Khem Raj [Thu, 28 Aug 2025 02:51:34 +0000 (19:51 -0700)]
lttng-tools: Filter out regression testsuite on musl systems
regression testsuite does not run to finish on musl systems, some of
the issues seen
* python is OOM'ing which is fixed by asking for 8G memory for qemu
* It hits the timeout limits of ptest-runner even -t 2400 does not finish it
* Use make -j1 and running run-ptest script directly ( outside
ptest-runner to avoid timeout limit) causes it to run forever
Lets disable this testsuite for musl systems for now.
Khem Raj [Thu, 28 Aug 2025 02:50:11 +0000 (19:50 -0700)]
kea: Upgrade to 2.6.4 release
The following bug fixes have been implemented since the previous stable
release, version 2.6.3:
1. **Syslog logging fix**: We corrected an issue in logging
configuration when parsing "syslog:<facility name>" [#3921, #3992].
2. **Fix for misconfigured global reservations**: Earlier Kea versions
could crash when handling misconfigured global reservations. The problem
is now fixed [#3910, #3911, #4001].
3. **Recent Sphinx support**: Support for recent versions of Sphinx, a
tool used to generate documentation, was added. This allows Kea
documentation and packages to be built on recent systems, while
maintaining compatibility with older versions. This fix was tested with
Sphinx 1.8.4 on Debian 10, 8.1.3 on Fedora 42, and 8.2.3 on ArchLinux
[#3800].
The default CONNECTIVITY_CHECK_URIS uses "https://yoctoproject.org/connectivity.html"
which redirect to "https://www.yoctoproject.org/connectivity.html".
Some network configurations with proxies or restricted internet access
don't handle HTTP redirects properly during the sanity check phase,
causing build failures with:
ERROR: OE-core's config sanity checker detected a potential misconfiguration.
Either fix the cause of this error or at your own risk disable the checker (see sanity.conf).
Following is the list of potential problems / advisories:
Fetcher failure for URL: 'https://yoctoproject.org/connectivity.html'. URL doesn't work.
Updated the default URL to use the final destination directly to avoid
redirect-related connectivity check failures.
Also updated SDK test cases in https.py to use the corrected URL for
consistency.
Signed-off-by: Deepak Rathore <deeratho@cisco.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Peter Marko [Thu, 21 Aug 2025 12:26:55 +0000 (14:26 +0200)]
rust: handle softfp fpu
With TARGET_FPU set to "softfp" stdlib-rs fails with:
error: Error loading target specification: ARM targets must specify their float ABI. Run `rustc --print target-list` for a list of built-in targets
This fpu type is set for example for arm in file
meta/conf/machine/include/arm/feature-arm-vfp.inc
when TUNE_FEATURES do not contain "callconvention-hard",
e.g. when using tune
DEFAULTTUNE = "cortexa8"
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Khem Raj [Wed, 27 Aug 2025 06:43:32 +0000 (23:43 -0700)]
libnss-nis: Do not export _nss_nis_getsecretkey when libc does not have xdecrypt
Fixes build errors ( seen with lld particularly )
| x86_64-yoesdk-linux-ld.lld: error: version script assignment of 'NSS_NIS_PRIVATE_2.0' to symbol '_nss_nis_getsecretkey' failed: symbol not defined
| x86_64-yoesdk-linux-clang: error: linker command failed with exit code 1 (use -v to see invocation)
| make[3]: *** [Makefile:642: libnss_nis.la] Error 1
| make[3]: Leaving directory '/mnt/b/yoe/master/build/tmp/work/x86_64-nativesdk-yoesdk-linux/nativesdk-libnss-nis/3.2/build/src'
Liu Yiding [Wed, 27 Aug 2025 03:05:16 +0000 (11:05 +0800)]
readline: backport a patch to fix issue that readline can't work with samba
smbclient can't accept input after readline upgrade to 8.3
| root # smbclient //192.168.2.16/test -N
| Try "help" to get a list of possible commands.
| smb: \>
similar issue has been reported:
https://lists.gnu.org/archive/html/bug-readline/2025-07/msg00011.html
Signed-off-by: Liu Yiding <liuyd.fnst@fujitsu.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Ola x Nilsson [Tue, 26 Aug 2025 13:41:34 +0000 (15:41 +0200)]
sstate: Open file with context manager
In sstat_install and sstate_clean_cache.
Signed-off-by: Ola x Nilsson <olani@axis.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Bruce Ashfield [Thu, 21 Aug 2025 14:03:21 +0000 (10:03 -0400)]
linux-yocto/6.12: update to v6.12.42
Updating linux-yocto/6.12 to the latest korg -stable release that comprises
the following commits:
no ids found, dumping: 880e4ff5d6c8 Linux 6.12.42 5f06ee9f9a36 usb: gadget : fix use-after-free in composite_dev_cleanup() 0ab3ae768c48 USB: gadget: f_hid: Fix memory leak in hidg_bind error path ba08cc6801ec HID: apple: validate feature-report field count to prevent NULL pointer dereference 68e5579f4de1 media: ti: j721e-csi2rx: fix list_del corruption efee62c5fc8c perf/arm-ni: Set initial IRQ affinity 91b370800b3f mm: swap: fix potential buffer overflow in setup_clusters() f7c75406b7e6 mm: swap: correctly use maxpages in swapon syscall to avoid potential deadloop b85fe4c7403f mm/hmm: move pmd_to_hmm_pfn_flags() to the respective #ifdeffery 1beca07bd954 MIPS: mm: tlb-r4k: Uniquify TLB entries on init 082a639b1c67 s390/mm: Remove possible false-positive warning in pte_free_defer() 296742ab73c2 x86/fpu: Delay instruction pointer fixup until after warning 860d93bd6a21 platform/x86/intel/pmt: fix a crashlog NULL pointer access 76563060ec75 ALSA: hda/realtek - Fix mute LED for HP Victus 16-d1xxx (MB 8A26) 9fb7f010eb2e ALSA: hda/realtek - Fix mute LED for HP Victus 16-s0xxx 0e1c67e9b8bb ALSA: hda/realtek - Fix mute LED for HP Victus 16-r1xxx e1c508818cba ALSA: scarlett2: Add retry on -EPROTO from scarlett2_usb_tx() 0f158abad0ce ALSA: intel_hdmi: Fix off-by-one error in __hdmi_lpe_audio_probe() aed15fc08f15 x86/sev: Evict cache lines during SNP memory validation c884cab3bb60 net: usbnet: Fix the wrong netif_carrier_on() call d68a867d7401 net: usbnet: Avoid potential RCU stall on LINK_CHANGE event 8c2b840c5443 Bluetooth: btusb: Add USB ID 3625:010b for TP-LINK Archer TX10UB Nano 1331e908f2f4 PCI/ASPM: Fix L1SS saving 78b3007eb08b PCI/ASPM: Save parent L1SS config in pci_save_aspm_l1ss_state() 8d2026704a79 USB: serial: option: add Foxconn T99W709 f54eef9be3cf smb: server: Fix extension string in ksmbd_extract_shortname() 7e5d91d3e6c6 ksmbd: limit repeated connections from clients with the same IP 68300f2738e0 ksmbd: fix corrupted mtime and ctime in smb2_open edeecc7871e8 ksmbd: fix Preauh_HashValue race condition 2a30ed6428ce ksmbd: fix null pointer dereference error in generate_encryptionkey 7384e0637fa8 drm/i915/ddi: only call shutdown