Re: [OE-core] [PATCH v3 1/3] glibc: Upgrade to 2.35 (RFC)

[Anuj Mittal]

On Wed, 2022-02-16 at 10:22 +0100, Martin Jansa wrote:
> Ubuntu patched their docker.io package shortly after upgrading to
> glibc-2.34 in Ubuntu-21.10, see:
> http://changelogs.ubuntu.com/changelogs/pool/universe/d/docker.io/docker.io_20.10.7-0ubuntu5~20.04.2/changelog
> 
> docker.io (20.10.7-0ubuntu4) impish; urgency=medium
> 
>   * d/p/seccomp-add-support-for-clone3-syscall-in-default-
> policy.patch: Fix
>     failure with new glibc clone3 syscall adding it to the default
> seccomp
>     policy (LP: #1943049).
> 
>  -- Lucas Kanashiro   Fri, 10 Sep 2021 15:34:38
> -0300
> 
> AFAIK Ubuntu isn't affected anymore, I've
> updated https://bugzilla.yoctoproject.org/show_bug.cgi?id=1711 and
> I'm fine with dropping the patch now (it was useful before, but now
> distributions had enough time to prepare for 2.34 changes).

In case the uninative upgrade is merged in stable/LTS branches, it
might start showing up failures for people building on older
distributions that aren't being updated any more.

Thanks,

Anuj

> 
> On Wed, Feb 16, 2022 at 9:31 AM hongxu 
> wrote:
> > From upstream docker github [1]
> > The issue was found in 20.10.7, the the fix was merged
> > in v20.10.10-rc1 [2]
> > From docker release notes, it was published in version 20.10.10 at
> > 2021-10-25[3]
> > 
> > In ubuntu 20.04.2, the docker version is 20.10.7 (20.10.7-
> > 0ubuntu1~20.04.2) [4],
> > 
> > From [5], Ubuntu 21.10 and Fedora 35 has the issue
> > 
> > [1] https://github.com/moby/moby/issues/42680
> > 
> > seccomp filter breaks latest glibc (in fedora rawhide) by blocking
> > clone3 with EPERM · Issue #42680 · moby/moby · GitHub
> > Client: Version: 20.10.7 API version: 1.41 Go version: go1.16.6 Git
> > commit: f0df350 Built: Mon Jul 26 16:34:29 2021 OS/Arch:
> > linux/amd64 Context: default Experimental ...
> > github.com
> > 
> > [2] 
> > https://github.com/moby/moby/commit/6835d15f5523063f0a04a86d4810a63
> > 7c6010d62
> > 
> > [20.10] update containerd binary to v1.4.10 · moby/moby@6835d15
> > - Update runc to v1.0.2 - Update hcsshim to v0.8.21 - Support
> > clone3 in default seccomp profile - Fix panic in
> > metadata content writer on copy error Signed-off-by: Sebastiaan van
> > Stijn...
> > github.com
> > 
> > 
> > [3] https://docs.docker.com/engine/release-notes/#201010
> > Docker Engine release notes - Docker Documentation
> > Docker Engine release notes. This document describes the latest
> > changes, additions, known issues, and fixes for Docker Engine.
> > Note: The client and container runtime are now in separate packages
> > from the daemon in Docker Engine 18.09. Users should install and
> > update all three packages at the same time to get the latest patch
> > releases.
> > docs.docker.com
> > 
> > 
> > [4] 
> > https://bugs.launchpad.net/ubuntu/+source/docker.io/+bug/1948361
> > Bug #1948361 “docker.io - error adding seccomp filter rule for s...
> > : Bugs : docker.io package : Ubuntu
> > Encountered the following error using the docker.io package in
> > focal-proposed running the autotest-client-
> > test/ubuntu_performance_deep_learning test. "docker: Error response
> > from daemon: failed to create shim: OCI runtime create failed:
> > container_linux.go:380: starting container process caused: error
> > adding seccomp filter rule for syscall clone3: permission denied:
> > unknown." This test essentially pulls down a nvidia tensorflow
> > docker container, runs the container and triggers the preloaded ...
> > bugs.launchpad.net
> > 
> > 
> > [5] 
> > https://pascalroeleven.nl/2021/09/09/ubuntu-21-10-and-fedora-35-in-
> > docker/
> > Ubuntu 21.10 and Fedora 35 in Docker – Pascal Roeleven
> > Here I am, back again with another post which I think the internet
> > needs. It took me days to figure it out and I can’t imagine there
> > aren’t more people who are running into the same issue.
> > pascalroeleven.nl
> > 
> > //Hongxu
> > From: Khem Raj 
> > Sent: Wednesday, February 16, 2022 12:08 PM
> > To: Jia, Hongxu 
> > Cc: Richard Purdie ;
> > openembedded-core@lists.openembedded.org
> > 
> > Subject: Re: [OE-core] [PATCH v3 1/3] glibc: Upgrade to 2.35 (RFC) 
> > [Please note: This e-mail is from an EXTERNAL e-mail address]
> > 
> > 
> > On Tue, Feb 15, 2022 at 6:28 PM Jia, Hongxu
> >  wrote:
> > > Hi khem,
> > > 
> > > Upstream glibc reject it because the latest docker has supported
> > > it[1], and upstream glibc does not backward compatibility with
> > > old docker[2]
> > > 
> > > In order to build Yocto with uninative in old docker, we need
> > > this local patch
> > 
> > How old is the docker and I assume
> > It’s some distribution needing it ? 
> > > 
> > > [1] 
> > > https://github.com/moby/moby/commit/9f6b562dd12ef7b1f9e2f8e6f2ab6
> > > 477790a6594
> > > 
> > > seccomp: add support for "clone3" syscall in default policy ·
> > > moby/moby@9f6b562
> > > If no seccomp policy is requested, then the built-in default
> > > policy in dockerd applies. This has no rule for
> > > clone3 defined, nor any default errno 

[OE-core] [PATCH v2] convert-variables: Script for Inclusive Language variable renames

[Saul Wold]

From: Saul Wold 

This script searches for a list of variable that have been renamed
and converts them to their more descriptive names. It also searches
for a list of variables that have been removed or deprecated and
prints a message.

It will print a message to inform the user that there are terms that
need to be updated in their files. Many of these changes are context
sensitive and may not be modified as they might be existing calls to
other libraries. This message is informational only.

I have tested this on poky and meta-openembedded so far.

(From OE-Core rev: 50fe7ba8dba05a9681c9095506f798796cfc2750)

Signed-off-by: Saul Wold 
---
v2: renamed script, removed bitbake internal vars, added WHITELIST_ option

 scripts/contrib/convert-variables.py | 110 +++
 1 file changed, 110 insertions(+)
 create mode 100755 scripts/contrib/convert-variables.py

diff --git a/scripts/contrib/convert-variables.py 
b/scripts/contrib/convert-variables.py
new file mode 100755
index 00..a632fd4d5c
--- /dev/null
+++ b/scripts/contrib/convert-variables.py
@@ -0,0 +1,110 @@
+#!/usr/bin/env python3
+#
+# Conversion script to rename variables with more descriptive terms
+#
+#
+# SPDX-License-Identifier: GPL-2.0-only
+#
+
+import re
+import os
+import sys
+import tempfile
+import shutil
+import mimetypes
+
+if len(sys.argv) < 2:
+print("Please specify a directory to run the conversion script against.")
+sys.exit(1)
+
+renames = {
+"BB_ENV_WHITELIST":"BB_ENV_PASSTHROUGH",
+"BB_ENV_EXTRAWHITE":"BB_ENV_PASSTHROUGH_ADDITIONS",
+"BB_HASHCONFIG_WHITELIST":"BB_HASHCONFIG_IGNORE_VARS",
+"BB_SETSCENE_ENFORCE_WHITELIST":"BB_SETSCENE_ENFORCE_IGNORE_TASKS",
+"BB_HASHBASE_WHITELIST":"BB_BASEHASH_IGNORE_VARS",
+"BB_HASHTASK_WHITELIST":"BB_TASKHASH_IGNORE_TASKS",
+"CVE_CHECK_PN_WHITELIST":"CVE_CHECK_SKIP_RECIPE",
+"CVE_CHECK_WHITELIST":"CVE_CHECK_IGNORE",
+"MULTI_PROVIDER_WHITELIST":"BB_MULTI_PROVIDER_ALLOWED",
+"PNBLACKLIST":"SKIP_RECIPE",
+"SDK_LOCAL_CONF_BLACKLIST":"ESDK_LOCAL_CONF_ALLOW",
+"SDK_LOCAL_CONF_WHITELIST":"ESDK_LOCAL_CONF_REMOVE",
+"SDK_INHERIT_BLACKLIST":"ESDK_CLASS_INHERIT_DISABLE",
+"SSTATE_DUPWHITELIST":"SSTATE_ALLOW_OVERLAP_FILES",
+"SYSROOT_DIRS_BLACKLIST":"SYSROOT_DIRS_IGNORE",
+"UNKNOWN_CONFIGURE_WHITELIST":"UNKNOWN_CONFIGURE_OPT_IGNORE",
+"WHITELIST_":"INCOMPATIBLE_LICENSE_ALLOWED_RECIPE_",
+}
+
+removed_list = [
+"BB_STAMP_WHITELIST",
+"BB_STAMP_POLICY",
+"ICECC_USER_CLASS_BL",
+"ICECC_USER_PACKAGE_BL",
+"ICECC_USER_PACKAGE_WL",
+"INHERIT_BLACKLIST",
+"TUNEABI_WHITELIST",
+]
+
+context_check_list = [
+"blacklist",
+"whitelist",
+"abort",
+]
+
+def processfile(fn):
+
+print(f"processing file '{fn}'")
+try:
+fh, abs_path = tempfile.mkstemp()
+modified = False
+with os.fdopen(fh, 'w') as new_file:
+with open(fn, "r") as old_file:
+lineno = 0
+for line in old_file:
+lineno += 1
+if not line or "BB_RENAMED_VARIABLE" in line:
+continue
+# Do the renames
+for old_name, new_name in renames.items():
+if old_name in line:
+line = line.replace(old_name, new_name)
+modified = True
+# Find removed names
+for removed_name in removed_list:
+if removed_name in line:
+print(f"{fn} needs further work at line {lineno} 
because {removed_name} has been deprecated")
+for check_word in context_check_list:
+if re.search(check_word, line, re.IGNORECASE):
+print(f"{fn} needs further work at line {lineno} 
since it contains {check_word}")
+new_file.write(line)
+if modified:
+print(f"*** Modified file '{fn}'")
+shutil.copymode(fn, abs_path)
+os.remove(fn)
+shutil.move(abs_path, fn)
+except UnicodeDecodeError:
+pass
+
+ourname = os.path.basename(sys.argv[0])
+ourversion = "0.1"
+
+if os.path.isfile(sys.argv[1]):
+processfile(sys.argv[1])
+sys.exit(0)
+
+for targetdir in sys.argv[1:]:
+print("processing directory '%s'" % targetdir)
+for root, dirs, files in os.walk(targetdir):
+for name in files:
+if name == ourname:
+continue
+fn = os.path.join(root, name)
+if os.path.islink(fn):
+continue
+if "ChangeLog" in fn or "/.git/" in fn or fn.endswith(".html") or 
fn.endswith(".patch") or fn.endswith(".m4") or fn.endswith(".diff") or 
fn.endswith(".orig"):
+continue
+processfile(fn)
+
+print("All files processed with version %s" % ourversion)
-- 
2.25.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#161791): 

[OE-core] [RFC PATCH] Rename INCOMPATIBLE related varibale

[Saul Wold]

This is one option to handle the rename, another alternative would
be to change the new INCOMPATIBLE_LICENSE_ALLOWED_RECIPES to VarFlag
style.

