systemd-sysext allows to overlay another image (or multiple) ontop of
a "base-image" = the current rootfs, via the use of overlayfs; to add
tools and features meant for development purposes.
To quote the documentation on systemd-sysext:
" ...addition in order to make debugging/development easier).
systemd-sysext can load a raw-image containing usr/ and opt/ folders
to mount them as RO overlay over the rootfs, to "extend" the systems.
This class provides the necessary changes/additions to the enclosed
file-system so that systemd-sysext accepts the extension for "merge"
into the rootfs.
With
set the package-database of a "lower image" to unpack and build upon
when installing packages for the current image. This way a lean image
will be created, which only holds the packages that are not already
present in the lower image.
An image build such could then be used with overlayfs or system
archive the package database after the rootfs has been put together as
*rootfs-pkdbfs.tar.gz, and put it into the deploy folder.
This creates a snapshot of the package mangers state at the point in
time when all dependencies have been resolved and installed; which
could be used by "extension image
Ping
> -Original Message-
> From: openembedded-core@lists.openembedded.org
> On Behalf Of leimaohui via
> lists.openembedded.org
> Sent: Tuesday, April 30, 2024 4:27 PM
> To: openembedded-core@lists.openembedded.org
> Cc: Lei, Maohui
> Subject: [OE-core][PATCH v4][PATCH] libbsd: Fix
On Thu, May 9, 2024 at 04:49 PM, Richard Purdie wrote:
>
> Unfortunately these patches are coming through with corrupted
> whitespace which means they don't apply.
Hi Richard, thank you for letting me know, I had no idea about this!
I'm still pretty new in this mailing list so I hope I haven't b
From: Peter Marko
Handle regression of CVE-2024-34397 fix.
News
(https://gitlab.gnome.org/GNOME/glib/-/commit/d40f72e98e4734ba826ba9a278814530720ba760):
Overview of changes in GLib 2.78.6, 2024-05-08
==
* Fix a regression with IBus caused by the fix
If S doesn't exist, do_qa_patch would fail. Fix the code to not fail
in this situation.
Signed-off-by: Richard Purdie
---
meta/classes-global/insane.bbclass | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/meta/classes-global/insane.bbclass
b/meta/classes-global/insane.bbclas
> On 9 May 2024, at 10:37, Richard Purdie via lists.openembedded.org
> wrote:
> Intermittent do_compile failure in libportal:
> https://autobuilder.yoctoproject.org/typhoon/#/builders/117/builds/4760/steps/12/logs/stdio
Root caused this, fix incoming.
> debuginfod keeps breaking:
> https://au
Hi,
I was just reading over the code, trying to figure out how the SDK/eSDK
installer works, and the following stood out to me as a potential bug:
meta/recipes-core/meta/uninative-tarball.bb uses `patchelf` to reserve 1024
bytes in the ELF interpreter section, but the check in
meta/files/toolc
On Sun, 2024-05-05 at 12:01 +, Guðni Már Gilbert via
lists.openembedded.org wrote:
> Python 2.7 support was dropped in version 3.2.0 and
> python3-six dependency was subsequently dropped in version 3.2.1
>
> Signed-off-by: Guðni Már Gilbert
> ---
> meta/recipes-devtools/python/python3-bcrypt
From: Alexander Kanavin
This allows fine-tuning local configurations with pre-frabricated
configuration snippets in a structured, controlled way. It's also
an important building block for bitbake-setup.
