| Age | Commit message (Collapse) | Author |
|---|
|
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
|
The release-6.1 fixes a lot of CVEs.
Modify parts of patches for v6.1.
Remove bd-xlator configure which has been dropped.
Signed-off-by: Hongzhi.Song <hongzhi.song@windriver.com>
|
|
The apache2 in meta-webserver has been upgraded to 2.4.39. This bbappend
has been integrated into apache2 recipe. So remove it.
Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
|
arch.h does not contain macros for 32 bit arm or any mips arch.
Signed-off-by: Joe Slater <joe.slater@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
|
We are currently seeing the following error:
type..eUfRrckI: missing section for relocation target type..FEeY9FdU
...
This is similar to the reported issues
http://www.lyddzz.com/github_/golang/go/issues/30768
and
https://github.com/hashicorp/consul/issues/5486 (but this one appears
to be a report of 'our' issue so isn't really valid)
The go.bbclass currently completes 2 builds (if GO_DYNLINK is set),
one without '-linkshared' and one with. The '--linkshared' option is
marked as experimental (https://golang.org/cmd/link/ -- "-linkshared
Link against installed Go shared libraries (experimental)").
By setting GO_LINKSHARED prior to inheriting go.bbclass we can
overwrite the default compile behavior and only perform the build
without the '-linkshared' option. This shouldn't change the
functionality of consul and we can revert to the default behavior when
the issues have been addressed.
Signed-off-by: Mark Asselstine <mark.asselstine@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
|
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
|
Signed-off-by: Dengke Du <dengke.du@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
|
Signed-off-by: Dengke Du <dengke.du@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
|
Add the default route option for the operation of adding route,
while we set the static route and the mask setting is 0.
For example:
add_routes 32 169 254 169 254 10 209 67 4 0 10 209 67 1
The first route (169.254.169.254/32 via 10.209.67.4) is added successfully,
but the second route (10.209.67.1, default) is not added at all.
Signed-off-by: Zhixiong Chi <zhixiong.chi@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
|
Fix installed-vs-shipped qa issue of glusterfs:
| ERROR: glusterfs-5.4-r0 do_package: QA Issue: glusterfs:
Files/directories were installed but not shipped in any package:
| /usr/libexec/glusterfs/mount-shared-storage.sh
Signed-off-by: Kai Kang <kai.kang@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
|
1.Upgrade python-croniter from 0.3.5 to 0.3.27.
2.Modified PKG-INFO due to version update.
Signed-off-by: Hong Liu <hongl.fnst@cn.fujitsu.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
|
Upgrade python-cliff from 2.9.1 to 2.14.1.
Signed-off-by: Hong Liu <hongl.fnst@cn.fujitsu.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
|
The libvirt recipe in meta-virtualization already define the GROUPADD_PARAM,
so we should append it, not override.
Signed-off-by: Dengke Du <dengke.du@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
|
The latest stable release covers some CVEs and new features.
Signed-off-by: Hongzhi.Song <hongzhi.song@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
|
Uprev to v1.4.3 and remove invalid patch.
Signed-off-by: Hongzhi.Song <hongzhi.song@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
|
This fixes 01a28c32acb2 ("linux/nf.cfg: CONFIG_NF_CONNTRACK_IPV4 was replaced by
CONFIG_NF_CONNTRACK") which duplicates a config fragment and causes the
following warning.
Warning: Value of CONFIG_NF_CONNTRACK is defined multiple times within fragment
tmp-glibc/work-shared/intel-x86-64/kernel-source/.kernel-meta/configs/v4.19/standard/intel-x86/nf.cfg:
CONFIG_NF_CONNTRACK=y
CONFIG_NF_CONNTRACK=y
Signed-off-by: He Zhe <zhe.he@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
|
Use COMPATIBLE_HOST to prevent building for mipsarch.
