Re: [OE-core] [PATCH 00/60] krogoth-next staged

On 09/24/2016 07:48 AM, Ian Geiser wrote: > I think the systemd change may have broken something. It looks like it is > running a useradd with no arguments other than the root. Now I see the > following error in krogoth: > I appears to be caused by http://git.yoctoproject.org/cgit/cgit.cgi/p

Re: [OE-core] [PATCH 00/60] krogoth-next staged

Ian, On 09/24/2016 07:48 AM, Ian Geiser wrote: I think the systemd change may have broken something. It looks like it is running a useradd with no arguments other than the root. Now I see the following error in krogoth: from "tmp-glibc/work/i586-oe-linux/systemd/1_229+gitAUTOINC+714c62b463

Re: [OE-core] [PATCH 0/7] Jethro pull request #2

ping On 09/20/2016 12:12 PM, Armin Kuster wrote: From: Armin Kuster please consider these changes for Jethro Similar fixes for krogoth are in my staging branch The following changes since commit 6f0350d1cbf5829bfbaa3a43227f8d564903743a: wget: Security fix CVE-2016-4971 (2016-09-17 22:33

Re: [OE-core] [PATCH 00/13] Jethro-next pull request

Ping On 09/18/2016 03:44 PM, Armin Kuster wrote: From: Armin Kuster please consider these security and bug fixes for Jethro. My krogoth-next stagging branch has a complimentary set for the security fixes. http://git.yoctoproject.org/cgit/cgit.cgi/poky-contrib/log/?h=akuster/krogoth-next:

Re: [OE-core] [master][PATCH] openssl: security fix CVE-2016-6304

On 09/23/2016 02:06 AM, Paul Eggleton wrote: On Fri, 23 Sep 2016 11:56:41 Maxin B. John wrote: On Fri, Sep 23, 2016 at 04:48:37PM +0800, Anuj Mittal wrote: Reference: https://www.openssl.org/news/secadv/20160922.txt Upstream fix: https://github.com/openssl/openssl/commit/e408c09bbf7c3057bda4

Re: [OE-core] [PATCH 1/1] openssl: update to 1.0.2i (CVE-2016-6304 and more)

On 09/23/2016 05:01 AM, Alexander Kanavin wrote: On 09/23/2016 11:39 AM, Patrick Ohly wrote: This update fixes several CVEs: * OCSP Status Request extension unbounded memory growth (CVE-2016-6304) * SWEET32 Mitigation (CVE-2016-2183) * OOB write in MDC2_Update() (CVE-2016-6303) * Malformed SHA

Re: [OE-core] [PATCH] [krogoth] Fixes several python3 dependencies

On 09/23/2016 07:40 AM, Richard Purdie wrote: On Thu, 2016-09-22 at 08:33 -0700, akuster808 wrote: Alejandro, On 09/21/2016 02:10 PM, Alejandro Hernandez wrote: This patch adds the packages python3-signal, python3-enum and python3-selectors, while it also fixes python3-subprocess, this

Re: [OE-core] [PATCH] [krogoth] Fixes several python3 dependencies

Alejandro, On 09/21/2016 02:10 PM, Alejandro Hernandez wrote: This patch adds the packages python3-signal, python3-enum and python3-selectors, while it also fixes python3-subprocess, this fixes the installation of python3-modules I can not get this to apply to my krogoth-next nor krogoth in

Re: [OE-core] [PATCH][krogoth] qemu: CVE-2016-3710

On 09/21/2016 01:10 AM, Sona Sarmadi wrote: Fixes an out-of-bounds read/write access flaw which was found in the way QEMU's VGA emulation with VESA BIOS Extensions (VBE) support performed read/write operations using I/O port methods. A privileged guest user could use this flaw to execute arbit

Re: [OE-core] [PATCH][krogoth] dropbear: upgrade to 2016.72

On 9/14/16 5:34 AM, Sona Sarmadi wrote: > The upgrade addresses CVE-2016-3116: > > - Validate X11 forwarding input. Could allow bypass of > authorized_keys command= restrictions, > found by github.com/tintinweb. > Thanks for Damien Miller for a patch. CVE-2016-3116 thanks, I will pull this i

Re: [OE-core] CVE-2016-3116: dropbear: X11 forwarding input not validated properly

On 9/14/16 2:43 AM, Richard Purdie wrote: > On Wed, 2016-09-14 at 12:06 +0300, Alexander Kanavin wrote: >> On 09/14/2016 11:49 AM, Sona Sarmadi wrote: >>> https://matt.ucc.asn.au/dropbear/CHANGES >>> . >>> 2016.72 - 9 March 2016<<< dropbear version this CVE has >>> been fixed >>> - Vali

Re: [OE-core] [PATCH 00/26] Krogoth-next: stagged changes

On 09/08/2016 01:00 PM, Andre McCurdy wrote: On Thu, Sep 8, 2016 at 8:55 AM, Armin Kuster wrote: The following changes are being considered for krogoth-next. If I am missing something, please let me know. Perhaps this one: http://git.openembedded.org/openembedded-core/commit/?id=c03b32b

Re: [OE-core] [PATCH][krogoth] curl: security fix for CVE-2016-7141

On 09/08/2016 06:33 AM, Sona Sarmadi wrote: Affected versions: Affected versions: libcurl 7.19.6 to and including 7.50.1 Not affected versions: libcurl >= 7.50.2 Reference to upstream patch: https://curl.haxx.se/CVE-2016-7141.patch Signed-off-by: Sona Sarmadi merged to stagging.

