On Thu, Aug 19, 2021 at 2:22 AM Oliver Kranz wrote:
> Small golang applications create massive memory overhead if go-runtime
> is deployed. So it is helpfull to be able to disable the GO_DYNLINK
> option on a per distro/local.conf basis by making it a ?= instead of =.
>
I wonder if we should
On 20.08.21 02:01, Khem Raj wrote:
On Thu, Aug 19, 2021 at 2:22 AM Oliver Kranz wrote:
Small golang applications create massive memory overhead if go-runtime
is deployed. So it is helpfull to be able to disable the GO_DYNLINK
option on a per distro/local.conf basis by making it a ?= instead
From: Armin Kuster
Source: glibc.org
MR: 112635
Type: Security Fix
Disposition: Backport from
https://sourceware.org/git/?p=glibc.git;a=commit;h=b805aebd42364fe696e417808a700fdb9800c9e8
ChangeID: 53b105da48e604f6763bb04b7114f41bfb620d2f
Description:
Signed-off-by: Armin Kuster
---
From: Armin Kuster
Source: glibc.org
MR: 111508
Type: Security Fix
Disposition: Backport from https://sourceware.org/git/glibc.git
ChangeID: 815edc154adc45d08d00995862409f13014f885f
Description:
This version of glibc does not have __pthread_attr_setaffinity_np so an adapted
patch was taken
From: Richard Purdie
(From OE-Core rev: 1aeb32228d92568e90f313a2a027c6790937eb8a)
Signed-off-by: Richard Purdie
(cherry picked from commit 50e1649a320f2e631da9e6393efb8459fd979e88)
Signed-off-by: Armin Kuster
---
...-a-custom-value-for-the-location-of-.patch | 6 +++---
From: Alexander Kanavin
(From OE-Core rev: ad9f9fd5609c2014454c73045bc603c9883977e3)
Signed-off-by: Alexander Kanavin
Signed-off-by: Richard Purdie
(cherry picked from commit 33eade06ebb327be80eef278835053759ffe23fa)
Signed-off-by: Armin Kuster
---
From: Saul Wold
Source: poky.org
MR: 105607
Type: Security Fix
Disposition: Backport from
http://git.yoctoproject.org/cgit/cgit.cgi/poky/commit/meta/recipes-support/gnupg?h=hardknott=0c06506d42f9e1f43a54a178cda47cfea3f12f81
ChangeID: 4341d0331368d6cd51d635d2c70555b3dce61792
Description:
This
From: Alexander Kanavin
(From OE-Core rev: eb7ad793d8c2e924adccc62e7680bb1cac640e89)
Signed-off-by: Alexander Kanavin
Signed-off-by: Richard Purdie
(cherry picked from commit df0bb1cb96389d534b53faf677a0f6ee30dd672d)
Signed-off-by: Armin Kuster
---
From: Wang Mingyu
(From OE-Core rev: 90798e892fd3e0d2ef77a7ba64a33ea9f8ef317b)
Signed-off-by: Wang Mingyu
Signed-off-by: Richard Purdie
(cherry picked from commit 33a997a80a56fba4138780fadda231ae4fd751ea)
[gnupg 2.2 is an LTS release so this series are all bug fixes.
On 8/18/21 3:02 PM, Khem Raj wrote:
> On Wed, Aug 18, 2021 at 2:40 PM Sakib Sajal wrote:
>> Hi Khem,
>>
>> I was going to apply the commit
>>
>> glibc is currently at ae37d06c7d127817ba43850f0f898b793d42aea7, 8
>> commits behind origin/release/2.34/master as shown below.
>>
>> Those commits
On Wed, Aug 18, 2021 at 9:50 AM Richard Purdie <
richard.pur...@linuxfoundation.org> wrote:
> The merge of libdl into libc in glibc 2.34 causes problems for pseudo. Add
> a fix
> that works around this issue.
I have made an incremental change which fixes the build failures on
rv32/rv64
if the user specifies path on 'patchdir' that don't exist,
the patch will fail and there are no message that indicates the real cause.
