From: Steve Sakoman <steve@sakoman.com>
To: openembedded-core@lists.openembedded.org
Subject: [OE-core][scarthgap 00/37] Patch review
Date: Mon, 29 Jul 2024 06:12:10 -0700 [thread overview]
Message-ID: <cover.1722258106.git.steve@sakoman.com> (raw)
Please review this set of changes for scarthgap and have comments back by
end of day Wednesday, July 31
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/7188
with the exception on a failure on the meta-agl-core test due to the
weston version bump (a bug/security fix release):
https://autobuilder.yoctoproject.org/typhoon/#/builders/120/builds/4544/steps/12/logs/stdio
There is already a fix for this in the meta-agl next branch which will need to
be backported.
The following changes since commit c00a9a8f25b0042b0723a5d20b88e92d473d22bf:
insane.bbclass: remove leftover variables and comment (2024-07-22 08:04:58 -0700)
are available in the Git repository at:
https://git.openembedded.org/openembedded-core-contrib stable/scarthgap-nut
https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/scarthgap-nut
Aleksandar Nikolic (1):
cve-check: Introduce CVE_CHECK_MANIFEST_JSON_SUFFIX
Alexander Kanavin (8):
python3: submit deterministic_imports.patch upstream as a ticket
glib-networking: submit eagain.patch upstream
glslang: mark 0001-generate-glslang-pkg-config.patch as Inappropriate
tcp-wrappers: mark all patches as inactive-upstream
automake: mark new_rt_path_for_test-driver.patch as Inappropriate
settings-daemon: submit addsoundkeys.patch upstream and update to a
revision that has it
dpkg: mark patches adding custom non-debian architectures as
inappropriate for upstream
libacpi: mark patches as inactive-upstream
Archana Polampalli (3):
ofono: fix CVE-2023-2794
ffmpeg: fix CVE-2023-49502
ffmpeg: fix CVE-2024-31578
Benjamin Szőke (1):
archiver.bbclass: Fix work-shared checking for kernel recipes
Denys Dmytriyenko (1):
weston: upgrade 13.0.0 -> 13.0.1
Enrico Jörns (1):
wic: bootimg-efi: fix error handling
Etienne Cordonnier (2):
oeqa/runtime: make minidebuginfo test work with coreutils
oeqa/runtime: fix race-condition in minidebuginfo test
Guðni Már Gilbert (2):
pam: Fix for CVE-2024-22365
python3-attrs: drop python3-ctypes from RDEPENDS
Jose Quaresma (4):
oeqa/runtime/scp: requires openssh-sftp-server
openssh: drop rejected patch fixed in 8.6p1 release
openssh: systemd sd-notify patch was rejected upstream
openssh: systemd notification was implemented upstream
Jörg Sommer (1):
classes/kernel: No symlink in postinst without
KERNEL_IMAGETYPE_SYMLINK
Kai Kang (2):
multilib.bbclass: replace deprecated e.data with d
cmake-qemu.bbclass: fix if criterion
Khem Raj (3):
grub,grub-efi: Remove -mfpmath=sse on x86
python3: Treat UID/GID overflow as failure
gawk: Remove References to /usr/local/bin/gawk
Kirill Yatsenko (1):
iptables: fix save/restore symlinks with libnftnl PACKAGECONFIG
enabled
Martin Jansa (1):
selftest: add Upstream-Status to .patch files
Michael Opdenacker (1):
maintainers.inc: update self e-mail address
Richard Purdie (1):
oeqa/sdk/case: Ensure DL_DIR is populated with artefacts if used
Ross Burton (1):
gawk: update patch status
Soumya Sambu (1):
python3-idna: upgrade 3.6 -> 3.7
Trevor Gamblin (2):
python3: skip test_concurrent_futures/test_deadlock
python3: skip test_multiprocessing/test_active_children test
.../hello-rs/0001-Greet-OE-Core.patch | 2 +-
.../devtool-patch-overrides/qemuarm/arm.patch | 2 +
.../devtool-patch-overrides/qemux86/x86.patch | 2 +
.../devtool-test-ignored.patch | 2 +
