[OE-core] [PATCH 0/4] Upgrade RPM to 5.4.16 (CVE HEAD)
Burton, Ross
ross.burton at intel.com
Tue Mar 1 13:38:47 UTC 2016
Sorry Mark...
http://errors.yoctoproject.org/Errors/Details/38890/:
/home/pokybuild/yocto-autobuilder/yocto-worker/nightly-x86-64/build/build/tmp/work/i686-nativesdk-pokysdk-linux/nativesdk-rpm/5.4.16-r0/build/popt/.libs/libpopt.so:
undefined reference to `__stack_chk_guard'
I'm also seeing likely related errors locally (where I've enabled security
flags) when linking librpmio.so
|
/data/poky-master/tmp-glibc/sysroots/intel-corei7-64/usr/lib/libc_nonshared.a(elf-init.oS):
In function `__libc_csu_init':
| /usr/src/glibc/csu/elf-init.c:87: undefined reference to
`__init_array_start'
|
/data/poky-master/tmp-glibc/sysroots/x86_64-linux/usr/libexec/x86_64-poky-linux/gcc/x86_64-poky-linux/5.3.0/ld:
/data/poky-master/tmp-glibc/sysroots/intel-corei7-64/usr/lib/libc_nonshared.a(elf-init.oS):
relocation R_X86_64_PC32 against undefined hidden symbol
`__init_array_start' can not be used when making a shared object
|
/data/poky-master/tmp-glibc/sysroots/x86_64-linux/usr/libexec/x86_64-poky-linux/gcc/x86_64-poky-linux/5.3.0/ld:
final link failed: Bad value
I can share full logs if you'd like.
Ross
On 1 March 2016 at 04:14, Mark Hatle <mark.hatle at windriver.com> wrote:
> V3:
> * Update rpm-db5-or-db6.patch to remove potential host contamination
> * Update rpm-disable-auto-stack-protector.patch to only disable the stack
> protector
> * Add new patch: rpm-atomic-ops.patch
> - Disable atomic operations in bson when the architecture does not
> support them
> * Add new patch: rpm-gnu-atomic.patch
> - Dynamically detect and disable when -fgnu-tm/libitm support is not
> available
> * Add new patch: rpm-tagname-type.patch and rpm-python-tagname.patch
> - Fix rpm-python legacy API regressions
> * Add new patch: rpm-disable-blaketest.patch
> - Disable building the blake test apps, they appear to have dep issues
> in large
> parallel builds.
> * Update db-6.0.30 to make it clear that when it is updated, to also
> update RPM5.
>
> V2:
> Fixed three issues
> - Added Apache 2.0 license for specific mongodb code
>
> - Switch SSE usage dynamically in rpmio/keccak.c
> See rpm-keccak-sse-intrin.patch
>
> - Add support for architectures that do not support sync_add_and_fetch_8
> See rpm-atomic-ops.patch
>
> All of those changes are made in patch 1/3.
>
> This has been built for all of the qemu* BSPs.
>
> V1:
> There is not yet an official RPM 5.4.16 release, however one will be coming
> soon. Until then, 4 distinct patches are used to upgrade RPM 5.4.15 to
> 5.4.16. These patches are part of the commit (compressed w/ .xz). However
> I am not sending them as part of the email as it's not very interesting
> to review base64. :P
>
> Many of the OE patches have been sent to the RPM 5 maintainer, and may be
> part of the official 5.4.16 release. When that release happens I expect a
> simple rebase to remove the unnecessary patches.
