Arago/sdk 08.02.00.24 #758
Closed
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
createlang, droplang, and the tsearch2 module were all removed in the 10.0 release. More details are in the release notes: https://www.postgresql.org/docs/10/release-10.html The update from 12.3 to 12.4 is a minor release with bug and security fixes: https://www.postgresql.org/docs/current/release-12-4.html Signed-off-by: Robert Joslyn <[email protected]> Signed-off-by: Armin Kuster <[email protected]>
Samba version 4.10.17 which has been already available in Dunfell depends on version 1.5.8 of libldb. Signed-off-by: Yi Zhao <[email protected]> Signed-off-by: Khem Raj <[email protected]> Signed-off-by: Leon Anavi <[email protected]> Signed-off-by: Armin Kuster <[email protected]>
This includes the following changes: ver 1.7: Fix issue with APs that send IGTK falsely in big endian. Fix issue with setting linkmode & operstate for open networks. Signed-off-by: Pierre-Jean Texier <[email protected]> Signed-off-by: Khem Raj <[email protected]> Signed-off-by: Armin Kuster <[email protected]>
Changelog: - Fix issue with handling FT AKMs when not supported. - Fix issue with handling FILS and RSNE in authenticate. - Fix issue with handling auto-connection and quick scan. - Fix issue with sending multiple scan requests. - Add support for P2P feature and API. Signed-off-by: Oleksandr Kravchuk <[email protected]> Signed-off-by: Khem Raj <[email protected]> Signed-off-by: Armin Kuster <[email protected]>
Need this upgrade to work with ell >= 0.33 Signed-off-by: Khem Raj <[email protected]> Signed-off-by: Armin Kuster <[email protected]>
This includes the following changes: 1.9.10: - fix ordering cycle with private tmp 1.9.11: - Fixed wrong version string in v1.9.10 1.9.12: - Fix a memory leak in havege_destroy 1.9.13: - Added support for --version - Updated systemd SystemCallFilter settings Signed-off-by: Pierre-Jean Texier <[email protected]> Signed-off-by: Khem Raj <[email protected]> (cherry picked from commit 7e82d25) [Bug fix only update, also fixes openembedded#277] Signed-off-by: Armin Kuster <[email protected]>
* fixes: netkit-rsh-0.17-r0 do_package_qa: QA Issue: netkit-rsh: recipe defines ALTERNATIVE_netkit-rsh-client but doesn't inherit update-alternatives. This might fail during do_rootfs later! [missing-update-alternatives] netkit-rsh-0.17-r0 do_package_qa: QA Issue: netkit-rsh: recipe defines ALTERNATIVE_netkit-rsh-server but doesn't inherit update-alternatives. This might fail during do_rootfs later! [missing-update-alternatives] Signed-off-by: Martin Jansa <[email protected]> Signed-off-by: Khem Raj <[email protected]> (cherry picked from commit e48aabf) Signed-off-by: Armin Kuster <[email protected]>
Signed-off-by: Khem Raj <[email protected]> (cherry picked from commit 916b6f1) Signed-off-by: Armin Kuster <[email protected]>
* it's newaliases not newalias in sbindir * drop u-a for man pages, because only ssmtp.8 was created which shouldn't conflict with esmpt In my build I don't have mailq, sendmail, newaliases as man pages, but binaries in sbindir (and the sbinbinary is called newaliases, not newalias) tmp-glibc/work/core2-64-oe-linux/ssmtp/2.64-r0/image/ tmp-glibc/work/core2-64-oe-linux/ssmtp/2.64-r0/image/usr tmp-glibc/work/core2-64-oe-linux/ssmtp/2.64-r0/image/usr/share tmp-glibc/work/core2-64-oe-linux/ssmtp/2.64-r0/image/usr/share/man tmp-glibc/work/core2-64-oe-linux/ssmtp/2.64-r0/image/usr/share/man/man8 tmp-glibc/work/core2-64-oe-linux/ssmtp/2.64-r0/image/usr/share/man/man8/ssmtp.8 tmp-glibc/work/core2-64-oe-linux/ssmtp/2.64-r0/image/usr/sbin tmp-glibc/work/core2-64-oe-linux/ssmtp/2.64-r0/image/usr/sbin/mailq tmp-glibc/work/core2-64-oe-linux/ssmtp/2.64-r0/image/usr/sbin/sendmail tmp-glibc/work/core2-64-oe-linux/ssmtp/2.64-r0/image/usr/sbin/newaliases tmp-glibc/work/core2-64-oe-linux/ssmtp/2.64-r0/image/usr/sbin/ssmtp tmp-glibc/work/core2-64-oe-linux/ssmtp/2.64-r0/image/etc tmp-glibc/work/core2-64-oe-linux/ssmtp/2.64-r0/image/etc/ssmtp tmp-glibc/work/core2-64-oe-linux/ssmtp/2.64-r0/image/etc/ssmtp/revaliases this added