scm/bb/tizen-distro.git
10 years agogstreamer1.0-plugins-ugly: upgrade to 1.4.0
Carlos Rafael Giani [Wed, 30 Jul 2014 08:57:33 +0000 (10:57 +0200)]
gstreamer1.0-plugins-ugly: upgrade to 1.4.0

(From OE-Core rev: 095b6fdcffacfe0770ae191fde0995331969da4b)

Signed-off-by: Carlos Rafael Giani <dv@pseudoterminal.org>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agogstreamer1.0-plugins-bad: upgrade to 1.4.0
Carlos Rafael Giani [Wed, 30 Jul 2014 08:57:32 +0000 (10:57 +0200)]
gstreamer1.0-plugins-bad: upgrade to 1.4.0

* eglglessink was replaced by glimagesink
* sndfile plugin has been ported to 1.0
* webp support added since libwep recipe has been added to meta-multimedia
* mfc was replaced by v4l2videodec, which does not need special flags
* cdaudio was removed
* directshow plugin was replaced by winks

(From OE-Core rev: e2fb717c0a081534252c5026401e3fee8328c502)

Signed-off-by: Carlos Rafael Giani <dv@pseudoterminal.org>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agogstreamer1.0-plugins-good: upgrade to 1.4.0
Carlos Rafael Giani [Wed, 30 Jul 2014 08:57:31 +0000 (10:57 +0200)]
gstreamer1.0-plugins-good: upgrade to 1.4.0

* xvideo options removed, since the V4L2 XV support never became upstream
  and is pretty much dead now

(From OE-Core rev: 2ac6e260f94c7ecfc5ed00798e8431632ae6245c)

Signed-off-by: Carlos Rafael Giani <dv@pseudoterminal.org>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agogstreamer1.0-plugins-base: upgrade to 1.4.0
Carlos Rafael Giani [Wed, 30 Jul 2014 08:57:30 +0000 (10:57 +0200)]
gstreamer1.0-plugins-base: upgrade to 1.4.0

(From OE-Core rev: 831086316671a123606f3a3feef6332950f915e9)

Signed-off-by: Carlos Rafael Giani <dv@pseudoterminal.org>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agogstreamer1.0: upgrade to 1.4.0
Carlos Rafael Giani [Wed, 30 Jul 2014 08:57:29 +0000 (10:57 +0200)]
gstreamer1.0: upgrade to 1.4.0

* Backported patch removed, since it is already included in this release

(From OE-Core rev: 3cd159ab21a0d56c9c16c8fbd534fd5db63c6819)

Signed-off-by: Carlos Rafael Giani <dv@pseudoterminal.org>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agoi2c-tools: Uprev to 3.1.1
Maxin B. John [Wed, 30 Jul 2014 08:47:12 +0000 (10:47 +0200)]
i2c-tools: Uprev to 3.1.1

1. Updated the SRC_URI to http://dl.lm-sensors.org/i2c-tools/
2. Corrected the License to GPLv2+ as the "COPYING" file include these
   statements:
   "This program is free software; you can redistribute it and/or modify
    it under the terms of the GNU General Public License as published by
    the Free Software Foundation; either version 2 of the License, or
    (at your option) any later version."

(From OE-Core rev: d5fe5a93d310966d5389600c9e102f894772325b)

Signed-off-by: Maxin B. John <maxin.john@enea.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agoalsa-lib: Add upgrade path for alsa-dev
Jackie Huang [Wed, 30 Jul 2014 07:19:02 +0000 (03:19 -0400)]
alsa-lib: Add upgrade path for alsa-dev

Previous commit removed non PN based -dev packages
but lack of upgrade path for alsa-dev.

(From OE-Core rev: bbc8565f9627b164cdc2c171395e6a1f5b40cf7d)

Signed-off-by: Jackie Huang <jackie.huang@windriver.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agopython-smartpm: fix option typo of command channel
Kai Kang [Wed, 30 Jul 2014 06:26:27 +0000 (14:26 +0800)]
python-smartpm: fix option typo of command channel

When run smart, it fails:

root@qemu1:~# smart channel --remove-all
error: No action specified for command 'channel'

If no default value of arg 'dest' is provided in method add_option() of
optparse.OptionParser, it replaces hyphen('-') in new added option with
underscore('_') as dest.

In function ensure_action() it checks action strings with options from
optparse.OptionParser. So it is 'remove_all' which need to be checked
rather than 'remove-all'.

(From OE-Core rev: 03266e89a67ec1373529fae32b2cedff21414ff5)

Signed-off-by: Kai Kang <kai.kang@windriver.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agopython: python-pycairo: add python-pycairo-native
Max Eliaser [Tue, 29 Jul 2014 18:07:06 +0000 (11:07 -0700)]
python: python-pycairo: add python-pycairo-native

A -native variant of python-pycairo will be necessary for running the native
version of pybootchartgui. It may also come in handy for running other Python
utilities from the native sysroot.

(From OE-Core rev: 39cf9bcc28df7a4a37bc32e220ddc57b645350d4)

Signed-off-by: Max Eliaser <max.eliaser@intel.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agoimage.bbclass: tweak read_only_rootfs_hook to also support systemd based systems
Chen Qi [Wed, 23 Jul 2014 09:41:04 +0000 (05:41 -0400)]
image.bbclass: tweak read_only_rootfs_hook to also support systemd based systems

Modify the read_only_rootfs_hook function to make it also have effect
on systemd based systems.

(From OE-Core rev: 92f956d813303f8ee86fd40a4ee3d604a9b4e76e)

Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agosystemd: add volatile-binds to RDEPENDS
Chen Qi [Wed, 23 Jul 2014 09:40:29 +0000 (05:40 -0400)]
systemd: add volatile-binds to RDEPENDS

This services generated from volatile-binds.bb recipe file only have
effect in a read-only filesystem. So if the rootfs is read-write, the
related service are not started.

(From OE-Core rev: b03be56cbfc3fed8f39b60fc80b3c65ef291f222)

Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agovolatile-binds: add recipe
Chen Qi [Wed, 23 Jul 2014 09:40:12 +0000 (05:40 -0400)]
volatile-binds: add recipe

This recipe is designed to play a key role in a read-only rootfs
of systemd based systems. It generates service files from a template,
volatile-binds.service.in and the VOLATILE_BINDS variable.

By default, VOLATILE_BINDS takes the value of "/var/volatile/lib /var/lib\n",
which leads to the generation of volatile-var-lib.service file.
This file doesn't have any effect in a read-write system, as it
has "ConditionPathIsReadWrite = !/var/lib" in the [Unit] section.
In other words, this file only has effect in a read-only rootfs.

(From OE-Core rev: ed7d30dc0cdb6d6c56c50ac7a3440c4ed0ee70d3)

Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agoINITRD var: make it a list of filesystem images
Nitin A Kamble [Tue, 29 Jul 2014 18:34:45 +0000 (11:34 -0700)]
INITRD var: make it a list of filesystem images

The initrd image used by the Linux kernel is list of file system images
concatenated together and presented as a single initrd file at boot time.

So far the initrd is a single filesystem image. But in cases like to support
early microcode loading, the initrd image need to have multiple filesystem
images concatenated together.

This commit is extending the INITRD variable from a single filesystem image
to a list of filesystem images to satisfy the need mentioned above.

(From OE-Core rev: b0ac481dda99d8f4be8015964fcb2cb01afce08c)

Signed-off-by: Nitin A Kamble <nitin.a.kamble@intel.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agowic: Various typo/grammar fixes to wic help text
Tom Zanussi [Tue, 29 Jul 2014 12:52:29 +0000 (07:52 -0500)]
wic: Various typo/grammar fixes to wic help text

This is a set of miscellaneous help text updates noticed while
transcribing wic help for the dev manual.

(From OE-Core rev: d4b350fcdedf29692673e09a0c1850cdbbe29739)

Signed-off-by: Tom Zanussi <tom.zanussi@linux.intel.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agowic: Add squashfs to --fstypes documentation
Tom Zanussi [Tue, 29 Jul 2014 17:53:48 +0000 (12:53 -0500)]
wic: Add squashfs to --fstypes documentation

squashfs support was recently added to wic, so document it.

(From OE-Core rev: c04043e143932fe2ea38f87d2faa8beed007671b)

Signed-off-by: Tom Zanussi <tom.zanussi@linux.intel.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agowic: Add documentation for --fsoptions
Tom Zanussi [Tue, 29 Jul 2014 17:48:09 +0000 (12:48 -0500)]
wic: Add documentation for --fsoptions

--fsoptions support was recently added to wic, so document it.