Signed-off-by: Joe Slater <joe.slater@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
|
Upgrade python-paramiko from 2.4.1 to 2.4.2
Signed-off-by: Hong Liu <hongl.fnst@cn.fujitsu.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
|
Modify homepage to correspond to new version
Signed-off-by: Hong Liu <hongl.fnst@cn.fujitsu.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
|
Upgrade python-amqp from 2.3.2 to 2.4.1
Signed-off-by: Hong Liu <hongl.fnst@cn.fujitsu.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
|
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
|
1.Upgrade python-waitress from 1.1.0 to 1.2.0.
Signed-off-by: Hong Liu <hongl.fnst@cn.fujitsu.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
|
Upgrade python-kombu from 4.2.0 to 4.2.2
Signed-off-by: Hong Liu <hongl.fnst@cn.fujitsu.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
|
Fix HOMEPAGE
Signed-off-by: Hong Liu <hongl.fnst@cn.fujitsu.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
|
kernel has replaced CONFIG_NF_CONNTRACK_IPV4 with CONFIG_NF_CONNTRACK.
[commit: a0ae2562c]
Signed-off-by: Hongzhi.Song <hongzhi.song@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com>
|
|
Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com>
|
|
layers/meta-cloud-services/meta-openstack/recipes-dbs/postgresql/defaultpkgname/
Something changed with the evaluation of :=, such that PN evaluates to defaultpkgname, thus
the initscript is not found. Just set it to the correct name.
Signed-off-by: Jeremy Puhlman <jpuhlman@mvista.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com>
|
|
The CVE issue exists in v3.12 series and above.
Introduced by:
[http://git.gluster.org/cgit/glusterfs.git/commit/?
id=51dfc9c789b8405f595a337eade938aedcb449c4]
More infomation, please see:
[https://security-tracker.debian.org/tracker/CVE-2018-10924]
The version v3.11.1 doesn't have the issue.
So we should revert the CVE-2018-10924.
Signed-off-by: Hongzhi.Song <hongzhi.song@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com>
|
|
Update SRC_URI for glusterfs as the previous
one is invalid.
Signed-off-by: Mingli Yu <Mingli.Yu@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com>
|
|
Update SRC_URI for librdmacm as the
previous one is invalid.
Signed-off-by: Mingli Yu <Mingli.Yu@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com>
|
|
Update SRC_URI for libibverbs as the
previous one is invalid.
Signed-off-by: Mingli Yu <Mingli.Yu@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com>
|
|
Make bbappend version independent and only
effective when the openstack distro enabled.
Signed-off-by: Mingli Yu <Mingli.Yu@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com>
|
|
Only set PREFERRED_VERSION for python-networkx
when the openstack distro is enabled
Signed-off-by: Mingli Yu <Mingli.Yu@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com>
|
|
Add a new class sanity-meta-openstack.bbclass,
to check whether necessary settings are available
for bbappend files and preferred version setting
in this layer to be effective and warn users if not.
In addition, a variable SKIP_SANITY_META_OPENSTACK_CHECK
is added to enable users to explicitly skip the
checking to avoid unwanted warnings.
Signed-off-by: Mingli Yu <Mingli.Yu@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com>
|
|
1. for i586, bitbake consul will have QA error of textrel.
consul-git-r0 do_package_qa: QA Issue: ELF binary i
'work/i586-wrs-linux/consul/git-r0/packages-split/consul/usr/bin/consul'
has relocations in .text [textrel]
according to go doc:
-buildmode=pie
Build the listed main packages and everything they import into
position independent executables (PIE). Packages not named
main are ignored.
checked use command "eu-findtextrel ./consul", functions not
compiled with -fpic/-fPIC are from packages not named main, and
also not imported into package main.
so -buildmode=pie cannot reslove this problem. so refer commit
b689c72a of oe-core, just skip it.
