Zeus updates#57
Merged
ricardosalveti merged 7 commits intofoundriesio:zeusfrom Dec 17, 2019
Merged
Conversation
Meta-lmp is now composed of two layers, one for the base distro settings and another for the BSP specific changes. Relevant changes: - 0c3b234 Split meta-lmp into meta-lmp-base and meta-lmp-bsp - 2b11141 u-boot: drop changes from machines that are now using u-boot-fio - 08270a5 lmp.conf: no need for sota override in image boot files - dd025aa layer.conf: drop thud and warrior - 8354501 lmp.conf: drop wks_file_sota removal - b11c1b7 wic: drop raspberrypi.wks - 6cb7fbd wic: drop cl-som-imx7.wks - fcb5ffd wic: drop beaglebone-yocto.wks - 1ff0a45 wic: drop efidisk.wks, not used by any target Signed-off-by: Ricardo Salveti <[email protected]>
Relevant changes: - 4af1824f linux-fslc-lts-4.19: Add CONFIG_USER_NS - 34c51e01 optee-os_3.2.0: change PLATFORM_FLAVOR for imx6ulz14x14evk Signed-off-by: Ricardo Salveti <[email protected]>
Relevant changes: - b04e1edb README: update mailing list address - 5670cea7 clang: drop bbappend - 2d5daae7 intel-microcode: upgrade 20191112 -> 20191115 - 08e5d21c linux-intel-rt/4.14: update to v4.14.146 - b559b623 linux-intel/4.14: update to v4.14.152 - ef1ea6b9 linux-intel-rt/4.19: update to v4.19.72 - ff01560c linux-intel/4.19: update to v4.19.80 - 0045bb5a intel-microcode: upgrade 20190918 -> 20191112 - 24eb018d vino: set CVE_PRODUCT - 6458b399 mkl-dnn: set CVE_PRODUCT - 3ee3f348 mediasdk: set CVE_PRODUCT - 6a473fdb ixgbe: set CVE_PRODUCT - 835f58cf dldt-inference-engine: install custom opencl kernels as well - b7bfdc34 dldt-model-optimizer: upgrade 2019r3 -> 2019r3.1 - b478b4c4 dldt-inference-engine: upgrade 2019r3 -> 2019r3.1 - dc1fcaa8 README: update for zeus release requirements Signed-off-by: Ricardo Salveti <[email protected]>
Relevant changes: - 0d16b31c3 mbedtls: upgrade 2.16.2 -> 2.16.3 - c53a33030 nvme-cli: defer host ID generation to post installation - df851c3e3 freeradius: fix CVE-2019-10143 - 8b00105fa quagga: fix PIDFile path for service files - 0d15888c6 rsyslog: Dont force enable atomic builtins on mips - b784eca9a rsyslog: upgrade from v8.1908.0 to v8.1910.0 - 866866c06 rsyslog: fix CVE-2019-17041 - fdfa4cde1 wireshark: upgrade 3.0.3 -> 3.0.6 - ee5aa6911 samba: upgrade 4.10.8 -> 4.10.10 - b6d1134bc samba: fix installation for minimal build - c151fb020 mariadb: upgrade 10.3.16 -> 10.3.18 - e5cba1a54 gitpkgv.bbclass: Support also lightweight tags - 81e1ae465 gitpkgv.bbclass: Use --git-dir option - 3eb4c7a08 python-more-itertools.inc: fix python2 package not incorrectly generated - 3ed6541a7 modemmanager: Upgrade 1.10.6 -> 1.10.8 - 635b211e0 php: fix CVE-2019-11043 - aad5b3d07 README: updated Maintainers list for Zeus Signed-off-by: Ricardo Salveti <[email protected]>
Relevant changes: - 1fd5a10 poky.conf: Bump version for 3.0.1 zeus release Signed-off-by: Ricardo Salveti <[email protected]>
