Updating to the latest korg -stable release that comprises
the following commits:
59342376e8f0 Linux 5.4.231
268d595d4da3 Revert "xprtrdma: Fix regbuf data not freed in rpcrdma_req_create()"
6c24a20223db usb: host: xhci-plat: add wakeup entry at sysfs
1c1291a84e94 Bluetooth: fix null ptr deref on hci_sync_conn_complete_evt
af51fc23a03f ipv6: ensure sane device mtu in tunnels
a7cc1b5d76a2 exit: Use READ_ONCE() for all oops/warn limit reads
eb768617dafa docs: Fix path paste-o for /sys/kernel/warn_count
6f18d28c2634 panic: Expose "warn_count" to sysfs
7c1273646f7e panic: Introduce warn_limit
51538bdde3c2 panic: Consolidate open-coded panic_on_warn checks
7020a9234e86 exit: Allow oops_limit to be disabled
5a3482f2c1cc exit: Expose "oops_count" to sysfs
28facdf7b097 exit: Put an upper limit on how often we can oops
3fa431bac23c ia64: make IA64_MCA_RECOVERY bool instead of tristate
86926761ca80 csky: Fix function name in csky_alignment() and die()
3bf1fa2c7b0f h8300: Fix build errors from do_exit() to make_task_dead() transition
fcae924b945e hexagon: Fix function name in die()
49a128ae2823 objtool: Add a missing comma to avoid string concatenation
9a18c9c8336f exit: Add and use make_task_dead.
2f87e255123f mm: kasan: do not panic if both panic_on_warn and kasan_multishot set
119f6bcef753 panic: unset panic_on_warn inside panic()
f6c20ed17ef0 sysctl: add a new register_sysctl_init() interface
dbe634ce8243 dmaengine: imx-sdma: Fix a possible memory leak in sdma_transfer_init
1986cd616b63 blk-cgroup: fix missing pd_online_fn() while activating policy
4923160393b0 bpf: Skip task with pid=1 in send_signal_common()
bd393f0ad5b5 ARM: dts: imx: Fix pca9547 i2c-mux node name
8667280a673a x86/asm: Fix an assembler warning with current binutils
1a5119369a50 clk: Fix pointer casting to prevent oops in devm_clk_release()
fbf7b0e4cef3 perf/x86/amd: fix potential integer overflow on shift of a int
f571e340050d netfilter: conntrack: unify established states for SCTP paths
8770cd9d7c14 x86/i8259: Mark legacy PIC interrupts with IRQ_LEVEL
4d1757f9fe57 block: fix and cleanup bio_check_ro
3a10a4d5d08a nfsd: Ensure knfsd shuts down when the "nfsd" pseudofs is unmounted
52462669581f Revert "Input: synaptics - switch touchpad on HP Laptop 15-da3001TU to RMI mode"
f7a564412931 net: mdio-mux-meson-g12a: force internal PHY off on mux switch
2635c4fd91ca net: xgene: Move shared header file into include/linux
a70b966c6c1e net/phy/mdio-i2c: Move header file to include/linux/mdio
a9a022a0db1a net/tg3: resolve deadlock in tg3_reset_task() during EEH
92a65b0f207b thermal: intel: int340x: Add locking to int340x_thermal_get_trip_type()
e249cea3abd5 net: ravb: Fix possible hang if RIS2_QFF1 happen
a7585028ac0a sctp: fail if no bound addresses can be used for a given scope
dae05cd3716f net/sched: sch_taprio: do not schedule in taprio_reset()
fe9b9e621ceb netrom: Fix use-after-free of a listening socket.
