summaryrefslogtreecommitdiffstats
path: root/meta
Commit message (Collapse)AuthorAgeFilesLines
* tiff: Security fix CVE-2016-9535Mingli Yu2017-01-113-0/+492
| | | | | | | | | | | | | | | | | | | | | | | | * libtiff/tif_predict.h, libtiff/tif_predict.c: Replace assertions by runtime checks to avoid assertions in debug mode, or buffer overflows in release mode. Can happen when dealing with unusual tile size like YCbCr with subsampling. External References: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-9535 Patch from: https://github.com/vadz/libtiff/commit/3ca657a8793dd011bf869695d72ad31c779c3cc1 https://github.com/vadz/libtiff/commit/6a984bf7905c6621281588431f384e79d11a2e33 (From OE-Core rev: 61d3feb9cad9f61f6551b43f4f19bfa33cadd275) (From OE-Core rev: d55b4470c20f4a4b73b1e6f148a45d94649dfdb5) Signed-off-by: Mingli Yu <Mingli.Yu@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* tiff: set CVE NAMERoss Burton2017-01-111-0/+2
| | | | | | | | (From OE-Core rev: a28dc4cf7a8f67444f2f88248966478e385491d2) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* subversion: Fix issues in LDFLAGS sed manipulationRichard Purdie2017-01-112-0/+23
| | | | | | | | | | | | | | | | | The existing sed expression can match expressions like --sysroot=/some/path/xxx-linux/ which clearly isn't intended and injects incorrect paths into LDFLAGS. Fix this in the same way we address the problem in CFLAGS. This fixes corrupt build paths and incorrect paths in .la files amongst other issues. (From OE-Core rev: 9a8382422ddbb0972dc25b752204f4908bb9857c) (From OE-Core rev: 980140fc0735df66592c09acda9686386711f2b5) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* attr: Convert SSTATEPOSTINSTFUNCS to a do_install_appendRichard Purdie2017-01-111-25/+22
| | | | | | | | | | | | | | A SSTATEPOSTINSTFUNCS function here is overkill, just do this in a do_install_append_class-native and create relative symlinks rather than absolute ones which would then have to be relocated. (From OE-Core rev: 518e8d0216b0f42f574e42288804f553b9ff6f99) (From OE-Core rev: f884ee9b911d1ce38b84d90113113c6e8c30253b) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* staging: Drop unused SYSROOT_LOCKRichard Purdie2017-01-111-1/+0
| | | | | | | | | | | | | This hasn't been used in years and isn't referenced anywhere, drop the definition. (From OE-Core rev: 68258f856f08f35813964e58ef761471e29373ad) (From OE-Core rev: b8b261d2e40457ee2e0cf1e8f40bd22230eb8ca7) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* kernel-yocto: exit on non-zero return codeBruce Ashfield2017-01-111-1/+0
| | | | | | | | | | | | | | | | | | | | Historically the processing of kernel meta data contained some commands that exited with a non-zero return code. Special processing was required to properly deal with their exit. That is no longer true, and instead of handling all return codes and doing an explicit 'exit' call, we can remove set -e from the routine and have all errors be trapped and stop processing. (From OE-Core rev: 476ffd57cf5b6fba40d4e3f5dd913824ab8a8d3d) (From OE-Core rev: 620c74336dad517037fcf26c8f7bf8c013b213c1) Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* kern-tools: fix processing for no branch meta-dataBruce Ashfield2017-01-111-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Lernel meta-data that has patches, but no branches, can trigger an error due to no branch specific patch queue. This error then cascades to more issues since the tools are using a named file in /tmp to store and display error messages to the user. We fix both issues though the following kern tools tweaks: commit bd9e1d6c9b0a34ff3e19a06999aaf57ffadfd04c Author: Bruce Ashfield <bruce.ashfield@windriver.com> Date: Fri Dec 2 13:09:40 2016 -0500 scc: use mktemp for consolidated output capture To provide useful error messages the tools dump pre-processed files and messages to a temporary file. If multiple users are doing builds, this means they either race, or can have permissions issues. By creating the temporary file via mktemp, we avoid both issues. (We also make sure to clean these up on exit, or /tmp will get polluted quickly). commit a287da4bfe0b4acb8f2b0627bd8e7abd1a1dde26 Author: Bruce Ashfield <bruce.ashfield@windriver.com> Date: Fri Dec 2 13:08:08 2016 -0500 patch: do not assume a branch specific patch queue is needed When processing input files per-branch and global patch queues are generated. If the meta-data has not created any branches in the repo, no branch specific queue is required. The tools assumed that one is always valid, and hence would throw a non-zero exit code and stop processing. By testing for a named per-branch queue, we avoid this issue. (From OE-Core rev: 0fd7da7375f0dcc59b56791fd482de557507c04c) (From OE-Core rev: 6bc941a2a8e83e2db409af50ad77a0932e3ffe28) Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* linux-yocto-dev: update to 4.9-rcXBruce Ashfield2017-01-111-1/+1
| | | | | | | | | | | | (From OE-Core rev: 27c53cb8d0f1d408cb9791697305187944ad07b9) (From OE-Core rev: c71f23e5ad72368045c44026955664dc69faef66) Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* linux-yocto/4.8: update to v4.8.10Bruce Ashfield2017-01-113-16/+16
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Integrating the 4.8.9 and 4.8.10 -stable updates. The commit log is as follows: cf5ae2989a32 Linux 4.8.10 5cd8f6788ff3 usb: gadget: f_fs: stop sleeping in ffs_func_eps_disable e2458382c792 usb: gadget: f_fs: edit epfile->ep under lock e34a0f1c53b5 sparc64: Delete now unused user copy fixup functions. af97481a6f5b sparc64: Delete now unused user copy assembler helpers. ac663c54f40b sparc64: Convert U3copy_{from,to}_user to accurate exception reporting. d91bb7a87e26 sparc64: Convert NG2copy_{from,to}_user to accurate exception reporting. a15859f9d839 sparc64: Convert NGcopy_{from,to}_user to accurate exception reporting. bb522726d311 sparc64: Convert NG4copy_{from,to}_user to accurate exception reporting. b0580eadc19f sparc64: Convert U1copy_{from,to}_user to accurate exception reporting. 50e927483ccf sparc64: Convert GENcopy_{from,to}_user to accurate exception reporting. 620ec41010d1 sparc64: Convert copy_in_user to accurate exception reporting. bf4d0da8e800 sparc64: Prepare to move to more saner user copy exception handling. bbbab9f59ea7 sparc64: Delete __ret_efault. 81a91edbb91a sparc64: Handle extremely large kernel TLB range flushes more gracefully. 7f8a50eb38d3 sparc64: Fix illegal relative branches in hypervisor patched TLB cross-call code. f7ef55af2f1b sparc64: Fix instruction count in comment for __hypervisor_flush_tlb_pending. 2a28ab3d4148 sparc64: Fix illegal relative branches in hypervisor patched TLB code. f4fb552a033e sparc64: Handle extremely large kernel TSB range flushes sanely. 