Re: [OE-core] [OE-Core][PATCH] valgrind: MIPS: Make toolchain basename generic

On 09/08/2016 06:14 AM, Zubair Lutfullah Kakakhel wrote: For the hard float case, COMPATIBLE_HOST should be set to ".*-linux" since OE can support multiple distro layers, not just poky. Signed-off-by: Zubair Lutfullah Kakakhel is this good for Krogoth too? it has the same version. - armin

Re: [OE-core] [PATCH][krogoth] pulseaudio: fix crash when disconnecting bluetooth devices

Nicolas, On 09/06/2016 09:08 AM, Nicolas Dechesne wrote: On Tue, Sep 6, 2016 at 5:44 PM, akuster808 wrote: On 09/06/2016 03:00 AM, Tanu Kaskinen wrote: Ping? I sent this patch for krogoth (and a similar patch for jethro) about a month ago, but it hasn't been applied yet. This is the

Re: [OE-core] [PATCH][krogoth] pulseaudio: fix crash when disconnecting bluetooth devices

On 09/06/2016 03:00 AM, Tanu Kaskinen wrote: Ping? I sent this patch for krogoth (and a similar patch for jethro) about a month ago, but it hasn't been applied yet. This is the first time I'm sending patches for past releases - are there other hoops to jump through than adding the [krogoth] tag

Re: [OE-core] krogoth: musl-1.1.15 is broken on mips

On 08/22/2016 04:21 PM, Khem Raj wrote: On Aug 22, 2016, at 3:13 PM, Ruslan Babayev wrote: Hi Khem, musl-1.1.15 has a change which broke mips arch. This was reverted later but 1.1.16 is not out yet. Yes I am aware if this and it has been fixed in master for sometime now. http://git.openembe

Re: [OE-core] [krogoth][PATCH] gcc, qemuppc: Explicitly disable forcing SPE flags for 4.9

On 07/15/2016 06:22 AM, Pascal Bach wrote: > This ports the missing changes from commit: > 7a51776a830167e43cbd185505f62f328704e271 > from 5.3 to 4.9 so that qemuppc can be compiled. > > Signed-off-by: Pascal Bach merged to staging thanks, Armin > --- > ...Enable-SPE-AltiVec-generation-on-p

Re: [OE-core] [krogoth][PATCH] mesa-demos: Fix OpenGL ES configurability

On 08/08/2016 08:45 AM, Tom Hochstein wrote: > The most recent patch > 0011-drop-demos-dependant-on-obsolete-MESA_screen_surface.patch > incorrectly removed the configuration constructs that allowed the > package to be configured without OpenGL ES support. > > Signed-off-by: Tom Hochstein > --

Re: [OE-core] [krogoth] systemd network service fails to start on boot

On 08/15/2016 02:24 AM, Burton, Ross wrote: > On 15 August 2016 at 07:38, Kristian Amlie wrote: > >> So, I did what you asked. Is there anything else missing? >> > > No, just wait for the krogoth maintainer to pick up the patches. pulling to staging. thanks armin > > Ross > > > -- ___

Re: [OE-core] [krogoth][PATCH 11/12] at: use snapshot.debian.org for SRC_URI

Maxim, On 07/28/2016 07:04 AM, Maxin B. John wrote: > From: Tim Orling > > Using ${DEBIAN_MIRROR} for SRC_URI doesn't work very well as that will only > contain releases that are currently in Debian, so currently doesn't contain > 3.1.18 as unstable has moved on to 3.1.20. > > So, move all of

Re: [OE-core] [PATCH] dpkg: use snapshot.debian.org for SRC_URI

On 7/25/16 4:15 PM, Ross Burton wrote: > Using ${DEBIAN_MIRROR} for SRC_URI doesn't work very well as that will only > contain releases that are currently in Debian, so currently doesn't contain > 1.18.7 as unstable has moved on to 1.18.9. > > So, move all of SRC_URI to the .bb so it can use snapsh

Re: [OE-core] [PATCH 00/17] Jethro-next security fixes

Ping On 07/09/2016 06:08 PM, Armin Kuster wrote: > From: Armin Kuster > > Please consider these changes for jethro-next. > > The libxml2 changes don't affect Master nor krogoth. > Glibc changes have been sent for Master and soon for Krogoth. > > The following changes since commit 118380bc5d0

Re: [OE-core] [PATCH 1/2] build summary: add gcc version being used.

