[oe-core][PATCH] linux-firmware: fix iwlwifi-misc to include all iwlwifi firmware

2020-07-08 Thread jmiao1
Signed-off-by: Jun Miao 
---
 meta/recipes-kernel/linux-firmware/linux-firmware_20200619.bb | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/meta/recipes-kernel/linux-firmware/linux-firmware_20200619.bb 
b/meta/recipes-kernel/linux-firmware/linux-firmware_20200619.bb
index 79acccddc7..321d808884 100644
--- a/meta/recipes-kernel/linux-firmware/linux-firmware_20200619.bb
+++ b/meta/recipes-kernel/linux-firmware/linux-firmware_20200619.bb
@@ -265,7 +265,7 @@ PACKAGES =+ "${PN}-ralink-license ${PN}-ralink \
  \
  ${PN}-imx-sdma-license ${PN}-imx-sdma-imx6q ${PN}-imx-sdma-imx7d \
  \
- ${PN}-iwlwifi-license ${PN}-iwlwifi \
+ ${PN}-iwlwifi-license ${PN}-iwlwifi ${PN}-iwlwifi-misc \
  ${PN}-iwlwifi-135-6 \
  ${PN}-iwlwifi-3160-7 ${PN}-iwlwifi-3160-8 ${PN}-iwlwifi-3160-9 \
  ${PN}-iwlwifi-3160-10 ${PN}-iwlwifi-3160-12 ${PN}-iwlwifi-3160-13 
\
@@ -277,7 +277,6 @@ PACKAGES =+ "${PN}-ralink-license ${PN}-ralink \
  ${PN}-iwlwifi-7265 \
  ${PN}-iwlwifi-7265d ${PN}-iwlwifi-8000c ${PN}-iwlwifi-8265 \
  ${PN}-iwlwifi-9000 \
- ${PN}-iwlwifi-misc \
  ${PN}-ibt-license ${PN}-ibt ${PN}-ibt-misc \
  ${PN}-ibt-11-5 ${PN}-ibt-12-16 ${PN}-ibt-hw-37-7 
${PN}-ibt-hw-37-8 \
  ${PN}-ibt-17 \
-- 
2.23.0

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140464): 
https://lists.openembedded.org/g/openembedded-core/message/140464
Mute This Topic: https://lists.openembedded.org/mt/75392421/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


Re: [OE-core] [PATCH 1/2] rootfs-post: remove traling blanks from tasks

2020-07-08 Thread Jacob Kroon

On 7/9/20 7:30 AM, Jens Rehsack wrote:




Am 08.07.2020 um 13:09 schrieb Konrad Weihmann :

remove the traling blanks before the ;-delimiter, so one could use

^
here & subject: do you mean "trailing"?


"_remove" to avoid running tasks like 'rootfs_update_timestamp',
which are currently hardcoded and not bound to any
configurable feature flag

Signed-off-by: Konrad Weihmann 
---
meta/classes/rootfs-postcommands.bbclass | 6 +++---
meta/classes/rootfsdebugfiles.bbclass| 2 +-
2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/meta/classes/rootfs-postcommands.bbclass 
b/meta/classes/rootfs-postcommands.bbclass
index c43b9a9823..984730ebe8 100644
--- a/meta/classes/rootfs-postcommands.bbclass
+++ b/meta/classes/rootfs-postcommands.bbclass
@@ -1,6 +1,6 @@

# Zap the root password if debug-tweaks feature is not enabled
-ROOTFS_POSTPROCESS_COMMAND += '${@bb.utils.contains_any("IMAGE_FEATURES", [ 'debug-tweaks', 
'empty-root-password' ], "", "zap_empty_root_password ; ",d)}'
+ROOTFS_POSTPROCESS_COMMAND += '${@bb.utils.contains_any("IMAGE_FEATURES", [ 'debug-tweaks', 
'empty-root-password' ], "", "zap_empty_root_password; ",d)}'

# Allow dropbear/openssh to accept logins from accounts with an empty password 
string if debug-tweaks or allow-empty-password is enabled
ROOTFS_POSTPROCESS_COMMAND += '${@bb.utils.contains_any("IMAGE_FEATURES", [ 'debug-tweaks', 
'allow-empty-password' ], "ssh_allow_empty_password; ", "",d)}'
@@ -12,7 +12,7 @@ ROOTFS_POSTPROCESS_COMMAND += 
'${@bb.utils.contains_any("IMAGE_FEATURES", [ 'deb
ROOTFS_POSTPROCESS_COMMAND += '${@bb.utils.contains_any("IMAGE_FEATURES", [ 'debug-tweaks', 
'post-install-logging' ], "postinst_enable_logging; ", "",d)}'

# Create /etc/timestamp during image construction to give a reasonably sane 
default time setting
-ROOTFS_POSTPROCESS_COMMAND += "rootfs_update_timestamp ; "
+ROOTFS_POSTPROCESS_COMMAND += "rootfs_update_timestamp; "


How about
+ROOTFS_POSTPROCESS_COMMAND += " rootfs_update_timestamp;"

Reading a list is much easier when words are separated by whitespaces.



The += and =+ operators already insert a space between the concatenations.

https://www.yoctoproject.org/docs/latest/bitbake-user-manual/bitbake-user-manual.html#appending-and-prepending

Jacob
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140463): 
https://lists.openembedded.org/g/openembedded-core/message/140463
Mute This Topic: https://lists.openembedded.org/mt/75374080/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


Re: [OE-core] [PATCH 1/2] rootfs-post: remove traling blanks from tasks

2020-07-08 Thread Jens Rehsack


> Am 08.07.2020 um 13:09 schrieb Konrad Weihmann :
> 
> remove the traling blanks before the ;-delimiter, so one could use
   ^
   here & subject: do you mean "trailing"?

> "_remove" to avoid running tasks like 'rootfs_update_timestamp',
> which are currently hardcoded and not bound to any
> configurable feature flag
> 
> Signed-off-by: Konrad Weihmann 
> ---
> meta/classes/rootfs-postcommands.bbclass | 6 +++---
> meta/classes/rootfsdebugfiles.bbclass| 2 +-
> 2 files changed, 4 insertions(+), 4 deletions(-)
> 
> diff --git a/meta/classes/rootfs-postcommands.bbclass 
> b/meta/classes/rootfs-postcommands.bbclass
> index c43b9a9823..984730ebe8 100644
> --- a/meta/classes/rootfs-postcommands.bbclass
> +++ b/meta/classes/rootfs-postcommands.bbclass
> @@ -1,6 +1,6 @@
> 
> # Zap the root password if debug-tweaks feature is not enabled
> -ROOTFS_POSTPROCESS_COMMAND += '${@bb.utils.contains_any("IMAGE_FEATURES", [ 
> 'debug-tweaks', 'empty-root-password' ], "", "zap_empty_root_password ; ",d)}'
> +ROOTFS_POSTPROCESS_COMMAND += '${@bb.utils.contains_any("IMAGE_FEATURES", [ 
> 'debug-tweaks', 'empty-root-password' ], "", "zap_empty_root_password; ",d)}'
> 
> # Allow dropbear/openssh to accept logins from accounts with an empty 
> password string if debug-tweaks or allow-empty-password is enabled
> ROOTFS_POSTPROCESS_COMMAND += '${@bb.utils.contains_any("IMAGE_FEATURES", [ 
> 'debug-tweaks', 'allow-empty-password' ], "ssh_allow_empty_password; ", 
> "",d)}'
> @@ -12,7 +12,7 @@ ROOTFS_POSTPROCESS_COMMAND += 
> '${@bb.utils.contains_any("IMAGE_FEATURES", [ 'deb
> ROOTFS_POSTPROCESS_COMMAND += '${@bb.utils.contains_any("IMAGE_FEATURES", [ 
> 'debug-tweaks', 'post-install-logging' ], "postinst_enable_logging; ", "",d)}'
> 
> # Create /etc/timestamp during image construction to give a reasonably sane 
> default time setting
> -ROOTFS_POSTPROCESS_COMMAND += "rootfs_update_timestamp ; "
> +ROOTFS_POSTPROCESS_COMMAND += "rootfs_update_timestamp; "

How about
+ROOTFS_POSTPROCESS_COMMAND += " rootfs_update_timestamp;"

Reading a list is much easier when words are separated by whitespaces.

> # Tweak the mount options for rootfs in /etc/fstab if read-only-rootfs is 
> enabled
> ROOTFS_POSTPROCESS_COMMAND += '${@bb.utils.contains("IMAGE_FEATURES", 
> "read-only-rootfs", "read_only_rootfs_hook; ", "",d)}'
> @@ -26,7 +26,7 @@ ROOTFS_POSTPROCESS_COMMAND += 
> '${@bb.utils.contains("IMAGE_FEATURES", "read-only
> APPEND_append = '${@bb.utils.contains("IMAGE_FEATURES", "read-only-rootfs", " 
> ro", "", d)}'
> 
> # Generates test data file with data store variables expanded in json format
> -ROOTFS_POSTPROCESS_COMMAND += "write_image_test_data ; "
> +ROOTFS_POSTPROCESS_COMMAND += "write_image_test_data; "
> 
> # Write manifest
> IMAGE_MANIFEST = "${IMGDEPLOYDIR}/${IMAGE_NAME}${IMAGE_NAME_SUFFIX}.manifest"
> diff --git a/meta/classes/rootfsdebugfiles.bbclass 
> b/meta/classes/rootfsdebugfiles.bbclass
> index e2ba4e3647..85c7ec7434 100644
> --- a/meta/classes/rootfsdebugfiles.bbclass
> +++ b/meta/classes/rootfsdebugfiles.bbclass
> @@ -28,7 +28,7 @@
> ROOTFS_DEBUG_FILES ?= ""
> ROOTFS_DEBUG_FILES[doc] = "Lists additional files or directories to be 
> installed with 'cp -a' in the format 'source1 target1;source2 target2;...'"
> 
> -ROOTFS_POSTPROCESS_COMMAND += "rootfs_debug_files ;"
> +ROOTFS_POSTPROCESS_COMMAND += "rootfs_debug_files;"
> rootfs_debug_files () {
>#!/bin/sh -e
>echo "${ROOTFS_DEBUG_FILES}" | sed -e 's/;/\n/g' | while read source 
> target mode; do
> --
> 2.20.1
> 
> 

--
Jens Rehsack - rehs...@gmail.com



signature.asc
Description: Message signed with OpenPGP
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140462): 
https://lists.openembedded.org/g/openembedded-core/message/140462
Mute This Topic: https://lists.openembedded.org/mt/75374080/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


[OE-core][PATCH 1/2] subversion: extend for nativesdk

2020-07-08 Thread Jens Rehsack
For SDK environments where people still use subversion, let it easily being
added to buildtools-tarball to invite more developers relying on Yocto
based SDKs without much requirement to setup anything on the development
workplace.

Signed-off-by: Jens Rehsack 
---
 meta/recipes-devtools/subversion/subversion_1.14.0.bb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/meta/recipes-devtools/subversion/subversion_1.14.0.bb 
b/meta/recipes-devtools/subversion/subversion_1.14.0.bb
index b9884151cf..452a025fcc 100644
--- a/meta/recipes-devtools/subversion/subversion_1.14.0.bb
+++ b/meta/recipes-devtools/subversion/subversion_1.14.0.bb
@@ -59,4 +59,4 @@ PARALLEL_MAKEINST = ""
 
 RDEPENDS_${PN} = "serf"
 
-BBCLASSEXTEND = "native"
+BBCLASSEXTEND = "native nativesdk"
-- 
2.17.1

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140460): 
https://lists.openembedded.org/g/openembedded-core/message/140460
Mute This Topic: https://lists.openembedded.org/mt/75392250/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


[OE-core][PATCH 2/2] serf: extend for nativesdk

2020-07-08 Thread Jens Rehsack
As an unconditionally dependency of subversion, extend serf recipe for
building a nativesdk variant being usable by nativesdk-subversion.

Signed-off-by: Jens Rehsack 
---
 meta/recipes-support/serf/serf_1.3.9.bb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/meta/recipes-support/serf/serf_1.3.9.bb 
b/meta/recipes-support/serf/serf_1.3.9.bb
index dd4133a45c..6a27f12102 100644
--- a/meta/recipes-support/serf/serf_1.3.9.bb
+++ b/meta/recipes-support/serf/serf_1.3.9.bb
@@ -30,4 +30,4 @@ EXTRA_OESCONS = " \
   OPENSSL="${STAGING_EXECPREFIXDIR}" \
   "
 
-BBCLASSEXTEND = "native"
+BBCLASSEXTEND = "native nativesdk"
-- 
2.17.1

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140461): 
https://lists.openembedded.org/g/openembedded-core/message/140461
Mute This Topic: https://lists.openembedded.org/mt/75392251/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


Re: [OE-core][PATCH] toolchain-scripts.bbclass: also recognize ${SDK_SYS} env setups

2020-07-08 Thread Jens Rehsack


> Am 08.07.2020 um 23:20 schrieb Otavio Salvador 
> :
> 
> Em qua., 8 de jul. de 2020 às 16:58, Jens Rehsack  
> escreveu:
>> 
>> Instead of recognizing only environment-setup scripts in
>> ${STAGING_DIR_TARGET} or ${STAGING_DIR_NATIVE}, respectively - lurk also into
>> ${SDKPATH}/buildtools/sysroots/${SDK_SYS} where nativesdk-openssl installs
>> setup files.
>> 
>> Remove overwriting of OPENSSL_CONF from buildtools-tarball.bb to clarify
>> whether nativesdk-openssl installs wrong content or buildtools-tarball:
>>(nativesdk-openssl) tmp/sysroots/x86_64/usr/lib/ssl-1.1/openssl.cnf
>>(buildtools-tarball) 
>> buildtools/sysroots/x86_64-pokysdk-linux/etc/ssl/openssl.cnf
>> 
>> Signed-off-by: Jens Rehsack 
> 
> I did not understand the openssl related change. Is it possible to
> rework the commit log so it is more detailed?


For sure, but maybe I'm completely wrong. Let me try explaining it first...

If - and only if - one creates an SDK which included openssl (and not libressl, 
mbedssl, ...),
nativesdk-openssl packages an ${SDKPATHNATIVE}/environment-setup.d/openssl.sh

OTOH - meta/recipes-core/meta/buildtools-tarball.bb creates a script which is 
sourced
at the very end of SDK environment setup and writes what's included in
{SDKPATHNATIVE}/environment-setup.d/openssl.sh on it's own - with maybe slightly
different location - what guides me to add:
... to clarify whether nativesdk-openssl installs wrong content or 
buildtools-tarball:
   (nativesdk-openssl) tmp/sysroots/x86_64/usr/lib/ssl-1.1/openssl.cnf
   (buildtools-tarball) 
buildtools/sysroots/x86_64-pokysdk-linux/etc/ssl/openssl.cnf

Maybe they way how nativesdk-cmake is doing it is the right way. Then, maybe
nativesdk-openssl should be reworked. This is for clarification.

Does it explain something better?

Cheers
--
Jens Rehsack - rehs...@gmail.com



signature.asc
Description: Message signed with OpenPGP
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140459): 
https://lists.openembedded.org/g/openembedded-core/message/140459
Mute This Topic: https://lists.openembedded.org/mt/75384624/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


Re: [OE-core][PATCH] igt-gpu-tools: Add PACKAGECONFIG for Chamelium support

2020-07-08 Thread Arthur She
Hi Anuj,
Thanks for your explanation.
I've sent patch v2 out.

Thanks,
Arthur

On Wed, Jul 8, 2020 at 6:29 PM Mittal, Anuj  wrote:

> On Tue, 2020-07-07 at 18:01 -0700, Arthur She wrote:
> > Hi Anuj,
> > Thanks for your review.
> > I don't need to put "-Dchamelium=disabled" in the EXTRA_OEMESON.
> > Because chamelium is disabled by default.
> > Is it correct?
>
> Yes, since it's disabled by default, -Dchamelium=disabled is already
> being passed to EXTRA_OEMESON.
>
> In this change, if you add chamelium to PACKAGECONFIG, it will pass
> both -Dchamelium=enabled and -Dchamelium=disabled to EXTRA_OEMESON
> which is incorrect. It probably works for you because PACKAGECONFIG
> arguments are added last ...
>
> Thanks,
>
> Anuj
>
> >
> > Thanks,
> > Arthur
> >
> > On Tue, Jul 7, 2020 at 4:43 PM Mittal, Anuj 
> > wrote:
> > > On Tue, 2020-07-07 at 14:09 -0700, Arthur She wrote:
> > > > Chamelium is a hardware device that can be used for external
> > > display
> > > > test automation [1].
> > > > It is disabled by default and can be turned on through
> > > PACKAGECONFIG.
> > > >
> > > > [1] https://www.chromium.org/chromium-os/testing/chamelium
> > > >
> > > > Signed-off-by: Arthur She 
> > > > ---
> > > >  meta/recipes-graphics/igt-gpu-tools/igt-gpu-tools_git.bb | 4
> > > +++-
> > > >  1 file changed, 3 insertions(+), 1 deletion(-)
> > > >
> > > > diff --git a/meta/recipes-graphics/igt-gpu-tools/igt-gpu-
> > > tools_git.bb
> > > > b/meta/recipes-graphics/igt-gpu-tools/igt-gpu-tools_git.bb
> > > > index f60880c292..29031e64dc 100644
> > > > --- a/meta/recipes-graphics/igt-gpu-tools/igt-gpu-tools_git.bb
> > > > +++ b/meta/recipes-graphics/igt-gpu-tools/igt-gpu-tools_git.bb
> > > > @@ -20,7 +20,9 @@ RDEPENDS_${PN}-tests += "bash"
> > > >
> > > >  PACKAGE_BEFORE_PN = "${PN}-benchmarks ${PN}-tests"
> > > >
> > > > -EXTRA_OEMESON = "-Ddocs=disabled -Drunner=enabled"
> > > > +PACKAGECONFIG[chamelium] = "-Dchamelium=enabled,-
> > > > Dchamelium=disabled,gsl xmlrpc-c"
> > > > +
> > > > +EXTRA_OEMESON = "-Ddocs=disabled -Drunner=enabled
> > > > -Dchamelium=disabled"
> > >
> > > This is disabling chamelium even if it's enabled using
> > > PACKAGECONFIG.
> > >
> > > Thanks,
> > >
> > > Anuj
>
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140458): 
https://lists.openembedded.org/g/openembedded-core/message/140458
Mute This Topic: https://lists.openembedded.org/mt/75364233/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


[OE-core][PATCH v2] igt-gpu-tools: Add PACKAGECONFIG for Chamelium support

2020-07-08 Thread Arthur She
Chamelium is a hardware device that can be used for external display
test automation [1].
It is disabled by default and can be turned on through PACKAGECONFIG.

[1] https://www.chromium.org/chromium-os/testing/chamelium

Signed-off-by: Arthur She 
---
 meta/recipes-graphics/igt-gpu-tools/igt-gpu-tools_git.bb | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/meta/recipes-graphics/igt-gpu-tools/igt-gpu-tools_git.bb 
b/meta/recipes-graphics/igt-gpu-tools/igt-gpu-tools_git.bb
index f60880c292..89480d79d2 100644
--- a/meta/recipes-graphics/igt-gpu-tools/igt-gpu-tools_git.bb
+++ b/meta/recipes-graphics/igt-gpu-tools/igt-gpu-tools_git.bb
@@ -20,6 +20,8 @@ RDEPENDS_${PN}-tests += "bash"
 
 PACKAGE_BEFORE_PN = "${PN}-benchmarks ${PN}-tests"
 
+PACKAGECONFIG[chamelium] = "-Dchamelium=enabled,-Dchamelium=disabled,gsl 
xmlrpc-c"
+
 EXTRA_OEMESON = "-Ddocs=disabled -Drunner=enabled"
 COMPATIBLE_HOST = "(x86_64.*|i.86.*|arm.*|aarch64).*-linux"
 COMPATIBLE_HOST_libc-musl_class-target = "null"
-- 
2.25.1

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140457): 
https://lists.openembedded.org/g/openembedded-core/message/140457
Mute This Topic: https://lists.openembedded.org/mt/75390417/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


Re: [OE-core][PATCH] igt-gpu-tools: Add PACKAGECONFIG for Chamelium support

2020-07-08 Thread Anuj Mittal
On Tue, 2020-07-07 at 18:01 -0700, Arthur She wrote:
> Hi Anuj,
> Thanks for your review.
> I don't need to put "-Dchamelium=disabled" in the EXTRA_OEMESON.
> Because chamelium is disabled by default.
> Is it correct?

