Ross Burton [Wed, 19 Sep 2018 13:44:40 +0000 (14:44 +0100)]
gnupg: patch gnupg-native to allow path relocation
GnuPG hard-codes $bindir etc and uses them to find the helper binaries, such as
gpg-agent. This breaks if gnupg-native is reused from sstate for a different
build directory and GPG signing of packages is required.
Patch in getenv() checks for gnupg-native when returning the hardcoded paths,
and create a wrapper script which overrides GNUPG_BINDIR. There are more paths
that can be overridden, but this one is sufficient to make GnuPG work.
Signed-off-by: Alexander Kanavin <alexander.kanavin@linux.intel.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
gnupg: use native version for signing, rather than one provided by host
Using host gpg has been problematic, and particularly this removes
the need to serialize package creation, as long as --auto-expand-secmem
is passed to gpg-agent, and gnupg >= 2.2.4 is in use
(https://dev.gnupg.org/T3530).
Sadly, gpg-agent itself is single-threaded, so in the longer run
we might want to seek alternatives:
https://lwn.net/Articles/742542/
(a smaller issue is that rpm itself runs the gpg fronted in a serial
fashion, which slows down the build in cases of recipes with very
large amount of packages, e.g. glibc-locale)
Note that sstate signing and verification continues to use host
gpg, as depending on native gpg would create circular dependencies.
Bruce Ashfield [Fri, 24 Aug 2018 14:59:53 +0000 (10:59 -0400)]
linux-yocto/4.12: update to v4.12.28
Integrating Paul Gortmaker's -stable updates to 4.12 that comprise the
following changes:
f4fd7580487d Linux 4.12.28 d15dfc7d192f net: mvneta: eliminate wrong call to handle rx descriptor error c7a79cbd2b44 net: mvneta: use proper rxq_number in loop on rx queues f65f1aed2ef2 net: mvneta: clear interface link status on port disable 402f4ea26693 tcp: add tcp_ooo_try_coalesce() helper 035eddf502ef tcp: call tcp_drop() from tcp_data_queue_ofo() c224a5920d55 tcp: detect malicious patterns in tcp_collapse_ofo_queue() 7c5d21c36cec tcp: avoid collapses in tcp_prune_queue() if possible f999a5cfc3eb tcp: free batches of packets in tcp_prune_ofo_queue() 3471d76b1128 net: add rb_to_skb() and other rb tree helpers fcd212157f50 libnvdimm, pfn: fix start_pad handling for aligned namespaces d90d61722843 libnvdimm, dax: fix 1GB-aligned namespaces vs physical misalignment df6a2110169e drm/sun4i: Fix error path handling d2d90272068d drm/i915: Flush pending GTT writes before unbinding 55e3ba836aee powerpc/perf: Dereference BHRB entries safely 32c5b092ac7e clk: sunxi: sun9i-mmc: Implement reset callback for reset controls a472f9b5c546 pinctrl: cherryview: Mask all interrupts on Intel_Strago based systems 32f9f01a1b49 spi: a3700: Fix clk prescaling for coefficient over 15 39e2376e2774 spi: xilinx: Detect stall with Unknown commands 104bf43e4653 Revert "parisc: Re-enable interrupts early" 2c6a864363b5 parisc: Hide Diva-built-in serial aux and graphics card 4e92abc4d371 parisc: Align os_hpmc_size on word boundary 8df2ad333664 ALSA: usb-audio: Add native DSD support for Esoteric D-05X 2d7184d7f8b1 ALSA: rawmidi: Avoid racy info ioctl via ctl device 425708ccc413 mfd: twl6040: Fix child-node lookup d99aacab316b mfd: twl4030-audio: Fix sibling-node lookup cd2ca561cdd7 mfd: cros ec: spi: Don't send first message too soon f5d153b69e6a crypto: mcryptd - protect the per-CPU queue with a lock 01b2634b17f4 acpi, nfit: fix health event notification 1170a37d5339 ACPI: APEI / ERST: Fix missing error handling in erst_reader() 0cf5d1f5ce10 bpf: fix incorrect sign extension in check_alu_op() 39cc58874bfc bpf, sparc: fix usage of wrong reg for load_skb_regs after call 8c570303798e bpf, ppc64: do not reload skb pointers in non-skb context 05bd23b36b88 bpf, s390x: do not reload skb pointers in non-skb context da92e092ffa7 platform/x86: asus-wireless: send an EV_SYN/SYN_REPORT between state changes ab3980511fa0 thermal/drivers/hisi: Fix multiple alarm interrupts firing ed7ec377cb05 thermal/drivers/hisi: Simplify the temperature/step computation b4322338048d thermal/drivers/hisi: Fix kernel panic on alarm interrupt e9b4b6019cc2 thermal/drivers/hisi: Fix missing interrupt enablement 01f1870f5aa8 IB/opa_vnic: Properly return the total MACs in UC MAC list 59522364dab2 IB/opa_vnic: Properly clear Mac Table Digest 84cf0ea1cb2a cpuidle: fix broadcast control when broadcast can not be entered fdb28a72dafa rtc: set the alarm to the next expiring timer 245a952509f6 tcp: fix under-evaluated ssthresh in TCP Vegas ebe28298b759 clk: sunxi-ng: sun6i: Rename HDMI DDC clock to avoid name collision c31c122f7744 staging: greybus: light: Release memory obtained by kasprintf 7900ee86e495 net: ipv6: send NS for DAD when link operationally up 0c8d7ea9c7db ibmvnic: Set state UP eb3237c59a98 fm10k: ensure we process SM mbx when processing VF mbx a076534d71b3 vfio/pci: Virtualize Maximum Payload Size 0e8c3cf3f83e i40e: fix client notify of VF reset 2e3bad157461 scsi: lpfc: PLOGI failures during NPIV testing 022e3fe9ac98 scsi: lpfc: Fix secure firmware updates 9e7341570bf9 fm10k: fix mis-ordered parameters in declaration for .ndo_set_vf_bw af88451b2676 ASoC: codecs: msm8916-wcd-analog: fix module autoload 2fc38deb5bed ASoC: img-parallel-out: Add pm_runtime_get/put to set_fmt callback 4529e660bc83 tracing: Exclude 'generic fields' from histograms 3485fd44f243 PCI/AER: Report non-fatal errors only to the affected endpoint 64e367610786 Bluetooth: BT_HCIUART now depends on SERIAL_DEV_BUS 47663fe61367 Bluetooth: hci_uart_set_flow_control: Fix NULL deref when using serdev 58adf4fe65f8 md: always set THREAD_WAKEUP and wake up wqueue if thread existed e9f7be0e550e block,bfq: Disable writeback throttling c09fcc304541 IB/rxe: put the pool on allocation failure 392f4c00adca IB/rxe: check for allocation failure on elem 179099ba0d69 ixgbe: fix use of uninitialized padding e2e131da3b6b i40e: use the safe hash table iterator when deleting mac filters 