[OE-core] [kirkstone][PATCH 2/2] classes-global/insane: Look up all runtime providers for file-rdeps

2025-02-11 Thread Colin McAllister via lists.openembedded.org
From: Joshua Watt Uses the new foreach_runtime_provider_pkgdata() API to look up all possible runtime providers of a given dependency when resolving file-rdeps. This allows the check to correctly handle RPROVIDES for non-virtual dependencies (From OE-Core rev: 018fa1b7cb5e6a362ebb45b93e52b0909a7

[OE-core] [kirkstone][PATCH 1/2] lib/packagedata.py: Add API to iterate over rprovides

2025-02-11 Thread Colin McAllister via lists.openembedded.org
From: Joshua Watt Adds an API that makes it easier to iterate over the package data for a all providers of a runtime dependency. (From OE-Core rev: 68bdc219a4a819e83217f5b54c463624af8d3b9e) Signed-off-by: Joshua Watt Signed-off-by: Richard Purdie --- meta/lib/oe/packagedata.py | 15 +

Re: [OE-core] [bitbake-devel] [RFC PATCH 10/30] conf: bitbake: add SRC_URI_FILES variable

2025-02-11 Thread Peter Kjellerstedt via lists.openembedded.org
> -Original Message- > From: bitbake-de...@lists.openembedded.org > On Behalf Of Stefan Herbrechtsmeier > via lists.openembedded.org > Sent: den 11 februari 2025 16:00 > To: openembedded-core@lists.openembedded.org > Cc: Stefan Herbrechtsmeier ; > bitbake-de...@lists.openembedded.org >

[OE-core][scarthgap][PATCH] openssl: upgrade 3.2.3 -> 3.2.4

2025-02-11 Thread Peter Marko via lists.openembedded.org
From: Peter Marko Release information: https://github.com/openssl/openssl/blob/openssl-3.2/NEWS.md#major-changes-between-openssl-323-and-openssl-324-11-feb-2025 Handles CVE-2024-12797 in addition to already patched CVEs. Refresh patches and remove CVE patches included in the new version. Signe

[OE-core] [PATCH] linux-firmware: upgrade 20250109 -> 20250211

2025-02-11 Thread Vivek Puar via lists.openembedded.org
License-Update: additional files Signed-off-by: Vivek Puar Cc: Dmitry Baryshkov --- ...{linux-firmware_20250109.bb => linux-firmware_20250211.bb} | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) rename meta/recipes-kernel/linux-firmware/{linux-firmware_20250109.bb => linux-firmware_

Re: [OE-core] [RFC PATCH 04/30] lib: bb: fetch2: add support to unpack .crate files

2025-02-11 Thread Richard Purdie via lists.openembedded.org
On Tue, 2025-02-11 at 16:00 +0100, Stefan Herbrechtsmeier via lists.openembedded.org wrote: > From: Stefan Herbrechtsmeier > > Signed-off-by: Stefan Herbrechtsmeier > --- > >  bitbake/lib/bb/fetch2/__init__.py | 2 +- >  1 file changed, 1 insertion(+), 1 deletion(-) > > diff --git a/bitbake/li

Re: [OE-core] [PATCH] linux-firmware: upgrade 20250109 -> 20250211

2025-02-11 Thread Dmitry Baryshkov via lists.openembedded.org
On Tue, 11 Feb 2025 at 20:52, Vivek Puar wrote: > License-Update: additional files Not only "additional files", there is a new Qualcomm licence, which is not caught by this patch, NAK While taking care of the new Qualcomm licence, please also note new ath*, qca and qcom/ firmware. Please extend

Re: [OE-core] [RFC PATCH 05/30] lib: oe: add vendor module

2025-02-11 Thread Richard Purdie via lists.openembedded.org
On Tue, 2025-02-11 at 16:00 +0100, Stefan Herbrechtsmeier via lists.openembedded.org wrote: > From: Stefan Herbrechtsmeier > > Add a vendor package as base for package manager specific > implementations to resolve dependencies and populate vendor directories. > Add common dump and load function

[OE-core][styhead 3/4] go: upgrade 1.22.11 -> 1.22.12

2025-02-11 Thread Steve Sakoman
From: Peter Marko Upgrade to latest 1.22.x release [1]: $ git --no-pager log --oneline go1.22.11..go1.22.12 5817e65094 (tag: go1.22.12) [release-branch.go1.22] go1.22.12 0cc45e7ca6 [release-branch.go1.22] crypto/internal/fips140/nistec: make p256NegCond constant time on ppc64le c3c6a50095 [rele

Re: [OE-core] [RFC PATCH 15/30] classes: add early fetch, unpack and patch support

2025-02-11 Thread Richard Purdie via lists.openembedded.org
On Tue, 2025-02-11 at 16:00 +0100, Stefan Herbrechtsmeier via lists.openembedded.org wrote: > From: Stefan Herbrechtsmeier > > Add support for early fetch, unpack and patches task which run before > normal patch task. This feature is useful to fetch additional > dependencies based on a patched s

Re: [OE-core] [PATCH] systemd: move systemctl utility to separate subpackage

2025-02-11 Thread Oleksiy Obitotskyy via lists.openembedded.org
I'm sorry, I confused you mentioned term sysroot. It's not about yocto - we just use the same term because it's very similar to how it works into yocto. We got packages as a result of yocto build and use these artefacts (packages) on next stage to populate software components content. For some r