There are three operations (list/add/remove), and here's the list output:
alex@Zen2:/srv/sto
Looks good to me! Thanks for the v2
Bruce
On Thu, May 9, 2024 at 11:36 AM Khem Raj wrote:
>
> Its needed to run libteam ptests
>
> Signed-off-by: Khem Raj
> Cc: Bruce Ashfield
> ---
> v2: Add comments in recipe on reason to add it
>
> meta/recipes-kernel/linux/linux-yocto_6.6.bb | 2 ++
> 1 f
Its needed to run libteam ptests
Signed-off-by: Khem Raj
Cc: Bruce Ashfield
---
v2: Add comments in recipe on reason to add it
meta/recipes-kernel/linux/linux-yocto_6.6.bb | 2 ++
1 file changed, 2 insertions(+)
diff --git a/meta/recipes-kernel/linux/linux-yocto_6.6.bb
b/meta/recipes-kernel/
On Thu, 9 May 2024 at 14:50, Janne Kiiskila via lists.yoctoproject.org
wrote:
> Also, as is with things & the pain being in the right place - the people in
> power (i.e. people who can actually fund things) - are not going to ramp up
> the funding, unless they start feeling the pain. This might
On Wed, May 8, 2024 at 11:26 PM Khem Raj wrote:
>
> On Wed, May 8, 2024 at 8:16 PM Bruce Ashfield
> wrote:
> >
> > On Wed, May 8, 2024 at 9:22 PM Khem Raj wrote:
> > >
> > > Signed-off-by: Khem Raj
> > > Cc: Bruce Ashfield
> > > ---
> > > meta/recipes-kernel/linux/linux-yocto_6.6.bb | 1 +
>
> Personally, I'm now really struggling. The intensity of the last few months
> has taken a toll on me and I simply can't switch into handling all of the
> above, I'm running on empty. This means I need a break, everyone knows that
> and agrees.
...
> One of the key issues is that I act like a
Can you respin this to 2.7.3, so we get the vala/gcc14 fix?
Thanks,
Ross
> On 7 May 2024, at 03:23, Anuj Mittal via lists.openembedded.org
> wrote:
>
> Signed-off-by: Anuj Mittal
> ---
> .../enchant/{enchant2_2.6.9.bb => enchant2_2.7.2.bb}| 2 +-
> 1 file changed, 1 insertion(+), 1
On 9 May 2024, at 05:14, Khem Raj via lists.openembedded.org
wrote:
> +#api.vala:43:18: error: assignment to 'gchar **' {aka 'char **'} from
> incompatible pointer type 'const gchar * const*' {aka 'const char * const*'}
> [-Wincompatible-pointer-types]
> +
> +CFLAGS += "-Wno-error=incompatible
On Tue, May 7, 2024 at 4:50 PM Ralph Siemsen via
lists.openembedded.org
wrote:
>
> On Fri, May 3, 2024 at 1:36 PM Steve Sakoman wrote:
> >
> > Please submit a kirkstone patch once this hits the master branch.
I've just sent a patch for scarthgap, clean cherry-picked from master.
The same patch a
When using multiple u-boot configurations in UBOOT_CONFIG, the helper
function uboot_assemble_fitimage_helper() was not called with all
combinations of type & binary, due to a copy-n-paste indexing error.
Signed-off-by: Ralph Siemsen
Signed-off-by: Richard Purdie
(cherry picked from commit 2d338
From: Heiko
If the kernel folder does not exist, find will result in an error.
This can occur if the kernel has no modules but, for example, custom modules
are created.
Add check before deleting.
Signed-off-by: Heiko Thole
Signed-off-by: Alexandre Belloni
Signed-off-by: Richard Purdie
(cher
From: Poonam Jadhav
ppp package has "RSA Data Security" license text
in Message-Digest Algorithm source file md5.c and md4.c
Add RSA-MD in LICENSE field for ppp package
Signed-off-by: Poonam Jadhav
Signed-off-by: Steve Sakoman
---
meta/recipes-connectivity/ppp/ppp_2.4.9.bb | 2 +-
1 file chan
From: Bruce Ashfield
Updating linux-yocto/5.15 to the latest korg -stable release that comprises
the following commits:
b925f60c6ee7 Linux 5.15.157
d564809f27ea net: dsa: mt7530: fix enabling EEE on MT7531 switch on all
boards
eb6535c6f7c2 net: dsa: mt7530: fix improper frames on al
From: Peter Marko
There was no CVE assigned but the commit message is clear.
Signed-off-by: Peter Marko
Signed-off-by: Steve Sakoman
---
...ix-multiple-security-vulnerabilities.patch | 107 ++
.../libarchive/libarchive_3.6.2.bb| 4 +-
2 files changed, 110 inserti
From: Bruce Ashfield
Integrating the following commit(s) to linux-yocto/.:
1/1 [
Author: Bruce Ashfield
Email: bruce.ashfi...@gmail.com
Subject: nfsd: drop CONFIG_NFSD_V3
Date: Tue, 2 Aug 2022 10:52:25 -0400
commit 5f9a62ff7d2808c7b56c0ec90f3b7eae5872afe6
Author: Chu
From: Bruce Ashfield
Updating linux-yocto/5.15 to the latest korg -stable release that comprises
the following commits:
b8086c3c1548 reiserfs: Avoid touching renamed directory if parent does not
change
ea091017ef62 ipv6: Fix data races around sk->sk_prot.
ff8710da80ee ipv6: annotate
From: Bruce Ashfield
Data pulled from: https://github.com/nluedtke/linux_kernel_cves
1/1 [
Author: Nicholas Luedtke
Email: nicholas.lued...@uwalumni.com
Subject: Update 8Apr24
Date: Tue, 9 Apr 2024 18:19:11 -0400
]
Signed-off-by: Bruce Ashfield
Signed-o
From: Bruce Ashfield
Updating linux-yocto/5.15 to the latest korg -stable release that comprises
the following commits:
fa3df276cd36 Linux 5.15.155
b54c4632946a Revert "ACPI: CPPC: Use access_width over bit_width for system
memory accesses"
1793e6b2dae0 VMCI: Fix possible memcpy() r
From: Bruce Ashfield
Data pulled from: https://github.com/nluedtke/linux_kernel_cves
1/1 [
Author: Nicholas Luedtke
Email: nicholas.lued...@uwalumni.com
Subject: Update 8Apr24
Date: Tue, 9 Apr 2024 18:19:11 -0400
]
Signed-off-by: Bruce Ashfield
Signed-o
From: Bruce Ashfield
Data pulled from: https://github.com/nluedtke/linux_kernel_cves
1/1 [
Author: Nicholas Luedtke
Email: nicholas.lued...@uwalumni.com
Subject: Update 25Feb24
Date: Sun, 25 Feb 2024 07:03:08 -0500
]
Signed-off-by: Bruce Ashfield
Signed
From: Peter Marko
Addresses CVEs:
* CVE-2023-52425 (bundled expat)
* CVE-2023-6597 (https://github.com/python/cpython/pull/112840)
News: https://github.com/python/cpython/blob/3.10/Misc/NEWS.d/3.10.14.rst
Signed-off-by: Peter Marko
Signed-off-by: Steve Sakoman
---
.../python/{python3_3.10.13
From: Bruce Ashfield
Data pulled from: https://github.com/nluedtke/linux_kernel_cves
1/1 [
Author: Nicholas Luedtke
Email: nicholas.lued...@uwalumni.com
Subject: Update 25Feb24
Date: Sun, 25 Feb 2024 07:03:08 -0500
]
Signed-off-by: Bruce Ashfield
Signed
From: Bruce Ashfield
Updating linux-yocto/5.15 to the latest korg -stable release that comprises
the following commits:
9465fef4ae35 Linux 5.15.153
d180150ea714 remoteproc: stm32: fix incorrect optional pointers
85e26c4a74ff regmap: Add missing map->bus check
c10fed329c1c spi: sp
From: Bruce Ashfield
Updating linux-yocto/5.15 to the latest korg -stable release that comprises
the following commits:
b95c01af2113 Linux 5.15.152
a1211bbf7814 serial: max310x: fix IO data corruption in batched operations
0ba485f90d97 serial: max310x: make accessing revision id inte
From: Bruce Ashfield
Data pulled from: https://github.com/nluedtke/linux_kernel_cves
1/1 [
Author: Nicholas Luedtke
Email: nicholas.lued...@uwalumni.com
Subject: Update 25Feb24
Date: Sun, 25 Feb 2024 07:03:08 -0500
]
Signed-off-by: Bruce Ashfield
Signed
From: Archana Polampalli
A flaw was found in ofono, an Open Source Telephony on Linux. A stack overflow
bug
is triggered within the decode_submit_report() function during the SMS decoding.
