g/openembedded-core/message/198476
Mute This Topic: https://lists.openembedded.org/mt/105585009/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

Re: [OE-core] [PATCH] cmake.bbclass: Add ${COREBASE}/scripts to CMAKE_FIND_ROOT_PATH

[Khem Raj]

On Wed, Apr 17, 2024 at 4:25 AM Daniel Klauer via lists.openembedded.org
 wrote:

> ${COREBASE}/scripts contains a "git" wrapper disabling fakeroot/pseudo.
> This patch allows CMake to find ${COREBASE}/scripts/git instead of
> ${HOSTTOOLS_DIR}/git. This is needed for git invocations during do_install,
> since do_install is a fakeroot task, and otherwise all git commands fail
> with "fatal: detected dubious ownership in repository ...".
>
> I don't know how common it is for CMake projects to invoke git during the
> install phase intentionally. It's probably more common to do this during
> the configure phase. However, the install step may re-run the configure
> step, if some dependencies changed.


If a package build system has such dependencies they should be better
expressed in recipes and linked using bitbake task level dependency
mechanism

I wonder why git is needed during install phase
Can you explain a bit more on that

And since change it in a class it means it has to be a pattern


>
> In my case, this happened in incremental Yocto builds which reran
> do_install and repopulated parts of the recipe-sysroot during that,
> without first rerunning do_configure or do_compile. One of the dependencies
> changed (but only changing a file in some unrelated sub-package of it which
> was not even installed into the recipe-sysroot), causing the dependant's
> recipe-sysroot to be repopulated during do_install and thus causing the
> CMake project to be reconfigured during do_install.
>
> Signed-off-by: Daniel Klauer 
> ---
>  meta/classes-recipe/cmake.bbclass | 2 +-
>  1 file changed, 1 insertion(+), 1 deletion(-)
>
> diff --git a/meta/classes-recipe/cmake.bbclass
> b/meta/classes-recipe/cmake.bbclass
> index 3d3781ef33..e1c3d7ddb5 100644
> --- a/meta/classes-recipe/cmake.bbclass
> +++ b/meta/classes-recipe/cmake.bbclass
> @@ -124,7 +124,7 @@ set( CMAKE_CXX_LINK_FLAGS "${OECMAKE_CXX_LINK_FLAGS}"
> CACHE STRING "LDFLAGS" )
>
>  # only search in the paths provided so cmake doesnt pick
>  # up libraries and tools from the native build machine
> -set( CMAKE_FIND_ROOT_PATH ${STAGING_DIR_HOST} ${STAGING_DIR_NATIVE}
> ${CROSS_DIR} ${OECMAKE_PERLNATIVE_DIR} ${OECMAKE_EXTRA_ROOT_PATH}
> ${EXTERNAL_TOOLCHAIN} ${HOSTTOOLS_DIR})
> +set( CMAKE_FIND_ROOT_PATH ${STAGING_DIR_HOST} ${STAGING_DIR_NATIVE}
> ${CROSS_DIR} ${OECMAKE_PERLNATIVE_DIR} ${OECMAKE_EXTRA_ROOT_PATH}
> ${EXTERNAL_TOOLCHAIN} ${COREBASE}/scripts ${HOSTTOOLS_DIR} )
>  set( CMAKE_FIND_ROOT_PATH_MODE_PACKAGE ONLY )
>  set( CMAKE_FIND_ROOT_PATH_MODE_PROGRAM
> ${OECMAKE_FIND_ROOT_PATH_MODE_PROGRAM} )
>  set( CMAKE_FIND_ROOT_PATH_MODE_LIBRARY ONLY )
> --
> 2.34.1
>
>
> 
>
>

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#198475): 
https://lists.openembedded.org/g/openembedded-core/message/198475
Mute This Topic: https://lists.openembedded.org/mt/105575001/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

Re: [OE-core] [PATCH] rust-target-config: fix featrue for vfpv4f16

[Khem Raj]

On Wed, Apr 17, 2024 at 11:25 AM Willy Tu via lists.openembedded.org  wrote:

> Based on [1] which fixed the target for vfpv3d16. Adding the support for
> vfpv4d16 with the same set of changes.
>

Lgtm


> Tested with running tokio which hit coredump before the change. It
> worked fine after this change.
>
> [1] https://lists.openembedded.org/g/openembedded-core/message/185702
>
> Signed-off-by: Willy Tu 
> ---
>  meta/classes-recipe/rust-target-config.bbclass | 3 +++
>  1 file changed, 3 insertions(+)
>
> diff --git a/meta/classes-recipe/rust-target-config.bbclass
> b/meta/classes-recipe/rust-target-config.bbclass
> index 926b0630b1..330ad8a3f5 100644
> --- a/meta/classes-recipe/rust-target-config.bbclass
> +++ b/meta/classes-recipe/rust-target-config.bbclass
> @@ -21,6 +21,9 @@ def llvm_features_from_tune(d):
>
>  if 'vfpv4' in feat:
>  f.append("+vfp4")
> +elif 'vfpv4d16' in feat:
> +f.append("+vfp4")
> +f.append("-d32")
>  elif 'vfpv3' in feat:
>  f.append("+vfp3")
>  elif 'vfpv3d16' in feat:
> --
> 2.44.0.769.g3c40516874-goog
>
>
> 
>
>

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#198474): 
https://lists.openembedded.org/g/openembedded-core/message/198474
Mute This Topic: https://lists.openembedded.org/mt/105583303/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [PATCH] rust-target-config: fix featrue for vfpv4f16

[Willy Tu via lists.openembedded.org]

Based on [1] which fixed the target for vfpv3d16. Adding the support for
vfpv4d16 with the same set of changes.

Tested with running tokio which hit coredump before the change. It
worked fine after this change.

