From: Kai Kang
Backport patch to fix CVE-2022-25315.
CVE: CVE-2022-25315
Signed-off-by: Kai Kang
---
.../expat/expat/CVE-2022-25315.patch | 149 ++
meta/recipes-core/expat/expat_2.2.10.bb | 1 +
2 files changed, 150 insertions(+)
create mode 100644 meta/recip
From: Kai Kang
Backport patch to fix CVE-2022-25313.
CVE: CVE-2022-25313
Signed-off-by: Kai Kang
---
.../expat/expat/CVE-2022-25313.patch | 233 ++
meta/recipes-core/expat/expat_2.2.10.bb | 1 +
2 files changed, 234 insertions(+)
create mode 100644 meta/recip
From: Kai Kang
Backport patch to fix CVE-2022-25314 for expat.
CVE: CVE-2022-25314
Signed-off-by: Kai Kang
---
.../expat/expat/CVE-2022-25314.patch | 35 +++
meta/recipes-core/expat/expat_2.2.10.bb | 1 +
2 files changed, 36 insertions(+)
create mode 100644 me
The patch creates ${MULTIMACH_TARGET_SYS}-toolchain.cmake file
at ${SDK_INSTALL_DIR}/sysroots/${SDK_SYS}/usr/share/cmake/, which is
per-toolchain CMake toolchain file containing arch-specific values
and independent of OE environment variables.
The file gets created after installing SDK toolchain in
On Wed, 2022-03-30 at 21:40 +0100, Ross Burton wrote:
> Hm, turns out I was being too clever back in 2019.
>
> Anuj: the quick fix is to not use :prepend/:remove to manipulate
> SRC_URI, but just override it entirely. You won't get the CVE but
> that will be flagged in scans and you (or even bett
On Wed, Mar 30, 2022 at 10:40 AM Ross Burton wrote:
>
> Hm, turns out I was being too clever back in 2019.
>
> Anuj: the quick fix is to not use :prepend/:remove to manipulate
> SRC_URI, but just override it entirely. You won't get the CVE but
> that will be flagged in scans and you (or even bett
I got some feedback from the kmod upstream, a v2 will be coming soon.
Sau!
On 3/30/22 15:11, Saul Wold wrote:
This adds a new configuration directive to depmod that causes
depmod to exclude a give path entry like .debug.
kernel-dbg provides the modules .debug/.ko files and
when installed eith
On Wed, 2022-03-30 at 15:11 -0700, Saul Wold wrote:
> Use the native staging dir so that we can get the correct depmod.d
> configuration
> files. When depmod runs we want to ensure that the newly supported
> exclude.conf
> is read so that .debug/.ko files are excluded.
>
> Signed-off-by: Saul Wo
Use the native staging dir so that we can get the correct depmod.d configuration
files. When depmod runs we want to ensure that the newly supported exclude.conf
is read so that .debug/.ko files are excluded.
Signed-off-by: Saul Wold
---
meta/recipes-kernel/kmod/depmodwrapper-cross_1.0.bb | 4 ++-
This adds a new configuration directive to depmod that causes
depmod to exclude a give path entry like .debug.
kernel-dbg provides the modules .debug/.ko files and
when installed either directly or when dbg-pkgs are selected
this can cause depmod to fail.
This patch will be submitted to upstream
Hm, turns out I was being too clever back in 2019.
Anuj: the quick fix is to not use :prepend/:remove to manipulate
SRC_URI, but just override it entirely. You won't get the CVE but
that will be flagged in scans and you (or even better,the fork
maintainer) can rebase the CVE patch.
As this is a
Some graphics driver implementations ( e.g sgx ) do not yet support APIs from
mesa
21.x, and some portions of weston simple clients depend on these APIs,
therefore introduce a way to specify all or a selection fo clients to
build
Fixes
clients/weston-simple-dmabuf-feedback.p/simple-dmabuf-
feedb
On Wed, Mar 30, 2022 at 6:16 AM Steve Sakoman via
lists.openembedded.org
wrote:
>
> Unfortunately this patch doesn't seem to apply:
>
> Applying: go: backport patch fix for CVE-2021-38297
> Using index info to reconstruct a base tree...
> M meta/recipes-devtools/go/go-1.14.inc
> .git/rebase-apply/
On Wed, Mar 30, 2022 at 1:16 AM Stefan Herbrechtsmeier
wrote:
>
> From: Stefan Herbrechtsmeier
>
> Add a base package version (BPV) variable and use it as default for the
> package version (PV) variable. The BPV variable contains the base
> package version of the recipe read from the recipe filen
Hi Richard,
Am 30.03.2022 um 13:51 schrieb Richard Purdie:
On Wed, 2022-03-30 at 10:16 +0200, Stefan Herbrechtsmeier wrote:
From: Stefan Herbrechtsmeier
Add a base package version (BPV) variable and use it as default for the
package version (PV) variable. The BPV variable contains the base
pa
Unfortunately this patch doesn't seem to apply:
Applying: go: backport patch fix for CVE-2021-38297
Using index info to reconstruct a base tree...
