ping
On Mon, 2022-01-24 at 08:19 +, Andrej Valek via
lists.openembedded.org wrote:
> Hello Richard,
>
> Fine, that we have it, but are you going to take a look on the patch
> :)
> ?
>
> Regards,
> Andrej
>
> On Fri, 2022-01-21 at 10:18 +0100, Michael Opdenacker wrote:
> >
> > On 1/19/22 5:
From: Changqing Li
dev in modules.devname should be populated in /dev on boot.
remove create static mode from udevd will make these devices
cannot be populated. When use sysVinit, devices like /dev/net/tun
will not be created.
more info:
udevd in systemd also remove create static mode in udevd,
On 2022-05-11 18:05, Joe Slater wrote:
Advance to 2.38 to fix CVE-2021-3995 and CVE-2021-3996
by pulling that recipe from master. The first version
on master to fix these was 2.37.4.
Signed-off-by: Joe Slater
---
...d_2.36.2.bb => util-linux-libuuid_2.38.bb} | 2 +-
meta/recipes-core/util
Hi, Alex
> > So, I'll send a v3 patch in this way, is it ok?
>
> Yes please.
OK, I'll submit a V3 patch later.
The real problem here is that gnutls upstream didn't consider how fips
> build is supposed to work in cross-compilation, so you should also file a
> ticket
> with them and hopefully d
Advance to 2.38 to fix CVE-2021-3995 and CVE-2021-3996
by pulling that recipe from master. The first version
on master to fix these was 2.37.4.
Signed-off-by: Joe Slater
---
...d_2.36.2.bb => util-linux-libuuid_2.38.bb} | 2 +-
meta/recipes-core/util-linux/util-linux.inc | 18 ++-
...-tags
On 2022-05-06 02:59, Stefan Herbrechtsmeier wrote:
From: Lukas Funke
Signed-off-by: Lukas Funke
Signed-off-by: Stefan Herbrechtsmeier
---
meta/classes/go-vendor.bbclass | 68 ++
1 file changed, 68 insertions(+)
create mode 100644 meta/classes/go-vendor.
On 2022-05-06 03:15, Alexander Kanavin wrote:
This is a lot of code. Can you add some documentation for it, what it
does and how it works? If someone would want to understand it, how
would they go about it?
Alex
On Fri, 6 May 2022 at 09:00, Stefan Herbrechtsmeier
wrote:
From: Lukas Funke
On Wed, May 11, 2022 at 1:27 PM Alexander Kanavin
wrote:
> On Fri, 6 May 2022 at 17:03, Alexander Kanavin via
> lists.openembedded.org
> wrote:
> > Tim, can you pick this up and get it to mergeable condition?
>
I won’t have any time until after the YP Summit.
> I have a fix for this queued lo
On Fri, 6 May 2022 at 17:03, Alexander Kanavin via
lists.openembedded.org
wrote:
> Tim, can you pick this up and get it to mergeable condition?
I have a fix for this queued locally, no need to work on it for now.
Alex
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
V
On 2022-05-06 03:16, Alexander Kanavin wrote:
Also here an explanation of what the test does would be useful.
Please keep in mind: writing code is only half the job. You need to
explain it to non-specialists too, we're already struggling with items
which are understood by few people, or in som
On 2022-05-11 15:45, Mark Asselstine wrote:
On 2022-05-06 03:09, Alexander Kanavin wrote:
I think the terminology is a bit confused here, instead of 'command'
it should say 'recipe'. Also:
"""Check if the command is available in the recipes""" is not
everything it does, it also builds the re
On 2022-05-06 03:09, Alexander Kanavin wrote:
I think the terminology is a bit confused here, instead of 'command'
it should say 'recipe'. Also:
"""Check if the command is available in the recipes""" is not
everything it does, it also builds the recipe.
And please write a commit message that e
Check that open file and user process limits are greater than or equal to what
the autobuilder uses.
Signed-off-by: Michael Halstead
---
scripts/autobuilder-worker-prereq-tests | 15 +++
1 file changed, 15 insertions(+)
diff --git a/scripts/autobuilder-worker-prereq-tests
b/scripts
Use files from the current release to avoid the depreciated -show-cursor
option.
Signed-off-by: Michael Halstead
---
scripts/autobuilder-worker-prereq-tests | 6 +++---
1 file changed, 3 insertions(+), 3 deletions(-)
diff --git a/scripts/autobuilder-worker-prereq-tests
b/scripts/autobuilder-wo
From: Richard Purdie
This is horrible but I'm running out of better ideas. We hit circular reference
issues which we were trying to avoid in the core HOSTTOOLS code. When building
the eSDK, there can be two copies of the script.
Therefore assume git will never be in a directory called scripts. T
From: Richard Purdie
The previous minimially invasive git intercept simply isn't enough. For example,
meson used in the igt-gpu-tools recipe hardcodes the path to git in the
configure
step so at install time, changing PATH has no effect.
