Re: [OE-core] Review request 0/1: python3-awscrt: Fix build with usrmerge [LIN1021-1466]

missing? (LOCAL REV: NOT UPSTREAM) - Send to upstream on 20210914 Signed-off-by: Robert Yang == Testing == * Commands WRTEMPLATE = "feature/usrmerge feature/aws" $ bitbake python3-awscrt * Expected Results Works well * Applicable to * Tested configurations

[OE-core] [meta-iot-cloud][PATCH 1/1] python3-awscrt: Fix build with usrmerge

r an IMPORTED target, or an ALIAS target is missing? (LOCAL REV: NOT UPSTREAM) - Send to upstream on 20210914 Signed-off-by: Robert Yang --- recipes-aws/python/python3-awscrt_0.10.8.bb | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/recipes-aws/python/python3-awscrt_0.10.8.bb

[OE-core] Review request 0/1: python3-awscrt: Fix build with usrmerge [LIN1021-1466]

t "LibCrypto::Crypto" but the target was not found. Perhaps a find_package() call is missing for an IMPORTED target, or an ALIAS target is missing? (LOCAL REV: NOT UPSTREAM) - Send to upstream on 20210914 Signed-off-by: Robert Yang == Testin

Re: [OE-core] [PATCH] [master] [dunfell] [hardknott] Revert "db: update CVE_PRODUCT"

On Tue, 2021-09-14 at 15:32 -1000, Steve Sakoman wrote: > > > On Tue, Sep 14, 2021, 3:15 PM Mittal, Anuj > wrote: > > On Tue, 2021-09-14 at 08:03 -1000, Steve Sakoman wrote: > > > The CVE database correctly reports CVEs for oracle_berkley_db and > > > berkley_db.  We use the oracle_berkley_db

Re: [OE-core] [PATCH] [master] [dunfell] [hardknott] Revert "db: update CVE_PRODUCT"

On Tue, Sep 14, 2021, 3:15 PM Mittal, Anuj wrote: > On Tue, 2021-09-14 at 08:03 -1000, Steve Sakoman wrote: > > The CVE database correctly reports CVEs for oracle_berkley_db and > > berkley_db. We use the oracle_berkley_db source tree and therefore > > should only check for oracle_berkely_db

Re: [OE-core] [PATCH] [master] [dunfell] [hardknott] Revert "db: update CVE_PRODUCT"

On Tue, 2021-09-14 at 08:03 -1000, Steve Sakoman wrote: > The CVE database correctly reports CVEs for oracle_berkley_db and > berkley_db.  We use the oracle_berkley_db source tree and therefore > should only check for oracle_berkely_db CVEs. Otherwise the scanner > falsely reports CVEs that are

[OE-core] [meta-skeleton][PATCH 1/2] hello-mod/hello.c: convert to module_init/module_exit

Switch away from the old init_module/cleanup_module function names for the main entry points. Change them to the documented method with module_init() and module_exit() markers next to static functions. Signed-off-by: Trevor Woerner --- meta-skeleton/recipes-kernel/hello-mod/files/hello.c | 6

[OE-core] [meta-skeleton][PATCH 2/2] hello-mod/hello.c: convert printk to pr_xxx

Convert to the newer pr_xxx aliases for logging, which embed the log level in the macro names. Signed-off-by: Trevor Woerner --- meta-skeleton/recipes-kernel/hello-mod/files/hello.c | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git

[OE-core] [dunfell][PATCH] libsndfile: Security fix for CVE-2021-3246

From: Armin Kuster Source: https://github.com/libsndfile/libsndfile MR: 112098 Type: Security Fix Disposition: Backport from https://github.com/libsndfile/libsndfile/pull/713 ChangeID: 10d137de063b7a1e543ee96fbcf948945a452869 Description: Signed-off-by: Armin Kuster ---

[OE-core] [PATCH] python3-more-itertools: upgrade 8.8.0 -> 8.9.0

Signed-off-by: Wang Mingyu --- ...-more-itertools_8.8.0.bb => python3-more-itertools_8.9.0.bb} | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) rename meta/recipes-devtools/python/{python3-more-itertools_8.8.0.bb => python3-more-itertools_8.9.0.bb} (86%) diff --git

[OE-core] [PATCH] strace: upgrade 5.13 -> 5.14

Improvements Implemented decoding of memfd_secret and quotactl_fd syscalls, introduced in Linux 5.14. Enhanced prctl syscall decoding. Enhanced decoding of IFLA_* netlink attributes. Enhanced decoding of MDBA_ROUTER_PATTR_* mdb router port netlink attributes. Updated lists of BPF_*, IORING_*,

[OE-core] [PATCH] help2man: upgrade 1.48.4 -> 1.48.5

* Use @samp{} around the option in the menu description for "--help recommendations" to avoid rendering the -- as endash. * Update French translations * Update standards version to 4.6.0 (no changes). Signed-off-by: Wang Mingyu --- .../help2man/{help2man_1.48.4.bb =>

