Re: [oe] [PATCH] openvpn: add CVE-2020-7224 and CVE-2020-27569 to allowlist
Hi Khem Raj.
Thanks for reply.
This patch this meant for master.
I will rebase it on latest master/master-next and resend.
-Original Message-
From: Khem Raj
Sent: Friday, June 25, 2021 2:25 AM
To: Chikazawa, Akifumi/近沢 哲史 ;
openembedded-devel@lists.openembedded.org
Subject: Re: [oe] [PATCH] openvpn: add CVE-2020-7224 and CVE-2020-27569 to
allowlist
Thanks for the patch
On 6/24/21 12:24 AM, Akifumi Chikazawa wrote:
> CVE-2020-7224 and CVE-2020-27569 are for Aviatrix OpenVPN client, not
> for openvpn.
>
> Signed-off-by: Akifumi Chikazawa
> ---
> meta-networking/recipes-support/openvpn/openvpn_2.5.2.bb | 3 +++
> 1 file changed, 3 insertions(+)
>
we are on 2.5.3 on master, is this meant for master ? if so , please rebase it
on latest master/master-next and resend, if its meant for a release branch then
prefix the subject line with [release-name] so release maintainer gets notified
too.
> diff --git a/meta-networking/recipes-support/openvpn/openvpn_2.5.2.bb
> b/meta-networking/recipes-support/openvpn/openvpn_2.5.2.bb
> index f82107dbe..646f0387a 100644
> --- a/meta-networking/recipes-support/openvpn/openvpn_2.5.2.bb
> +++ b/meta-networking/recipes-support/openvpn/openvpn_2.5.2.bb
> @@ -17,6 +17,9 @@ UPSTREAM_CHECK_URI =
> "https://openvpn.net/community-downloads;
> SRC_URI[md5sum] = "7643f135b49aee49df7d83c1f434dc4e"
> SRC_URI[sha256sum] =
> "b9d295988b34e39964ac475b619c3585d667b36c350cf1adec19e5e3c843ba11"
>
> +# CVE-2020-7224 and CVE-2020-27569 are for Aviatrix OpenVPN client, not for
> openvpn.
> +CVE_CHECK_WHITELIST += "CVE-2020-7224 CVE-2020-27569"
> +
> SYSTEMD_SERVICE_${PN} += "openvpn@loopback-server.service
> openvpn@loopback-client.service"
> SYSTEMD_AUTO_ENABLE = "disable"
>
>
>
>
>
>
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#92021):
https://lists.openembedded.org/g/openembedded-devel/message/92021
Mute This Topic: https://lists.openembedded.org/mt/83755999/21656
Group Owner: openembedded-devel+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
Re: [oe] [meta-oe][PATCH] lmdb: add recipe
On Thu, Jun 24, 2021 at 1:39 PM Sakib Sajal wrote: > > > On 2021-06-16 3:47 p.m., Khem Raj wrote: > > [Please note: This e-mail is from an EXTERNAL e-mail address] > > > > On 6/16/21 11:21 AM, Sakib Sajal wrote: > >> lmdb provides a high-performance embedded transactional > >> database in the form of a key-value store. > >> > >> Recipe is ported from meta-qt5-extra layer. > >> > >> Signed-off-by: Sakib Sajal > >> --- > >> .../files/0001-Patch-the-main-Makefile.patch | 90 +++ > >> meta-oe/recipes-dbs/lmdb/lmdb_git.bb | 22 + > >> 2 files changed, 112 insertions(+) > >> create mode 100644 > >> meta-oe/recipes-dbs/lmdb/files/0001-Patch-the-main-Makefile.patch > >> create mode 100644 meta-oe/recipes-dbs/lmdb/lmdb_git.bb > >> > >> diff --git > >> a/meta-oe/recipes-dbs/lmdb/files/0001-Patch-the-main-Makefile.patch > >> b/meta-oe/recipes-dbs/lmdb/files/0001-Patch-the-main-Makefile.patch > >> new file mode 100644 > >> index 0..9ba626101 > >> --- /dev/null > >> +++ b/meta-oe/recipes-dbs/lmdb/files/0001-Patch-the-main-Makefile.patch > >> @@ -0,0 +1,90 @@ > >> +From: =?UTF-8?q?Andreas=20M=C3=BCller?