[yocto-security] [OE-core CVE] branch master updated. uninative-2.2-217-ge2b8a3d
cve-notice at lists.openembedded.org
cve-notice at lists.openembedded.org
Tue Aug 14 03:36:50 PDT 2018
This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "".
The branch, master has been updated
via e2b8a3d5a10868f9c0dec8d7b9f5f89fdd100fc8 (commit)
via 9e291d9923efc988abe8689c64bafbb29da06339 (commit)
via d86da5ae386a8129a966a53901de160823f4d250 (commit)
via 3c05c8fff779bd190b31fa8aa16b7a1b24420a60 (commit)
via c392dabefc431dbfb31d6a1465c75ba9cc765804 (commit)
via df3a2e21648d6b649ebda7e6032afbd63c939f2b (commit)
via 95162276b169b84d61eaa73416cf0838a0a8a8bd (commit)
via 2c480b363ae80dcc55ec0228f8af0311e023fbf4 (commit)
via fbb2df435140eafc3fe1ca7419398e3b5ef273c8 (commit)
via b13fa9bf966bb6f132e82b94bf1ecf4b2e095dbe (commit)
via 49f979b13f1bc6ece0f343d41421aba43f8d9e21 (commit)
via 41688279cba3a5afc4fdc65fd245b9bb6ada695e (commit)
via 4af10fe67a31368163bb5d468ee2c5a85ce0fff3 (commit)
via 69315177732a1d260a3315fe8c4c4c44653ae0c8 (commit)
via b3fe71af20997921360b6ac7d100b5baf9708d53 (commit)
via f474a7ed02acaffe5d0fcc67e06dde17fc8e4d0e (commit)
via b159cb615feb7f27f8d2afc71f547742bb19cde0 (commit)
via 4eceae7e3e6dab935e2cf49b75148139192fc6e7 (commit)
via 5dffd5403664dfcc9e8e42fd3581d5cb70823d7e (commit)
via ed550a49d2114c56e5bc033ecd0e83073d2d4067 (commit)
via 05f6042a40bb772f7ce8d6819c5b2937d8c9808d (commit)
via b3b1e1881240b8e2a32dd5c1dc3b7387f0819576 (commit)
via cb42802f2fe1760f894a435b07286bca3a220364 (commit)
via ba88fe46d47846042518a5a1017d782ba548202c (commit)
via e5bde3d466869df9fce559e49842ac245153d045 (commit)
via 70b41b3c335a80b4ac243f468f22331d261299db (commit)
via 90ad502bf8faa233e25cf297c1eeefcb0367aea3 (commit)
via dc13bf30b54855f1db07b415fa4395f7e0bfc4db (commit)
via 92c79abfdedb4b9f16191e253cf2dcec9e2f0cfb (commit)
via e763151e1f7cfe9ea56de06f41769f8a3d74d219 (commit)
via 0474326d79b7675dabe63f691733e8c6b24b2fb0 (commit)
from 3d493838f0284948a09693ad65656cb7afbb21cc (commit)
Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.
- Log -----------------------------------------------------------------
commit e2b8a3d5a10868f9c0dec8d7b9f5f89fdd100fc8
Author: Ross Burton <ross.burton at intel.com>
Date: Mon Aug 13 18:20:54 2018 +0100
classes: sanity-check LIC_FILES_CHKSUM
We assume that LIC_FILES_CHKSUM is a file: URI but don't actually verify this,
which can lead to problems if you have a URI that resolves to a path of / as
Bitbake will then dutifully checksum / recursively.
[ YOCTO #12883 ]
Signed-off-by: Ross Burton <ross.burton at intel.com>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit 9e291d9923efc988abe8689c64bafbb29da06339
Author: Ross Burton <ross.burton at intel.com>
Date: Tue Aug 14 00:59:39 2018 +0100
bzip2: use Yocto Project mirror for SRC_URI
The bzip.org domain expired and is now a holding site for adverts, so we can't
trust a tarball that appears on that site (luckily we have source checksums to
detect this).
For now, point SRC_URI at the tarball in the Yocto Project source mirror, but
set HOMEPAGE and UPSTREAM_CHECK_URI to the sourceware.org/bzip2/ page which
apparently will be resurrected as the new canonical home page.
Signed-off-by: Ross Burton <ross.burton at intel.com>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit d86da5ae386a8129a966a53901de160823f4d250
Author: Richard Purdie <richard.purdie at linuxfoundation.org>
Date: Sun Aug 12 22:29:49 2018 +0000
package: Fix file copying to preserve sparse files
We want to preserve sparse files when building the system, add the option
to tar to ensure we do this when copying files.
