[RESEND,0/8] fix runtime versions

Message ID	20250624104155.559827-1-yi.zhao@windriver.com
Headers	show Return-Path: <yi.zhao@eng.windriver.com> ip: 205.220.166.238, mailfrom: prvs=827047d704=yi.zhao@windriver.com) From: Yi Zhao <yi.zhao@windriver.com> To: openembedded-core@lists.openembedded.org Subject: [RESEND][PATCH 0/8] fix runtime versions Date: Tue, 24 Jun 2025 18:41:47 +0800 Message-Id: <20250624104155.559827-1-yi.zhao@windriver.com> Content-Transfer-Encoding: 8bit Content-Type: text/plain MIME-Version: 1.0
Series	fix runtime versions \| expand [RESEND,0/8] fix runtime versions [1/8] libgpg-error: drop -unknown suffix from version number [2/8] pinentry: drop -unknown suffix from version number [3/8] libgcrypt: drop -unknown suffix from version number [4/8] gnupg: drop -unknown suffix from version number [5/8] libassuan: drop -unknown suffix from version number [6/8] libksba: drop -unknown suffix from version number [7/8] procps: fix runtime version when using git shallow tarball [8/8] psmisc: fix runtime version when using git shallow tarball

Message ID

20250624104155.559827-1-yi.zhao@windriver.com

Headers

From: Yi Zhao <yi.zhao@windriver.com>
To: openembedded-core@lists.openembedded.org
Subject: [RESEND][PATCH 0/8] fix runtime versions
Date: Tue, 24 Jun 2025 18:41:47 +0800
Message-Id: <20250624104155.559827-1-yi.zhao@windriver.com>
Content-Transfer-Encoding: 8bit
Content-Type: text/plain
MIME-Version: 1.0
X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1
X-MS-Exchange-AntiSpam-MessageData-0: 
 8ryqKczNW8acnTTKYSDOXQu0kREZk05Ca/f1FCRIe1AHqoTV3BOZbnJFQmwZXZiCpFjHptej7EUL6YvNeN6s6H4e8idonh+KOcx4YTSsMmfg/IwFlw7rI9yoSnX3m4B4Q5DkM+SxUl/noADG+dbKoNTLRyJ3NVfbeZPASru6ozUSJznIJQ5TdYpHjMc/FKZCwjB/wqg4n93qJaSTayhAV1JKzeAaIq91LtUbCIZ1UpI8ptZ8/dlJ1C8+64WgwcuBPQQsPMCdrDrwUitKvPDoVMSA/HenN18RJBJzIpVR+SIE4Qnh6zlzB0PxQK/OIdownj4UVDbNsz/yTSioIVydwGqnhYCQy1YU+ExlFMG0FbNBhxAsG8JQB6ikqR2pqdG17lI2w1meVTPo5YTKnlkiO/PNjOnG+peTNkhy1+m9VAL0gfaUJZys2TdgcfIVmM91L3m8hRABTxAWOTLFAPN1iNoBZuqFGV1f/47nN3DdJG+abxYGP75kviqZvoKqVlcX7q5egxRRrin51ASzkHP82aSgCKCAHpocmb2L9u4CI20giZH1ogt1f0wZiT1wf5ExTIdaWr6hUUuhbU1Ir8QzI/cfLzgGmayDvLjPA20Amm0CsZLaMmcAk59R7NeVF9dvKw8oJPM1R4VvitCr3NhtaQcdxYtNC7BmRiwRzupuNVAUVSpLIF3c5u6Q4+QRKi6f7DPqnYDBvmfC4zrjcpQBiQtQcTtNo7gqdqjOqgfuavsurWru2Fp7FIc8Jq5y48xDQ77boHZ5rF2dgutSUX93aLWp8hJx2i1MSbeuGwgC4sZ452cCgj5PXszx73eRqCasNW8Kj0cRJEhLVhKir4B/U3tURdy6LgM7fVg8Ht/GnxCeCShBkQALWs3whXbiLSNadPongDyU85PqUxVmriKzNoX1uyhZ0hlxu9bmEliequp6p34O+HtIHCQxXDNQI+i3uEHjOcsB39Usv3kFvMQL8Ehk7kQf/vj5/JhGzFQNCr/a8Qtj+XEAth/W7eg+U9J+3yDjoAoaCq+nk49MjWyNLW87J33xY58SNtYlOQWdQhSYXk2ulW1ufTONWA7xeREooqp3CRDFaAsifKgZkXHJQilkLyn1Fx5ulKeQAuC4bl/tZIx9zlAYGaGM2rPBGZIGBTJogPslsk5+uyfdp/fPOC+eknc4UJi6JJFGTVz1prnmKCkXbevq+owc0E5fxwFP91z9CKFcClphE7mTJHqeT4fiIVfZXlCn12TzS31ax028onOiebU1BKlX2VGoeLLbjmb0PXsTO6vfJ2R3F7m4+aHw5TZe0ImS59KebYAokeu0ir2sn6epIYZITcU1V2jR4Yqb3++zxNlpDotpoQuV4Tz9BweoURwqn0fmeLR5Bd4Y7D0q3sLgvdvvfnm8ZQslXRbVzcKhQcerxM/iXxfh+S4tl5AEF0tzdygx+RV6lKqqb0sYSk5fIZ70HMr8eLuQ92Fst0FeK7wAYUTED0K+epYudRlGVMCvuGlPk9V0cY3PoAq6lkf4JA96dWGjiuCes1gOhAJYsV6/N5v5NEh6XL9kMLeMlyPJiOTiseDjaz4ZIgDTZukhpA0goQdj5S6K
