summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* migration-guides: fix release notes for 4.3.3Michael Opdenacker2024-02-221-1/+2
| | | | | | | | (From yocto-docs rev: 25fafd6f0fb90456358687f358a87960006cf2e6) Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com> Signed-off-by: Michael Opdenacker <michael.opdenacker@bootlin.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* migration-guide: add release notes for 4.3.3Lee Chee Yang2024-02-222-0/+200
| | | | | | | | (From yocto-docs rev: 75c0d611da378a30ef70420d9f0e622f595d8881) Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com> Reviewed-by: Michael Opdenacker <michael.opdenacker@bootlin.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* multilib_global.bbclass: fix parsing error with no kernel module splitChen Qi2024-02-221-0/+1
| | | | | | | | | | | | | | | | | | | | | | | | | The problem could be reproduced with the following settings: MACHINE = "qemux86-64" KERNEL_SPLIT_MODULES = "0" require conf/multilib.conf MULTILIBS ?= "multilib:lib32" DEFAULTTUNE:virtclass-multilib-lib32 ?= "core2-32" The error message is as below: bb.data_smart.ExpansionError: Failure expanding variable KERNEL_VERSION_PKG_NAME, expression was ${@legitimize_package_name(d.getVar('KERNEL_VERSION'))} which triggered exception TypeError: expected string or bytes-like object The variable dependency chain for the failure is: KERNEL_VERSION_PKG_NAME -> RPROVIDES:kernel-modules This is because multilib_virtclass_handler_global function in multilib_global.bbclass deletes KERNEL_VERSION. So we need to handle such situation. We'll also need to delete KERNEL_VERSION_PKG_NAME to avoid this parsing error. (From OE-Core rev: 82dd61aade02456621cd2958b2fbb56236062789) Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 43dd497bc161ac44faecfdff052db03679dbb4f8) Signed-off-by: Steve Sakoman <steve@sakoman.com>
* overlayfs: add missing closing parenthesis in selftestbaruch@tkos.co.il2024-02-221-1/+1
| | | | | | | | | | Cc: Vyacheslav Yurkov <uvv.mail@gmail.com> (From OE-Core rev: 8635e17bd81e50ca587bb15716687fd78b81ec46) Signed-off-by: Baruch Siach <baruch@tkos.co.il> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit aebd526cdfea738745e57183b1015fd327bd94df) Signed-off-by: Steve Sakoman <steve@sakoman.com>
* pseudo: Update to pull in gcc14 fix and missing statvfs64 interceptRichard Purdie2024-02-222-14/+1
| | | | | | | | | | | | | | | | | rpm 4.19 now builds with LFS64 support enabled by default, so it calls statvfs64() to get the space available on the filesystem it is installing packages into. This is not getting caught by pseudo, so rpm is checking the host's root filesystem, rather than the filesystem where the build is happening. Merge in that fix and a gcc14 fix. (From OE-Core rev: f7ef390b70709c0b6a607fcfe1da4c85144840e5) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit f6d021c860b2b99f46c604149317b326f493022d) Signed-off-by: Steve Sakoman <steve@sakoman.com>
* udev-extraconf: fix unmount directories containing octal-escaped charsJonathan GUILLOT2024-02-221-1/+1
| | | | | | | | | | | | | | | | USB devices are auto-mounted in a directory named like theirs labels. Special characters like whitespace are octal-escaped in /proc/mounts output. Using directly this output file as an argument for umount failed and the mount directory can't be removed as still busy. Using printf allows these special characters to be unescaped. (From OE-Core rev: c3c31248233356a04db1d5ed375b647656d80fa0) Signed-off-by: Jonathan GUILLOT <jonathan@joggee.fr> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 37f17625d931a06888388682dc2b1f5a2d298125) Signed-off-by: Steve Sakoman <steve@sakoman.com>
