[OE-core] [kirkstone][PATCH 5/5] binutils: Mark CVE-2022-47696 as patched
Signed-off-by: Chaitanya Vadrevu --- .../binutils/binutils/0025-CVE-2023-25588.patch | 2 ++ 1 file changed, 2 insertions(+) diff --git a/meta/recipes-devtools/binutils/binutils/0025-CVE-2023-25588.patch b/meta/recipes-devtools/binutils/binutils/0025-CVE-2023-25588.patch index 142d201c401..9b5825037fb 100644 --- a/meta/recipes-devtools/binutils/binutils/0025-CVE-2023-25588.patch +++ b/meta/recipes-devtools/binutils/binutils/0025-CVE-2023-25588.patch @@ -17,8 +17,10 @@ anyway, so get rid of them. Also, simplify and correct sanity checks. Upstream-Status: Backport [https://sourceware.org/git/?p=binutils-gdb.git;a=commitdiff_plain;h=d12f8998d2d086f0a6606589e5aedb7147e6f2f1] CVE: CVE-2023-25588 +CVE: CVE-2022-47696 Signed-off-by: Deepthi Hemraj +Signed-off-by: Chaitanya Vadrevu --- -- 2.34.1 -=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#189109): https://lists.openembedded.org/g/openembedded-core/message/189109 Mute This Topic: https://lists.openembedded.org/mt/101952458/21656 Group Owner: openembedded-core+ow...@lists.openembedded.org Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [arch...@mail-archive.com] -=-=-=-=-=-=-=-=-=-=-=-
[OE-core] [kirkstone][PATCH 4/5] binutils: Mark CVE-2022-47673 as patched
Signed-off-by: Chaitanya Vadrevu --- .../binutils/binutils/0022-CVE-2023-25584-3.patch | 2 ++ 1 file changed, 2 insertions(+) diff --git a/meta/recipes-devtools/binutils/binutils/0022-CVE-2023-25584-3.patch b/meta/recipes-devtools/binutils/binutils/0022-CVE-2023-25584-3.patch index abe501e5709..47cc3f310b3 100644 --- a/meta/recipes-devtools/binutils/binutils/0022-CVE-2023-25584-3.patch +++ b/meta/recipes-devtools/binutils/binutils/0022-CVE-2023-25584-3.patch @@ -35,8 +35,10 @@ Lack of bounds checking in vms-alpha.c parse_module Upstream-Status: Backport [https://sourceware.org/git/?p=binutils-gdb.git;a=commitdiff_plain;h=77c225bdeb410cf60da804879ad41622f5f1aa44] CVE: CVE-2023-25584 +CVE: CVE-2022-47673 Signed-off-by: Deepthi Hemraj +Signed-off-by: Chaitanya Vadrevu --- -- 2.34.1 -=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#189108): https://lists.openembedded.org/g/openembedded-core/message/189108 Mute This Topic: https://lists.openembedded.org/mt/101952457/21656 Group Owner: openembedded-core+ow...@lists.openembedded.org Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [arch...@mail-archive.com] -=-=-=-=-=-=-=-=-=-=-=-
[OE-core] [kirkstone][PATCH 3/5] binutils: Fix CVE-2022-45703
Upstream-Status: Backport following
*
https://sourceware.org/git/?p=binutils-gdb.git;a=commitdiff;h=244e19c79111eed017ee38ab1d44fb2a6cd1b636
*
https://sourceware.org/git/?p=binutils-gdb.git;a=commitdiff;h=69bfd1759db41c8d369f9dcc98a135c5a5d97299
Signed-off-by: Chaitanya Vadrevu
---
.../binutils/binutils-2.38.inc| 2 +
.../binutils/0032-CVE-2022-45703-1.patch | 146 ++
.../binutils/0032-CVE-2022-45703-2.patch | 31
3 files changed, 179 insertions(+)
create mode 100644
meta/recipes-devtools/binutils/binutils/0032-CVE-2022-45703-1.patch
create mode 100644
meta/recipes-devtools/binutils/binutils/0032-CVE-2022-45703-2.patch
diff --git a/meta/recipes-devtools/binutils/binutils-2.38.inc
b/meta/recipes-devtools/binutils/binutils-2.38.inc
index 89d8fdeba85..ec5ba36d9a6 100644
--- a/meta/recipes-devtools/binutils/binutils-2.38.inc
+++ b/meta/recipes-devtools/binutils/binutils-2.38.inc
@@ -61,5 +61,7 @@ SRC_URI = "\
file://0029-CVE-2022-48065-3.patch \
file://0030-CVE-2022-44840.patch \
file://0031-CVE-2022-47695.patch \
+ file://0032-CVE-2022-45703-1.patch \
+ file://0032-CVE-2022-45703-2.patch \
"
S = "${WORKDIR}/git"
diff --git
a/meta/recipes-devtools/binutils/binutils/0032-CVE-2022-45703-1.patch
b/meta/recipes-devtools/binutils/binutils/0032-CVE-2022-45703-1.patch
new file mode 100644
index 000..2289d18c61b
--- /dev/null
+++ b/meta/recipes-devtools/binutils/binutils/0032-CVE-2022-45703-1.patch
@@ -0,0 +1,146 @@
+From 02c8847ad5686f77a842cdb395a41240445f90de Mon Sep 17 00:00:00 2001
+From: Alan Modra
+Date: Tue, 24 May 2022 09:32:14 +0930
+Subject: [PATCH] PR29169, invalid read displaying fuzzed .gdb_index
+
+ PR 29169
+ * dwarf.c (display_gdb_index): Combine sanity checks. Calculate
+ element counts, not word counts.
+
+Upstream-Status: Backport
[https://sourceware.org/git/?p=binutils-gdb.git;a=commitdiff;h=244e19c79111eed017ee38ab1d44fb2a6cd1b636]
+
+CVE: CVE-2022-45703
+
+Signed-off-by: Chaitanya Vadrevu
+---
+ binutils/dwarf.c | 80 +---
+ 1 file changed, 22 insertions(+), 58 deletions(-)
+
+diff --git a/binutils/dwarf.c b/binutils/dwarf.c
+index 2d151c60817..5e802ac78cd 100644
+--- a/binutils/dwarf.c
b/binutils/dwarf.c
+@@ -10463,7 +10463,7 @@ display_gdb_index (struct dwarf_section *section,
+ uint32_t cu_list_offset, tu_list_offset;
+ uint32_t address_table_offset, symbol_table_offset, constant_pool_offset;
+ unsigned int cu_list_elements, tu_list_elements;
+- unsigned int address_table_size, symbol_table_slots;
++ unsigned int address_table_elements, symbol_table_slots;
+ unsigned char *cu_list, *tu_list;
+ unsigned char *address_table, *symbol_table, *constant_pool;
+ unsigned int i;
+@@ -10511,48 +10511,19 @@ display_gdb_index (struct dwarf_section *section,
+ || tu_list_offset > section->size
+ || address_table_offset > section->size
+ || symbol_table_offset > section->size
+- || constant_pool_offset > section->size)
++ || constant_pool_offset > section->size
++ || tu_list_offset < cu_list_offset
++ || address_table_offset < tu_list_offset
++ || symbol_table_offset < address_table_offset
++ || constant_pool_offset < symbol_table_offset)
+ {
+ warn (_("Corrupt header in the %s section.\n"), section->name);
+ return 0;
+ }
+
+- /* PR 17531: file: 418d0a8a. */
+- if (tu_list_offset < cu_list_offset)
+-{
+- warn (_("TU offset (%x) is less than CU offset (%x)\n"),
+- tu_list_offset, cu_list_offset);
+- return 0;
+-}
+-
+- cu_list_elements = (tu_list_offset - cu_list_offset) / 8;
+-
+- if (address_table_offset < tu_list_offset)
+-{
+- warn (_("Address table offset (%x) is less than TU offset (%x)\n"),
+- address_table_offset, tu_list_offset);
+- return 0;
+-}
+-
+- tu_list_elements = (address_table_offset - tu_list_offset) / 8;
+-
+- /* PR 17531: file: 18a47d3d. */
+- if (symbol_table_offset < address_table_offset)
+-{
+- warn (_("Symbol table offset (%x) is less then Address table offset
(%x)\n"),
+- symbol_table_offset, address_table_offset);
+- return 0;
+-}
+-
+- address_table_size = symbol_table_offset - address_table_offset;
+-
+- if (constant_pool_offset < symbol_table_offset)
+-{
+- warn (_("Constant pool offset (%x) is less than symbol table offset
(%x)\n"),
+- constant_pool_offset, symbol_table_offset);
+- return 0;
+-}
+-
++ cu_list_elements = (tu_list_offset - cu_list_offset) / 16;
++ tu_list_elements = (address_table_offset - tu_list_offset) / 24;
++ address_table_elements = (symbol_table_offset - address_table_offset) / 20;
+ symbol_table_slots = (constant_pool_offset - symbol_table_offset) / 8;
+
+ cu_list = start + cu_list_offset;
+@@ -10561,31 +10532,25 @@ display_gdb_index (struct dwarf_section *section,
+ symb
[OE-core] [kirkstone][PATCH 2/5] binutils: Fix CVE-2022-47695
Upstream-Status: Backport
[https://sourceware.org/git/?p=binutils-gdb.git;a=commitdiff;h=3d3af4ba39e892b1c544d667ca241846bc3df386]
Signed-off-by: Chaitanya Vadrevu
---
.../binutils/binutils-2.38.inc| 1 +
.../binutils/0031-CVE-2022-47695.patch| 58 +++
2 files changed, 59 insertions(+)
create mode 100644
meta/recipes-devtools/binutils/binutils/0031-CVE-2022-47695.patch
diff --git a/meta/recipes-devtools/binutils/binutils-2.38.inc
b/meta/recipes-devtools/binutils/binutils-2.38.inc
index 7c5d8f79ec6..89d8fdeba85 100644
--- a/meta/recipes-devtools/binutils/binutils-2.38.inc
+++ b/meta/recipes-devtools/binutils/binutils-2.38.inc
@@ -60,5 +60,6 @@ SRC_URI = "\
file://0029-CVE-2022-48065-2.patch \
file://0029-CVE-2022-48065-3.patch \
file://0030-CVE-2022-44840.patch \
+ file://0031-CVE-2022-47695.patch \
"
S = "${WORKDIR}/git"
diff --git a/meta/recipes-devtools/binutils/binutils/0031-CVE-2022-47695.patch
b/meta/recipes-devtools/binutils/binutils/0031-CVE-2022-47695.patch
new file mode 100644
index 000..f2e9cea0273
--- /dev/null
+++ b/meta/recipes-devtools/binutils/binutils/0031-CVE-2022-47695.patch
@@ -0,0 +1,58 @@
+From 2f7426b9bb2d2450b32cad3d79fab9abe3ec42bb Mon Sep 17 00:00:00 2001
+From: Alan Modra
+Date: Sun, 4 Dec 2022 22:15:40 +1030
+Subject: [PATCH] PR29846, segmentation fault in objdump.c compare_symbols
+
+Fixes a fuzzed object file problem where plt relocs were manipulated
+in such a way that two synthetic symbols were generated at the same
+plt location. Won't occur in real object files.
+
+ PR 29846
+ PR 20337
+ * objdump.c (compare_symbols): Test symbol flags to exclude
+ section and synthetic symbols before attempting to check flavour.
+
+Upstream-Status: Backport
[https://sourceware.org/git/?p=binutils-gdb.git;a=commitdiff;h=3d3af4ba39e892b1c544d667ca241846bc3df386]
+
+CVE: CVE-2022-47695
+
+Signed-off-by: Chaitanya Vadrevu
+---
+ binutils/objdump.c | 23 ++-
+ 1 file changed, 10 insertions(+), 13 deletions(-)
+
+diff --git a/binutils/objdump.c b/binutils/objdump.c
+index 08a0fe521d8..21f75f4db40 100644
+--- a/binutils/objdump.c
b/binutils/objdump.c
+@@ -1165,20 +1165,17 @@ compare_symbols (const void *ap, const void *bp)
+ return 1;
+ }
+
+- if (bfd_get_flavour (bfd_asymbol_bfd (a)) == bfd_target_elf_flavour
++ /* Sort larger size ELF symbols before smaller. See PR20337. */
++ bfd_vma asz = 0;
++ if ((a->flags & (BSF_SECTION_SYM | BSF_SYNTHETIC)) == 0
++ && bfd_get_flavour (bfd_asymbol_bfd (a)) == bfd_target_elf_flavour)
++asz = ((elf_symbol_type *) a)->internal_elf_sym.st_size;
++ bfd_vma bsz = 0;
++ if ((b->flags & (BSF_SECTION_SYM | BSF_SYNTHETIC)) == 0
+ && bfd_get_flavour (bfd_asymbol_bfd (b)) == bfd_target_elf_flavour)
+-{
+- bfd_vma asz, bsz;
+-
+- asz = 0;
+- if ((a->flags & (BSF_SECTION_SYM | BSF_SYNTHETIC)) == 0)
+- asz = ((elf_symbol_type *) a)->internal_elf_sym.st_size;
+- bsz = 0;
+- if ((b->flags & (BSF_SECTION_SYM | BSF_SYNTHETIC)) == 0)
+- bsz = ((elf_symbol_type *) b)->internal_elf_sym.st_size;
+- if (asz != bsz)
+- return asz > bsz ? -1 : 1;
+-}
++bsz = ((elf_symbol_type *) b)->internal_elf_sym.st_size;
++ if (asz != bsz)
++return asz > bsz ? -1 : 1;
+
+ /* Symbols that start with '.' might be section names, so sort them
+ after symbols that don't start with '.'. */
--
2.34.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189106):
https://lists.openembedded.org/g/openembedded-core/message/189106
Mute This Topic: https://lists.openembedded.org/mt/101952455/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core] [kirkstone][PATCH 1/5] binutils: Fix CVE-2022-44840
Upstream-Status: Backport
[https://sourceware.org/git/?p=binutils-gdb.git;a=commitdiff;h=28750e3b967da2207d51cbce9fc8be262817ee59]
Signed-off-by: Chaitanya Vadrevu
---
.../binutils/binutils-2.38.inc| 1 +
.../binutils/0030-CVE-2022-44840.patch| 151 ++
2 files changed, 152 insertions(+)
create mode 100644
meta/recipes-devtools/binutils/binutils/0030-CVE-2022-44840.patch
diff --git a/meta/recipes-devtools/binutils/binutils-2.38.inc
b/meta/recipes-devtools/binutils/binutils-2.38.inc
index 638b1ba93de..7c5d8f79ec6 100644
--- a/meta/recipes-devtools/binutils/binutils-2.38.inc
+++ b/meta/recipes-devtools/binutils/binutils-2.38.inc
@@ -59,5 +59,6 @@ SRC_URI = "\
file://0029-CVE-2022-48065-1.patch \
file://0029-CVE-2022-48065-2.patch \
file://0029-CVE-2022-48065-3.patch \
+ file://0030-CVE-2022-44840.patch \
"
S = "${WORKDIR}/git"
diff --git a/meta/recipes-devtools/binutils/binutils/0030-CVE-2022-44840.patch
b/meta/recipes-devtools/binutils/binutils/0030-CVE-2022-44840.patch
new file mode 100644
index 000..43c92e5
--- /dev/null
+++ b/meta/recipes-devtools/binutils/binutils/0030-CVE-2022-44840.patch
@@ -0,0 +1,151 @@
+From 56e74b51b905bf169315107a280b5c2632e13c07 Mon Sep 17 00:00:00 2001
+From: Alan Modra
+Date: Sun, 30 Oct 2022 19:08:51 +1030
+Subject: [PATCH] Pool section entries for DWP version 1
+
+Ref: https://gcc.gnu.org/wiki/DebugFissionDWP?action=recall&rev=3
+
+Fuzzers have found a weakness in the code stashing pool section
+entries. With random nonsensical values in the index entries (rather
+than each index pointing to its own set distinct from other sets),
+it's possible to overflow the space allocated, losing the NULL
+terminator. Without a terminator, find_section_in_set can run off the
+end of the shndx_pool buffer. Fix this by scanning the pool directly.
+
+binutils/
+ * dwarf.c (add_shndx_to_cu_tu_entry): Delete range check.
+ (end_cu_tu_entry): Likewise.
+ (process_cu_tu_index): Fill shndx_pool by directly scanning
+ pool, rather than indirectly from index entries.
+
+Upstream-Status: Backport
[https://sourceware.org/git/?p=binutils-gdb.git;a=commitdiff;h=28750e3b967da2207d51cbce9fc8be262817ee59]
+
+CVE: CVE-2022-44840
+
+Signed-off-by: Chaitanya Vadrevu
+---
+ binutils/dwarf.c | 90 ++--
+ 1 file changed, 41 insertions(+), 49 deletions(-)
+
+diff --git a/binutils/dwarf.c b/binutils/dwarf.c
+index f8fa2f68387..28b296f54dd 100644
+--- a/binutils/dwarf.c
b/binutils/dwarf.c
+@@ -10705,22 +10705,12 @@ prealloc_cu_tu_list (unsigned int nshndx)
+ static void
+ add_shndx_to_cu_tu_entry (unsigned int shndx)
+ {
+- if (shndx_pool_used >= shndx_pool_size)
+-{
+- error (_("Internal error: out of space in the shndx pool.\n"));
+- return;
+-}
+ shndx_pool [shndx_pool_used++] = shndx;
+ }
+
+ static void
+ end_cu_tu_entry (void)
+ {
+- if (shndx_pool_used >= shndx_pool_size)
+-{
+- error (_("Internal error: out of space in the shndx pool.\n"));
+- return;
+-}
+ shndx_pool [shndx_pool_used++] = 0;
+ }
+
+@@ -10826,53 +10816,55 @@ process_cu_tu_index (struct dwarf_section *section,
int do_display)
+
+ if (version == 1)
+ {
++ unsigned char *shndx_list;
++ unsigned int shndx;
++
+ if (!do_display)
+- prealloc_cu_tu_list ((limit - ppool) / 4);
+- for (i = 0; i < nslots; i++)
+ {
+-unsigned char *shndx_list;
+-unsigned int shndx;
+-
+-SAFE_BYTE_GET (signature, phash, 8, limit);
+-if (signature != 0)
++prealloc_cu_tu_list ((limit - ppool) / 4);
++for (shndx_list = ppool + 4; shndx_list <= limit - 4; shndx_list += 4)
+ {
+-SAFE_BYTE_GET (j, pindex, 4, limit);
+-shndx_list = ppool + j * 4;
+-/* PR 17531: file: 705e010d. */
+-if (shndx_list < ppool)
+- {
+-warn (_("Section index pool located before start of
section\n"));
+-return 0;
+- }
++shndx = byte_get (shndx_list, 4);
++add_shndx_to_cu_tu_entry (shndx);
++ }
++end_cu_tu_entry ();
++ }
++ else
++ for (i = 0; i < nslots; i++)
++{
++ SAFE_BYTE_GET (signature, phash, 8, limit);
++ if (signature != 0)
++{
++ SAFE_BYTE_GET (j, pindex, 4, limit);
++ shndx_list = ppool + j * 4;
++ /* PR 17531: file: 705e010d. */
++ if (shndx_list < ppool)
++{
++ warn (_("Section index pool located before start of
section\n"));
++ return 0;
++}
+
+-if (do_display)
+ printf (_(" [%3d] Signature: 0x%s Sections: "),
+ i, dwarf_vmatoa ("x", signature));
+-for (;;)
+- {
+-if (shndx_lis
[OE-core][mickledore 27/27] gdb: fix RDEPENDS for PACKAGECONFIG[tui]
From: Stefan Tauner
TUI mode needs terminfo at runtime, which is required to be
explicitly stated in the respective PACKAGECONFIG variable.
Without this change /etc/terminfo/ might be missing, which
leads to a runtime error when trying to use tui, e.g.:
(gdb) tui enable
Cannot enable the TUI: error opening terminal [TERM=xterm-256color]
Signed-off-by: Stefan Tauner
Signed-off-by: Richard Purdie
(cherry picked from commit 5f17bc03a0c2d894e43c3c835fa38a24b1d5df64)
Signed-off-by: Steve Sakoman
---
meta/recipes-devtools/gdb/gdb-common.inc | 3 +--
1 file changed, 1 insertion(+), 2 deletions(-)
diff --git a/meta/recipes-devtools/gdb/gdb-common.inc
b/meta/recipes-devtools/gdb/gdb-common.inc
index 925b0c2f80..0f392357fe 100644
--- a/meta/recipes-devtools/gdb/gdb-common.inc
+++ b/meta/recipes-devtools/gdb/gdb-common.inc
@@ -35,8 +35,7 @@ PACKAGECONFIG ??= "readline
${@bb.utils.filter('DISTRO_FEATURES', 'debuginfod',
PACKAGECONFIG[readline] =
"--with-system-readline,--without-system-readline,readline"
PACKAGECONFIG[python] =
"--with-python=${WORKDIR}/python,--without-python,python3,python3
python3-codecs"
PACKAGECONFIG[babeltrace] = "--with-babeltrace,--without-babeltrace,babeltrace"
-# ncurses is already a hard DEPENDS, but would be added here if it weren't
-PACKAGECONFIG[tui] = "--enable-tui,--disable-tui"
+PACKAGECONFIG[tui] = "--enable-tui,--disable-tui,,ncurses-terminfo-base"
PACKAGECONFIG[xz] = "--with-lzma
--with-liblzma-prefix=${STAGING_DIR_HOST},--without-lzma,xz"
PACKAGECONFIG[debuginfod] = "--with-debuginfod, --without-debuginfod, elfutils"
--
2.34.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189104):
https://lists.openembedded.org/g/openembedded-core/message/189104
Mute This Topic: https://lists.openembedded.org/mt/101950219/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core][mickledore 26/27] oeqa/selftest/wic: Improve assertTrue calls
From: Richard Purdie
assertTrue is a problematic call use in test cases since when it fails,
you just get an unhelpful "False is not True" message.
Replace some uses with assertIn/assertNotIn which will give more helpful results
and for the rest, add msg entries which given more helpful debugging.
For example, this patch would help debugging of #15176.
Signed-off-by: Richard Purdie
(cherry picked from commit 35d4c39e0df1a304f557471151a03d1e4b0f30c7)
Signed-off-by: Steve Sakoman
---
meta/lib/oeqa/selftest/cases/wic.py | 36 ++---
1 file changed, 18 insertions(+), 18 deletions(-)
diff --git a/meta/lib/oeqa/selftest/cases/wic.py
b/meta/lib/oeqa/selftest/cases/wic.py
index b26b649c3a..760b1c67ce 100644
--- a/meta/lib/oeqa/selftest/cases/wic.py
+++ b/meta/lib/oeqa/selftest/cases/wic.py
@@ -729,7 +729,7 @@ part /etc --source rootfs --fstype=ext4
--change-directory=etc
wicout = glob(os.path.join(self.resultdir, "wictestdisk-*.direct"))
self.assertEqual(1, len(wicout))
size = os.path.getsize(wicout[0])
-self.assertTrue(size > extraspace)
+self.assertTrue(size > extraspace, msg="Extra space not present (%s vs
%s)" % (size, extraspace))
class Wic2(WicTestCase):
@@ -756,7 +756,7 @@ class Wic2(WicTestCase):
basename = bb_vars['IMAGE_BASENAME']
self.assertEqual(basename, image)
path = os.path.join(imgdatadir, basename) + '.env'
-self.assertTrue(os.path.isfile(path))
+self.assertTrue(os.path.isfile(path), msg="File %s wasn't generated as
expected" % path)
wicvars = set(bb_vars['WICVARS'].split())
# filter out optional variables
@@ -769,7 +769,7 @@ class Wic2(WicTestCase):
# test if variables used by wic present in the .env file
for var in wicvars:
self.assertTrue(var in content, "%s is not in .env file" % var)
-self.assertTrue(content[var])
+self.assertTrue(content[var], "%s doesn't have a value (%s)" %
(var, content[var]))
def test_image_vars_dir_short(self):
"""Test image vars directory selection -v option"""
@@ -816,8 +816,8 @@ class Wic2(WicTestCase):
# pointing to existing files
for suffix in ('wic', 'manifest'):
path = prefix + suffix
-self.assertTrue(os.path.islink(path))
-self.assertTrue(os.path.isfile(os.path.realpath(path)))
+self.assertTrue(os.path.islink(path), msg="Link %s wasn't
generated as expected" % path)
+self.assertTrue(os.path.isfile(os.path.realpath(path)), msg="File
linked to by %s wasn't generated as expected" % path)
# TODO this should work on aarch64
@skipIfNotArch(['i586', 'i686', 'x86_64'])
@@ -1087,7 +1087,7 @@ class Wic2(WicTestCase):
self.remove_config(config)
bb_vars = get_bb_vars(['DEPLOY_DIR_IMAGE', 'IMAGE_LINK_NAME'], image)
image_path = os.path.join(bb_vars['DEPLOY_DIR_IMAGE'], '%s.wic' %
bb_vars['IMAGE_LINK_NAME'])
-self.assertTrue(os.path.exists(image_path))
+self.assertTrue(os.path.exists(image_path), msg="Image file %s wasn't
generated as expected" % image_path)
sysroot = get_bb_var('RECIPE_SYSROOT_NATIVE', 'wic-tools')
@@ -1328,11 +1328,11 @@ class Wic2(WicTestCase):
orig_sizes = [int(line.split()[3]) for line in
orig.output.split('\n')[1:]]
exp_sizes = [int(line.split()[3]) for line in
exp.output.split('\n')[1:]]
self.assertEqual(orig_sizes[0], exp_sizes[0]) # first partition is
not resized
-self.assertTrue(orig_sizes[1] < exp_sizes[1])
+self.assertTrue(orig_sizes[1] < exp_sizes[1], msg="Parition size
wasn't enlarged (%s vs %s)" % (orig_sizes[1], exp_sizes[1]))
# Check if all free space is partitioned
result = runCmd("%s/usr/sbin/sfdisk -F %s" % (sysroot,
new_image_path))
-self.assertTrue("0 B, 0 bytes, 0 sectors" in result.output)
+self.assertIn("0 B, 0 bytes, 0 sectors", result.output)
os.rename(image_path, image_path + '.bak')
os.rename(new_image_path, image_path)
@@ -1390,7 +1390,7 @@ class ModifyTests(WicTestCase):
# check if file is there
result = runCmd("wic ls %s:1/ -n %s" % (images[0], sysroot))
self.assertEqual(7, len(result.output.split('\n')))
-self.assertTrue(os.path.basename(testfile.name) in result.output)
+self.assertIn(os.path.basename(testfile.name), result.output)
# prepare directory
testdir = os.path.join(self.resultdir, 'wic-test-cp-dir')
@@ -1404,13 +1404,13 @@ class ModifyTests(WicTestCase):
# check if directory is there
result = runCmd("wic ls %s:1/ -n %s" % (images[0], sysroot))
self.assertEqual(8, len(result.output.split('\n')))
-self.assertTrue(os.path.basename(testdir) in result.outp
[OE-core][mickledore 25/27] libsoup-2.4: Only specify --cross-file when building for target
From: Peter Kjellerstedt
The soup.cross file is only created when building for target so only
tell meson to read it when it exists. This allows libsoup-2.4-native to
be built again.
Signed-off-by: Peter Kjellerstedt
Signed-off-by: Richard Purdie
(cherry picked from commit 4acbd2269931b500846d56885c3304d244e514f8)
Signed-off-by: Steve Sakoman
---
meta/recipes-support/libsoup/libsoup-2.4_2.74.3.bb | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/meta/recipes-support/libsoup/libsoup-2.4_2.74.3.bb
b/meta/recipes-support/libsoup/libsoup-2.4_2.74.3.bb
index 5abeced30b..a605857c60 100644
--- a/meta/recipes-support/libsoup/libsoup-2.4_2.74.3.bb
+++ b/meta/recipes-support/libsoup/libsoup-2.4_2.74.3.bb
@@ -40,7 +40,7 @@ do_write_config:append:class-target() {
ntlm_auth = '${bindir}/ntlm_auth'
EOF
}
-EXTRA_OEMESON += "--cross-file ${WORKDIR}/soup.cross"
+EXTRA_OEMESON:append:class-target = " --cross-file ${WORKDIR}/soup.cross"
EXTRA_OEMESON += "-Dvapi=disabled -Dtls_check=false"
--
2.34.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189102):
https://lists.openembedded.org/g/openembedded-core/message/189102
Mute This Topic: https://lists.openembedded.org/mt/101950215/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core][mickledore 24/27] openssl: ensure all ptest fails are caught
From: Alexander Kanavin
Piping results through sed may mask failures that sed isn't catching.
Signed-off-by: Alexander Kanavin
Signed-off-by: Richard Purdie
(cherry picked from commit 2b1b0e9e4d5011e7c2fd1b59fc277a7cfdc41194)
Signed-off-by: Steve Sakoman
---
meta/recipes-connectivity/openssl/openssl/run-ptest | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/meta/recipes-connectivity/openssl/openssl/run-ptest
b/meta/recipes-connectivity/openssl/openssl/run-ptest
index 10c9b49e4a..c89ec5afa1 100644
--- a/meta/recipes-connectivity/openssl/openssl/run-ptest
+++ b/meta/recipes-connectivity/openssl/openssl/run-ptest
@@ -9,4 +9,4 @@ export TOP=.