67ac3b4cd551 netfilter: conntrack: fix vtag checks for ABORT/SHUTDOWN_COMPLETE
8f0eb24f1a7a ipv4: prevent potential spectre v1 gadget in fib_metrics_match()
746db9ec1e67 ipv4: prevent potential spectre v1 gadget in ip_metrics_convert()
4cde1d2f16b6 netlink: annotate data races around sk_state
c64bb8547160 netlink: annotate data races around dst_portid and dst_group
ea11a52f55c9 netlink: annotate data races around nlk->portid
cfdd81ae4752 netfilter: nft_set_rbtree: skip elements in transaction from garbage collection
ddd49cbbd4c1 net: fix UaF in netns ops registration error path
3e5082b1c66c netlink: prevent potential spectre v1 gadgets
66e10d5f3996 EDAC/qcom: Do not pass llcc_driv_data as edac_device_ctl_info's pvt_info
594618c701ac EDAC/device: Respect any driver-supplied workqueue polling value
a536d87ec73f ARM: 9280/1: mm: fix warning on phys_addr_t to void pointer assignment
768e8cdf93e7 thermal: intel: int340x: Protect trip temperature from concurrent updates
aa33d334bd7e KVM: x86/vmx: Do not skip segment attributes if unusable bit is set
91be54849d53 cifs: Fix oops due to uncleared server->smbd_conn in reconnect
bcb65adaa9a1 ftrace/scripts: Update the instructions for ftrace-bisect.sh
31b2414abeaa trace_events_hist: add check for return value of 'create_hist_field'
76b2390fdc80 tracing: Make sure trace_printk() can output as soon as it can be used
4a4a22dda0a3 module: Don't wait for GOING modules
1cd70d842731 scsi: hpsa: Fix allocation size for scsi_host_alloc()
4d55f918e1cd Bluetooth: hci_sync: cancel cmd_timer if hci_open failed
e588a5872d41 Revert "Revert "xhci: Set HCD flag to defer primary roothub registration""
8eb5a68064a5 fs: reiserfs: remove useless new_opts in reiserfs_remount
a61bc9197d90 netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state
d39117d7797f Revert "selftests/bpf: check null propagation only neither reg is PTR_TO_BTF_ID"
b4253b47bf5e mmc: sdhci-esdhc-imx: correct the tuning start tap and step setting
14b70b4b4a1c mmc: sdhci-esdhc-imx: disable the CMD CRC check for standard tuning
7e66f28ce510 mmc: sdhci-esdhc-imx: clear pending interrupt and halt cqhci
a58c144b9e69 lockref: stop doing cpu_relax in the cmpxchg loop
d6ff82a4d712 platform/x86: asus-nb-wmi: Add alternate mapping for KEY_SCREENLOCK
295690bb0596 platform/x86: touchscreen_dmi: Add info for the CSL Panther Tab HD
890d850cb25b scsi: hisi_sas: Set a port invalid only if there are no devices attached when refreshing port id
45b3fc9cc64b KVM: s390: interrupt: use READ_ONCE() before cmpxchg()
dc0867c44722 spi: spidev: remove debug messages that access spidev->spi without locking
0dfd34fb4506 ASoC: fsl-asoc-card: Fix naming of AC'97 CODEC widgets
9e02118045f8 ASoC: fsl_ssi: Rename AC'97 streams to avoid collisions with AC'97 CODEC
3163f4ed49bd cpufreq: armada-37xx: stop using 0 as NULL pointer
1ec79234c20a s390/debug: add _ASM_S390_ prefix to header guard
18699224059c drm: Add orientation quirk for Lenovo ideapad D330-10IGL
aff2bc578482 ASoC: fsl_micfil: Correct the number of steps on SX controls
1c587aa6cd23 cpufreq: Add Tegra234 to cpufreq-dt-platdev blocklist
8cca0afccefd tcp: fix rate_app_limited to default to 1
11a4d51a4f18 net: dsa: microchip: ksz9477: port map correction in ALU table entry register
02a4a7dc90c2 driver core: Fix test_async_probe_init saves device in wrong array
276052159ba9 w1: fix WARNING after calling w1_process()
82867190ce30 w1: fix deadloop in __w1_remove_master_device()
c9ada353403d tcp: avoid the lookup process failing to get sk in ehash table
