* [OE-core][dunfell 0/5] Patch review
@ 2024-01-05 14:03 Steve Sakoman
2024-01-05 14:03 ` [OE-core][dunfell 1/5] cve-update-nvd2-native: remove unused variable CVE_SOCKET_TIMEOUT Steve Sakoman
` (4 more replies)
0 siblings, 5 replies; 23+ messages in thread
From: Steve Sakoman @ 2024-01-05 14:03 UTC (permalink / raw)
To: openembedded-core
Please review this set of changes for dunfell and have comments back by
end of day Tuesday, January 9
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/6418
The following changes since commit 3ea36d92800b139eaaf75995cdd59912b63db9ee:
tzdata: Upgrade to 2023d (2024-01-02 03:43:26 -1000)
are available in the Git repository at:
https://git.openembedded.org/openembedded-core-contrib stable/dunfell-nut
http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-nut
Dhairya Nagodra (2):
cve-update-nvd2-native: faster requests with API keys
cve-update-nvd2-native: increase the delay between subsequent request
failures
Dmitry Baryshkov (1):
linux-firmware: upgrade 20230804 -> 20231030
Peter Marko (2):
cve-update-nvd2-native: remove unused variable CVE_SOCKET_TIMEOUT
cve-update-nvd2-native: make number of fetch attemtps configurable
.../meta/cve-update-nvd2-native.bb | 27 +++++++++++++------
...20230804.bb => linux-firmware_20231030.bb} | 4 +--
2 files changed, 21 insertions(+), 10 deletions(-)
rename meta/recipes-kernel/linux-firmware/{linux-firmware_20230804.bb => linux-firmware_20231030.bb} (99%)
--
2.34.1
^ permalink raw reply [flat|nested] 23+ messages in thread
* [OE-core][dunfell 1/5] cve-update-nvd2-native: remove unused variable CVE_SOCKET_TIMEOUT
2024-01-05 14:03 [OE-core][dunfell 0/5] Patch review Steve Sakoman
@ 2024-01-05 14:03 ` Steve Sakoman
2024-01-05 14:03 ` [OE-core][dunfell 2/5] cve-update-nvd2-native: make number of fetch attemtps configurable Steve Sakoman
` (3 subsequent siblings)
4 siblings, 0 replies; 23+ messages in thread
From: Steve Sakoman @ 2024-01-05 14:03 UTC (permalink / raw)
To: openembedded-core
From: Peter Marko <peter.marko@siemens.com>
This variable is not referenced in oe-core anymore.
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 905b45a814cb33327503b793741c19b44c8550b3)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
---
meta/recipes-core/meta/cve-update-nvd2-native.bb | 3 ---
1 file changed, 3 deletions(-)
diff --git a/meta/recipes-core/meta/cve-update-nvd2-native.bb b/meta/recipes-core/meta/cve-update-nvd2-native.bb
index 67d76f75dd..64a96a46f0 100644
--- a/meta/recipes-core/meta/cve-update-nvd2-native.bb
+++ b/meta/recipes-core/meta/cve-update-nvd2-native.bb
@@ -26,9 +26,6 @@ NVDCVE_API_KEY ?= ""
# Use a negative value to skip the update
CVE_DB_UPDATE_INTERVAL ?= "86400"
-# Timeout for blocking socket operations, such as the connection attempt.
-CVE_SOCKET_TIMEOUT ?= "60"
-
CVE_DB_TEMP_FILE ?= "${CVE_CHECK_DB_DIR}/temp_nvdcve_2.db"
CVE_CHECK_DB_FILE ?= "${CVE_CHECK_DB_DIR}/nvdcve_2.db"
--
2.34.1
^ permalink raw reply related [flat|nested] 23+ messages in thread
* [OE-core][dunfell 2/5] cve-update-nvd2-native: make number of fetch attemtps configurable
2024-01-05 14:03 [OE-core][dunfell 0/5] Patch review Steve Sakoman
2024-01-05 14:03 ` [OE-core][dunfell 1/5] cve-update-nvd2-native: remove unused variable CVE_SOCKET_TIMEOUT Steve Sakoman
@ 2024-01-05 14:03 ` Steve Sakoman
2024-01-05 14:03 ` [OE-core][dunfell 3/5] cve-update-nvd2-native: faster requests with API keys Steve Sakoman
` (2 subsequent siblings)
4 siblings, 0 replies; 23+ messages in thread
From: Steve Sakoman @ 2024-01-05 14:03 UTC (permalink / raw)
To: openembedded-core
From: Peter Marko <peter.marko@siemens.com>
Sometimes NVD servers are unstable and return too many errors.
Last time we increased number of attempts from 3 to 5, but
further increasing is not reasonable as in normal case
too many retries is just abusive.
Keep retries low as default and allow to increase as needed.
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 6b6fd8043d83b99000054ab6ad2c745d07c6bcc1)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
---
meta/recipes-core/meta/cve-update-nvd2-native.bb | 10 +++++++---
1 file changed, 7 insertions(+), 3 deletions(-)
diff --git a/meta/recipes-core/meta/cve-update-nvd2-native.bb b/meta/recipes-core/meta/cve-update-nvd2-native.bb
index 64a96a46f0..dab0b69edc 100644
--- a/meta/recipes-core/meta/cve-update-nvd2-native.bb
+++ b/meta/recipes-core/meta/cve-update-nvd2-native.bb
@@ -26,6 +26,9 @@ NVDCVE_API_KEY ?= ""
# Use a negative value to skip the update
CVE_DB_UPDATE_INTERVAL ?= "86400"
+# Number of attmepts for each http query to nvd server before giving up
+CVE_DB_UPDATE_ATTEMPTS ?= "5"
+
CVE_DB_TEMP_FILE ?= "${CVE_CHECK_DB_DIR}/temp_nvdcve_2.db"
CVE_CHECK_DB_FILE ?= "${CVE_CHECK_DB_DIR}/nvdcve_2.db"
@@ -111,7 +114,7 @@ def cleanup_db_download(db_file, db_tmp_file):
if os.path.exists(db_tmp_file):
os.remove(db_tmp_file)
-def nvd_request_next(url, api_key, args):
+def nvd_request_next(url, attempts, api_key, args):
"""
Request next part of the NVD dabase
"""
@@ -127,7 +130,7 @@ def nvd_request_next(url, api_key, args):
request.add_header("apiKey", api_key)
bb.note("Requesting %s" % request.full_url)
- for attempt in range(5):
+ for attempt in range(attempts):
try:
r = urllib.request.urlopen(request)
@@ -183,10 +186,11 @@ def update_db_file(db_tmp_file, d, database_time):
index = 0
url = d.getVar("NVDCVE_URL")
api_key = d.getVar("NVDCVE_API_KEY") or None
+ attempts = int(d.getVar("CVE_DB_UPDATE_ATTEMPTS"))
while True:
req_args['startIndex'] = index
- raw_data = nvd_request_next(url, api_key, req_args)
+ raw_data = nvd_request_next(url, attempts, api_key, req_args)
if raw_data is None:
# We haven't managed to download data
return False
--
2.34.1
^ permalink raw reply related [flat|nested] 23+ messages in thread
* [OE-core][dunfell 3/5] cve-update-nvd2-native: faster requests with API keys
2024-01-05 14:03 [OE-core][dunfell 0/5] Patch review Steve Sakoman
2024-01-05 14:03 ` [OE-core][dunfell 1/5] cve-update-nvd2-native: remove unused variable CVE_SOCKET_TIMEOUT Steve Sakoman
2024-01-05 14:03 ` [OE-core][dunfell 2/5] cve-update-nvd2-native: make number of fetch attemtps configurable Steve Sakoman
@ 2024-01-05 14:03 ` Steve Sakoman
2024-01-05 14:03 ` [OE-core][dunfell 4/5] cve-update-nvd2-native: increase the delay between subsequent request failures Steve Sakoman
2024-01-05 14:03 ` [OE-core][dunfell 5/5] linux-firmware: upgrade 20230804 -> 20231030 Steve Sakoman
4 siblings, 0 replies; 23+ messages in thread
From: Steve Sakoman @ 2024-01-05 14:03 UTC (permalink / raw)
To: openembedded-core
From: Dhairya Nagodra <dnagodra@cisco.com>
As per NVD, the public rate limit is 5 requests in 30s (6s delay).
Using an API key increases the limit to 50 requests in 30s (0.6s delay).
