[meta-security][PATCH v2] parsec-service: update from 1.1.0 to 1.2.0-rc1
Mikko Rapeli
parsec-service 1.1.0 fails to compile with latest tpm2-tss update
in meta-security: | error: failed to run custom build command for `tss-esapi v7.1.0` | | Caused by: | process didn't exit successfully: `/oe/build/tmp_trs-qemuarm64/work/cortexa57-trs-linux/parsec-service/1.1.0-r0/build/target/release/build/tss-esapi-5b5d9342bd16db73/build-script-build` (exit status: 101) | --- stderr | thread 'main' panicked at 'Unsupported TSS version: 4', /oe/build/tmp_trs-qemuarm64/work/cortexa57-trs-linux/parsec-service/1.1.0-r0/cargo_home/bitbake/tss-esapi-7.1.0/build.rs:9:22 and also latest meta-clang changes break the build with: | thread 'main' panicked at '"enum_(unnamed_at_/oe/build/tmp_trs-qemuarm64/work/cortexa57-trs-linux/parsec-service/1_1_0-r0/build/target/aarch64-trs-linux-gnu/release/build/psa-crypto-sys-b4f9ce2b7d8846b2/out/include/mbedtls/cipher_h_205_1)" is not a valid Ident', /oe/build/tmp_trs-qemuarm64/work/cortexa57-trs-linux/parsec-service/1.1.0-r0/cargo_home/bitbake/proc-macro2-1.0.43/src/fallback.rs:730:9 | stack backtrace: | 0: rust_begin_unwind | 1: core::panicking::panic_fmt | 2: proc_macro2::fallback::validate_ident | 3: proc_macro2::fallback::Ident::_new | 4: proc_macro2::fallback::Ident::new | 5: proc_macro2::imp::Ident::new | 6: proc_macro2::Ident::new | 7: bindgen::ir::context::BindgenContext::rust_ident_raw | 8: bindgen::ir::context::BindgenContext::rust_ident | 9: <bindgen::ir::enum_ty::Enum as bindgen::codegen::CodeGenerator>::codegen | 10: <bindgen::ir::ty::Type as bindgen::codegen::CodeGenerator>::codegen | 11: <bindgen::ir::item::Item as bindgen::codegen::CodeGenerator>::codegen | 12: <bindgen::ir::module::Module as bindgen::codegen::CodeGenerator>::codegen::{{closure}} | 13: <bindgen::ir::module::Module as bindgen::codegen::CodeGenerator>::codegen | 14: <bindgen::ir::item::Item as bindgen::codegen::CodeGenerator>::codegen | 15: bindgen::codegen::codegen::{{closure}} | 16: bindgen::ir::context::BindgenContext::gen | 17: bindgen::codegen::codegen | 18: bindgen::Bindings::generate | 19: bindgen::Builder::generate | 20: build_script_build::common::generate_mbed_crypto_bindings | 21: build_script_build::operations::script_operations | 22: build_script_build::main | 23: core::ops::function::FnOnce::call_once | note: Some details are omitted, run with `RUST_BACKTRACE=full` for a verbose backtrace. In both cases fix is to update to the master branch or 1.2.0-rc1 pre-release. Porting the individual patches did not work due to complex rust crate depencies. Added LICENSE file checksum. Using cargo-update-recipe-crates.bbclass from poky to maintain list of crates in the .inc file, but removed entries for fuzz/Cargo.lock. Tested on qemu that parsec.service stars correctly and works with swtpm use cases. Signed-off-by: Mikko Rapeli <mikko.rapeli@...> --- ...ce_1.1.0.inc => parsec-service-crates.inc} | 239 +++++++++--------- ...e_1.1.0.bb => parsec-service_1.2.0-rc1.bb} | 14 +- 2 files changed, 134 insertions(+), 119 deletions(-) rename meta-parsec/recipes-parsec/parsec-service/{parsec-service_1.1.0.inc => parsec-service-crates.inc} (50%) rename meta-parsec/recipes-parsec/parsec-service/{parsec-service_1.1.0.bb => parsec-service_1.2.0-rc1.bb} (91%) v2: removed crates for fuzz/Cargo.lock from SRC_URI v1: https://lists.yoctoproject.org/g/yocto/message/59495 diff --git a/meta-parsec/recipes-parsec/parsec-service/parsec-service_1.1.0.inc b/meta-parsec/recipes-parsec/parsec-service/parsec-service-crates.inc similarity index 50% rename from meta-parsec/recipes-parsec/parsec-service/parsec-service_1.1.0.inc rename to meta-parsec/recipes-parsec/parsec-service/parsec-service-crates.inc index c04bcbd..fe80b42 100644 --- a/meta-parsec/recipes-parsec/parsec-service/parsec-service_1.1.0.inc +++ b/meta-parsec/recipes-parsec/parsec-service/parsec-service-crates.inc @@ -1,223 +1,232 @@ -# This file is created from parsec repository Cargo.lock using cargo-bitbake