Re: [OE-core] [PATCH] openssl: upgrade from 1.1.1k to 1.1.1l

[Mikko Rapeli]

Hi,

On Tue, Aug 24, 2021 at 11:44:05PM -0400, Randy MacLeod wrote:
> Includes fixes for:
> 
> CVE: CVE-2021-3711
> CVE: CVE-2021-3712
> 
> as described by:
>https://www.openssl.org/news/secadv/20210824.txt
> 
> Ptest results on qemux86-64 with kvm:
>All tests successful.
>Files=158, Tests=2532, 137 wallclock secs \
>  ( 2.59 usr  0.33 sys + 104.71 cusr 44.19 csys = 151.82 CPU)
>Result: PASS
>DURATION: 137

I sent the same with CI test runs passing on x86_86 and aarch64 products
on dunfell. No problems seen with the update.

Tested-by: Mikko Rapeli 

-Mikko

> Signed-off-by: Randy MacLeod 
> ---
>  .../openssl/{openssl_1.1.1k.bb => openssl_1.1.1l.bb}| 2 +-
>  1 file changed, 1 insertion(+), 1 deletion(-)
>  rename meta/recipes-connectivity/openssl/{openssl_1.1.1k.bb => 
> openssl_1.1.1l.bb} (98%)
> 
> diff --git a/meta/recipes-connectivity/openssl/openssl_1.1.1k.bb 
> b/meta/recipes-connectivity/openssl/openssl_1.1.1l.bb
> similarity index 98%
> rename from meta/recipes-connectivity/openssl/openssl_1.1.1k.bb
> rename to meta/recipes-connectivity/openssl/openssl_1.1.1l.bb
> index 09afa27ac1..b241ba78bc 100644
> --- a/meta/recipes-connectivity/openssl/openssl_1.1.1k.bb
> +++ b/meta/recipes-connectivity/openssl/openssl_1.1.1l.bb
> @@ -28,7 +28,7 @@ SRC_URI:append:riscv32 = " \
> file://0004-Fixup-support-for-io_pgetevents_time64-syscall.patch \
> "
>  
> -SRC_URI[sha256sum] = 
> "892a0875b9872acd04a9fde79b1f943075d5ea162415de3047c327df33fbaee5"
> +SRC_URI[sha256sum] = 
> "0b7a3e5e59c34827fe0c3a74b7ec8baef302b98fa80088d7f9153aa16fa76bd1"
>  
>  inherit lib_package multilib_header multilib_script ptest
>  MULTILIB_SCRIPTS = "${PN}-bin:${bindir}/c_rehash"
> -- 
> 2.30.2
> 

> 
> 
> 

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155272): 
https://lists.openembedded.org/g/openembedded-core/message/155272
Mute This Topic: https://lists.openembedded.org/mt/85128043/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [dunfell][PATCH] openssl: update from 1.1.1k to 1.1.1l

[Mikko Rapeli]

Changelog shows only security fixes for CVE-2021-3711 and CVE-2021-3712:
https://www.openssl.org/news/cl111.txt

Signed-off-by: Mikko Rapeli 
---
 .../openssl/{openssl_1.1.1k.bb => openssl_1.1.1l.bb}| 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)
 rename meta/recipes-connectivity/openssl/{openssl_1.1.1k.bb => 
openssl_1.1.1l.bb} (98%)

Compile tested on master, tested in product CI system runs on x86_64 and
aarch64 on dunfell with all tests passing.

diff --git a/meta/recipes-connectivity/openssl/openssl_1.1.1k.bb 
b/meta/recipes-connectivity/openssl/openssl_1.1.1l.bb
similarity index 98%
rename from meta/recipes-connectivity/openssl/openssl_1.1.1k.bb
rename to meta/recipes-connectivity/openssl/openssl_1.1.1l.bb
index 5f281197c9..9412b19fa5 100644
--- a/meta/recipes-connectivity/openssl/openssl_1.1.1k.bb
+++ b/meta/recipes-connectivity/openssl/openssl_1.1.1l.bb
@@ -23,7 +23,7 @@ SRC_URI_append_class-nativesdk = " \
file://environment.d-openssl.sh \
"
 
-SRC_URI[sha256sum] = 
"892a0875b9872acd04a9fde79b1f943075d5ea162415de3047c327df33fbaee5"
+SRC_URI[sha256sum] = 
"0b7a3e5e59c34827fe0c3a74b7ec8baef302b98fa80088d7f9153aa16fa76bd1"
 
 inherit lib_package multilib_header multilib_script ptest
 MULTILIB_SCRIPTS = "${PN}-bin:${bindir}/c_rehash"
-- 
2.20.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155271): 
https://lists.openembedded.org/g/openembedded-core/message/155271
Mute This Topic: https://lists.openembedded.org/mt/85129025/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [PATCH] openssl: update from 1.1.1k to 1.1.1l

[Mikko Rapeli]

Changelog shows only security fixes for CVE-2021-3711 and CVE-2021-3712:
https://www.openssl.org/news/cl111.txt

Signed-off-by: Mikko Rapeli 
---
 .../openssl/{openssl_1.1.1k.bb => openssl_1.1.1l.bb}| 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)
 rename meta/recipes-connectivity/openssl/{openssl_1.1.1k.bb => 
openssl_1.1.1l.bb} (98%)

Compile tested on master, tested in product CI system runs on x86_64 and
aarch64 on dunfell with all tests passing.

diff --git a/meta/recipes-connectivity/openssl/openssl_1.1.1k.bb 
b/meta/recipes-connectivity/openssl/openssl_1.1.1l.bb
similarity index 98%
rename from meta/recipes-connectivity/openssl/openssl_1.1.1k.bb
rename to meta/recipes-connectivity/openssl/openssl_1.1.1l.bb
index 09afa27ac1..b241ba78bc 100644
--- a/meta/recipes-connectivity/openssl/openssl_1.1.1k.bb
+++ b/meta/recipes-connectivity/openssl/openssl_1.1.1l.bb
@@ -28,7 +28,7 @@ SRC_URI:append:riscv32 = " \
file://0004-Fixup-support-for-io_pgetevents_time64-syscall.patch \
"
 
-SRC_URI[sha256sum] = 
"892a0875b9872acd04a9fde79b1f943075d5ea162415de3047c327df33fbaee5"
+SRC_URI[sha256sum] = 
"0b7a3e5e59c34827fe0c3a74b7ec8baef302b98fa80088d7f9153aa16fa76bd1"
 
 inherit lib_package multilib_header multilib_script ptest
 MULTILIB_SCRIPTS = "${PN}-bin:${bindir}/c_rehash"
-- 
2.20.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155270): 
https://lists.openembedded.org/g/openembedded-core/message/155270
Mute This Topic: https://lists.openembedded.org/mt/85129011/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [meta][dunfell][PATCH v3] rpm: Add fix for CVE-2021-20266

[Ranjitsinh Rathod]

From: Ranjitsinh Rathod 

Adding fix for CVE-2021-20266
Upstream-Status: Backport 
[https://github.com/rpm-software-management/rpm/pull/1587/commits/9646711891df851dfbf7ef54cc171574a0914b15]

Note: Hunk#2 and Hunk#3 refreshed to apply patch and match value of
dl_max variable to make it with current version
All Hunks are refreshed to solve patch-fuzz

Signed-off-by: Ranjitsinh Rathod 
---
 .../rpm/files/CVE-2021-20266.patch| 109 ++
 meta/recipes-devtools/rpm/rpm_4.14.2.1.bb |   1 +
 2 files changed, 110 insertions(+)
 create mode 100644 meta/recipes-devtools/rpm/files/CVE-2021-20266.patch

diff --git a/meta/recipes-devtools/rpm/files/CVE-2021-20266.patch 
b/meta/recipes-devtools/rpm/files/CVE-2021-20266.patch
new file mode 100644
index 00..f2fc47e321
--- /dev/null
+++ b/meta/recipes-devtools/rpm/files/CVE-2021-20266.patch
@@ -0,0 +1,109 @@
+From ebbf0f0133c498d229e94ecf2ed0b41d6e6a142a Mon Sep 17 00:00:00 2001
+From: Demi Marie Obenour 
+Date: Mon, 8 Feb 2021 16:05:01 -0500
+Subject: [PATCH] hdrblobInit() needs bounds checks too
+
+Users can pass untrusted data to hdrblobInit() and it must be robust
+against this.
+
+Backported from commit 8f4b3c3cab8922a2022b9e47c71f1ecf906077ef
+
+Upstream-Status: Backport 
[https://github.com/rpm-software-management/rpm/pull/1587/commits/9646711891df851dfbf7ef54cc171574a0914b15]
+CVE: CVE-2021-20266
+Signed-off-by: Ranjitsinh Rathod 
+
+---
+ lib/header.c | 48 +++-
+ 1 file changed, 31 insertions(+), 17 deletions(-)
+
+diff --git a/lib/header.c b/lib/header.c
+index 5b09f8352..ad5b6dc57 100644
+--- a/lib/header.c
 b/lib/header.c
+@@ -11,6 +11,7 @@
+ #include "system.h"
+ #include 
+ #include 
++#include 
+ #include 
+ #include 
+ #include "lib/header_internal.h"
+@@ -1890,6 +1891,25 @@ hdrblob hdrblobFree(hdrblob blob)
+ return NULL;
+ }
+ 
++static rpmRC hdrblobVerifyLengths(rpmTagVal regionTag, uint32_t il, uint32_t 
dl,
++char **emsg) {
++uint32_t il_max = HEADER_TAGS_MAX;
++uint32_t dl_max = HEADER_DATA_MAX;
++if (regionTag == RPMTAG_HEADERSIGNATURES) {
++  il_max = 32;
++  dl_max = 8192;
++}
++if (hdrchkRange(il_max, il)) {
++  rasprintf(emsg, _("hdr tags: BAD, no. of tags(%" PRIu32 ") out of 
range"), il);
++  return RPMRC_FAIL;
++}
++if (hdrchkRange(dl_max, dl)) {
++  rasprintf(emsg, _("hdr data: BAD, no. of bytes(%" PRIu32 ") out of 
range"), dl);
++  return RPMRC_FAIL;
++}
++return RPMRC_OK;
++}
++
+ rpmRC hdrblobRead(FD_t fd, int magic, int exact_size, rpmTagVal regionTag, 
hdrblob blob, char **emsg)
+ {
+ int32_t block[4];
+@@ -1902,13 +1922,6 @@ rpmRC hdrblobRead(FD_t fd, int magic, int exact_size, 
rpmTagVal regionTag, hdrbl
+ size_t nb;
+ rpmRC rc = RPMRC_FAIL;/* assume failure */
+ int xx;
+-int32_t il_max = HEADER_TAGS_MAX;
+-int32_t dl_max = HEADER_DATA_MAX;
+-
+-if (regionTag == RPMTAG_HEADERSIGNATURES) {
+-  il_max = 32;
+-  dl_max = 8192;
+-}
+ 
+ memset(block, 0, sizeof(block));
+ if ((xx = Freadall(fd, bs, blen)) != blen) {
+@@ -1921,15 +1934,9 @@ rpmRC hdrblobRead(FD_t fd, int magic, int exact_size, 
rpmTagVal regionTag, hdrbl
+   goto exit;
+ }
+ il = ntohl(block[2]);
+-if (hdrchkRange(il_max, il)) {
+-  rasprintf(emsg, _("hdr tags: BAD, no. of tags(%d) out of range"), il);
+-  goto exit;
+-}
+ dl = ntohl(block[3]);
+-if (hdrchkRange(dl_max, dl)) {
+-  rasprintf(emsg, _("hdr data: BAD, no. of bytes(%d) out of range"), dl);
++if (hdrblobVerifyLengths(regionTag, il, dl, emsg))
+   goto exit;
+-}
+ 
+ nb = (il * sizeof(struct entryInfo_s)) + dl;
+ uc = sizeof(il) + sizeof(dl) + nb;
+@@ -1973,11 +1980,18 @@ rpmRC hdrblobInit(const void *uh, size_t uc,
+   struct hdrblob_s *blob, char **emsg)
+ {
+ rpmRC rc = RPMRC_FAIL;
+-
+ memset(blob, 0, sizeof(*blob));
++if (uc && uc < 8) {
++  rasprintf(emsg, _("hdr length: BAD"));
++  goto exit;
++}
++
+ blob->ei = (int32_t *) uh; /* discards const */
+-blob->il = ntohl(blob->ei[0]);
+-blob->dl = ntohl(blob->ei[1]);
++blob->il = ntohl((uint32_t)(blob->ei[0]));
++blob->dl = ntohl((uint32_t)(blob->ei[1]));
++if (hdrblobVerifyLengths(regionTag, blob->il, blob->dl, emsg) != RPMRC_OK)
++  goto exit;
++
+ blob->pe = (entryInfo) &(blob->ei[2]);
+ blob->pvlen = sizeof(blob->il) + sizeof(blob->dl) +
+ (blob->il * sizeof(*blob->pe)) + blob->dl;
diff --git a/meta/recipes-devtools/rpm/rpm_4.14.2.1.bb 
b/meta/recipes-devtools/rpm/rpm_4.14.2.1.bb
index 018b2f8700..c93654aa8f 100644
--- a/meta/recipes-devtools/rpm/rpm_4.14.2.1.bb
+++ b/meta/recipes-devtools/rpm/rpm_4.14.2.1.bb
@@ -45,6 +45,7 @@ SRC_URI = 
"git://github.com/rpm-software-management/rpm;branch=rpm-4.14.x \

file://0001-Rip-out-partial-support-for-unused-MD2-and-RIPEM

Re: [OE-core] usermod in EXTRA_USERS_PARAMS is broken in master

[Zoltan Boszormenyi via lists.openembedded.org]

2021. 08. 24. 23:21 keltezéssel, Peter Kjellerstedt írta:

-Original Message-
From: openembedded-core@lists.openembedded.org  On Behalf Of Zoltan Boszormenyi via
lists.openembedded.org
Sent: den 24 augusti 2021 16:22
To: openembedded-core@lists.openembedded.org
Subject: [OE-core] usermod in EXTRA_USERS_PARAMS is broken in master

Hi,

I tried to port my distro layer to Honister and
attempted to build an OS image.

I have this in the image recipe:

EXTRA_USERS_PARAMS += "usermod -P mypassword root; usermod -P mypassword2 
myuser;"


The 0002-Allow-for-setting-password-in-clear-text.patch patch has been dropped
from shadow with the update to 4.9 (see commit 759df739). It previously renamed
the -P option to -A and added an insecure -P  option.

Replace the use of the -P  option with -p 
and you should be good to go, also with Hardknott.


Thank you.





and the error I got was:

NOTE: my-test-image: Performing usermod with [-R
/data/yocto/tmp-sicom-glibc/work/genericx86_64-oe-linux/my-test-image/1.0-
r0/rootfs -P
mypassword root]
usermod: prefix must be an absolute path
ERROR: my-test-image: usermod command did not succeed.
WARNING:
/data/yocto/tmp-sicom-glibc/work/genericx86_64-oe-linux/my-test-image/1.0-
r0/temp/run.set_user_group.2583229:260
exit 1 from 'exit 1'

EXTRA_USERS_PARAMS has userdel and useradd commands
before the last two usermod, all of which succeed.

I got the same error on both Fedora 33 and Fedora 34 hosts.

It works with Hardknott.

Best regards,
Zoltán Böszörményi


//Peter




-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155268): 
https://lists.openembedded.org/g/openembedded-core/message/155268
Mute This Topic: https://lists.openembedded.org/mt/85111613/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [PATCH] openssl: upgrade from 1.1.1k to 1.1.1l

[Randy MacLeod]

Includes fixes for:

CVE: CVE-2021-3711
CVE: CVE-2021-3712

as described by:
   https://www.openssl.org/news/secadv/20210824.txt

Ptest results on qemux86-64 with kvm:
   All tests successful.
   Files=158, Tests=2532, 137 wallclock secs \
 ( 2.59 usr  0.33 sys + 104.71 cusr 44.19 csys = 151.82 CPU)
   Result: PASS
   DURATION: 137

Signed-off-by: Randy MacLeod 
---
 .../openssl/{openssl_1.1.1k.bb => openssl_1.1.1l.bb}| 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)
 rename meta/recipes-connectivity/openssl/{openssl_1.1.1k.bb => 
openssl_1.1.1l.bb} (98%)

diff --git a/meta/recipes-connectivity/openssl/openssl_1.1.1k.bb 
b/meta/recipes-connectivity/openssl/openssl_1.1.1l.bb
similarity index 98%
rename from meta/recipes-connectivity/openssl/openssl_1.1.1k.bb
rename to meta/recipes-connectivity/openssl/openssl_1.1.1l.bb
index 09afa27ac1..b241ba78bc 100644
--- a/meta/recipes-connectivity/openssl/openssl_1.1.1k.bb
+++ b/meta/recipes-connectivity/openssl/openssl_1.1.1l.bb
@@ -28,7 +28,7 @@ SRC_URI:append:riscv32 = " \
file://0004-Fixup-support-for-io_pgetevents_time64-syscall.patch \
"
 
-SRC_URI[sha256sum] = 
"892a0875b9872acd04a9fde79b1f943075d5ea162415de3047c327df33fbaee5"
+SRC_URI[sha256sum] = 
"0b7a3e5e59c34827fe0c3a74b7ec8baef302b98fa80088d7f9153aa16fa76bd1"
 
 inherit lib_package multilib_header multilib_script ptest
 MULTILIB_SCRIPTS = "${PN}-bin:${bindir}/c_rehash"
-- 
2.30.2


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155267): 
https://lists.openembedded.org/g/openembedded-core/message/155267
Mute This Topic: https://lists.openembedded.org/mt/85128043/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

Re: [OE-core] [PATCH] bitbake.conf: update way of setting XZ_MEMLIMIT

[Andre McCurdy]

On Tue, Aug 24, 2021 at 7:15 AM Richard Purdie
 wrote:
>
> On Tue, 2021-08-24 at 17:40 +0800, Changqing Li wrote:
> > From: Changqing Li 
> >
> > Update way of setting XZ_MEMLIMIT, considering scenario that
> > running bitbake in container, to avoid OOM Killer of xz.
> >
> > For example:
> > Container has memory limit of 30G, and host memory is 300G.  'xz
> > --memlimit=50% ...' will get host memory, so the limit for xz is 150G.
> > And because of the container memory limit is 30G, xz can use nearly up
> > to 30G memory, which may cause oom kill of xz.
> >
> > Signed-off-by: Changqing Li 
> > ---
> >  meta/conf/bitbake.conf |  3 ++-
> >  meta/lib/oe/utils.py   | 12 
> >  2 files changed, 14 insertions(+), 1 deletion(-)
> >
> > diff --git a/meta/conf/bitbake.conf b/meta/conf/bitbake.conf
> > index f6fb2aa698..2b36e083ca 100644
> > --- a/meta/conf/bitbake.conf
> > +++ b/meta/conf/bitbake.conf
> > @@ -809,7 +809,8 @@ BB_NUMBER_THREADS ?= "${@oe.utils.cpu_count()}"
> >  PARALLEL_MAKE ?= "-j ${@oe.utils.cpu_count()}"
> >
> >  # Default parallelism and resource usage for xz
> > -XZ_MEMLIMIT ?= "50%"
> > +CONTAINER_MEM_LIMIT = "${@oe.utils.container_mem_limit()}"
> > +XZ_MEMLIMIT ?= "${@ '%d' % (int(d.getVar('CONTAINER_MEM_LIMIT'))/2) if 
> > d.getVar('CONTAINER_MEM_LIMIT') != '0' else '50%'}"
> >  XZ_THREADS ?= "${@oe.utils.cpu_count(at_least=2)}"
> >  XZ_DEFAULTS ?= "--memlimit=${XZ_MEMLIMIT} --threads=${XZ_THREADS}"
> >  XZ_DEFAULTS[vardepsexclude] += "XZ_MEMLIMIT XZ_THREADS"
> > diff --git a/meta/lib/oe/utils.py b/meta/lib/oe/utils.py
> > index a84039f585..581072ac0d 100644
> > --- a/meta/lib/oe/utils.py
> > +++ b/meta/lib/oe/utils.py
> > @@ -252,6 +252,18 @@ def cpu_count(at_least=1):
> >  cpus = len(os.sched_getaffinity(0))
> >  return max(cpus, at_least)
> >
> > +def container_mem_limit():
> > +limit_in_bytes = '0'
> > +proc_sched = '/proc/1/sched'
> > +if os.path.exists(proc_sched):
> > +with open(proc_sched, 'r') as fp:
> > +initinfo = fp.readline().strip()
> > +cgroup_limit_in_bytes = 
> > '/sys/fs/cgroup/memory/memory.limit_in_bytes'
> > +if initinfo.split(' ')[0] not in ('systemd', 'init',) and 
> > os.path.exists(cgroup_limit_in_bytes):
> > +with open(cgroup_limit_in_bytes) as fpc:
> > +limit_in_bytes=fpc.readline().strip()
> > +return limit_in_bytes
> > +
>
> Whilst I understand the idea here, this is an awful lot of hardcoded values 
> and
> "magic". I'm not sure we want all bitbake processes to be making these kinds 
> of
> queries/decisions every time the config is parsed...

I'm sure this was discussed before but I forget the answer... how much
compression / performance is lost by setting the XZ memory limit to a
fixed value which is reasonable for all systems (e.g. 1GB? 256MB *
XZ_THREADS?).

As well as making the code simpler should also make builds more
reproducible by not depending on some detail which is specific to the
host (ie total memory size).

> Adding the function to oe/utils may be ok but I'm not keen on making it the
> default.
>
> Cheers,
>
> Richard
>
>
>
>
> 
>

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155266): 
https://lists.openembedded.org/g/openembedded-core/message/155266
Mute This Topic: https://lists.openembedded.org/mt/85107112/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

Re: [OE-core] usermod in EXTRA_USERS_PARAMS is broken in master

[Peter Kjellerstedt]

> -Original Message-
> From: openembedded-core@lists.openembedded.org  c...@lists.openembedded.org> On Behalf Of Zoltan Boszormenyi via
> lists.openembedded.org
> Sent: den 24 augusti 2021 16:22
> To: openembedded-core@lists.openembedded.org
> Subject: [OE-core] usermod in EXTRA_USERS_PARAMS is broken in master
> 
> Hi,
> 
> I tried to port my distro layer to Honister and
> attempted to build an OS image.
> 
> I have this in the image recipe:
> 
> EXTRA_USERS_PARAMS += "usermod -P mypassword root; usermod -P mypassword2 
> myuser;"

The 0002-Allow-for-setting-password-in-clear-text.patch patch has been dropped 
from shadow with the update to 4.9 (see commit 759df739). It previously renamed 
the -P option to -A and added an insecure -P  option.

Replace the use of the -P  option with -p  
and you should be good to go, also with Hardknott.

> 
> and the error I got was:
> 
> NOTE: my-test-image: Performing usermod with [-R
> /data/yocto/tmp-sicom-glibc/work/genericx86_64-oe-linux/my-test-image/1.0-
> r0/rootfs -P
> mypassword root]
> usermod: prefix must be an absolute path
> ERROR: my-test-image: usermod command did not succeed.
> WARNING:
> /data/yocto/tmp-sicom-glibc/work/genericx86_64-oe-linux/my-test-image/1.0-
> r0/temp/run.set_user_group.2583229:260
> exit 1 from 'exit 1'
> 
> EXTRA_USERS_PARAMS has userdel and useradd commands
> before the last two usermod, all of which succeed.
> 
> I got the same error on both Fedora 33 and Fedora 34 hosts.
> 
> It works with Hardknott.
> 
> Best regards,
> Zoltán Böszörményi

//Peter


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155265): 
https://lists.openembedded.org/g/openembedded-core/message/155265
Mute This Topic: https://lists.openembedded.org/mt/85111613/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [PATCH] pseudo: Fix to work with glibc 2.34 systems

[Richard Purdie]

The merge of libdl into libc in glibc 2.34 causes problems for pseudo. Add a fix
that works around this issue.

Signed-off-by: Richard Purdie 
---
 .../pseudo/files/build-oldlibc| 20 
 .../pseudo/files/older-glibc-symbols.patch| 49 +++
 meta/recipes-devtools/pseudo/pseudo_git.bb|  4 ++
 3 files changed, 73 insertions(+)
 create mode 100755 meta/recipes-devtools/pseudo/files/build-oldlibc
 create mode 100644 meta/recipes-devtools/pseudo/files/older-glibc-symbols.patch

diff --git a/meta/recipes-devtools/pseudo/files/build-oldlibc 
b/meta/recipes-devtools/pseudo/files/build-oldlibc
new file mode 100755
index 000..85c438de4e0
--- /dev/null
+++ b/meta/recipes-devtools/pseudo/files/build-oldlibc
@@ -0,0 +1,20 @@
+#!/bin/sh
+#
+# Script to re-generate pseudo-prebuilt-2.33.tar.xz
+#
+# Copyright (C) 2021 Richard Purdie
+#
+# SPDX-License-Identifier: GPL-2.0-only
+#
+
+for i in x86_64 aarch64 i686; do
+if [ ! -e $i-nativesdk-libc.tar.xz ]; then
+wget 
http://downloads.yoctoproject.org/releases/uninative/3.2/$i-nativesdk-libc.tar.xz
+fi
+tar -xf $i-nativesdk-libc.tar.xz --wildcards \*/lib/libpthread\* 
\*/lib/libdl\*
+cd $i-linux/lib
+ln -s libdl.so.2 libdl.so
+ln -s libpthread.so.0 libpthread.so
+cd ../..
+done
+tar -cJf pseudo-prebuilt-2.33.tar.xz *-linux
\ No newline at end of file
diff --git a/meta/recipes-devtools/pseudo/files/older-glibc-symbols.patch 
b/meta/recipes-devtools/pseudo/files/older-glibc-symbols.patch
new file mode 100644
index 000..1552c69b525
--- /dev/null
+++ b/meta/recipes-devtools/pseudo/files/older-glibc-symbols.patch
@@ -0,0 +1,49 @@
+If we link against a newer glibc 2.34 and then try and our LD_PRELOAD is run 
against a
+binary on a host with an older libc, we see symbol errors since in glibc 2.34, 
pthread 
+and dl are merged into libc itself.
+
+We need to use the older form of linking so use glibc binaries from an older 
release
+to force this. We only use minimal symbols from these anyway.
+
+pthread_atfork is problematic, particularly on arm so use the internal glibc 
routine
+it maps too. This was always present in the main libc from 2.3.2 onwards.
+
+Yes this is horrible. Better solutions welcome.
+
+There is more info in the bug: [YOCTO #14521]
+
+Upstream-Status: Inappropriate [this patch is native only]
+Signed-off-by: Richard Purdie 
+
+Index: git/Makefile.in
+===
+--- git.orig/Makefile.in
 git/Makefile.in
+@@ -122,7 +122,7 @@ libpseudo: $(LIBPSEUDO)
+ $(LIBPSEUDO): $(WRAPOBJS) pseudo_client.o pseudo_ipc.o $(SHOBJS) | $(LIB)
+   $(CC) $(CFLAGS) $(CFLAGS_PSEUDO) -shared -o $(LIBPSEUDO) \
+   pseudo_client.o pseudo_ipc.o \
+-  $(WRAPOBJS) $(SHOBJS) $(LDFLAGS) $(CLIENT_LDFLAGS)
++  $(WRAPOBJS) $(SHOBJS) $(LDFLAGS) -Lprebuilt/$(shell uname 
-m)-linux/lib/ $(CLIENT_LDFLAGS)
+ 
+ # *everything* now relies on stuff that's generated in the
+ # wrapper process.
+Index: git/pseudo_wrappers.c
+===
+--- git.orig/pseudo_wrappers.c
 git/pseudo_wrappers.c
+@@ -100,10 +100,13 @@ static void libpseudo_atfork_child(void)
+   pseudo_mutex_holder = 0;
+ }
+ 
++extern void *__dso_handle;
++extern int __register_atfork (void (*) (void), void (*) (void), void (*) 
(void), void *);
++
+ static void
+ _libpseudo_init(void) {
+   if (!_libpseudo_initted)
+-  pthread_atfork(NULL, NULL, libpseudo_atfork_child);
++  __register_atfork (NULL, NULL, libpseudo_atfork_child, 
&__dso_handle == NULL ? NULL : __dso_handle);
+ 
+   pseudo_getlock();
+   pseudo_antimagic();
diff --git a/meta/recipes-devtools/pseudo/pseudo_git.bb 
b/meta/recipes-devtools/pseudo/pseudo_git.bb
index dacaef1a66b..79b7123e389 100644
--- a/meta/recipes-devtools/pseudo/pseudo_git.bb
+++ b/meta/recipes-devtools/pseudo/pseudo_git.bb
@@ -5,6 +5,10 @@ SRC_URI = "git://git.yoctoproject.org/pseudo;branch=oe-core \
file://fallback-passwd \
file://fallback-group \
"
+SRC_URI:append:class-native = " \
+
http://downloads.yoctoproject.org/mirror/sources/pseudo-prebuilt-2.33.tar.xz;subdir=git/prebuilt;name=prebuilt
 \
+file://older-glibc-symbols.patch"
+SRC_URI[prebuilt.sha256sum] = 
"ed9f456856e9d86359f169f46a70ad7be4190d6040282b84c8d97b99072485aa"
 
 SRCREV = "b988b0a6b8afd8d459bc9a2528e834f63a3d59b2"
 S = "${WORKDIR}/git"
-- 
2.32.0


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155264): 
https://lists.openembedded.org/g/openembedded-core/message/155264
Mute This Topic: https://lists.openembedded.org/mt/85120797/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [PATCH] ltp: backport ioctl_ns05 fix from upstream

[Paul Gortmaker]

This false positive keeps showing up in our testing but the fix isn't
yet a part of a tagged release, and it is probably too late for doing
an uprev for the fall release anyway.