= > >> +Date: Tue, 1 Sep 2015 22:54:31 +0200 > >> +Subject: [PATCH] Patch the main Makefile to allow for a build that > >> complies to packaging guidelines. > >> +MIME-Version: 1.0 > >> +Content-Type: text/plain; charset=UTF-8 > >> +Content-Transfer-Encoding: 8bit > >> + > >> +Taken from [1] > >> + > >> +[1] > >> https://src.fedoraproject.org/rpms/lmdb/raw/master/f/lmdb-make.patch > >> + > >> +Upstream-Status: Pending > >> + > >> + > >> +diff --git a/Makefile b/Makefile > >> +--- a/Makefile > >> b/Makefile > >> +@@ -26,6 +26,7 @@ OPT = -O2 -g > >> + CFLAGS = $(THREADS) $(OPT) $(W) $(XCFLAGS) > >> + LDLIBS = > >> + SOLIBS = > >> ++SOVERSION = 0.0.0 > >> + SOEXT = .so > >> + prefix = /usr/local > >> + exec_prefix = $(prefix) > >> +@@ -38,7 +39,7 @@ mandir = $(datarootdir)/man > >> + > >> > >> + > >> + IHDRS = lmdb.h > >> +-ILIBS = liblmdb.a liblmdb$(SOEXT) > >> ++ILIBS = liblmdb$(SOEXT) liblmdb$(SOEXT).$(SOVERSION) > >> + IPROGS = mdb_stat mdb_copy mdb_dump mdb_load > >> + IDOCS = mdb_stat.1 mdb_copy.1 mdb_dump.1 mdb_load.1 > >> + PROGS = $(IPROGS) mtest mtest2 mtest3 mtest4 mtest5 > >> +@@ -49,13 +50,13 @@ install: $(ILIBS) $(IPROGS) $(IHDRS) > >> + mkdir -p $(DESTDIR)$(libdir) > >> + mkdir -p $(DESTDIR)$(includedir) > >> + mkdir -p $(DESTDIR)$(mandir)/man1 > >> +-for f in $(IPROGS); do cp $$f $(DESTDIR)$(bindir); done > >> +-for f in $(ILIBS); do cp $$f $(DESTDIR)$(libdir); done > >> +-for f in $(IHDRS); do cp $$f $(DESTDIR)$(includedir); done > >> +-for f in $(IDOCS); do cp $$f $(DESTDIR)$(mandir)/man1; done > >> ++for f in $(IPROGS); do cp -a $$f $(DESTDIR)$(bindir); done > >> ++for f in $(ILIBS); do cp -a $$f $(DESTDIR)$(libdir); done > >> ++for f in $(IHDRS); do cp -a $$f $(DESTDIR)$(includedir); done > >> ++for f in $(IDOCS); do cp -a $$f $(DESTDIR)$(mandir)/man1; done > >> + > >> + clean: > >> +-rm -rf $(PROGS) *.[ao] *.[ls]o *~ testdb > >> ++rm -rf $(PROGS) *.[ao] *.[ls]o* *~ testdb > >> + > >> + test: all > >> + rm -rf testdb && mkdir testdb > >> +@@ -64,20 +65,24 @@ test:all > >> + liblmdb.a: mdb.o midl.o > >> + $(AR) rs $@ mdb.o midl.o > >> + > >> +-liblmdb$(SOEXT):mdb.lo midl.lo > >> ++liblmdb$(SOEXT):liblmdb$(SOEXT).$(SOVERSION) > >> ++rm -f $@ > >> ++ln -s $< $@ > >> ++ > >> ++liblmdb$(SOEXT).$(SOVERSION): mdb.lo midl.lo > >> + # $(CC) $(LDFLAGS) -pthread -shared -Wl,-Bsymbolic -o $@ mdb.o > >> midl.o $(SOLIBS) > >> +-$(CC) $(LDFLAGS) -pthread -shared -o $@ mdb.lo midl.lo $(SOLIBS) > >> ++$(CC) $(LDFLAGS) -pthread -shared -Wl,-soname,$@ -o $@ mdb.lo > >> midl.lo $(SOLIBS) > >> + > >> +-mdb_stat: mdb_stat.o liblmdb.a > >> +-mdb_copy: mdb_copy.o liblmdb.a > >> +-mdb_dump: mdb_dump.o liblmdb.a > >> +-mdb_load: mdb_load.o liblmdb.a > >> +-mtest:mtest.oliblmdb.a > >> +-mtest2: mtest2.o liblmdb.a > >> +-mtest3: mtest3.o liblmdb.a > >> +-mtest4: mtest4.o liblmdb.a > >> +-mtest5: mtest5.o liblmdb.a > >> +-mtest6: mtest6.o liblmdb.a > >> ++mdb_stat: mdb_stat.o liblmdb.so > >> ++mdb_copy: mdb_copy.o liblmdb.so > >> ++mdb_dump: mdb_dump.o liblmdb.so > >> ++mdb_load: mdb_load.o liblmdb.so > >> ++mtest:mtest.oliblmdb.so > >> ++mtest2: mtest2.o liblmdb.so > >> ++mtest3: mtest3.o liblmdb.so > >> ++mtest4: mtest4.o liblmdb.so > >> ++mtest5: mtest5.o liblmdb.so > >> ++mtest6: mtest6.o liblmdb.so > >> + > >> + mdb.o: mdb.c lmdb.h midl.h > >> + $(CC) $(CFLAGS) $(CPPFLAGS) -c mdb.c > >> diff --git a/meta-oe/recipes-dbs/lmdb/lmdb_git.bb > >> b/meta-oe/recipes-dbs/lmdb/lmdb_git.bb > >> new file mode 100644 > >> index 0..22db6d44b > >> --- /dev/null > >> +++
Re: [oe] [meta-oe][PATCH] lmdb: add recipe
On 2021-06-16 3:47 p.m., Khem Raj wrote:
[Please note: This e-mail is from an EXTERNAL e-mail address]
On 6/16/21 11:21 AM, Sakib Sajal wrote:
lmdb provides a high-performance embedded transactional
database in the form of a key-value store.