(From OE-Core rev: e2d87ad57f8aa74e748ba95f6a801a2ca665ecc4)

Signed-off-by: Tom Zanussi <tom.zanussi@linux.intel.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agowic: Fix plugin help text
Tom Zanussi [Mon, 28 Jul 2014 15:01:37 +0000 (10:01 -0500)]
wic: Fix plugin help text

Fix various typoes and grammar problems noticed while transcribing for
the dev manual.

(From OE-Core rev: 79fb7d9b5a28810e3adfaf5cba0c2298810253e9)

Signed-off-by: Tom Zanussi <tom.zanussi@linux.intel.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agoimage-vmdk.bbclass: use sda rather than hda
Robert Yang [Tue, 29 Jul 2014 07:05:04 +0000 (00:05 -0700)]
image-vmdk.bbclass: use sda rather than hda

The modern kernels may not support IDE (CONFIG_IDE=y), but it should
support SCSI in most of the cases. The boot-directdisk.bbclass uses
sda, too.

Remove an extra space from image-live.bbclass and image-vmdk.bbclass to
not confuse the user.

(From OE-Core rev: 842a797460cd07b779ab588a4ece7e5d4d97417b)

Signed-off-by: Robert Yang <liezhi.yang@windriver.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agogcc-4.9.inc: fix parallel building failure
Hongxu Jia [Tue, 29 Jul 2014 02:02:02 +0000 (10:02 +0800)]
gcc-4.9.inc: fix parallel building failure

The gcc-ar.o, gcc-nm.o, gcc-ranlib.o and errors.o included
config.h which was a generated file. But no explicity rule
to clarify the dependency. There was potential building
failure while parallel make.

For gcc-ar.o, gcc-nm.o and gcc-ranlib.o, they were compiled from one C
source file gcc-ar.c, we add them to ALL_HOST_BACKEND_OBJS, so the
'$(ALL_HOST_OBJS) : | $(generated_files)' rule could work for these
objects.

For errors.o, it is part of gengtype, and the gengtype generator program
is special: Two versions are built. One is for the build machine, and one
is for the host. We refered what gengtype-parse.o did (which also is part
of gengtype).

[YOCTO #6568]

(From OE-Core rev: aea4b2d58856226c471922dfa40650cba2f5a36a)

Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agopopulate_sdk_base: Fix grep command usage on old hosts
Richard Purdie [Mon, 28 Jul 2014 16:55:05 +0000 (17:55 +0100)]
populate_sdk_base: Fix grep command usage on old hosts

"man grep" on centos:

       -R, -r, --recursive
              Read all files under each directory, recursively; this is equivalent to the -d recurse option.

"man grep" on a more recent ubuntu system:

       -r, --recursive
              Read all files under each directory, recursively, following symbolic links only if they are on the command line.  This
              is equivalent to the -d recurse option.

So we have an issue when the SDK installer (even with
buildtools-tarball) is used on old hosts since it may try and
dereference paths which it should not. This is caused by differences in
the behaviour of grep -r on older systems.

The fix is to wrap this in find so that only real files are found (as
elsewhere in the script.

[YOCTO #6577]

(From OE-Core rev: 7986adeac16550b33f65fded39a55f668e0e543f)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agoselftest/buildoptions.py: fix QA_WARN test and add more output when failing
Corneliu Stoicescu [Mon, 28 Jul 2014 15:59:19 +0000 (18:59 +0300)]
selftest/buildoptions.py: fix QA_WARN test and add more output when failing

The -ccleansstate should be done before building the package for the second time.
Also printing the command output when failing.

(From OE-Core rev: 15e5661d6341004ebc4d3492acb48f73dd86b96e)

Signed-off-by: Corneliu Stoicescu <corneliux.stoicescu@intel.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agolibx11: Add missing NULL check
Drew Moseley [Sun, 27 Jul 2014 23:05:57 +0000 (19:05 -0400)]
libx11: Add missing NULL check

Add a check for NULL on dereferencing the xim pointer.
Using mplayer with the x11 backend will trigger this and result
in a segfault.

(From OE-Core rev: f7d8947744d7dd1d08721ef0e707912304722d2b)

Signed-off-by: Drew Moseley <drew_moseley@mentor.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agocml1: correct diffconfig output format
Stefan Müller-Klieser [Mon, 28 Jul 2014 08:14:44 +0000 (10:14 +0200)]
cml1: correct diffconfig output format

If used with some packages using kconfig mechanism, the diffconfig
command generates wrong output format. Diff provides all options to
format the output correctly. This method formats as intended, is more
robust and works with the merge_config.h script from yocto-kernel-tools.

(From OE-Core rev: 1d9d035f07be1cef2764949d84cecbff7dd428dd)

Signed-off-by: Stefan Müller-Klieser <s.mueller-klieser@phytec.de>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agonss: CVE-2013-5606
Li Wang [Mon, 28 Jul 2014 06:50:42 +0000 (02:50 -0400)]
nss: CVE-2013-5606

the patch comes from:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-5606
https://bugzilla.mozilla.org/show_bug.cgi?id=910438
http://hg.mozilla.org/projects/nss/rev/d29898e0981c

The CERT_VerifyCert function in lib/certhigh/certvfy.c in
Mozilla Network Security Services (NSS) 3.15 before 3.15.3 provides
an unexpected return value for an incompatible key-usage certificate
when the CERTVerifyLog argument is valid, which might allow remote
attackers to bypass intended access restrictions via a crafted certificate.

(From OE-Core rev: 1e153b1b21276d56144add464d592cd7b96a4ede)

Signed-off-by: Li Wang <li.wang@windriver.com>
Signed-off-by: Jackie Huang <jackie.huang@windriver.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agopulseaudio: fix CVE-2014-3970
Shan Hai [Mon, 28 Jul 2014 05:18:50 +0000 (01:18 -0400)]
pulseaudio: fix CVE-2014-3970

The pa_rtp_recv function in modules/rtp/rtp.c in the module-rtp-recv module
in PulseAudio 5.0 and earlier allows remote attackers to cause a denial of
service (assertion failure and abort) via an empty UDP packet.

Fix it by picking a patch from pulseaudio upstream code.

(From OE-Core rev: f9d7407e54f1fa3d3a316a5bbb8b80665e6f03fd)

Signed-off-by: Shan Hai <shan.hai@windriver.com>
Signed-off-by: Jackie Huang <jackie.huang@windriver.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agobase-files: fix up misleading dir grouping names for lsb dirs
Paul Gortmaker [Mon, 28 Jul 2014 02:58:36 +0000 (22:58 -0400)]
base-files: fix up misleading dir grouping names for lsb dirs

In commit b0df35f47fb79dc149504bd66d1186b3276f9510
("base-files: Add to make some directories needed by LSB.") there
were new groupings of dirs made.  But rather than keep the grouping
names permissions based as they clearly were, it seems that it was
unfortunately misinterpreted as a counter, simply incrementing as
a new group was added.

This leads to dir3755 getting chmod'd to 0755 and dir4775 being
chmod'd to 2775 which to any new reader of the code is terribly
confusing.

Choose names that clearly reflect the permissions, and add a lsb
suffix to indicate the role.

Also note that the settings for /var/mail seem incorrect, and so
they have been aligned with what is seen in most common distros.

(From OE-Core rev: 5cba414e3fd7dbe761a6f628c6a368a412c0cba3)

Signed-off-by: Paul Gortmaker <paul.gortmaker@windriver.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agobase-files: remove strange 2775 perms from dirs like /home
Paul Gortmaker [Mon, 28 Jul 2014 02:58:35 +0000 (22:58 -0400)]
base-files: remove strange 2775 perms from dirs like /home

Mark Hatle did the historical research into why this was so,
and found that it originally was via debian import, and then
it morphed over time:

<fray> +#   chown -R root:root ${D}
<fray> +#   cd ${D} && chown root:src     usr/src
<fray> +#   cd ${D} && chown root:staff   var/local
<fray> +#   cd ${D} && chown root:staff   home
<fray> +    cd ${D} && chmod 755  `find . -type d`
<fray> +    cd ${D} && chmod 1777 `cat ${S}/debian/1777-dirs`
<fray> +    cd ${D} && chmod 2775 `cat ${S}/debian/2775-dirs`
<fray> that was the original code
<fray> so THAT is why they're 2775..
<fray> they were original 'src' and 'staff'.. which has gotten lost
      sometime in the last 10 years

<fray> AND the origin:
<fray> commit b45c9ed40bb4f893f99127a21776aef3ae888ad7
<fray> Author: Chris Larson <clarson@kergoth.com>
<fray> Date:   Tue Sep 30 16:30:41 2003 +0000
<fray>     Add base-files 3.0.10 (from debian).
<fray> thats where the brain damage started ... Debian in 2003..