However, NVD still recommends sleeping for several seconds so that the
other legitimate requests are serviced without denial or interruption.
Keeping the default sleep at 6 seconds and 2 seconds with an API key.
For failures, the wait time is unchanged (6 seconds).
Reference: https://nvd.nist.gov/developers/start-here#RateLimits
Signed-off-by: Dhairya Nagodra <dnagodra@cisco.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
(cherry picked from commit 5c32e2941d1dc3d04a799a1b7cbd275c1ccc9e79)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
---
meta/recipes-core/meta/cve-update-nvd2-native.bb | 7 ++++++-
1 file changed, 6 insertions(+), 1 deletion(-)
diff --git a/meta/recipes-core/meta/cve-update-nvd2-native.bb b/meta/recipes-core/meta/cve-update-nvd2-native.bb
index dab0b69edc..0a8b6a8a0a 100644
--- a/meta/recipes-core/meta/cve-update-nvd2-native.bb
+++ b/meta/recipes-core/meta/cve-update-nvd2-native.bb
@@ -188,6 +188,11 @@ def update_db_file(db_tmp_file, d, database_time):
api_key = d.getVar("NVDCVE_API_KEY") or None
attempts = int(d.getVar("CVE_DB_UPDATE_ATTEMPTS"))
+ # Recommended by NVD
+ wait_time = 6
+ if api_key:
+ wait_time = 2
+
while True:
req_args['startIndex'] = index
raw_data = nvd_request_next(url, attempts, api_key, req_args)
@@ -210,7 +215,7 @@ def update_db_file(db_tmp_file, d, database_time):
break
# Recommended by NVD
- time.sleep(6)
+ time.sleep(wait_time)
# Update success, set the date to cve_check file.
cve_f.write('CVE database update : %s\n\n' % datetime.date.today())
--
2.34.1
^ permalink raw reply related [flat|nested] 23+ messages in thread
* [OE-core][dunfell 4/5] cve-update-nvd2-native: increase the delay between subsequent request failures
2024-01-05 14:03 [OE-core][dunfell 0/5] Patch review Steve Sakoman
` (2 preceding siblings ...)
2024-01-05 14:03 ` [OE-core][dunfell 3/5] cve-update-nvd2-native: faster requests with API keys Steve Sakoman
@ 2024-01-05 14:03 ` Steve Sakoman
2024-01-05 14:03 ` [OE-core][dunfell 5/5] linux-firmware: upgrade 20230804 -> 20231030 Steve Sakoman
4 siblings, 0 replies; 23+ messages in thread
From: Steve Sakoman @ 2024-01-05 14:03 UTC (permalink / raw)
To: openembedded-core
From: Dhairya Nagodra <dnagodra@cisco.com>
Sometimes NVD servers are unstable and return too many errors.
There is an option to have higher fetch attempts to increase the chances
of successfully fetching the CVE data.
Additionally, it also makes sense to progressively increase the delay
after a failed request to an already unstable or busy server.
The increase in delay is reset after every successful request and
the maximum delay is limited to 30 seconds.
Also, the logs are improved to give more clarity.
Signed-off-by: Dhairya Nagodra <dnagodra@cisco.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
(cherry picked from commit 7101d654635b707e56b0dbae8c2146b312d211ea)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
---
meta/recipes-core/meta/cve-update-nvd2-native.bb | 13 +++++++++----
1 file changed, 9 insertions(+), 4 deletions(-)
diff --git a/meta/recipes-core/meta/cve-update-nvd2-native.bb b/meta/recipes-core/meta/cve-update-nvd2-native.bb
index 0a8b6a8a0a..69ba20a6cb 100644
--- a/meta/recipes-core/meta/cve-update-nvd2-native.bb
+++ b/meta/recipes-core/meta/cve-update-nvd2-native.bb
@@ -114,7 +114,10 @@ def cleanup_db_download(db_file, db_tmp_file):
if os.path.exists(db_tmp_file):
os.remove(db_tmp_file)
-def nvd_request_next(url, attempts, api_key, args):
+def nvd_request_wait(attempt, min_wait):
+ return min ( ( (2 * attempt) + min_wait ) , 30)
+
+def nvd_request_next(url, attempts, api_key, args, min_wait):
"""
Request next part of the NVD dabase
"""
@@ -143,8 +146,10 @@ def nvd_request_next(url, attempts, api_key, args):
r.close()
except Exception as e:
- bb.note("CVE database: received error (%s), retrying" % (e))
- time.sleep(6)
+ wait_time = nvd_request_wait(attempt, min_wait)
+ bb.note("CVE database: received error (%s)" % (e))
+ bb.note("CVE database: retrying download after %d seconds. attempted (%d/%d)" % (wait_time, attempt+1, attempts))
+ time.sleep(wait_time)
pass
else:
return raw_data
@@ -195,7 +200,7 @@ def update_db_file(db_tmp_file, d, database_time):
while True:
req_args['startIndex'] = index
- raw_data = nvd_request_next(url, attempts, api_key, req_args)
+ raw_data = nvd_request_next(url, attempts, api_key, req_args, wait_time)
if raw_data is None:
# We haven't managed to download data
return False
--
2.34.1
^ permalink raw reply related [flat|nested] 23+ messages in thread
* [OE-core][dunfell 5/5] linux-firmware: upgrade 20230804 -> 20231030
2024-01-05 14:03 [OE-core][dunfell 0/5] Patch review Steve Sakoman
` (3 preceding siblings ...)
2024-01-05 14:03 ` [OE-core][dunfell 4/5] cve-update-nvd2-native: increase the delay between subsequent request failures Steve Sakoman
@ 2024-01-05 14:03 ` Steve Sakoman
4 siblings, 0 replies; 23+ messages in thread
From: Steve Sakoman @ 2024-01-05 14:03 UTC (permalink / raw)
To: openembedded-core
From: Dmitry Baryshkov <dbaryshkov@gmail.com>
License-Update: additional firmwares
Signed-off-by: Dmitry Baryshkov <dmitry.baryshkov@linaro.org>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
(cherry picked from commit 7c725d1f2ed9a271d39d899ac2534558c2d103fc)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
---
...{linux-firmware_20230804.bb => linux-firmware_20231030.bb} | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
rename meta/recipes-kernel/linux-firmware/{linux-firmware_20230804.bb => linux-firmware_20231030.bb} (99%)
diff --git a/meta/recipes-kernel/linux-firmware/linux-firmware_20230804.bb b/meta/recipes-kernel/linux-firmware/linux-firmware_20231030.bb
similarity index 99%
rename from meta/recipes-kernel/linux-firmware/linux-firmware_20230804.bb
rename to meta/recipes-kernel/linux-firmware/linux-firmware_20231030.bb
index 507a003224..65cbca798e 100644
--- a/meta/recipes-kernel/linux-firmware/linux-firmware_20230804.bb
+++ b/meta/recipes-kernel/linux-firmware/linux-firmware_20231030.bb
@@ -134,7 +134,7 @@ LIC_FILES_CHKSUM = "file://LICENCE.Abilis;md5=b5ee3f410780e56711ad48eadc22b8bc \
"