Recipe is ported from meta-qt5-extra layer.
Signed-off-by: Sakib Sajal
---
.../files/0001-Patch-the-main-Makefile.patch | 90 +++
meta-oe/recipes-dbs/lmdb/lmdb_git.bb | 22 +
2 files changed, 112 insertions(+)
create mode 100644
meta-oe/recipes-dbs/lmdb/files/0001-Patch-the-main-Makefile.patch
create mode 100644 meta-oe/recipes-dbs/lmdb/lmdb_git.bb
diff --git
a/meta-oe/recipes-dbs/lmdb/files/0001-Patch-the-main-Makefile.patch
b/meta-oe/recipes-dbs/lmdb/files/0001-Patch-the-main-Makefile.patch
new file mode 100644
index 0..9ba626101
--- /dev/null
+++ b/meta-oe/recipes-dbs/lmdb/files/0001-Patch-the-main-Makefile.patch
@@ -0,0 +1,90 @@
+From: =?UTF-8?q?Andreas=20M=C3=BCller?=
+Date: Tue, 1 Sep 2015 22:54:31 +0200
+Subject: [PATCH] Patch the main Makefile to allow for a build that
complies to packaging guidelines.
+MIME-Version: 1.0
+Content-Type: text/plain; charset=UTF-8
+Content-Transfer-Encoding: 8bit
+
+Taken from [1]
+
+[1]
https://src.fedoraproject.org/rpms/lmdb/raw/master/f/lmdb-make.patch
+
+Upstream-Status: Pending
+
+
+diff --git a/Makefile b/Makefile
+--- a/Makefile
b/Makefile
+@@ -26,6 +26,7 @@ OPT = -O2 -g
+ CFLAGS = $(THREADS) $(OPT) $(W) $(XCFLAGS)
+ LDLIBS =
+ SOLIBS =
++SOVERSION = 0.0.0
+ SOEXT = .so
+ prefix = /usr/local
+ exec_prefix = $(prefix)
+@@ -38,7 +39,7 @@ mandir = $(datarootdir)/man
+
+
+ IHDRS = lmdb.h
+-ILIBS = liblmdb.a liblmdb$(SOEXT)
++ILIBS = liblmdb$(SOEXT) liblmdb$(SOEXT).$(SOVERSION)
+ IPROGS = mdb_stat mdb_copy mdb_dump mdb_load
+ IDOCS = mdb_stat.1 mdb_copy.1 mdb_dump.1 mdb_load.1
+ PROGS = $(IPROGS) mtest mtest2 mtest3 mtest4 mtest5
+@@ -49,13 +50,13 @@ install: $(ILIBS) $(IPROGS) $(IHDRS)
+ mkdir -p $(DESTDIR)$(libdir)
+ mkdir -p $(DESTDIR)$(includedir)
+ mkdir -p $(DESTDIR)$(mandir)/man1
+- for f in $(IPROGS); do cp $$f $(DESTDIR)$(bindir); done
+- for f in $(ILIBS); do cp $$f $(DESTDIR)$(libdir); done
+- for f in $(IHDRS); do cp $$f $(DESTDIR)$(includedir); done
+- for f in $(IDOCS); do cp $$f $(DESTDIR)$(mandir)/man1; done
++ for f in $(IPROGS); do cp -a $$f $(DESTDIR)$(bindir); done
++ for f in $(ILIBS); do cp -a $$f $(DESTDIR)$(libdir); done
++ for f in $(IHDRS); do cp -a $$f $(DESTDIR)$(includedir); done
++ for f in $(IDOCS); do cp -a $$f $(DESTDIR)$(mandir)/man1; done
+
+ clean:
+- rm -rf $(PROGS) *.[ao] *.[ls]o *~ testdb
++ rm -rf $(PROGS) *.[ao] *.[ls]o* *~ testdb
+
+ test: all
+ rm -rf testdb && mkdir testdb
+@@ -64,20 +65,24 @@ test: all
+ liblmdb.a: mdb.o midl.o
+ $(AR) rs $@ mdb.o midl.o
+
+-liblmdb$(SOEXT): mdb.lo midl.lo
++liblmdb$(SOEXT): liblmdb$(SOEXT).$(SOVERSION)
++ rm -f $@
++ ln -s $< $@
++
++liblmdb$(SOEXT).$(SOVERSION): mdb.lo midl.lo
+ # $(CC) $(LDFLAGS) -pthread -shared -Wl,-Bsymbolic -o $@ mdb.o
midl.o $(SOLIBS)
+- $(CC) $(LDFLAGS) -pthread -shared -o $@ mdb.lo midl.lo $(SOLIBS)
++ $(CC) $(LDFLAGS) -pthread -shared -Wl,-soname,$@ -o $@ mdb.lo
midl.lo $(SOLIBS)
+
+-mdb_stat: mdb_stat.o liblmdb.a
+-mdb_copy: mdb_copy.o liblmdb.a