>
> The following changes since commit
> 390bad905537820f49add855c95d726b5b55c8fa:
>
> sanity: Fix int verses string reference (2016-02-28 22:54:06 +0000)
>
> are available in the git repository at:
>
> git://git.openembedded.org/openembedded-core-contrib mhatle/rpm-5.4.16
>
> http://cgit.openembedded.org/cgit.cgi/openembedded-core-contrib/log/?h=mhatle/rpm-5.4.16
>
> Mark Hatle (5):
> rpm: Uprev to rpm-5.4.16 (pre) and rpm-5.4+cvs to current CVS head
> rpm: Enable specific crypto and digest settings via variables
> rpm: A number of the patches have been submitted upstream
> gcc: Add support for atomic opertions (libitm) where available
> db: remove the NO_UPDATE_REASON and replace it a comment about RPM
>
> meta/lib/oe/package_manager.py | 14 +-
> meta/recipes-devtools/gcc/gcc-5.3.inc | 2 +
> meta/recipes-devtools/gcc/gcc-runtime.inc | 22 +-
> .../rpm/rpm/0001-define-EM_AARCH64.patch | 2 +-
> ...arseArgvString-to-parse-the-_gpg_check_pa.patch | 2 +-
> .../rpm/rpm/beecrypt-5.4.15-to-5.4.16.patch.gz | Bin 0 -> 42815 bytes
> meta/recipes-devtools/rpm/rpm/debugedit-segv.patch | 48 +-
> ...debugedit-valid-file-to-fix-segment-fault.patch | 2 +-
> .../rpm/rpm/fstack-protector-configure-check.patch | 21 -
> .../rpm/rpm/header-include-fix.patch | 12 +-
> .../rpm/rpm/lua-5.4.15-to-5.4.16.patch.gz | Bin 0 -> 269940
> bytes
> .../rpm/rpm/makefile-am-exec-hook.patch | 2 +-
> .../rpm/rpm/python-rpm-rpmsense.patch | 32 +-
> .../rpm/rpm/rpm-5.4.15-to-5.4.16.patch.gz | Bin 0 -> 2239384
> bytes
> meta/recipes-devtools/rpm/rpm/rpm-atomic-ops.patch | 73 ++
> meta/recipes-devtools/rpm/rpm/rpm-canonarch.patch | 2 +-
> meta/recipes-devtools/rpm/rpm/rpm-db5-or-db6.patch | 43 +-
> meta/recipes-devtools/rpm/rpm/rpm-db60.patch | 56 +
> .../rpm/rpm/rpm-disable-Wno-override-init.patch | 32 -
> .../rpm/rpm/rpm-disable-auto-stack-protector.patch | 24 +
> .../rpm/rpm/rpm-disable-blaketest.patch | 28 +
> .../rpm/rpm/rpm-fix-logio-cp.patch | 2 +-
> .../rpm/rpm/rpm-fix-parseEmbedded.patch | 27 +
> meta/recipes-devtools/rpm/rpm/rpm-gnu-atomic.patch | 61 ++
> .../rpm/rpm/rpm-hardlink-segfault-fix.patch | 2 +-
> .../rpm/rpm/rpm-keccak-sse-intrin.patch | 27 +
> ...ction.c-fix-file-conflicts-for-mips64-N32.patch | 2 +-
> meta/recipes-devtools/rpm/rpm/rpm-libsql-fix.patch | 2 +-
> .../rpm/rpm/rpm-lsb-compatibility.patch | 2 +-
> .../rpm/rpm/rpm-lua-fix-print.patch | 104 --
> ...rpm-macros.in-disable-external-key-server.patch | 16 +-
> .../rpm/rpm/rpm-mongodb-sasl.patch | 69 ++
> meta/recipes-devtools/rpm/rpm/rpm-no-loopmsg.patch | 2 +-
> ...b-before-verifyscript-to-avoid-null-point.patch | 2 +-
> .../rpm/rpm/rpm-packageorigin.patch | 2 +-
> .../rpm/rpm/rpm-payload-use-hashed-inode.patch | 22 +-
> .../rpm/rpm/rpm-pkgconfigdeps.patch | 10 +-
> .../rpm/rpm/rpm-platform-file-fix.patch | 2 +-
> meta/recipes-devtools/rpm/rpm/rpm-platform.patch | 2 +-
> meta/recipes-devtools/rpm/rpm/rpm-platform2.patch | 4 +-
> meta/recipes-devtools/rpm/rpm/rpm-py-init.patch | 16 +-
> .../rpm/rpm/rpm-python-restore-origin.patch | 49 +
> .../rpm/rpm/rpm-python-tagname.patch | 24 +
> .../rpm/rpm/rpm-remove-sykcparse-decl.patch | 14 -
> meta/recipes-devtools/rpm/rpm/rpm-resolvedep.patch | 2 +-
> .../rpm/rpm/rpm-rpmdb-grammar.patch | 124 +++
> .../rpm/rpm/rpm-rpmfc.c-fix-for-N32-MIPS64.patch | 2 +-
