Maintain the stable branch rocko

The modifications based on the following commits are made by the way: - seloader: Fix building for rocko (bc6bbe2) - meta-integrity: rpm: Add back in required patches for rocko (5fa9c85) Because the sanity check for rocko now becomes unnecessary. In addition, the meta-intel-sgx is removed because it is still experimental. - meta-intel-sgx: Initial support of linux-sgx-driver (7d4f711) Signed-off-by: Jia Zhang <zhang.jia@linux.alibaba.com>
2026-04-20 18:08:17 +00:00 · 2018-09-20 10:08:23 -04:00
parent ab99b6a892
commit 1423a3c5c5
15 changed files with 14 additions and 91 deletions
--- a/2
+++ b/2
@@ -1 +1 @@
-Jia Zhang <zhang.jia@linux.alibaba.com>
+Tom Rini <trini@konsulko.com>
--- a/6
+++ b/6
@@ -10,11 +10,11 @@ Dependencies
 This layer depends on:

  URI: git://git.openembedded.org/bitbake
-  branch: master
+  branch: rocko

  URI: git://git.openembedded.org/openembedded-core
  layers: meta
-  branch: master
+  branch: rocko


 Patches
@@ -23,7 +23,7 @@ Patches
 Please submit any patches against the meta-secure-core layer to the
 maintainer:

-Maintainer: Jia Zhang <lans.zhang2008@gmail.com>
+Maintainer: Tom Rini <trini@konsulko.com>


 Table of Contents
--- a/meta-efi-secure-boot/conf/layer.conf
+++ b/meta-efi-secure-boot/conf/layer.conf
@@ -19,4 +19,4 @@ LAYERDEPENDS_efi-secure-boot = "\
    perl-layer \
 "

-LAYERSERIES_COMPAT_efi-secure-boot = "rocko sumo"
+LAYERSERIES_COMPAT_efi-secure-boot = "rocko"
--- a/meta-efi-secure-boot/recipes-bsp/seloader/seloader_git.bb
+++ b/meta-efi-secure-boot/recipes-bsp/seloader/seloader_git.bb
@@ -43,10 +43,9 @@ EXTRA_OEMAKE = "\
    SBSIGN=${STAGING_BINDIR_NATIVE}/sbsign \
    gnuefi_libdir=${STAGING_LIBDIR} \
    LIB_GCC="`${CC} -print-libgcc-file-name`" \
+    GNU_EFI_VERSION=306 \
 "

-EXTRA_OEMAKE += "${@bb.utils.contains('LAYERSERIES_CORENAMES', 'rocko', 'GNU_EFI_VERSION=306', '', d)}"
-
 EFI_ARCH_x86 = "ia32"
 EFI_ARCH_x86-64 = "x64"

--- a/meta-encrypted-storage/conf/layer.conf
+++ b/meta-encrypted-storage/conf/layer.conf
@@ -17,4 +17,4 @@ LAYERDEPENDS_encrypted-storage = "\
    openembedded-layer \
 "

-LAYERSERIES_COMPAT_encrypted-storage = "rocko sumo"
+LAYERSERIES_COMPAT_encrypted-storage = "rocko"
--- a/meta-ids/conf/layer.conf
+++ b/meta-ids/conf/layer.conf
@@ -16,4 +16,4 @@ LAYERDEPENDS_ids = "\
    networking-layer \
 "

-LAYERSERIES_COMPAT_ids = "rocko sumo"
+LAYERSERIES_COMPAT_ids = "rocko"
--- a/meta-integrity/conf/layer.conf
+++ b/meta-integrity/conf/layer.conf
@@ -27,4 +27,4 @@ BB_HASHBASE_WHITELIST_append += "\
    RPM_FSK_PATH \
 "

-LAYERSERIES_COMPAT_integrity = "rocko sumo"
+LAYERSERIES_COMPAT_integrity = "rocko"
--- a/meta-integrity/recipes-devtools/rpm/rpm-integrity.inc
+++ b/meta-integrity/recipes-devtools/rpm/rpm-integrity.inc
@@ -1,6 +1,6 @@
 FILESEXTRAPATHS_prepend := "${THISDIR}/rpm:"

-ROCKO_SRC_URI = "\
+SRC_URI += "\
    file://0001-Pass-sign-arguments-to-signature-deletion-too.patch \
    file://0002-Beat-some-sense-into-rpmsign-cli-parsing.patch \
    file://0003-Fix-thinko-typo-in-file-signing-error-message.patch \
@@ -13,7 +13,6 @@ ROCKO_SRC_URI = "\
    file://0010-Fix-a-number-of-problems-in-get_fskpass.patch \
    file://0011-Bump-file-digests-to-SHA256-by-default-finally.patch \
 "
-SRC_URI += "${@bb.utils.contains('LAYERSERIES_CORENAMES', 'rocko', '${ROCKO_SRC_URI}', '', d)}"

 PACKAGECONFIG = "${@bb.utils.contains('DISTRO_FEATURES', 'ima', 'imaevm', '', d)}"

