Warning: wall of text ahead. Sorry about that, but I believe it is
important that we get this right if we are redesigning it.
TL;DR: see the end for the new suggested licensing variables.
> -Original Message-
> From: openembedded-de...@lists.openembedded.org
On Fri, Feb 18, 2022 at 3:36 PM Steve Sakoman wrote:
> On Tue, Feb 15, 2022 at 5:59 PM Tim Orling wrote:
> >
> > Changes are only security and bug fixes.
>
> I'm seeing ptest errors:
>
> WARNING: core-image-sato-sdk-ptest-1.0-r0 do_testimage: There were
> failing ptests.
> Traceback (most
Folks,
As a follow-on to yesterday's email and replies, I would like to make
the following proposal for dealing with the changes to
INCOMPATIBLE_LICENSE and associated variables.
Current Usage:
INCOMPATIBLE_LICENSE is a list of licenses that are considered
incompatible with a distro's
this is bugfix release
https://github.com/libgit2/libgit2/releases/tag/v1.4.1
Signed-off-by: Khem Raj
---
.../libgit2/{libgit2_1.4.0.bb => libgit2_1.4.1.bb}| 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
rename meta/recipes-support/libgit2/{libgit2_1.4.0.bb =>
On Tue, Feb 15, 2022 at 5:59 PM Tim Orling wrote:
>
> Changes are only security and bug fixes.
I'm seeing ptest errors:
WARNING: core-image-sato-sdk-ptest-1.0-r0 do_testimage: There were
failing ptests.
Traceback (most recent call last):
File
On Fri, 2022-02-18 at 23:34 +, Peter Kjellerstedt wrote:
> Warning: wall of text ahead. Sorry about that, but I believe it is
> important that we get this right if we are redesigning it.
>
> TL;DR: see the end for the new suggested licensing variables.
>
> > -Original Message-
> >
> -Original Message-
> From: Richard Purdie
> Sent: den 19 februari 2022 01:45
> To: Peter Kjellerstedt ; Saul Wold
> ; openembedded-
> architect...@lists.openembedded.org; OE-core c...@lists.openembedded.org>; OpenEmbedded Devel List de...@lists.openembedded.org>
> Subject: Re: [oe]
On Fri, Feb 18, 2022 at 2:27 PM Tim Orling wrote:
>
>
>
> On Fri, Feb 18, 2022 at 3:36 PM Steve Sakoman wrote:
>>
>> On Tue, Feb 15, 2022 at 5:59 PM Tim Orling wrote:
>> >
>> > Changes are only security and bug fixes.
>>
>> I'm seeing ptest errors:
>>
>> WARNING:
On Fri, 18 Feb 2022, at 16:43, Khem Raj wrote:
> On Thu, Feb 17, 2022 at 9:43 PM Andrew Jeffery wrote:
>>
>> On modern Power systems `uname -m` reports 'ppc64le'. However, Rust's
>> toolchain names the architecture 'powerpc64le'.
>>
>> Introduce RS_BUILD_ARCH to provide an indirection to fix
Hi,
On Fri, Feb 18, 2022 at 09:03:53AM +0100, Alexander Kanavin wrote:
> You should really try per-image INCOMPATIBLE_LICENSE :) Maintaining
> those whitelists/excludes is awkward, as developers constantly want
> more of them.
Hmm, this rings a bell. Likely yes then :)
But on the other hand
Hi,
On Thu, Feb 17, 2022 at 04:20:01PM -0800, Andre McCurdy wrote:
> On Thu, Feb 17, 2022 at 3:01 PM Saul Wold wrote:
> >
> > Folks,
> >
> > I am working on a proposal to re-write how INCOMPATIBLE_LICENSES is used
> > and processed to possibly include a COMPATIBLE_LICENSES variable as
> > well,
You should really try per-image INCOMPATIBLE_LICENSE :) Maintaining
those whitelists/excludes is awkward, as developers constantly want
more of them.
