summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* systemd: fix systemd-udev-hwdb-update serviceChenQi/systemd-udev-hwdb-updateChen Qi2014-10-241-3/+15
| | | | | | | | | | | | | | | | | | | | | The new version of systemd has implemented the following feature. Opointer.de/blog/projects/stateless.html As a result, the systemd-udev-hwdb-update.service would always run at first boot. This will cause failure if the target device doesn't have enough storage space. Besides, as we run `udevadm hwdb --update' as a postinst of udev-hwdb at rootfs time, there's no need to run this again at system start-up. The purpose of this patch is as follows. If `udev hwdb --update' fails at rootfs time, systemd-udev-hwdb-update.service is executed at first boot; otherwise, the service is not executed. This patch achieves the above goal by setting CondistonNeedsUpdate to "/etc/udev" in the service file, and creating /etc/udev/.updated file if the postinst succeeds. Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
* build-appliance-image: Update to dizzy head revisionRichard Purdie2014-10-181-1/+1
| | | | Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gst-ffmpeg: Security Advisory - ffmpeg - CVE-2013-0869Yue Tao2014-10-182-0/+34
| | | | | | | | | | | | The field_end function in libavcodec/h264.c in FFmpeg before 1.1.2 allows remote attackers to have an unspecified impact via crafted H.264 data, related to an SPS and slice mismatch and an out-of-bounds array access. http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0869 Signed-off-by: Yue Tao <Yue.Tao@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com>
* gst-ffmpeg: Security Advisory - ffmpeg - CVE-2013-4358Yue Tao2014-10-182-0/+146
| | | | | | | | | | | libavcodec/h264.c in FFmpeg before 0.11.4 allows remote attackers to cause a denial of service (crash) via vectors related to alternating bit depths in H.264 data. http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-4358 Signed-off-by: Yue Tao <Yue.Tao@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com>
* mtools: fix broken /usr/bin/lzWenlin Kang2014-10-182-1/+26
| | | | | | | | | | | | | | | | | | | | When build fs with mtools-3.9.9, has file /usr/bin/lz in rootfs, it is the symlink to uz: root@qemu3:~# /usr/bin/lz -sh: /usr/bin/lz: No such file or directory $root@qemu3:~# ls -l /usr/bin/lz lrwxrwxrwx 1 root root 2 Jul 18 18:07 /usr/bin/lz -> uz root@qemu3:~# uz -sh: uz: command not found But the uz isn't actually exist, so the result is that lz is a broken symlink. The root cause is that uz hasn't been installed when install-scripts. Signed-off-by: Wenlin Kang <wenlin.kang@windriver.com> Signed-off-by: Jackie Huang <jackie.huang@windriver.com>
* gnupg_1.4.7: add package config libusbKai Kang2014-10-181-0/+1
| | | | | | | | | | If build gnupg 1.4.7 after libusb-compat, it shows warning: WARNING: QA Issue: gnupg rdepends on libusb-compat, but it isn't a build dependency? [build-deps] Add package config libusb to fix it. Signed-off-by: Kai Kang <kai.kang@windriver.com>
* openssl: upgrade to 1.0.1jRoss Burton2014-10-181-2/+2
| | | | Signed-off-by: Ross Burton <ross.burton@intel.com>
* readline: Security Advisory - readline - CVE-2014-2524Kai Kang2014-10-182-0/+45
| | | | | | | | | | | The _rl_tropen function in util.c in GNU readline before 6.3 patch 3 allows local users to create or overwrite arbitrary files via a symlink attack on a /var/tmp/rltrace.[PID] file. http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-2524 Signed-off-by: Yue Tao <Yue.Tao@windriver.com> Signed-off-by: Kai Kang <kai.kang@windriver.com>
* gnupg: CVE-2013-4242Kai Kang2014-10-182-0/+63
| | | | | | | | | | | | | GnuPG before 1.4.14, and Libgcrypt before 1.5.3 as used in GnuPG 2.0.x and possibly other products, allows local users to obtain private RSA keys via a cache side-channel attack involving the L3 cache, aka Flush+Reload. Patch from commit e2202ff2b704623efc6277fb5256e4e15bac5676 in git://git.gnupg.org/libgcrypt.git Signed-off-by: Yong Zhang <yong.zhang@windriver.com> Signed-off-by: Kai Kang <kai.kang@windriver.com>
* sstate.bbclass: Fix up white space lost in last commit.Peter Urbanec2014-10-181-20/+20
| | | | | | | | Commit e9672387 split one long line into a multi-line string, but in the process white space between words was lost. This results in badly formatted output when this message is printed. Signed-off-by: Peter Urbanec <openembedded-devel@urbanec.net>
