Following reproducible-builds.org recommendations, using compiler flags
like -ffile-prefix-map or -fdebug-prefix-map allows replace build-time
paths by install-time ones in the debugging sections of binaries.
Variable DEBUG_PREFIX_MAP set these flags correctly in yocto build
context to guarantee reproducible builds.
Signed-off-by: Fabien Thomas <fabien.thomas@smile.fr>
Reviewed-by: Yoann Congal <yoann.congal@smile.fr>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 3f9032f126)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Additions:
- A new "DSP policy" module has been added; its purpose is to automatically
load a filter-chain when a certain hardware device is present, so that
audio always goes through this software DSP before reaching the device.
This is mainly to support Apple M1/M2 devices, which require a software
DSP to be always present
- WpImplModule now supports loading module arguments directly from a SPA-JSON
config file; this is mainly to support DSP configuration for Apple M1/M2
and will likely be reworked for 0.5
- Added support for automatically combining Bluetooth LE Audio device sets
(e.g. pairs of earbuds) (!500)
- Added command line options in ``wpctl`` to display device/node names and
nicknames instead of descriptions
- Added zsh completions file for ``wpctl``
- The device profile selection policy now respects the ``device.profile``
property if it is set on the device; this is useful to hand-pick a profile
based on static configuration rules (alsa_monitor.rules)
Changes/Fixes:
- Linking policy now sends an error to the client before destroying the node,
if it determines that the node cannot be linked to any target; this fixes
error reporting on the client side
- Fixed a crash in suspend-node that could happen when destroying virtual
sinks that were loaded from another process such as pw-loopback (#467)
- Virtual machine default period size has been bumped to 1024 (#507)
- Updated bluez5 default configuration, using ``bluez5.roles`` instead of
``bluez5.headset-roles`` now (!498)
- Disabled Bluetooth autoconnect by default (!514)
- Removed ``RestrictNamespaces`` option from the systemd services in order to
allow libcamera to load sandboxed IPA modules (#466)
- Fixed a JSON encoding bug with empty strings (#471)
- Lua code can now parse strings without quotes from SPA-JSON
- Added some missing `\since` annotations and made them show up in the
generated gobject-introspection file, to help bindings generators
Signed-off-by: Markus Volk <f_l_k@t-online.de>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 56d34f391c)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Do not use bundled cmocka to get rid of bundled library
libcmocka-samba4.so.
Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 649f63a235)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
This is a security release in order to address the following defects:
CVE-2023-3961: Unsanitized pipe names allow SMB clients to connect as root to
existing unix domain sockets on the file system.
https://www.samba.org/samba/security/CVE-2023-3961.html
CVE-2023-4091: SMB client can truncate files to 0 bytes by opening files with
OVERWRITE disposition when using the acl_xattr Samba VFS
module with the smb.conf setting
"acl_xattr:ignore system acls = yes"
https://www.samba.org/samba/security/CVE-2023-4091.html
CVE-2023-4154: An RODC and a user with the GET_CHANGES right can view all
attributes, including secrets and passwords. Additionally,
the access check fails open on error conditions.
https://www.samba.org/samba/security/CVE-2023-4154.html
CVE-2023-42669: Calls to the rpcecho server on the AD DC can request that the
server block for a user-defined amount of time, denying
service.
https://www.samba.org/samba/security/CVE-2023-42669.html
CVE-2023-42670: Samba can be made to start multiple incompatible RPC
listeners, disrupting service on the AD DC.
https://www.samba.org/samba/security/CVE-2023-42670.html
Release Notes:
https://www.samba.org/samba/history/samba-4.18.8.html
Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit f674a9d4f9)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
python3-nacl is in the meta-virtualization layer.
Signed-off-by: Joe Slater <joe.slater@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 74e31e51ff)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
We use pylint for some native recipes in our build. Allow pylint
to be a native recipe, and likewise allow its runtime dependencies
to be native recipes.
Signed-off-by: Daniel McGregor <daniel.mcgregor@vecima.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit fbb9d27079)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
This back fixes the ptest failures seen with musl
AssertionError:-
Failed ptests:
{'poco': ['Foundation-testrunner', 'NetSSL-testrunner', 'Net-testrunner']}
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 963fc79e27)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Add missing rdep on perl-module-encode-encoding
fixes
Can't locate Encode/Encoding.pm in @INC (you may need to install the Encode::Encoding module)
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 9f312824d4)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
In order to pass reproducible tests, recipes that use the
useradd class must have static ids configured.