I noticed this patch was being carried in mut builds and no is missing. does that mean this is rejected? - armin On 06/22/2016 08:29 AM, Armin Kuster wrote: > From: Armin Kuster > > Signed-off-by: Armin Kuster > --- > meta/classes/base.bbclass | 2 ++ > meta/conf/bitbake.conf| 2 +- > 2

Re: [OE-core] [PATCH] build summary: add TCMODE to build summary

I noticed this patch was being carried in mut builds and no is missing. does that mean this is rejected? - armin On 06/27/2016 09:05 AM, Armin Kuster wrote: > Signed-off-by: Armin Kuster > --- > meta/conf/bitbake.conf | 2 +- > 1 file changed, 1 insertion(+), 1 deletion(-) > > diff --git a/me

Re: [OE-core] [krogoth][PATCH] nss: fix build for gcc-6

On 07/17/2016 11:37 AM, Tim Orling wrote: > [YOCTO #9897] (Fedora-24 host is gcc-6) > > Signed-off-by: Tim Orling thanks, pulled in to staging. -armin > --- > meta/recipes-support/nss/nss/nss-gcc6-fix.patch | 343 > > meta/recipes-support/nss/nss_3.21.bb

Re: [OE-core] [yocto] Yocto Project Status WW29

On 07/15/2016 08:32 AM, Saul Wold wrote: > > Current Dev Position: YP 2.2 M2 > Next Deadline: YP 2.2 M2 cut off would > be: 7/18/16 (This coming Monday - 5:00pm GMT) > > SWAT team rotation: Paul -> Ross > https://wiki.yoctoproject.org/wiki/Yoct > o_Build_Failure_Swat_Team > > Key Status/Update

Re: [OE-core] [PATCH] nss: Fix build on mips/clang

Does this affect Krogoth? - armin On 07/15/2016 03:03 AM, Khem Raj wrote: > This issue is also reported here > https://trac.macports.org/ticket/51709 > Patch is also from same ticket > > Signed-off-by: Khem Raj > --- > .../recipes-support/nss/nss/pqg.c-ULL_addend.patch | 23 > +

Re: [OE-core] [krogoth][PATCH 1/8] pkgconfig: Fix build with gcc-6

On 07/15/2016 07:08 AM, Burton, Ross wrote: > On 15 July 2016 at 14:53, akuster808 wrote: > >> So this is the host gcc not the one in OE? >> > > Yes, the situation was host with gcc6 building krogoth. Thanks. After looking further down the queue I found the PATCH 0/

Re: [OE-core] [krogoth][PATCH] gcc, qemuppc: Explicitly disable forcing SPE flags for 4.9

Pascal, The "0049-Enable-SPE-AltiVec-generation-on-powepc-linux-target.patch" is missing the OE patch standard header information. please see http://www.openembedded.org/wiki/Commit_Patch_Message_Guidelines Also, there is no .bb update so this patch will be applied. regards, Armin On 07/15/201

Re: [OE-core] [krogoth][PATCH 0/8] Fixes for gcc-6 (Fedora-24)

On 07/14/2016 06:49 PM, Tim Orling wrote: > [YOCTO #9897] > > Fedora-24 only has gcc-6.1.1. thanks, pulled into staging. - armin > > This has caused a number of failures in -native recipes and gcc-cross. > > This series either cherry-picks commits from master or applies known good > patche

Re: [OE-core] [PATCH][krogoth] binutils: backport fix for TLSDESC relocations with no TLS segment on arch64

On 07/14/2016 12:59 PM, Ross Burton wrote: > As exposed by WebKit on aarch64 hosts, which causes binutils to throw an > internal error. > > [ YOCTO #9509 ] > > Signed-off-by: Ross Burton thanks. pulled into staging. - armin > --- > meta/recipes-devtools/binutils/binutils-2.26.inc | 1 +

Re: [OE-core] [krogoth][PATCH 1/8] pkgconfig: Fix build with gcc-6

So this is the host gcc not the one in OE? - armin On 07/14/2016 06:49 PM, Tim Orling wrote: > Our patch in master was on top of 0.29.1 update. > commit b83a808fcbd3e7aec3b0757c7180cf83dac44e92 > > Apply to krogoth stable 0.29 version instead. > > [YOCTO #9897] (Fedora-24) > > Signed-off-by: T

[OE-core] musl 1.1.15 for krogoth?

Khem, would updating Krogoth musl to 1.1.15 be safe? I already pulled in the other musl tip updates. regards, Armin -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembe

Re: [OE-core] [PATCHv3 1/2] cve-check-tool: Add recipe

Mariano, On 07/11/2016 05:52 AM, mariano.lo...@linux.intel.com wrote: > From: Mariano Lopez > > cve-check-tool is a program for public CVEs checking. > This tool also seek to determine if a vulnerability has > been addressed by a patch. By tool do you mean the "cve-check-tool"? All the Nvd DB

Re: [OE-core] Future of GCC

On 07/12/2016 02:24 PM, Burton, Ross wrote: > On 12 July 2016 at 22:14, akuster808 wrote: > >>> Personally I was thinking that gcc 5.x and 6.x should stay in oe-core for >>> this cycle, and then drop 5.x after the release. >> >> >> Wouldn't tha

Re: [OE-core] Future of GCC

On 07/12/2016 01:15 AM, Burton, Ross wrote: > On 12 July 2016 at 08:57, Gary Thomas wrote: > >> Now that GCC 4.x is gone, we're left with (currently) 5.4 & 6.1 >> Is the intention to track these both for a while, or will 5.x >> also be gone once things are working with 6.x? >> >> ... just wonde

Re: [OE-core] [for-krogoth] musl backport

On 07/11/2016 10:41 AM, Khem Raj wrote: On Mon, Jul 11, 2016 at 10:39 AM, Otavio Salvador wrote: Hello Khem and OE-Core fellows, I would like to propose the backport of following changes: commit a572a1181411668a9bd4c264f5124d13f3d7cead (HEAD -> for-krogoth) Author: Khem Raj Date: Thu Jun

