On Mon, 2021-02-08 at 05:51 +, akuster wrote:
> There are times when exluding or including a layer
> may be desired. This provide the framwork for that via
> two variables. The default is all layers in bblayers.
>
> CVE_CHECK_LAYER_INCLUDELIST
> CVE_CHECK_LAYER_EXCLUDELIST
Do we need to
Signed-off-by: Alexander Kanavin
---
.../0001-gptcurses-correctly-include-curses.h.patch| 7 ---
.../fdisk/{gptfdisk_1.0.5.bb => gptfdisk_1.0.6.bb} | 3 +--
2 files changed, 5 insertions(+), 5 deletions(-)
rename meta/recipes-devtools/fdisk/{gptfdisk_1.0.5.bb =>
easy_install script removed upstream:
https://github.com/pypa/setuptools/blob/v52.0.0/CHANGES.rst
Tarballs are now provided instead of zip files.
License-Update: formatting
Signed-off-by: Alexander Kanavin
---
...tuptools_51.0.0.bb => python3-setuptools_52.0.0.bb} | 10 ++
1 file
Drop 0001-Modify-shebang-of-libexec-y2racc-and-libexec-racc2y.patch
as files removed upstream.
License-Update: formatting
Drop autoconf270.patch, as no longer needed with 3.0.0
(I verified against master-next which has the new autoconf).
Signed-off-by: Alexander Kanavin
---
Drop patch merged upstream.
Signed-off-by: Alexander Kanavin
---
...inst-libatomic-if-no-built-in-atomic.patch | 117 --
.../vulkan/vulkan-samples_git.bb | 3 +-
2 files changed, 1 insertion(+), 119 deletions(-)
delete mode 100644
tools/binman/binman needs python3-setuptools now.
Signed-off-by: Alexander Kanavin
---
meta/recipes-bsp/u-boot/u-boot-common.inc| 2 +-
.../{u-boot-tools_2020.10.bb => u-boot-tools_2021.01.bb} | 0
meta/recipes-bsp/u-boot/u-boot_2020.10.bb| 5 -
Signed-off-by: Alexander Kanavin
---
.../{distcc_3.3.3.bb => distcc_3.3.5.bb} | 9 +-
...cc-10-which-defaults-to-fno-common-c.patch | 34 -
.../distcc/files/fix-gnome.patch | 122 --
.../distcc/files/separatebuilddir.patch | 33 -
4 files
Signed-off-by: Alexander Kanavin
---
...ild.c-ignore-return-of-1-from-tar-cf.patch | 10
...kg-fsys-usrunmess.pl-correct-shebang.patch | 23 +++
.../dpkg/{dpkg_1.20.5.bb => dpkg_1.20.7.1.bb} | 5 ++--
3 files changed, 31 insertions(+), 7 deletions(-)
create mode 100644
Signed-off-by: Alexander Kanavin
---
meta/recipes-extended/at/at_3.2.1.bb | 2 --
1 file changed, 2 deletions(-)
diff --git a/meta/recipes-extended/at/at_3.2.1.bb
b/meta/recipes-extended/at/at_3.2.1.bb
index 9574b27792..ae15df8662 100644
--- a/meta/recipes-extended/at/at_3.2.1.bb
+++
Drop musl fix as upstream fixed the issue.
Signed-off-by: Alexander Kanavin
---
.../tar/tar/musl_dirent.patch | 19 ---
.../tar/{tar_1.32.bb => tar_1.33.bb} | 7 ++-
2 files changed, 2 insertions(+), 24 deletions(-)
delete mode 100644
Signed-off-by: Alexander Kanavin
---
.../libhandy/{libhandy_1.0.2.bb => libhandy_1.0.3.bb} | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
rename meta/recipes-gnome/libhandy/{libhandy_1.0.2.bb => libhandy_1.0.3.bb}
(77%)
diff --git
Signed-off-by: Alexander Kanavin
---
meta/recipes-graphics/shaderc/shaderc_2020.4.bb | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/meta/recipes-graphics/shaderc/shaderc_2020.4.bb
b/meta/recipes-graphics/shaderc/shaderc_2020.4.bb
index 8658a5737b..e966ed3d77 100644
---
Signed-off-by: Alexander Kanavin
---
meta/recipes-graphics/spir/spirv-tools_2020.6.bb | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/meta/recipes-graphics/spir/spirv-tools_2020.6.bb
b/meta/recipes-graphics/spir/spirv-tools_2020.6.bb
index 2c855d8d8e..4866558158 100644
---
From: Tomasz Dziendzielski
The "devtool modify" could remove message body before scissors line, so
patches re-generated from git tree were incorrectly modified.