u-a is causing following warnings: WARNING: ssmtp-2.64-r0 do_package: ssmtp: alternative target (/usr/share/man/man1/mailq.1 or /usr/share/man/man1/mailq.1.ssmtp) does not exist, skipping... WARNING: ssmtp-2.64-r0 do_package: ssmtp: alternative target (/usr/share/man/man1/newaliases.1 or /usr/share/man/man1/newaliases.1.ssmtp) does not exist, skipping... WARNING: ssmtp-2.64-r0 do_package: ssmtp: alternative target (/usr/share/man/man1/sendmail.1 or /usr/share/man/man1/sendmail.1.ssmtp) does not exist, skipping... WARNING: ssmtp-2.64-r0 do_package: ssmtp: alternative target (/usr/sbin/newalias or /usr/sbin/newalias.ssmtp) does not exist, skipping... WARNING: ssmtp-2.64-r0 do_package: ssmtp: NOT adding alternative provide /usr/share/man/man1/mailq.1: /usr/share/man/man1/mailq.1.ssmtp does not exist WARNING: ssmtp-2.64-r0 do_package: ssmtp: NOT adding alternative provide /usr/share/man/man1/newaliases.1: /usr/share/man/man1/newaliases.1.ssmtp does not exist WARNING: ssmtp-2.64-r0 do_package: ssmtp: NOT adding alternative provide /usr/share/man/man1/sendmail.1: /usr/share/man/man1/sendmail.1.ssmtp does not exist WARNING: ssmtp-2.64-r0 do_package: ssmtp: NOT adding alternative provide /usr/sbin/newalias: /usr/sbin/newalias.ssmtp does not exist WARNING: ssmtp-2.64-r0 do_package: ssmtp: alt_link == alt_target: /usr/share/man/man1/mailq.1 == /usr/share/man/man1/mailq.1 WARNING: ssmtp-2.64-r0 do_package: ssmtp: alt_link == alt_target: /usr/share/man/man1/newaliases.1 == /usr/share/man/man1/newaliases.1 WARNING: ssmtp-2.64-r0 do_package: ssmtp: alt_link == alt_target: /usr/share/man/man1/sendmail.1 == /usr/share/man/man1/sendmail.1 WARNING: ssmtp-2.64-r0 do_package: ssmtp: alt_link == alt_target: /usr/sbin/newalias == /usr/sbin/newalias Signed-off-by: Martin Jansa <[email protected]> Signed-off-by: Khem Raj <[email protected]> (cherry picked from commit bdb964c) Signed-off-by: Armin Kuster <[email protected]>
* Since variable was misspelled it was a no-op * There is no gdbus package (gdbus is in glib-2.0-utils) * Did not find any pointer in the source that gdbus has to be installed on target Signed-off-by: Andreas Müller <[email protected]> Signed-off-by: Khem Raj <[email protected]> (cherry picked from commit 4c97b58) Signed-off-by: Armin Kuster <[email protected]>
The Standard output type "syslog" is obsolete, causing a warning since systemd version 246 [1]. Please consider using "journal" or "journal+console" [1] https://github.com/systemd/systemd/blob/master/NEWS#L202 Signed-off-by: Mingli Yu <[email protected]> Signed-off-by: Khem Raj <[email protected]> (cherry picked from commit f9f8904) Signed-off-by: Armin Kuster <[email protected]>
The Standard output type "syslog" is obsolete, causing a warning since systemd version 246 [1]. Please consider using "journal" or "journal+console" [1] https://github.com/systemd/systemd/blob/master/NEWS#L202 Signed-off-by: Mingli Yu <[email protected]> Signed-off-by: Khem Raj <[email protected]> (cherry picked from commit e61b73e) Signed-off-by: Armin Kuster <[email protected]>
The wireless-regdb has been moved to oe-core. According the commit message: wireless-regdb-static should be used with kernel >= 4.15. wireless-regdb can be used with older kernels and is mostly irrelevant here, but keeping it in meta-networking would create needless recipe duplication. it should replace runtime dependency wireless-regdb with wireless-regdb-static. Signed-off-by: Robert Yang <[email protected]> Signed-off-by: Kai Kang <[email protected]> Signed-off-by: Khem Raj <[email protected]> (cherry picked from commit ac313b6) Signed-off-by: Armin Kuster <[email protected]>
... |/usr/lib/python3.8/site-packages/pykwalify/rule.py:343: SyntaxWarning: 'tuple' object is not callable; perhaps you missed a comma? ... Signed-off-by: Hongxu Jia <[email protected]> Acked-by: Trevor Gamblin <[email protected]> Signed-off-by: Khem Raj <[email protected]> (cherry picked from commit a88c7c9) Signed-off-by: Armin Kuster <[email protected]>
