On Fri, Apr 19, 2024 at 2:16 PM Rasmus Villemoes via lists.openembedded.org
wrote:
> On 19/04/2024 23.00, Alexander Kanavin wrote:
> > This was already proposed, and rejected.
> > https://lists.openembedded.org/g/openembedded-core/topic/104753355
> >
> > You need to fix the metadata that refers
On 19/04/2024 23.00, Alexander Kanavin wrote:
> This was already proposed, and rejected.
> https://lists.openembedded.org/g/openembedded-core/topic/104753355
>
> You need to fix the metadata that refers to the old name.
So, how can a layer then be compatible with both nanbield and scarthgap?
This was already proposed, and rejected.
https://lists.openembedded.org/g/openembedded-core/topic/104753355
You need to fix the metadata that refers to the old name.
Alex
On Fri, 19 Apr 2024 at 22:31, Rasmus Villemoes via
lists.openembedded.org
wrote:
>
> From: Rasmus Villemoes
>
> This is
On Fri, Apr 19, 2024 at 11:28 AM Jose Quaresma
wrote:
>
>
> Khem Raj escreveu (sexta, 19/04/2024 à(s) 19:17):
>
>> On Fri, Apr 19, 2024 at 10:53 AM Jose Quaresma via
>> lists.openembedded.org
>> wrote:
>> >
>> > This will make possible to restore the default dynamic linking globally
>> > which
From: Rasmus Villemoes
This is very often a build dependency, such as in my case using a
class from meta-ptx, which fails with
ERROR: Nothing PROVIDES 'bmap-tools-native'. Close matches:
bmaptool-native
bpftool-native
mtools-native
due to the renaming.
Signed-off-by: Rasmus Villemoes
Khem Raj escreveu (sexta, 19/04/2024 à(s) 19:17):
> On Fri, Apr 19, 2024 at 10:53 AM Jose Quaresma via
> lists.openembedded.org
> wrote:
> >
> > This will make possible to restore the default dynamic linking globally
> > which is what we had before the 1.20.X release.
> >
>
> Looks good
On Fri, Apr 19, 2024 at 10:53 AM Jose Quaresma via
lists.openembedded.org
wrote:
>
> This will make possible to restore the default dynamic linking globally
> which is what we had before the 1.20.X release.
>
Looks good overall. how do we support the static linking if user wanted ?
>
This reverts commit 827c60b79e7fcafd14e68870f6b69dcc48ac9c39.
Fixed with the drop of the linkmode
Signed-off-by: Jose Quaresma
---
meta/classes-recipe/goarch.bbclass | 14 +++---
1 file changed, 7 insertions(+), 7 deletions(-)
diff --git a/meta/classes-recipe/goarch.bbclass
This will make possible to restore the default dynamic linking globally
which is what we had before the 1.20.X release.
Signed-off-by: Jose Quaresma
---
meta/classes-recipe/go.bbclass | 2 --
meta/recipes-devtools/go/go-runtime.inc | 2 +-
2 files changed, 1 insertion(+), 3
Identical patch was already submitted and then requested to be ignored because
the issue is apparently introduced by one of the added patches.
https://lists.openembedded.org/g/openembedded-core/message/197670
Since the vulnerability report claims that our version IS vulnerable, it would
be
> On 19 Apr 2024, at 17:38, Ross Burton wrote:
>
> On 19 Apr 2024, at 13:19, Alexander Kanavin via lists.openembedded.org
> wrote:
>>
>> This was added here:
>> https://git.yoctoproject.org/poky/commit/?id=2f42ef8d8fb1febf28252b98884cebabc931f720
>>
>> It's undocumented, untested,
On 19 Apr 2024, at 13:19, Alexander Kanavin via lists.openembedded.org
wrote:
>
> This was added here:
> https://git.yoctoproject.org/poky/commit/?id=2f42ef8d8fb1febf28252b98884cebabc931f720
>
> It's undocumented, untested, rpm-specific, and currently
> broken, and to begin with looks like a
Hi Soumya,
I've already sent patch for the Kirkstone branch.
https://lists.openembedded.org/g/openembedded-core/message/198495
Thanks & Regards,
Vijay
On Fri, Apr 19, 2024 at 6:52 PM Soumya via lists.openembedded.org
wrote:
> From: Soumya Sambu
>
> An attacker may cause an HTTP/2 endpoint
On Wed, Apr 17, 2024 at 12:56 PM John Ripple via lists.openembedded.org
wrote:
> This patch adds a missing "%s" format in a logger.error call. Without
> this addition the logger itself would error out and not print a useful
> message.
