[OE-core] [PATCH] mc: unify curses initialization

Since ncurses upgraded to 6.0+20170715, it compile failed ... | ../../../mc-4.8.19/lib/tty/tty-ncurses.c:199:13: error: dereferencing pointer to incomplete type 'TERMINAL {aka struct term}' | cur_term->Nttyb.c_cc[VINTR] = CTRL ('g'); /* ^g */ | ^~ ... Backport a patch from

[OE-core] [PATCH] xserver-xorg: Fix CVE-2017-10971

From: Jackie Huang Backport 3 patches to fix CVE-2017-10971: In the X.Org X server before 2017-06-19, a user authenticated to an X Session could crash or execute code in the context of the X Server by exploiting a stack overflow in the endianness conversion of X

Re: [OE-core] [PATCH] gpg_sign: perform rpm signing serially

Hi, I quickly run some tests on a Xeon server, using glibc-locale as the recipe to build. 100: 154s 10: 162s (+5%) 1: 234s (+51%) Even if signing is not parallel, the difference may be explained by the number of rpm processes that get spawned. I would drop the factor to 10 or use

[OE-core] [PATCH 1/1] cairo: Fix CVE-2017-9814

Backport patch from the following link to fix CVE-2017-9814: https://bugs.freedesktop.org/show_bug.cgi?id=101547 Signed-off-by: Dengke Du --- .../cairo/cairo/0001-cairo-Fix-CVE-2017-9814.patch | 45 ++

[OE-core] [PATCH 0/1] cairo: Fix CVE-2017-9814

The following changes since commit 55bf88603927469de9aa9f6fd4d449230d2e61e3: poky: Add nios2 to list of qemu targets (2017-08-17 00:21:35 +0100) are available in the git repository at: https://github.com/DengkeDu/openembedded-core.git dengke/fix-CVE-2017-9814

Re: [OE-core] [PATCH 2/3] mesa: Enable gallium-llvm on x86 and x86_64

On Wed, Aug 16, 2017 at 1:09 AM, Richard Purdie wrote: > On Sun, 2017-08-13 at 20:24 -0700, Khem Raj wrote: >> Signed-off-by: Khem Raj >> --- >> meta/recipes-graphics/cairo/cairo.inc | 3 ++- >> meta/recipes-graphics/mesa/mesa.inc | 3

Re: [OE-core] [PATCH] pango: 1.40.6 -> 1.40.10

On 17 August 2017 at 08:50, Huang Qiyu wrote: > 1) Upgrade pango from 1.40.6 to 1.40.10. > 2) Modify 0001-Enforce-recreation-of-docs-pango.types-it-is-build-c.patch > for pango 1.40.10. > I admit I didn't understand the patch even before this but especially now that

[OE-core] [PATCH 3/3] libsndfile1: Fix CVE-2017-8363

From: Jackie Huang Backport the patch to fix CVE-2017-8363: The flac_buffer_copy function in flac.c in libsndfile 1.0.28 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted audio file. Reference:

[OE-core] [PATCH 1/3] libsndfile1: Fix CVE-2017-8361 and CVE-2017-8365

From: Jackie Huang Backport the patch to fix two CVEs: CVE-2017-8361: The flac_buffer_copy function in flac.c in libsndfile 1.0.28 allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact

[OE-core] [PATCH 0/3] libsndfile1: Fix several CVE issues

From: Jackie Huang -- The following changes since commit 55bf88603927469de9aa9f6fd4d449230d2e61e3: poky: Add nios2 to list of qemu targets (2017-08-17 00:21:35 +0100) are available in the git repository at: git://git.pokylinux.org/poky-contrib.git

[OE-core] [PATCH 2/3] libsndfile1: Fix CVE-2017-8362

From: Jackie Huang Backport the patch to fix CVE-2017-8362: The flac_buffer_copy function in flac.c in libsndfile 1.0.28 allows remote attackers to cause a denial of service (invalid read and application crash) via a crafted audio file. Reference:

Re: [OE-core] [PATCH 7/8] gpgme: 1.8.0 -> 1.9.0

On Wed, 2017-08-16 at 04:31 -0400, Hongxu Jia wrote: > Rebase patches: > - pkgconfig.patch -> 0001 > - python-lang-config.patch -> 0002 > - 0001-Correctly-install-python-modules.patch -> 0003 > - python-import.patch -> 0004 > - 0001-gpgme-config-skip-all-lib-or-usr-lib-directories-in-.patch -> >

Re: [OE-core] [PATCH v2] devtool/copy_buildsystem: adds meta-skeleton layer in the eSDK installation.