* sstate.bbclass: specify func dirs for sstate_hardcode_pathWenzong Fan2014-10-181-0/+5
| | | | | | | | | | | | | | | | | | For some recipes that inhrient cmake, the ${B} may be removed by cmake_do_configure() while sstate_hardcode_path() running, this causes build errors: Exception: OSError: [Errno 2] No such file or directory: \ '/path/to/build' The function sstate_hardcode_path() called command: $SSTATE_SCAN_CMD which extended as "find ${SSTATE_BUILDDIR} ..." So the proper function dirs could be ${SSTATE_BUILDDIR}. Signed-off-by: Wenzong Fan <wenzong.fan@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com>
* file: add wrapper to nativesdk-fileHongxu Jia2014-10-181-0/+5
| | | | | | | | | | | | | | | "file" command in exported SDK doesn't work: ... $ file sysroots/ file: could not find any valid magic files! ... In oe-core commit 68d548cbae729eaea8ce1403dc95ff63c4a7375c, it added wrapper to file-native. Do the same thing for nativesdk-file. Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com>
* openssh: avoid screen sessions being killed on disconnect with systemdPaul Eggleton2014-10-181-0/+1
| | | | | | | | | | | | Tell systemd just to kill the sshd process when the ssh connection drops instead of the entire cgroup for sshd, so that any screen sessions (and more to the point, processes within them) do not get killed. (This is what the Fedora sshd service file does, and what we're already doing in the dropbear service file). Signed-off-by: Paul Eggleton <paul.eggleton@linux.intel.com> Signed-off-by: Ross Burton <ross.burton@intel.com>
* python: force off_t size to 8 to enable large file supportPaul Eggleton2014-10-181-0/+3
| | | | | | | | | | | | If DISTRO_FEATURES contains "largefile", force the size of off_t to 8 as a workaround for having ac_cv_sizeof_off_t=4 on 32-bit systems. In future we will likely drop the value from the site file, but for now this is a slightly safer fix. Fixes [YOCTO #6813]. Signed-off-by: Paul Eggleton <paul.eggleton@linux.intel.com> Signed-off-by: Ross Burton <ross.burton@intel.com>
* wic/bootimg-pcbios.py: checking the existance of syslinuxHongxu Jia2014-10-181-1/+10
| | | | | | | | | | | | | | | | | | | | | While syslinux not existed in $bootimg_dir, there was a error: $ wic create directdisk -e core-image-minimal ... |Creating image(s)... |Error: exec_cmd: install -m 444 /home/jiahongxu/yocto/ build-20141010-yocto/tmp/deploy/images/qemux86-64/syslinux/ ldlinux.sys /var/tmp/wic/build/hdd/boot/ldlinux.sys returned '1' instead of 0 ... Add checking for the existance of syslinux to fix this issue. If syslinux didn't exist in anywhere, prompt user to build it. [YOCTO #6826] Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com>
* build-appliance-image: Update to dizzy head revisionRichard Purdie2014-10-111-1/+1
| | | | Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gcc: backport patch for gcc bug 61144Saul Wold2014-10-112-0/+32
| | | | | | | | | | | | This fixes gcc bug 6144, which in my case exhibited itself as a kernel module that failed to load. This was because static platform_data structures were being corrupted with the optimiser being set to any value other than -O0. Originally-submitted-by: Peter Urbanec <openembedded-devel@urbanec.net> Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* package_deb: skip pre/postrm scripts on upgrade, write only one shebangAndreas Oberritter2014-10-111-2/+15
| | | | | | | | | | | | | | Trying to upgrade busybox removing symlinks but update-alternatives need these links (sed, cut, tail, etc) in order to work. Adding test to avoid this scripts on upgrade fix the problem, same solution are found in package_rpm class. [YOCTO #6768] Signed-off-by: Andreas Oberritter <obi@opendreambox.org> Signed-off-by: Aníbal Limón <anibal.limon@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* mesa_git.bb: Fix fetch and license errors.Randy Witt2014-10-111-3/+2
| | | | | | | | Without these changes mesa_git.bb can't be enabled as the PREFERRED_VERSION due to build breakage. Signed-off-by: Randy Witt <randy.e.witt@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* build-appliance-image: Update to dizzy head revisionRichard Purdie2014-10-101-1/+1
| | | | Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* package_do_shlibs: Look for provider in the path thats in shlib_provider ↵Khem Raj2014-10-101-1/+4
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | dictionary shlib2 code puts the information about path where a provider will be found. e.g. {'/usr/lib/llvm3.3': ('libllvm3.3-llvm-3.3', '3.3')} This is obtained from new shlib2 pkgdata from llvm3.3/3.3-r0/pkgdata/shlibs2/libllvm3.3-llvm-3.3.list However when we search for NEEDED libraries we ignore the key above which is the path where the provider library is installed and instead just seach in libdir and base_libdir and hence libraries which are not in above standard search paths gets ignored even if they appear in DT_NEEDED sections and a note is emitted NOTE: Couldn't find shared library provider for libLLVM-3.3.so, used by files: .... IMO this note should actually become an error since if we do not have all DT_NEEDED libraries in image the system is dysfunctional. This patch extracts this libpath from key and add it to seach paths when looing for a provider of a shared library [YOCTO #6798] Change-Id: Ie5f08632e37ba8d3439c8aaae33bc68b8996792f Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* build-appliance-image: Update to dizzy head revisionRichard Purdie2014-10-101-1/+1
| | | | Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* build-appliance-image: Update to dizzy head revisionRichard Purdie2014-10-101-1/+1
| | | | Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* ncurses: enable-pc-files requires PKG_CONFIG_LIBDIR existedRobert Yang2014-10-101-0/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | Fixed ncurses.do_configure: configure: WARNING: did not find library /path/to/tmp/sysroots/qemuarm/usr/lib/pkgconfig And then anyone requires ncurses.pc will fail. The configure.in checks: [snip] if test -n "$PKG_CONFIG_LIBDIR" && test -d "$PKG_CONFIG_LIBDIR" ; then [snip] Create PKG_CONFIG_LIBDIR in do_configure will fix the problem. We can reproduce the problem by: Set SSTATE_DIR=/path/to/sstate-cache 1) In build1, make sure everything is ready in SSTATE_DIR $ bitbake ncurses 2) In build2, rebuild ncurses only: $ bitbake ncurses -ccleansstate && bitbake ncurses Then we will see the warning in log.do_configure. Signed-off-by: Robert Yang <liezhi.yang@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* glibc: remove bad patch snippet that eglibc forward portedSaul Wold2014-10-101-54/+0
| | | | | | | | | | | The s_sin.c patch undoes some code changes in glibc itself, these changes have nothing to do with the option groups and I suspect crept in as part of the initial conversion. Undoing this patch also fixes a test failure in test-double and test-idouble. [YOCTO #6808] Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* toolchains-scripts: Add support for target environment scriptsRichard Purdie2014-10-101-0/+5
| | | | | | | | In a similar way to the previous script which adds support for native environment scripts, this adds support for target environment scripts too. Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* sdk.py: fix write target sdk manifest failed based on ipkHongxu Jia2014-10-101-1/+1
| | | | | | | | | | | | | | | bitbake meta-toolchain ls tmp/deploy/sdk/poky-glibc-x86_64-meta-toolchain-i586-toolchain-1.7.manifest -al ... |-rw-rw-r-- 1 root root 0 Oct 10 15:05 tmp/deploy/sdk/poky-glibc-x86_64- meta-toolchain-i586-toolchain-1.7.manifest ... The manifest is empty, the reason is target's ipk config path is d.getVar('IPKGCONF_TARGET') rather than d.getVar('IPKGCONF_Target') Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* wpa-supplicant: fix for rebuildRobert Yang2014-10-101-0/+2
| | | | | | | | | | | Fixed when rebuild: make: *** No rule to make target `/path/to/old//sysroots/qemux86-64/usr/lib/dbus-1.0/include/dbus/dbus-arch-deps.h', needed by `dbus/dbus_old.o'. Stop. The .d files save the path of the dependencies files which may not exist when rebuild, we can remove them to make the rebuild work. Signed-off-by: Robert Yang <liezhi.yang@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* git: fix do_install errorRobert Yang2014-10-101-2/+5
