https://github.com/p11-glue/p11-kit/releases/tag/0.23.22
Release notes:
Fix memory-safety issues that affect the RPC protocol (CVE-2020-29361, CVE-2020-29362, and CVE-2020-29363), discovered and fixed by David Cook
anchor: Prefer persistent format when storing anchor [#329]
common: Fix infloop in p11_path_build [#326, #327]
proxy: C_CloseAllSessions: Make sure that calloc args are non-zero [#325]
common: Check for a NULL locale before freeing it [#321]
Build and test fixes [#313, #315, #317, #318, #319, #323, #330, #333, #334, #335, #338, #339]
c4e75e1002
patch to fix trailing newline using custom_target() caused error
with DISTRO_FEATURES api-documentation due to meson bugs, enable
manpages PACKAGECONFIG should prevent this error.
| warning: failed to load external entity "../version.xml"
| ../p11-kit-docs.xml:11: parser error : Failure to process entity version
| <releaseinfo>for p11-kit &version;</releaseinfo>
| ^
| ../p11-kit-docs.xml:11: parser error : Entity 'version' not defined
| <releaseinfo>for p11-kit &version;</releaseinfo>
| ^
| unable to parse ../p11-kit-docs.xml
(From OE-Core rev: b112ba291835061640123c13784e2b33cc73f17d)
Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
This allows spotting ptest regressions without having hard ptest failures
(for that full ptest stability should be achieved).
(From OE-Core rev: 79b54d902df2788b0822b6c9cc14705ab00e6a5b)
Signed-off-by: Alexander Kanavin <alex.kanavin@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
This patch makes gcc produce broken code. It is unclear why it is there
in the first place. Drop it.
(From OE-Core rev: 5f3cace37496fe1dc4fd045f688f7d441505c437)
Signed-off-by: Mans Rullgard <mans@mansr.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
We'd appear to be past the need for a gcc7 patch from 3 years ago now.
(From OE-Core rev: 1ff0eb404819d259c411937bd12c82e04a5837ba)
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Extracting SDK archive may fail if the script is run using a path with
special characters such as space or asterisk. This is because the shell
interprets such characters after expanding the $0 variable.
Added quotes to all uses of the shell variable $0 to fix this.
(From OE-Core rev: 0453acbbd45604537090ec7a3295b34309e6eecb)
Signed-off-by: Andrey Mozzhuhin <amozzhuhin@yandex.ru>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
There are a number of timeout and hang defects where
it would be useful to collect statistics about what
is running on a build host when that condition occurs.
This adds functionality to collect build system stats
on a regular interval and/or on task failure. Both
features are disabled by default.
To enable logging on a regular interval, set:
BB_HEARTBEAT_EVENT = "<interval>"
BB_LOG_HOST_STAT_ON_INTERVAL = <boolean>
Logs are stored in ${BUILDSTATS_BASE}/<build_name>/host_stats
To enable logging on a task failure, set:
BB_LOG_HOST_STAT_ON_FAILURE = "<boolean>"
Logs are stored in ${BUILDSTATS_BASE}/<build_name>/build_stats
The list of commands, along with the desired options, need
to be specified in the BB_LOG_HOST_STAT_CMDS variable
delimited by ; as such:
BB_LOG_HOST_STAT_CMDS = "command1 ; command2 ;... ;"
(From OE-Core rev: edb7098e9e0a8978568a45057c1c3ad2c6cacd67)
Signed-off-by: Sakib Sajal <sakib.sajal@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
The 5.8 kernel is EOL upstream, oe-core has the replacement
5.10 kernel available, 5.8 will be removed and we've moved
all preferred versions to either 5.4 or 5.10.
(From meta-yocto rev: f43972daf703c0f5e4c2600f6e7f5a7a57f0e7db)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
It has been fixed in binutils so we want to drop it with binutils 2.36
upgrade when it happens
(From OE-Core rev: 89ba28933067b38ab1023aaf30951eb6969d50c6)
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
5.8 is EOL upstream, and we now have 5.10 available as the
latest -stable kernel.
