- Aug 30, 2022
-
-
The Yocto Project site has been moved to a different URL, so currently the links are not up to date Signed-off-by:Grzegorz Gwóźdź <grzegorz.gwozdz@huawei.com>
-
Pavel Zhukov authoreddefault.xml: Bump upstream revisions See merge request eclipse/oniro-core/oniro!290
-
Pavel Zhukov authored
Patch has been merged upstream: * 6063ad1 : podman: Rename podman-rootless.conf sysctl file to aid overrides - Andrei Gherzan Signed-off-by:Pavel Zhukov <pavel.zhukov@huawei.com>
-
Pavel Zhukov authored
* 5be5485 : skopeo: Mark CVE-2019-10214 as fixed - Andrei Gherzan * 6063ad1 : podman: Rename podman-rootless.conf sysctl file to aid overrides - Andrei Gherzan Signed-off-by: -
Pavel Zhukov authored
* 1a74be5 : cryptfs-tpm2: fix ld warnings with binutils 2.39 - Kai Kang Signed-off-by: -
Pavel Zhukov authored
* 54ee67b : vim: Upgrade 9.0.0115 -> 9.0.0242 - Richard Purdie * 7709a8c : packagegroup-self-hosted: update for strace - Kai Kang * 9661656 : create-spdx: handle links to inaccessible locations - Peter Marko * 099e000 : linux-yocto: prepend the the value with a space when append to KERNEL_EXTRA_ARGS - Jose Quaresma * 00337a5 : apt: fix nativesdk-apt build failure during the second time build - Changqing Li * 2556d0b : archiver.bbclass: some recipes that uses the kernelsrc bbclass uses the shared source - Jose Quaresma * 6d1beda : perf: Fix reproducibility issues with 5.19 onwards - Richard Purdie * ed0cbea : libpam: use /run instead of /var/run in systemd tmpfiles - Beniamin Sandu * a5555a2 : tcp-wrappers: Fix implicit-function-declaration warnings - Khem Raj * 123f04b : cracklib: Drop using register keyword - Khem Raj * 3e1c254 : python3-pip: Fix RDEPENDS after the update - Daiane Angolini * 4579002 : weston: upgrade 10.0.1 -> 10.0.2 - Alexander Kanavin * c13a40b : webkitgtk: upgrade 2.36.4 -> 2.36.5 - Alexander Kanavin * 63b38e5 : mobile-broadband-provider-info: upgrade 20220511 -> 20220725 - Alexander Kanavin * 8dc75fd : libwebp: upgrade 1.2.2 -> 1.2.3 - Alexander Kanavin * 70cd3c0 : libcap: upgrade 2.64 -> 2.65 - Alexander Kanavin * b23e43e : libcap: upgrade 2.63 -> 2.64 - wangmy * 2d0254a : iso-codes: upgrade 4.10.0 -> 4.11.0 - Alexander Kanavin * 56b8dbf : ell: upgrade 0.49 -> 0.50 - Alexander Kanavin * 89feb5d : libwpe: upgrade 1.12.0 -> 1.12.2 - Alexander Kanavin * 4fdb3d4 : bluez5: update 5.64 -> 5.65 - Alexander Kanavin * 5acea6e : go: update v1.17.12 -> v1.17.13 - Sakib Sajal * 057a6f8 : cve-check: Don't use f-strings - Ernst Sjöstrand * 5e99aaa : grub2: fix several CVEs - Yongxin Liu * 8123b22 : u-boot: fix CVE-2022-33967 - Sakib Sajal * db5212c : u-boot: fix CVE-2022-30552 - Sakib Sajal * ea0d6f2 : connman: Backports for security fixes - Khem Raj * a2806f2 : libxml2: Ignore CVE-2016-3709 - Khem Raj * 4ad7470 : libtiff: CVE-2022-34526 A stack overflow was discovered - Hitendra Prajapati Signed-off-by: -
Pavel Zhukov authored
* bc85c04 : runqueue: Change pressure file warning to a note - Richard Purdie Signed-off-by:
-
- Aug 29, 2022
-
-
Bernhard Rosenkränzer authored
Drop the 0001-libsanitizer-cherry-pick patch as it is no longer needed with 12.2. Submitted upstream at https://lists.openembedded.org/g/openembedded-core/message/169719 Signed-off-by:
Bernhard Rosenkränzer <bernhard.rosenkraenzer.ext@huawei.com>
-
Bernhard Rosenkränzer authored
This is in sync with openembedded-core commit a2f52f6f698a1073f264dfb8afcdb4dcbcec6be8 Signed-off-by: -
We will not support those two machines in the future so that is why we remove them Signed-off-by: -
Zygmunt Krynicki authored
The new QEMU ARM machines all use EFI/GRUB and act and behave like a typcal x86_64 box would. In addition, re-order the entries so that physical machines and virtual machines are clustered together, and in the same order. Signed-off-by:Zygmunt Krynicki <zygmunt.krynicki@huawei.com>
-
Zygmunt Krynicki authored