tool +# Autogenerated with 'bitbake -c update_crates parsec-service' +# from Cargo.lock SRC_URI += " \ crate://crates.io/ahash/0.7.6 \ - crate://crates.io/aho-corasick/0.7.19 \ + crate://crates.io/aho-corasick/0.7.20 \ crate://crates.io/ansi_term/0.12.1 \ - crate://crates.io/anyhow/1.0.64 \ + crate://crates.io/anyhow/1.0.69 \ + crate://crates.io/asn1-rs/0.3.1 \ crate://crates.io/asn1-rs-derive/0.1.0 \ crate://crates.io/asn1-rs-impl/0.1.0 \ - crate://crates.io/asn1-rs/0.3.1 \ crate://crates.io/atty/0.2.14 \ crate://crates.io/autocfg/1.1.0 \ - crate://crates.io/base64/0.13.0 \ + crate://crates.io/base64/0.13.1 \ crate://crates.io/bincode/1.3.3 \ crate://crates.io/bindgen/0.57.0 \ - crate://crates.io/bindgen/0.59.2 \ + crate://crates.io/bindgen/0.63.0 \ crate://crates.io/bitfield/0.13.2 \ crate://crates.io/bitflags/1.3.2 \ - crate://crates.io/bumpalo/3.11.0 \ - crate://crates.io/bytes/1.2.1 \ - crate://crates.io/cc/1.0.73 \ + crate://crates.io/bumpalo/3.12.0 \ + crate://crates.io/bytes/1.4.0 \ + crate://crates.io/cc/1.0.79 \ crate://crates.io/cexpr/0.4.0 \ crate://crates.io/cexpr/0.6.0 \ crate://crates.io/cfg-if/1.0.0 \ - crate://crates.io/clang-sys/1.3.3 \ + crate://crates.io/clang-sys/1.6.0 \ crate://crates.io/clap/2.34.0 \ crate://crates.io/cmake/0.1.45 \ crate://crates.io/const-oid/0.7.1 \ crate://crates.io/cryptoauthlib-sys/0.2.2 \ - crate://crates.io/cryptoki-sys/0.1.4 \ - crate://crates.io/cryptoki/0.3.0 \ - crate://crates.io/data-encoding/2.3.2 \ - crate://crates.io/der-parser/7.0.0 \ + crate://crates.io/cryptoki/0.3.1 \ + crate://crates.io/cryptoki-sys/0.1.5 \ + crate://crates.io/data-encoding/2.3.3 \ crate://crates.io/der/0.5.1 \ + crate://crates.io/der-parser/7.0.0 \ crate://crates.io/derivative/2.2.0 \ crate://crates.io/displaydoc/0.2.3 \ - crate://crates.io/either/1.8.0 \ + crate://crates.io/either/1.8.1 \ crate://crates.io/enumflags2/0.7.5 \ crate://crates.io/enumflags2_derive/0.7.4 \ crate://crates.io/env_logger/0.8.4 \ - crate://crates.io/env_logger/0.9.0 \ + crate://crates.io/errno/0.2.8 \ + crate://crates.io/errno-dragonfly/0.1.2 \ crate://crates.io/fallible-iterator/0.2.0 \ crate://crates.io/fallible-streaming-iterator/0.1.9 \ - crate://crates.io/fastrand/1.8.0 \ + crate://crates.io/fastrand/1.9.0 \ crate://crates.io/fixedbitset/0.2.0 \ - crate://crates.io/form_urlencoded/1.0.1 \ - crate://crates.io/futures-channel/0.3.24 \ - crate://crates.io/futures-core/0.3.24 \ - crate://crates.io/futures-executor/0.3.24 \ - crate://crates.io/futures-io/0.3.24 \ - crate://crates.io/futures-macro/0.3.24 \ - crate://crates.io/futures-sink/0.3.24 \ - crate://crates.io/futures-task/0.3.24 \ - crate://crates.io/futures-util/0.3.24 \ - crate://crates.io/futures/0.3.24 \ + crate://crates.io/form_urlencoded/1.1.0 \ + crate://crates.io/futures/0.3.27 \ + crate://crates.io/futures-channel/0.3.27 \ + crate://crates.io/futures-core/0.3.27 \ + crate://crates.io/futures-executor/0.3.27 \ + crate://crates.io/futures-io/0.3.27 \ + crate://crates.io/futures-macro/0.3.27 \ + crate://crates.io/futures-sink/0.3.27 \ + crate://crates.io/futures-task/0.3.27 \ + crate://crates.io/futures-util/0.3.27 \ crate://crates.io/generic-array/0.14.6 \ - crate://crates.io/getrandom/0.2.7 \ - crate://crates.io/glob/0.3.0 \ - crate://crates.io/grpcio-sys/0.9.1+1.38.0 \ + crate://crates.io/getrandom/0.2.8 \ + crate://crates.io/glob/0.3.1 \ crate://crates.io/grpcio/0.9.1 \ - crate://crates.io/hashbrown/0.11.2 \ - crate://crates.io/hashlink/0.7.0 \ + crate://crates.io/grpcio-sys/0.9.1+1.38.0 \ + crate://crates.io/hashbrown/0.12.3 \ + crate://crates.io/hashlink/0.8.1 \ crate://crates.io/heck/0.3.3 \ crate://crates.io/hermit-abi/0.1.19 \ + crate://crates.io/hermit-abi/0.2.6 \ crate://crates.io/hex/0.4.3 \ crate://crates.io/hostname-validator/1.1.1 \ crate://crates.io/humantime/2.1.0 \ - crate://crates.io/idna/0.2.3 \ - crate://crates.io/indexmap/1.8.2 \ + crate://crates.io/idna/0.3.0 \ + crate://crates.io/indexmap/1.9.2 \ crate://crates.io/instant/0.1.12 \ - crate://crates.io/itertools/0.10.3 \ - crate://crates.io/itoa/1.0.3 \ - crate://crates.io/js-sys/0.3.59 \ + crate://crates.io/io-lifetimes/1.0.6 \ + crate://crates.io/itertools/0.10.5 \ + crate://crates.io/itoa/1.0.6 \ + crate://crates.io/js-sys/0.3.61 \ crate://crates.io/jsonwebkey/0.3.5 \ - crate://crates.io/jsonwebtoken/8.1.1 \ + crate://crates.io/jsonwebtoken/8.2.0 \ crate://crates.io/lazy_static/1.4.0 \ crate://crates.io/lazycell/1.3.0 \ - crate://crates.io/libc/0.2.132 \ - crate://crates.io/libloading/0.7.3 \ - crate://crates.io/libsqlite3-sys/0.23.2 \ + crate://crates.io/libc/0.2.140 \ + crate://crates.io/libloading/0.7.4 \ + crate://crates.io/libsqlite3-sys/0.25.2 \ crate://crates.io/libz-sys/1.1.8 \ - crate://crates.io/lock_api/0.4.8 \ + crate://crates.io/linux-raw-sys/0.1.4 \ + crate://crates.io/lock_api/0.4.9 \ crate://crates.io/log/0.4.17 \ - crate://crates.io/matches/0.1.9 \ crate://crates.io/mbox/0.6.0 \ crate://crates.io/memchr/2.5.0 \ crate://crates.io/minimal-lexical/0.2.1 \ crate://crates.io/multimap/0.8.3 \ crate://crates.io/nom/5.1.2 \ - crate://crates.io/nom/7.1.1 \ + crate://crates.io/nom/7.1.3 \ + crate://crates.io/num/0.4.0 \ crate://crates.io/num-bigint/0.4.3 \ - crate://crates.io/num-complex/0.4.2 \ + crate://crates.io/num-complex/0.4.3 \ crate://crates.io/num-derive/0.3.3 \ crate://crates.io/num-integer/0.1.45 \ crate://crates.io/num-iter/0.1.43 \ crate://crates.io/num-rational/0.4.1 \ crate://crates.io/num-traits/0.2.15 \ - crate://crates.io/num/0.4.0 \ - crate://crates.io/num_cpus/1.13.1 \ + crate://crates.io/num_cpus/1.15.0 \ crate://crates.io/num_threads/0.1.6 \ - crate://crates.io/oid-registry/0.4.0 \ crate://crates.io/oid/0.2.1 \ - crate://crates.io/once_cell/1.14.0 \ + crate://crates.io/oid-registry/0.4.0 \ + crate://crates.io/once_cell/1.17.1 \ crate://crates.io/parking_lot/0.11.2 \ - crate://crates.io/parking_lot_core/0.8.5 \ - crate://crates.io/parsec-interface/0.27.0 \ + crate://crates.io/parking_lot_core/0.8.6 \ + crate://crates.io/parsec-interface/0.28.0 \ crate://crates.io/peeking_take_while/0.1.2 \ - crate://crates.io/pem/1.1.0 \ - crate://crates.io/percent-encoding/2.1.0 \ - crate://crates.io/pest/2.3.0 \ + crate://crates.io/pem/1.1.1 \ + crate://crates.io/percent-encoding/2.2.0 \ + crate://crates.io/pest/2.5.6 \ crate://crates.io/petgraph/0.5.1 \ + crate://crates.io/picky-asn1/0.3.3 \ crate://crates.io/picky-asn1-der/0.2.5 \ crate://crates.io/picky-asn1-x509/0.6.1 \ - crate://crates.io/picky-asn1/0.3.3 \ crate://crates.io/pin-project-lite/0.2.9 \ crate://crates.io/pin-utils/0.1.0 \ crate://crates.io/pkcs8/0.8.0 \ - crate://crates.io/pkg-config/0.3.25 \ - crate://crates.io/ppv-lite86/0.2.16 \ - crate://crates.io/proc-macro-error-attr/1.0.4 \ + crate://crates.io/pkg-config/0.3.26 \ + crate://crates.io/ppv-lite86/0.2.17 \ crate://crates.io/proc-macro-error/1.0.4 \ - crate://crates.io/proc-macro2/1.0.43 \ + crate://crates.io/proc-macro-error-attr/1.0.4 \ + crate://crates.io/proc-macro2/1.0.52 \ + crate://crates.io/prost/0.8.0 \ crate://crates.io/prost-build/0.8.0 \ crate://crates.io/prost-derive/0.8.0 \ crate://crates.io/prost-types/0.8.0 \ - crate://crates.io/prost/0.8.0 \ - crate://crates.io/protobuf/2.27.1 \ - crate://crates.io/psa-crypto-sys/0.9.3 \ - crate://crates.io/psa-crypto/0.9.2 \ - crate://crates.io/quote/1.0.21 \ + crate://crates.io/protobuf/2.28.0 \ + crate://crates.io/psa-crypto/0.10.0 \ + crate://crates.io/psa-crypto-sys/0.10.0 \ + crate://crates.io/quote/1.0.26 \ crate://crates.io/rand/0.8.5 \ crate://crates.io/rand_chacha/0.3.1 \ - crate://crates.io/rand_core/0.6.3 \ + crate://crates.io/rand_core/0.6.4 \ crate://crates.io/redox_syscall/0.2.16 \ - crate://crates.io/regex-syntax/0.6.27 \ - crate://crates.io/regex/1.6.0 \ - crate://crates.io/remove_dir_all/0.5.3 \ + crate://crates.io/regex/1.7.1 \ + crate://crates.io/regex-syntax/0.6.28 \ crate://crates.io/ring/0.16.20 \ - crate://crates.io/rusqlite/0.26.3 \ + crate://crates.io/rusqlite/0.28.0 \ crate://crates.io/rust-cryptoauthlib/0.4.5 \ crate://crates.io/rustc-hash/1.1.0 \ crate://crates.io/rustc_version/0.3.3 \ crate://crates.io/rusticata-macros/4.1.0 \ - crate://crates.io/ryu/1.0.11 \ + crate://crates.io/rustix/0.36.9 \ + crate://crates.io/ryu/1.0.13 \ crate://crates.io/same-file/1.0.6 \ crate://crates.io/scopeguard/1.1.0 \ - crate://crates.io/sd-notify/0.2.0 \ + crate://crates.io/sd-notify/0.3.0 \ crate://crates.io/secrecy/0.7.0 \ - crate://crates.io/semver-parser/0.10.2 \ crate://crates.io/semver/0.11.0 \ - crate://crates.io/serde/1.0.144 \ - crate://crates.io/serde_bytes/0.11.7 \ - crate://crates.io/serde_derive/1.0.144 \ - crate://crates.io/serde_json/1.0.85 \ + crate://crates.io/semver-parser/0.10.2 \ + crate://crates.io/serde/1.0.156 \ + crate://crates.io/serde_bytes/0.11.9 \ + crate://crates.io/serde_derive/1.0.156 \ + crate://crates.io/serde_json/1.0.94 \ crate://crates.io/shlex/0.1.1 \ crate://crates.io/shlex/1.1.0 \ - crate://crates.io/signal-hook-registry/1.4.0 \ - crate://crates.io/signal-hook/0.3.14 \ + crate://crates.io/signal-hook/0.3.15 \ + crate://crates.io/signal-hook-registry/1.4.1 \ crate://crates.io/simple_asn1/0.6.2 \ - crate://crates.io/slab/0.4.7 \ - crate://crates.io/smallvec/1.9.0 \ + crate://crates.io/slab/0.4.8 \ + crate://crates.io/smallvec/1.10.0 \ crate://crates.io/spiffe/0.2.1 \ crate://crates.io/spin/0.5.2 \ crate://crates.io/spki/0.5.4 \ crate://crates.io/stable_deref_trait/1.2.0 \ crate://crates.io/strsim/0.8.0 \ - crate://crates.io/structopt-derive/0.4.18 \ crate://crates.io/structopt/0.3.26 \ + crate://crates.io/structopt-derive/0.4.18 \ crate://crates.io/strum_macros/0.21.1 \ - crate://crates.io/syn/1.0.99 \ + crate://crates.io/syn/1.0.109 \ crate://crates.io/synstructure/0.12.6 \ - crate://crates.io/target-lexicon/0.12.4 \ - crate://crates.io/tempfile/3.3.0 \ - crate://crates.io/termcolor/1.1.3 \ + crate://crates.io/target-lexicon/0.12.6 \ + crate://crates.io/tempfile/3.4.0 \ + crate://crates.io/termcolor/1.2.0 \ crate://crates.io/textwrap/0.11.0 \ - crate://crates.io/thiserror-impl/1.0.33 \ - crate://crates.io/thiserror/1.0.33 \ + crate://crates.io/thiserror/1.0.39 \ + crate://crates.io/thiserror-impl/1.0.39 \ crate://crates.io/threadpool/1.8.1 \ + crate://crates.io/time/0.3.15 \ crate://crates.io/time-macros/0.2.4 \ - crate://crates.io/time/0.3.14 \ crate://crates.io/tinyvec/1.6.0 \ - crate://crates.io/tinyvec_macros/0.1.0 \ - crate://crates.io/toml/0.5.9 \ - crate://crates.io/tss-esapi-sys/0.3.0 \ - crate://crates.io/tss-esapi/7.1.0 \ - crate://crates.io/typenum/1.15.0 \ - crate://crates.io/ucd-trie/0.1.4 \ - crate://crates.io/unicode-bidi/0.3.8 \ - crate://crates.io/unicode-ident/1.0.3 \ - crate://crates.io/unicode-normalization/0.1.21 \ - crate://crates.io/unicode-segmentation/1.9.0 \ - crate://crates.io/unicode-width/0.1.9 \ - crate://crates.io/unicode-xid/0.2.3 \ + crate://crates.io/tinyvec_macros/0.1.1 \ + crate://crates.io/toml/0.5.11 \ + crate://crates.io/tss-esapi/7.2.0 \ + crate://crates.io/tss-esapi-sys/0.4.0 \ + crate://crates.io/typenum/1.16.0 \ + crate://crates.io/ucd-trie/0.1.5 \ + crate://crates.io/unicode-bidi/0.3.11 \ + crate://crates.io/unicode-ident/1.0.8 \ + crate://crates.io/unicode-normalization/0.1.22 \ + crate://crates.io/unicode-segmentation/1.10.1 \ + crate://crates.io/unicode-width/0.1.10 \ + crate://crates.io/unicode-xid/0.2.4 \ crate://crates.io/untrusted/0.7.1 \ - crate://crates.io/url/2.2.2 \ + crate://crates.io/url/2.3.1 \ crate://crates.io/users/0.11.0 \ crate://crates.io/uuid/0.8.2 \ crate://crates.io/vcpkg/0.2.15 \ crate://crates.io/vec_map/0.8.2 \ - crate://crates.io/version/3.0.0 \ crate://crates.io/version_check/0.9.4 \ crate://crates.io/walkdir/2.3.2 \ crate://crates.io/wasi/0.11.0+wasi-snapshot-preview1 \ - crate://crates.io/wasm-bindgen-backend/0.2.82 \ - crate://crates.io/wasm-bindgen-macro-support/0.2.82 \ - crate://crates.io/wasm-bindgen-macro/0.2.82 \ - crate://crates.io/wasm-bindgen-shared/0.2.82 \ - crate://crates.io/wasm-bindgen/0.2.82 \ - crate://crates.io/web-sys/0.3.59 \ - crate://crates.io/which/4.3.0 \ + crate://crates.io/wasm-bindgen/0.2.84 \ + crate://crates.io/wasm-bindgen-backend/0.2.84 \ + crate://crates.io/wasm-bindgen-macro/0.2.84 \ + crate://crates.io/wasm-bindgen-macro-support/0.2.84 \ + crate://crates.io/wasm-bindgen-shared/0.2.84 \ + crate://crates.io/web-sys/0.3.61 \ + crate://crates.io/which/4.4.0 \ + crate://crates.io/winapi/0.3.9 \ crate://crates.io/winapi-i686-pc-windows-gnu/0.4.0 \ crate://crates.io/winapi-util/0.1.5 \ crate://crates.io/winapi-x86_64-pc-windows-gnu/0.4.0 \ - crate://crates.io/winapi/0.3.9 \ + crate://crates.io/windows-sys/0.42.0 \ + crate://crates.io/windows-sys/0.45.0 \ + crate://crates.io/windows-targets/0.42.2 \ + crate://crates.io/windows_aarch64_gnullvm/0.42.2 \ + crate://crates.io/windows_aarch64_msvc/0.42.2 \ + crate://crates.io/windows_i686_gnu/0.42.2 \ + crate://crates.io/windows_i686_msvc/0.42.2 \ + crate://crates.io/windows_x86_64_gnu/0.42.2 \ + crate://crates.io/windows_x86_64_gnullvm/0.42.2 \ + crate://crates.io/windows_x86_64_msvc/0.42.2 \ crate://crates.io/x509-parser/0.13.2 \ crate://crates.io/yasna/0.4.0 \ crate://crates.io/zeroize/1.5.7 \ - crate://crates.io/zeroize_derive/1.3.2 \ -" - -LIC_FILES_CHKSUM = " \ - file://LICENSE;md5=3b83ef96387f14655fc854ddc3c6bd57 \ + crate://crates.io/zeroize_derive/1.3.3 \ " diff --git a/meta-parsec/recipes-parsec/parsec-service/parsec-service_1.1.0.bb b/meta-parsec/recipes-parsec/parsec-service/parsec-service_1.2.0-rc1.bb similarity index 91% rename from meta-parsec/recipes-parsec/parsec-service/parsec-service_1.1.0.bb rename to meta-parsec/recipes-parsec/parsec-service/parsec-service_1.2.0-rc1.bb index 218b776..7dfd214 100644 --- a/meta-parsec/recipes-parsec/parsec-service/parsec-service_1.1.0.bb +++ b/meta-parsec/recipes-parsec/parsec-service/parsec-service_1.2.0-rc1.bb @@ -1,16 +1,22 @@ SUMMARY = "Platform AbstRaction for SECurity Daemon" HOMEPAGE = "https://github.com/parallaxsecond/parsec" LICENSE = "Apache-2.0" +LIC_FILES_CHKSUM = "file://LICENSE;md5=3b83ef96387f14655fc854ddc3c6bd57" -inherit cargo pkgconfig -DEPENDS = "clang-native" +inherit cargo pkgconfig cargo-update-recipe-crates -SRC_URI += "crate://crates.io/parsec-service/${PV} \ +DEPENDS += "clang-native" + +SRC_URI += "git://github.com/parallaxsecond/parsec;protocol=https;branch=main \ file://parsec_init \ file://systemd.patch \ file://parsec-tmpfiles.conf \ " +SRCREV = "f7eda9396eae530771b24b097b709d35d54e40c8" + +S = "${WORKDIR}/git" + PACKAGECONFIG ??= "PKCS11 MBED-CRYPTO" have_TPM = "${@bb.utils.contains('DISTRO_FEATURES', 'tpm2', 'TPM', '', d)}" PACKAGECONFIG:append = " ${@bb.utils.contains('BBFILE_COLLECTIONS', 'tpm-layer', '${have_TPM}', '', d)}" @@ -82,7 +88,7 @@ FILES:${PN} += " \ ${sysconfdir}/init.d/parsec \ " -require parsec-service_${PV}.inc +require parsec-service-crates.inc # The QA check has been temporarily disabled. An issue has been created # upstream to fix this. -- 2.34.1 |
|
Re: [meta-security][PATCH] parsec-service: update from 1.1.0 to 1.2.0-rc1
Mikko Rapeli
Hi,
On Fri, Mar 24, 2023 at 05:24:31AM -0700, Anton Antonov wrote: Hi Mikko,Ok, will remove these. If you urgently need a new Yocto Parsec recipe then please remove all the fuzz/Cargo.lock dependencies. Otherwise we can wait until Parsec 1.2.0 crate released.parsec-service recipe has been broken for weeks already. I want this to be resolved and backporting fixes to parsec 1.1.0 doesn't seem to work. Cheers, -Mikko |
|
Re: [meta-security][PATCH] parsec-service: update from 1.1.0 to 1.2.0-rc1
Anton Antonov
Hi Mikko, Thank you for the patch. In general I don't mind switching from "cargo bitbake" to "bitbake -c update_crates" for Parsec recipes. But, in this case when you use a git repository instead of a Parsec crate the cargo-update-recipe-crates class includes dependency crates from "fuzz/Cargo.lock" which are not required for Yocto builds. If you urgently need a new Yocto Parsec recipe then please remove all the fuzz/Cargo.lock dependencies. Otherwise we can wait until Parsec 1.2.0 crate released.