M meta/recipes-devtools/go/go-1.14.inc
.git/rebase-apply/patch:73: space before tab in indent.
offset += 8;
.git/rebase-apply/patch:74: space before
Patch taken from
https://github.com/golang/go/commit/4548fcc8dfd933c237f29bba6f90040a85922564
from the following issue
https://github.com/golang/go/issues/48797
Original repo
https://go.googlesource.com/go/+/77f2750f4398990eed972186706f160631d7dae4
Signed-off-by: Davide Gardenal
---
meta/recipe
In case of an error during download or parse of NVD JSON files, the
previously opened sqlite3 database should be closed. Also any pending
transactions should be flushed using conn.commit(). Otherwise there can
be a "hot journal" left behind, which can cause a subsequent read-only
connection to fail
These two repositories are large and overload our downloads server as a
premirror but the recipes are easier to maintain as git urls. Compromise
and use shallow clones for them.
In order to be effective, we need premirror entries on where to find
the shallow mirror tarballs.
Signed-off-by: Richar
On Wed, 2022-03-30 at 10:16 +0200, Stefan Herbrechtsmeier wrote:
> From: Stefan Herbrechtsmeier
>
> Add a base package version (BPV) variable and use it as default for the
> package version (PV) variable. The BPV variable contains the base
> package version of the recipe read from the recipe file
The intention is that changing bitbake.conf is heavy handed, and the
use case is not well presented. Why and where this is needed?
Alex
On Wed, 30 Mar 2022 at 13:42, Stefan Herbrechtsmeier
wrote:
>
> Hi Alex,
>
> Am 30.03.2022 um 10:41 schrieb Alexander Kanavin:
> > Mangling PV is more flexibly
Hi Alex,
Am 30.03.2022 um 10:41 schrieb Alexander Kanavin:
Mangling PV is more flexibly done with a lambda function in the
recipe, where you can trim and tweak PV to your heart's desire, e.g.
gnomebase.bbclass:
def gnome_verdir(v):
return ".".join(v.split(".")[:-1])
SRC_URI =
"${GNOME_MI
It can be useful to use git on target (e.g. with some wrapper like
etckeeper for keeping track of changes to /etc), and for such cases,
it is likely one has no need for pulling from/pushing to http[s]
repositories. From the INSTALL file:
- "libcurl" library ... If you do not use http:// or htt
The missing gitsm:// mappings looks like an oversight, add them.
Signed-off-by: Richard Purdie
---
meta/classes/mirrors.bbclass | 2 ++
1 file changed, 2 insertions(+)
diff --git a/meta/classes/mirrors.bbclass b/meta/classes/mirrors.bbclass
index 8e7b35d9000..37dc449ade7 100644
--- a/meta/class
When creating an initramfs bundled into a kernel fitimage, the resulting
fitimage will only be placed into the deploy directory and not packaged
by the kernel recipe/class.
Changing the kernel recipe/class to produce a package with the fitimage
containing the initramfs is not possible, because bui
Hi,
I am currently investigating how to package a fitimage with embedded
initramfs and came up with the following recipe.
The recipe will have issues because its version is not linked to the
kernel version, so updating via package repos will not work.
But that would not be important for my use-ca
Not lambda in this case, but nevermind :)
Alex
On Wed, 30 Mar 2022 at 10:41, Alexander Kanavin wrote:
>
> Mangling PV is more flexibly done with a lambda function in the
> recipe, where you can trim and tweak PV to your heart's desire, e.g.
> gnomebase.bbclass:
>
> def gnome_verdir(v):
> ret
Mangling PV is more flexibly done with a lambda function in the
recipe, where you can trim and tweak PV to your heart's desire, e.g.
gnomebase.bbclass:
def gnome_verdir(v):
return ".".join(v.split(".")[:-1])
SRC_URI =
"${GNOME_MIRROR}/${GNOMEBN}/${@gnome_verdir("${PV}")}/${GNOMEBN}-${PV}.tar
Signed-off-by: Simon Kuhnle
---
scripts/contrib/convert-variable-renames.py | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/scripts/contrib/convert-variable-renames.py
b/scripts/contrib/convert-variable-renames.py
index 856c001e11..eded90ca61 100755
--- a/scripts/contrib/conv
From: Stefan Herbrechtsmeier
Add a base package version (BPV) variable and use it as default for the
package version (PV) variable. The BPV variable contains the base
package version of the recipe read from the recipe filename.
The base package version variable supports an expansion of the versi
30 matches
Mail list logo
