summaryrefslogtreecommitdiffstats
path: root/meta
Commit message (Collapse)AuthorAgeFilesLines
...
* conf/documentation.conf: remove OE_IMPORTSRoss Burton2025-02-281-1/+0
| | | | | | | | | | | | oe-core no longer supports OE_IMPORTS[1], so remove the documentation. [1] oe-core 1f56155e ("base: Switch to use addpylib directive and BB_GLOBAL_PYMODULES") (From OE-Core rev: d1388e0958c8013179a948e08bf989c07f8654ca) Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* lib/package/utils: Improve multiprocess_launch argument passingRichard Purdie2025-02-282-10/+5
| | | | | | | | | | The current code for multiple argument passing is horrible. Tweak the multiprocess_launch function to only convert to a tuple if it isn't already one, which means we can then use function arguments in a standard way. (From OE-Core rev: 7c99f90079e722764ebdc30e8d0e781454b3a51a) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* classes/insane: do not leak host uid/gid into package_qa sstate signaturesAlexander Kanavin2025-02-281-0/+1
| | | | | | | | | | | | | This prevented package_qa sstate from being reusable unless host uid/gid values would match exactly (and they unfortunately do on the yocto autobuilder worker machines which all share a 'pokybuild' user). I noticed this when testing CDN sstate reuse, which otherwise works well. (From OE-Core rev: 6ea8b4b10b0549c858427a8411bf2a4cd5c0eb7b) Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* python3-sphinx: upgrade 8.1.3 -> 8.2.1Trevor Gamblin2025-02-271-2/+3
| | | | | | | | | | | | | | | | Changelog: https://www.sphinx-doc.org/en/master/changes/8.2.html License-Update: Update copyright year Add roman-numerals-py to RDEPENDS to avoid the following error: | sphinx.errors.ExtensionError: Could not import extension sphinx.builders.latex (exception: No module named 'roman_numerals') (From OE-Core rev: 67874bb6689f177dcf4b7509cfa0dc9d62b8f38b) Signed-off-by: Trevor Gamblin <tgamblin@baylibre.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* python3-roman-numerals-py: add recipeTrevor Gamblin2025-02-272-0/+12
| | | | | | | | | | | | roman-numerals-py is a module providing utilities for working with well-formed Roman numerals. python3-sphinx relies on this now, so add it as a recipe. (From OE-Core rev: 43b4e995769de54e47b0a98ce841b143a877f87d) Signed-off-by: Trevor Gamblin <tgamblin@baylibre.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* barebox: upgrade 2024.12.0 -> 2025.02.0Enrico Jörns2025-02-271-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Due to some musl build issues with 2025.01.0, we skip this version and move forward to 2025.02.0 directly. Changes in 2025.01.0 -------------------- * Added LLVM/Clang support for the sandbox architecture. * Enabled command execution from the sandbox command line. * Improved TFTP with dentry caching and default-disabled window size. * Introduced hardening features: register zeroing, stack variable initialization, and malloc buffer zeroing. * Enhanced AM625 support with network support, watchdog driver, and bootsource detection. Changelog: https://lore.barebox.org/barebox/Z4oUYdHXEAtnkySC@pengutronix.de/T/#u Changes in 2025.02.0 -------------------- * Several memory overflow fixes for different filesystems. * Added 'Security Considerations' guideline: https://www.barebox.org/doc/latest/user/security.html * Added FIT image build target for booting barebox 2nd stage from a U-Boot with the bootm command (for development purpose). * AM625 1st stage support including DDR, clock and power domain drivers. * Added support for the AM625-SK board * Added support for the Pine64 PineTab 2 (Rockchip) * CVE's fixed: - CVE-2025-26721 - CVE-2025-26722 - CVE-2025-26723 - CVE-2025-26724 - CVE-2025-26725 Changelog: https://lore.barebox.org/barebox/Z7iJIYuoxZAja_F7@pengutronix.de/T/#u (From OE-Core rev: 8a526783e31d9fbb65ffdf234607fa6229543f8d) Signed-off-by: Enrico Jörns <ejo@pengutronix.de> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* perf: enable zstd in default PACKAGECONFIGBruce Ashfield2025-02-271-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The following upstream commit: commit 44b44ffd5dcef03d273ad070d0b02a65a323f5f6 Author: Leo Yan <leo.yan@arm.com> Date: Sun Dec 15 22:12:22 2024 +0000 perf build: Minor improvement for linking libzstd The zstd library will be automatically linked by detecting the feature libzstd. It is no need to explicitly link it for static builds, so