Here we simply convert them to being normal 755 dirs.

[YOCTO #6579]

(From OE-Core rev: 77e4defa57f02b7f7ad23b07f169ec280228585b)

Signed-off-by: Paul Gortmaker <paul.gortmaker@windriver.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agobase-files: actually install 2775 dirs as 2775, not 2755
Paul Gortmaker [Mon, 28 Jul 2014 02:58:34 +0000 (22:58 -0400)]
base-files: actually install 2775 dirs as 2775, not 2755

Nothing interesting to see in the git history ; appears to have
been this way since its creation.

(From OE-Core rev: f178f56f389e9640a7e80f82250129586edff20c)

Signed-off-by: Paul Gortmaker <paul.gortmaker@windriver.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agolibav: fix PACKAGECONFIG for theora and libvorbis
Matthieu Crapet [Mon, 28 Jul 2014 12:06:53 +0000 (14:06 +0200)]
libav: fix PACKAGECONFIG for theora and libvorbis

Switches must not be in EXTRA_OECONF anymore.

(From OE-Core rev: 251a5cc8c940f54f058588977734fd0ede664c3c)

Signed-off-by: Matthieu Crapet <Matthieu.Crapet@ingenico.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agoautoconf: remove automake patch enforcing --foreign
Ross Burton [Tue, 15 Jul 2014 16:18:37 +0000 (17:18 +0100)]
autoconf: remove automake patch enforcing --foreign

Since 2004 we've been carrying a patch[1] make autoreconf pass --foreign to
automake.  Presumably at the time this was due to many upstreams using
hand-coded bootstrap scripts that passed --foreign manually, but we were using
autoreconf.  These days many projects have added foreign to AM_INIT_AUTOMAKE and
use autoreconf directly, so this patch isn't as critical as it used to be.

(From OE-Core rev: 74b05bba64589da0e4439a4293559ad9670104bd)

Signed-off-by: Ross Burton <ross.burton@intel.com>
[1] oe-classic 2ab2a92eadaf2f80410d8746099f8a9b1b81ff91
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agolib/oe/rootfs: Improve error message whitespace
Richard Purdie [Mon, 28 Jul 2014 11:20:49 +0000 (12:20 +0100)]
lib/oe/rootfs: Improve error message whitespace

[YOCTO #6493]

(From OE-Core rev: 91ca6b1b2e009381d8e813906654c0958eee7efc)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agodirectfb-examples: Fix building with new autoconf
Otavio Salvador [Sat, 26 Jul 2014 20:09:43 +0000 (17:09 -0300)]
directfb-examples: Fix building with new autoconf

This fixes the following build error:

,----
| .../configure: line 4229: syntax error near unexpected token `DIRECTFB,'
| .../configure: line 4229: `PKG_CHECK_MODULES(DIRECTFB, directfb >= $DIRECTFB_REQUIRED_VERSION, WATER=`$PKG_CONFIG --variable=water directfb` ,'
`----

(From OE-Core rev: 3f7fcbc167c13bdaa6c12a81c7851530d72f02e0)

Signed-off-by: Otavio Salvador <otavio@ossystems.com.br>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agopopulate_sdk_deb: Fix non x86_64 SDK builds
Richard Purdie [Sat, 26 Jul 2014 09:13:21 +0000 (10:13 +0100)]
populate_sdk_deb: Fix non x86_64 SDK builds

If building with SDKMACHINE=i686 and using the deb backend, populate_sdk
would fail. Its clear when looking at the options that the 32 bit values
were overwritten.

Replace this code with code similar to that used in package_deb itself.

[YOCTO #6458]

(From OE-Core rev: 2a7c6f6d3e9d1eedffb79f2347400509feed5dd7)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agoapt-native: Add missing DEPENDS on db-native and curl-native
Richard Purdie [Sat, 26 Jul 2014 08:02:23 +0000 (09:02 +0100)]
apt-native: Add missing DEPENDS on db-native and curl-native

The target recipe has these DEPENDS but the native version does not
and this can lead to none deterministic builds. Fix this.

(From OE-Core rev: 9a3240acd0ac64a257bcfd48f743fc85b6c8f449)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agopopulate_sdk_base: Include do_rootfs depends for do_populate_sdk
Richard Purdie [Sat, 26 Jul 2014 08:01:43 +0000 (09:01 +0100)]
populate_sdk_base: Include do_rootfs depends for do_populate_sdk

"bitbake core-image-minimal -c populate_sdk; rm tmp -rf; bitbake core-image-minimal -c populate_sdk"
breaks due to missing dependencies on things like update-rc.d. Since
we're effecitvely building a rootfs, we need all the same depends
as do_rootfs has.

The easiest was to achieve this is to simply load them. This resolves
the failure when targeting the task from sstate.

(From OE-Core rev: cdb0bcef28493edd4cad2a882fb8ba402485a2f1)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agowic: do not overwrite autogenerated /etc/fstab with original too early
Maciej Borzecki [Thu, 24 Jul 2014 12:27:16 +0000 (14:27 +0200)]
wic: do not overwrite autogenerated /etc/fstab with original too early

DirectImageCreator.__write_fstab() generates new /etc/fstab in sysroot
with rootfs contents. The fstab entries are generated base on the
initialn contents of /etc/fstab, plus any extra (other than / or
/boot) partitions listed in *.wks. A backup of original /etc/fstab is
done in a temp location. Subsequent call to __restore_fstab() restores
the backup copy, replacing the autogenerated one.

Calling __restore_fstab() before Wic_PartData.prepare() brings back the
original fstab before the partition image file actually is created. As
such, the autogenerated /etc/fstab will not make it to the partition.

(From OE-Core rev: a9e59d7b1fa1ed33ce9678fb77a367800d7a8f87)

Signed-off-by: Maciej Borzecki <maciej.borzecki@open-rnd.pl>
Signed-off-by: Maciek Borzecki <maciek.borzecki@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agoutil-linux: break out new package util-linux-findfs
Richard Tollerton [Thu, 24 Jul 2014 14:32:26 +0000 (09:32 -0500)]
util-linux: break out new package util-linux-findfs

We'd like to include the util-linux version of findfs in images without
having to include all of util-linux. To make this possible, break out
findfs into its own package.

(From OE-Core rev: 859bdcc1691ec3fd9e88cf60b5d96f0239d72bce)

Signed-off-by: Richard Tollerton <rich.tollerton@ni.com>
Signed-off-by: Ben Shelton <ben.shelton@ni.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agoutil-linux: break out new package util-linux-hwclock
Alejandro del Castillo [Thu, 24 Jul 2014 14:32:25 +0000 (09:32 -0500)]
util-linux: break out new package util-linux-hwclock

We'd like to include the util-linux version of hwclock in images without
having to include all of util-linux. To make this possible, break out
hwclock into its own package.

(From OE-Core rev: 7c0429827d1232c8f1b439a73af6064602ec43e7)

Signed-off-by: Richard Tollerton <rich.tollerton@ni.com>
Signed-off-by: Ben Shelton <ben.shelton@ni.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agobitbake: codeparser cache improvements
Richard Purdie [Fri, 25 Jul 2014 13:54:23 +0000 (14:54 +0100)]
bitbake: codeparser cache improvements

It turns out the codeparser cache is the bottleneck I've been observing when running
bitbake commands, particularly as it grows. There are some things we can do about
this:

* We were processing the cache with "intern()" at save time. Its actually much
  more memory efficient to do this at creation time.

* Use hashable objects such as frozenset rather than set so that we can
  compare objects

* De-duplicate the cache objects, link duplicates to the same object saving
  memory and disk usage and improving speed

* Using custom setstate/getstate to avoid the overhead of object attribute names
  in the cache file

To make this work, a global cache was needed for the list of set objects as
this was the only way I could find to get the data in at setstate object creation
time :(.