757ad831c703 igb: check memory allocation failure e156a3afb676 PM / OPP: Move error message to debug level 9bd17b3b4bb6 PCI: Create SR-IOV virtfn/physfn links before attaching driver 54da833e63b0 scsi: mpt3sas: Fix IO error occurs on pulling out a drive from RAID1 volume created on two SATA drive 929cc7c94e3b scsi: cxgb4i: fix Tx skb leak 84aa72a81de3 PCI: Avoid bus reset if bridge itself is broken 3932edaebc65 net: phy: at803x: Change error to EINVAL for invalid MAC e9bd07539e3f rtc: pl031: make interrupt optional 9f77ab2f562c crypto: lrw - Fix an error handling path in 'create()' 59e5a2e7eec9 crypto: crypto4xx - increase context and scatter ring buffer elements 13c0df6a379d clk: sunxi-ng: sun5i: Fix bit offset of audio PLL post-divider 68e13e506d6e clk: sunxi-ng: nm: Check if requested rate is supported by fractional clock 3996734fc715 drm: Add retries for lspcon mode detection 77190a6d2d57 backlight: pwm_bl: Fix overflow condition d3b4b8043ff7 optee: fix invalid of_node_put() in optee_driver_init() 752218b19686 posix-timer: Properly check sigevent->sigev_notify 16c39a33a5c6 ACPI / APEI: adjust a local variable type in ghes_ioremap_pfn_irq() ba0b2e6cbb82 Linux 4.12.27 feea4d492d73 usb: musb: da8xx: fix babble condition handling 6d8d83c4ec67 ath10k: fix build errors with !CONFIG_PM 00e875f83a3c ath9k: fix tx99 potential info leak 01cf18e17476 lightnvm: pblk: fix min size for page mempool 4413575d48be lightnvm: pblk: initialize debug stat counter 87135620a06a lightnvm: pblk: fix changing GC group list for a line 3b1abf7d20f6 icmp: don't fail on fragment reassembly time exceeded 4be8ae2da97b IB/ipoib: Fix lockdep issue found on ipoib_ib_dev_heavy_flush 7d284754ed54 IB/ipoib: Grab rtnl lock on heavy flush when calling ndo_open/stop 634b3e0fefd7 RDMA/cma: Avoid triggering undefined behavior f9f24086ba42 macvlan: Only deliver one copy of the frame to the macvlan interface aba3745fc9b0 udf: Avoid overflow when session starts at large offset 4a9bf3983ef9 md-cluster: fix wrong condition check in raid1_write_request e08da1a3d9d5 raid5-ppl: check recovery_offset when performing ppl recovery a6b9b60622b0 scsi: bfa: integer overflow in debugfs a6adc19ff5a4 scsi: sd: change allow_restart to bool in sysfs interface d23a6641b217 scsi: sd: change manage_start_stop to bool in sysfs interface be59ef05ed52 rtl8188eu: Fix a possible sleep-in-atomic bug in rtw_disassoc_cmd 9257df5ece69 vt6655: Fix a possible sleep-in-atomic bug in vt6655_suspend 5d0d0b750520 IB/core: Fix calculation of maximum RoCE MTU 950215a22a7a scsi: scsi_devinfo: Add REPORTLUN2 to EMC SYMMETRIX blacklist entry 40dd3da9911d raid5: Set R5_Expanded on parity devices as well as data. d63147f7712f pinctrl: adi2: Fix Kconfig build problem b25a34c20291 dev/dax: fix uninitialized variable build warning 3b928d69ed7c tty fix oops when rmmod 8250 6fd73bd5acc5 ipv4: ipv4_default_advmss() should use route mtu e8552a24db2a soc: mediatek: pwrap: fix compiler errors 023499e5fff8 powerpc/xmon: Check before calling xive functions 7092b9c569ee powerpc/perf/hv-24x7: Fix incorrect comparison in memord d85bb8676f60 serdev: ttyport: enforce tty-driver open() requirement dcc2d9b7db19 mfd: mxs-lradc: Fix error handling in mxs_lradc_probe() d7630ac47698 scsi: hpsa: destroy sas transport properties before scsi_host a2133c918746 scsi: hpsa: cleanup sas_phy structures in sysfs when unloading 37686080a0c8 PCI: Detach driver before procfs & sysfs teardown on device remove 585eb66776b7 RDMA/cxgb4: Declare stag as __be32 06a21042a540 xfs: fix incorrect extent state in xfs_bmap_add_extent_unwritten_real 98da748f2c95 xfs: fix log block underflow during recovery cycle verification 9aaebfb38490 l2tp: cleanup l2tp_tunnel_delete calls 4fd806e81bcb nvme: use kref_get_unless_zero in nvme_find_get_ns 377d9449f868 platform/x86: hp_accel: Add quirk for HP ProBook 440 G4 89e9f0fce2a4 liquidio: fix kernel panic in VF driver 85aad298ecc2 samples/bpf: adjust rlimit RLIMIT_MEMLOCK for xdp1 767f9da42096 ARM64: dts: meson-gxbb-odroidc2: fix usb1 power supply 65743dd02181 mtd: spi-nor: stm32-quadspi: Fix uninitialized error return code 0501313aa697 btrfs: tests: Fix a memory leak in error handling path in 'run_test()' 563e097ec448 btrfs: avoid null pointer dereference on fs_info when calling btrfs_crit 3faadbbe68b1 btrfs: undo writable superblocke when sprouting fails 7028f26c6034 btrfs: Explicitly handle btrfs_update_root failure 3f0a4dfc8eb9 Bluetooth: hci_ldisc: Fix another race when closing the tty. abb921b20fa0 Ib/hfi1: Return actual operational VLs in port info query 879b18ebb8f4 bcache: fix wrong cache_misses statistics 744eb7bd3386 bcache: explicitly destroy mutex while exiting 653aad5c1702 media: usbtv: fix brightness and contrast controls c4d5c7940953 GFS2: Take inode off order_write list when setting jdata flag 2e510357e1a6 scsi: scsi_debug: write_same: fix error report 56c755841ee6 misc: pci_endpoint_test: Avoid triggering a BUG() b55d52393e28 misc: pci_endpoint_test: Fix failure path return values in probe aeac8e4c0c15 thermal/drivers/step_wise: Fix temperature regulation misbehavior aaca414203c4 ASoC: rsnd: rsnd_ssi_run_mods() needs to care ssi_parent_mod 0587e5a36d00 ppp: Destroy the mutex when cleanup 4a7735ca4455 clk: tegra: Fix cclk_lp divisor register 0006385aadd0 clk: tegra: Use readl_relaxed_poll_timeout_atomic() in tegra210_clock_init() 6ae2754d991b blk-mq-sched: dispatch from scheduler IFF progress is made in ->dispatch ec4585cdc959 clk: hi6220: mark clock cs_atb_syspll as critical f203d6193f5c clk: imx6: refine hdmi_isfr's parent to make HDMI work on i.MX6 SoCs w/o VPU c9ce9a4d1734 clk: imx: imx7d: Fix parent clock for OCRAM_CLK 5f200f317929 clk: mediatek: add the option for determining PLL source clock 6f7955a0aa2a crypto: tcrypt - fix buffer lengths in test_aead_speed() 40734099baaa xfs: truncate pagecache before writeback in xfs_setattr_size() 165b974bd72a iommu/amd: Limit the IOVA page range to the specified