remove the redundant linkage. It is contradictory to detect the feature libelf-zstd while the build configuration NO_LIBZSTD is set. Report an error for reminding users not to set NO_LIBZSTD. Signed-off-by: Leo Yan <leo.yan@arm.com> Tested-by: Namhyung Kim <namhyung@kernel.org> Acked-by: Andrii Nakryiko <andrii@kernel.org> Cc: Adrian Hunter <adrian.hunter@intel.com> Cc: Alexei Starovoitov <ast@kernel.org> Cc: Daniel Borkmann <daniel@iogearbox.net> Cc: Eduard Zingerman <eddyz87@gmail.com> Cc: Guilherme Amadio <amadio@gentoo.org> Cc: Hao Luo <haoluo@google.com> Cc: Ian Rogers <irogers@google.com> Cc: James Clark <james.clark@linaro.org> Cc: Jiri Olsa <jolsa@kernel.org> Cc: John Fastabend <john.fastabend@gmail.com> Cc: KP Singh <kpsingh@kernel.org> Cc: Kan Liang <kan.liang@linux.intel.com> Cc: Martin KaFai Lau <martin.lau@linux.dev> Cc: Nick Terrell <terrelln@fb.com> Cc: Quentin Monnet <qmo@kernel.org> Cc: Song Liu <song@kernel.org> Cc: Stanislav Fomichev <sdf@google.com> Cc: Yonghong Song <yonghong.song@linux.dev> Link: https://lore.kernel.org/r/20241215221223.293205-3-leo.yan@arm.com Signed-off-by: Arnaldo Carvalho de Melo <acme@redhat.com> Enforces that zstd must be enabled if libelfstd is detected. Our build of perf and the other default features lead to libelf-zstd being detected, and hence the build aborts when the features are checked. We can't condionally enable this for 6.14+ kernels due to the way that the perf recipe works. The feature is minor and probably should have already been in the defaults. To keep things simple, we just enable it and will watch for any fallout. (From OE-Core rev: c1b44f4e9f7d13673a93aa81be6a3e11aa9f742b) Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* linux-yocto-dev: bump to v6.14Bruce Ashfield2025-02-271-2/+2
| | | | | | | | | | Updating the development kernel to track the v6.14 series. (From OE-Core rev: e1ead507fcfb3963ea705d8eef18d96432c79c2d) Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* oe-selftest: fitimage: add testcases to test ATF and TEEJamin Lin2025-02-271-0/+281
| | | | | | | | | | | | | | | | | | | Add "test_uboot_atf_tee_fit_image" test caste to check u-boot FIT image and Image Tree Source(ITS) are built and the ITS has the correct fields. Add "test_sign_standalone_uboot_atf_tee_fit_image" test case to check if u-boot FIT image and Image Tree Source (ITS) are created and signed correctly for the scenario where only the u-boot proper fitImage is being created and signed. Currently, ATF and TEE(optee-os) recipes are placed in meta-arm layer. OpenEmbedded-Core is a basic and core meta layer. To avoid OpenEmbedded-core depends meta-arm, both test cases are used dummy images for testing. (From OE-Core rev: 92e51452f8831f74e0907b960135eef8cecd012a) Signed-off-by: Jamin Lin <jamin_lin@aspeedtech.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* uboot-sign: support to add users specific image tree sourceJamin Lin2025-02-271-0/+16
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Currently, uboot-sign.bbclass only supports to create Image Tree Source(ITS) for "u-boot" and "flat_dt". However, users may want to add their private images into u-boot FIT image for specific application and purpose. To make this bbclass more flexible and support to add users specific snippet ITS, creates a new "UBOOT_FIT_USER_SETTINGS" variable. Users can add their specific snippet ITS into this variable. Example: ``` UBOOT_FIT_MY_ITS = '\ myfw {\n\ description = \"MY Firmware\";\n\ data = /incbin/(\"myfw.bin\");\n\ type = \"mytype\";\n\ arch = \"myarch\";\n\ os = \"myos\";\n\ load = <0xb2000000>;\n\ entry = <0xb2000000>;\n\ compression = \"none\";\n\ };\n\ ' UBOOT_FIT_USER_SETTINGS = "${UBOOT_FIT_MY_ITS}" ``` The generated ITS ``` myfw { description = "My Firmware"; data = /incbin/("myfw.bin"); type = "mytype"; arch = "myarch"; os = "myos"; load = <0xb2000000>; entry = <0xb2000000>; compression = "none"; }; ``` Add a variable "UBOOT_FIT_CONF_USER_LOADABLES" to load users specific images and it is an empty by default. (From OE-Core rev: c12e013453689697a8680f1c7de3e625a0ff28ec) Signed-off-by: Jamin Lin <jamin_lin@aspeedtech.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* uboot-sign: support to create TEE and ATF image tree sourceJamin Lin2025-02-271-1/+79