--- a/meta-intel-sgx/README.md
+++ b/meta-intel-sgx/README.md
@@ -1,23 +0,0 @@
-### Overview
-This layer provides the support of Intel Software Guard Extensions
-(Intel SGX), which is an Intel technology for application developers
-seeking to protect select code and data from disclosure or modification.
-
-The Linux SGX software stack is comprised of the Intel SGX driver, the
-Intel SGX SDK, and the Intel SGX Platform Software.
-
-### Intel SGX Driver
-The recipe sgx-driver provides a out-of-tree driver for the Linux Intel
-SGX software stack, which will be used until the driver upstreaming process
-is complete.
-
-### Intel SGX SDK and PSW
-The recipes are still in development.
-
-### Hardware Support
-Please check [this site](https://github.com/ayeks/SGX-hardware) for the
-latest information.
-
-### Reference
- [SGX driver](https://github.com/intel/linux-sgx-driver)
- [SGX SDK and PSW](https://github.com/intel/linux-sgx)
--- a/meta-intel-sgx/conf/layer.conf
+++ b/meta-intel-sgx/conf/layer.conf
@@ -1,18 +0,0 @@
-# We have a conf and classes directory, add to BBPATH
-BBPATH .= ":${LAYERDIR}"
-
-# We have recipes-* directories, add to BBFILES
-BBFILES += "${LAYERDIR}/recipes-*/*/*.bb \
-	${LAYERDIR}/recipes-*/*/*.bbappend"
-
-BBFILE_COLLECTIONS += "intel-sgx"
-BBFILE_PATTERN_intel-sgx = "^${LAYERDIR}/"
-BBFILE_PRIORITY_intel-sgx = "10"
-
-BBLAYERS_LAYERINDEX_NAME_intel-sgx = "meta-intel-sgx"
-
-LAYERDEPENDS_intel-sgx = "\
-    core \
-"
-
-LAYERSERIES_COMPAT_intel-sgx = "rocko sumo"
--- a/meta-intel-sgx/recipes-kernel/intel-sgx-driver/intel-sgx-driver_2.1.bb
+++ b/meta-intel-sgx/recipes-kernel/intel-sgx-driver/intel-sgx-driver_2.1.bb
@@ -1,34 +0,0 @@
-SUMMARY = "Intel SGX Linux DDDriver"
-DESCRIPTION = "Intel(R) Software Guard Extensions (Intel(R) SGX) \
-is an Intel technology for application developers seeking to \
-protect select code and data from disclosure or modification."
-HOMEPAGE = "https://github.com/intel/linux-sgx-driver"
-
-LICENSE = "GPLv2"
-LIC_FILES_CHKSUM = "file://License.txt;md5=b54f8941f6087efb6be3deb0f1e617f7"
-
-DEPENDS = "virtual/kernel"
-
-PV = "2.1+git${SRCPV}"
-
-SRC_URI = "\
-    git://github.com/intel/linux-sgx-driver.git \
-"
-SRCREV = "2a509c203533f9950fa3459fe91864051bc021a2"
-
-S = "${WORKDIR}/git"
-
-inherit module
-
-EXTRA_OEMAKE += "KDIR='${STAGING_KERNEL_DIR}'"
-
-MODULE_NAME = "isgx"
-
-do_install () {
-    dir="${D}/lib/modules/${KERNEL_VERSION}/kernel/${MODULE_NAME}"
-
-    install -d "$dir"
-    install -m 0644 "${MODULE_NAME}.ko" "$dir"
-}
-
-RPROVIDES_${PN} += "kernel-module-${MODULE_NAME}"
--- a/meta-signing-key/conf/layer.conf
+++ b/meta-signing-key/conf/layer.conf
@@ -13,7 +13,7 @@ BBLAYERS_LAYERINDEX_NAME_signing-key = "meta-signing-key"

 LAYERDEPENDS_signing-key = "core"

-LAYERSERIES_COMPAT_signing-key = "rocko sumo"
+LAYERSERIES_COMPAT_signing-key = "rocko"

 SIGNING_MODEL ??= "sample"
 SAMPLE_MOK_SB_KEYS_DIR = "${LAYERDIR}/files/mok_sb_keys"
--- a/meta-tpm/conf/layer.conf
+++ b/meta-tpm/conf/layer.conf
@@ -13,4 +13,4 @@ BBLAYERS_LAYERINDEX_NAME_tpm = "meta-tpm"

 LAYERDEPENDS_tpm = "core"

-LAYERSERIES_COMPAT_tpm = "rocko sumo"
+LAYERSERIES_COMPAT_tpm = "rocko"
--- a/meta-tpm2/conf/layer.conf
+++ b/meta-tpm2/conf/layer.conf
@@ -13,4 +13,4 @@ BBLAYERS_LAYERINDEX_NAME_tpm2 = "meta-tpm2"

 LAYERDEPENDS_tpm2 = "core"

-LAYERSERIES_COMPAT_tpm2 = "rocko sumo"
+LAYERSERIES_COMPAT_tpm2 = "rocko"
--- a/meta/conf/layer.conf
+++ b/meta/conf/layer.conf
@@ -15,4 +15,4 @@ LAYERDEPENDS_secure-core = "\
    core \
 "

-LAYERSERIES_COMPAT_secure-core = "rocko sumo"
+LAYERSERIES_COMPAT_secure-core = "rocko"