Then we’ll consider options, such as moving variable bits out of .inc or
introducing a variable that strips last number from PV. I would want to
avoid recipes fetching from dangling branch-less commits in core. The
commit being on a branch is a QA check by the fetcher.
Alex
On Sat 15. Jul 2023
From: Martin Jansa
* ${IMAGE_NAME}${IMAGE_NAME_SUFFIX} is almost always used together already
and when they aren't it's usually because of hardcoded '.rootfs' suffix
* it's a bit strange, because ${IMAGE_NAME_SUFFIX} is applied after the
version from ${IMAGE_VERSION_SUFFIX}, if we move it
From: Martin Jansa
* this still assumes that IMAGE_LINK_NAME will contain IMAGE_BASENAME
which will be BPN 'multiconfig-image-packager' and that replacing
it with 'core-image-minimal' will match with the actual IMAGE_LINK_NAME
from core-image-minimal recipe - there is no good way to query
From: Thomas Roos
The intent behind these functions was to dump the system state when issues
occured
but it has never really worked as we'd planned. Regular monitoring as the build
runs has largely replaced this as that allows a trend to be seen rather than a
spot
value which was never really
From: Jose Quaresma
The modules-load.d [1] - Configure kernel modules to load at boot
should install their configuration files in /usr/lib/modules-load.d.
The modprobe.d [2] - Configuration directory for modprobe
should install their configuration files in /lib/modprobe.d
[1]
From: Jose Quaresma
Signed-off-by: Jose Quaresma
Signed-off-by: Richard Purdie
(cherry picked from commit fc9c9471952042395bb405e7f6cf507bb2b72f31)
Signed-off-by: Steve Sakoman
---
.../kernel-module-split.bbclass | 23 ---
1 file changed, 10 insertions(+), 13
From: Jose Quaresma
Instaed of allways create the directories and removing it at the if they are
not used, we can just do it when there are modules configuration to be created.
So the best thing to do is install the directories only when necessary.
Signed-off-by: Jose Quaresma
Signed-off-by:
From: Jose Quaresma
Signed-off-by: Jose Quaresma
Signed-off-by: Richard Purdie
(cherry picked from commit 38dc75c0e5eb7427ffcf201113fb45e0d5dad453)
Signed-off-by: Steve Sakoman
---
meta/classes-recipe/kernel.bbclass | 2 --
1 file changed, 2 deletions(-)
diff --git
From: Yoann Congal
native and nativesdk classes are special and must be inherited last :
put them at the end of the gathered classes to inherit.
Signed-off-by: Yoann Congal
Signed-off-by: Richard Purdie
(cherry picked from commit a6614fd800cbe791264aeb102d379ba79bd145c2)
Signed-off-by: Steve
From: Yi Zhao
There are four directories in which scripts can be placed which will
always be run for any interface during certain phases of ifup and ifdown
commands:
/etc/network/if-pre-up.d/
/etc/network/if-up.d/
/etc/network/if-down.d/
/etc/network/if-post-down.d/
Even if there are no scripts
From: Etienne Cordonnier
2 issues:
- the .so extension is hard-coded, and therefore the libxcryt package compiled
with
meta-darwin is empty, because the dylib files are not contained in FILES_${PN}
- nothing actually produces a file libcrypt-*.so (the symlink file is
libcrypt.so, without
From: Alexander Kanavin
This needs to be done for any item that is linked under rustc,
and not just rust itself. Latest python-cryptography exposes the issue.
Signed-off-by: Alexander Kanavin
Signed-off-by: Alexandre Belloni
Signed-off-by: Richard Purdie
(cherry picked from commit
From: Alexander Kanavin
cargo_do_compile runs only if the recipe is built using cargo
as the top level tool. Some recipes hide usage of cargo inside setuptools
(or autoconf) and use do_compile definitions specific to those,
and so the environment isn't properly set up.
This was exposed by
From: Alejandro Hernandez Samaniego
There was a race condition during the Makefile execution in
between the assemble and compile targets, only the assemble
target had a dependency on creating the build directory.
If the compile target was executed first, an error was thrown
by bitbake since the
From: Tom Hochstein
For the x11 backend package config, drop the redundant dependencies
libxcb and cairo. The former is listed twice in the package config,
while the latter is also listed globally.
For the xwayland package config, add the missing dependencies libxcb
and libxcursor. These
From: Alexander Kanavin
Upstream no longer provides tarballs for newer versions.