Relevant changes: - a6bd358a27 dosfstools: fix CP437 error from `dosfsck -l` - f3e7298c32 libarchive: fix CVE-2019-19221 - 3d790738ab glibc: fix CVE-2019-19126 - f1cc582fe1 nasm: fix CVE-2019-14248 - 85ae609d78 ghostscript: fix for CVE-2019-14811 is same as CVE-2019-14813 - d54d6c9948 libsoup-2.4: upgrade to 2.66.4 - 581de91fcf go: fix CVE-2019-17596 - 016bb19213 bind: Whitelist CVE-2019-6470 - 0a20e92a02 gdb: Fix CVE-2019-1010180 - 9827b7df6f ghostscript: CVE-2019-14869 - 75a4cabf55 build-appliance-image: Update to zeus head revision - 5a0ccf24fe build-appliance-image: Update to zeus head revision - 4a14eb567b build-appliance: Use zeus as the branch - 378b6de449 build-appliance-image: Update to zeus head revision - 7ca54d0251 gstreamer: Change SRC_URI to use HTTPS access instead of HTTP - 2dc11f32c6 gst-validate: upgrade to version 1.16.1 - 8e80527d54 gstreamer1.0-rtsp-server: upgrade to version 1.16.1 - 0378bc8063 gstreamer1.0-python: upgrade to version 1.16.1 - a11e9d9cbd gstreamer1.0-omx: upgrade to version 1.16.1 - 95f10a15a8 gstreamer1.0-vaapi: upgrade to version 1.16.1 - b8b52c405a gstreamer1.0-libav: upgrade to version 1.16.1 - bed2a8de47 gstreamer1.0-plugins-ugly: upgrade to version 1.16.1 - 48f375103a gstreamer1.0-plugins-bad: upgrade to version 1.16.1 - f992741666 gstreamer1.0-plugins-good: upgrade to version 1.16.1 - 91fb2701cb gstreamer1.0-plugins-base: upgrade to version 1.16.1 - 8946642d42 gstreamer1.0: upgrade to version 1.16.1 - 07a8d01338 bind: fix CVE-2019-6471 and CVE-2018-5743 - 9c44ecdb9b tiff: Refresh patch - d8cd909e7c python: update to 2.7.17 - 2bb221ee56 Revert "devtool/standard.py: Not filtering devtool workspace for devtool finish" - ebbfe23acf boost: fix build for x32 - 3ded9a64c9 cve-check: fetch CVE data once at a time instead of in a single call - 98162c04c8 cve-check: neaten get_cve_info - 0f42a1d4db cve-check: rewrite look to fix false negatives - 15f6b4b598 cve-update-db-native: clean up proxy handling - 1b4a524da1 cve-update-db-native: add an index on the CVE ID column - 1c10a3189a cve-update-db-native: don't hardcode the database name - f9e9107dbe cve-update-db-native: don't refresh more than once an hour - 02e6b727bf cve-check: we don't actually need to unpack to check - 424ea81c3b libsoup: set CVE_PRODUCT - 4471cd22db lz4: Whitelist CVE-2014-4715 - 91d657a0c4 oeqa: reproducible: Add option to capture bad packages - da4c28d5fd selftest: check that 'devtool upgrade' correctly drops backported patches - fd209dac3f cairo: the component is dual licensed - 7f424c3258 oeqa/selftest/sstatetests: Ensure we don't use hashequiv for sstatesigs tests - 96f5c7c2f8 sanity: Add check for tar older than 1.28 - 2880164ca7 core-image-full-cmdline: Add less - 5d77433122 opkg-utils: Fix silent empty/broken opkg package creation - ea1ded0b47 opkg: Add upstream fixes for empty packages - 6431e86999 iputils: Whitelist CVE-2000-1213 CVE-2000-1214 - 18e1c8c967 sysstat: Correct when to use the package provided systemd unit files - e5c5ffb048 sysstat: Correct our systemd unit file - c0fcbf3272 python: fix CVE-2019-16935 - 1c1c70ee26 