# OPENSSL_ENGINES is relative from the test binaries
export OPENSSL_ENGINES=../engines
-HARNESS_JOBS=4 perl ./test/run_tests.pl $* | sed -u -r -e '/(.*) \.*.ok/
s/^/PASS: /g' -r -e '/Dubious(.*)/ s/^/FAIL: /g' -e '/(.*) \.*.skipped: (.*)/
s/^/SKIP: /g'
+{ HARNESS_JOBS=4 perl ./test/run_tests.pl $* || echo "FAIL: openssl" ; } | sed
-u -r -e '/(.*) \.*.ok/ s/^/PASS: /g' -r -e '/Dubious(.*)/ s/^/FAIL: /g' -e
'/(.*) \.*.skipped: (.*)/ s/^/SKIP: /g'
--
2.34.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189101):
https://lists.openembedded.org/g/openembedded-core/message/189101
Mute This Topic: https://lists.openembedded.org/mt/101950214/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core][mickledore 23/27] openssl: parallelize tests
From: Alexander Kanavin This brings them from 15 minutes to just over 4. Signed-off-by: Alexander Kanavin Signed-off-by: Richard Purdie (cherry picked from commit 978aa94aaa441da012aeb904a0f1cbcd4d91) Signed-off-by: Steve Sakoman --- meta/recipes-connectivity/openssl/openssl/run-ptest | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/meta/recipes-connectivity/openssl/openssl/run-ptest b/meta/recipes-connectivity/openssl/openssl/run-ptest index 8dff79101f..10c9b49e4a 100644 --- a/meta/recipes-connectivity/openssl/openssl/run-ptest +++ b/meta/recipes-connectivity/openssl/openssl/run-ptest @@ -9,4 +9,4 @@ export TOP=. # OPENSSL_ENGINES is relative from the test binaries export OPENSSL_ENGINES=../engines -perl ./test/run_tests.pl $* | sed -u -r -e '/(.*) \.*.ok/ s/^/PASS: /g' -r -e '/Dubious(.*)/ s/^/FAIL: /g' -e '/(.*) \.*.skipped: (.*)/ s/^/SKIP: /g' +HARNESS_JOBS=4 perl ./test/run_tests.pl $* | sed -u -r -e '/(.*) \.*.ok/ s/^/PASS: /g' -r -e '/Dubious(.*)/ s/^/FAIL: /g' -e '/(.*) \.*.skipped: (.*)/ s/^/SKIP: /g' -- 2.34.1 -=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#189100): https://lists.openembedded.org/g/openembedded-core/message/189100 Mute This Topic: https://lists.openembedded.org/mt/101950213/21656 Group Owner: openembedded-core+ow...@lists.openembedded.org Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [arch...@mail-archive.com] -=-=-=-=-=-=-=-=-=-=-=-
[OE-core][mickledore 22/27] strace: parallelize ptest
From: Alexander Kanavin strace is one of the slowest tests otherwise (can take 40 minutes or more), and this brings it to under 10 minutes \0/ Signed-off-by: Alexander Kanavin Signed-off-by: Richard Purdie (cherry picked from commit 0c632b418a785494318d9f375a07d879772e8ced) Signed-off-by: Steve Sakoman --- meta/recipes-devtools/strace/strace/run-ptest | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/meta/recipes-devtools/strace/strace/run-ptest b/meta/recipes-devtools/strace/strace/run-ptest index 86daed9220..1224229e8f 100755 --- a/meta/recipes-devtools/strace/strace/run-ptest +++ b/meta/recipes-devtools/strace/strace/run-ptest @@ -3,7 +3,7 @@ set -u export TIMEOUT_DURATION=240 -make -B -C tests -k test-suite.log +make -j4 -B -C tests -k test-suite.log res=$? if [ $res -ne 0 ]; then cat tests/test-suite.log -- 2.34.1 -=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#189099): https://lists.openembedded.org/g/openembedded-core/message/189099 Mute This Topic: https://lists.openembedded.org/mt/101950210/21656 Group Owner: openembedded-core+ow...@lists.openembedded.org Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [arch...@mail-archive.com] -=-=-=-=-=-=-=-=-=-=-=-
[OE-core][mickledore 21/27] ptest: report tests that were killed on timeout
From: Alexander Kanavin
I'm not sure if this was reported correctly before, but it
currently is not. Test that is stuck is an error in itself.
Signed-off-by: Alexander Kanavin
Signed-off-by: Richard Purdie
(cherry picked from commit 002e27c9932a83e46be0b03a5232594cfba7212c)
Signed-off-by: Steve Sakoman
---
meta/lib/oeqa/runtime/cases/ptest.py | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/meta/lib/oeqa/runtime/cases/ptest.py
b/meta/lib/oeqa/runtime/cases/ptest.py
index 3ef9022188..454a19430f 100644
--- a/meta/lib/oeqa/runtime/cases/ptest.py
+++ b/meta/lib/oeqa/runtime/cases/ptest.py
@@ -93,7 +93,7 @@ class PtestRunnerTest(OERuntimeTestCase):
failed_tests = {}
for section in sections:
-if 'exitcode' in sections[section].keys():
+if 'exitcode' in sections[section].keys() or 'timeout' in
sections[section].keys():
failed_tests[section] = sections[section]["log"]
for section in results:
--
2.34.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189098):
https://lists.openembedded.org/g/openembedded-core/message/189098
Mute This Topic: https://lists.openembedded.org/mt/101950208/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core][mickledore 20/27] igt-gpu-tools: do not write shortened git commit hash into binaries
From: Alexander Kanavin
Shortened hashes are prone to collisions, and in this case git
lengthens the hash to resolve the collision. This in turn breaks
reproducibility, depending on whether the colliding hash is present
in the history or not. This has been observed here:
http://autobuilder.yocto.io/pub/repro-fail/oe-reproducible-20230917-br60if6q/packages/diff-html/
Signed-off-by: Alexander Kanavin
Signed-off-by: Richard Purdie
(cherry picked from commit a74e1eff93d4de5724481e3298308a6d925a4512)
Signed-off-by: Steve Sakoman
---
meta/recipes-graphics/igt-gpu-tools/igt-gpu-tools_git.bb | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/meta/recipes-graphics/igt-gpu-tools/igt-gpu-tools_git.bb
b/meta/recipes-graphics/igt-gpu-tools/igt-gpu-tools_git.bb
index f4799fbc77..6bbc601986 100644
--- a/meta/recipes-graphics/igt-gpu-tools/igt-gpu-tools_git.bb
+++ b/meta/recipes-graphics/igt-gpu-tools/igt-gpu-tools_git.bb
@@ -26,7 +26,7 @@ PACKAGE_BEFORE_PN = "${PN}-benchmarks ${PN}-tests"
PACKAGECONFIG[chamelium] = "-Dchamelium=enabled,-Dchamelium=disabled,gsl
xmlrpc-c"
-EXTRA_OEMESON = "-Ddocs=disabled -Drunner=enabled
-Dsrcdir=/usr/src/debug/${PN}/${PV}-${PR}/git/"
+EXTRA_OEMESON = "-Ddocs=disabled -Drunner=enabled
-Dsrcdir=/usr/src/debug/${PN}/${PV}-${PR}/git/ -Dversion_hash=${PV}"
COMPATIBLE_HOST = "(x86_64.*|i.86.*|arm.*|aarch64).*-linux"
COMPATIBLE_HOST:libc-musl:class-target = "null"
SECURITY_LDFLAGS = "${SECURITY_X_LDFLAGS}"
--
2.34.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189097):
https://lists.openembedded.org/g/openembedded-core/message/189097
Mute This Topic: https://lists.openembedded.org/mt/101950205/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core][mickledore 19/27] oeqa/selftest/context.py: check git command return values
From: Mikko Rapeli
Don't ignore return values from the git command lines. If something goes
wrong, fail the test right away.
Signed-off-by: Mikko Rapeli
Signed-off-by: Richard Purdie
(cherry picked from commit dfc178a70d6fa60e89d4716f05d68e2c72c6ecd3)
Signed-off-by: Steve Sakoman
---
meta/lib/oeqa/selftest/context.py | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/meta/lib/oeqa/selftest/context.py
b/meta/lib/oeqa/selftest/context.py
index c98763735f..39325f4b72 100644
--- a/meta/lib/oeqa/selftest/context.py
+++ b/meta/lib/oeqa/selftest/context.py
@@ -97,7 +97,7 @@ class OESelftestTestContext(OETestContext):
oe.path.copytree(builddir + "/cache", newbuilddir + "/cache")
oe.path.copytree(selftestdir, newselftestdir)
-subprocess.check_output("git init; git add *; git commit -a -m
'initial'", cwd=newselftestdir, shell=True)
+subprocess.check_output("git init && git add * && git commit -a -m
'initial'", cwd=newselftestdir, shell=True)
# Tried to used bitbake-layers add/remove but it requires recipe
parsing and hence is too slow
subprocess.check_output("sed %s/conf/bblayers.conf -i -e 's#%s#%s#g'"
% (newbuilddir, selftestdir, newselftestdir), cwd=newbuilddir, shell=True)
--
2.34.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189096):
https://lists.openembedded.org/g/openembedded-core/message/189096
Mute This Topic: https://lists.openembedded.org/mt/101950204/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core][mickledore 18/27] oeqa dnf_runtime.py: fix HTTP server IP address and port
From: Mikko Rapeli Use correct HTTPService parameters like apt.py when setting up the repo server. These work with qemu tun and slirp networking. Fixes test failure with slirp networking when executing testimage.bbclass selftests "oe-selftest -r runtime_test.TestImage". Signed-off-by: Mikko Rapeli (cherry picked from commit 764424df2f4b6bf0e89fb20b4253a7601468f70d) Signed-off-by: Steve Sakoman --- meta-selftest/lib/oeqa/runtime/cases/dnf_runtime.py | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/meta-selftest/lib/oeqa/runtime/cases/dnf_runtime.py b/meta-selftest/lib/oeqa/runtime/cases/dnf_runtime.py index 64a3502370..d2f0f88f7d 100644 --- a/meta-selftest/lib/oeqa/runtime/cases/dnf_runtime.py +++ b/meta-selftest/lib/oeqa/runtime/cases/dnf_runtime.py @@ -10,7 +10,8 @@ class DnfSelftest(DnfTest): import tempfile cls.temp_dir = tempfile.TemporaryDirectory(prefix="oeqa-remotefeeds-") cls.repo_server = HTTPService(os.path.join(cls.tc.td['WORKDIR'], 'oe-rootfs-repo'), - cls.tc.target.server_ip) + '0.0.0.0', port=cls.tc.target.server_port, + logger=cls.tc.logger) cls.repo_server.start() @classmethod -- 2.34.1 -=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#189095): https://lists.openembedded.org/g/openembedded-core/message/189095 Mute This Topic: https://lists.openembedded.org/mt/101950203/21656 Group Owner: openembedded-core+ow...@lists.openembedded.org Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [arch...@mail-archive.com] -=-=-=-=-=-=-=-=-=-=-=-
[OE-core][mickledore 17/27] libc-test: Run as non-root user
From: Khem Raj
Some of tests impose rlimit on it before running which wont be imposed
when running as root user.
Fixes
src/regression/pthread_atfork-errno-clobber.c:23: (pid = fork()) == -1 failed:
fork succeeded despite rlimit
src/regression/pthread_atfork-errno-clobber.c:23: (pid = fork()) == -1 failed:
fork succeeded despite rlimit
FAIL src/regression/pthread_atfork-errno-clobber-static.exe [status 1]
Signed-off-by: Khem Raj
Signed-off-by: Alexandre Belloni
(cherry picked from commit 585bf4b780a8ad60ba2b33cede4f0092ff61ddfc)
Signed-off-by: Steve Sakoman
---
.../musl/libc-test/run-libc-ptests| 28 ++
meta/recipes-core/musl/libc-test/run-ptest| 29 ++-
meta/recipes-core/musl/libc-test_git.bb | 5
3 files changed, 35 insertions(+), 27 deletions(-)
create mode 100644 meta/recipes-core/musl/libc-test/run-libc-ptests
diff --git a/meta/recipes-core/musl/libc-test/run-libc-ptests
b/meta/recipes-core/musl/libc-test/run-libc-ptests
new file mode 100644
index 00..0b4b687dec
--- /dev/null
+++ b/meta/recipes-core/musl/libc-test/run-libc-ptests
@@ -0,0 +1,28 @@
+#!/bin/sh
+
+set -e
+
+cd /opt/libc-test
+make cleanall
+make run || true
+
+echo ""
+echo "--- ptest result ---"
+# libc-test runs tests by module(e.g. src/api) and generates sub-module test
+# report(e.g. src/api/REPORT) first. After all tests finish, it generates the
+# consolidated report file src/REPORT.
+report="/opt/libc-test/src/REPORT"
+if ! [ -f "${report}" ]; then
+echo "${report} not found!"
+echo "FAIL: libc-test"
+exit 1
+# libc-test prints error on failure and prints nothing on success.
+elif grep -q '^FAIL src.*\.exe.*' "${report}"; then
+# Print test failure in ptest format.
+# e.g. "FAIL src/api/main.exe [status 1]" -> "FAIL: api_main"
+grep '^FAIL src.*\.exe.*' "${report}" \
+| sed 's|^FAIL src/|FAIL: |;s|/|_|;s|\.exe.*\]||'
+exit 1
+else
+echo "PASS: libc-test"
+fi
diff --git a/meta/recipes-core/musl/libc-test/run-ptest
b/meta/recipes-core/musl/libc-test/run-ptest
index 0b4b687dec..53cd34f506 100644
--- a/meta/recipes-core/musl/libc-test/run-ptest
+++ b/meta/recipes-core/musl/libc-test/run-ptest
@@ -1,28 +1,3 @@
#!/bin/sh
-
-set -e
-
-cd /opt/libc-test
-make cleanall
-make run || true
-
-echo ""
-echo "--- ptest result ---"
-# libc-test runs tests by module(e.g. src/api) and generates sub-module test
-# report(e.g. src/api/REPORT) first. After all tests finish, it generates the
-# consolidated report file src/REPORT.
-report="/opt/libc-test/src/REPORT"
-if ! [ -f "${report}" ]; then
-echo "${report} not found!"
-echo "FAIL: libc-test"
-exit 1
-# libc-test prints error on failure and prints nothing on success.
-elif grep -q '^FAIL src.*\.exe.*' "${report}"; then
-# Print test failure in ptest format.
-# e.g. "FAIL src/api/main.exe [status 1]" -> "FAIL: api_main"
-grep '^FAIL src.*\.exe.*' "${report}" \
-| sed 's|^FAIL src/|FAIL: |;s|/|_|;s|\.exe.*\]||'
-exit 1
-else
-echo "PASS: libc-test"
-fi
+chown -R ptest:ptest /opt/libc-test
+ su -c ./run-libc-ptests ptest
diff --git a/meta/recipes-core/musl/libc-test_git.bb
b/meta/recipes-core/musl/libc-test_git.bb
index 6d64592f0c..060f5f9f12 100644
--- a/meta/recipes-core/musl/libc-test_git.bb
+++ b/meta/recipes-core/musl/libc-test_git.bb
@@ -13,6 +13,7 @@ SRCREV = "18e28496adee3d84fefdda6efcb9c5b8996a2398"
SRC_URI = " \
git://repo.or.cz/libc-test;branch=master;protocol=https \
file://run-ptest \
+file://run-libc-ptests \
"
PV = "0+git${SRCPV}"
@@ -47,5 +48,9 @@ do_install () {
cp -r ${S}/src ${D}${install_path}
}
+do_install_ptest_base:append() {
+install -Dm 0755 ${WORKDIR}/run-libc-ptests
${D}${PTEST_PATH}/run-libc-ptests
+}
+
COMPATIBLE_HOST = "null"
COMPATIBLE_HOST:libc-musl = "(.*)"
--
2.34.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189094):
https://lists.openembedded.org/g/openembedded-core/message/189094
Mute This Topic: https://lists.openembedded.org/mt/101950202/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core][mickledore 16/27] weston-init: fix init code indentation
From: Otavio Salvador Tested-by: Tom Hochstein Signed-off-by: Otavio Salvador Signed-off-by: Richard Purdie (cherry picked from commit c08d474c97ce071ba376b66f30d6ee0a6159d596) Signed-off-by: Steve Sakoman --- meta/recipes-graphics/wayland/weston-init/init | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/meta/recipes-graphics/wayland/weston-init/init b/meta/recipes-graphics/wayland/weston-init/init index d3b0d1873e..a5c54e001e 100644 --- a/meta/recipes-graphics/wayland/weston-init/init +++ b/meta/recipes-graphics/wayland/weston-init/init @@ -30,7 +30,7 @@ done case "$1" in start) . /etc/profile - export HOME=ROOTHOME + export HOME=ROOTHOME WESTON_USER=weston weston-start $OPTARGS & ;; -- 2.34.1 -=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#189093): https://lists.openembedded.org/g/openembedded-core/message/189093 Mute This Topic: https://lists.openembedded.org/mt/101950201/21656 Group Owner: openembedded-core+ow...@lists.openembedded.org Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [arch...@mail-archive.com] -=-=-=-=-=-=-=-=-=-=-=-
[OE-core][mickledore 15/27] weston-init: remove misleading comment about udev rule
From: Otavio Salvador
The udev rule has been removed but the comment has kept, by
mistake. Remove it.
Fixes: dd83fb40f7 ("weston-init: Stop running weston as root")
Tested-by: Tom Hochstein
Signed-off-by: Otavio Salvador
Signed-off-by: Richard Purdie
(cherry picked from commit 8aa3d43fa1c53cdce45ec88a49f27b076d3812ac)
Signed-off-by: Steve Sakoman
---
meta/recipes-graphics/wayland/weston-init.bb | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/meta/recipes-graphics/wayland/weston-init.bb
b/meta/recipes-graphics/wayland/weston-init.bb
index 99b99f72f1..c2708e38d6 100644
--- a/meta/recipes-graphics/wayland/weston-init.bb
+++ b/meta/recipes-graphics/wayland/weston-init.bb
@@ -35,7 +35,7 @@ do_install() {
sed -i 's#ROOTHOME#${ROOT_HOME}#'
${D}/${sysconfdir}/init.d/weston
fi
- # Install Weston systemd service and accompanying udev rule
+ # Install Weston systemd service
if ${@bb.utils.contains('DISTRO_FEATURES','systemd','true','false',d)};
then
install -D -p -m0644 ${WORKDIR}/weston.service
${D}${systemd_system_unitdir}/weston.service
install -D -p -m0644 ${WORKDIR}/weston.socket
${D}${systemd_system_unitdir}/weston.socket
--
2.34.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189092):
https://lists.openembedded.org/g/openembedded-core/message/189092
Mute This Topic: https://lists.openembedded.org/mt/101950199/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core][mickledore 14/27] build-sysroots: target or native sysroot population need to be selected explicitly
From: Alexander Kanavin
Running them in parallel is prone to races as postinsts from target sysroots
rely on executables from native sysroots which may or may not be fully prepared
yet. This was observed for example here:
https://autobuilder.yoctoproject.org/typhoon/#/builders/146/builds/468/steps/12/logs/stdio
https://autobuilder.yoctoproject.org/typhoon/#/builders/147/builds/467/steps/12/logs/stdio
Signed-off-by: Alexander Kanavin
Signed-off-by: Alexandre Belloni
(cherry picked from commit 38d7a2e45b883cf999a86af05bcc0eaa875bb47c)
Signed-off-by: Steve Sakoman
---
meta/files/ext-sdk-prepare.py| 2 +-
meta/lib/oeqa/selftest/cases/meta_ide.py | 5 +++--
meta/recipes-core/meta/build-sysroots.bb | 12 ++--
scripts/lib/devtool/sdk.py | 3 ++-
4 files changed, 16 insertions(+), 6 deletions(-)
diff --git a/meta/files/ext-sdk-prepare.py b/meta/files/ext-sdk-prepare.py
index d191e5e19c..89b0403089 100644
--- a/meta/files/ext-sdk-prepare.py
+++ b/meta/files/ext-sdk-prepare.py
@@ -71,7 +71,7 @@ def main():
ret = run_command_interruptible('BB_SETSCENE_ENFORCE=1 bitbake --quiet
%s' % ' '.join(sdk_targets))
if not ret:
-ret = run_command_interruptible('bitbake --quiet build-sysroots')
+ret = run_command_interruptible('bitbake --quiet build-sysroots -c
build_native_sysroot && bitbake --quiet build-sysroots -c build_target_sysroot')
lastlog = get_last_consolelog()
if lastlog:
with open(lastlog, 'r') as f:
diff --git a/meta/lib/oeqa/selftest/cases/meta_ide.py
b/meta/lib/oeqa/selftest/cases/meta_ide.py
index bae98359e5..59270fb3e0 100644
--- a/meta/lib/oeqa/selftest/cases/meta_ide.py
+++ b/meta/lib/oeqa/selftest/cases/meta_ide.py
@@ -18,7 +18,8 @@ class MetaIDE(OESelftestTestCase):
def setUpClass(cls):
super(MetaIDE, cls).setUpClass()
bitbake('meta-ide-support')
-bitbake('build-sysroots')
+bitbake('build-sysroots -c build_native_sysroot')
+bitbake('build-sysroots -c build_target_sysroot')
bb_vars = get_bb_vars(['MULTIMACH_TARGET_SYS', 'DEPLOY_DIR_IMAGE',
'COREBASE'])
cls.environment_script = 'environment-setup-%s' %
bb_vars['MULTIMACH_TARGET_SYS']
cls.deploydir = bb_vars['DEPLOY_DIR_IMAGE']
@@ -55,5 +56,5 @@ class MetaIDE(OESelftestTestCase):
def test_meta_ide_can_run_sdk_tests(self):
bitbake('-c populate_sysroot gtk+3')
-bitbake('build-sysroots')
+bitbake('build-sysroots -c build_target_sysroot')
bitbake('-c testsdk meta-ide-support')
diff --git a/meta/recipes-core/meta/build-sysroots.bb
b/meta/recipes-core/meta/build-sysroots.bb
index 1a3b692a1b..db05c111ab 100644
--- a/meta/recipes-core/meta/build-sysroots.bb
+++ b/meta/recipes-core/meta/build-sysroots.bb
@@ -22,6 +22,14 @@ deltask collect_spdx_deps
deltask create_runtime_spdx
deltask recipe_qa
+do_build_warn () {
+bbwarn "Native or target sysroot population needs to be explicitly
selected; please use
+bitbake -c build_native_sysroot build-sysroots
+bitbake -c build_target_sysroot build-sysroots
+or both."
+}
+addtask do_build_warn before do_build
+
python do_build_native_sysroot () {
targetsysroot = d.getVar("STANDALONE_SYSROOT")
nativesysroot = d.getVar("STANDALONE_SYSROOT_NATIVE")
@@ -31,7 +39,7 @@ python do_build_native_sysroot () {
}
do_build_native_sysroot[cleandirs] = "${STANDALONE_SYSROOT_NATIVE}"
do_build_native_sysroot[nostamp] = "1"
-addtask do_build_native_sysroot before do_build
+addtask do_build_native_sysroot
python do_build_target_sysroot () {
targetsysroot = d.getVar("STANDALONE_SYSROOT")
@@ -42,6 +50,6 @@ python do_build_target_sysroot () {
}
do_build_target_sysroot[cleandirs] = "${STANDALONE_SYSROOT}"
do_build_target_sysroot[nostamp] = "1"
-addtask do_build_target_sysroot before do_build
+addtask do_build_target_sysroot
do_clean[cleandirs] += "${STANDALONE_SYSROOT} ${STANDALONE_SYSROOT_NATIVE}"
diff --git a/scripts/lib/devtool/sdk.py b/scripts/lib/devtool/sdk.py
index d717b6c2b8..9aefd7e354 100644
--- a/scripts/lib/devtool/sdk.py
+++ b/scripts/lib/devtool/sdk.py
@@ -300,7 +300,8 @@ def sdk_install(args, config, basepath, workspace):
return 2
try:
-exec_build_env_command(config.init_path, basepath, 'bitbake
build-sysroots', watch=True)
+exec_build_env_command(config.init_path, basepath, 'bitbake
build-sysroots -c build_native_sysroot', watch=True)
+exec_build_env_command(config.init_path, basepath, 'bitbake
build-sysroots -c build_target_sysroot', watch=True)
except bb.process.ExecutionError as e:
raise DevtoolError('Failed to bitbake build-sysroots:\n%s' %
(str(e)))
--
2.34.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189091):
https://lists.openembedded.org/g/openembedded-core/message/189091
Mute This Topic: https://lists.openembedded.
[OE-core][mickledore 13/27] runqemu: check permissions of available render nodes as well as their presence
From: Alexander Kanavin
qemu itself is not helpful when render nodes exist, but can't be opened:
qemu-system-x86_64: egl: render node init failed
To fix this, users likely need to
* modprobe vgem (presence when physical graphic card is absent or has a driver
without
support for render nodes, such as many older cards found in server machines)
* add their user to "render" group to write to /dev/dri/renderD* (permissions)
With this change runqemu should print hints for the above as appropriate from
probing the nodes.
Signed-off-by: Alexander Kanavin
Signed-off-by: Alexandre Belloni
(cherry picked from commit acd85925cb197b7a31a25b60e8de762e2c3697ef)
Signed-off-by: Steve Sakoman
---
scripts/runqemu | 14 --
1 file changed, 12 insertions(+), 2 deletions(-)
diff --git a/scripts/runqemu b/scripts/runqemu
index ef24ddc6b2..ea44600e64 100755
--- a/scripts/runqemu
+++ b/scripts/runqemu
@@ -1374,8 +1374,18 @@ to your build configuration.
render_hint = """If /dev/dri/renderD* is absent due to lack of
suitable GPU, 'modprobe vgem' will create one suitable for mesa llvmpipe
software renderer."""
try:
content = os.listdir("/dev/dri")
-if len([i for i in content if i.startswith('render')]) == 0:
-raise RunQemuError("No render nodes found in /dev/dri: %s. %s"
%(content, render_hint))
+nodes = [i for i in content if i.startswith('renderD')]
+if len(nodes) == 0:
+raise RunQemuError("No render nodes found in /dev/dri/: %s.
%s" %(content, render_hint))
+for n in nodes:
+try:
+with open(os.path.join("/dev/dri", n), "w") as f:
+f.close()
+break
+except IOError:
+pass
+else:
+raise RunQemuError("None of the render nodes in /dev/dri/ are
accessible: %s; you may need to add yourself to 'render' group or otherwise
ensure you have read-write permissions on one of them." %(nodes))
except FileNotFoundError:
raise RunQemuError("/dev/dri directory does not exist; no render
nodes available on this machine. %s" %(render_hint))
--
2.34.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189090):
https://lists.openembedded.org/g/openembedded-core/message/189090
Mute This Topic: https://lists.openembedded.org/mt/101950196/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core][mickledore 12/27] avahi: handle invalid service types gracefully
From: Ross Burton
Services which broadcast an invalid service type will cause the browse
to fail. Instead of failing, replace the service type and continue.
Signed-off-by: Ross Burton
Signed-off-by: Richard Purdie
(cherry picked from commit e581da6c4db21312833395e96b48e868a202f0f9)
Signed-off-by: Steve Sakoman
---
meta/recipes-connectivity/avahi/avahi_0.8.bb | 1 +
.../avahi/files/invalid-service.patch | 29 +++
2 files changed, 30 insertions(+)
create mode 100644 meta/recipes-connectivity/avahi/files/invalid-service.patch
diff --git a/meta/recipes-connectivity/avahi/avahi_0.8.bb
b/meta/recipes-connectivity/avahi/avahi_0.8.bb
index 8649140a45..3fb082cf3f 100644
--- a/meta/recipes-connectivity/avahi/avahi_0.8.bb
+++ b/meta/recipes-connectivity/avahi/avahi_0.8.bb
@@ -26,6 +26,7 @@ SRC_URI =
"${GITHUB_BASE_URI}/download/v${PV}/avahi-${PV}.tar.gz \
file://0001-Fix-opening-etc-resolv.conf-error.patch \
file://handle-hup.patch \
file://local-ping.patch \
+ file://invalid-service.patch \
"
GITHUB_BASE_URI = "https://github.com/lathiat/avahi/releases/";
diff --git a/meta/recipes-connectivity/avahi/files/invalid-service.patch
b/meta/recipes-connectivity/avahi/files/invalid-service.patch
new file mode 100644
index 00..8f188aff2c
--- /dev/null
+++ b/meta/recipes-connectivity/avahi/files/invalid-service.patch
@@ -0,0 +1,29 @@
+From 46490e95151d415cd22f02565e530eb5efcef680 Mon Sep 17 00:00:00 2001
+From: Asger Hautop Drewsen
+Date: Mon, 9 Aug 2021 14:25:08 +0200
+Subject: [PATCH] Fix avahi-browse: Invalid service type
+
+Invalid service types will stop the browse from completing, or
+in simple terms "my washing machine stops me from printing".
+
+Upstream-Status: Submitted [https://github.com/lathiat/avahi/pull/472]
+Signed-off-by: Ross Burton
+---
+ avahi-core/browse-service.c | 4 +++-
+ 1 file changed, 3 insertions(+), 1 deletion(-)
+
+diff --git a/avahi-core/browse-service.c b/avahi-core/browse-service.c
+index 63e0275a..ac3d2ecb 100644
+--- a/avahi-core/browse-service.c
b/avahi-core/browse-service.c
+@@ -103,7 +103,9 @@ AvahiSServiceBrowser *avahi_s_service_browser_prepare(
+ AVAHI_CHECK_VALIDITY_RETURN_NULL(server, AVAHI_PROTO_VALID(protocol),
AVAHI_ERR_INVALID_PROTOCOL);
+ AVAHI_CHECK_VALIDITY_RETURN_NULL(server, !domain ||
avahi_is_valid_domain_name(domain), AVAHI_ERR_INVALID_DOMAIN_NAME);
+ AVAHI_CHECK_VALIDITY_RETURN_NULL(server, AVAHI_FLAGS_VALID(flags,
AVAHI_LOOKUP_USE_WIDE_AREA|AVAHI_LOOKUP_USE_MULTICAST),
AVAHI_ERR_INVALID_FLAGS);
+-AVAHI_CHECK_VALIDITY_RETURN_NULL(server,
avahi_is_valid_service_type_generic(service_type),
AVAHI_ERR_INVALID_SERVICE_TYPE);
++
++if (!avahi_is_valid_service_type_generic(service_type))
++service_type = "_invalid._tcp";
+
+ if (!domain)
+ domain = server->domain_name;
--
2.34.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189089):
https://lists.openembedded.org/g/openembedded-core/message/189089
Mute This Topic: https://lists.openembedded.org/mt/101950195/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core][mickledore 11/27] nativesdk-intercept: Fix bad intercept chgrp/chown logic
From: Eilís 'pidge' Ní Fhlannagáin
Running either of these ends up corrupting the os.execv args.
