Liu Yiding [Mon, 25 Aug 2025 03:51:06 +0000 (11:51 +0800)]
python3-cython: upgrade 3.1.2 -> 3.1.3
Changelog:
==========
- Some method calls with 0 or 1 argument failed to use ``PyObject_VectorCallMethod()``.
- Walrus assignments of literal Python integers could generate invalid C code.
(Github issue :issue:`6989`)
- ``cython.pythread_type_lock`` (also used as fallback for ``cython.pymutex``)
could stall on heavily contended locks.
(Github issue :issue:`6999`)
- C string arrays (not pointers) always coerced to the Python default string type,
even on explicit casts to other string types.
(Github issue :issue:`7020`)
- Unterminated ``\N{}`` character escapes in strings could unrail the parser.
(Github issue :issue:`7056`)
- An internal C function was not marked as ``static`` and leaked a linker symbol.
(Github issue :issue:`6957`)
- Some Unicode letters were not recognised as lexically valid name parts.
(Github issue :issue:`7059`)
- Compatibility with PyPy3.8 was lost by accident.
- The Linux binary wheels of 3.1.2 used SSSE3 CPU instructions which are not available on some CPUs.
(Github issue :issue:`7038`)
Signed-off-by: Liu Yiding <liuyd.fnst@fujitsu.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Liu Yiding [Mon, 25 Aug 2025 03:51:05 +0000 (11:51 +0800)]
python3-click: upgrade 8.2.1 -> 8.2.2
Changelog:
==========
- Fix reconciliation of default, flag_value and type parameters for
flag options, as well as parsing and normalization of environment variables.
- Fix typing issue in BadParameter and MissingParameter exceptions for the
parameter param_hint that did not allow for a sequence of string where the
underlying functino _join_param_hints allows for it.
- Use the value of Enum choices to render their default value in help
screen.
- Fix completion for the Z shell (zsh) for completion items containing
colons.
- Don't include envvar in error hint when not configured.
- Fix a rare race in click.testing.StreamMixer's finalization that manifested
as a ValueError on close in a multi-threaded test session.
Signed-off-by: Liu Yiding <liuyd.fnst@fujitsu.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Liu Yiding [Mon, 25 Aug 2025 03:51:02 +0000 (11:51 +0800)]
librsvg: upgrade 2.60.0 -> 2.61.0
Changelog:
============
- The minimum supported Rust version (MSRV) is 1.85.1.
- #1178: Improved performance when using an application-supplied
stylesheet for an SVG handle - do cascading only once in that case
instead of twice.
- #1164: Don't panic if there are no fonts installed - this happens
easily in Alpine containers (Lovell Fuller).
- Update to gtk-rs-core 0.21 (Maximiliano Sandoval).
- Vastly improved infrastructure to generate the development guide and
the rsvg-convert manual page (Toluwaleke Ogundipe).
- Start implementing the SVG2 text stack (Adetoye Anointing, from his
Outreachy internship).
- Fixed the Windows CI (Chun-wei Fan).
- Lots of internal cleanups to make it easier to remove Cairo in the future.
Signed-off-by: Liu Yiding <liuyd.fnst@fujitsu.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Liu Yiding [Mon, 25 Aug 2025 03:51:01 +0000 (11:51 +0800)]
libinput: upgrade 1.28.1 -> 1.29.0
Changelog:
===========
- High-resolution scroll wheels have better heuristics to avoid inadvertent
scrolls. This should also help with not-so-high-resolution scroll wheels which
can skip those heuristics now, resulting in better responsiveness.
- Virtual devices (e.g. uinput) are now detected in libinput and some internal
heuristics are disabled for those (e.g. tablet smoothing)
- Tablet tools with an fixed eraser button (almost all these days) can now
configure that eraser button to be a regular button instead.
- Jumping cursors on Asus "ASUE..." touchpads have lost their excitement and
are no longer jumping.
- libinput now uses a plugin pipeline internally. This prepares the way for
public plugins, planned for libinput 1.30.
- mtdev is now an optional dependency
- libinput debug-tablet-pad is a new tool for interactive tablet pad debugging
- a lot of internal code modernization, making the code nicer to work on and
test cases easier to write
Liu Yiding [Mon, 25 Aug 2025 03:51:00 +0000 (11:51 +0800)]
harfbuzz: upgrade 11.2.1 -> 11.4.1
Changelog:
=============
- Speed up handling fonts with very large number of variations:
- Drawing by up to 40%.
