Current version 3.22 is not affected by the issue.
Affected versions: Up to (excl.) 3.2.1
Signed-off-by: Ninette Adhikari <ninette@thehoodiefirm.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
For now, the known non-reproducible packages list is stored inside the
autobuilder config.json file. This is not ideal. Let's move this list
into each layers of meta-openembedded.
These lists can be used with, in local.conf:
include conf/include/non-repro-meta-oe.inc
OEQA_REPRODUCIBLE_EXCLUDED_PACKAGES = "${KNOWN_NON_REPRO_META_OE}"
Signed-off-by: Yoann Congal <yoann.congal@smile.fr>
Acked-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
* make it possible to configure build without boost
* build tests only when requested
* disable build of IBM proprietary DB2 which does not have recipe
(this creates some cmake warnings if enabled without dependency)
* EXTRA_OECONF is empty with cmake build
* remove SOCI_LIBDIR which was removed in upgrade to v4.0.2
* use WITH_* instedad of SOCI_* as SOCI defines still search
for dependencies unnecessarily and WITH define automatically
enables SOCI define, too
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Add support to generate a dm-verity image and the parameters required to
assemble the corresponding table for the device-mapper driver. The latter will
be stored in the file ${DEPLOY_DIR_IMAGE}/<IMAGE_LINK_NAME>.verity-params.
Note that in the resulting image the hash tree data is appended to the contents
of the original image without an explicit superblock to keep things simple and
compact.
The above mentioned parameter file can be sourced by a shell to finally create
the desired blockdevice via "dmsetup" (found in meta-oe's recipe
"libdevmapper"), e.g.
. <IMAGE_LINK_NAME>.verity-params
dmsetup create <dm_dev_name> --readonly --table "0 $VERITY_DATA_SECTORS verity \
1 <dev> <hash_dev> \
$VERITY_DATA_BLOCK_SIZE $VERITY_HASH_BLOCK_SIZE \
$VERITY_DATA_BLOCKS $VERITY_DATA_BLOCKS \
$VERITY_HASH_ALGORITHM $VERITY_ROOT_HASH $VERITY_SALT \
1 ignore_zero_blocks"
As the hash tree data is found at the end of the image, <dev> and <hash_dev>
should be the same blockdevice in the command shown above while <dm_dev_name> is
the name of the to be created dm-verity-device.
The root hash is calculated using a salt to make attacks more difficult. Thus,
please grant each image recipe its own salt which could be generated e.g. via
dd if=/dev/random bs=1k count=1 | sha256sum
and assign it to the parameter VERITY_SALT.
Signed-off-by: Jan Luebbe <jlu@pengutronix.de>
Signed-off-by: Rouven Czerwinski <r.czerwinski@pengutronix.de>
Signed-off-by: Marco Felsch <m.felsch@pengutronix.de>
Signed-off-by: Ulrich Ölmann <u.oelmann@pengutronix.de>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
0001-include-libgen.h-for-basename.patch
removed since it's included in 3.9.2
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
removes install_requires from setup.py, which is used for generating OS requirements.
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
=============
-Disable flat_namespace to build libmpifort on macOS by default
-Prefix warning messages with "MPICH"
-Add --disable-doc configure option
-Fix support for building MPICH Fortran support with Xcode 15 on macOS
-Fix bug in MPI_WIN_SHARED_QUERY when window is not shared
-Fix bug in ch4/ofi gpu pipelining
-Fixes for Intel GPU support
-Fix memory leak in ch4/shm collectives
-Fix bug in MPI_COMM_SPLIT with intercommunicators and non-zero root
-Fix bug in DAOS ROMIO driver
-Fix bug in cycling error code array
-Return an error if there is failure to create a datatype in mpi_f08
module for noncontiguous user data
-Return an error when shared memory segment creation fails
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
==========
-github: Don't run oomtest9 and oomtest11 on windows
-sound: Fix a possible multiply overflow
-gtlsshd: Don't use alloc_sprintf() to duplicate a string
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
License-Update: Copyright year updated to 2024.