Alex
On Fri, 18 Feb 2022 at 09:00, Mikko Rapeli wrote:
>
> Hi,
>
> On Thu, Feb 17, 2022 at 04:20:01PM -0800, Andre McCurdy wrote:
> > On Thu, Feb
In oe-core commit 67dd505c42 ("librsvg: do not enable nativesdk"),
nativesdk support for librsvg has been disabled:
> rust is not currently available for nativesdk builds:
> WARNING: Nothing PROVIDES 'nativesdk-libstd-rs' (but
>
This series fixes a number of issues in grub 2.04. It is a part of a security
series [1], except of the patch 5. The patch 5 is a dependency of patch 6,
but also a bugfix on its own.
While none of them has an official CVE, they fix a number of NULL pointer
dereferences, memory leaks and similar
This fix removes a possible NULL pointer dereference in grub
networking code. It is a part of a security series [1].
[1] https://lists.gnu.org/archive/html/grub-devel/2021-03/msg7.html
Signed-off-by: Marta Rybczynska
---
...ible-dereference-to-of-a-NULL-pointe.patch | 39
Backport a fix for a memory leak in grub_mmap_iterate(). This patch
is a part of a security series [1]
[1] https://lists.gnu.org/archive/html/grub-devel/2021-03/msg7.html
Signed-off-by: Marta Rybczynska
---
...leak-when-iterating-over-mapped-memo.patch | 39 +++
This change fixes wrong handling of argc == 0 causing a memory leak.
It is a part of a security series [1].
[1] https://lists.gnu.org/archive/html/grub-devel/2021-03/msg7.html
Signed-off-by: Marta Rybczynska
---
...n-parser-Fix-resource-leak-if-argc-0.patch | 50 +++
This change fixes the malformed device paths in EFI handling.
Device paths of length 4 or shorter could cause different
kinds of unexpected behaviours.
This patch is NOT a part of [1], but is a dependency of one
of the patches included in the series.
[1]
This change fixes a dangling memory pointer in the grub TFTP code.
It is a part of a security series [1].
[1] https://lists.gnu.org/archive/html/grub-devel/2021-03/msg7.html
Signed-off-by: Marta Rybczynska
---
...net-tftp-Fix-dangling-memory-pointer.patch | 33 +++
This patch adds a fix for an unitialized re_token in grub's gnulib.
It is a part of a security series [1].
[1] https://lists.gnu.org/archive/html/grub-devel/2021-03/msg7.html
Signed-off-by: Marta Rybczynska
---
...b-regcomp-Fix-uninitialized-re_token.patch | 55 +++
Add a fix for unnecessary assignements grub's io/lzopio. This patch
is a part of a security series [1].
[1] https://lists.gnu.org/archive/html/grub-devel/2021-03/msg7.html
Signed-off-by: Marta Rybczynska
---
...e-unnecessary-self-assignment-errors.patch | 41 +++
This fix adds a missing check for NULL pointer from an external source
in grub's kern/partition. It is a part of a security series [1].
[1] https://lists.gnu.org/archive/html/grub-devel/2021-03/msg7.html
Signed-off-by: Marta Rybczynska
---
...heck-for-NULL-before-dereferencing-i.patch | 43
This patch adds initialization of a structure in grub's zstd, which
might be left uninitialized by the compiler. It is a part of a security
series [1].
[1] https://lists.gnu.org/archive/html/grub-devel/2021-03/msg7.html
Signed-off-by: Marta Rybczynska
---
Add a fix for a memory leak in grub's disk/ldm. It is a part of
a security series [1].
[1] https://lists.gnu.org/archive/html/grub-devel/2021-03/msg7.html
Signed-off-by: Marta Rybczynska
---
...re-comp-data-is-freed-before-exiting.patch | 128 ++
This patch adds a fix for a memory leak in grub's disk/ldm.
It is a part of a security series [1].
