dnf: drop python3-iniparse from DEPENDS and RDEPENDS
python3-iniparse dependency was dropped 2019, see the
following commit as reference:
https://github.com/rpm-software-management/dnf/pull/1329/commits/d7d0e0e2f9d8c7d021c794821ad0b56a39ebc01f
When looking at the Git history, this happened around tag 4.2.1
Signed-off-by: Guðni Már Gilbert <gudni.m.g@gmail.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Richard Purdie [Mon, 2 Dec 2024 23:17:31 +0000 (23:17 +0000)]
buildhistory: Drop git-gc call as obsolete
buildhistory used to result in many individual objects in the repo which
could affect performance. This gc call was added over a decade ago to avoid
those performance issues. Modern git calls git-gc when needed and this kind
of workaround should no longer be needed.
There is a small chance this is contributing to problems with the autobuilder
buildhistory repositories, so simplifying the code may help that too.
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
hongxu [Fri, 29 Nov 2024 15:33:29 +0000 (07:33 -0800)]
gnupg: upgrade 2.5.0 -> 2.5.1
Due to upstream [build: Remove configure option --enable-gpg-is-gpg2][1],
drop option --enable-gpg-is-gpg2 and remove gpg2/gpgv2 installation
Due to upsream [doc: Remove included yat2m and build HTML versions of
the man pages.][2], it used standard detection on yat2m other than build
it from source. Because no native recipe provide yat2m in Yocto,
explicitly disable doc via option --disable-doc
Fabio Estevam [Thu, 28 Nov 2024 16:12:36 +0000 (13:12 -0300)]
kmscube: Upgrade to the latest revision
Upgrade to the latest revision and remove the patch because the
original problem has already been fixed upstream by kmscube
commit 311eaaaa473d ("kmscube: gears: use only GLES2").
Signed-off-by: Fabio Estevam <festevam@denx.de> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
hongxu [Wed, 27 Nov 2024 23:35:57 +0000 (15:35 -0800)]
man-db: upgrade 2.12.1 -> 2.13.0
Due to meta-clang has upgraded clang to 19.1.2 release [1]
which contains clang fix [2], drop 0001-man-Move-local-variable-declaration-to-function-scop.patch
Khem Raj [Wed, 27 Nov 2024 19:59:03 +0000 (11:59 -0800)]
seatd: Create seat user and package systemd service
With latest version seatd does not work properly if
user access permissions are not correctly set, therefore
create 'seat' group and package the seatd.service file
and enable it by default with systemd distro feature
set logind to systemd when using systemd as default init system
Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Peter Marko [Sun, 24 Nov 2024 20:13:42 +0000 (21:13 +0100)]
cve-check: fix cvesInRecord
Currently flag cvesInRecord is set to false if all CVEs are ignored or
patched. This is inconsistent as it shows false if a CVE was fixed via
patch and true if this CVE was fixed by upgrade. In both cases the CVE
is valid and was fixed.
As I understand this flag, it should say if any CVE exists for
particular component's product (regardless of how this CVE is handled)
and can be used to validate if a product is correctly set.
Note that skipping ignored CVEs may make sense in some cases, as ignored
may mean that NVD DB is wrong, but in many cases it is ignored for other
reasons. Further patch can be done to evaluate ignore subtype but that
would be against my understanding of this flag as described above.
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Commit 05ef4f2a7b225c8d230eaca8d333ffb921729d79 removed this
functionality by accident. It was implemented in text exporter, while it
should have been a global feature independent on exporter type to avoid
such accidental deletion.
Signed-off-by: Peter Marko <peter.marko@siemens.com> Cc: Marta Rybczynska <marta.rybczynska@ygreky.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Peter Marko [Sun, 24 Nov 2024 19:11:26 +0000 (20:11 +0100)]
libssh2: mark CVE-2023-48795 as fixed
NVD DB has typo in version (1.11.10 instead of 1.11.1)
Version 1.11.1 is the currently the latest one, there is no .10
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
VIRTUAL-RUNTIME_keymaps is defined in busybox init manager and also in
some package groups. Defining distro features in recipes is wrong.
Also this is not directly related to init manager.
So move all these definitions to default-providers.inc
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Peter Marko [Wed, 27 Nov 2024 19:23:33 +0000 (20:23 +0100)]
init-manager: define dev_manager for all init managers
Currently VIRTUAL-RUNTIME_dev_manager is defined by some init managers
with "??=" and in packagegroup-core-boot with "?=".
This means that this variable is different in this package group and in
all other the recipes.