Signed-off-by: Ulrich Ölmann <[email protected]> Signed-off-by: Khem Raj <[email protected]> (cherry picked from commit 50a487f) Signed-off-by: Armin Kuster <[email protected]>
remove WORKDIR info from config file to improve reproducibility Signed-off-by: Lee Chee Yang <[email protected]> Signed-off-by: Khem Raj <[email protected]> (cherry picked from commit be95549) Signed-off-by: Armin Kuster <[email protected]>
Fix incorrect links and replace the defunct "gitorious" with now popular "GitLab". Signed-off-by: Diego Rondini <[email protected]> Signed-off-by: Khem Raj <[email protected]> (cherry picked from commit d80b5a5) Signed-off-by: Armin Kuster <[email protected]>
remove WORKDIR information from config to improve reproducibility. libgphoto2_port recheck config during compile will set the WORKDIR info again, so remove this steps after configure. Signed-off-by: Lee Chee Yang <[email protected]> Signed-off-by: Khem Raj <[email protected]> (cherry picked from commit 42c71fa) Signed-off-by: Armin Kuster <[email protected]>
This slash is redundant and removing it could help pseudo maintain its database Signed-off-by: Khem Raj <[email protected]> (cherry picked from commit fdf7bd0) Signed-off-by: Armin Kuster <[email protected]>
Signed-off-by: Zang Ruochen <[email protected]> Signed-off-by: Khem Raj <[email protected]> (cherry picked from commit 88df26a) Signed-off-by: Armin Kuster <[email protected]>
Signed-off-by: Zang Ruochen <[email protected]> Signed-off-by: Khem Raj <[email protected]> (cherry picked from commit 47821db) Signed-off-by: Armin Kuster <[email protected]>
This is security release in order to address CVE-2020-1472 (Unauthenticated domain takeover via netlogon ("ZeroLogon")). See: https://www.samba.org/samba/history/samba-4.10.18.html Also remove 3 backported patches. Signed-off-by: Yi Zhao <[email protected]> Signed-off-by: Khem Raj <[email protected]> (cherry picked from commit bebdea8) Signed-off-by: Armin Kuster <[email protected]>
The mpv git repository doesn't include a copy of waf, instead there is a bootstrap script to fetch it. This recipe calls the bootstrap script in a do_patch postfunc, but downloading should be done in do_fetch. Instead of calling ./bootstrap.sh simply add waf to the SRC_URI so that Bitbake can use the mirrors/proxies/caching/checksum functionality. This is both better code and also works in buildtools environments where urllib2 can't make secure connections without configuration. [ YOCTO #14073 ] Signed-off-by: Ross Burton <[email protected]> Signed-off-by: Khem Raj <[email protected]> (cherry picked from commit 5af46f8) Signed-off-by: Armin Kuster <[email protected]>
Signed-off-by: Anatol Belski <[email protected]> Signed-off-by: Khem Raj <[email protected]> (cherry picked from commit b4d7b1e) Signed-off-by: Armin Kuster <[email protected]>
Adjust fuse packageconfig to depend on fuse3, which is the only supported option in gvfs ≥ 1.41. https://gitlab.gnome.org/GNOME/gvfs/-/commit/7a0a06186b6fef07b8fce2360c04fd075fc84ed1 Signed-off-by: Diego Rondini <[email protected]> Signed-off-by: Khem Raj <[email protected]> (cherry picked from commit bc5394b) Signed-off-by: Armin Kuster <[email protected]>
Bitbucket is no longer the official home of eigen, which has moved to gitlab. Update SRC_URI to download releases from gitlab, fixing: WARNING: libeigen-3.3.7-r0 do_fetch: Failed to fetch URL https://bitbucket.org/eigen/eigen/get/3.3.7.tar.bz2;downloadfilename=libeigen-3.3.7.tar.bz2, attempting MIRRORS if available Signed-off-by: Diego Rondini <[email protected]> Signed-off-by: Khem Raj <[email protected]> (cherry picked from commit 605c281) Signed-off-by: Armin Kuster <[email protected]>
Update SRC_URI to use gitlab git repository. As discussed here gitlab archive stability is not fully guaranteed, so repository is preferred: https://forum.gitlab.com/t/gitlab-release-tarball-stability/41888/3 Signed-off-by: Diego Rondini <[email protected]> Signed-off-by: Khem Raj <[email protected]> (cherry picked from commit a6b2a0c) Signed-off-by: Armin Kuster <[email protected]>