[1] https://lists.openembedded.org/g/openembedded-core/message/185702

Signed-off-by: Willy Tu 
---
 meta/classes-recipe/rust-target-config.bbclass | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/meta/classes-recipe/rust-target-config.bbclass 
b/meta/classes-recipe/rust-target-config.bbclass
index 926b0630b1..330ad8a3f5 100644
--- a/meta/classes-recipe/rust-target-config.bbclass
+++ b/meta/classes-recipe/rust-target-config.bbclass
@@ -21,6 +21,9 @@ def llvm_features_from_tune(d):
 
 if 'vfpv4' in feat:
 f.append("+vfp4")
+elif 'vfpv4d16' in feat:
+f.append("+vfp4")
+f.append("-d32")
 elif 'vfpv3' in feat:
 f.append("+vfp3")
 elif 'vfpv3d16' in feat:
-- 
2.44.0.769.g3c40516874-goog


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#198473): 
https://lists.openembedded.org/g/openembedded-core/message/198473
Mute This Topic: https://lists.openembedded.org/mt/105583303/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] Patchtest results for [PATCH] rust-target-config fix target_featrue for vfpv4f16

[Patchtest]

Thank you for your submission. Patchtest identified one
or more issues with the patch. Please see the log below for
more information:

---
Testing patch 
/home/patchtest/share/mboxes/rust-target-config-fix-target_featrue-for-vfpv4f16.patch

FAIL: test shortlog format: Commit shortlog (first line of commit message) 
should follow the format ": " 
(test_mbox.TestMbox.test_shortlog_format)

PASS: test Signed-off-by presence 
(test_mbox.TestMbox.test_signed_off_by_presence)
PASS: test author valid (test_mbox.TestMbox.test_author_valid)
PASS: test commit message presence 
(test_mbox.TestMbox.test_commit_message_presence)
PASS: test max line length (test_metadata.TestMetadata.test_max_line_length)
PASS: test mbox format (test_mbox.TestMbox.test_mbox_format)
PASS: test non-AUH upgrade (test_mbox.TestMbox.test_non_auh_upgrade)
PASS: test shortlog length (test_mbox.TestMbox.test_shortlog_length)

SKIP: pretest pylint: No python related patches, skipping test 
(test_python_pylint.PyLint.pretest_pylint)
SKIP: pretest src uri left files: No modified recipes, skipping pretest 
(test_metadata.TestMetadata.pretest_src_uri_left_files)
SKIP: test CVE check ignore: No modified recipes or older target branch, 
skipping test (test_metadata.TestMetadata.test_cve_check_ignore)
SKIP: test CVE tag format: No new CVE patches introduced 
(test_patch.TestPatch.test_cve_tag_format)
SKIP: test Signed-off-by presence: No new CVE patches introduced 
(test_patch.TestPatch.test_signed_off_by_presence)
SKIP: test Upstream-Status presence: No new CVE patches introduced 
(test_patch.TestPatch.test_upstream_status_presence_format)
SKIP: test bugzilla entry format: No bug ID found 
(test_mbox.TestMbox.test_bugzilla_entry_format)
SKIP: test lic files chksum modified not mentioned: No modified recipes, 
skipping test 
(test_metadata.TestMetadata.test_lic_files_chksum_modified_not_mentioned)
SKIP: test lic files chksum presence: No added recipes, skipping test 
(test_metadata.TestMetadata.test_lic_files_chksum_presence)
SKIP: test license presence: No added recipes, skipping test 
(test_metadata.TestMetadata.test_license_presence)
SKIP: test pylint: No python related patches, skipping test 
(test_python_pylint.PyLint.test_pylint)
SKIP: test series merge on head: Merge test is disabled for now 
(test_mbox.TestMbox.test_series_merge_on_head)
SKIP: test src uri left files: No modified recipes, skipping pretest 
(test_metadata.TestMetadata.test_src_uri_left_files)
SKIP: test summary presence: No added recipes, skipping test 
(test_metadata.TestMetadata.test_summary_presence)
SKIP: test target mailing list: Series merged, no reason to check other mailing 
lists (test_mbox.TestMbox.test_target_mailing_list)

---

Please address the issues identified and
submit a new revision of the patch, or alternatively, reply to this
email with an explanation of why the patch should be accepted. If you
believe these results are due to an error in patchtest, please submit a
bug at https://bugzilla.yoctoproject.org/ (use the 'Patchtest' category
under 'Yocto Project Subprojects'). For more information on specific
failures, see: https://wiki.yoctoproject.org/wiki/Patchtest. Thank
you!

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#198472): 
https://lists.openembedded.org/g/openembedded-core/message/198472
Mute This Topic: https://lists.openembedded.org/mt/105583187/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [PATCH] rust-target-config fix target_featrue for vfpv4f16

[Willy Tu via lists.openembedded.org]

Based on [1] which fixed the target for vfpv3d16. Adding the support for
vfpv4d16 with the same set of changes.

Tested with running tokio which hit coredump before the change. It
worked fine after this change.

[1] https://lists.openembedded.org/g/openembedded-core/message/185702

Signed-off-by: Willy Tu 
---
 meta/classes-recipe/rust-target-config.bbclass | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/meta/classes-recipe/rust-target-config.bbclass 
b/meta/classes-recipe/rust-target-config.bbclass
index 926b0630b1..330ad8a3f5 100644
--- a/meta/classes-recipe/rust-target-config.bbclass
+++ b/meta/classes-recipe/rust-target-config.bbclass
@@ -21,6 +21,9 @@ def llvm_features_from_tune(d):
 
 if 'vfpv4' in feat:
 f.append("+vfp4")
+elif 'vfpv4d16' in feat:
+f.append("+vfp4")
+f.append("-d32")
 elif 'vfpv3' in feat:
 f.append("+vfp3")
 elif 'vfpv3d16' in feat:
-- 
2.44.0.769.g3c40516874-goog


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#198471): 
https://lists.openembedded.org/g/openembedded-core/message/198471
Mute This Topic: https://lists.openembedded.org/mt/105583055/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

Re: [OE-core][PATCH 2/2] linux-firmware: add a package for ath12k firmware

[Alexandre Belloni via lists.openembedded.org]

Hello,

Now that master has dverged from Scarthgap, can you rebase?