hooks for valid encoders 4a764acf4ab3 drm/i915/display: add intel_encoder_is_hdmi() 428434769e45 drm/i915/ddi: gracefully handle errors from intel_ddi_init_hdmi_connector() 743de353a434 drm/i915/hdmi: add error handling in g4x_hdmi_init() 7edff90dc154 drm/i915/hdmi: propagate errors from intel_hdmi_init_connector() 5913410e4962 drm/i915/ddi: change intel_ddi_init_{dp, hdmi}_connector() return type acd6f757f66c selftests/bpf: Fix build error with llvm 19 01d1f298ba86 selftests/bpf: Add a test for arena range tree algorithm 22d89925e37e ice/ptp: fix crosstimestamp reporting 43a27836ac98 Revert "bcache: remove heap-related macros and switch to generic min_heap" be8a5602b05b accel/ivpu: Fix reset_engine debugfs file logic 32950b190791 vsock: Do not allow binding to VMADDR_PORT_ANY f2e8fcfd2b1b net/packet: fix a race in packet_set_ring() and packet_notifier() 15a77e9cb924 selftests/perf_events: Add a mmap() correctness test e529888b7e80 perf/core: Prevent VMA split of buffer mappings 92043120a2e9 perf/core: Exit early on perf_mmap() fail 8c67899a5295 perf/core: Don't leak AUX buffer refcount on allocation failure 25bb3647d30a sunrpc: fix handling of server side tls alerts 39f8e0cf1798 smb: client: return an error if rdma_connect does not return within 5 seconds 8cb7f685af10 pptp: fix pptp_xmit() error path 7d0f3072f999 nvmet: exit debugfs after discovery subsystem exits 8c221b55d0c2 smb: client: let recv_done() avoid touching data_transfer after cleanup/move c5b3ce5cc7f6 smb: client: let recv_done() cleanup before notifying the callers. 501eed35cac6 smb: client: make sure we call ib_dma_unmap_single() only if we called ib_dma_map_single already d6917b434919 smb: client: remove separate empty_packet_queue 0d6d86b0a575 smb: server: let recv_done() avoid touching data_transfer after cleanup/move 3d970a2f2472 smb: server: let recv_done() consistently call put_recvmsg/smb_direct_disconnect_rdma_connection 896af4c26100 smb: server: make sure we call ib_dma_unmap_single() only if we called ib_dma_map_single already 17d675f6390b smb: server: remove separate empty_recvmsg_queue b9a8a3f60b9c ALSA: hda/ca0132: Fix missing error handling in ca0132_alt_select_out() 02541f9d5c58 irqchip: Build IMX_MU_MSI only on ARM 04d5f4dbef26 eth: fbnic: remove the debugging trick of super high page bias 9432bcabeeee s390/mm: Allocate page table with PAGE_SIZE granularity d00e4125680f net/sched: mqprio: fix stack out-of-bounds write in tc entry parsing 0ddfe8b127ef benet: fix BUG when creating VFs 788c5e28cf48 x86/irq: Plug vector setup race c36b2fbd60e8 sunrpc: fix client side handling of tls alerts 034d210f9d56 net/sched: taprio: enforce minimum value for picos_per_byte c0ec2e47f1e9 net: drop UFO packets in udp_rcv_segment() 714b84653841 net: mdio: mdio-bcm-unimac: Correct rate fallback logic 5489e7fc6f8b ipv6: reject malicious packets in ipv6_gso_segment() 15c0847df624 net/mlx5: Correctly set gso_segs when LRO is used 674328102baa spi: cs42l43: Property entry should be a null-terminated array e1e15033dfba ASoC: tas2781: Fix the wrong step for TLV on tas2781 0257dc08a404 block: ensure discard_granularity is zero when discard is not supported 3ff8fe9194a7 block: Fix default IO priority if there is no IO context 495cb1e8ec8a netlink: specs: ethtool: fix module EEPROM input/output arguments 7175bf8a2af5 s390/ap: Unmask SLCF bit in card and queue ap functions sysfs 929aa980dacf nvmet: initialize discovery subsys after debugfs is initialized ea99b88b1999 pptp: ensure minimal skb length in pptp_xmit() 39468480b321 net: ipa: add IPA v5.1 and v5.5 to ipa_version_string() e56e1842289d phy: mscc: Fix parsing of unicast frames 75b59af723c4 netpoll: prevent hanging NAPI when netcons gets enabled 1f3a7f53874a md/md-cluster: handle REMOVE message earlier b6f47385e457 NFS: Fixup allocation flags for nfsiod's __GFP_NORETRY d4ebe94673b3 NFSv4.2: another fix for listxattr 2ad40b7992aa NFS: Fix filehandle bounds checking in nfs_fh_to_dentry() bb96d6dbd005 NFS: Fix wakeup of __nfs_lookup_revalidate() in unblock_revalidate() ac9a6b863827 sched: Add test_and_clear_wake_up_bit() and atomic_dec_and_wake_up() 531914fd74e8 pNFS/flexfiles: don't attempt pnfs on fatal DS errors 48c6935a3498 PCI: pnv_php: Fix surprise plug detection and recovery d2c60a8a387e powerpc/eeh: Make EEH driver device hotplug safe 5ea0d23aa954 powerpc/eeh: Export eeh_unfreeze_pe() 11fa01706a4f PCI: pnv_php: Work around switches with broken presence detection 28aa3cfce124 PCI: pnv_php: Clean up allocated IRQs on unplug 3df959fd51d6 sched/psi: Fix psi_seq initialization c4a0d62bbe99 kconfig: qconf: fix ConfigList::updateListAllforAll() 74b3fedc57d1 scsi: sd: Make sd shutdown issue START STOP UNIT appropriately d710ed68c54a scsi: ufs: core: Use link recovery when h8 exit fails during runtime resume 13a501f95e22 scsi: Revert "scsi: iscsi: Fix HW conn removal use after free" 13510a36a22f scsi: mpt3sas: Fix a fw_event memory leak fa1607f943f4 vfio/pci: Separate SR-IOV VF dev_set 1df8150ab4cc vfio/pds: Fix missing detach_ioas op 12964e77c8c1 vfio: Prevent open_count decrement to negative 7b2db63ad836 vfio: Fix unbalanced vfio_df_close call in no-iommu mode 89efd90ec672 i2c: muxes: mule: Fix an error handling path in mule_i2c_mux_probe() 6038537c4a26 exfat: fdatasync flag should be same like generic_write_sync() 82765ce5c7a5 f2fs: fix to trigger foreground gc during f2fs_map_blocks() in lfs mode 4b069ec86c33 f2fs: fix to calculate dirty data during has_not_enough_free_secs() 3908f15df598 f2fs: fix to update upper_p in __get_secs_required() correctly 0fe7976b6254 f2fs: vm_unmap_ram() may be called from an invalid context 70849d33130a f2fs: fix to avoid out-of-boundary access in devs.path 97df495d7541 f2fs: fix to avoid panic in f2fs_evict_inode dea243f58a83 f2fs: fix to avoid UAF in f2fs_sync_inode_meta() 09a8915e0fcc f2fs: doc: fix wrong quota mount option description ca525a64bb92 f2fs: fix to check upper boundary for gc_no_zoned_gc_percent 1f1efc11132a f2fs: fix to check upper boundary for gc_valid_thresh_ratio 46f24b1fbf6b f2fs: fix to check upper boundary for value of gc_boost_zoned_gc_percent 44a79437309e f2fs: fix KMSAN uninit-value in extent_info usage 334afc40c41c f2fs: fix bio memleak when committing super block 8b1f1f83e377 f2fs: turn off one_time when forcibly set to foreground GC b0002acbec11 rtc: rv3028: fix incorrect maximum clock rate handling b6612b05de8e rtc: pcf8563: fix incorrect maximum clock rate handling b82c5074f6fc rtc: pcf85063: fix incorrect maximum clock rate handling e57edc34bcf7 rtc: nct3018y: fix incorrect