| | | | | | | | | | Fixed when MACHINE = qemux86-64 and libdir = /usr/lib64: mv: cannot stat `/path/to/image/usr/lib64/perl-native/perl': No such file or directory The perl-native files are always installed to /usr/lib on both 32/64 bits targets. Signed-off-by: Robert Yang <liezhi.yang@windriver.com>
* avahi-ui: fix for building systemd with multilibRobert Yang2014-10-101-1/+5
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Fixed: MACHINE = "qemux86-64" VIRTUAL-RUNTIME_init_manager = " systemd " DISTRO_FEATURES_append = " systemd" DISTRO_FEATURES_BACKFILL_CONSIDERED += " sysvinit " require conf/multilib.conf MULTILIBS = "multilib:lib32" DEFAULTTUNE_virtclass-multilib-lib32 = "x86" $ bitbake avahi avahi-ui ERROR: QA Issue: avahi-ui: Files/directories were installed but not shipped /lib /lib/systemd /lib/systemd/system /lib/systemd/system/avahi-daemon.socket /lib/systemd/system/avahi-dnsconfd.service /lib/systemd/system/avahi-daemon.service [installed-vs-shipped] ERROR: The recipe avahi-ui is trying to install files into a sharedarea when those files already exist. Those files and their manifestlocation are: /path/to/sysroots/qemux86-64/lib/systemd/system/avahi-daemon.socket Matched in manifest-qemux86-64-avahi.populate_sysroot /path/to/sysroots/qemux86-64/lib/systemd/system/avahi-dnsconfd.service Matched in manifest-qemux86-64-avahi.populate_sysroot /path/to/sysroots/qemux86-64/lib/systemd/system/avahi-daemon.service Matched in manifest-qemux86-64-avahi.populate_sysroot Please verify which recipe should provide theabove files. And remove the duplicated line: rm ${D}${base_libdir} -rf Signed-off-by: Robert Yang <liezhi.yang@windriver.com>
* nss-myhostname: skip it when systemdRobert Yang2014-10-101-1/+4
| | | | | | | | | | Fixed error when systemd is in DISTRO_FEATURES: ERROR: The recipe systemd is trying to install files into a sharedarea when those files already exist. Those files and their manifestlocation are: /path/to/sysroots/qemux86/usr/lib/libnss_myhostname.so.2 Matched in manifest-qemux86-nss-myhostname.populate_sysroot Please verify which recipe should provide theabove files. Signed-off-by: Robert Yang <liezhi.yang@windriver.com>
* rpcbind: make service socket activatedChen Qi2014-10-103-8/+14
| | | | | | | Instead of setting 'Restart=always' in the service file, we should make the service socket activated, just like what Fedora does. Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
* sstate.bbclass: split the too long lineRobert Yang2014-10-101-1/+22
| | | | | | | | | The too long line would cause "git send-email" report errors: patch contains a line longer than 998 characters Though we can use "--no-validate" to force the send. Signed-off-by: Robert Yang <liezhi.yang@windriver.com>
* sstate.bbclass: the second bb.fatal not workRobert Yang2014-10-101-1/+1
| | | | | | | | | | | The code: bb.fatal("foo1") bb.fatal("foo2") Would make the second one not work, use bb.error for first one to fix the problem. Signed-off-by: Robert Yang <liezhi.yang@windriver.com>
* valgrind: Enforce 30 seconds limit for each testTudor Florea2014-10-101-15/+53
| | | | | Signed-off-by: Tudor Florea <tudor.florea@enea.com> Signed-off-by: Ross Burton <ross.burton@intel.com>
* boost: fix build when ${PARALLEL_MAKE} contains '-l'Enrico Scholz2014-10-101-10/+18
| | | | | | | | | | | The '-l' option which is valid for GNU make (--> limit by load) has a different meaning in bjam (--> limit maximum execution time) and will break very likely the build. Keep only the the '-l' option when passing PARALLEL_MAKE options to bjam. Signed-off-by: Enrico Scholz <enrico.scholz@sigma-chemnitz.de>
* dosfstools: place files in /sbin, not in /usr/sbinEnrico Scholz2014-10-101-1/+1
| | | | | | | | | | | | systemd expects fsck programs to be located in /sbin and fails for dosfstools with | Checking was requested for ..., but /sbin/fsck.vfat cannot be used: No such file or directory Other fsck programs (e.g. ext4) are located in /sbin already so move vfat programs into this directory too. Signed-off-by: Enrico Scholz <enrico.scholz@sigma-chemnitz.de>
* python-pygobject: add libffi to DEPENDSRoss Burton2014-10-101-2/+2
| | | | | | | libffi is generally present as it's also a build dependency on glib-2.0, but explicitly declare it for determinism. Signed-off-by: Ross Burton <ross.burton@intel.com>
* neard: update service fileRoss Burton2014-10-101-3/+3