[yocto] Yocto Project Status 11 Feb. 2025 (WW07)

2025-02-11 Thread Stephen Jolley via lists.yoctoproject.org
Current Dev Position: YP 5.2 M3 Next Deadline: YP 5.2 M3 Build date 2025-03-03 - Feature Freeze Next Team Meetings: - Bug Triage meeting Thursday Feb. 13th 7:30 am PST ( https://zoom.us/j/454367603?pwd=ZGxoa2ZXL3FkM3Y0bFd5aVpHVVZ6dz09) - Weekly Project Engineering Sync Tuesday F

[OE-core] [RFC PATCH 01/30] classes: create-spdx-2.2: use expanded FetchData for downloaded packages

2025-02-11 Thread Stefan Herbrechtsmeier via lists.openembedded.org
From: Stefan Herbrechtsmeier Use the expanded list of FetchData objects covering both the given SRC_URLs and any additional implicit URLs that are added automatically by the appropriate FetchMethod. Signed-off-by: Stefan Herbrechtsmeier --- meta/classes/create-spdx-2.2.bbclass | 5 +++-- 1 fi

[OE-core] [RFC PATCH 09/30] oeqa: oelib: add vendor tests

2025-02-11 Thread Stefan Herbrechtsmeier via lists.openembedded.org
From: Stefan Herbrechtsmeier Add tests for the vendor package Signed-off-by: Stefan Herbrechtsmeier --- meta/lib/oeqa/selftest/cases/oelib/vendor.py | 237 +++ 1 file changed, 237 insertions(+) create mode 100644 meta/lib/oeqa/selftest/cases/oelib/vendor.py diff --git a/meta

[OE-core] [RFC PATCH 18/30] classes: add vendor class for go

2025-02-11 Thread Stefan Herbrechtsmeier via lists.openembedded.org
From: Stefan Herbrechtsmeier Add a vendor class for go to resolve the dependency SRC_URIs from a go.sum file and run populate the go mod vendor folder. Signed-off-by: Stefan Herbrechtsmeier --- meta/classes-recipe/vendor_go.bbclass | 59 +++ 1 file changed, 59 insertio

[OE-core] [RFC PATCH 20/30] classes: add vendor_npm_build class

2025-02-11 Thread Stefan Herbrechtsmeier via lists.openembedded.org
From: Stefan Herbrechtsmeier Add a vendor class for npm to build a npm package from source. Signed-off-by: Stefan Herbrechtsmeier --- meta/classes-recipe/vendor_npm_build.bbclass | 50 1 file changed, 50 insertions(+) create mode 100644 meta/classes-recipe/vendor_npm_bui

[OE-core] [RFC PATCH 11/30] classes: go: make source directory configurable

2025-02-11 Thread Stefan Herbrechtsmeier via lists.openembedded.org
From: Stefan Herbrechtsmeier The go class assume a specific layout inside the source directory and requires the GO_SRCURI_DESTSUFFIX as destsuffix for the fetcher. Make the source directory configurable via GO_SRC_DIR because it is uncommon and isn’t required for go mod. Additionally make the unp

[OE-core] [RFC PATCH 10/30] conf: bitbake: add SRC_URI_FILES variable

2025-02-11 Thread Stefan Herbrechtsmeier via lists.openembedded.org
From: Stefan Herbrechtsmeier Add the variable SRC_URI_FILES to collect files whichs contains additional SRC_URI lines. Signed-off-by: Stefan Herbrechtsmeier --- meta/conf/bitbake.conf | 1 + 1 file changed, 1 insertion(+) diff --git a/meta/conf/bitbake.conf b/meta/conf/bitbake.conf index 8b6

[OE-core] [RFC PATCH 06/30] lib: oe: vendor: add cargo support

2025-02-11 Thread Stefan Herbrechtsmeier via lists.openembedded.org
From: Stefan Herbrechtsmeier Add a vendor module for cargo to resolve dependencies and populate vendor directories from a Cargo.lock file. Signed-off-by: Stefan Herbrechtsmeier --- meta/lib/oe/vendor/cargo.py | 121 1 file changed, 121 insertions(+) creat

[OE-core] [RFC PATCH 03/30] classes: create-spdx-2.2: use name and version for download dependencies

2025-02-11 Thread Stefan Herbrechtsmeier via lists.openembedded.org
From: Stefan Herbrechtsmeier Use the name and version parameter from the SRC_URI to determine the name and version of the download dependency. Signed-off-by: Stefan Herbrechtsmeier --- meta/classes/create-spdx-2.2.bbclass | 9 + 1 file changed, 9 insertions(+) diff --git a/meta/class

[OE-core] [RFC PATCH 04/30] lib: bb: fetch2: add support to unpack .crate files

2025-02-11 Thread Stefan Herbrechtsmeier via lists.openembedded.org
From: Stefan Herbrechtsmeier Signed-off-by: Stefan Herbrechtsmeier --- bitbake/lib/bb/fetch2/__init__.py | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/bitbake/lib/bb/fetch2/__init__.py b/bitbake/lib/bb/fetch2/__init__.py index de36f06bfc..e4c489d059 100644 --- a/bitbake/