Signed-off-by: Alexander Kanavin
Signed-off-by: Alexandre Belloni
Signed-off-by: Richard Purdie
(cherry picked from commit e971f27cb4ad78b4df3c3bca2948f3cb60d0d5cf)
Signed-off-by: Steve Sakoman
---
From: Wang Mingyu
Changelog:
===
* Fix: segmentation fault on filter interpretation in "switch" mode
* Fix: `ip` context is expressed as a base-10 field
* Fix: c99: use __asm__ __volatile__
* Fix: c99: static assert: clang build fails due to multiple typedef
* Fix: Reevaluate
From: Wang Mingyu
Changelog:
==
InitExt.c: Add bounds checks for extension request, event, & error codes
Fixes CVE-2023-3138
Signed-off-by: Wang Mingyu
Signed-off-by: Richard Purdie
(cherry picked from commit 49b74259b196454d22fcca8b8ecc1c0d41487285)
Signed-off-by: Steve Sakoman
---
From: Wang Mingyu
Changelog:
Correctly detect CMS write errors.
Signed-off-by: Wang Mingyu
Signed-off-by: Richard Purdie
(cherry picked from commit 0296cf63007542c1cb209a4288be1c82aa2ba843)
Signed-off-by: Steve Sakoman
---
.../libksba/{libksba_1.6.3.bb => libksba_1.6.4.bb} | 2
From: Wang Mingyu
Changelog:
===
* Fix logging of confidential data. [rA0fc31770fa]
* Fix memory wiping. [T5977]
* Fix macOS build problem. [T5440,T5610]
* Upgrade autoconf stuff.
Signed-off-by: Wang Mingyu
Signed-off-by: Richard Purdie
(cherry picked from commit
From: Wang Mingyu
Bugfixes:
==
- Security fixes for flacparse, dvdspu, and subparse
- d3d11videosink: Fix error on pause and play
- decklink: Correctly handle SDK strings on macOS and free strings
after usage on Linux
- filesink: Fix buffered mode writing of buffer lists and
From: Alexander Kanavin
* Noteworthy changes in release 3.10 (2023-05-21) [stable]
** Bug fixes
cmp/diff can again work with file dates past Y2K38
[bug introduced in 3.9]
diff -D no longer fails to output #ifndef lines.
[bug#61193 introduced in 3.9]
Remove the comment addition from
From: Wang Mingyu
Changelog:
===
* docs/VERSION.TXT: Add entry for version 2.13.1.
* docs/CHANGES: Updated.
* docs/release, docs/README, builds/macs/README: Updated.
* README, src/base/ftver.rc, builds/windows/vc2010/index.html,
builds/windows/visualc/index.html,
From: Changqing Li
* CVE-2023-33551.patch is for fix CVE-2023-33551.
* CVE-2023-33552-3.patch is upstream patch for fix CVE-2023-33552, since
the patch context is changed, CVE-2023-33552-1.patch and
CVE-2023-33552-2.patch is backported.
Signed-off-by: Changqing Li
Signed-off-by: Steve
From: Yogita Urade
Dmidecode before 3.5 allows -dump-bin to overwrite a local file.
This has security relevance because, for example, execution of
Dmidecode via Sudo is plausible.
References:
https://nvd.nist.gov/vuln/detail/CVE-2023-30630
From: Joe Slater
Combine two commits from git.ghostscript.com/ghostpdl.
The first incompletely addresses the CVE. The second
addresses defects in the first.
Signed-off-by: Joe Slater
Signed-off-by: Steve Sakoman
---
.../ghostscript/cve-2023-36664.patch | 165 ++
From: Chee Yang Lee
Signed-off-by: Chee Yang Lee
Signed-off-by: Steve Sakoman
---
.../python3-requests/CVE-2023-32681.patch | 61 +++
.../python/python3-requests_2.28.2.bb | 2 +
2 files changed, 63 insertions(+)
create mode 100644
Please review this set of changes for mickledore and have comments back by
end of day Tuesday.
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/5600
The following changes since commit 64784e90c5ff559f4da6faadb970cc7aff549592:
On Fri, Jul 14, 2023 at 07:53:03PM +0200, Alexander Kanavin wrote:
> It's not in master branch, but it is in a branch, so please do not use
> nobranch, and just adjust the branch parameter together with the
> version update:
>
From: Fabio Estevam
Upgrade to U-Boot 2023.07.02.