51915c6d9070 sparc: Handle negative offsets in arch_jump_label_transform da6fe239ceff spi: spidev_test: fix build with musl libc 4ea98e573d65 net: stmmac: Fix lack of link transition for fixed PHYs 150b491b1b88 sctp: change sk state only when it has assocs in sctp_shutdown 5235fcfa6cf8 bnx2: Wait for in-flight DMA to complete at probe stage 6523ff2e27fe Revert "bnx2: Reset device during driver initialization" 224fb8cbefb2 mlxsw: spectrum_router: Correctly dump neighbour activity 9092bbd64bd9 mlxsw: spectrum: Fix refcount bug on span entries 5712922773b5 Revert "include/uapi/linux/atm_zatm.h: include linux/time.h" 2b5f22e4f7fd tcp: take care of truncations done by sk_filter() 22a78d4c7f43 ipv4: use new_gw for redirect neigh lookup bccb4093d464 net: __skb_flow_dissect() must cap its return value a1632e969a55 net: icmp_route_lookup should use rt dev to determine L3 domain 9885f474d92b sock: fix sendmmsg for partial sendmsg b78ba0a0f231 fib_trie: Correct /proc/net/route off by one error 92fd1c1f2fd2 net: icmp6_send should use dst dev to determine L3 domain 09ee09498bca bpf: fix htab map destruction when extra reserve is in use de289ad2e575 sctp: assign assoc_id earlier in __sctp_connect 76b5fee5cfa0 ipv6: dccp: add missing bind_conflict to dccp_ipv6_mapped 84d9c612bb7a ipv6: dccp: fix out of bound access in dccp_v6_err() ba93cf7d2118 dccp: fix out of bound access in dccp_v4_err() 378a61101374 dccp: do not send reset to already closed sockets 72b03e549b95 dccp: do not release listeners too soon b3523a0773ed tcp: fix return value for partial writes 1f49cc6fa91c ipv4: allow local fragmentation in ip_finish_output_gso() 842a858fa048 tcp: fix potential memory corruption fc3b825f2c81 ip6_tunnel: Clear IP6CB in ip6tunnel_xmit() f5f4b71d5632 bgmac: stop clearing DMA receive control register right after it is set 0c7f764d2c6a net: mangle zero checksum in skb_checksum_help() ac22a3ba0796 net: clear sk_err_soft in sk_clone_lock() 5b078dc6fb64 dctcp: avoid bogus doubling of cwnd after loss 876577321657 Linux 4.8.9 07d00beb1e04 netfilter: fix namespace handling in nf_log_proc_dostring 8ef009e09c13 drm/i915: Fix mismatched INIT power domain disabling during suspend 88a45e5d2c0d drm/amdgpu: fix a vm_flush fence leak 25ed6e4b0b65 drm/amdgpu: fix fence slab teardown de5e9aa77a3c NFSv4.1: work around -Wmaybe-uninitialized warning 18c801047a18 libceph: fix legacy layout decode with pool 0 53c1792b94da memcg: prevent memcg caches to be both OFF_SLAB & OBJFREELIST_SLAB 02e1ee6b3e1c mmc: mxs: Initialize the spinlock prior to using it ce0702e35aeb pinctrl: iproc: Fix iProc and NSP GPIO support 320244ac9eb6 ASoC: sun4i-codec: return error code instead of NULL when create_card fails 2140d4fd9277 ASoC: Intel: Skylake: Always acquire runtime pm ref on unload 5037fdbc62c2 gpio: of: fix GPIO drivers with multiple gpio_chip for a single node 7a9239fd0480 gpio/mvebu: Use irq_domain_add_linear 6de98e87effb batman-adv: Modify neigh_list only with rcu-list functions a3f000ce7b44 ACPI/PCI: pci_link: Include PIRQ_PENALTY_PCI_USING for ISA IRQs 6c76dd0c7066 ACPI/PCI: pci_link: penalize SCI correctly 86c711665c84 ACPI/PCI/IRQ: assign ISA IRQ directly during early boot stages ad185d9251e1 ACPI / APEI: Fix incorrect return value of ghes_proc() b55ebc89ab1d mmc: sdhci-msm: Fix error return code in sdhci_msm_probe() 85284c0850f9 i40e: fix call of ndo_dflt_bridge_getlink() 1242c9dfab0c hwrng: core - Don't use a stack buffer in add_early_randomness() c1a2ada73dac lib/genalloc.c: start search from start of chunk 06bb5ebedbb4 s390/dumpstack: restore reliable indicator for call traces 1ef1bd02ad23 rtc: pcf2123: Add missing error code assignment before test 4baabb72e9dd clk: samsung: clk-exynos-audss: Fix module autoload 3bbdbd8aa3c8 x86/build: Fix build with older GCC versions f5eadc27a60c Revert "clocksource/drivers/timer_sun5i: Replace code by clocksource_mmio_init" 645a6b823739 nvme: Delete created IO queues on reset 07c4cbe01341 svcrdma: Tail iovec leaves an orphaned DMA mapping 4131e00a436e svcrdma: Skip put_page() when send_reply() fails 755ab7aa1466 mei: bus: fix received data size check in NFC fixup d1b564536c6a perf top: Fix refreshing hierarchy entries on TUI 6ac4e06b717f Input: synaptics-rmi4 - fix error handling in I2C transport driver d3716f1b3e4b Input: synaptics-rmi4 - fix error handling in SPI transport driver 66503ec38f34 watchdog: core: Fix devres_alloc() allocation size c5e9e5cc8cd1 agp/intel: Flush chipset writes after updating a single PTE 813617a4c8dc iommu/vt-d: Fix dead-locks in disable_dmar_iommu() path b6ef0b142208 iommu/amd: Free domain id when free a domain of struct dma_ops_domain 2ef38255b588 iommu/io-pgtable-arm: Check for v7s-incapable systems d3d9428d7133 xprtrdma: Fix DMAR failure in frwr_op_map() after reconnect 31c749bee3de xprtrdma: use complete() instead complete_all() 67080e2785a3 drm/amd: fix scheduler fence teardown order v2 b0da5ab2ffb5 drm/amdgpu: fix sched fence slab teardown 920a85ba4306 tty/serial: at91: fix hardware handshake on Atmel platforms 9d76a886eb2f drm/amdgpu: fix crash in acp_hw_fini 6e652d18d73d drm/amdgpu: disable runtime pm in certain cases 8c8fdc683295 drm/i915/dp: Extend BDW DP audio workaround to GEN9 platforms db8e005bf2ba drm/i915/dp: BDW cdclk fix for DP audio f50b7450a8e4 drm/i915: Respect alternate_ddc_pin for all DDI ports e1b24f6a0b3c drm/radeon: disable runtime pm in certain cases eb13abb0e515 KVM: arm/arm64: vgic: Prevent access to invalid SPIs 2850fad5acb0 scsi: scsi_dh_alua: Fix a reference counting bug 5fac70d772a4 scsi: scsi_dh_alua: fix missing kref_put() in alua_rtpg_work() f29bcd11a170 scsi: mpt3sas: Fix for block device of raid exists even after deleting raid disk b2040deabb07 scsi: qla2xxx: Fix scsi scan hang triggered if adapter fails during init 1281b9683f96 iio: st_sensors: fix scale configuration for h3lis331dl 4dfb6d1dd11d iio: orientation: hid-sensor-rotation: Add PM function (fix non working driver) 341c5534edad iio: hid-sensors: Increase the precision of scale to fix wrong reading interpretation. b9d031f354da cdc-acm: fix uninitialized variable c480880cd12c clk: qoriq: Don't allow CPU clocks higher than starting value ee27fd32c499 toshiba-wmi: Fix loading the driver on non Toshiba laptops f713523a234c drbd: Fix kernel_sendmsg() usage - potential NULL deref 31da266e4b9a usb: gadget: u_ether: remove interrupt throttling 264e4131a167 USB: cdc-acm: fix TIOCMIWAIT c12c24eeaf77 usb: dwc3: Fix error handling for core init 6b95417150b7 staging: nvec: remove managed resource from PS2 driver 82239ab105a5 Revert "staging: nvec: ps2: change serio type to passthrough" 529789866abe drivers: staging: nvec: remove bogus reset command for PS/2 interface dea774aac054 staging: comedi: ni_tio: fix buggy ni_tio_clock_period_ps() return value 5d510185f99a staging: sm750fb: Fix bugs introduced by early commits 45983d678b70 staging: iio: ad5933: avoid uninitialized variable in error case 5289e59246dd mmc: mmc: Use 500ms as the default generic CMD6 timeout ce4dfe7d927e mmc: sdhci: Fix unexpected data interrupt handling bde8d3f73375 mmc: sdhci: Fix CMD line reset interfering with ongoing data transfer 10d24701f3f4 cpupower: Correct return type of cpu_power_is_cpu_online() in cpufreq-set f062e738c19b pinctrl: cherryview: Prevent possible interrupt storm on resume 1d99fe3317e3 pinctrl: cherryview: Serialize register access in suspend/resume f5ad96462615 arc: Implement arch-specific dma_map_ops.mmap 004e7c97f181 PCI: Don't attempt to claim shadow copies of ROM 7fac0361f94e ARC: timer: rtc: implement read loop in "C" vs. inline asm 4058116db4d0 s390/hypfs: Use get_free_page() instead of kmalloc to ensure page alignment 2f3e0b82ebe9 coredump: fix unfreezable coredumping task d6ee4f47e2e7 mm/hugetlb: fix huge page reservation leak in private mapping error paths e87bf4f558f1 mm: hwpoison: fix thp split handling in memory_failure() 67c79e166d46 swapfile: fix memory corruption via malformed swapfile c87739e5d029 shmem: fix pageflags after swapping DMA32 object 5b5243b606ec mm, frontswap: make sure allocated frontswap map is assigned 2e594273d4c5 dib0700: fix nec repeat handling 9964230320d5 ASoC: cs4270: fix DAPM stream name mismatch 9386a722d250 ALSA: info: Limit the proc text input size c3ea1b15b71e ALSA: info: Return error for invalid read/write (From OE-Core rev: b5e43be6aaf912cf6c679ee98ed61cf34dd00ee8) (From OE-Core rev: 05c1981319f4f5637e72ed4f86e91d38483c8dc8) Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* parselogs: Whitelist GPT warnings as the device is fully functionalJair Gonzalez2017-01-111-2/+3