Yes, since it's disabled by default, -Dchamelium=disabled is already
being passed to EXTRA_OEMESON.

In this change, if you add chamelium to PACKAGECONFIG, it will pass
both -Dchamelium=enabled and -Dchamelium=disabled to EXTRA_OEMESON
which is incorrect. It probably works for you because PACKAGECONFIG
arguments are added last ...

Thanks,

Anuj

> 
> Thanks,
> Arthur
> 
> On Tue, Jul 7, 2020 at 4:43 PM Mittal, Anuj 
> wrote:
> > On Tue, 2020-07-07 at 14:09 -0700, Arthur She wrote:
> > > Chamelium is a hardware device that can be used for external
> > display
> > > test automation [1].
> > > It is disabled by default and can be turned on through
> > PACKAGECONFIG.
> > > 
> > > [1] https://www.chromium.org/chromium-os/testing/chamelium
> > > 
> > > Signed-off-by: Arthur She 
> > > ---
> > >  meta/recipes-graphics/igt-gpu-tools/igt-gpu-tools_git.bb | 4
> > +++-
> > >  1 file changed, 3 insertions(+), 1 deletion(-)
> > > 
> > > diff --git a/meta/recipes-graphics/igt-gpu-tools/igt-gpu-
> > tools_git.bb 
> > > b/meta/recipes-graphics/igt-gpu-tools/igt-gpu-tools_git.bb
> > > index f60880c292..29031e64dc 100644
> > > --- a/meta/recipes-graphics/igt-gpu-tools/igt-gpu-tools_git.bb
> > > +++ b/meta/recipes-graphics/igt-gpu-tools/igt-gpu-tools_git.bb
> > > @@ -20,7 +20,9 @@ RDEPENDS_${PN}-tests += "bash"
> > >  
> > >  PACKAGE_BEFORE_PN = "${PN}-benchmarks ${PN}-tests"
> > >  
> > > -EXTRA_OEMESON = "-Ddocs=disabled -Drunner=enabled"
> > > +PACKAGECONFIG[chamelium] = "-Dchamelium=enabled,-
> > > Dchamelium=disabled,gsl xmlrpc-c"
> > > +
> > > +EXTRA_OEMESON = "-Ddocs=disabled -Drunner=enabled
> > > -Dchamelium=disabled"
> > 
> > This is disabling chamelium even if it's enabled using
> > PACKAGECONFIG.
> > 
> > Thanks,
> > 
> > Anuj
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140456): 
https://lists.openembedded.org/g/openembedded-core/message/140456
Mute This Topic: https://lists.openembedded.org/mt/75364233/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


[OE-core] [PATCH] oeqa/selftest/sstatetests: Avoid polluting DL_DIR

2020-07-08 Thread Richard Purdie
Every selftest run is currently polluting the autobuilder DL_DIR. Avoid
this by using a temporary directory for the test which is cleaned up.

Signed-off-by: Richard Purdie 
---
 meta/lib/oeqa/selftest/cases/sstatetests.py | 5 -
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/meta/lib/oeqa/selftest/cases/sstatetests.py 
b/meta/lib/oeqa/selftest/cases/sstatetests.py
index 9adb511960c..c46e8ba489a 100644
--- a/meta/lib/oeqa/selftest/cases/sstatetests.py
+++ b/meta/lib/oeqa/selftest/cases/sstatetests.py
@@ -19,10 +19,13 @@ class SStateTests(SStateBase):
 # Test that a git repository which changes is correctly handled by 
SRCREV = ${AUTOREV}
 # when PV does not contain SRCPV
 
-tempdir = tempfile.mkdtemp(prefix='oeqa')
+tempdir = tempfile.mkdtemp(prefix='sstate_autorev')
+tempdldir = tempfile.mkdtemp(prefix='sstate_autorev_dldir')
 self.track_for_cleanup(tempdir)
+self.track_for_cleanup(tempdldir)
 create_temp_layer(tempdir, 'selftestrecipetool')
 self.add_command_to_tearDown('bitbake-layers remove-layer %s' % 
tempdir)
+self.append_config("DL_DIR = \"%s\"" % tempdldir)
 runCmd('bitbake-layers add-layer %s' % tempdir)
 
 # Use dbus-wait as a local git repo we can add a commit between two 
builds in
-- 
2.25.1

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140455): 
https://lists.openembedded.org/g/openembedded-core/message/140455
Mute This Topic: https://lists.openembedded.org/mt/75386491/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


[OE-core] ✗ patchtest: failure for "[zeus] python3: Upgrade 3.7.7 ..." and 18 more

2020-07-08 Thread Patchwork
== Series Details ==

Series: "[zeus] python3: Upgrade 3.7.7 ..." and 18 more
Revision: 1
URL   : https://patchwork.openembedded.org/series/25061/
State : failure

== Summary ==


Thank you for submitting this patch series to OpenEmbedded Core. This is
an automated response. Several tests have been executed on the proposed
series by patchtest resulting in the following failures:



* Issue Upstream-Status is in incorrect format 
[test_upstream_status_presence_format] 
  Suggested fixFix Upstream-Status format in CVE-2020-11655.patch
  Current  Upstream Status: Backport 
[c415d91007e1680e4eb17def583b202c3c83c718]
  Standard format  Upstream-Status: 
  Valid status Pending, Accepted, Backport, Denied, Inappropriate [reason], 
Submitted [where]



If you believe any of these test results are incorrect, please reply to the
mailing list (openembedded-core@lists.openembedded.org) raising your concerns.
Otherwise we would appreciate you correcting the issues and submitting a new
version of the patchset if applicable. Please ensure you add/increment the
version number when sending the new version (i.e. [PATCH] -> [PATCH v2] ->
[PATCH v3] -> ...).

---
Guidelines: 
https://www.openembedded.org/wiki/Commit_Patch_Message_Guidelines
Test framework: http://git.yoctoproject.org/cgit/cgit.cgi/patchtest
Test suite: http://git.yoctoproject.org/cgit/cgit.cgi/patchtest-oe

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140454): 
https://lists.openembedded.org/g/openembedded-core/message/140454
Mute This Topic: https://lists.openembedded.org/mt/75386416/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


Re: [OE-core][PATCH] toolchain-scripts.bbclass: also recognize ${SDK_SYS} env setups

2020-07-08 Thread Otavio Salvador
Em qua., 8 de jul. de 2020 às 16:58, Jens Rehsack  escreveu:
>
> Instead of recognizing only environment-setup scripts in
> ${STAGING_DIR_TARGET} or ${STAGING_DIR_NATIVE}, respectively - lurk also into
> ${SDKPATH}/buildtools/sysroots/${SDK_SYS} where nativesdk-openssl installs
> setup files.
>
> Remove overwriting of OPENSSL_CONF from buildtools-tarball.bb to clarify
> whether nativesdk-openssl installs wrong content or buildtools-tarball:
> (nativesdk-openssl) tmp/sysroots/x86_64/usr/lib/ssl-1.1/openssl.cnf
> (buildtools-tarball) 
> buildtools/sysroots/x86_64-pokysdk-linux/etc/ssl/openssl.cnf
>
> Signed-off-by: Jens Rehsack 

I did not understand the openssl related change. Is it possible to
rework the commit log so it is more detailed?


-- 
Otavio Salvador O.S. Systems
http://www.ossystems.com.brhttp://code.ossystems.com.br
Mobile: +55 (53) 9 9981-7854  Mobile: +1 (347) 903-9750
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140453): 
https://lists.openembedded.org/g/openembedded-core/message/140453
Mute This Topic: https://lists.openembedded.org/mt/75384624/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


[OE-core][zeus][PATCH 19/19] wpa-supplicant: Security fix CVE-2020-12695

2020-07-08 Thread Adrian Bunk
From: Armin Kuster 

Source: http://w1.fi/security/
Disposition: Backport from http://w1.fi/security/2020-1/

Affects <= 2.9 wpa-supplicant

(From OE-Core rev: 720d29cbfce34375402c6a4c17e440ffbb2659bf)

Signed-off-by: Armin Kuster 
(cherry picked from commit e9c696397ae1b4344b8329a13076f265980ee74d)
Signed-off-by: Steve Sakoman 
Signed-off-by: Richard Purdie 
Signed-off-by: Adrian Bunk 
---
 ...allow-event-subscriptions-with-URLs-.patch | 151 ++
 ...nt-message-generation-using-a-long-U.patch |  62 +++
 ...HTTP-initiation-failures-for-events-.patch |  50 ++
 .../wpa-supplicant/wpa-supplicant_2.9.bb  |   5 +-
 4 files changed, 267 insertions(+), 1 deletion(-)
 create mode 100644 
meta/recipes-connectivity/wpa-supplicant/wpa-supplicant/0001-WPS-UPnP-Do-not-allow-event-subscriptions-with-URLs-.patch
 create mode 100644 
meta/recipes-connectivity/wpa-supplicant/wpa-supplicant/0002-WPS-UPnP-Fix-event-message-generation-using-a-long-U.patch
 create mode 100644 
meta/recipes-connectivity/wpa-supplicant/wpa-supplicant/0003-WPS-UPnP-Handle-HTTP-initiation-failures-for-events-.patch

diff --git 
a/meta/recipes-connectivity/wpa-supplicant/wpa-supplicant/0001-WPS-UPnP-Do-not-allow-event-subscriptions-with-URLs-.patch
 
b/meta/recipes-connectivity/wpa-supplicant/wpa-supplicant/0001-WPS-UPnP-Do-not-allow-event-subscriptions-with-URLs-.patch
new file mode 100644
index 00..53ad5d028a
--- /dev/null
+++ 
b/meta/recipes-connectivity/wpa-supplicant/wpa-supplicant/0001-WPS-UPnP-Do-not-allow-event-subscriptions-with-URLs-.patch
@@ -0,0 +1,151 @@
+From 5b78c8f961f25f4dc22d6f2b77ddd06d712cec63 Mon Sep 17 00:00:00 2001
+From: Jouni Malinen 
+Date: Wed, 3 Jun 2020 23:17:35 +0300
+Subject: [PATCH 1/3] WPS UPnP: Do not allow event subscriptions with URLs to
+ other networks
+
+The UPnP Device Architecture 2.0 specification errata ("UDA errata
+16-04-2020.docx") addresses a problem with notifications being allowed
+to go out to other domains by disallowing such cases. Do such filtering
+for the notification callback URLs to avoid undesired connections to
+external networks based on subscriptions that any device in the local
+network could request when WPS support for external registrars is
+enabled (the upnp_iface parameter in hostapd configuration).
+
+Upstream-Status: Backport
+CVE: CVE-2020-12695 patch #1
+Signed-off-by: Jouni Malinen 
+Signed-off-by: Armin Kuster 
+
+---
+ src/wps/wps_er.c |  2 +-
+ src/wps/wps_upnp.c   | 38 --
+ src/wps/wps_upnp_i.h |  3 ++-
+ 3 files changed, 39 insertions(+), 4 deletions(-)
+
+Index: wpa_supplicant-2.9/src/wps/wps_er.c
+===
+--- wpa_supplicant-2.9.orig/src/wps/wps_er.c
 wpa_supplicant-2.9/src/wps/wps_er.c
+@@ -1298,7 +1298,7 @@ wps_er_init(struct wps_context *wps, con
+  "with %s", filter);
+   }
+   if (get_netif_info(er->ifname, &er->ip_addr, &er->ip_addr_text,
+- er->mac_addr)) {
++ NULL, er->mac_addr)) {
+   wpa_printf(MSG_INFO, "WPS UPnP: Could not get IP/MAC address "
+  "for %s. Does it have IP address?", er->ifname);
+   wps_er_deinit(er, NULL, NULL);
+Index: wpa_supplicant-2.9/src/wps/wps_upnp.c
+===
+--- wpa_supplicant-2.9.orig/src/wps/wps_upnp.c
 wpa_supplicant-2.9/src/wps/wps_upnp.c
+@@ -303,6 +303,14 @@ static void subscr_addr_free_all(struct
+ }
+
+
++static int local_network_addr(struct upnp_wps_device_sm *sm,
++struct sockaddr_in *addr)
++{
++  return (addr->sin_addr.s_addr & sm->netmask.s_addr) ==
++  (sm->ip_addr & sm->netmask.s_addr);
++}
++
++
+ /* subscr_addr_add_url -- add address(es) for one url to subscription */
+ static void subscr_addr_add_url(struct subscription *s, const char *url,
+   size_t url_len)
+@@ -381,6 +389,7 @@ static void subscr_addr_add_url(struct s
+
+   for (rp = result; rp; rp = rp->ai_next) {
+   struct subscr_addr *a;
++  struct sockaddr_in *addr = (struct sockaddr_in *) rp->ai_addr;
+
+   /* Limit no. of address to avoid denial of service attack */
+   if (dl_list_len(&s->addr_list) >= MAX_ADDR_PER_SUBSCRIPTION) {
+@@ -389,6 +398,13 @@ static void subscr_addr_add_url(struct s
+   break;
+   }
+
++  if (!local_network_addr(s->sm, addr)) {
++  wpa_printf(MSG_INFO,
++ "WPS UPnP: Ignore a delivery URL that points 
to another network %s",
++ inet_ntoa(addr->sin_addr));
++  continue;
++  }
++
+   a = os_zalloc(sizeof(*a) + alloc_len);
+   if (a == NULL)
+   break;
+@@ -889,11 +905,12 @@ static int e

[OE-core][zeus][PATCH 15/19] bind: update to 9.11.19

2020-07-08 Thread Adrian Bunk
From: akuster 

Bug fix only updates.

suitable for Stable branch updates where applicable.

Drop CVE patches included in update
LIC_FILES_CHKSUM update copyright year to 2020

Full changes found at : 
https://gitlab.isc.org/isc-projects/bind9/-/blob/v9_11/CHANGES

(From OE-Core rev: c672d2b6c98607f1fda917f4a3189a53712e8fc2)

Signed-off-by: Armin Kuster 
(cherry picked from commit a6ba66cf5e754cdcd41f01d233fbef7b94a10225)
Signed-off-by: Steve Sakoman 
Signed-off-by: Richard Purdie 
Signed-off-by: Adrian Bunk 
---
 .../bind/bind/CVE-2020-8616.patch | 206 --
 .../bind/bind/CVE-2020-8617.patch |  29 ---
 .../bind/{bind_9.11.13.bb => bind_9.11.19.bb} |   5 +-
 3 files changed, 2 insertions(+), 238 deletions(-)
 delete mode 100644 meta/recipes-connectivity/bind/bind/CVE-2020-8616.patch
 delete mode 100644 meta/recipes-connectivity/bind/bind/CVE-2020-8617.patch
 rename meta/recipes-connectivity/bind/{bind_9.11.13.bb => bind_9.11.19.bb} 
(96%)

diff --git a/meta/recipes-connectivity/bind/bind/CVE-2020-8616.patch 
b/meta/recipes-connectivity/bind/bind/CVE-2020-8616.patch
deleted file mode 100644
index 8f00231919..00
--- a/meta/recipes-connectivity/bind/bind/CVE-2020-8616.patch
+++ /dev/null
@@ -1,206 +0,0 @@
-Upstream-Status: Backport 
[https://downloads.isc.org/isc/bind9/9.11.19/patches/CVE-2020-8616.patch]
-CVE: CVE-2020-8616
-Signed-off-by: Lee Chee Yang 

-diff --git a/lib/dns/adb.c b/lib/dns/adb.c
-index 058495f6a5..6b8a9537f0 100644
 a/lib/dns/adb.c
-+++ b/lib/dns/adb.c
-@@ -404,14 +404,13 @@ static void log_quota(dns_adbentry_t *entry, const char 
*fmt, ...)
-  */
- #define FIND_WANTEVENT(fn)  (((fn)->options & DNS_ADBFIND_WANTEVENT) != 0)
- #define FIND_WANTEMPTYEVENT(fn) (((fn)->options & DNS_ADBFIND_EMPTYEVENT) != 
0)
--#define FIND_AVOIDFETCHES(fn)   (((fn)->options & DNS_ADBFIND_AVOIDFETCHES) \
--   != 0)
--#define FIND_STARTATZONE(fn)(((fn)->options & DNS_ADBFIND_STARTATZONE) \
--   != 0)
--#define FIND_HINTOK(fn) (((fn)->options & DNS_ADBFIND_HINTOK) != 0)
--#define FIND_GLUEOK(fn) (((fn)->options & DNS_ADBFIND_GLUEOK) != 0)
--#define FIND_HAS_ADDRS(fn)  (!ISC_LIST_EMPTY((fn)->list))
--#define FIND_RETURNLAME(fn) (((fn)->options & DNS_ADBFIND_RETURNLAME) != 
0)
-+#define FIND_AVOIDFETCHES(fn) (((fn)->options & DNS_ADBFIND_AVOIDFETCHES) != 
0)
-+#define FIND_STARTATZONE(fn)  (((fn)->options & DNS_ADBFIND_STARTATZONE) != 0)
-+#define FIND_HINTOK(fn)   (((fn)->options & DNS_ADBFIND_HINTOK) 
!= 0)
-+#define FIND_GLUEOK(fn)   (((fn)->options & DNS_ADBFIND_GLUEOK) 
!= 0)
-+#define FIND_HAS_ADDRS(fn)(!ISC_LIST_EMPTY((fn)->list))
-+#define FIND_RETURNLAME(fn)   (((fn)->options & DNS_ADBFIND_RETURNLAME) != 0)
-+#define FIND_NOFETCH(fn)  (((fn)->options & DNS_ADBFIND_NOFETCH) != 0)
- 
- /*
-  * These are currently used on simple unsigned ints, so they are
-@@ -3155,21 +3154,26 @@ dns_adb_createfind2(dns_adb_t *adb, isc_task_t *task, 
isc_taskaction_t action,
-* Listen to negative cache hints, and don't start
-* another query.
-*/
--  if (NCACHE_RESULT(result) || AUTH_NX(result))
-+  if (NCACHE_RESULT(result) || AUTH_NX(result)) {
-   goto fetch;
-+  }
- 
--  if (!NAME_FETCH_V6(adbname))
-+  if (!NAME_FETCH_V6(adbname)) {
-   wanted_fetches |= DNS_ADBFIND_INET6;
-+  }
-   }
- 
-  fetch:
-   if ((WANT_INET(wanted_addresses) && NAME_HAS_V4(adbname)) ||
-   (WANT_INET6(wanted_addresses) && NAME_HAS_V6(adbname)))
-+  {
-   have_address = true;
--  else
-+  } else {
-   have_address = false;
--  if (wanted_fetches != 0 &&
--  ! (FIND_AVOIDFETCHES(find) && have_address)) {
-+  }
-+  if (wanted_fetches != 0 && !(FIND_AVOIDFETCHES(find) && have_address) &&
-+  !FIND_NOFETCH(find))
-+  {
-   /*
-* We're missing at least one address family.  Either the
-* caller hasn't instructed us to avoid fetches, or we don't
-@@ -3177,8 +3181,9 @@ dns_adb_createfind2(dns_adb_t *adb, isc_task_t *task, 
isc_taskaction_t action,
-* be acceptable so we have to launch fetches.
-*/
- 
--  if (FIND_STARTATZONE(find))
-+  if (FIND_STARTATZONE(find)) {
-   start_at_zone = true;
-+  }
- 
-   /*
-* Start V4.
-diff --git a/lib/dns/include/dns/adb.h b/lib/dns/include/dns/adb.h
-index 63a13c4e41..edf6e54935 100644
 a/lib/dns/include/dns/adb.h
-+++ b/lib/dns/include/dns/adb.h
-@@ -207,6 +207,10 @@ struct dns_adbfind {
-  *  lame for this query.
-  */
- #define DNS_ADBFIND_OVERQUOTA 0x0400
-+/*%
-+ *Don't perform a fetch even if there are no address records

[OE-core][zeus][PATCH 13/19] mtd-utils: Fix return value of ubiformat

2020-07-08 Thread Adrian Bunk
From: Otavio Salvador 

This changeset fixes a feature regression in ubiformat.  Older versions
of ubiformat, when invoked with a flash-image, would return 0 in the
case no error was encountered.  Upon upgrading to latest, it was
discovered that ubiformat returned 255 even without encountering an
error condition.

This changeset corrects the above issue and causes ubiformat, when given an
image file, to return 0 when no errors are detected.