maximum clock rate handling 189ddb44f88c rtc: hym8563: fix incorrect maximum clock rate handling 6ccd7f451e0e rtc: ds1307: fix incorrect maximum clock rate handling a721da19eac7 ucount: fix atomic_long_inc_below() argument type db38ade47be4 module: Restore the moduleparam prefix length check ff24854e8547 apparmor: Fix unaligned memory accesses in KUnit test 277bb68f6576 apparmor: fix loop detection used in conflicting attachment resolution 991a32f71538 apparmor: ensure WB_HISTORY_SIZE value is a power of 2 258d42024fad bpf: Check netfilter ctx accesses are aligned eb2035c1adeb bpf: Check flow_dissector ctx accesses are aligned b2a3018e8325 vhost: Reintroduce kthread API and add mode selection 3c8a15f2229d vdpa: Fix IDR memory leak in VDUSE module exit 37f26b9013b4 vdpa/mlx5: Fix release of uninitialized resources on error path 8ed657604bfd vhost-scsi: Fix log flooding with target does not exist errors 65c9eeff9308 vdpa/mlx5: Fix needs_teardown flag calculation 966460bace9e perf record: Cache build-ID of hit DSOs only 0a98771d1e50 selftests: ALSA: fix memory leak in utimer test 6f7ac9c5ad75 drm/xe/vf: Disable CSC support on VF 81b117f4a5a3 mtd: rawnand: atmel: set pmecc data setup time 2529fc0a1873 mtd: rawnand: rockchip: Add missing check after DMA map 3e2d8d39a328 mtd: rawnand: atmel: Fix dma_mapping_error() address 3406bd02dee3 jfs: fix metapage reference count leak in dbAllocCtl 40f0a51f6c54 fbdev: imxfb: Check fb_add_videomode to prevent null-ptr-deref a434ce6643de crypto: qat - fix seq_file position update in adf_ring_next() 71c31562d23b crypto: qat - fix DMA direction for compression on GEN2 devices 309b23f7b5bc perf tools: Remove libtraceevent in .gitignore 112ed94f2a45 sh: Do not use hyphen in exported variable name 32b106dc4622 ASoC: fsl_xcvr: get channel status data when PHY is not exists a5f147a934ef dmaengine: nbpfaxi: Add missing check after DMA map 2c0b57e55d89 dmaengine: mv_xor: Fix missing check after DMA map and missing unmap 39c4454ed669 fs/orangefs: Allow 2 more characters in do_c_string() e3d729db128d remoteproc: xlnx: Disable unsupported features c1dead8bb303 clk: imx95-blk-ctl: Fix synchronous abort 875bdd2f9bbc PCI: endpoint: pci-epf-vntb: Fix the incorrect usage of __iomem attribute 9cf0d1dbfa44 soundwire: stream: restore params when prepare ports fail a510a9869d21 crypto: qat - disable ZUC-256 capability for QAT GEN5 bcd9cdc74974 crypto: img-hash - Fix dma_unmap_sg() nents value 44b07ee87c4f crypto: keembay - Fix dma_unmap_sg() nents value f63bd615e58f hwrng: mtk - handle devm_pm_runtime_enable errors 1a43f53b0e9e clk: at91: sam9x7: update pll clk ranges b2e294216bf1 ext4: Make sure BH_New bit is cleared in ->write_end handler 0a844a32e07a watchdog: ziirave_wdt: check record length in ziirave_firm_verify() 7aa077df2357 scsi: isci: Fix dma_unmap_sg() nents value ef42bea6c105 scsi: mvsas: Fix dma_unmap_sg() nents value ad1fbfab0dcf scsi: elx: efct: Fix dma_unmap_sg() nents value 6a9f573ebdb6 scsi: ibmvscsi_tgt: Fix dma_unmap_sg() nents value 49a6266113f0 clk: sunxi-ng: v3s: Fix de clock definition ea11b0d213cc clk: thead: th1520-ap: Correctly refer the parent of osc_12m 87be3d8ca00b RDMA/mana_ib: Fix DSCP value in modify QP c149e3475cac perf tests bp_account: Fix leaked file descriptor 9ea3f6b9a67b pinmux: fix race causing mux_owner NULL with active mux_usecount fc1072d934f6 proc: use the same treatment to check proc_lseek as ones for proc_read_iter et.al ec437d015968 kernel: trace: preemptirq_delay_test: use offstack cpu mask 5f3c0301540b RDMA/hns: Fix -Wframe-larger-than issue 81c0bdb09cfa RDMA/hns: Drop GFP_NOWARN bb8899d40600 RDMA/hns: Fix accessing uninitialized resources 1209e33fe3af RDMA/hns: Get message length of ack_req from FW 9dea08eac4f6 crypto: ccp - Fix crash when rebind ccp device for ccp.ko c88a902cc5d3 crypto: inside-secure - Fix `dma_unmap_sg()` nents value 155c1d4c4907 crypto: ccp - Fix locking on alloc failure handling 88d4191073a5 RDMA/hns: Fix HW configurations not cleared in error flow dab173bae330 RDMA/hns: Fix double destruction of rsv_qp ffc3c00a0e83 perf sched: Fix memory leaks in 'perf sched latency' f7786e6a4f9c perf sched: Use RC_CHK_EQUAL() to compare pointers f34d54d2c276 perf sched: Fix memory leaks for evsel->priv in timehist 31a549b3a294 perf sched: Fix memory leaks in 'perf sched map' 4b3ab5f3639e perf sched: Free thread->priv using priv_destructor 5c42686e56fc perf sched: Make sure it frees the usage string c2e061c2a5ec mtd: spi-nor: spansion: Fixup params->set_4byte_addr_mode for SEMPER ea90bb43be7c perf dso: Add missed dso__put to dso__load_kcore e9136a4afe3b perf tools: Fix use-after-free in help_unknown_cmd() 16ab43828c48 Fix dma_unmap_sg() nents value 40fd96ce4e60 clk: clk-axi-clkgen: fix fpfd_max frequency for zynq de07e1183139 fanotify: sanitize handle_type values when reporting fid faa05c6d5ae1 phy: qualcomm: phy-qcom-eusb2-repeater: Don't zero-out registers e7d11d7da5e0 dmaengine: mmp: Fix again Wvoid-pointer-to-enum-cast warning b2b740a884eb pinctrl: berlin: fix memory leak in berlin_pinctrl_build_state() 230b23da10d5 pinctrl: sunxi: Fix memory leak on krealloc failure c63ca4d3870c PCI: endpoint: pci-epf-vntb: Return -ENOENT if pci_epc_get_next_free_bar() fails 0e29430d700a crypto: arm/aes-neonbs - work around gcc-15 warning 99490f243390 power: supply: max14577: Handle NULL pdata when CONFIG_OF is not set f642500aa7ed power: supply: cpcap-charger: Fix null check for power_supply_get_by_name f1a1be99d5ae clk: xilinx: vcu: unregister pll_post only if registered correctly 1ff541ea9e0c media: v4l2-ctrls: Fix H264 SEPARATE_COLOUR_PLANE check 7943ed1f05f5 clk: davinci: Add NULL check in davinci_lpsc_clk_register() a508da16feac mtd: fix possible integer overflow in erase_xfer() 55ece6d9c370 crypto: qat - fix state restore for banks with exceptions a32cd73f66b7 crypto: qat - allow enabling VFs in the absence of IOMMU bfd78c42f0d7 crypto: marvell/cesa - Fix engine load inaccuracy e555e28232b3 crypto: qat - use unmanaged allocation for dc_data beea9197b2e9 crypto: sun8i-ce - fix nents passed to dma_unmap_sg() e3992ee81eba clk: renesas: rzv2h: Fix missing CLK_SET_RATE_PARENT flag for ddiv clocks a0acd38f75de PCI: rockchip-host: Fix "Unexpected Completion" log message 5f176b9ea18c fortify: Fix incorrect reporting of read buffer size 3d672fe065aa staging: media: atomisp: Fix stack buffer overflow in gmin_get_var_int() 0dbef493cae7 bpf, arm64: Fix fp initialization for exception boundary 87b34d935109 bpf/preload: Don't select USERMODE_DRIVER 0c58f74f8aa9 ipv6: annotate data-races around