On Wed, 2017-08-16 at 18:36 -0700, juan.m.cruz.alca...@linux.intel.com wrote: > From: Juan M Cruz Alcaraz > > The eSDK installation requires the meta-skeleton layer. > The build system might use the meta-skeleton recipes as layout > to create custom recipes.

Re: [OE-core] [PATCH] mesa: update to 17.1.6

On Fri, Aug 11, 2017 at 3:08 PM, Andrea Galbusera wrote: > On Thu, Aug 10, 2017 at 11:37 AM, Andreas Müller > wrote: >> >> Optional installation of khrplatform.h was implemented upstream by a >> slightly >> different approach -> >>

[OE-core] [PATCH] wget: Security fix CVE-2017-6508

CVE-2017-6508: CRLF injection vulnerability in the url_parse function in url.c in Wget through 1.19.1 allows remote attackers to inject arbitrary HTTP headers via CRLF sequences in the host subcomponent of a URL. External References: https://nvd.nist.gov/vuln/detail/CVE-2017-6508 Patch from:

[OE-core] openssl10 unusable for many components

Does openssl10 work for anyone in real-world scenarios? I was trying to fix at least some of the failures reported in last bitbake world status: http://lists.openembedded.org/pipermail/openembedded-core/2017-August/140829.html But in most recipes if you update DEPENDS to use openssl10, it will

[OE-core] [PATCH 1/3] python: Restructure python packaging and replace it with autopackaging

The reason we have a manifest file for python is that our goal is to keep python-core as small as posible and add other python packages only when the user needs them, hence why we split upstream python into several packages. Although our manifest file has several issues: - Its unorganized and

Re: [OE-core] [PATCH] gpgme: remove local m4/python.m4

On Thu, 2017-08-17 at 04:35 -0400, Hongxu Jia wrote: > While multilib, the local m4/python.m4 incorrectly assigned > am_cv_python_pyexecdir and am_cv_python_pythondir which caused > the following error enabled: > ... > ERROR: gpgme-1.9.0-r0 do_package: QA Issue: gpgme: Files/directories > were

[OE-core] [PATCH] gpgme: remove local m4/python.m4

While multilib, the local m4/python.m4 incorrectly assigned am_cv_python_pyexecdir and am_cv_python_pythondir which caused the following error enabled: ... ERROR: gpgme-1.9.0-r0 do_package: QA Issue: gpgme: Files/directories were installed but not shipped in any package:

Re: [OE-core] [PATCH v2] devtool/copy_buildsystem: adds meta-skeleton layer in the eSDK installation.

On Thursday, 17 August 2017 7:36:14 PM NZST Richard Purdie wrote: > On Wed, 2017-08-16 at 18:36 -0700, juan.m.cruz.alca...@linux.intel.com > wrote: > > From: Juan M Cruz Alcaraz > > > > The eSDK installation requires the meta-skeleton layer. > > The build

[OE-core] [PATCH] dpkg: 1.18.10 -> 1.18.24

The 1.18.24 fixed CVE-2016-7948 Rebase patches: - noman.patch -> 0001 - remove-tar-no-timestamp.patch -> 0002 - arch_pm.patch -> 0003 - add_armeb_triplet_entry.patch -> 0004 - 0002-Adapt-to-linux-wrs-kernel-version-which-has-characte.patch -> 0005 -

[OE-core] [PATCH] valgrind: disable build for muslx32

From: sweeaun Disable build for muslx32.X32 isn't supported by valgrind at this moment. Signed-off-by: sweeaun --- meta/recipes-devtools/valgrind/valgrind_3.13.0.bb | 1 + 1 file changed, 1 insertion(+) diff --git