+-mdb_dump: mdb_dump.o liblmdb.a
+-mdb_load: mdb_load.o liblmdb.a
+-mtest: mtest.o liblmdb.a
+-mtest2: mtest2.o liblmdb.a
+-mtest3: mtest3.o liblmdb.a
+-mtest4: mtest4.o liblmdb.a
+-mtest5: mtest5.o liblmdb.a
+-mtest6: mtest6.o liblmdb.a
++mdb_stat: mdb_stat.o liblmdb.so
++mdb_copy: mdb_copy.o liblmdb.so
++mdb_dump: mdb_dump.o liblmdb.so
++mdb_load: mdb_load.o liblmdb.so
++mtest: mtest.o liblmdb.so
++mtest2: mtest2.o liblmdb.so
++mtest3: mtest3.o liblmdb.so
++mtest4: mtest4.o liblmdb.so
++mtest5: mtest5.o liblmdb.so
++mtest6: mtest6.o liblmdb.so
+
+ mdb.o: mdb.c lmdb.h midl.h
+ $(CC) $(CFLAGS) $(CPPFLAGS) -c mdb.c
diff --git a/meta-oe/recipes-dbs/lmdb/lmdb_git.bb
b/meta-oe/recipes-dbs/lmdb/lmdb_git.bb
new file mode 100644
index 0..22db6d44b
--- /dev/null
+++ b/meta-oe/recipes-dbs/lmdb/lmdb_git.bb
@@ -0,0 +1,22 @@
+SUMMARY = "Symas Lightning Memory-Mapped Database (LMDB)"
+HOMEPAGE = "http://symas.com/mdb/;
+LICENSE = "OLDAP-2.8"
We might need a copy of this license in meta-oe/licenses too.
+LIC_FILES_CHKSUM =
"file://LICENSE;md5=153d07ef052c4a37a8fac23bc6031972"
+
+SRC_URI = " \
+ git://github.com/LMDB/lmdb.git;nobranch=1 \
+ file://0001-Patch-the-main-Makefile.patch \
+"
+SRCREV = "8ad7be2510414b9506ec9f9e24f24d04d9b04a1a"
+S = "${WORKDIR}/git/libraries/liblmdb"
+PV = "0.9.29"
remove PV here and rename recipe to lmdb_0.0.29.bb
+
+do_compile() {
+ oe_runmake "CC=${CC}"
+}
+
+do_install() {
+ oe_runmake
[oe] [meta-oe][PATCH] libtinyxml2: upgrade 8.1.0 -> 9.0.0
Signed-off-by: Pierre-Jean Texier
---
.../libtinyxml2/{libtinyxml2_8.1.0.bb => libtinyxml2_9.0.0.bb} | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
rename meta-oe/recipes-support/libtinyxml2/{libtinyxml2_8.1.0.bb =>
libtinyxml2_9.0.0.bb} (89%)
diff --git a/meta-oe/recipes-support/libtinyxml2/libtinyxml2_8.1.0.bb
b/meta-oe/recipes-support/libtinyxml2/libtinyxml2_9.0.0.bb
similarity index 89%
rename from meta-oe/recipes-support/libtinyxml2/libtinyxml2_8.1.0.bb
rename to meta-oe/recipes-support/libtinyxml2/libtinyxml2_9.0.0.bb
index 5245059a89..215f32a785 100644
--- a/meta-oe/recipes-support/libtinyxml2/libtinyxml2_8.1.0.bb
+++ b/meta-oe/recipes-support/libtinyxml2/libtinyxml2_9.0.0.bb
@@ -6,7 +6,7 @@ LIC_FILES_CHKSUM =
"file://LICENSE.txt;md5=135624eef03e1f1101b9ba9ac9b5fffd"
SRC_URI = "git://github.com/leethomason/tinyxml2.git"
-SRCREV = "3291390336141573e51dfa991b4179c8bcd8f306"
+SRCREV = "1dee28e51f9175a31955b9791c74c430fe13dc82"
S = "${WORKDIR}/git"
--
2.17.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#92018):
https://lists.openembedded.org/g/openembedded-devel/message/92018
Mute This Topic: https://lists.openembedded.org/mt/83769848/21656
Group Owner: openembedded-devel+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
Re: [oe] [PATCH] openvpn: add CVE-2020-7224 and CVE-2020-27569 to allowlist
Thanks for the patch
On 6/24/21 12:24 AM, Akifumi Chikazawa wrote:
CVE-2020-7224 and CVE-2020-27569 are for Aviatrix OpenVPN client,
not for openvpn.