Re: [OE-core] [for-krogoth] Backport of new libarchive release

Otavio, On 07/11/2016 07:41 AM, Otavio Salvador wrote: Hello Armin and OE-Core fellows, The libarchive 3.2.1 fixes several bugs and security related issues so it seems like a good candidate for backport. I list below the commits I did in our local fork while testing it: CVE-2016-1541 is the

Re: [OE-core] [for-krogoth] musl backport

On 07/11/2016 10:41 AM, Khem Raj wrote: > On Mon, Jul 11, 2016 at 10:39 AM, Otavio Salvador > wrote: >> Hello Khem and OE-Core fellows, >> >> I would like to propose the backport of following changes: >> >> commit a572a1181411668a9bd4c264f5124d13f3d7cead (HEAD -> for-krogoth) >> Author: Khem Raj

Re: [OE-core] [master][PATCH] gcc: CVE-2016-4490

Richard, please revert http://cgit.openembedded.org/openembedded-core/commit/?h=master-next&id=709dd94cd2a6011738b4ab10bd09839b07f44eac I sent a v2 of th-s fix. Its missing the gcc-6.1.inc changes to actually apply the patch. - armin On 07/07/2016 07:26 PM, Khem Raj wrote: > On Thu, Jul 7, 201

Re: [OE-core] [master][PATCH] glibc: CVE-2016-4429

On 07/08/2016 04:08 PM, Khem Raj wrote: > On Fri, Jul 8, 2016 at 3:48 PM, Armin Kuster wrote: >> From: Armin Kuster >> >> Signed-off-by: Armin Kuster >> --- >> meta/recipes-core/glibc/glibc/CVE-2016-4429.patch | 86 >> +++ >> meta/recipes-core/glibc/glibc_2.24.bb

Re: [OE-core] [PATCH 0/1][krogoth] Fix systemtap

On 07/07/2016 10:10 AM, Tom Zanussi wrote: > This patch is required for systemtap to work with krogoth and the 4.4 kernel. > > The following changes since commit 98c57bb512ea6790db8604fcf0b88c81651d2ab4: > > build-appliance-image: Update to krogoth head revision (2016-07-06 17:28:04 > +0100)

Re: [OE-core] [oe-commits] [openembedded-core] 58/94: openssl: prevent ABI break from earlier krogoth releases

On 06/29/2016 12:02 PM, Martin Jansa wrote: > Please revert this, this is actually breaking the ABI compatibility against > Krogoth release as reported in pull request. I thought I removed it when you provided feed back the last time. my apologies, Armin > On Wed, Jun 29, 2016 at 8:37 PM, wro

Re: [OE-core] [krogoth][PATCH] lib/oe/rootfs: Fix DEBUGFS generation, without openssl

On 06/27/2016 12:03 AM, Anders Darander wrote: > Ping. > > What's the current status? Submitted again. Hope it makes in this time. - armin > > Anders Darander [160607 09:31]: >> * akuster808 [160523 07:29]: >>> On 05/22/2016 10:03 PM, An

Re: [OE-core] [PATCH 2/4] uclibc: don't compile in mips16e mode

Are these Krogoth worthy? - armin On 06/24/2016 03:58 AM, André Draszik wrote: > From: André Draszik > > uClibc contains hand-written assembly which is not compatible with > the MIPS16e mode. > > Signed-off-by: André Draszik > --- > meta/recipes-core/uclibc/uclibc.inc | 4 > 1 file chan

Re: [OE-core] [PATCH 0/2] Add gcc version and tclibc to build summary

On 06/22/2016 10:21 AM, Khem Raj wrote: > >> On Jun 22, 2016, at 10:05 AM, akuster808 wrote: >> >> >> >> On 06/22/2016 09:52 AM, Khem Raj wrote: >>> >>>> On Jun 22, 2016, at 8:29 AM, Armin Kuster wrote: >>>> >>>>

Re: [OE-core] [PATCH][for-krogoth] backport staticid fix

staged for krogoth-next thanks, Armin On 06/22/2016 12:35 PM, Stephano Cetola wrote: > I've backported this from master and tested. > > [ YOCTO #9777 ] > > Peter Kjellerstedt (1): > useradd-staticids.bbclass: Restore failure on missing UIDs/GIDs > > meta/classes/useradd-staticids.bbclass |

Re: [OE-core] [PATCH 0/2] Add gcc version and tclibc to build summary

On 06/22/2016 09:52 AM, Khem Raj wrote: > >> On Jun 22, 2016, at 8:29 AM, Armin Kuster wrote: >> >> Since there are two gcc versions supported and any number of tcglibc, >> it would be nice to know which ones are being used. >> Add those to the build summary. >> >> Build summary >> TCLIBC

Re: [OE-core] [PATCH 0/3] Add qemuppc64 target

Alex, On 06/22/2016 04:43 AM, Alexander Kanavin wrote: > On 06/21/2016 07:03 PM, Burton, Ross wrote: >> Can you also see if usermode qemu needs to be changed for ppc64 as >> well >> >> It needs enabling entirely - qemu-ppc64 doesn't exist currently so every >> build-time postinst fails. > W

