[yocto-security] [OE-core CVE] branch sumo-next updated. 2018-04-373-g526ceab
cve-notice at lists.openembedded.org
cve-notice at lists.openembedded.org
Thu Dec 6 02:51:32 PST 2018
This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "".
The branch, sumo-next has been updated
via 526ceab9d0e43f73635bb92e8dd7763ef75ad33b (commit)
via 045511425577ccbe89d8eb91e2a87e385390cabf (commit)
via bc444181f9658423856621b2f2c60364642ae5b1 (commit)
via 02449e89d62a7714d30ab6e2e58c476dc9441f7a (commit)
via ab271b49d9b55ea271d519c3a4da0b639a07f0bb (commit)
via bb9a85e157e669d7a91c3bbefc8d5138e7b8b6ae (commit)
via bcb2948773d76befef2be787be6d25cf544e49a9 (commit)
via 4c53aac5315f9d0a0ed95cbeb48b7704e274e3a9 (commit)
via 9c4c3c876dd5d224133571fcad1095af1098ae1d (commit)
via 7eb1f0be82d7ee12f893cdd40384da306fa597a7 (commit)
via 351a7b75959593922909d7e1929a6429a2bf94a7 (commit)
via 682d7b2810b235e86a28a8afe034e3853dbe8c45 (commit)
via f9ab10bb08446052fd6af2a21f38d8454e466d51 (commit)
via d936faabfb29ea377d74e77332a2a91603747ac7 (commit)
via d39252324a13580cc96f0694b88bc10515e030a0 (commit)
via 48979ffbe25351f92179021a973207a71bbe7a4e (commit)
via 6f2bb2c12289422396deb793ae4b4e99cfa88c7b (commit)
via edd2ecbc86d8b02a0467491451306f67e81d9ead (commit)
via d5ce38168238181423c9dcd1d258253e3515d0a5 (commit)
via b729a46820cce38b3d500271df19bdaf31973140 (commit)
via baa8313e492cff8c31633a558792500b10493e9e (commit)
via 600e71ede1977c45fed1958dd5356911e4fcf272 (commit)
via b8a9eec2c9e56181350269acd6b42a14cc4abb3e (commit)
via 0ea441ab6a6fe752cc8820fb371e67eee92353e4 (commit)
via 60b58e976dcc2a45a036e18cfcc87933a8859c9f (commit)
via e7c0d29e063d1a47004acdc07a63996be98c74ef (commit)
via 51989db2d9eebd9f190994109c2932dac3f3034b (commit)
via c5d68a24b0c6df0a16f50075a690b3aab0e273ee (commit)
via 65403bb556f7e3132722288a62ef36631af0b557 (commit)
via d3b3c55ddc312039380ce8e23e68dd8bb2439388 (commit)
via d3c052e6ccd81d544b23a3bee80ba00cafaedbbd (commit)
via 1c61f3017a6a2d95747883c722c376763ec77c9d (commit)
via 6637f400fb01501353f376d73658b359cedfa3c2 (commit)
via 33a577864123833d7d8182fe90df7069fc583bc6 (commit)
via 0f70da971e6e01ed9b669137b3ba39b1898a7dfe (commit)
via 83214b835cd82d5dddb47c418c4e7a20ac433f61 (commit)
via caa0b85cecf37945d67d5844c772a11ed790f8a5 (commit)
via ddaf41f210f80556eca1d0acaee1e3f9cbf80122 (commit)
via 1c35c68da07ccca5d80820e2de51c0b6bf51b349 (commit)
via b2ccfeeffc5762648ee6b1f1d05c3cc6f347ed28 (commit)
via 1a42e6401369ffaf02f4711c01f757007f831cc8 (commit)
via d637eea4af8b538fb45056f0022975d7c41cdf5f (commit)
via 0808fe2c1b465114c16265bea3442e878586a8e6 (commit)
via f0eebea19ff8d9dfd89d104be04ca3510a546424 (commit)
via 8105b6384042e04d8bdfaa881370616c6e46acfa (commit)
via 702917592ffca04fb1447fca60f6377ef96a57a0 (commit)
via e1c9d4d57aa3ebe9b733241e3f8139551a77d7cb (commit)
via 6aebc3a4452d1422cf2ba59dd9b381f89e2fefcc (commit)
via f7883a0fae697eefffccd56a45e013f24e20ba5c (commit)
via 92609b0ffe36db5b8cf0669b71adf8b030930c31 (commit)
via b3e92c0c1864cac8c8f6c693ede713a2fc7f2ef5 (commit)
via 5667a43ff0c8200acb8b4bde64ae0a73a983e28b (commit)
via ce1815374254d1f23556b7fe2e46aa0e676d8d1a (commit)
via d9ad083ee5a1bc8723b01b31a0010128e26375fd (commit)
via cdc226b8d4114ef4ff51d6f13ceb09f8d264bf76 (commit)
via 17223b0045896c9f342e9079d2345b730a3048cc (commit)
via 40e0b6244c0c6f276de501765daff660d7a44363 (commit)
via 015f65b5c391c75fe96f927a007a8be04db70a63 (commit)
via 4c51e82e43cbcc74d9bcabe24b778aae3cf123ca (commit)
via c7ec464643682215edab491fada150544b717b4d (commit)
via 4de7f29b8a0a57e14029a630fa7cfd0ef9583a9e (commit)
via 4cbfd526eebb2ff0a15042094e972e132deb985e (commit)
via c566c8d6525a263a48035d4de5249780ab08e521 (commit)
via 64d0cfb0f2291434f3ceacff99015f6a35942868 (commit)
via ceae3eb0d8a0ee69182cf4f4cfa5a6a3814df1f8 (commit)
via c4647674da480c5925178cd821ce2d485c7467b7 (commit)
via ab2dd15f72a94cce528276e6e3e38c56677e7ba4 (commit)
via 17434b9c148d88e33dde7aa901c0a0423827e4e0 (commit)
via ff495ab238dc1fe0a669b4405c3b1a466ea2dbdd (commit)
via 1abca8bf4aa854bdf204d0426048c4895090428b (commit)
via 76a51f21af63b99b71dce4f068a11c9073d0f1b2 (commit)
via 02f3fa232c82674c72c03ffce8e6f3ad34e5ead6 (commit)
via d986ced945462164f7410a4df083b792e0f90cdf (commit)
via 924ce56ab8a957087906c97ffbfcf9a4a96e0d4f (commit)
via 73a4746a5d37ab4869b0eb17979dc9d8970f2ae3 (commit)
via 0c13f6b8ba3460029ee239eac080e57d42650841 (commit)
via 3b7e38b6519a0ff6edcf40941976a8b65eab8a17 (commit)
via ad44a133cdc3aa9ad9ecf57a7cf8754951f6fd96 (commit)
via 26d5ceb33425fa85bc84b825609e1b45b13d3ddd (commit)
via 0362788144c3eff36099d8812c85cc70e8736859 (commit)
via 7ac4ecb04f02a7df943d1f9f0542e28e8f414cc5 (commit)
via 9702041a732ca062a9899543d05e585c930407f3 (commit)
via 24227750484cca1c1fdf431751247960c19b926f (commit)
via a8f643726e991608d5595cd551a4c3e43a254d6a (commit)
via 5df0d75fe63a0e1ada396f5ecfa953ac63f65354 (commit)
via 667d5e77e1ce0f0e531ed87f6fc30e1d65b16759 (commit)
via f01153e1782425756a40929ffb3fa72993b7a3b1 (commit)
via ec5cc387ca6828c5dbb3d36c9a92e2d7654c616a (commit)
via 74308b2ca81bb7a3d294ce344ba6e8fdf7ebca5d (commit)
via 9f82bb4bf3d0ded246eb252b3f9b4b618b22fc95 (commit)
via 7157e7804b21a84ecbd809b6e171106d7ddc86a6 (commit)
via 30b055d2296f060a4ca054d042f353a2153fdd4e (commit)
via 6e03d1d56587d93b9a9ec936ceb69350234c627a (commit)
via a2ee5c8a1ff449250e6f37fccf01b85a7361b24c (commit)
via bc030c9f5af4af5a8bad48bc8beca9324a65d25b (commit)
via 05c2a590980819e31acee29e1e7282d2ed3586b7 (commit)
via 6681ba9759b2d09945e415daf251162ac9600df7 (commit)
via 221a02355c8c2128f086f71bcbe95085a6306dcc (commit)
via da7342a774ae9bcd876ceb7c260dfb49791949d5 (commit)
via 19138a21aabe60b67015e3383f4030db0d4d37a4 (commit)