[OE-core] [PATCH] goarch: Disable build for muslx32

From: sweeaun Disable build for muslx32. Signed-off-by: sweeaun --- meta/classes/goarch.bbclass | 1 + 1 file changed, 1 insertion(+) diff --git a/meta/classes/goarch.bbclass b/meta/classes/goarch.bbclass index 57537fb..9cd38b8 100644 ---

Re: [OE-core] [PATCH 0/6 v2] Fix RPM4 regressions based on Pyro

On 08/16/2017 06:37 PM, Mark Hatle wrote: Are there any examples? I was looking there and simply didn't see any. I saw the packaging for instance exercised python interfaces, version comparison tools, etc.. but nothing that built a recipe/package and then verified the contents were 'correct'.

[OE-core] [PATCH] rootfs-postcommands.bbclass: Prevent linking testdata to itself

testdata and testdata_link may point to the same file, in particular when IMAGE_LINK_NAME and IMAGE_NAME are equal. Check if this is the case before creating a symlink that points to itself and makes the next build fail. Signed-off-by: Mike Looijmans ---

Re: [OE-core] openssl10 unusable for many components

On 08/17/2017 01:31 PM, Martin Jansa wrote: So you cannot just select which openssl implementation you want for given component, unless it's very simple component with small dependency tree. Unfortunately yes. The header names clash, and there's no way to have them both in the sysroot at the

Re: [OE-core] openssl10 unusable for many components

On Thu, 2017-08-17 at 12:31 +0200, Martin Jansa wrote: > Does openssl10 work for anyone in real-world scenarios? Depends what "real-world" means really. I've strongly pushed for OE-Core to have at least some spectrum of coverage of various elements of the software stacks people use so we can use

Re: [OE-core] openssl10 unusable for many components

The qtbase was just an example, the link with the last report: http://lists.openembedded.org/pipermail/openembedded-core/2017-August/140829.html shows that instead of 5 failures reported in previous one: http://lists.openembedded.org/pipermail/openembedded-devel/2017-August/114108.html we have

Re: [OE-core] openssl10 unusable for many components

On 08/17/2017 02:46 PM, Martin Jansa wrote: I meant "real-world" as builds for any products on the market (which are likely using one of the failing recipes) - e.g. in LGE we have many more failures over all internal components, so I'll just undo this openssl switch (renaming openssl_1.1 as

Re: [OE-core] [PATCH 2/8] bash: 4.3.30 -> 4.4

On Wed, 2017-08-16 at 04:31 -0400, Hongxu Jia wrote: > Rebase patches: > - fix-run-coproc-run-heredoc-run-execscript-run-test-f.patch > - test-output.patch > > Drop backported patches: > - CVE-2016-9401.patch > - fix-run-intl.patch > > Add ${PN}-loadable for loadable builtins which is new

Re: [OE-core] [PATCH] mc: unify curses initialization

On Thu, 2017-08-17 at 03:15 -0400, Hongxu Jia wrote: > Since ncurses upgraded to 6.0+20170715, it compile failed > ... > > > > ../../../mc-4.8.19/lib/tty/tty-ncurses.c:199:13: error: > > dereferencing > pointer to incomplete type 'TERMINAL {aka struct term}' > > > >  

Re: [OE-core] [PATCH 0/6 v2] Fix RPM4 regressions based on Pyro

> -Original Message- > From: Alexander Kanavin [mailto:alexander.kana...@linux.intel.com] > Sent: den 17 augusti 2017 12:53 > To: Mark Hatle ; Richard Purdie > ; openembedded- > c...@lists.openembedded.org > Cc: Peter

[OE-core] [PATCH v2] initramfs-framework/setup-live: also boot live image if root=/dev/ram0

Our grub and syslinux bootloaders both define root=/dev/ram0 for live images by default. Kernel docs show that root=/dev/ram0 is just a sentinel value for the kernel to mount the initrd as root, which then mounts and switches to the real root. This is exactly what our scripts do, so just check for