[OE-core] [PATCH 2/3] vulkan-loader: upgrade 1.2.182 -> 1.2.191

Signed-off-by: Wang Mingyu --- .../{vulkan-loader_1.2.182.0.bb => vulkan-loader_1.2.191.0.bb} | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) rename meta/recipes-graphics/vulkan/{vulkan-loader_1.2.182.0.bb => vulkan-loader_1.2.191.0.bb} (96%) diff --git

[OE-core] [PATCH 1/3] vulkan-headers: upgrade 1.2.182 -> 1.2.191

Signed-off-by: Wang Mingyu --- ...ulkan-headers_1.2.182.0.bb => vulkan-headers_1.2.191.0.bb} | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) rename meta/recipes-graphics/vulkan/{vulkan-headers_1.2.182.0.bb => vulkan-headers_1.2.191.0.bb} (92%) diff --git

[OE-core] [PATCH 3/3] vulkan-tools: upgrade 1.2.182 -> 1.2.191

Signed-off-by: Wang Mingyu --- .../{vulkan-tools_1.2.182.0.bb => vulkan-tools_1.2.191.0.bb} | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) rename meta/recipes-graphics/vulkan/{vulkan-tools_1.2.182.0.bb => vulkan-tools_1.2.191.0.bb} (89%) diff --git

Re: [OE-core] [PATCH v2 1/1] oeqa/sdk: assimp.py -> cmake.py

On Mon, 2021-09-13 at 00:45 -0700, Robert Yang wrote: > The downloaded non-free sources, now download expat-2.4.1.tar.bz2 to replace > it, and also rename the test case to cmake.py since it is used for testing > cmake. > > Signed-off-by: Robert Yang > --- > meta/lib/oeqa/sdk/cases/{assimp.py

[OE-core] [PATCH] tar: filter CVEs using vendor name

Recently a number of CVEs have been logged against a nodejs project called "node-tar". These appear as false positives against the GNU tar being built by Yocto. Some of these have been manually excluded using CVE_CHECK_WHITELIST. To avoid this problem, use the vendor name (in addition to package

Re: [OE-core] [PATCH] [master] [dunfell] [hardknott] Revert "db: update CVE_PRODUCT"

On Tue, Sep 14, 2021 at 8:41 AM Steve Sakoman via lists.openembedded.org wrote: > > On Tue, Sep 14, 2021 at 8:04 AM Steve Sakoman via > lists.openembedded.org > wrote: > > > > The CVE database correctly reports CVEs for oracle_berkley_db and > > berkley_db. We use the oracle_berkley_db source

Re: [OE-core] [PATCH] [master] [dunfell] [hardknott] Revert "db: update CVE_PRODUCT"

On Tue, Sep 14, 2021 at 8:04 AM Steve Sakoman via lists.openembedded.org wrote: > > The CVE database correctly reports CVEs for oracle_berkley_db and > berkley_db. We use the oracle_berkley_db source tree and therefore > should only check for oracle_berkely_db CVEs. Otherwise the scanner >

Re: [OE-core] [PATCH] create-spdx.bbclass: Search all license directories for licenses

On 14.09.21 20:11, Peter Kjellerstedt wrote: Before, even if the code was seemingly written to search through all licenses in ${COMMON_LICENSE_DIR} and ${LICENSE_PATH}, it would actually bail out after only searching ${COMMON_LICENSE_DIR} due to the exception handling. Also refrain from using

[OE-core] [PATCH] create-spdx.bbclass: Search all license directories for licenses

Before, even if the code was seemingly written to search through all licenses in ${COMMON_LICENSE_DIR} and ${LICENSE_PATH}, it would actually bail out after only searching ${COMMON_LICENSE_DIR} due to the exception handling. Also refrain from using f-strings. Signed-off-by: Peter Kjellerstedt

[OE-core] [PATCH] [master] [dunfell] [hardknott] Revert "db: update CVE_PRODUCT"

The CVE database correctly reports CVEs for oracle_berkley_db and berkley_db. We use the oracle_berkley_db source tree and therefore should only check for oracle_berkely_db CVEs. Otherwise the scanner falsely reports CVEs that are fixed in oracle_berkley_db This reverts commit

Re: [OE-core] [poky][dunfell][PATCH] db: Whitelist CVEs

On Tue, Sep 14, 2021 at 7:09 AM Saloni Jain wrote: > > Hello Steve, Armin, > > I ran a CVE check cycle after reverting the CVE_PRODUCT changes for > berkeley_db and no other CVEs were reported in db either in patched or > unpatched state. > Should there be any other patch reporting from db or

Re: [OE-core] Public project sstate/hash equivalence mirror now live

On Tue, 2021-09-14 at 17:27 +0200, Konrad Weihmann wrote: > > On 12.09.21 18:01, Joshua Watt wrote: > > > > > > On Sun, Sep 12, 2021, 10:58 AM Richard Purdie > > > > wrote: > > > > On Sun, 2021-09-12 at 07:55 -0700, akuster808 wrote: > > >

Re: [OE-core] Public project sstate/hash equivalence mirror now live

On 12.09.21 18:01, Joshua Watt wrote: On Sun, Sep 12, 2021, 10:58 AM Richard Purdie > wrote: On Sun, 2021-09-12 at 07:55 -0700, akuster808 wrote: > > On 9/12/21 4:46 AM, Richard Purdie wrote: > > We made the autobuilder sstate