via a6b6af83e344501057b0eb28dce1077992e5a7f3 (commit)
via d145f605c274386baf0dde023f15cddf37523f3b (commit)
via 1461bcc72e6649920ecf4226e006e5667c48a21c (commit)
via 06d7f9039b005c2112e28336ac1c30e5120ec815 (commit)
via 759290ed5fedc1ce10639b3584d4532d688ea714 (commit)
via 196659ca05623996e2b36f7b1e52195a81fd3bdd (commit)
via 9b321cf141c3fa18d5b85f17ffe1710f4555ca49 (commit)
via af920831ed1ef607db195372f135cc56e9f53b41 (commit)
via a53026f03a1d07cef1d1590c689e036f3ee21026 (commit)
via 5f985f02a932ebce238a6b1c644d2e3179226aab (commit)
via a702a5efdaece4197ceefec2a3b4c1e872e82f11 (commit)
via 80b6a08f55e322bfc41f69476509dc5a62ada83f (commit)
via 502de6f5db232a104eb269782a690f52fd665ef4 (commit)
via 361c40d4bea101875747eac9c8cc46e92ced173f (commit)
via 0469c075d904026ec37214fb39397bb1cb07ab43 (commit)
via 4cc1862695c6899b61e3900216376c1b2f338a19 (commit)
via c35a0355a3561cd17703ece3a66c3389ceb224bf (commit)
via 2f84939b0e17dfba1fc43bf053871ea930d9a04c (commit)
via 1c6ae927ca8acc1e5f362b1424b2c6a5da1e8be9 (commit)
via a8cb9b68e91db42a17bfb54591e3ea91565f9241 (commit)
via 0a1ff2a8df4a4033b23ce1513ec02711005d6883 (commit)
via 42660b3817396c24d1ecac02339f4d9ae6b146b5 (commit)
via e98edd9d030ca3dcd8c83bb85ec2fd498770d844 (commit)
via 768051963683a354a80e11c7d792791b160c2f2b (commit)
via a1c0135e96bca684db0e3a7c6209c0cb2054f306 (commit)
via e3254b4ec0f7c22cca1952df22df6568b8d8b81c (commit)
via ab1bfa1872d44ea7fff096df781521143a907545 (commit)
via 96f69ae45a47a8aeb17b494b128e034fb12a5e98 (commit)
via 4e67fa950cd3ca6e44d7f46743904d23a756e498 (commit)
via ffe1795dc6daf9999e1be858a4e97a4c2cf44526 (commit)
via 52d3c4c644807a8fe3badc5aa025c1d48ec67c16 (commit)
via 4b4c663fe048be7e7c39addb022a7ae471c743de (commit)
via b5fb3a7c5c873747eaa028d588a22a1ca1956544 (commit)
via 86be219d43a72f4786bda25e8c544925b42f3a2f (commit)
via 3abf7932e43115cc6f9a1c85a00e6578bb327b9a (commit)
via cf3b59c3466d45ce4451dc8d775350e4762fe6d1 (commit)
via 221e5fca3aa222e67fb6af248a99b2d0f0d1f6a0 (commit)
via 38f1648f1472f70a3e747f270cc3230b5993d94b (commit)
via 996247ba7dfffbeb444f793f7e105fcfb5ffa939 (commit)
via df1cd90140456dbed0c1bd29ead7c1c81f498b99 (commit)
via 54b26752149d945955569f163bf9dd1595970d35 (commit)
via a925096c62b2034c824bfdf68631e037809b6a30 (commit)
via 82b018956763bf85b90d512c8a6bc96d59fa67fd (commit)
via 100d7f19b7075b54dcc60f07ef8159e0e4f5be8c (commit)
via ca005cd857f8e79b135c43526d5b792478a07eb3 (commit)
via 0542779d2f1a8977a732800a8998fd88971c0c1d (commit)
via 109ffd1b3d10753bfd711a14ad59b194ca3ce831 (commit)
via 4aaf09b9d657b1c2df85bf509008beacd6a00342 (commit)
via a11c8ee86007f7f7a34b9dc29d01acc323b71873 (commit)
via 9f1d026168956e7bf45135577c123f7679a6ebba (commit)
via 4b6c84e0f950f839bfb8c40f197197f838d8b733 (commit)
via 82d873a1b73da25ae415afe0e6203693f78b88c9 (commit)
via a875522540372a4fa6658885692e564dfd729f54 (commit)
via f1c0da2bcb0587ac25176db11365d4a2a15b3d30 (commit)
via 229bb7cd70c79944d54696d50f4f34df85a5804a (commit)
via e05c9b1be8e852293dfc7026f0e3178c3bc5444d (commit)
via a523bc6a2ff7d5b5415a789de02fb055ccd2c077 (commit)
via 00da7bad24cf78c9dba091b9e480515f25886b48 (commit)
via 39b1dc89ce2870d1a2630b2319783a6203cbcb08 (commit)
via 3e000591928cfc35df192c7eb00db65687930566 (commit)
via bca64ae1b02717c04edfee6dcc9a89cfa91d0c73 (commit)
via 058bdd077da005d412fbbcd98d70fbd80fa80555 (commit)
via 97a52df900519b0c7fbb9e92a3168a542d68aba6 (commit)
via 61235238157b747d47728f6c3d9ad8241dde0102 (commit)
via 784059db22d763ca9f579a10a34fd90c68542e82 (commit)
via 84233553e963e26ca5f9f983662d4bd133176bb9 (commit)
via 4524d1f916b55db6d280ff51a41933b8ec9046b0 (commit)
via 1b0dcca0f083081295f32f09b408ab6c6c10f66f (commit)
via 74524ec2a0f5a4210dd6680afb4b685a69f96a71 (commit)
via 33a9519040b6e5cd9e83bb76589f75b00f1cd1c2 (commit)
via 0bda7fda8ce11b9b8c4c69aee1afbda30c3eadd5 (commit)
via 061c17ff22f4df573bccbf4b66f2fdf5501c3617 (commit)
via ebe53ed0e34b88c7d7fef22e1a5ad4959517fdab (commit)
via 8aa33c15b7c71cda8de3e3571879a5d39c915adb (commit)
via 4a136f8b2cfb6cdd5ba16a2ebbe9b418fead1c76 (commit)
via 3e0290b51da404761ac6a7d2657fd10693bf21b9 (commit)
via ec24fcc63e33b9c808b81968bad94e497051d350 (commit)
via 7a5fd1ca7d4b3aa0060134e7ea2af57bb9f2fe07 (commit)
via 1aaca6b00c083eba25eb8502bbdffef4e45fafd8 (commit)
via 3936fafb3bd85499361f32abef4919ad3c74d83f (commit)
via 201f4a889c0e4b3d13369e38662bf97ed8a9a8e1 (commit)
via cf9f9657eefd65817094f220af92f2791a8cb68e (commit)
via 67cde33115798b298f7840cad34d8ef91b3b7fa2 (commit)
via 5b4ffcbcdc28aec506a21f5abd76848c1de24011 (commit)
via 5da668175ee7c56067c1272e7a701d5c38e94524 (commit)
via 000da57cc858f5432153be849faba3862e4e9ed5 (commit)
via fcea508efedeb36ca31fe8ad0cbc6d194fcfd1f7 (commit)
via e90da34e5667acacd9ad0dd167846a6126fefad2 (commit)
via a1a5b0f814063c1b95024aee763c71b3f069e12b (commit)
via ab3b00990434adc4fafc15379e1c2d8d0ed5f145 (commit)
via 6c3438a62d10f155cd6a391bdb2f1939fc4774ec (commit)
via a5db618986746bf9082c4b3cbdac4e523328432e (commit)
via 10569dfa6da1f7f9f021852acf4f936b3aead16a (commit)
via 0b0409ab6ef27599feeb2fc8a82150305b91f26b (commit)
via 1bd48516cc3f65e860a2d8a8a3c6cee56c8332a1 (commit)
from b4738c5cf68a3a5d38dcd42f5b8361378f247db0 (commit)
Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.
- Log -----------------------------------------------------------------
commit 526ceab9d0e43f73635bb92e8dd7763ef75ad33b
Author: Richard Purdie <richard.purdie at linuxfoundation.org>
Date: Fri Nov 2 13:13:43 2018 +0000
oeqa/runtime/ptest: Inject results+logs into stored json results file
This allows the ptest results from ptest-runner, run in an image to be
transferred over to the resulting json results output.