# WHENCE checksum is defined separately to ease overriding it if
# class-devupstream is selected.
-WHENCE_CHKSUM = "41f9a48bf27971b126a36f9344594dcd"
+WHENCE_CHKSUM = "ceb5248746d24d165b603e71b288cf75"
# These are not common licenses, set NO_GENERIC_LICENSE for them
# so that the license files will be copied from fetched source
@@ -212,7 +212,7 @@ SRC_URI:class-devupstream = "git://git.kernel.org/pub/scm/linux/kernel/git/firmw
# Pin this to the 20220509 release, override this in local.conf
SRCREV:class-devupstream ?= "b19cbdca78ab2adfd210c91be15a22568e8b8cae"
-SRC_URI[sha256sum] = "88d46c543847ee3b03404d4941d91c92974690ee1f6fdcbee9cef3e5f97db688"
+SRC_URI[sha256sum] = "c98d200fc4a3120de1a594713ce34e135819dff23e883a4ed387863ba25679c7"
inherit allarch
--
2.34.1
^ permalink raw reply related [flat|nested] 23+ messages in thread
* [OE-core][dunfell 0/5] Patch review
@ 2024-04-10 13:10 Steve Sakoman
0 siblings, 0 replies; 23+ messages in thread
From: Steve Sakoman @ 2024-04-10 13:10 UTC (permalink / raw)
To: openembedded-core
Please review this set of changes for dunfell and have comments back by
end of day Friday, April 12
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/6774
The following changes since commit 47ce772102b45db14dc21112367534ea1c37e33c:
perf: bump PR to deal with sstate corruption on autobuilder (2024-04-02 05:46:56 -1000)
are available in the Git repository at:
https://git.openembedded.org/openembedded-core-contrib stable/dunfell-nut
http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-nut
Ashish Sharma (3):
go: Backport fix for CVE-2024-24784
xserver-xorg: Backport fix for CVE-2024-31081
xserver-xorg: Backport fix for CVE-2024-31080
Colin McAllister (1):
licenses.conf: Add missing LGPLv2.0+ license
Vijay Anusuri (1):
ncurses: Backport fix for CVE-2023-50495
meta/conf/licenses.conf | 1 +
.../ncurses/files/CVE-2023-50495.patch | 79 +++++++
meta/recipes-core/ncurses/ncurses_6.2.bb | 1 +
meta/recipes-devtools/go/go-1.14.inc | 1 +
.../go/go-1.14/CVE-2024-24784.patch | 205 ++++++++++++++++++
.../xserver-xorg/CVE-2024-31080.patch | 49 +++++
.../xserver-xorg/CVE-2024-31081.patch | 47 ++++
.../xorg-xserver/xserver-xorg_1.20.14.bb | 2 +
8 files changed, 385 insertions(+)
create mode 100644 meta/recipes-core/ncurses/files/CVE-2023-50495.patch
create mode 100644 meta/recipes-devtools/go/go-1.14/CVE-2024-24784.patch
create mode 100644 meta/recipes-graphics/xorg-xserver/xserver-xorg/CVE-2024-31080.patch
create mode 100644 meta/recipes-graphics/xorg-xserver/xserver-xorg/CVE-2024-31081.patch
--
2.34.1
^ permalink raw reply [flat|nested] 23+ messages in thread
* [OE-core][dunfell 0/5] Patch review
@ 2023-12-19 13:48 Steve Sakoman
0 siblings, 0 replies; 23+ messages in thread
From: Steve Sakoman @ 2023-12-19 13:48 UTC (permalink / raw)
To: openembedded-core
Please review this set of changes for dunfell and have comments back by
end of day Thursday, December 21
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/6348
The following changes since commit 55157aa2f8b157b1cc63e1134d9eba6db0cf16da:
build-appliance-image: Update to dunfell head revision (2023-12-11 05:13:51 -1000)
are available in the Git repository at:
https://git.openembedded.org/openembedded-core-contrib stable/dunfell-nut
http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-nut
Bhabu Bindu (1):
glibc: Fix CVE-2023-4813
Lee Chee Yang (2):
perl: fix CVE-2023-31484/47038/47100
binutils: Fix CVE-2023-25584
Vijay Anusuri (1):
libxml2: Backport fix for CVE-2021-3516
Vivek Kumbhar (1):
libsndfile: fix CVE-2021-4156 heap out-of-bounds read in src/flac.c in
flac_buffer_copy
.../glibc/glibc/CVE-2023-4813.patch | 986 ++++++++++++++++++
meta/recipes-core/glibc/glibc_2.31.bb | 1 +
.../libxml/libxml2/CVE-2021-3516.patch | 35 +
meta/recipes-core/libxml/libxml2_2.9.10.bb | 1 +
.../binutils/binutils-2.34.inc | 1 +
.../binutils/binutils/CVE-2023-25584.patch | 530 ++++++++++
.../perl/files/CVE-2023-31484.patch | 27 +
.../perl/files/CVE-2023-47038.patch | 121 +++
meta/recipes-devtools/perl/perl_5.30.1.bb | 2 +
.../libsndfile1/CVE-2021-4156.patch | 30 +
.../libsndfile/libsndfile1_1.0.28.bb | 1 +
11 files changed, 1735 insertions(+)
create mode 100644 meta/recipes-core/glibc/glibc/CVE-2023-4813.patch
create mode 100644 meta/recipes-core/libxml/libxml2/CVE-2021-3516.patch
create mode 100644 meta/recipes-devtools/binutils/binutils/CVE-2023-25584.patch
create mode 100644 meta/recipes-devtools/perl/files/CVE-2023-31484.patch
create mode 100644 meta/recipes-devtools/perl/files/CVE-2023-47038.patch
create mode 100644 meta/recipes-multimedia/libsndfile/libsndfile1/CVE-2021-4156.patch
--
2.34.1
^ permalink raw reply [flat|nested] 23+ messages in thread
* [OE-core][dunfell 0/5] Patch review
@ 2023-09-04 14:22 Steve Sakoman
0 siblings, 0 replies; 23+ messages in thread
From: Steve Sakoman @ 2023-09-04 14:22 UTC (permalink / raw)
To: openembedded-core
Please review this set of changes for dunfell and have comments back by
end of day Wednesday, September 6.
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/5815
The following changes since commit 3575290c4cc937ae2f2c5604a5619ac6de9aa071:
grub2.inc: remove '-O2' from CFLAGS (2023-08-27 06:30:22 -1000)
are available in the Git repository at:
https://git.openembedded.org/openembedded-core-contrib stable/dunfell-nut
http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-nut
Ross Burton (3):
linux-yocto: add script to generate kernel CVE_CHECK_WHITELIST entries
linux/cve-exclusion: add generated CVE_CHECK_WHITELISTs
linux/cve-exclusion: remove obsolete manual entries
Vijay Anusuri (2):
inetutils: Backport fix for CVE-2023-40303
go: Backport fix for CVE-2023-29409
...tpd-rcp-rlogin-rsh-rshd-uucpd-fix-ch.patch | 283 +
...03-Indent-changes-in-previous-commit.patch | 254 +
.../inetutils/inetutils_1.9.4.bb | 2 +
meta/recipes-devtools/go/go-1.14.inc | 1 +
.../go/go-1.14/CVE-2023-29409.patch | 175 +
meta/recipes-kernel/linux/cve-exclusion.inc | 1827 -----
.../linux/cve-exclusion_5.4.inc | 7164 +++++++++++++++++
.../linux/generate-cve-exclusions.py | 101 +
meta/recipes-kernel/linux/linux-yocto_5.4.bb | 1 +
9 files changed, 7981 insertions(+), 1827 deletions(-)
create mode 100644 meta/recipes-connectivity/inetutils/inetutils/0001-CVE-2023-40303-ftpd-rcp-rlogin-rsh-rshd-uucpd-fix-ch.patch
create mode 100644 meta/recipes-connectivity/inetutils/inetutils/0002-CVE-2023-40303-Indent-changes-in-previous-commit.patch
create mode 100644 meta/recipes-devtools/go/go-1.14/CVE-2023-29409.patch
create mode 100644 meta/recipes-kernel/linux/cve-exclusion_5.4.inc
create mode 100755 meta/recipes-kernel/linux/generate-cve-exclusions.py
--
2.34.1
^ permalink raw reply [flat|nested] 23+ messages in thread
* [OE-core][dunfell 0/5] Patch review
@ 2023-06-14 14:04 Steve Sakoman
0 siblings, 0 replies; 23+ messages in thread
From: Steve Sakoman @ 2023-06-14 14:04 UTC (permalink / raw)
To: openembedded-core
Please review this set of changes for dunfell and have comments back by
end of day Friday.
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/5460
The following changes since commit 96798603273bbab40a7e19bbb67a9a5398648c21:
openssh: Move sshdgenkeys.service to sshd.socket (2023-06-07 05:49:27 -1000)
are available in the Git repository at:
https://git.openembedded.org/openembedded-core-contrib stable/dunfell-nut
http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-nut
Martin Siegumfeldt (1):
systemd-systemctl: fix instance template WantedBy symlink construction
Nikhil R (1):
libwebp: Fix CVE-2023-1999
Qiu Tingting (1):
e2fsprogs: fix ptest bug for second running
Randy MacLeod (1):
vim: upgrade 9.0.1429 -> 9.0.1527
Richard Purdie (1):
selftest/reproducible: Allow native/cross reuse in test
meta/lib/oeqa/selftest/cases/reproducible.py | 4 +-
.../systemd/systemd-systemctl/systemctl | 13 ++++-
.../e2fsprogs/e2fsprogs/run-ptest | 1 +
.../e2fsprogs/e2fsprogs_1.45.7.bb | 3 +
.../webp/files/CVE-2023-1999.patch | 55 +++++++++++++++++++
meta/recipes-multimedia/webp/libwebp_1.1.0.bb | 4 ++
meta/recipes-support/vim/vim.inc | 4 +-
7 files changed, 77 insertions(+), 7 deletions(-)
create mode 100644 meta/recipes-multimedia/webp/files/CVE-2023-1999.patch
--
2.34.1
^ permalink raw reply [flat|nested] 23+ messages in thread
* [OE-core][dunfell 0/5] Patch review
@ 2022-09-22 21:47 Steve Sakoman
0 siblings, 0 replies; 23+ messages in thread
From: Steve Sakoman @ 2022-09-22 21:47 UTC (permalink / raw)
To: openembedded-core
Please review this set of patches for dunfell and have comments back by
end of day Friday.