On 14/03/2024 11:06:10+0100, Bartosz Golaszewski wrote:
> From: Bartosz Golaszewski 
> 
> Add the firmware package for the ATH12K module.
> 
> Signed-off-by: Bartosz Golaszewski 
> ---
>  .../linux-firmware/linux-firmware_20240312.bb | 8 +++-
>  1 file changed, 7 insertions(+), 1 deletion(-)
> 
> diff --git a/meta/recipes-kernel/linux-firmware/linux-firmware_20240312.bb 
> b/meta/recipes-kernel/linux-firmware/linux-firmware_20240312.bb
> index 390d10d2f3..4961b43ad5 100644
> --- a/meta/recipes-kernel/linux-firmware/linux-firmware_20240312.bb
> +++ b/meta/recipes-kernel/linux-firmware/linux-firmware_20240312.bb
> @@ -320,7 +320,8 @@ PACKAGES =+ "${PN}-amphion-vpu-license ${PN}-amphion-vpu \
>   ${PN}-cnm-license ${PN}-cnm \
>   ${PN}-atheros-license ${PN}-ar5523 ${PN}-ar9170 ${PN}-ath6k 
> ${PN}-ath9k ${PN}-ath3k \
>   ${PN}-gplv2-license ${PN}-carl9170 \
> - ${PN}-ar3k-license ${PN}-ar3k ${PN}-ath10k-license ${PN}-ath10k 
> ${PN}-ath11k ${PN}-qca \
> + ${PN}-ar3k-license ${PN}-ar3k \
> + ${PN}-ath10k-license ${PN}-ath10k ${PN}-ath11k ${PN}-ath12k 
> ${PN}-qca \
>   \
>   ${PN}-imx-sdma-license ${PN}-imx-sdma-imx6q 
> ${PN}-imx-sdma-imx7d \
>   \
> @@ -488,6 +489,10 @@ FILES:${PN}-ath11k = " \
>${nonarch_base_libdir}/firmware/ath11k \
>  "
>  
> +FILES:${PN}-ath12k = " \
> +  ${nonarch_base_libdir}/firmware/ath12k \
> +"
> +
>  FILES:${PN}-qca = " \
>${nonarch_base_libdir}/firmware/qca \
>  "
> @@ -495,6 +500,7 @@ FILES:${PN}-qca = " \
>  RDEPENDS:${PN}-ar3k += "${PN}-ar3k-license ${PN}-atheros-license"
>  RDEPENDS:${PN}-ath10k += "${PN}-ath10k-license"
>  RDEPENDS:${PN}-ath11k += "${PN}-ath10k-license"
> +RDEPENDS:${PN}-ath12k += "${PN}-ath10k-license"
>  RDEPENDS:${PN}-qca += "${PN}-ath10k-license"
>  
>  # For ralink
> -- 
> 2.40.1
> 

> 
> 
> 


-- 
Alexandre Belloni, co-owner and COO, Bootlin
Embedded Linux and Kernel engineering
https://bootlin.com

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#198470): 
https://lists.openembedded.org/g/openembedded-core/message/198470
Mute This Topic: https://lists.openembedded.org/mt/104923522/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

Re: [OE-core] [PATCH] at-spi2-core: set CVE_PRODUCT

[Ross Burton]

On 17 Apr 2024, at 15:21, Emil Kronborg via lists.openembedded.org 
 wrote:
> 
> Signed-off-by: Emil Kronborg 
> ---
> meta/recipes-support/atk/at-spi2-core_2.52.0.bb | 2 ++
> 1 file changed, 2 insertions(+)
> 
> diff --git a/meta/recipes-support/atk/at-spi2-core_2.52.0.bb 
> b/meta/recipes-support/atk/at-spi2-core_2.52.0.bb
> index cf221e038927..2ab42ba13f50 100644
> --- a/meta/recipes-support/atk/at-spi2-core_2.52.0.bb
> +++ b/meta/recipes-support/atk/at-spi2-core_2.52.0.bb
> @@ -7,6 +7,8 @@ BUGTRACKER = "http://bugzilla.gnome.org/;
> LICENSE = "LGPL-2.1-or-later"
> LIC_FILES_CHKSUM = "file://COPYING;md5=4fbd65380cdd255951079008b364516c"
> 
> +CVE_PRODUCT = "at-spi2-atk"

Don’t you mean +=?  We care about issues against at-spi2-core too, surely.

Ross


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#198469): 
https://lists.openembedded.org/g/openembedded-core/message/198469
Mute This Topic: https://lists.openembedded.org/mt/105578054/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] Patchtest results for [PATCH] at-spi2-core: set CVE_PRODUCT

[Patchtest]

Thank you for your submission. Patchtest identified one
or more issues with the patch. Please see the log below for
more information:

---
Testing patch /home/patchtest/share/mboxes/at-spi2-core-set-CVE_PRODUCT.patch

FAIL: test commit message presence: Please include a commit message on your 
patch explaining the change (test_mbox.TestMbox.test_commit_message_presence)

PASS: pretest src uri left files 
(test_metadata.TestMetadata.pretest_src_uri_left_files)
PASS: test CVE check ignore (test_metadata.TestMetadata.test_cve_check_ignore)
PASS: test Signed-off-by presence 
(test_mbox.TestMbox.test_signed_off_by_presence)
PASS: test author valid (test_mbox.TestMbox.test_author_valid)
PASS: test lic files chksum modified not mentioned 
(test_metadata.TestMetadata.test_lic_files_chksum_modified_not_mentioned)
PASS: test max line length (test_metadata.TestMetadata.test_max_line_length)
PASS: test mbox format (test_mbox.TestMbox.test_mbox_format)
PASS: test non-AUH upgrade (test_mbox.TestMbox.test_non_auh_upgrade)
PASS: test shortlog format (test_mbox.TestMbox.test_shortlog_format)
PASS: test shortlog length (test_mbox.TestMbox.test_shortlog_length)
PASS: test src uri left files 
(test_metadata.TestMetadata.test_src_uri_left_files)