.../devtool-test-ignored.patch.expected | 1 +
...nly-if-devtool-lets-me-to-do-it-corr.patch | 2 +
...vtool-lets-me-to-do-it-corr.patch.expected | 1 +
...d-a-note-line-to-the-quick-reference.patch | 2 +
.../backported.patch | 2 +
.../gitrepotest/0001-testpatch.patch | 2 +
.../man-db/files/0001-Test-patch-here.patch | 2 +
.../recipetool/files/add-file.patch | 2 +
meta/classes-recipe/cmake-qemu.bbclass | 2 +-
meta/classes-recipe/kernel.bbclass | 6 +-
meta/classes/archiver.bbclass | 3 +-
meta/classes/cve-check.bbclass | 6 +-
meta/classes/multilib.bbclass | 87 +++----
meta/classes/multilib_global.bbclass | 25 +-
meta/conf/distro/include/maintainers.inc | 22 +-
meta/lib/oeqa/runtime/cases/scp.py | 2 +-
meta/lib/oeqa/runtime/cases/systemd.py | 20 +-
meta/lib/oeqa/sdk/case.py | 9 +-
meta/recipes-bsp/grub/grub2.inc | 4 +
...1-libacpi-Fix-build-witth-fno-commom.patch | 2 +-
meta/recipes-bsp/libacpi/files/ldflags.patch | 3 +-
.../libacpi/files/libacpi_fix_for_x32.patch | 2 +-
.../libacpi/files/makefile-fix.patch | 2 +-
...e_correct_strip_in_cross_environment.patch | 2 +-
.../ofono/ofono/CVE-2023-2794-0001.patch | 38 +++
.../ofono/ofono/CVE-2023-2794-0002.patch | 33 +++
.../ofono/ofono/CVE-2023-2794-0003.patch | 45 ++++
.../ofono/ofono/CVE-2023-2794-0004.patch | 128 ++++++++++
meta/recipes-connectivity/ofono/ofono_2.4.bb | 4 +
...-notify-systemd-on-listen-and-reload.patch | 225 ++++++++++++++++++
...tional-support-for-systemd-sd_notify.patch | 99 --------
...igned-overflow-in-pointer-arithmatic.patch | 111 ---------
.../openssh/openssh/sshd.service | 2 +-
.../openssh/openssh_9.6p1.bb | 5 +-
.../glib-networking/eagain.patch | 2 +-
.../new_rt_path_for_test-driver.patch | 2 +-
.../0001-Add-support-for-riscv32-CPU.patch | 2 +-
.../0001-dpkg-Support-muslx32-build.patch | 2 +-
...add-musleabi-to-known-target-tripets.patch | 2 +-
.../dpkg/dpkg/add_armeb_triplet_entry.patch | 2 +-
meta/recipes-devtools/dpkg/dpkg/arch_pm.patch | 2 +-
.../python/python3-attrs_23.2.0.bb | 1 -
...ython3-idna_3.6.bb => python3-idna_3.7.bb} | 4 +-
...e-treat-overflow-in-UID-GID-as-failu.patch | 40 ++++
...ctive_children-skip-problematic-test.patch | 30 +++
...-test_deadlock-skip-problematic-test.patch | 30 +++
.../python3/deterministic_imports.patch | 2 +-
.../recipes-devtools/python/python3_3.12.4.bb | 3 +
...001-m4-readline-add-missing-includes.patch | 2 +-
meta/recipes-extended/gawk/gawk_5.3.0.bb | 2 +
.../iptables/iptables_1.8.10.bb | 2 +
.../pam/libpam/CVE-2024-22365.patch | 65 +++++
meta/recipes-extended/pam/libpam_1.5.3.bb | 1 +
.../0001-Fix-build-with-clang.patch | 2 +-
...plicit-function-declaration-warnings.patch | 2 +-
...0001-Remove-fgets-extern-declaration.patch | 2 +-
.../tcp-wrappers-7.6/00_man_quoting.diff | 2 +-
.../tcp-wrappers-7.6/01_man_portability.patch | 2 +-
.../05_wildcard_matching.patch | 2 +-
.../06_fix_gethostbyname.patch | 2 +-
.../tcp-wrappers-7.6/10_usagi-ipv6.patch | 2 +-
.../tcp-wrappers-7.6/11_tcpd_blacklist.patch | 2 +-
.../tcp-wrappers-7.6/11_usagi_fix.patch | 2 +-
.../tcp-wrappers-7.6/12_makefile_config.patch | 2 +-
.../tcp-wrappers-7.6/13_shlib_weaksym.patch | 2 +-
.../tcp-wrappers-7.6/14_cidr_support.patch | 2 +-
.../tcp-wrappers-7.6/15_match_clarify.patch | 2 +-
.../tcp-wrappers-7.6/expand_remote_port.patch | 2 +-
.../tcp-wrappers-7.6/fix_warnings.patch | 2 +-
.../tcp-wrappers-7.6/fix_warnings2.patch | 2 +-
.../tcp-wrappers-7.6/have_strerror.patch | 2 +-
.../tcp-wrappers-7.6/ldflags.patch | 2 +-
.../makefile-fix-parallel.patch | 2 +-