Signed-off-by: Akifumi Chikazawa
---
meta-networking/recipes-support/openvpn/openvpn_2.5.2.bb | 3 +++
1 file changed, 3 insertions(+)
we are on 2.5.3 on master, is this meant for master ? if so , please
rebase it on latest master/master-next and resend, if its meant for a
release branch then prefix the subject line with [release-name] so
release maintainer gets notified too.
diff --git a/meta-networking/recipes-support/openvpn/openvpn_2.5.2.bb
b/meta-networking/recipes-support/openvpn/openvpn_2.5.2.bb
index f82107dbe..646f0387a 100644
--- a/meta-networking/recipes-support/openvpn/openvpn_2.5.2.bb
+++ b/meta-networking/recipes-support/openvpn/openvpn_2.5.2.bb
@@ -17,6 +17,9 @@ UPSTREAM_CHECK_URI = "https://openvpn.net/community-downloads;
SRC_URI[md5sum] = "7643f135b49aee49df7d83c1f434dc4e"
SRC_URI[sha256sum] =
"b9d295988b34e39964ac475b619c3585d667b36c350cf1adec19e5e3c843ba11"
+# CVE-2020-7224 and CVE-2020-27569 are for Aviatrix OpenVPN client, not for openvpn.
+CVE_CHECK_WHITELIST += "CVE-2020-7224 CVE-2020-27569"
+
SYSTEMD_SERVICE_${PN} += "openvpn@loopback-server.service
openvpn@loopback-client.service"
SYSTEMD_AUTO_ENABLE = "disable"
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#92017):
https://lists.openembedded.org/g/openembedded-devel/message/92017
Mute This Topic: https://lists.openembedded.org/mt/83755999/21656
Group Owner: openembedded-devel+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[oe] [meta-python][PATCH 2/2] python3-tqdm: Upgrade 4.61.0 -> 4.61.1
Upgrade to release 4.61.1:
- fix utils._screen_shape_linux() sometimes raising ValueError
- minor build/CI framework updates
- minor documentation updates
Signed-off-by: Leon Anavi
---
.../python/{python3-tqdm_4.61.0.bb => python3-tqdm_4.61.1.bb} | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
rename meta-python/recipes-devtools/python/{python3-tqdm_4.61.0.bb =>
python3-tqdm_4.61.1.bb} (78%)
diff --git a/meta-python/recipes-devtools/python/python3-tqdm_4.61.0.bb
b/meta-python/recipes-devtools/python/python3-tqdm_4.61.1.bb
similarity index 78%
rename from meta-python/recipes-devtools/python/python3-tqdm_4.61.0.bb
rename to meta-python/recipes-devtools/python/python3-tqdm_4.61.1.bb
index 0c04b676a6..7fa30e7f9c 100644
--- a/meta-python/recipes-devtools/python/python3-tqdm_4.61.0.bb
+++ b/meta-python/recipes-devtools/python/python3-tqdm_4.61.1.bb
@@ -5,7 +5,7 @@ SECTION = "devel/python"
LICENSE = "MIT & MPL-2.0"
LIC_FILES_CHKSUM = "file://LICENCE;md5=59e4271a933d33edfe60237db377a14b"
-SRC_URI[sha256sum] =
"cd5791b5d7c3f2f1819efc81d36eb719a38e0906a7380365c556779f585ea042"
+SRC_URI[sha256sum] =
"24be966933e942be5f074c29755a95b315c69a91f839a29139bf26e2d3fd"
inherit pypi setuptools3
--
2.17.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#92015):
https://lists.openembedded.org/g/openembedded-devel/message/92015
Mute This Topic: https://lists.openembedded.org/mt/83762360/21656
Group Owner: openembedded-devel+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[oe] [meta-python][PATCH 1/2] python3-astroid: Upgrade 2.5.8 -> 2.6.0
Upgrade to release 2.6.0:
- Appveyor and travis are no longer used in the continuous
integration
- `setuptools_scm`` has been removed and replaced by ``tbump`` in
order to not have hidden runtime dependencies to setuptools
- ``NodeNg``, the base node class, is now accessible from
``astroid`` or ``astroid.nodes`` as it can be used for typing
- pdate enum brain to improve inference of .name and .value
dynamic class attributes
- Removed ``Repr``, ``Exec``, and ``Print`` nodes as the ``ast``
nodes they represented have been removed with the change to
Python 3
- Deprecate ``Ellipsis`` node. It will be removed with the next
minor release
- Deprecated ``Index`` and ``ExtSlice`` nodes
- Updated all Match nodes to be internally consistent
- Add ``Pattern`` base class
Signed-off-by: Leon Anavi
---
.../{python3-astroid_2.5.8.bb => python3-astroid_2.6.0.bb} | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
rename meta-python/recipes-devtools/python/{python3-astroid_2.5.8.bb =>
python3-astroid_2.6.0.bb} (89%)