* externalsrc: fix task dependency for do_populate_licJulien Stephan2024-02-221-0/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | do_populate_lic dependencies are defined inside license.bbclass such as: addtask populate_lic after do_patch before do_build but externalsrc deletes the do_patch task, so the only dependency left for do_populate_lic is "before do_build" On a devtool context, when doing devtool modify, sources are extracted inside build/workspace/sources/${BPN}/ and local files inside build/workspace/sources/${BPN}/oe-local-files When building the recipe after a devtool modify, do_unpack is called again to unpack (possibly modified) local files from build/workspace/sources/${BPN}/oe-local-files into ${WORKDIR}. Since the only left dependency for do_populate_lic is do_build, the do_populate_lic can be called BEFORE do_unpack. Most of the time this is not a problem, because license files are generally located inside ${S}, which corresponds to build/workspace/sources/${BPN} (and is already unpacked), but this can lead to an issue if recipe sets LIC_FILES_CHKSUM to look for files in ${WORKDIR} (example from init-ifupdown_1.0.bb): LIC_FILES_CHKSUM = "file://${WORKDIR}/copyright;md5=3dd6192d306f582dee7687da3d8748ab" So devtool modify init-ifupdown && bitbake init-ifupdown gives the following error: WARNING: init-ifupdown-1.0-r0 do_populate_lic: Could not copy license file <...>/build/tmp/work/qemux86_64-poky-linux/init-ifupdown/1.0/copyright to <...>/build/tmp/work/qemux86_64-poky-linux/init-ifupdown/1.0/license-destdir/qemux86_64/init-ifupdown/copyright: [Errno 2] No such file or directory: '<...>/build/tmp/work/qemux86_64-poky-linux/init-ifupdown/1.0/copyright' ERROR: init-ifupdown-1.0-r0 do_populate_lic: QA Issue: init-ifupdown: LIC_FILES_CHKSUM points to an invalid file: <...>/build/tmp/work/qemux86_64-poky-linux/init-ifupdown/1.0/copyright [license-checksum] ERROR: init-ifupdown-1.0-r0 do_populate_lic: Fatal QA errors were found, failing task. ERROR: Logfile of failure stored in: <...>/build/tmp/work/qemux86_64-poky-linux/init-ifupdown/1.0/temp/log.do_populate_lic.838584 ERROR: Task (<...>/poky/meta/recipes-core/init-ifupdown/init-ifupdown_1.0.bb:do_populate_lic) failed with exit code '1' Fix this by forcing the do_populate_lic task to run after do_unpack (From OE-Core rev: bc02b59ca6506d727450512ac2490b8861de59ca) Signed-off-by: Julien Stephan <jstephan@baylibre.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit ea6a0cccdd274534809df62a0a196bf83489a1e5) Signed-off-by: Steve Sakoman <steve@sakoman.com>
* reproducible: Fix race with externalsrc/devtool over lockfileRichard Purdie2024-02-221-0/+3
| | | | | | | | | | | | | | | We occasionally see races over the lockfile used by externalsrc/devtool when walking files for the source_date_epock calculation. Skip this file if present to avoid the issues and fix a real issue where SDE could be contaminated too. [YOCTO #14921] (From OE-Core rev: 6bb824019fd7335a10fdcebf7d301c101d60ad61) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 4bc0eb4bd90e6e6e46581a8ed367212bdd910a26) Signed-off-by: Steve Sakoman <steve@sakoman.com>
* allarch: Fix allarch corner caseRichard Purdie2024-02-221-2/+2