Signed-off-by: Paul Gortmaker 

diff --git 
a/meta/recipes-extended/ltp/ltp/0001-syscalls-ioctl_ns05.c-ioctl_ns06.c-Fix-too-small-buf.patch
 
b/meta/recipes-extended/ltp/ltp/0001-syscalls-ioctl_ns05.c-ioctl_ns06.c-Fix-too-small-buf.patch
new file mode 100644
index ..08b88a38f3ac
--- /dev/null
+++ 
b/meta/recipes-extended/ltp/ltp/0001-syscalls-ioctl_ns05.c-ioctl_ns06.c-Fix-too-small-buf.patch
@@ -0,0 +1,59 @@
+From af2b6f5ee6b171078b18246dd73f71cf6e350859 Mon Sep 17 00:00:00 2001
+From: Marius Hillenbrand 
+Date: Mon, 19 Jul 2021 13:58:35 +0800
+Subject: [PATCH] syscalls/ioctl_ns05.c, ioctl_ns06.c: Fix too small buffer for
+ path
+
+commit af2b6f5ee6b171078b18246dd73f71cf6e350859 upstream.
+
+Resize the buffer used for paths into /proc/ to grant enough space
+for long PIDs. While at it, replace sprintf with snprintf to avoid
+buffer overflows if we ever ran out of space again.
+
+Fixes: #847
+Signed-off-by: Marius Hillenbrand 
+Reviewed-by: Yang Xu 
+Upstream-Status: Backport
+Signed-off-by: Paul Gortmaker 
+
+diff --git a/testcases/kernel/syscalls/ioctl/ioctl_ns05.c 
b/testcases/kernel/syscalls/ioctl/ioctl_ns05.c
+index a67ddbe2c66f..52613810c7ce 100644
+--- a/testcases/kernel/syscalls/ioctl/ioctl_ns05.c
 b/testcases/kernel/syscalls/ioctl/ioctl_ns05.c
+@@ -59,10 +59,10 @@ static void run(void)
+   if (pid == -1)
+   tst_brk(TBROK | TERRNO, "ltp_clone failed");
+ 
+-  char child_namespace[20];
++  char child_namespace[30];
+   int my_fd, child_fd, parent_fd;
+ 
+-  sprintf(child_namespace, "/proc/%i/ns/pid", pid);
++  snprintf(child_namespace, sizeof(child_namespace), "/proc/%i/ns/pid", 
pid);
+   my_fd = SAFE_OPEN("/proc/self/ns/pid", O_RDONLY);
+   child_fd = SAFE_OPEN(child_namespace, O_RDONLY);
+   parent_fd = ioctl(child_fd, NS_GET_PARENT);
+diff --git a/testcases/kernel/syscalls/ioctl/ioctl_ns06.c 
b/testcases/kernel/syscalls/ioctl/ioctl_ns06.c
+index b6ac80208d02..c30f7de91e09 100644
+--- a/testcases/kernel/syscalls/ioctl/ioctl_ns06.c
 b/testcases/kernel/syscalls/ioctl/ioctl_ns06.c
+@@ -51,14 +51,14 @@ static int child(void *arg LTP_ATTRIBUTE_UNUSED)
+ 
+ static void run(void)
+ {
+-  char child_namespace[20];
++  char child_namespace[30];
+ 
+   pid_t pid = ltp_clone(CLONE_NEWUSER | SIGCHLD, &child, 0,
+   STACK_SIZE, child_stack);
+   if (pid == -1)
+   tst_brk(TBROK | TERRNO, "ltp_clone failed");
+ 
+-  sprintf(child_namespace, "/proc/%i/ns/user", pid);
++  snprintf(child_namespace, sizeof(child_namespace), "/proc/%i/ns/user", 
pid);
+   int my_fd, child_fd, parent_fd;
+ 
+   my_fd = SAFE_OPEN("/proc/self/ns/user", O_RDONLY);
+-- 
+2.32.0
+
diff --git a/meta/recipes-extended/ltp/ltp_20210524.bb 
b/meta/recipes-extended/ltp/ltp_20210524.bb
index 702fa62b660d..20e2deffa5aa 100644
--- a/meta/recipes-extended/ltp/ltp_20210524.bb
+++ b/meta/recipes-extended/ltp/ltp_20210524.bb
@@ -31,6 +31,7 @@ SRCREV = "0fb171f2beddaf64bd27597577c206c0f892b3cd"
 
 SRC_URI = "git://github.com/linux-test-project/ltp.git \
file://0001-Remove-OOM-tests-from-runtest-mm.patch \
+   
file://0001-syscalls-ioctl_ns05.c-ioctl_ns06.c-Fix-too-small-buf.patch \
"
 
 S = "${WORKDIR}/git"
-- 
2.32.0


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155263): 
https://lists.openembedded.org/g/openembedded-core/message/155263
Mute This Topic: https://lists.openembedded.org/mt/85120082/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [Dunfell][PATCH 4/4] qemu: fix CVE-2021-3608

[Armin Kuster]

From: Sakib Sajal 

Source: http://git.yoctoproject.org/cgit/poky.git
MR: 112749
Type: Security Fix
Disposition: Backport from 
http://git.yoctoproject.org/cgit/cgit.cgi/poky/commit/meta/recipes-devtools/qemu?h=hardknott&id=f5e77d70e2eb35751f5bad5572b6eb8a3ab14422
ChangeID: 4496341da3af9126c9c67170e1a2cce929c29828
Description:

(From OE-Core rev: 5e05ee8ff363eac84edec568039b86bcd716c6ce)

Signed-off-by: Sakib Sajal 
Signed-off-by: Anuj Mittal 
Signed-off-by: Richard Purdie 
(cherry picked from commit f5e77d70e2eb35751f5bad5572b6eb8a3ab14422)
[Refreshed patch]
Signed-off-by: Armin Kuster 
---
 meta/recipes-devtools/qemu/qemu.inc   |  1 +
 .../qemu/qemu/CVE-2021-3608.patch | 40 +++
 2 files changed, 41 insertions(+)
 create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2021-3608.patch

diff --git a/meta/recipes-devtools/qemu/qemu.inc 
b/meta/recipes-devtools/qemu/qemu.inc
index 6066418a7b..c8c170dda0 100644
--- a/meta/recipes-devtools/qemu/qemu.inc
+++ b/meta/recipes-devtools/qemu/qemu.inc
@@ -83,6 +83,7 @@ SRC_URI = "https://download.qemu.org/${BPN}-${PV}.tar.xz \
file://CVE-2021-3527-2.patch \
file://CVE-2021-3582.patch \
file://CVE-2021-3607.patch \
+   file://CVE-2021-3608.patch \
"
 UPSTREAM_CHECK_REGEX = "qemu-(?P\d+(\.\d+)+)\.tar"
 
diff --git a/meta/recipes-devtools/qemu/qemu/CVE-2021-3608.patch 
b/meta/recipes-devtools/qemu/qemu/CVE-2021-3608.patch
new file mode 100644
index 00..7055ec3d23
--- /dev/null
+++ b/meta/recipes-devtools/qemu/qemu/CVE-2021-3608.patch
@@ -0,0 +1,40 @@
+From 66ae37d8cc313f89272e711174a846a229bcdbd3 Mon Sep 17 00:00:00 2001
+From: Marcel Apfelbaum 
+Date: Wed, 30 Jun 2021 14:52:46 +0300
+Subject: [PATCH] pvrdma: Fix the ring init error flow (CVE-2021-3608)
+MIME-Version: 1.0
+Content-Type: text/plain; charset=UTF-8
+Content-Transfer-Encoding: 8bit
+
+Do not unmap uninitialized dma addresses.
+
+Fixes: CVE-2021-3608
+Reviewed-by: VictorV (Kunlun Lab) 
+Tested-by: VictorV (Kunlun Lab) 
+Signed-off-by: Marcel Apfelbaum 
+Message-Id: <20210630115246.2178219-1-mar...@redhat.com>
+Tested-by: Yuval Shaia 
+Reviewed-by: Yuval Shaia 
+Reviewed-by: Philippe Mathieu-Daudé 
+Signed-off-by: Marcel Apfelbaum 
+
+CVE: CVE-2021-3608
+Upstream-Status: Backport [66ae37d8cc313f89272e711174a846a229bcdbd3]
+Signed-off-by: Sakib Sajal 
+---
+ hw/rdma/vmw/pvrdma_dev_ring.c | 2 +-
+ 1 file changed, 1 insertion(+), 1 deletion(-)
+
+Index: qemu-4.2.0/hw/rdma/vmw/pvrdma_dev_ring.c
+===
+--- qemu-4.2.0.orig/hw/rdma/vmw/pvrdma_dev_ring.c
 qemu-4.2.0/hw/rdma/vmw/pvrdma_dev_ring.c
+@@ -41,7 +41,7 @@ int pvrdma_ring_init(PvrdmaRing *ring, c
+ atomic_set(&ring->ring_state->cons_head, 0);
+ */
+ ring->npages = npages;
+-ring->pages = g_malloc(npages * sizeof(void *));
++ring->pages = g_malloc0(npages * sizeof(void *));
+ 
+ for (i = 0; i < npages; i++) {
+ if (!tbl[i]) {
-- 
2.25.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155262): 
https://lists.openembedded.org/g/openembedded-core/message/155262
Mute This Topic: https://lists.openembedded.org/mt/85117492/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [Dunfell][PATCH 3/4] qemu: fix CVE-2021-3607

[Armin Kuster]

From: Sakib Sajal 

Source: http://git.yoctoproject.org/cgit/poky.git
MR: 112749
Type: Security Fix
Disposition: Backport from 
http://git.yoctoproject.org/cgit/cgit.cgi/poky/commit/meta/recipes-devtools/qemu?h=hardknott&id=460485d774480cd89cadf3b068f5197f44d86f25
ChangeID: 4e40dee2e6ce0b5b4de971f2c2b336929e7f22c3
Description:

(From OE-Core rev: 764bca67650da9df439527796879dda767c8c008)

Signed-off-by: Sakib Sajal 
Signed-off-by: Anuj Mittal 
Signed-off-by: Richard Purdie 
(cherry picked from commit 460485d774480cd89cadf3b068f5197f44d86f25)
Signed-off-by: Armin Kuster 
---
 meta/recipes-devtools/qemu/qemu.inc   |  1 +
 .../qemu/qemu/CVE-2021-3607.patch | 43 +++
 2 files changed, 44 insertions(+)
 create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2021-3607.patch

diff --git a/meta/recipes-devtools/qemu/qemu.inc 
b/meta/recipes-devtools/qemu/qemu.inc
index 854a907216..6066418a7b 100644
--- a/meta/recipes-devtools/qemu/qemu.inc
+++ b/meta/recipes-devtools/qemu/qemu.inc
@@ -82,6 +82,7 @@ SRC_URI = "https://download.qemu.org/${BPN}-${PV}.tar.xz \
file://CVE-2021-3527-1.patch \
file://CVE-2021-3527-2.patch \
file://CVE-2021-3582.patch \
+   file://CVE-2021-3607.patch \
"
 UPSTREAM_CHECK_REGEX = "qemu-(?P\d+(\.\d+)+)\.tar"
 
diff --git a/meta/recipes-devtools/qemu/qemu/CVE-2021-3607.patch 
b/meta/recipes-devtools/qemu/qemu/CVE-2021-3607.patch
new file mode 100644
index 00..0547c74484
--- /dev/null
+++ b/meta/recipes-devtools/qemu/qemu/CVE-2021-3607.patch
@@ -0,0 +1,43 @@
+From 32e5703cfea07c91e6e84bcb0313f633bb146534 Mon Sep 17 00:00:00 2001
+From: Marcel Apfelbaum 
+Date: Wed, 30 Jun 2021 14:46:34 +0300
+Subject: [PATCH] pvrdma: Ensure correct input on ring init (CVE-2021-3607)
+
+Check the guest passed a non zero page count
+for pvrdma device ring buffers.
+
+Fixes: CVE-2021-3607
+Reported-by: VictorV (Kunlun Lab) 
+Reviewed-by: VictorV (Kunlun Lab) 
+Signed-off-by: Marcel Apfelbaum 
+Message-Id: <20210630114634.2168872-1-mar...@redhat.com>
+Reviewed-by: Yuval Shaia 
+Tested-by: Yuval Shaia 
+Signed-off-by: Marcel Apfelbaum 
+
+CVE: CVE-2021-3607
+Upstream-Status: Backport [32e5703cfea07c91e6e84bcb0313f633bb146534]
+Signed-off-by: Sakib Sajal 
+---
+ hw/rdma/vmw/pvrdma_main.c | 5 +
+ 1 file changed, 5 insertions(+)
+
+diff --git a/hw/rdma/vmw/pvrdma_main.c b/hw/rdma/vmw/pvrdma_main.c
+index 84ae8024fc..7c0c3551a8 100644
+--- a/hw/rdma/vmw/pvrdma_main.c
 b/hw/rdma/vmw/pvrdma_main.c
+@@ -92,6 +92,11 @@ static int init_dev_ring(PvrdmaRing *ring, PvrdmaRingState 
**ring_state,
+ uint64_t *dir, *tbl;
+ int rc = 0;
+ 
++if (!num_pages) {
++rdma_error_report("Ring pages count must be strictly positive");
++return -EINVAL;
++}
++
+ dir = rdma_pci_dma_map(pci_dev, dir_addr, TARGET_PAGE_SIZE);
+ if (!dir) {
+ rdma_error_report("Failed to map to page directory (ring %s)", name);
+-- 
+2.25.1
+
-- 
2.25.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155261): 
https://lists.openembedded.org/g/openembedded-core/message/155261
Mute This Topic: https://lists.openembedded.org/mt/85117491/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [Dunfell][PATCH 1/4] qemu: fix CVE-2021-3527

[Armin Kuster]

From: Lee Chee Yang 

Source: http://git.yoctoproject.org/cgit/poky.git
MR: 111827
Type: Security Fix
Disposition: Backport from 
http://git.yoctoproject.org/cgit/cgit.cgi/poky/commit/meta/recipes-devtools/qemu?h=hardknott&id=45e06a2e02cb01540d3970bd8ab5771014a031f9
ChangeID: 33bb20f503888abc346ae1a6f590f57ebdd0f1f9
Description:

(cherry picked from commit 6774efd1e3d0bd5c8c34f84dcf4f698d7eafb36a)
(From OE-Core rev: fcbcd27a1c97668af9634143376f75ab32fffd68)

Signed-off-by: Lee Chee Yang 
Signed-off-by: Alexandre Belloni 
Signed-off-by: Richard Purdie 
Signed-off-by: Anuj Mittal 
Signed-off-by: Richard Purdie 
(cherry picked from commit 45e06a2e02cb01540d3970bd8ab5771014a031f9)
[Fixup for Dunfell context]
Signed-off-by: Armin Kuster 
---
 meta/recipes-devtools/qemu/qemu.inc   |  2 +
 .../qemu/qemu/CVE-2021-3527-1.patch   | 42 +
 .../qemu/qemu/CVE-2021-3527-2.patch   | 59 +++
 3 files changed, 103 insertions(+)
 create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2021-3527-1.patch
 create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2021-3527-2.patch

diff --git a/meta/recipes-devtools/qemu/qemu.inc 
b/meta/recipes-devtools/qemu/qemu.inc
index 028b81ee34..78e487fc6f 100644
--- a/meta/recipes-devtools/qemu/qemu.inc
+++ b/meta/recipes-devtools/qemu/qemu.inc
@@ -79,6 +79,8 @@ SRC_URI = "https://download.qemu.org/${BPN}-${PV}.tar.xz \
file://CVE-2021-3544_5.patch \
file://CVE-2021-3545.patch \
file://CVE-2021-3546.patch \
+   file://CVE-2021-3527-1.patch \
+   file://CVE-2021-3527-2.patch \
"
 UPSTREAM_CHECK_REGEX = "qemu-(?P\d+(\.\d+)+)\.tar"
 
diff --git a/meta/recipes-devtools/qemu/qemu/CVE-2021-3527-1.patch 
b/meta/recipes-devtools/qemu/qemu/CVE-2021-3527-1.patch
new file mode 100644
index 00..77a5385692
--- /dev/null
+++ b/meta/recipes-devtools/qemu/qemu/CVE-2021-3527-1.patch
@@ -0,0 +1,42 @@
+From 05a40b172e4d691371534828078be47e7fff524c Mon Sep 17 00:00:00 2001
+From: Gerd Hoffmann 
+Date: Mon, 3 May 2021 15:29:15 +0200
+Subject: [PATCH] usb: limit combined packets to 1 MiB (CVE-2021-3527)
+
+usb-host and usb-redirect try to batch bulk transfers by combining many
+small usb packets into a single, large transfer request, to reduce the
+overhead and improve performance.
+
+This patch adds a size limit of 1 MiB for those combined packets to
+restrict the host resources the guest can bind that way.
+
+Signed-off-by: Gerd Hoffmann 
+Message-Id: <20210503132915.2335822-6-kra...@redhat.com>
+
+Upstream-Status: Backport
+https://gitlab.com/qemu-project/qemu/-/commit/05a40b172e4d691371534828078be47e7fff524c
+CVE: CVE-2021-3527
+Signed-off-by: Chee Yang Lee 
+
+---
+ hw/usb/combined-packet.c | 4 +++-
+ 1 file changed, 3 insertions(+), 1 deletion(-)
+
+diff --git a/hw/usb/combined-packet.c b/hw/usb/combined-packet.c
+index 5d57e883dc..e56802f89a 100644
+--- a/hw/usb/combined-packet.c
 b/hw/usb/combined-packet.c
+@@ -171,7 +171,9 @@ void usb_ep_combine_input_packets(USBEndpoint *ep)
+ if ((p->iov.size % ep->max_packet_size) != 0 || !p->short_not_ok ||
+ next == NULL ||
+ /* Work around for Linux usbfs bulk splitting + migration */
+-(totalsize == (16 * KiB - 36) && p->int_req)) {
++(totalsize == (16 * KiB - 36) && p->int_req) ||
++/* Next package may grow combined package over 1MiB */
++totalsize > 1 * MiB - ep->max_packet_size) {
+ usb_device_handle_data(ep->dev, first);
+ assert(first->status == USB_RET_ASYNC);
+ if (first->combined) {
+-- 
+GitLab
+
diff --git a/meta/recipes-devtools/qemu/qemu/CVE-2021-3527-2.patch 
b/meta/recipes-devtools/qemu/qemu/CVE-2021-3527-2.patch
new file mode 100644
index 00..6371aced12
--- /dev/null
+++ b/meta/recipes-devtools/qemu/qemu/CVE-2021-3527-2.patch
@@ -0,0 +1,59 @@
+From 7ec54f9eb62b5d177e30eb8b1cad795a5f8d8986 Mon Sep 17 00:00:00 2001
+From: Gerd Hoffmann 
+Date: Mon, 3 May 2021 15:29:12 +0200
+Subject: [PATCH] usb/redir: avoid dynamic stack allocation (CVE-2021-3527)
+MIME-Version: 1.0
+Content-Type: text/plain; charset=UTF-8
+Content-Transfer-Encoding: 8bit
+
+Use autofree heap allocation instead.
+
+Fixes: 4f4321c11ff ("usb: use iovecs in USBPacket")
+Reviewed-by: Philippe Mathieu-Daudé 
+Signed-off-by: Gerd Hoffmann 
+Tested-by: Philippe Mathieu-Daudé 
+Message-Id: <20210503132915.2335822-3-kra...@redhat.com>
+
+Upstream-Status: Backport
+https://gitlab.com/qemu-project/qemu/-/commit/7ec54f9eb62b5d177e30eb8b1cad795a5f8d8986
+CVE: CVE-2021-3527
+Signed-off-by: Chee Yang Lee 
+
+---
+ hw/usb/redirect.c | 6 +++---
+ 1 file changed, 3 insertions(+), 3 deletions(-)
+
+diff --git a/hw/usb/redirect.c b/hw/usb/redirect.c
+index 17f06f3417..6a75b0dc4a 100644
+--- a/hw/usb/redirect.c
 b/hw/usb/redirect.c
+@@ -620,7 +620,7 @@ static void usbredir_handle_iso_data(USBRedirDevice *dev, 
USBPacket *p,
+

[OE-core] [Dunfell][PATCH 2/4] qemu: fix CVE-2021-3582

[Armin Kuster]

From: Sakib Sajal 

Source: http://git.yoctoproject.org/cgit/poky.git
MR: 112743
Type: Security Fix
Disposition: Backport from 
http://git.yoctoproject.org/cgit/cgit.cgi/poky/commit/meta/recipes-devtools/qemu?h=hardknott&id=e11384737ed489ea02800d545432b9ded82bf1bb
ChangeID: a2ff7112354349e8cf8960f30499f61e545d7f8e
Description:

(From OE-Core rev: fb2634922db91e5b877dd10021dafec7b5c6e565)

Signed-off-by: Sakib Sajal 
Signed-off-by: Anuj Mittal 
Signed-off-by: Richard Purdie 
(cherry picked from commit e11384737ed489ea02800d545432b9ded82bf1bb)
Signed-off-by: Armin Kuster 
---
 meta/recipes-devtools/qemu/qemu.inc   |  1 +
 .../qemu/qemu/CVE-2021-3582.patch | 47 +++
 2 files changed, 48 insertions(+)
 create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2021-3582.patch

diff --git a/meta/recipes-devtools/qemu/qemu.inc 
b/meta/recipes-devtools/qemu/qemu.inc
index 78e487fc6f..854a907216 100644
--- a/meta/recipes-devtools/qemu/qemu.inc
+++ b/meta/recipes-devtools/qemu/qemu.inc
@@ -81,6 +81,7 @@ SRC_URI = "https://download.qemu.org/${BPN}-${PV}.tar.xz \
file://CVE-2021-3546.patch \
file://CVE-2021-3527-1.patch \
file://CVE-2021-3527-2.patch \
+   file://CVE-2021-3582.patch \
"
 UPSTREAM_CHECK_REGEX = "qemu-(?P\d+(\.\d+)+)\.tar"
 
diff --git a/meta/recipes-devtools/qemu/qemu/CVE-2021-3582.patch 
b/meta/recipes-devtools/qemu/qemu/CVE-2021-3582.patch
new file mode 100644
index 00..7a88e29384
--- /dev/null
+++ b/meta/recipes-devtools/qemu/qemu/CVE-2021-3582.patch
@@ -0,0 +1,47 @@
+From 284f191b4abad213aed04cb0458e1600fd18d7c4 Mon Sep 17 00:00:00 2001
+From: Marcel Apfelbaum 
+Date: Wed, 16 Jun 2021 14:06:00 +0300
+Subject: [PATCH] hw/rdma: Fix possible mremap overflow in the pvrdma device
+ (CVE-2021-3582)
+
+Ensure mremap boundaries not trusting the guest kernel to
+pass the correct buffer length.
+
+Fixes: CVE-2021-3582
+Reported-by: VictorV (Kunlun Lab) 
+Tested-by: VictorV (Kunlun Lab) 
+Signed-off-by: Marcel Apfelbaum 
+Message-Id: <20210616110600.20889-1-marcel.apfelb...@gmail.com>
+Reviewed-by: Yuval Shaia 
+Tested-by: Yuval Shaia 
+Reviewed-by: Prasad J Pandit 
+Signed-off-by: Marcel Apfelbaum 
+
+CVE: CVE-2021-3582
+Upstream-Status: Backport [284f191b4abad213aed04cb0458e1600fd18d7c4]
+Signed-off-by: Sakib Sajal 
+---
+ hw/rdma/vmw/pvrdma_cmd.c | 7 +++
+ 1 file changed, 7 insertions(+)
+
+diff --git a/hw/rdma/vmw/pvrdma_cmd.c b/hw/rdma/vmw/pvrdma_cmd.c
+index f59879e257..da7ddfa548 100644
+--- a/hw/rdma/vmw/pvrdma_cmd.c
 b/hw/rdma/vmw/pvrdma_cmd.c
+@@ -38,6 +38,13 @@ static void *pvrdma_map_to_pdir(PCIDevice *pdev, uint64_t 
pdir_dma,
+ return NULL;
+ }
+ 
++length = ROUND_UP(length, TARGET_PAGE_SIZE);
++if (nchunks * TARGET_PAGE_SIZE != length) {
++rdma_error_report("Invalid nchunks/length (%u, %lu)", nchunks,
++  (unsigned long)length);
++return NULL;
++}
++
+ dir = rdma_pci_dma_map(pdev, pdir_dma, TARGET_PAGE_SIZE);
+ if (!dir) {
+ rdma_error_report("Failed to map to page directory");
+-- 
+2.25.1
+
-- 
2.25.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155260): 
https://lists.openembedded.org/g/openembedded-core/message/155260
Mute This Topic: https://lists.openembedded.org/mt/85117490/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core][PATCH] bluez: upgrade 5.60 -> 5.61

[Trevor Gamblin]

5.61 includes a fix for CVE-2021-3658 (bluez: adapter incorrectly
restores Discoverable state after powered down), as well as other
fixes.

>From the changelog:

ver 5.61:
   Fix issue with A2DP while waiting for command response.
   Fix issue with A2DP when SetConfiguration fails.
   Fix issue with device removal handling.
   Fix issue with storing discoverable setting.
   Add support for Central Address Resolution characteristic.
   Add support for admin policy plugin.

Signed-off-by: Trevor Gamblin 
---
 .../bluez5/{bluez5_5.60.bb => bluez5_5.61.bb}   | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)
 rename meta/recipes-connectivity/bluez5/{bluez5_5.60.bb => bluez5_5.61.bb} 
(95%)

diff --git a/meta/recipes-connectivity/bluez5/bluez5_5.60.bb 
b/meta/recipes-connectivity/bluez5/bluez5_5.61.bb
similarity index 95%
rename from meta/recipes-connectivity/bluez5/bluez5_5.60.bb
rename to meta/recipes-connectivity/bluez5/bluez5_5.61.bb
index defa0c15cd..b2e5dd66a9 100644
--- a/meta/recipes-connectivity/bluez5/bluez5_5.60.bb
+++ b/meta/recipes-connectivity/bluez5/bluez5_5.61.bb
@@ -1,6 +1,6 @@
 require bluez5.inc
 
-SRC_URI[sha256sum] = 
"710999580d01ee59ec585e5e7c07fd94eddedc001aa26fe7464c546f9d945304"
+SRC_URI[sha256sum] = 
"83afd6c52179554bfeabbcb538fec2eb6be90a8ac3c40871b49d7ad8b49c423b"
 
 # These issues have kernel fixes rather than bluez fixes so exclude here
 CVE_CHECK_WHITELIST += "CVE-2020-12352 CVE-2020-24490"
-- 
2.31.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155258): 
https://lists.openembedded.org/g/openembedded-core/message/155258
Mute This Topic: https://lists.openembedded.org/mt/85117325/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

Re: [oe-core][hardknott][PATCH 1/1] icu: increase pkgdata command buffer size

[Joe Slater]

https://unicode-org.atlassian.net/browse/ICU-21702 has been accepted.  My patch 
just mitigates the problem but does not take care of issues around lack of 
error reporting.

Joe

> -Original Message-
> From: Mittal, Anuj 
> Sent: Monday, August 23, 2021 9:04 PM
> To: Slater, Joseph ; openembedded-
> c...@lists.openembedded.org
> Cc: MacLeod, Randy 
> Subject: Re: [oe-core][hardknott][PATCH 1/1] icu: increase pkgdata command
> buffer size
> 
> Hi Joe,
> 
> On Mon, 2021-08-23 at 14:29 -0700, Joe Slater wrote:
> > Mitigate pathname truncation when installing in a project with a very
> > long pathname.  The patch is on the master branch, but they have moved
> > to a later version of icu so we cannot cherry-pick.
> >
> > Signed-off-by: Joe Slater 
> > ---
> >  ...pkgdata-increase-command-buffer-size.patch | 43
> > +++
> >  meta/recipes-support/icu/icu_68.2.bb  |  1 +
> >  2 files changed, 44 insertions(+)
> >  create mode 100644
> > meta/recipes-support/icu/icu/0001-pkgdata-increase-
> > command-buffer-size.patch
> >
> > diff --git a/meta/recipes-support/icu/icu/0001-pkgdata-increase-
> > command-buffer-size.patch b/meta/recipes-support/icu/icu/0001-pkgdata-
> > increase-command-buffer-size.patch
> > new file mode 100644
> > index 00..ea68e4be9f
> > --- /dev/null
> > +++ b/meta/recipes-support/icu/icu/0001-pkgdata-increase-command-
> > buffer-size.patch
> > @@ -0,0 +1,43 @@
> > +From ab6b1acdeed76899f8227c38ab7e7675c7673ff1 Mon Sep 17 00:00:00
> > +2001
> > +From: Joe Slater 
> > +Date: Thu, 5 Aug 2021 09:23:48 -0700
> > +Subject: [PATCH 1/1] pkgdata: increase command buffer size
> > +
> > +Make cmd LARGE_BUFFER_SIZE to avoid pathname truncation when install
> > +paths are longer than about 150 characters.
> > +
> > +Upstream-Status: Pending
> 
> I think there was a comment from Alex on the original patch for master
> requesting this be sent upstream first. Can you do that please?
> 
> Thanks,
> 
> Anuj
> 
> > +
> > +Signed-off-by: Joe Slater 
> > +---
> > + source/tools/pkgdata/pkgdata.cpp | 6 +++---
> > + 1 file changed, 3 insertions(+), 3 deletions(-)
> > +
> > +diff --git a/source/tools/pkgdata/pkgdata.cpp
> > b/source/tools/pkgdata/pkgdata.cpp
> > +index 5ab682e..d4b70ef 100644
> > +--- a/tools/pkgdata/pkgdata.cpp
> >  b/tools/pkgdata/pkgdata.cpp
> > +@@ -1131,17 +1131,17 @@ normal_symlink_mode:
> > +
> > + static int32_t pkg_installLibrary(const char *installDir, const char
> > *targetDir, UBool noVersion) {
> > + int32_t result = 0;
> > +-    char cmd[SMALL_BUFFER_MAX_SIZE];
> > ++    char cmd[LARGE_BUFFER_MAX_SIZE];
> > +
> > + auto ret = snprintf(cmd,
> > +-    SMALL_BUFFER_MAX_SIZE,
> > ++    LARGE_BUFFER_MAX_SIZE,
> > + "cd %s && %s %s %s%s%s",
> > + targetDir,
> > + pkgDataFlags[INSTALL_CMD],
> > + libFileNames[LIB_FILE_VERSION],
> > + installDir, PKGDATA_FILE_SEP_STRING,
> > libFileNames[LIB_FILE_VERSION]);
> > + (void)ret;
> > +-    U_ASSERT(0 <= ret && ret < SMALL_BUFFER_MAX_SIZE);
> > ++    U_ASSERT(0 <= ret && ret < LARGE_BUFFER_MAX_SIZE);
> > +
> > + result = runCommand(cmd);
> > +
> > +--
> > +2.29.2
> > +
> > diff --git a/meta/recipes-support/icu/icu_68.2.bb b/meta/recipes-
> > support/icu/icu_68.2.bb index 1ca87feee4..130212d245 100644
> > --- a/meta/recipes-support/icu/icu_68.2.bb
> > +++ b/meta/recipes-support/icu/icu_68.2.bb
> > @@ -107,6 +107,7 @@ SRC_URI = "${BASE_SRC_URI};name=code \
> >     file://filter.json \
> >     file://fix-install-manx.patch \
> >     file://0001-icu-Added-armeb-support.patch \
> > +   file://0001-pkgdata-increase-command-buffer-size.patch \
> >     "
> >
> >  SRC_URI_append_class-target = "\
> >
> > 
> >


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155257): 
https://lists.openembedded.org/g/openembedded-core/message/155257
Mute This Topic: https://lists.openembedded.org/mt/85096835/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

Re: [OE-core] [v4] [RFC] Merge meta-rust to oe-core - Aug 19 update

[Randy MacLeod]

Add Steven Walter in hopes that he or someone else
who uses meta-rust will help out.

On 2021-08-23 5:21 a.m., Richard Purdie wrote:

On Sun, 2021-08-22 at 08:45 -0400, Randy MacLeod wrote:

On 2021-08-22 7:19 a.m., Richard Purdie wrote:

On Sat, 2021-08-21 at 23:12 -0400, Randy MacLeod wrote:

On 2021-08-20 10:48 p.m., Randy MacLeod wrote:
With a patch from Richard, and the http_proxy check removed,
$ git diff | grep "^[+-]"
   --- a/meta/lib/oeqa/selftest/cases/sstatetests.py
   +++ b/meta/lib/oeqa/selftest/cases/sstatetests.py
   -http_proxy = "http://example.com/";
   +http_proxy = ""
   
we have fixed the oe-selftest that was failing.

   Any volunteers to stub out the http[s]_proxy code in cargo ?
I've written up a commit log that could use some review and pushed an update
to:
 
http://git.yoctoproject.org/cgit/cgit.cgi/poky-contrib/log/?h=rmacleod/rust-redo-aug-17-2021-a




I'm not sure you need to change cargo, I think if you remove the bit in the
bbclass that injects http_proxy, the tests are ok. That will perhaps break
anyone using proxies but for now, I think that is a reasonable step of getting
this moved forward?

That's what I hoped for as well but not what my testing showed.

I removed (commented out actually) the http_proxy injection here:
  
http://git.yoctoproject.org/cgit/cgit.cgi/poky-contrib/commit/?h=rmacleod/rust-redo-aug-17-2021-a&id=a4808f787caf8d0b44cf3946cf204164f24f91d4


but the test still fails unless I mangle the test:

 meta/lib/oeqa/selftest/cases/sstatetests.py


 -http_proxy = "http://example.com/";


 +http_proxy = ""

Right, my point is that doesn't remove it. You need to delete it, not comment it
out.

The issue is that bitbake does variable expansion on the scripts before running
them.

It can't tell that this is a comment, just that the script differs after
variable expansion.

Cheers,

Richard




Richard has fixed several new issues and is testing this in master-next:
http://git.yoctoproject.org/cgit/cgit.cgi/poky/log/?h=master-next

using the YP autobuilder.

We're seeing some odd intermittent build failures especially when using
the uninative class (used by default in poky) perhaps on older hosts but
we're not 100% sure of that correlation yet. See below and:

https://autobuilder.yoctoproject.org/typhoon/#/builders/116/builds/581/steps/13/logs/stdio

If we can't get this fixed in the next day or two, we'll miss the fall 
release.


../Randy


error: /lib/x86_64-linux-gnu/libc.so.6: version `GLIBC_2.33' not found 
(required by 
/home/pokybuild/yocto-worker/reproducible-debian/build/build-st/reproducibleA/tmp/work/x86_64-linux/rust-native/1.54.0-r0/rustc-1.54.0-src/build/bootstrap/debug/deps/libproc_macro_error_attr-9c7a09885c50c72e.so) 

    --> 
/home/pokybuild/yocto-worker/reproducible-debian/build/build-st/reproducibleA/tmp/work/x86_64-linux/rust-native/1.54.0-r0/rustc-1.54.0-src/vendor/proc-macro-error/src/lib.rs:284:9 


 284 | pub use proc_macro_error_attr::proc_macro_error;
 | ^

 error: aborting due to previous error
 error: could not compile `proc-macro-error`







--
# Randy MacLeod
# Wind River Linux


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155256): 
https://lists.openembedded.org/g/openembedded-core/message/155256
Mute This Topic: https://lists.openembedded.org/mt/85017687/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [hardknott][PATCH 28/28] glibc: Fix CVE-2021-38604

[Anuj Mittal]

From: Vinay Kumar 

Source: https://sourceware.org/git/glibc.git
Tracking -- https://sourceware.org/bugzilla/show_bug.cgi?id=28213

Backported upstream commits b805aebd42364fe696e417808a700fdb9800c9e8 and 
4cc79c217744743077bf7a0ec5e0a4318f1e6641
to glibc-2.33 source.

Upstream-Status: Backport 
[https://sourceware.org/git/?p=glibc.git;a=commit;h=b805aebd42364fe696e417808a700fdb9800c9e8]
Upstream-Status: Backport 
[https://sourceware.org/git/?p=glibc.git;a=commit;h=4cc79c217744743077bf7a0ec5e0a4318f1e6641]

Signed-off-by: Vinay Kumar 
Signed-off-by: Anuj Mittal 
---
 .../glibc/glibc/0001-CVE-2021-38604.patch |  40 +
 .../glibc/glibc/0002-CVE-2021-38604.patch | 147 ++
 meta/recipes-core/glibc/glibc_2.33.bb |   2 +
 3 files changed, 189 insertions(+)
 create mode 100644 meta/recipes-core/glibc/glibc/0001-CVE-2021-38604.patch
 create mode 100644 meta/recipes-core/glibc/glibc/0002-CVE-2021-38604.patch

diff --git a/meta/recipes-core/glibc/glibc/0001-CVE-2021-38604.patch 
b/meta/recipes-core/glibc/glibc/0001-CVE-2021-38604.patch
new file mode 100644
index 00..8a52ac957c
--- /dev/null
+++ b/meta/recipes-core/glibc/glibc/0001-CVE-2021-38604.patch
@@ -0,0 +1,40 @@
+From b805aebd42364fe696e417808a700fdb9800c9e8 Mon Sep 17 00:00:00 2001
+From: Nikita Popov 
+Date: Mon, 9 Aug 2021 20:17:34 +0530
+Subject: [PATCH] librt: fix NULL pointer dereference (bug 28213)
+
+Helper thread frees copied attribute on NOTIFY_REMOVED message
+received from the OS kernel.  Unfortunately, it fails to check whether
+copied attribute actually exists (data.attr != NULL).  This worked
+earlier because free() checks passed pointer before actually
+attempting to release corresponding memory.  But
+__pthread_attr_destroy assumes pointer is not NULL.
+
+So passing NULL pointer to __pthread_attr_destroy will result in
+segmentation fault.  This scenario is possible if
+notification->sigev_notify_attributes == NULL (which means default
+thread attributes should be used).
+
+Upstream-Status: Backport 
[https://sourceware.org/git/?p=glibc.git;a=commit;h=b805aebd42364fe696e417808a700fdb9800c9e8]
+CVE: CVE-2021-38604
+
+Signed-off-by: Nikita Popov 
+Reviewed-by: Siddhesh Poyarekar 
+Signed-off-by: Vinay Kumar 
+---
+ sysdeps/unix/sysv/linux/mq_notify.c | 2 +-
+ 1 file changed, 1 insertion(+), 1 deletion(-)
+
+diff --git a/sysdeps/unix/sysv/linux/mq_notify.c 
b/sysdeps/unix/sysv/linux/mq_notify.c
+index 6f46d29d1d..1714e1cc5f 100644
+--- a/sysdeps/unix/sysv/linux/mq_notify.c
 b/sysdeps/unix/sysv/linux/mq_notify.c
+@@ -132,7 +132,7 @@ helper_thread (void *arg)
+  to wait until it is done with it.  */
+   (void) __pthread_barrier_wait (¬ify_barrier);
+   }
+-  else if (data.raw[NOTIFY_COOKIE_LEN - 1] == NOTIFY_REMOVED)
++  else if (data.raw[NOTIFY_COOKIE_LEN - 1] == NOTIFY_REMOVED && data.attr 
!= NULL)
+   {
+ /* The only state we keep is the copy of the thread attributes.  */
+ pthread_attr_destroy (data.attr);
diff --git a/meta/recipes-core/glibc/glibc/0002-CVE-2021-38604.patch 
b/meta/recipes-core/glibc/glibc/0002-CVE-2021-38604.patch
new file mode 100644
index 00..b654cdfecb
--- /dev/null
+++ b/meta/recipes-core/glibc/glibc/0002-CVE-2021-38604.patch
@@ -0,0 +1,147 @@
+From 4cc79c217744743077bf7a0ec5e0a4318f1e6641 Mon Sep 17 00:00:00 2001
+From: Nikita Popov 
+Date: Thu, 12 Aug 2021 16:09:50 +0530
+Subject: [PATCH] librt: add test (bug 28213)
+
+This test implements following logic:
+1) Create POSIX message queue.
+   Register a notification with mq_notify (using NULL attributes).
+   Then immediately unregister the notification with mq_notify.
+   Helper thread in a vulnerable version of glibc
+   should cause NULL pointer dereference after these steps.
+2) Once again, register the same notification.
+   Try to send a dummy message.
+   Test is considered successfulif the dummy message
+   is successfully received by the callback function.
+
+Upstream-Status: Backport 
[https://sourceware.org/git/?p=glibc.git;a=commit;h=4cc79c217744743077bf7a0ec5e0a4318f1e6641]
+CVE: CVE-2021-38604
+
+Signed-off-by: Nikita Popov 
+Reviewed-by: Siddhesh Poyarekar 
+Signed-off-by: Vinay Kumar 
+---
+ rt/Makefile  |   1 +
+ rt/tst-bz28213.c | 101 +++
+ 2 files changed, 102 insertions(+)
+ create mode 100644 rt/tst-bz28213.c
+
+diff --git a/rt/Makefile b/rt/Makefile
+index 7b374f2073..c87d95793a 100644
+--- a/rt/Makefile
 b/rt/Makefile
+@@ -44,6 +44,7 @@ tests := tst-shm tst-timer tst-timer2 \
+tst-aio7 tst-aio8 tst-aio9 tst-aio10 \
+tst-mqueue1 tst-mqueue2 tst-mqueue3 tst-mqueue4 \
+tst-mqueue5 tst-mqueue6 tst-mqueue7 tst-mqueue8 tst-mqueue9 \
++   tst-bz28213 \
+tst-timer3 tst-timer4 tst-timer5 \
+tst-cpuclock2 tst-cputimer1 tst-cputimer2 tst-cputimer3 \
+tst-shm-cancel
+diff --git a/rt/tst-bz28213.c b/rt/tst-bz28213.c
+new file mode 100644
+index 00

[OE-core] [hardknott][PATCH 19/28] uninative: Upgrade to 3.3, support glibc 2.34

[Anuj Mittal]

From: Michael Halstead 

Signed-off-by: Michael Halstead 
Signed-off-by: Richard Purdie 
(cherry picked from commit 4aa4dcd5f31657073f2207a9a4a43247322c7eb1)
Signed-off-by: Anuj Mittal 
---
 meta/conf/distro/include/yocto-uninative.inc | 10 +-
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/meta/conf/distro/include/yocto-uninative.inc 
b/meta/conf/distro/include/yocto-uninative.inc
index 740cca0ecf..76f4cff565 100644
--- a/meta/conf/distro/include/yocto-uninative.inc
+++ b/meta/conf/distro/include/yocto-uninative.inc
@@ -6,9 +6,9 @@
 # to the distro running on the build machine.
 #
 
-UNINATIVE_MAXGLIBCVERSION = "2.33"
+UNINATIVE_MAXGLIBCVERSION = "2.34"
 
-UNINATIVE_URL ?= "http://downloads.yoctoproject.org/releases/uninative/3.2/";
-UNINATIVE_CHECKSUM[aarch64] ?= 
"4f0872cdca2775b637a8a99815ca5c8dd42146abe903a24a50ee0448358c764b"
-UNINATIVE_CHECKSUM[i686] ?= 
"e2eeab92e67263db37d9bb6d4c58579abd1f47ff4cded3171bde572fece124b2"
-UNINATIVE_CHECKSUM[x86_64] ?= 
"3ee8c7d55e2d4c7ae3887cddb97219f97b94efddfeee2e24923c0cb0e8ce84c6"
+UNINATIVE_URL ?= "http://downloads.yoctoproject.org/releases/uninative/3.3/";
+UNINATIVE_CHECKSUM[aarch64] ?= 
"372d31264ea7ab8e08e0a9662f003b53e99b3813cc2d9f9a4cc5c2949a1de00b"
+UNINATIVE_CHECKSUM[i686] ?= 
"36436167eba8a5957a0bf9a32402dd1be8b69528c1ff25e711e6895b583b2b42"
+UNINATIVE_CHECKSUM[x86_64] ?= 
"92b5e465f74d7e195e0b60fe4146f0f1475fff87ab2649bf2d57a1526ef58aec"
-- 
2.31.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155246): 
https://lists.openembedded.org/g/openembedded-core/message/155246
Mute This Topic: https://lists.openembedded.org/mt/85114710/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [hardknott][PATCH 26/28] sdk: fix relocate symlink failed

[Anuj Mittal]

From: hongxu 

Install SDK to non-default dir, sysmlink mkfs.vfat is invalid

$ ./sdk.sh -y -d ./dnf-2 -S -D
$ ls sysroots/x86_64-wrlinuxsdk-linux/usr/bin/mkfs.vfat -al
lrwxrwxrwx 1 hjia users 99 Aug 10 20:38 
sysroots/x86_64-wrlinuxsdk-linux/usr/bin/mkfs.vfat -> 
/opt/windriver/wrlinux-graphics/21.32/sysroots/x86_64-wrlinuxsdk-linux/usr/bin/mkfs.vfat.dosfstools

Since commit [bc4ee54535 sdk: Decouple default install path from
built in path] applied, sdk relocates symlink failed, it should
replace $SDK_BUILD_PATH rather than $DEFAULT_INSTALL_DIR, just
like above commit did

Without this commit:
...
|+ for l in $($SUDO_EXEC find $native_sysroot -type l)
|++ readlink path-to/sysroots/x86_64-wrlinuxsdk-linux/usr/bin/mkfs.vfat
|++ sed -e s:/usr/local/oecore-x86_64:path-to:
|+ ln -sfn 
/opt/windriver/wrlinux-graphics/21.32/sysroots/x86_64-wrlinuxsdk-linux/
usr/bin/mkfs.vfat.dosfstools 
path-to//sysroots/x86_64-wrlinuxsdk-linux/usr/bin/mkfs.vfat
...

After appling this commit:
...
|+ for l in $($SUDO_EXEC find $native_sysroot -type l)
|++ readlink path-to/sysroots/x86_64-wrlinuxsdk-linux/usr/bin/mkfs.vfat
|++ sed -e s:/opt/windriver/wrlinux-graphics/21.31:path-to:
|+ ln -sfn path-to/sysroots/x86_64-wrlinuxsdk-linux/usr/bin/mkfs.vfat.dosfstools
path-to/sysroots/x86_64-wrlinuxsdk-linux/usr/bin/mkfs.vfat
...

Signed-off-by: Hongxu Jia 
Signed-off-by: Alexandre Belloni 
Signed-off-by: Richard Purdie 
(cherry picked from commit 942c06a7348070b92f722fa5c439c8c4404485b7)
Signed-off-by: Anuj Mittal 
---
 meta/files/toolchain-shar-relocate.sh | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/meta/files/toolchain-shar-relocate.sh 
b/meta/files/toolchain-shar-relocate.sh
index 5433741296..ba873373e2 100644
--- a/meta/files/toolchain-shar-relocate.sh
+++ b/meta/files/toolchain-shar-relocate.sh
@@ -72,7 +72,7 @@ fi
 
 # change all symlinks pointing to @SDKPATH@
 for l in $($SUDO_EXEC find $native_sysroot -type l); do
-   $SUDO_EXEC ln -sfn $(readlink $l|$SUDO_EXEC sed -e 
"s:$DEFAULT_INSTALL_DIR:$target_sdk_dir:") $l
+   $SUDO_EXEC ln -sfn $(readlink $l|$SUDO_EXEC sed -e 
"s:$SDK_BUILD_PATH:$target_sdk_dir:") $l
if [ $? -ne 0 ]; then
echo "Failed to setup symlinks. Relocate script failed. Abort!"
exit 1
-- 
2.31.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155253): 
https://lists.openembedded.org/g/openembedded-core/message/155253
Mute This Topic: https://lists.openembedded.org/mt/85114718/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [hardknott][PATCH 27/28] sdk: Enable do_populate_sdk with multilibs

[Anuj Mittal]

From: Khem Raj 

This patch enables building image based SDKs for multi-libbed images
e.g. lib32-core-image-minimal and so on. Change the path to nativesdk
tools to use recipe-sysroot since thats where the nativesdk components
are installed and it will need access to qemu wrappers during build for
processing intercepts

[YOCTO #1]

Signed-off-by: Khem Raj 
Signed-off-by: Alexandre Belloni 
Signed-off-by: Richard Purdie 
(cherry picked from commit 6196a785eababb040ee1dee9f33cb6d6dad77eef)
Signed-off-by: Anuj Mittal 
---
 meta/classes/multilib.bbclass  | 1 -
 meta/classes/populate_sdk_base.bbclass | 2 +-
 2 files changed, 1 insertion(+), 2 deletions(-)

diff --git a/meta/classes/multilib.bbclass b/meta/classes/multilib.bbclass
index 9f726e4537..2ef75c0d16 100644
--- a/meta/classes/multilib.bbclass
+++ b/meta/classes/multilib.bbclass
@@ -105,7 +105,6 @@ python __anonymous () {
 d.setVar("LINGUAS_INSTALL", "")
 # FIXME, we need to map this to something, not delete it!
 d.setVar("PACKAGE_INSTALL_ATTEMPTONLY", "")
-bb.build.deltask('do_populate_sdk', d)
 bb.build.deltask('do_populate_sdk_ext', d)
 return
 }
diff --git a/meta/classes/populate_sdk_base.bbclass 
b/meta/classes/populate_sdk_base.bbclass
index 33ba3fc3c1..f8072a9d37 100644
--- a/meta/classes/populate_sdk_base.bbclass
+++ b/meta/classes/populate_sdk_base.bbclass
@@ -66,7 +66,7 @@ python () {
 
 SDK_RDEPENDS = "${TOOLCHAIN_TARGET_TASK} ${TOOLCHAIN_HOST_TASK}"
 SDK_DEPENDS = "virtual/fakeroot-native ${SDK_ARCHIVE_DEPENDS} 
cross-localedef-native nativesdk-qemuwrapper-cross ${@' 
'.join(["%s-qemuwrapper-cross" % m for m in 
d.getVar("MULTILIB_VARIANTS").split()])} qemuwrapper-cross"
-PATH_prepend = 
"${STAGING_DIR_HOST}${SDKPATHNATIVE}${bindir}/crossscripts:${@":".join(all_multilib_tune_values(d,
 'STAGING_BINDIR_CROSS').split())}:"
+PATH_prepend = 
"${WORKDIR}/recipe-sysroot/${SDKPATHNATIVE}${bindir}/crossscripts:${@":".join(all_multilib_tune_values(d,
 'STAGING_BINDIR_CROSS').split())}:"
 SDK_DEPENDS += "nativesdk-glibc-locale"
 
 # We want the MULTIARCH_TARGET_SYS to point to the TUNE_PKGARCH, not 
PACKAGE_ARCH as it
-- 
2.31.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155254): 
https://lists.openembedded.org/g/openembedded-core/message/155254
Mute This Topic: https://lists.openembedded.org/mt/85114719/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [hardknott][PATCH 24/28] e2fsprogs: ensure small images have 256-byte inodes

[Anuj Mittal]

From: Ross Burton 

e2fsprogs calls filesystems larger than 3MB but smaller than 512MB
"small", which has some implications:

- blocksize 1024 instead of 4096
- inode_ratio 4096 instead of 16384
- inode_size 128 instead of 256

The outcome of the inode size dropping to 128 bytes is that they cannot
store 64-bit timestamps, so are not Y2038-safe.

A previous attempt to solve this problem[1] changed some of the canned
wic files to pass -T default to mkfs.ext4, but this only covered wic
images and not traditional images.  Also, actually small filesystems,
for example a core-image-minimal, will happily be tens of megabytes and
with the "default" options will result in an image which runs out of
blocks before it runs out of space:

mkfs.ext4: Could not allocate block in ext2 filesystem while populating file 
system

Considering that many OpenEmbedded images are in fact "small", being
2038-safe is worth the marginal increase is disk usage.  This patch
alters the small configuration in native builds so that it also has
256-byte inodes.  Target is unchanged so that standard behaviour is
maintained outside of the build.

This is actually the same underlying patch that Mathieu Dubois-Briand
sent in April, but the wic change in [1] was accepted instead. I believe
that is the wrong approach and this approach covers more cases.

[ YOCTO #14478 ]

[1] openembedded-core eecbe62
[2] https://lists.openembedded.org/g/openembedded-core/message/150298

Signed-off-by: Ross Burton 
Signed-off-by: Richard Purdie 
(cherry picked from commit 9ab0ae83a24ee99e69f8ac54256b253a122aef8a)
Signed-off-by: Anuj Mittal 
---
 .../e2fsprogs/big-inodes-for-small-fs.patch   | 22 +++
 .../e2fsprogs/e2fsprogs_1.46.1.bb |  1 +
 2 files changed, 23 insertions(+)
 create mode 100644 
meta/recipes-devtools/e2fsprogs/e2fsprogs/big-inodes-for-small-fs.patch

diff --git 
a/meta/recipes-devtools/e2fsprogs/e2fsprogs/big-inodes-for-small-fs.patch 
b/meta/recipes-devtools/e2fsprogs/e2fsprogs/big-inodes-for-small-fs.patch
new file mode 100644
index 00..caeb560d32
--- /dev/null
+++ b/meta/recipes-devtools/e2fsprogs/e2fsprogs/big-inodes-for-small-fs.patch
@@ -0,0 +1,22 @@
+Ensure "small" file systems also have the default inode size (256 bytes) so 
that
+can store 64-bit timestamps and work past 2038.
+
+The "small" type is any size >3MB and <512MB, which covers a lot of relatively
+small filesystems built by OE, especially when they're sized to fit the 
contents
+and expand to the storage on boot.
+
+Upstream-Status: Inappropriate
+Signed-off-by: Ross Burton 
+
+diff --git a/misc/mke2fs.conf.in b/misc/mke2fs.conf.in
+index 01e35cf8..29f41dc0 100644
+--- a/misc/mke2fs.conf.in
 b/misc/mke2fs.conf.in
+@@ -16,7 +16,6 @@
+   }
+   small = {
+   blocksize = 1024
+-  inode_size = 128
+   inode_ratio = 4096
+   }
+   floppy = {
diff --git a/meta/recipes-devtools/e2fsprogs/e2fsprogs_1.46.1.bb 
b/meta/recipes-devtools/e2fsprogs/e2fsprogs_1.46.1.bb
index be8b67c35d..ddc9bfec90 100644
--- a/meta/recipes-devtools/e2fsprogs/e2fsprogs_1.46.1.bb
+++ b/meta/recipes-devtools/e2fsprogs/e2fsprogs_1.46.1.bb
@@ -8,6 +8,7 @@ SRC_URI += "file://remove.ldconfig.call.patch \
 
 SRC_URI_append_class-native = " 
file://e2fsprogs-fix-missing-check-for-permission-denied.patch \
 file://quiet-debugfs.patch \
+file://big-inodes-for-small-fs.patch \
 "
 
 
-- 
2.31.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155251): 
https://lists.openembedded.org/g/openembedded-core/message/155251
Mute This Topic: https://lists.openembedded.org/mt/85114716/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [hardknott][PATCH 25/28] wic: don't forcibly pass -T default

[Anuj Mittal]

From: Ross Burton 

This reverts part of oe-core eecbe62555, which was a previous attempt
to solve the Y2038 problem.  This is now solved centrally in e2fsprogs,
so doesn't need to be dealt with in wic.

We don't revert the commit entirely, to retain the warning if a
filesystem has small inodes.

Signed-off-by: Ross Burton 
Signed-off-by: Richard Purdie 
(cherry picked from commit 7e8017208bed98b6c90735cb641fc9d7aedf9140)
Signed-off-by: Anuj Mittal 
---
 scripts/lib/wic/canned-wks/common.wks.inc | 2 +-
 scripts/lib/wic/canned-wks/directdisk-gpt.wks | 2 +-
 scripts/lib/wic/canned-wks/mkefidisk.wks  | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/scripts/lib/wic/canned-wks/common.wks.inc 
b/scripts/lib/wic/canned-wks/common.wks.inc
index 4fd29fa8c1..89880b417b 100644
--- a/scripts/lib/wic/canned-wks/common.wks.inc
+++ b/scripts/lib/wic/canned-wks/common.wks.inc
@@ -1,3 +1,3 @@
 # This file is included into 3 canned wks files from this directory
 part /boot --source bootimg-pcbios --ondisk sda --label boot --active --align 
1024
-part / --source rootfs --use-uuid --fstype=ext4 --mkfs-extraopts "-T default" 
--label platform --align 1024
+part / --source rootfs --use-uuid --fstype=ext4 --label platform --align 1024
diff --git a/scripts/lib/wic/canned-wks/directdisk-gpt.wks 
b/scripts/lib/wic/canned-wks/directdisk-gpt.wks
index cf16c0c30b..8d7d8de6ea 100644
--- a/scripts/lib/wic/canned-wks/directdisk-gpt.wks
+++ b/scripts/lib/wic/canned-wks/directdisk-gpt.wks
@@ -4,7 +4,7 @@
 
 
 part /boot --source bootimg-pcbios --ondisk sda --label boot --active --align 
1024
-part / --source rootfs --ondisk sda --fstype=ext4 --mkfs-extraopts "-T 
default" --label platform --align 1024 --use-uuid
+part / --source rootfs --ondisk sda --fstype=ext4 --label platform --align 
1024 --use-uuid
 
 bootloader  --ptable gpt --timeout=0  --append="rootwait rootfstype=ext4 
video=vesafb vga=0x318 console=tty0 console=ttyS0,115200n8"
 
diff --git a/scripts/lib/wic/canned-wks/mkefidisk.wks 
b/scripts/lib/wic/canned-wks/mkefidisk.wks
index d1878e23e5..9f534fe184 100644
--- a/scripts/lib/wic/canned-wks/mkefidisk.wks
+++ b/scripts/lib/wic/canned-wks/mkefidisk.wks
@@ -4,7 +4,7 @@
 
 part /boot --source bootimg-efi --sourceparams="loader=grub-efi" --ondisk sda 
--label msdos --active --align 1024
 
-part / --source rootfs --ondisk sda --fstype=ext4 --mkfs-extraopts "-T 
default"  --label platform --align 1024 --use-uuid
+part / --source rootfs --ondisk sda --fstype=ext4 --label platform --align 
1024 --use-uuid
 
 part swap --ondisk sda --size 44 --label swap1 --fstype=swap
 
-- 
2.31.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155252): 
https://lists.openembedded.org/g/openembedded-core/message/155252
Mute This Topic: https://lists.openembedded.org/mt/85114717/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [hardknott][PATCH 23/28] utils: Reduce the number of calls to the "dirname" command

[Anuj Mittal]

From: Oleksandr Popovych 

utils.bbclass contains create_cmdline_wrapper() function that
creates wrapper script with additional arguments for any passed
"$cmd" command, and uses several calls to "dirname".

Because "dirname" is an external command, in cases of lots of
calls to wrapped "$cmd", each call of "dirname" will incur
significant overhead.

There are three same calls to "dirname": one for saving it`s
output to "realdir" variable, and other two in "exec" command.
So last two "dirname" calls can be replaced with cached value
from "realdir" variable.

Signed-off-by: Oleksandr Popovych 
Signed-off-by: Richard Purdie 
(cherry picked from commit 4b9cf2c80fd14386e0b88a2e6c40a9fa3f1ae0f7)
Signed-off-by: Anuj Mittal 
---
 meta/classes/utils.bbclass | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/meta/classes/utils.bbclass b/meta/classes/utils.bbclass
index 120bcc64a6..072ea1f63c 100644
--- a/meta/classes/utils.bbclass
+++ b/meta/classes/utils.bbclass
@@ -214,7 +214,7 @@ create_cmdline_wrapper () {
 #!/bin/bash
 realpath=\`readlink -fn \$0\`
 realdir=\`dirname \$realpath\`
-exec -a \`dirname \$realpath\`/$cmdname \`dirname \$realpath\`/$cmdname.real 
$cmdoptions "\$@"
+exec -a \$realdir/$cmdname \$realdir/$cmdname.real $cmdoptions "\$@"
 END
chmod +x $cmd
 }
-- 
2.31.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155250): 
https://lists.openembedded.org/g/openembedded-core/message/155250
Mute This Topic: https://lists.openembedded.org/mt/85114715/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [hardknott][PATCH 22/28] lzo: add CVE_PRODUCT

[Anuj Mittal]

From: Marta Rybczynska 

lzo was missing CVE_PRODUCT and related CVEs (at least CVE-2014-4607) were
not reported.

Signed-off-by: Marta Rybczynska 
Signed-off-by: Richard Purdie 
(cherry picked from commit 366cf8201e36df1ac836e49de04ccda1f763ca9e)
Signed-off-by: Anuj Mittal 
---
 meta/recipes-support/lzo/lzo_2.10.bb | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/meta/recipes-support/lzo/lzo_2.10.bb 
b/meta/recipes-support/lzo/lzo_2.10.bb
index 85b14b3c5c..f0c8631aea 100644
--- a/meta/recipes-support/lzo/lzo_2.10.bb
+++ b/meta/recipes-support/lzo/lzo_2.10.bb
@@ -18,6 +18,8 @@ SRC_URI[sha256sum] = 
"c0f892943208266f9b6543b3ae308fab6284c5c90e627931446fb49b42
 
 inherit autotools ptest
 
+CVE_PRODUCT = "lzo oberhumer:lzo2"
+
 EXTRA_OECONF = "--enable-shared"
 
 do_install_ptest() {
-- 
2.31.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155249): 
https://lists.openembedded.org/g/openembedded-core/message/155249
Mute This Topic: https://lists.openembedded.org/mt/85114714/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [hardknott][PATCH 20/28] kernel-devsrc: 5.14+ updates

[Anuj Mittal]

From: Bruce Ashfield 

commit 6218d0f6b8dec [x86/syscalls: Switch to generic syscalltbl.sh]
means that x86 no longer has a syscall script to copy, which causes
a build error.

We already copy the generic syscall script (in scripts), so we just
catch errors for the copies to support older and 5.14+ kernels in
the same devsrc recipe.

Signed-off-by: Bruce Ashfield 
Signed-off-by: Richard Purdie 
(cherry picked from commit 5debc9bc25110b836b76927c61b2455e5e235a84)
Signed-off-by: Anuj Mittal 
---
 meta/recipes-kernel/linux/kernel-devsrc.bb | 8 
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/meta/recipes-kernel/linux/kernel-devsrc.bb 
b/meta/recipes-kernel/linux/kernel-devsrc.bb
index 92076ac8b0..4897084aab 100644
--- a/meta/recipes-kernel/linux/kernel-devsrc.bb
+++ b/meta/recipes-kernel/linux/kernel-devsrc.bb
@@ -218,10 +218,10 @@ do_install() {
 
if [ "${ARCH}" = "x86" ]; then
# files for 'make prepare' to succeed with kernel-devel
-   cp -a --parents $(find arch/x86 -type f -name "syscall_32.tbl") 
$kerneldir/build/
-   cp -a --parents $(find arch/x86 -type f -name "syscalltbl.sh") 
$kerneldir/build/
-   cp -a --parents $(find arch/x86 -type f -name "syscallhdr.sh") 
$kerneldir/build/
-   cp -a --parents $(find arch/x86 -type f -name "syscall_64.tbl") 
$kerneldir/build/
+   cp -a --parents $(find arch/x86 -type f -name "syscall_32.tbl") 
$kerneldir/build/ 2>/dev/null || :
+   cp -a --parents $(find arch/x86 -type f -name "syscalltbl.sh") 
$kerneldir/build/ 2>/dev/null || :
+   cp -a --parents $(find arch/x86 -type f -name "syscallhdr.sh") 
$kerneldir/build/ 2>/dev/null || :
+   cp -a --parents $(find arch/x86 -type f -name "syscall_64.tbl") 
$kerneldir/build/ 2>/dev/null || :
cp -a --parents arch/x86/tools/relocs_32.c $kerneldir/build/
cp -a --parents arch/x86/tools/relocs_64.c $kerneldir/build/
cp -a --parents arch/x86/tools/relocs.c $kerneldir/build/
-- 
2.31.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155248): 
https://lists.openembedded.org/g/openembedded-core/message/155248
Mute This Topic: https://lists.openembedded.org/mt/85114713/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [hardknott][PATCH 21/28] kernel-devsrc: fix 5.14+ objtool compilation

[Anuj Mittal]

From: Bruce Ashfield 

In v5.14+, x86 requires not just elfutils, but the elf headers
on the target to build objtool (required for 'scripts parepare'),
so we tweak our RDEPENDS to ensure that the right headers are
on the target.