| | | | | | | | | | | | | | | | | | | | | | | Currently, uboot-sign.bbclass only supports to create Image Tree Source(ITS) for "u-boot" and "flat_dt". However, users may want to support multiple images such as ARM Trusted Firmware(ATF), Trusted Execution Environment(TEE) and users private images for specific application and purpose. To make this bbclass more flexible and support ATF and TEE, creates new functions which are "uboot_fitimage_atf" and "uboot_fitimage_tee" for ATF and TEE ITS file creation, respectively. Add a variable "UBOOT_FIT_ARM_TRUSTED_FIRMWARE" to enable ATF ITS generation and it is disable by default. Add a variable "UBOOT_FIT_TEE" to enable TEE ITS generation and it is disable by default. (From OE-Core rev: c14641a964b5b802e995e574a599c5b4937fb488) Signed-off-by: Jamin Lin <jamin_lin@aspeedtech.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* barebox: drop patch file left over during last upgradeEnrico Jörns2025-02-271-35/+0
| | | | | | | | | | | The patch was removed from SRC_URI but not deleted from the directory tree. Fixes: 3291a8fa ("barebox: upgrade 2024.10.0 -> 2024.12.0") (From OE-Core rev: 0a3c4e3550cb52b4f42858ff6cc3356c96f5a6bf) Signed-off-by: Enrico Jörns <ejo@pengutronix.de> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* rpm-sequoia-crypto-policy: clean up dependenciesZoltán Böszörményi2025-02-271-2/+1
| | | | | | | | | | | | | | | Rely on host-provided coreutils and make. openssl-native is not needed either, as the build scripts use crypto functionality via python. Python 3.11+ is needed by the python build scripts, which is ensured by "inherit python3native". (From OE-Core rev: 34fc028a8a3a6628b11c6ee67676532012f55f47) Signed-off-by: Zoltán Böszörményi <zboszor@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* python3-setuptools-scm: upgrade 8.1.0 -> 8.2.0Trevor Gamblin2025-02-272-38/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | Patch '0001-respect-GIT_CEILING_DIRECTORIES.patch' is no longer required as it's upstream in 979d79301da6. Changelog (https://github.com/pypa/setuptools-scm/blob/main/CHANGELOG.md): Added - fix #960: add a --force-write-version-files flag for the cli Changed - fix #950: ensure to pass encodings to io usage - fix #957: add subprocess timeout control env var - add sp-repo-review pre-commit hook Fixed - fix #1018: allow non-normalized versions for semver - fix #1103: respect GIT_CEILING_DIRECTORIES when trying to find git toplevels - fix #1081: add name normalized pipx entrypoint - fix #1080: clean pdm from PYTHONPATH to protect mercurial (From OE-Core rev: 6bab759c00b44fc2793e095f991975b7eebf360f) Signed-off-by: Trevor Gamblin <tgamblin@baylibre.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* python3-flit-core: upgrade 3.10.1 -> 3.11.0Trevor Gamblin2025-02-271-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This update is required for latest versions of packages such as sphinx to build with flit, otherwise you encounter errors like: | File "/home/tgamblin/workspace/yocto/poky/build/tmp/work/core2-64-poky-linux/python3-sphinx/8.2.1/recipe-sysroot-native/usr/lib/python3.13/site-packages/flit_core/config.py", line 444, in _check_type | raise ConfigError( | "{} field should be {}, not {}".format(field_name, cls, type(d[field_name])) | ) | flit_core.config.ConfigError: license field should be <class 'dict'>, not <class 'str'> | | ERROR Backend subprocess exited when trying to invoke get_requires_for_build_wheel Changelog (https://github.com/pypa/flit/blob/main/doc/history.rst#version-311): - Support for SPDX license expressions and multiple license files, as detailed in PEP 639: license = "BSD-3-Clause" license-files = ["LICENSE"] For now, only a single license identifier is allowed. More complex expressions describing multiple licenses & expressions may be supported in a future version. - The metadata format in produced packages is now version 2.4, to support the expanded license information. (From OE-Core rev: 268f1c96c70334d6a882d00e895e1f0c72cfa36f) Signed-off-by: Trevor Gamblin <tgamblin@baylibre.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* cml1.bbclass: do not escape the exit valueSven Kalmbach2025-02-271-1/+1
| | | | | | | | | | | Remove incorrectly escaped exit value, which causes error handling logic not to run. [YOCTO #15731] (From OE-Core rev: 5c44a9154f0cd4252d4840d836e6936393b5d3a3) Signed-off-by: Sven Kalmbach <Sven.Kalmbach@loewensteinmedical.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* systemd: move sysusers.d systemd-remote to PN-journal-remoteBastian Krause2025-02-271-0/+1