wpa-supplicant: fix CVE-2019-16275 - 8e2a1cdd75 binutils: fix CVE-2019-17451 - 8b33aeb412 binutils: fix CVE-2019-17450 - f47017ff7f pseudo: Add statx support to fix fedora30 issues - adc0a31169 initscripts/sysfs.sh: Mount /sys/firmware/efi/efivars when possible - 0b9748c655 libtirpc: create the symbol link for rpc header files - 624897ee78 rm_work: Promote do_image_qa stamps to setscene versions - 957c3d39b6 linux-firmware: update packaging for brcm files - 41b1d53cea patch: the CVE-2019-13638 fix also handles CVE-2018-20969 - 90b4b7dd19 recipeutils-test: use a small dependency in the dummy recipe - 1344a6a130 selftest: skip virgl test on centos 7 entirely - 6b5cadd1a5 cve-check: failure to parse versions should be more visible - 6017a468d6 linux-yocto/5.2: update to v5.2.20 - 611c7d62d6 linux-yocto/4.19: update to v4.19.78 - b5f8274d75 qemu-helper-native: pass compiler flags - a1d9cfef7f qemu-helper-native: showing help shouldn't be an error - 7ae318fb4e qemu-helper-native: add missing option to getopt() call - 29d926802e cve-check: ensure all known CVEs are in the report - 869f46863e ltp: Fix overcommit_memory failure - d0f285bd7d mdadm: fix do_package failed when changed local.conf but not cleaned - f02e9f46ce sudo: Fix fetching sources - 4668ac8c26 file: run test suite when building natively - 2435c38e10 file: fix CVE-2019-18218 - 664c8f9837 pseudo: Drop static linking to sqlite3 - 4e3e8d8270 libsdl2: fix race when building in parallel - 3361760dbb libgcrypt: fix CVE-2019-13627 - d764ed9515 libpam: set CVE_PRODUCT - 541ec2f059 libsndfile1: whitelist CVE-2018-13419 - 16b98e759a procps: whitelist CVE-2018-1121 - a10b6e0e8d libpng: whitelist CVE-2019-17371 - efc4236112 python3: Upgrade 3.7.4 -> 3.7.5 - 27969c5987 libxslt: fix CVE-2019-18197 - 6dc3813bda libtiff: fix CVE-2019-17546 - 56f38b042d e2fsprogs: fix CVE-2019-5094 - 5607d38af3 connman: mark connman-wait-online as SYSTEMD_PACKAGE - 759a37e315 wic/engine: use 'linux-swap' for swap file system - dba4cc0146 util-linux: fix PKNAME name is NULL when use lsblk [LIN1019-2963] - bedeecf57e go: fix CVE-2019-16276 - b7b6d39565 sudo: fix CVE-2019-14287 - a9d3cae566 dbus: update dbus-1.init to reflect new PID file - 757f2d50d7 libgcrypt: fix CVE-2019-12904 - 50ba17abdc python: Fix CVE-2019-10160 - 0f47d4ef50 icecc: Export ICECC_CC and friends via wrapper-script - 4aa5d551af openssl: make OPENSSL_ENGINES match install path - 82c4fb0911 qemu: Fix CVE-2019-12068 - 5fae230618 python3: -dev should depend on distutils - 60ee826ec6 i2c-tools: Add missing RDEPEND - cbbbee1dce file: explicitly disable seccomp - 0379692604 wic/rawcopy: Support files in sub-directories - e8f39536d2 openssh: fix CVE-2019-16905 - 956ae2c2a7 uninative: check .done file instead of tarball - 95d3ca5445 sanity: check the format of SDK_VENDOR - 691f04965f libsdl2: fix CVE-2019-13616 - 5c11937348 sysstat: fix CVE-2019-16167 - 7ec70aeb0c ncurses: fix CVE-2019-17594, CVE-2019-17595 - f71b1a9652 runqemu: Remove disabling of high resolution timer - 5f51c93039 runqemu: unset another environment variable for 'egl-headless' - b80c0a4b68 python3: CVE-2019-16056 - 27be9cf71a python: CVE-2019-16056 - 7ed241ff1f aspell: fix CVE-2019-17544 - 948b0dd6d9 sqlite3: fix CVE-2019-16168 Signed-off-by: Ricardo Salveti <[email protected]>