Re: [OE-core] State of bitbake world 2016-06-20

On 06/21/2016 11:42 AM, Martin Jansa wrote: > xfce4-terminal and toscoterm are broken since vte upgrade in oe-core, > there is some discussion about re-introducing older version, but no > patches for meta-oe yet. > > poco is pending review which I'll drop from master-next > > == Number of issue

Re: [OE-core] [for-krogoth] Backport for libc != glibc

On 06/20/2016 09:08 AM, Otavio Salvador wrote: > On Mon, Jun 20, 2016 at 1:04 PM, Khem Raj wrote: > ... >>> Could those be reviewed and queued for the next backport? >> >> They look fine for backport to krogoth. Please submit pull requests > > Armin can easily pick them; I gave the OE-Core hash

Re: [OE-core] [PATCH] squid: don't build squid-conf-tests binary

On 06/16/2016 12:07 AM, Alexandru Moise wrote: > autotools ends up stripping this binary which ends up causing > QA Errors at do_package. Remove it. I think you want to send this to openembedded-devel mailing list. - armin > Signed-off-by: Alexandru Moise > --- > ...squid-don-t-build-squid-c

Re: [OE-core] [PATCH 00/72] Krogoth-next V2, pull request

On 06/09/2016 03:34 AM, Martin Jansa wrote: On Thu, Jun 09, 2016 at 02:33:56AM -0700, akuster808 wrote: ping On 05/23/2016 09:55 PM, Armin Kuster wrote: Rebased, removed per feedback and add a few new ones. Please consider this for krogoth-next. The following changes since commit

Re: [OE-core] [PATCH 00/72] Krogoth-next V2, pull request

ping On 05/23/2016 09:55 PM, Armin Kuster wrote: Rebased, removed per feedback and add a few new ones. Please consider this for krogoth-next. The following changes since commit da4bfbef46e52d2b647a837a47d0f5cb813ba8b2: gdb: Backport patch to changes with AVX and MPX (2016-05-22 08:43:01 +0

Re: [OE-core] [PATCH] u-boot: Update to 2016.05 release

On 05/27/2016 06:43 AM, Andrew Shadura wrote: > Upgrade U-Boot to the latest upstream version. > Add a patch to unbreak build on some toolchains. Are this changes appropriate for Krogoth? - armin > > Signed-off-by: Andrew Shadura > --- > ...utils_2016.03.bb => u-boot-fw-utils_2016.05.bb} |

Re: [OE-core] [PATCH] linux-yocto/4.1: fix musb compilation error

does this affect krogoth? - armin On 05/27/2016 09:18 AM, Bruce Ashfield wrote: > We had a partial musb change merged into the 4.1 tree, which resulted in: > > | kernel-source/drivers/usb/musb/musb_dsps.c: > In function 'dsps_create_musb_pdev': > | kernel-source/drivers/usb/musb/musb_dsps.

Re: [OE-core] [krogoth][PATCH] lib/oe/rootfs: Fix DEBUGFS generation, without openssl

On 05/22/2016 10:03 PM, Anders Darander wrote: > In commit 20ea6d274bb0a9a5addb111f32793de49b907865, debugfs generation > for images using opkg, which included openssl was fixed. > > However, that broke the generation of the opkg-based images, that lacks > openssl. The error is a python stack tr

Re: [OE-core] [PATCH 00/98] Pull request: Krogoth-next

On 5/17/16 12:43 PM, Richard Purdie wrote: > On Sun, 2016-05-15 at 09:47 -0700, Armin Kuster wrote: >> From: Armin Kuster >> >> Please consider these changes for the next krogoth release. >> >> Built & testimage on all qemu targets > Thanks, I had a few questions about some of these below. > >> No

Re: [OE-core] [oe-core][master][krogoth][PATCH] python-numpy: fix build failure with python-matplotlib

On 05/16/2016 08:35 PM, Khem Raj wrote: > >> On May 16, 2016, at 8:34 PM, akuster808 wrote: >> >> On 5/16/16 8:09 PM, Khem Raj wrote: >>> >>>> On May 16, 2016, at 7:26 PM, akuster808 wrote: >>>> >>>> >>>> >>

Re: [OE-core] [oe-core][master][krogoth][PATCH] python-numpy: fix build failure with python-matplotlib

On 5/16/16 8:09 PM, Khem Raj wrote: > >> On May 16, 2016, at 7:26 PM, akuster808 wrote: >> >> >> >> On 05/16/2016 09:44 AM, Khem Raj wrote: >>> >>>> On May 16, 2016, at 9:17 AM, Armin Kuster wrote: >>>> >>>> Fro

Re: [OE-core] [oe-core][master][krogoth][PATCH] python-numpy: fix build failure with python-matplotlib

On 5/16/16 8:09 PM, Khem Raj wrote: > >> On May 16, 2016, at 7:26 PM, akuster808 wrote: >> >> >> >> On 05/16/2016 09:44 AM, Khem Raj wrote: >>> >>>> On May 16, 2016, at 9:17 AM, Armin Kuster wrote: >>>> >>>> Fro

Re: [OE-core] [oe-core][master][krogoth][PATCH] python-numpy: fix build failure with python-matplotlib