>
> Signed-off-by: John Ripple
> ---
>
From: Archana Polampalli
A flaw has been discovered in GnuTLS where an application crash can be induced
when attempting to verify a specially crafted .pem bundle using the
"certtool --verify-chain" command.
Signed-off-by: Archana Polampalli
---
.../gnutls/gnutls/CVE-2024-28835.patch|
From: Archana Polampalli
A flaw was found in GnuTLS. The Minerva attack is a cryptographic vulnerability
that exploits deterministic behavior in systems like GnuTLS, leading to
side-channel leaks. In specific scenarios, such as when using the
GNUTLS_PRIVKEY_FLAG_REPRODUCIBLE flag, it can result
From: Soumya Sambu
wall in util-linux through 2.40, often installed with setgid
tty permissions, allows escape sequences to be sent to other
users' terminals through argv. (Specifically, escape sequences
received from stdin are blocked, but escape sequences received
from argv are not blocked.)
From: Soumya Sambu
An attacker may cause an HTTP/2 endpoint to read arbitrary amounts of
header data by sending an excessive number of CONTINUATION frames.
Maintaining HPACK state requires parsing and processing all HEADERS
and CONTINUATION frames on a connection. When a request's headers
exceed
Hi,
>> ${COREBASE}/scripts contains a "git" wrapper disabling fakeroot/pseudo.
>> This patch allows CMake to find ${COREBASE}/scripts/git instead of
>> ${HOSTTOOLS_DIR}/git. This is needed for git invocations during do_install,
>> since do_install is a fakeroot task, and otherwise all git
The patch is reworked to take musl-specific path only if the functions are
undefined by libc (which can be checked via __RES, as explained in
https://www.openwall.com/lists/musl/2020/10/23/16 ).
This should make it more suitable for upstream submission.
Signed-off-by: Alexander Kanavin
---
Signed-off-by: Alexander Kanavin
---
.../0002-resolve-musl-does-not-implement-res_ninit.patch| 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git
a/meta/recipes-connectivity/connman/connman/0002-resolve-musl-does-not-implement-res_ninit.patch
Signed-off-by: Alexander Kanavin
---
meta/recipes-extended/bash/bash/build-tests.patch | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/meta/recipes-extended/bash/bash/build-tests.patch
b/meta/recipes-extended/bash/bash/build-tests.patch
index ea38bace9b7..c1b9b8261f0 100644
Signed-off-by: Alexander Kanavin
---
.../Allow-xinput_calibrator_pointercal.sh-to-be-run-as-n.patch | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git
a/meta/recipes-graphics/xinput-calibrator/xinput-calibrator/Allow-xinput_calibrator_pointercal.sh-to-be-run-as-n.patch
Signed-off-by: Alexander Kanavin
---
meta/recipes-kernel/libtraceevent/libtraceevent/meson.patch | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/meta/recipes-kernel/libtraceevent/libtraceevent/meson.patch
b/meta/recipes-kernel/libtraceevent/libtraceevent/meson.patch
index
At some point this became unnecessary, as tested by building apr
with DISTRO_FEATURES:append = " ld-is-gold"
The logs do confirm that (previously) problematic binary links without errors.
Signed-off-by: Alexander Kanavin
---
...libapr-against-phtread-to-make-gold-.patch | 50
At some point this patch became unnecessary as the respective qt5 plugin is
building without issues
without it (checked on qemuarm/qemuarm64).
Signed-off-by: Alexander Kanavin
---
...t-gstqtgl.h-instead-of-gst-gl-gstglf.patch | 54 ---
.../gstreamer1.0-plugins-good_1.22.11.bb
This is as well inactive for over 10 years, and has been superseded by ffmpeg
long time ago.