[OE-core] [RFC PATCH 12/30] classes: go-mod: make class customizable

2025-02-11 Thread Stefan Herbrechtsmeier via lists.openembedded.org
From: Stefan Herbrechtsmeier Signed-off-by: Stefan Herbrechtsmeier --- meta/classes-recipe/go-mod.bbclass | 10 ++ 1 file changed, 6 insertions(+), 4 deletions(-) diff --git a/meta/classes-recipe/go-mod.bbclass b/meta/classes-recipe/go-mod.bbclass index 93ae72235f..04651ebd8a 100644

[OE-core] [RFC PATCH 23/30] python3-maturin: mirgrate to vendor cargo class

2025-02-11 Thread Stefan Herbrechtsmeier via lists.openembedded.org
From: Stefan Herbrechtsmeier Signed-off-by: Stefan Herbrechtsmeier --- .../python/python3-maturin-crates.inc | 712 -- .../python/python3-maturin_1.8.1.bb | 4 +- 2 files changed, 1 insertion(+), 715 deletions(-) delete mode 100644 meta/recipes-devtools/pyt

[OE-core] [RFC PATCH 07/30] lib: oe: vendor: add go support

2025-02-11 Thread Stefan Herbrechtsmeier via lists.openembedded.org
From: Stefan Herbrechtsmeier Add a vendor module for go to resolve dependencies from a go.sum file. Signed-off-by: Stefan Herbrechtsmeier --- meta/lib/oe/vendor/go.py | 96 1 file changed, 96 insertions(+) create mode 100644 meta/lib/oe/vendor/go.py

[OE-core] [RFC PATCH 14/30] classes: base: add get_src_uris and unpack_src_uris functions

2025-02-11 Thread Stefan Herbrechtsmeier via lists.openembedded.org
From: Stefan Herbrechtsmeier Add get_src_uris and unpack_src_uris functions to share code between the early and normal tasks. The functions have an early argument to only handle the recipe SRC_URI and doesn’t parse the SRC_URI_FILES. Signed-off-by: Stefan Herbrechtsmeier --- meta/classes-glob

[OE-core][PATCH] scripts/contrib: Add oe-image-files-spdx script

2025-02-11 Thread Joshua Watt via lists.openembedded.org
Adds a template for a python project that processes the SPDX 3.0.1 output from a build and lists all the files on the root file system with their checksums This is intended to be an example to show how to deal with the SPDX data to do common tasks. Signed-off-by: Joshua Watt --- .../contrib/oe-

[OE-core] [RFC PATCH 08/30] lib: oe: vendor: add npm support

2025-02-11 Thread Stefan Herbrechtsmeier via lists.openembedded.org
From: Stefan Herbrechtsmeier Add a vendor module for npm to resolve dependencies from a package-lock.json file. Signed-off-by: Stefan Herbrechtsmeier --- meta/lib/oe/vendor/npm.py | 141 ++ 1 file changed, 141 insertions(+) create mode 100644 meta/lib/oe/v

[OE-core] [RFC PATCH 15/30] classes: add early fetch, unpack and patch support

2025-02-11 Thread Stefan Herbrechtsmeier via lists.openembedded.org
From: Stefan Herbrechtsmeier Add support for early fetch, unpack and patches task which run before normal patch task. This feature is useful to fetch additional dependencies based on a patched source before the normal unpack and patch tasks. The patch are marked as early via an early=1 parameter.

[OE-core] [RFC PATCH 29/30] [DO NOT MERGE] recipes: add nucleoidai npm demo

2025-02-11 Thread Stefan Herbrechtsmeier via lists.openembedded.org
From: Stefan Herbrechtsmeier Signed-off-by: Stefan Herbrechtsmeier --- .../recipes-support/nucleoidai/nucleoidai_0.7.10.bb | 11 +++ 1 file changed, 11 insertions(+) create mode 100644 meta-selftest/recipes-support/nucleoidai/nucleoidai_0.7.10.bb diff --git a/meta-selftest/recipes

[OE-core] [RFC PATCH 27/30] [DO NOT MERGE] recipes: add crucible go demo

2025-02-11 Thread Stefan Herbrechtsmeier via lists.openembedded.org
From: Stefan Herbrechtsmeier Signed-off-by: Stefan Herbrechtsmeier --- .../crucible/crucible2_2023.11.02.bb | 18 ++ 1 file changed, 18 insertions(+) create mode 100644 meta-selftest/recipes-support/crucible/crucible2_2023.11.02.bb diff --git a/meta-selftest/recipe

[OE-core] [RFC PATCH 00/30] Add vendor support for go, npm and rust

2025-02-11 Thread Stefan Herbrechtsmeier via lists.openembedded.org
From: Stefan Herbrechtsmeier The series adds on-the-fly support for package manager specific dependencies and vendor directories. It contains the following changes: 1. Adds an early fetch, unpack and patch task to unpack and patch source code with an embedded lock file for dependencies. 2. Par

[OE-core] [RFC PATCH 26/30] librsvg: update dependecies to fix RUSTSEC-2024-0421

2025-02-11 Thread Stefan Herbrechtsmeier via lists.openembedded.org
From: Stefan Herbrechtsmeier Signed-off-by: Stefan Herbrechtsmeier --- ...-to-get-an-updated-idna-rustsec-2024.patch | 398 ++ meta/recipes-gnome/librsvg/librsvg_2.59.2.bb | 3 +- 2 files changed, 400 insertions(+), 1 deletion(-) create mode 100644 meta/recipes-gnome/librs