Each test is given a pass/skip/fail so individual results can be monitored
and the raw log output from the ptest-runner is also dumped into the
results json file as this means after the fact debugging becomes much easier.
Currently the log output is not split up per test but that would make a good
future enhancement.
I attempted to implement this as python subTests however it failed as the
output was too confusing, subTests don't support any kind of log
output handling, subTest successes aren't logged and it was making things
far more complex than they needed to be.
We mark ptest-runner as "EXPECTEDFAILURE" since its unlikely every ptest
will pass currently and we don't want that to fail the whole image test run.
Its assumed there would be later analysis of the json output to determine
regressions. We do have to change the test runner code so that
'unexpectedsuccess' is not a failure.
Also, the test names are manipuated to remove spaces and brackets with
"_" used as a replacement and any duplicate occurrences truncated.
(From OE-Core rev: a13e088942e2a3c3521e98954a394e61a15234e8)
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit 045511425577ccbe89d8eb91e2a87e385390cabf
Author: Yeoh Ee Peng <ee.peng.yeoh at intel.com>
Date: Tue Oct 23 13:57:19 2018 +0800
oeqa/core/runner: write testresult to json files
As part of the solution to replace Testopia to store testresult,
OEQA need to output testresult into single json file, where json
testresult file will be stored in git repository by the future
test-case-management tools.
The json testresult file will store more than one set of results,
where each set of results was uniquely identified by the result_id.
The result_id would be like "runtime-qemux86-core-image-sato", where
it was a runtime test with target machine equal to qemux86 and running
on core-image-sato image. The json testresult file will only store
the latest test content for a given result_id. The json testresult
file contains the configuration (eg. COMMIT, BRANCH, MACHINE, IMAGE),
result (eg. PASSED, FAILED, ERROR), test log, and result_id.
Based on the destination json testresult file directory provided,
it could have multiple instances of bitbake trying to write json
testresult to a single testresult file, using locking a lockfile
alongside the results file directory to prevent races.
Also the library class inside this patch will be reused by the future
test-case-management tools to write json testresult for manual test
case executed.
(From OE-Core rev: 00e03b5004f1eb6d59295544b3a8620504278f51)
Signed-off-by: Yeoh Ee Peng <ee.peng.yeoh at intel.com>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit bc444181f9658423856621b2f2c60364642ae5b1
Author: Yeoh Ee Peng <ee.peng.yeoh at intel.com>
Date: Thu Oct 18 17:11:05 2018 +0800
oeqa/core/runner: refactor for OEQA to write json testresult
Refactor the original _getDetailsNotPassed method to return
testresult details (test status and log), which will be reused
by future OEQA code to write json testresult.
Take the opportunity to consolidate and simplify the logic used
to gather test status and log within the TestResult instance.
(From OE-Core rev: 79ee7d1c371a86edeb61c99679985118da657e5d)
Signed-off-by: Yeoh Ee Peng <ee.peng.yeoh at intel.com>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit 02449e89d62a7714d30ab6e2e58c476dc9441f7a
Author: Richard Purdie <richard.purdie at linuxfoundation.org>
Date: Fri Jul 13 13:13:10 2018 +0100
oeqa: Remove xmlrunner
This isn't present on modern distros by default and doesn't work with
testtools, needing multiple code paths in the code. Remove it in favour
of finding a better replacement for results collection/analysis.
(From OE-Core rev: 8001d933a8dc86004db014777f094d718086687d)
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit ab271b49d9b55ea271d519c3a4da0b639a07f0bb
Author: Richard Purdie <richard.purdie at linuxfoundation.org>
Date: Wed Jul 11 11:54:20 2018 +0000
oeqa/runner: Simplify code
There doesn't appear to be any reason we need this _results indirection
any more so remove it.
(From OE-Core rev: b618261811c48ff3b98eab1b340a8cd09ef183c6)
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit bb9a85e157e669d7a91c3bbefc8d5138e7b8b6ae
Author: Richard Purdie <richard.purdie at linuxfoundation.org>
Date: Thu Jul 12 11:10:38 2018 +0000
oeqa/core/threaded: Remove in favour of using concurrenttests
We have several options for parallel processing in oeqa, parallel
execution of modules, threading and mulitple processes for the runners.
After much experimentation is appears the most scalable and least
invasive approach is multiple processes using concurrenttestsuite
from testtools. This means we can drop the current threading code
which is only used by the sdk test execution.
oeqa/decorator/depends: Remove threading code
Revert "oeqa/sdk: Enable usage of OEQA thread mode"
This reverts commit adc434c0636b7dea2ef70c8d2c8e61cdb5c703b1.
Revert "oeqa/core/tests: Add tests of OEQA Threaded mode"
This reverts commit a4eef558c9933eb32413b61ff80a11b999951b40.
Revert "oeqa/core/decorator/oetimeout: Add support for OEQA threaded mode"
This reverts commit d3d4ba902dee8b19fa1054330cffdf73f9b81fe7.
(From OE-Core rev: a98ab5e560e73b6988512fbae5cefe9e42ceed53)
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit bcb2948773d76befef2be787be6d25cf544e49a9
Author: Richard Purdie <richard.purdie at linuxfoundation.org>
Date: Wed Jul 11 11:46:01 2018 +0000
oeqa/runner: Ensure we don't print misleading results output
The current code assumes if something isn't a failure of some
kind, it was a pass. When test case IDs weren't matching, this lead
to very confusing output where things would fail, then be listed as
passing.
This adds code to track successes, ensuring we don't end up in this
position again with unmatched entries being listed as UNKNOWN.
(From OE-Core rev: 4374c296d8963e4f6a1aa7bef7983ad0a1c2fcff)
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit 4c53aac5315f9d0a0ed95cbeb48b7704e274e3a9
Author: Richard Purdie <richard.purdie at linuxfoundation.org>
Date: Wed Jul 11 11:03:31 2018 +0000
oeqa/core/runner: Improve test case comparision
We can directly compare the test case IDs rather than representations,
then if we're using subunit to split the tests, the comparisions still
work as intended.
(From OE-Core rev: 72e5f46f75454ba4c445c65c1cbc616a9e72fc6e)
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit 9c4c3c876dd5d224133571fcad1095af1098ae1d
Author: Richard Purdie <richard.purdie at linuxfoundation.org>
Date: Thu Nov 29 12:07:53 2018 +0000
oeqa/selftest/context: Improve log file handling
The existing logfile is simply placed in the current directory. Since the test
changes cwd to BUILDDIR, the symlink to the log can be placed in an invalid
directory. We also see trackbacks if the symlink is invalid.
Improve things by:
* Placing logs in LOG_DIR (or BUILDDIR if unset).
* Using a full path to the log meaning the log and link are placed in the same directory.
* Using lexists instead of exists so invalid symlinks are handled correctly.
(From OE-Core rev: 750ece11bed0e62a11e0003d1d16a81f7c219761)
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit 7eb1f0be82d7ee12f893cdd40384da306fa597a7
Author: Richard Purdie <richard.purdie at linuxfoundation.org>
Date: Wed Nov 14 11:34:02 2018 +0000
oeqa/utils/qemurunner.py: Fix python regex warnings
Fix the warnings:
meta/lib/oeqa/utils/qemurunner.py:250: DeprecationWarning: invalid escape sequence \.
ips = re.findall("((?:[0-9]{1,3}\.){3}[0-9]{1,3})", cmdline.split("ip=")[1])
meta/lib/oeqa/utils/qemurunner.py:343: DeprecationWarning: invalid escape sequence \-
if re.search("root@[a-zA-Z0-9\-]+:~#", output):
poky/meta/lib/oeqa/utils/qemurunner.py:350: DeprecationWarning: invalid escape sequence \-
if re.search("root@[a-zA-Z0-9\-]+:~#", output):
meta/lib/oeqa/utils/qemurunner.py:448: DeprecationWarning: invalid escape sequence \-
if re.search("[a-zA-Z0-9]+@[a-zA-Z0-9\-]+:~#", data):
by correctly marking the regexs.