If we run:
./scripts/nativesdk-intercept/chown -R foo:foo bar
The loop here ends up missing the conversion of foo:foo to root:root because
it sees sys.argv[0] and assumes that it's the user:group argument and that we
should convert that. We end up a os.execv(path, args) that have the following
args:
['root:root', '-R', 'foo:foo', 'bar']
As os.execv ignores args[0], we can just populate it with sys.argv[0] and then
loop through sys.argv[1:]. As both chgrp and chown would have either flags and
USER[:GROUP] next, this fixes the issue.
Signed-off-by: Eilís 'pidge' Ní Fhlannagáin
Signed-off-by: Richard Purdie
(cherry picked from commit 2a75f647ec7696d353f4b09099d777ba53f34d36)
Signed-off-by: Steve Sakoman
---
scripts/nativesdk-intercept/chgrp | 5 -
scripts/nativesdk-intercept/chown | 5 -
2 files changed, 8 insertions(+), 2 deletions(-)
diff --git a/scripts/nativesdk-intercept/chgrp
b/scripts/nativesdk-intercept/chgrp
index 30cc417d3a..f8ae84b8b3 100755
--- a/scripts/nativesdk-intercept/chgrp
+++ b/scripts/nativesdk-intercept/chgrp
@@ -14,7 +14,10 @@ real_chgrp = shutil.which('chgrp', path=path)
args = list()
found = False
-for i in sys.argv:
+
+args.append(real_chgrp)
+
+for i in sys.argv[1:]:
if i.startswith("-"):
args.append(i)
continue
diff --git a/scripts/nativesdk-intercept/chown
b/scripts/nativesdk-intercept/chown
index 3914b3e384..0805ceb70a 100755
--- a/scripts/nativesdk-intercept/chown
+++ b/scripts/nativesdk-intercept/chown
@@ -14,7 +14,10 @@ real_chown = shutil.which('chown', path=path)
args = list()
found = False
-for i in sys.argv:
+
+args.append(real_chown)
+
+for i in sys.argv[1:]:
if i.startswith("-"):
args.append(i)
continue
--
2.34.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189088):
https://lists.openembedded.org/g/openembedded-core/message/189088
Mute This Topic: https://lists.openembedded.org/mt/101950193/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core][mickledore 10/27] vim: Upgrade 9.0.1894 -> 9.0.2009
From: Siddharth Doshi This includes CVE fix for CVE-2023-5441. Signed-off-by: Siddharth Doshi Signed-off-by: Steve Sakoman --- meta/recipes-support/vim/vim.inc | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/meta/recipes-support/vim/vim.inc b/meta/recipes-support/vim/vim.inc index 5f55f590e6..5e06866692 100644 --- a/meta/recipes-support/vim/vim.inc +++ b/meta/recipes-support/vim/vim.inc @@ -19,8 +19,8 @@ SRC_URI = "git://github.com/vim/vim.git;branch=master;protocol=https \ file://no-path-adjust.patch \ " -PV .= ".1894" -SRCREV = "e5f7cd0a60d0eeab84f7aeb35c13d3af7e50072e" +PV .= ".2009" +SRCREV = "54844857fd6933fa4f6678e47610c4b9c9f7a091" # Do not consider .z in x.y.z, as that is updated with every commit UPSTREAM_CHECK_GITTAGREGEX = "(?P\d+\.\d+)\.0" -- 2.34.1 -=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#189087): https://lists.openembedded.org/g/openembedded-core/message/189087 Mute This Topic: https://lists.openembedded.org/mt/101950192/21656 Group Owner: openembedded-core+ow...@lists.openembedded.org Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [arch...@mail-archive.com] -=-=-=-=-=-=-=-=-=-=-=-
[OE-core][mickledore 09/27] screen: update 4.9.0 -> 4.9.1
From: Alexander Kanavin
* Support stop/parity bits on serial port
* Add needed system headers in checks and return values for implicit function
declarations
* Fixes:
- Avoid zombies after shell exit
- Missed signal sending permission check on failed query messages
(CVE-2023-24626)
- manpage fixes
- source code fixes during cleanup
- UTF-8 encoding can emit invalid UTF-8 sequences for out of range unicode
values
Remove patches; they are merged upstream or backported.
Signed-off-by: Alexander Kanavin
Signed-off-by: Richard Purdie
(cherry picked from commit 2566f8e51d56848d8b28f37462160e90253b79fc)
Signed-off-by: Steve Sakoman
---
...-Add-needed-system-headers-in-checks.patch | 151 --
.../screen/screen/signal-permission.patch | 40 -
.../{screen_4.9.0.bb => screen_4.9.1.bb} | 4 +-
3 files changed, 1 insertion(+), 194 deletions(-)
delete mode 100644
meta/recipes-extended/screen/screen/0001-configure-Add-needed-system-headers-in-checks.patch
delete mode 100644 meta/recipes-extended/screen/screen/signal-permission.patch
rename meta/recipes-extended/screen/{screen_4.9.0.bb => screen_4.9.1.bb} (89%)
diff --git
a/meta/recipes-extended/screen/screen/0001-configure-Add-needed-system-headers-in-checks.patch
b/meta/recipes-extended/screen/screen/0001-configure-Add-needed-system-headers-in-checks.patch
deleted file mode 100644
index 80659942c7..00
---
a/meta/recipes-extended/screen/screen/0001-configure-Add-needed-system-headers-in-checks.patch
+++ /dev/null
@@ -1,151 +0,0 @@
-From 4e102de2e6204c1d8e8be00bb5ffd4587e70350c Mon Sep 17 00:00:00 2001
-From: Khem Raj
-Date: Mon, 15 Aug 2022 10:35:53 -0700
-Subject: [PATCH] configure: Add needed system headers in checks
-
-Newer compilers throw warnings when a funciton is used with implicit
-declaration and enabling -Werror can silently fail these tests and
-result in wrong configure results. Therefore add the needed headers in
-the AC_TRY_LINK macros
-
- * configure.ac: Add missing system headers in AC_TRY_LINK.
-
-Upstream-Status: Submitted
[https://lists.gnu.org/archive/html/screen-devel/2022-08/msg0.html]
-Signed-off-by: Khem Raj
- configure.ac | 57 +++-
- 1 file changed, 43 insertions(+), 14 deletions(-)
-
-diff --git a/configure.ac b/configure.ac
-index c0f02df..d308079 100644
a/configure.ac
-+++ b/configure.ac
-@@ -233,6 +233,7 @@ AC_CHECKING(BSD job jontrol)
- AC_TRY_LINK(
- [#include
- #include
-+#include
- ], [
- #ifdef POSIX
- tcsetpgrp(0, 0);
-@@ -250,12 +251,16 @@ dnl
- dnl setresuid(), setreuid(), seteuid()
- dnl
- AC_CHECKING(setresuid)
--AC_TRY_LINK(,[
--setresuid(0, 0, 0);
-+AC_TRY_LINK([
-+#include
-+],[
-+return setresuid(0, 0, 0);
- ], AC_DEFINE(HAVE_SETRESUID))
- AC_CHECKING(setreuid)
--AC_TRY_LINK(,[
--setreuid(0, 0);
-+AC_TRY_LINK([
-+#include
-+],[
-+return setreuid(0, 0);
- ], AC_DEFINE(HAVE_SETREUID))
- dnl
- dnl seteuid() check:
-@@ -274,7 +279,9 @@ seteuid(0);
-
- dnl execvpe
- AC_CHECKING(execvpe)
--AC_TRY_LINK(,[
-+AC_TRY_LINK([
-+#include
-+],[
- execvpe(0, 0, 0);
- ], AC_DEFINE(HAVE_EXECVPE)
- CFLAGS="$CFLAGS -D_GNU_SOURCE")
-@@ -284,10 +291,18 @@ dnl select()
- dnl
-
- AC_CHECKING(select)
--AC_TRY_LINK(,[select(0, 0, 0, 0, 0);],,
-+AC_TRY_LINK([
-+#include
-+],[
-+select(0, 0, 0, 0, 0);
-+],,
- LIBS="$LIBS -lnet -lnsl"
- AC_CHECKING(select with $LIBS)
--AC_TRY_LINK(,[select(0, 0, 0, 0, 0);],,
-+AC_TRY_LINK([
-+#include
-+],[
-+select(0, 0, 0, 0, 0);
-+],,
- AC_MSG_ERROR(!!! no select - no screen))
- )
- dnl
-@@ -624,11 +639,19 @@ dnl
- dnl termcap or terminfo
- dnl
- AC_CHECKING(for tgetent)
--AC_TRY_LINK(,tgetent((char *)0, (char *)0);,,
-+AC_TRY_LINK([
-+#include
-+#include
-+],[
-+tgetent((char *)0, (char *)0);
-+],,
- olibs="$LIBS"
- LIBS="-lcurses $olibs"
- AC_CHECKING(libcurses)
--AC_TRY_LINK(,[
-+AC_TRY_LINK([
-+#include
-+#include
-+],[
- #ifdef __hpux
- __sorry_hpux_libcurses_is_totally_broken_in_10_10();
- #else
-@@ -871,7 +894,7 @@ test -f /usr/lib/libutil.a && LIBS="$LIBS -lutil"
- fi
-
- AC_CHECKING(getloadavg)
--AC_TRY_LINK(,[getloadavg((double *)0, 0);],
-+AC_TRY_LINK([#include ],[getloadavg((double *)0, 0);],
- AC_DEFINE(LOADAV_GETLOADAVG) load=1,
- if test "$cross_compiling" = no && test -f /usr/lib/libkvm.a ; then
- olibs="$LIBS"
-@@ -1109,10 +1132,10 @@ AC_CHECKING(IRIX sun library)
- AC_TRY_LINK(,,,LIBS="$oldlibs")
-
- AC_CHECKING(syslog)
--AC_TRY_LINK(,[closelog();], , [oldlibs="$LIBS"
-+AC_TRY_LINK([#include ],[closelog();], , [oldlibs="$LIBS"
- LIBS="$LIBS -lbsd"
- AC_CHECKING(syslog in libbsd.a)
--AC_TRY_LINK(, [closelog();], AC_NOTE(- found.), [LIBS="$oldlibs"
-+AC_TRY_LINK([#include ], [closelog();], AC_NOTE(- found.),
[LIBS="$oldlibs"
- AC_NOTE(- bad news: syslog missing.) AC_DEFINE(NOSYSLOG)])])
-
- AC_EGREP_CPP(YES_IS_DEFINED,
-@@ -1149,7 +1172,7 @@ AC_CHECKING
[OE-core][mickledore 08/27] gzip: update 1.12 -> 1.13
From: Alexander Kanavin
Stable release update
Drop autoconf-2.73.patch as issue resolved upstream.
License-update: http -> https
Signed-off-by: Alexander Kanavin
Signed-off-by: Richard Purdie
(cherry picked from commit 1ddf9e053b17913718c780ad4c877d5ddb6ff536)
Signed-off-by: Steve Sakoman
---
.../gzip/{gzip-1.12 => gzip-1.13}/wrong-path-fix.patch | 0
meta/recipes-extended/gzip/{gzip_1.12.bb => gzip_1.13.bb} | 6 +++---
2 files changed, 3 insertions(+), 3 deletions(-)
rename meta/recipes-extended/gzip/{gzip-1.12 =>
gzip-1.13}/wrong-path-fix.patch (100%)
rename meta/recipes-extended/gzip/{gzip_1.12.bb => gzip_1.13.bb} (88%)
diff --git a/meta/recipes-extended/gzip/gzip-1.12/wrong-path-fix.patch
b/meta/recipes-extended/gzip/gzip-1.13/wrong-path-fix.patch
similarity index 100%
rename from meta/recipes-extended/gzip/gzip-1.12/wrong-path-fix.patch
rename to meta/recipes-extended/gzip/gzip-1.13/wrong-path-fix.patch
diff --git a/meta/recipes-extended/gzip/gzip_1.12.bb
b/meta/recipes-extended/gzip/gzip_1.13.bb
similarity index 88%
rename from meta/recipes-extended/gzip/gzip_1.12.bb
rename to meta/recipes-extended/gzip/gzip_1.13.bb
index 14de50b230..fd846b30a5 100644
--- a/meta/recipes-extended/gzip/gzip_1.12.bb
+++ b/meta/recipes-extended/gzip/gzip_1.13.bb
@@ -6,10 +6,10 @@ LICENSE = "GPL-3.0-or-later"
SRC_URI = "${GNU_MIRROR}/gzip/${BP}.tar.gz \
file://run-ptest \
- "
+ "
SRC_URI:append:class-target = " file://wrong-path-fix.patch"
-LIC_FILES_CHKSUM = "file://COPYING;md5=d32239bcb673463ab874e80d47fae504 \
+LIC_FILES_CHKSUM = "file://COPYING;md5=1ebbd3e34237af26da5dc08a4e440464 \
file://gzip.h;beginline=8;endline=20;md5=6e47caaa630e0c8bf9f1bc8d94a8ed0e"
PROVIDES:append:class-native = " gzip-replacement-native"
@@ -38,4 +38,4 @@ do_install_ptest() {
${B}/tests/Makefile > ${D}${PTEST_PATH}/src/tests/Makefile
}
-SRC_URI[sha256sum] =
"5b4fb14d38314e09f2fc8a1c510e7cd540a3ea0e3eb9b0420046b82c3bf41085"
+SRC_URI[sha256sum] =
"20fc818aeebae87cdbf209d35141ad9d3cf312b35a5e6be61bfcfbf9eddd212a"
--
2.34.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189085):
https://lists.openembedded.org/g/openembedded-core/message/189085
Mute This Topic: https://lists.openembedded.org/mt/101950189/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core][mickledore 07/27] wireless-regdb: upgrade 2023.05.03 -> 2023.09.01
From: Wang Mingyu
Changelog:
==
wireless-regdb: update regulatory database based on preceding changes
wireless-regdb: Update regulatory rules for Australia (AU) for June 2023
wireless-regdb: Update regulatory info for Türkiye (TR)
wireless-regdb: Update regulatory rules for Egypt (EG) from March 2022 guidel...
wireless-regdb: Update regulatory rules for Philippines (PH)
Signed-off-by: Wang Mingyu
Signed-off-by: Richard Purdie
(cherry picked from commit 2f5edb6904bf16a9c52a9b124aeb5297487cd716)
Signed-off-by: Steve Sakoman
---
...ireless-regdb_2023.05.03.bb => wireless-regdb_2023.09.01.bb} | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
rename meta/recipes-kernel/wireless-regdb/{wireless-regdb_2023.05.03.bb =>
wireless-regdb_2023.09.01.bb} (94%)
diff --git a/meta/recipes-kernel/wireless-regdb/wireless-regdb_2023.05.03.bb
b/meta/recipes-kernel/wireless-regdb/wireless-regdb_2023.09.01.bb
similarity index 94%
rename from meta/recipes-kernel/wireless-regdb/wireless-regdb_2023.05.03.bb
rename to meta/recipes-kernel/wireless-regdb/wireless-regdb_2023.09.01.bb
index cd3f52fc76..c09600ecbe 100644
--- a/meta/recipes-kernel/wireless-regdb/wireless-regdb_2023.05.03.bb
+++ b/meta/recipes-kernel/wireless-regdb/wireless-regdb_2023.09.01.bb
@@ -5,7 +5,7 @@ LICENSE = "ISC"
LIC_FILES_CHKSUM = "file://LICENSE;md5=07c4f6dea3845b02a18dc00c8c87699c"
SRC_URI = "https://www.kernel.org/pub/software/network/${BPN}/${BP}.tar.xz";
-SRC_URI[sha256sum] =
"f254d08ab3765aeae2b856222e11a95d44aef519a6663877c71ef68fae4c8c12"
+SRC_URI[sha256sum] =
"26d4c2a727cc59239b84735aad856b7c7d0b04e30aa5c235c4f7f47f5f053491"
inherit bin_package allarch
--
2.34.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189084):
https://lists.openembedded.org/g/openembedded-core/message/189084
Mute This Topic: https://lists.openembedded.org/mt/101950188/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core][mickledore 06/27] dbus: upgrade 1.14.8 -> 1.14.10
From: Wang Mingyu
Changelog:
===
• Avoid a dbus-daemon crash if re-creating a connection's policy fails.
• If getting the groups from a user ID fails, report the error correctly,
instead of logging "(null)"
• Return the primary group ID in GetConnectionCredentials()' UnixGroupIDs
field for processes with a valid-but-empty supplementary group list
Signed-off-by: Wang Mingyu
Signed-off-by: Richard Purdie
(cherry picked from commit aeabd6dd4e65e5cc31f4c2acc5cc46ea03737bed)
Signed-off-by: Steve Sakoman
---
meta/recipes-core/dbus/{dbus_1.14.8.bb => dbus_1.14.10.bb} | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
rename meta/recipes-core/dbus/{dbus_1.14.8.bb => dbus_1.14.10.bb} (98%)
diff --git a/meta/recipes-core/dbus/dbus_1.14.8.bb
b/meta/recipes-core/dbus/dbus_1.14.10.bb
similarity index 98%
rename from meta/recipes-core/dbus/dbus_1.14.8.bb
rename to meta/recipes-core/dbus/dbus_1.14.10.bb
index 2dcbadd50b..2a256beabf 100644
--- a/meta/recipes-core/dbus/dbus_1.14.8.bb
+++ b/meta/recipes-core/dbus/dbus_1.14.10.bb
@@ -16,7 +16,7 @@ SRC_URI =
"https://dbus.freedesktop.org/releases/dbus/dbus-${PV}.tar.xz \
file://dbus-1.init \
"
-SRC_URI[sha256sum] =
"a6bd5bac5cf19f0c3c594bdae2565a095696980a683a0ef37cb6212e093bde35"
+SRC_URI[sha256sum] =
"ba1f21d2bd9d339da2d4aa8780c09df32fea87998b73da24f49ab9df1e36a50f"
EXTRA_OECONF = "--disable-xml-docs \
--disable-doxygen-docs \
--
2.34.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189083):
https://lists.openembedded.org/g/openembedded-core/message/189083
Mute This Topic: https://lists.openembedded.org/mt/101950187/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core][mickledore 05/27] curl: fix CVE-2023-38546
From: Archana Polampalli
A flaw was found in the Curl package. This flaw allows an attacker to insert
cookies into a running program using libcurl if the specific series of
conditions are met.
Signed-off-by: Archana Polampalli
Signed-off-by: Steve Sakoman
---
.../curl/curl/CVE-2023-38546.patch| 137 ++
meta/recipes-support/curl/curl_8.0.1.bb | 1 +
2 files changed, 138 insertions(+)
create mode 100644 meta/recipes-support/curl/curl/CVE-2023-38546.patch
diff --git a/meta/recipes-support/curl/curl/CVE-2023-38546.patch
b/meta/recipes-support/curl/curl/CVE-2023-38546.patch
new file mode 100644
index 00..2c97c4d5a5
--- /dev/null
+++ b/meta/recipes-support/curl/curl/CVE-2023-38546.patch
@@ -0,0 +1,137 @@
+From 61275672b46d9abb3285740467b882e22ed75da8 Mon Sep 17 00:00:00 2001
+From: Daniel Stenberg
+Date: Thu, 14 Sep 2023 23:28:32 +0200
+Subject: [PATCH] cookie: remove unnecessary struct fields
+
+Plus: reduce the hash table size from 256 to 63. It seems unlikely to
+make much of a speed difference for most use cases but saves 1.5KB of
+data per instance.
+
+Closes #11862
+
+Upstream-Status: Backport
[https://github.com/curl/curl/commit/61275672b46d9abb32857404]
+
+CVE: CVE-2023-38546
+
+Signed-off-by: Archana Polampalli
+---
+ lib/cookie.c | 13 +
+ lib/cookie.h | 14 --
+ lib/easy.c | 4 +---
+ 3 files changed, 6 insertions(+), 25 deletions(-)
+
+diff --git a/lib/cookie.c b/lib/cookie.c
+index 0c6e0f7..d346203 100644
+--- a/lib/cookie.c
b/lib/cookie.c
+@@ -119,7 +119,6 @@ static void freecookie(struct Cookie *co)
+ free(co->name);
+ free(co->value);
+ free(co->maxage);
+- free(co->version);
+ free(co);
+ }
+
+@@ -726,11 +725,7 @@ Curl_cookie_add(struct Curl_easy *data,
+ }
+ }
+ else if((nlen == 7) && strncasecompare("version", namep, 7)) {
+- strstore(&co->version, valuep, vlen);
+- if(!co->version) {
+-badcookie = TRUE;
+-break;
+- }
++ /* just ignore */
+ }
+ else if((nlen == 7) && strncasecompare("max-age", namep, 7)) {
+ /*
+@@ -1174,7 +1169,6 @@ Curl_cookie_add(struct Curl_easy *data,
+ free(clist->path);
+ free(clist->spath);
+ free(clist->expirestr);
+-free(clist->version);
+ free(clist->maxage);
+
+ *clist = *co; /* then store all the new data */
+@@ -1238,9 +1232,6 @@ struct CookieInfo *Curl_cookie_init(struct Curl_easy
*data,
+ c = calloc(1, sizeof(struct CookieInfo));
+ if(!c)
+ return NULL; /* failed to get memory */
+-c->filename = strdup(file?file:"none"); /* copy the name just in case */
+-if(!c->filename)
+- goto fail; /* failed to get memory */
+ /*
+ * Initialize the next_expiration time to signal that we don't have enough
+ * information yet.
+@@ -1394,7 +1385,6 @@ static struct Cookie *dup_cookie(struct Cookie *src)
+ CLONE(name);
+ CLONE(value);
+ CLONE(maxage);
+-CLONE(version);
+ d->expires = src->expires;
+ d->tailmatch = src->tailmatch;
+ d->secure = src->secure;
+@@ -1611,7 +1601,6 @@ void Curl_cookie_cleanup(struct CookieInfo *c)
+ {
+ if(c) {
+ unsigned int i;
+-free(c->filename);
+ for(i = 0; i < COOKIE_HASH_SIZE; i++)
+ Curl_cookie_freelist(c->cookies[i]);
+ free(c); /* free the base struct as well */
+diff --git a/lib/cookie.h b/lib/cookie.h
+index 39bb08b..3a43bbf 100644
+--- a/lib/cookie.h
b/lib/cookie.h
+@@ -36,11 +36,7 @@ struct Cookie {
+ char *domain; /* domain = */
+ curl_off_t expires; /* expires = */
+ char *expirestr; /* the plain text version */
+-
+- /* RFC 2109 keywords. Version=1 means 2109-compliant cookie sending */
+- char *version; /* Version = */
+ char *maxage; /* Max-Age = */
+-
+ bool tailmatch;/* whether we do tail-matching of the domain name */
+ bool secure; /* whether the 'secure' keyword was used */
+ bool livecookie; /* updated from a server, not a stored file */
+@@ -56,18 +52,16 @@ struct Cookie {
+ #define COOKIE_PREFIX__SECURE (1<<0)
+ #define COOKIE_PREFIX__HOST (1<<1)
+
+-#define COOKIE_HASH_SIZE 256
++#define COOKIE_HASH_SIZE 63
+
+ struct CookieInfo {
+ /* linked list of cookies we know of */
+ struct Cookie *cookies[COOKIE_HASH_SIZE];
+-
+- char *filename; /* file we read from/write to */
+- long numcookies; /* number of cookies in the "jar" */
++ curl_off_t next_expiration; /* the next time at which expiration happens */
++ int numcookies; /* number of cookies in the "jar" */
++ int lastct; /* last creation-time used in the jar */
+ bool running;/* state info, for cookie adding information */
+ bool newsession; /* new session, discard session cookies on load */
+- int lastct; /* last creation-time used in the jar */
+- curl_off_t next_expiration; /* the next time at which expiration happens */
+ };
+
+ /* This is the maximum line length we
[OE-core][mickledore 04/27] curl: fix CVE-2023-38545
From: Archana Polampalli
This flaw makes curl overflow a heap based buffer in the SOCKS5 proxy handshake.
Signed-off-by: Archana Polampalli
Signed-off-by: Steve Sakoman
---
.../curl/curl/CVE-2023-38545.patch| 133 ++
meta/recipes-support/curl/curl_8.0.1.bb | 1 +
2 files changed, 134 insertions(+)
create mode 100644 meta/recipes-support/curl/curl/CVE-2023-38545.patch
diff --git a/meta/recipes-support/curl/curl/CVE-2023-38545.patch
b/meta/recipes-support/curl/curl/CVE-2023-38545.patch
new file mode 100644
index 00..b90677fa5f
--- /dev/null
+++ b/meta/recipes-support/curl/curl/CVE-2023-38545.patch
@@ -0,0 +1,133 @@
+From fb4415d8aee6c1045be932a34fe6107c2f5ed147 Mon Sep 17 00:00:00 2001
+From: Jay Satiro
+Date: Wed, 11 Oct 2023 07:34:19 +0200
+Subject: [PATCH] socks: return error if hostname too long for remote resolve
+
+Prior to this change the state machine attempted to change the remote
+resolve to a local resolve if the hostname was longer than 255
+characters. Unfortunately that did not work as intended and caused a
+security issue.
+
+Bug: https://curl.se/docs/CVE-2023-38545.html
+
+Upstream-Status: Backport
[https://github.com/curl/curl/commit/fb4415d8aee6c1045be932a34fe6107c2f5ed147]
+CVE: CVE-2023-38545
+Signed-off-by: Archana Polampalli
+---
+ lib/socks.c | 8 +++---
+ tests/data/Makefile.inc | 2 +-
+ tests/data/test722 | 64 +
+ 3 files changed, 69 insertions(+), 5 deletions(-)
+ create mode 100644 tests/data/test722
+
+diff --git a/lib/socks.c b/lib/socks.c
+index 95c2b00..8cf694d 100644
+--- a/lib/socks.c
b/lib/socks.c
+@@ -588,9 +588,9 @@ static CURLproxycode do_SOCKS5(struct Curl_cfilter *cf,
+
+ /* RFC1928 chapter 5 specifies max 255 chars for domain name in packet */
+ if(!socks5_resolve_local && hostname_len > 255) {
+- infof(data, "SOCKS5: server resolving disabled for hostnames of "
+-"length > 255 [actual len=%zu]", hostname_len);
+- socks5_resolve_local = TRUE;
++ failf(data, "SOCKS5: the destination hostname is too long to be "
++"resolved remotely by the proxy.");
++ return CURLPX_LONG_HOSTNAME;
+ }
+
+ if(auth & ~(CURLAUTH_BASIC | CURLAUTH_GSSAPI))
+@@ -904,7 +904,7 @@ static CURLproxycode do_SOCKS5(struct Curl_cfilter *cf,
+ }
+ else {
+ socksreq[len++] = 3;
+-socksreq[len++] = (char) hostname_len; /* one byte address length */
++socksreq[len++] = (unsigned char) hostname_len; /* one byte length */
+ memcpy(&socksreq[len], sx->hostname, hostname_len); /* w/o NULL */
+ len += hostname_len;
+ }
+diff --git a/tests/data/Makefile.inc b/tests/data/Makefile.inc
+index 7ed03a2..643c9fe 100644
+--- a/tests/data/Makefile.inc
b/tests/data/Makefile.inc
+@@ -100,7 +100,7 @@ test679 test680 test681 test682 test683 test684 test685
test686 \
+ \
+ test700 test701 test702 test703 test704 test705 test706 test707 test708 \
+ test709 test710 test711 test712 test713 test714 test715 test716 test717 \
+-test718 test719 test720 test721 \
++test718 test719 test720 test721 test722 \
+ \
+ test800 test801 test802 test803 test804 test805 test806 test807 test808 \
+ test809 test810 test811 test812 test813 test814 test815 test816 test817 \
+diff --git a/tests/data/test722 b/tests/data/test722
+new file mode 100644
+index 000..05bcf28
+--- /dev/null
b/tests/data/test722
+@@ -0,0 +1,64 @@
++
++
++
++HTTP
++HTTP GET
++SOCKS5
++SOCKS5h
++followlocation
++
++
++
++#
++# Server-side
++
++# The hostname in this redirect is 256 characters and too long (> 255) for
++# SOCKS5 remote resolve. curl must return error CURLE_PROXY in this case.
++
++HTTP/1.1 301 Moved Permanently
++Location:
http:///
++Content-Length: 0
++Connection: close
++
++
++
++
++#
++# Client-side
++
++
++proxy
++
++
++http
++socks5
++
++
++SOCKS5h with HTTP redirect to hostname too long
++
++
++--no-progress-meter --location --proxy socks5h://%HOSTIP:%SOCKSPORT
http://%HOSTIP:%HTTPPORT/%TESTNUMBER
++
++
++
++#
++# Verify data after the test has been "shot"
++
++
++GET /%TESTNUMBER HTTP/1.1
++Host: %HOSTIP:%HTTPPORT
++User-Agent: curl/%VERSION
++Accept: */*
++
++
++
++97
++
++# the error message is verified because error code CURLE_PROXY (97) may be
++# returned for any number of reasons and we need to make sure it is
++# specifically for the reason below so that we know the check is working.