We'll keep 5.4, 5.10 and -dev (5.11) as the active kernels
for the upcoming release.
(From OE-Core rev: 134445b7e54489288c887327dc0fcccab514757f)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
- The dir /etc/apt was created in package apt, if package apt was not
installed, there is no need to insert package feed. Otherwise, it
will fail with no such dir
- Output the result of apt install
- Explicitly trust the deb package repository from build
This could avoid apt install warning:
...
WARNING: The following packages cannot be authenticated!
...
- Also trust the inserted deb package repository from PACKAGE_FEED_URIS
(From OE-Core rev: 9ec65b77c9a4a0ba240117edee0e84208c58328e)
Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
- Add nativesdk support and override EXTRA_OECONF and PROV for
nativesdk
- Replace ${bindir} with ${STAGING_BINDIR_NATIVE} for perl-native
shebang to fix QA error of shebang too long in nativesdk build
- Conditionally (except musl) add ldconfig to runtime depends to
fix the following issue on target
[snip]
...
dpkg: warning: 'ldconfig' not found in PATH or not executable
dpkg: error: 1 expected program not found in PATH or not executable
Note: root's PATH should usually contain /usr/local/sbin, /usr/sbin and/sbin
E: Sub-process /usr/bin/dpkg returned an error code (2)
[snip]
(From OE-Core rev: a69eee72b25411880146821fe4ec07be4704afee)
Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
1. Add nativesdk support
- Apply the same patches of native
- Generate the same apt.conf.sample of native
2. Create user '_apt' to fix apt runtime warning
[snip]
$ apt update
...
W: No sandbox user '_apt' on the system, can not drop privileges
[snip]
RP: Add comment about need to user
RP: Add user to selftest static-passwd
(From OE-Core rev: be36b825ada573b2a7df9884eaab78664928594a)
Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Before adding a npmsw fetcher to a recipe we
should first check if the generated shrinkwrap file
contains dependencies.
(From OE-Core rev: ef153ad36d0299e83a03af8f207686d0d8a238b3)
Signed-off-by: Kamel Bouhara <kamel.bouhara@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Some packages don't have shrinkwrap file which
means no npmsw uri is provided in the recipe.
(From OE-Core rev: 47760b0d7d66b2b68ee197d359f0b7b17374d742)
Signed-off-by: Kamel Bouhara <kamel.bouhara@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Fix error like:
Fatal error: can't create tests/ptimer-test.p/..._qemu-5.2.0_hw_core_ptimer.c.o: File name too long
(From OE-Core rev: e125430dea6e5eba5587f56602b006c90ab16509)
Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
The '/sysroot-only' in SYSROOT_DIRS is to be used by recipes which
generate artifacts that are not included in the target filesystem.
Also, remove the ${D}/sysroot-only dir before copying D do PKGD to
generate the packages since it is not supposed to be included in
any package.
This will allow recipes to share non-target filesystem artifacts
without needing to use the DEPLOY_DIR and keep it tidy.
(From OE-Core rev: ed1c156cf46c2cdd8038d6bcf7ed58ebe275e3a1)
Signed-off-by: Diego Sueiro <diego.sueiro@arm.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Recent systemd started using ascii args to "hidepid=" mount options
for proc fs - unconditionally -- even though kernels older than v5.8
emit an error message on each attempt:
root@qemux86-64:~# cat /proc/version
Linux version 5.4.87-yocto-standard (oe-user@oe-host) (gcc version 10.2.0 (GCC)) #1 SMP PREEMPT Fri Jan 8 01:47:13 UTC 2021
root@qemux86-64:~# dmesg|grep proc:
[ 29.487995] proc: Bad value for 'hidepid'
[ 43.170571] proc: Bad value for 'hidepid'
[ 44.175615] proc: Bad value for 'hidepid'
[ 46.213300] proc: Bad value for 'hidepid'
root@qemux86-64:~#
Simply ignoring them as the systemd maintainer unconditionally says
is the resolution is clearly not acceptable, given the above.
Add a kernel version check to avoid calling mount with invalid args.
Further details are within the enclosed systemd commit.
Cc: Luca Boccassi <luca.boccassi@microsoft.com>
Cc: Richard Purdie <richard.purdie@linuxfoundation.org>
(From OE-Core rev: 76107fd7372559aa4cd22a89d5517a4dfce9314d)
Signed-off-by: Paul Gortmaker <paul.gortmaker@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Example use case in OpenBMC: rootfs is squashfs and the system has either
overlayfs for whole rootfs or for some parts (e.g. /etc).
This option will allow to create migration one-shot postinsts using
"pkg_postinst_ontarget_${PN}" routines defined in recipes to fix
files under upper workdir in overlayfs.
(From OE-Core rev: 0977204e16279b117811b5d5cdac5918287e95ac)
Signed-off-by: Anton D. Kachalov <rnouse@google.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
[ Chris Lamb ]
* Truncate jsondiff differences at 512 bytes lest they consume the
entire page.
* Wrap our external call to cmp(1) with a profile (to match the internal
profiling).
* Add a note regarding the specific ordering of the new
all_tools_are_listed test.
[ Dimitrios Apostolou ]
* Performance improvements:
- Improve speed of has_same_content by spawning cmp(1) less
frequently.
- Log whenever the external cmp(1) command is spawn.ed
- Avoid invoking external diff for identical, short outputs.
* Rework handling of temporary files:
- Clean up temporary directories as we go along, instead of at the
end.
- Delete FIFO files when the FIFO feeder's context manager exits.
[ Mattia Rizzolo ]
* Fix a number of potential crashes in --list-debian-substvars,
including explicitly listing lipo and otool as external tools.
- Remove redundant code and let object destructors clean up after
themselves.
[ Conrad Ratschan ]
* Add a comparator for Flattened Image Trees (FIT) files, a boot image
format used by U-Boot.
(From OE-Core rev: 65feaffe9857029fa230935cb0c3e8e6f2815776)
Signed-off-by: Joshua Watt <JPEWhacker@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
In cmake.bbclass we set CMAKE_BUILD_PARALLEL_LEVEL using parallel_make
function and if PARALLEL_MAKE is set to empty string then this variable
is exported as "None" causing cmake to fail with:
"'CMAKE_BUILD_PARALLEL_LEVEL' environment variable
invalid number 'None' given."
(From OE-Core rev: 2f790ded554a52ac18d1c28002142f9c62abec8b)
Signed-off-by: Tomasz Dziendzielski <tomasz.dziendzielski@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
We're still seeing reproducibility issues on the autobuilder with this
recipe. I was able to make the output "match" by rebuilding the PCH and
then rebuilding the binary objects, proving the PCH isn't deterministic.
Disable PCH until we can get to the bottom of why that may be.
(From OE-Core rev: 95686432ecb7e411155563643d59a3d5f683937c)
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
This fixes a crash with "find" when running a native tool and *-native
directories do not exist under the binary directory in the sysroot.
This happened because the directory wildcard was passed as part of the
root directory.
The directory wildcard is now passed by "-name", which returns an empty
result if no matching directory.
(From OE-Core rev: f6c90ed0ad24b7d4f892e22e088b1578824eb1d3)
Signed-off-by: Adrian Herrera <adrian.herrera@arm.com>
Change-Id: Iba7acd8bbd7e0beb4d25c984f6af7a4fd21486e6
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
There is code to remove the prefix CMAKE_SOURCE_DIR from __FILENAME__ paths
used for logging with LOGE() in the code. We need to make this match the value we use
in the debug source remapping from CFLAGS. If we don't, the code is firstly removing
the incorrect prefix and possibly moving outside the string, secondly, it causes a
reproducibility issue depending on the length of path the build happens in.