(From OE-Core rev: 8e6987735002560fca714f77ea8ece9d4b28f7fa)
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit 351a7b75959593922909d7e1929a6429a2bf94a7
Author: Richard Purdie <richard.purdie at linuxfoundation.org>
Date: Wed Nov 14 11:32:49 2018 +0000
oeqa/selftest/context: Replace deprecated imp module usage
Avoid the warning:
meta/lib/oeqa/selftest/context.py:8: DeprecationWarning: the imp module is deprecated in favour of importlib; see the module's documentation for alternative uses
import imp
In this case importlib is a direct replacement.
(From OE-Core rev: db7a60c36a2d3eefc61ae6e1ede01680dc932035)
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit 682d7b2810b235e86a28a8afe034e3853dbe8c45
Author: Richard Purdie <richard.purdie at linuxfoundation.org>
Date: Tue Nov 13 22:43:25 2018 +0000
oeqa/utils/commands: Avoid unclosed file warnings
Avoid warnings such as:
meta/lib/oeqa/utils/commands.py:213: ResourceWarning: unclosed file <_io.BufferedReader name=4>
return runCmd(cmd, ignore_status, timeout, output_log=output_log, **options)
(From OE-Core rev: 6a68c42de08cffbadb59ebda63fa5e19f6e5acef)
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit f9ab10bb08446052fd6af2a21f38d8454e466d51
Author: Richard Purdie <richard.purdie at linuxfoundation.org>
Date: Tue Nov 13 21:16:54 2018 +0000
oeqa/loader: Fix deprecation warning
Clean up the warning:
meta/lib/oeqa/core/loader.py:27: DeprecationWarning: inspect.getargspec() is deprecated, use inspect.signature() or inspect.getfullargspec()
_failed_test_args = inspect.getargspec(unittest.loader._make_failed_test).args
(From OE-Core rev: d2deb66830be2d44532fea3d5db763b57778252a)
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit d936faabfb29ea377d74e77332a2a91603747ac7
Author: Ross Burton <ross.burton at intel.com>
Date: Mon Dec 3 20:35:15 2018 +0000
oeqa/selftest/esdk: run selftest inside workdir not /tmp
We've seen issues with rootfs size calculations and we've seen systems
like opensuse which have btrfs mounted on /tmp causing selftest failures.
(From OE-Core rev: 61be3cd748d1b7321a1fc4cfe84efa9b26a6aee0)
Signed-off-by: Ross Burton <ross.burton at intel.com>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit d39252324a13580cc96f0694b88bc10515e030a0
Author: Ross Burton <ross.burton at intel.com>
Date: Mon Dec 3 20:35:14 2018 +0000
oeqa: don't litter /tmp with temporary directories
If we need to create a temporary directory in targetbuild or buildproject use
tempfile.TemporaryDirectory so that when the test case is finished, the
directory is deleted.
Also synchronise the logic and don't possibly store the temporary directory in
self.tmpdir as nothing uses that.
(From OE-Core rev: db0e658097130d146752785d0d45f46a3e0bad71)
Signed-off-by: Ross Burton <ross.burton at intel.com>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit 48979ffbe25351f92179021a973207a71bbe7a4e
Author: Richard Purdie <richard.purdie at linuxfoundation.org>
Date: Sun Dec 2 11:23:17 2018 +0000
oeqa/utils/qemurunner: Avoid tracebacks on closed files
Reorder the shutdown/teardown to avoid:
File "/home/pokybuild/yocto-worker/oe-selftest-ubuntu/build/meta/lib/oeqa/utils/qemurunner.py", line 224, in launch
op = self.getOutput(output)
File "/home/pokybuild/yocto-worker/oe-selftest-ubuntu/build/meta/lib/oeqa/utils/qemurunner.py", line 90, in getOutput
fl = fcntl.fcntl(o, fcntl.F_GETFL)
ValueError: I/O operation on closed file
(From OE-Core rev: 8e7d756862d2a8d62f3c87497d6d65ddb3c1b962)
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit 6f2bb2c12289422396deb793ae4b4e99cfa88c7b
Author: Richard Purdie <richard.purdie at linuxfoundation.org>
Date: Mon Dec 3 20:46:06 2018 +0000
oeqa/selftest/runqemu: Improve testcase failure handling
assertTrue doesn't give good debug information when things fail. Update
several to use assertIn which gives information upon failure, for the
others print the log information upon failure.
(From OE-Core rev: c29cb75d5ce6b0873a934f4709b0c8824f7164d3)
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit edd2ecbc86d8b02a0467491451306f67e81d9ead
Author: Ross Burton <ross.burton at intel.com>
Date: Mon Dec 3 11:47:58 2018 +0000
oeqa/oelib/path: don't leak temporary directories
setUp() is used to populate a directory of temporary files, and deleted in
__del__. However setUp() is called once *per test* so __del__ would only be
able to remove the last directory created.
Fix the code by using the natural counterpart to setUp, tearDown(), to clean up.
(From OE-Core rev: 68b4723e6fb11d171869185bccf28f32f6284c18)
Signed-off-by: Ross Burton <ross.burton at intel.com>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit d5ce38168238181423c9dcd1d258253e3515d0a5
Author: Richard Purdie <richard.purdie at linuxfoundation.org>
Date: Thu Nov 29 10:40:58 2018 +0000
oeqa/selftest/buildoptions: Ensure diskmon tests run consistently
Heartbeat events default to once a second and we need to ensure we have
enough time in the task to see them.
Add a nostamp delay task 5s long so we can have a consistently timed
task which doesn't need cleanup or have unneeded dependencies. This
ensures we should deterministically see the disk moinitor events
regardless of the state of the build. This is done in a way which
doesn't corrupt build state or need cleanup and is efficient.
(From OE-Core rev: ecc49ee8986929e2429d948000a0ca588fe63959)
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit b729a46820cce38b3d500271df19bdaf31973140
Author: Richard Purdie <richard.purdie at linuxfoundation.org>
Date: Thu Nov 29 10:22:15 2018 +0000
oeqa/selftest/buildoptions: Improve ccache test
This test occisionally fails as m4 doesn't recompile, meaning the logfile test
then doesn't find mention of ccache.
To ensure m4 does recompile, clean m4 before force compiling it.
(Reading the test is confusing due to the test cleanup also involving a clean)
(From OE-Core rev: 6e0b9214a0d57ed45a5df0ba5c9887a9045b89b1)
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit baa8313e492cff8c31633a558792500b10493e9e
Author: Richard Purdie <richard.purdie at linuxfoundation.org>
Date: Wed Nov 28 16:12:51 2018 +0000
oeqa/qemurunner: Remove resource python warnings
If runqemu fails it would leak an unclosed socket and file. Ensure we
close these in all cases to remove the resource warning.
(From OE-Core rev: ed80e46ccbc8fe8e9148d80723152066fa00ba28)
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit 600e71ede1977c45fed1958dd5356911e4fcf272
Author: Richard Purdie <richard.purdie at linuxfoundation.org>
Date: Wed Nov 28 13:00:11 2018 +0000
oeqa/utils/commands: Avoid log message duplication
Each time a runqemu() fails, the log handler would be left behind meaning
messages from any subsequent run would be duplicated (or worse/more).
This ensures we remove the handler regardless and means we no longer
have the duplication.
(From OE-Core rev: 532984708436bdfa3a8cac2c684a425eb249bad0)
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit b8a9eec2c9e56181350269acd6b42a14cc4abb3e
Author: Richard Purdie <richard.purdie at linuxfoundation.org>
Date: Wed Nov 28 11:18:30 2018 +0000
oeqa/utils/qemurunner: Fix python ResourceWarning for unclosed file
Fixes:
Stderr:
/media/build1/poky/meta/lib/oeqa/utils/qemurunner.py:381: ResourceWarning: unclosed file <_io.BufferedWriter name=16>
self.runqemu = None
(From OE-Core rev: b9e0bf919e6fc1a58e02145a363ebe7066e5bf4f)
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit 0ea441ab6a6fe752cc8820fb371e67eee92353e4
Author: Richard Purdie <richard.purdie at linuxfoundation.org>
Date: Tue Nov 27 23:38:44 2018 +0000
oeqa/utils/commands: Add extra qemu failure logging
Rather than just referring the user to the logs containing the failure, print
them on the console. This aids debugging with oe-selftest with parallelisation
as the logs may otherwise be lost.