SKIP: pretest pylint: No python related patches, skipping test 
(test_python_pylint.PyLint.pretest_pylint)
SKIP: test CVE tag format: No new CVE patches introduced 
(test_patch.TestPatch.test_cve_tag_format)
SKIP: test Signed-off-by presence: No new CVE patches introduced 
(test_patch.TestPatch.test_signed_off_by_presence)
SKIP: test Upstream-Status presence: No new CVE patches introduced 
(test_patch.TestPatch.test_upstream_status_presence_format)
SKIP: test bugzilla entry format: No bug ID found 
(test_mbox.TestMbox.test_bugzilla_entry_format)
SKIP: test lic files chksum presence: No added recipes, skipping test 
(test_metadata.TestMetadata.test_lic_files_chksum_presence)
SKIP: test license presence: No added recipes, skipping test 
(test_metadata.TestMetadata.test_license_presence)
SKIP: test pylint: No python related patches, skipping test 
(test_python_pylint.PyLint.test_pylint)
SKIP: test series merge on head: Merge test is disabled for now 
(test_mbox.TestMbox.test_series_merge_on_head)
SKIP: test summary presence: No added recipes, skipping test 
(test_metadata.TestMetadata.test_summary_presence)
SKIP: test target mailing list: Series merged, no reason to check other mailing 
lists (test_mbox.TestMbox.test_target_mailing_list)

---

Please address the issues identified and
submit a new revision of the patch, or alternatively, reply to this
email with an explanation of why the patch should be accepted. If you
believe these results are due to an error in patchtest, please submit a
bug at https://bugzilla.yoctoproject.org/ (use the 'Patchtest' category
under 'Yocto Project Subprojects'). For more information on specific
failures, see: https://wiki.yoctoproject.org/wiki/Patchtest. Thank
you!

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#198468): 
https://lists.openembedded.org/g/openembedded-core/message/198468
Mute This Topic: https://lists.openembedded.org/mt/105578277/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [PATCH] at-spi2-core: set CVE_PRODUCT

[Emil Kronborg via lists.openembedded.org]

Signed-off-by: Emil Kronborg 
---
 meta/recipes-support/atk/at-spi2-core_2.52.0.bb | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/meta/recipes-support/atk/at-spi2-core_2.52.0.bb 
b/meta/recipes-support/atk/at-spi2-core_2.52.0.bb
index cf221e038927..2ab42ba13f50 100644
--- a/meta/recipes-support/atk/at-spi2-core_2.52.0.bb
+++ b/meta/recipes-support/atk/at-spi2-core_2.52.0.bb
@@ -7,6 +7,8 @@ BUGTRACKER = "http://bugzilla.gnome.org/;
 LICENSE = "LGPL-2.1-or-later"
 LIC_FILES_CHKSUM = "file://COPYING;md5=4fbd65380cdd255951079008b364516c"
 
+CVE_PRODUCT = "at-spi2-atk"
+
 MAJ_VER = "${@oe.utils.trim_version("${PV}", 2)}"
 
 SRC_URI = "${GNOME_MIRROR}/${BPN}/${MAJ_VER}/${BPN}-${PV}.tar.xz"

base-commit: 946086abf5ac5172258ddb27af9c1c615258f62f
-- 
2.44.0



-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#198467): 
https://lists.openembedded.org/g/openembedded-core/message/198467
Mute This Topic: https://lists.openembedded.org/mt/105578054/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core][dunfell][PATCH] ppp: Add RSA-MD in LICENSE

[Poonam Jadhav]

ppp package has "RSA Data Security" license text
in Message-Digest Algorithm source file md5.c and md4.c
Add RSA-MD in LICENSE field for ppp package

Signed-off-by: Poonam Jadhav 
---
 meta/recipes-connectivity/ppp/ppp_2.4.7.bb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/meta/recipes-connectivity/ppp/ppp_2.4.7.bb 
b/meta/recipes-connectivity/ppp/ppp_2.4.7.bb
index 51ec25e660..98ef518c14 100644
--- a/meta/recipes-connectivity/ppp/ppp_2.4.7.bb
+++ b/meta/recipes-connectivity/ppp/ppp_2.4.7.bb
@@ -5,7 +5,7 @@ SECTION = "console/network"
 HOMEPAGE = "http://samba.org/ppp/;
 BUGTRACKER = "http://ppp.samba.org/cgi-bin/ppp-bugs;
 DEPENDS = "libpcap openssl virtual/crypt"
-LICENSE = "BSD & GPLv2+ & LGPLv2+ & PD"
+LICENSE = "BSD & GPLv2+ & LGPLv2+ & PD & RSA-MD"
 LIC_FILES_CHKSUM = 
"file://pppd/ccp.c;beginline=1;endline=29;md5=e2c43fe6e81ff77d87dc9c290a424dea \
 
file://pppd/plugins/passprompt.c;beginline=1;endline=10;md5=3bcbcdbf0e369c9a3e0b8c8275b065d8
 \
 
file://pppd/tdb.c;beginline=1;endline=27;md5=4ca3a9991b011038d085d6675ae7c4e6 \
-- 
2.25.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#198466): 
https://lists.openembedded.org/g/openembedded-core/message/198466
Mute This Topic: https://lists.openembedded.org/mt/105576253/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core][kirkstone][PATCH] ppp: Add RSA-MD in LICENSE

[Poonam Jadhav]

ppp package has "RSA Data Security" license text
in Message-Digest Algorithm source file md5.c and md4.c
Add RSA-MD in LICENSE field for ppp package

Signed-off-by: Poonam Jadhav 
---
 meta/recipes-connectivity/ppp/ppp_2.4.9.bb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/meta/recipes-connectivity/ppp/ppp_2.4.9.bb 
b/meta/recipes-connectivity/ppp/ppp_2.4.9.bb
index 7e3ae43b58..b7f71b673d 100644
--- a/meta/recipes-connectivity/ppp/ppp_2.4.9.bb
+++ b/meta/recipes-connectivity/ppp/ppp_2.4.9.bb
@@ -5,7 +5,7 @@ SECTION = "console/network"
 HOMEPAGE = "http://samba.org/ppp/;
 BUGTRACKER = "http://ppp.samba.org/cgi-bin/ppp-bugs;
 DEPENDS = "libpcap openssl virtual/crypt"
-LICENSE = "BSD-3-Clause & BSD-3-Clause-Attribution & GPL-2.0-or-later & 
LGPL-2.0-or-later & PD"
+LICENSE = "BSD-3-Clause & BSD-3-Clause-Attribution & GPL-2.0-or-later & 
LGPL-2.0-or-later & PD & RSA-MD"
 LIC_FILES_CHKSUM = 
"file://pppd/ccp.c;beginline=1;endline=29;md5=e2c43fe6e81ff77d87dc9c290a424dea \
 
file://pppd/plugins/passprompt.c;beginline=1;endline=10;md5=3bcbcdbf0e369c9a3e0b8c8275b065d8
 \
 
file://pppd/tdb.c;beginline=1;endline=27;md5=4ca3a9991b011038d085d6675ae7c4e6 \
-- 
2.25.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#198465): 
https://lists.openembedded.org/g/openembedded-core/message/198465
Mute This Topic: https://lists.openembedded.org/mt/105576228/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core][master][PATCH] ppp: Add RSA-MD in LICENSE

[Poonam Jadhav]

ppp package has "RSA Data Security" license text in
Message-Digest Algorithm source file ppp-md5.c and ppp-md4.c
Add RSA-MD in LICENSE field for ppp package

Signed-off-by: Poonam Jadhav 
---
 meta/recipes-connectivity/ppp/ppp_2.5.0.bb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/meta/recipes-connectivity/ppp/ppp_2.5.0.bb 
b/meta/recipes-connectivity/ppp/ppp_2.5.0.bb
index 4b052f8ed9..5f0c75de83 100644
--- a/meta/recipes-connectivity/ppp/ppp_2.5.0.bb
+++ b/meta/recipes-connectivity/ppp/ppp_2.5.0.bb
@@ -5,7 +5,7 @@ SECTION = "console/network"
 HOMEPAGE = "http://samba.org/ppp/;
 BUGTRACKER = "http://ppp.samba.org/cgi-bin/ppp-bugs;
 DEPENDS = "libpcap openssl virtual/crypt"
-LICENSE = "BSD-3-Clause & BSD-3-Clause-Attribution & GPL-2.0-or-later & 
LGPL-2.0-or-later & PD"
+LICENSE = "BSD-3-Clause & BSD-3-Clause-Attribution & GPL-2.0-or-later & 
LGPL-2.0-or-later & PD & RSA-MD"
 LIC_FILES_CHKSUM = 
"file://pppd/ccp.c;beginline=1;endline=29;md5=e2c43fe6e81ff77d87dc9c290a424dea \
 
file://pppd/plugins/passprompt.c;beginline=1;endline=10;md5=3bcbcdbf0e369c9a3e0b8c8275b065d8
 \
 
file://pppd/tdb.c;beginline=1;endline=27;md5=4ca3a9991b011038d085d6675ae7c4e6 \
-- 
2.25.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#198464): 
https://lists.openembedded.org/g/openembedded-core/message/198464
Mute This Topic: https://lists.openembedded.org/mt/105576193/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [PATCH] openssh: add After dependencies on nss-user-lookup.target

[Rasmus Villemoes via lists.openembedded.org]

From: Rasmus Villemoes 

Quoting 'man systemd.special':

  nss-user-lookup.target

A target that should be used as synchronization point for all
regular UNIX user/group name service lookups. [...] All services
for which the availability of the full user/group database is
essential should be ordered after this target, but not pull it
in. All services which provide parts of the user/group database
should be ordered before this target, and pull it in.

When no service providing parts of the user/group database exists and
thus pulls in the nss-user-lookup.target, this added dependency is a
no-op.

However, when such a service does exist, and e.g. modifies /etc/shadow
to change password or enable/disable certain accounts, it is essential
that no ssh connections are accepted until those changes are made.

Signed-off-by: Rasmus Villemoes 
---
 meta/recipes-connectivity/openssh/openssh/sshd.service | 1 +
 meta/recipes-connectivity/openssh/openssh/sshd.socket  | 1 +
 2 files changed, 2 insertions(+)

diff --git a/meta/recipes-connectivity/openssh/openssh/sshd.service 
b/meta/recipes-connectivity/openssh/openssh/sshd.service
index 2a997b656a..3e570ab1e5 100644
--- a/meta/recipes-connectivity/openssh/openssh/sshd.service
+++ b/meta/recipes-connectivity/openssh/openssh/sshd.service
@@ -2,6 +2,7 @@
 Description=OpenSSH server daemon
 Wants=sshdgenkeys.service
 After=sshdgenkeys.service
+After=nss-user-lookup.target
 
 [Service]
 Environment="SSHD_OPTS="
diff --git a/meta/recipes-connectivity/openssh/openssh/sshd.socket 
b/meta/recipes-connectivity/openssh/openssh/sshd.socket
index 8d76d62309..7dd2ed0626 100644
--- a/meta/recipes-connectivity/openssh/openssh/sshd.socket
+++ b/meta/recipes-connectivity/openssh/openssh/sshd.socket
@@ -1,6 +1,7 @@
 [Unit]
 Conflicts=sshd.service
 Wants=sshdgenkeys.service
+After=nss-user-lookup.target
 
 [Socket]
 ExecStartPre=@BASE_BINDIR@/mkdir -p /var/run/sshd
-- 
2.40.1.1.g1c60b9335d


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#198463): 
https://lists.openembedded.org/g/openembedded-core/message/198463
Mute This Topic: https://lists.openembedded.org/mt/105575252/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [PATCH] cmake.bbclass: Add ${COREBASE}/scripts to CMAKE_FIND_ROOT_PATH

[Daniel Klauer]

${COREBASE}/scripts contains a "git" wrapper disabling fakeroot/pseudo.
This patch allows CMake to find ${COREBASE}/scripts/git instead of
${HOSTTOOLS_DIR}/git. This is needed for git invocations during do_install,
since do_install is a fakeroot task, and otherwise all git commands fail
with "fatal: detected dubious ownership in repository ...".

I don't know how common it is for CMake projects to invoke git during the
install phase intentionally. It's probably more common to do this during
the configure phase. However, the install step may re-run the configure
step, if some dependencies changed.

In my case, this happened in incremental Yocto builds which reran
do_install and repopulated parts of the recipe-sysroot during that,
without first rerunning do_configure or do_compile. One of the dependencies
changed (but only changing a file in some unrelated sub-package of it which
was not even installed into the recipe-sysroot), causing the dependant's
recipe-sysroot to be repopulated during do_install and thus causing the
CMake project to be reconfigured during do_install.

Signed-off-by: Daniel Klauer 
---
 meta/classes-recipe/cmake.bbclass | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/meta/classes-recipe/cmake.bbclass 
b/meta/classes-recipe/cmake.bbclass
index 3d3781ef33..e1c3d7ddb5 100644
--- a/meta/classes-recipe/cmake.bbclass
+++ b/meta/classes-recipe/cmake.bbclass
@@ -124,7 +124,7 @@ set( CMAKE_CXX_LINK_FLAGS "${OECMAKE_CXX_LINK_FLAGS}" CACHE 
STRING "LDFLAGS" )
 
 # only search in the paths provided so cmake doesnt pick
 # up libraries and tools from the native build machine
-set( CMAKE_FIND_ROOT_PATH ${STAGING_DIR_HOST} ${STAGING_DIR_NATIVE} 
${CROSS_DIR} ${OECMAKE_PERLNATIVE_DIR} ${OECMAKE_EXTRA_ROOT_PATH} 
${EXTERNAL_TOOLCHAIN} ${HOSTTOOLS_DIR})
+set( CMAKE_FIND_ROOT_PATH ${STAGING_DIR_HOST} ${STAGING_DIR_NATIVE} 
${CROSS_DIR} ${OECMAKE_PERLNATIVE_DIR} ${OECMAKE_EXTRA_ROOT_PATH} 
${EXTERNAL_TOOLCHAIN} ${COREBASE}/scripts ${HOSTTOOLS_DIR} )
 set( CMAKE_FIND_ROOT_PATH_MODE_PACKAGE ONLY )
 set( CMAKE_FIND_ROOT_PATH_MODE_PROGRAM ${OECMAKE_FIND_ROOT_PATH_MODE_PROGRAM} )
 set( CMAKE_FIND_ROOT_PATH_MODE_LIBRARY ONLY )
-- 
2.34.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#198462): 
https://lists.openembedded.org/g/openembedded-core/message/198462
Mute This Topic: https://lists.openembedded.org/mt/105575001/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

Re: [OE-core] [PATCH] base.bbclass: make do_fetch depends on PREMIRRORS MIRRORS

[Richard Purdie]

On Tue, 2024-04-16 at 09:48 +0800, Changqing Li wrote:
> On 4/15/24 18:05, Richard Purdie wrote:
> > CAUTION: This email comes from a non Wind River email account!
> > Do not click links or open attachments unless you recognize the
> > sender and know the content is safe.
> > 
> > On Mon, 2024-04-15 at 16:30 +0800, Changqing Li via
> > lists.openembedded.org wrote:
> > > From: Changqing Li 
> > > 
> > > When there are tarballs in local mirror file://, do_fetch will
> > > create symlink under DL_DIR, eg:
> > > pseudo-prebuilt-2.33.tar.xz ->
> > > /project/path/to/localmirrorA/pseudo-prebuilt-2.33.tar.xz
> > > after user update path from localmirrorA to localmirrorB, because
> > > do_fetch don't depends on PREMIRRORS/MIRRORS, do_fetch will not
> > > be rerun, so the symlink will not update to:
> > > pseudo-prebuilt-2.33.tar.xz ->
> > > /project/path/to/localmirrorB/pseudo-prebuilt-2.33.tar.xz
> > > then, do_upack will failed since the tarball cannot be found.
> > > 
> > > Signed-off-by: Changqing Li 
> > > ---
> > >   meta/classes-global/base.bbclass | 1 +
> > >   1 file changed, 1 insertion(+)
> > > 
> > > diff --git a/meta/classes-global/base.bbclass b/meta/classes-
> > > global/base.bbclass
> > > index 0999b42daa..5094a1540e 100644
> > > --- a/meta/classes-global/base.bbclass
> > > +++ b/meta/classes-global/base.bbclass
> > > @@ -139,6 +139,7 @@ do_fetch[file-checksums] =
> > > "${@bb.fetch.get_checksum_file_list(d)}"
> > >   do_fetch[file-checksums] += "
> > > ${@get_lic_checksum_file_list(d)}"
> > >   do_fetch[prefuncs] += "fetcher_hashes_dummyfunc"
> > >   do_fetch[network] = "1"
> > > +do_fetch[vardeps] += "PREMIRRORS MIRRORS"
> > >   python base_do_fetch() {
> > > 
> > >   src_uri = (d.getVar('SRC_URI') or "").split()
> > > 
> > Changing PREMIRRORS or MIRRORS should not change the output of the
> > task, ever, so do_fetch shouldn't depend upon them.
> 
> The failure case I met is like this:
> 
> I have a project with PREMIRRORS setting, and the tarballs are under
> it.
> 
> PREMIRRORS:append = "file:///project/path/to/localmirrorA"
> 
> after first bitbake pseudo-native, there will a symlink under DL_DIR:
> 
> pseudo-prebuilt-2.33.tar.xz -> 
> /project/path/to/localmirrorA/pseudo-prebuilt-2.33.tar.xz
> 
> Then, Since all the tarballs are moved to
> /project/path/to/localmirrorB
> 
> I changed PREMIRRORS:append = "file:///project/path/to/localmirrorB"
> 
> Then bitbake pseudo-native again,   do_fetch  will not rerun since no
> signature change.
> 
> do_unpack rerun since one dependency  change, it will try to unpack 
> ${DL_DIR}/pseudo-prebuilt-2.33.tar.xz,
> 
> but since do_fetch not rerun, ${DL_DIR}/pseudo-prebuilt-2.33.tar.xz 
> still point to localmirrorA, but localmirrorA not exist
> 
> since localmirrorB replace it.  Then will cause do_unpck failure:
> 
> NOTE: Unpacking /build/downloads/pseudo-prebuilt-2.33.tar.xz to 
> /build/tmp-glibc/work/x86_64-linux/pseudo-native/1.9.0+git xz: 
> /build/downloads/pseudo-prebuilt-2.33.tar.xz: No such file or
> directory
> 
> So this is why I want to add this depends,  and want to make do_fetch
> rerun and resymlink to /project/path/to/localmirrorB

The question is if the fetch reruns, does it correct the path?

do_fetch should definitely not depend on PREMIRRORS or MIRRORS as those
can be set by local users for local setups. The idea is that result
would be the same regardless, else the fetch checksums (or git
revision) would not match. I will therefore not take any patch changing
that.