diff --git a/meta-python/recipes-devtools/python/python3-astroid_2.5.8.bb
b/meta-python/recipes-devtools/python/python3-astroid_2.6.0.bb
similarity index 89%
rename from meta-python/recipes-devtools/python/python3-astroid_2.5.8.bb
rename to meta-python/recipes-devtools/python/python3-astroid_2.6.0.bb
index 68165abd1c..e6c485bccf 100644
--- a/meta-python/recipes-devtools/python/python3-astroid_2.5.8.bb
+++ b/meta-python/recipes-devtools/python/python3-astroid_2.6.0.bb
@@ -4,7 +4,7 @@ SECTION = "devel/python"
LICENSE = "LGPL-2.1"
LIC_FILES_CHKSUM = "file://LICENSE;md5=a70cf540abf41acb644ac3b621b2fad1"
-SRC_URI[sha256sum] =
"2476b7f0d6cec13f4c1f53b54bea2ce072310ac9fc7acb669d5270190c748042"
+SRC_URI[sha256sum] =
"09bdb456e02564731f8b5957cdd0c98a7f01d2db5e90eb1d794c353c28bfd705"
inherit pypi setuptools3
--
2.17.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#92016):
https://lists.openembedded.org/g/openembedded-devel/message/92016
Mute This Topic: https://lists.openembedded.org/mt/83762361/21656
Group Owner: openembedded-devel+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
Re: [oe] [PATCH] layers: set LAYERSERIES_COMPAT with honister
On Mon, Jun 7, 2021 at 10:21 AM Martin Jansa wrote: > > Then I believe layer index should be fixed to support longer values, there > are layers which are compatible with multiple releases and it works fine with > bitbake/oe-core, layer index parsing shouldn't be more strict than the > mechanism which is using these variables. > Hi, I agree with Martin, we have examples of compatibility since sumo, we will surely split but this is an unreasonable limit. A.A. > On Fri, Jun 4, 2021 at 11:26 AM Kai wrote: >> >> On 6/4/21 4:52 PM, Martin Jansa wrote: >> >> On Fri, Jun 4, 2021 at 3:44 AM kai wrote: >>> >>> From: Kai Kang >>> >>> Set LAYERSERIES_COMPAT with 'honister' which align with oe-core. >>> >> >> I think it's bad practice to claim honister support this early in its >> development cycle. It won't happen with well-maintained layers like meta-oe, >> but if some less frequently updated layer sets the compatibility with >> honister now and then doesn't get necessary updates to stay compatible with >> honister in next 4 months, then whole purpose of LAYERSERIES_COMPAT will get >> broken just by claiming the compatibility too soon (without even knowing >> what final honister will contain). >> >> Changing it after release freeze in oe-core seems much better time to do it. >> >> The same does apply on the meta-qt5 PR you've sent today >> https://github.com/meta-qt5/meta-qt5/pull/416/commits >> >> Cheers, >> >> Got it. Thanks very much. >> >> I've comment on the meta-qt5 PR that too long strings in LAYERSERIES_COMPAT >> will cause layer index complains: >> >> WARNING: YPCompatibleVersion.name: dunfell gatesgarth hardknott: length 28 >> exceeds maximum (25), truncating >> >> So what is policy to keep old codenames in LAYERSERIES_COMPAT? Is that ok >> to keep latest 2(hardknott and honister), please? >> >> Regards, >> >> -- >> Kai Kang >> Wind River Linux > > > > -=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#92014): https://lists.openembedded.org/g/openembedded-devel/message/92014 Mute This Topic: https://lists.openembedded.org/mt/83299354/21656 Group Owner: openembedded-devel+ow...@lists.openembedded.org Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub [arch...@mail-archive.com] -=-=-=-=-=-=-=-=-=-=-=-
[oe] [meta-python][PATCH] python3-m2crypto: avoid host contamination for swig
From: Kai Kang
If the version of libssl-dev is not match the version of libssl on the
build machine, it fails to compile SWIG/_m2crypto_wrap.c which is
created by swig for python3-m2crypto-native:
| SWIG/_m2crypto_wrap.c:9757:19: error: dereferencing pointer to
incomplete type 'struct stack_st'
| if (arg1) (arg1)->num = arg2;
| ^~
But it works if no libssl-dev installed on the build machine.
Export STAGING_DIR to make existing patch
0001-setup.py-link-in-sysroot-not-in-host-directories.patch work. And
filter out '/usr/inlucde' from include pathes of swig.