Signed-off-by: Saul Wold 
---
 meta/classes/base.bbclass| 4 ++--
 meta/classes/license_image.bbclass   | 2 +-
 meta/classes/multilib.bbclass| 6 +++---
 meta/conf/distro/include/default-distrovars.inc  | 2 +-
 meta/lib/oeqa/selftest/cases/incompatible_lic.py | 2 +-
 5 files changed, 8 insertions(+), 8 deletions(-)

diff --git a/meta/classes/base.bbclass b/meta/classes/base.bbclass
index 87a4cb5fc7..a376dfa134 100644
--- a/meta/classes/base.bbclass
+++ b/meta/classes/base.bbclass
@@ -598,9 +598,9 @@ python () {
 whitelist = []
 for lic in bad_licenses:
 spdx_license = return_spdx(d, lic)
-whitelist.extend((d.getVar("WHITELIST_" + lic) or "").split())
+
whitelist.extend((d.getVar("INCOMPATIBLE_LICENSE_ALLOWED_RECIPE_" + lic) or 
"").split())
 if spdx_license:
-whitelist.extend((d.getVar("WHITELIST_" + spdx_license) or 
"").split())
+
whitelist.extend((d.getVar("INCOMPATIBLE_LICENSE_ALLOWED_RECIPE_" + 
spdx_license) or "").split())
 
 if pn in whitelist:
 '''
diff --git a/meta/classes/license_image.bbclass 
b/meta/classes/license_image.bbclass
index bf70bee99b..701516d324 100644
--- a/meta/classes/license_image.bbclass
+++ b/meta/classes/license_image.bbclass
@@ -56,7 +56,7 @@ def write_license_files(d, license_manifest, pkg_dic, 
rootfs=True):
 
 whitelist = []
 for lic in bad_licenses:
-whitelist.extend((d.getVar("WHITELIST_" + lic) or "").split())
+whitelist.extend((d.getVar("INCOMPATIBLE_LICENSE_ALLOWED_RECIPE_" + 
lic) or "").split())
 
 with open(license_manifest, "w") as license_file:
 for pkg in sorted(pkg_dic):
diff --git a/meta/classes/multilib.bbclass b/meta/classes/multilib.bbclass
index ec2013198c..278a88181a 100644
--- a/meta/classes/multilib.bbclass
+++ b/meta/classes/multilib.bbclass
@@ -75,11 +75,11 @@ python multilib_virtclass_handler () {
 e.data.setVar("PN", variant + "-" + e.data.getVar("PN", False))
 e.data.setVar("OVERRIDES", e.data.getVar("OVERRIDES", False) + override)
 
-# Expand WHITELIST_GPL-3.0 with multilib prefix
-pkgs = e.data.getVar("WHITELIST_GPL-3.0")
+# Expand INCOMPATIBLE_LICENSE_ALLOWED_RECIPE_GPL-3.0 with multilib prefix
+pkgs = e.data.getVar("INCOMPATIBLE_LICENSE_ALLOWED_RECIPE_GPL-3.0")
 for pkg in pkgs.split():
 pkgs += " " + variant + "-" + pkg
-e.data.setVar("WHITELIST_GPL-3.0", pkgs)
+e.data.setVar("INCOMPATIBLE_LICENSE_ALLOWED_RECIPE_GPL-3.0", pkgs)
 
 # DEFAULTTUNE can change TARGET_ARCH override so expand this now before 
update_data
 newtune = e.data.getVar("DEFAULTTUNE:" + "virtclass-multilib-" + variant, 
False)
diff --git a/meta/conf/distro/include/default-distrovars.inc 
b/meta/conf/distro/include/default-distrovars.inc
index 3bba651a77..7bfb946e67 100644
--- a/meta/conf/distro/include/default-distrovars.inc
+++ b/meta/conf/distro/include/default-distrovars.inc
@@ -20,7 +20,7 @@ DISTRO_FEATURES_DEFAULT ?= "acl alsa argp bluetooth 
debuginfod ext2 ipv4 ipv6 la
 DISTRO_FEATURES ?= "${DISTRO_FEATURES_DEFAULT}"
 IMAGE_FEATURES ?= ""
 
-WHITELIST_GPL-3.0 ?= ""
+INCOMPATIBLE_LICENSE_ALLOWED_RECIPE_GPL-3.0 ?= ""
 
 COMMERCIAL_AUDIO_PLUGINS ?= ""
 # COMMERCIAL_AUDIO_PLUGINS ?= "gst-plugins-ugly-mad 
gst-plugins-ugly-mpegaudioparse"
diff --git a/meta/lib/oeqa/selftest/cases/incompatible_lic.py 
b/meta/lib/oeqa/selftest/cases/incompatible_lic.py
index fd3b3f409e..52c381dba6 100644
--- a/meta/lib/oeqa/selftest/cases/incompatible_lic.py
+++ b/meta/lib/oeqa/selftest/cases/incompatible_lic.py
@@ -111,7 +111,7 @@ INCOMPATIBLE_LICENSE:pn-core-image-minimal = "GPL-3.0 
LGPL-3.0"
 bitbake('core-image-minimal')
 
 def test_bash_whitelist(self):
-self.write_config(self.default_config() + 
'\nWHITELIST_GPL-3.0:pn-core-image-minimal = "bash"')
+self.write_config(self.default_config() + 
'\nINCOMPATIBLE_LICENSE_ALLOWED_RECIPE_GPL-3.0:pn-core-image-minimal = "bash"')
 
 bitbake('core-image-minimal')
 
-- 
2.25.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#161790): 
https://lists.openembedded.org/g/openembedded-core/message/161790
Mute This Topic: https://lists.openembedded.org/mt/89198826/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

Re: [OE-core] [PATCH 07/17] gstreamer1.0: upgrade 1.18.5 -> 1.20.0

[Jose Quaresma]

Claudius Heine  escreveu no dia quarta, 9/02/2022 à(s) 09:30:

> Hi Jose
>
> On 2022-02-09 10:15, Jose Quaresma wrote:
> > Hi Alexander,
> >
> > Can you please clarify in what target arch is this happening and I can
> > try to replicate it with qemu?
>
> I think we are hitting:
> https://gitlab.freedesktop.org/gstreamer/gstreamer/-/issues/778
>
> This testcase seems to be flaky and IIUC upstream marked it as such in
> their test infrastructure.
>
> In my patchset, I added a patch to disable that testcase.
>

Hi Claudius,

Your patch Is a possible solution but I think we need to investigate the
root cause
of the test failure and send a fix for that if possible.


> regards,
> Claudius
>
> >
> > It works on my side on qemux86-64.
> >
> > root@qemux86-64:~# /usr/libexec/installed-tests/gstreamer/gst_gstbin.sh
> > + CK_DEFAULT_TIMEOUT=20
> > + GST_PLUGIN_LOADING_WHITELIST=gstreamer
> > + GST_REGISTRY=/home/root/.cache/gstreamer-1.0/gst_gstbin.registry
> > + GST_STATE_IGNORE_ELEMENTS=
> > + exec /usr/libexec/installed-tests/gstreamer/gst_gstbin
> > Running suite(s): GstBin
> > 100%: Checks: 26, Failures: 0, Errors: 0
> > Check suite gst_bin ran in 6.239s (tests failed: 0)
> >
> >
> > Alexander Kanavin  > > escreveu no dia terça, 8/02/2022 à(s)
> > 22:01:
> >
> > Unfortunately this patchset (which is now in master) does not address
> > the ptest fail. Please resolve this as soon as possible.
> >
> > + exec /usr/libexec/installed-tests/gstreamer/gst_gstbin
> > Running suite(s): GstBin
> > Executing: gstreamer/gst_gstbin.test
> > Executing: gstreamer/gst_gstbin.test
> > 
> > Executing: gstreamer/gst_gstbin.test
> > Executing: gstreamer/gst_gstbin.test
> > Test timed out after 300 seconds
> > FAIL: gstreamer/gst_gstbin.test (Child process killed by signal 9)
> >
> > Alex
> >
> > On Mon, 7 Feb 2022 at 02:08, Jose Quaresma  > > wrote:
> >  >
> >  > - License update:
> >  >   The code actually is LGPLv2.1 but the COPYING file is wrong.
> >  >
> >
> https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/d157b23fb0ce175b167611a4cb019599d9017042
> > <
> https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/d157b23fb0ce175b167611a4cb019599d9017042
> >
> >  >
> >  > - Drop backported patches
> >  >   0001-gst-gstpluginloader.c-when-env-var-is-set-do-not-fal.patch
> >  >   0002-Remove-unused-valgrind-detection.patch
> >  >   0003-tests-seek-Don-t-use-too-strict-timeout-for-validati.patch
> >  >
> >  > - Update submitted patches
> >  >   0001-tests-respect-the-idententaion-used-in-meson.patch
> >  >   0002-tests-add-support-for-install-the-tests.patch
> >  >   0003-tests-use-a-dictionaries-for-environment.patch
> >  >   0004-tests-add-helper-script-to-run-the-installed_tests.patch
> >  >
> >  > Signed-off-by: Jose Quaresma  > >
> >  > ---
> >  >  ...der.c-when-env-var-is-set-do-not-fal.patch |  69 ---
> >  >  ...pect-the-idententaion-used-in-meson.patch} |  14 +--
> >  >  ...002-Remove-unused-valgrind-detection.patch | 112
> > --
> >  >  ...s-add-support-for-install-the-tests.patch} |  67 ++-
> >  >  ...-use-too-strict-timeout-for-validati.patch |  32 -
> >  >  ...-use-a-dictionaries-for-environment.patch} |  28 +++--
> >  >  ...er-script-to-run-the-installed_tests.patch |  74 
> >  >  ...-the-environment-for-installed_tests.patch |  58 -
> >  >  ...er1.0_1.18.5.bb  =>
> > gstreamer1.0_1.20.0.bb } |  17 ++-
> >  >  9 files changed, 136 insertions(+), 335 deletions(-)
> >  >  delete mode 100644
> >
>  
> meta/recipes-multimedia/gstreamer/gstreamer1.0/0001-gst-gstpluginloader.c-when-env-var-is-set-do-not-fal.patch
> >  >  rename
> >
>  
> meta/recipes-multimedia/gstreamer/gstreamer1.0/{0004-tests-respect-the-idententaion-used-in-meson.patch
> > => 0001-tests-respect-the-idententaion-used-in-meson.patch} (71%)
> >  >  delete mode 100644
> >
>  
> meta/recipes-multimedia/gstreamer/gstreamer1.0/0002-Remove-unused-valgrind-detection.patch
> >  >  rename
> >
>  
> meta/recipes-multimedia/gstreamer/gstreamer1.0/{0005-tests-add-support-for-install-the-tests.patch
> > => 0002-tests-add-support-for-install-the-tests.patch} (65%)
> >  >  delete mode 100644
> >
>  
> meta/recipes-multimedia/gstreamer/gstreamer1.0/0003-tests-seek-Don-t-use-too-strict-timeout-for-validati.patch
> >  >  rename
> >
>  
> meta/recipes-multimedia/gstreamer/gstreamer1.0/{0006-tests-use-a-dictionaries-for-environment.patch
> > => 0003-tests-use-a-dictionaries-for-environment.patch} (61%)
> >  >  create mode 100644
> >
>  
> 

Re: [OE-core] [PATCH 07/17] gstreamer1.0: upgrade 1.18.5 -> 1.20.0

[Jose Quaresma]

Alexander Kanavin  escreveu no dia quarta,
9/02/2022 à(s) 10:34:

> Yes, it seems to be sporadic. Here's a sample fail:
>
> https://autobuilder.yoctoproject.org/typhoon/#/builders/81/builds/3083
>
> https://autobuilder.yocto.io/pub/non-release/20220208-14/testresults/qemux86-64-ptest/gstreamer1.0.log



I ask for help upstream but I will try to replicate this with GST_DEBUG
enabled.
Which is the best option to send a patch not for merge but only to run on
the autobuilder to generate some logs?

