ERROR: Nothing PROVIDES 'ruby-native' (but /home/akuster/oss/clean/meta-openembedded/meta-oe/recipes-extended/libgxim/libgxim_0.5.0.bb DEPENDS on or otherwise requires it). Close matches:
  db-native
  bc-native
  byacc-native
ERROR: Required build target 'libgxim' has no buildable providers.
Missing or unbuildable dependency chain was: ['libgxim', 'ruby-native']

move libgxim from meta-oe to meta-ruby, it really belongs in meta-gir but it is un-maintained.

Signed-off-by: Armin Kuster <akuster808@gmail.com>

ERROR: Nothing PROVIDES 'libmnl' (but /home/akuster/oss/clean/meta-openembedded/meta-oe/recipes-extended/collectd/collectd_5.4.1.bb DEPENDS on or otherwise requires it). Close matches:
  libnl
  libyaml
  libxml2
ERROR: Required build target 'collectd' has no buildable providers.
Missing or unbuildable dependency chain was: ['collectd', 'libmnl']

remove libmnl from depends list to PACKAGECONFIG libmnl is in meta-networking.

Signed-off-by: Armin Kuster <akuster808@gmail.com>

both 2.2.1 and 2.2.2 are failing on some hosts native builds with:
| linking miniruby
| load.o: In function `rb_f_load':
| load.c:(.text+0x3af): undefined reference to `RUBY_DTRACE_LOAD_ENTRY_ENABLED'
| load.c:(.text+0x428): undefined reference to `RUBY_DTRACE_LOAD_RETURN_ENABLED'
| load.c:(.text+0x452): undefined reference to `RUBY_DTRACE_LOAD_RETURN'
| load.c:(.text+0x492): undefined reference to `RUBY_DTRACE_LOAD_ENTRY'
| load.o: In function `rb_require_internal':

Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>

Includes among other things: CVE-2015-1855: Ruby OpenSSL Hostname Verification

for more info see:
http://svn.ruby-lang.org/repos/ruby/tags/v2_2_2/ChangeLog



also, fixed runtime error.
only include "enable-wide-getaddrinfo" if IVP6 is enabled in disto feature
otherwise 'gem install rails' throws an error for the missing symbol 'getipnodebyname'.

Signed-off-by: Armin Kuster <akuster808@gmail.com>

Fixes:
| WARNING: QA Issue: fio rdepends on zlib, but it isn't a build dependency? [build-deps]

Signed-off-by: Dominic Sacré <dominic.sacre@gmx.de>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>

upgrade to fix a CVE defect: CVE-2015-0240
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-0240



Signed-off-by: Roy Li <rongqing.li@windriver.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>

*obex*, navit, libsyncml, foxtrotgps, gypsy, bluez-hcidump, bluez4, gst-plugin-bluetooth, gnome-bluetooth: blacklist bluez4 only recipes when bluez5 is in DISTRO_FEATURES

foo

BlueZ 4.x Bluetooth stack has been removed from oe-core.
However, it is still supported, so add it to
recipes-connectivity in meta-oe.

meta-systemd layer bluez4 bbappend has been integrated
into bluez4 recipe.

In order to use it in oe-core/poky/YP, 'bluez5' backfill
distro feature needs to be disabled via:
DISTRO_FEATURES_BACKFILL_CONSIDERED = "bluez5" .
'bluetooth' distro feature needs to be present also.

Signed-off-by: Cristian Iorga <cristian.iorga@intel.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>

Backport <commit 9a775051f7373176c6e54bee1110965342dd41ad> and
<commit 17e1ee2539cea6bac16832b488afd52b20a348ac> from rsyslog
upstream <https://github.com/rsyslog/rsyslog

> to solve issue:
rsyslog segmentation fault when heavy load.
Solve the race condition in GenerateLocalHostNameProperty between the
prop.Destruct(&propLocalHostName) and prop.Construct(&propLocalHostName).