e963b33723f7 dmaengine: xilinx_dma: call of_node_put() when breaking out of for_each_child_of_node()
9b4482267eee dmaengine: xilinx_dma: Fix devm_platform_ioremap_resource error handling
fe39e74a6435 dmaengine: xilinx_dma: use devm_platform_ioremap_resource()
d3065cc56221 HID: betop: check shape of output reports
d16b83c804ad net: macb: fix PTP TX timestamp failure due to packet padding
18dd3b30d4c7 dmaengine: Fix double increment of client_count in dma_chan_get()
cbed756bd198 drm/panfrost: fix GENERIC_ATOMIC64 dependency
914c58fec1a6 net: mlx5: eliminate anonymous module_init & module_exit
7335ba0c0345 usb: gadget: f_fs: Ensure ep0req is dequeued before free_request
a8d40942df07 usb: gadget: f_fs: Prevent race during ffs_ep0_queue_wait
edec50677b41 HID: revert CHERRY_MOUSE_000C quirk
efa29f4ba01e net: stmmac: fix invalid call to mdiobus_get_phy()
8c3653c4e71f HID: check empty report_list in bigben_probe()
89e7fe3999e0 HID: check empty report_list in hid_validate_values()
8a7b9560a3a8 net: mdio: validate parameter addr in mdiobus_get_phy()
ce1e79bf31aa net: usb: sr9700: Handle negative len
4fd6a6b1019e l2tp: Don't sleep and disable BH under writer-side sk_callback_lock
7188c37f3c25 l2tp: Serialize access to sk_user_data with sk_callback_lock
24c7614d31c8 net: fix a concurrency bug in l2tp_tunnel_register()
1200388a0b1c net/sched: sch_taprio: fix possible use-after-free
9042a9a3f29c wifi: rndis_wlan: Prevent buffer overflow in rndis_query_oid
de0e084f85ff gpio: mxc: Always set GPIOs used as interrupt source to INPUT mode
8df414fce41c net: wan: Add checks for NULL for utdm in undo_uhdlc_init and unmap_si_regs
a59cdbda3714 net: nfc: Fix use-after-free in local_cleanup()
2a05d513d2b9 phy: rockchip-inno-usb2: Fix missing clk_disable_unprepare() in rockchip_usb2phy_power_on()
81b3374944d2 bpf: Fix pointer-leak due to insufficient speculative store bypass mitigation
8b35c7f6920d amd-xgbe: Delay AN timeout during KR training
b85e0bb478fd amd-xgbe: TX Flow Ctrl Registers are h/w ver dependent
3d41f4eeabd0 affs: initialize fsdata in affs_truncate()
03965f8ad2cd IB/hfi1: Fix expected receive setup error exit issues
f5c918dc4ed9 IB/hfi1: Reserve user expected TIDs
d307c75f4328 IB/hfi1: Reject a zero-length user expected buffer
902063a9fea5 RDMA/core: Fix ib block iterator counter overflow
048c17b619b4 tomoyo: fix broken dependency on *.conf.default
8d23f5d25264 EDAC/highbank: Fix memory leak in highbank_mc_probe()
97445814efcd HID: intel_ish-hid: Add check for ishtp_dma_tx_map
4be51ea91a8b ARM: imx: add missing of_node_put()
12a763015b83 ARM: imx35: Retrieve the IIM base address from devicetree
3b76bc159878 ARM: imx31: Retrieve the IIM base address from devicetree
61669e6dec15 ARM: imx27: Retrieve the SYSCTRL base address from devicetree
d4e913bad2b5 ARM: dts: imx6qdl-gw560x: Remove incorrect 'uart-has-rtscts'
6d7f38426895 memory: mvebu-devbus: Fix missing clk_disable_unprepare in mvebu_devbus_probe()
8959188b2f31 memory: atmel-sdramc: Fix missing clk_disable_unprepare in atmel_ramc_probe()
310268050d58 clk: Provide new devm_clk helpers for prepared and enabled clocks
c7ef7185a15f clk: generalize devm_clk_get() a bit
(From OE-Core rev: 13e4ca633d1f0897b5bbe1b40d399faa95bac24c)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
import patches from ubuntu to fix
CVE-2020-15469
CVE-2020-15859
CVE-2020-17380
CVE-2020-35504
CVE-2020-35505
CVE-2021-3409
CVE-2022-26354
https://git.launchpad.net/ubuntu/+source/qemu/tree/debian/patches?h=ubuntu/focal-security
Combine patches for both CVE-2020-25085 and CVE-2021-3409 also fix CVE-2020-17380.