On 05/16/2016 09:44 AM, Khem Raj wrote: > >> On May 16, 2016, at 9:17 AM, Armin Kuster wrote: >> >> From: Armin Kuster >> >> numpy/core/include/numpy/npy_common.h:149:10: error: >> | #error Unsupported size for type off_t >> >> Signed-off-by: Armin Kuster >> --- >> meta/recipes-devto

Re: [OE-core] State of bitbake world 2016-05-12

On 05/13/2016 01:31 PM, Martin Jansa wrote: > This time complete QA issues list > > == Number of issues - stats == > {| class='wikitable' > !|Date !!colspan='3'|Failed tasks > !!colspan='6'|Failed depencencies!!|Signatures

[OE-core] https://layers.openembedded.org/

Is the layer index down? - armin -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core

Re: [OE-core] [master][krogoth][PATCH] openssl: Security fix via update to 1.0.2h

On 05/13/2016 09:19 AM, Martin Jansa wrote: > On Fri, May 13, 2016 at 04:31:39PM +0200, Martin Jansa wrote: >> On Wed, May 11, 2016 at 03:37:59AM -0700, akuster808 wrote: >>> Robert, >>> >>> >>> On 05/10/2016 11:22 PM, Robert Yang wrote: >>>

[OE-core] Branch Maintenance process clarification

Hello, I am reviewing the stable branch maintenance for Yocto and would like some clarification on a few steps. https://wiki.yoctoproject.org/wiki/Stable_branch_maintenance 6. Split out any bitbake changes and send them to the bitbake-devel mailing list (marking them with the appropriate stable v

Re: [OE-core] [master][krogoth][PATCH 4/4] gcc: Security fix CVE-2016-4490

On 05/13/2016 02:04 PM, Khem Raj wrote: > On Fri, May 13, 2016 at 1:52 PM, akuster808 wrote: >> >> >> On 05/13/2016 11:07 AM, Khem Raj wrote: >>> Thanks for noting. We will update gcc-6 to latest on gcc-6 branch sometime >>> later and hopefully it wi

Re: [OE-core] [fido][PATCH 0/1] Undo ABI breakage in OpenSSL

On 05/13/2016 09:34 AM, Richard Purdie wrote: > On Thu, 2016-05-12 at 16:16 +0200, Martin Jansa wrote: >> On Thu, May 12, 2016 at 01:06:33PM +0100, Joshua Lock wrote: >>> The backported upgrade to OpenSSL 1.0.2h introduced a newer version >>> of >>> Debian's linker version-script which breaks the

Re: [OE-core] [fido][PATCH 0/1] Undo ABI breakage in OpenSSL

On 05/13/2016 09:34 AM, Richard Purdie wrote: > On Thu, 2016-05-12 at 16:16 +0200, Martin Jansa wrote: >> On Thu, May 12, 2016 at 01:06:33PM +0100, Joshua Lock wrote: >>> The backported upgrade to OpenSSL 1.0.2h introduced a newer version >>> of >>> Debian's linker version-script which breaks the

Re: [OE-core] [master][krogoth][PATCH 4/4] gcc: Security fix CVE-2016-4490

required then. So I hope folks wont have too much of an issue if this fix is in the stable branches while we manage what happens in master in this case. - Armin > >> On May 13, 2016, at 9:16 AM, akuster808 wrote: >> >> this fix is not in gcc 6.0 >> >> On 05/06/2

Re: [OE-core] [master][krogoth][PATCH] openssl: Security fix via update to 1.0.2h

On 05/13/2016 07:31 AM, Martin Jansa wrote: > On Wed, May 11, 2016 at 03:37:59AM -0700, akuster808 wrote: >> Robert, >> >> >> On 05/10/2016 11:22 PM, Robert Yang wrote: >>> >>> >>> On 05/04/2016 07:46 AM, Armin Kuster wrote: >>>&

Re: [OE-core] [master][krogoth][PATCH 4/4] gcc: Security fix CVE-2016-4490

this fix is not in gcc 6.0 On 05/06/2016 12:11 AM, Armin Kuster wrote: > From: Armin Kuster > > Signed-off-by: Armin Kuster > --- > meta/recipes-devtools/gcc/gcc-5.3.inc | 1 + > .../gcc/gcc-5.3/CVE-2016-4490.patch| 270 > + > 2 files changed

Re: [OE-core] [master][krogoth][PATCH 3/4] gcc: Security fix CVE-2016-2226

this fix is in GCC 6.0 On 05/06/2016 12:11 AM, Armin Kuster wrote: > From: Armin Kuster > > Signed-off-by: Armin Kuster > --- > meta/recipes-devtools/gcc/gcc-5.3.inc | 1 + > .../gcc/gcc-5.3/CVE-2016-2226.patch| 103 > + > 2 files changed, 1

Re: [OE-core] [PATCH 00/42] GCC/GDB/Binutils Upgrades

On 05/12/2016 02:05 AM, Ioan-Adrian Ratiu wrote: > Hello > > Can the gcc 6 fixes be pulled into the krogoth branch as well? GCC 6 is new so we wont be pull that over to Krogoth. Any fixes you are interested in, patches are welcome. - armin > > On Wed, 11 May 2016 10:35:25 -0700 > Khem Raj w

Re: [OE-core] [PATCH 0/1] [jethro] openssl: 1.0.2d -> 1.0.2h (mainly for CVEs)

On 05/11/2016 12:43 AM, Robert Yang wrote: > The following changes since commit 69b49e8dc45cf60defba547d93e663df42c92127: > > boot-directdisk.bbclass: remove HDDIMG before create (2016-05-09 14:37:19 > +0100) > > are available in the git repository at: > > git://git.openembedded.org/opene

Re: [OE-core] [master][krogoth][PATCH] openssl: Security fix via update to 1.0.2h

Robert, On 05/10/2016 11:22 PM, Robert Yang wrote: > > > On 05/04/2016 07:46 AM, Armin Kuster wrote: >> From: Armin Kuster >> >> CVE-2016-2105 >> CVE-2016-2106 >> CVE-2016-2109 >> CVE-2016-2176 >> >> https://www.openssl.org/news/secadv/20160503.txt >> >> fixup openssl-avoid-NULL-pointer-derefe

[OE-core] Patchwork [jethro] glibc: Fix CVE-2015-8778 - patched dropped????

I can not find the original email but a glibc backport for Jethro is in limbo. http://patches.openembedded.org/patch/121007/ can we get that merged? - Armin -- ___ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.op

Re: [OE-core] [PATCH 10/11] linux-yocto/4.4: bump to v4.4.8

On 05/04/2016 10:53 AM, Bruce Ashfield wrote: > Integrating the korg -stable releases. shouldn't LINUX_VERSION ?= "4.4.3" be LINUX_VERSION ?= "4.4.8" ?? - Armin > > Signed-off-by: Bruce Ashfield > --- > meta/recipes-kernel/linux/linux-yocto-rt_4.4.bb | 2 +- > meta/recipes-kernel/linux/l

Re: [OE-core] [master][krogoth][PATCH 1/2] qemu: Security fix CVE-2016-2857

On 5/6/16 8:51 AM, Alexander Kanavin wrote: > On 05/06/2016 06:47 PM, akuster808 wrote: > >> I can not reproduce this issue. I have used two different build systems. >> I have another I will try. >> >> so the testcase be? >> >> 1) bitbake core-image-sat

Re: [OE-core] [PATCH 00/11][master][krogoth] kernel-yocto: consolidated pull request

On 5/4/16 10:53 AM, Bruce Ashfield wrote: > Hi all, > > The following is a consolidated set of changes for the 4.1, 4.4 linux-yocto > kernel, as well as the kern-tools. > > All of these are bug fixes, minor configuration changes or -stable updates. > I've had most of them queued since before the 2.

Re: [OE-core] [master][krogoth][PATCH 1/2] qemu: Security fix CVE-2016-2857

On 05/04/2016 03:17 PM, Joshua G Lock wrote: > On Wed, 2016-05-04 at 07:16 -0700, akuster wrote: >> >> On 05/04/2016 02:52 AM, Joshua G Lock wrote: >>> >>> Hi Armin, >>> >>> On Thu, 2016-04-28 at 11:23 -0700, Armin Kuster wrote: From: Armin Kuster >>> I've been seeing: >>> >>> "qe

Re: [OE-core] [krogoth][master][PATCH] qemu: updgrade to 2.5.1

On 05/04/2016 03:48 AM, Joshua Lock wrote: > This upgrade includes several worthwhile fixes, security and otherwise, > including > a complete fix for CVE-2016-2857. > > * drop CVE-2016-2857.patch as it's included in this release, along with > several > related patches which complete the fixe

[OE-core] Staging Security fixes for Jethro and Fido

I am integrating security fixes for both Jethro and Fido in my poky-contrib branches for those who may want to cherry-pick them before I submit pull requests. I am still working on a few more. http://git.yoctoproject.org/cgit/cgit.cgi/poky-contrib/log/?h=akuster/jethro_cve_fixes http://git.yoct

Re: [OE-core] moving OpenEmbedded-core to Python 3

On 04/25/2016 05:22 AM, Alexander Kanavin wrote: > Hello everyone, > > we want to deprecate Python 2 in oe-core and set Python 3 as the > default, preferred choice. What does this mean? What is the target to make Python3 default, 2.2? > > 1) Introducing new Python 2 dependencies via new reci

Re: [OE-core] [PATCH 00/14] [jethro] Consolidated pull

On 04/11/2016 12:29 AM, Robert Yang wrote: > The following changes since commit 4d879cb8d7384ac4a96f22c1664b8875f2d8f615: > > devtool: extract: update SRCTREECOVEREDTASKS for kernel (2016-03-20 > 10:22:55 +) > > are available in the git repository at: > > git://git.openembedded.org/

Re: [OE-core] Aarch64 u-boot with gcc .5x

On 03/28/2016 02:17 PM, Otavio Salvador wrote: > On Mon, Mar 28, 2016 at 5:52 PM, akuster808 wrote: >> On 03/28/2016 11:20 AM, Otavio Salvador wrote: >>> On Mon, Mar 28, 2016 at 12:51 PM, akuster808 wrote: >>>> I have an arm64 odroid c2 board. If I build u-boo