rt->fib6_nsiblings db65739d406c ipv6: fix possible infinite loop in fib6_info_uses_dev() cd8d8bbd9ced ipv6: prevent infinite loop in rt6_nlmsg_size() c2241478d248 vrf: Drop existing dst reference in vrf_ip6_input_dst f4f5a1a751aa selftests: rtnetlink.sh: remove esp4_offload after test 77b05e7a2d66 stmmac: xsk: fix negative overflow of budget in zerocopy mode 5d761dc79f4a net: dsa: microchip: Fix wrong rx drop MIB counter for KSZ8863 781a0bbf3774 net/mlx5e: Remove skb secpath if xfrm state is not found c04bc84aa5e9 net/mlx5e: Clear Read-Only port buffer size in PBMC before update 7c1ae471da69 netfilter: xt_nfacct: don't assume acct name is null-terminated bd5908c1f60d can: kvaser_usb: Assign netdev.dev_port based on device channel index 4bee385bc330 can: kvaser_pciefd: Store device channel index f2880c9cf1ed can: peak_usb: fix USB FD devices potential malfunction 176784dc75ae selftests: drv-net: Fix remote command checking in require_cmd() 208040490a4f tools/rv: Do not skip idle in trace 62f6175d145e bpf: Disable migration in nf_hook_run_bpf(). cca34a0a767f Bluetooth: hci_event: Mask data status from LE ext adv reports 16852eccbdfa Bluetooth: hci_sync: fix double free in 'hci_discovery_filter_clear()' f15d94491094 memcg_slabinfo: Fix use of PG_slab 1e30043ee358 kcsan: test: Initialize dummy variable 5763daf5ca4f ring-buffer: Remove ring_buffer_read_prepare_sync() 24bf1d10a04a wifi: nl80211: Set num_sub_specs before looping through sub_specs 471a7904f82f wifi: mac80211: Write cnt before copying in ieee80211_copy_rnr_beacon() 27244ed7403c wifi: brcmfmac: fix P2P discovery failure in P2P peer due to missing P2P IE 0c5c0c898314 wifi: ath12k: fix endianness handling while accessing wmi service bit f0a0bc39fc52 Reapply "wifi: mac80211: Update skb's control block key in ieee80211_tx_dequeue()" 01aa86f93e70 wifi: mac80211: Check 802.11 encaps offloading in ieee80211_tx_h_select_key() f92ad4f8ecb9 wifi: mac80211: Don't call fq_flow_idx() for management frames eadf83a687fd wifi: mac80211: Do not schedule stopped TXQs ad1c484f1b81 wifi: plfxlc: Fix error handling in usb driver probe af72badd5ee4 wifi: mac80211: reject TDLS operations when station is not associated c200ecdd820f rcu: Fix delayed execution of hurry callbacks f14341cf874e iommu/amd: Fix geometry.aperture_end for V2 tables 39dfbf77c6e4 drm/amdgpu/gfx10: fix kiq locking in KCQ reset 6db9f958b43f drm/amdgpu/gfx9.4.3: fix kiq locking in KCQ reset b9f5d112e5e3 drm/amdgpu/gfx9: fix kiq locking in KCQ reset 9c0e3144924c wifi: ath11k: fix sleeping-in-atomic in ath11k_mac_op_set_bitrate_mask() da4d3fd5920a mwl8k: Add missing check after DMA map 4db9ac2246a7 wifi: rtw88: Fix macid assigned to TDLS station 2bc4c07394cb wifi: rtl8xxxu: Fix RX skb size for aggregation disabled e9c3ae88e4f4 tcp: call tcp_measure_rcv_mss() for ooo packets 81990ac1d1f0 xen/gntdev: remove struct gntdev_copy_batch from stack e59078852604 xen: fix UAF in dmabuf_exp_from_pages() 19c262401e12 RDMA/mlx5: Fix UMR modifying of mkey page size bdb956891c9c net_sched: act_ctinfo: use atomic64_t for three counters 795cb393e389 net/sched: Restrict conditions for adding duplicating netems to qdisc tree 6aa95f56a6a7 iommu/amd: Enable PASID and ATS capabilities in the correct order 67925d8b0d63 um: rtc: Avoid shadowing err in uml_rtc_start() fe6345dbae40 arch: powerpc: defconfig: Drop obsolete CONFIG_NET_CLS_TCINDEX a9ca56ca4f19 netfilter: nf_tables: adjust lockdep assertions handling 765eeb44b1a3 netfilter: nf_tables: Drop dead code from fill_*_info routines 69be0a3c4e5b fbcon: Fix outdated registered_fb reference in comment c1cbee3aae2a sched/psi: Optimize psi_group_change() cpu_clock() usage 82f2cd70222c drm/amd/pm/powerplay/hwmgr/smu_helper: fix order of mask and value 08cfbe7acac0 refscale: Check that nreaders and loops multiplication doesn't overflow ac984f610628 m68k: Don't unregister boot console needlessly d89943d1e3a0 drm/msm/dpu: Fill in min_prefill_lines for SC8180X 6434ca4429eb bpf: Ensure RCU lock is held around bpf_prog_ksym_find 7989a6056c7e kselftest/arm64: Fix check for setting new VLs in sve-ptrace 939135ddeae2 net: dst: annotate data-races around dst->output 002bb5722d7e net: dst: annotate data-races around dst->input 4249f1307932 net/mlx5: Check device memory pointer before usage bfb595e79319 tcp: fix tcp_ofo_queue() to avoid including too much DUP SACK range 72a48be1f539 wifi: ath11k: clear initialized flag for deinit-ed srng lists 7dd6350307af iwlwifi: Add missing check for alloc_ordered_workqueue a84858649b32 wifi: iwlwifi: Fix memory leak in iwl_mvm_init() 7858a95566f4 wifi: rtl818x: Kill URBs before clearing tx status queue 77a7a48f87d6 wifi: rtw89: avoid NULL dereference when RX problematic packet on unsupported 6 GHz band 1b8397c2d14e caif: reduce stack size, again 3f91bec30811 powerpc/pseries/dlpar: Search DRC index from ibm,drc-indexes for IO add c9c7b91bc1a0 bpftool: Fix memory leak in dump_xx_nlmsg on realloc failure bcdd7499bdef drm/amdgpu: Remove nbiov7.9 replay count reporting b56acee24e33 drm/vmwgfx: Fix Host-Backed userspace on Guest-Backed kernel 94927ae3d5c1 net: ipv6: ip6mr: Fix in/out netdev to pass to the FORWARD chain 443430e67868 selftests/bpf: Fix unintentional switch case fall through 274bf55fcd3f selftests/bpf: fix signedness bug in redir_partial() ee03766d79de bpf, ktls: Fix data corruption when using bpf_msg_pop_data() in ktls 538b19886ca0 bpf, sockmap: Fix psock incorrectly pointing to sk 66d64d42d297 drm/panthor: Add missing explicit padding in drm_panthor_gpu_info de7834d100f2 drm/panfrost: Fix panfrost device variable name in devfreq 439b30af0ea9 drm/rockchip: cleanup fb when drm_gem_fb_afbc_init failed 33cb946a8c73 selftests/tracing: Fix false failure of subsystem event test e7d59358a7e3 staging: nvec: Fix incorrect null termination of battery manufacturer c458492e2ab8 bus: mhi: host: pci_generic: Fix the modem name of Foxconn T99W640 7d4f49b9141a interconnect: qcom: sc8180x: specify num_nodes 3f693357f551 interconnect: qcom: sc8280xp: specify num_links for qnm_a1noc_cfg 8eaeb8df9159 soc: qcom: pmic_glink: fix OF node leak 4c80835f6af4 samples: mei: Fix building on musl libc c2f05fc69f4a staging: greybus: gbphy: fix up const issue with the match callback 8e4b38710dd4 cpufreq: Init policy->rwsem before it may be possibly used 494c213792f3 cpufreq: Initialize cpufreq-based frequency-invariance later 667eb5aeecd2 cpufreq: intel_pstate: Always use HWP_DESIRED_PERF in passive mode 7db3a7b2e413 PM / devfreq: Fix a index typo in trans_stat d5632359dbc4 PM / devfreq: Check governor before