Signed-off-by: Fabien Thomas <fabien.thomas@smile.fr>
Reviewed-by: Yoann Congal <yoann.congal@smile.fr>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 2961a31a02)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
In order to pass reproducible tests, recipes that use the
useradd class must have static ids configured.
Signed-off-by: Fabien Thomas <fabien.thomas@smile.fr>
Reviewed-by: Yoann Congal <yoann.congal@smile.fr>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 714156cc42)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
In order to pass reproducible tests, recipes that use the
useradd class must have static ids configured.
Signed-off-by: Fabien Thomas <fabien.thomas@smile.fr>
Reviewed-by: Yoann Congal <yoann.congal@smile.fr>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 18f01d2b14)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
In order to pass reproducible tests, recipes that use the
useradd class must have static ids configured.
Signed-off-by: Fabien Thomas <fabien.thomas@smile.fr>
Reviewed-by: Yoann Congal <yoann.congal@smile.fr>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 5ecda23c4c)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
In order to pass reproducible tests, recipes that use the
useradd class must have static ids configured.
Signed-off-by: Fabien Thomas <fabien.thomas@smile.fr>
Reviewed-by: Yoann Congal <yoann.congal@smile.fr>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 1a9892251b)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
In order to pass reproducible tests, recipes that use the
useradd class must have static ids configured.
Signed-off-by: Fabien Thomas <fabien.thomas@smile.fr>
Reviewed-by: Yoann Congal <yoann.congal@smile.fr>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 7d36797bef)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
In order to pass reproducible tests, recipes that use the
useradd class must have static ids configured.
Signed-off-by: Fabien Thomas <fabien.thomas@smile.fr>
Reviewed-by: Yoann Congal <yoann.congal@smile.fr>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 84043e673b)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Recipe smbnetfs depends on samba, which is in meta-networking.
Signed-off-by: Fabien Thomas <fabien.thomas@smile.fr>
Reviewed-by: Yoann Congal <yoann.congal@smile.fr>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 3801443f17)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Test run for 10+ minutes so they belong to slow testset
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit b729ec1b11)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Fix run-ptest script to run all compiled selftests
disable bpf on riscv for now
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 30779662be)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Build failure with musl due to conflicting definitions of ioctl()
between glibc and musl has been fixed by libnvme developers with this
commit:
* ca47ba3119
Signed-off-by: Christophe Vu-Brugier <christophe.vu-brugier@seagate.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 8930d8798b)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
polkit.its and polkit.loc are taken from host. This should be fine
as long as the host provides these files. At least on fedora 38
they are not installed by default and configure fails with:
| ../gnome-control-center-45.0/meson.build:205:6: ERROR: Command
`/home/flk/poky/build/tmp/work/corei7-64-poky-linux/gnome-control-center/45.0/recipe-sysroot-native/usr/bin/nativepython3 /home/flk/poky/build/tmp/work/corei7-64-poky-linux/gnome-control-center/45.0/gnome-control-center-45.0/build-aux/meson/find_xdg_file.py gettext/its/polkit.its` failed with status 1.
|
| A full log can be found at
/home/flk/poky/build/tmp/work/corei7-64-poky-linux/gnome-control-center/45.0/build/meson-logs/meson-log.txt
| ERROR: meson failed
| WARNING:
/home/flk/poky/build/tmp/work/corei7-64-poky-linux/gnome-control-center/45.0/temp/run.do_configure.6974:182 exit 1 from 'exit 1'
export XDG_DATA_DIRS to avoid this issue
https://gitlab.gnome.org/GNOME/gnome-control-center/-/blob/main/meson.build?ref_type=heads#L203https://gitlab.gnome.org/GNOME/gnome-control-center/-/blob/main/build-aux/meson/find_xdg_file.py?ref_type=heads
Signed-off-by: Markus Volk <f_l_k@t-online.de>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 6ee4a15ce2)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
OPENSSL_{MODULES,ENGINES,CONF} and SSL_CERT_{DIR,FILE} are currently
exported globally for any recipe that inherits signing. This not only
affects the tasks that use the signing infrastructure, but also unrelated
tasks like e.g. do_fetch. Avoid this by exporting the variables only
for these tasks that actually call signing_prepare.
This resolves a breakage I observed on Ubuntu 18.04, where the host
tool wget is called with the environment variables set and then fails
with a SSL error (exit code 5).