so mark CVE-2020-17380 fixed by CVE-2021-3409 patches. CVE-2020-17380 patch backported since
oecore rev 6b4c58a31ec11e557d40c31f2532985dd53e61eb.
(From OE-Core rev: 3ee2e9027d57dd5ae9f8795436c1acd18a9f1e24)
Signed-off-by: Chee Yang Lee <chee.yang.lee@intel.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
The script generated by the sdk_ext_postinst function was not quoting
the user existing PATH when updating it causing the export command to
fail.
Add necessary double quotes around $PATH.
(From OE-Core rev: b8298401c710146ae35f282048b66d5773a513ed)
Signed-off-by: Kenfe-Mickael Laventure <mickael.laventure@gmail.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
(cherry picked from commit 00e96bf250eaaded839caf465dbc0af5b604aed7)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
The environment-setup script generated by the recipe was not quoting the
user existing PATH when updating it causing the export command to fail.
Add necessary double quotes around $PATH.
(From OE-Core rev: ad6aaa77f1d08b4ca66f46e318f1a09b645d9e23)
Signed-off-by: Kenfe-Mickael Laventure <mickael.laventure@gmail.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
(cherry picked from commit 42177ff2d45ee70ad00917bb6fbabca49dae4f59)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
The environment-setup script generated by the recipe was not quoting the
user existing PATH when updating it causing the export command to fail.
Add necessary double quotes around $PATH.
(From OE-Core rev: 9ececa2c36eff7c954d92e9d13a2fe8c1fae9bd2)
Signed-off-by: Kenfe-Mickael Laventure <mickael.laventure@gmail.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
(cherry picked from commit 2d4c032bf3187aaa953a0c33a999074e695f54bb)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
glibc has it's dependencies handled more manually due to it's place
in the toolchain bootstrap. It depends upon the compiler and indirectly
through that to binutils. This did mean that if binutils changes and the
compiler does not, sstate and hash equivalence could mean that glibc
wouldn't rebuild.
Add a direct dependency on binutils that if it changes, it forces glibc
to rebuild, as it should.
(From OE-Core rev: ea6d768d0910e2076a971bdba57605dd9d68763a)
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit c4a7b3decff636292f5e76e95406a22b6fe4a994)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
The previous fix wasn't enough to address all the possible ways the
manifests might be ordered. Rework the previous fix so it is tied
to the multilib cross-canadian code which is causing the problem.
RECIPE_SYSROOT_MANIFEST_SUBDIR is not documented as I'd hope nobody
ever needs to use this outside the core multilib code.
(From OE-Core rev: 271ac31e15d00d636e888a1f3b7d4e22e0b8267a)
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit beab42e00713880cd95a04729c892f8662fbcbed)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
"""
require conf/multilib.conf
MACHINE = "qemuarm64"
MULTILIBS = "multilib:lib32"
DEFAULTTUNE:virtclass-multilib-lib32 = "armv7athf-neon"
bitbake gcc-cross-canadian-arm
"""
and then inspecting the lib32* manifest files under recipe-sysroot-native shows
them referencing lib32-recipe-sysroot instead of recipe-sysroot as used by
gcc-cross-canadian recipes.