| | | | | | | | | | | | | | | Most of the allarch code is conditional and only set if the recipe remains marked as allarch. The qemu wrapper handling is not handled in the same way however and is unconditional. Move the code to some slightly uglier inline python to allow it to be conditional and match the way the rest of the code works. (From OE-Core rev: 2e206eb9b43c267e939ccb3cdfa62d9666ff5efa) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit dfd704f1741dccd9a85338c5d45dee4be079064d) Signed-off-by: Steve Sakoman <steve@sakoman.com>
* gstreamer: upgrade 1.22.8 -> 1.22.9Wang Mingyu2024-02-2211-11/+12
| | | | | | | | | | | | | Changelog: https://gstreamer.freedesktop.org/releases/1.22 (From OE-Core rev: cc21356c4147f47bc6879826bf2e801cb3acd695) Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 30b3835c367ff1de00d24cddf3bd920ea29f15c5) Signed-off-by: Steve Sakoman <steve@sakoman.com>
* cpio: upgrade 2.14 -> 2.15Wang Mingyu2024-02-222-50/+1
| | | | | | | | | | | | | | | | | | | Changelog: ========== * Fix operation of --no-absolute-filenames --make-directories * Restore access and modification times of symlinks in copy-in and copy-pass modes. 0001-configure-Include-needed-header-for-major-minor-macr.patch revmoed since it's included in 2.15 (From OE-Core rev: e912a11c5fa6709708428f2d0fe3a29a344cd43a) Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit c4fb7512a5b1c13234e3733cba1c4bf246c77861) Signed-off-by: Steve Sakoman <steve@sakoman.com>
* at-spi2-core: upgrade 2.50.0 -> 2.50.1Wang Mingyu2024-02-221-1/+1
| | | | | | | | | | | | | Changelog: atk-adaptor: Fix critical when no table cell array is returned. (From OE-Core rev: e742e3bdfbcb7cbbc7c4a3e26151b5ee3aa291e2) Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 9bed9f07aea6c425748c8908641ce8a99fd5162f) Signed-off-by: Steve Sakoman <steve@sakoman.com>
* xserver-xorg: 21.1.9 -> 21.1.11Kai Kang2024-02-221-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Update xserver-xorg from 21.1.9 to 21.1.11. Release Notes of 21.1.11 [1]: This release contains fixes for the issues reported in today's security advisory: https://lists.x.org/archives/xorg/2024-January/061525.html * CVE-2023-6816 * CVE-2024-0229 * CVE-2024-21885 * CVE-2024-21886 * CVE-2024-0408 * CVE-2024-0409 Additionally, it also contains a fix for XRandR to allow for multiple virtual monitors on a physical display. Release Notes of 21.1.10 [2]: This release contains fixes for CVE-2023-6377 and CVE-2023-6478 as reported in today's security advisory: https://lists.x.org/archives/xorg-announce/2023-December/003435.html [1]: https://lists.x.org/archives/xorg/2024-January/061526.html [2]: https://lists.x.org/archives/xorg/2023-December/061518.html (From OE-Core rev: e06a10763ee8ed99c9dd8122b49227e7085fd964) Signed-off-by: Kai Kang <kai.kang@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit fc9da07bd181ee6f7ae51a5b6db40af0b94cd046) Signed-off-by: Steve Sakoman <steve@sakoman.com>
* linux-firmware: upgrade 20231030 -> 20231211Alexander Sverdlin2024-02-221-3/+4
| | | | | | | | | | (From OE-Core rev: 0569b19936d20acc77a3f11d1033fc7ae5e8f331) Signed-off-by: Alexander Sverdlin <alexander.sverdlin@siemens.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 0caafdbbf4e7dc84b919afe14f7cb8c46a9e4ac2) Signed-off-by: Steve Sakoman <steve@sakoman.com>
* glibc: stable 2.38 branch updatesBenjamin Bara2024-02-221-1/+4
| | | | | | | | | Pull in fixes for CVE-2023-6246, CVE-2023-6779 and CVE-2023-6780. (From OE-Core rev: 07847f5945ff67340803149242a629741d619bf5) Signed-off-by: Benjamin Bara <benjamin.bara@skidata.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* gtk: Set CVE_PRODUCTRobert Joslyn2024-02-222-0/+4