Backport fix from 2.1.2

(From OE-Core rev: 3ee98b6c9ddd1dd0825245ca672236b7befb9859)

Signed-off-by: Otavio Salvador 
(cherry picked from commit 7ebacd9cbaec98fbc406e8ae99c9805a24fdadc6)
Signed-off-by: Steve Sakoman 
Signed-off-by: Richard Purdie 
Signed-off-by: Adrian Bunk 
---
 ...-utils-Fix-return-value-of-ubiformat.patch | 62 +++
 meta/recipes-devtools/mtd/mtd-utils_git.bb|  1 +
 2 files changed, 63 insertions(+)
 create mode 100644 
meta/recipes-devtools/mtd/mtd-utils/0001-mtd-utils-Fix-return-value-of-ubiformat.patch

diff --git 
a/meta/recipes-devtools/mtd/mtd-utils/0001-mtd-utils-Fix-return-value-of-ubiformat.patch
 
b/meta/recipes-devtools/mtd/mtd-utils/0001-mtd-utils-Fix-return-value-of-ubiformat.patch
new file mode 100644
index 00..d43f7e1a7a
--- /dev/null
+++ 
b/meta/recipes-devtools/mtd/mtd-utils/0001-mtd-utils-Fix-return-value-of-ubiformat.patch
@@ -0,0 +1,62 @@
+From 4d19bffcfd66e25d3ee74536ae2d2da7ad52e8e2 Mon Sep 17 00:00:00 2001
+From: Barry Grussling 
+Date: Sun, 12 Jan 2020 12:33:32 -0800
+Subject: [PATCH] mtd-utils: Fix return value of ubiformat
+Organization: O.S. Systems Software LTDA.
+
+This changeset fixes a feature regression in ubiformat.  Older versions of
+ubiformat, when invoked with a flash-image, would return 0 in the case no error
+was encountered.  Upon upgrading to latest, it was discovered that ubiformat
+returned 255 even without encountering an error condition.
+
+This changeset corrects the above issue and causes ubiformat, when given an
+image file, to return 0 when no errors are detected.
+
+Tested by running through my loading scripts and verifying ubiformat returned
+0.
+
+Upstream-Status: Backport [2.1.2]
+
+Signed-off-by: Barry Grussling 
+Signed-off-by: David Oberhollenzer 
+Signed-off-by: Otavio Salvador 
+---
+ ubi-utils/ubiformat.c | 7 +--
+ 1 file changed, 5 insertions(+), 2 deletions(-)
+
+diff --git a/ubi-utils/ubiformat.c b/ubi-utils/ubiformat.c
+index a90627c..5377b12 100644
+--- a/ubi-utils/ubiformat.c
 b/ubi-utils/ubiformat.c
+@@ -550,6 +550,7 @@ static int format(libmtd_t libmtd, const struct 
mtd_dev_info *mtd,
+   struct ubi_vtbl_record *vtbl;
+   int eb1 = -1, eb2 = -1;
+   long long ec1 = -1, ec2 = -1;
++  int ret = -1;
+ 
+   write_size = UBI_EC_HDR_SIZE + mtd->subpage_size - 1;
+   write_size /= mtd->subpage_size;
+@@ -643,8 +644,10 @@ static int format(libmtd_t libmtd, const struct 
mtd_dev_info *mtd,
+   if (!args.quiet && !args.verbose)
+   printf("\n");
+ 
+-  if (novtbl)
++  if (novtbl) {
++  ret = 0;
+   goto out_free;
++  }
+ 
+   if (eb1 == -1 || eb2 == -1) {
+   errmsg("no eraseblocks for volume table");
+@@ -669,7 +672,7 @@ static int format(libmtd_t libmtd, const struct 
mtd_dev_info *mtd,
+ 
+ out_free:
+   free(hdr);
+-  return -1;
++  return ret;
+ }
+ 
+ int main(int argc, char * const argv[])
+-- 
+2.27.0
+
diff --git a/meta/recipes-devtools/mtd/mtd-utils_git.bb 
b/meta/recipes-devtools/mtd/mtd-utils_git.bb
index 810fe40f4e..d1658a739b 100644
--- a/meta/recipes-devtools/mtd/mtd-utils_git.bb
+++ b/meta/recipes-devtools/mtd/mtd-utils_git.bb
@@ -15,6 +15,7 @@ PV = "2.1.1"
 SRCREV = "4443221ce9b88440cd9f5bb78e6fe95621d36c8a"
 SRC_URI = "git://git.infradead.org/mtd-utils.git \
file://add-exclusion-to-mkfs-jffs2-git-2.patch \
+   file://0001-mtd-utils-Fix-return-value-of-ubiformat.patch \
 "
 
 S = "${WORKDIR}/git/"
-- 
2.17.1

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140446): 
https://lists.openembedded.org/g/openembedded-core/message/140446
Mute This Topic: https://lists.openembedded.org/mt/75385972/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


[OE-core][zeus][PATCH 17/19] dbus: fix CVE-2020-12049

2020-07-08 Thread Adrian Bunk
From: Lee Chee Yang 

(From OE-Core rev: 3f69946c6159fa359bc5800ee72ef6151d9ecd36)

Signed-off-by: Lee Chee Yang 
Signed-off-by: Steve Sakoman 
Signed-off-by: Richard Purdie 
Signed-off-by: Adrian Bunk 
---
 .../dbus/dbus/CVE-2020-12049.patch| 78 +++
 meta/recipes-core/dbus/dbus_1.12.16.bb|  1 +
 2 files changed, 79 insertions(+)
 create mode 100644 meta/recipes-core/dbus/dbus/CVE-2020-12049.patch

diff --git a/meta/recipes-core/dbus/dbus/CVE-2020-12049.patch 
b/meta/recipes-core/dbus/dbus/CVE-2020-12049.patch
new file mode 100644
index 00..ac7a4b7a71
--- /dev/null
+++ b/meta/recipes-core/dbus/dbus/CVE-2020-12049.patch
@@ -0,0 +1,78 @@
+From 872b085f12f56da25a2dbd9bd0b2dff31d5aea63 Mon Sep 17 00:00:00 2001
+From: Simon McVittie 
+Date: Thu, 16 Apr 2020 14:45:11 +0100
+Subject: [PATCH] sysdeps-unix: On MSG_CTRUNC, close the fds we did receive
+
+MSG_CTRUNC indicates that we have received fewer fds that we should
+have done because the buffer was too small, but we were treating it
+as though it indicated that we received *no* fds. If we received any,
+we still have to make sure we close them, otherwise they will be leaked.
+
+On the system bus, if an attacker can induce us to leak fds in this
+way, that's a local denial of service via resource exhaustion.
+
+Reported-by: Kevin Backhouse, GitHub Security Lab
+Fixes: dbus#294
+Fixes: CVE-2020-12049
+Fixes: GHSL-2020-057
+
+Upstream-Status: Backport 
[https://gitlab.freedesktop.org/dbus/dbus/-/commit/872b085f12f56da25a2dbd9bd0b2dff31d5aea63]
+CVE: CVE-2020-12049
+Signed-off-by: Lee Chee Yang 
+---
+ dbus/dbus-sysdeps-unix.c | 32 
+ 1 file changed, 20 insertions(+), 12 deletions(-)
+
+diff --git a/dbus/dbus-sysdeps-unix.c b/dbus/dbus-sysdeps-unix.c
+index b5fc2466..b176dae1 100644
+--- a/dbus/dbus-sysdeps-unix.c
 b/dbus/dbus-sysdeps-unix.c
+@@ -435,18 +435,6 @@ _dbus_read_socket_with_unix_fds (DBusSocketfd,
+   struct cmsghdr *cm;
+   dbus_bool_t found = FALSE;
+ 
+-  if (m.msg_flags & MSG_CTRUNC)
+-{
+-  /* Hmm, apparently the control data was truncated. The bad
+- thing is that we might have completely lost a couple of fds
+- without chance to recover them. Hence let's treat this as a
+- serious error. */
+-
+-  errno = ENOSPC;
+-  _dbus_string_set_length (buffer, start);
+-  return -1;
+-}
+-
+   for (cm = CMSG_FIRSTHDR(&m); cm; cm = CMSG_NXTHDR(&m, cm))
+ if (cm->cmsg_level == SOL_SOCKET && cm->cmsg_type == SCM_RIGHTS)
+   {
+@@ -501,6 +489,26 @@ _dbus_read_socket_with_unix_fds (DBusSocketfd,
+   if (!found)
+ *n_fds = 0;
+ 
++  if (m.msg_flags & MSG_CTRUNC)
++{
++  unsigned int i;
++
++  /* Hmm, apparently the control data was truncated. The bad
++ thing is that we might have completely lost a couple of fds
++ without chance to recover them. Hence let's treat this as a
++ serious error. */
++
++  /* We still need to close whatever fds we *did* receive,
++   * otherwise they'll never get closed. (CVE-2020-12049) */
++  for (i = 0; i < *n_fds; i++)
++close (fds[i]);
++
++  *n_fds = 0;
++  errno = ENOSPC;
++  _dbus_string_set_length (buffer, start);
++  return -1;
++}
++
+   /* put length back (doesn't actually realloc) */
+   _dbus_string_set_length (buffer, start + bytes_read);
+ 
+-- 
+2.25.1
+
diff --git a/meta/recipes-core/dbus/dbus_1.12.16.bb 
b/meta/recipes-core/dbus/dbus_1.12.16.bb
index cfdbec09d0..92508cbeb8 100644
--- a/meta/recipes-core/dbus/dbus_1.12.16.bb
+++ b/meta/recipes-core/dbus/dbus_1.12.16.bb
@@ -16,6 +16,7 @@ SRC_URI = 
"https://dbus.freedesktop.org/releases/dbus/dbus-${PV}.tar.gz \
file://tmpdir.patch \
file://dbus-1.init \
file://clear-guid_from_server-if-send_negotiate_unix_f.patch \
+   file://CVE-2020-12049.patch \
 "
 
 SRC_URI[md5sum] = "2dbeae80dfc9e3632320c6a53d5e8890"
-- 
2.17.1

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140450): 
https://lists.openembedded.org/g/openembedded-core/message/140450
Mute This Topic: https://lists.openembedded.org/mt/75385977/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


[OE-core][zeus][PATCH 18/19] perl: fix CVE-2020-10543 & CVE-2020-10878

2020-07-08 Thread Adrian Bunk
From: Lee Chee Yang 

(From OE-Core rev: d9c5d9c52eb1f03ff9c907a76dda31042fb26edb)

Signed-off-by: Lee Chee Yang 
Signed-off-by: Steve Sakoman 
Signed-off-by: Richard Purdie 
Signed-off-by: Adrian Bunk 
---
 .../perl/files/CVE-2020-10543.patch   |  36 +
 .../perl/files/CVE-2020-10878_1.patch | 152 ++
 .../perl/files/CVE-2020-10878_2.patch |  36 +
 meta/recipes-devtools/perl/perl_5.30.1.bb |   3 +
 4 files changed, 227 insertions(+)
 create mode 100644 meta/recipes-devtools/perl/files/CVE-2020-10543.patch
 create mode 100644 meta/recipes-devtools/perl/files/CVE-2020-10878_1.patch
 create mode 100644 meta/recipes-devtools/perl/files/CVE-2020-10878_2.patch

diff --git a/meta/recipes-devtools/perl/files/CVE-2020-10543.patch 
b/meta/recipes-devtools/perl/files/CVE-2020-10543.patch
new file mode 100644
index 00..36dff0aac9
--- /dev/null
+++ b/meta/recipes-devtools/perl/files/CVE-2020-10543.patch
@@ -0,0 +1,36 @@
+From 897d1f7fd515b828e4b198d8b8bef76c6faf03ed Mon Sep 17 00:00:00 2001
+From: John Lightsey 
+Date: Wed, 20 Nov 2019 20:02:45 -0600
+Subject: [PATCH] regcomp.c: Prevent integer overflow from nested regex
+ quantifiers.
+
+(CVE-2020-10543) On 32bit systems the size calculations for nested regular
+expression quantifiers could overflow causing heap memory corruption.
+
+Fixes: Perl/perl5-security#125
+(cherry picked from commit bfd31397db5dc1a5c5d3e0a1f753a4f89a736e71)
+
+Upstream-Status: Backport 
[https://github.com/perl/perl5/commit/897d1f7fd515b828e4b198d8b8bef76c6faf03ed] 
+CVE: CVE-2020-10543
+Signed-off-by: Lee Chee Yang 
+---
+ regcomp.c | 6 ++
+ 1 file changed, 6 insertions(+)
+
+diff --git a/regcomp.c b/regcomp.c
+index 93c8d98fbb0..5f86be8086d 100644
+--- a/regcomp.c
 b/regcomp.c
+@@ -5489,6 +5489,12 @@ S_study_chunk(pTHX_ RExC_state_t *pRExC_state, regnode 
**scanp,
+ RExC_precomp)));
+ }
+ 
++if ( ( minnext > 0 && mincount >= SSize_t_MAX / minnext )
++|| min >= SSize_t_MAX - minnext * mincount )
++{
++FAIL("Regexp out of space");
++}
++
+   min += minnext * mincount;
+   is_inf_internal |= deltanext == SSize_t_MAX
+  || (maxcount == REG_INFTY && minnext + deltanext > 
0);
diff --git a/meta/recipes-devtools/perl/files/CVE-2020-10878_1.patch 
b/meta/recipes-devtools/perl/files/CVE-2020-10878_1.patch
new file mode 100644
index 00..b86085a551
--- /dev/null
+++ b/meta/recipes-devtools/perl/files/CVE-2020-10878_1.patch
@@ -0,0 +1,152 @@
+From 0a320d753fe7fca03df259a4dfd8e641e51edaa8 Mon Sep 17 00:00:00 2001
+From: Hugo van der Sanden 
+Date: Tue, 18 Feb 2020 13:51:16 +
+Subject: [PATCH] study_chunk: extract rck_elide_nothing
+
+(CVE-2020-10878)
+
+(cherry picked from commit 93dee06613d4e1428fb10905ce1c3c96f53113dc)
+
+Upstream-Status: Backport 
[https://github.com/perl/perl5/commit/0a320d753fe7fca03df259a4dfd8e641e51edaa8] 
+CVE: CVE-2020-10878
+Signed-off-by: Lee Chee Yang 
+---
+ embed.fnc |  1 +
+ embed.h   |  1 +
+ proto.h   |  3 +++
+ regcomp.c | 70 ++-
+ 4 files changed, 48 insertions(+), 27 deletions(-)
+
+diff --git a/embed.fnc b/embed.fnc
+index aedb4baef19..d7cd04d3fc3 100644
+--- a/embed.fnc
 b/embed.fnc
+@@ -2481,6 +2481,7 @@ Es   |SSize_t|study_chunk|NN RExC_state_t 
*pRExC_state \
+ |I32 stopparen|U32 recursed_depth \
+   |NULLOK regnode_ssc *and_withp \
+   |U32 flags|U32 depth
++Es|void   |rck_elide_nothing|NN regnode *node
+ EsR   |SV *   |get_ANYOFM_contents|NN const regnode * n
+ EsRn  |U32|add_data   |NN RExC_state_t* const pRExC_state \
+   |NN const char* const s|const U32 n
+diff --git a/embed.h b/embed.h
+index 75c91f77f45..356a8b98d96 100644
+--- a/embed.h
 b/embed.h
+@@ -1208,6 +1208,7 @@
+ #define parse_lparen_question_flags(a)
S_parse_lparen_question_flags(aTHX_ a)
+ #define parse_uniprop_string(a,b,c,d,e,f,g,h,i)   
Perl_parse_uniprop_string(aTHX_ a,b,c,d,e,f,g,h,i)
+ #define populate_ANYOF_from_invlist(a,b)  
S_populate_ANYOF_from_invlist(aTHX_ a,b)
++#define rck_elide_nothing(a)  S_rck_elide_nothing(aTHX_ a)
+ #define reg(a,b,c,d)  S_reg(aTHX_ a,b,c,d)
+ #define reg2Lanode(a,b,c,d)   S_reg2Lanode(aTHX_ a,b,c,d)
+ #define reg_node(a,b) S_reg_node(aTHX_ a,b)
+diff --git a/proto.h b/proto.h
+index 141ddbaee6d..f316fe134e1 100644
+--- a/proto.h
 b/proto.h
+@@ -5543,6 +5543,9 @@ PERL_CALLCONV SV *   Perl_parse_uniprop_string(pTHX_ 
const char * const name, cons
+ STATIC void   S_populate_ANYOF_from_invlist(pTHX_ regnode *node, SV** 
invlist_ptr);
+ #define PERL_ARGS_ASSERT_POPULATE_ANYOF_FROM_INVLIST  \
+   assert(node); assert(invlist_ptr)
++STATIC void   S_rck_elide_nothing(pT

[OE-core][zeus][PATCH 14/19] bind: update 9.11.5-P4 -> 9.11.13

2020-07-08 Thread Adrian Bunk
From: Alexander Kanavin 

Drop backports.

Drop 0001-gen.c-extend-DIRNAMESIZE-from-256-to-512.patch and
0001-lib-dns-gen.c-fix-too-long-error.patch as problem is fixed
upstream.

(From OE-Core rev: 6965ec5c491e71d5951dfb58fc060bd0b717e33d)

Signed-off-by: Alexander Kanavin 
Signed-off-by: Ross Burton 
Signed-off-by: Richard Purdie 
Signed-off-by: Adrian Bunk 
---
 .../bind/0001-bind-fix-CVE-2019-6471.patch|  64 --
 in-remove-useless-L-use_openssl-lib.patch |  18 +-
 ...01-fix-enforcement-of-tcp-clients-v1.patch |  60 --
 ...c-extend-DIRNAMESIZE-from-256-to-512.patch |  22 -
 ...001-lib-dns-gen.c-fix-too-long-error.patch |  31 -
 ...p-clients-could-still-be-exceeded-v2.patch | 670 -
 ...rence-counter-for-pipeline-groups-v3.patch | 278 --
 ...accounting-and-client-mortality-chec.patch | 512 --
 ...a-and-pipeline-refs-allow-special-ca.patch | 911 --
 ...allowance-for-tcp-clients-interfaces.patch |  80 --
 ...perations-in-bin-named-client.c-with.patch | 140 ---
 ...ching-for-json-headers-searches-sysr.patch |  15 +-
 .../{bind_9.11.5-P4.bb => bind_9.11.13.bb}|  20 +-
 13 files changed, 20 insertions(+), 2801 deletions(-)
 delete mode 100644 
meta/recipes-connectivity/bind/bind/0001-bind-fix-CVE-2019-6471.patch
 delete mode 100644 
meta/recipes-connectivity/bind/bind/0001-fix-enforcement-of-tcp-clients-v1.patch
 delete mode 100644 
meta/recipes-connectivity/bind/bind/0001-gen.c-extend-DIRNAMESIZE-from-256-to-512.patch
 delete mode 100644 
meta/recipes-connectivity/bind/bind/0001-lib-dns-gen.c-fix-too-long-error.patch
 delete mode 100644 
meta/recipes-connectivity/bind/bind/0002-tcp-clients-could-still-be-exceeded-v2.patch
 delete mode 100644 
meta/recipes-connectivity/bind/bind/0003-use-reference-counter-for-pipeline-groups-v3.patch
 delete mode 100644 
meta/recipes-connectivity/bind/bind/0004-better-tcpquota-accounting-and-client-mortality-chec.patch
 delete mode 100644 
meta/recipes-connectivity/bind/bind/0005-refactor-tcpquota-and-pipeline-refs-allow-special-ca.patch
 delete mode 100644 
meta/recipes-connectivity/bind/bind/0006-restore-allowance-for-tcp-clients-interfaces.patch
 delete mode 100644 
meta/recipes-connectivity/bind/bind/0007-Replace-atomic-operations-in-bin-named-client.c-with.patch
 rename meta/recipes-connectivity/bind/{bind_9.11.5-P4.bb => bind_9.11.13.bb} 
(85%)

diff --git 
a/meta/recipes-connectivity/bind/bind/0001-bind-fix-CVE-2019-6471.patch 
b/meta/recipes-connectivity/bind/bind/0001-bind-fix-CVE-2019-6471.patch
deleted file mode 100644
index 2fed99e1bb..00
--- a/meta/recipes-connectivity/bind/bind/0001-bind-fix-CVE-2019-6471.patch
+++ /dev/null
@@ -1,64 +0,0 @@
-Backport patch to fix CVE-2019-6471.
-
-Ref:
-https://security-tracker.debian.org/tracker/CVE-2019-6471
-
-CVE: CVE-2019-6471
-Upstream-Status: Backport 
[https://gitlab.isc.org/isc-projects/bind9/commit/3a9c7bb]
-
-Signed-off-by: Kai Kang 
-
-From 3a9c7bb80d4a609b86427406d9dd783199920b5b Mon Sep 17 00:00:00 2001
-From: Mark Andrews 
-Date: Tue, 19 Mar 2019 14:14:21 +1100
-Subject: [PATCH] move item_out test inside lock in dns_dispatch_getnext()
-
-(cherry picked from commit 60c42f849d520564ed42e5ed0ba46b4b69c07712)