Signed-off-by: Alexander Kanavin
---
meta/conf/distro/include/maintainers.inc | 1 -
.../gstreamer1.0-plugins-ugly_1.22.11.bb | 1 -
...-1206-from-upstream-to-fix-PIE-build.patch | 156
Signed-off-by: Alexander Kanavin
---
meta/recipes-support/icu/icu/fix-install-manx.patch | 4 +++-
1 file changed, 3 insertions(+), 1 deletion(-)
diff --git a/meta/recipes-support/icu/icu/fix-install-manx.patch
b/meta/recipes-support/icu/icu/fix-install-manx.patch
index
The option was introduced in:
https://git.yoctoproject.org/poky/commit/?h=master=427472e980cd6254a5e4ef37209b327e15af259b
for the purpose of a standalone udhcpc service.
18 months later the service was removed as it was clashing with the
broader networking service, and the option isn't used
Signed-off-by: Alexander Kanavin
---
.../apr/0001-Add-option-to-disable-timed-dependant-tests.patch | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git
a/meta/recipes-support/apr/apr/0001-Add-option-to-disable-timed-dependant-tests.patch
Signed-off-by: Alexander Kanavin
---
...1-libbb-sockaddr2str-ensure-only-printable-characters-.patch | 2 +-
...2-nslookup-sanitize-all-printed-strings-with-printable.patch | 2 +-
2 files changed, 2 insertions(+), 2 deletions(-)
diff --git
Rather, adjust the sed invocation to do the correct thing directly.
Signed-off-by: Alexander Kanavin
---
...1-kea-fix-reproducible-build-failure.patch | 62 ---
meta/recipes-connectivity/kea/kea_2.4.1.bb| 3 +-
2 files changed, 1 insertion(+), 64 deletions(-)
delete mode
There's every indication that this is an ex-expect:
last release in 2018, stale tickets, cvs server gone.
Signed-off-by: Alexander Kanavin
---
.../expect/expect/0001-Resolve-string-formatting-issues.patch | 2 +-
meta/recipes-devtools/expect/expect/0001-configure.in.patch | 2 +-
Signed-off-by: Alexander Kanavin
---
meta/recipes-devtools/swig/swig.inc | 67 ---
meta/recipes-devtools/swig/swig_4.2.1.bb | 69 +++-
2 files changed, 67 insertions(+), 69 deletions(-)
delete mode 100644 meta/recipes-devtools/swig/swig.inc
diff
Drop patches:
0001-Use-proc-self-exe-for-swig-swiglib-on-non-Win32-plat.patch
(superseded long time ago by native wrapper)
0001-configure-use-pkg-config-for-pcre-detection.patch
(autotools-specific)
Drop all autoconf options and native python dependency as cmake configuration
doesn't contain
What the patch does is not suitable, as upstream would surely
want the issue with the code fixed, not removal of that code altogether.
I'd also note that serf is still semi-ummaintained, and the only consumer
of it is subversion, which is slowly but steadily fading away in favor of
git and
This was added here:
https://git.yoctoproject.org/poky/commit/?id=2f42ef8d8fb1febf28252b98884cebabc931f720
It's undocumented, untested, rpm-specific, and currently
broken, and to begin with looks like a workaround for
Tizen/smack security label conflicts elsewhere.
Signed-off-by: Alexander
The component has been superseded by ffmpeg long ago, tarballs have
disappeared from sourceforge, no work on it has happened in over 10 years.
Signed-off-by: Alexander Kanavin
---
meta/conf/distro/include/distro_alias.inc | 1 -
meta/conf/distro/include/maintainers.inc | 1 -
Backport the upstream fix for CVE-2023-48795.
(From OE-Core rev: 314fa19c5e07fa632ff0434a6adbb97de1319a02)
Signed-off-by: Ross Burton
Signed-off-by: Richard Purdie
(cherry picked from commit 3adac25f899054b7d1d8c14458a1a4cd310abbd7)
Signed-off-by: Bhabu Bindu
---
39 matches
Mail list logo