Re: [OE-core] Aarch64 u-boot with gcc .5x

On 03/28/2016 11:20 AM, Otavio Salvador wrote: > Hello Armin, > > On Mon, Mar 28, 2016 at 12:51 PM, akuster808 wrote: >> I have an arm64 odroid c2 board. If I build u-boot with the current OE >> 5.3 gcc it hangs at kernel load time. If I use 4.9 gcc it works fine. A >

[OE-core] Aarch64 u-boot with gcc .5x

Hello, I have an arm64 odroid c2 board. If I build u-boot with the current OE 5.3 gcc it hangs at kernel load time. If I use 4.9 gcc it works fine. A 5.3 built kernel boots fine with a 4.9 built u-boot. The vendor supplied u-boot is hacked up and am leaning it that direction as the culprit so I

Re: [OE-core] [yocto] [oe] OEDAM, April 8 in San Diego after ELC

On 03/23/2016 03:03 PM, Jeff Osier-Mixon wrote: There are only 10 people signed up. Is that enough people to justify the expense room or even meet? >>> >>> I have no idea what the budget might be or what a room might cost. I'll >>> leave >>> it to those who do know to worry about the c

Re: [OE-core] [oe] OEDAM, April 8 in San Diego after ELC

On 03/08/2016 08:10 AM, Philip Balister wrote: > On the Friday after ELC in San Diego (Yocto Project Dev Day is > Thursday), we will have a developer meeting near the conference venue > (need to double check with Jefro about exact location). There are only 10 people signed up. Is that enough pe

Re: [OE-core] [dizzy][PATCH 3/4] glibc: CVE-2015-9761

Martin, On 03/11/2016 05:58 AM, Martin Jansa wrote: > On Thu, Mar 03, 2016 at 09:47:11PM +0100, Martin Jansa wrote: >> I was asking you about the CVE number (but I realize it was already merged >> in other branches with wrong number so maybe it will be less confusing use >> the same in Dizzy) >>

Re: [OE-core] [fido][PATCH 0/7] fido Security fixes pull request

ping On 02/23/2016 07:58 AM, Armin Kuster wrote: > From: Armin Kuster > > Please consider these for the next fido > > This is to meet our obligation for Yocto compatibility > > The following changes since commit 06d9c894636352a6c93711c7284d02b0c794a527: > > libbsd: Security fix CVE-2016-20

Re: [OE-core] [PATCH 6/7] webkitgtk: update to 2.10.7

On 02/24/2016 03:55 AM, Alexander Kanavin wrote: > On 02/16/2016 05:55 PM, akuster808 wrote: > >>> Yes, which means that jethro (which has 2.8.5) needs the same update. >> >> there is a bug open for that 8877. there are a huge number of CVE's that >> need

Re: [OE-core] [PATCH 6/7] webkitgtk: update to 2.10.7

On 02/16/2016 06:34 AM, Alexander Kanavin wrote: > On 02/11/2016 09:08 PM, akuster808 wrote: >> this update includes: >> >> >> CVE-2015-7096 >> Versions affected: WebKitGTK+ before 2.10.5. >> >> CVE-2015-7098 >> Versions affected: WebK

Re: [OE-core] [PATCH 6/7] webkitgtk: update to 2.10.7

this update includes: CVE-2015-7096 Versions affected: WebKitGTK+ before 2.10.5. CVE-2015-7098 Versions affected: WebKitGTK+ before 2.10.5. http://webkitgtk.org/security.html On 02/10/2016 04:42 AM, Alexander Kanavin wrote: > Signed-off-by: Alexander Kanavin > --- > meta/recipes-sa

Re: [OE-core] [PATCH 1/7] ffmpeg: update to 2.8.6

This update includes CVE-2016-2213 Fixes out of array read http://git.videolan.org/?p=ffmpeg.git;a=commit;h=0aada30510d809bccfd539a90ea37b61188f2cb4 On 02/10/2016 04:42 AM, Alexander Kanavin wrote: > Add libxv dependency only when libavdevice is enabled (as nothing else needs > it). > > Signe

Re: [OE-core] [PATCH 4/9] uclibc-ng: Bump up to 1.0.12 release

This update includes CVE-2016-2224 and CVE-2016-2225 - armin On 02/10/2016 09:43 AM, Khem Raj wrote: > Here are changes between 1.0.11 and 1.0.12 > > release 1.0.12 - Chimay Brune > > Leonid Lisovskiy (5): > libdl: dlopen() mustn't forget RTLD_NODELETE flag > tests: Extend OMIT LDFLAG

Re: [OE-core] [PATCH] lsscsi: Add new package

On 2/6/16 12:50 PM, Burton, Ross wrote: > > On 6 February 2016 at 15:46, Armin Kuster > wrote: > > The lsscsi command lists information about SCSI devices in Linux > > > And this should be in oe-core because? The other sub-system utils appear to be in oe-core like

Re: [OE-core] [PATCH 00/20] Dizzy-next pull request 2016-1

On 1/27/16 3:33 AM, Martin Jansa wrote: > On Thu, Jan 21, 2016 at 12:57:52PM +0100, Martin Jansa wrote: >> On Sat, Jan 09, 2016 at 04:30:26PM -0800, Armin Kuster wrote: >>> Please consider these changes for dizzy-next community support. >>> >>> The following changes since commit 6d34267e0a13e10ab91

<    2   3   4   5   6   7   8   9   >