| | | | | | | | | | | | | | | | | | | | The warning occurs when the GPT image is not the same size than the media into which it's being flashed, causing the backup GPT table not being at the end of the disk. However, this is expected as the image is created before having the information about the destination media. The error is harmless, so it will be whitelisted. Fixes [YOCTO 10481]. (From OE-Core rev: 5cc5cdc788308a79f8f0706e6d794c602ef427ed) (From OE-Core rev: 941194d29d8e4c334d3f85ce7709c894cf34b8d1) Signed-off-by: Jair Gonzalez <jair.de.jesus.gonzalez.plascencia@linux.intel.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* parselogs.py: Whitelist iwlwifi firmware load error messagesCalifornia Sullivan2017-01-111-0/+1
| | | | | | | | | | | | | | | | | | | | | The iwlwifi module of any given kernel has a minimum and maximum supported firmware version. The kernel begins by attempting to load the maximum version, and decrements until it is successful. The 4.8 kernel's maximum supported firmware version is 24, but thus far only 22 has been released, meaning we get errors for 24 and 23. Filter out iwlwifi firmware load error messages, as they are not necessarily indicative of real problems. (From OE-Core rev: 7df570c2310efac8f9898da15deaac2b7df16655) (From OE-Core rev: 23aa95a8a15cd0b7bdc43dba9375e139f4b20607) Signed-off-by: California Sullivan <california.l.sullivan@intel.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* terminal.py: Pass string instead of bytes to ExecutionError to avoid exceptionMartin Vuille2017-01-111-0/+2
| | | | | | | | | | | | | | | | | | Based on run() in bitbake/lib/bb/process.py, ExecutionError() expects strings not bytes. Passing bytes results in a "TypeError: Can't convert 'bytes' object to str implicitly" exception. Fixes Bug 10729 (From OE-Core rev: 063b63d4d324c23322ac1b6b7c7928e725d7b968) (From OE-Core rev: df4d5246d47acc54aa322b777364c9b86f9a4c54) Signed-off-by: Martin Vuille <jpmv27@yahoo.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libxml2: Security fix CVE-2016-5131Yi Zhao2017-01-112-0/+181
| | | | | | | | | | | | | | | | | | | | | | | CVE-2016-5131 libxml2: Use-after-free vulnerability in libxml2 through 2.9.4, as used in Google Chrome before 52.0.2743.82, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the XPointer range-to function. External References: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-5131 Patch from: https://git.gnome.org/browse/libxml2/commit/?id=9ab01a277d71f54d3143c2cf333c5c2e9aaedd9e (From OE-Core rev: 640bd2b98ff33e49b42f1087650ebe20d92259a4) (From OE-Core rev: 1e284447b9bf42e1fd6080f5a50fe01c8267a4e6) Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* tiff: Security fix CVE-2016-9539Zhixiong Chi2017-01-112-0/+61
| | | | | | | | | | | | | | | | | | | | | tools/tiffcrop.c in libtiff 4.0.6 has an out-of-bounds read in readContigTilesIntoBuffer(). Reported as MSVR 35092. External References: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-9539 Patch from: https://github.com/vadz/libtiff/commit/ae9365db1b271b62b35ce018eac8799b1d5e8a53 (From OE-Core rev: 58bf0a237ca28459eb8c3afa030c0054f5bc1f16) (From OE-Core rev: 0933a11707a369c8eaefebd31e8eea634084d66e) Signed-off-by: Zhixiong Chi <zhixiong.chi@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* tiff: Security fix CVE-2016-9540Zhixiong Chi2017-01-112-0/+61
| | | | | | | | | | | | | | | | | | | | | | tools/tiffcp.c in libtiff 4.0.6 has an out-of-bounds write on tiled images with odd tile width versus image width. Reported as MSVR 35103, aka "cpStripToTile heap-buffer-overflow." External References: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-9540 Patch from: https://github.com/vadz/libtiff/commit/5ad9d8016fbb60109302d558f7edb2cb2a3bb8e3 (From OE-Core rev: cc97dc66006c7892473e3b4790d05e12445bb927) (From OE-Core rev: ad2c4710ef15c35f6dd4e7642efbceb2cbf81736) Signed-off-by: Zhixiong Chi <zhixiong.chi@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* slang: Disable parallel make installDavid Vincent2017-01-111-0/+1
| | | | | | | | | | | | | | | Installation task fails if run in parallel. This case happens if we define PARALLEL_MAKEINST to a different value of PARALLEL_MAKE. (From OE-Core rev: bbe59d7c49b540d65c871666c95cc89a23cab474) (From OE-Core rev: 1aff7c867c0ad926f204459b65d3088900871ec9) Signed-off-by: David Vincent <freesilicon@gmail.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* systemd.bbclass: don't block on service restartMark Asselstine2017-01-111-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The current class works fine when a recipe uses SYSTEMD_AUTO_ENABLE 'enable' and has no on device pkg_postinst(), ie when the postinst is run as part of rootfs creation. However, when there is a component of pkg_postinst() that is run on device the 'systemctl restart' is run as part of the run_postinsts.service at boot. This results in the boot spinning indefinitely with: [ *** ] A start job is running for Run pending postinsts (7s / no limit) The issue could potentially be that the packages service has an 'After' clause which comes later in the boot, beyond run_postinsts.service, creating a chicken before the egg scenario. Even service files without an 'After' clause cause this situation however. Despite this not being the cause of the issue this fix will prevent this scenario from happenning. Using strace we are able to find that during boot, when run_postinsts.service is running attempting to start or restart any service will result in the call get stuck on poll(). Since the run_postinsts.service does not monitor the outcome of the call to restart we can work around this by using '--no-block'. (From OE-Core rev: 6ad6a0084a73088fc2a27ab9958e5c46d6e094fc) (From OE-Core rev: caad8aa89f9815a278e39296497596996a35fe95) Signed-off-by: Mark Asselstine <mark.asselstine@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* perl: Fix ptest update hash of ExtUtils/Liblist/Kid.pm in customized.datAníbal Limón2017-01-111-1/+1
| | | | | | | | | | | | | | | | | The perl ptest is failing due to a patch changes the file ExtUtils/Liblist/Kid.pm and the customized.dat file wasn't updated. [YOCTO #8656] (From OE-Core rev: 0ed3cc09e3988367fa57bd08fb7db12b7fb9dabe) (From OE-Core rev: 5a0ee17cf17ce0b0deac54f990e2128674768b38) Signed-off-by: Aníbal Limón <anibal.limon@linux.intel.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* qemux86*.conf: set wic-related parametersEd Bartosh2017-01-112-0/+6
| | | | | | | | | | | | | | | | | | | | | Set directdisk.wks as default wks to use for qemux86 machines. Set requried dependeincies to build directdisk image. This should simplify building wic images for qemux86* machines. It should be enough to add wic to the list of IMAGE_FSTYPES to get the images built. [YOCTO #10637, YOCTO #8719] (From OE-Core rev: 8716b8b9be05e3f140bfa426a8e0d4eeaa2edcbe) (From OE-Core rev: 3d99674a712cf06c62aa3a98b6696d430547fcec) Signed-off-by: Ed Bartosh <ed.bartosh@linux.intel.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* pseudo: include fix for xattr corruptionPatrick Ohly2017-01-113-1/+39
| | | | | | | | | | | | | | | pseudo_1.8.1.bb gets the backported patch and pseudo_git.bb gets updated to include the commit. (From OE-Core rev: 4e98f3a6e6f61d9d9037ac828b9c4869f7e11458) (From OE-Core rev: 264114805cc942e052e79bdaa5ae7978d68fdd8e) Signed-off-by: Patrick Ohly <patrick.ohly@intel.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* mesa: make sure GLES3 headers are installedSamuli Piippo2017-01-111-0/+3
| | | | | | | | | | | | | | | | Since there is no libgles3-mesa package that would pull in the headers, add dependency to libgles2-mesa-dev. Now there no need to manually add GLES3 headers to image or toolchain. (From OE-Core rev: a93bbfa096cd7de8e935c6c2d2ad98d72a1c297f) (From OE-Core rev: fd02a12e875a900e46f50d92772098298ed4bc73) Signed-off-by: Samuli Piippo <samuli.piippo@qt.io> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* insane: rewrite the expanded-d test as a QAPKGTESTRoss Burton2017-01-111-19/+13