.../tcp-wrappers-7.6/man_fromhost.patch | 2 +-
.../tcp-wrappers-7.6/musl-decls.patch | 2 +-
.../rename_strings_variable.patch | 2 +-
.../tcp-wrappers-7.6/restore_sigalarm.patch | 2 +-
.../tcp-wrappers/tcp-wrappers-7.6/rfc931.diff | 2 +-
.../tcp-wrappers-7.6/safe_finger.patch | 2 +-
.../tcp-wrappers-7.6/sig_fix.patch | 2 +-
.../tcp-wrappers-7.6/siglongjmp.patch | 2 +-
.../tcp-wrappers-7.6/socklen_t.patch | 2 +-
.../tcp-wrappers-7.6/tcpdchk_libwrapped.patch | 2 +-
.../0001-generate-glslang-pkg-config.patch | 2 +-
...Include-libgen.h-for-basename-signat.patch | 13 +-
.../{weston_13.0.0.bb => weston_13.0.1.bb} | 2 +-
.../ffmpeg/ffmpeg/CVE-2023-49502.patch | 107 +++++++++
.../ffmpeg/ffmpeg/CVE-2024-31578.patch | 49 ++++
.../recipes-multimedia/ffmpeg/ffmpeg_6.1.1.bb | 2 +
.../settings-daemon/files/addsoundkeys.patch | 49 ----
.../settings-daemon/settings-daemon_0.0.2.bb | 8 +-
scripts/lib/wic/plugins/source/bootimg-efi.py | 4 +-
96 files changed, 990 insertions(+), 411 deletions(-)
create mode 100644 meta/recipes-connectivity/ofono/ofono/CVE-2023-2794-0001.patch
create mode 100644 meta/recipes-connectivity/ofono/ofono/CVE-2023-2794-0002.patch
create mode 100644 meta/recipes-connectivity/ofono/ofono/CVE-2023-2794-0003.patch
create mode 100644 meta/recipes-connectivity/ofono/ofono/CVE-2023-2794-0004.patch
create mode 100644 meta/recipes-connectivity/openssh/openssh/0001-notify-systemd-on-listen-and-reload.patch
delete mode 100644 meta/recipes-connectivity/openssh/openssh/0001-systemd-Add-optional-support-for-systemd-sd_notify.patch
delete mode 100644 meta/recipes-connectivity/openssh/openssh/fix-potential-signed-overflow-in-pointer-arithmatic.patch
rename meta/recipes-devtools/python/{python3-idna_3.6.bb => python3-idna_3.7.bb} (62%)
create mode 100644 meta/recipes-devtools/python/python3/0001-gh-107811-tarfile-treat-overflow-in-UID-GID-as-failu.patch
create mode 100644 meta/recipes-devtools/python/python3/0001-test_active_children-skip-problematic-test.patch
create mode 100644 meta/recipes-devtools/python/python3/0001-test_deadlock-skip-problematic-test.patch
create mode 100644 meta/recipes-extended/pam/libpam/CVE-2024-22365.patch
rename meta/recipes-graphics/wayland/{weston_13.0.0.bb => weston_13.0.1.bb} (98%)
create mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2023-49502.patch
create mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2024-31578.patch
delete mode 100644 meta/recipes-sato/settings-daemon/files/addsoundkeys.patch
--
2.34.1
next reply other threads:[~2024-07-29 13:12 UTC|newest]
Thread overview: 38+ messages / expand[flat|nested] mbox.gz Atom feed top
2024-07-29 13:12 Steve Sakoman [this message]
2024-07-29 13:12 ` [OE-core][scarthgap 01/37] ofono: fix CVE-2023-2794 Steve Sakoman
2024-07-29 13:12 ` [OE-core][scarthgap 02/37] ffmpeg: fix CVE-2023-49502 Steve Sakoman
2024-07-29 13:12 ` [OE-core][scarthgap 03/37] ffmpeg: fix CVE-2024-31578 Steve Sakoman
2024-07-29 13:12 ` [OE-core][scarthgap 04/37] pam: Fix for CVE-2024-22365 Steve Sakoman
2024-07-29 13:12 ` [OE-core][scarthgap 05/37] cve-check: Introduce CVE_CHECK_MANIFEST_JSON_SUFFIX Steve Sakoman
2024-07-29 13:12 ` [OE-core][scarthgap 06/37] weston: upgrade 13.0.0 -> 13.0.1 Steve Sakoman
2024-07-29 13:12 ` [OE-core][scarthgap 07/37] python3-idna: upgrade 3.6 -> 3.7 Steve Sakoman
2024-07-29 13:12 ` [OE-core][scarthgap 08/37] oeqa/runtime: make minidebuginfo test work with coreutils Steve Sakoman
2024-07-29 13:12 ` [OE-core][scarthgap 09/37] wic: bootimg-efi: fix error handling Steve Sakoman