[1] https://lists.gnu.org/archive/html/grub-devel/2021-03/msg7.html
Signed-off-by: Marta Rybczynska
---
...-If-failed-then-free-vg-variable-too.patch | 28 +++
This change fixes a memory leak on error in grub_efi_get_filename().
It is a part of a security series [1].
[1] https://lists.gnu.org/archive/html/grub-devel/2021-03/msg7.html
Signed-off-by: Marta Rybczynska
---
...-kern-efi-Fix-memory-leak-on-failure.patch | 30 +++
This change fixes a possible NULL pointer dereference in grub's
EFI support. It is a part of a security series [1].
[1] https://lists.gnu.org/archive/html/grub-devel/2021-03/msg7.html
Signed-off-by: Marta Rybczynska
---
...ix-possible-NULL-pointer-dereference.patch | 65 +++
This changes adds a fix for an unused variable issue in gnulib.
It is a part of a security series [1].
[1] https://lists.gnu.org/archive/html/grub-devel/2021-03/msg7.html
Signed-off-by: Marta Rybczynska
---
...ulib-regexec-Resolve-unused-variable.patch | 59 +++
This change adds a fix for an unitialized token structure in gnulib.
It is a part of a security series [1].
[1] https://lists.gnu.org/archive/html/grub-devel/2021-03/msg7.html
Signed-off-by: Marta Rybczynska
---
...mp-Fix-uninitialized-token-structure.patch | 53 +++
This change adds a fix for a NULL pointer dereference of state
in gnulib. It is a part of a security series [1].
[1] https://lists.gnu.org/archive/html/grub-devel/2021-03/msg7.html
Signed-off-by: Marta Rybczynska
---
...-Fix-dereference-of-a-possibly-NULL-.patch | 52 +++
Add a fix for gnulib's regexec NULL pointer dereference. This patch
a part of a security series [1].
[1] https://lists.gnu.org/archive/html/grub-devel/2021-03/msg7.html
Signed-off-by: Marta Rybczynska
---
...egexec-Fix-possible-null-dereference.patch | 53 +++
Add a fix for a memory leak in grub'd disk/ldm. It is a part of
a security series [1].
[1] https://lists.gnu.org/archive/html/grub-devel/2021-03/msg7.html
Signed-off-by: Marta Rybczynska
---
...ory-leak-on-uninserted-lv-references.patch | 50 +++
This patch adds a fix for a memory leak in grub's path construction
in zfs. It is a part of a security series [1].
[1] https://lists.gnu.org/archive/html/grub-devel/2021-03/msg7.html
Signed-off-by: Marta Rybczynska
---
...source-leaks-while-constructing-path.patch | 121 ++
This patch adds a fix for a possible integer overflows in grub's zfs.
It is a part of a security series [1].
[1] https://lists.gnu.org/archive/html/grub-devel/2021-03/msg7.html
Signed-off-by: Marta Rybczynska
---
...3-zfs-Fix-possible-integer-overflows.patch | 56 +++
This patch fixes an error check in grub's zfsinfo. It is a part of
a security series [1].
[1] https://lists.gnu.org/archive/html/grub-devel/2021-03/msg7.html
Signed-off-by: Marta Rybczynska
---
...-a-check-for-error-allocating-memory.patch | 35 +++
This patch fixes a memory leak in grub's affs. It is a part of
a security series [1].
[1] https://lists.gnu.org/archive/html/grub-devel/2021-03/msg7.html
Signed-off-by: Marta Rybczynska
---
.../files/0025-affs-Fix-memory-leaks.patch| 82 +++
This patch fixes a possible unintended sign extension in grub's
libgcrypt/mpi. It is a part of a security series [1].
[1] https://lists.gnu.org/archive/html/grub-devel/2021-03/msg7.html
Signed-off-by: Marta Rybczynska
---
...x-possible-unintended-sign-extension.patch | 36
This patch adds a fix for a possible NULL dereference in grub's
libgcrypt/mpi. It is a part of a security series [1].