| | | | | | | | | | | | | | | | | Instead of being executed for every file in every package, this is now just called for each package. It is also now correctly called for packages which don't have any content but do have postinst scripts. [ YOCTO #10711 ] (From OE-Core rev: afda72b2424528eaff9054327530bdf5654bec66) (From OE-Core rev: b653bfb800a470894ec93c8bb4acd12a143716a6) Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* insane: add QAPKGTEST, a package-wide equivilant to QAPATHTESTRoss Burton2017-01-111-0/+20
| | | | | | | | | | | | | | | | QAPATHTEST defines a function that is executed for every file in every package. For tests which just need to look at the datastore this is massive overkill. Add QAPKGTEST, which is invoked for each package in the recipe. (From OE-Core rev: acc3cc26099c77e4eeb44c75bc7167ab58ef1147) (From OE-Core rev: e7751fa0bdb5bc9b217a0bf267a9c658bec997fa) Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* insane: factor out the test matrix processingRoss Burton2017-01-111-21/+25
| | | | | | | | | | | | | Pull the test matrix processing out as a function so it can be reused. (From OE-Core rev: 3caccd3f6079b7e284d32e1eb0217107425e7bf8) (From OE-Core rev: 3b21c285d4ff08ae6f613700c5936e39e7e3051d) Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* insane: fix expanded-d testRoss Burton2017-01-111-2/+1
| | | | | | | | | | | | | | | This test should be looking for the expanded value of ${D} in the expanded value of pkg_postinst and so on, but one of the getVar() calls was passing expand=False so the test would never be true. (From OE-Core rev: cc545044cba51317bee32e3bf674723e422e3a8a) (From OE-Core rev: 9d4f094a7c9cbff0d3db5f339d084b2b7c70df86) Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* insane: Add aarch64 baremetal mappings to the QA arch testAlexandre Belloni2017-01-111-0/+2
| | | | | | | | | | | | | | | Add mappings for aarch64-elf and aarch64_be-elf to binary lookup table which allows for the generation of baremetal toolchains. (From OE-Core rev: e90a1c4b8fd7baa738eb4683e5eac60905e04296) (From OE-Core rev: 9a8a4fe56901f88f143e86652edc7039345d49fc) Signed-off-by: Alexandre Belloni <alexandre.belloni@free-electrons.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* arch-arm64.inc: Include arch-armv7ve.incKhem Raj2017-01-111-1/+1
| | | | | | | | | | | | | | | All armv8 implementations from a53 - a73 supports virtual extentions (From OE-Core rev: f896375c60d8ce0f1293f5329163172e946f46df) (From OE-Core rev: 4bf27daace6528b1fa6062be0600ca36441d81f9) Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* kern-tools: error checking and tree generation fixesBruce Ashfield2017-01-111-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | During processing of the kernel meta data the kern tools were not properly exiting on syntax errors or invalid commands. Noticing and debugging these issues wasn't trivial. To make this easier, we now trap the error and dump the offending meta-data for the user to see. There was also an issue with creating branches during tree generation, which is resolved by always switching to the active branch. The following are the commit logs of the changes themselves: [ commit b36f6f9a5695f2084b83823393e13ca42284bed9 Author: Paul Gortmaker <paul.gortmaker@windriver.com> Date: Sat Oct 22 17:23:25 2016 -0400 kgit-scc: dont mention meta-repo in help ; it doesnt exist Signed-off-by: Paul Gortmaker <paul.gortmaker@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com> commit 08463d684c1952e74c25344cddace4c3f24c739d Author: Bruce Ashfield <bruce.ashfield@windriver.com> Date: Mon Oct 31 14:30:12 2016 -0400 scc: exit on error If there is an error in the processing of the input files, scc should exit and inform the user. scc is executed on a combined/preprocessed file and as a result it doesn't have the granularity to see each input file individually. Rather than moving preprocessing into scc (from spp), we can trap the line number of the error and dump context around the line. This gives the user a pointer to the input file and the specific line that caused the problem. Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com> commit bf99953e8ac14cee653e559f2d4a6022c847a182 Author: Bruce Ashfield <bruce.ashfield@windriver.com> Date: Fri Oct 28 21:23:27 2016 -0400 kgit-meta: always checkout branches on branch commands During a tree generation we must always make the branch active when we see any kind of branch command. This ensures that any subsequent patches are applied in the proper context. Previously, only branch creation was changing the active branch, and this mean that tree generation was not determinstic and relied on the order of processing to generate a correct tree. Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com> ] (From OE-Core rev: 83d10e2acef936b1f38804988f10eafa48db36f9) (From OE-Core rev: 95dd034a5d911c6f703856d7baeb6e61cb625396) Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* linux-yocto/4.4: update to v4.4.32Bruce Ashfield2017-01-113-16/+16
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Updating from v4.4.30 -> v4.4.32. The shortlog summary of the changes follows: 4dab3e4df994 Linux 4.4.32 ae94da4c53b7 scsi: megaraid_sas: fix macro MEGASAS_IS_LOGICAL to avoid regression 2be0548e64f1 drm/radeon: fix DP mode validation ccc31f819918 drm/radeon/dp: add back special handling for NUTMEG 227994b52c73 drm/amdgpu: fix DP mode validation 2e8cfc1fe985 drm/amdgpu/dp: add back special handling for NUTMEG 72c13445dfb4 KVM: MIPS: Drop other CPU ASIDs on guest MMU changes c57deabd2b17 Revert KVM: MIPS: Drop other CPU ASIDs on guest MMU changes e28a472742bf of: silence warnings due to max() usage d21daf7f3ee8 packet: on direct_xmit, limit tso and csum to supported devices bd891f40f04f sctp: validate chunk len before actually using it 7c230d0e546a net sched filters: fix notification of filter delete with proper handle d46c76765da6 udp: fix IP_CHECKSUM handling 80d59090d4e3 net: sctp, forbid negative length 1a680e543f84 ipv4: use the right lock for ping_group_range 827ada2d671b ipv4: disable BH in set_ping_group_range() 3cb00b90e8b1 net: add recursion limit to GRO 02558fa0e061 rtnetlink: Add rtnexthop offload flag to compare mask ebfbfc2e4df8 bridge: multicast: restore perm router ports on multicast enable f467184e2323 net: pktgen: remove rcu locking in pktgen_change_name() e635b4766174 ipv6: correctly add local routes when lo goes up f9d4850af3c8 ip6_tunnel: fix ip6_tnl_lookup 705b5aca17c3 ipv6: tcp: restore IP6CB for pktoptions skbs 6d123f1d396b netlink: do not enter direct reclaim from netlink_dump() d72cb5fb36bd packet: call fanout_release, while UNREGISTERING a netdev 63091b2c1dea net: Add netdev all_adj_list refcnt propagation to fix panic 9edbf4a0b60b net/sched: act_vlan: Push skb->data to mac_header prior calling skb_vlan_*() functions bb7ffb6b68a9 net: pktgen: fix pkt_size bc5d8ced3c98 net: fec: set mac address unconditionally 0ee4acb7b3be tg3: Avoid NULL pointer dereference in tg3_io_error_detected() 6eb0061fa630 ipmr, ip6mr: fix scheduling while atomic and a deadlock with ipmr_get_route 4f312a802994 ip6_gre: fix flowi6_proto value in ip6gre_xmit_other() aadcd6a96010 tcp: fix a compile error in DBGUNDO() ac40148543c5 tcp: fix wrong checksum calculation on MTU probing d2e01b15657c net: avoid sk_forward_alloc overflows a35ce624a3ae tcp: fix overflow in __tcp_retransmit_skb() beb996c1c399 Linux 4.4.31 78bd7c9bf60b HID: usbhid: add ATEN CS962 to list of quirky devices 69e14ce88389 ubi: fastmap: Fix add_vol() return value test in