[OE-core] [kirkstone][PATCHv2] sysstat: Fix CVE-2023-33204

Upstream-Status: Backport from https://github.com/sysstat/sysstat/commit/954ff2e2673c Signed-off-by: Hitendra Prajapati --- .../sysstat/sysstat/CVE-2023-33204.patch | 80 +++ .../sysstat/sysstat_12.4.5.bb | 5 +- 2 files changed, 83 insertions(+), 2 deletio

Re: [OE-core] [master][PATCH 1/6] recipetool: create: npm: Remove duplicate function to not have future conflicts

Thanks for the work on this. We have a couple of selftests that test npm functionality, unfortunately they do not run in CI because npm is not in oe-core, but can you confirm that they pass with the changes? Run: oe-selftest -r recipetool.RecipetoolCreateTests.test_recipetool_create_npm oe-selfte

Re: [OE-core] [PATCH v14] Rust Oe-Selftest implementation

Hello Richard, We've (re)tested and reviewed the results of this patch on our local setup and those are "PASSED". We will discuss further with Randy and get back to community. Thanks, Sundeep K. From: Richard Purdie Sent: 30 May 2023 19:29 To: Yash Shinde ;

Re: [OE-core] [kirkstone][PATCH] sysstat: Fix CVE-2023-33204

Hi Hitendra, Below commit is merge commit, we shouldn't cherry-pick merge commit: https://github.com/sysstat/sysstat/commit/6f8dc568e6ab072bb8205b732f04e685bf9237c0 Please refer: https://patchwork.yoctoproject.org/project/oe-core/patch/20230529080302.1154687-1-schit...@cisco.com/ Once CVE fix ge

Re: [OE-core][kirkstone][PATCH v3] openssh: Remove BSD-4-clause contents completely from codebase

That is not how it works. If the issue exists in both master and kirkstone (which it does), it must be resolved in master first. Also 'resolves BSD-5 clause license issue' does not explain what the issue is, and you need to provide a better explanation. Alex On Wed, 31 May 2023 at 07:49, Riyaz Ah

[OE-core] cmake.bbclass poisoning from to /usr/include?

The generated toolchain file in cmake.bbclass uses ${includedir} for populating CMAKE_C_IMPLICIT_INCLUDE_DIRECTORIES and CMAKE_CXX_IMPLICIT_INCLUDE_DIRECTORIES. This results in include path pointing to /usr/include, is this correct? I expected to only allow header files from the recipe sysroot.

Re: [OE-core] [PATCH v4] Fixes pseudo build in loongarch64

Hi, I'm sure in a loongarch64 glibc  don't  has these functions . We can find the libc.abilist file in the glibc  source code . I found no __fxstat in loongarch eg:``` ➜  glibc git:(master) cat ./sysdeps/unix/sysv/linux/x86_64/64/libc.abilist |grep __fx GLIBC_2.2.5 __fxstat F GLIBC_2.2.5 _

Re: [OE-core] [PATCH v14] Rust Oe-Selftest implementation

Le mar. 30 mai 2023, 23:20, Richard Purdie < richard.pur...@linuxfoundation.org> a écrit : > On Tue, 2023-05-30 at 14:28 -0400, Randy MacLeod wrote: > > > > > > I did put this into a build for testing on the autobuilder. It > > > hasn't > > > been running long and I can already see build failures

[OE-core][kirkstone][PATCH] perf: fix argument list too long during compile

From: Xiangyu Chen The perf would fail to build when BUILDDIR is longer than 190, The "O = ${B}" makes it use absolute path which makes the argument list too long, remove "O = ${B}" will make it use relative path to build will fix the problem. Signed-off-by: Xiangyu Chen --- meta/recipes-kerne

[OE-core] [kirkstone][PATCH] sysstat: Fix CVE-2023-33204

Upstream-Status: Backport from https://github.com/sysstat/sysstat/commit/6f8dc568e6ab072bb8205b732f04e685bf9237c0 Signed-off-by: Hitendra Prajapati --- .../sysstat/sysstat/CVE-2023-33204.patch | 80 +++ .../sysstat/sysstat_12.4.5.bb | 5 +- 2 files changed,

Re: [OE-core] [PATCH] rpm2cpio.sh: update to the last 4.x version

> From: Khem Raj  > This seems to regress building ctapi-common recipe from meta-oe > https://errors.yoctoproject.org/Errors/Details/705227/ /bin/sh: line 1: TOPDIR/sources/poky/scripts/rpm2cpio.sh: Permission denied >>  mode change 100755 => 100644 scripts/rpm2cpio.sh Indeed. Thanks, good catc

Re: [OE-core] [PATCH][pseudo] Move __*xstat* and __xmknod functions to new subport 'old__x'