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/4259
The following changes since commit f547c9610f8c17c3da9ca3f7a79902d2ffbfca49:
qemu: Add PACKAGECONFIG for brlapi (2022-09-20 11:09:59 -1000)
are available in the Git repository at:
git://git.openembedded.org/openembedded-core-contrib stable/dunfell-nut
http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-nut
Bruce Ashfield (2):
linux-yocto/5.4: update to v5.4.212
linux-yocto/5.4: update to v5.4.213
Lee Chee Yang (1):
subversion: fix CVE-2021-28544
Sana Kazi (1):
sqlite3: Fix CVE-2021-20223
Virendra Thakur (1):
expat: Fix CVE-2022-40674
.../expat/expat/CVE-2022-40674.patch | 53 +++++++
meta/recipes-core/expat/expat_2.2.9.bb | 1 +
.../subversion/CVE-2021-28544.patch | 146 ++++++++++++++++++
.../subversion/subversion_1.13.0.bb | 1 +
.../linux/linux-yocto-rt_5.4.bb | 6 +-
.../linux/linux-yocto-tiny_5.4.bb | 8 +-
meta/recipes-kernel/linux/linux-yocto_5.4.bb | 22 +--
.../sqlite/files/CVE-2021-20223.patch | 23 +++
meta/recipes-support/sqlite/sqlite3_3.31.1.bb | 1 +
9 files changed, 243 insertions(+), 18 deletions(-)
create mode 100644 meta/recipes-core/expat/expat/CVE-2022-40674.patch
create mode 100644 meta/recipes-devtools/subversion/subversion/CVE-2021-28544.patch
create mode 100644 meta/recipes-support/sqlite/files/CVE-2021-20223.patch
--
2.25.1
^ permalink raw reply [flat|nested] 23+ messages in thread
* [OE-core][dunfell 0/5] Patch review
@ 2021-09-07 14:44 Steve Sakoman
0 siblings, 0 replies; 23+ messages in thread
From: Steve Sakoman @ 2021-09-07 14:44 UTC (permalink / raw)
To: openembedded-core
Please review this next set of changes for dunfell and have comments back by
end of day Thursday.
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/2554
The following changes since commit b46b059a306b2823624e64adecded9f76430471a:
layer.conf: fix syntax error in PATH setting (2021-09-03 04:05:12 -1000)
are available in the Git repository at:
git://git.openembedded.org/openembedded-core-contrib stable/dunfell-nut
http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-nut
Changqing Li (1):
gdk-pixbuf: fix CVE-2021-20240
Martin Jansa (1):
default-distrovars.inc: Set BBINCLUDELOGS to empty to disable printing
failed task output multiple times
Purushottam Choudhary (1):
lighttpd: Add patch for reuse large memory chunks
Richard Purdie (2):
xdg-utils: Add fix for CVE-2020-27748
oeqa/runtime/parselogs: Make DVD ata error apply to all qemux86
machines
.../distro/include/default-distrovars.inc | 6 +-
meta/conf/documentation.conf | 2 +-
meta/lib/oeqa/runtime/cases/parselogs.py | 2 +-
...or-pcre-dependency-instead-of-config.patch | 10 +-
...-mem-chunks-fix-mem-usage-fixes-3033.patch | 224 ++++++++++++++++++
.../lighttpd/default-chunk-size-8k.patch | 35 +++
.../lighttpd/lighttpd_1.4.55.bb | 2 +
...9813e0eb0246f63b54e9e154970e609575af.patch | 58 +++++
.../xdg-utils/xdg-utils_1.1.3.bb | 1 +
.../gdk-pixbuf/CVE-2021-20240.patch | 40 ++++
.../gdk-pixbuf/gdk-pixbuf_2.40.0.bb | 1 +
11 files changed, 371 insertions(+), 10 deletions(-)
create mode 100644 meta/recipes-extended/lighttpd/lighttpd/0001-core-reuse-large-mem-chunks-fix-mem-usage-fixes-3033.patch
create mode 100644 meta/recipes-extended/lighttpd/lighttpd/default-chunk-size-8k.patch
create mode 100644 meta/recipes-extended/xdg-utils/xdg-utils/1f199813e0eb0246f63b54e9e154970e609575af.patch
create mode 100644 meta/recipes-gnome/gdk-pixbuf/gdk-pixbuf/CVE-2021-20240.patch
--
2.25.1
^ permalink raw reply [flat|nested] 23+ messages in thread
* [OE-core][dunfell 0/5] Patch review
@ 2021-09-03 14:10 Steve Sakoman
0 siblings, 0 replies; 23+ messages in thread
From: Steve Sakoman @ 2021-09-03 14:10 UTC (permalink / raw)
To: openembedded-core
Please review this next set of patches for dunfell and have comments back by
end of day Monday.
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/2540
The following changes since commit 448e0271ed831582bb5833486fc17b131676fb53:
selftest: disable virgl headless test (2021-08-27 04:58:08 -1000)
are available in the Git repository at:
git://git.openembedded.org/openembedded-core-contrib stable/dunfell-nut
http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-nut
Andrej Valek (1):
vim: add option to disable NLS support
Armin Kuster (1):
lz4: Security Fix for CVE-2021-3520
Matt Madison (1):
layer.conf: fix syntax error in PATH setting
Richard Purdie (1):
sdk: Decouple default install path from built in path
Ross Burton (1):
cpio: backport fix for CVE-2021-38185
meta/classes/populate_sdk_base.bbclass | 1 +
meta/conf/bitbake.conf | 4 +-
meta/conf/layer.conf | 2 +-
meta/files/toolchain-shar-extract.sh | 3 +-
meta/files/toolchain-shar-relocate.sh | 2 +-
.../cpio/cpio-2.13/CVE-2021-38185.patch | 581 ++++++++++++++++++
meta/recipes-extended/cpio/cpio_2.13.bb | 1 +
.../lz4/files/CVE-2021-3520.patch | 27 +
meta/recipes-support/lz4/lz4_1.9.2.bb | 1 +
meta/recipes-support/vim/vim.inc | 4 +-
10 files changed, 621 insertions(+), 5 deletions(-)
create mode 100644 meta/recipes-extended/cpio/cpio-2.13/CVE-2021-38185.patch
create mode 100644 meta/recipes-support/lz4/files/CVE-2021-3520.patch
--
2.25.1
^ permalink raw reply [flat|nested] 23+ messages in thread
* [OE-core][dunfell 0/5] Patch review
@ 2020-11-21 0:13 Steve Sakoman
0 siblings, 0 replies; 23+ messages in thread
From: Steve Sakoman @ 2020-11-21 0:13 UTC (permalink / raw)
To: openembedded-core
Please review this next set of patches for dunfell and have comments back by
end of day Monday.