Member
Author
|
ci-retest |
Relevant changes: - 3ad9397 bsp: optee-os: imx8mmevk: disable DYN_SHM - b7473fd base: optee-os: add patch to fix build warn when CFG_CORE_DYN_SHM=n - 58776b1 meta-lmp-base: optee-os: imx7ulp: fix watchdog - fa5393c modemmanager: drop recipe, now merged in meta-oe master and zeus - 607997c meta-lmp-base: optee: config options for overlay generation - 2ddff7a bsp: machine-custom: add initial support for imx8mmevk - 107cca5 bsp: u-boot-fio-fw-utils: add support for imx8mmevk - 3f342ed bsp: base-files: add fstab for imx8mmevk - 58d68ea bsp: optee-os: add configuration for imx8mmevk - cd22de5 bsp: u-boot-ostree-scr: add support for imx8mmevk - dcfbb52 bsp: u-boot-imx: add 2019.04 from latest NXP BSP release - 910bd7f bsp: imx-atf: use latest nxp bsp release - 4fd6a14 bsp: wic: add sdimage-imx8-sota.wks.in - 6aed4d4 optee-os: link tee-pager.bin as tee.bin at deploydir Signed-off-by: Ricardo Salveti <[email protected]>
ricardosalveti
added a commit
to ricardosalveti/lmp-manifest
that referenced
this pull request
Oct 31, 2022
Relevant changes: - c74a067 Merge pull request foundriesio#59 from quaresmajose/aktualizr-hwid - ae0fbc5 aktualizr-hwid: cleanup and refactor - 891a6db aktualizr-hwid: make the installed toml complaint - f42fa04 Merge pull request foundriesio#57 from quaresmajose/garagesign - a5277d1 image_types_ostree: introduce GARAGE_PUSH_RETRIES_SLEEP - f77ae06 image_types_ostree: introduce GARAGE_PUSH_RETRIES Signed-off-by: Ricardo Salveti <[email protected]>
ricardosalveti
added a commit
to ricardosalveti/lmp-manifest
that referenced
this pull request
Nov 1, 2022
Relevant changes: - c74a067 Merge pull request foundriesio#59 from quaresmajose/aktualizr-hwid - ae0fbc5 aktualizr-hwid: cleanup and refactor - 891a6db aktualizr-hwid: make the installed toml complaint - f42fa04 Merge pull request foundriesio#57 from quaresmajose/garagesign - a5277d1 image_types_ostree: introduce GARAGE_PUSH_RETRIES_SLEEP - f77ae06 image_types_ostree: introduce GARAGE_PUSH_RETRIES Signed-off-by: Ricardo Salveti <[email protected]>
ricardosalveti
added a commit
that referenced
this pull request
Nov 2, 2022
Relevant changes: - c74a067 Merge pull request #59 from quaresmajose/aktualizr-hwid - ae0fbc5 aktualizr-hwid: cleanup and refactor - 891a6db aktualizr-hwid: make the installed toml complaint - f42fa04 Merge pull request #57 from quaresmajose/garagesign - a5277d1 image_types_ostree: introduce GARAGE_PUSH_RETRIES_SLEEP - f77ae06 image_types_ostree: introduce GARAGE_PUSH_RETRIES Signed-off-by: Ricardo Salveti <[email protected]>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Bringing manifest in sync with latest zeus branches, including latest meta-lmp.