Parsing shows a modest improvement with these changes, cache load time is
significantly better, cache save time is reduced since there is now no need
to reprocess the data and cache is much smaller.

We can drop the compress_keys() code and internSet code from the shared cache
core since its no longer used and replaced by codeparser specific pieces.

(Bitbake rev: 4aaf56bfbad4aa626be8a2f7a5f70834c3311dd3)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agobitbake: cache: Optimise invalid cache file handling
Richard Purdie [Fri, 25 Jul 2014 13:52:19 +0000 (14:52 +0100)]
bitbake: cache: Optimise invalid cache file handling

If there is a corrupt/invalid cache file, we'd keep trying to reopen
it. This is pointless, simplify the code paths and delete the dead
file.

(Bitbake rev: c22441f7025be012ad2e62a51ccb993c3a0e16c9)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agobitbake: cache: Don't reload the cache file since we already have this data in memory
Richard Purdie [Fri, 25 Jul 2014 13:50:43 +0000 (14:50 +0100)]
bitbake: cache: Don't reload the cache file since we already have this data in memory

If we're writing out merged data to disk, its safe to assume that either
we loaded the data or couldn't. Loading it again is relatively pointless
and time consuming.

(Bitbake rev: 14c31e18e4a4a52ee54056aeefb09ff8c295b475)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agoinsane: Use a warning for FILEEXTRAPATHS issues for now
Richard Purdie [Fri, 25 Jul 2014 18:36:45 +0000 (19:36 +0100)]
insane: Use a warning for FILEEXTRAPATHS issues for now

(From OE-Core rev: f907b3a5b414aa53ce8271763f04532d7127006f)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agolib/oeqa: Fix accidental revert of code
Richard Purdie [Fri, 25 Jul 2014 16:29:10 +0000 (17:29 +0100)]
lib/oeqa: Fix accidental revert of code

(From OE-Core rev: 188545ba82119d75f80dde322a73712ce1f0f762)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agowic: squashfs partition support
Maciej Borzecki [Thu, 24 Jul 2014 12:11:50 +0000 (14:11 +0200)]
wic: squashfs partition support

It is possible to instruct wic to create a squashfs partition by setting
--fstype=squashfs in *.wks. For now this is only useable for rootfs
partitions (note that you must have squashfs support in the kernel). An
attempt to create an empty partition will produce a warning.

(From OE-Core rev: 30266a0be946bd0ce76d6920e7afe840c6c3bf80)

Signed-off-by: Maciej Borzecki <maciej.borzecki@open-rnd.pl>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agowic: --fsoptions handling
Maciej Borzecki [Thu, 24 Jul 2014 12:17:03 +0000 (14:17 +0200)]
wic: --fsoptions handling

Add handling of --fsoptions in parition definition. If no options are
specified, 'defaults' is used.

(From OE-Core rev: e91c0db15db74237606fae96c9b7d21936519a86)

Signed-off-by: Maciej Borzecki <maciej.borzecki@open-rnd.pl>
Signed-off-by: Maciek Borzecki <maciek.borzecki@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agoinsane: add checking to standardize how .bbappend files do FILESEXTRAPATHS
Hongxu Jia [Wed, 23 Jul 2014 03:33:01 +0000 (11:33 +0800)]
insane: add checking to standardize how .bbappend files do FILESEXTRAPATHS

When adding patches or config files from bbappend files, it requires
the use of FILESEXTRAPATHS, which has been an issue and failure point
for people starting to work with bitbake and oe-core.

We add checking to standardize how to use FILESEXTRAPATHS. Only the
format of:
  FILESEXTRAPATHS_append := ":${THISDIR}/Your_Files_Path" or
  FILESEXTRAPATHS_prepend := "${THISDIR}/Your_Files_Path:"
is acceptable.

[YOCTO #5412]

(From OE-Core rev: 69e083237e632f7d84a7b218dd12d1a5ad95a229)

Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agooeqa/rutime: Added testcase decorators for automated runtime tests. Also added LogRes...
Lucian Musat [Fri, 25 Jul 2014 09:02:30 +0000 (12:02 +0300)]
oeqa/rutime: Added testcase decorators for automated runtime tests. Also added LogResults decorator for oeTest class in oetest.py

(From OE-Core rev: 95b83084487d0712362ade8ac487999c3274bb96)

Signed-off-by: Lucian Musat <georgex.l.musat@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agoalsa-lib: remove non PN based -dev packages
Jackie Huang [Fri, 25 Jul 2014 10:05:36 +0000 (06:05 -0400)]
alsa-lib: remove non PN based -dev packages

All dev related items should be packaged in the core
PN-dev package not in seperate packages.

(From OE-Core rev: 9aa75f06e9e78602ad8e9a5ffa312f71057a90d7)

Signed-off-by: Jackie Huang <jackie.huang@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agocogl-1.0: Add libcogl-path package
Otavio Salvador [Fri, 25 Jul 2014 13:38:26 +0000 (10:38 -0300)]
cogl-1.0: Add libcogl-path package

The new library needs to be put in a specific package, or rootfs
generation fails as:

,----[ Error in rootfs generation ]
| Updating cache...               ########################### [100%]
| Computing transaction...error: Can't install
|   libclutter-1.0-0-1.18.2-r0@cortexa9hf_vfp_neon_mx6: unable to
|   install provider for libcogl-path.so.20:
|      error: libcogl-path20-1.18.2-r0@cortexa9hf_vfp_neon_mx6 is
|        conflicted by libcogl20-1.18.2-r0@cortexa9hf_vfp_neon_mx6
`----

Upstream split this library out from libcogl20.so, sothe libcogl package
no longer gets renamed to libcogl20 as it contains multiple libraries.

(From OE-Core rev: 9d63188950ecd1877adf1e40de1ca1928729d866)

Signed-off-by: Otavio Salvador <otavio@ossystems.com.br>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agoautotools: Improve configure dependency code for finding m4 files
Richard Purdie [Mon, 2 Jun 2014 20:15:01 +0000 (21:15 +0100)]
autotools: Improve configure dependency code for finding m4 files

We have an open bug about the warnings issues in builds from an sstate
cache when something like glib-2.0 gets rebuilt. The issue is that
sstate is "clever" and prunes unneeded dependencies out the tree.

For example is X depends on pkgconfig-native but we've already build X
and installed it from sstate, it will not get installed when you build Y
which depends on X.

This patch changes the logic to match the sstate behaviour and prune out
unnecessary dependencies from the scope of aclocal. This in turn removes
the warning about missing manifest files.

The issue is that this patch exposes holes in our DEPENDS in recipes,
specifically that some native tools are not listed, specifically, and
problematically, pkgconfig, gtk-doc and intltool-native in particular.

I've sent out patches against OE-Core that address the bulk of the
issues there however I'm conscious this is probably going to a bug issue
in other layers and may be too annoying to consider at this point. The
other alternative is simply to turn the warning into a debug statement.

I appreciate the code below has commented blocks, this is simply debug
I've left around for now. It will be cleaned from any final version.

(From OE-Core rev: 6d2dc279faa8b28a00895dc6a620d80e2dbac685)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agowget: fix build error with gnutls
Koen Kooi [Fri, 25 Jul 2014 10:51:33 +0000 (12:51 +0200)]
wget: fix build error with gnutls

This fixes '/usr/lib/libgnutls.so: error adding symbols: File in wrong format' in do_configured.

Reported-by: Jack Mitchell <ml@communistcode.co.uk>
(From OE-Core rev: 4e1649fe2fa2d512384324efcb1f9e04efeadd81)

Signed-off-by: Koen Kooi <koen@dominion.thruhere.net>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agoshadow-securetty: add freescale lpuart
Stefan Agner [Thu, 24 Jul 2014 07:44:22 +0000 (09:44 +0200)]
shadow-securetty: add freescale lpuart

Add Freescale lpuart tty's (ttyLPx) to securetty. Freescale Vybrid
devices running upstream kernel use this driver.

(From OE-Core rev: 1732ea461f1d0afe254e36a8bfe84a6675a42e66)

Signed-off-by: Stefan Agner <stefan@agner.ch>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agopython: fix _json module arbitrary process memory read vulnerability
Daniel BORNAZ [Thu, 24 Jul 2014 13:51:44 +0000 (15:51 +0200)]
python: fix _json module arbitrary process memory read vulnerability

http://bugs.python.org/issue21529

Python 2 and 3 are susceptible to arbitrary process memory reading by
a user or adversary due to a bug in the _json module caused by
insufficient bounds checking.