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/1611
The following changes since commit 84e1a32096db9deb98d282a652beec95dbfe80f1:
python3: add ldconfig rdepends for python3-ctypes (2020-11-17 07:34:27 -1000)
are available in the Git repository at:
git://git.openembedded.org/openembedded-core-contrib stable/dunfell-nut
http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-nut
Lee Chee Yang (5):
libproxy: fix CVE-2020-26154
bison: update to 3.5.4 for CVE-2020-14150
python3: whitelist CVE-2020-15523
python3: fix CVE-2020-27619
qemu: fix CVE-2020-24352
.../bison/{bison_3.5.3.bb => bison_3.5.4.bb} | 2 +-
.../python/python3/CVE-2020-27619.patch | 70 +++++++++++++
meta/recipes-devtools/python/python3_3.8.2.bb | 4 +
meta/recipes-devtools/qemu/qemu.inc | 1 +
.../qemu/qemu/CVE-2020-24352.patch | 52 ++++++++++
.../libproxy/libproxy/CVE-2020-26154.patch | 98 +++++++++++++++++++
.../libproxy/libproxy_0.4.15.bb | 1 +
7 files changed, 227 insertions(+), 1 deletion(-)
rename meta/recipes-devtools/bison/{bison_3.5.3.bb => bison_3.5.4.bb} (94%)
create mode 100644 meta/recipes-devtools/python/python3/CVE-2020-27619.patch
create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2020-24352.patch
create mode 100644 meta/recipes-support/libproxy/libproxy/CVE-2020-26154.patch
--
2.17.1
^ permalink raw reply [flat|nested] 23+ messages in thread
* Re: [OE-core][dunfell 0/5] Patch review
2020-06-04 0:11 ` Joshua Watt
@ 2020-06-04 0:38 ` Martin Jansa
0 siblings, 0 replies; 23+ messages in thread
From: Martin Jansa @ 2020-06-04 0:38 UTC (permalink / raw)
To: Joshua Watt
Cc: akuster, Denys Dmytriyenko, Steve Sakoman,
Patches and discussions about the oe-core layer
[-- Attachment #1: Type: text/plain, Size: 3598 bytes --]
I've sent the patch for meta-python now, but I see that I've sent it only
for version 11 (not 12 from "layer.conf: Bump OE-Core layer version" which
is being backported here and was merged to master just few hours ago in
https://git.openembedded.org/openembedded-core/commit/?id=2d503b27e7c88cee9a37c79c4605c77b11f230b6).
Sending v2 now.
On Thu, Jun 4, 2020 at 2:11 AM Joshua Watt <jpewhacker@gmail.com> wrote:
>
>
> On Wed, Jun 3, 2020, 6:33 PM Martin Jansa <martin.jansa@gmail.com> wrote:
>
>> I think we still need corresponding LAYERDEPENDS_meta-python update which
>> isn't in master yet (and I haven't noticed it on the list).
>>
>> Joshua: did I overlook it somewhere or should I send it?
>>
>
> I didn't send it because the layer version bump wasn't added to oe-core
> until yesterday. If you can send the patch that would be great.
>
> Thanks
>
>
>> On Wed, Jun 3, 2020 at 7:45 PM akuster <akuster808@gmail.com> wrote:
>>
>>>
>>>
>>> On 6/3/20 10:36 AM, Denys Dmytriyenko wrote:
>>> > On Wed, Jun 03, 2020 at 10:33:55AM -0700, akuster wrote:
>>> >> Does someone have the complementary set of patches for meta-openbedded
>>> >> to remove these?
>>> >
>>> https://git.openembedded.org/meta-openembedded/commit/?id=a8f3c00d8d113b46a49584682e10435157d516ca
>>> >
>>> https://git.openembedded.org/meta-openembedded/commit/?id=7aee545a61c4f91d5e462d5b46b1b8f9a8bad1e3
>>> >
>>> > Do you want me to re-submit them with [dunfell] tag?
>>> nah, the commits work of me. Thanks
>>>
>>> - armin
>>> >
>>> >
>>> >> - armin
>>> >>
>>> >> On 6/3/20 8:33 AM, Steve Sakoman wrote:
>>> >>> Pending final approval for an exception to LTS policy in this case
>>> please
>>> >>> review this patch series and have comments back by end of day
>>> Thursday.
>>> >>>
>>> >>> For details on the motivation for this change see:
>>> >>>
>>> >>>
>>> https://lists.openembedded.org/g/openembedded-architecture/message/1085
>>> >>>
>>> >>> The following changes since commit
>>> ef5af31f406076107402694f5d6afb27b240eba6:
>>> >>>
>>> >>> linux-yocto/5.4: update to v5.4.43 (2020-06-01 07:19:09 -1000)
>>> >>>
>>> >>> are available in the Git repository at:
>>> >>>
>>> >>> git://git.openembedded.org/openembedded-core-contrib
>>> stable/dunfell-nut
>>> >>>
>>> http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-nut
>>> >>>
>>> >>> Joshua Watt (5):
>>> >>> pycryptodome: Import from meta-python
>>> >>> pyelftools: Import from meta-python
>>> >>> python3-pycryptodome(x): Upgrade 3.9.4 -> 3.9.7
>>> >>> python3-pyelftools: Upgrade 0.25 -> 0.26
>>> >>> layer.conf: Bump OE-Core layer version
>>> >>>
>>> >>> meta/conf/distro/include/maintainers.inc | 5 +++-
>>> >>> meta/conf/layer.conf | 2 +-
>>> >>> .../python/python-pycryptodome.inc | 26
>>> +++++++++++++++++++
>>> >>> .../python/python3-pycryptodome_3.9.7.bb | 5 ++++
>>> >>> .../python/python3-pycryptodomex_3.9.7.bb | 9 +++++++
>>> >>> .../python/python3-pyelftools_0.26.bb | 14 ++++++++++
>>> >>> 6 files changed, 59 insertions(+), 2 deletions(-)
>>> >>> create mode 100644
>>> meta/recipes-devtools/python/python-pycryptodome.inc
>>> >>> create mode 100644 meta/recipes-devtools/python/
>>> python3-pycryptodome_3.9.7.bb
>>> >>> create mode 100644 meta/recipes-devtools/python/
>>> python3-pycryptodomex_3.9.7.bb
>>> >>> create mode 100644 meta/recipes-devtools/python/
>>> python3-pyelftools_0.26.bb
>>> >>>
>>> >>>
>>> >>>
>>> >>
>>>
>>>
>>>
>>
[-- Attachment #2: Type: text/html, Size: 6585 bytes --]
^ permalink raw reply [flat|nested] 23+ messages in thread
* Re: [OE-core][dunfell 0/5] Patch review
2020-06-03 23:33 ` Martin Jansa
@ 2020-06-04 0:11 ` Joshua Watt
2020-06-04 0:38 ` Martin Jansa
0 siblings, 1 reply; 23+ messages in thread
From: Joshua Watt @ 2020-06-04 0:11 UTC (permalink / raw)
To: Martin Jansa
Cc: akuster, Denys Dmytriyenko, Steve Sakoman,
Patches and discussions about the oe-core layer
[-- Attachment #1: Type: text/plain, Size: 3078 bytes --]
On Wed, Jun 3, 2020, 6:33 PM Martin Jansa <martin.jansa@gmail.com> wrote:
> I think we still need corresponding LAYERDEPENDS_meta-python update which
> isn't in master yet (and I haven't noticed it on the list).
>
> Joshua: did I overlook it somewhere or should I send it?
>
I didn't send it because the layer version bump wasn't added to oe-core
until yesterday. If you can send the patch that would be great.
Thanks
> On Wed, Jun 3, 2020 at 7:45 PM akuster <akuster808@gmail.com> wrote:
>
>>
>>
>> On 6/3/20 10:36 AM, Denys Dmytriyenko wrote:
>> > On Wed, Jun 03, 2020 at 10:33:55AM -0700, akuster wrote:
>> >> Does someone have the complementary set of patches for meta-openbedded
>> >> to remove these?
>> >
>> https://git.openembedded.org/meta-openembedded/commit/?id=a8f3c00d8d113b46a49584682e10435157d516ca
>> >
>> https://git.openembedded.org/meta-openembedded/commit/?id=7aee545a61c4f91d5e462d5b46b1b8f9a8bad1e3
>> >
>> > Do you want me to re-submit them with [dunfell] tag?
>> nah, the commits work of me. Thanks
>>
>> - armin
>> >
>> >
>> >> - armin
>> >>
>> >> On 6/3/20 8:33 AM, Steve Sakoman wrote:
>> >>> Pending final approval for an exception to LTS policy in this case
>> please
>> >>> review this patch series and have comments back by end of day
>> Thursday.