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit 3c05c8fff779bd190b31fa8aa16b7a1b24420a60
Author: Khem Raj <raj.khem at gmail.com>
Date: Sat Aug 11 09:54:00 2018 -0700
devtool: Use ConfigParser instead of SafeConfigParser
The SafeConfigParser class has been renamed to ConfigParser in Python
3.2+ see
http://bugs.python.org/issue10627
This alias will be removed in future versions.So we can use
ConfigParser directly instead.
Signed-off-by: Khem Raj <raj.khem at gmail.com>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit c392dabefc431dbfb31d6a1465c75ba9cc765804
Author: Mikko Rapeli <mikko.rapeli at bmw.de>
Date: Mon Aug 13 12:42:17 2018 +0300
perf: fail if src path does not exist
A missing src directory from a broken kernel recipe resulted
only in a warning:
WARNING: copyfile: stat of /home/builder/src/tmp-glibc/work-shared/target/kernel-source/tools/arch failed ([Errno 2] No such file or directory: '/home/builder/src/tmp-glibc/work-shared/target/kernel-source/tools/arch')
and the build failed horribly.
With this change it's an error which can not be missed:
ERROR: perf-1.0-r9 do_configure: Path does not exist: /home/builder/src/tmp-glibc/work-shared/target/kernel-source/tools/arch. Maybe PERF_SRC does not match the kernel version.
ERROR: perf-1.0-r9 do_configure: Function failed: copy_perf_source_from_kernel
ERROR: Logfile of failure stored in: /home/builder/src/tmp-glibc/work/target-linux/perf/1.0-r9/temp/log.do_configure.21083
NOTE: recipe perf-1.0-r9: task do_configure: Failed
ERROR: Task (/home/builder/src/poky/meta/recipes-kernel/perf/perf.bb:do_configure) failed with exit code '1'
To get get perf compiling from a custom kernel, a perf.bbappend can be
created which defines PERF_SRC as list of files and directories needed
from kernel source tree to compile perf. This varies between kernel
versions.
Signed-off-by: Mikko Rapeli <mikko.rapeli at bmw.de>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit df3a2e21648d6b649ebda7e6032afbd63c939f2b
Author: Chen Qi <Qi.Chen at windriver.com>
Date: Mon Aug 13 16:54:37 2018 +0800
parselogs.py: output correct log location
The log entry in results is altered to remove 'target_logs'. This
causes wrong log location in output.
e.g.
AssertionError: 1 != 0 : Log: /path/to/image/1.0-r0/postinstall.log
But when user wants to check the log, the user will find the log is
not present. The actual log file is /path/to/image/1.0-r0/target_logs/postinstall.log.
So fix to use the correct log location.
Signed-off-by: Chen Qi <Qi.Chen at windriver.com>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit 95162276b169b84d61eaa73416cf0838a0a8a8bd
Author: Chen Qi <Qi.Chen at windriver.com>
Date: Mon Aug 13 17:43:23 2018 +0800
man-db: rdepend on base-passwd to ensure installation order
Make man-db rdepend on base-passwd to ensure that base-passwd is
installed before man-db at rootfs time. This is to avoid the following
warning at rootfs time.
warning: user man does not exist - using root
Signed-off-by: Chen Qi <Qi.Chen at windriver.com>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit 2c480b363ae80dcc55ec0228f8af0311e023fbf4
Author: Chen Qi <Qi.Chen at windriver.com>
Date: Mon Aug 13 17:43:22 2018 +0800
man-db: add volatile configuration file for sysvinit
Add volatile configuraiton file for man-db so that in sysvinit systems
we don't get failure when running `mandb'. The error message is like
below.
mandb: can't create index cache /var/cache/man/579: No such file or
directory
[YOCTO #12872]
Signed-off-by: Chen Qi <Qi.Chen at windriver.com>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit fbb2df435140eafc3fe1ca7419398e3b5ef273c8
Author: Zhixiong Chi <zhixiong.chi at windriver.com>
Date: Mon Aug 13 00:04:25 2018 -0700
mobile-broadband-provider-info: fix .pc file conflict
Issue: LIN10-4485
Error: Transaction check error:
file /usr/share/pkgconfig/mobile-broadband-provider-info.pc from install of \
lib32-mobile-broadband-provider-info-dev.core2_32 conflicts with file from package \
mobile-broadband-provider-info-dev.core2_64
Signed-off-by: Zhixiong Chi <zhixiong.chi at windriver.com>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit b13fa9bf966bb6f132e82b94bf1ecf4b2e095dbe
Author: Zhixiong Chi <zhixiong.chi at windriver.com>
Date: Mon Aug 13 00:04:24 2018 -0700
nspr: fix script conflict for multilib
Stop the nspr-config scripts conflicting in a multilib case.