Signed-off-by: Bruce Ashfield 
Signed-off-by: Richard Purdie 
(cherry picked from commit 03ccc234386f753e1b0129ec557e67bcd04cc69e)
Signed-off-by: Anuj Mittal 
---
 meta/recipes-kernel/linux/kernel-devsrc.bb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/meta/recipes-kernel/linux/kernel-devsrc.bb 
b/meta/recipes-kernel/linux/kernel-devsrc.bb
index 4897084aab..a5eba7c03a 100644
--- a/meta/recipes-kernel/linux/kernel-devsrc.bb
+++ b/meta/recipes-kernel/linux/kernel-devsrc.bb
@@ -320,7 +320,7 @@ RDEPENDS_${PN} = "bc python3 flex bison ${TCLIBC}-utils"
 # 4.15+ needs these next two RDEPENDS
 RDEPENDS_${PN} += "openssl-dev util-linux"
 # and x86 needs a bit more for 4.15+
-RDEPENDS_${PN} += "${@bb.utils.contains('ARCH', 'x86', 'elfutils', '', d)}"
+RDEPENDS_${PN} += "${@bb.utils.contains('ARCH', 'x86', 'elfutils-dev', '', d)}"
 # 5.8+ needs gcc-plugins libmpc-dev
 RDEPENDS_${PN} += "gcc-plugins libmpc-dev"
 # 5.13+ needs awk for arm64
-- 
2.31.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155247): 
https://lists.openembedded.org/g/openembedded-core/message/155247
Mute This Topic: https://lists.openembedded.org/mt/85114711/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [hardknott][PATCH 18/28] uninative: Improve glob to handle glibc 2.34

[Anuj Mittal]

From: Ross Burton 

With glibc 2.34, the libraries were renamed. Tweak the glob to support both
as this is needed for newer uninative versions.

[RP: tweak commit message]
Signed-off-by: Ross Burton 
Signed-off-by: Richard Purdie 
(cherry picked from commit 98248306e4b5f023e96375293b60524574ebb686)
Signed-off-by: Anuj Mittal 
---
 meta/classes/uninative.bbclass | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/meta/classes/uninative.bbclass b/meta/classes/uninative.bbclass
index 1e19917a97..3c7ccd66f4 100644
--- a/meta/classes/uninative.bbclass
+++ b/meta/classes/uninative.bbclass
@@ -100,7 +100,7 @@ ${UNINATIVE_STAGING_DIR}-uninative/relocate_sdk.py \
   ${UNINATIVE_LOADER} \
   ${UNINATIVE_LOADER} \
   
${UNINATIVE_STAGING_DIR}-uninative/${BUILD_ARCH}-linux/${bindir_native}/patchelf-uninative
 \
-  
${UNINATIVE_STAGING_DIR}-uninative/${BUILD_ARCH}-linux${base_libdir_native}/libc*.so"
 % chksum)
+  
${UNINATIVE_STAGING_DIR}-uninative/${BUILD_ARCH}-linux${base_libdir_native}/libc*.so*"
 % chksum)
 subprocess.check_output(cmd, shell=True)
 
 with open(loaderchksum, "w") as f:
-- 
2.31.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155245): 
https://lists.openembedded.org/g/openembedded-core/message/155245
Mute This Topic: https://lists.openembedded.org/mt/85114709/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [hardknott][PATCH 17/28] linux-yocto/5.10: update to v5.10.57

[Anuj Mittal]

From: Bruce Ashfield 

Updating linux-yocto/5.10 to the latest korg -stable release that comprises
the following commits:

1cd6e30b83d7 Linux 5.10.57
9c645a020bab spi: mediatek: Fix fifo transfer
7254e2d9eb41 selftest/bpf: Verifier tests for var-off access
30ea1c535291 bpf, selftests: Adjust few selftest outcomes wrt unreachable 
code
98bf2906d3be bpf: Update selftests to reflect new error states
360e5b7af653 bpf, selftests: Adjust few selftest result_unpriv outcomes
5abcd138cbd8 selftest/bpf: Adjust expected verifier errors
83bbf953f66c selftests/bpf: Add a test for ptr_to_map_value on stack for 
helper access
e2b7a4ccbf7c Revert "watchdog: iTCO_wdt: Account for rebooting on second 
timeout"
1b1a00b13c34 firmware: arm_scmi: Add delayed response status check
93ef561406a7 firmware: arm_scmi: Ensure drivers provide a probe function
1812895f17e1 Revert "Bluetooth: Shutdown controller after workqueues are 
flushed or cancelled"
cae3fa3d8165 ACPI: fix NULL pointer dereference
98b070694f45 drm/amd/display: Fix max vstartup calculation for modes with 
borders
f9d875c8c92f drm/amd/display: Fix comparison error in dcn21 DML
91865b458edd nvme: fix nvme_setup_command metadata trace event
06a9092f6647 efi/mokvar: Reserve the table only if it is in boot services 
data
27ff30c8b3f3 ASoC: ti: j721e-evm: Check for not initialized parent_clk_id
a00bcc5298be ASoC: ti: j721e-evm: Fix unbalanced domain activity tracking 
during startup
e8b287e78381 net: Fix zero-copy head len calculation.
c6bdf7d97d5f ASoC: rt5682: Fix the issue of garbled recording after 
powerd_dbus_suspend
74b53ee4b89e qed: fix possible unpaired spin_{un}lock_bh in 
_qed_mcp_cmd_and_union()
f6a2ff040b5c r8152: Fix potential PM refcount imbalance
c98a7916cd37 ASoC: tlv320aic31xx: fix reversed bclk/wclk master bits
03258515c9eb spi: stm32h7: fix full duplex irq handler handling
cfb8173a23cf regulator: rt5033: Fix n_voltages settings for BUCK and LDO
81dc9a4868a9 regulator: rtmv20: Fix wrong mask for strobe-polarity-high
9e55b9278c47 btrfs: fix lost inode on log replay after mix of fsync, rename 
and inode eviction
e2419c570986 btrfs: fix race causing unnecessary inode logging during link 
and rename
118b070bf415 Revert "drm/i915: Propagate errors on awaiting already 
signaled fences"
6976f3cf34a1 drm/i915: Revert "drm/i915/gem: Asynchronous cmdparser"
9746c25334cb Linux 5.10.56
55dd22c5d029 can: j1939: j1939_session_deactivate(): clarify lifetime of 
session object
75ebe1d355b5 i40e: Add additional info to PHY type error
2ca5ec188b20 Revert "perf map: Fix dso->nsinfo refcounting"
c14cee5bc466 powerpc/pseries: Fix regression while building external modules
bfc8e67c60b9 SMB3: fix readpage for large swap cache
be561c0154dc bpf: Fix pointer arithmetic mask tightening under state pruning
ffb9d5c48b4b bpf: verifier: Allocate idmap scratch in verifier env
a11ca29c65c1 bpf: Remove superfluous aux sanitation on subprog rejection
0e9280654aa4 bpf: Fix leakage due to insufficient speculative store bypass 
mitigation
bea9e2fd1808 bpf: Introduce BPF nospec instruction for mitigating Spectre v4
cd61e665a166 can: hi311x: fix a signedness bug in hi3110_cmd()
65dfa6cb2233 sis900: Fix missing pci_disable_device() in probe and remove
93e5bf4b2925 tulip: windbond-840: Fix missing pci_disable_device() in probe 
and remove
58b8c812c764 sctp: fix return value check in __sctp_rcv_asconf_lookup
362e9d23cf70 net/mlx5e: Fix nullptr in mlx5e_hairpin_get_mdev()
bd744f2a2755 net/mlx5: Fix flow table chaining
1b148bd72e50 skmsg: Make sk_psock_destroy() static
645a1d3bef5f drm/msm/dp: Initialize the INTF_CONFIG register
4a6841921cc8 drm/msm/dpu: Fix sm8250_mdp register length
e6097071a4ff net: llc: fix skb_over_panic
01f3581d4400 KVM: x86: Check the right feature bit for MSR_KVM_ASYNC_PF_ACK 
access
f5f78ae5f1be mlx4: Fix missing error code in mlx4_load_one()
51b751fc06b8 octeontx2-pf: Fix interface down flag on error
4951ffa3fac8 tipc: do not write skb_shinfo frags when doing decrytion
7eefa0b74f3e ionic: count csum_none when offload enabled
60decbe01d7d ionic: fix up dim accounting for tx and rx
a7c85a516cd0 ionic: remove intr coalesce update from napi
6961323eed46 net: qrtr: fix memory leaks
91350564ea8c net: Set true network header for ECN decapsulation
a41282e82a1d tipc: fix sleeping in tipc accept routine
10f585740cf0 tipc: fix implicit-connect for SYN+
bb6061616211 i40e: Fix log TC creation failure when max num of queues is 
exceeded
c1cc6bce1afd i40e: Fix queue-to-TC mapping on Tx
4382cca17915 i40e: Fix firmware LLDP agent related warning
e090ffdf0563 i40e: Fix logic of disabling queues
cbc8012902b3 netfilter: nft_nat: allow to specify layer 4 protocol NAT only
3dbda8483f42 netfilter: conntrack: adjust stop tim

[OE-core] [hardknott][PATCH 16/28] linux-yocto/5.4: update to v5.4.139

[Anuj Mittal]

From: Bruce Ashfield 

Updating linux-yocto/5.4 to the latest korg -stable release that comprises
the following commits:

e350cd02e293 Linux 5.4.139
03ff8a4f9db6 spi: mediatek: Fix fifo transfer
a0f66ddf05c2 bpf, selftests: Adjust few selftest outcomes wrt unreachable 
code
d3796e8f6b3d bpf, selftests: Add a verifier test for assigning 32bit reg 
states to 64bit ones
8dec99abcd74 bpf: Test_verifier, add alu32 bounds tracking tests
fd568de5806f bpf: Fix leakage under speculation on mispredicted branches
d2f790327f83 bpf: Do not mark insn as seen under speculative path 
verification
283d742988f6 bpf: Inherit expanded/patched seen count from old aux data
a0a9546aaec3 Revert "watchdog: iTCO_wdt: Account for rebooting on second 
timeout"
76f5314d7859 firmware: arm_scmi: Add delayed response status check
1b38f70bbc7c firmware: arm_scmi: Ensure drivers provide a probe function
44f522298c94 Revert "Bluetooth: Shutdown controller after workqueues are 
flushed or cancelled"
38f54217b423 ACPI: fix NULL pointer dereference
0ea2f55babb7 nvme: fix nvme_setup_command metadata trace event
b508b652d4f3 net: Fix zero-copy head len calculation.
bf692e7ef657 qed: fix possible unpaired spin_{un}lock_bh in 
_qed_mcp_cmd_and_union()
6bc48348eca7 r8152: Fix potential PM refcount imbalance
a57c75ff0700 ASoC: tlv320aic31xx: fix reversed bclk/wclk master bits
e2cccb839a18 spi: stm32h7: fix full duplex irq handler handling
b72f2d9e91e1 regulator: rt5033: Fix n_voltages settings for BUCK and LDO
86f2a3e9aae9 btrfs: fix lost inode on log replay after mix of fsync, rename 
and inode eviction
b7f0fa2192c5 btrfs: fix race causing unnecessary inode logging during link 
and rename
cb006da62a9e btrfs: do not commit logs and transactions during link and 
rename operations
174c27d0f9ef btrfs: delete duplicated words + other fixes in comments
7b90d57b09fa Linux 5.4.138
7eef18c0479b can: j1939: j1939_session_deactivate(): clarify lifetime of 
session object
18b536de3b97 i40e: Add additional info to PHY type error
d21eb931109a Revert "perf map: Fix dso->nsinfo refcounting"
16447b2f5c66 powerpc/pseries: Fix regression while building external modules
265883d1d839 PCI: mvebu: Setup BAR0 in order to fix MSI
21734a31c9a0 can: hi311x: fix a signedness bug in hi3110_cmd()
f4fa45b0f91e sis900: Fix missing pci_disable_device() in probe and remove
dff00ce44891 tulip: windbond-840: Fix missing pci_disable_device() in probe 
and remove
e0310bbeaaa2 sctp: fix return value check in __sctp_rcv_asconf_lookup
408614108abd net/mlx5e: Fix nullptr in mlx5e_hairpin_get_mdev()
ac4983230616 net/mlx5: Fix flow table chaining
527feae56fe6 net: llc: fix skb_over_panic
ede4c93860e6 mlx4: Fix missing error code in mlx4_load_one()
acb97d4b2d0e net: Set true network header for ECN decapsulation
851946a68136 tipc: fix sleeping in tipc accept routine
194b71d28b26 i40e: Fix log TC creation failure when max num of queues is 
exceeded
834af62212c7 i40e: Fix queue-to-TC mapping on Tx
74aea4b7159a i40e: Fix firmware LLDP agent related warning
b2ab34e862eb i40e: Fix logic of disabling queues
519582e44e6a netfilter: nft_nat: allow to specify layer 4 protocol NAT only
3a7a4cee7bec netfilter: conntrack: adjust stop timestamp to real expiry 
value
1c043783403c cfg80211: Fix possible memory leak in function 
cfg80211_bss_update
6cf2abea1018 nfc: nfcsim: fix use after free during module unload
6b313d0ffa71 NIU: fix incorrect error return, missed in previous revert
c4663c162778 HID: wacom: Re-enable touch by default for Cintiq 24HDT / 
27QHDT
e9e2ce00aeda can: esd_usb2: fix memory leak
43726620b2f6 can: ems_usb: fix memory leak
819867389276 can: usb_8dev: fix memory leak
a051dbd17b5b can: mcba_usb_start(): add missing urb->transfer_dma 
initialization
793581441b5c can: raw: raw_setsockopt(): fix raw_rcv panic for sock UAF
c621638d0e6d can: j1939: j1939_xtp_rx_dat_one(): fix rxtimer value between 
consecutive TP.DT to 750ms
a24d87b429a9 ocfs2: issue zeroout to EOF blocks
eaaa4284e288 ocfs2: fix zero out valid data
9bd1092148b5 KVM: add missing compat KVM_CLEAR_DIRTY_LOG
7a94dfe5e2a0 x86/kvm: fix vcpu-id indexed array sizes
2dc291582cce Revert "ACPI: resources: Add checks for ACPI IRQ override"
a8eec6979734 btrfs: mark compressed range uptodate only if all bio succeed
57429c1ec770 btrfs: fix rw device counting in __btrfs_free_extra_devids
61f2cbc792eb x86/asm: Ensure asm/proto.h can be included stand-alone
99372c38a948 net_sched: check error pointer in tcf_dump_walker()

Signed-off-by: Bruce Ashfield 
Signed-off-by: Richard Purdie 
(cherry picked from commit d5455d9e201e324b7cf7bb19381bfebb0e892312)
Signed-off-by: Anuj Mittal 
---
 .../linux/linux-yocto-rt_5.4.bb   |  6 ++---
 .../linux/linux-yocto-tiny_5.4.bb |  

[OE-core] [hardknott][PATCH 15/28] linux-yocto/5.4: update to v5.4.137

[Anuj Mittal]

From: Bruce Ashfield 

Updating linux-yocto/5.4 to the latest korg -stable release that comprises
the following commits:

5b1de8e15f0f Linux 5.4.137
ebb1b38be0c9 ipv6: ip6_finish_output2: set sk into newly allocated nskb
6c04123962f0 ARM: dts: versatile: Fix up interrupt controller node names
befa900533a9 iomap: remove the length variable in iomap_seek_hole
83fb41b2f6e4 iomap: remove the length variable in iomap_seek_data
302e1acd4c26 cifs: fix the out of range assignment to bit fields in 
parse_server_interfaces
02a470e3c64a firmware: arm_scmi: Fix range check for the maximum number of 
pending messages
289dd584319f firmware: arm_scmi: Fix possible scmi_linux_errmap buffer 
overflow
e3acb292f092 hfs: add lock nesting notation to hfs_find_init
af1178296d77 hfs: fix high memory mapping in hfs_bnode_read
89136a47e2e7 hfs: add missing clean-up in hfs_fill_super
ded37d03440d ipv6: allocate enough headroom in ip6_finish_output2()
f65b7f377cca sctp: move 198 addresses from unusable to private scope
c8d32973ee6a net: annotate data race around sk_ll_usec
c23b9a5610f9 net/802/garp: fix memleak in garp_request_join()
88c4cae3ed25 net/802/mrp: fix memleak in mrp_request_join()
eef99860c677 cgroup1: fix leaked context root causing sporadic NULL deref 
in LTP
7f0365b4daaa workqueue: fix UAF in pwq_unbound_release_workfn()
85abe0d47fe6 af_unix: fix garbage collect vs MSG_PEEK
af45f3527aa0 KVM: x86: determine if an exception has an error code only 
when injecting it.
828cab3c8c23 tools: Allow proper CC/CXX/... override with LLVM=1 in 
Makefile.include
525c5513b60d selftest: fix build error in 
tools/testing/selftests/vm/userfaultfd.c
253dccefb5cb Linux 5.4.136
587f86b7a2a0 xhci: add xhci_get_virt_ep() helper
f9d0c35556cd perf inject: Close inject.output on exit
a9c103fa91e4 PCI: Mark AMD Navi14 GPU ATS as broken
11561d2f7b9d btrfs: compression: don't try to compress if we don't have 
enough pages
4980301e1c1f iio: accel: bma180: Fix BMA25x bandwidth register values
d04f2582c47e iio: accel: bma180: Use explicit member assignment
4e0afa88954b net: bcmgenet: ensure EXT_ENERGY_DET_MASK is clear
2a4865d1547e net: dsa: mv88e6xxx: use correct .stats_set_histogram() on 
Topaz
7d8c06b8d2d2 drm: Return -ENOTTY for non-drm ioctls
b5d7bebd96a3 nds32: fix up stack guard gap
ba378b796088 rbd: always kick acquire on "acquired" and "released" 
notifications
13066d6628f0 rbd: don't hold lock_rwsem while running_list is being drained
b12ead825f6c hugetlbfs: fix mount mode command line processing
60dbbd76f110 userfaultfd: do not untag user pointers
540eee8cbb3d selftest: use mmap instead of posix_memalign to allocate memory
e706ac3fc82e ixgbe: Fix packet corruption due to missing DMA sync
e617fa62f6cf media: ngene: Fix out-of-bounds bug in 
ngene_command_config_free_buf()
77713fb336ca btrfs: check for missing device in btrfs_trim_fs
f899f24d34d9 tracing: Fix bug in rb_per_cpu_empty() that might cause 
deadloop.
59a9f75fb2b6 tracing/histogram: Rename "cpu" to "common_cpu"
379d8da3353e firmware/efi: Tell memblock about EFI iomem reservations
281a94362bbe usb: dwc2: gadget: Fix sending zero length packet in DDMA mode.
167079fbfaa7 USB: serial: cp210x: add ID for CEL EM3588 USB ZigBee stick
811c4cdf2917 USB: serial: cp210x: fix comments for GE CS1000
f54ee7e16d0d USB: serial: option: add support for u-blox LARA-R6 family
e28d28eb9be6 usb: renesas_usbhs: Fix superfluous irqs happen after 
usb_pkt_pop()
863d071dbcd5 usb: max-3421: Prevent corruption of freed memory
e4077a90e600 USB: usb-storage: Add LaCie Rugged USB3-FW to IGNORE_UAS
da6f6769ee0f usb: hub: Fix link power management max exit latency (MEL) 
calculations
fea6b53e631a usb: hub: Disable USB 3 device initiated lpm if exit latency 
is too high
962ce043ef92 KVM: PPC: Book3S HV Nested: Sanitise H_ENTER_NESTED TM state
2b9ffddd70b4 KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow
c968f563ccde xhci: Fix lost USB 2 remote wake
a660ecde5c55 ALSA: hdmi: Expose all pins on MSI MS-7C94 board
f73696354d59 ALSA: sb: Fix potential ABBA deadlock in CSP driver
7aa2dfbc6bd0 ALSA: usb-audio: Add registration quirk for JBL Quantum 
headsets
46d62c3fe2ab ALSA: usb-audio: Add missing proc text entry for BESPOKEN type
f1754f96ab41 s390/boot: fix use of expolines in the DMA code
8eb521d19248 s390/ftrace: fix ftrace_update_ftrace_func implementation
268132b070d9 Revert "MIPS: add PMD table accounting into MIPS'pmd_alloc_one"
f323809e3108 proc: Avoid mixing integer types in mem_rw()
b71a75209f6a drm/panel: raspberrypi-touchscreen: Prevent double-free
2e6ab87f8e63 net: sched: cls_api: Fix the the wrong parameter
b60461696a0b sctp: update active_key for asoc when old key is being replaced
9fa89c2caee2 nvme: set the PRACT bit when using Write 

[OE-core] [hardknott][PATCH 14/28] linux-yocto/5.10: update to v5.10.55

[Anuj Mittal]

From: Bruce Ashfield 

Updating linux-yocto/5.10 to the latest korg -stable release that comprises
the following commits:

11fe69a17195 Linux 5.10.55
984e93b8e207 ipv6: ip6_finish_output2: set sk into newly allocated nskb
a74054ca7553 ARM: dts: versatile: Fix up interrupt controller node names
3510b9b41c70 iomap: remove the length variable in iomap_seek_hole
8659186e72d0 iomap: remove the length variable in iomap_seek_data
65039407489c cifs: fix the out of range assignment to bit fields in 
parse_server_interfaces
fe5fe0b1c8b9 firmware: arm_scmi: Fix range check for the maximum number of 
pending messages
8f8e5475a369 firmware: arm_scmi: Fix possible scmi_linux_errmap buffer 
overflow
d01328fef6af hfs: add lock nesting notation to hfs_find_init
06b3d9923fa0 hfs: fix high memory mapping in hfs_bnode_read
680b2917e60e hfs: add missing clean-up in hfs_fill_super
5c3d753b872a drm/ttm: add a check against null pointer dereference
2323690eb058 ipv6: allocate enough headroom in ip6_finish_output2()
86cb49e7314e rcu-tasks: Don't delete holdouts within 
trc_wait_for_one_reader()
55ddab2bfd70 rcu-tasks: Don't delete holdouts within trc_inspect_reader()
4d972881f8d8 sctp: move 198 addresses from unusable to private scope
915226f31fd4 net: annotate data race around sk_ll_usec
92289f58f01d net/802/garp: fix memleak in garp_request_join()
5d93810761b4 net/802/mrp: fix memleak in mrp_request_join()
df34f888628e cgroup1: fix leaked context root causing sporadic NULL deref 
in LTP
dcd00801f3d9 workqueue: fix UAF in pwq_unbound_release_workfn()
93c5951e0ce1 af_unix: fix garbage collect vs MSG_PEEK
dee8119eaa9e KVM: x86: determine if an exception has an error code only 
when injecting it.
6f5d7a45f58d io_uring: fix link timeout refs
475312897ea6 tools: Allow proper CC/CXX/... override with LLVM=1 in 
Makefile.include
08277b9dde63 Linux 5.10.54
c9f8e17990e0 skbuff: Fix build with SKB extensions disabled
ba28765d338a xhci: add xhci_get_virt_ep() helper
624290f368af sfc: ensure correct number of XDP queues
1df4fe5a8871 drm/i915/gvt: Clear d3_entered on elsp cmd submission.
c938e65768e0 usb: ehci: Prevent missed ehci interrupts with edge-triggered 
MSI
25af91a806d2 perf inject: Close inject.output on exit
fb35426d123e Documentation: Fix intiramfs script name
570341f10ecc skbuff: Release nfct refcount on napi stolen or re-used skbs
31828ffdab19 bonding: fix build issue
c9d97b7bb897 PCI: Mark AMD Navi14 GPU ATS as broken
f7ee361182e0 net: dsa: mv88e6xxx: enable SerDes PCS register dump via 
ethtool -d on Topaz
30f1d4d03641 net: dsa: mv88e6xxx: enable SerDes RX stats for Topaz
fc31b5be1383 drm/amdgpu: update golden setting for sienna_cichlid
69a603aa170e drm: Return -ENOTTY for non-drm ioctls
2831eeb7bc3d driver core: Prevent warning when removing a device link from 
unregistered consumer
0e759383236a nds32: fix up stack guard gap
7497f4c91da3 misc: eeprom: at24: Always append device id even if label 
property is set.
8571daace5a6 rbd: always kick acquire on "acquired" and "released" 
notifications
2f3731de5e69 rbd: don't hold lock_rwsem while running_list is being drained
92291fa2d144 hugetlbfs: fix mount mode command line processing
1a25c5738d0c memblock: make for_each_mem_range() traverse MEMBLOCK_HOTPLUG 
regions
0b591c020d28 userfaultfd: do not untag user pointers
fca5343b4892 io_uring: remove double poll entry on arm failure
9eef9029151c io_uring: explicitly count entries for poll reqs
1077e2b15283 selftest: use mmap instead of posix_memalign to allocate memory
6e81e2c38a38 posix-cpu-timers: Fix rearm racing against process tick
3efec3b4b16f bus: mhi: core: Validate channel ID when processing command 
completions
b3f3a58a86c4 ixgbe: Fix packet corruption due to missing DMA sync
e991457afdcb media: ngene: Fix out-of-bounds bug in 
ngene_command_config_free_buf()
755971dc7ee8 btrfs: check for missing device in btrfs_trim_fs
552b053f1a53 tracing: Synthetic event field_pos is an index not a boolean
757bdba8026b tracing: Fix bug in rb_per_cpu_empty() that might cause 
deadloop.
a5e1aff58943 tracing/histogram: Rename "cpu" to "common_cpu"
0edad8b9f65d tracepoints: Update static_call before tp_funcs when adding a 
tracepoint
4ed4074c6c6c firmware/efi: Tell memblock about EFI iomem reservations
647e26b03ee9 usb: typec: stusb160x: register role switch before interrupt 
registration
a206167bd638 usb: dwc2: gadget: Fix sending zero length packet in DDMA mode.
f2c04f6b21ef usb: dwc2: gadget: Fix GOUTNAK flow for Slave mode.
7073acb51a3b usb: gadget: Fix Unbalanced pm_runtime_enable in 
tegra_xudc_probe
1bf7371b9004 USB: serial: cp210x: add ID for CEL EM3588 USB ZigBee stick
45c87a94336f USB: serial: cp210x: fix comments for GE CS1000
f528521c1574 USB: serial: option: add

[OE-core] [hardknott][PATCH 13/28] tar: ignore node-tar CVEs

[Anuj Mittal]

From: Ross Burton 

These two CVEs are specific to the Node package node-tar.

Signed-off-by: Ross Burton 
Signed-off-by: Richard Purdie 
(cherry picked from commit bc7216e8148d0dee7b56e6851da6615e93647a0a)
Signed-off-by: Anuj Mittal 
---
 meta/recipes-extended/tar/tar_1.34.bb | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/meta/recipes-extended/tar/tar_1.34.bb 
b/meta/recipes-extended/tar/tar_1.34.bb
index af04919c41..66c11cbfea 100644
--- a/meta/recipes-extended/tar/tar_1.34.bb
+++ b/meta/recipes-extended/tar/tar_1.34.bb
@@ -61,3 +61,6 @@ PROVIDES_append_class-native = " tar-replacement-native"
 NATIVE_PACKAGE_PATH_SUFFIX = "/${PN}"
 
 BBCLASSEXTEND = "native nativesdk"
+
+# These are both specific to the NPM package node-tar
+CVE_CHECK_WHITELIST += "CVE-2021-32803 CVE-2021-32804"
-- 
2.31.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155239): 
https://lists.openembedded.org/g/openembedded-core/message/155239
Mute This Topic: https://lists.openembedded.org/mt/85114695/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [hardknott][PATCH 12/28] terminal.bbclass: force bash for devshell

[Anuj Mittal]

From: Joe Slater 

Since shell_trap_code in build.py sets /bin/sh as the interpreter
we will die a silent death if our environment contains things like
"export -f bodilyfunction" and /bin/sh is really /bin/dash.

Fixes this for the case of devshell.

Signed-off-by: Joe Slater 
Signed-off-by: Alexandre Belloni 
Signed-off-by: Richard Purdie 
(cherry picked from commit 23d296b3567aa31bad7b2a8558d4bd3e4505843b)
Signed-off-by: Anuj Mittal 
---
 meta/classes/terminal.bbclass | 5 -
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/meta/classes/terminal.bbclass b/meta/classes/terminal.bbclass
index 6059ae95e0..a564ee7494 100644
--- a/meta/classes/terminal.bbclass
+++ b/meta/classes/terminal.bbclass
@@ -26,6 +26,9 @@ def emit_terminal_func(command, envdata, d):
 bb.utils.mkdirhier(os.path.dirname(runfile))
 
 with open(runfile, 'w') as script:
+# Override the shell shell_trap_code specifies.
+# If our shell is bash, we might well face silent death.
+script.write("#!/bin/bash\n")
 script.write(bb.build.shell_trap_code())
 bb.data.emit_func(cmd_func, script, envdata)
 script.write(cmd_func)
@@ -37,7 +40,7 @@ def emit_terminal_func(command, envdata, d):
 def oe_terminal(command, title, d):
 import oe.data
 import oe.terminal
-
+
 envdata = bb.data.init()
 
 for v in os.environ:
-- 
2.31.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155240): 
https://lists.openembedded.org/g/openembedded-core/message/155240
Mute This Topic: https://lists.openembedded.org/mt/85114696/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [hardknott][PATCH 11/28] oeqa/runtime/cases: make date.DateTest.test_date more reliable

[Anuj Mittal]

From: Alexandre Belloni 

The test uses the broken out time and can only handle about 59s of delay,
use a UNIX timestamp to allow for up to a 300s delay.

[YOCTO #14463]

Signed-off-by: Alexandre Belloni 
Signed-off-by: Richard Purdie 
(cherry picked from commit b705e9373acd4119da75af4eb96ec92cc964aa86)
Signed-off-by: Anuj Mittal 
---
 meta/lib/oeqa/runtime/cases/date.py | 9 -
 1 file changed, 4 insertions(+), 5 deletions(-)

diff --git a/meta/lib/oeqa/runtime/cases/date.py 
b/meta/lib/oeqa/runtime/cases/date.py
index e14322911d..bd6537400e 100644
--- a/meta/lib/oeqa/runtime/cases/date.py
+++ b/meta/lib/oeqa/runtime/cases/date.py
@@ -28,14 +28,13 @@ class DateTest(OERuntimeTestCase):
 self.assertEqual(status, 0, msg=msg)
 oldDate = output
 
-sampleDate = '"2016-08-09 10:00:00"'
-(status, output) = self.target.run("date -s %s" % sampleDate)
+sampleTimestamp = 148880
+(status, output) = self.target.run("date -s @%d" % sampleTimestamp)
 self.assertEqual(status, 0, msg='Date set failed, output: %s' % output)
 
-(status, output) = self.target.run("date -R")
-p = re.match('Tue, 09 Aug 2016 10:00:.. \+', output)
+(status, output) = self.target.run('date +"%s"')
 msg = 'The date was not set correctly, output: %s' % output
-self.assertTrue(p, msg=msg)
+self.assertTrue(int(output) - sampleTimestamp < 300, msg=msg)
 
 (status, output) = self.target.run('date -s "%s"' % oldDate)
 msg = 'Failed to reset date, output: %s' % output
-- 
2.31.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155238): 
https://lists.openembedded.org/g/openembedded-core/message/155238
Mute This Topic: https://lists.openembedded.org/mt/85114694/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [hardknott][PATCH 09/28] pixman: re-disable iwmmxt

[Anuj Mittal]

From: Patrick Williams 

Commit dd9c3d042aa5c2ae0fd80b558ec7e9c793ff36f0 dropped the iwmmxt
disable as part of the meson conversion and said: "we can add this
back again if it fails."  It does.

| cc1: warning: switch '-mcpu=arm1176jz-s' conflicts with switch 
'-march=iwmmxt2'
| FAILED: pixman/libpixman-1.so.0.40.0
| lto1: fatal error: target specific builtin not available
| compilation terminated.