- Calculating glyph extents by up to 15%.
- Getting horizontal glyph advances by up to 45%.
- Speed up getting horizontal and vertical glyph advances by up to 24%.
- Significantly speed up vertical text shaping.
- Various documentation improvements.
- Various build improvements.
- Various subsetting improvements.
- Various improvements to Rust font functions (fontations integration) and shaper (HarfRust integration).
- Rename harfruzz option and shaper to harfrust following upstream rename.
- Implement hb_face_reference_blob() for DirectWrite font functions.
- New API:
+hb_font_get_glyph_origins_func_t
+hb_font_get_glyph_h_origins_func_t
+hb_font_get_glyph_v_origins_func_t
+hb_font_funcs_set_glyph_h_origins_func()
+hb_font_funcs_set_glyph_v_origins_func()
+hb_font_get_glyph_h_origins()
+hb_font_get_glyph_v_origins()
- Fix crasher in the glyph_v_origin function introduced in 11.3.0
- Fix build with non-compliant C++11 compilers that don't recognize the "and" keyword
- Fix bug in vertical shaping of fonts without the vmtx table
- General shaping and subsetting speedups.
- Fix in Graphite shaping backend when glyph advances became negative.
- Subsetting improvements, pruning empty mark-attachment lookups.
- Don't use the macro name _S, which is reserved by system liberaries.
- Build fixes and speedup.
- Add a kbts shaping backend that calls into the kb_text_shape
single-header shaping library.
Signed-off-by: Liu Yiding <liuyd.fnst@fujitsu.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Peter Marko [Tue, 26 Aug 2025 18:59:22 +0000 (20:59 +0200)]
cve-update: log timestamps and add force update for future time
CVE update is currently not working properly on autobuilder.
This improves logging for problem analysis.
Future time is something which could be reason for current autobuilder
problems since the DB was not updated for more than 3 months by now.
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
cve-update-db-native: FKIE CVE parsing: Use Secondary metric
If there is no primary metric use the Secondary one.
Signed-off-by: Jonathan Schnitzler <jonathan.schnitzler@faro.com> Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Use "attackVector" for CVSS >= 3 as it only CVSS v2 uses "accessVector".
Signed-off-by: Jonathan Schnitzler <jonathan.schnitzler@faro.com> Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Peter Marko [Sun, 24 Aug 2025 14:57:43 +0000 (16:57 +0200)]
cve-update: remove cleanup of db_file in downloads
Since the code was changed to update the DB in temporary file, code
cleaning the final file in downloads is never executed.
Remove it.
Since the code always removes both files in temporary directory, remove
also comment which is trying to differentiate this code from code just
removed.
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Peter Marko [Sun, 24 Aug 2025 14:57:42 +0000 (16:57 +0200)]
cve-update: decrease update interval to 23 hours
If the job runs every day at the same time, it usually updates only
every second day, because it takes non-0 time for DB update and set the
timestamp. So it does not take full 24-hours from time when the DB was
updated until the next job starts.
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
This seems to be misimplemented when re-adding update from nvd1 feed.
Use file in temporary directory instead of downloads directory for
update process.
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Peter Marko [Sun, 24 Aug 2025 11:51:26 +0000 (13:51 +0200)]
binutils: set status for CVE-2025-7545 and CVE-2025-7546
The patches linked in NVD reports are present in binutils-2_45-branch.
Technically the NVD is wrong (=2.45 should be <2.45), but fixing it in
the recipe is not problematic as all cpe-stable-backport will be
automatically removed in next upgrade so will not be "kept forever".
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diego Sueiro [Wed, 20 Aug 2025 11:24:55 +0000 (12:24 +0100)]
wic: Fix --overhead-factor and --extra-space checks
If --overhead-factor and --extra-space are passed with =FOO the
check fails. Fix this by checking parsed.overhead_factor and
parsed.extra_space instead.
