Re: [OE-core] [PATCH] tune-cortexa72: Enable the crc extension by default for cortexa72

On Wed, Jan 12, 2022 at 04:14:36PM -0800, Khem Raj wrote: > [Please note: This e-mail is from an EXTERNAL e-mail address] > > > > On Wed, Jan 12, 2022 at 1:58 PM Richard Purdie < > richard.pur...@linuxfoundation.org> wrote: > > On Wed, 2022-01-12 at 14:23 -0500, Jon Mason wrote: > > On

[OE-core] Zero umask when unpacking sstate packages

Hi, I often see this diff churn in my buildistory for shadow-native (and similar issues with icedtea7-native from meta-java): -drwxr-xr-x - - 40 ./var/spool/mail +drwxrwxr-x - - 40 ./var/spool/mail One can reproduce it with: # bitbake -c

[OE-core] [PATCH] grub-efi: Add xen_boot support when 'xen' is in DISTRO_FEATURES for aarch64

'xen-boot' module is available only for aarch64. Signed-off-by: Kamil Dziezyk --- meta/recipes-bsp/grub/grub-efi_2.06.bb | 3 +++ 1 file changed, 3 insertions(+) diff --git a/meta/recipes-bsp/grub/grub-efi_2.06.bb b/meta/recipes-bsp/grub/grub-efi_2.06.bb index a8cc209a02..df5f23e22e 100644

[OE-core] [PATCH] tune-cortexa72: Drop the redundant cortexa72-crc tune

We have enabled the crc extension by default for cortexa72 in patch ("tune-cortexa72: Enable the crc extension by default for cortexa72"), then the cortexa72-crc seems redundant. So drop it. We also rename the cortexa72-crc-crypto to cortexa72-crypto. With these changes, it will break the BSPs

[OE-core] [hardknott][PATCH 0/9] Pull request (cover letter only)

The following changes since commit b90dab2c8634c052c101cebb38fcd3d869f3b1bb: linux-yocto: add libmpc-native to DEPENDS (2022-01-10 11:57:23 +) are available in the Git repository at: git://push.openembedded.org/openembedded-core-contrib stable/hardknott-next Alexander Kanavin (1):

[OE-core][dunfell 07/11] wic: use shutil.which

From: Mingli Yu Use shutil.which to find the executable instead to silence the below warning: $ cat tmp/work/intel_x86_64-poky-linux/core-image-base/1.0-r5/temp/log.do_image_wic [snip] DEBUG: Executing shell function do_image_wic /path/layers/oe-core/scripts/wic:27: DeprecationWarning: The

[OE-core][dunfell 08/11] expat: Update HOMEPAGE to current url

From: Richard Purdie Upstream pointed out we were using an old url for HOMEPAGE. Update it to the current url. Signed-off-by: Richard Purdie (cherry picked from commit f3a7e2ba247efe72154c263d1d680aaf3da5b609) Signed-off-by: Steve Sakoman --- meta/recipes-core/expat/expat_2.2.9.bb | 2 +- 1

[OE-core][dunfell 00/11] Patch review

Please review this set of patches for dunfell and have comments back by end of day Monday. Passed a-full on autobuilder: https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/3112 The following changes since commit da3bd5e0934b6462ae53225a58305235849b32d5: asciidoc: properly

[OE-core][dunfell 01/11] valgrind: skip flakey ptest (gdbserver_tests/hginfo)

This ptest was already disabled in master branch with: valgrind: skip broken ptests for glibc 2.34 https://git.openembedded.org/openembedded-core/commit/?id=c177c7f9ef6f90ca49074f003accb8e9a1a645aa Signed-off-by: Steve Sakoman --- meta/recipes-devtools/valgrind/valgrind/remove-for-aarch64 | 1

[OE-core][dunfell 04/11] cve-check: add lockfile to task

From: Konrad Weihmann this should prevent running into the very rare error sqlite3.OperationalError: attempt to write a readonly database As highlighted by https://www.sqlite.org/faq.html#q5 it is likely that the adapter won't allow use multiple exec calls at the same time. So it's best to