https://gitlab.freedesktop.org/gstreamer/gstreamer/-/issues/778


>
> Alex
>
> On Wed, 9 Feb 2022 at 10:30, Claudius Heine  wrote:
> >
> > Hi Jose
> >
> > On 2022-02-09 10:15, Jose Quaresma wrote:
> > > Hi Alexander,
> > >
> > > Can you please clarify in what target arch is this happening and I can
> > > try to replicate it with qemu?
> >
> > I think we are hitting:
> > https://gitlab.freedesktop.org/gstreamer/gstreamer/-/issues/778
> >
> > This testcase seems to be flaky and IIUC upstream marked it as such in
> > their test infrastructure.
> >
> > In my patchset, I added a patch to disable that testcase.
> >
> > regards,
> > Claudius
> >
> > >
> > > It works on my side on qemux86-64.
> > >
> > > root@qemux86-64:~#
> /usr/libexec/installed-tests/gstreamer/gst_gstbin.sh
> > > + CK_DEFAULT_TIMEOUT=20
> > > + GST_PLUGIN_LOADING_WHITELIST=gstreamer
> > > + GST_REGISTRY=/home/root/.cache/gstreamer-1.0/gst_gstbin.registry
> > > + GST_STATE_IGNORE_ELEMENTS=
> > > + exec /usr/libexec/installed-tests/gstreamer/gst_gstbin
> > > Running suite(s): GstBin
> > > 100%: Checks: 26, Failures: 0, Errors: 0
> > > Check suite gst_bin ran in 6.239s (tests failed: 0)
> > >
> > >
> > > Alexander Kanavin  > > > escreveu no dia terça, 8/02/2022 à(s)
> > > 22:01:
> > >
> > > Unfortunately this patchset (which is now in master) does not
> address
> > > the ptest fail. Please resolve this as soon as possible.
> > >
> > > + exec /usr/libexec/installed-tests/gstreamer/gst_gstbin
> > > Running suite(s): GstBin
> > > Executing: gstreamer/gst_gstbin.test
> > > Executing: gstreamer/gst_gstbin.test
> > > 
> > > Executing: gstreamer/gst_gstbin.test
> > > Executing: gstreamer/gst_gstbin.test
> > > Test timed out after 300 seconds
> > > FAIL: gstreamer/gst_gstbin.test (Child process killed by signal 9)
> > >
> > > Alex
> > >
> > > On Mon, 7 Feb 2022 at 02:08, Jose Quaresma <
> quaresma.j...@gmail.com
> > > > wrote:
> > >  >
> > >  > - License update:
> > >  >   The code actually is LGPLv2.1 but the COPYING file is wrong.
> > >  >
> > >
> https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/d157b23fb0ce175b167611a4cb019599d9017042
> > > <
> https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/d157b23fb0ce175b167611a4cb019599d9017042
> >
> > >  >
> > >  > - Drop backported patches
> > >  >
>  0001-gst-gstpluginloader.c-when-env-var-is-set-do-not-fal.patch
> > >  >   0002-Remove-unused-valgrind-detection.patch
> > >  >
>  0003-tests-seek-Don-t-use-too-strict-timeout-for-validati.patch
> > >  >
> > >  > - Update submitted patches
> > >  >   0001-tests-respect-the-idententaion-used-in-meson.patch
> > >  >   0002-tests-add-support-for-install-the-tests.patch
> > >  >   0003-tests-use-a-dictionaries-for-environment.patch
> > >  >   0004-tests-add-helper-script-to-run-the-installed_tests.patch
> > >  >
> > >  > Signed-off-by: Jose Quaresma  > > >
> > >  > ---
> > >  >  ...der.c-when-env-var-is-set-do-not-fal.patch |  69 ---
> > >  >  ...pect-the-idententaion-used-in-meson.patch} |  14 +--
> > >  >  ...002-Remove-unused-valgrind-detection.patch | 112
> > > --
> > >  >  ...s-add-support-for-install-the-tests.patch} |  67 ++-
> > >  >  ...-use-too-strict-timeout-for-validati.patch |  32 -
> > >  >  ...-use-a-dictionaries-for-environment.patch} |  28 +++--
> > >  >  ...er-script-to-run-the-installed_tests.patch |  74
> 
> > >  >  ...-the-environment-for-installed_tests.patch |  58 -
> > >  >  ...er1.0_1.18.5.bb  =>
> > > gstreamer1.0_1.20.0.bb } |  17 ++-
> > >  >  9 files changed, 136 insertions(+), 335 deletions(-)
> > >  >  delete mode 100644
> > >
>  
> meta/recipes-multimedia/gstreamer/gstreamer1.0/0001-gst-gstpluginloader.c-when-env-var-is-set-do-not-fal.patch
> > >  >  rename
> > >
>  
> meta/recipes-multimedia/gstreamer/gstreamer1.0/{0004-tests-respect-the-idententaion-used-in-meson.patch
> > > => 0001-tests-respect-the-idententaion-used-in-meson.patch} (71%)
> > >  >  delete mode 100644
> > >
>  
> meta/recipes-multimedia/gstreamer/gstreamer1.0/0002-Remove-unused-valgrind-detection.patch
> > >  >  rename
> > >
>  
> 

Re: [OE-core] [PATCH 07/17] gstreamer1.0: upgrade 1.18.5 -> 1.20.0

[Jose Quaresma]

Peter Kjellerstedt  escreveu no dia quarta,
9/02/2022 à(s) 19:09:

> > -Original Message-
> > From: openembedded-core@lists.openembedded.org  > c...@lists.openembedded.org> On Behalf Of Jose Quaresma
> > Sent: den 7 februari 2022 02:08
> > To: openembedded-core@lists.openembedded.org
> > Cc: Jose Quaresma 
> > Subject: [OE-core] [PATCH 07/17] gstreamer1.0: upgrade 1.18.5 -> 1.20.0
> >
> > - License update:
> >   The code actually is LGPLv2.1 but the COPYING file is wrong.
> >
> https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/d157b23fb0ce175b167611a4cb019599d9017042
>
> Since the COPYING file for the GStreamer sub-projects now states
> that the used license is LGPL-2.1, shouldn't the LICENSE for these
> recipes be updated to say "LGPL-2.1-or-later"?
>
> As for -bad and -ugly, they should really have individual LICENSE:foo
> for each generated package, so that only the packages that are affected
> by the GPL license includes it, and the others only specify LGPL.
>
> //Peter
>
>
I have sent a patch for that with your suggestion.
I change the LICENSE_FLAGS based on the new gpl as well.
https://patchwork.yoctoproject.org/project/oe-core/patch/20220216232803.1868265-1-quaresma.j...@gmail.com/

Jose

-- 
Best regards,

José Quaresma

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#161787): 
https://lists.openembedded.org/g/openembedded-core/message/161787
Mute This Topic: https://lists.openembedded.org/mt/88962313/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [PATCH] gstreamer1.0: update licences of all modules

[Jose Quaresma]

Since all gstreamer modules uses LGPLv2.1 with exceptions
for some plugins in bad and ugly modules that has GPLv2+.

For the GPLv2+ this patch set the licence only for each plugin
that is affected by this licence. The commercial LICENSE_FLAGS
is enabled if any of the previous plugins is builded.

Signed-off-by: Jose Quaresma 
Cc: Peter Kjellerstedt 
---
 .../gstreamer/gst-devtools_1.20.0.bb   |  2 +-
 .../gstreamer/gstreamer1.0-libav_1.20.0.bb |  2 +-
 .../gstreamer/gstreamer1.0-omx_1.20.0.bb   |  2 +-
 .../gstreamer/gstreamer1.0-plugins-bad_1.20.0.bb   |  7 ++-
 .../gstreamer/gstreamer1.0-plugins-base_1.20.0.bb  |  2 +-
 .../gstreamer/gstreamer1.0-plugins-good_1.20.0.bb  |  2 +-
 .../gstreamer/gstreamer1.0-plugins-ugly_1.20.0.bb  | 10 --
 .../gstreamer/gstreamer1.0-python_1.20.0.bb|  2 +-
 .../gstreamer/gstreamer1.0-rtsp-server_1.20.0.bb   |  2 +-
 .../gstreamer/gstreamer1.0-vaapi_1.20.0.bb |  2 +-
 .../gstreamer/gstreamer1.0_1.20.0.bb   |  2 +-
 11 files changed, 23 insertions(+), 12 deletions(-)

diff --git a/meta/recipes-multimedia/gstreamer/gst-devtools_1.20.0.bb 
b/meta/recipes-multimedia/gstreamer/gst-devtools_1.20.0.bb
index 7a27d27b2e..e17f4ee09d 100644
--- a/meta/recipes-multimedia/gstreamer/gst-devtools_1.20.0.bb
+++ b/meta/recipes-multimedia/gstreamer/gst-devtools_1.20.0.bb
@@ -3,7 +3,7 @@ DESCRIPTION = "A Tool to test GStreamer components"
 HOMEPAGE = 
"https://gstreamer.freedesktop.org/documentation/gst-devtools/index.html;
 SECTION = "multimedia"
 
-LICENSE = "LGPLv2.1"
+LICENSE = "LGPL-2.1-or-later"
 LIC_FILES_CHKSUM = 
"file://validate/COPYING;md5=a6f89e2100d9b6cdffcea4f398e37343"
 
 #S = "${WORKDIR}/gst-devtools-${PV}"
diff --git a/meta/recipes-multimedia/gstreamer/gstreamer1.0-libav_1.20.0.bb 
b/meta/recipes-multimedia/gstreamer/gstreamer1.0-libav_1.20.0.bb
index 98b2650bb0..575e608d65 100644
--- a/meta/recipes-multimedia/gstreamer/gstreamer1.0-libav_1.20.0.bb
+++ b/meta/recipes-multimedia/gstreamer/gstreamer1.0-libav_1.20.0.bb
@@ -6,7 +6,7 @@ SECTION = "multimedia"
 
 # ffmpeg has comercial license flags so add it as we need ffmpeg as a 
dependency
 LICENSE_FLAGS = "commercial"
-LICENSE = "LGPLv2+"
+LICENSE = "LGPL-2.1-or-later"
 LIC_FILES_CHKSUM = "file://COPYING;md5=69333daa044cb77e486cc36129f7a770 \
 
file://ext/libav/gstav.h;beginline=1;endline=18;md5=a752c35267d8276fd9ca3db6994fca9c
 \
 "
diff --git a/meta/recipes-multimedia/gstreamer/gstreamer1.0-omx_1.20.0.bb 
b/meta/recipes-multimedia/gstreamer/gstreamer1.0-omx_1.20.0.bb
index 15f19e349e..94c5214a37 100644
--- a/meta/recipes-multimedia/gstreamer/gstreamer1.0-omx_1.20.0.bb
+++ b/meta/recipes-multimedia/gstreamer/gstreamer1.0-omx_1.20.0.bb
@@ -3,7 +3,7 @@ DESCRIPTION = "Wraps available OpenMAX IL components and makes 
them available as
 HOMEPAGE = "http://gstreamer.freedesktop.org/;
 SECTION = "multimedia"
 
-LICENSE = "LGPLv2.1"
+LICENSE = "LGPL-2.1-or-later"
 LICENSE_FLAGS = "commercial"
 LIC_FILES_CHKSUM = "file://COPYING;md5=4fbd65380cdd255951079008b364516c \
 
file://omx/gstomx.h;beginline=1;endline=21;md5=5c8e1fca32704488e76d2ba9ddfa935f"
diff --git 
a/meta/recipes-multimedia/gstreamer/gstreamer1.0-plugins-bad_1.20.0.bb 
b/meta/recipes-multimedia/gstreamer/gstreamer1.0-plugins-bad_1.20.0.bb
index 915d4ec744..22288373ac 100644
--- a/meta/recipes-multimedia/gstreamer/gstreamer1.0-plugins-bad_1.20.0.bb
+++ b/meta/recipes-multimedia/gstreamer/gstreamer1.0-plugins-bad_1.20.0.bb
@@ -15,7 +15,7 @@ SRC_URI[sha256sum] = 
"015b8d4d9a395ebf444d40876867a2034dd3304b3ad48bc3a0dd0c1ee7
 
 S = "${WORKDIR}/gst-plugins-bad-${PV}"
 
-LICENSE = "GPLv2+ & LGPLv2+ & LGPLv2.1+"
+LICENSE = "LGPL-2.1-or-later & GPL-2.0-or-later"
 LIC_FILES_CHKSUM = "file://COPYING;md5=4fbd65380cdd255951079008b364516c"
 
 DEPENDS += "gstreamer1.0-plugins-base"
@@ -98,6 +98,11 @@ PACKAGECONFIG[faad]= 
"-Dfaad=enabled,-Dfaad=disabled,faad2"
 PACKAGECONFIG[resindvd]= 
"-Dresindvd=enabled,-Dresindvd=disabled,libdvdread libdvdnav"
 PACKAGECONFIG[x265]= "-Dx265=enabled,-Dx265=disabled,x265"
 
+LICENSE_FLAGS = "${@bb.utils.contains("PACKAGECONFIG", "gpl", "commercial", 
"", d)}"
+LICENSE:${PN}-faad = "GPL-2.0-or-later"
+LICENSE:${PN}-resindvd = "GPL-2.0-or-later"
+LICENSE:${PN}-x265 = "GPL-2.0-or-later"
+
 EXTRA_OEMESON += " \
 -Ddoc=disabled \
 -Daes=enabled \
diff --git 
a/meta/recipes-multimedia/gstreamer/gstreamer1.0-plugins-base_1.20.0.bb 
b/meta/recipes-multimedia/gstreamer/gstreamer1.0-plugins-base_1.20.0.bb
index 455c9fc480..c9fbc599ae 100644
--- a/meta/recipes-multimedia/gstreamer/gstreamer1.0-plugins-base_1.20.0.bb
+++ b/meta/recipes-multimedia/gstreamer/gstreamer1.0-plugins-base_1.20.0.bb
@@ -3,7 +3,7 @@ require gstreamer1.0-plugins-common.inc
 DESCRIPTION = "'Base' GStreamer plugins and helper libraries"
 HOMEPAGE = "https://gstreamer.freedesktop.org/;
 

[OE-core] [PATCH] icecc.bbclass: enable networking in all tasks

[Jose Quaresma]

The icecc.bbclass needs network access to work properly.