0001-Add-the-pkgconfigdir-location.patch
included in 1.30.2
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Fixes
ERROR: ydotool-1.0.4+git-r0 do_package: QA Issue: ydotool: Files/directories were installed but not shipped in any package:
/usr/lib
/usr/lib/systemd
/usr/lib/systemd/user
/usr/lib/systemd/user/ydotoold.service
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
============
-(xmlsec-openssl) Support cert dates before unix epoch start.
-(xmlsec-openssl) Fix build for LibreSSL or BoringSSL.
-(xmlsec-nss) Ensure NSS algorithms are initialized.
-Several other small fixes
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2922af379dc70b4b1a63b01d67179eb431f03ac4.patch
removed since it's included in 2.44.1
Changelog:
==========
- Fix handling of lifetime of web view child dialogs in GTK4.
- Do not schedule layer flushes when drawing area size is empty.
- Fix videos with alpha when using the DMA-BUF sink.
- Fix the build with USE_GBM=OFF.
- Fix the build in 32bit platforms
- Fix several crashes and rendering issues.
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
============
* Add missing file to dist tarball to build documentation
* Fix RSA decryption with PKCS#1 v1.5 padding
* Fix crash when app is not set
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
0001-makedumpfile-replace-hardcode-CFLAGS.patch
refreshed for 1.7.5
Changelog:
============
-Support for kernels up to v6.8 (x86_64)
-Support for printk caller_id by --dump-dmesg option
-ppc64: get vmalloc start address from vmcoreinfo
-ppc64: read cur_mmu_type from vmcoreinfo
-add PRINTK_CALLER id support to --dump-dmesg option
-s390x: uncouple virtual and physical address spaces
-s390x: fix virtual vs physical address confusion
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
fixes a misalignment issue in the AVX2 code that could cause crashes under Windows.
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
===========
-Fix stems reader processing code broken in 3.3.114.
-Update xml2stems to handle newer "loc" vs "fl" xml tags.
-Change preg_regex_c_1 decl to use regex_t* as datatype.
-Move gtkwave.appdata.xml to
-io.github.gtkwave.GTKWave.metainfo.xml.
-Fixed popen security advisories:
-Fixed FST security advisories:
-Fixed evcd2vcd security advisories:
-Fixed VCD security advisories:
-Fixed VZT security advisories:
-Fixed LXT2 security advisories:
-Remove FST_DO_MISALIGNED_OPS.
-Update lz4 to current version from github.
-Change LZ4_compress to LZ4_compress_default.
-Update libghw.c/.h to latest upstream version.
-Fix for -Wsign-compare in fstapi.c.
-Security fixes for GHW.
-Fix left shift of a negative number warning in fstapi.c.
-Fix ctrl-A behavior for SST filter entry.
-Fix for bad shmat return value in main.c.
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
==========
* Fix activation of OPAL-only encrypted LUKS device with tokens.
* Fix formatting of OPAL devices with 4096-byte sector size.
* Fix incorrect OPAL locking range alignment calculation if used
over an unaligned device partition.
* Add --hw-opal-factory-reset option description to the manual page.
* Do not check the passphrase quality for OPAL Admin PIN,
as this passphrase already exists.
* Update license for FAQ document to CC BY-SA 4.0.
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
===========
-Added absl::NoDestructor<T> to simplify defining static types that do not need
to be destructed upon program exit.
-Added configurable verbose logging (also known as VLOG).
-Added absl::Overload(), which returns a functor that provides overloads based
on the functors passed to it. Note that this functionality requires C++17 or
newer.
-Bzlmod is now officially supported (previously it was supported by the community).
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
libfido2 requires cbor be position independent. When PIE's the default
this isn't a problem, but not all build configurations do that. Instead
of relying on that, just make shared libraries.
Signed-off-by: Dan McGregor <dan.mcgregor@usask.ca>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Set CVE_PRODUCT for this recipe to fix the mapping,
as it was checking against the wrong recipe before.