>> >>>
>> >>> For details on the motivation for this change see:
>> >>>
>> >>>
>> https://lists.openembedded.org/g/openembedded-architecture/message/1085
>> >>>
>> >>> The following changes since commit
>> ef5af31f406076107402694f5d6afb27b240eba6:
>> >>>
>> >>> linux-yocto/5.4: update to v5.4.43 (2020-06-01 07:19:09 -1000)
>> >>>
>> >>> are available in the Git repository at:
>> >>>
>> >>> git://git.openembedded.org/openembedded-core-contrib
>> stable/dunfell-nut
>> >>>
>> http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-nut
>> >>>
>> >>> Joshua Watt (5):
>> >>> pycryptodome: Import from meta-python
>> >>> pyelftools: Import from meta-python
>> >>> python3-pycryptodome(x): Upgrade 3.9.4 -> 3.9.7
>> >>> python3-pyelftools: Upgrade 0.25 -> 0.26
>> >>> layer.conf: Bump OE-Core layer version
>> >>>
>> >>> meta/conf/distro/include/maintainers.inc | 5 +++-
>> >>> meta/conf/layer.conf | 2 +-
>> >>> .../python/python-pycryptodome.inc | 26
>> +++++++++++++++++++
>> >>> .../python/python3-pycryptodome_3.9.7.bb | 5 ++++
>> >>> .../python/python3-pycryptodomex_3.9.7.bb | 9 +++++++
>> >>> .../python/python3-pyelftools_0.26.bb | 14 ++++++++++
>> >>> 6 files changed, 59 insertions(+), 2 deletions(-)
>> >>> create mode 100644
>> meta/recipes-devtools/python/python-pycryptodome.inc
>> >>> create mode 100644 meta/recipes-devtools/python/
>> python3-pycryptodome_3.9.7.bb
>> >>> create mode 100644 meta/recipes-devtools/python/
>> python3-pycryptodomex_3.9.7.bb
>> >>> create mode 100644 meta/recipes-devtools/python/
>> python3-pyelftools_0.26.bb
>> >>>
>> >>>
>> >>>
>> >>
>>
>>
>>
>
[-- Attachment #2: Type: text/html, Size: 5695 bytes --]
^ permalink raw reply [flat|nested] 23+ messages in thread
* Re: [OE-core][dunfell 0/5] Patch review
2020-06-03 17:45 ` akuster
@ 2020-06-03 23:33 ` Martin Jansa
2020-06-04 0:11 ` Joshua Watt
0 siblings, 1 reply; 23+ messages in thread
From: Martin Jansa @ 2020-06-03 23:33 UTC (permalink / raw)
To: akuster, Joshua Watt
Cc: Denys Dmytriyenko, Steve Sakoman,
Patches and discussions about the oe-core layer
[-- Attachment #1: Type: text/plain, Size: 2755 bytes --]
I think we still need corresponding LAYERDEPENDS_meta-python update which
isn't in master yet (and I haven't noticed it on the list).
Joshua: did I overlook it somewhere or should I send it?
On Wed, Jun 3, 2020 at 7:45 PM akuster <akuster808@gmail.com> wrote:
>
>
> On 6/3/20 10:36 AM, Denys Dmytriyenko wrote:
> > On Wed, Jun 03, 2020 at 10:33:55AM -0700, akuster wrote:
> >> Does someone have the complementary set of patches for meta-openbedded
> >> to remove these?
> >
> https://git.openembedded.org/meta-openembedded/commit/?id=a8f3c00d8d113b46a49584682e10435157d516ca
> >
> https://git.openembedded.org/meta-openembedded/commit/?id=7aee545a61c4f91d5e462d5b46b1b8f9a8bad1e3
> >
> > Do you want me to re-submit them with [dunfell] tag?
> nah, the commits work of me. Thanks
>
> - armin
> >
> >
> >> - armin
> >>
> >> On 6/3/20 8:33 AM, Steve Sakoman wrote:
> >>> Pending final approval for an exception to LTS policy in this case
> please
> >>> review this patch series and have comments back by end of day Thursday.
> >>>
> >>> For details on the motivation for this change see:
> >>>
> >>>
> https://lists.openembedded.org/g/openembedded-architecture/message/1085
> >>>
> >>> The following changes since commit
> ef5af31f406076107402694f5d6afb27b240eba6:
> >>>
> >>> linux-yocto/5.4: update to v5.4.43 (2020-06-01 07:19:09 -1000)
> >>>
> >>> are available in the Git repository at:
> >>>
> >>> git://git.openembedded.org/openembedded-core-contrib
> stable/dunfell-nut
> >>>
> http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-nut
> >>>
> >>> Joshua Watt (5):
> >>> pycryptodome: Import from meta-python
> >>> pyelftools: Import from meta-python
> >>> python3-pycryptodome(x): Upgrade 3.9.4 -> 3.9.7
> >>> python3-pyelftools: Upgrade 0.25 -> 0.26
> >>> layer.conf: Bump OE-Core layer version
> >>>
> >>> meta/conf/distro/include/maintainers.inc | 5 +++-
> >>> meta/conf/layer.conf | 2 +-
> >>> .../python/python-pycryptodome.inc | 26 +++++++++++++++++++
> >>> .../python/python3-pycryptodome_3.9.7.bb | 5 ++++
> >>> .../python/python3-pycryptodomex_3.9.7.bb | 9 +++++++
> >>> .../python/python3-pyelftools_0.26.bb | 14 ++++++++++
> >>> 6 files changed, 59 insertions(+), 2 deletions(-)
> >>> create mode 100644
> meta/recipes-devtools/python/python-pycryptodome.inc
> >>> create mode 100644 meta/recipes-devtools/python/
> python3-pycryptodome_3.9.7.bb
> >>> create mode 100644 meta/recipes-devtools/python/
> python3-pycryptodomex_3.9.7.bb
> >>> create mode 100644 meta/recipes-devtools/python/
> python3-pyelftools_0.26.bb
> >>>
> >>>
> >>>
> >>
>
>
>
[-- Attachment #2: Type: text/html, Size: 4744 bytes --]
^ permalink raw reply [flat|nested] 23+ messages in thread
* Re: [OE-core][dunfell 0/5] Patch review
2020-06-03 18:17 ` akuster
@ 2020-06-03 18:18 ` Denys Dmytriyenko
0 siblings, 0 replies; 23+ messages in thread
From: Denys Dmytriyenko @ 2020-06-03 18:18 UTC (permalink / raw)
To: akuster808; +Cc: Steve Sakoman, openembedded-core
On Wed, Jun 03, 2020 at 11:17:20AM -0700, akuster808 wrote:
>
>
> On 6/3/20 10:36 AM, Denys Dmytriyenko wrote:
> > On Wed, Jun 03, 2020 at 10:33:55AM -0700, akuster wrote:
> >> Does someone have the complementary set of patches for meta-openbedded
> >> to remove these?
> > https://git.openembedded.org/meta-openembedded/commit/?id=a8f3c00d8d113b46a49584682e10435157d516ca
> > https://git.openembedded.org/meta-openembedded/commit/?id=7aee545a61c4f91d5e462d5b46b1b8f9a8bad1e3
> >
> > Do you want me to re-submit them with [dunfell] tag?
>
> changes in stable/dunfell-nut for testing with my other backports.
Thanks!
> -armin
> >
> >
> >> - armin
> >>
> >> On 6/3/20 8:33 AM, Steve Sakoman wrote:
> >>> Pending final approval for an exception to LTS policy in this case please
> >>> review this patch series and have comments back by end of day Thursday.