Signed-off-by: Zhixiong Chi <zhixiong.chi at windriver.com>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit 49f979b13f1bc6ece0f343d41421aba43f8d9e21
Author: Zhixiong Chi <zhixiong.chi at windriver.com>
Date: Mon Aug 13 00:04:23 2018 -0700
libevent: fix the multilib header conflict
Error: Transaction check error:
file /usr/include/event2/event-config.h conflicts between attempted installs of libevent-dev-2.1.8-r0.skylake_64 and lib32-libevent-dev-2.1.8-r0.x86
The conflict is the size macro definition between 32bit and 64bit
such as:
< #define EVENT__SIZEOF_LONG 8
> #define EVENT__SIZEOF_LONG 4
< #define EVENT__SIZEOF_PTHREAD_T 8
> #define EVENT__SIZEOF_PTHREAD_T 4
Signed-off-by: Zhixiong Chi <zhixiong.chi at windriver.com>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit 41688279cba3a5afc4fdc65fd245b9bb6ada695e
Author: Chen Qi <Qi.Chen at windriver.com>
Date: Wed Aug 1 13:25:35 2018 +0800
base-files: fix handling of resize
The current handling of resize is incorrect. Using `resize > /dev/null
2>&1 && resize > /dev/null' will cause the second resize command to not
execute because 'resize > /dev/null 2>&1' will fail for resize utility
from busybox.
What we really should do is just to check whether ${bindir}/resize
is executable and execute it if so. Using '-x' is sufficient.
Signed-off-by: Chen Qi <Qi.Chen at windriver.com>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit 4af10fe67a31368163bb5d468ee2c5a85ce0fff3
Author: Chen Qi <Qi.Chen at windriver.com>
Date: Mon Jul 30 17:41:57 2018 +0800
busybox: move init related configs to init.cfg
Move init related configs to init.cfg.
These config items do not make much sense unless busybox is selected
as the init manager. They should belong to init.cfg.
Signed-off-by: Chen Qi <Qi.Chen at windriver.com>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit 69315177732a1d260a3315fe8c4c4c44653ae0c8
Author: Andrej Valek <andrej.valek at siemens.com>
Date: Thu Aug 9 10:06:37 2018 +0200
libxml2: Fix CVE-2018-14404
Fix nullptr deref with XPath logic ops
If the XPath stack is corrupted, for example by a misbehaving extension
function, the "and" and "or" XPath operators could dereference NULL
pointers. Check that the XPath stack isn't empty and optimize the
logic operators slightly.
CVE: CVE-2018-14404
Signed-off-by: Andrej Valek <andrej.valek at siemens.com>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit b3fe71af20997921360b6ac7d100b5baf9708d53
Author: Changqing Li <changqing.li at windriver.com>
Date: Fri Aug 10 17:35:55 2018 +0800
curl: support multilib installation of curl-config
Signed-off-by: Changqing Li <changqing.li at windriver.com>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit f474a7ed02acaffe5d0fcc67e06dde17fc8e4d0e
Author: Zhixiong Chi <zhixiong.chi at windriver.com>
Date: Fri Aug 10 00:31:34 2018 -0700
multilib-script: Fix ALTERNATIVE_${PN} overwrite issue
If multilib scripts handle more than one file per package, the variable
ALTERNATIVE_${PN} will be overwritten and there will be only one symbol
link file. Append to the variable to avoid this.
Signed-off-by: Zhixiong Chi <zhixiong.chi at windriver.com>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit b159cb615feb7f27f8d2afc71f547742bb19cde0
Author: Christopher Clark <christopher.w.clark at gmail.com>
Date: Thu Aug 9 18:32:01 2018 -0700
libjpeg-turbo: fix timezone of reproducible build timestamp
Avoids producing different build results in different timezones.
Uses UTC with SOURCE_DATE_EPOCH.