Re: [OE-core] [PATCH] recipetool: create: allow handers to set license

On Thursday, 10 August 2017 10:00:39 PM NZST Richard Purdie wrote: > On Wed, 2017-08-02 at 16:09 -0700, Mark D Horn wrote: > > Recipetool plugins set through register_recipe_handlers were not able > > to impact the license type via setting extravalues['LICENSE']. This > > is > > due to caching the

Re: [OE-core] [PATCH v6] kernel: Add support for multiple kernel packages

On 08/16/2017 11:00 AM, Wold, Saul wrote: On Mon, 2017-08-14 at 16:29 -0500, Haris Okanovic wrote: Some distros may want to provide alternate kernel "flavors" via feeds or within bootable images. For example, readily available builds which provide certain diagnostic features can enable

[OE-core] [PATCH v7] kernel: Add support for multiple kernel packages

Some distros may want to provide alternate kernel "flavors" via feeds or within bootable images. For example, readily available builds which provide certain diagnostic features can enable developers and testers to more quickly resolve issues by avoiding lengthy kernel builds. This change allows

Re: [OE-core] [PATCH v3] (morty) rpm: Fix the Bug of SRPM String error

ping -Original Message- From: Zheng, Ruoqin/郑 若钦 Sent: Friday, June 23, 2017 9:56 AM To: openembedded-core@lists.openembedded.org Cc: Zheng, Ruoqin/郑 若钦 Subject: [OE-core] [PATCH v3] (morty) rpm: Fix the Bug of SRPM String error Add a patch

Re: [OE-core] openssl10 unusable for many components

On Thu, Aug 17, 2017 at 4:54 AM, Alexander Kanavin wrote: > On 08/17/2017 02:46 PM, Martin Jansa wrote: >> >> I meant "real-world" as builds for any products on the market (which are >> likely using one of the failing recipes) - e.g. in LGE we have many more >>

[OE-core] [PATCH] insane: add qa check for uppercase recipe name

Since we disabled uppercase characters in overrides a few releases ago, uppercase characters in recipe names (and for that matter, distro and machine names) cannot be supported due to their reliance upon overrides including the name. QA check will produce an warning message when it verify that

Re: [OE-core] [PATCH 0/6 v2] Fix RPM4 regressions based on Pyro

On 8/17/17 8:01 AM, Peter Kjellerstedt wrote: >> -Original Message- >> From: Alexander Kanavin [mailto:alexander.kana...@linux.intel.com] >> Sent: den 17 augusti 2017 12:53 >> To: Mark Hatle ; Richard Purdie >> ; openembedded-

Re: [OE-core] [PATCH] gpg_sign: perform rpm signing serially

On Thu, 2017-08-17 at 10:50 +0300, Markus Lehtonen wrote: > Hi, > > I quickly run some tests on a Xeon server, using glibc-locale as the recipe > to build. > 100: 154s > 10: 162s (+5%) > 1: 234s (+51%) What I did to measure parallel versus serial is to run the corresponding selftest

Re: [OE-core] [PATCH 0/6 v2] Fix RPM4 regressions based on Pyro

On 08/17/2017 04:01 PM, Peter Kjellerstedt wrote: The problem we have, which caused me to look into this, is: We unfortunately have a lot of unversioned libraries, e.g., "libfoo.so" instead of "libfoo.so.1.2.3". There is no problem building these (except we need to work around OE's default of

Re: [OE-core] [PATCH 0/6 v2] Fix RPM4 regressions based on Pyro

On 8/17/17 5:53 AM, Alexander Kanavin wrote: > On 08/16/2017 06:37 PM, Mark Hatle wrote: >> Are there any examples? I was looking there and simply didn't see any. I >> saw >> the packaging for instance exercised python interfaces, version comparison >> tools, etc.. but nothing that built a

Re: [OE-core] [PATCH 1/3] python: Restructure python packaging and replace it with autopackaging

On Thu, 17 Aug 2017 03:24:23 -0700 Alejandro Hernandez wrote: > - It creates a solution for users that want precompiled bytecode files >(*.pyc) INCLUDE_PYCS = "1" can be set by the user on their local.conf to >include such files, some argument they