The U-Boot 2023.07.02 tag is not in the master branch, so switch the branch
from master to u-boot-2023.07.y.
Signed-off-by: Fabio Estevam
---
Changes since v1:
- Do not use nobranch and squash the two changes (Alexander).
It's not in master branch, but it is in a branch, so please do not use
nobranch, and just adjust the branch parameter together with the
version update:
https://source.denx.de/u-boot/u-boot/-/commit/83cdab8b2c6ea0fc0860f8444d083353b47f1d5c
Alex
On Fri, 14 Jul 2023 at 18:18, Fabio Estevam wrote:
non-release indexes will continue to generate when test output is
corrupted.
Signed-off-by: Michael Halstead
---
scripts/lib/resulttool/resultutils.py | 6 +-
1 file changed, 5 insertions(+), 1 deletion(-)
diff --git a/scripts/lib/resulttool/resultutils.py
May as well hold off on this. The current version of ptest-runner is
completely incompatible with how oe-selftest parses ptest output, and
it appears it has been that way for some time (at least since the
change was made to stop buffering the output in the pipe).
On Fri, Jul 14, 2023 at 10:32 AM
Pull in the commit "runner: Correctly handle running parallel tests".
Signed-off-by: Richard Purdie
---
meta/recipes-support/ptest-runner/ptest-runner_2.4.2.bb | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/meta/recipes-support/ptest-runner/ptest-runner_2.4.2.bb
I am not able to apply this patch, something is broken in the formatting.
Please see below link for info on creating and submitting a patch:
https://www.openembedded.org/wiki/How_to_submit_a_patch_to_OpenEmbedded
Steve
On Thu, Jul 13, 2023 at 6:28 PM Heiko wrote:
>
> From
From: Fabio Estevam
Upgrade to U-Boot 2023.07.02.
Signed-off-by: Fabio Estevam
---
meta/recipes-bsp/u-boot/u-boot-common.inc | 2 +-
.../{u-boot-tools_2023.07.bb => u-boot-tools_2023.07.02.bb} | 0
.../u-boot/{u-boot_2023.07.bb => u-boot_2023.07.02.bb} | 0
From: Marek Vasut
U-Boot 2023.07.y tags are not in the master branch, switch to nobranch=1
to be able to pull arbitrary commit from arbitrary branch.
Signed-off-by: Marek Vasut
Signed-off-by: Fabio Estevam
---
meta/recipes-bsp/u-boot/u-boot-common.inc | 2 +-
1 file changed, 1 insertion(+),
This is being handled with a stable branch version bump which is in
the current test queue: "libx11: upgrade 1.8.5 -> 1.8.6"
Steve
On Fri, Jul 14, 2023 at 5:05 AM Kai Kang wrote:
>
> From: Kai Kang
>
> CVE: CVE-2023-3138
>
> Backport patch to fix CVE-2023-3138 for libx11.
>
> Signed-off-by:
This is a major version update which adds features and APIs, so I
can't take this.
Steve
On Thu, Jul 13, 2023 at 9:15 PM Kai Kang wrote:
>
> From: Alexander Kanavin
>
> Drop backports.
>
> Add extra options that require additional dependencies, and fail without them.
>
> Disable the recipe on
From: Kai Kang
CVE: CVE-2023-3138
Backport patch to fix CVE-2023-3138 for libx11.
Signed-off-by: Kai Kang
---
.../xorg-lib/libx11/CVE-2023-3138.patch | 113 ++
.../recipes-graphics/xorg-lib/libx11_1.8.5.bb | 4 +-
2 files changed, 116 insertions(+), 1 deletion(-)
From: Ross Burton
This CVE shouldn't have been filed as the "exploit" is described in the
documentation as how the library behaves.
Signed-off-by: Ross Burton
---
meta/recipes-devtools/python/python3_3.11.4.bb | 2 ++
1 file changed, 2 insertions(+)
diff --git
From: Ross Burton
These CVEs have all been fixed in 6.1 point releases.
Signed-off-by: Ross Burton
---
.../recipes-kernel/linux/cve-exclusion_6.1.inc | 18 ++
1 file changed, 18 insertions(+)
diff --git a/meta/recipes-kernel/linux/cve-exclusion_6.1.inc
Fix startup warning:
udevd[171]: specified group 'sgx' unknown
This mirrors the change in bab455cd9b1b ("systemd: add group sgx to udev
package") for systemd-udev.