| | | | | | | | | | | | | | | | | | | | | systemd's sysusers.d/systemd-remote.conf contains the user "systemd-journal-remote" [1]. This file is currently not part of any specific package. To make this match the corresponding USERADD_PARAM:${PN}-journal-remote for the same user, move the file to the correct package. This prevents warnings in case PACKAGECONFIG contains "microhttpd" but systemd-journal-remote is not installed, such as: WARNING: some-image-1.0-r0 do_rootfs: User systemd-journal-remote has never been defined [1] https://github.com/systemd/systemd/blob/v257.3/sysusers.d/systemd-remote.conf (From OE-Core rev: 2d50d3595502e65e3b0997800a6dc60ca3e10100) Signed-off-by: Bastian Krause <bst@pengutronix.de> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* vim: Upgrade 9.1.1043 -> 9.1.1115Divya Chellam2025-02-271-2/+2
| | | | | | | | | | | | | This includes CVE-fix for CVE-2025-26603 and CVE-2025-1215 Changes between 9.1.1043 -> 9.1.1115 ==================================== https://github.com/vim/vim/compare/v9.1.1043...v9.1.1115 (From OE-Core rev: aaa09a629cd993377000084d4558b4542578c417) Signed-off-by: Divya Chellam <divya.chellam@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* oeqa/selftest: add a newline in local.conf (newbuilddir)Christos Gavros2025-02-271-0/+7
| | | | | | | | | | | | | | | If the build-st/conf/local.conf does not end with a newline when is generated then add one [YOCTO #15734] CC: Yoann Congal <yoann.congal@smile.fr> CC: Randy MacLeod <randy.macleod@windriver.com> CC: Alexander Kanavin <alex.kanavin@gmail.com> (From OE-Core rev: d2fcd9e880126bc33be2ef14e678cc1aa72683c3) Signed-off-by: Christos Gavros <gavrosc@yahoo.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* wayland-protocols: update 1.40 -> 1.41Markus Volk2025-02-271-1/+1
| | | | | | | | | wayland-protocols 1.41 is the minimum requirement for the upcoming gtk4 release (From OE-Core rev: acbdd2d76186a685b4283b41e3ce73b4d4d29d43) Signed-off-by: Markus Volk <f_l_k@t-online.de> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* nfs-utils: fix rpc.statd path in initscriptYi Zhao2025-02-271-1/+1
| | | | | | | | | The location of rpc.statd is /usr/sbin instead of /sbin. (From OE-Core rev: 19494e414429b74d2a15b32f21b1b3067d3a41b2) Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* openssl: honour calling environment's values in wrapper scriptRasmus Villemoes2025-02-271-5/+5
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | When using openssl with some pkcs#11 plugin module, one (usually) needs to set the OPENSSL_CONF environment variable appropriately, and e.g. invoke openssl as openssl dgst -engine pkcs11 -keyform engine ... However, when putting that logic in a bitbake recipe and depending on openssl-native (and the recipe providing the pkcs#11 engine and the associated configuration file), the value of OPENSSL_CONF is unconditionally overridden by the wrapper script. If openssl was invoked directly in the task function, I could probably call "openssl.real" instead, but then I miss the proper settings of the other four variables, which I'd then also have to repeat in my recipe. Moreover, sometimes openssl is only called via some helper script (for example rpi-eeprom-digest for signing bootloader images for RPi), and it's not reasonable to patch every such script to call openssl.real. So rewrite the wrapper such that if a variable is already set in the environment before openssl is invoked, preserve its value. (From OE-Core rev: 5582ec9d3a21c546b799d2f6d4928f5e1d19eb0a) Signed-off-by: Rasmus Villemoes <ravi@prevas.dk> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* openssl: fold result of sed invocation into environment fileRasmus Villemoes2025-02-272-4/+3
| | | | | | | | | | | | A long time ago, the environment.d-openssl.sh file was shared between openssl 1.0 and openssl 1.1 recipes, and sed was used to make the path right for the 1.1 version. Nowadays, with only a single recipe, this is a bit roundabout, so just use the proper path in the file directly. (From OE-Core rev: 291fe7db623b0974e7831e908e91b1f1259e0506) Signed-off-by: Rasmus Villemoes <ravi@prevas.dk> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* freetype: pass missing include paths to autoreconfRoss Burton2025-02-271-1/+1