Also, despite what Alex said, the fetcher does only make symlinks for
local files, it does not copy every file into DL_DIR. It does this for
efficiency, both time and disk usage.

If you start moving files around locally, you're expected to fix up the
links too. I believe that if you manually run the fetch task, it will
update correctly so the only issue is it not automatically triggering
but I don't believe it should trigger.

So whilst I can see how you have an unfortunate build failure, it was
of your own making by moving mirror directories around.

Cheers,

Richard




-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#198461): 
https://lists.openembedded.org/g/openembedded-core/message/198461
Mute This Topic: https://lists.openembedded.org/mt/105532159/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

Re: [OE-core] [PATCH] base.bbclass: make do_fetch depends on PREMIRRORS MIRRORS

[Changqing Li]

On 4/16/24 15:30, Alexander Kanavin wrote:

CAUTION: This email comes from a non Wind River email account!
Do not click links or open attachments unless you recognize the sender and know 
the content is safe.

I'm not sure why files in DL_DIR would symlink to the local
(pre)mirrors instead of making an independent copy? Mirrors can indeed
move or disappear altogether.

Can you look into where the symlinking happens, and whether that can
be modified or configured differently (maybe also the git history for
that code)?


Current code is here: 
https://git.openembedded.org/bitbake/tree/lib/bb/fetch2/__init__.py#n1096


It is created during handle the (pre)mirrors in do_fetch.  And the 
history long time ago:


https://git.openembedded.org/bitbake/commit/?id=83f9445081595630488a5d3e170d282a13836c98

About if we can change to independent copy, I need to do more research, 
welcome to provide me some


background and notes.

Regards

Changqing



Alex

On Tue, 16 Apr 2024 at 03:48, Changqing Li via lists.openembedded.org
  wrote:


On 4/15/24 18:05, Richard Purdie wrote:

CAUTION: This email comes from a non Wind River email account!
Do not click links or open attachments unless you recognize the sender and know 
the content is safe.

On Mon, 2024-04-15 at 16:30 +0800, Changqing Li via lists.openembedded.org 
wrote:

From: Changqing Li

When there are tarballs in local mirrorfile://, do_fetch will
create symlink under DL_DIR, eg:
pseudo-prebuilt-2.33.tar.xz -> 
/project/path/to/localmirrorA/pseudo-prebuilt-2.33.tar.xz
after user update path from localmirrorA to localmirrorB, because
do_fetch don't depends on PREMIRRORS/MIRRORS, do_fetch will not
be rerun, so the symlink will not update to:
pseudo-prebuilt-2.33.tar.xz -> 
/project/path/to/localmirrorB/pseudo-prebuilt-2.33.tar.xz
then, do_upack will failed since the tarball cannot be found.

Signed-off-by: Changqing Li
---
   meta/classes-global/base.bbclass | 1 +
   1 file changed, 1 insertion(+)

diff --git a/meta/classes-global/base.bbclass b/meta/classes-global/base.bbclass
index 0999b42daa..5094a1540e 100644
--- a/meta/classes-global/base.bbclass
+++ b/meta/classes-global/base.bbclass
@@ -139,6 +139,7 @@ do_fetch[file-checksums] 
="${@bb.fetch.get_checksum_file_list(d)}"
   do_fetch[file-checksums] += " ${@get_lic_checksum_file_list(d)}"
   do_fetch[prefuncs] += "fetcher_hashes_dummyfunc"
   do_fetch[network] = "1"
+do_fetch[vardeps] += "PREMIRRORS MIRRORS"
   python base_do_fetch() {

   src_uri = (d.getVar('SRC_URI') or "").split()


Changing PREMIRRORS or MIRRORS should not change the output of the
task, ever, so do_fetch shouldn't depend upon them.

The failure case I met is like this:

I have a project with PREMIRRORS setting, and the tarballs are under it.

PREMIRRORS:append ="file:///project/path/to/localmirrorA"

after first bitbake pseudo-native, there will a symlink under DL_DIR:

pseudo-prebuilt-2.33.tar.xz ->
/project/path/to/localmirrorA/pseudo-prebuilt-2.33.tar.xz

Then, Since all the tarballs are moved to /project/path/to/localmirrorB

I changed PREMIRRORS:append ="file:///project/path/to/localmirrorB"

Then bitbake pseudo-native again,   do_fetch  will not rerun since no
signature change.

do_unpack rerun since one dependency  change, it will try to unpack
${DL_DIR}/pseudo-prebuilt-2.33.tar.xz,

but since do_fetch not rerun, ${DL_DIR}/pseudo-prebuilt-2.33.tar.xz
still point to localmirrorA, but localmirrorA not exist

since localmirrorB replace it.  Then will cause do_unpck failure:

NOTE: Unpacking /build/downloads/pseudo-prebuilt-2.33.tar.xz to
/build/tmp-glibc/work/x86_64-linux/pseudo-native/1.9.0+git xz:
/build/downloads/pseudo-prebuilt-2.33.tar.xz: No such file or directory

So this is why I want to add this depends,  and want to make do_fetch
rerun and resymlink to /project/path/to/localmirrorB

Regards

Changqing


Cheers,

Richard





-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#198460): 
https://lists.openembedded.org/g/openembedded-core/message/198460
Mute This Topic: https://lists.openembedded.org/mt/105532159/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [PATCH v2] ffmpeg: backport patches to use new Vulkan AV1 codec API

[Dmitry Baryshkov]

Backport two patches from ffmpeg git to fix compilation with the newest
Vulkan API.