Signed-off-by: Alex Kiernan
---
meta/recipes-core/udev/eudev_3.2.12.bb | 5 -
1 file changed, 4 insertions(+), 1
From: Vijay Anusuri
import patch from ubuntu to fix
CVE-2023-0330
Upstream-Status: Backport [import from ubuntu
https://git.launchpad.net/ubuntu/+source/qemu/tree/debian/patches?h=ubuntu/focal-security
Upstream commit
2023. 07. 14. 15:23 keltezéssel, Ross Burton írta:
On 14 Jul 2023, at 13:53, Zoltan Boszormenyi via lists.openembedded.org
wrote:
It would be nice if Yocto's rpm recipe added the possible
buildarchtranslate lines for BSP target archs automatically.
As you’re in the perfect position to test
Hello!
(sorry, previously posted as the reply to wrong message)
starting from 2aa82324d43467e7c8bfbbb59570ee3306264b75 commit (dunfell
and probably other branches)
https://git.openembedded.org/openembedded-core/commit/?h=dunfell=2aa82324d43467e7c8bfbbb59570ee3306264b75
the
Upgrade to latest 1.20.x release [1]:
$ git log --oneline go1.20.5..go1.20.6 origin/release-branch.go1.20
2c358ffe97 (tag: go1.20.6, origin/release-branch.go1.20)
[release-branch.go1.20] go1.20.6
312920c00a [release-branch.go1.20] net/http: validate Host header before sending
4db13d762b
On 14 Jul 2023, at 13:53, Zoltan Boszormenyi via lists.openembedded.org
wrote:
> It would be nice if Yocto's rpm recipe added the possible
> buildarchtranslate lines for BSP target archs automatically.
As you’re in the perfect position to test this, would you be willing to come up
with a
Hello!
starting from 2aa82324d43467e7c8bfbbb59570ee3306264b75 commit (dunfell
and probably other branches)
https://git.openembedded.org/openembedded-core/commit/?h=dunfell=2aa82324d43467e7c8bfbbb59570ee3306264b75
the
SYSTEMD_SERVICE:${PN} = "php-fpm@9000.service"
syntax in the recipe
Hi,
I have to create a Yocto based system with a lot of developer
tools and SDK including rpmbuild. This is because a third party
developer is comfortable with building stuff on hardware but
not with cross-compiling and creating Bitbake recipes.
Anyway, with the image created and installed, I
From: Enrico Scholz
Recipe references 'login.defs' in LIC_FILES_CHKSUM. This causes some
problems:
- file does not contain a single word which is related with its license
- changing this file (here: increasing SYS_UID_MIN) invalidates
LIC_FILES_CHKSUM
Add 'SPDX-License-Identifier' to the
From: Enrico Scholz
Recipe references 'login.defs' in LIC_FILES_CHKSUM. This causes some
problems:
- file does not contain a single word which is related with its license
- changing this file (here: increasing SYS_UID_MIN) invalidates
LIC_FILES_CHKSUM
Add 'SPDX-License-Identifier' to the
OK so, does any one have any thoughts regarding this patchset?
Od: Alex Stewart
Wysłane: czwartek, 13 lipca 2023 00:04
Do: Piotr Łobacz ;
openembedded-core@lists.openembedded.org
Temat: Re: [OE-Core][PATCH v5 1/5] bitbake.conf: add acl and xattr distro
native
After this change in qemu:
https://gitlab.com/qemu-project/qemu/-/commit/c7e89de13224c1e6409152602ac760ac91f606b4
there is no 'max' cpu model on ppc. Drop it to clean up ppc gcc testsuite
failures.
Signed-off-by: Richard Purdie
---
meta/recipes-devtools/gcc/gcc-testsuite.inc | 2 +-
1 file
From: Alexander Kanavin
Drop backports.
Add extra options that require additional dependencies, and fail without them.
Disable the recipe on ancient x86 without SSE support; SSE is now
required.
(From OE-Core rev: fdc50a50d8f2c4975584c04db0c5e0e83cf62f99)
Signed-off-by: Alexander Kanavin
From: Kai Kang
Hi,
I've discussed with webkitgtk maintainers about api compatable issues on
https://lists.webkit.org/pipermail/webkit-gtk/2023-March/003887.html
> WebKitGTK 2.38.x is backwards compatible with 2.36.x, you can safely update
without needing to change applications. In general,
56 matches
Mail list logo