Adding --no-scissors to "git am" invocation to prevent this behaviour.
[YOCTO #12674]
Signed-off-by: Tomasz Dziendzielski
From: Sourabh Banerjee
Sanity checker reports following error for the PATH variable,
when bitbake -e command is run in an extensible SDK workspace.
PATH contains '.', './' or '' (empty element), which will break the build
In case of extensible SDK, PATH variable is formed with two
From: Lee Chee Yang
existing test case test_permissions use Wic command as standalone
tools to create wic image and check that wic image for permissions.
add extra steps to the test case to also check against image build
using bitbake do_image_wic.
Signed-off-by: Lee Chee Yang
Signed-off-by:
From: Tomasz Dziendzielski
If path is not owned by any user installed on target it gives
insufficient error "getpwuid(): uid not found" which may be misleading.
This exception occurs if uid/gid of path was not found in PSEUDO_PASSWD
files, which simply means the path is owned by host user and
From: Julien Massot
rngd daemon may spam the console when using an older version
than 6.11.
Backport patches from https://github.com/nhorman/rng-tools/pull/99/commits
Signed-off-by: Julien Massot
Signed-off-by: Steve Sakoman
---
...-O_NONBLOCK-setting-for-entropy-pipe.patch | 26
From: Ricardo Ribalda Delgado
Make sure that the permissions and username are respected when using all
the rootfs modifiers.
Add tests for change-directory command
Cc: Paul Barker
Signed-off-by: Ricardo Ribalda Delgado
Signed-off-by: Richard Purdie
(cherry picked from commit
From: Richard Purdie
A build date was leaking into the generated docs and makefile used for
ptests leading to reproducibility issues each time the month changed.
Add a patch to use SOURCE_DATE_EPOCH to derive it if available.
Signed-off-by: Richard Purdie
(cherry picked from commit
From: Ricardo Ribalda
When IMAGE_FSTYPES contains more types than wic, it can happen than the
pseudo database is not flushed properly.
This can be solved by changing the order of when do_flush_pseudodb is
launched.
Yocto Bug: https://bugzilla.yoctoproject.org/show_bug.cgi?id=13898
Fixes:
Please add this only together with
https://git.openembedded.org/openembedded-core/commit/?id=3ecea58f2a3382d9f4b410d6ad7089111334cb6f
RP dropped this one from last gatesgarth PR as well until both are applied
at the same time:
https://lists.openembedded.org/g/openembedded-core/message/147712
On
rename directory of patches
-License-Update: Copyright year updated to 2021.
Signed-off-by: Wang Mingyu
---
.../0001-avoid-start-failure-with-bind-user.patch | 0
...0001-named-lwresd-V-and-start-log-hide-build-options.patch | 0
Add 0001-meson-Also-search-for-rst2man.py.patch to fix bug of program rst2man
cannot be found.
Add dependency python3-docutils-native to manpages.