++
++curl: (97) SOCKS5: the destination hostname is too long to be resolved
remotely by the proxy.
++
++
++
+--
+2.40.0
diff --git a/meta/recipes-support/curl/curl_8.0.1.bb
b/meta/recipes-support/curl/curl_8.0.1.bb
index 708f622fe1..bdffe7be34 100644
--- a/met
[OE-core][mickledore 03/27] ghostscript: fix CVE-2023-43115
From: Joe Slater
The patch is copied from kirkstone. master has advanced
to ghostscript 10.02.0 which includes the fix.
Signed-off-by: Joe Slater
Signed-off-by: Steve Sakoman
---
.../ghostscript/CVE-2023-43115.patch | 62 +++
.../ghostscript/ghostscript_10.0.0.bb | 1 +
2 files changed, 63 insertions(+)
create mode 100644
meta/recipes-extended/ghostscript/ghostscript/CVE-2023-43115.patch
diff --git a/meta/recipes-extended/ghostscript/ghostscript/CVE-2023-43115.patch
b/meta/recipes-extended/ghostscript/ghostscript/CVE-2023-43115.patch
new file mode 100644
index 00..979f354ed5
--- /dev/null
+++ b/meta/recipes-extended/ghostscript/ghostscript/CVE-2023-43115.patch
@@ -0,0 +1,62 @@
+From 8b0f20002536867bd73ff4552408a72597190cbe Mon Sep 17 00:00:00 2001
+From: Ken Sharp
+Date: Thu, 24 Aug 2023 15:24:35 +0100
+Subject: [PATCH] IJS device - try and secure the IJS server startup
+
+Bug #707051 ""ijs" device can execute arbitrary commands"
+
+The problem is that the 'IJS' device needs to start the IJS server, and
+that is indeed an arbitrary command line. There is (apparently) no way
+to validate it. Indeed, this is covered quite clearly in the comments
+at the start of the source:
+
+ * WARNING: The ijs server can be selected on the gs command line
+ * which is a security risk, since any program can be run.
+
+Previously this used the awful LockSafetyParams hackery, which we
+abandoned some time ago because it simply couldn't be made secure (it
+was implemented in PostScript and was therefore vulnerable to PostScript
+programs).
+
+This commit prevents PostScript programs switching to the IJS device
+after SAFER has been activated, and prevents changes to the IjsServer
+parameter after SAFER has been activated.
+
+SAFER is activated, unless explicitly disabled, before any user
+PostScript is executed which means that the device and the server
+invocation can only be configured on the command line. This does at
+least provide minimal security against malicious PostScript programs.
+
+Upstream-Status: Backport
[https://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=8b0f20002536867bd73ff4552408a72597190cbe]
+
+CVE: CVE-2023-43115
+
+Signed-off-by: Archana Polampalli
+---
+ devices/gdevijs.c | 4 +++-
+ 1 file changed, 3 insertions(+), 1 deletion(-)
+
+diff --git a/devices/gdevijs.c b/devices/gdevijs.c
+index 8cbd84b97..16f5a1752 100644
+--- a/devices/gdevijs.c
b/devices/gdevijs.c
+@@ -888,6 +888,8 @@ gsijs_initialize_device(gx_device *dev)
+ static const char rgb[] = "DeviceRGB";
+ gx_device_ijs *ijsdev = (gx_device_ijs *)dev;
+
++if (ijsdev->memory->gs_lib_ctx->core->path_control_active)
++return_error(gs_error_invalidaccess);
+ if (!ijsdev->ColorSpace) {
+ ijsdev->ColorSpace = gs_malloc(ijsdev->memory, sizeof(rgb), 1,
+"gsijs_initialize");
+@@ -1326,7 +1328,7 @@ gsijs_put_params(gx_device *dev, gs_param_list *plist)
+ if (code >= 0)
+ code = gsijs_read_string(plist, "IjsServer",
+ ijsdev->IjsServer, sizeof(ijsdev->IjsServer),
+-dev->LockSafetyParams, is_open);
++ijsdev->memory->gs_lib_ctx->core->path_control_active, is_open);
+
+ if (code >= 0)
+ code = gsijs_read_string_malloc(plist, "DeviceManufacturer",
+--
+2.40.0
diff --git a/meta/recipes-extended/ghostscript/ghostscript_10.0.0.bb
b/meta/recipes-extended/ghostscript/ghostscript_10.0.0.bb
index 9e2cd01ff4..5c6be991d9 100644
--- a/meta/recipes-extended/ghostscript/ghostscript_10.0.0.bb
+++ b/meta/recipes-extended/ghostscript/ghostscript_10.0.0.bb
@@ -37,6 +37,7 @@ SRC_URI_BASE =
"https://github.com/ArtifexSoftware/ghostpdl-downloads/releases/d
file://cve-2023-28879.patch \
file://cve-2023-36664.patch \
file://CVE-2023-38559.patch \
+file://CVE-2023-43115.patch \
"
SRC_URI = "${SRC_URI_BASE} \
--
2.34.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189080):
https://lists.openembedded.org/g/openembedded-core/message/189080
Mute This Topic: https://lists.openembedded.org/mt/101950184/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core][mickledore 02/27] tiff: fix CVE-2023-41175
From: Yogita Urade
libtiff: potential integer overflow in raw2tiff.c
References:
https://bugzilla.redhat.com/show_bug.cgi?id=2235264
https://security-tracker.debian.org/tracker/CVE-2023-41175
https://gitlab.com/libtiff/libtiff/-/issues/592
Signed-off-by: Yogita Urade
Signed-off-by: Richard Purdie
(cherry picked from commit 4ee806cbc12fbc830b09ba6222e96b1e5f24539f)
Signed-off-by: Steve Sakoman
---
.../libtiff/files/CVE-2023-41175.patch| 63 +++
meta/recipes-multimedia/libtiff/tiff_4.5.1.bb | 1 +
2 files changed, 64 insertions(+)
create mode 100644 meta/recipes-multimedia/libtiff/files/CVE-2023-41175.patch
diff --git a/meta/recipes-multimedia/libtiff/files/CVE-2023-41175.patch
b/meta/recipes-multimedia/libtiff/files/CVE-2023-41175.patch
new file mode 100644
index 00..cca30b2196
--- /dev/null
+++ b/meta/recipes-multimedia/libtiff/files/CVE-2023-41175.patch
@@ -0,0 +1,63 @@
+From 6e2dac5f904496d127c92ddc4e56eccfca25c2ee Mon Sep 17 00:00:00 2001
+From: Arie Haenel
+Date: Thu, 14 Sep 2023 04:36:58 +
+Subject: [PATCH] raw2tiff: fix integer overflow and bypass of the check (fixes
+ #592)
+
+CVE: CVE-2023-41175
+
+Upstream-Status: Backport
[https://gitlab.com/libtiff/libtiff/-/commit/6e2dac5f904496d127c92ddc4e56eccfca25c2ee]
+
+Signed-off-by: Yogita Urade
+---
+ tools/raw2tiff.c | 28
+ 1 file changed, 28 insertions(+)
+
+diff --git a/tools/raw2tiff.c b/tools/raw2tiff.c
+index 4ee59e5..a811077 100644
+--- a/tools/raw2tiff.c
b/tools/raw2tiff.c
+@@ -101,6 +101,7 @@ int main(int argc, char *argv[])
+ int fd;
+ char *outfilename = NULL;
+ TIFF *out;
++uint32_t temp_limit_check = 0; /* temp for integer overflow checking*/
+
+ uint32_t row, col, band;
+ int c;
+@@ -221,6 +222,33 @@ int main(int argc, char *argv[])
+ if (guessSize(fd, dtype, hdr_size, nbands, swab, &width, &length) < 0)
+ return EXIT_FAILURE;
+
++/* check for integer overflow in */
++/* hdr_size + (*width) * (*length) * nbands * depth */
++
++if ((width == 0) || (length == 0) ){
++fprintf(stderr, "Too large nbands value specified.\n");
++return (EXIT_FAILURE);
++}
++
++temp_limit_check = nbands * depth;
++
++if ( !temp_limit_check || length > ( UINT_MAX / temp_limit_check ) ) {
++fprintf(stderr, "Too large length size specified.\n");
++return (EXIT_FAILURE);
++}
++temp_limit_check = temp_limit_check * length;
++
++if ( !temp_limit_check || width > ( UINT_MAX / temp_limit_check ) ) {
++fprintf(stderr, "Too large width size specified.\n");
++return (EXIT_FAILURE);
++}
++temp_limit_check = temp_limit_check * width;
++
++if ( !temp_limit_check || hdr_size > ( UINT_MAX - temp_limit_check ) ) {
++fprintf(stderr, "Too large header size specified.\n");
++return (EXIT_FAILURE);
++}
++
+ if (outfilename == NULL)
+ outfilename = argv[optind + 1];
+ out = TIFFOpen(outfilename, "w");
+--
+2.35.5
diff --git a/meta/recipes-multimedia/libtiff/tiff_4.5.1.bb
b/meta/recipes-multimedia/libtiff/tiff_4.5.1.bb
index 9cd790a2da..2a5b7e7fcf 100644
--- a/meta/recipes-multimedia/libtiff/tiff_4.5.1.bb
+++ b/meta/recipes-multimedia/libtiff/tiff_4.5.1.bb
@@ -10,6 +10,7 @@ CVE_PRODUCT = "libtiff"
SRC_URI = "http://download.osgeo.org/libtiff/tiff-${PV}.tar.gz \
file://CVE-2023-40745.patch \
+ file://CVE-2023-41175.patch \
"
SRC_URI[sha256sum] =
"d7f38b6788e4a8f5da7940c5ac9424f494d8a79eba53d555f4a507167dca5e2b"
--
2.34.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189079):
https://lists.openembedded.org/g/openembedded-core/message/189079
Mute This Topic: https://lists.openembedded.org/mt/101950183/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core][mickledore 00/27] Patch review
Please review this set of changes for mickledore and have comments back by
end of day Tuesday, October 17
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/6043
The following changes since commit c451a9cb6adbc9480dacd81e935a0b9369f22e07:
libgudev: explicitly disable tests and vapi (2023-10-11 08:01:07 -1000)
are available in the Git repository at:
https://git.openembedded.org/openembedded-core-contrib stable/mickledore-nut
https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/mickledore-nut
Alexander Kanavin (9):
gzip: update 1.12 -> 1.13
screen: update 4.9.0 -> 4.9.1
runqemu: check permissions of available render nodes as well as their
presence
build-sysroots: target or native sysroot population need to be
selected explicitly
igt-gpu-tools: do not write shortened git commit hash into binaries
ptest: report tests that were killed on timeout
strace: parallelize ptest
openssl: parallelize tests
openssl: ensure all ptest fails are caught
Archana Polampalli (2):
curl: fix CVE-2023-38545
curl: fix CVE-2023-38546
Eilís 'pidge' Ní Fhlannagáin (1):
nativesdk-intercept: Fix bad intercept chgrp/chown logic
Joe Slater (1):
ghostscript: fix CVE-2023-43115
Khem Raj (1):
libc-test: Run as non-root user
Mikko Rapeli (2):
oeqa dnf_runtime.py: fix HTTP server IP address and port
oeqa/selftest/context.py: check git command return values
Otavio Salvador (2):
weston-init: remove misleading comment about udev rule
weston-init: fix init code indentation
Peter Kjellerstedt (1):
libsoup-2.4: Only specify --cross-file when building for target
Richard Purdie (1):
oeqa/selftest/wic: Improve assertTrue calls
Ross Burton (1):
avahi: handle invalid service types gracefully
Siddharth Doshi (1):
vim: Upgrade 9.0.1894 -> 9.0.2009
Stefan Tauner (1):
gdb: fix RDEPENDS for PACKAGECONFIG[tui]
Wang Mingyu (2):
dbus: upgrade 1.14.8 -> 1.14.10
wireless-regdb: upgrade 2023.05.03 -> 2023.09.01
Yogita Urade (2):
tiff: fix CVE-2023-40745
tiff: fix CVE-2023-41175
.../lib/oeqa/runtime/cases/dnf_runtime.py | 3 +-
meta/files/ext-sdk-prepare.py | 2 +-
meta/lib/oeqa/runtime/cases/ptest.py | 2 +-
meta/lib/oeqa/selftest/cases/meta_ide.py | 5 +-
meta/lib/oeqa/selftest/cases/wic.py | 36 ++---
meta/lib/oeqa/selftest/context.py | 2 +-
meta/recipes-connectivity/avahi/avahi_0.8.bb | 1 +
.../avahi/files/invalid-service.patch | 29
.../openssl/openssl/run-ptest | 2 +-
.../dbus/{dbus_1.14.8.bb => dbus_1.14.10.bb} | 2 +-
meta/recipes-core/meta/build-sysroots.bb | 12 +-
.../musl/libc-test/run-libc-ptests| 28
meta/recipes-core/musl/libc-test/run-ptest| 29 +---
meta/recipes-core/musl/libc-test_git.bb | 5 +
meta/recipes-devtools/gdb/gdb-common.inc | 3 +-
meta/recipes-devtools/strace/strace/run-ptest | 2 +-
.../ghostscript/CVE-2023-43115.patch | 62 +++
.../ghostscript/ghostscript_10.0.0.bb | 1 +
.../wrong-path-fix.patch | 0
.../gzip/{gzip_1.12.bb => gzip_1.13.bb} | 6 +-
...-Add-needed-system-headers-in-checks.patch | 151 --
.../screen/screen/signal-permission.patch | 40 -
.../{screen_4.9.0.bb => screen_4.9.1.bb} | 4 +-
.../igt-gpu-tools/igt-gpu-tools_git.bb| 2 +-
meta/recipes-graphics/wayland/weston-init.bb | 2 +-
.../recipes-graphics/wayland/weston-init/init | 2 +-
05.03.bb => wireless-regdb_2023.09.01.bb} | 2 +-
.../libtiff/files/CVE-2023-40745.patch| 35
.../libtiff/files/CVE-2023-41175.patch| 63
meta/recipes-multimedia/libtiff/tiff_4.5.1.bb | 5 +-
.../curl/curl/CVE-2023-38545.patch| 133 +++
.../curl/curl/CVE-2023-38546.patch| 137
meta/recipes-support/curl/curl_8.0.1.bb | 2 +
.../libsoup/libsoup-2.4_2.74.3.bb | 2 +-
meta/recipes-support/vim/vim.inc | 4 +-
scripts/lib/devtool/sdk.py| 3 +-
scripts/nativesdk-intercept/chgrp | 5 +-
scripts/nativesdk-intercept/chown | 5 +-
scripts/runqemu | 14 +-
39 files changed, 575 insertions(+), 268 deletions(-)
create mode 100644 meta/recipes-connectivity/avahi/files/invalid-service.patch
rename meta/recipes-core/dbus/{dbus_1.14.8.bb => dbus_1.14.10.bb} (98%)
create mode 100644 meta/recipes-core/musl/libc-test/run-libc-ptests
create mode 100644
meta/recipes-extended/ghostscript/ghostscript/CVE-2023-43115.patch
rename meta/recipes-extended/gzip/{gzip-1.12 =>
gzip-1.13}/wrong-path-fix.patch (100%)
rename meta/recipes-extended/gzip/{gzip_1.12.bb => gzip_1.13.bb} (88%)
delete mode 100644
meta/recipes-extended/screen/screen/0001-configure-Add-needed-system-headers-in-checks.patch
delete mo
[OE-core][mickledore 01/27] tiff: fix CVE-2023-40745
From: Yogita Urade
libtiff: integer overflow in tiffcp.c
References:
https://security-tracker.debian.org/tracker/CVE-2023-40745
https://gitlab.com/libtiff/libtiff/-/issues/591
https://bugzilla.redhat.com/show_bug.cgi?id=2235265
Signed-off-by: Yogita Urade
Signed-off-by: Richard Purdie
(cherry picked from commit c3d4fbeb51278a04a6800c894c681733ad2259ca)
Signed-off-by: Steve Sakoman
---
.../libtiff/files/CVE-2023-40745.patch| 35 +++
meta/recipes-multimedia/libtiff/tiff_4.5.1.bb | 4 ++-
2 files changed, 38 insertions(+), 1 deletion(-)
create mode 100644 meta/recipes-multimedia/libtiff/files/CVE-2023-40745.patch
diff --git a/meta/recipes-multimedia/libtiff/files/CVE-2023-40745.patch
b/meta/recipes-multimedia/libtiff/files/CVE-2023-40745.patch
new file mode 100644
index 00..73f1f37bab
--- /dev/null
+++ b/meta/recipes-multimedia/libtiff/files/CVE-2023-40745.patch
@@ -0,0 +1,35 @@
+From 4fc16f649fa2875d5c388cf2edc295510a247ee5 Mon Sep 17 00:00:00 2001
+From: Arie Haenel
+Date: Thu, 14 Sep 2023 04:31:35 +
+Subject: [PATCH] tiffcp: fix memory corruption (overflow) on hostile images
+ (fixes #591)
+
+CVE: CVE-2023-40745
+
+Upstream-Status: Backport
[https://gitlab.com/libtiff/libtiff/-/commit/4fc16f649fa2875d5c388cf2edc295510a247ee5]
+
+Signed-off-by: Yogita Urade
+---
+ tools/tiffcp.c | 7 +++
+ 1 file changed, 7 insertions(+)
+
+diff --git a/tools/tiffcp.c b/tools/tiffcp.c
+index 3b2d1dd..57fa6e8 100644
+--- a/tools/tiffcp.c
b/tools/tiffcp.c
+@@ -1754,6 +1754,13 @@ DECLAREreadFunc(readSeparateTilesIntoBuffer)
+ "Width * Samples/Pixel)");
+ return 0;
+ }
++
++if ( (imagew - tilew * spp) > INT_MAX ){
++TIFFError(TIFFFileName(in),
++ "Error, image raster scan line size is too large");
++return 0;
++}
++
+ iskew = imagew - tilew * spp;
+ tilebuf = limitMalloc(tilesize);
+ if (tilebuf == 0)
+--
+2.35.5
diff --git a/meta/recipes-multimedia/libtiff/tiff_4.5.1.bb
b/meta/recipes-multimedia/libtiff/tiff_4.5.1.bb
index 5af3f84265..9cd790a2da 100644
--- a/meta/recipes-multimedia/libtiff/tiff_4.5.1.bb
+++ b/meta/recipes-multimedia/libtiff/tiff_4.5.1.bb
@@ -8,7 +8,9 @@ LIC_FILES_CHKSUM =
"file://LICENSE.md;md5=a3e32d664d6db1386b4689c8121531c3"
CVE_PRODUCT = "libtiff"
-SRC_URI = "http://download.osgeo.org/libtiff/tiff-${PV}.tar.gz";
+SRC_URI = "http://download.osgeo.org/libtiff/tiff-${PV}.tar.gz \
+ file://CVE-2023-40745.patch \
+ "
SRC_URI[sha256sum] =
"d7f38b6788e4a8f5da7940c5ac9424f494d8a79eba53d555f4a507167dca5e2b"
--
2.34.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189078):
https://lists.openembedded.org/g/openembedded-core/message/189078
Mute This Topic: https://lists.openembedded.org/mt/101950182/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
Re: [OE-core] [PATCH v3] libtirpc: Support ipv6 in DISTRO_FEATURES
Hello Jörg, On Thu, 12 Oct 2023 18:34:35 +0200 Jörg Sommer via lists.openembedded.org wrote: > If the ipv6 feature for the distribution is not set, the package should not > contain settings for ipv6. This makes rpcbind doesn't try to bind to a IPv6 > socket, and complain that this fails. > > Signed-off-by: Jörg Sommer ... > @@ -20,6 +21,11 @@ inherit autotools pkgconfig > > EXTRA_OECONF = "--disable-gssapi" Your patch does not apply due to a recent commit which modified this context line. Can you please rebase on current master and send v4? Best regards, Luca -- Luca Ceresoli, Bootlin Embedded Linux and Kernel engineering https://bootlin.com -=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#189076): https://lists.openembedded.org/g/openembedded-core/message/189076 Mute This Topic: https://lists.openembedded.org/mt/101921995/21656 Group Owner: openembedded-core+ow...@lists.openembedded.org Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [arch...@mail-archive.com] -=-=-=-=-=-=-=-=-=-=-=-
Re: [OE-core][PATCH] create-spdx: fix do_create_spdx cannot find any SPDX file for recipe
I can try to reproduce this issue again with just-oe-core and some bsp
layer
that have multiconfig machines. I have only see this when using meta-ti
and after they switch to barematel [1].
This commit fixes the issue in my meta-lmp layer distro but this can also
be fixed
if we build the failing dependencies one by one.
https://git.yoctoproject.org/meta-ti/commit/?id=811c87bbbd324d4f176332b9e5f7c3699310cb06
Next week I will try to do the same with poky.
Thanks for your help.
Joshua Watt escreveu no dia sexta, 13/10/2023 à(s)
17:20:
> The dependency chain here is a little weird, because do_create_spdx()
> depends on do_collect_spdx_deps(), and the do_collect_spdx_deps has a
> deptask on do_create_sdpx to get the dependencies from upstream
> recipes (read the comment in there for why that is). We avoided
> recrdeptask because we _should_ only be pulling in SPDX documents from
> direct dependencies, so the "recursive" part _should_ not be necessary
> (which is why we use deptask instead of recrdeptask).
>
> That being said, there is a bug here somewhere and I can't quite
> figure out what it might be and I'm having a really hard time
> reproducing it; but I'm not sure this is the fix.
>
> I don't think
>
> On Fri, Oct 13, 2023 at 9:42 AM Jose Quaresma
> wrote:
> >
> > Given that we need some SPDX files produced in other recipes by
> do_create_spdx task,
> > we need to ensure that any of this other do_create_spdx build-time
> dependencies
> > runs first to produce the artidacts we need in the do_create_spdx of the
> current recipe.
> >
> > Fix the following which especially affects multiconfig machines:
> >
> > | ERROR: flex-native-2.6.4-r0 do_create_spdx: Cannot find any SPDX file
> for recipe autoconf-native, True
> sstate:autoconf-native:x86_64-linux:2.72c:r0:x86_64:11:
> sstate:autoconf-native::2.72c:r0::11:
> >
> > Signed-off-by: Jose Quaresma
> > ---
> > meta/classes/create-spdx-2.2.bbclass | 1 +
> > 1 file changed, 1 insertion(+)
> >
> > diff --git a/meta/classes/create-spdx-2.2.bbclass
> b/meta/classes/create-spdx-2.2.bbclass
> > index b0aef80db1..a37245bdba 100644
> > --- a/meta/classes/create-spdx-2.2.bbclass
> > +++ b/meta/classes/create-spdx-2.2.bbclass
> > @@ -709,6 +709,7 @@ addtask do_create_spdx_setscene
> > do_create_spdx[dirs] = "${SPDXWORK}"
> > do_create_spdx[cleandirs] = "${SPDXDEPLOY} ${SPDXWORK}"
> > do_create_spdx[depends] += "${PATCHDEPENDENCY}"
> > +do_create_spdx[recrdeptask] += "do_create_spdx"
> >
> > def collect_package_providers(d):
> > from pathlib import Path
> > --
> > 2.34.1
> >
> >
> >
> >
>
--
Best regards,
José Quaresma
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189075):
https://lists.openembedded.org/g/openembedded-core/message/189075
Mute This Topic: https://lists.openembedded.org/mt/101942902/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
Re: [OE-core] [PATCH 2/2] qemux86/qemuarm: Drop kernel version overrides
On 10/11/23 15:54, Bruce Ashfield wrote:
On Wed, Oct 11, 2023 at 5:39 PM Richard Purdie
wrote:
On Tue, 2023-10-10 at 19:11 -0600, Alejandro Enedino Hernandez
Samaniego wrote:
>
>
>
>
> On 10/6/23 05:36, Richard Purdie wrote:
>
>
> >
> > Drop the version overrides for the kernel for the x86 and arm
> > machines
> > so we can go back to following the distro versions. The
reasons for
> > these versions is mostly historical at this point as the issues
> > were
> > resolved.
> >
> > Signed-off-by: Richard Purdie
> > ---
> > meta/conf/machine/include/x86/x86-base.inc | 1 -
> > meta/conf/machine/qemuarm.conf | 4
> > meta/conf/machine/qemuarmv5.conf | 1 -
> > 3 files changed, 6 deletions(-)
> >
> > diff --git a/meta/conf/machine/include/x86/x86-base.inc
> > b/meta/conf/machine/include/x86/x86-base.inc
> > index 050c20af70c..fc6c39148db 100644
> > --- a/meta/conf/machine/include/x86/x86-base.inc
> > +++ b/meta/conf/machine/include/x86/x86-base.inc
> > @@ -18,7 +18,6 @@ SERIAL_CONSOLES ?= "115200;ttyS0"
> > # kernel-related variables
> > #
> > PREFERRED_PROVIDER_virtual/kernel ??= "linux-yocto"
> > -PREFERRED_VERSION_linux-yocto ??= "6.4%"
> >
> > #
> > # XSERVER subcomponents, used to build the XSERVER variable
> > diff --git a/meta/conf/machine/qemuarm.conf
> > b/meta/conf/machine/qemuarm.conf
> > index 04216cdc2e0..881733eb2da 100644
> > --- a/meta/conf/machine/qemuarm.conf
> > +++ b/meta/conf/machine/qemuarm.conf
> > @@ -28,8 +28,4 @@ QB_ROOTFS_OPT = "-drive
> > id=disk0,file=@ROOTFS@,if=none,format=raw -device virtio
> > QB_SERIAL_OPT = "-device virtio-serial-device -chardev
> > null,id=virtcon -device virtconsole,chardev=virtcon"
> > QB_TCPSERIAL_OPT = "-device virtio-serial-device -chardev
> > socket,id=virtcon,port=@PORT@,host=127.0.0.1 -device
> > virtconsole,chardev=virtcon"
> >
> > -# 6.4 causes Xorg to fail to read the virtio framebuffer so stick
> > with 6.1 until
> > -# that is resolved.
> > -PREFERRED_VERSION_linux-yocto ??= "6.1%"
> > -
> > KMACHINE:qemuarm = "qemuarma15"
> > diff --git a/meta/conf/machine/qemuarmv5.conf
> > b/meta/conf/machine/qemuarmv5.conf
> > index deb4869c0aa..f0a86f1e4c7 100644
> > --- a/meta/conf/machine/qemuarmv5.conf
> > +++ b/meta/conf/machine/qemuarmv5.conf
> > @@ -16,5 +16,4 @@ QB_GRAPHICS = "-device virtio-gpu-pci"
> > QB_OPT_APPEND = "-device qemu-xhci -device usb-tablet -device
usb-
> > kbd"
> > QB_DTB =
> >
"${@oe.utils.version_less_or_equal('PREFERRED_VERSION_linux-yocto',
> > '4.7', '', 'zImage-versatile-pb.dtb', d)}"
> >
> >
>
> Removing this bit results in the above line causing an
> ExpansionError, since
> PREFERRED_VERSION_linux-yocto isnt defined anywhere anymore (if not
> using poky.conf)
>
> What would be the right approach to solve this issue?, Should QB_DTB
> be depending on such variable?
4.7 is old enough we can probably just drop the conditional now?
Yep, that should be safe. It hasn't changed name or format in quite
some time.
(Although there has been some re-organization in 6.5/6.6 around device
trees, but that shouldn't come into play here).
Bruce
Cheers,
Richard
Great, thanks for the pointers, sending patch.
Alejandro
--
- Thou shalt not follow the NULL pointer, for chaos and madness await
thee at its end
- "Use the force Harry" - Gandalf, Star Trek II
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189074):
https://lists.openembedded.org/g/openembedded-core/message/189074
Mute This Topic: https://lists.openembedded.org/mt/101795562/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
Re: [OE-core][PATCH] create-spdx: fix do_create_spdx cannot find any SPDX file for recipe
The dependency chain here is a little weird, because do_create_spdx()
depends on do_collect_spdx_deps(), and the do_collect_spdx_deps has a
deptask on do_create_sdpx to get the dependencies from upstream
recipes (read the comment in there for why that is). We avoided
recrdeptask because we _should_ only be pulling in SPDX documents from
direct dependencies, so the "recursive" part _should_ not be necessary
(which is why we use deptask instead of recrdeptask).
That being said, there is a bug here somewhere and I can't quite
figure out what it might be and I'm having a really hard time
reproducing it; but I'm not sure this is the fix.
I don't think
On Fri, Oct 13, 2023 at 9:42 AM Jose Quaresma wrote:
>
> Given that we need some SPDX files produced in other recipes by
> do_create_spdx task,
> we need to ensure that any of this other do_create_spdx build-time
> dependencies
> runs first to produce the artidacts we need in the do_create_spdx of the
> current recipe.