[OE-core][dunfell 0/9] Pull request (cover letter only)

The following changes since commit ed52bea54f135b7b5367a24bb3861d9bc0c53117: rt-tests: set branch name in SRC_URI (2021-09-10 16:21:30 +0100) are available in the Git repository at: git://git.openembedded.org/openembedded-core-contrib stable/dunfell-next

[OE-core] Yocto Project Status WW37`21

Current Dev Position: YP 3.4 M4 Next Deadline: 4th Oct. 2021 YP 3.4 M4 build Next Team Meetings: * Bug Triage meeting Thursday Sept. 16th at 7:30am PDT ( https://zoom.us/j/454367603?pwd=ZGxoa2ZXL3FkM3Y0bFd5aVpHVVZ6dz09)

[OE-core][dunfell][PATCH 2/2] assimp: Fix path for _IMPORT_CHECK_FILES_FOR_assimp

From: Purushottam Choudhary Fix path for _IMPORT_CHECK_FILES_FOR_assimp As it is giving configuration error during validation of path when used by 3rd party component to configure itself using assimp::assimp target. Compute the installation prefix relative to file. Signed-off-by: Purushottam

[OE-core][dunfell][PATCH 1/2] assimp: added patch to fix hardcoded non-existing paths in CMake modules

From: Purushottam Choudhary assimp CMake modules were adding non-existing paths to its CMake modules breaking builds for users of assimp. Remove the hardcoded paths with an upstream patch with small tweaks. (From OE-Core rev: 0dd86e64af7141c51666773265039fd98e2af31b) Signed-off-by: Purushottam

[OE-core] [hardknott][PATCH 2/2] ruby: fix CVE-2021-31799

From: Mingli Yu Backport a patch to fix CVE-2021-31799. Signed-off-by: Mingli Yu --- .../ruby/ruby/CVE-2021-31799.patch| 57 +++ meta/recipes-devtools/ruby/ruby_3.0.1.bb | 1 + 2 files changed, 58 insertions(+) create mode 100644

[OE-core] [hardknott][PATCH 1/2] ruby: Security fixes for CVE-2021-31810/CVE-2021-32066

From: Yi Zhao CVE-2021-31810: A malicious FTP server can use the PASV response to trick Net::FTP into connecting back to a given IP address and port. This potentially makes Net::FTP extract information about services that are otherwise private and not disclosed (e.g., the attacker can conduct

[OE-core] [PATCH 4/4] sstatesig: Allow exclusion of the root directory for do_package

The package task references WORKDIR at it's top level and we can't easily make the timestamp for that determnistic due to writes to files there and in other subdirs. We could try and force it to a specific value but it is easier to just remove it from the package task, we don't need it there or

[OE-core] [PATCH 3/4] bash: Ensure deterministic build

Bash keeps a count of the number of times make was invoked on a directory and changes the output versioning accordingly. We want deterministic output so disable this behaviour. Signed-off-by: Richard Purdie --- meta/recipes-extended/bash/bash.inc | 5 + 1 file changed, 5 insertions(+) diff

[OE-core] [PATCH 1/4] package: Fix pkgdata determinism issues

pkgdata output isn't entirely deterministic since the sorting of some of the variables can change. This likely doesn't have any real world effect but fix this with some additional sorting as it allows better hash equivalency of task output. Signed-off-by: Richard Purdie ---

[OE-core] [PATCH 2/4] sstate: Ensure SDE is accounted for in task timestamps

When creating packages we build them with --clamp-mtime and use SOURCE_DATE_EPOCH as the maximum mtime. This makes the end packages reproducible. The data stored in sstate for do_package and the package tasks doesn't benefit from this though and have varying timestamps. This means their outhash

[OE-core] [PATCH 3/3] python3: fix multilib qa issue

From: Mingli Yu Enable tk in PACKAGECONFIG as below in conf/local.conf. PACKAGECONFIG_append_pn-python3 = " tk" $ bitbake lib32-python3 ERROR: lib32-python3-3.9.6-r0 do_package_qa: QA Issue: /usr/lib/python3.9/lib-dynload/_tkinter.cpython-39-i386-linux-gnu.so contained in package

[OE-core] [PATCH 1/3] multilib.bbclass: add RDEPENDS related check back

From: Mingli Yu When multilib enabled, instead of checking RDEPENDS_lib32-python3-core, we should check RDEPENDS:lib32-python3-core as new override syntax applied. So switch to new override syntax to make sure the related RDEPENDS check logic is in effect. Signed-off-by: Mingli Yu ---

[OE-core] [PATCH 2/3] insane.bbclass: add FILERDEPENDS related check back

From: Mingli Yu Instead of FILERDEPENDS_*, the FILERDEPENDS should be FILERDEPENDS:* such as FILERDEPENDS:/usr/bin/python3.9:lib32-python3-core as an example, so switch to new override syntax to make sure the related check in effect. Signed-off-by: Mingli Yu --- meta/classes/insane.bbclass |