Signed-off-by: Wang Mingyu
---
...001-meson-Also-search-for-rst2man.py.patch | 27 +++
.../{libdrm_2.4.103.bb =>
From: Bruce Ashfield
Updating linux-yocto/5.4 to the latest korg -stable release that comprises
the following commits:
ceed81a883dc Linux 5.4.90
6f484096196b regmap: debugfs: Fix a reversed if statement in
regmap_debugfs_init()
bbb2fee395e9 net: drop bogus skb with CHECKSUM_PARTIAL
From: Awais Belal
The do_bundle_initramfs() only processes kernel image
types that are found in KERNEL_IMAGETYPE_FOR_MAKE whereas
the build system can generate other types that are not
directly supported by the kernel build system. In which
case when we come to the deploy phase not all the
From: Richard Purdie
In an earlier commit, libprocps was split into a separate package leaving
no shlibs in the main package. A bug was seen where igt-gpu-tools wouldn't
build correctly in some cases as it thought the librbary was still in the
main package, throwing qa errors as a result.
The
From: Bruce Ashfield
5.4-stable included a backport of:
Author: Eric W. Biederman
Date: Thu Dec 3 14:11:13 2020 -0600
rwsem: Implement down_read_interruptible
[ Upstream commit 31784cff7ee073b34d6eddabb95e3be2880a425c ]
In preparation for converting exec_update_mutex
From: Lee Chee Yang
add CVE_VERSION_SUFFIX to indicate the version suffix type, currently
works in two value, "alphabetical" if the version string uses single
alphabetical character suffix as incremental release, blank to not
consider the unidentified suffixes. This can be expand when more
From: Mark Hatle
When the PR service is enabled a number of small changes may happen
to variables. In the do_package step a call to package_get_auto_pr
will end up setting PRAUTO and modifying PKGV (if AUTOINC is there).
PRAUTO is then used by EXTENDPRAUTO, which is then used to generate
PKGR.
From: Lee Chee Yang
Signed-off-by: Lee Chee Yang
Signed-off-by: Richard Purdie
(cherry picked from commit 17df664a32a74f17baaef8c31ac23adec2d6255f)
Signed-off-by: Steve Sakoman
---
meta/recipes-connectivity/openssl/openssl_1.1.1i.bb | 2 ++
1 file changed, 2 insertions(+)
diff --git
From: Wang Mingyu
-License-Update: format changed
Signed-off-by: Wang Mingyu
Signed-off-by: Richard Purdie
(cherry picked from commit 0007f38b03bcb0bd561bd9181fbffc7dec47fe9a)
Signed-off-by: Steve Sakoman
---
...a-certificates_20190110.bb => ca-certificates_20200601.bb} | 4 ++--
1 file
From: Alexander Kanavin
Signed-off-by: Alexander Kanavin
Signed-off-by: Richard Purdie
(cherry picked from commit 9bc2943a7819c7e6d1bd4c1c03b265671811784c)
Signed-off-by: Steve Sakoman
---
meta/recipes-support/ca-certificates/ca-certificates_20200601.bb | 1 +
1 file changed, 1 insertion(+)
From: Richard Purdie
Pulls in:
pseudo_client: Ensure renames update open fd file paths
pseudo_client.c: Rebuild passwd paths after chroot
which should fix issues seen in apt package index creation, new
binutils and other autobuilder race issues in pseudo amongst other
issues.
From: Dorinda
Added a sanity check for when PSEUDO_IGNORE_PATHS and paths under pseudo
control overlap to avoid random failures generated.
[YOCTO #14193]
Signed-off-by: Dorinda Bassey
Signed-off-by: Richard Purdie
(cherry picked from commit 6e4bd8cabcdedf4b52345ef5eb421f71d0f19b1d)
Please review this next set of patches for dunfell and have comments back by
end of day Wednesday.
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/1837
The following changes since commit e0cd2e1f9ae956d72b8033ce1c4403d8bd99d3d5:
staging: Clean
From: Lee Chee Yang
The way distutils.version.LooseVersion compare version are tricky, it treat
all these ( "1.0-beta2", "1.0-rc1", "1.0A", "1.0p2" and "1.0pre1") as greater
version than "1.0". This might be right for "1.0A" and "1.0p1" but not for
the rest, also these version could be
From: zhengruoqin
0001-certdata2pem.py-use-python3.patch
removed since it is included in 20210119
Signed-off-by: Zheng Ruoqin
Signed-off-by: Richard Purdie
(cherry picked from commit afd86357e07f69090eaff4c5db2c517867dd4ccf)
Signed-off-by: Steve Sakoman
---
On Mon, 8 Feb 2021 at 12:57, Wang Mingyu wrote:
> +
> +That's what upstream docutils installs by default.