- lib/dns/dispatch.c | 12 
- 1 file changed, 8 insertions(+), 4 deletions(-)
-
-diff --git a/lib/dns/dispatch.c b/lib/dns/dispatch.c
-index 408beda367..3278db4a07 100644
 a/lib/dns/dispatch.c
-+++ b/lib/dns/dispatch.c
-@@ -134,7 +134,7 @@ struct dns_dispentry {
-   isc_task_t *task;
-   isc_taskaction_taction;
-   void   *arg;
--  boolitem_out;
-+  boolitem_out;
-   dispsocket_t*dispsocket;
-   ISC_LIST(dns_dispatchevent_t)   items;
-   ISC_LINK(dns_dispentry_t)   link;
-@@ -3422,13 +3422,14 @@ dns_dispatch_getnext(dns_dispentry_t *resp, 
dns_dispatchevent_t **sockevent) {
-   disp = resp->disp;
-   REQUIRE(VALID_DISPATCH(disp));
- 
--  REQUIRE(resp->item_out == true);
--  resp->item_out = false;
--
-   ev = *sockevent;
-   *sockevent = NULL;
- 
-   LOCK(&disp->lock);
-+
-+  REQUIRE(resp->item_out == true);
-+  resp->item_out = false;
-+
-   if (ev->buffer.base != NULL)
-   free_buffer(disp, ev->buffer.base, ev->buffer.length);
-   free_devent(disp, ev);
-@@ -3573,6 +3574,9 @@ dns_dispatch_removeresponse(dns_dispentry_t **resp,
-   isc_task_send(disp->task[0], &disp->ctlevent);
- }
- 
-+/*
-+ * disp must be locked.
-+ */
- static void
- do_cancel(dns_dispatch_t *disp) {
-   dns_dispatchevent_t *ev;
--- 
-2.20.1
-
diff --git 
a/meta/recipes-connectivity/bind/bind/0001-configure.in-remove-useless-L-use_openssl-lib.patch
 
b/meta/recipes-connectivity/bind/bind/0001-configure.in-remove-useless-L-use_openssl-lib.patch
index 871bb2a5f6..9d31b98080 100644
--- 
a/meta/recipes-connectivity/bind/bind/0001-configur

[OE-core][zeus][PATCH 06/19] cve-check: Run it after do_fetch

2020-07-08 Thread Adrian Bunk
From: Khem Raj 

Certain recipes e.g. bash readline ( from meta-gplv2 ) download patches instead 
of having them in
metadata, this could fail cve_check

ERROR: readline-5.2-r9 do_cve_check: File Not found: 
qemuarm/build/../downloads/readline52-001

This patch ensures that download is done before running CVE scan, even
though these will be external patches and may not contain CVE tags as it
expects, but it will fix the run failures as seen above

(From OE-Core rev: dbf143d79476e54e8da93101fc16eaedeec88362)

Signed-off-by: Khem Raj 
(cherry picked from commit e406fcb6c609a0d2456d7da0d2406d2d9fa52dd2)
Signed-off-by: Steve Sakoman 
Signed-off-by: Richard Purdie 
Signed-off-by: Adrian Bunk 
---
 meta/classes/cve-check.bbclass | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/meta/classes/cve-check.bbclass b/meta/classes/cve-check.bbclass
index 2a530a0489..556ac6e67f 100644
--- a/meta/classes/cve-check.bbclass
+++ b/meta/classes/cve-check.bbclass
@@ -65,7 +65,7 @@ python do_cve_check () {
 
 }
 
-addtask cve_check before do_build
+addtask cve_check before do_build after do_fetch
 do_cve_check[depends] = "cve-update-db-native:do_populate_cve_db"
 do_cve_check[nostamp] = "1"
 
-- 
2.17.1

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140440): 
https://lists.openembedded.org/g/openembedded-core/message/140440
Mute This Topic: https://lists.openembedded.org/mt/75385966/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


[OE-core][zeus][PATCH 01/19] python3: Upgrade 3.7.7 -> 3.7.8

2020-07-08 Thread Adrian Bunk
Backported patch removed.

Signed-off-by: Adrian Bunk 
---
 ...20-8492-Fix-AbstractBasicAuthHandler.patch | 248 --
 .../{python3_3.7.7.bb => python3_3.7.8.bb}|   5 +-
 2 files changed, 2 insertions(+), 251 deletions(-)
 delete mode 100644 
meta/recipes-devtools/python/files/0001-bpo-39503-CVE-2020-8492-Fix-AbstractBasicAuthHandler.patch
 rename meta/recipes-devtools/python/{python3_3.7.7.bb => python3_3.7.8.bb} 
(98%)

diff --git 
a/meta/recipes-devtools/python/files/0001-bpo-39503-CVE-2020-8492-Fix-AbstractBasicAuthHandler.patch
 
b/meta/recipes-devtools/python/files/0001-bpo-39503-CVE-2020-8492-Fix-AbstractBasicAuthHandler.patch
deleted file mode 100644
index e16b99bcb9..00
--- 
a/meta/recipes-devtools/python/files/0001-bpo-39503-CVE-2020-8492-Fix-AbstractBasicAuthHandler.patch
+++ /dev/null
@@ -1,248 +0,0 @@
-From 0b297d4ff1c0e4480ad33acae793fbaf4bf015b4 Mon Sep 17 00:00:00 2001
-From: Victor Stinner 
-Date: Thu, 2 Apr 2020 02:52:20 +0200
-Subject: [PATCH] bpo-39503: CVE-2020-8492: Fix AbstractBasicAuthHandler
- (GH-18284)
-
-Upstream-Status: Backport
-(https://github.com/python/cpython/commit/0b297d4ff1c0e4480ad33acae793fbaf4bf015b4)
-
-CVE: CVE-2020-8492
-
-The AbstractBasicAuthHandler class of the urllib.request module uses
-an inefficient regular expression which can be exploited by an
-attacker to cause a denial of service. Fix the regex to prevent the
-catastrophic backtracking. Vulnerability reported by Ben Caller
-and Matt Schwager.
-
-AbstractBasicAuthHandler of urllib.request now parses all
-WWW-Authenticate HTTP headers and accepts multiple challenges per
-header: use the realm of the first Basic challenge.
-
-Co-Authored-By: Serhiy Storchaka 
-Signed-off-by: Trevor Gamblin 

- Lib/test/test_urllib2.py  | 90 ---
- Lib/urllib/request.py | 69 ++
- .../2020-03-25-16-02-16.bpo-39503.YmMbYn.rst  |  3 +
- .../2020-01-30-16-15-29.bpo-39503.B299Yq.rst  |  5 ++
- 4 files changed, 115 insertions(+), 52 deletions(-)
- create mode 100644 
Misc/NEWS.d/next/Library/2020-03-25-16-02-16.bpo-39503.YmMbYn.rst
- create mode 100644 
Misc/NEWS.d/next/Security/2020-01-30-16-15-29.bpo-39503.B299Yq.rst
-
-diff --git a/Lib/test/test_urllib2.py b/Lib/test/test_urllib2.py
-index 8abedaac98..e69ac3e213 100644
 a/Lib/test/test_urllib2.py
-+++ b/Lib/test/test_urllib2.py
-@@ -1446,40 +1446,64 @@ class HandlerTests(unittest.TestCase):
- bypass = {'exclude_simple': True, 'exceptions': []}
- self.assertTrue(_proxy_bypass_macosx_sysconf('test', bypass))
- 
--def test_basic_auth(self, quote_char='"'):
--opener = OpenerDirector()
--password_manager = MockPasswordManager()
--auth_handler = urllib.request.HTTPBasicAuthHandler(password_manager)
--realm = "ACME Widget Store"
--http_handler = MockHTTPHandler(
--401, 'WWW-Authenticate: Basic realm=%s%s%s\r\n\r\n' %
--(quote_char, realm, quote_char))
--opener.add_handler(auth_handler)
--opener.add_handler(http_handler)
--self._test_basic_auth(opener, auth_handler, "Authorization",
--  realm, http_handler, password_manager,
--  "http://acme.example.com/protected";,
--  "http://acme.example.com/protected";,
--  )
--
--def test_basic_auth_with_single_quoted_realm(self):
--self.test_basic_auth(quote_char="'")
--
--def test_basic_auth_with_unquoted_realm(self):
--opener = OpenerDirector()
--password_manager = MockPasswordManager()
--auth_handler = urllib.request.HTTPBasicAuthHandler(password_manager)
--realm = "ACME Widget Store"
--http_handler = MockHTTPHandler(
--401, 'WWW-Authenticate: Basic realm=%s\r\n\r\n' % realm)
--opener.add_handler(auth_handler)
--opener.add_handler(http_handler)
--with self.assertWarns(UserWarning):
-+def check_basic_auth(self, headers, realm):
-+with self.subTest(realm=realm, headers=headers):
-+opener = OpenerDirector()
-+password_manager = MockPasswordManager()
-+auth_handler = 
urllib.request.HTTPBasicAuthHandler(password_manager)
-+body = '\r\n'.join(headers) + '\r\n\r\n'
-+http_handler = MockHTTPHandler(401, body)
-+opener.add_handler(auth_handler)
-+opener.add_handler(http_handler)
- self._test_basic_auth(opener, auth_handler, "Authorization",
--realm, http_handler, password_manager,
--"http://acme.example.com/protected";,
--"http://acme.example.com/protected";,
--)
-+  realm, http_handler, password_manager,
-+  "http://acme.example.com/protected";,

[OE-core][zeus][PATCH 11/19] wpa-supplicant: remove service templates from SYSTEMD_SERVICE

2020-07-08 Thread Adrian Bunk
From: Kai Kang 

Remove service templates wpa_supplicant-nl80211@.service and
wpa_supplicant-wired@.service from SYSTEMD_SERVICE that they should NOT
be started/stopped by calling 'systemctl' in postinst and prerm scripts.

(From OE-Core rev: 7910a0d6f332253608767a9576a0d521dd87efd7)

Signed-off-by: Kai Kang 
(cherry picked from commit fe9b8e50461ab00ab3ad8b065ebd32f0eea2a255)
Signed-off-by: Steve Sakoman 
Signed-off-by: Richard Purdie 
Signed-off-by: Adrian Bunk 
---
 .../wpa-supplicant/wpa-supplicant_2.9.bb| 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/meta/recipes-connectivity/wpa-supplicant/wpa-supplicant_2.9.bb 
b/meta/recipes-connectivity/wpa-supplicant/wpa-supplicant_2.9.bb
index 2db09ad2c6..0e74d21a76 100644
--- a/meta/recipes-connectivity/wpa-supplicant/wpa-supplicant_2.9.bb
+++ b/meta/recipes-connectivity/wpa-supplicant/wpa-supplicant_2.9.bb
@@ -15,7 +15,7 @@ PACKAGECONFIG[openssl] = ",,openssl"
 
 inherit pkgconfig systemd
 
-SYSTEMD_SERVICE_${PN} = "wpa_supplicant.service 
wpa_supplicant-nl80211@.service wpa_supplicant-wired@.service"
+SYSTEMD_SERVICE_${PN} = "wpa_supplicant.service"
 SYSTEMD_AUTO_ENABLE = "disable"
 
 SRC_URI = "http://w1.fi/releases/wpa_supplicant-${PV}.tar.gz  \
@@ -37,13 +37,13 @@ S = "${WORKDIR}/wpa_supplicant-${PV}"
 PACKAGES_prepend = "wpa-supplicant-passphrase wpa-supplicant-cli "
 FILES_wpa-supplicant-passphrase = "${bindir}/wpa_passphrase"
 FILES_wpa-supplicant-cli = "${sbindir}/wpa_cli"
-FILES_${PN} += "${datadir}/dbus-1/system-services/*"
+FILES_${PN} += "${datadir}/dbus-1/system-services/* 
${systemd_system_unitdir}/*"
 CONFFILES_${PN} += "${sysconfdir}/wpa_supplicant.conf"
 
 do_configure () {
${MAKE} -C wpa_supplicant clean
install -m 0755 ${WORKDIR}/defconfig wpa_supplicant/.config
-   
+
if echo "${PACKAGECONFIG}" | grep -qw "openssl"; then
ssl=openssl
elif echo "${PACKAGECONFIG}" | grep -qw "gnutls"; then
-- 
2.17.1

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140444): 
https://lists.openembedded.org/g/openembedded-core/message/140444
Mute This Topic: https://lists.openembedded.org/mt/75385970/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


[OE-core][zeus][PATCH 12/19] encodings: clear postinst script

2020-07-08 Thread Adrian Bunk
From: Kai Kang 

Postinst script from xorg-font-common.inc doesn't apply to this recipe.
So clear the postinst script of encodings.

(From OE-Core rev: ba94c908b99713ce115e9240df525c6442a60c7a)

Signed-off-by: Kai Kang 
(cherry picked from commit 99ae6dbb7278dfd264453af852c108fa56a0d4e3)
Signed-off-by: Steve Sakoman 
Signed-off-by: Richard Purdie 
Signed-off-by: Adrian Bunk 
---
 meta/recipes-graphics/xorg-font/encodings_1.0.5.bb | 4 
 1 file changed, 4 insertions(+)

diff --git a/meta/recipes-graphics/xorg-font/encodings_1.0.5.bb 
b/meta/recipes-graphics/xorg-font/encodings_1.0.5.bb
index a39609b5da..74014ff91b 100644
--- a/meta/recipes-graphics/xorg-font/encodings_1.0.5.bb
+++ b/meta/recipes-graphics/xorg-font/encodings_1.0.5.bb
@@ -19,3 +19,7 @@ SRC_URI[sha256sum] = 
"bd96e16143a044b19e87f217cf6a3763a70c561d1076aad6f6d862ec41
 inherit allarch
 
 EXTRA_OECONF += "--with-encodingsdir=${datadir}/fonts/X11/encodings"
+
+# postinst from .inc doesn't apply to this recipe
+pkg_postinst_${PN} () {
+}
-- 
2.17.1

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140445): 
https://lists.openembedded.org/g/openembedded-core/message/140445
Mute This Topic: https://lists.openembedded.org/mt/75385971/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


[OE-core][zeus][PATCH 16/19] perl: Fix host specific modules problems

2020-07-08 Thread Adrian Bunk
From: Richard Purdie 

We were seeing a ton of empty perl modules being created such as
"perl-module-x86-64-linux-encoding" where the name would include
${TARGET_ARCH}-linux. These files were already being filtered in an
earlier do_split_packages() expression so exclude them from the latter
one to remove the pointless empty modules in PACKAGES.

This doesn't explain why some were not deterministic but will recude
the do_package execution time and clean up the build directories
at the very least.

(From OE-Core rev: 5aaf9d3a748cbad17a4a3e5d9715ac2f289b007d)

Signed-off-by: Richard Purdie 
(cherry picked from commit 9f1a959d9831f43dda656e3b0c4d059db3363877)
Signed-off-by: Steve Sakoman 
Signed-off-by: Adrian Bunk 
---
 meta/recipes-devtools/perl/perl_5.30.1.bb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/meta/recipes-devtools/perl/perl_5.30.1.bb 
b/meta/recipes-devtools/perl/perl_5.30.1.bb
index 32746c7095..149885f692 100644
--- a/meta/recipes-devtools/perl/perl_5.30.1.bb
+++ b/meta/recipes-devtools/perl/perl_5.30.1.bb
@@ -271,7 +271,7 @@ python split_perl_packages () {
 do_split_packages(d, libdir, r'Module/([^\/]*)\.pm', '${PN}-module-%s', 
'perl module %s', recursive=True, allow_dirs=False, match_path=True, 
prepend=False)
 do_split_packages(d, libdir, r'Module/([^\/]*)/.*', '${PN}-module-%s', 
'perl module %s', recursive=True, allow_dirs=False, match_path=True, 
prepend=False)
 do_split_packages(d, libdir, r'.*linux/([^\/].*)\.(pm|pl|e2x)', 
'${PN}-module-%s', 'perl module %s', recursive=True, allow_dirs=False, 
match_path=True, prepend=False)
-do_split_packages(d, libdir, 
r'(^(?!(CPAN\/|CPANPLUS\/|Module\/|unicore\/)[^\/]).*)\.(pm|pl|e2x)', 
'${PN}-module-%s', 'perl module %s', recursive=True, allow_dirs=False, 
match_path=True, prepend=False)
+do_split_packages(d, libdir, 
r'(^(?!(CPAN\/|CPANPLUS\/|Module\/|unicore\/|.*linux\/)[^\/]).*)\.(pm|pl|e2x)', 
'${PN}-module-%s', 'perl module %s', recursive=True, allow_dirs=False, 
match_path=True, prepend=False)
 
 # perl-modules should recommend every perl module, and only the
 # modules. Don't attempt to use the result of do_split_packages() as some
-- 
2.17.1

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140449): 
https://lists.openembedded.org/g/openembedded-core/message/140449
Mute This Topic: https://lists.openembedded.org/mt/75385976/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


[OE-core][zeus][PATCH 04/19] gcr: depends on gnupg-native

2020-07-08 Thread Adrian Bunk
From: Kai Kang 

It fails to build gcr if no commmand gpg on build host:

| meson.build:44:0: ERROR: Program(s) ['gpg2', 'gpg'] not found or not 
executable

Add dependency gnupg-native to fix the error.

(From OE-Core rev: da7360247995d7c8e79dfcaa0c0761952a9013f1)

Signed-off-by: Kai Kang 
(cherry picked from commit e4a6eda4c246b2bca059defed796bdab19a7ab5f)
Signed-off-by: Steve Sakoman 
Signed-off-by: Richard Purdie 
Signed-off-by: Adrian Bunk 
---
 meta/recipes-gnome/gcr/gcr_3.28.1.bb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/meta/recipes-gnome/gcr/gcr_3.28.1.bb 
b/meta/recipes-gnome/gcr/gcr_3.28.1.bb
index 2299199c31..64b0569f04 100644
--- a/meta/recipes-gnome/gcr/gcr_3.28.1.bb
+++ b/meta/recipes-gnome/gcr/gcr_3.28.1.bb
@@ -5,7 +5,7 @@ BUGTRACKER = "https://bugzilla.gnome.org/";
 LICENSE = "GPLv2"
 LIC_FILES_CHKSUM = "file://COPYING;md5=55ca817ccb7d5b5b66355690e9abc605"
 
-DEPENDS = "intltool-native gtk+3 p11-kit glib-2.0 libgcrypt \
+DEPENDS = "intltool-native gtk+3 p11-kit glib-2.0 libgcrypt gnupg-native \
${@bb.utils.contains('GI_DATA_ENABLED', 'True', 'libxslt-native', 
'', d)}"
 
 inherit gnomebase gtk-icon-cache gtk-doc distro_features_check 
upstream-version-is-even vala gobject-introspection
-- 
2.17.1

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140438): 
https://lists.openembedded.org/g/openembedded-core/message/140438
Mute This Topic: https://lists.openembedded.org/mt/75385963/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


[OE-core][zeus][PATCH 08/19] cve-check: include epoch in product version output

2020-07-08 Thread Adrian Bunk
From: Ralph Siemsen 

In the generated cve.log files, include the epoch in the product
version. This better matches how versions are displayed elsewhere,
in particular the bb.warn("Found unpatched CVE...") that appears
on the terminal when CVEs are found.