On 5/30/23 10:18 PM, Seebs wrote: On Tue, 30 May 2023 19:54:41 -0700 Mark Hatle wrote: - int existed = (real___xstat64(_STAT_VER, path, &buf) != -1); + int existed = (base_stat64(path, &buf) != -1); Honestly, with the benefit of hindsight, I actually can't even think why I ever

Re: [OE-core] [PATCH][pseudo] Move __*xstat* and __xmknod functions to new subport 'old__x'

On Tue, 30 May 2023 19:54:41 -0700 Mark Hatle wrote: > - int existed = (real___xstat64(_STAT_VER, path, &buf) != -1); > + int existed = (base_stat64(path, &buf) != -1); Honestly, with the benefit of hindsight, I actually can't even think why I ever thought I should be using those directl

Re: [OE-core] [PATCH][pseudo] Move __*xstat* and __xmknod functions to new subport 'old__x'

This code only switched the usage of the removed __ functions based on availability of _STAT_VER and _MKNOD_VER in the ports/linux/subport file. If you change the conditional to 'if true ; then' the system will enable the older style code unconditionally. I did verify that appears to be workin

[OE-core] [PATCH][pseudo] Move __*xstat* and __xmknod functions to new subport 'old__x'

Changes to eliminate __*.c function usage were based on the patch: From: JiaLing Zhang Subject: [OE-core] [PATCH v4] Fixes pseudo build in loongarch64 Fixes [YOCTO #15110] Some functions used in the project have been removed from glibc. After the removal of these functions, the

[OE-core][kirkstone 13/13] kernel-devicetree: recursively search for dtbs

From: Randolph Sapp Upstream's dtb directory structure has no real standard. They just tend to idle around the 2/3 directory depth. Recursively search for the dtb/dtbo files instead of assuming anything. Fixes: 04ab57d200 (kernel-devicetree: allow specification of dtb directory, 2023-05-02) Sig

[OE-core][kirkstone 12/13] package: enable recursion on file globs

From: Randolph Sapp Enable recursion of file globs. This just allows the use of '**' in file globs to match 0 or more subdirectories, it should not make all current globs recursive [1]. [1] https://docs.python.org/3.6/library/glob.html#glob.glob Signed-off-by: Randolph Sapp Signed-off-by: Alex

[OE-core][kirkstone 11/13] kernel-devicetree: make shell scripts posix compliant

From: Martin Jansa Use the notation suggested by Martin Jansa to avoid a bashism. Also switch KERNEL_DTBVENDORED to the more common 0/1 notation instead of true/false. Fixes: 04ab57d200 (kernel-devicetree: allow specification of dtb directory, 2023-05-02) Signed-off-by: Martin Jansa Signed-off

[OE-core][kirkstone 10/13] kernel-devicetree: allow specification of dtb directory

From: Randolph Sapp Fedora/Redhat and Arch are somewhat standardized on their dtb directory structure. Let's add some flags to configure yocto to mimic that behavior. Add the following variables to the kernel class: - KERNEL_DTBDEST (controls the destination directory for dtbs) -

[OE-core][kirkstone 09/13] linux-yocto/5.10: update to v5.10.180

From: Bruce Ashfield Updating to the latest korg -stable release that comprises the following commits: 4c893ff55907 Linux 5.10.180 3ebe5d6d69ce drm/amd/display: Fix hang when skipping modeset a992c387b411 mm/page_alloc: fix potential deadlock on zonelist_update_seq seqlock f265

[OE-core][kirkstone 08/13] linux-yocto/5.10: update to v5.10.179

From: Bruce Ashfield Updating to the latest korg -stable release that comprises the following commits: f1b32fda06d2 Linux 5.10.179 0367bf3f4a4e ASN.1: Fix check for strdup() success 4ab5f8f9d026 ASoC: fsl_asrc_dma: fix potential null-ptr-deref 42604b4ad5f3 iio: adc: at91-sama5d2

[OE-core][kirkstone 07/13] linux-yocto/5.10: update to v5.10.178

From: Bruce Ashfield Updating to the latest korg -stable release that comprises the following commits: 791a854ae5a5 Linux 5.10.178 f177b382c339 sysctl: Fix data-races in proc_dou8vec_minmax(). 56314b90fd43 panic, kexec: make __crash_kexec() NMI safe d425f348211f kexec: turn all

[OE-core][kirkstone 04/13] curl: Fix CVE-2023-28322

From: Bhabu Bindu Add patches to fix CVE-2023-28322 more POST-after-PUT confusion When doing HTTP(S) transfers, libcurl might erroneously use the read callback (`CURLOPT_READFUNCTION`) to ask for data to send, even when the `CURLOPT_POSTFIELDS` option has been set, if the same handle previously