Currently I build with icecc inside a container with network isolation and
my icecc daemon runs outside of the build container in my host.
The only thing I need to do for using the icecc inside my build container is
mounting the unix socket /var/run/icecc/iceccd.socket inside the container.

I think we need something like this mount functionality to have access to
some sockets connections inside the tasks that runs on the new namespace
created with unshare system call.

This patch is not a the real solution for the problem and is more like
an hack so we can use the icecc.bbclass again.

Signed-off-by: Jose Quaresma 
---
 meta/classes/icecc.bbclass | 4 
 1 file changed, 4 insertions(+)

diff --git a/meta/classes/icecc.bbclass b/meta/classes/icecc.bbclass
index 3bbd2645af..68415b04c7 100644
--- a/meta/classes/icecc.bbclass
+++ b/meta/classes/icecc.bbclass
@@ -428,18 +428,22 @@ set_icecc_env() {
 bbnote "Using icecc tarball: $ICECC_VERSION"
 }
 
+do_configure[network] = "1"
 do_configure:prepend() {
 set_icecc_env
 }
 
+do_compile[network] = "1"
 do_compile:prepend() {
 set_icecc_env
 }
 
+do_compile_kernelmodules[network] = "1"
 do_compile_kernelmodules:prepend() {
 set_icecc_env
 }
 
+do_install[network] = "1"
 do_install:prepend() {
 set_icecc_env
 }
-- 
2.35.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#161785): 
https://lists.openembedded.org/g/openembedded-core/message/161785
Mute This Topic: https://lists.openembedded.org/mt/89198407/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[oe-core][hardknott][PATCH 1/1] virglrenderer: fix CVE-2022-0135 and -0175

[Joe Slater]

CVE-2022-0135 concerns out-of-bounds writes in read_transfer_data().
CVE-2022-0175 concerns using malloc() instead of calloc().

We cherry-pick from master.

Signed-off-by: Joe Slater 
Signed-off-by: Richard Purdie 
(cherry picked from commit 91f7511df79c5c1f93add9f2827a5a266453614e)

Modify -0175 patch to apply to hardknott branch.

Signed-off-by: Joe Slater 
---
 .../virglrenderer/cve-2022-0135.patch | 117 ++
 .../virglrenderer/cve-2022-0175.patch | 112 +
 .../virglrenderer/virglrenderer_0.8.2.bb  |   2 +
 3 files changed, 231 insertions(+)
 create mode 100644 
meta/recipes-graphics/virglrenderer/virglrenderer/cve-2022-0135.patch
 create mode 100644 
meta/recipes-graphics/virglrenderer/virglrenderer/cve-2022-0175.patch

diff --git 
a/meta/recipes-graphics/virglrenderer/virglrenderer/cve-2022-0135.patch 
b/meta/recipes-graphics/virglrenderer/virglrenderer/cve-2022-0135.patch
new file mode 100644
index 00..ae42dc8f6c
--- /dev/null
+++ b/meta/recipes-graphics/virglrenderer/virglrenderer/cve-2022-0135.patch
@@ -0,0 +1,117 @@
+From 63aee871365f9c9e7fa9125672302a0fb250d34d Mon Sep 17 00:00:00 2001
+From: Gert Wollny 
+Date: Tue, 30 Nov 2021 09:16:24 +0100
+Subject: [PATCH 2/2] vrend: propperly check whether the shader image range is
+ correct
+
+Also add a test to check the integer underflow.
+
+Closes: #251
+Signed-off-by: Gert Wollny 
+Reviewed-by: Chia-I Wu 
+
+cherry-pick from anongit.freedesktop.org/virglrenderer
+commit 2aed5d4...
+
+CVE: CVE-2022-0135
+Upstream-Status: Backport
+Signed-off-by: Joe Slater 
+
+---
+ src/vrend_decode.c  |  3 +-
+ tests/test_fuzzer_formats.c | 57 +
+ 2 files changed, 59 insertions(+), 1 deletion(-)
+
+diff --git a/src/vrend_decode.c b/src/vrend_decode.c
+index 91f5f24..6771b10 100644
+--- a/src/vrend_decode.c
 b/src/vrend_decode.c
+@@ -1249,8 +1249,9 @@ static int vrend_decode_set_shader_images(struct 
vrend_context *ctx, const uint3
+if (num_images < 1) {
+   return 0;
+}
++
+if (start_slot > PIPE_MAX_SHADER_IMAGES ||
+-   start_slot > PIPE_MAX_SHADER_IMAGES - num_images)
++   start_slot + num_images > PIPE_MAX_SHADER_IMAGES)
+   return EINVAL;
+ 
+for (uint32_t i = 0; i < num_images; i++) {
+diff --git a/tests/test_fuzzer_formats.c b/tests/test_fuzzer_formats.c
+index 154a2e5..e32caf0 100644
+--- a/tests/test_fuzzer_formats.c
 b/tests/test_fuzzer_formats.c
+@@ -958,6 +958,61 @@ static void test_vrend_set_signle_abo_heap_overflow() {
+ virgl_renderer_submit_cmd((void *) cmd, ctx_id, 0xde);
+ }
+ 
++static void test_vrend_set_shader_images_overflow()
++{
++uint32_t num_shaders = PIPE_MAX_SHADER_IMAGES + 1;
++uint32_t size = num_shaders * VIRGL_SET_SHADER_IMAGE_ELEMENT_SIZE + 3;
++uint32_t cmd[size];
++int i = 0;
++cmd[i++] = ((size - 1)<< 16) | 0 << 8 | VIRGL_CCMD_SET_SHADER_IMAGES;
++cmd[i++] = PIPE_SHADER_FRAGMENT;
++memset([i], 0, size - i);
++
++virgl_renderer_submit_cmd((void *) cmd, ctx_id, size);
++}
++
++/* Test adapted from yaojun8558...@gmail.com:
++ * https://gitlab.freedesktop.org/virgl/virglrenderer/-/issues/250
++*/
++static void test_vrend_3d_resource_overflow() {
++
++struct virgl_renderer_resource_create_args resource;
++resource.handle = 0x4c474572;
++resource.target = PIPE_TEXTURE_2D_ARRAY;
++resource.format = VIRGL_FORMAT_Z24X8_UNORM;
++resource.nr_samples = 2;
++resource.last_level = 0;
++resource.array_size = 3;
++resource.bind = VIRGL_BIND_SAMPLER_VIEW;
++resource.depth = 1;
++resource.width = 8;
++resource.height = 4;
++resource.flags = 0;
++
++virgl_renderer_resource_create(, NULL, 0);
++virgl_renderer_ctx_attach_resource(ctx_id, resource.handle);
++
++uint32_t size = 0x400;
++uint32_t cmd[size];
++int i = 0;
++cmd[i++] = (size - 1) << 16 | 0 << 8 | VIRGL_CCMD_RESOURCE_INLINE_WRITE;
++cmd[i++] = resource.handle;
++cmd[i++] = 0; // level
++cmd[i++] = 0; // usage
++cmd[i++] = 0; // stride
++cmd[i++] = 0; // layer_stride
++cmd[i++] = 0; // x
++cmd[i++] = 0; // y
++cmd[i++] = 0; // z
++cmd[i++] = 8; // w
++cmd[i++] = 4; // h
++cmd[i++] = 3; // d
++memset([i], 0, size - i);
++
++virgl_renderer_submit_cmd((void *) cmd, ctx_id, size);
++}
++
++
+ int main()
+ {
+initialize_environment();
+@@ -980,6 +1035,8 @@ int main()
+test_cs_nullpointer_deference();
+test_vrend_set_signle_abo_heap_overflow();
+ 
++   test_vrend_set_shader_images_overflow();
++   test_vrend_3d_resource_overflow();
+ 
+virgl_renderer_context_destroy(ctx_id);
+virgl_renderer_cleanup();
+-- 
+2.25.1
+
diff --git 
a/meta/recipes-graphics/virglrenderer/virglrenderer/cve-2022-0175.patch 
b/meta/recipes-graphics/virglrenderer/virglrenderer/cve-2022-0175.patch
new file mode 100644
index 00..8bbb9eb579
--- /dev/null
+++ 

[OE-core] [WIP] descriptive_rename: Script for Inclusive Language variable renames

[Saul Wold]

This script searches for a list of variable that have been renamed
and converts them to their more descriptive names. It also searches
for a list of variables that have been removed or deprecated and
prints a message.

It will print a message to inform the user that there are terms that
need to be updated in their files. Many of these changes are context
sensitive and may not be modified as they might be existing calls to
other libraries. This message is informational only.

I have tested this on poky and meta-openembedded so far.


Signed-off-by: Saul Wold 
---
 scripts/contrib/descriptive-rename.py | 113 ++
 1 file changed, 113 insertions(+)
 create mode 100755 scripts/contrib/descriptive-rename.py

diff --git a/scripts/contrib/descriptive-rename.py 
b/scripts/contrib/descriptive-rename.py
new file mode 100755
index 00..f036328647
--- /dev/null
+++ b/scripts/contrib/descriptive-rename.py
@@ -0,0 +1,113 @@
+#!/usr/bin/env python3
+#
+# Conversion script to rename variables with more descriptive terms
+#
+#
+# SPDX-License-Identifier: GPL-2.0-only
+#
+
+import re
+import os
+import sys
+import tempfile
+import shutil
+import mimetypes
+
+if len(sys.argv) < 2:
+print("Please specify a directory to run the conversion script against.")
+sys.exit(1)
+
+
+renames = {
+"BB_ENV_WHITELIST":"BB_ENV_PASSTHROUGH",
+"BB_ENV_EXTRAWHITE":"BB_ENV_PASSTHROUGH_ADDITIONS",
+"BB_HASHCONFIG_WHITELIST":"BB_HASHCONFIG_IGNORE_VARS",
+"BB_SETSCENE_ENFORCE_WHITELIST":"BB_SETSCENE_ENFORCE_IGNORE_TASKS",
+"BB_HASHBASE_WHITELIST":"BB_BASEHASH_IGNORE_VARS",
+"BB_HASHTASK_WHITELIST":"BB_TASKHASH_IGNORE_TASKS",
+"CVE_CHECK_PN_WHITELIST":"CVE_CHECK_SKIP_RECIPE",
+"CVE_CHECK_WHITELIST":"CVE_CHECK_IGNORE",
+"MULTI_PROVIDER_WHITELIST":"BB_MULTI_PROVIDER_ALLOWED",
+"PNBLACKLIST":"SKIP_RECIPE",
+"SDK_LOCAL_CONF_BLACKLIST":"ESDK_LOCAL_CONF_ALLOW",
+"SDK_LOCAL_CONF_WHITELIST":"ESDK_LOCAL_CONF_REMOVE",
+"SDK_INHERIT_BLACKLIST":"ESDK_CLASS_INHERIT_DISABLE",
+"SSTATE_DUPWHITELIST":"SSTATE_ALLOW_OVERLAP_FILES",
+"SYSROOT_DIRS_BLACKLIST":"SYSROOT_DIRS_IGNORE",
+"UNKNOWN_CONFIGURE_WHITELIST":"UNKNOWN_CONFIGURE_OPT_IGNORE",
+"basewhitelist":"basehash_ignore_vars",
+"taskwhitelist":"taskhash_ignore_tasks",
+}
+
+removed_list = [
+"BB_STAMP_WHITELIST",
+"BB_STAMP_POLICY",
+"ICECC_USER_CLASS_BL",
+"ICECC_USER_PACKAGE_BL",
+"ICECC_USER_PACKAGE_WL",
+"INHERIT_BLACKLIST",
+"WHITELIST_",
+"TUNEABI_WHITELIST",
+]
+
+context_check_list = [
+"blacklist",
+"whitelist",
+"abort",
+]
+
+def processfile(fn):
+
+print(f"processing file '{fn}'")
+try:
+fh, abs_path = tempfile.mkstemp()
+modified = False
+with os.fdopen(fh, 'w') as new_file:
+with open(fn, "r") as old_file:
+lineno = 0
+for line in old_file:
+lineno += 1
+if not line or "BB_RENAMED_VARIABLE" in line:
+continue
+# Do the renames
+for old_name, new_name in renames.items():
+if old_name in line:
+line = line.replace(old_name, new_name)
+modified = True
+# Find removed names
+for removed_name in removed_list:
+if removed_name in line:
+print(f"{fn} needs further work at line {lineno} 
because {removed_name} has been deprecated")
+for check_word in context_check_list:
+if re.search(check_word, line, re.IGNORECASE):
+print(f"{fn} needs further work at line {lineno} 
since it contains {check_word}")
+new_file.write(line)
+if modified:
+print(f"*** Modified file '{fn}'")
+shutil.copymode(fn, abs_path)
+os.remove(fn)
+shutil.move(abs_path, fn)
+except UnicodeDecodeError:
+pass
+
+ourname = os.path.basename(sys.argv[0])
+ourversion = "0.1"
+
+if os.path.isfile(sys.argv[1]):
+processfile(sys.argv[1])
+sys.exit(0)
+
+for targetdir in sys.argv[1:]:
+print("processing directory '%s'" % targetdir)
+for root, dirs, files in os.walk(targetdir):
+for name in files:
+if name == ourname:
+continue
+fn = os.path.join(root, name)
+if os.path.islink(fn):
+continue
+if "ChangeLog" in fn or "/.git/" in fn or fn.endswith(".html") or 
fn.endswith(".patch") or fn.endswith(".m4") or fn.endswith(".diff"):
+continue
+processfile(fn)
+
+print("All files processed with version %s" % ourversion)
-- 
2.25.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#161783): 
https://lists.openembedded.org/g/openembedded-core/message/161783
Mute This Topic: https://lists.openembedded.org/mt/89192964/21656