| | | | | | | | | | | | The CPE vendor is "gnome" and the CPE product is "gtk" for both gtk+3 and gtk4 recipes. Set CVE_PRODUCT so we properly match the NVD database. (From OE-Core rev: e1bab7d2f5a885f2e4fd0332599edb8bfa55be45) Signed-off-by: Robert Joslyn <robert.joslyn@redrectangle.org> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 253f5f745d66acefcc739f1c9ad2dd46be630e47) Signed-off-by: Steve Sakoman <steve@sakoman.com>
* cve_check: cleanup loggingRoss Burton2024-02-221-7/+6
| | | | | | | | | | | | | | Primarily list the number of patches found, useful when debugging. Also clean up some bad escaping that caused warnings and use re.IGNORECASE instead of manually doing case-insenstive rang matches. (From OE-Core rev: 55d7393eda71fa37a93c1a0f5c8f7f18640cf079) Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 10acc75b7f3387b968bacd51aade6a8dc11a463f) Signed-off-by: Steve Sakoman <steve@sakoman.com>
* cve_check: handle CVE_STATUS being set to the empty stringRoss Burton2024-02-221-2/+2
| | | | | | | | | | | | | | | Handle CVE_STATUS[...] being set to an empty string just as if it was not set at all. This is needed for evaluated CVE_STATUS values to work, i.e. when setting not-applicable-config if a PACKAGECONFIG is disabled. (From OE-Core rev: a8ccf2abdc89cf4ae3dce1fed4163e3c1399e528) Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 2c9f20f746251505d9d09262600199ffa87731a2) Signed-off-by: Steve Sakoman <steve@sakoman.com>
* gcc: Update status of CVE-2023-4039Simone Weiß2024-02-221-0/+1
| | | | | | | | | | | | | | This is fixed via a patch added in gcc-13.2.inc already, but still reported e.g. for libgcc as it is not defining an own source but use the shared gcc-source. (From OE-Core rev: cc78945cf8372eea743ecddfca47cbc084641678) Signed-off-by: Simone Weiß <simone.p.weiss@posteo.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 301d45eacfd4ae6bddfb13207e2af9e8b4662bc8) Signed-off-by: Steve Sakoman <steve@sakoman.com>
* libssh2: backport fix for CVE-2023-48795Ross Burton2024-02-222-0/+467
| | | | | | | | | | | Backport the upstream fix for CVE-2023-48795. (From OE-Core rev: c2894768c270e2698de23884f59e823f185820a0) Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 314fa19c5e07fa632ff0434a6adbb97de1319a02) Signed-off-by: Steve Sakoman <steve@sakoman.com>
* zlib: ignore CVE-2023-6992Peter Marko2024-02-221-0/+1
| | | | | | | | | | | | | | | This CVE is for iCPE cloudflare:zlib. Alternative to ignoring would be to limit CVE_PRODUCT, but historic CVEs already have two - gnu:zlib and zlib:zlib. So limiting it could miss future CVEs. (From OE-Core rev: 7523c7b3609220b4dfc2bb0a83c552db60e1dc7e) Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 9f953a1cd832f03f0b3666168addf45fd4fc8d14) Signed-off-by: Steve Sakoman <steve@sakoman.com>
* tiff: fix CVE-2023-52355 and CVE-2023-52356Yogita Urade2024-02-224-0/+318