In oe-core commit: 2ce6ef2 cups crossscripts have been fixed to report the correct serverbin folder, so backend, filters, etc, need to go in ${libexecdir} now. Signed-off-by: Diego Rondini <[email protected]> Signed-off-by: Khem Raj <[email protected]> (cherry picked from commit db7fc11) Signed-off-by: Armin Kuster <[email protected]>
Signed-off-by: Khem Raj <[email protected]> (cherry picked from commit dfd5685) Signed-off-by: Armin Kuster <[email protected]>
* fixes QA recently backported to dunfell: WARNING: remmina-1.3.6-r0 do_package_qa: QA Issue: remmina: SRC_URI uses unstable GitHub/GitLab archives, convert recipe to use git protocol [src-uri-bad] Signed-off-by: Martin Jansa <[email protected]> Signed-off-by: Armin Kuster <[email protected]>
Bug and security fixes. Fix patch fuzz as well to remove bitbake warning. Release notes available at: https://www.postgresql.org/docs/release/12.8/ https://www.postgresql.org/docs/release/12.9/ 12.8 fixes: CVE-2021-3677 12.9 fixes: CVE-2021-23214 CVE-2021-23222 Signed-off-by: Robert Joslyn <[email protected]> Signed-off-by: Armin Kuster <[email protected]>
Signed-off-by: Armin kuster <[email protected]>
Backport a patch to fix build against glibc 2.34 (e.g. on Fedora 35) Fixes: | In file included from attr_clnt.c:88: | /usr/include/unistd.h:363:13: error: conflicting types for ‘closefrom’; have ‘void(int)’ | 363 | extern void closefrom (int __lowfd) __THROW; | | ^~~~~~~~~ | In file included from attr_clnt.c:87: | ./sys_defs.h:1506:12: note: previous declaration of ‘closefrom’ with type ‘int(int)’ | 1506 | extern int closefrom(int); | | ^~~~~~~~~ Signed-off-by: Yi Zhao <[email protected]>
Changelog: http://cdn.postfix.johnriley.me/mirrors/postfix-release/official/postfix-3.3.20.HISTORY Signed-off-by: Yi Zhao <[email protected]>
Changelog: ========== *) SECURITY: CVE-2021-44790: Possible buffer overflow when parsing multipart content in mod_lua of Apache HTTP Server 2.4.51 and earlier (cve.mitre.org) A carefully crafted request body can cause a buffer overflow in the mod_lua multipart parser (r:parsebody() called from Lua scripts). The Apache httpd team is not aware of an exploit for the vulnerabilty though it might be possible to craft one. This issue affects Apache HTTP Server 2.4.51 and earlier. *) SECURITY: CVE-2021-44224: Possible NULL dereference or SSRF in forward proxy configurations in Apache HTTP Server 2.4.51 and earlier (cve.mitre.org) A crafted URI sent to httpd configured as a forward proxy (ProxyRequests on) can cause a crash (NULL pointer dereference) or, for configurations mixing forward and reverse proxy declarations, can allow for requests to be directed to a declared Unix Domain Socket endpoint (Server Side Request Forgery). This issue affects Apache HTTP Server 2.4.7 up to 2.4.51 (included). *) http: Enforce that fully qualified uri-paths not to be forward-proxied have an http(s) scheme, and that the ones to be forward proxied have a hostname, per HTTP specifications. *) OpenSSL autoconf detection improvement: pick up openssl.pc in the specified openssl path. *) mod_proxy_connect, mod_proxy: Do not change the status code after we already sent it to the client. *) mod_http: Correctly sent a 100 Continue status code when sending an interim response as result of an Expect: 100-Continue in the request and not the current status code of the request. PR 65725 *) mod_dav: Some DAV extensions, like CalDAV, specify both document elements and property elements that need to be taken into account when generating a property. The document element and property element are made available in the dav_liveprop_elem structure by calling dav_get_liveprop_element(). *) mod_dav: Add utility functions dav_validate_root_ns(), dav_find_child_ns(), dav_find_next_ns(), dav_find_attr_ns() and dav_find_attr() so that other modules get to play too. *) mpm_event: Restart stopping of idle children after a load peak. PR 65626. *) mod_http2: fixes 2 regressions in server limit handling. 1. When reaching server limits, such as MaxRequestsPerChild, the HTTP/2 connection send a GOAWAY frame much too early on new connections, leading to invalid protocol state and a client failing the request. See PR65731. The module now initializes the HTTP/2 protocol correctly and allows the client to submit one request before the shutdown via a GOAWAY frame is being announced. 