[OE-core] [RFC PATCH 22/30] python3-cryptography: mirgrate to vendor cargo class

2025-02-11 Thread Stefan Herbrechtsmeier via lists.openembedded.org
From: Stefan Herbrechtsmeier Signed-off-by: Stefan Herbrechtsmeier --- .../python/python3-cryptography-crates.inc| 76 --- .../python/python3-cryptography.bb| 4 +- 2 files changed, 1 insertion(+), 79 deletions(-) delete mode 100644 meta/recipes-devtools/pytho

[OE-core] [RFC PATCH 13/30] classes: add nodejs-arch class

2025-02-11 Thread Stefan Herbrechtsmeier via lists.openembedded.org
From: Stefan Herbrechtsmeier Signed-off-by: Stefan Herbrechtsmeier --- meta/classes-recipe/nodejs-arch.bbclass | 15 +++ 1 file changed, 15 insertions(+) create mode 100644 meta/classes-recipe/nodejs-arch.bbclass diff --git a/meta/classes-recipe/nodejs-arch.bbclass b/meta/classe

[OE-core] [RFC PATCH 17/30] classes: add vendor class for cargo

2025-02-11 Thread Stefan Herbrechtsmeier via lists.openembedded.org
From: Stefan Herbrechtsmeier Add a vendor class for cargo to resolve the dependency SRC_URIs from a Cargo.lock file and populate the crate vendor folder. Signed-off-by: Stefan Herbrechtsmeier --- meta/classes-recipe/vendor_cargo.bbclass | 46 1 file changed, 46 insert

[OE-core] [RFC PATCH 24/30] python3-rpds-py: mirgrate to vendor cargo class

2025-02-11 Thread Stefan Herbrechtsmeier via lists.openembedded.org
From: Stefan Herbrechtsmeier Signed-off-by: Stefan Herbrechtsmeier --- .../python/python3-rpds-py-crates.inc | 54 --- .../python/python3-rpds-py_0.22.3.bb | 4 +- 2 files changed, 1 insertion(+), 57 deletions(-) delete mode 100644 meta/recipes-devtools/pytho

[OE-core] [RFC PATCH 16/30] classes: add vendor class

2025-02-11 Thread Stefan Herbrechtsmeier via lists.openembedded.org
From: Stefan Herbrechtsmeier Add a common vendor class with a prototype for the do_vendor_resolve task and common dump and load SRC_URI_FILES function. Signed-off-by: Stefan Herbrechtsmeier --- meta/classes-recipe/vendor.bbclass | 28 1 file changed, 28 insertions

[OE-core] [RFC PATCH 19/30] classes: add vendor class for npm

2025-02-11 Thread Stefan Herbrechtsmeier via lists.openembedded.org
From: Stefan Herbrechtsmeier Add a vendor class for npm to resolve the dependency SRC_URIs from a package-lock.json file and populate the npm node_modules folder. The class replaces the normal npm class and provide a simplified compile and install task. Signed-off-by: Stefan Herbrechtsmeier ---

[OE-core] [RFC PATCH 30/30] [DO NOT MERGE] classes: spdx: use version 2.2

2025-02-11 Thread Stefan Herbrechtsmeier via lists.openembedded.org
From: Stefan Herbrechtsmeier Signed-off-by: Stefan Herbrechtsmeier --- meta/classes/create-spdx.bbclass | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/meta/classes/create-spdx.bbclass b/meta/classes/create-spdx.bbclass index b604973ae0..19c6c0ff0b 100644 --- a/meta/classes

[OE-core] [RFC PATCH 05/30] lib: oe: add vendor module

2025-02-11 Thread Stefan Herbrechtsmeier via lists.openembedded.org
From: Stefan Herbrechtsmeier Add a vendor package as base for package manager specific implementations to resolve dependencies and populate vendor directories. Add common dump and load function for SRC_URI files. Signed-off-by: Stefan Herbrechtsmeier --- meta/lib/oe/vendor/__init__.py | 28 ++

[OE-core] [RFC PATCH 25/30] librsvg: mirgrate to vendor cargo class

2025-02-11 Thread Stefan Herbrechtsmeier via lists.openembedded.org
From: Stefan Herbrechtsmeier Signed-off-by: Stefan Herbrechtsmeier --- meta/recipes-gnome/librsvg/librsvg-crates.inc | 590 -- meta/recipes-gnome/librsvg/librsvg_2.59.2.bb | 4 +- 2 files changed, 1 insertion(+), 593 deletions(-) delete mode 100644 meta/recipes-gnome/librsv

[OE-core] [RFC PATCH 21/30] python3-bcrypt: mirgrate to vendor cargo class

2025-02-11 Thread Stefan Herbrechtsmeier via lists.openembedded.org
From: Stefan Herbrechtsmeier Signed-off-by: Stefan Herbrechtsmeier --- .../python/python3-bcrypt-crates.inc | 84 --- .../python/python3-bcrypt_4.2.1.bb| 4 +- 2 files changed, 1 insertion(+), 87 deletions(-) delete mode 100644 meta/recipes-devtools/pytho