The sole prerequisites of this attack are that the attacker is able to
control or influence the two parameters of the default scanstring
function: the string to be decoded and the index.

The bug is caused by allowing the user to supply a negative index
value. The index value is then used directly as an index to an array
in the C code; internally the address of the array and its index are
added to each other in order to yield the address of the value that is
desired. However, by supplying a negative index value and adding this
to the address of the array, the processor's register value wraps
around and the calculated value will point to a position in memory
which isn't within the bounds of the supplied string, causing the
function to access other parts of the process memory.

(From OE-Core rev: 9ec213bf67afbdfdbe25802ec86487bb22aeb2e4)

Signed-off-by: Benjamin Peterson <benjamin@python.org>
Applied to python-native recipe in order to fix the above mentioned
vulnerability.

Upstream-Status: Submitted

Signed-off-by: Daniel BORNAZ <daniel.bornaz@enea.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agonspr: Fix for CVE-2014-1545
Xufeng Zhang [Thu, 24 Jul 2014 03:27:47 +0000 (23:27 -0400)]
nspr: Fix for CVE-2014-1545

Mozilla Netscape Portable Runtime (NSPR) before 4.10.6 allows remote
attackers to execute arbitrary code or cause a denial of service
(out-of-bounds write) via vectors involving the sprintf and console
functions.Per: http://cwe.mitre.org/data/definitions/787.html

(From OE-Core rev: 191cab2f679491c2b6ddba49c5cf4886dcd22f57)

Signed-off-by: Xufeng Zhang <xufeng.zhang@windriver.com>
Signed-off-by: Jackie Huang <jackie.huang@windriver.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agogcc-4.9.inc: fix parallel building failure
Hongxu Jia [Thu, 24 Jul 2014 01:48:59 +0000 (09:48 +0800)]
gcc-4.9.inc: fix parallel building failure

In subdir 'gcc', Most C source files included config.h which was
generated by a rule. But no related prerequisites was added to
the C source compiling rule. There was potential building failure
while makefile enabled parallel.

The C source compiling rule used suffix rule '.c.o', but the suffix
rule doesn't support prerequisites.
https://www.gnu.org/software/make/manual/html_node/Suffix-Rules.html

We used the pattern rule '%.o : %.c' to instead, and add the config.h
as its prerequisite

We also moved the '%.o : %.c' rule down to the 'build/%.o :' rule, which
makes '%.o : %.c' rule doesn't override 'build/%.o :'.

[YOCTO #6568]

(From OE-Core rev: 86c2483f0fe05fb763d280ae22d70e54cb4bb0bc)

Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agoperl: fix rebuid failed while ${CC} changed
Hongxu Jia [Thu, 24 Jul 2014 01:57:17 +0000 (09:57 +0800)]
perl: fix rebuid failed while ${CC} changed

Reproduce steps:

1) bitbake perl
2) vim local.conf to tweak CC, just add redundant option.
...
CC_append = " ${HOST_CC_ARCH}"
...

3) bitbake perl
...
./miniperl -Ilib make_ext.pl lib/auto/Time/HiRes/HiRes.so MAKE=make LIBPERL_A=libperl.so LINKTYPE=dynamic
    Making Time::HiRes (all)my $filename=
Deleting non-Cross makefile
Running Makefile.PL in cpan/Time-HiRes
Makefile.PL: The "xdefine" exists, skipping the configure step.
("tmp/sysroots/x86_64-linux/usr/bin/perl-native/perl5.20.0.real Makefile.PL --configure" to force the configure step)
Warning: No Makefile!
make[2]: Entering directory `tmp/work/armv5te-poky-linux-gnueabi/perl/5.20.0-r1/perl-5.20.0/cpan/Time-HiRes'
make[2]: *** No rule to make target `config'.  Stop.
...

While ${CC} changed, the existance of 'xdefine' caused makefile
regeneration failed.

[YOCTO #6569]

(From OE-Core rev: fa43d4f268bc4a6fafcf14029049f2997bc72d6c)

Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agoautotools.bbclass: Enhance sed regexp to avoid extra subshell
Matthieu Crapet [Thu, 24 Jul 2014 09:39:43 +0000 (11:39 +0200)]
autotools.bbclass: Enhance sed regexp to avoid extra subshell

head -n1 can be done using sed.

(From OE-Core rev: 38d50331acbc1e279449ae6b313ff0116b6c44e8)

Signed-off-by: Matthieu Crapet <Matthieu.Crapet@ingenico.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agooeqa/runtime: Added skipModule import for test modules that use it.
Lucian Musat [Thu, 24 Jul 2014 12:41:25 +0000 (15:41 +0300)]
oeqa/runtime: Added skipModule import for test modules that use it.

The modules that use skipModule should import it themselves and not rely on somebody else to import it.

(From OE-Core rev: 6a14db407d471e717f41342ac0700e6a383c32c3)

Signed-off-by: Lucian Musat <georgex.l.musat@intel.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agooeqa: Refactor test skipping decorators to use the unittest result object
Lucian Musat [Thu, 24 Jul 2014 12:41:24 +0000 (15:41 +0300)]
oeqa: Refactor test skipping decorators to use the unittest result object

In order to make the test skipping decorators independent of the oeTest object we rely on the unittest result object to construct skip, fail and error lists used by these decorators.
Created a new object getResults that analyses upper frames and retrieves the unittest result object instance, then return a list of failed, skipped and error tests.
Also removed the oetest import from decorators.py because it was no longer required.

(From OE-Core rev: 4d2d201158236bd4c72546cf8db88681ff921b11)

Signed-off-by: Lucian Musat <georgex.l.musat@intel.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agogstreamer1.0-plugins-good: add missing dependency on libcap
Jackie Huang [Thu, 24 Jul 2014 05:55:16 +0000 (01:55 -0400)]
gstreamer1.0-plugins-good: add missing dependency on libcap

(From OE-Core rev: e1ac22b340a66e3da53182faf0d624db9ccbdee1)

Signed-off-by: Jackie Huang <jackie.huang@windriver.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agogst-plugins-good: add missing dependency on libcap
Jackie Huang [Thu, 24 Jul 2014 05:55:15 +0000 (01:55 -0400)]
gst-plugins-good: add missing dependency on libcap

(From OE-Core rev: ad68fd0e73a549356741bb050c4343ebd4a1e2fb)

Signed-off-by: Jackie Huang <jackie.huang@windriver.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agopulseaudio: add missing dependency on libcap
Jackie Huang [Thu, 24 Jul 2014 05:55:14 +0000 (01:55 -0400)]
pulseaudio: add missing dependency on libcap

(From OE-Core rev: 4f0a1fc6c324840459919b80a9c096efdd2bf5bd)

Signed-off-by: Jackie Huang <jackie.huang@windriver.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agodebian.bbclass: inherit package
Ross Burton [Wed, 23 Jul 2014 22:35:42 +0000 (23:35 +0100)]
debian.bbclass: inherit package

This class defines a package_name_hook implementation but as EXPORT_FUNCTIONS is
order-dependent it needs to inherit package.bbclass first to ensure that the
"base" definition in there is defined first, otherwise with a suitable inherit
order of debian and then a packaging class can result in the stub
package_name_hook being incorrectly used.

(From OE-Core rev: 3aa52f85e774bf82e8470a8fd849bd6953930720)

Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agobase-files: Don't export TZ if /etc/TZ exists
Richard Tollerton [Wed, 23 Jul 2014 22:29:28 +0000 (17:29 -0500)]
base-files: Don't export TZ if /etc/TZ exists

While glibc/eglibc looks for the time zone in /etc/localtime, other libc
alternatives (e.g. uclibc) may look for it in /etc/TZ.  If /etc/TZ
exists, don't fall back to setting TZ to "UTC" in /etc/profile.

(From OE-Core rev: a69c3ba99be1502c50d3d1eb9ff66f135884ed76)

Signed-off-by: Richard Tollerton <rich.tollerton@ni.com>
Signed-off-by: Ben Shelton <ben.shelton@ni.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agoglib-2.0: use ptest-gnome
Ross Burton [Wed, 23 Jul 2014 22:07:23 +0000 (23:07 +0100)]
glib-2.0: use ptest-gnome

(From OE-Core rev: fb32cd7abac268747347ee5cff98a4d07dc4b780)

Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agoptest-gnome: add ptest helper for GNOME packages
Ross Burton [Wed, 23 Jul 2014 22:07:22 +0000 (23:07 +0100)]
ptest-gnome: add ptest helper for GNOME packages

Many GNOME packages are using their InstalledTests pattern, where the test suite
can be trivially installed.  To avoid repeating the same logic over and over,
add a class to encapsulate this.