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | CVE-2023-52355: An out-of-memory flaw was found in libtiff that could be triggered by passing a crafted tiff file to the TIFFRasterScanlineSize64() API. This flaw allows a remote attacker to cause a denial of service via a crafted input with a size smaller than 379 KB. Issue fixed by providing a documentation update. CVE-2023-52356: A segment fault (SEGV) flaw was found in libtiff that could be triggered by passing a crafted tiff file to the TIFFReadRGBATileExt() API. This flaw allows a remote attacker to cause a heap-buffer overflow, leading to a denial of service. References: https://nvd.nist.gov/vuln/detail/CVE-2023-52355 https://security-tracker.debian.org/tracker/CVE-2023-52355 https://gitlab.com/libtiff/libtiff/-/issues/621 https://gitlab.com/libtiff/libtiff/-/merge_requests/553 https://nvd.nist.gov/vuln/detail/CVE-2023-52356 https://gitlab.com/libtiff/libtiff/-/issues/622 https://gitlab.com/libtiff/libtiff/-/merge_requests/546 (From OE-Core rev: 71348662169be9737b10fbd305646df9295a07f6) Signed-off-by: Yogita Urade <yogita.urade@windriver.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 831d7a2fffb3dec94571289292f0940bc7ecd70a) Signed-off-by: Steve Sakoman <steve@sakoman.com>
* tiff: fix CVE-2023-6228Yogita Urade2024-02-222-0/+32
| | | | | | | | | | | | | | | | | | | | CVE-2023-6228: An issue was found in the tiffcp utility distributed by the libtiff package where a crafted TIFF file on processing may cause a heap-based buffer overflow leads to an application crash. References: https://nvd.nist.gov/vuln/detail/CVE-2023-6228 https://gitlab.com/libtiff/libtiff/-/issues/606 (From OE-Core rev: fe0ee74a236cd7523f8982c5699098e6b75d2b20) Signed-off-by: Yogita Urade <yogita.urade@windriver.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 55735e0d75820d59e569a630679f9ac403c7fdbe) Signed-off-by: Steve Sakoman <steve@sakoman.com>
* build-appliance-image: Update to nanbield head revisionyocto-4.3.3nanbield-4.3.3Steve Sakoman2024-02-081-1/+1
| | | | | | (From OE-Core rev: 0584d01f623e1f9b0fef4dfa95dd66de6cbfb7b3) Signed-off-by: Steve Sakoman <steve@sakoman.com>
* poky.conf: bump version for 4.3.3 releaseSteve Sakoman2024-02-081-1/+1
| | | | | | (From meta-yocto rev: 65524b4d23cba2d57e7146942fa23ff74d9c7738) Signed-off-by: Steve Sakoman <steve@sakoman.com>
* release-notes-4.3: fix spacingMichael Opdenacker2024-02-081-1/+1
| | | | | | | | | This fixes an ugly formatting issue in the HTML output (From yocto-docs rev: dde4b815db82196af086847f68ee27d7902b4ffa) Signed-off-by: Michael Opdenacker <michael.opdenacker@bootlin.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* contributor-guide: fix lore URLBaruch Siach2024-02-081-1/+1
| | | | | | | | | Cc: Michael Opdenacker <michael.opdenacker@bootlin.com> (From yocto-docs rev: d044e01369666d3d48250661afc6b825b513d99e) Signed-off-by: Baruch Siach <baruch@tkos.co.il> Reviewed-by: Michael Opdenacker <michael.opdenacker@bootlin.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* dev-manual: gen-tapdevs need iptables installedSimone Weiß2024-02-081-0/+2
| | | | | | | | | | Add the hint to the test setup that runqemu-gen-tapdevs will need the iptables package installed. (From yocto-docs rev: 368bacc10a18100ef721c477b5d0abc5184eef91) Signed-off-by: Simone Weiß <simone.p.weiss@posteo.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* tcl: Fix prepending to run-ptest scriptKhem Raj2024-02-071-1/+1
| | | | | | | | | | | | This ensures that string is prepended properly and eclosed in '' Fixes the ptest runs on musl (From OE-Core rev: 5f49d4c3f528c1e9a2884cc9cc8026b5d43517f9) Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 7bb45591f9caa7ff6b065220927a26e8261e2866) Signed-off-by: Steve Sakoman <steve@sakoman.com>
* rootfs.py: check depmodwrapper execution resultYang Xu2024-02-071-1/+2