using governor->name a7d23e71a66e arm64: dts: imx8mn-beacon: Fix HS400 USDHC clock speed 6e6c9e2d29b5 arm64: dts: imx8mm-beacon: Fix HS400 USDHC clock speed 6d5a85e3bb67 ARM: dts: imx6ul-kontron-bl-common: Fix RTS polarity for RS485 interface 11be9a6e3483 selftests: breakpoints: use suspend_stats to reliably check suspend success bed9fa51068f arm64: dts: st: fix timer used for ticks e2a57054e999 soc/tegra: cbb: Clear ERR_FORCE register with ERR_STATUS bf8d808f77b9 arm: dts: ti: omap: Fixup pinheader typo cd865df971c6 usb: early: xhci-dbc: Fix early_ioremap leak 8374ac7d69a5 powercap: dtpm_cpu: Fix NULL pointer dereference in get_pd_power_uw() 3e3ebf358cda Revert "vmci: Prevent the dispatching of uninitialized payloads" 576fc220fb6c selftests: vDSO: chacha: Correctly skip test if necessary 6ee761012d1a pps: fix poll support 87f8f8654e55 vmci: Prevent the dispatching of uninitialized payloads a3177955f8da staging: fbtft: fix potential memory leak in fbtft_framebuffer_alloc() a7645815edf4 spi: stm32: Check for cfg availability in stm32_spi_probe 5786ccbd317c mei: vsc: Unset the event callback on remove and probe errors 173a7f17103c mei: vsc: Event notifier fixes 4a958702b7cc mei: vsc: Destroy mutex after freeing the IRQ ae77ebdc4822 usb: typec: ucsi: yoga-c630: fix error and remove paths 7101b26f7e96 firmware: arm_scmi: Fix up turbo frequencies selection e579ab62fefd cpufreq: armada-8k: make both cpu masks static 1de0e54aaf49 arm64: dts: ti: k3-am62p-j722s: fix pinctrl-single size ac0f8fca09f2 arm64: dts: ti: k3-am642-phyboard-electra: Fix PRU-ICSSG Ethernet ports 8209fc45b04e usb: misc: apple-mfi-fastcharge: Make power supply names unique 1d88e8e66b68 usb: host: xhci-plat: fix incorrect type for of_match variable in xhci_plat_probe() d9632823a400 ARM: dts: vfxxx: Correctly use two tuples for timer address e7e370264098 arm64: dts: qcom: msm8976: Make blsp_dma controlled-remotely cac895bcbcf2 arm64: dts: qcom: sa8775p: Correct the interrupt for remoteproc 0f35f4df0590 arm64: dts: exynos: gs101: Add 'local-timer-stop' to cpuidle nodes 72ee9c7b7c61 arm64: dts: qcom: sc7180: Expand IMEM region db9d963622d9 arm64: dts: qcom: sdm845: Expand IMEM region 04e7717dddc0 soc: qcom: QMI encoding/decoding for big endian 90040a48030e selftests: Fix errno checking in syscall_user_dispatch test c814023c82ae arm64: dts: freescale: imx93-tqma9352: Limit BUCK2 to 600mV 3b13b5a4f29e ASoC: mediatek: use reserved memory or enable buffer pre-allocation a9d00b7f374b ASoC: ops: dynamically allocate struct snd_ctl_elem_value 2d9ee65b6d84 ASoC: soc-dai: tidyup return value of snd_soc_xlate_tdm_slot_mask() cd89d86dd1d5 io_uring: fix breakage in EXPERT menu f5426ffbec97 gfs2: No more self recovery b356ee013a79 Revert "fs/ntfs3: Replace inode_trylock with inode_lock" 5055b7db9411 hfsplus: remove mutex_lock check in hfsplus_free_extents b53a10073f28 hfs: make splice write available again 248d605319fe hfsplus: make splice write available again 0e5c17c2376b ublk: use vmalloc for ublk_device's __queues 3ed2cc6a6e93 fs/ntfs3: cancle set bad inode after removing name fails 47706f9acfee fs_context: fix parameter name in infofc() macro bb80f7618832 parse_longname(): strrchr() expects NUL-terminated string 2f6c33b9fab0 audit,module: restore audit logging in load failure case 6b4b30b863ee ASoC: amd: yc: add DMI quirk for ASUS M6501RM 362ea99022c9 ASoC: Intel: fix SND_SOC_SOF dependencies 9b25e1643cc7 ALSA: hda/cs35l56: Workaround bad dev-index on Lenovo Yoga Book 9i GenX bf0d05941955 ASoC: amd: yc: Add DMI entries to support HP 15-fb1xxx f13486ac6b5b ethernet: intel: fix building with large NR_CPUS 60291de0c56c ASoC: amd: yc: Add DMI quirk for HP Laptop 17 cp-2033dx
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Rust stable version upgraded to 1.89.0
https://blog.rust-lang.org/2025/08/07/Rust-1.89.0/
* Drop merged patches with rust v1.89.0.
- 0001-Disable-libunwind-cross-architecture-unwinding.patch
- triagebot.patch
* Update and rebase existing patches with rust v1.89.0.
- revert-link-std-statically-in-rustc_driver-feature.patch
- rust-oe-selftest.patch
- 0001-src-core-build_steps-tool.rs-switch-off-lto-for-rust.patch
- 0001-riscv32-Define-plain-syscalls-as-their-time64-varian.patch
(To fix build failures for riscv with musl, this patch adds
aliases for plain syscalls to their time64 variants in libc-0.2.174,
These changes are in addition to similar fixes already applied
to libc-0.2.172)
- 0001-Define-more-ioctl-codes-on-riscv32gc-unknown-linux-g.patch
(Changes for libc-0.2.170 are no longer needed, as that version
is not present in rust v1.89.0 vendor sources)
* OE-selftests:
- Doc-tests fail in 55 crates,test-float-parse tests also fail.
These tests are excluded to ensure the overall test suite passes.
Peter Marko [Sun, 24 Aug 2025 16:55:23 +0000 (18:55 +0200)]
openmp: add openmp to CVE_PRODUCT
Currently CVE_PRODUCT is set to llvm:llvm from common.inc.
There is historical entry for openmp in the DB.
This entry is ignored, but it shows that there can also be future ones.
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Peter Marko [Sun, 24 Aug 2025 16:55:22 +0000 (18:55 +0200)]
recipes: cleanup CVE_STATUS which are resolved now
The don't show up in CVE metrics anymore since they were either fixed
upstream or recipe version was upgraded meanwhile.
* bind CVE-2019-6470: cpe got corrected in nvd db
* libxml2 CVE-2023-45322: version is now higher than NVD cpe
* zlib CVE-2023-45853: version is now higher than NVD cpe
* gcc CVE-2021-37322: version is now higher than NVD cpe
* python3
* CVE-2007-4559: version is now higher than NVD cpe
* CVE-2019-18348: version is now higher than NVD cpe
* CVE-2020-15523: version is now higher than NVD cpe
* CVE-2022-26488: version is now higher than NVD cpe
* CVE-2015-20107: version is now higher than NVD cpe
* CVE-2023-36632: version is now higher than NVD cpe
* rust
* CVE-2024-24576: NVD has no cpe, but we have newer version as fix
* CVE-2024-43402: version is now higher than NVD cpe
* cups CVE-2021-25317: version is now higher than NVD cpe
* ghostscript CVE-2023-38559: version is now higher than NVD cpe
* libtirpc CVE-2021-46828: version is now higher than NVD cpe
* unzip CVE-2008-0888: version is now higher than NVD cpe
* ffmpeg CVE-2023-39018: cpe got corrected in nvd db
* libxslt CVE-2022-29824: version is now higher than NVD cpe
* libyaml
* CVE-2024-35325: CVE is now rejected in NVD DB
* CVE-2024-35326: CVE is now rejected in NVD DB
* CVE-2024-35328: CVE is now rejected in NVD DB
Also add comment for iputils regarding reports for FKIE/NVD2.
