1.0 ROLLING CUMULATIVE PATCH LAYER OVERVIEW This is a Rolling Cumulative Patch Layer for the base Wind River Linux 7.0 release. This RCPL provides fixes for known problems found in this base release. You can control which RCPL layer to use for a specific build via the "--with-rcpl-version" option of the configure command. The default value for "--with-rcpl-version" is "auto" which will automatically select the newest RCPL installed on the host machine. You can also specifically select an RCPL by setting the "--with-rcpl-version" value to the RCPL number that you wish to use. So, if you wanted to select RCPL 0003 for the project build you could specify that at configure time using "--with-rcpl-version=0003". $ /wrlinux-7/wrlinux/configure --enable-board=qemux86 \ --enable-kernel=standard --enable-rootfs=glibc_std \ --with-rcpl-version=0003 This will force this project build to use RCPL 0003 even if an RCPL 0004 or RCPL 0005 has been installed on the host machine. If you wanted to build a project that doesn't use any RCPL's, but just uses the base installation layers, you can set "--with-rcpl-version=0". Once a newer RCPL has been added to the installation, existing projects that have been using the default "--with-rcpl-version=auto" can pick up the new fixes by doing a "make upgrade". This will bring the project up to the newest RCPL on the host: $ make upgrade Any project that had specifically specified an RCPL, say with "--with-rcpl-version=0003", will be unaffected by the installation of a newer RCPL. It will continue to use the one previously specified. This allows a particular project to remain on a specific RCPL. It is also possible to override the "--with-rcpl-version" setting when you do a reconfig by setting the environment variable ENV_RCPL_VERSION . This will override any previous setting from the "--with-rcpl-version" configure option. 2.0 RCPL Update Implementation The distribution is a set of git repositories that are used to generate project directories at configure time. An RCPL appends new fixes to these repositories and so the git repositories can grow with each new RCPL. The original distribution for any of the git repositories is identified by the branch name LB21_7.0. That is the branch name that corresponds to the original distribution. As fixes are added to a git repository via an RCPL the git repository tree grows and is marked with a branch name of the form LB21_7.0_RCPL000X, wheere X is the RCPL number. If there were no fixes in a particular repository for a particular RCPL then the new branch would coincide with the previous RCPL branch name. 3.0 List of adefects fixed since initial distribution Defect List: ======================= 7.0.0.2 =============================== LIN7-2147: Security Advisory - glibc - CVE-2014-7817 LIN7-2220: Security Advisory - glibc - CVE-2012-3406 LIN7-2573: Security Advisory - linux - CVE-2014-9322 LIN7-2707: Security Advisory - openssl - CVE-2014-3570 LIN7-2710: Security Advisory - openssl - CVE-2015-0206 LIN7-2711: Security Advisory - strongswan - CVE-2014-9221 LIN7-2572: Security Advisory - nss - CVE-2014-1569 LIN7-2578: Security Advisory - apache - CVE-2014-8109 LIN7-2696: Security Advisory - openssl - CVE-2014-3571 LIN7-2700: Security Advisory - openssl - CVE-2015-0205 LIN7-2697: Security Advisory - openssl - CVE-2014-8275 LIN7-2704: Security Advisory - openssl - CVE-2015-0204 LIN7-2706: Security Advisory - openssl - CVE-2014-3572 LIN7-2681: Security Advisory - ntp - CVE-2014-9298 LIN7-2680: Security Advisory - ntp - CVE-2014-9297 LIN7-2564: Security Advisory - php - CVE-2014-8142 LIN7-2565: Security Advisory - krb5 - CVE-2014-5353 LIN7-2157: Security Advisory - php - CVE-2014-3668 LIN7-2160: Security Advisory - tcpdump - CVE-2014-8769 LIN7-2561: Security Advisory - file - CVE-2014-8116 LIN7-2568: Security Advisory - apache - CVE-2014-3583 LIN7-2560: Security Advisory - file - CVE-2014-8117 LIN7-2409: Security Advisory - tcpdump - CVE-2014-9140 LIN7-1746: Security Advisory - libxml2 - CVE-2014-3660 LIN7-2135: Security Advisory - php - CVE-2014-3670 LIN7-2155: Security Advisory - phpMyAdmin - CVE-2014-8959 LIN7-1055: Security Advisory - perl - CVE-2014-4330 LIN7-2112: Security Advisory - tcpdump - CVE-2014-8768 LIN7-2145: Security Advisory - tcpdump - CVE-2014-8767 LIN7-2127: Security Advisory - phpMyAdmin - CVE-2014-8958 LIN7-2097: Security Advisory - phpMyAdmin - CVE-2014-8326 LIN7-2119: Security Advisory - phpMyAdmin - CVE-2014-6300 LIN7-2151: Security Advisory - libvirt - CVE-2014-7823 LIN7-2579: Security Advisory - libvirt - CVE-2014-8135 LIN7-1043: Security Advisory - libvirt - CVE-2014-3633 LIN7-1060: Security Advisory - libvirt - CVE-2014-3657 LIN7-2406: Security Advisory - xorg-server - CVE-2014-8100 LIN7-2433: Security Advisory - gst-ffmpeg - CVE-2014-9318 LIN7-2689: The start Heapscope probe insertion is failed LIN7-2812: uninitialized value in install-WRL7.pl LIN7-2768: When compiling a Linux Kernel on a 4-core x86_64 under heapscope, there are some bogus "unfreed bytes". LIN7-2780: Disabling LDCONFIG does not work LIN7-2695: wrlinux 5.0.1.net-snmp Setscene warnings at build time LIN7-2743: Remove hardcoded meta branch name in kernel recipe LIN7-1781: module_autoload_nfsd warning when build qemuarm64 LIN7-1037: kgdb next and step command fail on qemuarm64 LIN7-2756: Can't build Platform Project with cloned BSP LIN7-2760: The prebuilt host-tools are missing in weekly spin of wrlinux-7.0.0.2 LIN7-2684: Release Notes reference to missing file. LIN7-2685: BSP Readme's moved, Release notes out of date. LIN7-2616: Release Notets Host issues LIN7-2630: Added host to System Requirements - Recommended Hosts List LIN7-2673: rng-tools default konfiguration file has faulty name LIN7-1137: valgrind_3.9.0.bb, do_compile_ptest_base failed with qemuarma9 LIN7-2722: Cannot enable libc-libm with minimal libc LIN7-2714: qemux86-64 boot fails from ext3 disk image LIN7-2747: uninitialized value at install-WRL7.pl line 1540 when download product LIN7-2732: [KTS] 'hrt' test failed on fsl-t2080rdb target LIN7-2659: [wrlinux-7] GUI Installer exception: progress maximum is larger than int max LIN7-2556: arm64 KGDB config option mislocated causing audit failures LIN7-2676: meta-gnome-subset/conf/layer.conf: LAYERDEPENDS is not defined LIN7-2547: GUI Installer does not fetch git repository installation size LIN7-2633: Failed to use install-WRL7.pl to download product LIN7-2606: Run Alternate Dead Lock Example failed: no wrsv-lttconfig wrsv-lttctl wrsv-lttconifg LIN7-1329: error: Can't install polarssl-1.3.8-r0.0@core2_64: no package provides libpolarssl.so.7()(64bit) LIN7-2758: Toolchain won't build for MIPS64n32 if it's the defaulttune LIN7-2783: Update the WRL7 feature/lttng-init to auto-define a session for System Viewer with proper events LIN7-2618: serf does not build with CCACHE enabled. LIN7-2644: bitbake -c tasklist is missing some WR specific function definitions. LIN7-2757: Dangling symlinks in libgcc* packages are owned by the build user/group LIN7-2522: Doc: Wrong Steps in Export SDK LIN7-2623: The wrlinux distribution configuration is not properly setting the "osv-wrlinux" override LIN7-2734: [WROE-209] Upgrade Oprofile to add Avoton support LIN7-1986: wrl7installation (win7): "SSL certificate problem: self signed certificate in certificate chain" LIN7-2727: Failed to upgrade product to WRL7_RCPL0001 due to incorrect windshare url LIN7-2662: install-WRL7.pl script contains internal URL as fallback LIN7-2879: offline install fails on older products if newer are present LIN7-2731: mmc-utils_git failed (do_compile) of x86-kvm-guest_world_bd. LIN7-2774: CLONE - wrl6 wr-installer layer do not managed