To fix this separate out the manifest by multilib. It is caching mechanism to
optimise disk usage so this doesn't break anything, just separated out some files.
(From OE-Core rev: eb9c6f7ac91431a6296789c23900f2a3016ef619)
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
(cherry picked from commit 891d3faa3ed3d1cc231da58e5fa1325f05d5ade5)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Per default systemd use a pager for the output of most of its tools
and it expect this pager to be color capable. But that is not the case
when the busybox `less` is used, which lead to output garbled by color
escape sequences.
To fix this issue add a profile frament that disable the systemd pager
when busybox `less` is detected.
(From OE-Core rev: 06271fd8d26bc34448524157077c23eb1ea29c52)
Signed-off-by: Alban Bedel <alban.bedel@aerq.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit de7e36a7858ebca4615975967fcad1c399eacdb0)
Signed-off-by: Jermain Horsman <jermain.horsman@nedap.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Clause II.3 of the Vim license states that any distribution of Vim that
has been extended or modified must _at least_ indicate in the :version
output that this is the case.
Handily, Vim has a --with-modified-by argument to add a line in that
text, so use MAINTAINER. This is the distribution maintainer contact,
by default it is OE-Core Developers
<openembedded-core@lists.openembedded.org>.
(From OE-Core rev: e630b404b1d1797be5e915592a6ef71e34aaf680)
Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit acc007e23445aa53182e13902dd9509c39dd5645)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
This incorporates fixes for CVE-2023-1127, CVE-2023-1170, CVE-2023-1175.
Also remove runtime/doc/uganda.txt from the license checksum: the Vim
license is also in the top-level LICENSE file so this is redundant.
(From OE-Core rev: 9351cd3bf259260c17e7c99612b3c28d58a89bf3)
Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 71111e6b62d37c5e6853d7940dec2993df127a35)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
pkgconfig is being required to find dependencies for building kernel
native tools, move "inherit pkgconfig" to kernel.bbclass so BSP kernel
recipes can also benefit from it.
(From OE-Core rev: a5e62888768be641d5da00fd847e0cac96820c75)
Signed-off-by: Ming Liu <liu.ming50@gmail.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
(cherry picked from commit 8a84bd98e3fbc16c782f83064801e469d086911e)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Vim uses pkgconfig to find dependencies but it wasn't present, so it
silently doesn't enable features like GTK+ UI.
[ YOCTO #15044 ]
(From OE-Core rev: c84f0822e7cffc62e2f042bf9d2e424f85f74ecd)
Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
(cherry picked from commit 70900616298f5e70732a34e7406e585e323479ed)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
We keep seeing this failure on the autobuilder but the output amounts
to "False is not True". Improve the debug message on the chance it may
make the issue clearer.
(From OE-Core rev: 68d3766c37e4b3a1b49dc27226b2513e3b0db9a9)
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit d03f4cf19c2cc96e9d942252a451521dfec42ebc)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
This recently got an updated CPE which matches this recipe, but the issue
is related to an entirely different shadow project so ignore it.
(From OE-Core rev: 9d5a05c27a01b3859eae70590ba7dd836abe2719)
Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
(cherry picked from commit 2331e98abb09cbcd56625d65c4e5d258dc29dd04)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Remove branching that depends on secret data.
since the `ok` variable isn't used any more, we can remove all code
used to calculate it
(From OE-Core rev: 5b8a3601ebff7a0cdfaa50d7a0b5e384a7e2514c)
Signed-off-by: Vivek Kumbhar <vkumbhar@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
The use of scripts/git-intercept was introduced in commit 3266c327df
(install/devshell: Introduce git intercept script due to fakeroot
issues) and later reverted in commit af27c81eaf (scripts: Make git
intercept global).