(From OE-Core rev: 6a66fadbd7d7675c61c342f9c338edbdedf8b92c)

Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agoshared-mime-info: upgrade to 1.3
Ross Burton [Wed, 23 Jul 2014 21:58:14 +0000 (22:58 +0100)]
shared-mime-info: upgrade to 1.3

(From OE-Core rev: 8abd1d0d605cec77faca1f21663feb4ad9e27d1d)

Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agoxf86-video-evdev: upgrade to 2.9.0
Ross Burton [Wed, 23 Jul 2014 21:58:13 +0000 (22:58 +0100)]
xf86-video-evdev: upgrade to 2.9.0

Build-dependency on libevdev added.

(From OE-Core rev: 527d84799e4a7fb194002ea4db5deee9a6a3086c)

Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agolibevdev: add new recipe (needed by xf86-input-evdev)
Ross Burton [Wed, 23 Jul 2014 21:58:12 +0000 (22:58 +0100)]
libevdev: add new recipe (needed by xf86-input-evdev)

(From OE-Core rev: ad8e7f6d379a99649a1431a4bae7ad0bb0a78d9d)

Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agolibxi: upgrade to 1.7.4
Ross Burton [Wed, 23 Jul 2014 21:58:11 +0000 (22:58 +0100)]
libxi: upgrade to 1.7.4

Also remove outdated (~1.2.99.5) git recipe that was never used.

(From OE-Core rev: de36faa2a6a7c7a379807d69fa07a04a4c878ff8)

Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agocurl: Upgrade to 7.37.1
Saul Wold [Mon, 21 Jul 2014 22:32:15 +0000 (15:32 -0700)]
curl: Upgrade to 7.37.1

(From OE-Core rev: 2cd9141c8a8b9639c95cb68496f0392ba26595dc)

Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agocups: Upgrade to 1.7.4
Saul Wold [Mon, 21 Jul 2014 22:30:13 +0000 (15:30 -0700)]
cups: Upgrade to 1.7.4

Remove patch that was backported

(From OE-Core rev: 984c8d621a2c2315a6c18b0f0b2fc0b380e7ca4d)

Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agobinutils-cross-canadian: Explicitly DEPEND on nativesdk-flex, we require it anyway
Richard Purdie [Thu, 24 Jul 2014 21:11:51 +0000 (22:11 +0100)]
binutils-cross-canadian: Explicitly DEPEND on nativesdk-flex, we require it anyway

(From OE-Core rev: 1ed42b9248ba1ba393c812e4c485d25db464e683)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agoqemu: Use PACKAGECONFIG for libusb to avoid floating dependency
Richard Purdie [Thu, 24 Jul 2014 21:11:15 +0000 (22:11 +0100)]
qemu: Use PACKAGECONFIG for libusb to avoid floating dependency

(From OE-Core rev: 24cc1af031244ad7c152b98312012b6344e57d48)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agogcc-multilib: Simply/fix MULTILIB_OPTIONS handling
Richard Purdie [Thu, 24 Jul 2014 21:10:49 +0000 (22:10 +0100)]
gcc-multilib: Simply/fix MULTILIB_OPTIONS handling

MULTILIB_OPTIONS takes the parameters which trigger a given multilib to be
selected. It supports *one* option per multilib, '/' separated. Spaces
separate options used to generate additional multilib combinations.

Adding in all of CFLAGS to this is therefore clearly a really bad idea
but how do we fix things?

The best option I've come up with so far is a list of whitelist variables
to use to trigger the multilibs. Its populated with the standard multilibs
we support, anyone setting up an advanced multilib can populate the variable
with the correct trigger parameters.

This has the advantage of simplifying the code and allowing us to remove
the code filtering blocks since there is no longer option duplication. Testing
after this change shows a much improved sdk toolchain functionality.

(From OE-Core rev: 29202cd1b9d2e5d56e5b9f7a596e44e229c90492)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agolib/oe/classextend: Avoid early expansion of PR values
Richard Purdie [Thu, 24 Jul 2014 21:10:13 +0000 (22:10 +0100)]
lib/oe/classextend: Avoid early expansion of PR values

Variables like RDEPENDS can contain EXTENDPKGV which in turn uses AUTOPR
based values. This gets set during do_package execution so we want to
defer expansion until then. The only way we can do this in the RDEPENDS
(and friends) mapping code is to subsitute a dummy value, then change it
back again. Horrible but I can't see any other way.

This resolves multilib build failures with inconsistent PR values.

(From OE-Core rev: 5aea553e6eaa3b9647f26944976d2a9da79cba42)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agocross-canadian: Copy target_ definitions from cross.bbclass
Richard Purdie [Thu, 24 Jul 2014 21:09:38 +0000 (22:09 +0100)]
cross-canadian: Copy target_ definitions from cross.bbclass

A while back we fixed the cross definitions to work better in multilib
configurations, apply the same fixes to cross-candian.bbclass

(From OE-Core rev: 4544b7f1d0abd1b1efd74da430f1ddedf3fdbd1d)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agopopulate_sdk_base: Extend TOOLCHAIN_TARGET_TASK to include multilib variants
Richard Purdie [Thu, 24 Jul 2014 21:09:09 +0000 (22:09 +0100)]
populate_sdk_base: Extend TOOLCHAIN_TARGET_TASK to include multilib variants

Most people expect the toolchain from a multilib build to contain multilib
components. This change makes that happen and is easy for users to override
should they want something different.

(From OE-Core rev: 396371588c7fd2d691ca9c39cd02287e43cb665b)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agolibomxil-0.9.3: Remove versioning for bellagio .so files.
Drew Moseley [Thu, 24 Jul 2014 14:59:11 +0000 (10:59 -0400)]
libomxil-0.9.3: Remove versioning for bellagio .so files.

The so files installed under ${libdir}/bellagio are not versioned and should
be installed without version-based symlinks so that omxregister-bellagio
can properly find and register them.

(From OE-Core rev: 3846b1ec782ba0cc64d389d03116743208e2383f)

Signed-off-by: Drew Moseley <drew_moseley@mentor.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agoRevert "libomxil-0.9.3: Remove versioning for .so files."
Drew Moseley [Thu, 24 Jul 2014 14:59:10 +0000 (10:59 -0400)]
Revert "libomxil-0.9.3: Remove versioning for .so files."

The previous version of this fix was too aggressive and removed
versioning from too many of the .so files in the libomxil package.

This reverts commit 0ef3734c2f279bf463ba4d1aef5241cd4882d483.

(From OE-Core rev: b76d254db92d9c08e8d5d41becb2e60178cebb33)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agoallarch: Generate same package for MIPS and non-MIPS targets
Mike Crowe [Thu, 24 Jul 2014 11:24:53 +0000 (12:24 +0100)]
allarch: Generate same package for MIPS and non-MIPS targets

LINKER_HASH_STYLE differs between MIPS and non-MIPS targets. This means
that LDFLAGS differs too. LDFLAGS is exported so it influences all task
hashes. Unfortunately this means that packages with architecture "all"
differ depending on whether they are built for a MIPS or non-MIPS target.
This causes a lot of unnecessary churn in the ipk/all directory when
switching build targets.

The simplest way to fix this is to ensure that LDFLAGS stays the same for
architecture "all" packages by clearing it. It shouldn't being used by such
packages anyway.

(From OE-Core rev: 14f4d016fef9d660da1e7e91aec4a0e807de59ab)

Signed-off-by: Mike Crowe <mac@mcrowe.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agolibice: fix non-deterministic libbsd dependency
Ross Burton [Thu, 24 Jul 2014 19:47:08 +0000 (20:47 +0100)]
libice: fix non-deterministic libbsd dependency

libice 1.0.9 added automatic detection of arc4random(), which is in libbsd on
Linux.  As this is automatic and leads to failing builds when ssstate is reused,
seed the autoconf cache as relevant to implement a PACKAGECONFIG for the
functionality.

Default to not using arc4random() as the fallback has been in use for many
years, but people interested in security may wish to turn this on to increase
the security of the X authentication cookies.