GPT LIN7-1639: There is tcf start error on the board start up for wrlinux 7, which is confusing for customers. ======================= 7.0.0.1 =============================== LIN7-2498: Security Advisory - ntp - CVE-2014-9293 LIN7-2502: Security Advisory - ntp - CVE-2014-9296 LIN7-2501: Security Advisory - ntp - CVE-2014-9295 LIN7-2500: Security Advisory - ntp - CVE-2014-9294 LIN7-2165: Security Advisory - apt - CVE-2014-0490 LIN7-2110: Security Advisory - ffmpeg - CVE-2014-8545 LIN7-2130: Security Advisory - ffmpeg - CVE-2014-8543 LIN7-2133: Security Advisory - ppp - CVE-2014-3158 LIN7-2138: Security Advisory - ffmpeg - CVE-2014-8546 LIN7-2137: Security Advisory - apt - CVE-2014-0488 LIN7-2144: Security Advisory - ffmpeg - CVE-2014-8544 LIN7-2575: Security Advisory - openssl - CVE-2014-3569 LIN7-1352: Security Advisory - gpgme - CVE-2014-3564 LIN7-2161: Security Advisory - ffmpeg - CVE-2014-8542 LIN7-2163: Security Advisory - apt - CVE-2014-0487 LIN7-2105: Security Advisory - ffmpeg - CVE-2014-8547 LIN7-2103: Security Advisory - apt - CVE-2014-0489 LIN7-2547: GUI Installer does not fetch git repository installation size LIN7-2492: usability issues with platform configure GUI LIN7-2542: CLONE - [tz-announce] 2014j release of tz code and data available LIN7-2467: resolv.conf not set up correctly in systemd based wrlinux image LIN7-2448: Run configure from command line does not pull in configure parameters LIN7-2454: configure GUI issue in displaying option “--with-kvm-guest=[ABS" LIN7-2555: Linux tiny BSP coverage inconsistent with those created via kernel-cache LIN7-2352: tcpreplay_3.4.4 configure requires libpcap to be under lib or lib64 LIN7-2361: Failed to compile heapscope ptest for qemuppc. LIN7-2353: systemd based WRLinux image needs a default network configuration method LIN7-2550: Fail to run configure if configure options contain blank lines LIN7-2508: There is "lockdep annotation" call trace when booting up WRL70 Async BSP altera-socfpga target ArriaV with kernel debug options enabled LIN7-2511: The target hang when run ftrace test on WRL70 Async BSP altera-socfpga target ArriaV LIN7-2510: There is continuous output "BUG: sleeping function called from invalid context" on WRL70 Async BSP altera-socfpga target ArriaV with kernel debug options enabled LIN7-2461: Repo file names on DVD have been lowercased LIN7-1599: fsl-t2xxx cpu_hotplug_offline end but no respond keyboard on console LIN7-2211: apache2-native: do_compile failed on centos and ubuntu with prebuilt host-tools LIN7-1905: nfs_server failed to export fs after setting the date to 19700101 on intel-x86-32 sysvinit target LIN7-1814: fsl-t2xxx WARNING: QA Issue: lib32-libgcc :ELF binary :No GNU_HASH in the elf binary LIN7-1873: [KVM] Failed to start 'VM' by virsh command LIN7-1854: Project Configure Tool: A configure command without absolute path adds "configure" as an option incorrectly LIN7-2015: named loading from master file /etc/bind/db.255 failed: file not found LIN7-2086: mariadb_5.5.40 do_compile failed if a qemux86 platform project is configured with --enable-build=profiling LIN7-2074: systemd has no manpages in our system LIN7-1496: intel-x86-32:ixgbe ethernet card failed to work on wildcat_pass LIN7-2028: Excess of busybox links LIN7-1946: sethdlc do_compile failed for qemumips on SLED 11.3 LIN7-2175: test-dependencies: warnings about dependency changes - collectd LIN7-1638: test-dependencies: warnings about dependency changes - lxc, libvirt LIN7-2174: test-dependencies: warnings about dependency changes - systemd LIN7-2172: test-dependencies: warnings about dependency changes - apache2 LIN7-2171: test-dependencies: warnings about dependency changes - ltrace LIN7-2473: mpatrol doesn't produce backtraces for mips LIN7-2503: Non-existent folder referenced in a custom layer causes configuration failure