(From OE-Core rev: 51424b9955374196307aaf73cf4b6c184ce4fb6d)
Signed-off-by: Peter Kjellerstedt <peter.kjellerstedt@axis.com>
Signed-off-by: Luca Ceresoli <luca.ceresoli@bootlin.com>
(cherry picked from commit f6c260c8e2a33e282a35afc99de4ef8cc1791b08)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
For the QA checks in `image.bbclass`, all exceptions
other than `oe.utils.ImageQAFailed` always print the
following generic message:
"Image QA function func_name failed"
This can be very misleading, as it may hide
python syntax errors and other kind of issues that are
hard to detect without more explicit error messages.
This change makes sure that the error message of all
exceptions are displayed.
Before this change:
"Image QA function func_name failed"
After this change:
"Image QA function func_name failed: f-string: empty expression not allowed (<string>, line 13)"
(From OE-Core rev: c4e3b86f2bcb2b445efc72bd8e06b1b89d88daa2)
Signed-off-by: Mauro Queiros <maurofrqueiros@gmail.com>
Signed-off-by: Luca Ceresoli <luca.ceresoli@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 3d85b30d8704d38b86f5b006748cebc74bd2a4fa)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Backport of gcc upstream commit 2b2d97fc545635a0f6aa9c9ee3b017394bc494bf
to gcc release 9.5.0. This fix is available to all release-branches
except releases/gcc-9 because upstream do not support gcc-9 now.
(From OE-Core rev: 9779b66162a014f26594bdde43afdc4332617240)
Signed-off-by: Virendra Thakur <virendrak@kpit.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Major changes between OpenSSL 1.1.1s and OpenSSL 1.1.1t [7 Feb 2023]
* Fixed X.400 address type confusion in X.509 GeneralName (CVE-2023-0286)
* Fixed Use-after-free following BIO_new_NDEF (CVE-2023-0215)
* Fixed Double free after calling PEM_read_bio_ex (CVE-2022-4450)
* Fixed Timing Oracle in RSA Decryption (CVE-2022-4304)
(From OE-Core rev: 22de5ecae3ebb04a4bab05010c04b205c52ee888)
Signed-off-by: Hugo SIMELIERE <hsimeliere.opensource@witekio.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Changes with APR-util 1.6.3
*) Correct a packaging issue in 1.6.2. The contents of the release were
correct, but the top level directory was misnamed.
Changes with APR-util 1.6.2
*) SECURITY: CVE-2022-25147 (cve.mitre.org)
Integer Overflow or Wraparound vulnerability in apr_base64 functions
of Apache Portable Runtime Utility (APR-util) allows an attacker to
write beyond bounds of a buffer.
*) Teach configure how to find and build against MariaDB 10.2. PR 61517
[Kris Karas <bugs-a17 moonlit-rail.com>]
*) apr_crypto_commoncrypto: Remove stray reference to -lcrypto that
prevented commoncrypto being enabled. [Graham Leggett]
*) Add --tag=CC to libtool invocations. PR 62640. [Michael Osipov]
*) apr_dbm_gdbm: Fix handling of error codes. This makes gdbm 1.14 work.
apr_dbm_gdbm will now also return error codes starting with
APR_OS_START_USEERR, as apr_dbm_berkleydb does, instead of always
returning APR_EGENERAL. [Stefan Fritsch]
Drop backport.
(From OE-Core rev: 9eb027bebb19bfb0fb136169e865ca269890fa6f)
Signed-off-by: Alexander Kanavin <alex@linutronix.de>
Signed-off-by: Luca Ceresoli <luca.ceresoli@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit dca707f9fecc805503e17f6db3e4c88069ac0125)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
(cherry picked from commit 43cd36b178ebb602edd5919c26f8b8642736a3a8)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
(cherry picked from commit e24b38a14b3520648ec418783fb74fcf61df7ff2)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
We need to use CFLAGS with the correct WORKDIR in them, replace those
in the sysroot file with the ones appropriate to the current recipe.