Also remove some trailing spaces in python recipe.
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Liu Yiding [Mon, 25 Aug 2025 03:51:08 +0000 (11:51 +0800)]
python3-hatch-vcs: upgrade 0.4.0 -> 0.5.0
Changelog:
==========
- Drop support for Python 3.8
- Officially support Python 3.13
- Avoid a deprecation warning emitted by a dependency when using the tag-pattern option
Signed-off-by: Liu Yiding <liuyd.fnst@fujitsu.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Liu Yiding [Mon, 25 Aug 2025 03:51:06 +0000 (11:51 +0800)]
python3-cython: upgrade 3.1.2 -> 3.1.3
Changelog:
==========
- Some method calls with 0 or 1 argument failed to use ``PyObject_VectorCallMethod()``.
- Walrus assignments of literal Python integers could generate invalid C code.
(Github issue :issue:`6989`)
- ``cython.pythread_type_lock`` (also used as fallback for ``cython.pymutex``)
could stall on heavily contended locks.
(Github issue :issue:`6999`)
- C string arrays (not pointers) always coerced to the Python default string type,
even on explicit casts to other string types.
(Github issue :issue:`7020`)
- Unterminated ``\N{}`` character escapes in strings could unrail the parser.
(Github issue :issue:`7056`)
- An internal C function was not marked as ``static`` and leaked a linker symbol.
(Github issue :issue:`6957`)
- Some Unicode letters were not recognised as lexically valid name parts.
(Github issue :issue:`7059`)
- Compatibility with PyPy3.8 was lost by accident.
- The Linux binary wheels of 3.1.2 used SSSE3 CPU instructions which are not available on some CPUs.
(Github issue :issue:`7038`)
Signed-off-by: Liu Yiding <liuyd.fnst@fujitsu.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Liu Yiding [Mon, 25 Aug 2025 03:51:05 +0000 (11:51 +0800)]
python3-click: upgrade 8.2.1 -> 8.2.2
Changelog:
==========
- Fix reconciliation of default, flag_value and type parameters for
flag options, as well as parsing and normalization of environment variables.
- Fix typing issue in BadParameter and MissingParameter exceptions for the
parameter param_hint that did not allow for a sequence of string where the
underlying functino _join_param_hints allows for it.
- Use the value of Enum choices to render their default value in help
screen.
- Fix completion for the Z shell (zsh) for completion items containing
colons.
- Don't include envvar in error hint when not configured.
- Fix a rare race in click.testing.StreamMixer's finalization that manifested
as a ValueError on close in a multi-threaded test session.
Signed-off-by: Liu Yiding <liuyd.fnst@fujitsu.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Liu Yiding [Mon, 25 Aug 2025 03:51:02 +0000 (11:51 +0800)]
librsvg: upgrade 2.60.0 -> 2.61.0
Changelog:
============
- The minimum supported Rust version (MSRV) is 1.85.1.
- #1178: Improved performance when using an application-supplied
stylesheet for an SVG handle - do cascading only once in that case
instead of twice.
- #1164: Don't panic if there are no fonts installed - this happens
easily in Alpine containers (Lovell Fuller).
- Update to gtk-rs-core 0.21 (Maximiliano Sandoval).
- Vastly improved infrastructure to generate the development guide and
the rsvg-convert manual page (Toluwaleke Ogundipe).
- Start implementing the SVG2 text stack (Adetoye Anointing, from his
Outreachy internship).
- Fixed the Windows CI (Chun-wei Fan).
- Lots of internal cleanups to make it easier to remove Cairo in the future.
Signed-off-by: Liu Yiding <liuyd.fnst@fujitsu.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Liu Yiding [Mon, 25 Aug 2025 03:51:01 +0000 (11:51 +0800)]
libinput: upgrade 1.28.1 -> 1.29.0
Changelog:
===========
- High-resolution scroll wheels have better heuristics to avoid inadvertent
scrolls. This should also help with not-so-high-resolution scroll wheels which
can skip those heuristics now, resulting in better responsiveness.
- Virtual devices (e.g. uinput) are now detected in libinput and some internal
heuristics are disabled for those (e.g. tablet smoothing)
- Tablet tools with an fixed eraser button (almost all these days) can now
configure that eraser button to be a regular button instead.
- Jumping cursors on Asus "ASUE..." touchpads have lost their excitement and
are no longer jumping.
- libinput now uses a plugin pipeline internally. This prepares the way for
public plugins, planned for libinput 1.30.
- mtdev is now an optional dependency
- libinput debug-tablet-pad is a new tool for interactive tablet pad debugging
- a lot of internal code modernization, making the code nicer to work on and
test cases easier to write
Liu Yiding [Mon, 25 Aug 2025 03:51:00 +0000 (11:51 +0800)]
harfbuzz: upgrade 11.2.1 -> 11.4.1
Changelog:
=============
- Speed up handling fonts with very large number of variations:
- Drawing by up to 40%.
- Calculating glyph extents by up to 15%.
- Getting horizontal glyph advances by up to 45%.
- Speed up getting horizontal and vertical glyph advances by up to 24%.
- Significantly speed up vertical text shaping.
- Various documentation improvements.
- Various build improvements.
- Various subsetting improvements.
- Various improvements to Rust font functions (fontations integration) and shaper (HarfRust integration).
- Rename harfruzz option and shaper to harfrust following upstream rename.
- Implement hb_face_reference_blob() for DirectWrite font functions.
- New API:
+hb_font_get_glyph_origins_func_t
+hb_font_get_glyph_h_origins_func_t
+hb_font_get_glyph_v_origins_func_t
+hb_font_funcs_set_glyph_h_origins_func()
+hb_font_funcs_set_glyph_v_origins_func()
+hb_font_get_glyph_h_origins()
+hb_font_get_glyph_v_origins()
- Fix crasher in the glyph_v_origin function introduced in 11.3.0
- Fix build with non-compliant C++11 compilers that don't recognize the "and" keyword
- Fix bug in vertical shaping of fonts without the vmtx table
- General shaping and subsetting speedups.
- Fix in Graphite shaping backend when glyph advances became negative.
- Subsetting improvements, pruning empty mark-attachment lookups.
- Don't use the macro name _S, which is reserved by system liberaries.
- Build fixes and speedup.
- Add a kbts shaping backend that calls into the kb_text_shape
single-header shaping library.
Signed-off-by: Liu Yiding <liuyd.fnst@fujitsu.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Peter Marko [Tue, 26 Aug 2025 18:59:22 +0000 (20:59 +0200)]
cve-update: log timestamps and add force update for future time
CVE update is currently not working properly on autobuilder.
This improves logging for problem analysis.
Future time is something which could be reason for current autobuilder
problems since the DB was not updated for more than 3 months by now.
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
cve-update-db-native: FKIE CVE parsing: Use Secondary metric
If there is no primary metric use the Secondary one.
Signed-off-by: Jonathan Schnitzler <jonathan.schnitzler@faro.com> Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Use "attackVector" for CVSS >= 3 as it only CVSS v2 uses "accessVector".
Signed-off-by: Jonathan Schnitzler <jonathan.schnitzler@faro.com> Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Peter Marko [Sun, 24 Aug 2025 14:57:43 +0000 (16:57 +0200)]
cve-update: remove cleanup of db_file in downloads
Since the code was changed to update the DB in temporary file, code
cleaning the final file in downloads is never executed.
Remove it.