| | | | | | | | | | | | | | The execution result of depmodwrapper is not checked which makes depmod generation failed sliently and hard to detect. So check exection result and stop building if depmodwrapper failed. (From OE-Core rev: 2d8e913e2bfbb4ccbdf3eb747aab46fc38cf23e7) Signed-off-by: Yang Xu <yang.xu@mediatek.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> (cherry picked from commit 2f88e7d331390c6aaecc4522253e24791aec299e) Signed-off-by: Steve Sakoman <steve@sakoman.com>
* linux-firmware: Fix the linux-firmware-bcm4373 FILES variableRodrigo M. Duarte2024-02-071-0/+1
| | | | | | | | | | | | | | This commit includes the 'cyfmac4373-sdio.clm_blob' file in the list of files for the linux-firmware-bcm4373 package. Without this file, the linux-firmware package adds all firmware packages to the image. (From OE-Core rev: 205b3990fe23dc05689ef619a4607e8903ebbec6) Signed-off-by: Rodrigo M. Duarte <rodrigo.duarte@ossystems.com.br> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> (cherry picked from commit 7886d3b77200e4488393fa11c8198658fcf386cd) Signed-off-by: Steve Sakoman <steve@sakoman.com>
* icon-naming-utils: take tarball from debianAlexander Kanavin2024-02-071-2/+2
| | | | | | | | | | | | Upstream website has disappeared; the tarball can still be downloaded but this is probably not for long. (From OE-Core rev: 12cb5cce1cad02125fbf695e0d94010535cf228a) Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> (cherry picked from commit af59c518467d1174d1d63594fdd3279a2fdbd8f8) Signed-off-by: Steve Sakoman <steve@sakoman.com>
* qemu.bbclass: fix a python TypeErrorMing Liu2024-02-071-1/+1
| | | | | | | | | | | | | | | | QEMU_OPTIONS can be empty which will trigger a exception TypeError: | can only concatenate str (not "NoneType") to str. Fix it by setting a empty string. ALso removed two useless blanks. (From OE-Core rev: 3ccc642bb36373e81d80d41b4f213328c7bfb9cb) Signed-off-by: Ming Liu <liu.ming50@gmail.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit b619197bd52a4a99a9989e7ea6fb7032415b1e42) Signed-off-by: Steve Sakoman <steve@sakoman.com>
* elfutils: Update license informationWilliam Lyu2024-02-071-10/+9
| | | | | | | | | | | | | | | | | | | Update license information for overall package, package libraries, and package utilities in the recipe to match the license information as described on the upstream website [1]: "License. The libraries and backends are dual GPLv2+/LGPLv3+. The utilities are GPLv3+." [1] https://sourceware.org/elfutils (From OE-Core rev: d0e082b8303ad9591983c95d19a199c8d22942da) Signed-off-by: William Lyu <William.Lyu@windriver.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit c0728805f24cbd6a788871ae54af4ec8307e40d4) Signed-off-by: Steve Sakoman <steve@sakoman.com>
* grub: fs/fat: Don't error when mtime is 0Ming Liu2024-02-072-0/+71
| | | | | | | | | | | | | A issue was found when I run "runqemu genericx86-64 ovmf", grub failed to boot, it's a known issue has been fixed in grub upstream, backport the fix. (From OE-Core rev: 10f783721decaec06e87dd7a140ea16f12b97539) Signed-off-by: Ming Liu <liu.ming50@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 51eab4bb0cae46c9c32d28986eb97badf47594b7) Signed-off-by: Steve Sakoman <steve@sakoman.com>
* glibc-y2038-tests: do not run tests using 32 bit time APIsAlexander Kanavin2024-02-071-6/+6
| | | | | | | | | | | | I'm not sure why this was included and enabled to begin with: the tests predictably mass-fail if system time is set to after y2038. (From OE-Core rev: 3d04849c741baeddd0677a18a468603b7112139d) Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit c9c7ebd6e447bce19803253afd881854f686b5f6) Signed-off-by: Steve Sakoman <steve@sakoman.com>