[OE-core][kirkstone 06/13] linux-yocto/5.10: update to v5.10.177

From: Bruce Ashfield Updating to the latest korg -stable release that comprises the following commits: 387078f9030c Linux 5.10.177 34a02011c5d1 hsr: ratelimit only when errors are printed 7c414f6f06e9 gfs2: Always check inode size of inline inodes 3392d67af0a4 ext4: fix kernel B

[OE-core][kirkstone 05/13] linux-yocto/5.10: update to v5.10.176

From: Bruce Ashfield Updating to the latest korg -stable release that comprises the following commits: ca9787bdecfa Linux 5.10.176 e57f797e3ffa HID: uhid: Over-ride the default maximum data buffer value with our own 9bc878756b01 HID: core: Provide new max_buffer_size attribute to o

[OE-core][kirkstone 03/13] curl: Fix CVE-2023-28321

From: Bhabu Bindu Add patch to fix CVE-2023-28321 IDN wildcard match curl supports matching of wildcard patterns when listed as "Subject Alternative Name" in TLS server certificates. curl can be built to use its own name matching function for TLS rather than one provided by a TLS library. This

[OE-core][kirkstone 02/13] curl: Fix CVE-2023-28320

From: Bhabu Bindu Add patch to fix CVE-2023-28320 siglongjmp race condition libcurl provides several different backends for resolving host names, selectedat build time. If it is built to use the synchronous resolver, it allows nameresolves to time-out slow operations using `alarm()` and `siglon

[OE-core][kirkstone 01/13] curl: Fix CVE-2023-28319

From: Bhabu Bindu Add patch to fix CVE-2023-28319 UAF in SSH sha256 fingerprint check libcurl offers a feature to verify an SSH server's public key using a SHA 256hash. When this check fails, libcurl would free the memory for the fingerprintbefore it returns an error message containing the (now

[OE-core][kirkstone 00/13] Patch review

Please review this set of changes for kirkstone and have comments back by end of day Thursday. Passed a-full on autobuilder: https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/5365 The following changes since commit 5e26ead1ca016d1691dccba1b58060ac853bf0d2: piglit: Add missing

[OE-core] [PATCH] bitbake.conf: Add SRCPV to BB_HASH_CODEPARSER_VALS

Also add SRCPV to the list of BB_HASH_CODEPARSER_VALS for code parser cache handling. Otherwise an empty SRC_URI in the list triggers this exception: bb.data_smart.ExpansionError: Failure expanding variable SRCPV, expression was ${@bb.fetch2.get_srcrev(d)} which triggered exception FetchError: F

Re: [OE-core] [PATCH v14] Rust Oe-Selftest implementation

On 2023-05-30 17:20, Richard Purdie wrote: wait for the beginning of the fail development cycle. Ugh, that's: FALL development cycle. What an unfortunate typo!! -- # Randy MacLeod # Wind River Linux -=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online

[OE-core] [master][PATCH 5/6] classes: npm: Add support for the new format of the shrinkwrap file

From: BELOUARGA Mohamed 1 - Adapt do_configure to the new format of the shrinkwrap 2 - Remove useless function _npmsw_dependency_dict because the dictionnary is already given by npmsw:foreach_dependencies 3 - Rename arguments of callback functions Signed-off-by: BELOUARGA Mohamed --- met

[OE-core] [master][PATCH 6/6] classe-recipes: npm: Add support for dependencies and devDependencies

From: BELOUARGA Mohamed Adapt the npm classe for the shrinkwrap of Nodejs 18, and seperate dependencies and dev dependencies. Signed-off-by: BELOUARGA Mohamed --- meta/classes-recipe/npm.bbclass | 21 - 1 file changed, 16 insertions(+), 5 deletions(-) diff --git a/meta/cla

[OE-core] [master][PATCH 4/6] recipetool: create: npm: Add support to handle peer dependencies

From: BELOUARGA Mohamed NPM changed its manner to handle peer dependencies over its versions. Before NPM 3: NPM installs automatically peer dependencies between NPM 3 and 7: NPM shows a warning about peer dependencies After NPM 3: NPM reworked its manner how to handle peer dependencies The shrin

[OE-core] [master][PATCH 3/6] recipetool: create: npm: Add support for the new format of the shrinkwrap file

From: BELOUARGA Mohamed The shrinkwrap file changed its format, but npm does not version this file. So we can use it properly. The actual changes make the script check if the npm package has dependencies in the actual shrinkwrap format. Signed-off-by: BELOUARGA Mohamed --- scripts/lib/recipe

[OE-core] [master][PATCH 2/6] classes: npm: Handle peer dependencies for npm packages

From: BELOUARGA Mohamed NPM changed its manner to handle peer dependencies over its versions. Before NPM 3: NPM installs automatically peer dependencies between NPM 3 and 7: NPM shows a warning about peer dependencies After NPM 3: NPM reworked its manner how to handle peer dependencies The shrin