Signed-off-by: Kai Kang
---
.../avoid-host-contamination.patch| 23 +++
.../python/python3-m2crypto_0.37.1.bb | 3 +++
2 files changed, 26 insertions(+)
create mode 100644
meta-python/recipes-devtools/python/python3-m2crypto/avoid-host-contamination.patch
diff --git
a/meta-python/recipes-devtools/python/python3-m2crypto/avoid-host-contamination.patch
b/meta-python/recipes-devtools/python/python3-m2crypto/avoid-host-contamination.patch
new file mode 100644
index 0..9d9b8449b
--- /dev/null
+++
b/meta-python/recipes-devtools/python/python3-m2crypto/avoid-host-contamination.patch
@@ -0,0 +1,23 @@
+Filter out '/usr/include' for swig to avoid host contamination issue.
+
+Upstream-Status: Upstream-Status: Inappropriate [cross compile specific]
+
+Signed-off-by: Kai Kang
+---
+ setup.py | 3 ++-
+ 1 file changed, 2 insertions(+), 1 deletion(-)
+
+diff --git a/setup.py b/setup.py
+index 5a12981..389d49f 100644
+--- a/setup.py
b/setup.py
+@@ -153,7 +153,8 @@ class _M2CryptoBuildExt(build_ext.build_ext):
+ self.swig_opts.append('-py3')
+
+ # swig seems to need the default header file directories
+-self.swig_opts.extend(['-I%s' % i for i in
_get_additional_includes()])
++self.swig_opts.extend(['-I%s' % i for i in _get_additional_includes()
++if i != '/usr/include'])
+
+ log.debug('self.include_dirs = %s', self.include_dirs)
+ log.debug('self.library_dirs = %s', self.library_dirs)
diff --git a/meta-python/recipes-devtools/python/python3-m2crypto_0.37.1.bb
b/meta-python/recipes-devtools/python/python3-m2crypto_0.37.1.bb
index 2284a43a3..b3da87fb7 100644
--- a/meta-python/recipes-devtools/python/python3-m2crypto_0.37.1.bb
+++ b/meta-python/recipes-devtools/python/python3-m2crypto_0.37.1.bb
@@ -10,6 +10,7 @@ SRC_URI +=
"file://0001-setup.py-link-in-sysroot-not-in-host-directories.patch \
file://cross-compile-platform.patch \
file://0001-Allow-verify_cb_-to-be-called-with-ok-True.patch \
file://0001-Use-of-RSA_SSLV23_PADDING-has-been-deprecated.patch \
+file://avoid-host-contamination.patch \
"
SRC_URI[sha256sum] =
"e4e42f068b78ccbf113e5d0a72ae5f480f6c3ace4940b91e4fff5598cfff6fb3"
@@ -42,4 +43,6 @@ SWIG_FEATURES_append_mipsarch = "
-D_MIPS_SZPTR=${SITEINFO_BITS}"
SWIG_FEATURES_append_powerpc64le = " -D__powerpc64__"
export SWIG_FEATURES
+export STAGING_DIR
+
BBCLASSEXTEND = "native"
--
2.17.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#92013):
https://lists.openembedded.org/g/openembedded-devel/message/92013
Mute This Topic: https://lists.openembedded.org/mt/83756632/21656
Group Owner: openembedded-devel+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[oe] [PATCH] nss: add CVE-2006-5201 to allowlist
From: Masaki Ambai
CVE-2006-5201 affects only using an RSA key with exponent 3 on Sun Solaris.
Signed-off-by: Masaki Ambai
---
meta-oe/recipes-support/nss/nss_3.64.bb | 3 +++
1 file changed, 3 insertions(+)
diff --git a/meta-oe/recipes-support/nss/nss_3.64.bb
b/meta-oe/recipes-support/nss/nss_3.64.bb
index d4d7a8733..98be21d40 100644
--- a/meta-oe/recipes-support/nss/nss_3.64.bb
+++ b/meta-oe/recipes-support/nss/nss_3.64.bb
@@ -279,3 +279,6 @@ FILES_${PN}-dev = "\
RDEPENDS_${PN}-smime = "perl"
BBCLASSEXTEND = "native nativesdk"
+
+# CVE-2006-5201 affects only Sun Solaris
+CVE_CHECK_WHITELIST += "CVE-2006-5201"
--
2.25.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#92012):
https://lists.openembedded.org/g/openembedded-devel/message/92012
Mute This Topic: https://lists.openembedded.org/mt/83756124/21656
Group Owner: openembedded-devel+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[oe] [PATCH] openvpn: add CVE-2020-7224 and CVE-2020-27569 to allowlist
CVE-2020-7224 and CVE-2020-27569 are for Aviatrix OpenVPN client,
not for openvpn.