(From OE-Core rev: 99f6de1c74b581054c74c6b4598a5d47facc9964)

Signed-off-by: Ralph Siemsen 
(cherry picked from commit e1c3c0b6e5b01304e2127f5058986697e82adf93)
Signed-off-by: Steve Sakoman 
Signed-off-by: Richard Purdie 
Signed-off-by: Adrian Bunk 
---
 meta/classes/cve-check.bbclass | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/meta/classes/cve-check.bbclass b/meta/classes/cve-check.bbclass
index 556ac6e67f..514897e8b8 100644
--- a/meta/classes/cve-check.bbclass
+++ b/meta/classes/cve-check.bbclass
@@ -301,7 +301,7 @@ def cve_write_data(d, patched, unpatched, whitelisted, 
cve_data):
 
 for cve in sorted(cve_data):
 write_string += "PACKAGE NAME: %s\n" % d.getVar("PN")
-write_string += "PACKAGE VERSION: %s\n" % d.getVar("PV")
+write_string += "PACKAGE VERSION: %s%s\n" % (d.getVar("EXTENDPE"), 
d.getVar("PV"))
 write_string += "CVE: %s\n" % cve
 if cve in whitelisted:
 write_string += "CVE STATUS: Whitelisted\n"
-- 
2.17.1

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140441): 
https://lists.openembedded.org/g/openembedded-core/message/140441
Mute This Topic: https://lists.openembedded.org/mt/75385967/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


[OE-core][zeus][PATCH 07/19] libexif: fix CVE-2020-13114

2020-07-08 Thread Adrian Bunk
From: Lee Chee Yang 

(From OE-Core rev: 2e497029ee00babbc50f3c1d99580230bc46155c)

Signed-off-by: Lee Chee Yang 
Signed-off-by: Steve Sakoman 
Signed-off-by: Richard Purdie 
Signed-off-by: Adrian Bunk 
---
 .../libexif/libexif/CVE-2020-13114.patch  | 73 +++
 .../recipes-support/libexif/libexif_0.6.21.bb |  4 +-
 2 files changed, 76 insertions(+), 1 deletion(-)
 create mode 100644 meta/recipes-support/libexif/libexif/CVE-2020-13114.patch

diff --git a/meta/recipes-support/libexif/libexif/CVE-2020-13114.patch 
b/meta/recipes-support/libexif/libexif/CVE-2020-13114.patch
new file mode 100644
index 00..06b8b46c21
--- /dev/null
+++ b/meta/recipes-support/libexif/libexif/CVE-2020-13114.patch
@@ -0,0 +1,73 @@
+From 47f51be021f4dfd800d4ff4630659887378baa3a Mon Sep 17 00:00:00 2001
+From: Dan Fandrich 
+Date: Sat, 16 May 2020 19:32:30 +0200
+Subject: [PATCH] Add a failsafe on the maximum number of Canon MakerNote
+
+ subtags.
+
+A malicious file could be crafted to cause extremely large values in some
+tags without tripping any buffer range checks.  This is bad with the libexif
+representation of Canon MakerNotes because some arrays are turned into
+individual tags that the application must loop around.
+
+The largest value I've seen for failsafe_size in a (very small) sample of valid
+Canon files is <5000.  The limit is set two orders of magnitude larger to avoid
+tripping up falsely in case some models use much larger values.
+
+Patch from Google.
+
+CVE-2020-13114
+
+Upstream-Status: Backport 
[https://github.com/libexif/libexif/commit/e6a38a1a23ba94d139b1fa2cd4519fdcfe3c9bab]
+CVE: CVE-2020-13114
+Signed-off-by: Lee Chee Yang 
+---
+ libexif/canon/exif-mnote-data-canon.c | 21 +
+ 1 file changed, 21 insertions(+)
+
+diff --git a/libexif/canon/exif-mnote-data-canon.c 
b/libexif/canon/exif-mnote-data-canon.c
+index eb53598..72fd7a3 100644
+--- a/libexif/canon/exif-mnote-data-canon.c
 b/libexif/canon/exif-mnote-data-canon.c
+@@ -32,6 +32,9 @@
+ 
+ #define DEBUG
+ 
++/* Total size limit to prevent abuse by DoS */
++#define FAILSAFE_SIZE_MAX 100L
++
+ static void
+ exif_mnote_data_canon_clear (ExifMnoteDataCanon *n)
+ {
+@@ -202,6 +205,7 @@ exif_mnote_data_canon_load (ExifMnoteData *ne,
+   ExifMnoteDataCanon *n = (ExifMnoteDataCanon *) ne;
+   ExifShort c;
+   size_t i, tcount, o, datao;
++  long failsafe_size = 0;
+ 
+   if (!n || !buf || !buf_size) {
+   exif_log (ne->log, EXIF_LOG_CODE_CORRUPT_DATA,
+@@ -280,6 +284,23 @@ exif_mnote_data_canon_load (ExifMnoteData *ne,
+   memcpy (n->entries[tcount].data, buf + dataofs, s);
+   }
+ 
++  /* Track the size of decoded tag data. A malicious file could
++   * be crafted to cause extremely large values here without
++   * tripping any buffer range checks.  This is especially bad
++   * with the libexif representation of Canon MakerNotes because
++   * some arrays are turned into individual tags that the
++   * application must loop around. */
++  failsafe_size += 
mnote_canon_entry_count_values(&n->entries[tcount]);
++
++  if (failsafe_size > FAILSAFE_SIZE_MAX) {
++  /* Abort if the total size of the data in the tags 
extraordinarily large, */
++  exif_mem_free (ne->mem, n->entries[tcount].data);
++  exif_log (ne->log, EXIF_LOG_CODE_CORRUPT_DATA,
++"ExifMnoteCanon", "Failsafe tag size 
overflow (%lu > %ld)",
++failsafe_size, FAILSAFE_SIZE_MAX);
++  break;
++  }
++
+   /* Tag was successfully parsed */
+   ++tcount;
+   }
diff --git a/meta/recipes-support/libexif/libexif_0.6.21.bb 
b/meta/recipes-support/libexif/libexif_0.6.21.bb
index d847beab18..3f6fa32b25 100644
--- a/meta/recipes-support/libexif/libexif_0.6.21.bb
+++ b/meta/recipes-support/libexif/libexif_0.6.21.bb
@@ -7,7 +7,9 @@ LIC_FILES_CHKSUM = 
"file://COPYING;md5=243b725d71bb5df4a1e5920b344b86ad"
 SRC_URI = "${SOURCEFORGE_MIRROR}/libexif/libexif-${PV}.tar.bz2 \
file://CVE-2017-7544.patch \
file://CVE-2016-6328.patch \
-   file://CVE-2018-20030.patch"
+   file://CVE-2018-20030.patch \
+   file://CVE-2020-13114.patch \
+"
 
 SRC_URI[md5sum] = "27339b89850f28c8f1c237f233e05b27"
 SRC_URI[sha256sum] = 
"16cdaeb62eb3e6dfab2435f7d7bccd2f37438d21c5218ec4e58efa9157d4d41a"
-- 
2.17.1

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140439): 
https://lists.openembedded.org/g/openembedded-core/message/140439
Mute This Topic: https://lists.openembedded.org/mt/75385965/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-arc

[OE-core][zeus][PATCH 02/19] timezone: upgrade 2019c -> 2020a

2020-07-08 Thread Adrian Bunk
From: Pierre-Jean Texier 

See full changelog https://github.com/eggert/tz/blob/master/NEWS#L11

(From OE-Core rev: 9d74b048e3a160d7a9a20e85817e9eb3a558af63)

Signed-off-by: Pierre-Jean Texier 
Signed-off-by: Richard Purdie 
Signed-off-by: Adrian Bunk 
---
 meta/recipes-extended/timezone/timezone.inc | 10 +-
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/meta/recipes-extended/timezone/timezone.inc 
b/meta/recipes-extended/timezone/timezone.inc
index f6bab1acb4..e542290c3c 100644
--- a/meta/recipes-extended/timezone/timezone.inc
+++ b/meta/recipes-extended/timezone/timezone.inc
@@ -4,7 +4,7 @@ SECTION = "base"
 LICENSE = "PD & BSD & BSD-3-Clause"
 LIC_FILES_CHKSUM = "file://LICENSE;md5=c679c9d6b02bc2757b3eaf8f53c43fba"
 
-PV = "2019c"
+PV = "2020a"
 
 SRC_URI =" 
http://www.iana.org/time-zones/repository/releases/tzcode${PV}.tar.gz;name=tzcode
 \

http://www.iana.org/time-zones/repository/releases/tzdata${PV}.tar.gz;name=tzdata
 \
@@ -12,7 +12,7 @@ SRC_URI =" 
http://www.iana.org/time-zones/repository/releases/tzcode${PV}.tar.gz
 
 UPSTREAM_CHECK_URI = "http://www.iana.org/time-zones";
 
-SRC_URI[tzcode.md5sum] = "195a17454c5db05cab96595380650391"
-SRC_URI[tzcode.sha256sum] = 
"f6ebd3668e02d5ed223d3b7b1947561bf2d2da2f4bd1db61efefd9e06c167ed4"
-SRC_URI[tzdata.md5sum] = "f6987e6dfdb2eb83a1b5076a50b80894"
-SRC_URI[tzdata.sha256sum] = 
"79c7806dab09072308da0e3d22c37d3b245015a591891ea147d3b133b60ffc7c"
+SRC_URI[tzcode.md5sum] = "f87c3477e85a5c4b00df0def6c6a0055"
+SRC_URI[tzcode.sha256sum] = 
"7d2af7120ee03df71fbca24031ccaf42404752e639196fe93c79a41b38a6d669"
+SRC_URI[tzdata.md5sum] = "96a985bb8eeab535fb8aa2132296763a"
+SRC_URI[tzdata.sha256sum] = 
"547161eca24d344e0b5f96aff6a76b454da295dc14ed4ca50c2355043fb899a2"
-- 
2.17.1

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140435): 
https://lists.openembedded.org/g/openembedded-core/message/140435
Mute This Topic: https://lists.openembedded.org/mt/75385960/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


[OE-core][zeus][PATCH 09/19] patchelf: Add patch to address corrupt shared library issue

2020-07-08 Thread Adrian Bunk
From: Richard Purdie 

patchelf can corrupt shared libraries if the program headers don't
immediately follow the elf header. Add a patch submitted upstream
to address this.

(From OE-Core rev: faaf5f34332290708f3720a5488b3d1549d9e95a)

Signed-off-by: Richard Purdie 
(cherry picked from commit e7811c787bbe2f5d49b3506309499acc27189988)
Signed-off-by: Steve Sakoman 
Signed-off-by: Adrian Bunk 
---
 .../patchelf/patchelf/fix-phdrs.patch | 37 +++
 .../patchelf/patchelf_0.10.bb |  1 +
 2 files changed, 38 insertions(+)
 create mode 100644 meta/recipes-devtools/patchelf/patchelf/fix-phdrs.patch

diff --git a/meta/recipes-devtools/patchelf/patchelf/fix-phdrs.patch 
b/meta/recipes-devtools/patchelf/patchelf/fix-phdrs.patch
new file mode 100644
index 00..d087bd7855
--- /dev/null
+++ b/meta/recipes-devtools/patchelf/patchelf/fix-phdrs.patch
@@ -0,0 +1,37 @@
+When running patchelf on some existing patchelf'd binaries to change to longer 
+RPATHS, ldd would report the binaries as invalid. The output of objdump -x on 
+those libraryies should show the top of the .dynamic section is getting 
trashed,
+something like:
+
+0x60001 0x00429000
+0x335000 0x00335000
+0xc740 0xc740
+0x1000 0x9098
+SONAME libglib-2.0.so.0
+
+(which should be RPATH and DT_NEEDED entries)
+
+This was tracked down to the code which injects the PT_LOAD section.
+
+The issue is that if the program headers were previously relocated to the end 
+of the file which was how patchelf operated previously, the relocation code 
+wouldn't work properly on a second run as it now assumes they're located after 
+the elf header. This change forces them back to immediately follow the elf
+header which is where the code has made space for them.
+
+Upstream-Status: Submitted [https://github.com/NixOS/patchelf/pull/202]
+Signed-off-by: Richard Purdie 
+RP 2020/6/2
+
+Index: git/src/patchelf.cc
+===
+--- git.orig/src/patchelf.cc
 git/src/patchelf.cc
+@@ -762,6 +762,7 @@ void ElfFile::rewrite
+ }
+ 
+ /* Add a segment that maps the replaced sections into memory. */
++wri(hdr->e_phoff, sizeof(Elf_Ehdr));
+ phdrs.resize(rdi(hdr->e_phnum) + 1);
+ wri(hdr->e_phnum, rdi(hdr->e_phnum) + 1);
+ Elf_Phdr & phdr = phdrs[rdi(hdr->e_phnum) - 1];
diff --git a/meta/recipes-devtools/patchelf/patchelf_0.10.bb 
b/meta/recipes-devtools/patchelf/patchelf_0.10.bb
index cc983e033a..e4a604ec70 100644
--- a/meta/recipes-devtools/patchelf/patchelf_0.10.bb
+++ b/meta/recipes-devtools/patchelf/patchelf_0.10.bb
@@ -1,6 +1,7 @@
 SRC_URI = "https://nixos.org/releases/${BPN}/${BPN}-${PV}/${BPN}-${PV}.tar.bz2 
\
file://handle-read-only-files.patch \
file://fix-adjusting-startPage.patch \
+   file://fix-phdrs.patch \
"
 
 LICENSE = "GPLv3"
-- 
2.17.1

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140442): 
https://lists.openembedded.org/g/openembedded-core/message/140442
Mute This Topic: https://lists.openembedded.org/mt/75385968/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


[OE-core][zeus][PATCH 03/19] sqlite: backport CVE fix

2020-07-08 Thread Adrian Bunk
From: Sakib Sajal 

Fixes CVE-2020-11655

(From OE-Core rev: 3b06a6c73f4e49c6d00f758423c2e8865ec2de00)

Signed-off-by: Sakib Sajal 
Signed-off-by: Richard Purdie 
[ without the CVE-2020-11656 fix that did not apply cleanly ]
Signed-off-by: Adrian Bunk 
---
 .../sqlite/files/CVE-2020-11655.patch | 32 +++
 meta/recipes-support/sqlite/sqlite3_3.29.0.bb |  1 +
 2 files changed, 33 insertions(+)
 create mode 100644 meta/recipes-support/sqlite/files/CVE-2020-11655.patch

diff --git a/meta/recipes-support/sqlite/files/CVE-2020-11655.patch 
b/meta/recipes-support/sqlite/files/CVE-2020-11655.patch
new file mode 100644
index 00..e30c482bbb
--- /dev/null
+++ b/meta/recipes-support/sqlite/files/CVE-2020-11655.patch
@@ -0,0 +1,32 @@
+From a4601326d61bf1a11151ac6b78b50804bfd03b4d Mon Sep 17 00:00:00 2001
+From: Sakib Sajal 
+Date: Thu, 30 Apr 2020 10:46:16 -0700
+Subject: [PATCH 2/2] In the event of a semantic error in an aggregate query,
+ early-out the resetAccumulator() function to prevent problems due to
+ incomplete or incorrect initialization of the AggInfo object. Fix for ticket
+ [af4556bb5c285c08].
+
+FossilOrigin-Name: 
4a302b42c7bf5e11ddb5522ca999f74aba397d3a7eb91b1844bb02852f772441
+Upstream Status: Backport [c415d91007e1680e4eb17def583b202c3c83c718]
+
+CVE: CVE-2020-11655
+Signed-off-by: Sakib Sajal 
+---
+ sqlite3.c | 1 +
+ 1 file changed, 1 insertion(+)
+
+diff --git a/sqlite3.c b/sqlite3.c
+index 1df6633..726adf7 100644
+--- a/sqlite3.c
 b/sqlite3.c
+@@ -133242,6 +133242,7 @@ static void resetAccumulator(Parse *pParse, AggInfo 
*pAggInfo){
+   struct AggInfo_func *pFunc;
+   int nReg = pAggInfo->nFunc + pAggInfo->nColumn;
+   if( nReg==0 ) return;
++  if( pParse->nErr ) return;
+ #ifdef SQLITE_DEBUG
+   /* Verify that all AggInfo registers are within the range specified by
+   ** AggInfo.mnReg..AggInfo.mxReg */
+-- 
+2.17.1
+
diff --git a/meta/recipes-support/sqlite/sqlite3_3.29.0.bb 
b/meta/recipes-support/sqlite/sqlite3_3.29.0.bb
index cf3b179845..95e1174b07 100644
--- a/meta/recipes-support/sqlite/sqlite3_3.29.0.bb
+++ b/meta/recipes-support/sqlite/sqlite3_3.29.0.bb
@@ -12,6 +12,7 @@ SRC_URI = 
"http://www.sqlite.org/2019/sqlite-autoconf-${SQLITE_PV}.tar.gz \
file://CVE-2019-19926.patch \
file://CVE-2019-19959.patch \
file://CVE-2019-20218.patch \
+   file://CVE-2020-11655.patch \
 "
 SRC_URI[md5sum] = "8f3dfe83387e62ecb91c7c5c09c688dc"
 SRC_URI[sha256sum] = 
"8e7c1e2950b5b04c5944a981cb31fffbf9d2ddda939d536838ebc854481afd5b"
-- 
2.17.1

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140437): 
https://lists.openembedded.org/g/openembedded-core/message/140437
Mute This Topic: https://lists.openembedded.org/mt/75385962/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


[OE-core][zeus][PATCH 10/19] vim: _FORTIFY_SOURCE=2 be gone

2020-07-08 Thread Adrian Bunk
From: Joe Slater 

vim will abort in many places with this setting.  Replace
it with the benign _FORTIFY_SOURCE=1.

(From OE-Core rev: d9de155f6452f916edd3131addd0c2eebaf4d639)

Signed-off-by: Joe Slater 
(cherry picked from commit 18129cbaeddb3278efe9963718556e3765f06c1e)
Signed-off-by: Steve Sakoman 
Signed-off-by: Richard Purdie 
Signed-off-by: Adrian Bunk 
---
 meta/recipes-support/vim/vim_8.1.1518.bb | 5 +
 1 file changed, 5 insertions(+)

diff --git a/meta/recipes-support/vim/vim_8.1.1518.bb 
b/meta/recipes-support/vim/vim_8.1.1518.bb
index 60946a181f..709b6ddb55 100644
--- a/meta/recipes-support/vim/vim_8.1.1518.bb
+++ b/meta/recipes-support/vim/vim_8.1.1518.bb
@@ -8,3 +8,8 @@ BBCLASSEXTEND = "native"
 ALTERNATIVE_${PN}_append = " xxd"
 ALTERNATIVE_TARGET[xxd] = "${bindir}/xxd"
 ALTERNATIVE_LINK_NAME[xxd] = "${bindir}/xxd"
+
+# We override the default in security_flags.inc because vim (not vim-tiny!) 
will abort
+# in many places for _FORTIFY_SOURCE=2.  Security flags become part of CC.
+#
+lcl_maybe_fortify = 
"${@oe.utils.conditional('DEBUG_BUILD','1','','-D_FORTIFY_SOURCE=1',d)}"
-- 
2.17.1

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140443): 
https://lists.openembedded.org/g/openembedded-core/message/140443
Mute This Topic: https://lists.openembedded.org/mt/75385969/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


[OE-core][zeus][PATCH 05/19] file: add bzip2-replacement-native to DEPENDS to fix sstate issue

2020-07-08 Thread Adrian Bunk
From: Jan-Simon Moeller 

file-native when built on a Debian 10 host will embed a dependency to
'libbz2.so.1.0' (instead of 'libbz2.so.1'). This can cause issues
when sharing the sstate between hosts e.g.:

 recipe-sysroot-native/usr/lib/rpm/rpmdeps:
  error while loading shared libraries: libbz2.so.1.0: \
cannot open shared object file: No such file or directory

To avoid this situation, let's add the bzip2-replacement-native to the
file recipe's DEPENDS_class-native .

Details in https://bugzilla.yoctoproject.org/show_bug.cgi?id=13915 .

(From OE-Core rev: 5a2bc3bfa9e1a4f37b6e26a5c40a4a9c025d03f1)

Signed-off-by: Jan-Simon Moeller 
(cherry picked from commit 4a996574464028bd5d57b90920d0887d1a81e9e9)
Signed-off-by: Steve Sakoman 
Signed-off-by: Richard Purdie 
Signed-off-by: Adrian Bunk 
---
 meta/recipes-devtools/file/file_5.37.bb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/meta/recipes-devtools/file/file_5.37.bb 
b/meta/recipes-devtools/file/file_5.37.bb
index 60fc66131e..eb0f40b54d 100644
--- a/meta/recipes-devtools/file/file_5.37.bb
+++ b/meta/recipes-devtools/file/file_5.37.bb
@@ -9,7 +9,7 @@ LICENSE = "BSD"
 LIC_FILES_CHKSUM = 
"file://COPYING;beginline=2;md5=0251eaec1188b20d9a72c502ecfdda1b"
 
 DEPENDS = "zlib file-replacement-native"
-DEPENDS_class-native = "zlib-native"
+DEPENDS_class-native = "zlib-native bzip2-replacement-native"
 
 # Blacklist a bogus tag in upstream check
 UPSTREAM_CHECK_GITTAGREGEX = "FILE(?P(?!6_23).+)"
-- 
2.17.1

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140436): 
https://lists.openembedded.org/g/openembedded-core/message/140436
Mute This Topic: https://lists.openembedded.org/mt/75385961/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


[OE-core][PATCH] toolchain-scripts.bbclass: also recognize ${SDK_SYS} env setups

2020-07-08 Thread Jens Rehsack
Instead of recognizing only environment-setup scripts in
${STAGING_DIR_TARGET} or ${STAGING_DIR_NATIVE}, respectively - lurk also into
${SDKPATH}/buildtools/sysroots/${SDK_SYS} where nativesdk-openssl installs
setup files.