2. A regression in v1.15.24 was fixed that could lead to httpd child processes not being terminated on a graceful reload or when reaching MaxConnectionsPerChild. When unprocessed h2 requests were queued at the time, these could stall. See <icing/mod_h2#212>. *) mod_ssl: Add build support for OpenSSL v3. *) mod_proxy_connect: Honor the smallest of the backend or client timeout while tunneling. *) mod_proxy: SetEnv proxy-nohalfclose (or alike) allows to disable TCP half-close forwarding when tunneling protocols. *) core: Be safe with ap_lingering_close() called with a socket NULL-ed by a third-party module. PR 65627. *) mod_md: Fix memory leak in case of failures to load the private key. PR 65620 *) mod_md: adding v2.4.8 with the following changes - Added support for ACME External Account Binding (EAB). Use the new directive `MDExternalAccountBinding` to provide the server with the value for key identifier and hmac as provided by your CA. While working on some servers, EAB handling is not uniform across CAs. First tests with a Sectigo Certificate Manager in demo mode are successful. But ZeroSSL, for example, seems to regard EAB values as a one-time-use-only thing, which makes them fail if you create a seconde account or retry the creation of the first account with the same EAB. - The directive 'MDCertificateAuthority' now checks if its parameter is a http/https url or one of a set of known names. Those are 'LetsEncrypt', 'LetsEncrypt-Test', 'Buypass' and 'Buypass-Test' for now and they are not case-sensitive. The default of LetsEncrypt is unchanged. - `MDContactEmail` can now be specified inside a `<MDomain dnsname>` section. - Treating 401 HTTP status codes for orders like 403, since some ACME servers seem to prefer that for accessing oders from other accounts. - When retrieving certificate chains, try to read the repsonse even if the HTTP Content-Type is unrecognized. - Fixed a bug that reset the error counter of a certificate renewal and prevented the increasing delays in further attempts. - Fixed the renewal process giving up every time on an already existing order with some invalid domains. Now, if such are seen in a previous order, a new order is created for a clean start over again. See <icing/mod_md#268> - Fixed a mixup in md-status handler when static certificate files and renewal was configured at the same time. *) mod_md: values for External Account Binding (EAB) can now also be configured to be read from a separate JSON file. This allows to keep server configuration permissions world readable without exposing secrets. *) mod_proxy_uwsgi: Remove duplicate slashes at the beginning of PATH_INFO. PR 65616. Signed-off-by: Wang Mingyu <[email protected]> Signed-off-by: Khem Raj <[email protected]> (cherry picked from commit ea76fc6) Signed-off-by: Armin Kuster <[email protected]>
This way yocto cve-check can find open CVE's. See also: http://lists.openembedded.org/pipermail/openembedded-core/2017-July/139897.html "Results from cve-check are not very good at the moment. One of the reasons for this is that component names used in CVE database differ from yocto recipe names. This series fixes several of those name mapping problems by setting the CVE_PRODUCT correctly in the recipes. To check this mapping with after a build, I'm exporting LICENSE and CVE_PRODUCT variables to buildhistory for recipes and packages." Value added is based on: https://nvd.nist.gov/products/cpe/search/results?keyword=netcat&status=FINAL&orderBy=CPEURI&namingFormat=2.3 Signed-off-by: Andre Carvalho <[email protected]> Signed-off-by: Khem Raj <[email protected]> Signed-off-by: Sana Kazi <[email protected]> Signed-off-by: Sana Kazi <[email protected]> Signed-off-by: Armin Kuster <[email protected]>
Add patch to fix CVE-2021-41990 and CVE-2021-41991 Signed-off-by: virendra thakur <[email protected]> Signed-off-by: Armin Kuster <[email protected]>