addresses a2e1fcc04fb6 badblocks: fix wrong return value in badblocks_set if badblocks are disabled 75920b77b802 target/file: Do not return error for UNMAP if length is zero ca73c042292d target:fix condition return in core_pr_dump_initiator_port() 8e2ee3f5ff33 iscsi-target: fix memory leak in lio_target_tiqn_addtpg() f1ae60da96df target/iscsi: Fix a race condition in iscsit_add_reject_from_cmd() d5adfbee09dc target/iscsi: Detect conn_cmd_list corruption early edd7fdf83184 platform/x86: intel_punit_ipc: Fix resource ioremap warning da2aa58cb07b powerpc/pseries/vio: Dispose of virq mapping on vdevice unregister 2ae1d60028ab powerpc/ipic: Fix status get and status clear 1d0cfd6df447 powerpc/opal: Fix EBUSY bug in acquiring tokens 88189efa7ee7 netfilter: ipvs: Fix inappropriate output of procfs 39254860365c iommu/mediatek: Fix driver name c82f9ea385ab PCI: dwc: Fix enumeration end when reaching root subordinate 5dad0dfd17df PCI: Do not allocate more buses than available in parent 4a917030981d powerpc: Don't preempt_disable() in show_cpuinfo() 0bc0d339ff6c powerpc/powernv/cpufreq: Fix the frequency read by /proc/cpuinfo 7842177fdc43 PCI/PME: Handle invalid data when reading Root Status 301c44edb5a1 dmaengine: ti-dma-crossbar: Correct am335x/am43xx mux value type 2761bc37b1c2 ASoC: Intel: Skylake: Fix uuid_module memory leak in failure case c42830902147 PM / s2idle: Clear the events_check_enabled flag 9c70ec2c413d scsi: aacraid: address UBSAN warning regression 3819c3c756b0 scsi: aacraid: use timespec64 instead of timeval e262d43729be rtc: pcf8563: fix output clock rate 3ecf1bdeb61e video: fbdev: au1200fb: Return an error code if a memory allocation fails d56242baba22 video: fbdev: au1200fb: Release some resources if a memory allocation fails 3b53b4e4c0ab video: udlfb: Fix read EDID timeout f50c8ab6dc0d fbdev: controlfb: Add missing modes to fix out of bounds access bfbfacb318cd sfc: don't warn on successful change of MAC ae058bf77e63 HID: cp2112: fix broken gpio_direction_input callback 91590951dec1 ext4: fix crash when a directory's i_size is too small 4fae0491c35c ext4: fix fdatasync(2) after fallocate(2) operation df19eb58d7be dmaengine: dmatest: fix container_of member in dmatest_callback 100cb4506fb4 dmaengine: dmatest: move callback wait queue to thread context 4d873e954ac0 eeprom: at24: change nvmem stride to 1 b90737b239b0 iw_cxgb4: only insert drain cqes if wq is flushed 6b1f48a27656 dm: fix various targets to dm_register_target after module __init resources created 26c2e6fc10f1 scsi: core: Fix a scsi_show_rq() NULL pointer dereference 04039227baf7 nfsd: auth: Fix gid sorting when rootsquash enabled 143fdc512ac6 NFS: Fix unstable write completion 7482c56f758c NFS: Use an atomic_long_t to count the number of commits 3ef4a32040bf nfs: don't wait on commit in nfs_commit_inode() if there were no commit requests 4a70dd38f444 xhci: Don't add a virt_dev to the devs array before it's fully allocated fa7944fd5601 usb: xhci: fix TDS for MTK xHCI1.1 80aa2eb9b51b ceph: drop negative child dentries before try pruning inode's alias b9db0ab47687 mmc: core: apply NO_CMD23 quirk to some specific cards ff1b82c5314c usbip: fix stub_send_ret_submit() vulnerability to null transfer_buffer cea2ad71f37b usbip: fix stub_rx: harden CMD_SUBMIT path to handle malicious input 1e5edda8ccd3 usbip: fix stub_rx: get_pipe() to validate endpoint number 3ac1e4089c48 USB: core: prevent malicious bNumInterfaces overflow 2479ee21bf60 USB: uas and storage: Add US_FL_BROKEN_FUA for another JMicron JMS567 ID b3fd05a19818 tracing: Allocate mask_str buffer dynamically 5eb37713e296 kernel: make groups_sort calling a responsibility group_info allocators d87a616735d8 cifs: fix NULL deref in SMB2_read d22121ce1210 crypto: rsa - fix buffer overread when stripping leading zeroes 0ad02bd37731 mfd: fsl-imx25: Clean up irq settings during removal
Bruce Ashfield [Mon, 9 Jul 2018 15:25:38 +0000 (11:25 -0400)]
linux-yocto/4.12: update to v4.12.26
Integrating Paul Gortmaker's -stable 4.12 release, which comprises
the following commits:
b0f63e84c132 Linux 4.12.26 61be5424616e usbnet: fix alignment for frames with no ethernet header 6d0519e75609 tipc: fix memory leak in tipc_accept_from_sock() 8560506d5b7a tipc: call tipc_rcv() only if bearer is up in tipc_udp_recv() 5ceba73f1c24 tcp: remove buggy call to tcp_v6_restore_cb() 450a839e54a6 tcp/dccp: block bh before arming time_wait timer 872d246eaed9 stmmac: reset last TSO segment size after device open 74386d6ee7bf sit: update frag_off info 3df033244a42 s390/qeth: fix GSO throughput regression b7bd0107008f s390/qeth: fix early exit from error path 7f02573318ba s390/qeth: build max size GSO skbs on L2 devices 3c8a527e0496 rds: Fix NULL pointer dereference in __rds_rdma_map 00c0600c0a35 net: remove hlist_nulls_add_tail_rcu() 193d9a02e802 net: realtek: r8169: implement set_link_ksettings() 8fb1c5e220ee net: qmi_wwan: add Quectel BG96 2c7c:0296 0c2ba29a13d9 net/packet: fix a race in packet_bind() and packet_notifier() bb06331e9156 net: openvswitch: datapath: fix data type in queue_gso_packets ea15a664c5b8 usb: gadget: ffs: Forbid usb_ep_alloc_request from sleeping 7f11deffc177 ipmi: Stop timers before cleaning up the module fb006a18929e fix kcm_clone() ee82eaf439cc RDMA/cxgb4: Annotate r2 and stag as __be32 b71be191d4ed md: free unused memory after bitmap resize 6d24efc56915 dm raid: fix panic when attempting to force a raid to sync 490fc05683b4 blk-mq: Avoid that request queue removal can trigger list corruption d9e8cb49aaf1 ide: ide-atapi: fix compile error with defining macro DEBUG 115978628b54 ipvlan: fix ipv6 outbound device ee2ce344ee06 powerpc/powernv/idle: Round up latency and residency values 0fe4d3f9fb5b afs: Connect up the CB.ProbeUuid 94bdd552d7b1 IB/mlx5: Assign send CQ and recv CQ of UMR QP aa02d85e4d08 IB/mlx4: Increase maximal message size under UD QP dd955bcce383 bnxt_re: changing the ip address shouldn't affect new connections a4b3e59bcb04 