[OE-core][dunfell 05/11] xserver-xorg: update CVE_PRODUCT

From: Anuj Mittal Some of the CVEs have x_server as the product name. Signed-off-by: Anuj Mittal Signed-off-by: Richard Purdie (cherry picked from commit 4d5d63cf8605515bb659b6b732683d7fe6540728) Signed-off-by: Steve Sakoman --- meta/recipes-graphics/xorg-xserver/xserver-xorg.inc | 2 +- 1

[OE-core][dunfell 06/11] wic: misc: Do not find for executables in ASSUME_PROVIDED

From: Ricardo Ribalda Delgado Executables like tar won't be available on the native sysroot, as they are part of the ASSUME_PROVIDED variable. Cc: Paul Barker Signed-off-by: Ricardo Ribalda Delgado Signed-off-by: Richard Purdie (cherry picked from commit

[OE-core][dunfell 03/11] cve-update-db-native: use fetch task

From: Ross Burton Instead of inventing a new task to fetch the CVE data, use the existing fetch task. Signed-off-by: Ross Burton Signed-off-by: Richard Purdie (cherry picked from commit f5f97d33a1703d75b9fd9760f2c7767081538e00) Signed-off-by: Steve Sakoman --- meta/classes/cve-check.bbclass

[OE-core][dunfell 02/11] oeqa/selftest/cases/tinfoil.py: increase timeout 60->120s test_wait_event

The test is timing out on fedora autobuilder workers Signed-off-by: Steve Sakoman --- meta/lib/oeqa/selftest/cases/tinfoil.py | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/meta/lib/oeqa/selftest/cases/tinfoil.py b/meta/lib/oeqa/selftest/cases/tinfoil.py index

Re: [OE-core] [PATCH] sanity: Drop TUNEABI, TUNEABI_WHITELIST, TUNEABI_OVERRIDE

Just as confirmation, places I know this code was used are no longer being used. (Toolchains now pretty much all come from YP sources vs a magic binary) --Mark On 1/13/22 3:27 PM, Richard Purdie wrote: These were added nearly a decade ago but there are no users in OE-Core. I checked with the

Re: [OE-core] [PATCH] valgrind: Enable network for ptest builds

On Thu, Jan 13, 2022 at 1:58 PM Richard Purdie wrote: > > On Thu, 2022-01-13 at 11:12 -0800, Khem Raj wrote: > > On Thu, Jan 13, 2022 at 9:46 AM Konrad Weihmann > > wrote: > > > > > > My understanding is to add > > > > > > --nonet > > > > > > to XMLLINT_FLAGS = --noblanks --noout --xinclude

[OE-core] [hardknott][PATCH 5/8] qemu: CVE-2021-3713

Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 1 + .../qemu/qemu/CVE-2021-3713.patch | 68 +++ 2 files changed, 69 insertions(+) create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2021-3713.patch diff --git

[OE-core] [hardknott][PATCH 7/8] qemu: CVE-2021-3930

Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 1 + .../qemu/qemu/CVE-2021-3930.patch | 53 +++ 2 files changed, 54 insertions(+) create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2021-3930.patch diff --git

[OE-core] [hardknott][PATCH 6/8] qemu: CVE-2021-3748

Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 1 + .../qemu/qemu/CVE-2021-3748.patch | 127 ++ 2 files changed, 128 insertions(+) create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2021-3748.patch diff --git

[OE-core] [hardknott][PATCH 8/8] qemu: CVE-2021-20196

Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 2 + .../qemu/qemu/CVE-2021-20196_1.patch | 54 +++ .../qemu/qemu/CVE-2021-20196_2.patch | 67 +++ 3 files changed, 123 insertions(+) create mode 100644

[OE-core] [hardknott][PATCH 4/8] qemu: CVE-2021-3594

Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 1 + .../qemu/qemu/CVE-2021-3594.patch | 40 +++ 2 files changed, 41 insertions(+) create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2021-3594.patch diff --git