| | | | | | | | | | | | | Now that autotools isn't searching for every m4 file the configure fails. This is because freetype only uses autoconf and has a manual autogen.sh script that passes -I. itself. As we don't call that script, pass -I . to autoreconf ourselves. (From OE-Core rev: 1a26f800d5fdadc990b73d17e1c373f3e8fba879) Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* apr-utils: remove obsolete patchRoss Burton2025-02-272-32/+0
| | | | | | | | | This patch to change how autotools pulls in macros is no longer needed. (From OE-Core rev: 9a550b4154d3e501ed6555694dc95b31df527637) Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* recipes/*: remove obsolete use of acpathsRoss Burton2025-02-2713-42/+0
| | | | | | | | | | | The bulk of these recipes used acpaths to work around argument list limits as we passed the full path to every directory. As this behaviour no longer happens we can remove these workarounds. (From OE-Core rev: c4336f1b0da981b3ea396b17779b67898bceccef) Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* autotools: don't try and find in-tree macrosRoss Burton2025-02-271-12/+2
| | | | | | | | | | | | | | | | | | | | autotools has improved a lot since this class was written, and there's now no need to search the source tree for m4 files and add them to the include path. If packages have macros in subdirectories the idiom is to tell aclocal via an assignment in Makefile.am: ACLOCAL_AMFLAGS = -I gl/m4 -I m4 If, for example, a package isn't autoreconfable out of the box (because it has a non-trivial autogen.sh or similar, say) then the required -I statements can be added to EXTRA_AUTORECONF. (From OE-Core rev: e718d1be2c4fb54cf363c23f929358e1be68c724) Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* socat: upgrade 1.8.0.2 -> 1.8.0.3Hongxu Jia2025-02-271-2/+2
| | | | | | | | | | | | | | | | | | | | According to [1]: 2025-02-21: Socat version 1.8.0.3 has been released. It fixes a lot of minor issues and provides some minor improvements, see file CHANGES [2]. The experimental POSIXMQ feature has been improved, got a few new options, and is now considered stable. License in README has no change [1] http://www.dest-unreach.org/socat/ [2] http://www.dest-unreach.org/socat/CHANGES: (From OE-Core rev: 650e9b72ded376ef5974cb7a71ade00a93e4612f) Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gpgme: upgrade 1.24.1 -> 1.24.2Hongxu Jia2025-02-2710-15/+15
| | | | | | | | | | | | | | | | | | | | | | | | | Noteworthy changes in version 1.24.2 (2025-02-10) ------------------------------------------------- Take care: This version is from a legacy branch of gpgme created just before we split out the C++, Qt, and Python bindings to separate repositories and bumped the version number up to 2.0. * Fix regression for RSA in gpgme_pubkey_algo_string. [T7508] * Prevent failing tests after 2027-05-15. [T7471] [c=C44/A33/R2 cpp=C27/A21/R2 qt=C21/A6/R2] Release-info: https://dev.gnupg.org/T7524 See NEWS in https://www.gnupg.org/ftp/gcrypt/gpgme/gpgme-1.24.2.tar.bz2 for details (From OE-Core rev: 90b637936b601c7af4c708d92562f098620a0d6a) Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* man-pages: upgrade 6.9.1 -> 6.11Hongxu Jia2025-02-271-2/+7
| | | | | | | | | | | | | | | | | | | 1. Due to upstream commit [GNUmakefile: Require the user to specify '-R' if their make(1) is too old][1], add option -R to make 2. Due to upstream commit [src/bin/pdfman, scripts/bash_aliases, pdfman.1: Make pdfman a standalone program, and add a manual page][2], inherit bbclass lib_package to use package ${PN}-bin to collect newly added scripts and runtime depends on bash [1] https://git.kernel.org/pub/scm/docs/man-pages/man-pages.git/commit/?id=50c914d25b40ac6a4d63ce10ed146653098014a2 [2] https://git.kernel.org/pub/scm/docs/man-pages/man-pages.git/commit/?id=ed9bc1e3277befd6e165270f14e458a5ec4074f1 (From OE-Core rev: e1620f45f4c254f95881ccb9860b582ae7fbd1ed) Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* ccache.conf: Add include_file_ctime to sloppinessFabio Berton2025-02-271-0/+6
