openembedded-core.git/meta/recipes-devtools/apt, branch jethro Mirror of openembedded-core apt: update to 1.0.10.1 2015-08-11T16:04:11+00:00 Alexander Kanavin alexander.kanavin@linux.intel.com 2015-08-05T11:29:58+00:00 37c8700560b6da569cdf9d7c306a9aa31dcdf06f Signed-off-by: Alexander Kanavin <alexander.kanavin@linux.intel.com> Signed-off-by: Ross Burton <ross.burton@intel.com> 
Signed-off-by: Alexander Kanavin <alexander.kanavin@linux.intel.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
apt: remove invalid ac_cv_glibc_ver 2015-07-16T14:08:40+00:00 Robert Yang liezhi.yang@windriver.com 2015-07-13T10:04:31+00:00 3234c79940f67ca48e8ee7961c87d80cc27939e5 There is no ac_cv_glibc_ver in configure, can't find it in config.log after remove, either. (From OE-Core rev: 945e2bf6845b052eeb5101033c4770d766142bb1) Signed-off-by: Robert Yang <liezhi.yang@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> 
There is no ac_cv_glibc_ver in configure, can't find it
in config.log after remove, either.

(From OE-Core rev: 945e2bf6845b052eeb5101033c4770d766142bb1)

Signed-off-by: Robert Yang <liezhi.yang@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
apt-native: Drop obsolete symlinks 2015-06-23T15:06:29+00:00 Richard Purdie richard.purdie@linuxfoundation.org 2015-06-23T14:13:35+00:00 8c73bb7949656d91f138c087b9d261cdce90a94b Apt no longer uses GLIBC_VER and LIBSTDCPP_VER variables nor appears to need these odd symlinks. The variables expand to empty enties which then create symlinks which loop back on themselves. To fix, drop the obsolete code. Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> 
Apt no longer uses GLIBC_VER and LIBSTDCPP_VER variables nor appears
to need these odd symlinks. The variables expand to empty enties
which then create symlinks which loop back on themselves.

To fix, drop the obsolete code.

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
apt: upgrade to 1.0.9.9 2015-05-27T16:45:20+00:00 Roy Li rongqing.li@windriver.com 2015-05-27T07:58:49+00:00 7dd4a53a99277b46696dea5558fa321a2267af0a 1. Upgrade to fix the several CVEs: CVE-2014-0488, CVE-2014-0490 2. Remove apt-0.9.9.4-CVE-2014-0478.patch, which was backport. 3. Romve no-ko-translation.patch, apt-1.0.9.9 has ko translation 4. Update use-host.patch no-curl.patch db_linking_hack.patch and noconfigure.patch 5. Not build the test cases since it requires gtest 6. install libapt-private.so.* to libdir, otherwise this file is not installed into sysroot for native, and apt-get will use host's, and lead to fail 7. Revert apt commit[a2a75ff45]"always run 'dpkg --configure -a' at the end of our dpkg callings" for native package, otherwise the postscript for these installed packages will be run, and fail since the rootfs dir is not considered 8. Add lzma dependency by PACKAGECONFIG for target, and add xz dependency for native 9. Support to compile apt-native on centos6 Signed-off-by: Roy Li <rongqing.li@windriver.com> Acked-by: Aníbal Limón <anibal.limon@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> 
1. Upgrade to fix the several CVEs: CVE-2014-0488, CVE-2014-0490
2. Remove apt-0.9.9.4-CVE-2014-0478.patch, which was backport.
3. Romve no-ko-translation.patch, apt-1.0.9.9 has ko translation
4. Update use-host.patch no-curl.patch db_linking_hack.patch and
noconfigure.patch
5. Not build the test cases since it requires gtest
6. install libapt-private.so.* to libdir, otherwise this file is
not installed into sysroot for native, and apt-get will use host's,
and lead to fail
7. Revert apt commit[a2a75ff45]"always run 'dpkg --configure -a'
at the end of our dpkg callings" for native package, otherwise
the postscript for these installed packages will be run, and fail
since the rootfs dir is not considered
8. Add lzma dependency by PACKAGECONFIG for target, and add xz
dependency for native
9. Support to compile apt-native on centos6

