[OE-core] [PATCH] ell: updte to 0.33

Changelog - Fix issue with uintset and number of bytes copied. - Fix issue with overflow in DHCP lease T2 computation. - Fix issue with side channel leak in l_ecc_scalar_new. - Fix issue with missing MSG_MORE in l_cipher_set_iv. - Add support for DHCP v6 client implementation. Signed-off-by: Oleks

Re: [OE-core] [PATCH] rootfs-postcommands.bbclass: make /etc/timestamp path configurable

On 04/09/2020 13.51, Richard Purdie wrote: > On Fri, 2020-09-04 at 09:08 +0200, Rasmus Villemoes wrote: >> Not every image necessarily wants a timestamp file, > > Wouldn't you just not have rootfs_update_timestamp in > ROOTFS_POSTPROCESS_COMMAND in that case? Perhaps, but removing stuff from ROOT

[OE-core] [PATCH v3] wic/bootimg-efi: IMAGE_EFI_BOOT_FILES variable added to separate bootimg-efi and bootimg-partition

From: Khairul Rohaizzat Jamaluddin Due to recent changes in bootimg-efi to include IMAGE_BOOT_FILES, when both bootimg-partition and bootimg-efi occur in a single .wks and IMAGE_BOOT_FILES are defined, files listed in IMAGE_BOOT_FILES will be duplicated in both partition. Since IMAGE_BOOT_FILES a

[OE-core][PATCH] gnutls: CVE-2020-24659

Backport the CVE patch from the usptream: https://gitlab.com/gnutls/gnutls.git commit 29ee67c205855e848a0a26e6d0e4f65b6b943e0a Signed-off-by: Zhixiong Chi --- .../gnutls/gnutls/CVE-2020-24659.patch| 117 ++ meta/recipes-support/gnutls/gnutls_3.6.14.bb | 1 + 2 files ch

[OE-core][zeus][PATCH] gnutls: CVE-2020-24659

Backport the CVE patch from the usptream: https://gitlab.com/gnutls/gnutls.git commit 29ee67c205855e848a0a26e6d0e4f65b6b943e0a Signed-off-by: Zhixiong Chi --- .../gnutls/gnutls/CVE-2020-24659.patch| 117 ++ meta/recipes-support/gnutls/gnutls_3.6.13.bb | 1 + 2 files ch

Re: [OE-core] [PATCH 7/8] bind: Add 9.16.x

On Mon, Sep 7, 2020 at 5:28 PM akuster808 wrote: > > > > On 9/4/20 1:39 AM, Andrey Zhizhikin wrote: > > Hello Armin, > > > > On Tue, Sep 1, 2020 at 5:23 PM akuster wrote: > >> Removed obsolete packageconfig options > >> > >> License change to MPL-2.0 > >> https://gitlab.isc.org/isc-projects/bind9

[OE-core] [PATCH][zeus 19/19] python3-testtools: Avoid traceback2 module requirement

traceback2 adds traceback for python2. Rather than depend on traceback2, we're python3 only so just use traceback. This caused breakage in oe-selftest -j which uses testtools on the autobuilder using buildtools-tarball. [YOCTO #13652] (From OE-Core rev: ee80a06c107375e3cf0d246ea17c09dda4536dab)

[OE-core] [PATCH][zeus 02/19] buildtools-tarball: Add an ld.so.conf for nativesdk-binutils

We need to search our own libdirs, then fall back to the system ones as our customised dynamic loader will. Have ld.so.conf reflect that. This ensures that binutils finds libraries here when linking too. Signed-off-by: Richard Purdie --- meta/recipes-core/meta/buildtools-tarball.bb | 4 1

[OE-core] [PATCH][zeus 08/19] buildtools-extended-tarball: Add libstc++.a

From: Jeremy Puhlman Builds like native-openjdk, really wants a to link some tools against the static version. Since when using the extended tarball, its the only place to get it, add the library. (From OE-Core rev: 59c4a3fdbbfd5a6aaba7e0a1675dcd5866a7f3a4) Signed-off-by: Jeremy Puhlman Signed

[OE-core] [PATCH][zeus 17/19] attr: Disable parallel make install

do_install fails on newer versions of make with interesting and hard to debug errors. Disablle parallle make install as a workaround. Later verisons of attr in newer releases don't have the issue. Signed-off-by: Richard Purdie --- meta/recipes-support/attr/attr_2.4.47.bb | 3 +++ 1 file changed,