Source: wireshark.org MR: 114425, 114409, 114441, 114269, 114417, 114311, 114449 Type: Security Fix Disposition: Backport from wireshark.org ChangeID: 8663cdebb2f10ee84817e5199fa3be0acb715af9 Description: This is a bugfix only update. Addresses these CVES: wnpa-sec-2021-07 Bluetooth DHT dissector crash. Issue 17651. CVE-2021-39929. wnpa-sec-2021-09 Bluetooth SDP dissector crash. Issue 17635. CVE-2021-39925. wnpa-sec-2021-10 Bluetooth DHT dissector large loop. Issue 17677. CVE-2021-39924. wnpa-sec-2021-11 PNRP dissector large loop. Issue 17684. CVE-2021-39920, CVE-2021-39923. wnpa-sec-2021-12 C12.22 dissector crash. Issue 17636. CVE-2021-39922. wnpa-sec-2021-13 IEEE 802.11 dissector crash. Issue 17704. CVE-2021-39928. wnpa-sec-2021-14 Modbus dissector crash. Issue 17703. CVE-2021-39921. Signed-off-by: Armin Kuster <[email protected]> --- V2] Fixes: /build/run/lemon: Exec format error revert "cmake: lemon: fix path to internal lemon tool" so the wireshark-native version is instead. Signed-off-by: Armin Kuster <[email protected]>
Signed-off-by: Armin Kuster <[email protected]>
…orrect handling of argument vector Upstream-Status: Backport CVE: CVE-2021-4034 Signed-off-by: Jeremy A. Puhlman <[email protected]> Signed-off-by: Armin Kuster <[email protected]>
The missing `return` statement leads to a `SIGABRT`. Signed-off-by: Leif Middelschulte <[email protected]> Signed-off-by: Khem Raj <[email protected]> (cherry picked from commit 77479e1) Signed-off-by: Armin Kuster <[email protected]>
Add patch to fix CVE-2021-3802 Signed-off-by: Virendra Thakur <[email protected]> Signed-off-by: Armin Kuster <[email protected]>
Add patch to fix CVE-2018-5996 Signed-off-by: Virendra Thakur <[email protected]> Signed-off-by: Armin Kuster <[email protected]>
Fixes CVE-2021-3570 and CVE-2021-3571 Signed-off-by: Robert Joslyn <[email protected]> Signed-off-by: Armin Kuster <[email protected]>
Add patch to fix CVE-2021-44532 Signed-off-by: Virendra Thakur <[email protected]> Signed-off-by: virendra thakur <[email protected]> Signed-off-by: Armin Kuster <[email protected]>
Add a patch to fix CVE-2021-45079 Signed-off-by: Ranjitsinh Rathod <[email protected]> Signed-off-by: Ranjitsinh Rathod <[email protected]> Signed-off-by: Armin Kuster <[email protected]>
Add a patch to fix CVE-2022-22747 Signed-off-by: Ranjitsinh Rathod <[email protected]> Signed-off-by: Ranjitsinh Rathod <[email protected]> Signed-off-by: Armin Kuster <[email protected]>
The `dot` tool requires to be run once after installation in order to
create its configuration file.
The do_prepare_recipe_sysroot task uses do_populate_sysroot in order to
prepare the recipe-sysroot-native. Package postinstall scripts are not
executed for -native packages, but files under ${BINDIR}/postinst-* are.
This is quite the same as graphviz-setup.sh does for nativesdk. The
general idea has been taken from
OECORE/meta/classes/pixbufcache.bbclass.
Signed-off-by: Christian Eggers <[email protected]>
Signed-off-by: Khem Raj <[email protected]>
Signed-off-by: Armin Kuster <[email protected]>
Without the udevrules cryptsetup luksOpen will be hanging with "Udev cookie 0xd4de0f6 (semid 5) waiting for zero". Signed-off-by: Khem Raj <[email protected]> (cherry picked from commit 60b33e3) Signed-off-by: Armin Kuster <[email protected]> (cherry picked from commit 32f1d75) [Minor fixup for Dunfell] Signed-off-by: Armin Kuster <[email protected]>
Fix CVE-2021-22570. Link: https://koji.fedoraproject.org/koji/buildinfo?buildID=1916865 Link: https://src.fedoraproject.org/rpms/protobuf/blob/394beeacb500861f76473d47e10314e6a3600810/f/CVE-2021-22570.patch Remove first and second hunk because the second argument in InsertIfNotPresent() function is of type const char* const& but the first and second hunk makes the type of second argument as const string which is not compatible with the type of second argument in InsertIfNotPresent(). Signed-off-by: Sana Kazi <[email protected]> Signed-off-by: Sana Kazi <[email protected]> Signed-off-by: Armin Kuster <[email protected]>
Below failure log is observed while using master branch to fetch.