Re: [OE-core] [hardknott][PATCH 4/8] qemu: CVE-2021-3594

Please disregard this set of patches, somehow it failed to send the first 3. sending a V2. Sorry for inconvenience On 2022-01-13 6:35 p.m., Sakib Sajal wrote: Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 1 + .../qemu/qemu/CVE-2021-3594.patch

[OE-core] [hardknott][PATCH 4/8] qemu: CVE-2021-3594

Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 1 + .../qemu/qemu/CVE-2021-3594.patch | 40 +++ 2 files changed, 41 insertions(+) create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2021-3594.patch diff --git

[OE-core] [hardknott][PATCH 3/8] qemu: CVE-2021-3595

Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 2 + .../qemu/qemu/CVE-2021-3595_1.patch | 41 +++ .../qemu/qemu/CVE-2021-3595_2.patch | 253 ++ 3 files changed, 296 insertions(+) create mode 100644

[OE-core] [hardknott][PATCH 8/8] qemu: CVE-2021-20196

Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 2 + .../qemu/qemu/CVE-2021-20196_1.patch | 54 +++ .../qemu/qemu/CVE-2021-20196_2.patch | 67 +++ 3 files changed, 123 insertions(+) create mode 100644

[OE-core] [hardknott][PATCH 6/8] qemu: CVE-2021-3748

Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 1 + .../qemu/qemu/CVE-2021-3748.patch | 127 ++ 2 files changed, 128 insertions(+) create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2021-3748.patch diff --git

Re: [OE-core] Zero umask when unpacking sstate packages

On Thu, 2022-01-13 at 23:11 +0100, Jacob Kroon wrote: > On 1/13/22 23:07, Richard Purdie wrote: > > On Thu, 2022-01-13 at 16:44 +0100, Jacob Kroon wrote: > > > Hi, > > > > > > I often see this diff churn in my buildistory for shadow-native (and > > > similar issues with icedtea7-native from

Re: [OE-core] [PATCH] tune-cortexa72: Enable the crc extension by default for cortexa72

On Wed, Jan 12, 2022 at 02:23:38PM -0500, Jon Mason wrote: > On Wed, Jan 12, 2022 at 4:11 AM Kevin Hao wrote: > > > > The crc extension is optional for the ARMv8.0 but is mandatory for the > > cortexa72, so there is no reason not to enable it for the cortexa72 > > tune. With this change, the

[OE-core] [PATCH] sanity: Drop TUNEABI, TUNEABI_WHITELIST, TUNEABI_OVERRIDE

These were added nearly a decade ago but there are no users in OE-Core. I checked with the likely users and they seem to have no current usage either. Therefore remove them. If needed for some prebuilt library somewhere, they could be implemented in the layer using them instead but I doubt these

Re: [OE-core] [PATCH] valgrind: Enable network for ptest builds

On Thu, 2022-01-13 at 11:12 -0800, Khem Raj wrote: > On Thu, Jan 13, 2022 at 9:46 AM Konrad Weihmann wrote: > > > > My understanding is to add > > > > --nonet > > > > to XMLLINT_FLAGS = --noblanks --noout --xinclude --postvalid --noent > > > > in docs/Makefile.in > > > > and we should be

[OE-core] [PATCH 1/1] wic: support 512 byte size granularity

Since 938595d1dc("wic: Add 512 Byte alignment to --offset") wic parser supports "s"/"S" suffixes, that can be used to align partition on 512 byte boundary. Nevertheless, the minimum value of size is still 1Kb. Introduce support for "s"/"S" suffixes for --size/--fixes-size. This is required for

Re: [OE-core] Zero umask when unpacking sstate packages

On Thu, 2022-01-13 at 16:44 +0100, Jacob Kroon wrote: > Hi, > > I often see this diff churn in my buildistory for shadow-native (and > similar issues with icedtea7-native from meta-java): > > -drwxr-xr-x - - 40 ./var/spool/mail > +drwxrwxr-x - -