[OE-core] [RFC PATCH 02/30] lib: spdx30_tasks: use expanded FetchData for download files

2025-02-11 Thread Stefan Herbrechtsmeier via lists.openembedded.org
From: Stefan Herbrechtsmeier Use the expanded list of FetchData objects covering both the given SRC_URLs and any additional implicit URLs that are added automatically by the appropriate FetchMethod. Signed-off-by: Stefan Herbrechtsmeier --- meta/lib/oe/spdx30_tasks.py | 5 ++--- 1 file change

Re: [OE-core] [PATCH] linux-firmware: upgrade 20250109 -> 20250211

2025-02-11 Thread Vivek Puar via lists.openembedded.org
On 2/12/2025 2:53 AM, Dmitry Baryshkov via lists.openembedded.org wrote: On Tue, 11 Feb 2025 at 20:52, Vivek Puar wrote: License-Update: additional files Not only "additional files", there is a new Qualcomm licence, which is not caught by this patch, NAK While taking care of the new Qualcomm

Re: [OE-core] Yocto Project Status 11 Feb. 2025 (WW07)

2025-02-11 Thread Richard Purdie via lists.openembedded.org
On Tue, 2025-02-11 at 19:42 +0100, Alexander Kanavin via lists.openembedded.org wrote: > On Tue, 11 Feb 2025 at 16:57, Stephen Jolley via > lists.openembedded.org > wrote: > > We’d like to request help to process the open github pull requests for > > openembedded-core and bitbake: > > > > https

Re: [OE-core] [bitbake-devel] [RFC PATCH 00/30] Add vendor support for go, npm and rust

2025-02-11 Thread Bruce Ashfield via lists.openembedded.org
In message: [bitbake-devel] [RFC PATCH 00/30] Add vendor support for go, npm and rust on 11/02/2025 Stefan Herbrechtsmeier via lists.openembedded.org wrote: > From: Stefan Herbrechtsmeier > > The series adds on-the-fly support for package manager specific > dependencies and vendor directories

Re: [OE-core] [PATCH] linux-firmware: upgrade 20250109 -> 20250211

2025-02-11 Thread Vivek Puar via lists.openembedded.org
Sure will cover all and send the patch. I was going to upload a new patch covering them. On 2/12/2025 2:53 AM, Dmitry Baryshkov via lists.openembedded.org wrote: On Tue, 11 Feb 2025 at 20:52, Vivek Puar wrote: License-Update: additional files Not only "additional files", there is a new Qual

[OE-core][PATCH v12 3/5] rpm: Set SEQUOIA_CRYPTO_POLICY in wrapped tools

2025-02-11 Thread Zoltan Boszormenyi via lists.openembedded.org
Point to the crypto policy file so RPM signing may work. Signed-off-by: Zoltán Böszörményi --- meta/recipes-devtools/rpm/rpm_4.20.0.bb | 1 + 1 file changed, 1 insertion(+) diff --git a/meta/recipes-devtools/rpm/rpm_4.20.0.bb b/meta/recipes-devtools/rpm/rpm_4.20.0.bb index 45487ad32c..281fde1c

[OE-core][PATCH v12 2/5] rpm-sequoia: New recipe for version 1.7.0

2025-02-11 Thread Zoltan Boszormenyi via lists.openembedded.org
rpm 4.20 removed the built-in code to handle signed packages and uses rpm-sequoia as a more feature complete library. Runtime-depend on rpm-sequoia-crypto-policy. Signed-off-by: Zoltán Böszörményi --- meta/conf/distro/include/maintainers.inc | 1 + .../rpm-sequoia/rpm-sequoia-crates.inc

[OE-core][PATCH v12 4/5] dnf: Set SEQUOIA_CRYPTO_POLICY in wrapped tools

2025-02-11 Thread Zoltan Boszormenyi via lists.openembedded.org
Point to the crypto policy file so dnf can work with signed packages. Signed-off-by: Zoltán Böszörményi --- meta/recipes-devtools/dnf/dnf_4.22.0.bb | 1 + 1 file changed, 1 insertion(+) diff --git a/meta/recipes-devtools/dnf/dnf_4.22.0.bb b/meta/recipes-devtools/dnf/dnf_4.22.0.bb index f9d6ea1

[OE-core][PATCH v12 1/5] rpm-sequoia-crypto-policy: New recipe

2025-02-11 Thread Zoltan Boszormenyi via lists.openembedded.org
This ships a crypto policy file for rpm-sequoia. Signed-off-by: Zoltán Böszörményi --- meta/conf/distro/include/maintainers.inc | 1 + .../rpm-sequoia-crypto-policy_git.bb | 34 +++ 2 files changed, 35 insertions(+) create mode 100644 meta/recipes-devtools/rpm-se

Re: [OE-core][PATCH v10 1/5] rpm-sequoia-crypto-policy: New recipe

2025-02-11 Thread Zoltan Boszormenyi via lists.openembedded.org
2025. 02. 10. 12:17 keltezéssel, Zoltan Boszormenyi via lists.openembedded.org írta: 2025. 02. 10. 10:03 keltezéssel, Alexander Kanavin írta: On Sat, 8 Feb 2025 at 08:24, Zoltán Böszörményi wrote: +Assume that the policies are good as they are committed. +The CI for fedora-crypto-policies ens