ERROR: googletest-1.10.0-r0 do_fetch: Fetcher failure:
Unable to find revision 703bd9caab50b139428cea1aaff9974ebee5742e
in branch master even from upstream
ERROR: googletest-1.10.0-r0 do_fetch: Bitbake Fetcher Error:
FetchError('Unable to fetch URL from any source.',
'git://github.com/google/googletest.git;branch=master;protocol=https')
Signed-off-by: ashwin.naik <[email protected]>
|
this seems to be not formatted properly against master branch. open a new PR for the specific patch you want , I will close it. |
kraj
pushed a commit
to YoeDistro/meta-openembedded
that referenced
this pull request
Jan 7, 2025
Changelog : https://github.com/c-ares/c-ares/releases/tag/cares-1_29_0 Features: When using ARES_OPT_EVENT_THREAD, automatically reload system configuration when network conditions change. PR openembedded#759 Apple: reimplement DNS configuration reading to more accurately pull DNS settings. PR openembedded#750 Add observability into DNS server health via a server state callback, invoked whenever a query finishes. PR openembedded#744 Add server failover retry behavior, where failed servers are retried with small probability after a minimum delay. PR openembedded#731 Changes: Mark ares_channel_t * as const in more places in the public API. PR openembedded#758 Bugfixes: Due to a logic flaw dns name compression writing was not properly implemented which would result in the name prefix not being written for a partial match. This could cause issues in various record types such as MX records when using the deprecated API. Regression introduced in 1.28.0. Issue openembedded#757 Revert OpenBSD SOCK_DNS flag, it doesn't do what the docs say it does and causes c-ares to become non-functional. PR openembedded#754 ares_getnameinfo(): loosen validation on salen parameter. Issue openembedded#752 cmake: Android requires C99. PR openembedded#748 ares_queue_wait_empty() does not honor timeout_ms >= 0. Issue openembedded#742 Signed-off-by: Jason Schonberg <[email protected]> Signed-off-by: Khem Raj <[email protected]>
kraj
pushed a commit
to YoeDistro/meta-openembedded
that referenced
this pull request
Jan 7, 2025
Changelog : https://github.com/c-ares/c-ares/releases/tag/cares-1_29_0 Features: When using ARES_OPT_EVENT_THREAD, automatically reload system configuration when network conditions change. PR openembedded#759 Apple: reimplement DNS configuration reading to more accurately pull DNS settings. PR openembedded#750 Add observability into DNS server health via a server state callback, invoked whenever a query finishes. PR openembedded#744 Add server failover retry behavior, where failed servers are retried with small probability after a minimum delay. PR openembedded#731 Changes: Mark ares_channel_t * as const in more places in the public API. PR openembedded#758 Bugfixes: Due to a logic flaw dns name compression writing was not properly implemented which would result in the name prefix not being written for a partial match. This could cause issues in various record types such as MX records when using the deprecated API. Regression introduced in 1.28.0. Issue openembedded#757 Revert OpenBSD SOCK_DNS flag, it doesn't do what the docs say it does and causes c-ares to become non-functional. PR openembedded#754 ares_getnameinfo(): loosen validation on salen parameter. Issue openembedded#752 cmake: Android requires C99. PR openembedded#748 ares_queue_wait_empty() does not honor timeout_ms >= 0. Issue openembedded#742 Signed-off-by: Jason Schonberg <[email protected]> Signed-off-by: Khem Raj <[email protected]>
kraj
pushed a commit
to YoeDistro/meta-openembedded
that referenced
this pull request
Jan 7, 2025
Changelog : https://github.com/c-ares/c-ares/releases/tag/cares-1_29_0 Features: When using ARES_OPT_EVENT_THREAD, automatically reload system configuration when network conditions change. PR openembedded#759 Apple: reimplement DNS configuration reading to more accurately pull DNS settings. PR openembedded#750 Add observability into DNS server health via a server state callback, invoked whenever a query finishes. PR openembedded#744 Add server failover retry behavior, where failed servers are retried with small probability after a minimum delay. PR openembedded#731 Changes: Mark ares_channel_t * as const in more places in the public API. PR openembedded#758 Bugfixes: Due to a logic flaw dns name compression writing was not properly implemented which