Cheers, Anton
|
|
Re: [meta-security][PATCH 3/3] meta-tpm/layer: lower the priority from 10 to 6
Jose Quaresma
Hi Armin, Can this patch and the others in the series be bakported to kirkstone? Jose Jose Quaresma via lists.yoctoproject.org <quaresma.jose=gmail.com@...> escreveu no dia segunda, 6/03/2023 à(s) 17:55: The priority change on sumo version without any description. --
Best regards, José Quaresma |
|
Re: Network Isolation and CMake FetchContent
On 22 Mar 2023, at 16:58, Rudolf J Streif via lists.yoctoproject.org <rudolf.streif=ibeeto.com@...> wrote:Yes: do_compile[network] = “1” Ross |
|
Re: Yocto build error | AttributeError: 'LooseVersion' object has no attribute 'version'
On 23 Mar 2023, at 12:41, Sourabh Hegde via lists.yoctoproject.org <hrsourabh011=gmail.com@...> wrote:
I am having an issue while building a simple core-image-minimal image. The issue is reported by bitbake. The build machine is remote server with Ubuntu 20.04What release of yocto is this? Ross |
|
[yocto-autobuilder-helper][PATCH v2 2/2] scripts/generate-testresult-index.py: expose regression reports on web page
Alexis Lothoré
From: Alexis Lothoré <alexis.lothore@...>
When available, expose tesresult-regressions-report.txt on non-release web page, as it is done for many other artifacts currently Signed-off-by: Alexis Lothoré <alexis.lothore@...> --- scripts/generate-testresult-index.py | 11 +++++++++-- 1 file changed, 9 insertions(+), 2 deletions(-) diff --git a/scripts/generate-testresult-index.py b/scripts/generate-testresult-index.py index 09d2edb..29a6900 100755 --- a/scripts/generate-testresult-index.py +++ b/scripts/generate-testresult-index.py @@ -42,7 +42,10 @@ index_template = """ <td><a href="{{entry[1]}}">{{entry[0]}}</a></td> <td>{% if entry[2] %} {{entry[2]}}{% endif %}</td> <td>{% if entry[4] %} {{entry[4]}}{% endif %}</td> - <td> {% if entry[3] %}<a href="{{entry[3]}}">Report</a>{% endif %} </td> + <td> + {% if entry[3] %}<a href="{{entry[3]}}">Report</a>{% endif -%} + {% if entry[9] %}<br><a href="{{entry[9]}}">Regressions</a>{% endif %} + </td> <td> {% for perfrep in entry[6] %} <a href="{{perfrep[0]}}">{{perfrep[1]}}</a> @@ -129,6 +132,10 @@ for build in sorted(os.listdir(path), key=keygen, reverse=True): if os.path.exists(buildpath + "/testresult-report.txt"): testreport = reldir + "testresults/testresult-report.txt" + regressionreport = "" + if os.path.exists(buildpath + "/testresult-regressions-report.txt"): + regressionreport = reldir + "testresults/testresult-regressions-report.txt" + ptestlogs = [] ptestseen = [] for p in glob.glob(buildpath + "/*-ptest/*.log"): @@ -165,7 +172,7 @@ for build in sorted(os.listdir(path), key=keygen, reverse=True): branch = get_build_branch(buildpath) - entries.append((build, reldir, btype, testreport, branch, buildhistory, perfreports, ptestlogs, hd)) + entries.append((build, reldir, btype, testreport, branch, buildhistory, perfreports, ptestlogs, hd, regressionreport)) # Also ensure we have saved out log data for ptest runs to aid debugging if "ptest" in btype or btype in ["full", "quick"]: -- 2.40.0 |
|
[yocto-autobuilder-helper][PATCH v2 0/2] expose regression reports on web page
Alexis Lothoré
From: Alexis Lothoré <alexis.lothore@...>
Regression reports are currently stored alongside test reports and other artifacts on the autobuilder artifacts web page. This small update propose to add a link to the regression report (when available) on main non-release page ([1]) instead of having to manually navigate the directories to find it Changes since v1: - put regression report link in results report column instead of dedicated column [1] https://autobuilder.yocto.io/pub/non-release/ Alexis Lothoré (2): scripts/generate-testresult-index.py: fix typo in template var name scripts/generate-testresult-index.py: expose regression reports on web page scripts/generate-testresult-index.py | 12 +++++++++--- 1 file changed, 9 insertions(+), 3 deletions(-) -- 2.40.0 |
|
[yocto-autobuilder-helper][PATCH v2 1/2] scripts/generate-testresult-index.py: fix typo in template var name
Alexis Lothoré
From: Alexis Lothoré <alexis.lothore@...>
Signed-off-by: Alexis Lothoré <alexis.lothore@...> --- scripts/generate-testresult-index.py | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/scripts/generate-testresult-index.py b/scripts/generate-testresult-index.py index 1fc9f41..09d2edb 100755 --- a/scripts/generate-testresult-index.py +++ b/scripts/generate-testresult-index.py @@ -12,7 +12,7 @@ import json import subprocess from jinja2 import Template -index_templpate = """ +index_template = """ <!DOCTYPE html> <html> <head> @@ -181,6 +181,6 @@ for build in sorted(os.listdir(path), key=keygen, reverse=True): with open(f + "/resulttool-done.log", "a+") as tf: tf.write("\n") -t = Template(index_templpate) +t = Template(index_template) with open(os.path.join(path, "index.html"), 'w') as f: f.write(t.render(entries = entries)) -- 2.40.0 |
|
Re: [yocto-autobuilder-helper][PATCH 2/2] scripts/generate-testresult-index.py: expose regression reports on web page
Alexis Lothoré
Hi Richard,
On 3/24/23 10:55, Richard Purdie wrote: On Fri, 2023-03-24 at 10:00 +0100, Alexis Lothoré viaSure, I will update it with your suggestion -- Alexis Lothoré, Bootlin Embedded Linux and Kernel engineering https://bootlin.com |
|
Re: [yocto-autobuilder-helper][PATCH 2/2] scripts/generate-testresult-index.py: expose regression reports on web page
Richard Purdie
On Fri, 2023-03-24 at 10:00 +0100, Alexis Lothoré via
