Changelog:
==
- Fixed "connection reset" errors on AIX when running shell scripts with the
intercept or log_subcmds sudoers options enabled. Bug #1034.
- Fixed very slow execution of shell scripts when the intercept or log_subcmds
sudoers options are set on systems that enable Nagle's a
Signed-off-by: Wang Mingyu
---
.../sqlite/{sqlite3_3.38.5.bb => sqlite3_3.39.0.bb} | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
rename meta/recipes-support/sqlite/{sqlite3_3.38.5.bb => sqlite3_3.39.0.bb}
(86%)
diff --git a/meta/recipes-support/sqlite/sqlite3_3.38.5.bb
b/m
Signed-off-by: Wang Mingyu
---
meta/recipes-devtools/repo/{repo_2.26.bb => repo_2.27.bb} | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
rename meta/recipes-devtools/repo/{repo_2.26.bb => repo_2.27.bb} (95%)
diff --git a/meta/recipes-devtools/repo/repo_2.26.bb
b/meta/recipes-devtools/rep
CVE-2020-23903.patch
removed since it's included in 1.2.1
License-Update:
Add "Organisation (CSIRO)" to Copyright 2005-2008
Changelog:
===
Check for _WIN32 instead of WIN32 in preprocessor checks
wav_io: check for EOF when seeking in wav (fixes hang discovered by fuzzing,
see #9)
CI
License-Update:
Add "Organisation (CSIRO)" to Copyright 2005-2008
Changelog:
=
CI: add gitlab CI integration
fixed-point: Remove unused MULT16_32_Q1[1-4] macros and inlines
fixed-point: don't truncate 32-bit arg to MULT16_32_Q15
fixed-point resample: remove 1-bit shift ri
Changelog:
==
- Caching of variable fonts shaping, in particular when using HarfBuzz’s own
font loading functions (ot). Bringing performance of variable shaping in par
with non-variable fonts shaping.
- Caching of format 2 “Contextual Substitution” and “Chained Contexts
Substitution”
Signed-off-by: Wang Mingyu
---
.../{gstreamer1.0_1.20.2.bb => gstreamer1.0_1.20.3.bb} | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
rename meta/recipes-multimedia/gstreamer/{gstreamer1.0_1.20.2.bb =>
gstreamer1.0_1.20.3.bb} (97%)
diff --git a/meta/recipes-multimedia/gstreamer/
Signed-off-by: Wang Mingyu
---
meta/recipes-devtools/git/{git_2.36.1.bb => git_2.37.0.bb} | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
rename meta/recipes-devtools/git/{git_2.36.1.bb => git_2.37.0.bb} (98%)
diff --git a/meta/recipes-devtools/git/git_2.36.1.bb
b/meta/recipes-devtools/g
Changelog:
==
- Support for SMBIOS 3.4.0. This includes new memory device types, new
processor upgrades, new slot types and characteristics, decoding of memory
module extended speed, new system slot types, new processor characteristics
and new format of Processor ID.
- Suppo
Signed-off-by: Wang Mingyu
---
.../{createrepo-c_0.20.0.bb => createrepo-c_0.20.1.bb} | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
rename meta/recipes-devtools/createrepo-c/{createrepo-c_0.20.0.bb =>
createrepo-c_0.20.1.bb} (96%)
diff --git a/meta/recipes-devtools/createrepo-
Stop the scheduler from starting new tasks if the
current cpu or io pressure is above a certain threshold, specified
through the "BB_MAX_{CPU|IO}_SOME_PRESSURE" variables in conf/local.conf.
If the thresholds aren't specified, the default values are 100 for both
CPU and IO, which will have no impa
Use python 'with' symantics to ensure that the /proc/pressure/cpu file
descriptor used in SystemStats init is closed. Previously, this would
lead to a single file descriptor being leaked. For example:
ResourceWarning: unclosed file <_io.BufferedReader name='/proc/pressure/cpu'>
Signed-off-by: A
Hi Alex,
I've found that some OE commands print an error during cleanup when
the tmp_dir does not exist and an attempt is made to delete it. I've
submitted a patch to opkg to fix that.
Link:
https://git.yoctoproject.org/opkg/commit/?id=8dfdda86afd407a66e3dc00a077bdcc8b53d54ea.
That was the one in
you want to check the rust/llvm depchain and see if it pokes at host
for zlib and if it does then make it point to right zlib in native
sysroot if enabled or otherwise forcibly keep the
support disabled.
On Wed, Jun 29, 2022 at 4:18 AM Pgowda wrote:
>
> Hi Richard,
>
> Thanks very much for pointi
> On 29 Jun 2022, at 16:19, Marta Rybczynska wrote:
> Sean, could you check if it is your case too? I'll be adding a more verbose
> error message
> so that we know which package it comes from.
I actually think we should get rid of the index file entirely. Why can’t the
big JSON file simply be
On Wed, 2022-06-29 at 17:15 +0200, Alexander Kanavin wrote:
> On Wed, 29 Jun 2022 at 16:10, Richard Purdie
> wrote:
> > I'm not sure it makes a lot of difference. The 5 changes after 9.0 look
> > relatively harmless, some of them are translation fixes. This change
> > addresses 4 CVEs and I suspec
On Wed, Jun 29, 2022 at 5:15 PM Ross Burton wrote:
> The cve-check class writes temporary files to preserve state across the
> build, and cleans them up in a CookerExit handler.