Add a small patch and configuration to avoid the issue.
(From OE-Core rev: 410dbfd1f82b4862ced6fca88789edf0fd9d65df)
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Build and boot for all these machines and also explicitly set the
preferred kernel version for the x86 machines so that we can override
the default setting in oe-core.
(From meta-yocto rev: a93344439e01e8aba4ba15d3123ce31b4500add1)
Signed-off-by: Kevin Hao <kexin.hao@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
This reverts commit da27ca50eebf80463cb8d7b85f3b705254823413.
We usually select the preferred kernel version in the machine conf. This
is also what recommend in the BSP Developer's Guide. The beaglebone-yocto
and edgerouter have already done this in their machine conf files.
Resetting it in the layer conf is redundant. So revert this patch first,
we will also explicitly select the kernel version for the x86 machines
in the following patch.
(From meta-yocto rev: 825645ff2b663ae5c5845e8ae4679f6e346eac8c)
Signed-off-by: Kevin Hao <kexin.hao@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Error log:
| Run-time dependency libmfx found: YES 1.34
| Has header "mfx/mfxdefs.h" : YES
|
| ../gst-plugins-bad-1.18.2/sys/msdk/meson.build:75:2: ERROR: Include dir /usr/include/mfx does not exist.
|
| A full log can be found at /home/s
When msdk is enable in PACKAGECONFIG, plugin fails to locate includedir, so
adding a patch which prepend PKG_CONFIG_SYSROOT_DIR to the dir path
(From OE-Core rev: 204aa9cfa6ac99846ac494778dd143a13746ac7e)
Signed-off-by: Naveen Saini <naveen.kumar.saini@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Helps building static tools which depend on libyaml during build or
shipped with SDK
libyaml is MIT licensed so static linking would not be as prohibitive
(From OE-Core rev: 1c2be08fc66c09ed7547eda172da4c99e8563091)
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Integrating the following commit(s) to the linux-yocto config:
47c7a3148a4 soc/skylake: remove CONFIG_SND_SOC_INTEL_SST_ACPI
8124c015448 features/security: remove CONFIG_REFCOUNT_FULL
7073e149653 media-usb-tv: remove CONFIG_VIDEO_USBVISION
4480a5c5784 beaglebone: Drop the obsolete CONFIG_BACKLIGHT_GENERIC
(From OE-Core rev: a7a23a166e2b1cb3f330d6df2f681b525748c2df)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Updating linux-yocto/5.10 to the latest korg -stable release that comprises
the following commits:
f5247949c0a9 Linux 5.10.5
12d377b93eef device-dax: Fix range release
aceb8ae8e3b1 ext4: avoid s_mb_prefetch to be zero in individual scenarios
aff18aa806fd dm verity: skip verity work if I/O error when system is shutting down
610d2fa0ec76 ALSA: pcm: Clear the full allocated memory at hw_params
c7b04d27c910 io_uring: remove racy overflow list fast checks
13f9eec22973 s390: always clear kernel stack backchain before calling functions
330c1ee7d593 tick/sched: Remove bogus boot "safety" check
9b22bc0f1663 drm/amd/display: updated wm table for Renoir
86be0f2a0ef9 ceph: fix inode refcount leak when ceph_fill_inode on non-I_NEW inode fails
8bcfa178f92a NFSv4.2: Don't error when exiting early on a READ_PLUS buffer overflow
ef3b9ad967d0 um: ubd: Submit all data segments atomically
a8b49c4bdf87 um: random: Register random as hwrng-core device
0aa2eecf8534 watchdog: rti-wdt: fix reference leak in rti_wdt_probe
eae1fb3bc565 fs/namespace.c: WARN if mnt_count has become negative
b1e155ccc882 powerpc/64: irq replay remove decrementer overflow check
8b5b2b768344 module: delay kobject uevent until after module init call
db6129f6ad88 f2fs: fix race of pending_pages in decompression
ee3f8aefd037 f2fs: avoid race condition for shrinker count
3c0f0f5f58a7 NFSv4: Fix a pNFS layout related use-after-free race when freeing the inode
06ac2ca0989d i3c master: fix missing destroy_workqueue() on error in i3c_master_register
498d90690f24 powerpc: sysdev: add missing iounmap() on error in mpic_msgr_probe()
acc3c8cc27a8 rtc: pl031: fix resource leak in pl031_probe
26058c397b9f quota: Don't overflow quota file offsets
bb2ab902f6f0 module: set MODULE_STATE_GOING state when a module fails to load
0ad9a6e6139d rtc: sun6i: Fix memleak in sun6i_rtc_clk_init
b5a2f093b6b1 io_uring: check kthread stopped flag when sq thread is unparked
908030501772 fcntl: Fix potential deadlock in send_sig{io, urg}()
721972b8665f ext4: check for invalid block size early when mounting a file system
8ed894f1117e bfs: don't use WARNING: string when it's just info.