* scripts/runqemu: fix regex escape sequencesTrevor Gamblin2024-02-071-4/+4
| | | | | | | | | | | | | | | | | | | | | When invoking runqemu with Python 3.12, the following warning is encountered: |SyntaxWarning: invalid escape sequence '\.' This is because the interpreter scans the string before it is processed by the regex module, and it interprets the backslash as part of an escape sequence, but not a standard one. This will be registered as an error rather than a warning in future Python versions. To avoid the it, simply add an extra backslash so that Python doesn't misinterpret the string, while the regex parser still sees an escaped '.' character. (From OE-Core rev: 145672043d6d75a9e5a03afb4c205e8008218a3b) Signed-off-by: Trevor Gamblin <tgamblin@baylibre.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 0e8a4142bb90a92d175df6b2537d24a372356f98) Signed-off-by: Steve Sakoman <steve@sakoman.com>
* curl: Disable test 1091 due to intermittent failuresRichard Purdie2024-02-071-0/+2
| | | | | | | | | | Disable another test that intermittently fails on the autobuilder. (From OE-Core rev: 7c183e7470565db3085b4f18044567fc51c842ab) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 8d169e13f7e2eb6511f0ac98da63b060c6c0d53a) Signed-off-by: Steve Sakoman <steve@sakoman.com>
* sqlite: drop obsolete CVE ignorePeter Marko2024-02-071-3/+0
| | | | | | | | | | CVE-2023-36191 is now rejected in NVD DB so it won't shoup up in cve-check report anymore. (From OE-Core rev: 362a77ea331124ae4c84553c0dceb06b05150804) Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* sqlite3: upgrade 3.43.1 -> 3.43.2Peter Marko2024-02-071-1/+1
| | | | | | | | | This fixes CVE-2024-0232 (From OE-Core rev: 748c18468cc7de0173ab4796805704b9376cd391) Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* aspell: upgrade 0.60.8 -> 0.60.8.1Wang Mingyu2024-02-073-106/+2
| | | | | | | | | | | | | | | | | | | | | CVE-2019-25051.patch removed since it's included in 0.60.8.1 Changelog: ============ -Fix memory leak in suggestion code introduced in 0.60.8. -Various documentation fixes. -Fix various warnings when compiling with -Wall. -Fix two buffer overflows found by Google's OSS-Fuzz. -Other minor updates. (From OE-Core rev: 1d7ab8b0bc129efadd9144b87fa5208b4a8fcd6c) Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit ec3c8642f71b470936b6dd29331afa467ab865c7) Signed-off-by: Steve Sakoman <steve@sakoman.com>
* gstreamer1.0: upgrade 1.22.7 -> 1.22.8Wang Mingyu2024-02-0711-11/+11
| | | | | | | | | | | | | | | From release notes: 1.22 bug-fix release (1.22.8) was released on 18 December 2023. This release only contains bugfixes and security fixes and it should be safe to update from 1.22.x. (From OE-Core rev: 7d43da3f6f83d9a58a3bc54e55fefd591274afca) Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 132d8b7e0188aae8849ae43cfffabce4389a55df) Signed-off-by: Steve Sakoman <steve@sakoman.com>
* glibc: Set status for CVE-2023-5156 & CVE-2023-0687Simone Weiß2024-02-071-0/+2
| | | | | | | | | | | | | | Set `CVE_STATUS`for those CVEs, they have already been fixed with the latest pull for stable branch fixes done in rev e444d2bed0ea140a574414fcd5a689867e8ba312. Hence the issues are fixed already. (From OE-Core rev: a7b92c9c675c2c111e0b41121c1232b2e79de4ea) Signed-off-by: Simone Weiß <simone.p.weiss@posteo.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 6e6fe23c95f1d0a8a0503cb71557cf3272bf9945) Signed-off-by: Steve Sakoman <steve@sakoman.com>
