bluez5: update 5.64 -> 5.65

Drop fix_service.patch as it is merged upstream. (From OE-Core rev: 10374b5ed4b5550eadacbcd71ae20b751ce5c038) Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
author: Alexander Kanavin <alex.kanavin@gmail.com> 2022-08-08 08:42:00 +0200
committer: Richard Purdie <richard.purdie@linuxfoundation.org> 2022-08-10 08:25:28 +0100
commit: 936f15bc72b28f448255394a9f0fbd8d13b949e7 (patch)
tree: 66392151d42147472b4fa92733ce57f86ed0c4a0 /meta
parent: 7d219c244079cad98d735c0735c82a439c3a54e5 (diff)
download: poky-936f15bc72b28f448255394a9f0fbd8d13b949e7.tar.gz
3 files changed, 1 insertions, 32 deletions
diff --git a/meta/recipes-connectivity/bluez5/bluez5.inc b/meta/recipes-connectivity/bluez5/bluez5.inc
index 22dd07b348..79d4645ca8 100644
--- a/meta/recipes-connectivity/bluez5/bluez5.inc
+++ b/meta/recipes-connectivity/bluez5/bluez5.inc
@@ -53,7 +53,6 @@ SRC_URI = "${KERNELORG_MIRROR}/linux/bluetooth/bluez-${PV}.tar.xz \
           ${@bb.utils.contains('DISTRO_FEATURES', 'systemd', '', 'file://0001-Allow-using-obexd-without-systemd-in-the-user-sessio.patch', d)} \
           file://0001-tests-add-a-target-for-building-tests-without-runnin.patch \
           file://0001-test-gatt-Fix-hung-issue.patch \
-           file://fix_service.patch \
           "
 S = "${WORKDIR}/bluez-${PV}"
diff --git a/meta/recipes-connectivity/bluez5/bluez5/fix_service.patch b/meta/recipes-connectivity/bluez5/bluez5/fix_service.patch
deleted file mode 100644
index 96fdf6b299..0000000000
--- a/meta/recipes-connectivity/bluez5/bluez5/fix_service.patch
+++ /dev/null
@@ -1,30 +0,0 @@
-The systemd bluetooth service failed to start because the /var/lib/bluetooth
-path of ReadWritePaths= is created by the bluetooth daemon itself.
-The commit systemd: Add more filesystem lockdown (442d211) add ReadWritePaths=/etc/bluetooth
-and ReadOnlyPaths=/var/lib/bluetooth options to the bluetooth systemd service.
-The existing ProtectSystem=full option mounts the /usr, the boot loader
-directories and /etc read-only. This means the two option are useless and could be removed.
-Upstream-Status: Submitted [https://github.com/bluez/bluez/issues/329]
-Index: bluez-5.64/src/bluetooth.service.in
-===================================================================
--- bluez-5.64.orig/src/bluetooth.service.in
-+++ bluez-5.64/src/bluetooth.service.in
-@@ -15,12 +15,12 @@ LimitNPROC=1
- 
- # Filesystem lockdown
- ProtectHome=true
-ProtectSystem=full
-+ProtectSystem=strict
- PrivateTmp=true
- ProtectKernelTunables=true
- ProtectControlGroups=true
-ReadWritePaths=@statedir@
-ReadOnlyPaths=@confdir@
-+ConfigurationDirectory=bluetooth
-+StateDirectory=bluetooth
- 
- # Execute Mappings
- MemoryDenyWriteExecute=true
diff --git a/meta/recipes-connectivity/bluez5/bluez5_5.64.bb b/meta/recipes-connectivity/bluez5/bluez5_5.65.bb
index 4319f9aae8..4c15aeb46d 100644
--- a/meta/recipes-connectivity/bluez5/bluez5_5.64.bb
+++ b/meta/recipes-connectivity/bluez5/bluez5_5.65.bb
@@ -1,6 +1,6 @@
 require bluez5.inc
-SRC_URI[sha256sum] = "ae437e65b6b3070c198bc5b0109fe9cdeb9eaa387380e2072f9de65fe8a1de34"
+SRC_URI[sha256sum] = "2565a4d48354b576e6ad92e25b54ed66808296581c8abb80587051f9993d96d4"
 # These issues have kernel fixes rather than bluez fixes so exclude here
 CVE_CHECK_IGNORE += "CVE-2020-12352 CVE-2020-24490"
author	Alexander Kanavin <alex.kanavin@gmail.com>	2022-08-08 08:42:00 +0200
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2022-08-10 08:25:28 +0100
commit	936f15bc72b28f448255394a9f0fbd8d13b949e7 (patch)
tree	66392151d42147472b4fa92733ce57f86ed0c4a0 /meta
parent	7d219c244079cad98d735c0735c82a439c3a54e5 (diff)
download	poky-936f15bc72b28f448255394a9f0fbd8d13b949e7.tar.gz