This was discovered when trying to use new feature INIT_MANAGER when
migrating to scarthgap and using systemd distro. After deleting all
VIRTUAL_RUNTIME providers defined in init-manager-systemd udev was
installed additionally via packagegroup-core-boot.
Having a distro settings overriden in single recipe is wrong and needs
to be corrected. Therefore let's define the setting in all init managers
and remove it from packagegroup-core-boot.
core-image-tiny-initramfs has a dilemma - use busybox-mdev even if
distro does not enable it in busybox recipe to keep the image tiny, or
rather not install it even if distro enables it in busybox.
This patch chooses the first option.
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Jamin Lin [Wed, 20 Nov 2024 06:17:24 +0000 (14:17 +0800)]
kernel-uboot: Support lzma compressed algorithm
Linux kernel supports to compress its output binary with lzma algorithm and
U-Boot support to decompress lzma compressed image.
Both xz and lzma algorithms are identical and users can use xz utility with
format parameter to compress Image which supports lzma algorithm.
Add the following command to support lzma. This command is refer to Linux
kernel, https://github.com/torvalds/linux/blob/master/arch/powerpc/boot/wrapper
"xz --format=lzma -f -6 linux.bin"
Signed-off-by: Jamin Lin <jamin_lin@aspeedtech.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Thomas Perrot [Tue, 26 Nov 2024 14:35:58 +0000 (15:35 +0100)]
tcl: resolve conflicts with tcl8's man pages
Change the suffix from 'tcl' to 'tcl9' and from 'tcl8' to avoid
conflicts with the man pages provided by the tcl packages.
file /usr/share/man/mann/vwait.ntcl conflicts between attempted installs of tcl-doc-9.0.0-r0.riscv64 and tcl8-doc-8.6.15-r0.riscv64
file /usr/share/man/mann/while.ntcl conflicts between attempted installs of tcl-doc-9.0.0-r0.riscv64 and tcl8-doc-8.6.15-r0.riscv64
file /usr/share/man/mann/yield.ntcl conflicts between attempted installs of tcl-doc-9.0.0-r0.riscv64 and tcl8-doc-8.6.15-r0.riscv64
file /usr/share/man/mann/yieldto.ntcl conflicts between attempted installs of tcl-doc-9.0.0-r0.riscv64 and tcl8-doc-8.6.15-r0.riscv64
file /usr/share/man/mann/zlib.ntcl conflicts between attempted installs of tcl-doc-9.0.0-r0.riscv64 and tcl8-doc-8.6.15-r0.riscv64
[...]
Signed-off-by: Thomas Perrot <thomas.perrot@bootlin.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Dan McGregor [Tue, 26 Nov 2024 18:06:42 +0000 (12:06 -0600)]
python3: package tkinter's shared objects
Seems every time python is updated this gets removed. That's likely
because the tk option can't be enabled in python3-native without
creating a dependency loop.
Instead of manually editing the manifest every time, explicitly
add it in the recipe as suggested by Alexander Kanavin.
Signed-off-by: Dan McGregor <dan.mcgregor@usask.ca> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Dan McGregor [Tue, 26 Nov 2024 18:06:41 +0000 (12:06 -0600)]
python3: do not overwrite FILES contents
Instead of relying completely on the python packaging manifest,
allow some default values. This is useful for the edge cases that
can't be found automatically by the create_manifest step.
In particular, tkinter can't be built for python3-native, so its
consistently missed in manifest updates.
Signed-off-by: Dan McGregor <dan.mcgregor@usask.ca> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Ross Burton [Wed, 27 Nov 2024 14:50:00 +0000 (14:50 +0000)]
python3-flit-core: upgrade 3.9.0 -> 3.10.1
Summary of changes:
- The ``--python`` option can now take the path of a virtualenv folder, as an
alternative to a Python executable.
- The metadata in packages now has the names of optional dependency groups
("extras") normalised, complying with version 2.3 of the metadata standard.
- Fix potential substitution of environment variables into passwords read from
``.pypirc`` files.
- A warning is now shown when building packages which specify the old
``flit.buildapi`` backend, which should be replaced by
``flit_core.buildapi``. It's a good idea to always set a maximum
version for the build requirement, to protect against changes in
future major versions of Flit.
- Avoid using the deprecated ``datetime.utcfromtimestamp()``.
- The tests for ``flit_core`` are no longer part of the installed package,
reducing the size of the wheels.
Remove the -tests package, as the tests are no longer installed.
Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Trevor Gamblin [Wed, 27 Nov 2024 21:26:56 +0000 (16:26 -0500)]
python3-numpy: inherit pkgconfig
This was supposed to be added in oe-core commit fd656aaf7fbe
("python3-numpy: upgrade 1.26.4 -> 2.1.3"), but it somehow got missed in
the final version of that patch. Add it now to fix possible do_compile
errors on some systems, due to host paths sneaking into the meson build
options, e.g.:
| Build machine cpu family: x86_64
| Build machine cpu: x86_64
| Host machine cpu family: x86_64
| Host machine cpu: x86_64
| Target machine cpu family: x86_64
| Target machine cpu: x86_64
| Program python3 found: YES (/home/tgamblin/workspace/yocto/poky/build/tmp/work/core2-64-poky-linux-musl/python3-numpy/2.1.3/recipe-sysroot-native/usr/bin/nativepython3)
| Did not find pkg-config by name 'pkg-config'
| Found pkg-config: NO
| Run-time dependency python found: NO (tried pkgconfig, pkgconfig and sysconfig)
|
| ../numpy-2.1.3/meson.build:41:12: ERROR: Python dependency not found
|
| A full log can be found at /home/tgamblin/workspace/yocto/poky/build/tmp/work/core2-64-poky-linux-musl/python3-numpy/2.1.3/build/meson-logs/meson-log.txt
Richard Purdie [Wed, 13 Nov 2024 16:36:37 +0000 (16:36 +0000)]
insane: Split ERROR_QA into CHECKLAYER_REQUIRED_TESTS
We'd like to start requiring some set of checks are enabled for Yocto Project
Compatible Status and to pass yocto-check-layer. Start by splitting ERROR_QA
into two sets, the ones we think can be required and the ones we know have
challenges to implement (e.g. with prebuilt binaries).
To change the required list, the YP TSC would need to approve.
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Wang Mingyu [Tue, 26 Nov 2024 01:29:58 +0000 (09:29 +0800)]
python3-websockets: upgrade 14.0 -> 14.1
Changelog:
============
- Supported max_queue=None in the asyncio and threading implementations for
consistency with the legacy implementation, even though this is never a good idea.
- Added close_code and close_reason attributes in the asyncio and threading
implementations for consistency with the legacy implementation.
- Once the connection is closed, messages previously received and buffered can
be read in the asyncio and threading implementations, just like in the legacy implementation.
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Wang Mingyu [Tue, 26 Nov 2024 01:29:55 +0000 (09:29 +0800)]
ofono: upgrade 2.12 -> 2.13
Changelog:
==========
- Add support for handling QMI PIN and Lock methods.
- Add support for handling QMI WWAN interfaces.
- Add support for handling RMNet interfaces.
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Wang Mingyu [Tue, 26 Nov 2024 01:29:51 +0000 (09:29 +0800)]
libsoup: upgrade 3.6.0 -> 3.6.1
Changelog:
============
* Fix `soup_uri_copy()` reading port as a long instead of an int
* Fix possible NULL deref in `soup_uri_decode_data_uri()`
* Fix possible overflow in `SoupContentSniffer`
* Fix assertion in `soup_uri_decode_data_uri()` on URLs with a path starting with `//`
* headers: Be more robust against invalid input when parsing params
* websocket: Fix possibility of being stuck in a read loop
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Wang Mingyu [Tue, 26 Nov 2024 01:29:49 +0000 (09:29 +0800)]
libadwaita: upgrade 1.6.1 -> 1.6.2
Changelog:
===========
- AdwDialog
- Fix accessible role critical when using window-backed dialogs
- AdwHeaderBar
- Fix a typo in docs
- AdwMessageDialog
- Fix a typo in adw_message_dialog_response() deprecation message
- AdwStyleManager
- Fix initial color scheme value on Windows
- Translation updates
- Dutch
- Serbian
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Wang Mingyu [Tue, 26 Nov 2024 01:29:47 +0000 (09:29 +0800)]
dnf: upgrade 4.21.1 -> 4.22.0
0005-Do-not-prepend-installroot-to-logdir.patch
refreshed for 4.22.0
Changelog:
=============
- doc: Naming of source and debug repos
- Fix /var/cache/dnf and /etc/yum packaging
- Allow --installroot on read-only bootc system
- spec: If DNF5 obsoletes DNF, do not build dnf and yum packages
- Print rpm unpack errors to the user (RhBug:2312906)
- package: remote_location() takes basedir into account
- spec: If DNF5 obsoletes DNF, do not build dnf-automatic
- Allow --downloadonly on read-only bootc system
- Add kernel-core to reboot_needed list
- Update need_reboot for dnf-automatic
- doc: Example send_error_messages in /etc/dnf/automatic.conf
- automatic: Check availability of config file
- Updated conf_ref to reflect change in fastestmirror behavior
- doc: Fix display issue of a code snippet
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Hiago De Franco [Tue, 26 Nov 2024 00:08:36 +0000 (21:08 -0300)]
weston: upgrade 13.0.3 -> 14.0.1
Key changes are:
- Patches have been removed since they were merged upstream and are no
longer needed on 14.0.1.