There are lots of interesting things we could do to try a
From: Richard Purdie
We'd like to intercept git calls but we don't want circular references
and HOSTTOOLS currently sets them up. Tweak to avoid them.
Signed-off-by: Richard Purdie
(cherry picked from commit 52c37e133fa55846aca2248ffcf3a10648dbb8d7)
Signed-off-by: Steve Sakoman
---
meta/class
From: Davide Gardenal
When creating the manifest and the testdata.json links, if the link
name is equal to the output name the link is not created, otherwise
it is. This prevents a link-to-self in the first case.
Signed-off-by: Davide Gardenal
Signed-off-by: Luca Ceresoli
Signed-off-by: Richar
From: Portia
The systemd-unit parameter DefaultDependencies changed from true/false
to yes/no. This changed in systemd in v242.
Signed-off-by: Portia Stephens
Signed-off-by: Richard Purdie
(cherry picked from commit add4dcb03dc7b034253db05f0023cb97cab8b26d)
Signed-off-by: Steve Sakoman
(cherr
From: Davide Gardenal
An if statement now checks if the link and output path are
the same, if they are then the link is not created,
otherwise it is.
Signed-off-by: Davide Gardenal
Signed-off-by: Luca Ceresoli
(cherry picked from commit 2f024c0236c4806f0e59e4ce51a42f6b80fdf1b3)
Signed-off-by:
From: Davide Gardenal
Create generate_json_report including all the code used to generate the JSON
manifest file.
Add to cve_save_summary_handler the ability to create the summary in JSON
format.
Signed-off-by: Davide Gardenal
Signed-off-by: Luca Ceresoli
(cherry picked from commit f2987891d3
From: Marta Rybczynska
Add a new variable CVE_DB_UPDATE_INTERVAL allowing the user to set
the database update interval.
- a positive value sets an interval (in seconds)
- a zero ("0") forces the database update
Signed-off-by: Marta Rybczynska
Signed-off-by: Luca Ceresoli
Signed-off-by: Richa
From: Marta Rybczynska
The update of the NVD database was expected to happen once per hour.
However, the database file date changes only if the content was actually
updated. In practice, the check worked for the first hour after the
new download.
As the NVD database changes usually only once a d
From: Ross Burton
The only part of the cve-check task which needs files is the patch
examination, and typically these patches are local so fetch isn't needed.
Signed-off-by: Ross Burton
Signed-off-by: Richard Purdie
(cherry picked from commit 2c9b3186d3b7c18cbea239ab9b06e85b7c243b54)
Signed-of
BusyBox through 1.35.0 allows remote attackers to execute arbitrary code
if netstat is used to print a DNS PTR record's value to a VT compatible
terminal. Alternatively, the attacker could choose to change the terminal's
colors.
https://nvd.nist.gov/vuln/detail/CVE-2022-28391
Backported from kir
From: Bruce Ashfield
Updating to the latest korg -stable release that comprises
the following commits:
1d72b776f6dc Linux 5.4.192
aa2a047b5842 mm, hugetlb: allow for "high" userspace addresses
6a79b2433eb1 hugetlbfs: get unmapped area below TASK_UNMAPPED_BASE for
hugetlbfs
b69e
From: Pawan Badganchi
Add below patch to fix CVE-2022-1215
CVE-2022-1215.patch
Link:
https://gitlab.freedesktop.org/libinput/libinput/-/commit/2a8b8fde90d63d48ce09ddae44142674bbca1c28
Signed-off-by: Pawan Badganchi
Signed-off-by: Steve Sakoman
---
.../wayland/libinput/CVE-2022-1215.patch
From: Pawan Badganchi
Add below patches to fix CVE-2022-25308, CVE-2022-25309 and CVE-2022-25310
CVE-2022-25308.patch
Link:
https://github.com/fribidi/fribidi/commit/ad3a19e6372b1e667128ed1ea2f49919884587e1
CVE-2022-25309.patch
Link:
https://github.com/fribidi/fribidi/commit/f22593b82b5d1668d
Please review this set of patches for dunfell and have comments back by end
of day Friday.
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/3648
with the exception of the newly added meta-virt test (which has never
worked with dunfell)
The followin
I am seeing these errors seems to be related to this changeset
https://errors.yoctoproject.org/Errors/Details/656617/
https://errors.yoctoproject.org/Errors/Details/656615/
https://errors.yoctoproject.org/Errors/Details/656616/
https://errors.yoctoproject.org/Errors/Details/656618/
On Tue, May 10
libstd-rs update also updated the vendored libc to 0.2.116, the rv64
musl patches were applied to 0.2.112 and hence needed forward porting
done with this changeset.