>
> However, in memory-resident builds the cooker won't exit in between
> builds, so the state isn't cleared and the CV
On Wed, 29 Jun 2022 at 16:10, Richard Purdie
wrote:
> I'm not sure it makes a lot of difference. The 5 changes after 9.0 look
> relatively harmless, some of them are translation fixes. This change
> addresses 4 CVEs and I suspect there will be more to follow so we'll
> have to update past 9.0 soon
This is fixed in 2.4.2, which we have, but the complex CPE in that CVE
isn't parsed by cve-check correctly so it thinks that we're vulnerable.
Signed-off-by: Ross Burton
---
meta/recipes-extended/cups/cups.inc | 2 ++
1 file changed, 2 insertions(+)
diff --git a/meta/recipes-extended/cups/cups.
The cve-check class writes temporary files to preserve state across the
build, and cleans them up in a CookerExit handler.
However, in memory-resident builds the cooker won't exit in between
builds, so the state isn't cleared and the CVE report generation fails:
NOTE: Generating JSON CVE summary
Includes a fix for CVE-2022-29458
Signed-off-by: Richard Purdie
---
meta/recipes-core/ncurses/ncurses.inc | 2 +-
.../ncurses/{ncurses_6.3.bb => ncurses_6.3+20220423.bb} | 4 ++--
2 files changed, 3 insertions(+), 3 deletions(-)
rename meta/recipes-core/ncurses/{nc
From: Lee Chee Yang
Signed-off-by: Chee Yang Lee
---
.../ghostscript/CVE-2022-2085.patch | 44 +++
.../ghostscript/ghostscript_9.55.0.bb | 1 +
2 files changed, 45 insertions(+)
create mode 100644
meta/recipes-extended/ghostscript/ghostscript/CVE-2022-2085.p
On Wed, 2022-06-29 at 15:08 +0200, Tomasz Dziendzielski wrote:
> If we have the build with different gcc versions in the same workspace
> it might happen that nativesdk recipe will not detect the change of gcc
> and the package will be taken from sstate-cache. This will lead to
> do_package_qa fail
On Wed, 2022-06-29 at 16:57 +0300, Alexander Kanavin wrote:
> Would it be better to stay at 9.0. for now?
I'm not sure it makes a lot of difference. The 5 changes after 9.0 look
relatively harmless, some of them are translation fixes. This change
addresses 4 CVEs and I suspect there will be mo
Would it be better to stay at 9.0. for now?
Alex
On Wed 29. Jun 2022 at 16.26, Richard Purdie <
richard.pur...@linuxfoundation.org> wrote:
> The license checksum changed due to a major version change in the
> referenced file.
>
> Signed-off-by: Richard Purdie
> ---
> .../vim/{vim-tiny_8.2.
The license checksum changed due to a major version change in the referenced
file.
Signed-off-by: Richard Purdie
---
.../vim/{vim-tiny_8.2.bb => vim-tiny-9.0.bb}| 0
meta/recipes-support/vim/vim.inc| 6 +++---
meta/recipes-support/vim/{vim_8.2.bb => v
If we have the build with different gcc versions in the same workspace
it might happen that nativesdk recipe will not detect the change of gcc
and the package will be taken from sstate-cache. This will lead to
do_package_qa failure due to binaries requiring symbols that are not
present in the older
We need to add ruby-native dependency for nativesdk class too
to fix the compilation issue
Earlier this dependency is part of DEPENDS variable but the below
commit removes it from DEPENDS and add only for
DEPENDS_append_class-target which triggers the failure in
nativesdk-ruby:do_compile task
Link:
Upstream-Status: Backport
[https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=2a4fc266dbf77ed7ab83da16468e9ba627b8bc2d]
Signed-off-by: Pgowda
---
.../binutils/binutils-2.38.inc| 1 +
.../binutils/0014-CVE-2019-1010204.patch | 49 +++
2 files changed
Hi all,
I've been working with signing packages via gpg (specificall RPM, but that
shouldn't really matter) lately and things mostly work fine (modulo that
small patch from some 2 weeks ago now in master).
I have just one more possibly minor issue I wanted to get possibly an
opinion from the exper
Hello Richard,
Yes, but variants have set SDK_EXT_TYPE=full. Can't say about the pure
poky eSDK, but with our layers, size is different. Let's say 2/3 of the
"working" one.
Do you really need locked-sigs.inc from both variant? I guess, you only
need to know if some entries are missing and not the
Hi Richard,
Thanks very much for pointing that out.
I could reproduce the issue on the docker host that does not contain zlib-devel.
Trying to analyse the issue on dependency of zlib.
It would be helpful if you could give some pointers on zlib dependency
as it would have been seen in other recipes
Commit bd36593ba3db758b3eacc974e48468a665967961 did introduce a
regression when building package rust-cross-canadian-aarch64
on a x86_64 host. This commit will fix that configuration.
Suggested-by: Richard Purdie
Signed-off-by: Peter Bergin
---
meta/recipes-devtools/rust/rust-common.inc | 5 +--
33 matches
Mail list logo