[1] https://lists.gnu.org/archive/html/grub-devel/2021-03/msg7.html
Signed-off-by: Marta Rybczynska
---
...pt-mpi-Fix-possible-NULL-dereference.patch | 33
This patch adds a fix for a memory leak in grub's normal/completion.
It is a part of a security series [1].
[1] https://lists.gnu.org/archive/html/grub-devel/2021-03/msg7.html
Signed-off-by: Marta Rybczynska
---
...n-Fix-leaking-of-memory-when-process.patch | 52 +++
This patch fixes a memory leak in grub's syslinux parsing. It is a part of
a security series [1].
[1] https://lists.gnu.org/archive/html/grub-devel/2021-03/msg7.html
Signed-off-by: Marta Rybczynska
---
...slinux-Fix-memory-leak-while-parsing.patch | 43 +++
This patch removes an uneeded return value in grub's (static)
grub_video_gop_fill_mode_info(). It is a part of a security series [1].
[1] https://lists.gnu.org/archive/html/grub-devel/2021-03/msg7.html
Signed-off-by: Marta Rybczynska
---
...move-unnecessary-return-value-of-gru.patch | 94
This patch adds a fix for a potential integer overflow in grub's
video/fb/fbfill. It is a part of a security series [1].
[1] https://lists.gnu.org/archive/html/grub-devel/2021-03/msg7.html
Signed-off-by: Marta Rybczynska
---
...bfill-Fix-potential-integer-overflow.patch | 78
Add a fix of a memory leak in grub's commands/hashsum. It is a part
of a security series [1].
[1] https://lists.gnu.org/archive/html/grub-devel/2021-03/msg7.html
Signed-off-by: Marta Rybczynska
---
...0-commands-hashsum-Fix-a-memory-leak.patch | 56 +++
This patch adds a fix for a NULL pointer dereference in grub's
util/grub-install. It is a part of a security series [1].
[1] https://lists.gnu.org/archive/html/grub-devel/2021-03/msg7.html
Signed-off-by: Marta Rybczynska
---
...nstall-Fix-NULL-pointer-dereferences.patch | 41
This patch adds a fix for an incorrect use of a negative value in grub's
util/glue-efi. It is a part of a security series [1].
[1] https://lists.gnu.org/archive/html/grub-devel/2021-03/msg7.html
Signed-off-by: Marta Rybczynska
---
...x-incorrect-use-of-a-possibly-negati.patch | 50
This patch adds a fix for incorrect casting from signed to unsigned
in grub's util/grub-editenv. It is a part of a security series [1].
[1] https://lists.gnu.org/archive/html/grub-devel/2021-03/msg7.html
Signed-off-by: Marta Rybczynska
---
...v-Fix-incorrect-casting-of-a-signed-.patch | 46
This patch adds a check for a NULL pointer before use in grub's
loader/xnu. It is a part of a security series [1].
[1] https://lists.gnu.org/archive/html/grub-devel/2021-03/msg7.html
Signed-off-by: Marta Rybczynska
---
...k-if-pointer-is-NULL-before-using-it.patch | 42 +++
This patch fixes a memory leak in grub's loader/xnu when an error is
detected in grub_xnu_writetree_toheap(). It is a part of a security
series [1].
[1] https://lists.gnu.org/archive/html/grub-devel/2021-03/msg7.html
Signed-off-by: Marta Rybczynska
---
This patch adds a fix for a NULL pointer dereference in grub's
commands/ls. It is a part of a security series [1].
[1] https://lists.gnu.org/archive/html/grub-devel/2021-03/msg7.html
Signed-off-by: Marta Rybczynska
---
...ire-device_name-is-not-NULL-before-p.patch | 33 +++
This patch adds a fix for a possible integer overflow in grub's
video/fb/video_fb. It is a part of a security series [1].
