mirror of
https://git.yoctoproject.org/poky
synced 2026-07-17 04:07:06 +00:00
meta/scripts: Automated conversion of OE renamed variables
(From OE-Core rev: aa52af4518604b5bf13f3c5e885113bf868d6c81) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
This commit is contained in:
@@ -27,4 +27,4 @@ UPSTREAM_CHECK_REGEX = "cmake-(?P<pver>\d+(\.\d+)+)\.tar"
|
||||
|
||||
# This is specific to the npm package that installs cmake, so isn't
|
||||
# relevant to OpenEmbedded
|
||||
CVE_CHECK_WHITELIST += "CVE-2016-10642"
|
||||
CVE_CHECK_IGNORE += "CVE-2016-10642"
|
||||
|
||||
@@ -31,7 +31,7 @@ UPSTREAM_CHECK_REGEX = "flex-(?P<pver>\d+(\.\d+)+)\.tar"
|
||||
# Disputed - yes there is stack exhaustion but no bug and it is building the
|
||||
# parser, not running it, effectively similar to a compiler ICE. Upstream no plans to address
|
||||
# https://github.com/westes/flex/issues/414
|
||||
CVE_CHECK_WHITELIST += "CVE-2019-6293"
|
||||
CVE_CHECK_IGNORE += "CVE-2019-6293"
|
||||
|
||||
inherit autotools gettext texinfo ptest
|
||||
|
||||
|
||||
@@ -119,4 +119,4 @@ EXTRA_OECONF_PATHS = "\
|
||||
"
|
||||
|
||||
# Is a binutils 2.26 issue, not gcc
|
||||
CVE_CHECK_WHITELIST += "CVE-2021-37322"
|
||||
CVE_CHECK_IGNORE += "CVE-2021-37322"
|
||||
|
||||
@@ -256,4 +256,4 @@ do_install:append () {
|
||||
# and builds track file dependencies (e.g. perl and its makedepends code).
|
||||
# For determinism we don't install this ever and rely on the copy from gcc-cross.
|
||||
# [YOCTO #7287]
|
||||
SYSROOT_DIRS_BLACKLIST += "${libdir}/gcc"
|
||||
SYSROOT_DIRS_IGNORE += "${libdir}/gcc"
|
||||
|
||||
@@ -20,7 +20,7 @@ PACKAGECONFIG[python] = "--with-python=${WORKDIR}/python,--without-python,native
|
||||
PACKAGECONFIG[readline] = "--with-system-readline,--without-system-readline,nativesdk-readline"
|
||||
PACKAGECONFIG[debuginfod] = "--with-debuginfod, --without-debuginfod, nativesdk-elfutils"
|
||||
|
||||
SSTATE_DUPWHITELIST += "${STAGING_DATADIR}/gdb"
|
||||
SSTATE_ALLOW_OVERLAP_FILES += "${STAGING_DATADIR}/gdb"
|
||||
|
||||
do_configure:prepend() {
|
||||
cat > ${WORKDIR}/python << EOF
|
||||
|
||||
@@ -22,4 +22,4 @@ SRC_URI[main.sha256sum] = "c108cd33b73b1911a02b697741df3dea43e01a5c4e08e409e8b3a
|
||||
# Upstream don't believe it is a signifiant real world issue and will only
|
||||
# fix in 1.17 onwards where we can drop this.
|
||||
# https://github.com/golang/go/issues/30999#issuecomment-910470358
|
||||
CVE_CHECK_WHITELIST += "CVE-2021-29923"
|
||||
CVE_CHECK_IGNORE += "CVE-2021-29923"
|
||||
|
||||
@@ -22,7 +22,7 @@ UPSTREAM_CHECK_REGEX = "jquery-(?P<pver>\d+(\.\d+)+)\.js"
|
||||
# https://github.com/jquery/jquery/issues/3927
|
||||
# There are ways jquery can expose security issues but any issues are in the apps exposing them
|
||||
# and there is little we can directly do
|
||||
CVE_CHECK_WHITELIST += "CVE-2007-2379"
|
||||
CVE_CHECK_IGNORE += "CVE-2007-2379"
|
||||
|
||||
inherit allarch
|
||||
|
||||
|
||||
@@ -7,7 +7,7 @@ RDEPENDS:${PN} += "bash"