(From OE-Core rev: 36a018e245a232f520ff946f152cc875927a6fb4)
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit 60b58e976dcc2a45a036e18cfcc87933a8859c9f
Author: Richard Purdie <richard.purdie at linuxfoundation.org>
Date: Tue Nov 27 12:19:39 2018 +0000
oeqa/selftest/buildoptions: Improve ccache test failure output
The current failure mode doesn't show us what the logs actually looked like
and later cleans can lose them. Show the whole log in case of failure
to aid debugging intermittent problems on the autobuilder.
(From OE-Core rev: 7c3a0dc5978cea898b1ca51decf4d6e7cf9d519f)
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit e7c0d29e063d1a47004acdc07a63996be98c74ef
Author: Richard Purdie <richard.purdie at linuxfoundation.org>
Date: Tue Nov 27 12:03:50 2018 +0000
oeqa/selftest/case: Use bb.utils.remove() instead of shutil.remove()
This avoids problems where shutil.remove will error with:
File "/usr/lib/python3.5/shutil.py", line 436, in _rmtree_safe_fd
os.unlink(name, dir_fd=topfd)
FileNotFoundError: [Errno 2] No such file or directory: 'S.gpg-agent.extra'
when there are races over file deletion (gpg agent may be slow to exit).
We already worked around speed and race issues in bb.utils.
(From OE-Core rev: 00a8fd5b93a5c19ce0b7498e2bc653ce8ad58aaf)
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit 51989db2d9eebd9f190994109c2932dac3f3034b
Author: Richard Purdie <richard.purdie at linuxfoundation.org>
Date: Mon Nov 26 17:03:13 2018 +0000
oeqa/selftest/signing: Use do_populate_lic target instead of do_package
This should speed the test up signficiantly without any loss of functionality
for the purposes of the test.
(From OE-Core rev: 3dde0b749643575878bfbca2f8d2d9ec30bad166)
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit c5d68a24b0c6df0a16f50075a690b3aab0e273ee
Author: Richard Purdie <richard.purdie at linuxfoundation.org>
Date: Mon Nov 26 17:00:10 2018 +0000
oeqa/selftest/signing: Allow tests not to need gpg on the host
We ideally don't want to use gpg from the host. This is straightforward for package
management but not for sstate.
For sstate, create a second build directory to run the test in using gnupg-native
from the original build directory.
(From OE-Core rev: 10afa94c3f0d7eb7524a26deda86949073d55fde)
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit 65403bb556f7e3132722288a62ef36631af0b557
Author: Richard Purdie <richard.purdie at linuxfoundation.org>
Date: Sat Nov 24 17:56:06 2018 +0000
oeqa/selftest/signing: Skip tests if gpg isn't found
Raising an assertionError in the class setup isn't a particuarly good way to
indicate gpg isn't installed. Instead skip the tests if the required binary
isn't present. For the signing tests we do require it to be present and can't
use a prebuilt one.
(From OE-Core rev: 2d486af97e51b9daa9c40482c31d637c9ab4ae79)
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit d3b3c55ddc312039380ce8e23e68dd8bb2439388
Author: Richard Purdie <richard.purdie at linuxfoundation.org>
Date: Wed Nov 28 17:31:39 2018 +0000
scripts/runqemu: Improve lockfile handling for python with close_fd=True
On python versions with close_fds=True (python 3.2 onwards), the tap
device lockfile isn't passed to the child process.
Since this guards against use of an active interface, we really want this
here, so pass it in pass_fds. This means if the parent exits early, the child
still holds the lock, avoiding messages like:
runqemu - ERROR - Failed to run qemu: qemu-system-x86_64: could not configure /dev/net/tun (tap0): Device or resource busy
(From OE-Core rev: 17a0a067d597c445c5892ff9914e91a2187f7e09)
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit d3c052e6ccd81d544b23a3bee80ba00cafaedbbd
Author: Richard Purdie <richard.purdie at linuxfoundation.org>
Date: Wed Nov 28 17:30:10 2018 +0000
scripts/runqemu: Tidy up lock handling code
Various tweaks:
- Balance up the aquire/release functions
- Use debug messge for both acquiring and release message for consistency in logs
- Use None instead of an empty string
- Reset the value of the field if we don't have the lock any more
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit 1c61f3017a6a2d95747883c722c376763ec77c9d
Author: Michael Halstead <mhalstead at linuxfoundation.org>
Date: Thu Nov 8 12:58:39 2018 -0800
scripts/runqemu: Replace subprocess.run() for compatibilty
subprocess.run() was introduced in Python 3.5. We currently support down to
Python 3.4 so I've replaced it with subprocess.check_call() which is available
in that version.
Signed-off-by: Michael Halstead <mhalstead at linuxfoundation.org>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
-----------------------------------------------------------------------
Summary of changes:
meta-selftest/recipes-test/delay/delay.bb | 12 +
meta/classes/archiver.bbclass | 10 +-
meta/classes/base.bbclass | 8 +-
meta/classes/clutter.bbclass | 2 +-
meta/classes/crosssdk.bbclass | 8 +-
meta/classes/cve-check.bbclass | 15 +-
meta/classes/externalsrc.bbclass | 4 +-
meta/classes/kernel-yocto.bbclass | 5 +-
meta/classes/kernel.bbclass | 2 +-
meta/classes/license.bbclass | 4 +-
meta/classes/mirrors.bbclass | 2 +-
meta/classes/sanity.bbclass | 11 +
meta/classes/testsdk.bbclass | 4 -
meta/conf/bitbake.conf | 2 +-
meta/conf/distro/include/security_flags.inc | 2 +-
meta/conf/distro/include/yocto-uninative.inc | 8 +-
meta/files/common-licenses/FreeType | 4 +-
meta/lib/oe/rootfs.py | 5 +-
meta/lib/oeqa/core/context.py | 1 -
meta/lib/oeqa/core/decorator/depends.py | 9 +-
meta/lib/oeqa/core/decorator/oetimeout.py | 40 +--
meta/lib/oeqa/core/loader.py | 2 +-
meta/lib/oeqa/core/runner.py | 176 ++++++-------
.../core/tests/cases/loader/threaded/threaded.py | 12 -
.../tests/cases/loader/threaded/threaded_alone.py | 8 -
.../cases/loader/threaded/threaded_depends.py | 10 -
.../tests/cases/loader/threaded/threaded_module.py | 12 -
meta/lib/oeqa/core/tests/common.py | 10 -
meta/lib/oeqa/core/tests/test_data.py | 4 +-
meta/lib/oeqa/core/tests/test_decorators.py | 12 -
meta/lib/oeqa/core/tests/test_loader.py | 30 +--
meta/lib/oeqa/core/threaded.py | 275 --------------------
meta/lib/oeqa/runtime/cases/ptest.py | 21 +-
meta/lib/oeqa/sdk/context.py | 5 +-
meta/lib/oeqa/selftest/case.py | 4 +-
meta/lib/oeqa/selftest/cases/buildoptions.py | 12 +-
meta/lib/oeqa/selftest/cases/eSDK.py | 13 +-
meta/lib/oeqa/selftest/cases/oelib/path.py | 10 +-
meta/lib/oeqa/selftest/cases/recipetool.py | 4 +-
meta/lib/oeqa/selftest/cases/runqemu.py | 32 ++-
meta/lib/oeqa/selftest/cases/runtime_test.py | 4 +-
meta/lib/oeqa/selftest/cases/signing.py | 80 ++++--
meta/lib/oeqa/selftest/cases/wic.py | 6 +-
meta/lib/oeqa/selftest/context.py | 18 +-
meta/lib/oeqa/utils/buildproject.py | 3 +-
meta/lib/oeqa/utils/commands.py | 11 +-
meta/lib/oeqa/utils/qemurunner.py | 26 +-
meta/lib/oeqa/utils/targetbuild.py | 5 +-