X-OriginatorOrg: windriver.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 
 d9eee2ef-a71b-459a-376c-08ddb30bc5ff
X-MS-Exchange-CrossTenant-AuthSource: DS0PR11MB6399.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 24 Jun 2025 10:42:10.6111
 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: 8ddb2873-a1ad-4a18-ae4e-4644631433be
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: 
 g3lPD1sECBo8zoPPK7q5IFQWEEPwwB2INKUCdwQmwTGVXWzjsncI9wCLHJTJVPLr0PTwQi9pBN8CMs6rhbTddg==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DS0PR11MB8083
X-Proofpoint-Spam-Details-Enc: AW1haW4tMjUwNjI0MDA5MCBTYWx0ZWRfXy/pyl8hHxxKI
 /3tRC8OPAv8ZiXq+Kip5J+VHRshZR1S0UdmzGoN+Os0uvRVNNDV4U7iQb7TUEfaaOFbSi6dxq5g
 ko7qSVGdQqXv72tqrCIvsPVnsKR22iSwZFMlMW4jQesWceHw6pGyJCNu44TxyQ05W8EVKmew7+i
 EVdv0jdjMpwTCSCgmqFsHN0Bwglle8EElg7bB+X0uNFnj6Tzenp7W55rXrMfjcqZx/Ebe1XO8zW
 pRc12wHOCnuRJmxKyoFu6JfjHOcGVk3bQm7NjSuzeouxQ+khRew9jKVRwheI8UxMN5vGo7vcWOR
 xqNm0dGJ3tYC6Td1wBXtpgF7msaPCeUJyMY0ICmwfmZhUP0QFExgxu7e1L/R6tL9+oiO5WKAUCy
 U0AtDTxqS2YJPpSIyOIWsUr4H1JAxLhTnz7YaZVGcu3E8LbjJfDOB8Hock+19mxOLTLqyddF
X-Authority-Analysis: v=2.4 cv=MeNsu4/f c=1 sm=1 tr=0 ts=685a8105 cx=c_pps
 a=EDI2sMUdhBp/6Fwy26P2Vw==:117 a=6eWqkTHjU83fiwn7nKZWdM+Sl24=:19
 a=lCpzRmAYbLLaTzLvsPZ7Mbvzbb8=:19 a=wKuvFiaSGQ0qltdbU6+NXLB8nM8=:19
 a=Ol13hO9ccFRV9qXi2t6ftBPywas=:19
 a=xqWC_Br6kY4A:10 a=6IFa9wvqVegA:10 a=GwUem0DFAAAA:8 a=xNf9USuDAAAA:8
 a=2R51jOvwHnZT8D9jGp8A:9 a=zcmhbJOrE-8A:10 a=O10gGaTY_lwA:10
 a=LeceX61Ea_4A:10 a=r0dl5i_q2XGqDZkti5dn:22
X-Proofpoint-GUID: EptjZuXGdOhUFgZx5QHFkkO_rciay56Q
X-Proofpoint-ORIG-GUID: EptjZuXGdOhUFgZx5QHFkkO_rciay56Q
X-Proofpoint-Virus-Version: vendor=baseguard
 engine=ICAP:2.0.293,Aquarius:18.0.1099,Hydra:6.1.7,FMLib:17.12.80.40
 definitions=2025-06-24_04,2025-06-23_07,2025-03-28_01
X-Proofpoint-Spam-Details: rule=outbound_notspam policy=outbound score=0
 impostorscore=0 clxscore=1015
 mlxscore=0 malwarescore=0 lowpriorityscore=0 priorityscore=1501
 suspectscore=0 spamscore=0 bulkscore=0 phishscore=0 adultscore=0
 mlxlogscore=999 classifier=spam authscore=0 authtc=n/a authcc=
 route=outbound adjust=0 reason=mlx scancount=1 engine=8.21.0-2505280000
 definitions=main-2506240090
List-Id: <openembedded-core.lists.openembedded.org>
X-Webhook-Received: from li982-79.members.linode.com [45.33.32.79] by
 aws-us-west-2-korg-lkml-1.web.codeaurora.org with HTTPS for
 <openembedded-core@lists.openembedded.org>; Tue, 24 Jun 2025 10:42:17 -0000
X-Groupsio-URL: 
 https://lists.openembedded.org/g/openembedded-core/message/219241