Signed-off-by: Jose Quaresma
---
meta/classes/patch.bbclass | 2 ++
1 file changed, 2 insertions(+)
diff --git a/meta/classes/patch.bbclass
Hi Jose,
On August 18, 2021 11:28:24 PM GMT+02:00, Jose Quaresma
wrote:
>- There are situration when the user have the 'patchdir' defined
>as a parameter on SRC_URI. However he doesn't know with this,
>the patch is applied relatively to the receipe source 'S'.
>
>* On the next example, the
I will send a v2 that only check if the patchdir path exist before
patching the sources
Jose Quaresma via lists.openembedded.org
escreveu no dia
quinta, 19/08/2021 à(s) 08:36:
>
> Hi Quentin,
>
> Quentin Schulz escreveu no dia quinta, 19/08/2021 à(s) 08:20:
> >
> > Hi Jose,
> >
> > On August
lzo was missing CVE_PRODUCT and related CVEs (at least CVE-2014-4607) were
not reported.
Signed-off-by: Marta Rybczynska
---
meta/recipes-support/lzo/lzo_2.10.bb | 2 ++
1 file changed, 2 insertions(+)
diff --git a/meta/recipes-support/lzo/lzo_2.10.bb
b/meta/recipes-support/lzo/lzo_2.10.bb
Hi Quentin,
Quentin Schulz escreveu no dia quinta, 19/08/2021 à(s) 08:20:
>
> Hi Jose,
>
> On August 18, 2021 11:28:24 PM GMT+02:00, Jose Quaresma
> wrote:
> >- There are situration when the user have the 'patchdir' defined
> >as a parameter on SRC_URI. However he doesn't know with this,
>
if the user specifies a relative path on 'patchdir' that don't exist,
the patch will fail and there are no message that indicates the real cause.
Signed-off-by: Jose Quaresma
---
meta/classes/patch.bbclass | 3 +++
1 file changed, 3 insertions(+)
diff --git a/meta/classes/patch.bbclass
It only makes sense to check if the patchdir exists when it is
defined, fixed in V3
Jose Quaresma via lists.openembedded.org
escreveu no dia
quinta, 19/08/2021 à(s) 08:53:
>
> if the user specifies a relative path on 'patchdir' that don't exist,
> the patch will fail and there are no message
On Wed, 2021-08-18 at 21:29 +0100, Jose Quaresma wrote:
> We don't need extra python collections to count the found files
> on the sstate cache and sstate mirrors.
> The main found collections provides all the files that were found,
> then we only need to count the files on sstate mirror
>
>
Small golang applications create massive memory overhead if go-runtime
is deployed. So it is helpfull to be able to disable the GO_DYNLINK
option on a per distro/local.conf basis by making it a ?= instead of =.
Signed-off-by: Oliver Kranz
---
meta/classes/goarch.bbclass | 14 +++---
1
The shadow 4.9 stops shiping /etc/default/useradd[1] and uses built-in
settings by default. Some settings are not consistent with previous
shadow 4.8.1 in oe-core. e.g. The default shell is /bin/bash rather than
/bin/sh. Per shadow 4.8.1 settings, add /etc/default/useradd back.
[1]
Hi,
Could you please check again?
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#154971):
https://lists.openembedded.org/g/openembedded-core/message/154971
Mute This Topic: https://lists.openembedded.org/mt/84969206/21656
Group Owner:
Hi Jose,
On August 19, 2021 10:29:34 AM GMT+02:00, Jose Quaresma
wrote:
>if the user specifies path on 'patchdir' that don't exist,
>the patch will fail and there are no message that indicates the real cause.
>
>Signed-off-by: Jose Quaresma
>---
> meta/classes/patch.bbclass | 2 ++
> 1 file
Hi,
I kind of missed out on this change... but I got caught up by reality
hard this morning :-(.
I currently don't see a reason why zstd is required on the host - only
systemd is having a hard dependency against zstd atm, while the other
lately added references are just optional
Hi Konrad,
On Thu, Aug 19, 2021 at 4:51 PM Konrad Weihmann wrote:
>
> I mean this is the second hard cut in the project within just weeks and
> this time it was host related, which is even harder to fix in a timely
> manner in a corporate environment (basically rolling out changes to all
> dev
Thanks for looking into this. I've used the cve_check pass from
https://lists.openembedded.org/g/openembedded-core/message/154677
and just with 'lzo' there are no results. I can add both if that seems
safer, fine for me. Will submit a new version.