The Oniro pipeline is a bit special, because it has to cope with several layers of git repositories. On one hand side oniro.git uses git-repo manifests, this presents the first complexity of a branch trying to change the manifest that needs special care to test correctly (so that the test correctly verifies the change, rather than previous, known-good commit). On the other hand side it can be used as a reusable pipeline in other repositories that are described by the manifest naturally have distinct projects with their own pipelines. As a sort-of special case, oniro.git fits both of those conditions. Changes to oniro.git need to both replace the manifest checkout stage (repo init && repo sync) _and_ replace what the manifest would have checked out to instead use what GitLab wants to check out inside $CI_PROJECT_DIR. This presents us with a puzzle, what _did_ GitLab runner do? What exactly is checked out in $CI_PROJECT_DIR? This depends on project settings, pipeline type and perhaps other things we have yet to encounter. Instead of trying to correctly model all the variants, let's do something stupid and brutal, but correct. When the pipeline indicates that manifest element needs to be replaced by setting $CI_ONIRO_GIT_REPO_PATH to a non-empty value then remove the git checkout prepared by git-repo and replace it with a symbolic link to $CI_PROJECT_DIR. This allows us to work with merge trains, pipelines for branches and pipelines for merge requests all at the same time. Signed-off-by:
-
- Aug 26, 2022
-
-
Update documentation on building with openharmony support after eclipse/oniro-core/oniro!250 and https://gitlab.eclipse.org/eclipse/oniro-core/meta-openharmony/-/merge_requests/65 have landed Signed-off-by:
-
Enable TPM-related distro features. We're interested in TPM2, so we need to enable both tpm and tpm2. Also enable security dependencies. The dependency on meta-security we have already had before, now add also tpm and tpm2 as we enable the feature. As a next step we need to enable related MACHINE_FEATURES for the machines TPM (or software TPM) is available. Signed-off-by:Marta Rybczynska <marta.rybczynska@huawei.com>
-
Signed-off-by: -
Add LEDGE forks with kirkstone-related changes. We use forks because the meta-ts layer doesn't have kirkstone support yet, and meta-ledge-secure has some dependencies we do not need right now (especially meta-selinux). Discussions for the two layers are in progress, but may still take some time. When all our required changes are upstream, we may switch to using the upstream directly. Signed-off-by: -
Chase Qi authored
Add zephyr build and test jobs for the below qemu machines: * qemu-x86 * qemu-cortex-m3 Closes eclipse/oniro-core/meta-zephyr#35 Signed-off-by:
Chase Qi <chase.qi@linaro.org>
-
- Aug 25, 2022
-
-
Bernhard Rosenkränzer authored
Since all it does is change permissions on installed binaries, it is independent of the binutils version. This gets it ready for the 2.39 update. Signed-off-by: -
Bernhard Rosenkränzer authored
Update binutils to 2.39 This is in sync with upstream openembedded-core commit 30e902f42d4a0205d2a75bf9b2a9cc5e8db582be Signed-off-by: -
philippe coval authored
Forwarded: eclipse/oniro-core/oniro!283 Relate-to: eclipse/oniro-core/oniro#787 Signed-off-by:
Philippe Coval <philippe.coval.ext@huawei.com>
-
Zygmunt Krynicki authored
Signed-off-by: -
Zygmunt Krynicki authored
The new keys contain the new "Eclipse Oniro" branding and are valid for 365 days like before. Signed-off-by: -
Zygmunt Krynicki authored
Signed-off-by: -
Zygmunt Krynicki authored
The correct syntax is ConditionFoo=, not ConditionalFoo=. This was easily missed because invalid syntax is not fatal, and the service will work correctly regardless of presence or absence of this configuration element. https://www.freedesktop.org/software/systemd/man/systemd.unit.html#ConditionPathExists= Thanks to Kristijonas Čiulčinskas <kristijonas.ciulcinskas@huawei.com> Grzegorz Gwóźdź <grzegorz.gwozdz@huawei.com> for reporting this. Signed-off-by:
-
- Aug 24, 2022
-
-
* 4ada86c : bitbake: runqueue: add memory pressure regulation - Aryaman Gupta * f4954b8 : bitbake: runqueue: add cpu/io pressure regulation - Aryaman Gupta Signed-off-by: -
Bernhard Rosenkränzer authored
OpenHarmony needs a writable /data directory. Create it by bind-mounting a subdirectory of /run/mount/appdata if the openharmony DISTRO_FEATURE is set. Signed-off-by: -
Update the comment on ONIRO_LAYERS_CONF_VERSION to tell the user that they also need to change ONIRO_REQUIRED_LAYERS_CONF_VERSION and where to find it. Cover both cases of the sample and the local file. Signed-off-by: -