[OE-core] [PATCH][zeus 11/19] buildtools-tarball: add nativesdk-python

From: Jeremy Puhlman Signed-off-by: Jeremy Puhlman --- meta/recipes-core/meta/buildtools-extended-tarball.bb | 1 + 1 file changed, 1 insertion(+) diff --git a/meta/recipes-core/meta/buildtools-extended-tarball.bb b/meta/recipes-core/meta/buildtools-extended-tarball.bb index 37f97056139..32a1

[OE-core] [PATCH][zeus 06/19] buildtools-extended-tarball: Add locale command

The eSDK installation code checks installed locales with the locale command which is from glibc-utils. Add this so that we find the correct locales from the buildtools. (From OE-Core rev: 7d35e4bc6ff94a2d03c48827d7d60a6855c9029d) Signed-off-by: Richard Purdie --- meta/recipes-core/meta/buildt

[OE-core] [PATCH][zeus 16/19] oeqa/selftest: Ensure buildtools in environment variables isn't replaced

This avoids the seeing broken replacements like: oe-selftest-centos/build/build-st-926tools/sysroots/x86_64-pokysdk-linux/etc/ssl/certs/ca-certificates.crt which understandably break builds. (From OE-Core rev: 04ee0e8b95cd8ed890374e0007f976684206b630) (Cherry-picked from f930e2cadb9ee69759720b6c4

[OE-core] [PATCH][zeus 03/19] binutils: Fix relocation of ld.so.conf in nativesdk builds

We need binutils to look at our ld.so.conf file within the SDK to ensure we search the SDK's libdirs as well as those from the host system. There add a patch which passes in the directory to the code using a define, then add it to a section we relocate in a similar way to the way we relocate the g

[OE-core] [PATCH][zeus 13/19] buildtools-extended-tarball: add nativesdk-libxcrypt-dev

From: Jeremy Puhlman virtual/crypt-native is assume provided in bitbake.conf, so buildtools-extended-tarball shoud provide crypt since it doesn't use the host's headers/libraries. [YOCTO #13714] (From OE-Core rev: da948b25d5ef452fb35275d108e18d2a2829f4fb) Signed-off-by: Jeremy A. Puhlman Sign

[OE-core] [PATCH][zeus 15/19] oeqa/testsdk: Use original PATH

We want to test the SDK with PATH from the original host, not with our own tools injected via HOSTTOOLS. It even uses some tools which aren't in HOSTTOOLS. This is necessary after changing the SDK to not reset PATH to the system default which is bad for other reasons and brings the testing into sy

[OE-core] [PATCH][zeus 00/19] Add buildtools-extended support to zeus

This series backports buildtools-extended-tarball support to zeus along with various fixes to allow it and automated testing to work most effectively. Jeremy Puhlman (3): buildtools-extended-tarball: Add libstc++.a buildtools-tarball: add nativesdk-python buildtools-extended-tarball: add nat

[OE-core] [PATCH][zeus 04/19] binutils: Install non-alternatives links for nativesdk

In the SDK we need the plain symlinks and don't use alternative providers. When these are missing the toolchain can work incorrectly so fix this. (From OE-Core rev: 0c06cfaa016d06cc56d80dc1c244a938f3d38a3c) Signed-off-by: Richard Purdie --- meta/recipes-devtools/binutils/binutils_2.32.bb | 3 ++

[OE-core] [PATCH][zeus 14/19] uninative: Upgrade to 2.9

From: Khem Raj This supports glibc upto 2.32 which is now rolling into distributions Signed-off-by: Khem Raj Signed-off-by: Richard Purdie --- meta/conf/distro/include/yocto-uninative.inc | 10 +- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/meta/conf/distro/include/y

[OE-core] [PATCH][zeus 18/19] selftest/signing: Ensure build path relocation is safe

Similarly to 04ee0e8b95cd8ed890374e0007f976684206b630, ensure only full build paths are replaced in the environment to avoid breaking buildtools. Signed-off-by: Richard Purdie --- meta/lib/oeqa/selftest/cases/signing.py | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/meta

[OE-core] [PATCH][zeus 01/19] buildtools-extended-tarball: add recipe with build-essentials

From: Tim Orling * For some aging distros, such as CentOS 7, the native version of gcc is simply too ancient and is a constant source of headaches for moving forward. * Add an extended version of buildtools-tarball which adds all of build-essential, so that the host is now modernized and