[OE-core] [master][PATCH 1/6] recipetool: create: npm: Remove duplicate function to not have future conflicts

From: BELOUARGA Mohamed Npm packages do not have yocto friendly names. fore instance we can have names like "@example/npmPackage" npm fetcher has a function that convert these names to yocto friendly names. But in recipe tool we have an other function (duplicate). Signed-off-by: BELOUARGA Moha

[OE-core] [PATCH] tiff: backport a fix for CVE-2023-2731

From: Natasha Bailey This patch fixes an issue in libtiff's LZWDecode function which could cause a null pointer dereference. Signed-off-by: Natasha Bailey Signed-off-by: Randy MacLeod --- .../libtiff/files/CVE-2023-2731.patch | 39 +++ meta/recipes-multimedia/libtiff/

Re: [OE-core] [PATCH V3] kbd: Add ptest support

Hello, This still fails to build: https://autobuilder.yoctoproject.org/typhoon/#/builders/110/builds/6071/steps/12/logs/errors https://autobuilder.yoctoproject.org/typhoon/#/builders/103/builds/6079/steps/11/logs/errors https://autobuilder.yoctoproject.org/typhoon/#/builders/48/builds/7219/steps

[OE-core] [PATCH] apt: Upgrade to v2.6.1

Changes: Update sha256sum for new version Signed-off-by: Sudip Mukherjee --- meta/recipes-devtools/apt/{apt_2.6.0.bb => apt_2.6.1.bb} | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) rename meta/recipes-devtools/apt/{apt_2.6.0.bb => apt_2.6.1.bb} (98%) diff --git a/meta/recipes-devtools/a

Re: [OE-core] [PATCH v4] Fixes pseudo build in loongarch64

I am working on changing the v4 into a more generic implementation based on Seebs' and others comments. I'll likely be sending something to the list as an RFC later today or tomorrow. --Mark On 5/30/23 11:43 AM, Seebs wrote: On Tue, 30 May 2023 19:33:03 +0800 zhangjial...@loongson.cn wrote:

Re: [OE-core][PATCH] classes/package: mark PKGDATA_VARS as a dependency of emit_pkgdata

On Tue, May 30, 2023 at 4:30 PM Richard Purdie wrote: > > On Tue, 2023-05-30 at 16:25 -0500, Joshua Watt wrote: > > On Tue, May 30, 2023 at 4:23 PM Richard Purdie > > wrote: > > > > > > On Tue, 2023-05-30 at 15:41 -0500, Joshua Watt wrote: > > > > emit_pkgdata needs to re-run when PKGDATA_VARS ch

Re: [OE-core][PATCH] classes/package: mark PKGDATA_VARS as a dependency of emit_pkgdata

On Tue, 2023-05-30 at 16:25 -0500, Joshua Watt wrote: > On Tue, May 30, 2023 at 4:23 PM Richard Purdie > wrote: > > > > On Tue, 2023-05-30 at 15:41 -0500, Joshua Watt wrote: > > > emit_pkgdata needs to re-run when PKGDATA_VARS changes, but bitbake is > > > unaware of this because the code that us

Re: [OE-core][PATCH] classes/package: mark PKGDATA_VARS as a dependency of emit_pkgdata

On Tue, May 30, 2023 at 4:23 PM Richard Purdie wrote: > > On Tue, 2023-05-30 at 15:41 -0500, Joshua Watt wrote: > > emit_pkgdata needs to re-run when PKGDATA_VARS changes, but bitbake is > > unaware of this because the code that uses it is in a python library. > > Fix this by explicitly marking PK

Re: [OE-core][PATCH] classes/package: mark PKGDATA_VARS as a dependency of emit_pkgdata

On Tue, 2023-05-30 at 15:41 -0500, Joshua Watt wrote: > emit_pkgdata needs to re-run when PKGDATA_VARS changes, but bitbake is > unaware of this because the code that uses it is in a python library. > Fix this by explicitly marking PKGDATA_VARS as a dependency > > Signed-off-by: Joshua Watt > ---

Re: [OE-core] [PATCH v14] Rust Oe-Selftest implementation

On Tue, 2023-05-30 at 14:28 -0400, Randy MacLeod wrote: > > > > I did put this into a build for testing on the autobuilder. It > > hasn't > > been running long and I can already see build failures such as: > > > > https://autobuilder.yoctoproject.org/typhoon/#/builders/103/builds/6077 > > https:/

Re: [OE-core] [PATCH v14] Rust Oe-Selftest implementation

Hello, On 30/05/2023 14:28:24-0400, Randy MacLeod via lists.openembedded.org wrote: > On 2023-05-30 11:05, Frédéric Martinsons wrote: > > Oh okay, didn't try that personnaly. > > the class is currently tied to cargo behavior so for performing rust > > core tests, it will not be suitable (at least