[1] https://lists.gnu.org/archive/html/grub-devel/2021-03/msg7.html
Signed-off-by: Marta Rybczynska
---
...deo_fb-Fix-possible-integer-overflow.patch | 39
This patch adds a fix for multiple integer overflows in grub's
video/fb/video_fb. It is a part of a security series [1].
[1] https://lists.gnu.org/archive/html/grub-devel/2021-03/msg7.html
Signed-off-by: Marta Rybczynska
---
...eo_fb-Fix-multiple-integer-overflows.patch | 104
This patch removes dead code from grub's gfxmenu/gui_list. It is
a part of a security series [1].
[1] https://lists.gnu.org/archive/html/grub-devel/2021-03/msg7.html
Signed-off-by: Marta Rybczynska
---
...-Remove-code-that-coverity-is-flaggi.patch | 34 +++
This patch adds a fix for handling malformed JPEG files in grub's
video/readers/jpeg. It is a part of a security series [1].
[1] https://lists.gnu.org/archive/html/grub-devel/2021-03/msg7.html
Signed-off-by: Marta Rybczynska
---
...eg-Test-for-an-invalid-next-marker-r.patch | 38
This patch adds a fix for a memory leak in grub's loader/xnu.
It is a part of a security series [1].
[1] https://lists.gnu.org/archive/html/grub-devel/2021-03/msg7.html
Signed-off-by: Marta Rybczynska
---
.../0038-loader-xnu-Fix-memory-leak.patch | 38 +++
This patch adds a fix for checking for NULL in grub's loader/bsd.
It is a part of a security series [1].
[1] https://lists.gnu.org/archive/html/grub-devel/2021-03/msg7.html
Signed-off-by: Marta Rybczynska
---
...ader-bsd-Check-for-NULL-arg-up-front.patch | 47 +++
This patch adds a fix for a crash in grub's script handling. It is
a part of a security series [1].
[1] https://lists.gnu.org/archive/html/grub-devel/2021-03/msg7.html
Signed-off-by: Marta Rybczynska
---
...void-crash-when-using-outside-a-func.patch | 37 +++
This patch adds a fix for a NULL pointer dereference in grub's
script/execute. It is a part of a security series [1].
[1] https://lists.gnu.org/archive/html/grub-devel/2021-03/msg7.html
Signed-off-by: Marta Rybczynska
---
...ix-NULL-dereference-in-grub_script_e.patch | 28
This patch fixes a potential overflow in grub's disk/cryptodisk. It is
a part of a security series [1]
[1] https://lists.gnu.org/archive/html/grub-devel/2021-03/msg7.html
Signed-off-by: Marta Rybczynska
---
...odisk-Fix-potential-integer-overflow.patch | 50 +++
This patch adds a fix for a possible negative shift in grub's zfs.
It is a part of a security series [1].
[1] https://lists.gnu.org/archive/html/grub-devel/2021-03/msg7.html
Signed-off-by: Marta Rybczynska
---
...ix-possible-negative-shift-operation.patch | 42 +++
This patch adds a fix for a volume name length check in grub's
hfsplus. It is a part of a security series [1].
[1] https://lists.gnu.org/archive/html/grub-devel/2021-03/msg7.html
Signed-off-by: Marta Rybczynska
---
...that-the-volume-name-length-is-valid.patch | 43 +++
The [3] should be
https://git.openembedded.org/openembedded-core/commit/?id=311e61ae14b7216f5b98f1afe0e791644a07c9d0
that's where LAYERSERIES_CORENAMES was changed to kirkstone (it's not due
to LAYERSERIES_COMPAT changes, these changes are what people need to update
in their layer).
On Fri, Feb
Updates within bitbake now require this call to be triggered somewhere with
floating git source revs. Add the missing call. Issue can be reproduced with:
devtool check-upgrade-status dbus-wait
Signed-off-by: Richard Purdie
---
meta/lib/oe/recipeutils.py | 1 +
1 file changed, 1 insertion(+)
Richard Purdie writes:
>> > This script searches for a list of variable that have been renamed
>> > and converts them to their more descriptive names.
s/descriptive/politically correct/
>> again: most of these renamings make identifiers much less descriptive
>> because they now sound like
If you provide ASFLAGS CMake will already load them into CMAKE_AS_FLAGS
anyway, they will just not be force-overriden.