Series

fix runtime versions | expand

Message

Yi Zhao June 24, 2025, 10:41 a.m. UTC

This series of patches was sent in April. Ross suggested discussing this
with upstream to see if they could update the scripts to address the
issue. I talked to upstream and they declined because they believed that
"autoreconf may result in different built source code than what has been
distributed"[1].
I found that Debian maintains a similar patch in their own repo[2], as
it was also rejected upstream[3].


[1] https://lists.gnupg.org/pipermail/gnupg-devel/2025-May/035913.html
[2] https://salsa.debian.org/debian/gnupg2/-/blob/debian/unstable/debian/patches/debian-packaging/avoid-beta-warning.patch
[3] https://lists.gnupg.org/pipermail/gnupg-devel/2014-November/029068.html

Yi Zhao (8):
  libgpg-error: drop -unknown suffix from version number
  pinentry: drop -unknown suffix from version number
  libgcrypt: drop -unknown suffix from version number
  gnupg: drop -unknown suffix from version number
  libassuan: drop -unknown suffix from version number
  libksba: drop -unknown suffix from version number
  procps: fix runtime version when using git shallow tarball
  psmisc: fix runtime version when using git shallow tarball

 meta/recipes-extended/procps/procps_4.0.5.bb  |  4 +++
 meta/recipes-extended/psmisc/psmisc_23.7.bb   |  1 +
 ...h-fix-find-version-for-beta-checking.patch | 22 ++++++++----
 ...p-unknown-suffix-from-version-number.patch | 35 +++++++++++++++++++
 .../libassuan/libassuan_3.0.2.bb              |  1 +
 ...p-unknown-suffix-from-version-number.patch | 35 +++++++++++++++++++
 .../libgcrypt/libgcrypt_1.11.1.bb             |  1 +
 ...p-unknown-suffix-from-version-number.patch | 35 +++++++++++++++++++
 .../libgpg-error/libgpg-error_1.55.bb         |  1 +
 ...p-unknown-suffix-from-version-number.patch | 35 +++++++++++++++++++
 meta/recipes-support/libksba/libksba_1.6.7.bb |  3 +-
 ...p-unknown-suffix-from-version-number.patch | 35 +++++++++++++++++++
 .../pinentry/pinentry_1.3.1.bb                |  1 +
 13 files changed, 201 insertions(+), 8 deletions(-)
 create mode 100644 meta/recipes-support/libassuan/libassuan/0001-autogen.sh-drop-unknown-suffix-from-version-number.patch
 create mode 100644 meta/recipes-support/libgcrypt/files/0001-autogen.sh-drop-unknown-suffix-from-version-number.patch
 create mode 100644 meta/recipes-support/libgpg-error/libgpg-error/0001-autogen.sh-drop-unknown-suffix-from-version-number.patch
 create mode 100644 meta/recipes-support/libksba/libksba/0001-autogen.sh-drop-unknown-suffix-from-version-number.patch
 create mode 100644 meta/recipes-support/pinentry/pinentry-1.3.1/0001-autogen.sh-drop-unknown-suffix-from-version-number.patch