.../lrzsz/lrzsz-0.12.20/cve-2018-10195.patch | 28 ++
meta/recipes-bsp/lrzsz/lrzsz_0.12.20.bb | 1 +
meta/recipes-connectivity/dhcp/dhcp.inc | 3 +-
.../dhcp/0008-tweak-to-support-external-bind.patch | 69 +++--
.../dhcp/dhcp/0010-build-shared-libs.patch | 83 +++---
meta/recipes-connectivity/dhcp/dhcp_4.3.6.bb | 17 +-
.../mobile-broadband-provider-info_git.bb | 3 +-
.../openssl/openssl-1.0.2o/debian/ca.patch | 22 --
.../openssl/openssl-1.0.2o/find.pl | 54 ----
.../openssl-util-perlpath.pl-cwd.patch | 34 ---
...build-with-clang-using-external-assembler.patch | 0
.../0001-allow-manpages-to-be-disabled.patch | 31 +++
...penssl-force-soft-link-to-avoid-rare-race.patch | 0
.../Makefiles-ptest.patch | 18 +-
.../Use-SHA256-not-MD5-as-default-digest.patch | 0
.../configure-musl-target.patch | 0
.../configure-targets.patch | 0
.../debian/c_rehash-compat.patch | 0
.../debian/debian-targets.patch | 0
.../debian/man-dir.patch | 0
.../debian/man-section.patch | 0
.../debian/no-rpath.patch | 0
.../debian/no-symbolic.patch | 0
.../debian/pic.patch | 0
.../debian1.0.2/block_digicert_malaysia.patch | 0
.../debian1.0.2/block_diginotar.patch | 0
.../debian1.0.2/soname.patch | 0
.../debian1.0.2/version-script.patch | 0
.../engines-install-in-libdir-ssl.patch | 0
.../oe-ldflags.patch | 0
.../openssl-c_rehash.sh | 0
.../openssl-fix-des.pod-error.patch | 0
.../openssl_fix_for_x32.patch | 0
.../parallel.patch | 40 ++-
.../ptest-deps.patch | 0
.../ptest_makefile_deps.patch | 0
.../reproducible-cflags.patch | 0
.../reproducible-mkbuildinf.patch | 0
.../{openssl-1.0.2o => openssl-1.0.2p}/run-ptest | 0
.../shared-libs.patch | 0
.../openssl/openssl/environment.d-openssl.sh | 1 +
.../recipes-connectivity/openssl/openssl_1.0.2o.bb | 64 -----
.../openssl/{openssl10.inc => openssl_1.0.2p.bb} | 191 +++++++++-----
.../{openssl_1.1.0h.bb => openssl_1.1.0i.bb} | 123 +++++----
meta/recipes-connectivity/socat/socat_1.7.3.2.bb | 2 +-
.../wpa_supplicant-CVE-2018-14526.patch | 44 ++++
.../wpa-supplicant/wpa-supplicant_2.6.bb | 1 +
meta/recipes-core/base-files/base-files_3.0.14.bb | 8 +-
meta/recipes-core/busybox/busybox.inc | 17 +-
.../busybox/busybox/CVE-2017-15874.patch | 30 +++
meta/recipes-core/busybox/busybox/defconfig | 12 +-
meta/recipes-core/busybox/busybox/init.cfg | 7 +-
meta/recipes-core/busybox/busybox_1.27.2.bb | 1 +
meta/recipes-core/busybox/files/mdev-mount.sh | 4 +-
.../coreutils/coreutils/CVE-2017-18018-1.patch | 40 +++
.../coreutils/coreutils/CVE-2017-18018-2.patch | 83 ++++++
meta/recipes-core/coreutils/coreutils_8.29.bb | 2 +
.../glib-networking/glib-networking_2.54.1.bb | 2 +-
meta/recipes-core/glibc/glibc/CVE-2018-11237.patch | 82 ++++++
meta/recipes-core/glibc/glibc_2.27.bb | 1 +
.../images/build-appliance-image_15.0.0.bb | 8 +-
.../initrdscripts/initramfs-framework/udev | 1 +
.../initscripts-1.0/populate-volatile.sh | 4 +-
.../libcgroup/libcgroup/CVE-2018-14348.patch | 37 +++
meta/recipes-core/libcgroup/libcgroup_0.41.bb | 3 +-
.../libxml/libxml2/CVE-2018-14404.patch | 58 +++++
meta/recipes-core/libxml/libxml2_2.9.7.bb | 1 +
meta/recipes-core/os-release/os-release.bb | 9 +-
meta/recipes-core/sysvinit/sysvinit_2.88dsf.bb | 2 +-
.../{util-linux_2.32.bb => util-linux_2.32.1.bb} | 4 +-
meta/recipes-devtools/apt/apt.inc | 2 +-
meta/recipes-devtools/binutils/binutils-2.30.inc | 1 +
...ARM-assembler-s-ADR-and-ADRl-pseudo-ops-s.patch | 176 +++++++++++++
meta/recipes-devtools/cmake/cmake_3.10.3.bb | 3 +-
.../git/files/CVE-2018-11233.patch | 44 ++++
.../git/files/CVE-2018-11235.patch | 288 +++++++++++++++++++++
meta/recipes-devtools/git/git.inc | 4 +-
meta/recipes-devtools/m4/m4-1.4.18.inc | 1 +
.../m4/m4/m4-1.4.18-glibc-change-work-around.patch | 129 +++++++++
...t-we-are-not-reading-past-end-of-a-buffer.patch | 65 +++++
.../0001-assemble-Check-global-line-limit.patch | 50 ++++
.../0001-eval-Eliminate-division-by-zero.patch | 40 +++
.../nasm/nasm/0001-fix-CVE-2018-8882.patch | 30 +++
...proc-parse_size-Check-for-string-provided.patch | 37 +++
meta/recipes-devtools/nasm/nasm_2.13.03.bb | 5 +
.../0001-Fix-swapping-fake-lines-in-pch_swap.patch | 36 +++
meta/recipes-devtools/patch/patch_2.7.6.bb | 1 +
...ious-tests-if-PERL_BUILD_PACKAGING-is-set.patch | 126 +++++++++
.../perl/perl/CVE-2018-12015.patch | 48 ++++
.../recipes-devtools/perl/perl/CVE-2018-6797.patch | 45 ++++
.../perl/perl/CVE-2018-6798-1.patch | 130 ++++++++++
.../perl/perl/CVE-2018-6798-2.patch | 37 +++
.../recipes-devtools/perl/perl/CVE-2018-6913.patch | 153 +++++++++++
.../perl/perl/perl-test-customized.patch | 86 ------
meta/recipes-devtools/perl/perl/run-ptest | 2 +-
meta/recipes-devtools/perl/perl_5.24.1.bb | 7 +-
...on-native_2.7.14.bb => python-native_2.7.15.bb} | 1 -
meta/recipes-devtools/python/python.inc | 6 +-
...23-Use-XML_SetHashSalt-in-_elementtree-GH.patch | 98 +++++++
...34540-Convert-shutil._call_external_zip-t.patch | 69 +++++
.../python/python/fix-gc-alignment.patch | 43 ---
.../python/python/fix-makefile-for-ptest.patch | 34 ---
.../python/python/float-endian.patch | 216 ++++++++++++++++
meta/recipes-devtools/python/python/run-ptest | 4 +-
.../python/python3/CVE-2018-1061.patch | 165 ++++++++++++
meta/recipes-devtools/python/python3_3.5.5.bb | 1 +
.../python/{python_2.7.14.bb => python_2.7.15.bb} | 29 +--
.../qemu/qemu/CVE-2018-12617.patch | 53 ++++
.../recipes-devtools/qemu/qemu/CVE-2018-7550.patch | 62 +++++
meta/recipes-devtools/qemu/qemu_2.11.1.bb | 2 +
...-squashfs-tools-patch-for-CVE-2015-4645-6.patch | 47 ++++
.../squashfs-tools/squashfs-tools_git.bb | 1 +
meta/recipes-devtools/swig/swig.inc | 2 +-
...-fix-opcode-not-supported-on-mips32-linux.patch | 82 ++++++
...roken-inline-asm-in-tests-on-mips32-linux.patch | 47 ++++
.../valgrind/valgrind/ppc-headers.patch | 78 ++++++
meta/recipes-devtools/valgrind/valgrind_3.13.0.bb | 3 +-
meta/recipes-extended/bzip2/bzip2_1.0.6.bb | 6 +-
.../libarchive/libarchive/CVE-2017-14501.patch | 79 ++++++
.../libarchive/libarchive/CVE-2017-14503.patch | 33 +++
.../libarchive/libarchive_3.3.2.bb | 2 +
.../procps/procps/CVE-2018-1124.patch | 176 +++++++++++++
meta/recipes-extended/procps/procps_3.3.12.bb | 1 +
.../shadow/files/CVE-2018-7169.patch | 186 +++++++++++++
meta/recipes-extended/shadow/shadow.inc | 3 +
...code-native_2018d.bb => tzcode-native_2018f.bb} | 8 +-
.../tzdata/{tzdata_2018d.bb => tzdata_2018f.bb} | 4 +-
.../unzip/0001-unzip-fix-CVE-2018-1000035.patch | 48 ++++
.../unzip/unzip/CVE-2018-18384.patch | 39 +++
meta/recipes-extended/unzip/unzip/symlink.patch | 26 ++
meta/recipes-extended/unzip/unzip_6.0.bb | 3 +
.../cantarell-fonts/cantarell-fonts_git.bb | 4 +-
...01-GLES2-Get-sin-cos-out-of-vertex-shader.patch | 141 ++++++++++
meta/recipes-graphics/libsdl2/libsdl2_2.0.8.bb | 1 +
.../xorg-lib/libice/CVE-2017-2626.patch | 149 +++++++++++
meta/recipes-graphics/xorg-lib/libice_1.0.9.bb | 2 +
