Mirror of git.yoctoproject.org/poky https://git.enea.com/cgit/linux/poky.git/atom?h=gatesgarth 2021-01-12T14:25:13+00:00 2021-01-12T14:25:13+00:00 Richard Purdie richard.purdie@linuxfoundation.org 2020-12-31T17:12:27+00:00 urn:sha1:85167b3594c978e61da11fe3511cd8014a1a7224 Fix the ordering in the generated unidata.c file to aid reproducibility. [YOCTO #14167] (From OE-Core rev: c0f96eadf9a85c911ba551d619c32794bb620dde) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 6d9c9f7604fd32ef926726a46ae053bbab6ccb4f) Signed-off-by: Anuj Mittal <anuj.mittal@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> 2021-01-12T14:25:13+00:00 Scott Murray scott.murray@konsulko.com 2020-12-30T22:44:17+00:00 urn:sha1:2df017eb7756d49af4eddc7b19b42150ae5df8d2 The "CVE:" line in the patch for CVEs 2020-14309, CVE-2020-14310, and CVE-2020-14311 had commas between the CVE numbers, which resulted in CVE-2020-14310 not being picked up as patched by cve-check.bbclass's parsing. Remove the commas to match cve-check.bbclass's expectations. (From OE-Core rev: f8aa7314f98748ecb7a9abc6702e795ae50b97a6) Signed-off-by: Scott Murray <scott.murray@konsulko.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 396d5c0f9cffa4b54ae94738b1ef2b6fb545f082) Signed-off-by: Anuj Mittal <anuj.mittal@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> 2021-01-04T11:45:47+00:00 Richard Purdie richard.purdie@linuxfoundation.org 2020-12-20T12:15:06+00:00 urn:sha1:ce6e7b9f3f63a589e6bea992af691c6a7befa26e If you build on a system with git < 2.14 from scratch (e.g. debian9), the tree will be marked as "dirty" and the version will include "-dirty", leading to a reproducibility problem. The issue is the inode count for Licnses/README changing due to do_populate_lic hardlinking a copy of the file. We avoid this by ensuring the index is updated with a "git diff" before the u-boot machinery tries to determine the version. build$ ../git/scripts/setlocalversion ../git "" build$ ln ../git/ build$ ln ../git/README ../foo build$ ../git/scripts/setlocalversion ../git ""-dirty (i.e. creating a hardlink dirties the index) (From OE-Core rev: bd6495ba968f359c53e75a61e373124acf33ead5) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit a4de915af9e2c4d365527ad09286483b2ee904fc) Signed-off-by: Anuj Mittal <anuj.mittal@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> 2021-01-04T11:45:46+00:00 Richard Purdie richard.purdie@linuxfoundation.org 2020-12-20T14:47:52+00:00 urn:sha1:4aa58e1fb578cbfe956afa40f6fa72a4f6157a31 There is a second list sorting problem in a generator script within grub, add a sort() of a list to resolve this. (From OE-Core rev: 5d758a1568e5bd03fc55885d1a26de34aee7ebbd) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit cb5e96e05930eaff4d679166416d6c84d6e3236b) Signed-off-by: Anuj Mittal <anuj.mittal@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> 2021-01-04T11:45:46+00:00 Richard Purdie richard.purdie@linuxfoundation.org 2020-12-19T14:35:40+00:00 urn:sha1:28dfda38e157d9ea59883784a0191ddeeb8666ac We're seeing reproducibility issue on the autobuilder due to changing module dependency ordering. Add some sorting to an awk script to fix this. (From OE-Core rev: c494d69efbc9035d6d9ff8dae8a606aeaf378adc) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 925ddd5edccbfec52ff45c1b54ab2ae1bfe0d57c) Signed-off-by: Anuj Mittal <anuj.mittal@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> 2020-11-20T10:53:21+00:00 Khem Raj raj.khem@gmail.com 2020-11-12T07:02:25+00:00 urn:sha1:23a0428069c61331766d749998902c137db9278b Current code hardcodes archiver to be 'ar' from build host (From OE-Core rev: 694202b05134bdef603b69667cd70a28bb311ccf) Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 74ed1d10434213ad3fcf54ded49879090f979e1e) Signed-off-by: Anuj Mittal <anuj.mittal@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> 2020-11-12T13:06:28+00:00 Yongxin Liu yongxin.liu@windriver.com 2020-11-04T00:43:33+00:00 urn:sha1:5232b03e22a49c368fbf4d79e05519ad5e48db4a Clean up several patches introduced in commit 6732918498 ("grub:fix several CVEs in grub 2.04"). 1) Add CVE tags to individual patches. 2) Rename upstream patches and prefix them with CVE tags. 3) Add description of reference to upstream patch. (From OE-Core rev: a1db1e71129c3e67ddd9dbef21e1c5eb31552e00) Signed-off-by: Yongxin Liu <yongxin.liu@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit bcb8b6719beaf6625e6b703e91958fe8afba5819) Signed-off-by: Anuj Mittal <anuj.mittal@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> 2020-10-30T13:04:39+00:00 Yongxin Liu yongxin.liu@windriver.com 2020-10-28T03:18:06+00:00 urn:sha1:141bf3fdb65d3c17426843ec3ea040244d59379f Backport patches from https://git.savannah.gnu.org/git/grub.git to fix some CVEs. Here is the list. CVE-2020-14308: 0001-calloc-Make-sure-we-always-have-an-overflow-checking.patch 0002-lvm-Add-LVM-cache-logical-volume-handling.patch 0003-calloc-Use-calloc-at-most-places.patch CVE-2020-14309, CVE-2020-14310, CVE-2020-14311: 0004-safemath-Add-some-arithmetic-primitives-that-check-f.patch 0005-malloc-Use-overflow-checking-primitives-where-we-do-.patch CVE-2020-15706: 0006-script-Remove-unused-fields-from-grub_script_functio.patch 0007-script-Avoid-a-use-after-free-when-redefining-a-func.patch CVE-2020-15707: 0008-linux-Fix-integer-overflows-in-initrd-size-handling.patch (From OE-Core rev: 67329184985a03534f11f95e9df5f9fb2305a261) Signed-off-by: Yongxin Liu <yongxin.liu@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> 2020-10-20T10:11:46+00:00 Lee Chee Yang chee.yang.lee@intel.com 2020-10-19T12:42:14+00:00 urn:sha1:bd56c17ba5ec344463875e2712a42fc067969ec0 (From OE-Core rev: ec6a2258ca27d5709df4fe18d94841332395bcb2) Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> 2020-09-13T23:14:28+00:00 Pierre-Jean Texier pjtexier@koncepto.io 2020-09-12T13:37:08+00:00 urn:sha1:e7e3bdbbd755668723c50e0b291fdf8c8ab86a5c This is a bugfix release which includes the following changes: 824551a Prepare 0.3.1 ca6aaa1 Fix file reading/writing when the environment is in EEPROM a031dea Fix regression in UBI volume support c91c150 Define SOVERSION to indicate API version (From OE-Core rev: 447eb941ef43cd5af19aed650fb7da718cedda61) Signed-off-by: Pierre-Jean Texier <pjtexier@koncepto.io> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>