Remove overwriting of OPENSSL_CONF from buildtools-tarball.bb to clarify
whether nativesdk-openssl installs wrong content or buildtools-tarball:
(nativesdk-openssl) tmp/sysroots/x86_64/usr/lib/ssl-1.1/openssl.cnf
(buildtools-tarball) 
buildtools/sysroots/x86_64-pokysdk-linux/etc/ssl/openssl.cnf

Signed-off-by: Jens Rehsack 
---
 meta/classes/toolchain-scripts.bbclass   | 5 +
 meta/recipes-core/meta/buildtools-tarball.bb | 1 -
 2 files changed, 5 insertions(+), 1 deletion(-)

diff --git a/meta/classes/toolchain-scripts.bbclass 
b/meta/classes/toolchain-scripts.bbclass
index db1d3215ef..e3959e21e8 100644
--- a/meta/classes/toolchain-scripts.bbclass
+++ b/meta/classes/toolchain-scripts.bbclass
@@ -119,6 +119,11 @@ if [ -d "\$OECORE_NATIVE_SYSROOT/environment-setup.d" ]; 
then
. \$envfile
 done
 fi
+if [ -d "${SDKPATH}/buildtools/sysroots/${SDK_SYS}/environment-setup.d" ]; then
+for envfile in 
${SDKPATH}/buildtools/sysroots/${SDK_SYS}/environment-setup.d/*.sh; do
+   . \$envfile
+done
+fi
 EOF
 }
 
diff --git a/meta/recipes-core/meta/buildtools-tarball.bb 
b/meta/recipes-core/meta/buildtools-tarball.bb
index d0f8dd7d7c..02e662b5cc 100644
--- a/meta/recipes-core/meta/buildtools-tarball.bb
+++ b/meta/recipes-core/meta/buildtools-tarball.bb
@@ -75,7 +75,6 @@ create_sdk_files_append () {
 
echo 'export 
GIT_SSL_CAINFO="${SDKPATHNATIVE}${sysconfdir}/ssl/certs/ca-certificates.crt"' 
>>$script
echo 'export 
SSL_CERT_FILE="${SDKPATHNATIVE}${sysconfdir}/ssl/certs/ca-certificates.crt"' 
>>$script
-   echo 'export 
OPENSSL_CONF="${SDKPATHNATIVE}${sysconfdir}/ssl/openssl.cnf"' >>$script
 
if [ "${SDKMACHINE}" = "i686" ]; then
echo 'export NO32LIBS="0"' >>$script
-- 
2.17.1

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140433): 
https://lists.openembedded.org/g/openembedded-core/message/140433
Mute This Topic: https://lists.openembedded.org/mt/75384624/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


[OE-core] [PATCH 2/2] ptest: append to FILES

2020-07-08 Thread Konrad Weihmann
as ptest FILES could be determined before or after the classes was
inherited, if is much safer to append to the setting of
FILES_${PN}-ptest

Signed-off-by: Konrad Weihmann 
---
 meta/classes/ptest.bbclass | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/meta/classes/ptest.bbclass b/meta/classes/ptest.bbclass
index fa4c36ec76..47611edea2 100644
--- a/meta/classes/ptest.bbclass
+++ b/meta/classes/ptest.bbclass
@@ -6,7 +6,7 @@ PTEST_PATH ?= "${libdir}/${BPN}/ptest"
 PTEST_BUILD_HOST_FILES ?= "Makefile"
 PTEST_BUILD_HOST_PATTERN ?= ""
 
-FILES_${PN}-ptest = "${PTEST_PATH}"
+FILES_${PN}-ptest += "${PTEST_PATH}"
 SECTION_${PN}-ptest = "devel"
 ALLOW_EMPTY_${PN}-ptest = "1"
 PTEST_ENABLED = "${@bb.utils.contains('DISTRO_FEATURES', 'ptest', '1', '0', 
d)}"
-- 
2.20.1

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140432): 
https://lists.openembedded.org/g/openembedded-core/message/140432
Mute This Topic: https://lists.openembedded.org/mt/75383186/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


[OE-core] [PATCH 1/2] distutils: put tests to ptest package

2020-07-08 Thread Konrad Weihmann
Put files from installed tests into a ptest package to avoid having
them in an image and to avoid having more runtime dependencies
than necessary.

Signed-off-by: Konrad Weihmann 
---
 meta/classes/distutils-common-base.bbclass | 5 +
 1 file changed, 5 insertions(+)

diff --git a/meta/classes/distutils-common-base.bbclass 
b/meta/classes/distutils-common-base.bbclass
index 94b5fd426d..e3b36574aa 100644
--- a/meta/classes/distutils-common-base.bbclass
+++ b/meta/classes/distutils-common-base.bbclass
@@ -13,8 +13,13 @@ export CCSHARED  = "-fPIC -DPIC"
 # the python executable
 export LINKFORSHARED = "{SECURITY_CFLAGS} -Xlinker -export-dynamic"
 
+PACKAGES =+ "${@oe.utils.ifelse(bb.data.inherits_class('image', d), '', 
'${PN}-ptest')}"
+
 FILES_${PN} += "${libdir}/* ${libdir}/${PYTHON_DIR}/*"
 
+FILES_${PN}-ptest += "${PYTHON_SITEPACKAGES_DIR}/**/test/*"
+ALLOW_EMPTY_${PN}-ptest = "1"
+
 FILES_${PN}-staticdev += "\
   ${PYTHON_SITEPACKAGES_DIR}/*.a \
 "
-- 
2.20.1

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140431): 
https://lists.openembedded.org/g/openembedded-core/message/140431
Mute This Topic: https://lists.openembedded.org/mt/75383184/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


Re: [OE-core] [PATCH 2/2] rootfs-post: add sanity check for ROOTFS_POSTCMD

2020-07-08 Thread Konrad Weihmann
Then please ignore the second patch - if I find some time, I'll try to 
add that to the sanity class - but for now the first patch solve a real 
problem for me, while the second is nice 2 have at the moment


On 08.07.20 14:08, Richard Purdie wrote:

On Wed, 2020-07-08 at 13:09 +0200, Konrad Weihmann wrote:

It warns about trailing blanks before the delimiter, as otherwise the
task can't be removed properly

Signed-off-by: Konrad Weihmann 
---
  meta/classes/rootfs-postcommands.bbclass | 8 
  1 file changed, 8 insertions(+)

diff --git a/meta/classes/rootfs-postcommands.bbclass 
b/meta/classes/rootfs-postcommands.bbclass
index 984730ebe8..e33715f016 100644
--- a/meta/classes/rootfs-postcommands.bbclass
+++ b/meta/classes/rootfs-postcommands.bbclass
@@ -57,6 +57,14 @@ python () {
  d.appendVar('ROOTFS_POSTPROCESS_COMMAND', 'rootfs_reproducible;')
  }
  
+addhandler rootfs_postcmd_sanity_eventhandler

+rootfs_postcmd_sanity_eventhandler[eventmask] = "bb.event.RecipeParsed"
+python rootfs_postcmd_sanity_eventhandler() {
+for x in (d.getVar("ROOTFS_POSTPROCESS_COMMAND") or "").split(";"):
+if x.endswith(" "):
+bb.warn("'%s' ends with a blank, making the task unremovable" % 
x.strip())
+}
+
  systemd_create_users () {
for conffile in ${IMAGE_ROOTFS}/usr/lib/sysusers.d/systemd.conf 
${IMAGE_ROOTFS}/usr/lib/sysusers.d/systemd-remote.conf; do
[ -e $conffile ] || continue


I think this belongs with other sanity tests in insane.bbclass. I'd
prefer not to have another event handler in the system just for this
(they're high overhead).

Cheers,

Richard

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140430): 
https://lists.openembedded.org/g/openembedded-core/message/140430
Mute This Topic: https://lists.openembedded.org/mt/75374081/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


Re: [OE-core] [RFC PATCH 1/1] classes: add workdir_save class

2020-07-08 Thread Richard Purdie
On Wed, 2020-07-08 at 11:02 -0700, Paul Eggleton wrote:
> If you are running your builds inside an environment where you don't
> have access to the build tree (e.g. an autobuilder where you can only
> download final artifacts such as images), then debugging build
> failures
> can be difficult - you can't examine log files, the source tree or
> output
> files. When enabled, this class triggers on task failure and saves a
> tarball of the work directory for the task's recipe and puts it in a
> configurable location, where it can be picked up by a separate
> process
> and made available as a downloadable artifact.
> 
> Signed-off-by: Paul Eggleton 

Seems like a useful idea. I think the name may need "failed" in the
name to make it clearer what it does. We also need a section for the
classes chapter in the manual.

As another data point, OEQA is using OEQA_DEBUGGING_SAVED_OUTPUT to
trigger saving information for reproducible builds...

Cheers,

Richard

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140429): 
https://lists.openembedded.org/g/openembedded-core/message/140429
Mute This Topic: https://lists.openembedded.org/mt/75382316/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


[OE-core] [RFC PATCH 0/1] classes: add workdir_save class

2020-07-08 Thread Paul Eggleton
This is fairly trivial but I've found it useful in my setup - I'd like to
know if others would as well. Improvement suggestions welcome.


Please review the following changes for suitability for inclusion. If you have
any objections or suggestions for improvement, please respond to the patches. If
you agree with the changes, please provide your Acked-by.

The following changes since commit b3c96103a5063eeefb0c537227eab3f77616b9c0:

  libnl: Extend for native/nativesdk (2020-07-08 10:56:11 +0100)

are available in the git repository at:

  git://git.openembedded.org/openembedded-core-contrib paule/workdir_save
  
http://cgit.openembedded.org/openembedded-core-contrib/log/?h=paule/workdir_save

Paul Eggleton (1):
  classes: add workdir_save class

 meta/classes/workdir_save.bbclass | 54 +++
 1 file changed, 54 insertions(+)
 create mode 100644 meta/classes/workdir_save.bbclass

-- 
1.8.3.1

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140427): 
https://lists.openembedded.org/g/openembedded-core/message/140427
Mute This Topic: https://lists.openembedded.org/mt/75382315/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


[OE-core] [RFC PATCH 1/1] classes: add workdir_save class

2020-07-08 Thread Paul Eggleton
If you are running your builds inside an environment where you don't
have access to the build tree (e.g. an autobuilder where you can only
download final artifacts such as images), then debugging build failures
can be difficult - you can't examine log files, the source tree or output
files. When enabled, this class triggers on task failure and saves a
tarball of the work directory for the task's recipe and puts it in a
configurable location, where it can be picked up by a separate process
and made available as a downloadable artifact.

Signed-off-by: Paul Eggleton 
---
 meta/classes/workdir_save.bbclass | 54 +++
 1 file changed, 54 insertions(+)
 create mode 100644 meta/classes/workdir_save.bbclass

diff --git a/meta/classes/workdir_save.bbclass 
b/meta/classes/workdir_save.bbclass
new file mode 100644
index 000..7007041
--- /dev/null
+++ b/meta/classes/workdir_save.bbclass
@@ -0,0 +1,54 @@
+# Save the work directory for a recipe when one of its tasks fails.
+# Useful in cases where the environment in which builds are run is
+# ephemeral or otherwise inaccessible for examination during
+# debugging.
+#
+# To enable, simply add the following to your configuration:
+#
+# INHERIT += "workdir_save"
+#
+# Notes:
+# * For this to work you also need corresponding logic in your build
+#   orchestration tool to pick up any files written out to WORKDIR_SAVE_DIR
+#   (with the other assumption being that no files are present there at
+#   the start of the build).
+# * Work directories can be quite large, so saving them can take some time
+#   and of course space.
+#
+# Copyright (c) 2020 Microsoft Corporation
+#
+# SPDX-License-Identifier: GPL-2.0-only
+#
+
+WORKDIR_SAVE_DIR ?= "${TMPDIR}/workdir_save"
+WORKDIR_SAVE_ENABLED ?= "1"
+
+addhandler workdir_save_handler
+workdir_save_handler[eventmask] = "bb.build.TaskFailed"
+
+python workdir_save_handler() {
+import datetime
+if d.getVar('WORKDIR_SAVE_ENABLED') != '1':
+return
+
+base_workdir = d.getVar('BASE_WORKDIR')
+workdir = d.getVar('WORKDIR')
+outdir = d.getVar('WORKDIR_SAVE_DIR')
+bb.utils.mkdirhier(outdir)
+pn = d.getVar('PN')
+tstamp = datetime.datetime.now().strftime("%Y%m%d-%H%M%S")
+tarfn = 'workdir_%s_%s.tar.gz' % (pn, tstamp)
+tarfp = os.path.join(outdir, tarfn)
+taskname = d.getVar('BB_CURRENTTASK')
+bb.plain('NOTE: Saving workdir for failed task %s.do_%s to %s' % (pn, 
taskname, tarfp))
+try:
+bb.process.run(['tar', 'czf', tarfp,
+os.path.relpath(workdir, base_workdir)], cwd=base_workdir)
+except bb.process.ExecutionError as e:
+# It is possible for other tasks to be writing to the workdir
+# while we are tarring it up, in which case tar will return 1,
+# but we don't care in this situation (tar returns 2 for other
+# errors so we we will see those)
+if e.exitcode != 1:
+bb.warn('workdir save error: %s' % str(e))
+}
-- 
1.8.3.1

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140428): 
https://lists.openembedded.org/g/openembedded-core/message/140428
Mute This Topic: https://lists.openembedded.org/mt/75382316/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


Re: [OE-core] license.manifest misses header-only libraries

2020-07-08 Thread Richard Purdie
On Wed, 2020-07-08 at 17:48 +0200, Christian Eggers wrote:
> According to [1], a license manifest is generated during image
> creation:
> 
> "The Yocto Project generates a license manifest during image creation
> that is located in ${DEPLOY_DIR}/licenses/image_name-datestamp to
> assist with any audits."
> 
> This manifest lists all packages installed on the target (either
> being installed
> directly via IMAGE_INSTALL or due to other packages RDEPENDS).
> 
> The manifest seems to miss header-only libraries (like tclap or big
> parts
> of boost), which were used during compilation (headers) but do not
> contain dynamic libraries required at runtime. I guess that the same
> may be true for libraries linked statically.
> 
> Setting RDEPENDS_${PN} += "tclap" in my own applications recipe
> seems to improve the situation as now the (empty) package tclap
> is included in my image and in the license.manifest. But this
> requires
> manual work and cannot do this for all recipes shipped by OE.
> Additionally this doesn't work for boost, as rdepending on boost
> will pull in ALL boost library packages.
> 
> Is there a reliable way to get the header-only/static libraries into
> the manifest file?

The image manifest is a list of the things actually shipping in the
image and their corresponding licenses. Most images don't ship
development headers so they'll not be included there.

You can certainly get a list of everything used during the build
instead. I'm not sure how you'd decide that a set of headers were used
or not, compared to say the cross toolchain binaries or a native tool
though so anything in between these two is harder.

There is some work I did a while back which traces all SPDX identifiers
referenced by debug symbols in the code to better audit license
information but the lack of SPDX headers in much of the code we use
makes that less useful right now.

http://git.yoctoproject.org/cgit.cgi/poky-contrib/log/?h=rpurdie/license-experiments-osls
(and a presentation/slides at OSLS 2019)

Cheers,

Richard

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140426): 
https://lists.openembedded.org/g/openembedded-core/message/140426
Mute This Topic: https://lists.openembedded.org/mt/75379155/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


Re: [OE-core] Patches are stuck in master-next

2020-07-08 Thread Adrian Bunk
On Wed, Jul 08, 2020 at 04:35:21PM +0100, Richard Purdie wrote:
> On Wed, 2020-07-08 at 17:07 +0200, Christian Eggers wrote:
> > From Richard I got no response to the question whether
> > potentially every package may be extended for nativesdk/native,
> > or these platforms a reserved for packages required for "building".
> 
> There needs to be a sensible use case for extending them. It doesn't
> come for free and increases parse time for each extension added.

My biggest worry is a different one:

Native is built by the host compiler, and Yocto stable series aim at
supporting hosts with future distributions. Something like "building
dunfell on hosts with gcc 11" is easier when there are fewer recipes
that have to be patched.

> Cheers,
> 
> Richard

cu
Adrian
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140425): 
https://lists.openembedded.org/g/openembedded-core/message/140425
Mute This Topic: https://lists.openembedded.org/mt/75371450/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


[OE-core] license.manifest misses header-only libraries

2020-07-08 Thread Christian Eggers
According to [1], a license manifest is generated during image creation:

"The Yocto Project generates a license manifest during image creation that is 
located in ${DEPLOY_DIR}/licenses/image_name-datestamp to assist with any 
audits."

This manifest lists all packages installed on the target (either being installed
directly via IMAGE_INSTALL or due to other packages RDEPENDS).

The manifest seems to miss header-only libraries (like tclap or big parts
of boost), which were used during compilation (headers) but do not
contain dynamic libraries required at runtime. I guess that the same
may be true for libraries linked statically.

Setting RDEPENDS_${PN} += "tclap" in my own applications recipe
seems to improve the situation as now the (empty) package tclap
is included in my image and in the license.manifest. But this requires
manual work and cannot do this for all recipes shipped by OE.
Additionally this doesn't work for boost, as rdepending on boost
will pull in ALL boost library packages.

Is there a reliable way to get the header-only/static libraries into
the manifest file?

regards
Christian

[1] 
https://www.yoctoproject.org/docs/3.1.1/dev-manual/dev-manual.html#maintaining-open-source-license-compliance-during-your-products-lifecycle



 
[http://assets.arri.com/media/sign/2020-04-03-E-mail-signature-Stellar2_V1.jpg] 


Get all the latest information from www.arri.com, 
Facebook, 
Twitter, Instagram 
and YouTube.

Arnold & Richter Cine Technik GmbH & Co. Betriebs KG
Sitz: München - Registergericht: Amtsgericht München - Handelsregisternummer: 
HRA 57918
Persönlich haftender Gesellschafter: Arnold & Richter Cine Technik GmbH
Sitz: München - Registergericht: Amtsgericht München - Handelsregisternummer: 
HRB 54477
Geschäftsführer: Dr. Michael Neuhäuser; Stephan Schenk; Walter Trauninger; 
Markus Zeiler
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140424): 
https://lists.openembedded.org/g/openembedded-core/message/140424
Mute This Topic: https://lists.openembedded.org/mt/75379155/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


Re: [OE-core] Patches are stuck in master-next

2020-07-08 Thread Richard Purdie
On Wed, 2020-07-08 at 17:07 +0200, Christian Eggers wrote:
> From Richard I got no response to the question whether
> potentially every package may be extended for nativesdk/native,
> or these platforms a reserved for packages required for "building".

There needs to be a sensible use case for extending them. It doesn't
come for free and increases parse time for each extension added.

Cheers,

Richard

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140423): 
https://lists.openembedded.org/g/openembedded-core/message/140423
Mute This Topic: https://lists.openembedded.org/mt/75371450/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


Re: [OE-core] Patches are stuck in master-next

2020-07-08 Thread Christian Eggers
Am Mittwoch, 8. Juli 2020, 16:20:03 CEST schrieb Adrian Bunk:
> I would rather ask why you aren't running automatic unit tests
> built for the target inside qemu.
>
> cu
> Adrian

This may be an option. Currently the platform (x86 or arm)
decides whether real peripheral routines or mock objects
will be used. Of course this can easily be changed. But
running the tests within a (slow) emulator brings not much
benefit compared to building and running the tests directly
on x86.

Instead of using NATIVE, also the NATIVESDK build could
be executed within qemu on the build machine... (without
qemu, nativesdk executables cannot be executed on the
build machine due to non existing loader in .interp section).

>From Richard I got no response to the question whether
potentially every package may be extended for nativesdk/native,
or these platforms a reserved for packages required for "building".

regards
Christian



 
[http://assets.arri.com/media/sign/2020-04-03-E-mail-signature-Stellar2_V1.jpg] 


Get all the latest information from www.arri.com, 
Facebook, 
Twitter, Instagram 
and YouTube.