Signed-off-by: Diego Sueiro <diego.sueiro@arm.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Peter Marko [Sat, 23 Aug 2025 20:15:12 +0000 (22:15 +0200)]
cve-update-db-native: fix fetcher for CVEs missing nodes
As of now, update of CVE DB from FKIE source (which is the defailt)
fails with following error:
File: '<build>/poky/meta/recipes-core/meta/cve-update-db-native.bb', lineno: 393, function: update_db_fkie
0389: [cveId, cveDesc, cvssv2, cvssv3, cvssv4, date, accessVector, vectorString]).close()
0390:
0391: for config in elt['configurations']:
0392: # This is suboptimal as it doesn't handle AND/OR and negate, but is better than nothing
*** 0393: for node in config["nodes"]:
0394: parse_node_and_insert(conn, node, cveId, False)
0395:
0396:def update_db(d, conn, jsondata):
0397: if (d.getVar("NVD_DB_VERSION") == "FKIE"):
Exception: KeyError: 'nodes'
Entry for new CVE-2025-32915 is broken.
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Change-Id: Ia1fdf7698ebeef62a88052713645d5b499164353 Signed-off-by: Per x Johansson <perxjoh@axis.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Harish Sadineni [Fri, 22 Aug 2025 07:12:27 +0000 (00:12 -0700)]
gcc-testsuite: Fix test failures with output pattern due to ssh warning.
when running oe-selftest for gcc some of the output pattern matchng test cases
were getting failed due to below issue.
Output line 1 was:
Warning: Permanently added '192.168.7
Should match (from /poky/poky/build-st/tmp/work-shared/gcc-15.1.0-r0/sources/
gcc-15.1.0/gcc/testsuite/gcc.dg/dg-output-file-1-lp64.txt):
This is a test output for lp64 target
Failed test for output line 1 This is a test output for lp64 target
Harish Sadineni [Fri, 22 Aug 2025 07:12:25 +0000 (00:12 -0700)]
gcc: Oe-selftest failure analysis - fix for pr90579.c test failures
When gcc build with PIE enabled the following tests
were getting failed:
FAIL: gcc.target/i386/pr90579.c scan-assembler vaddsd\tr\\+40
FAIL: gcc.target/i386/pr90579.c scan-assembler vaddsd\tr\\+32
FAIL: gcc.target/i386/pr90579.c scan-assembler vaddsd\tr\\+24
FAIL: gcc.target/i386/pr90579.c scan-assembler vaddsd\tr\\+16
Detailed bug info & upstream fix is here:
https://gcc.gnu.org/bugzilla/show_bug.cgi?id=118885
Khem Raj [Fri, 22 Aug 2025 05:17:25 +0000 (22:17 -0700)]
gettext: Force UTF-8 runtime and skip requiring ISO-8859-1
On musl, there is no real legacy (non-UTF-8) fr_FR locale.
These tests are designed for libcs that ship both fr_FR (ISO-8859-1)
and fr_FR.UTF-8. So the right thing will be to SKIP these tests
Unsetting LOCALE_FR will ensure that it does not enable ISO-8859-1
path, so reset it in run-ptest but thats not enough because it is
being set in the test's own init-env file as well so clear it in that
file as well.
Leon Anavi [Thu, 21 Aug 2025 20:43:50 +0000 (23:43 +0300)]
connman: Upgrade 1.44 -> 1.45
Upgrade to release 1.45:
- Add missing newlines on error messages
- timezone: Replace Localtime file copy with symbolic link
- Fix CVE-2025-32366 vulnerability
- Fix CVE-2025-32743 vulnerability
- vpn: Fix extracting of PrefixLength D-Bus value
- vpn: Fix mem leak of gid_list in task setup
- dchpv6: Set err to 0 when client creation succeeds
Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Changes between 9.1.1198 -> 9.1.1652
====================================
https://github.com/vim/vim/compare/v9.1.1198...v9.1.1652
Refresh patches.
Add tag to SRC_URI.
Disable newly introduced wayland support (in patch version 1485).
To this belongs also adding recursion in delete command for dir auto
which was newly failing as there is wayland directory inside now.
If someone is interested, this can be probably enabled, but without
additional work it results in compilation error due to function
redefinition conflicts.
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Khem Raj [Thu, 21 Aug 2025 18:12:46 +0000 (11:12 -0700)]
findutils: Use C locale to run ptests
Ensure consistent locale setting, since we are not
using make environemnt to run the tests like
upstream does. The test scripts are run explicitly
This fixes a problem with musl ptest runs where the
locale-driven quoting ends up using C.UTF-8 quotes
in gnulib’s quotearg() end up with curly quotes
instead of ASCII quote character which is expected
and result is reported as failure even though numbers
are matching.