>
> Fix the following which especially affects multiconfig machines:
>
> | ERROR: flex-native-2.6.4-r0 do_create_spdx: Cannot find any SPDX file for
> recipe autoconf-native, True
> sstate:autoconf-native:x86_64-linux:2.72c:r0:x86_64:11:
> sstate:autoconf-native::2.72c:r0::11:
>
> Signed-off-by: Jose Quaresma
> ---
> meta/classes/create-spdx-2.2.bbclass | 1 +
> 1 file changed, 1 insertion(+)
>
> diff --git a/meta/classes/create-spdx-2.2.bbclass
> b/meta/classes/create-spdx-2.2.bbclass
> index b0aef80db1..a37245bdba 100644
> --- a/meta/classes/create-spdx-2.2.bbclass
> +++ b/meta/classes/create-spdx-2.2.bbclass
> @@ -709,6 +709,7 @@ addtask do_create_spdx_setscene
> do_create_spdx[dirs] = "${SPDXWORK}"
> do_create_spdx[cleandirs] = "${SPDXDEPLOY} ${SPDXWORK}"
> do_create_spdx[depends] += "${PATCHDEPENDENCY}"
> +do_create_spdx[recrdeptask] += "do_create_spdx"
>
> def collect_package_providers(d):
> from pathlib import Path
> --
> 2.34.1
>
>
>
>
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189073):
https://lists.openembedded.org/g/openembedded-core/message/189073
Mute This Topic: https://lists.openembedded.org/mt/101942902/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
Re: [OE-core] [PATCH v3] libtirpc: Support ipv6 in DISTRO_FEATURES
On Fri, Oct 13, 2023 at 2:55 AM Jörg Sommer via lists.openembedded.org
wrote:
>
> On 12 October 2023 21:13, Dan McGregor wrote:
> > On Thu, 12 Oct 2023 at 11:10, Jörg Sommer via lists.openembedded.org
> > wrote:
> > >
> > > This is only a minor change, because oelint-adv had warned about the
> > > space after " of PACKAGECONFIG.
> > >
> > >
> > > From: openembedded-core@lists.openembedded.org
> > > on behalf of Jörg Sommer via
> > > lists.openembedded.org
> > > Sent: Thursday, 12 October 2023 18:34
> > > To: openembedded-core@lists.openembedded.org
> > >
> > > Cc: Jörg Sommer
> > > Subject: [OE-core] [PATCH v3] libtirpc: Support ipv6 in DISTRO_FEATURES
> > >
> > > If the ipv6 feature for the distribution is not set, the package should
> > > not
> > > contain settings for ipv6. This makes rpcbind doesn't try to bind to a
> > > IPv6
> > > socket, and complain that this fails.
>
> > > +PACKAGECONFIG ??= "\
> > > +${@bb.utils.filter('DISTRO_FEATURES', 'ipv6', d)} \
> > > +"
> > > +PACKAGECONFIG[ipv6] = "--enable-ipv6,--disable-ipv6"
> >
> > Looks like this will conflict with recent changes I made to master, so
> > hopefully those can be resolved automatically.
>
> I'm happy to provide a new version that applies on master, if it's needed.
> Let me know if I should create it.
Yes please rebase and send again.
>
> --
> Navimatix GmbH
> Tatzendpromenade 2
> 07745 Jena
> Geschäftsführer: Steffen Späthe, Jan Rommeley
> Registergericht: Amtsgericht Jena, HRB 501480
>
>
>
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189072):
https://lists.openembedded.org/g/openembedded-core/message/189072
Mute This Topic: https://lists.openembedded.org/mt/101921995/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core][PATCH] create-spdx: fix do_create_spdx cannot find any SPDX file for recipe
Given that we need some SPDX files produced in other recipes by do_create_spdx
task,
we need to ensure that any of this other do_create_spdx build-time dependencies
runs first to produce the artidacts we need in the do_create_spdx of the
current recipe.
Fix the following which especially affects multiconfig machines:
| ERROR: flex-native-2.6.4-r0 do_create_spdx: Cannot find any SPDX file for
recipe autoconf-native, True
sstate:autoconf-native:x86_64-linux:2.72c:r0:x86_64:11:
sstate:autoconf-native::2.72c:r0::11:
Signed-off-by: Jose Quaresma
---
meta/classes/create-spdx-2.2.bbclass | 1 +
1 file changed, 1 insertion(+)
diff --git a/meta/classes/create-spdx-2.2.bbclass
b/meta/classes/create-spdx-2.2.bbclass
index b0aef80db1..a37245bdba 100644
--- a/meta/classes/create-spdx-2.2.bbclass
+++ b/meta/classes/create-spdx-2.2.bbclass
@@ -709,6 +709,7 @@ addtask do_create_spdx_setscene
do_create_spdx[dirs] = "${SPDXWORK}"
do_create_spdx[cleandirs] = "${SPDXDEPLOY} ${SPDXWORK}"
do_create_spdx[depends] += "${PATCHDEPENDENCY}"
+do_create_spdx[recrdeptask] += "do_create_spdx"
def collect_package_providers(d):
from pathlib import Path
--
2.34.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189071):
https://lists.openembedded.org/g/openembedded-core/message/189071
Mute This Topic: https://lists.openembedded.org/mt/101942902/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
Re: [OE-core] Summary of the remaining 6.5 kernel serial issue (and 6.5 summary)
So, here is an update for those not following on IRC: [Re: [OE-core] Summary of the remaining 6.5 kernel serial issue (and 6.5 summary)] On 11/10/2023 (Wed 00:50) Paul Gortmaker wrote: [snip details of getting RP's chunk of AB python working as a 1% reproducer] > Next steps: > > Each run takes approximately 20s, and with a 1.5% success factor, a > minimum of 150 clean runs is needed before one can say "OK, *maybe* this > kernel currently under test is OK. That translates to over an hour to > get a data point you have some faith in as being "good". [Still a heck > of a lot better than doing 150 *builds* though!] > > On the other hand, just one instance of missing login on ttyS1 is > concretely "bad" and hence the test run can be stopped as soon as one > instance of that is seen. > > This "good is really maybe perhaps good, but bad is for sure bad" type > of bisects that I love to hate. > > Since the data points are "expensive", I probably won't just attempt a > mindless brute force bisect. I'd probably do something more like... > > --ensure modules (or lack of) don't impact the results, so I don't have > to rebundle rootfs images. This turned out to be true - didn't need modules. > --maybe see if I can build with host gcc vs. using devshell/sysroot gcc > and still see the issue. Although really, kernel build time optimization > won't be the bottleneck in this particular case, so not worthwhile? I didn't bother with the above, since build time was not significant here. > --check vanilla v6.5 (i.e. v6.5.0 -- no linux-stable content) so I know > whether to dig around in v6.5.0 --> v6.5.5, or dig around in the > much much larger v6.4 --> v6.5 additions. I expect it to be the > latter, i.e. digging through mainline, but who knows. As expected, it followed v6.5.0 and linux-stable isn't to blame here. > --assuming mainline introduced it, instead of a brute force bisect, I'd > look for merges by Linus from gregKH pull requests for the tty and > serial subsystems in the merge window (v6.4 ---> v6.5-rc1) and test > both sides of that/those merge(s). This also largely went according to plan. I started with the tty merge: v6.5-rc1~74: 868a9fd94807 Merge tag 'tty-6.5-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/gregkh/tty and did burrow down into the 60-odd commits within. One complication was that there were interim mainline merges into the dev stream: $ git log --oneline --merges v6.5-rc1~74^2 ^v6.5-rc1~74^1 2076b2a4a6b7 Merge 6.4-rc5 into tty-next 0e4daea31d83 Merge 6.4-rc3 into tty-next ..which usually indicate a dependency on work from another subsystem. Fortunately the test pass/fail boundary didn't land on one of those. > --if things haven't completely fallen apart by that point, I'd be left > with a relatively small set of subsystem specific commits from a single > pull request which then could be bisected. We did somehow manage to get here with just 60 commits to consider. > > Sometimes in the past, when I've got down to that small set of commits, > the culprit almost jumps out at you when scanning over the shortlogs. While I didn't immediately spot the commit via the shortlog, extensive test iterations did give us confidence in pinpointing a single commit: 84a9582fd203 serial: core: Start managing serial controllers to enable runtime PM *** < FAIL (33/1436) ae62c49c0cef serial: 8250: omap: convert to modern PM ops < PASS (0/1593) > Anyway, that is where my thoughts are at. But of course we don't even > yet know if this "test" is even accurately reflecting the OEQA/AB issue! > So nobody should get their hopes up too early. I think now, we can say with a solid degree of confidence that the PM commit gets to own the responsibility of causing the ttyS1 getty not flushing the login banner and prompt. Hence why I did over 1000 runs on both the PASS and FAIL commit boundary. Unfortunately, there is a lot in that commit ; also a lot in the discussion and the twelve iterations before acceptance that I've not even looked at yet: https://lore.kernel.org/linux-serial/1431f5b4-fb39-483b-9314-ed2b7c118...@gmail.com/T/#t My "next steps" at this point would be to try and attempt to break down that relatively large commit into multiple "sub-commits" in order to use the AB test harness portion to better get an idea of which change component is the root cause of the ttyS1 getty stall/seizure. I won't get to that until Saturday at the earliest - going AFK after sending this. However, Mikko already opened a dialog with the linux-serial folks a few days ago: https://lore.kernel.org/all/ZSPQY6UYg21Z0PnN@nuoska/ Mikko -- if you want to take our pseudo bisect information (below) and continue that thread; sharing what we've learned since, and also loop in Tony (author of v6.4-rc3-31-g84a9582fd203) and others on the CC there, that might be a good next step to do now, while I am AFK. A qui
Re: [OE-core] Summary of the remaining 6.5 kernel serial issue (and 6.5 summary)
On Wed, 2023-10-11 at 00:49 -0400, Paul Gortmaker via lists.openembedded.org wrote: > [Re: [OE-core] Summary of the remaining 6.5 kernel serial issue (and 6.5 > summary)] On 10/10/2023 (Tue 21:53) Richard Purdie via lists.openembedded.org > wrote: > > > On Tue, 2023-10-10 at 21:37 +0100, Richard Purdie via > > lists.openembedded.org wrote: > > > I've been asked how to reproduce this setup more easily outside of > > > OEQA. I hacked this up: > > > > > > https://www.rpsys.net/wp/rp/simpleqemu.tgz > > > > > > extract it, hack the paths in commands.py to point at a qemux86-64 > > > build of core-image-minimal and then "./commands" should boot an qemu > > > image using the system's qemu binary as it would during the QA tests, > > > setting up the two serial ports as it would during tests. > > > > > > Obviously I've just brutally hacked this out of the QA code so there > > > are plenty of sharp edges. It should allow the serial setup to be > > > replicated and experimented with more easily though without bitbake > > > involved. It could be cut down a lot more too. > > > > and set runqemuparams = 'nographic' in commands.py if you can't cope > > with graphics :). > > So I think we are onto something here. Let me rewind a bit to provide > a bit of context for those who didn't follow the IRC discussion. > > The OE/QA is running qemu with the "-serial tcp::" option and > binds to that directly through python. In theory, one should also be > able to use netcat/socat (or even telnet) to bind to the qemu TCP via > manual command line testing without the autobuilder/OEQA python. > > But I couldn't get that to work without getting "broken" echo behaviour > and similar tty/terminal odd characters displayed. As that was also > observed on v6.1 and mickledore, I didn't want to go off on a wild goose > chase after something that probably has nothing to do with the issue at > hand here. > > Hence leading to what Richard created above. The basic premise is that > similar to the AB output, we are looking for log files ending in ".2" > that are from ttyS1 -- that are smaller than normal - indicating that a > getty wasn't able to get the login banner out successfully. Now the results. > > After 300 runs on mickledore with v6.1, all the .2 files were the same > size - 477 bytes. > > After 155 runs on today's master with v6.5 kernel, I got two runs where > instead of 477 bytes, they were 345 bytes. > > dot-two$ls -l1|wc -l > 155 > dot-two$ls -l1| grep -v 477 > total 616 > -rw-r--r-- 1 pgortmak users 345 Oct 10 17:54 qemu_boot_log.20231010175351.2 > -rw-r--r-- 1 pgortmak users 345 Oct 10 18:43 qemu_boot_log.20231010184307.2 > > The difference? The "short" files ended with "Starting crond: OK" and > were missing the login banner: > >Poky (Yocto Project Reference Distro) > 4.2+snapshot-0fb1ff0ffb527a6364cef7159c0d9dcb879e8dd9 qemux86-64 ttyS1 > >qemux86-64 login: > > > Similarly, for the ttyS0 logs, if we strip off the printk.time prefixes > thus allowing us to diff the corresponding "outlier" case against any > one of the 153 "normal" cases, we see that this line is missing: > > Last login: Tue Oct 10 22:40:31 + 2023 on /dev/ttyS1. > > ...which makes sense, since the login never appeared on ttyS1 for OEQA > to interact with and login to. > > (interesting that otherwise, ttyS1 always "wins" the race to update > wtmp/utmp over ttyS0) > > Anyway, that works out to approximately a reproduce factor of a dismal > 1.5% by my math. Ugh. But at least it isn't coupled to a full build! > > Finally, using an identical build on master but with PREF VERSION of > v6.4 kernel, I ran 300+ instances and got zero instances of short .2 > ttyS1 log files that were missing the getty output. > > Note that these runs were using the default qemu v4.x that ships with > ubuntu-20.04 ; I've not (yet?) run similar tests with our own more > up-to-date qemu build from the sysroot. Maybe I don't need to? > > Possible conclusions: > > The reproducibility seems pretty low, which seems to match what I've > heard with respect to the AB results. It also seems confined to the > v6.5.x kernel, based on these limited results - matching the AB results. > > So maybe we have a reproducer that is independent of OEQA and the > backing of a full build to get there? I'd like to think so, but I'm > going to run more v6.5+master tests overnight to try and get better > stats - a +/- of just 1 changes my current reproduce # by a large > percentage! > > > Next steps: > > Each run takes approximately 20s, and with a 1.5% success factor, a > minimum of 150 clean runs is needed before one can say "OK, *maybe* this > kernel currently under test is OK. That translates to over an hour to > get a data point you have some faith in as being "good". [Still a heck > of a lot better than doing 150 *builds* though!] > > On the other hand, just one instance of missing login on ttyS1 is > concretely "bad" and hence the te
[OE-core] [kirkstone][PATCH 3/7] python3-urllib3: upgrade 1.26.11 -> 1.26.12
From: wangmy
Signed-off-by: Wang Mingyu
Signed-off-by: Alexandre Belloni
(cherry picked from commit cb05578af3ace6e3983f93e16d9ad1ac2a65fbe2)
Signed-off-by: Lee Chee Yang
---
.../{python3-urllib3_1.26.11.bb => python3-urllib3_1.26.12.bb} | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
rename meta/recipes-devtools/python/{python3-urllib3_1.26.11.bb =>
python3-urllib3_1.26.12.bb} (86%)
diff --git a/meta/recipes-devtools/python/python3-urllib3_1.26.11.bb
b/meta/recipes-devtools/python/python3-urllib3_1.26.12.bb
similarity index 86%
rename from meta/recipes-devtools/python/python3-urllib3_1.26.11.bb
rename to meta/recipes-devtools/python/python3-urllib3_1.26.12.bb
index a8d47de0f42..1cd69bcb104 100644
--- a/meta/recipes-devtools/python/python3-urllib3_1.26.11.bb
+++ b/meta/recipes-devtools/python/python3-urllib3_1.26.12.bb
@@ -3,7 +3,7 @@ HOMEPAGE = "https://github.com/shazow/urllib3";
LICENSE = "MIT"
LIC_FILES_CHKSUM = "file://LICENSE.txt;md5=c2823cb995439c984fd62a973d79815c"
-SRC_URI[sha256sum] =
"ea6e8fb210b19d950fab93b60c9009226c63a28808bc8386e05301e25883ac0a"
+SRC_URI[sha256sum] =
"3fa96cf423e6987997fc326ae8df396db2a8b7c667747d47ddd8ecba91f4a74e"
inherit pypi setuptools3
--
2.37.3
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189064):
https://lists.openembedded.org/g/openembedded-core/message/189064
Mute This Topic: https://lists.openembedded.org/mt/101938010/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core] [kirkstone][PATCH 6/7] python3-urllib3: upgrade 1.26.14 -> 1.26.15
From: Wang Mingyu
Changelog:
==
* Fix socket timeout value when "HTTPConnection" is reused ('#2645
'__)
* Remove "!" character from the unreserved characters in IPv6 Zone ID parsing
('#2899 '__)
* Fix IDNA handling of '\x80' byte ('#2901
'__)
Signed-off-by: Wang Mingyu
Signed-off-by: Richard Purdie
(cherry picked from commit 8e062efbac29a81831c3060bcae601dc533d65dd)
Signed-off-by: Lee Chee Yang
---
.../{python3-urllib3_1.26.14.bb => python3-urllib3_1.26.15.bb} | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
rename meta/recipes-devtools/python/{python3-urllib3_1.26.14.bb =>
python3-urllib3_1.26.15.bb} (86%)
diff --git a/meta/recipes-devtools/python/python3-urllib3_1.26.14.bb
b/meta/recipes-devtools/python/python3-urllib3_1.26.15.bb
similarity index 86%
rename from meta/recipes-devtools/python/python3-urllib3_1.26.14.bb
rename to meta/recipes-devtools/python/python3-urllib3_1.26.15.bb
index f35a141df26..d2de7c4c022 100644
--- a/meta/recipes-devtools/python/python3-urllib3_1.26.14.bb
+++ b/meta/recipes-devtools/python/python3-urllib3_1.26.15.bb
@@ -3,7 +3,7 @@ HOMEPAGE = "https://github.com/shazow/urllib3";
LICENSE = "MIT"
LIC_FILES_CHKSUM = "file://LICENSE.txt;md5=c2823cb995439c984fd62a973d79815c"
-SRC_URI[sha256sum] =
"076907bf8fd355cde77728471316625a4d2f7e713c125f51953bb5b3eecf4f72"
+SRC_URI[sha256sum] =
"8a388717b9476f934a21484e8c8e61875ab60644d29b9b39e11e4b9dc1c6b305"
inherit pypi setuptools3
--
2.37.3
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189067):
https://lists.openembedded.org/g/openembedded-core/message/189067
Mute This Topic: https://lists.openembedded.org/mt/101938013/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core] [kirkstone][PATCH 7/7] python3-urllib3: 1.26.15 -> 1.26.17
From: Lee Chee Yang
1.26.17 (2023-10-02)
Added the Cookie header to the list of headers to strip from requests
when redirecting to a different host. As before, different headers can
be set via Retry.remove_headers_on_redirect. (CVE-2023-43804)
1.26.16 (2023-05-23)
Fixed thread-safety issue where accessing a PoolManager with many
distinct origins would cause connection pools to be closed while
requests are in progress (#2954)
Signed-off-by: Lee Chee Yang
---
.../{python3-urllib3_1.26.15.bb => python3-urllib3_1.26.17.bb} | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
rename meta/recipes-devtools/python/{python3-urllib3_1.26.15.bb =>
python3-urllib3_1.26.17.bb} (86%)
diff --git a/meta/recipes-devtools/python/python3-urllib3_1.26.15.bb
b/meta/recipes-devtools/python/python3-urllib3_1.26.17.bb
similarity index 86%
rename from meta/recipes-devtools/python/python3-urllib3_1.26.15.bb
rename to meta/recipes-devtools/python/python3-urllib3_1.26.17.bb
index d2de7c4c022..57b166870aa 100644
--- a/meta/recipes-devtools/python/python3-urllib3_1.26.15.bb
+++ b/meta/recipes-devtools/python/python3-urllib3_1.26.17.bb
@@ -3,7 +3,7 @@ HOMEPAGE = "https://github.com/shazow/urllib3";
LICENSE = "MIT"
LIC_FILES_CHKSUM = "file://LICENSE.txt;md5=c2823cb995439c984fd62a973d79815c"
-SRC_URI[sha256sum] =
"8a388717b9476f934a21484e8c8e61875ab60644d29b9b39e11e4b9dc1c6b305"
+SRC_URI[sha256sum] =
"24d6a242c28d29af46c3fae832c36db3bbebcc533dd1bb549172cd739c82df21"
inherit pypi setuptools3
--
2.37.3
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189068):
https://lists.openembedded.org/g/openembedded-core/message/189068
Mute This Topic: https://lists.openembedded.org/mt/101938014/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core] [kirkstone][PATCH 1/7] python3-urllib3: upgrade 1.26.9 -> 1.26.10
From: wangmy
Add dependence python3-logging.
Changelog:
=
* Removed support for Python 3.5
* Fixed an issue where a "ProxyError" recommending configuring the proxy as HTTP
instead of HTTPS could appear even when an HTTPS proxy wasn't configured.
Signed-off-by: Wang Mingyu
Signed-off-by: Richard Purdie
(cherry picked from commit a8a26a92dfe367472daf086a33a1b30ff6d17540)
Signed-off-by: Lee Chee Yang
---
.../{python3-urllib3_1.26.9.bb => python3-urllib3_1.26.10.bb} | 3 ++-
1 file changed, 2 insertions(+), 1 deletion(-)
rename meta/recipes-devtools/python/{python3-urllib3_1.26.9.bb =>
python3-urllib3_1.26.10.bb} (82%)
diff --git a/meta/recipes-devtools/python/python3-urllib3_1.26.9.bb
b/meta/recipes-devtools/python/python3-urllib3_1.26.10.bb
similarity index 82%
rename from meta/recipes-devtools/python/python3-urllib3_1.26.9.bb
rename to meta/recipes-devtools/python/python3-urllib3_1.26.10.bb
index 95ae4a54a40..a8e2073d71e 100644
--- a/meta/recipes-devtools/python/python3-urllib3_1.26.9.bb
+++ b/meta/recipes-devtools/python/python3-urllib3_1.26.10.bb
@@ -3,7 +3,7 @@ HOMEPAGE = "https://github.com/shazow/urllib3";
LICENSE = "MIT"
LIC_FILES_CHKSUM = "file://LICENSE.txt;md5=c2823cb995439c984fd62a973d79815c"
-SRC_URI[sha256sum] =
"aabaf16477806a5e1dd19aa41f8c2b7950dd3c746362d7e3223dbe6de6ac448e"
+SRC_URI[sha256sum] =
"879ba4d1e89654d9769ce13121e0f94310ea32e8d2f8cf587b77c08bbcdb30d6"
inherit pypi setuptools3
@@ -15,6 +15,7 @@ RDEPENDS:${PN} += "\
${PYTHON_PN}-netclient \
${PYTHON_PN}-pyopenssl \
${PYTHON_PN}-threading \
+${PYTHON_PN}-logging \
"
CVE_PRODUCT = "urllib3"
--
2.37.3
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189062):
https://lists.openembedded.org/g/openembedded-core/message/189062
Mute This Topic: https://lists.openembedded.org/mt/101938008/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core] [kirkstone][PATCH 2/7] python3-urllib3: upgrade 1.26.10 -> 1.26.11
From: Alexander Kanavin
Signed-off-by: Alexander Kanavin
Signed-off-by: Alexandre Belloni
Signed-off-by: Richard Purdie
(cherry picked from commit dbe07ff87e2cb1a8276e69a43c7cdbb9ae6e5493)
Signed-off-by: Lee Chee Yang
---
.../{python3-urllib3_1.26.10.bb => python3-urllib3_1.26.11.bb} | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
rename meta/recipes-devtools/python/{python3-urllib3_1.26.10.bb =>
python3-urllib3_1.26.11.bb} (86%)
diff --git a/meta/recipes-devtools/python/python3-urllib3_1.26.10.bb
b/meta/recipes-devtools/python/python3-urllib3_1.26.11.bb
similarity index 86%
rename from meta/recipes-devtools/python/python3-urllib3_1.26.10.bb
rename to meta/recipes-devtools/python/python3-urllib3_1.26.11.bb
index a8e2073d71e..a8d47de0f42 100644
--- a/meta/recipes-devtools/python/python3-urllib3_1.26.10.bb
+++ b/meta/recipes-devtools/python/python3-urllib3_1.26.11.bb
@@ -3,7 +3,7 @@ HOMEPAGE = "https://github.com/shazow/urllib3";
LICENSE = "MIT"
LIC_FILES_CHKSUM = "file://LICENSE.txt;md5=c2823cb995439c984fd62a973d79815c"
-SRC_URI[sha256sum] =
"879ba4d1e89654d9769ce13121e0f94310ea32e8d2f8cf587b77c08bbcdb30d6"
+SRC_URI[sha256sum] =
"ea6e8fb210b19d950fab93b60c9009226c63a28808bc8386e05301e25883ac0a"
inherit pypi setuptools3
--
2.37.3
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189063):
https://lists.openembedded.org/g/openembedded-core/message/189063
Mute This Topic: https://lists.openembedded.org/mt/101938009/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core] [kirkstone][PATCH 5/7] python3-urllib3: upgrade 1.26.13 -> 1.26.14
From: Tim Orling
https://github.com/urllib3/urllib3/blob/1.26.14/CHANGES.rst#12614-2023-01-11
1.26.14 (2023-01-11)
Fixed parsing of port 0 (zero) returning None, instead of 0. (#2850)
Removed deprecated getheaders() calls in contrib module.
Signed-off-by: Tim Orling
Signed-off-by: Richard Purdie
(cherry picked from commit 55ab1bf20e6893088acb6460e9004dac8e205559)
Signed-off-by: Lee Chee Yang
---
.../{python3-urllib3_1.26.13.bb => python3-urllib3_1.26.14.bb} | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
rename meta/recipes-devtools/python/{python3-urllib3_1.26.13.bb =>
python3-urllib3_1.26.14.bb} (86%)
diff --git a/meta/recipes-devtools/python/python3-urllib3_1.26.13.bb
b/meta/recipes-devtools/python/python3-urllib3_1.26.14.bb
similarity index 86%
rename from meta/recipes-devtools/python/python3-urllib3_1.26.13.bb
rename to meta/recipes-devtools/python/python3-urllib3_1.26.14.bb
index 7af95117cf1..f35a141df26 100644
--- a/meta/recipes-devtools/python/python3-urllib3_1.26.13.bb
+++ b/meta/recipes-devtools/python/python3-urllib3_1.26.14.bb
@@ -3,7 +3,7 @@ HOMEPAGE = "https://github.com/shazow/urllib3";
LICENSE = "MIT"
LIC_FILES_CHKSUM = "file://LICENSE.txt;md5=c2823cb995439c984fd62a973d79815c"
-SRC_URI[sha256sum] =
"c083dd0dce68dbfbe1129d5271cb90f9447dea7d52097c6e0126120c521ddea8"
+SRC_URI[sha256sum] =
"076907bf8fd355cde77728471316625a4d2f7e713c125f51953bb5b3eecf4f72"
inherit pypi setuptools3
--
2.37.3
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189066):
https://lists.openembedded.org/g/openembedded-core/message/189066
Mute This Topic: https://lists.openembedded.org/mt/101938012/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core] [kirkstone][PATCH 4/7] python3-urllib3: upgrade 1.26.12 -> 1.26.13
From: Alexander Kanavin
Signed-off-by: Alexander Kanavin
Signed-off-by: Alexandre Belloni
Signed-off-by: Richard Purdie
(cherry picked from commit b18552f69a2eb8900981a10ba386dc4f862b29c3)
Signed-off-by: Lee Chee Yang
---
.../{python3-urllib3_1.26.12.bb => python3-urllib3_1.26.13.bb} | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
rename meta/recipes-devtools/python/{python3-urllib3_1.26.12.bb =>
python3-urllib3_1.26.13.bb} (86%)
diff --git a/meta/recipes-devtools/python/python3-urllib3_1.26.12.bb
b/meta/recipes-devtools/python/python3-urllib3_1.26.13.bb
similarity index 86%
rename from meta/recipes-devtools/python/python3-urllib3_1.26.12.bb
rename to meta/recipes-devtools/python/python3-urllib3_1.26.13.bb
index 1cd69bcb104..7af95117cf1 100644
--- a/meta/recipes-devtools/python/python3-urllib3_1.26.12.bb
+++ b/meta/recipes-devtools/python/python3-urllib3_1.26.13.bb
@@ -3,7 +3,7 @@ HOMEPAGE = "https://github.com/shazow/urllib3";
LICENSE = "MIT"
LIC_FILES_CHKSUM = "file://LICENSE.txt;md5=c2823cb995439c984fd62a973d79815c"
-SRC_URI[sha256sum] =
"3fa96cf423e6987997fc326ae8df396db2a8b7c667747d47ddd8ecba91f4a74e"
+SRC_URI[sha256sum] =
"c083dd0dce68dbfbe1129d5271cb90f9447dea7d52097c6e0126120c521ddea8"
inherit pypi setuptools3
--
2.37.3
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189065):
https://lists.openembedded.org/g/openembedded-core/message/189065
Mute This Topic: https://lists.openembedded.org/mt/101938011/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core] [mickledore][PATCH 1/2] python3-urllib3: 1.26.15 -> 1.26.17
From: Lee Chee Yang
1.26.17 (2023-10-02)
Added the Cookie header to the list of headers to strip from requests
when redirecting to a different host. As before, different headers can
be set via Retry.remove_headers_on_redirect. (CVE-2023-43804)
1.26.16 (2023-05-23)
Fixed thread-safety issue where accessing a PoolManager with many
distinct origins would cause connection pools to be closed while
requests are in progress (#2954)
Signed-off-by: Lee Chee Yang
---
.../{python3-urllib3_1.26.15.bb => python3-urllib3_1.26.17.bb} | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
rename meta/recipes-devtools/python/{python3-urllib3_1.26.15.bb =>
python3-urllib3_1.26.17.bb} (86%)
diff --git a/meta/recipes-devtools/python/python3-urllib3_1.26.15.bb
b/meta/recipes-devtools/python/python3-urllib3_1.26.17.bb
similarity index 86%
rename from meta/recipes-devtools/python/python3-urllib3_1.26.15.bb
rename to meta/recipes-devtools/python/python3-urllib3_1.26.17.bb
index d2de7c4c02..57b166870a 100644
--- a/meta/recipes-devtools/python/python3-urllib3_1.26.15.bb
+++ b/meta/recipes-devtools/python/python3-urllib3_1.26.17.bb
@@ -3,7 +3,7 @@ HOMEPAGE = "https://github.com/shazow/urllib3";
LICENSE = "MIT"
LIC_FILES_CHKSUM = "file://LICENSE.txt;md5=c2823cb995439c984fd62a973d79815c"
-SRC_URI[sha256sum] =
"8a388717b9476f934a21484e8c8e61875ab60644d29b9b39e11e4b9dc1c6b305"
+SRC_URI[sha256sum] =
"24d6a242c28d29af46c3fae832c36db3bbebcc533dd1bb549172cd739c82df21"
inherit pypi setuptools3
--
2.37.3
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189061):
https://lists.openembedded.org/g/openembedded-core/message/189061
Mute This Topic: https://lists.openembedded.org/mt/101937565/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core] [mickledore][PATCH 2/2] cups: fix CVE-2023-4504
From: Lee Chee Yang
Signed-off-by: Lee Chee Yang
---
meta/recipes-extended/cups/cups.inc | 1 +
.../cups/cups/CVE-2023-4504.patch | 42 +++
2 files changed, 43 insertions(+)
create mode 100644 meta/recipes-extended/cups/cups/CVE-2023-4504.patch
diff --git a/meta/recipes-extended/cups/cups.inc
b/meta/recipes-extended/cups/cups.inc
index c6a676b747..d09ceb203f 100644
--- a/meta/recipes-extended/cups/cups.inc
+++ b/meta/recipes-extended/cups/cups.inc
@@ -17,6 +17,7 @@ SRC_URI =
"${GITHUB_BASE_URI}/download/v${PV}/cups-${PV}-source.tar.gz \
file://cups-volatiles.conf \
file://CVE-2023-32324.patch \
file://CVE-2023-34241.patch \
+ file://CVE-2023-4504.patch \
"
GITHUB_BASE_URI = "https://github.com/OpenPrinting/cups/releases";
diff --git a/meta/recipes-extended/cups/cups/CVE-2023-4504.patch
b/meta/recipes-extended/cups/cups/CVE-2023-4504.patch
new file mode 100644
index 00..e52e43a209
--- /dev/null
+++ b/meta/recipes-extended/cups/cups/CVE-2023-4504.patch
@@ -0,0 +1,42 @@
+CVE: CVE-2023-4504
+Upstream-Status: Backport
[https://github.com/OpenPrinting/cups/commit/2431caddb7e6a87f04ac90b5c6366ad268b6ff31
]
+Signed-off-by: Lee Chee Yang
+
+From 2431caddb7e6a87f04ac90b5c6366ad268b6ff31 Mon Sep 17 00:00:00 2001
+From: Zdenek Dohnal
+Date: Wed, 20 Sep 2023 14:45:17 +0200
+Subject: [PATCH] raster-interpret.c: Fix CVE-2023-4504
+
+We didn't check for end of buffer if it looks there is an escaped
+character - check for NULL terminator there and if found, return NULL
+as return value and in `ptr`, because a lone backslash is not
+a valid PostScript character.