Signed-off-by: Li Zhou <li.zhou@windriver.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>

Signed-off-by: Yevhen Kyriukha <kirgene@gmail.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>

Signed-off-by: Roy Li <rongqing.li@windriver.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>

Add util-linux to the DEPENDS list to get rid of the following QA
warning:

syslog-ng-3.5.4.1: syslog-ng-libs rdepends on util-linux-libuuid, but it isn't a build dependency? [build-deps]

Signed-off-by: Dmitry Eremin-Solenikov <dmitry_eremin@mentor.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>

Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>

* use BBCLASSEXTEND instead of separate recipe

Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>

* otherwise fails with:
| gcc  -DHAVE_CONFIG_H -I. -I/work/x86_64-linux/gsoap-native/2.8.12-r1/gsoap-2.8/gsoap/src -I../..   -isystem/sysroots/x86_64-linux/usr/include -DWITH_BISON -DWITH_LEX  -DSOAPCPP_IMPORT_PATH="\"/sysroots/x86_64-linux/usr/share/gsoap/import\"" -DLINUX -isystem/sysroots/x86_64-linux/usr/include -O2 -pipe -c -o soapcpp2-soapcpp2_yacc.o `test -f 'soapcpp2_yacc.c' || echo '/work/x86_64-linux/gsoap-native/2.8.12-r1/gsoap-2.8/gsoap/src/'`soapcpp2_yacc.c
| /bin/bash /work/x86_64-linux/gsoap-native/2.8.12-r1/gsoap-2.8/ylwrap /work/x86_64-linux/gsoap-native/2.8.12-r1/gsoap-2.8/gsoap/src/soapcpp2_lex.l .c soapcpp2_lex.c -- /bin/bash /work/x86_64-linux/gsoap-native/2.8.12-r1/gsoap-2.8/missing flex
| /work/x86_64-linux/gsoap-native/2.8.12-r1/gsoap-2.8/missing: line 81: flex: command not found
| WARNING: 'flex' is missing on your system.
|          You should only need it if you modified a '.l' file.
|          You may want to install the Fast Lexical Analyzer package:
|          <http://flex.sourceforge.net/

>
| make[4]: *** [soapcpp2_lex.c] Error 127
| make[4]: Leaving directory `/work/x86_64-linux/gsoap-native/2.8.12-r1/build/gsoap/src'
| make[3]: *** [all-recursive] Error 1

Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>

* new version of vala-dbus-binding-tool was released with 0.4.0 version
  but unfortunately there already was 0.4.0 and 0.4.1 version, see
  comment in git recipe for more details
* be aware that it's actually newer than 0.4.1 used before
  and it's compatible with gee-0.8 which is newer than gee-1.0
  and yes I know how incorrect it sounds, but it's truth
* remove negative preference from git recipe so it's used by default
  and most people wont notice the mess with 0.4.0 archives

Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>

Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>

   Set the S variable to $WORKDIR to remove the warning about S being not
existant

Signed-off-by: Chunrong Guo <B40290@freescale.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>

  fix the following error
  |error: 'jsuword' does not name a type

Signed-off-by: Chunrong Guo <B40290@freescale.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>

5.5.24 has several CVE fixes, like CVE-2015-1351, CVE-2015-1352
5.5.23 has fixes for CVE-2015-2787, CVE-2015-2348 etc.

Update the LICENSE checksum, since the date in LICENSE is updated to 2015

Signed-off-by: Roy Li <rongqing.li@windriver.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>

when check the CC, only compile the object by CC, not run the object.
MCONFIG file includes more configuration, we can not clear it

Signed-off-by: Roy Li <rongqing.li@windriver.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>

Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>

The perl_trapd_handler function in perl/TrapReceiver/TrapReceiver.xs in
Net-SNMP 5.7.3.pre3 and earlier, when using certain Perl versions, allows
remote attackers to cause a denial of service (snmptrapd crash) via an
empty community string in an SNMP trap, which triggers a NULL pointer
dereference within the newSVpv function in Perl.

Refer to: https://bugzilla.redhat.com/show_bug.cgi?id=1072044



Signed-off-by: Junling Zheng <zhengjunling@huawei.com>
Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>

6.4 fixed a CVE defect:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2830


Stack-based buffer overflow in cifskey.c or cifscreds.c in cifs-utils
before 6.4, as used in pam_cifscreds, allows remote attackers to have
unspecified impact via unknown vectors.

Signed-off-by: Roy Li <rongqing.li@windriver.com>
Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>

ipsec-tools-0.8.2: ipsec-tools: Files/directories were installed but not shipped
   /lib
   /lib/systemd
   /lib/systemd/system
   /lib/systemd/system/racoon.service [installed-vs-shipped]

Signed-off-by: Bian Naimeng <biannm@cn.fujitsu.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>

python:
opensaf/usr/share/opensaf/samples/immsv/immom_python/immom.py

bash:
opensaf/usr/share/opensaf/immxml/verify.sh
opensaf/usr/share/opensaf/immxml/immxml-modify-config
opensaf/usr/share/opensaf/immxml/immxml-configure
opensaf/usr/share/opensaf/immxml/immxml-clustersize
opensaf/usr/share/opensaf/immxml/immxml-nodegen
opensaf/usr/share/opensaf/samples/INSTALL
opensaf/usr/share/opensaf/samples/smfsv/campaigns/smf-verify
opensaf/usr/lib/opensaf/configure_tipc

Signed-off-by: Robert Yang <liezhi.yang@windriver.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>

Fixed when systemd:
ERROR: Function failed: SYSTEMD_SERVICE_opensaf value opensafd.service does not exist

Signed-off-by: Robert Yang <liezhi.yang@windriver.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>

Signed-off-by: Chunrong Guo <B40290@freescale.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>

Taken Patch from fedora to fix CVE-2015-1419, deny_file parsing to do
more what is expected.

Signed-off-by: Roy Li <rongqing.li@windriver.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>

ntp 4.2.8p2 has more CVE fixes, like CVE-2015-1799, CVE-2015-1798;
and remove ntp-4.2.8-ntp-keygen-no-openssl.patch which 4.2.8p2 has integrated

Signed-off-by: Roy Li <rongqing.li@windriver.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>

Neither -utils nor -ptest packages make sense w/o actual kernel support
for SCTP protocol. Make both packages RRECOMMEND kernel-module-sctp.

Signed-off-by: Dmitry Eremin-Solenikov <dmitry_eremin@mentor.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>

Remove unneeded do_configure_prepend and set S = "${WORKDIR}"
v2 removes commented lines

Signed-off-by: Andrea Adami <andrea.adami@gmail.com>

Because the license of libpcscspy.c is GPLv3+.
So modified the license of pcsc-lite-dev.

Signed-off-by: Lei Maohui <leimaohui@cn.fujitsu.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>

Some of recipes produce errors if the distro has enabled usage of
security_flags.inc file. Fix those errors (and QA warnings) by providing
an additional include file that is require'd from conf/layer.conf.

Signed-off-by: Dmitry Eremin-Solenikov <dmitry_eremin@mentor.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>

The patch applied to toybox is rebased onto the new release and updated.

Signed-off-by: Amarnath Valluri <amarnath.valluri@intel.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>

python-cryptography is required by python-pyopenssl >= 0.14

Includes python-cryptography-vectors package for ptest

Over 75k unit tests (100% coverage):
	* tested on nuc (x86) and beaglebone (arm) hardware.
	** will overload ram on default qemux86/qemuarm

Signed-off-by: Tim Orling <TicoTimo@gmail.com>

python-pyasn1 is required by python-cryptography

Copied directly from:
http://git.yoctoproject.org/cgit/cgit.cgi/meta-cloud-services/tree/meta-openstack/recipes-devtools/python/python-pyasn1_0.1.7.bb



Original author: Bruce Ashfield <bruce.ashfield@windriver.com>

Signed-off-by: Tim Orling <TicoTimo@gmail.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>

python-pretend is required by python-cryptography

Signed-off-by: Tim Orling <TicoTimo@gmail.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>

python-iso8601 is required by python-cryptography

Signed-off-by: Tim Orling <TicoTimo@gmail.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>

python-pytest is required for ptest of python-cryptography

Signed-off-by: Tim Orling <TicoTimo@gmail.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>