Date
1 - 6 of 6
[kirkstone 00/27] Patch review
|
Steve Sakoman
Please review this set of patches for kirkstone and have comments back by
end of day Friday. Passed a-full on autobuilder: https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/3547 The following changes since commit d2ba3b8850d461bc7b773240cdf15b22b31a3f9e: lua: fix CVE-2022-28805 (2022-04-19 14:02:08 +0100) are available in the Git repository at: git://git.openembedded.org/openembedded-core-contrib stable/kirkstone-nut http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/kirkstone-nut Alexander Kanavin (1): webkitgtk: adjust patch status Davide Gardenal (1): create-spdx: fix error when symlink cannot be created Ferry Toth (2): apt: add apt selftest to test signed package feeds package_manager: fix missing dependency on gnupg when signing deb package feeds Jon Mason (1): qemuarm64: use virtio pci interfaces Kai Kang (1): update_udev_hwdb: fix multilib issue with systemd Khem Raj (5): babeltrace: Disable warnings as errors xserver-xorg: Fix build with gcc12 systemtap: Fix build with gcc-12 gnupg: Disable FORTIFY_SOURCES on mips mdadm: Drop clang specific cflags Konrad Weihmann (2): git: correct license ncurses: use COPYING file Martin Jansa (1): systemd-boot: remove outdated EFI_LD comment Paulo Neves (1): selftest/lic_checksum: Add test for filename containing space Peter Kjellerstedt (2): u-boot: Correct the SRC_URI u-boot: Inherit pkgconfig Richard Purdie (1): buildtools-tarball: Only add cert envvars if certs are included Ross Burton (1): zlib: upgrade to 1.2.12 wangmy (5): linux-firmware: upgrade 20220310 -> 20220411 libsoup: upgrade 3.0.5 -> 3.0.6 apt: upgrade 2.4.3 -> 2.4.4 libusb1: upgrade 1.0.25 -> 1.0.26 libgit2: upgrade 1.4.2 -> 1.4.3 zhengruoqin (3): wireless-regdb: upgrade 2022.02.18 -> 2022.04.08 git: upgrade 2.35.2 -> 2.35.3 ruby: upgrade 3.1.1 -> 3.1.2 meta/classes/create-spdx.bbclass | 10 +- meta/classes/sign_package_feed.bbclass | 1 + meta/conf/machine/qemuarm64.conf | 8 +- meta/lib/oeqa/runtime/cases/apt.py | 38 +- meta/lib/oeqa/selftest/cases/lic_checksum.py | 18 + meta/lib/oeqa/selftest/cases/runtime_test.py | 38 ++ meta/recipes-bsp/u-boot/u-boot-common.inc | 6 +- meta/recipes-core/meta/buildtools-tarball.bb | 6 +- meta/recipes-core/ncurses/ncurses.inc | 2 +- .../systemd/systemd-boot_250.4.bb | 1 - meta/recipes-core/systemd/systemd_250.4.bb | 5 - meta/recipes-core/udev/eudev_3.2.10.bb | 4 - ...configure-Pass-LDFLAGS-to-link-tests.patch | 25 +- .../zlib/zlib/CVE-2018-25032.patch | 347 ------------------ meta/recipes-core/zlib/zlib/cc.patch | 27 ++ .../zlib/{zlib_1.2.11.bb => zlib_1.2.12.bb} | 7 +- .../apt/{apt_2.4.3.bb => apt_2.4.4.bb} | 2 +- .../git/{git_2.35.2.bb => git_2.35.3.bb} | 15 +- .../ruby/{ruby_3.1.1.bb => ruby_3.1.2.bb} | 2 +- meta/recipes-extended/mdadm/mdadm_4.2.bb | 2 - .../0001-render-Fix-build-with-gcc-12.patch | 90 +++++ .../xorg-xserver/xserver-xorg_21.1.3.bb | 1 + ...20220310.bb => linux-firmware_20220411.bb} | 4 +- .../recipes-kernel/lttng/babeltrace2_2.0.4.bb | 2 +- ...ility-re-tweak-for-rhel6-use-functio.patch | 49 +++ .../recipes-kernel/systemtap/systemtap_git.bb | 3 +- ....02.18.bb => wireless-regdb_2022.04.08.bb} | 2 +- ...spection.cmake-prefix-variables-obta.patch | 5 +- meta/recipes-support/gnupg/gnupg_2.3.4.bb | 3 + .../{libgit2_1.4.2.bb => libgit2_1.4.3.bb} | 2 +- .../{libsoup_3.0.5.bb => libsoup_3.0.6.bb} | 2 +- .../{libusb1_1.0.25.bb => libusb1_1.0.26.bb} | 2 +- scripts/postinst-intercepts/update_udev_hwdb | 5 +- 33 files changed, 322 insertions(+), 412 deletions(-) delete mode 100644 meta/recipes-core/zlib/zlib/CVE-2018-25032.patch create mode 