[OE-core] [PATCH][zeus 12/19] glibc: Update nativesdk locale relocation patch

The locale binary reported incorrect locale lists in relocated toolchains as some path references were not relocated by this patch. Fix this missing relocations so the locale binary correctly reports the locales. (From OE-Core rev: f7a6a72880009380ae81bc7fc863921a26811c8c) Signed-off-by: Richard

[OE-core] [PATCH][zeus 05/19] files/toolchain-shar-extract.sh: Rework PATH cleaning

Trying to create a clean PATH breaks cases where we install a buildtools tarball on hosts to provide newer versions of gcc. Rework the fix for #8698 to clean up directories in PATH which don't exist isntead. Do it with python as the shell version was too fraught with corner cases. (From OE-Core re

[OE-core] [PATCH][zeus 09/19] buildtools-tarball: export OPENSSL_CONF for openssl

From: Liwei Song export OPENSSL_CONF to aviod SDK openssl can not find openssl.cnf. (From OE-Core rev: 0aaf3dd17dcde959e9c0d62543cb91c9b33551b4) Signed-off-by: Liwei Song Signed-off-by: Richard Purdie --- meta/recipes-core/meta/buildtools-tarball.bb | 1 + 1 file changed, 1 insertion(+) dif

[OE-core] [PATCH][zeus 10/19] buildtools-tarball: export OPENSSL_CONF in environment setup

From: Steve Sakoman The autobuilder has been experiencing SSL: CERTIFICATE_VERIFY_FAILED errors during error report uploads when using buildtools due to looking for certs in /opt/poky (From OE-Core rev: 197f1d5d14b8e57295f5a81c03c86abba5328614) Signed-off-by: Steve Sakoman Signed-off-by: Richa

[OE-core] [PATCH][zeus 07/19] nativesdk-buildtools-perl-dummy: add dependencies for autoconf and automake

From: Tim Orling * For buildtools-extended-tarball, where we are adding all of build-essentials to the nativesdk, we need additional perl modules for autoconf and automake. (From OE-Core rev: f0f766160663407ea7683d31bbf5f011accc9ba2) Signed-off-by: Tim Orling Signed-off-by: Richard Purdie -

[OE-core] Yocto Project Newcomer & Unassigned Bugs - Help Needed

All, The triage team is starting to try and collect up and classify bugs which a newcomer to the project would be able to work on in a way which means people can find them. They're being listed on the triage page under the appropriate heading: https://wiki.yoctoproject.org/wiki/Bug_Triage#Newc

[OE-core][dunfell 18/18] package: get_package_mapping: avoid dependency mapping if renamed package provides original name

From: Yann Dirson Packages with a runtime dependency on a target package whose name is changed by the PKG_* mechanism must rebuild when that mapping changes, but we have no way of tracking this today, so eg. packagegroup-machine-base ends up with a relationship on a versioned kernel-image, and do

[OE-core][dunfell 02/18] devtool: expand SRC_URI when guessing recipe update mode

From: Martin Jansa * I have recipes which use variable inside SRC_URI, e.g.: ROS_BRANCH ?= "branch=release/melodic/swri_nodelet" SRC_URI = "git://github.com/swri-robotics-gbp/marti_common-release;${ROS_BRANCH};protocol=https" and devtool modify works fine, but devtool finish fails with:

[OE-core][dunfell 03/18] kernel-yocto: checksum all modifications to available kernel fragments directories

From: Bruce Ashfield This is based on the patch from Zhaolong Zhang [kernel-yocto: checksum indirect cfg and scc files] While the recommended manner to share/reuse feature fragments is to maintain them in a kernel-meta repository and track the changes via the standard SRCREV fetcher mechanism,

[OE-core][dunfell 07/18] sysstat: fix installed-vs-shipped QA Issue in systemd

From: hongxu While enabling systemd, there is QA issue: ... |ERROR: sysstat-12.4.0-r0 do_package: QA Issue: sysstat: Files/directories were installed but not shipped in any package: | /lib/systemd/system-sleep | /lib/systemd/system-sleep/sysstat.sleep ... https://www.freedesktop.org/software/s

[OE-core][dunfell 13/18] insane: improve gnu-hash-style warning

From: Ross Burton Instead of showing a filename under packages-split, show the package name and filename inside the package. Signed-off-by: Ross Burton Signed-off-by: Richard Purdie (cherry picked from commit 4f78fc65bb0c9bff05651d9e543bab3d75998f79) Signed-off-by: Steve Sakoman --- meta/cla