> >>>
> >>> For details on the motivation for this change see:
> >>>
> >>> https://lists.openembedded.org/g/openembedded-architecture/message/1085
> >>>
> >>> The following changes since commit ef5af31f406076107402694f5d6afb27b240eba6:
> >>>
> >>> linux-yocto/5.4: update to v5.4.43 (2020-06-01 07:19:09 -1000)
> >>>
> >>> are available in the Git repository at:
> >>>
> >>> git://git.openembedded.org/openembedded-core-contrib stable/dunfell-nut
> >>> http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-nut
> >>>
> >>> Joshua Watt (5):
> >>> pycryptodome: Import from meta-python
> >>> pyelftools: Import from meta-python
> >>> python3-pycryptodome(x): Upgrade 3.9.4 -> 3.9.7
> >>> python3-pyelftools: Upgrade 0.25 -> 0.26
> >>> layer.conf: Bump OE-Core layer version
> >>>
> >>> meta/conf/distro/include/maintainers.inc | 5 +++-
> >>> meta/conf/layer.conf | 2 +-
> >>> .../python/python-pycryptodome.inc | 26 +++++++++++++++++++
> >>> .../python/python3-pycryptodome_3.9.7.bb | 5 ++++
> >>> .../python/python3-pycryptodomex_3.9.7.bb | 9 +++++++
> >>> .../python/python3-pyelftools_0.26.bb | 14 ++++++++++
> >>> 6 files changed, 59 insertions(+), 2 deletions(-)
> >>> create mode 100644 meta/recipes-devtools/python/python-pycryptodome.inc
> >>> create mode 100644 meta/recipes-devtools/python/python3-pycryptodome_3.9.7.bb
> >>> create mode 100644 meta/recipes-devtools/python/python3-pycryptodomex_3.9.7.bb
> >>> create mode 100644 meta/recipes-devtools/python/python3-pyelftools_0.26.bb
> >>>
> >>>
> >>>
> >>
>
^ permalink raw reply [flat|nested] 23+ messages in thread
* Re: [OE-core][dunfell 0/5] Patch review
2020-06-03 17:36 ` Denys Dmytriyenko
2020-06-03 17:45 ` akuster
@ 2020-06-03 18:17 ` akuster
2020-06-03 18:18 ` Denys Dmytriyenko
1 sibling, 1 reply; 23+ messages in thread
From: akuster @ 2020-06-03 18:17 UTC (permalink / raw)
To: Denys Dmytriyenko; +Cc: Steve Sakoman, openembedded-core
On 6/3/20 10:36 AM, Denys Dmytriyenko wrote:
> On Wed, Jun 03, 2020 at 10:33:55AM -0700, akuster wrote:
>> Does someone have the complementary set of patches for meta-openbedded
>> to remove these?
> https://git.openembedded.org/meta-openembedded/commit/?id=a8f3c00d8d113b46a49584682e10435157d516ca
> https://git.openembedded.org/meta-openembedded/commit/?id=7aee545a61c4f91d5e462d5b46b1b8f9a8bad1e3
>
> Do you want me to re-submit them with [dunfell] tag?
changes in stable/dunfell-nut for testing with my other backports.
-armin
>
>
>> - armin
>>
>> On 6/3/20 8:33 AM, Steve Sakoman wrote:
>>> Pending final approval for an exception to LTS policy in this case please
>>> review this patch series and have comments back by end of day Thursday.
>>>
>>> For details on the motivation for this change see:
>>>
>>> https://lists.openembedded.org/g/openembedded-architecture/message/1085
>>>
>>> The following changes since commit ef5af31f406076107402694f5d6afb27b240eba6:
>>>
>>> linux-yocto/5.4: update to v5.4.43 (2020-06-01 07:19:09 -1000)
>>>
>>> are available in the Git repository at:
>>>
>>> git://git.openembedded.org/openembedded-core-contrib stable/dunfell-nut
>>> http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-nut
>>>
>>> Joshua Watt (5):
>>> pycryptodome: Import from meta-python
>>> pyelftools: Import from meta-python
>>> python3-pycryptodome(x): Upgrade 3.9.4 -> 3.9.7
>>> python3-pyelftools: Upgrade 0.25 -> 0.26
>>> layer.conf: Bump OE-Core layer version
>>>
>>> meta/conf/distro/include/maintainers.inc | 5 +++-
>>> meta/conf/layer.conf | 2 +-
>>> .../python/python-pycryptodome.inc | 26 +++++++++++++++++++
>>> .../python/python3-pycryptodome_3.9.7.bb | 5 ++++
>>> .../python/python3-pycryptodomex_3.9.7.bb | 9 +++++++
>>> .../python/python3-pyelftools_0.26.bb | 14 ++++++++++
>>> 6 files changed, 59 insertions(+), 2 deletions(-)
>>> create mode 100644 meta/recipes-devtools/python/python-pycryptodome.inc
>>> create mode 100644 meta/recipes-devtools/python/python3-pycryptodome_3.9.7.bb
>>> create mode 100644 meta/recipes-devtools/python/python3-pycryptodomex_3.9.7.bb
>>> create mode 100644 meta/recipes-devtools/python/python3-pyelftools_0.26.bb
>>>
>>>
>>>
>>
^ permalink raw reply [flat|nested] 23+ messages in thread
* Re: [OE-core][dunfell 0/5] Patch review
2020-06-03 17:36 ` Denys Dmytriyenko
@ 2020-06-03 17:45 ` akuster
2020-06-03 23:33 ` Martin Jansa
2020-06-03 18:17 ` akuster
1 sibling, 1 reply; 23+ messages in thread
From: akuster @ 2020-06-03 17:45 UTC (permalink / raw)
To: Denys Dmytriyenko; +Cc: Steve Sakoman, openembedded-core
On 6/3/20 10:36 AM, Denys Dmytriyenko wrote:
> On Wed, Jun 03, 2020 at 10:33:55AM -0700, akuster wrote:
>> Does someone have the complementary set of patches for meta-openbedded
>> to remove these?
> https://git.openembedded.org/meta-openembedded/commit/?id=a8f3c00d8d113b46a49584682e10435157d516ca
> https://git.openembedded.org/meta-openembedded/commit/?id=7aee545a61c4f91d5e462d5b46b1b8f9a8bad1e3
>
> Do you want me to re-submit them with [dunfell] tag?
nah, the commits work of me. Thanks
- armin
>
>
>> - armin
>>
>> On 6/3/20 8:33 AM, Steve Sakoman wrote:
>>> Pending final approval for an exception to LTS policy in this case please
>>> review this patch series and have comments back by end of day Thursday.
>>>
>>> For details on the motivation for this change see:
>>>
>>> https://lists.openembedded.org/g/openembedded-architecture/message/1085
>>>
>>> The following changes since commit ef5af31f406076107402694f5d6afb27b240eba6:
>>>
>>> linux-yocto/5.4: update to v5.4.43 (2020-06-01 07:19:09 -1000)
>>>
>>> are available in the Git repository at:
>>>
>>> git://git.openembedded.org/openembedded-core-contrib stable/dunfell-nut
>>> http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-nut
>>>
>>> Joshua Watt (5):
>>> pycryptodome: Import from meta-python
>>> pyelftools: Import from meta-python
>>> python3-pycryptodome(x): Upgrade 3.9.4 -> 3.9.7
>>> python3-pyelftools: Upgrade 0.25 -> 0.26
>>> layer.conf: Bump OE-Core layer version
>>>
>>> meta/conf/distro/include/maintainers.inc | 5 +++-
>>> meta/conf/layer.conf | 2 +-
>>> .../python/python-pycryptodome.inc | 26 +++++++++++++++++++
>>> .../python/python3-pycryptodome_3.9.7.bb | 5 ++++
>>> .../python/python3-pycryptodomex_3.9.7.bb | 9 +++++++
>>> .../python/python3-pyelftools_0.26.bb | 14 ++++++++++
>>> 6 files changed, 59 insertions(+), 2 deletions(-)
>>> create mode 100644 meta/recipes-devtools/python/python-pycryptodome.inc
>>> create mode 100644 meta/recipes-devtools/python/python3-pycryptodome_3.9.7.bb
>>> create mode 100644 meta/recipes-devtools/python/python3-pycryptodomex_3.9.7.bb
>>> create mode 100644 meta/recipes-devtools/python/python3-pyelftools_0.26.bb
>>>
>>>
>>>
>>
^ permalink raw reply [flat|nested] 23+ messages in thread
* Re: [OE-core][dunfell 0/5] Patch review
2020-06-03 17:33 ` akuster
@ 2020-06-03 17:36 ` Denys Dmytriyenko
2020-06-03 17:45 ` akuster
2020-06-03 18:17 ` akuster
0 siblings, 2 replies; 23+ messages in thread
From: Denys Dmytriyenko @ 2020-06-03 17:36 UTC (permalink / raw)
To: akuster; +Cc: Steve Sakoman, openembedded-core
On Wed, Jun 03, 2020 at 10:33:55AM -0700, akuster wrote:
> Does someone have the complementary set of patches for meta-openbedded
> to remove these?
https://git.openembedded.org/meta-openembedded/commit/?id=a8f3c00d8d113b46a49584682e10435157d516ca
https://git.openembedded.org/meta-openembedded/commit/?id=7aee545a61c4f91d5e462d5b46b1b8f9a8bad1e3
Do you want me to re-submit them with [dunfell] tag?
> - armin
>
> On 6/3/20 8:33 AM, Steve Sakoman wrote:
> > Pending final approval for an exception to LTS policy in this case please
> > review this patch series and have comments back by end of day Thursday.