[OE-core] [PATCH] ca-certificates: prevent executing update-ca-certificates from host system

Signed-off-by: Andrej Valek --- meta/recipes-support/ca-certificates/ca-certificates_20161130.bb | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/meta/recipes-support/ca-certificates/ca-certificates_20161130.bb

Re: [OE-core] Chaining compression support fixes for morty / pyro

On 07/31/2017 06:59 AM, Tom Rini wrote: Hi Armin, The following changes in master are relevant to both morty and pyro: In stagging for morty. will do pyro shortly. commit 0a7ce0b971a208956cb895ba5a869ec8c5d94703 Author: Tom Rini Date: Fri Jul 21 18:06:33 2017 -0400

[OE-core] [PATCH] systemd-boot: Move adjacent to systemd

We always forget to upgrade it when systemd is upgraded, keeping it next to systemd will be an easy reminder to upgrade this recipe along with systemd Define EFI_CC, so far it has been using detection mechanism which worked with gcc but falls back to native gcc when using non-gcc compiler as

[OE-core] [PATCH] sign_rpm: Allow pkg signing by chunks through RPM_GPG_SIGN_CHUNK

From: Leonardo Sandoval Commit d58b1d196 moved from chunk to serial signing, but neither of both approaches allowed the user to select the chunks size. This patch allows the user to select a chunk size through RPM_GPG_SIGN_CHUNK defaulting to

Re: [OE-core] [PATCH] ca-certificates: prevent executing update-ca-certificates from host system

On Thu, 2017-08-17 at 16:44 +0200, Andrej Valek wrote: > Signed-off-by: Andrej Valek > --- >  meta/recipes-support/ca-certificates/ca-certificates_20161130.bb | 2 > +- >  1 file changed, 1 insertion(+), 1 deletion(-) > > diff --git

[OE-core] [PATCH 3/3] python3: Restructure python3 packaging and replace it with autopackaging

See previous commit (python2 version) for more info. Old manifest file had several issues: - Its unorganized and hard to read and understand it for an average human being. - Git complains every single time a patch is submitted to the manifest, since it violates some of its guidelines for

[OE-core] [PATCH 1/3] python: Restructure python packaging and replace it with autopackaging

The reason we have a manifest file for python is that our goal is to keep python-core as small as posible and add other python packages only when the user needs them, hence why we split upstream python into several packages. Although our manifest file has several issues: - Its unorganized and

[OE-core] [PATCH 0/3] Restructure python2 and python3 packaging system

The reason we have a manifest file for python is that our goal is to keep python-core as small as posible and add other python packages only when the user needs them, hence why we split upstream python into several packages. There are many problems with our current implementation of the manifest

[OE-core] [PATCH 2/3] python3: fix RDEPENDS on several recipes, due to non-existent python3 packages

Signed-off-by: Alejandro Hernandez --- meta/recipes-core/libxml/libxml2_2.9.4.bb | 2 +- meta/recipes-devtools/bootchart2/bootchart2_0.14.8.bb | 2 +- meta/recipes-devtools/dnf/dnf_2.6.3.bb | 4 ++--

Re: [OE-core] [PATCH v3 10/11] kernel.bbclass: improve reproducibility

On Wed, Aug 9, 2017 at 10:48 AM, Juro Bystricky wrote: > Several tweaks to improve reproducibility: > > 1. If BUILD_REPRODUCIBLE_BINARIES == 1, set KBUILD_BUILD_TIMESTAMP > to a reproducible value. This is either a non-zero SOURCE_DATE_EPOCH, or > the > value obtained

[OE-core] [PATCH] copy_buildsystem: include layer tree during build structure creation

When buildsystem with layer structure is going to be copied, only the last meta-XXX layer is taken. For example, during ext_sdk bblayers creating: layers/oe/meta \ layers/oe/meta-oe \ layers/oe/meta-networking \ layers/oe/meta-webserver \ ... It restructured meta-oe, meta-networking,... contents