Re: [OE-core] Zero umask when unpacking sstate packages

On 1/13/22 23:07, Richard Purdie wrote: > On Thu, 2022-01-13 at 16:44 +0100, Jacob Kroon wrote: >> Hi, >> >> I often see this diff churn in my buildistory for shadow-native (and >> similar issues with icedtea7-native from meta-java): >> >> -drwxr-xr-x - - 40

Re: [OE-core] [PATCH] valgrind: Enable network for ptest builds

Why wasn't this exposed by AB testing? And can there be a better solution (e.g. skip the validation step), since this would still break on hosts without internet. Alex On Thu, 13 Jan 2022 at 18:36, Khem Raj wrote: > do_compile_ptest_base uses xmllint which accesses internet for > validating

[OE-core] [PATCH] valgrind: Enable network for ptest builds

do_compile_ptest_base uses xmllint which accesses internet for validating DTD Signed-off-by: Khem Raj --- meta/recipes-devtools/valgrind/valgrind_3.18.1.bb | 5 + 1 file changed, 5 insertions(+) diff --git a/meta/recipes-devtools/valgrind/valgrind_3.18.1.bb

Re: [OE-core] [PATCH v2] go: fix building without SECURITY_LDFLAGS

Thanks, this should work. Alex On Thu, 13 Jan 2022 at 20:22, Dmitry Baryshkov wrote: > Commit 9985b17a30bb ("go: correctly set debug-prefix-map and build > directory") has changed CGO_LDFLAGS to the manually crafted version of > LDFLAGS to strip out DEBUG_PREFIX_MAP contents. > > However this

Re: [OE-core] [PATCH] valgrind: Enable network for ptest builds

My understanding is to add --nonet to XMLLINT_FLAGS = --noblanks --noout --xinclude --postvalid --noent in docs/Makefile.in and we should be good - haven't tried it yet but it should do the trick On 13.01.22 18:39, Alexander Kanavin wrote: Why wasn't this exposed by AB testing? And can there

Re: [OE-core] [PATCH] valgrind: Enable network for ptest builds

On Thu, Jan 13, 2022 at 9:46 AM Konrad Weihmann wrote: > > My understanding is to add > > --nonet > > to XMLLINT_FLAGS = --noblanks --noout --xinclude --postvalid --noent > > in docs/Makefile.in > > and we should be good - haven't tried it yet but it should do the trick right, good suggestion

[OE-core] [PATCH v2] go: fix building without SECURITY_LDFLAGS

Commit 9985b17a30bb ("go: correctly set debug-prefix-map and build directory") has changed CGO_LDFLAGS to the manually crafted version of LDFLAGS to strip out DEBUG_PREFIX_MAP contents. However this manually crafted version includes ${SECURITY_LDFLAGS}. If security_flags.inc is not included, the

Re: [OE-core] Question of Yocto dunfell LTS period

I received the answer to this question in IRC on 10/29/2021. 16:06 < jatedev> I saw a wiki edit that said dunfell's LTS period is now through April 2024, but I've seen no announcements. Any truth to this rumor? 16:20

[OE-core] [hardknott][PATCH] go: upgrade 1.16.10 -> 1.16.13

Release 1.16.13 includes fixes for CVE-2021-44716 and CVE-2021-44717. Signed-off-by: Sakib Sajal --- meta/recipes-devtools/go/{go-1.16.10.inc => go-1.16.13.inc} | 4 ++-- ...o-binary-native_1.16.10.bb => go-binary-native_1.16.13.bb} | 4 ++-- ...cross-canadian_1.16.10.bb =>

[OE-core] Question of Yocto dunfell LTS period

Dear folks, I found the lts period of Yocto dunfell has been extended from 2022.04 to 2024.04[1]. AFAIK, a Yocto LTS version has 2 years period. I tried to find any notice regarding this but I just found Richard's e-mail[2] in last year. Can I find any thread or notice regarding this extension?