[OE-core][PATCH] classes/package: mark PKGDATA_VARS as a dependency of emit_pkgdata

emit_pkgdata needs to re-run when PKGDATA_VARS changes, but bitbake is unaware of this because the code that uses it is in a python library. Fix this by explicitly marking PKGDATA_VARS as a dependency Signed-off-by: Joshua Watt --- meta/classes-global/package.bbclass | 1 + 1 file changed, 1 ins

[OE-core] [PATCH V2] kernel.bbclass: introduce KERNEL_LOCALVERSION

From: Ming Liu Just like UBOOT_LOCALVERSION, an end user can set KERNEL_LOCALVERSION to append a string to the name of the local version of the kernel image. Signed-off-by: Ming Liu --- meta/classes-recipe/kernel.bbclass | 6 +- meta/conf/documentation.conf | 1 + 2 files changed, 6

Re: [OE-core] [PATCH] kernel.bbclass: introduce KERNEL_LOCALVERSION

Hi, Bruce: OK, thanks for the explanation, that makes sense, will add them back in V2. the best, thank you Bruce Ashfield 於 2023年5月30日 週二 下午10:09寫道： > On Tue, May 30, 2023 at 3:58 PM Ming Liu wrote: > > > > Hi, Bruce: > > > > Please see my answers as below: > > > > > You've confirmed that the

Re: [OE-core] [PATCH] kernel.bbclass: introduce KERNEL_LOCALVERSION

On Tue, May 30, 2023 at 3:58 PM Ming Liu wrote: > > Hi, Bruce: > > Please see my answers as below: > > > You've confirmed that the result is the same as the touches previously did > > when that variable isn't set ? > > Yes, I have verified that on a qemuarm64 machine. > > > Those comments are sti

Re: [OE-core] [PATCH] kernel.bbclass: introduce KERNEL_LOCALVERSION

Hi, Bruce: Please see my answers as below: > You've confirmed that the result is the same as the touches previously did when that variable isn't set ? Yes, I have verified that on a qemuarm64 machine. > Those comments are still valid I think after we introduce KERNEL_LOCALVERSION, then we gene

[OE-core] [PATCH] openssl: upgrade 3.1.0 -> 3.1.1

) * Limited the number of nodes created in a policy tree (CVE-2023-0464) Security Advisory: https://www.openssl.org/news/secadv/20230530.txt CVE: CVE-2023-2650 CVE: CVE-2023-1255 CVE: CVE-2023-0466 CVE: CVE-2023-0465 CVE: CVE-2023-0464 Signed-off-by: Tim Orling --- All the usual ptests pass on

Re: [OE-core] [PATCH] u-boot: do_compile depends on the value of UBOOT_LOCALVERSION

On Tue, May 30, 2023 at 03:47:07PM +0100, Richard Purdie wrote: > On Mon, 2023-05-29 at 12:06 -0400, Denys Dmytriyenko wrote: > > On Mon, May 29, 2023 at 01:41:00PM +0100, Richard Purdie wrote: > > > On Sun, 2023-05-28 at 17:15 +, Denys Dmytriyenko wrote: > > > > UBOOT_LOCALVERSION is often use

Re: [OE-core] [PATCH] rpm2cpio.sh: update to the last 4.x version

This seems to regress building ctapi-common recipe from meta-oe https://errors.yoctoproject.org/Errors/Details/705227/ On Fri, May 26, 2023 at 7:06 AM Alberto Planas via lists.openembedded.org wrote: > > From: Alberto Planas > > openSUSE RPMs are compressing the RPM payload using zstd, that > c

[OE-core] [PATCH] connman: fix warning by specifying runstatedir at configure time

From: Marc Ferland Without this patch, systemd complains on startup with messages similar to: systemd-tmpfiles[128]: /etc/tmpfiles.d/connman_resolvconf.conf:1: Line references path below legacy directory /var/run/, updating /var/run/connman → /run/connman; please update the tmpfiles.d/ drop-in

Re: [OE-core] [PATCH v14] Rust Oe-Selftest implementation

On 2023-05-30 11:05, Frédéric Martinsons wrote: Oh okay, didn't try that personnaly. the class is currently tied to cargo behavior so for performing rust core tests, it will not be suitable (at least in its present form) Well, that's good news in that we won't have to change our approach for

Re: [OE-core] [PATCH] kernel.bbclass: introduce KERNEL_LOCALVERSION

On Tue, May 30, 2023 at 1:10 PM Ming Liu wrote: > > From: Ming Liu > > Just like UBOOT_LOCALVERSION, an end user can set KERNEL_LOCALVERSION > to append a string to the name of the local version of the kernel > image. > > Signed-off-by: Ming Liu > --- > meta/classes-recipe/kernel.bbclass | 10 +

[OE-core] [PATCH] kernel.bbclass: introduce KERNEL_LOCALVERSION

From: Ming Liu Just like UBOOT_LOCALVERSION, an end user can set KERNEL_LOCALVERSION to append a string to the name of the local version of the kernel image. Signed-off-by: Ming Liu --- meta/classes-recipe/kernel.bbclass | 10 +- meta/conf/documentation.conf | 1 + 2 files chang

Re: [OE-core] [PATCH v4] Fixes pseudo build in loongarch64

On Tue, 30 May 2023 19:33:03 +0800 zhangjial...@loongson.cn wrote: > +#ifdef __loongarch64 No. Use the configuration mechanisms or whatever to determine the *actual distinction you care about*, which is "does glibc have __xstat64", give that a name, and use the name. Some day, someone else will

[OE-core][PATCH] vim: upgrade 9.0.1527 -> 9.0.1592

Fixes: https://nvd.nist.gov/vuln/detail/CVE-2023-2609 d1ae836 patch 9.0.1531: crash when register contents ends up being invalid https://nvd.nist.gov/vuln/detail/CVE-2023-2610 ab9a2d8 patch 9.0.1532: crash when expanding "~" in substitute causes very long text Signed-off-by: Trevor Gamblin ---

Re: [OE-core][master][PATCH v4] openssh: Remove BSD-4-clause contents completely from codebase

Hello, Are you sure this is for master, it has been more than a year that we upgraded to 9.0p1 and later? On 30/05/2023 15:11:51+0530, Riyaz Ahmed Khan wrote: > As upstream removed this BSD-4-clause license, there are still some files > has this license. Below file affected by this BSD-4-clause c

Re: [OE-core] [PATCH] qemu: Split the qemu package

On Tue, May 30, 2023 at 10:54 AM Richard Purdie wrote: > > On Tue, 2023-05-30 at 16:33 +0200, Alexander Kanavin wrote: > > I might be missing something here, but can the free-form, anonymous > > python code block be avoided? Don't we have PACKAGES_DYNAMIC for this > > purpose? > > PACKAGES_DYNAMIC

Re: [OE-core] [PATCH v14] Rust Oe-Selftest implementation

Oh okay, didn't try that personnaly. the class is currently tied to cargo behavior so for performing rust core tests, it will not be suitable (at least in its present form) Le mar. 30 mai 2023, 16:44, Richard Purdie < richard.pur...@linuxfoundation.org> a écrit : > On Tue, 2023-05-30 at 16:35 +02

Re: [OE-core] [PATCH] qemu: Split the qemu package

On Tue, 2023-05-30 at 16:33 +0200, Alexander Kanavin wrote: > I might be missing something here, but can the free-form, anonymous > python code block be avoided? Don't we have PACKAGES_DYNAMIC for this > purpose? PACKAGES_DYNAMIC is for when we can't predict the packages a recipe might generate. A

Re: [OE-core] [PATCH] u-boot: do_compile depends on the value of UBOOT_LOCALVERSION

On Mon, 2023-05-29 at 12:06 -0400, Denys Dmytriyenko wrote: > On Mon, May 29, 2023 at 01:41:00PM +0100, Richard Purdie wrote: > > On Sun, 2023-05-28 at 17:15 +, Denys Dmytriyenko wrote: > > > UBOOT_LOCALVERSION is often used to pass SCM commit SHA to the code > > > via populating .scmversion fi

Re: [OE-core] [PATCH v14] Rust Oe-Selftest implementation

On Tue, 2023-05-30 at 16:35 +0200, Frédéric Martinsons wrote: > Beside the errors pointed by Richard, I'm wondering how it behave > with the ptest-cargo class? Does this class still useful with this > work? Is it some kind of complementary or did it concern a totally > different matter/use case ? 

[OE-core] Yocto Project Status 30 May 2023 (WW22)

Current Dev Position: YP 4.3 M1 Next Deadline: 5th June 2023 YP 4.3 M1 build date Next Team Meetings: * Bug Triage meeting Thursday June 1st 7:30 am PDT ( https://zoom.us/j/454367603?pwd=ZGxoa2ZXL3FkM3Y0bFd5aVpHVVZ6dz09)

[OE-core] [PATCH] glib-2.0: Update ptest fix to upstream backport

Update the ptest fix to match the one accepted upstream. Signed-off-by: Richard Purdie --- ...-support-Fix-snap-test-ordering-race.patch | 107 +++ .../glib-2.0/glib-2.0/fix-ptest.patch | 166 -- meta/recipes-core/glib-2.0/glib-2.0_2.76.2.bb | 2 +- 3 files chan