> +Signed-off-by: Heiko Becker's avatarHeiko Becker
>
Please add Upstream-Status to the patch according to guidelines, I guess
it's a backport?
Add 0001-meson-Also-search-for-rst2man.py.patch to fix bug of program rst2man
cannot be found.
Add dependency python3-docutils-native to manpages.
Signed-off-by: Wang Mingyu
---
...001-meson-Also-search-for-rst2man.py.patch | 30 +++
.../{libdrm_2.4.103.bb =>
From: Vyacheslav Yurkov
python2-native executable is not available in sysroot anymore, which
causes compilation of some nodejs modules to fail. Switch to python3 as a
default python version.
Signed-off-by: Vyacheslav Yurkov
Signed-off-by: Richard Purdie
(cherry picked from commit
From: Bruce Ashfield
Updating linux-yocto/5.4 to the latest korg -stable release that comprises
the following commits:
0fbca6ce4174 Linux 5.4.94
315cd8fc2ad2 fs: fix lazytime expiration handling in
__writeback_single_inode()
5f8b8fccdfbc writeback: Drop I_DIRTY_TIME_EXPIRE
From: Tomasz Dziendzielski
The externalsrc class deletes do_patch task which results with:
| ERROR: Task do_create_manifest in /python3_3.8.2.bb depends upon
| non-existent task do_patch in /python3_3.8.2.bb
Use addtask to define correct order to prevent this error, since addtask
mechanism
From: Richard Purdie
The tar output seems to vary depending on the version of tar used and distro
configuration. Be explict about the output format to avoid this and be
determinstic.
Signed-off-by: Richard Purdie
(cherry picked from commit c56f3c9febc1732aa1302524c6c4da36f16bd1f7)
From: Peter Bergin
An exception is fired when a BuildStarted event is sent to buildhistory bbclass
and the variable BUILDHISTORY_FEATURES is not set.
ERROR: Execution of event handler 'buildhistory_eventhandler' failed
Traceback (most recent call last):
File
From: Richard Purdie
This looks like it was from before the recipe was split, we'd expect
the system qemu mode for running the images so the dependency should be
updated.
Signed-off-by: Richard Purdie
(cherry picked from commit 3a4fed4ae0e8a0d1bd62ea5fa1ef12925e1f20f5)
Signed-off-by: Steve
From: Anatol Belski
The naming convention needs to be help so the CVE is recognized as
fixed by the tooling.
Signed-off-by: Anatol Belski
Signed-off-by: Steve Sakoman
---
...ion-to-avoid-GOptionEntry-lis.patch => CVE-2020-35457.patch} | 0
meta/recipes-core/glib-2.0/glib-2.0_2.62.6.bb
The current recipe unconditionally RDEPENDS on nodejs (the target one).
When building on the "-native recipe" of "BBCLASSEXTEND native" recipe,
the target nodejs is unnecessarily built.
This patch fixes this by only RDEPENDS on nodejs when building for the target.
Signed-off-by: Yoann Congal
On 08.02.21 18:52, Yoann Congal wrote:
The current recipe unconditionally RDEPENDS on nodejs (the target one).
When building on the "-native recipe" of "BBCLASSEXTEND native" recipe,
the target nodejs is unnecessarily built.
This patch fixes this by only RDEPENDS on nodejs when building for
On 2/2/21 5:48 PM, Richard Purdie wrote:
A build date was leaking into the generated docs and makefile used for
ptests leading to reproducibility issues each time the month changed.
Add a patch to use SOURCE_DATE_EPOCH to derive it if available.
ACK the objective, but I have a couple concerns
Hi Oleksiy
oe-core ml is only for oe-core repo patches. For meta-openembedded
layers patches they should be sent to oe-devel mailing list.