Fixes:
-find: invalid group name or GID argument to -group: '4294967296'
+find: invalid group name or GID argument to -group: ‘4294967296’
Ross Burton [Thu, 21 Aug 2025 11:58:29 +0000 (12:58 +0100)]
babeltrace2: don't install static modules
There's no point building or installing static plugins, so apply a patch
to only build shared plugins.
Poky passes --disable-static via no-static-libs.inc, but anyone building
babeltrace2 with nodistro or another distro that doesn't use
no-static-libs.inc will fail to build babeltrace2 because of packaging
errors around the static version of the python plugin.
Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Ross Burton [Thu, 21 Aug 2025 11:02:42 +0000 (12:02 +0100)]
nghttp2: rewrite recipe to be an idiomatic library recipe
This recipe for nghttp2 doesn't build any of the binaries, just the core
library, but is structured like a recipe that is primarily an application
that happens to ship libraries.
Remove the lib${BPN} package and put the library into PN (which will then
be debian-renamed).
Use the shorthand option to just build the library.
Add documentation enabling/disabling options so we don't install the
docs if not needed. Currently there are no extra dependencies as the
sphinx-generated manpages are pre-built in the tarballs, but this could
change.
Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Falk Bauer [Thu, 21 Aug 2025 07:09:44 +0000 (09:09 +0200)]
psplash: Do not mount PSPLASH_FIFO_DIR if the env variable is empty
The script file psplash.sh tries to mount the PSPLASH_FIFO_DIR variable.
If the variable is empty, the mountpoint command returns a usage text
(busybox mountpoint here, util-linux mountpoint behaves the same):
The return code with this console output is 0 and the mount command in the
if statement is executed.
Then this mount also fails with an empty mountpoint argument.
The source code of psplash respects an empty PSPLASH_FIFO_DIR variable
(see psplash.c) and makes a fallback to "/run". So the psplash.sh script should
also respect the empty var.
Try to mount the PSPLASH_FIFO_DIR only if the variable is not empty.
Khem Raj [Thu, 21 Aug 2025 06:45:25 +0000 (23:45 -0700)]
python3: Pass PLATFORM_TRIPLET explicitly when cross compiling
Do not rely on how python detects the platform triplet
We have been lucky to get it cross-compiling since our build hosts
are also using glibc, so the headers and gcc install locations match
and the values it detects are mostly what we will need for glibc
based targets, but when we use musl e.g. the problems show up where
python3 is not able to automitically discover python modules so any
python package having compiled .so modules fail to load.
Example is ptest failures with TCLIBC = "musl"
and running core-image-ptest-python3-rpds-py
This is revamp of patch [1], currently its working for glibc
based cross-compiling because we build on linux systems which are also
glibc based, but python on musl shows the problem.
When python was upgraded to 3.12 [2], this patch was wrongly dropped
and sadly regression went unnoticed, without this patch
Python's automatic module discovery does not work when it is cross-compiled
this is because it tries host tools and compiler installation during configure
to detect it. .so modules e.g. modulename.cpython-*.so are not seen as a result.
This is seen when running python3-rpds-py ptests where it should load
rpds.cpython-313-x86_64-linux-musl.so rpds.so but it does not and the module test
fail.
Khem Raj [Thu, 21 Aug 2025 06:45:21 +0000 (23:45 -0700)]
elfutils: Add run-backtrace-{native|data}.sh to known failures
musl's thread startup/teardown sequences and frame-pointer handling
differ from glibc. elfutils can fail to terminate unwinds properly
in multithreaded musl apps which leads to truncated or bogus traces
and then the test's "must contain main" assertion fails.
CVE entry was corrected in NVD DB.
It looks like NVD is now getting faster and more reliable with
annotations...
Signed-off-by: Peter Marko <peter.marko@siemens.com> Cc: Ross Burton <ross.burton@arm.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Liu Yiding [Wed, 20 Aug 2025 08:49:37 +0000 (16:49 +0800)]
nghttp2: remove nghttp2-proxy
fix issue that:
| nothing provides nghttp2-proxy >= 1.66.0 needed by nghttp2-1.66.0-r0.core2_64 from base
nghttp2-proxy is supposed to involve files ${bindir}/nghttpx and ${datadir}/${BPN}/fetch-ocsp-response
But now nghttp2-proxy will not be created because:
1. ENABLE_APP=OFF in EXTRA_OECMAKE makes ${bindir}/nghttpx not be produced
2. 1.66.0 version has removed fetch-ocsp-response-file according to the Changelog
| cat /tmp/work/aarch64-ubinux-linux/nghttp2/1.66.0/sources/nghttp2-1.66.0/ChangeLog
| ....