Signed-off-by: Patrick Williams 
Change-Id: Ia1278d18543493a3f9eace6c2dd2f84701b9c2b1
Signed-off-by: Richard Purdie 
(cherry picked from commit afa713033a7fc9b7c4ac3d703ea9218b4d775def)
Signed-off-by: Anuj Mittal 
---
 meta/recipes-graphics/xorg-lib/pixman_0.40.0.bb | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/meta/recipes-graphics/xorg-lib/pixman_0.40.0.bb 
b/meta/recipes-graphics/xorg-lib/pixman_0.40.0.bb
index 5a3bb22ec3..00dd68006f 100644
--- a/meta/recipes-graphics/xorg-lib/pixman_0.40.0.bb
+++ b/meta/recipes-graphics/xorg-lib/pixman_0.40.0.bb
@@ -31,5 +31,7 @@ EXTRA_OEMESON = "-Dgtk=disabled -Dlibpng=disabled"
 # ld: pixman/libpixman-mmx.a(pixman-mmx.c.o):
 # linking mips:loongson_2f module with previous mips:isa64 modules 
 EXTRA_OEMESON += "-Dloongson-mmi=disabled"
+# disable iwmmxt due to compile fails on most arm platforms.
+EXTRA_OEMESON += "-Diwmmxt=disabled"
 
 BBCLASSEXTEND = "native nativesdk"
-- 
2.31.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155237): 
https://lists.openembedded.org/g/openembedded-core/message/155237
Mute This Topic: https://lists.openembedded.org/mt/85114692/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [hardknott][PATCH 10/28] kmod: use nonarch_base_libdir for depmod.d and modprobe.d

[Anuj Mittal]

From: Anton Blanchard 

These should always be in /lib, regardless of the configuration.

Signed-off-by: Anton Blanchard 
Signed-off-by: Richard Purdie 
(cherry picked from commit 63877226c09a674d3794fdc171adf12fe604a3c9)
Signed-off-by: Anuj Mittal 
---
 meta/recipes-kernel/kmod/kmod_git.bb | 8 
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/meta/recipes-kernel/kmod/kmod_git.bb 
b/meta/recipes-kernel/kmod/kmod_git.bb
index 4f2b037f2f..f6fe049d92 100644
--- a/meta/recipes-kernel/kmod/kmod_git.bb
+++ b/meta/recipes-kernel/kmod/kmod_git.bb
@@ -24,13 +24,13 @@ do_install_append () {
 lnr ${D}${base_bindir}/kmod ${D}${base_sbindir}/${tool}
 done
 # configuration directories
-install -dm755 ${D}${base_libdir}/depmod.d
-install -dm755 ${D}${base_libdir}/modprobe.d
+install -dm755 ${D}${nonarch_base_libdir}/depmod.d
+install -dm755 ${D}${nonarch_base_libdir}/modprobe.d
 install -dm755 ${D}${sysconfdir}/depmod.d
 install -dm755 ${D}${sysconfdir}/modprobe.d
 
 # install depmod.d file for search/ dir
-install -Dm644 "${WORKDIR}/depmod-search.conf" 
"${D}${base_libdir}/depmod.d/search.conf"
+install -Dm644 "${WORKDIR}/depmod-search.conf" 
"${D}${nonarch_base_libdir}/depmod.d/search.conf"
 }
 
 do_compile_prepend() {
@@ -57,6 +57,6 @@ ALTERNATIVE_LINK_NAME[depmod] = "${base_sbindir}/depmod"
 PACKAGES =+ "libkmod"
 
 FILES_libkmod = "${base_libdir}/libkmod*${SOLIBS} ${libdir}/libkmod*${SOLIBS}"
-FILES_${PN} += "${base_libdir}/depmod.d ${base_libdir}/modprobe.d"
+FILES_${PN} += "${nonarch_base_libdir}/depmod.d 
${nonarch_base_libdir}/modprobe.d"
 
 BBCLASSEXTEND = "nativesdk"
-- 
2.31.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155236): 
https://lists.openembedded.org/g/openembedded-core/message/155236
Mute This Topic: https://lists.openembedded.org/mt/85114691/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [hardknott][PATCH 07/28] linux-firmware: add more Qualcomm firmware packages

[Anuj Mittal]

From: Dmitry Baryshkov 

Add firmware packages for the recent Qualcomm SoCs:

 - linux-firmware-qcom-adreno-a650, linux-firmware-qcom-adreno-a660,
   containing firmware for Adreno A630 and A650 GPUs

 - linux-firmware-qcom-sm8250-audio, linux-firmware-sm8250-compute,
   containing firmware for audio and comute DSPs on SM8250 (QRB5165)

 - linux-firmware-qcom-vpu-1.0, linux-firmware-qcom-vpu-2.0 containing
   firmware for newer Venus video encoder/decoder

Signed-off-by: Dmitry Baryshkov 
Signed-off-by: Richard Purdie 
(cherry picked from commit 31057a9d41a452bdb9e94b4160220f675332ef70)
Signed-off-by: Anuj Mittal 
---
 .../linux-firmware/linux-firmware_20210511.bb   | 17 -
 1 file changed, 16 insertions(+), 1 deletion(-)

diff --git a/meta/recipes-kernel/linux-firmware/linux-firmware_20210511.bb 
b/meta/recipes-kernel/linux-firmware/linux-firmware_20210511.bb
index 26091fba70..513932984e 100644
--- a/meta/recipes-kernel/linux-firmware/linux-firmware_20210511.bb
+++ b/meta/recipes-kernel/linux-firmware/linux-firmware_20210511.bb
@@ -303,8 +303,11 @@ PACKAGES =+ "${PN}-ralink-license ${PN}-ralink \
  ${PN}-qat ${PN}-qat-license \
  ${PN}-qcom-license \
  ${PN}-qcom-venus-1.8 ${PN}-qcom-venus-4.2 ${PN}-qcom-venus-5.2 
${PN}-qcom-venus-5.4 \
- ${PN}-qcom-adreno-a3xx ${PN}-qcom-adreno-a530 
${PN}-qcom-adreno-a630 \
+ ${PN}-qcom-vpu-1.0 ${PN}-qcom-vpu-2.0 \
+ ${PN}-qcom-adreno-a3xx ${PN}-qcom-adreno-a530 \
+ ${PN}-qcom-adreno-a630 ${PN}-qcom-adreno-a650 
${PN}-qcom-adreno-a660 \
  ${PN}-qcom-sdm845-audio ${PN}-qcom-sdm845-compute 
${PN}-qcom-sdm845-modem \
+ ${PN}-qcom-sm8250-audio ${PN}-qcom-sm8250-compute \
  ${PN}-amlogic-vdec-license ${PN}-amlogic-vdec \
  ${PN}-lt9611uxc ${PN}-lontium-license \
  ${PN}-whence-license \
@@ -952,22 +955,34 @@ FILES_${PN}-qcom-venus-1.8 = 
"${nonarch_base_libdir}/firmware/qcom/venus-1.8/*"
 FILES_${PN}-qcom-venus-4.2 = "${nonarch_base_libdir}/firmware/qcom/venus-4.2/*"
 FILES_${PN}-qcom-venus-5.2 = "${nonarch_base_libdir}/firmware/qcom/venus-5.2/*"
 FILES_${PN}-qcom-venus-5.4 = "${nonarch_base_libdir}/firmware/qcom/venus-5.4/*"
+FILES_${PN}-qcom-vpu-1.0 = "${nonarch_base_libdir}/firmware/qcom/vpu-1.0/*"
+FILES_${PN}-qcom-vpu-2.0 = "${nonarch_base_libdir}/firmware/qcom/vpu-2.0/*"
 FILES_${PN}-qcom-adreno-a3xx = "${nonarch_base_libdir}/firmware/qcom/a300_*.fw 
${nonarch_base_libdir}/firmware/a300_*.fw"
 FILES_${PN}-qcom-adreno-a530 = "${nonarch_base_libdir}/firmware/qcom/a530*.*"
 FILES_${PN}-qcom-adreno-a630 = "${nonarch_base_libdir}/firmware/qcom/a630*.* 
${nonarch_base_libdir}/firmware/qcom/sdm845/a630*.*"
+FILES_${PN}-qcom-adreno-a650 = "${nonarch_base_libdir}/firmware/qcom/a650*.* 
${nonarch_base_libdir}/firmware/qcom/sm8250/a650*.*"
+FILES_${PN}-qcom-adreno-a660 = "${nonarch_base_libdir}/firmware/qcom/a660*.*"
 FILES_${PN}-qcom-sdm845-audio = 
"${nonarch_base_libdir}/firmware/qcom/sdm845/adsp*.*"
 FILES_${PN}-qcom-sdm845-compute = 
"${nonarch_base_libdir}/firmware/qcom/sdm845/cdsp*.*"
 FILES_${PN}-qcom-sdm845-modem = 
"${nonarch_base_libdir}/firmware/qcom/sdm845/mba.mbn 
${nonarch_base_libdir}/firmware/qcom/sdm845/modem*.* 
${nonarch_base_libdir}/firmware/qcom/sdm845/wlanmdsp.mbn"
+FILES_${PN}-qcom-sm8250-audio = 
"${nonarch_base_libdir}/firmware/qcom/sm8250/adsp*.*"
+FILES_${PN}-qcom-sm8250-compute = 
"${nonarch_base_libdir}/firmware/qcom/sm8250/cdsp*.*"
 RDEPENDS_${PN}-qcom-venus-1.8 = "${PN}-qcom-license"
 RDEPENDS_${PN}-qcom-venus-4.2 = "${PN}-qcom-license"
 RDEPENDS_${PN}-qcom-venus-5.2 = "${PN}-qcom-license"
 RDEPENDS_${PN}-qcom-venus-5.4 = "${PN}-qcom-license"
+RDEPENDS_${PN}-qcom-vpu-1.0 = "${PN}-qcom-license"
+RDEPENDS_${PN}-qcom-vpu-2.0 = "${PN}-qcom-license"
 RDEPENDS_${PN}-qcom-adreno-a3xx = "${PN}-qcom-license"
 RDEPENDS_${PN}-qcom-adreno-a530 = "${PN}-qcom-license"
 RDEPENDS_${PN}-qcom-adreno-a630 = "${PN}-qcom-license"
+RDEPENDS_${PN}-qcom-adreno-a650 = "${PN}-qcom-license"
+RDEPENDS_${PN}-qcom-adreno-a660 = "${PN}-qcom-license"
 RDEPENDS_${PN}-qcom-sdm845-audio = "${PN}-qcom-license"
 RDEPENDS_${PN}-qcom-sdm845-compute = "${PN}-qcom-license"
 RDEPENDS_${PN}-qcom-sdm845-modem = "${PN}-qcom-license"
+RDEPENDS_${PN}-qcom-sm8250-audio = "${PN}-qcom-license"
+RDEPENDS_${PN}-qcom-sm8250-compute = "${PN}-qcom-license"
 
 FILES_${PN}-liquidio = "${nonarch_base_libdir}/firmware/liquidio"
 
-- 
2.31.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155234): 
https://lists.openembedded.org/g/openembedded-core/message/155234
Mute This Topic: https://lists.openembedded.org/mt/85114688/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [hardknott][PATCH 08/28] sstate.bbclass: fix error handling when sstate mirrors is ro

[Anuj Mittal]

From: Jose Quaresma 

The commit dd37fc35c5f934af09d601d70772eb5955ae
'sstate.bbclass: fix errors about read-only sstate mirrors'
adds an additional exception handler to silently mask read
only rootfs errors thrown during the touch.

The exception handler checks the error type with the python module errno
but this module needs to be imported as it don't exist.

Example of the error:

File: 'exec_python_func() autogenerated', lineno: 2, function: 
 0001:
 *** 0002:sstate_task_postfunc(d)
 0003:
File: '/home/builder/src/base/poky/meta/classes/sstate.bbclass', lineno: 778, 
function: sstate_task_postfunc
 0774:
 0775:omask = os.umask(0o002)
 0776:if omask != 0o002:
 0777:   bb.note("Using umask 0o002 (not %0o) for sstate packaging" % 
omask)
 *** 0778:sstate_package(shared_state, d)
 0779:os.umask(omask)
 0780:
 0781:sstateinst = d.getVar("SSTATE_INSTDIR")
 0782:d.setVar('SSTATE_FIXMEDIR', shared_state['fixmedir'])
File: '/home/builder/src/base/poky/meta/classes/sstate.bbclass', lineno: 708, 
function: sstate_package
 0704:except PermissionError:
 0705:pass
 0706:except OSError as e:
 0707:# Handle read-only file systems gracefully
 *** 0708:if e.errno != errno.EROFS:
 0709:raise e
 0710:
 0711:return
 0712:
Exception: NameError: name 'errno' is not defined

Signed-off-by: Jose Quaresma 
Signed-off-by: Richard Purdie 
(cherry picked from commit 15f30ad144fbe25e9a5e71bc7e42e746d2039992)
Signed-off-by: Anuj Mittal 
---
 meta/classes/sstate.bbclass | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/meta/classes/sstate.bbclass b/meta/classes/sstate.bbclass
index 5c7a98839f..4bf087b4e8 100644
--- a/meta/classes/sstate.bbclass
+++ b/meta/classes/sstate.bbclass
@@ -705,6 +705,7 @@ def sstate_package(ss, d):
 pass
 except OSError as e:
 # Handle read-only file systems gracefully
+import errno
 if e.errno != errno.EROFS:
 raise e
 
@@ -1152,6 +1153,7 @@ python sstate_eventhandler() {
 pass
 except OSError as e:
 # Handle read-only file systems gracefully
+import errno
 if e.errno != errno.EROFS:
 raise e
 
-- 
2.31.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155235): 
https://lists.openembedded.org/g/openembedded-core/message/155235
Mute This Topic: https://lists.openembedded.org/mt/85114690/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [hardknott][PATCH 05/28] ffmpeg: fix CVE-2020-22019 and CVE-2020-22033

[Anuj Mittal]

From: Tony Tascioglu 

avfilter/vf_vmafmotion: Check dimensions

Fixes: out of array access
Fixes: Ticket8241
Fixes: Ticket8246
Fixes: CVE-2020-22019
Fixes: CVE-2020-22033

Signed-off-by: Michael Niedermayer 

CVE: CVE-2020-22033
CVE: CVE-2020-22019
Upstream-Status: Backport [82ad1b76751bcfad5005440db48c46a4de5d6f02]

Signed-off-by: Tony Tascioglu 
Signed-off-by: Anuj Mittal 
---
 .../fix-CVE-2020-22033-CVE-2020-22019.patch   | 39 +++
 .../recipes-multimedia/ffmpeg/ffmpeg_4.3.2.bb |  1 +
 2 files changed, 40 insertions(+)
 create mode 100644 
meta/recipes-multimedia/ffmpeg/ffmpeg/fix-CVE-2020-22033-CVE-2020-22019.patch

diff --git 
a/meta/recipes-multimedia/ffmpeg/ffmpeg/fix-CVE-2020-22033-CVE-2020-22019.patch 
b/meta/recipes-multimedia/ffmpeg/ffmpeg/fix-CVE-2020-22033-CVE-2020-22019.patch
new file mode 100644
index 00..e98ddaaede
--- /dev/null
+++ 
b/meta/recipes-multimedia/ffmpeg/ffmpeg/fix-CVE-2020-22033-CVE-2020-22019.patch
@@ -0,0 +1,39 @@
+From 2f3bf456fa641edf154a99c4586d7bf52c02a495 Mon Sep 17 00:00:00 2001
+From: Michael Niedermayer 
+Date: Sat, 29 May 2021 09:58:31 +0200
+Subject: [PATCH 5/5] avfilter/vf_vmafmotion: Check dimensions
+
+Fixes: out of array access
+Fixes: Ticket8241
+Fixes: Ticket8246
+Fixes: CVE-2020-22019
+Fixes: CVE-2020-22033
+
+Signed-off-by: Michael Niedermayer 
+
+CVE: CVE-2020-22033
+CVE: CVE-2020-22019
+Upstream-Status: Backport [82ad1b76751bcfad5005440db48c46a4de5d6f02]
+
+Signed-off-by: Tony Tascioglu 
+---
+ libavfilter/vf_vmafmotion.c | 3 +++
+ 1 file changed, 3 insertions(+)
+
+diff --git a/libavfilter/vf_vmafmotion.c b/libavfilter/vf_vmafmotion.c
+index 88d0b35095..0730147e7d 100644
+--- a/libavfilter/vf_vmafmotion.c
 b/libavfilter/vf_vmafmotion.c
+@@ -238,6 +238,9 @@ int ff_vmafmotion_init(VMAFMotionData *s,
+ int i;
+ const AVPixFmtDescriptor *desc = av_pix_fmt_desc_get(fmt);
+ 
++if (w < 3 || h < 3)
++return AVERROR(EINVAL);
++
+ s->width = w;
+ s->height = h;
+ s->stride = FFALIGN(w * sizeof(uint16_t), 32);
+-- 
+2.32.0
+
diff --git a/meta/recipes-multimedia/ffmpeg/ffmpeg_4.3.2.bb 
b/meta/recipes-multimedia/ffmpeg/ffmpeg_4.3.2.bb
index e68589d4c3..0a49493abd 100644
--- a/meta/recipes-multimedia/ffmpeg/ffmpeg_4.3.2.bb
+++ b/meta/recipes-multimedia/ffmpeg/ffmpeg_4.3.2.bb
@@ -30,6 +30,7 @@ SRC_URI = "https://www.ffmpeg.org/releases/${BP}.tar.xz \
file://fix-CVE-2020-20453.patch \
file://fix-CVE-2020-22015.patch \
file://fix-CVE-2020-22021.patch \
+   file://fix-CVE-2020-22033-CVE-2020-22019.patch \
"
 SRC_URI[sha256sum] = 
"46e4e64f1dd0233cbc0934b9f1c0da676008cad34725113fb7f802cfa84ccddb"
 
-- 
2.31.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155232): 
https://lists.openembedded.org/g/openembedded-core/message/155232
Mute This Topic: https://lists.openembedded.org/mt/85114686/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [hardknott][PATCH 06/28] go: upgrade 1.16.5 -> 1.16.7

[Anuj Mittal]

From: Sakib Sajal 

Signed-off-by: Sakib Sajal 
Signed-off-by: Anuj Mittal 
---
 meta/recipes-devtools/go/{go-1.16.5.inc => go-1.16.7.inc} | 4 ++--
 ...{go-binary-native_1.16.5.bb => go-binary-native_1.16.7.bb} | 4 ++--
 ...o-cross-canadian_1.16.5.bb => go-cross-canadian_1.16.7.bb} | 0
 .../go/{go-cross_1.16.5.bb => go-cross_1.16.7.bb} | 0
 .../go/{go-crosssdk_1.16.5.bb => go-crosssdk_1.16.7.bb}   | 0
 .../go/{go-native_1.16.5.bb => go-native_1.16.7.bb}   | 0
 .../go/{go-runtime_1.16.5.bb => go-runtime_1.16.7.bb} | 0
 meta/recipes-devtools/go/{go_1.16.5.bb => go_1.16.7.bb}   | 0
 8 files changed, 4 insertions(+), 4 deletions(-)
 rename meta/recipes-devtools/go/{go-1.16.5.inc => go-1.16.7.inc} (89%)
 rename meta/recipes-devtools/go/{go-binary-native_1.16.5.bb => 
go-binary-native_1.16.7.bb} (83%)
 rename meta/recipes-devtools/go/{go-cross-canadian_1.16.5.bb => 
go-cross-canadian_1.16.7.bb} (100%)
 rename meta/recipes-devtools/go/{go-cross_1.16.5.bb => go-cross_1.16.7.bb} 
(100%)
 rename meta/recipes-devtools/go/{go-crosssdk_1.16.5.bb => 
go-crosssdk_1.16.7.bb} (100%)
 rename meta/recipes-devtools/go/{go-native_1.16.5.bb => go-native_1.16.7.bb} 
(100%)
 rename meta/recipes-devtools/go/{go-runtime_1.16.5.bb => go-runtime_1.16.7.bb} 
(100%)
 rename meta/recipes-devtools/go/{go_1.16.5.bb => go_1.16.7.bb} (100%)

diff --git a/meta/recipes-devtools/go/go-1.16.5.inc 
b/meta/recipes-devtools/go/go-1.16.7.inc
similarity index 89%
rename from meta/recipes-devtools/go/go-1.16.5.inc
rename to meta/recipes-devtools/go/go-1.16.7.inc
index b693315917..ed2d94671b 100644
--- a/meta/recipes-devtools/go/go-1.16.5.inc
+++ b/meta/recipes-devtools/go/go-1.16.7.inc
@@ -1,7 +1,7 @@
 require go-common.inc
 
 GO_BASEVERSION = "1.16"
-PV = "1.16.5"
+PV = "1.16.7"
 FILESEXTRAPATHS_prepend := "${FILE_DIRNAME}/go-${GO_BASEVERSION}:"
 
 LIC_FILES_CHKSUM = "file://LICENSE;md5=5d4950ecb7b26d2c5e4e7b4e0dd74707"
@@ -18,4 +18,4 @@ SRC_URI += "\
 file://0009-Revert-cmd-go-make-sure-CC-and-CXX-are-absolute.patch \
 file://0001-encoding-xml-handle-leading-trailing-or-double-colon.patch \
 "
-SRC_URI[main.sha256sum] = 
"7bfa7e5908c7cc9e75da5ddf3066d7cbcf3fd9fa51945851325eebc17f50ba80"
+SRC_URI[main.sha256sum] = 
"1a9f2894d3d878729f7045072f30becebe243524cf2fce4e0a7b248b1e0654ac"
diff --git a/meta/recipes-devtools/go/go-binary-native_1.16.5.bb 
b/meta/recipes-devtools/go/go-binary-native_1.16.7.bb
similarity index 83%
rename from meta/recipes-devtools/go/go-binary-native_1.16.5.bb
rename to meta/recipes-devtools/go/go-binary-native_1.16.7.bb
index b3e2b6a60e..cb54c2868e 100644
--- a/meta/recipes-devtools/go/go-binary-native_1.16.5.bb
+++ b/meta/recipes-devtools/go/go-binary-native_1.16.7.bb
@@ -8,8 +8,8 @@ LIC_FILES_CHKSUM = 
"file://LICENSE;md5=5d4950ecb7b26d2c5e4e7b4e0dd74707"
 PROVIDES = "go-native"
 
 SRC_URI = 
"https://dl.google.com/go/go${PV}.${BUILD_GOOS}-${BUILD_GOARCH}.tar.gz;name=go_${BUILD_GOTUPLE}";
-SRC_URI[go_linux_amd64.sha256sum] = 
"b12c23023b68de22f74c0524f10b753e7b08b1504cb7e417eccebdd3fae49061"
-SRC_URI[go_linux_arm64.sha256sum] = 
"d5446b46ef6f36fdffa852f73dfbbe78c1ddf010b99fa4964944b9ae8b4d6799"
+SRC_URI[go_linux_amd64.sha256sum] = 
"7fe7a73f55ba3e2285da36f8b085e5c0159e9564ef5f63ee0ed6b818ade8ef04"
+SRC_URI[go_linux_arm64.sha256sum] = 
"63d6b53ecbd2b05c1f0e9903c92042663f2f68afdbb67f4d0d12700156869bac"
 
 UPSTREAM_CHECK_URI = "https://golang.org/dl/";
 UPSTREAM_CHECK_REGEX = "go(?P\d+(\.\d+)+)\.linux"
diff --git a/meta/recipes-devtools/go/go-cross-canadian_1.16.5.bb 
b/meta/recipes-devtools/go/go-cross-canadian_1.16.7.bb
similarity index 100%
rename from meta/recipes-devtools/go/go-cross-canadian_1.16.5.bb
rename to meta/recipes-devtools/go/go-cross-canadian_1.16.7.bb
diff --git a/meta/recipes-devtools/go/go-cross_1.16.5.bb 
b/meta/recipes-devtools/go/go-cross_1.16.7.bb
similarity index 100%
rename from meta/recipes-devtools/go/go-cross_1.16.5.bb
rename to meta/recipes-devtools/go/go-cross_1.16.7.bb
diff --git a/meta/recipes-devtools/go/go-crosssdk_1.16.5.bb 
b/meta/recipes-devtools/go/go-crosssdk_1.16.7.bb
similarity index 100%
rename from meta/recipes-devtools/go/go-crosssdk_1.16.5.bb
rename to meta/recipes-devtools/go/go-crosssdk_1.16.7.bb
diff --git a/meta/recipes-devtools/go/go-native_1.16.5.bb 
b/meta/recipes-devtools/go/go-native_1.16.7.bb
similarity index 100%
rename from meta/recipes-devtools/go/go-native_1.16.5.bb
rename to meta/recipes-devtools/go/go-native_1.16.7.bb
diff --git a/meta/recipes-devtools/go/go-runtime_1.16.5.bb 
b/meta/recipes-devtools/go/go-runtime_1.16.7.bb
similarity index 100%
rename from meta/recipes-devtools/go/go-runtime_1.16.5.bb
rename to meta/recipes-devtools/go/go-runtime_1.16.7.bb
diff --git a/meta/recipes-devtools/go/go_1.16.5.bb 
b/meta/recipes-devtools/go/go_1.16.7.bb
similarity index 100%
rename from meta/recipes-devtools/go/go_1.16.5.bb
rename to meta/recipes-devtools/go/go_1.16.7.bb
-- 
2.31.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive

[OE-core] [hardknott][PATCH 03/28] ffmpeg: fix CVE-2020-22015

[Anuj Mittal]

From: Tony Tascioglu 

avformat/movenc: Check pal_size before use

Fixes: assertion failure
Fixes: out of array read
Fixes: Ticket8190
Fixes: CVE-2020-22015

Signed-off-by: Michael Niedermayer 

CVE: CVE-2020-22015
Upstream-Status: Backport [4c1afa292520329eecd1cc7631bc59a8cca95c46]

Signed-off-by: Tony Tascioglu 
Signed-off-by: Anuj Mittal 
---
 .../ffmpeg/ffmpeg/fix-CVE-2020-22015.patch| 44 +++
 .../recipes-multimedia/ffmpeg/ffmpeg_4.3.2.bb |  1 +
 2 files changed, 45 insertions(+)
 create mode 100644 
meta/recipes-multimedia/ffmpeg/ffmpeg/fix-CVE-2020-22015.patch

diff --git a/meta/recipes-multimedia/ffmpeg/ffmpeg/fix-CVE-2020-22015.patch 
b/meta/recipes-multimedia/ffmpeg/ffmpeg/fix-CVE-2020-22015.patch
new file mode 100644
index 00..1fdb31de7d
--- /dev/null
+++ b/meta/recipes-multimedia/ffmpeg/ffmpeg/fix-CVE-2020-22015.patch
@@ -0,0 +1,44 @@
+From dce5d2c2ee991f8cd96ab74d51a2d1a134a1a645 Mon Sep 17 00:00:00 2001
+From: Michael Niedermayer 
+Date: Sat, 29 May 2021 09:22:27 +0200
+Subject: [PATCH 3/5] avformat/movenc: Check pal_size before use
+
+Fixes: assertion failure
+Fixes: out of array read
+Fixes: Ticket8190
+Fixes: CVE-2020-22015
+
+Signed-off-by: Michael Niedermayer 
+
+
+CVE: CVE-2020-22015
+Upstream-Status: Backport [4c1afa292520329eecd1cc7631bc59a8cca95c46]
+
+Signed-off-by: Tony Tascioglu 
+---
+ libavformat/movenc.c | 6 --
+ 1 file changed, 4 insertions(+), 2 deletions(-)
+
+diff --git a/libavformat/movenc.c b/libavformat/movenc.c
+index c34d86522a..9603704083 100644
+--- a/libavformat/movenc.c
 b/libavformat/movenc.c
+@@ -2094,11 +2094,13 @@ static int mov_write_video_tag(AVFormatContext *s, 
AVIOContext *pb, MOVMuxContex
+ avio_wb16(pb, 0x18); /* Reserved */
+ 
+ if (track->mode == MODE_MOV && track->par->format == AV_PIX_FMT_PAL8) {
+-int pal_size = 1 << track->par->bits_per_coded_sample;
+-int i;
++int pal_size, i;
+ avio_wb16(pb, 0); /* Color table ID */
+ avio_wb32(pb, 0); /* Color table seed */
+ avio_wb16(pb, 0x8000);/* Color table flags */
++if (track->par->bits_per_coded_sample < 0 || 
track->par->bits_per_coded_sample > 8)
++return AVERROR(EINVAL);
++pal_size = 1 << track->par->bits_per_coded_sample;
+ avio_wb16(pb, pal_size - 1);  /* Color table size (zero-relative) */
+ for (i = 0; i < pal_size; i++) {
+ uint32_t rgb = track->palette[i];
+-- 
+2.32.0
+
diff --git a/meta/recipes-multimedia/ffmpeg/ffmpeg_4.3.2.bb 
b/meta/recipes-multimedia/ffmpeg/ffmpeg_4.3.2.bb
index 3917ad9c2c..c9c82b0398 100644
--- a/meta/recipes-multimedia/ffmpeg/ffmpeg_4.3.2.bb
+++ b/meta/recipes-multimedia/ffmpeg/ffmpeg_4.3.2.bb
@@ -28,6 +28,7 @@ SRC_URI = "https://www.ffmpeg.org/releases/${BP}.tar.xz \

file://0001-libavutil-include-assembly-with-full-path-from-sourc.patch \
file://fix-CVE-2020-20446.patch \
file://fix-CVE-2020-20453.patch \
+   file://fix-CVE-2020-22015.patch \
"
 SRC_URI[sha256sum] = 
"46e4e64f1dd0233cbc0934b9f1c0da676008cad34725113fb7f802cfa84ccddb"
 
-- 
2.31.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155230): 
https://lists.openembedded.org/g/openembedded-core/message/155230
Mute This Topic: https://lists.openembedded.org/mt/85114684/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [hardknott][PATCH 04/28] ffmpeg: fix CVE-2020-22021

[Anuj Mittal]

From: Tony Tascioglu 

avfilter/vf_yadif: Fix handing of tiny images

Fixes: out of array access
Fixes: Ticket8240
Fixes: CVE-2020-22021

Signed-off-by: Michael Niedermayer 

CVE: CVE-2020-22021
Upstream-Status: Backport [7971f62120a55c141ec437aa3f0bacc1c1a3526b]

