[OE-core] udev/mount.sh: use lazy umount

Hi, umount will fail if there are processes accessing files at the device, use lazy umount to avoid this problem. I found this patch [1] a long long time ago, but don't see it in master now. Any reason why it was not accepted? Is there any harm in using lazy umount? I know that it is not a

Re: [OE-core] [PATCH] devtool: Only register each plugin once

On Mon, Oct 10, 2016 at 7:19 AM, Ola x Nilsson wrote: > When a devtool plugin is shadowed in a higher-priorty layer the > register_commands method was called on the shadowing plugin once for > each found plugin with that name. A simple unique operation on the list > of

[OE-core] [PATCH][master][krogoth] archiver: fix gcc-source handling

The source archiver was not handling the gcc-source target correctly, since it uses the work-shared directory, we don't want to unpack and patch it twice, just as the comments say, but the code was not there to check for the gcc-source target. [YOCTO #10265] Signed-off-by: Saul Wold

[OE-core] [PATCH] connman: get the correct network interface name from dmesg during NFS booting

Following are the drawbacks with the current logic: 1. If ip=dhcp in the boot command line, then the current code makes connman to ignore "eth0" network interface from managing internet connections. This can cause NFS boot failure, if the network interface used for NFS booting is other than

[OE-core] [PATCH] package.bbclass: allow using EXCLUDE_FROM_SHLIBS for subpackages

Some packages containing shared libraries might be registered as shlib providers when they shouldn't (for example, the lib is for their private use and must not generate any dependency). EXCLUDE_FROM_SHLIBS is targeted at that, but it could be set for entire recipe only. This patch expands

[OE-core] [PATCH][krogoth] bash: Security fix CVE-2016-0634

References to upstream patch: https://ftp.gnu.org/pub/gnu/bash/bash-4.3-patches/bash43-047 http://openwall.com/lists/oss-security/2016/09/16/8 Signed-off-by: Sona Sarmadi --- .../recipes-extended/bash/bash/CVE-2016-0634.patch | 136 +

[OE-core] [PATCH] devtool: Only register each plugin once

When a devtool plugin is shadowed in a higher-priorty layer the register_commands method was called on the shadowing plugin once for each found plugin with that name. A simple unique operation on the list of loaded plugins solves that problem. It may still be a problem that each plugin -

Re: [OE-core] [PATCH V2] subprocess: remove strings and migrate to direct arrays

On Sun, Oct 9, 2016 at 4:44 AM, Richard Purdie < richard.pur...@linuxfoundation.org> wrote: > On Thu, 2016-10-06 at 20:09 -0700, Stephano Cetola wrote: > > > > When using subprocess call and check_output, it is better to use > > arrays > > rather than strings when possible to avoid whitespace and

Re: [OE-core] [PATCH V2] subprocess: remove strings and migrate to direct arrays

On 10/09, Richard Purdie wrote: > On Thu, 2016-10-06 at 20:09 -0700, Stephano Cetola wrote: > > > > When using subprocess call and check_output, it is better to use > > arrays > > rather than strings when possible to avoid whitespace and quoting > > problems. > > > > [ YOCTO #9342 ] > > > >

Re: [OE-core] [PATCH] guile: Remove bashisms

On 26 September 2016 at 07:51, wrote: > Remove bashisms from do_populate_sysroot task > This causes a change of behaviour that results in a stage error: ERROR: guile-2.0.12-r0 do_populate_sysroot: The recipe guile is trying to install files into a shared area when those

Re: [OE-core] CVE-2016-0634 -- bash prompt expanding $HOSTNAME patch for krogoth

On 10 October 2016 at 12:35, Sona Sarmadi wrote: > I guess you mean striplevel? Right? It didn’t work with stripnum but it > worked with striplevel: > > Yeah, sorry, I've a cold trying to drown my brain. pnum is the deprecated name, stripelevel is the replacement. Ross