diff --git a/meta/recipes-connectivity/bluez5/bluez5.inc b/meta/recipes-connectivity/bluez5/bluez5.inc index 22dd07b348..79d4645ca8 100644 --- a/meta/recipes-connectivity/bluez5/bluez5.inc +++ b/meta/recipes-connectivity/bluez5/bluez5.inc
@@ -53,7 +53,6 @@ SRC_URI = "${KERNELORG_MIRROR}/linux/bluetooth/bluez-${PV}.tar.xz \
53	${@bb.utils.contains('DISTRO_FEATURES', 'systemd', '', 'file://0001-Allow-using-obexd-without-systemd-in-the-user-sessio.patch', d)} \	53	${@bb.utils.contains('DISTRO_FEATURES', 'systemd', '', 'file://0001-Allow-using-obexd-without-systemd-in-the-user-sessio.patch', d)} \
54	file://0001-tests-add-a-target-for-building-tests-without-runnin.patch \	54	file://0001-tests-add-a-target-for-building-tests-without-runnin.patch \
55	file://0001-test-gatt-Fix-hung-issue.patch \	55	file://0001-test-gatt-Fix-hung-issue.patch \
56	file://fix_service.patch \
57	"	56	"
58	S = "${WORKDIR}/bluez-${PV}"	57	S = "${WORKDIR}/bluez-${PV}"
59		58


diff --git a/meta/recipes-connectivity/bluez5/bluez5/fix_service.patch b/meta/recipes-connectivity/bluez5/bluez5/fix_service.patch deleted file mode 100644 index 96fdf6b299..0000000000 --- a/meta/recipes-connectivity/bluez5/bluez5/fix_service.patch +++ /dev/null
@@ -1,30 +0,0 @@
1	The systemd bluetooth service failed to start because the /var/lib/bluetooth
2	path of ReadWritePaths= is created by the bluetooth daemon itself.
3
4	The commit systemd: Add more filesystem lockdown (442d211) add ReadWritePaths=/etc/bluetooth
5	and ReadOnlyPaths=/var/lib/bluetooth options to the bluetooth systemd service.
6	The existing ProtectSystem=full option mounts the /usr, the boot loader
7	directories and /etc read-only. This means the two option are useless and could be removed.
8
9	Upstream-Status: Submitted [https://github.com/bluez/bluez/issues/329]
10
11	Index: bluez-5.64/src/bluetooth.service.in
12	===================================================================
13	--- bluez-5.64.orig/src/bluetooth.service.in
14	+++ bluez-5.64/src/bluetooth.service.in
15	@@ -15,12 +15,12 @@ LimitNPROC=1
16
17	# Filesystem lockdown
18	ProtectHome=true
19	-ProtectSystem=full
20	+ProtectSystem=strict
21	PrivateTmp=true
22	ProtectKernelTunables=true
23	ProtectControlGroups=true
24	-ReadWritePaths=@statedir@
25	-ReadOnlyPaths=@confdir@
26	+ConfigurationDirectory=bluetooth
27	+StateDirectory=bluetooth
28
29	# Execute Mappings
30	MemoryDenyWriteExecute=true


diff --git a/meta/recipes-connectivity/bluez5/bluez5_5.64.bb b/meta/recipes-connectivity/bluez5/bluez5_5.65.bb index 4319f9aae8..4c15aeb46d 100644 --- a/meta/recipes-connectivity/bluez5/bluez5_5.64.bb +++ b/meta/recipes-connectivity/bluez5/bluez5_5.65.bb
@@ -1,6 +1,6 @@
1	require bluez5.inc	1	require bluez5.inc
2		2
3	SRC_URI[sha256sum] = "ae437e65b6b3070c198bc5b0109fe9cdeb9eaa387380e2072f9de65fe8a1de34"	3	SRC_URI[sha256sum] = "2565a4d48354b576e6ad92e25b54ed66808296581c8abb80587051f9993d96d4"
4		4
5	# These issues have kernel fixes rather than bluez fixes so exclude here	5	# These issues have kernel fixes rather than bluez fixes so exclude here
6	CVE_CHECK_IGNORE += "CVE-2020-12352 CVE-2020-24490"	6	CVE_CHECK_IGNORE += "CVE-2020-12352 CVE-2020-24490"