Arnold & Richter Cine Technik GmbH & Co. Betriebs KG
Sitz: München - Registergericht: Amtsgericht München - Handelsregisternummer: 
HRA 57918
Persönlich haftender Gesellschafter: Arnold & Richter Cine Technik GmbH
Sitz: München - Registergericht: Amtsgericht München - Handelsregisternummer: 
HRB 54477
Geschäftsführer: Dr. Michael Neuhäuser; Stephan Schenk; Walter Trauninger; 
Markus Zeiler
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140422): 
https://lists.openembedded.org/g/openembedded-core/message/140422
Mute This Topic: https://lists.openembedded.org/mt/75371450/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


Re: [OE-core] Patches are stuck in master-next

2020-07-08 Thread Adrian Bunk
On Wed, Jul 08, 2020 at 11:40:30AM +0200, Christian Eggers wrote:
>...
> For NATIVE, I need the libs for running automatic unit tests on the
> build machine. One could probably ask whether unit tests should
> depend on libraries like libudev or libnm.
>...

I would rather ask why you aren't running automatic unit tests
built for the target inside qemu.

> regards
> Christian

cu
Adrian
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140421): 
https://lists.openembedded.org/g/openembedded-core/message/140421
Mute This Topic: https://lists.openembedded.org/mt/75371450/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


[OE-core] [PATCH] util-linux: Set license for library sub packages

2020-07-08 Thread Christian Eggers
- libblkid is exclusively licensed under LGPL-2.1+ (libblkid/COPYING)
- libfdisk is exclusively licensed under LGPL-2.1+ (libfdisk/COPYING)
- libmount is exclusively licensed under LGPL-2.1+ (libmount/COPYING)
- libsmartcols is exclusively licensed under LGPL-2.1+
(libsmartcols/COPYING)
- libuuid is exclusively licensed under BSD-3-Clause (libuuid/COPYING)

Signed-off-by: Christian Eggers 
---
 meta/recipes-core/util-linux/util-linux.inc | 10 +-
 1 file changed, 9 insertions(+), 1 deletion(-)

diff --git a/meta/recipes-core/util-linux/util-linux.inc 
b/meta/recipes-core/util-linux/util-linux.inc
index 532cceb935..06fbf7a229 100644
--- a/meta/recipes-core/util-linux/util-linux.inc
+++ b/meta/recipes-core/util-linux/util-linux.inc
@@ -7,6 +7,11 @@ disk partitioning, kernel message management, filesystem 
creation, and system lo
 SECTION = "base"
 
 LICENSE = "GPLv2+ & LGPLv2.1+ & BSD-3-Clause & BSD-4-Clause"
+LICENSE_${PN}-libblkid = "LGPLv2.1+"
+LICENSE_${PN}-libfdisk = "LGPLv2.1+"
+LICENSE_${PN}-libmount = "LGPLv2.1+"
+LICENSE_${PN}-libsmartcols = "LGPLv2.1+"
+LICENSE_${PN}-libuuid = "BSD-3-Clause"
 
 LIC_FILES_CHKSUM = 
"file://README.licensing;md5=0fd5c050c6187d2bf0a4492b7f4e33da \
 file://COPYING;md5=b234ee4d69f5fce4486a80fdaf4a4263 \
@@ -16,7 +21,10 @@ LIC_FILES_CHKSUM = 
"file://README.licensing;md5=0fd5c050c6187d2bf0a4492b7f4e33da
 
file://Documentation/licenses/COPYING.BSD-4-Clause-UC;md5=263860f8968d8bafa5392cab74285262
 \
 
file://libuuid/COPYING;md5=6d2cafc999feb2c2de84d4d24b23290c \
 
file://libmount/COPYING;md5=7c7e39fb7d70ffe5d693a643e29987c2 \
-
file://libblkid/COPYING;md5=693bcbbe16d3a4a4b37bc906bc01cc04"
+
file://libblkid/COPYING;md5=693bcbbe16d3a4a4b37bc906bc01cc04 \
+
file://libfdisk/COPYING;md5=693bcbbe16d3a4a4b37bc906bc01cc04 \
+
file://libsmartcols/COPYING;md5=693bcbbe16d3a4a4b37bc906bc01cc04 \
+"
 
 #gtk-doc is not enabled as it requires xmlto which requires util-linux
 inherit autotools gettext manpages pkgconfig systemd update-alternatives 
python3-dir bash-completion ptest
-- 
Christian Eggers
Embedded software developer

Arnold & Richter Cine Technik GmbH & Co. Betriebs KG
Sitz: Muenchen - Registergericht: Amtsgericht Muenchen - Handelsregisternummer: 
HRA 57918
Persoenlich haftender Gesellschafter: Arnold & Richter Cine Technik GmbH
Sitz: Muenchen - Registergericht: Amtsgericht Muenchen - Handelsregisternummer: 
HRB 54477
Geschaeftsfuehrer: Dr. Michael Neuhaeuser; Stephan Schenk; Walter Trauninger; 
Markus Zeiler

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140420): 
https://lists.openembedded.org/g/openembedded-core/message/140420
Mute This Topic: https://lists.openembedded.org/mt/75375643/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


Re: [OE-core] [PATCH 2/2] rootfs-post: add sanity check for ROOTFS_POSTCMD

2020-07-08 Thread Richard Purdie
On Wed, 2020-07-08 at 13:09 +0200, Konrad Weihmann wrote:
> It warns about trailing blanks before the delimiter, as otherwise the
> task can't be removed properly
> 
> Signed-off-by: Konrad Weihmann 
> ---
>  meta/classes/rootfs-postcommands.bbclass | 8 
>  1 file changed, 8 insertions(+)
> 
> diff --git a/meta/classes/rootfs-postcommands.bbclass 
> b/meta/classes/rootfs-postcommands.bbclass
> index 984730ebe8..e33715f016 100644
> --- a/meta/classes/rootfs-postcommands.bbclass
> +++ b/meta/classes/rootfs-postcommands.bbclass
> @@ -57,6 +57,14 @@ python () {
>  d.appendVar('ROOTFS_POSTPROCESS_COMMAND', 'rootfs_reproducible;')
>  }
>  
> +addhandler rootfs_postcmd_sanity_eventhandler
> +rootfs_postcmd_sanity_eventhandler[eventmask] = "bb.event.RecipeParsed"
> +python rootfs_postcmd_sanity_eventhandler() {
> +for x in (d.getVar("ROOTFS_POSTPROCESS_COMMAND") or "").split(";"):
> +if x.endswith(" "):
> +bb.warn("'%s' ends with a blank, making the task unremovable" % 
> x.strip())
> +}
> +
>  systemd_create_users () {
>   for conffile in ${IMAGE_ROOTFS}/usr/lib/sysusers.d/systemd.conf 
> ${IMAGE_ROOTFS}/usr/lib/sysusers.d/systemd-remote.conf; do
>   [ -e $conffile ] || continue

I think this belongs with other sanity tests in insane.bbclass. I'd
prefer not to have another event handler in the system just for this
(they're high overhead).

Cheers,

Richard

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140419): 
https://lists.openembedded.org/g/openembedded-core/message/140419
Mute This Topic: https://lists.openembedded.org/mt/75374081/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


[OE-core] [PATCH 2/2] rootfs-post: add sanity check for ROOTFS_POSTCMD

2020-07-08 Thread Konrad Weihmann
It warns about trailing blanks before the delimiter, as otherwise the
task can't be removed properly

Signed-off-by: Konrad Weihmann 
---
 meta/classes/rootfs-postcommands.bbclass | 8 
 1 file changed, 8 insertions(+)

diff --git a/meta/classes/rootfs-postcommands.bbclass 
b/meta/classes/rootfs-postcommands.bbclass
index 984730ebe8..e33715f016 100644
--- a/meta/classes/rootfs-postcommands.bbclass
+++ b/meta/classes/rootfs-postcommands.bbclass
@@ -57,6 +57,14 @@ python () {
 d.appendVar('ROOTFS_POSTPROCESS_COMMAND', 'rootfs_reproducible;')
 }
 
+addhandler rootfs_postcmd_sanity_eventhandler
+rootfs_postcmd_sanity_eventhandler[eventmask] = "bb.event.RecipeParsed"
+python rootfs_postcmd_sanity_eventhandler() {
+for x in (d.getVar("ROOTFS_POSTPROCESS_COMMAND") or "").split(";"):
+if x.endswith(" "):
+bb.warn("'%s' ends with a blank, making the task unremovable" % 
x.strip())
+}
+
 systemd_create_users () {
for conffile in ${IMAGE_ROOTFS}/usr/lib/sysusers.d/systemd.conf 
${IMAGE_ROOTFS}/usr/lib/sysusers.d/systemd-remote.conf; do
[ -e $conffile ] || continue
-- 
2.20.1

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140418): 
https://lists.openembedded.org/g/openembedded-core/message/140418
Mute This Topic: https://lists.openembedded.org/mt/75374081/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


[OE-core] [PATCH 1/2] rootfs-post: remove traling blanks from tasks

2020-07-08 Thread Konrad Weihmann
remove the traling blanks before the ;-delimiter, so one could use
"_remove" to avoid running tasks like 'rootfs_update_timestamp',
which are currently hardcoded and not bound to any
configurable feature flag

Signed-off-by: Konrad Weihmann 
---
 meta/classes/rootfs-postcommands.bbclass | 6 +++---
 meta/classes/rootfsdebugfiles.bbclass| 2 +-
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/meta/classes/rootfs-postcommands.bbclass 
b/meta/classes/rootfs-postcommands.bbclass
index c43b9a9823..984730ebe8 100644
--- a/meta/classes/rootfs-postcommands.bbclass
+++ b/meta/classes/rootfs-postcommands.bbclass
@@ -1,6 +1,6 @@
 
 # Zap the root password if debug-tweaks feature is not enabled
-ROOTFS_POSTPROCESS_COMMAND += '${@bb.utils.contains_any("IMAGE_FEATURES", [ 
'debug-tweaks', 'empty-root-password' ], "", "zap_empty_root_password ; ",d)}'
+ROOTFS_POSTPROCESS_COMMAND += '${@bb.utils.contains_any("IMAGE_FEATURES", [ 
'debug-tweaks', 'empty-root-password' ], "", "zap_empty_root_password; ",d)}'
 
 # Allow dropbear/openssh to accept logins from accounts with an empty password 
string if debug-tweaks or allow-empty-password is enabled
 ROOTFS_POSTPROCESS_COMMAND += '${@bb.utils.contains_any("IMAGE_FEATURES", [ 
'debug-tweaks', 'allow-empty-password' ], "ssh_allow_empty_password; ", "",d)}'
@@ -12,7 +12,7 @@ ROOTFS_POSTPROCESS_COMMAND += 
'${@bb.utils.contains_any("IMAGE_FEATURES", [ 'deb
 ROOTFS_POSTPROCESS_COMMAND += '${@bb.utils.contains_any("IMAGE_FEATURES", [ 
'debug-tweaks', 'post-install-logging' ], "postinst_enable_logging; ", "",d)}'
 
 # Create /etc/timestamp during image construction to give a reasonably sane 
default time setting
-ROOTFS_POSTPROCESS_COMMAND += "rootfs_update_timestamp ; "
+ROOTFS_POSTPROCESS_COMMAND += "rootfs_update_timestamp; "
 
 # Tweak the mount options for rootfs in /etc/fstab if read-only-rootfs is 
enabled
 ROOTFS_POSTPROCESS_COMMAND += '${@bb.utils.contains("IMAGE_FEATURES", 
"read-only-rootfs", "read_only_rootfs_hook; ", "",d)}'
@@ -26,7 +26,7 @@ ROOTFS_POSTPROCESS_COMMAND += 
'${@bb.utils.contains("IMAGE_FEATURES", "read-only
 APPEND_append = '${@bb.utils.contains("IMAGE_FEATURES", "read-only-rootfs", " 
ro", "", d)}'
 
 # Generates test data file with data store variables expanded in json format
-ROOTFS_POSTPROCESS_COMMAND += "write_image_test_data ; "
+ROOTFS_POSTPROCESS_COMMAND += "write_image_test_data; "
 
 # Write manifest
 IMAGE_MANIFEST = "${IMGDEPLOYDIR}/${IMAGE_NAME}${IMAGE_NAME_SUFFIX}.manifest"
diff --git a/meta/classes/rootfsdebugfiles.bbclass 
b/meta/classes/rootfsdebugfiles.bbclass
index e2ba4e3647..85c7ec7434 100644
--- a/meta/classes/rootfsdebugfiles.bbclass
+++ b/meta/classes/rootfsdebugfiles.bbclass
@@ -28,7 +28,7 @@
 ROOTFS_DEBUG_FILES ?= ""
 ROOTFS_DEBUG_FILES[doc] = "Lists additional files or directories to be 
installed with 'cp -a' in the format 'source1 target1;source2 target2;...'"
 
-ROOTFS_POSTPROCESS_COMMAND += "rootfs_debug_files ;"
+ROOTFS_POSTPROCESS_COMMAND += "rootfs_debug_files;"
 rootfs_debug_files () {
#!/bin/sh -e
echo "${ROOTFS_DEBUG_FILES}" | sed -e 's/;/\n/g' | while read source target 
mode; do
-- 
2.20.1

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140417): 
https://lists.openembedded.org/g/openembedded-core/message/140417
Mute This Topic: https://lists.openembedded.org/mt/75374080/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


[OE-core] [PATCH] avahi: Fix typo in recipe

2020-07-08 Thread Christian Eggers
According to the PACKAGES variable, LICENSE_avahi-client is misspelled.
Additionally, the libavahi-client package actually only includes
LGPLv2.1+ software (as opposed to the global LICENSE variable).


Signed-off-by: Christian Eggers 
---
 meta/recipes-connectivity/avahi/avahi_0.8.bb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/meta/recipes-connectivity/avahi/avahi_0.8.bb 
b/meta/recipes-connectivity/avahi/avahi_0.8.bb
index 35d0c3ea75..c8a3f876aa 100644
--- a/meta/recipes-connectivity/avahi/avahi_0.8.bb
+++ b/meta/recipes-connectivity/avahi/avahi_0.8.bb
@@ -108,7 +108,7 @@ LICENSE_libavahi-gobject = "LGPLv2.1+"
 LICENSE_avahi-daemon = "LGPLv2.1+"
 LICENSE_libavahi-common = "LGPLv2.1+"
 LICENSE_libavahi-core = "LGPLv2.1+"
-LICENSE_avahi-client = "LGPLv2.1+"
+LICENSE_libavahi-client = "LGPLv2.1+"
 LICENSE_avahi-dnsconfd = "LGPLv2.1+"
 LICENSE_libavahi-glib = "LGPLv2.1+"
 LICENSE_avahi-autoipd = "LGPLv2.1+"
-- 
Christian Eggers
Embedded software developer

Arnold & Richter Cine Technik GmbH & Co. Betriebs KG
Sitz: Muenchen - Registergericht: Amtsgericht Muenchen - Handelsregisternummer: 
HRA 57918
Persoenlich haftender Gesellschafter: Arnold & Richter Cine Technik GmbH
Sitz: Muenchen - Registergericht: Amtsgericht Muenchen - Handelsregisternummer: 
HRB 54477
Geschaeftsfuehrer: Dr. Michael Neuhaeuser; Stephan Schenk; Walter Trauninger; 
Markus Zeiler

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140416): 
https://lists.openembedded.org/g/openembedded-core/message/140416
Mute This Topic: https://lists.openembedded.org/mt/75373512/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


[oe-core][PATCH] linux-firmware: Correct the path of ibt firmware

2020-07-08 Thread jmiao1
The right ibt(intel bluetooth) firmware is under the folder of "intel".

Signed-off-by: Jun Miao 
---
 meta/recipes-kernel/linux-firmware/linux-firmware_20200619.bb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/meta/recipes-kernel/linux-firmware/linux-firmware_20200619.bb 
b/meta/recipes-kernel/linux-firmware/linux-firmware_20200619.bb
index 726055738f..ab8cafa9b3 100644
--- a/meta/recipes-kernel/linux-firmware/linux-firmware_20200619.bb
+++ b/meta/recipes-kernel/linux-firmware/linux-firmware_20200619.bb
@@ -817,7 +817,7 @@ FILES_${PN}-ibt-hw-37-8 = 
"${nonarch_base_libdir}/firmware/intel/ibt-hw-37.8*.bs
 FILES_${PN}-ibt-11-5= "${nonarch_base_libdir}/firmware/intel/ibt-11-5.sfi 
${nonarch_base_libdir}/firmware/intel/ibt-11-5.ddc"
 FILES_${PN}-ibt-12-16   = "${nonarch_base_libdir}/firmware/intel/ibt-12-16.sfi 
${nonarch_base_libdir}/firmware/intel/ibt-12-16.ddc"
 FILES_${PN}-ibt-17 = "${nonarch_base_libdir}/firmware/intel/ibt-17-*.sfi 
${nonarch_base_libdir}/firmware/intel/ibt-17-*.ddc"
-FILES_${PN}-ibt-misc= "${nonarch_base_libdir}/firmware/ibt-*"
+FILES_${PN}-ibt-misc= "${nonarch_base_libdir}/firmware/intel/ibt-*"
 
 RDEPENDS_${PN}-ibt-hw-37-7 = "${PN}-ibt-license"
 RDEPENDS_${PN}-ibt-hw-37.8 = "${PN}-ibt-license"
-- 
2.25.1

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140415): 
https://lists.openembedded.org/g/openembedded-core/message/140415
Mute This Topic: https://lists.openembedded.org/mt/75373221/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


Re: [OE-core] Patches are stuck in master-next

2020-07-08 Thread Richard Purdie
On Wed, 2020-07-08 at 11:40 +0200, Christian Eggers wrote:
> Am Mittwoch, 8. Juli 2020, 11:20:40 CEST schrieb Richard Purdie:
> > The issue is I still don't really like the eudev one in particular.
> > A
> > native eudev really doesn't make sense and I'm reluctant to
> > encourage
> > people to build such a thing. I suspect you can't convince
> > networkmanager-native to build without it (although I'm not
> > convinced
> > a native libnm is that useful either).
> 
> For NATIVESDK, I need the libs because I deploy a x86 version
> of our embedded application for our internal integration test team.
> Sure, I
> could built two cross SDKs (one for ARM, one for x86), but
> (mis?)using
> NATIVESDK for getting the x86 version of our applications works
> very fine for me.
> 
> For NATIVE, I need the libs for running automatic unit tests on the
> build machine. One could probably ask whether unit tests should
> depend on libraries like libudev or libnm.
> 
> Please let me know, which of the additions (NATIVE / NATIVESDK)
> are welcome. I'm only offering to share my work, I'm also fine
> keeping this in my private layer.

I don't mind taking the libnl change, I can see reasons that could make
sense. I think the eudev change is a little too specific to your use
case and isn't something that makes sense in OE-Core so I think I'd
prefer to not take that one.

If large numbers of people come forward saying they need/use it, we can
reconsider that but we're not seeing that at the moment.

Cheers,

Richard

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140414): 
https://lists.openembedded.org/g/openembedded-core/message/140414
Mute This Topic: https://lists.openembedded.org/mt/75371450/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


Re: [OE-core] Patches are stuck in master-next

2020-07-08 Thread Christian Eggers
Hi Richard,

Am Mittwoch, 8. Juli 2020, 11:20:40 CEST schrieb Richard Purdie:
> The issue is I still don't really like the eudev one in particular. A
> native eudev really doesn't make sense and I'm reluctant to encourage
> people to build such a thing. I suspect you can't convince
> networkmanager-native to build without it (although I'm not convinced
> a native libnm is that useful either).

For NATIVESDK, I need the libs because I deploy a x86 version
of our embedded application for our internal integration test team. Sure, I
could built two cross SDKs (one for ARM, one for x86), but (mis?)using
NATIVESDK for getting the x86 version of our applications works
very fine for me.

For NATIVE, I need the libs for running automatic unit tests on the
build machine. One could probably ask whether unit tests should
depend on libraries like libudev or libnm.

Please let me know, which of the additions (NATIVE / NATIVESDK)
are welcome. I'm only offering to share my work, I'm also fine
keeping this in my private layer.

regards
Christian




 
[http://assets.arri.com/media/sign/2020-04-03-E-mail-signature-Stellar2_V1.jpg] 


Get all the latest information from www.arri.com, 
Facebook, 
Twitter, Instagram 
and YouTube.