| nghttpx: Remove OCSP stapling
|
| This commit removes OCSP stapling features and the following options
| are deprecated and have no effect:
|
| - fetch-ocsp-response-file
| - no-ocsp
| - no-verify-ocsp
| - ocsp-update-interval
Signed-off-by: Liu Yiding <liuyd.fnst@fujitsu.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Khang D Nguyen [Wed, 20 Aug 2025 02:55:24 +0000 (09:55 +0700)]
systemd.bbclass: deduplicate template and instance lines in preset file
If SYSTEMD_SERVICE contains both template and instance names, the
preset file will contain two lines: one describing the template name
and one describing the instance names.
This is problematic because systemd.preset only use the first matching
one [1], leading to the instances not getting enabled.
For example, openbmc's obmc-console recipe has the following
final SYSTEMD_SERVICE variable:
fragments/autobuilder: add go to SDK_TOOLCHAIN_LANGS
For reasons unknown, only rust was listed, which means
nativesdk-go was not built or tested, which lead to
breakage like one fixed in
https://git.yoctoproject.org/poky/commit/?id=a669cd2e0c760da9d7e872daea9590fc9e86d766
Note that with this change only building and installing go
into SDKsis tested, but no tests are performed with the
toolchain itself in testsdk/testimage.
For that, a bug has been filed:
https://bugzilla.yoctoproject.org/show_bug.cgi?id=15953
Remove go from x32 and mingw targets as it will not build for them.
(next to similar removals for rust)
Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
goarch.bbclass: do not leak TUNE_FEATURES into crosssdk task signatures
The default assignments look like this:
TARGET_GO386 = "${@go_map_386(d.getVar('TARGET_ARCH'), d.getVar('TUNE_FEATURES'), d)}"
TUNE_FEATURES is a target-specific variable, and so should be used
only for target builds. The change is similar to what is already done
for native packages.
Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Peter Marko [Mon, 18 Aug 2025 19:56:02 +0000 (21:56 +0200)]
glib-2.0: update 2.84.2 -> 2.84.4
Overview of changes in GLib 2.84.4, 2025-08-08
==============================================
* Bugs fixed:
- #3716 (CVE-2025-7039) (#YWH-PGM9867-104) Buffer Under-read on GLib through
glib/gfileutils.c via get_tmp_file() (Michael Catanzaro)
- #3721 GFile leak in g_local_file_set_display_name during error handling
(Philip Withnall, Michael Catanzaro)
- !4668 Backport !4667 “Incorrect output parameter handling in closure helper
of g_settings_bind_with_mapping_closures” to glib-2-84
- !4675 Backport !4674 “gfileutils: fix computation of temporary file name” to
glib-2-84
- !4679 Backport !4677 and !4678 “Fix GFile leak in
g_local_file_set_display_name()” to glib-2-84
- !4697 Backport !4696 “gthreadpool: Catch pool_spawner creation failure” to
glib-2-84
- !4705 Backport !4702 “gio/filenamecompleter: Fix leaks” to glib-2-84
- !4711 Backport !4708 “gfilenamecompleter: Fix g_object_unref() of undefined
value” to glib-2-84
Overview of changes in GLib 2.84.3, 2025-06-13
==============================================
* Bugs fixed:
- !4656 Backport !4655 “gstring: Fix overflow check when expanding the string”
to glib-2-84
!4656 solves first half of CVE-2025-6052
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Ricardo Salveti [Tue, 19 Aug 2025 00:56:05 +0000 (21:56 -0300)]
initramfs-framework: mount /run and move to rootfs before switch_root
Mount /run as tmpfs during early init and include it in the set of
mounts moved to $ROOTFS_DIR prior to exec switch_root.
Having /run available early lets initramfs modules stamp state that can
later influence systemd service jobs, since systemd will reuse the mount
point instead of creating a new one during boot.
This is particularly useful with ostree, as it uses /run/ostree-booted
as way to describe that the rootfs comes from an ostree deployment.