ubi_attach_fastmap() 91e1f7b0eb25 kvm: x86: Check memopp before dereference (CVE-2016-8630) 62fa839b8fff tty: vt, fix bogus division in csi_J 93fe5c7bb4e0 usb: dwc3: Fix size used in dma_free_coherent() 4b06152a4822 pwm: Unexport children before chip removal 353bbacfd57f UBI: fastmap: scrub PEB when bitflips are detected in a free PEB EC header 1d79b67c4a8a Disable "frame-address" warning c5b2cd97b1d3 smc91x: avoid self-comparison warning 603c78000f8c cgroup: avoid false positive gcc-6 warning 8a618bc7e586 drm/exynos: fix error handling in exynos_drm_subdrv_open 26a5f0596ff2 mm/cma: silence warnings due to max() usage 58fca2f1563b ARM: 8584/1: floppy: avoid gcc-6 warning f0b13816ad4f powerpc/ptrace: Fix out of bounds array access warning eeae15feceaf x86/xen: fix upper bound of pmd loop in xen_cleanhighmap() 95f2bdbe50d0 perf build: Fix traceevent plugins build race 9702108e3def drm/dp/mst: Check peer device type before attempting EDID read 1262212d3b8e drm/radeon: drop register readback in cayman_cp_int_cntl_setup 1734d4e14221 drm/radeon/si_dpm: workaround for SI kickers 231be2b99e4a drm/radeon/si_dpm: Limit clocks on HD86xx part 4b32256b2706 Revert "drm/radeon: fix DP link training issue with second 4K monitor" a1ffa7c37a4c mmc: dw_mmc-pltfm: fix the potential NULL pointer dereference c77a2346226e scsi: arcmsr: Send SYNCHRONIZE_CACHE command to firmware 69ee0ed0c6f9 scsi: scsi_debug: Fix memory leak if LBP enabled and module is unloaded 9075faf1406c scsi: megaraid_sas: Fix data integrity failure for JBOD (passthrough) devices d9237e75fd74 mac80211: discard multicast and 4-addr A-MSDUs 1d22568ce5ed firewire: net: fix fragmented datagram_size off-by-one 46e14262a063 firewire: net: guard against rx buffer overflows 304cc8b5b437 Input: i8042 - add XMG C504 to keyboard reset table daac9e1c85c9 dm mirror: fix read error on recovery after default leg failure 88586a4f884c virtio: console: Unlock vqs while freeing buffers 50e1c4d90aff virtio_ring: Make interrupt suppression spec compliant f2d9107bd0a0 parisc: Ensure consistent state when switching to kernel stack at syscall entry e3d312c435dd ovl: fsync after copy-up ab69d3a03e22 KVM: MIPS: Make ERET handle ERL before EXL 159766dff4d4 KVM: x86: fix wbinvd_dirty_mask use-after-free cb270a3f1666 dm: free io_barrier after blk_cleanup_queue call f49f9df84eb2 USB: serial: cp210x: fix tiocmget error handling 00877d139396 tty: limit terminal size to 4M chars e8a806797070 xhci: add restart quirk for Intel Wildcatpoint PCH fde4a5f237ab hv: do not lose pending heartbeat vmbus packets 3425e397fb23 vt: clear selection before resizing dc1555e670c3 Fix potential infoleak in older kernels bd5cc3294de3 GenWQE: Fix bad page access during abort of resource allocation ce423aca0126 usb: increase ohci watchdog delay to 275 msec 54af73d02eb4 xhci: use default USB_RESUME_TIMEOUT when resuming ports. a98f0e91b0fc USB: serial: ftdi_sio: add support for Infineon TriBoard TC2X7 f2ecc94504f4 USB: serial: fix potential NULL-dereference at probe 660c04e8f174 usb: gadget: function: u_ether: don't starve tx request queue c0510383011f mei: txe: don't clean an unprocessed interrupt cause. dc70a200aac2 ubifs: Fix regression in ubifs_readdir() 0222377bb2cb ubifs: Abort readdir upon error f0d6ba518421 btrfs: fix races on root_log_ctx lists 8910c3388253 ANDROID: binder: Clear binder and cookie when setting handle in flat binder struct 14f09e8e7cd8 ANDROID: binder: Add strong ref checks c5be1e1314ee ALSA: hda - Fix headset mic detection problem for two Dell laptops 34a8b859da9f ALSA: hda - Adding a new group of pin cfg into ALC295 pin quirk table 4a30dbab6584 ALSA: hda - allow 40 bit DMA mask for NVidia devices b0b3d37edb19 ALSA: hda - Raise AZX_DCAPS_RIRB_DELAY handling into top drivers aa72457de77b ALSA: hda - Merge RIRB_PRE_DELAY into CTX_WORKAROUND caps d08ae42a106d ALSA: usb-audio: Add quirk for Syntek STK1160 940d7ecbc57c KEYS: Fix short sprintf buffer in /proc/keys show function 299991298b04 mm: memcontrol: do not recurse in direct reclaim 9fa32e04f810 mm/list_lru.c: avoid error-path NULL pointer deref fd9e4cea96df libxfs: clean up _calc_dquots_per_chunk 0daca12d6774 h8300: fix syscall restarting 44084f15b706 drm/dp/mst: Clear port->pdt when tearing down the i2c adapter 4125fe7f8d31 i2c: core: fix NULL pointer dereference under race condition eeb1846df1c8 i2c: xgene: Avoid dma_buffer overrun (From OE-Core rev: cdc73ef471c9bf304810a7457c0cb10116d70ef1) (From OE-Core rev: 9620bb22013223d1cd24cd177e54206d4950cc41) Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* linux-yocto/4.8: update from v4.8.6 -> v4.8.8Bruce Ashfield2017-01-113-16/+16
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Updating to the korg -stable release 4.8.8. The short log change summary follows: 61385cc1db42 Linux 4.8.8 8ed841d6c045 scsi: megaraid_sas: fix macro MEGASAS_IS_LOGICAL to avoid regression 32f60e9b621f scsi: megaraid_sas: Fix data integrity failure for JBOD (passthrough) devices eb2ca7aac349 usb: dwc3: gadget: properly account queued requests 38db26fb3ae5 arch/powerpc: Update parameters for csum_tcpudp_magic & csum_tcpudp_nofold a143c6022cef packet: on direct_xmit, limit tso and csum to supported devices a6289d9ac3fe ip6_tunnel: Update skb->protocol to ETH_P_IPV6 in ip6_tnl_xmit() c9e086b9009a sctp: validate chunk len before actually using it 5a37dce1b679 net sched filters: fix notification of filter delete with proper handle d46b19687fec net: ipv6: Do not consider link state for nexthop validation eb77db88ea11 macsec: Fix header length if SCI is added if explicitly disabled 027ab3b8ee5a netvsc: fix incorrect receive checksum offloading b75edf27a6c3 udp: fix IP_CHECKSUM handling 5ee356021c42 sctp: fix the panic caused by route update d90cbfaf5439 net: sctp, forbid negative length 64774617da37 net: fec: Call swap_buffer() prior to IP header alignment c6c82c2b707e ipv4: use the right lock for ping_group_range 8418193f7052 ipv4: disable BH in set_ping_group_range() 23c110c4cdbc net: add recursion limit to GRO d3bbd04b92fd net: core: Correctly iterate over lower adjacency list fc5722f8f8f2 rtnetlink: Add rtnexthop offload flag to compare mask 4ac3ca8c2933 switchdev: Execute bridge ndos only for bridge ports 63d82a2cbd0c bridge: multicast: restore perm router ports on multicast enable e9a5921c393f net: pktgen: remove rcu locking in pktgen_change_name() 2eeb5735dd04 net/mlx4_en: fixup xdp tx irq to match rx 27bb6e31d32d IB/ipoib: move back IB LL address into the hard header f280126ec8d8 ipv6: correctly add local routes when lo goes up 0f3e77623916 ip6_tunnel: fix ip6_tnl_lookup a148a818df84 net: phy: Trigger state machine on state change and not polling. 