Arnold & Richter Cine Technik GmbH & Co. Betriebs KG
Sitz: München - Registergericht: Amtsgericht München - Handelsregisternummer: 
HRA 57918
Persönlich haftender Gesellschafter: Arnold & Richter Cine Technik GmbH
Sitz: München - Registergericht: Amtsgericht München - Handelsregisternummer: 
HRB 54477
Geschäftsführer: Dr. Michael Neuhäuser; Stephan Schenk; Walter Trauninger; 
Markus Zeiler
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140413): 
https://lists.openembedded.org/g/openembedded-core/message/140413
Mute This Topic: https://lists.openembedded.org/mt/75371450/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


Re: [OE-core] Patches are stuck in master-next

2020-07-08 Thread Richard Purdie
On Wed, 2020-07-08 at 08:20 +0200, Christian Eggers wrote:
> Two of my patches are in master-next since some time. Is there any
> reason why
> they don't appear in master?
> 
> https://patchwork.openembedded.org/series/24760/#
> https://patchwork.openembedded.org/series/24775/#
> 
> I would like to send further patches for meta-openembedded which
> depend on the above ones.

The issue is I still don't really like the eudev one in particular. A
native eudev really doesn't make sense and I'm reluctant to encourage
people to build such a thing. I suspect you can't convince
networkmanager-native to build without it (although I'm not convinced
a native libnm is that useful either).

Cheers,

Richard



-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140412): 
https://lists.openembedded.org/g/openembedded-core/message/140412
Mute This Topic: https://lists.openembedded.org/mt/75371450/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


Re: [OE-core] [meta-oe][PATCH 3/4] libgcrypt: made libgcrypt-lic license "GPLv2+ & LGPLv2.1+"

2020-07-08 Thread Richard Purdie
On Wed, 2020-07-08 at 10:19 +0200, Matthias Schoepfer wrote:
> thanks, that does help maybe a little. Personally, I find the license
> / compliance topic one of the most annoying things in embedded
> development *by far*. I also wonder, why nobody else has stumbled
> across this, since I guess it is quite common to rule out GPLv3,
> because most project  managers I have seen are very worried about
> this. Nobody (at least not our lawyers can) can say, how you can
> safely use GPLv3ed software. 
> Starts out with standard template library. It really is only
> headers. headers. 
> Are they subject to the linking exception? My favorite solution would
> be to open source everything. But my company does not like this very
> much...
> 
> Anyhow: There are 4 recipes affected. These are somewhat special, 
> because GPLv3 is only applicable on certain packages that are not 
> commonly installed on the target.
> 
> If I got you right, we should set:
> 
> LICENSE_${PN}-lic = "FSF-license-text"
> 
> If that is correct, I will happily prepare a patch set...

I've been looking at the license.bbclass code for other reasons and it
has a few issues. I suspect not many people are actually enabling the
separate license packages, I don't think its enabled anywhere in our
automated testing either.

I think we'll have to have some code which translates "XXX" into "XXX-
license-text" for the license of ${PN}-lic.

Something like:

def convert_to_license_texts(d):
licenses = d.getVar("LICENSE")
ret = []
for x in licenses.split():
if "|" in x or "&" in x:
ret.append(x)
else:
ret.append(x + "-license-text")
return ret.join(" ")

LICENSE_${PN}-lic = "${@convert_to_license_texts(d)}"

(admittedly completely untested)

Ideally we'd have some mapping to convert the GPL/LGPL entries to FSF-
license-text and simplify out any |/& expressions but for now the above
is probably good enough.

Cheers,

Richard

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140411): 
https://lists.openembedded.org/g/openembedded-core/message/140411
Mute This Topic: https://lists.openembedded.org/mt/74473621/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


[OE-core] [PATCH] dbus: upgrade 1.12.18 -> 1.12.20

2020-07-08 Thread Wang Mingyu
Signed-off-by: Wang Mingyu 
---
 .../dbus/{dbus-test_1.12.18.bb => dbus-test_1.12.20.bb}   | 0
 meta/recipes-core/dbus/dbus.inc   | 4 ++--
 meta/recipes-core/dbus/{dbus_1.12.18.bb => dbus_1.12.20.bb}   | 0
 3 files changed, 2 insertions(+), 2 deletions(-)
 rename meta/recipes-core/dbus/{dbus-test_1.12.18.bb => dbus-test_1.12.20.bb} 
(100%)
 rename meta/recipes-core/dbus/{dbus_1.12.18.bb => dbus_1.12.20.bb} (100%)

diff --git a/meta/recipes-core/dbus/dbus-test_1.12.18.bb 
b/meta/recipes-core/dbus/dbus-test_1.12.20.bb
similarity index 100%
rename from meta/recipes-core/dbus/dbus-test_1.12.18.bb
rename to meta/recipes-core/dbus/dbus-test_1.12.20.bb
diff --git a/meta/recipes-core/dbus/dbus.inc b/meta/recipes-core/dbus/dbus.inc
index 3bdb7ea4ff..dcbcc0a9d6 100644
--- a/meta/recipes-core/dbus/dbus.inc
+++ b/meta/recipes-core/dbus/dbus.inc
@@ -10,8 +10,8 @@ SRC_URI = 
"https://dbus.freedesktop.org/releases/dbus/dbus-${PV}.tar.gz \
file://clear-guid_from_server-if-send_negotiate_unix_f.patch \
 "
 
-SRC_URI[md5sum] = "4ca570c281be35d0b30ab83436712242"
-SRC_URI[sha256sum] = 
"64cf4d70840230e5e9bc784d153880775ab3db19d656ead8a0cb9c0ab5a95306"
+SRC_URI[md5sum] = "dfe8a71f412e0b53be26ed4fbfdc91c4"
+SRC_URI[sha256sum] = 
"f77620140ecb4cdc67f37fb444f8a6bea70b5b6461f12f1cbe2cec60fa7de5fe"
 
 EXTRA_OECONF = "--disable-xml-docs \
 --disable-doxygen-docs \
diff --git a/meta/recipes-core/dbus/dbus_1.12.18.bb 
b/meta/recipes-core/dbus/dbus_1.12.20.bb
similarity index 100%
rename from meta/recipes-core/dbus/dbus_1.12.18.bb
rename to meta/recipes-core/dbus/dbus_1.12.20.bb
-- 
2.17.1



-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140407): 
https://lists.openembedded.org/g/openembedded-core/message/140407
Mute This Topic: https://lists.openembedded.org/mt/75372632/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


[OE-core] [PATCH] fribidi: upgrade 1.0.9 -> 1.0.10

2020-07-08 Thread Wang Mingyu
Signed-off-by: Wang Mingyu 
---
 .../fribidi/{fribidi_1.0.9.bb => fribidi_1.0.10.bb}   | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)
 rename meta/recipes-support/fribidi/{fribidi_1.0.9.bb => fribidi_1.0.10.bb} 
(76%)

diff --git a/meta/recipes-support/fribidi/fribidi_1.0.9.bb 
b/meta/recipes-support/fribidi/fribidi_1.0.10.bb
similarity index 76%
rename from meta/recipes-support/fribidi/fribidi_1.0.9.bb
rename to meta/recipes-support/fribidi/fribidi_1.0.10.bb
index 21217aba5e..ba9e6f06d6 100644
--- a/meta/recipes-support/fribidi/fribidi_1.0.9.bb
+++ b/meta/recipes-support/fribidi/fribidi_1.0.10.bb
@@ -5,8 +5,8 @@ LIC_FILES_CHKSUM = 
"file://COPYING;md5=a916467b91076e631dd8edb7424769c7"
 
 SRC_URI = 
"https://github.com/${BPN}/${BPN}/releases/download/v${PV}/${BP}.tar.xz \
"
-SRC_URI[md5sum] = "1b767c259c3cd8e0c8496970f63c22dc"
-SRC_URI[sha256sum] = 
"c5e47ea9026fb60da1944da9888b4e0a18854a0e2410bbfe7ad90a054d36e0c7"
+SRC_URI[md5sum] = "97c87da9930e8e70fbfc8e2bcd031554"
+SRC_URI[sha256sum] = 
"7f1c687c7831499bcacae5e8675945a39bacbad16ecaa945e9454a32df653c01"
 
 UPSTREAM_CHECK_URI = "https://github.com/${BPN}/${BPN}/releases";
 
-- 
2.17.1



-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140408): 
https://lists.openembedded.org/g/openembedded-core/message/140408
Mute This Topic: https://lists.openembedded.org/mt/75372633/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


[OE-core] [PATCH] glib-2.0: upgrade 2.64.3 -> 2.64.4

2020-07-08 Thread Wang Mingyu
Signed-off-by: Wang Mingyu 
---
 .../glib-2.0/{glib-2.0_2.64.3.bb => glib-2.0_2.64.4.bb}   | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)
 rename meta/recipes-core/glib-2.0/{glib-2.0_2.64.3.bb => glib-2.0_2.64.4.bb} 
(93%)

diff --git a/meta/recipes-core/glib-2.0/glib-2.0_2.64.3.bb 
b/meta/recipes-core/glib-2.0/glib-2.0_2.64.4.bb
similarity index 93%
rename from meta/recipes-core/glib-2.0/glib-2.0_2.64.3.bb
rename to meta/recipes-core/glib-2.0/glib-2.0_2.64.4.bb
index 2e5f7a0e2a..e4c834caf2 100644
--- a/meta/recipes-core/glib-2.0/glib-2.0_2.64.3.bb
+++ b/meta/recipes-core/glib-2.0/glib-2.0_2.64.4.bb
@@ -20,8 +20,8 @@ SRC_URI = "${GNOME_MIRROR}/glib/${SHRT_VER}/glib-${PV}.tar.xz 
\
 
 SRC_URI_append_class-native = " file://relocate-modules.patch"
 
-SRC_URI[md5sum] = "ccc48e58545cac45f5b3df3b8aeaff13"
-SRC_URI[sha256sum] = 
"fe9cbc97925d14c804935f067a3ad77ef55c0bbe9befe68962318f5a767ceb22"
+SRC_URI[md5sum] = "0a4f67e9a9d729976e2f797e36fc1a57"
+SRC_URI[sha256sum] = 
"f7e0b325b272281f0462e0f7fff25a833820cac19911ff677251daf6d87bce50"
 
 # Find any meson cross files in FILESPATH that are relevant for the current
 # build (using siteinfo) and add them to EXTRA_OEMESON.
-- 
2.17.1



-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140409): 
https://lists.openembedded.org/g/openembedded-core/message/140409
Mute This Topic: https://lists.openembedded.org/mt/75372634/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


[OE-core] [PATCH] libvorbis: upgrade 1.3.6 -> 1.3.7

2020-07-08 Thread Wang Mingyu
CVE-2017-14160.patch
CVE-2018-10392.patch
removed since they are included in 1.3.7

-License-Update: Copyright year updated to 2020.

license text: URL of Xiph.Org Foundation changed to https://xiph.org/

Signed-off-by: Wang Mingyu 
---
 .../libvorbis/libvorbis/CVE-2017-14160.patch  | 34 ---
 .../libvorbis/libvorbis/CVE-2018-10392.patch  | 34 ---
 ...{libvorbis_1.3.6.bb => libvorbis_1.3.7.bb} | 10 +++---
 3 files changed, 4 insertions(+), 74 deletions(-)
 delete mode 100644 
meta/recipes-multimedia/libvorbis/libvorbis/CVE-2017-14160.patch
 delete mode 100644 
meta/recipes-multimedia/libvorbis/libvorbis/CVE-2018-10392.patch
 rename meta/recipes-multimedia/libvorbis/{libvorbis_1.3.6.bb => 
libvorbis_1.3.7.bb} (61%)

diff --git a/meta/recipes-multimedia/libvorbis/libvorbis/CVE-2017-14160.patch 
b/meta/recipes-multimedia/libvorbis/libvorbis/CVE-2017-14160.patch
deleted file mode 100644
index b7603c3b13..00
--- a/meta/recipes-multimedia/libvorbis/libvorbis/CVE-2017-14160.patch
+++ /dev/null
@@ -1,34 +0,0 @@
-From 018ca26dece618457dd13585cad52941193c4a25 Mon Sep 17 00:00:00 2001
-From: Thomas Daede 
-Date: Wed, 9 May 2018 14:56:59 -0700
-Subject: [PATCH] CVE-2017-14160: fix bounds check on very low sample rates.
-

-CVE: CVE-2017-14160 CVE-2018-10393
-
-Upstream-Status: Backport [gitlab.com/Xiph.Org/Vorbis/Commits/018ca26d...]
-
-Signed-off-by: Joe Slater 


- lib/psy.c |3 ++-
- 1 file changed, 2 insertions(+), 1 deletion(-)
-
-diff --git a/lib/psy.c b/lib/psy.c
-index 422c6f1..1310123 100644
 a/lib/psy.c
-+++ b/lib/psy.c
-@@ -602,8 +602,9 @@ static void bark_noise_hybridmp(int n,const long *b,
-   for (i = 0, x = 0.f;; i++, x += 1.f) {
- 
- lo = b[i] >> 16;
--if( lo>=0 ) break;
- hi = b[i] & 0x;
-+if( lo>=0 ) break;
-+if( hi>=n ) break;
- 
- tN = N[hi] + N[-lo];
- tX = X[hi] - X[-lo];
--- 
-1.7.9.5
-
diff --git a/meta/recipes-multimedia/libvorbis/libvorbis/CVE-2018-10392.patch 
b/meta/recipes-multimedia/libvorbis/libvorbis/CVE-2018-10392.patch
deleted file mode 100644
index b7936b4b4d..00
--- a/meta/recipes-multimedia/libvorbis/libvorbis/CVE-2018-10392.patch
+++ /dev/null
@@ -1,34 +0,0 @@
-From 112d3bd0aaacad51305e1464d4b381dabad0e88b Mon Sep 17 00:00:00 2001
-From: Thomas Daede 
-Date: Thu, 17 May 2018 16:19:19 -0700
-Subject: [PATCH] Sanity check number of channels in setup.
-
-Fixes #2335.
-

-CVE: CVE-2018-10392
-
-Upstream-Status: Backport [gitlab.com/Xiph.Org/Vorbis/Commits/112d3bd...]
-
-Signed-off-by: Joe Slater 

-
- lib/vorbisenc.c |1 +
- 1 file changed, 1 insertion(+)
-
-
-diff --git a/lib/vorbisenc.c b/lib/vorbisenc.c
-index 4fc7b62..64a51b5 100644
 a/lib/vorbisenc.c
-+++ b/lib/vorbisenc.c
-@@ -684,6 +684,7 @@ int vorbis_encode_setup_init(vorbis_info *vi){
-   highlevel_encode_setup *hi=&ci->hi;
- 
-   if(ci==NULL)return(OV_EINVAL);
-+  if(vi->channels<1||vi->channels>255)return(OV_EINVAL);
-   if(!hi->impulse_block_p)i0=1;
- 
-   /* too low/high an ATH floater is nonsensical, but doesn't break anything */
--- 
-1.7.9.5
-
diff --git a/meta/recipes-multimedia/libvorbis/libvorbis_1.3.6.bb 
b/meta/recipes-multimedia/libvorbis/libvorbis_1.3.7.bb
similarity index 61%
rename from meta/recipes-multimedia/libvorbis/libvorbis_1.3.6.bb
rename to meta/recipes-multimedia/libvorbis/libvorbis_1.3.7.bb
index 1a3cdc2269..c5c10348c6 100644
--- a/meta/recipes-multimedia/libvorbis/libvorbis_1.3.6.bb
+++ b/meta/recipes-multimedia/libvorbis/libvorbis_1.3.7.bb
@@ -6,16 +6,14 @@ HOMEPAGE = "http://www.vorbis.com/";
 BUGTRACKER = "https://trac.xiph.org";
 SECTION = "libs"
 LICENSE = "BSD-3-Clause"
-LIC_FILES_CHKSUM = "file://COPYING;md5=70c7063491d2d9f76a098d62ed5134f1 \
-
file://include/vorbis/vorbisenc.h;beginline=1;endline=11;md5=d1c1d138863d6315131193d4046d81cb"
+LIC_FILES_CHKSUM = "file://COPYING;md5=73d9c8942c60b846c3bad13cc6c2e520 \
+
file://include/vorbis/vorbisenc.h;beginline=1;endline=11;md5=c95a4ac2b4125f00a9acf61449ebb843"
 DEPENDS = "libogg"
 
 SRC_URI = "http://downloads.xiph.org/releases/vorbis/${BP}.tar.xz \
file://0001-configure-Check-for-clang.patch \
-   file://CVE-2018-10392.patch \
-   file://CVE-2017-14160.patch \
   "
-SRC_URI[md5sum] = "b7d1692f275c73e7833ed1cc2697cd65"
-SRC_URI[sha256sum] = 
"af00bb5a784e7c9e69f56823de4637c350643deedaf333d0fa86ecdba6fcb415"
+SRC_URI[md5sum] = "50902641d358135f06a8392e61c9ac77"
+SRC_URI[sha256sum] = 
"b33cc4934322bcbf6efcbacf49e3ca01aadbea4114ec9589d1b1e9d20f72954b"
 
 inherit autotools pkgconfig
-- 
2.17.1



-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140410): 
https://lists.openembedded.org/g/openembedded-core/message/140410
Mute This Topic: https://lists.openembedded.org/mt/75372635/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[ar

Re: [OE-core] [meta-oe][PATCH 3/4] libgcrypt: made libgcrypt-lic license "GPLv2+ & LGPLv2.1+"

2020-07-08 Thread Matthias Schoepfer via lists.openembedded.org

Hi Richard,

thanks, that does help maybe a little. Personally, I find the license / 
compliance topic one of the most annoying things in embedded development 
*by far*. I also wonder, why nobody else has stumbled across this, since 
I guess it is quite common to rule out GPLv3, because most project 
managers I have seen are very worried about this. Nobody (at least not 
our lawyers can) can say, how you can safely use GPLv3ed software. 
Starts out with standard template library. It really is only headers. 
Are they subject to the linking exception? My favorite solution would be 
to open source everything. But my company does not like this very much...


Anyhow: There are 4 recipes affected. These are somewhat special, 
because GPLv3 is only applicable on certain packages that are not 
commonly installed on the target.


If I got you right, we should set:

LICENSE_${PN}-lic = "FSF-license-text"

If that is correct, I will happily prepare a patch set...

Regards,

    Matthias

On 7/6/20 6:26 PM, Richard Purdie wrote:

I did eventually get a response from the people on the SPDX-legal
mailing list. There wasn't a 100% clear consensus but for Yocto
Project/OE's situation, I think the LICENSE for these packages needs to
be:

XXX-license-text

which for SPDX identifiers would be exported as:

LicenseRef-XXX-license-text

The idea here is to spell out that it is the license text. People can
then process that accordingly in output data from the build system but
its clear its different from the license itself. It avoids us making
any claims as to what this license actually is, for the FSF licences
its relatively clear, for others it may not be.

We could factor all of the *GPL licenses into "FSF-license-text" since
they're all common as far as I know, but that isn't easily automated so
is probably not worth doing.

Does that help move things forward?

Cheers,

Richard
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140406): 
https://lists.openembedded.org/g/openembedded-core/message/140406
Mute This Topic: https://lists.openembedded.org/mt/74473621/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


[OE-core] [PATCH] gtk-icon-cache.bbclass: add features_check

2020-07-08 Thread Changqing Li
From: Changqing Li 

'bitbake world -k' when DISTRO_FEATURES don't have x11 and wayland,
report errors:
Nothing PROVIDES 'gtk+3'
Nothing RPROVIDES 'blueman'

gtk+3 set ANY_OF_DISTRO_FEATURES, so add it here too
since we DEPENDS on it

Signed-off-by: Changqing Li 
---
 meta/classes/gtk-icon-cache.bbclass | 5 +
 1 file changed, 5 insertions(+)

diff --git a/meta/classes/gtk-icon-cache.bbclass 
b/meta/classes/gtk-icon-cache.bbclass
index dd394af27c..340a283851 100644
--- a/meta/classes/gtk-icon-cache.bbclass
+++ b/meta/classes/gtk-icon-cache.bbclass
@@ -1,5 +1,10 @@
 FILES_${PN} += "${datadir}/icons/hicolor"
 
+#gtk+3 reqiure GTK3DISTROFEATURES, DEPENDS on it make all the
+#recipes inherit this class require GTK3DISTROFEATURES
+inherit features_check
+ANY_OF_DISTRO_FEATURES = "${GTK3DISTROFEATURES}"
+
 DEPENDS +=" ${@['hicolor-icon-theme', '']['${BPN}' == 'hicolor-icon-theme']} \
 ${@['gdk-pixbuf', '']['${BPN}' == 'gdk-pixbuf']} \
 ${@['gtk+3', '']['${BPN}' == 'gtk+3']} \
-- 
2.26.2

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#140405): 
https://lists.openembedded.org/g/openembedded-core/message/140405
Mute This Topic: https://lists.openembedded.org/mt/75371910/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub  
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-