(From OE-Core rev: 92fb7261a1c7ebe6330832a9a71d1bed82c85a6a)
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 45edf189961aff1858be9bb7b63116073c0a0c10)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Changes for APR 1.7.2
*) Correct a packaging issue in 1.7.1. The contents of the release were
correct, but the top level directory was misnamed.
Changes for APR 1.7.1
*) SECURITY: CVE-2022-24963 (cve.mitre.org)
Integer Overflow or Wraparound vulnerability in apr_encode functions of
Apache Portable Runtime (APR) allows an attacker to write beyond bounds
of a buffer.
*) SECURITY: CVE-2022-28331 (cve.mitre.org)
On Windows, Apache Portable Runtime 1.7.0 and earlier may write beyond
the end of a stack based buffer in apr_socket_sendv(). This is a result
of integer overflow.
*) SECURITY: CVE-2021-35940 (cve.mitre.org)
Restore fix for out-of-bounds array dereference in apr_time_exp*() functions.
(This issue was addressed as CVE-2017-12613 in APR 1.6.3 and
later 1.6.x releases, but was missing in 1.7.0.) [Stefan Sperling]
*) configure: Fix various build issues for compilers enforcing
strict C99 compliance. PR 66396, 66408, 66426.
[Florian Weimer <fweimer redhat.com>, Sam James <sam gentoo.org>]
*) apr_atomic_read64(): Fix non-atomic read on 32-bit Windows [Ivan Zhakov]
*) configure: Prefer posix name-based shared memory over SysV IPC.
[Jim Jagielski]
*) configure: Add --disable-sctp argument to forcibly disable SCTP
support, or --enable-sctp which fails if SCTP support is not
detected. [Lubos Uhliarik <luhliari redhat.com>, Joe Orton]
*) Fix handle leak in the Win32 apr_uid_current implementation.
PR 61165. [Ivan Zhakov]
*) Add error handling for lseek() failures in apr_file_write() and
apr_file_writev(). [Joe Orton]
*) Don't silently set APR_FOPEN_NOCLEANUP for apr_file_mktemp() created file
to avoid a fd and inode leak when/if later passed to apr_file_setaside().
[Yann Ylavic]
*) APR's configure script uses AC_TRY_RUN to detect whether the return type
of strerror_r is int. When cross-compiling this defaults to no.
This commit adds an AC_CACHE_CHECK so users who cross-compile APR may
influence the outcome with a configure variable. [Sebastian Kemper
<sebastian_ml gmx net>]
*) Add a cache check with which users who cross-compile APR
can influence the outcome of the /dev/zero test by setting the variable
ac_cv_mmap__dev_zero=yes [Sebastian Kemper <sebastian_ml gmx net>]
*) Trick autoconf into printing the correct default prefix in the help.
[Stefan Fritsch]
*) Don't try to use PROC_PTHREAD by default when cross compiling.
[Yann Ylavic]
*) Add the ability to cross compile APR. [Graham Leggett]
*) While cross-compiling, the tools/gen_test_char could not
be executed at build time, use AX_PROG_CC_FOR_BUILD to
build native tools/gen_test_char
Support explicit libtool by variable assigning before buildcheck.sh,
it is helpful for cross-compiling (such as libtool=aarch64-linux-libtool)
[Hongxu Jia <hongxu.jia windriver.com>]
*) Avoid an overflow on 32 bit platforms. [René Hjortskov Nielsen
<r... hjortskov.dk>]
*) Use AC_CHECK_SIZEOF, so as to support cross compiling. PR 56053.
[Mike Frysinger <vapier gentoo.org>]
*) Add --tag=CC to libtool invocations. PR 62640. [Michael Osipov]
*) apr_pools: Fix pool debugging output so that creation events are
always emitted before allocation events and subpool destruction
events are emitted on pool clear/destroy for proper accounting.
[Brane Čibej]
*) apr_socket_listen: Allow larger listen backlog values on Windows 8+.