2a9099899a6a ipv6: tcp: restore IP6CB for pktoptions skbs 50b43ad1dce6 net_sched: reorder pernet ops and act ops registrations dac04913ee27 drivers/ptp: Fix kernel memory disclosure 3f841d1555ad netlink: do not enter direct reclaim from netlink_dump() 5086cadf8fa4 packet: call fanout_release, while UNREGISTERING a netdev 6fff1319fdac net: Add netdev all_adj_list refcnt propagation to fix panic 9caee42c800e net/sched: act_vlan: Push skb->data to mac_header prior calling skb_vlan_*() functions c002dfd8adaa net: pktgen: fix pkt_size ff1b27c31706 net: fec: set mac address unconditionally 567aeca9fbb7 Linux 4.8.7 1bf121d3b234 HID: usbhid: add ATEN CS962 to list of quirky devices 05a833d4b051 cpufreq: intel_pstate: Set P-state upfront in performance mode c89771511deb ubi: fastmap: Fix add_vol() return value test in ubi_attach_fastmap() 591bf1362e9e btrfs: qgroup: Prevent qgroup->reserved from going subzero 0c879624701d kvm: x86: Check memopp before dereference (CVE-2016-8630) 725a92be3926 ARM: fix oops when using older ARMv4T CPUs e339609bf377 tty: vt, fix bogus division in csi_J 4a22930a74ac v4l: vsp1: Prevent pipelines from running when not streaming 59f9693a170a usb: musb: Fix hardirq-safe hardirq-unsafe lock order error 086ac9180437 usb: chipidea: host: fix NULL ptr dereference during shutdown 07bae478e1c1 usb: dwc3: Fix size used in dma_free_coherent() fedede0963c4 pwm: Unexport children before chip removal 7b4b77b9566d omapfb: fix return value check in dsi_bind() a3e55d6342b2 video: fbdev: pxafb: potential NULL dereference on error 13d0f5b3a399 uapi: add missing install of sync_file.h db5025bd08ef UBI: fastmap: scrub PEB when bitflips are detected in a free PEB EC header cc94524e8940 netfilter: xt_NFLOG: fix unexpected truncated packet 720a40113e78 i2c: mark device nodes only in case of successful instantiation f7d8d44a68de drm: i915: Wait for fences on new fb, not old 1cefe4cb4f8c drm/i915/fbc: fix CFB size calculation for gen8+ 809e9e6fc390 drm/i915: Clean up DDI DDC/AUX CH sanitation ba0a959e0334 drm/i915: Respect alternate_aux_channel for all DDI ports 426a724c9972 drm: Release reference from blob lookup after replacing property 5064a6a05387 drm/dp/mst: Check peer device type before attempting EDID read e6fcf953a995 drm/i915/gen9: fix watermarks when using the pipe scaler 0f7f9c456380 drm/i915/gen9: fix DDB partitioning for multi-screen cases 0cc98b5963f8 drm/fb-helper: Keep references for the current set of used connectors 14f4a463dc78 drm/fb-helper: Fix connector ref leak on error 6222f1e0b9ef drm/fb-helper: Don't call dirty callback for untouched clips 7290da41b8da drm/nouveau/acpi: fix check for power resources support fd5f9e1e28cb drm/radeon: drop register readback in cayman_cp_int_cntl_setup e136de5d7331 drm/radeon/si_dpm: workaround for SI kickers fe777e7a595c drm/radeon/si_dpm: Limit clocks on HD86xx part fa6227dbfd6a drm/imx: ipuv3-plane: Access old u/vbo properly in ->atomic_check for YU12/YV12 d040374f3473 drm/imx: ipuv3-plane: Switch EBA buffer only when we don't need modeset 51ed5a2bbf38 Revert "drm/radeon: fix DP link training issue with second 4K monitor" ac6f210dd7a6 md: be careful not lot leak internal curr_resync value into metadata. -- (all) eba4fe9db92f RAID10: ignore discard error 21faa6dbf53f RAID1: ignore discard error b80fcd58e6f6 mmc: dw_mmc-pltfm: fix the potential NULL pointer dereference 1244d3c3a0f6 scsi: arcmsr: Send SYNCHRONIZE_CACHE command to firmware 2a1a0a6f1d60 scsi: scsi_debug: Fix memory leak if LBP enabled and module is unloaded 5bac49422b4a ath10k: cache calibration data when the core is stopped a7d092e946f5 Revert "ath9k_hw: implement temperature compensation support for AR9003+" aea7cb3b7ceb mac80211: discard multicast and 4-addr A-MSDUs 27fa1e735c70 firewire: net: fix fragmented datagram_size off-by-one 032430fb6a2c firewire: net: guard against rx buffer overflows facb17b67ac9 Input: i8042 - add XMG C504 to keyboard reset table 8b535f07898a rtl8xxxu: Fix rtl8723bu driver reload issue 1c9edb27261e rtl8xxxu: Fix big-endian problem reporting mactime ece1b51ae1c4 rtl8xxxu: Fix memory leak in handling rxdesc16 packets 5a805cd29284 dm raid: fix activation of existing raid4/10 devices 6e5456768ba1 dm raid: fix compat_features validation 056290446e8a dm rq: clear kworker_task if kthread_run() returned an error 13a59a868756 dm table: fix missing dm_put_target_type() in dm_table_add_target() 159a17e8dbf6 dm mirror: fix read error on recovery after default leg failure d8db5234adef virtio: console: Unlock vqs while freeing buffers 7569d22a820d virtio_pci: Limit DMA mask to 44 bits for legacy virtio devices 0c2f67a6196d virtio_ring: Make interrupt suppression spec compliant c528df925fba parisc: Ensure consistent state when switching to kernel stack at syscall entry 592de1000694 ovl: fsync after copy-up 3ad464dadb7c ovl: update S_ISGID when setting posix ACLs be9015460ed5 ovl: fix get_acl() on tmpfs 2b632307635f MIPS: KASLR: Fix handling of NULL FDT 1734afcce32b nfsd: Fix general protection fault in release_lock_stateid() 202c6676b963 ARM: dts: fix the SD card on the Snowball db20b510ca5c ARM: mvebu: Select corediv clk for all mvebu v7 SoC c627b2e76ae2 KVM: MIPS: Precalculate MMIO load resume PC f3a0c969e788 KVM: MIPS: Make ERET handle ERL before EXL 961cf133b710 KVM: s390: Fix STHYI buffer alignment for diag224 88aca01f8cb4 KVM: x86: fix wbinvd_dirty_mask use-after-free ea261d177aed dm: free io_barrier after blk_cleanup_queue call 377a2a273c4b Staging: wilc1000: Fix kernel Oops on opening the device 0c4ffbf9e118 iio:chemical:atlas-ph-sensor: Fix use of 32 bit int to hold 16 bit big endian value 52a1e76f16e2 arm64: dts: marvell: fix clocksource for CP110 master SPI0 0dff3c6321a5 tty: limit terminal size to 4M chars 44f0722dc9ac xhci: workaround for hosts missing CAS bit 0894224ae7c0 xhci: add restart quirk for Intel Wildcatpoint PCH b2d28d93cf83 hv: do not lose pending heartbeat vmbus packets eeae0a12a166 vt: clear selection before resizing 9710f5b19328 x86/smpboot: Init apic mapping before usage 58b0a7f115f8 GenWQE: Fix bad page access during abort of resource allocation b9aa0a7290f5 usb: increase ohci watchdog delay to 275 msec 241208e7b721 usb: renesas_usbhs: add wait after initialization for R-Car Gen3 00dbeb06292b xhci: use default USB_RESUME_TIMEOUT when resuming ports. 1e306cd37a66 USB: serial: ftdi_sio: add support for Infineon TriBoard TC2X7 d082fd105eb9 USB: serial: cp210x: fix tiocmget error handling e8bf726705bd USB: serial: fix potential NULL-dereference at probe 23124735a6f0 usb: gadget: function: u_ether: don't starve tx request queue fe4af125085a usb: gadget: udc: atmel: fix endpoint name 420d16894425 mei: txe: don't clean an unprocessed interrupt cause. 5d30e8f65073 ubifs: Fix regression in ubifs_readdir() b8176cc56bf1 ubifs: Abort readdir upon error 1755f43e9a90 timers: Lock base for same bucket optimization e18ed431d7da timers: Plug locking race vs. timer migration b5e3a038997a timers: Prevent base clock corruption when forwarding 665f7bf33aa8 timers: Prevent base clock rewind when forwarding clock 0d621c57e739 x86/microcode/AMD: Fix more fallout from CONFIG_RANDOMIZE_MEMORY=y e599203f55ad powerpc/64: Fix race condition in setting lock bit in idle/wakeup code 51d784b54768 powerpc/64: Re-fix race condition between going idle and entering guest 2c7ff0e5c311 powerpc/mm/radix: Use tlbiel only if we ever ran on the current cpu ae150de2d5e0 powerpc: Convert cmp to cmpd in idle enter sequence 1198fbca645e btrfs: fix races on root_log_ctx lists bc720ae2ffab cxl: Fix leaking pid refs in some error paths 2a997e83960b ANDROID: binder: Clear binder and cookie when setting handle in flat binder struct 599cfd58ffde ANDROID: binder: Add strong ref checks 2a0efa30b15c ALSA: hda - Fix headset mic detection problem for two Dell laptops 2585e17b71c7 ALSA: hda - Fix surround output pins for ASRock B150M mobo 14456570a4a5 ALSA: hda - Adding a new group of pin cfg into ALC295 pin quirk table 54186c7dd2ec ALSA: hda - allow 40 bit DMA mask for NVidia devices 0f574c90d747 ALSA: seq: Fix time account regression 8ccf154b2654 ALSA: usb-audio: Add quirk for Syntek STK1160 9d3f5b85ef8b device-dax: fix percpu_ref_exit ordering 33bcff297228 security/keys: make BIG_KEYS dependent on stdrng. 