Re: [OE-core] [PATCH] package_rpm: Fix backtrace on missing directory.

2024-02-24 Thread Richard Purdie
On Fri, 2024-02-23 at 12:33 -0800, Jeremy Puhlman via lists.openembedded.org wrote: > It says usr//usr in the comment, but when I ran on a clean build it > started complaining about opt//opt as well. Its not really clear why > it is looking for those directories, and I am sure this is not likely >

Re: [OE-core] [PATCH] openssl: add loongarch64 support

2024-02-24 Thread Fabio Estevam
On Sat, Feb 24, 2024 at 10:54 AM Xiaotian Wu wrote: > It would be nice to put here the same text you added in the cover letter. Also, you missed your Signed-off-by line. > --- > meta/recipes-connectivity/openssl/openssl_3.2.1.bb | 3 +++ > 1 file changed, 3 insertions(+) -=-=-=-=-=-=-=-=-=-=-

Re: [OE-core] [PATCH] cve-check: Log if CVE_STATUS set but not reported for component

2024-02-24 Thread Richard Purdie
On Sat, 2024-02-24 at 14:28 +, Peter Marko via lists.openembedded.org wrote: > Hello, > > This change looks like the right way forward, but it will need two > things first: > * dissolve cve-extra-exclusions.inc into recipes, as every exclusion > in that file will generate a warning in all comp

Re: [OE-core] [PATCH] cve-check: Log if CVE_STATUS set but not reported for component

2024-02-24 Thread Simone Weiß
On Sat, 2024-02-24 at 14:28 +, Peter Marko via lists.openembedded.org wrote: > Hello, > > This change looks like the right way forward, but it will need two > things first: > * dissolve cve-extra-exclusions.inc into recipes, as every exclusion in > that file will generate a warning in all comp

Re: [OE-core] [PATCH] cve-check: Log if CVE_STATUS set but not reported for component

2024-02-24 Thread Peter Marko via lists.openembedded.org
Hello, This change looks like the right way forward, but it will need two things first: * dissolve cve-extra-exclusions.inc into recipes, as every exclusion in that file will generate a warning in all components except the one for which the exclusion actually is meant * create a (per-recipe) var

[OE-core] Patchtest results for [PATCH] openssl: add loongarch64 support

2024-02-24 Thread Patchtest
Thank you for your submission. Patchtest identified one or more issues with the patch. Please see the log below for more information: --- Testing patch /home/patchtest/share/mboxes/openssl-add-loongarch64-support.patch FAIL: test Signed-off-by presence: Mbox is missing Signed-off-by. Add it manu

[OE-core] [PATCH] openssl: add loongarch64 support

2024-02-24 Thread Xiaotian Wu
--- meta/recipes-connectivity/openssl/openssl_3.2.1.bb | 3 +++ 1 file changed, 3 insertions(+) diff --git a/meta/recipes-connectivity/openssl/openssl_3.2.1.bb b/meta/recipes-connectivity/openssl/openssl_3.2.1.bb index 549fa4cd94..bd53853edc 100644 --- a/meta/recipes-connectivity/openssl/openssl

[OE-core] [PATCH v1 0/1] change -march to loongarch64

2024-02-24 Thread Xiaotian Wu
Now both gcc and clang all support -march=loongarch64, so we can use it. Xiaotian Wu (1): change -march to loongarch64 meta/conf/machine/include/loongarch/arch-loongarch.inc | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) -- 2.43.2 -=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messa

Re: [OE-core] [PATCH v3 1/3] useradd.bbclass: Fix order of postinst-useradd-*

2024-02-24 Thread Richard Purdie
On Fri, 2024-02-23 at 13:25 +, Eilís 'pidge' Ní Fhlannagáin wrote: >  python useradd_sysroot_sstate () { > -    scriptfile = None > -    task = d.getVar("BB_CURRENTTASK") > -    if task == "package_setscene": > -    bb.build.exec_func("useradd_sysroot", d) > -    elif task == "prepare_recip

Patchtest results for [OE-core][kirkstone][PATCH] glibc: ignore CVE-2023-0687

2024-02-24 Thread Patchtest
Thank you for your submission. Patchtest identified one or more issues with the patch. Please see the log below for more information: --- Testing patch /home/patchtest/share/mboxes/kirkstone-glibc-ignore-CVE-2023-0687.patch FAIL: test CVE check ignore: CVE_CHECK_IGNORE is deprecated and should b

[OE-core][kirkstone][PATCH] glibc: ignore CVE-2023-0687

2024-02-24 Thread Peter Marko via lists.openembedded.org
From: Peter Marko This CVE was backported to glibc 2.35 branch 9 months ago. NVD recently updated CPE and it appeared in kirkstone cve reports. https://sourceware.org/git/?p=glibc.git;a=log;h=refs/heads/release/2.35/master gmon: Fix allocated buffer overflow (bug 29444) https://sourceware.org/gi

Re: [OE-core] [PATCH] package_rpm: Fix backtrace on missing directory.

2024-02-24 Thread Alexander Kanavin
On Fri, 23 Feb 2024 at 23:58, Jeremy Puhlman wrote: > Is there a preferred way to do that? I mention in the commit message > that is not > the right way to handle it and followed up with a reply to the patch > mentioning > as such. You can simply use 'git send-email --rfc' to put [RFC PATCH] into

Re: [OE-core] [PATCH] libxml2: Upgrade 2.11.5 -> 2.12.5

2024-02-24 Thread Alexander Kanavin
You should perhaps check if latest webkitgtk release has a fix, and simply update to that. Alex On Sat, 24 Feb 2024 at 09:13, Simone Weiß wrote: > > On Sat, 2024-02-24 at 07:43 +, Richard Purdie wrote: > > On Fri, 2024-02-23 at 19:18 +, Simone Weiß wrote: > > > From: Simone Weiß > > > >

[OE-core] [PATCH v2] cve-check: Log if CVE_STATUS set but not reported for component

2024-02-24 Thread Simone Weiß
From: Simone Weiß Log if the CVE_STATUS is set for a CVE, but the cve is not reported for a component. This should hopefully help to clean up not needed CVE_STATUS settings. Signed-off-by: Simone Weiß --- v2: Add this to oe.qa mechanism instead of using bb.warn. This way it will only be execute

Re: [OE-core] [PATCH] libxml2: Upgrade 2.11.5 -> 2.12.5

2024-02-24 Thread Simone Weiß
On Sat, 2024-02-24 at 07:43 +, Richard Purdie wrote: > On Fri, 2024-02-23 at 19:18 +, Simone Weiß wrote: > > From: Simone Weiß > > > > Upgraded to address CVE-2024-25062 > > > > License-Update: hash.c was rewritten and now also has MIT license, > > trio was totally removed, hence remove