Re: [OE-core] [PATCH v14] Rust Oe-Selftest implementation

Beside the errors pointed by Richard, I'm wondering how it behave with the ptest-cargo class? Does this class still useful with this work? Is it some kind of complementary or did it concern a totally different matter/use case ? Le mar. 30 mai 2023, 15:59, Richard Purdie < richard.pur...@linuxfound

Re: [OE-core] [PATCH] qemu: Split the qemu package

I might be missing something here, but can the free-form, anonymous python code block be avoided? Don't we have PACKAGES_DYNAMIC for this purpose? Alex On Tue, 30 May 2023 at 15:51, Bruce Ashfield wrote: > > On Tue, May 30, 2023 at 9:17 AM Yu, Mingli > wrote: > > > > From: Mingli Yu > > > > C

Re: [OE-core][kirkstone][PATCH] curl: Correction for CVE-2023-27536

On Tue, May 30, 2023 at 2:45 AM Ranjitsinh Rathod < ranjitsinh.rat...@kpit.com> wrote: > Hi @Steve Sakoman , > > I request to not take this patch in the kirkstone as it seems we are still > checking on the data type which we changed from long to unsigned char. > It seems that this variable was 'lo

Re: [OE-core] [PATCH v14] Rust Oe-Selftest implementation

On Tue, 2023-05-30 at 16:21 +0530, Yash Shinde wrote: > The patch implements Rust testing framework similar to other selftest, > specifically the gcc selftest in OE. It uses the client and server > based method to test the binaries for cross-target on the image. > The test framework is a wrapper ar

Re: [OE-core] [PATCH] qemu: Split the qemu package

On Tue, May 30, 2023 at 9:17 AM Yu, Mingli wrote: > > From: Mingli Yu > > Currently all files packaged into one package such as qemu-7.2.0-*.rpm. > After the qemu package installed on the target, it will take up 464M > which includes not only the one matches the arch of the target but aslo > all

Re: [OE-core] [PATCH] qemu: Split the qemu package

On Tue, 2023-05-30 at 21:17 +0800, Yu, Mingli wrote: > From: Mingli Yu > > Currently all files packaged into one package such as qemu-7.2.0-*.rpm. > After the qemu package installed on the target, it will take up 464M > which includes not only the one matches the arch of the target but aslo > all

[OE-core] [PATCH] qemu: Split the qemu package

From: Mingli Yu Currently all files packaged into one package such as qemu-7.2.0-*.rpm. After the qemu package installed on the target, it will take up 464M which includes not only the one matches the arch of the target but aslo all available built qemu targets which set by QEMU_TARGETS. Split t

[OE-core] Cve database updates status

Hello all, A short heads-up on the situation with CVE updates. 1. In the new CVE database, each fix needs to be made by the CNA that created the entry. For the kernel ones there are several. Will try a test fix (at random) to see what the reaction could be. 2. I do not have an answer from NVD yet

Re: [OE-core][kirkstone][PATCH] curl: Correction for CVE-2023-27536

Hi @Steve Sakoman, I request to not take this patch in the kirkstone as it seems we are still checking on the data type which we changed from long to unsigned char. It seems that this variable was 'long' only in the curl version which we have in the kirkstone. Of courc

Re: FW: [OE-core][PATCH] Revert "sqlite3: update CVE_PRODUCT"

On Tue, 2023-05-30 at 11:39 +, Sanjaykumar kantibhai Chitroda -X (schitrod - E-INFO CHIPS INC at Cisco) wrote: > Hi team, > > I had discussion with Chen for this patch, but conversation is not available > on OE-core patchwork. > Anyone has any idea, why we can't see our conversation on websit

Re: [OE-core] [PATCH v4] Fixes pseudo build in loongarch64

On Tue, 2023-05-30 at 19:33 +0800, zhangjial...@loongson.cn wrote: > From: JiaLing Zhang > > Fixes [YOCTO #15110] > > Some functions used in the project have been removed from glibc. After the > removal of these functions, > the architecture in glibc will not include the removed functions. > Th

Re: [OE-core] [PATCH v4] Fixes pseudo build in loongarch64

Hi JiaLing On 30.05.23 at 13:33, zhangjial...@loongson.cn wrote: From: JiaLing Zhang Fixes [YOCTO #15110] Some functions used in the project have been removed from glibc. After the removal of these functions, the architecture in glibc will not include the removed functions. This patch resolv

FW: [OE-core][PATCH] Revert "sqlite3: update CVE_PRODUCT"

Hi team, I had discussion with Chen for this patch, but conversation is not available on OE-core patchwork. Anyone has any idea, why we can't see our conversation on website. @Steve Sakoman @richard.pur...@linuxfoundation.org Please take this conversation in consideration, and help/guide us on h