[OE-core] [PATCH v2] valgrind: Avoid accessing network in ptest task

Avoid calling docs validation and manpages validation to avoid it Signed-off-by: Khem Raj --- v2: Patchout offending code accessing network .../0001-docs-Disable-manual-validation.patch | 36 +++ .../valgrind/valgrind_3.18.1.bb | 1 + 2 files changed, 37

[OE-core] [PATCH] tune-cortexa73: Introduce cortexa73-crypto tune

The crypto extension is optional for the Cortex-A73 processor, so we shouldn't enable the crypto by default for the cortexa73 tune. Introduce the cortexa73-crypto for the processors which do have the cryptography unit. Signed-off-by: Kevin Hao ---

Re: [OE-core] [hardknott][PATCH 3/8] qemu: CVE-2021-3595

Please disregard this set of patches, somehow it failed to send the first 2 and one in the middle. sending a V3. Sorry for inconvenience On 2022-01-13 7:06 p.m., Sakib Sajal wrote: Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 2 +

Re: [yocto] [OE-core] Question of Yocto dunfell LTS period

On 1/14/22 2:36 AM, Jate Sujjavanich wrote: > I received the answer to this question in IRC on 10/29/2021. > > 16:06 >   > I saw a wiki edit that said dunfell's LTS period is now through April > 2024, but I've seen no announcements.

[OE-core][dunfell 11/11] glibc: Add fix for data races in pthread_create and TLS access

From: Akash Hadke Inconsistency detected by ld.so: dl-tls.c: 493: _dl_allocate_tls_init: Assertion `listp->slotinfo[cnt].gen <= _rtld_local._dl_tls_generation' failed! caused by dlopen (in _dl_add_to_slotinfo and in dl_open_worker) doing listp->slotinfo[idx].gen = GL(dl_tls_generation) + 1;

[OE-core][dunfell 09/11] xserver-xorg: whitelist two CVEs

From: Ross Burton CVE-2011-4613 is specific to Debian/Ubuntu. CVE-2020-25697 is a non-trivial attack that may not actually be feasible considering the default behaviour for clients is to exit if the connection is lost. Signed-off-by: Ross Burton Signed-off-by: Richard Purdie (cherry picked

[OE-core][dunfell 10/11] parselogs: add a couple systemd false positives

From: Alexander Kanavin New systemd has changed the phrasing when skipping things, with unfortunate use of 'failed': [1.623667] systemd[1]: Journal Audit Socket was skipped because of a failed condition check (ConditionSecurity=audit). [1.688258] systemd[1]: Load Kernel Modules was

Re: [OE-core] [PATCH] nghttp2: fix for multilib support

On Thu, 2022-01-13 at 11:44 +0800, Changqing Li wrote: > From: Changqing Li > > correct the package name > > Signed-off-by: Changqing Li > --- > meta/recipes-support/nghttp2/nghttp2_1.46.0.bb | 4 ++-- > 1 file changed, 2 insertions(+), 2 deletions(-) > > diff --git

Re: [OE-core] Zero umask when unpacking sstate packages

On 1/13/22 23:20, Richard Purdie wrote: > On Thu, 2022-01-13 at 23:11 +0100, Jacob Kroon wrote: >> On 1/13/22 23:07, Richard Purdie wrote: >>> On Thu, 2022-01-13 at 16:44 +0100, Jacob Kroon wrote: Hi, I often see this diff churn in my buildistory for shadow-native (and similar

[OE-core] [PATCH] sstate: Preserve permissions when extracting tar archive

This is done by default when tar is run by the superuser, but for native recipes the corresponding task is not run as root under pseudo, so pass the flag explicitly. Suggested-by: Richard Purdie Signed-off-by: Jacob Kroon --- meta/classes/sstate.bbclass | 2 +- 1 file changed, 1 insertion(+),

[OE-core] [hardknott][PATCH] libsndfile1: fix CVE-2021-4156

From: Changqing Li Signed-off-by: Changqing Li --- .../libsndfile1/CVE-2021-4156.patch | 32 +++ .../libsndfile/libsndfile1_1.0.28.bb | 1 + 2 files changed, 33 insertions(+) create mode 100644