2024-07-29 13:12 ` [OE-core][scarthgap 10/37] multilib.bbclass: replace deprecated e.data with d Steve Sakoman
2024-07-29 13:12 ` [OE-core][scarthgap 11/37] gawk: update patch status Steve Sakoman
2024-07-29 13:12 ` [OE-core][scarthgap 12/37] maintainers.inc: update self e-mail address Steve Sakoman
2024-07-29 13:12 ` [OE-core][scarthgap 13/37] cmake-qemu.bbclass: fix if criterion Steve Sakoman
2024-07-29 13:12 ` [OE-core][scarthgap 14/37] iptables: fix save/restore symlinks with libnftnl PACKAGECONFIG enabled Steve Sakoman
2024-07-29 13:12 ` [OE-core][scarthgap 15/37] selftest: add Upstream-Status to .patch files Steve Sakoman
2024-07-29 13:12 ` [OE-core][scarthgap 16/37] grub,grub-efi: Remove -mfpmath=sse on x86 Steve Sakoman
2024-07-29 13:12 ` [OE-core][scarthgap 17/37] python3: Treat UID/GID overflow as failure Steve Sakoman
2024-07-29 13:12 ` [OE-core][scarthgap 18/37] python3: skip test_concurrent_futures/test_deadlock Steve Sakoman
2024-07-29 13:12 ` [OE-core][scarthgap 19/37] python3: skip test_multiprocessing/test_active_children test Steve Sakoman
2024-07-29 13:12 ` [OE-core][scarthgap 20/37] oeqa/sdk/case: Ensure DL_DIR is populated with artefacts if used Steve Sakoman
2024-07-29 13:12 ` [OE-core][scarthgap 21/37] gawk: Remove References to /usr/local/bin/gawk Steve Sakoman
2024-07-29 13:12 ` [OE-core][scarthgap 22/37] archiver.bbclass: Fix work-shared checking for kernel recipes Steve Sakoman
2024-07-29 13:12 ` [OE-core][scarthgap 23/37] classes/kernel: No symlink in postinst without KERNEL_IMAGETYPE_SYMLINK Steve Sakoman
2024-07-29 13:12 ` [OE-core][scarthgap 24/37] oeqa/runtime: fix race-condition in minidebuginfo test Steve Sakoman
2024-07-29 13:12 ` [OE-core][scarthgap 25/37] python3: submit deterministic_imports.patch upstream as a ticket Steve Sakoman
2024-07-29 13:12 ` [OE-core][scarthgap 26/37] glib-networking: submit eagain.patch upstream Steve Sakoman
2024-07-29 13:12 ` [OE-core][scarthgap 27/37] glslang: mark 0001-generate-glslang-pkg-config.patch as Inappropriate Steve Sakoman
2024-07-29 13:12 ` [OE-core][scarthgap 28/37] tcp-wrappers: mark all patches as inactive-upstream Steve Sakoman
2024-07-29 13:12 ` [OE-core][scarthgap 29/37] automake: mark new_rt_path_for_test-driver.patch as Inappropriate Steve Sakoman
2024-07-29 13:12 ` [OE-core][scarthgap 30/37] settings-daemon: submit addsoundkeys.patch upstream and update to a revision that has it Steve Sakoman
2024-07-29 13:12 ` [OE-core][scarthgap 31/37] dpkg: mark patches adding custom non-debian architectures as inappropriate for upstream Steve Sakoman
2024-07-29 13:12 ` [OE-core][scarthgap 32/37] libacpi: mark patches as inactive-upstream Steve Sakoman
2024-07-29 13:12 ` [OE-core][scarthgap 33/37] python3-attrs: drop python3-ctypes from RDEPENDS Steve Sakoman
2024-07-29 13:12 ` [OE-core][scarthgap 34/37] oeqa/runtime/scp: requires openssh-sftp-server Steve Sakoman
2024-07-29 13:12 ` [OE-core][scarthgap 35/37] openssh: drop rejected patch fixed in 8.6p1 release Steve Sakoman
2024-07-29 13:12 ` [OE-core][scarthgap 36/37] openssh: systemd sd-notify patch was rejected upstream Steve Sakoman
2024-07-29 13:12 ` [OE-core][scarthgap 37/37] openssh: systemd notification was implemented upstream Steve Sakoman
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=cover.1722258106.git.steve@sakoman.com \
--to=steve@sakoman.com \
--cc=openembedded-core@lists.openembedded.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox