Integrating Paul Gortmaker's v4.12.25 -stable queue, which comprises the
following commits:
e61748ef5db0 Linux 4.12.25
c34553e3e8af x86/bugs: Rename SSBD_NO to SSB_NO
4aa9e65a91b9 x86/bugs: Remove x86_spec_ctrl_set()
7283d22a40c4 x86/bugs: Expose x86_spec_ctrl_base directly
60fb8f1bbd46 x86/speculation: Rework speculative_store_bypass_update()
cc8a65725832 x86/cpufeatures: Disentangle SSBD enumeration
4cadf648f802 x86/cpufeatures: Disentangle MSR_SPEC_CTRL enumeration from IBRS
14476a34b4d0 x86/speculation: Use synthetic bits for IBRS/IBPB/STIBP
e66dd0595eac x86/cpu: Make alternative_msr_write work for 32-bit code
32e38eda9958 x86/bugs: Fix the parameters alignment and missing void
5593194735ea x86/bugs: Make cpu_show_common() static
86e7eb199990 x86/bugs: Fix __ssb_select_mitigation() return type
4efd9170a722 Documentation/spec_ctrl: Do some minor cleanups
e074092d9d0a proc: Use underscores for SSBD in 'status'
f57b4be9a391 x86/bugs: Rename _RDS to _SSBD
f395cafed558 x86/speculation: Make "seccomp" the default mode for Speculative Store Bypass
9599751872de seccomp: Move speculation migitation control to arch code
647fb2d84f05 seccomp: Add filter flag to opt-out of SSB mitigation
44d5a1d9fe07 seccomp: Use PR_SPEC_FORCE_DISABLE
9490e71c3074 prctl: Add force disable speculation
ad5b97fe1ab6 x86/bugs: Make boot modes __ro_after_init
cfc00a7877b6 seccomp: Enable speculation flaw mitigations
bc4bf81c64b0 proc: Provide details on speculation flaw mitigations
a41d2136a447 nospec: Allow getting/setting on non-current task
7e17279e72b9 x86/speculation: Add prctl for Speculative Store Bypass mitigation
eea6b1abc91e x86/process: Allow runtime control of Speculative Store Bypass
c8630c28cd28 prctl: Add speculation control prctls
ecefae5ca101 x86/speculation: Create spec-ctrl.h to avoid include hell
4bcdf54612aa x86/bugs/AMD: Add support to disable RDS on Fam[15,16,17]h if requested
6ce1317929a3 x86/bugs: Whitelist allowed SPEC_CTRL MSR values
cd5e5e6f2e39 x86/bugs/intel: Set proper CPU features and setup RDS
d97584229d85 x86/bugs: Provide boot parameters for the spec_store_bypass_disable mitigation
793b7453cfc5 x86/cpufeatures: Add X86_FEATURE_RDS
c6c3cd47ccbb x86/bugs: Expose /sys/../spec_store_bypass
2d92a521bda7 x86/bugs: Read SPEC_CTRL MSR during boot and re-use reserved bits
81865e325abe x86/bugs: Concentrate bug reporting into a separate function
45245a5b9dc4 x86/bugs: Concentrate bug detection into a separate function
05e82d536970 x86/nospec: Simplify alternative_msr_write()
effb0dfecfa2 x86/cpu_entry_area: Sync cpu_entry_area to initial_page_table
89fffee9d555 x86/xen: Zero MSR_IA32_SPEC_CTRL before suspend
76199d7beb0b x86/speculation: Move firmware_restrict_branch_speculation_*() from C to CPP
426210b00b02 x86/speculation: Use IBRS if available before calling into firmware
63904f8a6d41 x86/entry/64: Fix CR3 restore in paranoid_exit()
35cf6a9daf5f x86/cpu: Change type of x86_cache_size variable to unsigned int
7fded60b2cb7 x86/spectre: Fix an error message
343945a16727 x86/speculation: Add <asm/msr-index.h> dependency
eb0f059ee2de nospec: Move array_index_nospec() parameter checking into separate macro
31951a39de73 x86/speculation: Fix up array_index_nospec_mask() asm constraint
344711f16fec x86/entry/64: Remove the unused 'icebp' macro
d4324affaf05 x86/entry/64: Fix paranoid_entry() frame pointer warning
3cadbc9228b4 x86/entry/64: Indent PUSH_AND_CLEAR_REGS and POP_REGS properly
0d561147160c x86/entry/64: Get rid of the ALLOC_PT_GPREGS_ON_STACK and SAVE_AND_CLEAR_REGS macros
22c1269eefa9 x86/entry/64: Use PUSH_AND_CLEAN_REGS in more cases
ac897d25b1d3 x86/entry/64: Introduce the PUSH_AND_CLEAN_REGS macro
226eea037fa6 x86/entry/64: Interleave XOR register clearing with PUSH instructions