Signed-off-by: Tony Tascioglu 
Signed-off-by: Anuj Mittal 
---
 .../ffmpeg/ffmpeg/fix-CVE-2020-22021.patch| 87 +++
 .../recipes-multimedia/ffmpeg/ffmpeg_4.3.2.bb |  1 +
 2 files changed, 88 insertions(+)
 create mode 100644 
meta/recipes-multimedia/ffmpeg/ffmpeg/fix-CVE-2020-22021.patch

diff --git a/meta/recipes-multimedia/ffmpeg/ffmpeg/fix-CVE-2020-22021.patch 
b/meta/recipes-multimedia/ffmpeg/ffmpeg/fix-CVE-2020-22021.patch
new file mode 100644
index 00..05cba736ff
--- /dev/null
+++ b/meta/recipes-multimedia/ffmpeg/ffmpeg/fix-CVE-2020-22021.patch
@@ -0,0 +1,87 @@
+From 384177ca945395c8cf0ebbddd4b8b1eae64e900f Mon Sep 17 00:00:00 2001
+From: Michael Niedermayer 
+Date: Sat, 29 May 2021 11:17:35 +0200
+Subject: [PATCH 4/5] avfilter/vf_yadif: Fix handing of tiny images
+
+Fixes: out of array access
+Fixes: Ticket8240
+Fixes: CVE-2020-22021
+
+Signed-off-by: Michael Niedermayer 
+
+CVE: CVE-2020-22021
+Upstream-Status: Backport [7971f62120a55c141ec437aa3f0bacc1c1a3526b]
+
+Signed-off-by: Tony Tascioglu 
+---
+ libavfilter/vf_yadif.c | 32 ++--
+ 1 file changed, 18 insertions(+), 14 deletions(-)
+
+diff --git a/libavfilter/vf_yadif.c b/libavfilter/vf_yadif.c
+index 43dea67add..06fd24ecfa 100644
+--- a/libavfilter/vf_yadif.c
 b/libavfilter/vf_yadif.c
+@@ -123,20 +123,22 @@ static void filter_edges(void *dst1, void *prev1, void 
*cur1, void *next1,
+ uint8_t *next2 = parity ? cur  : next;
+ 
+ const int edge = MAX_ALIGN - 1;
++int offset = FFMAX(w - edge, 3);
+ 
+ /* Only edge pixels need to be processed here.  A constant value of false
+  * for is_not_edge should let the compiler ignore the whole branch. */
+-FILTER(0, 3, 0)
++FILTER(0, FFMIN(3, w), 0)
+ 
+-dst  = (uint8_t*)dst1  + w - edge;
+-prev = (uint8_t*)prev1 + w - edge;
+-cur  = (uint8_t*)cur1  + w - edge;
+-next = (uint8_t*)next1 + w - edge;
++dst  = (uint8_t*)dst1  + offset;
++prev = (uint8_t*)prev1 + offset;
++cur  = (uint8_t*)cur1  + offset;
++next = (uint8_t*)next1 + offset;
+ prev2 = (uint8_t*)(parity ? prev : cur);
+ next2 = (uint8_t*)(parity ? cur  : next);
+ 
+-FILTER(w - edge, w - 3, 1)
+-FILTER(w - 3, w, 0)
++FILTER(offset, w - 3, 1)
++offset = FFMAX(offset, w - 3);
++FILTER(offset, w, 0)
+ }
+ 
+ 
+@@ -170,21 +172,23 @@ static void filter_edges_16bit(void *dst1, void *prev1, 
void *cur1, void *next1,
+ uint16_t *next2 = parity ? cur  : next;
+ 
+ const int edge = MAX_ALIGN / 2 - 1;
++int offset = FFMAX(w - edge, 3);
+ 
+ mrefs /= 2;
+ prefs /= 2;
+ 
+-FILTER(0, 3, 0)
++FILTER(0,  FFMIN(3, w), 0)
+ 
+-dst   = (uint16_t*)dst1  + w - edge;
+-prev  = (uint16_t*)prev1 + w - edge;
+-cur   = (uint16_t*)cur1  + w - edge;
+-next  = (uint16_t*)next1 + w - edge;
++dst   = (uint16_t*)dst1  + offset;
++prev  = (uint16_t*)prev1 + offset;
++cur   = (uint16_t*)cur1  + offset;
++next  = (uint16_t*)next1 + offset;
+ prev2 = (uint16_t*)(parity ? prev : cur);
+ next2 = (uint16_t*)(parity ? cur  : next);
+ 
+-FILTER(w - edge, w - 3, 1)
+-FILTER(w - 3, w, 0)
++FILTER(offset, w - 3, 1)
++offset = FFMAX(offset, w - 3);
++FILTER(offset, w, 0)
+ }
+ 
+ static int filter_slice(AVFilterContext *ctx, void *arg, int jobnr, int 
nb_jobs)
+-- 
+2.32.0
+
diff --git a/meta/recipes-multimedia/ffmpeg/ffmpeg_4.3.2.bb 
b/meta/recipes-multimedia/ffmpeg/ffmpeg_4.3.2.bb
index c9c82b0398..e68589d4c3 100644
--- a/meta/recipes-multimedia/ffmpeg/ffmpeg_4.3.2.bb
+++ b/meta/recipes-multimedia/ffmpeg/ffmpeg_4.3.2.bb
@@ -29,6 +29,7 @@ SRC_URI = "https://www.ffmpeg.org/releases/${BP}.tar.xz \
file://fix-CVE-2020-20446.patch \
file://fix-CVE-2020-20453.patch \
file://fix-CVE-2020-22015.patch \
+   file://fix-CVE-2020-22021.patch \
"
 SRC_URI[sha256sum] = 
"46e4e64f1dd0233cbc0934b9f1c0da676008cad34725113fb7f802cfa84ccddb"
 
-- 
2.31.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155231): 
https://lists.openembedded.org/g/openembedded-core/message/155231
Mute This Topic: https://lists.openembedded.org/mt/85114685/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [hardknott][PATCH 01/28] ffmpeg: fix CVE-2020-20446

[Anuj Mittal]

From: Tony Tascioglu 

avcodec/aacpsy: Avoid floating point division by 0 of norm_fac

Fixes: Ticket7995
Fixes: CVE-2020-20446

Signed-off-by: Michael Niedermayer 

CVE: CVE-2020-20446
Upstream-Status: Backport [223b5e8ac9f6461bb13ed365419ec485c5b2b002]

Signed-off-by: Tony Tascioglu 
Signed-off-by: Anuj Mittal 
---
 .../ffmpeg/ffmpeg/fix-CVE-2020-20446.patch| 35 +++
 .../recipes-multimedia/ffmpeg/ffmpeg_4.3.2.bb |  1 +
 2 files changed, 36 insertions(+)
 create mode 100644 
meta/recipes-multimedia/ffmpeg/ffmpeg/fix-CVE-2020-20446.patch

diff --git a/meta/recipes-multimedia/ffmpeg/ffmpeg/fix-CVE-2020-20446.patch 
b/meta/recipes-multimedia/ffmpeg/ffmpeg/fix-CVE-2020-20446.patch
new file mode 100644
index 00..4fe80cffa1
--- /dev/null
+++ b/meta/recipes-multimedia/ffmpeg/ffmpeg/fix-CVE-2020-20446.patch
@@ -0,0 +1,35 @@
+From 073bad2fcae5be78c11a1623a20319107dfae9f8 Mon Sep 17 00:00:00 2001
+From: Michael Niedermayer 
+Date: Fri, 28 May 2021 20:18:25 +0200
+Subject: [PATCH 1/5] avcodec/aacpsy: Avoid floating point division by 0 of
+ norm_fac
+
+Fixes: Ticket7995
+Fixes: CVE-2020-20446
+
+Signed-off-by: Michael Niedermayer 
+
+CVE: CVE-2020-20446
+Upstream-Status: Backport [223b5e8ac9f6461bb13ed365419ec485c5b2b002]
+
+Signed-off-by: Tony Tascioglu 
+---
+ libavcodec/aacpsy.c | 2 +-
+ 1 file changed, 1 insertion(+), 1 deletion(-)
+
+diff --git a/libavcodec/aacpsy.c b/libavcodec/aacpsy.c
+index fca692cb15..bd444fecdc 100644
+--- a/libavcodec/aacpsy.c
 b/libavcodec/aacpsy.c
+@@ -794,7 +794,7 @@ static void psy_3gpp_analyze_channel(FFPsyContext *ctx, 
int channel,
+ 
+ if (pe < 1.15f * desired_pe) {
+ /* 6.6.1.3.6 "Final threshold modification by linearization" */
+-norm_fac = 1.0f / norm_fac;
++norm_fac = norm_fac ? 1.0f / norm_fac : 0;
+ for (w = 0; w < wi->num_windows*16; w += 16) {
+ for (g = 0; g < num_bands; g++) {
+ AacPsyBand *band = &pch->band[w+g];
+-- 
+2.32.0
+
diff --git a/meta/recipes-multimedia/ffmpeg/ffmpeg_4.3.2.bb 
b/meta/recipes-multimedia/ffmpeg/ffmpeg_4.3.2.bb
index 08be38ca50..b4fbebe414 100644
--- a/meta/recipes-multimedia/ffmpeg/ffmpeg_4.3.2.bb
+++ b/meta/recipes-multimedia/ffmpeg/ffmpeg_4.3.2.bb
@@ -26,6 +26,7 @@ LIC_FILES_CHKSUM = 
"file://COPYING.GPLv2;md5=b234ee4d69f5fce4486a80fdaf4a4263 \
 SRC_URI = "https://www.ffmpeg.org/releases/${BP}.tar.xz \
file://mips64_cpu_detection.patch \

file://0001-libavutil-include-assembly-with-full-path-from-sourc.patch \
+   file://fix-CVE-2020-20446.patch \
"
 SRC_URI[sha256sum] = 
"46e4e64f1dd0233cbc0934b9f1c0da676008cad34725113fb7f802cfa84ccddb"
 
-- 
2.31.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155229): 
https://lists.openembedded.org/g/openembedded-core/message/155229
Mute This Topic: https://lists.openembedded.org/mt/85114683/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [hardknott][PATCH 02/28] ffmpeg: fix CVE-2020-20453

[Anuj Mittal]

From: Tony Tascioglu 

avcodec/aacenc: Avoid 0 lambda

Fixes: Ticket8003
Fixes: CVE-2020-20453

Signed-off-by: Michael Niedermayer 

CVE: CVE-2020-20453
Upstream-Status: Backport [a7a7f32c8ad0179a1a85d0a8cff35924e6d90be8]

Signed-off-by: Tony Tascioglu 
Signed-off-by: Anuj Mittal 
---
 .../ffmpeg/ffmpeg/fix-CVE-2020-20453.patch| 42 +++
 .../recipes-multimedia/ffmpeg/ffmpeg_4.3.2.bb |  1 +
 2 files changed, 43 insertions(+)
 create mode 100644 
meta/recipes-multimedia/ffmpeg/ffmpeg/fix-CVE-2020-20453.patch

diff --git a/meta/recipes-multimedia/ffmpeg/ffmpeg/fix-CVE-2020-20453.patch 
b/meta/recipes-multimedia/ffmpeg/ffmpeg/fix-CVE-2020-20453.patch
new file mode 100644
index 00..4e430726b0
--- /dev/null
+++ b/meta/recipes-multimedia/ffmpeg/ffmpeg/fix-CVE-2020-20453.patch
@@ -0,0 +1,42 @@
+From 80f9cbee46757430af0769ec999ca702be652f7f Mon Sep 17 00:00:00 2001
+From: Michael Niedermayer 
+Date: Fri, 28 May 2021 21:37:26 +0200
+Subject: [PATCH 2/5] avcodec/aacenc: Avoid 0 lambda
+
+Fixes: Ticket8003
+Fixes: CVE-2020-20453
+
+Signed-off-by: Michael Niedermayer 
+
+CVE: CVE-2020-20453
+Upstream-Status: Backport [a7a7f32c8ad0179a1a85d0a8cff35924e6d90be8]
+
+Signed-off-by: Tony Tascioglu 
+---
+ libavcodec/aacenc.c | 3 ++-
+ 1 file changed, 2 insertions(+), 1 deletion(-)
+
+diff --git a/libavcodec/aacenc.c b/libavcodec/aacenc.c
+index db11e0ca29..9c6cb75be4 100644
+--- a/libavcodec/aacenc.c
 b/libavcodec/aacenc.c
+@@ -28,6 +28,7 @@
+  *  TODOs:
+  * add sane pulse detection
+  ***/
++#include 
+ 
+ #include "libavutil/libm.h"
+ #include "libavutil/thread.h"
+@@ -856,7 +857,7 @@ static int aac_encode_frame(AVCodecContext *avctx, 
AVPacket *avpkt,
+ /* Not so fast though */
+ ratio = sqrtf(ratio);
+ }
+-s->lambda = FFMIN(s->lambda * ratio, 65536.f);
++s->lambda = av_clipf(s->lambda * ratio, FLT_MIN, 65536.f);
+ 
+ /* Keep iterating if we must reduce and lambda is in the sky */
+ if (ratio > 0.9f && ratio < 1.1f) {
+-- 
+2.32.0
+
diff --git a/meta/recipes-multimedia/ffmpeg/ffmpeg_4.3.2.bb 
b/meta/recipes-multimedia/ffmpeg/ffmpeg_4.3.2.bb
index b4fbebe414..3917ad9c2c 100644
--- a/meta/recipes-multimedia/ffmpeg/ffmpeg_4.3.2.bb
+++ b/meta/recipes-multimedia/ffmpeg/ffmpeg_4.3.2.bb
@@ -27,6 +27,7 @@ SRC_URI = "https://www.ffmpeg.org/releases/${BP}.tar.xz \
file://mips64_cpu_detection.patch \

file://0001-libavutil-include-assembly-with-full-path-from-sourc.patch \
file://fix-CVE-2020-20446.patch \
+   file://fix-CVE-2020-20453.patch \
"
 SRC_URI[sha256sum] = 
"46e4e64f1dd0233cbc0934b9f1c0da676008cad34725113fb7f802cfa84ccddb"
 
-- 
2.31.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155228): 
https://lists.openembedded.org/g/openembedded-core/message/155228
Mute This Topic: https://lists.openembedded.org/mt/85114682/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [hardknott][PATCH 00/28] Review request

[Anuj Mittal]

Please review these next set of changes for hardknott. Except for a
ptest failure in valgrind, no issues seen on autobuilder.

https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/2496

Thanks,

Anuj

The following changes since commit 01321ed982a8553672808afe2d9c1bee6628055d:

  gnutls: upgrade 3.7.1 -> 3.7.2 (2021-08-11 16:39:03 +0800)

are available in the Git repository at:

  git://push.openembedded.org/openembedded-core-contrib anujm/hardknott

Alexandre Belloni (1):
  oeqa/runtime/cases: make date.DateTest.test_date more reliable

Anton Blanchard (1):
  kmod: use nonarch_base_libdir for depmod.d and modprobe.d

Bruce Ashfield (6):
  linux-yocto/5.10: update to v5.10.55
  linux-yocto/5.4: update to v5.4.137
  linux-yocto/5.4: update to v5.4.139
  linux-yocto/5.10: update to v5.10.57
  kernel-devsrc: 5.14+ updates
  kernel-devsrc: fix 5.14+ objtool compilation

Dmitry Baryshkov (1):
  linux-firmware: add more Qualcomm firmware packages

Joe Slater (1):
  terminal.bbclass: force bash for devshell

Jose Quaresma (1):
  sstate.bbclass: fix error handling when sstate mirrors is ro

Khem Raj (1):
  sdk: Enable do_populate_sdk with multilibs

Marta Rybczynska (1):
  lzo: add CVE_PRODUCT

Michael Halstead (1):
  uninative: Upgrade to 3.3, support glibc 2.34

Oleksandr Popovych (1):
  utils: Reduce the number of calls to the "dirname" command

Patrick Williams (1):
  pixman: re-disable iwmmxt

Ross Burton (4):
  tar: ignore node-tar CVEs
  uninative: Improve glob to handle glibc 2.34
  e2fsprogs: ensure small images have 256-byte inodes
  wic: don't forcibly pass -T default

Sakib Sajal (1):
  go: upgrade 1.16.5 -> 1.16.7

Tony Tascioglu (5):
  ffmpeg: fix CVE-2020-20446
  ffmpeg: fix CVE-2020-20453
  ffmpeg: fix CVE-2020-22015
  ffmpeg: fix CVE-2020-22021
  ffmpeg: fix CVE-2020-22019 and CVE-2020-22033

Vinay Kumar (1):
  glibc: Fix CVE-2021-38604

hongxu (1):
  sdk: fix relocate symlink failed

 meta/classes/multilib.bbclass |   1 -
 meta/classes/populate_sdk_base.bbclass|   2 +-
 meta/classes/sstate.bbclass   |   2 +
 meta/classes/terminal.bbclass |   5 +-
 meta/classes/uninative.bbclass|   2 +-
 meta/classes/utils.bbclass|   2 +-
 meta/conf/distro/include/yocto-uninative.inc  |  10 +-
 meta/files/toolchain-shar-relocate.sh |   2 +-
 meta/lib/oeqa/runtime/cases/date.py   |   9 +-
 .../glibc/glibc/0001-CVE-2021-38604.patch |  40 +
 .../glibc/glibc/0002-CVE-2021-38604.patch | 147 ++
 meta/recipes-core/glibc/glibc_2.33.bb |   2 +
 .../e2fsprogs/big-inodes-for-small-fs.patch   |  22 +++
 .../e2fsprogs/e2fsprogs_1.46.1.bb |   1 +
 .../go/{go-1.16.5.inc => go-1.16.7.inc}   |   4 +-
 ...e_1.16.5.bb => go-binary-native_1.16.7.bb} |   4 +-
 ..._1.16.5.bb => go-cross-canadian_1.16.7.bb} |   0
 ...{go-cross_1.16.5.bb => go-cross_1.16.7.bb} |   0
 ...osssdk_1.16.5.bb => go-crosssdk_1.16.7.bb} |   0
 ...o-native_1.16.5.bb => go-native_1.16.7.bb} |   0
 ...runtime_1.16.5.bb => go-runtime_1.16.7.bb} |   0
 .../go/{go_1.16.5.bb => go_1.16.7.bb} |   0
 meta/recipes-extended/tar/tar_1.34.bb |   3 +
 .../xorg-lib/pixman_0.40.0.bb |   2 +
 meta/recipes-kernel/kmod/kmod_git.bb  |   8 +-
 .../linux-firmware/linux-firmware_20210511.bb |  17 +-
 meta/recipes-kernel/linux/kernel-devsrc.bb|  10 +-
 .../linux/linux-yocto-rt_5.10.bb  |   6 +-
 .../linux/linux-yocto-rt_5.4.bb   |   6 +-
 .../linux/linux-yocto-tiny_5.10.bb|   8 +-
 .../linux/linux-yocto-tiny_5.4.bb |   8 +-
 meta/recipes-kernel/linux/linux-yocto_5.10.bb |  24 +--
 meta/recipes-kernel/linux/linux-yocto_5.4.bb  |  22 +--
 .../ffmpeg/ffmpeg/fix-CVE-2020-20446.patch|  35 +
 .../ffmpeg/ffmpeg/fix-CVE-2020-20453.patch|  42 +
 .../ffmpeg/ffmpeg/fix-CVE-2020-22015.patch|  44 ++
 .../ffmpeg/ffmpeg/fix-CVE-2020-22021.patch|  87 +++
 .../fix-CVE-2020-22033-CVE-2020-22019.patch   |  39 +
 .../recipes-multimedia/ffmpeg/ffmpeg_4.3.2.bb |   5 +
 meta/recipes-support/lzo/lzo_2.10.bb  |   2 +
 scripts/lib/wic/canned-wks/common.wks.inc |   2 +-
 scripts/lib/wic/canned-wks/directdisk-gpt.wks |   2 +-
 scripts/lib/wic/canned-wks/mkefidisk.wks  |   2 +-
 43 files changed, 559 insertions(+), 70 deletions(-)
 create mode 100644 meta/recipes-core/glibc/glibc/0001-CVE-2021-38604.patch
 create mode 100644 meta/recipes-core/glibc/glibc/0002-CVE-2021-38604.patch
 create mode 100644 
meta/recipes-devtools/e2fsprogs/e2fsprogs/big-inodes-for-small-fs.patch
 rename meta/recipes-devtools/go/{go-1.16.5.inc => go-1.16.7.inc} (89%)
 rename meta/recipes-devtools/go/{go-binary-native_1.16.5.bb => 
go-binary-native_1.16.7.bb} (83%)
 rename meta/recipes-devtools/go/{go-cross-canadian_1.16.5.bb => 
go-cross-canadian_1.16.7.bb} (100%)
 rename meta/recipes-devtools/go/{go-cross_1.16.5.bb => go-cr

Re: [OE-core] [dunfell][PATCH 1/2] bitbake: fetch2: fix handling of `\` in file:// SRC_URI

[Andrei Gherzan]

On Tue, 24 Aug 2021, at 15:24, Richard Purdie wrote:
> On Tue, 2021-08-24 at 04:20 -1000, Steve Sakoman wrote:
> > On Mon, Aug 23, 2021 at 3:53 AM Andrei Gherzan  wrote:
> > > 
> > > From: Leif Middelschulte 
> > > 
> > > Using backslashes in file:// URIs was broken.
> > > Either the resolver would fail or the subsequent `cp` command.
> > > Try to avoid this by putting the filenames into quotes.
> > > 
> > > Fixes https://bugzilla.yoctoproject.org/show_bug.cgi?id=8161
> > > 
> > > (Bitbake rev: aa857fa2e9cf3b0e43a9049b04ec4b0b3c779b11)
> > 
> > Patches for bitbake should be sent to: bitbake-de...@lists.openembedded.org
> > 
> > I tried applying this patch, but found that it caused errors on the 
> > autobuilder:
> > 
> > https://errors.yoctoproject.org/Errors/Build/129189/
> > 
> 
> We dropped wildcard support in master but that is still present in dunfell. 
> That
> means we can't quote things as we are relying on expansion of the wildcards 
> for
> some SRC_URIs. This could be difficult to fix with the compatibility 
> constraints
> of an older release funfortunately :/.

Got it now. That's going to be painful indeed. I can't think of an easy way out 
of this either.

Andrei

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155226): 
https://lists.openembedded.org/g/openembedded-core/message/155226
Mute This Topic: https://lists.openembedded.org/mt/85085599/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] Yocto Project Status WW34`21

[Stephen Jolley]

Current Dev Position: YP 3.4 M3 (Feature Freeze)

Next Deadline: 23rd Aug. 2021 YP 3.4 M3 build (Feature Freeze)

 

Next Team Meetings:

*   Bug Triage meeting Thursday Aug. 26th at 7:30am PDT (

https://zoom.us/j/454367603?pwd=ZGxoa2ZXL3FkM3Y0bFd5aVpHVVZ6dz09)
*   Monthly Project Meeting Tuesday Sept. 7th at 8am PDT (

https://zoom.us/j/990892712?pwd=cHU1MjhoM2x6ck81bkcrYjRrcmJsUT09
 )
*   Weekly Engineering Sync Tuesday Aug. 24th at 8am PDT (

https://zoom.us/j/990892712?pwd=cHU1MjhoM2x6ck81bkcrYjRrcmJsUT09
 )
*   Twitch -  See https://www.twitch.tv/theyoctojester

 

Key Status/Updates:

*   We are now at feature freeze for YP 3.4
*   Read-only PRServ and switch to asyncio was merged
*   Rust merging to core is proving problematic due to issues
interacting with uninative. These cause many strange autobuilder failures so
this issue would have to be addressed in the next day or two in order to be
in 3.4.
*   glibc 2.34 and the merge of the various libraries into libc is
causing significant problems for pseudo. This issue is causing significant
worry as the project will struggle as distros adopt the new glibc version
unless we work out how to fix things.
*   The tune file layout change was merged.
*   We are still hoping to get some of the planned SBOM work into 3.4
*   Intermittent issues are ongoing and help is very much welcome on
these issues. You can see the list of failures we're continuing to see by
searching for the "AB-INT" tag in bugzilla:

https://bugzilla.yoctoproject.org/buglist.cgi?quicksearch=AB-INT

 

Ways to contribute:

*   There are bugs identified as possible for newcomers to the project:

https://wiki.yoctoproject.org/wiki/Newcomers
*   There are bugs that are currently unassigned for YP 3.4. See:

https://wiki.yoctoproject.org/wiki/Bug_Triage#Medium.2B_3.4_Unassigned_Enhan
cements.2FBugs
*   We'd welcome new maintainers for recipes in OE-Core. Please see the
list at:

http://git.yoctoproject.org/cgit.cgi/poky/tree/meta/conf/distro/include/main
tainers.inc and discuss with the existing maintainer, or ask on the OE-Core
mailing list. We will likely move a chunk of these to "Unassigned" soon to
help facilitate this.

 

YP 3.4 Milestone Dates:

*   YP 3.4 M3 build date 2021/08/23 (Feature Freeze)
*   YP 3.4 M3 Release date 2021/09/03
*   YP 3.4 M4 build date 2021/10/04
*   YP 3.4 M4 Release date 2021/10/29

 

Planned upcoming dot releases:

*   YP 3.1.11 build date 2021/09/13
*   YP 3.1.11 release date 2021/9/24

 

Tracking Metrics:

*   WDD 2610 (last week 2583) (

https://wiki.yoctoproject.org/charts/combo.html)
*   OE-Core/Poky Patch Metrics

*   Total patches found: 1299 (last week 1293)
*   Patches in the Pending State: 484 (37%) [last week 485 (38%)]

 

The Yocto Project's technical governance is through its Technical Steering
Committee, more information is available at:

 
https://wiki.yoctoproject.org/wiki/TSC

 

The Status reports are now stored on the wiki at:

https://wiki.yoctoproject.org/wiki/Weekly_Status

 

[If anyone has suggestions for other information you'd like to see on this
weekly status update, let us know!]

 

Thanks,

 

Stephen K. Jolley

Yocto Project Program Manager

*Cell:(208) 244-4460

* Email:  sjolley.yp...@gmail.com
 

 


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155225): 
https://lists.openembedded.org/g/openembedded-core/message/155225
Mute This Topic: https://lists.openembedded.org/mt/85112600/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core][dunfell 00/12] Pull request (cover letter only)

[Steve Sakoman]

The following changes since commit ce78c16409363741d59a2f787aca66077bec93cd:

  sstate.bbclass: fix error handling when sstate mirrors is ro (2021-08-16 
04:41:07 -1000)

are available in the Git repository at:

  git://git.openembedded.org/openembedded-core-contrib stable/dunfell-next
  
http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-next

Alexandre Belloni (1):
  oeqa/runtime/cases: make date.DateTest.test_date more reliable

Bruce Ashfield (3):
  linux-yocto/5.4: update to v5.4.137
  linux-yocto/5.4: update to v5.4.139
  linux-yocto/5.4: update to v5.4.141

Dmitry Baryshkov (1):
  linux-firmware: add more Qualcomm firmware packages

Dragos-Marian Panait (1):
  util-linux: fix CVE-2021-37600

Khem Raj (1):
  sdk: Enable do_populate_sdk with multilibs

Purushottam Choudhary (1):
  python3: Remove unused python3 recipe

Richard Purdie (1):
  oeqa/selftest/glibc: Handle incorrect encoding issuesin glibc test
results

Ross Burton (2):
  tar: ignore node-tar CVEs
  ovmf: build natively everywhere

hongxu (1):
  sdk: fix relocate symlink failed

 meta/classes/multilib.bbclass |   1 -
 meta/classes/populate_sdk_base.bbclass|   2 +-
 meta/files/toolchain-shar-relocate.sh |   2 +-
 meta/lib/oeqa/runtime/cases/date.py   |   9 +-
 meta/lib/oeqa/selftest/cases/glibc.py |   2 +-
 meta/recipes-core/ovmf/ovmf_git.bb|   2 +-
 .../util-linux/CVE-2021-37600.patch   |  33 ++
 .../util-linux/util-linux_2.35.1.bb   |   1 +
 .../recipes-devtools/python/python3_3.8.10.bb | 363 --
 meta/recipes-extended/tar/tar_1.32.bb |   3 +
 .../linux-firmware/linux-firmware_20210511.bb |  17 +-
 .../linux/linux-yocto-rt_5.4.bb   |   6 +-
 .../linux/linux-yocto-tiny_5.4.bb |   8 +-
 meta/recipes-kernel/linux/linux-yocto_5.4.bb  |  22 +-
 14 files changed, 79 insertions(+), 392 deletions(-)
 create mode 100644 meta/recipes-core/util-linux/util-linux/CVE-2021-37600.patch
 delete mode 100644 meta/recipes-devtools/python/python3_3.8.10.bb

-- 
2.25.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155224): 
https://lists.openembedded.org/g/openembedded-core/message/155224
Mute This Topic: https://lists.openembedded.org/mt/85111768/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

Re: [OE-core] [dunfell][PATCH 1/2] bitbake: fetch2: fix handling of `\` in file:// SRC_URI

[Richard Purdie]

On Tue, 2021-08-24 at 04:20 -1000, Steve Sakoman wrote:
> On Mon, Aug 23, 2021 at 3:53 AM Andrei Gherzan  wrote:
> > 
> > From: Leif Middelschulte 
> > 
> > Using backslashes in file:// URIs was broken.
> > Either the resolver would fail or the subsequent `cp` command.
> > Try to avoid this by putting the filenames into quotes.
> > 
> > Fixes https://bugzilla.yoctoproject.org/show_bug.cgi?id=8161
> > 
> > (Bitbake rev: aa857fa2e9cf3b0e43a9049b04ec4b0b3c779b11)
> 
> Patches for bitbake should be sent to: bitbake-de...@lists.openembedded.org
> 
> I tried applying this patch, but found that it caused errors on the 
> autobuilder:
> 
> https://errors.yoctoproject.org/Errors/Build/129189/
> 

We dropped wildcard support in master but that is still present in dunfell. That
means we can't quote things as we are relying on expansion of the wildcards for
some SRC_URIs. This could be difficult to fix with the compatibility constraints
of an older release funfortunately :/.

Cheers,

Richard


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155223): 
https://lists.openembedded.org/g/openembedded-core/message/155223
Mute This Topic: https://lists.openembedded.org/mt/85085599/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] usermod in EXTRA_USERS_PARAMS is broken in master

[Zoltan Boszormenyi via lists.openembedded.org]

Hi,

I tried to port my distro layer to Honister and
attempted to build an OS image.

I have this in the image recipe:

EXTRA_USERS_PARAMS += "usermod -P mypassword root; usermod -P mypassword2 
myuser;"

and the error I got was:

NOTE: my-test-image: Performing usermod with [-R 
/data/yocto/tmp-sicom-glibc/work/genericx86_64-oe-linux/my-test-image/1.0-r0/rootfs -P 
mypassword root]

usermod: prefix must be an absolute path
ERROR: my-test-image: usermod command did not succeed.
WARNING: 
/data/yocto/tmp-sicom-glibc/work/genericx86_64-oe-linux/my-test-image/1.0-r0/temp/run.set_user_group.2583229:260 
exit 1 from 'exit 1'


EXTRA_USERS_PARAMS has userdel and useradd commands
before the last two usermod, all of which succeed.

I got the same error on both Fedora 33 and Fedora 34 hosts.

It works with Hardknott.

Best regards,
Zoltán Böszörményi

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155222): 
https://lists.openembedded.org/g/openembedded-core/message/155222
Mute This Topic: https://lists.openembedded.org/mt/85111613/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

Re: [OE-core] [dunfell][PATCH 1/2] bitbake: fetch2: fix handling of `\` in file:// SRC_URI

[Steve Sakoman]

On Mon, Aug 23, 2021 at 3:53 AM Andrei Gherzan  wrote:
>
> From: Leif Middelschulte 
>
> Using backslashes in file:// URIs was broken.
> Either the resolver would fail or the subsequent `cp` command.
> Try to avoid this by putting the filenames into quotes.
>
> Fixes https://bugzilla.yoctoproject.org/show_bug.cgi?id=8161
>
> (Bitbake rev: aa857fa2e9cf3b0e43a9049b04ec4b0b3c779b11)

Patches for bitbake should be sent to: bitbake-de...@lists.openembedded.org

I tried applying this patch, but found that it caused errors on the autobuilder:

https://errors.yoctoproject.org/Errors/Build/129189/

Steve

> Signed-off-by: Leif Middelschulte 
> Signed-off-by: Richard Purdie 
> ---
>  bitbake/lib/bb/fetch2/__init__.py | 2 +-
>  1 file changed, 1 insertion(+), 1 deletion(-)
>
> diff --git a/bitbake/lib/bb/fetch2/__init__.py 
> b/bitbake/lib/bb/fetch2/__init__.py
> index dc99914cd9..ece07f611c 100644
> --- a/bitbake/lib/bb/fetch2/__init__.py
> +++ b/bitbake/lib/bb/fetch2/__init__.py
> @@ -1525,7 +1525,7 @@ class FetchMethod(object):
>  if urlpath.find("/") != -1:
>  destdir = urlpath.rsplit("/", 1)[0] + '/'
>  bb.utils.mkdirhier("%s/%s" % (unpackdir, destdir))
> -cmd = 'cp -fpPRH %s %s' % (file, destdir)
> +cmd = 'cp -fpPRH "%s" "%s"' % (file, destdir)
>
>  if not cmd:
>  return
> --
> 2.31.1
>
>
> 
>

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155221): 
https://lists.openembedded.org/g/openembedded-core/message/155221
Mute This Topic: https://lists.openembedded.org/mt/85085599/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

Re: [OE-core] [PATCH] bitbake.conf: update way of setting XZ_MEMLIMIT

[Richard Purdie]

On Tue, 2021-08-24 at 17:40 +0800, Changqing Li wrote:
> From: Changqing Li 
> 
> Update way of setting XZ_MEMLIMIT, considering scenario that
> running bitbake in container, to avoid OOM Killer of xz.
> 
> For example:
> Container has memory limit of 30G, and host memory is 300G.  'xz
> --memlimit=50% ...' will get host memory, so the limit for xz is 150G.
> And because of the container memory limit is 30G, xz can use nearly up
> to 30G memory, which may cause oom kill of xz.
> 
> Signed-off-by: Changqing Li 
> ---
>  meta/conf/bitbake.conf |  3 ++-
>  meta/lib/oe/utils.py   | 12 
>  2 files changed, 14 insertions(+), 1 deletion(-)
> 
> diff --git a/meta/conf/bitbake.conf b/meta/conf/bitbake.conf
> index f6fb2aa698..2b36e083ca 100644
> --- a/meta/conf/bitbake.conf
> +++ b/meta/conf/bitbake.conf
> @@ -809,7 +809,8 @@ BB_NUMBER_THREADS ?= "${@oe.utils.cpu_count()}"
>  PARALLEL_MAKE ?= "-j ${@oe.utils.cpu_count()}"
>  
>  # Default parallelism and resource usage for xz
> -XZ_MEMLIMIT ?= "50%"
> +CONTAINER_MEM_LIMIT = "${@oe.utils.container_mem_limit()}"
> +XZ_MEMLIMIT ?= "${@ '%d' % (int(d.getVar('CONTAINER_MEM_LIMIT'))/2) if 
> d.getVar('CONTAINER_MEM_LIMIT') != '0' else '50%'}"
>  XZ_THREADS ?= "${@oe.utils.cpu_count(at_least=2)}"
>  XZ_DEFAULTS ?= "--memlimit=${XZ_MEMLIMIT} --threads=${XZ_THREADS}"
>  XZ_DEFAULTS[vardepsexclude] += "XZ_MEMLIMIT XZ_THREADS"
> diff --git a/meta/lib/oe/utils.py b/meta/lib/oe/utils.py
> index a84039f585..581072ac0d 100644
> --- a/meta/lib/oe/utils.py
> +++ b/meta/lib/oe/utils.py
> @@ -252,6 +252,18 @@ def cpu_count(at_least=1):
>  cpus = len(os.sched_getaffinity(0))
>  return max(cpus, at_least)
>  
> +def container_mem_limit():
> +limit_in_bytes = '0'
> +proc_sched = '/proc/1/sched'
> +if os.path.exists(proc_sched):
> +with open(proc_sched, 'r') as fp:
> +initinfo = fp.readline().strip()
> +cgroup_limit_in_bytes = 
> '/sys/fs/cgroup/memory/memory.limit_in_bytes'
> +if initinfo.split(' ')[0] not in ('systemd', 'init',) and 
> os.path.exists(cgroup_limit_in_bytes):
> +with open(cgroup_limit_in_bytes) as fpc:
> +limit_in_bytes=fpc.readline().strip()
> +return limit_in_bytes
> +

Whilst I understand the idea here, this is an awful lot of hardcoded values and
"magic". I'm not sure we want all bitbake processes to be making these kinds of
queries/decisions every time the config is parsed...

Adding the function to oe/utils may be ok but I'm not keen on making it the
default.

Cheers,

Richard




-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155220): 
https://lists.openembedded.org/g/openembedded-core/message/155220
Mute This Topic: https://lists.openembedded.org/mt/85107112/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

Re: [OE-core] [poky][master][PATCH] assimp: added patch to fix hardcoded non-existing paths in CMake modules

[Mikko Rapeli]

Hi,

On Tue, Aug 24, 2021 at 04:03:04PM +0300, Samuli Piippo wrote:
> assimpTargets-release.cmake has it hardcoded:
> 
> set_target_properties(assimp::assimp PROPERTIES
>   IMPORTED_IMPLIB_RELEASE "/usr/lib/${importLibraryName}"
>   IMPORTED_LOCATION_RELEASE "/usr/bin/${sharedLibraryName}"
> )

Ok, I think this is the one we need to remove completely. The defaults
will work.

> before it used to be:
> 
> set_target_properties(assimp::assimp PROPERTIES
>   IMPORTED_IMPLIB_RELEASE "${_IMPORT_PREFIX}/lib/${importLibraryName}"
>   IMPORTED_LOCATION_RELEASE "${_IMPORT_PREFIX}/bin/${sharedLibraryName}"

This doesn't work for us when some of the paths are different.

The defaults set in the generated CMake toolchain files will work.

Cheers,

-Mikko

> )
> 
> 
> -samuli
> 
> On Tue, 24 Aug 2021 at 13:59,  wrote:
> 
> > Hi,
> >
> > On Tue, Aug 24, 2021 at 12:27:09PM +0300, Samuli Piippo wrote:
> > > Looks like this commit breaks something in the cmake files.
> > >
> > > When using assimp from another recipe (Qt3D), it will try to use the
> > > library from host path:
> > >
> > > /usr/lib/cmake/assimp-5.0/assimpTargets-release.cmake(69):
> > >  set(sharedLibraryName libassimp.so.5 )
> > > /usr/lib/cmake/assimp-5.0/assimpTargets-release.cmake(71):
> > >  set_target_properties(assimp::assimp PROPERTIES IMPORTED_SONAME_RELEASE
> > > libassimp.so.5 IMPORTED_LOCATION_RELEASE /usr/lib/libassimp.so.5 )
> >
> > Can you see where the /usr/lib search path comes from?
> >
> > To me, the assimp CMake files try to do way too much and should instead
> > rely
> > on default search paths and the cross compile toolchain file.
> >
> > Cheers,
> >
> > -Mikko
> >
> > > Whereas, before the patch, it was correctly using it from the sysroot:
> > >
> > > /usr/lib/cmake/assimp-5.0/assimpTargets-release.cmake(69):
> > >  set(sharedLibraryName libassimp.so.5 )
> > > /usr/lib/cmake/assimp-5.0/assimpTargets-release.cmake(71):
> > >  set_target_properties(assimp::assimp PROPERTIES IMPORTED_SONAME_RELEASE
> > > libassimp.so.5 IMPORTED_LOCATION_RELEASE
> > >
> > /home/qt/work/build/build/tmp/work/core2-32-poky-linux/qt3d/6.3.0-r0/recipe-sysroot/usr/lib/libassimp.so.5
> > > )
> > > /usr/lib/cmake/assimp-5.0/assimpTargets-release.cmake(75):  list(APPEND
> > > _IMPORT_CHECK_TARGETS assimp::assimp )
> > > /usr/lib/cmake/assimp-5.0/assimpTargets-release.cmake(76):  list(APPEND
> > > _IMPORT_CHECK_FILES_FOR_assimp::assimp
> > >
> > /home/qt/work/build/build/tmp/work/core2-32-poky-linux/qt3d/6.3.0-r0/recipe-sysroot/usr/lib/libassimp.so.5
> > > )
> > >
> > > Probably explains why the IMPORT_CHECK_TARGETS had to be removed.
> > >
> > >
> > >
> > > On Fri, 20 Aug 2021 at 13:07, Purushottam Choudhary <
> > > purushottamchoudhar...@gmail.com> wrote:
> > >
> > > > assimp CMake modules were adding non-existing paths to its CMake
> > modules
> > > > breaking builds for users of assimp. Remove the hardcoded paths with
> > > > an upstream patch with small tweaks.
> > > >
> > > > Signed-off-by: Purushottam Choudhary  > >
> > > > ---
> > > >  ...-ASSIMP_LIB_INSTALL_DIR-to-search-library.patch |  68 --
> > > >  ...ove-shared-lib-from-_IMPORT_CHECK_TARGETS.patch |  32 +++
> > > >  .../assimp/use-GNUInstallDirs-where-possible.patch | 257
> > > > +
> > > >  meta/recipes-graphics/vulkan/assimp_5.0.1.bb   |   3 +-
> > > >  4 files changed, 291 insertions(+), 69 deletions(-)
> > > >  delete mode 100644
> > > >
> > meta/recipes-graphics/vulkan/assimp/0001-Use-ASSIMP_LIB_INSTALL_DIR-to-search-library.patch
> > > >  create mode 100644
> > > >
> > meta/recipes-graphics/vulkan/assimp/0001-assimp-remove-shared-lib-from-_IMPORT_CHECK_TARGETS.patch
> > > >  create mode 100644
> > > >
> > meta/recipes-graphics/vulkan/assimp/use-GNUInstallDirs-where-possible.patch
> > > >
> > > > diff --git
> > > >
> > a/meta/recipes-graphics/vulkan/assimp/0001-Use-ASSIMP_LIB_INSTALL_DIR-to-search-library.patch
> > > >
> > b/meta/recipes-graphics/vulkan/assimp/0001-Use-ASSIMP_LIB_INSTALL_DIR-to-search-library.patch
> > > > deleted file mode 100644
> > > > index 34c5bfa..000
> > > > ---
> > > >
> > a/meta/recipes-graphics/vulkan/assimp/0001-Use-ASSIMP_LIB_INSTALL_DIR-to-search-library.patch
> > > > +++ /dev/null
> > > > @@ -1,68 +0,0 @@
> > > > -From 58f576d6f240b08957a402960cdf06c74201ac7b Mon Sep 17 00:00:00 2001
> > > > -From: Hongxu Jia 
> > > > -Date: Thu, 12 Dec 2019 22:16:15 -0800
> > > > -Subject: [PATCH] Use ASSIMP_LIB_INSTALL_DIR to search library
> > > > -
> > > > -Use ASSIMP_LIB_INSTALL_DIR rather than hardcoded /lib to search
> > library
> > > > -
> > > > -Upstream-Status: Inappropriate [oe specific]
> > > > -
> > > > -Signed-off-by: Hongxu Jia 
> > > > -
> > > > 
> > > > - assimpTargets-release.cmake.in | 16 
> > > > - 1 file changed, 8 insertions(+), 8 deletions(-)
> > > > -
> > > > -diff --git a/assimpTargets-release.cmake.in b/
> > > > assimpTargets-release.cmake.in
> > > > -index f3db8f1..b8a066a 10

Re: [OE-core] [poky][master][PATCH] assimp: added patch to fix hardcoded non-existing paths in CMake modules

[Samuli Piippo]

assimpTargets-release.cmake has it hardcoded:

set_target_properties(assimp::assimp PROPERTIES
  IMPORTED_IMPLIB_RELEASE "/usr/lib/${importLibraryName}"
  IMPORTED_LOCATION_RELEASE "/usr/bin/${sharedLibraryName}"
)

before it used to be:

set_target_properties(assimp::assimp PROPERTIES
  IMPORTED_IMPLIB_RELEASE "${_IMPORT_PREFIX}/lib/${importLibraryName}"
  IMPORTED_LOCATION_RELEASE "${_IMPORT_PREFIX}/bin/${sharedLibraryName}"
)


-samuli

On Tue, 24 Aug 2021 at 13:59,  wrote:

> Hi,
>
> On Tue, Aug 24, 2021 at 12:27:09PM +0300, Samuli Piippo wrote:
> > Looks like this commit breaks something in the cmake files.
> >
> > When using assimp from another recipe (Qt3D), it will try to use the
> > library from host path:
> >
> > /usr/lib/cmake/assimp-5.0/assimpTargets-release.cmake(69):
> >  set(sharedLibraryName libassimp.so.5 )
> > /usr/lib/cmake/assimp-5.0/assimpTargets-release.cmake(71):
> >  set_target_properties(assimp::assimp PROPERTIES IMPORTED_SONAME_RELEASE
> > libassimp.so.5 IMPORTED_LOCATION_RELEASE /usr/lib/libassimp.so.5 )
>
> Can you see where the /usr/lib search path comes from?
>
> To me, the assimp CMake files try to do way too much and should instead
> rely
> on default search paths and the cross compile toolchain file.
>
> Cheers,
>
> -Mikko
>
> > Whereas, before the patch, it was correctly using it from the sysroot:
> >
> > /usr/lib/cmake/assimp-5.0/assimpTargets-release.cmake(69):
> >  set(sharedLibraryName libassimp.so.5 )
> > /usr/lib/cmake/assimp-5.0/assimpTargets-release.cmake(71):
> >  set_target_properties(assimp::assimp PROPERTIES IMPORTED_SONAME_RELEASE
> > libassimp.so.5 IMPORTED_LOCATION_RELEASE
> >
> /home/qt/work/build/build/tmp/work/core2-32-poky-linux/qt3d/6.3.0-r0/recipe-sysroot/usr/lib/libassimp.so.5
> > )
> > /usr/lib/cmake/assimp-5.0/assimpTargets-release.cmake(75):  list(APPEND
> > _IMPORT_CHECK_TARGETS assimp::assimp )
> > /usr/lib/cmake/assimp-5.0/assimpTargets-release.cmake(76):  list(APPEND
> > _IMPORT_CHECK_FILES_FOR_assimp::assimp
> >
> /home/qt/work/build/build/tmp/work/core2-32-poky-linux/qt3d/6.3.0-r0/recipe-sysroot/usr/lib/libassimp.so.5
> > )
> >
> > Probably explains why the IMPORT_CHECK_TARGETS had to be removed.
> >
> >
> >
> > On Fri, 20 Aug 2021 at 13:07, Purushottam Choudhary <
> > purushottamchoudhar...@gmail.com> wrote:
> >
> > > assimp CMake modules were adding non-existing paths to its CMake
> modules
> > > breaking builds for users of assimp. Remove the hardcoded paths with
> > > an upstream patch with small tweaks.
> > >
> > > Signed-off-by: Purushottam Choudhary  >
> > > ---
> > >  ...-ASSIMP_LIB_INSTALL_DIR-to-search-library.patch |  68 --
> > >  ...ove-shared-lib-from-_IMPORT_CHECK_TARGETS.patch |  32 +++
> > >  .../assimp/use-GNUInstallDirs-where-possible.patch | 257
> > > +
> > >  meta/recipes-graphics/vulkan/assimp_5.0.1.bb   |   3 +-
> > >  4 files changed, 291 insertions(+), 69 deletions(-)
> > >  delete mode 100644
> > >
> meta/recipes-graphics/vulkan/assimp/0001-Use-ASSIMP_LIB_INSTALL_DIR-to-search-library.patch
> > >  create mode 100644
> > >
> meta/recipes-graphics/vulkan/assimp/0001-assimp-remove-shared-lib-from-_IMPORT_CHECK_TARGETS.patch
> > >  create mode 100644
> > >
> meta/recipes-graphics/vulkan/assimp/use-GNUInstallDirs-where-possible.patch
> > >
> > > diff --git
> > >
> a/meta/recipes-graphics/vulkan/assimp/0001-Use-ASSIMP_LIB_INSTALL_DIR-to-search-library.patch
> > >
> b/meta/recipes-graphics/vulkan/assimp/0001-Use-ASSIMP_LIB_INSTALL_DIR-to-search-library.patch
> > > deleted file mode 100644
> > > index 34c5bfa..000
> > > ---
> > >
> a/meta/recipes-graphics/vulkan/assimp/0001-Use-ASSIMP_LIB_INSTALL_DIR-to-search-library.patch
> > > +++ /dev/null
> > > @@ -1,68 +0,0 @@
> > > -From 58f576d6f240b08957a402960cdf06c74201ac7b Mon Sep 17 00:00:00 2001
> > > -From: Hongxu Jia 
> > > -Date: Thu, 12 Dec 2019 22:16:15 -0800
> > > -Subject: [PATCH] Use ASSIMP_LIB_INSTALL_DIR to search library
> > > -
> > > -Use ASSIMP_LIB_INSTALL_DIR rather than hardcoded /lib to search
> library
> > > -
> > > -Upstream-Status: Inappropriate [oe specific]
> > > -
> > > -Signed-off-by: Hongxu Jia 
> > > -
> > > 
> > > - assimpTargets-release.cmake.in | 16 
> > > - 1 file changed, 8 insertions(+), 8 deletions(-)
> > > -
> > > -diff --git a/assimpTargets-release.cmake.in b/
> > > assimpTargets-release.cmake.in
> > > -index f3db8f1..b8a066a 100644
> > >  a/assimpTargets-release.cmake.in
> > > -+++ b/assimpTargets-release.cmake.in
> > > -@@ -42,11 +42,11 @@ if(MSVC)
> > > - # Import target "assimp::assimp" for configuration "Release"
> > > - set_property(TARGET assimp::assimp APPEND PROPERTY
> > > IMPORTED_CONFIGURATIONS RELEASE)
> > > - set_target_properties(assimp::assimp PROPERTIES
> > > --  IMPORTED_IMPLIB_RELEASE
> > > "${_IMPORT_PREFIX}/lib/${importLibraryName}"
> > > -+  IMPORTED_IMPLIB_RELEASE
> "${_IMPORT_PREFIX}/@ASSIMP_LIB_INSTALL_DIR@
> > > /$

Re: [OE-core] [poky][master][PATCH] assimp: added patch to fix hardcoded non-existing paths in CMake modules

[Mikko Rapeli]

Hi,

On Tue, Aug 24, 2021 at 12:27:09PM +0300, Samuli Piippo wrote:
> Looks like this commit breaks something in the cmake files.
> 
> When using assimp from another recipe (Qt3D), it will try to use the
> library from host path:
> 
> /usr/lib/cmake/assimp-5.0/assimpTargets-release.cmake(69):
>  set(sharedLibraryName libassimp.so.5 )
> /usr/lib/cmake/assimp-5.0/assimpTargets-release.cmake(71):
>  set_target_properties(assimp::assimp PROPERTIES IMPORTED_SONAME_RELEASE
> libassimp.so.5 IMPORTED_LOCATION_RELEASE /usr/lib/libassimp.so.5 )

Can you see where the /usr/lib search path comes from?

To me, the assimp CMake files try to do way too much and should instead rely
on default search paths and the cross compile toolchain file.

Cheers,

-Mikko

> Whereas, before the patch, it was correctly using it from the sysroot:
> 
> /usr/lib/cmake/assimp-5.0/assimpTargets-release.cmake(69):
>  set(sharedLibraryName libassimp.so.5 )
> /usr/lib/cmake/assimp-5.0/assimpTargets-release.cmake(71):
>  set_target_properties(assimp::assimp PROPERTIES IMPORTED_SONAME_RELEASE
> libassimp.so.5 IMPORTED_LOCATION_RELEASE
> /home/qt/work/build/build/tmp/work/core2-32-poky-linux/qt3d/6.3.0-r0/recipe-sysroot/usr/lib/libassimp.so.5
> )
> /usr/lib/cmake/assimp-5.0/assimpTargets-release.cmake(75):  list(APPEND
> _IMPORT_CHECK_TARGETS assimp::assimp )
> /usr/lib/cmake/assimp-5.0/assimpTargets-release.cmake(76):  list(APPEND
> _IMPORT_CHECK_FILES_FOR_assimp::assimp
> /home/qt/work/build/build/tmp/work/core2-32-poky-linux/qt3d/6.3.0-r0/recipe-sysroot/usr/lib/libassimp.so.5
> )
> 
> Probably explains why the IMPORT_CHECK_TARGETS had to be removed.
> 
> 
> 
> On Fri, 20 Aug 2021 at 13:07, Purushottam Choudhary <
> purushottamchoudhar...@gmail.com> wrote:
> 
> > assimp CMake modules were adding non-existing paths to its CMake modules
> > breaking builds for users of assimp. Remove the hardcoded paths with
> > an upstream patch with small tweaks.
> >
> > Signed-off-by: Purushottam Choudhary 
> > ---
> >  ...-ASSIMP_LIB_INSTALL_DIR-to-search-library.patch |  68 --
> >  ...ove-shared-lib-from-_IMPORT_CHECK_TARGETS.patch |  32 +++
> >  .../assimp/use-GNUInstallDirs-where-possible.patch | 257
> > +
> >  meta/recipes-graphics/vulkan/assimp_5.0.1.bb   |   3 +-
> >  4 files changed, 291 insertions(+), 69 deletions(-)
> >  delete mode 100644
> > meta/recipes-graphics/vulkan/assimp/0001-Use-ASSIMP_LIB_INSTALL_DIR-to-search-library.patch
> >  create mode 100644
> > meta/recipes-graphics/vulkan/assimp/0001-assimp-remove-shared-lib-from-_IMPORT_CHECK_TARGETS.patch
> >  create mode 100644
> > meta/recipes-graphics/vulkan/assimp/use-GNUInstallDirs-where-possible.patch
> >
> > diff --git
> > a/meta/recipes-graphics/vulkan/assimp/0001-Use-ASSIMP_LIB_INSTALL_DIR-to-search-library.patch
> > b/meta/recipes-graphics/vulkan/assimp/0001-Use-ASSIMP_LIB_INSTALL_DIR-to-search-library.patch
> > deleted file mode 100644
> > index 34c5bfa..000
> > ---
> > a/meta/recipes-graphics/vulkan/assimp/0001-Use-ASSIMP_LIB_INSTALL_DIR-to-search-library.patch
> > +++ /dev/null
> > @@ -1,68 +0,0 @@
> > -From 58f576d6f240b08957a402960cdf06c74201ac7b Mon Sep 17 00:00:00 2001
> > -From: Hongxu Jia 
> > -Date: Thu, 12 Dec 2019 22:16:15 -0800
> > -Subject: [PATCH] Use ASSIMP_LIB_INSTALL_DIR to search library
> > -
> > -Use ASSIMP_LIB_INSTALL_DIR rather than hardcoded /lib to search library
> > -
> > -Upstream-Status: Inappropriate [oe specific]
> > -
> > -Signed-off-by: Hongxu Jia 
> > -
> > 
> > - assimpTargets-release.cmake.in | 16 
> > - 1 file changed, 8 insertions(+), 8 deletions(-)
> > -
> > -diff --git a/assimpTargets-release.cmake.in b/
> > assimpTargets-release.cmake.in
> > -index f3db8f1..b8a066a 100644
> >  a/assimpTargets-release.cmake.in
> > -+++ b/assimpTargets-release.cmake.in
> > -@@ -42,11 +42,11 @@ if(MSVC)
> > - # Import target "assimp::assimp" for configuration "Release"
> > - set_property(TARGET assimp::assimp APPEND PROPERTY
> > IMPORTED_CONFIGURATIONS RELEASE)
> > - set_target_properties(assimp::assimp PROPERTIES
> > --  IMPORTED_IMPLIB_RELEASE
> > "${_IMPORT_PREFIX}/lib/${importLibraryName}"
> > -+  IMPORTED_IMPLIB_RELEASE "${_IMPORT_PREFIX}/@ASSIMP_LIB_INSTALL_DIR@
> > /${importLibraryName}"
> > -   IMPORTED_LOCATION_RELEASE
> > "${_IMPORT_PREFIX}/bin/${sharedLibraryName}"
> > - )
> > - list(APPEND _IMPORT_CHECK_TARGETS assimp::assimp )
> > --list(APPEND _IMPORT_CHECK_FILES_FOR_assimp::assimp
> > "${_IMPORT_PREFIX}/lib/${importLibraryName}")
> > -+list(APPEND _IMPORT_CHECK_FILES_FOR_assimp::assimp
> > "${_IMPORT_PREFIX}/@ASSIMP_LIB_INSTALL_DIR@/${importLibraryName}")
> > - list(APPEND _IMPORT_CHECK_FILES_FOR_assimp::assimp
> > "${_IMPORT_PREFIX}/bin/${sharedLibraryName}" )
> > -   else()
> > - set(staticLibraryName
> > "assimp${ASSIMP_LIBRARY_SUFFIX}@CMAKE_STATIC_LIBRARY_SUFFIX@")
> > -@@ -54,10 +54,10 @@ if(MSVC)
> > - # Import target "assimp::assimp" for co

[OE-core] [PATCH] bitbake.conf: update way of setting XZ_MEMLIMIT

[Changqing Li]

From: Changqing Li 

Update way of setting XZ_MEMLIMIT, considering scenario that
running bitbake in container, to avoid OOM Killer of xz.

For example:
Container has memory limit of 30G, and host memory is 300G.  'xz
--memlimit=50% ...' will get host memory, so the limit for xz is 150G.
And because of the container memory limit is 30G, xz can use nearly up
to 30G memory, which may cause oom kill of xz.

Signed-off-by: Changqing Li 
---
 meta/conf/bitbake.conf |  3 ++-
 meta/lib/oe/utils.py   | 12 
 2 files changed, 14 insertions(+), 1 deletion(-)

diff --git a/meta/conf/bitbake.conf b/meta/conf/bitbake.conf
index f6fb2aa698..2b36e083ca 100644
--- a/meta/conf/bitbake.conf
+++ b/meta/conf/bitbake.conf
@@ -809,7 +809,8 @@ BB_NUMBER_THREADS ?= "${@oe.utils.cpu_count()}"
 PARALLEL_MAKE ?= "-j ${@oe.utils.cpu_count()}"
 
 # Default parallelism and resource usage for xz
-XZ_MEMLIMIT ?= "50%"
+CONTAINER_MEM_LIMIT = "${@oe.utils.container_mem_limit()}"
+XZ_MEMLIMIT ?= "${@ '%d' % (int(d.getVar('CONTAINER_MEM_LIMIT'))/2) if 
d.getVar('CONTAINER_MEM_LIMIT') != '0' else '50%'}"
 XZ_THREADS ?= "${@oe.utils.cpu_count(at_least=2)}"
 XZ_DEFAULTS ?= "--memlimit=${XZ_MEMLIMIT} --threads=${XZ_THREADS}"
 XZ_DEFAULTS[vardepsexclude] += "XZ_MEMLIMIT XZ_THREADS"
diff --git a/meta/lib/oe/utils.py b/meta/lib/oe/utils.py
index a84039f585..581072ac0d 100644
--- a/meta/lib/oe/utils.py
+++ b/meta/lib/oe/utils.py
@@ -252,6 +252,18 @@ def cpu_count(at_least=1):
 cpus = len(os.sched_getaffinity(0))
 return max(cpus, at_least)
 
+def container_mem_limit():
+limit_in_bytes = '0'
+proc_sched = '/proc/1/sched'
+if os.path.exists(proc_sched):
+with open(proc_sched, 'r') as fp:
+initinfo = fp.readline().strip()
+cgroup_limit_in_bytes = 
'/sys/fs/cgroup/memory/memory.limit_in_bytes'
+if initinfo.split(' ')[0] not in ('systemd', 'init',) and 
os.path.exists(cgroup_limit_in_bytes):
+with open(cgroup_limit_in_bytes) as fpc:
+limit_in_bytes=fpc.readline().strip()
+return limit_in_bytes
+
 def execute_pre_post_process(d, cmds):
 if cmds is None:
 return
-- 
2.17.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155216): 
https://lists.openembedded.org/g/openembedded-core/message/155216
Mute This Topic: https://lists.openembedded.org/mt/85107112/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

Re: [OE-core] [poky][master][PATCH] assimp: added patch to fix hardcoded non-existing paths in CMake modules

[Samuli Piippo]

Looks like this commit breaks something in the cmake files.

When using assimp from another recipe (Qt3D), it will try to use the
library from host path:

/usr/lib/cmake/assimp-5.0/assimpTargets-release.cmake(69):
 set(sharedLibraryName libassimp.so.5 )
/usr/lib/cmake/assimp-5.0/assimpTargets-release.cmake(71):
 set_target_properties(assimp::assimp PROPERTIES IMPORTED_SONAME_RELEASE
libassimp.so.5 IMPORTED_LOCATION_RELEASE /usr/lib/libassimp.so.5 )

Whereas, before the patch, it was correctly using it from the sysroot:

/usr/lib/cmake/assimp-5.0/assimpTargets-release.cmake(69):
 set(sharedLibraryName libassimp.so.5 )
/usr/lib/cmake/assimp-5.0/assimpTargets-release.cmake(71):
 set_target_properties(assimp::assimp PROPERTIES IMPORTED_SONAME_RELEASE
libassimp.so.5 IMPORTED_LOCATION_RELEASE
/home/qt/work/build/build/tmp/work/core2-32-poky-linux/qt3d/6.3.0-r0/recipe-sysroot/usr/lib/libassimp.so.5
)
/usr/lib/cmake/assimp-5.0/assimpTargets-release.cmake(75):  list(APPEND
_IMPORT_CHECK_TARGETS assimp::assimp )
/usr/lib/cmake/assimp-5.0/assimpTargets-release.cmake(76):  list(APPEND
_IMPORT_CHECK_FILES_FOR_assimp::assimp
/home/qt/work/build/build/tmp/work/core2-32-poky-linux/qt3d/6.3.0-r0/recipe-sysroot/usr/lib/libassimp.so.5
)

Probably explains why the IMPORT_CHECK_TARGETS had to be removed.



On Fri, 20 Aug 2021 at 13:07, Purushottam Choudhary <
purushottamchoudhar...@gmail.com> wrote:

> assimp CMake modules were adding non-existing paths to its CMake modules
> breaking builds for users of assimp. Remove the hardcoded paths with
> an upstream patch with small tweaks.
>
> Signed-off-by: Purushottam Choudhary 
> ---
>  ...-ASSIMP_LIB_INSTALL_DIR-to-search-library.patch |  68 --
>  ...ove-shared-lib-from-_IMPORT_CHECK_TARGETS.patch |  32 +++
>  .../assimp/use-GNUInstallDirs-where-possible.patch | 257
> +
>  meta/recipes-graphics/vulkan/assimp_5.0.1.bb   |   3 +-
>  4 files changed, 291 insertions(+), 69 deletions(-)
>  delete mode 100644
> meta/recipes-graphics/vulkan/assimp/0001-Use-ASSIMP_LIB_INSTALL_DIR-to-search-library.patch
>  create mode 100644
> meta/recipes-graphics/vulkan/assimp/0001-assimp-remove-shared-lib-from-_IMPORT_CHECK_TARGETS.patch
>  create mode 100644
> meta/recipes-graphics/vulkan/assimp/use-GNUInstallDirs-where-possible.patch
>
> diff --git
> a/meta/recipes-graphics/vulkan/assimp/0001-Use-ASSIMP_LIB_INSTALL_DIR-to-search-library.patch
> b/meta/recipes-graphics/vulkan/assimp/0001-Use-ASSIMP_LIB_INSTALL_DIR-to-search-library.patch
> deleted file mode 100644
> index 34c5bfa..000
> ---
> a/meta/recipes-graphics/vulkan/assimp/0001-Use-ASSIMP_LIB_INSTALL_DIR-to-search-library.patch
> +++ /dev/null
> @@ -1,68 +0,0 @@
> -From 58f576d6f240b08957a402960cdf06c74201ac7b Mon Sep 17 00:00:00 2001
> -From: Hongxu Jia 
> -Date: Thu, 12 Dec 2019 22:16:15 -0800
> -Subject: [PATCH] Use ASSIMP_LIB_INSTALL_DIR to search library
> -
> -Use ASSIMP_LIB_INSTALL_DIR rather than hardcoded /lib to search library
> -
> -Upstream-Status: Inappropriate [oe specific]
> -
> -Signed-off-by: Hongxu Jia 
> -
> 
> - assimpTargets-release.cmake.in | 16 
> - 1 file changed, 8 insertions(+), 8 deletions(-)
> -
> -diff --git a/assimpTargets-release.cmake.in b/
> assimpTargets-release.cmake.in
> -index f3db8f1..b8a066a 100644
>  a/assimpTargets-release.cmake.in
> -+++ b/assimpTargets-release.cmake.in
> -@@ -42,11 +42,11 @@ if(MSVC)
> - # Import target "assimp::assimp" for configuration "Release"
> - set_property(TARGET assimp::assimp APPEND PROPERTY
> IMPORTED_CONFIGURATIONS RELEASE)
> - set_target_properties(assimp::assimp PROPERTIES
> --  IMPORTED_IMPLIB_RELEASE
> "${_IMPORT_PREFIX}/lib/${importLibraryName}"
> -+  IMPORTED_IMPLIB_RELEASE "${_IMPORT_PREFIX}/@ASSIMP_LIB_INSTALL_DIR@
> /${importLibraryName}"
> -   IMPORTED_LOCATION_RELEASE
> "${_IMPORT_PREFIX}/bin/${sharedLibraryName}"
> - )
> - list(APPEND _IMPORT_CHECK_TARGETS assimp::assimp )
> --list(APPEND _IMPORT_CHECK_FILES_FOR_assimp::assimp
> "${_IMPORT_PREFIX}/lib/${importLibraryName}")
> -+list(APPEND _IMPORT_CHECK_FILES_FOR_assimp::assimp
> "${_IMPORT_PREFIX}/@ASSIMP_LIB_INSTALL_DIR@/${importLibraryName}")
> - list(APPEND _IMPORT_CHECK_FILES_FOR_assimp::assimp
> "${_IMPORT_PREFIX}/bin/${sharedLibraryName}" )
> -   else()
> - set(staticLibraryName
> "assimp${ASSIMP_LIBRARY_SUFFIX}@CMAKE_STATIC_LIBRARY_SUFFIX@")
> -@@ -54,10 +54,10 @@ if(MSVC)
> - # Import target "assimp::assimp" for configuration "Release"
> - set_property(TARGET assimp::assimp APPEND PROPERTY
> IMPORTED_CONFIGURATIONS RELEASE)
> - set_target_properties(assimp::assimp PROPERTIES
> --  IMPORTED_LOCATION_RELEASE
> "${_IMPORT_PREFIX}/lib/${staticLibraryName}"
> -+  IMPORTED_LOCATION_RELEASE
> "${_IMPORT_PREFIX}/@ASSIMP_LIB_INSTALL_DIR@/${staticLibraryName}"
> - )
> - list(APPEND _IMPORT_CHECK_TARGETS assimp::assimp )
> --list(APPEND _IMPORT_CHECK_FILES_FOR_assimp::assimp
> "$

[OE-core] [Hardknott][PATCH] file: fix close_on_exec for multithreaded decompression

[Changqing Li]

From: Changqing Li 

It is not safe to call the 'file' command from multiple threads. When a
file is checked with multiple threads in parallel, the file descriptors
might get shared which makes the pipe handling lock up, leading to lock
up in rpmbuild. And may lead to rarely deadlock on random recipes's
do_package task.

Signed-off-by: Changqing Li 
---
 meta/recipes-devtools/file/file_5.39.bb   |   3 +-
 ...ec-multithreaded-decompression-issue.patch | 220 ++
 2 files changed, 222 insertions(+), 1 deletion(-)
 create mode 100644 
meta/recipes-devtools/file/files/0001-Fix-close_on_exec-multithreaded-decompression-issue.patch

diff --git a/meta/recipes-devtools/file/file_5.39.bb 
b/meta/recipes-devtools/file/file_5.39.bb
index abaa8149a3..c0c7253688 100644
--- a/meta/recipes-devtools/file/file_5.39.bb
+++ b/meta/recipes-devtools/file/file_5.39.bb
@@ -12,7 +12,8 @@ DEPENDS = "file-replacement-native"
 DEPENDS_class-native = "bzip2-replacement-native"
 
 SRC_URI = "git://github.com/file/file.git \
-   file://0001-src-compress.c-correct-header-define-for-xz-lzma.patch"
+   file://0001-src-compress.c-correct-header-define-for-xz-lzma.patch \
+   
file://0001-Fix-close_on_exec-multithreaded-decompression-issue.patch"
 
 SRCREV = "87731415de945660b00f02207d8e9d986ef9b82e"
 S = "${WORKDIR}/git"
diff --git 
a/meta/recipes-devtools/file/files/0001-Fix-close_on_exec-multithreaded-decompression-issue.patch
 
b/meta/recipes-devtools/file/files/0001-Fix-close_on_exec-multithreaded-decompression-issue.patch
new file mode 100644
index 00..42105feed9
--- /dev/null
+++ 
b/meta/recipes-devtools/file/files/0001-Fix-close_on_exec-multithreaded-decompression-issue.patch
@@ -0,0 +1,220 @@
+From 0d82f2f3ba4a856504f23a9db1dd5f37bd076337 Mon Sep 17 00:00:00 2001
+From: Changqing Li 
+Date: Mon, 23 Aug 2021 14:16:53 +0800
+Subject: [PATCH] Fix close_on_exec multithreaded decompression issue.
+
+Upstream-Status: Backport 
[https://github.com/file/file/commit/81f15c2b0d6e9eaf524ff7bab37426c21af75fb7]
+Signed-off-by: Changqing Li 
+---
+ ChangeLog  |  5 +
+ configure.ac   |  2 +-
+ src/compress.c | 25 ++---
+ src/file.h | 12 +++-
+ src/funcs.c| 24 +++-
+ src/magic.c|  7 +--
+ 6 files changed, 67 insertions(+), 8 deletions(-)
+
+diff --git a/ChangeLog b/ChangeLog
+index f877ad22..8c4a43d4 100644
+--- a/ChangeLog
 b/ChangeLog
+@@ -1,3 +1,8 @@
++2020-12-08  16:24  Christos Zoulas 
++
++  * fix multithreaded decompression file descriptor issue
++by using close-on-exec (Denys Vlasenko)
++
+ 2020-06-14  20:02  Christos Zoulas 
+ 
+   * release 5.39
+diff --git a/configure.ac b/configure.ac
+index 64c9f42e..521dc12d 100644
+--- a/configure.ac
 b/configure.ac
+@@ -166,7 +166,7 @@ else
+ fi])
+ 
+ dnl Checks for functions
+-AC_CHECK_FUNCS(strndup mkstemp mkostemp utimes utime wcwidth strtof newlocale 
uselocale freelocale memmem)
++AC_CHECK_FUNCS(strndup mkstemp mkostemp utimes utime wcwidth strtof newlocale 
uselocale freelocale memmem pipe2)
+ 
+ dnl Provide implementation of some required functions if necessary
+ AC_REPLACE_FUNCS(getopt_long asprintf vasprintf strlcpy strlcat getline 
ctime_r asctime_r localtime_r gmtime_r pread strcasestr fmtcheck dprintf)
+diff --git a/src/compress.c b/src/compress.c
+index 9670b72c..9f65e4fa 100644
+--- a/src/compress.c
 b/src/compress.c
+@@ -35,7 +35,7 @@
+ #include "file.h"
+ 
+ #ifndef lint
+-FILE_RCSID("@(#)$File: compress.c,v 1.127 2020/05/31 00:11:06 christos Exp $")
++FILE_RCSID("@(#)$File: compress.c,v 1.129 2020/12/08 21:26:00 christos Exp $")
+ #endif
+ 
+ #include "magic.h"
+@@ -844,8 +844,23 @@ uncompressbuf(int fd, size_t bytes_max, size_t method, 
const unsigned char *old,
+   for (i = 0; i < __arraycount(fdp); i++)
+   fdp[i][0] = fdp[i][1] = -1;
+ 
+-  if ((fd == -1 && pipe(fdp[STDIN_FILENO]) == -1) ||
+-  pipe(fdp[STDOUT_FILENO]) == -1 || pipe(fdp[STDERR_FILENO]) == -1) {
++  /*
++   * There are multithreaded users who run magic_file()
++   * from dozens of threads. If two parallel magic_file() calls
++   * analyze two large compressed files, both will spawn
++   * an uncompressing child here, which writes out uncompressed data.
++   * We read some portion, then close the pipe, then waitpid() the child.
++   * If uncompressed data is larger, child shound get EPIPE and exit.
++   * However, with *parallel* calls OTHER child may unintentionally
++   * inherit pipe fds, thus keeping pipe open and making writes in
++   * our child block instead of failing with EPIPE!
++   * (For the bug to occur, two threads must mutually inherit their pipes,
++   * and both must have large outputs. Thus it happens not that often).
++   * To avoid this, be sure to create pipes with O_CLOEXEC.
++   */
++  if ((fd == -1 && file_pipe_closexec(fdp[STDIN_FILENO]) == -1) ||
++

Re: [OE-core] [PATCH 3/3] lib/package_manager: Use shutil.copy instead of bb.utils.copyfile for intercepts

[Sean Nyekjaer]

On Tue, Aug 24, 2021 at 08:14:58AM +, Mittal, Anuj wrote:
> Hello,
> 
> On Mon, 2021-08-23 at 14:31 +0200, Sean Nyekjaer wrote:
> > On Thu, May 06, 2021 at 08:51:00AM +0100, Richard Purdie wrote:
> > > If the scripts/postinst-intercepts is owned by root/root then the
> > > copyfile() calls
> > > will fail due to chown issues. We don't care about ownership of these
> > > files so
> > > use shutil.copy() instead which won't perform any chown.
> > > 
> > > Signed-off-by: Richard Purdie 
> > 
> > Anuj will you backport this to gatesgarth?
> 
> gatesgarth isn't being maintained any more.
> 
> https://wiki.yoctoproject.org/wiki/Releases
> 

Hi Anuj,

I know, but gatesgarth is left in a broken state because of
edc8051bc0 image: Add directories to PSEUDO_IGNORE_PATHS
was merged ;)

/Sean

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155213): 
https://lists.openembedded.org/g/openembedded-core/message/155213
Mute This Topic: https://lists.openembedded.org/mt/82625316/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

Re: [OE-core] [PATCH 2/2] glibc: ptest: Add support for running glibc test suite with ptest

[?ukasz Majewski]

Hi Richard,

> On Tue, 2021-08-24 at 09:36 +0200, ?ukasz Majewski wrote:
> > Hi Khem,
> >   
> > > On Mon, Aug 23, 2021 at 1:09 PM Lukasz Majewski 
> > > wrote:  
> > > > 
> > > > On Mon, 23 Aug 2021 12:52:44 -0700
> > > > Khem Raj  wrote:
> > > >
> > > > > On Mon, Aug 23, 2021 at 11:24 AM Lukasz Majewski
> > > > >  wrote:
> > > > >
> > > > > > Hi Khem,
> > > > > >
> > > > > > > On 8/23/21 8:08 AM, ?ukasz Majewski wrote:
> > > > > > > > This patch introduces new recipe - namely 'glibc-tests',
> > > > > > > > which builds and installs glibc test suite to OE/Yocto
> > > > > > > > built image.
> > > > > > > > 
> > > > > > > > It reuses code from already available 'glibc-testsuite'
> > > > > > > > recipe, which is run with 'bitbake glibc-testsuite -c
> > > > > > > > check' and uses qemu to execute remotely (via SSH)
> > > > > > > > tests on some emulated machine.
> > > > > > > > 
> > > > > > > > This recipe installs eligible tests on some rootfs
> > > > > > > > image. Afterwards, either all of them or only time
> > > > > > > > related subset, those tests can be executed on the real
> > > > > > > > hardware, to facilitate validation of this platform
> > > > > > > > with for example Y2038 problem compliance.
> > > > > > > > 
> > > > > > > > By default all tests are executed, with 'ptest-runner
> > > > > > > > glibc-tests'. To test only time related subset - one
> > > > > > > > needs to call: cd /usr/lib/glibc-tests/ptest/; rm
> > > > > > > > run-ptest; \ ln -s run-ptest-time run-ptest; cd -;
> > > > > > > > ptest-runner glibc-tests
> > > > > > > > 
> > > > > > > > To facilitate debugging, source files are provided by
> > > > > > > > default with the unstripped debugging symbols. Such
> > > > > > > > approach would reduce the already complex recipe (as it
> > > > > > > > inherits base glibc one), so there is no need to also
> > > > > > > > install *-dbg and *-src packages.
> > > > > > > 
> > > > > > > 
> > > > > > > does it have to be a separate recipe I wonder if we can
> > > > > > > have it built as part of glibc itself controlled via
> > > > > > > ptest knob
> > > > > > 
> > > > > > I've followed the glibc-testsuite recipe to provide tests
> > > > > > for ptest. Test creation is similar to it, but doesn't
> > > > > > require QEMU run (tests are executed on the HW).
> > > > > > 
> > > > > > Another rationale was to have some kind of "features"
> > > > > > separation in different file (liked glibc-mtrace), which is
> > > > > > easier to maintain and review.
> > > > > > 
> > > > > > Last but not least - separate recipe (and built binaries)
> > > > > > allow some kind of magic with selection of used test
> > > > > > programs (this may be useful if one would like to have
> > > > > > different sets of tests in different packages)
> > > > > 
> > > > > That’s seems ok I think the names are quite confusing now not
> > > > > that it was not so much better before but now we have
> > > > > glibc-tests and glibc-testsuites which do same things but in
> > > > > very different way maybe glibc-testsuite should be renamed to
> > > > > something like glibc-tests-crosd or some such
> > > > 
> > > > I think that glibc-testsuite_2.34.bb shall be renamed to
> > > > glibc-tests-qemu_2.34.bb as it is more descriptive.
> > > 
> > > is it only runnable in qemu ? I thought we could use a read board
> > > as well with IP address  
> > 
> > It looks like by default the QEMU is used in this recipe. 
> > 
> > This recipe provides custom check-test-wrapper, which can log
> > into remote board via ssh (when TOOLCHAIN_TEST_TARGET = "ssh").
> > 
> > This looks a bit awkward for me, as the goal would be to run built
> > tests on target (exact) HW without the need of SSH.
> > 
> > It is also easier to debug the code with the real HW.  
> 
> I'm a bit worried we're going around in circles with this. We did
> have a different form of tests a while back but I was told those
> didn't work well and they were replaced with the current setup which
> worked with the driver in the glibc source code.

I've looked into the glibc-testing.inc from SHA1:
0a42ae7f7ca8fcebe4630b701e50e2352f9b7c3b

There glibc tests were built and copied on the target via NFS.

> This was done around
> the time we added support for the other toolchain test suites
> (binutils+gcc).

I'm not familiar with the "binutils+gcc" issue, which was solved in the
past. Could you share any reference?

> We ended up with options to use full system qemu or
> user mode qemu emulation depending on the speed of the target (e.g.
> with kvm or not).

From what I see in the recipe - you either run user mode QEMU by
default (at least when I do run it):

NOTE: make PARALLELMFLAGS=-j 8 SHELL=/bin/bash -i
QEMU_SYSROOT=/home/lukma/work/yocto/y2038/build/tmp/work/armv7at2hf-neon-poky-linux-gnueabi/glibc-testsuite/2.34-r0/recipe-sysroot
QEMU_OPTIONS=qemu-arm -r 5.1.0  SSH_HOST=localhost SSH_HOS T_USER=root
SSH_HOST_PORT=
test-wrapper=/home/lukma/work/yocto/y2038/buil

Re: [OE-core] [PATCH 3/3] lib/package_manager: Use shutil.copy instead of bb.utils.copyfile for intercepts

[Anuj Mittal]

Hello,

On Mon, 2021-08-23 at 14:31 +0200, Sean Nyekjaer wrote:
> On Thu, May 06, 2021 at 08:51:00AM +0100, Richard Purdie wrote:
> > If the scripts/postinst-intercepts is owned by root/root then the
> > copyfile() calls
> > will fail due to chown issues. We don't care about ownership of these
> > files so
> > use shutil.copy() instead which won't perform any chown.
> > 
> > Signed-off-by: Richard Purdie 
> 
> Anuj will you backport this to gatesgarth?

gatesgarth isn't being maintained any more.

https://wiki.yoctoproject.org/wiki/Releases

Thanks,

Anuj

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155211): 
https://lists.openembedded.org/g/openembedded-core/message/155211
Mute This Topic: https://lists.openembedded.org/mt/82625316/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [PATCH 2/2] libjitterentropy: remove contaminated hashequiv entry

[Alexander Kanavin]

From: Alexander Kanavin 

This was caused by intermittent reproducibility problems.

Signed-off-by: Alexander Kanavin 
---
 .../libjitterentropy/libjitterentropy_3.1.0.bb| 4 
 1 file changed, 4 insertions(+)

diff --git a/meta/recipes-support/libjitterentropy/libjitterentropy_3.1.0.bb 
b/meta/recipes-support/libjitterentropy/libjitterentropy_3.1.0.bb
index de51ed8fc6..f703c089a0 100644
--- a/meta/recipes-support/libjitterentropy/libjitterentropy_3.1.0.bb
+++ b/meta/recipes-support/libjitterentropy/libjitterentropy_3.1.0.bb
@@ -15,6 +15,10 @@ SRC_URI = 
"git://github.com/smuellerDD/jitterentropy-library.git \
 SRCREV = "409828cfccf4b3b07edc40a7840a821ce074e2c3"
 S = "${WORKDIR}/git"
 
+# remove at next version upgrade or when output changes
+PR = "r1"
+HASHEQUIV_HASH_VERSION .= ".2"
+
 do_configure[noexec] = "1"
 
 LDFLAGS += "-Wl,-O0"
-- 
2.31.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155210): 
https://lists.openembedded.org/g/openembedded-core/message/155210
Mute This Topic: https://lists.openembedded.org/mt/85106120/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [PATCH 1/2] mc: fix reproducibility

[Alexander Kanavin]

From: Alexander Kanavin 

It is probing into what options the /usr/bin/file executable does
and does not support and bakes that into target binaries, so we
need to use a deterministic one we build ourselves.

Signed-off-by: Alexander Kanavin 
---
 meta/recipes-extended/mc/mc_4.8.27.bb | 7 ++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/meta/recipes-extended/mc/mc_4.8.27.bb 
b/meta/recipes-extended/mc/mc_4.8.27.bb
index bc2348432b..546e615d1d 100644
--- a/meta/recipes-extended/mc/mc_4.8.27.bb
+++ b/meta/recipes-extended/mc/mc_4.8.27.bb
@@ -4,7 +4,7 @@ DESCRIPTION = "GNU Midnight Commander is a visual file manager, 
licensed under G
 LICENSE = "GPLv3"
 LIC_FILES_CHKSUM = "file://COPYING;md5=270bbafe360e73f9840bd7981621f9c2"
 SECTION = "console/utils"
-DEPENDS = "ncurses glib-2.0 util-linux"
+DEPENDS = "ncurses glib-2.0 util-linux file-replacement-native"
 RDEPENDS:${PN} = "ncurses-terminfo-base"
 RRECOMMENDS:${PN} = "ncurses-terminfo"
 
@@ -14,6 +14,10 @@ SRC_URI = 
"http://www.midnight-commander.org/downloads/${BPN}-${PV}.tar.bz2 \
"
 SRC_URI[sha256sum] = 
"2f52dd9c75c20d8eac7701bd3a8c6c125aaf8cdd9cf12b78ca50a0102b543407"
 
+# remove at next version upgrade or when output changes
+PR = "r1"
+HASHEQUIV_HASH_VERSION .= ".2"
+
 inherit autotools gettext pkgconfig
 
 #
@@ -25,6 +29,7 @@ PACKAGECONFIG[sftp] = 
"--enable-vfs-sftp,--disable-vfs-sftp,libssh2,"
 
 CFLAGS:append:libc-musl = ' -DNCURSES_WIDECHAR=1 '
 EXTRA_OECONF = "--with-screen=ncurses --without-gpm-mouse --without-x 
--disable-configure-args"
+EXTRANATIVEPATH += "file-native"
 
 CACHED_CONFIGUREVARS += "ac_cv_path_PERL='/usr/bin/env perl'"
 CACHED_CONFIGUREVARS += "ac_cv_path_PYTHON='/usr/bin/env python'"
-- 
2.31.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155209): 
https://lists.openembedded.org/g/openembedded-core/message/155209
Mute This Topic: https://lists.openembedded.org/mt/85106119/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

Re: [OE-core] [yocto] Update bitbake broken build

[Martin Jansa]

Hi, read
https://lists.openembedded.org/g/openembedded-architecture/message/1260
https://lists.openembedded.org/g/openembedded-architecture/message/1279
https://lists.openembedded.org/g/openembedded-architecture/message/1291

On Tue, Aug 24, 2021 at 12:33 AM JH  wrote:

> Hi,
>
> I updated the bitbake to run git pull in master branch, now it is
> broken, what does the following error message mean, how to fix it?
>
> $ bitbake-layers show-layers
>
> NOTE: Starting bitbake server...
> ERROR: Variable PROVIDES_prepend contains an operation using the old
> override syntax. Please convert this layer/metadata before attempting
> to use with a newer bitbake.
>
> Thank you.
>
> Kind regards,
>
> - jupiter
>
> 
>
>

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155208): 
https://lists.openembedded.org/g/openembedded-core/message/155208
Mute This Topic: https://lists.openembedded.org/mt/85106039/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

Re: [OE-core] [PATCH 2/2] glibc: ptest: Add support for running glibc test suite with ptest

[Richard Purdie]

On Tue, 2021-08-24 at 09:36 +0200, ?ukasz Majewski wrote:
> Hi Khem,
> 
> > On Mon, Aug 23, 2021 at 1:09 PM Lukasz Majewski  wrote:
> > > 
> > > On Mon, 23 Aug 2021 12:52:44 -0700
> > > Khem Raj  wrote:
> > >  
> > > > On Mon, Aug 23, 2021 at 11:24 AM Lukasz Majewski 
> > > > wrote:
> > > >  
> > > > > Hi Khem,
> > > > >  
> > > > > > On 8/23/21 8:08 AM, ?ukasz Majewski wrote:  
> > > > > > > This patch introduces new recipe - namely 'glibc-tests',
> > > > > > > which builds and installs glibc test suite to OE/Yocto
> > > > > > > built image.
> > > > > > > 
> > > > > > > It reuses code from already available 'glibc-testsuite'
> > > > > > > recipe, which is run with 'bitbake glibc-testsuite -c
> > > > > > > check' and uses qemu to execute remotely (via SSH) tests on
> > > > > > > some emulated machine.
> > > > > > > 
> > > > > > > This recipe installs eligible tests on some rootfs image.
> > > > > > > Afterwards, either all of them or only time related subset,
> > > > > > > those tests can be executed on the real hardware, to
> > > > > > > facilitate validation of this platform with for example
> > > > > > > Y2038 problem compliance.
> > > > > > > 
> > > > > > > By default all tests are executed, with 'ptest-runner
> > > > > > > glibc-tests'. To test only time related subset - one needs
> > > > > > > to call: cd /usr/lib/glibc-tests/ptest/; rm run-ptest; \
> > > > > > > ln -s run-ptest-time run-ptest; cd -; ptest-runner
> > > > > > > glibc-tests
> > > > > > > 
> > > > > > > To facilitate debugging, source files are provided by
> > > > > > > default with the unstripped debugging symbols. Such
> > > > > > > approach would reduce the already complex recipe (as it
> > > > > > > inherits base glibc one), so there is no need to also
> > > > > > > install *-dbg and *-src packages.  
> > > > > > 
> > > > > > 
> > > > > > does it have to be a separate recipe I wonder if we can have
> > > > > > it built as part of glibc itself controlled via ptest knob  
> > > > > 
> > > > > I've followed the glibc-testsuite recipe to provide tests for
> > > > > ptest. Test creation is similar to it, but doesn't require QEMU
> > > > > run (tests are executed on the HW).
> > > > > 
> > > > > Another rationale was to have some kind of "features"
> > > > > separation in different file (liked glibc-mtrace), which is
> > > > > easier to maintain and review.
> > > > > 
> > > > > Last but not least - separate recipe (and built binaries) allow
> > > > > some kind of magic with selection of used test programs (this
> > > > > may be useful if one would like to have different sets of tests
> > > > > in different packages)  
> > > > 
> > > > That’s seems ok I think the names are quite confusing now not
> > > > that it was not so much better before but now we have glibc-tests
> > > > and glibc-testsuites which do same things but in very different
> > > > way maybe glibc-testsuite should be renamed to something like
> > > > glibc-tests-crosd or some such  
> > > 
> > > I think that glibc-testsuite_2.34.bb shall be renamed to
> > > glibc-tests-qemu_2.34.bb as it is more descriptive.  
> > 
> > is it only runnable in qemu ? I thought we could use a read board as
> > well with IP address
> 
> It looks like by default the QEMU is used in this recipe. 
> 
> This recipe provides custom check-test-wrapper, which can log
> into remote board via ssh (when TOOLCHAIN_TEST_TARGET = "ssh").
> 
> This looks a bit awkward for me, as the goal would be to run built
> tests on target (exact) HW without the need of SSH.
> 
> It is also easier to debug the code with the real HW.

I'm a bit worried we're going around in circles with this. We did have a
different form of tests a while back but I was told those didn't work well and
they were replaced with the current setup which worked with the driver in the
glibc source code. This was done around the time we added support for the other
toolchain test suites (binutils+gcc). We ended up with options to use full
system qemu or user mode qemu emulation depending on the speed of the target
(e.g. with kvm or not).

Has this patchset been run with all the tests in glibc or just a subset?

I'm always very nervous about having two ways to do similar things.

Cheers,

Richard


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#155207): 
https://lists.openembedded.org/g/openembedded-core/message/155207
Mute This Topic: https://lists.openembedded.org/mt/85087396/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

Re: [OE-core] [PATCH 2/2] glibc: ptest: Add support for running glibc test suite with ptest

[?ukasz Majewski]

Hi Khem,

> On Mon, Aug 23, 2021 at 1:09 PM Lukasz Majewski  wrote:
> >
> > On Mon, 23 Aug 2021 12:52:44 -0700
> > Khem Raj  wrote:
> >  
> > > On Mon, Aug 23, 2021 at 11:24 AM Lukasz Majewski 
> > > wrote:
> > >  
> > > > Hi Khem,
> > > >  
> > > > > On 8/23/21 8:08 AM, ?ukasz Majewski wrote:  
> > > > > > This patch introduces new recipe - namely 'glibc-tests',
> > > > > > which builds and installs glibc test suite to OE/Yocto
> > > > > > built image.
> > > > > >
> > > > > > It reuses code from already available 'glibc-testsuite'
> > > > > > recipe, which is run with 'bitbake glibc-testsuite -c
> > > > > > check' and uses qemu to execute remotely (via SSH) tests on
> > > > > > some emulated machine.
> > > > > >
> > > > > > This recipe installs eligible tests on some rootfs image.
> > > > > > Afterwards, either all of them or only time related subset,
> > > > > > those tests can be executed on the real hardware, to
> > > > > > facilitate validation of this platform with for example
> > > > > > Y2038 problem compliance.
> > > > > >
> > > > > > By default all tests are executed, with 'ptest-runner
> > > > > > glibc-tests'. To test only time related subset - one needs
> > > > > > to call: cd /usr/lib/glibc-tests/ptest/; rm run-ptest; \
> > > > > > ln -s run-ptest-time run-ptest; cd -; ptest-runner
> > > > > > glibc-tests
> > > > > >
> > > > > > To facilitate debugging, source files are provided by
> > > > > > default with the unstripped debugging symbols. Such
> > > > > > approach would reduce the already complex recipe (as it
> > > > > > inherits base glibc one), so there is no need to also
> > > > > > install *-dbg and *-src packages.  
> > > > >
> > > > >
> > > > > does it have to be a separate recipe I wonder if we can have
> > > > > it built as part of glibc itself controlled via ptest knob  
> > > >
> > > > I've followed the glibc-testsuite recipe to provide tests for
> > > > ptest. Test creation is similar to it, but doesn't require QEMU
> > > > run (tests are executed on the HW).
> > > >
> > > > Another rationale was to have some kind of "features"
> > > > separation in different file (liked glibc-mtrace), which is
> > > > easier to maintain and review.
> > > >
> > > > Last but not least - separate recipe (and built binaries) allow
> > > > some kind of magic with selection of used test programs (this
> > > > may be useful if one would like to have different sets of tests
> > > > in different packages)  
> > >
> > > That’s seems ok I think the names are quite confusing now not
> > > that it was not so much better before but now we have glibc-tests
> > > and glibc-testsuites which do same things but in very different
> > > way maybe glibc-testsuite should be renamed to something like
> > > glibc-tests-crosd or some such  
> >
> > I think that glibc-testsuite_2.34.bb shall be renamed to
> > glibc-tests-qemu_2.34.bb as it is more descriptive.  
> 
> is it only runnable in qemu ? I thought we could use a read board as
> well with IP address

It looks like by default the QEMU is used in this recipe. 

This recipe provides custom check-test-wrapper, which can log
into remote board via ssh (when TOOLCHAIN_TEST_TARGET = "ssh").

This looks a bit awkward for me, as the goal would be to run built
tests on target (exact) HW without the need of SSH.

It is also easier to debug the code with the real HW.

> 
> >
> > Then, glibc-tests_2.34.bb could be left as it is now, as inheriting
> > ptest requires it to be added as 'glibc-tests-ptest' in
> > meta/conf/distro/include/ptest-packagelists.inc
> >
> > (I've tried to rename it to glibc-tests-ptest_2.34.bb, but then it
> > was required to add glibc-tests-ptest-ptest to the
> > ptest-packagelist.inc file, which is a bit clumsy IMHO).
> >  
> > >  
> > > >  
> > > > >  
> > > > > >
> > > > > > Signed-off-by: Lukasz Majewski 
> > > > > > ---
> > > > > >   .../distro/include/ptest-packagelists.inc |   1 +
> > > > > >   meta/recipes-core/glibc/glibc-tests_2.34.bb   | 101
> > > > > > ++
> > > > > > meta/recipes-core/glibc/glibc/run-ptest-all | 25 +
> > > > > > meta/recipes-core/glibc/glibc/run-ptest-time  |  30 ++
> > > > > > 4 files changed, 157 insertions(+) create mode 100644
> > > > > > meta/recipes-core/glibc/glibc-tests_2.34.bb create mode
> > > > > > 100755 meta/recipes-core/glibc/glibc/run-ptest-all create
> > > > > > mode 100755 meta/recipes-core/glibc/glibc/run-ptest-time
> > > > > >
> > > > > > diff --git a/meta/conf/distro/include/ptest-packagelists.inc
> > > > > > b/meta/conf/distro/include/ptest-packagelists.inc index
> > > > > > 3872bdc942..e460ad1c8b 100644 ---
> > > > > > a/meta/conf/distro/include/ptest-packagelists.inc +++
> > > > > > b/meta/conf/distro/include/ptest-packagelists.inc @@ -59,6
> > > > > > +59,7 @@ PTESTS_FAST = "\ slang-ptest \
> > > > > >   wayland-ptest \
> > > > > >   zlib-ptest \
> > > > > > +glibc-tests-ptest \
> > > > > >   "
> > > > > >   PTESTS_FAST:remove:mips64 = "qemu-ptest"
> > > > > >