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | When multiple recipes are built in parallel, Ccache sometimes refuses to lookup some objects in cache, leading to undesired cache misses. The root cause of this is an interaction between the way how bitbake constructs a recipe sysroot and Ccache's `include_file_ctime` check. Whenever bitbake creates a recipe's sysroot it hardlinks the files provided by a recipes dependencies. Adding a hardlink to a file changes it's ctime which in turn leads Ccache to believe that the file was modified thus aborting the cache lookup. To avoid this situation, add `include_file_ctime` to the list of checks that should be ignored using the Ccache sloppiness configuration option [1]. Example of a log entry that Ccache ignores a file: / |recipe-sysroot/usr/include/bits/pthread_stack_min.h had status change |near or after invocation (ctime 1739822508.107677255, invocation time |1739822507.970071107) \ 1 - https://ccache.dev/manual/4.10.2.html#config_sloppiness (From OE-Core rev: 4899698297c7783e02aba5388e0469cc83bd2f70) Signed-off-by: Fabio Berton <fabio.berton@criticaltechworks.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* yocto-uninative: Update to 4.7 for glibc 2.41Michael Halstead2025-02-251-5/+5
| | | | | | | (From OE-Core rev: 84fa232cc1b50f0d15c090377659d6aa7a065b1d) Signed-off-by: Michael Halstead <mhalstead@linuxfoundation.org> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* skeletoninit: remove broken linkChristos Gavros2025-02-251-2/+1
| | | | | | | | | | | | | The link in the comment is broken. It's removed together with some text. CC: Yoann Congal <yoann.congal@smile.fr> CC: Randy MacLeod <randy.macleod@windriver.com> (From OE-Core rev: 4d5ce199d44bbeee7a7cff1dc7deac3d45a15d35) Signed-off-by: Christos Gavros <gavrosc@yahoo.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* u-boot: kernel-fitimage: Restore FIT_SIGN_INDIVIDUAL="1" behaviorMarek Vasut2025-02-251-9/+51
| | | | | | | | | | | | | | | | | | | | | | | | | | OE FIT_SIGN_INDIVIDUAL is implemented in an unusual manner, where the resulting signed fitImage contains both signed images and signed configurations, possibly using different keys. This kind of signing of images is redundant, but so is the behavior of FIT_SIGN_INDIVIDUAL="1" and that is here to stay. Adjust the process of public key insertion into u-boot.dtb such that if FIT_SIGN_INDIVIDUAL==1, the image signing key is inserted into u-boot.dtb first, and in any case the configuration signing key is inserted into u-boot.dtb last. The verification of the keys inserted into u-boot.dtb against unused.itb is performed only for FIT_SIGN_INDIVIDUAL!=1 due to mkimage limitation, which does not allow mkimage -f auto-conf to update the generated unused.itb, and instead rewrites it. Fixes: 259bfa86f384 ("u-boot: kernel-fitimage: Fix dependency loop if UBOOT_SIGN_ENABLE and UBOOT_ENV enabled") (From OE-Core rev: 0106e5efab99c8016836a2ab71e2327ce58a9a9d) Signed-off-by: Marek Vasut <marex@denx.de> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* oeqa/selftest/devtool: use 'config.toml' instead of plain 'config'Enrico Scholz2025-02-251-1/+1
| | | | | | | | | | | After changing naming of cargo config in cargo_common.bbclass, adapt devtool to use the new name. (From OE-Core rev: 715d27f0b4301c97f05ed3cbbaace0ba01c28f39) Signed-off-by: Enrico Scholz <enrico.scholz@sigma-chemnitz.de> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* cargo_common: use 'config.toml' instead of plain 'config'Enrico Scholz2025-02-251-10/+10
| | | | | | | | | | | | | | | | | | | cargo configuration has been renamed from plain 'config' to 'config.toml' in rust-1.38. Using the old name is still supported but creates warnings like | $ cargo | warning: `/sdk.../home/cargo/config` is deprecated in favor of `config.toml` | note: if you need to support cargo 1.38 or earlier, you can symlink `config` to `config.toml` Use the new name. (From OE-Core rev: 94b7d1a6cdb44949f8a96213ff2e45fafd759442) Signed-off-by: Enrico Scholz <enrico.scholz@sigma-chemnitz.de> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* kea: avoid assertion on empty DHCPDISCOVER packetYi Zhao2025-02-252-0/+149
| | | | | | | | | | | | | | | | | | | | | | When kea is built with "-D_GLIBCXX_ASSERTIONS " set in SECURITY_CFLAGS, an assertion occurs if the kea server receives an empty DHCPDISCOVER packet: kea-dhcp4[596]: /usr/include/c++/13.3.0/bits/stl_vector.h:1128: std::vector<Tp, _Alloc>::reference std::vector<_Tp, _Alloc>::operator[](size_type) [with _Tp = unsigned char; _Alloc = std::allocator<unsigned char>; reference = unsigned char&; size_type = long unsigned int]: Assertion '_n < this->size()' failed. Backport patches to fix this issue[1]. [1] https://gitlab.isc.org/isc-projects/kea/-/commit/0b98eae16d9b6ecdf57005624712b9b26fa05bc0 https://gitlab.isc.org/isc-projects/kea/-/commit/16306026e37b32a2ce4b16fb5b78561ae153d570 (From OE-Core rev: 17c67a47ec9c6e90a339f32c35f80ca4c908a254) Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* kea: make kea environment available to lfc processYi Zhao2025-02-252-0/+97