Since the code always removes both files in temporary directory, remove
also comment which is trying to differentiate this code from code just
removed.
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Peter Marko [Sun, 24 Aug 2025 14:57:42 +0000 (16:57 +0200)]
cve-update: decrease update interval to 23 hours
If the job runs every day at the same time, it usually updates only
every second day, because it takes non-0 time for DB update and set the
timestamp. So it does not take full 24-hours from time when the DB was
updated until the next job starts.
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
This seems to be misimplemented when re-adding update from nvd1 feed.
Use file in temporary directory instead of downloads directory for
update process.
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Peter Marko [Sun, 24 Aug 2025 11:51:26 +0000 (13:51 +0200)]
binutils: set status for CVE-2025-7545 and CVE-2025-7546
The patches linked in NVD reports are present in binutils-2_45-branch.
Technically the NVD is wrong (=2.45 should be <2.45), but fixing it in
the recipe is not problematic as all cpe-stable-backport will be
automatically removed in next upgrade so will not be "kept forever".
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diego Sueiro [Wed, 20 Aug 2025 11:24:55 +0000 (12:24 +0100)]
wic: Fix --overhead-factor and --extra-space checks
If --overhead-factor and --extra-space are passed with =FOO the
check fails. Fix this by checking parsed.overhead_factor and
parsed.extra_space instead.
Signed-off-by: Diego Sueiro <diego.sueiro@arm.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Peter Marko [Sat, 23 Aug 2025 20:15:12 +0000 (22:15 +0200)]
cve-update-db-native: fix fetcher for CVEs missing nodes
As of now, update of CVE DB from FKIE source (which is the defailt)
fails with following error:
File: '<build>/poky/meta/recipes-core/meta/cve-update-db-native.bb', lineno: 393, function: update_db_fkie
0389: [cveId, cveDesc, cvssv2, cvssv3, cvssv4, date, accessVector, vectorString]).close()
0390:
0391: for config in elt['configurations']:
0392: # This is suboptimal as it doesn't handle AND/OR and negate, but is better than nothing
*** 0393: for node in config["nodes"]:
0394: parse_node_and_insert(conn, node, cveId, False)
0395:
0396:def update_db(d, conn, jsondata):
0397: if (d.getVar("NVD_DB_VERSION") == "FKIE"):
Exception: KeyError: 'nodes'
Entry for new CVE-2025-32915 is broken.
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Change-Id: Ia1fdf7698ebeef62a88052713645d5b499164353 Signed-off-by: Per x Johansson <perxjoh@axis.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Harish Sadineni [Fri, 22 Aug 2025 07:12:27 +0000 (00:12 -0700)]
gcc-testsuite: Fix test failures with output pattern due to ssh warning.
when running oe-selftest for gcc some of the output pattern matchng test cases
were getting failed due to below issue.
Output line 1 was:
Warning: Permanently added '192.168.7
Should match (from /poky/poky/build-st/tmp/work-shared/gcc-15.1.0-r0/sources/
gcc-15.1.0/gcc/testsuite/gcc.dg/dg-output-file-1-lp64.txt):
This is a test output for lp64 target
Failed test for output line 1 This is a test output for lp64 target
Harish Sadineni [Fri, 22 Aug 2025 07:12:25 +0000 (00:12 -0700)]
gcc: Oe-selftest failure analysis - fix for pr90579.c test failures
When gcc build with PIE enabled the following tests
were getting failed:
FAIL: gcc.target/i386/pr90579.c scan-assembler vaddsd\tr\\+40
FAIL: gcc.target/i386/pr90579.c scan-assembler vaddsd\tr\\+32
FAIL: gcc.target/i386/pr90579.c scan-assembler vaddsd\tr\\+24
FAIL: gcc.target/i386/pr90579.c scan-assembler vaddsd\tr\\+16
Detailed bug info & upstream fix is here:
https://gcc.gnu.org/bugzilla/show_bug.cgi?id=118885
Khem Raj [Fri, 22 Aug 2025 05:17:25 +0000 (22:17 -0700)]
gettext: Force UTF-8 runtime and skip requiring ISO-8859-1
On musl, there is no real legacy (non-UTF-8) fr_FR locale.
These tests are designed for libcs that ship both fr_FR (ISO-8859-1)
and fr_FR.UTF-8. So the right thing will be to SKIP these tests
Unsetting LOCALE_FR will ensure that it does not enable ISO-8859-1
path, so reset it in run-ptest but thats not enough because it is
being set in the test's own init-env file as well so clear it in that
file as well.
Leon Anavi [Thu, 21 Aug 2025 20:43:50 +0000 (23:43 +0300)]
connman: Upgrade 1.44 -> 1.45
Upgrade to release 1.45:
- Add missing newlines on error messages
- timezone: Replace Localtime file copy with symbolic link
- Fix CVE-2025-32366 vulnerability
- Fix CVE-2025-32743 vulnerability
- vpn: Fix extracting of PrefixLength D-Bus value
- vpn: Fix mem leak of gid_list in task setup
- dchpv6: Set err to 0 when client creation succeeds
Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Changes between 9.1.1198 -> 9.1.1652
====================================
https://github.com/vim/vim/compare/v9.1.1198...v9.1.1652
Refresh patches.
Add tag to SRC_URI.
Disable newly introduced wayland support (in patch version 1485).
To this belongs also adding recursion in delete command for dir auto
which was newly failing as there is wayland directory inside now.
If someone is interested, this can be probably enabled, but without
additional work it results in compilation error due to function
redefinition conflicts.
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Khem Raj [Thu, 21 Aug 2025 18:12:46 +0000 (11:12 -0700)]
findutils: Use C locale to run ptests
Ensure consistent locale setting, since we are not
using make environemnt to run the tests like
upstream does. The test scripts are run explicitly
This fixes a problem with musl ptest runs where the
locale-driven quoting ends up using C.UTF-8 quotes
in gnulib’s quotearg() end up with curly quotes
instead of ASCII quote character which is expected
and result is reported as failure even though numbers
are matching.
Fixes:
-find: invalid group name or GID argument to -group: '4294967296'
+find: invalid group name or GID argument to -group: ‘4294967296’
Ross Burton [Thu, 21 Aug 2025 11:58:29 +0000 (12:58 +0100)]
babeltrace2: don't install static modules
There's no point building or installing static plugins, so apply a patch
to only build shared plugins.
Poky passes --disable-static via no-static-libs.inc, but anyone building
babeltrace2 with nodistro or another distro that doesn't use
no-static-libs.inc will fail to build babeltrace2 because of packaging
errors around the static version of the python plugin.
Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Ross Burton [Thu, 21 Aug 2025 11:02:42 +0000 (12:02 +0100)]
nghttp2: rewrite recipe to be an idiomatic library recipe
This recipe for nghttp2 doesn't build any of the binaries, just the core
library, but is structured like a recipe that is primarily an application
that happens to ship libraries.
Remove the lib${BPN} package and put the library into PN (which will then
be debian-renamed).
Use the shorthand option to just build the library.
Add documentation enabling/disabling options so we don't install the
docs if not needed. Currently there are no extra dependencies as the
sphinx-generated manpages are pre-built in the tarballs, but this could
change.
Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Falk Bauer [Thu, 21 Aug 2025 07:09:44 +0000 (09:09 +0200)]
psplash: Do not mount PSPLASH_FIFO_DIR if the env variable is empty
The script file psplash.sh tries to mount the PSPLASH_FIFO_DIR variable.
If the variable is empty, the mountpoint command returns a usage text
(busybox mountpoint here, util-linux mountpoint behaves the same):
The return code with this console output is 0 and the mount command in the
if statement is executed.
Then this mount also fails with an empty mountpoint argument.
The source code of psplash respects an empty PSPLASH_FIFO_DIR variable
(see psplash.c) and makes a fallback to "/run". So the psplash.sh script should
also respect the empty var.