* bitbake: toaster/toastergui: Bug-fix verify given layer path only if ↵Alassane Yattara2024-02-071-5/+8
| | | | | | | | | | import/add local layer (Bitbake rev: 380a9ac97de5774378ded5e37d40b79b96761a0c) Signed-off-by: Alassane Yattara <alassane.yattara@savoirfairelinux.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* migration-guide: add release notes for 4.0.16Lee Chee Yang2024-01-312-0/+192
| | | | | | | | (From yocto-docs rev: 81b75961edeb120345c5176dd97e2c9dabe6e4ed) Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com> Reviewed-by: Michael Opdenacker <michael.opdenacker@bootlin.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* package.py: OEHasPackage: Add MLPREFIX to packagenameSaul Wold2024-01-311-2/+3
| | | | | | | | | | | | | | | | | FIXES [YOCTO #12342] When testing a Multilib image, the package manifest list contains the fully qualified package name which includes the Multilib Prefix. This patch adds the MLPREFIX to the package names that are passed into the @OEHasPackage() decorator to ensure the set isdisjoint() matches correctly. (From OE-Core rev: a27983e0b6bde730fe501c9931119bf18b2c376b) Signed-off-by: Saul Wold <sgw@bigsur.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> (cherry picked from commit ab87e4f92305b2a664cc473869e1615cf56e0936) Signed-off-by: Steve Sakoman <steve@sakoman.com>
* oeqa/selftest/prservice: Improve test robustnessRichard Purdie2024-01-311-8/+23
| | | | | | | | | | | | | | The tests were not cleaning up after themselves and making assumptions about memory resident bitbake being stopped by the scripts. Add cleanup logic to ensure the tests don't break other things and clean up created files. (From OE-Core rev: 81d7011a793de2548c573ebb84f60fb80a357bed) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 692dd762a0c817797c28381c6169205fbaeb2705) Signed-off-by: Steve Sakoman <steve@sakoman.com>
* lib/prservice: Improve lock handling robustnessRichard Purdie2024-01-311-3/+1
| | | | | | | | | | | | | | It is possible we could crash holding a lock whilst parsing in this code. Switch to use utils.fileslocked() in the with expression to avoid this. This may be causing some of our strange intermittent failures in PRServ tests. (From OE-Core rev: 4e3c9526c2389fd08d86d986014313e1d404f1fb) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 4e59db15e5df2cc3d0ae042454812a2d54cef77b) Signed-off-by: Steve Sakoman <steve@sakoman.com>
* classes-global/sstate: Fix variable typoJoshua Watt2024-01-311-1/+1
| | | | | | | | | | | | The vardepsexclude was subtly wrong in that it referenced STATE_MANMACH when the actual variable name is SSTATE_MANMACH. (From OE-Core rev: a681f90caec27d4076bdae3b5b19df2d7f5978cd) Signed-off-by: Joshua Watt <JPEWhacker@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit ec5054396f7fafea2a071d2695ae111fc585d6e6) Signed-off-by: Steve Sakoman <steve@sakoman.com>
* uninative-tarball.xz - reproducibility fixRobert Berger2024-01-311-1/+1
| | | | | | | | | | | | | | added --clamp-mtime --mtime to the tar command see: https://bugzilla.yoctoproject.org/show_bug.cgi?id=15148 (From OE-Core rev: 3dabf663a772b49e2f324ce5e875d6e633384559) Signed-off-by: Robert Berger <Robert.Berger@ReliableEmbeddedSystems.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 2ef7c63871ab4fb62a9cea45a23a78bf9d541e4a) Signed-off-by: Steve Sakoman <steve@sakoman.com>
generated by cgit v1.2.3-54-g00ecf (git 2.39.0) at 2025-08-04 03:18:14 +0000