Signed-off-by: Khem Raj
---
...ies-syscalls-to-musl-riscv64-definitions.patch | 6 +++---
...ate-checksums-for-modified-vendored-l
The commit d7341f1f22c32ff6cc95d7127f26f87d7fc9c6bd has introduced a
variable to disable the symlink creation for kernel images.
kernel.bbclass contains code to generate a pkg_posinst step for the
kernel-image package which will generate a symlink after installation
on target/during rootfs creation
This class executes an anonymous function which sets the
below variables
CVE_IGNORED = CVEs that are ignored in recipes
CVE_PATCHED = CVEs that are fixed by applying patches
It does not consider CVEs that are ignored in
poky/meta/conf/distro/include/cve-extra-exclusions.inc
and only provide CV
Add new method get_ignored_cves in cve_check.py
to get ignored CVEs from recipe by excluding distro-wide
ignored CVEs from meta/conf/distro/include/cve-extra-exclusions.inc
While calling this method use below code to get argument values
paths = d.getVar('PATH').split(':')
cves = d.getVar('CVE_CHEC
This test compares values of variables CVE_CHECK_IGNORE with
CVE_IGNORED that is exported from cve-export.bbclass
Signed-off-by: Akash Hadke
Signed-off-by: Akash Hadke
---
meta/lib/oeqa/selftest/cases/cve_export.py | 24 ++
1 file changed, 24 insertions(+)
create mode 10064
On Wed, 11 May 2022, Alexander Kanavin wrote:
> I would rather just refer to the directory where 'additional, less
> well tested machines are'.
>
> Alex
sure, something like that works for me.
rday
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (
I would rather just refer to the directory where 'additional, less
well tested machines are'.
Alex
On Wed, 11 May 2022 at 13:14, Robert P. J. Day wrote:
>
> On Wed, 11 May 2022, Alexander Kanavin wrote:
>
> > I have to note that the project does not test these machines, and they
> > may not nece
On Wed, 11 May 2022, Alexander Kanavin wrote:
> I have to note that the project does not test these machines, and they
> may not necessarily work. Advertising them in local.conf may result in
> frustrating fails for people who are running bitbake for the very
> first time.
>
> Alex
>
> On Wed, 11
On Wed, 11 May 2022 at 10:15, leimao...@fujitsu.com
wrote:
> I got it. It seems an unusual method because there is no recipe using this
> way in .
> In this way, it means that if user want to enable fips, the following
> PACKAGECONFIG should be added in recipe.
>
> PACKAGECONFIG:append:class-tar
I have to note that the project does not test these machines, and they
may not necessarily work. Advertising them in local.conf may result in
frustrating fails for people who are running bitbake for the very
first time.
Alex
On Wed, 11 May 2022 at 12:48, Robert P. J. Day wrote:
>
>
> Fill out th
Fill out the commented list of supported machines for completeness.
Signed-off-by: Robert P. J. Day
---
diff --git a/meta/conf/local.conf.sample b/meta/conf/local.conf.sample
index c05691de58..f0b8952947 100644
--- a/meta/conf/local.conf.sample
+++ b/meta/conf/local.conf.sample
@@ -20,9 +20,13
On Wed, 11 May 2022, Alistair Francis wrote:
> On Wed, May 11, 2022 at 12:06 PM Robert P. J. Day
> wrote:
> >
> >
> > just now noticed that while oe-core includes machine definitions for
> > qemuriscv*, local.conf.sample does not mention them. is this just an
> > oversight?
>
> Yeah, that's ju
On Wed, May 11, 2022 at 12:06 PM Robert P. J. Day wrote:
>
>
> just now noticed that while oe-core includes machine definitions for
> qemuriscv*, local.conf.sample does not mention them. is this just an
> oversight?
Yeah, that's just an oversight. If you want you can send a patch :)
Alistair
just now noticed that while oe-core includes machine definitions for
qemuriscv*, local.conf.sample does not mention them. is this just an
oversight?
rday
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#165491):
https://lists.openembedded.org/g/o
Hi, Alex
> PACKAGECONFIG ??= "fips"
> PACKAGECONFIG:class-native ??= "fips-native"
I got it. It seems an unusual method because there is no recipe using this way
in .
In this way, it means that if user want to enable fips, the following
PACKAGECONFIG should be added in recipe.
PACKAGECONFIG:a
Hi Dmitry,
Il giorno Tue, 10 May 2022 18:43:27 +0300
"Dmitry Baryshkov" ha scritto:
> From: Dmitry Baryshkov
>
> Since the commit fe26b2379ecd ("image.bbclass: Depend on
> virtual/kernel:do_deploy"), the image.bbclass made building images
> depend on virtual/kernel. For some images, including
This update include fixes for two CVEs.
CVE: CVE-2022-1381
CVE: CVE-2022-1420
Signed-off-by: Davide Gardenal
---
meta/recipes-support/vim/vim.inc | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/meta/recipes-support/vim/vim.inc b/meta/recipes-support/vim/vim.inc
index 21f
47 matches
Mail list logo