[OE-core][PATCH v12 5/5] oeqa/selftest/cases/signing.py: Re-enable self-test

2025-02-11 Thread Zoltan Boszormenyi via lists.openembedded.org
With all the pieces in place, the self test can be re-enabled. Signed-off-by: Zoltán Böszörményi --- meta/lib/oeqa/selftest/cases/signing.py | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/meta/lib/oeqa/selftest/cases/signing.py b/meta/lib/oeqa/selftest/cases/signing.py in

Re: [OE-core] [PATCH] systemd: move systemctl utility to separate subpackage

2025-02-11 Thread Alexander Kanavin via lists.openembedded.org
This still doesn’t make sense. Any target file is contained in one and only one package. Where is the duplication? Alex On Tue 11. Feb 2025 at 19.04, Oleksiy Obitotskyy -X (oobitots - GLOBALLOGIC INC at Cisco) wrote: > I'm sorry, I confused you mentioned term sysroot. It's not about yocto - > w

Re: [OE-core] Yocto Project Status 11 Feb. 2025 (WW07)

2025-02-11 Thread Alexander Kanavin via lists.openembedded.org
On Tue, 11 Feb 2025 at 16:57, Stephen Jolley via lists.openembedded.org wrote: > We’d like to request help to process the open github pull requests for > openembedded-core and bitbake: > > https://github.com/openembedded/openembedded-core/pulls > > https://github.com/openembedded/bitbake/pulls >

[OE-core][scarthgap 00/14] Patch review

2025-02-11 Thread Steve Sakoman
Please review this set of changes for scarthgap and have comments back by end of day Thursday, February 13 Passed a-full on autobuilder: https://autobuilder.yoctoproject.org/valkyrie/#/builders/29/builds/997 The following changes since commit 72156282059aa5a013a386eb95f89dc38726326e: selftest

[OE-core][scarthgap 03/14] ffmpeg: fix CVE-2024-36616

2025-02-11 Thread Steve Sakoman
From: Archana Polampalli An integer overflow in the component /libavformat/westwood_vqa.c of FFmpeg n6.1.1 allows attackers to cause a denial of service in the application via a crafted VQA file. Signed-off-by: Archana Polampalli Signed-off-by: Steve Sakoman --- .../ffmpeg/ffmpeg/CVE-2024-3

[OE-core][scarthgap 01/14] ffmpeg: fix CVE-2024-35365

2025-02-11 Thread Steve Sakoman
From: Archana Polampalli FFmpeg version n6.1.1 has a double-free vulnerability in the fftools/ffmpeg_mux_init.c component of FFmpeg, specifically within the new_stream_audio function. Signed-off-by: Archana Polampalli Signed-off-by: Steve Sakoman --- .../ffmpeg/ffmpeg/CVE-2024-35365.patch

[OE-core][scarthgap 06/14] ffmpeg: fix CVE-2024-36619

2025-02-11 Thread Steve Sakoman
From: Archana Polampalli FFmpeg n6.1.1 has a vulnerability in the WAVARC decoder of the libavcodec library which allows for an integer overflow when handling certain block types, leading to a denial-of-service (DoS) condition. Signed-off-by: Archana Polampalli Signed-off-by: Steve Sakoman ---

[OE-core][scarthgap 10/14] linux-yocto/6.6: update to v6.6.75

2025-02-11 Thread Steve Sakoman
From: Bruce Ashfield Updating linux-yocto/6.6 to the latest korg -stable release that comprises the following commits: d51b7d37f14e Linux 6.6.75 431fb709db43 drm/v3d: Assign job pointer to NULL before signaling the fence 35b144b393db Input: xpad - add support for wooting two he (arm)

[OE-core][scarthgap 12/14] cmake: apply parallel build settings to ptest tasks

2025-02-11 Thread Steve Sakoman
From: Peter Marko ptest compile and install tasks do not have parallel build settings for cmake. On powerful build machines this can cause overload situations and oomkills. Observed when building qtgrpc with ptest generally enabled in distro. Having this in ptest class is suboptimal, but creatin

[OE-core][scarthgap 09/14] python3: upgrade 3.12.8 -> 3.12.9

2025-02-11 Thread Steve Sakoman
From: Peter Marko Release notes: https://docs.python.org/release/3.12.9/whatsnew/changelog.html#python-3-12-9 Solves CVE-2025-0938, CVE-2024-12254 and 3 other vulnerabilities without CVE number assigment. Add a patch to fix failure of a new test. Signed-off-by: Peter Marko Signed-off-by: Stev

[OE-core][scarthgap 02/14] ffmpeg: fix CVE-2024-36613

2025-02-11 Thread Steve Sakoman
From: Archana Polampalli FFmpeg n6.1.1 has a vulnerability in the DXA demuxer of the libavformat library allowing for an integer overflow, potentially resulting in a denial-of-service (DoS) condition or other undefined behavior. Signed-off-by: Archana Polampalli Signed-off-by: Steve Sakoman --

[OE-core][scarthgap 13/14] qemu: Do not define sched_attr with glibc >= 2.41

2025-02-11 Thread Steve Sakoman
From: Khem Raj * backporting, because it's also needed also for qemu-native builds on hosts with glibc >= 2.41 Signed-off-by: Khem Raj Signed-off-by: Richard Purdie Signed-off-by: Martin Jansa Signed-off-by: Steve Sakoman --- meta/recipes-devtools/qemu/qemu.inc | 1 + ...ed_att