| | | | | | | | | | | | | | | | | | | | | If the location of the log lock file is changed using the environment variable KEA_LOCKFILE_DIR, the kea-dhcp process will work properly, but the lfc (lease file cleanup) process spawned by it will not inherit this value and use the default path[1], which will cause the kea server to print the following message when running: kea-dhcp4[6767]: Unable to use interprocess sync lockfile (No such file or directory): /var/run/kea/logger_lockfile Backport a patch to fix this issue[2]. [1] https://gitlab.isc.org/isc-projects/kea/-/issues/3450 [2] https://gitlab.isc.org/isc-projects/kea/-/commit/f477e8ebcc8b8e1f1adaad4d55031084c0ff6f40 (From OE-Core rev: 34f1392aef4d5fa402600b21f6d7a47cd735cfd4) Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* pango: upgrade 1.55.5 -> 1.56.1Wang Mingyu2025-02-251-1/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | Add python3-docutils-native to provide rst2html5 Changelog: ========== - Avoid criticals when there are no fonts - fontconfig: Handle lack of FC_FONT_WRAPPER in font cache - fontconfig: Prefer application fonts even if they are older - Support setting font features in font descriptions - serialization: Document the tab array format - serialization: Accept attributes without range - win32: Improve the pango_font_map_reload_implementation - win32: Take variations into account for caching - layout: Fix measuring ellipsis runs with shapes - build: Require C11 - build: Require GLib 2.80 - build: Require cairo 1.18 [RP: Use += instead of :append for DEPENDS] (From OE-Core rev: 7d6a0f362244d243f8c806802a7a0fdc3d92c880) Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* kernel.bbclass: Handle possible multiconfig.Sebastian Zenker2025-02-251-1/+1
| | | | | | | | | | | When specifying the dependencies of do_bundle_initramfs the current multiconfig might not be the default. This fixes the dependencies between the multiconfigs if the current differs to default. (From OE-Core rev: 2e40466af83a3c66aef878e3f08a891405199ebe) Signed-off-by: Mueller, Daniel <daniel.mueller@karlstorz.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* Revert "python3-ctypes: depend on ldconfig only if distro-feature set"Changqing Li2025-02-251-3/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | In oe-core, function ldconfig_postinst_fragment use exist of /sbin/ldconfig to decide if ldconfig is runned to generate the cache, and function _run_ldconfig will run ldconfig to generate cache during generate rootfs. ldconfig.service is actually not used since we have generate ld.so.cache during do_rootfs, refer[1][2][3]. ldconfig dependency is necessary when ldconfig not in DISTRO_FEATURES. The reverted commit causes regression when ldconfig not in DISTRO_FEATURES, before, without ldconfig in DISTRO_FEATURES, ctypes.util.find_library(name) can find the lib if it is installed, now, since ldconfig is not installed, ctypes.util.find_library(name) cannot find the lib even if it is installed. Here is one usecase(gtk+3 lib is installed, ctypes.util.find_library used to find the lib): import wx.lib.wxcairo as wxcairo File "/usr/lib/python3.13/site-packages/wx/lib/wxcairo/{}init{}.py", line 59, in <module> from .wx_cairocffi import _ContextFromDC, _FontFaceFromFont File "/usr/lib/python3.13/site-packages/wx/lib/wxcairo/wx_cairocffi.py", line 189, in <module> gdkLib = _findGDKLib() File "/usr/lib/python3.13/site-packages/wx/lib/wxcairo/wx_cairocffi.py", line 181, in _findGDKLib return _findHelper([libname], 'gdk', "Unable to find the GDK shared library") File "/usr/lib/python3.13/site-packages/wx/lib/wxcairo/wx_cairocffi.py", line 170, in _findHelper raise RuntimeError(msg) RuntimeError: Unable to find the GDK shared library [1] https://git.openembedded.org/openembedded-core/tree/meta/classes-global/package.bbclass#n394 [2] https://git.openembedded.org/openembedded-core/tree/meta/lib/oe/rootfs.py#n316 [3] https://github.com/systemd/systemd-stable/blob/v255-stable/units/ldconfig.service (From OE-Core rev: f98299ec2fa65804ceeff634fa50c8d154e1c153) Signed-off-by: Changqing Li <changqing.li@windriver.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* debugedit: fix build failure when enabling DEBUG_BUILDChen Qi2025-02-252-3/+84