fb05e983eaf7 ALSA: rawmidi: Access runtime->avail always in spinlock
cf7fe671cd7e ALSA: seq: Use bool for snd_seq_queue internal flags
1c5a034710da f2fs: fix shift-out-of-bounds in sanity_check_raw_super()
2b56f16e3487 media: gp8psk: initialize stats at power control logic
f290cffdf761 misc: vmw_vmci: fix kernel info-leak by initializing dbells in vmci_ctx_get_chkpt_doorbells()
a021b6696132 reiserfs: add check for an invalid ih_entry_count
397971e1d891 fbcon: Disable accelerated scrolling
df83b9b67449 Bluetooth: hci_h5: close serdev device and free hu in h5_close
9d4053cfb3f3 scsi: cxgb4i: Fix TLS dependency
fdac87be009f zlib: move EXPORT_SYMBOL() and MODULE_LICENSE() out of dfltcc_syms.c
bf81221a40fa cgroup: Fix memory leak when parsing multiple source parameters
9154d2eeb4f5 tools headers UAPI: Sync linux/const.h with the kernel headers
e8afbbac2f68 uapi: move constants from <linux/kernel.h> to <linux/const.h>
ce00a7d0d952 io_uring: fix io_sqe_files_unregister() hangs
b25b86936a8d io_uring: add a helper for setting a ref node
25a2de679b5d io_uring: use bottom half safe lock for fixed file data
7247bc60e8e1 io_uring: don't assume mm is constant across submits
a5184f3cc284 lib/zlib: fix inflating zlib streams on s390
98b57685c26d mm: memmap defer init doesn't work as expected
df73c80338ef mm/hugetlb: fix deadlock in hugetlb_cow error path
092898b070e0 scsi: block: Fix a race in the runtime power management code
1a58c171a523 opp: Call the missing clk_put() on error
e8322837a2e5 opp: fix memory leak in _allocate_opp_table
c6dd62c14b32 spi: dw-bt1: Fix undefined devm_mux_control_get symbol
6d63cc42bb8f jffs2: Fix NULL pointer dereference in rp_size fs option parsing
58dc34446c52 jffs2: Allow setting rp_size to zero during remounting
52504a61ab99 io_uring: close a small race gap for files cancel
8b8a688260b4 drm/amd/display: Add get_dig_frontend implementation for DCEx
5ef98378eff8 md/raid10: initialize r10_bio->read_slot before use.
62162b322364 ethtool: fix string set id check
95fcb69c491e ethtool: fix error paths in ethnl_set_channels()
aeab3d7a04f8 mptcp: fix security context on server socket
a969a632cbe7 net/sched: sch_taprio: reset child qdiscs before freeing them
(From OE-Core rev: f091d74c76b5843b9077b21a9d6dff81fecd6e54)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