Re: [OE-core] CVE-2016-0634 -- bash prompt expanding $HOSTNAME patch for krogoth

Thanks Ross, I guess you mean striplevel? Right? It didn’t work with stripnum but it worked with striplevel: file://CVE-2016-0634.patch;striplevel=0 \ From: Burton, Ross [mailto:ross.bur...@intel.com] Sent: den 10 oktober 2016 13:26 To: Sona Sarmadi Cc: Armin

Re: [OE-core] CVE-2016-0634 -- bash prompt expanding $HOSTNAME patch for krogoth

On 10 October 2016 at 10:49, Sona Sarmadi wrote: > ERROR: bash-4.3.30-r0 do_patch: Command Error: 'quilt --quiltrc > /data/fb/hopo/6.0/poky/build-qemuppc/tmp/sysroots/x86_64-linux/etc/quiltrc > push' exited with 1 Output: > Applying patch CVE-2016-0634.patch > can't find

[OE-core] CVE-2016-0634 -- bash prompt expanding $HOSTNAME patch for krogoth

Hi Armin, I am trying to backport the following patch to bash in krogoth: https://ftp.gnu.org/pub/gnu/bash/bash-4.3-patches/bash43-047 Reference to CVE assignment: http://openwall.com/lists/oss-security/2016/09/16/8 The patch can be applied with: `patch -p0' "patch -p0 <

[OE-core] [PATCH 0/4] flex & gnutls fixes

Backported cve fixes for flex and gnutls. Also minor improvement to error handling in depexp. - Jussi The following changes since commit b9d6a7cc234f44e44e5421191924b7463e9c0a9d: bitbake: main: Check bitbake server-only port is a number (2016-10-09 12:33:26 +0100) are available in the

[OE-core] [PATCH 2/4] flex: Update upstream check uri

Flex has moved to github, update UPSTREAM_CHECK_URI. Signed-off-by: Jussi Kukkonen --- meta/recipes-devtools/flex/flex_2.6.0.bb | 2 ++ 1 file changed, 2 insertions(+) diff --git a/meta/recipes-devtools/flex/flex_2.6.0.bb b/meta/recipes-devtools/flex/flex_2.6.0.bb

[OE-core] [PATCH 4/4] depexp: Close UI with error message on NoProvider event

Without this the UI just sits there doing nothing. Showing an infobar in-UI would be nicer but not much more useful since currently user couldn't do anything in-UI to fix the situation. Implementation is based on the one in knotty. Fixes [YOCTO #9288] Signed-off-by: Jussi Kukkonen

[OE-core] [PATCH 1/4] gnutls: Backport certificate check fix

Previously the OCSP certificate check wouldn't verify the serial length and could succeed in cases it shouldn't (CVE-2016-7444). Signed-off-by: Jussi Kukkonen --- .../gnutls/gnutls/CVE-2016-7444.patch | 35 ++

[OE-core] [PATCH 3/4] flex: Backport buffer overflow fix

Fix a heap-based buffer overflow in yy_get_next_buffer() (CVE-2016-6354). Signed-off-by: Jussi Kukkonen --- .../recipes-devtools/flex/flex/CVE-2016-6354.patch | 59 ++ meta/recipes-devtools/flex/flex_2.6.0.bb | 1 + 2 files changed, 60

[OE-core] [wic][PATCH] canned-wks: use GPT partition table

According to UEFI specification all EFI platforms must support GUID Partition Table(GPT) disk layout. Here is a list of advantages of using GPT disk layout over the legacy MBR partitioning: - Logical Block Addresses (LBAs) are 64 bits (rather than 32 bits). - Supports many partitions (rather

[OE-core] [wic][PATCH] systemd-bootdisk.wks: update kernel command line

Used ttyS0 console. Removed usage of ttyPCH0 (FRI2 leftover) Decreased bootloader timeout to 5 seconds Removed 'vmalloc=256MB snd-hda-intel.enable_msi=0' as it's not needed for any of reference BSPs. Signed-off-by: Ed Bartosh ---