[OE-core][scarthgap 14/14] base-files: Drop /bin/sh dependency

2025-02-11 Thread Steve Sakoman
From: Marek Vasut Remove /bin/sh from bash RPROVIDES as this has a side-effect which confuses rpm package manager when also busybox provides /bin/sh and base-files depend on /bin/sh . The problem is broken down below. First, bash depends on base-files and bash pkg_postinst must run after base-fi

[OE-core][scarthgap 08/14] gstreamer1.0-rtsp-server: fix CVE-2024-44331

2025-02-11 Thread Steve Sakoman
From: Archana Polampalli Incorrect Access Control in GStreamer RTSP server 1.25.0 in gst-rtsp-server/rtsp-media.c allows remote attackers to cause a denial of service via a series of specially crafted hexstream requests. Signed-off-by: Archana Polampalli Signed-off-by: Steve Sakoman --- ...

[OE-core][scarthgap 05/14] ffmpeg: fix CVE-2024-36618

2025-02-11 Thread Steve Sakoman
From: Archana Polampalli FFmpeg n6.1.1 has a vulnerability in the AVI demuxer of the libavformat library which allows for an integer overflow, potentially resulting in a denial-of-service (DoS) condition. Signed-off-by: Archana Polampalli Signed-off-by: Steve Sakoman --- .../ffmpeg/ffmpeg/CV

[OE-core][scarthgap 04/14] ffmpeg: fix CVE-2024-36617

2025-02-11 Thread Steve Sakoman
From: Archana Polampalli FFmpeg n6.1.1 has an integer overflow vulnerability in the FFmpeg CAF decoder. Signed-off-by: Archana Polampalli Signed-off-by: Steve Sakoman --- .../ffmpeg/ffmpeg/CVE-2024-36617.patch| 36 +++ .../recipes-multimedia/ffmpeg/ffmpeg_6.1.1.bb | 1

[OE-core][scarthgap 11/14] go: upgrade 1.22.11 -> 1.22.12

2025-02-11 Thread Steve Sakoman
From: Peter Marko Upgrade to latest 1.22.x release [1]: $ git --no-pager log --oneline go1.22.11..go1.22.12 5817e65094 (tag: go1.22.12) [release-branch.go1.22] go1.22.12 0cc45e7ca6 [release-branch.go1.22] crypto/internal/fips140/nistec: make p256NegCond constant time on ppc64le c3c6a50095 [rele

[OE-core][scarthgap 07/14] ffmpeg: fix CVE-2024-35369

2025-02-11 Thread Steve Sakoman
From: Archana Polampalli In FFmpeg version n6.1.1, specifically within the avcodec/speexdec.c module, a potential security vulnerability exists due to insufficient validation of certain parameters when parsing Speex codec extradata. This vulnerability could lead to integer overflow conditions, po

Re: [OE-core] [bitbake-devel] [RFC PATCH 10/30] conf: bitbake: add SRC_URI_FILES variable

2025-02-11 Thread Peter Kjellerstedt via lists.openembedded.org
> -Original Message- > From: bitbake-de...@lists.openembedded.org > On Behalf Of Stefan Herbrechtsmeier > via lists.openembedded.org > Sent: den 11 februari 2025 16:00 > To: openembedded-core@lists.openembedded.org > Cc: Stefan Herbrechtsmeier ; > bitbake-de...@lists.openembedded.org >

[OE-core][kirkstone][PATCH] openssl: upgrade 3.0.15 -> 3.0.16

2025-02-11 Thread Peter Marko via lists.openembedded.org
From: Peter Marko Release information: https://github.com/openssl/openssl/blob/openssl-3.0/NEWS.md#major-changes-between-openssl-3015-and-openssl-3016-11-feb-2025 All CVEs were already patched, so this upgrade fixes only minor bugs. Remove CVE patches included in the new version. Signed-off-by

[OE-core][PATCH] openssl: upgrade 3.4.0 -> 3.4.1

2025-02-11 Thread Peter Marko via lists.openembedded.org
From: Peter Marko Release information: https://github.com/openssl/openssl/blob/openssl-3.4/NEWS.md#major-changes-between-openssl-340-and-openssl-341-11-feb-2025 Handles CVE-2024-12797 and CVE-2024-13176. Remove two patches included in the new version. Signed-off-by: Peter Marko --- ...001-Fi

Patchtest results for [OE-core][scarthgap 09/14] python3: upgrade 3.12.8 -> 3.12.9

2025-02-11 Thread Patchtest via lists.openembedded.org
Thank you for your submission. Patchtest identified one or more issues with the patch. Please see the log below for more information: --- Testing patch /home/patchtest/share/mboxes/scarthgap-09-14-python3-upgrade-3.12.8---3.12.9.patch FAIL: test CVE tag format: Missing or incorrectly formatted C