Martin
Am 17.02.22 um 20:46 schrieb Khem Raj:
On 2/17/22 7:57 AM, Martin Beeger wrote:
As discussied in [YOCTO #14717] cmake contains a OEToolchainConfig.cmake
file to
On Fri, 2022-02-18 at 14:40 +0100, Enrico Scholz via lists.openembedded.org
wrote:
> "Saul Wold" writes:
>
> > From: Saul Wold
> >
> > This script searches for a list of variable that have been renamed
> > and converts them to their more descriptive names.
>
> again: most of these renamings
On Thu, 2022-02-17 at 15:01 -0800, Saul Wold wrote:
> I am working on a proposal to re-write how INCOMPATIBLE_LICENSES is used
> and processed to possibly include a COMPATIBLE_LICENSES variable as
> well, see PeterK's email [0]
>
> I am trying to determine the usage of WHITELIST_ which would be
On Fri, 2022-02-18 at 14:13 +, Richard Purdie via lists.openembedded.org
wrote:
> On Thu, 2022-02-17 at 15:01 -0800, Saul Wold wrote:
> > I am working on a proposal to re-write how INCOMPATIBLE_LICENSES is used
> > and processed to possibly include a COMPATIBLE_LICENSES variable as
> > well,
Hello,
+layer maintainers to ensure they see that.
On 18/02/2022 12:37:04+0100, Martin Jansa wrote:
> The [3] should be
> https://git.openembedded.org/openembedded-core/commit/?id=311e61ae14b7216f5b98f1afe0e791644a07c9d0
> that's where LAYERSERIES_CORENAMES was changed to kirkstone (it's not due
On Fri, 2022-02-18 at 15:27 +0100, Enrico Scholz wrote:
> Richard Purdie writes:
>
> > > > This script searches for a list of variable that have been renamed
> > > > and converts them to their more descriptive names.
>
> s/descriptive/politically correct/
We did try and make some of the names
On Fri, 18 Feb 2022 at 15:27, Enrico Scholz via lists.openembedded.org
wrote:
> > Unfortunately there likely isn't a perfect rename and these were the
> > best we were able to come up with.
>
> Why is the rename done at all? It makes the product just worse due to a
> less usable api and because
"Saul Wold" writes:
> From: Saul Wold
>
> This script searches for a list of variable that have been renamed
> and converts them to their more descriptive names.
again: most of these renamings make identifiers much less descriptive
because they now sound like boolean flags instead of lists
>
We're standardising on SPDX license names so it is overdue to change
the ones in the LICENSE fileds to the SPDX values. Add a conversion
script which makes this straightforward on the most part.
Ultimately this allows the core code to be more efficient and not need
to consult the mappings.
This reverts commit 6184b56a7a0fc6f5d19fdfb81e7453667f7da940.
The above commit breaks building of recipes where sources are checked out from
Git and PATCHTOOL = "git". The do_patch tasks fails before applying the
first patch without any helpful error messages.
GitApplyTree::_isInitialized():
+
On Thu, 2022-02-17 at 17:39 -0600, Joseph Reynolds wrote:
> There seems to a typo in a comment in archiver.bbclass; ARCHIVE_MODE
> should be ARCHIVER_MODE for "mirror" (letter R is missing).
>
> https://github.com/openembedded/openembedded-core/blob/master/meta/classes/archiver.bbclass#L8
>
>
Richard Purdie writes:
>> > > > This script searches for a list of variable that have been renamed
>> > > > and converts them to their more descriptive names.
>>
>> s/descriptive/politically correct/
>
> We did try and make some of the names better describe what the variables
> do and make the
75 matches
Mail list logo