Chase Qi authored
Signed-off-by: -
Chase Qi authored
Signed-off-by:
-
- Aug 23, 2022
-
-
Andrei Gherzan authoredWhen DISTRO_NAME was refactored, it reused the lowercase variant of flavour name changing in this way its style. This fixes it to use the "pretty" flavour name. Fixes eclipse/oniro-core/oniro#786 Signed-off-by:
Andrei Gherzan <andrei.gherzan@huawei.com> -
Pavel Zhukov authored
* 33eec78 : ceph: upgrade v15.2.15 -> v15.2.17 - sakib.sajal@windriver.com * 406eb64 : singularity: Drop explicit runtime dep glibc - Andrei Gherzan Signed-off-by: -
Pavel Zhukov authored
* 10891d4 : lttng-modules: replace mips compaction fix with upstream change - Bruce Ashfield * 86c1096 : lttng-modules: fix build against mips and v5.19 kernel - Bruce Ashfield * a69cb04 : lttng-modules: fix 5.19+ build - Bruce Ashfield * a894fda : selftest/wic: Tweak test case to not depend on kernel size - Richard Purdie * 3f25837 : relocate_sdk.py: ensure interpreter size error causes relocation to fail - Paul Eggleton * 394c1bb : nativesdk: Clear TUNE_FEATURES - Richard Purdie * b60f4c7 : scripts/oe-setup-builddir: make it known where configurations come from - Alexander Kanavin * aeec7cc : cmake: remove CMAKE_ASM_FLAGS variable in toolchain file - Martin Beeger * f595240 : boost: fix install of fiber shared libraries - Mikko Rapeli * 9079992 : create-spdx: ignore packing control files from ipk and deb - Jose Quaresma * 504b50a : create-spdx: Fix supplier field - Mihai Lindner * 31ed9d6 : archiver.bbclass: remove unsed do_deploy_archives[dirs] - Jose Quaresma * fcb55a1 : runqemu: Add missing space on default display option - Mark Hatle * 72bfdca : devtool/upgrade: catch bb.fetch2.decodeurl errors - Alexander Kanavin * a7d406d : devtool/upgrade: correctly clean up when recipe filename isn't yet known - Alexander Kanavin * 3aee342 : devtool: error out when workspace is using old override syntax - Roland Hieber * 27e4c6f : vim: update from 9.0.0063 to 9.0.0115 - Randy MacLeod * 46ac4a9 : zlib: CVE-2022-37434 a heap-based buffer over-read - Hitendra Prajapati * 49781a7 : gnutls: CVE-2022-2509 Double free during gnutls_pkcs7_verify - Hitendra Prajapati * af701fd : u-boot: fix CVE-2022-33103 - Sakib Sajal * f2ebd77 : qemu: fix CVE-2022-0216 - Sakib Sajal * 99c4b60 : qemu: fix CVE-2022-0358 - Sakib Sajal * a171d1f : qemu: fix CVE-2021-4158 - Sakib Sajal * 3be3101 : qemu: fix CVE-2021-3929 - Sakib Sajal * 8ad9e87 : qemu: fix CVE-2021-3507 - Sakib Sajal * 978bc91 : gdk-pixbuf: CVE-2021-46829 a heap-based buffer overflow - Hitendra Prajapati Signed-off-by: -
Chase Qi authored
Add the below daily test jobs for qemuarm-efi and qemuarm64-efi machines. * ltp * kselftest * perf Signed-off-by: -
Chase Qi authored
Signed-off-by: -
Current qemuarm-efi defconfig contains many useless features, remove it and use the qemuarm base config with additional EFI features. For linux-yocto compatibility, set qemuarm-efi to fetch from the same machine specific branches as qemuarm. Signed-off-by:Luca Seritan <luca.seritan@huawei.com>
-
Current qemuarm64-efi defconfig contains many useless features, remove it and use the qemuarm64 base config with additional EFI features. For linux-yocto compatibility, set qemuarm64-efi to fetch from the same machine specific branches as qemuarm64. Signed-off-by: -
Machines that have the efi feature also need the efi kernel features, so add these by default to both linux-oniro and linux-yocto. Signed-off-by: -
qemuarm-efi is an efi machine that does not support ACPI. To fix this, drop ACPI as a dependency in efi.cfg. This will not affect x86 machines as ACPI is enabled by default for those. For arm64, apply an additional patch that defaults to ACPI=y. Signed-off-by:
Andrei Gherzan <andrei.gherzan@huawei.com>
Signed-off-by: -
Pavel Zhukov authored
Signed-off-by:
-
- Aug 22, 2022
-
-
Pavel Zhukov authored
Modern ssh clients use SFTP protocol and refuse to connect using SCP protocol (dropbear uses) by default. Adding sftp-server to allow sftp connections in Oniro. This requires workaround for [Yocto #14858] to be applied for every Oniro images, not only extra-tests. Signed-off-by:
-