[OE-core] [PATCH] waf.bbclass: Use renamed BB_BASEHASH_IGNORE_VARS variable

[Khem Raj]

Signed-off-by: Khem Raj 
---
 meta/classes/waf.bbclass | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/meta/classes/waf.bbclass b/meta/classes/waf.bbclass
index bc594d3c6b1..464564afa1d 100644
--- a/meta/classes/waf.bbclass
+++ b/meta/classes/waf.bbclass
@@ -39,7 +39,7 @@ def waflock_hash(d):
 # directory (e.g. if the source is coming from externalsrc and was previously
 # configured elsewhere).
 export WAFLOCK = ".lock-waf_oe_${@waflock_hash(d)}_build"
-BB_HASHBASE_WHITELIST += "WAFLOCK"
+BB_BASEHASH_IGNORE_VARS += "WAFLOCK"
 
 python waf_preconfigure() {
 import subprocess
-- 
2.35.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#161782): 
https://lists.openembedded.org/g/openembedded-core/message/161782
Mute This Topic: https://lists.openembedded.org/mt/89191653/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [PATCH] core-image-testmaster: Rename to core-image-testcontroller

[Richard Purdie]

Rename the image, the test controller class/code/module and the underlying
image sentinel file to all match the controller terminology.

Signed-off-by: Richard Purdie 
---
 meta/conf/distro/include/distro_alias.inc |  4 +-
 meta/conf/distro/include/maintainers.inc  |  4 +-
 .../{masterimage.py => controllerimage.py}| 44 +--
 meta/lib/oeqa/runtime/cases/ssh.py|  4 +-
 .../files/init-install-efi-testfs.sh  |  2 +-
 .../files/init-install-testfs.sh  |  2 +-
 ...=> core-image-testcontroller-initramfs.bb} |  2 +-
 ...master.bb => core-image-testcontroller.bb} |  4 +-
 8 files changed, 33 insertions(+), 33 deletions(-)
 rename meta/lib/oeqa/controllers/{masterimage.py => controllerimage.py} (84%)
 rename meta/recipes-extended/images/{core-image-testmaster-initramfs.bb => 
core-image-testcontroller-initramfs.bb} (92%)
 rename meta/recipes-extended/images/{core-image-testmaster.bb => 
core-image-testcontroller.bb} (70%)

diff --git a/meta/conf/distro/include/distro_alias.inc 
b/meta/conf/distro/include/distro_alias.inc
index 44bc3bf1315..e43c0acd80c 100644
--- a/meta/conf/distro/include/distro_alias.inc
+++ b/meta/conf/distro/include/distro_alias.inc
@@ -42,8 +42,8 @@ DISTRO_PN_ALIAS:pn-core-image-rt-sdk = "OE-Core"
 DISTRO_PN_ALIAS:pn-core-image-sato = "OE-Core"
 DISTRO_PN_ALIAS:pn-core-image-sato-dev = "OE-Core"
 DISTRO_PN_ALIAS:pn-core-image-sato-sdk = "OE-Core"
-DISTRO_PN_ALIAS:pn-core-image-testmaster = "OE-Core"
-DISTRO_PN_ALIAS:pn-core-image-testmaster-initramfs = "OE-Core"
+DISTRO_PN_ALIAS:pn-core-image-testcontroller = "OE-Core"
+DISTRO_PN_ALIAS:pn-core-image-testcontroller-initramfs = "OE-Core"
 DISTRO_PN_ALIAS:pn-core-image-weston = "OE-Core"
 DISTRO_PN_ALIAS:pn-core-image-x11 = "OE-Core"
 DISTRO_PN_ALIAS:pn-createrepo-c = "Fedora=createrepo_c Clear=createrepo_c"
diff --git a/meta/conf/distro/include/maintainers.inc 
b/meta/conf/distro/include/maintainers.inc
index 32ec391eb9e..740e5fe55c4 100644
--- a/meta/conf/distro/include/maintainers.inc
+++ b/meta/conf/distro/include/maintainers.inc
@@ -112,8 +112,8 @@ RECIPE_MAINTAINER:pn-core-image-ptest-all = "Richard Purdie 
> /tgt_root/etc/fstab
diff --git a/meta/recipes-extended/images/core-image-testmaster-initramfs.bb 
b/meta/recipes-extended/images/core-image-testcontroller-initramfs.bb
similarity index 92%
rename from meta/recipes-extended/images/core-image-testmaster-initramfs.bb
rename to meta/recipes-extended/images/core-image-testcontroller-initramfs.bb
index 1a2e0af27ba..2bc035a538d 100644
--- a/meta/recipes-extended/images/core-image-testmaster-initramfs.bb
+++ b/meta/recipes-extended/images/core-image-testcontroller-initramfs.bb
@@ -7,7 +7,7 @@ PACKAGE_INSTALL = "initramfs-live-boot 
initramfs-live-install-testfs initramfs-l
 # Do not pollute the initrd image with rootfs features
 IMAGE_FEATURES = ""
 
-export IMAGE_BASENAME = "core-image-testmaster-initramfs"
+export IMAGE_BASENAME = "core-image-testcontroller-initramfs"
 IMAGE_NAME_SUFFIX ?= ""
 IMAGE_LINGUAS = ""
 
diff --git a/meta/recipes-extended/images/core-image-testmaster.bb 
b/meta/recipes-extended/images/core-image-testcontroller.bb
similarity index 70%
rename from meta/recipes-extended/images/core-image-testmaster.bb
rename to meta/recipes-extended/images/core-image-testcontroller.bb
index 0faf18f5a4e..20edbd5630c 100644
--- a/meta/recipes-extended/images/core-image-testmaster.bb
+++ b/meta/recipes-extended/images/core-image-testcontroller.bb
@@ -1,4 +1,4 @@
-DESCRIPTION = "A master image to be deployed on a target useful for testing 
other images"
+DESCRIPTION = "A test controller image to be deployed on a target useful for 
testing other images using the OEQA runtime tests"
 
 IMAGE_FEATURES += "ssh-server-openssh package-management"
 
@@ -14,5 +14,5 @@ IMAGE_INSTALL += "\
 # we need a particular initramfs for live images
 # that pulls custom install scripts which take
 # care of partitioning for us
-INITRD_IMAGE = "core-image-testmaster-initramfs"
+INITRD_IMAGE = "core-image-testcontroller-initramfs"
 
-- 
2.32.0


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#161781): 
https://lists.openembedded.org/g/openembedded-core/message/161781
Mute This Topic: https://lists.openembedded.org/mt/89190934/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

Re: [OE-core] [PATCH v2] libsdl2: Fix build when libunwind is not used

[Khem Raj]

On Wed, Feb 16, 2022 at 1:58 AM Carlos Rafael Giani via
lists.openembedded.org 
wrote:
>
> "MACHINE=qemux86-64 bitbake libsdl2-native" still fails with a similar error:
>
> | CMake Error at 
> /home/test/yocto-master/poky/build/tmp/work/x86_64-linux/libsdl2-native/2.0.20-r0/recipe-sysroot-native/usr/share/cmake-3.22/Modules/FindPkgConfig.cmake:890
>  (message):
> |   None of the required 'libunwind' found
>
> This is triggered by the "pkg_search_module(UNWIND REQUIRED libunwind)" line 
> right above the one that is modified by this patch.
>
> Any idea what is going on?

I think its looking for libunwind on your build host.

>
>
> On 07.01.22 21:34, Alexander Kanavin wrote:
>
> Thanks :)
>
> Alex
>
> On Fri, 7 Jan 2022 at 20:23, Khem Raj  wrote:
>>
>> clang provides libunwind.h and cmake adds a check to
>> find libunwind when this header is detected, which was
>> not the case with automake. The check however is expecting
>> specific unwinder implementation which provides libunwind-generic
>> solib, this is not a standard library that all implementations
>> will provide, therefore make this check optional.
>>
>> Signed-off-by: Khem Raj 
>> Cc: Andreas Müller 
>> ---
>> v2: Udate patch status to submitted
>>
>>  .../libsdl2/optional-libunwind-generic.patch   | 18 ++
>>  .../recipes-graphics/libsdl2/libsdl2_2.0.18.bb |  1 +
>>  2 files changed, 19 insertions(+)
>>  create mode 100644 
>> meta/recipes-graphics/libsdl2/libsdl2/optional-libunwind-generic.patch
>>
>> diff --git 
>> a/meta/recipes-graphics/libsdl2/libsdl2/optional-libunwind-generic.patch 
>> b/meta/recipes-graphics/libsdl2/libsdl2/optional-libunwind-generic.patch
>> new file mode 100644
>> index 000..757b99a5f68
>> --- /dev/null
>> +++ b/meta/recipes-graphics/libsdl2/libsdl2/optional-libunwind-generic.patch
>> @@ -0,0 +1,18 @@
>> +Do not error when libunwind-generic is not found, Not all
>> +implementations of libunwind will provide this library therefore
>> +do not make it hard error if its not found.
>> +
>> +Upstream-Status: Submitted [https://github.com/libsdl-org/SDL/pull/5194]
>> +Signed-off-by: Khem Raj 
>> +
>> +--- a/CMakeLists.txt
>>  b/CMakeLists.txt
>> +@@ -1358,7 +1358,7 @@ elseif(UNIX AND NOT APPLE AND NOT ANDROI
>> +   if(HAVE_LIBUNWIND_H)
>> + # We've already found the header, so REQUIRE the lib to be present
>> + pkg_search_module(UNWIND REQUIRED libunwind)
>> +-pkg_search_module(UNWIND_GENERIC REQUIRED libunwind-generic)
>> ++pkg_search_module(UNWIND_GENERIC libunwind-generic)
>> + list(APPEND EXTRA_LIBS ${UNWIND_LIBRARIES} 
>> ${UNWIND_GENERIC_LIBRARIES})
>> +   endif()
>> + endif()
>> diff --git a/meta/recipes-graphics/libsdl2/libsdl2_2.0.18.bb 
>> b/meta/recipes-graphics/libsdl2/libsdl2_2.0.18.bb
>> index 893386343a7..1559d5e9425 100644
>> --- a/meta/recipes-graphics/libsdl2/libsdl2_2.0.18.bb
>> +++ b/meta/recipes-graphics/libsdl2/libsdl2_2.0.18.bb
>> @@ -18,6 +18,7 @@ PROVIDES = "virtual/libsdl2"
>>
>>  SRC_URI = "http://www.libsdl.org/release/SDL2-${PV}.tar.gz \
>> file://0001-Fix-build-against-wayland-1.20.patch \
>> +   file://optional-libunwind-generic.patch \
>>  "
>>
>>  S = "${WORKDIR}/SDL2-${PV}"
>> --
>> 2.34.1
>>
>>
>>
>>
>
>
>
>
> 
>

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#161780): 
https://lists.openembedded.org/g/openembedded-core/message/161780
Mute This Topic: https://lists.openembedded.org/mt/88269209/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

Re: [OE-core][dunfell 00/20] Pull request (cover letter only)

[Steve Sakoman]

On Tue, Feb 15, 2022 at 9:34 PM Ranjitsinh Rathod
 wrote:
>
> May I know by when this will be available on dunfell branch?

It should be available now!

Steve

> On Tue, 15 Feb, 2022, 10:59 pm Steve Sakoman,  wrote:
>>
>> The following changes since commit f3be01483b01c88f8c4ba24ca73ccf1bcc33665c:
>>
>>   build-appliance-image: Update to dunfell head revision (2022-01-27 
>> 16:16:08 +)
>>
>> are available in the Git repository at:
>>
>>   git://git.openembedded.org/openembedded-core-contrib stable/dunfell-next
>>   
>> http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-next
>>
>> Alexander Kanavin (1):
>>   libusb1: correct SRC_URI
>>
>> Joshua Watt (5):
>>   tzdata: Remove BSD License specifier
>>   e2fsprogs: Use specific BSD license variant
>>   glib-2.0: Use specific BSD license variant
>>   shadow: Use specific BSD license variant
>>   libcap: Use specific BSD license variant
>>
>> Marek Vasut (1):
>>   binutils: Backport Include members in the variable table used when
>> resolving DW_AT_specification tags.
>>
>> Marta Rybczynska (2):
>>   grub: add a fix for CVE-2020-25632
>>   grub: add a fix for CVE-2020-25647
>>
>> Minjae Kim (1):
>>   ghostscript: fix CVE-2021-45949
>>
>> Peter Kjellerstedt (1):
>>   sstate: A third fix for for touching files inside pseudo
>>
>> Purushottam Choudhary (1):
>>   systemd: Fix CVE-2021-3997
>>
>> Ranjitsinh Rathod (1):
>>   util-linux: Fix for CVE-2021-3995 and CVE-2021-3996
>>
>> Ross Burton (2):
>>   lsof: correct LICENSE
>>   shadow-sysroot: sync license with shadow
>>
>> Rudolf J Streif (1):
>>   linux-firmware: Add CLM blob to linux-firmware-bcm4373 package
>>
>> Steve Sakoman (4):
>>   glibc: update to lastest 2.31 release HEAD
>>   expat: fix CVE-2022-23852
>>   expat: add missing Upstream-status, CVE tag and sign-off to
>> CVE-2021-46143.patch
>>   common-licenses: add Spencer-94
>>
>>  meta/classes/sstate.bbclass   |  14 +-
>>  meta/files/common-licenses/Spencer-94 |  12 +
>>  .../grub/files/CVE-2020-25632.patch   |  90 +
>>  .../grub/files/CVE-2020-25647.patch   | 119 +++
>>  meta/recipes-bsp/grub/grub2.inc   |   2 +
>>  .../expat/expat/CVE-2021-46143.patch  |   6 +
>>  .../expat/expat/CVE-2022-23852.patch  |  33 ++
>>  meta/recipes-core/expat/expat_2.2.9.bb|   1 +
>>  meta/recipes-core/glib-2.0/glib.inc   |   2 +-
>>  meta/recipes-core/glibc/glibc-version.inc |   2 +-
>>  meta/recipes-core/glibc/glibc_2.31.bb |   1 +
>>  .../systemd/systemd/CVE-2021-3997-1.patch |  65 
>>  .../systemd/systemd/CVE-2021-3997-2.patch | 101 ++
>>  .../systemd/systemd/CVE-2021-3997-3.patch | 266 +++
>>  ...-fsync-after-removing-directory-tree.patch |  35 ++
>>  ...children-split-out-body-of-directory.patch | 318 ++
>>  meta/recipes-core/systemd/systemd_244.5.bb|   5 +
>>  .../util-linux/util-linux/CVE-2021-3995.patch | 139 
>>  .../util-linux/util-linux/CVE-2021-3996.patch | 226 +
>>  ...ude-strutils-cleanup-strto-functions.patch | 270 +++
>>  .../util-linux/util-linux_2.35.1.bb   |   3 +
>>  .../binutils/binutils-2.34.inc|   1 +
>>  ...in-the-variable-table-used-when-reso.patch |  32 ++
>>  meta/recipes-devtools/e2fsprogs/e2fsprogs.inc |   2 +-
>>  .../ghostscript/CVE-2021-45949.patch  |  65 
>>  ...tack-limits-after-function-evalution.patch |  51 +++
>>  .../ghostscript/ghostscript_9.52.bb   |   2 +
>>  meta/recipes-extended/lsof/lsof_4.91.bb   |   2 +-
>>  .../shadow/shadow-sysroot_4.6.bb  |   2 +-
>>  meta/recipes-extended/shadow/shadow.inc   |   2 +-
>>  meta/recipes-extended/timezone/timezone.inc   |   2 +-
>>  .../linux-firmware/linux-firmware_20211216.bb |   1 +
>>  meta/recipes-support/libcap/libcap_2.32.bb|   2 +-
>>  meta/recipes-support/libusb/libusb1_1.0.22.bb |   4 +-
>>  34 files changed, 1863 insertions(+), 15 deletions(-)
>>  create mode 100644 meta/files/common-licenses/Spencer-94
>>  create mode 100644 meta/recipes-bsp/grub/files/CVE-2020-25632.patch
>>  create mode 100644 meta/recipes-bsp/grub/files/CVE-2020-25647.patch
>>  create mode 100644 meta/recipes-core/expat/expat/CVE-2022-23852.patch
>>  create mode 100644 meta/recipes-core/systemd/systemd/CVE-2021-3997-1.patch
>>  create mode 100644 meta/recipes-core/systemd/systemd/CVE-2021-3997-2.patch
>>  create mode 100644 meta/recipes-core/systemd/systemd/CVE-2021-3997-3.patch
>>  create mode 100644 
>> meta/recipes-core/systemd/systemd/rm-rf-optionally-fsync-after-removing-directory-tree.patch
>>  create mode 100644 
>> meta/recipes-core/systemd/systemd/rm-rf-refactor-rm-rf-children-split-out-body-of-directory.patch
>>  create mode 100644 
>> meta/recipes-core/util-linux/util-linux/CVE-2021-3995.patch
>>  create mode 100644 
>> meta/recipes-core/util-linux/util-linux/CVE-2021-3996.patch
>>  create mode 100644 
>> 

[OE-core] [meta-oe][hardknott][PATCH] graphviz: native: create /usr/lib/graphviz/config6 in populate_sysroot

[Christian Eggers]

The `dot` tool requires to be run once after installation in order to
create its configuration file.

The do_prepare_recipe_sysroot task uses do_populate_sysroot in order to
prepare the recipe-sysroot-native. Package postinstall scripts are not
executed for -native packages, but files under ${BINDIR}/postinst-* are.

This is quite the same as graphviz-setup.sh does for nativesdk. The
general idea has been taken from
OECORE/meta/classes/pixbufcache.bbclass.

Signed-off-by: Christian Eggers 
Signed-off-by: Khem Raj 
---
 meta-oe/recipes-graphics/graphviz/graphviz_2.44.1.bb | 11 +++
 1 file changed, 11 insertions(+)

diff --git a/meta-oe/recipes-graphics/graphviz/graphviz_2.44.1.bb 
b/meta-oe/recipes-graphics/graphviz/graphviz_2.44.1.bb
index 8fe837b75ceb..cc57761bc4fe 100644
--- a/meta-oe/recipes-graphics/graphviz/graphviz_2.44.1.bb
+++ b/meta-oe/recipes-graphics/graphviz/graphviz_2.44.1.bb
@@ -74,6 +74,17 @@ do_install_append_class-nativesdk() {
 }
 FILES_${PN}_class-nativesdk += "${SDKPATHNATIVE}"
 
+# create /usr/lib/graphviz/config6
+graphviz_sstate_postinst() {
+mkdir -p ${SYSROOT_DESTDIR}${bindir}
+dest=${SYSROOT_DESTDIR}${bindir}/postinst-${PN}
+echo '#!/bin/sh' > $dest
+echo '' >> $dest
+echo 'dot -c' >> $dest
+chmod 0755 $dest
+}
+SYSROOT_PREPROCESS_FUNCS_append_class-native = " graphviz_sstate_postinst"
+
 PACKAGES =+ "${PN}-python ${PN}-perl ${PN}-demo"
 
 FILES_${PN}-python += "${libdir}/python*/site-packages/ 
${libdir}/graphviz/python/"
-- 
2.34.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#161778): 
https://lists.openembedded.org/g/openembedded-core/message/161778
Mute This Topic: https://lists.openembedded.org/mt/89185407/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [wic] non-rootfs partition content owned by build-user

[Laszlo Sitzer]

Hello,

I discovered that when building a wic image with /home on an extra
partition, the contents will be owned by the user running the build.

The problem persists with the master branch of poky.
Last known version to still work was dunfell-23.0.5

Steps to reproduce the issue:

1. git clone it://git.yoctoproject.org/poky (yes, it is on the master branch!)
2. create a build environment
3. add IMAGE_FSTYPES += "wic wic.bmap" to your local.conf
4. adjust  scripts/lib/wic/canned-wks/common.wks.inc like below to
create a /home partition

>>>
# This file is included into 3 canned wks files from this directory
part /boot --source bootimg-pcbios --ondisk sda --label boot --active
--align 1024
part / --source rootfs --use-uuid --fstype=ext4 --label platform
--align 1024 --exclude home
part /home --source rootfs --rootfs-dir ${IMAGE_ROOTFS}/home
--use-uuid --fstype=ext4 --label home --align 1024
>>>

5. run bitbake core-image-minimal
6. flash wic image to a USB drive
7. check contents of /home on USB drive

Would be amazing if anyone familiar with WIC and pseudo could
recommend how to proceed.

Best,

Lazlo

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#161777): 
https://lists.openembedded.org/g/openembedded-core/message/161777
Mute This Topic: https://lists.openembedded.org/mt/89185359/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [meta-oe][honister][PATCH] graphviz: native: create /usr/lib/graphviz/config6 in populate_sysroot

[Christian Eggers]

The `dot` tool requires to be run once after installation in order to
create its configuration file.

The do_prepare_recipe_sysroot task uses do_populate_sysroot in order to
prepare the recipe-sysroot-native. Package postinstall scripts are not
executed for -native packages, but files under ${BINDIR}/postinst-* are.

This is quite the same as graphviz-setup.sh does for nativesdk. The
general idea has been taken from
OECORE/meta/classes/pixbufcache.bbclass.

Signed-off-by: Christian Eggers 
Signed-off-by: Khem Raj 
---
 meta-oe/recipes-graphics/graphviz/graphviz_2.44.1.bb | 11 +++
 1 file changed, 11 insertions(+)

diff --git a/meta-oe/recipes-graphics/graphviz/graphviz_2.44.1.bb 
b/meta-oe/recipes-graphics/graphviz/graphviz_2.44.1.bb
index 7d2515e07549..203e0206fbfe 100644
--- a/meta-oe/recipes-graphics/graphviz/graphviz_2.44.1.bb
+++ b/meta-oe/recipes-graphics/graphviz/graphviz_2.44.1.bb
@@ -74,6 +74,17 @@ do_install:append:class-nativesdk() {
 }
 FILES:${PN}:class-nativesdk += "${SDKPATHNATIVE}"
 
+# create /usr/lib/graphviz/config6
+graphviz_sstate_postinst() {
+mkdir -p ${SYSROOT_DESTDIR}${bindir}
+dest=${SYSROOT_DESTDIR}${bindir}/postinst-${PN}
+echo '#!/bin/sh' > $dest
+echo '' >> $dest
+echo 'dot -c' >> $dest
+chmod 0755 $dest
+}
+SYSROOT_PREPROCESS_FUNCS:append:class-native = " graphviz_sstate_postinst"
+
 PACKAGES =+ "${PN}-python ${PN}-perl ${PN}-demo"
 
 FILES:${PN}-python += "${libdir}/python*/site-packages/ 
${libdir}/graphviz/python/"
-- 
2.34.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#161776): 
https://lists.openembedded.org/g/openembedded-core/message/161776
Mute This Topic: https://lists.openembedded.org/mt/89185197/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [hardknott][PATCH] mc: fix build if ncurses have been configured without wide characters

[Christian Eggers]

Some distros like poky-tiny set ENABLE_WIDEC=false, which disables wide
character support for ncurses. The new patch fixes the build of mc for
this case.

Since 9000f8033662, NCURSES_WIDECHAR is set explicitly to 1 for musl.
This doesn't work for ENABLE_WIDEC==false. In this case,
NCURSES_WIDECHAR must be set explicitly to 0, as curses.h does not
record whether the ncurses library has actually been built with or
without wide characters.