Comments

Alexander Kanavin June 24, 2025, 10:50 a.m. UTC | #1

On Tue, 24 Jun 2025 at 12:42, Yi Zhao via lists.openembedded.org
<yi.zhao=eng.windriver.com@lists.openembedded.org> wrote:
> This series of patches was sent in April. Ross suggested discussing this
> with upstream to see if they could update the scripts to address the
> issue. I talked to upstream and they declined because they believed that
> "autoreconf may result in different built source code than what has been
> distributed"[1].

Is there a benefit of carrying these patches in core to the broader
community? I don't think anyone's particularly confused or misled by
'unknown' reported by executables at runtime, we have procedures to
verify that what we build is exactly what upstream has released, and
various built time reporting mechanisms to see the versions.

Wind River obviously has invested a lot of time and effort into this,
presumably because it has a paying customer that is obsessed about
what executables on target say, but I do struggle to justify carrying
and maintaining these fixes.

Alex

Richard Purdie June 24, 2025, 11:04 a.m. UTC | #2

On Tue, 2025-06-24 at 12:50 +0200, Alexander Kanavin via lists.openembedded.org wrote:
> On Tue, 24 Jun 2025 at 12:42, Yi Zhao via lists.openembedded.org
> <yi.zhao=eng.windriver.com@lists.openembedded.org> wrote:
> > This series of patches was sent in April. Ross suggested discussing this
> > with upstream to see if they could update the scripts to address the
> > issue. I talked to upstream and they declined because they believed that
> > "autoreconf may result in different built source code than what has been
> > distributed"[1].
> 
> Is there a benefit of carrying these patches in core to the broader
> community? I don't think anyone's particularly confused or misled by
> 'unknown' reported by executables at runtime, we have procedures to
> verify that what we build is exactly what upstream has released, and
> various built time reporting mechanisms to see the versions.
> 
> Wind River obviously has invested a lot of time and effort into this,
> presumably because it has a paying customer that is obsessed about
> what executables on target say, but I do struggle to justify carrying
> and maintaining these fixes.

I guess it raises the question of patch vs sed too.

Would this be more maintainable if we just had a common sed like
function to take these out of autogen.sh? If it breaks, it isn't the
end of the world...

There is the advantage that it is relatively standardised.

Cheers,

Richard

Yi Zhao June 25, 2025, 7:38 a.m. UTC | #3

On 6/24/25 18:50, Alexander Kanavin wrote:
> On Tue, 24 Jun 2025 at 12:42, Yi Zhao via lists.openembedded.org
> <yi.zhao=eng.windriver.com@lists.openembedded.org> wrote:
>> This series of patches was sent in April. Ross suggested discussing this
>> with upstream to see if they could update the scripts to address the
>> issue. I talked to upstream and they declined because they believed that
>> "autoreconf may result in different built source code than what has been
>> distributed"[1].
> Is there a benefit of carrying these patches in core to the broader
> community? I don't think anyone's particularly confused or misled by
> 'unknown' reported by executables at runtime, we have procedures to
> verify that what we build is exactly what upstream has released, and
> various built time reporting mechanisms to see the versions.
>
> Wind River obviously has invested a lot of time and effort into this,
> presumably because it has a paying customer that is obsessed about
> what executables on target say, but I do struggle to justify carrying
> and maintaining these fixes.


This is exposed by version check using check-version-mismatch.bbclass.
In some cases, a mismatch between the runtime version and the build-time 
version can cause confusion for users.
On the other hand, this suffix does not exist in other distributions.
I will follow Richard's suggestion. Use a more standardized approach.


Thanks,

Yi


>
> Alex