f2fs: fix to clear FI_NO_PREALLOC 78f9d39a2735 xfrm: Copy policy family in clone_policy 4577662b6010 atm: horizon: Fix irq release error d7241b40fe6d kbuild: rpm-pkg: fix jobserver unavailable warning bffb011d5446 mailbox: mailbox-test: don't rely on rx_buffer content to signal data ready 849ef7edfa4c clk: hi3660: fix incorrect uart3 clock freqency d561354fe15d clk: uniphier: fix DAPLL2 clock rate of Pro5 eada5db0be6e clk: qcom: common: fix legacy board-clock registration 11ea07285eb4 geneve: fix fill_info when link down 4e0b53bd177a sctp: return error if the asoc has been peeled off in sctp_wait_for_sndbuf be7cba326d33 sctp: use the right sk after waking up from wait_buf sleep 2c485f6fa3be sctp: do not free asoc when it is already dead in sctp_sendmsg 6e2b427a32da slub: fix sysfs duplicate filename creation when slub_debug=O e66ebbc23607 zsmalloc: calling zs_map_object() from irq is a bug dc423eda615d sparc64/mm: set fields in deferred pages 956c73ca6664 block: wake up all tasks blocked in get_request() 1f35bda74d1a dt-bindings: usb: fix reg-property port-number range 412c76f0f9b8 sunrpc: Fix rpc_task_begin trace point 09f79313b317 NFS: Fix a typo in nfs_rename() a550f7b43f63 dynamic-debug-howto: fix optional/omitted ending line number to be LARGE instead of 0 80f443550f8f lib/genalloc.c: make the avail variable an atomic_long_t 1dfea0e03917 drivers/rapidio/devices/rio_mport_cdev.c: fix resource leak in error handling path in 'rio_dma_transfer()' 4add25bf3dff route: update fnhe_expires for redirect when the fnhe exists c53ad6cb2f86 route: also update fnhe_genid when updating a route cache d09b814cd2aa gre6: use log_ecn_error module parameter in ip6_tnl_rcv() f9ef4cd05462 mac80211_hwsim: Fix memory leak in hwsim_new_radio_nl() a95269b0e4e5 x86/mpx/selftests: Fix up weird arrays 76e5bd0ae30a coccinelle: fix parallel build with CHECK=scripts/coccicheck 59f2aa43a314 kbuild: pkg: use --transform option to prefix paths in tar 50ce05457e39 irqchip/qcom: Fix u32 comparison with value less than zero e3fec500f619 ARM: avoid faulting on qemu 602f85aeefb7 crypto: talitos - fix ctr-aes-talitos 73e76cb0ca1f crypto: talitos - fix use of sg_link_tbl_len f17fe30404de crypto: talitos - fix AEAD for sha224 on non sha224 capable chips f5fa317606b7 crypto: talitos - fix setkey to check key weakness 519619ec114a crypto: talitos - fix memory corruption on SEC2 e7984cca5abc crypto: talitos - fix AEAD test failures 64d05b5d1d86 bus: arm-ccn: fix module unloading Error: Removing state 147 which has instances left. e14e213dfd51 bus: arm-ccn: Fix use of smp_processor_id() in preemptible context 63efd55a2c6b bus: arm-ccn: Check memory allocation failure fd30c25b5596 bus: arm-cci: Fix use of smp_processor_id() in preemptible context d358187f050b media: dvb: i2c transfers over usb cannot be done from stack 2ae277ebe31f drm/exynos: gem: Drop NONCONTIG flag for buffers allocated without IOMMU 0792a5a27074 drm/bridge: analogix dp: Fix runtime PM state in get_modes() callback fdc899328ff3 kdb: Fix handling of kallsyms_symbol_next() return value 08f22e2251fd brcmfmac: change driver unbind order of the sdio function devices f9a77013fa02 powerpc/64s: Initialize ISAv3 MMU registers before setting partition table 9c6dfd696e5a KVM: s390: Fix skey emulation permission check 092937ce1aae s390: fix compat system call table 4f4b2e279816 s390: always save and restore all registers on context switch 8c54b7d880d4 smp/hotplug: Move step CPUHP_AP_SMPCFD_DYING to the correct place a2ec325c7d20 iommu/vt-d: Fix scatterlist offset handling 743ac71ece80 ALSA: usb-audio: Fix the missing ctl name suffix at parsing SU 1df6e988ae39 ALSA: usb-audio: Add check return value for usb_string() 974394e57a05 ALSA: usb-audio: Fix out-of-bound error f4753360efda ALSA: seq: Remove spurious WARN_ON() at timer check 478c2ed7ca1c ALSA: pcm: prevent UAF in snd_pcm_info b12060cae8c2 btrfs: handle errors while updating refcounts in update_ref_for_cow ecfc013c7f23 btrfs: fix missing error return in btrfs_drop_snapshot 45822ea3d1bf X.509: fix comparisons of ->pkey_algo 19057ced2699 X.509: reject invalid BIT STRING for subjectPublicKey a3ad8e49bc26 KEYS: reject NULL restriction string when type is specified 7c2ccfe13faa KEYS: add missing permission check for request_key() destination 664879ff9aef ASN.1: check for error from ASN1_OP_END__ACT actions 4c0e7ec3072d ASN.1: fix out-of-bounds read when parsing indefinite length item 17a6f363daf9 efi/esrt: Use memunmap() instead of kfree() to free the remapping 8dd372dd8845 efi: Move some sysfs files to be read-only by root 97c6b857262f scsi: libsas: align sata_device's rps_resp on a cacheline eb78a8b8f172 scsi: use dma_get_cache_alignment() as minimum DMA alignment db4a32fa5cf2 scsi: dma-mapping: always provide dma_get_cache_alignment 1f55442d0992 isa: Prevent NULL dereference in isa_bus driver callbacks 93fdb7dc713e hv: kvp: Avoid reading past allocated blocks from KVP file d745d533737a pinctrl: armada-37xx: Fix direction_output() callback behavior ae6add36f3ce iio: adc: meson-saradc: fix the bit_idx of the adc_en clock 50c87ecdb250 iio: adc: cpcap: fix incorrect validation 657257ba13ae iio: health: max30102: Temperature should be in milli Celsius 3da92b4ab2cc virtio: release virtio index when fail to device_register f6fe0d2777b2 can: peak/pcie_fd: fix potential bug in restarting tx queue 654babccd437 can: usb_8dev: cancel urb on -EPIPE and -EPROTO bda1dccdda47 can: esd_usb2: cancel urb on -EPIPE and -EPROTO 9ff8eb7ef05b can: ems_usb: cancel urb on -EPIPE and -EPROTO 51e5de2b036b can: mcba_usb: cancel urb on -EPROTO c94c94a367ef can: kvaser_usb: cancel urb on -EPIPE and -EPROTO c8474d8798ab can: kvaser_usb: ratelimit errors if incomplete messages are received 1936ba2b0b40 can: kvaser_usb: Fix comparison bug in kvaser_usb_read_bulk_callback() bc86162fa81a can: kvaser_usb: free buf in error paths 4a879f2d1636 can: ti_hecc: Fix napi poll return value for repoll 09b06e3f7b1d can: flexcan: fix VF610 state transition issue f81db8e7d0cb can: peak/pci: fix potential bug when probe() fails 7b747f65c553 can: mcba_usb: fix device disconnect bug 0a3964b0a8d3 usb: f_fs: Force Reserved1=1 in OS_DESC_EXT_COMPAT d1c24d05d7ec serdev: ttyport: fix tty locking in close 541fbaaf6db7 serdev: ttyport: fix NULL-deref on hangup a6d00d0df9e5 serdev: ttyport: add missing receive_buf sanity checks b30e0bedb66b usb: gadget: udc: renesas_usb3: fix number of the pipes