| | | | | | | | | | | | | | | | | | | | When DEBUG_BUILD is enabled, we use "-Og" gcc options. In such case, the xxhash functions are considered not inline, yet debugedit.c defined XXH_INLINE_ALL to force inline, thus causing build failure. Backport a patch which add "--disable-inlined-xxhash" option and make debugedit use that option when DEBUG_BUILD is enabled. The 0003-Makefile.am-do-not-update-manual.patch is moved from musl specific patch to SRC_URI, because we now have a patch to modify debugedit.c and this will cause manual to be generated again. This is unnecessary and will report help2man missing. (From OE-Core rev: 7aaf60854c6bc9c075399de7450fe63b21b2883b) Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* documentation: remove AUTHOR[doc]Ross Burton2025-02-211-1/+0
| | | | | | | | | | | | | The variable was mostly removed in oe-core 9d5edd12 but the documentation remained. [ YOCTO #15758 ] (From OE-Core rev: 6aab808bb9adee8e2409c23f49c6bc021007f1d8) Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* systemd: Fix man page indices generationAlexis Cellier2025-02-211-1/+1
| | | | | | | | | | | The dependency on python3-lxml-native was missing, so the generation of man page indices was skipped (systemd.index and systemd.directives). (From OE-Core rev: be19e4cd6466cbf967e5301c1a3cdd853d22d250) Signed-off-by: Alexis Cellier <alexis.cellier@smile.fr> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* linux-firmware: make linux-firmware-qcom-qcm6490-wifi provide -qcs6490-Dmitry Baryshkov2025-02-211-0/+1
| | | | | | | | | | | | | The package linux-firmware-qcom-qcm6490-wifi also provides a symlink qcom/qcs6490/wpss.mbn. Follow the pattern established by linux-firmware-qcom-qcm6490-audio and -compute packages and make this package RPROVIDE the qcs6490 name. (From OE-Core rev: c18be7fb4aa2969dc1e15067f99ff7d317eb906f) Signed-off-by: Dmitry Baryshkov <dmitry.baryshkov@linaro.org> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* systemd: depend on util-linux-mkswapMikko Rapeli2025-02-211-1/+1
| | | | | | | | | | | | | | | | | | | busybox mkswap doesn't support all needed options. Fixes: systemd[1]: Activating swap /dev/disk/by-uuid/38d0b388-9989-4744-8a0a-3e6be1135f5a... swapon[210]: swapon: /dev/sda3: swap format pagesize does not match. swapon[210]: swapon: /dev/sda3: reinitializing the swap. swapon[212]: mkswap: invalid option -- 'U' swapon[212]: BusyBox v1.37.0 () multi-call binary. swapon[212]: Usage: mkswap [-L LBL] BLOCKDEV [KBYTES] systemd[1]: dev-disk-by\x2duuid-38d0b388\x2d9989\x2d4744\x2d8a0a\x2d3e6be1135f5a.swap: Swap process exited, code=exited, (From OE-Core rev: 50d139f5748432e68b8f66cd4ecfd6e2ad677ed3) Signed-off-by: Mikko Rapeli <mikko.rapeli@linaro.org> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* psplash: fix typo in psplash-systemd.serviceMikko Rapeli2025-02-211-1/+1
| | | | | | | | | | | | | systemd ignores the typo and continues but startup fails later due to missing fifo file. Fixes: systemd[1]: /usr/lib/systemd/system/psplash-systemd.service:8: Unknown key 'ConditionFileExists' in section [Unit], ignoring. (From OE-Core rev: c7215ad8599a4b792d7edefb46861c94a7ba79b3) Signed-off-by: Mikko Rapeli <mikko.rapeli@linaro.org> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libsass: fix fetched commit hashPeter Marko2025-02-211-1/+1
| | | | | | | | | | | | | | | Old commit hash is for v3.6.5, not v3.6.6. https://github.com/sass/libsass/tags Old version contains several vulnerabilities. Note that exact recipe copy of recipe introduced in oe-core was never present in oe. (From OE-Core rev: a4bee854f7009564cd2dbc6d30fd5a94a8ec7427) Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* sassc: set status of CVE-2022-43357Peter Marko2025-02-211-0/+2
| | | | | | | | | | | When this recipe was copied from oe, last commit was missing. https://git.openembedded.org/meta-openembedded/commit/?id=576b84263bac4dda26d84d116a9e7628a126f866 (From OE-Core rev: d7d45b5025550c1031ba9e44bc653f9d638c275e) Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* python3: Skip test_write_read_appendKhem Raj2025-02-201-4/+10
| | | | | | | | | | | We use editline by default and test_write_read_append also fails especially on musl since this needs to be fixed upstream, extend the skip for test_write_read_append along with other history manipulation tests being skipped. (From OE-Core rev: fbafd942e6c78d1298fa64129149ff311b61fcf8) Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>