Changelog:
=================
- audioconvert: Fix regression when using a mix matrix
- audioconvert: mix-matrix causes caps negotiation failure
- decodebin3: Don't error on an incoming ONVIF metadata stream
- gloverlay: Recompute geometry when caps change, and load texture after stopping and starting again
- uridecodebin3: Add missing locking and NULL checks when adding URIs to messages
- uridecodebin3: segfault in update_message_with_uri() if no decoder available
- videorate, imagefreeze: add support for JPEG XS
- gst-device-monitor-1.0: Add shell quoting for launch lines
- gst-device-monitor-1.0: Fix criticals, and also accept utf8 in launch lines
- gst-device-monitor-1.0: Use gst_print instead of g_print
Refer to release note, no changes this time
https://gstreamer.freedesktop.org/releases/1.26/#1.26.5
Signed-off-by: Liu Yiding <liuyd.fnst@fujitsu.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Moritz Haase [Mon, 18 Aug 2025 06:44:13 +0000 (08:44 +0200)]
libcomps: upgrade 0.1.21 -> 0.1.22
The project did not publish release notes, but the list of changes is available
at [0]. The new release brings a fix for [1] and ships the patch to build with
CMake 4+.
Richard Purdie [Tue, 19 Aug 2025 09:09:07 +0000 (10:09 +0100)]
lttng-tools: Disable slow tests to fix ptest runs
Add a patch disabling some ptests in lttng-tools since they are slow, give
no output on the console and cause the ptest run to error due to our 450s
inactivity timeout.
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* Remove 0001-fix-lttng-tools-fails-to-compile-with-libxml2-2.14.0.patch
as the issue has been fixed in another way as [1].
* Rebase 0001-tests-do-not-strip-a-helper-library.patch and disable-tests.patch
to fuzz issue.
* Add babeltrace2 to DEPENDS to fix below configure error.
| configure: error: libbabeltrace2 is required to build tests
* src/common/config/session.xsd is restructured to src/common/session.xsd [2].
* Add 0001-gen-ust-events-constructor-change-rpath-to-libdir-li.patch to fix
the below buildpath QA issue.
ERROR: lttng-tools-2.14.0-r0 do_package_qa: QA Issue: File /usr/lib/lttng-tools/ptest/tests/utils/testapp/gen-ust-events-constructor/gen-ust-events-c-constructor-so in package lttng-tools-ptest contains reference to TMPDIR [buildpaths]
ERROR: lttng-tools-2.14.0-r0 do_package_qa: QA Issue: lttng-tools-ptest: /usr/lib/lttng-tools/ptest/tests/utils/testapp/gen-ust-events-constructor/gen-ust-events-c-constructor-so contains bad RPATH /buildarea3/myu2/yocto/builds/ptest-2025-07-09/tmp/work/core2-64-poky-linux/lttng-tools/2.14.0/build/tests/utils/testapp/gen-ust-events-constructor [rpaths]
ERROR: lttng-tools-2.14.0-r0 do_package_qa: QA Issue: File /usr/lib/lttng-tools/ptest/tests/utils/testapp/gen-ust-events-constructor/gen-ust-events-constructor-so in package lttng-tools-ptest contains reference to TMPDIR [buildpaths]
ERROR: lttng-tools-2.14.0-r0 do_package_qa: QA Issue: lttng-tools-ptest: /usr/lib/lttng-tools/ptest/tests/utils/testapp/gen-ust-events-constructor/gen-ust-events-constructor-so contains bad RPATH /buildarea3/myu2/yocto/builds/ptest-2025-07-09/tmp/work/core2-64-poky-linux/lttng-tools/2.14.0/build/tests/utils/testapp/gen-ust-events-constructor [rpaths]
* Add the redpends for lttng-tools-ptest to fix the test failure.
ERROR: tools/live/test_early_inactive_app.py
============================================
Traceback (most recent call last):
File "/usr/lib/lttng-tools/ptest/tests/regression/./tools/live/test_early_inactive_app.py", line 21, in <module>
import lttngtest
File "/usr/lib/lttng-tools/ptest/tests/utils/lttngtest/__init__.py", line 9, in <module>
from .environment import *
File "/usr/lib/lttng-tools/ptest/tests/utils/lttngtest/environment.py", line 13, in <module>
import random
ModuleNotFoundError: No module named 'random'
ERROR: tools/live/test_early_inactive_app.py - missing test plan
ModuleNotFoundError: No module named 'random'
ModuleNotFoundError: No module named 'xml'
ModuleNotFoundError: No module named 'tempfile'
ModuleNotFoundError: No module named 'json'
ModuleNotFoundError: No module named 'bt2'
RP: Added install of missing expect scripts
Add new dependency on lttng-ust-dev due to test requirement (and remove QA check warning)
Add missing dependency on python3-asyncio for concurency module
Signed-off-by: Mingli Yu <mingli.yu@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Michael Jeanson [Thu, 14 Aug 2025 17:49:50 +0000 (17:49 +0000)]
babeltrace2: Fix python bindings ptests
The python bindings ptests weren't functional. This patch:
* Adds a patch to allow the tests to be executed on target standalone
* Sets a variable to allow the right install path to be passed to setup.py
* Sets the right paths in the ptest runner script for the python modules
* Installs the missing data needed to run the tests
Base patch was written by Michael Jeanson, RP then tweaked wording
and formatting and added config to complete the work on all arches.