Bruce Ashfield [Mon, 9 Jul 2018 15:25:36 +0000 (11:25 -0400)]
linux-yocto/4.12: bump to v4.12.25
Integrating Paul Gortmaker's v4.12.25 -stable queue, which comprises the
following commits:
e61748ef5db0 Linux 4.12.25 c34553e3e8af x86/bugs: Rename SSBD_NO to SSB_NO 4aa9e65a91b9 x86/bugs: Remove x86_spec_ctrl_set() 7283d22a40c4 x86/bugs: Expose x86_spec_ctrl_base directly 60fb8f1bbd46 x86/speculation: Rework speculative_store_bypass_update() cc8a65725832 x86/cpufeatures: Disentangle SSBD enumeration 4cadf648f802 x86/cpufeatures: Disentangle MSR_SPEC_CTRL enumeration from IBRS 14476a34b4d0 x86/speculation: Use synthetic bits for IBRS/IBPB/STIBP e66dd0595eac x86/cpu: Make alternative_msr_write work for 32-bit code 32e38eda9958 x86/bugs: Fix the parameters alignment and missing void 5593194735ea x86/bugs: Make cpu_show_common() static 86e7eb199990 x86/bugs: Fix __ssb_select_mitigation() return type 4efd9170a722 Documentation/spec_ctrl: Do some minor cleanups e074092d9d0a proc: Use underscores for SSBD in 'status' f57b4be9a391 x86/bugs: Rename _RDS to _SSBD f395cafed558 x86/speculation: Make "seccomp" the default mode for Speculative Store Bypass 9599751872de seccomp: Move speculation migitation control to arch code 647fb2d84f05 seccomp: Add filter flag to opt-out of SSB mitigation 44d5a1d9fe07 seccomp: Use PR_SPEC_FORCE_DISABLE 9490e71c3074 prctl: Add force disable speculation ad5b97fe1ab6 x86/bugs: Make boot modes __ro_after_init cfc00a7877b6 seccomp: Enable speculation flaw mitigations bc4bf81c64b0 proc: Provide details on speculation flaw mitigations a41d2136a447 nospec: Allow getting/setting on non-current task 7e17279e72b9 x86/speculation: Add prctl for Speculative Store Bypass mitigation eea6b1abc91e x86/process: Allow runtime control of Speculative Store Bypass c8630c28cd28 prctl: Add speculation control prctls ecefae5ca101 x86/speculation: Create spec-ctrl.h to avoid include hell 4bcdf54612aa x86/bugs/AMD: Add support to disable RDS on Fam[15,16,17]h if requested 6ce1317929a3 x86/bugs: Whitelist allowed SPEC_CTRL MSR values cd5e5e6f2e39 x86/bugs/intel: Set proper CPU features and setup RDS d97584229d85 x86/bugs: Provide boot parameters for the spec_store_bypass_disable mitigation 793b7453cfc5 x86/cpufeatures: Add X86_FEATURE_RDS c6c3cd47ccbb x86/bugs: Expose /sys/../spec_store_bypass 2d92a521bda7 x86/bugs: Read SPEC_CTRL MSR during boot and re-use reserved bits 81865e325abe x86/bugs: Concentrate bug reporting into a separate function 45245a5b9dc4 x86/bugs: Concentrate bug detection into a separate function 05e82d536970 x86/nospec: Simplify alternative_msr_write() effb0dfecfa2 x86/cpu_entry_area: Sync cpu_entry_area to initial_page_table 89fffee9d555 x86/xen: Zero MSR_IA32_SPEC_CTRL before suspend 76199d7beb0b x86/speculation: Move firmware_restrict_branch_speculation_*() from C to CPP 426210b00b02 x86/speculation: Use IBRS if available before calling into firmware 63904f8a6d41 x86/entry/64: Fix CR3 restore in paranoid_exit() 35cf6a9daf5f x86/cpu: Change type of x86_cache_size variable to unsigned int 7fded60b2cb7 x86/spectre: Fix an error message 343945a16727 x86/speculation: Add <asm/msr-index.h> dependency eb0f059ee2de nospec: Move array_index_nospec() parameter checking into separate macro 31951a39de73 x86/speculation: Fix up array_index_nospec_mask() asm constraint 344711f16fec x86/entry/64: Remove the unused 'icebp' macro d4324affaf05 x86/entry/64: Fix paranoid_entry() frame pointer warning 3cadbc9228b4 x86/entry/64: Indent PUSH_AND_CLEAR_REGS and POP_REGS properly 0d561147160c x86/entry/64: Get rid of the ALLOC_PT_GPREGS_ON_STACK and SAVE_AND_CLEAR_REGS macros 22c1269eefa9 x86/entry/64: Use PUSH_AND_CLEAN_REGS in more cases ac897d25b1d3 x86/entry/64: Introduce the PUSH_AND_CLEAN_REGS macro 226eea037fa6 x86/entry/64: Interleave XOR register clearing with PUSH instructions 120d889cac9f x86/entry/64: Merge the POP_C_REGS and POP_EXTRA_REGS macros into a single POP_REGS macro 2d5eb3888f24 x86/entry/64: Merge SAVE_C_REGS and SAVE_EXTRA_REGS, remove unused extensions 797a6f4444f1 x86/speculation: Clean up various Spectre related details ff032faca431 KVM/nVMX: Set the CPU_BASED_USE_MSR_BITMAPS if we have a valid L02 MSR bitmap 1aaab2d1a1fd KVM/x86: Reduce retpoline performance impact in slot_handle_level_range(), by always inlining iterator helper methods dd17c0f5a114 Revert "x86/speculation: Simplify indirect_branch_prediction_barrier()" add7dd4f1f81 x86/speculation: Correct Speculation Control microcode blacklist again 358f03a9395f x86/speculation: Update Speculation Control microcode blacklist 0307861327c7 x86/mm/pti: Fix PTI comment in entry_SYSCALL_64() a612b987b028 x86/entry/64/compat: Clear registers for compat syscalls, to reduce speculation attack surface 1b8b432f6dee x86/entry/64: Clear registers for exceptions/interrupts, to reduce speculation attack surface 513e4bbfc32c x86/entry/64: Clear extra registers beyond syscall arguments, to reduce speculation attack surface
Armin Kuster [Mon, 22 Oct 2018 14:05:12 +0000 (15:05 +0100)]
tzdata: update to 2018f
Briefly:
Volgograd moves from +03 to +04 on 2018-10-28.
Fiji ends DST 2019-01-13, not 2019-01-20.
Most of Chile changes DST dates, effective 2019-04-06.
Changes to future timestamps
Volgograd moves from +03 to +04 on 2018-10-28 at 02:00.
(Thanks to Alexander Fetisov and Stepan Golosunov.)
Fiji ends DST 2019-01-13 instead of the 2019-01-20 previously
predicted. (Thanks to Raymond Kumar.) Adjust future predictions
accordingly.