Signed-off-by: Christopher Clark <christopher.clark6 at baesystems.com>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit 4eceae7e3e6dab935e2cf49b75148139192fc6e7
Author: Jaewon Lee <jaewon.lee at xilinx.com>
Date: Mon Jul 30 14:21:53 2018 -0700
kernel-yocto.bbclass: Adds oe-local-files path (devtool) to include directives
The devtool-source class moves all local files specified in SRC_URI to
an oe-local-files directory. When using devtool and a recipe space kernel-meta,
devtool modify throws an error because the paths the kernel-yocto class
is looking for feature directories in, don't include the oe-local-files
directory which devtool is using.
This patch checks for feature directories in oe-local-files,
and if present, adds that path to include directives.
[YOCTO #12855]
Signed-off-by: Jaewon Lee <jaewon.lee at xilinx.com>
Signed-off-by: Alejandro Enedino Hernandez Samaniego <alejandr at xilinx.com>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit 5dffd5403664dfcc9e8e42fd3581d5cb70823d7e
Author: Jaewon Lee <jaewon.lee at xilinx.com>
Date: Thu Aug 9 16:41:29 2018 -0700
devtool-source.bbclass: Support kernel-fragments/patch not in SRC_URI
When using a recipe space kernel-meta, scc files are added through
SRC_URI, but they may include corresponding kernel fragments or patches
that are not necessarily in SRC_URI.
For bitbake, this is not a problem because the kernel-yocto class adds
the path where the .scc file was found to includes which consequentially
makes the .cfg, .patch file available to the kernel build.
However, when using devtool, only files specified in SRC_URI are copied
to oe-local-files in devtool's workspace. So if the cfg/patch file is not in
SRC_URI, it won't be copied, causing a kernel build failure when trying
to find it.
This fix parses local .scc files in SRC_URI, copies the corresponding
.cfg/.patch file to devtool's workdir, and also adds it to local_files
so it is available when doing a devtool build for the kernel.
[YOCTO #12858]
v2: also supporting patch not in SRC_URI
v3: fix spacing issues
Signed-off-by: Jaewon Lee <jaewon.lee at xilinx.com>
Signed-off-by: Alejandro Enedino Hernandez Samaniego <alejandr at xilinx.com>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit ed550a49d2114c56e5bc033ecd0e83073d2d4067
Author: Richard Purdie <richard.purdie at linuxfoundation.org>
Date: Fri Aug 10 10:10:15 2018 +0000
libtool-cross: Handle ccache sstate 'infection' issues
On a system without ccache, f you:
INHERIT += "ccache"
bitbake libtool-cross
<remove INHERIT>
bitbake apmd
then it fails due to being unable to find ccache. The references to ccache are
coded into libtool-cross but the sstate checksum doesn't reflect this due to the
way the class is coded (output should be the same regardless).
The simplest solution is to remove references to ccache from the libtool script.
The output then works regardless of whether ccache is present or not. The
libtool-cross script is only used in a handful of cases (most of the time its
dynamically generated by autoconf) so any performance issue is minor.
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit 05f6042a40bb772f7ce8d6819c5b2937d8c9808d
Author: Richard Purdie <richard.purdie at linuxfoundation.org>
Date: Thu Aug 9 16:58:07 2018 +0000
sstate: Remove DEPLOY_DIR_IMAGE from SSTATE_DUPWHITELIST
Replace the generic whitelist entry with entries for the three specific
'problem' cases in OE-Core. This means the general DEPLOY_DIR_IMAGE entry
doesn't mask problems for others as was recently encoutered by users
reported on irc. In the whitelisted cases they occur only in multilib builds
and the files are identical.
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit b3b1e1881240b8e2a32dd5c1dc3b7387f0819576
Author: Richard Purdie <richard.purdie at linuxfoundation.org>
Date: Thu Aug 9 12:17:39 2018 +0000
oeqa/esdk/devtool: Drop OETestDepends usage
OETestDepends doesn't work with parallelism and in this case we don't
really need this dependency, it would just short out some tests quickly
in the rare case the esdk environment was broken.
Currently this is masking tests which is a much worse problem and we
can't make OETestDepends work reliably with parallelism so drop the
dependencies.
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit cb42802f2fe1760f894a435b07286bca3a220364
Author: Urs Fässler <urs.fassler at bbv.ch>
Date: Wed Aug 8 09:33:52 2018 +0200
cmake: fix compiling some C++ projects with Yocto SDK and GCC
Setting CMAKE_SYSROOT in the toolchain file allows CMake to correctly
remove user-provided system include directories pointing to
<sysroot>/usr/include. The mentioned projects failed with "stdlib.h:
No such file or directory #include_next <stdlib.h>".