Signed-off-by: Michael Jeanson <mjeanson@efficios.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* The lttng-tools test fails as below as it needs bt2 module.
ERROR: ust/high-throughput/test_high_throughput_snapshot.py
===========================================================
Traceback (most recent call last):
File "/usr/lib/lttng-tools/ptest/tests/regression/./ust/high-throughput/test_high_throughput_snapshot.py", line 26, in <module>
import bt2
ModuleNotFoundError: No module named 'bt2'
Enable python plugins for babeltrace2 to provide the above support.
* Add swig-native to DEPENDS to fix the below configure error.
| configure: error: SWIG 2.0.0 or newer is required to build the python bindings
* There are some ptest failed cases after enable python plugins and
track the failed ptest as https://bugs.lttng.org/issues/1430.
Signed-off-by: Mingli Yu <mingli.yu@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Peter Marko [Fri, 15 Aug 2025 17:05:17 +0000 (19:05 +0200)]
dpkg: set status for CVE-2025-6297
NVD tracks this CVE as "Up to (excluding) 2025-06-30"
(which is fix commit date, not dpkg version)
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Simone Weiß [Sat, 16 Aug 2025 20:24:06 +0000 (20:24 +0000)]
libadwaita: upgrade 1.7.5 -> 1.7.6
Changes:
- AdwAlertDialog/AdwMessageDialog
- Emit ::response when cancelled after calling choose()
- AdwDialog
- Fix widget activation in window-backed dialogs
- Fix set_focus() in window-backed dialogs
- AdwLayoutSlot
- Error out if ID is not set
- AdwNavigationView
- Defer swipe start to ::begin-swipe
- AdwTabOverview
- Make button hitboxes larger
- AdwWrapLayout
- Fix a memory leak
- Various fixes
Signed-off-by: Simone Weiß <simone.p.weiss@posteo.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Richard Purdie [Thu, 14 Aug 2025 12:14:43 +0000 (13:14 +0100)]
nfs-utils: Fix do_configure when switching configurations
On the autobuilder we saw:
ERROR: nfs-utils-2.8.3-r0 do_package_qa: QA Issue: nfs-utils package is not obeying usrmerge distro feature. /lib should be relocated to /usr. [usrmerge]
This can be reproduced by running do_configure with sysvinit, switching to
systemd and re-running do_configure. udev_rulesdir will then have the wrong
value.
Fix the sed expressions so the task can rerun correctly and update as
desired.
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Richard Purdie [Sun, 10 Aug 2025 10:07:09 +0000 (11:07 +0100)]
Revert "qemux86-64: Reduce tuning to core2-64"
This was originally applied as our autobuilder had older hardware and couldn't
cope with the newer settings. This has been resolved in the new cluster so we
can go back to the newer tuning, which software is now more likely to need.
Khem Raj [Sun, 17 Aug 2025 05:53:31 +0000 (22:53 -0700)]
perl: Disable builtin memcpy & string inlines with gcc/x86-64-v3
PERL built with GCC 15 and -march=x86-64-v3 fails several
op/pack.t cases due to aggressive lowering of __builtin_memcpy
and inlined/fortified string ops. In pp_pack, some in-place copies
can overlap, treating memcpy as non-overlapping yields corrupted
bytes (zeros or wrong prefixes).
The issue does not reproduce with -march=core2.
When using x86-64-v3 memcpy gets emitted very aggressively
(vectorized / reordered) and assumes no overlap.
The flags force calls through libc (overlap-safe behavior),
restoring deterministic pack/unpack and fixing the test failures.
Inline functions could be faster in execution but correctness is
more important
Fixes [YOCTO #15950]
Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
projects / thirdparty / openembedded / openembedded-core-contrib.git / log