Signed-off-by: Akifumi Chikazawa
---
meta-networking/recipes-support/openvpn/openvpn_2.5.2.bb | 3 +++
1 file changed, 3 insertions(+)
diff --git a/meta-networking/recipes-support/openvpn/openvpn_2.5.2.bb
b/meta-networking/recipes-support/openvpn/openvpn_2.5.2.bb
index f82107dbe..646f0387a 100644
--- a/meta-networking/recipes-support/openvpn/openvpn_2.5.2.bb
+++ b/meta-networking/recipes-support/openvpn/openvpn_2.5.2.bb
@@ -17,6 +17,9 @@ UPSTREAM_CHECK_URI = "https://openvpn.net/community-downloads;
SRC_URI[md5sum] = "7643f135b49aee49df7d83c1f434dc4e"
SRC_URI[sha256sum] =
"b9d295988b34e39964ac475b619c3585d667b36c350cf1adec19e5e3c843ba11"
+# CVE-2020-7224 and CVE-2020-27569 are for Aviatrix OpenVPN client, not for
openvpn.
+CVE_CHECK_WHITELIST += "CVE-2020-7224 CVE-2020-27569"
+
SYSTEMD_SERVICE_${PN} += "openvpn@loopback-server.service
openvpn@loopback-client.service"
SYSTEMD_AUTO_ENABLE = "disable"
--
2.25.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#92011):
https://lists.openembedded.org/g/openembedded-devel/message/92011
Mute This Topic: https://lists.openembedded.org/mt/83755999/21656
Group Owner: openembedded-devel+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[oe] [meta-oe] [PATCH] function2: upgrade 4.1.0 -> 4.2.0
Signed-off-by: Zang Ruochen
---
.../function2/{function2_4.1.0.bb => function2_4.2.0.bb}| 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
rename meta-oe/recipes-support/function2/{function2_4.1.0.bb =>
function2_4.2.0.bb} (92%)
diff --git a/meta-oe/recipes-support/function2/function2_4.1.0.bb
b/meta-oe/recipes-support/function2/function2_4.2.0.bb
similarity index 92%
rename from meta-oe/recipes-support/function2/function2_4.1.0.bb
rename to meta-oe/recipes-support/function2/function2_4.2.0.bb
index 56dc30acdc..14b9883373 100644
--- a/meta-oe/recipes-support/function2/function2_4.1.0.bb
+++ b/meta-oe/recipes-support/function2/function2_4.2.0.bb
@@ -3,7 +3,7 @@ DESCRIPTION = "Provides improved implementations of
std::function."
HOMEPAGE = "https://naios.github.io/function2;
LICENSE = "BSL-1.0"
LIC_FILES_CHKSUM = "file://LICENSE.txt;md5=e4224ccaecb14d942c71d31bef20d78c"
-SRCREV = "3a0746bf5f601dfed05330aefcb6854354fce07d"
+SRCREV = "02ca99831de59c7c3a4b834789260253cace0ced"
PV .= "+git${SRCPV}"
SRC_URI += "gitsm://github.com/Naios/function2"
--
2.25.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#92010):
https://lists.openembedded.org/g/openembedded-devel/message/92010
Mute This Topic: https://lists.openembedded.org/mt/83755214/21656
Group Owner: openembedded-devel+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
[oe] [meta-python] [PATCH] python3-h5py: upgrade 3.2.1 -> 3.3.0
Signed-off-by: Zang Ruochen
---
.../python/{python3-h5py_3.2.1.bb => python3-h5py_3.3.0.bb} | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
rename meta-python/recipes-devtools/python/{python3-h5py_3.2.1.bb =>
python3-h5py_3.3.0.bb} (90%)
diff --git a/meta-python/recipes-devtools/python/python3-h5py_3.2.1.bb
b/meta-python/recipes-devtools/python/python3-h5py_3.3.0.bb
similarity index 90%
rename from meta-python/recipes-devtools/python/python3-h5py_3.2.1.bb
rename to meta-python/recipes-devtools/python/python3-h5py_3.3.0.bb
index 5faa0b8080..58498f89a0 100644
--- a/meta-python/recipes-devtools/python/python3-h5py_3.2.1.bb
+++ b/meta-python/recipes-devtools/python/python3-h5py_3.3.0.bb
@@ -4,7 +4,7 @@ SECTION = "devel/python"
LICENSE = "BSD-3-Clause"
LIC_FILES_CHKSUM = "file://LICENSE;md5=113251d71fb0384712c719b567261c5c"
-SRC_URI[sha256sum] =
"89474be911bfcdb34cbf0d98b8ec48b578c27a89fdb1ae4ee7513f1ef8d9249e"
+SRC_URI[sha256sum] =
"e0dac887d779929778b3cfd13309a939359cc9e74756fc09af7c527a82797186"
SRC_URI_append = " \
file://0001-setup_build.py-avoid-absolute-path.patch \
--
2.25.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#92009):
https://lists.openembedded.org/g/openembedded-devel/message/92009
Mute This Topic: https://lists.openembedded.org/mt/83755208/21656
Group Owner: openembedded-devel+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