Signed-off-by: Urs Fässler <urs.fassler at bbv.ch>
Signed-off-by: Raphael Freudiger <raphael.freudiger at siemens.com>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit ba88fe46d47846042518a5a1017d782ba548202c
Author: Andre McCurdy <armccurdy at gmail.com>
Date: Wed Aug 8 11:15:12 2018 -0700
openssl_1.0: drop unnecessary call to perlpath.pl from do_configure()
The perlpath.pl script is used to patch the #! lines in all perl
scripts in the utils directory. However, as these scripts are run via
e.g. "perl foo.pl", they don't actually rely on the #! path to be
correct (which can be confirmed by the observation that the path is
currently being set to ${STAGING_BINDIR_NATIVE}/perl, which doesn't
exist).
Signed-off-by: Andre McCurdy <armccurdy at gmail.com>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit e5bde3d466869df9fce559e49842ac245153d045
Author: Maciej Pijanowski <maciej.pijanowski at 3mdeb.com>
Date: Wed Aug 8 22:27:54 2018 +0200
meta: replace deprecated "SERIAL_CONSOLE"
SERIAL_CONSOLE was already deprecated in 2013, yet still some
machine configuration files were using it. This patch replaces
it with SERIAL_CONSOLES, which is the successor.
The default value in systemd-serialgetty.bb can also be safely
transitioned from SERIAL_CONSOLE to SERIAL_CONSOLES, as this
recipe already uses SERIAL_CONSOLES within do_install().
The documentation seems to be already up do date.
beaglebone-yocto.conf in the bsp-guide already uses
SERIAL_CONSOLES. The ref-manual redirects from SERIAL_CONSOLE
to SERIAL_CONSOLES.
[YOCTO #12653]
Signed-off-by: Maciej Pijanowski <maciej.pijanowski at 3mdeb.com>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit 70b41b3c335a80b4ac243f468f22331d261299db
Author: Daniel Díaz <daniel.diaz at linaro.org>
Date: Thu Aug 9 12:14:54 2018 -0500
multilib_header: recognize BPF as a target
When building with `clang -target bpf` using the
multilib_header, a recursion was unavoidable because
bits/wordsize.h would #include itself, still lacking
a definition for __MHWORDSIZE or __WORDSIZE.
Signed-off-by: Daniel Díaz <daniel.diaz at linaro.org>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit 90ad502bf8faa233e25cf297c1eeefcb0367aea3
Author: Daniel Díaz <daniel.diaz at linaro.org>
Date: Thu Aug 9 12:14:53 2018 -0500
glibc: Make bits/wordsize.h multilibbed again
As reported by ChenQi, leaving bits/wordsize.h out of being
multilibbed introduced a problem in building the SDK for
arm64:
Error: Transaction check error:
file /usr/include/bits/wordsize.h conflicts between attempted installs of lib32-libc6-dev-2.27-r0.armv7vet2hf_vfp and libc6-dev-2.27-r0.aarch64
This effectively reverts commit a74c77d6.
Signed-off-by: Daniel Díaz <daniel.diaz at linaro.org>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit dc13bf30b54855f1db07b415fa4395f7e0bfc4db
Author: Martin Jansa <martin.jansa at gmail.com>
Date: Thu Aug 9 13:39:45 2018 +0000
man-pages: respect api-documentation
* let manpages.bbclass to enable manpages PACKAGECONFIG based on
api-documentation DISTRO_FEATURES
PACKAGECONFIG_append_class-target = " ${@bb.utils.contains('DISTRO_FEATURES', 'api-documentation', 'manpages','', d)}"
* it's true that building man-pages without manpages being enabled
doesn't make much sense, but it's included through couple
packagegroups:
meta/recipes-core/packagegroups/packagegroup-self-hosted.bb: man-pages \
meta/recipes-extended/packagegroups/packagegroup-core-lsb.bb: man-pages \
or in world even for people who might not be interested
in man-pages
Signed-off-by: Martin Jansa <Martin.Jansa at gmail.com>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit 92c79abfdedb4b9f16191e253cf2dcec9e2f0cfb
Author: Martin Jansa <martin.jansa at gmail.com>
Date: Thu Aug 9 12:14:41 2018 +0000
perf: inherit manpages instead of adding man to RDEPENDS_${PN}-doc
Signed-off-by: Martin Jansa <Martin.Jansa at gmail.com>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit e763151e1f7cfe9ea56de06f41769f8a3d74d219
Author: Khem Raj <raj.khem at gmail.com>
Date: Wed Aug 8 15:49:13 2018 -0700
lib/oe: Fix collections ABCs DeprecationWarning in Python 3.7+
- Prefer collections.abc (new in Python 3.3) over collections for abstract base classes
- In Python 3.8, the abstract base classes in collections.abc will no longer be exposed in
the regular collections module. This will help create a clearer distinction between
the concrete classes and the abstract base classes."