120d889cac9f x86/entry/64: Merge the POP_C_REGS and POP_EXTRA_REGS macros into a single POP_REGS macro
2d5eb3888f24 x86/entry/64: Merge SAVE_C_REGS and SAVE_EXTRA_REGS, remove unused extensions
797a6f4444f1 x86/speculation: Clean up various Spectre related details
ff032faca431 KVM/nVMX: Set the CPU_BASED_USE_MSR_BITMAPS if we have a valid L02 MSR bitmap
1aaab2d1a1fd KVM/x86: Reduce retpoline performance impact in slot_handle_level_range(), by always inlining iterator helper methods
dd17c0f5a114 Revert "x86/speculation: Simplify indirect_branch_prediction_barrier()"
add7dd4f1f81 x86/speculation: Correct Speculation Control microcode blacklist again
358f03a9395f x86/speculation: Update Speculation Control microcode blacklist
0307861327c7 x86/mm/pti: Fix PTI comment in entry_SYSCALL_64()
a612b987b028 x86/entry/64/compat: Clear registers for compat syscalls, to reduce speculation attack surface
1b8b432f6dee x86/entry/64: Clear registers for exceptions/interrupts, to reduce speculation attack surface
513e4bbfc32c x86/entry/64: Clear extra registers beyond syscall arguments, to reduce speculation attack surface
(From OE-Core rev: 400c1bd54c0191b96bccfe0d2755995bdfc04fc1)
(From OE-Core rev: 50bf492ce1db930b5a1c3f0d750015c04a6aaaf0)
Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
With the fixes to other parts of multilib, it was found that the fixup code's
assumptions about the recipe sysroot were incorrect. We need to use the value
calculated earlier in the function.
It turns out there is a rather neat way to do this which cleans up the code
as an added bonus.
(From OE-Core rev: 2c1978fe1a5b72167c49010fbdd39a9e2eefdef8)
(From OE-Core rev: ef7e612e54d7629518a13ed3b1c2967bf70347a2)
(From OE-Core rev: c1455f3b052fc589fad628e97e35bcc9296726e1)
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Currently if you enable multilib, then build an image, the multilib
recipe sysroot is build in the wrong WORKDIR. If you then clean and
rebuild the image you see "file exists" errors.
This patch ensures the real WORKDIR is used consistently and then
cleans/rebuilds also work correctly.
(From OE-Core rev: c013ae59a158378d06ecf8eb123df0a10bf986b4)
(From OE-Core rev: 7631301b5fc27ab9dda00fcf3d4a0faf685c26dd)
(From OE-Core rev: e167e99621009f92d677ff6dac303d09e42361b5)
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
RPM writes each package scriptlet (post-/preinstall) to
/var/tmp/rpm-tmp.XXXXXX --- a lot of files potentially gets created.
When debugging is enabled, these temporary scriptlet files aren't
cleaned up at all and after a while this results in the filesystem
resources are eaten up (like running out of available inodes).
Normally, the temporary files would have been written to the tmp
directory of the target sysroot (which we can easily clean up), but in
this tree, you can't necessarily run the scriptlets.
Fixes [YOCTO #12792]
(From OE-Core rev: ffb0ece83e74797f4c3da3866bb3d691c388a5e5)
(From OE-Core rev: f0e1683d53e3b7436c04d665a181cdf5909e987c)
Signed-off-by: Olof Johansson <olofjn@axis.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
go1.10.3 (released 2018/06/05) includes fixes to the go command, and
the crypto/tls, crypto/x509, and strings packages. In particular, it
adds minimal support to the go command for the vgo transition.
(From OE-Core rev: 37f288d783257cb9e6c035aaab1b661b1016b4c3)
(From OE-Core rev: aef0052ba416e24e503f5c984f254d023c32d5b3)
Signed-off-by: Otavio Salvador <otavio@ossystems.com.br>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
go1.9.7 (released 2018/06/05) includes fixes to the go command, and
the crypto/x509, and strings packages. In particular, it adds minimal
support to the go command for the vgo transition.
(From OE-Core rev: 98d3ec92e8953304db51c73aff7a4e81b97f668c)
(From OE-Core rev: 8c90d5c8ecc146d37de5d7f1076a963c18f04f4c)
Signed-off-by: Otavio Salvador <otavio@ossystems.com.br>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
The upstream commit 61f32bff6130a44d077886d38cff89ad161bf177 included in
the release v229 removed the use of the group:
commit 61f32bff6130a44d077886d38cff89ad161bf177
Author: Martin Pitt <martin.pitt@ubuntu.com>
Date: Mon Feb 1 12:09:34 2016 +0100
tmpfiles: drop /run/lock/lockdev
Hardly any software uses that any more, and better locking mechanisms like
flock() have been available for many years.
Also drop the corresponding "lock" group from sysusers.d/basic.conf.in, as
nothing else is using this.
[...]
diff --git a/sysusers.d/basic.conf.in b/sysusers.d/basic.conf.in
index 823d6cb20..b2dc5ebd4 100644
--- a/sysusers.d/basic.conf.in
+++ b/sysusers.d/basic.conf.in
@@ -19,7 +19,6 @@ g wheel - - -
# Access to certain kernel and userspace facilities
g kmem - - -
-g lock - - -
g tty @TTY_GID@ - -
g utmp - - -
[...]
The upstream documentation doc/UIDS-GIDS.md says that basic.conf.in is "the
precise list of the currently defined groups":
## Special `systemd` GIDs
`systemd` defines no special UIDs beyond what Linux already defines (see
above). However, it does define some special group/GID assignments, which are
primarily used for `systemd-udevd`'s device management. The precise list of the
currently defined groups is found in this `sysusers.d` snippet:
[basic.conf](https://raw.githubusercontent.com/systemd/systemd/master/sysusers.d/basic.conf.in)
It's strongly recommended that downstream distributions include these groups in
their default group databases.
Removing the creation of the group also avoids the need to define a GID
for it when using static ids.
(From OE-Core rev: da3659155cd1825a4a8d3d7c5288b4273714de15)
(From OE-Core rev: d3e1ec73a27e0c9305d3c3bd09c141b16d4c7d0d)
Signed-off-by: Hannu Lounento <hannu.lounento@vaisala.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Alioth is dead and the minicom project on Salsa (the replacement for Alioth)
doesn't actually have any files in, so just use the Debian mirror instead.
(From OE-Core rev: b0338efcdabeec79c568c74b6888d7d523e8e9dc)
(From OE-Core rev: 62bd9b6efb377ed59cfc1594c36be5805d2951fd)
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Add a Debian snapshot mirror from 2018 (specifically, 10th March, the date 9.4
was released) to DEBIAN_MIRRORS.
(From OE-Core rev: f3f394913b4e4a7c601ad1158faaf8b9d493e1c7)
(From OE-Core rev: 3d969e8f2979c7b4e7dff268f68c53b782bfa5e4)
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Alioth is dead so we can't use it for SRC_URI anymore. There is a shadow
repository on GitHub which is the new upstream, but for some reason it is
missing the 4.2.1 tag and tarball that we use. Also 4.2.1 was never uploaded
into Debian itself, so we can't use their mirror network either.
For now point SRC_URI at the Yocto Project source mirror and set
UPSTREAM_CHECK_URI so that we get nagged to upgrade to 4.6.
(From OE-Core rev: b3e246fef166030f327b5a852718ea907ada1759)
(From OE-Core rev: cdc91a056e315bea71c3ac1a1ac4024d3214a99d)
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
The previous host of chrpath, Alioth, is dead. chrpath hasn't yet moved to
Salsa, so download the tarball from the Debian mirrors.
(From OE-Core rev: a8a2c5ec891286a1e7fd5ebdd33565f9ae3965c2)
(From OE-Core rev: 53d9da66dcb684cd2d1c703a4887c30ce7bf14d7)
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
The original FTP server, alioth.debian.org has been permanently taken down by the Debian Project and replaced with salsa.debian.org.
(From OE-Core rev: 565394d69925837c0d6f2140bc9489b68dc39474)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Removing things straight from the live sstate directory is prone to issues
since other builds may be relying on the artefact presence.
Also, cleansstate is very slow on the huge sstate that the autobuilder has
on slow NFS drives. This may well be causing long buildtimes in oe-selftest
as the time taken to remove the artefact by be long.
(From meta-yocto rev: f927d1582c93ea71ef760e4de8d5a6accc365284)
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Updated the example to more current information.
(From yocto-docs rev: 6c37cc5231ae560762c5bc8234331d53ebe7b69d)
Signed-off-by: Scott Rifenbark <srifenbark@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Updated some links. Also, rewrote the note about the libraries.
It was inaccurate.
