From: Denys Dmytriyenko <denis@denix.org>
To: Aniket Limaye <a-limaye@ti.com>
Cc: meta-arago@lists.yoctoproject.org,
Denys Dmytriyenko <denys@konsulko.com>,
s-adivi@ti.com, c-shilwant@ti.com, g-gupta@ti.com,
Rahul Ravikumar <r-ravikumar@ti.com>
Subject: Re: [EXTERNAL] [meta-arago] [kirkstone][PATCH 1/6] recipe-data: deprecate
Date: Tue, 11 Jul 2023 13:21:27 -0400 [thread overview]
Message-ID: <20230711172127.GL1518@denix.org> (raw)
In-Reply-To: <558037f0-680c-491b-c5a1-82448da9062d@ti.com>
On Mon, Jul 10, 2023 at 05:41:19PM +0530, Aniket Limaye wrote:
>
> On 07/07/23 02:53, Denys Dmytriyenko wrote:
> >From: Denys Dmytriyenko <denys@konsulko.com>
> >
> >Deprecate custom recipe-data class. It was added when Bitbake started
> >sanitizing "source" field of generated binary packages due to a CVE
> >security vulnerability that could potentially leak local resource
> >passwords. This class would bypass the sanitizing step by preserving
> >source URLs from recipes to be used in TISDK bundle manifest.
> >
> >Even with a valid use case, this approach was still questionable and
> >now it complicates latest TISDK bundle changes necessary for adding
> >a proper secondary toolchain support. Plus bundle manifests don't seem
> >to be used that much lately, so deprecate this class.
>
> Hi Denys, Ryan,
>
> I was a little concerned with the last statement here. At SDK level
> we do use the manifest .txt files that to upload on the release
> page.
>
> I am not sure yet about how this patch affects the manifest txt
> file. Does this change the structure at all or just the Source field
> for each recipe?
Yes, this change only affects the source field of each recipe/package listed
in the manifest.
> If the change really is significant, I will be creating a build with
> this patch and get back to you if i have concerns.
Please let us know if this is a showstopper.
--
Denys
next prev parent reply other threads:[~2023-07-11 17:21 UTC|newest]
Thread overview: 12+ messages / expand[flat|nested] mbox.gz Atom feed top
2023-07-06 21:23 [kirkstone][PATCH 0/6] Rework secondary toolchain for K3R5 Denys Dmytriyenko
2023-07-06 21:23 ` [kirkstone][PATCH 1/6] recipe-data: deprecate Denys Dmytriyenko
2023-07-10 12:11 ` [EXTERNAL] [meta-arago] " Aniket Limaye
2023-07-11 17:21 ` Denys Dmytriyenko [this message]
2023-07-06 21:23 ` [kirkstone][PATCH 2/6] tisdk-core-bundle: simplify toolchain/SDK selection Denys Dmytriyenko
2023-07-06 21:23 ` [kirkstone][PATCH 3/6] meta-arago-distro: remove old secondary toolchain support Denys Dmytriyenko
2023-07-06 21:23 ` [kirkstone][PATCH 4/6] meta-arago: remove external " Denys Dmytriyenko
2023-07-06 21:23 ` [kirkstone][PATCH 5/6] meta-arago: remove extra plumbing for internal toolchain Denys Dmytriyenko
2023-08-11 11:30 ` [EXTERNAL] [meta-arago] " Aniket Limaye
2023-08-14 19:25 ` Denys Dmytriyenko
2023-08-17 10:47 ` Aniket Limaye
2023-07-06 21:23 ` [kirkstone][PATCH 6/6] tisdk-bundle: package up secondary K3R5 toolchain Denys Dmytriyenko
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20230711172127.GL1518@denix.org \
--to=denis@denix.org \
--cc=a-limaye@ti.com \
--cc=c-shilwant@ti.com \
--cc=denys@konsulko.com \
--cc=g-gupta@ti.com \
--cc=meta-arago@lists.yoctoproject.org \
--cc=r-ravikumar@ti.com \
--cc=s-adivi@ti.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.