100644 meta/recipes-core/zlib/zlib/cc.patch rename meta/recipes-core/zlib/{zlib_1.2.11.bb => zlib_1.2.12.bb} (83%) rename meta/recipes-devtools/apt/{apt_2.4.3.bb => apt_2.4.4.bb} (97%) rename meta/recipes-devtools/git/{git_2.35.2.bb => git_2.35.3.bb} (86%) rename meta/recipes-devtools/ruby/{ruby_3.1.1.bb => ruby_3.1.2.bb} (97%) create mode 100644 meta/recipes-graphics/xorg-xserver/xserver-xorg/0001-render-Fix-build-with-gcc-12.patch rename meta/recipes-kernel/linux-firmware/{linux-firmware_20220310.bb => linux-firmware_20220411.bb} (99%) create mode 100644 meta/recipes-kernel/systemtap/systemtap/0001-gcc12-c-compatibility-re-tweak-for-rhel6-use-functio.patch rename meta/recipes-kernel/wireless-regdb/{wireless-regdb_2022.02.18.bb => wireless-regdb_2022.04.08.bb} (94%) rename meta/recipes-support/libgit2/{libgit2_1.4.2.bb => libgit2_1.4.3.bb} (91%) rename meta/recipes-support/libsoup/{libsoup_3.0.5.bb => libsoup_3.0.6.bb} (94%) rename meta/recipes-support/libusb/{libusb1_1.0.25.bb => libusb1_1.0.26.bb} (94%) -- 2.25.1 |
|
|
|
Steve Sakoman
On Wed, Apr 20, 2022 at 4:08 AM Steve Sakoman via
lists.openembedded.org <steve=sakoman.com@...> wrote: I'd particularly like feedback on the security/bug fix version updates at the end of this series. In the past I took these only on request. Would people like me to be more proactive on this type of upgrade (such as this series), or should I continue to take them only on request? Steve
|
|
|
|
On Wed, Apr 20, 2022 at 7:54 AM Steve Sakoman <steve@...> wrote:
I think being proactive would be fine
|
|
|
|
Randy MacLeod
On Wed., Apr. 20, 2022, 10:54 Steve Sakoman, <steve@...> wrote: On Wed, Apr 20, 2022 at 4:08 AM Steve Sakoman via Proactive but reasonably cautious. ;-) Some comments below.
It's firmware so it should be fine but I don't know much about such things. Have firmware updates ever broken older kernels? Certainly there could be performance degradation. I guess it's a release note item for others to worry about. > libsoup: upgrade 3.0.5 -> 3.0.6 These all seem like bug fix only updates. Are you assuming that third number updates don't change API/ABI or looking at commit summaries, git logs, or using a tool? Thanks Steve. Randy >< snip >< |
|
|
|
Steve Sakoman
On Wed, Apr 20, 2022 at 7:14 PM Randy MacLeod <rwmacleod@...> wrote:
That's my feeling too. I've been doing these regularly for dunfell and it hasn't been anPassed a-full on autobuilder: issue in the past two years. Yes, my criteria for including is that they are bug/security only updates.libsoup: upgrade 3.0.5 -> 3.0.6 I don't assume anything from the version number, I review the release notes (if any) and the git logs. In many cases the version updates in master don't include this info in the commit message. In that case I add either the release notes or the git log to the commit message when cherry-picking from master. So it is a time consuming manual process :-) BTW, those who include release notes or commit logs in their version bumps get smiles and brownie points from me! Steve |
|
|
|
On 2022-04-21 10:00, Steve Sakoman wrote:
On Wed, Apr 20, 2022 at 7:14 PM Randy MacLeod <rwmacleod@...> wrote:As expected but that's good to hear.That's my feeling too. That's great. The only better response would be if we could run API/ABI test.Yes, my criteria for including is that they are bug/security only updates.These all seem like bug fix only updates.libsoup: upgrade 3.0.5 -> 3.0.6 I'll see if that's something that we can work on for release branches but no promises or timeline for that so far.
It is; thanks for the careful work. +1 ../Randy -- # Randy MacLeod # Wind River Linux |
|
|