+---
+ cups/raster-interpret.c | 14 +-
+ 1 files changed, 13 insertions(+), 1 deletion(-)
+
+diff --git a/cups/raster-interpret.c b/cups/raster-interpret.c
+index 6fcf731b5..b8655c8c6 100644
+--- a/cups/raster-interpret.c
b/cups/raster-interpret.c
+@@ -1116,7 +1116,19 @@ scan_ps(_cups_ps_stack_t *st, /* I - Stack */
+
+ cur ++;
+
+-if (*cur == 'b')
++ /*
++ * Return NULL if we reached NULL terminator, a lone backslash
++ * is not a valid character in PostScript.
++ */
++
++ if (!*cur)
++ {
++*ptr = NULL;
++
++return (NULL);
++ }
++
++ if (*cur == 'b')
+ *valptr++ = '\b';
+ else if (*cur == 'f')
+ *valptr++ = '\f';
--
2.37.3
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189060):
https://lists.openembedded.org/g/openembedded-core/message/189060
Mute This Topic: https://lists.openembedded.org/mt/101937564/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core] [PATCH] reproducible: Exclude rust for now again
Unfortunately there is still an issue with rustdoc not being reproducible so part of the problem has been fixed but not everything. Add the exclusion back until this has been addressed to avoid autobuilder failures and long diffoscope analysis time. Signed-off-by: Richard Purdie --- meta/lib/oeqa/selftest/cases/reproducible.py | 2 ++ 1 file changed, 2 insertions(+) diff --git a/meta/lib/oeqa/selftest/cases/reproducible.py b/meta/lib/oeqa/selftest/cases/reproducible.py index 9b4a0887dd9..84c6c3a05ff 100644 --- a/meta/lib/oeqa/selftest/cases/reproducible.py +++ b/meta/lib/oeqa/selftest/cases/reproducible.py @@ -16,6 +16,8 @@ import os import datetime exclude_packages = [ + 'rust', + 'rust-dbg' ] def is_excluded(package): -- 2.39.2 -=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#189059): https://lists.openembedded.org/g/openembedded-core/message/189059 Mute This Topic: https://lists.openembedded.org/mt/101937489/21656 Group Owner: openembedded-core+ow...@lists.openembedded.org Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [arch...@mail-archive.com] -=-=-=-=-=-=-=-=-=-=-=-
[OE-core] [meta-oe][PATCH] base-files: profile: allow profile.d to set EDITOR
>From 0013c8a6482018d5476e4eb2f4d537c96551e0c6 Mon Sep 17 00:00:00 2001
From: Johannes Schneider
Date: Fri, 13 Oct 2023 08:28:38 +0200
Subject: [PATCH v1] base-files: profile: allow profile.d to set EDITOR
With a profile.d configuration in place that sets the EDITOR variable,
the automatic terminal 'resize' logic would not trigger. Which then
would possibly lead to a 80x24 fallback on the debug serial console.
This can simply be avoided by setting a flag variable when the shell
is first opened, then processing all profile.d includes, trigger the
'resize' depending on the flag and shell-level and finally only set
EDITOR to some default if it is still unset.
Signed-off-by: Johannes Schneider
---
meta/recipes-core/base-files/base-files/profile | 16
1 file changed, 12 insertions(+), 4 deletions(-)
diff --git a/meta/recipes-core/base-files/base-files/profile
b/meta/recipes-core/base-files/base-files/profile
index cc37e1ba77..bded3757cc 100644
--- a/meta/recipes-core/base-files/base-files/profile
+++ b/meta/recipes-core/base-files/base-files/profile
@@ -10,6 +10,12 @@ PATH="/usr/local/bin:/usr/bin:/bin"
# Set the prompt for bash and ash (no other shells known to be in use here)
[ -z "$PS1" ] || PS1='\u@\h:\w\$ '
+# Use the EDITOR not being set as a trigger to call resize later on
+FIRSTTIMESETUP=0
+if [ -z "$EDITOR" ] ; then
+ FIRSTTIMESETUP=1
+fi
+
if [ -d /etc/profile.d ]; then
for i in /etc/profile.d/*.sh; do
if [ -f $i -a -r $i ]; then
@@ -50,17 +56,19 @@ resize() {
}
fi
fi
- # Use the EDITOR not being set as a trigger to call resize
- # and only do this for /dev/tty[A-z] which are typically
+ # only do this for /dev/tty[A-z] which are typically
# serial ports
- if [ -z "$EDITOR" -a "$SHLVL" = 1 ] ; then
+ if [ $FIRSTTIMESETUP -eq 1 -a $SHLVL -eq 1 ] ; then
case $(tty 2>/dev/null) in
/dev/tty[A-z]*) resize >/dev/null;;
esac
fi
fi
-EDITOR="vi"# needed for packages like cron, git-commit
+if [ -z "$EDITOR" ]; then
+ EDITOR="vi" # needed for packages like cron,
git-commit
+fi
+
export PATH PS1 OPIEDIR QPEDIR QTDIR EDITOR TERM
umask 022
--
2.34.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189058):
https://lists.openembedded.org/g/openembedded-core/message/189058
Mute This Topic: https://lists.openembedded.org/mt/101937238/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
Re: [OE-core] [PATCH v3] libtirpc: Support ipv6 in DISTRO_FEATURES
On 12 October 2023 21:13, Dan McGregor wrote:
> On Thu, 12 Oct 2023 at 11:10, Jörg Sommer via lists.openembedded.org
> wrote:
> >
> > This is only a minor change, because oelint-adv had warned about the space
> > after " of PACKAGECONFIG.
> >
> >
> > From: openembedded-core@lists.openembedded.org
> > on behalf of Jörg Sommer via
> > lists.openembedded.org
> > Sent: Thursday, 12 October 2023 18:34
> > To: openembedded-core@lists.openembedded.org
> >
> > Cc: Jörg Sommer
> > Subject: [OE-core] [PATCH v3] libtirpc: Support ipv6 in DISTRO_FEATURES
> >
> > If the ipv6 feature for the distribution is not set, the package should not
> > contain settings for ipv6. This makes rpcbind doesn't try to bind to a IPv6
> > socket, and complain that this fails.
> > +PACKAGECONFIG ??= "\
> > + ${@bb.utils.filter('DISTRO_FEATURES', 'ipv6', d)} \
> > +"
> > +PACKAGECONFIG[ipv6] = "--enable-ipv6,--disable-ipv6"
>
> Looks like this will conflict with recent changes I made to master, so
> hopefully those can be resolved automatically.
I'm happy to provide a new version that applies on master, if it's needed. Let
me know if I should create it.
--
Navimatix GmbH
Tatzendpromenade 2
07745 Jena
Geschäftsführer: Steffen Späthe, Jan Rommeley
Registergericht: Amtsgericht Jena, HRB 501480
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189057):
https://lists.openembedded.org/g/openembedded-core/message/189057
Mute This Topic: https://lists.openembedded.org/mt/101921995/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[oe-core][kirkstone][PATCH 2/2] curl: fix CVE-2023-38546
From: Archana Polampalli
A flaw was found in the Curl package. This flaw allows an attacker to insert
cookies into a running program using libcurl if the specific series of
conditions are met.
Signed-off-by: Archana Polampalli
---
.../curl/curl/CVE-2023-38546.patch| 137 ++
meta/recipes-support/curl/curl_7.82.0.bb | 1 +
2 files changed, 138 insertions(+)
create mode 100644 meta/recipes-support/curl/curl/CVE-2023-38546.patch
diff --git a/meta/recipes-support/curl/curl/CVE-2023-38546.patch
b/meta/recipes-support/curl/curl/CVE-2023-38546.patch
new file mode 100644
index 00..1b2f1e7a7d
--- /dev/null
+++ b/meta/recipes-support/curl/curl/CVE-2023-38546.patch
@@ -0,0 +1,137 @@
+From 61275672b46d9abb3285740467b882e22ed75da8 Mon Sep 17 00:00:00 2001
+From: Daniel Stenberg
+Date: Thu, 14 Sep 2023 23:28:32 +0200
+Subject: [PATCH] cookie: remove unnecessary struct fields
+
+Plus: reduce the hash table size from 256 to 63. It seems unlikely to
+make much of a speed difference for most use cases but saves 1.5KB of
+data per instance.
+
+Closes #11862
+
+Upstream-Status: Backport
[https://github.com/curl/curl/commit/61275672b46d9abb32857404]
+
+CVE: CVE-2023-38546
+
+Signed-off-by: Archana Polampalli
+---
+ lib/cookie.c | 13 +
+ lib/cookie.h | 13 -
+ lib/easy.c | 4 +---
+ 3 files changed, 6 insertions(+), 24 deletions(-)
+
+diff --git a/lib/cookie.c b/lib/cookie.c
+index e0470a1..38d8d6c 100644
+--- a/lib/cookie.c
b/lib/cookie.c
+@@ -115,7 +115,6 @@ static void freecookie(struct Cookie *co)
+ free(co->name);
+ free(co->value);
+ free(co->maxage);
+- free(co->version);
+ free(co);
+ }
+
+@@ -707,11 +706,7 @@ Curl_cookie_add(struct Curl_easy *data,
+ }
+ }
+ else if(strcasecompare("version", name)) {
+- strstore(&co->version, whatptr);
+- if(!co->version) {
+-badcookie = TRUE;
+-break;
+- }
++ /* just ignore */
+ }
+ else if(strcasecompare("max-age", name)) {
+ /*
+@@ -1132,7 +1127,6 @@ Curl_cookie_add(struct Curl_easy *data,
+ free(clist->path);
+ free(clist->spath);
+ free(clist->expirestr);
+-free(clist->version);
+ free(clist->maxage);
+
+ *clist = *co; /* then store all the new data */
+@@ -1210,9 +1204,6 @@ struct CookieInfo *Curl_cookie_init(struct Curl_easy
*data,
+ c = calloc(1, sizeof(struct CookieInfo));
+ if(!c)
+ return NULL; /* failed to get memory */
+-c->filename = strdup(file?file:"none"); /* copy the name just in case */
+-if(!c->filename)
+- goto fail; /* failed to get memory */
+ /*
+ * Initialize the next_expiration time to signal that we don't have enough
+ * information yet.
+@@ -1363,7 +1354,6 @@ static struct Cookie *dup_cookie(struct Cookie *src)
+ CLONE(name);
+ CLONE(value);
+ CLONE(maxage);
+-CLONE(version);
+ d->expires = src->expires;
+ d->tailmatch = src->tailmatch;
+ d->secure = src->secure;
+@@ -1579,7 +1569,6 @@ void Curl_cookie_cleanup(struct CookieInfo *c)
+ {
+ if(c) {
+ unsigned int i;
+-free(c->filename);
+ for(i = 0; i < COOKIE_HASH_SIZE; i++)
+ Curl_cookie_freelist(c->cookies[i]);
+ free(c); /* free the base struct as well */
+diff --git a/lib/cookie.h b/lib/cookie.h
+index 7411980..645600a 100644
+--- a/lib/cookie.h
b/lib/cookie.h
+@@ -34,11 +34,7 @@ struct Cookie {
+ char *domain; /* domain = */
+ curl_off_t expires; /* expires = */
+ char *expirestr; /* the plain text version */
+-
+- /* RFC 2109 keywords. Version=1 means 2109-compliant cookie sending */
+- char *version; /* Version = */
+ char *maxage; /* Max-Age = */
+-
+ bool tailmatch;/* whether we do tail-matching of the domain name */
+ bool secure; /* whether the 'secure' keyword was used */
+ bool livecookie; /* updated from a server, not a stored file */
+@@ -54,18 +50,17 @@ struct Cookie {
+ #define COOKIE_PREFIX__SECURE (1<<0)
+ #define COOKIE_PREFIX__HOST (1<<1)
+
+-#define COOKIE_HASH_SIZE 256
++#define COOKIE_HASH_SIZE 63
+
+ struct CookieInfo {
+ /* linked list of cookies we know of */
+ struct Cookie *cookies[COOKIE_HASH_SIZE];
+
+- char *filename; /* file we read from/write to */
+- long numcookies; /* number of cookies in the "jar" */
++ curl_off_t next_expiration; /* the next time at which expiration happens */
++ int numcookies; /* number of cookies in the "jar" */
++ int lastct; /* last creation-time used in the jar */
+ bool running;/* state info, for cookie adding information */
+ bool newsession; /* new session, discard session cookies on load */
+- int lastct; /* last creation-time used in the jar */
+- curl_off_t next_expiration; /* the next time at which expiration happens */
+ };
+
+ /* This is the maximum line length we accept for a cookie line. RFC 2109
+diff --git a/lib
[oe-core][kirkstone][PATCH 1/2] curl: fix CVE-2023-38545
From: Archana Polampalli
This flaw makes curl overflow a heap based buffer in the SOCKS5 proxy handshake.
Signed-off-by: Archana Polampalli
---
.../curl/curl/CVE-2023-38545.patch| 133 ++
meta/recipes-support/curl/curl_7.82.0.bb | 1 +
2 files changed, 134 insertions(+)
create mode 100644 meta/recipes-support/curl/curl/CVE-2023-38545.patch
diff --git a/meta/recipes-support/curl/curl/CVE-2023-38545.patch
b/meta/recipes-support/curl/curl/CVE-2023-38545.patch
new file mode 100644
index 00..c198d29c04
--- /dev/null
+++ b/meta/recipes-support/curl/curl/CVE-2023-38545.patch
@@ -0,0 +1,133 @@
+From fb4415d8aee6c1045be932a34fe6107c2f5ed147 Mon Sep 17 00:00:00 2001
+From: Jay Satiro
+Date: Wed, 11 Oct 2023 07:34:19 +0200
+Subject: [PATCH] socks: return error if hostname too long for remote resolve
+
+Prior to this change the state machine attempted to change the remote
+resolve to a local resolve if the hostname was longer than 255
+characters. Unfortunately that did not work as intended and caused a
+security issue.
+
+Upstream-Status: Backport
[https://github.com/curl/curl/commit/fb4415d8aee6c1045be932a34fe6107c2f5ed147]
+
+CVE: CVE-2023-38545
+
+Signed-off-by: Archana Polampalli
+---
+ lib/socks.c | 8 +++---
+ tests/data/Makefile.inc | 2 +-
+ tests/data/test722 | 64 +
+ 3 files changed, 69 insertions(+), 5 deletions(-)
+ create mode 100644 tests/data/test722
+
+diff --git a/lib/socks.c b/lib/socks.c
+index a014aa6..2215c02 100644
+--- a/lib/socks.c
b/lib/socks.c
+@@ -536,9 +536,9 @@ CURLproxycode Curl_SOCKS5(const char *proxy_user,
+
+ /* RFC1928 chapter 5 specifies max 255 chars for domain name in packet */
+ if(!socks5_resolve_local && hostname_len > 255) {
+- infof(data, "SOCKS5: server resolving disabled for hostnames of "
+-"length > 255 [actual len=%zu]", hostname_len);
+- socks5_resolve_local = TRUE;
++ failf(data, "SOCKS5: the destination hostname is too long to be "
++"resolved remotely by the proxy.");
++ return CURLPX_LONG_HOSTNAME;
+ }
+
+ if(auth & ~(CURLAUTH_BASIC | CURLAUTH_GSSAPI))
+@@ -879,7 +879,7 @@ CURLproxycode Curl_SOCKS5(const char *proxy_user,
+ }
+ else {
+ socksreq[len++] = 3;
+-socksreq[len++] = (char) hostname_len; /* one byte address length */
++ socksreq[len++] = (unsigned char) hostname_len; /* one byte length */
+ memcpy(&socksreq[len], hostname, hostname_len); /* address w/o NULL */
+ len += hostname_len;
+ }
+diff --git a/tests/data/Makefile.inc b/tests/data/Makefile.inc
+index 3064b39..47117b6 100644
+--- a/tests/data/Makefile.inc
b/tests/data/Makefile.inc
+@@ -99,7 +99,7 @@ test670 test671 test672 test673 test674 test675 test676
test677 test678 \
+ \
+ test700 test701 test702 test703 test704 test705 test706 test707 test708 \
+ test709 test710 test711 test712 test713 test714 test715 test716 test717 \
+-test718 test719 test720 test721 \
++test718 test719 test720 test721 test722 \
+ \
+ test800 test801 test802 test803 test804 test805 test806 test807 test808 \
+ test809 test810 test811 test812 test813 test814 test815 test816 test817 \
+diff --git a/tests/data/test722 b/tests/data/test722
+new file mode 100644
+index 000..05bcf28
+--- /dev/null
b/tests/data/test722
+@@ -0,0 +1,64 @@
++
++
++
++HTTP
++HTTP GET
++SOCKS5
++SOCKS5h
++followlocation
++
++
++
++#
++# Server-side
++
++# The hostname in this redirect is 256 characters and too long (> 255) for
++# SOCKS5 remote resolve. curl must return error CURLE_PROXY in this case.
++
++HTTP/1.1 301 Moved Permanently
++Location:
http:///
++Content-Length: 0
++Connection: close
++
++
++
++
++#
++# Client-side
++
++
++proxy
++
++
++http
++socks5
++
++
++SOCKS5h with HTTP redirect to hostname too long
++
++
++--no-progress-meter --location --proxy socks5h://%HOSTIP:%SOCKSPORT
http://%HOSTIP:%HTTPPORT/%TESTNUMBER
++
++
++
++#
++# Verify data after the test has been "shot"
++
++
++GET /%TESTNUMBER HTTP/1.1
++Host: %HOSTIP:%HTTPPORT
++User-Agent: curl/%VERSION
++Accept: */*
++
++
++
++97
++
++# the error message is verified because error code CURLE_PROXY (97) may be
++# returned for any number of reasons and we need to make sure it is
++# specifically for the reason below so that we know the check is working.
++
++curl: (97) SOCKS5: the destination hostname is too long to be resolved
remotely by the proxy.
++
++
++
+--
+2.40.0
diff --git a/meta/recipes-support/curl/curl_7.82.0.bb
b/meta/recipes-support/curl/curl_7.82.0.bb
index af52ecad13..86a3a84332 100644
--- a/meta/recipes-support/curl/curl_7.82.0.bb
+++ b/meta/recipes-support/curl/curl_7.
[OE-core] [PATCH] python3-ruamel-yaml: upgrade 0.17.32 -> 0.17.35
From: Wang Mingyu
Changelog:
==
- support for loading dataclasses with 'InitVar' variables (some
special coding was necessary to get the, unexecpected, default
value in the corresponding instance attribute
in [this question](https://stackoverflow.com/q/77228378/1307905))
- Python 3.12 also loads C version when using 'typ='safe''
- added 'flow_seq_start', 'flow_seq_end',
'flow_seq_separator', 'flow_map_start',
'flow_map_end', 'flow_map_separator'
**class** attributes to the 'Emitter' class so flow
style output can more easily be influenced
Signed-off-by: Wang Mingyu
---
...n3-ruamel-yaml_0.17.32.bb => python3-ruamel-yaml_0.17.35.bb} | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
rename meta/recipes-devtools/python/{python3-ruamel-yaml_0.17.32.bb =>
python3-ruamel-yaml_0.17.35.bb} (85%)
diff --git a/meta/recipes-devtools/python/python3-ruamel-yaml_0.17.32.bb
b/meta/recipes-devtools/python/python3-ruamel-yaml_0.17.35.bb
similarity index 85%
rename from meta/recipes-devtools/python/python3-ruamel-yaml_0.17.32.bb
rename to meta/recipes-devtools/python/python3-ruamel-yaml_0.17.35.bb
index 4b5e77e6e3..1760fec7ee 100644
--- a/meta/recipes-devtools/python/python3-ruamel-yaml_0.17.32.bb
+++ b/meta/recipes-devtools/python/python3-ruamel-yaml_0.17.35.bb
@@ -8,7 +8,7 @@ PYPI_PACKAGE = "ruamel.yaml"
inherit pypi setuptools3
-SRC_URI[sha256sum] =
"ec939063761914e14542972a5cba6d33c23b0859ab6342f61cf070cfc600efc2"
+SRC_URI[sha256sum] =
"801046a9caacb1b43acc118969b49b96b65e8847f29029563b29ac61d02db61b"
RDEPENDS:${PN} += "\
${PYTHON_PN}-shell \
--
2.34.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189054):
https://lists.openembedded.org/g/openembedded-core/message/189054
Mute This Topic: https://lists.openembedded.org/mt/101936533/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core] [PATCH] python3-pycairo: upgrade 1.24.0 -> 1.25.0
From: Wang Mingyu
Changelog:
==
Update to cairo 1.18.0 for the Windows wheel
Provide a Windows arm64 wheel
Signed-off-by: Wang Mingyu
---
.../{python3-pycairo_1.24.0.bb => python3-pycairo_1.25.0.bb}| 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
rename meta/recipes-devtools/python/{python3-pycairo_1.24.0.bb =>
python3-pycairo_1.25.0.bb} (90%)
diff --git a/meta/recipes-devtools/python/python3-pycairo_1.24.0.bb
b/meta/recipes-devtools/python/python3-pycairo_1.25.0.bb
similarity index 90%
rename from meta/recipes-devtools/python/python3-pycairo_1.24.0.bb
rename to meta/recipes-devtools/python/python3-pycairo_1.25.0.bb
index 8059750de0..a9e89b0f7a 100644
--- a/meta/recipes-devtools/python/python3-pycairo_1.24.0.bb
+++ b/meta/recipes-devtools/python/python3-pycairo_1.25.0.bb
@@ -13,7 +13,7 @@ DEPENDS = "cairo python3"
SRC_URI = "${GITHUB_BASE_URI}/download/v${PV}/pycairo-${PV}.tar.gz"
GITHUB_BASE_URI = "https://github.com/pygobject/pycairo/releases/";
-SRC_URI[sha256sum] =
"1444d52f1bb4cc79a4a0c0fe2ccec4bd78ff885ab01ebe1c0f637d8392bcafb6"
+SRC_URI[sha256sum] =
"37842b9bfa6339c45a5025f752e1d78d5840b1a0f82303bdd5610846ad8b5c4f"
S = "${WORKDIR}/pycairo-${PV}"
--
2.34.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189053):
https://lists.openembedded.org/g/openembedded-core/message/189053
Mute This Topic: https://lists.openembedded.org/mt/101936521/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core] [PATCH] python3-packaging: upgrade 23.1 -> 23.2
From: Wang Mingyu
Changelog:
==
-Document calendar-based versioning scheme
-Enforce that the entire marker string is parsed
-Requirement parsing no longer automatically validates the URL
-Canonicalize names for requirements comparison
-Introduce metadata.Metadata
-Introduce the validate keyword parameter to utils.validate_name()
-Introduce utils.is_normalized_name()
-Make utils.parse_sdist_filename() and utils.parse_wheel_filename() raise
InvalidSdistFilename and InvalidWheelFilename, respectively, when the
version component of the name is invalid
Signed-off-by: Wang Mingyu
---
.../{python3-packaging_23.1.bb => python3-packaging_23.2.bb}| 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
rename meta/recipes-devtools/python/{python3-packaging_23.1.bb =>
python3-packaging_23.2.bb} (83%)
diff --git a/meta/recipes-devtools/python/python3-packaging_23.1.bb
b/meta/recipes-devtools/python/python3-packaging_23.2.bb
similarity index 83%
rename from meta/recipes-devtools/python/python3-packaging_23.1.bb
rename to meta/recipes-devtools/python/python3-packaging_23.2.bb
index 53d3522dd7..2d35936615 100644
--- a/meta/recipes-devtools/python/python3-packaging_23.1.bb
+++ b/meta/recipes-devtools/python/python3-packaging_23.2.bb
@@ -3,7 +3,7 @@ HOMEPAGE = "https://github.com/pypa/packaging";
LICENSE = "Apache-2.0 | BSD-2-Clause"
LIC_FILES_CHKSUM = "file://LICENSE;md5=faadaedca9251a90b205c9167578ce91"
-SRC_URI[sha256sum] =
"a392980d2b6cffa644431898be54b0045151319d1e7ec34f0cfed48767dd334f"
+SRC_URI[sha256sum] =
"048fb0e9405036518eaaf48a55953c750c11e1a1b68e0dd1a9d62ed0c092cfc5"
inherit pypi python_flit_core
--
2.34.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189052):
https://lists.openembedded.org/g/openembedded-core/message/189052
Mute This Topic: https://lists.openembedded.org/mt/101936516/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core] [PATCH] python3-markdown: upgrade 3.4.4 -> 3.5
From: Wang Mingyu
Changelog:
===
Add permalink_leading configuration option to the toc extension (#1339)
Add support for cPython version 3.12 (and PyPy 3.10) and drop support for
Python version 3.7 (#1357).
Refactor changelog to use the format defined at https://keepachangelog.com/.
Update the list of empty HTML tags (#1353).
Add customizable TOC title class to TOC extension (#1293).
Add API documentation of the code base which is generated by mkdocstrings
(#1220).
Fix a corner case in admonitions where if an indented code block was provided
as the first block, the output would be malformed (#1329).
Signed-off-by: Wang Mingyu
---
.../{python3-markdown_3.4.4.bb => python3-markdown_3.5.bb} | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
rename meta/recipes-devtools/python/{python3-markdown_3.4.4.bb =>
python3-markdown_3.5.bb} (81%)
diff --git a/meta/recipes-devtools/python/python3-markdown_3.4.4.bb
b/meta/recipes-devtools/python/python3-markdown_3.5.bb
similarity index 81%
rename from meta/recipes-devtools/python/python3-markdown_3.4.4.bb
rename to meta/recipes-devtools/python/python3-markdown_3.5.bb
index 6a7e6f7c3e..1ad3f7828d 100644
--- a/meta/recipes-devtools/python/python3-markdown_3.4.4.bb
+++ b/meta/recipes-devtools/python/python3-markdown_3.5.bb
@@ -6,7 +6,7 @@ LIC_FILES_CHKSUM =
"file://LICENSE.md;md5=745aaad0c69c60039e638bff9ffc59ed"
inherit pypi python_setuptools_build_meta
PYPI_PACKAGE = "Markdown"
-SRC_URI[sha256sum] =
"225c6123522495d4119a90b3a3ba31a1e87a70369e03f14799ea9c0d7183a3d6"
+SRC_URI[sha256sum] =
"a807eb2e4778d9156c8f07876c6e4d50b5494c5665c4834f67b06459dfd877b3"
BBCLASSEXTEND = "native nativesdk"
--
2.34.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189051):
https://lists.openembedded.org/g/openembedded-core/message/189051
Mute This Topic: https://lists.openembedded.org/mt/101936501/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core] [PATCH] python3-iso8601: upgrade 2.0.0 -> 2.1.0
From: Wang Mingyu
Changelog:
Fixed
--
Use ruff for linting
Fixed CHANGELOG version links
Added
--
Add readthedocs configuration
Signed-off-by: Wang Mingyu
---
.../{python3-iso8601_2.0.0.bb => python3-iso8601_2.1.0.bb} | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
rename meta/recipes-devtools/python/{python3-iso8601_2.0.0.bb =>
python3-iso8601_2.1.0.bb} (79%)
diff --git a/meta/recipes-devtools/python/python3-iso8601_2.0.0.bb
b/meta/recipes-devtools/python/python3-iso8601_2.1.0.bb
similarity index 79%
rename from meta/recipes-devtools/python/python3-iso8601_2.0.0.bb
rename to meta/recipes-devtools/python/python3-iso8601_2.1.0.bb
index a8dccb90c7..40ca5177be 100644
--- a/meta/recipes-devtools/python/python3-iso8601_2.0.0.bb
+++ b/meta/recipes-devtools/python/python3-iso8601_2.1.0.bb
@@ -3,7 +3,7 @@ HOMEPAGE = "http://pyiso8601.readthedocs.org/";
LICENSE = "MIT"
LIC_FILES_CHKSUM = "file://LICENSE;md5=aab31f2ef7ba214a5a341eaa47a7f367"
-SRC_URI[sha256sum] =
"739960d37c74c77bd9bd546a76562ccb581fe3d4820ff5c3141eb49c839fda8f"
+SRC_URI[sha256sum] =
"6b1d3829ee8921c4301998c909f7829fa9ed3cbdac0d3b16af2d743aed1ba8df"
inherit pypi python_poetry_core
--
2.34.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189050):
https://lists.openembedded.org/g/openembedded-core/message/189050
Mute This Topic: https://lists.openembedded.org/mt/101936487/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core] [PATCH] python3-hypothesis: upgrade 6.86.2 -> 6.87.4
From: Wang Mingyu
Changelog:
-When randoms() was called with use_true_randoms=False, calling sample on it
with an empty sequence and 0 elements would result in an error, when it
should have returned an empty sequence to agree with the normal behaviour of
random.Random. This fixes that discrepancy.
-This patch ensures that the hypothesis codemod CLI will print a warning
instead of stopping with an internal error if one of your files contains
invalid syntax (issue #3759).
-This patch makes some small changes to our NumPy integration to ensure forward
compatibility. Thanks to Mateusz Sokół for pull request #3761.
-Fixes issue #3755, where an internal condition turns out to be reachable after
all.
-This release deprecates use of assume() and reject() outside of property-based
tests, because these functions work by raising a special exceptioni.
It also fixes some type annotations (issue #3753).
Signed-off-by: Wang Mingyu
---
...ython3-hypothesis_6.86.2.bb => python3-hypothesis_6.87.4.bb} | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
rename meta/recipes-devtools/python/{python3-hypothesis_6.86.2.bb =>
python3-hypothesis_6.87.4.bb} (91%)
diff --git a/meta/recipes-devtools/python/python3-hypothesis_6.86.2.bb
b/meta/recipes-devtools/python/python3-hypothesis_6.87.4.bb
similarity index 91%
rename from meta/recipes-devtools/python/python3-hypothesis_6.86.2.bb
rename to meta/recipes-devtools/python/python3-hypothesis_6.87.4.bb
index 6ec1457e46..4f41e2ab1a 100644
--- a/meta/recipes-devtools/python/python3-hypothesis_6.86.2.bb
+++ b/meta/recipes-devtools/python/python3-hypothesis_6.87.4.bb
@@ -13,7 +13,7 @@ SRC_URI += " \
file://test_rle.py \
"
-SRC_URI[sha256sum] =
"e5d75d70f5a4fc372cddf03ec6141237a0a270ed106aeb2156a4984f06d37b0f"
+SRC_URI[sha256sum] =
"c508779be66e266c45dbf9c1b2713e560dfd89abb044d92eafe91e8b2728af01"
RDEPENDS:${PN} += " \
python3-attrs \
--
2.34.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189049):
https://lists.openembedded.org/g/openembedded-core/message/189049
Mute This Topic: https://lists.openembedded.org/mt/101936474/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core] [PATCH] python3-cffi: upgrade 1.15.1 -> 1.16.0
From: Wang Mingyu
Changelog:
===
-Add support for Python 3.12.
-Drop support for end-of-life Python versions (2.7, 3.6, 3.7).
-Add support for PEP517 builds; setuptools is now a required build dependency.
-Declare python_requires metadata for Python 3.8+. This allows unsupported
Pythons
to continue using previously released sdists and wheels.
-Move project source under src/; a more standard layout that also enables CI to
more easily
catch packaging errors.
Signed-off-by: Wang Mingyu
---
.../python/{python3-cffi_1.15.1.bb => python3-cffi_1.16.0.bb} | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
rename meta/recipes-devtools/python/{python3-cffi_1.15.1.bb =>
python3-cffi_1.16.0.bb} (83%)
diff --git a/meta/recipes-devtools/python/python3-cffi_1.15.1.bb
b/meta/recipes-devtools/python/python3-cffi_1.16.0.bb
similarity index 83%
rename from meta/recipes-devtools/python/python3-cffi_1.15.1.bb
rename to meta/recipes-devtools/python/python3-cffi_1.16.0.bb
index daa290a54e..a351029ef2 100644
--- a/meta/recipes-devtools/python/python3-cffi_1.15.1.bb
+++ b/meta/recipes-devtools/python/python3-cffi_1.16.0.bb
@@ -4,7 +4,7 @@ LICENSE = "MIT"
LIC_FILES_CHKSUM = "file://LICENSE;md5=5677e2fdbf7cdda61d6dd2b57df547bf"
DEPENDS += "libffi ${PYTHON_PN}-pycparser"
-SRC_URI[sha256sum] =
"d400bfb9a37b1351253cb402671cea7e89bdecc294e8016a707f6d1d8ac934f9"
+SRC_URI[sha256sum] =
"bcb3ef43e58665bbda2fb198698fcae6776483e0c4a631aa5647806c25e02cc0"
inherit pypi setuptools3
--
2.34.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189048):
https://lists.openembedded.org/g/openembedded-core/message/189048
Mute This Topic: https://lists.openembedded.org/mt/101936465/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core] [PATCH] python3-beartype: upgrade 0.15.0 -> 0.16.2
From: Wang Mingyu
Signed-off-by: Wang Mingyu
---
.../{python3-beartype_0.15.0.bb => python3-beartype_0.16.2.bb} | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
rename meta/recipes-devtools/python/{python3-beartype_0.15.0.bb =>
python3-beartype_0.16.2.bb} (75%)
diff --git a/meta/recipes-devtools/python/python3-beartype_0.15.0.bb
b/meta/recipes-devtools/python/python3-beartype_0.16.2.bb
similarity index 75%
rename from meta/recipes-devtools/python/python3-beartype_0.15.0.bb
rename to meta/recipes-devtools/python/python3-beartype_0.16.2.bb
index 14eda1dd7d..20a5b92c61 100644
--- a/meta/recipes-devtools/python/python3-beartype_0.15.0.bb
+++ b/meta/recipes-devtools/python/python3-beartype_0.16.2.bb
@@ -4,7 +4,7 @@ HOMEPAGE = "https://beartype.readthedocs.io";
LICENSE = "MIT"
LIC_FILES_CHKSUM = "file://LICENSE;md5=e40b52d8eb5553aa8f705cdd3f979d69"
-SRC_URI[sha256sum] =
"2af6a8d8a7267ccf7d271e1a3bd908afbc025d2a09aa51123567d7d7b37438df"
+SRC_URI[sha256sum] =
"47ec1c8c3be3f999f4f9f829e8913f65926aa7e85b180d9ffd305dc78d3e7d7b"
inherit setuptools3 pypi
--
2.34.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189047):
https://lists.openembedded.org/g/openembedded-core/message/189047
Mute This Topic: https://lists.openembedded.org/mt/101936462/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
Re: [OE-core] why does rust recipe file define "rust_do_install()"?
On Fri, Oct 13, 2023 at 9:21 AM Robert P. J. Day wrote:
>
>
> i'm perusing the rust_1.70.0.bb recipe file, and i'm puzzled by the
> fact that it defines its own do_install() to simply call
> rust_do_install(), which then implements variations of that function:
>
> https://git.openembedded.org/openembedded-core/tree/meta/recipes-devtools/rust/rust_1.70.0.bb#n244
>
> do_install () {
> rust_do_install
> }
>
> rust_do_install() {
> rust_runx install
> }
>
> rust_do_install:class-nativesdk() {
> export PSEUDO_UNLOAD=1
> rust_runx install
> rust_runx install clippy
> ... snip ...
>
> i'm familiar with bbclass files defining things like that; eg.,
> autotools.bbclass defining:
>
> autotools_do_install() {
> oe_runmake 'DESTDIR=${D}' install it if it exists.
> if [ -e "${D}${infodir}/dir" ]; then
> rm -f ${D}${infodir}/dir
> fi
> }
>
> but examples like that are generally then listed in EXPORT_FUNCTIONS
> so subsequent recipes can invoke them as part of *their* do_install(),
> like this snippet from the tar recipe:
>
> do_install () {
> autotools_do_install
> ln -s tar ${D}${bindir}/gtar
> }
>
> but i'm not sure why the rust recipe file is doing what it's doing.
> could it not have just defined variations of do_install() and gotten
> the same effect? or is there something more subtle happening here?
>
Inertia, I think. If you read back through the history in
oe-core/meta-rust the separation between pieces has changed over time
- probably when the .inc was merged into the .bb I should have
refactored it as you suggest, but when the cycle time is as slow as
the rust build, trying things for the sake of it isn't fun...
--
Alex Kiernan
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189046):
https://lists.openembedded.org/g/openembedded-core/message/189046
Mute This Topic: https://lists.openembedded.org/mt/101936139/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core] [PATCH] python3-babel: upgrade 2.12.1 -> 2.13.0
From: Wang Mingyu
Changelog:
===
Features
Add flag to ignore POT-Creation-Date for updates
Support 't' specifier in keywords
Add f-string parsing for Python 3.12 (PEP 701)
Fixes
---
Various typing-related fixes
babel.messages.catalog: deduplicate _to_fuzzy_match_key logic
Signed-off-by: Wang Mingyu
---
.../python/{python3-babel_2.12.1.bb => python3-babel_2.13.0.bb} | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
rename meta/recipes-devtools/python/{python3-babel_2.12.1.bb =>
python3-babel_2.13.0.bb} (86%)
diff --git a/meta/recipes-devtools/python/python3-babel_2.12.1.bb
b/meta/recipes-devtools/python/python3-babel_2.13.0.bb
similarity index 86%
rename from meta/recipes-devtools/python/python3-babel_2.12.1.bb
rename to meta/recipes-devtools/python/python3-babel_2.13.0.bb
index 794e1652cd..408f3344bb 100644
--- a/meta/recipes-devtools/python/python3-babel_2.12.1.bb
+++ b/meta/recipes-devtools/python/python3-babel_2.13.0.bb
@@ -3,7 +3,7 @@ HOMEPAGE = "http://babel.edgewall.org/";
LICENSE = "BSD-3-Clause"
LIC_FILES_CHKSUM = "file://LICENSE;md5=0f97d9a63e91407b4c0d01efde91cfc0"
-SRC_URI[sha256sum] =
"cc2d9cd01d44420ae725a21c9e3711b3aadc7976d6147f622d8581963455"
+SRC_URI[sha256sum] =
"04c3e2d28d2b7681644508f836be388ae49e0cfe91465095340395b60d00f210"
PYPI_PACKAGE = "Babel"
--
2.34.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189045):
https://lists.openembedded.org/g/openembedded-core/message/189045
Mute This Topic: https://lists.openembedded.org/mt/101936453/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core] [PATCH] openssh: upgrade 9.4p1 -> 9.5p1
From: Wang Mingyu
Changelog:
===
Potentially incompatible changes
* ssh-keygen(1): generate Ed25519 keys by default. Ed25519 public keys
are very convenient due to their small size. Ed25519 keys are
specified in RFC 8709 and OpenSSH has supported them since version 6.5
(January 2014).
* sshd(8): the Subsystem directive now accurately preserves quoting of
subsystem commands and arguments. This may change behaviour for exotic
configurations, but the most common subsystem configuration
(sftp-server) is unlikely to be affected.
New features
* ssh(1): add keystroke timing obfuscation to the client. This attempts
to hide inter-keystroke timings by sending interactive traffic at
fixed intervals (default: every 20ms) when there is only a small
amount of data being sent. It also sends fake "chaff" keystrokes for
a random interval after the last real keystroke. These are
controlled by a new ssh_config ObscureKeystrokeTiming keyword.
* ssh(1), sshd(8): Introduce a transport-level ping facility. This adds
a pair of SSH transport protocol messages SSH2_MSG_PING/PONG to
implement a ping capability. These messages use numbers in the "local
extensions" number space and are advertised using a "p...@openssh.com"
ext-info message with a string version number of "0".
* sshd(8): allow override of Subsystem directives in sshd Match blocks.
Bugfixes
* scp(1): fix scp in SFTP mode recursive upload and download of
directories that contain symlinks to other directories. In scp mode,
the links would be followed, but in SFTP mode they were not. bz3611
* ssh-keygen(1): handle cr+lf (instead of just cr) line endings in
sshsig signature files.
* ssh(1): interactive mode for ControlPersist sessions if they
originally requested a tty.
* sshd(8): make PerSourceMaxStartups first-match-wins
* sshd(8): limit artificial login delay to a reasonable maximum (5s)
and don't delay at all for the "none" authentication mechanism.cw
bz3602
* sshd(8): Log errors in kex_exchange_identification() with level
verbose instead of error to reduce preauth log spam. All of those
get logged with a more generic error message by sshpkt_fatal().
* sshd(8): correct math for ClientAliveInterval that caused the probes
to be sent less frequently than configured.
* ssh(1): fix regression in OpenSSH 9.4 (mux.c r1.99) that caused
multiplexed sessions to ignore SIGINT under some circumstances.
Portability
---
* Avoid clang zero-call-used-regs=all bug on Apple compilers, which
for some reason have version numbers that do not match the upstream
clang version numbers. bz#3584
* Fix configure test for zlib 1.3 and later/development versions. bz3604
Signed-off-by: Wang Mingyu
---
.../openssh/{openssh_9.4p1.bb => openssh_9.5p1.bb} | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
rename meta/recipes-connectivity/openssh/{openssh_9.4p1.bb =>
openssh_9.5p1.bb} (98%)
diff --git a/meta/recipes-connectivity/openssh/openssh_9.4p1.bb
b/meta/recipes-connectivity/openssh/openssh_9.5p1.bb
similarity index 98%
rename from meta/recipes-connectivity/openssh/openssh_9.4p1.bb
rename to meta/recipes-connectivity/openssh/openssh_9.5p1.bb
index e2508aa63a..67087c5157 100644
--- a/meta/recipes-connectivity/openssh/openssh_9.4p1.bb
+++ b/meta/recipes-connectivity/openssh/openssh_9.5p1.bb
@@ -26,7 +26,7 @@ SRC_URI =
"http://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-${PV}.tar
file://add-test-support-for-busybox.patch \
file://0001-regress-banner.sh-log-input-and-output-files-on-erro.patch \
"
-SRC_URI[sha256sum] =
"3608fd9088db2163ceb3e600c85ab79d0de3d221e59192ea1923e23263866a85"
+SRC_URI[sha256sum] =
"f026e7b79ba7fb540f75182af96dc8a8f1db395f922bbc9f6ca603672686086b"
CVE_STATUS[CVE-2007-2768] = "not-applicable-config: This CVE is specific to
OpenSSH with the pam opie which we don't build/use here."
--
2.34.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189044):
https://lists.openembedded.org/g/openembedded-core/message/189044
Mute This Topic: https://lists.openembedded.org/mt/101936445/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core] [PATCH] python3-git: upgrade 3.1.36 -> 3.1.37
From: Wang Mingyu
License-Update: remove excess whitespace
Changelog:
==
-Improve Python version and OS compatibility, fixing deprecations
-Better document env_case test/fixture and cwd
-Remove spurious executable permissions
-Fix up checks in Makefile and make them portable
-Fix URLs that were redirecting to another license
-Assorted small fixes/improvements to root dir docs
-Use venv instead of virtualenv in test_installation
-Omit py_modules in setup
-Don't track code coverage temporary files
-Configure tox
-Format tests with black and auto-exclude untracked paths
-Upgrade and broaden flake8, fixing style problems and bugs
-Fix rollback bug in SymbolicReference.set_reference
-Remove @NoEffect annotations
-Add more checks for the validity of refnames
Signed-off-by: Wang Mingyu
---
.../python/{python3-git_3.1.36.bb => python3-git_3.1.37.bb} | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
rename meta/recipes-devtools/python/{python3-git_3.1.36.bb =>
python3-git_3.1.37.bb} (86%)
diff --git a/meta/recipes-devtools/python/python3-git_3.1.36.bb
b/meta/recipes-devtools/python/python3-git_3.1.37.bb
similarity index 86%
rename from meta/recipes-devtools/python/python3-git_3.1.36.bb
rename to meta/recipes-devtools/python/python3-git_3.1.37.bb
index ab1b0f2353..56a335a79e 100644
--- a/meta/recipes-devtools/python/python3-git_3.1.36.bb
+++ b/meta/recipes-devtools/python/python3-git_3.1.37.bb
@@ -6,13 +6,13 @@ access with big-files support."
HOMEPAGE = "http://github.com/gitpython-developers/GitPython";
SECTION = "devel/python"
LICENSE = "BSD-3-Clause"
-LIC_FILES_CHKSUM = "file://LICENSE;md5=8b8d26c37c1d5a04f9b0186edbebc183"
+LIC_FILES_CHKSUM = "file://LICENSE;md5=5279a7ab369ba336989dcf2a107e5c8e"
PYPI_PACKAGE = "GitPython"
inherit pypi python_setuptools_build_meta
-SRC_URI[sha256sum] =
"4bb0c2a6995e85064140d31a33289aa5dce80133a23d36fcd372d716c54d3ebf"
+SRC_URI[sha256sum] =
"f9b9ddc0761c125d5780eab2d64be4873fc6817c2899cbcb34b02344bdc7bc54"
DEPENDS += " ${PYTHON_PN}-gitdb"
--
2.34.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189043):
https://lists.openembedded.org/g/openembedded-core/message/189043
Mute This Topic: https://lists.openembedded.org/mt/101936436/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core] [PATCH] libva: upgrade 2.19.0 -> 2.20.0
From: Wang Mingyu
Changelog:
* va: drop no longer applicable vaGetDriverNames check
* va: remove unreachable "DRIVER BUG"
* x11/dri2: limit the array handling to avoid out of range access
* va/backend: document the vaGetDriver* APIs
* va/backend: annotate vafool as deprecated
* win32: remove duplicate adapter_luid entry
* va: Added Q416 fourcc (three-plane 16-bit YUV 4:4:4)
* trace: fix minor issue about printf data type and value range
* jpeg: add support for crop and partial decode
* trace: Unlock mutex before return
* trace: Add trace for vaExportSurfaceHandle
* av1: Revise offsets comments for av1 encode
* va: Add new VADecodeErrorType to indicate the reset happended in the driver.
* drm: limit the array size to avoid out of range
* va: fix:set driver number to be zero if vaGetDriverNames failed
* va: fix:don't leak driver names, when override is set
* win32: Only print win32 driver messages in DEBUG builds
* va: Add vendor string on va_TraceInitialize
* va: remove legacy code paths
* drm: remove no longer used helpers
* x11: remove legacy code paths
* x11: allow disabling DRI3 via LIBVA_DRI3_DISABLE env var
* x11: implement vaGetDriverNames
* va/x11/va_nvctrl: remove some dead code
* va/x11/va_fglrx: remove some dead code
* va: optimize code of getting driver name for all
protocols/os(wayland,x11,drm,win32,android)
Signed-off-by: Wang Mingyu
---
.../libva/{libva-initial_2.19.0.bb => libva-initial_2.20.0.bb} | 0
meta/recipes-graphics/libva/libva.inc | 2 +-
.../recipes-graphics/libva/{libva_2.19.0.bb => libva_2.20.0.bb} | 0
3 files changed, 1 insertion(+), 1 deletion(-)
rename meta/recipes-graphics/libva/{libva-initial_2.19.0.bb =>
libva-initial_2.20.0.bb} (100%)
rename meta/recipes-graphics/libva/{libva_2.19.0.bb => libva_2.20.0.bb} (100%)
diff --git a/meta/recipes-graphics/libva/libva-initial_2.19.0.bb
b/meta/recipes-graphics/libva/libva-initial_2.20.0.bb
similarity index 100%
rename from meta/recipes-graphics/libva/libva-initial_2.19.0.bb
rename to meta/recipes-graphics/libva/libva-initial_2.20.0.bb
diff --git a/meta/recipes-graphics/libva/libva.inc
b/meta/recipes-graphics/libva/libva.inc
index 3388fea32b..486291bced 100644
--- a/meta/recipes-graphics/libva/libva.inc
+++ b/meta/recipes-graphics/libva/libva.inc
@@ -18,7 +18,7 @@ LICENSE = "MIT"
SRC_URI = "${GITHUB_BASE_URI}/download/${PV}/libva-${PV}.tar.bz2"
LIC_FILES_CHKSUM = "file://COPYING;md5=2e48940f94acb0af582e5ef03537800f"
-SRC_URI[sha256sum] =
"963be798d559df7feebda6fa81aa0dae6f9409c633a37909c44c6aa8af1e2174"
+SRC_URI[sha256sum] =
"f72bdb4f48dfe71ad01f1cbefe069672a2c949a6abd51cf3c4d4784210badc49"
S = "${WORKDIR}/libva-${PV}"
diff --git a/meta/recipes-graphics/libva/libva_2.19.0.bb
b/meta/recipes-graphics/libva/libva_2.20.0.bb
similarity index 100%
rename from meta/recipes-graphics/libva/libva_2.19.0.bb
rename to meta/recipes-graphics/libva/libva_2.20.0.bb
--
2.34.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189042):
https://lists.openembedded.org/g/openembedded-core/message/189042
Mute This Topic: https://lists.openembedded.org/mt/101936433/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core] [PATCH] ltp: upgrade 20230516 -> 20230929
From: Wang Mingyu
Changelog:
-New tests
-Increased coverage
-ebizzy benchmark counter increment races and overflows were fixed
-A few more testcases were converted to guarded buffers
that is data passed by pointer to kernel are immediatelly
following a PROT_NONE page and followed by canaries
to catch off-by-one errors
-Tests that modprobe kernel modules are now skipped when secure boot is
enabled on x86 and ppc64le
-ioprio tests now use IOPRIO_PRIO_NUM instead of hardcoded value
to check for prio range
-35 testcases were converted to the new test library
-The usual amount of fixes and cleanups
Signed-off-by: Wang Mingyu
---
meta/recipes-extended/ltp/{ltp_20230516.bb => ltp_20230929.bb} | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
rename meta/recipes-extended/ltp/{ltp_20230516.bb => ltp_20230929.bb} (99%)
diff --git a/meta/recipes-extended/ltp/ltp_20230516.bb
b/meta/recipes-extended/ltp/ltp_20230929.bb
similarity index 99%
rename from meta/recipes-extended/ltp/ltp_20230516.bb
rename to meta/recipes-extended/ltp/ltp_20230929.bb
index 4d132b761a..5c43346883 100644
--- a/meta/recipes-extended/ltp/ltp_20230516.bb
+++ b/meta/recipes-extended/ltp/ltp_20230929.bb
@@ -24,7 +24,7 @@ TUNE_CCARGS:remove:x86-64 = "-mfpmath=sse"
CFLAGS:append:powerpc64 = " -D__SANE_USERSPACE_TYPES__"
CFLAGS:append:mipsarchn64 = " -D__SANE_USERSPACE_TYPES__"
-SRCREV = "3ebc2dfa85c2445bb68d8c0d66e33c4da1e1b3a7"
+SRCREV = "110d3be6a9c58674de3e366b96a70f0129a5d299"
SRC_URI =
"git://github.com/linux-test-project/ltp.git;branch=master;protocol=https \
file://0001-Remove-OOM-tests-from-runtest-mm.patch \
--
2.34.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189041):
https://lists.openembedded.org/g/openembedded-core/message/189041
Mute This Topic: https://lists.openembedded.org/mt/101936431/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core] [PATCH] lighttpd: upgrade 1.4.71 -> 1.4.72
From: Wang Mingyu
Changelog:
===
* [core] save config read from stdin across restart
* [core] warn if daemonize w/o absolute config path
* [mod_dirlisting] send Link w/ external css or js
* [mod_dirlisting] fix missing header/readme (fixes #3211)
* [core] ignore coverity warning
* [core] ignore coverity warning
* [core] reqpool.c:request_set_con()
* [core] request_init_data() minor optim
* [core] request.c:request_pool_{push,pop}
* Revert "[core] h2 http_request_parse_header() tweak"
* [core] enable config conditions on HTTP/2 PRI
* [mod_webdav] extend symlink support (non-standard)
* [mod_extforward] fix extforward.params config opt
* [mod_authn_ldap] fix config auth.require group=... (fixes #3216)
* [core] set CON_STATE_READ_POST for HTTP/2 reqbody
* [core] chunkqueue_read_squash() returns cq->first
* [core] get body from cq at offset in chunk
* [doc] update stbuehler address
* [tests] use sha crypt for fastcgi auth environment tests
* [tests] drop des-crypt and crypt-md5 auth tests - deprecated/not available
on various platforms
* [core] code size: xxhash XXH_NO_STREAM
* [core] fdevent_sh_exec()
* [mod_dirlisting] http_dirlist_auto_layout_early_hints()
* [mod_dirlisting] send 103 w/ external css or js
* [mod_dirlisting] json output for //?json
* [mod_dirlisting] include ETag with cached result
* [core] import xxHash v0.8.2
* [tests] move %ENV modifications into forked child
* [mod_ssi] init hctx->wq to init alt cq tempdirs
* [tests] initialize request_st cqs in tests
* [core] chunkqueue_env_tmpdir()
* [core] config_set_defaults() reduce code size
* [tests] use current perl interpreter path for env.PERL in lighttpd.conf
* [mod_deflate] code reuse to create temp file
* [core] skip pwrite() to temp file if 0 len write
* [core] store cq->tempdirs in stack var
* [core] remove tempdirs ptr from struct chunkqueue
* [core] treat upload_temp_file_size=0 as default sz
* [core] hide unused var on _WIN32 compiler warning
* [mod_nss] nspr include prefix portability(attempt)
* [CI] scripts/ci-build.sh arg consistency;add meson
* [CI] remove wolfssl from autobuild; let rest build
* [CI] remove NSS from autobuild; let rest build
* [CI] remove mbedtls from autobuild; let rest build
* [mod_nss] nspr include prefix portability(attempt)
* [CI] ci-build.sh: adjust meson; add pam, maxminddb
* [CI] ci-build.sh: fix typo --with-pam
* [CI] remove maxminddb from autobuild,cmake; let rest build
* [CI] ci-build.sh re-enable additional dependencies
* [core] optimize for non-Range requests
* [core] allow larger number of Ranges if sorted
* [tests] test_http_range.c
* [core] attempt to quiet coverity warning
* [build] packdist.sh now produces .md for www.l.n
* [core] disable keep-alive if HTTP/1.1 CL and TE
* [core] reject empty Content-Length for HTTP/1.x
* [core] reject uppercase in unrecognized HTTP/2 hdr
* [core] warn dynamic mods listed before staticfile
* [core] dev-only internal request state debugging
* [core] short-circuit connection_state_machine_loop
* [core] reset connection-level state at con level
* [core] optim for non-throttle writes
* [core] remove connection_handle_write HTTP/1.x opt
* [core] yield writing large HTTP/1.x on slow device
* [core] tighten h2_process_streams()
* [core] h2_process_streams() simpler loop to retire
* [core] http_response_physical_pathinfo()
* [core] http_response_prepare() tweaks
* [meson] Fix 'getoption' meson typo
* [core] use different getxattr() prototype on MacOS
* [mod_deflate] do not compress any 1xx status
* [core] http_response_304(), http_response_412()
* [core] add config option to reject pathinfo
* [core] expand mimetype.assign builtin defaults
* [core] mark some cold routines noinline
* [core] add config opt to send GOAWAY for bad auth
* [core] show_features() show inotify or kqueue
* [core] stat_cache_refresh_entry()
* [core] splaytree: use all 32-bits of hash value
* [core] splaytree: compare keys directly
* [core] splaytree: splaytree_splay_nonnull()
* [core] stat_cache: stat_cache_sptree_ndx()
* [multiple] use splaytree_splay_nonnull()
* [h2] comment struct h2con h2_sid member is unused
* [mod_openssl] disable DH auto if DHParameters set
* [mod_openssl] replace deprecated openssl funcs
* [core] splaytree: splaytree_delete_splayed_node()
* [multiple] use splaytree_delete_splayed_node()
* [core] splaytree: splaytree_insert_splayed()
* [multiple] use splaytree_insert_splayed()
* [core] _WIN32 fs_win32_readlinkUTF8() (#3223)
* [mod_magnet] lighty.c.readlink() (fixes #3223)
* [core] add config option to reject pathinfo
* [mod_dirlisting] send 103 Early Hints only for h2+
* [mod_webdav] reject non-identity Content-Encoding
* [scons] include mod_h2 in static builds (fixes #3224)
* [core] http_request_validate_pseudohdrs comment
* [core] comment out redundant code
* [core] re
[OE-core] [PATCH] libubootenv: upgrade 0.3.4 -> 0.3.5
From: Wang Mingyu
Changelog:
==
Fix slowness on SPI flash
Fixes validating Env flags
Feature: get U-Boot namespace from DT
Feature: specify UBI volumes from MTD path
Signed-off-by: Wang Mingyu
---
.../u-boot/{libubootenv_0.3.4.bb => libubootenv_0.3.5.bb} | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
rename meta/recipes-bsp/u-boot/{libubootenv_0.3.4.bb => libubootenv_0.3.5.bb}
(93%)
diff --git a/meta/recipes-bsp/u-boot/libubootenv_0.3.4.bb
b/meta/recipes-bsp/u-boot/libubootenv_0.3.5.bb
similarity index 93%
rename from meta/recipes-bsp/u-boot/libubootenv_0.3.4.bb
rename to meta/recipes-bsp/u-boot/libubootenv_0.3.5.bb
index ac1e03b8e9..b68bbb430a 100644
--- a/meta/recipes-bsp/u-boot/libubootenv_0.3.4.bb
+++ b/meta/recipes-bsp/u-boot/libubootenv_0.3.5.bb
@@ -11,7 +11,7 @@ LIC_FILES_CHKSUM =
"file://LICENSES/LGPL-2.1-or-later.txt;md5=4fbd65380cdd255951
SECTION = "libs"
SRC_URI = "git://github.com/sbabic/libubootenv;protocol=https;branch=master"
-SRCREV = "4dfb5254fc0540a36e87914bc14644c047ea7678"
+SRCREV = "3f4d15e36ceb58085b08dd13f3f2788e9299877b"
S = "${WORKDIR}/git"
--
2.34.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189039):
https://lists.openembedded.org/g/openembedded-core/message/189039
Mute This Topic: https://lists.openembedded.org/mt/101936413/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core] [PATCH] libsdl2: upgrade 2.28.3 -> 2.28.4
From: Wang Mingyu
Signed-off-by: Wang Mingyu
---
.../libsdl2/{libsdl2_2.28.3.bb => libsdl2_2.28.4.bb}| 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
rename meta/recipes-graphics/libsdl2/{libsdl2_2.28.3.bb => libsdl2_2.28.4.bb}
(97%)
diff --git a/meta/recipes-graphics/libsdl2/libsdl2_2.28.3.bb
b/meta/recipes-graphics/libsdl2/libsdl2_2.28.4.bb
similarity index 97%
rename from meta/recipes-graphics/libsdl2/libsdl2_2.28.3.bb
rename to meta/recipes-graphics/libsdl2/libsdl2_2.28.4.bb
index f866a3618f..3fed10878f 100644
--- a/meta/recipes-graphics/libsdl2/libsdl2_2.28.3.bb
+++ b/meta/recipes-graphics/libsdl2/libsdl2_2.28.4.bb
@@ -25,7 +25,7 @@ SRC_URI = "http://www.libsdl.org/release/SDL2-${PV}.tar.gz";
S = "${WORKDIR}/SDL2-${PV}"
-SRC_URI[sha256sum] =
"7acb8679652701a2504d734e2ba7543ec1a83e310498ddd22fd44bf965eb5518"
+SRC_URI[sha256sum] =
"888b8c39f36ae2035d023d1b14ab0191eb1d26403c3cf4d4d5ede30e66a4942c"
inherit cmake lib_package binconfig-disabled pkgconfig upstream-version-is-even
--
2.34.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189038):
https://lists.openembedded.org/g/openembedded-core/message/189038
Mute This Topic: https://lists.openembedded.org/mt/101936402/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core] [PATCH] libcomps: upgrade 0.1.19 -> 0.1.20
From: Wang Mingyu
0001-libcomps-Use-Py_hash_t-instead-of-long-in-PyCOMPS_ha.patch
removed since it's included in 0.1.20
Signed-off-by: Wang Mingyu
---
...hash_t-instead-of-long-in-PyCOMPS_ha.patch | 66 ---
...{libcomps_0.1.19.bb => libcomps_0.1.20.bb} | 3 +-
2 files changed, 1 insertion(+), 68 deletions(-)
delete mode 100644
meta/recipes-devtools/libcomps/libcomps/0001-libcomps-Use-Py_hash_t-instead-of-long-in-PyCOMPS_ha.patch
rename meta/recipes-devtools/libcomps/{libcomps_0.1.19.bb =>
libcomps_0.1.20.bb} (86%)
diff --git
a/meta/recipes-devtools/libcomps/libcomps/0001-libcomps-Use-Py_hash_t-instead-of-long-in-PyCOMPS_ha.patch
b/meta/recipes-devtools/libcomps/libcomps/0001-libcomps-Use-Py_hash_t-instead-of-long-in-PyCOMPS_ha.patch
deleted file mode 100644
index dd9ebc8af4..00
---
a/meta/recipes-devtools/libcomps/libcomps/0001-libcomps-Use-Py_hash_t-instead-of-long-in-PyCOMPS_ha.patch
+++ /dev/null
@@ -1,66 +0,0 @@
-From 26a9647c832de15248ee649e5b77075521f3d4f0 Mon Sep 17 00:00:00 2001
-From: Khem Raj
-Date: Fri, 3 Mar 2023 08:37:35 -0800
-Subject: [PATCH] libcomps: Use Py_hash_t instead of long in PyCOMPS_hash()
-
-This function is used as a hashfunc callback in
-_typeobject defined python3.11/cpython/object.h
-compilers detect the protype mismatch for function pointers
-with clang16+
-
-Fixes
-libcomps/src/python/src/pycomps_sequence.c:667:5: error: incompatible function
pointer types initializing 'hashfunc' (aka 'int (*)(struct _object *)') with an
expression of type 'long (*)(PyObject *)' (aka 'long (*)(struct _object *)')
[-Wincompatible-function-pointer-types]
-&PyCOMPS_hash, /*tp_hash */
-
-Upstream-Status: Submitted
[https://github.com/rpm-software-management/libcomps/pull/101]
-Signed-off-by: Khem Raj
- libcomps/src/python/src/pycomps_hash.c | 4 ++--
- libcomps/src/python/src/pycomps_hash.h | 2 +-
- libcomps/src/python/src/pycomps_utils.h | 2 +-
- 3 files changed, 4 insertions(+), 4 deletions(-)
-
-diff --git a/libcomps/src/python/src/pycomps_hash.c
b/libcomps/src/python/src/pycomps_hash.c
-index 474afd5..4577769 100644
a/libcomps/src/python/src/pycomps_hash.c
-+++ b/libcomps/src/python/src/pycomps_hash.c
-@@ -20,9 +20,9 @@
- #include "pycomps_hash.h"
- #include "pycomps_utils.h"
-
--long PyCOMPS_hash(PyObject *self) {
-+Py_hash_t PyCOMPS_hash(PyObject *self) {
- char *cstr = NULL;
--long crc;
-+Py_hash_t crc;
-
- cstr = comps_object_tostr(((PyCompsObject*)self)->c_obj);
- crc = crc32(0, cstr, strlen(cstr));
-diff --git a/libcomps/src/python/src/pycomps_hash.h
b/libcomps/src/python/src/pycomps_hash.h
-index b664cae..54e08d9 100644
a/libcomps/src/python/src/pycomps_hash.h
-+++ b/libcomps/src/python/src/pycomps_hash.h
-@@ -26,6 +26,6 @@
- #include "pycomps_utils.h"
-
-
--long PyCOMPS_hash(PyObject *self);
-+Py_hash_t PyCOMPS_hash(PyObject *self);
-
- #endif
-diff --git a/libcomps/src/python/src/pycomps_utils.h
b/libcomps/src/python/src/pycomps_utils.h
-index ba9bc2f..b34e4dc 100644
a/libcomps/src/python/src/pycomps_utils.h
-+++ b/libcomps/src/python/src/pycomps_utils.h
-@@ -137,7 +137,7 @@ COMPS_Object* __pycomps_bytes_in(PyObject *pobj);
- PyObject* __pycomps_str_out(COMPS_Object *obj);
- PyObject *str_to_unicode(void* str);
-
--long PyCOMPS_hash(PyObject *self);
-+Py_hash_t PyCOMPS_hash(PyObject *self);
-
- PyObject* PyCOMPSSeq_extra_get(PyObject *self, PyObject *key);
-
---
-2.39.2
-
diff --git a/meta/recipes-devtools/libcomps/libcomps_0.1.19.bb
b/meta/recipes-devtools/libcomps/libcomps_0.1.20.bb
similarity index 86%
rename from meta/recipes-devtools/libcomps/libcomps_0.1.19.bb
rename to meta/recipes-devtools/libcomps/libcomps_0.1.20.bb
index e362e8e108..1f59c5ea1e 100644
--- a/meta/recipes-devtools/libcomps/libcomps_0.1.19.bb
+++ b/meta/recipes-devtools/libcomps/libcomps_0.1.20.bb
@@ -5,11 +5,10 @@ LICENSE = "GPL-2.0-only"
LIC_FILES_CHKSUM = "file://COPYING;md5=b234ee4d69f5fce4486a80fdaf4a4263"
SRC_URI =
"git://github.com/rpm-software-management/libcomps.git;branch=master;protocol=https
\
-
file://0001-libcomps-Use-Py_hash_t-instead-of-long-in-PyCOMPS_ha.patch \
file://0002-Do-not-set-PYTHON_INSTALL_DIR-by-running-python.patch \
"
-SRCREV = "9322bdcf06630cc094f094f944d7d0e2cb798b73"
+SRCREV = "854fbb9fe733b774981e1ffcf825b2d2ce0f8072"
S = "${WORKDIR}/git"
--
2.34.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189037):
https://lists.openembedded.org/g/openembedded-core/message/189037
Mute This Topic: https://lists.openembedded.org/mt/101936400/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core] [PATCH] kmod: upgrade 30 -> 31
From: Wang Mingyu
Changelog:
===
- Improvements
- Allow passing a path to modprobe so the module is loaded from
anywhere from the filesystem, but still handling the module
dependencies recorded in the indexes.
- Use in-kernel decompression if available.
- Make modprobe fallback to syslog when stderr is not available, as was
documented in the man page, but not implemented
- Better explaing `modprobe -r` and how it differentiates from rmmod
- depmod learned a `-o ` option to allow using a separate output
directory.
- Add compat with glibc >= 2.32.9000 that dropped __xstat
- Improve testsuite to stop skipping tests when sysconfdir is something
other than /etc
- Build system improvements and updates
- Change a few return codes from -ENOENT to -ENODATA to avoid confusing output
in depmod when the module itself lacks a particular ELF section due to e.g.
CONFIG_MODVERSIONS=n in the kernel.
- Bug Fixes
- Fix testsuite using uninitialized memory when testing module removal
with --wait
- Fix testsuite not correctly overriding the stat syscall on 32-bit
platforms. For most architectures this was harmless, but for MIPS it
was causing some tests to fail.
- Fix handling unknown signature algorithm
- Fix linking with a static liblzma, libzstd or zlib
- Fix memory leak when removing module holders
- Fix out-of-bounds access when using very long paths as argument to rmmod
- Fix warnings reported by UBSan
Signed-off-by: Wang Mingyu
---
meta/recipes-kernel/kmod/{kmod_30.bb => kmod_31.bb} | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
rename meta/recipes-kernel/kmod/{kmod_30.bb => kmod_31.bb} (98%)
diff --git a/meta/recipes-kernel/kmod/kmod_30.bb
b/meta/recipes-kernel/kmod/kmod_31.bb
similarity index 98%
rename from meta/recipes-kernel/kmod/kmod_30.bb
rename to meta/recipes-kernel/kmod/kmod_31.bb
index 6fc9da9c82..934a678a06 100644
--- a/meta/recipes-kernel/kmod/kmod_30.bb
+++ b/meta/recipes-kernel/kmod/kmod_31.bb
@@ -15,7 +15,7 @@ LIC_FILES_CHKSUM =
"file://COPYING;md5=a6f89e2100d9b6cdffcea4f398e37343 \
"
inherit autotools bash-completion gtk-doc pkgconfig manpages
update-alternatives
-SRCREV = "5d46434a63ae0160150a0efdde1914873697e273"
+SRCREV = "aff617ea871d0568cc491bd116c0be1e857463bb"
SRC_URI =
"git://git.kernel.org/pub/scm/utils/kernel/kmod/kmod.git;branch=master;protocol=https
\
file://depmod-search.conf \
--
2.34.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189036):
https://lists.openembedded.org/g/openembedded-core/message/189036
Mute This Topic: https://lists.openembedded.org/mt/101936398/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core] [PATCH] hwlatdetect: upgrade 2.5 -> 2.6
From: Wang Mingyu Signed-off-by: Wang Mingyu --- meta/recipes-rt/rt-tests/rt-tests.inc | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/meta/recipes-rt/rt-tests/rt-tests.inc b/meta/recipes-rt/rt-tests/rt-tests.inc index 527e14ad54..70315c4694 100644 --- a/meta/recipes-rt/rt-tests/rt-tests.inc +++ b/meta/recipes-rt/rt-tests/rt-tests.inc @@ -1,5 +1,5 @@ -SRCREV = "4579b9a6d85ae528f76e92421eb5e7b33cd26b17" -PV = "2.5" +SRCREV = "217cd8518c5fd490892aa9c765a6b2782cb5" +PV = "2.6" PE = "1" SRC_URI = "git://git.kernel.org/pub/scm/utils/rt-tests/rt-tests.git;branch=main;protocol=https" -- 2.34.1 -=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#189035): https://lists.openembedded.org/g/openembedded-core/message/189035 Mute This Topic: https://lists.openembedded.org/mt/101936393/21656 Group Owner: openembedded-core+ow...@lists.openembedded.org Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [arch...@mail-archive.com] -=-=-=-=-=-=-=-=-=-=-=-
[OE-core] [PATCH] ell: upgrade 0.58 -> 0.59
From: Wang Mingyu
Changelog:
Fix issue with symbol visibility.
Signed-off-by: Wang Mingyu
---
meta/recipes-core/ell/{ell_0.58.bb => ell_0.59.bb} | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
rename meta/recipes-core/ell/{ell_0.58.bb => ell_0.59.bb} (89%)
diff --git a/meta/recipes-core/ell/ell_0.58.bb
b/meta/recipes-core/ell/ell_0.59.bb
similarity index 89%
rename from meta/recipes-core/ell/ell_0.58.bb
rename to meta/recipes-core/ell/ell_0.59.bb
index 04e8566305..0483dbe582 100644
--- a/meta/recipes-core/ell/ell_0.58.bb
+++ b/meta/recipes-core/ell/ell_0.59.bb
@@ -15,7 +15,7 @@ DEPENDS = "dbus"
inherit autotools pkgconfig
SRC_URI =
"https://mirrors.edge.kernel.org/pub/linux/libs/${BPN}/${BPN}-${PV}.tar.xz";
-SRC_URI[sha256sum] =
"531a980589c8954ff12a3110b4d958fa75a74c88ddcc3e2ace4317e76a7c1e9b"
+SRC_URI[sha256sum] =
"370dc2b7c73cd57856017180a2a70a15ca1b0183bfd453b3cffe2d707c37da3d"
do_configure:prepend () {
mkdir -p ${S}/build-aux
--
2.34.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189034):
https://lists.openembedded.org/g/openembedded-core/message/189034
Mute This Topic: https://lists.openembedded.org/mt/101936384/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core] [PATCH] dhcpcd: upgrade 10.0.2 -> 10.0.3
From: Wang Mingyu
0001-privsep-fix-strlcpy-overflow-in-psp_ifname-239.patch
removed since it's included in 10.0.3
Changelog:
===
Do not crash on dhcpcd test run
Add automated CI builds for Ubuntu, OpenBSD, FreeBSD and NetBSD
dhcpcd: Fix off-by-one overflow when read() writes full BUFSIZ
privsep: fix strlcpy overflow in psp_ifname
ci: execute tests after successful build
compat: update arc4random() to newer chacha20 based version from OpenBSD
Support libcrypto for hmac and sha256
Use a local variable instead of the optind
Send correct amount of used buffer for prefix exclude option
compat: use OpenSSL RAND_priv_bytes() for entropy
Signed-off-by: Wang Mingyu
---
.../{dhcpcd_10.0.2.bb => dhcpcd_10.0.3.bb}| 3 +-
...x-strlcpy-overflow-in-psp_ifname-239.patch | 33 ---
2 files changed, 1 insertion(+), 35 deletions(-)
rename meta/recipes-connectivity/dhcpcd/{dhcpcd_10.0.2.bb => dhcpcd_10.0.3.bb}
(94%)
delete mode 100644
meta/recipes-connectivity/dhcpcd/files/0001-privsep-fix-strlcpy-overflow-in-psp_ifname-239.patch
diff --git a/meta/recipes-connectivity/dhcpcd/dhcpcd_10.0.2.bb
b/meta/recipes-connectivity/dhcpcd/dhcpcd_10.0.3.bb
similarity index 94%
rename from meta/recipes-connectivity/dhcpcd/dhcpcd_10.0.2.bb
rename to meta/recipes-connectivity/dhcpcd/dhcpcd_10.0.3.bb
index 0966edd1b8..cc0fb382df 100644
--- a/meta/recipes-connectivity/dhcpcd/dhcpcd_10.0.2.bb
+++ b/meta/recipes-connectivity/dhcpcd/dhcpcd_10.0.3.bb
@@ -15,10 +15,9 @@ SRC_URI =
"git://github.com/NetworkConfiguration/dhcpcd;protocol=https;branch=ma
file://dhcpcd.service \
file://dhcpcd@.service \
file://0001-dhcpcd.8-Fix-conflict-error-when-enable-multilib.patch \
- file://0001-privsep-fix-strlcpy-overflow-in-psp_ifname-239.patch \
"
-SRCREV = "d2fbde99cf2d0072016af9dfe6a77032a5a9fc30"
+SRCREV = "45fb8fd8dd281d2228c7abaddff7877d27e67146"
S = "${WORKDIR}/git"
inherit pkgconfig autotools-brokensep systemd useradd
diff --git
a/meta/recipes-connectivity/dhcpcd/files/0001-privsep-fix-strlcpy-overflow-in-psp_ifname-239.patch
b/meta/recipes-connectivity/dhcpcd/files/0001-privsep-fix-strlcpy-overflow-in-psp_ifname-239.patch
deleted file mode 100644
index d4fb1737a6..00
---
a/meta/recipes-connectivity/dhcpcd/files/0001-privsep-fix-strlcpy-overflow-in-psp_ifname-239.patch
+++ /dev/null
@@ -1,33 +0,0 @@
-From 1bd8fc7d4b34f752a32709d277a897e5ad202d97 Mon Sep 17 00:00:00 2001
-From: Tobias Heider
-Date: Tue, 15 Aug 2023 18:06:48 +0200
-Subject: [PATCH] privsep: fix strlcpy overflow in psp_ifname (#239)
-
-When running our Ubuntu tests with libc6 and strlcpy overflow checks
-enabled we found that the wrong size is passed to strlcpy resulting
-in a crash because of an overflow.
-
-Upstream-Status: Backport
-[https://github.com/NetworkConfiguration/dhcpcd/commit/1bd8fc7d4b34f752a32709d277a897e5ad202d97]
-
-Signed-off-by: Yi Zhao
- src/privsep.c | 2 +-
- 1 file changed, 1 insertion(+), 1 deletion(-)
-
-diff --git a/src/privsep.c b/src/privsep.c
-index b11c0351..cfe54742 100644
a/src/privsep.c
-+++ b/src/privsep.c
-@@ -1200,7 +1200,7 @@ ps_newprocess(struct dhcpcd_ctx *ctx, struct ps_id *psid)
- #endif
-
- if (!(ctx->options & DHCPCD_MANAGER))
-- strlcpy(psp->psp_ifname, ctx->ifv[0], sizeof(psp->psp_name));
-+ strlcpy(psp->psp_ifname, ctx->ifv[0], sizeof(psp->psp_ifname));
- TAILQ_INSERT_TAIL(&ctx->ps_processes, psp, next);
- return psp;
- }
---
-2.25.1
-
--
2.34.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189033):
https://lists.openembedded.org/g/openembedded-core/message/189033
Mute This Topic: https://lists.openembedded.org/mt/101936378/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core] [PATCH] createrepo-c: upgrade 1.0.0 -> 1.0.1
From: Wang Mingyu
0001-Move-cr_compress_groupfile-outside-WITH_LIBMODULEMD.patch
removed since it's included in 1.0.1.
Signed-off-by: Wang Mingyu
---
...s_groupfile-outside-WITH_LIBMODULEMD.patch | 46 ---
...erepo-c_1.0.0.bb => createrepo-c_1.0.1.bb} | 3 +-
2 files changed, 1 insertion(+), 48 deletions(-)
delete mode 100644
meta/recipes-devtools/createrepo-c/createrepo-c/0001-Move-cr_compress_groupfile-outside-WITH_LIBMODULEMD.patch
rename meta/recipes-devtools/createrepo-c/{createrepo-c_1.0.0.bb =>
createrepo-c_1.0.1.bb} (92%)
diff --git
a/meta/recipes-devtools/createrepo-c/createrepo-c/0001-Move-cr_compress_groupfile-outside-WITH_LIBMODULEMD.patch
b/meta/recipes-devtools/createrepo-c/createrepo-c/0001-Move-cr_compress_groupfile-outside-WITH_LIBMODULEMD.patch
deleted file mode 100644
index ea768e06e6..00
---
a/meta/recipes-devtools/createrepo-c/createrepo-c/0001-Move-cr_compress_groupfile-outside-WITH_LIBMODULEMD.patch
+++ /dev/null
@@ -1,46 +0,0 @@
-From 5326969acc0c7e9e3cabca202154e4120c0d2c2f Mon Sep 17 00:00:00 2001
-From: Khem Raj
-Date: Tue, 26 Sep 2023 14:52:11 -0700
-Subject: [PATCH] Move cr_compress_groupfile outside WITH_LIBMODULEMD
-
-This function is used in code which is not conditional under WITH_LIBMODULEMD
-therefore the declaration should also match its definition scope
-
-Fixes build issues flagged by clang
-
-src/createrepo_c.c:850:16: error: incompatible integer to pointer conversion
initializing 'gchar *' (aka 'char *') with an
- expression of type 'int' [-Wint-conversion]
-| 850 | gchar *compressed_path =
cr_compress_groupfile(cmd_options->groupfile_fullpath, tmp_out_repo,
compression);
-| |^
~
-
-Upstream-Status: Submitted
[https://github.com/rpm-software-management/createrepo_c/pull/387]
-Signed-off-by: Khem Raj
- src/metadata_internal.h | 6 +++---
- 1 file changed, 3 insertions(+), 3 deletions(-)
-
-diff --git a/src/metadata_internal.h b/src/metadata_internal.h
-index 8ba0576..ecfbac2 100644
a/src/metadata_internal.h
-+++ b/src/metadata_internal.h
-@@ -52,14 +52,14 @@ cr_metadata_load_modulemd(ModulemdModuleIndex
**moduleindex,
- * @param dest_dir Path to directory where the compressed groupfile
should be stored.
- * @return Path to the new compressed groupfile. Has to be freed
by the caller.
- */
-+
-+#endif /* WITH_LIBMODULEMD */
-+
- gchar *
- cr_compress_groupfile(const char *groupfile,
- const char *dest_dir,
- cr_CompressionType compression);
-
--
--#endif /* WITH_LIBMODULEMD */
--
- #ifdef __cplusplus
- }
- #endif
---
-2.42.0
-
diff --git a/meta/recipes-devtools/createrepo-c/createrepo-c_1.0.0.bb
b/meta/recipes-devtools/createrepo-c/createrepo-c_1.0.1.bb
similarity index 92%
rename from meta/recipes-devtools/createrepo-c/createrepo-c_1.0.0.bb
rename to meta/recipes-devtools/createrepo-c/createrepo-c_1.0.1.bb
index f4e65492f8..44d9213bd4 100644
--- a/meta/recipes-devtools/createrepo-c/createrepo-c_1.0.0.bb
+++ b/meta/recipes-devtools/createrepo-c/createrepo-c_1.0.1.bb
@@ -8,10 +8,9 @@ SRC_URI =
"git://github.com/rpm-software-management/createrepo_c;branch=master;p
file://0001-Do-not-set-PYTHON_INSTALL_DIR-by-running-python.patch \
file://0001-include-rpm-rpmstring.h.patch \
file://time64fix.patch \
-
file://0001-Move-cr_compress_groupfile-outside-WITH_LIBMODULEMD.patch \
"
-SRCREV = "0cc13920991b2fb8f87fb9d352bd3394c2983289"
+SRCREV = "e7af838e04009cd2f848a00e1ea31cc42c8f3ae7"
S = "${WORKDIR}/git"
--
2.34.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189032):
https://lists.openembedded.org/g/openembedded-core/message/189032
Mute This Topic: https://lists.openembedded.org/mt/101936367/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core] [PATCH] btrfs-tools: upgrade 6.5.1 -> 6.5.2
From: Wang Mingyu
Signed-off-by: Wang Mingyu
---
.../btrfs-tools/{btrfs-tools_6.5.1.bb => btrfs-tools_6.5.2.bb} | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
rename meta/recipes-devtools/btrfs-tools/{btrfs-tools_6.5.1.bb =>
btrfs-tools_6.5.2.bb} (98%)
diff --git a/meta/recipes-devtools/btrfs-tools/btrfs-tools_6.5.1.bb
b/meta/recipes-devtools/btrfs-tools/btrfs-tools_6.5.2.bb
similarity index 98%
rename from meta/recipes-devtools/btrfs-tools/btrfs-tools_6.5.1.bb
rename to meta/recipes-devtools/btrfs-tools/btrfs-tools_6.5.2.bb
index 527e13d08e..2d3f70118d 100644
--- a/meta/recipes-devtools/btrfs-tools/btrfs-tools_6.5.1.bb
+++ b/meta/recipes-devtools/btrfs-tools/btrfs-tools_6.5.2.bb
@@ -18,7 +18,7 @@ DEPENDS = "util-linux zlib"
SRC_URI =
"git://git.kernel.org/pub/scm/linux/kernel/git/kdave/btrfs-progs.git;branch=master;protocol=https
\
file://0001-Add-a-possibility-to-specify-where-python-modules-ar.patch \
"
-SRCREV = "92d04d4780886a9850716e5529f1dace97779931"
+SRCREV = "546edf535ddecae480a51306e4d08f5dbd4e3ea7"
S = "${WORKDIR}/git"
PACKAGECONFIG ??= " \
--
2.34.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189031):
https://lists.openembedded.org/g/openembedded-core/message/189031
Mute This Topic: https://lists.openembedded.org/mt/101936363/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core] [PATCH] bluez5: upgrade 5.69 -> 5.70
From: Wang Mingyu
Signed-off-by: Wang Mingyu
---
.../bluez5/{bluez5_5.69.bb => bluez5_5.70.bb} | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
rename meta/recipes-connectivity/bluez5/{bluez5_5.69.bb => bluez5_5.70.bb}
(94%)
diff --git a/meta/recipes-connectivity/bluez5/bluez5_5.69.bb
b/meta/recipes-connectivity/bluez5/bluez5_5.70.bb
similarity index 94%
rename from meta/recipes-connectivity/bluez5/bluez5_5.69.bb
rename to meta/recipes-connectivity/bluez5/bluez5_5.70.bb
index 4673000f60..2e3b782e6e 100644
--- a/meta/recipes-connectivity/bluez5/bluez5_5.69.bb
+++ b/meta/recipes-connectivity/bluez5/bluez5_5.70.bb
@@ -1,6 +1,6 @@
require bluez5.inc
-SRC_URI[sha256sum] =
"bc5a35ddc7c72d0d3999a0d7b2175c8b7d57ab670774f8b5b4900ff38a2627fc"
+SRC_URI[sha256sum] =
"37e372e916955e144cb882f888e4be40898f10ae3b7c213ddcdd55ee9c009278"
CVE_STATUS[CVE-2020-24490] = "cpe-incorrect: This issue has kernel fixes
rather than bluez fixes"
--
2.34.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189030):
https://lists.openembedded.org/g/openembedded-core/message/189030
Mute This Topic: https://lists.openembedded.org/mt/101936356/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[OE-core] why does rust recipe file define "rust_do_install()"?
i'm perusing the rust_1.70.0.bb recipe file, and i'm puzzled by the
fact that it defines its own do_install() to simply call
rust_do_install(), which then implements variations of that function:
https://git.openembedded.org/openembedded-core/tree/meta/recipes-devtools/rust/rust_1.70.0.bb#n244
do_install () {
rust_do_install
}
rust_do_install() {
rust_runx install
}
rust_do_install:class-nativesdk() {
export PSEUDO_UNLOAD=1
rust_runx install
rust_runx install clippy
... snip ...
i'm familiar with bbclass files defining things like that; eg.,
autotools.bbclass defining:
autotools_do_install() {
oe_runmake 'DESTDIR=${D}' install it if it exists.
if [ -e "${D}${infodir}/dir" ]; then
rm -f ${D}${infodir}/dir
fi
}
but examples like that are generally then listed in EXPORT_FUNCTIONS
so subsequent recipes can invoke them as part of *their* do_install(),
like this snippet from the tar recipe:
do_install () {
autotools_do_install
ln -s tar ${D}${bindir}/gtar
}
but i'm not sure why the rust recipe file is doing what it's doing.
could it not have just defined variations of do_install() and gotten
the same effect? or is there something more subtle happening here?
rday
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189029):
https://lists.openembedded.org/g/openembedded-core/message/189029
Mute This Topic: https://lists.openembedded.org/mt/101936139/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