> .../rpm/rpm/rpm-rpmio-headers.patch | 19 +
> meta/recipes-devtools/rpm/rpm/rpm-rpmpgp-fix.patch | 67 --
> .../rpm/rpm/rpm-scriptletexechelper.patch | 29 +-
> .../rpm/rpm/rpm-syck-fix-gram.patch | 1081
> ++++++++++++++++++++
> .../rpm-tag-generate-endian-conversion-fix.patch | 2 +-
> .../rpm/rpm/rpm-tagname-type.patch | 25 +
> .../rpm/rpm/rpm-tools-mtree-LDFLAGS.patch | 2 +-
> meta/recipes-devtools/rpm/rpm/rpmatch.patch | 32 +-
> .../recipes-devtools/rpm/rpm/rpmqv_cc_b_gone.patch | 27 +-
> .../rpm/rpm/syck-5.4.15-to-5.4.16.patch.gz | Bin 0 -> 4837 bytes
> meta/recipes-devtools/rpm/rpm/uclibc-support.patch | 38 +-
> ...broken-logic-for-ghost-avoidance-Mark-Hat.patch | 38 -
> meta/recipes-devtools/rpm/rpm_5.4+cvs.bb | 294 +++++-
> .../rpm/{rpm_5.4.14.bb => rpm_5.4.16.bb} | 189 +++-
> meta/recipes-support/db/db_6.0.30.bb | 2 +-
> 62 files changed, 2284 insertions(+), 569 deletions(-)
> create mode 100644
> meta/recipes-devtools/rpm/rpm/beecrypt-5.4.15-to-5.4.16.patch.gz
> delete mode 100644
> meta/recipes-devtools/rpm/rpm/fstack-protector-configure-check.patch
> create mode 100644
> meta/recipes-devtools/rpm/rpm/lua-5.4.15-to-5.4.16.patch.gz
> create mode 100644
> meta/recipes-devtools/rpm/rpm/rpm-5.4.15-to-5.4.16.patch.gz
> create mode 100644 meta/recipes-devtools/rpm/rpm/rpm-atomic-ops.patch
> create mode 100644 meta/recipes-devtools/rpm/rpm/rpm-db60.patch
> delete mode 100644
> meta/recipes-devtools/rpm/rpm/rpm-disable-Wno-override-init.patch
> create mode 100644
> meta/recipes-devtools/rpm/rpm/rpm-disable-auto-stack-protector.patch
> create mode 100644
> meta/recipes-devtools/rpm/rpm/rpm-disable-blaketest.patch
> create mode 100644
> meta/recipes-devtools/rpm/rpm/rpm-fix-parseEmbedded.patch
> create mode 100644 meta/recipes-devtools/rpm/rpm/rpm-gnu-atomic.patch
> create mode 100644
> meta/recipes-devtools/rpm/rpm/rpm-keccak-sse-intrin.patch
> delete mode 100644 meta/recipes-devtools/rpm/rpm/rpm-lua-fix-print.patch
> create mode 100644 meta/recipes-devtools/rpm/rpm/rpm-mongodb-sasl.patch
> create mode 100644
> meta/recipes-devtools/rpm/rpm/rpm-python-restore-origin.patch
> create mode 100644 meta/recipes-devtools/rpm/rpm/rpm-python-tagname.patch
> delete mode 100644
> meta/recipes-devtools/rpm/rpm/rpm-remove-sykcparse-decl.patch
> create mode 100644 meta/recipes-devtools/rpm/rpm/rpm-rpmdb-grammar.patch
> create mode 100644 meta/recipes-devtools/rpm/rpm/rpm-rpmio-headers.patch
> delete mode 100644 meta/recipes-devtools/rpm/rpm/rpm-rpmpgp-fix.patch
> create mode 100644 meta/recipes-devtools/rpm/rpm/rpm-syck-fix-gram.patch
> create mode 100644 meta/recipes-devtools/rpm/rpm/rpm-tagname-type.patch
> create mode 100644
> meta/recipes-devtools/rpm/rpm/syck-5.4.15-to-5.4.16.patch.gz
> delete mode 100644
> meta/recipes-devtools/rpm/rpm/verify-fix-broken-logic-for-ghost-avoidance-Mark-Hat.patch
> rename meta/recipes-devtools/rpm/{rpm_5.4.14.bb => rpm_5.4.16.bb} (82%)
>
> --
> 2.5.0
>
> --
> _______________________________________________
> Openembedded-core mailing list
> Openembedded-core at lists.openembedded.org
> http://lists.openembedded.org/mailman/listinfo/openembedded-core
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openembedded.org/pipermail/openembedded-core/attachments/20160301/c121fc3f/attachment-0002.html>
More information about the Openembedded-core
mailing list