Fixes: 9000f8033662 ("mc: upgrade 4.8.25 -> 4.8.26")
Signed-off-by: Christian Eggers 
Signed-off-by: Richard Purdie 
---
 ...FTBFS-with-ncurses-build-with-disabl.patch | 87 +++
 meta/recipes-extended/mc/mc_4.8.26.bb |  5 +-
 2 files changed, 91 insertions(+), 1 deletion(-)
 create mode 100644 
meta/recipes-extended/mc/files/0001-Ticket-4200-fix-FTBFS-with-ncurses-build-with-disabl.patch

diff --git 
a/meta/recipes-extended/mc/files/0001-Ticket-4200-fix-FTBFS-with-ncurses-build-with-disabl.patch
 
b/meta/recipes-extended/mc/files/0001-Ticket-4200-fix-FTBFS-with-ncurses-build-with-disabl.patch
new file mode 100644
index ..408473664f5d
--- /dev/null
+++ 
b/meta/recipes-extended/mc/files/0001-Ticket-4200-fix-FTBFS-with-ncurses-build-with-disabl.patch
@@ -0,0 +1,87 @@
+From e7bbf72544ab62db9c92bfe7bd1155227e78c621 Mon Sep 17 00:00:00 2001
+From: Andrew Borodin 
+Date: Sat, 28 Aug 2021 11:46:53 +0300
+Subject: [PATCH] Ticket #4200: fix FTBFS with ncurses build with
+ --disable-widec.
+
+Upstream-Status: Accepted 
[https://github.com/MidnightCommander/mc/commit/e7bbf72544]
+Signed-off-by: Andrew Borodin 
+---
+ lib/tty/tty-ncurses.c   | 8 
+ lib/tty/tty-ncurses.h   | 5 +
+ lib/tty/tty-slang.h | 2 ++
+ src/filemanager/boxes.c | 2 ++
+ 4 files changed, 17 insertions(+)
+
+diff --git a/lib/tty/tty-ncurses.c b/lib/tty/tty-ncurses.c
+index f619c0a7bf31..13058a624208 100644
+--- a/lib/tty/tty-ncurses.c
 b/lib/tty/tty-ncurses.c
+@@ -560,6 +560,7 @@ tty_fill_region (int y, int x, int rows, int cols, 
unsigned char ch)
+ void
+ tty_colorize_area (int y, int x, int rows, int cols, int color)
+ {
++#ifdef ENABLE_SHADOWS
+ cchar_t *ctext;
+ wchar_t wch[10];/* TODO not sure if the length is correct */
+ attr_t attrs;
+@@ -585,6 +586,13 @@ tty_colorize_area (int y, int x, int rows, int cols, int 
color)
+ }
+ 
+ g_free (ctext);
++#else
++(void) y;
++(void) x;
++(void) rows;
++(void) cols;
++(void) color;
++#endif /* ENABLE_SHADOWS */
+ }
+ 
+ /* 
-
 */
+diff --git a/lib/tty/tty-ncurses.h b/lib/tty/tty-ncurses.h
+index d75df9533ab9..8feb17ccd045 100644
+--- a/lib/tty/tty-ncurses.h
 b/lib/tty/tty-ncurses.h
+@@ -30,6 +30,11 @@
+ #define NCURSES_CONST const
+ #endif
+ 
++/* do not draw shadows if NCurses is built with --disable-widec */
++#if defined(NCURSES_WIDECHAR) && NCURSES_WIDECHAR
++#define ENABLE_SHADOWS 1
++#endif
++
+ /*** typedefs(not structures) and defined constants 
**/
+ 
+ /*** enums 
***/
+diff --git a/lib/tty/tty-slang.h b/lib/tty/tty-slang.h
+index 5b12c6512853..eeaade388af4 100644
+--- a/lib/tty/tty-slang.h
 b/lib/tty/tty-slang.h
+@@ -23,6 +23,8 @@
+ #define COLS  SLtt_Screen_Cols
+ #define LINES SLtt_Screen_Rows
+ 
++#define ENABLE_SHADOWS 1
++
+ /*** enums 
***/
+ 
+ enum
+diff --git a/src/filemanager/boxes.c b/src/filemanager/boxes.c
+index 3eb525be4a9b..98df5ff2ed9a 100644
+--- a/src/filemanager/boxes.c
 b/src/filemanager/boxes.c
+@@ -280,7 +280,9 @@ appearance_box_callback (Widget * w, Widget * sender, 
widget_msg_t msg, int parm
+ switch (msg)
+ {
+ case MSG_INIT:
++#ifdef ENABLE_SHADOWS
+ if (!tty_use_colors ())
++#endif
+ {
+ Widget *shadow;
+ 
+-- 
+2.34.1
+
diff --git a/meta/recipes-extended/mc/mc_4.8.26.bb 
b/meta/recipes-extended/mc/mc_4.8.26.bb
index 6bc7e6e8e159..906778400ec8 100644
--- a/meta/recipes-extended/mc/mc_4.8.26.bb
+++ b/meta/recipes-extended/mc/mc_4.8.26.bb
@@ -12,6 +12,7 @@ SRC_URI = 
"http://www.midnight-commander.org/downloads/${BPN}-${PV}.tar.bz2 \
file://0001-mc-replace-perl-w-with-use-warnings.patch \
file://nomandate.patch \
file://CVE-2021-36370.patch \
+   
file://0001-Ticket-4200-fix-FTBFS-with-ncurses-build-with-disabl.patch \
"
 SRC_URI[sha256sum] = 
"9d6358d0a351a455a1410aab57f33b6b48b0fcf31344b9a10b0ff497595979d1"
 
@@ -24,7 +25,9 @@ PACKAGECONFIG ??= ""
 PACKAGECONFIG[smb] = "--enable-vfs-smb,--disable-vfs-smb,samba,"
 PACKAGECONFIG[sftp] = "--enable-vfs-sftp,--disable-vfs-sftp,libssh2,"
 
-CFLAGS_append_libc-musl = ' -DNCURSES_WIDECHAR=1 '
+# enable NCURSES_WIDECHAR=1 only if ENABLE_WIDEC has not been explicitly 
disabled 

[OE-core] [honister][PATCH] mc: fix build if ncurses have been configured without wide characters

[Christian Eggers]

Some distros like poky-tiny set ENABLE_WIDEC=false, which disables wide
character support for ncurses. The new patch fixes the build of mc for
this case.

Since 9000f8033662, NCURSES_WIDECHAR is set explicitly to 1 for musl.
This doesn't work for ENABLE_WIDEC==false. In this case,
NCURSES_WIDECHAR must be set explicitly to 0, as curses.h does not
record whether the ncurses library has actually been built with or
without wide characters.

Fixes: 9000f8033662 ("mc: upgrade 4.8.25 -> 4.8.26")
Signed-off-by: Christian Eggers 
Signed-off-by: Richard Purdie 
---
 ...FTBFS-with-ncurses-build-with-disabl.patch | 87 +++
 meta/recipes-extended/mc/mc_4.8.27.bb |  5 +-
 2 files changed, 91 insertions(+), 1 deletion(-)
 create mode 100644 
meta/recipes-extended/mc/files/0001-Ticket-4200-fix-FTBFS-with-ncurses-build-with-disabl.patch

diff --git 
a/meta/recipes-extended/mc/files/0001-Ticket-4200-fix-FTBFS-with-ncurses-build-with-disabl.patch
 
b/meta/recipes-extended/mc/files/0001-Ticket-4200-fix-FTBFS-with-ncurses-build-with-disabl.patch
new file mode 100644
index ..408473664f5d
--- /dev/null
+++ 
b/meta/recipes-extended/mc/files/0001-Ticket-4200-fix-FTBFS-with-ncurses-build-with-disabl.patch
@@ -0,0 +1,87 @@
+From e7bbf72544ab62db9c92bfe7bd1155227e78c621 Mon Sep 17 00:00:00 2001
+From: Andrew Borodin 
+Date: Sat, 28 Aug 2021 11:46:53 +0300
+Subject: [PATCH] Ticket #4200: fix FTBFS with ncurses build with
+ --disable-widec.
+
+Upstream-Status: Accepted 
[https://github.com/MidnightCommander/mc/commit/e7bbf72544]
+Signed-off-by: Andrew Borodin 
+---
+ lib/tty/tty-ncurses.c   | 8 
+ lib/tty/tty-ncurses.h   | 5 +
+ lib/tty/tty-slang.h | 2 ++
+ src/filemanager/boxes.c | 2 ++
+ 4 files changed, 17 insertions(+)
+
+diff --git a/lib/tty/tty-ncurses.c b/lib/tty/tty-ncurses.c
+index f619c0a7bf31..13058a624208 100644
+--- a/lib/tty/tty-ncurses.c
 b/lib/tty/tty-ncurses.c
+@@ -560,6 +560,7 @@ tty_fill_region (int y, int x, int rows, int cols, 
unsigned char ch)
+ void
+ tty_colorize_area (int y, int x, int rows, int cols, int color)
+ {
++#ifdef ENABLE_SHADOWS
+ cchar_t *ctext;
+ wchar_t wch[10];/* TODO not sure if the length is correct */
+ attr_t attrs;
+@@ -585,6 +586,13 @@ tty_colorize_area (int y, int x, int rows, int cols, int 
color)
+ }
+ 
+ g_free (ctext);
++#else
++(void) y;
++(void) x;
++(void) rows;
++(void) cols;
++(void) color;
++#endif /* ENABLE_SHADOWS */
+ }
+ 
+ /* 
-
 */
+diff --git a/lib/tty/tty-ncurses.h b/lib/tty/tty-ncurses.h
+index d75df9533ab9..8feb17ccd045 100644
+--- a/lib/tty/tty-ncurses.h
 b/lib/tty/tty-ncurses.h
+@@ -30,6 +30,11 @@
+ #define NCURSES_CONST const
+ #endif
+ 
++/* do not draw shadows if NCurses is built with --disable-widec */
++#if defined(NCURSES_WIDECHAR) && NCURSES_WIDECHAR
++#define ENABLE_SHADOWS 1
++#endif
++
+ /*** typedefs(not structures) and defined constants 
**/
+ 
+ /*** enums 
***/
+diff --git a/lib/tty/tty-slang.h b/lib/tty/tty-slang.h
+index 5b12c6512853..eeaade388af4 100644
+--- a/lib/tty/tty-slang.h
 b/lib/tty/tty-slang.h
+@@ -23,6 +23,8 @@
+ #define COLS  SLtt_Screen_Cols
+ #define LINES SLtt_Screen_Rows
+ 
++#define ENABLE_SHADOWS 1
++
+ /*** enums 
***/
+ 
+ enum
+diff --git a/src/filemanager/boxes.c b/src/filemanager/boxes.c
+index 3eb525be4a9b..98df5ff2ed9a 100644
+--- a/src/filemanager/boxes.c
 b/src/filemanager/boxes.c
+@@ -280,7 +280,9 @@ appearance_box_callback (Widget * w, Widget * sender, 
widget_msg_t msg, int parm
+ switch (msg)
+ {
+ case MSG_INIT:
++#ifdef ENABLE_SHADOWS
+ if (!tty_use_colors ())
++#endif
+ {
+ Widget *shadow;
+ 
+-- 
+2.34.1
+
diff --git a/meta/recipes-extended/mc/mc_4.8.27.bb 
b/meta/recipes-extended/mc/mc_4.8.27.bb
index 546e615d1d1c..e877780ea051 100644
--- a/meta/recipes-extended/mc/mc_4.8.27.bb
+++ b/meta/recipes-extended/mc/mc_4.8.27.bb
@@ -11,6 +11,7 @@ RRECOMMENDS:${PN} = "ncurses-terminfo"
 SRC_URI = "http://www.midnight-commander.org/downloads/${BPN}-${PV}.tar.bz2 \
file://0001-mc-replace-perl-w-with-use-warnings.patch \
file://nomandate.patch \
+   
file://0001-Ticket-4200-fix-FTBFS-with-ncurses-build-with-disabl.patch \
"
 SRC_URI[sha256sum] = 
"2f52dd9c75c20d8eac7701bd3a8c6c125aaf8cdd9cf12b78ca50a0102b543407"
 
@@ -27,7 +28,9 @@ PACKAGECONFIG ??= ""
 PACKAGECONFIG[smb] = "--enable-vfs-smb,--disable-vfs-smb,samba,"
 PACKAGECONFIG[sftp] = "--enable-vfs-sftp,--disable-vfs-sftp,libssh2,"
 
-CFLAGS:append:libc-musl = ' -DNCURSES_WIDECHAR=1 '
+# enable NCURSES_WIDECHAR=1 only if ENABLE_WIDEC has not been explicitly 
disabled (e.g. 

Re: [OE-core] [PATCH v2] libsdl2: Fix build when libunwind is not used

[Carlos Rafael Giani via lists.openembedded.org]

"MACHINE=qemux86-64 bitbake libsdl2-native" still fails with a similar 
error:


| CMake Error at 
/home/test/yocto-master/poky/build/tmp/work/x86_64-linux/libsdl2-native/2.0.20-r0/recipe-sysroot-native/usr/share/cmake-3.22/Modules/FindPkgConfig.cmake:890 
(message):

|   None of the required 'libunwind' found

This is triggered by the "pkg_search_module(UNWIND REQUIRED libunwind)" 
line right above the one that is modified by this patch.