meta/recipes-graphics/xorg-lib/pixman_0.34.0.bb | 2 +-
...NULL-value-detection-for-ID_INPUT-being-u.patch | 40 +++
.../xorg-xserver/xserver-xorg_1.19.6.bb | 1 +
.../blktrace/blktrace/CVE-2018-10689.patch | 150 +++++++++++
meta/recipes-kernel/blktrace/blktrace_git.bb | 1 +
meta/recipes-kernel/linux/linux-yocto-rt_4.12.bb | 6 +-
meta/recipes-kernel/linux/linux-yocto-rt_4.14.bb | 8 +-
meta/recipes-kernel/linux/linux-yocto-tiny_4.12.bb | 6 +-
meta/recipes-kernel/linux/linux-yocto-tiny_4.14.bb | 6 +-
meta/recipes-kernel/linux/linux-yocto_4.12.bb | 20 +-
meta/recipes-kernel/linux/linux-yocto_4.14.bb | 20 +-
meta/recipes-multimedia/alsa/alsa-lib_1.1.5.bb | 13 +-
.../flac/files/CVE-2017-6888.patch | 31 +++
meta/recipes-multimedia/flac/flac_1.3.2.bb | 3 +-
.../libid3tag/libid3tag/10_utf16.dpatch | 33 +++
.../libid3tag/libid3tag_0.15.1b.bb | 1 +
.../libpng/files/CVE-2018-13785.patch | 37 +++
meta/recipes-multimedia/libpng/libpng_1.6.34.bb | 4 +-
.../libsndfile1/CVE-2017-14245-14246.patch | 121 +++++++++
.../libsndfile/libsndfile1/CVE-2017-14634.patch | 42 +++
.../libsndfile/libsndfile1/CVE-2018-13139.patch | 35 +++
.../libsndfile/libsndfile1_1.0.28.bb | 3 +
.../libtiff/files/CVE-2017-17095.patch | 46 ++++
meta/recipes-multimedia/libtiff/tiff_4.0.9.bb | 1 +
.../libvorbis/libvorbis/CVE-2017-14160.patch | 33 +++
.../libvorbis/libvorbis/CVE-2018-10392.patch | 29 +++
.../libvorbis/libvorbis_1.3.5.bb | 3 +
meta/recipes-multimedia/x264/x264_git.bb | 1 +
.../apr-util/0001-Fix-error-handling-in-gdbm.patch | 135 ++++++++++
meta/recipes-support/apr/apr-util_1.6.1.bb | 3 +-
meta/recipes-support/apr/apr_1.6.3.bb | 2 +-
.../recipes-support/curl/curl/CVE-2018-14618.patch | 37 +++
.../recipes-support/curl/curl/CVE-2018-16839.patch | 35 +++
.../recipes-support/curl/curl/CVE-2018-16840.patch | 43 +++
.../recipes-support/curl/curl/CVE-2018-16842.patch | 35 +++
meta/recipes-support/curl/curl_7.61.0.bb | 8 +-
.../update-output-syntax.patch | 2 +-
.../gnupg/gnupg/CVE-2018-12020.patch | 47 ++++
.../gnupg/gnupg/CVE-2018-9234.patch | 28 ++
meta/recipes-support/gnupg/gnupg/relocate.patch | 81 ++++++
meta/recipes-support/gnupg/gnupg_2.2.4.bb | 9 +-
.../libcroco/libcroco/CVE-2017-7960.patch | 56 ++++
.../libcroco/libcroco/CVE-2017-7961.patch | 46 ++++
meta/recipes-support/libcroco/libcroco_0.6.12.bb | 3 +
.../libexif/libexif/CVE-2017-7544.patch | 40 +++
meta/recipes-support/libexif/libexif_0.6.21.bb | 3 +-
.../libgcrypt/files/CVE-2018-0495.patch | 76 ++++++
meta/recipes-support/libgcrypt/libgcrypt_1.8.2.bb | 1 +
...of-a-print-in-the-scons-file-to-unbreak-b.patch | 29 +++
...truct-Fix-path-quoting-for-.def-generator.patch | 27 ++
meta/recipes-support/serf/serf/0003-gen_def.patch | 22 ++
...o-r1811083-fix-building-with-scons-3.0.0-.patch | 29 +++
meta/recipes-support/serf/serf_1.3.9.bb | 7 +-
.../sqlite/files/CVE-2018-8740.patch | 47 ++++
meta/recipes-support/sqlite/sqlite3_3.22.0.bb | 1 +
.../taglib/taglib/CVE-2018-11439.patch | 51 ++++
meta/recipes-support/taglib/taglib_1.11.1.bb | 1 +
scripts/contrib/mkefidisk.sh | 12 +-
scripts/lib/checklayer/__init__.py | 4 +
scripts/lib/wic/canned-wks/qemux86-directdisk.wks | 2 +-
.../lib/wic/plugins/source/isoimage-isohybrid.py | 10 +-
scripts/runqemu | 61 ++++-
246 files changed, 6046 insertions(+), 1351 deletions(-)
create mode 100644 meta-selftest/recipes-test/delay/delay.bb
delete mode 100644 meta/lib/oeqa/core/tests/cases/loader/threaded/threaded.py
delete mode 100644 meta/lib/oeqa/core/tests/cases/loader/threaded/threaded_alone.py
delete mode 100644 meta/lib/oeqa/core/tests/cases/loader/threaded/threaded_depends.py
delete mode 100644 meta/lib/oeqa/core/tests/cases/loader/threaded/threaded_module.py
delete mode 100644 meta/lib/oeqa/core/threaded.py
create mode 100644 meta/recipes-bsp/lrzsz/lrzsz-0.12.20/cve-2018-10195.patch
delete mode 100644 meta/recipes-connectivity/openssl/openssl-1.0.2o/debian/ca.patch
delete mode 100644 meta/recipes-connectivity/openssl/openssl-1.0.2o/find.pl
delete mode 100644 meta/recipes-connectivity/openssl/openssl-1.0.2o/openssl-util-perlpath.pl-cwd.patch
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/0001-Fix-build-with-clang-using-external-assembler.patch (100%)
create mode 100644 meta/recipes-connectivity/openssl/openssl-1.0.2p/0001-allow-manpages-to-be-disabled.patch
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/0001-openssl-force-soft-link-to-avoid-rare-race.patch (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/Makefiles-ptest.patch (87%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/Use-SHA256-not-MD5-as-default-digest.patch (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/configure-musl-target.patch (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/configure-targets.patch (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/debian/c_rehash-compat.patch (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/debian/debian-targets.patch (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/debian/man-dir.patch (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/debian/man-section.patch (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/debian/no-rpath.patch (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/debian/no-symbolic.patch (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/debian/pic.patch (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/debian1.0.2/block_digicert_malaysia.patch (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/debian1.0.2/block_diginotar.patch (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/debian1.0.2/soname.patch (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/debian1.0.2/version-script.patch (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/engines-install-in-libdir-ssl.patch (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/oe-ldflags.patch (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/openssl-c_rehash.sh (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/openssl-fix-des.pod-error.patch (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/openssl_fix_for_x32.patch (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/parallel.patch (92%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/ptest-deps.patch (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/ptest_makefile_deps.patch (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/reproducible-cflags.patch (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/reproducible-mkbuildinf.patch (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/run-ptest (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/shared-libs.patch (100%)
create mode 100644 meta/recipes-connectivity/openssl/openssl/environment.d-openssl.sh
delete mode 100644 meta/recipes-connectivity/openssl/openssl_1.0.2o.bb
rename meta/recipes-connectivity/openssl/{openssl10.inc => openssl_1.0.2p.bb} (62%)