Regards,
Marta
On Thu, Aug 19, 2021 at 2:54 PM
On Wed, Aug 11, 2021 at 4:52 PM Joshua Watt wrote:
> Moving the function will allow other classes to capture which CVEs have
> been patched, in particular SBoM generation.
>
> Also add a function to capture the CPE ID from the CVE Product and
> Version
>
>
Do you have a link to some resource on
On Thu, 2021-08-19 at 16:50 +0200, Konrad Weihmann wrote:
> I kind of missed out on this change... but I got caught up by reality
> hard this morning :-(.
>
> I currently don't see a reason why zstd is required on the host - only
> systemd is having a hard dependency against zstd atm, while the
This replaces the default value of 'lzo', it might be safer to use +=
so both this name and just lzo are searched for.
The CVE database isn't very reliable for consistent naming, so I
prefer to cover all bases.
Ross
On Thu, 19 Aug 2021 at 07:33, Marta Rybczynska wrote:
>
> lzo was missing
Our UPSTREAM_CHECK_URI was looking at SourceForge, but development has
moved to GitHub so update the URI.
Update to 2.0.
Swap musl-decls-compat.patch for a backport of an upstream commit.
Replace do_install commands with a backport of an upstream commit to
install the PAM module correctly.
On Thu, Aug 19, 2021 at 2:17 AM Purushottam Choudhary
wrote:
> Could you please check again?
Thanks, line wrap issues are fixed in this version.
Steve
>
>
>
>
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#154974):
From: Bruce Ashfield
Updating linux-yocto/5.4 to the latest korg -stable release that comprises
the following commits:
b704883aa8dc Linux 5.4.141
983d6a6b7e3c btrfs: don't flush from btrfs_delayed_inode_reserve_metadata
ea13f678a3fd btrfs: export and rename qgroup_reserve_meta
From: Purushottam Choudhary
Currently in dunfell branch python3 version is 3.8.11.
so, python3_3.8.10.bb is not needed.
Hence, removed.
Signed-off-by: Purushottam Choudhary
Signed-off-by: Steve Sakoman
---
.../recipes-devtools/python/python3_3.8.10.bb | 363 --
1 file
From: Ross Burton
The OVMF target binaries are (currently) x86-specific, but the native
tools to build them are not.
Make the COMPATIBLE_HOST assignment target-specific, so that the native
tools can be built on an arm64 build server.
Signed-off-by: Ross Burton
Signed-off-by: Richard Purdie
From: Bruce Ashfield
Updating linux-yocto/5.4 to the latest korg -stable release that comprises
the following commits:
5b1de8e15f0f Linux 5.4.137
ebb1b38be0c9 ipv6: ip6_finish_output2: set sk into newly allocated nskb
6c04123962f0 ARM: dts: versatile: Fix up interrupt controller
From: Bruce Ashfield
Updating linux-yocto/5.4 to the latest korg -stable release that comprises
the following commits:
e350cd02e293 Linux 5.4.139
03ff8a4f9db6 spi: mediatek: Fix fifo transfer
a0f66ddf05c2 bpf, selftests: Adjust few selftest outcomes wrt unreachable
code
Please review this next set of patches for dunfell and have comments back by
end of day Monday.
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/2469
The following changes since commit ce78c16409363741d59a2f787aca66077bec93cd:
sstate.bbclass:
From: Alexandre Belloni
The test uses the broken out time and can only handle about 59s of delay,
use a UNIX timestamp to allow for up to a 300s delay.
[YOCTO #14463]
Signed-off-by: Alexandre Belloni
Signed-off-by: Richard Purdie
(cherry picked from commit
From: Dragos-Marian Panait
sys-utils/ipcutils: be careful when call calloc() for uint64 nmembs
Fix: #1395
Signed-off-by: Karel Zak
CVE: CVE-2021-37600
Upstream-Status: Backport [1c9143d0c1f979c3daf10e1c37b5b1e916c22a1c]
Signed-off-by: Dragos-Marian Panait
Signed-off-by: Alexandre Belloni
From: Ross Burton
These two CVEs are specific to the Node package node-tar.