[OE-core] [PATCH] qemuboot.bbclass: Prevent creating a link loop

When IMAGE_NAME and IMAGE_LINK_NAME are equal, do_write_qemuboot_conf will create a symlink that links to itself. Check if this is the case before creating the link. Signed-off-by: Mike Looijmans --- meta/classes/qemuboot.bbclass | 7 --- 1 file changed, 4

Re: [OE-core] [PATCH 1/3] python: Restructure python packaging and replace it with autopackaging

Hey Andreas, On 08/17/2017 09:14 AM, Andreas Oberritter wrote: On Thu, 17 Aug 2017 03:24:23 -0700 Alejandro Hernandez wrote: - It creates a solution for users that want precompiled bytecode files (*.pyc) INCLUDE_PYCS = "1" can be set by the user on

Re: [OE-core] [PATCH v2] devtool/copy_buildsystem: adds meta-skeleton layer in the eSDK installation.

On 17/08/17 03:59, Paul Eggleton wrote: On Thursday, 17 August 2017 7:36:14 PM NZST Richard Purdie wrote: On Wed, 2017-08-16 at 18:36 -0700, juan.m.cruz.alca...@linux.intel.com wrote: From: Juan M Cruz Alcaraz The eSDK installation requires the

Re: [OE-core] ✗ patchtest: failure for Restructure python2 and python3 packaging system

The failure is expected, since this patch modifies(removes) the python manifest, and one of the things that I wanted to fix was exactly this, that submitting a patch to the manifest shouldnt cause an issue, after this patch is applied this will no longer happen. As for the series not

Re: [OE-core] [PATCH v3 10/11] kernel.bbclass: improve reproducibility

thanks for pointing this out, will fix it the way you suggested -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core

[OE-core] ✗ patchtest: failure for Restructure python2 and python3 packaging system

== Series Details == Series: Restructure python2 and python3 packaging system Revision: 1 URL : https://patchwork.openembedded.org/series/8314/ State : failure == Summary == Thank you for submitting this patch series to OpenEmbedded Core. This is an automated response. Several tests have

[OE-core] [PATCH] report-error: provide distro identifier string in case of uninative build

From: Leonardo Sandoval Besides providing the NATIVELSBSTRING, include distro info when creating the (json) error report. This information provides better info than the standard 'universal*' string for uninative builds. [YOCTO #11824] Signed-off-by:

Re: [OE-core] [PATCH v2] image.bbclass: delete DATE variable too

On 2017-08-29 02:54, Stefan Agner wrote: > From: Stefan Agner > > When creating a custom image which uses the DATE variable the basehash > seems to change every day and lead to errors such as: > ERROR: console-tdx-image-2.7.6-r0 do_image_customimg: Error executing > a

[OE-core] [PATCH] webkitgtk: Add a recommends on shared-mime-info.

* without this package installed any WebKitGTK+ based browser will fail to correctly open html files (and other files) from disk (file:// URIs). It will open them as plain txt files. Signed-off-by: Carlos Alberto Lopez Perez ---

Re: [OE-core] [PATCH v3 08/11] python2.7: improve reproducibility

On Wed, 2017-08-09 at 10:48 -0700, Juro Bystricky wrote: > The compiled .pyc files contain time stamp corresponding to the compile time. > This prevents binary reproducibility. This patch allows to achieve binary > reproducibility by overriding the build time stamp by the value > exported via

Re: [OE-core] [PATCH v3 02/11] image-prelink.bbclass: support binary reproducibility

On Wed, 2017-08-09 at 10:48 -0700, Juro Bystricky wrote: > Conditionally support binary reproducibility in built images. > If BUILD_REPRODUCIBLE_BINARIES = 1 then: > > 1. Do not randomize library addresses > 2. Set/export PRELINK_TIMESTAMP to a reproducible value. >If

[OE-core] [PATCH] insane.bbclass: Warn if ${COREBASE}/LICENSE is used

The top level LICENSE file is not actually a license, it refers other licenses that are used by Bitbake and Meta-data. Relying on this file could cause problems for recipes when this file changes, which it is about to. Signed-off-by: Saul Wold ---