It is assumed that the attack scenario is accessible from a compromised modem,
a malicious base station, or
From: Soumya Sambu
ncurses 6.4-20230610 has a NULL pointer dereference in tgetstr in
tinfo/lib_termcap.c.
References:
https://nvd.nist.gov/vuln/detail/CVE-2023-45918
Signed-off-by: Soumya Sambu
Signed-off-by: Steve Sakoman
---
.../ncurses/files/CVE-2023-45918.patch| 180
From: Bruce Ashfield
Updating linux-yocto/5.15 to the latest korg -stable release that comprises
the following commits:
574362648507 Linux 5.15.151
4a4eeb691253 mptcp: fix double-free on socket dismantle
cc5e34bc5b20 Revert "tls: rx: move counting TlsDecryptErrors for sync"
9d593
From: Archana Polampalli
Signed-off-by: Archana Polampalli
Signed-off-by: Steve Sakoman
---
.../CVE-2023-6.patch | 329 ++
.../gstreamer1.0-plugins-bad_1.20.7.bb| 1 +
2 files changed, 330 insertions(+)
create mode 100644
meta/recipes-multim
From: Vijay Anusuri
import patch from ubuntu to fix
CVE-2024-32487
Upstream-Status: Backport [import from ubuntu
https://git.launchpad.net/ubuntu/+source/less/tree/debian/patches?h=ubuntu/jammy-security
Upstream commit
https://github.com/gwsw/less/commit/007521ac3c95bc76e3d59c6dbfe75d06c8075c3
From: Archana Polampalli
Signed-off-by: Archana Polampalli
Signed-off-by: Steve Sakoman
---
.../CVE-2024-0444.patch | 42 +++
.../gstreamer1.0-plugins-bad_1.20.7.bb| 1 +
2 files changed, 43 insertions(+)
create mode 100644
meta/recipes-multimed
Please review this set of changes for kirkstone and have comments back by
end of day Monday, May 13
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/6889
The following changes since commit 8a502301209ef144932ef5071c1a9b738db23270:
rootfs-postcomm
From: Archana Polampalli
A flaw was found in ofono, an Open Source Telephony on Linux. A stack overflow
bug
is triggered within the sms_decode_address_field() function during the SMS
PDU decoding. It is assumed that the attack scenario is accessible from a
compromised
modem, a malicious base st
On Thu, 2024-05-09 at 12:48 +0100, Richard Purdie via lists.openembedded.org
wrote:
> There are potential security issues from using pre-generated host keys. We
> made
> the recipe available for autobuilder testing purposes but concerns remain
> about
> how easily this could end up in production
There are potential security issues from using pre-generated host keys. We made
the recipe available for autobuilder testing purposes but concerns remain about
how easily this could end up in production.
I thought we'd already done this, but limit the recipe to qemu* machines,
which means any real
From: Jookia
The variable uninative_checksum is returned without being set, causing a
build error. Set it to None by default instead.
Signed-off-by: Richard Purdie
---
meta/classes-recipe/populate_sdk_ext.bbclass | 2 ++
1 file changed, 2 insertions(+)
diff --git a/meta/classes-recipe/populat
I think I need to write down a bit of a summary status on where we (and
I) am at with things.
The good news is that scarthgap is released. On the downside, we messed
up the public hash server url in local.conf.sample so we have a point
release in progress to fix that.
The Sovereign Tech Fund (STF
On Wed, 2024-05-01 at 08:17 +0200, Zoltan Boszormenyi via
lists.openembedded.org wrote:
> The build framework of zip adds -DNO_DIR to CFLAGS after
> failing to link this piece of test code:
>
> int main() { return closedir(opendir(".")); }
>
> However, zip does not take a case into account whe
49 matches
Mail list logo