Most of Chile will end DST on the first Saturday in April at 24:00 mainland
time, and resume DST on the first Saturday in September at 24:00 mainland
time. The changes are effective from 2019-04-06, and do not affect the
Magallanes region modeled by America/Punta_Arenas. (Thanks to Juan Correa
and Tim Parenti.) Adjust future predictions accordingly.
Changes to past timestamps
The 2018-05-05 North Korea 30-minute time zone change took place
at 23:30 the previous day, not at 00:00 that day.
China's 1988 spring-forward transition was on April 17, not
April 10. Its DST transitions in 1986/91 were at 02:00, not 00:00.
(Thanks to P Chan.)
Fix several issues for Macau before 1992. Macau's pre-1904 LMT
was off by 10 s. Macau switched to +08 in 1904 not 1912, and
temporarily switched to +09/+10 during World War II. Macau
observed DST in 1942/79, not 1961/80, and there were several
errors for transition times and dates. (Thanks to P Chan.)
The 1948-1951 fallback transitions in Japan were at 25:00 on
September's second Saturday, not at 24:00. (Thanks to Phake Nick.)
zic turns this into 01:00 on the day after September's second
Saturday, which is the best that POSIX or C platforms can do.
Incorporate 1940-1949 Asia/Shanghai DST transitions from a 2014
paper by Li Yu, replacing more-questionable data from Shanks.
Changes to time zone abbreviations
Use "PST" and "PDT" for Philippine time. (Thanks to Paul Goyette.)
Changes to documentation
New restrictions: A Rule name must start with a character that
is neither an ASCII digit nor "-" nor "+", and an unquoted name
should not use characters in the set "!$%&'()*,/:;<=>?@[\]^`{|}~".
The latter restriction makes room for future extensions (a
possibility noted by Tom Lane).
tzfile.5 now documents what time types apply before the first and
after the last transition, if any.
Documentation now uses the spelling "timezone" for a TZ setting
that determines timestamp history, and "time zone" for a
geographic region currently sharing the same standard time.
The name "TZif" is now used for the tz binary data format.
tz-link.htm now mentions the A0 TimeZone Migration utilities.
(Thanks to Aldrin Martoq for the link.)
Changes to build procedure
New 'make' target 'rearguard_tarballs' to build the rearguard
tarball only. This is a convenience on platforms that lack lzip
if you want to build the rearguard tarball. (Problem reported by
Deborah Goldsmith.)
tzdata.zi is now more stable from release to release. (Problem
noted by Tom Lane.) It is also a bit shorter.
tzdata.zi now can contain comment lines documenting configuration
information, such as which data format was selected, which input
files were used, and how leap seconds are treated. (Problems
noted by Lester Caine and Brian Inglis.) If the Makefile defaults
are used these comment lines are absent, for backward
compatibility. A redistributor intending to alter its copy of the
files should also append "-LABEL" to the 'version' file's first
line, where "LABEL" identifies the redistributor's change.
(From OE-Core rev: 9d786808fb9471eff46d95dd354f6254e468aa17)
Armin Kuster [Mon, 22 Oct 2018 14:05:11 +0000 (15:05 +0100)]
tzcode: update to 2018f
Changes to code
zic now always generates TZif files where time type 0 is used for
timestamps before the first transition. This simplifies the
reading of TZif files and should not affect behavior of existing
TZif readers because the same set of time types is used; only
their internal indexes may have changed. This affects only the
legacy zones EST5EDT, CST6CDT, MST7MDT, PST8PDT, CET, MET, and
EET, which previously used nonzero types for these timestamps.
Because of the type 0 change, zic no longer outputs a dummy
transition at time -2**59 (before the Big Bang), as clients should
no longer need this to handle historical timestamps correctly.
This reverts a change introduced in 2013d and shrinks most TZif
files by a few bytes.
zic now supports negative time-of-day in Rule and Leap lines, e.g.,
"Rule X min max - Apr lastSun -6:00 1:00 -" means the transition
occurs at 18:00 on the Saturday before the last Sunday in April.
This behavior was documented in 2018a but the code did not
entirely match the documentation.
localtime.c no longer requires at least one time type in TZif
files that lack transitions or have a POSIX-style TZ string. This
future-proofs the code against possible future extensions to the
format that would allow TZif files with POSIX-style TZ strings and
without transitions or time types.
A read-access subscript error in localtime.c has been fixed.
It could occur only in TZif files with timecnt == 0, something that
does not happen in practice now but could happen in future versions.
localtime.c no longer ignores TZif POSIX-style TZ strings that
specify only standard time. Instead, these TZ strings now
override the default time type for timestamps after the last
transition (or for all time stamps if there are no transitions),
just as DST strings specifying DST have always done.
leapseconds.awk now outputs "#updated" and "#expires" comments,
and supports leap seconds at the ends of months other than June
and December. (Inspired by suggestions from Chris Woodbury.)
(From OE-Core rev: 4670dcdb6e2504469c30ebed828d4702d8c0003c)
Armin Kuster [Fri, 4 May 2018 17:05:16 +0000 (10:05 -0700)]
tzdata: update to 2018e
Briefly:
North Korea switches back to +09 on 2018-05-05.
The main format uses negative DST again, for Ireland etc.
'make tarballs' now also builds a rearguard tarball.
New 's' and 'd' suffixes in SAVE columns of Rule and Zone lines.
Changes to past and future time stamps
North Korea switches back from +0830 to +09 on 2018-05-05.
(Thanks to Kang Seonghoon, Arthur David Olson, Seo Sanghyeon,
and Tim Parenti.)
Bring back the negative-DST changes of 2018a, except be more
compatible with data parsers that do not support negative DST.
Also, this now affects historical time stamps in Namibia and the
former Czechoslovakia, not just Ireland. The main format now uses
negative DST to model time stamps in Europe/Dublin (from 1971 on),
Europe/Prague (1946/7), and Africa/Windhoek (1994/2017). This
does not affect UT offsets, only time zone abbreviations and the
tm_isdst flag. Also, this does not affect rearguard or vanguard
formats; effectively the main format now uses vanguard instead of
rearguard format. Data parsers that do not support negative DST
can still use data from the rearguard tarball described below
Armin Kuster [Fri, 4 May 2018 17:05:15 +0000 (10:05 -0700)]
tzcode-native: updatet to 2018e
Changes to build procedure
The command 'make tarballs' now also builds the tarball
tzdataVERSION-rearguard.tar.gz, which is like tzdataVERSION.tar.gz
except that it uses rearguard format intended for trailing-edge
data parsers.
Changes to data format and to code
The SAVE column of Rule and Zone lines can now have an 's' or 'd'
suffix, which specifies whether the adjusted time is standard time
or daylight saving time. If no suffix is given, daylight saving
time is used if and only if the SAVE column is nonzero; this is
the longstanding behavior. Although this new feature is not used
in tzdata, it could be used to specify the legal time in Namibia
1994-2017, as opposed to the popular time (see below).
Changes to past time stamps
From 1994 through 2017 Namibia observed DST in winter, not summer.
That is, it used negative DST, as Ireland still does. This change
does not affect UTC offsets; it affects only the tm_isdst flag and
the abbreviation used during summer, which is now CAT, not WAST.