(From yocto-docs rev: ca6593ea9336dd1974ce65ce1d9ca15af8583915)
Signed-off-by: Scott Rifenbark <srifenbark@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
I corrected some wrong information. Provided the correct terminology
for the build host, and provided quotations for supplied values to
be in line with manual writing conventions.
(From yocto-docs rev: aa88f3f09dce042a2f5b39bf059401b0cd08a6cc)
Signed-off-by: Scott Rifenbark <srifenbark@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Bump to the latest stable kernel for 4.14 and 4.15 for edgerouter/beaglebone
to fix gcc8 build issues.
(From meta-yocto rev: c5e07b460cf9477181d2dcde8ea93daeeacc9a2e)
(From meta-yocto rev: fa9a4576256d3cab1160cdfde208bff5f10e2288)
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
When running bitbake command with Python 3.6.5 always result in
import error causing by the change of distutils module.
This patch replaces the method to search executable in PATH by
"/usr/bin/env <command>".
(Bitbake rev: eb3bdcc9e7cb273de4114367887d1d7df9f036b7)
Signed-off-by: Tzu Hsiang Lin <t9360341@ntut.org.tw>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
SystemD 237 implements a stricted PIDfile handling that breaks several
daemons [1].
Change the way we start xinetd, mimicing other distros [2].
Fixes:
root@qt5122:~# journalctl -u xinetd
-- Logs begin at Fri 2018-05-25 14:33:29 UTC, end at Mon 2018-06-11 07:33:08 UTC. --
May 25 14:33:31 qt5122 systemd[1]: Starting Xinetd A Powerful Replacement For Inetd...
May 25 14:33:31 qt5122 systemd[1]: xinetd.service: Permission denied while opening PID file or unsafe symlink chain: /var/run/xinetd.pid
Jun 11 07:27:24 qt5122 systemd[1]: xinetd.service: Start operation timed out. Terminating.
Jun 11 07:27:24 qt5122 systemd[1]: xinetd.service: Failed with result 'timeout'.
Jun 11 07:27:24 qt5122 systemd[1]: Failed to start Xinetd A Powerful Replacement For Inetd.
Jun 11 07:31:38 qt5122 systemd[1]: Starting Xinetd A Powerful Replacement For Inetd...
Jun 11 07:31:38 qt5122 systemd[1]: xinetd.service: Permission denied while opening PID file or unsafe symlink chain: /var/run/xinetd.pid
Jun 11 07:33:08 qt5122 systemd[1]: xinetd.service: Start operation timed out. Terminating.
Jun 11 07:33:08 qt5122 systemd[1]: xinetd.service: Failed with result 'timeout'.
Jun 11 07:33:08 qt5122 systemd[1]: Failed to start Xinetd A Powerful Replacement For Inetd.
[1]: https://github.com/systemd/systemd/issues/8085
[2]: e490406367
(From OE-Core rev: eea25f03e4c46cfe0d05df46f8f50e1389179c80)
(From OE-Core rev: 23dda7c814eb65ac95695982173149142e53fa52)
Signed-off-by: Ricardo Ribalda Delgado <ricardo.ribalda@gmail.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit e4b365eb76)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
These packages use hand-grown makefiles which don't handle cleans as they can
invoke /usr/bin/gmake directly which may not exist. Until new upstream releases
are made (which have ported to automake) set CLEANBROKEN to work around this.
[ YOCTO #12775 ]
(From OE-Core rev: eb924bc684f92fc2d806715872667f241e54b365)
(From OE-Core rev: 1ff55b8810ec2ed61dc6b7c73464a97d7088839d)
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit bd0d7c7ed5)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Enable use of pread() and enable column metadata API for nativesdk builds.
This brings nativesdk in line with target and native builds.
(From OE-Core rev: 7c8b85e1c3d852975cd5961a297aa939bf4c7fe7)
(From OE-Core rev: b476119fb72511fb384600db659c73c9bd6486e8)
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 086610faf0)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
The change "fix hostname conflict with other packages" moved the
hostname util to the list of base_bindir_progs, so do_install_append()
now expects hostname to have been built.
coreutils do_install_append() is shared between target and nativesdk
builds (though not used by native build, see comment) so hostname should
be enabled to build on both of them.
(From OE-Core rev: 57f1f5708306a6121b1172c5163c6566d5bcb89c)
(From OE-Core rev: c936af150459873fe9d135b7d5c2c0d0d9e7745f)
Signed-off-by: S. Lockwood-Childs <sjl@vctlabs.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 5f3a3d4063)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