2. This problem is caused since security_flags.inc is used by default.
so alternative work around is:
SECURITY_CFLAGS_pn-consul = "${SECURITY_NOPIE_CFLAGS}"
SECURITY_LDFLAGS_pn-consul = ""
Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com>
|
|
Since `9ec5a8a layer.conf: Drop sumo from LAYERSERIES_CORENAMES' and
`9867924 layer.conf: Add thud to LAYERSERIES_CORENAMES' applied in oe-core,
add thud to LAYERSERIES_COMPAT
Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com>
|
|
The ruby layer is no longer in meta-openembedded, remove references to that
from the README.
Implement the LAYERDEPENDS for each of the layers so that the layerindex
will populate properly.
Signed-off-by: Mark Hatle <mark.hatle@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com>
|
|
Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com>
|
|
Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com>
|
|
Backport a patch to fix the following CVE.
CVE: CVE-2018-10907
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com>
|
|
Backport a patch to fix the following two CVEs.
CVE: CVE-2018-10913
CVE: CVE-2018-10914
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com>
|
|
Backport patch to fix the following CVE.
CVE: CVE-2018-10924
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com>
|
|
Backport patch to fix the following CVE.
CVE: CVE-2018-10904
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com>
|
|
Backport a patch to fix the following CVEs.
CVE: CVE-2018-10926
CVE: CVE-2018-10927
CVE: CVE-2018-10928
CVE: CVE-2018-10929
CVE: CVE-2018-10930
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com>
|
|
Backport patch to fix the following CVE.
CVE: CVE-2018-10923
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com>
|
|
Backport patch to fix the following CVE.
CVE: CVE-2018-10911
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com>
|
|
We do not want meta-cloud-services to depend on meta-overc so we
switch to use the go.bbclass which is now part of oe-core/yocto. We
also capture all the licenses for all source packages which are
included in consul-migrate and adjust paths to account for the
different handling of go.bbclass vs. golang.bbclass.
Signed-off-by: Mark Asselstine <mark.asselstine@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com>
|
|
It is common to have two GO packages, A and B, and they both depend on
a GO dependency, C. This can be satisfied using the current technique
of writing recipes for each dependency.
BUT it is also common for GO packages to not only specify other
packages in their GoDeps but also specific dependency versions. In the
case that A and B share a dependency on C, but require different
versions, there is no easy way to accomplish this using recipes.
Since GO dependencies are also source dependencies and these
dependencies are overwhelmingly useless on their own, writing recipes
for each is overkill.
We therefor replace DEPENDS with SRC_URIs and SRCREVs as a mechanism
to provide build dependencies.
Signed-off-by: Mark Asselstine <mark.asselstine@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com>
|
|
We don't want meta-cloud-services to have to rely on meta-overc for
access to golang.bbclass (which predates go.bbclass in oe-core/yocto)
so switch to make use of go.bbclass.
This requires the definition of GO_IMPORT and the dropping of some
custom handling of 'configure' and others.
Since go.bbclass uses a slighly different directory structure than we
used with golang.bbclass we have to adjust some paths accordingly,
including those in patches.
We also need to expand the list of LICENSES to cover licenses of all
the GO packages included in consul.
Signed-off-by: Mark Asselstine <mark.asselstine@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com>
|
|
GO package dependencies are a tricky beast. They are source
dependencies and if you have two packages which share a dependency
they could very well require different versions of the dependency. So
supplying the dependencies via bitbake recipes is not an easy
proposition. As such we are better off populating the build source
with the dependencies using SRC_URIs and not traditional DEPENDS.
That being said, the consul source repository actually includes copies
of the dependencies (and the dependency's dependencies) so having
these DEPENDS is actually useless and we can simply drop them.
Signed-off-by: Mark Asselstine <mark.asselstine@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com>
|
Chen Qi
Hongzhi.Song
Yi Zhao
Joe Slater
Mark Asselstine
Bruce Ashfield
Dengke Du
Zhixiong Chi
Kai Kang
Hong Liu
He Zhe
Bruce Ashfield
Jeremy Puhlman
Mingli Yu
Changqing Li
Hongxu Jia
Mark Hatle