Although (as noted by Michael Deckers) summer and winter time were
both simply called "standard time" in Namibian law, in common
practice winter time was considered to be DST (as noted by Stephen
Colebourne). The full effect of this change is only in vanguard
format; in rearguard and main format, the tm_isdst flag is still
zero in winter and nonzero in summer.
In 1946/7 Czechoslovakia also observed negative DST in winter.
The full effect of this change is only in vanguard format; in
rearguard and main formats, it is modeled as plain GMT without
daylight saving. Also, the dates of some 1944/5 DST transitions
in Czechoslovakia have been changed.
(From OE-Core rev: aeb3d295581908ca9a9d8f1705f70b49b2de32e3)
Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com>
The fix is similar to what was done for PowerPC32.
It solves below error, while compiling for PowerPC64,
-- snip --
| ../../../../valgrind-3.13.0/none/tests/ppc64/test_isa_2_06_part2.c: In function 'usage':
| ../../../../valgrind-3.13.0/none/tests/ppc64/test_isa_2_06_part2.c:1778:3: warning: implicit declaration of function 'fprintf' [-Wimplicit-function-declaration]
| fprintf(stderr,
| ^~~~~~~
| ../../../../valgrind-3.13.0/none/tests/ppc64/test_isa_2_06_part2.c:1778:3: warning: incompatible implicit declaration of built-in function 'fprintf'
| ../../../../valgrind-3.13.0/none/tests/ppc64/test_isa_2_06_part2.c:1778:3: note: include '<stdio.h>' or provide a declaration of 'fprintf'
| ../../../../valgrind-3.13.0/none/tests/ppc64/test_isa_2_06_part2.c:1778:11: error: 'stderr' undeclared (first use in this function)
| fprintf(stderr,
| ^~~~~~
-- snip --
Zhixiong Chi [Wed, 11 Apr 2018 08:26:18 +0000 (16:26 +0800)]
valgrind: fix the shared object issue while prelink ptest
If valgrind-ptest is installed, we will get the some prelink error
like below at do_image:
.../usr/sbin/prelink: /usr/lib64/valgrind/ptest/memcheck/tests/wrap7:\
Could not find one of the dependencies: \
.../usr/sbin//prelink-rtld: error \
while loading shared libraries: wrap7so.so: cannot open shared \
object file: No such file or directory
The wrap7 needs to link the shared object in the path
/usr/lib64/valgrind/ptest/memcheck/tests, but it fails.
So we correct the path for ptest.
toolchain-scripts: preserve host path in environment setup script
The environment setup script generated in the build directory sets the PATH
variable by expanding ${PATH} which would have host paths filtered. Sourcing
this script to run runqemu will not work as it complains host stty (/bin/stty)
cannot be found.
To resolve this, the script no longer expands ${PATH} during generation time,
instead it will now source oe-init-build-env to initialize the build
environment so that all host paths will be preserved. Also be sure to prepend
STAGING_BINDIR_TOOLCHAIN to the PATH variable so that the toolchain from the
build directory can be found.
lsb/lsbtests: Update package lists to use latest version of binary
Currently package list is pointing to "lsb-setup-4.1.0-1.noarch.rpm"
which is not available anymore on
http://ftp.linuxfoundation.org/pub/lsb/base/released-all/binary/ hence
BASE_PACKAGES_LIST is updated to point to the latest available version.
Anuj Mittal [Tue, 16 Oct 2018 02:47:12 +0000 (10:47 +0800)]
perl: skip tests that are not useful
Some tests, like the one that compares the hashes for a list of files
against those stored in a .dat file, don't make sense for downstream
distros packaging perl.
Backport a patch from upstream that allows skipping of these tests at
runtime. Also remove the local patch trying to keep hashes up-to-date
for one of those tests.
Kai Kang [Fri, 25 May 2018 02:48:23 +0000 (10:48 +0800)]
shadow: update ownership and permission of /var/spool/mail
Update shadow to change ownership of /var/spool/mail from root:root to
root:mail and permission from 0755 to 0775 just as in most popular
distributions such as fedora and debian(It also set setgid bit in debian
but we don't need it).
Signed-off-by: Kai Kang <kai.kang@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com>
newgidmap: enforce setgroups=deny if self-mapping a group
This is necessary to match the kernel-side policy of "self-mapping in a
user namespace is fine, but you cannot drop groups" -- a policy that was
created in order to stop user namespaces from allowing trivial privilege
escalation by dropping supplementary groups that were "blacklisted" from
certain paths.
This is the simplest fix for the underlying issue, and effectively makes
it so that unless a user has a valid mapping set in /etc/subgid (which
only administrators can modify) -- and they are currently trying to use
that mapping -- then /proc/$pid/setgroups will be set to deny. This
workaround is only partial, because ideally it should be possible to set
an "allow_setgroups" or "deny_setgroups" flag in /etc/subgid to allow
administrators to further restrict newgidmap(1).
We also don't write anything in the "allow" case because "allow" is the
default, and users may have already written "deny" even if they
technically are allowed to use setgroups. And we don't write anything if
the setgroups policy is already "deny".
linux-firmware: fix the mess of licenses
* LICENSE_CREATE_PACKAGE functionality in license.bbclass when enabled
adds new package with suffix:
LICENSE_PACKAGE_SUFFIX ??= "-lic"
but then it checks if ${PN}-${LICENSE_PACKAGE_SUFFIX} is included
in PACKAGES before adding it and when found it shows:
WARNING: linux-firmware-1_0.0+gitAUTOINC+4c0bf113a5-r0 do_package: linux-firmware-lic package already existed in linux-firmware.
and doesn't add the ${PN}-lic to PACKAGES and causes another warning:
WARNING: linux-firmware-1_0.0+gitAUTOINC+4c0bf113a5-r0 do_package: QA Issue: linux-firmware: Files/directories were installed but not shipped in any package:
/usr
/usr/share
/usr/share/licenses
/usr/share/licenses/linux-firmware
that's because it was searching ${PN}-lic in PACKAGES as a string
so it found ${PN}-lic as a substring of ${PN}-license, add a split
to search in an list
license.bbclass: Minor simplification of get_deployed_dependencies()
Since ${SSTATE_ARCHS} now contains ${PACKAGE_EXTRA_ARCHS} there is no
longer any need to add those extra architectures to the list of
architectures handled in get_deployed_dependencies().
Daniel DÃaz [Tue, 14 Aug 2018 14:47:03 +0000 (09:47 -0500)]
multilib_header: recognize BPF as a target
When building with `clang -target bpf` using the
multilib_header, a recursion was unavoidable because
bits/wordsize.h would #include itself, still lacking
a definition for __MHWORDSIZE or __WORDSIZE.
Derek Straka [Tue, 30 Jan 2018 03:04:39 +0000 (22:04 -0500)]
python-native: add dependency for gdbm and db native packages
These two packages are required to ensure the manifest files contain
all of the generated packages. Without this, the db and gdbm packages
will not contain the .so files as they are skipped during the compilation steps
Ross Burton [Mon, 13 Aug 2018 23:59:39 +0000 (00:59 +0100)]
bzip2: use Yocto Project mirror for SRC_URI
The bzip.org domain expired and is now a holding site for adverts, so we can't
trust a tarball that appears on that site (luckily we have source checksums to
detect this).