rename meta/recipes-connectivity/openssl/{openssl_1.1.0h.bb => openssl_1.1.0i.bb} (52%)
create mode 100644 meta/recipes-connectivity/wpa-supplicant/wpa-supplicant/wpa_supplicant-CVE-2018-14526.patch
create mode 100644 meta/recipes-core/busybox/busybox/CVE-2017-15874.patch
create mode 100644 meta/recipes-core/coreutils/coreutils/CVE-2017-18018-1.patch
create mode 100644 meta/recipes-core/coreutils/coreutils/CVE-2017-18018-2.patch
create mode 100644 meta/recipes-core/glibc/glibc/CVE-2018-11237.patch
create mode 100644 meta/recipes-core/libcgroup/libcgroup/CVE-2018-14348.patch
create mode 100644 meta/recipes-core/libxml/libxml2/CVE-2018-14404.patch
rename meta/recipes-core/util-linux/{util-linux_2.32.bb => util-linux_2.32.1.bb} (86%)
create mode 100644 meta/recipes-devtools/binutils/binutils/0001-Change-the-ARM-assembler-s-ADR-and-ADRl-pseudo-ops-s.patch
create mode 100644 meta/recipes-devtools/git/files/CVE-2018-11233.patch
create mode 100644 meta/recipes-devtools/git/files/CVE-2018-11235.patch
create mode 100644 meta/recipes-devtools/m4/m4/m4-1.4.18-glibc-change-work-around.patch
create mode 100644 meta/recipes-devtools/nasm/nasm/0001-Verify-that-we-are-not-reading-past-end-of-a-buffer.patch
create mode 100644 meta/recipes-devtools/nasm/nasm/0001-assemble-Check-global-line-limit.patch
create mode 100644 meta/recipes-devtools/nasm/nasm/0001-eval-Eliminate-division-by-zero.patch
create mode 100644 meta/recipes-devtools/nasm/nasm/0001-fix-CVE-2018-8882.patch
create mode 100644 meta/recipes-devtools/nasm/nasm/0001-preproc-parse_size-Check-for-string-provided.patch
create mode 100644 meta/recipes-devtools/patch/patch/0001-Fix-swapping-fake-lines-in-pch_swap.patch
create mode 100644 meta/recipes-devtools/perl/perl/0001-Skip-various-tests-if-PERL_BUILD_PACKAGING-is-set.patch
create mode 100644 meta/recipes-devtools/perl/perl/CVE-2018-12015.patch
create mode 100644 meta/recipes-devtools/perl/perl/CVE-2018-6797.patch
create mode 100644 meta/recipes-devtools/perl/perl/CVE-2018-6798-1.patch
create mode 100644 meta/recipes-devtools/perl/perl/CVE-2018-6798-2.patch
create mode 100644 meta/recipes-devtools/perl/perl/CVE-2018-6913.patch
delete mode 100644 meta/recipes-devtools/perl/perl/perl-test-customized.patch
rename meta/recipes-devtools/python/{python-native_2.7.14.bb => python-native_2.7.15.bb} (98%)
create mode 100644 meta/recipes-devtools/python/python/0001-2.7-bpo-34623-Use-XML_SetHashSalt-in-_elementtree-GH.patch
create mode 100644 meta/recipes-devtools/python/python/0001-closes-bpo-34540-Convert-shutil._call_external_zip-t.patch
delete mode 100644 meta/recipes-devtools/python/python/fix-gc-alignment.patch
delete mode 100644 meta/recipes-devtools/python/python/fix-makefile-for-ptest.patch
create mode 100644 meta/recipes-devtools/python/python/float-endian.patch
create mode 100644 meta/recipes-devtools/python/python3/CVE-2018-1061.patch
rename meta/recipes-devtools/python/{python_2.7.14.bb => python_2.7.15.bb} (91%)
create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2018-12617.patch
create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2018-7550.patch
create mode 100644 meta/recipes-devtools/squashfs-tools/squashfs-tools/0001-squashfs-tools-patch-for-CVE-2015-4645-6.patch
create mode 100644 meta/recipes-devtools/valgrind/valgrind/0001-fix-opcode-not-supported-on-mips32-linux.patch
create mode 100644 meta/recipes-devtools/valgrind/valgrind/0002-fix-broken-inline-asm-in-tests-on-mips32-linux.patch
create mode 100644 meta/recipes-extended/libarchive/libarchive/CVE-2017-14501.patch
create mode 100644 meta/recipes-extended/libarchive/libarchive/CVE-2017-14503.patch
create mode 100644 meta/recipes-extended/procps/procps/CVE-2018-1124.patch
create mode 100644 meta/recipes-extended/shadow/files/CVE-2018-7169.patch
rename meta/recipes-extended/tzcode/{tzcode-native_2018d.bb => tzcode-native_2018f.bb} (70%)
rename meta/recipes-extended/tzdata/{tzdata_2018d.bb => tzdata_2018f.bb} (98%)
create mode 100644 meta/recipes-extended/unzip/unzip/0001-unzip-fix-CVE-2018-1000035.patch
create mode 100644 meta/recipes-extended/unzip/unzip/CVE-2018-18384.patch
create mode 100644 meta/recipes-extended/unzip/unzip/symlink.patch
create mode 100644 meta/recipes-graphics/libsdl2/libsdl2/0001-GLES2-Get-sin-cos-out-of-vertex-shader.patch
create mode 100644 meta/recipes-graphics/xorg-lib/libice/CVE-2017-2626.patch
create mode 100644 meta/recipes-graphics/xorg-xserver/xserver-xorg/0001-config-fix-NULL-value-detection-for-ID_INPUT-being-u.patch
create mode 100644 meta/recipes-kernel/blktrace/blktrace/CVE-2018-10689.patch
create mode 100644 meta/recipes-multimedia/flac/files/CVE-2017-6888.patch
create mode 100644 meta/recipes-multimedia/libid3tag/libid3tag/10_utf16.dpatch
create mode 100644 meta/recipes-multimedia/libpng/files/CVE-2018-13785.patch
create mode 100644 meta/recipes-multimedia/libsndfile/libsndfile1/CVE-2017-14245-14246.patch
create mode 100644 meta/recipes-multimedia/libsndfile/libsndfile1/CVE-2017-14634.patch
create mode 100644 meta/recipes-multimedia/libsndfile/libsndfile1/CVE-2018-13139.patch
create mode 100644 meta/recipes-multimedia/libtiff/files/CVE-2017-17095.patch
create mode 100644 meta/recipes-multimedia/libvorbis/libvorbis/CVE-2017-14160.patch
create mode 100644 meta/recipes-multimedia/libvorbis/libvorbis/CVE-2018-10392.patch
create mode 100644 meta/recipes-support/apr/apr-util/0001-Fix-error-handling-in-gdbm.patch
create mode 100644 meta/recipes-support/curl/curl/CVE-2018-14618.patch
create mode 100644 meta/recipes-support/curl/curl/CVE-2018-16839.patch
create mode 100644 meta/recipes-support/curl/curl/CVE-2018-16840.patch
create mode 100644 meta/recipes-support/curl/curl/CVE-2018-16842.patch
create mode 100644 meta/recipes-support/gnupg/gnupg/CVE-2018-12020.patch
create mode 100644 meta/recipes-support/gnupg/gnupg/CVE-2018-9234.patch
create mode 100644 meta/recipes-support/gnupg/gnupg/relocate.patch
create mode 100644 meta/recipes-support/libcroco/libcroco/CVE-2017-7960.patch
create mode 100644 meta/recipes-support/libcroco/libcroco/CVE-2017-7961.patch
create mode 100644 meta/recipes-support/libexif/libexif/CVE-2017-7544.patch
create mode 100644 meta/recipes-support/libgcrypt/files/CVE-2018-0495.patch
create mode 100644 meta/recipes-support/serf/serf/0001-Fix-syntax-of-a-print-in-the-scons-file-to-unbreak-b.patch
create mode 100644 meta/recipes-support/serf/serf/0002-SConstruct-Fix-path-quoting-for-.def-generator.patch
create mode 100644 meta/recipes-support/serf/serf/0003-gen_def.patch
create mode 100644 meta/recipes-support/serf/serf/0004-Follow-up-to-r1811083-fix-building-with-scons-3.0.0-.patch
create mode 100644 meta/recipes-support/sqlite/files/CVE-2018-8740.patch
create mode 100644 meta/recipes-support/taglib/taglib/CVE-2018-11439.patch
hooks/post-receive
--
More information about the yocto-security
mailing list