lists.yoctoproject.org wrote: From: Alexis Lothoré <alexis.lothore@...>In the interests of keeping that index page a manageable size, instead of a new data column, I'd suggest we just add the link in the same TD cell with the name "Regression"? Cheers, Richard |
|
[yocto-autobuilder-helper][PATCH 2/2] scripts/generate-testresult-index.py: expose regression reports on web page
Alexis Lothoré
From: Alexis Lothoré <alexis.lothore@...>
When available, expose tesresult-regressions-report.txt on non-release web page, as it is done for many other artifacts currently Signed-off-by: Alexis Lothoré <alexis.lothore@...> --- scripts/generate-testresult-index.py | 8 +++++++- 1 file changed, 7 insertions(+), 1 deletion(-) diff --git a/scripts/generate-testresult-index.py b/scripts/generate-testresult-index.py index 09d2edb..122bac1 100755 --- a/scripts/generate-testresult-index.py +++ b/scripts/generate-testresult-index.py @@ -30,6 +30,7 @@ index_template = """ <th>Type</th> <th>Branch</th> <th>Test Results Report</th> + <th>Regressions Report</th> <th>Performance Reports</th> <th>ptest Logs</th> <th>Buildhistory</th> @@ -43,6 +44,7 @@ index_template = """ <td>{% if entry[2] %} {{entry[2]}}{% endif %}</td> <td>{% if entry[4] %} {{entry[4]}}{% endif %}</td> <td> {% if entry[3] %}<a href="{{entry[3]}}">Report</a>{% endif %} </td> + <td> {% if entry[9] %}<a href="{{entry[9]}}">Report</a>{% endif %} </td> <td> {% for perfrep in entry[6] %} <a href="{{perfrep[0]}}">{{perfrep[1]}}</a> @@ -129,6 +131,10 @@ for build in sorted(os.listdir(path), key=keygen, reverse=True): if os.path.exists(buildpath + "/testresult-report.txt"): testreport = reldir + "testresults/testresult-report.txt" + regressionreport = "" + if os.path.exists(buildpath + "/testresult-regressions-report.txt"): + regressionreport = reldir + "testresults/testresult-regressions-report.txt" + ptestlogs = [] ptestseen = [] for p in glob.glob(buildpath + "/*-ptest/*.log"): @@ -165,7 +171,7 @@ for build in sorted(os.listdir(path), key=keygen, reverse=True): branch = get_build_branch(buildpath) - entries.append((build, reldir, btype, testreport, branch, buildhistory, perfreports, ptestlogs, hd)) + entries.append((build, reldir, btype, testreport, branch, buildhistory, perfreports, ptestlogs, hd, regressionreport)) # Also ensure we have saved out log data for ptest runs to aid debugging if "ptest" in btype or btype in ["full", "quick"]: -- 2.40.0 |
|
[yocto-autobuilder-helper][PATCH 0/2] expose regression reports on web page
Alexis Lothoré
From: Alexis Lothoré <alexis.lothore@...>
Regression reports are currently stored alongside test reports and other artifacts on the autobuilder artifacts web page. This small update propose to add a link to the regression report (when available) on main non-release page ([1]) instead of having to manually navigate the directories to find it [1] https://autobuilder.yocto.io/pub/non-release/ Alexis Lothoré (2): scripts/generate-testresult-index.py: fix typo in template var name scripts/generate-testresult-index.py: expose regression reports on web page scripts/generate-testresult-index.py | 12 +++++++++--- 1 file changed, 9 insertions(+), 3 deletions(-) -- 2.40.0 |
|
[yocto-autobuilder-helper][PATCH 1/2] scripts/generate-testresult-index.py: fix typo in template var name
Alexis Lothoré
From: Alexis Lothoré <alexis.lothore@...>
Signed-off-by: Alexis Lothoré <alexis.lothore@...> --- scripts/generate-testresult-index.py | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/scripts/generate-testresult-index.py b/scripts/generate-testresult-index.py index 1fc9f41..09d2edb 100755 --- a/scripts/generate-testresult-index.py +++ b/scripts/generate-testresult-index.py @@ -12,7 +12,7 @@ import json import subprocess from jinja2 import Template -index_templpate = """ +index_template = """ <!DOCTYPE html> <html> <head> @@ -181,6 +181,6 @@ for build in sorted(os.listdir(path), key=keygen, reverse=True): with open(f + "/resulttool-done.log", "a+") as tf: tf.write("\n") -t = Template(index_templpate) +t = Template(index_template) with open(os.path.join(path, "index.html"), 'w') as f: f.write(t.render(entries = entries)) -- 2.40.0 |
|
Enable parameterised systemd service from different package
Alexander Broekhuis
Hi all, I've been struggling with this for a while now, and can't seem to find the proper way, so I hope someone has some hints for me. I have one package in which a parameterised systemd unit file is added. This package does not add the actual service, only the myservice@.service file. The recipe looks like: SRC_URI += " \ Since this recipe does not create any actual service, I doubt the systemd and service creation is actually needed here. In 2 different packages I want to add an actual service using this unit file, those recipes look like: inherit systemd However, the myservice@... does not exist/is not created. I am not certain if I use SYSTEMD_PACKAGES correctly here and if the RDEPENDS is the correct way to add myservice to the dependant packages. Using a bbappend on myservice does work, however then I end up with both services in all images where myservice is added. Which is not what I want, different services end up in different images. Image A: IMAGE_INSTALL += myservice actualservice1 Image B: IMAGE_INSTALL += myservice actualservice2 I've thought about 2 workarounds: 1) Create the symbolic link myself, which does feel like a hack 2) Create a custom systemd preset file myself, which should trigger enabling of the service during the first boot However, reading the documentation of SYSTEMD_PACKAGES, I hoped/expected the above recipe would actually work. |
|
Minutes: Yocto Project Weekly Triage Meeting 23/03/2023
sakib.sajal@...