| | | | | | | | | | | | Update the service file to more closely match the service file that has been committed upstream. In particular we don't want to restart neard on failure (this results in it restarting repeatedly if no NFC hardware is found), redirecting stdout to /dev/null means that any messages are lost instead of being sent to the journal, and the DBus alias is required for bus activation to work correctly. Signed-off-by: Ross Burton <ross.burton@intel.com>
* xserver-xorg: update patch to match upstreamRoss Burton2014-10-101-15/+17
|
* oe-git-proxy: use SOCKS4a instead of SOCKS4Ross Burton2014-10-101-1/+1
| | | | | | | | In some situations where a proxy is required the client can't even do DNS lookups, so instead of using SOCKS4 use SOCKS4a which moves the name resolution from the client to the proxy. Signed-off-by: Ross Burton <ross.burton@intel.com>
* gnome-desktop-testing: Fix build on uclibcKhem Raj2014-10-102-1/+38
| | | | | | | [YOCTO #6577] Change-Id: Ia29fb963a7df4e77504993172f85851e0b540c7e Signed-off-by: Khem Raj <raj.khem@gmail.com>
* curl: add PACKAGECONFIG option to use libssh2Fabrice Coulon2014-10-101-2/+2
| | | | | | | | | | | The user can enable libssh2 via conf/local.conf or custom distro configuration, this will pull in libssh2, which is not used by default. For example, a curl_x.y.z.bbappend file containing the following line: PACKAGECONFIG += "libssh2" Signed-off-by: Fabrice Coulon <fabrice.coulon@axis.com> Signed-off-by: Olof Johansson <olof.johansson@axis.com>
* xserver-xorg: report DRI3 and Present modules as presentRoss Burton2014-10-102-0/+67
| | | | | | | | | | The DRI3 and Present modules are built-in but some drivers (such as xf86-video-intel) want to query their presence. Backport a patch from upstream to stop this causing an error. [ YOCTO #6583 ] Signed-off-by: Ross Burton <ross.burton@intel.com>
* latencytop: Creates x11 PACKAGECONFIG.Noor2014-10-101-2/+6
| | | | | | | * Creates x11 packageconfig and update DEPENDS and EXTRA_OEMAKE_X for better handling. Signed-off-by: Noor Ahsan <noor_ahsan@mentor.com>
* libassuan: fix for rebuildRobert Yang2014-10-101-1/+1
| | | | | | | | | | Fixed when rebuild: rm: cannot remove `/path/to/2.1.2-r0/libassuan-2.1.2/m4/*.m4': No such file or directory The files may not exist when rebuild. Signed-off-by: Robert Yang <liezhi.yang@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* meta-toolchain-qt: Fix environment populationOtavio Salvador2014-10-101-9/+12
| | | | | | | | | | The generation of the environment has change since the change to use a meta-environment canadian package in the OE-Core, the SDK environment setting has been broken. This uses the new subscript environment to fix it. Signed-off-by: Otavio Salvador <otavio@ossystems.com.br> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* toolchain-scripts.bbclass: Allow sourcing of subscript for environmentOtavio Salvador2014-10-101-0/+10
| | | | | | | | | | | | | | | | | Sometimes we require extra environment settings to be available on the environment for proper SDK work. This were done, in past, using '_append' tasks however with the split of the environment in a canadian package this has been broken. The easier and more flexible solution is to use environment subscripts which are sources by the main script. These are now looked at: $OECORE_NATIVE_SYSROOT/environment-setup.d/*.sh and sourced. Signed-off-by: Otavio Salvador <otavio@ossystems.com.br> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* package_ipk.bbclass: Fix SRC_URI whitespace handlingMark Hatle2014-10-061-1/+1
| | | | | | | | | | | | | | | | | The SRC_URI may contain whitespace, but be otherwise empty. This can happen in the case: MYSRC = "" MYSRC_arm = "file://myarm.patch" SRC_URI += "${MYSRC}" Unless we strip blank spaces, to determine if it is empty, we can end up generating a "Source: " line which in invalid. This leads to the error: invalid Source: field is speified in the generated CONTROL file Signed-off-by: Mark Hatle <mark.hatle@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* bash: update and CVE-2014-6278 fixMark Hatle2014-10-062-0/+6
| | | | | | | | Update both bash 3.2.48 (to 57), and bash 4.3 (to 30) to fix the remaining 'shellshock' security issues, CVE-2014-6278. Signed-off-by: Mark Hatle <mark.hatle@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>