[OE-core][dunfell 11/18] oeqa: sdk: Capture stderr output

From: Joshua Watt Redirect stderr to stdout when running subcommands while doing the SDK tests. The tests will show stdout when CalledProcessError is raised, but any output to stderr was lost. Signed-off-by: Joshua Watt Signed-off-by: Richard Purdie (cherry picked from commit 7cb4e9ab8c1596281

[OE-core][dunfell 16/18] json-glib: Backport a build fix with clang

From: Khem Raj Signed-off-by: Khem Raj Signed-off-by: Richard Purdie (cherry picked from commit a654c916853f6ead4268282e15dc8c9ef962446e) Signed-off-by: Steve Sakoman --- ...o-instead-of-cast-to-convert-pointer.patch | 33 +++ .../json-glib/json-glib_1.4.4.bb | 4

[OE-core][dunfell 08/18] wic: misc: Add /bin to the list of searchpaths

From: Vijai Kumar K /bin is also a valid path where one can find executables. Add that to the search path. Signed-off-by: Vijai Kumar K Signed-off-by: Richard Purdie (cherry picked from commit ca0a6025351cb2135e87cecf828633cf12aa34c6) Signed-off-by: Steve Sakoman --- scripts/lib/wic/misc.py

[OE-core][dunfell 14/18] devtool: deploy-target: Fix size calculation for hard links

From: Michael Tretter If a package contains hard links to a file, the file size is added for each hard link instead of once for the file. Therefore, the calculated size may be much larger than the actual package size. For example, the mesa-megadriver package contains several hard links to the sa

[OE-core][dunfell 09/18] recipes-kernel: linux-firmware add qcom-venus-{5.2,5.4} packages

From: Anibal Limon Signed-off-by: Aníbal Limón Signed-off-by: Richard Purdie (cherry picked from commit e20c1e07a807f66f028104d8491d974a36734192) Signed-off-by: Steve Sakoman --- .../linux-firmware/linux-firmware_20200817.bb | 6 +- 1 file changed, 5 insertions(+), 1 deletio

[OE-core][dunfell 15/18] selftest/prservice: Improve test failure message

From: Richard Purdie When failing, give more information about why exactly a failure is happening such as the PR values in question. Signed-off-by: Richard Purdie (cherry picked from commit bdd3abcc210e8f58b7b411da6bbd9c5314819908) Signed-off-by: Steve Sakoman --- meta/lib/oeqa/selftest/cases

[OE-core][dunfell 17/18] linux-libc-headers: kernel headers are installed in STAGING_KERNEL_BUILDDIR

From: Nicolas Dechesne Since 'fido', kernel headers are installed in STAGING_KERNEL_BUILDDIR, not STAGING_KERNEL_DIR. So this message in the linux-libc-headers recipe is slightly misleading. Signed-off-by: Nicolas Dechesne Signed-off-by: Richard Purdie (cherry picked from commit bdd06f8ed58ed1

[OE-core][dunfell 10/18] util-linux: Allow update alternatives for additional apps

From: Khem Raj mcookie/prlimit/uuidgen are also provided by toybox Signed-off-by: Khem Raj Signed-off-by: Richard Purdie (cherry picked from commit b613599de531e2cb4017e91a8c41749d1fd5) Signed-off-by: Steve Sakoman --- meta/recipes-core/util-linux/util-linux.inc | 3 +++ 1 file changed,

[OE-core][dunfell 06/18] sanity.conf: update BB_MIN_VERSION to 1.46.0

npm changes were merged that require bitbake 1.46.0, you can't do a recipetool newappend on dunfell otherwise Signed-off-by: Steve Sakoman --- meta/conf/sanity.conf | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/meta/conf/sanity.conf b/meta/conf/sanity.conf index 8b2f655394.