(From OE-Core rev: 71d5eb34678eafbcb0f8ff4c31d52a276949bb0c)

Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agokern-tools: adjust to full history meta-data
Bruce Ashfield [Thu, 24 Jul 2014 14:57:25 +0000 (10:57 -0400)]
kern-tools: adjust to full history meta-data

In order to generate and support kernel trees with full history, we need
to modify the kernel tools

 e914d570232a kgit-checkpoint: ensure that full meta-data artifacts are maintained
 192be836d318 kgit-scc: allow meta-data history to be maintained

(From OE-Core rev: f2015ead17c875ae37a9ad496fdafef2b931f771)

Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agolinux-yocto/3.14: libata and generic CPU modalias handling
Bruce Ashfield [Tue, 22 Jul 2014 20:40:39 +0000 (16:40 -0400)]
linux-yocto/3.14: libata and generic CPU modalias handling

Updating the 3.14 yocto kernel to incorporate the following fix
and feature of interest.

   5724bf17acbf x86: align x86 arch with generic CPU modalias handling
   6b9a52451a78 cpu: add generic support for CPU feature based module
  38367de316bb libata: support the ata host which implements a queue depth less than 32

[YOCTO: #6489]

(From OE-Core rev: 1fcb9843d663a5746690c81fe1cd6cf84dac04b9)

Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agokernel: don't copy .so.dbg files into kernel source install
Bruce Ashfield [Mon, 21 Jul 2014 18:09:11 +0000 (14:09 -0400)]
kernel: don't copy .so.dbg files into kernel source install

In 3.16+ x86-64 kernel builds produce a vdso64.so.dbg file. If this file is
copied into the kernel source install multiple QA failures are triggered.
Specifically, this file triggers a debug package split that results in
files installed but not shipped, and invalid .debug file errors.

By ensuring that .so files are not copied, we avoid this incorrect split
with no impact on future build phases.

(From OE-Core rev: f1f6d153de9dc675b4bf4020799b2365b1b62ec7)

Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agolinux-yocto-dev: bump to v3.16+
Bruce Ashfield [Tue, 22 Jul 2014 13:14:00 +0000 (09:14 -0400)]
linux-yocto-dev: bump to v3.16+

(From OE-Core rev: f90af1a78c2b616469ab49e3d426878602ad3e7b)

Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agolinux-yocto: x86_64: expand kernel stack to 16K
Bruce Ashfield [Thu, 17 Jul 2014 19:19:52 +0000 (15:19 -0400)]
linux-yocto: x86_64: expand kernel stack to 16K

Updating to backport the following mainline commit:

[
    x86_64: expand kernel stack to 16K

    commit 6538b8ea886e472f4431db8ca1d60478f838d14b upstream

    While I play inhouse patches with much memory pressure on qemu-kvm,
    3.14 kernel was randomly crashed. The reason was kernel stack overflow.

    When I investigated the problem, the callstack was a little bit deeper
    by involve with reclaim functions but not direct reclaim path.

   ....
]

(From OE-Core rev: b162bcf26a5b97fddd2a64789f97ec705bb354f9)

Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agolttng-modules: re-enable ARM builds
Bruce Ashfield [Tue, 22 Jul 2014 18:10:01 +0000 (14:10 -0400)]
lttng-modules: re-enable ARM builds

With lttng 2.4.2 and gcc 4.9, we can now enable lttng-modules for ARM.

(From OE-Core rev: f6587be6cd3dc864143b1c0be0bb8179a61dc835)

Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agolttng-modules: update to 2.5.0
Bruce Ashfield [Thu, 17 Jul 2014 19:15:32 +0000 (15:15 -0400)]
lttng-modules: update to 2.5.0

During the uprev of the yocto kernel to 3.16, lttng-modules failed to build.
To grab the latest stable content, we update to 2.5.0, and add two patches
to also make it build against 3.16+.

We also drop the older 2.3.3 lttng-modules, since it is no longer required
to support ARM builds.

(From OE-Core rev: 10680c8f06c52b25ed63d315596707701402646d)

Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agolinux-yocto/3.14: vexpress and MVM firmware support
Bruce Ashfield [Thu, 17 Jul 2014 03:50:10 +0000 (23:50 -0400)]
linux-yocto/3.14: vexpress and MVM firmware support

Updating the 3.14 SRCREVs to integrate the following changes:

 meta: iwlwifi: Add MVM firmware support
 vexpress: Pass LOADADDR to Makefile

(From OE-Core rev: da1eca40b5ff608df6f4041a92b2d4c71ee6784e)

Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agoinsane: Add build depends check
Richard Purdie [Wed, 9 Jul 2014 20:26:56 +0000 (21:26 +0100)]
insane: Add build depends check

Now that we can get the task dependency tree from bitbake, we can start
to use this to strengthen our QA checks. If a dependency is added on
something which isn't in our dependency tree, that is obviously a bad
thing for example.

This patch therefore checks the RDEPENDS against the list of tasks and
ensures we do have a dependency present, if not a QA warning or error
can be issued through the usual mechanism.

The implementation is complicated by needing to resolve the RDEPENDS to
a PN using pkgdata. Its possible that can be an RPROVIDES of another
package so we need to check that too if it isn't a direct RDEPENDS.

To allow this test to work, we need to extend the do_package_qa
dependencies to include all RDEPENDS. In practise the do_package_write_*
tasks already do this so there should be no new circular dependencies or
any issues like that.

For now the issues are warnings as there are issues this finds in
OE-Core which need to be resolved and certainly will be in other layers
too. This change should simplify and assist some of Martin's dependency
scripts, the idea for this came from a discussion with Martin. It has
changed in that it doesn't just cover shlibs dependencies but checks all
dependencies.

(From OE-Core rev: f6cb24cf2255297308ef57399a6be407129d9b8f)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agobitbake: bitbake: remove choices for dump-signatures
Robert Yang [Thu, 24 Jul 2014 08:22:42 +0000 (01:22 -0700)]
bitbake: bitbake: remove choices for dump-signatures

The SIGNATURE_HANDLER can be defined by the user, so we can't use choices.

(Bitbake rev: 0036b36e333a68c6d30a6bf5c21bfd4fd3e8441b)

Signed-off-by: Robert Yang <liezhi.yang@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agopackage_ipk.bbclass: Support hierarchical feed
Paul Barker [Wed, 28 May 2014 15:19:50 +0000 (15:19 +0000)]
package_ipk.bbclass: Support hierarchical feed

This patch allows for an optional new layout for ipk feed directories which I've
called a 'hierarchical feed' and is based on how Debian pools package files. It
is disabled by default and is enabled by setting IPK_HIERARCHICAL_FEED to "1".

In the traditional feed layout, package files are placed in <outdir>/<arch>/.
This can lead to several thousand files existing in a single directory which is
often a problem if developers want to upload a package feed to a shared web
hosting provider. For example, in my case, listing files via FTP only shows the
first 2000 files, breaking my scripts which attempt to upload only new and
changed files via FTP.

In the hierarchical feed, package files are written to
<outdir>/<arch>/<pkg_prefix>/<pkg_subdir>, where pkg_prefix is the first letter
of the package file name for non-lib packages or "lib" plus the 4th letter of
the package file name for lib packages (eg, 'l' for less, 'libc' for libc6).
pkg_subdir is the root of the package file name, discarding the version and
architecture parts and the common suffixes '-dbg', '-dev', '-doc', '-staticdev',
'-locale' and '-locale-*' which are listed in meta/conf/bitbake.conf.

This change relies on recent patches to opkg-utils which support hierarchical
package feeds.

Signed-off-by: Paul Barker <paul@paulbarker.me.uk>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agobitbake.conf: move BB_NUMBER_THREADS and PARALLEL_MAKE to bitbake.conf
Roxana Ciobanu [Wed, 23 Jul 2014 07:46:02 +0000 (10:46 +0300)]
bitbake.conf: move BB_NUMBER_THREADS and PARALLEL_MAKE to bitbake.conf

Currently, BB_NUMBER_THREADS and PARALLEL_MAKE default to unset and
are set in local.conf. Now that we have the automatic probing,
the default values can be set in bitbake.conf and an example of
explicitly defining how many tasks to run can be moved to
local.conf.sample.extended.