5152986c9257 KEYS: Sort out big_key initialisation 5daa841d0437 KEYS: Fix short sprintf buffer in /proc/keys show function 0a38e6c551c4 thermal/powerclamp: correct cpu support check 5db5e0c11c13 mm: memcontrol: do not recurse in direct reclaim 68adb469dd3b mm/slab: fix kmemcg cache creation delayed issue 67ae004e2c52 mm/list_lru.c: avoid error-path NULL pointer deref 5cb73199ca48 libxfs: clean up _calc_dquots_per_chunk d00057ecf82f gpio: GPIO_GET_LINE{HANDLE,EVENT}_IOCTL: Fix file descriptor leak c70eb2cc1276 gpio: GPIOHANDLE_GET_LINE_VALUES_IOCTL: Fix another information leak 6bba4b226521 gpio: GPIO_GET_LINEEVENT_IOCTL: Reject invalid line and event flags e2144827d96b gpio: GPIO_GET_LINEHANDLE_IOCTL: Reject invalid line flags c0699405b147 gpio: GPIO_GET_LINEEVENT_IOCTL: Validate line offset 49bdfb21e37d gpio: GPIOHANDLE_GET_LINE_VALUES_IOCTL: Fix information leak e22edf53b40f gpio: GPIO_GET_LINEHANDLE_IOCTL: Validate line offset a23a59c56a53 gpio: GPIO_GET_CHIPINFO_IOCTL: Fix information leak 78ae767553e4 gpio: GPIO_GET_CHIPINFO_IOCTL: Fix line offset validation 56ffab4f532e gpio / ACPI: fix returned error from acpi_dev_gpio_irq_get() 4366246129ca h8300: fix syscall restarting a639266ae0c3 spi: mark device nodes only in case of successful instantiation d6634d871199 spi: fsl-espi: avoid processing uninitalized data on error 0cee66b72acc drm/dp/mst: Clear port->pdt when tearing down the i2c adapter f2ffb21fb495 i2c: core: fix NULL pointer dereference under race condition 0fda1cdcbb72 i2c: xgene: Avoid dma_buffer overrun 9c619c2a8d4d i2c: rk3x: Give the tuning value 0 during rk3x_i2c_v0_calc_timings (From OE-Core rev: f95903012735e764ae0608a17fc6d4d8c139eb83) (From OE-Core rev: 02cbbeb726923df8122d5e30a1908a0897e8cd6c) Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* linux-yocto/4.8: update to v4.8.6-rt5Bruce Ashfield2017-01-111-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Paul Gortmaker sent along updates to the latest 4.8 -rt version. Updating the SRCREVs to include the following commits: f83a3d4a643b v4.8.6-rt5 74c7ffc2e3f2 NFSv4: don't disable preemption on !RT 9711dc408890 kbuild: Add -fno-pie to KBUILD_AFLAGS: 7b4d4278e307 v4.8.6-rt4 24aa22031f3c v4.8.2-rt3 8541163464e2 kbuild: add -fno-PIE 81b61ced2d45 NFSv4: replace seqcount_t with a seqlock_t a8300ce29d0c worqueue: document the proper argument 9711591ebdc3 genirq: document swork member 1aace69fd88f rbtree: include barrier.h 74d4589809f2 rxrpc: remove unused static variables a941e2f0611c x86/apic: get rid of "warning: 'acpi_ioapic_lock' defined but not used" 9888d1c2e3ab hotplug: Call mmdrop_delayed() in sched_cpu_dying() if PREEMPT_RT_FULL debf0ec42b2e drivers/zram: Don't disable preemption in zcomp_stream_get/put() c84b472ee376 mm/zs_malloc: Fix bit spinlock replacement c17de80bfeba zsmalloc: turn that get_cpu_light() into a local_lock() 33586701e8ad connector/cn_proc: Protect send_msg() with a local lock on RT b20867d36bcd ftrace: Fix trace header alignment (From OE-Core rev: 6840594c43b892056886f471575ccb49a78f34e4) (From OE-Core rev: 0ec50af0cbc8c3fc6301637e4efeaf99fea0512e) Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* linux-yocto/4.1: update to v4.1.35Bruce Ashfield2017-01-113-16/+16
| | | | | | | | | | | | | Updating to the korg -stable release. (From OE-Core rev: c0231b1306034cc03987a5fbabd6f17125c9392b) (From OE-Core rev: b4b0a4232cf4bd22a4cb0941998c6f66429a23b8) Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* linux-yocto/4.4: update to v4.4.30Bruce Ashfield2017-01-113-16/+16
| | | | | | | | | | | | | Updating to the korg -stable release. (From OE-Core rev: feed13b4d108a93b4e95ed9f80f9624e1bd1cdf5) (From OE-Core rev: a916135b282e1a350a380b96eb0b04d2820bea6e) Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* linux-yocto/4.8: fix cryptodev compilation errorBruce Ashfield2017-01-113-13/+13
| | | | | | | | | | | | | | | | | | | It was reported that compilation was broken for the in tree variant of cryptodev. This commit integrates two patches that fix the issue: efbdfa1ed95f cryptodev: stomp dynamic version numbering for in tree builds 32f54070205f cryptodev: fix compile error when enable CONFIG_CRYPTODEV (From OE-Core rev: b91469ac21825a86eb7a71f1e91206719061bcaa) (From OE-Core rev: 4ce2375e4ef1ef37e87c95faa0cae6171f390afa) Signed-off-by: Liwei Song <liwei.song@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* linux-yocto/4.8: update to 4.8.6Bruce Ashfield2017-01-113-16/+16
| | | | | | | | | | | | | Integrating the korg -stable release. (From OE-Core rev: 2a7d3173c7a05cd09bbcf5fe465403b2d4b2b589) (From OE-Core rev: f805e0c996342b1171035792bcc06d90026d5e5f) Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* conf: add C++ flags for uninative interoperatilityRoss Burton2017-01-113-12/+11
| | | | | | | | | | | | | | | | | | | | | Create a common include file for compiler flags which allow native binaries to be interoperable on a wide range of hosts. In particular the C++ ABI is problematic so choose the CXX11 version to allow interoperation between gcc4 and gcc5 based hosts. Moving this to a common include instead of uninative.bbclass allows uninative to be configured later and used in the eSDK (where its mandatory) even if the base configuration doesn't enable uninative by default (e.g. nodistro in OE-Core). [ YOCTO #10645 ] (From OE-Core rev: 60c912ae9306532bdd4c5e09a65863ee77c12f43) (From OE-Core rev: 10dea25aac31c156350e3e73f937472404c22d81) Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* binutils: Fix build for c293pcie PPC machineFabio Berton2017-01-112-0/+38
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The following patch fix build for c293pcie PPC machine : https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;a=commitdiff;h=8941017b This patch is a backport from master branch. Fix error: / |ERROR: binutils-2.27-r0 do_package: runstrip: ''powerpc-fslc-linux-gnuspe-strip' |--remove-section=.comment --remove-section=.note --strip-unneeded |'../tmp/work/ppce500v2-fslc-linux-gnuspe/binutils/2.27-r0/package/usr/lib/ |libbfd-2.27.0.20160806.so'' strip command failed with 1 |(b'powerpc-fslc-linux-gnuspe-strip: ../tmp/work/ppce500v2-fslc-linux-gnuspe/ |binutils/2.27-r0/package/usr/lib/stJMAEnm: Not enough room for program headers, |try linking with -N\npowerpc-fslc-linux-gnuspe-strip:../tmp/work/ |ppce500v2-fslc-linux-gnuspe/binutils/2.27-r0/package/usr/lib/stJMAEnm |[.note.gnu.build-id]: Bad value\n') \ (From OE-Core rev: 3526c23ae98d2e08af20b77175c12907355ec42a) (From OE-Core rev: 639b1b6d187ee44b3f67b9d013517a0c904fffc4) Signed-off-by: Fabio Berton <fabio.berton@ossystems.com.br> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* tiff: Security fix CVE-2016-3632Yi Zhao2017-01-112-0/+35
| | | | | | | | | | | | | | | | | | | | | | | | CVE-2016-3632 libtiff: The _TIFFVGetField function in tif_dirinfo.c in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (out-of-bounds write) or execute arbitrary code via a crafted TIFF image. External References: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-3632 http://bugzilla.maptools.org/show_bug.cgi?id=2549 https://bugzilla.redhat.com/show_bug.cgi?id=1325095 The patch is from RHEL7. (From OE-Core rev: 9206c86239717718be840a32724fd1c190929370) (From OE-Core rev: 0c6928f4129e5b1e24fa2d42279353e9d15d39f0) Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* nfs-utils: fix protocol minor version fall-backYi Zhao2017-01-112-0/+56
| | | | | | | | | | | | | | | | | | | | | | | Mount nfs directory would fail if no specific nfsvers: mount -t nfs IP:/foo/bar/ /mnt/ mount.nfs: an incorrect mount option was specified mount.nfs currently expects mount(2) to fail with EPROTONOSUPPORT if the kernel doesn't understand the requested NFS version. Unfortunately if the requested minor is not known to the kernel it returns -EINVAL. Backport patch from nfs-utils-1.3.4 to fix this issue. (From OE-Core rev: 332596628697d28ae6e8c2271c9658aaf5e54796) (From OE-Core rev: 2b8362c42f9a7d689084ad956370d2d6c4fa9179) Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* openssl: Security fix CVE-2016-7055Yi Zhao2017-01-112-0/+44