For now, point SRC_URI at the tarball in the Yocto Project source mirror, but
set HOMEPAGE and UPSTREAM_CHECK_URI to the sourceware.org/bzip2/ page which
apparently will be resurrected as the new canonical home page.
Ross Burton [Mon, 13 Aug 2018 17:20:54 +0000 (18:20 +0100)]
classes: sanity-check LIC_FILES_CHKSUM
We assume that LIC_FILES_CHKSUM is a file: URI but don't actually verify this,
which can lead to problems if you have a URI that resolves to a path of / as
Bitbake will then dutifully checksum / recursively.
module-base.bbclass: fix out-of-tree module builds with custom EXTRA_OEMAKE
Commit d2aa88a6a92985f21414fceea2dc0facbf7f8779 was meant to backport build
dependencies on bc-native and openssl-native, but it also changed execution
of do_make_scripts() from calling make directly to using oe_runmake. That
change was made in master/sumo as part of a separate make-mod-scripts recipe.
Unfortunately, that doesn't work here in rocko in the context of module-base
class, as it gets executed inside out-of-tree module environment. Quite often
those out-of-tree modules provide own Makefile with custom EXTRA_OEMAKE var
defined. But do_make_scripts() gets executed within STAGING_KERNEL_DIR and
cannot simply use custom EXTRA_OEMAKE set by a module.
Move back to calling make and passing HOSTCC/HOSTCPP directly w/o using
EXTRA_OEMAKE.
For more details please see:
http://lists.openembedded.org/pipermail/openembedded-core/2018-August/154189.html
CVE-2017-16612: Fix heap overflows when parsing malicious files
It is possible to trigger heap overflows due to an integer overflow
while parsing images and a signedness issue while parsing comments.
The integer overflow occurs because the chosen limit 0x10000 for
dimensions is too large for 32 bit systems, because each pixel takes 4 bytes.
Properly chosen values allow an overflow which in turn will lead to less
allocated memory than needed for subsequent reads.
The signedness bug is triggered by reading the length of a comment
as unsigned int, but casting it to int when calling the function
XcursorCommentCreate. Turning length into a negative value allows the
check against XCURSOR_COMMENT_MAX_LEN to pass, and the following
addition of sizeof (XcursorComment) + 1 makes it possible to allocate
less memory than needed for subsequent reads.
Chen Qi [Mon, 14 May 2018 08:35:22 +0000 (16:35 +0800)]
devtool/sdk.py: error out in case of downloading file failure
It's possible that downloading file from updateserver fails. In
this case, we should error out instead of continue.
We have users reporting unexpected behavior of 'devtool sdk-update'.
When an invalid url is supplied, e.g., `devtool sdk-update http://invalid',
the program reports 'Note: Already up-to-date'.
This is obviously not expected. We should error out in such case.
Whenever perf got rebuilt, I was consistently getting errors such as
| find: '[...]/perf/1.0-r9/perf-1.0/plugin_mac80211.so': No such file or directory
| find: '[...]/perf/1.0-r9/perf-1.0/plugin_mac80211.so': No such file or directory
| find: find: '[...]/perf/1.0-r9/perf-1.0/libtraceevent.a''[...]/perf/1.0-r9/perf-1.0/libtraceevent.a': No such file or directory: No such file or directory
|
[...]
| find: cannot delete '/mnt/xfs/devel/pil/yocto/tmp-glibc/work/wandboard-oe-linux-gnueabi/perf/1.0-r9/perf-1.0/util/.pstack.o.cmd': No such file or directory
breaking the whole build. The root cause seems to be that the implicit
'make clean' done during do_configure ends up running in parallel, and
thus multiple find commands attempt to stat and/or delete the same
file.
A patch disabling parallelism for the clean target has been ack'ed
upstream (lkml.kernel.org/r/20180705134955.GB3686@krava), but it should
be harmless to pass JOBS=1 even with a fixed kernel. This can be removed
if and when all relevant -stable kernels have that patch.
Ross Burton [Fri, 9 Mar 2018 18:56:10 +0000 (20:56 +0200)]
cryptodev: refresh patches
The patch tool will apply patches by default with "fuzz", which is where if the
hunk context isn't present but what is there is close enough, it will force the
patch in.
Whilst this is useful when there's just whitespace changes, when applied to
source it is possible for a patch applied with fuzz to produce broken code which
still compiles (see #10450). This is obviously bad.
We'd like to eventually have do_patch() rejecting any fuzz on these grounds. For
that to be realistic the existing patches with fuzz need to be rebased and
reviewed.
Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Alexander Kanavin <alexander.kanavin@linux.intel.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com>
One of the tarball mirrors is down; the other is blocked by Intel's corporate proxy
for being deemed 'suspicious' (the same problem might pop up in other
companies as well). Let's just take the source from github.
Ross Burton [Wed, 15 Nov 2017 16:47:41 +0000 (16:47 +0000)]
ovmf: refresh patches
The patch tool will apply patches by default with "fuzz", which is where if the
hunk context isn't present but what is there is close enough, it will force the
patch in.
Whilst this is useful when there's just whitespace changes, when applied to
source it is possible for a patch applied with fuzz to produce broken code which
still compiles (see #10450). This is obviously bad.
We'd like to eventually have do_patch() rejecting any fuzz on these grounds. For
that to be realistic the existing patches with fuzz need to be rebased and
reviewed.
Martin Jansa [Thu, 24 May 2018 14:56:01 +0000 (14:56 +0000)]
perf: fix build with kernel older than 4.8
* perf is failing to build for me since this oe-core commit:
commit 9b38c824961fc9dce51bda95c25dac91a69fc64f
Author: Hongxu Jia <hongxu.jia@windriver.com>
Date: Tue Apr 24 11:33:47 2018 +0800
perf: make a copy of kernel source to perf workdir
the problem is that perf sources in kernel older than 4.8 (in my case
4.4) are depending on the "global" include headers outside tools
directory, e.g. swab.h in:
kernel-source/tools$ git grep swab.h
perf/MANIFEST:include/linux/swab.h
perf/MANIFEST:include/uapi/linux/swab.h
perf/util/include/asm/byteorder.h:#include "../../../../include/uapi/linux/swab.h"
this was resolved in 4.8 with:
commit 7e3f36411342a54f1981fa97b43550b8406a3d69
Author: Arnaldo Carvalho de Melo <acme@redhat.com>
Date: Mon Jul 18 17:42:16 2016 -0300
Not used anymore. This also stops include linux/swab.h directly
from the kernel sources, remove that reference from the MANIFEST.
and few more changes to make tools/include more complete and standalone:
tools/include in 4.15:
asm asm-generic linux tools trace uapi
tools/include in 4.4:
asm asm-generic linux tools
but copying the include header even for kernels which don't really
need it doesn't add big overhead, so just copy include to perf sources
for all kernels.
perf: make a copy of kernel source to perf workdir
Since perf contaminates linux shared workdir, it probably caused
kernel-devsrc compile failure at world build.
...
|0 blocks
|cpio: ./tools/perf/arch/arm/util/sedr7ORqk: Cannot stat:
No such file or directory
|0 blocks
...
cpio tried to find a file at ${S}/tools/perf and failed
if the input list is not valid.
Make a copy of kernel shared source directory into a perf workdir
could fix the issue.