- Since commit a16598b038b2 ("backend-drm: make libdisplay-info
mandatory") from Weston, libdisplay-info is now a build dependency.
- Since commit f271dd34b617 ("compositor: delete cms-static and
cms-colord plugins") from Weston, "deprecated-color-management-colord"
has been removed, therefore remove the "colord" PACKAGECONFIG.
Signed-off-by: Hiago De Franco <hiago.franco@toradex.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Hiago De Franco [Tue, 26 Nov 2024 00:08:35 +0000 (21:08 -0300)]
libdisplay-info: add recipe
libdisplay-info is a EDID and DisplayID library. Goals:
- Provide a set of high-level, easy-to-use, opinionated functions as
well as low-level functions to access detailed information.
- Simplicity and correctness over performance and resource usage.
- Well-tested and fuzzed.
Since commit a16598b038b2 ("backend-drm: make libdisplay-info
mandatory") from Weston, this library is now mandatory in order to
build weston 14.0.1 and newer.
Signed-off-by: Hiago De Franco <hiago.franco@toradex.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Hiago De Franco [Tue, 26 Nov 2024 00:08:34 +0000 (21:08 -0300)]
hwdata: add recipe from meta-openembedded
Move hwdata recipe from meta-openembedded to openembedded-core.
libdisplay-info is now a requirement for Weston, since commit a16598b038b2 ("backend-drm: make libdisplay-info mandatory"). However,
in order to build libdisplay-info, hwdata is required. Since Weston is
built inside openembedded-core, move hwdata in order to be able to
upgrade Weston, so oe-core has no dependency on meta-oe.
hwdata contains various hardware identification and configuration data.
Signed-off-by: Hiago De Franco <hiago.franco@toradex.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
liburi-perl was added in 2010 to support lsb testing, never had
any other consumers in core, and since 2019 lsb testing is gone as well:
https://git.yoctoproject.org/poky/commit/?h=master-next&id=bac4bc9aa6a1f2fcf2ce9644925615185cc8e847
Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
intltool was dropped as a dependency in v236
See commit for reference:
https://github.com/systemd/systemd/pull/7313/commits/c81217920effddc93fb780cf8f9eb699d6fe1319
Signed-off-by: Guðni Már Gilbert <gudni.m.g@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
intltool was dropped as a dependency in v236
See commit for reference:
https://github.com/systemd/systemd/pull/7313/commits/c81217920effddc93fb780cf8f9eb699d6fe1319
Signed-off-by: Guðni Már Gilbert <gudni.m.g@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Peter Marko [Sun, 24 Nov 2024 12:37:58 +0000 (13:37 +0100)]
builder: set CVE_PRODUCT
Builder is a common word and there are many other builder components
which makes us to ignore CVEs for all of them.
There is already 1 ignored and currently 3 new ones.
Instead, set product to yocto to filter them.
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Simone Weiß [Sat, 23 Nov 2024 17:43:22 +0000 (17:43 +0000)]
gnutls: Upgrade to 3.8.8
In 3.8.7 is that the linkage to compression libraries were changed to use a new
tool called dlwrap, this caused issues during the last upgrade but is resolved
now with the update to 3.8.8. Remove the workarounds for the update hence.
Changes in 3.8.8 include:
* libgnutls:
* Experimental support for X25519MLKEM768 and SecP256r1MLKEM768
key exchange in TLS 1.3
* All records included in an OCSP response are now checked in TLS
* Handling of malformed compress_certificate extension is now more standard
compliant
* More flexible library linking options for compression libraries, TPM, and
liboqs support. The configure options, --with-zstd, --with-brotli, --with-zlib,
--with-tpm2, and --with-liboqs now take 4 states:
yes/link/dlopen/no, to specify how the libraries are linked or
loaded.
Do not set a specific library linking option but use the default(yes).
Signed-off-by: Simone Weiß <simone.p.weiss@posteo.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
projects / thirdparty / openembedded / openembedded-core.git / log