On 2/8/21 7:44 AM, Oleksiy Obitotskyy via lists.openembedded.org wrote:
CPPFLAGS was overrided for tests, so we
missing DEBUG_PREFIX_MAP and got absolute
The current recipe unconditionally RDEPENDS on nodejs (the target one).
When building on the "-native recipe" of "BBCLASSEXTEND native" recipe,
the target nodejs is unnecessarily built.
This patch fixes this by only RDEPENDS on nodejs when building for the target.
Signed-off-by: Yoann Congal
Le lun. 8 févr. 2021 à 18:55, Konrad Weihmann a
écrit :
>
>
> On 08.02.21 18:52, Yoann Congal wrote:
> > The current recipe unconditionally RDEPENDS on nodejs (the target one).
> > When building on the "-native recipe" of "BBCLASSEXTEND native" recipe,
> > the target nodejs is unnecessarily
From: Matteo Croce
Add a recipe to build libbpf from https://github.com/libbpf/libbpf
The only patch fixes a build issue, and it's already merged upstream.
Signed-off-by: Matteo Croce
---
...01-install-don-t-preserve-file-owner.patch | 29 +++
On Sun, 7 Feb 2021, saloni wrote:
> CVE-2000-0006 is not a valid bug number nor an alias to a bug
> and no remedy for the CVE is available till now. Hence, can be
> marked whitelisted.
>
> Signed-off-by: Saloni Jain
> ---
> meta/recipes-devtools/strace/strace_5.10.bb | 3 +++
> 1 file changed,
On Mon, 2021-02-08 at 12:21 -0600, Alex Stewart wrote:
> On 2/2/21 5:48 PM, Richard Purdie wrote:
> > A build date was leaking into the generated docs and makefile used for
> > ptests leading to reproducibility issues each time the month changed.
> >
> > Add a patch to use SOURCE_DATE_EPOCH to
On Mon, Feb 8, 2021 at 4:20 AM Martin Jansa wrote:
>
> Please add this only together with
> https://git.openembedded.org/openembedded-core/commit/?id=3ecea58f2a3382d9f4b410d6ad7089111334cb6f
Just noticed that this morning, I will move this patch to the next
batch along with the follow on patch.
CPPFLAGS was overrided for tests, so we
missing DEBUG_PREFIX_MAP and got absolute
path in binary.
Signed-off-by: Oleksiy Obitotskyy
---
...Append-CPPFLAGS-rather-then-override.patch | 31 +++
.../libhugetlbfs/libhugetlbfs_git.bb | 1 +
2 files changed, 32 insertions(+)
On 2/8/21 2:16 AM, Richard Purdie wrote:
> On Mon, 2021-02-08 at 05:51 +, akuster wrote:
>> There are times when exluding or including a layer
>> may be desired. This provide the framwork for that via
>> two variables. The default is all layers in bblayers.
>>
>> CVE_CHECK_LAYER_INCLUDELIST
From: Alexander Kanavin
Signed-off-by: Alexander Kanavin
Signed-off-by: Richard Purdie
(cherry picked from commit 6e811db2f614500f16415fc09801f229968428e7)
[0.23.x is an lts release, bug fix only update]
Signed-off-by: Armin Kuster
---
.../p11-kit/{p11-kit_0.23.20.bb => p11-kit_0.23.21.bb}
From: Lee Chee Yang
https://github.com/p11-glue/p11-kit/releases/tag/0.23.22
Release notes:
Fix memory-safety issues that affect the RPC protocol (CVE-2020-29361,
CVE-2020-29362, and CVE-2020-29363), discovered and fixed by David Cook
anchor: Prefer persistent format when storing anchor [#329]
Hi Dorinda,
On Mon, 2021-02-01 at 09:46 -0500, Dorinda wrote:
> Tinfoil doesn't behave well if environment is not initialized, this check
> ensures a proper error log if environment is not initialized.
