The semaphore fix has landed and is available from 3.11 onwards:
https://github.com/python/cpython/commit/1ee0f94d16f150356a4b9b0a39d44ba1d2d5b9fc
3.11 release schedule: https://peps.python.org/pep-0664/
The following items broke in meta-oe, I would appreciate any help
to fix them.
On Mon, 22 Aug 2022 at 00:04, Philip Balister wrote:
>
> On 8/17/22 09:10, Alexander Kanavin wrote:
> > This script can be used directly from poky, or can be copied directly into a
>
> Does this work if you are not using poky?
Yes. It's a case of 'poky chauvinism' on my part. I'll edit the
python3-requests makes use of 'zipfile' module, so we need to add
python3-compression as a dependency, otherwise 'import requests'
errors out.
Signed-off-by: Chen Qi
---
meta/recipes-devtools/python/python3-requests_2.28.1.bb | 1 +
1 file changed, 1 insertion(+)
diff --git
ping
On 8/18/22 11:13, Chen Qi wrote:
This package was broken since it was upgraded to 6.48, because
it started using 'exceptiongroup' since then, which is missing
in any meta layer. On target, when importing hypothesis, we meet
the following error:
Traceback (most recent call last):
Hi Wes,
On 8/22/22 06:59, Wes Lindauer wrote:
It should not matter what xz/zstd parallelism and resource usage is set to
when determining hash signatures. This allows sharing more sstate across
host machines with different CPU configurations.
It seems like it does matter in some ways, c.f.:
If you have a compressed initrd for example this could give you a surprise,
so I'm not 100% sure about this.
/Regards
Den mån 22 aug. 2022 kl 07:00 skrev Wes Lindauer :
> It should not matter what xz/zstd parallelism and resource usage is set to
> when determining hash signatures. This allows
Signed-off-by: Alexander Kanavin
---
.../systemtap/systemtap/python-3.11.patch | 37 +++
.../systemtap/systemtap_git.inc | 1 +
2 files changed, 38 insertions(+)
create mode 100644 meta/recipes-kernel/systemtap/systemtap/python-3.11.patch
diff --git
On Mon, 22 Aug 2022 at 03:20, Chuck Wolber wrote:
> One feedback item I might suggest is to check if the layer is already pulled
> and to avoid pulling
> again. Same goes for the commit hash - no reason to checkout the hash if HEAD
> is already pointing
> at it.
The script does 'git fetch'
> -Original Message-
> From: openembedded-core@lists.openembedded.org c...@lists.openembedded.org> On Behalf Of Richard Purdie
> Sent: den 22 augusti 2022 13:19
> To: Quentin Schulz ; Wes Lindauer
> ; openembedded-core@lists.openembedded.org
> Subject: Re: [OE-core][PATCH] bitbake.conf:
Includes fixes for:
CVE-2022-2816
CVE-2022-2817
CVE-2022-2819
CVE-2022-2845
CVE-2022-2849
CVE-2022-2862
CVE-2022-2874
CVE-2022-2889
Signed-off-by: Richard Purdie
---
meta/recipes-support/vim/vim.inc | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git
Use the same code as the 'nodejs_16.4.bb recipe' for mapping the OE
arch to the NPM arch.
A noticeable change (and fix for exiting problems) is the move from
'arm' to 'arm64' for 'aarch64'.
Signed-off-by: Enrico Scholz
---
meta/classes-recipe/npm.bbclass | 24 +++-
1 file
Configuration option is named 'fund', not 'funds'.
Signed-off-by: Enrico Scholz
---
meta/classes-recipe/npm.bbclass | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/meta/classes-recipe/npm.bbclass b/meta/classes-recipe/npm.bbclass
index deea53c9ec65..8e73400678db 100644
---
I was asked about the createrepo_c patch in private. Replying here for closure.
I had reported the issue upstream at
https://github.com/rpm-software-management/createrepo_c/issues/266 and it has
been fixed. Poky kirkstone and mainline should have the fix.
Kind Regards,
Devendra
> On 28 Apr
On Mon, 2022-08-22 at 11:28 +0200, Quentin Schulz wrote:
> Hi Wes,
>
> On 8/22/22 06:59, Wes Lindauer wrote:
> > It should not matter what xz/zstd parallelism and resource usage is set to
> > when determining hash signatures. This allows sharing more sstate across
> > host machines with different
Add a comment explaining the non-obvious return codes.
Signed-off-by: Ross Burton
---
meta/lib/oeqa/utils/qemurunner.py | 2 ++
1 file changed, 2 insertions(+)
diff --git a/meta/lib/oeqa/utils/qemurunner.py
b/meta/lib/oeqa/utils/qemurunner.py
index 76296d50cde..4c3d2010fb6 100644
---
If native_sysroot is passed, also support the caller passing in the
target_sys and add that to the path if so. This allows runCmd() to be
used to invoke the cross tools.
Signed-off-by: Ross Burton
---
meta/lib/oeqa/utils/commands.py | 19 +--
1 file changed, 13 insertions(+), 6
The gdbserver test case didn't actually work and doesn't follow the
documentation for how to use gdbserver in Yocto. Rewrite the test case
to follow the documented process so if that breaks then we're aware.
Signed-off-by: Ross Burton
---
meta/lib/oeqa/selftest/cases/gdbserver.py | 169
This CVE only applied to pre 1.3.3rc1 and we're on 1.3.3 so we're sorted
but the rc versions make the automated matching fail. Therefore handle
manually.
Signed-off-by: Richard Purdie
---
meta/recipes-extended/libtirpc/libtirpc_1.3.3.bb | 3 +++
1 file changed, 3 insertions(+)
diff --git
Upstream have indicated icu-config is deprecated and they don't intend
people to use it any more. Drop our code for it to flush out users and
clean up our recipe a bit. pkg-config is a much better alternative.
(https://github.com/unicode-org/icu/pull/2150)
Signed-off-by: Richard Purdie
---
On Mon, 2022-08-22 at 14:10 -0700, Khem Raj wrote:
> meta-clang has options when it comes to C++ runtime, default is to use
> gnu runtime, other options are llvm runtime and android runtime. This
> patch helps when a distro is using llvm runtime for C/C++ runtime. It
> informs the rust build
- Allow GLX tests to be disabled for systems that don't support it.
- Allow OpenCL tests to be enabled.
Signed-off-by: Tom Hochstein
---
...roper-WAYLAND_INCLUDE_DIRS-variable.patch} | 0
...-shader.c-do-not-hardcode-build-pat.patch} | 0
...ists.txt-add-missing-endian.h-check.patch} | 0
All,
The triage team is starting to try and collect up and classify bugs which a
newcomer to the project would be able to work on in a way which means people
can find them. They're being listed on the triage page under the appropriate
heading:
All,
Below is the list as of top 36 bug owners as of the end of WW34 of who have
open medium or higher bugs and enhancements against YP 4.1. There are 47
possible work days left until the final release candidates for YP 4.1 needs
to be released.
Who
Count
michael.opdenac...@bootlin.com
36
On Mon, Aug 22, 2022 at 2:51 PM Richard Purdie
wrote:
>
> On Mon, 2022-08-22 at 14:10 -0700, Khem Raj wrote:
> > meta-clang has options when it comes to C++ runtime, default is to use
> > gnu runtime, other options are llvm runtime and android runtime. This
> > patch helps when a distro is using
meta-clang has options when it comes to C++ runtime, default is to use
gnu runtime, other options are llvm runtime and android runtime. This
patch helps when a distro is using llvm runtime for C/C++ runtime. It
informs the rust build system about right C++ runtime to configure for
when such a
as nativepython3 is now a shell wrapper, prevent endless
recursion loops, by just calling python3 instead of nativepython3.
The interpreter setting will still have precedence over the plain
python binary called
Signed-off-by: Konrad Weihmann
---
meta/classes-recipe/python_pep517.bbclass | 2 +-
which makes sure to set PYTHONNOUSERSITE to prevent
dynamically loading site packages from the host sided
package dirs.
In before when a module was using pluggy and/or
importlib_metadata the host sided path ~./local/... was still
part of the sys.path search tree and had priority over the
This needs to be applied to python3-native/python3, not just to the
nativepython3 link to it. You can use 'create_wrapper' helper that was
written exactly for the purpose (see meta/ for examples).
Also, can the lookup in ~ be simply disabled at python3-native build time?
Alex
On Mon, 22 Aug
Backport patch to fix CVE-2022-1664.
Signed-off-by: Sakib Sajal
---
...ive-Prevent-directory-traversal-for-.patch | 329 ++
meta/recipes-devtools/dpkg/dpkg_1.20.7.1.bb | 1 +
2 files changed, 330 insertions(+)
create mode 100644
Backport required patches to fix CVE-2022-0216.
Signed-off-by: Sakib Sajal
---
meta/recipes-devtools/qemu/qemu.inc | 2 +
.../qemu/qemu/CVE-2022-0216_1.patch | 42 +
.../qemu/qemu/CVE-2022-0216_2.patch | 146 ++
3 files changed, 190
Backport required patches to fix CVE-2021-3507.
Signed-off-by: Sakib Sajal
---
meta/recipes-devtools/qemu/qemu.inc | 2 +
.../qemu/qemu/CVE-2021-3507_1.patch | 92 ++
.../qemu/qemu/CVE-2021-3507_2.patch | 115 ++
3 files changed, 209
Delete dependency on dev-hwrng.device and systemd-udev-settle services
as they can be troublesome because difference devices may have different
devices to detect resulting in delayed boot.
do not run if included in a container image
Add EXTRA_ARGS via /etc/default/rng-tools e.g. if your device
Hi all,
Intel and WR YP QA is planning for QA execution for YP build yocto-3.1.19.rc1.
We are planning to execute following tests for this cycle:
OEQA-manual tests for following module:
1. OE-Core
2. BSP-hw
Runtime auto test for following platforms:
1. MinnowTurbot 32-bit
2. NUC 7
3. NUC 6
4.
Source: https://gitlab.com/libtiff/libtiff
MR: 120545
Type: Security Fix
Disposition: Backport from
https://gitlab.com/libtiff/libtiff/-/commit/275735d0354e39c0ac1dc3c0db2120d6f31d1990
ChangeID: 4c781586f7aba27420a7adc0adc597cc68495387
Description:
CVE-2022-34526 libtiff: A stack
34 matches
Mail list logo