Signed-off-by: Ahmad Fatoum <a.fatoum@pengutronix.de>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 4ad790c733)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Drop patches already in this upstream version
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 350fd96f1e)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
This is the first 1.0 release candidate that is API and ABI compatible
with previous 0.3.x releases.
- jackdbus support is now enabled by default.
- IRQ based scheduling in ALSA was improved and enabled by default for
Pro-Audio profile. It will also link the pcms together to get lower
latency. This now matches what JACK does and gives equal latency to
PipeWire for Pro-Audio profiles.
- Support both old and new versions of webrtc-audio-processing to make
the transition easier.
- Forced quantum changes by nodes or metadata will now also force a
suspend and resume of the graph, like the rate changes to make sure all
nodes adapt to the new quantum. This is important for Pro-Audio nodes
that need to reconfigure the hardware to a new period in IRQ based
scheduling.
- Fix a regression in regex parsing.
- Many bugfixes and improvements.
- jackdbus is by default enabled now. The idea is that when jackdbus is
installed, the real libjack.so is in the path and we can become a
real JACK client.
- Forces quantum changes by nodes or metadata will now also force a
suspend and resume in the graph, like the rate changes to make sure all
nodes adapt to the new quantum. This is important for Pro-Audio nodes
that need to reconfigure the hardware to a new period.
- The stream now has an EARLY_PROCESS option that can be used to implement
custum buffer fill levels. (#3480)
- Fix a regression in regex parsing. (#3528)
- Fix a bug in position reporting in the driver node. (#3189) (#3544)
- Destroying a link will now recalculate the graph correctly.
- Fix the rate comparison for finding the best rate in the graph.
- Use malloc_trim() when available to release memory. (#1840)
- pw-cat now supports DFF DSD files.
- pw-cli avoid some NULL derefs in some cases.
- The RAOP sink has seen some cleanups and improvements. It will now ask
for feedback every 2 seconds to keep some devices alive.
- A bug in filter-chain was fixed where it would fail to apply the gain
when mixing just one source.
- The filter-chain can now pass the stream volume to a control in the
filter-chain graph. (#3434)
- Improve volume handling in RAOP sink.
- Some cleanup in the pending_stream handling.
- Fix a regression in the event emission code where it failed to emit
a changed event when a node was linked. (#3522)
- Lower the realtime priority of pulseaudio clients.
- Set pulse.module.id on the echo-cancel streams. (#3541)
- Support both old and new versions of webrtc-audio-processing to make
the transition easier.
- The ALSA driver now does the sync of all followers directly from the
wakeup event. This results in more stable rate matching.
- IRQ based scheduling in ALSA was improved and enabled by default for
Pro-Audio profile. It will also link the pcms together to get lower
latency. This now matches what JACK does and gives equal latency to
PipeWire for Pro-Audio profiles.
- GNU/Hurd support was added.
- Some improvements to passthrough handling.
- Improvements to the codec handling when PipeWire is used as Audio
Gateway.
- Adapt to new Bluez API for BAP devices.
- When the jack library is set in the default library path, avoid using
LD_LIBRARY_PATH because this can cause confusion.
- Handle clearing the latency on a port.
- jack_property now always manages to actually change the metadata because
it waits for a roundtrip before exiting.
Signed-off-by: Markus Volk <f_l_k@t-online.de>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 9fc1b037e4)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
python3-boto3 and python3-botocore are provided by meta-aws.
They have ptests and upgraded as soon as there is an release.
Having them here also causing issues with yocto-check-layer
https://bugzilla.yoctoproject.org/show_bug.cgi?id=15223
As discussed on IRC with Richard Purdie, those recipes should just be provided
by meta-aws. Agreed here https://github.com/openembedded/meta-openembedded/issues/744
by Khem.
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit bc98fb0765)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
There is is no build time issues with libbpf for these
architectures so we can add them to COMPATIBLE_HOST
Signed-off-by: Denys Zagorui <dzagorui@cisco.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit bb8049afe9)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Make sure also without systemd enabled as default, the tools can be built and installed,
such as dlt-adaptor, dlt-adaptor-stdin, dlt-adaptor-udp, dlt-examples and dlt-console.
They have stub functionalities when systemd is not default, but they can still be used with
limited functionalities
Reported-By: Federico Briata <federicobriata@gmail.com>
Reported-By: Andrea Reali <andrea.reali@cnhind.com>
Signed-off-by: Gianfranco Costamagna <costamagnagianfranco@yahoo.it>
Signed-off-by: Gianfranco Costamagna <locutusofborg@debian.org>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit f558bc9d3b)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