[OE-core] [PATCH v14] Rust Oe-Selftest implementation

The patch implements Rust testing framework similar to other selftest, specifically the gcc selftest in OE. It uses the client and server based method to test the binaries for cross-target on the image. The test framework is a wrapper around the Rust build system as ./x.py test. It tests many funct

[OE-core] [PATCH v14] Rust Oe-Selftest implementation

The patch implements Rust testing framework similar to other selftest, specifically the gcc selftest in OE. It uses the client and server based method to test the binaries for cross-target on the image. The test framework is a wrapper around the Rust build system as ./x.py test. It tests many funct

[OE-core][dunfell][PATCH] ghostscript: Fix CVE-2023-28879

From: Vijay Anusuri Upstream-Status: Backport [https://git.ghostscript.com/?p=ghostpdl.git;h=37ed5022cecd584de868933b5b60da2e995b3179] Signed-off-by: Vijay Anusuri --- .../ghostscript/CVE-2023-28879.patch | 54 +++ .../ghostscript/ghostscript_9.52.bb | 1 +

Re: [OE-core][PATCH v3 1/3] cve-check: add option to add additional patched CVEs

On Mon, 2023-05-29 at 07:32 +, Valek, Andrej wrote: > Hello again Richard, > > Maybe this email was little bit unclear..., so I will try to recap it here. > There are 2 open points, where some final decision has to be made. > > - Could we rename the CVE_STATUS_REASONING -> CVE_STATUS_REASON?

Re: [OE-core][master][PATCH v4] openssh: Remove BSD-4-clause contents completely from codebase

This still does not answer the key question: why should this be backported and given to all users of oe-core? Alex On Tue, 30 May 2023 at 11:42, Riyaz Ahmed Khan wrote: > > As upstream removed this BSD-4-clause license, there are still some files > has this license. Below file affected by this B

[OE-core][master][PATCH v4] openssh: Remove BSD-4-clause contents completely from codebase

As upstream removed this BSD-4-clause license, there are still some files has this license. Below file affected by this BSD-4-clause contents when below command is executed grep -rl "All advertising materials mentioning features or use of this software" *|grep -v \.1|grep -v \.5|grep -v \.8 | sort

Re: [OE-core] [PATCH v3] Fixes pseudo build in loongarch64

Hi JiaLing On 30.05.23 at 11:00, zhangjial...@loongson.cn wrote: From: zhangjialing Fixes [YOCTO #15110] Some functions used in the project have been removed from glibc. After the removal of these functions, the architecture in glibc will not include the removed functions. This patch resolve

Re: [OE-core] [PATCH v2] Fixes pseudo build in loongarch64

On 30.05.23 at 10:13, Michael Opdenacker via lists.openembedded.org wrote: |git config --global user.name "Guy Fawkes" ||| Sorry about the extra "|" characters. Of course, you should read... git config --global user.name "Guy Fawkes" Michael. -- Michael Opdenacker, Bootlin Embedded Linux

Re: [OE-core] [PATCH v2] Fixes pseudo build in loongarch64

Hello, On 30.05.23 at 08:47, zhangjial...@loongson.cn wrote: From: zhangjialing Fixes [YOCTO #15110] Some functions used in the project have been removed from glibc. After the removal of these functions, the architecture in glibc will not include the removed functions. This patch resolves th

Re: [OE-core][kirkstone][PATCH v3] openssh: Remove BSD-4-clause contents completely from codebase

Another issue is that any changes like this must be submitted to master first, then backported to kirkstone. Alex On Tue, 30 May 2023 at 10:08, Alexander Kanavin via lists.openembedded.org wrote: > > What is the rationale for adding this patch to oe-core? Why can't this > wait until openssh rele

Re: [OE-core][kirkstone][PATCH v3] openssh: Remove BSD-4-clause contents completely from codebase

What is the rationale for adding this patch to oe-core? Why can't this wait until openssh releases a version with this change? Alex On Tue, 30 May 2023 at 09:08, Riyaz Ahmed Khan wrote: > > As upstream removed this BSD-4-clause license, there are still some files > has this license. Below file a

[OE-core][kirkstone][PATCH v3] openssh: Remove BSD-4-clause contents completely from codebase

As upstream removed this BSD-4-clause license, there are still some files has this license. Below file affected by this BSD-4-clause contents when below command is executed grep -rl "All advertising materials mentioning features or use of this software" *|grep -v \.1|grep -v \.5|grep -v \.8 | sort

[OE-core] [PATCH V3] kbd: Add ptest support

From: Qiu Tingting Add a ptest for kbd - It is taking around 1s to execute with kvm, so added it to PTESTS_FAST - It contains libkeymap unit tests(27 cases) and libkbdfile unit tests(13 cases) Signed-off-by: Qiu Tingting --- .../distro/include/ptest-packagelists.inc | 1 + meta/recipes-co