Wiki: https://wiki.yoctoproject.org/wiki/Bug_Triage Attendees: Richard Purdie, Steve Sakoman, Stephen
Jolley, Randy Macleod, Joshua Watt, Ross Burton, Alexandre
Belloni, Tim Orling, Bruce Ashfield, Michael Opdenacker,
Michael Halstead ARs: Notes:
Medium+ 4.2 Unassigned Enhancements/Bugs: 59 (Last week
60) Medium+ 4.3 Unassigned Enhancements/Bugs: 11 (Last week 11) Medium+ 4.99 Unassigned Enhancements/Bugs: 44 (Last week 44) |
|
Yocto build error | AttributeError: 'LooseVersion' object has no attribute 'version'
Sourabh Hegde
Hello,
I am having an issue while building a simple core-image-minimal image. The issue is reported by bitbake. The build machine is remote server with Ubuntu 20.04 Logs: File "[...]/poky/bitbake/lib/bb/event.py", line 93, in execute_handler
ret = handler(event)
File "[...]/build/../poky/meta/classes/sanity.bbclass", line 1048, in defaultcheck_sanity_eventhandler
check_sanity(sanity_data)
File "[...]/build/../poky/meta/classes/sanity.bbclass", line 1004, in check_sanity
check_sanity_everybuild(status, sanity_data)
File "[...]/build/../poky/meta/classes/sanity.bbclass", line 801, in check_sanity_everybuild
if (LooseVersion(bb.__version__) < LooseVersion(minversion)):
File "/usr/lib/python3.8/distutils/version.py", line 52, in __lt__
c = self._cmp(other)
File "/usr/lib/python3.8/distutils/version.py", line 335, in _cmp
if self.version == other.version:
AttributeError: 'LooseVersion' object has no attribute 'version'
During handling of the above exception, another exception occurred:
Traceback (most recent call last):
File "[...]/poky/bitbake/lib/bb/command.py", line 114, in runAsyncCommand
self.cooker.updateCache()
File "[...]/poky/bitbake/lib/bb/cooker.py", line 1612, in updateCache
bb.event.fire(bb.event.SanityCheck(False), self.databuilder.mcdata[mc])
File "[...]/poky/bitbake/lib/bb/event.py", line 216, in fire
fire_class_handlers(event, d)
File "[...]/poky/bitbake/lib/bb/event.py", line 123, in fire_class_handlers
execute_handler(name, handler, event, d)
File "[...]/poky/bitbake/lib/bb/event.py", line 98, in execute_handler
logger.error("Execution of event handler '%s' failed" % name,
File "/usr/lib/python3.8/logging/__init__.py", line 1475, in error
self._log(ERROR, msg, args, **kwargs)
File "/usr/lib/python3.8/logging/__init__.py", line 1589, in _log
self.handle(record)
File "/usr/lib/python3.8/logging/__init__.py", line 1599, in handle
self.callHandlers(record)
File "/usr/lib/python3.8/logging/__init__.py", line 1661, in callHandlers
hdlr.handle(record)
File "/usr/lib/python3.8/logging/__init__.py", line 954, in handle
self.emit(record)
File "[...]/poky/bitbake/lib/bb/event.py", line 752, in emit
tb = list(bb.exceptions.extract_traceback(tb, context=3))
File "[...]/poky/bitbake/lib/bb/exceptions.py", line 64, in extract_traceback
formatted_args, cls = _get_frame_args(frame)
File "[...]/poky/bitbake/lib/bb/exceptions.py", line 58, in _get_frame_args
formatted = inspect.formatargvalues(*arginfo)
File "/usr/lib/python3.8/inspect.py", line 1296, in formatargvalues
specs.append(convert(args[i]))
File "/usr/lib/python3.8/inspect.py", line 1293, in convert
return formatarg(name) + formatvalue(locals[name])
File "/usr/lib/python3.8/inspect.py", line 1284, in <lambda>
formatvalue=lambda value: '=' + repr(value)):
File "/usr/lib/python3.8/distutils/version.py", line 328, in __repr__
return "LooseVersion ('%s')" % str(self)
File "/usr/lib/python3.8/distutils/version.py", line 324, in __str__
return self.vstring
AttributeError: 'LooseVersion' object has no attribute 'vstring' Can anyone please let me know what is the issue here and how to resolve this? |
|
Re: [meta-security][PATCH] parsec-service: update from 1.1.0 to 1.2.0-rc1
Anton,
On 3/23/23 3:24 AM, Mikko Rapeli wrote: parsec-service 1.1.0 fails to compile with latest tpm2-tss updateCan you Ack/Nack this patch? -armin
|
|
Re: [meta-security][dunfell][PATCH] sssd: CVE-2022-4254 libsss_certmap fails to sanitise certificate data used in LDAP filters
On 2/23/23 11:41 PM, Hitendra Prajapati wrote:
Upstream-Status: Backport from https://github.com/SSSD/sssd/commit/1c40208aa1e0f9a17cc4f336c99bcaa6977592d3 & https://github.com/SSSD/sssd/commit/a2b9a84460429181f2a4fa7e2bb5ab49fd561274merged.
|
|
[yocto-autobuilder-helper][PATCH 3/3] scripts/send_qa_email: return previous tag when running a non-release master build
Alexis Lothoré
From: Alexis Lothoré <alexis.lothore@...>
Some nightly builders are configured in yocto-autobuilder2 to run master builds. Those build parameters currently skip all branches of get_regression_base_and_target, which then return None, while the caller expects a base and target tuple Set default behaviour to return previous tag as comparison base and passed branch as target for such builds Signed-off-by: Alexis Lothoré <alexis.lothore@...> --- scripts/send_qa_email.py | 3 +++ scripts/test_send_qa_email.py | 2 ++ 2 files changed, 5 insertions(+) diff --git a/scripts/send_qa_email.py b/scripts/send_qa_email.py index 78e051a..4613bff 100755 --- a/scripts/send_qa_email.py +++ b/scripts/send_qa_email.py @@ -61,6 +61,9 @@ def get_regression_base_and_target(basebranch, comparebranch, release, targetrep # Basebranch/comparebranch is defined in config.json: regression reporting must be done against branches as defined in config.json return comparebranch, basebranch + #Default case: return previous tag as base + return get_previous_tag(targetrepodir, release), basebranch + def generate_regression_report(querytool, targetrepodir, base, target, resultdir, outputdir): print(f"Comparing {target} to {base}") diff --git a/scripts/test_send_qa_email.py b/scripts/test_send_qa_email.py index ce0c6b7..974112a 100755 --- a/scripts/test_send_qa_email.py +++ b/scripts/test_send_qa_email.py @@ -48,6 +48,8 @@ class TestVersion(unittest.TestCase): "comparebranch": "master", "release": None}, "expected": ("master", "master-next")}, {"name": "Fork Master Next", "input": {"basebranch": "ross/mut", "comparebranch": "master", "release": None}, "expected": ("master", "ross/mut")}, + {"name": "Nightly a-quick", "input": {"basebranch": "master", + "comparebranch": None, "release": "20230322-2"}, "expected": ("LAST_TAG", "master")}, ] def test_versions(self): -- 2.40.0 |
|