>
> [YOCTO #12096]
>
> Signed-off-by: Dorinda Bassey
> ---
> v2:
> -Positioned check under
You need the override after the append/prepend operator and append is more
common than prepend (order of RDEPENDS isn't important) so I would use:
RDEPENDS_${PN}_append_class-target = " nodejs"
On Mon, Feb 8, 2021 at 7:08 PM Yoann Congal wrote:
> The current recipe unconditionally RDEPENDS on
On Mon, Feb 8, 2021 at 1:18 PM Matteo Croce wrote:
>
> From: Matteo Croce
>
> Add a recipe to build libbpf from https://github.com/libbpf/libbpf
> The only patch fixes a build issue, and it's already merged upstream.
Thanks for the submission! I have a few comments / questions.
To get this
On Mon, Feb 8, 2021 at 3:13 PM Bruce Ashfield wrote:
>
> On Mon, Feb 8, 2021 at 1:18 PM Matteo Croce
> wrote:
> >
> > From: Matteo Croce
> >
> > Add a recipe to build libbpf from https://github.com/libbpf/libbpf
> > The only patch fixes a build issue, and it's already merged upstream.
>
>
On Mon, Feb 8, 2021 at 9:13 PM Bruce Ashfield wrote:
>
> On Mon, Feb 8, 2021 at 1:18 PM Matteo Croce
> wrote:
> >
> > From: Matteo Croce
> >
> > Add a recipe to build libbpf from https://github.com/libbpf/libbpf
> > The only patch fixes a build issue, and it's already merged upstream.
>
>
On Mon, Feb 8, 2021 at 4:22 PM Matteo Croce wrote:
>
> On Mon, Feb 8, 2021 at 9:13 PM Bruce Ashfield
> wrote:
> >
> > On Mon, Feb 8, 2021 at 1:18 PM Matteo Croce
> > wrote:
> > >
> > > From: Matteo Croce
> > >
> > > Add a recipe to build libbpf from https://github.com/libbpf/libbpf
> > > The
On 6/02/21 1:01 pm, Jon Mason wrote:
On Thu, Feb 4, 2021 at 10:43 PM Douglas via lists.openembedded.org
wrote:
Further to 50ff9afb39, only detect code changes in submodules that are
subdirectories of the EXTERNALSRC directory.
Signed-off-by: Douglas Royds
---
I believe this patch is causing
As agreed upon on the Yocto Project Technical Team Meeting a week ago, I have
created branches for both Gatesgarth and Dunfell in openembedded-core-contrib
and meta-openembedded-contrib with the required patches. The branches are
called pkj/_PYTHON_SYSCONFIGDATA_NAME-gatesgarth and
Hi Richard,
I checked devtool and recipetool, they have checks in place that errors out
immediately if executed without initializing oe-init-build-env script.
However, I'm unsure about this:
I'm wondering if there should be a check inside tinfoil itself?
Thanks and Regards,
Dorinda.
On Feb 8,
Hi,
I believe I have the same set of patches in jansa/dunfell and
jansa/gatesgarth branchesand bitbake world passed OK with them (with my set
of layers).
The only new issue I see in dunfell is libvirt from meta-virtualization
failing, because it uses hosts gcc to build python module, from quick
Signed-off-by: Armin Kuster
---
meta/conf/documentation.conf | 2 ++
1 file changed, 2 insertions(+)
diff --git a/meta/conf/documentation.conf b/meta/conf/documentation.conf
index eee3c43ff2c..c5a38b07642 100644
--- a/meta/conf/documentation.conf
+++ b/meta/conf/documentation.conf
@@ -123,6
All,
The triage team is starting to try and collect up and classify bugs which a
newcomer to the project would be able to work on in a way which means people
can find them. They're being listed on the triage page under the appropriate
heading:
Hi Richard,
> I went digging and was pointed to
>
> https://bugzilla.redhat.com/show_bug.cgi?id=1609015
In the discussion, "patches were applied upstream to prevent future changes
introducing such flames" was explained.
It seems that CVE doesn't think this is a problem, but the upstream still
74 matches
Mail list logo