[Evgeny Kotkov <evgeny.kotkov visualsvn.com>]
*) Fixed: apr_get_oslevel() was returning APR_WIN_XP on Windows 10
*) Fix attempt to free invalid memory on exit when apr_app is used
on Windows. [Ivan Zhakov]
*) Fix double free on exit when apr_app is used on Windows. [Ivan Zhakov]
*) Fix a regression in apr_stat() for root path on Windows. [Ivan Zhakov]
Dropped patches have all been merged, addressed separately or are backports.
(From OE-Core rev: 013633b9f4b7dff2616c6d2e59e4d8118e3ce51f)
Signed-off-by: Alexander Kanavin <alex@linutronix.de>
Signed-off-by: Luca Ceresoli <luca.ceresoli@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 3ffae93f24bb1e3954b232099153fd059cfd7daf)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
(cherry picked from commit a308e10ef4ad9e097b025f009866eae178259781)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
AC_TRY_RUN macro means the test needs to run to find the result and we
are cross compiling so this will always get wrong results, this results
in miscompiling apache2 on musl because it disables rlimit
(ac_cv_struct_rlimit) wrongly.
All these variables are determined with AC_TRY_RUN checks
(From OE-Core rev: 104c9ddf7a5323e5193c611b98b3e7465157aecd)
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Luca Ceresoli <luca.ceresoli@bootlin.com>
(cherry picked from commit 504eb0ff1cae200ee85ec18ebae564cae9bf9c8c)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
musl does not implement GNU extention of strerror_r but XSI compliant
version, therefore add it via a packageconfig to set right variables
during configure to cache the value.
configure detection logic depends on runtime test which will always be
wrong on cross compiles therefore backport a patch to make it possible
to cache the needed configure variable.
(From OE-Core rev: 993cfeaefa73e3b82cf15db78584e5f9b9f86ddf)
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Luca Ceresoli <luca.ceresoli@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit ded3d76a844dd1aef9ac610fbe506bf76285369b)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Fix an issue with autoconf 2.70 where duplicate macro includes
caused configure failures.
(From OE-Core rev: 41121149212b3684991a62261c17a45afd50bb83)
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Ross Burton <ross.burton@arm.com>
(cherry picked from commit 4e5d7c86a8a5e752df451d988861a86236e8c8ff)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Newest linux-firmware release got firmware for Adreno A200. Add these
two files to the ${PN}-qcom-adreno-a2xx package. As these files are
licensed under a separate BSD-3-Clause license, add separate license
package too.
(From OE-Core rev: 420c41b9560574b10aa56fbe073509c56adda93e)
Signed-off-by: Dmitry Baryshkov <dmitry.baryshkov@linaro.org>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 56e1b2b06ef7f22d4ac5899046f650ae8ec0d547)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
It is not enough to depend on the ${PN}-qcom-license package. Set
LICENSE variable for all the qcom packages to point to the proper
license.
(From OE-Core rev: 2cb8f5efb99df37c8e2103ecdc7f482ee129650a)
Signed-off-by: Dmitry Baryshkov <dmitry.baryshkov@linaro.org>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 9dc41e18dc138a7cce920f8e4c85eb3130c0d553)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
To avoid working with undeterministic config files, remove all the
temporary files to start from scratch.
(From OE-Core rev: a3f31997c633e8476bad68c81fac0dcd0750c7d4)
Signed-off-by: Antonin Godard <antoningodard@pm.me>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Bruce Ashfield
Chee Yang Lee
Richard Purdie
Kenfe-Mickael Laventure
Alban Bedel
Ross Burton
Hitendra Prajapati
Andrej Valek
Ming Liu
Siddharth Doshi
Vivek Kumbhar
Peter Kjellerstedt
Mauro Queiros
Ulrich Ölmann
Virendra Thakur
Hugo SIMELIERE
Alexander Kanavin
Khem Raj
Dmitry Baryshkov
Rodolfo Quesada Zumbado
Shubham Kulkarni
Vijay Anusuri
Steve Sakoman
Antonin Godard