> >
> > For details on the motivation for this change see:
> >
> > https://lists.openembedded.org/g/openembedded-architecture/message/1085
> >
> > The following changes since commit ef5af31f406076107402694f5d6afb27b240eba6:
> >
> > linux-yocto/5.4: update to v5.4.43 (2020-06-01 07:19:09 -1000)
> >
> > are available in the Git repository at:
> >
> > git://git.openembedded.org/openembedded-core-contrib stable/dunfell-nut
> > http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-nut
> >
> > Joshua Watt (5):
> > pycryptodome: Import from meta-python
> > pyelftools: Import from meta-python
> > python3-pycryptodome(x): Upgrade 3.9.4 -> 3.9.7
> > python3-pyelftools: Upgrade 0.25 -> 0.26
> > layer.conf: Bump OE-Core layer version
> >
> > meta/conf/distro/include/maintainers.inc | 5 +++-
> > meta/conf/layer.conf | 2 +-
> > .../python/python-pycryptodome.inc | 26 +++++++++++++++++++
> > .../python/python3-pycryptodome_3.9.7.bb | 5 ++++
> > .../python/python3-pycryptodomex_3.9.7.bb | 9 +++++++
> > .../python/python3-pyelftools_0.26.bb | 14 ++++++++++
> > 6 files changed, 59 insertions(+), 2 deletions(-)
> > create mode 100644 meta/recipes-devtools/python/python-pycryptodome.inc
> > create mode 100644 meta/recipes-devtools/python/python3-pycryptodome_3.9.7.bb
> > create mode 100644 meta/recipes-devtools/python/python3-pycryptodomex_3.9.7.bb
> > create mode 100644 meta/recipes-devtools/python/python3-pyelftools_0.26.bb
> >
> >
> >
>
>
^ permalink raw reply [flat|nested] 23+ messages in thread
* Re: [OE-core][dunfell 0/5] Patch review
2020-06-03 15:33 Steve Sakoman
@ 2020-06-03 17:33 ` akuster
2020-06-03 17:36 ` Denys Dmytriyenko
0 siblings, 1 reply; 23+ messages in thread
From: akuster @ 2020-06-03 17:33 UTC (permalink / raw)
To: Steve Sakoman, openembedded-core
[-- Attachment #1: Type: text/plain, Size: 1818 bytes --]
Does someone have the complementary set of patches for meta-openbedded
to remove these?
- armin
On 6/3/20 8:33 AM, Steve Sakoman wrote:
> Pending final approval for an exception to LTS policy in this case please
> review this patch series and have comments back by end of day Thursday.
>
> For details on the motivation for this change see:
>
> https://lists.openembedded.org/g/openembedded-architecture/message/1085
>
> The following changes since commit ef5af31f406076107402694f5d6afb27b240eba6:
>
> linux-yocto/5.4: update to v5.4.43 (2020-06-01 07:19:09 -1000)
>
> are available in the Git repository at:
>
> git://git.openembedded.org/openembedded-core-contrib stable/dunfell-nut
> http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-nut
>
> Joshua Watt (5):
> pycryptodome: Import from meta-python
> pyelftools: Import from meta-python
> python3-pycryptodome(x): Upgrade 3.9.4 -> 3.9.7
> python3-pyelftools: Upgrade 0.25 -> 0.26
> layer.conf: Bump OE-Core layer version
>
> meta/conf/distro/include/maintainers.inc | 5 +++-
> meta/conf/layer.conf | 2 +-
> .../python/python-pycryptodome.inc | 26 +++++++++++++++++++
> .../python/python3-pycryptodome_3.9.7.bb | 5 ++++
> .../python/python3-pycryptodomex_3.9.7.bb | 9 +++++++
> .../python/python3-pyelftools_0.26.bb | 14 ++++++++++
> 6 files changed, 59 insertions(+), 2 deletions(-)
> create mode 100644 meta/recipes-devtools/python/python-pycryptodome.inc
> create mode 100644 meta/recipes-devtools/python/python3-pycryptodome_3.9.7.bb
> create mode 100644 meta/recipes-devtools/python/python3-pycryptodomex_3.9.7.bb
> create mode 100644 meta/recipes-devtools/python/python3-pyelftools_0.26.bb
>
>
>
[-- Attachment #2: Type: text/html, Size: 2498 bytes --]
^ permalink raw reply [flat|nested] 23+ messages in thread
* [OE-core][dunfell 0/5] Patch review
@ 2020-06-03 15:33 Steve Sakoman
2020-06-03 17:33 ` akuster
0 siblings, 1 reply; 23+ messages in thread
From: Steve Sakoman @ 2020-06-03 15:33 UTC (permalink / raw)
To: openembedded-core
Pending final approval for an exception to LTS policy in this case please
review this patch series and have comments back by end of day Thursday.
For details on the motivation for this change see:
https://lists.openembedded.org/g/openembedded-architecture/message/1085
The following changes since commit ef5af31f406076107402694f5d6afb27b240eba6:
linux-yocto/5.4: update to v5.4.43 (2020-06-01 07:19:09 -1000)
are available in the Git repository at:
git://git.openembedded.org/openembedded-core-contrib stable/dunfell-nut
http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-nut
Joshua Watt (5):
pycryptodome: Import from meta-python
pyelftools: Import from meta-python
python3-pycryptodome(x): Upgrade 3.9.4 -> 3.9.7
python3-pyelftools: Upgrade 0.25 -> 0.26
layer.conf: Bump OE-Core layer version
meta/conf/distro/include/maintainers.inc | 5 +++-
meta/conf/layer.conf | 2 +-
.../python/python-pycryptodome.inc | 26 +++++++++++++++++++
.../python/python3-pycryptodome_3.9.7.bb | 5 ++++
.../python/python3-pycryptodomex_3.9.7.bb | 9 +++++++
.../python/python3-pyelftools_0.26.bb | 14 ++++++++++
6 files changed, 59 insertions(+), 2 deletions(-)
create mode 100644 meta/recipes-devtools/python/python-pycryptodome.inc
create mode 100644 meta/recipes-devtools/python/python3-pycryptodome_3.9.7.bb
create mode 100644 meta/recipes-devtools/python/python3-pycryptodomex_3.9.7.bb
create mode 100644 meta/recipes-devtools/python/python3-pyelftools_0.26.bb
--
2.17.1
^ permalink raw reply [flat|nested] 23+ messages in thread
end of thread, other threads:[~2024-04-10 13:11 UTC | newest]
Thread overview: 23+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2024-01-05 14:03 [OE-core][dunfell 0/5] Patch review Steve Sakoman
2024-01-05 14:03 ` [OE-core][dunfell 1/5] cve-update-nvd2-native: remove unused variable CVE_SOCKET_TIMEOUT Steve Sakoman
2024-01-05 14:03 ` [OE-core][dunfell 2/5] cve-update-nvd2-native: make number of fetch attemtps configurable Steve Sakoman
2024-01-05 14:03 ` [OE-core][dunfell 3/5] cve-update-nvd2-native: faster requests with API keys Steve Sakoman
2024-01-05 14:03 ` [OE-core][dunfell 4/5] cve-update-nvd2-native: increase the delay between subsequent request failures Steve Sakoman
2024-01-05 14:03 ` [OE-core][dunfell 5/5] linux-firmware: upgrade 20230804 -> 20231030 Steve Sakoman
-- strict thread matches above, loose matches on Subject: below --
2024-04-10 13:10 [OE-core][dunfell 0/5] Patch review Steve Sakoman
2023-12-19 13:48 Steve Sakoman
2023-09-04 14:22 Steve Sakoman
2023-06-14 14:04 Steve Sakoman
2022-09-22 21:47 Steve Sakoman
2021-09-07 14:44 Steve Sakoman
2021-09-03 14:10 Steve Sakoman
2020-11-21 0:13 Steve Sakoman
2020-06-03 15:33 Steve Sakoman
2020-06-03 17:33 ` akuster
2020-06-03 17:36 ` Denys Dmytriyenko
2020-06-03 17:45 ` akuster
2020-06-03 23:33 ` Martin Jansa
2020-06-04 0:11 ` Joshua Watt
2020-06-04 0:38 ` Martin Jansa
2020-06-03 18:17 ` akuster
2020-06-03 18:18 ` Denys Dmytriyenko
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.