| | | | | | | | | | | | | | | | | | | | | | | There is a carry propagating bug in the Broadwell-specific Montgomery multiplication procedure that handles input lengths divisible by, but longer than 256 bits. External References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7055 https://www.openssl.org/news/secadv/20161110.txt Patch from: https://github.com/openssl/openssl/commit/57c4b9f6a2f800b41ce2836986fe33640f6c3f8a (From OE-Core rev: 07cfa9e2bceb07f3baf40681f8c57f4d3da0aee5) (From OE-Core rev: 090c2ff292a4d92142c3f33c7517be69d9c16c24) Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* OpenSSL: CVE-2004-2761 replace MD5 hash algorithmT.O. Radzy Radzykewycz2017-01-111-0/+69
| | | | | | | | | | | | | | | | | | | | | | | | | | | Use SHA256 as default digest for OpenSSL instead of MD5. CVE: CVE-2004-2761 The MD5 Message-Digest Algorithm is not collision resistant, which makes it easier for context-dependent attackers to conduct spoofing attacks, as demonstrated by attacks on the use of MD5 in the signature algorithm of an X.509 certificate. Upstream-Status: Backport Backport from OpenSSL 2.0 to OpenSSL 1.0.2 Commit f8547f62c212837dbf44fb7e2755e5774a59a57b Reviewed-by: Viktor Dukhovni <viktor@openssl.org> (From OE-Core rev: f924428cf0c22a0b62769f8f31f11f173f25014f) (From OE-Core rev: 0066e5c5559009f250b6e5953d5830db2c8769e1) Signed-off-by: Zhang Xiao <xiao.zhang@windriver.com> Signed-off-by: T.O. Radzy Radzykewycz <radzy@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* cmake.bbclass: Set CXXFLAGS and CFLAGSKhem Raj2017-01-111-0/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | We strip the TOOLCHAIN_OPTIONS and HOST_CC_ARCH from CC/CXX in cmake.bbclass whereas CFLAFS and CXXFLAGS assume that TOOLCHAIN_OPTIONS are part of CC/CXX variables, this causes compile failures when cmake is running compiler tests during configure on some architectures especially armhf, because hf ABI information -mfloat-abi is part of TOOLCHAIN_OPTIONS, so what happens is that testcase gets compiled without hard-float, howver, during linking the float ABI option is passed via LDFLAGS, now linker rejects this and fails like /mnt/a/build/tmp-glibc/sysroots/x86_64-linux/usr/libexec/arm-oe-linux-gnueabi/gcc/arm-oe-linux-gnueabi/6.2.0/ld: error: cmTC_27947 uses VFP register arguments, CMakeFiles/cmTC_27947.dir/src.cxx.o does not mnt/a/build/tmp-glibc/sysroots/x86_64-linux/usr/libexec/arm-oe-linux-gnueabi/gcc/arm-oe-linux-gnueabi/6.2.0/ld: failed to merge target specific data of file CMakeFiles/cmTC_27947.dir/src.cxx.o collect2: error: ld returned 1 exit status This means that CMake now fails the configure time test too which is not right, e.g. it might disable features which actually do exist and should be enabled e.g. in case above it is resulting as below Performing C++ SOURCE FILE Test HAS_BUILTIN_SYNC_SUB_AND_FETCH failed with the following output: Its actually a bug in CMake see https://gitlab.kitware.com/cmake/cmake/issues/16421 CMake is ignoring CMAKE_CXX_FLAGS when using CHECK_CXX_SOURCE_COMPILES function. Until it is fixed upstream, we add HOST_CC_ARCH and TOOLCHAIN_OPTIONS to CFLAGS and CXXFLAGS, so that we can ensure that compiler invocation remains consistent. (From OE-Core rev: 826f3cdb474b5728b22f08d2342fc90235ca9e7d) (From OE-Core rev: 7e5fd5914e15397a56425130c2322ace67da2ee4) Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* tiff: Security fix CVE-2016-3658Zhixiong Chi2017-01-112-0/+112
| | | | | | | | | | | | | | | | | | | | | | | The TIFFWriteDirectoryTagLongLong8Array function in tif_dirwrite.c in the tiffset tool allows remote attackers to cause a denial of service (out-of-bounds read) via vectors involving the ma variable. External References: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-3658 http://bugzilla.maptools.org/show_bug.cgi?id=2546 Patch from: https://github.com/vadz/libtiff/commit/45c68450bef8ad876f310b495165c513cad8b67d (From OE-Core rev: c060e91d2838f976774d074ef07c9e7cf709f70a) (From OE-Core rev: cc266584158c8dfc8583d21534665b6152a4f7ee) Signed-off-by: Zhixiong Chi <zhixiong.chi@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* qemu: update run-ptest scriptKai Kang2017-01-111-3/+5
| | | | | | | | | | | | | | | The Makefile in directory tests has been renamed, then update script run-ptest to follow the change. (From OE-Core rev: 364565f3f3baccc9757ce0dcb393464b38055b4f) (From OE-Core rev: aece2afafbd304adee30978537b9404a9344dd4e) Signed-off-by: Kai Kang <kai.kang@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* qemu: fix CVE-2016-7909Kai Kang2017-01-112-0/+43
| | | | | | | | | | | | | | | | | Backport patch to fix CVE-2016-7909 of qemu. Ref: https://security-tracker.debian.org/tracker/CVE-2016-7909 (From OE-Core rev: 126783ca25a5ae9daf87ac563239fbff4696a682) (From OE-Core rev: 469267010b43a1c114e22009c9ac68f36c22f896) Signed-off-by: Kai Kang <kai.kang@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* openssl: fix bashism in c_rehash shell scriptAndré Draszik2017-01-111-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This script claims to be a /bin/sh script, but it uses a bashism: from checkbashisms: possible bashism in meta/recipes-connectivity/openssl/openssl/openssl-c_rehash.sh line 151 (should be 'b = a'): if [ "x/" == "x$( echo ${FILE} | cut -c1 -)" ] This causes build issues on systems that don't have /bin/sh symlinked to bash: Updating certificates in ${WORKDIR}/rootfs/etc/ssl/certs... <builddir>/tmp/sysroots/x86_64-linux/usr/bin/c_rehash: 151: [: x/: unexpected operator ... Fix this by using POSIX shell syntax for the comparison. (From OE-Core rev: 0526524c74d4c9019fb014a2984119987f6ce9d3) (From OE-Core rev: 2ece9c0e955ee99543968ddfd14da909e23ae611) Signed-off-by: André Draszik <adraszik@tycoint.com> Reviewed-by: Sylvain Lemieux <slemieux@tycoint.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* systemtap: fix native linking on recent UbuntuRoss Burton2017-01-112-0/+42
| | | | | | | | | | | | | | | | The latest Ubuntu uses yet more aggressive hardening options, which causes the unconventional build order used by systemtap to fail. [ YOCTO #10521 ] (From OE-Core rev: 5ca6ac8739ea4a273df7b8e5c5f7d481619923d8) (From OE-Core rev: 3397af5877a41a6a59aeb90f8610c759cad38795) Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* systemtap: remove explicit msgfmt checkRoss Burton2017-01-112-0/+16
| | | | | | | | | | | | | | | | Passing --disable-nls should be enough to disable the requirement for a full gettext to be present, but the upstream configure explicitly checks for msgfmt even if it isn't going to be used. To avoid having to depend on gettext-native, patch this check out. (From OE-Core rev: 2f8d2a74f73490c1ae35131d3eb3592f7ee0a1e4) (From OE-Core rev: 7d689876574ba47e5ad07d67ad40fd865b0c27f5) Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libbsd: Fix build with muslKhem Raj2017-01-114-0/+553
| | | | | | | | | | | | | | | | a.out.h support is not across all architectures only x86/x86_64 support is in linux/a.out.h, this patch abstracts the minimum needed constructs into itself (From OE-Core rev: 757224640bbf4ebf17aea22fa1419c9c3bcd89ce) (From OE-Core rev: 7985b295384f98fd6ea88f3aff197ccf0369977b) Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* db: disable the ARM assembler mutex codeLi Zhou2017-01-111-9/+0
| | | | | | | | | | | | | | | | | | The swpb in macro MUTEX_SET will cause "undefined instruction" error on the new arm arches which don't support this assembly instruction any more. If use ldrex/strex to replace swpb, the old arm arches don't support them. So to avoid this issue, just disable the ARM assembler mutex code, and use the default pthreads mutex. (From OE-Core rev: aafbc548ebc66dc0d703526f9a98f784e9c9605b) (From OE-Core rev: d6a0ef7e9dfbda3d55ba18f2bcc69f04d502495d) Signed-off-by: Li Zhou <li.zhou@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>