[OE-core][dunfell 05/18] cml1: Move find_cfgs() helper to cml1.bbclass

From: Rasmus Villemoes u-boot.inc and busybox.inc contain identical copies of this little helper. They both inherit the cml1 class and use cml1_do_configure right after having used this helper, and other recipes that want to write similar logic for doing Kconfig via fragments will also need it or

[OE-core][dunfell 04/18] json-c: Fix CVE-2020-12762

From: Khem Raj Signed-off-by: Khem Raj Signed-off-by: Steve Sakoman --- .../json-c/json-c/CVE-2020-12762.patch| 231 ++ meta/recipes-devtools/json-c/json-c_0.13.1.bb | 1 + 2 files changed, 232 insertions(+) create mode 100644 meta/recipes-devtools/json-c/json-c/CVE-

[OE-core][dunfell 00/18] Patch review

Please review this next set of changes for dunfell and have comments back by end of day Wednesday. Passed a-full on autobuilder: https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/1350 NOTE: json-c: Fix CVE-2020-12762 has a line longer than 988 characters and thus breaks send-pull

[OE-core][dunfell 01/18] package.bbclass: explode the RPROVIDES so we don't think the versions are provides

From: Ross Burton emit_pkgdata() creates symlinks for each of the RPROVIDES in pkgdata/MACHINE/runtime-rprovides. However this string can contain versions which results in directories called (=2.32), so pass the RPROVIDES string through bb.utils.explode_deps() to strip the versions out. Helps m

[OE-core][dunfell 12/18] insane: fix gnu-hash-style check

From: Sumit Garg Fix gnu-hash-style check that always returned True after commit [1] leading to false positive presence of "GNU_HASH" in objdump output. Fixes: 9ff90bf04a4c ("mips: Enable gnu-hash-style on glibc") [1] Signed-off-by: Sumit Garg Signed-off-by: Richard Purdie (cherry picked from

[OE-core] [meta-oe][PATCH 2/2] oe-publish-sdk: add --keep-orig option

Support publishing the sdk-update as well as the sdk installer in one go. Signed-off-by: Adrian Freihofer --- scripts/oe-publish-sdk | 6 +- 1 file changed, 5 insertions(+), 1 deletion(-) diff --git a/scripts/oe-publish-sdk b/scripts/oe-publish-sdk index 19a5d69864..deb8ae1807 100755 --- a/

[OE-core] [meta-oe][PATCH 1/2] oe-publish-sdk: fix layers init via ssh

Escaping does not work in my use case. It must be escaped for python, ssh and shell as well as for different versions of echo. Let's try it a little less elegant, but hopefully more reliable. Signed-off-by: Adrian Freihofer --- scripts/oe-publish-sdk | 2 +- 1 file changed, 1 insertion(+), 1 del

[OE-core] [dunfell][PATCH] uninative: Upgrade to 2.9

From: Khem Raj This supports glibc upto 2.32 which is now rolling into distributions Signed-off-by: Khem Raj Signed-off-by: Richard Purdie (cherry picked from commit 5cda8c7d642cfb72242c95f450e3391bd6537709) Signed-off-by: Armin Kuster --- meta/conf/distro/include/yocto-uninative.inc | 10 ++

[OE-core] [PATCH] selftest/signing: Ensure build path relocation is safe

Similarly to 04ee0e8b95cd8ed890374e0007f976684206b630, ensure only full build paths are replaced in the environment to avoid breaking buildtools. Signed-off-by: Richard Purdie --- meta/lib/oeqa/selftest/cases/signing.py | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/meta

Re: [OE-core] [PATCH 7/8] bind: Add 9.16.x

On 9/4/20 1:39 AM, Andrey Zhizhikin wrote: > Hello Armin, > > On Tue, Sep 1, 2020 at 5:23 PM akuster wrote: >> Removed obsolete packageconfig options >> >> License change to MPL-2.0 >> https://gitlab.isc.org/isc-projects/bind9/blob/master/LICENSE >> >> Refreshed: >> bind-ensure-searching-for-jso

[OE-core] [PATCH] image.bbclass: fix REPRODUCIBLE_TIMESTAMP_ROOTFS reference

Commit 97b439469a45a089431ca9c31893288c855045f4 added a fallback mechanism for getting the rootfs timestamp. However, it uses curly braces around the variable name, which causes bitbake resolve the variable reference, rather than the shell, so the git timestamp never gets used. Fix the reference to

[OE-core] [oe][zeus][PATCH] go: Security Advisory - go - CVE-2020-24553

Backport the patch from to solve CVE-2020-24553. Signed-off-by: Li Zhou --- meta/recipes-devtools/go/go-1.12.inc | 2 + ...tp-cgi-rename-a-test-file-to-be-less-cute.patch | 28 ++ .../go/go-1.12/CVE-