|
||||
#
|
||||
# We want the results of libtool-cross preserved - don't stage anything ourselves.
|
||||
#
|
||||
SYSROOT_DIRS_BLACKLIST += " \
|
||||
SYSROOT_DIRS_IGNORE += " \
|
||||
${bindir} \
|
||||
${datadir}/aclocal \
|
||||
${datadir}/libtool/build-aux \
|
||||
|
||||
@@ -49,12 +49,12 @@ UPSTREAM_CHECK_URI = "https://www.python.org/downloads/source/"
|
||||
CVE_PRODUCT = "python"
|
||||
|
||||
# Upstream consider this expected behaviour
|
||||
CVE_CHECK_WHITELIST += "CVE-2007-4559"
|
||||
CVE_CHECK_IGNORE += "CVE-2007-4559"
|
||||
# This is not exploitable when glibc has CVE-2016-10739 fixed.
|
||||
CVE_CHECK_WHITELIST += "CVE-2019-18348"
|
||||
CVE_CHECK_IGNORE += "CVE-2019-18348"
|
||||
|
||||
# This is windows only issue.
|
||||
CVE_CHECK_WHITELIST += "CVE-2020-15523"
|
||||
CVE_CHECK_IGNORE += "CVE-2020-15523"
|
||||
|
||||
PYTHON_MAJMIN = "3.10"
|
||||
|
||||
|
||||
@@ -36,15 +36,15 @@ SRC_URI:append:class-target = " file://cross.patch"
|
||||
SRC_URI:append:class-nativesdk = " file://cross.patch"
|
||||
|
||||
# Applies against virglrender < 0.6.0 and not qemu itself
|
||||
CVE_CHECK_WHITELIST += "CVE-2017-5957"
|
||||
CVE_CHECK_IGNORE += "CVE-2017-5957"
|
||||
|
||||
# The VNC server can expose host files uder some circumstances. We don't
|
||||
# enable it by default.
|
||||
CVE_CHECK_WHITELIST += "CVE-2007-0998"
|
||||
CVE_CHECK_IGNORE += "CVE-2007-0998"
|
||||
|
||||
# 'The issues identified by this CVE were determined to not constitute a vulnerability.'
|
||||
# https://bugzilla.redhat.com/show_bug.cgi?id=1609015#c11
|
||||
CVE_CHECK_WHITELIST += "CVE-2018-18438"
|
||||
CVE_CHECK_IGNORE += "CVE-2018-18438"
|
||||
|
||||
COMPATIBLE_HOST:mipsarchn32 = "null"
|
||||
COMPATIBLE_HOST:mipsarchn64 = "null"
|
||||
|
||||
@@ -20,7 +20,7 @@ SRC_URI = "https://download.samba.org/pub/${BPN}/src/${BP}.tar.gz \
|
||||
SRC_URI[sha256sum] = "becc3c504ceea499f4167a260040ccf4d9f2ef9499ad5683c179a697146ce50e"
|
||||
|
||||
# -16548 required for v3.1.3pre1. Already in v3.1.3.
|
||||
CVE_CHECK_WHITELIST += " CVE-2017-16548 "
|
||||
CVE_CHECK_IGNORE += " CVE-2017-16548 "
|
||||
|
||||
inherit autotools-brokensep
|
||||
|
||||
|
||||
@@ -31,7 +31,7 @@ SRC_URI:class-native = "${BASE_SRC_URI}"
|
||||
|
||||
# Upstream don't believe this is an exploitable issue
|
||||
# https://core.tcl-lang.org/tcl/info/7079e4f91601e9c7
|
||||
CVE_CHECK_WHITELIST += "CVE-2021-35331"
|
||||
CVE_CHECK_IGNORE += "CVE-2021-35331"
|
||||
|
||||
UPSTREAM_CHECK_REGEX = "tcl(?P<pver>\d+(\.\d+)+)-src"
|
||||
|
||||
|
||||
Reference in New Issue
Block a user