Signed-off-by: Dmitry Baryshkov 
---
 .../ffmpeg/ffmpeg/av1_ordering_info.patch |   91 ++
 .../ffmpeg/ffmpeg/vulkan_av1_stable_API.patch | 1382 +
 .../recipes-multimedia/ffmpeg/ffmpeg_6.1.1.bb |6 +-
 3 files changed, 1478 insertions(+), 1 deletion(-)
 create mode 100644 
meta/recipes-multimedia/ffmpeg/ffmpeg/av1_ordering_info.patch
 create mode 100644 
meta/recipes-multimedia/ffmpeg/ffmpeg/vulkan_av1_stable_API.patch

diff --git a/meta/recipes-multimedia/ffmpeg/ffmpeg/av1_ordering_info.patch 
b/meta/recipes-multimedia/ffmpeg/ffmpeg/av1_ordering_info.patch
new file mode 100644
index ..bfc894563cb2
--- /dev/null
+++ b/meta/recipes-multimedia/ffmpeg/ffmpeg/av1_ordering_info.patch
@@ -0,0 +1,91 @@
+From cafb4c554845332eeb33284cf6498049997dc67e Mon Sep 17 00:00:00 2001
+From: Mark Thompson 
+Date: Wed, 20 Mar 2024 20:35:28 +
+Subject: [PATCH] lavc/cbs_av1: Save more frame ordering information
+
+This is wanted by the Vulkan decoder.
+
+Signed-off-by: Dmitry Baryshkov 
+Upstream-Status: Backport 
[https://git.ffmpeg.org/gitweb/ffmpeg.git/commitdiff/ecdc94b97f809d5f2b88640842fd0541951ad295]
+---
+ libavcodec/cbs_av1.h |  5 +
+ libavcodec/cbs_av1_syntax_template.c | 25 +
+ 2 files changed, 26 insertions(+), 4 deletions(-)
+
+diff --git a/libavcodec/cbs_av1.h b/libavcodec/cbs_av1.h
+index a5402f069d..a027013bc7 100644
+--- a/libavcodec/cbs_av1.h
 b/libavcodec/cbs_av1.h
+@@ -427,6 +427,8 @@ typedef struct AV1ReferenceFrameState {
+ int bit_depth;  // RefBitDepth
+ int order_hint; // RefOrderHint
+ 
++int saved_order_hints[AV1_TOTAL_REFS_PER_FRAME]; // SavedOrderHints[ref]
++
+ int8_t  loop_filter_ref_deltas[AV1_TOTAL_REFS_PER_FRAME];
+ int8_t  loop_filter_mode_deltas[2];
+ uint8_t feature_enabled[AV1_MAX_SEGMENTS][AV1_SEG_LVL_MAX];
+@@ -464,6 +466,9 @@ typedef struct CodedBitstreamAV1Context {
+ int tile_rows;
+ int tile_num;
+ 
++int order_hints[AV1_TOTAL_REFS_PER_FRAME]; // OrderHints
++int ref_frame_sign_bias[AV1_TOTAL_REFS_PER_FRAME]; // RefFrameSignBias
++
+ AV1ReferenceFrameState ref[AV1_NUM_REF_FRAMES];
+ 
+ // AVOptions
+diff --git a/libavcodec/cbs_av1_syntax_template.c 
b/libavcodec/cbs_av1_syntax_template.c
+index 3be1f2d30f..2979c5d98f 100644
+--- a/libavcodec/cbs_av1_syntax_template.c
 b/libavcodec/cbs_av1_syntax_template.c
+@@ -1414,6 +1414,8 @@ static int 
FUNC(uncompressed_header)(CodedBitstreamContext *ctx, RWContext *rw,
+ priv->ref[i].valid = 0;
+ priv->ref[i].order_hint = 0;
+ }
++for (i = 0; i < AV1_REFS_PER_FRAME; i++)
++priv->order_hints[i + AV1_REF_FRAME_LAST] = 0;
+ }
+ 
+ flag(disable_cdf_update);
+@@ -1568,11 +1570,20 @@ static int 
FUNC(uncompressed_header)(CodedBitstreamContext *ctx, RWContext *rw,
+ else
+ flag(use_ref_frame_mvs);
+ 
+-infer(allow_intrabc, 0);
+-}
++for (i = 0; i < AV1_REFS_PER_FRAME; i++) {
++int ref_frame = AV1_REF_FRAME_LAST + i;
++int hint = priv->ref[current->ref_frame_idx[i]].order_hint;
++priv->order_hints[ref_frame] = hint;
++if (!seq->enable_order_hint) {
++priv->ref_frame_sign_bias[ref_frame] = 0;
++} else {
++priv->ref_frame_sign_bias[ref_frame] =
++cbs_av1_get_relative_dist(seq, hint,
++  current->order_hint) > 0;
++}
++}
+ 
+-if (!frame_is_intra) {
+-// Derive reference frame sign biases.
++infer(allow_intrabc, 0);
+ }
+ 
+ if (seq->reduced_still_picture_header || current->disable_cdf_update)
+@@ -1674,6 +1685,12 @@ update_refs:
+ .bit_depth  = priv->bit_depth,
+ .order_hint = priv->order_hint,
+ };
++
++for (int j = 0; j < AV1_REFS_PER_FRAME; j++) {
++priv->ref[i].saved_order_hints[j + AV1_REF_FRAME_LAST] =
++priv->order_hints[j + AV1_REF_FRAME_LAST];
++}
++
+ memcpy(priv->ref[i].loop_filter_ref_deltas, 
current->loop_filter_ref_deltas,
+sizeof(current->loop_filter_ref_deltas));
+ memcpy(priv->ref[i].loop_filter_mode_deltas, 
current->loop_filter_mode_deltas,
+-- 
+2.25.1
+
diff --git a/meta/recipes-multimedia/ffmpeg/ffmpeg/vulkan_av1_stable_API.patch 
b/meta/recipes-multimedia/ffmpeg/ffmpeg/vulkan_av1_stable_API.patch
new file mode 100644
index ..74db148b3b32
--- /dev/null
+++ b/meta/recipes-multimedia/ffmpeg/ffmpeg/vulkan_av1_stable_API.patch
@@ -0,0 +1,1382 @@
+From ecdc94b97f809d5f2b88640842fd0541951ad295 Mon Sep 17 00:00:00 2001
+From: Lynne 
+Date: Fri, 19 Jan 2024 10:49:02 +1000
+Subject: [PATCH] vulkan_av1: port to the new stable API
+