Try to mount the PSPLASH_FIFO_DIR only if the variable is not empty.
Khem Raj [Thu, 21 Aug 2025 06:45:25 +0000 (23:45 -0700)]
python3: Pass PLATFORM_TRIPLET explicitly when cross compiling
Do not rely on how python detects the platform triplet
We have been lucky to get it cross-compiling since our build hosts
are also using glibc, so the headers and gcc install locations match
and the values it detects are mostly what we will need for glibc
based targets, but when we use musl e.g. the problems show up where
python3 is not able to automitically discover python modules so any
python package having compiled .so modules fail to load.
Example is ptest failures with TCLIBC = "musl"
and running core-image-ptest-python3-rpds-py
This is revamp of patch [1], currently its working for glibc
based cross-compiling because we build on linux systems which are also
glibc based, but python on musl shows the problem.
When python was upgraded to 3.12 [2], this patch was wrongly dropped
and sadly regression went unnoticed, without this patch
Python's automatic module discovery does not work when it is cross-compiled
this is because it tries host tools and compiler installation during configure
to detect it. .so modules e.g. modulename.cpython-*.so are not seen as a result.
This is seen when running python3-rpds-py ptests where it should load
rpds.cpython-313-x86_64-linux-musl.so rpds.so but it does not and the module test
fail.
Khem Raj [Thu, 21 Aug 2025 06:45:21 +0000 (23:45 -0700)]
elfutils: Add run-backtrace-{native|data}.sh to known failures
musl's thread startup/teardown sequences and frame-pointer handling
differ from glibc. elfutils can fail to terminate unwinds properly
in multithreaded musl apps which leads to truncated or bogus traces
and then the test's "must contain main" assertion fails.
CVE entry was corrected in NVD DB.
It looks like NVD is now getting faster and more reliable with
annotations...
Signed-off-by: Peter Marko <peter.marko@siemens.com> Cc: Ross Burton <ross.burton@arm.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Liu Yiding [Wed, 20 Aug 2025 08:49:37 +0000 (16:49 +0800)]
nghttp2: remove nghttp2-proxy
fix issue that:
| nothing provides nghttp2-proxy >= 1.66.0 needed by nghttp2-1.66.0-r0.core2_64 from base
nghttp2-proxy is supposed to involve files ${bindir}/nghttpx and ${datadir}/${BPN}/fetch-ocsp-response
But now nghttp2-proxy will not be created because:
1. ENABLE_APP=OFF in EXTRA_OECMAKE makes ${bindir}/nghttpx not be produced
2. 1.66.0 version has removed fetch-ocsp-response-file according to the Changelog
| cat /tmp/work/aarch64-ubinux-linux/nghttp2/1.66.0/sources/nghttp2-1.66.0/ChangeLog
| ....
| nghttpx: Remove OCSP stapling
|
| This commit removes OCSP stapling features and the following options
| are deprecated and have no effect:
|
| - fetch-ocsp-response-file
| - no-ocsp
| - no-verify-ocsp
| - ocsp-update-interval
Signed-off-by: Liu Yiding <liuyd.fnst@fujitsu.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Khang D Nguyen [Wed, 20 Aug 2025 02:55:24 +0000 (09:55 +0700)]
systemd.bbclass: deduplicate template and instance lines in preset file
If SYSTEMD_SERVICE contains both template and instance names, the
preset file will contain two lines: one describing the template name
and one describing the instance names.
This is problematic because systemd.preset only use the first matching
one [1], leading to the instances not getting enabled.
For example, openbmc's obmc-console recipe has the following
final SYSTEMD_SERVICE variable:
fragments/autobuilder: add go to SDK_TOOLCHAIN_LANGS
For reasons unknown, only rust was listed, which means
nativesdk-go was not built or tested, which lead to
breakage like one fixed in
https://git.yoctoproject.org/poky/commit/?id=a669cd2e0c760da9d7e872daea9590fc9e86d766
Note that with this change only building and installing go
into SDKsis tested, but no tests are performed with the
toolchain itself in testsdk/testimage.
For that, a bug has been filed:
https://bugzilla.yoctoproject.org/show_bug.cgi?id=15953
Remove go from x32 and mingw targets as it will not build for them.
(next to similar removals for rust)
Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
goarch.bbclass: do not leak TUNE_FEATURES into crosssdk task signatures
The default assignments look like this:
TARGET_GO386 = "${@go_map_386(d.getVar('TARGET_ARCH'), d.getVar('TUNE_FEATURES'), d)}"
TUNE_FEATURES is a target-specific variable, and so should be used
only for target builds. The change is similar to what is already done
for native packages.
Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Peter Marko [Mon, 18 Aug 2025 19:56:02 +0000 (21:56 +0200)]
glib-2.0: update 2.84.2 -> 2.84.4
Overview of changes in GLib 2.84.4, 2025-08-08
==============================================
* Bugs fixed:
- #3716 (CVE-2025-7039) (#YWH-PGM9867-104) Buffer Under-read on GLib through
glib/gfileutils.c via get_tmp_file() (Michael Catanzaro)
- #3721 GFile leak in g_local_file_set_display_name during error handling
(Philip Withnall, Michael Catanzaro)
- !4668 Backport !4667 “Incorrect output parameter handling in closure helper
of g_settings_bind_with_mapping_closures” to glib-2-84
- !4675 Backport !4674 “gfileutils: fix computation of temporary file name” to
glib-2-84
- !4679 Backport !4677 and !4678 “Fix GFile leak in
g_local_file_set_display_name()” to glib-2-84
- !4697 Backport !4696 “gthreadpool: Catch pool_spawner creation failure” to
glib-2-84
- !4705 Backport !4702 “gio/filenamecompleter: Fix leaks” to glib-2-84
- !4711 Backport !4708 “gfilenamecompleter: Fix g_object_unref() of undefined
value” to glib-2-84
Overview of changes in GLib 2.84.3, 2025-06-13
==============================================
* Bugs fixed:
- !4656 Backport !4655 “gstring: Fix overflow check when expanding the string”
to glib-2-84
!4656 solves first half of CVE-2025-6052
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Ricardo Salveti [Tue, 19 Aug 2025 00:56:05 +0000 (21:56 -0300)]
initramfs-framework: mount /run and move to rootfs before switch_root
Mount /run as tmpfs during early init and include it in the set of
mounts moved to $ROOTFS_DIR prior to exec switch_root.
Having /run available early lets initramfs modules stamp state that can
later influence systemd service jobs, since systemd will reuse the mount
point instead of creating a new one during boot.
This is particularly useful with ostree, as it uses /run/ostree-booted
as way to describe that the rootfs comes from an ostree deployment.
Changelog:
=================
- audioconvert: Fix regression when using a mix matrix
- audioconvert: mix-matrix causes caps negotiation failure
- decodebin3: Don't error on an incoming ONVIF metadata stream
- gloverlay: Recompute geometry when caps change, and load texture after stopping and starting again
- uridecodebin3: Add missing locking and NULL checks when adding URIs to messages
- uridecodebin3: segfault in update_message_with_uri() if no decoder available
- videorate, imagefreeze: add support for JPEG XS
- gst-device-monitor-1.0: Add shell quoting for launch lines
- gst-device-monitor-1.0: Fix criticals, and also accept utf8 in launch lines
- gst-device-monitor-1.0: Use gst_print instead of g_print
Refer to release note, no changes this time
https://gstreamer.freedesktop.org/releases/1.26/#1.26.5
Signed-off-by: Liu Yiding <liuyd.fnst@fujitsu.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Moritz Haase [Mon, 18 Aug 2025 06:44:13 +0000 (08:44 +0200)]
libcomps: upgrade 0.1.21 -> 0.1.22
The project did not publish release notes, but the list of changes is available
at [0]. The new release brings a fix for [1] and ships the patch to build with
CMake 4+.
projects / thirdparty / openembedded / openembedded-core-contrib.git / log