Any idea what is going on?


On 07.01.22 21:34, Alexander Kanavin wrote:

Thanks :)

Alex

On Fri, 7 Jan 2022 at 20:23, Khem Raj  wrote:

clang provides libunwind.h and cmake adds a check to
find libunwind when this header is detected, which was
not the case with automake. The check however is expecting
specific unwinder implementation which provides libunwind-generic
solib, this is not a standard library that all implementations
will provide, therefore make this check optional.

Signed-off-by: Khem Raj 
Cc: Andreas Müller 
---
v2: Udate patch status to submitted

 .../libsdl2/optional-libunwind-generic.patch   | 18
++
 .../recipes-graphics/libsdl2/libsdl2_2.0.18.bb
 |  1 +
 2 files changed, 19 insertions(+)
 create mode 100644
meta/recipes-graphics/libsdl2/libsdl2/optional-libunwind-generic.patch

diff --git
a/meta/recipes-graphics/libsdl2/libsdl2/optional-libunwind-generic.patch
b/meta/recipes-graphics/libsdl2/libsdl2/optional-libunwind-generic.patch
new file mode 100644
index 000..757b99a5f68
--- /dev/null
+++
b/meta/recipes-graphics/libsdl2/libsdl2/optional-libunwind-generic.patch
@@ -0,0 +1,18 @@
+Do not error when libunwind-generic is not found, Not all
+implementations of libunwind will provide this library therefore
+do not make it hard error if its not found.
+
+Upstream-Status: Submitted
[https://github.com/libsdl-org/SDL/pull/5194]
+Signed-off-by: Khem Raj 
+
+--- a/CMakeLists.txt
 b/CMakeLists.txt
+@@ -1358,7 +1358,7 @@ elseif(UNIX AND NOT APPLE AND NOT ANDROI
+       if(HAVE_LIBUNWIND_H)
+         # We've already found the header, so REQUIRE the lib to
be present
+         pkg_search_module(UNWIND REQUIRED libunwind)
+-        pkg_search_module(UNWIND_GENERIC REQUIRED libunwind-generic)
++        pkg_search_module(UNWIND_GENERIC libunwind-generic)
+         list(APPEND EXTRA_LIBS ${UNWIND_LIBRARIES}
${UNWIND_GENERIC_LIBRARIES})
+       endif()
+     endif()
diff --git a/meta/recipes-graphics/libsdl2/libsdl2_2.0.18.bb

b/meta/recipes-graphics/libsdl2/libsdl2_2.0.18.bb

index 893386343a7..1559d5e9425 100644
--- a/meta/recipes-graphics/libsdl2/libsdl2_2.0.18.bb

+++ b/meta/recipes-graphics/libsdl2/libsdl2_2.0.18.bb

@@ -18,6 +18,7 @@ PROVIDES = "virtual/libsdl2"

 SRC_URI = "http://www.libsdl.org/release/SDL2-${PV}.tar.gz
 \
file://0001-Fix-build-against-wayland-1.20.patch \
+ file://optional-libunwind-generic.patch \
 "

 S = "${WORKDIR}/SDL2-${PV}"
-- 
2.34.1









-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#161773): 
https://lists.openembedded.org/g/openembedded-core/message/161773
Mute This Topic: https://lists.openembedded.org/mt/88269209/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

Re: [OE-core] [PATCH v3 1/3] glibc: Upgrade to 2.35 (RFC)

[Martin Jansa]

Ubuntu patched their docker.io package shortly after upgrading to
glibc-2.34 in Ubuntu-21.10, see:
http://changelogs.ubuntu.com/changelogs/pool/universe/d/docker.io/docker.io_20.10.7-0ubuntu5~20.04.2/changelog

docker.io (20.10.7-0ubuntu4) impish; urgency=medium

  * d/p/seccomp-add-support-for-clone3-syscall-in-default-policy.patch: Fix
failure with new glibc clone3 syscall adding it to the default seccomp
policy (LP: #1943049).

 -- Lucas Kanashiro   Fri, 10 Sep 2021 15:34:38 -0300

AFAIK Ubuntu isn't affected anymore, I've updated
https://bugzilla.yoctoproject.org/show_bug.cgi?id=1711 and I'm fine with
dropping the patch now (it was useful before, but now distributions had
enough time to prepare for 2.34 changes).

On Wed, Feb 16, 2022 at 9:31 AM hongxu  wrote:

> From upstream docker github [1]
>
> The issue was found in 20.10.7, the the fix was merged in v20.10.10-rc1
> [2]
> From docker release notes, it was published in version 20.10.10 at
> 2021-10-25[3]
>
> In ubuntu 20.04.2, the docker version is 20.10.7 (20.10.7-0ubuntu1~
> 20.04.2) [4],
>
> From [5], Ubuntu 21.10 and Fedora 35 has the issue
>
> [1] https://github.com/moby/moby/issues/42680
> 
> seccomp filter breaks latest glibc (in fedora rawhide) by blocking clone3
> with EPERM · Issue #42680 · moby/moby · GitHub
> 
> Client: Version: 20.10.7 API version: 1.41 Go version: go1.16.6 Git
> commit: f0df350 Built: Mon Jul 26 16:34:29 2021 OS/Arch: linux/amd64
> Context: default Experimental ...
> github.com
> **
> [2]
> https://github.com/moby/moby/commit/6835d15f5523063f0a04a86d4810a637c6010d62
>
> 
> [20.10] update containerd binary to v1.4.10 · moby/moby@6835d15
> 
> - Update runc to v1.0.2 - Update hcsshim to v0.8.21 - Support
> clone3 in default seccomp profile - Fix panic in metadata
> content writer on copy error Signed-off-by: Sebastiaan van Stijn...
> github.com
> **
>
> [3] https://docs.docker.com/engine/release-notes/#201010
> Docker Engine release notes - Docker Documentation
> 
> Docker Engine release notes. This document describes the latest changes,
> additions, known issues, and fixes for Docker Engine. Note: The client and
> container runtime are now in separate packages from the daemon in Docker
> Engine 18.09. Users should install and update all three packages at the
> same time to get the latest patch releases.
> docs.docker.com
>
>
> [4] https://bugs.launchpad.net/ubuntu/+source/docker.io/+bug/1948361
> Bug #1948361 “docker.io - error adding seccomp filter rule for s... : Bugs
> : docker.io package : Ubuntu
> 
> Encountered the following error using the docker.io package in
> focal-proposed running the
> autotest-client-test/ubuntu_performance_deep_learning test. "docker: Error
> response from daemon: failed to create shim: OCI runtime create failed:
> container_linux.go:380: starting container process caused: error adding
> seccomp filter rule for syscall clone3: permission denied: unknown." This
> test essentially pulls down a nvidia tensorflow docker container, runs the
> container and triggers the preloaded ...
> bugs.launchpad.net
> **
>
> [5]
> https://pascalroeleven.nl/2021/09/09/ubuntu-21-10-and-fedora-35-in-docker/
> Ubuntu 21.10 and Fedora 35 in Docker – Pascal Roeleven
> 
> Here I am, back again with another post which I think the internet needs.
> It took me days to figure it out and I can’t imagine there aren’t more
> people who are running into the same issue.
> pascalroeleven.nl
>
> //Hongxu
> --
> *From:* Khem Raj 
> *Sent:* Wednesday, February 16, 2022 12:08 PM
> *To:* Jia, Hongxu 
> *Cc:* Richard Purdie ;
> openembedded-core@lists.openembedded.org <
> openembedded-core@lists.openembedded.org>
> *Subject:* Re: [OE-core] [PATCH v3 1/3] glibc: Upgrade to 2.35 (RFC)
>
>
> [Please note: This e-mail is from an EXTERNAL e-mail address]
>
>
> On Tue, Feb 15, 2022 at 6:28 PM Jia, Hongxu 
> wrote:
>
> Hi khem,
>
> Upstream glibc reject it because the latest docker has supported it[1],
> and upstream glibc does not backward compatibility with old docker[2]
>
> In order to build Yocto with uninative in old docker, we need this local
> patch
>
>
> How old is the docker and I assume
> It’s some distribution needing it ?
>
>
> [1]
> https://github.com/moby/moby/commit/9f6b562dd12ef7b1f9e2f8e6f2ab6477790a6594
> 
>
> 

Re: [OE-core] [PATCH v3 1/3] glibc: Upgrade to 2.35 (RFC)

[hongxu]

From upstream docker github [1]

The issue was found in 20.10.7, the the fix was merged in v20.10.10-rc1 [2]
From docker release notes, it was published in version 20.10.10 at 2021-10-25[3]

In ubuntu 20.04.2, the docker version is 20.10.7 (20.10.7-0ubuntu1~20.04.2) [4],

From [5], Ubuntu 21.10 and Fedora 35 has the issue

[1] https://github.com/moby/moby/issues/42680
[https://opengraph.githubassets.com/a41091aebf5cd0f5794a29a43ef7a6208fa5df0cd2824ada79ffc1b7fb467028/moby/moby/issues/42680]
seccomp filter breaks latest glibc (in fedora rawhide) by blocking clone3 with 
EPERM · Issue #42680 · moby/moby · 
GitHub
Client: Version: 20.10.7 API version: 1.41 Go version: go1.16.6 Git commit: 
f0df350 Built: Mon Jul 26 16:34:29 2021 OS/Arch: linux/amd64 Context: default 
Experimental ...
github.com

[2] https://github.com/moby/moby/commit/6835d15f5523063f0a04a86d4810a637c6010d62
[https://opengraph.githubassets.com/232bea6d1440bb915cda2ac46a719e5ee82b3efe10f8d273c2e772d9c12759ad/moby/moby/commit/6835d15f5523063f0a04a86d4810a637c6010d62]
[20.10] update containerd binary to v1.4.10 · 
moby/moby@6835d15
- Update runc to v1.0.2 - Update hcsshim to v0.8.21 - Support 
clone3 in default seccomp profile - Fix panic in metadata content 
writer on copy error Signed-off-by: Sebastiaan van Stijn...
github.com


[3] https://docs.docker.com/engine/release-notes/#201010
Docker Engine release notes - Docker 
Documentation
Docker Engine release notes. This document describes the latest changes, 
additions, known issues, and fixes for Docker Engine. Note: The client and 
container runtime are now in separate packages from the daemon in Docker Engine 
18.09. Users should install and update all three packages at the same time to 
get the latest patch releases.
docs.docker.com


[4] https://bugs.launchpad.net/ubuntu/+source/docker.io/+bug/1948361
Bug #1948361 “docker.io - error adding seccomp filter rule for s... : Bugs : 
docker.io package : 
Ubuntu
Encountered the following error using the docker.io package in focal-proposed 
running the autotest-client-test/ubuntu_performance_deep_learning test. 
"docker: Error response from daemon: failed to create shim: OCI runtime create 
failed: container_linux.go:380: starting container process caused: error adding 
seccomp filter rule for syscall clone3: permission denied: unknown." This test 
essentially pulls down a nvidia tensorflow docker container, runs the container 
and triggers the preloaded ...
bugs.launchpad.net


[5] https://pascalroeleven.nl/2021/09/09/ubuntu-21-10-and-fedora-35-in-docker/
Ubuntu 21.10 and Fedora 35 in Docker – Pascal 
Roeleven
Here I am, back again with another post which I think the internet needs. It 
took me days to figure it out and I can’t imagine there aren’t more people who 
are running into the same issue.
pascalroeleven.nl

//Hongxu

From: Khem Raj 
Sent: Wednesday, February 16, 2022 12:08 PM
To: Jia, Hongxu 
Cc: Richard Purdie ; 
openembedded-core@lists.openembedded.org 

Subject: Re: [OE-core] [PATCH v3 1/3] glibc: Upgrade to 2.35 (RFC)


[Please note: This e-mail is from an EXTERNAL e-mail address]


On Tue, Feb 15, 2022 at 6:28 PM Jia, Hongxu 
mailto:hongxu@windriver.com>> wrote:
Hi khem,

Upstream glibc reject it because the latest docker has supported it[1], and 
upstream glibc does not backward compatibility with old docker[2]

In order to build Yocto with uninative in old docker, we need this local patch

How old is the docker and I assume
It’s some distribution needing it ?

[1] 
https://github.com/moby/moby/commit/9f6b562dd12ef7b1f9e2f8e6f2ab6477790a6594
[X]
seccomp: add support for "clone3" syscall in default policy · 
moby/moby@9f6b562
If no seccomp policy is requested, then the built-in default policy in dockerd 
applies. This has no rule for clone3 defined, nor any default errno 
defined. So when runc receives the con...