Signed-off-by: Roy Li <rongqing.li@windriver.com>
Acked-by: Aníbal Limón <anibal.limon@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
apt: fix SRC_URI 2015-03-16T17:38:39+00:00 Robert Yang liezhi.yang@windriver.com 2015-03-06T03:29:32+00:00 490d20e1a7e6e3a0cae24af37bcb0192a3916409 Fixed: WARNING: Failed to fetch URL ftp://ftp.debian.org/debian/pool/main/a/apt/apt_0.9.9.4.tar.gz, attempting MIRRORS if available Signed-off-by: Robert Yang <liezhi.yang@windriver.com> 
Fixed:
WARNING: Failed to fetch URL ftp://ftp.debian.org/debian/pool/main/a/apt/apt_0.9.9.4.tar.gz, attempting MIRRORS if available

Signed-off-by: Robert Yang <liezhi.yang@windriver.com>
apt: Add missing running depency debianutils 2014-11-09T10:17:04+00:00 Ricardo Ribalda Delgado ricardo.ribalda@gmail.com 2014-11-03T10:13:51+00:00 40dd71a4e0beade84ecd686559243a10e55c3a2d apt-file calls run-parts with options --list and --regex: root@neopili:~/curro/qtec/qt5022/build-qt5022-cesium/build/tmp/work/bobcat_64-poky-linux/apt/0.9.9.4-r0/apt-0.9.9.4# grep run-parts cmdline/apt-key -rn 187: for trusted in $(run-parts --list $TRUSTEDPARTS --regex '^.*\.gpg$'); do busybox implementation of run-parts does not support --regex. And --list option is not enabled on yocto busybox configuration. Signed-off-by: Ricardo Ribalda Delgado <ricardo.ribalda@gmail.com> Signed-off-by: Ross Burton <ross.burton@intel.com> 
apt-file calls run-parts with options --list and --regex:

root@neopili:~/curro/qtec/qt5022/build-qt5022-cesium/build/tmp/work/bobcat_64-poky-linux/apt/0.9.9.4-r0/apt-0.9.9.4# grep run-parts cmdline/apt-key -rn
187:		for trusted in $(run-parts --list $TRUSTEDPARTS --regex '^.*\.gpg$'); do

busybox implementation of run-parts does not support --regex. And --list option is not enabled on yocto busybox configuration.

Signed-off-by: Ricardo Ribalda Delgado <ricardo.ribalda@gmail.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
apt: apt-key binary was not being installed, including it in the installation 2014-10-01T08:07:41+00:00 Alejandro Hernandez alejandro.hernandez@linux.intel.com 2014-09-30T22:01:24+00:00 d31fc181005734953c70ba9338d6a5eb88b6fe8b [YOCTO #6476] Signed-off-by: Alejandro Hernandez <alejandro.hernandez@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> 
[YOCTO #6476]

Signed-off-by: Alejandro Hernandez <alejandro.hernandez@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
apt: fix for CVE-2014-0478 2014-09-29T16:49:10+00:00 Chong Lu Chong.Lu@windriver.com 2014-09-26T01:49:19+00:00 3dd692fcf2b0c11731b3f30abdf2b1878458a898 APT before 1.0.4 does not properly validate source packages, which allows man-in-the-middle attackers to download and install Trojan horse packages by removing the Release signature. http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-0478 Signed-off-by: Wenlin Kang <wenlin.kang@windriver.com> Signed-off-by: Chong Lu <Chong.Lu@windriver.com> 
APT before 1.0.4 does not properly validate source packages, which allows
man-in-the-middle attackers to download and install Trojan horse packages
by removing the Release signature.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-0478

Signed-off-by: Wenlin Kang <wenlin.kang@windriver.com>
Signed-off-by: Chong Lu <Chong.Lu@windriver.com>
apt: add bash to RDEPENDS_apt 2014-08-23T08:25:05+00:00 Robert Yang liezhi.yang@windriver.com 2014-08-18T06:24:07+00:00 5533807d3168a4f923c502a0837837dbaa1e0185 Bash scripts: apt/usr/lib64/dpkg/methods/apt/update apt/usr/lib64/dpkg/methods/apt/install Signed-off-by: Robert Yang <liezhi.yang@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> 
Bash scripts:
apt/usr/lib64/dpkg/methods/apt/update
apt/usr/lib64/dpkg/methods/apt/install

Signed-off-by: Robert Yang <liezhi.yang@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
apt-native: Add missing DEPENDS on db-native and curl-native 2014-07-27T07:30:13+00:00 Richard Purdie richard.purdie@linuxfoundation.org 2014-07-26T08:02:23+00:00 9a3240acd0ac64a257bcfd48f743fc85b6c8f449 The target recipe has these DEPENDS but the native version does not and this can lead to none deterministic builds. Fix this. Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> 
The target recipe has these DEPENDS but the native version does not
and this can lead to none deterministic builds. Fix this.

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>