- https://docs.python.org/3.7/whatsnew/3.7.html#deprecated
- see https://github.com/python/cpython/commit/c66f9f8d3909f588c251957d499599a1680e2320
Signed-off-by: Khem Raj <raj.khem at gmail.com>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit 0474326d79b7675dabe63f691733e8c6b24b2fb0
Author: Ross Burton <ross.burton at intel.com>
Date: Wed Aug 8 21:37:52 2018 +0100
oeqa/sdk/buildgalculator: check for nativesdk-gettext-dev
We don't need target gettext to build, but nativesdk-gettext-dev (for nls.m4).
Signed-off-by: Ross Burton <ross.burton at intel.com>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
-----------------------------------------------------------------------
Summary of changes:
meta/classes/base.bbclass | 4 +-
meta/classes/devtool-source.bbclass | 12 +++++
meta/classes/kernel-yocto.bbclass | 2 +
meta/classes/license.bbclass | 4 +-
meta/classes/multilib_script.bbclass | 2 +-
meta/classes/package.bbclass | 2 +-
meta/classes/sstate.bbclass | 6 ++-
meta/conf/machine/include/x86-base.inc | 2 +-
meta/lib/oe/maketype.py | 9 +++-
meta/lib/oeqa/runtime/cases/parselogs.py | 4 +-
meta/lib/oeqa/sdk/cases/buildgalculator.py | 6 +--
meta/lib/oeqa/sdkext/cases/devtool.py | 8 ----
.../multilibfix.patch | 17 +++++++
.../mobile-broadband-provider-info_git.bb | 4 +-
.../openssl/openssl-1.0.2o/find.pl | 54 ----------------------
.../openssl-util-perlpath.pl-cwd.patch | 34 --------------
.../recipes-connectivity/openssl/openssl_1.0.2o.bb | 5 --
meta/recipes-core/base-files/base-files/profile | 6 +--
meta/recipes-core/base-files/base-files_3.0.14.bb | 1 +
meta/recipes-core/busybox/busybox/defconfig | 12 ++---
meta/recipes-core/busybox/busybox/init.cfg | 7 ++-
meta/recipes-core/glibc/glibc-package.inc | 2 +-
.../libxml/libxml2/fix-CVE-2018-14404.patch | 45 ++++++++++++++++++
meta/recipes-core/libxml/libxml2_2.9.8.bb | 1 +
meta/recipes-core/systemd/systemd-serialgetty.bb | 2 +-
.../cmake/cmake/OEToolchainConfig.cmake | 1 +
.../libtool/libtool-cross_2.4.6.bb | 8 ++++
meta/recipes-extended/bzip2/bzip2_1.0.6.bb | 6 +--
meta/recipes-extended/man-db/files/99_mandb | 1 +
meta/recipes-extended/man-db/man-db_2.8.3.bb | 13 +++++-
meta/recipes-extended/man-pages/man-pages_4.16.bb | 3 +-
meta/recipes-graphics/jpeg/libjpeg-turbo_1.5.3.bb | 2 +-
meta/recipes-kernel/perf/perf.bb | 5 +-
meta/recipes-support/curl/curl_7.61.0.bb | 3 ++
meta/recipes-support/libevent/libevent_2.1.8.bb | 6 ++-
meta/recipes-support/nspr/nspr_4.19.bb | 4 +-
scripts/devtool | 2 +-
scripts/multilib_header_wrapper.h | 4 +-
38 files changed, 166 insertions(+), 143 deletions(-)
create mode 100644 meta/recipes-connectivity/mobile-broadband-provider-info/mobile-broadband-provider-info/multilibfix.patch
delete mode 100644 meta/recipes-connectivity/openssl/openssl-1.0.2o/find.pl
delete mode 100644 meta/recipes-connectivity/openssl/openssl-1.0.2o/openssl-util-perlpath.pl-cwd.patch
create mode 100644 meta/recipes-core/libxml/libxml2/fix-CVE-2018-14404.patch
create mode 100644 meta/recipes-extended/man-db/files/99_mandb
hooks/post-receive
--
More information about the yocto-security
mailing list