Log from cve_check after change:
NOTE: libtorrent-rasterbar-2.0.10 is not vulnerable to CVE-2008-0646
NOTE: libtorrent-rasterbar-2.0.10 is not vulnerable to CVE-2009-1760
NOTE: libtorrent-rasterbar-2.0.10 is not vulnerable to CVE-2016-5301
NOTE: libtorrent-rasterbar-2.0.10 is not vulnerable to CVE-2016-7164
NOTE: libtorrent-rasterbar-2.0.10 is not vulnerable to CVE-2017-9847
Signed-off-by: Beniamin Sandu <beniaminsandu@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
The CVE_PRODUCT variable is assigned automatically to BPN.
Unset it for this recipe so the CVEs can be checked
against the correct recipe.
Signed-off-by: Beniamin Sandu <beniaminsandu@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
The following paths have been replaced with PYTHON_SITEPACKAGES_DIR:
- "${libdir}/${PYTHON_DIR}/site-packages"
- "${libdir}/python${PYTHON_BASEVERSION}/site-packages"
- "${libdir}/python*/site-packages"
- "${libdir}/python3.*/site-packages"
Signed-off-by: alperak <alperyasinak1@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
There are use cases for build time cli tools, so include support for
native as well.
Signed-off-by: Eero Aaltonen <eero.aaltonen@vaisala.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
docopt.cpp only uses boost regex with the option USE_BOOST_REGEX=ON.
When used, boost regex is statically linked.
Signed-off-by: Eero Aaltonen <eero.aaltonen@vaisala.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
This is a requirement for libdisplay-info and fixes:
Program edid-decode found: NO
If libdisplay-info can provide edid-decode-native it looks like:
libdisplay-info| Program edid-decode found: YES (/home/flk/poky/build-hypr/tmp/work/corei7-64-poky-linux/gamescope/3.14.3/recipe-sysroot-native/usr/bin/edid-decode)
libdisplay-info| Program ./edid-decode-check.sh found: YES (/home/flk/poky/build-hypr/tmp/work/corei7-64-poky-linux/gamescope/3.14.3/git/subprojects/libdisplay-info/test/./edid-decode-check.sh)
libdisplay-info| Program ./edid-print-check.sh found: YES (/home/flk/poky/build-hypr/tmp/work/corei7-64-poky-linux/gamescope/3.14.3/git/subprojects/libdisplay-info/test/./edid-print-check.sh)
libdisplay-info| Program ./edid-decode-diff.sh found: YES (/home/flk/poky/build-hypr/tmp/work/corei7-64-poky-linux/gamescope/3.14.3/git/subprojects/libdisplay-info/test/./edid-decode-diff.sh)
Signed-off-by: Markus Volk <f_l_k@t-online.de>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
There are two still left
Failed ptests:
{'psqlodbc': ['30_-_lfconversion', '43_-_result-conversions']}
These need using unicode postgresql driver perhaps
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Brings
Fix iconv handle leak with pooling
Add windows encoding patch
Avoid failed build if clock_gettime() is not available
Allow passing in a entire connection string into iusql
Allow isql to handle SQL_SUCCESS_WITH_INFO from SQLPrepare
Add extra logging for ODBCINST connect settings
Allow allocated copy (instead of fixed length) for the connection string with pooling to allow any length
Export __clear_ini_cache() from odbcinst to allow explicitly clearing the ini cache
Fix seg fault when used with SQLAPI
Add --enable-utf8ini flag to add utf8 to WCHAR conversions in SQLGetPrivateProfileStringW
Allow longer error messages via GetDiag functions
Add --enable-singleenv to enable single shared env handle when using pooling
Signed-off-by: Khem Raj <raj.khem@gmail.com>
When running ptests using meta-oe-image-ptest-ostree image
these packageconfig/soup3 and utf8 locale is needed
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Cc: Jose Quaresma <quaresma.jose@gmail.com>
oldincludedir was removed in oe-core by
commit 506c91cbc6a604a84e37e53ccff430436369802e
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Ninette Adhikari
Yoann Congal
Khem Raj
Archana Polampalli
Stanislav Angelovic
Peter Marko
Jan Luebbe
Wang Mingyu
Ross Burton
Dan McGregor
Beniamin Sandu
Martin Jansa
Andre Paiusco
Rui Costa
alperak
Eero Aaltonen
Mingli Yu
Markus Volk