Re: [OE-core] [RFC PATCH 16/30] classes: add vendor class

2025-02-11 Thread Peter Kjellerstedt via lists.openembedded.org
> -Original Message- > From: openembedded-core@lists.openembedded.org > On Behalf Of Stefan > Herbrechtsmeier via lists.openembedded.org > Sent: den 11 februari 2025 16:00 > To: openembedded-core@lists.openembedded.org > Cc: Stefan Herbrechtsmeier > Subject: [OE-core] [RFC PATCH 16/30]

Re: [OE-core] [RFC PATCH 21/30] python3-bcrypt: mirgrate to vendor cargo class

2025-02-11 Thread Richard Purdie via lists.openembedded.org
On Tue, 2025-02-11 at 16:00 +0100, Stefan Herbrechtsmeier via lists.openembedded.org wrote: > From: Stefan Herbrechtsmeier > > Signed-off-by: Stefan Herbrechtsmeier > --- > >  .../python/python3-bcrypt-crates.inc  | 84 --- >  .../python/python3-bcrypt_4.2.1.bb  

[OE-core][styhead 2/4] linux-yocto/6.6: update to v6.6.75

2025-02-11 Thread Steve Sakoman
From: Bruce Ashfield Updating linux-yocto/6.6 to the latest korg -stable release that comprises the following commits: d51b7d37f14e Linux 6.6.75 431fb709db43 drm/v3d: Assign job pointer to NULL before signaling the fence 35b144b393db Input: xpad - add support for wooting two he (arm)

[OE-core][styhead 4/4] cmake: apply parallel build settings to ptest tasks

2025-02-11 Thread Steve Sakoman
From: Peter Marko ptest compile and install tasks do not have parallel build settings for cmake. On powerful build machines this can cause overload situations and oomkills. Observed when building qtgrpc with ptest generally enabled in distro. Having this in ptest class is suboptimal, but creatin

[OE-core][styhead 1/4] python3: upgrade 3.12.8 -> 3.12.9

2025-02-11 Thread Steve Sakoman
From: Peter Marko Release notes: https://docs.python.org/release/3.12.9/whatsnew/changelog.html#python-3-12-9 Solves CVE-2025-0938, CVE-2024-12254 and 3 other vulnerabilities without CVE number assigment. Add a patch to fix failure of a new test. Signed-off-by: Peter Marko Signed-off-by: Stev

[OE-core][styhead 0/4] Patch review

2025-02-11 Thread Steve Sakoman
Please review this set of changes for styhead and have comments back by end of day Thursday, February 13 Passed a-full on autobuilder: https://autobuilder.yoctoproject.org/valkyrie/#/builders/29/builds/998 The following changes since commit e475321e933e9c58e88dd445328f9228c417b4ff: lrzsz: upd

Patchtest results for [OE-core][styhead 1/4] python3: upgrade 3.12.8 -> 3.12.9

2025-02-11 Thread Patchtest via lists.openembedded.org
Thank you for your submission. Patchtest identified one or more issues with the patch. Please see the log below for more information: --- Testing patch /home/patchtest/share/mboxes/styhead-1-4-python3-upgrade-3.12.8---3.12.9.patch FAIL: test CVE tag format: Missing or incorrectly formatted CVE t

Re: [OE-core] [RFC PATCH 18/30] classes: add vendor class for go

2025-02-11 Thread Bruce Ashfield via lists.openembedded.org
In message: [OE-core] [RFC PATCH 18/30] classes: add vendor class for go on 11/02/2025 Stefan Herbrechtsmeier via lists.openembedded.org wrote: > From: Stefan Herbrechtsmeier > > Add a vendor class for go to resolve the dependency SRC_URIs from a > go.sum file and run populate the go mod vendor

Re: [OE-core] [RFC PATCH 15/30] classes: add early fetch, unpack and patch support

2025-02-11 Thread Bruce Ashfield via lists.openembedded.org
In message: [OE-core] [RFC PATCH 15/30] classes: add early fetch, unpack and patch support on 11/02/2025 Stefan Herbrechtsmeier via lists.openembedded.org wrote: > From: Stefan Herbrechtsmeier > > Add support for early fetch, unpack and patches task which run before > normal patch task. This fe

[OE-core] xserver-xorg: do_create_spdx broken if xvfb is enabled

2025-02-11 Thread Dmitry Baryshkov via lists.openembedded.org
Hello, For some time the the do_create_spdx is broken for xserver-xorg if PACKAGECONFIG includes xvfb. I failed to find a proper way to fix it, and now I'm open for suggestions. ERROR: Error executing a python function in exec_func_python() autogenerated: The stack trace of python calls that res

[OE-core] [PATCH] vim: Upgrade 9.1.0764 -> 9.1.1043

2025-02-11 Thread dchellam via lists.openembedded.org
From: Divya Chellam This includes CVE-fix for CVE-2025-22134 and CVE-2025-24014 Changes between 9.1.0764 -> 9.1.1043 https://github.com/vim/vim/compare/v9.1.0764...v9.1.1043 Signed-off-by: Divya Chellam --- meta/recipes-support/vim/vim.inc | 4 ++-- 1 file

Re: [OE-core] [PATCH] systemd: move systemctl utility to separate subpackage

2025-02-11 Thread Oleksiy Obitotskyy via lists.openembedded.org
Component deliver something and it's content consist of: * binaries/libraries/scripts, etc. that delivered by this component (service) itself * binaries/libraries, etc. on which component depends on Technically content is per component subdirectory. Every component has its own isolated cont