would result in the name prefix not being written for a partial match. This could cause issues in various record types such as MX records when using the deprecated API. Regression introduced in 1.28.0. Issue openembedded#757 Revert OpenBSD SOCK_DNS flag, it doesn't do what the docs say it does and causes c-ares to become non-functional. PR openembedded#754 ares_getnameinfo(): loosen validation on salen parameter. Issue openembedded#752 cmake: Android requires C99. PR openembedded#748 ares_queue_wait_empty() does not honor timeout_ms >= 0. Issue openembedded#742 Signed-off-by: Jason Schonberg <[email protected]> Signed-off-by: Khem Raj <[email protected]>
kraj
pushed a commit
to YoeDistro/meta-openembedded
that referenced
this pull request
Jan 7, 2025
Changelog : https://github.com/c-ares/c-ares/releases/tag/cares-1_29_0 Features: When using ARES_OPT_EVENT_THREAD, automatically reload system configuration when network conditions change. PR openembedded#759 Apple: reimplement DNS configuration reading to more accurately pull DNS settings. PR openembedded#750 Add observability into DNS server health via a server state callback, invoked whenever a query finishes. PR openembedded#744 Add server failover retry behavior, where failed servers are retried with small probability after a minimum delay. PR openembedded#731 Changes: Mark ares_channel_t * as const in more places in the public API. PR openembedded#758 Bugfixes: Due to a logic flaw dns name compression writing was not properly implemented which would result in the name prefix not being written for a partial match. This could cause issues in various record types such as MX records when using the deprecated API. Regression introduced in 1.28.0. Issue openembedded#757 Revert OpenBSD SOCK_DNS flag, it doesn't do what the docs say it does and causes c-ares to become non-functional. PR openembedded#754 ares_getnameinfo(): loosen validation on salen parameter. Issue openembedded#752 cmake: Android requires C99. PR openembedded#748 ares_queue_wait_empty() does not honor timeout_ms >= 0. Issue openembedded#742 Signed-off-by: Jason Schonberg <[email protected]> Signed-off-by: Khem Raj <[email protected]>
kraj
pushed a commit
to YoeDistro/meta-openembedded
that referenced
this pull request
Jan 8, 2025
Changelog : https://github.com/c-ares/c-ares/releases/tag/cares-1_29_0 Features: When using ARES_OPT_EVENT_THREAD, automatically reload system configuration when network conditions change. PR openembedded#759 Apple: reimplement DNS configuration reading to more accurately pull DNS settings. PR openembedded#750 Add observability into DNS server health via a server state callback, invoked whenever a query finishes. PR openembedded#744 Add server failover retry behavior, where failed servers are retried with small probability after a minimum delay. PR openembedded#731 Changes: Mark ares_channel_t * as const in more places in the public API. PR openembedded#758 Bugfixes: Due to a logic flaw dns name compression writing was not properly implemented which would result in the name prefix not being written for a partial match. This could cause issues in various record types such as MX records when using the deprecated API. Regression introduced in 1.28.0. Issue openembedded#757 Revert OpenBSD SOCK_DNS flag, it doesn't do what the docs say it does and causes c-ares to become non-functional. PR openembedded#754 ares_getnameinfo(): loosen validation on salen parameter. Issue openembedded#752 cmake: Android requires C99. PR openembedded#748 ares_queue_wait_empty() does not honor timeout_ms >= 0. Issue openembedded#742 Signed-off-by: Jason Schonberg <[email protected]> Signed-off-by: Khem Raj <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
this PR resolves the googletest_git.bb fetch issue while doing bitbake tisdk-default-image in arago project
the arago project clone the repository of commit id 0722ff6
SRC_URI master branch is deprecated and main is the new
master branch
Below failure log is observed while using master branch to fetch.
ERROR: googletest-1.10.0-r0 do_fetch: Fetcher failure:
Unable to find revision 703bd9caab50b139428cea1aaff9974ebee5742e
in branch master even from upstream
ERROR: googletest-1.10.0-r0 do_fetch: Bitbake Fetcher Error:
FetchError('Unable to fetch URL from any source.',
'git://github.com/google/googletest.git;branch=master;protocol=https')
we can resolve the issue by this PR