Signed-off-by: Ross Burton
Signed-off-by: Richard Purdie
(cherry picked from commit bc7216e8148d0dee7b56e6851da6615e93647a0a)
Signed-off-by: Steve Sakoman
---
meta/recipes-extended/tar/tar_1.32.bb | 3 +++
1 file
From: Richard Purdie
We dont control the test output and sometimes see badly encoded characters.
These don't affect the operation of the code we're running. Use
errors='replace' to avoid those issues and the resulting test failures.
Signed-off-by: Richard Purdie
(cherry picked from commit
From: hongxu
Install SDK to non-default dir, sysmlink mkfs.vfat is invalid
$ ./sdk.sh -y -d ./dnf-2 -S -D
$ ls sysroots/x86_64-wrlinuxsdk-linux/usr/bin/mkfs.vfat -al
lrwxrwxrwx 1 hjia users 99 Aug 10 20:38
sysroots/x86_64-wrlinuxsdk-linux/usr/bin/mkfs.vfat ->
From: Khem Raj
This patch enables building image based SDKs for multi-libbed images
e.g. lib32-core-image-minimal and so on. Change the path to nativesdk
tools to use recipe-sysroot since thats where the nativesdk components
are installed and it will need access to qemu wrappers during build for
From: Dmitry Baryshkov
Add firmware packages for the recent Qualcomm SoCs:
- linux-firmware-qcom-adreno-a650, linux-firmware-qcom-adreno-a660,
containing firmware for Adreno A630 and A650 GPUs
- linux-firmware-qcom-sm8250-audio, linux-firmware-sm8250-compute,
containing firmware for
On 19.08.21 18:06, Richard Purdie wrote:
On Thu, 2021-08-19 at 16:50 +0200, Konrad Weihmann wrote:
I kind of missed out on this change... but I got caught up by reality
hard this morning :-(.
I currently don't see a reason why zstd is required on the host - only
systemd is having a hard
On 2021-08-18 7:51 p.m., Randy MacLeod wrote:
On 2021-08-18 7:05 p.m., Sakib Sajal wrote:
Update glibc to head of release/2.34/master branch to
to include fixes, includes fix for CVE-2021-38604:
Changelog:
glibc.git$ git log --oneline ae37d06c7d127817ba43850f0f898b793d42aea7...
7c987a5ccb
On Thu, 2021-08-19 at 18:31 +0200, Konrad Weihmann wrote:
>
> On 19.08.21 18:06, Richard Purdie wrote:
> > On Thu, 2021-08-19 at 16:50 +0200, Konrad Weihmann wrote:
> > > I kind of missed out on this change... but I got caught up by reality
> > > hard this morning :-(.
> > >
> > > I currently
I have a branch called jpew/sbom in poky-contrib with my WIP changes.
http://git.yoctoproject.org/cgit.cgi/poky-contrib/log/?h=jpew/sbom
On Thu, Aug 19, 2021, 11:04 AM Marta Rybczynska
wrote:
>
> On Wed, Aug 11, 2021 at 4:52 PM Joshua Watt wrote:
>
>> Moving the function will allow other
On Thu, Aug 19, 2021, 11:31 AM Konrad Weihmann
wrote:
>
>
> On 19.08.21 18:06, Richard Purdie wrote:
> > On Thu, 2021-08-19 at 16:50 +0200, Konrad Weihmann wrote:
> >> I kind of missed out on this change... but I got caught up by reality
> >> hard this morning :-(.
> >>
> >> I currently don't
This patch is a follow on of the the PR server rework in bitbake to add
read-only support. The shift to using the bb.asyncrpc code in the PR
server and client brings issues with respect to reuse of the same
asyncio loop in different processes. This patch removes the PR service
connection caching
Add firmware packages for the recent Qualcomm SoCs:
- linux-firmware-qcom-adreno-a650, linux-firmware-qcom-adreno-a660,
containing firmware for Adreno A630 and A650 GPUs
- linux-firmware-qcom-sm8250-audio, linux-firmware-sm8250-compute,
containing firmware for audio and comute DSPs on
51 matches
Mail list logo