[YOCTO #6217]

Signed-off-by: Roxana Ciobanu <roxana.ciobanu@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agogst-ffmpeg: Add CVE patches
Yue Tao [Tue, 22 Jul 2014 07:46:36 +0000 (15:46 +0800)]
gst-ffmpeg: Add CVE patches

Security Advisory - ffmpeg - CVE-2013-0866

The aac_decode_init function in libavcodec/aacdec.c in FFmpeg before
1.0.4 and 1.1.x before 1.1.2 allows remote attackers to have an
unspecified impact via a large number of channels in an AAC file, which
triggers an out-of-bounds array access.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0866

gst-ffmpeg: Security Advisory - ffmpeg - CVE-2013-0875

The ff_add_png_paeth_prediction function in libavcodec/pngdec.c in
FFmpeg before 1.1.3 allows remote attackers to have an unspecified
impact via a crafted PNG image, related to an out-of-bounds array
access.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0875

gst-ffmpeg: Security Advisory - ffmpeg - CVE-2013-0860

The ff_er_frame_end function in libavcodec/error_resilience.c in FFmpeg
before 1.0.4 and 1.1.x before 1.1.1 does not properly verify that a
frame is fully initialized, which allows remote attackers to trigger a
NULL pointer dereference via crafted picture data.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0860

gst-ffmpeg: Security Advisory - ffmpeg - CVE-2011-3934

Double free vulnerability in the vp3_update_thread_context function in
libavcodec/vp3.c in FFmpeg before 0.10 allows remote attackers to have
an unspecified impact via crafted vp3 data.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3934

gst-ffmpeg: Security Advisory - ffmpeg - CVE-2011-3946

The ff_h264_decode_sei function in libavcodec/h264_sei.c in FFmpeg
before 0.10 allows remote attackers to have an unspecified impact via
crafted Supplemental enhancement information (SEI) data, which triggers
an infinite loop.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3946

gst-ffmpeg: Security Advisory - ffmpeg - CVE-2013-7023

The ff_combine_frame function in libavcodec/parser.c in FFmpeg before
2.1 does not properly handle certain memory-allocation errors, which
allows remote attackers to cause a denial of service (out-of-bounds
array access) or possibly have unspecified other impact via crafted
data.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-7023

gst-ffmpeg: Security Advisory - ffmpeg - CVE-2013-7009

The rpza_decode_stream function in libavcodec/rpza.c in FFmpeg before
2.1 does not properly maintain a pointer to pixel data, which allows
remote attackers to cause a denial of service (out-of-bounds array
access) or possibly have unspecified other impact via crafted Apple RPZA
data.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-7009

gst-ffmpeg: Security Advisory - ffmpeg - CVE-2013-0855

Integer overflow in the alac_decode_close function in libavcodec/alac.c
in FFmpeg before 1.1 allows remote attackers to have an unspecified
impact via a large number of samples per frame in Apple Lossless Audio
Codec (ALAC) data, which triggers an out-of-bounds array access.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0855

gst-ffmpeg: Security Advisory - ffmpeg - CVE-2011-4351

Buffer overflow in FFmpeg before 0.5.6, 0.6.x before 0.6.4, 0.7.x before
0.7.8, and 0.8.x before 0.8.8 allows remote attackers to execute
arbitrary code via unspecified vectors.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4351

gst-ffmpeg: Security Advisory - ffmpeg - CVE-2013-0848

The decode_init function in libavcodec/huffyuv.c in FFmpeg before 1.1
allows remote attackers to have an unspecified impact via a crafted
width in huffyuv data with the predictor set to median and the
colorspace set to YUV422P, which triggers an out-of-bounds array access.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0848

gst-ffmpeg: Security Advisory - ffmpeg - CVE-2011-3944

The smacker_decode_header_tree function in libavcodec/smacker.c in
FFmpeg before 0.10 allows remote attackers to have an unspecified impact
via crafted Smacker data.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3944

           file://0001-huffyuvdec-check-width-more-completely-avoid-out-of-.patch \

gst-ffmpeg: Security Advisory - ffmpeg - CVE-2013-7010

Multiple integer signedness errors in libavcodec/dsputil.c in FFmpeg
before 2.1 allow remote attackers to cause a denial of service
(out-of-bounds array access) or possibly have unspecified other impact
via crafted data.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-7010

gst-ffmpeg: Security Advisory - ffmpeg - CVE-2011-3941

The decode_mb function in libavcodec/error_resilience.c in FFmpeg before
0.10 allows remote attackers to have an unspecified impact via vectors
related to an uninitialized block index, which triggers an out-of-bound
write.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3941

gst-ffmpeg: Security Advisory - ffmpeg - CVE-2013-0846

Array index error in the qdm2_decode_super_block function in
libavcodec/qdm2.c in FFmpeg before 1.1 allows remote attackers to have
an unspecified impact via crafted QDM2 data, which triggers an
out-of-bounds array access.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0846

gst-ffmpeg: Security Advisory - ffmpeg - CVE-2012-6618

The av_probe_input_buffer function in libavformat/utils.c in FFmpeg
before 1.0.2, when running with certain -probesize values, allows remote
attackers to cause a denial of service (crash) via a crafted MP3 file,
possibly related to frame size or lack of sufficient frames to estimate
rate.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-6618

gst-ffmpeg: Security Advisory - ffmpeg - CVE-2012-6617

The prepare_sdp_description function in ffserver.c in FFmpeg before
1.0.2 allows remote attackers to cause a denial of service (crash) via
vectors related to the rtp format.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-6617

(From OE-Core rev: 58f08a96764094189b5aaf3cc8b4cc0c95e23409)

Signed-off-by: Yue Tao <Yue.Tao@windriver.com>
Signed-off-by: Roy Li <rongqing.li@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agoserf: specify LIBDIR to avoid install issue
Ting Liu [Wed, 23 Jul 2014 03:58:57 +0000 (11:58 +0800)]
serf: specify LIBDIR to avoid install issue

LIBDIR defaults to ${prefix}/lib, use ${libdir} to avoid issue on
64bit platforms.

(From OE-Core rev: e5c023abd5265293623ac993a048d7abb9b71a59)

Signed-off-by: Ting Liu <ting.liu@freescale.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agoperf: remove CFLAGS override
Ting Liu [Wed, 23 Jul 2014 03:58:56 +0000 (11:58 +0800)]
perf: remove CFLAGS override

definition of __SANE_USERSPACE_TYPES__ was added in kernel source by
commit e3541ec75219819d3235f80125a1a75d798ff6e1
perf tools, powerpc: Fix compile warnings in tests/attr.c

Overriding the CFLAGS makes it impossible for kernel build system to
append to it, thus making the build fail in various ways as:

|     CC /.../perf/1.0-r9/perf-1.0/perf.o
| In file included from builtin.h:4:0,
|                  from perf.c:9:
| util/util.h:74:24: fatal error: lk/debugfs.h: No such file or directory
|  #include <lk/debugfs.h>
|                         ^
| compilation terminated.

(From OE-Core rev: 7e7063e495d6451b46e06d08d16f92d0597a7d11)

Signed-off-by: Ting Liu <ting.liu@freescale.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agonet-tools: ifconfig interface:0 del <IP> will remove the aliased IP on IA64
Yong Zhang [Wed, 23 Jul 2014 06:59:25 +0000 (02:59 -0400)]
net-tools: ifconfig interface:0 del <IP> will remove the aliased IP on IA64

(From OE-Core rev: d96b5072d53f134c5038601e30368db6ccfefe78)

Signed-off-by: Yong Zhang <yong.zhang@windriver.com>
Signed-off-by: Jackie Huang <jackie.huang@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agotoolchain-script: Really fix CANADIANEXTRAOE issues
Richard Purdie [Wed, 23 Jul 2014 16:05:06 +0000 (17:05 +0100)]
toolchain-script: Really fix CANADIANEXTRAOE issues

There was an error in the previous fix for the powerpc toolchain issue, this
should correct it (and simplify the code too).

[YOCTO #6490]

(From OE-Core rev: 54ddf3fe060715534cd9e23d6e89cf6b06ed3d9f)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
10 years agosanity: Check for setgid/setuid TMPDIR
Richard Purdie [Wed, 23 Jul 2014 16:05:44 +0000 (17:05 +0100)]
sanity: Check for setgid/setuid TMPDIR

Building in a TMPDIR which has setgid or setuid is a bad idea. We could try and reset
the permissions but since these can also invade into other directories like the cache
or sstate, lets tell the user to fix it instead.

[YOCTO #6519]

(From OE-Core rev: 8e44fc36018fda9b1f9ca8aebde3e744afc07eaa)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>